Windows 8.1 Task host beim Herunterfahren des PC nicht beendet

Cat88 · 11.08.2015, 22:27

In letzter Zeit kommt bei meinem PC immer wieder die Meldung, dass Task host beim Herunterfahren nicht beendet werden kann. Das Herunterfahren des PC dauert dann immer sehr lange, des öfteren musste ich ihn durch langes Drücken der Starttaste auch schon abwürgen. Zudem ist jetzt auch schon mehrmals der Lautsprecher ausgefallen und es kamen diverse Fehlermeldungen, dass Windowsdienste nicht unterstützt werden.

Malwarebytes, Spybot und mein Virenprogramm AVG zeigen keine Viren und Trojaner.

Nachdem das Problem mit dem Lautsprecherausfall schon mehrmals aufgetreten ist, habe ich in der Systemsteuerung unter Aufgabenplanung // > Aufgabenplanung > Aufgabenplanungsbibliothek > Microsoft > Windows > // Auswahl TextServicesFramework den Dienst beendet. Anschließend hat der Lautsprecher wieder funktioniert. Aber der PC hat trotzdem weitere Probleme. Gestern hat er sich einfach aufgehängt und dann kam ein blauer Bildschirm mit einem Smiley und einem komischen Text, den ich leider nicht mehr wiedergeben kann.
Ich hoffe, ihr könnt mir weiterhelfen?

Anbei die Defogger-Auswertung:

Code:

ATTFilter

defogger_disable by jpshortstuff (23.02.10.1)
Log created at 22:41 on 10/08/2015 (Cat)

Checking for autostart values...
HKCU\~\Run values retrieved.
HKLM\~\Run values retrieved.

Checking for services/drivers...


-=E.O.F=-

Anbei die FRST-Datei:

Code:

ATTFilter

Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:09-08-2015
durchgeführt von Cat (Administrator) auf CatPC (10-08-2015 22:46:50)
Gestartet von C:\Users\Cat\Downloads
Geladene Profile: Cat (Verfügbare Profile: Cat)
Platform: Windows 8.1 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: Chrome)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2015\avgrsa.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2015\avgcsrva.exe
() C:\Program Files (x86)\AVG Web TuneUp\WtuSystemSupport.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Hewlett-Packard Company) C:\Windows\System32\hpservice.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RTKAUDIOSERVICE64.EXE
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Andrea Electronics Corporation) C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2015\avgidsagent.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2015\avgwdsvc.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPWMISVC.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Symantec Corporation) C:\Program Files (x86)\Norton Internet Security\Engine\21.7.0.11\nis.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2015\avgnsa.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2015\avgemca.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
(AVG Secure Search) C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\18.8.0\ToolbarUpdater.exe
() C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\18.8.0\loggingserver.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
(Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.3.9600.17477_none_fa2b7d3b9b36c7b4\TiWorker.exe
(Symantec Corporation) C:\Program Files (x86)\Norton Internet Security\Engine\21.7.0.11\nis.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Windows\System32\WerFault.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation) C:\Windows\System32\igfxTray.exe
(CyberLink) C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe
(CyberLink) C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Corporation) C:\Windows\System32\msfeedssync.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\wermgr.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe


==================== Registry (Nicht auf der Ausnahmeliste) ==================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7165000 2014-10-23] (Realtek Semiconductor)
HKLM\...\Run: [HotKeysCmds] => C:\Windows\system32\hkcmd.exe
HKLM\...\Run: [Persistence] => C:\Windows\system32\igfxpers.exe
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2771184 2015-03-06] (Synaptics Incorporated)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [642656 2013-02-25] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [RemoteControl10] => C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [93296 2012-07-13] (CyberLink Corp.)
HKLM-x32\...\Run: [SDTray] => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [4101576 2014-06-24] (Safer-Networking Ltd.)
HKLM-x32\...\Run: [HPMessageService] => C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPMSGSVC.exe [475448 2014-03-26] (Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [AVG_UI] => C:\Program Files (x86)\AVG\AVG2015\avgui.exe [3780520 2015-07-31] (AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [vProt] => C:\Program Files (x86)\AVG Web TuneUp\vprot.exe [3175312 2015-07-23] ()
Winlogon\Notify\SDWinLogon-x32: SDWinLogon.dll [X]
HKU\S-1-5-21-2758673428-2225819526-1960468687-1001\...\Run: [Power2GoExpress8] => C:\Program Files (x86)\CyberLink\Power2Go8\Power2GoExpress8.exe [1713416 2013-08-05] (CyberLink Corp.)

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt..)

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://g.uk.msn.com/HPNOT13/4
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://g.uk.msn.com/HPNOT13/4
HKU\S-1-5-21-2758673428-2225819526-1960468687-1001\Software\Microsoft\Internet Explorer\Main,Start Page = https://mysearch.avg.com/?cid=%7b3a4d6a7d-3d35-44ff-b89d-aa152921dac1%7d&mid=331ed69dfb0d47cd9d29719a87b26060-2e1be79fb2ee92784ebeaefca77c43dc199f7e91&lang=de&ds=avg&coid=avgtbavg&cmpid=0215av&pr=fr&d=2015-03-18%2019:25:19&v=4.1.0.411&pid=wtu&sg=&sap=hp
HKU\S-1-5-21-2758673428-2225819526-1960468687-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://g.uk.msn.com/HPNOT13/4
SearchScopes: HKLM -> {774A4080-AED8-42B0-BCEE-A4455E882970} URL = hxxp://www.amazon.de/s/ref=azs_osd_ieade?ie=UTF-8&tag=hp-de2-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
SearchScopes: HKLM -> {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = hxxp://rover.ebay.com/rover/1/707-154345-12128-2/4 ?mpre=http%3A%2F%2Fwww.ebay.com%2Fsch%2F%3F_nkw%3D{searchTerms}&keyword={searchTerms}
SearchScopes: HKLM-x32 -> {774A4080-AED8-42B0-BCEE-A4455E882970} URL = hxxp://www.amazon.de/s/ref=azs_osd_ieade?ie=UTF-8&tag=hp-de2-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
SearchScopes: HKLM-x32 -> {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = hxxp://rover.ebay.com/rover/1/707-154345-12128-2/4 ?mpre=http%3A%2F%2Fwww.ebay.com%2Fsch%2F%3F_nkw%3D{searchTerms}&keyword={searchTerms}
SearchScopes: HKU\S-1-5-21-2758673428-2225819526-1960468687-1001 -> {774A4080-AED8-42B0-BCEE-A4455E882970} URL = hxxp://www.amazon.de/s/ref=azs_osd_ieade?ie=UTF-8&tag=hp-de2-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
SearchScopes: HKU\S-1-5-21-2758673428-2225819526-1960468687-1001 -> {95B7759C-8C7F-4BF1-B163-73684A933233} URL = https://mysearch.avg.com/search?cid={3A4D6A7D-3D35-44FF-B89D-AA152921DAC1}&mid=331ed69dfb0d47cd9d29719a87b26060-2e1be79fb2ee92784ebeaefca77c43dc199f7e91&lang=de&ds=AVG&coid=avgtbavg&cmpid=0215av&pr=fr&d=2015-03-18 19:25:19&v=4.1.0.411&pid=wtu&sg=&sap=dsp&q={searchTerms}
SearchScopes: HKU\S-1-5-21-2758673428-2225819526-1960468687-1001 -> {AFBCB7E0-F91A-4951-9F31-58FEE57A25C4} URL = hxxp://nortonsafe.search.ask.com/web?q={SEARCHTERMS}&o=APN10506&l=dis&prt=NIS&chn=retail&geo=DE&ver=21&locale=de_DE&gct=kwd&qsrc=2869
SearchScopes: HKU\S-1-5-21-2758673428-2225819526-1960468687-1001 -> {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = hxxp://rover.ebay.com/rover/1/707-154345-12128-2/4 ?mpre=http%3A%2F%2Fwww.ebay.com%2Fsch%2F%3F_nkw%3D{searchTerms}&keyword={searchTerms}
BHO: Norton Identity Protection -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files (x86)\Norton Internet Security\Engine64\21.7.0.11\coIEPlg.dll [2015-03-05] (Symantec Corporation)
BHO: AVG Web TuneUp -> {95B7759C-8C7F-4BF1-B163-73684A933233} -> C:\Program Files\AVG Web TuneUp\4.1.5.143\AVG Web TuneUp.dll [2015-07-23] (AVG)
BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2013-08-28] (Hewlett-Packard)
BHO-x32: Norton Identity Protection -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files (x86)\Norton Internet Security\Engine\21.7.0.11\coIEPlg.dll [2015-03-05] (Symantec Corporation)
BHO-x32: Norton Vulnerability Protection -> {6D53EC84-6AAE-4787-AEEE-F4628F01010C} -> C:\Program Files (x86)\Norton Internet Security\Engine\21.7.0.11\IPS\IPSBHO.DLL [2015-03-05] (Symantec Corporation)
BHO-x32: AVG Web TuneUp -> {95B7759C-8C7F-4BF1-B163-73684A933233} -> C:\Program Files (x86)\AVG Web TuneUp\4.1.5.143\AVG Web TuneUp.dll [2015-07-23] (AVG)
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2013-08-28] (Hewlett-Packard)
Toolbar: HKLM - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine64\21.7.0.11\coIEPlg.dll [2015-03-05] (Symantec Corporation)
Toolbar: HKLM-x32 - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine\21.7.0.11\coIEPlg.dll [2015-03-05] (Symantec Corporation)
Tcpip\Parameters: [DhcpNameServer] 82.212.62.62 78.42.43.62
Tcpip\..\Interfaces\{9B11A29F-15F7-4841-A189-65CE72AD9D63}: [DhcpNameServer] 82.212.62.62 78.42.43.62

FireFox:
========
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\windows\SysWOW64\Adobe\Director\np32dsw_1166636.dll [2012-08-08] (Adobe Systems, Inc.)
FF Plugin-x32: @avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin -> C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\18.8.0\\npsitesafety.dll [Keine Datei]
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-02-05] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-02-05] (Intel Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3505.0912 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-09-12] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-07-15] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-07-15] (Google Inc.)
FF HKLM-x32\...\Firefox\Extensions: [{2D3F3651-74B9-4795-BDEC-6DA2F431CB62}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_21.6.0.32\coFFPlgn
FF Extension: Norton Toolbar - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_21.6.0.32\coFFPlgn [2015-08-10]

Chrome: 
=======
CHR Profile: C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Slides) - C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2014-09-28]
CHR Extension: (Google Docs) - C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-09-28]
CHR Extension: (Google Drive) - C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-09-28]
CHR Extension: (YouTube) - C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-09-28]
CHR Extension: (Google Search) - C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-09-28]
CHR Extension: (Google Sheets) - C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2014-09-28]
CHR Extension: (Allin1Convert) - C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl [2015-01-23]
CHR Extension: (Norton Identity Safe) - C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\iikflkcanblccfahdhdonehdalibjnif [2014-09-28]
CHR Extension: (Chrome Hotword Shared Module) - C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-03-12]
CHR Extension: (EasyDocMerge) - C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp [2015-08-10]
CHR Extension: (Norton Security Toolbar) - C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkfokfffehpeedafpekjeddnmnjhmcmk [2014-12-12]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-09-28]
CHR Extension: (Gmail) - C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-09-28]
CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - https://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [mkfokfffehpeedafpekjeddnmnjhmcmk] - C:\Program Files (x86)\Norton Internet Security\Engine\21.7.0.11\Exts\Chrome.crx [2015-03-18]
CHR HKLM-x32\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - https://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [mkfokfffehpeedafpekjeddnmnjhmcmk] - C:\Program Files (x86)\Norton Internet Security\Engine\21.7.0.11\Exts\Chrome.crx [2015-03-18]

==================== Dienste (Nicht auf der Ausnahmeliste) ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R2 AVGIDSAgent; C:\Program Files (x86)\AVG\AVG2015\avgidsagent.exe [3633576 2015-07-31] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files (x86)\AVG\AVG2015\avgwdsvc.exe [335656 2015-07-31] (AVG Technologies CZ, s.r.o.)
S3 BthHFSrv; C:\Windows\System32\BthHFSrv.dll [324608 2014-10-29] (Microsoft Corporation)
R2 HPWMISVC; c:\Program Files (x86)\Hewlett-Packard\HP System Event\HPWMISVC.exe [469304 2014-03-26] (Hewlett-Packard Development Company, L.P.)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15720 2013-08-22] (Intel Corporation)
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [319376 2014-10-01] (Intel Corporation)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [733696 2013-05-11] (Intel(R) Corporation) [Datei ist nicht signiert]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [822232 2013-05-11] (Intel(R) Corporation)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [131544 2015-02-05] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2015-02-05] (Intel Corporation)
R2 NIS; C:\Program Files (x86)\Norton Internet Security\Engine\21.7.0.11\NIS.exe [276336 2015-03-07] (Symantec Corporation)
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [239176 2013-02-20] (Realtek Semiconductor)
R2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [1738168 2014-06-24] (Safer-Networking Ltd.)
R2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [2088408 2014-06-27] (Safer-Networking Ltd.)
R2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [171928 2014-04-25] (Safer-Networking Ltd.)
R2 vToolbarUpdater18.8.0; C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\18.8.0\ToolbarUpdater.exe [1874320 2015-07-23] (AVG Secure Search)
S3 w3logsvc; C:\Windows\system32\inetsrv\w3logsvc.dll [76800 2015-01-17] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366520 2015-02-04] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1728592 2015-02-03] (Microsoft Corporation)
R2 WtuSystemSupport; C:\Program Files (x86)\AVG Web TuneUp\WtuSystemSupport.exe [1195920 2015-07-23] ()

===================== Treiber (Nicht auf der Ausnahmeliste) ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

S0 Avgboota; C:\Windows\System32\DRIVERS\avgboota.sys [21152 2015-03-27] (AVG Technologies CZ, s.r.o.)
R1 Avgdiska; C:\Windows\System32\DRIVERS\avgdiska.sys [162784 2015-03-11] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdrivera.sys [312752 2015-07-28] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHA; C:\Windows\System32\DRIVERS\avgidsha.sys [253408 2015-05-12] (AVG Technologies CZ, s.r.o.)
R1 Avgldx64; C:\Windows\System32\DRIVERS\avgldx64.sys [259040 2015-06-16] (AVG Technologies CZ, s.r.o.)
R0 Avgloga; C:\Windows\System32\DRIVERS\avgloga.sys [378336 2015-05-07] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx64; C:\Windows\System32\DRIVERS\avgmfx64.sys [245680 2015-07-28] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx64; C:\Windows\System32\DRIVERS\avgrkx64.sys [40928 2015-03-20] (AVG Technologies CZ, s.r.o.)
R1 Avgwfpa; C:\Windows\system32\DRIVERS\avgwfpa.sys [296896 2015-07-10] (AVG Technologies CZ, s.r.o.)
R1 BHDrvx64; C:\Program Files (x86)\Norton Internet Security\NortonData\21.6.0.32\Definitions\BASHDefs\20150224.001\BHDrvx64.sys [1622744 2015-02-03] (Symantec Corporation)
R1 ccSet_NIS; C:\Windows\system32\drivers\NISx64\1507000.00B\ccSetx64.sys [162392 2014-02-21] (Symantec Corporation)
R1 CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [91712 2013-03-05] (CyberLink)
R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [487216 2014-11-25] (Symantec Corporation)
R3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [142640 2014-11-25] (Symantec Corporation)
R1 IDSVia64; C:\Program Files (x86)\Norton Internet Security\NortonData\21.6.0.32\Definitions\IPSDefs\20150304.001\IDSvia64.sys [669400 2015-02-05] (Symantec Corporation)
S3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [129752 2014-10-23] (Malwarebytes Corporation)
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [99288 2015-02-05] (Intel Corporation)
S3 NAVENG; C:\Program Files (x86)\Norton Internet Security\NortonData\21.6.0.32\Definitions\VirusDefs\20150305.003\ENG64.SYS [129752 2015-01-22] (Symantec Corporation)
S3 NAVEX15; C:\Program Files (x86)\Norton Internet Security\NortonData\21.6.0.32\Definitions\VirusDefs\20150305.003\EX64.SYS [2137304 2015-01-22] (Symantec Corporation)
S3 RSP2STOR; C:\Windows\system32\DRIVERS\RtsP2Stor.sys [288328 2013-01-24] (Realtek Semiconductor Corp.)
S3 RTSPER; C:\Windows\System32\DRIVERS\RtsPer.sys [448072 2013-02-02] (RTS Corporation)
R3 RTWlanE; C:\Windows\system32\DRIVERS\rtwlane.sys [2946264 2015-03-06] (Realtek Semiconductor Corporation                           )
S3 SmbDrv; C:\Windows\System32\drivers\Smb_driver_AMDASF.sys [28400 2013-02-06] (Synaptics Incorporated)
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [34544 2015-03-06] (Synaptics Incorporated)
S3 SRTSP; C:\Windows\System32\Drivers\NISx64\1507000.00B\SRTSP64.SYS [876248 2014-08-26] (Symantec Corporation)
R1 SRTSPX; C:\Windows\system32\drivers\NISx64\1507000.00B\SRTSPX64.SYS [37592 2014-08-26] (Symantec Corporation)
R0 SymDS; C:\Windows\System32\drivers\NISx64\1507000.00B\SYMDS64.SYS [493656 2014-08-26] (Symantec Corporation)
R0 SymEFA; C:\Windows\System32\drivers\NISx64\1507000.00B\SYMEFA64.SYS [1148120 2014-08-26] (Symantec Corporation)
S4 SymELAM; C:\Windows\system32\drivers\NISx64\1507000.00B\SymELAM.sys [23568 2014-08-26] (Symantec Corporation)
R3 SymEvent; C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [177752 2014-12-12] (Symantec Corporation)
R1 SymIRON; C:\Windows\system32\drivers\NISx64\1507000.00B\Ironx64.SYS [266968 2014-08-06] (Symantec Corporation)
R1 SymNetS; C:\Windows\System32\Drivers\NISx64\1507000.00B\SYMNETS.SYS [593112 2014-08-26] (Symantec Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114496 2015-02-04] (Microsoft Corporation)
R3 WirelessButtonDriver; C:\Windows\System32\drivers\WirelessButtonDriver64.sys [20800 2012-08-31] (Hewlett-Packard Development Company, L.P.)

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2015-08-10 22:46 - 2015-08-10 22:47 - 00022634 _____ C:\Users\Cat\Downloads\FRST.txt
2015-08-10 22:46 - 2015-08-10 22:46 - 00000000 ____D C:\FRST
2015-08-10 22:45 - 2015-08-10 22:45 - 02171392 _____ (Farbar) C:\Users\Cat\Downloads\FRST64.exe
2015-08-10 22:41 - 2015-08-10 22:41 - 00000474 _____ C:\Users\Cat\Downloads\defogger_disable.log
2015-08-10 22:41 - 2015-08-10 22:41 - 00000000 _____ C:\Users\Cat\defogger_reenable
2015-08-10 22:39 - 2015-08-10 22:39 - 00050477 _____ C:\Users\Cat\Downloads\Defogger.exe
2015-08-10 22:23 - 2015-08-10 22:23 - 00285352 _____ C:\WINDOWS\Minidump\081015-38843-01.dmp
2015-07-31 15:26 - 2015-08-10 22:26 - 00000000 ____D C:\WINDOWS\System32\Tasks\Remediation
2015-07-28 11:02 - 2015-07-28 11:02 - 00312752 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgidsdrivera.sys
2015-07-28 11:01 - 2015-07-28 11:01 - 00245680 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgmfx64.sys
2015-07-15 00:28 - 2015-07-15 00:28 - 00000000 ____D C:\ProgramData\AVG
2015-07-15 00:22 - 2015-07-15 00:23 - 115831096 _____ (AVG Technologies) C:\Users\Cat\Downloads\avg_tuht_stf_all_2015_604_fixperf5.exe

==================== Ein Monat: Geänderte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2015-08-10 22:41 - 2015-01-17 11:45 - 00000000 ____D C:\Users\Cat
2015-08-10 22:28 - 2014-09-24 08:17 - 01984420 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2015-08-10 22:28 - 2014-09-24 07:43 - 00843606 _____ C:\WINDOWS\system32\perfh007.dat
2015-08-10 22:28 - 2014-09-24 07:43 - 00192300 _____ C:\WINDOWS\system32\perfc007.dat
2015-08-10 22:24 - 2014-09-28 23:18 - 00001132 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2015-08-10 22:23 - 2015-02-14 20:40 - 00000000 ____D C:\WINDOWS\Minidump
2015-08-10 22:23 - 2015-02-14 20:39 - 549101376 _____ C:\WINDOWS\MEMORY.DMP
2015-08-10 22:23 - 2013-08-22 16:45 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2015-08-10 22:05 - 2015-03-07 20:22 - 00000000 ____D C:\ProgramData\MFAData
2015-08-10 21:55 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\sru
2015-08-09 22:15 - 2015-01-19 12:09 - 00003934 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{794FE09C-DBB7-4076-9149-92DF80CB0DB3}
2015-08-08 22:00 - 2014-09-28 23:18 - 00001136 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-08-08 21:19 - 2013-08-22 15:25 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2015-08-08 21:16 - 2015-03-07 20:25 - 00001004 _____ C:\Users\Public\Desktop\AVG 2015.lnk
2015-08-08 21:16 - 2015-03-07 20:25 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG
2015-08-08 18:03 - 2014-09-16 21:22 - 00003600 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2758673428-2225819526-1960468687-1001
2015-08-08 10:31 - 2014-09-18 21:02 - 00000052 _____ C:\WINDOWS\SysWOW64\DOErrors.log
2015-08-08 10:25 - 2013-08-22 15:25 - 00262144 ___SH C:\WINDOWS\system32\config\ELAM
2015-08-08 10:22 - 2014-09-23 23:06 - 00016142 _____ C:\WINDOWS\PFRO.log
2015-08-05 23:12 - 2015-01-17 12:00 - 01378387 _____ C:\WINDOWS\WindowsUpdate.log
2015-08-05 23:04 - 2014-09-28 23:19 - 00002202 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2015-07-23 13:45 - 2015-06-30 23:13 - 00000000 ____D C:\Program Files\Common Files\AV
2015-07-23 13:41 - 2015-03-18 20:25 - 00000000 ____D C:\Program Files\AVG Web TuneUp
2015-07-23 13:41 - 2015-03-18 20:25 - 00000000 ____D C:\Program Files (x86)\AVG Web TuneUp
2015-07-21 17:01 - 2015-01-23 10:12 - 00000000 ____D C:\Users\Cat\Documents\Youcam
2015-07-17 22:04 - 2014-09-21 13:24 - 00000000 ____D C:\Users\Cat\AppData\Local\CrashDumps
2015-07-15 22:55 - 2014-09-28 23:18 - 00004108 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2015-07-15 22:55 - 2014-09-28 23:18 - 00003872 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2015-07-12 21:38 - 2013-11-10 21:48 - 00000000 ____D C:\ProgramData\Norton
2015-07-12 21:35 - 2014-09-18 00:07 - 00000000 ____D C:\Users\Public\Downloads\Norton

==================== Bamital & volsnap Check =================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert
C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert
C:\WINDOWS\explorer.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert
C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert
C:\WINDOWS\system32\services.exe => Datei ist digital signiert
C:\WINDOWS\system32\User32.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert
C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert
C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert
C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert


LastRegBack: 2015-08-10 22:15

==================== Ende von log ============================

-=E.O.F=-

Anbei die Addition-Datei:

Code:

ATTFilter

Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version:09-08-2015
durchgeführt von Cat (2015-08-10 22:48:14)
Gestartet von C:\Users\Cat\Downloads
Start-Modus: Normal
==========================================================


==================== Konten: =============================

Administrator (S-1-5-21-2758673428-2225819526-1960468687-500 - Administrator - Disabled)
Gast (S-1-5-21-2758673428-2225819526-1960468687-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-2758673428-2225819526-1960468687-1003 - Limited - Enabled)
Cat (S-1-5-21-2758673428-2225819526-1960468687-1001 - Administrator - Enabled) => C:\Users\Cat

==================== Sicherheits-Center ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

AV: Norton Internet Security (Disabled - Out of date) {53C7D717-52E2-B95E-FA61-6F32ECC805DB}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: AVG AntiVirus Free Edition 2015 (Enabled - Up to date) {4D41356F-32AD-7C42-C820-63775EE4F413}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Spybot - Search and Destroy (Enabled - Out of date) {9BC38DF1-3CCA-732D-A930-C1CA5F20A4B0}
AS: AVG AntiVirus Free Edition 2015 (Enabled - Up to date) {F620D48B-1497-73CC-F290-58052563BEAE}
AS: Norton Internet Security (Disabled - Out of date) {E8A636F3-74D8-B6D0-C0D1-5440974F4F66}
FW: Norton Internet Security (Disabled) {6BFC5632-188D-B806-D13E-C607121B42A0}

==================== Installierte Programme ======================

(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)

7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov)
Adobe Shockwave Player 11.6 (HKLM-x32\...\Adobe Shockwave Player) (Version: 11.6.6.636 - Adobe Systems, Inc.)
AMD Catalyst Install Manager (HKLM\...\{EA5160BE-7558-2716-01DB-FFE7F316957A}) (Version: 8.0.911.0 - Advanced Micro Devices, Inc.)
AVG 2015 (HKLM\...\AVG) (Version: 2015.0.6125 - AVG Technologies)
AVG 2015 (Version: 15.0.4392 - AVG Technologies) Hidden
AVG 2015 (Version: 15.0.6125 - AVG Technologies) Hidden
AVG Web TuneUp (HKLM-x32\...\AVG Web TuneUp) (Version: 4.1.5.143 - AVG Technologies)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
CyberLink LabelPrint (HKLM-x32\...\InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}) (Version: 2.5.3.6326 - CyberLink Corp.)
CyberLink Media Suite 10 (HKLM-x32\...\InstallShield_{1FBF6C24-C1fD-4101-A42B-0C564F9E8E79}) (Version: 10.0.6.3728 - CyberLink Corp.)
Cyberlink PhotoDirector (HKLM-x32\...\InstallShield_{39337565-330E-4ab6-A9AE-AC81E0720B10}) (Version: 3.0.4.4824 - CyberLink Corp.)
CyberLink Power2Go 8 (HKLM-x32\...\InstallShield_{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}) (Version: 8.0.4.3202 - CyberLink Corp.)
CyberLink PowerDirector 10 (HKLM-x32\...\InstallShield_{B0B4F6D2-F2AE-451A-9496-6F2F6A897B32}) (Version: 10.0.3.2606 - CyberLink Corp.)
CyberLink PowerDVD (HKLM-x32\...\InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}) (Version: 10.0.8.5004 - CyberLink Corp.)
CyberLink YouCam (HKLM-x32\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 3.5.6.6117 - CyberLink Corp.)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Energy Star (HKLM-x32\...\{FC0ADA4D-8FA5-4452-8AFF-F0A0BAC97EF7}) (Version: 1.0.9 - Hewlett-Packard Company)
Fotogalerie (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 44.0.2403.130 - Google Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.28.1 - Google Inc.) Hidden
Hewlett-Packard ACLM.NET v1.2.1.1 (x32 Version: 1.00.0000 - Hewlett-Packard Company) Hidden
HP 3D DriveGuard (HKLM\...\{AB5BCC55-18E2-46C7-9405-FF61CB888F05}) (Version: 4.2.9.1 - Hewlett-Packard Company)
HP Connected Music (Meridian - installer) (HKLM-x32\...\StartHPConnectedMusic) (Version: 1.0 - Meridian Audio Ltd)
HP CoolSense (HKLM-x32\...\{59F8C5AA-91BD-423D-BF05-09A80F39898F}) (Version: 2.10.62 - Hewlett-Packard Company)
HP Documentation (HKLM-x32\...\{B41C6B3F-F752-46EA-BC46-F26D3AD147B8}) (Version: 1.2.0.0 - Hewlett-Packard)
HP Quick Start (HKLM-x32\...\{BB27C290-AB30-4D9E-A5D1-88745AAE42E9}) (Version: 1.0.4660.30220 - Hewlett-Packard)
HP Registration Service (HKLM\...\{D1E8F2D7-7794-4245-B286-87ED86C1893C}) (Version: 1.2.6317.4309 - Hewlett-Packard)
HP Support Assistant (HKLM-x32\...\{EE202411-2C26-49E8-9784-1BC1DBF7DE96}) (Version: 7.0.39.15 - Hewlett-Packard Company)
HP System Event Utility (HKLM-x32\...\{DEF23826-DB71-4654-BC00-D5D6C20802EA}) (Version: 1.1.4 - Hewlett-Packard Company)
HP Utility Center (HKLM\...\{73237EBB-B26F-4628-8754-4EFE563D72E9}) (Version: 2.1.5 - Hewlett-Packard Company)
HP Wireless Button Driver (HKLM-x32\...\{30B2D1D8-0A07-4B71-9553-0710C5D31E35}) (Version: 1.1.2.1 - Hewlett-Packard Company)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.13.1706 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3958 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.8.1.1000 - Intel Corporation)
Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 3.0.0.63463 - Intel Corporation)
Malwarebytes Anti-Malware Version 2.0.3.1025 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.3.1025 - Malwarebytes Corporation)
Microsoft Office (HKLM-x32\...\{90150000-0138-0409-0000-0000000FF1CE}) (Version: 15.0.4454.1510 - Microsoft Corporation)
Microsoft SkyDrive (HKU\S-1-5-21-2758673428-2225819526-1960468687-1001\...\SkyDriveSetup.exe) (Version: 16.4.6013.0910 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Movie Maker (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Norton Internet Security (HKLM-x32\...\NIS) (Version: 21.7.0.11 - Symantec Corporation)
OEM Application Profile (HKLM-x32\...\{C89A97B6-F991-EBB5-77B7-927BCF420EBE}) (Version: 1.00.0000 - Ihr Firmenname)
PX Profile Update (x32 Version: 1.00.1. - AMD) Hidden
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.20.815.2013 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6870 - Realtek Semiconductor Corp.)
Realtek PCIE Card Reader (HKLM-x32\...\{BCDA54F6-C4B6-4519-A09E-FA064A6B4098}) (Version: 1.1.9200.007 - Realtek Semiconductor Corp.)
REALTEK Wireless LAN Driver (HKLM-x32\...\{A5107464-AA9B-4177-8129-5FF2F42DD322}) (Version: 1.00.12.0906 - REALTEK Semiconductor Corp.)
Spybot - Search & Destroy (HKLM-x32\...\{B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1) (Version: 2.4.40 - Safer-Networking Ltd.)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 17.0.6.2 - Synaptics Incorporated)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3505.0912 - Microsoft Corporation)

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

CustomCLSID: HKU\S-1-5-21-2758673428-2225819526-1960468687-1001_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\WINDOWS\system32\igfxEM.exe (Intel Corporation)
CustomCLSID: HKU\S-1-5-21-2758673428-2225819526-1960468687-1001_Classes\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}\InprocServer32 -> C:\Users\Cat\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64\SkyDriveShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2758673428-2225819526-1960468687-1001_Classes\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}\InprocServer32 -> C:\Users\Cat\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64\SkyDriveShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2758673428-2225819526-1960468687-1001_Classes\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}\InprocServer32 -> C:\Users\Cat\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64\SkyDriveShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2758673428-2225819526-1960468687-1001_Classes\CLSID\{F8071786-1FD0-4A66-81A1-3CBE29274458}\InprocServer32 -> C:\Users\Cat\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64\FileSyncApi64.dll (Microsoft Corporation)

==================== Wiederherstellungspunkte =========================

21-07-2015 15:52:59 Geplanter Prüfpunkt
29-07-2015 00:09:52 Geplanter Prüfpunkt
06-08-2015 07:30:24 Geplanter Prüfpunkt
08-08-2015 21:14:25 Installed AVG 2015

==================== Hosts Inhalt: ===============================

(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)

2013-08-22 15:25 - 2013-08-22 15:25 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts

==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

Task: {0D81EA95-24DD-4231-9070-EAACF3993FD7} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [2015-07-21] (Hewlett-Packard)
Task: {0FFE8BAC-D583-4825-97E6-C9C7354FDD83} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Refresh immunization => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDImmunize.exe [2014-06-24] (Safer-Networking Ltd.)
Task: {27F44169-2BC1-47FC-A7A4-6B373AB3E20B} - System32\Tasks\Norton Internet Security\Norton Error Processor => C:\Program Files (x86)\Norton Internet Security\Engine\21.7.0.11\SymErr.exe [2014-01-30] (Symantec Corporation)
Task: {48698CB8-8C01-475E-993E-6760B4A087E2} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Scan the system => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDScan.exe [2014-06-24] (Safer-Networking Ltd.)
Task: {529D8199-283C-4553-995D-7F9C0AB8E917} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [2015-07-21] (Hewlett-Packard)
Task: {626B35D9-368C-4139-B723-D909B4874E47} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-09-28] (Google Inc.)
Task: {68450A0A-3EBF-46BA-B3C4-DCB8CC0B68AA} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HPW10UpgradeReminder => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPW10UpgradeReminder.exe [2015-07-24] (Hewlett-Packard)
Task: {68FD4F64-0FF1-409F-AF17-969CFDC2C35F} - System32\Tasks\CLVDLauncher => C:\Program Files (x86)\CyberLink\Power2Go8\CLVDLauncher.exe [2013-03-12] (CyberLink Corp.)
Task: {744AF6AA-D75B-4A60-89BB-EBFBE2C107A7} - System32\Tasks\Norton Internet Security\Norton Error Analyzer => C:\Program Files (x86)\Norton Internet Security\Engine\21.7.0.11\SymErr.exe [2014-01-30] (Symantec Corporation)
Task: {789AEC6D-AEC0-4C10-AD13-5A4BE42F30FF} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Update Check => C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater7\HPSFUpdater.exe [2014-05-12] (Hewlett-Packard Company)
Task: {78D83A1B-289A-4853-AD68-FDF032C1ED55} - System32\Tasks\AVG_SYS_TASK_0215av => C:\ProgramData\Avg_Update_0215av\AVG-Secure-Search-Update_0215av.exe
Task: {7BA1FF37-EC6C-422E-A06A-78E0CC17079C} - System32\Tasks\CreateChoiceProcessTask => C:\Windows\BrowserChoice\browserchoice.exe
Task: {82165A23-20A3-4128-8B41-8491CECAE7A8} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Check for updates => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe [2014-06-27] (Safer-Networking Ltd.)
Task: {A0668EE0-B155-4478-8612-CA5885DDDA12} - System32\Tasks\Hewlett-Packard\HP CoolSense\HP CoolSense Start at Logon => C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe [2012-11-05] (Hewlett-Packard Development Company, L.P.)
Task: {A2782772-3A1B-4644-A194-A70E6030EDEF} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2012-09-27] (Hewlett-Packard Company)
Task: {A3472D58-2220-417F-833A-77BDE96E03BA} - System32\Tasks\CLMLSvc_P2G8 => C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [2013-08-05] (CyberLink)
Task: {BDA2DB9A-8681-486A-9F4F-966A5B9056F5} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2012-09-27] (Hewlett-Packard Company)
Task: {CA393F6C-7182-48E3-84B3-87063FE4D8EB} - System32\Tasks\Norton WSC Integration => C:\Program Files (x86)\Norton Internet Security\Engine\21.7.0.11\WSCStub.exe [2015-07-27] (Symantec Corporation)
Task: {DD5A9851-4185-4857-A98D-D292D620627E} - System32\Tasks\MirageAgent => C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe [2013-01-17] (CyberLink)
Task: {E2A09A6F-B2F5-4F24-A6D9-672DC5ECE82F} - System32\Tasks\0215piUpdateInfo => C:\ProgramData\Avg_Update_0215pi\0215pi_AVG-Secure-Search-Update.exe [2015-02-17] ()
Task: {E2AC3110-BD25-4190-B817-75AC83DE24DE} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-09-28] (Google Inc.)
Task: {E32E3535-341F-4601-A417-5C17F94C6BCD} - System32\Tasks\Remediation\AntimalwareMigrationTask => C:\Program Files\Common Files\AV\Norton Internet Security\Upgrade.exe [2015-07-27] (Symantec Corporation)
Task: {EEA6CDD3-A814-4F3D-BD7F-9DFD4E6E6FCE} - System32\Tasks\0615tbUpdateInfo => C:\ProgramData\Avg_Update_0615tb\0615tb_{29568A72-E141-4162-B05E-1CDDFDE147FB}.exe [2015-06-21] ()

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)

Task: C:\WINDOWS\Tasks\0215piUpdateInfo.job => C:\ProgramData\Avg_Update_0215pi\0215pi_AVG-Secure-Search-Update.exe
Task: C:\WINDOWS\Tasks\0615tbUpdateInfo.job => C:\ProgramData\Avg_Update_0615tb\0615tb_{29568A72-E141-4162-B05E-1CDDFDE147FB}.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\Synaptics TouchPad Enhancements.job => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============

2015-03-18 20:25 - 2015-07-23 13:40 - 01195920 _____ () C:\Program Files (x86)\AVG Web TuneUp\WtuSystemSupport.exe
2015-07-23 13:41 - 2015-07-23 13:40 - 00168336 _____ () C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\18.8.0\loggingserver.exe
2014-10-02 23:33 - 2014-05-13 13:04 - 00109400 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlThirdParty150.bpl
2014-10-02 23:33 - 2014-05-13 13:04 - 00167768 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlFileFormats150.bpl
2014-10-02 23:33 - 2014-05-13 13:04 - 00416600 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\DEC150.bpl
2014-10-02 23:33 - 2012-08-23 11:38 - 00574840 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\sqlite3.dll
2014-10-02 23:33 - 2012-04-03 18:06 - 00565640 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\av\BDSmartDB.dll
2015-07-23 13:41 - 2015-07-23 13:40 - 00528272 _____ () C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\18.8.0\log4cplusU.dll
2014-10-23 19:29 - 2013-08-05 09:49 - 00627672 _____ () C:\Program Files (x86)\CyberLink\Power2Go8\CLMediaLibrary.dll
2013-08-05 15:48 - 2013-08-05 15:48 - 00016856 _____ () C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvcPS.dll
2015-02-05 20:06 - 2015-02-05 20:06 - 01242584 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
2015-08-05 23:04 - 2015-07-31 08:19 - 01405768 _____ () C:\Program Files (x86)\Google\Chrome\Application\44.0.2403.130\libglesv2.dll
2015-08-05 23:04 - 2015-07-31 08:19 - 00081224 _____ () C:\Program Files (x86)\Google\Chrome\Application\44.0.2403.130\libegl.dll
2015-08-05 23:04 - 2015-07-31 08:19 - 16308040 _____ () C:\Program Files (x86)\Google\Chrome\Application\44.0.2403.130\PepperFlash\pepflashplayer.dll

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)


==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)


==================== EXE Verknüpfungen (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)


==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)


==================== Andere Bereiche ============================

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKU\S-1-5-21-2758673428-2225819526-1960468687-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Cat\Pictures\Vietnam, Dieng Hochzeit\P1020165.JPG
DNS Servers: 82.212.62.62 - 78.42.43.62
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.

==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)


==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{C7EF122F-CC0F-4854-AF5C-D5D10D777042}] => (Allow) C:\Users\Cat\AppData\Local\Temp\7zS7907.tmp\SymNRT.exe
FirewallRules: [{28FAF41D-4E69-491F-AB05-714983E5DBA4}] => (Allow) C:\Users\Cat\AppData\Local\Temp\7zS7907.tmp\SymNRT.exe
FirewallRules: [{DD991F23-FE7A-428A-8B31-E9FFAD4180C9}] => (Allow) C:\Users\Cat\AppData\Local\Temp\7zS786B.tmp\SymNRT.exe
FirewallRules: [{5061D0FD-4801-4363-8780-AA22B38D6396}] => (Allow) C:\Users\Cat\AppData\Local\Temp\7zS786B.tmp\SymNRT.exe
FirewallRules: [{37898B6F-F11A-4906-9445-853E51A8D8EA}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDirector10\PDR10.EXE
FirewallRules: [{14C599D0-6B0E-4C4D-8031-C19990B23988}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD10\PowerDVD10.EXE
FirewallRules: [{8A6E490D-3460-4CFE-BBC8-5EE9AC55126A}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{E0612598-93E1-4786-A7DB-3B758AA3F479}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{85E3F633-448A-49B6-AC93-8D74C6D6BEBA}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{4A147A1A-D410-427F-9122-811AB1F7C953}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{AA395502-1DF4-4359-BA62-97192375D692}] => (Allow) %LocalAppData%\HPConnectedMusic\Application\spotify_helper.exe
FirewallRules: [{68DAE046-8E4D-4994-8DEF-020FA8A451C6}] => (Allow) %LocalAppData%\HPConnectedMusic\Application\spotify_helper.exe
FirewallRules: [{784916B3-2044-43A8-9E91-352FE58F5534}] => (Allow) %LocalAppData%\HPConnectedMusic\Application\HPConnectedMusic.exe
FirewallRules: [{2079E930-7E52-4E5E-94CF-23C2A6F14229}] => (Allow) %LocalAppData%\HPConnectedMusic\Application\HPConnectedMusic.exe
FirewallRules: [{C462571B-8CC1-4FE1-A197-23999159BC06}] => (Allow) C:\Program Files (x86)\HPConnectedMusic\HPConnectedMusic.exe
FirewallRules: [{9625A07F-6819-4FB0-A125-A2A3FFB08ECC}] => (Allow) C:\Program Files (x86)\HPConnectedMusic\HPConnectedMusic.exe
FirewallRules: [{B3A55B4C-B136-47E4-BB45-3F584A4FF3B4}] => (Allow) LPort=1900
FirewallRules: [{FBC3D361-9D63-46FD-8ABB-14B41F15F221}] => (Allow) LPort=2869
FirewallRules: [{83819A60-6BCB-46EB-AE55-8F177877F449}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{A61215D0-0954-4FC6-890E-59B9DADA52C5}] => (Allow) C:\Users\Administrator\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe
FirewallRules: [{0DC1935F-3CE6-408E-AB97-45EBE1A5BDF4}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgmfapx.exe
FirewallRules: [{388FD2B9-740E-447C-A2C1-089547108AE8}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgmfapx.exe
FirewallRules: [{81DAE303-78C2-4735-8545-E1E35A473249}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgnsa.exe
FirewallRules: [{BF7621AA-A389-4888-A3FA-E5E4C8A53CC8}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgnsa.exe
FirewallRules: [{F7D5838B-3A1C-4706-B55F-46F6F28C041F}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgdiagex.exe
FirewallRules: [{43F9B098-D06B-485E-B5D7-8FA078B6F74F}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgdiagex.exe
FirewallRules: [{2C3806CB-4BDE-40DD-92D6-EB55E1301544}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgemca.exe
FirewallRules: [{9C5CC534-4AE9-4E09-A8A0-97C707ADD827}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgemca.exe
FirewallRules: [{3C7C49CE-0180-4651-B3C8-BAA5F673E99E}] => (Allow) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPDeviceDetection3.exe
FirewallRules: [{48C6D2B4-0B21-4B1C-B16E-102BE3F21BA1}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{1CA3DCAC-789F-416A-9CD9-8A478BF19085}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgnsa.exe
FirewallRules: [{3CB9272E-7205-4DB1-A9DD-57AD11C313C2}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgnsa.exe
FirewallRules: [{7E725ADF-3F27-4208-8BD2-0BE71E7CCA7F}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgdiagex.exe
FirewallRules: [{0B5CD47B-30E7-4652-B785-999BFF471C0B}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgdiagex.exe
FirewallRules: [{8D94FD57-3F27-4162-99B5-80C3BF2934AF}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgmfapx.exe
FirewallRules: [{DA194319-BB7F-4DB9-8175-ACEE73C22DEE}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgmfapx.exe
FirewallRules: [{95D32518-35BD-411C-8747-5C67B4B7F6B1}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgemca.exe
FirewallRules: [{AD5CFB81-CB14-428E-A6E9-EFCF20940475}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgemca.exe
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe] => Enabled:Spybot - Search & Destroy tray access
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe] => Enabled:Spybot-S&D 2 Scanner Service
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe] => Enabled:Spybot-S&D 2 Updater
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe] => Enabled:Spybot-S&D 2 Background update service

==================== Fehlerhafte Geräte im Gerätemanager =============


==================== Fehlereinträge in der Ereignisanzeige: =========================

Applikationsfehler:
==================
Error: (08/10/2015 10:18:07 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 71500

Error: (08/10/2015 10:18:07 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 71500

Error: (08/10/2015 10:18:07 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (08/10/2015 10:18:06 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 70218

Error: (08/10/2015 10:18:06 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 70218

Error: (08/10/2015 10:18:06 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (08/10/2015 10:18:04 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 68953

Error: (08/10/2015 10:18:04 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 68953

Error: (08/10/2015 10:18:04 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (08/10/2015 10:18:03 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 67687


Systemfehler:
=============
Error: (08/10/2015 10:47:48 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Der Dienst "Netzwerklistendienst" wurde mit folgendem Fehler beendet: 
%%127

Error: (08/10/2015 10:47:48 PM) (Source: DCOM) (EventID: 10010) (User: CatPC)
Description: {A47979D2-C419-11D9-A5B4-001185AD2B89}

Error: (08/10/2015 10:45:48 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Der Dienst "Netzwerklistendienst" wurde mit folgendem Fehler beendet: 
%%127

Error: (08/10/2015 10:45:48 PM) (Source: DCOM) (EventID: 10010) (User: NT-AUTORITÄT)
Description: {A47979D2-C419-11D9-A5B4-001185AD2B89}

Error: (08/10/2015 10:43:48 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Der Dienst "Netzwerklistendienst" wurde mit folgendem Fehler beendet: 
%%127

Error: (08/10/2015 10:43:48 PM) (Source: DCOM) (EventID: 10010) (User: NT-AUTORITÄT)
Description: {A47979D2-C419-11D9-A5B4-001185AD2B89}

Error: (08/10/2015 10:41:48 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Der Dienst "Netzwerklistendienst" wurde mit folgendem Fehler beendet: 
%%127

Error: (08/10/2015 10:41:48 PM) (Source: DCOM) (EventID: 10010) (User: NT-AUTORITÄT)
Description: {A47979D2-C419-11D9-A5B4-001185AD2B89}

Error: (08/10/2015 10:39:48 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Der Dienst "Netzwerklistendienst" wurde mit folgendem Fehler beendet: 
%%127

Error: (08/10/2015 10:39:48 PM) (Source: DCOM) (EventID: 10010) (User: NT-AUTORITÄT)
Description: {A47979D2-C419-11D9-A5B4-001185AD2B89}


Microsoft Office:
=========================
Error: (08/10/2015 10:18:07 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 71500

Error: (08/10/2015 10:18:07 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 71500

Error: (08/10/2015 10:18:07 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (08/10/2015 10:18:06 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 70218

Error: (08/10/2015 10:18:06 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 70218

Error: (08/10/2015 10:18:06 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (08/10/2015 10:18:04 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 68953

Error: (08/10/2015 10:18:04 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 68953

Error: (08/10/2015 10:18:04 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (08/10/2015 10:18:03 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 67687


==================== Speicherinformationen =========================== 

Processor: Intel(R) Core(TM) i5-3230M CPU @ 2.60GHz
Prozentuale Nutzung des RAM: 22%
Installierter physikalischer RAM: 8084.27 MB
Verfügbarer physikalischer RAM: 6245.64 MB
Summe virtueller Speicher: 16276.27 MB
Verfügbarer virtueller Speicher: 14296.44 MB

==================== Laufwerke ================================

Drive c: (Windows) (Fixed) (Total:444.66 GB) (Free:387.74 GB) NTFS ==>[System mit Startkomponenten (eingeholt von lesen Laufwerk)]
Drive d: (RECOVERY) (Fixed) (Total:19.89 GB) (Free:1.98 GB) NTFS ==>[System mit Startkomponenten (eingeholt von lesen Laufwerk)]

==================== MBR & Partitionstabelle ==================

========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: 845C0AED)

Partition: GPT.

==================== Ende von log ============================

Anbei die GMER-Datei: Hier kam zunächst eine Fehlermeldung, dass C/Windows/System32/config/system.: Der Prozess kann nicht auf die Daten zugreifen, da sie von einem anderen Prozess benutzt werden.

Code:

ATTFilter

GMER 2.1.19357 - hxxp://www.gmer.net
Rootkit scan 2015-08-10 23:08:29
Windows 6.2.9200  x64 \Device\Harddisk0\DR0 -> \Device\0000002c ST500LT012-1DG142 rev.1002YAM1 465,76GB
Running: Gmer-19357.exe; Driver: C:\Users\Cat\AppData\Local\Temp\pglcqpob.sys


---- User code sections - GMER 2.1 ----

.text   C:\WINDOWS\system32\svchost.exe[2868] C:\WINDOWS\system32\KERNELBASE.dll!CreateProcessInternalW                                               00007ffad952ef70 5 bytes JMP 00007ffbd0da1790
.text   C:\WINDOWS\system32\conhost.exe[2996] C:\WINDOWS\system32\KERNELBASE.dll!CreateProcessInternalW                                               00007ffad952ef70 5 bytes JMP 00007ffbd0da1790
.text   C:\WINDOWS\system32\svchost.exe[3200] C:\WINDOWS\system32\KERNELBASE.dll!CreateProcessInternalW                                               00007ffad952ef70 5 bytes JMP 00007ffbd0da1790
.text   C:\WINDOWS\system32\taskhostex.exe[3480] C:\WINDOWS\system32\KERNELBASE.dll!CreateProcessInternalW                                            00007ffad952ef70 5 bytes JMP 00007ffbd0da1790
.text   C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe[3544] C:\WINDOWS\system32\KERNELBASE.dll!CreateProcessInternalW       00007ffad952ef70 5 bytes JMP 00007ffbd0da1790
.text   C:\WINDOWS\Explorer.EXE[3656] C:\WINDOWS\system32\KERNELBASE.dll!CreateProcessInternalW                                                       00007ffad952ef70 5 bytes JMP 00007ffbd0da1790
.text   C:\WINDOWS\system32\svchost.exe[3400] C:\WINDOWS\system32\KERNELBASE.dll!CreateProcessInternalW                                               00007ffad952ef70 5 bytes JMP 00007ffbd0da1790
.text   C:\WINDOWS\system32\WerFault.exe[4088] C:\WINDOWS\system32\KERNELBASE.dll!CreateProcessInternalW                                              00007ffad952ef70 5 bytes JMP 00007ffbd0da1790
.text   C:\WINDOWS\system32\SearchIndexer.exe[2764] C:\WINDOWS\system32\KERNELBASE.dll!CreateProcessInternalW                                         00007ffad952ef70 5 bytes JMP 00007ffbd0da1790
.text   C:\WINDOWS\system32\igfxEM.exe[4604] C:\WINDOWS\system32\KERNELBASE.dll!CreateProcessInternalW                                                00007ffad952ef70 5 bytes JMP 00007ffbd0da1790
.text   C:\WINDOWS\system32\igfxHK.exe[4612] C:\WINDOWS\system32\KERNELBASE.dll!CreateProcessInternalW                                                00007ffad952ef70 5 bytes JMP 00007ffbd0da1790
.text   C:\WINDOWS\system32\igfxTray.exe[4624] C:\WINDOWS\system32\KERNELBASE.dll!CreateProcessInternalW                                              00007ffad952ef70 5 bytes JMP 00007ffbd0da1790
.text   C:\WINDOWS\system32\wbem\wmiprvse.exe[4568] C:\WINDOWS\system32\KERNELBASE.dll!CreateProcessInternalW                                         00007ffad952ef70 5 bytes JMP 00007ffbd0da1790
.text   C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe[1908] C:\WINDOWS\system32\KERNELBASE.dll!CreateProcessInternalW  00007ffad952ef70 5 bytes JMP 00007ffbd0da1790
.text   C:\Program Files\Windows Media Player\wmpnetwk.exe[4032] C:\WINDOWS\system32\KERNELBASE.dll!CreateProcessInternalW                            00007ffad952ef70 5 bytes JMP 00007ffbd0da1790

---- Threads - GMER 2.1 ----

Thread  C:\WINDOWS\system32\csrss.exe [980:1004]                                                                                                      fffff9600083c2d0
Thread  C:\WINDOWS\SYSTEM32\ntdll.dll [2280:2284]                                                                                                     00000000002a1c94
Thread  C:\WINDOWS\SYSTEM32\ntdll.dll [2280:872]                                                                                                      0000000068f8e767
Thread  C:\WINDOWS\SYSTEM32\ntdll.dll [2280:824]                                                                                                      0000000065733841
Thread  C:\WINDOWS\SYSTEM32\ntdll.dll [2280:4756]                                                                                                     0000000065733841
Thread  C:\WINDOWS\SYSTEM32\ntdll.dll [2280:4792]                                                                                                     0000000065733841
Thread  C:\WINDOWS\SYSTEM32\ntdll.dll [2280:2680]                                                                                                     0000000068f43047
Thread  C:\WINDOWS\SYSTEM32\ntdll.dll [2280:3972]                                                                                                     0000000066180b79
Thread  C:\WINDOWS\SYSTEM32\ntdll.dll [2280:4380]                                                                                                     0000000063e81900

---- Disk sectors - GMER 2.1 ----

Disk    \Device\Harddisk0\DR0                                                                                                                         unknown MBR code

---- EOF - GMER 2.1 ----

schrauber · 12.08.2015, 07:19

hi,

Downloade Dir bitte

Malwarebytes Anti-Malware

Installiere das Programm in den vorgegebenen Pfad. (Bebilderte Anleitung zu MBAM)
Starte Malwarebytes' Anti-Malware (MBAM).
Klicke im Anschluss auf Scannen, wähle den Bedrohungssuchlauf aus und klicke auf Suchlauf starten.
Lass am Ende des Suchlaufs alle Funde (falls vorhanden) in die Quarantäne verschieben. Klicke dazu auf Auswahl entfernen.
Lass deinen Rechner ggf. neu starten, um die Bereinigung abzuschließen.
Starte MBAM, klicke auf Verlauf und dann auf Anwendungsprotokolle.
Wähle das neueste Scan-Protokoll aus und klicke auf Export. Wähle Textdatei (.txt) aus und speichere die Datei als mbam.txt auf dem Desktop ab. Das Logfile von MBAM findest du hier.
Füge den Inhalt der mbam.txt mit deiner nächsten Antwort hinzu.

Downloade Dir bitte

AdwCleaner auf deinen Desktop.

Schließe alle offenen Programme und Browser. Bebilderte Anleitung zu AdwCleaner.
Starte die AdwCleaner.exe mit einem Doppelklick.
Stimme den Nutzungsbedingungen zu.
Klicke auf Optionen und vergewissere dich, dass die folgenden Punkte ausgewählt sind:
- "Tracing" Schlüssel löschen
- Winsock Einstellungen zurücksetzen
- Proxy Einstellungen zurücksetzen
- Internet Explorer Richtlinien zurücksetzen
- Chrome Richtlinien zurücksetzen
- Stelle sicher, dass alle 5 Optionen wie hier dargestellt, ausgewählt sind
Klicke auf Suchlauf und warte bis dieser abgeschlossen ist.
Klicke nun auf Löschen und bestätige auftretende Hinweise mit Ok.
Dein Rechner wird automatisch neu gestartet. Nach dem Neustart öffnet sich eine Textdatei. Poste mir deren Inhalt mit deiner nächsten Antwort.
Die Logdatei findest du auch unter C:\AdwCleaner\AdwCleaner[Cx].txt. (x = fortlaufende Nummer).

Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
Bitte lade Junkware Removal Tool auf Deinen Desktop

Starte das Tool mit Doppelklick. Ab Windows Vista (oder höher) bitte mit Rechtsklick "als Administrator ausführen" starten.
Drücke eine beliebige Taste, um das Tool zu starten.
Je nach System kann der Scan eine Weile dauern.
Wenn das Tool fertig ist wird das Logfile (JRT.txt) auf dem Desktop gespeichert und automatisch geöffnet.
Bitte poste den Inhalt der JRT.txt in Deiner nächsten Antwort.

und ein frisches FRST log bitte.

Cat88 · 12.08.2015, 23:23

vielen Dank für die schnelle Antwort.

Hier meine ausgewerteten Ergebnisse:

Malwarebytes

Code:

ATTFilter

 Malwarebytes Anti-Malware 
www.malwarebytes.org

Suchlaufdatum: 12.08.2015
Suchlaufzeit: 22:37
Protokolldatei: mbamlog.txt
Administrator: Ja

Version: 2.1.8.1057
Malware-Datenbank: v2015.08.12.05
Rootkit-Datenbank: v2015.08.06.01
Lizenz: Kostenlose Version
Malware-Schutz: Deaktiviert
Schutz vor bösartigen Websites: Deaktiviert
Selbstschutz: Deaktiviert

Betriebssystem: Windows 8.1
CPU: x64
Dateisystem: NTFS
Benutzer: Cat

Suchlauftyp: Bedrohungssuchlauf
Ergebnis: Abgeschlossen
Durchsuchte Objekte: 368254
Abgelaufene Zeit: 27 Min., 23 Sek.

Speicher: Aktiviert
Start: Aktiviert
Dateisystem: Aktiviert
Archive: Aktiviert
Rootkits: Deaktiviert
Heuristik: Aktiviert
PUP: Aktiviert
PUM: Aktiviert

Prozesse: 0
(keine bösartigen Elemente erkannt)

Module: 0
(keine bösartigen Elemente erkannt)

Registrierungsschlüssel: 0
(keine bösartigen Elemente erkannt)

Registrierungswerte: 0
(keine bösartigen Elemente erkannt)

Registrierungsdaten: 0
(keine bösartigen Elemente erkannt)

Ordner: 170
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\common, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\common\adapter, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\common\components, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\common\components\abstractbutton, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\common\components\abstractbutton\background, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\common\components\alert, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\common\components\alert\background, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\common\components\embedhtml, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\common\components\embedhtml\background, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\common\components\embedhtml\html, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\common\components\embedhtml\js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\common\components\embedscript, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\common\components\embedscript\background, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\common\components\embedscript\html, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\common\components\embedscript\js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\common\components\flare, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\common\components\flare\background, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\common\components\flare\icons, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\common\components\generic, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\common\components\generic\background, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\common\components\link, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\common\components\link\background, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\common\components\menu, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\common\components\menu\background, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\common\components\menu\css, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\common\components\menu\html, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\common\components\menu\images, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\common\components\menu\js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\common\components\rss, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\common\components\rss\background, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\common\components\thirdparty, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\common\components\thirdparty\background, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\common\components\uninstall, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\common\components\uninstall\background, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\common\components\weather, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\common\components\weather\background, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\common\js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\common\widget-api, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\common\widget-api\widgets, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\common\widget-api\widgets\common, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\common\widget-api\widgets\radio, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\common\widget-api\widgets\radio\css, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\common\widget-api\widgets\radio\js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\common\widget-api\widgets\rss, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\common\widget-api\widgets\rss\js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\common\widget-api\widgets\test, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\common\widget-api\widgets\topapps, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\common\widget-api\widgets\topapps\css, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\common\widget-api\widgets\topapps\js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\common\widget-api\widgets\weather, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\common\widget-api\widgets\weather\css, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\common\widget-api\widgets\weather\js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\components, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\components\api, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\components\api\background, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\components\api\window, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\components\defaultSearch, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\components\defaultSearch\background, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\components\defaultSearch\foreground, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\components\moviereviews, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\components\moviereviews\background, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\components\moviereviews\css, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\components\moviereviews\html, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\components\moviereviews\js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\components\radio, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\components\radio\background, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\components\radio\css, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\components\radio\foreground, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\components\radio\radioWrapper, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\components\search, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\components\search\background, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\components\search\html, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\components\supertab, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\components\supertab\css, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\components\supertab\html, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\components\supertab\js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\icons, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\images, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\native, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\native\libs, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\shared, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\_metadata, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\common, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\common\adapter, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\common\components, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\common\components\abstractbutton, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\common\components\abstractbutton\background, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\common\components\alert, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\common\components\alert\background, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\common\components\embedhtml, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\common\components\embedhtml\background, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\common\components\embedhtml\html, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\common\components\embedhtml\js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\common\components\embedscript, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\common\components\embedscript\background, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\common\components\embedscript\html, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\common\components\embedscript\js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\common\components\flare, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\common\components\flare\background, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\common\components\flare\icons, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\common\components\generic, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\common\components\generic\background, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\common\components\link, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\common\components\link\background, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\common\components\menu, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\common\components\menu\background, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\common\components\menu\css, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\common\components\menu\html, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\common\components\menu\images, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\common\components\menu\js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\common\components\rss, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\common\components\rss\background, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\common\components\thirdparty, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\common\components\thirdparty\background, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\common\components\uninstall, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\common\components\uninstall\background, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\common\components\weather, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\common\components\weather\background, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\common\js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\common\widget-api, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\common\widget-api\widgets, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\common\widget-api\widgets\common, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\common\widget-api\widgets\radio, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\common\widget-api\widgets\radio\css, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\common\widget-api\widgets\radio\js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\common\widget-api\widgets\rss, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\common\widget-api\widgets\rss\js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\common\widget-api\widgets\test, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\common\widget-api\widgets\topapps, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\common\widget-api\widgets\topapps\css, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\common\widget-api\widgets\topapps\js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\common\widget-api\widgets\weather, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\common\widget-api\widgets\weather\css, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\common\widget-api\widgets\weather\js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\components, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\components\api, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\components\api\background, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\components\api\window, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\components\defaultSearch, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\components\defaultSearch\background, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\components\defaultSearch\foreground, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\components\moviereviews, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\components\moviereviews\background, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\components\moviereviews\css, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\components\moviereviews\html, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\components\moviereviews\js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\components\radio, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\components\radio\background, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\components\radio\css, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\components\radio\foreground, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\components\radio\radioWrapper, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\components\search, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\components\search\background, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\components\search\html, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\components\supertab, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\components\supertab\css, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\components\supertab\html, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\components\supertab\js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\icons, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\images, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\native, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\native\libs, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\shared, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\_metadata, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 

Dateien: 450
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_easydocmerge.dl.tb.ask.com_0.localstorage, In Quarantäne, [fcf913f4711a3df9b62b5a439e665ba5], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_easydocmerge.dl.tb.ask.com_0.localstorage-journal, In Quarantäne, [eb0ade29038868ce32afe2bb3acac937], 
PUP.Optional.MindSpark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_easydocmerge.dl.myway.com_0.localstorage, In Quarantäne, [51a404033e4d290d2b9e505130d47c84], 
PUP.Optional.MindSpark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_easydocmerge.dl.myway.com_0.localstorage-journal, In Quarantäne, [7283df28602bf73fa3267031a65ee719], 
PUP.Optional.MindSpark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_mabloidgodmbnmnhoenmhlcjkfelomgp_0.localstorage, In Quarantäne, [d81dbb4c90fbd561e22ce9ba10f42dd3], 
PUP.Optional.MindSpark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_mabloidgodmbnmnhoenmhlcjkfelomgp_0.localstorage-journal, In Quarantäne, [16df61a697f4fc3a51bd6e359c681fe1], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\manifest.json, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\bg.html, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\buildVars, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\buildVars.js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\companionSW.js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\config.js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\contentScript.css, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\contentScript.js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\debug.html, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\debug.jade, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\extension_toolbar_api.js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\initWidgetWindow.js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\newTabContentScript.js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\options.html, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\spent.css, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\spent.html, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\spent.js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\spent2.css, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\spent2.html, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\spentJ.js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\spentK.html, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\spentK.js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\startup.js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\stub.html, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\stubby.html, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\superFrame.js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\toolbar.html, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\toolbar.js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\toolbarUI.css, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\toolbarUI.html, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\toolbarUI.js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\url.js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\common\adapter\adapterUtil.js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\common\adapter\widget-adapter.js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\common\components\abstractbutton\background\abstractButton.js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\common\components\alert\background\alertButton.js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\common\components\embedhtml\background\embedHtmlWidget.js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\common\components\embedhtml\html\embedHtmlTemplate.html, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\common\components\embedhtml\html\innerEmbedHtmlTemplate.html, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\common\components\embedhtml\js\embedHtmlUI.js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\common\components\embedscript\background\embedScriptWidget.js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\common\components\embedscript\html\embedScriptTemplate.html, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\common\components\embedscript\html\innerEmbedScriptTemplate.html, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\common\components\embedscript\js\embedScriptUI.js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\common\components\flare\background\FlareWidget.js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\common\components\flare\icons\Icon_Flare_blue.png, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\common\components\flare\icons\Icon_Flare_pink.png, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\common\components\flare\icons\Thumbs.db, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\common\components\generic\background\GenericWidget.js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\common\components\link\background\linkButton.js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\common\components\menu\README.txt, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\common\components\menu\background\menuButton.js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\common\components\menu\css\menuframe.css, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\common\components\menu\html\menuframe.html, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\common\components\menu\images\right_arrow.png, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\common\components\menu\images\right_arrow_white.png, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\common\components\menu\js\jquery-1.7.1.min.js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\common\components\menu\js\menuframe.js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\common\components\menu\js\query-string.js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\common\components\menu\js\underscore-1.3.1.min.js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\common\components\rss\background\RssWidget.js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\common\components\thirdparty\background\thirdPartyWidget.js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\common\components\uninstall\background\uninstallButton.js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\common\components\weather\background\weatherButton.js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\common\js\bs.30.js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\common\js\common.js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\common\js\dynamic.js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\common\js\enableDetect.js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\common\js\eventListening.js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\common\js\global.js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\common\js\jquery-1.7.1.min.js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\common\js\list-interaction.js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\common\js\messageEventListener.js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\common\js\navRedirector.js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\common\js\paramReplacer.js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\common\js\PartnerId.js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\common\js\set.js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\common\js\underscore-1.3.1.min.js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\common\js\underscore-1.5.2.min.js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\common\js\unifiedLogging.js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\common\widget-api\widget-context-1.0.js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\common\widget-api\widgets\common\common.js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\common\widget-api\widgets\common\eventListening.js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\common\widget-api\widgets\common\jquery-1.7.1.min.js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\common\widget-api\widgets\common\list-interaction.js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\common\widget-api\widgets\common\set.js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\common\widget-api\widgets\common\underscore-1.3.1.min.js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\common\widget-api\widgets\radio\radio-widget.html, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\common\widget-api\widgets\radio\css\radio-widget.css, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\common\widget-api\widgets\radio\js\radio-custom.js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\common\widget-api\widgets\radio\js\radio-parser.js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\common\widget-api\widgets\radio\js\radio-widget-ui.js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\common\widget-api\widgets\radio\js\radio-widget.js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\common\widget-api\widgets\rss\rssWidget.html, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\common\widget-api\widgets\rss\js\rss-widget-custom.js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\common\widget-api\widgets\rss\js\rss-widget-parse.js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\common\widget-api\widgets\rss\js\rss-widget.js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\common\widget-api\widgets\test\invalid.json, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\common\widget-api\widgets\test\jquery.js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\common\widget-api\widgets\test\qunit.css, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\common\widget-api\widgets\test\qunit.js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\common\widget-api\widgets\test\resource.json, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\common\widget-api\widgets\test\resource.xml, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\common\widget-api\widgets\test\testWidget.html, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\common\widget-api\widgets\test\testWidget.js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\common\widget-api\widgets\topapps\widget.html, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\common\widget-api\widgets\topapps\css\widget.css, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\common\widget-api\widgets\topapps\js\nanigans-topapps-feed.js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\common\widget-api\widgets\topapps\js\topapps-config.js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\common\widget-api\widgets\topapps\js\widget.js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\common\widget-api\widgets\weather\weatherButton.html, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\common\widget-api\widgets\weather\css\weatherButton.css, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\common\widget-api\widgets\weather\js\weather.js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\components\api\background\ApiBasedWidget.js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\components\api\background\widget-api-impl.js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\components\api\window\hiddenWidgetWindow.html, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\components\api\window\hiddenWidgetWindow.js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\components\api\window\hiddenWidgetWindowInit.js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\components\api\window\widgetWindow.html, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\components\api\window\widgetWindow.js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\components\defaultSearch\background\updateSearch.js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\components\defaultSearch\background\updateSearchPromptBg.js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\components\defaultSearch\foreground\07_buttons2.png, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\components\defaultSearch\foreground\08_buttons2.png, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\components\defaultSearch\foreground\defaultSearchModal.html, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\components\defaultSearch\foreground\defaultSearchModalInjector.css, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\components\defaultSearch\foreground\defaultSearchModalInjector.js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\components\defaultSearch\foreground\tvf_btn_ok.png, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\components\defaultSearch\foreground\tvf_btn_ok2.png, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\components\defaultSearch\foreground\tvf_restart_alert_icon.png, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\components\defaultSearch\foreground\tvf_restart_icon.png, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\components\defaultSearch\foreground\updateSearchPromptFg.js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\components\moviereviews\background\MovieReviewsWidget.js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\components\moviereviews\css\movieReviews.css, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\components\moviereviews\html\movieReviews.html, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\components\moviereviews\js\movieReviews.js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\components\radio\background\RadioWidget.js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\components\radio\css\toolbar-item.css, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\components\radio\foreground\button.js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\components\radio\radioWrapper\radioWrapper.html, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\components\radio\radioWrapper\radioWrapper.js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\components\search\background\searchBox.js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\components\search\html\searchSuggestions.css, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\components\search\html\searchSuggestions.html, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\components\search\html\searchSuggestions.js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\components\search\html\searchSuggestionsInit.js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\components\supertab\css\supertab.css, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\components\supertab\html\supertab.html, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\components\supertab\js\newtabfork.js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\components\supertab\js\reporting.js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\components\supertab\js\srchsugg.js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\components\supertab\js\supertab.js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\components\supertab\js\unifiedLogging.js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\components\supertab\js\__utm.js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\icons\arrowSprite.png, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\icons\icon128.png, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\icons\icon16.png, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\icons\icon19disabled.png, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\icons\icon19on.png, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\icons\icon48.png, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\icons\tb_icon_search_disappearing_ask.png, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\images\222118240.png, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\images\222118243.png, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\images\222118283.png, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\images\down_arrow.png, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\images\IDR_PRODUCT_LOGO_16.png, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\images\IDR_WEBSTORE_ICON.png, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\images\magnifying_glass.png, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\images\RadioPlayerSprite.png, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\images\search_button.png, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\images\tvf_icon_guide.png, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\images\tvf_logo.png, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\images\wrench.png, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\js\chromeUtils.js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\js\exeManager.js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\js\exeManagerNMD.js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\js\exePackageManager.js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\js\focusManager.js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\js\globalBlacklistManager.js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\js\messaging.js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\js\mutation_summary-min.js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\js\mutation_summary.js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\js\nativeMessagingDispatcher.js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\js\newTabInfo.js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\js\newTabInitialize.js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\js\options.js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\js\readLocalStorage.js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\js\reservespacefortoolbar.js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\js\reservespaceifenabled.js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\js\scriptInjector.js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\js\searchContext.js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\js\settingsOverrides.js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\js\toolbarCookieParser.js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\js\toolbarPreinit.js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\js\underscore-1.3.1.min.js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\js\URILoaderContentScript.js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\js\Widget.js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\js\widgetContentScriptInjectee.js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\js\widgetFactory.js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\js\widgetWindowManager.js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\native\cache.js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\native\ce.js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\native\debug.js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\native\ss.js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\native\libs\jquery-1.7.1.min.js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\native\libs\jquery-1.9.1.min.js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\native\libs\underscore-1.5.2.min.js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\shared\HttpURL.js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\shared\rsvp-latest.js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\shared\unifiedLogging.js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\shared\universalConsole.js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\shared\utils.js, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl\12.9.6.8598_0\_metadata\verified_contents.json, In Quarantäne, [ee0715f299f257df38c7fd88da2b45bb], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\manifest.json, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\bg.html, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\buildVars, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\buildVars.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\companionSW.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\config.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\contentScript.css, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\contentScript.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\debug.html, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\debug.jade, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\extension_toolbar_api.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\initWidgetWindow.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\newTabContentScript.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\options.html, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\spent.css, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\spent.html, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\spent.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\spent2.css, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\spent2.html, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\spentJ.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\spentK.html, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\spentK.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\startup.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\stub.html, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\stubby.html, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\superFrame.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\toolbar.html, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\toolbar.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\toolbarUI.css, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\toolbarUI.html, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\toolbarUI.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\url.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\common\adapter\adapterUtil.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\common\adapter\widget-adapter.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\common\components\abstractbutton\background\abstractButton.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\common\components\alert\background\alertButton.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\common\components\embedhtml\background\embedHtmlWidget.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\common\components\embedhtml\html\embedHtmlTemplate.html, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\common\components\embedhtml\html\innerEmbedHtmlTemplate.html, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\common\components\embedhtml\js\embedHtmlUI.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\common\components\embedscript\background\embedScriptWidget.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\common\components\embedscript\html\embedScriptTemplate.html, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\common\components\embedscript\html\innerEmbedScriptTemplate.html, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\common\components\embedscript\js\embedScriptUI.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\common\components\flare\background\FlareWidget.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\common\components\flare\icons\Icon_Flare_blue.png, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\common\components\flare\icons\Icon_Flare_pink.png, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\common\components\flare\icons\Thumbs.db, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\common\components\generic\background\GenericWidget.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\common\components\link\background\linkButton.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\common\components\menu\README.txt, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\common\components\menu\background\menuButton.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\common\components\menu\css\menuframe.css, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\common\components\menu\html\menuframe.html, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\common\components\menu\images\right_arrow.png, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\common\components\menu\images\right_arrow_white.png, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\common\components\menu\js\jquery-1.7.1.min.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\common\components\menu\js\menuframe.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\common\components\menu\js\query-string.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\common\components\menu\js\underscore-1.3.1.min.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\common\components\rss\background\RssWidget.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\common\components\thirdparty\background\thirdPartyWidget.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\common\components\uninstall\background\uninstallButton.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\common\components\weather\background\weatherButton.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\common\js\bs.30.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\common\js\common.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\common\js\dynamic.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\common\js\enableDetect.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\common\js\eventListening.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\common\js\global.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\common\js\jquery-1.7.1.min.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\common\js\list-interaction.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\common\js\messageEventListener.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\common\js\navRedirector.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\common\js\paramReplacer.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\common\js\PartnerId.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\common\js\set.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\common\js\underscore-1.3.1.min.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\common\js\underscore-1.5.2.min.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\common\js\unifiedLogging.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\common\widget-api\widget-context-1.0.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\common\widget-api\widgets\common\common.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\common\widget-api\widgets\common\eventListening.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\common\widget-api\widgets\common\jquery-1.7.1.min.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\common\widget-api\widgets\common\list-interaction.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\common\widget-api\widgets\common\set.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\common\widget-api\widgets\common\underscore-1.3.1.min.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\common\widget-api\widgets\radio\radio-widget.html, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\common\widget-api\widgets\radio\css\radio-widget.css, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\common\widget-api\widgets\radio\js\radio-custom.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\common\widget-api\widgets\radio\js\radio-parser.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\common\widget-api\widgets\radio\js\radio-widget-ui.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A,

Cat88 · 12.08.2015, 23:27

Malwarebytes Teil II:

Code:

ATTFilter

C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\common\widget-api\widgets\radio\js\radio-widget.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\common\widget-api\widgets\rss\rssWidget.html, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\common\widget-api\widgets\rss\js\rss-widget-custom.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\common\widget-api\widgets\rss\js\rss-widget-parse.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\common\widget-api\widgets\rss\js\rss-widget.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\common\widget-api\widgets\test\invalid.json, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\common\widget-api\widgets\test\jquery.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\common\widget-api\widgets\test\qunit.css, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\common\widget-api\widgets\test\qunit.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\common\widget-api\widgets\test\resource.json, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\common\widget-api\widgets\test\resource.xml, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\common\widget-api\widgets\test\testWidget.html, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\common\widget-api\widgets\test\testWidget.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\common\widget-api\widgets\topapps\widget.html, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\common\widget-api\widgets\topapps\css\widget.css, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\common\widget-api\widgets\topapps\js\nanigans-topapps-feed.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\common\widget-api\widgets\topapps\js\topapps-config.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\common\widget-api\widgets\topapps\js\widget.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\common\widget-api\widgets\weather\weatherButton.html, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\common\widget-api\widgets\weather\css\weatherButton.css, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\common\widget-api\widgets\weather\js\weather.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\components\api\background\ApiBasedWidget.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\components\api\background\widget-api-impl.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\components\api\window\hiddenWidgetWindow.html, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\components\api\window\hiddenWidgetWindow.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\components\api\window\hiddenWidgetWindowInit.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\components\api\window\widgetWindow.html, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\components\api\window\widgetWindow.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\components\defaultSearch\background\updateSearch.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\components\defaultSearch\background\updateSearchPromptBg.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\components\defaultSearch\foreground\07_buttons2.png, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\components\defaultSearch\foreground\08_buttons2.png, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\components\defaultSearch\foreground\defaultSearchModal.html, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\components\defaultSearch\foreground\defaultSearchModalInjector.css, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\components\defaultSearch\foreground\defaultSearchModalInjector.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\components\defaultSearch\foreground\tvf_btn_ok.png, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\components\defaultSearch\foreground\tvf_btn_ok2.png, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\components\defaultSearch\foreground\tvf_restart_alert_icon.png, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\components\defaultSearch\foreground\tvf_restart_icon.png, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\components\defaultSearch\foreground\updateSearchPromptFg.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\components\moviereviews\background\MovieReviewsWidget.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\components\moviereviews\css\movieReviews.css, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\components\moviereviews\html\movieReviews.html, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\components\moviereviews\js\movieReviews.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\components\radio\background\RadioWidget.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\components\radio\css\toolbar-item.css, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\components\radio\foreground\button.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\components\radio\radioWrapper\radioWrapper.html, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\components\radio\radioWrapper\radioWrapper.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\components\search\background\searchBox.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\components\search\html\searchSuggestions.css, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\components\search\html\searchSuggestions.html, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\components\search\html\searchSuggestions.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\components\search\html\searchSuggestionsInit.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\components\supertab\css\supertab.css, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\components\supertab\html\supertab.html, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\components\supertab\js\newtabfork.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\components\supertab\js\reporting.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\components\supertab\js\srchsugg.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\components\supertab\js\supertab.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\components\supertab\js\unifiedLogging.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\components\supertab\js\__utm.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\icons\arrowSprite.png, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\icons\icon128.png, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\icons\icon16.png, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\icons\icon19disabled.png, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\icons\icon19on.png, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\icons\icon48.png, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\icons\tb_icon_search_disappearing_ask.png, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\images\224324348.png, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\images\224324383.png, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\images\224324404.png, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\images\224324440.png, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\images\224324457.png, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\images\224324582.png, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\images\down_arrow.png, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\images\IDR_PRODUCT_LOGO_16.png, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\images\IDR_WEBSTORE_ICON.png, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\images\magnifying_glass.png, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\images\RadioPlayerSprite.png, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\images\search_button.png, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\images\tvf_icon_guide.png, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\images\tvf_logo.png, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\images\wrench.png, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\js\chromeUtils.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\js\exeManager.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\js\exeManagerNMD.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\js\exePackageManager.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\js\focusManager.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\js\globalBlacklistManager.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\js\messaging.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\js\mutation_summary-min.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\js\mutation_summary.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\js\nativeMessagingDispatcher.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\js\newTabInfo.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\js\newTabInitialize.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\js\options.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\js\readLocalStorage.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\js\reservespacefortoolbar.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\js\reservespaceifenabled.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\js\scriptInjector.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\js\searchContext.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\js\settingsOverrides.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\js\toolbarCookieParser.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\js\toolbarPreinit.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\js\underscore-1.3.1.min.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\js\URILoaderContentScript.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\js\Widget.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\js\widgetContentScriptInjectee.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\js\widgetFactory.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\js\widgetWindowManager.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\native\cache.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\native\ce.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\native\debug.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\native\ss.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\native\libs\jquery-1.7.1.min.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\native\libs\jquery-1.9.1.min.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\native\libs\underscore-1.5.2.min.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\shared\activePing.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\shared\buttonLogger.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\shared\competitorDnsList.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\shared\console.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\shared\FFPreferencesPersister.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\shared\httpTransport.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\shared\HttpURL.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\shared\internationalSearch.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\shared\LocalStoragePersister.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\shared\MindsparkGlobal.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\shared\MindsparkGlobal.unitTest.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\shared\MindsparkGlobalNotes.txt, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\shared\rsvp-latest.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\shared\searchSuggestLocale.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\shared\testHttpTransport.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\shared\unifiedLogger.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\shared\unifiedLogging.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\shared\universalConsole.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\shared\utils.js, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\_metadata\computed_hashes.json, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 
PUP.Optional.Mindspark.A, C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.14.7.40052_0\_metadata\verified_contents.json, In Quarantäne, [9e579a6d66254de946b9b1d47590c53b], 

Physische Sektoren: 0
(keine bösartigen Elemente erkannt)


(end)

Teil III

Adwcleaner (RO)

Code:

ATTFilter

# AdwCleaner v4.208 - Bericht erstellt 12/08/2015 um 23:26:23
# Aktualisiert 09/07/2015 von Xplode
# Datenbank : 2015-08-12.1 [Server]
# Betriebssystem : Windows 8.1  (x64)
# Benutzername : Cat - CatPC
# Gestarted von : C:\Users\Cat\Downloads\AdwCleaner_4.208.exe
# Option : Suchlauf

***** [ Dienste ] *****

Dienst Gefunden : vToolbarUpdater18.8.0

***** [ Dateien / Ordner ] *****

Datei Gefunden : C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_gcncagkkhfoombgbihckkccmkjemhohl_0.localstorage
Datei Gefunden : C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_gcncagkkhfoombgbihckkccmkjemhohl_0.localstorage-journal
Datei Gefunden : C:\Users\Public\Desktop\eBay.lnk
Ordner Gefunden : C:\Program Files (x86)\Common Files\AVG Secure Search
Ordner Gefunden : C:\ProgramData\AVG Secure Search
Ordner Gefunden : C:\ProgramData\AVG Security Toolbar
Ordner Gefunden : C:\ProgramData\Avg_Update_0615tb

***** [ Geplante Tasks ] *****

Task Gefunden : 0615tbUpdateInfo
Task Gefunden : 0615tbUpdateInfo

***** [ Verknüpfungen ] *****


***** [ Registrierungsdatenbank ] *****

Schlüssel Gefunden : HKCU\Software\Avg Secure Update
Schlüssel Gefunden : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AFBCB7E0-F91A-4951-9F31-58FEE57A25C4}
Schlüssel Gefunden : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{95B7759C-8C7F-4BF1-B163-73684A933233}
Schlüssel Gefunden : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{95B7759C-8C7F-4BF1-B163-73684A933233}
Schlüssel Gefunden : [x64] HKCU\Software\Avg Secure Update
Schlüssel Gefunden : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
Schlüssel Gefunden : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AFBCB7E0-F91A-4951-9F31-58FEE57A25C4}
Schlüssel Gefunden : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AFBCB7E0-F91A-4951-9F31-58FEE57A25C4}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{933B95E2-E7B7-4AD9-B952-7AC336682AE3}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{95B7759C-8C7F-4BF1-B163-73684A933233}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\S
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi.1
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94}
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}
Schlüssel Gefunden : HKLM\SOFTWARE\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\AVG Secure Search
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\CLSID\{95B7759C-8C7F-4BF1-B163-73684A933233}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}
Schlüssel Gefunden : HKU\.DEFAULT\Software\Avg Secure Update
Wert Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [vProt]

***** [ Internetbrowser ] *****

-\\ Internet Explorer v11.0.9600.17416


-\\ Google Chrome v44.0.2403.155


*************************

AdwCleaner[R0].txt - [3521 Bytes] - [12/08/2015 23:26:23]

########## EOF - C:\AdwCleaner\AdwCleaner[R0].txt - [3580 Bytes] ##########

Adwcleaner (SO)

Code:

ATTFilter

# AdwCleaner v4.208 - Bericht erstellt 12/08/2015 um 23:28:22
# Aktualisiert 09/07/2015 von Xplode
# Datenbank : 2015-08-12.1 [Server]
# Betriebssystem : Windows 8.1  (x64)
# Benutzername : Cat - CatPC
# Gestarted von : C:\Users\Cat\Downloads\AdwCleaner_4.208.exe
# Option : Löschen

***** [ Dienste ] *****

[#] Dienst Gelöscht : vToolbarUpdater18.8.0

***** [ Dateien / Ordner ] *****

Ordner Gelöscht : C:\ProgramData\AVG Secure Search
Ordner Gelöscht : C:\ProgramData\AVG Security Toolbar
Ordner Gelöscht : C:\ProgramData\Avg_Update_0615tb
Ordner Gelöscht : C:\Program Files (x86)\Common Files\AVG Secure Search
Datei Gelöscht : C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_gcncagkkhfoombgbihckkccmkjemhohl_0.localstorage
Datei Gelöscht : C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_gcncagkkhfoombgbihckkccmkjemhohl_0.localstorage-journal
Datei Gelöscht : C:\Users\Public\Desktop\eBay.lnk

***** [ Geplante Tasks ] *****

Task Gelöscht : 0615tbUpdateInfo

***** [ Verknüpfungen ] *****


***** [ Registrierungsdatenbank ] *****

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\S
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi.1
Wert Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [vProt]
Schlüssel Gelöscht : HKLM\SOFTWARE\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{933B95E2-E7B7-4AD9-B952-7AC336682AE3}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{95B7759C-8C7F-4BF1-B163-73684A933233}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{95B7759C-8C7F-4BF1-B163-73684A933233}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{95B7759C-8C7F-4BF1-B163-73684A933233}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\CLSID\{95B7759C-8C7F-4BF1-B163-73684A933233}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}
Schlüssel Gelöscht : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
Schlüssel Gelöscht : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AFBCB7E0-F91A-4951-9F31-58FEE57A25C4}
Schlüssel Gelöscht : HKCU\Software\Avg Secure Update
Schlüssel Gelöscht : HKU\.DEFAULT\Software\Avg Secure Update
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\AVG Secure Search

***** [ Internetbrowser ] *****

-\\ Internet Explorer v11.0.9600.17416


-\\ Google Chrome v44.0.2403.155


*************************

AdwCleaner[R0].txt - [3691 Bytes] - [12/08/2015 23:26:23]
AdwCleaner[S0].txt - [3259 Bytes] - [12/08/2015 23:28:22]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [3318  Bytes] ##########

Code:

ATTFilter

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 7.5.6 (08.10.2015:1)
OS: Windows 8.1 x64
Ran by Cat on 12.08.2015 at 23:43:01,83
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Tasks



~~~ Registry Values

Successfully repaired: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-18\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-19\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-20\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-21-2758673428-2225819526-1960468687-1001\Software\Microsoft\Internet Explorer\Main\\Start Page



~~~ Registry Keys



~~~ Files



~~~ Folders



~~~ Chrome


[C:\Users\Cat\Appdata\Local\Google\Chrome\User Data\Default\Preferences] - default search provider reset

[C:\Users\Cat\Appdata\Local\Google\Chrome\User Data\Default\Preferences] - Extensions Deleted:
gcncagkkhfoombgbihckkccmkjemhohl

[C:\Users\Cat\Appdata\Local\Google\Chrome\User Data\Default\Secure Preferences] - default search provider reset

[C:\Users\Cat\Appdata\Local\Google\Chrome\User Data\Default\Secure Preferences] - Extensions Deleted:
[
  gcncagkkhfoombgbihckkccmkjemhohl
]





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 12.08.2015 at 23:50:18,38
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Code:

ATTFilter

Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:12-08-2015
durchgeführt von Cat (Administrator) auf CatPC (12-08-2015 23:54:53)
Gestartet von C:\Users\Cat\Downloads
Geladene Profile: Cat (Verfügbare Profile: Cat)
Platform: Windows 8.1 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: Chrome)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(Symantec Corporation) C:\Program Files (x86)\Norton Internet Security\Engine\21.7.0.11\nis.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
(Symantec Corporation) C:\Program Files (x86)\Norton Internet Security\Engine\21.7.0.11\nis.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2015\avgwdsvc.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2015\avgnsa.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2015\avgemca.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2015\avgrsa.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2015\avgcsrva.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe


==================== Registry (Nicht auf der Ausnahmeliste) ==================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7165000 2014-10-23] (Realtek Semiconductor)
HKLM\...\Run: [HotKeysCmds] => C:\Windows\system32\hkcmd.exe
HKLM\...\Run: [Persistence] => C:\Windows\system32\igfxpers.exe
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2771184 2015-03-06] (Synaptics Incorporated)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [642656 2013-02-25] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [RemoteControl10] => C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [93296 2012-07-13] (CyberLink Corp.)
HKLM-x32\...\Run: [SDTray] => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [4101576 2014-06-24] (Safer-Networking Ltd.)
HKLM-x32\...\Run: [HPMessageService] => C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPMSGSVC.exe [475448 2014-03-26] (Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [AVG_UI] => C:\Program Files (x86)\AVG\AVG2015\avgui.exe [3780520 2015-07-31] (AVG Technologies CZ, s.r.o.)
Winlogon\Notify\SDWinLogon-x32: SDWinLogon.dll [X]
HKU\S-1-5-21-2758673428-2225819526-1960468687-1001\...\Run: [Power2GoExpress8] => C:\Program Files (x86)\CyberLink\Power2Go8\Power2GoExpress8.exe [1713416 2013-08-05] (CyberLink Corp.)
HKU\S-1-5-21-2758673428-2225819526-1960468687-1001\...\RunOnce: [Report] => C:\AdwCleaner\AdwCleaner[S0].txt [3422 2015-08-12] ()

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt..)

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://g.uk.msn.com/HPNOT13/4
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://g.uk.msn.com/HPNOT13/4
HKU\S-1-5-21-2758673428-2225819526-1960468687-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://g.uk.msn.com/HPNOT13/4
SearchScopes: HKLM -> {774A4080-AED8-42B0-BCEE-A4455E882970} URL = hxxp://www.amazon.de/s/ref=azs_osd_ieade?ie=UTF-8&tag=hp-de2-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
SearchScopes: HKLM -> {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = hxxp://rover.ebay.com/rover/1/707-154345-12128-2/4 ?mpre=http%3A%2F%2Fwww.ebay.com%2Fsch%2F%3F_nkw%3D{searchTerms}&keyword={searchTerms}
SearchScopes: HKLM-x32 -> {774A4080-AED8-42B0-BCEE-A4455E882970} URL = hxxp://www.amazon.de/s/ref=azs_osd_ieade?ie=UTF-8&tag=hp-de2-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
SearchScopes: HKLM-x32 -> {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = hxxp://rover.ebay.com/rover/1/707-154345-12128-2/4 ?mpre=http%3A%2F%2Fwww.ebay.com%2Fsch%2F%3F_nkw%3D{searchTerms}&keyword={searchTerms}
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-21-2758673428-2225819526-1960468687-1001 -> {774A4080-AED8-42B0-BCEE-A4455E882970} URL = hxxp://www.amazon.de/s/ref=azs_osd_ieade?ie=UTF-8&tag=hp-de2-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
SearchScopes: HKU\S-1-5-21-2758673428-2225819526-1960468687-1001 -> {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = hxxp://rover.ebay.com/rover/1/707-154345-12128-2/4 ?mpre=http%3A%2F%2Fwww.ebay.com%2Fsch%2F%3F_nkw%3D{searchTerms}&keyword={searchTerms}
BHO: Norton Identity Protection -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files (x86)\Norton Internet Security\Engine64\21.7.0.11\coIEPlg.dll [2015-03-05] (Symantec Corporation)
BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2013-08-28] (Hewlett-Packard)
BHO-x32: Norton Identity Protection -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files (x86)\Norton Internet Security\Engine\21.7.0.11\coIEPlg.dll [2015-03-05] (Symantec Corporation)
BHO-x32: Norton Vulnerability Protection -> {6D53EC84-6AAE-4787-AEEE-F4628F01010C} -> C:\Program Files (x86)\Norton Internet Security\Engine\21.7.0.11\IPS\IPSBHO.DLL [2015-03-05] (Symantec Corporation)
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2013-08-28] (Hewlett-Packard)
Toolbar: HKLM - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine64\21.7.0.11\coIEPlg.dll [2015-03-05] (Symantec Corporation)
Toolbar: HKLM-x32 - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine\21.7.0.11\coIEPlg.dll [2015-03-05] (Symantec Corporation)
Tcpip\Parameters: [DhcpNameServer] 82.212.62.62 78.42.43.62
Tcpip\..\Interfaces\{9B11A29F-15F7-4841-A189-65CE72AD9D63}: [DhcpNameServer] 82.212.62.62 78.42.43.62

FireFox:
========
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\windows\SysWOW64\Adobe\Director\np32dsw_1166636.dll [2012-08-08] (Adobe Systems, Inc.)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-02-05] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-02-05] (Intel Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3505.0912 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-09-12] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-07-15] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-07-15] (Google Inc.)
FF HKLM-x32\...\Firefox\Extensions: [{2D3F3651-74B9-4795-BDEC-6DA2F431CB62}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_21.6.0.32\coFFPlgn
FF Extension: Norton Toolbar - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_21.6.0.32\coFFPlgn [2015-08-12]

Chrome: 
=======
CHR Profile: C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Slides) - C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2014-09-28]
CHR Extension: (Google Docs) - C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-09-28]
CHR Extension: (Google Drive) - C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-09-28]
CHR Extension: (YouTube) - C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-09-28]
CHR Extension: (Google Search) - C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-09-28]
CHR Extension: (Google Sheets) - C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2014-09-28]
CHR Extension: (Norton Identity Safe) - C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\iikflkcanblccfahdhdonehdalibjnif [2014-09-28]
CHR Extension: (Chrome Hotword Shared Module) - C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-03-12]
CHR Extension: (Norton Security Toolbar) - C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkfokfffehpeedafpekjeddnmnjhmcmk [2014-12-12]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-09-28]
CHR Extension: (Gmail) - C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-09-28]
CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - https://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [mkfokfffehpeedafpekjeddnmnjhmcmk] - C:\Program Files (x86)\Norton Internet Security\Engine\21.7.0.11\Exts\Chrome.crx [2015-03-18]
CHR HKLM-x32\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - https://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [mkfokfffehpeedafpekjeddnmnjhmcmk] - C:\Program Files (x86)\Norton Internet Security\Engine\21.7.0.11\Exts\Chrome.crx [2015-03-18]

==================== Dienste (Nicht auf der Ausnahmeliste) ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

S2 AVGIDSAgent; C:\Program Files (x86)\AVG\AVG2015\avgidsagent.exe [3633576 2015-07-31] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files (x86)\AVG\AVG2015\avgwdsvc.exe [335656 2015-07-31] (AVG Technologies CZ, s.r.o.)
S3 BthHFSrv; C:\Windows\System32\BthHFSrv.dll [324608 2014-10-29] (Microsoft Corporation)
S2 HPWMISVC; c:\Program Files (x86)\Hewlett-Packard\HP System Event\HPWMISVC.exe [469304 2014-03-26] (Hewlett-Packard Development Company, L.P.)
S2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15720 2013-08-22] (Intel Corporation)
S2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [319376 2014-10-01] (Intel Corporation)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [733696 2013-05-11] (Intel(R) Corporation) [Datei ist nicht signiert]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [822232 2013-05-11] (Intel(R) Corporation)
S2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [131544 2015-02-05] (Intel Corporation)
S2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2015-02-05] (Intel Corporation)
S2 MBAMService; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe [1133880 2015-06-18] (Malwarebytes Corporation)
R2 NIS; C:\Program Files (x86)\Norton Internet Security\Engine\21.7.0.11\NIS.exe [276336 2015-03-07] (Symantec Corporation)
S2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [239176 2013-02-20] (Realtek Semiconductor)
R2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [1738168 2014-06-24] (Safer-Networking Ltd.)
R2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [2088408 2014-06-27] (Safer-Networking Ltd.)
R2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [171928 2014-04-25] (Safer-Networking Ltd.)
S3 w3logsvc; C:\Windows\system32\inetsrv\w3logsvc.dll [76800 2015-01-17] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366520 2015-02-04] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1728592 2015-02-03] (Microsoft Corporation)
S2 WtuSystemSupport; C:\Program Files (x86)\AVG Web TuneUp\WtuSystemSupport.exe [1195920 2015-07-23] ()

===================== Treiber (Nicht auf der Ausnahmeliste) ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

S0 Avgboota; C:\Windows\System32\DRIVERS\avgboota.sys [21152 2015-03-27] (AVG Technologies CZ, s.r.o.)
R1 Avgdiska; C:\Windows\System32\DRIVERS\avgdiska.sys [162784 2015-03-11] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdrivera.sys [312752 2015-07-28] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHA; C:\Windows\System32\DRIVERS\avgidsha.sys [253408 2015-05-12] (AVG Technologies CZ, s.r.o.)
R1 Avgldx64; C:\Windows\System32\DRIVERS\avgldx64.sys [259040 2015-06-16] (AVG Technologies CZ, s.r.o.)
R0 Avgloga; C:\Windows\System32\DRIVERS\avgloga.sys [378336 2015-05-07] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx64; C:\Windows\System32\DRIVERS\avgmfx64.sys [245680 2015-07-28] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx64; C:\Windows\System32\DRIVERS\avgrkx64.sys [40928 2015-03-20] (AVG Technologies CZ, s.r.o.)
R1 Avgwfpa; C:\Windows\system32\DRIVERS\avgwfpa.sys [296896 2015-07-10] (AVG Technologies CZ, s.r.o.)
R1 BHDrvx64; C:\Program Files (x86)\Norton Internet Security\NortonData\21.6.0.32\Definitions\BASHDefs\20150224.001\BHDrvx64.sys [1622744 2015-02-03] (Symantec Corporation)
R1 ccSet_NIS; C:\Windows\system32\drivers\NISx64\1507000.00B\ccSetx64.sys [162392 2014-02-21] (Symantec Corporation)
R1 CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [91712 2013-03-05] (CyberLink)
R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [487216 2014-11-25] (Symantec Corporation)
R3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [142640 2014-11-25] (Symantec Corporation)
R1 IDSVia64; C:\Program Files (x86)\Norton Internet Security\NortonData\21.6.0.32\Definitions\IPSDefs\20150304.001\IDSvia64.sys [669400 2015-02-05] (Symantec Corporation)
R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [25816 2015-06-18] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [64216 2015-06-18] (Malwarebytes Corporation)
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [99288 2015-02-05] (Intel Corporation)
S3 NAVENG; C:\Program Files (x86)\Norton Internet Security\NortonData\21.6.0.32\Definitions\VirusDefs\20150305.003\ENG64.SYS [129752 2015-01-22] (Symantec Corporation)
S3 NAVEX15; C:\Program Files (x86)\Norton Internet Security\NortonData\21.6.0.32\Definitions\VirusDefs\20150305.003\EX64.SYS [2137304 2015-01-22] (Symantec Corporation)
S3 RSP2STOR; C:\Windows\system32\DRIVERS\RtsP2Stor.sys [288328 2013-01-24] (Realtek Semiconductor Corp.)
S3 RTSPER; C:\Windows\System32\DRIVERS\RtsPer.sys [448072 2013-02-02] (RTS Corporation)
R3 RTWlanE; C:\Windows\system32\DRIVERS\rtwlane.sys [2946264 2015-03-06] (Realtek Semiconductor Corporation                           )
S3 SmbDrv; C:\Windows\System32\drivers\Smb_driver_AMDASF.sys [28400 2013-02-06] (Synaptics Incorporated)
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [34544 2015-03-06] (Synaptics Incorporated)
S3 SRTSP; C:\Windows\System32\Drivers\NISx64\1507000.00B\SRTSP64.SYS [876248 2014-08-26] (Symantec Corporation)
R1 SRTSPX; C:\Windows\system32\drivers\NISx64\1507000.00B\SRTSPX64.SYS [37592 2014-08-26] (Symantec Corporation)
R0 SymDS; C:\Windows\System32\drivers\NISx64\1507000.00B\SYMDS64.SYS [493656 2014-08-26] (Symantec Corporation)
R0 SymEFA; C:\Windows\System32\drivers\NISx64\1507000.00B\SYMEFA64.SYS [1148120 2014-08-26] (Symantec Corporation)
S4 SymELAM; C:\Windows\system32\drivers\NISx64\1507000.00B\SymELAM.sys [23568 2014-08-26] (Symantec Corporation)
R3 SymEvent; C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [177752 2014-12-12] (Symantec Corporation)
R1 SymIRON; C:\Windows\system32\drivers\NISx64\1507000.00B\Ironx64.SYS [266968 2014-08-06] (Symantec Corporation)
R1 SymNetS; C:\Windows\System32\Drivers\NISx64\1507000.00B\SYMNETS.SYS [593112 2014-08-26] (Symantec Corporation)
R3 WirelessButtonDriver; C:\Windows\System32\drivers\WirelessButtonDriver64.sys [20800 2012-08-31] (Hewlett-Packard Development Company, L.P.)

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2015-08-12 23:54 - 2015-08-12 23:54 - 00000000 ____D C:\Users\Cat\Downloads\FRST-OlderVersion
2015-08-12 23:51 - 2015-08-12 23:52 - 00001842 _____ C:\Users\Cat\Downloads\JRT.txt
2015-08-12 23:50 - 2015-08-12 23:50 - 00001857 _____ C:\Users\Cat\Desktop\JRT.txt
2015-08-12 23:41 - 2015-08-12 23:41 - 01791580 _____ (Malwarebytes Corporation) C:\Users\Cat\Downloads\JRT (1).exe
2015-08-12 23:40 - 2015-08-12 23:40 - 01791580 _____ (Malwarebytes Corporation) C:\Users\Cat\Downloads\JRT.exe
2015-08-12 23:22 - 2015-08-12 23:28 - 00000000 ____D C:\AdwCleaner
2015-08-12 23:21 - 2015-08-12 23:21 - 02248704 _____ C:\Users\Cat\Downloads\AdwCleaner_4.208.exe
2015-08-12 22:12 - 2015-08-12 22:13 - 24345872 _____ (Malwarebytes Corporation ) C:\Users\Cat\Downloads\mbam-setup-2.1.8.1057.exe
2015-08-10 23:08 - 2015-08-10 23:26 - 00005039 _____ C:\Users\Cat\Downloads\Gmer.txt
2015-08-10 22:53 - 2015-08-10 22:53 - 00380416 _____ C:\Users\Cat\Downloads\Gmer-19357.exe
2015-08-10 22:48 - 2015-08-10 23:19 - 00031406 _____ C:\Users\Cat\Downloads\Addition.txt
2015-08-10 22:46 - 2015-08-12 23:54 - 00018835 _____ C:\Users\Cat\Downloads\FRST.txt
2015-08-10 22:46 - 2015-08-12 23:54 - 00000000 ____D C:\FRST
2015-08-10 22:45 - 2015-08-12 23:54 - 02173952 _____ (Farbar) C:\Users\Cat\Downloads\FRST64.exe
2015-08-10 22:41 - 2015-08-10 23:11 - 00000470 _____ C:\Users\Cat\Downloads\defogger_disable.log
2015-08-10 22:41 - 2015-08-10 22:41 - 00000000 _____ C:\Users\Cat\defogger_reenable
2015-08-10 22:39 - 2015-08-10 22:39 - 00050477 _____ C:\Users\Cat\Downloads\Defogger.exe
2015-08-10 22:23 - 2015-08-10 22:23 - 00285352 _____ C:\WINDOWS\Minidump\081015-38843-01.dmp
2015-07-31 15:26 - 2015-08-12 23:39 - 00000000 ____D C:\WINDOWS\System32\Tasks\Remediation
2015-07-28 11:02 - 2015-07-28 11:02 - 00312752 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgidsdrivera.sys
2015-07-28 11:01 - 2015-07-28 11:01 - 00245680 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgmfx64.sys
2015-07-15 00:28 - 2015-07-15 00:28 - 00000000 ____D C:\ProgramData\AVG
2015-07-15 00:22 - 2015-07-15 00:23 - 115831096 _____ (AVG Technologies) C:\Users\Cat\Downloads\avg_tuht_stf_all_2015_604_fixperf5.exe

==================== Ein Monat: Geänderte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2015-08-12 23:42 - 2014-09-24 08:17 - 01984420 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2015-08-12 23:42 - 2014-09-24 07:43 - 00843606 _____ C:\WINDOWS\system32\perfh007.dat
2015-08-12 23:42 - 2014-09-24 07:43 - 00192300 _____ C:\WINDOWS\system32\perfc007.dat
2015-08-12 23:38 - 2013-08-22 15:25 - 00262144 ___SH C:\WINDOWS\system32\config\ELAM
2015-08-12 23:37 - 2014-09-28 23:18 - 00001132 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2015-08-12 23:37 - 2013-08-22 16:45 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2015-08-12 23:36 - 2013-08-22 15:25 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2015-08-12 23:08 - 2015-01-23 10:19 - 00053760 ___SH C:\Users\Cat\Desktop\Thumbs.db
2015-08-12 23:00 - 2014-09-28 23:18 - 00001136 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-08-12 23:00 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\sru
2015-08-12 22:44 - 2015-01-17 12:00 - 01417261 _____ C:\WINDOWS\WindowsUpdate.log
2015-08-12 22:36 - 2015-01-19 12:09 - 00003934 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{794FE09C-DBB7-4076-9149-92DF80CB0DB3}
2015-08-12 22:21 - 2014-09-16 21:22 - 00003600 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2758673428-2225819526-1960468687-1001
2015-08-12 22:15 - 2014-10-03 00:49 - 00113880 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2015-08-12 22:14 - 2014-10-03 00:49 - 00001125 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2015-08-12 22:14 - 2014-10-03 00:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 
2015-08-12 22:14 - 2014-10-03 00:49 - 00000000 ____D C:\Program Files (x86)\ Malwarebytes Anti-Malware 
2015-08-12 22:06 - 2014-09-28 23:19 - 00002202 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2015-08-12 22:00 - 2015-03-07 20:22 - 00000000 ____D C:\ProgramData\MFAData
2015-08-10 22:41 - 2015-01-17 11:45 - 00000000 ____D C:\Users\Cat
2015-08-10 22:23 - 2015-02-14 20:40 - 00000000 ____D C:\WINDOWS\Minidump
2015-08-10 22:23 - 2015-02-14 20:39 - 549101376 _____ C:\WINDOWS\MEMORY.DMP
2015-08-08 21:16 - 2015-03-07 20:25 - 00001004 _____ C:\Users\Public\Desktop\AVG 2015.lnk
2015-08-08 21:16 - 2015-03-07 20:25 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG
2015-08-08 10:31 - 2014-09-18 21:02 - 00000052 _____ C:\WINDOWS\SysWOW64\DOErrors.log
2015-08-08 10:22 - 2014-09-23 23:06 - 00016142 _____ C:\WINDOWS\PFRO.log
2015-07-23 13:45 - 2015-06-30 23:13 - 00000000 ____D C:\Program Files\Common Files\AV
2015-07-23 13:41 - 2015-03-18 20:25 - 00000000 ____D C:\Program Files\AVG Web TuneUp
2015-07-23 13:41 - 2015-03-18 20:25 - 00000000 ____D C:\Program Files (x86)\AVG Web TuneUp
2015-07-21 17:01 - 2015-01-23 10:12 - 00000000 ____D C:\Users\Cat\Documents\Youcam
2015-07-17 22:04 - 2014-09-21 13:24 - 00000000 ____D C:\Users\Cat\AppData\Local\CrashDumps
2015-07-15 22:55 - 2014-09-28 23:18 - 00004108 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2015-07-15 22:55 - 2014-09-28 23:18 - 00003872 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore

Einige Dateien in TEMP:
====================
C:\Users\Cat\AppData\Local\Temp\Quarantine.exe
C:\Users\Cat\AppData\Local\Temp\sqlite3.dll


==================== Bamital & volsnap =================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert
C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert
C:\WINDOWS\explorer.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert
C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert
C:\WINDOWS\system32\services.exe => Datei ist digital signiert
C:\WINDOWS\system32\User32.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert
C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert
C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert
C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert


LastRegBack: 2015-08-12 22:08

==================== Ende von Ergebnis ============================

schrauber · 13.08.2015, 14:48

ESET Online Scanner

Hier findest du eine bebilderte Anleitung zu ESET Online Scanner
Lade und starte Eset Online Scanner
Setze einen Haken bei Ja, ich bin mit den Nutzungsbedingungen einverstanden und klicke auf Starten.
Aktiviere die "Erkennung von eventuell unerwünschten Anwendungen" und wähle folgende Einstellungen.
Klicke auf Starten.
Die Signaturen werden heruntergeladen, der Scan beginnt automatisch.
Klicke am Ende des Suchlaufs auf Fertig stellen.
Schließe das Fenster von ESET.
Explorer öffnen.
C:\Programme\Eset\EsetOnlineScanner\log.txt (bei 64 Bit auch C:\Programme (x86)\Eset\EsetOnlineScanner\log.txt) suchen und mit Deinem Editor öffnen (bebildert).
Logfile hier posten.
Deinstallation: Systemsteuerung => Software / Programme deinstallieren => Eset Online Scanner V3 entfernen.
Manuell folgenden Ordner löschen und Papierkorb leeren => C:\Programme\Eset

Downloade Dir bitte

SecurityCheck und:

Speichere es auf dem Desktop.
Starte SecurityCheck.exe und folge den Anweisungen in der DOS-Box.
Wenn der Scan beendet wurde sollte sich ein Textdokument (checkup.txt) öffnen.

Poste den Inhalt bitte hier.

und ein frisches FRST log bitte. Noch Probleme?

Cat88 · 17.08.2015, 22:49

Ergebnis ESET:

Code:

ATTFilter

ESETSmartInstaller@High as downloader log:
all ok
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# EOSSerial=619f0d5e5bebff4981d09a174416f827
# end=init
# utc_time=2015-08-17 07:11:04
# local_time=2015-08-17 09:11:04 (+0100, Mitteleuropäische Sommerzeit)
# country="Germany"
# osver=6.2.9200 NT 
ESETSmartInstaller@High as downloader log:
all ok
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# EOSSerial=619f0d5e5bebff4981d09a174416f827
# end=init
# utc_time=2015-08-17 07:45:22
# local_time=2015-08-17 09:45:22 (+0100, Mitteleuropäische Sommerzeit)
# country="Germany"
# osver=6.2.9200 NT 
Update Init
Update Download
Update Finalize
Updated modules version: 25319
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# EOSSerial=619f0d5e5bebff4981d09a174416f827
# end=updated
# utc_time=2015-08-17 07:50:05
# local_time=2015-08-17 09:50:05 (+0100, Mitteleuropäische Sommerzeit)
# country="Germany"
# osver=6.2.9200 NT 
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.7777
# api_version=3.1.1
# EOSSerial=619f0d5e5bebff4981d09a174416f827
# engine=25319
# end=finished
# remove_checked=false
# archives_checked=true
# unwanted_checked=true
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2015-08-17 09:07:41
# local_time=2015-08-17 11:07:41 (+0100, Mitteleuropäische Sommerzeit)
# country="Germany"
# lang=1031
# osver=6.2.9200 NT 
# compatibility_mode_1='AVG AntiVirus Free Edition 2015'
# compatibility_mode=1055 16777213 100 100 97310 126979645 0 0
# compatibility_mode_1='Norton Internet Security'
# compatibility_mode=3597 16777213 100 100 823532 202442246 0 0
# compatibility_mode_1=''
# compatibility_mode=5893 16776574 100 94 13822891 64726954 0 0
# scanned=212432
# found=1
# cleaned=0
# scan_time=4656
sh=2811837DAF7196D1220B846472F451E1DFA9F6AA ft=1 fh=24dc3a4379ffc327 vn="NSIS/TrojanDownloader.Adload.AP Trojaner" ac=I fn="C:\Users\Cat\Downloads\FLVPlayer-Chrome.exe"

Und den Secrurity Check:

Code:

ATTFilter

 Results of screen317's Security Check version 1.006  
   x64 (UAC is enabled)  
 Internet Explorer 11  
``````````````Antivirus/Firewall Check:`````````````` 
Norton Internet Security          
Windows Defender                  
AVG AntiVirus Free Edition 2015   
 Antivirus up to date!   
`````````Anti-malware/Other Utilities Check:````````` 
 Spybot - Search & Destroy 
 AVG Web TuneUp   
 Google Chrome (44.0.2403.130) 
 Google Chrome (44.0.2403.155) 
````````Process Check: objlist.exe by Laurent````````  
 Spybot Teatimer.exe is disabled! 
 AVG avgwdsvc.exe 
`````````````````System Health check````````````````` 
 Total Fragmentation on Drive C:  % 
````````````````````End of Log``````````````````````

FRST:

Code:

ATTFilter

Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:17-08-2015
durchgeführt von Cat (Administrator) auf CatPC (17-08-2015 23:38:50)
Gestartet von C:\Users\Cat\Downloads
Geladene Profile: Cat (Verfügbare Profile: Cat)
Platform: Windows 8.1 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: Chrome)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

() C:\Program Files (x86)\AVG Web TuneUp\WtuSystemSupport.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Hewlett-Packard Company) C:\Windows\System32\hpservice.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RTKAUDIOSERVICE64.EXE
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Andrea Electronics Corporation) C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2015\avgwdsvc.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPWMISVC.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Symantec Corporation) C:\Program Files (x86)\Norton Internet Security\Engine\21.7.0.11\nis.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
(Symantec Corporation) C:\Program Files (x86)\Norton Internet Security\Engine\21.7.0.11\nis.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation) C:\Windows\System32\igfxTray.exe
(CyberLink) C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe
(CyberLink) C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2015\avgui.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2015\avgidsagent.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2015\avgcsrva.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2015\avgemca.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2015\avgnsa.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2015\avgrsa.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
() C:\Users\Cat\Downloads\SecurityCheck.exe
(Microsoft Corporation) C:\Windows\SysWOW64\cmd.exe
(Microsoft Corporation) C:\Windows\SysWOW64\notepad.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe


==================== Registry (Nicht auf der Ausnahmeliste) ===========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7165000 2014-10-23] (Realtek Semiconductor)
HKLM\...\Run: [HotKeysCmds] => C:\Windows\system32\hkcmd.exe
HKLM\...\Run: [Persistence] => C:\Windows\system32\igfxpers.exe
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2771184 2015-03-06] (Synaptics Incorporated)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [642656 2013-02-25] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [RemoteControl10] => C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [93296 2012-07-13] (CyberLink Corp.)
HKLM-x32\...\Run: [SDTray] => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [4101576 2014-06-24] (Safer-Networking Ltd.)
HKLM-x32\...\Run: [HPMessageService] => C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPMSGSVC.exe [475448 2014-03-26] (Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [AVG_UI] => C:\Program Files (x86)\AVG\AVG2015\avgui.exe [3780520 2015-07-31] (AVG Technologies CZ, s.r.o.)
Winlogon\Notify\SDWinLogon-x32: SDWinLogon.dll [X]
HKU\S-1-5-21-2758673428-2225819526-1960468687-1001\...\Run: [Power2GoExpress8] => C:\Program Files (x86)\CyberLink\Power2Go8\Power2GoExpress8.exe [1713416 2013-08-05] (CyberLink Corp.)

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt..)

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://g.uk.msn.com/HPNOT13/4
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://g.uk.msn.com/HPNOT13/4
HKU\S-1-5-21-2758673428-2225819526-1960468687-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://g.uk.msn.com/HPNOT13/4
SearchScopes: HKLM -> {774A4080-AED8-42B0-BCEE-A4455E882970} URL = hxxp://www.amazon.de/s/ref=azs_osd_ieade?ie=UTF-8&tag=hp-de2-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
SearchScopes: HKLM -> {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = hxxp://rover.ebay.com/rover/1/707-154345-12128-2/4 ?mpre=http%3A%2F%2Fwww.ebay.com%2Fsch%2F%3F_nkw%3D{searchTerms}&keyword={searchTerms}
SearchScopes: HKLM-x32 -> {774A4080-AED8-42B0-BCEE-A4455E882970} URL = hxxp://www.amazon.de/s/ref=azs_osd_ieade?ie=UTF-8&tag=hp-de2-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
SearchScopes: HKLM-x32 -> {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = hxxp://rover.ebay.com/rover/1/707-154345-12128-2/4 ?mpre=http%3A%2F%2Fwww.ebay.com%2Fsch%2F%3F_nkw%3D{searchTerms}&keyword={searchTerms}
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-21-2758673428-2225819526-1960468687-1001 -> {774A4080-AED8-42B0-BCEE-A4455E882970} URL = hxxp://www.amazon.de/s/ref=azs_osd_ieade?ie=UTF-8&tag=hp-de2-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
SearchScopes: HKU\S-1-5-21-2758673428-2225819526-1960468687-1001 -> {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = hxxp://rover.ebay.com/rover/1/707-154345-12128-2/4 ?mpre=http%3A%2F%2Fwww.ebay.com%2Fsch%2F%3F_nkw%3D{searchTerms}&keyword={searchTerms}
BHO: Norton Identity Protection -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files (x86)\Norton Internet Security\Engine64\21.7.0.11\coIEPlg.dll [2015-03-05] (Symantec Corporation)
BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2013-08-28] (Hewlett-Packard)
BHO-x32: Norton Identity Protection -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files (x86)\Norton Internet Security\Engine\21.7.0.11\coIEPlg.dll [2015-03-05] (Symantec Corporation)
BHO-x32: Norton Vulnerability Protection -> {6D53EC84-6AAE-4787-AEEE-F4628F01010C} -> C:\Program Files (x86)\Norton Internet Security\Engine\21.7.0.11\IPS\IPSBHO.DLL [2015-03-05] (Symantec Corporation)
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2013-08-28] (Hewlett-Packard)
Toolbar: HKLM - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine64\21.7.0.11\coIEPlg.dll [2015-03-05] (Symantec Corporation)
Toolbar: HKLM-x32 - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine\21.7.0.11\coIEPlg.dll [2015-03-05] (Symantec Corporation)
Tcpip\Parameters: [DhcpNameServer] 82.212.62.62 78.42.43.62
Tcpip\..\Interfaces\{9B11A29F-15F7-4841-A189-65CE72AD9D63}: [DhcpNameServer] 82.212.62.62 78.42.43.62

FireFox:
========
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\windows\SysWOW64\Adobe\Director\np32dsw_1166636.dll [2012-08-08] (Adobe Systems, Inc.)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-02-05] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-02-05] (Intel Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3505.0912 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-09-12] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-07-15] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-07-15] (Google Inc.)
FF HKLM-x32\...\Firefox\Extensions: [{2D3F3651-74B9-4795-BDEC-6DA2F431CB62}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_21.6.0.32\coFFPlgn
FF Extension: Norton Toolbar - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_21.6.0.32\coFFPlgn [2015-08-17]

Chrome: 
=======
CHR Profile: C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Slides) - C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2014-09-28]
CHR Extension: (Google Docs) - C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-09-28]
CHR Extension: (Google Drive) - C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-09-28]
CHR Extension: (YouTube) - C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-09-28]
CHR Extension: (Google Search) - C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-09-28]
CHR Extension: (Google Sheets) - C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2014-09-28]
CHR Extension: (Norton Identity Safe) - C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\iikflkcanblccfahdhdonehdalibjnif [2014-09-28]
CHR Extension: (Chrome Hotword Shared Module) - C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-03-12]
CHR Extension: (Norton Security Toolbar) - C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkfokfffehpeedafpekjeddnmnjhmcmk [2014-12-12]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-09-28]
CHR Extension: (Gmail) - C:\Users\Cat\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-09-28]
CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - https://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [mkfokfffehpeedafpekjeddnmnjhmcmk] - C:\Program Files (x86)\Norton Internet Security\Engine\21.7.0.11\Exts\Chrome.crx [2015-03-18]
CHR HKLM-x32\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - https://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [mkfokfffehpeedafpekjeddnmnjhmcmk] - C:\Program Files (x86)\Norton Internet Security\Engine\21.7.0.11\Exts\Chrome.crx [2015-03-18]

==================== Dienste (Nicht auf der Ausnahmeliste) ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R2 AVGIDSAgent; C:\Program Files (x86)\AVG\AVG2015\avgidsagent.exe [3633576 2015-07-31] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files (x86)\AVG\AVG2015\avgwdsvc.exe [335656 2015-07-31] (AVG Technologies CZ, s.r.o.)
S3 BthHFSrv; C:\Windows\System32\BthHFSrv.dll [324608 2014-10-29] (Microsoft Corporation)
R2 HPWMISVC; c:\Program Files (x86)\Hewlett-Packard\HP System Event\HPWMISVC.exe [469304 2014-03-26] (Hewlett-Packard Development Company, L.P.)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15720 2013-08-22] (Intel Corporation)
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [319376 2014-10-01] (Intel Corporation)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [733696 2013-05-11] (Intel(R) Corporation) [Datei ist nicht signiert]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [822232 2013-05-11] (Intel(R) Corporation)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [131544 2015-02-05] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2015-02-05] (Intel Corporation)
S2 MBAMService; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe [1133880 2015-06-18] (Malwarebytes Corporation)
R2 NIS; C:\Program Files (x86)\Norton Internet Security\Engine\21.7.0.11\NIS.exe [276336 2015-03-07] (Symantec Corporation)
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [239176 2013-02-20] (Realtek Semiconductor)
R2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [1738168 2014-06-24] (Safer-Networking Ltd.)
R2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [2088408 2014-06-27] (Safer-Networking Ltd.)
R2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [171928 2014-04-25] (Safer-Networking Ltd.)
S3 w3logsvc; C:\Windows\system32\inetsrv\w3logsvc.dll [76800 2015-01-17] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366520 2015-02-04] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1728592 2015-02-03] (Microsoft Corporation)
R2 WtuSystemSupport; C:\Program Files (x86)\AVG Web TuneUp\WtuSystemSupport.exe [1195920 2015-07-23] ()

===================== Treiber (Nicht auf der Ausnahmeliste) ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

S0 Avgboota; C:\Windows\System32\DRIVERS\avgboota.sys [21152 2015-03-27] (AVG Technologies CZ, s.r.o.)
R1 Avgdiska; C:\Windows\System32\DRIVERS\avgdiska.sys [162784 2015-03-11] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdrivera.sys [312752 2015-07-28] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHA; C:\Windows\System32\DRIVERS\avgidsha.sys [253408 2015-05-12] (AVG Technologies CZ, s.r.o.)
R1 Avgldx64; C:\Windows\System32\DRIVERS\avgldx64.sys [259040 2015-06-16] (AVG Technologies CZ, s.r.o.)
R0 Avgloga; C:\Windows\System32\DRIVERS\avgloga.sys [378336 2015-05-07] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx64; C:\Windows\System32\DRIVERS\avgmfx64.sys [245680 2015-07-28] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx64; C:\Windows\System32\DRIVERS\avgrkx64.sys [40928 2015-03-20] (AVG Technologies CZ, s.r.o.)
R1 Avgwfpa; C:\Windows\system32\DRIVERS\avgwfpa.sys [296896 2015-07-10] (AVG Technologies CZ, s.r.o.)
R1 BHDrvx64; C:\Program Files (x86)\Norton Internet Security\NortonData\21.6.0.32\Definitions\BASHDefs\20150224.001\BHDrvx64.sys [1622744 2015-02-03] (Symantec Corporation)
R1 ccSet_NIS; C:\Windows\system32\drivers\NISx64\1507000.00B\ccSetx64.sys [162392 2014-02-21] (Symantec Corporation)
R1 CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [91712 2013-03-05] (CyberLink)
R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [487216 2014-11-25] (Symantec Corporation)
R3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [142640 2014-11-25] (Symantec Corporation)
R1 IDSVia64; C:\Program Files (x86)\Norton Internet Security\NortonData\21.6.0.32\Definitions\IPSDefs\20150304.001\IDSvia64.sys [669400 2015-02-05] (Symantec Corporation)
R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [25816 2015-06-18] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [64216 2015-06-18] (Malwarebytes Corporation)
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [99288 2015-02-05] (Intel Corporation)
S3 NAVENG; C:\Program Files (x86)\Norton Internet Security\NortonData\21.6.0.32\Definitions\VirusDefs\20150305.003\ENG64.SYS [129752 2015-01-22] (Symantec Corporation)
S3 NAVEX15; C:\Program Files (x86)\Norton Internet Security\NortonData\21.6.0.32\Definitions\VirusDefs\20150305.003\EX64.SYS [2137304 2015-01-22] (Symantec Corporation)
S3 RSP2STOR; C:\Windows\system32\DRIVERS\RtsP2Stor.sys [288328 2013-01-24] (Realtek Semiconductor Corp.)
S3 RTSPER; C:\Windows\System32\DRIVERS\RtsPer.sys [448072 2013-02-02] (RTS Corporation)
R3 RTWlanE; C:\Windows\system32\DRIVERS\rtwlane.sys [2946264 2015-03-06] (Realtek Semiconductor Corporation                           )
S3 SmbDrv; C:\Windows\System32\drivers\Smb_driver_AMDASF.sys [28400 2013-02-06] (Synaptics Incorporated)
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [34544 2015-03-06] (Synaptics Incorporated)
S3 SRTSP; C:\Windows\System32\Drivers\NISx64\1507000.00B\SRTSP64.SYS [876248 2014-08-26] (Symantec Corporation)
R1 SRTSPX; C:\Windows\system32\drivers\NISx64\1507000.00B\SRTSPX64.SYS [37592 2014-08-26] (Symantec Corporation)
R0 SymDS; C:\Windows\System32\drivers\NISx64\1507000.00B\SYMDS64.SYS [493656 2014-08-26] (Symantec Corporation)
R0 SymEFA; C:\Windows\System32\drivers\NISx64\1507000.00B\SYMEFA64.SYS [1148120 2014-08-26] (Symantec Corporation)
S4 SymELAM; C:\Windows\system32\drivers\NISx64\1507000.00B\SymELAM.sys [23568 2014-08-26] (Symantec Corporation)
R3 SymEvent; C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [177752 2014-12-12] (Symantec Corporation)
R1 SymIRON; C:\Windows\system32\drivers\NISx64\1507000.00B\Ironx64.SYS [266968 2014-08-06] (Symantec Corporation)
R1 SymNetS; C:\Windows\System32\Drivers\NISx64\1507000.00B\SYMNETS.SYS [593112 2014-08-26] (Symantec Corporation)
R3 WirelessButtonDriver; C:\Windows\System32\drivers\WirelessButtonDriver64.sys [20800 2012-08-31] (Hewlett-Packard Development Company, L.P.)

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2015-08-17 23:24 - 2015-08-17 23:24 - 00852684 _____ C:\Users\Cat\Downloads\SecurityCheck.exe
2015-08-17 21:09 - 2015-08-17 21:09 - 02870984 _____ (ESET) C:\Users\Cat\Downloads\esetsmartinstaller_deu.exe
2015-08-12 23:57 - 2015-08-12 23:57 - 00025852 _____ C:\Users\Cat\Downloads\FRST-12.08.15.txt
2015-08-12 23:54 - 2015-08-17 23:37 - 00000000 ____D C:\Users\Cat\Downloads\FRST-OlderVersion
2015-08-12 23:51 - 2015-08-12 23:52 - 00001842 _____ C:\Users\Cat\Downloads\JRT.txt
2015-08-12 23:50 - 2015-08-12 23:50 - 00001857 _____ C:\Users\Cat\Desktop\JRT.txt
2015-08-12 23:41 - 2015-08-12 23:41 - 01791580 _____ (Malwarebytes Corporation) C:\Users\Cat\Downloads\JRT (1).exe
2015-08-12 23:40 - 2015-08-12 23:40 - 01791580 _____ (Malwarebytes Corporation) C:\Users\Cat\Downloads\JRT.exe
2015-08-12 23:22 - 2015-08-12 23:28 - 00000000 ____D C:\AdwCleaner
2015-08-12 23:21 - 2015-08-12 23:21 - 02248704 _____ C:\Users\Cat\Downloads\AdwCleaner_4.208.exe
2015-08-12 22:12 - 2015-08-12 22:13 - 24345872 _____ (Malwarebytes Corporation ) C:\Users\Cat\Downloads\mbam-setup-2.1.8.1057.exe
2015-08-10 23:08 - 2015-08-10 23:26 - 00005039 _____ C:\Users\Cat\Downloads\Gmer.txt
2015-08-10 22:53 - 2015-08-10 22:53 - 00380416 _____ C:\Users\Cat\Downloads\Gmer-19357.exe
2015-08-10 22:48 - 2015-08-10 23:19 - 00031406 _____ C:\Users\Cat\Downloads\Addition.txt
2015-08-10 22:46 - 2015-08-17 23:38 - 00020747 _____ C:\Users\Cat\Downloads\FRST.txt
2015-08-10 22:46 - 2015-08-17 23:38 - 00000000 ____D C:\FRST
2015-08-10 22:45 - 2015-08-17 23:37 - 02173440 _____ (Farbar) C:\Users\Cat\Downloads\FRST64.exe
2015-08-10 22:41 - 2015-08-10 23:11 - 00000470 _____ C:\Users\Cat\Downloads\defogger_disable.log
2015-08-10 22:41 - 2015-08-10 22:41 - 00000000 _____ C:\Users\Cat\defogger_reenable
2015-08-10 22:39 - 2015-08-10 22:39 - 00050477 _____ C:\Users\Cat\Downloads\Defogger.exe
2015-08-10 22:23 - 2015-08-10 22:23 - 00285352 _____ C:\WINDOWS\Minidump\081015-38843-01.dmp
2015-07-31 15:26 - 2015-08-17 21:45 - 00000000 ____D C:\WINDOWS\System32\Tasks\Remediation
2015-07-28 11:02 - 2015-07-28 11:02 - 00312752 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgidsdrivera.sys
2015-07-28 11:01 - 2015-07-28 11:01 - 00245680 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgmfx64.sys

==================== Ein Monat: Geänderte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2015-08-17 23:00 - 2014-09-28 23:18 - 00001136 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-08-17 23:00 - 2014-09-28 23:18 - 00001132 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2015-08-17 22:00 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\sru
2015-08-17 21:47 - 2014-09-24 08:17 - 01984420 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2015-08-17 21:47 - 2014-09-24 07:43 - 00843606 _____ C:\WINDOWS\system32\perfh007.dat
2015-08-17 21:47 - 2014-09-24 07:43 - 00192300 _____ C:\WINDOWS\system32\perfc007.dat
2015-08-17 21:42 - 2013-08-22 16:45 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2015-08-17 21:41 - 2013-08-22 15:25 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2015-08-17 21:10 - 2015-03-07 20:22 - 00000000 ____D C:\ProgramData\MFAData
2015-08-17 21:07 - 2013-08-22 16:46 - 00303395 _____ C:\WINDOWS\setupact.log
2015-08-16 22:50 - 2015-01-17 12:00 - 01454791 _____ C:\WINDOWS\WindowsUpdate.log
2015-08-16 21:00 - 2015-01-19 12:09 - 00003934 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{794FE09C-DBB7-4076-9149-92DF80CB0DB3}
2015-08-13 21:16 - 2014-09-18 21:02 - 00000052 _____ C:\WINDOWS\SysWOW64\DOErrors.log
2015-08-13 21:15 - 2014-10-03 00:49 - 00113880 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2015-08-12 23:38 - 2013-08-22 15:25 - 00262144 ___SH C:\WINDOWS\system32\config\ELAM
2015-08-12 23:08 - 2015-01-23 10:19 - 00053760 ___SH C:\Users\Cat\Desktop\Thumbs.db
2015-08-12 22:21 - 2014-09-16 21:22 - 00003600 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2758673428-2225819526-1960468687-1001
2015-08-12 22:14 - 2014-10-03 00:49 - 00001125 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2015-08-12 22:14 - 2014-10-03 00:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 
2015-08-12 22:14 - 2014-10-03 00:49 - 00000000 ____D C:\Program Files (x86)\ Malwarebytes Anti-Malware 
2015-08-12 22:06 - 2014-09-28 23:19 - 00002202 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2015-08-10 22:41 - 2015-01-17 11:45 - 00000000 ____D C:\Users\Cat
2015-08-10 22:23 - 2015-02-14 20:40 - 00000000 ____D C:\WINDOWS\Minidump
2015-08-10 22:23 - 2015-02-14 20:39 - 549101376 _____ C:\WINDOWS\MEMORY.DMP
2015-08-08 21:16 - 2015-03-07 20:25 - 00001004 _____ C:\Users\Public\Desktop\AVG 2015.lnk
2015-08-08 21:16 - 2015-03-07 20:25 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG
2015-08-08 10:22 - 2014-09-23 23:06 - 00016142 _____ C:\WINDOWS\PFRO.log
2015-07-23 13:45 - 2015-06-30 23:13 - 00000000 ____D C:\Program Files\Common Files\AV
2015-07-23 13:41 - 2015-03-18 20:25 - 00000000 ____D C:\Program Files\AVG Web TuneUp
2015-07-23 13:41 - 2015-03-18 20:25 - 00000000 ____D C:\Program Files (x86)\AVG Web TuneUp
2015-07-21 17:01 - 2015-01-23 10:12 - 00000000 ____D C:\Users\Cat\Documents\Youcam

Einige Dateien in TEMP:
====================
C:\Users\Cat\AppData\Local\Temp\Quarantine.exe
C:\Users\Cat\AppData\Local\Temp\sqlite3.dll


==================== Bamital & volsnap =================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert
C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert
C:\WINDOWS\explorer.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert
C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert
C:\WINDOWS\system32\services.exe => Datei ist digital signiert
C:\WINDOWS\system32\User32.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert
C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert
C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert
C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert


LastRegBack: 2015-08-13 21:34

==================== Ende von Ergebnis ============================

Der Zugang zur Systemsteuerung war vor dem ESET nicht möglich, ich konnte die Firewall nicht deaktivieren. Nur das Virenprogramm wurde ausgeschaltet.

Beim letzten Runtenfahren des PC´s kam wieder die Meldung dass Task Host Windows beendet werden muss.

Wurde beim ESET ein Trojaner entdeckt? Ist dieser nun weg?

schrauber · 18.08.2015, 18:38

Da wurde nur ein Download angemeckert.

Windows Repair Tool laufen lassen:
Windows reparieren - so geht's - Anleitungen

FRST öffnen, Haken setzen bei Addition und scannen, poste bitte beide Logs.

Windows 8.1 Task host beim Herunterfahren des PC nicht beendet

Log-Analyse und Auswertung: Windows 8.1 Task host beim Herunterfahren des PC nicht beendet