| |
| |||||||
Überwachung, Datenschutz und Spam: Laptop Win11Home Email-Adresse Passwort wurde geändert nicht von mirWindows 7 Fragen zu Verschlüsselung, Spam, Datenschutz & co. sind hier erwünscht. Hier geht es um Abwehr von Keyloggern oder aderen Spionagesoftware wie Spyware und Adware. Themen zum "Trojaner entfernen" oder "Malware Probleme" dürfen hier nur diskutiert werden. Benötigst du Hilfe beim Trojaner entfernen oder weil du dir einen Virus eingefangen hast, erstelle ein Thema in den oberen Bereinigungsforen. |
 |
20.02.2024, 16:44
| #1 |
 |  Laptop Win11Home Email-Adresse Passwort wurde geändert nicht von mir Hallo mein Problem ist das mein E-mail Passwort geändert wurde. Jedoch nicht von mir. Ich habe wieder Zugriff auf das E-mail konto durch Passwort vergessen anklicken und dann neues gemacht. Ich habe einen Accound auf der Plattform Linked in. Dort wurde auch das Passwort geändert. Ich komme da nicht mehr rein. Das war am 12.2.24. Browser Chrom Windows ungefährer Ort Dallas, Texas. Pw von Email wurde am 15.02.24 geändert. Mein Norton hat nichts gefunden. Habe Passwörter geändert von E-mails und Konto usw. Adw cleaner habe ich von File Ponny suchen lassen, hatte aber nichts gefunden. Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 19.02.2024 02
durchgeführt von Antje (Administrator) auf LAPTOP-OR9MPF2A (HP HP Laptop 15-da0xxx) (20-02-2024 15:50:44)
Gestartet von C:\Users\Antje\Downloads\FRST64(1).exe
Geladene Profile: Antje
Plattform: Microsoft Windows 11 Home Version 23H2 22631.3155 (X64) Sprache: Deutsch (Deutschland)
Standard-Browser: FF
Start-Modus: Normal
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
(Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe <2>
(C:\Program Files (x86)\TeamViewer\TeamViewer.exe ->) (TeamViewer Germany GmbH -> ) C:\Program Files (x86)\TeamViewer\crashpad_handler.exe
(C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
(C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\tv_w32.exe
(C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\tv_x64.exe
(C:\Program Files\WindowsApps\MicrosoftTeams_24004.1405.2679.618_x64__8wekyb3d8bbwe\msteams.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\121.0.2277.128\msedgewebview2.exe <13>
(DriverStore\FileRepository\igdlh64.inf_amd64_31f4e71363bfa9b6\igfxCUIService.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_31f4e71363bfa9b6\igfxEM.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <5>
(explorer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\msinfo32.exe
(explorer.exe ->) (Realtek Semiconductor Corp. -> Realtek) C:\Program Files (x86)\Realtek\PCIE Wireless LAN\RtlS5Wake\RtlS5Wake.exe
(Haufe-Lexware GmbH & Co. KG -> Haufe-Lexware GmbH & Co. KG) C:\Program Files (x86)\Lexware\Update Manager\LxUpdateManager.exe
(Hewlett-Packard Company -> Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(HP Inc. -> HP Inc.) C:\Program Files (x86)\HP\HP System Event\HPMSGSVC.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <21>
(SECOMN64.exe ->) (Sound Research Corporation -> Sound Research, Corp.) C:\Windows\System32\SECOCL64.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Conexant Systems LLC -> Conexant Systems LLC.) C:\Windows\System32\CxAudioSvc.exe
(services.exe ->) (Conexant Systems LLC -> Synaptics Incorporated.) C:\Windows\System32\SynAudSrv.exe
(services.exe ->) (FOXIT SOFTWARE INC. -> Foxit Software Inc.) C:\Program Files (x86)\Foxit Software\Foxit Reader\FoxitPDFReaderUpdateService.exe
(services.exe ->) (geek software GmbH -> geek software GmbH) C:\Program Files\PDF24\pdf24.exe <2>
(services.exe ->) (Haufe-Lexware GmbH & Co. KG -> Haufe-Lexware GmbH & Co. KG) C:\Program Files (x86)\Lexware\Update Service\Hmg.InstallationService.Service.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_21306a77b30fd6e0\esif_uf.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorac.inf_amd64_ba273d0ffb93e225\RstMwService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\lms.inf_amd64_fddb643595e0b8d0\LMS.exe
(services.exe ->) (Intel Corporation -> Intel(R) Corporation) C:\Windows\SysWOW64\XtuService.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_7c484f80872e1cd8\jhi_service.exe
(services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_31f4e71363bfa9b6\igfxCUIService.exe
(services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_31f4e71363bfa9b6\IntelCpHDCPSvc.exe
(services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_31f4e71363bfa9b6\IntelCpHeciSvc.exe
(services.exe ->) (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor Corp.) C:\Program Files (x86)\Realtek\REALTEK Bluetooth\BTDevMgr.exe
(services.exe ->) (NortonLifeLock Inc. -> NortonLifelock Inc.) C:\Program Files\Norton Security\{80769C27-3707-491C-9C88-A7F355234C1A}\Engine\22.23.10.10\NortonSecurity.exe <2>
(services.exe ->) (NortonLifeLock Inc. -> NortonLifeLock Inc.) C:\Program Files\Norton Security\{80769C27-3707-491C-9C88-A7F355234C1A}\Engine\22.23.10.10\nsWscSvc.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor Corp.) C:\Windows\RtkBtManServ.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_bb0c442560f99618\RtkAudUService64.exe <2>
(services.exe ->) (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.) C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe
(services.exe ->) (Samsung Electronics Co., Ltd. -> DEVGURU Co., LTD.) C:\Program Files\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe
(services.exe ->) (Sound Research Corporation -> Sound Research, Corp.) C:\Windows\System32\SECOMN64.exe
(services.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Windows\System32\SynTPEnhService.exe
(services.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(services.exe ->) (TomTom) [Datei ist nicht signiert] C:\Program Files\TomTom HOME\TTHOMEService.exe
(svchost.exe ->) (Adobe Systems Incorporated -> ) C:\Program Files\WindowsApps\ReaderNotificationClient_1.0.4.0_x86__e1rzdqpraam7r\AcrobatNotificationClient.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.21830.0_x64__8wekyb3d8bbwe\HxOutlook.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.21830.0_x64__8wekyb3d8bbwe\HxTsr.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_6.124.1221.0_x64__8wekyb3d8bbwe\GameBar.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_6.124.1221.0_x64__8wekyb3d8bbwe\GameBarFTServer.exe
(svchost.exe ->) (Microsoft Windows -> ) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_424.1301.40.0_x64__cw5n1h2txyewy\Dashboard\WidgetService.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.AppRep.ChxApp_cw5n1h2txyewy\CHXSmartScreen.exe
(SynTPEnhService.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Windows\System32\SynTPEnh.exe
==================== Registry (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_bb0c442560f99618\RtkAudUService64.exe [1253232 2021-03-10] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [RtlS5Wake] => C:\Program Files (x86)\Realtek\PCIE Wireless LAN\RtlS5Wake\RtlS5Wake.exe [2097600 2018-02-23] (Realtek Semiconductor Corp. -> Realtek)
HKLM\...\Run: [PDF24] => C:\Program Files\PDF24\pdf24.exe [613560 2022-11-30] (geek software GmbH -> geek software GmbH)
HKLM-x32\...\Run: [RtlS5Wake] => C:\Program Files (x86)\Realtek\PCIE Wireless LAN\RtlS5Wake\RtlS5Wake.exe [2097600 2018-02-23] (Realtek Semiconductor Corp. -> Realtek)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard Company -> Hewlett-Packard)
HKLM-x32\...\Run: [HPMessageService] => C:\Program Files (x86)\HP\HP System Event\HPMSGSVC.exe [707624 2018-08-08] (HP Inc. -> HP Inc.)
HKLM-x32\...\Run: [LexwareInfoService] => C:\Program Files (x86)\Lexware\Update Manager\LxUpdateManager.exe [408376 2021-09-20] (Haufe-Lexware GmbH & Co. KG -> Haufe-Lexware GmbH & Co. KG)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Beschränkung <==== ACHTUNG
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Beschränkung <==== ACHTUNG
HKU\S-1-5-21-1936258503-905068797-4144163979-1001\...\Run: [MyDriveConnect.exe] => C:\Program Files (x86)\MyDrive Connect\TomTom MyDrive Connect.exe [2229720 2021-09-23] (TomTom International B.V. -> TomTom)
HKU\S-1-5-21-1936258503-905068797-4144163979-1001\...\Run: [HP ENVY 4520 series (NET)] => C:\Program Files\HP\HP ENVY 4520 series\Bin\ScanToPCActivationApp.exe [3770528 2021-11-15] (HP Inc. -> HP Inc.)
HKU\S-1-5-21-1936258503-905068797-4144163979-1001\...\Run: [MicrosoftEdgeAutoLaunch_1A2EFB1748FBD34B52293687A7480B38] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [3788240 2024-02-15] (Microsoft Corporation -> Microsoft Corporation)
HKLM\...\Windows x64\Print Processors\hpfpp092: C:\Windows\System32\spool\prtprocs\x64\hpfpp092.dll [249856 2009-06-09] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Corporation)
HKLM\...\Print\Monitors\HP D711 Status Monitor: C:\WINDOWS\system32\hpinkstsD711LM.dll [393352 2017-03-27] (Hewlett Packard -> HP Inc.)
HKLM\...\Print\Monitors\PCL hpf3l092.dll: C:\WINDOWS\system32\hpf3l092.dll [136704 2009-06-09] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Company)
HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] ->
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {4DF30EBC-97CF-4B76-AF5E-CA7316CCE5A7} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1547208 2024-01-31] (Adobe Inc. -> Adobe Inc.)
Task: {1D73951E-B9D7-4BF5-9A13-763335330F03} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe /taskrestart (Keine Datei)
Task: {2170F5F4-5AEC-4471-9833-C5DC6AD7FD2B} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [136304 2021-03-30] (HP Inc. -> HP Inc.)
Task: {4BDF90F5-6035-4839-993F-8A76C7C98A00} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [930960 2022-05-11] (HP Inc. -> HP Inc.)
Task: {37306F57-D3A8-474F-BD20-718F0553B1D9} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater - Resources => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [930960 2022-05-11] (HP Inc. -> HP Inc.)
Task: {20EF295C-8C8E-49A7-9DFF-E7629684E310} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater - resources updates => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [930960 2022-05-11] (HP Inc. -> HP Inc.)
Task: {A312A709-5789-40AD-AA4A-729107AF6069} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe /L Analysis (Keine Datei)
Task: {9CD620AF-82D4-44B5-9F6A-D0804E05799A} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Product Configurator => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\ProductConfig.exe /noreport (Keine Datei)
Task: {9D39A57D-C79D-4DFF-9864-2A838AD0D8F1} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe (Keine Datei)
Task: {926B2802-5C8F-47A5-8981-8433A1D65DF1} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe /DeviceScanR6 (Keine Datei)
Task: {DC7DE64E-644D-43AD-95C0-AB5B1052F6C1} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_TH5AC2C0J4 => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe /ForDevice:TH5AC2C0J4 (Keine Datei)
Task: {1551BE1B-0130-4182-81A5-6FE21772CAF8} - System32\Tasks\HPCustParticipation HP ENVY 4520 series => C:\Program Files\HP\HP ENVY 4520 series\Bin\HPCustPartic.exe [6439584 2021-11-15] (HP Inc. -> HP Inc.)
Task: {8B6CF4E7-64B0-4883-93BB-CAB3F4A74A71} - System32\Tasks\HPEA3JOBS => C:\Program -> Files\HP\HP ePrint\hpeprint.exe /CheckJobs
Task: {EB7A1AEB-2ADB-4CFB-BC8D-575482CD91E8} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23570432 2023-12-21] (Microsoft Corporation -> Microsoft Corporation)
Task: {1BF3D290-5AA5-4E9E-BD6B-21105AA93EE4} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23570432 2023-12-21] (Microsoft Corporation -> Microsoft Corporation)
Task: {7AC9F048-1BB3-4EF8-AAA1-E0A7ABBFC026} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2209384 2024-01-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {203D74FB-31A2-4C7F-8BD2-1F9A34F49943} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2209384 2024-01-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {91D4DC19-946D-4D17-B07A-0E5928B04E60} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [3513936 2024-01-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {6867AC90-40D4-402E-825E-E8F38A138B0B} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [3513936 2024-01-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {CCDFC0B8-01A3-4E74-A820-4F13F51D269E} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => %SystemRoot%\System32\MbaeParserTask.exe (Keine Datei)
Task: {6047B653-9E2B-4F9E-BB2D-42F91B5BFB4B} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\MusUx_LogonUpdateResults => %systemroot%\system32\MusNotification.exe LogonUpdateResults (Keine Datei)
Task: {EBBC5F07-505C-48FA-90F2-49B80A6FB7CF} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\MusUx_UpdateInterval => %systemroot%\system32\MusNotification.exe Display (Keine Datei)
Task: {6ECC17BA-2F21-4D1D-A937-AF5B7E29ED7A} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot => %systemroot%\system32\MusNotification.exe RebootDialog (Keine Datei)
Task: {DCC4F96D-FB1C-468A-8E0A-0975D46D9C7C} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_AC => %systemroot%\system32\MusNotification.exe /RunOnAC ReadyToReboot (Keine Datei)
Task: {A7BC1BE6-E22A-4D49-9C2D-75BFE3257F5D} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_Battery => %systemroot%\system32\MusNotification.exe /RunOnBattery ReadyToReboot (Keine Datei)
Task: {071A0CAF-202C-479A-842A-14246E469140} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_Broker_Display => %systemroot%\system32\MusNotification.exe Display (Keine Datei)
Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (Keine Datei)
Task: {1F4803DA-E382-4A7D-887B-002F8A77469B} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [671136 2024-02-16] (Mozilla Corporation -> Mozilla Corporation) -> --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {C1D8AD9D-4EB4-4A4F-89D1-5870250AC5A7} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [34720 2024-02-16] (Mozilla Corporation -> Mozilla Foundation)
Task: {B8909364-CD6F-4BA1-8A62-09A128AF1616} - System32\Tasks\Norton Internet Security\Norton Internet Security Online Autofix => C:\Program Files\Norton Security\{80769C27-3707-491C-9C88-A7F355234C1A}\Engine\22.23.10.10\SymErr.exe [379024 2023-11-06] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
Task: {38BDD105-074C-421D-92BA-5BEF77EED6A3} - System32\Tasks\Norton Internet Security\Norton Internet Security Online Error Analyzer => C:\Program Files\Norton Security\{80769C27-3707-491C-9C88-A7F355234C1A}\Engine\22.23.10.10\SymErr.exe [379024 2023-11-06] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
Task: {6F504A7D-2BFE-479E-A788-9F67C3D32041} - System32\Tasks\Norton Internet Security\Norton Internet Security Online Error Processor => C:\Program Files\Norton Security\{80769C27-3707-491C-9C88-A7F355234C1A}\Engine\22.23.10.10\SymErr.exe [379024 2023-11-06] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
Task: {3B76B05C-65A8-4C15-A580-D3B1A919F2EA} - System32\Tasks\Norton WSC Integration => C:\Program Files\Norton Security\{80769C27-3707-491C-9C88-A7F355234C1A}\Engine\22.23.10.10\WSCStub.exe [646520 2023-11-06] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
Task: {ECC3D39C-E3B9-4224-B7D6-953BEEC339C6} - System32\Tasks\Remediation\AntimalwareMigrationTask => C:\Program Files\Common Files\AV\Norton Internet Security Online\Upgrade.exe [2353000 2023-11-06] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{32c433dd-efe4-42d2-9759-721cce174a65}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{32c433dd-efe4-42d2-9759-721cce174a65}: [DhcpDomain] box
Tcpip\..\Interfaces\{32c433dd-efe4-42d2-9759-721cce174a65}\75C414E4D274568627B656: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{32c433dd-efe4-42d2-9759-721cce174a65}\75C414E4D274568627B656: [DhcpDomain] speedport.ip
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\Antje\AppData\Local\Microsoft\Edge\User Data\Default [2024-02-20]
Edge Extension: (Google Docs Offline) - C:\Users\Antje\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-10-02]
Edge Extension: (Edge relevant text changes) - C:\Users\Antje\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-02-02]
FireFox:
========
FF DefaultProfile: 6n6xrbrh.default-1573129142145
FF ProfilePath: C:\Users\Antje\AppData\Roaming\TomTom\HOME\Profiles\hjqn0dk4.default [2021-02-07]
FF Extension: (Kein Name) - C:\Program Files (x86)\TomTom HOME 2\xul\extensions\MapShare-status@tomtom.com [nicht gefunden]
FF ProfilePath: C:\Users\Antje\AppData\Roaming\Mozilla\Firefox\Profiles\6n6xrbrh.default-1573129142145 [2024-02-20]
FF Homepage: Mozilla\Firefox\Profiles\6n6xrbrh.default-1573129142145 -> about:blank
FF Notifications: Mozilla\Firefox\Profiles\6n6xrbrh.default-1573129142145 -> hxxps://www.facebook.com; hxxps://www.saechsische.de; hxxps://web.whatsapp.com
FF HomepageOverride: Mozilla\Firefox\Profiles\6n6xrbrh.default-1573129142145 -> Enabled: nortonhomepage@symantec.com
FF NewTabOverride: Mozilla\Firefox\Profiles\6n6xrbrh.default-1573129142145 -> Enabled: {c5ffbd00-71e8-4603-a19b-860104b7ac62}
FF NewTabOverride: Mozilla\Firefox\Profiles\6n6xrbrh.default-1573129142145 -> Enabled: nortonhomepage@symantec.com
FF NewTabOverride: Mozilla\Firefox\Profiles\6n6xrbrh.default-1573129142145 -> Enabled: {82c0173d-b61d-4cd3-8e01-ffc56211a71c}
FF NewTabOverride: Mozilla\Firefox\Profiles\6n6xrbrh.default-1573129142145 -> Enabled: {afdb6e5e-c989-4c5d-a2f1-abc06d7d0cfe}
FF NewTabOverride: Mozilla\Firefox\Profiles\6n6xrbrh.default-1573129142145 -> Disabled: addonY143@manualslibrary.co
FF NewTabOverride: Mozilla\Firefox\Profiles\6n6xrbrh.default-1573129142145 -> Disabled: nortonsafesearch_ul_2@symantec.com
FF Extension: (Manuals Library Search) - C:\Users\Antje\AppData\Roaming\Mozilla\Firefox\Profiles\6n6xrbrh.default-1573129142145\Extensions\addonY143@manualslibrary.co.xpi [2024-02-20] [UpdateUrl:hxxps://cdn.manualsearch-cdn.org/xpi/manualsearch/mv3/1023/search/updates.json]
FF Extension: (Norton Home Page) - C:\Users\Antje\AppData\Roaming\Mozilla\Firefox\Profiles\6n6xrbrh.default-1573129142145\Extensions\nortonhomepage@symantec.com.xpi [2023-08-15] [UpdateUrl:hxxps://static.nortoncdn.com/idscp/firefox/nsss/hp/updates.json]
FF Extension: (Norton Safe Search) - C:\Users\Antje\AppData\Roaming\Mozilla\Firefox\Profiles\6n6xrbrh.default-1573129142145\Extensions\nortonsafesearch_ul_2@symantec.com.xpi [2023-11-28] [UpdateUrl:hxxps://static.nortoncdn.com/idscp/firefox/nsss/ds_modified/updates.json]
FF Extension: (Norton Safe Web) - C:\Users\Antje\AppData\Roaming\Mozilla\Firefox\Profiles\6n6xrbrh.default-1573129142145\Extensions\nortonsafeweb@symantec.com.xpi [2023-11-20]
FF Extension: (PDF Editor and Search by PDFtab) - C:\Users\Antje\AppData\Roaming\Mozilla\Firefox\Profiles\6n6xrbrh.default-1573129142145\Extensions\{82c0173d-b61d-4cd3-8e01-ffc56211a71c}.xpi [2022-12-10] [UpdateUrl:hxxps://cdn.pdftab-cdn.com/xpi/pdftab/yhs/0721/search/updates.json]
FF Extension: (Citavi Picker) - C:\Users\Antje\AppData\Roaming\Mozilla\Firefox\Profiles\6n6xrbrh.default-1573129142145\Extensions\{8AA36F4F-6DC7-4c06-77AF-5035170634FE}.xpi [2022-08-21]
FF Extension: (Manuals Library Search) - C:\Users\Antje\AppData\Roaming\Mozilla\Firefox\Profiles\6n6xrbrh.default-1573129142145\Extensions\{afdb6e5e-c989-4c5d-a2f1-abc06d7d0cfe}.xpi [2023-03-04] [UpdateUrl:hxxps://cdn.manualsearch-cdn.org/xpi/manualsearch/yhs/0620/search/updates.json]
FF Extension: (Freshy Newtab and Search ) - C:\Users\Antje\AppData\Roaming\Mozilla\Firefox\Profiles\6n6xrbrh.default-1573129142145\Extensions\{c5ffbd00-71e8-4603-a19b-860104b7ac62}.xpi [2022-09-24] [UpdateUrl:hxxps://cdn.freshysearch-cdn.com/xpi/freshy/yhs/01020/searchnnewtab/updates.json]
FF Extension: (GMX MailCheck) - C:\Program Files\Mozilla Firefox\distribution\extensions\browser-mailcheck@gmx.net.xpi [2022-08-19] [UpdateUrl:hxxps://dl.gmx.net/mailcheck/firefox/mozupdates.json]
FF HKLM-x32\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Extension: (HP Smart Web Printing) - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2018-12-01] [] [ist nicht signiert]
FF HKU\S-1-5-21-1936258503-905068797-4144163979-1001\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2022-02-22] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2024-02-10] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitPDFReaderPlugin.dll [2022-04-20] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.cpdf -> C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitPDFReaderPlugin.dll [2022-04-20] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitPDFReaderPlugin.dll [2022-04-20] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitPDFReaderPlugin.dll [2022-04-20] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitPDFReaderPlugin.dll [2022-04-20] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2022-02-22] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeLive,version=1.5 -> C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll [2010-04-26] (Microsoft Corporation -> Microsoft Corp.)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2022-02-22] (Microsoft Corporation -> Microsoft Corporation)
Chrome:
=======
CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif]
CHR HKLM-x32\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif]
==================== Dienste (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [172992 2024-01-31] (Adobe Inc. -> Adobe Inc.)
R2 BTDevManager; C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTDevMgr.exe [679400 2018-04-02] (Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor Corp.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [9497576 2023-12-21] (Microsoft Corporation -> Microsoft Corporation)
R2 FoxitReaderUpdateService; C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\FoxitPDFReaderUpdateService.exe [2361576 2022-04-20] (FOXIT SOFTWARE INC. -> Foxit Software Inc.)
R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [230360 2024-02-02] (HP Inc. -> HP Inc.)
S3 hpqcaslwmiex; C:\Program Files (x86)\HP\Shared\hpqwmiex.exe [1149480 2018-06-07] (HP Inc. -> HP)
R2 HPSLPSVC; C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL [1039360 2011-08-18] (Hewlett-Packard Co.) [Datei ist nicht signiert]
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [379736 2020-08-20] (HP Inc. -> HP Inc.)
R2 HPWMISVC; C:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe [628768 2017-07-13] (HP Inc. -> HP Inc.)
R2 Lexware_Update_Service; C:\Program Files (x86)\Lexware\Update Service\Hmg.InstallationService.Service.exe [68408 2021-09-22] (Haufe-Lexware GmbH & Co. KG -> Haufe-Lexware GmbH & Co. KG)
S2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [71680 2010-08-06] (Hewlett-Packard) [Datei ist nicht signiert]
R2 NortonSecurity; C:\Program Files\Norton Security\{80769C27-3707-491C-9C88-A7F355234C1A}\Engine\22.23.10.10\NortonSecurity.exe [344888 2023-11-06] (NortonLifeLock Inc. -> NortonLifelock Inc.)
R2 nsWscSvc; C:\Program Files\Norton Security\{80769C27-3707-491C-9C88-A7F355234C1A}\Engine\22.23.10.10\nsWscSvc.exe [1059176 2023-11-06] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
R2 PDF24; C:\Program Files\PDF24\pdf24.exe [613560 2022-11-30] (geek software GmbH -> geek software GmbH)
S2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [89600 2010-08-06] (Hewlett-Packard) [Datei ist nicht signiert]
S3 ss_conn_launcher_service; C:\WINDOWS\System32\Samsung\EasySetup\ss_conn_launcher.exe [182392 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R2 ss_conn_service; C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [752224 2020-11-26] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.)
R2 ss_conn_service2; C:\Program Files\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe [919992 2020-11-26] (Samsung Electronics Co., Ltd. -> DEVGURU Co., LTD.)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [18079544 2024-01-23] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
R2 TTHOMEService; C:\Program Files\TomTom HOME\TTHOMEService.exe [97792 2019-04-17] (TomTom) [Datei ist nicht signiert]
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2209.7-0\NisSrv.exe [3170576 2022-10-14] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2209.7-0\MsMpEng.exe [133584 2022-10-14] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Treiber (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
S3 AmUStor; C:\WINDOWS\system32\drivers\AmUStor.SYS [108992 2018-04-27] (Alcorlink Corp. -> )
R1 BHDrvx64; C:\Program Files\Norton Security\{80769C27-3707-491C-9C88-A7F355234C1A}\NortonData\22.20.2.57\Definitions\BASHDefs\20240215.001\BHDrvx64.sys [1706512 2023-10-18] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [532480 2022-10-12] (Microsoft Corporation) [Datei ist nicht signiert]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [184320 2022-10-12] (Microsoft Corporation) [Datei ist nicht signiert]
S3 BTHMODEM; C:\WINDOWS\System32\drivers\bthmodem.sys [106496 2022-05-07] (Microsoft Corporation) [Datei ist nicht signiert]
R1 ccSet_NGC; C:\WINDOWS\System32\drivers\NGCx64\16170A0.00A\ccSetx64.sys [198280 2023-11-06] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [167440 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [527832 2022-12-04] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom)
R3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [159720 2022-10-17] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom)
S3 farmntio; C:\WINDOWS\system32\drivers\farmntio.sys [25144 2014-03-31] (FarStone Technology -> ) [Datei ist nicht signiert]
R1 IDSVia64; C:\Program Files\Norton Security\{80769C27-3707-491C-9C88-A7F355234C1A}\NortonData\22.20.2.57\Definitions\IPSDefs\20240216.064\IDSvia64.sys [1554400 2024-02-01] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom)
S3 nsvst_NGC; C:\WINDOWS\System32\drivers\NGCx64\16170A0.00A\nsvst.sys [57120 2023-11-06] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
R0 pwdrvio; C:\WINDOWS\System32\pwdrvio.sys [19152 2019-11-08] (MiniTool Solution Ltd -> )
S3 pwdspio; C:\WINDOWS\system32\pwdspio.sys [12504 2019-11-08] (MiniTool Solution Ltd -> )
R3 rtcx21; C:\WINDOWS\System32\DriverStore\FileRepository\rtcx21x64.inf_amd64_516e5c9b75c49dc2\rtcx21x64.sys [539648 2022-05-06] (Microsoft Windows -> Realtek)
R3 SRTSP; C:\WINDOWS\System32\drivers\NGCx64\16170A0.00A\SRTSP64.SYS [956048 2023-11-06] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom)
R1 SRTSPX; C:\WINDOWS\System32\drivers\NGCx64\16170A0.00A\SRTSPX64.SYS [52872 2023-11-06] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [174112 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 ss_conn_usb_driver2; C:\WINDOWS\System32\Drivers\ss_conn_usb_driver2.sys [50720 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R0 SymEFASI; C:\WINDOWS\System32\drivers\NGCx64\16170A0.00A\SYMEFASI64.SYS [2180248 2023-11-06] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom)
S0 SymELAM; C:\WINDOWS\System32\drivers\NGCx64\16170A0.00A\SymELAM.sys [36016 2023-11-06] (Microsoft Windows Early Launch Anti-Malware Publisher -> Broadcom)
R3 SymEvent; C:\WINDOWS\system32\Drivers\SYMEVENT64x86.SYS [100320 2022-05-26] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom)
R3 SymEvnt; C:\Program Files\Norton Security\{80769C27-3707-491C-9C88-A7F355234C1A}\NortonData\22.20.2.57\SymPlatform\SymEvnt.sys [722400 2022-07-11] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom)
R1 SymIRON; C:\WINDOWS\System32\drivers\NGCx64\16170A0.00A\Ironx64.SYS [306824 2023-11-06] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom)
R1 SymNetS; C:\WINDOWS\System32\drivers\NGCx64\16170A0.00A\symnets.sys [492728 2023-11-06] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [49616 2022-10-14] (Microsoft Windows Early Launch Anti-Malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [455968 2022-10-14] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [95520 2022-10-14] (Microsoft Windows -> Microsoft Corporation)
R3 WirelessButtonDriver64; C:\WINDOWS\System32\drivers\WirelessButtonDriver64.sys [40200 2023-11-17] (HP Inc. -> HP)
S3 wpCtrlDrv_NGC; C:\WINDOWS\System32\drivers\NGCx64\16170A0.00A\wpCtrlDrv.sys [1016792 2023-11-06] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X]
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Ein Monat (erstellte) (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2024-02-20 15:50 - 2024-02-20 15:51 - 000036589 _____ C:\Users\Antje\Downloads\FRST.txt
2024-02-20 15:50 - 2024-02-20 15:51 - 000000000 ____D C:\FRST
2024-02-20 15:48 - 2024-02-20 15:48 - 002386944 _____ (Farbar) C:\Users\Antje\Downloads\FRST64(1).exe
2024-02-20 15:46 - 2024-02-20 15:46 - 002386944 _____ (Farbar) C:\Users\Antje\Downloads\FRST64.exe
2024-02-20 15:29 - 2024-02-20 15:29 - 000000000 ____D C:\WINDOWS\system32\Tasks\Remediation
2024-02-17 16:22 - 2024-02-17 16:22 - 000803640 _____ C:\WINDOWS\system32\perfh007.dat
2024-02-17 16:22 - 2024-02-17 16:22 - 000175500 _____ C:\WINDOWS\system32\perfc007.dat
2024-02-17 15:52 - 2024-02-17 15:52 - 000852720 _____ C:\Users\Antje\Downloads\SecurityCheck.exe
2024-02-17 15:42 - 2024-02-17 15:42 - 008797968 _____ (Malwarebytes) C:\Users\Antje\Downloads\adwcleaner(1).exe
2024-02-17 15:30 - 2024-02-17 15:30 - 008797968 _____ (Malwarebytes) C:\Users\Antje\Downloads\adwcleaner.exe
2024-02-17 15:29 - 2024-02-17 15:29 - 007025360 _____ (Malwarebytes) C:\Users\Antje\Downloads\adwcleaner_7.3(1).exe
2024-02-16 21:30 - 2024-02-16 21:30 - 000019222 _____ C:\WINDOWS\SysWOW64\IntegratedServicesRegionPolicySet.json
2024-02-16 21:29 - 2024-02-16 21:29 - 000019222 _____ C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json
2024-02-02 18:51 - 2024-02-02 18:51 - 000171518 _____ C:\Users\Antje\Downloads\V10_2021_Phase_II_Selbstauskunft.pdf
2024-02-02 18:50 - 2024-02-02 18:50 - 000687373 _____ C:\Users\Antje\Downloads\expose331e036208.pdf
==================== Ein Monat (geänderte) ==================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2024-02-20 15:47 - 2022-01-09 19:50 - 000000000 ____D C:\Users\Antje\AppData\Local\Norton
2024-02-20 15:46 - 2022-05-07 06:24 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-02-20 15:22 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\AppReadiness
2024-02-20 15:18 - 2024-01-10 22:01 - 000000000 ____D C:\Program Files\Mozilla Firefox
2024-02-20 15:18 - 2022-02-12 11:32 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2024-02-20 15:16 - 2018-11-29 08:16 - 000000000 __SHD C:\Users\Antje\IntelGraphicsProfiles
2024-02-19 20:34 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SystemTemp
2024-02-19 20:25 - 2022-05-07 06:24 - 000000000 ___HD C:\Program Files\WindowsApps
2024-02-17 17:29 - 2022-05-07 06:17 - 000000000 ____D C:\WINDOWS\CbsTemp
2024-02-17 16:24 - 2023-11-28 10:24 - 000000000 ____D C:\WINDOWS\system32\Tasks\Norton Internet Security
2024-02-17 16:23 - 2022-08-20 18:24 - 000000000 ____D C:\Users\Antje\Documents\Citavi 5
2024-02-17 16:22 - 2022-10-12 19:13 - 001872062 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2024-02-17 16:22 - 2022-05-07 06:22 - 000000000 ____D C:\WINDOWS\INF
2024-02-17 16:17 - 2022-10-12 19:11 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2024-02-17 16:17 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\ServiceState
2024-02-17 16:17 - 2022-05-07 06:17 - 001048576 _____ C:\WINDOWS\system32\config\BBI
2024-02-17 16:17 - 2021-04-01 02:25 - 000012288 ___SH C:\DumpStack.log.tmp
2024-02-17 16:17 - 2019-02-09 12:16 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2024-02-17 16:17 - 2018-09-21 01:04 - 000000000 ____D C:\Intel
2024-02-17 15:50 - 2022-05-07 06:24 - 000000000 ____D C:\ProgramData\USOPrivate
2024-02-17 15:39 - 2022-10-12 19:11 - 000003588 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-1936258503-905068797-4144163979-1001
2024-02-17 15:39 - 2022-10-12 19:11 - 000003378 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1936258503-905068797-4144163979-1001
2024-02-17 15:39 - 2022-02-21 17:15 - 000002402 _____ C:\Users\Antje\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2024-02-17 15:38 - 2018-06-23 03:23 - 000000000 ____D C:\ProgramData\Hewlett-Packard
2024-02-17 15:35 - 2022-05-07 06:17 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2024-02-17 15:34 - 2022-10-12 19:02 - 000590616 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2024-02-17 15:34 - 2022-10-12 19:02 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2024-02-17 15:34 - 2018-11-29 11:51 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2024-02-17 15:33 - 2023-10-21 09:14 - 000000000 ____D C:\WINDOWS\system32\Microsoft-Edge-WebView
2024-02-17 15:33 - 2022-05-07 06:24 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2024-02-17 15:33 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\UUS
2024-02-17 15:33 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2024-02-17 15:33 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2024-02-17 15:33 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SystemResources
2024-02-17 15:33 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2024-02-17 15:33 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\Sgrm
2024-02-17 15:33 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\setup
2024-02-17 15:33 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2024-02-17 15:33 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\oobe
2024-02-17 15:33 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\appraiser
2024-02-17 15:33 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\ShellComponents
2024-02-17 15:33 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\Provisioning
2024-02-17 15:33 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\BrowserCore
2024-02-17 15:33 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\bcastdvr
2024-02-17 15:32 - 2018-11-29 08:22 - 000000000 ____D C:\Users\Antje\AppData\Roaming\Hewlett-Packard
2024-02-17 15:32 - 2018-11-29 08:20 - 000000000 ____D C:\Users\Antje\AppData\Local\Hewlett-Packard
2024-02-17 15:32 - 2018-06-23 03:22 - 000000000 ____D C:\Program Files (x86)\Hewlett-Packard
2024-02-17 13:10 - 2018-11-30 10:13 - 000000000 ____D C:\WINDOWS\system32\MRT
2024-02-17 13:08 - 2018-11-30 10:13 - 191155960 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2024-02-17 11:52 - 2022-10-12 19:11 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2024-02-17 11:52 - 2022-10-12 18:28 - 000002080 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk
2024-02-17 11:52 - 2022-10-12 18:28 - 000002068 _____ C:\Users\Public\Desktop\Adobe Acrobat.lnk
2024-02-17 11:40 - 2018-12-01 18:10 - 000000000 ____D C:\Users\Antje\AppData\Local\D3DSCache
2024-02-17 11:38 - 2020-06-23 11:53 - 000002443 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2024-02-17 11:38 - 2020-06-23 11:53 - 000002281 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2024-02-16 21:30 - 2022-10-12 19:03 - 003212800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2024-02-16 21:27 - 2020-05-23 20:47 - 000000000 ____D C:\Users\Antje\AppData\Local\NPE
2024-02-16 20:38 - 2018-11-29 11:51 - 000001012 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2024-02-07 12:24 - 2022-10-12 19:11 - 000003756 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2024-02-07 12:24 - 2022-10-12 19:11 - 000003632 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2024-02-02 19:24 - 2022-11-18 12:23 - 000000000 ____D C:\Program Files\HPPrintScanDoctor
2024-02-02 19:23 - 2022-11-18 12:23 - 000000000 ____D C:\WINDOWS\system32\Tasks\HP
2024-02-02 19:21 - 2022-05-07 06:24 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2024-02-02 19:21 - 2022-05-07 06:24 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2024-02-02 19:21 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\ShellExperiences
2024-02-02 18:56 - 2020-03-29 15:42 - 000000000 ____D C:\Users\Antje\AppData\LocalLow\Adobe
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse ========
2020-08-18 11:32 - 2020-08-18 11:32 - 000000218 _____ () C:\Users\Antje\AppData\Local\recently-used.xbel
==================== SigCheck ============================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
==================== Ende von FRST.txt ========================
Code:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 19.02.2024 02
durchgeführt von Antje (20-02-2024 15:51:54)
Gestartet von C:\Users\Antje\Downloads
Microsoft Windows 11 Home Version 23H2 22631.3155 (X64) (2022-10-12 18:11:22)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
Administrator (S-1-5-21-1936258503-905068797-4144163979-500 - Administrator - Disabled)
Antje (S-1-5-21-1936258503-905068797-4144163979-1001 - Administrator - Enabled) => C:\Users\Antje
DefaultAccount (S-1-5-21-1936258503-905068797-4144163979-503 - Limited - Disabled)
Gast (S-1-5-21-1936258503-905068797-4144163979-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-1936258503-905068797-4144163979-504 - Limited - Disabled)
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: Norton Internet Security Online (Enabled - Up to date) {1122B19A-E671-38EC-8EAC-87048FD4528D}
AV: Norton Internet Security Online (Enabled - Up to date) {53C7D717-52E2-B95E-FA61-6F32ECC805DB}
AV: Norton Internet Security Online (Enabled - Up to date) {A2708B76-6835-6565-CB96-694212954A75}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Norton Internet Security Online (Enabled - Up to date) {30744133-1E94-7B35-F4A3-82A5AEF1CBAA}
AV: Norton Internet Security Online (Enabled - Up to date) {AECE2126-F4E7-6909-11F2-1B69D1FBCBD0}
AV: Norton Internet Security Online (Enabled - Up to date) {E3FDBD9F-8140-1400-F32B-8B58923F7C4D}
AV: Norton Internet Security Online (Enabled - Up to date) {9E3FD331-C4C2-7AC4-0537-131EEF1B1F8A}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Norton Internet Security Online (Enabled) {9A4B0A53-225A-643D-E0C9-C077EC460D0E}
FW: Norton Internet Security Online (Enabled) {A6045214-8EAD-7B9C-2E68-BA2B11C858F1}
FW: Norton Internet Security Online (Enabled) {96F5A003-BE88-6851-3AAD-B25C2F288CAB}
FW: Norton Internet Security Online (Enabled) {084FC016-54FB-7A6D-DFFC-2B9050228CD1}
FW: Norton Internet Security Online (Enabled) {291930BF-AC1E-39B4-A5F3-2E31710715F6}
FW: Norton Internet Security Online (Enabled) {6BFC5632-188D-B806-D13E-C607121B42A0}
FW: Norton Internet Security Online (Enabled) {DBC63CBA-CB2F-1558-D874-226D6CEC3B36}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
64 Bit HP CIO Components Installer (HKLM\...\{FF21C3E6-97FD-474F-9518-8DCBE94C2854}) (Version: 7.2.8 - Hewlett-Packard) Hidden
Adobe Acrobat (64-bit) (HKLM\...\{AC76BA86-1031-1033-7760-BC15014EA700}) (Version: 23.008.20533 - Adobe)
Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-018244601067}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden
Citavi 5 (HKLM-x32\...\{7EB278FB-0C3C-445E-8665-4A6CDD9B794E}) (Version: 5.7.1.0 - Swiss Academic Software)
Energy Star (HKLM\...\{5CB22648-35F8-41BC-9C35-1E41FE6E12A5}) (Version: 1.1.1 - HP Inc.)
Foxit PDF Reader (HKLM-x32\...\Foxit Reader_is1) (Version: 11.2.2.53575 - Foxit Software Inc.)
HP Audio Switch (HKLM-x32\...\{3A5141D4-47DB-4302-9B1C-272BE585BC8A}) (Version: 1.0.179.0 - HP Inc.)
HP Document Manager 2.0 (HKLM\...\HP Document Manager) (Version: 2.0 - HP)
HP Documentation (HKLM\...\HP_Documentation) (Version: 1.0.0.1 - HP Inc.)
HP Dropbox Plugin (HKLM-x32\...\{737B7969-CE8E-47B0-98A4-2599F53B3B03}) (Version: 40.13.54.81239 - HP)
HP ENVY 4520 series - Grundlegende Software für das Gerät (HKLM\...\{61F3E2F3-0F95-4CCE-A888-5427B3F3CA7D}) (Version: 40.15.1230.21319 - HP Inc.)
HP ENVY 4520 series Hilfe (HKLM-x32\...\{AC3A5663-59A5-4421-9A4C-7309A4FEC06D}) (Version: 36.0.0 - Hewlett Packard)
HP ePrint SW (HKLM\...\{16311D0B-D57C-46F8-AE64-9D4D44227271}) (Version: 5.5.22560 - HP Inc.) Hidden
HP ePrint SW (HKLM\...\{4C246A91-6BAE-450E-BDEA-70D01663DF43}) (Version: 5.5.22560 - HP Inc.) Hidden
HP ePrint SW (HKLM\...\{78525DEA-1E62-429B-9CA4-A78F899A9F29}) (Version: 5.5.22560 - HP Inc.) Hidden
HP ePrint SW (HKLM\...\{B2CFD444-5088-4ECC-A1F1-28620C082C36}) (Version: 5.5.22560 - HP Inc.) Hidden
HP ePrint SW (HKLM-x32\...\{3D00C669-D447-4A04-AFDA-25E9E76E7873}) (Version: 5.5.22560 - HP Inc.) Hidden
HP ePrint SW (HKLM-x32\...\{59649835-21FD-4523-9AB0-9E67ED77F0CA}) (Version: 5.5.22560 - HP Inc.) Hidden
HP ePrint SW (HKLM-x32\...\{cdb5f70f-5107-4613-bf69-15de903b5b5d}) (Version: 5.5.22560 - HP Inc.)
HP Google Drive Plugin (HKLM-x32\...\{815D86A1-06B8-451D-9736-BE52D6A06DBD}) (Version: 40.13.54.81239 - HP)
HP JumpStart Bridge (HKLM-x32\...\{3FC961DB-BD36-4D8D-B276-0C456A2BB638}) (Version: 1.4.0.441 - HP Inc.)
HP JumpStart Launch (HKLM-x32\...\{F213102E-FD30-4E22-AF73-4C682D65FFEE}) (Version: 1.4.441.0 - HP Inc.)
HP Officejet 4500 G510n-z (HKLM\...\{7E0E61CC-1C99-429D-BEA7-C4DD5B898D2A}) (Version: 13.0 - HP)
HP PC Hardware Diagnostics Windows (HKLM-x32\...\{ECCFEFB0-A6EB-4BB3-9C9D-690370ED0C6D}) (Version: 1.7.0.0 - HP Inc.)
HP Photo Creations (HKLM-x32\...\HP Photo Creations) (Version: 1.0.0.9572 - HP)
HP Recovery Manager (HKLM-x32\...\{64BAA990-F1FC-4145-A7B1-E41FBBC9DA47}) (Version: 1.2.1511 - HP) Hidden
HP Registration Service (HKLM-x32\...\{4E097B06-83A0-4CDD-A9DB-22F0744FE16A}) (Version: 1.0.0.43 - HP Inc.) Hidden
HP Smart Web Printing 4.5 (HKLM\...\HP Smart Web Printing) (Version: 4.5 - HP)
HP Support Assistant (HKLM-x32\...\{54ECA61C-83AE-4EE3-A9F7-848155A33386}) (Version: 8.8.34.31 - HP Inc.)
HP Support Solutions Framework (HKLM-x32\...\{D2F8F97B-32A1-4E81-BE58-B33EC7E06FE7}) (Version: 12.18.34.21 - HP Inc.)
HP System Event Utility (HKLM-x32\...\{57058272-92B0-4EFA-8FDD-ED3E5D689D37}) (Version: 1.4.32 - HP Inc.)
HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
Intel(R) Chipset Device Software (HKLM\...\{631C57C3-B765-4327-822A-057C34D691CC}) (Version: 10.1.17695.8086 - Intel Corporation) Hidden
Intel(R) Dynamic Platform and Thermal Framework (HKLM-x32\...\{654EE65D-FAA4-4EA6-8C07-DC94E6A304D4}) (Version: 8.3.10208.5644 - Intel Corporation)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 1823.12.0.1135 - Intel Corporation)
Intel(R) Management Engine Components (HKLM\...\{93088816-1328-4885-B7E9-7F7FBEE06A16}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) Management Engine Components (HKLM\...\{9CD3FE14-6FAD-4F91-B767-E672A9C4DED9}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) Management Engine Driver (HKLM\...\{911932DA-17C1-46CD-AE82-5A4BEBCC5886}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) ME UninstallLegacy (HKLM\...\{E9B9A1A5-6398-4C99-8FDE-10794F6505C5}) (Version: 1.0.1.0 - Intel Corporation) Hidden
Intel(R) Rapid Storage Technology (HKLM\...\{310C6D71-5D6E-41EC-8D57-90A45FAFF6DB}) (Version: 16.8.0.1000 - Intel Corporation) Hidden
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 16.8.0.1000 - Intel Corporation)
Intel(R) Trusted Connect Service Client x64 (HKLM\...\{C9552825-7BF2-4344-BA91-D3CD46F4C442}) (Version: 1.50.295.0 - Intel Corporation) Hidden
Intel(R) Trusted Connect Service Client x86 (HKLM-x32\...\{C9552825-7BF2-4344-BA91-D3CD46F4C441}) (Version: 1.50.295.0 - Intel Corporation) Hidden
Intel(R) Trusted Connect Services Client (HKLM-x32\...\{c700a043-5a4c-4d61-aa88-6c4191f25b64}) (Version: 1.50.295.0 - Intel Corporation) Hidden
Intel® Chipsatz-Gerätesoftware (HKLM-x32\...\{eb0d4a41-3065-42b0-a868-c60d42d3ea98}) (Version: 10.1.17695.8086 - Intel(R) Corporation) Hidden
Intel® Optane™ Pinning Explorer Extensions (HKLM\...\{2D79E334-B178-45B9-A2A6-7A60A084C268}) (Version: 16.8.0.1000 - Intel Corporation)
Lexware buchhalter 2022 (HKLM-x32\...\{333F8994-8EAB-47A0-9579-8E756FE20352}) (Version: 27.05.00.0355 - Haufe-Lexware GmbH & Co.KG) Hidden
Lexware EasyArchive 2022 (HKLM-x32\...\{0DCA6F25-FAE4-4FE4-B7BD-C5EB0078E9C6}) (Version: 7.01.00.0066 - Haufe-Lexware GmbH & Co.KG) Hidden
Lexware Einnahmen-Überschuss-Rechner 2022 (HKLM-x32\...\{f807c119-6035-4890-9d4b-0499f059e464}) (Version: 27.5.0.251 - Haufe-Lexware GmbH & Co. KG)
Lexware Elster 2022 (HKLM-x32\...\{25A7EB81-C6FF-414A-9147-3F417A79564D}) (Version: 22.05.00.0347 - Haufe-Lexware GmbH & Co.KG) Hidden
Lexware Elster 2022 (HKLM-x32\...\{cd865fec-150b-4ddf-bcce-2e0921ae4f1c}) (Version: 22.5.0.247 - Haufe-Lexware GmbH & Co. KG)
Lexware FolderPermission 2022 (HKLM-x32\...\{7C6CE490-FCCE-4718-8A5E-DBDD0B6A1F58}) (Version: 4.01.00.0206 - Haufe-Lexware GmbH & Co.KG) Hidden
Lexware Info Service 2022 (HKLM-x32\...\{14775F97-D87A-4D11-BBA7-A758FB74C266}) (Version: 22.00.00.0157 - Haufe-Lexware GmbH & Co.KG) Hidden
Lexware Installations Dienst 2022 (HKLM-x32\...\{5FD19584-4002-4813-BA69-F0691A1116A9}) (Version: 11.00.00.0153 - Haufe-Lexware GmbH & Co.KG) Hidden
Lexware online banking 2022 (HKLM-x32\...\{4E64BE5C-F7DE-404D-B932-7DFB86F9D5AF}) (Version: 29.01.00.0176 - Haufe-Lexware GmbH & Co.KG) Hidden
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 121.0.2277.128 - Microsoft Corporation)
Microsoft Edge WebView2-Laufzeit (HKLM-x32\...\Microsoft EdgeWebView) (Version: 121.0.2277.128 - Microsoft Corporation)
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Live Add-in 1.5 (HKLM-x32\...\{F40BBEC7-C2A4-4A00-9B24-7A055A2C5262}) (Version: 2.0.4024.1 - Microsoft Corporation)
Microsoft Office Professional Plus 2019 - de-de (HKLM\...\ProPlus2019Volume - de-de) (Version: 16.0.10406.20006 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-1936258503-905068797-4144163979-1001\...\OneDriveSetup.exe) (Version: 24.020.0128.0003 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{C6FD611E-7EFE-488C-A0E0-974C09EF6473}) (Version: 5.72.0.0 - Microsoft Corporation)
Microsoft VC++ redistributables repacked. (HKLM\...\{750E1D74-BE38-4ADA-9EAC-EE378059A8E0}) (Version: 12.0.0.0 - Intel Corporation) Hidden
Microsoft VC++ redistributables repacked. (HKLM-x32\...\{071D1D08-11BA-44FF-9A91-861EF3434FB9}) (Version: 12.0.0.0 - Intel Corporation) Hidden
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{6AFCA4E1-9B78-3640-8F72-A7BF33448200}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{4fcf070a-daac-45e9-a8b0-6850941f7ed8}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005 (HKLM\...\{929FBD26-9020-399B-9A7A-751D61F0B942}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005 (HKLM\...\{A749D8E6-B613-3BE3-8F5F-045C84EBA29B}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (HKLM-x32\...\{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (HKLM-x32\...\{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23506 (HKLM-x32\...\{3ee5e5bb-b7cc-4556-8861-a00a82977d6c}) (Version: 14.0.23506.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 x64 Additional Runtime - 14.0.23506 (HKLM\...\{B0B194F8-E0CE-33FE-AA11-636428A4B73D}) (Version: 14.0.23506 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015 x64 Minimum Runtime - 14.0.23506 (HKLM\...\{A1C31BA5-5438-3A07-9EEE-A5FB2D0FDE36}) (Version: 14.0.23506 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.24.28127 (HKLM-x32\...\{e31cb1a4-76b5-46a5-a084-3fa419e82201}) (Version: 14.24.28127.4 - Microsoft Corporation)
Microsoft Visual C++ 2019 X86 Additional Runtime - 14.24.28127 (HKLM-x32\...\{EAC73207-74BD-4B13-AACF-8C0E751FA4E8}) (Version: 14.24.28127 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2019 X86 Minimum Runtime - 14.24.28127 (HKLM-x32\...\{2E72FA1F-BADB-4337-B8AE-F7C17EC57D1D}) (Version: 14.24.28127 - Microsoft Corporation) Hidden
Mozilla Firefox (x64 de) (HKLM\...\Mozilla Firefox 122.0.1 (x64 de)) (Version: 122.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 104.0 - Mozilla)
Norton Internet Security Online (HKLM-x32\...\NGC) (Version: 22.23.10.10 - Symantec Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.10406.20006 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.10406.20006 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0407-1000-0000000FF1CE}) (Version: 16.0.10406.20006 - Microsoft Corporation) Hidden
PDF24 Creator 11.8.0 (HKLM\...\{81A6F461-0DBA-4F12-B56F-0E977EC10576}_is1) (Version: 11.8.0 - PDF24.org)
REALTEK Bluetooth Driver (HKLM-x32\...\{9D3D8C60-A5EF-4123-B2B9-172095903AB}) (Version: 1.0.0.88 - REALTEK Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.25.119.2018 - Realtek)
REALTEK Wireless LAN Driver (HKLM-x32\...\{A5107464-AA9B-4177-8129-5FF2F42DD322}) (Version: 1.0.0.113 - REALTEK Semiconductor Corp.)
Samsung DeX (HKLM-x32\...\{2EB6072C-55E0-4AA0-A851-A34A5D64F6C9}) (Version: 2.0.1.2 - Samsung Electronics Co., Ltd.) Hidden
Samsung DeX (HKLM-x32\...\{3d6025db-b129-4813-84ac-91328af71882}) (Version: 2.0.1.2 - Samsung Electronics Co., Ltd.)
Samsung USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.7.43.0 - Samsung Electronics Co., Ltd.)
Studie zur Verbesserung von HP ENVY 4520 series (HKLM\...\{0432E490-F3E0-4D87-9268-E4837C91EEC8}) (Version: 40.15.1230.21319 - HP Inc.)
TAXMAN 2018 (HKLM-x32\...\{1BE1DA7D-D463-4661-A814-27CB10CD8EAF}) (Version: 23.35.52 - Haufe-Lexware GmbH & Co.KG)
TAXMAN 2019 (HKLM-x32\...\{9594D7BA-77DB-447F-9343-9FA01B201976}) (Version: 24.35.137 - Haufe-Lexware GmbH & Co.KG)
TAXMAN 2020 (HKLM-x32\...\{1342F8EA-0E9F-4CCB-81E8-74638BC0C757}) (Version: 25.39.90 - Haufe-Lexware GmbH & Co.KG)
TAXMAN 2021 (HKLM-x32\...\{E172BAEF-8092-4576-BDAD-41653786283E}) (Version: 26.39.106 - Haufe-Lexware GmbH & Co.KG)
TAXMAN 2022 (HKLM-x32\...\{542B4A84-D57A-4578-8992-CB8599DBEE2D}) (Version: 27.31.77 - Haufe-Lexware GmbH & Co.KG)
TeamViewer (HKLM-x32\...\TeamViewer) (Version: 15.50.5 - TeamViewer)
TomTom HOME 2.21.18.728633 (HKLM\...\TomTom HOME) (Version: 2.21.18.728633 - TomTom)
TomTom MyDrive Connect 4.2.12.4208 (HKLM-x32\...\MyDriveConnect) (Version: 4.2.12.4208 - TomTom)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{32DC821E-4A7D-4878-BEE8-337FA153D7F2}) (Version: 2.63.0.0 - Microsoft Corporation) Hidden
Visual Studio C++ 10.0 Runtime (HKLM-x32\...\{4412F224-3849-4461-A3E9-DEEF8D252790}) (Version: 10.0.0 - TomTom International B.V.)
Windows-PC-Integritätsprüfung (HKLM\...\{68C9C2A4-C212-4310-AB68-12F97050A416}) (Version: 3.2.2110.14001 - Microsoft Corporation)
Zoom (HKU\S-1-5-21-1936258503-905068797-4144163979-1001\...\ZoomUMX) (Version: 5.9.3 (3169) - Zoom Video Communications, Inc.)
Packages:
=========
5CB722CC.CookingDiaryTastyHills -> C:\Program Files\WindowsApps\5CB722CC.CookingDiaryTastyHills_2.23.0.0_x86__ypk0bew5psyra [2024-02-02] (MYTONA Pte. Ltd.)
7-Zip File Manager (Unofficial) -> C:\Program Files\WindowsApps\HaukeGtze.7-ZipFileManagerUnofficial_1.2201.1.0_x64__6bk20wvc8rfx2 [2023-01-03] (Hauke Hasselberg)
Adobe Acrobat Reader -> C:\Program Files\Adobe\Acrobat DC [2024-02-17] ()
Amazon -> C:\Program Files\WindowsApps\Amazon.com.Amazon_2018.519.2815.0_x64__343d40qqvtj1t [2020-02-22] (Amazon.com)
Dev Home -> C:\Program Files\WindowsApps\Microsoft.Windows.DevHome_0.1000.389.0_x64__8wekyb3d8bbwe [2024-02-02] (Microsoft Corporation)
Disney+ -> C:\Program Files\WindowsApps\Disney.37853FC22B2CE_2023.11.13.0_neutral__6rarf9sa4v8jt [2024-02-17] (Disney)
Dropbox-Sonderaktion -> C:\Program Files\WindowsApps\C27EB4BA.DropboxOEM_23.4.23.0_x64__xbfy0k16fey96 [2024-02-16] (Dropbox Inc.)
EML Reader -> C:\Program Files\WindowsApps\22164ayamadori.EMLReader_2.0.4.0_x64__rtpjcevvdcnva [2023-11-09] (ayamadori)
Fitbit -> C:\Program Files\WindowsApps\Fitbit.Fitbit_2.44.1997.0_x64__6mqt6hf9g46tw [2023-07-01] (Fitbit)
HP Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.HPAudioControl_1.10.216.0_x64__dt26b99r8h8gj [2020-08-22] (Realtek Semiconductor Corp)
HP JumpStart -> C:\Program Files\WindowsApps\AD2F1837.HPJumpStart_1.4.481.0_x86__v10z8vjag6ke6 [2024-02-02] (HP Inc.)
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_151.3.1092.0_x64__v10z8vjag6ke6 [2024-02-02] (HP Inc.)
Intel® Optane™ Memory and Storage Management -> C:\Program Files\WindowsApps\AppUp.IntelOptaneMemoryandStorageManagement_18.1.1037.0_x64__8j3eq9eme6ctt [2023-12-28] (INTEL CORP)
LinkedIn -> C:\Program Files\WindowsApps\7EE7776C.LinkedInforWindows_3.0.24.0_x64__w1wdnht996qgy [2024-02-16] (LinkedIn) [Startup Task]
Media Engine-Add-On für Fotos -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2022-04-13] (Microsoft Corporation)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-01-21] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-01-21] (Microsoft Corporation) [MS Ad]
Microsoft Family -> C:\Program Files\WindowsApps\MicrosoftCorporationII.MicrosoftFamily_0.2.40.0_x64__8wekyb3d8bbwe [2023-09-16] (Microsoft Corp.)
Microsoft Jigsaw -> C:\Program Files\WindowsApps\Microsoft.MicrosoftJigsaw_2.7.1181.0_x86__8wekyb3d8bbwe [2024-02-02] (Microsoft Studios)
Microsoft Mahjong -> C:\Program Files\WindowsApps\Microsoft.MicrosoftMahjong_4.4.10270.0_x64__8wekyb3d8bbwe [2023-11-16] (Microsoft Studios) [MS Ad]
Microsoft Ultimate Word Games -> C:\Program Files\WindowsApps\Microsoft.Studios.Wordament_4.4.1161.0_x64__8wekyb3d8bbwe [2024-02-02] (Microsoft Studios) [MS Ad]
Microsoft.AV1VideoExtension -> C:\Program Files\WindowsApps\Microsoft.AV1VideoExtension_1.1.61781.0_x64__8wekyb3d8bbwe [2023-07-19] (Microsoft Corporation)
Microsoft.WindowsAppRuntime.CBS -> C:\WINDOWS\SystemApps\Microsoft.WindowsAppRuntime.CBS_8wekyb3d8bbwe [2024-02-02] (Microsoft Corporation)
MyASUS -> C:\Program Files\WindowsApps\B9ECED6F.ASUSPCAssistant_4.0.6.0_x64__qmba6cd70vzyy [2024-02-02] (ASUSTeK COMPUTER INC.)
Netflix -> C:\Program Files\WindowsApps\4DF9E0F8.Netflix_6.98.1805.0_x64__mcm4njqhnhss8 [2022-02-20] (Netflix, Inc.)
Norton Security -> C:\Program Files\Norton Security\{80769C27-3707-491C-9C88-A7F355234C1A}\Engine\22.23.10.10 [2024-02-20] (NortonLifeLock Inc.)
Power Media Player 14 for HP Consumer PCs with DVD -> C:\Program Files\WindowsApps\CyberLinkCorp.hs.PowerMediaPlayer14forHPConsumerPC_14.2.9528.0_x86__06qsbagp91rvg [2019-01-28] (CYBERLINKCOM CORP)
Reader Notification Client -> C:\Program Files\WindowsApps\ReaderNotificationClient_1.0.4.0_x86__e1rzdqpraam7r [2024-02-02] (Adobe Systems Incorporated)
Solitaire & Casual Games -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.19.1262.0_x64__8wekyb3d8bbwe [2024-02-07] (Microsoft Studios) [MS Ad]
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.231.1205.0_x64__zpdnekdrzrea0 [2024-02-17] (Spotify AB) [Startup Task]
Synaptics TouchPad -> C:\Program Files\WindowsApps\SynapticsIncorporated.SynHPConsumerDApp_19005.35054.0.0_x64__807d65c4rvak2 [2020-03-14] (Synaptics Incorporated)
WhatsApp -> C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2403.10.0_x64__cv1g1gvanyjgm [2024-02-02] (WhatsApp Inc.) [Startup Task]
WildTangent Games -> C:\Program Files\WindowsApps\WildTangentGames.63435CFB65F55_2.0.84.0_x64__qt5r5pa5dyg8m [2024-02-07] (WildTangent Games)
Windows Feature Experience Pack -> C:\WINDOWS\SystemApps\MicrosoftWindows.Client.FileExp_cw5n1h2txyewy [2024-02-17] (Microsoft Corporation)
XING -> C:\Program Files\WindowsApps\XINGAG.XING_4.0.9.0_x86__xpfg3f7e9an52 [2023-12-28] (New Work SE)
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
CustomCLSID: HKU\S-1-5-21-1936258503-905068797-4144163979-1001_Classes\CLSID\{13357088-9834-0409-1600-134951500000}\localserver32 -> C:\Program Files\Adobe\Acrobat DC\Acrobat\ADNotificationManager.exe (Adobe Inc. -> Adobe)
CustomCLSID: HKU\S-1-5-21-1936258503-905068797-4144163979-1001_Classes\CLSID\{38142727-3008-9161-1521-349515000000}\localserver32 -> C:\Program Files\Adobe\Acrobat DC\Acrobat\ADNotificationManager.exe (Adobe Inc. -> Adobe)
ShellIconOverlayIdentifiers: [ OptaneIconOverlay] -> {A3AF6F6C-8BED-3D93-8B5D-33427B5D38E9} => C:\WINDOWS\System32\DriverStore\FileRepository\iastorpinningcomponent.inf_amd64_59691a4ee8d947dd\OptaneShellExt.dll [2021-10-12] (Intel Corporation -> )
ShellIconOverlayIdentifiers: [ OverlayExcluded] -> {4433A54A-1AC8-432F-90FC-85F045CF383C} => C:\Program Files\Norton Security\{80769C27-3707-491C-9C88-A7F355234C1A}\Engine\22.23.10.10\buShell.dll [2023-11-06] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
ShellIconOverlayIdentifiers: [ OverlayPending] -> {F17C0B1E-EF8E-4AD4-8E1B-7D7E8CB23225} => C:\Program Files\Norton Security\{80769C27-3707-491C-9C88-A7F355234C1A}\Engine\22.23.10.10\buShell.dll [2023-11-06] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
ShellIconOverlayIdentifiers: [ OverlayProtected] -> {476D0EA3-80F9-48B5-B70B-05E677C9C148} => C:\Program Files\Norton Security\{80769C27-3707-491C-9C88-A7F355234C1A}\Engine\22.23.10.10\buShell.dll [2023-11-06] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
ShellIconOverlayIdentifiers-x32: [ OverlayExcluded] -> {4433A54A-1AC8-432F-90FC-85F045CF383C} => C:\Program Files\Norton Security\{80769C27-3707-491C-9C88-A7F355234C1A}\Engine\22.23.10.10\buShell.dll [2023-11-06] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
ShellIconOverlayIdentifiers-x32: [ OverlayPending] -> {F17C0B1E-EF8E-4AD4-8E1B-7D7E8CB23225} => C:\Program Files\Norton Security\{80769C27-3707-491C-9C88-A7F355234C1A}\Engine\22.23.10.10\buShell.dll [2023-11-06] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
ShellIconOverlayIdentifiers-x32: [ OverlayProtected] -> {476D0EA3-80F9-48B5-B70B-05E677C9C148} => C:\Program Files\Norton Security\{80769C27-3707-491C-9C88-A7F355234C1A}\Engine\22.23.10.10\buShell.dll [2023-11-06] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
ContextMenuHandlers1: [BUContextMenu] -> {F7CAA2A1-67A2-44BB-B20F-202FD8EB1DAB} => C:\Program Files\Norton Security\{80769C27-3707-491C-9C88-A7F355234C1A}\Engine\22.23.10.10\buShell.dll [2023-11-06] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
ContextMenuHandlers1: [NortonLifeLock.Norton.Antivirus.IEContextMenu] -> {FAD61B3D-699D-49B2-BE16-7F82CB4C59CA} => C:\Program Files\Norton Security\{80769C27-3707-491C-9C88-A7F355234C1A}\Engine\22.23.10.10\NavShExt.dll [2023-11-06] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
ContextMenuHandlers2: [NortonLifeLock.Norton.Antivirus.IEContextMenu] -> {FAD61B3D-699D-49B2-BE16-7F82CB4C59CA} => C:\Program Files\Norton Security\{80769C27-3707-491C-9C88-A7F355234C1A}\Engine\22.23.10.10\NavShExt.dll [2023-11-06] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
ContextMenuHandlers3: [OptaneContextMenu] -> {AD7EBB13-617D-3270-8FA8-46583499C4FB} => C:\WINDOWS\System32\DriverStore\FileRepository\iastorpinningcomponent.inf_amd64_59691a4ee8d947dd\OptaneShellExt.dll [2021-10-12] (Intel Corporation -> )
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> Keine Datei
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_31f4e71363bfa9b6\igfxDTCM.dll [2021-01-19] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [BUContextMenu] -> {F7CAA2A1-67A2-44BB-B20F-202FD8EB1DAB} => C:\Program Files\Norton Security\{80769C27-3707-491C-9C88-A7F355234C1A}\Engine\22.23.10.10\buShell.dll [2023-11-06] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
ContextMenuHandlers6: [NortonLifeLock.Norton.Antivirus.IEContextMenu] -> {FAD61B3D-699D-49B2-BE16-7F82CB4C59CA} => C:\Program Files\Norton Security\{80769C27-3707-491C-9C88-A7F355234C1A}\Engine\22.23.10.10\NavShExt.dll [2023-11-06] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
ContextMenuHandlers1_S-1-5-21-1936258503-905068797-4144163979-1001: [HaukeGtze.7-ZipFileManagerUnofficial_6bk20wvc8rfx2] -> {23170F69-40C1-278A-1000-000100020000} => -> Keine Datei
==================== Codecs (Nicht auf der Ausnahmeliste) ====================
==================== Verknüpfungen & WMI ========================
==================== Geladene Module (Nicht auf der Ausnahmeliste) =============
2011-08-18 01:29 - 2011-08-18 01:29 - 001039360 _____ (Hewlett-Packard Co.) [Datei ist nicht signiert] c:\program files (x86)\hp\digital imaging\bin\hpslpsvc64.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) ========
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ==================
==================== Verknüpfungen (Nicht auf der Ausnahmeliste) =================
==================== Internet Explorer (Nicht auf der Ausnahmeliste) ==========
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://hp17win10.msn.com/?pc=HCTE
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://hp17win10.msn.com/?pc=HCTE
HKU\S-1-5-21-1936258503-905068797-4144163979-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://hp17win10.msn.com/?pc=HCTE
HKU\S-1-5-21-1936258503-905068797-4144163979-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://hp17win10.msn.com/?pc=HCTE
SearchScopes: HKLM -> {14844A2B-B1F8-47D2-B65D-81E0D81BD25F} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_ieauk?ie=UTF-8&tag=hp-uk1-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
SearchScopes: HKLM-x32 -> {14844A2B-B1F8-47D2-B65D-81E0D81BD25F} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_ieauk?ie=UTF-8&tag=hp-uk1-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
SearchScopes: HKU\S-1-5-21-1936258503-905068797-4144163979-1001 -> {14844A2B-B1F8-47D2-B65D-81E0D81BD25F} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_ieauk?ie=UTF-8&tag=hp-uk1-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll [2022-02-22] (Microsoft Corporation -> Microsoft Corporation)
BHO: Citavi Picker -> {609D670F-B735-4da7-AC6D-F3BD358E325E} -> C:/Program Files (x86)/Internet Explorer/Citavi Picker/x64/SwissAcademic.Citavi.IEPicker.DLL => Keine Datei
BHO-x32: HP Print Enhancer -> {0347C33E-8762-4905-BF09-768834316C61} -> C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll [2009-05-21] (Hewlett-Packard Company -> Hewlett-Packard Co.)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2022-02-22] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Kein Name -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> Keine Datei
BHO-x32: Citavi Picker -> {609D670F-B735-4da7-AC6D-F3BD358E325E} -> C:/Program Files (x86)/Internet Explorer/Citavi Picker/SwissAcademic.Citavi.IEPicker.DLL => Keine Datei
BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\GROOVEEX.DLL [2024-01-18] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: HP Smart BHO Class -> {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} -> C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll [2009-05-21] (Hewlett-Packard Company -> Hewlett-Packard Co.)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-02-22] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-02-22] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-02-22] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-02-22] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-02-22] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-02-22] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-02-22] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-02-22] (Microsoft Corporation -> Microsoft Corporation)
==================== Hosts Inhalt: =========================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2018-04-12 00:38 - 2018-04-12 00:36 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
==================== Andere Bereiche ===========================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\iCLS\;C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\;C:\Program Files (x86)\Common Files\HP\Digital Imaging\bin;C:\Program Files (x86)\HP\Digital Imaging\bin\;C:\Program Files (x86)\HP\Digital Imaging\bin\Qt\Qt 4.3.3;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT
HKU\S-1-5-21-1936258503-905068797-4144163979-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Antje\Desktop\Bilder Handy\20190609_134229.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
ist aktiviert.
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
HKU\S-1-5-21-1936258503-905068797-4144163979-1001\...\StartupApproved\Run: => "HP ENVY 4520 series (NET)"
HKU\S-1-5-21-1936258503-905068797-4144163979-1001\...\StartupApproved\Run: => "TomTomHOME.exe"
HKU\S-1-5-21-1936258503-905068797-4144163979-1001\...\StartupApproved\Run: => "MyDriveConnect.exe"
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [{A20A9E52-4534-4F7B-9A35-3B6E66593A1E}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{512D2D9A-0331-4579-8FF5-AD4B64A2074D}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{32E20ED0-AFAF-419F-AB18-67E8C45ED9D4}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{A5FEB13D-4E4C-40C2-BBF6-BD8DF1AF8AE9}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{E73ADF1F-105D-4BA9-8718-F4324399F5AF}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{DA38500F-0A52-4191-BC0A-F3F4F04B0F88}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{92EA1DED-2EB2-4654-84FD-CFC703845662}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{5498407C-6BFC-4BE2-B043-6B88DA3FB4F4}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{BFE31FAF-CCE6-41F5-8D65-1ACF869F4C52}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{E3489A5B-E087-4B57-B54E-82D10934E622}] => (Allow) C:\Users\Antje\AppData\Local\Temp\7zS10AE\HPDiagnosticCoreUI.exe => Keine Datei
FirewallRules: [{96037E04-F4DF-494B-82ED-20E002D4DA40}] => (Allow) C:\Users\Antje\AppData\Local\Temp\7zS10AE\HPDiagnosticCoreUI.exe => Keine Datei
FirewallRules: [{808B367F-E952-48B8-AB61-E99257375C11}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe => Keine Datei
FirewallRules: [{29E06255-C232-464B-809C-296031B682B3}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe => Keine Datei
FirewallRules: [{8E3A9187-C9C9-40AD-BAAD-071171A0D931}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe => Keine Datei
FirewallRules: [{1C38C2B7-D12F-4CF0-9DD7-1C2E27E232D9}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe => Keine Datei
FirewallRules: [{16357809-ADDB-43E0-9CB5-38AE16177E33}] => (Allow) C:\Program Files (x86)\Common Files\Mcafee\MMSSHost\MMSSHost.exe => Keine Datei
FirewallRules: [{452BBA61-9E3E-45D0-89B6-A36E3A58275A}] => (Allow) C:\Program Files\Common Files\McAfee\MMSSHost\MMSSHost.exe => Keine Datei
FirewallRules: [{58605418-1EAD-4350-8466-F98683858E87}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{BA82B078-5479-4C15-9B66-C956B5291266}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{FC3F7947-19A1-4CF4-A94C-059290AFE45F}] => (Allow) C:\Users\Antje\AppData\Local\Temp\7zS63DD\setup\hpznui40.exe => Keine Datei
FirewallRules: [{37F3E71A-9B1E-45D4-AB26-19CB57CE807B}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe => Keine Datei
FirewallRules: [{AC0D5C76-88D4-4830-BE53-E293D9040096}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqste08.exe => Keine Datei
FirewallRules: [{0A9DFFA2-C58B-4EF6-AA1A-8FA2EB7D0FCE}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpofxm08.exe => Keine Datei
FirewallRules: [{C1E25637-0E4A-4A51-BA56-B7D152428B36}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hposfx08.exe => Keine Datei
FirewallRules: [{3AC395BE-CBB2-4C52-8120-5C889B36F578}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hposid01.exe (Hewlett Packard -> Hewlett-Packard Co.)
FirewallRules: [{1E7B55BA-0F86-4A6F-8396-8EF494D53E58}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqkygrp.exe (Hewlett Packard -> Hewlett-Packard Co.)
FirewallRules: [{E24A98F4-5231-446D-B47E-CCABC4DA968D}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpfccopy.exe (Hewlett Packard -> Hewlett-Packard Co.)
FirewallRules: [{1C3AA807-0D43-4FDA-8319-0AA5B3230015}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpzwiz01.exe => Keine Datei
FirewallRules: [{9E883413-2B90-4418-9462-4C4764C406FA}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpoews01.exe (Hewlett Packard -> Hewlett-Packard Co.)
FirewallRules: [{11361D97-2612-4C02-99C2-1F97D804244E}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpiscnapp.exe (Hewlett Packard -> Hewlett-Packard Co.)
FirewallRules: [{B45AB7C9-C31E-4125-BBBC-30CC2CF4A72D}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpofxs08.exe => Keine Datei
FirewallRules: [{88FEDC9C-C3B8-405A-847F-1FADB7F755AA}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqfxt08.exe => Keine Datei
FirewallRules: [{38F2D1C6-D46E-4960-87FB-EE55EA5FC610}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgplgtupl.exe => Keine Datei
FirewallRules: [{26C9FDA7-280B-4DEF-83B9-E515A263FE25}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe => Keine Datei
FirewallRules: [{CA7D1BDB-C4A5-43D8-B138-C90F73553128}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqusgm.exe => Keine Datei
FirewallRules: [{324C0F95-76C4-4351-99C5-7891D21352A3}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqusgh.exe => Keine Datei
FirewallRules: [{B4522BD3-1E79-4219-A4A6-F5AAC3BE9E48}] => (Allow) C:\Program Files (x86)\HP\hp software update\hpwucli.exe (Hewlett-Packard Company -> Hewlett-Packard)
FirewallRules: [{0E2FE90F-233F-4642-9F77-3C166F32B355}] => (Allow) C:\Users\Antje\AppData\Local\Temp\7zS44E4\HPDiagnosticCoreUI.exe => Keine Datei
FirewallRules: [{A5F9F8C1-13EB-4D1E-98D8-D10DBC467C52}] => (Allow) C:\Users\Antje\AppData\Local\Temp\7zS44E4\HPDiagnosticCoreUI.exe => Keine Datei
FirewallRules: [{20E8E019-1F9C-489C-9D3D-849B5CC3C662}] => (Allow) C:\Users\Antje\AppData\Local\Temp\7zS707B\HPDiagnosticCoreUI.exe => Keine Datei
FirewallRules: [{45229AA6-FEAE-4CB0-9BED-3D1A86C9B21B}] => (Allow) C:\Users\Antje\AppData\Local\Temp\7zS707B\HPDiagnosticCoreUI.exe => Keine Datei
FirewallRules: [{BCB232D3-D01B-4CA8-AEB7-00FA9387182A}] => (Allow) C:\Users\Antje\AppData\Local\Temp\7zS7C9C\HPDiagnosticCoreUI.exe => Keine Datei
FirewallRules: [{7CF6468B-E2FC-46E5-885B-BDFDAEF1BA64}] => (Allow) C:\Users\Antje\AppData\Local\Temp\7zS7C9C\HPDiagnosticCoreUI.exe => Keine Datei
FirewallRules: [{6D198BA1-36BB-4047-8380-3CBC8DA7BB78}] => (Allow) C:\Program Files (x86)\HP\digital imaging\smart web printing\smartwebprintexe.exe (Hewlett-Packard Company -> Hewlett-Packard Co.)
FirewallRules: [{3B73810C-7B5B-49AE-90B6-08B8AF227DF2}] => (Allow) C:\Users\Antje\AppData\Local\Temp\7zS07AC\hppiw.exe => Keine Datei
FirewallRules: [{BADFCCBA-881E-40A8-855C-E20EC40D2AD5}] => (Allow) C:\Users\Antje\AppData\Local\Temp\7zS07AC\hppiw.exe => Keine Datei
FirewallRules: [{A65A0B47-AE7A-4F2B-B227-34E52779146E}] => (Allow) C:\Users\Antje\AppData\Local\Temp\7zS5D89\HPDiagnosticCoreUI.exe => Keine Datei
FirewallRules: [{B6AE6617-5B99-4769-9541-697CF2BA12E5}] => (Allow) C:\Users\Antje\AppData\Local\Temp\7zS5D89\HPDiagnosticCoreUI.exe => Keine Datei
FirewallRules: [{2301C1C3-3768-4F0C-8ABE-7E10FA76197C}] => (Allow) C:\Users\Antje\AppData\Local\Temp\7zS6333\HPDiagnosticCoreUI.exe => Keine Datei
FirewallRules: [{3B1F3547-9D2B-4D21-A2E6-4DA64EB5D9C5}] => (Allow) C:\Users\Antje\AppData\Local\Temp\7zS6333\HPDiagnosticCoreUI.exe => Keine Datei
FirewallRules: [{DDD88818-87CD-42E0-830B-F058E57426F2}] => (Allow) C:\Users\Antje\AppData\Local\Temp\7zS7012\HPDiagnosticCoreUI.exe => Keine Datei
FirewallRules: [{0FFA9EC7-5C91-4DB5-BEE5-C2AD298DE382}] => (Allow) C:\Users\Antje\AppData\Local\Temp\7zS7012\HPDiagnosticCoreUI.exe => Keine Datei
FirewallRules: [{B9474A1B-D8A0-46A8-A637-6F5DF92D96F8}] => (Allow) C:\Users\Antje\AppData\Local\Temp\7zS4BBF\HPDiagnosticCoreUI.exe => Keine Datei
FirewallRules: [{EF404C88-6320-4F1C-8F3F-3DC5B1BB2941}] => (Allow) C:\Users\Antje\AppData\Local\Temp\7zS4BBF\HPDiagnosticCoreUI.exe => Keine Datei
FirewallRules: [{3AB7944E-CF13-4B80-B402-1C5990B65D1C}] => (Allow) C:\Users\Antje\AppData\Local\Temp\7zS70A9\HPDiagnosticCoreUI.exe => Keine Datei
FirewallRules: [{29DF3247-ADC5-419D-B425-7EA45184F923}] => (Allow) C:\Users\Antje\AppData\Local\Temp\7zS70A9\HPDiagnosticCoreUI.exe => Keine Datei
FirewallRules: [{6C8F3397-DDEB-45ED-A568-85BC69B26C7D}] => (Allow) C:\Users\Antje\AppData\Local\Temp\7zS009B\HPDiagnosticCoreUI.exe => Keine Datei
FirewallRules: [{DFCFBD16-21EC-4537-8EAF-F2E906F14B8C}] => (Allow) C:\Users\Antje\AppData\Local\Temp\7zS009B\HPDiagnosticCoreUI.exe => Keine Datei
FirewallRules: [{5D1B2CED-F720-441C-8EDB-A08F1A94C991}] => (Allow) C:\Users\Antje\AppData\Local\Temp\7zS1F32\HPDiagnosticCoreUI.exe => Keine Datei
FirewallRules: [{7DCF7D11-B8CC-4F70-A88F-BB893AA93857}] => (Allow) C:\Users\Antje\AppData\Local\Temp\7zS1F32\HPDiagnosticCoreUI.exe => Keine Datei
FirewallRules: [{7672B6F9-4437-4D30-B7FB-B5AE094ACD67}] => (Allow) C:\Users\Antje\AppData\Local\Temp\7zS4317\HPDiagnosticCoreUI.exe => Keine Datei
FirewallRules: [{2E4D9E34-E5A3-4483-9A0D-B17D8E2C9C63}] => (Allow) C:\Users\Antje\AppData\Local\Temp\7zS4317\HPDiagnosticCoreUI.exe => Keine Datei
FirewallRules: [{699517C1-9865-4E86-9B69-12645717208C}] => (Allow) C:\Users\Antje\AppData\Local\Temp\7zS560F\HPDiagnosticCoreUI.exe => Keine Datei
FirewallRules: [{35919DD2-9B16-400F-85D6-71E6869C9108}] => (Allow) C:\Users\Antje\AppData\Local\Temp\7zS560F\HPDiagnosticCoreUI.exe => Keine Datei
FirewallRules: [{BB559E34-3EAC-438E-A5AA-602EEA38C54B}] => (Allow) C:\Users\Antje\AppData\Local\Temp\7zS7DB5\HPDiagnosticCoreUI.exe => Keine Datei
FirewallRules: [{2104D2D6-445C-4B24-A01E-94CF4F44892C}] => (Allow) C:\Users\Antje\AppData\Local\Temp\7zS7DB5\HPDiagnosticCoreUI.exe => Keine Datei
FirewallRules: [{5DD0BC83-66FB-4ED5-BC3A-9263FDF2A5CB}] => (Allow) C:\Users\Antje\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{EFCB2BDA-CA1C-40F9-8AEF-C5A22DEA06E3}] => (Allow) C:\Users\Antje\AppData\Roaming\Zoom\bin\airhost.exe => Keine Datei
FirewallRules: [{3BC92A53-0555-4F54-9E5A-87856AC88741}] => (Allow) C:\Users\Antje\AppData\Local\Temp\7zS2CA5\HPDiagnosticCoreUI.exe => Keine Datei
FirewallRules: [{8F66468B-9540-40A8-94D1-43F84338F2ED}] => (Allow) C:\Users\Antje\AppData\Local\Temp\7zS2CA5\HPDiagnosticCoreUI.exe => Keine Datei
FirewallRules: [{34A497B3-411F-49BB-B359-4486B4099C2E}] => (Allow) C:\Program Files (x86)\MyDrive Connect\TomTom MyDrive Connect.exe (TomTom International B.V. -> TomTom)
FirewallRules: [{49C2762E-80BD-47B1-A828-6314EF730788}] => (Allow) C:\Program Files (x86)\AOMEI\AOMEI Backupper\6.5.0\ABService.exe => Keine Datei
FirewallRules: [{CFFEC999-3CC5-4ED6-8CED-E6A2D96AADA3}] => (Allow) C:\Program Files (x86)\AOMEI\AOMEI Backupper\6.5.0\ABService.exe => Keine Datei
FirewallRules: [{1BD3CFB5-3856-4616-AD07-6185B189A3EF}] => (Allow) C:\Program Files\MiniTool ShadowMaker\AgentService.exe => Keine Datei
FirewallRules: [{567F87A9-10CE-4281-82B8-1261C728F298}] => (Allow) C:\Program Files\MiniTool ShadowMaker\AgentService.exe => Keine Datei
FirewallRules: [{44AE2901-A43D-4B31-AD42-F8B46A568D7B}] => (Allow) C:\Program Files (x86)\Samsung\Samsung DeX\SamsungDeX.exe (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
FirewallRules: [{B28286FC-743A-49C7-A133-A5D6B783548F}] => (Allow) C:\Program Files (x86)\Samsung\Samsung DeX\SamsungDeX.exe (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
FirewallRules: [{64FF01C1-9B77-47CB-8336-2CD6BB669AB0}] => (Allow) C:\Program Files\HP\HP ENVY 4520 series\Bin\DeviceSetup.exe (HP Inc. -> HP Inc.)
FirewallRules: [{5C83EABD-1F0E-4B40-B8F2-763517439A5E}] => (Allow) LPort=5357
FirewallRules: [{E3F2DDE3-EA68-47A8-8BAD-BC4533A6EEA8}] => (Allow) C:\Program Files\HP\HP ENVY 4520 series\Bin\HPNetworkCommunicatorCom.exe (HP Inc. -> HP Inc.)
FirewallRules: [{7F8D7356-AC73-492D-8655-0E737418A487}] => (Allow) C:\Users\Antje\AppData\Local\Temp\7zS4C9F\HPDiagnosticCoreUI.exe => Keine Datei
FirewallRules: [{BDEDE707-ECE0-4512-BF2D-F4C07512B11D}] => (Allow) C:\Users\Antje\AppData\Local\Temp\7zS4C9F\HPDiagnosticCoreUI.exe => Keine Datei
FirewallRules: [{9E6FEB8B-ACC2-46DA-9F10-3C4D789AF60E}] => (Allow) C:\hp\Diagnostics\PSDR\HPDiagnosticCoreUI.exe (HP Inc. -> HP Development Company, L.P.)
FirewallRules: [{27D96E6D-AC77-4311-8838-36C6C7EEAF8B}] => (Allow) C:\hp\Diagnostics\PSDR\HPDiagnosticCoreUI.exe (HP Inc. -> HP Development Company, L.P.)
FirewallRules: [{8EC2177F-1FDB-479C-B6BF-12DEFEB64A7B}] => (Allow) C:\Users\Antje\AppData\Local\Temp\7zS2C3D\HPDiagnosticCoreUI.exe => Keine Datei
FirewallRules: [{D6531082-A6AF-497E-8307-11DC88F04ABF}] => (Allow) C:\Users\Antje\AppData\Local\Temp\7zS2C3D\HPDiagnosticCoreUI.exe => Keine Datei
FirewallRules: [{7E056B1B-FBFF-4422-841D-53C3710592AC}] => (Allow) C:\Program Files\WindowsApps\B9ECED6F.ASUSPCAssistant_4.0.6.0_x64__qmba6cd70vzyy\MyASUS\AsusMyASUS.exe (38BC0208-0916-4E44-909B-E6832F47CDE7 -> ASUSTeK COMPUTER INC.)
FirewallRules: [{5E7E12F9-2DF9-4B8F-A8B4-3D89EA362FB2}] => (Allow) C:\Program Files\WindowsApps\B9ECED6F.ASUSPCAssistant_4.0.6.0_x64__qmba6cd70vzyy\MyASUS\AsusMyASUS.exe (38BC0208-0916-4E44-909B-E6832F47CDE7 -> ASUSTeK COMPUTER INC.)
FirewallRules: [{DFB0C5C0-2530-4AF8-839E-D48C48F49B0D}] => (Allow) C:\Program Files\WindowsApps\B9ECED6F.ASUSPCAssistant_4.0.6.0_x64__qmba6cd70vzyy\MyASUS\AsusMyASUS.exe (38BC0208-0916-4E44-909B-E6832F47CDE7 -> ASUSTeK COMPUTER INC.)
FirewallRules: [{230D588C-16CC-49CF-BC75-FD354F9B2A52}] => (Allow) C:\Program Files\WindowsApps\B9ECED6F.ASUSPCAssistant_4.0.6.0_x64__qmba6cd70vzyy\MyASUS\AsusMyASUS.exe (38BC0208-0916-4E44-909B-E6832F47CDE7 -> ASUSTeK COMPUTER INC.)
FirewallRules: [{F3803F0E-2802-454E-92C9-051DC33E70F9}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_24004.1405.2679.618_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{E16C68BC-72CA-4E79-91F4-F284C3CCA7CE}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_24004.1405.2679.618_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{1F045A9B-B433-41D4-9BDA-B22A1975BCC4}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{E426800C-95E2-4E54-9DD5-4C4B0A4B0543}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{6FD1EEAC-F569-416D-9BF0-A5801E57B068}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{F5D96EDD-3B1F-430E-9988-2D8DCA6474E0}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{87BEDF47-B57B-4482-8BE3-2EA97B708F4B}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.112.3210.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{C43E0909-D2FA-4860-B420-09883006A100}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.112.3210.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{88D76A72-55B1-4352-AC36-BDFF065CE4C2}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.112.3210.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{1A23D033-8C75-4B83-BAA0-7DD16F4BD1DB}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.112.3210.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{0815E038-6F55-4ABC-A9EC-944C64C77415}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.231.1205.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{7DB6F437-3BBF-42B3-A356-24A417D94FD9}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.231.1205.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{8A6F2C61-0612-4AE1-BE94-2F1A493E34E7}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.231.1205.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{77E0B366-4A34-408D-9FAE-F579583083EC}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.231.1205.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{718CA857-0C21-48B8-8DB9-96FC7C4E11E6}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.231.1205.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{E52A0985-8AFF-4766-B789-738D4B760F91}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.231.1205.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{5A16052B-10A3-49CF-AAE9-AE671C4C09B8}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.231.1205.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{63EA45C2-D6E7-4710-A6AE-A2ECB8E13787}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.231.1205.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{9AA43DE3-4695-4138-A308-9905708CCA7F}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.231.1205.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{34C5C175-5A87-4791-BDBC-1B2A89FA08DE}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.231.1205.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{19E79BF1-1636-4D8E-B745-4C47CB2AEDC7}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\121.0.2277.128\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
==================== Wiederherstellungspunkte =========================
07-02-2024 13:08:40 Windows Modules Installer
16-02-2024 20:45:58 Windows Update
17-02-2024 15:31:58 AdwCleaner_BeforeCleaning_17/02/2024_15:31:57
==================== Fehlerhafte Geräte im Gerätemanager ============
==================== Fehlereinträge in der Ereignisanzeige: ========================
Applikationsfehler:
==================
Error: (02/20/2024 03:22:11 PM) (Source: Firefox Default Browser Agent) (EventID: 2) (User: )
Description: Event-ID 2
Error: (02/17/2024 03:33:38 PM) (Source: VSS) (EventID: 13) (User: )
Description: Volumenschattenkopie-Dienst-Informationen: Der COM-Server mit CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} und dem Namen "CEventSystem" kann nicht gestartet werden. [0x8007045b, Der Computer wird heruntergefahren.]
Error: (02/17/2024 03:33:38 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Volumeschattenkopie-Dienstfehler: Beim Aufrufen von Routine "CoCreateInstance" ist ein unerwarteter Fehler aufgetreten. hr = 0x8007045b, Der Computer wird heruntergefahren..
Error: (02/17/2024 03:33:38 PM) (Source: VSS) (EventID: 13) (User: )
Description: Volumenschattenkopie-Dienst-Informationen: Der COM-Server mit CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} und dem Namen "CEventSystem" kann nicht gestartet werden. [0x8007045b, Der Computer wird heruntergefahren.]
Error: (02/17/2024 03:33:38 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Volumeschattenkopie-Dienstfehler: Beim Aufrufen von Routine "CoCreateInstance" ist ein unerwarteter Fehler aufgetreten. hr = 0x8007045b, Der Computer wird heruntergefahren..
Error: (02/17/2024 03:33:38 PM) (Source: VSS) (EventID: 13) (User: )
Description: Volumenschattenkopie-Dienst-Informationen: Der COM-Server mit CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} und dem Namen "CEventSystem" kann nicht gestartet werden. [0x8007045b, Der Computer wird heruntergefahren.]
Error: (02/17/2024 11:43:55 AM) (Source: Firefox Default Browser Agent) (EventID: 2) (User: )
Description: Event-ID 2
Error: (02/07/2024 01:18:05 PM) (Source: Firefox Default Browser Agent) (EventID: 2) (User: )
Description: Event-ID 2
Systemfehler:
=============
Error: (02/17/2024 05:30:56 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT-AUTORITÄT)
Description: Installationsfehler: Die Installation des folgenden Updates ist mit Fehler 0x80073d02 fehlgeschlagen: 9MV0B5HZVK9Z-Microsoft.GamingApp
Error: (02/17/2024 05:30:52 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT-AUTORITÄT)
Description: Installationsfehler: Die Installation des folgenden Updates ist mit Fehler 0x80073d02 fehlgeschlagen: 9NMPJ99VJBWV-Microsoft.YourPhone
Error: (02/17/2024 03:33:39 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT-AUTORITÄT)
Description: Das WLAN-Erweiterungsmodul wurde unerwartet beendet.
Modulpfad: C:\WINDOWS\system32\Rtlihvs.dll
Error: (02/17/2024 03:33:39 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT-AUTORITÄT)
Description: Das WLAN-Erweiterungsmodul wurde unerwartet beendet.
Modulpfad: C:\WINDOWS\system32\Rtlihvs.dll
Error: (02/17/2024 03:32:14 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "HP Print Scan Doctor Service" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 5000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (02/17/2024 03:32:14 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "HPWMISVC" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
Error: (02/17/2024 03:32:14 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Lexware Update Service" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 120000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (02/17/2024 03:32:14 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Windows-Sicherheitsdienst" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 60000 Millisekunden durchgeführt: Neustart des Diensts.
Windows Defender:
================
Date: 2022-10-17 11:12:28
Description:
Die Microsoft Defender Antivirus-Überprüfung wurde vor ihrem Abschluss beendet.
Überprüfungs-ID: {2CD613F1-02AF-47AB-92B0-586E86D8EEA5}
Überprüfungstyp: Antimalware
Überprüfungsparameter: Schnellüberprüfung
Benutzer: NT-AUTORITÄT\SYSTEM
CodeIntegrity:
===============
Date: 2024-02-20 15:40:54
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\SecurityHealthService.exe) attempted to load \Device\HarddiskVolume3\Program Files\Norton Security\{80769C27-3707-491C-9C88-A7F355234C1A}\Engine\22.23.10.10\symamsi.dll that did not meet the Windows signing level requirements.
Date: 2024-02-20 15:16:42
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume3\Program Files\Norton Security\{80769C27-3707-491C-9C88-A7F355234C1A}\Engine\22.23.10.10\symamsi.dll that did not meet the Windows signing level requirements.
==================== Speicherinformationen ===========================
BIOS: Insyde F.30 06/02/2020
Hauptplatine: HP 84A6
Prozessor: Intel(R) Core(TM) i5-8250U CPU @ 1.60GHz
Prozentuale Nutzung des RAM: 32%
Installierter physikalischer RAM: 24487.1 MB
Verfügbarer physikalischer RAM: 16495.65 MB
Summe virtueller Speicher: 26023.1 MB
Verfügbarer virtueller Speicher: 17216.88 MB
==================== Laufwerke ================================
Drive c: (Windows) (Fixed) (Total:439.12 GB) (Free:318.51 GB) (Model: WDC WDS500G2B0A-00SM50) NTFS
Drive d: (RECOVERY) (Fixed) (Total:15.97 GB) (Free:1.45 GB) (Model: WDC WDS500G2B0A-00SM50) NTFS ==>[System mit Startkomponenten (eingeholt von Laufwerk)]
\\?\Volume{2334f5cf-6828-44fa-bcbd-991f24e9a18a}\ (Windows RE tools) (Fixed) (Total:0.96 GB) (Free:0.1 GB) NTFS
\\?\Volume{6b57364a-8951-41c8-83f2-e007c30fe2eb}\ () (Fixed) (Total:0.25 GB) (Free:0.18 GB) FAT32
==================== MBR & Partitionstabelle ====================
==========================================================
Disk: 0 (Protective MBR) (Size: 465.8 GB) (Disk ID: 00000000)
Partition: GPT.
==================== Ende von Addition.txt =======================
Code:
ATTFilter # -------------------------------
# Malwarebytes AdwCleaner 8.4.1.0
# -------------------------------
# Build: 01-29-2024
# Database: 2024-01-29.3 (Local)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 02-17-2024
# Duration: 00:00:02
# OS: Windows 11 (Build 22631.3007)
# Cleaned: 7
# Awaiting reboot:1
# Failed: 0
***** [ Services ] *****
No malicious services cleaned.
***** [ Folders ] *****
No malicious folders cleaned.
***** [ Files ] *****
No malicious files cleaned.
***** [ DLL ] *****
No malicious DLLs cleaned.
***** [ WMI ] *****
No malicious WMI cleaned.
***** [ Shortcuts ] *****
No malicious shortcuts cleaned.
***** [ Tasks ] *****
No malicious tasks cleaned.
***** [ Registry ] *****
No malicious registry entries cleaned.
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries cleaned.
***** [ Chromium URLs ] *****
No malicious Chromium URLs cleaned.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries cleaned.
***** [ Firefox URLs ] *****
No malicious Firefox URLs cleaned.
***** [ Hosts File Entries ] *****
No malicious hosts file entries cleaned.
***** [ Preinstalled Software ] *****
Deleted Preinstalled.HPSupportAssistant Folder C:\Program Files (x86)\HEWLETT-PACKARD\HP CUSTOMER FEEDBACK
Deleted Preinstalled.HPSupportAssistant Folder C:\Program Files (x86)\HEWLETT-PACKARD\HP SUPPORT FRAMEWORK
Deleted Preinstalled.HPSupportAssistant Folder C:\ProgramData\HEWLETT-PACKARD\HP SUPPORT FRAMEWORK
Deleted Preinstalled.HPSupportAssistant Folder C:\Users\Antje\AppData\Local\HEWLETT-PACKARD\HP SUPPORT FRAMEWORK
Deleted Preinstalled.HPSupportAssistant Folder C:\Users\Antje\AppData\Roaming\HEWLETT-PACKARD\HP SUPPORT FRAMEWORK
Deleted Preinstalled.HPSupportAssistant Folder C:\Windows\System32\config\systemprofile\AppData\Local\HEWLETT-PACKARD\HP SUPPORT FRAMEWORK
Needs Reboot Preinstalled.HPSupportAssistant Folder C:\Program Files (x86)\HEWLETT-PACKARD\HP SUPPORT SOLUTIONS
*************************
[+] Delete Tracing Keys
[+] Reset Winsock
*************************
***** Reboot Required to Complete *****
***** [ Folders ] *****
Cleaning failed C:\Program Files (x86)\HEWLETT-PACKARD\HP SUPPORT SOLUTIONS
*************************
AdwCleaner[S00].txt - [2938 octets] - [02/09/2020 17:20:05]
AdwCleaner[C00].txt - [2814 octets] - [02/09/2020 17:21:31]
AdwCleaner[S01].txt - [5090 octets] - [02/09/2020 17:32:50]
AdwCleaner[S02].txt - [5151 octets] - [02/09/2020 17:34:13]
AdwCleaner[C02].txt - [5729 octets] - [02/09/2020 17:43:13]
AdwCleaner[S03].txt - [2465 octets] - [17/02/2024 15:31:17]
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C03].txt ##########
Vielen Dank für die Hilfe. LG Antje  |
|
24.02.2024, 19:27
| #2 | |
| /// Winkelfunktion /// TB-Süch-Tiger™   | Laptop Win11Home Email-Adresse Passwort wurde geändert nicht von mir Grundsätzlich: Wenn deine Konten gehackt worden, dann passierte das idR online, weil du ein schlechtes Passwortmanagement hattest. Also Passwort zu einfach, oder du hast hast und dasselbe Passwort für viele verschiedene oder gar alle Dienste im Netz. Das musst du tunlichst vermeiden, man benötigt für jeden Login ein eigenes Passwort. Dokumentieren kannst du das zB mit KeePass.
__________________Nur um das klarzustellen. Weil wir hier oft von Hilfesuchenden zu hören bekommen, dass es ja nichts anderes sein kann als ein versiffter Rechner also Virus in Windows. Und das trifft eben nicht notwendigerweise zu! Zitat:
__________________ |
|
24.02.2024, 21:17
| #3 |
| /// TB-Ausbilder | Laptop Win11Home Email-Adresse Passwort wurde geändert nicht von mir Ich sehe keine Malware in den Logdateien.
__________________Derzeit gibt es zahlreiche unberechtigte Zugriffsversuche auf Konten bei GMX und WEB.de. Vermutlich sind Kriminelle an einen größeren Satz an E-Mail-Adressen (und ggf. auch von Passwörtern) gekommen: GMX- und Web.de zeigen viele fehlerhafte Log-in-Versuche Vermutlich versuchen die Kriminellen, auf den Konten zu gelangen... entweder mit den Passwörtern, die erbeutet wurden, oder durch Brute-Force-Angriffe. Daher ist es, wie cosinus schon erwähnte, wichtig, dass man sichere Passwörter (Groß- und Kleinschreibung, Zahlen, Sonerzeichen, mindestens Zeichenlänge von 12) verwendet. Ich selbst habe vor kurzem meine Passwörter von Zeichenlänge 16 auf 20 verstärkt. |
|
24.02.2024, 21:21
| #4 | |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Laptop Win11Home Email-Adresse Passwort wurde geändert nicht von mirZitat:
__________________ Logfiles bitte immer in CODE-Tags posten  |
|
27.02.2024, 17:41
| #5 |
| | Laptop Win11Home Email-Adresse Passwort wurde geändert nicht von mir Vielen Dank für eure Antworten. Dann werde ich das beherzigen. LG Antje |
|
| Themen zu Laptop Win11Home Email-Adresse Passwort wurde geändert nicht von mir |
| bonjour, browser, computer, desktop, e-mail, email, error, failed, firefox, google, helper, home, homepage, internet, internet explorer, mozilla, problem, realtek, registry, scan, security, software, svchost.exe, usb, windows |
Linear-Darstellung
