Zurück   Trojaner-Board > Malware entfernen > Plagegeister aller Art und deren Bekämpfung
PC ggf. per Remote-Verbindung gesteuert, Policies/Unsignierte Treiber auffällig im Log

PC ggf. per Remote-Verbindung gesteuert, Policies/Unsignierte Treiber auffällig im Log


Plagegeister aller Art und deren Bekämpfung: PC ggf. per Remote-Verbindung gesteuert, Policies/Unsignierte Treiber auffällig im Log

Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen.

 
Vorheriger Beitrag Vorheriger Beitrag   Nächster Beitrag Nächster Beitrag
Alt 04.03.2024, 21:07   #4
Backslash
 
PC ggf. per Remote-Verbindung gesteuert, Policies/Unsignierte Treiber auffällig im Log - Standard

PC ggf. per Remote-Verbindung gesteuert, Policies/Unsignierte Treiber auffällig im Log


Code:
ATTFilter
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat (erstellte) (Nicht auf der Ausnahmeliste) =========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2024-03-04 19:52 - 2024-03-04 19:52 - 000046172 _____ C:\Users\Jscn\Desktop\FRST.txt
2024-03-04 19:48 - 2024-03-04 19:48 - 000706648 _____ C:\WINDOWS\system32\perfh007.dat
2024-03-04 19:48 - 2024-03-04 19:48 - 000149622 _____ C:\WINDOWS\system32\perfc007.dat
2024-03-04 19:39 - 2024-03-04 19:39 - 000000000 ____D C:\Users\Jscn\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Equalizer APO 1.3.2
2024-03-03 18:59 - 2024-03-03 18:59 - 000000000 ____D C:\WINDOWS\Minidump
2024-03-02 05:48 - 2024-03-02 05:48 - 000000000 ____D C:\Users\Jscn\AppData\Local\CrashDumps
2024-03-02 05:23 - 2024-03-02 05:24 - 000000000 ____D C:\AdwCleaner
2024-03-02 04:34 - 2024-03-02 04:34 - 009832696 _____ C:\Users\Jscn\Desktop\yt1s.com - World of Warcraft Chronicle Volume 1 Chapter 1 Audiobook_144p.mp4
2024-03-01 16:52 - 2024-03-01 16:52 - 000001790 _____ C:\Users\Public\Desktop\NordVPN.lnk
2024-03-01 16:52 - 2024-03-01 16:52 - 000000000 ____D C:\Users\Jscn\AppData\Local\NordVPN
2024-03-01 16:52 - 2024-03-01 16:52 - 000000000 ____D C:\ProgramData\NordVPN
2024-03-01 16:52 - 2024-03-01 16:52 - 000000000 ____D C:\ProgramData\NordUpdater
2024-03-01 16:52 - 2024-03-01 16:52 - 000000000 ____D C:\Program Files\NordVPN
2024-03-01 16:52 - 2024-03-01 16:52 - 000000000 ____D C:\Program Files\NordUpdater
2024-03-01 16:52 - 2024-01-29 17:57 - 000049744 _____ (The OpenVPN Project) C:\WINDOWS\system32\Drivers\tapnordvpn.sys
2024-03-01 16:52 - 2024-01-18 13:35 - 000044928 _____ (TEFINCOM S.A.) C:\WINDOWS\system32\Drivers\nordlwf.sys
2024-03-01 16:52 - 2023-03-23 14:52 - 000041024 _____ (TEFINCOM S.A.) C:\WINDOWS\Nord.Setup.dll
2024-03-01 15:25 - 2024-03-01 16:30 - 000003578 _____ C:\WINDOWS\system32\Tasks\Launch Adobe CCXProcess
2024-03-01 14:53 - 2024-03-01 19:34 - 000000000 ____D C:\Users\Jscn\Desktop\Kleinanzeigen
2024-03-01 11:09 - 2024-03-01 21:09 - 000000000 ____D C:\Users\Jscn\AppData\Roaming\Todoist
2024-03-01 11:09 - 2024-03-01 11:09 - 000002359 _____ C:\Users\Jscn\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Todoist.lnk
2024-03-01 11:09 - 2024-03-01 11:09 - 000002351 _____ C:\Users\Jscn\Desktop\Todoist.lnk
2024-03-01 11:09 - 2024-03-01 11:09 - 000000000 ____D C:\Users\Jscn\AppData\Local\todoist-updater
2024-02-28 19:49 - 2024-02-28 19:49 - 000001841 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wireshark.lnk
2024-02-28 19:49 - 2024-02-28 19:49 - 000000000 ____D C:\Program Files\Wireshark
2024-02-27 16:01 - 2024-02-27 16:01 - 000055432 _____ (Initex) C:\WINDOWS\system32\Drivers\NextDNSEngine.sys
2024-02-26 17:31 - 2024-03-04 19:41 - 000000000 ____D C:\WINDOWS\system32\Tasks\PowerToys
2024-02-26 17:31 - 2024-02-26 17:31 - 000000000 ____D C:\Users\Jscn\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PowerToys (Preview)
2024-02-26 17:30 - 2024-02-26 17:31 - 000000000 ____D C:\Users\Jscn\AppData\Local\PowerToys
2024-02-26 15:40 - 2024-02-26 15:40 - 000000000 ____D C:\Users\Jscn\AppData\LocalLow\Temp
2024-02-25 19:39 - 2024-02-25 19:39 - 000000000 ____D C:\Users\Jscn\ansel
2024-02-25 19:38 - 2024-02-26 08:32 - 000000000 ____D C:\Users\Jscn\AppData\Local\NVIDIA Corporation
2024-02-25 19:38 - 2024-02-25 19:38 - 000003834 _____ C:\WINDOWS\system32\Tasks\NVIDIA App SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-02-25 19:38 - 2024-02-25 19:38 - 000001444 _____ C:\Users\Public\Desktop\NVIDIA.lnk
2024-02-25 19:38 - 2024-02-25 19:38 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2024-02-25 19:38 - 2024-02-19 10:22 - 003132456 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll
2024-02-25 19:38 - 2024-02-19 10:22 - 002418216 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll
2024-02-25 19:38 - 2024-02-19 10:22 - 000306728 _____ C:\WINDOWS\system32\FvSDK_x64.dll
2024-02-25 19:38 - 2024-02-19 10:22 - 000268840 _____ C:\WINDOWS\SysWOW64\FvSDK_x86.dll
2024-02-25 19:38 - 2024-02-19 10:22 - 000171048 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvaudcap64v.dll
2024-02-25 19:38 - 2024-02-19 10:22 - 000150056 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvaudcap32v.dll
2024-02-25 19:38 - 2024-02-19 10:22 - 000050216 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvad64v.sys
2024-02-25 19:38 - 2024-02-17 12:38 - 002031464 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2024-02-25 19:38 - 2024-02-17 12:38 - 002031464 _____ C:\WINDOWS\system32\vulkaninfo.exe
2024-02-25 19:38 - 2024-02-17 12:38 - 001578752 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2024-02-25 19:38 - 2024-02-17 12:38 - 001578752 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2024-02-25 19:38 - 2024-02-17 12:38 - 001445224 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2024-02-25 19:38 - 2024-02-17 12:38 - 001295208 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2024-02-25 19:38 - 2024-02-17 12:38 - 001227296 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2024-02-25 19:38 - 2024-02-17 12:35 - 000669816 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvofapi64.dll
2024-02-25 19:38 - 2024-02-17 12:35 - 000505456 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvofapi.dll
2024-02-25 19:38 - 2024-02-17 12:34 - 002173448 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2024-02-25 19:38 - 2024-02-17 12:34 - 001625096 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2024-02-25 19:38 - 2024-02-17 12:34 - 001541640 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2024-02-25 19:38 - 2024-02-17 12:34 - 001199112 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2024-02-25 19:38 - 2024-02-17 12:34 - 001024032 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2024-02-25 19:38 - 2024-02-17 12:34 - 000842272 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvidia-smi.exe
2024-02-25 19:38 - 2024-02-17 12:34 - 000786952 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2024-02-25 19:38 - 2024-02-17 12:33 - 016033824 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2024-02-25 19:38 - 2024-02-17 12:33 - 012928032 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2024-02-25 19:38 - 2024-02-17 12:33 - 006780528 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2024-02-25 19:38 - 2024-02-17 12:33 - 005773448 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcudadebugger.dll
2024-02-25 19:38 - 2024-02-17 12:33 - 003721760 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2024-02-25 19:38 - 2024-02-17 12:33 - 000459272 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdebugdump.exe
2024-02-25 19:38 - 2024-02-17 12:32 - 000853000 _____ (NVIDIA Corporation) C:\WINDOWS\system32\MCU.exe
2024-02-25 19:38 - 2024-02-15 17:42 - 000119184 _____ C:\WINDOWS\system32\nvinfo.pb
2024-02-25 19:14 - 2024-02-25 19:14 - 000000000 ____D C:\Users\Jscn\Desktop\240225_BIOS Settings
2024-02-22 20:24 - 2024-02-25 19:31 - 000000000 ____D C:\Users\Jscn\AppData\Roaming\asus_framework
2024-02-22 20:16 - 2024-03-02 12:02 - 000000000 ____D C:\WINDOWS\CbsTemp
2024-02-22 20:12 - 2024-02-25 19:31 - 000000000 ____D C:\Program Files (x86)\LightingService
2024-02-22 20:09 - 2024-02-25 19:32 - 000000000 ____D C:\WINDOWS\system32\Tasks\ASUS
2024-02-22 20:09 - 2024-02-25 19:32 - 000000000 ____D C:\Users\Jscn\AppData\Local\ASUS
2024-02-22 20:09 - 2024-02-25 19:32 - 000000000 ____D C:\Users\Jscn\AppData\Local\AcSdkInsLog
2024-02-22 20:09 - 2024-02-25 19:32 - 000000000 ____D C:\Program Files\ASUS
2024-02-22 20:09 - 2024-02-25 19:28 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2024-02-22 20:09 - 2023-12-25 12:27 - 000054752 ____N (ASUSTeK Computer Inc.) C:\WINDOWS\system32\Drivers\IOMap64.sys
2024-02-22 20:09 - 2023-11-22 17:07 - 000524648 _____ (Asustek Computer Inc.) C:\WINDOWS\system32\AsIO3.dll
2024-02-22 20:09 - 2023-11-22 17:07 - 000430440 _____ (Asustek Computer Inc.) C:\WINDOWS\SysWOW64\AsIO3.dll
2024-02-22 20:09 - 2023-11-22 01:18 - 000059344 _____ (Asustek Computer Inc.) C:\WINDOWS\system32\Drivers\AsIO3.sys
2024-02-22 20:05 - 2024-02-25 19:32 - 000000000 ____D C:\Program Files (x86)\ASUS
2024-02-22 20:05 - 2024-02-22 20:05 - 001189784 _____ (ASUSTeK Computer Inc.) C:\WINDOWS\system32\AsusDownloadAgent.exe
2024-02-22 20:05 - 2024-02-22 20:05 - 000378376 _____ C:\WINDOWS\system32\syncas.dll
2024-02-22 20:05 - 2024-02-22 20:05 - 000000000 ____D C:\ProgramData\Microsoft OneDrive
2024-02-22 20:03 - 2024-02-22 20:03 - 000000020 ___SH C:\Users\Jscn\ntuser.ini
2024-02-22 16:43 - 2024-03-04 19:48 - 001633260 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2024-02-22 16:41 - 2024-03-04 19:41 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2024-02-22 16:41 - 2024-03-04 19:40 - 000003140 _____ C:\WINDOWS\system32\Tasks\MSIAfterburner
2024-02-22 16:41 - 2024-03-02 10:06 - 000003588 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2252719920-710989956-444148845-1001
2024-02-22 16:41 - 2024-03-02 10:06 - 000003584 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2252719920-710989956-444148845-500
2024-02-22 16:41 - 2024-03-02 10:06 - 000003194 _____ C:\WINDOWS\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2024-02-22 16:41 - 2024-02-22 20:24 - 000003654 _____ C:\WINDOWS\system32\Tasks\CreateExplorerShellUnelevatedTask
2024-02-22 16:41 - 2024-02-22 20:05 - 000003846 _____ C:\WINDOWS\system32\Tasks\Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864
2024-02-22 16:41 - 2024-02-22 16:41 - 000003760 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA{870EF929-B65D-45B3-8046-8065ABF82D67}
2024-02-22 16:41 - 2024-02-22 16:41 - 000003582 _____ C:\WINDOWS\system32\Tasks\BraveSoftwareUpdateTaskMachineUA
2024-02-22 16:41 - 2024-02-22 16:41 - 000003536 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore{05725E7A-FBE2-4BE2-941C-5622F31D6C53}
2024-02-22 16:41 - 2024-02-22 16:41 - 000003358 _____ C:\WINDOWS\system32\Tasks\BraveSoftwareUpdateTaskMachineCore
2024-02-22 16:41 - 2024-02-22 16:41 - 000002988 _____ C:\WINDOWS\system32\Tasks\simplewallTask
2024-02-22 16:41 - 2024-02-22 16:41 - 000002700 _____ C:\WINDOWS\system32\Tasks\FanControl
2024-02-22 16:41 - 2024-02-22 16:41 - 000002354 _____ C:\WINDOWS\system32\Tasks\HWiNFO
2024-02-22 16:41 - 2024-02-22 16:41 - 000002160 _____ C:\WINDOWS\system32\Tasks\npcapwatchdog
2024-02-22 16:41 - 2024-02-22 16:41 - 000000494 __RSH C:\ProgramData\ntuser.pol
2024-02-22 16:40 - 2024-02-22 16:40 - 000000000 ____D C:\Users\Default\AppData\Roaming\Microsoft\Network
2024-02-22 16:39 - 2024-02-22 16:39 - 000000000 ____D C:\Users\Jscn\AppData\Roaming\Microsoft\SystemCertificates
2024-02-22 16:39 - 2024-02-22 16:39 - 000000000 ____D C:\Users\Jscn\AppData\Roaming\Microsoft\Network
2024-02-22 16:39 - 2024-02-22 16:39 - 000000000 ____D C:\Users\Jscn\AppData\Roaming\Microsoft\Crypto
2024-02-22 16:39 - 2024-02-22 16:39 - 000000000 ____D C:\Users\Administrator\AppData\Roaming\Microsoft\SystemCertificates
2024-02-22 16:39 - 2024-02-22 16:39 - 000000000 ____D C:\Users\Administrator\AppData\Roaming\Microsoft\Network
2024-02-22 16:39 - 2024-02-22 16:39 - 000000000 ____D C:\Users\Administrator\AppData\Roaming\Microsoft\Crypto
2024-02-22 16:36 - 2024-03-03 19:04 - 000000000 ____D C:\Users\Jscn
2024-02-22 16:36 - 2024-02-22 20:03 - 000000000 ____D C:\Users\Jscn\AppData\Roaming\Microsoft\Windows
2024-02-22 16:36 - 2024-02-22 16:39 - 000000000 ____D C:\Users\Administrator\AppData\Roaming\Microsoft\Windows
2024-02-22 16:36 - 2024-02-22 16:39 - 000000000 ____D C:\Users\Administrator
2024-02-22 16:36 - 2024-02-22 16:36 - 000000000 _SHDL C:\Users\Jscn\Vorlagen
2024-02-22 16:36 - 2024-02-22 16:36 - 000000000 _SHDL C:\Users\Jscn\Startmenü
2024-02-22 16:36 - 2024-02-22 16:36 - 000000000 _SHDL C:\Users\Jscn\Netzwerkumgebung
2024-02-22 16:36 - 2024-02-22 16:36 - 000000000 _SHDL C:\Users\Jscn\Lokale Einstellungen
2024-02-22 16:36 - 2024-02-22 16:36 - 000000000 _SHDL C:\Users\Jscn\Eigene Dateien
2024-02-22 16:36 - 2024-02-22 16:36 - 000000000 _SHDL C:\Users\Jscn\Druckumgebung
2024-02-22 16:36 - 2024-02-22 16:36 - 000000000 _SHDL C:\Users\Jscn\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2024-02-22 16:36 - 2024-02-22 16:36 - 000000000 _SHDL C:\Users\Jscn\AppData\Local\Verlauf
2024-02-22 16:36 - 2024-02-22 16:36 - 000000000 _SHDL C:\Users\Jscn\AppData\Local\Anwendungsdaten
2024-02-22 16:36 - 2024-02-22 16:36 - 000000000 _SHDL C:\Users\Jscn\Anwendungsdaten
2024-02-22 16:36 - 2024-02-22 16:36 - 000000000 _SHDL C:\Users\Administrator\Vorlagen
2024-02-22 16:36 - 2024-02-22 16:36 - 000000000 _SHDL C:\Users\Administrator\Startmenü
2024-02-22 16:36 - 2024-02-22 16:36 - 000000000 _SHDL C:\Users\Administrator\Netzwerkumgebung
2024-02-22 16:36 - 2024-02-22 16:36 - 000000000 _SHDL C:\Users\Administrator\Lokale Einstellungen
2024-02-22 16:36 - 2024-02-22 16:36 - 000000000 _SHDL C:\Users\Administrator\Eigene Dateien
2024-02-22 16:36 - 2024-02-22 16:36 - 000000000 _SHDL C:\Users\Administrator\Druckumgebung
2024-02-22 16:36 - 2024-02-22 16:36 - 000000000 _SHDL C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2024-02-22 16:36 - 2024-02-22 16:36 - 000000000 _SHDL C:\Users\Administrator\AppData\Local\Verlauf
2024-02-22 16:36 - 2024-02-22 16:36 - 000000000 _SHDL C:\Users\Administrator\AppData\Local\Anwendungsdaten
2024-02-22 16:36 - 2024-02-22 16:36 - 000000000 _SHDL C:\Users\Administrator\Anwendungsdaten
2024-02-22 16:36 - 2024-02-22 16:36 - 000000000 ____D C:\Users\Jscn\AppData\Roaming\Microsoft\Spelling
2024-02-22 16:36 - 2024-02-22 16:36 - 000000000 ____D C:\Users\Administrator\AppData\Roaming\Microsoft\Spelling
2024-02-22 16:35 - 2024-03-03 18:59 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2024-02-22 16:35 - 2024-02-25 19:34 - 000471536 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2024-02-22 16:35 - 2024-02-25 19:23 - 000001623 _____ C:\WINDOWS\system32\config\VSMIDK
2024-02-22 16:35 - 2024-02-22 16:41 - 000000000 ____D C:\Windows.old
2024-02-22 16:33 - 2024-02-22 16:35 - 000000000 ____D C:\WINDOWS\system32\config\bbimigrate
2024-02-22 16:33 - 2024-02-22 16:33 - 000008192 _____ C:\WINDOWS\system32\config\userdiff
2024-02-22 16:33 - 2024-02-22 16:33 - 000000000 ____D C:\WINDOWS\ServiceProfiles
2024-02-22 15:43 - 2024-02-22 20:03 - 000000000 ___DC C:\WINDOWS\Panther
2024-02-16 02:38 - 2024-02-22 20:24 - 000007168 _____ (painter) C:\WINDOWS\system32\painter_x64.dll
2024-02-16 02:36 - 2024-02-16 02:36 - 000000000 ____D C:\Users\Jscn\AppData\Local\INetHistory
2024-02-16 02:34 - 2024-03-04 19:41 - 000006570 _____ C:\WINDOWS\system32\5E37410B-D6F1-471D-AE27-563CEAC0D6B2
2024-02-16 00:42 - 2024-02-16 00:42 - 000000000 ____D C:\Users\Administrator\AppData\Local\PlaceholderTileLogoFolder
2024-02-15 22:44 - 2024-02-16 00:13 - 000000000 ____D C:\Users\Administrator\AppData\Local\CrashDumps
2024-02-15 22:29 - 2024-02-15 22:29 - 000000000 ____D C:\Users\Administrator\AppData\Local\Comms
2024-02-15 22:17 - 2024-02-15 22:17 - 000000000 ____D C:\Users\Administrator\AppData\Local\PeerDistRepub
2024-02-15 22:17 - 2024-02-15 22:17 - 000000000 ____D C:\Users\Administrator\AppData\Local\ElevatedDiagnostics
2024-02-15 22:15 - 2024-02-15 23:46 - 000000000 ____D C:\Users\Administrator\AppData\Local\D3DSCache
2024-02-15 22:14 - 2024-02-15 22:14 - 000000000 ____D C:\Users\Administrator\AppData\Local\Publishers
2024-02-15 22:12 - 2024-02-22 16:36 - 000000000 ____D C:\Users\Administrator\AppData\Local\Packages
2024-02-15 22:12 - 2024-02-16 01:50 - 000000000 ____D C:\Users\Administrator\AppData\Local\Malwarebytes
2024-02-15 22:12 - 2024-02-15 22:12 - 000002397 _____ C:\Users\Administrator\Desktop\Brave.lnk
2024-02-15 22:12 - 2024-02-15 22:12 - 000002356 _____ C:\Users\Administrator\Desktop\Microsoft Edge.lnk
2024-02-15 22:12 - 2024-02-15 22:12 - 000000000 ___SD C:\Users\Administrator\AppData\Roaming\Microsoft\Protect
2024-02-15 22:12 - 2024-02-15 22:12 - 000000000 ___SD C:\Users\Administrator\AppData\Roaming\Microsoft\Credentials
2024-02-15 22:12 - 2024-02-15 22:12 - 000000000 ____D C:\Users\Administrator\AppData\Roaming\Microsoft\Vault
2024-02-15 22:12 - 2024-02-15 22:12 - 000000000 ____D C:\Users\Administrator\AppData\Roaming\Bitdefender Security App
2024-02-15 22:12 - 2024-02-15 22:12 - 000000000 ____D C:\Users\Administrator\AppData\Roaming\Adobe
2024-02-15 22:12 - 2024-02-15 22:12 - 000000000 ____D C:\Users\Administrator\AppData\LocalLow\NVIDIA
2024-02-15 22:12 - 2024-02-15 22:12 - 000000000 ____D C:\Users\Administrator\AppData\Local\ConnectedDevicesPlatform
2024-02-15 22:12 - 2024-02-15 22:12 - 000000000 ____D C:\Users\Administrator\AppData\Local\BraveSoftware
2024-02-15 22:12 - 2024-02-15 22:12 - 000000000 ____D C:\Users\Administrator\AppData\Local\Bitdefender
2024-02-15 22:12 - 2024-02-14 13:07 - 000000000 ____D C:\Users\Administrator\.dotnet
2024-02-15 22:12 - 2024-02-06 04:22 - 000000000 ___RD C:\Users\Administrator\OneDrive
2024-02-15 21:08 - 2024-02-15 21:08 - 000000000 ___HD C:\$SysReset
2024-02-15 20:02 - 2024-02-22 15:22 - 000000000 ____D C:\srumstuff
2024-02-15 19:53 - 2024-02-15 19:53 - 000000000 ____D C:\Users\Jscn\AppData\Local\ElevatedDiagnostics
2024-02-15 19:32 - 2024-02-15 19:32 - 000000000 ____D C:\Users\Jscn\Desktop\FRST-OlderVersion
2024-02-15 00:34 - 2024-02-15 00:43 - 000000000 _____ C:\Users\Jscn\Desktop\+.txt
2024-02-15 00:30 - 2024-02-15 01:01 - 000000000 ____D C:\ProgramData\UWP
2024-02-15 00:26 - 2024-03-02 05:43 - 000000000 ____D C:\Users\Jscn\Desktop\Temp
2024-02-15 00:22 - 2024-02-15 00:22 - 185678252 _____ C:\Users\Jscn\Desktop\DRV_Audio_RTK_UWD_DTSXU_TP_W11_64_V6092441_20211027R.zip
2024-02-15 00:09 - 2024-03-04 19:42 - 000000000 ____D C:\Users\Jscn\AppData\Local\Malwarebytes
2024-02-15 00:09 - 2024-02-15 00:09 - 000002047 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2024-02-15 00:09 - 2024-02-15 00:09 - 000000000 ____D C:\Users\Jscn\AppData\Local\mbam
2024-02-15 00:08 - 2024-02-15 00:08 - 000000000 ____D C:\ProgramData\Malwarebytes
2024-02-15 00:08 - 2024-02-15 00:08 - 000000000 ____D C:\Program Files\Malwarebytes
2024-02-14 23:22 - 2024-02-14 23:22 - 000000000 ____D C:\ProgramData\Battle.net_components
2024-02-14 22:14 - 2024-02-17 12:38 - 001487904 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2024-02-14 22:14 - 2024-02-17 12:35 - 001046152 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvml.dll
2024-02-14 22:14 - 2024-02-17 12:32 - 005912712 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2024-02-14 22:14 - 2024-02-17 12:31 - 006943344 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2024-02-14 22:14 - 2024-02-17 12:31 - 006030584 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2024-02-14 22:14 - 2024-02-07 23:49 - 000121880 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhda64v.sys
2024-02-14 21:46 - 2024-02-14 21:46 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2024-02-14 21:14 - 2024-02-22 16:34 - 000000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2024-02-14 21:14 - 2024-02-22 16:33 - 000000000 ____D C:\Program Files\Reference Assemblies
2024-02-14 21:14 - 2024-02-22 16:33 - 000000000 ____D C:\Program Files\MSBuild
2024-02-14 21:14 - 2024-02-16 02:12 - 000000000 ____D C:\Program Files (x86)\Reference Assemblies
2024-02-14 21:14 - 2024-02-16 02:12 - 000000000 ____D C:\Program Files (x86)\MSBuild
2024-02-14 20:52 - 2024-02-14 20:52 - 000000000 ____D C:\Users\Jscn\AppData\Local\WhyNotWin11
2024-02-14 19:48 - 2024-02-22 16:33 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Macrium
2024-02-14 19:41 - 2024-02-14 19:41 - 000000000 ____D C:\Program Files\VSTPlugins
2024-02-14 19:35 - 2024-02-26 14:37 - 000000000 ____D C:\Users\Jscn\AppData\Roaming\vlc
2024-02-14 19:33 - 2024-02-14 19:33 - 000000000 ____D C:\Users\Jscn\AppData\Roaming\slobs-plugins
2024-02-14 19:33 - 2024-02-14 19:33 - 000000000 ____D C:\Users\Jscn\AppData\Roaming\obs-studio-node-server
2024-02-14 19:33 - 2024-02-14 19:33 - 000000000 ____D C:\ProgramData\obs-studio-hook
2024-02-14 19:32 - 2024-02-26 17:29 - 000000000 ____D C:\Users\Jscn\AppData\Roaming\slobs-client
2024-02-14 19:30 - 2024-03-04 19:39 - 000000000 ____D C:\Program Files\EqualizerAPO
2024-02-14 19:30 - 2024-02-14 19:48 - 000000000 ____D C:\Program Files\Macrium
2024-02-14 19:22 - 2024-02-14 19:32 - 000000000 ____D C:\ProgramData\Macrium
2024-02-14 19:17 - 2024-02-14 19:17 - 000000000 ____D C:\Program Files (x86)\WindowsInstallationAssistant
2024-02-14 17:32 - 2024-02-14 18:39 - 000000000 ____D C:\Program Files\WireGuard
2024-02-14 13:45 - 2024-02-14 13:45 - 000001938 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nextcloud.lnk
2024-02-14 13:45 - 2024-02-14 13:45 - 000000000 ____D C:\Program Files\Nextcloud
2024-02-14 13:07 - 2024-02-14 13:07 - 000000000 ____D C:\Users\Default\.dotnet
2024-02-12 12:30 - 2024-02-12 12:31 - 000000000 ____D C:\Users\Jscn\AppData\Roaming\Xiaomi
2024-02-12 12:24 - 2024-02-12 12:24 - 000000000 ____D C:\Users\Jscn\AppData\LocalLow\webviewdata
2024-02-12 12:21 - 2024-02-14 18:39 - 000000000 ____D C:\adb
2024-02-12 12:09 - 2024-02-12 12:09 - 000000000 ____D C:\Users\Jscn\.android
2024-02-12 12:07 - 2024-02-12 12:07 - 000000000 ____D C:\Users\Jscn\adb
2024-02-12 12:07 - 2024-02-12 12:07 - 000000000 ____D C:\Program Files\DIFX
2024-02-11 01:11 - 2024-02-11 01:11 - 000000000 ____D C:\Users\Jscn\AppData\Roaming\Logishrd
2024-02-10 15:38 - 2024-02-22 16:31 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2024-02-10 15:38 - 2024-02-22 16:30 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2024-02-10 15:38 - 2024-02-22 16:30 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2024-02-10 15:38 - 2024-02-10 15:39 - 000000000 ____D C:\WINDOWS\Containers
2024-02-10 15:38 - 2024-02-10 15:38 - 000000000 ___SD C:\WINDOWS\system32\AppV
2024-02-10 15:38 - 2024-02-10 15:38 - 000000000 ____D C:\WINDOWS\system32\Drivers\mde
2024-02-10 15:38 - 2024-02-10 15:38 - 000000000 ____D C:\WINDOWS\RemotePackages
2024-02-10 15:38 - 2024-02-10 15:38 - 000000000 ____D C:\WINDOWS\InboxApps
2024-02-10 15:38 - 2024-02-10 15:38 - 000000000 ____D C:\ProgramData\WindowsHolographicDevices
2024-02-10 15:37 - 2024-02-10 15:37 - 000000000 ____D C:\WINDOWS\SysWOW64\MailContactsCalendarSync
2024-02-10 15:37 - 2024-02-10 15:37 - 000000000 ____D C:\WINDOWS\system32\OpenSSH
2024-02-10 15:37 - 2024-02-10 15:37 - 000000000 ____D C:\WINDOWS\system32\MailContactsCalendarSync
2024-02-10 15:37 - 2024-02-10 15:37 - 000000000 ____D C:\ProgramData\ssh
2024-02-10 15:34 - 2024-02-22 16:30 - 000000000 ____D C:\WINDOWS\SysWOW64\winrm
2024-02-10 15:34 - 2024-02-22 16:30 - 000000000 ____D C:\WINDOWS\SysWOW64\WCN
2024-02-10 15:34 - 2024-02-22 16:30 - 000000000 ____D C:\WINDOWS\SysWOW64\slmgr
2024-02-10 15:34 - 2024-02-22 16:30 - 000000000 ____D C:\WINDOWS\SysWOW64\Printing_Admin_Scripts
2024-02-10 15:34 - 2024-02-22 16:30 - 000000000 ____D C:\WINDOWS\system32\winrm
2024-02-10 15:34 - 2024-02-22 16:30 - 000000000 ____D C:\WINDOWS\system32\WCN
2024-02-10 15:34 - 2024-02-22 16:30 - 000000000 ____D C:\WINDOWS\system32\slmgr
2024-02-10 15:34 - 2024-02-22 16:30 - 000000000 ____D C:\WINDOWS\system32\Printing_Admin_Scripts
2024-02-10 15:34 - 2024-02-10 15:38 - 000000000 ____D C:\WINDOWS\system32\de
2024-02-10 15:34 - 2024-02-10 15:34 - 000000000 ____D C:\WINDOWS\SysWOW64\sysprep
2024-02-10 15:34 - 2024-02-10 15:34 - 000000000 ____D C:\WINDOWS\SysWOW64\de
2024-02-10 15:34 - 2024-02-10 15:34 - 000000000 ____D C:\WINDOWS\SysWOW64\0409
2024-02-10 15:34 - 2024-02-10 15:34 - 000000000 ____D C:\WINDOWS\system32\0409
2024-02-10 15:34 - 2024-02-10 15:34 - 000000000 ____D C:\WINDOWS\DigitalLocker
2024-02-10 10:03 - 2024-02-10 10:03 - 000000000 _SHDL C:\Users\Default User
2024-02-10 10:03 - 2024-02-10 10:03 - 000000000 _SHDL C:\Users\All Users
2024-02-10 09:59 - 2024-02-22 16:35 - 000000000 ____D C:\WINDOWS\Setup
2024-02-10 09:56 - 2024-03-04 19:42 - 000000000 ____D C:\WINDOWS\SystemTemp
2024-02-10 09:56 - 2024-03-04 19:41 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-02-10 09:56 - 2024-03-04 14:21 - 000000000 ___HD C:\Program Files\WindowsApps
2024-02-10 09:56 - 2024-03-04 14:21 - 000000000 ____D C:\WINDOWS\AppReadiness
2024-02-10 09:56 - 2024-03-01 20:37 - 000000000 ___SD C:\WINDOWS\Downloaded Program Files
2024-02-10 09:56 - 2024-03-01 20:37 - 000000000 ___RD C:\WINDOWS\Offline Web Pages
2024-02-10 09:56 - 2024-02-26 17:12 - 000000000 ____D C:\ProgramData\USOPrivate
2024-02-10 09:56 - 2024-02-26 15:42 - 000000000 ____D C:\WINDOWS\OCR
2024-02-10 09:56 - 2024-02-23 13:03 - 000000000 ____D C:\WINDOWS\appcompat
2024-02-10 09:56 - 2024-02-22 20:26 - 000000000 ____D C:\WINDOWS\system32\Sgrm
2024-02-10 09:56 - 2024-02-22 20:26 - 000000000 ____D C:\WINDOWS\bcastdvr
2024-02-10 09:56 - 2024-02-22 20:17 - 000000000 ____D C:\WINDOWS\system32\config\TxR
2024-02-10 09:56 - 2024-02-22 20:12 - 000000000 ___RD C:\Program Files (x86)
2024-02-10 09:56 - 2024-02-22 16:41 - 000000000 ___RD C:\Program Files\Windows Defender
2024-02-10 09:56 - 2024-02-22 16:41 - 000000000 ____D C:\Program Files\Windows NT
2024-02-10 09:56 - 2024-02-22 16:38 - 000000000 __RSD C:\WINDOWS\Media
2024-02-10 09:56 - 2024-02-22 16:36 - 000000000 ____D C:\Users\Default\AppData\Roaming\Microsoft\Windows
2024-02-10 09:56 - 2024-02-22 16:35 - 000028672 _____ C:\WINDOWS\system32\config\BCD-Template
2024-02-10 09:56 - 2024-02-22 16:35 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase
2024-02-10 09:56 - 2024-02-22 16:35 - 000000000 ____D C:\WINDOWS\system32\WebThreatDefSvc
2024-02-10 09:56 - 2024-02-22 16:35 - 000000000 ____D C:\WINDOWS\system32\Tasks_Migrated
2024-02-10 09:56 - 2024-02-22 16:35 - 000000000 ____D C:\WINDOWS\system32\spool
2024-02-10 09:56 - 2024-02-22 16:35 - 000000000 ____D C:\WINDOWS\system32\oobe
2024-02-10 09:56 - 2024-02-22 16:35 - 000000000 ____D C:\WINDOWS\system32\NDF
2024-02-10 09:56 - 2024-02-22 16:35 - 000000000 ____D C:\WINDOWS\system32\Drivers\DriverData
2024-02-10 09:56 - 2024-02-22 16:35 - 000000000 ____D C:\WINDOWS\system32\AppLocker
2024-02-10 09:56 - 2024-02-22 16:35 - 000000000 ____D C:\WINDOWS\ServiceState
2024-02-10 09:56 - 2024-02-22 16:35 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2024-02-10 09:56 - 2024-02-22 16:35 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2024-02-10 09:56 - 2024-02-22 16:34 - 000000000 __RHD C:\Users\Public\Libraries
2024-02-10 09:56 - 2024-02-22 16:34 - 000000000 ____D C:\WINDOWS\SysWOW64\MUI
2024-02-10 09:56 - 2024-02-22 16:34 - 000000000 ____D C:\WINDOWS\system32\MUI
2024-02-10 09:56 - 2024-02-22 16:34 - 000000000 ____D C:\WINDOWS\schemas
2024-02-10 09:56 - 2024-02-22 16:30 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2024-02-10 09:56 - 2024-02-22 16:30 - 000000000 ___SD C:\WINDOWS\system32\F12
2024-02-10 09:56 - 2024-02-22 16:30 - 000000000 ___SD C:\WINDOWS\system32\dsc
2024-02-10 09:56 - 2024-02-22 16:30 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2024-02-10 09:56 - 2024-02-22 16:30 - 000000000 ___RD C:\Program Files (x86)\Windows Defender
2024-02-10 09:56 - 2024-02-22 16:30 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2024-02-10 09:56 - 2024-02-22 16:30 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2024-02-10 09:56 - 2024-02-22 16:30 - 000000000 ____D C:\WINDOWS\system32\migwiz
2024-02-10 09:56 - 2024-02-10 15:38 - 000000000 ____D C:\WINDOWS\SystemResources
2024-02-10 09:56 - 2024-02-10 15:38 - 000000000 ____D C:\WINDOWS\SystemApps
2024-02-10 09:56 - 2024-02-10 15:38 - 000000000 ____D C:\WINDOWS\system32\qps-plocm
2024-02-10 09:56 - 2024-02-10 15:38 - 000000000 ____D C:\WINDOWS\system32\qps-ploc
2024-02-10 09:56 - 2024-02-10 15:38 - 000000000 ____D C:\WINDOWS\ShellComponents
2024-02-10 09:56 - 2024-02-10 15:38 - 000000000 ____D C:\WINDOWS\security
2024-02-10 09:56 - 2024-02-10 15:38 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2024-02-10 09:56 - 2024-02-10 15:37 - 000000000 ____D C:\WINDOWS\SysWOW64\vi-VN
2024-02-10 09:56 - 2024-02-10 15:37 - 000000000 ____D C:\WINDOWS\SysWOW64\uz-Latn-UZ
2024-02-10 09:56 - 2024-02-10 15:37 - 000000000 ____D C:\WINDOWS\SysWOW64\ur-PK
2024-02-10 09:56 - 2024-02-10 15:37 - 000000000 ____D C:\WINDOWS\SysWOW64\ug-CN
2024-02-10 09:56 - 2024-02-10 15:37 - 000000000 ____D C:\WINDOWS\SysWOW64\tt-RU
2024-02-10 09:56 - 2024-02-10 15:37 - 000000000 ____D C:\WINDOWS\SysWOW64\te-IN
2024-02-10 09:56 - 2024-02-10 15:37 - 000000000 ____D C:\WINDOWS\SysWOW64\ta-IN
2024-02-10 09:56 - 2024-02-10 15:37 - 000000000 ____D C:\WINDOWS\SysWOW64\sr-Cyrl-RS
2024-02-10 09:56 - 2024-02-10 15:37 - 000000000 ____D C:\WINDOWS\SysWOW64\sr-Cyrl-BA
2024-02-10 09:56 - 2024-02-10 15:37 - 000000000 ____D C:\WINDOWS\SysWOW64\sq-AL
2024-02-10 09:56 - 2024-02-10 15:37 - 000000000 ____D C:\WINDOWS\SysWOW64\quz-PE
2024-02-10 09:56 - 2024-02-10 15:37 - 000000000 ____D C:\WINDOWS\SysWOW64\qps-plocm
2024-02-10 09:56 - 2024-02-10 15:37 - 000000000 ____D C:\WINDOWS\SysWOW64\qps-ploc
2024-02-10 09:56 - 2024-02-10 15:37 - 000000000 ____D C:\WINDOWS\SysWOW64\pa-IN
2024-02-10 09:56 - 2024-02-10 15:37 - 000000000 ____D C:\WINDOWS\SysWOW64\or-IN
2024-02-10 09:56 - 2024-02-10 15:37 - 000000000 ____D C:\WINDOWS\SysWOW64\nn-NO
2024-02-10 09:56 - 2024-02-10 15:37 - 000000000 ____D C:\WINDOWS\SysWOW64\ne-NP
2024-02-10 09:56 - 2024-02-10 15:37 - 000000000 ____D C:\WINDOWS\SysWOW64\mt-MT
2024-02-10 09:56 - 2024-02-10 15:37 - 000000000 ____D C:\WINDOWS\SysWOW64\mr-IN
2024-02-10 09:56 - 2024-02-10 15:37 - 000000000 ____D C:\WINDOWS\SysWOW64\ml-IN
2024-02-10 09:56 - 2024-02-10 15:37 - 000000000 ____D C:\WINDOWS\SysWOW64\mk-MK
2024-02-10 09:56 - 2024-02-10 15:37 - 000000000 ____D C:\WINDOWS\SysWOW64\mi-NZ
2024-02-10 09:56 - 2024-02-10 15:37 - 000000000 ____D C:\WINDOWS\SysWOW64\lo-LA
2024-02-10 09:56 - 2024-02-10 15:37 - 000000000 ____D C:\WINDOWS\SysWOW64\lb-LU
2024-02-10 09:56 - 2024-02-10 15:37 - 000000000 ____D C:\WINDOWS\SysWOW64\kok-IN
2024-02-10 09:56 - 2024-02-10 15:37 - 000000000 ____D C:\WINDOWS\SysWOW64\kn-IN
2024-02-10 09:56 - 2024-02-10 15:37 - 000000000 ____D C:\WINDOWS\SysWOW64\km-KH
2024-02-10 09:56 - 2024-02-10 15:37 - 000000000 ____D C:\WINDOWS\SysWOW64\kk-KZ
2024-02-10 09:56 - 2024-02-10 15:37 - 000000000 ____D C:\WINDOWS\SysWOW64\ka-GE
2024-02-10 09:56 - 2024-02-10 15:37 - 000000000 ____D C:\WINDOWS\SysWOW64\is-IS
2024-02-10 09:56 - 2024-02-10 15:37 - 000000000 ____D C:\WINDOWS\SysWOW64\id-ID
2024-02-10 09:56 - 2024-02-10 15:37 - 000000000 ____D C:\WINDOWS\SysWOW64\hy-AM
2024-02-10 09:56 - 2024-02-10 15:37 - 000000000 ____D C:\WINDOWS\SysWOW64\hi-IN
2024-02-10 09:56 - 2024-02-10 15:37 - 000000000 ____D C:\WINDOWS\SysWOW64\gu-IN
2024-02-10 09:56 - 2024-02-10 15:37 - 000000000 ____D C:\WINDOWS\SysWOW64\gl-ES
2024-02-10 09:56 - 2024-02-10 15:37 - 000000000 ____D C:\WINDOWS\SysWOW64\gd-GB
2024-02-10 09:56 - 2024-02-10 15:37 - 000000000 ____D C:\WINDOWS\SysWOW64\ga-IE
2024-02-10 09:56 - 2024-02-10 15:37 - 000000000 ____D C:\WINDOWS\SysWOW64\fil-PH
2024-02-10 09:56 - 2024-02-10 15:37 - 000000000 ____D C:\WINDOWS\SysWOW64\fa-IR
2024-02-10 09:56 - 2024-02-10 15:37 - 000000000 ____D C:\WINDOWS\SysWOW64\eu-ES
2024-02-10 09:56 - 2024-02-10 15:37 - 000000000 ____D C:\WINDOWS\SysWOW64\cy-GB
2024-02-10 09:56 - 2024-02-10 15:37 - 000000000 ____D C:\WINDOWS\SysWOW64\chr-CHER-US
2024-02-10 09:56 - 2024-02-10 15:37 - 000000000 ____D C:\WINDOWS\SysWOW64\ca-ES-valencia
2024-02-10 09:56 - 2024-02-10 15:37 - 000000000 ____D C:\WINDOWS\SysWOW64\ca-ES
2024-02-10 09:56 - 2024-02-10 15:37 - 000000000 ____D C:\WINDOWS\SysWOW64\bs-Latn-BA
2024-02-10 09:56 - 2024-02-10 15:37 - 000000000 ____D C:\WINDOWS\SysWOW64\bn-IN
2024-02-10 09:56 - 2024-02-10 15:37 - 000000000 ____D C:\WINDOWS\SysWOW64\be-BY
2024-02-10 09:56 - 2024-02-10 15:37 - 000000000 ____D C:\WINDOWS\SysWOW64\az-Latn-AZ
2024-02-10 09:56 - 2024-02-10 15:37 - 000000000 ____D C:\WINDOWS\SysWOW64\as-IN
2024-02-10 09:56 - 2024-02-10 15:37 - 000000000 ____D C:\WINDOWS\SysWOW64\am-ET
2024-02-10 09:56 - 2024-02-10 15:37 - 000000000 ____D C:\WINDOWS\SysWOW64\af-ZA
2024-02-10 09:56 - 2024-02-10 15:37 - 000000000 ____D C:\WINDOWS\system32\vi-VN
2024-02-10 09:56 - 2024-02-10 15:37 - 000000000 ____D C:\WINDOWS\system32\uz-Latn-UZ
2024-02-10 09:56 - 2024-02-10 15:37 - 000000000 ____D C:\WINDOWS\system32\ur-PK
2024-02-10 09:56 - 2024-02-10 15:37 - 000000000 ____D C:\WINDOWS\system32\ug-CN
2024-02-10 09:56 - 2024-02-10 15:37 - 000000000 ____D C:\WINDOWS\system32\tt-RU
2024-02-10 09:56 - 2024-02-10 15:37 - 000000000 ____D C:\WINDOWS\system32\te-IN
2024-02-10 09:56 - 2024-02-10 15:37 - 000000000 ____D C:\WINDOWS\system32\ta-IN
2024-02-10 09:56 - 2024-02-10 15:37 - 000000000 ____D C:\WINDOWS\system32\sr-Cyrl-RS
2024-02-10 09:56 - 2024-02-10 15:37 - 000000000 ____D C:\WINDOWS\system32\sr-Cyrl-BA
2024-02-10 09:56 - 2024-02-10 15:37 - 000000000 ____D C:\WINDOWS\system32\sq-AL
2024-02-10 09:56 - 2024-02-10 15:37 - 000000000 ____D C:\WINDOWS\system32\quz-PE
2024-02-10 09:56 - 2024-02-10 15:37 - 000000000 ____D C:\WINDOWS\system32\pa-IN
2024-02-10 09:56 - 2024-02-10 15:37 - 000000000 ____D C:\WINDOWS\system32\or-IN
2024-02-10 09:56 - 2024-02-10 15:37 - 000000000 ____D C:\WINDOWS\system32\nn-NO
2024-02-10 09:56 - 2024-02-10 15:37 - 000000000 ____D C:\WINDOWS\system32\ne-NP
2024-02-10 09:56 - 2024-02-10 15:37 - 000000000 ____D C:\WINDOWS\system32\mt-MT
2024-02-10 09:56 - 2024-02-10 15:37 - 000000000 ____D C:\WINDOWS\system32\mr-IN
2024-02-10 09:56 - 2024-02-10 15:37 - 000000000 ____D C:\WINDOWS\system32\ml-IN
2024-02-10 09:56 - 2024-02-10 15:37 - 000000000 ____D C:\WINDOWS\system32\mk-MK
2024-02-10 09:56 - 2024-02-10 15:37 - 000000000 ____D C:\WINDOWS\system32\mi-NZ
2024-02-10 09:56 - 2024-02-10 15:37 - 000000000 ____D C:\WINDOWS\system32\lo-LA
2024-02-10 09:56 - 2024-02-10 15:37 - 000000000 ____D C:\WINDOWS\system32\lb-LU
2024-02-10 09:56 - 2024-02-10 15:37 - 000000000 ____D C:\WINDOWS\system32\kok-IN
2024-02-10 09:56 - 2024-02-10 15:37 - 000000000 ____D C:\WINDOWS\system32\kn-IN
2024-02-10 09:56 - 2024-02-10 15:37 - 000000000 ____D C:\WINDOWS\system32\km-KH
2024-02-10 09:56 - 2024-02-10 15:37 - 000000000 ____D C:\WINDOWS\system32\kk-KZ
2024-02-10 09:56 - 2024-02-10 15:37 - 000000000 ____D C:\WINDOWS\system32\ka-GE
2024-02-10 09:56 - 2024-02-10 15:37 - 000000000 ____D C:\WINDOWS\system32\is-IS
2024-02-10 09:56 - 2024-02-10 15:37 - 000000000 ____D C:\WINDOWS\system32\id-ID
2024-02-10 09:56 - 2024-02-10 15:37 - 000000000 ____D C:\WINDOWS\system32\hy-AM
2024-02-10 09:56 - 2024-02-10 15:37 - 000000000 ____D C:\WINDOWS\system32\hi-IN
2024-02-10 09:56 - 2024-02-10 15:37 - 000000000 ____D C:\WINDOWS\system32\gu-IN
2024-02-10 09:56 - 2024-02-10 15:37 - 000000000 ____D C:\WINDOWS\system32\gl-ES
2024-02-10 09:56 - 2024-02-10 15:37 - 000000000 ____D C:\WINDOWS\system32\gd-GB
2024-02-10 09:56 - 2024-02-10 15:37 - 000000000 ____D C:\WINDOWS\system32\ga-IE
2024-02-10 09:56 - 2024-02-10 15:37 - 000000000 ____D C:\WINDOWS\system32\fil-PH
2024-02-10 09:56 - 2024-02-10 15:37 - 000000000 ____D C:\WINDOWS\system32\fa-IR
2024-02-10 09:56 - 2024-02-10 15:37 - 000000000 ____D C:\WINDOWS\system32\eu-ES
2024-02-10 09:56 - 2024-02-10 15:37 - 000000000 ____D C:\WINDOWS\system32\cy-GB
2024-02-10 09:56 - 2024-02-10 15:37 - 000000000 ____D C:\WINDOWS\system32\chr-CHER-US
2024-02-10 09:56 - 2024-02-10 15:37 - 000000000 ____D C:\WINDOWS\system32\ca-ES-valencia
2024-02-10 09:56 - 2024-02-10 15:37 - 000000000 ____D C:\WINDOWS\system32\ca-ES
2024-02-10 09:56 - 2024-02-10 15:37 - 000000000 ____D C:\WINDOWS\system32\bs-Latn-BA
2024-02-10 09:56 - 2024-02-10 15:37 - 000000000 ____D C:\WINDOWS\system32\bn-IN
2024-02-10 09:56 - 2024-02-10 15:37 - 000000000 ____D C:\WINDOWS\system32\be-BY
2024-02-10 09:56 - 2024-02-10 15:37 - 000000000 ____D C:\WINDOWS\system32\az-Latn-AZ
2024-02-10 09:56 - 2024-02-10 15:37 - 000000000 ____D C:\WINDOWS\system32\as-IN
2024-02-10 09:56 - 2024-02-10 15:37 - 000000000 ____D C:\WINDOWS\system32\am-ET
2024-02-10 09:56 - 2024-02-10 15:37 - 000000000 ____D C:\WINDOWS\system32\af-ZA
2024-02-10 09:56 - 2024-02-10 15:37 - 000000000 ____D C:\WINDOWS\Globalization
2024-02-10 09:56 - 2024-02-10 15:34 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2024-02-10 09:56 - 2024-02-10 15:34 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2024-02-10 09:56 - 2024-02-10 15:34 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2024-02-10 09:56 - 2024-02-10 15:34 - 000000000 ____D C:\WINDOWS\SysWOW64\Com
2024-02-10 09:56 - 2024-02-10 15:34 - 000000000 ____D C:\WINDOWS\system32\Sysprep
2024-02-10 09:56 - 2024-02-10 15:34 - 000000000 ____D C:\WINDOWS\system32\setup
2024-02-10 09:56 - 2024-02-10 15:34 - 000000000 ____D C:\WINDOWS\system32\Dism
2024-02-10 09:56 - 2024-02-10 15:34 - 000000000 ____D C:\WINDOWS\system32\Com
2024-02-10 09:56 - 2024-02-10 15:34 - 000000000 ____D C:\WINDOWS\IME
2024-02-10 09:56 - 2024-02-10 15:34 - 000000000 ____D C:\WINDOWS\Help
2024-02-10 09:56 - 2024-02-10 15:34 - 000000000 ____D C:\WINDOWS\BrowserCore
2024-02-10 09:56 - 2024-02-10 15:34 - 000000000 ____D C:\Program Files\Common Files\System
2024-02-10 09:56 - 2024-02-10 15:34 - 000000000 ____D C:\Program Files (x86)\Windows NT
2024-02-10 09:56 - 2024-02-10 10:04 - 000000000 __SHD C:\Program Files\Windows Sidebar
2024-02-10 09:56 - 2024-02-10 10:04 - 000000000 __SHD C:\Program Files (x86)\Windows Sidebar
2024-02-10 09:56 - 2024-02-10 10:04 - 000000000 ___SD C:\WINDOWS\SysWOW64\Configuration
2024-02-10 09:56 - 2024-02-10 10:04 - 000000000 ___SD C:\WINDOWS\system32\Configuration
2024-02-10 09:56 - 2024-02-10 10:04 - 000000000 ____D C:\WINDOWS\Web
2024-02-10 09:56 - 2024-02-10 10:04 - 000000000 ____D C:\WINDOWS\SysWOW64\SMI
2024-02-10 09:56 - 2024-02-10 10:04 - 000000000 ____D C:\WINDOWS\system32\winevt
2024-02-10 09:56 - 2024-02-10 10:04 - 000000000 ____D C:\WINDOWS\system32\ras
2024-02-10 09:56 - 2024-02-10 10:04 - 000000000 ____D C:\WINDOWS\system32\PointOfService
2024-02-10 09:56 - 2024-02-10 10:04 - 000000000 ____D C:\WINDOWS\system32\Pbr
2024-02-10 09:56 - 2024-02-10 10:04 - 000000000 ____D C:\WINDOWS\system32\Microsoft-Edge-WebView
2024-02-10 09:56 - 2024-02-10 10:04 - 000000000 ____D C:\WINDOWS\SKB
2024-02-10 09:56 - 2024-02-10 10:04 - 000000000 ____D C:\WINDOWS\Resources
2024-02-10 09:56 - 2024-02-10 10:04 - 000000000 ____D C:\WINDOWS\Registration
2024-02-10 09:56 - 2024-02-10 10:04 - 000000000 ____D C:\WINDOWS\Provisioning
2024-02-10 09:56 - 2024-02-10 10:04 - 000000000 ____D C:\WINDOWS\PLA
2024-02-10 09:56 - 2024-02-10 10:04 - 000000000 ____D C:\WINDOWS\InputMethod
2024-02-10 09:56 - 2024-02-10 10:04 - 000000000 ____D C:\WINDOWS\IdentityCRL
2024-02-10 09:56 - 2024-02-10 10:04 - 000000000 ____D C:\WINDOWS\DiagTrack
2024-02-10 09:56 - 2024-02-10 09:56 - 000000000 ___SD C:\WINDOWS\SysWOW64\Nui
2024-02-10 09:56 - 2024-02-10 09:56 - 000000000 ___SD C:\WINDOWS\SysWOW64\lxss
2024-02-10 09:56 - 2024-02-10 09:56 - 000000000 ___SD C:\WINDOWS\system32\UNP
2024-02-10 09:56 - 2024-02-10 09:56 - 000000000 ___SD C:\WINDOWS\system32\Nui
2024-02-10 09:56 - 2024-02-10 09:56 - 000000000 ___SD C:\WINDOWS\system32\lxss
2024-02-10 09:56 - 2024-02-10 09:56 - 000000000 ___HD C:\WINDOWS\LanguageOverlayCache
2024-02-10 09:56 - 2024-02-10 09:56 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2024-02-10 09:56 - 2024-02-10 09:56 - 000000000 ____D C:\WINDOWS\WUModels
2024-02-10 09:56 - 2024-02-10 09:56 - 000000000 ____D C:\WINDOWS\WaaS
2024-02-10 09:56 - 2024-02-10 09:56 - 000000000 ____D C:\WINDOWS\Vss
2024-02-10 09:56 - 2024-02-10 09:56 - 000000000 ____D C:\WINDOWS\UUS
2024-02-10 09:56 - 2024-02-10 09:56 - 000000000 ____D C:\WINDOWS\tracing
2024-02-10 09:56 - 2024-02-10 09:56 - 000000000 ____D C:\WINDOWS\TAPI
2024-02-10 09:56 - 2024-02-10 09:56 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2024-02-10 09:56 - 2024-02-10 09:56 - 000000000 ____D C:\WINDOWS\SysWOW64\ShellExperiences
2024-02-10 09:56 - 2024-02-10 09:56 - 000000000 ____D C:\WINDOWS\SysWOW64\ras
2024-02-10 09:56 - 2024-02-10 09:56 - 000000000 ____D C:\WINDOWS\SysWOW64\PerceptionSimulation
2024-02-10 09:56 - 2024-02-10 09:56 - 000000000 ____D C:\WINDOWS\SysWOW64\NDF
2024-02-10 09:56 - 2024-02-10 09:56 - 000000000 ____D C:\WINDOWS\SysWOW64\Msdtc
2024-02-10 09:56 - 2024-02-10 09:56 - 000000000 ____D C:\WINDOWS\SysWOW64\migwiz
2024-02-10 09:56 - 2024-02-10 09:56 - 000000000 ____D C:\WINDOWS\SysWOW64\Keywords
2024-02-10 09:56 - 2024-02-10 09:56 - 000000000 ____D C:\WINDOWS\SysWOW64\Ipmi
2024-02-10 09:56 - 2024-02-10 09:56 - 000000000 ____D C:\WINDOWS\SysWOW64\InputMethod
2024-02-10 09:56 - 2024-02-10 09:56 - 000000000 ____D C:\WINDOWS\SysWOW64\inetsrv
2024-02-10 09:56 - 2024-02-10 09:56 - 000000000 ____D C:\WINDOWS\SysWOW64\IME
2024-02-10 09:56 - 2024-02-10 09:56 - 000000000 ____D C:\WINDOWS\SysWOW64\icsxml
2024-02-10 09:56 - 2024-02-10 09:56 - 000000000 ____D C:\WINDOWS\SysWOW64\GroupPolicyUsers
2024-02-10 09:56 - 2024-02-10 09:56 - 000000000 ____D C:\WINDOWS\SysWOW64\GroupPolicy
2024-02-10 09:56 - 2024-02-10 09:56 - 000000000 ____D C:\WINDOWS\SysWOW64\downlevel
2024-02-10 09:56 - 2024-02-10 09:56 - 000000000 ____D C:\WINDOWS\SysWOW64\DDFs
2024-02-10 09:56 - 2024-02-10 09:56 - 000000000 ____D C:\WINDOWS\SysWOW64\Bthprops
2024-02-10 09:56 - 2024-02-10 09:56 - 000000000 ____D C:\WINDOWS\SysWOW64\AppLocker
2024-02-10 09:56 - 2024-02-10 09:56 - 000000000 ____D C:\WINDOWS\SysWOW64\AdvancedInstallers
2024-02-10 09:56 - 2024-02-10 09:56 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2024-02-10 09:56 - 2024-02-10 09:56 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2024-02-10 09:56 - 2024-02-10 09:56 - 000000000 ____D C:\WINDOWS\system32\SecurityHealth
2024-02-10 09:56 - 2024-02-10 09:56 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2024-02-10 09:56 - 2024-02-10 09:56 - 000000000 ____D C:\WINDOWS\system32\ProximityToast
2024-02-10 09:56 - 2024-02-10 09:56 - 000000000 ____D C:\WINDOWS\system32\Keywords
2024-02-10 09:56 - 2024-02-10 09:56 - 000000000 ____D C:\WINDOWS\system32\Ipmi
2024-02-10 09:56 - 2024-02-10 09:56 - 000000000 ____D C:\WINDOWS\system32\InputMethod
2024-02-10 09:56 - 2024-02-10 09:56 - 000000000 ____D C:\WINDOWS\system32\inetsrv
2024-02-10 09:56 - 2024-02-10 09:56 - 000000000 ____D C:\WINDOWS\system32\IME
2024-02-10 09:56 - 2024-02-10 09:56 - 000000000 ____D C:\WINDOWS\system32\icsxml
2024-02-10 09:56 - 2024-02-10 09:56 - 000000000 ____D C:\WINDOWS\system32\ias
2024-02-10 09:56 - 2024-02-10 09:56 - 000000000 ____D C:\WINDOWS\system32\HealthAttestationClient
2024-02-10 09:56 - 2024-02-10 09:56 - 000000000 ____D C:\WINDOWS\system32\DriverState
2024-02-10 09:56 - 2024-02-10 09:56 - 000000000 ____D C:\WINDOWS\system32\downlevel
2024-02-10 09:56 - 2024-02-10 09:56 - 000000000 ____D C:\WINDOWS\system32\DDFs
2024-02-10 09:56 - 2024-02-10 09:56 - 000000000 ____D C:\WINDOWS\system32\config\systemprofile
2024-02-10 09:56 - 2024-02-10 09:56 - 000000000 ____D C:\WINDOWS\system32\config\RegBack
2024-02-10 09:56 - 2024-02-10 09:56 - 000000000 ____D C:\WINDOWS\system32\config\Journal
2024-02-10 09:56 - 2024-02-10 09:56 - 000000000 ____D C:\WINDOWS\system32\Bthprops
2024-02-10 09:56 - 2024-02-10 09:56 - 000000000 ____D C:\WINDOWS\system32\appraiser
2024-02-10 09:56 - 2024-02-10 09:56 - 000000000 ____D C:\WINDOWS\system32\AdvancedInstallers
2024-02-10 09:56 - 2024-02-10 09:56 - 000000000 ____D C:\WINDOWS\System
2024-02-10 09:56 - 2024-02-10 09:56 - 000000000 ____D C:\WINDOWS\ShellExperiences
2024-02-10 09:56 - 2024-02-10 09:56 - 000000000 ____D C:\WINDOWS\SchCache
2024-02-10 09:56 - 2024-02-10 09:56 - 000000000 ____D C:\WINDOWS\rescache
2024-02-10 09:56 - 2024-02-10 09:56 - 000000000 ____D C:\WINDOWS\Performance
2024-02-10 09:56 - 2024-02-10 09:56 - 000000000 ____D C:\WINDOWS\ModemLogs
2024-02-10 09:56 - 2024-02-10 09:56 - 000000000 ____D C:\WINDOWS\L2Schemas
2024-02-10 09:56 - 2024-02-10 09:56 - 000000000 ____D C:\WINDOWS\GameBarPresenceWriter
2024-02-10 09:56 - 2024-02-10 09:56 - 000000000 ____D C:\WINDOWS\Cursors
2024-02-10 09:56 - 2024-02-10 09:56 - 000000000 ____D C:\WINDOWS\Branding
2024-02-10 09:56 - 2024-02-10 09:56 - 000000000 ____D C:\Users\Default\AppData\Roaming\Microsoft\Spelling
2024-02-10 09:56 - 2024-02-10 09:56 - 000000000 ____D C:\ProgramData\USOShared
2024-02-10 09:56 - 2024-02-10 09:56 - 000000000 ____D C:\Program Files\ModifiableWindowsApps
2024-02-10 09:56 - 2024-02-10 09:54 - 000003103 _____ C:\WINDOWS\SysWOW64\mmc.exe.config
2024-02-10 09:56 - 2024-02-10 09:54 - 000003103 _____ C:\WINDOWS\system32\mmc.exe.config
2024-02-10 09:56 - 2024-02-10 09:54 - 000000858 _____ C:\WINDOWS\system32\DefaultQuestions.json
2024-02-10 09:54 - 2024-03-04 19:48 - 000000000 ____D C:\WINDOWS\INF
2024-02-10 09:52 - 2024-02-10 09:52 - 000089761 _____ C:\WINDOWS\system32\DiskSnapshot.conf
2024-02-10 09:52 - 2024-02-10 09:52 - 000061060 _____ C:\WINDOWS\SysWOW64\ctac.json
2024-02-10 09:52 - 2024-02-10 09:52 - 000061060 _____ C:\WINDOWS\system32\ctac.json
2024-02-10 09:52 - 2024-02-10 09:52 - 000049152 _____ (Microsoft) C:\WINDOWS\system32\oflc-nz.rs
2024-02-10 09:52 - 2024-02-10 09:52 - 000049152 _____ (Microsoft) C:\WINDOWS\system32\csrr.rs
2024-02-10 09:52 - 2024-02-10 09:52 - 000045056 _____ (Microsoft) C:\WINDOWS\system32\fpb.rs
2024-02-10 09:52 - 2024-02-10 09:52 - 000040960 _____ (Microsoft) C:\WINDOWS\system32\esrb.rs
2024-02-10 09:52 - 2024-02-10 09:52 - 000040960 _____ (Microsoft) C:\WINDOWS\system32\cero.rs
2024-02-10 09:52 - 2024-02-10 09:52 - 000040448 _____ (Microsoft) C:\WINDOWS\SysWOW64\csrr.rs
2024-02-10 09:52 - 2024-02-10 09:52 - 000038400 _____ (Microsoft) C:\WINDOWS\SysWOW64\oflc-nz.rs
2024-02-10 09:52 - 2024-02-10 09:52 - 000038128 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\iaLPSSi_GPIO.sys
2024-02-10 09:52 - 2024-02-10 09:52 - 000037888 _____ (Microsoft) C:\WINDOWS\SysWOW64\fpb.rs
2024-02-10 09:52 - 2024-02-10 09:52 - 000036864 _____ (Microsoft) C:\WINDOWS\system32\usk.rs
2024-02-10 09:52 - 2024-02-10 09:52 - 000036864 _____ (Microsoft) C:\WINDOWS\system32\cob-au.rs
2024-02-10 09:52 - 2024-02-10 09:52 - 000036256 _____ C:\WINDOWS\system32\Microsoft.Management.Deployment.winmd
2024-02-10 09:52 - 2024-02-10 09:52 - 000033280 _____ (Microsoft) C:\WINDOWS\SysWOW64\cero.rs
2024-02-10 09:52 - 2024-02-10 09:52 - 000030208 _____ (Microsoft) C:\WINDOWS\SysWOW64\esrb.rs
2024-02-10 09:52 - 2024-02-10 09:52 - 000028672 _____ (Microsoft) C:\WINDOWS\system32\pegi-pt.rs
2024-02-10 09:52 - 2024-02-10 09:52 - 000028672 _____ (Microsoft) C:\WINDOWS\system32\pegi.rs
2024-02-10 09:52 - 2024-02-10 09:52 - 000028672 _____ (Microsoft) C:\WINDOWS\system32\grb.rs
2024-02-10 09:52 - 2024-02-10 09:52 - 000027648 _____ (Microsoft) C:\WINDOWS\SysWOW64\usk.rs
2024-02-10 09:52 - 2024-02-10 09:52 - 000027648 _____ (Microsoft) C:\WINDOWS\SysWOW64\cob-au.rs
2024-02-10 09:52 - 2024-02-10 09:52 - 000024576 _____ (Microsoft) C:\WINDOWS\system32\pcbp.rs
2024-02-10 09:52 - 2024-02-10 09:52 - 000024576 _____ (Microsoft) C:\WINDOWS\system32\djctq.rs
2024-02-10 09:52 - 2024-02-10 09:52 - 000020979 _____ C:\WINDOWS\SysWOW64\IntegratedServicesRegionPolicySet.json
2024-02-10 09:52 - 2024-02-10 09:52 - 000020979 _____ C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json
2024-02-10 09:52 - 2024-02-10 09:52 - 000019456 _____ (Microsoft) C:\WINDOWS\SysWOW64\pegi-pt.rs
2024-02-10 09:52 - 2024-02-10 09:52 - 000019456 _____ (Microsoft) C:\WINDOWS\SysWOW64\pegi.rs
2024-02-10 09:52 - 2024-02-10 09:52 - 000017920 _____ (Microsoft) C:\WINDOWS\SysWOW64\grb.rs
2024-02-10 09:52 - 2024-02-10 09:52 - 000014336 _____ (Microsoft) C:\WINDOWS\SysWOW64\djctq.rs
2024-02-10 09:52 - 2024-02-10 09:52 - 000013824 _____ (Microsoft) C:\WINDOWS\SysWOW64\pcbp.rs
2024-02-10 09:52 - 2024-02-10 09:52 - 000012288 _____ (Microsoft) C:\WINDOWS\system32\WEB.rs
2024-02-10 09:52 - 2024-02-10 09:52 - 000010576 _____ C:\WINDOWS\system32\TransformPPSToWlan.xslt
2024-02-10 09:52 - 2024-02-10 09:52 - 000005059 _____ C:\WINDOWS\system32\ecoscore_config.json
2024-02-10 09:52 - 2024-02-10 09:52 - 000004608 _____ (Microsoft) C:\WINDOWS\SysWOW64\WEB.rs
2024-02-10 09:52 - 2024-02-10 09:52 - 000004512 _____ C:\WINDOWS\system32\ResPriUHMImageList
2024-02-10 09:52 - 2024-02-10 09:52 - 000004512 _____ C:\WINDOWS\system32\ResPriLMImageList
2024-02-10 09:52 - 2024-02-10 09:52 - 000004512 _____ C:\WINDOWS\system32\ResPriImageListLowCost
2024-02-10 09:52 - 2024-02-10 09:52 - 000004512 _____ C:\WINDOWS\system32\ResPriImageList
2024-02-10 09:52 - 2024-02-10 09:52 - 000004512 _____ C:\WINDOWS\system32\ResPriHMImageListLowCost
2024-02-10 09:52 - 2024-02-10 09:52 - 000004512 _____ C:\WINDOWS\system32\ResPriHMImageList
2024-02-10 09:52 - 2024-02-10 09:52 - 000001820 _____ C:\WINDOWS\SysWOW64\rasctrnm.h
2024-02-10 09:52 - 2024-02-10 09:52 - 000001820 _____ C:\WINDOWS\system32\rasctrnm.h
2024-02-10 09:52 - 2024-02-10 09:52 - 000001688 _____ C:\WINDOWS\system32\TransformPPSToWlanCredentials.xslt
2024-02-10 09:52 - 2024-02-10 09:52 - 000000670 ___RH C:\WINDOWS\WindowsShell.Manifest
2024-02-10 09:52 - 2024-02-10 09:52 - 000000146 _____ C:\WINDOWS\system32\UevAppMonitor.exe.config
2024-02-10 09:52 - 2024-02-10 09:52 - 000000112 _____ C:\WINDOWS\SysWOW64\MixedRealityRuntime.json
2024-02-10 09:52 - 2024-02-10 09:52 - 000000112 _____ C:\WINDOWS\system32\MixedRealityRuntime.json
2024-02-10 09:52 - 2024-02-10 09:52 - 000000021 _____ C:\WINDOWS\SysWOW64\MiniLM.onnx
2024-02-10 09:52 - 2024-02-10 09:52 - 000000021 _____ C:\WINDOWS\system32\MiniLM.onnx
2024-02-10 09:51 - 2024-03-04 19:41 - 105644032 _____ C:\WINDOWS\system32\config\SOFTWARE
2024-02-10 09:51 - 2024-03-04 19:41 - 021495808 _____ C:\WINDOWS\system32\config\SYSTEM
2024-02-10 09:51 - 2024-03-04 19:41 - 001048576 _____ C:\WINDOWS\system32\config\DEFAULT
2024-02-10 09:51 - 2024-03-04 19:41 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2024-02-10 09:51 - 2024-03-04 19:41 - 000065536 _____ C:\WINDOWS\system32\config\SAM
2024-02-10 09:51 - 2024-03-04 19:41 - 000032768 _____ C:\WINDOWS\system32\config\SECURITY
2024-02-10 09:51 - 2024-03-01 10:37 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2024-02-10 09:51 - 2024-02-22 16:30 - 000000000 ____D C:\WINDOWS\servicing
2024-02-10 09:51 - 2024-02-10 10:04 - 000000000 ____D C:\WINDOWS\system32\SMI
2024-02-10 05:01 - 2024-02-22 16:35 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Greenshot
2024-02-10 05:01 - 2024-02-10 05:01 - 000000000 ____D C:\Users\Jscn\AppData\Roaming\Greenshot
2024-02-10 05:01 - 2024-02-10 05:01 - 000000000 ____D C:\Users\Jscn\AppData\Local\Greenshot
2024-02-10 05:01 - 2024-02-10 05:01 - 000000000 ____D C:\Program Files\Greenshot
2024-02-10 03:28 - 2024-02-10 03:28 - 000000000 ____D C:\Users\Jscn\AppData\Local\NVIDIA
2024-02-09 02:55 - 2024-03-01 20:28 - 000000000 ____D C:\Users\Jscn\AppData\Local\Syncthing
2024-02-08 23:00 - 2024-02-22 16:35 - 000000000 ____D C:\WINDOWS\system32\log
2024-02-08 21:56 - 2024-02-11 01:04 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logi
2024-02-08 21:29 - 2024-02-09 02:54 - 000000000 ____D C:\Users\Jscn\AppData\Local\SyncthingOld
2024-02-08 20:08 - 2024-02-08 20:08 - 000000000 ____D C:\Users\Jscn\AppData\Roaming\Microsoft\QuickStyles
2024-02-08 19:50 - 2024-02-08 19:50 - 000266905 _____ C:\Users\Jscn\Downloads\AS_SSD_Benchmark7316.zip
2024-02-08 19:50 - 2024-02-08 19:50 - 000000000 ____D C:\Users\Jscn\Downloads\AS_SSD_Benchmark7316
2024-02-08 19:45 - 2024-02-22 16:35 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TreeSize Free
2024-02-08 19:45 - 2024-02-08 19:50 - 000000000 ____D C:\Users\Jscn\AppData\Roaming\JAM Software
2024-02-08 19:45 - 2024-02-08 19:45 - 000001416 _____ C:\Users\Jscn\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TreeSizeFree.lnk
2024-02-08 19:45 - 2024-02-08 19:45 - 000000000 ____D C:\Program Files\JAM Software
2024-02-08 19:44 - 2024-02-08 19:44 - 013282336 _____ (JAM Software ) C:\Users\Jscn\Downloads\TreeSizeFreeSetup.exe
2024-02-08 18:06 - 2024-02-21 10:35 - 000000000 ____D C:\Users\Jscn\.dbus-keyrings
2024-02-08 18:06 - 2024-02-08 18:06 - 000000000 ____D C:\Users\Jscn\AppData\Roaming\BleachBit
2024-02-08 17:24 - 2024-03-02 10:08 - 000000000 ____D C:\Users\Jscn\AppData\Roaming\Ledger Live
2024-02-08 17:24 - 2024-03-02 10:08 - 000000000 ____D C:\Program Files\Ledger Live
2024-02-08 17:24 - 2024-03-02 10:05 - 000000000 ____D C:\Users\Jscn\AppData\Local\ledger-live-desktop-updater
2024-02-08 17:24 - 2024-02-08 17:24 - 000001912 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ledger Live.lnk
2024-02-08 17:23 - 2024-02-08 17:23 - 119234032 _____ (Ledger Live Team) C:\Users\Jscn\Downloads\ledger-live-desktop-2.75.0-win-x64.exe
2024-02-08 15:59 - 2024-02-08 19:54 - 000000000 ____D C:\Users\Jscn\AppData\Local\FSDART
2024-02-08 15:59 - 2024-02-08 16:04 - 000000000 ____D C:\ProgramData\F-Secure
2024-02-08 15:59 - 2024-02-08 15:59 - 011688976 _____ (F-Secure Corporation) C:\Users\Jscn\Downloads\F-SecureOnlineScanner.exe
2024-02-08 15:59 - 2024-02-08 15:59 - 000000000 ____D C:\Users\Jscn\AppData\Local\F-Secure
2024-02-08 08:26 - 2024-02-08 08:28 - 000000000 ____D C:\Users\Jscn\KeePass
2024-02-08 08:20 - 2024-02-08 21:29 - 000000000 ____D C:\Users\Jscn\Sync
2024-02-08 08:09 - 2024-02-22 16:35 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VeraCrypt
2024-02-08 08:09 - 2024-02-08 08:14 - 000000000 ____D C:\Users\Jscn\AppData\Roaming\VeraCrypt
2024-02-08 08:08 - 2024-02-08 08:09 - 000000000 ____D C:\Program Files\VeraCrypt
2024-02-08 08:07 - 2024-02-08 08:07 - 035282192 _____ (IDRIX) C:\Users\Jscn\Downloads\VeraCrypt Setup 1.26.7.exe
2024-02-08 08:04 - 2024-02-08 08:04 - 026076462 _____ (Syncthing Foundation ) C:\Users\Jscn\Downloads\syncthing-1.27.3-setup.exe
2024-02-08 07:52 - 2024-03-04 19:42 - 000000000 ___SD C:\Users\Jscn\Nextcloud
2024-02-08 07:52 - 2024-02-08 07:52 - 000000000 ____D C:\Users\Jscn\AppData\Local\cache
2024-02-08 07:46 - 2024-03-04 19:42 - 000000000 ____D C:\Users\Jscn\AppData\Roaming\Nextcloud
2024-02-08 07:46 - 2024-02-08 21:28 - 000000000 ____D C:\Users\Jscn\AppData\Local\Nextcloud
2024-02-08 07:46 - 2024-02-08 07:46 - 113086464 _____ C:\Users\Jscn\Downloads\Nextcloud-3.11.1-x64.msi
2024-02-08 07:44 - 2024-03-02 16:49 - 000000000 ____D C:\Program Files\Microsoft OneDrive
2024-02-08 02:46 - 2024-02-08 02:46 - 074423614 _____ C:\Users\Jscn\Downloads\d4lf_v4.1.3.zip
2024-02-07 22:01 - 2024-02-07 22:01 - 000000000 ____D C:\Users\Jscn\AppData\Roaming\Microsoft\Stationery
2024-02-07 22:01 - 2024-02-07 22:01 - 000000000 ____D C:\Users\Jscn\AppData\Roaming\Microsoft\Signatures
2024-02-07 12:45 - 2024-02-07 12:45 - 000000000 ____D C:\Users\Jscn\AppData\Roaming\Microsoft\Proof
2024-02-07 12:44 - 2024-02-07 12:50 - 000000000 ____D C:\Users\Jscn\AppData\Roaming\Microsoft\Outlook
2024-02-07 08:03 - 2024-02-07 08:03 - 000000027 _____ C:\WINDOWS\system32\ctc.json
2024-02-07 07:59 - 2024-02-22 16:35 - 000000000 ____D C:\WINDOWS\system32\DTS
2024-02-07 07:59 - 2024-02-07 12:07 - 000000000 ____D C:\ProgramData\DTSAudio
2024-02-06 07:29 - 2024-02-06 07:29 - 098153642 _____ C:\Users\Jscn\Downloads\UWP_Offline_BUNDLE.7z
2024-02-06 07:29 - 2024-02-06 07:29 - 025407627 _____ C:\Users\Jscn\Downloads\9520.1_UAD_WHQL_DTS_2023.7z
2024-02-06 06:27 - 2024-02-08 16:59 - 000000000 ____D C:\Users\Jscn\AppData\Roaming\Microsoft\UProof
2024-02-06 06:26 - 2024-03-02 09:43 - 000000000 ____D C:\Users\Jscn\AppData\Roaming\Microsoft\Excel
2024-02-06 06:26 - 2024-02-07 12:45 - 000000000 ____D C:\Users\Jscn\AppData\Roaming\Microsoft\Office
2024-02-06 06:26 - 2024-02-06 06:26 - 000000000 ____D C:\Users\Jscn\AppData\Roaming\Microsoft\AddIns
2024-02-06 05:08 - 2024-02-22 16:35 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2024-02-06 05:08 - 2024-02-06 05:08 - 664937640 _____ (NVIDIA Corporation) C:\Users\Jscn\Downloads\551.23-desktop-win10-win11-64bit-international-dch-whql.exe
2024-02-06 05:08 - 2024-02-06 05:08 - 001594143 _____ (Igor Pavlov) C:\Users\Jscn\Downloads\7z2401-x64.exe
2024-02-06 05:08 - 2024-02-06 05:08 - 000000000 ____D C:\Program Files\7-Zip
2024-02-06 04:59 - 2024-02-22 16:35 - 000000000 ___HD C:\WINDOWS\system32\GroupPolicy
2024-02-06 04:24 - 2024-03-04 19:39 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2024-02-06 04:24 - 2024-02-22 16:35 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LibreWolf
2024-02-06 04:24 - 2024-02-06 04:24 - 134410107 _____ C:\Users\Jscn\Downloads\librewolf-122.0-2-windows-x86_64-setup.exe
2024-02-06 04:24 - 2024-02-06 04:24 - 000002182 _____ C:\Users\Jscn\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\LibreWolf Private Browsing.lnk
2024-02-06 04:24 - 2024-02-06 04:24 - 000000000 ____D C:\Users\Jscn\AppData\Roaming\librewolf
2024-02-06 04:24 - 2024-02-06 04:24 - 000000000 ____D C:\Users\Jscn\AppData\Local\librewolf
2024-02-06 04:24 - 2024-02-06 04:24 - 000000000 ____D C:\Program Files\LibreWolf
2024-02-06 04:23 - 2024-02-06 04:23 - 000040933 _____ C:\Users\Jscn\Downloads\Librefox-2.1-Firefox-Windows-64.0.0.zip
2024-02-06 04:22 - 2024-03-02 10:06 - 000002162 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2024-02-06 04:22 - 2024-02-06 04:22 - 000000000 ___RD C:\Users\Default\OneDrive
2024-02-06 04:21 - 2024-02-06 04:21 - 000000000 ____D C:\Program Files\Common Files\DESIGNER
2024-02-06 04:20 - 2024-02-22 16:35 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Tools
2024-02-06 04:20 - 2024-02-06 04:20 - 000002553 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word.lnk
2024-02-06 04:20 - 2024-02-06 04:20 - 000002549 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel.lnk
2024-02-06 04:20 - 2024-02-06 04:20 - 000002528 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk
2024-02-06 04:20 - 2024-02-06 04:20 - 000002503 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher.lnk
2024-02-06 04:20 - 2024-02-06 04:20 - 000002470 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access.lnk
2024-02-06 04:20 - 2024-02-06 04:20 - 000002467 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote.lnk
2024-02-06 04:20 - 2024-02-06 04:20 - 000002439 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook.lnk
2024-02-06 04:19 - 2024-02-06 04:21 - 000000000 ____D C:\Program Files\Microsoft Office
2024-02-06 04:19 - 2024-02-06 04:19 - 000000000 ____D C:\Program Files\Microsoft Office 15
2024-02-06 04:17 - 2024-02-06 04:18 - 668190720 _____ C:\Users\Jscn\Downloads\O365HomePremRetail.img
2024-02-06 02:54 - 2024-02-06 02:54 - 000001658 _____ C:\Users\Jscn\Downloads\666c68.csv
2024-02-06 02:50 - 2024-03-04 19:41 - 000000000 ____D C:\Program Files (x86)\NextDNS
2024-02-06 02:50 - 2024-03-01 10:47 - 000001888 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NextDNS.lnk
2024-02-06 02:50 - 2024-02-06 02:50 - 000000000 ____D C:\Users\Jscn\AppData\Local\NextDNS
2024-02-06 02:37 - 2024-02-06 02:37 - 009938344 _____ (NextDNS) C:\Users\Jscn\Downloads\NextDNSSetup-3.0.12.exe
2024-02-06 01:06 - 2024-02-06 01:06 - 261956799 _____ C:\Users\Jscn\Downloads\CinebenchR23.2 (1).zip
2024-02-06 00:59 - 2024-02-10 03:28 - 000000000 ____D C:\Users\Jscn\AppData\Roaming\Maxon
2024-02-06 00:58 - 2024-02-08 19:49 - 000000000 ____D C:\Users\Jscn\Downloads\CinebenchR23.2
2024-02-06 00:58 - 2024-02-06 00:58 - 261956799 _____ C:\Users\Jscn\Downloads\CinebenchR23.2.zip
2024-02-05 20:24 - 2024-02-05 20:24 - 000002055 _____ C:\Users\Jscn\Downloads\k4_pro_iso_rgb_v1.00.json.zip
2024-02-05 20:18 - 2024-02-14 18:38 - 000000000 ____D C:\Dell
2024-02-05 20:16 - 2024-02-05 20:22 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell
2024-02-05 20:14 - 2024-02-05 20:14 - 068477624 _____ (Dell Inc.) C:\Users\Jscn\Downloads\ddmsetup.exe
2024-02-05 20:14 - 2024-02-05 20:14 - 068477624 _____ (Dell Inc.) C:\Users\Jscn\Downloads\ddmsetup (1).exe
2024-02-05 20:14 - 2024-02-05 20:14 - 001576728 _____ C:\Users\Jscn\Downloads\DELL_S2721DGF-MONITOR_A00-00_DRVR_6F2V2.exe
2024-02-05 19:54 - 2024-02-05 19:54 - 014802488 _____ (Martin Malik, REALiX s.r.o. ) C:\Users\Jscn\Downloads\hwi_772.exe
2024-02-04 04:49 - 2024-02-22 16:35 - 000000000 ____D C:\WINDOWS\SysWOW64\Npcap
2024-02-04 04:49 - 2024-02-22 16:35 - 000000000 ____D C:\WINDOWS\system32\Npcap
2024-02-04 04:48 - 2024-02-04 04:49 - 000000000 ____D C:\Program Files\Npcap
2024-02-04 04:48 - 2024-02-04 04:48 - 001162272 _____ C:\Users\Jscn\Downloads\npcap-1.79.exe
2024-02-04 04:46 - 2024-02-04 05:32 - 000000000 ____D C:\Users\Jscn\AppData\Roaming\Wireshark
2024-02-04 01:49 - 2024-02-04 01:54 - 000400852 _____ C:\WINDOWS\ntbtlog.txt
2024-02-04 00:01 - 2024-02-04 00:01 - 000001076 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop 2024.lnk
2024-02-03 23:58 - 2024-03-01 14:55 - 000000000 __RHD C:\Users\Jscn\Creative Cloud Files
2024-02-03 23:56 - 2024-03-01 14:55 - 000000000 ____D C:\Program Files\Adobe
2024-02-03 23:56 - 2024-02-07 07:59 - 000000000 ____D C:\Program Files\Common Files\Adobe
2024-02-03 23:56 - 2024-02-04 00:04 - 000000000 ____D C:\Users\Jscn\AppData\LocalLow\Adobe
2024-02-03 23:56 - 2024-02-03 23:59 - 000000000 ____D C:\ProgramData\Adobe
2024-02-03 23:56 - 2024-02-03 23:57 - 000000000 ____D C:\Program Files (x86)\Adobe
2024-02-03 23:56 - 2024-02-03 23:56 - 000001394 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Creative Cloud.lnk
2024-02-03 23:54 - 2024-03-01 17:37 - 000000000 ____D C:\Users\Jscn\AppData\Local\Adobe
2024-02-03 23:54 - 2024-02-04 00:04 - 000000000 ____D C:\Users\Jscn\AppData\Roaming\com.adobe.dunamis
2024-02-03 23:34 - 2024-02-03 23:34 - 000000000 ____D C:\WINDOWS\system32\Plugins
2024-02-03 22:40 - 2024-02-03 22:40 - 053519872 _____ (PortableApps.com) C:\Users\Jscn\Downloads\WiresharkPortable64_4.2.2.paf.exe
2024-02-03 22:25 - 2024-02-03 22:25 - 000180121 _____ C:\Users\Jscn\Downloads\simplewall.zip
2024-02-03 22:18 - 2024-02-22 16:36 - 000000000 ____D C:\Users\Jscn\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\simplewall
2024-02-03 22:18 - 2024-02-03 22:18 - 000672446 _____ (Henry++) C:\Users\Jscn\Downloads\simplewall-3.7.8-setup.exe
2024-02-03 22:18 - 2024-02-03 22:18 - 000000000 ____D C:\Users\Jscn\AppData\Roaming\Henry++
2024-02-03 22:18 - 2024-02-03 22:18 - 000000000 ____D C:\Program Files\simplewall
2024-02-03 21:23 - 2024-02-03 21:23 - 000000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
2024-02-03 20:15 - 2024-02-03 20:16 - 000223776 _____ C:\Users\Jscn\Downloads\FRITZ.Box_6660_Cable_252.07.57_03.02.24_2015.export
2024-02-03 19:24 - 2024-02-03 19:25 - 2005323323 _____ C:\WINDOWS\system32\Logfile.XML
2024-02-03 00:40 - 2024-03-04 19:52 - 000000000 ____D C:\FRST
2024-02-03 00:28 - 2024-02-03 00:28 - 000000000 ____D C:\Users\Jscn\AppData\Roaming\Microsoft\HTML Help

==================== Ein Monat (geänderte) ==================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2024-03-04 19:54 - 2024-02-02 15:03 - 000000000 ____D C:\Users\Jscn\AppData\Roaming\Notepad++
2024-03-04 19:45 - 2024-02-02 13:38 - 000000000 ____D C:\Users\Jscn\AppData\Local\D3DSCache
2024-03-04 19:44 - 2024-02-02 14:31 - 000000000 ____D C:\Users\Jscn\AppData\Roaming\TIDAL
2024-03-04 19:43 - 2024-02-02 14:32 - 000000000 ____D C:\Users\Jscn\AppData\Roaming\Signal
2024-03-04 19:42 - 2024-02-02 16:36 - 000000000 ____D C:\Users\Jscn\Downloads\FanControl_net_8_0
2024-03-04 19:41 - 2024-02-02 13:42 - 000000000 ____D C:\ProgramData\NVIDIA
2024-03-04 19:41 - 2024-02-02 13:28 - 001205104 _____ () C:\WINDOWS\system32\wpbbin.exe
2024-03-04 19:41 - 2024-02-02 13:28 - 001157088 _____ C:\WINDOWS\system32\AsusUpdateCheck.exe
2024-03-04 19:41 - 2024-02-02 13:28 - 000012288 ___SH C:\DumpStack.log.tmp
2024-03-04 19:40 - 2024-02-02 15:39 - 000000000 ____D C:\Users\Jscn\AppData\Local\Everything
2024-03-04 19:40 - 2024-02-02 14:16 - 000000000 ____D C:\Users\Jscn\AppData\Roaming\Everything
2024-03-03 19:18 - 2024-02-02 14:44 - 000000000 ____D C:\Users\Jscn\AppData\Local\KeePassXC
2024-03-03 19:16 - 2024-02-02 13:35 - 000000000 ___SD C:\Users\Jscn\AppData\Roaming\Microsoft\Credentials
2024-03-03 18:59 - 2024-02-02 13:28 - 002873000 ____N C:\WINDOWS\Minidump\030324-8500-01.dmp
2024-03-03 18:56 - 2024-02-02 15:21 - 000000000 ____D C:\Users\Jscn\AppData\Local\Battle.net
2024-03-03 18:49 - 2024-02-02 15:36 - 000000000 ____D C:\Users\Jscn\AppData\Local\Discord
2024-03-03 18:49 - 2024-02-02 14:24 - 000000000 ____D C:\Users\Jscn\AppData\Roaming\discord
2024-03-02 22:27 - 2024-02-02 16:39 - 000000000 ____D C:\Program Files (x86)\MSI Afterburner
2024-03-02 05:28 - 2024-02-02 14:43 - 000000000 ____D C:\Users\Jscn\AppData\Roaming\KeePassXC
2024-03-01 21:08 - 2024-02-02 13:35 - 000000000 ____D C:\Users\Jscn\AppData\Local\Packages
2024-03-01 20:46 - 2024-02-02 13:28 - 000002450 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2024-03-01 20:43 - 2024-02-02 14:28 - 000000000 ____D C:\Users\Jscn\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2024-03-01 20:43 - 2024-02-02 14:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2024-03-01 20:41 - 2024-02-02 14:31 - 000000000 ____D C:\Users\Jscn\AppData\Roaming\WinRAR
2024-03-01 20:41 - 2024-02-02 14:28 - 000000000 ____D C:\Program Files\WinRAR
2024-03-01 17:37 - 2024-02-02 13:35 - 000000000 ____D C:\Users\Jscn\AppData\Roaming\Adobe
2024-03-01 17:14 - 2024-02-02 16:44 - 000000000 ____D C:\Users\Jscn\AppData\Roaming\Proton Mail
2024-03-01 10:51 - 2024-02-02 13:30 - 000000000 ____D C:\ProgramData\Packages
2024-02-29 10:22 - 2024-02-02 15:06 - 000002370 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brave.lnk
2024-02-26 17:31 - 2024-02-02 14:50 - 000000000 ____D C:\Users\Jscn\AppData\Local\Package Cache
2024-02-25 19:39 - 2024-02-02 13:42 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2024-02-25 19:38 - 2024-02-02 13:42 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2024-02-25 19:38 - 2024-02-02 13:41 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2024-02-25 19:34 - 2024-02-02 13:28 - 000000000 ____D C:\ProgramData\ASUS
2024-02-25 19:32 - 2024-02-02 13:38 - 000000000 ____D C:\ProgramData\Package Cache
2024-02-23 16:23 - 2024-02-02 15:21 - 000000000 ____D C:\Program Files (x86)\Battle.net
2024-02-22 20:05 - 2024-02-02 14:52 - 000338040 _____ () C:\WINDOWS\system32\AsusDownLoadLicense.exe
2024-02-22 20:03 - 2024-02-02 13:35 - 000000000 __RHD C:\Users\Public\AccountPictures
2024-02-22 16:36 - 2024-02-02 19:22 - 000000000 ____D C:\Users\Jscn\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Python 3.12
2024-02-22 16:36 - 2024-02-02 17:14 - 000000000 ____D C:\Users\Jscn\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WhirlwindFX
2024-02-22 16:36 - 2024-02-02 16:44 - 000000000 ____D C:\Users\Jscn\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Proton AG
2024-02-22 16:36 - 2024-02-02 16:39 - 000000000 ____D C:\Users\Jscn\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MSI Afterburner
2024-02-22 16:36 - 2024-02-02 14:39 - 000000000 ____D C:\Users\Jscn\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BleachBit
2024-02-22 16:36 - 2024-02-02 14:31 - 000000000 ____D C:\Users\Jscn\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TIDAL Music AS
2024-02-22 16:36 - 2024-02-02 14:24 - 000000000 ____D C:\Users\Jscn\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Discord Inc
2024-02-22 16:36 - 2024-02-02 13:42 - 000000000 ____D C:\WINDOWS\system32\Drivers\NVIDIA Corporation
2024-02-22 16:35 - 2024-02-02 21:50 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenSC Project
2024-02-22 16:35 - 2024-02-02 15:21 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battle.net
2024-02-22 16:35 - 2024-02-02 15:04 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Visual Studio Code
2024-02-22 16:35 - 2024-02-02 15:04 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2024-02-22 16:35 - 2024-02-02 15:03 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IrfanView
2024-02-22 16:35 - 2024-02-02 14:57 - 000000000 ____D C:\WINDOWS\system32\elambkup
2024-02-22 16:35 - 2024-02-02 14:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bitdefender Security
2024-02-22 16:35 - 2024-02-02 14:43 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KeePassXC
2024-02-22 16:35 - 2024-02-02 14:39 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HWiNFO64
2024-02-22 16:35 - 2024-02-02 14:26 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerShell
2024-02-22 16:35 - 2024-02-02 14:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BCUninstaller
2024-02-22 16:35 - 2024-02-02 13:38 - 000000000 ____D C:\Program Files\Intel
2024-02-22 16:35 - 2022-05-07 11:39 - 000000000 ____D C:\WINDOWS\system32\Hydrogen
2024-02-22 16:35 - 2022-05-07 06:24 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2024-02-22 16:35 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\MsDtc
2024-02-22 16:34 - 2022-05-07 06:24 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2024-02-22 16:34 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2024-02-15 19:32 - 2024-01-27 17:21 - 002389504 _____ (Farbar) C:\Users\Jscn\Desktop\FRST64.exe
2024-02-15 14:19 - 2024-02-02 14:52 - 000000000 ____D C:\Users\Jscn\AppData\Local\PlaceholderTileLogoFolder
2024-02-15 14:13 - 2024-02-02 16:32 - 000000000 ____D C:\WINDOWS\system32\MRT
2024-02-15 09:44 - 2024-02-02 14:12 - 000000000 ____D C:\Tools
2024-02-15 00:35 - 2024-02-02 16:16 - 000000000 ____D C:\Program Files\BraveSoftware
2024-02-15 00:35 - 2024-02-02 13:47 - 000000000 ____D C:\Users\Jscn\AppData\Local\BraveSoftware
2024-02-15 00:22 - 2024-02-02 13:43 - 000000000 ___HD C:\Program Files (x86)\Temp
2024-02-14 18:39 - 2024-02-02 15:21 - 000000000 ____D C:\Users\Jscn\AppData\Roaming\Battle.net
2024-02-14 18:39 - 2024-02-02 14:39 - 000000000 ____D C:\Program Files\HWiNFO64
2024-02-14 13:12 - 2024-02-02 16:32 - 191155960 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2024-02-14 13:08 - 2024-02-02 15:04 - 000000000 ____D C:\Program Files (x86)\dotnet
2024-02-14 13:07 - 2024-02-02 14:24 - 000000000 ____D C:\Program Files\dotnet
2024-02-14 10:07 - 2024-02-02 14:57 - 000000000 ____D C:\ProgramData\BDLogging
2024-02-10 07:18 - 2024-02-02 16:35 - 000000000 ____D C:\Users\Jscn\.d4lf
2024-02-08 22:17 - 2024-02-02 13:39 - 000000000 ____D C:\Users\Jscn\AppData\Roaming\Microsoft\MMC
2024-02-08 18:14 - 2024-02-02 17:14 - 000000000 ____D C:\Users\Jscn\AppData\Local\VortxEngine
2024-02-08 18:12 - 2024-02-02 17:15 - 000000000 ____D C:\Users\Jscn\AppData\Local\whirlwindengine.firebaseio.com
2024-02-06 05:19 - 2024-02-02 13:35 - 000000000 ____D C:\Users\Jscn\AppData\Local\ConnectedDevicesPlatform
2024-02-03 19:24 - 2024-02-02 20:44 - 000080408 ____H (Sysinternals - www.sysinternals.com) C:\WINDOWS\system32\Drivers\PROCMON24.SYS

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse ========

2024-02-02 20:42 - 2024-02-02 22:33 - 000007605 _____ () C:\Users\Jscn\AppData\Local\Resmon.ResmonCfg

==================== FLock ==============================

2024-02-02 13:28 C:\WINDOWS\system32\config\BFS

==================== SigCheck ============================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

==================== Ende von FRST.txt ========================

 

Themen zu PC ggf. per Remote-Verbindung gesteuert, Policies/Unsignierte Treiber auffällig im Log
100%, adobe, anti, bitdefender, c:\windows, defender, desktop, explorer.exe, frage, fragen, gleichzeitig, hallo zusammen, keylogger, log, malwarebytes, microsoft, nichts, registry, remote, screen, software, system, system32, treiber, windows


« Windows 11: Möglicherweise einen Keylogger eingefangen | Trojaner oder Malware eingefangen? Gimp Updater wird als Malware erkannt »


Ähnliche Themen: PC ggf. per Remote-Verbindung gesteuert, Policies/Unsignierte Treiber auffällig im Log


  1. Unsignierte OS-X-Malware kann Kamera auslesen
    Nachrichten - 07.07.2016 (0)
  2. Fernzugriffssymbol? ggf. Trojaner?
    Smartphone, Tablet & Handy Security - 10.02.2016 (5)
  3. Firefox 43 blockiert unsignierte Erweiterungen
    Nachrichten - 16.12.2015 (0)
  4. Virus? PC wird von anderer Person gesteuert
    Log-Analyse und Auswertung - 14.09.2015 (36)
  5. Remote-Schadsoftware kontrolliert gesamtes Heimnetzwerk: Manipulation des Windows-Remote-Systems
    Log-Analyse und Auswertung - 10.09.2015 (5)
  6. Win 7 Mediaplayer wird von extern gesteuert/ Befehle werden nicht angenommen
    Log-Analyse und Auswertung - 25.04.2014 (3)
  7. Win7: Computer wird remote gesteuert
    Log-Analyse und Auswertung - 30.03.2014 (13)
  8. Firefox keine Rückmeldung | Infizierter Registrierungswert \CurrentVersion\Policies\Explorer\Run|10639
    Log-Analyse und Auswertung - 26.06.2013 (11)
  9. Mein PC wurde am 07.11.2012 fremd gesteuert
    Plagegeister aller Art und deren Bekämpfung - 21.11.2012 (26)
  10. HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run|12843 (Trojan.Agent) lässt sich nicht entfernen :(
    Plagegeister aller Art und deren Bekämpfung - 16.10.2012 (9)
  11. HKML\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run/14328 (Trojan.Agent) läßt sich nicht entfernen!
    Log-Analyse und Auswertung - 11.10.2012 (27)
  12. Lüfter im Notebook defekt oder falsch gesteuert!?
    Netzwerk und Hardware - 24.07.2012 (14)
  13. Jemand anders hat meinen PC gesteuert!
    Log-Analyse und Auswertung - 21.07.2011 (4)
  14. PC geht auffällig langsam :(
    Log-Analyse und Auswertung - 09.11.2008 (2)
  15. Irgend etwas auffällig?
    Mülltonne - 25.06.2008 (0)
  16. Ist hier was auffällig?
    Log-Analyse und Auswertung - 02.02.2006 (3)
  17. 06 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
    Log-Analyse und Auswertung - 30.12.2005 (1)
Anleitungen und Tipps

- Für alle Hilfesuchenden! Was beachten?

- Anleitung: MyStartSearch.com entfernen

- Anleitung: WebSearches löschen

- Hilfe: iStartSurf entfernen – so gehts!

- Anleitung: Omiga Plus richtig entfernen

- Browser Viren entfernen


Zum Thema PC ggf. per Remote-Verbindung gesteuert, Policies/Unsignierte Treiber auffällig im Log - Code: Alles auswählen Aufklappen ATTFilter ==================== NetSvcs (Nicht auf der Ausnahmeliste) =================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht - PC ggf. per Remote-Verbindung gesteuert, Policies/Unsignierte Treiber auffällig im Log...
Archiv
Du betrachtest: PC ggf. per Remote-Verbindung gesteuert, Policies/Unsignierte Treiber auffällig im Log auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131