| |
| |||||||
Log-Analyse und Auswertung: Windows 11 - Windows Defender meldet Trojaner?Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
04.11.2022, 11:16
| #1 |
 |  Windows 11 - Windows Defender meldet Trojaner? Hallo. Seit vorgestern fiel mir auf, dass der Defender ein Problem meldet, welches ich nicht beseitigen kann. Bedrohung gefunden: Trojan:XML/Phish.J!eml Die angegebene Datei hab ich im Zielordner gelöscht, Meldung besteht weiterhin. Danke im Voraus! FRST: Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 31-10-2022 02
durchgeführt von Matthias (Administrator) auf DESKTOP-V6D1Q80 (Micro-Star International Co., Ltd. MS-7C37) (04-11-2022 10:51:28)
Gestartet von C:\Users\Matthias\Downloads
Geladene Profile: Matthias
Plattform: Microsoft Windows 11 Pro Version 22H2 22621.674 (X64) Sprache: Deutsch (Deutschland)
Standard-Browser: Chrome
Start-Modus: Normal
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
(C:\Program Files (x86)\MSI\MSI Center\MSI.CentralServer.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI) C:\Program Files (x86)\MSI\MSI Center\Engine\CC_Engine_x64.exe
(C:\Program Files (x86)\MSI\MSI Center\MSI_Central_Service.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\MSI Center\MSI.CentralServer.exe
(C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe ->) (Razer USA Ltd. -> ) C:\Program Files (x86)\Razer\Synapse3\UserProcess\Razer Synapse Service Process.exe
(C:\Program Files\Elgato\StreamDeck\StreamDeck.exe ->) () [Datei ist nicht signiert] C:\Users\Matthias\AppData\Roaming\Elgato\StreamDeck\Plugins\tv.twitch.studio.sdPlugin\twitchstudiostreamdeck.exe
(C:\Program Files\Elgato\StreamDeck\StreamDeck.exe ->) (com.barraider.obstools) [Datei ist nicht signiert] C:\Users\Matthias\AppData\Roaming\Elgato\StreamDeck\Plugins\com.barraider.obstools.sdPlugin\com.barraider.obstools.exe
(C:\Program Files\Elgato\StreamDeck\StreamDeck.exe ->) (Frederick Emmott -> ) C:\Users\Matthias\AppData\Roaming\Elgato\StreamDeck\Plugins\com.fredemmott.micmutetoggle.sdPlugin\sdmicmute.exe
(C:\Program Files\Elgato\StreamDeck\StreamDeck.exe ->) (The Qt Company Oy -> The Qt Company Ltd.) C:\Program Files\Elgato\StreamDeck\QtWebEngineProcess.exe <5>
(C:\Program Files\Elgato\StreamDeck\StreamDeck.exe ->) (Voicemod Sociedad Limitada -> ) C:\Users\Matthias\AppData\Roaming\Elgato\StreamDeck\Plugins\net.voicemod.windowsdesktop.sdPlugin\voicemodplugin.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3>
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_421.20070.765.0_x64__cw5n1h2txyewy\Dashboard\Widgets.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\107.0.1418.26\msedgewebview2.exe <6>
(explorer.exe ->) (Corsair Memory, Inc. -> Corsair Memory, Inc) C:\Program Files\Elgato\StreamDeck\StreamDeck.exe
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <23>
(Nvidia Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(services.exe ->) (Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe
(services.exe ->) (Endor AG -> ) C:\Program Files\Fanatec\Fanatec Wheel\FWPnpService.exe
(services.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.4-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\Windows\System32\Sgrm\SgrmBroker.exe
(services.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\MSI Center\MSI_Central_Service.exe
(services.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\MSI Center\Mystic Light\LightKeeperService.exe
(services.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\MSI Center\Mystic Light\Mystic_Light_Service.exe
(services.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\MSI Center\Voice Control\VoiceControl_Service.exe
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_ade64cd54ec2f9ed\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Razer USA Ltd. -> Razer Inc) C:\Program Files (x86)\Razer\Razer Services\GMS\GameManagerService.exe
(services.exe ->) (Razer USA Ltd. -> Razer Inc) C:\Program Files (x86)\Razer\Razer Services\GMS3\GameManagerService3.exe
(services.exe ->) (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer Chroma SDK\bin\RzChromaStreamServer.exe
(services.exe ->) (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKServer.exe
(services.exe ->) (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKService.exe
(services.exe ->) (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Razer Cortex\CortexLauncherService.exe
(services.exe ->) (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Razer Services\Razer Central\RazerCentralService.exe
(services.exe ->) (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_03ae49260a64ff68\RtkAudUService64.exe <2>
(services.exe ->) (Reason Cybersecurity Inc. -> Reason Software Company Inc.) C:\Program Files\SaferWeb\rsDNSClientSvc.exe
(services.exe ->) (Reason Cybersecurity Inc. -> Reason Software Company Inc.) C:\Program Files\SaferWeb\rsDNSResolver.exe
(services.exe ->) (Reason Cybersecurity Inc. -> Reason Software Company Inc.) C:\Program Files\SaferWeb\rsDNSSvc.exe
(services.exe ->) (Riot Games, Inc. -> Riot Games, Inc.) C:\Program Files\Riot Vanguard\vgc.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_4.2204.13303.0_x64__8wekyb3d8bbwe\Cortana.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.YourPhone_1.22082.119.0_x64__8wekyb3d8bbwe\PhoneExperienceHost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.AppRep.ChxApp_cw5n1h2txyewy\CHXSmartScreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(svchost.exe ->) (Microsoft Windows) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_421.20070.765.0_x64__cw5n1h2txyewy\Dashboard\Widgets.exe
(svchost.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\MSI Center\MSI.TerminalServer.exe
(svchost.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\MSI Center\Mystic Light\LEDKeeper2.exe
(svchost.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\MSI Center\Voice Control\VoiceControlEngine.exe
(svchost.exe ->) (Spotify AB) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.197.962.0_x86__zpdnekdrzrea0\XboxGameBarSpotify.exe
==================== Registry (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_03ae49260a64ff68\RtkAudUService64.exe [3495880 2022-06-09] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [KeePass 2 PreLoad] => C:\Program Files\KeePass Password Safe 2\KeePass.exe [3163248 2022-01-09] (Open Source Developer, Dominik Reichl -> Dominik Reichl)
HKLM\...\Run: [Riot Vanguard] => C:\Program Files\Riot Vanguard\vgtray.exe [3071192 2022-08-30] (Riot Games, Inc. -> Riot Games, Inc.)
HKLM\...\Run: [SteelSeriesGG] => C:\Program Files\SteelSeries\GG\SteelSeriesGG.exe [12837240 2022-09-15] (SteelSeries ApS -> SteelSeries ApS)
HKLM\...\Run: [Stream Deck] => C:\Program Files\Elgato\StreamDeck\StreamDeck.exe [11144232 2022-09-29] (Corsair Memory, Inc. -> Corsair Memory, Inc)
HKLM-x32\...\Run: [DivXMediaServer] => C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe [851928 2022-08-22] (DIVX LLC -> DivX, LLC)
HKLM-x32\...\Run: [RazerCortex] => C:\Program Files (x86)\Razer\Razer Cortex\RazerCortex.exe [543736 2022-10-08] (Razer USA Ltd. -> Razer Inc.)
HKU\S-1-5-19\...\Run: [OneDriveSetup] => C:\Windows\System32\OneDriveSetup.exe [50312608 2022-05-07] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-20\...\Run: [OneDriveSetup] => C:\Windows\System32\OneDriveSetup.exe [50312608 2022-05-07] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2960260898-141030721-2575920888-1001\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2630016 2022-11-02] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2960260898-141030721-2575920888-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4234088 2022-10-19] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-2960260898-141030721-2575920888-1001\...\Run: [Overwolf] => C:\Program Files (x86)\Overwolf\OverwolfLauncher.exe [1802584 2022-09-22] (Overwolf Ltd -> Overwolf Ltd.)
HKU\S-1-5-21-2960260898-141030721-2575920888-1001\...\Run: [Synapse3] => C:\Program Files (x86)\Razer\Synapse3\WPFUI\Framework\Razer Synapse 3 Host\Razer Synapse 3.exe [3538440 2022-10-06] (Razer USA Ltd. -> Razer Inc.)
HKU\S-1-5-21-2960260898-141030721-2575920888-1001\...\Run: [FanaLab] => C:\Program Files (x86)\Fanatec\FanaLab\Control\FanaLab.exe [98381792 2022-03-31] (Endor AG -> Endor Fanatec)
HKU\S-1-5-21-2960260898-141030721-2575920888-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [32659920 2022-07-02] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-2960260898-141030721-2575920888-1001\...\Run: [MicrosoftEdgeAutoLaunch_CF3A0B5AD32FE1AD6A7C3F142C8929DE] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [3891624 2022-10-29] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-18\...\Run: [Synapse3] => C:\Program Files (x86)\Razer\Synapse3\WPFUI\Framework\Razer Synapse 3 Host\Razer Synapse 3.exe [3538440 2022-10-06] (Razer USA Ltd. -> Razer Inc.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\107.0.5304.88\Installer\chrmstp.exe [2022-11-03] (Google LLC -> Google LLC)
GroupPolicy: Beschränkung ? <==== ACHTUNG
Policies: C:\ProgramData\NTUSER.pol: Beschränkung <==== ACHTUNG
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) ============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {00A8CABC-47F3-4C55-A222-F5A13046E00F} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.4-0\MpCmdRun.exe [1567336 2022-11-01] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {00BAE98E-6CF1-487D-A65D-7933E5102A80} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26154960 2022-11-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {03B94A46-69C7-402A-8926-15190BDF9C1A} - System32\Tasks\GoogleUpdateTaskMachineUA{199E7407-D83B-49D7-A45D-3FD4434F68BB} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2022-04-14] (Google LLC -> Google LLC)
Task: {0600DD45-FAF2-4131-A006-0B17509B9F78} - System32\Tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser => %windir%\system32\sc.exe start InventorySvc
Task: {08BD09F4-BBD5-4759-9418-2A6680D41823} - System32\Tasks\Microsoft\Windows\PI\SecureBootEncodeUEFI => C:\WINDOWS\system32\SecureBootEncodeUEFI.exe [49152 2022-05-07] (Microsoft Windows -> )
Task: {0DF8C101-4DB5-4C5C-B555-CCCE6C68E053} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.4-0\MpCmdRun.exe [1567336 2022-11-01] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {0F060AD2-42E7-4E7E-AA51-3AF565709659} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1655864 2022-10-13] (Nvidia Corporation -> NVIDIA Corporation)
Task: {1DD457B4-4B5B-4F13-B5B4-205BD0E55FF2} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [66936 2022-11-01] (Microsoft Corporation -> Microsoft Corporation)
"C:\Windows\System32\Tasks\Microsoft\Windows\Security\Pwdless\IntelligentPwdlessTask" konnte nicht entsperrt werden. <==== ACHTUNG
Task: {27CE9D59-9D48-4D29-99BC-64657AEBA494} - System32\Tasks\Microsoft\Windows\Security\Pwdless\IntelligentPwdlessTask
Task: {2FBB6100-648C-4B0A-BF11-66BB18B7E99D} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [908856 2022-10-13] (Nvidia Corporation -> NVIDIA Corporation)
Task: {3651ABFE-D963-48F3-9B8E-A13B07021AC3} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [649784 2022-10-13] (Nvidia Corporation -> NVIDIA Corporation)
Task: {38143CC3-6155-4CE0-A202-BFAC565C668E} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1003128 2022-08-30] (Nvidia Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {4C832FA8-A059-43E6-91B9-2109ECDF66C8} - System32\Tasks\MSI Task Host - LEDKeeper2_Host => C:\Program Files (x86)\MSI\MSI Center\Mystic Light\LEDKeeper2.exe [2011440 2022-03-28] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.)
Task: {53A0F1ED-301E-45DB-9F75-787E47F4EF57} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-2960260898-141030721-2575920888-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4166528 2022-11-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {5535C0EC-5C3C-46FA-9A9E-11EE5B40A1DA} - System32\Tasks\RazerCortexScheduleClean => C:\Program Files (x86)\Razer\Razer Cortex\RazerCortex.exe [543736 2022-10-08] (Razer USA Ltd. -> Razer Inc.)
Task: {5B1D4BA9-EDF9-49C0-8DDD-603FDDDCB40A} - System32\Tasks\DivXUpdate => C:\Program Files (x86)\Common Files\DivX Shared\DivX Update\DivXUpdate.exe [68056 2022-08-22] (DIVX LLC -> DivX, LLC)
Task: {5C341C7B-FC62-4F53-BC0F-F863529DEF1A} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.4-0\MpCmdRun.exe [1567336 2022-11-01] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {6ECDE7A3-3E14-4C7B-A71E-F0B702344021} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1655864 2022-10-13] (Nvidia Corporation -> NVIDIA Corporation)
Task: {70BC3109-A094-4832-AF62-7F7F2E459F89} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26154960 2022-11-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {779FDA8B-148E-4CA9-A8B4-641969EDB656} - System32\Tasks\EOSv3 Scheduler onTime => C:\Users\Matthias\AppData\Local\ESET\ESETOnlineScanner\ESETOnlineScanner.exe [21737944 2022-11-03] (ESET, spol. s r.o. -> ESET)
Task: {7D1B697E-218A-4E1A-A48F-63293DFAB7A1} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3342376 2022-10-17] (Nvidia Corporation -> NVIDIA Corporation)
Task: {8B165469-52C9-452F-8C2F-FABABB590FE9} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [144312 2022-11-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {8D68A696-3E48-4931-95D4-A76CFE3F52BC} - System32\Tasks\MicrosoftEdgeShadowStackRollbackTask => C:\Program Files (x86)\Microsoft\Edge\Application\106.0.1370.34\Installer\setup.exe --handle-crash="$(ProcessPath)" (Keine Datei)
Task: {8EB94DE7-2F0B-4CD6-B180-06BBE612B07E} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.4-0\MpCmdRun.exe [1567336 2022-11-01] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {907E2715-2A58-491B-A87E-20AE5D8C1FDD} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1655864 2022-10-13] (Nvidia Corporation -> NVIDIA Corporation)
Task: {9B40449D-6F77-4B7A-AA58-F7CE2954AC8A} - System32\Tasks\Overwolf Updater Task => C:\Program Files (x86)\Common Files\Overwolf\OverwolfUpdater.exe [2577752 2022-09-22] (Overwolf Ltd -> Overwolf LTD)
Task: {BEE9753A-4C03-4613-929C-03B89D50D792} - System32\Tasks\Microsoft\Windows\CloudRestore\Restore => {B4BCFA6F-948D-46B8-BF27-E8B1117E23B3} C:\WINDOWS\system32\CloudRestoreLauncher.dll [245760 2022-10-12] (Microsoft Windows -> Microsoft Corporation)
Task: {C2A48BA8-56EA-412C-AD54-C64790727FE1} - System32\Tasks\EOSv3 Scheduler onLogOn => C:\Users\Matthias\AppData\Local\ESET\ESETOnlineScanner\ESETOnlineScanner.exe [21737944 2022-11-03] (ESET, spol. s r.o. -> ESET)
Task: {C375B8E7-1D4F-4E57-90E7-3BEFD0DFCE06} - System32\Tasks\Microsoft\Windows\WlanSvc\MoProfileManagement => {085EDA12-CF4A-4944-8222-8ADCADE137CB} C:\Windows\System32\WlanMediaManager.dll [897024 2022-10-12] (Microsoft Windows -> Microsoft Corporation)
Task: {D66B04FB-9C5F-404F-B7C7-566AED7A2F78} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [908856 2022-10-13] (Nvidia Corporation -> NVIDIA Corporation)
Task: {DD06ABB4-4A2B-417A-A21E-F704DC5B9DDD} - System32\Tasks\GoogleUpdateTaskMachineCore{C09CDA25-2DA4-4D88-B1D9-F2BBE5EB8F98} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2022-04-14] (Google LLC -> Google LLC)
Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => C:\WINDOWS\system32\MusNotification.exe (Keine Datei)
Task: {E2D08D41-09FA-4082-94FB-A381D5B7E197} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [144312 2022-11-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {E43A8253-978F-40F3-9FAB-847F1742284A} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4166528 2022-11-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {FA390717-CA52-45B4-BC4E-D5C77CC58B36} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1655864 2022-10-13] (Nvidia Corporation -> NVIDIA Corporation)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{16ef1cc3-2b3e-43a4-96d4-68b39509f631}: [DhcpNameServer] 192.168.0.1
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\Matthias\AppData\Local\Microsoft\Edge\User Data\Default [2022-10-31]
Edge HKLM-x32\...\Edge\Extension: [caiblelclndcckfafdaggpephhgfpoip]
Edge HKLM-x32\...\Edge\Extension: [emgfgdclgfeldebanedpihppahgngnle]
FireFox:
========
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2022-11-01] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2022-11-01] (Microsoft Corporation -> Microsoft Corporation)
Chrome:
=======
CHR Profile: C:\Users\Matthias\AppData\Local\Google\Chrome\User Data\Default [2022-11-04]
CHR Notifications: Default -> hxxps://euw.op.gg; hxxps://www.lieferando.at; hxxps://www.wetter.at
CHR Extension: (Just Black) - C:\Users\Matthias\AppData\Local\Google\Chrome\User Data\Default\Extensions\aghfnjkcakhmadgdomlmlhhaocbkloab [2022-04-14]
CHR Extension: (WOT Website-Sicherheit und Schutz für sicheres Surfen) - C:\Users\Matthias\AppData\Local\Google\Chrome\User Data\Default\Extensions\bhmmomiinigofkjcapegjjndpbikblnp [2022-10-26]
CHR Extension: (Honey: Automatische Coupons & Prämien) - C:\Users\Matthias\AppData\Local\Google\Chrome\User Data\Default\Extensions\bmnlcjabgnpnenekpadlanbbkooimhnj [2022-10-26]
CHR Extension: (Avira Password Manager) - C:\Users\Matthias\AppData\Local\Google\Chrome\User Data\Default\Extensions\caljgklbbfbcjjanaijlacgncafpegll [2022-11-02]
CHR Extension: (Avira Safe Shopping) - C:\Users\Matthias\AppData\Local\Google\Chrome\User Data\Default\Extensions\ccbpbkebodcjkknkfkpmfeciinhidaeh [2022-11-02]
CHR Extension: (Watch2Gether) - C:\Users\Matthias\AppData\Local\Google\Chrome\User Data\Default\Extensions\cimpffimgeipdhnhjohpbehjkcdpjolg [2022-10-07]
CHR Extension: (Dark Mode) - C:\Users\Matthias\AppData\Local\Google\Chrome\User Data\Default\Extensions\dmghijelimhndkbmpgbldicpogfkceaj [2022-10-26]
CHR Extension: (Google Docs Offline) - C:\Users\Matthias\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-11-02]
CHR Extension: (AdBlock*– der beste Ad-Blocker) - C:\Users\Matthias\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2022-10-22]
CHR Extension: (Shoop Cashback & Gutscheine) - C:\Users\Matthias\AppData\Local\Google\Chrome\User Data\Default\Extensions\hacngjmphfcjdfpmfmlngemhddjdncpe [2022-11-02]
CHR Extension: (Nehmen Sie vollständige Webseiten auf - FireShot) - C:\Users\Matthias\AppData\Local\Google\Chrome\User Data\Default\Extensions\mcbpblocgmgfnpjjppndjkmgjaogfceg [2022-06-13]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Matthias\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-04-14]
CHR HKLM\...\Chrome\Extension: [llbcnfanfmjhpedaedhbcnpgeepdnnok]
CHR HKU\S-1-5-21-2960260898-141030721-2575920888-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [llbcnfanfmjhpedaedhbcnpgeepdnnok]
CHR HKLM-x32\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll]
CHR HKLM-x32\...\Chrome\Extension: [ccbpbkebodcjkknkfkpmfeciinhidaeh]
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk]
CHR HKLM-x32\...\Chrome\Extension: [llbcnfanfmjhpedaedhbcnpgeepdnnok]
==================== Dienste (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8885112 2022-09-24] (BattlEye Innovations e.K. -> )
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [12516280 2022-11-01] (Microsoft Corporation -> Microsoft Corporation)
R2 CortexLauncherService; C:\Program Files (x86)\Razer\Razer Cortex\CortexLauncherService.exe [588200 2022-10-08] (Razer USA Ltd. -> Razer Inc.)
S3 dcsvc; C:\WINDOWS\system32\dcsvc.dll [802816 2022-05-07] (Microsoft Windows -> Microsoft Corporation)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [1134624 2022-10-10] (EasyAntiCheat Oy -> Epic Games, Inc)
S3 EasyAntiCheat_EOS; C:\Program Files (x86)\EasyAntiCheat_EOS\EasyAntiCheat_EOS.exe [584680 2022-08-23] (EasyAntiCheat Oy -> Epic Games, Inc.)
S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [934368 2022-03-03] (Epic Games Inc. -> Epic Games, Inc.)
S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\22.212.1009.0004\FileSyncHelper.exe [3475328 2022-11-02] (Microsoft Corporation -> Microsoft Corporation)
R2 FWPnpService; C:\Program Files\Fanatec\Fanatec Wheel\FWPnpService.exe [467832 2022-02-17] (Endor AG -> )
S3 InventorySvc; C:\WINDOWS\system32\inventorysvc.dll [304480 2022-10-12] (Microsoft Windows -> Microsoft Corporation)
R2 LightKeeperService; C:\Program Files (x86)\MSI\MSI Center\Mystic Light\LightKeeperService.exe [86776 2020-12-23] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [8842536 2022-11-02] (Malwarebytes Inc. -> Malwarebytes)
R2 MSI_Central_Service; C:\Program Files (x86)\MSI\MSI Center\MSI_Central_Service.exe [150840 2021-06-26] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.)
R2 MSI_VoiceControl_Service; C:\Program Files (x86)\MSI\MSI Center\Voice Control\VoiceControl_Service.exe [36152 2021-08-25] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
R2 Mystic_Light_Service; C:\Program Files (x86)\MSI\MSI Center\Mystic Light\Mystic_Light_Service.exe [39760 2021-05-11] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.)
S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\22.212.1009.0004\OneDriveUpdaterService.exe [3840896 2022-11-02] (Microsoft Corporation -> Microsoft Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2579272 2022-08-09] (Electronic Arts, Inc. -> Electronic Arts)
R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3497808 2022-08-09] (Electronic Arts, Inc. -> Electronic Arts)
S3 OverwolfUpdater; C:\Program Files (x86)\Common Files\Overwolf\OverwolfUpdater.exe [2577752 2022-09-22] (Overwolf Ltd -> Overwolf LTD)
R2 Razer Chroma SDK Server; C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKServer.exe [2032040 2022-09-27] (Razer USA Ltd. -> Razer Inc.)
R2 Razer Chroma SDK Service; C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKService.exe [480176 2022-09-19] (Razer USA Ltd. -> Razer Inc.)
R2 Razer Chroma Stream Server; C:\Program Files (x86)\Razer Chroma SDK\bin\RzChromaStreamServer.exe [1354232 2022-06-15] (Razer USA Ltd. -> Razer Inc.)
R2 Razer Game Manager Service; C:\Program Files (x86)\Razer\Razer Services\GMS\GameManagerService.exe [254224 2021-11-16] (Razer USA Ltd. -> Razer Inc)
R2 Razer Game Manager Service 3; C:\Program Files (x86)\Razer\Razer Services\GMS3\GameManagerService3.exe [362760 2022-09-21] (Razer USA Ltd. -> Razer Inc)
R2 Razer Synapse Service; C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe [300552 2022-10-05] (Razer USA Ltd. -> Razer Inc.)
S3 Rockstar Service; C:\Program Files\Rockstar Games\Launcher\RockstarService.exe [1908688 2022-06-12] (Rockstar Games, Inc. -> Rockstar Games)
R2 rsDNSClientSvc; C:\Program Files\SaferWeb\rsDNSClientSvc.exe [743040 2022-10-30] (Reason Cybersecurity Inc. -> Reason Software Company Inc.)
R2 rsDNSResolver; C:\Program Files\SaferWeb\rsDNSResolver.exe [10939008 2022-10-30] (Reason Cybersecurity Inc. -> Reason Software Company Inc.)
R2 rsDNSSvc; C:\Program Files\SaferWeb\rsDNSSvc.exe [335488 2022-10-30] (Reason Cybersecurity Inc. -> Reason Software Company Inc.)
R2 RzActionSvc; C:\Program Files (x86)\Razer\Razer Services\Razer Central\RazerCentralService.exe [537912 2022-08-12] (Razer USA Ltd. -> Razer Inc.)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [249328 2022-10-12] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 SgrmBroker; C:\WINDOWS\system32\Sgrm\SgrmBroker.exe [414632 2022-05-07] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 ss_conn_launcher_service; C:\WINDOWS\System32\Samsung\EasySetup\ss_conn_launcher.exe [182392 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 SteelSeriesUpdateService; C:\Program Files\SteelSeries\GG\SteelSeriesUpdateService.exe [35200 2022-09-15] (SteelSeries ApS -> )
R2 TextInputManagementService; C:\WINDOWS\System32\TabSvc.dll [266240 2022-10-12] (Microsoft Windows -> Microsoft Corporation)
S3 ucldr_battlegrounds_gl; C:\Program Files\Common Files\Wellbia.com\ucldr_battlegrounds_gl.exe [5936680 2022-09-24] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.)
R2 vgc; C:\Program Files\Riot Vanguard\vgc.exe [10420944 2022-08-30] (Riot Games, Inc. -> Riot Games, Inc.)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.4-0\NisSrv.exe [3191224 2022-11-01] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.4-0\MsMpEng.exe [133536 2022-11-01] (Microsoft Windows Publisher -> Microsoft Corporation)
R3 wuauserv; C:\WINDOWS\system32\wuauserv.dll [137544 2022-10-12] (Microsoft Windows -> Microsoft Corporation)
S3 zksvc; C:\Program Files\Common Files\PUBG\zksvc.exe [10099288 2022-09-24] (PUBG CORPORATION -> KRAFTON, Inc)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_ade64cd54ec2f9ed\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_ade64cd54ec2f9ed\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
===================== Treiber (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R2 bfs; C:\WINDOWS\system32\drivers\bfs.sys [91480 2022-10-12] (Microsoft Windows -> Microsoft Corporation)
S1 EneTechIo; C:\Windows\system32\drivers\ene.sys [20992 2020-05-12] (Microsoft Windows Hardware Compatibility Publisher -> )
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [158640 2022-11-02] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 FWVirtualInputDevice; C:\WINDOWS\System32\drivers\FWVirtualInputDevice.sys [34816 2022-02-17] (Endor AG -> Endor AG)
S0 GenPass; C:\WINDOWS\System32\DriverStore\FileRepository\genpass.inf_amd64_bef88a423225ecdc\genpass.sys [62800 2022-05-07] (Microsoft Windows -> Microsoft Corporation)
S2 inpoutx64; C:\WINDOWS\System32\Drivers\inpoutx64.sys [15008 2022-04-13] (Red Fox UK Limited -> Highresolution Enterprises [www.highrez.co.uk])
S3 ksophon_x64; C:\Windows\system32\drivers\ksophon_x64.sys [9966728 2022-08-26] (PROXIMA BETA PTE. LIMITED -> PROXIMA BETE)
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [223176 2022-11-02] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [21480 2022-11-02] (Microsoft Windows Early Launch Anti-Malware Publisher -> Malwarebytes)
R3 MBAMFarflt; C:\WINDOWS\System32\DRIVERS\farflt.sys [193992 2022-11-03] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [75216 2022-11-03] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [239544 2022-11-02] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [181992 2022-11-03] (Malwarebytes Inc. -> Malwarebytes)
R1 MSIO; C:\Windows\system32\drivers\MsIo64.sys [17424 2020-01-19] (Microsoft Windows Hardware Compatibility Publisher -> MICSYS Technology Co., LTd)
R3 NTIOLib_CC_COMM; C:\Program Files (x86)\MSI\MSI Center\Lib\SYS\NTIOLib_X64.sys [29576 2021-11-03] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
R3 NTIOLib_MysticLight; C:\Program Files (x86)\MSI\MSI Center\Mystic Light\Lib\NTIOLib_X64.sys [14288 2017-07-11] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
R3 NvModuleTracker; C:\WINDOWS\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_0c1cc60a4b422185\NvModuleTracker.sys [45656 2022-07-14] (Nvidia Corporation -> NVIDIA Corporation)
S0 pvscsi; C:\WINDOWS\System32\drivers\pvscsii.sys [45408 2022-05-07] (Microsoft Windows -> VMware, Inc.)
S3 RoutePolicy; C:\WINDOWS\System32\drivers\RoutePolicy.sys [98304 2022-05-07] (Microsoft Windows -> )
S3 rsDwf; C:\WINDOWS\system32\DRIVERS\rsDwf.sys [54144 2022-10-30] (Reason CyberSecurity Inc. -> Reason CyberSecurity Inc.)
R3 RzCommon; C:\WINDOWS\System32\drivers\RzCommon.sys [54632 2021-03-30] (Razer USA Ltd. -> Razer Inc)
S3 RzDev_007e; C:\WINDOWS\System32\drivers\RzDev_007e.sys [54152 2020-08-24] (Razer USA Ltd. -> Razer Inc)
R3 RzDev_0086; C:\WINDOWS\System32\drivers\RzDev_0086.sys [53288 2021-09-28] (Razer USA Ltd. -> Razer Inc)
S3 RzDev_0088; C:\WINDOWS\System32\drivers\RzDev_0088.sys [54152 2020-08-24] (Razer USA Ltd. -> Razer Inc)
R3 RzDev_026c; C:\WINDOWS\System32\drivers\RzDev_026c.sys [56152 2021-05-02] (Razer USA Ltd. -> Razer Inc)
R3 SC0710.X64; C:\WINDOWS\System32\drivers\SC0710.X64.SYS [3707448 2021-09-29] (Corsair Memory, Inc. -> )
R3 ssdevfactory; C:\WINDOWS\System32\drivers\ssdevfactory.sys [47784 2022-05-03] (SteelSeries ApS -> SteelSeries ApS)
S3 ss_conn_usb_driver2; C:\WINDOWS\System32\Drivers\ss_conn_usb_driver2.sys [43640 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R3 SteelSeries_Sonar_VAD; C:\WINDOWS\System32\DriverStore\FileRepository\steelseries-sonar-vad.inf_amd64_ab95c13003d9c50f\SteelSeries-Sonar-VAD.sys [92912 2022-07-18] (SteelSeries ApS -> Windows (R) Win 7 DDK provider)
R1 vgk; C:\Program Files\Riot Vanguard\vgk.sys [8736232 2022-08-30] (Riot Games, Inc. -> Riot Games, Inc.)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49616 2022-11-01] (Microsoft Windows Early Launch Anti-Malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [469280 2022-11-01] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [95520 2022-11-01] (Microsoft Windows -> Microsoft Corporation)
R2 wtd; C:\WINDOWS\System32\drivers\wtd.sys [118784 2022-10-12] (Microsoft Windows -> Microsoft Corporation)
S3 xhunter1; C:\WINDOWS\xhunter1.sys [1445920 2022-10-23] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.)
U3 aswbdisk; kein ImagePath
S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X]
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
NETSVC: DcSvc -> C:\Windows\system32\dcsvc.dll (Microsoft Corporation)
==================== Ein Monat (erstellte) (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2022-11-04 10:51 - 2022-11-04 10:51 - 000036846 _____ C:\Users\Matthias\Downloads\FRST.txt
2022-11-04 10:51 - 2022-11-04 10:51 - 000000000 ____D C:\FRST
2022-11-04 10:50 - 2022-11-04 10:50 - 002374144 _____ (Farbar) C:\Users\Matthias\Downloads\FRST64.exe
2022-11-04 10:21 - 2022-11-04 10:21 - 000000000 ____D C:\Users\Matthias\AppData\LocalLow\IGDump
2022-11-03 19:02 - 2022-11-03 19:02 - 000000000 ____D C:\Users\Matthias\Documents\Benutzerdefinierte Office-Vorlagen
2022-11-03 01:07 - 2022-11-03 01:07 - 000758838 _____ C:\WINDOWS\system32\perfh007.dat
2022-11-03 01:07 - 2022-11-03 01:07 - 000157058 _____ C:\WINDOWS\system32\perfc007.dat
2022-11-03 01:01 - 2022-11-03 01:01 - 000193992 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys
2022-11-03 01:01 - 2022-11-03 01:01 - 000181992 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2022-11-03 01:01 - 2022-11-03 01:01 - 000075216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2022-11-03 00:56 - 2022-11-03 00:57 - 000000000 ____D C:\AdwCleaner
2022-11-03 00:55 - 2022-11-03 00:55 - 000003870 _____ C:\WINDOWS\system32\Tasks\EOSv3 Scheduler onLogOn
2022-11-03 00:55 - 2022-11-03 00:55 - 000003428 _____ C:\WINDOWS\system32\Tasks\EOSv3 Scheduler onTime
2022-11-03 00:07 - 2022-11-03 23:05 - 000001387 _____ C:\Users\Matthias\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ESET Online Scanner.lnk
2022-11-03 00:07 - 2022-11-03 23:05 - 000001281 _____ C:\Users\Matthias\Desktop\ESET Online Scanner.lnk
2022-11-03 00:07 - 2022-11-03 00:07 - 000000000 ____D C:\Users\Matthias\AppData\Local\ESET
2022-11-02 23:41 - 2022-11-02 23:41 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avira
2022-11-02 23:23 - 2022-11-02 23:23 - 000000000 ____D C:\Users\Public\Security Sessions
2022-11-02 23:22 - 2022-11-02 23:41 - 000658032 _____ C:\WINDOWS\system32\rtp.db
2022-11-02 23:22 - 2022-11-02 23:23 - 000000000 ____D C:\Users\Matthias\AppData\Local\Avira
2022-11-02 23:22 - 2022-11-02 23:22 - 000000000 ____D C:\WINDOWS\SysWOW64\statReporter
2022-11-02 23:21 - 2022-11-02 23:43 - 000000000 ____D C:\ProgramData\Avira
2022-11-02 23:21 - 2022-11-02 23:43 - 000000000 ____D C:\Program Files (x86)\Avira
2022-11-02 23:20 - 2022-11-02 23:20 - 000000000 ____D C:\WINDOWS\system32\gf2engine
2022-11-02 22:48 - 2022-11-02 23:57 - 000000000 ____D C:\ProgramData\Avast Software
2022-11-02 22:40 - 2022-11-02 22:40 - 000000000 ____D C:\WINDOWS\Microsoft Antimalware
2022-11-02 20:56 - 2022-11-02 20:56 - 000239544 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2022-11-02 20:56 - 2022-11-02 20:56 - 000223176 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
2022-11-02 20:56 - 2022-11-02 20:56 - 000158640 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2022-11-02 20:56 - 2022-11-02 20:56 - 000021480 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys
2022-11-02 20:56 - 2022-11-02 20:56 - 000002039 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2022-11-02 20:56 - 2022-11-02 20:56 - 000002027 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2022-11-02 20:56 - 2022-11-02 20:56 - 000000000 ____D C:\Users\Matthias\AppData\Local\mbam
2022-11-02 20:56 - 2022-11-02 20:56 - 000000000 ____D C:\ProgramData\Malwarebytes
2022-11-02 20:55 - 2022-11-02 20:56 - 000000000 ____D C:\Program Files\Malwarebytes
2022-11-02 20:47 - 2022-11-02 20:47 - 000000000 ____D C:\WINDOWS\LastGood.Tmp
2022-11-02 20:44 - 2022-10-26 23:30 - 002236992 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2022-11-02 20:44 - 2022-10-26 23:30 - 002236992 _____ C:\WINDOWS\system32\vulkaninfo.exe
2022-11-02 20:44 - 2022-10-26 23:30 - 001642600 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2022-11-02 20:44 - 2022-10-26 23:30 - 001642600 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2022-11-02 20:44 - 2022-10-26 23:30 - 001444448 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2022-11-02 20:44 - 2022-10-26 23:30 - 001444448 _____ C:\WINDOWS\system32\vulkan-1.dll
2022-11-02 20:44 - 2022-10-26 23:30 - 001168960 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2022-11-02 20:44 - 2022-10-26 23:30 - 001168960 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2022-11-02 20:44 - 2022-10-26 23:29 - 001487880 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2022-11-02 20:44 - 2022-10-26 23:29 - 001226744 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2022-11-02 20:44 - 2022-10-26 23:26 - 000865272 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvml.dll
2022-11-02 20:44 - 2022-10-26 23:26 - 000672280 _____ C:\WINDOWS\system32\nvofapi64.dll
2022-11-02 20:44 - 2022-10-26 23:26 - 000507440 _____ C:\WINDOWS\SysWOW64\nvofapi.dll
2022-11-02 20:44 - 2022-10-26 23:25 - 002161640 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2022-11-02 20:44 - 2022-10-26 23:25 - 001618944 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2022-11-02 20:44 - 2022-10-26 23:25 - 001530864 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2022-11-02 20:44 - 2022-10-26 23:25 - 001190912 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2022-11-02 20:44 - 2022-10-26 23:25 - 000746496 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvidia-smi.exe
2022-11-02 20:44 - 2022-10-26 23:24 - 012451824 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2022-11-02 20:44 - 2022-10-26 23:24 - 010219016 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2022-11-02 20:44 - 2022-10-26 23:24 - 005891080 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2022-11-02 20:44 - 2022-10-26 23:23 - 005856760 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcudadebugger.dll
2022-11-02 20:44 - 2022-10-26 23:23 - 005816312 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2022-11-02 20:44 - 2022-10-26 23:23 - 000853016 _____ (NVIDIA Corporation) C:\WINDOWS\system32\MCU.exe
2022-11-02 20:44 - 2022-10-26 01:15 - 000100589 _____ C:\WINDOWS\system32\nvinfo.pb
2022-11-02 20:43 - 2022-07-14 00:32 - 000060112 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvhci.sys
2022-10-30 19:28 - 2022-11-04 09:52 - 000000000 ____D C:\ProgramData\SaferWebService
2022-10-30 19:28 - 2022-11-03 00:57 - 000000000 ____D C:\Users\Matthias\AppData\Roaming\SaferWeb
2022-10-30 19:28 - 2022-10-30 19:28 - 000054144 _____ (Reason CyberSecurity Inc.) C:\WINDOWS\system32\Drivers\rsDwf.sys
2022-10-30 19:28 - 2022-10-30 19:28 - 000001181 _____ C:\Users\Matthias\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Safer Web.lnk
2022-10-30 19:28 - 2022-10-30 19:28 - 000000000 ____D C:\Program Files\SaferWeb
2022-10-28 15:02 - 2022-11-02 20:52 - 000000000 ____D C:\Program Files\Microsoft OneDrive
2022-10-27 14:22 - 2022-11-02 19:31 - 000003194 _____ C:\WINDOWS\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2022-10-27 14:22 - 2022-11-02 19:31 - 000002154 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2022-10-27 14:22 - 2022-10-27 14:22 - 000000000 ___RD C:\Users\Default\OneDrive
2022-10-27 14:22 - 2022-10-27 14:22 - 000000000 ____D C:\Program Files\Common Files\DESIGNER
2022-10-27 14:21 - 2022-10-31 23:22 - 000002543 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel.lnk
2022-10-27 14:21 - 2022-10-31 23:22 - 000002464 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access.lnk
2022-10-27 14:21 - 2022-10-27 14:21 - 000002547 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word.lnk
2022-10-27 14:21 - 2022-10-27 14:21 - 000002522 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk
2022-10-27 14:21 - 2022-10-27 14:21 - 000002497 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher.lnk
2022-10-27 14:21 - 2022-10-27 14:21 - 000002461 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote.lnk
2022-10-27 14:21 - 2022-10-27 14:21 - 000002433 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook.lnk
2022-10-27 14:21 - 2022-10-27 14:21 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Tools
2022-10-27 14:20 - 2022-11-01 18:03 - 000000000 ____D C:\Program Files\Microsoft Office
2022-10-27 14:20 - 2022-10-27 14:20 - 000000000 ____D C:\Program Files\Microsoft Office 15
2022-10-18 18:09 - 2022-10-18 18:09 - 000001163 _____ C:\Users\Public\Desktop\Razer Cortex.lnk
2022-10-15 18:00 - 2022-10-15 18:00 - 000000000 ____D C:\Users\Matthias\AppData\LocalLow\Blueplant Studios
2022-10-15 17:24 - 2022-10-15 17:24 - 000000223 _____ C:\Users\Matthias\Desktop\Inside the Backrooms.url
2022-10-13 13:58 - 2022-10-13 13:58 - 000000000 ____D C:\Users\Matthias\Documents\Overwatch
2022-10-13 10:12 - 2022-10-13 10:12 - 000049893 _____ C:\Users\Matthias\Downloads\DinersClub_Kontoauszuege_20221013_111214.pdf
2022-10-13 08:49 - 2022-10-13 08:49 - 000076416 _____ C:\Users\Matthias\Downloads\umsatzliste.pdf
2022-10-12 18:45 - 2022-10-07 04:01 - 000041984 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhdap64.dll
2022-10-12 18:33 - 2022-10-26 23:25 - 000950272 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2022-10-12 18:33 - 2022-10-26 23:24 - 000734720 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2022-10-12 18:33 - 2022-10-26 23:24 - 000458248 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdebugdump.exe
2022-10-12 18:32 - 2022-10-26 23:24 - 003334656 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2022-10-12 14:40 - 2022-10-12 14:40 - 000000563 _____ C:\Users\Public\Desktop\Overwatch.lnk
2022-10-12 14:40 - 2022-10-12 14:40 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Overwatch
2022-10-12 14:23 - 2022-10-12 14:23 - 000000000 ____D C:\ProgramData\Blizzard Entertainment
2022-10-12 14:22 - 2022-10-21 20:14 - 000000000 ____D C:\Users\Matthias\AppData\Local\Battle.net
2022-10-12 14:22 - 2022-10-21 20:14 - 000000000 ____D C:\Program Files (x86)\Battle.net
2022-10-12 14:22 - 2022-10-13 13:58 - 000000000 ____D C:\Users\Matthias\AppData\Roaming\Battle.net
2022-10-12 14:22 - 2022-10-12 14:24 - 000000000 ____D C:\Users\Matthias\AppData\Local\Blizzard Entertainment
2022-10-12 14:22 - 2022-10-12 14:22 - 000000950 _____ C:\Users\Public\Desktop\Battle.net.lnk
2022-10-12 14:22 - 2022-10-12 14:22 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battle.net
2022-10-12 14:21 - 2022-10-12 14:22 - 000000000 ____D C:\ProgramData\Battle.net
2022-10-12 14:21 - 2022-10-12 14:21 - 004838352 _____ (Blizzard Entertainment) C:\Users\Matthias\Downloads\Battle.net-Setup.exe
2022-10-12 13:33 - 2022-10-12 13:33 - 007540143 _____ C:\Users\Matthias\Downloads\Unterlagen.zip
2022-10-12 13:29 - 2022-10-12 13:33 - 000000000 ____D C:\Users\Matthias\Downloads\Kredit
2022-10-12 07:54 - 2022-10-12 07:54 - 002575632 _____ (The ICU Project) C:\WINDOWS\system32\icu.dll
2022-10-12 07:54 - 2022-10-12 07:54 - 002088728 _____ (The ICU Project) C:\WINDOWS\SysWOW64\icu.dll
2022-10-12 07:54 - 2022-10-12 07:54 - 000327680 _____ C:\WINDOWS\system32\Windows.Management.InprocObjects.dll
2022-10-12 07:54 - 2022-10-12 07:54 - 000296448 _____ C:\WINDOWS\system32\CloudIdWxhExtension.dll
2022-10-12 07:54 - 2022-10-12 07:54 - 000157008 _____ C:\WINDOWS\system32\HvsiManagementApi.dll
2022-10-12 07:54 - 2022-10-12 07:54 - 000105312 _____ C:\WINDOWS\SysWOW64\HvsiManagementApi.dll
2022-10-12 07:54 - 2022-10-12 07:54 - 000062800 _____ C:\WINDOWS\system32\AppInstallerBackgroundUpdate.exe
2022-10-12 07:54 - 2022-10-12 07:54 - 000055144 _____ C:\WINDOWS\system32\SFAPE.dll
2022-10-12 07:54 - 2022-10-12 07:54 - 000046888 _____ C:\WINDOWS\system32\wow64base.dll
2022-10-12 07:54 - 2022-10-12 07:54 - 000016565 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2022-10-12 07:53 - 2022-10-12 07:53 - 000000000 ___HD C:\$WinREAgent
2022-10-10 08:49 - 2022-10-10 08:49 - 000000222 _____ C:\Users\Matthias\Desktop\Dead by Daylight.url
2022-10-07 10:16 - 2022-11-03 01:07 - 001754660 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2022-10-07 10:14 - 2022-10-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Tasks\Agent Activation Runtime
2022-10-07 10:14 - 2022-10-07 10:14 - 000000000 ____D C:\ProgramData\Microsoft OneDrive
2022-10-07 10:12 - 2022-11-03 01:01 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2022-10-07 10:12 - 2022-11-02 20:43 - 000004308 _____ C:\WINDOWS\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-10-07 10:12 - 2022-11-02 20:43 - 000003976 _____ C:\WINDOWS\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-10-07 10:12 - 2022-11-02 20:43 - 000003940 _____ C:\WINDOWS\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-10-07 10:12 - 2022-11-02 20:43 - 000003894 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-10-07 10:12 - 2022-11-02 20:43 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-10-07 10:12 - 2022-11-02 20:43 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-10-07 10:12 - 2022-11-02 20:43 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-10-07 10:12 - 2022-11-02 20:43 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-10-07 10:12 - 2022-11-02 20:43 - 000003654 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-10-07 10:12 - 2022-11-02 19:31 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2960260898-141030721-2575920888-1001
2022-10-07 10:12 - 2022-10-31 17:31 - 000003984 _____ C:\WINDOWS\system32\Tasks\RazerCortexScheduleClean
2022-10-07 10:12 - 2022-10-30 19:29 - 000003708 _____ C:\WINDOWS\system32\Tasks\DivXUpdate
2022-10-07 10:12 - 2022-10-08 10:09 - 000003756 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2022-10-07 10:12 - 2022-10-08 10:09 - 000003632 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2022-10-07 10:12 - 2022-10-07 10:12 - 000003866 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeShadowStackRollbackTask
2022-10-07 10:12 - 2022-10-07 10:12 - 000003636 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA{199E7407-D83B-49D7-A45D-3FD4434F68BB}
2022-10-07 10:12 - 2022-10-07 10:12 - 000003412 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore{C09CDA25-2DA4-4D88-B1D9-F2BBE5EB8F98}
2022-10-07 10:12 - 2022-10-07 10:12 - 000003270 _____ C:\WINDOWS\system32\Tasks\Overwolf Updater Task
2022-10-07 10:12 - 2022-10-07 10:12 - 000002266 _____ C:\WINDOWS\system32\Tasks\MSI Task Host - LEDKeeper2_Host
2022-10-07 10:12 - 2022-10-07 10:12 - 000000020 ___SH C:\Users\Matthias\ntuser.ini
2022-10-07 10:11 - 2022-10-07 10:12 - 000011433 _____ C:\WINDOWS\diagwrn.xml
2022-10-07 10:11 - 2022-10-07 10:12 - 000011433 _____ C:\WINDOWS\diagerr.xml
2022-10-07 10:09 - 2022-11-04 10:32 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2022-10-07 10:09 - 2022-11-02 23:58 - 000761576 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2022-10-07 10:09 - 2022-10-07 10:09 - 000000000 ____D C:\WINDOWS\system32\config\BFS
2022-10-07 09:23 - 2022-11-01 22:58 - 000000000 ____D C:\Users\Matthias
2022-10-07 09:23 - 2022-10-07 10:09 - 000000000 ____D C:\WINDOWS\system32\config\bbimigrate
2022-10-07 09:23 - 2022-10-07 09:23 - 000000000 _SHDL C:\Users\Matthias\Vorlagen
2022-10-07 09:23 - 2022-10-07 09:23 - 000000000 _SHDL C:\Users\Matthias\Startmenü
2022-10-07 09:23 - 2022-10-07 09:23 - 000000000 _SHDL C:\Users\Matthias\Netzwerkumgebung
2022-10-07 09:23 - 2022-10-07 09:23 - 000000000 _SHDL C:\Users\Matthias\Lokale Einstellungen
2022-10-07 09:23 - 2022-10-07 09:23 - 000000000 _SHDL C:\Users\Matthias\Eigene Dateien
2022-10-07 09:23 - 2022-10-07 09:23 - 000000000 _SHDL C:\Users\Matthias\Druckumgebung
2022-10-07 09:23 - 2022-10-07 09:23 - 000000000 _SHDL C:\Users\Matthias\Documents\Eigene Videos
2022-10-07 09:23 - 2022-10-07 09:23 - 000000000 _SHDL C:\Users\Matthias\Documents\Eigene Musik
2022-10-07 09:23 - 2022-10-07 09:23 - 000000000 _SHDL C:\Users\Matthias\Documents\Eigene Bilder
2022-10-07 09:23 - 2022-10-07 09:23 - 000000000 _SHDL C:\Users\Matthias\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2022-10-07 09:23 - 2022-10-07 09:23 - 000000000 _SHDL C:\Users\Matthias\AppData\Local\Verlauf
2022-10-07 09:23 - 2022-10-07 09:23 - 000000000 _SHDL C:\Users\Matthias\AppData\Local\Anwendungsdaten
2022-10-07 09:23 - 2022-10-07 09:23 - 000000000 _SHDL C:\Users\Matthias\Anwendungsdaten
2022-10-07 09:23 - 2022-05-07 06:19 - 000001281 _____ C:\Users\Matthias\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools.lnk
2022-10-07 09:23 - 2022-05-07 06:19 - 000000407 _____ C:\Users\Matthias\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\File Explorer.lnk
2022-10-07 09:22 - 2022-10-07 09:23 - 000000000 ____D C:\WINDOWS\ServiceProfiles
2022-10-07 09:22 - 2022-10-07 09:22 - 000000000 ____D C:\WINDOWS\system32\SteelSeries
2022-10-07 09:22 - 2022-10-07 09:22 - 000000000 ____D C:\WINDOWS\system32\Samsung
2022-10-07 09:22 - 2022-10-07 09:22 - 000000000 ____D C:\WINDOWS\system32\DTS
2022-10-07 09:22 - 2022-10-07 09:22 - 000000000 ____D C:\WINDOWS\SC0710
2022-10-07 09:20 - 2022-10-07 09:20 - 000470528 _____ (curl, hxxps://curl.se/) C:\WINDOWS\SysWOW64\curl.exe
2022-10-07 09:20 - 2022-10-07 09:20 - 000133120 _____ C:\WINDOWS\SysWOW64\stordiag.exe
2022-10-07 09:19 - 2022-10-07 09:19 - 000530944 _____ (curl, hxxps://curl.se/) C:\WINDOWS\system32\curl.exe
2022-10-07 09:19 - 2022-10-07 09:19 - 000192512 _____ C:\WINDOWS\system32\CloudExperienceHostRedirection.dll
2022-10-07 09:19 - 2022-10-07 09:19 - 000180224 _____ C:\WINDOWS\system32\stordiag.exe
2022-10-07 09:19 - 2022-10-07 09:19 - 000098304 _____ C:\WINDOWS\system32\dplcsp.dll
2022-10-07 09:18 - 2022-10-07 09:18 - 000000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2022-10-07 09:18 - 2022-10-07 09:18 - 000000000 ____D C:\Program Files\Reference Assemblies
2022-10-07 09:18 - 2022-10-07 09:18 - 000000000 ____D C:\Program Files\MSBuild
2022-10-07 09:18 - 2022-10-07 09:18 - 000000000 ____D C:\Program Files (x86)\Reference Assemblies
2022-10-07 09:18 - 2022-10-07 09:18 - 000000000 ____D C:\Program Files (x86)\MSBuild
2022-10-07 09:17 - 2022-10-07 09:17 - 000000000 ____D C:\WINDOWS\SysWOW64\FxsTmp
2022-10-07 09:17 - 2022-10-07 09:17 - 000000000 ____D C:\WINDOWS\system32\FxsTmp
2022-10-07 09:17 - 2022-10-07 09:17 - 000000000 ____D C:\WINDOWS\addins
2022-10-07 09:12 - 2022-10-07 09:12 - 000008192 _____ C:\WINDOWS\system32\config\userdiff
2022-10-07 08:58 - 2022-10-18 18:07 - 000000000 ___DC C:\WINDOWS\Panther
2022-10-05 22:41 - 2022-10-06 17:48 - 000000049 _____ C:\Users\Matthias\Documents\pokemon.txt
==================== Ein Monat (geänderte) ==================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2022-11-04 10:50 - 2022-05-07 06:24 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-11-04 10:37 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SystemTemp
2022-11-04 10:33 - 2022-05-07 06:24 - 000000000 ___HD C:\Program Files\WindowsApps
2022-11-04 10:33 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\AppReadiness
2022-11-04 10:32 - 2022-04-13 07:25 - 000000000 ____D C:\Users\Matthias\AppData\Local\D3DSCache
2022-11-04 09:56 - 2022-04-14 18:27 - 000000000 ____D C:\Program Files (x86)\Google
2022-11-04 09:50 - 2022-04-13 09:48 - 000000000 ____D C:\ProgramData\NVIDIA
2022-11-03 23:09 - 2022-04-16 20:35 - 000000000 ____D C:\Users\Matthias\AppData\Roaming\discord
2022-11-03 23:09 - 2022-04-14 18:27 - 000000000 ____D C:\Program Files (x86)\Steam
2022-11-03 23:07 - 2022-04-16 20:35 - 000000000 ____D C:\Users\Matthias\AppData\Local\Discord
2022-11-03 22:03 - 2022-04-13 07:25 - 000000000 ____D C:\Users\Matthias\AppData\Local\Packages
2022-11-03 22:03 - 2022-04-13 07:25 - 000000000 ____D C:\ProgramData\Packages
2022-11-03 21:05 - 2022-04-14 18:27 - 000000000 ____D C:\temp
2022-11-03 20:57 - 2022-04-14 23:08 - 000000000 ____D C:\Users\Matthias\AppData\Roaming\KeePass
2022-11-03 16:34 - 2022-05-07 06:22 - 000000000 ____D C:\WINDOWS\INF
2022-11-03 12:30 - 2022-08-11 15:57 - 000000000 ____D C:\Users\Matthias\Desktop\Neuer Ordner
2022-11-03 10:05 - 2022-08-10 17:23 - 000000000 ____D C:\ProgramData\USVFS
2022-11-03 10:05 - 2022-08-10 17:21 - 000000000 ____D C:\Modded Skyrim Special Edition
2022-11-03 01:04 - 2022-05-06 08:58 - 000000001 _____ C:\WINDOWS\vgkbootstatus.dat
2022-11-03 01:01 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\ServiceState
2022-11-03 01:01 - 2022-05-07 06:17 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2022-11-03 01:01 - 2022-04-12 16:59 - 000012288 ___SH C:\DumpStack.log.tmp
2022-11-03 00:47 - 2022-04-14 18:27 - 000002245 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2022-11-02 23:41 - 2022-05-07 06:24 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2022-11-02 20:43 - 2022-04-13 07:48 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2022-11-02 20:43 - 2022-04-13 07:48 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2022-11-02 20:43 - 2022-04-13 07:48 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2022-11-01 22:58 - 2022-07-01 15:55 - 000000000 ____D C:\Users\Matthias\AppData\Roaming\Origin
2022-11-01 22:58 - 2022-07-01 15:55 - 000000000 ____D C:\ProgramData\Origin
2022-11-01 22:55 - 2022-07-01 15:55 - 000000000 ____D C:\Users\Matthias\AppData\Local\Origin
2022-11-01 19:10 - 2022-07-02 11:13 - 000000000 ____D C:\Program Files (x86)\Origin Games
2022-11-01 11:57 - 2022-04-12 16:59 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2022-10-31 23:22 - 2022-06-02 11:25 - 000001272 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Epic Games Launcher.lnk
2022-10-31 23:22 - 2022-05-16 15:10 - 000002075 _____ C:\ProgramData\Microsoft\Windows\Start Menu\PokerStars.eu.lnk
2022-10-31 23:22 - 2022-04-22 12:26 - 000000952 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GIMP 2.10.30.lnk
2022-10-31 23:22 - 2022-04-16 09:55 - 000001353 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fanatec Control Panel.lnk
2022-10-31 23:22 - 2022-04-14 23:07 - 000000969 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KeePass 2.lnk
2022-10-31 23:21 - 2022-04-15 18:07 - 000000000 ____D C:\ProgramData\Riot Games
2022-10-31 21:40 - 2022-05-07 06:17 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2022-10-31 16:03 - 2022-04-12 16:59 - 000002444 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-10-31 16:03 - 2022-04-12 16:59 - 000002282 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2022-10-30 22:05 - 2022-08-26 20:37 - 000000000 ____D C:\Users\Matthias\AppData\Local\Ubisoft Game Launcher
2022-10-30 19:29 - 2022-07-19 17:26 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DivX
2022-10-30 19:29 - 2022-07-19 17:25 - 000000000 ____D C:\ProgramData\DivX
2022-10-30 19:29 - 2022-07-19 17:25 - 000000000 ____D C:\Program Files (x86)\DivX
2022-10-30 19:28 - 2022-07-19 17:26 - 000000000 ____D C:\Users\Matthias\AppData\Roaming\DivX
2022-10-30 19:28 - 2022-04-13 07:28 - 000000000 ____D C:\ProgramData\Package Cache
2022-10-30 10:42 - 2022-08-15 14:10 - 000000204 _____ C:\Users\Matthias\Documents\Orte_Urlaub.txt
2022-10-27 19:28 - 2022-04-13 09:50 - 000000000 ____D C:\Users\Matthias\AppData\Local\NVIDIA Corporation
2022-10-27 14:22 - 2022-05-07 06:24 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2022-10-26 23:21 - 2022-08-10 08:05 - 007642784 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2022-10-26 23:21 - 2022-08-10 08:05 - 006512336 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2022-10-26 21:10 - 2022-05-07 06:17 - 000000000 ____D C:\WINDOWS\CbsTemp
2022-10-25 21:48 - 2022-04-16 13:15 - 000000000 ____D C:\Users\Matthias\AppData\Local\CrashDumps
2022-10-23 16:04 - 2022-09-24 18:10 - 000000000 ____D C:\Program Files\Common Files\PUBG
2022-10-23 15:13 - 2022-09-24 18:10 - 001445920 _____ (Wellbia.com Co., Ltd.) C:\WINDOWS\xhunter1.sys
2022-10-21 18:11 - 2022-04-16 12:04 - 000001276 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FanaLab.lnk
2022-10-21 18:11 - 2022-04-14 18:30 - 000000976 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client.lnk
2022-10-21 15:54 - 2022-04-14 18:31 - 000000000 ____D C:\Users\Matthias\AppData\Roaming\TS3Client
2022-10-18 18:09 - 2022-08-31 13:55 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Razer Cortex
2022-10-18 18:09 - 2022-04-14 18:27 - 000000000 ____D C:\Users\Matthias\AppData\Local\Razer
2022-10-18 18:09 - 2022-04-14 18:27 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Razer
2022-10-18 18:07 - 2022-04-14 18:26 - 000000000 ____D C:\Program Files (x86)\Razer Chroma SDK
2022-10-17 07:25 - 2022-04-13 09:48 - 002890296 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll
2022-10-17 07:25 - 2022-04-13 09:48 - 002224696 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll
2022-10-17 07:25 - 2022-04-13 09:48 - 001297464 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvRtmpStreamer64.dll
2022-10-15 17:24 - 2022-04-14 18:29 - 000000000 ____D C:\Users\Matthias\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2022-10-14 22:19 - 2022-08-10 17:30 - 000000815 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LOOT.lnk
2022-10-12 21:41 - 2022-05-07 11:39 - 000000000 ___SD C:\WINDOWS\system32\AppV
2022-10-12 21:41 - 2022-05-07 11:39 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2022-10-12 21:41 - 2022-05-07 06:24 - 000000000 ___SD C:\WINDOWS\system32\UNP
2022-10-12 21:41 - 2022-05-07 06:24 - 000000000 ___RD C:\WINDOWS\PrintDialog
2022-10-12 21:41 - 2022-05-07 06:24 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2022-10-12 21:41 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\UUS
2022-10-12 21:41 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2022-10-12 21:41 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2022-10-12 21:41 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2022-10-12 21:41 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SystemResources
2022-10-12 21:41 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2022-10-12 21:41 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2022-10-12 21:41 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\setup
2022-10-12 21:41 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2022-10-12 21:41 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\oobe
2022-10-12 21:41 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\Dism
2022-10-12 21:41 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\appraiser
2022-10-12 21:41 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\ShellExperiences
2022-10-12 21:41 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\ShellComponents
2022-10-12 21:41 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\Provisioning
2022-10-12 21:41 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2022-10-12 21:41 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\bcastdvr
2022-10-12 21:41 - 2022-05-07 06:24 - 000000000 ____D C:\Program Files\Common Files\System
2022-10-12 07:58 - 2022-04-15 09:23 - 000000000 ____D C:\WINDOWS\system32\MRT
2022-10-12 07:57 - 2022-05-07 06:25 - 000209920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msclmd.dll
2022-10-12 07:57 - 2022-05-07 06:24 - 000249856 _____ (Microsoft Corporation) C:\WINDOWS\system32\msclmd.dll
2022-10-12 07:57 - 2022-04-15 09:23 - 147398024 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2022-10-11 15:42 - 2022-05-17 18:42 - 000000000 ____D C:\Users\Matthias\AppData\Roaming\EasyAntiCheat
2022-10-07 17:51 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\appcompat
2022-10-07 14:53 - 2022-04-13 07:47 - 000000000 ____D C:\Users\Matthias\AppData\Local\PlaceholderTileLogoFolder
2022-10-07 10:12 - 2022-05-07 06:24 - 000000000 ____D C:\Program Files\Windows NT
2022-10-07 10:12 - 2022-05-07 06:24 - 000000000 ____D C:\Program Files\Windows Defender
2022-10-07 10:12 - 2022-05-06 09:06 - 000000990 __RSH C:\ProgramData\ntuser.pol
2022-10-07 10:12 - 2022-04-13 07:25 - 000000000 __RHD C:\Users\Public\AccountPictures
2022-10-07 10:11 - 2022-05-07 06:24 - 000000000 __RHD C:\Users\Public\Libraries
2022-10-07 10:09 - 2022-08-11 08:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tower of Fantasy
2022-10-07 10:09 - 2022-08-10 17:21 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mod Organizer
2022-10-07 10:09 - 2022-08-10 16:19 - 000000000 ____D C:\Users\Matthias\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2022-10-07 10:09 - 2022-08-10 16:19 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2022-10-07 10:09 - 2022-08-10 16:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2022-10-07 10:09 - 2022-07-06 17:53 - 000000000 ____D C:\Program Files\Common Files\logishrd
2022-10-07 10:09 - 2022-07-04 15:43 - 000000000 ____D C:\WINDOWS\system32\Drivers\NVIDIA Corporation
2022-10-07 10:09 - 2022-06-12 16:43 - 000000000 ____D C:\Users\Matthias\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Rockstar Games
2022-10-07 10:09 - 2022-05-16 15:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PokerStars.eu
2022-10-07 10:09 - 2022-05-07 06:24 - 000028672 _____ C:\WINDOWS\system32\config\BCD-Template
2022-10-07 10:09 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase
2022-10-07 10:09 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\spool
2022-10-07 10:09 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\SecurityHealth
2022-10-07 10:09 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\ModemLogs
2022-10-07 10:09 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2022-10-07 10:09 - 2022-04-16 20:35 - 000000000 ____D C:\Users\Matthias\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Discord Inc
2022-10-07 10:09 - 2022-04-15 18:07 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Riot Games
2022-10-07 10:09 - 2022-04-14 23:07 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OBS Studio
2022-10-07 10:09 - 2022-04-14 21:23 - 000000000 ____D C:\Users\Matthias\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Sky
2022-10-07 10:09 - 2022-04-14 18:31 - 000000000 ____D C:\Users\Matthias\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Overwolf
2022-10-07 10:09 - 2022-04-14 18:27 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2022-10-07 10:09 - 2022-04-14 18:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RazerCentral
2022-10-07 10:09 - 2022-04-14 18:17 - 000000000 ____D C:\Program Files (x86)\Razer
2022-10-07 10:09 - 2022-04-13 09:51 - 000000000 ____D C:\Users\Matthias\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\XtremeTuner
2022-10-07 10:09 - 2022-04-13 09:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2022-10-07 10:09 - 2021-06-05 13:10 - 000000000 ___HD C:\WINDOWS\system32\GroupPolicy
2022-10-07 10:09 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\Tasks_Migrated
2022-10-07 10:09 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\MsDtc
2022-10-07 09:27 - 2022-05-07 06:28 - 000000000 ____D C:\WINDOWS\Setup
2022-10-07 09:25 - 2022-05-07 06:24 - 000000000 ____D C:\ProgramData\USOPrivate
2022-10-07 09:23 - 2022-08-26 20:37 - 000000000 ____D C:\Users\Matthias\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft
2022-10-07 09:23 - 2022-06-06 21:26 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SteelSeries
2022-10-07 09:23 - 2022-04-22 12:26 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MAGIX
2022-10-07 09:23 - 2022-04-15 12:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Elgato
2022-10-07 09:23 - 2022-04-14 18:18 - 000000000 ____D C:\Program Files\Common Files\Logitech
2022-10-07 09:21 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\Globalization
2022-10-07 09:18 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\MUI
2022-10-07 09:18 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\MUI
2022-10-07 09:18 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\OCR
2022-10-07 09:17 - 2022-05-07 11:39 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2022-10-07 09:17 - 2022-05-07 11:39 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2022-10-07 09:17 - 2022-05-07 11:29 - 000000000 ____D C:\WINDOWS\SysWOW64\winrm
2022-10-07 09:17 - 2022-05-07 11:29 - 000000000 ____D C:\WINDOWS\SysWOW64\WCN
2022-10-07 09:17 - 2022-05-07 11:29 - 000000000 ____D C:\WINDOWS\SysWOW64\slmgr
2022-10-07 09:17 - 2022-05-07 11:29 - 000000000 ____D C:\WINDOWS\SysWOW64\Printing_Admin_Scripts
2022-10-07 09:17 - 2022-05-07 11:29 - 000000000 ____D C:\WINDOWS\system32\winrm
2022-10-07 09:17 - 2022-05-07 11:29 - 000000000 ____D C:\WINDOWS\system32\WCN
2022-10-07 09:17 - 2022-05-07 11:29 - 000000000 ____D C:\WINDOWS\system32\slmgr
2022-10-07 09:17 - 2022-05-07 11:29 - 000000000 ____D C:\WINDOWS\system32\Printing_Admin_Scripts
2022-10-07 09:17 - 2022-05-07 06:24 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2022-10-07 09:17 - 2022-05-07 06:24 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2022-10-07 09:17 - 2022-05-07 06:24 - 000000000 ___SD C:\WINDOWS\system32\F12
2022-10-07 09:17 - 2022-05-07 06:24 - 000000000 ___SD C:\WINDOWS\system32\dsc
2022-10-07 09:17 - 2022-05-07 06:24 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2022-10-07 09:17 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2022-10-07 09:17 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\Sgrm
2022-10-07 09:17 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\migwiz
2022-10-07 09:17 - 2022-05-07 06:24 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2022-10-07 09:17 - 2022-05-07 06:17 - 000000000 ____D C:\WINDOWS\servicing
2022-10-07 04:01 - 2022-08-10 08:06 - 000129000 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhda64v.sys
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse ========
2022-08-11 08:45 - 2022-08-11 08:45 - 000001004 _____ () C:\Users\Matthias\AppData\Roaming\tof_launcher.reg
2022-04-13 10:24 - 2022-04-13 10:24 - 001065984 _____ () C:\Users\Matthias\AppData\Local\file__0.localstorage
==================== SigCheck ============================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
==================== Ende von FRST.txt ========================
|
| Themen zu Windows 11 - Windows Defender meldet Trojaner? |
| beseitigen, datei, defender, gefunde, gelöscht, melde, meldet, meldung, nicht, nvcontainer, problem, troja, trojan, trojaner, trojaner?, windows, windows 11, windows defender |
Baum-Darstellung