| |
| |||||||
Log-Analyse und Auswertung: Programm versucht automatisch Chrome Extension zu installieren (web safety)Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML |
 |
12.11.2022, 15:50
| #1 |
| |  Programm versucht automatisch Chrome Extension zu installieren (web safety) Hallo alle zusammen, Ich habe folgendes Problem: Nach Neuinstallation von Chrome hat irgendein Programm versucht die Chrome extension Web safety zu installieren. Zum Hintergrund: Bei meiner google Suche in Chrome wurde ich immer automatisch zu Yahoo redirected. Unter den Chrome Einstellungen beim Reiter Extensions war eine Erweiterung aktiv, die sich auch nicht entfernen oder deaktivieren ließ und keinerlei Beschreibung oder Namen hatte. Ich habe daraufhin alle registry Einträge bei Chrome (außer Standard) gelöscht. Außerdem habe ich den Windows Standard Scan durchgeführt, der aber nichts gefunden hat. Chrome habe ich dann neu installiert. Darauf hin ist die Weiterleitung nun erstmal weg, aber direkt nach Neuinstallation hat eben irgendein Programm versucht diese websafety Extension neu zu installieren. Ist hier irgendein Trojaner am Werk? Anbei die Log Auswertungen Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 12-11-2022
durchgeführt von appyt (Administrator) auf DESKTOP-Q7BCFQ5 (HP HP Pavilion x360 Convertible 14-dh1xxx) (12-11-2022 15:29:56)
Gestartet von C:\Users\appyt\Downloads
Geladene Profile: appyt
Plattform: Microsoft Windows 11 Home Version 21H2 22000.1219 (X64) Sprache: Deutsch (Deutschland)
Standard-Browser: Chrome
Start-Modus: Normal
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
(C:\Program Files\Google\Chrome\Application\chrome.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.152\GoogleCrashHandler.exe
(C:\Program Files\Google\Chrome\Application\chrome.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.152\GoogleCrashHandler64.exe
(C:\Program Files\LGHUB\lghub.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_agent.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(C:\Program Files\WindowsApps\MicrosoftTeams_22287.702.1670.9453_x64__8wekyb3d8bbwe\msteams.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\106.0.1370.37\msedgewebview2.exe <12>
(C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.6-0\MsMpEng.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.6-0\MpCopyAccelerator.exe
(Discord Inc. -> Discord Inc.) C:\Users\appyt\AppData\Local\Discord\app-1.0.9007\Discord.exe <6>
(DriverStore\FileRepository\cui_dch.inf_amd64_6eefa7742d2487c3\igfxCUIService.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_6eefa7742d2487c3\igfxEM.exe
(DriverStore\FileRepository\hpanalyticscomp.inf_amd64_970b3aa928c32e35\x64\TouchpointAnalyticsClientService.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpanalyticscomp.inf_amd64_970b3aa928c32e35\x64\TouchpointGpuInfo.exe
(DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_f0454c515430e99a\x64\SysInfoCap.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_f0454c515430e99a\x64\BridgeCommunication.exe
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <45>
(explorer.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub.exe <3>
(HP Inc.) C:\Program Files\WindowsApps\AD2F1837.HPSystemEventUtility_1.3.2.0_x64__v10z8vjag6ke6\SystemEventUtility\HPSystemEventUtilityHost.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <7>
(Nvidia Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPCommRecovery\HPCommRecovery.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpanalyticscomp.inf_amd64_970b3aa928c32e35\x64\TouchpointAnalyticsClientService.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_f0454c515430e99a\x64\AppHelperCap.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_f0454c515430e99a\x64\DiagsCap.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_f0454c515430e99a\x64\NetworkCap.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_f0454c515430e99a\x64\SysInfoCap.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_82b77f8c4618e2d0\esif_uf.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorac.inf_amd64_ba273d0ffb93e225\RstMwService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\lms.inf_amd64_fddb643595e0b8d0\LMS.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\sgx_psw.inf_amd64_1e59f5ec7049260a\aesm_service.exe
(services.exe ->) (Intel Corporation -> Intel(R) Corporation) C:\Windows\SysWOW64\XtuService.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_0b214be229a13e84\jhi_service.exe
(services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_6eefa7742d2487c3\igfxCUIService.exe
(services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_667c6615c75bd143\OneApp.IGCC.WinService.exe
(services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_14a5bb6045f923bf\IntelCpHDCPSvc.exe
(services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_14a5bb6045f923bf\IntelCpHeciSvc.exe
(services.exe ->) (Intel(R) Trust Services -> Intel(R) Corporation) C:\Windows\System32\DriverStore\FileRepository\iclsclient.inf_amd64_75ffca5eec865b4b\lib\SocketHeciServer.exe
(services.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_updater.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.6-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.6-0\NisSrv.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <2>
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvhm.inf_amd64_4a2f8a62d5686839\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor Corp.) C:\Windows\RtkBtManServ.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe <2>
(services.exe ->) (Smart Sound Technology -> Intel) C:\Windows\System32\cAVS\Intel(R) Audio Service\IntelAudioService.exe
(services.exe ->) (Sound Research Corporation -> Sound Research, Corp.) C:\Windows\System32\SECOMN64.exe
(services.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Windows\System32\SynTPEnhService.exe
(sihost.exe ->) (INTEL CORP) C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.3408.0_x64__8j3eq9eme6ctt\GCP.ML.BackgroundSysTray\IGCCTray.exe
(svchost.exe ->) (HP Inc. -> HP Inc.) C:\Program Files (x86)\HP\HPAudioSwitch\HPAudioSwitch.exe
(svchost.exe ->) (HP Inc.) C:\Program Files\WindowsApps\AD2F1837.HPJumpStarts_1.10.1627.0_x64__v10z8vjag6ke6\HP.JumpStarts.exe
(svchost.exe ->) (INTEL CORP) C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.3408.0_x64__8j3eq9eme6ctt\IGCC.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_4.2204.13303.0_x64__8wekyb3d8bbwe\Cortana.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.YourPhone_1.22092.211.0_x64__8wekyb3d8bbwe\PhoneExperienceHost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_421.20070.765.0_x64__cw5n1h2txyewy\Dashboard\Widgets.exe
(SynTPEnhService.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Windows\System32\SynTPEnh.exe
==================== Registry (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Beschränkung <==== ACHTUNG
HKU\S-1-5-19\...\Run: [HPSEU_Host_Launcher] => C:\System.sav\util\HPSEU\HpseuHostLauncher.exe [536152 2022-08-16] (HP Inc. -> HP Inc.)
HKU\S-1-5-20\...\Run: [HPSEU_Host_Launcher] => C:\System.sav\util\HPSEU\HpseuHostLauncher.exe [536152 2022-08-16] (HP Inc. -> HP Inc.)
HKU\S-1-5-21-3349990796-3301203750-1932007998-1001\...\Run: [HPSEU_Host_Launcher] => C:\System.sav\util\HPSEU\HpseuHostLauncher.exe [536152 2022-08-16] (HP Inc. -> HP Inc.)
HKU\S-1-5-21-3349990796-3301203750-1932007998-1001\...\Run: [OpenOffice Updater] => C:\Users\appyt\AppData\Roaming\OpenOffice Updater\Updater.exe [365680 2019-11-03] (Arne Koenig -> ) <==== ACHTUNG
HKU\S-1-5-21-3349990796-3301203750-1932007998-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4234088 2022-10-19] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-3349990796-3301203750-1932007998-1001\...\Run: [Discord] => C:\Users\appyt\AppData\Local\Discord\Update.exe [1512608 2021-09-21] (Discord Inc. -> GitHub)
HKU\S-1-5-21-3349990796-3301203750-1932007998-1001\...\Run: [LGHUB] => C:\Program Files\LGHUB\lghub.exe [152025856 2022-11-07] (Logitech Inc -> Logitech, Inc.)
HKU\S-1-5-21-3349990796-3301203750-1932007998-1001\...\Run: [MicrosoftEdgeAutoLaunch_3FFDBA17D3F486FC5D0876D2E1CE1812] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [3852232 2022-10-10] (Microsoft Corporation -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\107.0.5304.107\Installer\chrmstp.exe [2022-11-12] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] ->
GroupPolicy: Beschränkung - Chrome <==== ACHTUNG
Policies: C:\ProgramData\NTUSER.pol: Beschränkung <==== ACHTUNG
HKLM\SOFTWARE\Policies\Google: Beschränkung <==== ACHTUNG
HKLM\SOFTWARE\Policies\Microsoft\Edge: Beschränkung <==== ACHTUNG
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) ============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {055CD0C8-9A7A-4CE2-84E0-1AD133FD8785} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Update Notice => C:\Program Files (x86)\HP\HP Support Framework\Resources\BingPopup\BingPopup.exe [847392 2022-10-26] (HP Inc. -> HP Inc.)
Task: {1375DC33-377F-45E1-A5D3-6C9A7E8A0080} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.6-0\MpCmdRun.exe [1567360 2022-11-11] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {18097936-7204-48A6-AC01-C58988A21D6E} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1650384 2021-12-08] (Nvidia Corporation -> NVIDIA Corporation)
Task: {1B6E851E-25E6-4FDD-8154-20FD8E2FA505} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26154960 2022-11-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {1EA62801-F9C6-4F96-B7AE-FB4567929E36} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1552376 2022-09-26] (Adobe Inc. -> Adobe Inc.)
Task: {27100FC6-0E56-482B-AC50-D0079E011911} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1650384 2021-12-08] (Nvidia Corporation -> NVIDIA Corporation)
Task: {28D7EE41-C5F5-4CB2-84A9-E70BF2983EC1} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154456 2021-07-14] (Google LLC -> Google LLC)
Task: {2EA841F6-2D8F-41DF-9D05-A8086BA6BDAD} - System32\Tasks\HPAudioSwitch => C:\Program Files (x86)\HP\HPAudioSwitch\HPAudioSwitch.exe [1644472 2019-06-21] (HP Inc. -> HP Inc.)
Task: {3AF09C9F-5BDE-47B9-9B33-9A70FC6E1A87} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154456 2021-07-14] (Google LLC -> Google LLC)
Task: {4205C3FE-C3A9-4E06-891C-1CB811AAC8D1} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1650384 2021-12-08] (Nvidia Corporation -> NVIDIA Corporation)
Task: {51333E95-6DB4-418D-8EAE-E10B24D68969} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26154960 2022-11-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {593C83E2-8756-4552-9AAD-854BBCDD63A0} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker => C:\Program Files (x86)\HP\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [1149512 2022-10-26] (HP Inc. -> HP Inc.)
Task: {5F318E07-E991-409D-A66E-20AF02B3E1D3} - System32\Tasks\RtkAudUService64_BG => C:\windows\System32\RtkAudUService64.exe [1141544 2020-09-03] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {6A69F361-1AB1-4889-8090-B2E029F92353} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [649216 2021-12-08] (Nvidia Corporation -> NVIDIA Corporation)
Task: {81DA3E07-B83D-45D8-BD16-9668DD3B910D} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [904904 2021-12-08] (Nvidia Corporation -> NVIDIA Corporation)
Task: {8214C5F5-A563-4DC8-9085-EAAE8E631733} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [66936 2022-11-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {961FC559-8EBD-4969-8F9D-CE93CCE7AD38} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.6-0\MpCmdRun.exe [1567360 2022-11-11] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {998024A3-0F5F-4D72-BBD9-9C5A1E2616AA} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [903024 2021-11-16] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {B98E1788-D747-4B99-8857-FB7B8892C992} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [144312 2022-11-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {BC706022-5F3F-4EDD-A225-1C9E958A9AA7} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [144312 2022-11-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {C2776C0E-E0B7-4DE3-AD81-8208C3CE57DD} - System32\Tasks\BenutzerdienstfürZertifikatverteilung => C:\Program Files (x86)\nodejs\node.exe [15017624 2017-05-02] (Node.js Foundation -> Node.js) -> C:\windows\Installer\{6A02B9E5-0F61-4E89-B30A-0938191D102F}\{54F788DE-8BE9-45E3-8D22-0A61555F5203} <==== ACHTUNG
Task: {C5B9EB83-59B1-4D3A-BE30-5115ACD1FA1E} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1650384 2021-12-08] (Nvidia Corporation -> NVIDIA Corporation)
Task: {CCDFC0B8-01A3-4E74-A820-4F13F51D269E} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => C:\WINDOWS\System32\MbaeParserTask.exe (Keine Datei)
Task: {D15CB3D8-517B-49C6-890E-EBBC42FD3A1F} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\HP\HP Support Framework\Resources\HPSFReport.exe [138328 2022-10-26] (HP Inc. -> HP Inc.)
Task: {D58F715A-D874-4C56-9709-EB55ADF4B75B} - System32\Tasks\Microsoft\Windows\PI\SecureBootEncodeUEFI => C:\WINDOWS\system32\SecureBootEncodeUEFI.exe [90112 2022-11-10] (Microsoft Windows -> )
Task: {DC8ED20B-5AC8-4092-B589-937D82B78B26} - System32\Tasks\HP\Consent Manager Launcher => sc start hptouchpointanalyticsservice
Task: {DCB7214F-C61E-424B-8064-46D0CBC82C6E} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\HP\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [1149512 2022-10-26] (HP Inc. -> HP Inc.)
Task: {EBFD20CD-93CC-4A95-B58A-F3DF84C9A898} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.6-0\MpCmdRun.exe [1567360 2022-11-11] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {EDDE7AD7-7B09-4695-AA09-C079AD4FEB40} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3341312 2021-12-09] (Nvidia Corporation -> NVIDIA Corporation)
Task: {F24E6F33-1102-4802-A9DB-7A4D9B975672} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.6-0\MpCmdRun.exe [1567360 2022-11-11] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {F42B2761-1566-48FA-8FA9-1A2AD108095B} - System32\Tasks\MUP QWAVE-Treiber Automatische => C:\Program Files (x86)\nodejs\node.exe [15017624 2017-05-02] (Node.js Foundation -> Node.js) -> "C:\ProgramData\Package Cache\{11DAD822-AE3A-44B3-AEFF-29CCC88CC081}\{383E4551-0284-4DB4-B643-D3EB45FE542D}" <==== ACHTUNG
Task: {FAECDFD8-F4EC-42CC-9262-BA4367C02D79} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [904904 2021-12-08] (Nvidia Corporation -> NVIDIA Corporation)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{0c80d462-6a09-47ec-a94a-21d92923db60}: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{1202cd13-bb5d-404c-a9f7-5ef6aacfa0b4}: [DhcpNameServer] 172.168.0.7
Edge:
=======
Edge Profile: C:\Users\appyt\AppData\Local\Microsoft\Edge\User Data\Default [2022-11-12]
Edge Extension: ( ) - C:\Users\appyt\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\mldhfefacmadchendjighmjppdblmcle [2022-11-12]
FireFox:
========
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2022-11-02] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2022-10-16] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2022-11-02] (Microsoft Corporation -> Microsoft Corporation)
Chrome:
=======
CHR Profile: C:\Users\appyt\AppData\Local\Google\Chrome\User Data\Default [2022-11-12]
CHR Extension: (Google Docs Offline) - C:\Users\appyt\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-11-12]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\appyt\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-11-12]
CHR HKLM-x32\...\Chrome\Extension: [mfhcmdonhekjhfbjmeacdjbhlfgpjabp]
==================== Dienste (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [173040 2022-09-26] (Adobe Inc. -> Adobe Inc.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [12516280 2022-11-02] (Microsoft Corporation -> Microsoft Corporation)
S3 dcsvc; C:\WINDOWS\system32\dcsvc.dll [831488 2022-11-10] (Microsoft Windows -> Microsoft Corporation)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [818304 2020-12-30] (EasyAntiCheat Oy -> Epic Games, Inc)
R2 HP Comm Recover; C:\Program Files\HPCommRecovery\HPCommRecovery.exe [905080 2020-03-18] (HP Inc. -> HP Inc.)
R2 HPAppHelperCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_f0454c515430e99a\x64\AppHelperCap.exe [786888 2022-09-28] (HP Inc. -> HP Inc.)
R2 HPDiagsCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_f0454c515430e99a\x64\DiagsCap.exe [785896 2022-09-28] (HP Inc. -> HP Inc.)
R2 HPNetworkCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_f0454c515430e99a\x64\NetworkCap.exe [782296 2022-09-28] (HP Inc. -> HP Inc.)
R2 HPSysInfoCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_f0454c515430e99a\x64\SysInfoCap.exe [786392 2022-09-28] (HP Inc. -> HP Inc.)
R2 HpTouchpointAnalyticsService; C:\WINDOWS\System32\DriverStore\FileRepository\hpanalyticscomp.inf_amd64_970b3aa928c32e35\x64\TouchpointAnalyticsClientService.exe [493680 2022-09-28] (HP Inc. -> HP Inc.)
R2 LGHUBUpdaterService; C:\Program Files\LGHUB\lghub_updater.exe [10097408 2022-11-07] (Logitech Inc -> Logitech, Inc.)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2559704 2022-01-16] (Electronic Arts, Inc. -> Electronic Arts)
R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3477728 2022-01-16] (Electronic Arts, Inc. -> Electronic Arts)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.6-0\NisSrv.exe [3191272 2022-11-11] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.6-0\MsMpEng.exe [133544 2022-11-11] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvhm.inf_amd64_4a2f8a62d5686839\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nvhm.inf_amd64_4a2f8a62d5686839\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
===================== Treiber (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [507904 2022-01-18] (Microsoft Corporation) [Datei ist nicht signiert]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [180224 2022-01-18] (Microsoft Corporation) [Datei ist nicht signiert]
S3 BTHMODEM; C:\WINDOWS\System32\drivers\bthmodem.sys [98304 2021-06-05] (Microsoft Corporation) [Datei ist nicht signiert]
R3 Gamecaster_Dummy; C:\WINDOWS\system32\drivers\gcastspk.sys [36048 2021-07-20] (SplitmediaLabs Limited -> SplitmediaLabs Limited)
R3 HPCustomCapDriver; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapdriver.inf_amd64_a955fa431e522f5e\x64\hpcustomcapdriver.sys [25592 2021-09-16] (HP Inc. -> HP Inc.)
R3 logi_joy_bus_enum; C:\WINDOWS\system32\drivers\logi_joy_bus_enum.sys [44880 2022-09-24] (Logitech Inc -> Logitech)
R3 logi_joy_vir_hid; C:\WINDOWS\system32\drivers\logi_joy_vir_hid.sys [32080 2022-09-24] (Logitech Inc -> Logitech)
R3 logi_joy_xlcore; C:\WINDOWS\system32\drivers\logi_joy_xlcore.sys [73040 2022-09-24] (Logitech Inc -> Logitech)
R3 MpKsle8057013; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{6F6C97C7-AE30-4A6C-9DF8-5FE103B3761D}\MpKslDrv.sys [214280 2022-11-12] (Microsoft Windows -> Microsoft Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [48552 2021-11-01] (Microsoft Windows Hardware Compatibility Publisher -> NVIDIA Corporation)
S3 VCamSDK; C:\WINDOWS\system32\DRIVERS\VCamSDK.sys [1092456 2021-12-21] (Shanghai Yitu Information Technology Co., Ltd. -> e2eSoft)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49616 2022-11-11] (Microsoft Windows Early Launch Anti-Malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [469288 2022-11-11] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [95520 2022-11-11] (Microsoft Windows -> Microsoft Corporation)
R3 WirelessButtonDriver64; C:\WINDOWS\System32\drivers\WirelessButtonDriver64.sys [40104 2022-06-17] (HP Inc. -> HP)
S3 WinRing0_1_2_0; \??\C:\Users\appyt\AppData\Local\Temp\tmpC372.tmp [X] <==== ACHTUNG
S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X]
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
NETSVC: DcSvc -> C:\Windows\system32\dcsvc.dll (Microsoft Corporation)
==================== Ein Monat (erstellte) (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2022-11-12 15:29 - 2022-11-12 15:31 - 000027138 _____ C:\Users\appyt\Downloads\FRST.txt
2022-11-12 15:29 - 2022-11-12 15:30 - 000000000 ____D C:\FRST
2022-11-12 15:27 - 2022-11-12 15:27 - 002375168 _____ (Farbar) C:\Users\appyt\Downloads\FRST64.exe
2022-11-12 15:20 - 2022-11-12 15:20 - 007322616 _____ (Stanislav Polshyn & Trend Micro Inc.) C:\Users\appyt\Downloads\HiJackThis.exe
2022-11-12 15:20 - 2022-11-12 15:20 - 000002260 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth Pro.lnk
2022-11-12 15:20 - 2022-11-12 15:20 - 000002248 _____ C:\Users\Public\Desktop\Google Earth Pro.lnk
2022-11-12 15:15 - 2022-11-12 15:15 - 000002322 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2022-11-12 15:15 - 2022-11-12 15:15 - 000002281 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2022-11-12 15:13 - 2022-11-12 15:13 - 001427176 _____ (Google LLC) C:\Users\appyt\Downloads\ChromeSetup (2).exe
2022-11-12 12:38 - 2022-11-12 15:10 - 107216896 _____ C:\WINDOWS\system32\config\SOFTWARE
2022-11-10 17:26 - 2022-11-10 17:26 - 000319488 _____ C:\WINDOWS\system32\EsclScan.dll
2022-11-10 17:26 - 2022-11-10 17:26 - 000200704 _____ C:\WINDOWS\system32\EsclProtocol.dll
2022-11-10 17:26 - 2022-11-10 17:26 - 000090112 _____ C:\WINDOWS\system32\SecureBootEncodeUEFI.exe
2022-11-10 17:26 - 2022-11-10 17:26 - 000015461 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2022-11-10 17:25 - 2022-11-10 17:25 - 000372736 _____ C:\WINDOWS\system32\hwreqchk.dll
2022-11-10 17:25 - 2022-11-10 17:25 - 000335872 _____ C:\WINDOWS\system32\Windows.Management.InprocObjects.dll
2022-11-10 17:25 - 2022-11-10 17:25 - 000172032 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2022-11-10 17:22 - 2022-11-10 17:22 - 000000000 ___HD C:\$WinREAgent
2022-11-10 17:15 - 2022-11-10 17:15 - 000022599 _____ C:\Users\appyt\OneDrive\Dokumente\selfcare.odt
2022-11-07 20:21 - 2022-11-07 20:21 - 000000650 _____ C:\Users\Public\Desktop\Logitech G HUB.lnk
2022-11-07 20:21 - 2022-11-07 20:21 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logi
2022-11-07 20:21 - 2022-11-07 20:21 - 000000000 ____D C:\Program Files\LGHUB
2022-11-07 12:03 - 2022-11-08 10:15 - 000192882 _____ C:\Users\appyt\OneDrive\Dokumente\Fitness Basics.odt
2022-11-07 10:57 - 2022-11-08 10:16 - 000008851 _____ C:\Users\appyt\OneDrive\Dokumente\fitness.odt
2022-10-19 11:42 - 2022-10-19 11:42 - 000299967 _____ C:\Users\appyt\Downloads\AnnaPatrycja-Fitnesstrainer-B-Lizenz-Fitnesstrainer-B-Lizenz-Zertifikat-Online-Fitness-Academy.pdf
2022-10-19 11:34 - 2022-10-19 11:34 - 000329071 _____ C:\Users\appyt\Downloads\pdf_26932_12049 (1).pdf
2022-10-19 11:09 - 2022-10-19 11:09 - 000329073 _____ C:\Users\appyt\Downloads\pdf_26932_12049.pdf
2022-10-17 14:59 - 2022-10-17 14:59 - 000077824 _____ C:\Users\appyt\Downloads\Vorlage_Formular_fuer_die_Abrechnung_von_Minijobs.xls
2022-10-17 14:22 - 2022-11-12 12:34 - 000026887 _____ C:\Users\appyt\OneDrive\Dokumente\5 mistakes video.odt
2022-10-17 11:09 - 2022-10-17 12:11 - 000018086 _____ C:\Users\appyt\OneDrive\Dokumente\genshin impact.odt
2022-10-15 21:40 - 2022-10-15 21:49 - 000012178 _____ C:\Users\appyt\OneDrive\Dokumente\Sternenkind.odt
2022-10-14 21:40 - 2022-10-14 21:40 - 000077824 _____ C:\WINDOWS\system32\runexehelper.exe
2022-10-14 17:00 - 2022-10-14 21:42 - 000014927 _____ C:\Users\appyt\OneDrive\Dokumente\trainingsplan.odt
2022-10-14 16:17 - 2022-10-26 14:28 - 000002080 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk
2022-10-14 16:17 - 2022-10-26 14:28 - 000002068 _____ C:\Users\Public\Desktop\Adobe Acrobat.lnk
2022-10-13 21:23 - 2022-10-13 21:23 - 000811166 _____ C:\Users\appyt\Downloads\FLT_4_W7U1WM6743_0.pdf
==================== Ein Monat (geänderte) ==================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2022-11-12 15:29 - 2022-01-06 22:36 - 000000000 ____D C:\Users\appyt\AppData\Roaming\discord
2022-11-12 15:20 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SystemTemp
2022-11-12 15:20 - 2020-12-27 18:15 - 000000000 ____D C:\Program Files\Google
2022-11-12 15:20 - 2020-12-27 18:14 - 000000000 ____D C:\Program Files (x86)\Google
2022-11-12 15:19 - 2021-04-05 15:20 - 000000000 ____D C:\Program Files (x86)\Steam
2022-11-12 15:18 - 2022-01-19 00:08 - 001915288 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2022-11-12 15:18 - 2021-06-05 18:53 - 000802012 _____ C:\WINDOWS\system32\perfh007.dat
2022-11-12 15:18 - 2021-06-05 18:53 - 000174896 _____ C:\WINDOWS\system32\perfc007.dat
2022-11-12 15:18 - 2021-06-05 13:09 - 000000000 ____D C:\WINDOWS\INF
2022-11-12 15:15 - 2020-12-27 18:14 - 000000000 ____D C:\Users\appyt\AppData\Local\Google
2022-11-12 15:14 - 2022-01-19 00:14 - 000003632 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2022-11-12 15:14 - 2022-01-19 00:14 - 000003508 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2022-11-12 15:11 - 2022-05-05 18:00 - 000000000 ____D C:\Users\appyt\AppData\Roaming\LGHUB
2022-11-12 15:11 - 2022-05-05 18:00 - 000000000 ____D C:\Users\appyt\AppData\Local\LGHUB
2022-11-12 15:11 - 2022-01-06 22:36 - 000000000 ____D C:\Users\appyt\AppData\Local\Discord
2022-11-12 15:11 - 2021-06-05 13:10 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-11-12 15:11 - 2020-12-27 18:03 - 000000000 __SHD C:\Users\appyt\IntelGraphicsProfiles
2022-11-12 15:11 - 2020-10-16 10:18 - 000000000 ____D C:\ProgramData\NVIDIA
2022-11-12 15:10 - 2022-01-19 00:14 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2022-11-12 15:10 - 2022-01-19 00:04 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2022-11-12 15:10 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\ServiceState
2022-11-12 15:10 - 2021-06-05 13:01 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2022-11-12 15:10 - 2020-10-16 10:12 - 000000000 ____D C:\Intel
2022-11-12 15:10 - 2020-05-06 09:58 - 000012288 ___SH C:\DumpStack.log.tmp
2022-11-12 12:42 - 2021-02-28 18:09 - 000000306 __RSH C:\ProgramData\ntuser.pol
2022-11-12 12:39 - 2021-06-04 14:07 - 000000000 ____D C:\Users\appyt\AppData\Local\PlaceholderTileLogoFolder
2022-11-12 12:38 - 2022-04-10 13:53 - 000000000 ____D C:\WINDOWS\Microsoft Antimalware
2022-11-12 12:23 - 2021-06-05 13:10 - 000000000 ___HD C:\Program Files\WindowsApps
2022-11-12 12:23 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\AppReadiness
2022-11-12 12:23 - 2020-12-27 18:03 - 000000000 ____D C:\Users\appyt\AppData\Local\Packages
2022-11-12 12:23 - 2020-10-16 10:27 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WildTangent Games
2022-11-12 12:22 - 2020-10-16 10:18 - 000000000 ____D C:\ProgramData\Package Cache
2022-11-12 12:20 - 2020-10-16 10:25 - 000000000 ____D C:\ProgramData\Packages
2022-11-11 10:07 - 2020-05-06 09:58 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2022-11-10 17:51 - 2022-01-19 00:04 - 000621328 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2022-11-10 17:50 - 2022-01-18 21:33 - 000000000 ____D C:\WINDOWS\HoloShell
2022-11-10 17:50 - 2021-06-05 13:10 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2022-11-10 17:50 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2022-11-10 17:50 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SystemResources
2022-11-10 17:50 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\oobe
2022-11-10 17:50 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\Dism
2022-11-10 17:50 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\DDFs
2022-11-10 17:50 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\appraiser
2022-11-10 17:50 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\ShellExperiences
2022-11-10 17:50 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\ShellComponents
2022-11-10 17:50 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\bcastdvr
2022-11-10 17:50 - 2021-01-05 07:44 - 000000000 ____D C:\WINDOWS\system32\MRT
2022-11-10 17:46 - 2021-01-05 07:44 - 146960040 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2022-11-10 17:28 - 2021-06-05 13:01 - 000000000 ____D C:\WINDOWS\CbsTemp
2022-11-10 17:25 - 2022-01-19 00:06 - 003107840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2022-11-09 15:40 - 2021-12-19 19:41 - 000000000 ____D C:\Users\appyt\AppData\Roaming\obs-studio
2022-11-08 08:50 - 2022-01-19 00:14 - 000000000 ____D C:\WINDOWS\system32\Tasks\Hewlett-Packard
2022-11-07 20:21 - 2022-01-19 00:14 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-3349990796-3301203750-1932007998-1001
2022-11-07 20:21 - 2022-01-19 00:14 - 000003380 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3349990796-3301203750-1932007998-1001
2022-11-07 20:21 - 2020-12-27 17:52 - 000002406 _____ C:\Users\appyt\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2022-11-02 15:00 - 2020-06-08 09:46 - 000000000 ____D C:\Program Files\Microsoft Office
2022-10-26 14:28 - 2022-08-04 13:26 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2022-10-17 15:52 - 2022-10-06 22:21 - 000015252 _____ C:\Users\appyt\OneDrive\Dokumente\youtube dance.odt
2022-10-15 21:04 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2022-10-15 21:04 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\Provisioning
2022-10-15 21:04 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2022-10-15 21:04 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\BrowserCore
2022-10-14 16:37 - 2020-12-30 23:11 - 000000000 ____D C:\Users\appyt\AppData\Local\D3DSCache
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse ========
2022-07-28 15:12 - 2022-11-12 12:22 - 000039192 _____ () C:\Users\appyt\AppData\Local\PlariumPlay.log
2022-10-08 20:45 - 2022-10-08 20:45 - 000005621 _____ () C:\Users\appyt\AppData\Local\recently-used.xbel
2022-01-25 14:02 - 2022-01-25 14:02 - 000007601 _____ () C:\Users\appyt\AppData\Local\Resmon.ResmonCfg
==================== SigCheck ============================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
==================== Ende von FRST.txt ========================
Code:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 12-11-2022
durchgeführt von appyt (12-11-2022 15:33:58)
Gestartet von C:\Users\appyt\Downloads
Microsoft Windows 11 Home Version 21H2 22000.1219 (X64) (2022-01-19 14:38:27)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
Administrator (S-1-5-21-3349990796-3301203750-1932007998-500 - Administrator - Disabled)
appyt (S-1-5-21-3349990796-3301203750-1932007998-1001 - Administrator - Enabled) => C:\Users\appyt
DefaultAccount (S-1-5-21-3349990796-3301203750-1932007998-503 - Limited - Disabled)
Gast (S-1-5-21-3349990796-3301203750-1932007998-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-3349990796-3301203750-1932007998-504 - Limited - Disabled)
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
Adobe Acrobat (64-bit) (HKLM\...\{AC76BA86-1031-1033-7760-BC15014EA700}) (Version: 22.003.20263 - Adobe)
Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-018244601032}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden
Audacity 2.4.2 (HKLM-x32\...\Audacity_is1) (Version: 2.4.2 - Audacity Team)
Discord (HKU\S-1-5-21-3349990796-3301203750-1932007998-1001\...\Discord) (Version: 1.0.9003 - Discord Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{F9C5C994-F6B9-4D75-B3E7-AD01B84073E9}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 107.0.5304.107 - Google LLC)
Google Earth Pro (HKLM\...\{DE181B35-ACEF-4DB0-86D9-731D5767ABB1}) (Version: 7.3.4.8642 - Google)
HP Audio Switch (HKLM-x32\...\{3A5141D4-47DB-4302-9B1C-272BE585BC8A}) (Version: 1.0.179.0 - HP Inc.)
HP Connection Optimizer (HKLM-x32\...\{6468C4A5-E47E-405F-B675-A70A70983EA6}) (Version: 2.0.17.0 - HP Inc.)
HP Documentation (HKLM\...\HP_Documentation) (Version: 1.0.0.1 - HP Inc.)
Intel® Optane™ Pinning Explorer Extensions (HKLM\...\{4487026C-A32C-4FF5-858E-8DB890814949}) (Version: 17.8.0.1065 - Intel Corporation)
Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Logitech G HUB (HKLM\...\{521c89be-637f-4274-a840-baaf7460c2b2}) (Version: 2022.10.326382 - Logitech)
Microsoft 365 - de-de (HKLM\...\O365HomePremRetail - de-de) (Version: 16.0.15726.20174 - Microsoft Corporation)
Microsoft 365 - en-us (HKLM\...\O365HomePremRetail - en-us) (Version: 16.0.15726.20174 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 106.0.1370.42 - Microsoft Corporation)
Microsoft Edge WebView2-Laufzeit (HKLM-x32\...\Microsoft EdgeWebView) (Version: 106.0.1370.37 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-3349990796-3301203750-1932007998-1001\...\OneDriveSetup.exe) (Version: 22.217.1016.0002 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{6A2A8076-135F-4F55-BB02-DED67C8C6934}) (Version: 4.67.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005 (HKLM\...\{929FBD26-9020-399B-9A7A-751D61F0B942}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005 (HKLM\...\{A749D8E6-B613-3BE3-8F5F-045C84EBA29B}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (HKLM-x32\...\{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (HKLM-x32\...\{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.28.29334 (HKLM-x32\...\{a9cfe9c7-e54f-46cd-9c5c-542ff8e3e8c4}) (Version: 14.28.29334.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.28.29334 (HKLM-x32\...\{b2d0f752-adc5-496e-8f70-8669de01f746}) (Version: 14.28.29334.0 - Microsoft Corporation)
Microsoft Visual C++ 2019 X64 Additional Runtime - 14.28.29334 (HKLM\...\{2E11EF4E-901F-4B2D-B68E-3DB2A566C857}) (Version: 14.28.29334 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2019 X64 Minimum Runtime - 14.28.29334 (HKLM\...\{8A3F7D5B-422D-49D9-84F7-8DC1B7782967}) (Version: 14.28.29334 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2019 X86 Additional Runtime - 14.28.29334 (HKLM-x32\...\{14C49FC8-3E9B-4F29-8526-26629B5CF30B}) (Version: 14.28.29334 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2019 X86 Minimum Runtime - 14.28.29334 (HKLM-x32\...\{0D01A812-82A1-481F-8546-8E28E976F8DF}) (Version: 14.28.29334 - Microsoft Corporation) Hidden
NVIDIA FrameView SDK 1.2.4999.30397803 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.2.4999.30397803 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.24.0.126 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.24.0.126 - NVIDIA Corporation)
NVIDIA Grafiktreiber 512.78 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 512.78 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.21.0713 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.21.0713 - NVIDIA Corporation)
OBS Studio (HKLM-x32\...\OBS Studio) (Version: 27.1.3 - OBS Project)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.15726.20096 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.15726.20096 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0407-1000-0000000FF1CE}) (Version: 16.0.15726.20096 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0409-1000-0000000FF1CE}) (Version: 16.0.14131.20278 - Microsoft Corporation) Hidden
OpenOffice 4.1.8 (HKLM-x32\...\{3C1972F6-E411-4B54-AD4C-EF24894301D6}) (Version: 4.18.9803 - Apache Software Foundation)
OpenOffice Updater (HKU\S-1-5-21-3349990796-3301203750-1932007998-1001\...\OpenOffice Updater) (Version: 1.1.10 - OpenOffice) <==== ACHTUNG
Origin (HKLM-x32\...\Origin) (Version: 10.5.108.49699 - Electronic Arts, Inc.)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Windows-PC-Integritätsprüfung (HKLM\...\{68C9C2A4-C212-4310-AB68-12F97050A416}) (Version: 3.2.2110.14001 - Microsoft Corporation)
Zoom (HKU\S-1-5-21-3349990796-3301203750-1932007998-1001\...\ZoomUMX) (Version: 5.4.7 (59784.1220) - Zoom Video Communications, Inc.)
Packages:
=========
Amazon -> C:\Program Files\WindowsApps\Amazon.com.Amazon_2018.519.2815.0_x64__343d40qqvtj1t [2022-10-17] (Amazon.com)
B&O Audio Control -> C:\Program Files\WindowsApps\AD2F1837.BOAudioControl_1.15.226.0_x64__v10z8vjag6ke6 [2022-09-18] (HP Inc.)
Dropbox-Sonderaktion -> C:\Program Files\WindowsApps\C27EB4BA.DropboxOEM_22.4.18.0_x64__xbfy0k16fey96 [2022-09-18] (Dropbox Inc.)
Energy Star -> C:\Program Files\WindowsApps\AD2F1837.HPInc.EnergyStar_1.2.0.0_x64__v10z8vjag6ke6 [2021-04-06] (HP Inc.)
Fotos-Add-On -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2021.39122.10110.0_x64__8wekyb3d8bbwe [2022-02-26] (Microsoft Corporation)
HP CoolSense -> C:\Program Files\WindowsApps\AD2F1837.HPCoolSense_1.1.2.0_x64__v10z8vjag6ke6 [2020-10-16] (HP Inc.)
HP Impreza Pen -> C:\Program Files\WindowsApps\9FDF1AF1.HPImprezaPen_1.1.14.0_x64__g70az3e2cx9m2 [2020-10-16] (ELAN MICROELECTRONICS CORP.) [Startup Task]
HP JumpStarts -> C:\Program Files\WindowsApps\AD2F1837.HPJumpStarts_1.10.1627.0_x64__v10z8vjag6ke6 [2021-05-28] (HP Inc.)
HP PC Hardware Diagnostics Windows -> C:\Program Files\WindowsApps\AD2F1837.HPPCHardwareDiagnosticsWindows_1.8.3.0_x64__v10z8vjag6ke6 [2022-10-17] (HP Inc.)
HP Privacy Settings -> C:\Program Files\WindowsApps\AD2F1837.HPPrivacySettings_1.1.54.0_x64__v10z8vjag6ke6 [2022-10-26] (HP Inc.)
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_140.1.307.0_x64__v10z8vjag6ke6 [2022-11-08] (HP Inc.)
HP Support Assistant -> C:\Program Files\WindowsApps\AD2F1837.HPSupportAssistant_9.21.30.0_x64__v10z8vjag6ke6 [2022-11-07] (HP Inc.)
HP System Event Utility -> C:\Program Files\WindowsApps\AD2F1837.HPSystemEventUtility_1.3.2.0_x64__v10z8vjag6ke6 [2022-08-19] (HP Inc.)
Intel® Grafik-Kontrollraum -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.3408.0_x64__8j3eq9eme6ctt [2022-09-18] (INTEL CORP) [Startup Task]
Intel® Optane™ Memory and Storage Management -> C:\Program Files\WindowsApps\AppUp.IntelOptaneMemoryandStorageManagement_18.1.1037.0_x64__8j3eq9eme6ctt [2022-10-17] (INTEL CORP)
Media Engine-Add-On für Fotos -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2021-08-16] (Microsoft Corporation)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2022-02-05] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2022-02-05] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.14.9130.0_x64__8wekyb3d8bbwe [2022-09-18] (Microsoft Studios) [MS Ad]
Netflix -> C:\Program Files\WindowsApps\4DF9E0F8.Netflix_6.98.1805.0_x64__mcm4njqhnhss8 [2022-10-17] (Netflix, Inc.)
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.963.0_x64__56jybvy8sckqj [2022-10-17] (NVIDIA Corp.)
Samsung Printer Experience -> C:\Program Files\WindowsApps\SAMSUNGELECTRONICSCO.LTD.SamsungPrinterExperience_1.3.15.0_x64__3c1yjt4zspk6g [2021-01-27] (Samsung Electronics Co. Ltd.)
Solitär -> C:\Program Files\WindowsApps\26720RandomSaladGamesLLC.SimpleSolitaire_7.4.14.0_x64__kx24dqmazqk8j [2022-10-26] (Random Salad Games LLC)
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.197.962.0_x86__zpdnekdrzrea0 [2022-11-01] (Spotify AB) [Startup Task]
Square Video Movie Maker & Editor -> C:\Program Files\WindowsApps\58337MediaAppsDev.SquareVideoMovieMakerEditor_1.1.5.0_x64__fwxdebw7hh1dt [2022-10-17] (Media Apps Dev) [MS Ad]
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
ShellIconOverlayIdentifiers: [ OptaneIconOverlay] -> {A3AF6F6C-8BED-3D93-8B5D-33427B5D38E9} => C:\WINDOWS\System32\DriverStore\FileRepository\iastorpinningcomponent.inf_amd64_59691a4ee8d947dd\OptaneShellExt.dll [2021-10-12] (Intel Corporation -> )
ContextMenuHandlers3: [OptaneContextMenu] -> {AD7EBB13-617D-3270-8FA8-46583499C4FB} => C:\WINDOWS\System32\DriverStore\FileRepository\iastorpinningcomponent.inf_amd64_59691a4ee8d947dd\OptaneShellExt.dll [2021-10-12] (Intel Corporation -> )
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nvhm.inf_amd64_4a2f8a62d5686839\nvshext.dll [2022-06-08] (Nvidia Corporation -> NVIDIA Corporation)
==================== Codecs (Nicht auf der Ausnahmeliste) ====================
==================== Verknüpfungen & WMI ========================
==================== Geladene Module (Nicht auf der Ausnahmeliste) =============
2022-04-14 17:25 - 2022-11-12 12:42 - 000010240 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\Microsoft\Edge\Application\CRYPTBASE.DLL
2022-11-07 20:21 - 2022-11-07 10:34 - 000156160 _____ () [Datei ist nicht signiert] C:\Program Files\LGHUB\resources\app.asar.unpacked\keytar.node
2022-06-22 12:44 - 2022-06-22 12:44 - 000138240 _____ () [Datei ist nicht signiert] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Interop.IWs06dcaa36#\4a3769626565d5b38994a350ecd077f7\Interop.IWshRuntimeLibrary.ni.dll
2020-10-16 10:26 - 2020-10-16 10:26 - 011708928 _____ (HP Inc.) [Datei ist nicht signiert] C:\Program Files\WindowsApps\AD2F1837.HPCoolSense_1.1.2.0_x64__v10z8vjag6ke6\CoolSenseUwp.dll
2020-10-16 10:26 - 2020-10-16 10:26 - 000013312 _____ (HP Inc.) [Datei ist nicht signiert] C:\Program Files\WindowsApps\AD2F1837.HPCoolSense_1.1.2.0_x64__v10z8vjag6ke6\NativeRpcClient.dll
2022-01-25 16:47 - 2022-01-25 16:47 - 000014336 _____ (HP Inc.) [Datei ist nicht signiert] C:\Program Files\WindowsApps\AD2F1837.HPSystemEventUtility_1.3.2.0_x64__v10z8vjag6ke6\SystemEventUtility\NativeRpcClient.DLL
2022-04-20 19:02 - 2022-04-20 19:03 - 042859520 _____ (Intel Corporation) [Datei ist nicht signiert] C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.3408.0_x64__8j3eq9eme6ctt\IGCC.dll
2022-01-16 23:01 - 2022-01-16 23:00 - 001282048 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Datei ist nicht signiert] C:\Program Files (x86)\Origin\LIBEAY32.dll
2022-01-16 23:01 - 2022-01-16 23:00 - 000279040 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Datei ist nicht signiert] C:\Program Files (x86)\Origin\ssleay32.dll
2022-01-16 23:01 - 2022-01-16 23:00 - 001611264 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\Origin\platforms\qwindows.dll
2022-01-16 23:01 - 2022-01-16 23:00 - 005487104 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\Origin\Qt5Core.dll
2022-01-16 23:01 - 2022-01-16 23:00 - 005841920 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\Origin\Qt5Gui.dll
2022-01-16 23:01 - 2022-01-16 23:00 - 001179136 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\Origin\Qt5Network.dll
2022-01-16 23:01 - 2022-01-16 23:00 - 000146432 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\Origin\Qt5WebSockets.dll
2022-01-16 23:01 - 2022-01-16 23:00 - 005089792 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\Origin\Qt5Widgets.dll
2022-01-16 23:01 - 2022-01-16 23:00 - 000184832 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\Origin\Qt5Xml.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) ========
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ==================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McMPFSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MCODS => ""="Service"
==================== Verknüpfungen (Nicht auf der Ausnahmeliste) =================
==================== Internet Explorer (Nicht auf der Ausnahmeliste) ==========
SearchScopes: HKLM -> {C4207C10-8EF6-4367-9123-01D80D873596} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_ieauk?ie=UTF-8&tag=hp-uk1-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
SearchScopes: HKLM-x32 -> {C4207C10-8EF6-4367-9123-01D80D873596} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_ieauk?ie=UTF-8&tag=hp-uk1-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
SearchScopes: HKU\S-1-5-21-3349990796-3301203750-1932007998-1001 -> {C4207C10-8EF6-4367-9123-01D80D873596} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_ieauk?ie=UTF-8&tag=hp-uk1-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\HP\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2022-10-26] (HP Inc. -> HP Inc.)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2022-11-02] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\HP\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2022-10-26] (HP Inc. -> HP Inc.)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-11-02] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-11-02] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-11-02] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-11-02] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-11-02] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-11-02] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-11-02] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-11-02] (Microsoft Corporation -> Microsoft Corporation)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
IE trusted site: HKU\S-1-5-21-3349990796-3301203750-1932007998-1001\...\localhost -> localhost
IE trusted site: HKU\S-1-5-21-3349990796-3301203750-1932007998-1001\...\webcompanion.com -> hxxp://webcompanion.com
==================== Hosts Inhalt: =========================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2019-12-07 10:14 - 2019-12-07 10:12 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
==================== Andere Bereiche ===========================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKU\S-1-5-21-3349990796-3301203750-1932007998-1001\Control Panel\Desktop\\Wallpaper -> C:\windows\web\wallpaper\HP Backgrounds\backgroundDefault.jpg
DNS Servers: 192.168.178.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
ist aktiviert.
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [{E2E5B981-E66C-4D6A-9CF4-203885FB9CC1}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{65206698-2DB8-4831-9DB7-09E25BCB77C6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Animaze\Bin\AnimazeDesktop.exe => Keine Datei
FirewallRules: [{00EC4AD5-A6A0-449E-A65A-09E8CFDDE757}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Animaze\Bin\AnimazeDesktop.exe => Keine Datei
FirewallRules: [{235D1C7C-5D65-404F-B28A-59EC0B13845A}] => (Block) C:\users\appyt\appdata\roaming\twitch studio\bin\twitchstudioagent.exe => Keine Datei
FirewallRules: [{C8631CB6-471B-42CB-9D8C-E95ABA261208}] => (Block) C:\users\appyt\appdata\roaming\twitch studio\bin\twitchstudioagent.exe => Keine Datei
FirewallRules: [UDP Query User{86F00C34-F851-4FB6-B5C6-94AAECE588A7}C:\users\appyt\appdata\roaming\twitch studio\bin\twitchstudioagent.exe] => (Allow) C:\users\appyt\appdata\roaming\twitch studio\bin\twitchstudioagent.exe => Keine Datei
FirewallRules: [TCP Query User{A70D798B-940E-41AD-B5E1-40F30FC7AE45}C:\users\appyt\appdata\roaming\twitch studio\bin\twitchstudioagent.exe] => (Allow) C:\users\appyt\appdata\roaming\twitch studio\bin\twitchstudioagent.exe => Keine Datei
FirewallRules: [{9F66FBED-C52B-433D-B684-298F35671FEE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dorfromantik\Dorfromantik.exe () [Datei ist nicht signiert]
FirewallRules: [{1864ED4E-6D27-491A-B039-569AD200A399}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dorfromantik\Dorfromantik.exe () [Datei ist nicht signiert]
FirewallRules: [{A168A4C6-6E51-442F-A35F-04BD4323EB94}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{BEB183F5-01ED-4DEF-AB4F-18495EFB58D6}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{8197C9FC-2470-4225-B424-9EA331759577}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{E147489A-ED34-4D13-8EFA-E5F6C6AB385B}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{F2EA6A90-C823-4307-B3C6-3F0C6FF5E72A}] => (Allow) C:\Users\appyt\AppData\Roaming\Zoom\bin\airhost.exe => Keine Datei
FirewallRules: [{4D950742-B43C-4F22-9D31-47CC55BB1390}] => (Allow) C:\Users\appyt\AppData\Roaming\Zoom\bin\airhost.exe => Keine Datei
FirewallRules: [{6151939B-359E-461B-B6D6-255C78B5ACDD}] => (Allow) C:\Users\appyt\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{08ACD421-8F56-441F-9636-85793D0FBFD4}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{43B39F49-445D-4A35-B899-58AA08461B02}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{246E08DC-5423-4CAA-8390-E16DD951E9A0}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{C449E5D3-B1BF-4DC9-AD96-2067D1DFDF0B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{FE834D86-98DE-44AA-A570-66A200634C30}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{B216EEED-C963-41AF-857E-E099052E2F9C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [TCP Query User{34387238-F963-4C52-B789-CE421ED7A983}C:\program files (x86)\up deck\updeck.exe] => (Allow) C:\program files (x86)\up deck\updeck.exe => Keine Datei
FirewallRules: [UDP Query User{18A20780-FDBF-4092-B376-1CD02D036EB1}C:\program files (x86)\up deck\updeck.exe] => (Allow) C:\program files (x86)\up deck\updeck.exe => Keine Datei
FirewallRules: [TCP Query User{B7D6562D-202B-4F7E-9BDF-931FE20350CE}C:\program files\lghub\lghub_agent.exe] => (Allow) C:\program files\lghub\lghub_agent.exe (Logitech Inc -> Logitech, Inc.)
FirewallRules: [UDP Query User{6DDB6EB9-46C7-4F90-AF3E-3D0EF1B773D0}C:\program files\lghub\lghub_agent.exe] => (Allow) C:\program files\lghub\lghub_agent.exe (Logitech Inc -> Logitech, Inc.)
FirewallRules: [TCP Query User{7CD2C11C-35DC-42D3-8F00-5866B7A77118}C:\program files\lghub\lghub_agent.exe] => (Block) C:\program files\lghub\lghub_agent.exe (Logitech Inc -> Logitech, Inc.)
FirewallRules: [UDP Query User{949A684D-A061-4552-8EF9-0C1379343879}C:\program files\lghub\lghub_agent.exe] => (Block) C:\program files\lghub\lghub_agent.exe (Logitech Inc -> Logitech, Inc.)
FirewallRules: [TCP Query User{B3F1BAFB-2A62-4736-8158-740A1845B794}C:\program files\lumia stream\lumia stream.exe] => (Allow) C:\program files\lumia stream\lumia stream.exe => Keine Datei
FirewallRules: [UDP Query User{D5ADDA2B-03CD-4C88-B563-748FBAEDC2FB}C:\program files\lumia stream\lumia stream.exe] => (Allow) C:\program files\lumia stream\lumia stream.exe => Keine Datei
FirewallRules: [{F7EF1FA8-91BC-47CE-BB25-9006133572CB}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\106.0.1370.34\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{A423B67B-FDA9-4DAA-B182-62D09F5FC77D}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\106.0.1370.37\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{1995D629-2FD1-4E28-8708-B04D181F4871}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.197.962.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{34274938-EC98-4371-A3E8-7C05357075C3}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.197.962.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{F3A1F921-A01C-440D-965E-EB1A14773D99}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.197.962.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{584EF431-CB5D-4486-9556-BAE00E05A9F7}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.197.962.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{7221159D-F05B-4758-8313-FA00F6772A60}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.197.962.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{27A97127-FD60-4E36-AD0A-3120C268242F}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.197.962.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{F6AA0E86-4E7D-4D53-B93B-C3B0314EBC7E}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.197.962.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{1C05A54B-3627-46D1-B772-B4C019CF182F}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.197.962.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{833CCE9C-48DD-43D6-A8B4-8E7794E4D0E6}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.90.3407.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{BF813590-E540-40F5-AAFE-B7B278A42358}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.90.3407.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{15D097D3-D229-445A-AA4B-A75A929E62E3}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.90.3407.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{B600E216-EAC5-4346-9F35-AB15C34C48D7}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.90.3407.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{678CFCE7-542A-4089-818C-89ED9E2E1AA4}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_22287.702.1670.9453_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{C9B70636-234A-45E7-A788-A820614E9A58}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_22287.702.1670.9453_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{4FFDB2E1-50EF-4174-8571-4EBA234893D5}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
==================== Wiederherstellungspunkte =========================
26-10-2022 14:29:03 Geplanter Prüfpunkt
02-11-2022 20:01:37 Geplanter Prüfpunkt
10-11-2022 16:44:44 Windows Modules Installer
12-11-2022 12:22:15 Plarium Play
==================== Fehlerhafte Geräte im Gerätemanager ============
==================== Fehlereinträge in der Ereignisanzeige: ========================
Applikationsfehler:
==================
Error: (11/12/2022 12:33:38 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: SecurityHealthService.exe, Version: 10.0.22000.1042, Zeitstempel: 0x9618ea7b
Name des fehlerhaften Moduls: ucrtbase.dll, Version: 10.0.22000.1, Zeitstempel: 0x00e78ce9
Ausnahmecode: 0xc0000409
Fehleroffset: 0x000000000007dd7e
ID des fehlerhaften Prozesses: 0x3de8
Startzeit der fehlerhaften Anwendung: 0x01d8f68a9b2af5ad
Pfad der fehlerhaften Anwendung: C:\WINDOWS\system32\SecurityHealthService.exe
Pfad des fehlerhaften Moduls: C:\WINDOWS\SYSTEM32\ucrtbase.dll
Berichtskennung: 431f9033-e936-4850-960d-f2cf49d5b1ec
Vollständiger Name des fehlerhaften Pakets:
Anwendungs-ID, die relativ zum fehlerhaften Paket ist:
Error: (11/12/2022 12:32:50 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: SecurityHealthService.exe, Version: 10.0.22000.1042, Zeitstempel: 0x9618ea7b
Name des fehlerhaften Moduls: ucrtbase.dll, Version: 10.0.22000.1, Zeitstempel: 0x00e78ce9
Ausnahmecode: 0xc0000409
Fehleroffset: 0x000000000007dd7e
ID des fehlerhaften Prozesses: 0x3c38
Startzeit der fehlerhaften Anwendung: 0x01d8f5acc8039519
Pfad der fehlerhaften Anwendung: C:\WINDOWS\system32\SecurityHealthService.exe
Pfad des fehlerhaften Moduls: C:\WINDOWS\SYSTEM32\ucrtbase.dll
Berichtskennung: adf6575b-f5b1-4471-92a2-a385ffd41a33
Vollständiger Name des fehlerhaften Pakets:
Anwendungs-ID, die relativ zum fehlerhaften Paket ist:
Error: (10/26/2022 05:09:33 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: AppHelperCap.exe, Version: 1.48.3187.0, Zeitstempel: 0x632fac74
Name des fehlerhaften Moduls: AppHelperCap.exe, Version: 1.48.3187.0, Zeitstempel: 0x632fac74
Ausnahmecode: 0xc0000005
Fehleroffset: 0x000000000001d29c
ID des fehlerhaften Prozesses: 0x4c28
Startzeit der fehlerhaften Anwendung: 0x01d8e94af4ba5711
Pfad der fehlerhaften Anwendung: C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_f0454c515430e99a\x64\AppHelperCap.exe
Pfad des fehlerhaften Moduls: C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_f0454c515430e99a\x64\AppHelperCap.exe
Berichtskennung: 854f607d-c701-49a6-ab79-1c5fad2373d3
Vollständiger Name des fehlerhaften Pakets:
Anwendungs-ID, die relativ zum fehlerhaften Paket ist:
Error: (10/26/2022 03:55:09 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: AppHelperCap.exe, Version: 1.48.3187.0, Zeitstempel: 0x632fac74
Name des fehlerhaften Moduls: AppHelperCap.exe, Version: 1.48.3187.0, Zeitstempel: 0x632fac74
Ausnahmecode: 0xc0000005
Fehleroffset: 0x000000000001d29c
ID des fehlerhaften Prozesses: 0x34f8
Startzeit der fehlerhaften Anwendung: 0x01d8e93d3ba7144c
Pfad der fehlerhaften Anwendung: C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_f0454c515430e99a\x64\AppHelperCap.exe
Pfad des fehlerhaften Moduls: C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_f0454c515430e99a\x64\AppHelperCap.exe
Berichtskennung: 967654d1-aa61-4775-801a-5070d42cf062
Vollständiger Name des fehlerhaften Pakets:
Anwendungs-ID, die relativ zum fehlerhaften Paket ist:
Error: (10/17/2022 03:00:12 PM) (Source: Microsoft Office 16) (EventID: 2011) (User: )
Description: Office Subscription licensing exception: Error Code: 0x305; CorrelationId: {F1FE7E23-75A4-4F8B-AB63-22DB897EA967}
Error: (10/14/2022 09:37:15 PM) (Source: VSS) (EventID: 12344) (User: )
Description: Volumeschattenkopie-Fehler: Bei der Selbstinitialisierung des Registrierungs-Generators ist der Fehler "0x00000000c000014d" aufgetreten.
Dies kann dazu führen, dass die Schattenkopie nicht erstellt werden kann. Prüfen Sie das Anwendungsereignisprotokoll auf diesbezügliche Fehler.
Vorgang:
OnFreeze-Ereignis
Freeze-Ereignis
Kontext:
Ausführungskontext: Registry Writer
Ausführungskontext: Writer
Generatorklassen-ID: {afbab4a2-367d-4d15-a586-71dbb18f8485}
Generatorname: Registry Writer
Generatorinstanz-ID: {6ad7c76f-c370-4292-beba-f81a9dec7c0e}
Error: (10/01/2022 08:38:43 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: SysInfoCap.exe, Version: 1.46.3053.0, Zeitstempel: 0x62d7062c
Name des fehlerhaften Moduls: combase.dll, Version: 10.0.22000.918, Zeitstempel: 0x27e32120
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000000000aef85
ID des fehlerhaften Prozesses: 0xb20
Startzeit der fehlerhaften Anwendung: 0x01d8d34142df66f6
Pfad der fehlerhaften Anwendung: C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_ca8cb2046afa6b22\x64\SysInfoCap.exe
Pfad des fehlerhaften Moduls: C:\WINDOWS\System32\combase.dll
Berichtskennung: fbe1ec43-a7f0-4e5d-84ba-f81fd7e1e489
Vollständiger Name des fehlerhaften Pakets:
Anwendungs-ID, die relativ zum fehlerhaften Paket ist:
Error: (09/26/2022 06:15:09 PM) (Source: DPTF) (EventID: 17) (User: NT-AUTORITÄT)
Description: Event-ID 17
Systemfehler:
=============
Error: (11/12/2022 03:10:48 PM) (Source: volmgr) (EventID: 161) (User: )
Description: Erstellung einer Abbilddatei aufgrund eines Fehlers beim Erstellen der Abbildkopie fehlgeschlagen.
Error: (11/12/2022 02:56:34 PM) (Source: Server) (EventID: 2505) (User: )
Description: Aufgrund eines doppelten Netzwerknamens konnte zu der Transportschicht \Device\NetBT_Tcpip_{0C80D462-6A09-47EC-A94A-21D92923DB60} vom Serverdienst nicht gebunden werden. Der Serverdienst konnte nicht gestartet werden.
Error: (11/12/2022 12:40:45 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-Q7BCFQ5)
Description: Der Server "{8CFC164F-4BE5-4FDD-94E9-E2AF73ED4A19}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.
Error: (11/12/2022 12:33:38 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Windows-Sicherheitsdienst" wurde unerwartet beendet. Dies ist bereits 2 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 60000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (11/12/2022 12:33:00 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Windows-Sicherheitsdienst" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 60000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (11/12/2022 11:53:35 AM) (Source: Server) (EventID: 2505) (User: )
Description: Aufgrund eines doppelten Netzwerknamens konnte zu der Transportschicht \Device\NetBT_Tcpip_{0C80D462-6A09-47EC-A94A-21D92923DB60} vom Serverdienst nicht gebunden werden. Der Serverdienst konnte nicht gestartet werden.
Error: (11/10/2022 05:48:47 PM) (Source: Server) (EventID: 2505) (User: )
Description: Aufgrund eines doppelten Netzwerknamens konnte zu der Transportschicht \Device\NetBT_Tcpip_{0C80D462-6A09-47EC-A94A-21D92923DB60} vom Serverdienst nicht gebunden werden. Der Serverdienst konnte nicht gestartet werden.
Error: (11/10/2022 05:25:10 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT-AUTORITÄT)
Description: Installationsfehler: Die Installation des folgenden Updates ist mit Fehler 0x80073d02 fehlgeschlagen: 9NMPJ99VJBWV-Microsoft.YourPhone
Windows Defender:
================
Date: 2022-11-12 15:28:37
Description:
Microsoft Defender Antivirus hat Schadsoftware oder andere potenziell unerwünschte Software erkannt.
Weitere Informationen:
https://go.microsoft.com/fwlink/?linkid=37020&name=Backdoor:Win32/Bladabindi!mclg&threatid=2147784274&enterprise=0
Name: Backdoor:Win32/Bladabindi!mclg
Schweregrad: Schwerwiegend
Kategorie: Hintertür
Pfad: file:_C:\Windows\Temp\8274f5c6-6a29-3b82-5f92-3f958dc112fb\98363fee-e070-088e-261e-25a7e3eaa3f7.exe
Erkennungsursprung: Lokaler Computer
Erkennungstype: Konkret
Erkennungsquelle: Echtzeitschutz
Benutzer: NT-AUTORITÄT\SYSTEM
Prozessname: C:\Program Files (x86)\nodejs\node.exe
Sicherheitsversion: AV: 1.379.235.0, AS: 1.379.235.0, NIS: 1.379.235.0
Modulversion: AM: 1.1.19800.4, NIS: 1.1.19800.4
Date: 2022-11-12 15:14:10
Description:
Microsoft Defender Antivirus hat Schadsoftware oder andere potenziell unerwünschte Software erkannt.
Weitere Informationen:
https://go.microsoft.com/fwlink/?linkid=37020&name=Backdoor:Win32/Bladabindi!mclg&threatid=2147784274&enterprise=0
Name: Backdoor:Win32/Bladabindi!mclg
Schweregrad: Schwerwiegend
Kategorie: Hintertür
Pfad: file:_C:\Windows\Temp\00cdf7b5-d079-8709-e212-50b5a0b4ff47\e795f2eb-9f3a-2118-e36e-baaee7e8f64a.exe; file:_C:\Windows\Temp\0e5509e8-30d1-80fc-8a4d-d65673bbcbf6\449d3db5-05f1-82d2-8ac3-9ba4676a3d03.exe
Erkennungsursprung: Lokaler Computer
Erkennungstype: Konkret
Erkennungsquelle: Echtzeitschutz
Benutzer: NT-AUTORITÄT\SYSTEM
Prozessname: C:\Program Files (x86)\nodejs\node.exe
Sicherheitsversion: AV: 1.379.235.0, AS: 1.379.235.0, NIS: 1.379.235.0
Modulversion: AM: 1.1.19800.4, NIS: 1.1.19800.4
Date: 2022-11-12 15:14:10
Description:
Microsoft Defender Antivirus hat Schadsoftware oder andere potenziell unerwünschte Software erkannt.
Weitere Informationen:
https://go.microsoft.com/fwlink/?linkid=37020&name=Backdoor:Win32/Bladabindi!mclg&threatid=2147784274&enterprise=0
Name: Backdoor:Win32/Bladabindi!mclg
Schweregrad: Schwerwiegend
Kategorie: Hintertür
Pfad: file:_C:\Windows\Temp\00cdf7b5-d079-8709-e212-50b5a0b4ff47\e795f2eb-9f3a-2118-e36e-baaee7e8f64a.exe
Erkennungsursprung: Lokaler Computer
Erkennungstype: Konkret
Erkennungsquelle: Echtzeitschutz
Benutzer: NT-AUTORITÄT\SYSTEM
Prozessname: C:\Program Files (x86)\nodejs\node.exe
Sicherheitsversion: AV: 1.379.235.0, AS: 1.379.235.0, NIS: 1.379.235.0
Modulversion: AM: 1.1.19800.4, NIS: 1.1.19800.4
Date: 2022-11-12 11:59:32
Description:
Microsoft Defender Antivirus hat Schadsoftware oder andere potenziell unerwünschte Software erkannt.
Weitere Informationen:
https://go.microsoft.com/fwlink/?linkid=37020&name=Backdoor:Win32/Bladabindi!mclg&threatid=2147784274&enterprise=0
Name: Backdoor:Win32/Bladabindi!mclg
Schweregrad: Schwerwiegend
Kategorie: Hintertür
Pfad: file:_C:\Windows\Temp\40a5d7a0-3382-7761-e236-f858ca0dbdf6\bc6a1fce-55e5-a62a-8389-24b00a24c6e7.exe; file:_C:\Windows\Temp\a6d254d5-4619-179b-9557-f14a491467ce\79ae2931-7574-2ba0-7862-0565b3ce18ed.exe
Erkennungsursprung: Lokaler Computer
Erkennungstype: Konkret
Erkennungsquelle: Echtzeitschutz
Benutzer: NT-AUTORITÄT\SYSTEM
Prozessname: C:\Program Files (x86)\nodejs\node.exe
Sicherheitsversion: AV: 1.379.235.0, AS: 1.379.235.0, NIS: 1.379.235.0
Modulversion: AM: 1.1.19800.4, NIS: 1.1.19800.4
Date: 2022-11-12 11:59:32
Description:
Microsoft Defender Antivirus hat Schadsoftware oder andere potenziell unerwünschte Software erkannt.
Weitere Informationen:
https://go.microsoft.com/fwlink/?linkid=37020&name=Backdoor:Win32/Bladabindi!mclg&threatid=2147784274&enterprise=0
Name: Backdoor:Win32/Bladabindi!mclg
Schweregrad: Schwerwiegend
Kategorie: Hintertür
Pfad: file:_C:\Windows\Temp\40a5d7a0-3382-7761-e236-f858ca0dbdf6\bc6a1fce-55e5-a62a-8389-24b00a24c6e7.exe
Erkennungsursprung: Lokaler Computer
Erkennungstype: Konkret
Erkennungsquelle: Echtzeitschutz
Benutzer: NT-AUTORITÄT\SYSTEM
Prozessname: C:\Program Files (x86)\nodejs\node.exe
Sicherheitsversion: AV: 1.379.235.0, AS: 1.379.235.0, NIS: 1.379.235.0
Modulversion: AM: 1.1.19800.4, NIS: 1.1.19800.4
Event[0]
Date: 2022-10-17 11:32:39
Description:
Bei Microsoft Defender Antivirus ist ein Fehler beim Aktualisieren der Sicherheitsinformationen aufgetreten.
Neue Version der Sicherheitsinformationen:
%Vorherige Version der Sicherheitsinformationen: 1.377.281.0
Update Source: Microsoft Update-Server
Sicherheitstyp: AntiVirus
Updatetyp: Voll
Benutzer: NT-AUTORITÄT\SYSTEM
Aktuelle Modulversion:
%Vorherige Modulversion: 1.1.19700.3
Fehlercode: 0x80240016
Fehlerbeschreibung: Unerwartetes Problem bei der Überprüfung auf Updates. Informationen zum Installieren von Updates oder zur Problembehandlung finden Sie unter "Hilfe und Support".
Date: 2022-09-19 10:46:39
Description:
Bei Microsoft Defender Antivirus ist ein Fehler beim Aktualisieren der Sicherheitsinformationen aufgetreten.
Neue Version der Sicherheitsinformationen:
%Vorherige Version der Sicherheitsinformationen: 1.375.584.0
Update Source: Microsoft Update-Server
Sicherheitstyp: AntiVirus
Updatetyp: Voll
Benutzer: NT-AUTORITÄT\SYSTEM
Aktuelle Modulversion:
%Vorherige Modulversion: 1.1.19600.3
Fehlercode: 0x80240016
Fehlerbeschreibung: Unerwartetes Problem bei der Überprüfung auf Updates. Informationen zum Installieren von Updates oder zur Problembehandlung finden Sie unter "Hilfe und Support".
Date: 2022-08-14 20:38:11
Description:
Bei Microsoft Defender Antivirus ist ein Fehler beim Aktualisieren der Sicherheitsinformationen aufgetreten.
Neue Version der Sicherheitsinformationen:
%Vorherige Version der Sicherheitsinformationen: 1.373.157.0
Update Source: Microsoft Update-Server
Sicherheitstyp: AntiVirus
Updatetyp: Voll
Benutzer: NT-AUTORITÄT\SYSTEM
Aktuelle Modulversion:
%Vorherige Modulversion: 1.1.19500.2
Fehlercode: 0x80240016
Fehlerbeschreibung: Unerwartetes Problem bei der Überprüfung auf Updates. Informationen zum Installieren von Updates oder zur Problembehandlung finden Sie unter "Hilfe und Support".
CodeIntegrity:
===============
Date: 2022-11-12 15:12:30
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume3\Program Files\Google\Chrome\Application\version.dll that did not meet the Microsoft signing level requirements.
Date: 2022-11-12 15:11:11
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.6-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_14a5bb6045f923bf\igd10iumd64.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2022-11-12 12:33:38
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\fcon.dll because the set of per-page image hashes could not be found on the system.
==================== Speicherinformationen ===========================
BIOS: Insyde F.12 03/28/2022
Hauptplatine: HP 8670
Prozessor: Intel(R) Core(TM) i7-10510U CPU @ 1.80GHz
Prozentuale Nutzung des RAM: 45%
Installierter physikalischer RAM: 16171.49 MB
Verfügbarer physikalischer RAM: 8799.72 MB
Summe virtueller Speicher: 18603.49 MB
Verfügbarer virtueller Speicher: 9750.16 MB
==================== Laufwerke ================================
Drive c: (Windows) (Fixed) (Total:475.76 GB) (Free:374.58 GB) (Model: Intel Optane+477GBSSD) NTFS
\\?\Volume{1d413090-71ef-4433-83cc-2998c1750d76}\ () (Fixed) (Total:0.9 GB) (Free:0.08 GB) NTFS
\\?\Volume{1a151d0b-7f0a-42af-92dd-96e929edabf5}\ (SYSTEM) (Fixed) (Total:0.25 GB) (Free:0.17 GB) FAT32
==================== MBR & Partitionstabelle ====================
==========================================================
Disk: 0 (Size: 476.9 GB) (Disk ID: A50E1C7D)
Partition: GPT.
==================== Ende von Addition.txt =======================
|
|
12.11.2022, 19:10
| #2 | |
| /// TB-Ausbilder   | Programm versucht automatisch Chrome Extension zu installieren (web safety) Mein Name ist Matthias und ich werde dir bei der Analyse und der eventuell notwendigen Bereinigung deines Computers helfen. Zitat:
 Wir kümmern uns darum, keine Sorge.  Schritt 1 Führe Malwarebytes' AntiMalware (MBAM) gemäß der bebilderten Anleitung aus und poste abschließend die Logdatei. Schritt 2 Führe AdwCleaner gemäß der bebilderten Anleitung aus und poste abschließend die Logdatei. Schritt 3
Bitte poste mit deiner nächsten Antwort:
|
|
15.11.2022, 19:41
| #3 |
| | Programm versucht automatisch Chrome Extension zu installieren (web safety) Hallo Matthias,
__________________vielen Dank für die schnelle Antwort. Seit heute ist der yahoo redirect wieder da. Anbei die Logs. Aufgrund der Länge muss ich sie auf 2 Posts aufteilen. VG FrProfDoc Code:
ATTFilter # -------------------------------
# Malwarebytes AdwCleaner 8.4.0.0
# -------------------------------
# Build: 08-30-2022
# Database: 2022-10-10.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 11-15-2022
# Duration: 00:00:01
# OS: Windows 11 (Build 22000.1219)
# Cleaned: 14
# Failed: 0
***** [ Services ] *****
No malicious services cleaned.
***** [ Folders ] *****
Deleted C:\ProgramData\Application Data\Lavasoft\Web Companion
Deleted C:\ProgramData\BSD\DriverHive
Deleted C:\ProgramData\BSD\DriverHiveEngine
Deleted C:\Users\appyt\AppData\Roaming\OpenOffice Updater
***** [ Files ] *****
Deleted C:\Users\Public\Desktop\updatepush.com.lnk
Deleted C:\Windows\Reimage.ini
***** [ DLL ] *****
No malicious DLLs cleaned.
***** [ WMI ] *****
No malicious WMI cleaned.
***** [ Shortcuts ] *****
No malicious shortcuts cleaned.
***** [ Tasks ] *****
No malicious tasks cleaned.
***** [ Registry ] *****
Deleted HKCU\Software\Lavasoft\Web Companion
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\webcompanion.com
Deleted HKLM\Software\Reimage
Deleted HKLM\Software\Wow6432Node\BSD
Deleted HKLM\Software\Wow6432Node\Lavasoft\Web Companion
Deleted HKU\.DEFAULT\Software\Mozilla\NativeMessagingHosts\com.webcompanion.native
Deleted HKU\S-1-5-18\SOFTWARE\Mozilla\NativeMessagingHosts\com.webcompanion.native
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries cleaned.
***** [ Chromium URLs ] *****
No malicious Chromium URLs cleaned.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries cleaned.
***** [ Firefox URLs ] *****
No malicious Firefox URLs cleaned.
***** [ Hosts File Entries ] *****
No malicious hosts file entries cleaned.
***** [ Preinstalled Software ] *****
Deleted Preinstalled.WildTangentGamesBundle Folder C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WILDTANGENT GAMES
*************************
[+] Delete Tracing Keys
[+] Reset Winsock
*************************
AdwCleaner[S00].txt - [4787 octets] - [15/11/2022 19:22:28]
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########
FRST Logfile: Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 15-11-2022
durchgeführt von appyt (Administrator) auf DESKTOP-Q7BCFQ5 (HP HP Pavilion x360 Convertible 14-dh1xxx) (15-11-2022 19:26:44)
Gestartet von C:\Users\appyt\Downloads
Geladene Profile: appyt
Plattform: Microsoft Windows 11 Home Version 21H2 22000.1219 (X64) Sprache: Deutsch (Deutschland)
Standard-Browser: Chrome
Start-Modus: Normal
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
(C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(DriverStore\FileRepository\hpanalyticscomp.inf_amd64_970b3aa928c32e35\x64\TouchpointAnalyticsClientService.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpanalyticscomp.inf_amd64_970b3aa928c32e35\x64\TouchpointGpuInfo.exe
(Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_agent.exe
(services.exe ->) (Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpanalyticscomp.inf_amd64_970b3aa928c32e35\x64\TouchpointAnalyticsClientService.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_f0454c515430e99a\x64\AppHelperCap.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_f0454c515430e99a\x64\DiagsCap.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_f0454c515430e99a\x64\NetworkCap.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_f0454c515430e99a\x64\SysInfoCap.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_82b77f8c4618e2d0\esif_uf.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\lms.inf_amd64_fddb643595e0b8d0\LMS.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\sgx_psw.inf_amd64_1e59f5ec7049260a\aesm_service.exe
(services.exe ->) (Intel Corporation -> Intel(R) Corporation) C:\Windows\SysWOW64\XtuService.exe
(services.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_updater.exe
(services.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <2>
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvhm.inf_amd64_4a2f8a62d5686839\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
==================== Registry (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Beschränkung <==== ACHTUNG
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Beschränkung <==== ACHTUNG
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Beschränkung <==== ACHTUNG
HKU\S-1-5-19\...\Run: [HPSEU_Host_Launcher] => C:\System.sav\util\HPSEU\HpseuHostLauncher.exe [536152 2022-08-16] (HP Inc. -> HP Inc.)
HKU\S-1-5-20\...\Run: [HPSEU_Host_Launcher] => C:\System.sav\util\HPSEU\HpseuHostLauncher.exe [536152 2022-08-16] (HP Inc. -> HP Inc.)
HKU\S-1-5-21-3349990796-3301203750-1932007998-1001\...\Run: [HPSEU_Host_Launcher] => C:\System.sav\util\HPSEU\HpseuHostLauncher.exe [536152 2022-08-16] (HP Inc. -> HP Inc.)
HKU\S-1-5-21-3349990796-3301203750-1932007998-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4234088 2022-10-19] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-3349990796-3301203750-1932007998-1001\...\Run: [Discord] => C:\Users\appyt\AppData\Local\Discord\Update.exe [1512608 2021-09-21] (Discord Inc. -> GitHub)
HKU\S-1-5-21-3349990796-3301203750-1932007998-1001\...\Run: [LGHUB] => C:\Program Files\LGHUB\lghub.exe [152025856 2022-11-07] (Logitech Inc -> Logitech, Inc.)
HKU\S-1-5-21-3349990796-3301203750-1932007998-1001\...\Run: [MicrosoftEdgeAutoLaunch_3FFDBA17D3F486FC5D0876D2E1CE1812] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [3852232 2022-10-10] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-3349990796-3301203750-1932007998-1001\...\RunOnce: [Delete Cached Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\appyt\AppData\Local\Microsoft\OneDrive\Update\OneDriveSetup.exe" (Keine Datei)
HKU\S-1-5-21-3349990796-3301203750-1932007998-1001\...\RunOnce: [Delete Cached Standalone Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\appyt\AppData\Local\Microsoft\OneDrive\StandaloneUpdater\OneDriveSetup.exe" (Keine Datei)
HKU\S-1-5-21-3349990796-3301203750-1932007998-1001\...\RunOnce: [Uninstall 22.217.1016.0002] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\appyt\AppData\Local\Microsoft\OneDrive\22.217.1016.0002" (Keine Datei)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\107.0.5304.107\Installer\chrmstp.exe [2022-11-12] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] ->
Policies: C:\ProgramData\NTUSER.pol: Beschränkung <==== ACHTUNG
HKLM\SOFTWARE\Policies\Microsoft\Edge: Beschränkung <==== ACHTUNG
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) ============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {055CD0C8-9A7A-4CE2-84E0-1AD133FD8785} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Update Notice => C:\Program Files (x86)\HP\HP Support Framework\Resources\BingPopup\BingPopup.exe [847392 2022-10-26] (HP Inc. -> HP Inc.)
Task: {18097936-7204-48A6-AC01-C58988A21D6E} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1650384 2021-12-08] (Nvidia Corporation -> NVIDIA Corporation)
Task: {1B6E851E-25E6-4FDD-8154-20FD8E2FA505} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26154960 2022-11-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {1EA62801-F9C6-4F96-B7AE-FB4567929E36} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1552376 2022-09-26] (Adobe Inc. -> Adobe Inc.)
Task: {27100FC6-0E56-482B-AC50-D0079E011911} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1650384 2021-12-08] (Nvidia Corporation -> NVIDIA Corporation)
Task: {28D7EE41-C5F5-4CB2-84A9-E70BF2983EC1} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154456 2021-07-14] (Google LLC -> Google LLC)
Task: {2EA841F6-2D8F-41DF-9D05-A8086BA6BDAD} - System32\Tasks\HPAudioSwitch => C:\Program Files (x86)\HP\HPAudioSwitch\HPAudioSwitch.exe [1644472 2019-06-21] (HP Inc. -> HP Inc.)
Task: {3AF09C9F-5BDE-47B9-9B33-9A70FC6E1A87} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154456 2021-07-14] (Google LLC -> Google LLC)
Task: {4205C3FE-C3A9-4E06-891C-1CB811AAC8D1} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1650384 2021-12-08] (Nvidia Corporation -> NVIDIA Corporation)
Task: {51333E95-6DB4-418D-8EAE-E10B24D68969} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26154960 2022-11-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {593C83E2-8756-4552-9AAD-854BBCDD63A0} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker => C:\Program Files (x86)\HP\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [1149512 2022-10-26] (HP Inc. -> HP Inc.)
Task: {5F318E07-E991-409D-A66E-20AF02B3E1D3} - System32\Tasks\RtkAudUService64_BG => C:\windows\System32\RtkAudUService64.exe [1141544 2020-09-03] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {6A69F361-1AB1-4889-8090-B2E029F92353} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [649216 2021-12-08] (Nvidia Corporation -> NVIDIA Corporation)
Task: {81DA3E07-B83D-45D8-BD16-9668DD3B910D} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [904904 2021-12-08] (Nvidia Corporation -> NVIDIA Corporation)
Task: {8214C5F5-A563-4DC8-9085-EAAE8E631733} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [66936 2022-11-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {998024A3-0F5F-4D72-BBD9-9C5A1E2616AA} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [903024 2021-11-16] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {B98E1788-D747-4B99-8857-FB7B8892C992} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [144312 2022-11-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {BC706022-5F3F-4EDD-A225-1C9E958A9AA7} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [144312 2022-11-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {C5B9EB83-59B1-4D3A-BE30-5115ACD1FA1E} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1650384 2021-12-08] (Nvidia Corporation -> NVIDIA Corporation)
Task: {CCDFC0B8-01A3-4E74-A820-4F13F51D269E} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => C:\WINDOWS\System32\MbaeParserTask.exe (Keine Datei)
Task: {D15CB3D8-517B-49C6-890E-EBBC42FD3A1F} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\HP\HP Support Framework\Resources\HPSFReport.exe [138328 2022-10-26] (HP Inc. -> HP Inc.)
Task: {D58F715A-D874-4C56-9709-EB55ADF4B75B} - System32\Tasks\Microsoft\Windows\PI\SecureBootEncodeUEFI => C:\WINDOWS\system32\SecureBootEncodeUEFI.exe [90112 2022-11-10] (Microsoft Windows -> )
Task: {DC8ED20B-5AC8-4092-B589-937D82B78B26} - System32\Tasks\HP\Consent Manager Launcher => sc start hptouchpointanalyticsservice
Task: {DCB7214F-C61E-424B-8064-46D0CBC82C6E} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\HP\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [1149512 2022-10-26] (HP Inc. -> HP Inc.)
Task: {EDDE7AD7-7B09-4695-AA09-C079AD4FEB40} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3341312 2021-12-09] (Nvidia Corporation -> NVIDIA Corporation)
Task: {FAECDFD8-F4EC-42CC-9262-BA4367C02D79} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [904904 2021-12-08] (Nvidia Corporation -> NVIDIA Corporation)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{0c80d462-6a09-47ec-a94a-21d92923db60}: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{1202cd13-bb5d-404c-a9f7-5ef6aacfa0b4}: [DhcpNameServer] 172.168.0.7
Edge:
=======
Edge Profile: C:\Users\appyt\AppData\Local\Microsoft\Edge\User Data\Default [2022-11-15]
FireFox:
========
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2022-11-02] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2022-10-16] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2022-11-02] (Microsoft Corporation -> Microsoft Corporation)
Chrome:
=======
CHR Profile: C:\Users\appyt\AppData\Local\Google\Chrome\User Data\Default [2022-11-15]
CHR Extension: (Google Docs Offline) - C:\Users\appyt\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-11-12]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\appyt\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-11-12]
CHR HKLM-x32\...\Chrome\Extension: [mfhcmdonhekjhfbjmeacdjbhlfgpjabp]
==================== Dienste (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
S2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [173040 2022-09-26] (Adobe Inc. -> Adobe Inc.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [12516280 2022-11-02] (Microsoft Corporation -> Microsoft Corporation)
S3 dcsvc; C:\WINDOWS\system32\dcsvc.dll [831488 2022-11-10] (Microsoft Windows -> Microsoft Corporation)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [818304 2020-12-30] (EasyAntiCheat Oy -> Epic Games, Inc)
S2 HP Comm Recover; C:\Program Files\HPCommRecovery\HPCommRecovery.exe [905080 2020-03-18] (HP Inc. -> HP Inc.)
R2 HPAppHelperCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_f0454c515430e99a\x64\AppHelperCap.exe [786888 2022-09-28] (HP Inc. -> HP Inc.)
R2 HPDiagsCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_f0454c515430e99a\x64\DiagsCap.exe [785896 2022-09-28] (HP Inc. -> HP Inc.)
R2 HPNetworkCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_f0454c515430e99a\x64\NetworkCap.exe [782296 2022-09-28] (HP Inc. -> HP Inc.)
R2 HPSysInfoCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_f0454c515430e99a\x64\SysInfoCap.exe [786392 2022-09-28] (HP Inc. -> HP Inc.)
R2 HpTouchpointAnalyticsService; C:\WINDOWS\System32\DriverStore\FileRepository\hpanalyticscomp.inf_amd64_970b3aa928c32e35\x64\TouchpointAnalyticsClientService.exe [493680 2022-09-28] (HP Inc. -> HP Inc.)
R2 LGHUBUpdaterService; C:\Program Files\LGHUB\lghub_updater.exe [10097408 2022-11-07] (Logitech Inc -> Logitech, Inc.)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [8879024 2022-11-15] (Malwarebytes Inc. -> Malwarebytes)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2559704 2022-01-16] (Electronic Arts, Inc. -> Electronic Arts)
R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3477728 2022-01-16] (Electronic Arts, Inc. -> Electronic Arts)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.6-0\NisSrv.exe [3191272 2022-11-11] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.6-0\MsMpEng.exe [133544 2022-11-11] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvhm.inf_amd64_4a2f8a62d5686839\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nvhm.inf_amd64_4a2f8a62d5686839\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
===================== Treiber (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [507904 2022-01-18] (Microsoft Corporation) [Datei ist nicht signiert]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [180224 2022-01-18] (Microsoft Corporation) [Datei ist nicht signiert]
S3 BTHMODEM; C:\WINDOWS\System32\drivers\bthmodem.sys [98304 2021-06-05] (Microsoft Corporation) [Datei ist nicht signiert]
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [158640 2022-11-15] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 Gamecaster_Dummy; C:\WINDOWS\system32\drivers\gcastspk.sys [36048 2021-07-20] (SplitmediaLabs Limited -> SplitmediaLabs Limited)
R3 HPCustomCapDriver; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapdriver.inf_amd64_a955fa431e522f5e\x64\hpcustomcapdriver.sys [25592 2021-09-16] (HP Inc. -> HP Inc.)
R3 logi_joy_bus_enum; C:\WINDOWS\system32\drivers\logi_joy_bus_enum.sys [44880 2022-09-24] (Logitech Inc -> Logitech)
R3 logi_joy_vir_hid; C:\WINDOWS\system32\drivers\logi_joy_vir_hid.sys [32080 2022-09-24] (Logitech Inc -> Logitech)
R3 logi_joy_xlcore; C:\WINDOWS\system32\drivers\logi_joy_xlcore.sys [73040 2022-09-24] (Logitech Inc -> Logitech)
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [223176 2022-11-15] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [21480 2022-11-15] (Microsoft Windows Early Launch Anti-Malware Publisher -> Malwarebytes)
R3 MBAMFarflt; C:\WINDOWS\System32\DRIVERS\farflt.sys [193992 2022-11-15] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [75216 2022-11-15] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [239544 2022-11-15] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [181992 2022-11-15] (Malwarebytes Inc. -> Malwarebytes)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [48552 2021-11-01] (Microsoft Windows Hardware Compatibility Publisher -> NVIDIA Corporation)
S3 VCamSDK; C:\WINDOWS\system32\DRIVERS\VCamSDK.sys [1092456 2021-12-21] (Shanghai Yitu Information Technology Co., Ltd. -> e2eSoft)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [49616 2022-11-11] (Microsoft Windows Early Launch Anti-Malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [469288 2022-11-11] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [95520 2022-11-11] (Microsoft Windows -> Microsoft Corporation)
R3 WirelessButtonDriver64; C:\WINDOWS\System32\drivers\WirelessButtonDriver64.sys [40104 2022-06-17] (HP Inc. -> HP)
S3 WinRing0_1_2_0; \??\C:\Users\appyt\AppData\Local\Temp\tmpC372.tmp [X] <==== ACHTUNG
S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X]
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
NETSVC: DcSvc -> C:\Windows\system32\dcsvc.dll (Microsoft Corporation)
==================== Ein Monat (erstellte) (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2022-11-15 19:26 - 2022-11-15 19:26 - 000000000 ____D C:\Users\appyt\Downloads\FRST-OlderVersion
2022-11-15 19:22 - 2022-11-15 19:25 - 000000000 ____D C:\AdwCleaner
2022-11-15 19:20 - 2022-11-15 19:20 - 008791352 _____ (Malwarebytes) C:\Users\appyt\Downloads\adwcleaner.exe
2022-11-15 19:20 - 2022-11-15 19:20 - 002632256 _____ (Malwarebytes) C:\Users\appyt\Downloads\MBSetup-05467514.exe
2022-11-15 19:14 - 2022-11-15 19:14 - 000193992 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys
2022-11-15 19:14 - 2022-11-15 19:14 - 000181992 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2022-11-15 19:14 - 2022-11-15 19:14 - 000075216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2022-11-15 19:06 - 2022-11-15 19:06 - 000000000 ____D C:\Users\appyt\AppData\Local\mbam
2022-11-15 19:05 - 2022-11-15 19:05 - 000239544 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2022-11-15 19:05 - 2022-11-15 19:05 - 000223176 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
2022-11-15 19:05 - 2022-11-15 19:05 - 000002040 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2022-11-15 19:05 - 2022-11-15 19:05 - 000002028 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2022-11-15 19:05 - 2022-11-15 19:04 - 000158640 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2022-11-15 19:05 - 2022-11-15 19:04 - 000021480 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys
2022-11-15 19:03 - 2022-11-15 19:03 - 000000000 ____D C:\ProgramData\Malwarebytes
2022-11-15 19:03 - 2022-11-15 19:03 - 000000000 ____D C:\Program Files\Malwarebytes
2022-11-15 19:02 - 2022-11-15 19:02 - 002632256 _____ (Malwarebytes) C:\Users\appyt\Downloads\MBSetup.exe
2022-11-12 15:33 - 2022-11-12 15:36 - 000045517 _____ C:\Users\appyt\Downloads\Addition.txt
2022-11-12 15:29 - 2022-11-15 19:27 - 000021754 _____ C:\Users\appyt\Downloads\FRST.txt
2022-11-12 15:29 - 2022-11-15 19:27 - 000000000 ____D C:\FRST
2022-11-12 15:27 - 2022-11-15 19:26 - 002375168 _____ (Farbar) C:\Users\appyt\Downloads\FRST64.exe
2022-11-12 15:20 - 2022-11-12 15:20 - 000002260 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth Pro.lnk
2022-11-12 15:20 - 2022-11-12 15:20 - 000002248 _____ C:\Users\Public\Desktop\Google Earth Pro.lnk
2022-11-12 15:15 - 2022-11-12 15:15 - 000002322 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2022-11-12 15:15 - 2022-11-12 15:15 - 000002281 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2022-11-12 15:13 - 2022-11-12 15:13 - 001427176 _____ (Google LLC) C:\Users\appyt\Downloads\ChromeSetup (2).exe
2022-11-12 12:38 - 2022-11-15 19:14 - 108265472 _____ C:\WINDOWS\system32\config\SOFTWARE
2022-11-10 17:26 - 2022-11-10 17:26 - 000319488 _____ C:\WINDOWS\system32\EsclScan.dll
2022-11-10 17:26 - 2022-11-10 17:26 - 000200704 _____ C:\WINDOWS\system32\EsclProtocol.dll
2022-11-10 17:26 - 2022-11-10 17:26 - 000090112 _____ C:\WINDOWS\system32\SecureBootEncodeUEFI.exe
2022-11-10 17:26 - 2022-11-10 17:26 - 000015461 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2022-11-10 17:25 - 2022-11-10 17:25 - 000372736 _____ C:\WINDOWS\system32\hwreqchk.dll
2022-11-10 17:25 - 2022-11-10 17:25 - 000335872 _____ C:\WINDOWS\system32\Windows.Management.InprocObjects.dll
2022-11-10 17:25 - 2022-11-10 17:25 - 000172032 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2022-11-10 17:22 - 2022-11-10 17:22 - 000000000 ___HD C:\$WinREAgent
2022-11-10 17:15 - 2022-11-10 17:15 - 000022599 _____ C:\Users\appyt\OneDrive\Dokumente\selfcare.odt
2022-11-07 20:21 - 2022-11-07 20:21 - 000000650 _____ C:\Users\Public\Desktop\Logitech G HUB.lnk
2022-11-07 20:21 - 2022-11-07 20:21 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logi
2022-11-07 20:21 - 2022-11-07 20:21 - 000000000 ____D C:\Program Files\LGHUB
2022-11-07 12:03 - 2022-11-08 10:15 - 000192882 _____ C:\Users\appyt\OneDrive\Dokumente\Fitness Basics.odt
2022-11-07 10:57 - 2022-11-08 10:16 - 000008851 _____ C:\Users\appyt\OneDrive\Dokumente\fitness.odt
2022-10-19 11:42 - 2022-10-19 11:42 - 000299967 _____ C:\Users\appyt\Downloads\AnnaPatrycja-Fitnesstrainer-B-Lizenz-Fitnesstrainer-B-Lizenz-Zertifikat-Online-Fitness-Academy.pdf
2022-10-19 11:34 - 2022-10-19 11:34 - 000329071 _____ C:\Users\appyt\Downloads\pdf_26932_12049 (1).pdf
2022-10-19 11:09 - 2022-10-19 11:09 - 000329073 _____ C:\Users\appyt\Downloads\pdf_26932_12049.pdf
2022-10-17 14:59 - 2022-10-17 14:59 - 000077824 _____ C:\Users\appyt\Downloads\Vorlage_Formular_fuer_die_Abrechnung_von_Minijobs.xls
2022-10-17 14:22 - 2022-11-12 12:34 - 000026887 _____ C:\Users\appyt\OneDrive\Dokumente\5 mistakes video.odt
2022-10-17 11:09 - 2022-10-17 12:11 - 000018086 _____ C:\Users\appyt\OneDrive\Dokumente\genshin impact.odt
==================== Ein Monat (geänderte) ==================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2022-11-15 19:25 - 2022-05-05 18:00 - 000000000 ____D C:\Users\appyt\AppData\Roaming\LGHUB
2022-11-15 19:25 - 2022-05-05 17:50 - 000000000 ____D C:\ProgramData\BSD
2022-11-15 19:25 - 2022-01-06 22:36 - 000000000 ____D C:\Users\appyt\AppData\Roaming\discord
2022-11-15 19:25 - 2021-06-05 13:10 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-11-15 19:25 - 2021-06-04 14:07 - 000000000 ____D C:\Users\appyt\AppData\Local\PlaceholderTileLogoFolder
2022-11-15 19:25 - 2020-10-16 10:18 - 000000000 ____D C:\ProgramData\NVIDIA
2022-11-15 19:22 - 2022-01-19 00:08 - 001915288 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2022-11-15 19:22 - 2021-06-05 18:53 - 000802012 _____ C:\WINDOWS\system32\perfh007.dat
2022-11-15 19:22 - 2021-06-05 18:53 - 000174896 _____ C:\WINDOWS\system32\perfc007.dat
2022-11-15 19:22 - 2021-06-05 13:09 - 000000000 ____D C:\WINDOWS\INF
2022-11-15 19:16 - 2022-05-05 18:00 - 000000000 ____D C:\Users\appyt\AppData\Local\LGHUB
2022-11-15 19:16 - 2022-01-19 00:14 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-3349990796-3301203750-1932007998-1001
2022-11-15 19:16 - 2022-01-19 00:14 - 000003380 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3349990796-3301203750-1932007998-1001
2022-11-15 19:16 - 2022-01-06 22:36 - 000000000 ____D C:\Users\appyt\AppData\Local\Discord
2022-11-15 19:16 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\AppReadiness
2022-11-15 19:16 - 2021-04-05 15:20 - 000000000 ____D C:\Program Files (x86)\Steam
2022-11-15 19:16 - 2020-12-27 17:52 - 000002406 _____ C:\Users\appyt\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2022-11-15 19:15 - 2020-12-27 18:03 - 000000000 __SHD C:\Users\appyt\IntelGraphicsProfiles
2022-11-15 19:14 - 2022-01-19 00:14 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2022-11-15 19:14 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SystemTemp
2022-11-15 19:14 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\ServiceState
2022-11-15 19:14 - 2021-06-05 13:01 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2022-11-15 19:14 - 2021-02-28 18:09 - 000000306 __RSH C:\ProgramData\ntuser.pol
2022-11-15 19:14 - 2020-10-16 10:12 - 000000000 ____D C:\Intel
2022-11-15 19:14 - 2020-05-06 09:58 - 000012288 ___SH C:\DumpStack.log.tmp
2022-11-15 19:13 - 2020-10-16 10:18 - 000000000 ____D C:\ProgramData\Package Cache
2022-11-15 19:05 - 2021-06-05 13:10 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2022-11-15 17:22 - 2022-01-19 00:04 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2022-11-15 16:20 - 2021-06-05 13:10 - 000000000 ___HD C:\Program Files\WindowsApps
2022-11-15 11:26 - 2022-01-19 00:14 - 000003620 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2022-11-15 11:26 - 2022-01-19 00:14 - 000003396 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2022-11-15 11:19 - 2020-12-27 18:14 - 000000000 ____D C:\Program Files (x86)\Google
2022-11-12 15:20 - 2020-12-27 18:15 - 000000000 ____D C:\Program Files\Google
2022-11-12 15:15 - 2020-12-27 18:14 - 000000000 ____D C:\Users\appyt\AppData\Local\Google
2022-11-12 12:38 - 2022-04-10 13:53 - 000000000 ____D C:\WINDOWS\Microsoft Antimalware
2022-11-12 12:23 - 2020-12-27 18:03 - 000000000 ____D C:\Users\appyt\AppData\Local\Packages
2022-11-12 12:20 - 2020-10-16 10:25 - 000000000 ____D C:\ProgramData\Packages
2022-11-11 10:07 - 2020-05-06 09:58 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2022-11-10 17:51 - 2022-01-19 00:04 - 000621328 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2022-11-10 17:50 - 2022-01-18 21:33 - 000000000 ____D C:\WINDOWS\HoloShell
2022-11-10 17:50 - 2021-06-05 13:10 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2022-11-10 17:50 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2022-11-10 17:50 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SystemResources
2022-11-10 17:50 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\oobe
2022-11-10 17:50 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\Dism
2022-11-10 17:50 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\DDFs
2022-11-10 17:50 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\appraiser
2022-11-10 17:50 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\ShellExperiences
2022-11-10 17:50 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\ShellComponents
2022-11-10 17:50 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\bcastdvr
2022-11-10 17:50 - 2021-01-05 07:44 - 000000000 ____D C:\WINDOWS\system32\MRT
2022-11-10 17:46 - 2021-01-05 07:44 - 146960040 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2022-11-10 17:28 - 2021-06-05 13:01 - 000000000 ____D C:\WINDOWS\CbsTemp
2022-11-10 17:25 - 2022-01-19 00:06 - 003107840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2022-11-09 15:40 - 2021-12-19 19:41 - 000000000 ____D C:\Users\appyt\AppData\Roaming\obs-studio
2022-11-08 08:50 - 2022-01-19 00:14 - 000000000 ____D C:\WINDOWS\system32\Tasks\Hewlett-Packard
2022-11-02 15:00 - 2020-06-08 09:46 - 000000000 ____D C:\Program Files\Microsoft Office
2022-10-26 14:28 - 2022-10-14 16:17 - 000002080 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk
2022-10-26 14:28 - 2022-10-14 16:17 - 000002068 _____ C:\Users\Public\Desktop\Adobe Acrobat.lnk
2022-10-26 14:28 - 2022-08-04 13:26 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2022-10-17 15:52 - 2022-10-06 22:21 - 000015252 _____ C:\Users\appyt\OneDrive\Dokumente\youtube dance.odt
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse ========
2022-07-28 15:12 - 2022-11-12 12:22 - 000039192 _____ () C:\Users\appyt\AppData\Local\PlariumPlay.log
2022-10-08 20:45 - 2022-10-08 20:45 - 000005621 _____ () C:\Users\appyt\AppData\Local\recently-used.xbel
2022-01-25 14:02 - 2022-01-25 14:02 - 000007601 _____ () C:\Users\appyt\AppData\Local\Resmon.ResmonCfg
==================== SigCheck ============================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
==================== Ende von FRST.txt ========================
Code:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 15-11-2022
durchgeführt von appyt (15-11-2022 19:28:57)
Gestartet von C:\Users\appyt\Downloads
Microsoft Windows 11 Home Version 21H2 22000.1219 (X64) (2022-01-19 14:38:27)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
Administrator (S-1-5-21-3349990796-3301203750-1932007998-500 - Administrator - Disabled)
appyt (S-1-5-21-3349990796-3301203750-1932007998-1001 - Administrator - Enabled) => C:\Users\appyt
DefaultAccount (S-1-5-21-3349990796-3301203750-1932007998-503 - Limited - Disabled)
Gast (S-1-5-21-3349990796-3301203750-1932007998-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-3349990796-3301203750-1932007998-504 - Limited - Disabled)
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: Malwarebytes (Enabled - Up to date) {0D452135-A081-B000-D6B6-132E52638543}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
Adobe Acrobat (64-bit) (HKLM\...\{AC76BA86-1031-1033-7760-BC15014EA700}) (Version: 22.003.20263 - Adobe)
Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-018244601032}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden
Audacity 2.4.2 (HKLM-x32\...\Audacity_is1) (Version: 2.4.2 - Audacity Team)
Discord (HKU\S-1-5-21-3349990796-3301203750-1932007998-1001\...\Discord) (Version: 1.0.9003 - Discord Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{F9C5C994-F6B9-4D75-B3E7-AD01B84073E9}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 107.0.5304.107 - Google LLC)
Google Earth Pro (HKLM\...\{DE181B35-ACEF-4DB0-86D9-731D5767ABB1}) (Version: 7.3.4.8642 - Google)
HP Audio Switch (HKLM-x32\...\{3A5141D4-47DB-4302-9B1C-272BE585BC8A}) (Version: 1.0.179.0 - HP Inc.)
HP Connection Optimizer (HKLM-x32\...\{6468C4A5-E47E-405F-B675-A70A70983EA6}) (Version: 2.0.17.0 - HP Inc.)
HP Documentation (HKLM\...\HP_Documentation) (Version: 1.0.0.1 - HP Inc.)
Intel® Optane™ Pinning Explorer Extensions (HKLM\...\{4487026C-A32C-4FF5-858E-8DB890814949}) (Version: 17.8.0.1065 - Intel Corporation)
Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Logitech G HUB (HKLM\...\{521c89be-637f-4274-a840-baaf7460c2b2}) (Version: 2022.10.326382 - Logitech)
Malwarebytes version 4.5.17.221 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.5.17.221 - Malwarebytes)
Microsoft 365 - de-de (HKLM\...\O365HomePremRetail - de-de) (Version: 16.0.15726.20174 - Microsoft Corporation)
Microsoft 365 - en-us (HKLM\...\O365HomePremRetail - en-us) (Version: 16.0.15726.20174 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 106.0.1370.42 - Microsoft Corporation)
Microsoft Edge WebView2-Laufzeit (HKLM-x32\...\Microsoft EdgeWebView) (Version: 106.0.1370.37 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-3349990796-3301203750-1932007998-1001\...\OneDriveSetup.exe) (Version: 22.225.1026.0001 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{6A2A8076-135F-4F55-BB02-DED67C8C6934}) (Version: 4.67.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005 (HKLM\...\{929FBD26-9020-399B-9A7A-751D61F0B942}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005 (HKLM\...\{A749D8E6-B613-3BE3-8F5F-045C84EBA29B}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (HKLM-x32\...\{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (HKLM-x32\...\{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.28.29334 (HKLM-x32\...\{a9cfe9c7-e54f-46cd-9c5c-542ff8e3e8c4}) (Version: 14.28.29334.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.28.29334 (HKLM-x32\...\{b2d0f752-adc5-496e-8f70-8669de01f746}) (Version: 14.28.29334.0 - Microsoft Corporation)
Microsoft Visual C++ 2019 X64 Additional Runtime - 14.28.29334 (HKLM\...\{2E11EF4E-901F-4B2D-B68E-3DB2A566C857}) (Version: 14.28.29334 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2019 X64 Minimum Runtime - 14.28.29334 (HKLM\...\{8A3F7D5B-422D-49D9-84F7-8DC1B7782967}) (Version: 14.28.29334 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2019 X86 Additional Runtime - 14.28.29334 (HKLM-x32\...\{14C49FC8-3E9B-4F29-8526-26629B5CF30B}) (Version: 14.28.29334 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2019 X86 Minimum Runtime - 14.28.29334 (HKLM-x32\...\{0D01A812-82A1-481F-8546-8E28E976F8DF}) (Version: 14.28.29334 - Microsoft Corporation) Hidden
NVIDIA FrameView SDK 1.2.4999.30397803 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.2.4999.30397803 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.24.0.126 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.24.0.126 - NVIDIA Corporation)
NVIDIA Grafiktreiber 512.78 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 512.78 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.21.0713 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.21.0713 - NVIDIA Corporation)
OBS Studio (HKLM-x32\...\OBS Studio) (Version: 27.1.3 - OBS Project)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.15726.20096 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.15726.20096 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0407-1000-0000000FF1CE}) (Version: 16.0.15726.20096 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0409-1000-0000000FF1CE}) (Version: 16.0.14131.20278 - Microsoft Corporation) Hidden
OpenOffice 4.1.8 (HKLM-x32\...\{3C1972F6-E411-4B54-AD4C-EF24894301D6}) (Version: 4.18.9803 - Apache Software Foundation)
Origin (HKLM-x32\...\Origin) (Version: 10.5.108.49699 - Electronic Arts, Inc.)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Windows-PC-Integritätsprüfung (HKLM\...\{68C9C2A4-C212-4310-AB68-12F97050A416}) (Version: 3.2.2110.14001 - Microsoft Corporation)
Zoom (HKU\S-1-5-21-3349990796-3301203750-1932007998-1001\...\ZoomUMX) (Version: 5.4.7 (59784.1220) - Zoom Video Communications, Inc.)
Packages:
=========
Amazon -> C:\Program Files\WindowsApps\Amazon.com.Amazon_2018.519.2815.0_x64__343d40qqvtj1t [2022-10-17] (Amazon.com)
B&O Audio Control -> C:\Program Files\WindowsApps\AD2F1837.BOAudioControl_1.15.226.0_x64__v10z8vjag6ke6 [2022-09-18] (HP Inc.)
Dropbox-Sonderaktion -> C:\Program Files\WindowsApps\C27EB4BA.DropboxOEM_22.4.18.0_x64__xbfy0k16fey96 [2022-09-18] (Dropbox Inc.)
Energy Star -> C:\Program Files\WindowsApps\AD2F1837.HPInc.EnergyStar_1.2.0.0_x64__v10z8vjag6ke6 [2021-04-06] (HP Inc.)
Fotos-Add-On -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2021.39122.10110.0_x64__8wekyb3d8bbwe [2022-02-26] (Microsoft Corporation)
HP CoolSense -> C:\Program Files\WindowsApps\AD2F1837.HPCoolSense_1.1.2.0_x64__v10z8vjag6ke6 [2020-10-16] (HP Inc.)
HP Impreza Pen -> C:\Program Files\WindowsApps\9FDF1AF1.HPImprezaPen_1.1.14.0_x64__g70az3e2cx9m2 [2020-10-16] (ELAN MICROELECTRONICS CORP.) [Startup Task]
HP JumpStarts -> C:\Program Files\WindowsApps\AD2F1837.HPJumpStarts_1.10.1627.0_x64__v10z8vjag6ke6 [2021-05-28] (HP Inc.)
HP PC Hardware Diagnostics Windows -> C:\Program Files\WindowsApps\AD2F1837.HPPCHardwareDiagnosticsWindows_1.8.3.0_x64__v10z8vjag6ke6 [2022-10-17] (HP Inc.)
HP Privacy Settings -> C:\Program Files\WindowsApps\AD2F1837.HPPrivacySettings_1.1.54.0_x64__v10z8vjag6ke6 [2022-10-26] (HP Inc.)
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_140.1.307.0_x64__v10z8vjag6ke6 [2022-11-08] (HP Inc.)
HP Support Assistant -> C:\Program Files\WindowsApps\AD2F1837.HPSupportAssistant_9.21.30.0_x64__v10z8vjag6ke6 [2022-11-07] (HP Inc.)
HP System Event Utility -> C:\Program Files\WindowsApps\AD2F1837.HPSystemEventUtility_1.3.2.0_x64__v10z8vjag6ke6 [2022-08-19] (HP Inc.)
Intel® Grafik-Kontrollraum -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.3408.0_x64__8j3eq9eme6ctt [2022-11-15] (INTEL CORP) [Startup Task]
Intel® Optane™ Memory and Storage Management -> C:\Program Files\WindowsApps\AppUp.IntelOptaneMemoryandStorageManagement_18.1.1037.0_x64__8j3eq9eme6ctt [2022-10-17] (INTEL CORP)
Media Engine-Add-On für Fotos -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2021-08-16] (Microsoft Corporation)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2022-02-05] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2022-02-05] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.14.9130.0_x64__8wekyb3d8bbwe [2022-09-18] (Microsoft Studios) [MS Ad]
Netflix -> C:\Program Files\WindowsApps\4DF9E0F8.Netflix_6.98.1805.0_x64__mcm4njqhnhss8 [2022-10-17] (Netflix, Inc.)
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.963.0_x64__56jybvy8sckqj [2022-10-17] (NVIDIA Corp.)
Samsung Printer Experience -> C:\Program Files\WindowsApps\SAMSUNGELECTRONICSCO.LTD.SamsungPrinterExperience_1.3.15.0_x64__3c1yjt4zspk6g [2021-01-27] (Samsung Electronics Co. Ltd.)
Solitär -> C:\Program Files\WindowsApps\26720RandomSaladGamesLLC.SimpleSolitaire_7.4.14.0_x64__kx24dqmazqk8j [2022-10-26] (Random Salad Games LLC)
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.198.691.0_x86__zpdnekdrzrea0 [2022-11-14] (Spotify AB) [Startup Task]
Square Video Movie Maker & Editor -> C:\Program Files\WindowsApps\58337MediaAppsDev.SquareVideoMovieMakerEditor_1.1.5.0_x64__fwxdebw7hh1dt [2022-10-17] (Media Apps Dev) [MS Ad]
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
ShellIconOverlayIdentifiers: [ OptaneIconOverlay] -> {A3AF6F6C-8BED-3D93-8B5D-33427B5D38E9} => C:\WINDOWS\System32\DriverStore\FileRepository\iastorpinningcomponent.inf_amd64_59691a4ee8d947dd\OptaneShellExt.dll [2021-10-12] (Intel Corporation -> )
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2022-11-15] (Malwarebytes Inc. -> Malwarebytes)
ContextMenuHandlers3: [OptaneContextMenu] -> {AD7EBB13-617D-3270-8FA8-46583499C4FB} => C:\WINDOWS\System32\DriverStore\FileRepository\iastorpinningcomponent.inf_amd64_59691a4ee8d947dd\OptaneShellExt.dll [2021-10-12] (Intel Corporation -> )
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nvhm.inf_amd64_4a2f8a62d5686839\nvshext.dll [2022-06-08] (Nvidia Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2022-11-15] (Malwarebytes Inc. -> Malwarebytes)
==================== Codecs (Nicht auf der Ausnahmeliste) ====================
==================== Verknüpfungen & WMI ========================
==================== Geladene Module (Nicht auf der Ausnahmeliste) =============
2022-01-16 23:01 - 2022-01-16 23:00 - 001282048 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Datei ist nicht signiert] C:\Program Files (x86)\Origin\LIBEAY32.dll
2022-01-16 23:01 - 2022-01-16 23:00 - 000279040 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Datei ist nicht signiert] C:\Program Files (x86)\Origin\ssleay32.dll
2022-01-16 23:01 - 2022-01-16 23:00 - 001611264 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\Origin\platforms\qwindows.dll
2022-01-16 23:01 - 2022-01-16 23:00 - 005487104 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\Origin\Qt5Core.dll
2022-01-16 23:01 - 2022-01-16 23:00 - 005841920 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\Origin\Qt5Gui.dll
2022-01-16 23:01 - 2022-01-16 23:00 - 001179136 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\Origin\Qt5Network.dll
2022-01-16 23:01 - 2022-01-16 23:00 - 000146432 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\Origin\Qt5WebSockets.dll
2022-01-16 23:01 - 2022-01-16 23:00 - 005089792 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\Origin\Qt5Widgets.dll
2022-01-16 23:01 - 2022-01-16 23:00 - 000184832 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\Origin\Qt5Xml.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) ========
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ==================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McMPFSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MCODS => ""="Service"
==================== Verknüpfungen (Nicht auf der Ausnahmeliste) =================
==================== Internet Explorer (Nicht auf der Ausnahmeliste) ==========
SearchScopes: HKLM -> {C4207C10-8EF6-4367-9123-01D80D873596} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_ieauk?ie=UTF-8&tag=hp-uk1-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
SearchScopes: HKLM-x32 -> {C4207C10-8EF6-4367-9123-01D80D873596} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_ieauk?ie=UTF-8&tag=hp-uk1-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
SearchScopes: HKU\S-1-5-21-3349990796-3301203750-1932007998-1001 -> {C4207C10-8EF6-4367-9123-01D80D873596} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_ieauk?ie=UTF-8&tag=hp-uk1-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\HP\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2022-10-26] (HP Inc. -> HP Inc.)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2022-11-02] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\HP\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2022-10-26] (HP Inc. -> HP Inc.)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-11-02] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-11-02] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-11-02] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-11-02] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-11-02] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-11-02] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-11-02] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-11-02] (Microsoft Corporation -> Microsoft Corporation)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
IE trusted site: HKU\S-1-5-21-3349990796-3301203750-1932007998-1001\...\localhost -> localhost
==================== Hosts Inhalt: =========================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2019-12-07 10:14 - 2019-12-07 10:12 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
==================== Andere Bereiche ===========================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKU\S-1-5-21-3349990796-3301203750-1932007998-1001\Control Panel\Desktop\\Wallpaper -> C:\windows\web\wallpaper\HP Backgrounds\backgroundDefault.jpg
DNS Servers: 192.168.178.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
ist aktiviert.
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [{E2E5B981-E66C-4D6A-9CF4-203885FB9CC1}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{65206698-2DB8-4831-9DB7-09E25BCB77C6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Animaze\Bin\AnimazeDesktop.exe => Keine Datei
FirewallRules: [{00EC4AD5-A6A0-449E-A65A-09E8CFDDE757}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Animaze\Bin\AnimazeDesktop.exe => Keine Datei
FirewallRules: [{235D1C7C-5D65-404F-B28A-59EC0B13845A}] => (Block) C:\users\appyt\appdata\roaming\twitch studio\bin\twitchstudioagent.exe => Keine Datei
FirewallRules: [{C8631CB6-471B-42CB-9D8C-E95ABA261208}] => (Block) C:\users\appyt\appdata\roaming\twitch studio\bin\twitchstudioagent.exe => Keine Datei
FirewallRules: [UDP Query User{86F00C34-F851-4FB6-B5C6-94AAECE588A7}C:\users\appyt\appdata\roaming\twitch studio\bin\twitchstudioagent.exe] => (Allow) C:\users\appyt\appdata\roaming\twitch studio\bin\twitchstudioagent.exe => Keine Datei
FirewallRules: [TCP Query User{A70D798B-940E-41AD-B5E1-40F30FC7AE45}C:\users\appyt\appdata\roaming\twitch studio\bin\twitchstudioagent.exe] => (Allow) C:\users\appyt\appdata\roaming\twitch studio\bin\twitchstudioagent.exe => Keine Datei
FirewallRules: [{9F66FBED-C52B-433D-B684-298F35671FEE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dorfromantik\Dorfromantik.exe () [Datei ist nicht signiert]
FirewallRules: [{1864ED4E-6D27-491A-B039-569AD200A399}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dorfromantik\Dorfromantik.exe () [Datei ist nicht signiert]
FirewallRules: [{A168A4C6-6E51-442F-A35F-04BD4323EB94}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{BEB183F5-01ED-4DEF-AB4F-18495EFB58D6}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{8197C9FC-2470-4225-B424-9EA331759577}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{E147489A-ED34-4D13-8EFA-E5F6C6AB385B}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{F2EA6A90-C823-4307-B3C6-3F0C6FF5E72A}] => (Allow) C:\Users\appyt\AppData\Roaming\Zoom\bin\airhost.exe => Keine Datei
FirewallRules: [{4D950742-B43C-4F22-9D31-47CC55BB1390}] => (Allow) C:\Users\appyt\AppData\Roaming\Zoom\bin\airhost.exe => Keine Datei
FirewallRules: [{6151939B-359E-461B-B6D6-255C78B5ACDD}] => (Allow) C:\Users\appyt\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{08ACD421-8F56-441F-9636-85793D0FBFD4}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{43B39F49-445D-4A35-B899-58AA08461B02}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{246E08DC-5423-4CAA-8390-E16DD951E9A0}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{C449E5D3-B1BF-4DC9-AD96-2067D1DFDF0B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{FE834D86-98DE-44AA-A570-66A200634C30}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{B216EEED-C963-41AF-857E-E099052E2F9C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [TCP Query User{34387238-F963-4C52-B789-CE421ED7A983}C:\program files (x86)\up deck\updeck.exe] => (Allow) C:\program files (x86)\up deck\updeck.exe => Keine Datei
FirewallRules: [UDP Query User{18A20780-FDBF-4092-B376-1CD02D036EB1}C:\program files (x86)\up deck\updeck.exe] => (Allow) C:\program files (x86)\up deck\updeck.exe => Keine Datei
FirewallRules: [TCP Query User{B7D6562D-202B-4F7E-9BDF-931FE20350CE}C:\program files\lghub\lghub_agent.exe] => (Allow) C:\program files\lghub\lghub_agent.exe (Logitech Inc -> Logitech, Inc.)
FirewallRules: [UDP Query User{6DDB6EB9-46C7-4F90-AF3E-3D0EF1B773D0}C:\program files\lghub\lghub_agent.exe] => (Allow) C:\program files\lghub\lghub_agent.exe (Logitech Inc -> Logitech, Inc.)
FirewallRules: [TCP Query User{7CD2C11C-35DC-42D3-8F00-5866B7A77118}C:\program files\lghub\lghub_agent.exe] => (Block) C:\program files\lghub\lghub_agent.exe (Logitech Inc -> Logitech, Inc.)
FirewallRules: [UDP Query User{949A684D-A061-4552-8EF9-0C1379343879}C:\program files\lghub\lghub_agent.exe] => (Block) C:\program files\lghub\lghub_agent.exe (Logitech Inc -> Logitech, Inc.)
FirewallRules: [TCP Query User{B3F1BAFB-2A62-4736-8158-740A1845B794}C:\program files\lumia stream\lumia stream.exe] => (Allow) C:\program files\lumia stream\lumia stream.exe => Keine Datei
FirewallRules: [UDP Query User{D5ADDA2B-03CD-4C88-B563-748FBAEDC2FB}C:\program files\lumia stream\lumia stream.exe] => (Allow) C:\program files\lumia stream\lumia stream.exe => Keine Datei
FirewallRules: [{F7EF1FA8-91BC-47CE-BB25-9006133572CB}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\106.0.1370.34\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{A423B67B-FDA9-4DAA-B182-62D09F5FC77D}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\106.0.1370.37\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{833CCE9C-48DD-43D6-A8B4-8E7794E4D0E6}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.90.3407.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{BF813590-E540-40F5-AAFE-B7B278A42358}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.90.3407.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{15D097D3-D229-445A-AA4B-A75A929E62E3}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.90.3407.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{B600E216-EAC5-4346-9F35-AB15C34C48D7}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.90.3407.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{678CFCE7-542A-4089-818C-89ED9E2E1AA4}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_22287.702.1670.9453_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{C9B70636-234A-45E7-A788-A820614E9A58}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_22287.702.1670.9453_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{4FFDB2E1-50EF-4174-8571-4EBA234893D5}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{F6B0B31E-FA69-4A13-868D-8955A8061BF6}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.198.691.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{9EF8A42A-1DCD-48FF-AA44-70BD5DD84AC0}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.198.691.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{EEE89CE9-82AB-44D4-A9E4-F2102CD4C2D6}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.198.691.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{888A8044-439C-4767-BD67-6E9F9B9EF5A3}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.198.691.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{898468D1-84E6-446F-A616-AF06D9DFBACC}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.198.691.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{A94051D7-A241-46B4-9FED-CE9B566CCEAC}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.198.691.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{929268A4-5CF3-4519-8E70-6A0403CAE7A9}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.198.691.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{112626DA-B154-482D-A049-A48C8210D3EC}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.198.691.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
==================== Wiederherstellungspunkte =========================
02-11-2022 20:01:37 Geplanter Prüfpunkt
10-11-2022 16:44:44 Windows Modules Installer
12-11-2022 12:22:15 Plarium Play
15-11-2022 19:25:12 AdwCleaner_BeforeCleaning_15/11/2022_19:25:10
==================== Fehlerhafte Geräte im Gerätemanager ============
==================== Fehlereinträge in der Ereignisanzeige: ========================
Applikationsfehler:
==================
Error: (11/12/2022 12:33:38 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: SecurityHealthService.exe, Version: 10.0.22000.1042, Zeitstempel: 0x9618ea7b
Name des fehlerhaften Moduls: ucrtbase.dll, Version: 10.0.22000.1, Zeitstempel: 0x00e78ce9
Ausnahmecode: 0xc0000409
Fehleroffset: 0x000000000007dd7e
ID des fehlerhaften Prozesses: 0x3de8
Startzeit der fehlerhaften Anwendung: 0x01d8f68a9b2af5ad
Pfad der fehlerhaften Anwendung: C:\WINDOWS\system32\SecurityHealthService.exe
Pfad des fehlerhaften Moduls: C:\WINDOWS\SYSTEM32\ucrtbase.dll
Berichtskennung: 431f9033-e936-4850-960d-f2cf49d5b1ec
Vollständiger Name des fehlerhaften Pakets:
Anwendungs-ID, die relativ zum fehlerhaften Paket ist:
Error: (11/12/2022 12:32:50 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: SecurityHealthService.exe, Version: 10.0.22000.1042, Zeitstempel: 0x9618ea7b
Name des fehlerhaften Moduls: ucrtbase.dll, Version: 10.0.22000.1, Zeitstempel: 0x00e78ce9
Ausnahmecode: 0xc0000409
Fehleroffset: 0x000000000007dd7e
ID des fehlerhaften Prozesses: 0x3c38
Startzeit der fehlerhaften Anwendung: 0x01d8f5acc8039519
Pfad der fehlerhaften Anwendung: C:\WINDOWS\system32\SecurityHealthService.exe
Pfad des fehlerhaften Moduls: C:\WINDOWS\SYSTEM32\ucrtbase.dll
Berichtskennung: adf6575b-f5b1-4471-92a2-a385ffd41a33
Vollständiger Name des fehlerhaften Pakets:
Anwendungs-ID, die relativ zum fehlerhaften Paket ist:
Error: (10/26/2022 05:09:33 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: AppHelperCap.exe, Version: 1.48.3187.0, Zeitstempel: 0x632fac74
Name des fehlerhaften Moduls: AppHelperCap.exe, Version: 1.48.3187.0, Zeitstempel: 0x632fac74
Ausnahmecode: 0xc0000005
Fehleroffset: 0x000000000001d29c
ID des fehlerhaften Prozesses: 0x4c28
Startzeit der fehlerhaften Anwendung: 0x01d8e94af4ba5711
Pfad der fehlerhaften Anwendung: C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_f0454c515430e99a\x64\AppHelperCap.exe
Pfad des fehlerhaften Moduls: C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_f0454c515430e99a\x64\AppHelperCap.exe
Berichtskennung: 854f607d-c701-49a6-ab79-1c5fad2373d3
Vollständiger Name des fehlerhaften Pakets:
Anwendungs-ID, die relativ zum fehlerhaften Paket ist:
Error: (10/26/2022 03:55:09 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: AppHelperCap.exe, Version: 1.48.3187.0, Zeitstempel: 0x632fac74
Name des fehlerhaften Moduls: AppHelperCap.exe, Version: 1.48.3187.0, Zeitstempel: 0x632fac74
Ausnahmecode: 0xc0000005
Fehleroffset: 0x000000000001d29c
ID des fehlerhaften Prozesses: 0x34f8
Startzeit der fehlerhaften Anwendung: 0x01d8e93d3ba7144c
Pfad der fehlerhaften Anwendung: C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_f0454c515430e99a\x64\AppHelperCap.exe
Pfad des fehlerhaften Moduls: C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_f0454c515430e99a\x64\AppHelperCap.exe
Berichtskennung: 967654d1-aa61-4775-801a-5070d42cf062
Vollständiger Name des fehlerhaften Pakets:
Anwendungs-ID, die relativ zum fehlerhaften Paket ist:
Error: (10/17/2022 03:00:12 PM) (Source: Microsoft Office 16) (EventID: 2011) (User: )
Description: Office Subscription licensing exception: Error Code: 0x305; CorrelationId: {F1FE7E23-75A4-4F8B-AB63-22DB897EA967}
Error: (10/14/2022 09:37:15 PM) (Source: VSS) (EventID: 12344) (User: )
Description: Volumeschattenkopie-Fehler: Bei der Selbstinitialisierung des Registrierungs-Generators ist der Fehler "0x00000000c000014d" aufgetreten.
Dies kann dazu führen, dass die Schattenkopie nicht erstellt werden kann. Prüfen Sie das Anwendungsereignisprotokoll auf diesbezügliche Fehler.
Vorgang:
OnFreeze-Ereignis
Freeze-Ereignis
Kontext:
Ausführungskontext: Registry Writer
Ausführungskontext: Writer
Generatorklassen-ID: {afbab4a2-367d-4d15-a586-71dbb18f8485}
Generatorname: Registry Writer
Generatorinstanz-ID: {6ad7c76f-c370-4292-beba-f81a9dec7c0e}
Error: (10/01/2022 08:38:43 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: SysInfoCap.exe, Version: 1.46.3053.0, Zeitstempel: 0x62d7062c
Name des fehlerhaften Moduls: combase.dll, Version: 10.0.22000.918, Zeitstempel: 0x27e32120
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000000000aef85
ID des fehlerhaften Prozesses: 0xb20
Startzeit der fehlerhaften Anwendung: 0x01d8d34142df66f6
Pfad der fehlerhaften Anwendung: C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_ca8cb2046afa6b22\x64\SysInfoCap.exe
Pfad des fehlerhaften Moduls: C:\WINDOWS\System32\combase.dll
Berichtskennung: fbe1ec43-a7f0-4e5d-84ba-f81fd7e1e489
Vollständiger Name des fehlerhaften Pakets:
Anwendungs-ID, die relativ zum fehlerhaften Paket ist:
Error: (09/26/2022 06:15:09 PM) (Source: DPTF) (EventID: 17) (User: NT-AUTORITÄT)
Description: Event-ID 17
Systemfehler:
=============
Error: (11/15/2022 07:25:32 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Intel(R) Capability Licensing Service TCP IP Interface" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
Error: (11/15/2022 07:25:32 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "NVIDIA LocalSystem Container" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 6000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (11/15/2022 07:25:32 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "LGHUB Updater Service" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 5000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (11/15/2022 07:25:32 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "HP Comm Recovery" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
Error: (11/15/2022 07:25:32 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Microsoft Office Click-to-Run Service" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 0 Millisekunden durchgeführt: Neustart des Diensts.
Error: (11/15/2022 07:25:32 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Intel(R) Storage Middleware Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
Error: (11/15/2022 07:25:32 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Intel(R) Dynamic Application Loader Host Interface Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
Error: (11/15/2022 07:25:32 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "HP Analytics service" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 30000 Millisekunden durchgeführt: Neustart des Diensts.
Windows Defender:
================
Date: 2022-11-15 15:28:36
Description:
Microsoft Defender Antivirus hat Schadsoftware oder andere potenziell unerwünschte Software erkannt.
Weitere Informationen:
https://go.microsoft.com/fwlink/?linkid=37020&name=Backdoor:Win32/Bladabindi!mclg&threatid=2147784274&enterprise=0
Name: Backdoor:Win32/Bladabindi!mclg
Schweregrad: Schwerwiegend
Kategorie: Hintertür
Pfad: file:_C:\Windows\Temp\7b468822-6986-23a1-64f3-7c531d51f7a2\cda565d3-1105-f1ba-cc12-ce117b473631.exe
Erkennungsursprung: Lokaler Computer
Erkennungstype: Konkret
Erkennungsquelle: Echtzeitschutz
Benutzer: NT-AUTORITÄT\SYSTEM
Prozessname: C:\Program Files (x86)\nodejs\node.exe
Sicherheitsversion: AV: 1.379.379.0, AS: 1.379.379.0, NIS: 1.379.379.0
Modulversion: AM: 1.1.19800.4, NIS: 1.1.19800.4
Date: 2022-11-15 15:17:11
Description:
Die Microsoft Defender Antivirus-Überprüfung wurde vor ihrem Abschluss beendet.
Überprüfungs-ID: {5E8D78CE-FE63-48CA-8F39-2157B595F2E3}
Überprüfungstyp: Antimalware
Überprüfungsparameter: Schnellüberprüfung
Benutzer: NT-AUTORITÄT\SYSTEM
Date: 2022-11-14 08:51:49
Description:
Microsoft Defender Antivirus hat Schadsoftware oder andere potenziell unerwünschte Software erkannt.
Weitere Informationen:
https://go.microsoft.com/fwlink/?linkid=37020&name=Backdoor:Win32/Bladabindi!mclg&threatid=2147784274&enterprise=0
Name: Backdoor:Win32/Bladabindi!mclg
Schweregrad: Schwerwiegend
Kategorie: Hintertür
Pfad: file:_C:\Windows\Temp\4a048e9a-97a0-39ee-12b4-834627d26e97\7af98c4c-f927-ab50-af35-0524c9ee1093.exe; file:_C:\Windows\Temp\618c0ee8-86cc-f09b-f3f6-60f9f014b46e\20804167-f07d-3a3c-d126-103952f0278a.exe
Erkennungsursprung: Lokaler Computer
Erkennungstype: Konkret
Erkennungsquelle: Echtzeitschutz
Benutzer: NT-AUTORITÄT\SYSTEM
Prozessname: C:\Program Files (x86)\nodejs\node.exe
Sicherheitsversion: AV: 1.379.311.0, AS: 1.379.311.0, NIS: 1.379.311.0
Modulversion: AM: 1.1.19800.4, NIS: 1.1.19800.4
Date: 2022-11-14 08:51:49
Description:
Microsoft Defender Antivirus hat Schadsoftware oder andere potenziell unerwünschte Software erkannt.
Weitere Informationen:
https://go.microsoft.com/fwlink/?linkid=37020&name=Backdoor:Win32/Bladabindi!mclg&threatid=2147784274&enterprise=0
Name: Backdoor:Win32/Bladabindi!mclg
Schweregrad: Schwerwiegend
Kategorie: Hintertür
Pfad: file:_C:\Windows\Temp\618c0ee8-86cc-f09b-f3f6-60f9f014b46e\20804167-f07d-3a3c-d126-103952f0278a.exe
Erkennungsursprung: Lokaler Computer
Erkennungstype: Konkret
Erkennungsquelle: Echtzeitschutz
Benutzer: NT-AUTORITÄT\SYSTEM
Prozessname: C:\Program Files (x86)\nodejs\node.exe
Sicherheitsversion: AV: 1.379.311.0, AS: 1.379.311.0, NIS: 1.379.311.0
Modulversion: AM: 1.1.19800.4, NIS: 1.1.19800.4
Date: 2022-11-12 15:28:37
Description:
Microsoft Defender Antivirus hat Schadsoftware oder andere potenziell unerwünschte Software erkannt.
Weitere Informationen:
https://go.microsoft.com/fwlink/?linkid=37020&name=Backdoor:Win32/Bladabindi!mclg&threatid=2147784274&enterprise=0
Name: Backdoor:Win32/Bladabindi!mclg
Schweregrad: Schwerwiegend
Kategorie: Hintertür
Pfad: file:_C:\Windows\Temp\8274f5c6-6a29-3b82-5f92-3f958dc112fb\98363fee-e070-088e-261e-25a7e3eaa3f7.exe
Erkennungsursprung: Lokaler Computer
Erkennungstype: Konkret
Erkennungsquelle: Echtzeitschutz
Benutzer: NT-AUTORITÄT\SYSTEM
Prozessname: C:\Program Files (x86)\nodejs\node.exe
Sicherheitsversion: AV: 1.379.235.0, AS: 1.379.235.0, NIS: 1.379.235.0
Modulversion: AM: 1.1.19800.4, NIS: 1.1.19800.4
Event[0]
Date: 2022-10-17 11:32:39
Description:
Bei Microsoft Defender Antivirus ist ein Fehler beim Aktualisieren der Sicherheitsinformationen aufgetreten.
Neue Version der Sicherheitsinformationen:
%Vorherige Version der Sicherheitsinformationen: 1.377.281.0
Update Source: Microsoft Update-Server
Sicherheitstyp: AntiVirus
Updatetyp: Voll
Benutzer: NT-AUTORITÄT\SYSTEM
Aktuelle Modulversion:
%Vorherige Modulversion: 1.1.19700.3
Fehlercode: 0x80240016
Fehlerbeschreibung: Unerwartetes Problem bei der Überprüfung auf Updates. Informationen zum Installieren von Updates oder zur Problembehandlung finden Sie unter "Hilfe und Support".
Date: 2022-09-19 10:46:39
Description:
Bei Microsoft Defender Antivirus ist ein Fehler beim Aktualisieren der Sicherheitsinformationen aufgetreten.
Neue Version der Sicherheitsinformationen:
%Vorherige Version der Sicherheitsinformationen: 1.375.584.0
Update Source: Microsoft Update-Server
Sicherheitstyp: AntiVirus
Updatetyp: Voll
Benutzer: NT-AUTORITÄT\SYSTEM
Aktuelle Modulversion:
%Vorherige Modulversion: 1.1.19600.3
Fehlercode: 0x80240016
Fehlerbeschreibung: Unerwartetes Problem bei der Überprüfung auf Updates. Informationen zum Installieren von Updates oder zur Problembehandlung finden Sie unter "Hilfe und Support".
Date: 2022-08-14 20:38:11
Description:
Bei Microsoft Defender Antivirus ist ein Fehler beim Aktualisieren der Sicherheitsinformationen aufgetreten.
Neue Version der Sicherheitsinformationen:
%Vorherige Version der Sicherheitsinformationen: 1.373.157.0
Update Source: Microsoft Update-Server
Sicherheitstyp: AntiVirus
Updatetyp: Voll
Benutzer: NT-AUTORITÄT\SYSTEM
Aktuelle Modulversion:
%Vorherige Modulversion: 1.1.19500.2
Fehlercode: 0x80240016
Fehlerbeschreibung: Unerwartetes Problem bei der Überprüfung auf Updates. Informationen zum Installieren von Updates oder zur Problembehandlung finden Sie unter "Hilfe und Support".
CodeIntegrity:
===============
Date: 2022-11-15 19:19:19
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume3\Program Files\Google\Chrome\Application\version.dll that did not meet the Microsoft signing level requirements.
==================== Speicherinformationen ===========================
BIOS: Insyde F.12 03/28/2022
Hauptplatine: HP 8670
Prozessor: Intel(R) Core(TM) i7-10510U CPU @ 1.80GHz
Prozentuale Nutzung des RAM: 27%
Installierter physikalischer RAM: 16171.49 MB
Verfügbarer physikalischer RAM: 11787.53 MB
Summe virtueller Speicher: 18603.49 MB
Verfügbarer virtueller Speicher: 13722.96 MB
==================== Laufwerke ================================
Drive c: (Windows) (Fixed) (Total:475.76 GB) (Free:375.57 GB) (Model: Intel Optane+477GBSSD) NTFS
\\?\Volume{1d413090-71ef-4433-83cc-2998c1750d76}\ () (Fixed) (Total:0.9 GB) (Free:0.08 GB) NTFS
\\?\Volume{1a151d0b-7f0a-42af-92dd-96e929edabf5}\ (SYSTEM) (Fixed) (Total:0.25 GB) (Free:0.17 GB) FAT32
==================== MBR & Partitionstabelle ====================
==========================================================
Disk: 0 (Size: 476.9 GB) (Disk ID: A50E1C7D)
Partition: GPT.
==================== Ende von Addition.txt =======================
|
|
15.11.2022, 19:45
| #4 |
| | Programm versucht automatisch Chrome Extension zu installieren (web safety) Das Malwarebyte Log ist so groß dass ich es nochmal aufsplitten muss. Hier Teil 1 Code:
ATTFilter Malwarebytes
www.malwarebytes.com
-Protokolldetails-
Scan-Datum: 15.11.22
Scan-Zeit: 19:07
Protokolldatei: 649f6a28-6510-11ed-9ac4-5cbaefa234bc.json
-Softwaredaten-
Version: 4.5.17.221
Komponentenversion: 1.0.1806
Version des Aktualisierungspakets: 1.0.62332
Lizenz: Testversion
-Systemdaten-
Betriebssystem: Windows 11 (Build 22000.1219)
CPU: x64
Dateisystem: NTFS
Benutzer: DESKTOP-Q7BCFQ5\appyt
-Scan-Übersicht-
Scan-Typ: Bedrohungs-Scan
Scan gestartet von: Manuell
Ergebnis: Abgeschlossen
Gescannte Objekte: 289471
Erkannte Bedrohungen: 559
In die Quarantäne verschobene Bedrohungen: 559
Abgelaufene Zeit: 4 Min., 54 Sek.
-Scan-Optionen-
Speicher: Aktiviert
Start: Aktiviert
Dateisystem: Aktiviert
Archive: Aktiviert
Rootkits: Aktiviert
Heuristik: Aktiviert
PUP: Erkennung
PUM: Erkennung
-Scan-Details-
Prozess: 0
(keine bösartigen Elemente erkannt)
Modul: 0
(keine bösartigen Elemente erkannt)
Registrierungsschlüssel: 30
PUP.Optional.OpenOfficeDE, HKU\S-1-5-21-3349990796-3301203750-1932007998-1001\SOFTWARE\OpenOffice Updater, In Quarantäne, 5892, 628584, 1.0.62332, , ame, , ,
PUP.Optional.Reimage, HKU\S-1-5-21-3349990796-3301203750-1932007998-1001\SOFTWARE\Reimage, In Quarantäne, 366, 357494, 1.0.62332, , ame, , ,
PUP.Optional.Reimage, HKLM\SOFTWARE\CLASSES\CLSID\{10ECCE17-29B5-4880-A8F5-EAD298611484}, In Quarantäne, 366, 327197, , , , , ,
PUP.Optional.Reimage, HKLM\SOFTWARE\CLASSES\REI_AxControl.ReiEngine.1, In Quarantäne, 366, 327197, , , , , ,
PUP.Optional.Reimage, HKU\S-1-5-21-3349990796-3301203750-1932007998-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{10ECCE17-29B5-4880-A8F5-EAD298611484}, In Quarantäne, 366, 327197, , , , , ,
PUP.Optional.Reimage, HKLM\SOFTWARE\CLASSES\TYPELIB\{FA6468D2-FAA4-4951-A53B-2A5CF9CC0A36}, In Quarantäne, 366, 327197, , , , , ,
PUP.Optional.Reimage, HKLM\SOFTWARE\CLASSES\INTERFACE\{9BB31AD8-5DB2-459E-A901-DEA536F23BA4}, In Quarantäne, 366, 327197, , , , , ,
PUP.Optional.Reimage, HKLM\SOFTWARE\CLASSES\INTERFACE\{BD51A48E-EB5F-4454-8774-EF962DF64546}, In Quarantäne, 366, 327197, , , , , ,
PUP.Optional.Reimage, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{9BB31AD8-5DB2-459E-A901-DEA536F23BA4}, In Quarantäne, 366, 327197, , , , , ,
PUP.Optional.Reimage, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{BD51A48E-EB5F-4454-8774-EF962DF64546}, In Quarantäne, 366, 327197, , , , , ,
PUP.Optional.Reimage, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{9BB31AD8-5DB2-459E-A901-DEA536F23BA4}, In Quarantäne, 366, 327197, , , , , ,
PUP.Optional.Reimage, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{BD51A48E-EB5F-4454-8774-EF962DF64546}, In Quarantäne, 366, 327197, , , , , ,
PUP.Optional.Reimage, HKLM\SOFTWARE\CLASSES\REI_AxControl.ReiEngine, In Quarantäne, 366, 327197, 1.0.62332, , ame, , ,
PUP.Optional.Reimage, HKLM\SOFTWARE\CLASSES\APPID\REI_AxControl.DLL, In Quarantäne, 366, 327193, 1.0.62332, , ame, , ,
PUM.Optional.DisableChromeUpdates, HKLM\SOFTWARE\WOW6432NODE\POLICIES\GOOGLE\UPDATE, In Quarantäne, 6438, 252393, 1.0.62332, , ame, , ,
PUP.Optional.Reimage, HKU\S-1-5-21-3349990796-3301203750-1932007998-1001\SOFTWARE\LOCAL APPWIZARD-GENERATED APPLICATIONS\Fixer - Windows Problem Relief., In Quarantäne, 366, 709541, 1.0.62332, , ame, , ,
PUP.Optional.OpenOfficeDE, HKU\S-1-5-21-3349990796-3301203750-1932007998-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\OpenOffice Updater, In Quarantäne, 5892, 531440, 1.0.62332, , ame, , ,
PUP.Optional.Reimage, HKU\S-1-5-21-3349990796-3301203750-1932007998-1001\SOFTWARE\REIMAGE\PC REPAIR, In Quarantäne, 366, 327204, 1.0.62332, , ame, , ,
PUP.Optional.Reimage, HKLM\SOFTWARE\REIMAGE\Reimage Repair, In Quarantäne, 366, 336077, 1.0.62332, , ame, , ,
PUM.Optional.DisableChromeUpdates, HKLM\SOFTWARE\POLICIES\GOOGLE\UPDATE, In Quarantäne, 6438, 252393, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect.ChrPRST, HKLM\SOFTWARE\POLICIES\GOOGLE\CHROME, In Quarantäne, 5639, -1, 0.0.0, , action, , ,
PUP.Optional.DownloadProtect.ChrPRST, HKLM\SOFTWARE\WOW6432NODE\POLICIES\GOOGLE\CHROME, In Quarantäne, 5639, -1, 0.0.0, , action, , ,
Trojan.DownloadProtect, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\BenutzerdienstfürZertifikatverteilung, In Quarantäne, 294, 910814, , , , , ,
Trojan.DownloadProtect, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{C2776C0E-E0B7-4DE3-AD81-8208C3CE57DD}, In Quarantäne, 294, 910814, , , , , ,
Trojan.DownloadProtect, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\BOOT\{C2776C0E-E0B7-4DE3-AD81-8208C3CE57DD}, In Quarantäne, 294, 910814, , , , , ,
Trojan.DownloadProtect, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\MUP QWAVE-Treiber Automatische, In Quarantäne, 294, 910813, , , , , ,
Trojan.DownloadProtect, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{F42B2761-1566-48FA-8FA9-1A2AD108095B}, In Quarantäne, 294, 910813, , , , , ,
Trojan.DownloadProtect, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\BOOT\{F42B2761-1566-48FA-8FA9-1A2AD108095B}, In Quarantäne, 294, 910813, , , , , ,
PUP.Optional.Reimage, HKLM\SOFTWARE\CLASSES\APPID\{28FF42B8-A0DA-4BE5-9B81-E26DD59B350A}, In Quarantäne, 366, 332494, 1.0.62332, , ame, , ,
PUP.Optional.Reimage, HKLM\SOFTWARE\CLASSES\CLSID\{801B440B-1EE3-49B0-B05D-2AB076D4E8CB}, In Quarantäne, 366, 327206, 1.0.62332, , ame, , ,
Registrierungswert: 8
PUM.Optional.DisableChromeUpdates, HKLM\SOFTWARE\WOW6432NODE\POLICIES\GOOGLE\UPDATE|DISABLEAUTOUPDATECHECKSCHECKBOXVALUE, In Quarantäne, 6438, 252393, 1.0.62332, , ame, , ,
PUP.Optional.OpenOfficeDE, HKU\S-1-5-21-3349990796-3301203750-1932007998-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|OPENOFFICE UPDATER, In Quarantäne, 5892, 531439, 1.0.62332, , ame, , ,
PUP.Optional.Reimage, HKU\S-1-5-21-3349990796-3301203750-1932007998-1001\SOFTWARE\REIMAGE\PC REPAIR|QUITMESSAGE, In Quarantäne, 366, 327204, 1.0.62332, , ame, , ,
PUM.Optional.DisableChromeUpdates, HKLM\SOFTWARE\POLICIES\GOOGLE\UPDATE|DISABLEAUTOUPDATECHECKSCHECKBOXVALUE, In Quarantäne, 6438, 252393, 1.0.62332, , ame, , ,
Trojan.DownloadProtect, HKU\S-1-5-21-3349990796-3301203750-1932007998-1001\SOFTWARE\MICROSOFT\EDGE\PREFERENCEMACS\Default\extensions.settings|mldhfefacmadchendjighmjppdblmcle, In Quarantäne, 294, 910630, , , , , ,
Trojan.DownloadProtect, HKLM\SOFTWARE\POLICIES\GOOGLE\CHROME\ExtensionInstallForcelist|1, In Quarantäne, 294, 910630, , , , , ,
Trojan.DownloadProtect, HKLM\SOFTWARE\WOW6432NODE\POLICIES\GOOGLE\CHROME\ExtensionInstallForcelist|1, In Quarantäne, 294, 910630, , , , , ,
Trojan.DownloadProtect, HKU\S-1-5-21-3349990796-3301203750-1932007998-1001\SOFTWARE\GOOGLE\CHROME\PREFERENCEMACS\Default\extensions.settings|jmjcjndfpllhnjfikjoheidbenckbfpp, In Quarantäne, 294, 910630, , , , , ,
Registrierungsdaten: 0
(keine bösartigen Elemente erkannt)
Daten-Stream: 0
(keine bösartigen Elemente erkannt)
Ordner: 172
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{0152F95C-FA4B-4C08-9F22-FA66036E12E2}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{0444169E-55CE-4268-A3D0-1E04B6F9E52D}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{072C0C05-32F3-4E5D-B644-03C45646869E}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{0BB2D9C1-DA27-4F2C-ABD4-45C017A59F5B}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{0E73645A-DA98-4A80-BF3E-837DA73731C5}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{11D9F95A-BED9-4BEA-BFBF-F2BFDE88D5EA}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{11F59049-976C-4785-984D-501AAC4BAC4C}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{12916F43-A334-4234-BB32-656BDE6DA806}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{13C3D56F-FE75-4E2B-A5CD-C471C8225749}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{14434997-7BE4-42D7-ACEE-5626388BD03E}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{165CD241-616F-4CB6-AA28-7813189BB142}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{17690403-AB86-43F6-8679-31C658166206}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{18924C39-FDEA-4EE1-9378-42B3E60F248B}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{19065A78-8F81-44D1-A2E5-D9F46078D541}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{1D119D8C-63DB-4342-BED8-D0D3B2846A00}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{1FD35610-06E7-4987-9BE8-0CE85D5804C7}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{239E944E-F107-41CD-8D3B-824B6DA33418}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{244EEEF1-8BC2-4A93-84D2-AC889E9CA5EC}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{24F4A8C1-AE9B-4EA2-A523-122414FDF1F7}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{2667C8B9-B0D0-4267-B477-F25C6B34FC48}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{282F0657-C351-4538-890E-23D338867F63}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{2911B787-4013-4410-8683-4595756E59F5}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{29605178-E6CC-4760-9680-57BC6FC30828}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{2BD1883B-539E-4BEB-9FDB-2D30AD7DA0BF}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{2DBA2550-853E-4754-B2C8-2CD9ABE90EA0}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{2F032D72-684A-47B7-A2D0-C97D98B0D037}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{3465ABC8-0F33-493C-8032-0237B65A7E2F}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{3612544A-EE21-47DE-BF20-03D345743CAD}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{38FC95B2-D3BE-40DC-A667-CF7695BF1401}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{39D824A0-7F80-49E0-A26B-7262BB9FA3D0}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{3A6BC467-DE76-4A82-9749-000A79230B67}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{3ACF8859-E7B9-4FAC-A3F8-ED45918AB153}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{3BEB0A55-223D-4C9B-BB35-D3253D605E8C}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{3C26E06B-9D59-4EB0-89CC-DA2F17F0AA2C}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{3D613FC9-9AE4-46E7-BD93-342AA59EA193}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{42FDF14D-82BC-4EE5-A614-2FA7BD303B77}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{47C0ADCF-23A4-43B3-914E-8794DE86CD71}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{49FCF5C8-DEE6-4680-8728-21F02A8174F6}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{4A9AF300-8891-49C0-A969-48CE9D81A5F7}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{4AFDE520-4192-4F14-93EF-6ECBA842BF72}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{4B1D3567-83D2-4846-AD0B-9312C142A4AB}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{4E6FA24B-1C34-47A2-B23D-D1F36CA1E777}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{4F385B0A-97FC-4CAC-B2E3-1B562FB72068}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{523F2ED2-3608-43B0-9AF9-ABC70A2FBAEF}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{53E81127-A91C-49CB-A89E-15BBA8216CB0}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{53EB7ADF-6EE9-489A-A9D2-38AD5982271A}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{540A9BF4-C9F0-4522-9C9E-B49857C41C83}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{55F267F1-BFE0-417F-BD70-47FBF85842DA}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{56BEF503-B860-400F-A2C9-9B84C596F0B1}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{56F3CAE4-6FAA-40BE-9E66-6C0162C739EF}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{573083AB-46F6-4742-A548-DB3BCF066ECE}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{59BF3AF6-D87F-4587-B8EA-8D5E790EF3EE}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{5EB82EFD-EEAB-457A-9016-65C1D196C13D}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{5ED58B42-0F88-4585-B92D-193EA3106600}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{5F76E5D3-3388-4080-B815-96233D1454C7}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{5FCFA9A1-0B81-4D4E-9529-70042AA5A5F4}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{63D66AFE-3E5E-4838-BB7A-4C842DA4DD91}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{640FDFD8-94D3-4273-9A3F-F525A20B1201}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{66164EA8-39A7-4852-8C17-A58DE6A418B8}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{67FCAC53-345E-449C-9902-778930CE301C}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{69AE4AD7-A39E-491E-924E-93D0AD310534}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{6B1B51F1-6854-46BD-BEB3-6C4DE0E595BC}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{6C6B5C78-FBAC-4F52-9DF1-4931D071703E}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{6EA92AAE-8F04-4E13-B3C9-9B6B1E08C5DC}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{6FF06E37-CD2B-40B3-9CB4-B65FE2D2A3BB}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{70395B30-35D0-474C-86CA-990C7930F146}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{712895B0-3AE8-4EA8-8C58-CC9D62F72481}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{7128AFA9-76A4-4F16-A2BB-EF406B70393B}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{7359F616-D608-4379-A59D-9C0C96D2C54F}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{74825E2B-B9B0-4F21-A943-04D4F86A1C43}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{77ABE1AE-50B8-4A66-97E3-F53A91F19305}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{7801A897-EAEA-4DD1-9795-902ADA13CD2A}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{792B81F6-A56A-495D-840A-AE93B7139E12}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{79E330E6-D562-46C8-BF96-62C79AC3869F}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{7B7D9780-16A4-4C74-9754-237093E16A62}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{7BAE4FE4-AFF3-4104-AC4E-BE7C09132A26}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{7CBA45E4-664B-4236-A245-54B7D0AAF5B6}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{7CC55F7B-F67F-40EA-84D7-E7650BF97388}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{7F47997D-7840-4EF9-8D15-8FC172912D69}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{834BEB1A-E949-4691-81A4-2BD719184FFF}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{83CCDB8F-40EE-40AC-80A3-EBEC20CBC068}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{86113F56-BFF6-4FB0-B512-0F18C9526BED}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{882FFFFD-0B9A-4C8C-B433-715DC9F108BC}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{895D4036-DC64-407F-8629-8EFCED8210EE}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{8D084F7B-8331-4B5C-BE48-A9D02EF7F737}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{8DDBF5A7-EFEB-40A7-9D5A-7100A9ED3F90}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{8E587131-6DA2-4915-814A-9111967794D7}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{8F5A5B80-4E4C-4DCD-8CDE-AA3903239EE1}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{900618D9-6149-4BB5-9211-B73C8B20F9B0}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{904B2DE3-863B-4673-B76E-4956F916950E}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{90FE6E0C-AB65-4E62-9E4C-1A2380CEAC57}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{9183715A-00AF-4DEF-9403-7F30A7A9CCBC}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{91B47E0F-53A5-408B-935C-C159F49257BF}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{9458DCF8-0DCF-4E30-B97C-4AEC46928823}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{954BBC16-1193-4D0A-91B7-D779153946AA}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{95A7C16D-94D6-4B50-8097-C985DED56E9C}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{98A4EB3D-03ED-43AA-86C2-4495BA5D1337}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{9A0B6912-28B4-494E-A933-4D4E8F3D39BF}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{9B94F004-58A3-4939-A48E-351DBA4A5646}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{9C44E43A-C9FC-4CC9-9070-F5342155ADDA}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{9C9596A2-0976-4BE0-BB31-9DD194F28A81}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{9C9FE564-59A4-4DEE-9A7E-23D176B3BB51}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{9E891FC1-CBD0-429C-8447-5A216E2C41DC}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{A2E5B8EA-1A07-4E57-8B34-DC840B1C6DFC}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{A478B393-533B-44B9-AD57-8211016DD1E1}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{A7228F6C-867D-4BF0-B252-D6B9C5FC0BDA}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{A8D701AD-A4A2-444F-BF94-51FAC94FC2A9}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{AA7C7227-E3B1-490C-A309-7B71C91DA81A}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{AAF56278-DA42-497D-B570-EAACEED8246B}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{AB02D1B6-8DC5-4F01-B7B4-24FA75E27881}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{AD48E81D-61E1-4DC7-92E0-7DFBE752CED2}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{ADCAF2FF-FD00-4A9F-9F21-D669157F9A04}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{AE8025DF-6A16-4CF2-9C8A-71AD9678587B}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{AF9C6B4F-9BF5-48DD-A443-AD0FE4EA5F74}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{AF9DCD84-3423-4CE0-8019-C49F37E5659C}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{B0AA745B-F35B-4F64-859B-6DCC58F2C75D}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{B2B7CBE6-15DB-4EC3-BF03-384EB46B9DD4}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{B31C4CF6-E8C5-4159-8747-A502C44D431C}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{B37F4F66-5E0F-45FE-A82C-D8BFE29E1DED}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{B7C3927B-4A40-463B-8BA8-32B176C5CC03}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{B89F420E-AF72-4D58-89E7-CB37DA9889EA}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{BAD02F69-3ED1-406C-A1F3-EED74C10DEA7}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{BBF7239A-FB52-4AFF-8E6F-BAC1FB722A2B}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{BC9BC994-E78C-4F16-8A37-39B507BEB245}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{BD7883AC-8E88-428D-BB1C-C14080B28C80}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{C1655685-EAC9-40BD-890D-103E17A7B905}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{C2277658-B130-43BA-8360-A8124A113D6D}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{C2A22759-09CE-4B9D-86BB-C1E52A2F114F}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{C32A11FD-255B-4DF8-9470-419BFF26F14B}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{C55E66C5-68BF-4E12-932E-C0EA907EC2E4}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{C6D9F165-CFCF-469B-BEFB-543CADB7D4F5}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{C7E30752-F812-485F-A48A-E5D2A0C31AD2}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{C80BD4B9-83B8-4FFF-A477-C009DAE6528F}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{C8D31473-DF9F-4260-9D6D-6C5A12BD6037}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{CA5868E3-61CC-46AC-8F39-CB4D7E3A9073}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{CC47217D-227B-46D2-94CF-EAFCE06EAFE8}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{D132E7FB-4FB8-4848-B0CD-B28C327A3BAC}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{D21D7EC7-1D59-45F1-9F69-2CB68DA7A01F}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{D487FF00-06FC-4B59-9764-C603A3E7CBA2}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{D557D1CF-286C-44AF-94BF-ED8896AA99F5}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{D5890F0D-79F4-4654-806B-71D2DA52D0A6}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{D64B049B-7B3B-4E68-9160-0EE1F7B474CE}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{D9D209C4-78BE-46FC-B651-FCE4162F91AE}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{D9F93BBA-3388-451D-A799-646492FDACA6}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{DB226943-BB77-4754-9189-9A06B86B6C4B}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{DD1D3956-7A5A-4C3C-9EC4-89AC89F939DD}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{DD4905D5-8430-4AE1-AB7B-328736D26679}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{E06D6222-8355-486E-8F3D-F0DE25F7D036}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{E11842DE-9D03-452E-95EF-7279AA02A34B}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{E1C9DE0E-DD50-4365-9879-DC63A4213AF0}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{E3EA4A38-E93A-4633-BB91-C8F771958989}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{E41DB2D1-0527-48FB-9915-12AC57ADBC9C}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{E61200D8-7484-44A4-B746-ED7A7FC42756}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{E7506E4D-8A29-4E90-AF6B-1B6F6ECE2562}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{E8278EC9-EEA7-4570-B24E-9A51F3456837}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{E83C1220-3E90-4F8E-A46B-3606E7B2C3A2}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{E89125CF-C735-4A02-B102-49F7675ADF87}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{EFB04F92-343C-4E7D-B6A7-9DE305AA440E}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{F00C3505-7A23-402A-9E65-C5DA3812EC82}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{F73DCF5C-3B17-4375-9237-17E6DDCE95C0}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{F83C79E6-73E0-477A-8B51-82640228FBB8}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{F9BC96B2-E8C1-4D5D-98DD-C586B556AC3E}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{FA043295-F745-4784-9A2F-D61BBD58D361}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{FB7E46F6-4E47-43C7-880D-88E32B029688}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{FC086551-083A-492E-A955-26482C0B8026}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{FD01BE00-3ADA-4422-978C-EA2DB1759C47}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{FD55318E-4C57-4832-882B-D28A2CCE613E}, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ,
PUP.Optional.DownloadProtect.ChrPRST, C:\WINDOWS\INSTALLER\{8DBB0114-5026-497D-A17A-21D9D0AA8D24}, In Quarantäne, 5639, 255640, 1.0.62332, , ame, , ,
Trojan.DownloadProtect, C:\WINDOWS\INSTALLER\{6A02B9E5-0F61-4E89-B30A-0938191D102F}, In Quarantäne, 294, 910814, 1.0.62332, , ame, , ,
Trojan.DownloadProtect, C:\USERS\APPYT\APPDATA\LOCAL\MICROSOFT\EDGE\USER DATA\DEFAULT\EXTENSIONS\MLDHFEFACMADCHENDJIGHMJPPDBLMCLE, In Quarantäne, 294, 910630, 1.0.62332, , ame, , ,
Trojan.DownloadProtect, C:\PROGRAMDATA\PACKAGE CACHE\{11DAD822-AE3A-44B3-AEFF-29CCC88CC081}, In Quarantäne, 294, 910813, 1.0.62332, , ame, , ,
Trojan.DownloadProtect, C:\USERS\APPYT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\EXTENSIONS\JMJCJNDFPLLHNJFIKJOHEIDBENCKBFPP, In Quarantäne, 294, 910630, 1.0.62332, , ame, , ,
Datei: 349
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{0152F95C-FA4B-4C08-9F22-FA66036E12E2}\xbjlodghponkndkmhegdenbecdfehbooiml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , A4803F79ABE6DFD91D6D1787083F8AE4, F30B9AE50EAE3D470383D8179928DF874EE96954D67A2C5DC9C73290C8627E87
PUP.Optional.DownloadProtect, C:\Windows\Installer\{0152F95C-FA4B-4C08-9F22-FA66036E12E2}\cbjlodghponkndkmhegdenbecdfehbooirx, In Quarantäne, 51, 237879, , , , , 79F9BD83EB1A963CBD4D4D5ED89BFC65, CAE46C211C81C2F224C4A88DDA9B624BBC3777A631F7234BBFE24D9C3518667D
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{0444169E-55CE-4268-A3D0-1E04B6F9E52D}\ximggbfljholjoliphnhiljgmokejhlhoml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , 98AD192B9612063D302AB80AC16B16FE, 73AB1C106E2509E63CCE9F03212667E5CA41AFD476007297BD9971724BB28D83
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{072C0C05-32F3-4E5D-B644-03C45646869E}\xjjbfnekmglhcecedldebefopnkafbaikml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , D8E3E2AD84CB0614256B774724C4BB92, 966D24D0EA6FB54422C34303D07D4A3825489431454C21F3585C6DB722BB069E
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{0BB2D9C1-DA27-4F2C-ABD4-45C017A59F5B}\xhfcgoibolacmecmikmlbmlkcenbaljioml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , 27C500E01F3C27737B5D66838F2FB497, CB72968FCA059EE38C1E75DA62E4E95C5C38E90C99F20F5D90666F7BBFEC1E50
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{0444169E-55CE-4268-A3D0-1E04B6F9E52D}\cimggbfljholjoliphnhiljgmokejhlhorx, In Quarantäne, 51, 237878, 1.0.62332, , ame, , 11B2A11AD82A6F09D7729AE25506F85D, E1F462C7374CC2A8EA70E801A61F899C2F2B0F71CCF1556C6972E309811F01C3
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{0E73645A-DA98-4A80-BF3E-837DA73731C5}\xfdennfbbahajedlboogcninkjlcgaihlml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , 678A1A4B6B3B6833000935C9060F9250, 349CEAEB15D0E55EF7BF20E335815FFCE8F8221A65A889590CF1B098C5FB9CBD
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{072C0C05-32F3-4E5D-B644-03C45646869E}\cjjbfnekmglhcecedldebefopnkafbaikrx, In Quarantäne, 51, 237878, 1.0.62332, , ame, , 66C08FCB4AF4695ADB380A1636D13204, 4D088165F5982B42C13673559714F0070D4E5A564B37D91DBA648ACF19E01BBF
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{11D9F95A-BED9-4BEA-BFBF-F2BFDE88D5EA}\xmeidholcpepddcdhlcofphmdahlbicpkml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , AF573D063FC34D0BC19B6E3D6AF6BF66, E7052EEBE9EBE8ED47288C00C2367C1A9EFB5C42D93FFCBB284DBC0A37ABB851
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{0BB2D9C1-DA27-4F2C-ABD4-45C017A59F5B}\chfcgoibolacmecmikmlbmlkcenbaljiorx, In Quarantäne, 51, 237878, 1.0.62332, , ame, , 0426E8995CCFCA9F09218D190E7982E5, 9792D11202B9E796DA0695AB5D99916D789A85C0795504245F5CBA79E144BCB0
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{11F59049-976C-4785-984D-501AAC4BAC4C}\xiealijkgbcjooedpfefccbcnohniacnpml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , 1A1A88FA58A476A70F2745CB5BF47C46, E636F820F4BD5955704E37AF7C1CFB23E88DBB17B111AC8EADFE02872CB236C4
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{12916F43-A334-4234-BB32-656BDE6DA806}\xhpaohghbcmmpaehbmfocookpabogcbbpml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , A795721268FF1FFA49FA0AB53A77BEFB, 932C5887D3DC029AD7B330565A7B2E7EE894DF6CA36E2AC6D51186D84B107BFA
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{13C3D56F-FE75-4E2B-A5CD-C471C8225749}\xomlbjkakdcakancmckedcnodpkmcopkhml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , 30F7DF7D5194729CA87729B80A08CFD1, 0BEF481E5A0705231925228D6B0F41132DB2C94EBB3D4B2C3438C11417E602A0
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{0E73645A-DA98-4A80-BF3E-837DA73731C5}\cfdennfbbahajedlboogcninkjlcgaihlrx, In Quarantäne, 51, 237878, 1.0.62332, , ame, , FC3512BB59F175358B89037F21B89298, 63E29F329BBCD15A63D7F3248A496CB83DC524DC3CB93BEF75F172970E81502E
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{14434997-7BE4-42D7-ACEE-5626388BD03E}\xaflodncgddpofmhkblagcnglampekfjjml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , 3BD2E6E06C4AB121DAB1C028CD50DE7F, B9269471718EFE9C65711DFAB4E2F1C0118D7C129FEDDA8CF751E3025C29410E
PUP.Optional.DownloadProtect, C:\Windows\Installer\{14434997-7BE4-42D7-ACEE-5626388BD03E}\caflodncgddpofmhkblagcnglampekfjjrx, In Quarantäne, 51, 237879, , , , , 92651AA0A1D57950E3E627CF27C8835E, A772CF0194F5C0818BBD0BA83D97C32E795CD67FEB529330DC10AACFF9AC1FCF
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{11D9F95A-BED9-4BEA-BFBF-F2BFDE88D5EA}\cmeidholcpepddcdhlcofphmdahlbicpkrx, In Quarantäne, 51, 237878, 1.0.62332, , ame, , EE8F226CC5EC92CCC276A67252C4DD94, 67D478C0BE7BD9BEA825A5B479B3D9268BBB9FA552A9542D800207B506AC6C20
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{165CD241-616F-4CB6-AA28-7813189BB142}\xadggolnljglojhglfdjnplhmmhjmgdbiml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , 7B84BA673004879254968064D0EB5DF9, 92F80276CD101C7B3636F67F3812AECD92A0F27653682B4855848CDA883D5089
PUP.Optional.DownloadProtect, C:\Windows\Installer\{165CD241-616F-4CB6-AA28-7813189BB142}\cadggolnljglojhglfdjnplhmmhjmgdbirx, In Quarantäne, 51, 237879, , , , , 524C76BF72542495552BF8FE8468A836, 8ADE67599E3C8A5C9A4DE04CADDF18CD6B34D0C55756053015E3F4CEBAF763DF
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{11F59049-976C-4785-984D-501AAC4BAC4C}\ciealijkgbcjooedpfefccbcnohniacnprx, In Quarantäne, 51, 237878, 1.0.62332, , ame, , 8111399742120095108D72769B73719F, 92BC64089C3248F3E0986AF78546D8DD2FBB6E5CEFD190218947C9DCA6254DD8
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{17690403-AB86-43F6-8679-31C658166206}\xelildggmkmpnemnadlmobbldomhdofdlml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , E9F2AC18C7EC0FBE6AABA219D0E59A33, D6F85792A4B05302A5BF22B3483AFEE80F3B1F1034607BC6A5322F14AD7064D0
PUP.Optional.DownloadProtect, C:\Windows\Installer\{17690403-AB86-43F6-8679-31C658166206}\celildggmkmpnemnadlmobbldomhdofdlrx, In Quarantäne, 51, 237879, , , , , 01F8F8370B6519262B7D7CA661649AD2, 40821BC6A977D1DBF8E4451074B177E5F616E334A53FA6A7D13693F83CE27CA5
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{18924C39-FDEA-4EE1-9378-42B3E60F248B}\xcaglennbmkihoclenjkfkdkdecljcnhjml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , 7197C11E5D48323E9314D5612F91755B, 076F574B8FA5496ECB4E450B62F3E1A6B2156C6D6E61B5C53EB603EAEE47A552
PUP.Optional.DownloadProtect, C:\Windows\Installer\{18924C39-FDEA-4EE1-9378-42B3E60F248B}\ccaglennbmkihoclenjkfkdkdecljcnhjrx, In Quarantäne, 51, 237879, , , , , 84CDB833E830533C5D80A9AAEE4D251C, 12A6377797AC3E6A6A66D1C7CB7FCB4C9C2EB28A3E0BF670348432215F8C074B
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{19065A78-8F81-44D1-A2E5-D9F46078D541}\xaekfhbjabbifahagcmllkjpjmjeahkkpml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , 9ECE0C1F0000521C1F0D30559ECD752C, 2558A4504E96C6DBBB24FDD71799729886E8ABFBF18462A621FC149585050A19
PUP.Optional.DownloadProtect, C:\Windows\Installer\{19065A78-8F81-44D1-A2E5-D9F46078D541}\caekfhbjabbifahagcmllkjpjmjeahkkprx, In Quarantäne, 51, 237879, , , , , B8046A1A358E830DFEB669821B1159AF, 4E3650975E2B0A05B89B3A85E2D6F78C79F0C29DF9C42A4B87FEC188C6E4756E
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{12916F43-A334-4234-BB32-656BDE6DA806}\chpaohghbcmmpaehbmfocookpabogcbbprx, In Quarantäne, 51, 237878, 1.0.62332, , ame, , FDB27A5C578C499F2668D0AAF43D0D96, 5802C706DDBCD54D1782329725AB61B5FB2339C7F899C907FD9DEA3358932DB7
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{1D119D8C-63DB-4342-BED8-D0D3B2846A00}\xhdhilodmhdepjgdohbkbpebfmhghiepkml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , 3CCA4E3B652D43FA9CA6CE6255D0D96A, C3E6654A65864272375FE55D4463C922B52057A290D473B324F8699550538973
PUP.Optional.DownloadProtect, C:\Windows\Installer\{1D119D8C-63DB-4342-BED8-D0D3B2846A00}\chdhilodmhdepjgdohbkbpebfmhghiepkrx, In Quarantäne, 51, 237879, , , , , 139588B44371A5CFF6A0AF26737A8180, 559AC010C397CA85731162BB2BA65C95556FD0AE15CE13197B5E74ED843D2AA9
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{1FD35610-06E7-4987-9BE8-0CE85D5804C7}\xkjfodmcbcgpmbhhnlgphmljbhdcddbhdml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , 433779A46A16E181BB79A11CAFFB2004, 2E06AFF191D02E8503F88585E9CE73E6554F177E49F56F2162CE58A5114006AF
PUP.Optional.DownloadProtect, C:\Windows\Installer\{1FD35610-06E7-4987-9BE8-0CE85D5804C7}\ckjfodmcbcgpmbhhnlgphmljbhdcddbhdrx, In Quarantäne, 51, 237879, , , , , A8A3CCFB849AF39742E11B27B6D8CDC4, 7706F72AEDF1863292C29E1C48C80F820773CC556728A7BB3DCC3BC2DFD8A3C6
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{239E944E-F107-41CD-8D3B-824B6DA33418}\xnlhefnpckdoambghlnmbhimepcbhhfhjml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , 2204A4891E43FDB3E7B81D02193F67CE, 863BC40AB9E5AE078C3EE158F7A31208FD0BBFEA76E070418860276584A2214D
PUP.Optional.DownloadProtect, C:\Windows\Installer\{239E944E-F107-41CD-8D3B-824B6DA33418}\cnlhefnpckdoambghlnmbhimepcbhhfhjrx, In Quarantäne, 51, 237879, , , , , 0395CFF02E314044BA4A2EACE0B2175B, 1A2A379FCC027D86542C2FADCBBF0ABCA6B718B2249C3E402599F1A7E1568416
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{13C3D56F-FE75-4E2B-A5CD-C471C8225749}\comlbjkakdcakancmckedcnodpkmcopkhrx, In Quarantäne, 51, 237878, 1.0.62332, , ame, , C8BBE01C059F52C4DE3922AFB8BE08EA, E3C4D51DE4F2C12AA6837AE08F6CC8D6F03F31BAE5A10FE2D2667B7322AD2627
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{244EEEF1-8BC2-4A93-84D2-AC889E9CA5EC}\xbphkkbficdhmpffoildohinjbckgdehlml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , 17135C8F463174A02C1C7CC3E185C88E, 04961E015DD5E0FF510877BB05FC18F3AFFAAB589B229B9683A4B4B6A4571514
PUP.Optional.DownloadProtect, C:\Windows\Installer\{244EEEF1-8BC2-4A93-84D2-AC889E9CA5EC}\cbphkkbficdhmpffoildohinjbckgdehlrx, In Quarantäne, 51, 237879, , , , , 8613DA1A1CFD17ACBCEE5E7F4717F35C, A30AC00159B754FA6A60DC8BBDF8757A843262816244018113E23007ECE54302
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{24F4A8C1-AE9B-4EA2-A523-122414FDF1F7}\xjmjcjndfpllhnjfikjoheidbenckbfppml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , D12B76D3F671D619D84559924CCD127F, 3FCA8B48897E33BBC6832C31BC4324C941A347B8DC68B780B9CAE3B01ED9C7C7
PUP.Optional.DownloadProtect, C:\Windows\Installer\{24F4A8C1-AE9B-4EA2-A523-122414FDF1F7}\cjmjcjndfpllhnjfikjoheidbenckbfpprx, In Quarantäne, 51, 237879, , , , , 60F7D442DCAAD4ADAB64EE933C66FE94, 14AA8A0CD1EE887B198300BD704B371D884973768B4B91BBA529A5D588953F54
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{2667C8B9-B0D0-4267-B477-F25C6B34FC48}\xnanaiplpfdigigdlijbapcldhldllobjml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , 64A6CEA56262E07BF54BAB5B068EAA0D, 1EDFDC6752E20C7C0BEAB13DCF0B19CBF66195A39210D3ACCF705D3159FD1F4F
PUP.Optional.DownloadProtect, C:\Windows\Installer\{2667C8B9-B0D0-4267-B477-F25C6B34FC48}\cnanaiplpfdigigdlijbapcldhldllobjrx, In Quarantäne, 51, 237879, , , , , 8BA4ACFE385B3D0DC22C7AF0754CC216, BEAE126E4549DE455B5EC518185B40806CB6969B46D6809331B765C7F724D90D
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{282F0657-C351-4538-890E-23D338867F63}\xclpblbfpeebihicheeknhbekajampjopml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , CC18ABB6BAD6EAE9C4779B1AAE1EF342, B2ADA10AD861D3A56388C95DD9062A2061AF1DA9AE30A2ACFFAD854FDEBA54B8
PUP.Optional.DownloadProtect, C:\Windows\Installer\{282F0657-C351-4538-890E-23D338867F63}\cclpblbfpeebihicheeknhbekajampjoprx, In Quarantäne, 51, 237879, , , , , D6BAE363E61388C560037AFD8078183B, 356763DFC24353F8E3431C2E4AEC52B3722F037341FFD5C85D8F6F57F57152DA
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{2911B787-4013-4410-8683-4595756E59F5}\xealemmaojkmbompjjlldhbfhgkpkachkml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , 994EE893511A68E0851764D004194305, 440BC34CEC08E82993345C5ACE2DD549AD48D2BB90C0E6C0C32A377BAC6E06C2
PUP.Optional.DownloadProtect, C:\Windows\Installer\{2911B787-4013-4410-8683-4595756E59F5}\cealemmaojkmbompjjlldhbfhgkpkachkrx, In Quarantäne, 51, 237879, , , , , 58F07079F807D8256A21B5C627468A58, A658A5A964AC4807BE66B54F4E2817AC3FF1C7963D9623252A66BAD3C98E95EC
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{29605178-E6CC-4760-9680-57BC6FC30828}\xmneojldnhgiboaclennmigjefhccolphml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , 8D19201668D7A679410D9FDC83CF6BD6, 963732DA0F6C9F96A2C2F25F0A3F774E39AD219881A1E7DD29F6A69CD3ADA7AF
PUP.Optional.DownloadProtect, C:\Windows\Installer\{29605178-E6CC-4760-9680-57BC6FC30828}\cmneojldnhgiboaclennmigjefhccolphrx, In Quarantäne, 51, 237879, , , , , 190E56285BFF8DEB0E03AA1DA62EBFA2, 19DA43DBDBE58FEC4726559D98B66CF90ADD00C5162A3F3A420264FB5E77F479
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{2BD1883B-539E-4BEB-9FDB-2D30AD7DA0BF}\xdlapjibpjlgpepcemnahiplpoafnelidml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , C53B624FED9DB2914BEF9980905D3C8B, 07F0ABA02E7A8641A106E2871A4D547CC8D85E8BFCAAA8FB6367F4AC5E89853A
PUP.Optional.DownloadProtect, C:\Windows\Installer\{2BD1883B-539E-4BEB-9FDB-2D30AD7DA0BF}\cdlapjibpjlgpepcemnahiplpoafnelidrx, In Quarantäne, 51, 237879, , , , , 8970F9A9F8ABFE020F74F9E0ADF85C8F, 335473B8F5C6FBBCA11308D65445D03EF94DFA2B6BE34D9DE3C2974E9DD2B6D7
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{2DBA2550-853E-4754-B2C8-2CD9ABE90EA0}\xmhcbbjdnmjonmdopomfiljlphaalmncpml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , 7B646C2265F69595EF37E570FC4DA32C, 8FC7839C3734C75665CD6235AFE23DFF352BAFCF8E1B5227950FD7554C954F1C
PUP.Optional.DownloadProtect, C:\Windows\Installer\{2DBA2550-853E-4754-B2C8-2CD9ABE90EA0}\cmhcbbjdnmjonmdopomfiljlphaalmncprx, In Quarantäne, 51, 237879, , , , , 9BA2631D739C3452D8C5A2872E315C1A, 44D7E5F52534E4AB876461F2ABDF5A2F10E39AB18F745BB7C3BA1C9D6C34AA4D
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{2F032D72-684A-47B7-A2D0-C97D98B0D037}\xmfngfalfjjbggbkeknbehlflkcedkloiml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , 1D0C1E99AE77962D491209624727440B, 575408B7269C02FD8033963DD99AAC79B1C00EC8EBD085B60565346553FA5F39
PUP.Optional.DownloadProtect, C:\Windows\Installer\{2F032D72-684A-47B7-A2D0-C97D98B0D037}\cmfngfalfjjbggbkeknbehlflkcedkloirx, In Quarantäne, 51, 237879, , , , , 5FD2223EEACF1EA5A1C59B65E10AF826, 20313A0F025695B6FFCDD6EF0C717D8F3C41DC2D91A807B808BECAC30A17F9B7
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{3465ABC8-0F33-493C-8032-0237B65A7E2F}\xfmahgpolegdehcmfbhhcjejilmlnemaoml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , 2E2F7A32BED83FF24F1284ABBAFCAD21, 8ABEB0088EB25071A8D01B6C17AAD4808F9017B9DD126ED4A23DCDE5D2C06D4A
PUP.Optional.DownloadProtect, C:\Windows\Installer\{3465ABC8-0F33-493C-8032-0237B65A7E2F}\cfmahgpolegdehcmfbhhcjejilmlnemaorx, In Quarantäne, 51, 237879, , , , , D0F147EA982BE31BD71F1DB984711802, 22671402321DC2BC365EBA05B2F0CE2FB568C83C36E92B00C80D8C0E08BFEA52
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{3612544A-EE21-47DE-BF20-03D345743CAD}\xcdflbipaceafjpmkkbneljppigmegcohml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , BDD4418BF37D4988328F9C47C4E63C52, AF795DD6AAF4EAEBDCD523CA7D947746588A68115455F4FD5D83F84C32728A05
PUP.Optional.DownloadProtect, C:\Windows\Installer\{3612544A-EE21-47DE-BF20-03D345743CAD}\ccdflbipaceafjpmkkbneljppigmegcohrx, In Quarantäne, 51, 237879, , , , , 4E366B8FAD95A91F628459FCEF5D83E1, D610409D90DD8FDF8F1F6251C95C9361F1A7E9CD591625A47160105F28EF2AFE
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{38FC95B2-D3BE-40DC-A667-CF7695BF1401}\xcjaekpblljmhdlnfhmmlcinolefecgflml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , 4EDDFE456EFF9457885D3E3ABF998662, 82638880427B89F9B3DB6C3FB21CBD59C541963B92496CD641976358EC7C541F
PUP.Optional.DownloadProtect, C:\Windows\Installer\{38FC95B2-D3BE-40DC-A667-CF7695BF1401}\ccjaekpblljmhdlnfhmmlcinolefecgflrx, In Quarantäne, 51, 237879, , , , , 60435FE7916718F7BFCA1B8EFD45FDB7, BB1BD36D7A2F497BB3C84B7EC60AFA0B0E7999E5CBEE548132C59035967EBFF2
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{39D824A0-7F80-49E0-A26B-7262BB9FA3D0}\xnhnnlpfhklhnfahemhkhnobegfjpgohfml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , D1AD6F347EA8906AB476D4DB776D1BCE, 5C07EBCBD178B443EEB95CD396A8B0D2C94A19E7C8E783A93FEE8F7B757DE255
PUP.Optional.DownloadProtect, C:\Windows\Installer\{39D824A0-7F80-49E0-A26B-7262BB9FA3D0}\cnhnnlpfhklhnfahemhkhnobegfjpgohfrx, In Quarantäne, 51, 237879, , , , , A54DE96CF632C3858E1312B5839C301A, 185F5A1B151970FC09FB0000562D5599BC77BD15C7334E0D473E2E2C1641971F
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{3A6BC467-DE76-4A82-9749-000A79230B67}\xofimbdbmaoiimondopdcjlafhiijpjfiml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , 8B1C1F6A7E0D5E59258E2DF53156881B, 63B3357B96AEA0C5DCD9C60B8248F157401C3B99BBC05499981163651D2B017F
PUP.Optional.DownloadProtect, C:\Windows\Installer\{3A6BC467-DE76-4A82-9749-000A79230B67}\cofimbdbmaoiimondopdcjlafhiijpjfirx, In Quarantäne, 51, 237879, , , , , 085F14B458DE644B0A5D7FA21B7AA145, 9E065DD712F87742B6906920D4F755E97D7740879BB5350FE77378EB7DAF9BAF
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{3ACF8859-E7B9-4FAC-A3F8-ED45918AB153}\xgepbcdcepbbjffmleiggjfjcmnpfeiniml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , CE8CBE2EB12F8D5ADCC9E6884D8FB911, 6C0AB34E8C6A8C2AB774BCED368ECD99D11B8B320C08D539703F65CF585CA19D
PUP.Optional.DownloadProtect, C:\Windows\Installer\{3ACF8859-E7B9-4FAC-A3F8-ED45918AB153}\cgepbcdcepbbjffmleiggjfjcmnpfeinirx, In Quarantäne, 51, 237879, , , , , C65E3A0099A973B20326F6076086C259, D5B534F95B9C4E18F8F855BA7344983700704BC027D5687B30379FE7E31470E2
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{3BEB0A55-223D-4C9B-BB35-D3253D605E8C}\xchmlcoppkjeiljachicfiphjcgjakkieml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , D89AA1B5D09C098238A9BA74535092D6, 55820C8F6E222A20EA5D245B167DA0DB0F2A386218D4791E9DEB1809CB2D3908
PUP.Optional.DownloadProtect, C:\Windows\Installer\{3BEB0A55-223D-4C9B-BB35-D3253D605E8C}\cchmlcoppkjeiljachicfiphjcgjakkierx, In Quarantäne, 51, 237879, , , , , B3A736DE041C5A95D094BAFAD50A3F91, 491D205F026E22EF67FA9D10F5AEA7BF8E51CAC7BC877854EC4F74A684E13296
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{3C26E06B-9D59-4EB0-89CC-DA2F17F0AA2C}\xmimgjgocndipfpfldmcjgllgndoinfegml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , 7E37260076A5A5C34DD0DD9451AF7C9F, 1AAB9A3C3C767D2C487C2B1EE529320EAD90F8DEAED4D95F77530052327C15A3
PUP.Optional.DownloadProtect, C:\Windows\Installer\{3C26E06B-9D59-4EB0-89CC-DA2F17F0AA2C}\cmimgjgocndipfpfldmcjgllgndoinfegrx, In Quarantäne, 51, 237879, , , , , 79465268BADB0080596209A5E2799A3A, CF7D015228321498AF08CDDE073865DED4A20B4E0EE1ED525836A0514564AE91
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{3D613FC9-9AE4-46E7-BD93-342AA59EA193}\xkcnkegjdoppchkahjlppobicnbpdnccgml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , 4CBB317A6F5B7F7DABA296DD12430647, 2CB0414C2DBBB771E1D0D4EA92A09C71EE159EB5B5B48BD9C7A212AFA1E3DD57
PUP.Optional.DownloadProtect, C:\Windows\Installer\{3D613FC9-9AE4-46E7-BD93-342AA59EA193}\ckcnkegjdoppchkahjlppobicnbpdnccgrx, In Quarantäne, 51, 237879, , , , , 99D91025D7F2DE373A0B018DA699F2D7, F5FB1278125FA28EE029594C1F75F824BE6318599B232282F338E3F5ACA95ED2
PUP.Optional.OpenOfficeDE, C:\USERS\APPYT\APPDATA\ROAMING\OPENOFFICE UPDATER\UPDATER.EXE, In Quarantäne, 5892, 531439, , , , , 2C686E215335241728E777CA71E520F8, 5A6F4A7DF4C5EE680671E08B4DF865EAC202AF8B6965963D80AFC960FE749166
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{42FDF14D-82BC-4EE5-A614-2FA7BD303B77}\xfcflbaeihlolndhjijdfmdlalnfbkhjcml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , 61D9A019EA0F0735691A25CBED6D8D68, 916B8877CFCEAEEE81C634C1543FC4E9574A9F627596429096132849753BA741
PUP.Optional.DownloadProtect, C:\Windows\Installer\{42FDF14D-82BC-4EE5-A614-2FA7BD303B77}\cfcflbaeihlolndhjijdfmdlalnfbkhjcrx, In Quarantäne, 51, 237879, , , , , AC5EE874583A3C826766E6D806F64AA0, 6D22B8B2E091AAC18A51C30A06E2721C438E810BDB65BEA64FADAD9CC0E0E589
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{47C0ADCF-23A4-43B3-914E-8794DE86CD71}\xjnipaolghgjbganahchaheggbelpnpjfml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , 87855B1EFF15014F45D8AF1448357A89, E6AAB85A06763D4D837FCF132845949AF02BC2B2D50F475DE8FC7A9DFA8A53F7
PUP.Optional.DownloadProtect, C:\Windows\Installer\{47C0ADCF-23A4-43B3-914E-8794DE86CD71}\cjnipaolghgjbganahchaheggbelpnpjfrx, In Quarantäne, 51, 237879, , , , , 75E5C543A1FB88B76CD61375ECBD4595, C6E24FE749F9CCD474A9D9F00803F0FEC142F2B1922A8CE2E39CA5E4FBC27960
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{49FCF5C8-DEE6-4680-8728-21F02A8174F6}\xmclbkniiocbakkomkligbmnemnkcendnml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , BCEB2C049FA2EBDA6D1D69B17F65FB56, 8FB95C0FD45261856FA5AF4BBB297722A7C8DB81E27DE97842F5BBA4DF56C9F0
PUP.Optional.DownloadProtect, C:\Windows\Installer\{49FCF5C8-DEE6-4680-8728-21F02A8174F6}\cmclbkniiocbakkomkligbmnemnkcendnrx, In Quarantäne, 51, 237879, , , , , 6C815FCE5788D63D8D28C0EA082C9B69, CCC5F790783AFF0716095696377669DF1707E78A62674F3E8C1E55A4EFA4FAA8
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{4A9AF300-8891-49C0-A969-48CE9D81A5F7}\xbnhnnkhecpfcjlkfpelpkfelmlhjdmjdml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , A64AABB1E264F4E10614091047B13856, D6A228D80DA1A5B3CB6E901B2C48B80AF92A03B37E66DF6C61EC95AE99B5319E
PUP.Optional.DownloadProtect, C:\Windows\Installer\{4A9AF300-8891-49C0-A969-48CE9D81A5F7}\cbnhnnkhecpfcjlkfpelpkfelmlhjdmjdrx, In Quarantäne, 51, 237879, , , , , 2FA7BAA6A8750FCD3C7111A5D43EB903, 1ABF1BC51EE51FE07F463B9456CB1F35B9232F39499B3FDE67DCF2776AE86946
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{4AFDE520-4192-4F14-93EF-6ECBA842BF72}\xakfaibpkfcihbihleaonmjbolenognfdml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , 12AEC5E9137E7F3CF2BA5BB097BA7F62, 6CD2F8E53308A7BFD49FCE14F252E3774A834764BB36DF110CD5489DDB41194B
PUP.Optional.DownloadProtect, C:\Windows\Installer\{4AFDE520-4192-4F14-93EF-6ECBA842BF72}\cakfaibpkfcihbihleaonmjbolenognfdrx, In Quarantäne, 51, 237879, , , , , 88096023FB84039D827B7D1A9F84B72E, F9ABFF096E7311A6D09A2D2038A1F07F9941E70B72F153ADF7828E002B1B6193
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{4B1D3567-83D2-4846-AD0B-9312C142A4AB}\xgmkalfbofmdnpcfjccdaabbjiiidemaaml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , E287E5677D7BA345A9EFB97C268B3BBC, 094F51706DD71FBD532D5D1B15DF9D81BB8A365B77FF4858D5B37BABB51C18C7
PUP.Optional.DownloadProtect, C:\Windows\Installer\{4B1D3567-83D2-4846-AD0B-9312C142A4AB}\cgmkalfbofmdnpcfjccdaabbjiiidemaarx, In Quarantäne, 51, 237879, , , , , 42E06CA2E4AA707846E8D38B43A16EE9, F869B4549DDF7C60790173F6DB134EB1BF2DE58F65F82D7C26676D8F9EBAFBAC
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{4E6FA24B-1C34-47A2-B23D-D1F36CA1E777}\xciphgamcanlllmmhcnmjlbfpmbbklnnnml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , 10CBB6252C48C96193268386CDA2E9EB, C469C76ABB3FD6E3B8302EB7DB445C9EB177F60101991508E68BE5A5CE56F1C7
PUP.Optional.DownloadProtect, C:\Windows\Installer\{4E6FA24B-1C34-47A2-B23D-D1F36CA1E777}\cciphgamcanlllmmhcnmjlbfpmbbklnnnrx, In Quarantäne, 51, 237879, , , , , 5402AE9E99E63D670F36918D3B18E356, CFF397D8BBBCBE90E8F3A8861F133C98800FB2D9376B4900725CFFECD938D592
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{4F385B0A-97FC-4CAC-B2E3-1B562FB72068}\xlkjhfopinkkecbailinplmjnmpofibkkml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , 519F965E5D4D07D287945131DF6F4F34, DEA417BE7D60B634FF798F901BFD8CB92AE9981D68A105343A7CC2DF704CC057
PUP.Optional.DownloadProtect, C:\Windows\Installer\{4F385B0A-97FC-4CAC-B2E3-1B562FB72068}\clkjhfopinkkecbailinplmjnmpofibkkrx, In Quarantäne, 51, 237879, , , , , 3322FDE133AF07140EFE0F4A9AE40595, 2C8C371C7D36957101C5A51C60011687FE0DDA2BC671B709E20E8104A283FC11
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{523F2ED2-3608-43B0-9AF9-ABC70A2FBAEF}\xjnmnpbkgleggpobohmgodlhgjenlfkklml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , 772AAE029E99AAFCCD239AA4E5EA1832, 5307C5D7AF927F79643D28E36904347969A7F63F7FE2D254C6CDD908756D315F
PUP.Optional.DownloadProtect, C:\Windows\Installer\{523F2ED2-3608-43B0-9AF9-ABC70A2FBAEF}\cjnmnpbkgleggpobohmgodlhgjenlfkklrx, In Quarantäne, 51, 237879, , , , , 7AC7F0D0122BB802F9625461EC6E3F4D, FF935991D157BA87736E622452AD6B6311BBCD4B30F11F1BA16B8538EF1E37AC
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{53E81127-A91C-49CB-A89E-15BBA8216CB0}\xhbnijahobaodklpcjaaedgalfndbfiegml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , EAFAEE9365C8F79715CC8A8EC6D93266, 924D108C5124166F08FB2819B4A0AC9E6EAA7F8E4394C1ADFFEEF0CD59AD2E52
PUP.Optional.DownloadProtect, C:\Windows\Installer\{53E81127-A91C-49CB-A89E-15BBA8216CB0}\chbnijahobaodklpcjaaedgalfndbfiegrx, In Quarantäne, 51, 237879, , , , , C222F98BFF6BA8EB1A413BB7D1761499, 77804B696E122C99DCB886C13CF7B33711898E52336E0F865AFDD11AF7A5D245
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{53EB7ADF-6EE9-489A-A9D2-38AD5982271A}\xpaablljpajhbldkbegjlfoegappamfgkml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , DC5ECC698BA0D71C79A22DF0813AF54E, C177A8FB6D31B856194635408BA2BA1A08B0D44E818F6B601EA7394F5B37B8C0
PUP.Optional.DownloadProtect, C:\Windows\Installer\{53EB7ADF-6EE9-489A-A9D2-38AD5982271A}\cpaablljpajhbldkbegjlfoegappamfgkrx, In Quarantäne, 51, 237879, , , , , 757D4223CC26B9D189F5A1E4E4E00039, C04F7FF837F00F0ADC008588FE7F07D266AF6F788B7034BC6264D17C1202CEFC
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{540A9BF4-C9F0-4522-9C9E-B49857C41C83}\xjkkdjbiefkflenldndmoccbcolhghpodml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , FAA12534D068C1B036B29EEBC386CC2C, 86F6369F06868007FF687FFFB0FC16A44BE9F03792401ACC6458BC843FFE5BC2
PUP.Optional.DownloadProtect, C:\Windows\Installer\{540A9BF4-C9F0-4522-9C9E-B49857C41C83}\cjkkdjbiefkflenldndmoccbcolhghpodrx, In Quarantäne, 51, 237879, , , , , 32614F84FCFE0E7D8273F814394F546C, FC2AD9BD170EA11C274F01CB4462D33C56E01810FFC13C92D4FFF8E48D8A78F8
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{55F267F1-BFE0-417F-BD70-47FBF85842DA}\xckcicehgmoogbenmkbfegmjjeofjkgnnml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , 83E5B2B8B9842775EABB76F570703606, 50B1737923A583524629A4034B69ED172A6BA76F29273824D27FEFF001AA4056
PUP.Optional.DownloadProtect, C:\Windows\Installer\{55F267F1-BFE0-417F-BD70-47FBF85842DA}\cckcicehgmoogbenmkbfegmjjeofjkgnnrx, In Quarantäne, 51, 237879, , , , , 42AE4C0C51B4124D46FAAB02B5045BA2, 701F7EC3BBC4D43EF22B533A56286F1E7BE07B1F3851C53BE2C8D59F23D14733
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{56BEF503-B860-400F-A2C9-9B84C596F0B1}\xhcfbmoeiepealkinmbjnkmcfeognoombml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , 2773552733216A0CF5F0FCDE8B224504, 8EB35B1C306F48337F2FA310B1C62163D580E5B46BCC1E247EA4A348EFBF5511
PUP.Optional.DownloadProtect, C:\Windows\Installer\{56BEF503-B860-400F-A2C9-9B84C596F0B1}\chcfbmoeiepealkinmbjnkmcfeognoombrx, In Quarantäne, 51, 237879, , , , , 63F6952C5F13984A9F866FEB70CE6BC1, 33EE654B002748A6C1B73C6E30DC0ED3EAFD5C1CDD27BEA5553AEAA43974B5FF
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{56F3CAE4-6FAA-40BE-9E66-6C0162C739EF}\xhdjipidnoibamkfkmepbncpmieahbgaaml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , 41838C6341D159769E8C3AB9FE6B59D1, 0C1203F49FDE134D5D4DDB250FD8D06736E1E1DD66793563BE81F5CCDCE9DDB3
PUP.Optional.DownloadProtect, C:\Windows\Installer\{56F3CAE4-6FAA-40BE-9E66-6C0162C739EF}\chdjipidnoibamkfkmepbncpmieahbgaarx, In Quarantäne, 51, 237879, , , , , 9A23D7D1A231A991D789D95CB85D828D, 6DDF8834635BEDF7334AB4162A9376E74B692E143CA8AD07236A12EF6D98B2DE
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{573083AB-46F6-4742-A548-DB3BCF066ECE}\xpiamngmhjmjcojllmdgbdpfcabheebaeml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , 6934B8EF4873F34D0A35BD7DEB93482C, 36A5D84B95F0C4E64E605DDBBFDE79F10F2142ED4D4B5148412D74BD766AD8D3
PUP.Optional.DownloadProtect, C:\Windows\Installer\{573083AB-46F6-4742-A548-DB3BCF066ECE}\cpiamngmhjmjcojllmdgbdpfcabheebaerx, In Quarantäne, 51, 237879, , , , , 875F73EEAB2BF1EA0B2C0E5837ADAD9C, C09AE4F99B2A3EEDDDD8B87752ECD76272D1B43EC583B13E09FD5403FB67E223
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{59BF3AF6-D87F-4587-B8EA-8D5E790EF3EE}\xkpieppecngkopibkllpgbnajhagijediml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , 34C11D42F7B8452BB82CB34D1F1B4B9C, 602077B60774A386EF999851CBD2F081734FD9ED86E63E510A1F55F7777C1914
PUP.Optional.DownloadProtect, C:\Windows\Installer\{59BF3AF6-D87F-4587-B8EA-8D5E790EF3EE}\ckpieppecngkopibkllpgbnajhagijedirx, In Quarantäne, 51, 237879, , , , , 9A2450EDD2AE08D9FB208DFA35FCF209, 31046FF2713A2624F41707A6F833A926B4F10F02F3B0F49ED372B433DB9E1A70
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{5EB82EFD-EEAB-457A-9016-65C1D196C13D}\xonofoaldoofagfinlgeiankmelohjfflml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , 7B3BECBBA4F83BE58AC29345BF041DF9, 8A191A6B58144047CF6402CA6C5575041710936A24005B00A66CF887E124EF8A
PUP.Optional.DownloadProtect, C:\Windows\Installer\{5EB82EFD-EEAB-457A-9016-65C1D196C13D}\conofoaldoofagfinlgeiankmelohjfflrx, In Quarantäne, 51, 237879, , , , , 1091305A1589AE22E12FBFC0D0B92354, FFAF1E6579808E32854E781E7E551AD8D3937217B6515AAC0E3259AF283A1839
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{5ED58B42-0F88-4585-B92D-193EA3106600}\xbhniniljhdkgefgaihjolapllpknadbaml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , 00AE72A94A00EAAB300BFF1669DB010F, 2F67804F84BAEF978598139719FECBA70D0F7D438B68A965F54B013500CBC8DA
PUP.Optional.DownloadProtect, C:\Windows\Installer\{5ED58B42-0F88-4585-B92D-193EA3106600}\cbhniniljhdkgefgaihjolapllpknadbarx, In Quarantäne, 51, 237879, , , , , 7BC5E8481A64E995A17D1252C08A097A, E42C19697A8731812B94024BFB2DFC2C45FA636F044AA1B05ED9613E21497589
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{5F76E5D3-3388-4080-B815-96233D1454C7}\xfcnggengbbepmghhojgffpnbpogbfbbdml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , D5D42886FBB9B961A48E7C87743C2D6C, 1ED19CB0B47FC38DE476C1A5644B121CBE87976FB375C128D25A6A9E1E893F27
PUP.Optional.DownloadProtect, C:\Windows\Installer\{5F76E5D3-3388-4080-B815-96233D1454C7}\cfcnggengbbepmghhojgffpnbpogbfbbdrx, In Quarantäne, 51, 237879, , , , , C75FB1F1916C5BDE622B4E37885F7013, AC8E1B7E549DE09B1DEADFF493DB57450C4FE03F6E1CDD186B1B83D95702D116
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{5FCFA9A1-0B81-4D4E-9529-70042AA5A5F4}\xphfmgdfmoekkmckkglbbdbjggepchgenml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , 7FA9F53E0DE5AD9786EE5AE359F8EB93, 4ED376AAF54FDA42BA8B34E8846195336EE61C99726D80E2C2510A3F2955E5D6
PUP.Optional.DownloadProtect, C:\Windows\Installer\{5FCFA9A1-0B81-4D4E-9529-70042AA5A5F4}\cphfmgdfmoekkmckkglbbdbjggepchgenrx, In Quarantäne, 51, 237879, , , , , 153185C10D1A7306CE522DDA033CB00F, 5BF3092AEDF43F55CECB81BD5BE6B7F73A1E9CE7B4109165D016C5E5DA154404
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{63D66AFE-3E5E-4838-BB7A-4C842DA4DD91}\xmiccflllejhejoldmlncfndliooeckigml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , 6A97F900C76259BDB31288EEDE2E2555, 49D29A521EF6EF0A198E469CB3D18E774B2E540A6AC5E032E3CC0D10427F546E
PUP.Optional.DownloadProtect, C:\Windows\Installer\{63D66AFE-3E5E-4838-BB7A-4C842DA4DD91}\cmiccflllejhejoldmlncfndliooeckigrx, In Quarantäne, 51, 237879, , , , , 7CCD7DEC29B4020D2D53B6709AE653FE, 5A38703D26A9354C61753A58ECAE50889B1F47D97C2A98C84E8E560F7064EEE1
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{640FDFD8-94D3-4273-9A3F-F525A20B1201}\xnohmdddegbomcnpemlpibjeojlcpidokml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , 7F8DD407B23C55C820A1424E6835104A, 43DFC0B14D006C176A906EFB9F0FA5AD3072CF2D8D5EC65ECF2F4698D10A0A05
PUP.Optional.DownloadProtect, C:\Windows\Installer\{640FDFD8-94D3-4273-9A3F-F525A20B1201}\cnohmdddegbomcnpemlpibjeojlcpidokrx, In Quarantäne, 51, 237879, , , , , FEB8F844714EF18A4C9D881CA57E85A3, 3660E13AF581908E473AAB6DB2EDEAFCB94E6E5B59620DD40E0886C1A901ED02
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{66164EA8-39A7-4852-8C17-A58DE6A418B8}\xnoocacjjganjgaelhiolfkpafmpngmhdml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , 6CCD864A488CE01D6FD275860AED8237, 26646C1628C6238961FD5C50FB4DA4DAD3A921BF27C58823052B472D61904983
PUP.Optional.DownloadProtect, C:\Windows\Installer\{66164EA8-39A7-4852-8C17-A58DE6A418B8}\cnoocacjjganjgaelhiolfkpafmpngmhdrx, In Quarantäne, 51, 237879, , , , , E0C0E89F4AC7932702B5695C882FEC63, 935D568D31580D82322DBABB18A8CE898824E974638DB9947F7591E8D0307A06
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{67FCAC53-345E-449C-9902-778930CE301C}\xdopdknkijcpfgcfmfgjdcglongcpebccml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , 808E914BB18C9E3EEB87437FD55821FC, 245F306B662775B5B838BF9AD2B78E3F91F7C25EA57A31461035EB6396CD383B
PUP.Optional.DownloadProtect, C:\Windows\Installer\{67FCAC53-345E-449C-9902-778930CE301C}\cdopdknkijcpfgcfmfgjdcglongcpebccrx, In Quarantäne, 51, 237879, , , , , 17F3A9F6AF18DA69580A722EBF504B46, 62072E431D4B2260B3CB514AC77B5B402F9AF9EE93A9E2CB030F5397E95B6661
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{69AE4AD7-A39E-491E-924E-93D0AD310534}\xnbgipcghgjcablgggfjphjkpgnlojakeml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , 22BA9A64339EAFBCB5F65425E914E618, 6935F7D209FD9A1DDE2D71196F4929DD732FEBE2E21575F1ADF71E098A48D183
PUP.Optional.DownloadProtect, C:\Windows\Installer\{69AE4AD7-A39E-491E-924E-93D0AD310534}\cnbgipcghgjcablgggfjphjkpgnlojakerx, In Quarantäne, 51, 237879, , , , , 2783251566838D1D5C54C2D42F463F24, 1ECD3B095A242649DAED307A9F594F88C2CD6B5684C7EC106ABDF87AB04F07A7
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{6B1B51F1-6854-46BD-BEB3-6C4DE0E595BC}\xmlmnegocccobdnndpgbfbomadgobiiblml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , 422087A33A06FA15C475440E1BFAF97D, 249C2CC362CA3F9E417E34EC30BBB227B7E6CA36A735A33ECA14B4915F94318E
PUP.Optional.DownloadProtect, C:\Windows\Installer\{6B1B51F1-6854-46BD-BEB3-6C4DE0E595BC}\cmlmnegocccobdnndpgbfbomadgobiiblrx, In Quarantäne, 51, 237879, , , , , 42F4572C4D485FC740E81AB8856D62C6, A913DED3DC7946CA3B47C85DB9083A2E86E01E75DAB861A34BA41C62DC5E41AD
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{6C6B5C78-FBAC-4F52-9DF1-4931D071703E}\xdhdlpdkhmclnpoflpfjfhadekekaeenoml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , 0C62AA9A71AE15AAA2A0833C5B3D15D0, 58C064DCB236F780039032DD75778C997FA723EC2555A3060C120FB1141E2057
PUP.Optional.DownloadProtect, C:\Windows\Installer\{6C6B5C78-FBAC-4F52-9DF1-4931D071703E}\cdhdlpdkhmclnpoflpfjfhadekekaeenorx, In Quarantäne, 51, 237879, , , , , 0566B70735CD6113A73DC481EC671386, 2E8ECD032CE98B20BFE997A62734BC355026EAAEE90E391204ACB49057A86A98
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{6EA92AAE-8F04-4E13-B3C9-9B6B1E08C5DC}\xpopigkgghofaejmchldmkphmhfiiahcgml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , A2236C04D7EDF11A492E2A044D0B70E6, 3B8CD745A014F04894CF5D6C1FCCB6D4AD2D77BFEAD0085BD2DDEE79D7A95253
PUP.Optional.DownloadProtect, C:\Windows\Installer\{6EA92AAE-8F04-4E13-B3C9-9B6B1E08C5DC}\cpopigkgghofaejmchldmkphmhfiiahcgrx, In Quarantäne, 51, 237879, , , , , 94D461382DA24D9C1DAE38F06C9456FB, B251D91319A3DD9A1A7BD266B7B8641C317AFAEC0D3B9DDE24E1128CD2331B52
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{6FF06E37-CD2B-40B3-9CB4-B65FE2D2A3BB}\xipekgbilpcdndccangjmglnidjlddgghml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , 059AA50C5BBF6B214230DCFA6BE63AB7, C47D2D519312FFAA6769DF05D1A81B83F7075990E1635CB0957EE6BA0F98458C
PUP.Optional.DownloadProtect, C:\Windows\Installer\{6FF06E37-CD2B-40B3-9CB4-B65FE2D2A3BB}\cipekgbilpcdndccangjmglnidjlddgghrx, In Quarantäne, 51, 237879, , , , , 71DF40AC7902BFC60EAF285A1FAF288A, 587B1C486D1DBB0DFA49E79D0982C883E19CF652901B85845A42023E1ACA1DFC
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{70395B30-35D0-474C-86CA-990C7930F146}\xbjkkkfklikaoebdifkdhonmjmlhaoilcml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , F507BD08E83F72FD8D3704604F32BEB7, 19B72FBEAB2E04704FF8E53904EEC35A01A3E881DFCBED34EE3197E877FCF90E
PUP.Optional.DownloadProtect, C:\Windows\Installer\{70395B30-35D0-474C-86CA-990C7930F146}\cbjkkkfklikaoebdifkdhonmjmlhaoilcrx, In Quarantäne, 51, 237879, , , , , 17C5CEED2AFA71F8DCA2465EB4198B8B, 8626AA673383E04AF4F46B29C6EEFB8B142D178D1513948EC8479A1192913712
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{712895B0-3AE8-4EA8-8C58-CC9D62F72481}\xaepbicdlglghjladimocokelaocldgkiml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , 1E81828A1BB3AD984FFC54A19C866711, 0A9AC06E2EC860B24118D3618B2F2E7E83BD783698F0FBC5ED058E6BB4BD0219
PUP.Optional.DownloadProtect, C:\Windows\Installer\{712895B0-3AE8-4EA8-8C58-CC9D62F72481}\caepbicdlglghjladimocokelaocldgkirx, In Quarantäne, 51, 237879, , , , , 62AAD7E84E0CF77CB655806B0A800B6A, 1E0B78E0FBE8E7AB49518B08C78B911D09411AB753FAD82EE064F97C8C246109
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{7128AFA9-76A4-4F16-A2BB-EF406B70393B}\xnjeckbdkbibihfhoobglkoaohojkhplgml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , DBF1CE0271AE0C135DE77631924584DF, 180CF89B78C06E36F4BE803EC71857BA20D9CDB47C905A2CF2F9567DF24173E7
PUP.Optional.DownloadProtect, C:\Windows\Installer\{7128AFA9-76A4-4F16-A2BB-EF406B70393B}\cnjeckbdkbibihfhoobglkoaohojkhplgrx, In Quarantäne, 51, 237879, , , , , 5FFAE4A74FF65DD94096C43A68FA4116, 5F7F05582F6135E7B63D0AE18A15D4D87907EC9887F36DC79820C265B1CF288A
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{7359F616-D608-4379-A59D-9C0C96D2C54F}\xepaihkjjlnnlhhjekpmdonhalfjphnofml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , 358A179BEEA7AD907B23B5366E9644C4, E1A325B06E7CACBE2331FC8B93F874543C51C6A3C56F4551CB4663E41D186C46
PUP.Optional.DownloadProtect, C:\Windows\Installer\{7359F616-D608-4379-A59D-9C0C96D2C54F}\cepaihkjjlnnlhhjekpmdonhalfjphnofrx, In Quarantäne, 51, 237879, , , , , D394A1A67258EBA75A39180A7D1DB194, 8DD6D1538FEAE33FF60C2BE264AE2D61DF1CCA92230AEF8F2EC01D4515A3BA01
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{74825E2B-B9B0-4F21-A943-04D4F86A1C43}\xjobahniepoipepeadmdelolbfpdkbejbml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , B432833DAB78A0413C2F7D4D5EA83A45, 04A2DC2704FC9CE97C7972D726CCC8FD43E68EF73F1EC09D7BE330F31A959DFB
PUP.Optional.DownloadProtect, C:\Windows\Installer\{74825E2B-B9B0-4F21-A943-04D4F86A1C43}\cjobahniepoipepeadmdelolbfpdkbejbrx, In Quarantäne, 51, 237879, , , , , 48200E6E296265D58B32A168060C3A6B, 8BFB5EEA404D2B4CBB8FE20D58DCB1B3FDAADE814E81DB44CEFF6BD7B445F88B
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{77ABE1AE-50B8-4A66-97E3-F53A91F19305}\xpmmcmampbdhahgpmieafpiknehafaeghml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , 4CA015170D1361B6371EBA8713ADB6BD, F0D6A81E89730668E22FD08D0DF1F13D7DCA752535E2A255A994C9CC86BE19F3
PUP.Optional.DownloadProtect, C:\Windows\Installer\{77ABE1AE-50B8-4A66-97E3-F53A91F19305}\cpmmcmampbdhahgpmieafpiknehafaeghrx, In Quarantäne, 51, 237879, , , , , 401E93A8BFCB02155CF93F43CE7DA882, 4201581F6F00160F6664BA89B0529D37EC23516B1CAD5DF86A060E6C9CAAFA67
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{7801A897-EAEA-4DD1-9795-902ADA13CD2A}\xcnjbbomobkiphehmeaphnhlomcfocbofml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , 38290F26E93810CE3556E6E4C5500DA8, F518AA546453E7F2F08CC33DADDD1F0426970FEB79EB16AD472EB895FC69C0B1
PUP.Optional.DownloadProtect, C:\Windows\Installer\{7801A897-EAEA-4DD1-9795-902ADA13CD2A}\ccnjbbomobkiphehmeaphnhlomcfocbofrx, In Quarantäne, 51, 237879, , , , , DA2458AF049107C61E8F31DC63E2224B, D985F0F441EA189554E080F1BC4405B6124C102787EF2ED7687AC87E975F086F
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{792B81F6-A56A-495D-840A-AE93B7139E12}\xdbeogiaajcdodhhemcohiehefmcnanmfml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , A11FC58BA60C7B378AE08B1A7A0888A9, 30CFEA5C1B82EDE7BF0E497623F6D7CEB0D6A49C75D09C4E65E789359B6EE6B7
PUP.Optional.DownloadProtect, C:\Windows\Installer\{792B81F6-A56A-495D-840A-AE93B7139E12}\cdbeogiaajcdodhhemcohiehefmcnanmfrx, In Quarantäne, 51, 237879, , , , , 4E323DA2193DFB4C666CFBC7591873AC, 8E4C838126826958FE204AF6AA208E466C472C2B8E8DBCA226E828A532C6008C
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{79E330E6-D562-46C8-BF96-62C79AC3869F}\xhmlldjelegbakejngkkclgmpeaghkhpeml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , BA146735C6D202757EAA3BEB087303DA, 6AC2FCAE2D16647D69F68DD10DF9958C5216DC2C86B9E2C9260D06B691D046D3
PUP.Optional.DownloadProtect, C:\Windows\Installer\{79E330E6-D562-46C8-BF96-62C79AC3869F}\chmlldjelegbakejngkkclgmpeaghkhperx, In Quarantäne, 51, 237879, , , , , 56CB301E8030763208E4ACAC9520F863, 92C7A9EA7D99687907B54DD6940EAC93FBC7EE634CFAACEC083B1E854A37D685
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{7B7D9780-16A4-4C74-9754-237093E16A62}\xiiaegdlbjkcniiafcdabonmbelffgjjoml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , C3C16A157B5A92F2D451CEFEB536882D, 29B45FB9A12C26009F48C4E70F09551556B6D90634435021478BF843A808DF36
PUP.Optional.DownloadProtect, C:\Windows\Installer\{7B7D9780-16A4-4C74-9754-237093E16A62}\ciiaegdlbjkcniiafcdabonmbelffgjjorx, In Quarantäne, 51, 237879, , , , , 99A35903C42E8A95BE0A038AA86FF211, 354386C5221B32AF0B054A1337F1E21467063151A64DF6FF92133A4673E97D9F
|
|
15.11.2022, 19:45
| #5 |
| | Programm versucht automatisch Chrome Extension zu installieren (web safety) Und hier Teil 2 Code:
ATTFilter
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{7BAE4FE4-AFF3-4104-AC4E-BE7C09132A26}\xdpienfhmciffbeephpbkfohplnedjfdjml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , 5E18D06AC06F745F395F38308760A410, 4D210980F2D2252EA542FAC632411745B48661AB3F08682AAA20122374FF06CC
PUP.Optional.DownloadProtect, C:\Windows\Installer\{7BAE4FE4-AFF3-4104-AC4E-BE7C09132A26}\cdpienfhmciffbeephpbkfohplnedjfdjrx, In Quarantäne, 51, 237879, , , , , 83CD9211346243AF62A86E8260B51396, 1D6510CDE4EAEB2576DC5683894775E870DAA64CFC10EEF64BEEC28C8442CCD2
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{7CBA45E4-664B-4236-A245-54B7D0AAF5B6}\xekndedpadhjcnkdannlneajelenjiagjml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , E9228416931674211C608936D694F69B, 5B1D9EDC786D6C7A4037FF265733731A9E3D6DF2466E838A62E2E516EC335A40
PUP.Optional.DownloadProtect, C:\Windows\Installer\{7CBA45E4-664B-4236-A245-54B7D0AAF5B6}\cekndedpadhjcnkdannlneajelenjiagjrx, In Quarantäne, 51, 237879, , , , , 0B8FDC277DACB4B9C069E23EA4B3BFBE, 0ED48E37EB3B6CFDCCB6CA85BFD5B102AB1C508E6A002E19A67BA72431D31A06
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{7CC55F7B-F67F-40EA-84D7-E7650BF97388}\xfjemcnkdoodhfdmfajgmkiaijfcejjieml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , A465789F8D9B2F12943814B60D61EF67, 8194FFB1BB2714B8728D55B322C2701C7198BD06548C99B37F354BEFE92A185C
PUP.Optional.DownloadProtect, C:\Windows\Installer\{7CC55F7B-F67F-40EA-84D7-E7650BF97388}\cfjemcnkdoodhfdmfajgmkiaijfcejjierx, In Quarantäne, 51, 237879, , , , , DD82138B63CC8FA4575124B9C191F09C, 7EC3466E870625B945626BFE72178B2F1D835AACB07C45BE3855ADBF999C9821
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{7F47997D-7840-4EF9-8D15-8FC172912D69}\xhmkhhalafcmminjgdhnlhdhjjidlijpmml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , 3D5CB66C84FDE6F73037DE9E20EED576, 5DF9559829521461F309357089D64324DE2ECDA075AFF559F7632F2456DD9936
PUP.Optional.DownloadProtect, C:\Windows\Installer\{7F47997D-7840-4EF9-8D15-8FC172912D69}\chmkhhalafcmminjgdhnlhdhjjidlijpmrx, In Quarantäne, 51, 237879, , , , , 5E49423A3BC221CC709EE9EACF840539, ACF3A6E6AB37E20D372411FDD2D4046E1D198E97D96A83B3A0C5AA7A583707E6
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{834BEB1A-E949-4691-81A4-2BD719184FFF}\xpmedbifkgcbhanfbmnblbneakabdfeedml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , 2A9EE1E73E7E8EA376E0D5C7BA57DD6A, 1E4C6B579F4DAE6415F75E0F2DF7C2D67E01390F389DA372AA8228E13D89C82D
PUP.Optional.DownloadProtect, C:\Windows\Installer\{834BEB1A-E949-4691-81A4-2BD719184FFF}\cpmedbifkgcbhanfbmnblbneakabdfeedrx, In Quarantäne, 51, 237879, , , , , 697AAFFF3FE37E14128509C3B8D40ED6, FCDA2F5876B3560C45407590C8747286832FE50450D5C92427FE1F271A1A6067
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{83CCDB8F-40EE-40AC-80A3-EBEC20CBC068}\xfeilcmdfcafgegfbpogeobnbjbdmjpoiml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , 2D9C8F8016309F4B41B16C4B38F38D84, 551EE8BC4D33C11ED8546BF61B813DD1BCC48708C3F2C24554536A2EA684FF50
PUP.Optional.DownloadProtect, C:\Windows\Installer\{83CCDB8F-40EE-40AC-80A3-EBEC20CBC068}\cfeilcmdfcafgegfbpogeobnbjbdmjpoirx, In Quarantäne, 51, 237879, , , , , BE728459FD0046CCCBB4229E115CF291, 580A7254BF5A678DF51683B8F507AAA36A209A29D50E511F0F72F5401F21F040
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{86113F56-BFF6-4FB0-B512-0F18C9526BED}\xbggnbngmnhjgngcjbaojnhfpfpnlofbiml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , 31B03303092027B778D78D00C0534E82, 5FACADB1D220A70876BA517827D7B5F730F646FD93B0AF3EFFF0F2224820F645
PUP.Optional.DownloadProtect, C:\Windows\Installer\{86113F56-BFF6-4FB0-B512-0F18C9526BED}\cbggnbngmnhjgngcjbaojnhfpfpnlofbirx, In Quarantäne, 51, 237879, , , , , F4996741CE1D34061F31C713A1B3EDD6, 093CD6D9BFBCE351C14BA1EF5BBBBCA33843A7A0E6B8FDA6D2B3B9BBB4D376A5
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{882FFFFD-0B9A-4C8C-B433-715DC9F108BC}\xeeobidllegfgpicdmmcijemomfhiedcnml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , 15FA130E7B387B3956F406AA68554681, 34FF3F84F2C0881E08B5566706A69D0EF751A7454C154D993687CBD5265C235C
PUP.Optional.DownloadProtect, C:\Windows\Installer\{882FFFFD-0B9A-4C8C-B433-715DC9F108BC}\ceeobidllegfgpicdmmcijemomfhiedcnrx, In Quarantäne, 51, 237879, , , , , 8929EB32BEA602CAD3BC041675EFBC60, D22892231786E86D73FDE1979899DB43847F13E11875F0814C6DA1F7F0FBA03D
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{895D4036-DC64-407F-8629-8EFCED8210EE}\xncnknkfjmlkimkhggbmbfmfopiefdapbml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , 7290727F04EF71462E69A1A6A3B98AF7, 2F21F2E83E5F9C20475D0ED51767768C3291749B9A42EF497E851473D2CE6EF6
PUP.Optional.DownloadProtect, C:\Windows\Installer\{895D4036-DC64-407F-8629-8EFCED8210EE}\cncnknkfjmlkimkhggbmbfmfopiefdapbrx, In Quarantäne, 51, 237879, , , , , 9D2B8403D568C8FAC09CDFDB042C1E2D, 312470F0A0DCD26EEA37049602C08263C2D1DFBD18F0F350676935B9B06B2B7B
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{8D084F7B-8331-4B5C-BE48-A9D02EF7F737}\xpbldpfjcpgokhdglohpampnofekmfaicml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , CD270B9B955970F436CFE3806471A42C, F0B7C2E343ADB81DBE03C6B766A11E943BD6A8904594884B861B4B797F783A06
PUP.Optional.DownloadProtect, C:\Windows\Installer\{8D084F7B-8331-4B5C-BE48-A9D02EF7F737}\cpbldpfjcpgokhdglohpampnofekmfaicrx, In Quarantäne, 51, 237879, , , , , 62B7930365F526C1867B3179EC18585B, 77B4B8E8B40FC0440CEA9584BED20F8B4FC0CBA00BFC376E06A64DB7589E40D8
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{8DDBF5A7-EFEB-40A7-9D5A-7100A9ED3F90}\xgggepmmbdomdjgeompmognclmoepdgmkml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , C86538820207229E31AD39E075B0A642, 1B7791827F00E261B2952227EAE89B6E519C623D31CB52A9540D1076293B0518
PUP.Optional.DownloadProtect, C:\Windows\Installer\{8DDBF5A7-EFEB-40A7-9D5A-7100A9ED3F90}\cgggepmmbdomdjgeompmognclmoepdgmkrx, In Quarantäne, 51, 237879, , , , , A8A49637AFDFB1DF88DC26118E02C9A6, E696696F163DAC13B68149C8145D8C6DDD3B1C577C1A9206A5E9BC98C76EEEFF
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{8E587131-6DA2-4915-814A-9111967794D7}\xmlpfkohaogmcdblpdmnkndihbefnjdgfml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , 0129A9D32E10751898D74D5BBA555773, A838877BB47B509FC386573DCB8CB3C082AEF434FEEB153C2FB1C537DE71FA05
PUP.Optional.DownloadProtect, C:\Windows\Installer\{8E587131-6DA2-4915-814A-9111967794D7}\cmlpfkohaogmcdblpdmnkndihbefnjdgfrx, In Quarantäne, 51, 237879, , , , , DB7C09DF9AFF7142E00A539BD78857C1, 6220A7D47D73595C4BCC7E4D90518ABFF311B9F7E31D225E02041391B3BB24A0
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{8F5A5B80-4E4C-4DCD-8CDE-AA3903239EE1}\xepfbdbgdchfodaibfbnajfhpfglgchdcml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , C22F7A3303E70D24BF515B6EE836FAF9, 0E4FC8D8954F4F3CF7FE380CD9C59CE715428A31C562B07CCD7DC789F2FB20AF
PUP.Optional.DownloadProtect, C:\Windows\Installer\{8F5A5B80-4E4C-4DCD-8CDE-AA3903239EE1}\cepfbdbgdchfodaibfbnajfhpfglgchdcrx, In Quarantäne, 51, 237879, , , , , 70F3EC2C2DBA33F49A26B818EA824849, AF5F4A50D600DAB7CB664EF05FDFF51F5E0886D335827209B9A791C66F414C83
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{900618D9-6149-4BB5-9211-B73C8B20F9B0}\xdohknijnkcaocckfhkggdgefnaknkpbnml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , BADB100C6ED8DE4A7AEA15C01BBBE0DE, B7D1F385B0A7DA1E0E8F8491504E26581A7270835DC04D4F6CFE1418F766781C
PUP.Optional.DownloadProtect, C:\Windows\Installer\{900618D9-6149-4BB5-9211-B73C8B20F9B0}\cdohknijnkcaocckfhkggdgefnaknkpbnrx, In Quarantäne, 51, 237879, , , , , 0E6BC34419E626B7B9D1882ADAC0120F, DB445AB77DB8DB6D10CFF94C1BADD7EF8B9B2AE8B37B97BF9CEC486056B5EF9B
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{904B2DE3-863B-4673-B76E-4956F916950E}\xfjkcccgdknfjejkieedohamhbmphnejcml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , 4AEFAE728612929F3F29617B303EA6BE, 92A730C02471F681A5A15F96B4C5C584352E10250E85F5595FECE8099A567E23
PUP.Optional.DownloadProtect, C:\Windows\Installer\{904B2DE3-863B-4673-B76E-4956F916950E}\cfjkcccgdknfjejkieedohamhbmphnejcrx, In Quarantäne, 51, 237879, , , , , E8595A5A01A21E9E60A1AED7FE36DEFF, 739DF190BF78C18FC0CD3CF82024493E13F88DAA85FD38C36F132E2B57307D6C
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{90FE6E0C-AB65-4E62-9E4C-1A2380CEAC57}\xmcfkaacomcbffkfbmpphoafiokjkhimoml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , B810877111A572873351E5B6E1456B00, B35537C9D64D486CEC0DEE6816DE6F0510C5309BCBB7C6473191F2F25000B763
PUP.Optional.DownloadProtect, C:\Windows\Installer\{90FE6E0C-AB65-4E62-9E4C-1A2380CEAC57}\cmcfkaacomcbffkfbmpphoafiokjkhimorx, In Quarantäne, 51, 237879, , , , , 70AFCEEAB0D8E7F0BDB7055294DE0416, AF95B1C0588EEF5BD8FF54CCEB31D001DB705E3111A1DE0812D465E8B7431B3F
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{9183715A-00AF-4DEF-9403-7F30A7A9CCBC}\xdpckndkcgdciakgkdpaplddbimpeehlaml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , 242CD7A053709A151A02D43B49B9458E, 1C885CBB9C65C6E0B811DE021235132624B0076A63EEAE7BA3D2F93E7917FC56
PUP.Optional.DownloadProtect, C:\Windows\Installer\{9183715A-00AF-4DEF-9403-7F30A7A9CCBC}\cdpckndkcgdciakgkdpaplddbimpeehlarx, In Quarantäne, 51, 237879, , , , , 13084DAB659DB965DF5D0B7F6B9C958D, 8255E862C7B869C7B7D183CBD8B105A02FC57172D83E778CEFA9F5D11CE87D7E
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{91B47E0F-53A5-408B-935C-C159F49257BF}\xboaminhcejcoohgfhkmfnimedbcmhjlfml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , C8C94C047562101D575CF514BE4B3930, AE947D8DB445DD9EC4958CA73E4143BB71A39D87205A40E91CB9F5C7F26FAB6D
PUP.Optional.DownloadProtect, C:\Windows\Installer\{91B47E0F-53A5-408B-935C-C159F49257BF}\cboaminhcejcoohgfhkmfnimedbcmhjlfrx, In Quarantäne, 51, 237879, , , , , EFDEF12E50962B11780301126E6668F8, 5E279A205CFE67B3562E0166C01603B45993387B5BF39E15D3A8558012231A68
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{9458DCF8-0DCF-4E30-B97C-4AEC46928823}\ximpmaofildpcckhacbkpmmobnkphjfmoml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , 07DE9E5D1F884DD7DAAE28E5BF18C229, BD785F34E02455C39C3705B552ABD5B3499575DBD1643BC10AED8CEBDE47FF6C
PUP.Optional.DownloadProtect, C:\Windows\Installer\{9458DCF8-0DCF-4E30-B97C-4AEC46928823}\cimpmaofildpcckhacbkpmmobnkphjfmorx, In Quarantäne, 51, 237879, , , , , 4A644C97EA7EA4FDB8993A7174669415, 3E121D5E271C344E7FE24689848EDC78339B400D9B96AFA9E8706CEE35DF7092
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{954BBC16-1193-4D0A-91B7-D779153946AA}\xpfdifflmnaapinjdjlmldojlepbcieilml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , 15D6A4B326FD66C8811D92DBA4A05009, 90C3641F16BBB8C9527BE43D7B8ABF814C6C4ADDDF4E0E88315F4A8F86368981
PUP.Optional.DownloadProtect, C:\Windows\Installer\{954BBC16-1193-4D0A-91B7-D779153946AA}\cpfdifflmnaapinjdjlmldojlepbcieilrx, In Quarantäne, 51, 237879, , , , , F02DDA85A1E85ADE1EF50456B2FEC5BA, EA1D2784AF930924349DD29687427E58CBB61C56E2B9D32CD89B316280157AE7
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{95A7C16D-94D6-4B50-8097-C985DED56E9C}\xkehgmgpemjhbohicickpoamihjjmdmmlml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , 8564164B243963D36281589DB8E64F2A, 796BDB4BADC48885292D02A81194FF3B3FC3B2B8C8DDFD358C9A79CBB30FBF74
PUP.Optional.DownloadProtect, C:\Windows\Installer\{95A7C16D-94D6-4B50-8097-C985DED56E9C}\ckehgmgpemjhbohicickpoamihjjmdmmlrx, In Quarantäne, 51, 237879, , , , , DAA8C0DFDE05F05E99392AE3E706EA47, FB101B5C77AC01FB2562E9F9C777DCA9B8D80D34E9D657F5FB8449BDC476A60A
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{98A4EB3D-03ED-43AA-86C2-4495BA5D1337}\xgfhohankjkhfeibbojnkoecnfnjmljdnml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , 5E730ACE5589D4A730C098FB88E039E6, 889CA75533EA6A94BC6EBA004DE229C0ED22C3EC34C4D04524D05DC8926BB345
PUP.Optional.DownloadProtect, C:\Windows\Installer\{98A4EB3D-03ED-43AA-86C2-4495BA5D1337}\cgfhohankjkhfeibbojnkoecnfnjmljdnrx, In Quarantäne, 51, 237879, , , , , EF972C200E21C2426690F6CF5AAF90FB, 5745BC2DC4033EB970B1781DDC3368591990EEEF8B730CA56946C4125AEE218F
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{9A0B6912-28B4-494E-A933-4D4E8F3D39BF}\xmcophamknjifimdkmobjhcdepmaecnjeml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , BF664CA05E0561521776315B41B0D452, 98B4462F2C9529C2C703B63A8F7B0B853681B456DC7427E774D52BF127933322
PUP.Optional.DownloadProtect, C:\Windows\Installer\{9A0B6912-28B4-494E-A933-4D4E8F3D39BF}\cmcophamknjifimdkmobjhcdepmaecnjerx, In Quarantäne, 51, 237879, , , , , A9DCA3BE897860D42FC2B739880E309B, 8396FFEB9207EC7F7740DF22AA3E990225CF0EAAE2C83E0A8AFD749F8130FCE8
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{9B94F004-58A3-4939-A48E-351DBA4A5646}\xnleebjdplhifhhnhkkgpdcmoihkkmlfnml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , 553C1EDE319DFC31699CD83EBE63DA8A, 3C2C34EBDDD5FDA6DFB1F94C6A423C0314FDC537CB3ECDEC89EA772D9E4C58A0
PUP.Optional.DownloadProtect, C:\Windows\Installer\{9B94F004-58A3-4939-A48E-351DBA4A5646}\cnleebjdplhifhhnhkkgpdcmoihkkmlfnrx, In Quarantäne, 51, 237879, , , , , 2CE3F245E25D6AAB6422279F921DCD3F, 9AFB0B5FDDFF6FCB5B35B8B3851CB3F920CE0BB84C2EAB3062F90EB9BD5688AE
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{9C44E43A-C9FC-4CC9-9070-F5342155ADDA}\xpjcchecchbjlmbapiehlkdhgkcnpcgnnml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , 20DDE245B8903492267CF2C0110877F4, FB1C0D304B53C06FFD6F6DE4B36DEF802E62F824F83A7315AF7F533EFEA9419D
PUP.Optional.DownloadProtect, C:\Windows\Installer\{9C44E43A-C9FC-4CC9-9070-F5342155ADDA}\cpjcchecchbjlmbapiehlkdhgkcnpcgnnrx, In Quarantäne, 51, 237879, , , , , 2FEC9D8AE8F6A962A37AD38C5DD03CFF, E64493AE3409CA1B801B45E48A6CA4B2D506EA64F64E0862C1EAD11DF3C97112
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{9C9596A2-0976-4BE0-BB31-9DD194F28A81}\xoldgkpmdcdkkajeodhaebgimeffnecidml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , F9E903AD557EC02F6C9C55D8DDB697F7, 613AC7F5AF93EB9D2734806A40F93DA27A6BE17F59FC5A414779CCD47066DF09
PUP.Optional.DownloadProtect, C:\Windows\Installer\{9C9596A2-0976-4BE0-BB31-9DD194F28A81}\coldgkpmdcdkkajeodhaebgimeffnecidrx, In Quarantäne, 51, 237879, , , , , 1072976429E20296B2441D0D7920143E, 00ADD77AEC4609837131C92B9A00B43761D6252902FF07CC384FBFC97081DEA9
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{9C9FE564-59A4-4DEE-9A7E-23D176B3BB51}\xijaaghmfpmhdbmchpgnmkbaoihibimljml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , DA0D2BD306344797412F4B2B11E3D49B, 01B13983B76E77D61CD79E68E22D4B11F8F24524D18280500E38F558115C2756
PUP.Optional.DownloadProtect, C:\Windows\Installer\{9C9FE564-59A4-4DEE-9A7E-23D176B3BB51}\cijaaghmfpmhdbmchpgnmkbaoihibimljrx, In Quarantäne, 51, 237879, , , , , 052890AC62C1CA1B4E2D22033FD909CA, CA13A1FBD2605D87E59A016405F57FF1AC5520A0E4280243346569A035E1CF54
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{9E891FC1-CBD0-429C-8447-5A216E2C41DC}\xhnahjmokhjghoeppleefnmolkjjephdeml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , E42A20BA55335B9E24C896DC593A6F39, BB6F65F1AE13475A24135FB215CCF5E6B9C528F126860CD44995AA6A957FD324
PUP.Optional.DownloadProtect, C:\Windows\Installer\{9E891FC1-CBD0-429C-8447-5A216E2C41DC}\chnahjmokhjghoeppleefnmolkjjephderx, In Quarantäne, 51, 237879, , , , , D4A0F387EDC969826A24794C0B6415A7, 621463BFB82F5A176FA37E51FD2785E25E550F1E7563FED864CE88B90AE2D91E
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{A2E5B8EA-1A07-4E57-8B34-DC840B1C6DFC}\xeoechhlalkchdbchhhdncpbggbpogmliml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , 173BFDB95A3DF3B38D4748C21A75F474, FD1671785867DD3216955807EF68177123F8871D133CA853ED1C832C321BCC8E
PUP.Optional.DownloadProtect, C:\Windows\Installer\{A2E5B8EA-1A07-4E57-8B34-DC840B1C6DFC}\ceoechhlalkchdbchhhdncpbggbpogmlirx, In Quarantäne, 51, 237879, , , , , F75F9FE15092529C7B9139D2ED11D5E7, 3BFD36D87629DADD4B74646BE0335EDEB16239CA4AE52B08B2934C066025FA4B
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{A478B393-533B-44B9-AD57-8211016DD1E1}\xbmhihnbljceldmaaaojihdjbfpfpglaeml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , D37ADA776AC8B9A9C4724F8EC124293F, E2598B6444898435DD67E136F895CFBAE4BF4C0CB7F4F0EEBE16A494BF962FBF
PUP.Optional.DownloadProtect, C:\Windows\Installer\{A478B393-533B-44B9-AD57-8211016DD1E1}\cbmhihnbljceldmaaaojihdjbfpfpglaerx, In Quarantäne, 51, 237879, , , , , 94CB88E5FCEC6AF5583EEAC8DBC40A22, 3FA59CA4578BEB6D388DD1709A55CFDA328BA21B9147A5488FBAE9A6E1B4A366
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{A7228F6C-867D-4BF0-B252-D6B9C5FC0BDA}\xagmophacfggjoldnmopnheaoaiebplibml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , 59BB013DDE2740B4EF6055A05EB327E5, DEA8DA4F04CB3AF8B401DFE3E48FA04BDDC2D3F197A7C1FA8F1F6EE2AF795EFD
PUP.Optional.DownloadProtect, C:\Windows\Installer\{A7228F6C-867D-4BF0-B252-D6B9C5FC0BDA}\cagmophacfggjoldnmopnheaoaiebplibrx, In Quarantäne, 51, 237879, , , , , F6EC9862B990274ADBDDD66F552E5A73, 1BAFD75C418D308447539548070B1D460AE034305964D113FC318BEA590B7075
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{A8D701AD-A4A2-444F-BF94-51FAC94FC2A9}\xcfmkpfjlobaamdeaabgccmcfbpmknbceml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , 4CFF41428B9B60B80804B12730EC69A0, F76773506670B9F40A9B2CCBF18E462F8468EBE34C3037D4AD89F8801D96FA68
PUP.Optional.DownloadProtect, C:\Windows\Installer\{A8D701AD-A4A2-444F-BF94-51FAC94FC2A9}\ccfmkpfjlobaamdeaabgccmcfbpmknbcerx, In Quarantäne, 51, 237879, , , , , 4322C579E80378260F7BFC2BAB81AD45, 922ED400D0383DA88157C831DB47B988639DEDDFCF6B0B8520D6BA238E694904
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{AA7C7227-E3B1-490C-A309-7B71C91DA81A}\xfcdjckjlehljennlnponbhnngiclamnhml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , 864F3B07DCEAC8778A3CC3B23A6257FE, C34E57823B31EFF15446F1CBF0B78E6BFDCBC159B5843A885FEFBEBDBA68F423
PUP.Optional.DownloadProtect, C:\Windows\Installer\{AA7C7227-E3B1-490C-A309-7B71C91DA81A}\cfcdjckjlehljennlnponbhnngiclamnhrx, In Quarantäne, 51, 237879, , , , , CB9FF95E55AC6159BEA95F6307AC3323, 51B53DBCCB2EDCD002199DD094BCFB519ABD7CBA8A4277FE5F816D463C4456A7
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{AAF56278-DA42-497D-B570-EAACEED8246B}\xmfgkoeajlpbnaalcafggdapnphiiffelml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , C8F1402176E2DA9779389A056618368E, FBB3AB6E608A1BF8E8892D85D248258B29EC16C24661D18B79F4609AB5E898BC
PUP.Optional.DownloadProtect, C:\Windows\Installer\{AAF56278-DA42-497D-B570-EAACEED8246B}\cmfgkoeajlpbnaalcafggdapnphiiffelrx, In Quarantäne, 51, 237879, , , , , 76C663520CDA8F003A846BD9D5AAAEF6, A4D55AFC26AC2650928A9CE7DEB3DFED244ADCF1005B811DAC66F512D107DB48
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{AB02D1B6-8DC5-4F01-B7B4-24FA75E27881}\xfooieddhphmfepefnmjmdglincmnnngjml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , 28B3927C0D93C53675922A44E07170A4, 2CBA13F2A8EC178E8078297D24B443FB089076729A285D6DFCD40594E75B99EF
PUP.Optional.DownloadProtect, C:\Windows\Installer\{AB02D1B6-8DC5-4F01-B7B4-24FA75E27881}\cfooieddhphmfepefnmjmdglincmnnngjrx, In Quarantäne, 51, 237879, , , , , 91954249D73C0B16681FAA489E6FE725, DC857F0384B5518A03B2BBF31AFFF5C14CE140A3C6AE251A9214DF08F3A2F1A1
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{AD48E81D-61E1-4DC7-92E0-7DFBE752CED2}\xepjkbghcfghlhgpndlobgaoiklbafdmeml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , CF1655AC649DE266618D4A49EE28BD2F, D49BA50E27E8453D23DF9906E6C746F4DE647B35895EB2C63BF8C7B6D089250C
PUP.Optional.DownloadProtect, C:\Windows\Installer\{AD48E81D-61E1-4DC7-92E0-7DFBE752CED2}\cepjkbghcfghlhgpndlobgaoiklbafdmerx, In Quarantäne, 51, 237879, , , , , 3F2F7FB5A96EB1F06FA1647E386B79BF, 78FA3A6447916F7E928F48D3D639727DF133638435D4D6725105AE0F4F748242
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{ADCAF2FF-FD00-4A9F-9F21-D669157F9A04}\xjofphngleichcplgaejdbgmjjfjeipdnml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , 7CFAD5B4B160DDC3D095AF83CD31EDBC, BCE9F5027E4063B16750210B8F482310D2718934DB9E4EB4C109F5C4A0184F19
PUP.Optional.DownloadProtect, C:\Windows\Installer\{ADCAF2FF-FD00-4A9F-9F21-D669157F9A04}\cjofphngleichcplgaejdbgmjjfjeipdnrx, In Quarantäne, 51, 237879, , , , , 08446867578331C56BDE2DA844E0D021, 9014F635F74C04240DAE44F288096FA1931FC394C7F0D98E43FB0882F0B33CF8
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{AE8025DF-6A16-4CF2-9C8A-71AD9678587B}\xlcapamdndehfhhgamnjanlkddnkemahjml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , D1D561BEFCD71DC708DC6D2713648DA9, 1C015CF3007D8BA65153BDF7B96C03BCE6C39D1321D3DE45B426A89B3BDB8125
PUP.Optional.DownloadProtect, C:\Windows\Installer\{AE8025DF-6A16-4CF2-9C8A-71AD9678587B}\clcapamdndehfhhgamnjanlkddnkemahjrx, In Quarantäne, 51, 237879, , , , , 409F2DF3DEEC2E69ECF2D8D85907A0D9, 4391F6201330417478205A6EBEF1743FDD7ED22AEDC9985C79818EA5E2010F61
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{AF9C6B4F-9BF5-48DD-A443-AD0FE4EA5F74}\xgafkencijficddldjfgaokhfmolghbafml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , F10299E2352E5CA736EAD4E48C7D73E8, 3C49479922387E2C3A02843E9C0235587840E7C8E95AE45FC30103F139DB78FB
PUP.Optional.DownloadProtect, C:\Windows\Installer\{AF9C6B4F-9BF5-48DD-A443-AD0FE4EA5F74}\cgafkencijficddldjfgaokhfmolghbafrx, In Quarantäne, 51, 237879, , , , , AFD7A246D47C79240066C51C1EEE732E, 8DCDCE9724514D62337C11BA6AA00F94AFB60687BB24940C33A6FBB9A35EC07A
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{AF9DCD84-3423-4CE0-8019-C49F37E5659C}\xkhknlbjgccohmohgnobimpbfdfbilnfgml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , 71DCB786C7D891DC13C79A46D0296AC6, C3EE9C5C68A4E831840F0CB8E621F9CFD11D895184EA5DAE4E21E8D393AADDB5
PUP.Optional.DownloadProtect, C:\Windows\Installer\{AF9DCD84-3423-4CE0-8019-C49F37E5659C}\ckhknlbjgccohmohgnobimpbfdfbilnfgrx, In Quarantäne, 51, 237879, , , , , BC6FE2D05BB224332143E02244DB43F1, 6B3D221FB7FEFA55163CD126DE24083F099FCA7BF3873781C08B3EC1A0A00A6E
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{B0AA745B-F35B-4F64-859B-6DCC58F2C75D}\xdagpbdpplapfgddifgodaejogbpfinkdml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , ED55AD06A157BC2E8E9F5E19226EB39B, C891D106A7319089CFA7120F22B00B82FBA4BDC4DAE93BCB1D4CFC0F10CCC2B6
PUP.Optional.DownloadProtect, C:\Windows\Installer\{B0AA745B-F35B-4F64-859B-6DCC58F2C75D}\cdagpbdpplapfgddifgodaejogbpfinkdrx, In Quarantäne, 51, 237879, , , , , 9773841B181C54C80E681C97A0C6F8E2, 178AD79ACB676AA1F840A86896EDB3AC467C451A7986AC0D6A370F3CBAD59E98
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{B2B7CBE6-15DB-4EC3-BF03-384EB46B9DD4}\xhjibcflmacnpchpjmiklfkkojjhbohdmml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , C240BD272480BB0CB0E0E36614517923, FF5C00B8A5684669BA2F74BAC579A30888F65C9557233A5A84EAF0FD81678079
PUP.Optional.DownloadProtect, C:\Windows\Installer\{B2B7CBE6-15DB-4EC3-BF03-384EB46B9DD4}\chjibcflmacnpchpjmiklfkkojjhbohdmrx, In Quarantäne, 51, 237879, , , , , F2612D875CEEC87E8B75AA00E860F052, 0824BC817214ADC7C945585A4832858E6616027F395213E576EF69B81F55902C
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{B31C4CF6-E8C5-4159-8747-A502C44D431C}\xghiocoaminmemcdppkfemanhgkimiiipml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , 75A01A394048163B5B81A3C4CBFA5BCE, 13670FE0237C2312831B6340EDB7E5B0FDEE48692709A764FDE180B13779A7E5
PUP.Optional.DownloadProtect, C:\Windows\Installer\{B31C4CF6-E8C5-4159-8747-A502C44D431C}\cghiocoaminmemcdppkfemanhgkimiiiprx, In Quarantäne, 51, 237879, , , , , 82995E56CB01C5D2FB2064657339F89A, 79E6433FB5AA770E803DF9DF6033D41570BC8072519FEF7EE356BA7A0B84CF56
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{B37F4F66-5E0F-45FE-A82C-D8BFE29E1DED}\xnegfmekoglcmpillfenicgfabbojcgbcml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , 34A262D7E0AF4AAB7E0318ABACF9BF4A, 27F1A0E43C0112317683CBEE759A3DB2D36490EB9B4C994FEA285E6418A705BE
PUP.Optional.DownloadProtect, C:\Windows\Installer\{B37F4F66-5E0F-45FE-A82C-D8BFE29E1DED}\cnegfmekoglcmpillfenicgfabbojcgbcrx, In Quarantäne, 51, 237879, , , , , 79C12AB583BF58C5EE2105C143EF2F75, 14CCD6410617118F96696AA0C50A5D10125C40B1C09013035D96B818735F132D
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{B7C3927B-4A40-463B-8BA8-32B176C5CC03}\xfpiinocnllpepfkopldgldgfdnooeifdml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , A313ADDFB1EEF39D79917B6531D42300, 5E4E513494B151D4CDACF641769061A848271B98BF6034D364F359FB6B57F8A7
PUP.Optional.DownloadProtect, C:\Windows\Installer\{B7C3927B-4A40-463B-8BA8-32B176C5CC03}\cfpiinocnllpepfkopldgldgfdnooeifdrx, In Quarantäne, 51, 237879, , , , , 9BB15A9BAA26BE13DF6A8CD38F6FA5F3, A5EE0220842EE46E2F13665C1E195F040378D6310F67C77AC16A2F9BBBB39630
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{B89F420E-AF72-4D58-89E7-CB37DA9889EA}\xcjnpnhcleamcopgncmkhlbgefllfdidkml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , 834FDD7DD7025025257726602B27A91A, C51D7D058C3490E058FBD9E17D5186C7AC19556086099D46FD6F5FD4DEDBEF6F
PUP.Optional.DownloadProtect, C:\Windows\Installer\{B89F420E-AF72-4D58-89E7-CB37DA9889EA}\ccjnpnhcleamcopgncmkhlbgefllfdidkrx, In Quarantäne, 51, 237879, , , , , 04733025F357E061F432185CFE1D22DA, 3F90B2B087440738BD89BC3BE4BCE640B743B208B072CF0027C1F5E71CB33A86
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{BAD02F69-3ED1-406C-A1F3-EED74C10DEA7}\xblbmnnhjfjmmlacfjbmpfkgnhokijnjlml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , A0C88D011A70D8BAF6A37F41D611E403, 3BCF7B4E97FCBC8CF12A5B8F1544343D1063B58E7654B3CA75B7B9E964FDC710
PUP.Optional.DownloadProtect, C:\Windows\Installer\{BAD02F69-3ED1-406C-A1F3-EED74C10DEA7}\cblbmnnhjfjmmlacfjbmpfkgnhokijnjlrx, In Quarantäne, 51, 237879, , , , , F067548B78533EC5343D3E63E6BD4800, 3490D51C6075BF1E1F3B5CB81E9842F7DF01D68AB40520CF86550F2EDB70C61C
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{BBF7239A-FB52-4AFF-8E6F-BAC1FB722A2B}\xbcanlgopiokomipjjmfllhahofogkdcoml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , 1AEA4F108223CA470E198877EBD16352, 296C7D929C93EC799FDDB54B04C24C31C8FEED5EB052307EC71501770DF82D07
PUP.Optional.DownloadProtect, C:\Windows\Installer\{BBF7239A-FB52-4AFF-8E6F-BAC1FB722A2B}\cbcanlgopiokomipjjmfllhahofogkdcorx, In Quarantäne, 51, 237879, , , , , A0C1790F1C6FB036AD866103E86C030B, 10B135295E778A11E1F098D8ACEA7D25C7AE094E58B9C4FEF19A353DC7B4E46C
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{BC9BC994-E78C-4F16-8A37-39B507BEB245}\xgngdboimlmgbpellbofcpecdiajajofgml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , A8A6A48FAD9D4FA8FAEF7155AAAB05D1, 0701F06C3A8EC9179FFC60EC6E3B9269DBDCB803FDB217F05B16E51FB3ECE9A6
PUP.Optional.DownloadProtect, C:\Windows\Installer\{BC9BC994-E78C-4F16-8A37-39B507BEB245}\cgngdboimlmgbpellbofcpecdiajajofgrx, In Quarantäne, 51, 237879, , , , , DD824881D06A52E3647708E11A37FE24, B7FD715254DBF24D8A70D9CF392D3E2DDDEAEFC3D4A3C0CA202ECB6ADEDE9E1A
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{BD7883AC-8E88-428D-BB1C-C14080B28C80}\xeaedkacpbmkajmeoknihlpehmkkmjehgml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , 92D6AE37784DF4885FDA07ED3064B018, 1CE94CE83FE683808058CF215E049B3B7413F504AD67E0F9247D5F753B9A720F
PUP.Optional.DownloadProtect, C:\Windows\Installer\{BD7883AC-8E88-428D-BB1C-C14080B28C80}\ceaedkacpbmkajmeoknihlpehmkkmjehgrx, In Quarantäne, 51, 237879, , , , , 5BF6D21B622CD5B246DC4D40EE43B411, 4C909B3C1DEDD805FCC25628DD469A155BE7617C37029FB702962C33D2DDD7CB
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{C1655685-EAC9-40BD-890D-103E17A7B905}\xiilipadoibofhlejjmgbiedpdlfkfgniml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , 1EBD6F58F11AFA0A16E4521FBF8A9AF9, 2A640AE38C09DCF46F70CEB068A7EA0639B4DAC212455E708989E8C69349B18E
PUP.Optional.DownloadProtect, C:\Windows\Installer\{C1655685-EAC9-40BD-890D-103E17A7B905}\ciilipadoibofhlejjmgbiedpdlfkfgnirx, In Quarantäne, 51, 237879, , , , , 5FC140CB5A339514064512D6917B0884, 467E8E04DB5700105C7B7AE05CC45C3B93AE27C47BB098085BE7543D6BFB9E9F
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{C2277658-B130-43BA-8360-A8124A113D6D}\ximlekiadfiknacjfomopjlkahpbffkidml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , E3AB838F7337B9AB81C3EFA8EB85C286, 36EBA07130153BF6CCC06E61A648BC999A8F40C27808F20FA5657A71F6C88D59
PUP.Optional.DownloadProtect, C:\Windows\Installer\{C2277658-B130-43BA-8360-A8124A113D6D}\cimlekiadfiknacjfomopjlkahpbffkidrx, In Quarantäne, 51, 237879, , , , , F88DBCC37968BB982CCAC38E1458D077, 00B18027617C29001F616794420EDA203A4EAD6869476C228F027B73625362F1
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{C2A22759-09CE-4B9D-86BB-C1E52A2F114F}\xcgdpngobofndpnfmaijnjmpckplkcfedml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , D524D41C39AE7B28B53835256759BA85, D02EF21C31538E038D729894EA686EEDEA42343772B1053A1B7ABF36C5C72B48
PUP.Optional.DownloadProtect, C:\Windows\Installer\{C2A22759-09CE-4B9D-86BB-C1E52A2F114F}\ccgdpngobofndpnfmaijnjmpckplkcfedrx, In Quarantäne, 51, 237879, , , , , DA0D11E931DB90D6BB735E64F61C904E, A75D02AA80448B93223587015C7F2B3D342D7BB293C4A3D8B5C18445F8A33ED3
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{C32A11FD-255B-4DF8-9470-419BFF26F14B}\xpbciffmcdmcfacnacpbjonmajjmidpphml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , 7FFE4E4EF33839560722625368265504, 24364E43AA0123EEF1777E4CCC09C8BE9C552416B1F2843B9DE0B28CD237F915
PUP.Optional.DownloadProtect, C:\Windows\Installer\{C32A11FD-255B-4DF8-9470-419BFF26F14B}\cpbciffmcdmcfacnacpbjonmajjmidpphrx, In Quarantäne, 51, 237879, , , , , 00348C5D1D01C013D35172296C01CF01, C37865EF084A9562E493A291727BDB7F25F71DFD8F0539C56CF6F99E3A4978FE
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{C55E66C5-68BF-4E12-932E-C0EA907EC2E4}\xefehlfibjihnijocbjlbngfonppegkkhml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , 923BFAC073FA2863281274599E643B9C, 9F267C6141B32B95C8BF410B96A57750784B0E83096EB8ADC439E8E39553F418
PUP.Optional.DownloadProtect, C:\Windows\Installer\{C55E66C5-68BF-4E12-932E-C0EA907EC2E4}\cefehlfibjihnijocbjlbngfonppegkkhrx, In Quarantäne, 51, 237879, , , , , CEBAE99A272C24CEBE7007ACB079CF87, A4BA9AE3AC954578FA67A45FC5E86341B5349D4D74FB2E1044E433BA5128321A
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{C6D9F165-CFCF-469B-BEFB-543CADB7D4F5}\xhphbeggkfjjiedncbeldhaljhbgeniooml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , 42ECBEE6589932C68E9926CD990B3480, 463F2D21533B888E7ED1B17004155EEBDEEC0D17CB48E178B97EC6B3A6C5FCF5
PUP.Optional.DownloadProtect, C:\Windows\Installer\{C6D9F165-CFCF-469B-BEFB-543CADB7D4F5}\chphbeggkfjjiedncbeldhaljhbgenioorx, In Quarantäne, 51, 237879, , , , , 31ED4A0131725C529C66A37427B3884B, 918B9094788BC76608CDD6EEEC5770DB35E0761DCF8DBF667FAB8DF658F1FF9E
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{C7E30752-F812-485F-A48A-E5D2A0C31AD2}\xbfmbofgpimbggokalefdcdipjjimibooml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , 1915AE2F632B8F8671DFAD26505C3204, 834A808789308ADE8489CBB5F848D05D38AB5EB78670AF232A85C150AB00541C
PUP.Optional.DownloadProtect, C:\Windows\Installer\{C7E30752-F812-485F-A48A-E5D2A0C31AD2}\cbfmbofgpimbggokalefdcdipjjimiboorx, In Quarantäne, 51, 237879, , , , , C1D601FF43014514B01EAFFCEBB137D1, 3DDE1B9A8246F4B67F5C764F2370C06D8672E10DCDF4608F17E8004FB7AC5CE8
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{C80BD4B9-83B8-4FFF-A477-C009DAE6528F}\xpmpookbfdakcjbecngmodaninoeofgkdml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , 4F8A4BA83DFBBC0286EE828AED4DB4B9, 4E8EF4D8392D32DB2E65684E9A04C569E9DFFEC4A3EA98AB01465673D8EB9B3A
PUP.Optional.DownloadProtect, C:\Windows\Installer\{C80BD4B9-83B8-4FFF-A477-C009DAE6528F}\cpmpookbfdakcjbecngmodaninoeofgkdrx, In Quarantäne, 51, 237879, , , , , E53142D23760572B07F9C2B77160E2F8, 133BB8E1764D82B688B283C7736EC3C262B3F729B7BD16816244D5A50F7AE592
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{C8D31473-DF9F-4260-9D6D-6C5A12BD6037}\xmjpilohhacegaihnfgagnpnhkegnbbneml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , FDEFD93BDC679229C4CF22391D76CB95, 5C8AECC49DBEC2B38C4D1BF03EE35827DF432E234E7879A8E6EAC77E5787530C
PUP.Optional.DownloadProtect, C:\Windows\Installer\{C8D31473-DF9F-4260-9D6D-6C5A12BD6037}\cmjpilohhacegaihnfgagnpnhkegnbbnerx, In Quarantäne, 51, 237879, , , , , B832637D311109D1A73774BB8CD43BC3, 1944CF144C432AC9ABEDB528E1478079E60FB796EB8FEA444A727C6CCEC682B9
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{CA5868E3-61CC-46AC-8F39-CB4D7E3A9073}\xocegmlpdpaeicpkoeogoaiciagoaklkeml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , 87E2BDC2934853FE2261FA504328688C, 12965B056BD3F6C1A097D7800C21D372C2FF5E4378276AFE00D72D60F3A8563B
PUP.Optional.DownloadProtect, C:\Windows\Installer\{CA5868E3-61CC-46AC-8F39-CB4D7E3A9073}\cocegmlpdpaeicpkoeogoaiciagoaklkerx, In Quarantäne, 51, 237879, , , , , A9033EB83F1DA9B0F568274B2091C6AC, F4847BC3137735FFF54623910348852F4B6E76DD5BEC3A8D22F815D2467F8E8D
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{CC47217D-227B-46D2-94CF-EAFCE06EAFE8}\xbndmaoaeaeggbkkjgdebafjpbiplgdfdml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , 214F644E16D596C15E3E1D6462EDB72C, 53B9A9420E12037B04BD2302701FA9D1244AAE709EC1FB8F658504A43E18CB69
PUP.Optional.DownloadProtect, C:\Windows\Installer\{CC47217D-227B-46D2-94CF-EAFCE06EAFE8}\cbndmaoaeaeggbkkjgdebafjpbiplgdfdrx, In Quarantäne, 51, 237879, , , , , 72ABFCC573F237C3BBC7282EE5CEC788, 60D50BFDFFE4DA8678A5FB3E052447AFB76DBC31924F1394A08DA4B083297C3C
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{D132E7FB-4FB8-4848-B0CD-B28C327A3BAC}\xbnnpeapkhjcdpdbnpldinglolbfbcepaml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , B3080C0B9BD10EDBE20F20C8E13544C6, 391054EF93F6D7741EA11A688403C5A5F9D42BD0EBAF17DE9AF40B4767DCFCEC
PUP.Optional.DownloadProtect, C:\Windows\Installer\{D132E7FB-4FB8-4848-B0CD-B28C327A3BAC}\cbnnpeapkhjcdpdbnpldinglolbfbceparx, In Quarantäne, 51, 237879, , , , , 9B5038BC2407164658E8A87A085EDE21, 093641F892F22E98ED98595DED2E0A8325A82896A5FB889A38A2C9B750A57AFA
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{D21D7EC7-1D59-45F1-9F69-2CB68DA7A01F}\xokahiejlepgkghcjnpknohgdmaombmeiml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , F1D12F9CB5AB577DB4B1A8C602BEC9CD, C2E9FE3954E643ABFD57947FF22E5C5E1A68D5A05515240D41FA3309222E5266
PUP.Optional.DownloadProtect, C:\Windows\Installer\{D21D7EC7-1D59-45F1-9F69-2CB68DA7A01F}\cokahiejlepgkghcjnpknohgdmaombmeirx, In Quarantäne, 51, 237879, , , , , 3FA713D1CBD26DFA0AA70B9B2E9F6885, 2199F443BC0AF734D1DD8D7E24BD7EADC0572C3DF31C727041349A66F476D88C
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{D487FF00-06FC-4B59-9764-C603A3E7CBA2}\xkhglmcgknfioinohnibpacipjhamdmjlml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , 276D0EBD879175A0562568A747D28C2B, 5A9B14347272CA5131AE8991CF6CA380BAA5355415656A2081721449D3140D2C
PUP.Optional.DownloadProtect, C:\Windows\Installer\{D487FF00-06FC-4B59-9764-C603A3E7CBA2}\ckhglmcgknfioinohnibpacipjhamdmjlrx, In Quarantäne, 51, 237879, , , , , A8FDF0088E0D2A909512E3944F6B6F1D, 0111A7838CEE521675FA66C5BE3F695C5BBEA39063B020D140D1EBB7CFEE9EF4
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{D557D1CF-286C-44AF-94BF-ED8896AA99F5}\xlfnpkkiimijdjmofhnpejhffjllifickml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , 07DC2CBBB1A685B813511B471C72105A, FDFA9E4539934C8D1F5B64C96442494614277242E78B499DB2587319C57BC351
PUP.Optional.DownloadProtect, C:\Windows\Installer\{D557D1CF-286C-44AF-94BF-ED8896AA99F5}\clfnpkkiimijdjmofhnpejhffjllifickrx, In Quarantäne, 51, 237879, , , , , E87E278EAAD13563D9A9F97CE3D56B5D, CCB119BC6E68B8B1AD5698B77E9BD89CC97E59C8E7E8F2676CF7035307377D91
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{D5890F0D-79F4-4654-806B-71D2DA52D0A6}\xhpinmofjkmppbldbnkfblgfmmhfnfhceml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , FB20B49B2FC8F551B57C338536077955, 5B5597D1C09F72A4C815B5C96B0EEBD82557CE4935A0A7C9889FE0714DC8B628
PUP.Optional.DownloadProtect, C:\Windows\Installer\{D5890F0D-79F4-4654-806B-71D2DA52D0A6}\chpinmofjkmppbldbnkfblgfmmhfnfhcerx, In Quarantäne, 51, 237879, , , , , C41902257281299B9E214A0D260FD89E, 1843DF8373E09E10F991FC72A4A48DC361A32489BE57462CD18F2B9A184DA906
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{D64B049B-7B3B-4E68-9160-0EE1F7B474CE}\xklhahfafomnjoendlfdoddiabdlmkopgml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , FD9B2EF42806E393F44C7A2DCBDD032D, AE01CC9EF052987FA062CFAF6CB0C58221B7AECEE592A8D5574DA47C3134335A
PUP.Optional.DownloadProtect, C:\Windows\Installer\{D64B049B-7B3B-4E68-9160-0EE1F7B474CE}\cklhahfafomnjoendlfdoddiabdlmkopgrx, In Quarantäne, 51, 237879, , , , , 8CAD870B5D8C4413727FF706B97D24C1, 229CBE381113708074496A6B51394E05F3A689D2F330E761DBC97D8FEC0A6C06
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{D9D209C4-78BE-46FC-B651-FCE4162F91AE}\xpfnaeidlnogdhhbhfppmkppclcbhofbaml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , 120AD24EEA6901B2A14337A13D229267, B63F5A4AD392EC4C13C0B99E281BECFBF17056226F593CB3EBFB4AB1DB1B16F9
PUP.Optional.DownloadProtect, C:\Windows\Installer\{D9D209C4-78BE-46FC-B651-FCE4162F91AE}\cpfnaeidlnogdhhbhfppmkppclcbhofbarx, In Quarantäne, 51, 237879, , , , , B30C33AC04F7F41642B5A8676925C781, D4D26829342C806B11BC55968F150E34DFAAF74D671150D8BC7B9FE7F8AC58E8
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{D9F93BBA-3388-451D-A799-646492FDACA6}\xlkmleggfkcecmebljimfjhbklmigcmbjml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , 48C6B55DA05D0C709156C0AC43F10D10, E6508A4F66C0C9C24E148C5AFECF294F39B7E9C31F0E92B5CDD65C46ECCD92C2
PUP.Optional.DownloadProtect, C:\Windows\Installer\{D9F93BBA-3388-451D-A799-646492FDACA6}\clkmleggfkcecmebljimfjhbklmigcmbjrx, In Quarantäne, 51, 237879, , , , , E9235D670072FF3692A60591E656492D, E1CCB31142C2AB21A369883EC6676BA15DD4FECE652E1942B550558EAA21DE3E
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{DB226943-BB77-4754-9189-9A06B86B6C4B}\xkbkocagkeihmeiaipbfpmckeifogepjcml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , 7A5D0A79A3A425D90C342AB1032A9CFC, AA14AF105FA04B2E494EEB0E0FC47449B073F5C783291A1342851183A3444388
PUP.Optional.DownloadProtect, C:\Windows\Installer\{DB226943-BB77-4754-9189-9A06B86B6C4B}\ckbkocagkeihmeiaipbfpmckeifogepjcrx, In Quarantäne, 51, 237879, , , , , 2143651916CC601BE2C0D7159D484CAB, A1620F0C2A069A847185B8160061C9C17B0F96AE4A7A742692D71EE40A41D3BC
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{DD1D3956-7A5A-4C3C-9EC4-89AC89F939DD}\xeojknmbooncklipdfhapincmnbjijknjml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , 4DB13BD16272951B5C6FE2F650D9DE5D, 1017745C0328AA80150422D38FC57C64F31A7BEC282B8DC4CE104E7F6DF3866F
PUP.Optional.DownloadProtect, C:\Windows\Installer\{DD1D3956-7A5A-4C3C-9EC4-89AC89F939DD}\ceojknmbooncklipdfhapincmnbjijknjrx, In Quarantäne, 51, 237879, , , , , 2442294C2866957222DDD33550FE4F39, AD4AA94013D1D729A05E7D51C676711AA2CF110AE62020AAF052B116FEAC2CA1
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{DD4905D5-8430-4AE1-AB7B-328736D26679}\xjjkjjakdnelbhhdiponnfkcohndnenipml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , F4163A05C4578174CEBF8DEF490BB72D, C170DB7247D9DF9C4B46D7EAEF34C1527C147D2CDDA83F6C82F9D976473C7A4C
PUP.Optional.DownloadProtect, C:\Windows\Installer\{DD4905D5-8430-4AE1-AB7B-328736D26679}\cjjkjjakdnelbhhdiponnfkcohndneniprx, In Quarantäne, 51, 237879, , , , , 4F36D3511F2B85CA33C1DCC45F8FB909, 49FAC955C3D2EF07994D625CE6B133F6CB7FC6E64EA19336740CAC3784690FFA
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{E06D6222-8355-486E-8F3D-F0DE25F7D036}\xknbfibhdblhbofhgakjldkhfiemgjeehml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , 273A5A5673AE18B4B15E996E5E080A02, EB0301490E0F6792C87473548E12AACB1FF9AFD3062334DD73B7F555A8B54C9E
PUP.Optional.DownloadProtect, C:\Windows\Installer\{E06D6222-8355-486E-8F3D-F0DE25F7D036}\cknbfibhdblhbofhgakjldkhfiemgjeehrx, In Quarantäne, 51, 237879, , , , , 163915A67B702C3C6151F8EB6AC53D83, F7513FB77BD5AEBCEAFEF294121FAE9C41236119872BB911ED909FF79B95D8AA
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{E11842DE-9D03-452E-95EF-7279AA02A34B}\xefeepkjnobbinjccgnfikdoifoaklgdaml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , 7B33666B71794A222C11532010CA75D5, A2906140A30A757556D115801547384DB025D994FC428B545952862E8384919E
PUP.Optional.DownloadProtect, C:\Windows\Installer\{E11842DE-9D03-452E-95EF-7279AA02A34B}\cefeepkjnobbinjccgnfikdoifoaklgdarx, In Quarantäne, 51, 237879, , , , , A555095D851E47F6066F9F305C4C4E24, 385893B036C7E23C6F62C361C51A94E253FF95D2C37F50BEFA1A846B9A168FD7
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{E1C9DE0E-DD50-4365-9879-DC63A4213AF0}\xjbcghnbdkknhbjljcbljhnppeledacdkml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , F32C044D178C61DBA0E3BED38D175BAD, E4FAE68F888FFD699B74BAD8410B79361E7F91FAF02D83B861FA4110538AA88C
PUP.Optional.DownloadProtect, C:\Windows\Installer\{E1C9DE0E-DD50-4365-9879-DC63A4213AF0}\cjbcghnbdkknhbjljcbljhnppeledacdkrx, In Quarantäne, 51, 237879, , , , , A72911D9C02D1D8393EC609A61B2EE21, 2857D4C5AE6C044A3E2A8E1C991BC494158481C9FF80FF0F319057AA8DD6068A
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{E3EA4A38-E93A-4633-BB91-C8F771958989}\xlpljjlkcdacaenfnikcpeoindbhhhjkiml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , 3C964ABAB6D24B6738776C58B5F8ACB3, F911657075A063FD3D3E959F907D5BEEF15B9509639CD3E46A2EDB58825CD24F
PUP.Optional.DownloadProtect, C:\Windows\Installer\{E3EA4A38-E93A-4633-BB91-C8F771958989}\clpljjlkcdacaenfnikcpeoindbhhhjkirx, In Quarantäne, 51, 237879, , , , , 294E3F173E836F1A3615E7606F271D71, 34FD220067DD5744DD7F039DFA41EFAEAAAADB09381758243767247A42957254
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{E41DB2D1-0527-48FB-9915-12AC57ADBC9C}\xglbmbpjenbdocjmbndkpgmmfcaeckhblml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , C1D9913EEFD0F06B967DCF7167BA0CCA, AEA387ABCBFD40EC15FF08FD300B1B4BD51B556E604ED6527539853F8A70C579
PUP.Optional.DownloadProtect, C:\Windows\Installer\{E41DB2D1-0527-48FB-9915-12AC57ADBC9C}\cglbmbpjenbdocjmbndkpgmmfcaeckhblrx, In Quarantäne, 51, 237879, , , , , 637D7DF42F330AE6A1D354EC4B5D26EB, D2084B97B122A846C22588FF173204010D6EEC0A57091164FC7FA927E8BD5F6A
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{E61200D8-7484-44A4-B746-ED7A7FC42756}\xmahknpfopmpfpmeemlgkbcogbcdfpfnfml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , 27E2207CE3E59F0EFFF7CB67581E3179, 22B203F26715EA72F38E21942CFF2695C308B597F0A4903BFACAC7012A4D40D8
PUP.Optional.DownloadProtect, C:\Windows\Installer\{E61200D8-7484-44A4-B746-ED7A7FC42756}\cmahknpfopmpfpmeemlgkbcogbcdfpfnfrx, In Quarantäne, 51, 237879, , , , , 1444D1A5CDEEB93876593E04FDDE03FE, 1ADBE00AFBF2EC89B52566A42CEFBDC5FE4D2C563659765809D06E58AC2DB823
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{E7506E4D-8A29-4E90-AF6B-1B6F6ECE2562}\xekbnjkpebbccphenfocjcchppenkocnaml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , A3178ECB01FB627F8FB625777BB3B4C7, E1849F1267226D7B6F21CFF8C809FD47297BB86FEBA7CB5729401C5883A152C4
PUP.Optional.DownloadProtect, C:\Windows\Installer\{E7506E4D-8A29-4E90-AF6B-1B6F6ECE2562}\cekbnjkpebbccphenfocjcchppenkocnarx, In Quarantäne, 51, 237879, , , , , DAA627C6CE74FA038204FB9CF75FB15F, 9A23E67C67F480A36A1C35F8AAC9211CBEFDC92CB1D582E9AB158E15A56B8B31
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{E8278EC9-EEA7-4570-B24E-9A51F3456837}\xhbelibikmdkgfajlhbdjpbphfhhfdbemml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , F2862A5E0D6BDE8743E88FAE2F71B3EA, BBE7B7DB3742C543AA611F6BFF0E46C1DB3FCD635E4A960FF4DBCD8F404C4C8D
PUP.Optional.DownloadProtect, C:\Windows\Installer\{E8278EC9-EEA7-4570-B24E-9A51F3456837}\chbelibikmdkgfajlhbdjpbphfhhfdbemrx, In Quarantäne, 51, 237879, , , , , 1889EFDA449668D441F5347CF57604E4, 22422B83BDF4C5892C3BBBE3C4BFD252BC31CECB6C1E87257D9600FA92C92B0A
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{E83C1220-3E90-4F8E-A46B-3606E7B2C3A2}\xndaljkehnollapbneeooohpjohjoedeeml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , 003C65C575537D1EFA19BF917AAC7D3F, 878A152952316152063796FDA626986BE58C22D49EF8C81A816BF10C4113D4FD
PUP.Optional.DownloadProtect, C:\Windows\Installer\{E83C1220-3E90-4F8E-A46B-3606E7B2C3A2}\cndaljkehnollapbneeooohpjohjoedeerx, In Quarantäne, 51, 237879, , , , , FA0AE5F6F0ABB99775A13CE3BB46CC2F, 176A9ACF2FB66711EBBB3957EF48B37B9F72BFDDA2F0FE581E112F390668DA42
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{E89125CF-C735-4A02-B102-49F7675ADF87}\xahfhfjceabiocdfcjopfkpgiimamheghml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , A4F4A52A2DF8B22E3ADE23545B3C830C, 78A4C30037B09F7CA0C0DEBF88D28E0B1842E225761514A54708312C33635D84
PUP.Optional.DownloadProtect, C:\Windows\Installer\{E89125CF-C735-4A02-B102-49F7675ADF87}\cahfhfjceabiocdfcjopfkpgiimamheghrx, In Quarantäne, 51, 237879, , , , , 33CDD72CCE7374D8894D143C2C11535D, D1C86209ED4DE8858B36E7C109CEC4C5BF38829A00758E996B3785006F49B915
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{EFB04F92-343C-4E7D-B6A7-9DE305AA440E}\xdjfkoopfmehbjfccalfbenjjiiajcljfml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , 53B59F4A94211A6C2B10A3CC6BC925AC, 6BF0CEF9160AB00E76D95BCB6A186730D43AD521E56DF383855C0CA625612C23
PUP.Optional.DownloadProtect, C:\Windows\Installer\{EFB04F92-343C-4E7D-B6A7-9DE305AA440E}\cdjfkoopfmehbjfccalfbenjjiiajcljfrx, In Quarantäne, 51, 237879, , , , , 0D814B6FDB5DB1E8324FF840E0154345, BF6B1E127DF1DF8341BFAB12518D922361737B1668BDB24E359D8516654D30C0
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{F00C3505-7A23-402A-9E65-C5DA3812EC82}\xjhjpickoedefdoebhpkmjidjmgidcnapml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , 233786B5FE8CB4BB7BDF7713CA3F73D3, EA72FD05F2E38F063E93EC786014571D4E163437DE05CC977822A63D6E695968
PUP.Optional.DownloadProtect, C:\Windows\Installer\{F00C3505-7A23-402A-9E65-C5DA3812EC82}\cjhjpickoedefdoebhpkmjidjmgidcnaprx, In Quarantäne, 51, 237879, , , , , D3DA6C45BB9BB8337C7100BD0538C5D5, 76617ED4B9BF9ADEDF1D34EFC1B92B0B4299FD485D184B2369E71AC66883FB5E
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{F73DCF5C-3B17-4375-9237-17E6DDCE95C0}\xdahandoimhiohacjhghcdnpdcaopckioml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , 354AFE670505FA289BCDB203AF517C98, 225DFCF21CA0D67CAA0AB1CA38F895E884AECC37D5692A340061A0FC9FFA7155
PUP.Optional.DownloadProtect, C:\Windows\Installer\{F73DCF5C-3B17-4375-9237-17E6DDCE95C0}\cdahandoimhiohacjhghcdnpdcaopckiorx, In Quarantäne, 51, 237879, , , , , 6C845DA5D2D624990F8EE4AB6BC9C0BC, 234C41FEDDD625FA60FFE36B63E2F4BC5ED55ECF803072B1FB51A7804783AF33
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{F83C79E6-73E0-477A-8B51-82640228FBB8}\xhgpggidecggahmmodakebicclnmidaopml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , 17BBA80141C51FDB1D06EAC741C005C0, 6073428E59E4FB7A6FACA1ACBC69C9AE38074A212B14B646D3A0610610C5E9AE
PUP.Optional.DownloadProtect, C:\Windows\Installer\{F83C79E6-73E0-477A-8B51-82640228FBB8}\chgpggidecggahmmodakebicclnmidaoprx, In Quarantäne, 51, 237879, , , , , 46C612A86C0DB917BB4A4AB453452DA2, 3004F9B0ED00CF44B01DB3828C5A913E05FEA5CC5E564EAF74758DAEB84D074F
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{F9BC96B2-E8C1-4D5D-98DD-C586B556AC3E}\xdkeanjfkhgpkjehpagpmfbkdhdolmbeoml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , 25559B59106E24D622A27F8DEA551985, 37C6BB4F07C7A25D9AB9F45A93B9B4D5BEDC7552B441C1C008FCFDB7EEB52E92
PUP.Optional.DownloadProtect, C:\Windows\Installer\{F9BC96B2-E8C1-4D5D-98DD-C586B556AC3E}\cdkeanjfkhgpkjehpagpmfbkdhdolmbeorx, In Quarantäne, 51, 237879, , , , , 985A424738C665D3EBF654DDAC0F4197, 3C511B985C3B81066806974EE909F065D3D761BBE59821C732199BD2D6819FD0
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{FA043295-F745-4784-9A2F-D61BBD58D361}\xoogifmompkejkgekejibjoepnilgoalpml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , 3B6DF28A6E51DB22A26C6B34BEB889AD, AC987B0E9EF799E9414C421831BECA2683C406ADF097A882C6826ECB176A2997
PUP.Optional.DownloadProtect, C:\Windows\Installer\{FA043295-F745-4784-9A2F-D61BBD58D361}\coogifmompkejkgekejibjoepnilgoalprx, In Quarantäne, 51, 237879, , , , , 7B1B7E8F01AD5CF72EE11D12DBF409A0, ED6660CB6910C048029AD2EADCC6959555E596C060F7DFC054B021CBD1EF2ADA
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{FB7E46F6-4E47-43C7-880D-88E32B029688}\xnmglijlcklpammoapfglbplbahpfimknml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , 0C45BA2D7F5DB9103A10462926A7F330, 59362F4A088218328E2155604885E7309F8AE229A6FDDF25A8E69E89B205A2C9
PUP.Optional.DownloadProtect, C:\Windows\Installer\{FB7E46F6-4E47-43C7-880D-88E32B029688}\cnmglijlcklpammoapfglbplbahpfimknrx, In Quarantäne, 51, 237879, , , , , D0997AEE476FE52FD5C60864FE74D6A7, 3FE543604D47F5E03F778CF0444ED0153FAC4780070EA342D9CEC5117C1CDFD7
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{FC086551-083A-492E-A955-26482C0B8026}\xnofoeiifgfmfmkfdhbjgmmgdpolhoafiml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , 68BB2F3EF68311E8461362D4517B48BD, C9094F889D33B2B34B2DD74D65488D42AF2107530240BE935738BF5DEE1A018A
PUP.Optional.DownloadProtect, C:\Windows\Installer\{FC086551-083A-492E-A955-26482C0B8026}\cnofoeiifgfmfmkfdhbjgmmgdpolhoafirx, In Quarantäne, 51, 237879, , , , , E933B2D7A907369C3D540759121E55B9, 56E135A4F9DE32364B34260D83B921E107E31A9E7AA27A212EE8644B0E0D87D9
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{FD01BE00-3ADA-4422-978C-EA2DB1759C47}\xgehggfnmgnliocoigncnjibhgmmahjhhml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , 68C43013941B2FC177245D438ED5A7E7, E29C6934F0849CD5F96615CBFFD8020871B52EF982A4B161398387CFA2643AA2
PUP.Optional.DownloadProtect, C:\Windows\Installer\{FD01BE00-3ADA-4422-978C-EA2DB1759C47}\cgehggfnmgnliocoigncnjibhgmmahjhhrx, In Quarantäne, 51, 237879, , , , , 3E747CB664B5DB7028606B7E5EACB1DE, E80F6C80980311618FF829700E491137013AD84E46F705CC72F5595CAB66DE44
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{FD55318E-4C57-4832-882B-D28A2CCE613E}\xpcmomikekdgpinabjhmhcepgabmnlnemml, In Quarantäne, 51, 237879, 1.0.62332, , ame, , 46F99183FD87FE68E6DBB9A88D515E3E, 901DF98D5F75E9B80B15F2FFC6E5DF0EB07927A438604CAC76ED4862CED6203C
PUP.Optional.DownloadProtect, C:\Windows\Installer\{FD55318E-4C57-4832-882B-D28A2CCE613E}\cpcmomikekdgpinabjhmhcepgabmnlnemrx, In Quarantäne, 51, 237879, , , , , 5E9C3E95264C684F88F565B90EC37E9D, EF88B5662DCF8A8679971034017A69134698F4D3AEF72E23434D97A227FC092B
PUP.Optional.DownloadProtect.ChrPRST, C:\WINDOWS\INSTALLER\{8DBB0114-5026-497D-A17A-21D9D0AA8D24}\{39689FBA-DA6A-44B4-9D2A-04B052B0CF6B}.xpi, In Quarantäne, 5639, 255640, 1.0.62332, , ame, , BF760A631867F1EF4889E34AE0CBA345, AD5AEA59965B07C87FD9640DA556BABA63047D461B64D19F61079CD700AC0566
PUP.Optional.DownloadProtect.ChrPRST, C:\PROGRAMDATA\NTUSER.POL, In Quarantäne, 5639, -1, 0.0.0, , action, , D02FD9B93B16800F80F77FD2DE49C803, 2F5BE93A27D085AF13B454C6DD3AA40C4EC48019C805353DC977DF39427950F5
PUP.Optional.DownloadProtect.ChrPRST, C:\WINDOWS\SYSTEM32\GROUPPOLICY\MACHINE\REGISTRY.POL, In Quarantäne, 5639, -1, 0.0.0, , action, , 77807F4B4BBD909F1BBAEF766C15E2C2, 533A662F4D839C1D7BD56116D22CEB947867CD4A2574C7660D82F1A06935C68D
Trojan.DownloadProtect, C:\WINDOWS\SYSTEM32\TASKS\BenutzerdienstfürZertifikatverteilung, In Quarantäne, 294, 910814, , , , , 8E5B8E9A9E46523D165B064DF441AE88, 65AB648466AAFCA9B9AE01FBDCAAC67A667E9F9A3E88AABA5F7DC50369544A76
Trojan.DownloadProtect, C:\WINDOWS\INSTALLER\{6A02B9E5-0F61-4E89-B30A-0938191D102F}\{54F788DE-8BE9-45E3-8D22-0A61555F5203}, In Quarantäne, 294, 910814, 1.0.62332, , ame, , 5F02C4E1BD6DA06DA166D377F7D8AE02, A51EFBCB404DFF80C1E8F6BDC73A74ABB1C357EECEB1130727F2866BE9E38193
Trojan.DownloadProtect, C:\USERS\APPYT\APPDATA\LOCAL\MICROSOFT\EDGE\USER DATA\DEFAULT\EXTENSIONS\MLDHFEFACMADCHENDJIGHMJPPDBLMCLE\2.4.11_0\CONFIG.JSON, In Quarantäne, 294, 910630, 1.0.62332, , ame, , A442F7C0FB92E2148F3C80D4E1C88A67, 50AFE42D12523F08299C6E6C48259D933E5858F6AD9FD18079C4602D502D7010
Trojan.DownloadProtect, C:\WINDOWS\SYSTEM32\TASKS\MUP QWAVE-Treiber Automatische, In Quarantäne, 294, 910813, , , , , 5A1D0A30B4EB11387FCBB9F68D40F98C, 019EF4EEE5AA54571042C35D509E583987ECDDD5384B9E16214321F0D4409950
Trojan.DownloadProtect, C:\PROGRAMDATA\PACKAGE CACHE\{11DAD822-AE3A-44B3-AEFF-29CCC88CC081}\{383E4551-0284-4DB4-B643-D3EB45FE542D}, In Quarantäne, 294, 910813, 1.0.62332, , ame, , 7EE64B020D61466DD40C9D74A88D4AB3, 8C2B1CA1CC99EFB68476A14F85662C3ED7FA0746A32BB86699F2120FA4E6D253
Trojan.DownloadProtect, C:\WINDOWS\SYSTEM32\GROUPPOLICY\MACHINE\REGISTRY.POL, In Quarantäne, 294, 910630, , , , , 77807F4B4BBD909F1BBAEF766C15E2C2, 533A662F4D839C1D7BD56116D22CEB947867CD4A2574C7660D82F1A06935C68D
Trojan.DownloadProtect, C:\USERS\APPYT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\EXTENSIONS\JMJCJNDFPLLHNJFIKJOHEIDBENCKBFPP\2.4.11_0\CONFIG.JSON, In Quarantäne, 294, 910630, 1.0.62332, , ame, , A442F7C0FB92E2148F3C80D4E1C88A67, 50AFE42D12523F08299C6E6C48259D933E5858F6AD9FD18079C4602D502D7010
PUP.Optional.Reimage, C:\USERS\APPYT\DOWNLOADS\REIMAGEREPAIR (1).EXE, In Quarantäne, 366, 331559, 1.0.62332, , ame, , F5AF9D859C9A031AB6BEA66048FAB6E1, 4EFD1BC1BDC12DA1BBDC597CF3F37F0C65E582F42E353CF781AC1FE422DFA68C
PUP.Optional.Outbyte, C:\USERS\APPYT\DOWNLOADS\LOGITECH-LOGITECH-HD-PRO-WEBCAM-C920-OUTBYTE-DRIVER-UPDATER.EXE, In Quarantäne, 1426, 799275, 1.0.62332, , ame, , 781CC94FF9F50289AF509523204A876A, B0FA9B2CA30DD924525B39BD4A045E973F12CC816473002A7C00CDE20BE76ACB
PUP.Optional.Reimage, C:\USERS\APPYT\DOWNLOADS\REIMAGEREPAIR.EXE, In Quarantäne, 366, 331559, 1.0.62332, , ame, , F5AF9D859C9A031AB6BEA66048FAB6E1, 4EFD1BC1BDC12DA1BBDC597CF3F37F0C65E582F42E353CF781AC1FE422DFA68C
PUP.Optional.ChipDe, C:\USERS\APPYT\DOWNLOADS\SCRCPY _HQOJZ.EXE, In Quarantäne, 593, 562568, 1.0.62332, , ame, , 40CEADA1CF013FF744F6B2D5F9582522, 279BAA05C06724E54B09AADB71D7214D0D5C97A023E490A157414B2F6F40BB24
Physischer Sektor: 0
(keine bösartigen Elemente erkannt)
WMI: 0
(keine bösartigen Elemente erkannt)
(end)
|
|
15.11.2022, 22:13
| #6 |
| /// TB-Ausbilder | Programm versucht automatisch Chrome Extension zu installieren (web safety) Gut gemacht. Da wurde schon ein Großteil von MBAM und AdwCleaner entfernt. Nun folgt ein Fix mit FRST sowie ein Kontrollscan mit EEK. Schritt 1 WARNUNG AN ALLE MITLESER !!! Dieses FRST-Script ist ausschließlich für diesen Nutzer gedacht und sollte niemals 1:1 für ein anderes System verwendet werden!
Schritt 2 Führe Emsisoft Emergency Kit (EEK) gemäß der bebilderten Anleitung aus und poste abschließend die Logdatei. Bitte poste mit deiner nächsten Antwort:
|
|
19.11.2022, 21:46
| #7 |
| /// TB-Ausbilder | Programm versucht automatisch Chrome Extension zu installieren (web safety) Fehlende Rückmeldung Dieses Thema wurde aus unseren Abos gelöscht. Somit bekommen wir keine Benachrichtigung über neue Antworten. Solltest Du das Thema erneut brauchen, schicke uns bitte eine Erinnerung inklusive Link zum Thema. Hinweis: Das Verschwinden der Symptome bedeutet nicht, dass Dein Rechner schon sauber ist. Jeder andere bitte hier klicken und ein eigenes Thema erstellen! |
|
10.12.2022, 20:21
| #8 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Programm versucht automatisch Chrome Extension zu installieren (web safety) Thread wieder offen
__________________ Logfiles bitte immer in CODE-Tags posten |
|
11.12.2022, 15:34
| #9 |
| | Programm versucht automatisch Chrome Extension zu installieren (web safety) Vielen Dank fürs wieder öffnen. Und vielen Dank für eure Hilfe! Ich bin total lost.... Hier die 2 Logs. Code:
ATTFilter Entfernungsergebnis von Farbar Recovery Scan Tool (x64) Version: 04-12-2022
durchgeführt von appyt (10-12-2022 19:45:26) Run:1
Gestartet von C:\Users\appyt\Downloads
Geladene Profile: appyt
Start-Modus: Normal
==============================================
fixlist Inhalt:
*****************
Start::
SystemRestore: On
CreateRestorePoint:
CloseProcesses:
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Beschränkung <==== ACHTUNG
HKU\S-1-5-21-3349990796-3301203750-1932007998-1001\...\RunOnce: [Delete Cached Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\appyt\AppData\Local\Microsoft\OneDrive\Update\OneDriveSetup.exe" (Keine Datei)
HKU\S-1-5-21-3349990796-3301203750-1932007998-1001\...\RunOnce: [Delete Cached Standalone Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\appyt\AppData\Local\Microsoft\OneDrive\StandaloneUpdater\OneDriveSetup.exe" (Keine Datei)
HKU\S-1-5-21-3349990796-3301203750-1932007998-1001\...\RunOnce: [Uninstall 22.217.1016.0002] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\appyt\AppData\Local\Microsoft\OneDrive\22.217.1016.0002" (Keine Datei)
HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] ->
Policies: C:\ProgramData\NTUSER.pol: Beschränkung <==== ACHTUNG
HKLM\SOFTWARE\Policies\Microsoft\Edge: Beschränkung <==== ACHTUNG
CHR HKLM-x32\...\Chrome\Extension: [mfhcmdonhekjhfbjmeacdjbhlfgpjabp]
S3 WinRing0_1_2_0; \??\C:\Users\appyt\AppData\Local\Temp\tmpC372.tmp [X] <==== ACHTUNG
S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X]
C:\Program Files (x86)\Lavasoft
C:\ProgramData\Application Data\Lavasoft
C:\ProgramData\Lavasoft
C:\Users\AllUserName\AppData\Local\Lavasoft
C:\Users\AllUserName\AppData\Roaming\Lavasoft
DeleteKey: HKCU\Software\Lavasoft
DeleteKey: HKLM\Software\Wow6432Node\Lavasoft
C:\ProgramData\ntuser.pol
C:\WINDOWS\system32\GroupPolicy\Machine
C:\WINDOWS\system32\GroupPolicy\GPT.ini
C:\WINDOWS\SysWOW64\GroupPolicy\Machine
C:\WINDOWS\SysWOW64\GroupPolicy\GPT.ini
DeleteKey: HKLM\SOFTWARE\Policies\Google
DeleteKey: HKLM\SOFTWARE\Policies\Mozilla
DeleteKey: HKLM\SOFTWARE\Policies\Microsoft\Edge
DeleteKey: HKLM\SOFTWARE\Policies\Microsoft\Windows Defender
C:\Users\AllUserName\AppData\Roaming\npm
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Node.js
C:\Program Files (x86)\nodejs
DeleteKey: HKLM\SOFTWARE\Node.js
DeleteKey: HKLM\SOFTWARE\WOW6432Node\Node.js
DeleteKey: HKLM\SOFTWARE\Classes\Installer\Products\4D45993E1218CF443A3DFD6652D48B19
DeleteKey: HKLM\SOFTWARE\Classes\Installer\Products\27AC50E0DD8DF2342ACC8800434A5877
DeleteKey: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\4D45993E1218CF443A3DFD6652D48B19
DeleteKey: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\27AC50E0DD8DF2342ACC8800434A5877
DeleteKey: HKU\.DEFAULT\Software\Node.js
DeleteKey: HKCU\SOFTWARE\Node.js
DeleteKey: HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{E39954D4-8121-44FC-A3D3-DF66254DB891}
DeleteKey: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WINEVT\Publishers\{77754e9b-264b-4d8d-b981-e4135c1ecb0c}
DeleteKey: HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Perflib\_V2Providers\{793c9b44-3d6b-4f57-b5d7-4ff80adcf9a2}
DeleteKey: HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows NT\CurrentVersion\Perflib\_V2Providers\{793c9b44-3d6b-4f57-b5d7-4ff80adcf9a2}
CMD: dir "%windir%\installer\*.xpi" /S
CMD: dir "%windir%\installer\c*rx" /S
CMD: dir "%windir%\installer\x*ml" /S
CMD: dir "%windir%\installer\{*-*-*-*-*}" /S
CMD: dir "%ProgramData%\Package Cache\{*-*-*-*-*}" /S
startpowershell:
Function Remove-all-windefend-excludes {
$Paths=(Get-MpPreference).ExclusionPath
$Extensions=(Get-MpPreference).ExclusionExtension
$Processes=(Get-MpPreference).ExclusionProcess
foreach ($Path in $Paths) { Remove-MpPreference -ExclusionPath $Path -force}
foreach ($Extension in $Extensions) { Remove-MpPreference -ExclusionExtension $Extension -force}
foreach ($Process in $Processes) { Remove-MpPreference -ExclusionProcess $Process -force}
}
Set-MpPreference -DisableAutoExclusions $true -Force
Remove-all-windefend-excludes
endpowershell:
CMD: netsh winsock reset
CMD: netsh int ip reset
CMD: ipconfig /flushdns
CMD: netsh advfirewall reset
CMD: netsh advfirewall set allprofiles state ON
CMD: netsh winhttp reset proxy
CMD: Bitsadmin /Reset /Allusers
CMD: "%WINDIR%\SYSTEM32\lodctr.exe" /R
CMD: "%WINDIR%\SysWOW64\lodctr.exe" /R
CMD: "%WINDIR%\SYSTEM32\lodctr.exe" /R
CMD: "%WINDIR%\SysWOW64\lodctr.exe" /R
CMD: slmgr /dli
Hosts:
RemoveProxy:
EmptyTemp:
End::
*****************
SystemRestore: On => abgeschlossen
Wiederherstellungspunkt wurde erfolgreich erstellt.
Prozesse erfolgreich geschlossen.
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender => konnte nicht entfernt werden, Schlüssel könnte geschützt sein
"HKU\S-1-5-21-3349990796-3301203750-1932007998-1001\Software\Microsoft\Windows\CurrentVersion\RunOnce\\Delete Cached Update Binary" => nicht gefunden
"HKU\S-1-5-21-3349990796-3301203750-1932007998-1001\Software\Microsoft\Windows\CurrentVersion\RunOnce\\Delete Cached Standalone Update Binary" => nicht gefunden
"HKU\S-1-5-21-3349990796-3301203750-1932007998-1001\Software\Microsoft\Windows\CurrentVersion\RunOnce\\Uninstall 22.217.1016.0002" => nicht gefunden
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Authentication\Credential Providers\{C885AA15-1764-4293-B82A-0586ADD46B35} => erfolgreich entfernt
C:\ProgramData\NTUSER.pol => erfolgreich verschoben
HKLM\SOFTWARE\Policies\Microsoft\Edge => erfolgreich entfernt
HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\mfhcmdonhekjhfbjmeacdjbhlfgpjabp => erfolgreich entfernt
HKLM\System\CurrentControlSet\Services\WinRing0_1_2_0 => erfolgreich entfernt
WinRing0_1_2_0 => Dienst erfolgreich entfernt
HKLM\System\CurrentControlSet\Services\WinSetupMon => erfolgreich entfernt
WinSetupMon => Dienst erfolgreich entfernt
"C:\Program Files (x86)\Lavasoft" => nicht gefunden
C:\ProgramData\Application Data\Lavasoft => erfolgreich verschoben
"C:\ProgramData\Lavasoft" => nicht gefunden
"C:\Users\ProgramData\AppData\Local\Lavasoft" => nicht gefunden
"C:\Users\appyt\AppData\Local\Lavasoft" => nicht gefunden
"C:\Users\Default\AppData\Local\Lavasoft" => nicht gefunden
"C:\Users\Public\AppData\Local\Lavasoft" => nicht gefunden
"C:\Users\ProgramData\AppData\Roaming\Lavasoft" => nicht gefunden
"C:\Users\appyt\AppData\Roaming\Lavasoft" => nicht gefunden
"C:\Users\Default\AppData\Roaming\Lavasoft" => nicht gefunden
"C:\Users\Public\AppData\Roaming\Lavasoft" => nicht gefunden
HKCU\Software\Lavasoft => erfolgreich entfernt
HKLM\Software\Wow6432Node\Lavasoft => erfolgreich entfernt
"C:\ProgramData\ntuser.pol" => nicht gefunden
C:\WINDOWS\system32\GroupPolicy\Machine => erfolgreich verschoben
C:\WINDOWS\system32\GroupPolicy\GPT.ini => erfolgreich verschoben
"C:\WINDOWS\SysWOW64\GroupPolicy\Machine" => nicht gefunden
C:\WINDOWS\SysWOW64\GroupPolicy\GPT.ini => erfolgreich verschoben
HKLM\SOFTWARE\Policies\Google => erfolgreich entfernt
HKLM\SOFTWARE\Policies\Mozilla => nicht gefunden
HKLM\SOFTWARE\Policies\Microsoft\Edge => nicht gefunden
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender => erfolgreich entfernt
"C:\Users\ProgramData\AppData\Roaming\npm" => nicht gefunden
C:\Users\appyt\AppData\Roaming\npm => erfolgreich verschoben
"C:\Users\Default\AppData\Roaming\npm" => nicht gefunden
"C:\Users\Public\AppData\Roaming\npm" => nicht gefunden
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Node.js => erfolgreich verschoben
C:\Program Files (x86)\nodejs => erfolgreich verschoben
HKLM\SOFTWARE\Node.js => nicht gefunden
HKLM\SOFTWARE\WOW6432Node\Node.js => erfolgreich entfernt
HKLM\SOFTWARE\Classes\Installer\Products\4D45993E1218CF443A3DFD6652D48B19 => nicht gefunden
HKLM\SOFTWARE\Classes\Installer\Products\27AC50E0DD8DF2342ACC8800434A5877 => erfolgreich entfernt
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\4D45993E1218CF443A3DFD6652D48B19 => nicht gefunden
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\27AC50E0DD8DF2342ACC8800434A5877 => erfolgreich entfernt
HKU\.DEFAULT\Software\Node.js => nicht gefunden
HKCU\SOFTWARE\Node.js => erfolgreich entfernt
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{E39954D4-8121-44FC-A3D3-DF66254DB891} => nicht gefunden
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WINEVT\Publishers\{77754e9b-264b-4d8d-b981-e4135c1ecb0c} => erfolgreich entfernt
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Perflib\_V2Providers\{793c9b44-3d6b-4f57-b5d7-4ff80adcf9a2} => erfolgreich entfernt
HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows NT\CurrentVersion\Perflib\_V2Providers\{793c9b44-3d6b-4f57-b5d7-4ff80adcf9a2} => nicht gefunden
========= dir "%windir%\installer\*.xpi" /S =========
Datenträger in Laufwerk C: ist Windows
Volumeseriennummer: EEEC-9297
========= Ende von CMD: =========
========= dir "%windir%\installer\c*rx" /S =========
Datenträger in Laufwerk C: ist Windows
Volumeseriennummer: EEEC-9297
========= Ende von CMD: =========
========= dir "%windir%\installer\x*ml" /S =========
Datenträger in Laufwerk C: ist Windows
Volumeseriennummer: EEEC-9297
========= Ende von CMD: =========
========= dir "%windir%\installer\{*-*-*-*-*}" /S =========
Datenträger in Laufwerk C: ist Windows
Volumeseriennummer: EEEC-9297
Verzeichnis von C:\WINDOWS\installer
25.01.2021 11:16 <DIR> {0E05CA72-D8DD-432F-A2CC-880034A48577}
08.06.2020 09:45 <DIR> {3A5141D4-47DB-4302-9B1C-272BE585BC8A}
30.12.2020 08:11 <DIR> {3C1972F6-E411-4B54-AD4C-EF24894301D6}
16.10.2020 10:21 <DIR> {4487026C-A32C-4FF5-858E-8DB890814949}
09.11.2021 15:30 <DIR> {68C9C2A4-C212-4310-AB68-12F97050A416}
10.01.2021 21:02 <DIR> {924D3ABC-FC75-4042-9DDB-FB846A45848D}
06.10.2022 15:30 <DIR> {AC76BA86-0804-1033-1959-018244601032}
01.12.2022 14:48 <DIR> {AC76BA86-1031-1033-7760-BC15014EA700}
12.11.2022 15:20 <DIR> {DE181B35-ACEF-4DB0-86D9-731D5767ABB1}
30.12.2020 23:10 <DIR> {F9C5C994-F6B9-4D75-B3E7-AD01B84073E9}
0 Datei(en), 0 Bytes
Anzahl der angezeigten Dateien:
0 Datei(en), 0 Bytes
10 Verzeichnis(se), 402.067.148.800 Bytes frei
========= Ende von CMD: =========
========= dir "%ProgramData%\Package Cache\{*-*-*-*-*}" /S =========
Datenträger in Laufwerk C: ist Windows
Volumeseriennummer: EEEC-9297
Verzeichnis von C:\ProgramData\Package Cache
22.12.2021 05:04 <DIR> {050d4fc8-5d48-4b8f-8972-47c82c46020f}
25.01.2021 11:15 <DIR> {0E05CA72-D8DD-432F-A2CC-880034A48577}
30.12.2020 23:10 <DIR> {43a03b9c-4770-409c-a999-587b60700b63}
22.12.2021 05:04 <DIR> {a9cfe9c7-e54f-46cd-9c5c-542ff8e3e8c4}
22.12.2021 05:04 <DIR> {b2d0f752-adc5-496e-8f70-8669de01f746}
22.12.2021 05:04 <DIR> {f65db027-aff3-4070-886a-0d87064aabb1}
0 Datei(en), 0 Bytes
Anzahl der angezeigten Dateien:
0 Datei(en), 0 Bytes
6 Verzeichnis(se), 402.067.148.800 Bytes frei
========= Ende von CMD: =========
========= Powershell: =========
========= Ende von Powershell: =========
========= netsh winsock reset =========
Der Winsock-Katalog wurde zurckgesetzt.
Sie mssen den Computer neu starten, um den Vorgang abzuschlieáen.
========= Ende von CMD: =========
========= netsh int ip reset =========
Depotweiterleitung wird zurckgesetzt... OK
Depot wird zurckgesetzt... OK
Steuerungsprotokoll wird zurckgesetzt... OK
Echosequenzanforderung wird zurckgesetzt... OK
Global wird zurckgesetzt... OK
Schnittstelle wird zurckgesetzt... OK
Anycastadresse wird zurckgesetzt... OK
Multicastadresse wird zurckgesetzt... OK
Unicastadresse wird zurckgesetzt... OK
Nachbar wird zurckgesetzt... OK
Pfad wird zurckgesetzt... OK
Potentiell wird zurckgesetzt... OK
Pr„fixrichtlinie wird zurckgesetzt... OK
Proxynachbar wird zurckgesetzt... OK
Route wird zurckgesetzt... OK
Standordpr„fix wird zurckgesetzt... OK
Unterschnittstelle wird zurckgesetzt... OK
Reaktivierungsmuster wird zurckgesetzt... OK
Nachbar aufl”sen wird zurckgesetzt... OK
wird zurckgesetzt... OK
wird zurckgesetzt... OK
wird zurckgesetzt... OK
wird zurckgesetzt... OK
wird zurckgesetzt... Fehler
Zugriff verweigert
wird zurckgesetzt... OK
wird zurckgesetzt... OK
wird zurckgesetzt... OK
wird zurckgesetzt... OK
wird zurckgesetzt... OK
wird zurckgesetzt... OK
wird zurckgesetzt... OK
wird zurckgesetzt... OK
Starten Sie den Computer neu, um die Aktion abzuschlieáen.
========= Ende von CMD: =========
========= ipconfig /flushdns =========
Windows-IP-Konfiguration
Der DNS-Aufl”sungscache wurde geleert.
========= Ende von CMD: =========
========= netsh advfirewall reset =========
OK.
========= Ende von CMD: =========
========= netsh advfirewall set allprofiles state ON =========
OK.
========= Ende von CMD: =========
========= netsh winhttp reset proxy =========
Aktuelle WinHTTP-Proxyeinstellungen:
DirectAccess (kein Proxyserver).
========= Ende von CMD: =========
========= Bitsadmin /Reset /Allusers =========
BITSADMIN version 3.0
BITS administration utility.
(C) Copyright Microsoft Corp.
{08CD69B0-1A1A-43F8-8DF1-A8DC52336D4E} canceled.
1 out of 1 jobs canceled.
========= Ende von CMD: =========
========= "%WINDIR%\SYSTEM32\lodctr.exe" /R =========
Info: Die Leistungsindikatoreinstellung konnte erfolgreich aus dem Systemsicherungsspeicher neu erstellt werden.
========= Ende von CMD: =========
========= "%WINDIR%\SysWOW64\lodctr.exe" /R =========
Info: Die Leistungsindikatoreinstellung konnte erfolgreich aus dem Systemsicherungsspeicher neu erstellt werden.
========= Ende von CMD: =========
========= "%WINDIR%\SYSTEM32\lodctr.exe" /R =========
Info: Die Leistungsindikatoreinstellung konnte erfolgreich aus dem Systemsicherungsspeicher neu erstellt werden.
========= Ende von CMD: =========
========= "%WINDIR%\SysWOW64\lodctr.exe" /R =========
Info: Die Leistungsindikatoreinstellung konnte erfolgreich aus dem Systemsicherungsspeicher neu erstellt werden.
========= Ende von CMD: =========
========= slmgr /dli =========
0
========= Ende von CMD: =========
C:\Windows\System32\Drivers\etc\hosts => erfolgreich verschoben
Hosts erfolgreich wiederhergestellt.
========= RemoveProxy: =========
"HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => erfolgreich entfernt
"HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => erfolgreich entfernt
"HKU\S-1-5-21-3349990796-3301203750-1932007998-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => erfolgreich entfernt
"HKU\S-1-5-21-3349990796-3301203750-1932007998-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => erfolgreich entfernt
========= Ende von RemoveProxy: =========
=========== EmptyTemp: ==========
FlushDNS => abgeschlossen
BITS transfer queue => 1310720 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 207222569 B
Java, Discord, Steam htmlcache, WinHttpAutoProxySvc/winhttp *.cache => 770523284 B
Windows/system/drivers => 27344189 B
Edge => 0 B
Chrome => 396207709 B
Firefox => 0 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 931624 B
systemprofile32 => 931624 B
LocalService => 1039884 B
NetworkService => 1206994 B
appyt => 71462037 B
RecycleBin => 4537125659 B
EmptyTemp: => 5.6 GB temporäre Dateien entfernt.
================================
Ergebnis der geplanten Datei-Verschiebungen (Start-Modus: Normal) (Datum&Uhrzeit: 10-12-2022 19:51:55)
Ergebnis der geplanten Schlüssel-Entfernung nach dem Neustart:
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender => erfolgreich entfernt
==== Ende vom Fixlog 19:51:55 ====
Code:
ATTFilter Emsisoft Emergency Kit – Version 2022.12
Letztes Update: 10.12.2022 20:08:10
Eigene DESKTOP-Q7BCFQ5\appyt
DESKTOP-Q7BCFQ5
Windows 11x64
Scan-Einstellungen:
Scan-Methode: Malware-Scan
Objekte: Speicher, Spuren, Dateien
PUPs-Erkennung: An
Archive scannen: Aus
E-Mail-Archive scannen: Aus
ADS-Scan: An
Scan-Beginn: 10.12.2022 20:08:35
C:\Users\appyt\Downloads\audacity2-4-2.exe erkannt: Application.Downloader (A) [305107]
Gescannt: 81287
Gefunden 1
Scan-Ende: 10.12.2022 20:12:33
Scan-Zeit: 0:03:58
C:\Users\appyt\Downloads\audacity2-4-2.exe Application.Downloader (A)
Gelöscht 1
|
|
11.12.2022, 21:36
| #10 | |
| /// TB-Ausbilder | Programm versucht automatisch Chrome Extension zu installieren (web safety) Gut gemacht. Hiermit hast du dir die Malware auf dein System geholt: Zitat:
Du solltest besser auf deine Downloadquellen achten! Eine kurze Information vorab:  Downloadquellen Die folgenden Seiten verteilen Software häufig mit einem sog. "Installer", mit dem Potentiell Unerwünschte Programme (PUP) oder Adware installiert werden können. Vereinzelt beinhalten diese "Installer" sogar Trojaner. Vermeide daher unbedingt die folgenden Seiten:
Für Windows gibt es seit einiger Zeit einen brauchbaren Paketmanager, der mit einfachen Befehlen es erlaubt, automatisiert Software herunterzuladen und zu installieren. Das erspart eine Menge Arbeit, denn ohne einen Paketmanager muss man jedes Programm selbst prüfen und separat manuell updaten, vorher manuell noch runterladen etc. pp. - siehe auch --> chocolatey Paketmanager für Windows Wir empfehlen dringend, alle Programme, sofern verfügbar, über chocolatey zu installieren. Falls du schon mit Linux zu tun hattest, wird dir die Syntax sehr vertraut sein. Die FAQs zu choco findest du da --> Chocolatey: Häufig gestellte Fragen (englisch) Selbstverständlich darfst du auch Fragen zu chocolatey im o.g. Thread zu chocolatey stellen. Für den seltenen Fall, dass du das benötigte Programm nicht im repository von chocolatey findest: Lade diese Software immer direkt beim jeweiligen Hersteller / Entwickler. Schritt 1 Führe ESET Online Scanner gemäß der bebilderten Anleitung aus und poste abschließend die Logdatei. Schritt 2
Bitte poste mit deiner nächsten Antwort:
|
|
16.12.2022, 22:00
| #11 |
| /// TB-Ausbilder | Programm versucht automatisch Chrome Extension zu installieren (web safety) Fehlende Rückmeldung Dieses Thema wurde aus unseren Abos gelöscht. Somit bekommen wir keine Benachrichtigung über neue Antworten. Solltest Du das Thema erneut brauchen, schicke uns bitte eine Erinnerung inklusive Link zum Thema. Hinweis: Das Verschwinden der Symptome bedeutet nicht, dass Dein Rechner schon sauber ist. Jeder andere bitte hier klicken und ein eigenes Thema erstellen! |
|
| Themen zu Programm versucht automatisch Chrome Extension zu installieren (web safety) |
| antivirus, backdoor, einstellungen, entfernen, google, hijack, home, internet, internet explorer, netzwerk, nvcontainer, performance, problem, programm, prozesse, realtek, registry, rundll, scan, software, svchost.exe, system, trojaner, udp, updates, windows |
Linear-Darstellung
