| |
| |||||||
Antiviren-, Firewall- und andere Schutzprogramme: Windows Sicherheit / Defender zerschossenWindows 7 Sämtliche Fragen zur Bedienung von Firewalls, Anti-Viren Programmen, Anti Malware und Anti Trojaner Software sind hier richtig. Dies ist ein Diskussionsforum für Sicherheitslösungen für Windows Rechner. Benötigst du Hilfe beim Trojaner entfernen oder weil du dir einen Virus eingefangen hast, erstelle ein Thema in den oberen Bereinigungsforen. |
 |
28.08.2023, 19:35
| #1 |
 |  Windows Sicherheit / Defender zerschossen Ahoi, habe gestern wohl was falsches auf meine Win11 Pro Kiste installiert. Seitdem funktioniert mein Windows Virenprogramm nicht mehr. Virenschutz taugt überhaupt nicht mehr im Sicherheitscenter auf. Auch unter Einstellungen Antivirus steht kein Anbieter obwohl ich Kaspersky erstmal installiert habe. Wollte eigentlich gestern nur ein Template entpacken :-( Bisher habe ich folgendes gemacht: ADW Cleaner - Nichts gefunden Kaspersky hat nichts gefunden Malwarebytes hat auch nichts gefunden :-( Windows mittels einer Iso drüber gebügelt brachte ebenfalls keinen Erfolg. Daraufhin habe ich noch 2 Powershell eingaben versucht von einer anderen Hilfeseite, aber auch das brachte mein Virusprogramm nicht wieder zurück. Kernisolierung funktioniert auch nicht mehr aufgrund von alten Treibern. Hoffe Ihr könnt mir weiterhelfen. Ansonsten installiere ich die Kiste wohl neu  Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 28-08-2023
durchgeführt von Rose (Administrator) auf WORKSTATION (ASRock B760M Steel Legend WiFi) (28-08-2023 20:25:21)
Gestartet von C:\Users\Rose\Downloads\FRST64.exe
Geladene Profile: Rose
Plattform: Microsoft Windows 11 Pro Version 22H2 22621.2134 (X64) Sprache: Deutsch (Deutschland)
Standard-Browser: FF
Start-Modus: Normal
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
(Brother Industries, Ltd.) [Datei ist nicht signiert] C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe
(Brother Industries, Ltd.) [Datei ist nicht signiert] C:\Program Files (x86)\BrownyInd\Brother\BrIndicator.exe
(C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe ->) (Logitech, Inc. -> ) C:\Program Files (x86)\Logitech\LWS\Webcam Software\CameraHelperShell.exe
(C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe ->) (Alexey Nicolaychuk -> ) C:\Program Files (x86)\RivaTuner Statistics Server\RTSS.exe
(C:\Program Files (x86)\RivaTuner Statistics Server\RTSS.exe ->) (Alexey Nicolaychuk -> ) C:\Program Files (x86)\RivaTuner Statistics Server\EncoderServer.exe
(C:\Program Files (x86)\RivaTuner Statistics Server\RTSS.exe ->) (Alexey Nicolaychuk -> ) C:\Program Files (x86)\RivaTuner Statistics Server\RTSSHooksLoader64.exe
(C:\Program Files\Corsair\CORSAIR iCUE 4 Software\Corsair.Service.exe ->) (Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files\Corsair\CORSAIR iCUE 4 Software\Corsair.Service.CpuIdRemote64.exe
(C:\Program Files\Corsair\CORSAIR iCUE 4 Software\Corsair.Service.exe ->) (Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files\Corsair\CORSAIR iCUE 4 Software\Corsair.Service.DisplayAdapter.exe
(C:\Program Files\Logi\LogiBolt\LogiBolt.exe ->) (Logitech Inc -> Logitech) C:\Program Files\Logi\LogiBolt\logi_crashpad_handler.exe
(C:\Program Files\LogiOptionsPlus\logioptionsplus_agent.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LogiOptionsPlus\logioptionsplus_appbroker.exe
(C:\Program Files\LogiOptionsPlus\logioptionsplus_updater.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LogiOptionsPlus\logioptionsplus_agent.exe
(C:\Program Files\Logitech\LogiOptions\LogiOptions.exe ->) (Logitech Inc -> Logitech) C:\ProgramData\Logishrd\LogiOptions\Software\Current\LogiOverlay.exe
(C:\Program Files\Logitech\LogiOptions\LogiOptions.exe ->) (Logitech Inc -> Logitech, Inc.) C:\ProgramData\Logishrd\LogiOptions\Software\Current\LogiOptionsMgr.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe <7>
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
(explorer.exe ->) (Ivaylo Beltchev -> IvoSoft) [Datei ist nicht signiert] C:\Program Files\Classic Shell\ClassicStartMenu.exe
(explorer.exe ->) (Logitech Inc -> Logitech) C:\Program Files\Logi\LogiBolt\LogiBolt.exe
(explorer.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\Logitech\LogiOptions\LogiOptions.exe
(explorer.exe ->) (Nenad Hrg SoftwareOK) [Datei ist nicht signiert] C:\Users\Rose\Downloads\DesktopOK401_x64\DesktopOK_x64.exe
(explorer.exe ->) (PARAMOUNT SOFTWARE UK LIMITED -> Paramount Software UK Ltd) C:\Program Files\Macrium\Common\ReflectMonitor.exe
(explorer.exe ->) (PARAMOUNT SOFTWARE UK LIMITED -> Paramount Software UK Ltd) C:\Program Files\Macrium\Common\ReflectUI.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.303\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.303\GoogleCrashHandler64.exe
(hvsimgr.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\hvsirdpclient.exe
(hvsimgr.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\hvsirpcd.exe
(Logitech, Inc. -> Logitech Inc.) C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <23>
(Panda Security S.L. -> Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAMain.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(services.exe ->) (Brother Industries, Ltd.) [Datei ist nicht signiert] C:\Program Files (x86)\Browny02\BrYNSvc.exe
(services.exe ->) (Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files\Corsair\CORSAIR iCUE 4 Software\Corsair.Service.exe
(services.exe ->) (Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files\Corsair\CORSAIR iCUE 4 Software\CueLLAccessService.exe
(services.exe ->) (DEVGURU CO LTD -> DEVGURU Co., LTD.) C:\Program Files\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe
(services.exe ->) (Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(services.exe ->) (Electronic Arts, Inc. -> Electronic Arts) D:\Program Files (x86)\Origin\OriginWebHelperService.exe
(services.exe ->) (Even Balance, Inc. -> ) C:\Windows\SysWOW64\PnkBstrA.exe
(services.exe ->) (eVenture Limited -> eVenture Limited) C:\Program Files (x86)\hide.me VPN\hidemesvc.exe
(services.exe ->) (Glarysoft LTD -> Glarysoft Ltd) C:\Program Files (x86)\Common Files\Glarysoft\StartupManager\1.0\GUBootService.exe
(services.exe ->) (Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_21e0cf0737fd48af\WMIRegistrationService.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe
(services.exe ->) (Intel(R) Extreme Tuning Utility -> Intel(R) Corporation) C:\Program Files (x86)\Intel\Intel(R) Extreme Tuning Utility\XtuService.exe
(services.exe ->) (Intel(R) INTELND1617S2 -> Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe
(services.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LogiOptionsPlus\logioptionsplus_updater.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Corporation) [Datei ist nicht signiert] C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Corsair Memory, Inc.) C:\Windows\System32\CorsairGamingAudioCfgService64.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23070.1004-0\MsMpEng.exe
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_d3828c822366e497\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Panda Security S.L. -> Panda Security S.L.) C:\Program Files (x86)\Panda Security\Panda Security Protection\pselamsvc.exe
(services.exe ->) (Panda Security S.L. -> Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Devices Agent\AgentSvc.exe
(services.exe ->) (Panda Security S.L. -> Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Security Protection\PSANHost.exe
(services.exe ->) (Panda Security S.L. -> Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAService.exe
(services.exe ->) (PARAMOUNT SOFTWARE UK LIMITED -> Paramount Software UK Ltd) C:\Program Files\Macrium\Common\MacriumService.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_2d0366e4f3ea0eab\RtkAudUService64.exe <2>
(services.exe ->) (Samsung Electronics Co., Ltd. -> Clonix & CottonCandy) D:\Program Files (x86)\Samsung\Samsung Magician\MigrationService\MigrationService.exe
(services.exe ->) (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) D:\Program Files (x86)\Samsung\Samsung Magician\SamsungMagicianSVC.exe
(services.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) D:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(svchost.exe ->) (24803D75-212C-471A-BC57-9EF86AB91435 -> ) C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2333.8.0_x64__cv1g1gvanyjgm\WhatsApp.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.SecHealthUI_1000.25873.9001.0_x64__8wekyb3d8bbwe\SecHealthUI.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.823.7272.0_x64__8wekyb3d8bbwe\GameBar.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.823.7272.0_x64__8wekyb3d8bbwe\GameBarFTServer.exe
(svchost.exe ->) (Microsoft Windows -> ) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_423.13900.0.0_x64__cw5n1h2txyewy\Dashboard\WidgetService.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\hvsimgr.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.AppRep.ChxApp_cw5n1h2txyewy\CHXSmartScreen.exe
(svchost.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\Windows\System32\SecurityHealth\1.0.2306.10002-0\SecurityHealthHost.exe <2>
(svchost.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> ) C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe
(vmcompute.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\Windows\System32\vmwp.exe
konnte nicht auf den Prozess zugreifen -> vmmemCmZygote
konnte nicht auf den Prozess zugreifen -> vmmemMDAG
==================== Registry (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [Classic Start Menu] => C:\Program Files\Classic Shell\ClassicStartMenu.exe [163640 2018-07-15] (Ivaylo Beltchev -> IvoSoft) [Datei ist nicht signiert]
HKLM\...\Run: [LogiOptions] => C:\Program Files\Logitech\LogiOptions\LogiOptions.exe [1687616 2022-02-21] (Logitech Inc -> Logitech, Inc.)
HKLM\...\Run: [LogiBolt] => C:\Program Files\Logi\LogiBolt\LogiBolt.exe [22423104 2021-12-14] (Logitech Inc -> Logitech)
HKLM\...\Run: [EPSON Stylus DX4200 Series] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_FATIAEE.EXE [98304 2005-03-08] (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)
HKLM\...\Run: [Reflect UI] => C:\Program Files\Macrium\Common\ReflectUI.exe [9923856 2023-01-10] (PARAMOUNT SOFTWARE UK LIMITED -> Paramount Software UK Ltd)
HKLM\...\Run: [CORSAIR iCUE 4 Software] => C:\Program Files\Corsair\CORSAIR iCUE 4 Software\iCUE Launcher.exe [185384 2023-01-20] (Corsair Memory, Inc. -> Corsair Memory, Inc.)
HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_2d0366e4f3ea0eab\RtkAudUService64.exe [1629080 2022-12-01] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508240 2015-08-05] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch [3831808 2021-08-30] (Microsoft Windows Hardware Compatibility Publisher -> Logitech)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [11559648 2023-08-22] (Dropbox, Inc -> Dropbox, Inc.)
HKLM-x32\...\Run: [LWS] => C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe [204136 2012-09-13] (Logitech, Inc. -> Logitech Inc.)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-09-13] (Apple Inc. -> Apple Inc.)
HKLM-x32\...\Run: [BrStsMon00] => C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [3146752 2022-02-07] (Brother Industries, Ltd.) [Datei ist nicht signiert]
HKLM-x32\...\Run: [BrStsInd00] => C:\Program Files (x86)\BrownyInd\Brother\BrIndicator.exe [1885184 2012-12-18] (Brother Industries, Ltd.) [Datei ist nicht signiert]
HKLM-x32\...\Run: [PSUAMain] => C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAMain.exe [186984 2022-11-02] (Panda Security S.L. -> Panda Security, S.L.)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Beschränkung <==== ACHTUNG
HKU\S-1-5-21-653905286-3903209159-424152592-1001\...\Run: [DesktopOK] => C:\Users\Rose\Downloads\DesktopOK401_x64\DesktopOK_x64.exe [429568 2014-11-06] (Nenad Hrg SoftwareOK) [Datei ist nicht signiert]
HKU\S-1-5-21-653905286-3903209159-424152592-1001\...\Run: [LogiBolt] => C:\Program Files\Logi\LogiBolt\LogiBolt.exe [22423104 2021-12-14] (Logitech Inc -> Logitech)
HKLM\...\Windows x64\Print Processors\HPZPP4wm: C:\Windows\System32\spool\prtprocs\x64\hpzpp4wm.DLL [231424 2007-02-14] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Corporation)
HKLM\...\Windows x64\Print Processors\us00aPC: C:\Windows\System32\spool\prtprocs\x64\us00apc.dll [43520 2015-08-20] (Windows (R) Codename Longhorn DDK provider) [Datei ist nicht signiert]
HKLM\...\Print\Monitors\EPSON Stylus DX4200 Series 64MonitorBE: c:\windows\system32\E_ILMAEE.DLL [119808 2005-06-09] (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)
HKLM\...\Print\Monitors\FRITZ!fax Color Port Monitor: c:\windows\system32\FritzColorPort64.dll [20480 2006-02-23] () [Datei ist nicht signiert]
HKLM\...\Print\Monitors\us00a Langmon: c:\windows\system32\us00alm.dll [22528 2015-03-12] () [Datei ist nicht signiert]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{89B4C1CD-B018-4511-B0A1-5476DBF70820}] -> C:\Windows\System32\Rundll32.exe C:\Windows\System32\mscories.dll,Install
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\116.0.5845.111\Installer\chrmstp.exe [2023-08-24] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{89B4C1CD-B018-4511-B0A1-5476DBF70820}] -> C:\Windows\SysWOW64\Rundll32.exe C:\Windows\SysWOW64\mscories.dll,Install
HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] ->
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AutorunsDisabled [2017-03-30]
GroupPolicy: Beschränkung ? <==== ACHTUNG
Policies: C:\ProgramData\NTUSER.pol: Beschränkung <==== ACHTUNG
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {019543EE-4D13-47D1-A0AE-774120648F52} - kein Dateipfad. <==== ACHTUNG
Task: {079BF05B-A922-41CC-8513-A20AC421527C} - kein Dateipfad. <==== ACHTUNG
Task: {0976C0B9-CC98-4BE1-8745-2716F212A9B3} - kein Dateipfad. <==== ACHTUNG
Task: {0D7750E2-4B7C-400D-A0AD-71D122F98808} - kein Dateipfad. <==== ACHTUNG
Task: {0DD4A495-11E8-4130-A524-4345DF5094CE} - kein Dateipfad. <==== ACHTUNG
Task: {23B23D6A-BEBC-40BD-8422-F5C235961F96} - kein Dateipfad. <==== ACHTUNG
Task: {2A378261-E64E-4B8F-80F6-0E8D07253E0C} - kein Dateipfad. <==== ACHTUNG
Task: {30DD5265-0548-442F-A318-3B77A9F85B6D} - kein Dateipfad. <==== ACHTUNG
Task: {45CC81A7-585B-493F-9D83-842B2EDCE6F8} - kein Dateipfad. <==== ACHTUNG
Task: {47F15474-4AA4-4662-9AB5-7714590493F8} - kein Dateipfad. <==== ACHTUNG
Task: {482F1863-5C9C-43DB-B601-C02069B2AAD2} - kein Dateipfad. <==== ACHTUNG
Task: {4C9708CB-12E0-4627-9DB3-77711015D1A0} - kein Dateipfad. <==== ACHTUNG
Task: {53436A7B-2D56-428D-9F5A-5D8DCE1B3262} - kein Dateipfad. <==== ACHTUNG
Task: {5C4F63E8-A2A1-4411-80F9-C34BADC60D1D} - \RegistryUpdateTaskMachineQC -> Keine Datei <==== ACHTUNG
Task: {66569078-72BD-41CB-99C6-D2C7E01B1D8D} - kein Dateipfad. <==== ACHTUNG
Task: {6C6A7BDE-AE9F-483E-B068-B77A3073717A} - kein Dateipfad. <==== ACHTUNG
Task: {6D2460A7-E9AD-4BC0-B792-338CB355F534} - kein Dateipfad. <==== ACHTUNG
Task: {6ECC17BA-2F21-4D1D-A937-AF5B7E29ED7A} - kein Dateipfad. <==== ACHTUNG
Task: {6FEFB20E-C881-4846-93A2-8219EE4B030A} - kein Dateipfad. <==== ACHTUNG
Task: {7746E1E7-838C-4BF1-81C8-CF39DACB475D} - kein Dateipfad. <==== ACHTUNG
Task: {86976673-D178-4FCB-AA2F-65B60CBFBE88} - kein Dateipfad. <==== ACHTUNG
Task: {99DBFDE7-3F67-43E5-A624-A1B89879B406} - kein Dateipfad. <==== ACHTUNG
Task: {9B196E71-4EDC-4D39-9C8A-4F7282EA54A5} - kein Dateipfad. <==== ACHTUNG
Task: {A111E0AA-0D9F-4806-9F32-CB859C97D809} - kein Dateipfad. <==== ACHTUNG
Task: {A2F854F6-B58F-440F-872A-4D4D14F2FE37} - kein Dateipfad. <==== ACHTUNG
Task: {A39FED60-980C-494D-9856-E82F883B38AB} - kein Dateipfad. <==== ACHTUNG
Task: {A3EFC5B4-B0A2-499D-AC5A-EE384B5F2D9D} - kein Dateipfad. <==== ACHTUNG
Task: {AB3CBDE6-13CB-46A4-B8D6-F68531AE03A2} - kein Dateipfad. <==== ACHTUNG
Task: {CCDFC0B8-01A3-4E74-A820-4F13F51D269E} - kein Dateipfad. <==== ACHTUNG
Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - kein Dateipfad. <==== ACHTUNG
Task: {E261A39A-D677-4C52-AB94-4DAF87807935} - \Microsoft\Windows\Windows Media Sharing\UpdateLibrary -> Keine Datei <==== ACHTUNG
Task: {E2BA1A3B-DD07-4BB8-B6A2-509CD4B02076} - kein Dateipfad. <==== ACHTUNG
Task: {E58546D5-78FB-4E1E-8B88-DBB389CB90F2} - kein Dateipfad. <==== ACHTUNG
Task: {F77C5FA7-BE5B-469F-86B8-1F45E4C3A18A} - kein Dateipfad. <==== ACHTUNG
Task: {75D90835-F902-4AFD-8F19-A2DF70584784} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\WINDOWS\explorer.exe [5158128 2023-08-28] (Microsoft Windows -> Microsoft Corporation)
Task: {44DCF4A0-FDC0-4EB6-9B4B-53CE075FCC88} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-06-30] (Google Inc -> Google Inc.)
Task: {171A9E07-A4B1-4734-B0E6-7F283EA92EEE} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-06-30] (Google Inc -> Google Inc.)
Task: {DFA2BB8A-66DA-4D1B-9EB2-D1CE83596EB8} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}
Task: {55690238-06EB-4FEF-86A9-E2C2D382531E} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23070.1004-0\MpCmdRun.exe [1596320 2023-08-09] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {13211ECA-9467-47CE-B947-F6E2B8CCB60A} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23070.1004-0\MpCmdRun.exe [1596320 2023-08-09] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {19335547-F2A5-4475-980E-0A6BF4AA7072} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23070.1004-0\MpCmdRun.exe [1596320 2023-08-09] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {034E3EA1-268F-43F7-A9BF-663A09A936D1} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23070.1004-0\MpCmdRun.exe [1596320 2023-08-09] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {848AB91F-1086-4BB3-BE97-B6FE1312AEA8} - System32\Tasks\MSIAfterburner => C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe [804408 2021-12-03] (MICRO-STAR INTERNATIONAL CO., LTD. -> )
Task: {12F46FC7-E6BE-4480-A3B4-7ECE2E0F0E50} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3342376 2023-04-14] (Nvidia Corporation -> NVIDIA Corporation)
Task: {0955ED6F-2DA0-4379-9C03-EFBD9D5FCD59} - System32\Tasks\SamsungMagician => d:\Program Files (x86)\Samsung\Samsung Magician\SamsungMagician.exe [121595968 2023-01-16] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Hosts: Es ist mehr als ein Eintrag in der Hosts Datei zu finden. Siehe Hosts-Bereich in Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{34fbb743-8760-4fd5-a0ef-1e96048221fc}: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{562f06cc-f48d-4fbe-bed3-376de26e94fd}: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{81b80bfe-ff7c-4c3f-aba3-bae76196dd35}: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{9d891342-3300-4267-8825-19017538f47d}: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{fcee5666-980f-467d-8912-a6b1b325618e}: [DhcpNameServer] 192.168.178.1
Edge:
=======
DownloadDir: C:\Users\Rose\Downloads
Edge Notifications: HKU\S-1-5-21-653905286-3903209159-424152592-1001 -> hxxps://www.facebook.com; hxxps://www.mann.tv; hxxps://www.ruhr24.de
Edge Extension: (Kein Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [nicht gefunden]
Edge Extension: (Kein Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [nicht gefunden]
Edge Extension: (Kein Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [nicht gefunden]
Edge Extension: (Kein Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [nicht gefunden]
Edge Profile: C:\Users\Rose\AppData\Local\Microsoft\Edge\User Data\Default [2023-08-28]
Edge DownloadDir: Default -> C:\Users\Rose\Downloads
Edge Notifications: Default -> hxxps://www.facebook.com; hxxps://www.mann.tv; hxxps://www.ruhr24.de
Edge StartupUrls: Default -> "hxxps://de-de.facebook.com/"
Edge Extension: (Google Webspam Report (by Google)) - C:\Users\Rose\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\efinmbicabejjhjafeidhfbojhnfiepj [2020-12-19]
Edge Extension: (Edge relevant text changes) - C:\Users\Rose\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-08-09]
FireFox:
========
FF DefaultProfile: pt4v4e5g.default-1490937754028
FF ProfilePath: C:\Users\Rose\AppData\Roaming\Mozilla\Firefox\Profiles\pt4v4e5g.default-1490937754028 [2023-08-28]
FF user.js: detected! => C:\Users\Rose\AppData\Roaming\Mozilla\Firefox\Profiles\pt4v4e5g.default-1490937754028\user.js [2022-08-11]
FF Homepage: Mozilla\Firefox\Profiles\pt4v4e5g.default-1490937754028 -> www.google.de
FF NetworkProxy: Mozilla\Firefox\Profiles\pt4v4e5g.default-1490937754028 -> type", 0
FF Notifications: Mozilla\Firefox\Profiles\pt4v4e5g.default-1490937754028 -> hxxps://www.facebook.com; hxxps://twitter.com; hxxps://www.online-slot.de
FF Extension: (German dictionary (de_DE)) - C:\Users\Rose\AppData\Roaming\Mozilla\Firefox\Profiles\pt4v4e5g.default-1490937754028\Extensions\de_DE@dicts.j3e.de.xpi [2018-12-02]
FF Extension: (uBlock Origin) - C:\Users\Rose\AppData\Roaming\Mozilla\Firefox\Profiles\pt4v4e5g.default-1490937754028\Extensions\uBlock0@raymondhill.net.xpi [2023-07-26]
FF Extension: (TWP - Translate Web Pages) - C:\Users\Rose\AppData\Roaming\Mozilla\Firefox\Profiles\pt4v4e5g.default-1490937754028\Extensions\{036a55b4-5e72-4d05-a06c-cba2dfcc134a}.xpi [2023-08-03]
FF Extension: (SEOquake) - C:\Users\Rose\AppData\Roaming\Mozilla\Firefox\Profiles\pt4v4e5g.default-1490937754028\Extensions\{317B5128-0B0B-49b2-B2DB-1E7560E16C74}.xpi [2023-01-17]
FF HKLM\...\Firefox\Extensions: [FFExtnHTML2PDF@foxitsoftware.com] - D:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\Creator\FirefoxAddin\FFExtnHTML2PDF.xpi
FF Extension: (Foxit PDF Creator) - D:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\Creator\FirefoxAddin\FFExtnHTML2PDF.xpi [2018-01-29] []
FF HKLM-x32\...\Firefox\Extensions: [{F003DA68-8256-4b37-A6C4-350FA04494DF}] - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt => nicht gefunden
FF HKLM-x32\...\Firefox\Extensions: [FFExtnHTML2PDF@foxitsoftware.com] - D:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\Creator\FirefoxAddin\FFExtnHTML2PDF.xpi
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2023-08-19] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2015-08-06] (Adobe Systems Incorporated -> Adobe Systems)
FF Plugin: adobe.com/AdobeExManDetect -> D:\Program Files\Adobe\Adobe Extension Manager CS6\Win64Plugin\npAdobeExManDetectX64.dll [2013-12-02] (Adobe Systems Incorporated -> Adobe Systems)
FF Plugin-x32: @esn.me/esnsonar,version=0.70.4 -> C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll [2011-11-03] (Electronic Sports Network i Sverige AB -> ESN Social Software AB)
FF Plugin-x32: @esn/esnlaunch,version=2.3.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.3.0\npesnlaunch.dll [2013-09-16] (ESN Social Software AB) [Datei ist nicht signiert]
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/pdf -> D:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2018-04-08] (Foxit Software Incorporated -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.fdf -> D:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2018-04-08] (Foxit Software Incorporated -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xdp -> D:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2018-04-08] (Foxit Software Incorporated -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xfdf -> D:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2018-04-08] (Foxit Software Incorporated -> Foxit Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2023-08-28] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeLive,version=1.5 -> C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll [2010-04-26] (Microsoft Corporation -> Microsoft Corp.)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2023-08-28] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2015-08-06] (Adobe Systems Incorporated -> Adobe Systems)
FF Plugin-x32: adobe.com/AdobeExManDetect -> D:\Program Files\Adobe\Adobe Extension Manager CS6\npAdobeExManDetectX86.dll [2013-12-02] (Adobe Systems Incorporated -> Adobe Systems)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Rose\AppData\Local\Google\Chrome\User Data\Default [2023-08-28]
CHR Extension: (SEO META in 1 CLICK) - C:\Users\Rose\AppData\Local\Google\Chrome\User Data\Default\Extensions\bjogjfinolnhfhkbipphpdlldadpnmhc [2021-07-05]
CHR Extension: (uBlock Origin) - C:\Users\Rose\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2023-07-24]
CHR Extension: (Google Webspam Report (by Google)) - C:\Users\Rose\AppData\Local\Google\Chrome\User Data\Default\Extensions\efinmbicabejjhjafeidhfbojhnfiepj [2021-02-21]
CHR Extension: (Word Counter Plus) - C:\Users\Rose\AppData\Local\Google\Chrome\User Data\Default\Extensions\fpjegfbcdijjfkceenlfoehpcakfgldj [2021-05-22]
CHR Extension: (Google Docs Offline) - C:\Users\Rose\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-08-23]
CHR Extension: (Click&Clean) - C:\Users\Rose\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghgabhipcejejjmhhchfonmamedcbeod [2023-02-17]
CHR Extension: (Google PageSpeed Insights API Extension) - C:\Users\Rose\AppData\Local\Google\Chrome\User Data\Default\Extensions\hfebkooaidmeboeblkkejdoepilnnjhn [2020-11-03]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Rose\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-30]
CHR Extension: (Disavow File Generator Tool) - C:\Users\Rose\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkppdgpkjmclhhlibhdphbllcgpllbch [2021-06-27]
CHR Profile: C:\Users\Rose\AppData\Local\Google\Chrome\User Data\Guest Profile [2023-05-10]
CHR Profile: C:\Users\Rose\AppData\Local\Google\Chrome\User Data\Profile 2 [2023-08-03]
CHR Extension: (Foxit PDF Creator) - C:\Users\Rose\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\cifnddnffldieaamihfkhkdgnbhfmaci [2023-01-28]
CHR Extension: (Google Docs Offline) - C:\Users\Rose\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-08-03]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Rose\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-01-28]
CHR Profile: C:\Users\Rose\AppData\Local\Google\Chrome\User Data\System Profile [2023-08-19]
CHR HKLM\...\Chrome\Extension: [cifnddnffldieaamihfkhkdgnbhfmaci] - D:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\Creator\ChromeAddin\ChromeAddin.crx [2023-01-28]
CHR HKLM-x32\...\Chrome\Extension: [cifnddnffldieaamihfkhkdgnbhfmaci] - D:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\Creator\ChromeAddin\ChromeAddin.crx [2023-01-28]
==================== Dienste (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [173040 2023-04-03] (Adobe Inc. -> Adobe Inc.)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [103264 2023-03-01] (Apple Inc. -> Apple Inc.)
S2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\4.00.01\atkexComSvc.exe [382424 2018-01-05] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8473200 2019-10-03] (BattlEye Innovations e.K. -> )
R3 BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [321536 2022-01-26] (Brother Industries, Ltd.) [Datei ist nicht signiert]
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11878368 2023-08-04] (Microsoft Corporation -> Microsoft Corporation)
R2 CMigrationService; d:\Program Files (x86)\Samsung\Samsung Magician\MigrationService\MigrationService.exe [761408 2023-01-16] (Samsung Electronics Co., Ltd. -> Clonix & CottonCandy)
R2 CorsairGamingAudioConfig; C:\Windows\System32\CorsairGamingAudioCfgService64.exe [614432 2023-01-20] (Microsoft Windows Hardware Compatibility Publisher -> Corsair Memory, Inc.)
R2 CorsairLLAService; C:\Program Files\Corsair\CORSAIR iCUE 4 Software\CueLLAccessService.exe [238632 2023-01-20] (Corsair Memory, Inc. -> Corsair Memory, Inc.)
R2 CorsairService; C:\Program Files\Corsair\CORSAIR iCUE 4 Software\Corsair.Service.exe [84008 2023-01-20] (Corsair Memory, Inc. -> Corsair Memory, Inc.)
S2 CorsairUniwillService; C:\Program Files\Corsair\CORSAIR iCUE 4 Software\CueUniwillService.exe [108072 2023-01-20] (Corsair Memory, Inc. -> Corsair Memory, Inc.)
S3 CyberGhost8Service; C:\Program Files\CyberGhost 8\Dashboard.Service.exe [69840 2023-07-11] (CyberGhost S.R.L. -> CyberGhost S.R.L.)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-11] (Dropbox, Inc -> Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-11] (Dropbox, Inc -> Dropbox, Inc.)
R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [46824 2023-08-22] (Dropbox, Inc -> Dropbox, Inc.)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [803440 2019-10-03] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [934352 2023-05-01] (Epic Games Inc. -> Epic Games, Inc.)
S3 FoxitPhantomService; D:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\FoxitConnectedPDFService.exe [1658944 2018-04-17] (Foxit Software Incorporated -> Foxit Software Inc.)
S3 Futuremark SystemInfo Service; C:\Program Files (x86)\Futuremark\SystemInfo\FMSISvc.exe [347408 2023-06-08] (Underwriters Laboratories Inc. -> Futuremark)
R2 GUBootService; C:\Program Files (x86)\Common Files\Glarysoft\StartupManager\1.0\GUBootService.exe [886528 2023-01-15] (Glarysoft LTD -> Glarysoft Ltd)
S3 GUPMService; d:\Program Files (x86)\Glary Utilities 5\GUPMService.exe [76696 2023-08-07] (Glarysoft Ltd -> Glarysoft Ltd)
R2 hmevpnsvc; C:\Program Files (x86)\hide.me VPN\hidemesvc.exe [180496 2022-12-10] (eVenture Limited -> eVenture Limited)
S3 iCUEDevicePluginHost; C:\Program Files\Corsair\CORSAIR iCUE 4 Software\iCUEDevicePluginHost.exe [462888 2023-01-20] (Corsair Memory, Inc. -> Corsair)
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe [69632 2005-11-14] (Macrovision Corporation) [Datei ist nicht signiert]
R2 MacriumService; C:\Program Files\Macrium\Common\MacriumService.exe [11072008 2023-01-10] (PARAMOUNT SOFTWARE UK LIMITED -> Paramount Software UK Ltd)
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [9286168 2023-08-28] (Malwarebytes Inc. -> Malwarebytes)
R2 MDM; C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe [335872 2006-10-26] (Microsoft Corporation) [Datei ist nicht signiert]
R2 NanoServiceMain; C:\Program Files (x86)\Panda Security\Panda Security Protection\PSANHost.exe [118504 2022-10-31] (Panda Security S.L. -> Panda Security, S.L.)
R2 OptionsPlusUpdaterService; C:\Program Files\LogiOptionsPlus\logioptionsplus_updater.exe [17874688 2023-08-07] (Logitech Inc -> Logitech, Inc.)
S3 Origin Client Service; D:\Program Files (x86)\Origin\OriginClientService.exe [2572096 2023-03-13] (Electronic Arts, Inc. -> Electronic Arts)
R2 Origin Web Helper Service; D:\Program Files (x86)\Origin\OriginWebHelperService.exe [3491144 2023-03-13] (Electronic Arts, Inc. -> Electronic Arts)
S3 Panda VPN Service; C:\Program Files (x86)\Panda Security\Panda Security Protection\Hydra.Sdk.Windows.Service.exe [320848 2017-11-20] (AnchorFree Inc -> )
R2 PandaAgent; C:\Program Files (x86)\Panda Security\Panda Devices Agent\AgentSvc.exe [84176 2019-02-19] (Panda Security S.L. -> Panda Security, S.L.)
R2 PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [76152 2016-12-31] (Even Balance, Inc. -> )
R2 pselamsvc; C:\Program Files (x86)\Panda Security\Panda Security Protection\pselamsvc.exe [195736 2023-04-13] (Panda Security S.L. -> Panda Security S.L.)
R2 PSUAService; C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAService.exe [78840 2022-11-02] (Panda Security S.L. -> Panda Security, S.L.)
R2 SamsungMagicianSVC; d:\Program Files (x86)\Samsung\Samsung Magician\SamsungMagicianSVC.exe [371776 2023-01-16] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [402200 2023-08-28] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 ss_conn_service; C:\Program Files\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe [743688 2015-05-21] (DEVGURU CO LTD -> DEVGURU Co., LTD.)
R2 TeamViewer; d:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [15212856 2023-01-18] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
S4 TuneUp.Defrag; C:\WINDOWS\System32\TuneUpDefragService.exe [425216 2017-11-22] (TuneUp Software GmbH -> TuneUp Software GmbH)
S3 uncheater_bgl; C:\Program Files\Common Files\Uncheater\uncheater_bgl.exe [2097008 2019-12-14] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23070.1004-0\NisSrv.exe [3104488 2023-08-09] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23070.1004-0\MsMpEng.exe [133576 2023-08-09] (Microsoft Windows Publisher -> Microsoft Corporation)
S4 WsAppService; C:\Program Files (x86)\Wondershare\WAF\2.4.3.237\WsAppService.exe [495720 2018-07-04] (Wondershare Technology Co.,Ltd -> Wondershare)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_d3828c822366e497\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_d3828c822366e497\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
===================== Treiber (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R3 aftap0901; C:\WINDOWS\System32\drivers\aftap0901.sys [48624 2017-11-16] (AnchorFree Inc -> The OpenVPN Project)
R3 AmdTools64; C:\WINDOWS\System32\drivers\AmdTools64.sys [63392 2020-06-16] (Microsoft Windows Hardware Compatibility Publisher -> )
S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20032 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2017-04-15] (ASUSTeK Computer Inc. -> )
S3 AsrDrv101; C:\WINDOWS\SysWOW64\Drivers\AsrDrv101.sys [22280 2017-05-09] (ASROCK Incorporation -> ASRock Incorporation)
S3 AsrDrv102; C:\WINDOWS\SysWOW64\Drivers\AsrDrv102.sys [22248 2018-01-17] (ASROCK Incorporation -> ASRock Incorporation) [Datei ist nicht signiert]
S3 AsrDrv103; C:\WINDOWS\SysWOW64\Drivers\AsrDrv103.sys [34568 2019-11-05] (ASROCK Incorporation -> ASRock Incorporation) [Datei ist nicht signiert]
S3 AsrDrv104; C:\WINDOWS\SysWOW64\Drivers\AsrDrv104.sys [34536 2022-01-16] (ASROCK Incorporation -> ASRock Incorporation) [Datei ist nicht signiert]
S3 AsrDrv106; C:\WINDOWS\SysWOW64\Drivers\AsrDrv106.sys [49984 2023-01-28] (ASROCK INC. -> ASRock Incorporation)
R2 atksgt; C:\WINDOWS\System32\DRIVERS\atksgt.sys [310984 2018-12-15] (Tages SA -> )
S3 atvi-brynhildr; C:\ProgramData\Battle.net_components\brynhildr_odin2\brynhildr.sys [2188544 2022-12-15] (Activision Publishing Inc -> Activision Blizzard, Inc.)
R3 avmaura; C:\WINDOWS\System32\drivers\avmaura.sys [116480 2016-07-27] (AVM Computersysteme Vertriebs GmbH -> AVM Berlin)
S1 BfLwf; C:\WINDOWS\system32\DRIVERS\bwcW10x64.sys [144456 2016-01-22] (Rivet Networks LLC -> Rivet Networks, LLC.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [532480 2023-05-05] (Microsoft Corporation) [Datei ist nicht signiert]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [184320 2023-05-05] (Microsoft Corporation) [Datei ist nicht signiert]
S3 CH341_A64; C:\WINDOWS\System32\Drivers\CH341W64.SYS [31232 2009-06-12] (Microsoft Windows Hardware Compatibility Publisher -> www.winchiphead.com)
S3 CorsairGamingAudioService; C:\Windows\System32\drivers\CorsairGamingAudio64.sys [63008 2023-01-20] (Microsoft Windows Hardware Compatibility Publisher -> Corsair Memory, Inc.)
R2 CorsairLLAccessC2D033F14715AA7325305EA42FBFC65BF867CC1D; C:\Program Files\Corsair\CORSAIR iCUE 4 Software\CorsairLLAccess64.sys [21752 2023-01-20] (Microsoft Windows Hardware Compatibility Publisher -> Corsair Memory, Inc.)
R3 CorsairVBusDriver; C:\WINDOWS\System32\drivers\CorsairVBusDriver.sys [47032 2022-12-09] (Microsoft Windows Hardware Compatibility Publisher -> Corsair)
R3 CorsairVHidDriver; C:\WINDOWS\System32\drivers\CorsairVHidDriver.sys [22968 2022-12-09] (Microsoft Windows Hardware Compatibility Publisher -> Corsair)
R3 cpuz154; C:\WINDOWS\temp\cpuz154\cpuz154_x64.sys [40976 2023-08-28] (Microsoft Windows Hardware Compatibility Publisher -> CPUID)
R1 CTIIO; C:\WINDOWS\system32\drivers\CtiIo64.sys [32880 2023-03-21] (Microsoft Windows Hardware Compatibility Publisher -> Creative Technology Innovation Co., LTd.)
S3 DIRECTIO; C:\Program Files\PerformanceTest\DirectIo64.sys [31376 2015-03-10] (PassMark Software Pty Ltd -> )
S3 dpK00701; C:\WINDOWS\System32\drivers\dpK00701.sys [64016 2010-02-24] (DigitalPersona, Inc. -> DigitalPersona, Inc.)
R0 fse; C:\WINDOWS\System32\drivers\fse.sys [218464 2023-08-28] (Microsoft Windows -> Microsoft Corporation)
S3 gdrv; C:\WINDOWS\gdrv.sys [26792 2018-01-25] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
S3 gdrv3; C:\WINDOWS\system32\drivers\gdrv3.sys [45248 2023-04-09] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
S3 ggsomc; C:\WINDOWS\System32\drivers\ggsomc.sys [30424 2016-12-11] (Sony Mobile Communications AB -> Sony Mobile Communications)
S1 GLCKIO2; C:\WINDOWS\system32\drivers\GLCKIO2.sys [19392 2018-04-23] (ASUSTeK Computer Inc. -> )
R1 GUBootStartup; C:\WINDOWS\System32\drivers\GUBootStartup.sys [23568 2023-07-19] (Microsoft Windows Hardware Compatibility Publisher -> Glarysoft Ltd)
R1 hideFirewall; C:\WINDOWS\System32\drivers\hideFirewall.sys [100352 2021-08-26] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider)
S3 HPMoA407; C:\WINDOWS\System32\drivers\HPMoA407.sys [25088 2011-10-31] (Hewlett-Packard.) [Datei ist nicht signiert]
S3 HPubA407; C:\WINDOWS\System32\Drivers\HPubA407.sys [18944 2012-06-14] (Hewlett-Packard.) [Datei ist nicht signiert]
S3 I2cHkBurn; C:\WINDOWS\system32\drivers\I2cHkBurn.sys [41760 2015-07-27] (Feature Integration Technology -> FINTEK Corp.)
S3 IOMap; C:\WINDOWS\system32\drivers\IOMap64.sys [34064 2017-05-08] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
S3 LGJoyXlCore; C:\WINDOWS\system32\drivers\LGJoyXlCore.sys [67736 2016-12-20] (Logitech Inc -> Logitech Inc.)
R2 lirsgt; C:\WINDOWS\System32\DRIVERS\lirsgt.sys [42696 2018-12-15] (Tages SA -> )
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [21480 2023-08-28] (Microsoft Windows Early Launch Anti-Malware Publisher -> Malwarebytes)
S3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [239544 2023-08-28] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S3 MHIKEY10; C:\WINDOWS\System32\Drivers\MHIKEY10x64.sys [59008 2007-07-04] (Microsoft Windows Hardware Compatibility Publisher -> ChunghwaTL)
S3 MSIO; C:\Program Files (x86)\ASRock Utility\ASRRGBLED\Bin\msio64.sys [17424 2020-01-19] (Microsoft Windows Hardware Compatibility Publisher -> MICSYS Technology Co., LTd)
S3 Netaapl; C:\WINDOWS\System32\drivers\netaapl64.sys [23040 2020-04-15] (Apple Inc.) [Datei ist nicht signiert]
R1 NNSDNS; C:\WINDOWS\system32\DRIVERS\NNSDNS.sys [146184 2022-11-06] (WatchGuard Technologies, Inc. -> Panda Security, S.L.)
R1 NNSHTTP; C:\WINDOWS\system32\DRIVERS\NNSHTTP.sys [215264 2022-11-06] (WatchGuard Technologies, Inc. -> Panda Security, S.L.)
R1 NNSHTTPS; C:\WINDOWS\system32\DRIVERS\NNSHTTPS.sys [128744 2022-11-06] (WatchGuard Technologies, Inc. -> Panda Security, S.L.)
R1 NNSIDS; C:\WINDOWS\system32\DRIVERS\NNSIDS.sys [146664 2022-11-06] (WatchGuard Technologies, Inc. -> Panda Security, S.L.)
R1 NNSNAHSL; C:\WINDOWS\system32\DRIVERS\NNSNAHSL.sys [151152 2022-10-10] (Microsoft Windows Hardware Compatibility Publisher -> Panda Security, S.L.)
R1 NNSNHWFP; C:\WINDOWS\system32\DRIVERS\NNSNHWFP.sys [211208 2022-12-06] (WatchGuard Technologies, Inc. -> Panda Security, S.L.)
R1 NNSPICC; C:\WINDOWS\system32\DRIVERS\NNSPICC.sys [164568 2022-11-06] (WatchGuard Technologies, Inc. -> Panda Security, S.L.)
R1 NNSPOP3; C:\WINDOWS\system32\DRIVERS\NNSPOP3.sys [137960 2022-11-06] (WatchGuard Technologies, Inc. -> Panda Security, S.L.)
R1 NNSPROT; C:\WINDOWS\system32\DRIVERS\NNSPROT.sys [407264 2022-11-06] (WatchGuard Technologies, Inc. -> Panda Security, S.L.)
R1 NNSPRV; C:\WINDOWS\system32\DRIVERS\NNSPRV.sys [575720 2022-11-06] (WatchGuard Technologies, Inc. -> Panda Security, S.L.)
R1 NNSSMTP; C:\WINDOWS\system32\DRIVERS\NNSSMTP.sys [125672 2022-11-06] (WatchGuard Technologies, Inc. -> Panda Security, S.L.)
R1 NNSSTRM; C:\WINDOWS\system32\DRIVERS\NNSSTRM.sys [335064 2022-11-06] (WatchGuard Technologies, Inc. -> Panda Security, S.L.)
R3 NvModuleTracker; C:\WINDOWS\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_0c1cc60a4b422185\NvModuleTracker.sys [45656 2023-04-14] (Nvidia Corporation -> NVIDIA Corporation)
S3 PAC207; C:\WINDOWS\system32\DRIVERS\PFC027.SYS [686592 2008-02-13] (Microsoft Windows Hardware Compatibility Publisher -> PixArt Imaging Inc.)
R2 PSINAflt; C:\WINDOWS\system32\DRIVERS\PSINAflt.sys [198376 2022-11-03] (WatchGuard Technologies, Inc. -> Panda Security, S.L.)
S0 psinelam; C:\WINDOWS\System32\DRIVERS\psinelam.sys [36552 2023-04-13] (Microsoft Windows Early Launch Anti-Malware Publisher -> Panda Security, S.L.)
R2 PSINFile; C:\WINDOWS\System32\DRIVERS\PSINFile.sys [176360 2022-11-03] (WatchGuard Technologies, Inc. -> Panda Security, S.L.)
R1 PSINKNC; C:\WINDOWS\system32\DRIVERS\PSINKNC.sys [218856 2022-11-03] (WatchGuard Technologies, Inc. -> Panda Security, S.L.)
R2 PSINProc; C:\WINDOWS\System32\DRIVERS\PSINProc.sys [150760 2022-11-03] (WatchGuard Technologies, Inc. -> Panda Security, S.L.)
R2 PSINProt; C:\WINDOWS\system32\DRIVERS\PSINProt.sys [162536 2022-11-03] (WatchGuard Technologies, Inc. -> Panda Security, S.L.)
R2 PSINReg; C:\WINDOWS\system32\DRIVERS\PSINReg.sys [130280 2022-11-03] (WatchGuard Technologies, Inc. -> Panda Security, S.L.)
U3 PSKMAD; C:\WINDOWS\System32\DRIVERS\PSKMAD.sys [72984 2019-02-20] (Panda Security S.L. -> Panda Security, S.L.)
R3 RTCore64; C:\Program Files (x86)\MSI Afterburner\RTCore64.sys [36824 2020-07-13] (MICRO-STAR INTERNATIONAL CO., LTD. -> )
S3 secnvme; C:\WINDOWS\System32\drivers\secnvme.sys [132584 2017-10-13] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd)
S3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [27136 2016-04-21] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
S3 USBAAPL64; C:\WINDOWS\System32\Drivers\usbaapl64.sys [54784 2016-03-28] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.)
S3 usbdpfp; C:\WINDOWS\System32\drivers\usbdpfp.sys [67088 2010-02-24] (DigitalPersona, Inc. -> DigitalPersona, Inc.)
S3 vmbusproxy; C:\WINDOWS\system32\drivers\vmbusproxy.sys [94208 2023-08-28] (Microsoft Windows -> )
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [55704 2023-08-09] (Microsoft Windows Early Launch Anti-Malware Publisher -> Microsoft Corporation)
U5 WdDevFlt; C:\Windows\System32\Drivers\WdDevFlt.sys [169232 2022-05-07] (Microsoft Windows -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [572656 2023-08-09] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [104688 2023-08-09] (Microsoft Windows -> Microsoft Corporation)
S3 wintun; C:\WINDOWS\system32\DRIVERS\wintun.sys [29680 2023-06-15] (Microsoft Windows Hardware Compatibility Publisher -> WireGuard LLC)
S3 xhunter1; C:\WINDOWS\xhunter1.sys [74552 2019-12-14] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.)
S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X]
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Ein Monat (erstellte) (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2023-08-28 20:25 - 2023-08-28 20:25 - 000050514 _____ C:\Users\Rose\Downloads\FRST.txt
2023-08-28 20:25 - 2023-08-28 20:25 - 000000000 ____D C:\FRST
2023-08-28 20:24 - 2023-08-28 20:24 - 002382336 _____ (Farbar) C:\Users\Rose\Downloads\FRST64.exe
2023-08-28 19:59 - 2023-08-28 19:59 - 000457374 _____ C:\Users\Rose\Downloads\condef.rar
2023-08-28 19:26 - 2023-08-28 19:26 - 000003832 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA{7B919D33-27BD-435F-AB1E-5784AD3F09A6}
2023-08-28 19:26 - 2023-08-28 19:26 - 000003708 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore{46F3BE1D-EC51-4C50-8452-7658FEEDA63F}
2023-08-28 19:26 - 2019-02-20 07:31 - 000072984 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\PSKMAD.sys
2023-08-28 19:25 - 2023-08-28 19:25 - 000003132 _____ C:\WINDOWS\system32\Tasks\MSIAfterburner
2023-08-28 19:17 - 2023-08-28 19:17 - 000002320 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Panda Dome.lnk
2023-08-28 19:16 - 2023-08-28 19:17 - 000002305 _____ C:\Users\Public\Desktop\Panda Dome.lnk
2023-08-28 19:16 - 2023-08-28 19:16 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Panda Dome
2023-08-28 19:16 - 2022-12-06 12:53 - 000211208 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\nnsnhwfp.sys
2023-08-28 19:16 - 2022-11-06 12:24 - 000575720 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\nnsprv.sys
2023-08-28 19:16 - 2022-11-06 12:24 - 000407264 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\nnsprot.sys
2023-08-28 19:16 - 2022-11-06 12:24 - 000335064 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\nnsstrm.sys
2023-08-28 19:16 - 2022-11-06 12:24 - 000215264 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\nnshttp.sys
2023-08-28 19:16 - 2022-11-06 12:24 - 000164568 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\nnspicc.sys
2023-08-28 19:16 - 2022-11-06 12:24 - 000146664 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\nnsids.sys
2023-08-28 19:16 - 2022-11-06 12:24 - 000146184 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\nnsdns.sys
2023-08-28 19:16 - 2022-11-06 12:24 - 000137960 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\nnspop3.sys
2023-08-28 19:16 - 2022-11-06 12:24 - 000128744 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\nnshttps.sys
2023-08-28 19:16 - 2022-11-06 12:24 - 000125672 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\nnssmtp.sys
2023-08-28 19:16 - 2022-11-03 01:33 - 000218856 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\PSINKNC.sys
2023-08-28 19:16 - 2022-11-03 01:33 - 000198376 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\PSINAflt.sys
2023-08-28 19:16 - 2022-11-03 01:33 - 000176360 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\PSINFile.sys
2023-08-28 19:16 - 2022-11-03 01:33 - 000162536 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\PSINProt.sys
2023-08-28 19:16 - 2022-11-03 01:33 - 000150760 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\PSINProc.sys
2023-08-28 19:16 - 2022-11-03 01:33 - 000130280 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\PSINReg.sys
2023-08-28 19:12 - 2023-08-28 19:12 - 000000000 ____D C:\WINDOWS\Panther
2023-08-28 18:47 - 2023-08-28 18:48 - 000000000 ___HD C:\$WinREAgent
2023-08-28 18:04 - 2023-08-28 18:04 - 000000000 ____D C:\Users\Rose\Downloads\Autoruns
2023-08-28 17:43 - 2023-08-28 17:49 - 000012288 _____ C:\WINDOWS\SysWOW64\AppRulesStorage
2023-08-28 17:43 - 2023-08-28 17:43 - 000012288 _____ C:\WINDOWS\SysWOW64\DnsStorage
2023-08-28 17:42 - 2023-08-28 17:49 - 000000000 ____D C:\Program Files\Common Files\AV
2023-08-28 17:38 - 2023-08-28 18:41 - 000000000 ____D C:\Users\Rose\AppData\Local\ESET
2023-08-28 17:33 - 2023-08-28 17:35 - 000000000 ____D C:\ProgramData\HitmanPro
2023-08-28 14:30 - 2023-08-28 14:30 - 000000000 ___HD C:\$SysReset
2023-08-28 13:09 - 2023-08-28 18:54 - 000000000 ____D C:\Users\Rose\AppData\Local\Malwarebytes
2023-08-28 13:09 - 2023-08-28 13:09 - 000002041 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2023-08-28 13:09 - 2023-08-28 13:09 - 000002029 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2023-08-28 13:08 - 2023-08-28 13:08 - 000000000 ____D C:\Program Files\Malwarebytes
2023-08-28 11:18 - 2023-08-28 15:58 - 000000000 ____D C:\Users\Rose\Desktop\Neuer Ordner
2023-08-28 10:54 - 2023-08-28 19:16 - 000000000 ____D C:\ProgramData\Panda Security
2023-08-28 10:54 - 2023-08-28 19:16 - 000000000 ____D C:\Program Files (x86)\Panda Security
2023-08-28 10:54 - 2023-08-28 10:54 - 003142712 _____ (Panda Security, S.L.) C:\Users\Rose\Downloads\PANDAFREEAV.exe
2023-08-28 10:03 - 2023-08-28 10:20 - 000000000 ____D C:\KVRT2020_Data
2023-08-28 09:22 - 2023-08-28 19:26 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2023-08-28 09:22 - 2023-08-28 12:10 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2023-08-28 09:22 - 2023-08-28 09:22 - 000011433 _____ C:\WINDOWS\diagwrn.xml
2023-08-28 09:22 - 2023-08-28 09:22 - 000011433 _____ C:\WINDOWS\diagerr.xml
2023-08-28 09:22 - 2023-08-28 09:22 - 000003580 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2023-08-28 09:22 - 2023-08-28 09:22 - 000003356 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2023-08-28 09:22 - 2023-08-28 09:22 - 000003308 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{A386F23C-987F-4B30-B0AB-76CF6CFBB4BF}
2023-08-28 09:22 - 2023-08-28 09:22 - 000003152 _____ C:\WINDOWS\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-08-28 09:22 - 2023-08-28 09:22 - 000002590 _____ C:\WINDOWS\system32\Tasks\SamsungMagician
2023-08-28 09:22 - 2023-08-28 09:22 - 000002586 _____ C:\WINDOWS\system32\Tasks\CreateExplorerShellUnelevatedTask
2023-08-28 09:22 - 2023-08-28 09:22 - 000000488 __RSH C:\ProgramData\ntuser.pol
2023-08-28 09:22 - 2023-08-28 09:22 - 000000020 ___SH C:\Users\Rose\ntuser.ini
2023-08-28 09:22 - 2023-08-28 09:22 - 000000000 ____D C:\WINDOWS\system32\Tasks\Elcomsoft
2023-08-28 09:21 - 2023-08-28 09:21 - 000000000 ____D C:\Users\Default\AppData\Roaming\Microsoft\Network
2023-08-28 09:19 - 2023-08-28 19:25 - 000001623 _____ C:\WINDOWS\system32\config\VSMIDK
2023-08-28 09:19 - 2023-08-28 18:42 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2023-08-28 09:19 - 2023-08-28 10:47 - 005738896 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2023-08-28 09:17 - 2023-08-28 09:19 - 000000000 ____D C:\Users\Rose\AppData\Roaming\Microsoft\Crypto
2023-08-28 09:17 - 2023-08-28 09:17 - 000000000 ____D C:\Users\Rose\AppData\Roaming\Microsoft\SystemCertificates
2023-08-28 09:17 - 2023-08-28 09:17 - 000000000 ____D C:\Users\Rose\AppData\Roaming\Microsoft\Network
2023-08-28 09:15 - 2023-08-28 09:19 - 000000000 ____D C:\WINDOWS\system32\config\bbimigrate
2023-08-28 09:14 - 2023-08-28 17:57 - 000000000 ____D C:\Users\Rose
2023-08-28 09:14 - 2023-08-28 09:21 - 000000000 ____D C:\Users\Rose\AppData\Roaming\Microsoft\Windows
2023-08-28 09:14 - 2023-08-28 09:19 - 000000000 ____D C:\Users\Rose\AppData\Roaming\Microsoft\Spelling
2023-08-28 09:14 - 2023-08-28 09:14 - 000000000 _SHDL C:\Users\Rose\Vorlagen
2023-08-28 09:14 - 2023-08-28 09:14 - 000000000 _SHDL C:\Users\Rose\Startmenü
2023-08-28 09:14 - 2023-08-28 09:14 - 000000000 _SHDL C:\Users\Rose\Netzwerkumgebung
2023-08-28 09:14 - 2023-08-28 09:14 - 000000000 _SHDL C:\Users\Rose\Lokale Einstellungen
2023-08-28 09:14 - 2023-08-28 09:14 - 000000000 _SHDL C:\Users\Rose\Eigene Dateien
2023-08-28 09:14 - 2023-08-28 09:14 - 000000000 _SHDL C:\Users\Rose\Druckumgebung
2023-08-28 09:14 - 2023-08-28 09:14 - 000000000 _SHDL C:\Users\Rose\Documents\Eigene Videos
2023-08-28 09:14 - 2023-08-28 09:14 - 000000000 _SHDL C:\Users\Rose\Documents\Eigene Musik
2023-08-28 09:14 - 2023-08-28 09:14 - 000000000 _SHDL C:\Users\Rose\Documents\Eigene Bilder
2023-08-28 09:14 - 2023-08-28 09:14 - 000000000 _SHDL C:\Users\Rose\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2023-08-28 09:14 - 2023-08-28 09:14 - 000000000 _SHDL C:\Users\Rose\AppData\Local\Verlauf
2023-08-28 09:14 - 2023-08-28 09:14 - 000000000 _SHDL C:\Users\Rose\AppData\Local\Anwendungsdaten
2023-08-28 09:14 - 2023-08-28 09:14 - 000000000 _SHDL C:\Users\Rose\Anwendungsdaten
2023-08-28 09:13 - 2023-08-28 09:15 - 000000000 ____D C:\WINDOWS\ServiceProfiles
2023-08-28 09:12 - 2023-08-28 09:12 - 000743150 _____ C:\WINDOWS\system32\perfh007.dat
2023-08-28 09:12 - 2023-08-28 09:12 - 000152540 _____ C:\WINDOWS\system32\perfc007.dat
2023-08-28 09:12 - 2023-08-28 09:12 - 000000000 ___SD C:\WINDOWS\system32\containers
2023-08-28 09:12 - 2023-08-28 09:12 - 000000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2023-08-28 09:12 - 2023-08-28 09:12 - 000000000 ____D C:\WINDOWS\system32\HvsiSettingsProviders
2023-08-28 09:12 - 2023-08-28 09:12 - 000000000 ____D C:\Program Files\Reference Assemblies
2023-08-28 09:12 - 2023-08-28 09:12 - 000000000 ____D C:\Program Files\MSBuild
2023-08-28 09:12 - 2023-08-28 09:12 - 000000000 ____D C:\Program Files (x86)\Reference Assemblies
2023-08-28 09:12 - 2023-08-28 09:12 - 000000000 ____D C:\Program Files (x86)\MSBuild
2023-08-28 09:09 - 2023-08-28 09:09 - 000008192 _____ C:\WINDOWS\system32\config\userdiff
2023-08-28 08:59 - 2023-08-28 09:00 - 000000000 ____D C:\AdwCleaner
2023-08-28 08:55 - 2023-08-28 08:55 - 002969821 _____ C:\Users\Rose\Downloads\Autoruns.zip
2023-08-28 08:55 - 2023-08-28 08:55 - 000000000 ____D C:\Users\Rose\Downloads\Win11_22H2_German_x64v2
2023-08-28 08:48 - 2023-08-28 08:48 - 000000000 ____D C:\Program Files (x86)\WindowsInstallationAssistant
2023-08-28 05:24 - 2023-08-28 05:24 - 000000000 ____D C:\Users\Rose\AppData\Roaming\Microsoft\IME
2023-08-27 21:07 - 2023-08-27 21:07 - 000000000 ____D C:\Program Files\Registry
2023-08-27 20:58 - 2016-06-08 23:27 - 007819493 _____ C:\Users\Rose\Desktop\KMSpico 10.2.0 Installer + Portable.mhktricks.net.zip
2023-08-27 18:18 - 2023-08-27 18:18 - 000000000 ____D C:\Users\Rose\AppData\Roaming\wiadss
2023-08-27 17:47 - 2023-08-27 18:32 - 000000000 ____D C:\Users\Rose\AppData\Roaming\Xiaomi
2023-08-27 14:50 - 2023-08-27 17:32 - 000000000 ____D C:\Users\Rose\.android
2023-08-27 14:50 - 2023-08-27 14:50 - 000000000 ____D C:\Users\Public\Thunder Network
2023-08-27 14:50 - 2023-08-27 14:50 - 000000000 ____D C:\ProgramData\Thunder Network
2023-08-27 09:44 - 2023-08-27 09:44 - 000001747 _____ C:\Users\Rose\Desktop\Photoshop.exe - Verknüpfung.lnk
2023-08-27 09:41 - 2023-08-27 09:41 - 000001615 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Application Manager.lnk
2023-08-27 09:41 - 2023-08-27 09:41 - 000001099 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop CC 2015.lnk
2023-08-27 09:38 - 2023-08-27 09:38 - 000000000 ____D C:\Users\Public\Documents\AdobeGCInfo
2023-08-25 21:14 - 2023-08-25 21:14 - 000150510 _____ C:\Users\Rose\Downloads\Verkaufsschild-SiemensKC3BChlschrank_-_7688040102433033862.pdf
2023-08-25 04:38 - 2023-08-28 09:19 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ExplorerPatcher
2023-08-25 04:38 - 2023-08-25 04:38 - 000643584 _____ (VALINET Solutions SRL) C:\WINDOWS\dxgi.dll
2023-08-24 09:59 - 2023-08-24 09:59 - 000002075 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk
2023-08-24 06:15 - 2023-08-28 09:19 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2023-08-23 16:28 - 2023-08-23 16:28 - 000643072 _____ (VALINET Solutions SRL) C:\WINDOWS\dxgi.prev
2023-08-22 22:15 - 2023-08-15 06:23 - 000121880 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhda64v.sys
2023-08-22 22:12 - 2023-08-16 12:15 - 000849088 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2023-08-22 22:12 - 2023-08-16 12:15 - 000849088 _____ C:\WINDOWS\system32\vulkaninfo.exe
2023-08-22 22:12 - 2023-08-16 12:15 - 000713912 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2023-08-22 22:12 - 2023-08-16 12:15 - 000713912 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2023-08-22 22:12 - 2023-08-16 12:15 - 000653504 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2023-08-22 22:12 - 2023-08-16 12:15 - 000653504 _____ C:\WINDOWS\system32\vulkan-1.dll
2023-08-22 22:12 - 2023-08-16 12:15 - 000637112 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2023-08-22 22:12 - 2023-08-16 12:15 - 000637112 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2023-08-22 22:12 - 2023-08-16 12:14 - 001487376 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2023-08-22 22:12 - 2023-08-16 12:14 - 001227296 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2023-08-22 22:12 - 2023-08-16 12:11 - 000669320 _____ C:\WINDOWS\system32\nvofapi64.dll
2023-08-22 22:12 - 2023-08-16 12:10 - 001537544 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2023-08-22 22:12 - 2023-08-16 12:10 - 001195016 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2023-08-22 22:12 - 2023-08-16 12:10 - 000938608 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvml.dll
2023-08-22 22:12 - 2023-08-16 12:10 - 000504456 _____ C:\WINDOWS\SysWOW64\nvofapi.dll
2023-08-22 22:12 - 2023-08-16 12:09 - 002168456 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2023-08-22 22:12 - 2023-08-16 12:09 - 001622152 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2023-08-22 22:12 - 2023-08-16 12:09 - 000992368 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2023-08-22 22:12 - 2023-08-16 12:09 - 000777760 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvidia-smi.exe
2023-08-22 22:12 - 2023-08-16 12:09 - 000768648 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2023-08-22 22:12 - 2023-08-16 12:08 - 014520968 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2023-08-22 22:12 - 2023-08-16 12:08 - 012066320 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2023-08-22 22:12 - 2023-08-16 12:08 - 003483168 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2023-08-22 22:12 - 2023-08-16 12:08 - 000459912 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdebugdump.exe
2023-08-22 22:12 - 2023-08-16 12:07 - 006190088 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2023-08-22 22:12 - 2023-08-16 12:07 - 005845640 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2023-08-22 22:12 - 2023-08-16 12:07 - 005550728 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcudadebugger.dll
2023-08-22 22:12 - 2023-08-16 12:07 - 000853104 _____ (NVIDIA Corporation) C:\WINDOWS\system32\MCU.exe
2023-08-22 22:12 - 2023-08-16 12:06 - 007858112 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2023-08-22 22:12 - 2023-08-16 12:05 - 006737504 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2023-08-22 22:12 - 2023-08-15 06:23 - 000108122 _____ C:\WINDOWS\system32\nvinfo.pb
2023-08-22 00:51 - 2023-08-22 00:51 - 000046824 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe
2023-08-21 21:33 - 2023-08-21 21:33 - 000066230 _____ C:\Users\Rose\Downloads\Klassentreffen-1.pdf
2023-08-21 11:38 - 2023-08-21 11:38 - 000000000 ____D C:\Users\Rose\Downloads\Red Dead Redemption - Game of the Year Edition (USA Europe) (EnFrDeEsIt) (Disc 2) (Undead Nightmare and Multiplayer)
2023-08-17 07:38 - 2023-08-17 07:38 - 000000000 ____D C:\Users\Rose\Downloads\Red Dead Redemption - Game of the Year Edition (USA Europe) (EnFrDeEsIt) (Disc 1) (Red Dead Redemption Single Player)
2023-08-16 14:35 - 2023-08-16 14:35 - 002299727 _____ C:\Users\Rose\Downloads\6 Deckblätter für Biologie zum Ausdrucken - Wunderbunt.de.pdf
2023-08-15 10:55 - 2023-08-28 19:26 - 000012288 ___SH C:\DumpStack.log.tmp
2023-08-13 12:39 - 2023-08-13 12:39 - 000000000 ____D C:\ProgramData\WinaeroTweaker
2023-08-13 07:49 - 2023-08-13 07:49 - 000000031 _____ C:\.txt
2023-08-13 06:53 - 2023-08-13 06:53 - 000000000 ___HD C:\$Windows.~WS
2023-08-12 11:04 - 2023-08-12 11:06 - 000000000 ____D C:\Users\Rose\Downloads\xenia_canary
2023-08-12 11:04 - 2023-08-12 11:04 - 003145058 _____ C:\Users\Rose\Downloads\xenia_canary.zip
2023-08-12 10:48 - 2023-08-12 10:50 - 000000000 ____D C:\Users\Rose\Documents\Xenia
2023-08-12 10:48 - 2023-08-12 10:48 - 000000000 ____D C:\Users\Rose\Downloads\xenia_master
2023-08-12 10:46 - 2023-08-12 10:46 - 017886779 _____ C:\Users\Rose\Downloads\xenia_master.zip
2023-08-10 09:21 - 2023-08-11 05:39 - 000000000 ____D C:\Users\Rose\AppData\Roaming\Microsoft\Teams
2023-08-09 11:38 - 2023-08-09 11:38 - 000409871 _____ C:\Users\Rose\Downloads\Überweisungsbestätigung_1691573889447.pdf
2023-08-08 12:06 - 2023-08-08 12:06 - 006069127 _____ C:\Users\Rose\Downloads\Diagnostics_Logs-OLK-UTC.2023.8.8.10.6.55.810.zip
2023-08-08 06:38 - 2023-08-08 06:38 - 000022162 _____ C:\Users\Rose\Downloads\Guenstiger GA4 Report.xlsx
2023-08-07 17:32 - 2023-08-07 17:32 - 000000000 ____D C:\Program Files\LogiOptionsPlus
2023-08-03 09:27 - 2023-08-03 09:27 - 000001836 _____ C:\Users\Rose\Desktop\CrystalDiskInfo.lnk
==================== Ein Monat (geänderte) ==================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2023-08-28 20:22 - 2016-07-13 15:12 - 000000000 ____D C:\Users\Rose\Documents\Outlook-Dateien
2023-08-28 20:20 - 2022-12-06 19:42 - 000000000 ____D C:\Users\Rose\AppData\Local\LogiOptionsPlus
2023-08-28 20:09 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SystemTemp
2023-08-28 20:05 - 2022-05-07 07:24 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-08-28 19:37 - 2016-07-13 10:52 - 000000000 ____D C:\Users\Rose\AppData\Roaming\Telegram Desktop
2023-08-28 19:32 - 2016-07-28 22:35 - 000000000 ____D C:\Program Files (x86)\Google
2023-08-28 19:31 - 2022-02-10 09:37 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2023-08-28 19:29 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\AppReadiness
2023-08-28 19:29 - 2017-10-13 07:52 - 000000000 ____D C:\Users\Rose\AppData\Local\Packages
2023-08-28 19:27 - 2016-07-13 09:39 - 000000000 ____D C:\Users\Rose\AppData\Local\ClassicShell
2023-08-28 19:26 - 2023-04-29 07:02 - 000000000 ____D C:\ProgramData\NVIDIA
2023-08-28 19:26 - 2022-05-07 07:24 - 000000000 ___HD C:\Program Files\WindowsApps
2023-08-28 19:26 - 2021-09-07 15:10 - 000000000 ____D C:\Users\Rose\AppData\Local\LogiBolt
2023-08-28 19:26 - 2017-03-27 07:56 - 000000000 ____D C:\Users\Rose\AppData\Local\Dropbox
2023-08-28 19:26 - 2016-07-13 10:28 - 000000000 ____D C:\Users\Rose\AppData\Roaming\Dropbox
2023-08-28 19:25 - 2022-05-07 07:17 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2023-08-28 19:19 - 2022-05-07 07:17 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2023-08-28 19:17 - 2022-05-07 07:22 - 000000000 ____D C:\WINDOWS\INF
2023-08-28 19:14 - 2023-04-29 07:00 - 000000000 ____D C:\Users\Rose\AppData\Local\D3DSCache
2023-08-28 19:13 - 2018-07-19 06:15 - 000000000 ____D C:\ProgramData\Packages
2023-08-28 19:03 - 2022-05-07 07:24 - 000000000 ___RD C:\WINDOWS\PrintDialog
2023-08-28 19:03 - 2022-05-07 07:24 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2023-08-28 18:58 - 2021-07-22 13:19 - 000000000 ____D C:\Users\Rose\AppData\LocalLow\IGDump
2023-08-28 18:56 - 2022-05-07 07:17 - 000000000 ____D C:\WINDOWS\CbsTemp
2023-08-28 18:53 - 2023-04-29 23:14 - 000000000 ____D C:\Users\Rose\AppData\Roaming\ExplorerPatcher
2023-08-28 18:51 - 2022-05-07 12:39 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2023-08-28 18:51 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SystemResources
2023-08-28 18:51 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\setup
2023-08-28 18:51 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\bcastdvr
2023-08-28 18:21 - 2023-04-09 15:54 - 000000000 ____D C:\Users\Rose\Downloads\Telegram Desktop
2023-08-28 17:49 - 2022-05-07 07:24 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2023-08-28 17:49 - 2017-08-09 20:21 - 000000000 ____D C:\Program Files\Mozilla Firefox
2023-08-28 17:43 - 2017-01-23 20:11 - 000000000 ____D C:\Users\TEMP
2023-08-28 17:43 - 2015-10-30 08:28 - 000000000 ____D C:\Users\Default.migrated
2023-08-28 17:10 - 2018-02-20 08:33 - 000000000 ____D C:\Program Files (x86)\RivaTuner Statistics Server
2023-08-28 17:10 - 2018-02-20 08:33 - 000000000 ____D C:\Program Files (x86)\MSI Afterburner
2023-08-28 15:42 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\appcompat
2023-08-28 13:08 - 2016-07-13 14:32 - 000000000 ____D C:\ProgramData\Malwarebytes
2023-08-28 12:09 - 2016-07-13 13:50 - 000000000 ____D C:\Users\Rose\AppData\Local\JDownloader v2.0
2023-08-28 11:05 - 2022-05-07 07:24 - 000000000 ____D C:\ProgramData\USOPrivate
2023-08-28 10:54 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\GroupPolicy
2023-08-28 10:52 - 2016-07-13 13:05 - 000000000 ____D C:\Users\Rose\AppData\Local\CrashDumps
2023-08-28 10:46 - 2023-04-29 22:06 - 000000000 ____D C:\WINDOWS\addins
2023-08-28 10:46 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\WUModels
2023-08-28 10:46 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\UUS
2023-08-28 10:46 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2023-08-28 10:46 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\vi-VN
2023-08-28 10:46 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2023-08-28 10:46 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\PerceptionSimulation
2023-08-28 10:46 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2023-08-28 10:46 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2023-08-28 10:46 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\id-ID
2023-08-28 10:46 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\gl-ES
2023-08-28 10:46 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\eu-ES
2023-08-28 10:46 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE
2023-08-28 10:46 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX
2023-08-28 10:46 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2023-08-28 10:46 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\ca-ES
2023-08-28 10:46 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SystemApps
2023-08-28 10:46 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2023-08-28 10:46 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2023-08-28 10:46 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\vi-VN
2023-08-28 10:46 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\Sgrm
2023-08-28 10:46 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2023-08-28 10:46 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2023-08-28 10:46 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\oobe
2023-08-28 10:46 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\migwiz
2023-08-28 10:46 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2023-08-28 10:46 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2023-08-28 10:46 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\id-ID
2023-08-28 10:46 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\HealthAttestationClient
2023-08-28 10:46 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\gl-ES
2023-08-28 10:46 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\eu-ES
2023-08-28 10:46 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\et-EE
2023-08-28 10:46 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\es-MX
2023-08-28 10:46 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\Dism
2023-08-28 10:46 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\DDFs
2023-08-28 10:46 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\ca-ES
2023-08-28 10:46 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\appraiser
2023-08-28 10:46 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ShellExperiences
2023-08-28 10:46 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ShellComponents
2023-08-28 10:46 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2023-08-28 10:46 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\OCR
2023-08-28 10:46 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\Globalization
2023-08-28 10:46 - 2022-05-07 07:17 - 000000000 ____D C:\WINDOWS\servicing
2023-08-28 10:40 - 2016-07-13 22:20 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2023-08-28 09:22 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\Registration
2023-08-28 09:22 - 2022-05-07 07:24 - 000000000 ____D C:\Program Files\Windows NT
2023-08-28 09:22 - 2022-05-07 07:24 - 000000000 ____D C:\Program Files\Windows Defender
2023-08-28 09:22 - 2016-07-13 09:36 - 000000000 __RHD C:\Users\Public\AccountPictures
2023-08-28 09:21 - 2023-01-28 20:34 - 000000000 ____D C:\Users\Rose\Downloads\Prime95-[Guru3D.com]
2023-08-28 09:21 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\Media
2023-08-28 09:21 - 2022-05-07 07:24 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2023-08-28 09:21 - 2017-04-05 23:32 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON Scan
2023-08-28 09:20 - 2023-04-29 07:02 - 000000000 ____D C:\WINDOWS\system32\Drivers\NVIDIA Corporation
2023-08-28 09:19 - 2023-06-15 21:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberGhost 8
2023-08-28 09:19 - 2023-05-16 17:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Torpedo Traffic Generator Ultimate
2023-08-28 09:19 - 2023-04-29 23:00 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Winaero Tweaker
2023-08-28 09:19 - 2023-04-29 07:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2023-08-28 09:19 - 2023-04-09 05:18 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\AORUS
2023-08-28 09:19 - 2023-03-22 09:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Corsair
2023-08-28 09:19 - 2023-02-01 22:26 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung Magician
2023-08-28 09:19 - 2022-12-15 11:32 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brother
2023-08-28 09:19 - 2022-06-09 05:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\hide.me VPN
2023-08-28 09:19 - 2022-05-07 12:29 - 000000000 ____D C:\WINDOWS\SysWOW64\WCN
2023-08-28 09:19 - 2022-05-07 12:29 - 000000000 ____D C:\WINDOWS\system32\WCN
2023-08-28 09:19 - 2022-05-07 07:24 - 000028672 _____ C:\WINDOWS\system32\config\BCD-Template
2023-08-28 09:19 - 2022-05-07 07:24 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2023-08-28 09:19 - 2022-05-07 07:24 - 000000000 ___SD C:\WINDOWS\Downloaded Program Files
2023-08-28 09:19 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase
2023-08-28 09:19 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\Tasks_Migrated
2023-08-28 09:19 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\spool
2023-08-28 09:19 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\SecurityHealth
2023-08-28 09:19 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\NDF
2023-08-28 09:19 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ServiceState
2023-08-28 09:19 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2023-08-28 09:19 - 2021-09-12 21:30 - 000000000 ____D C:\Users\Rose\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2023-08-28 09:19 - 2021-09-07 15:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logi
2023-08-28 09:19 - 2021-03-21 20:09 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\3uTools
2023-08-28 09:19 - 2020-07-01 10:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\xat.com Image Optimizer
2023-08-28 09:19 - 2020-05-30 06:04 - 000000000 ____D C:\Program Files\UNP
2023-08-28 09:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2023-08-28 09:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Macromed
2023-08-28 09:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Catroot2.bak
2023-08-28 09:19 - 2019-12-04 12:52 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CrystalDiskInfo
2023-08-28 09:19 - 2019-12-04 08:00 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battle.net
2023-08-28 09:19 - 2019-11-05 14:26 - 000000000 ____D C:\WINDOWS\system32\AMD
2023-08-28 09:19 - 2019-10-06 10:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Combined Community Codec Pack
2023-08-28 09:19 - 2019-06-12 11:43 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Classic Shell
2023-08-28 09:19 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\system32\MsDtc
2023-08-28 09:19 - 2018-07-12 21:53 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OBS Studio
2023-08-28 09:19 - 2018-06-20 11:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WebSite X5 - Professional
2023-08-28 09:19 - 2018-06-15 00:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Photolemur
2023-08-28 09:19 - 2018-06-03 10:19 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Games for Windows Marketplace
2023-08-28 09:19 - 2018-06-02 13:09 - 000000000 ____D C:\WINDOWS\SysWOW64\xlive
2023-08-28 09:19 - 2018-05-28 07:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Expression
2023-08-28 09:19 - 2018-05-28 06:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileZilla FTP Client
2023-08-28 09:19 - 2018-05-25 22:46 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Foxit PhantomPDF
2023-08-28 09:19 - 2018-02-20 08:33 - 000000000 ____D C:\Users\Rose\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RivaTuner Statistics Server
2023-08-28 09:19 - 2018-02-20 08:33 - 000000000 ____D C:\Users\Rose\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MSI Afterburner
2023-08-28 09:19 - 2017-11-22 22:22 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TuneUp Utilities 2008
2023-08-28 09:19 - 2017-10-17 12:03 - 000000000 ____D C:\Users\Rose\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FRITZ!Box
2023-08-28 09:19 - 2017-08-12 23:27 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2023-08-28 09:19 - 2017-05-04 21:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glary Utilities 5
2023-08-28 09:19 - 2017-04-23 20:25 - 000000000 __SHD C:\WINDOWS\SysWOW64\AI_RecycleBin
2023-08-28 09:19 - 2017-04-05 23:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON
2023-08-28 09:19 - 2017-04-05 23:05 - 000000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2023-08-28 09:19 - 2016-11-14 16:19 - 000000000 ____D C:\WINDOWS\de
2023-08-28 09:19 - 2016-11-08 08:46 - 000000000 ____D C:\WINDOWS\SysWOW64\LiveUpdate
2023-08-28 09:19 - 2016-08-27 14:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2023-08-28 09:19 - 2016-08-14 09:19 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ImgBurn
2023-08-28 09:19 - 2016-08-14 09:18 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero 7 Ultra Edition
2023-08-28 09:19 - 2016-08-01 07:17 - 000000000 ____D C:\Users\Rose\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2023-08-28 09:19 - 2016-07-25 12:25 - 000000000 ___HD C:\Users\Rose\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup-Disabled
2023-08-28 09:19 - 2016-07-25 11:06 - 000000000 ____D C:\WINDOWS\system32\appmgmt
2023-08-28 09:19 - 2016-07-24 23:26 - 000000000 ____D C:\Users\Rose\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WhatsApp
2023-08-28 09:19 - 2016-07-13 23:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Live Add-in
2023-08-28 09:19 - 2016-07-13 13:51 - 000000000 ____D C:\Users\Rose\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\JDownloader
2023-08-28 09:19 - 2016-07-13 13:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech
2023-08-28 09:19 - 2016-07-13 13:09 - 000000000 ____D C:\WINDOWS\system32\oodag
2023-08-28 09:19 - 2016-07-13 13:03 - 000000000 ____D C:\ProgramData\regid.1986-12.com.adobe
2023-08-28 09:19 - 2016-07-13 11:07 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Photomatix Pro 5.1
2023-08-28 09:19 - 2016-07-13 10:52 - 000000000 ____D C:\Users\Rose\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Telegram Desktop
2023-08-28 09:19 - 2016-07-13 10:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin
2023-08-28 09:19 - 2016-07-13 09:57 - 000000000 ____D C:\WINDOWS\system32\MRT
2023-08-28 09:19 - 2016-07-13 09:42 - 000000000 ____D C:\Program Files\Intel
2023-08-28 09:19 - 2015-10-30 09:24 - 000000000 ___HD C:\WINDOWS\system32\GroupPolicy
2023-08-28 09:18 - 2022-05-07 07:28 - 000000000 ____D C:\WINDOWS\Setup
2023-08-28 09:17 - 2022-05-07 07:24 - 000000000 __RHD C:\Users\Public\Libraries
2023-08-28 09:15 - 2023-04-08 16:26 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GIGABYTE
2023-08-28 09:15 - 2023-03-21 20:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASRock Utility
2023-08-28 09:15 - 2023-02-05 09:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Geeks3D
2023-08-28 09:15 - 2023-01-30 16:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Macrium
2023-08-28 09:15 - 2023-01-29 10:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VEGAS
2023-08-28 09:15 - 2022-10-26 17:33 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ubisoft
2023-08-28 09:15 - 2022-05-07 12:39 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2023-08-28 09:15 - 2022-05-07 12:39 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2023-08-28 09:15 - 2022-05-07 12:29 - 000000000 ____D C:\WINDOWS\SysWOW64\winrm
2023-08-28 09:15 - 2022-05-07 12:29 - 000000000 ____D C:\WINDOWS\SysWOW64\slmgr
2023-08-28 09:15 - 2022-05-07 12:29 - 000000000 ____D C:\WINDOWS\SysWOW64\Printing_Admin_Scripts
2023-08-28 09:15 - 2022-05-07 12:29 - 000000000 ____D C:\WINDOWS\system32\winrm
2023-08-28 09:15 - 2022-05-07 12:29 - 000000000 ____D C:\WINDOWS\system32\slmgr
2023-08-28 09:15 - 2022-05-07 12:29 - 000000000 ____D C:\WINDOWS\system32\Printing_Admin_Scripts
2023-08-28 09:15 - 2022-05-07 07:24 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2023-08-28 09:15 - 2022-05-07 07:24 - 000000000 ___SD C:\WINDOWS\system32\F12
2023-08-28 09:15 - 2022-05-07 07:24 - 000000000 ___SD C:\WINDOWS\system32\dsc
2023-08-28 09:15 - 2022-05-07 07:24 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2023-08-28 09:15 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2023-08-28 09:15 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\Resources
2023-08-28 09:15 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\Help
2023-08-28 09:15 - 2019-11-12 09:36 - 000000000 ____D C:\Users\Rose\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft
2023-08-28 09:15 - 2019-10-30 08:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\UL
2023-08-28 09:15 - 2019-05-01 10:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IVONA
2023-08-28 09:15 - 2018-10-23 10:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID
2023-08-28 09:15 - 2017-04-15 23:27 - 000000000 ____D C:\Users\Rose\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WonderFox Soft
2023-08-28 09:14 - 2022-05-07 07:24 - 000000000 ____D C:\Users\Default\AppData\Roaming\Microsoft\Windows
2023-08-28 09:12 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\MUI
2023-08-28 09:12 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\MUI
2023-08-28 09:00 - 2022-08-11 11:20 - 000000000 ____D C:\ProgramData\IObit
2023-08-28 09:00 - 2017-10-16 07:42 - 000000000 ____D C:\Users\Rose\AppData\Roaming\IObit
2023-08-28 09:00 - 2017-03-30 22:34 - 000000000 ____D C:\Users\Rose\AppData\LocalLow\IObit
2023-08-27 23:00 - 2016-07-13 21:27 - 000000000 ____D C:\Users\Rose\AppData\Local\ElevatedDiagnostics
2023-08-27 21:42 - 2017-11-20 13:31 - 000000000 ____D C:\Users\Rose\AppData\Local\PlaceholderTileLogoFolder
2023-08-27 21:21 - 2016-09-02 15:41 - 000000000 ____D C:\Users\Rose\AppData\Roaming\TeamViewer
2023-08-27 21:20 - 2018-05-28 06:17 - 000000000 ____D C:\Users\Rose\AppData\Roaming\FileZilla
2023-08-27 09:42 - 2016-07-13 10:43 - 000000000 ____D C:\ProgramData\Adobe
2023-08-27 09:41 - 2018-05-31 07:18 - 000000000 ____D C:\Program Files\Adobe
2023-08-27 09:41 - 2017-10-09 21:41 - 000000000 ____D C:\Users\Rose\Documents\Adobe
2023-08-27 09:41 - 2017-10-09 21:40 - 000000000 ____D C:\Program Files\Common Files\Adobe
2023-08-27 09:41 - 2016-07-13 09:42 - 000000000 ____D C:\ProgramData\Package Cache
2023-08-27 06:14 - 2020-05-31 10:39 - 000002438 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-08-25 12:51 - 2016-07-13 13:20 - 000000000 ____D C:\Users\Rose\AppData\Roaming\Microsoft\Word
2023-08-25 04:40 - 2016-08-17 09:53 - 000000000 ____D C:\Users\Rose\AppData\Roaming\Microsoft\Excel
2023-08-25 04:38 - 2023-04-29 23:14 - 000000000 ____D C:\Program Files\ExplorerPatcher
2023-08-24 21:33 - 2018-06-30 07:59 - 000002295 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2023-08-24 21:33 - 2018-06-30 07:59 - 000002254 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2023-08-24 06:15 - 2017-03-27 07:56 - 000000000 ____D C:\Program Files (x86)\Dropbox
2023-08-22 22:18 - 2021-05-19 12:22 - 000000000 ____D C:\Users\Rose\AppData\Local\NVIDIA
2023-08-22 18:21 - 2023-06-15 21:45 - 000000000 ____D C:\Users\Rose\AppData\Local\CyberGhost
2023-08-21 10:31 - 2018-05-28 07:17 - 000000128 _____ C:\Users\Rose\AppData\Local\PUTTY.RND
2023-08-20 08:53 - 2023-01-28 20:32 - 000000000 ____D C:\Users\Rose\Desktop\FUN
2023-08-19 21:42 - 2019-02-27 15:18 - 000008192 _____ C:\Users\Rose\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2023-08-18 04:32 - 2017-04-27 22:59 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2023-08-17 21:03 - 2017-04-27 22:59 - 000001011 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2023-08-13 12:31 - 2023-04-29 23:00 - 000000000 ____D C:\Program Files\Winaero Tweaker
2023-08-13 08:57 - 2016-07-13 10:46 - 000000000 ____D C:\Users\Rose\AppData\Local\Steam
2023-08-13 07:37 - 2019-03-23 07:56 - 000000000 ____D C:\ESD
2023-08-10 09:59 - 2016-07-24 23:26 - 000000000 ____D C:\Users\Rose\AppData\Local\SquirrelTemp
2023-08-10 08:55 - 2023-05-22 16:01 - 000000000 ____D C:\Users\Rose\Desktop\peugeot
2023-08-10 08:52 - 2023-01-28 20:33 - 000000000 ____D C:\Users\Rose\Downloads\DesktopOK401_x64
2023-08-09 19:16 - 2017-05-04 21:54 - 000000824 _____ C:\Users\Public\Desktop\Glary Utilities 5.lnk
2023-08-09 19:16 - 2017-05-04 21:54 - 000000824 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glary Utilities 5.lnk
2023-08-09 17:52 - 2018-03-01 15:04 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2023-08-09 05:13 - 2016-07-13 09:57 - 175983240 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2023-08-09 05:10 - 2023-04-16 10:07 - 000000000 ____D C:\Program Files\dotnet
2023-08-05 10:38 - 2018-07-12 21:54 - 000000000 ____D C:\Users\Rose\AppData\Roaming\obs-studio
2023-08-03 09:27 - 2019-12-04 12:52 - 000000000 ____D C:\Program Files\CrystalDiskInfo
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse ========
2016-07-19 20:43 - 2016-08-25 10:52 - 000000624 _____ () C:\Users\Rose\AppData\Roaming\All CPU MeterV3_Settings.ini
2019-04-10 10:51 - 2019-04-10 10:51 - 000000078 _____ () C:\Users\Rose\AppData\Roaming\FC.dat
2022-01-20 17:57 - 2022-01-20 17:57 - 000000015 _____ () C:\Users\Rose\AppData\Roaming\obs-virtualcam.txt
2020-05-18 17:06 - 2023-06-25 11:40 - 000000128 _____ () C:\Users\Rose\AppData\Roaming\PUTTY.RND
2016-07-19 20:58 - 2016-07-19 20:58 - 000000119 _____ () C:\Users\Rose\AppData\Roaming\System Monitor II_UptimeRecord.ini
2016-08-03 09:44 - 2017-01-11 22:07 - 000000122 _____ () C:\Users\Rose\AppData\Roaming\wklnhst.dat
2019-02-27 15:18 - 2023-08-19 21:42 - 000008192 _____ () C:\Users\Rose\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2016-07-13 09:46 - 2017-02-02 08:45 - 000000000 _____ () C:\Users\Rose\AppData\Local\Driver_LOM_8161Present.flag
2018-01-25 08:10 - 2018-01-25 08:10 - 000000291 _____ () C:\Users\Rose\AppData\Local\ledConfiguration.config
2016-12-26 09:19 - 2016-12-26 09:19 - 000000001 _____ () C:\Users\Rose\AppData\Local\llftool.4.40.agreement
2018-09-28 08:55 - 2023-08-27 09:38 - 000001025 _____ () C:\Users\Rose\AppData\Local\oobelibMkey.log
2018-05-28 07:17 - 2023-08-21 10:31 - 000000128 _____ () C:\Users\Rose\AppData\Local\PUTTY.RND
2020-07-13 13:21 - 2020-07-13 13:21 - 000002761 _____ () C:\Users\Rose\AppData\Local\recently-used.xbel
2016-12-27 11:04 - 2017-02-23 09:53 - 000007597 _____ () C:\Users\Rose\AppData\Local\resmon.resmoncfg
2023-04-27 22:28 - 2023-04-27 22:28 - 000000000 _____ () C:\Users\Rose\AppData\Local\{EBD3693D-572A-435F-A259-8E8C48611192}
==================== FLock ==============================
2017-11-09 13:42 C:\ProgramData\Application Data
==================== SigCheck ============================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
==================== Ende von FRST.txt ========================
|
Windows Sicherheit / Defender zerschossen
Cracks, Keygens und andere illegale Software
Linear-Darstellung
