| |
| |||||||
Log-Analyse und Auswertung: Microsoft Defender hat Trojan:Script/Phonzy entdecktWindows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
15.03.2024, 23:44
| #1 |
| |  Microsoft Defender hat Trojan:Script/Phonzy entdeckt Guten Abend, bei mir hat sich heute der Windows Defender gemeldet und verkündet eine Bedrohung "Trojan:Script/Phonzy.B!ml" entdeckt und in die Quarantäne verlagert zu haben. Das betroffene Element war hierbei im Verzeichnis "file: C:/$Recycle.Bin/S-1-5-21-37...../$RT5CBCN.zip". Den langen Zahlencode habe ich hier zunächst abgekürzt, habe aber ein Foto davon gemacht und könnte den bei Bedarf noch einmal ausführen. In der Panik war mein erster Impuls den Defender den Virus unmittelbar zu entfernen und den Recyclebin zu leeren. Die Einsicht, dass das ggf. suboptimal war, kam erst danach. MalwareBytes sowie der Defender zeigen aktuell keine Hinweise mehr auf Bedrohungen, aber ich möchte sichergehen, dass keine Gefahr für den Rechner mehr besteht und dass die Bedrohung hoffentlich vollständig entfernt ist. Ich bitte um eine Rückmeldung, ob ich das System sicher weiterverwenden kann oder wie ich weiter vorgehen soll. Beste Grüße und besten Dank im Voraus! Die FRST hänge ich schonmal an, die Addition passt aufgrund der Zeichenbegrenzung nicht in dieses Feld. Die Addition-Datei lässt sich weder als .txt noch als .zip aktuell hochladen. Ich würde das weiterprobieren oder diese im Zweifel nachlieferen. Für den Zusatzaufwand bitte ich um Entschuldigung! FRST: Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 14.03.2024
durchgeführt von Klausi (Administrator) auf DESKTOP-U80S1NR (GIGABYTE G5 KC) (15-03-2024 22:38:55)
Gestartet von C:\Users\Klausi\Downloads\FRST64.exe
Geladene Profile: Klausi
Plattform: Microsoft Windows 10 Pro Version 22H2 19045.4170 (X64) Sprache: Deutsch (Deutschland)
Standard-Browser: FF
Start-Modus: Normal
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
(Autodesk, Inc. -> Autodesk, Inc.) C:\Program Files\Autodesk\AdskIdentityManager\1.10.4.0\AdskIdentityManager.exe
(Autodesk, Inc. -> Autodesk, Inc.) C:\Program Files\Autodesk\Autodesk AdSSO\AdSSO.exe
(C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe ->) (Razer USA Ltd. -> ) C:\Program Files (x86)\Razer\Synapse3\UserProcess\Razer Synapse Service Process.exe
(C:\Program Files\Autodesk\AdODIS\V1\Setup\AdskAccessCore.exe ->) (Autodesk, Inc. -> Autodesk, Inc.) C:\Program Files\Autodesk\AdODIS\V1\Setup\ui-launcher\AdskAccessUIHost.exe <4>
(C:\Program Files\LGHUB\system_tray\lghub_system_tray.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_agent.exe
(C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\Malwarebytes.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3>
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(C:\Program Files\WindowsApps\MSTeams_24033.811.2738.2546_x64__8wekyb3d8bbwe\ms-teams.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\122.0.2365.80\msedgewebview2.exe <6>
(C:\Users\Klausi\AppData\Local\MathWorks\ServiceHost\v2024.2.1.0\bin\win64\MathWorksServiceHost.exe ->) (The MathWorks, Inc. -> The MathWorks Inc.) C:\Users\Klausi\AppData\Local\MathWorks\ServiceHost\v2024.2.1.0\bin\win64\MSHHealthMonitor.exe
(DriverStore\FileRepository\cui_dch.inf_amd64_71cc42bf8b620f67\igfxCUIService.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_71cc42bf8b620f67\igfxEM.exe
(explorer.exe ->) (Autodesk, Inc. -> Autodesk, Inc.) C:\Program Files\Autodesk\AdODIS\V1\Setup\AdskAccessCore.exe
(explorer.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\system_tray\lghub_system_tray.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <5>
(explorer.exe ->) (The MathWorks, Inc. -> The MathWorks Inc.) C:\Users\Klausi\AppData\Local\MathWorks\ServiceHost\v2024.2.1.0\bin\win64\MathWorksServiceHost.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\MSTeams_24033.811.2738.2546_x64__8wekyb3d8bbwe\ms-teams.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <19>
(Nvidia Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(services.exe ->) (Autodesk, Inc. -> Autodesk) C:\Program Files (x86)\Common Files\Autodesk Shared\AdskLicensing\12.1.0.7121\AdskLicensingService\AdskLicensingService.exe
(services.exe ->) (Autodesk, Inc. -> Autodesk, Inc.) C:\Program Files\Autodesk\AdODIS\V1\Setup\AdskAccessServiceHost.exe
(services.exe ->) (Flexera Software LLC -> Flexera) C:\Program Files (x86)\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\lms.inf_amd64_fddb643595e0b8d0\LMS.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\sgx_psw.inf_amd64_e2af5870d35e2824\aesm_service.exe
(services.exe ->) (Intel Corporation -> Intel(R) Corporation) C:\Windows\System32\DriverStore\FileRepository\iclsclient.inf_amd64_76523213b78d9046\lib\SocketHeciServer.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe
(services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_71cc42bf8b620f67\igfxCUIService.exe
(services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_4789e47f6228caeb\OneApp.IGCC.WinService.exe
(services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_23a1c1315f01c788\IntelCpHDCPSvc.exe
(services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_23a1c1315f01c788\IntelCpHeciSvc.exe
(services.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_updater.exe
(services.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\vds.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> ) C:\Windows\System32\DriverStore\FileRepository\acpi0002.inf_amd64_200df7168eb1e6c5\DCHUService.exe
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvcvi.inf_amd64_34f6ccb91b991276\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Razer USA Ltd. -> Razer Inc) C:\Program Files (x86)\Razer\Razer Services\GMS\GameManagerService.exe
(services.exe ->) (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Razer Services\Razer Central\RazerCentralService.exe
(services.exe ->) (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_82608b626ba1b8a0\RtkAudUService64.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_11.2401.0.0_x64__8wekyb3d8bbwe\CalculatorApp.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.19041.4163_none_7e304ec47c735f2e\TiWorker.exe
==================== Registry (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [RtkAudUService] => C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_82608b626ba1b8a0\RtkAudUService64.exe [1203952 2020-12-02] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [Riot Vanguard] => C:\Program Files\Riot Vanguard\vgtray.exe [3022640 2023-11-28] (Riot Games, Inc. -> Riot Games, Inc.)
HKLM\...\Run: [Autodesk Access] => C:\Program Files\Autodesk\AdODIS\V1\Setup\AdskAccessCore.exe [20689696 2024-02-07] (Autodesk, Inc. -> Autodesk, Inc.)
HKLM-x32\...\Run: [TeamsMachineInstaller] => C:\Program Files (x86)\Teams Installer\Teams.exe [109324536 2021-03-12] (Microsoft Corporation -> Microsoft Corporation)
HKLM-x32\...\Run: [Autodesk Genuine Service ] => C:\Program Files\Autodesk\Genuine Service\GenuineService.exe [3499016 2023-11-13] (Autodesk, Inc. -> Autodesk)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Beschränkung <==== ACHTUNG
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Beschränkung <==== ACHTUNG
HKU\S-1-5-21-3272531189-96969960-2054236133-1001\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2598928 2024-03-08] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-3272531189-96969960-2054236133-1001\...\Run: [Discord] => C:\Users\Klausi\AppData\Local\Discord\Update.exe [1512104 2021-05-24] (Discord Inc. -> GitHub)
HKU\S-1-5-21-3272531189-96969960-2054236133-1001\...\Run: [com.squirrel.Teams.Teams] => C:\Users\Klausi\AppData\Local\Microsoft\Teams\Update.exe [2589872 2023-11-06] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
HKU\S-1-5-21-3272531189-96969960-2054236133-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4384104 2024-03-06] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-3272531189-96969960-2054236133-1001\...\Run: [LGHUB] => C:\Program Files\LGHUB\system_tray\lghub_system_tray.exe [46056704 2024-03-07] (Logitech Inc -> Logitech, Inc.)
HKU\S-1-5-21-3272531189-96969960-2054236133-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [37397480 2024-03-08] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-3272531189-96969960-2054236133-1001\...\Run: [Synapse3] => C:\Program Files (x86)\Razer\Synapse3\WPFUI\Framework\Razer Synapse 3 Host\Razer Synapse 3.exe [3572488 2024-01-10] (Razer USA Ltd. -> Razer Inc.)
HKU\S-1-5-21-3272531189-96969960-2054236133-1001\...\Run: [ISM] => [X]
HKU\S-1-5-21-3272531189-96969960-2054236133-1001\...\Run: [EADM] => C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALauncher.exe [2730600 2024-02-24] (Electronic Arts, Inc. -> Electronic Arts)
HKU\S-1-5-21-3272531189-96969960-2054236133-1001\...\Run: [MicrosoftEdgeAutoLaunch_A173C105C75622C361C8E9E571616ABD] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [4060608 2024-03-07] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-3272531189-96969960-2054236133-1001\...\Run: [RiotClient] => C:\Riot Games\Riot Client\RiotClientServices.exe [70921216 2024-02-21] (Riot Games, Inc. -> Riot Games, Inc.)
HKU\S-1-5-21-3272531189-96969960-2054236133-1001\...\Run: [CiscoMeetingDaemon] => C:\Users\Klausi\AppData\Local\WebEx\WebexHost.exe [8078432 2023-09-06] (Cisco WebEx LLC -> Cisco Webex LLC)
HKU\S-1-5-21-3272531189-96969960-2054236133-1001\...\Run: [Opera Browser Assistant] => C:\Users\Klausi\AppData\Local\Programs\Opera\assistant\browser_assistant.exe [3996064 2024-03-04] (Opera Norway AS -> Opera Software)
HKU\S-1-5-21-3272531189-96969960-2054236133-1001\...\Run: [Mathworks Service Host] => C:\Users\Klausi\AppData\Local\MathWorks\ServiceHost\v2024.2.1.0\bin\win64\MathWorksServiceHost.exe [551784 2024-03-06] (The MathWorks, Inc. -> The MathWorks Inc.)
HKU\S-1-5-21-3272531189-96969960-2054236133-1001\...\Policies\Explorer: []
HKU\S-1-5-18\...\Run: [Synapse3] => C:\Program Files (x86)\Razer\Synapse3\WPFUI\Framework\Razer Synapse 3 Host\Razer Synapse 3.exe [3572488 2024-01-10] (Razer USA Ltd. -> Razer Inc.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{28B89EEF-5107-0000-7102-CF3F3A09B77D}] -> msiexec /fus {28B89EEF-5107-0000-7102-CF3F3A09B77D}
HKLM\SOFTWARE\Policies\Microsoft\Edge: Beschränkung <==== ACHTUNG
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {9BB47A18-BC3D-417D-85E9-E119F57FD727} - System32\Tasks\MATLAB R2023b Startup Accelerator => C:\Program Files\MATLAB\R2023b\bin\win64\MATLABStartupAccelerator.exe [98816 2023-08-02] () [Datei ist nicht signiert]
Task: {C43B2DBF-5158-4DA8-9B4D-B3B308C6C05E} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28491856 2024-03-08] (Microsoft Corporation -> Microsoft Corporation)
Task: {85DC9D8A-40C6-4373-91F5-4B21FB0980D7} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28491856 2024-03-08] (Microsoft Corporation -> Microsoft Corporation)
Task: {DBD2D446-0641-4520-A004-5ADC47F86784} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [309320 2024-03-08] (Microsoft Corporation -> Microsoft Corporation)
Task: {7F1022EB-9312-4A75-8AD7-A19C665F0709} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [309320 2024-03-08] (Microsoft Corporation -> Microsoft Corporation)
Task: {490FC172-2BB5-4482-8743-678382549D8D} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [170024 2024-03-08] (Microsoft Corporation -> Microsoft Corporation)
Task: {070B2A54-FA02-426A-8F32-46C514258B9C} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [671648 2024-03-06] (Mozilla Corporation -> Mozilla Corporation) -> --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {C009A4E3-DB1B-4FF7-977D-54C51E230FC0} - System32\Tasks\Mozilla\Firefox Background Update S-1-5-21-3272531189-96969960-2054236133-1001 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [671648 2024-03-06] (Mozilla Corporation -> Mozilla Corporation) -> --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {BB3F80CA-C97C-4A07-8CFD-C5845A6666B7} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [34720 2024-03-06] (Mozilla Corporation -> Mozilla Foundation)
Task: {477E73FC-EF1F-444E-9A65-03AC6F98C8CA} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1003128 2022-03-15] (Nvidia Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {FDB11920-F4C8-4747-9FDC-35ECFA8AFCE8} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3342376 2023-01-27] (Nvidia Corporation -> NVIDIA Corporation)
Task: {66CEE172-45D8-40F9-9AB0-81835D0D1E09} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [649784 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {148C034E-84C6-4C62-B2A7-8FBB3D8C580E} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {E0414C16-0FF0-4C25-9981-F9D2D8BEB2FA} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {6EAEB1D3-B556-420B-BDF0-6D33D47DE9B3} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {47AD2F66-1EA1-456D-A7CC-E8DD2E9871A5} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {49B3DBA4-600E-48D8-9CD6-E048012410BF} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {9E96438B-C4CD-4BAB-B0B1-D562773BCD66} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {B547B222-D772-42A0-A98E-BA4E093ABC08} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4206512 2024-03-08] (Microsoft Corporation -> Microsoft Corporation)
Task: {E73C4590-2812-42AE-B9F5-B1D5D11E0C04} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-3272531189-96969960-2054236133-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4206512 2024-03-08] (Microsoft Corporation -> Microsoft Corporation)
Task: {256DDAD4-8586-4066-B655-30AE48EF1E30} - System32\Tasks\Opera scheduled assistant Autoupdate 1624450365 => C:\Users\Klausi\AppData\Local\Programs\Opera\launcher.exe [2358688 2024-02-22] (Opera Norway AS -> Opera Software) -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\Klausi\AppData\Local\Programs\Opera\assistant" $(Arg0)
Task: {DF1536B1-506D-464A-B643-CABB21FB6BF2} - System32\Tasks\Opera scheduled Autoupdate 1624450362 => C:\Users\Klausi\AppData\Local\Programs\Opera\launcher.exe [2358688 2024-02-22] (Opera Norway AS -> Opera Software)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
Task: C:\Windows\Tasks\MATLAB R2023b Startup Accelerator.job => C:\Program Files\MATLAB\R2023b\bin\win64\MATLABStartupAccelerator.exe C:\Program Files\MATLAB\R2023bDESKTOP-U80S1NR\Klausi.Sta
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [122128 2015-08-12] (Apple Inc. -> Apple Inc.)
Winsock: Catalog5-x64 08 C:\Program Files\Bonjour\mdnsNSP.dll [133392 2015-08-12] (Apple Inc. -> Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{2cfe2aaa-b836-4c96-a581-6083881a6b3f}: [DhcpNameServer] 192.168.115.4 192.168.115.3
Tcpip\..\Interfaces\{2cfe2aaa-b836-4c96-a581-6083881a6b3f}: [DhcpDomain] M*****
Tcpip\..\Interfaces\{befe3fcb-49e2-4aa8-89f3-24eff1d84200}: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{befe3fcb-49e2-4aa8-89f3-24eff1d84200}: [DhcpDomain] fritz.box
Tcpip\..\Interfaces\{befe3fcb-49e2-4aa8-89f3-24eff1d84200}\64259445A51224F687027353330302D405: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{befe3fcb-49e2-4aa8-89f3-24eff1d84200}\64259445A51224F687027353330302D405: [DhcpDomain] fritz.box
Tcpip\..\Interfaces\{befe3fcb-49e2-4aa8-89f3-24eff1d84200}\65F6461666F6E6560284F6D6563707F647: [DhcpNameServer] 10.79.179.130 10.79.181.130
Tcpip\..\Interfaces\{befe3fcb-49e2-4aa8-89f3-24eff1d84200}\65F6461666F6E656D2142303240373: [DhcpNameServer] 192.168.43.1
Tcpip\..\Interfaces\{befe3fcb-49e2-4aa8-89f3-24eff1d84200}\75C414E40275F6C647562737F24416D6D616E6E6: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{befe3fcb-49e2-4aa8-89f3-24eff1d84200}\75C414E40275F6C647562737F24416D6D616E6E6: [DhcpDomain] fritz.box
Tcpip\..\Interfaces\{befe3fcb-49e2-4aa8-89f3-24eff1d84200}\75F6D275C414E4: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{befe3fcb-49e2-4aa8-89f3-24eff1d84200}\75F6D275C414E4: [DhcpDomain] fritz.box
Tcpip\..\Interfaces\{d6c6bcef-4636-40bd-a289-e0b18716f4be}: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{d6c6bcef-4636-40bd-a289-e0b18716f4be}: [DhcpDomain] fritz.box
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\Klausi\AppData\Local\Microsoft\Edge\User Data\Default [2024-03-15]
Edge Extension: (Google Docs Offline) - C:\Users\Klausi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-03-04]
Edge Extension: (Edge relevant text changes) - C:\Users\Klausi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-01-25]
FireFox:
========
FF DefaultProfile: wr3m6c00.default
FF ProfilePath: C:\Users\Klausi\AppData\Roaming\Mozilla\Firefox\Profiles\wr3m6c00.default [2023-05-01]
FF ProfilePath: C:\Users\Klausi\AppData\Roaming\Mozilla\Firefox\Profiles\etf3yojv.default-release [2024-03-15]
FF Session Restore: Mozilla\Firefox\Profiles\etf3yojv.default-release -> ist aktiviert.
FF Extension: (Unpaywall) - C:\Users\Klausi\AppData\Roaming\Mozilla\Firefox\Profiles\etf3yojv.default-release\Extensions\{f209234a-76f0-4735-9920-eb62507a54cd}.xpi [2023-07-03]
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2024-02-03] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2024-02-03] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2024-02-03] (Microsoft Corporation -> Microsoft Corporation)
Opera:
=======
OPR DefaultProfile: Opera Stable
OPR Profile: C:\Users\Klausi\AppData\Roaming\Opera Software\Opera Stable [2024-03-06]
OPR DefaultSuggestURL: Opera Stable -> hxxps://www.google.com/complete/search?client=opera&q={searchTerms}&ie={inputEncoding}&oe={outputEncoding}
OPR Extension: (Grammatik- und Rechtschreibprüfung – LanguageTool) - C:\Users\Klausi\AppData\Roaming\Opera Software\Opera Stable\Extensions\aepeanpnbhpclokahahihakiphmfoeco [2023-09-20]
OPR Extension: (Rich Hints Agent) - C:\Users\Klausi\AppData\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk [2023-10-26]
OPR Extension: (Return YouTube Dislike) - C:\Users\Klausi\AppData\Roaming\Opera Software\Opera Stable\Extensions\gebbhagfogifgggkldgodflihgfeippi [2023-10-26]
OPR Extension: (Google Docs Offline) - C:\Users\Klausi\AppData\Roaming\Opera Software\Opera Stable\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-08-28]
OPR Extension: (Opera Wallet) - C:\Users\Klausi\AppData\Roaming\Opera Software\Opera Stable\Extensions\gojhcdgcpbpfigcaejpfhfegekdgiblk [2023-09-15]
OPR Extension: (Aria) - C:\Users\Klausi\AppData\Roaming\Opera Software\Opera Stable\Extensions\igpdmclhhlcpoindmhkhillbfhdgoegm [2023-10-26]
OPR Extension: (Amazon Assistant Promotion) - C:\Users\Klausi\AppData\Roaming\Opera Software\Opera Stable\Extensions\kbmoiomgmchbpihhdpabemajcbjpcijk [2021-08-19]
OPR Extension: (Cashback Assistant) - C:\Users\Klausi\AppData\Roaming\Opera Software\Opera Stable\Extensions\ompjkhnkeoicimmaehlcmgmpghobbjoj [2023-11-08]
==================== Dienste (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R2 AdskLicensingService; C:\Program Files (x86)\Common Files\Autodesk Shared\AdskLicensing\Current\AdskLicensingService\AdskLicensingService.exe [13915208 2022-03-24] (Autodesk, Inc. -> Autodesk)
R2 Autodesk Access Service Host; C:\Program Files\Autodesk\AdODIS\V1\Setup\AdskAccessServiceHost.exe [11630368 2024-02-07] (Autodesk, Inc. -> Autodesk, Inc.)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [9880840 2023-01-06] (BattlEye Innovations e.K. -> )
R2 CCDCHUService; C:\Windows\System32\DriverStore\FileRepository\acpi0002.inf_amd64_200df7168eb1e6c5\DCHUService.exe [80664 2021-04-27] (Microsoft Windows Hardware Compatibility Publisher -> )
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [14097992 2024-03-08] (Microsoft Corporation -> Microsoft Corporation)
S3 EABackgroundService; C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe [12094568 2024-02-24] (Electronic Arts, Inc. -> Electronic Arts)
S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [934368 2022-03-03] (Epic Games Inc. -> Epic Games, Inc.)
S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\24.025.0204.0003\FileSyncHelper.exe [3516848 2024-03-08] (Microsoft Corporation -> Microsoft Corporation)
R2 LGHUBUpdaterService; C:\Program Files\LGHUB\lghub_updater.exe [10994432 2024-03-07] (Logitech Inc -> Logitech, Inc.)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [9423680 2024-03-15] (Malwarebytes Inc. -> Malwarebytes)
S3 MBVpnTunnelService; C:\Program Files\Malwarebytes\Anti-Malware\MBVpnTunnelService.exe [3073888 2024-03-15] (Malwarebytes Inc. -> Malwarebytes)
S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\24.025.0204.0003\OneDriveUpdaterService.exe [3853744 2024-03-08] (Microsoft Corporation -> Microsoft Corporation)
R2 Razer Game Manager Service; C:\Program Files (x86)\Razer\Razer Services\GMS\GameManagerService.exe [256264 2023-02-10] (Razer USA Ltd. -> Razer Inc)
R2 Razer Synapse Service; C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe [297736 2024-01-09] (Razer USA Ltd. -> Razer Inc.)
R2 RzActionSvc; C:\Program Files (x86)\Razer\Razer Services\Razer Central\RazerCentralService.exe [538424 2023-11-09] (Razer USA Ltd. -> Razer Inc.)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [522184 2024-03-13] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 ucldr_battlegrounds_gl; C:\Program Files\Common Files\Wellbia.com\ucldr_battlegrounds_gl.exe [5963304 2023-01-07] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.)
S3 vgc; C:\Program Files\Riot Vanguard\vgc.exe [9623432 2023-11-28] (Riot Games, Inc. -> Riot Games, Inc.)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24020.7-0\NisSrv.exe [3191272 2024-03-13] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24020.7-0\MsMpEng.exe [133688 2024-03-13] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 zksvc; C:\Program Files\Common Files\PUBG\zksvc.exe [10513248 2023-01-20] (KRAFTON, Inc. -> KRAFTON, Inc)
R2 NVDisplay.ContainerLocalSystem; C:\Windows\System32\DriverStore\FileRepository\nvcvi.inf_amd64_34f6ccb91b991276\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\Windows\System32\DriverStore\FileRepository\nvcvi.inf_amd64_34f6ccb91b991276\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
S3 Rockstar Service; "C:\Program Files\Rockstar Games\Launcher\RockstarService.exe" [X]
===================== Treiber (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R3 AcpiBridge; C:\Windows\System32\drivers\AcpiBridge.sys [66504 2020-07-10] (WDKTestCert stone.cheng,131352419880621518 -> Insyde Software Corporation)
R3 ANXUcmCxCD; C:\Windows\System32\drivers\ANXUcmCxCD.sys [101592 2020-06-30] (Analogix Semiconductor, Inc. -> )
S3 AppleKmdfFilter; C:\Windows\System32\drivers\AppleKmdfFilter.sys [20032 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 AppleLowerFilter; C:\Windows\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
R3 AX88179A; C:\Windows\System32\DriverStore\FileRepository\axusbeth.inf_amd64_88fb34fbbab9fd2d\AxUsbEth.sys [153472 2023-12-20] (WDKTestCert AndyChen,132652806163117881 -> ASIX Electronics Corp.)
S3 CH341SER_A64; C:\Windows\System32\Drivers\CH341S64.SYS [78328 2021-08-25] (Microsoft Windows Hardware Compatibility Publisher -> www.winchiphead.com)
S3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus2.sys [167440 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R1 EneTechIo; C:\Windows\system32\drivers\ene.sys [20992 2020-05-12] (Microsoft Windows Hardware Compatibility Publisher -> )
R1 ESProtectionDriver; C:\Windows\system32\drivers\mbae64.sys [158640 2024-03-15] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S3 gdrv3; C:\Windows\gdrv3.sys [36352 2021-06-25] (GIGA-BYTE Technology Co., Ltd. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
S3 libusb0; C:\Windows\system32\DRIVERS\libusb0.sys [52456 2013-06-21] (福建利利普光电科技有限公司 -> hxxp://libusb-win32.sourceforge.net)
R3 logi_joy_bus_enum; C:\Windows\system32\drivers\logi_joy_bus_enum.sys [44880 2022-09-23] (Logitech Inc -> Logitech)
R3 logi_joy_vir_hid; C:\Windows\system32\drivers\logi_joy_vir_hid.sys [32080 2022-09-23] (Logitech Inc -> Logitech)
R3 logi_joy_xlcore; C:\Windows\system32\drivers\logi_joy_xlcore.sys [73040 2022-09-23] (Logitech Inc -> Logitech)
R2 mbamchameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [223296 2024-03-15] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S0 MbamElam; C:\Windows\System32\DRIVERS\MbamElam.sys [21480 2024-03-15] (Microsoft Windows Early Launch Anti-Malware Publisher -> Malwarebytes)
R3 MBAMFarflt; C:\Windows\System32\DRIVERS\farflt.sys [200104 2024-03-15] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMProtection; C:\Windows\system32\DRIVERS\mbam.sys [78400 2024-03-15] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [239576 2024-03-15] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMWebProtection; C:\Windows\system32\DRIVERS\mwac.sys [188784 2024-03-15] (Malwarebytes Inc. -> Malwarebytes)
R1 MSIO; C:\Windows\system32\drivers\MsIo64.sys [17424 2021-06-25] (Microsoft Windows Hardware Compatibility Publisher -> MICSYS Technology Co., LTd)
R3 NvModuleTracker; C:\Windows\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_0c1cc60a4b422185\NvModuleTracker.sys [45656 2022-07-14] (Nvidia Corporation -> NVIDIA Corporation)
R3 nvpcf; C:\Windows\System32\drivers\nvpcf.sys [238704 2023-09-13] (NVIDIA Corporation -> NVIDIA Corporation)
S3 Pcan_usb; C:\Windows\System32\drivers\PCAN_USB.sys [344064 2021-04-08] (Microsoft Windows Hardware Compatibility Publisher -> PEAK-System Technik GmbH, Darmstadt, Germany)
R3 RzCommon; C:\Windows\System32\drivers\RzCommon.sys [64168 2022-08-18] (Razer USA Ltd. -> Razer Inc)
R3 RzDev_0082; C:\Windows\System32\drivers\RzDev_0082.sys [56200 2020-08-24] (Razer USA Ltd. -> Razer Inc)
R3 RzDev_0083; C:\Windows\System32\drivers\RzDev_0083.sys [54152 2020-08-24] (Razer USA Ltd. -> Razer Inc)
S3 ssudmdm; C:\Windows\system32\DRIVERS\ssudmdm.sys [174112 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 ss_conn_usb_driver2; C:\Windows\System32\Drivers\ss_conn_usb_driver2.sys [50720 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R1 vgk; C:\Program Files\Riot Vanguard\vgk.sys [22035200 2023-11-27] (Riot Games, Inc. -> Riot Games, Inc.)
R3 WdBoot; C:\Windows\system32\drivers\wd\WdBoot.sys [20928 2024-03-13] (Microsoft Windows Early Launch Anti-Malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\wd\WdFilter.sys [603416 2024-03-13] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [105752 2024-03-13] (Microsoft Windows -> Microsoft Corporation)
S3 xhunter1; C:\Windows\xhunter1.sys [1432232 2023-01-20] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.)
S3 GVCIDrv; \??\C:\Program Files (x86)\GIGABYTE\RGBFusion\GVCIDrv64.sys [X]
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Ein Monat (erstellte) (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2024-03-15 22:38 - 2024-03-15 22:39 - 000033776 _____ C:\Users\Klausi\Downloads\FRST.txt
2024-03-15 22:38 - 2024-03-15 22:39 - 000000000 ____D C:\FRST
2024-03-15 22:34 - 2024-03-15 22:38 - 002390528 _____ (Farbar) C:\Users\Klausi\Downloads\FRST64.exe
2024-03-15 22:26 - 2024-03-15 22:36 - 000000000 ____D C:\Users\Klausi\AppData\Local\Malwarebytes
2024-03-15 22:26 - 2024-03-15 22:26 - 000188784 _____ (Malwarebytes) C:\Windows\system32\Drivers\mwac.sys
2024-03-15 22:26 - 2024-03-15 22:26 - 000002093 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2024-03-15 22:26 - 2024-03-15 22:26 - 000000000 ____D C:\ProgramData\Malwarebytes
2024-03-15 22:26 - 2024-03-15 22:26 - 000000000 ____D C:\Program Files\Malwarebytes
2024-03-15 22:24 - 2024-03-15 22:24 - 002585496 _____ (Malwarebytes) C:\Users\Klausi\Downloads\MBSetup(1).exe
2024-03-15 09:16 - 2024-03-15 09:16 - 002585496 _____ (Malwarebytes) C:\Users\Klausi\Downloads\MBSetup.exe
2024-03-15 08:05 - 2024-03-15 08:05 - 016859043 _____ C:\Users\Klausi\Downloads\Dissertation_Clappier_GSaME_2021-1.pdf
2024-03-13 20:18 - 2024-03-13 20:18 - 011003403 _____ C:\Users\Klausi\Downloads\BPM_Modelling.pdf
2024-03-13 20:18 - 2024-03-13 20:18 - 003388203 _____ C:\Users\Klausi\Downloads\E-NVH_Analysis.pdf
2024-03-13 20:18 - 2024-03-13 20:18 - 001513099 _____ C:\Users\Klausi\Downloads\Force_Analysis.pdf
2024-03-13 19:57 - 2024-03-13 19:57 - 016859043 _____ C:\Users\Klausi\Downloads\Dissertation_Clappier_GSaME_2021.pdf
2024-03-13 17:48 - 2024-03-13 17:48 - 000022715 _____ C:\Users\Klausi\Downloads\Forces_Dynamisch_02_0_2000rpm.xlsx
2024-03-13 17:38 - 2024-03-13 17:38 - 000022809 _____ C:\Users\Klausi\Downloads\Forces_Statisch_02_0_2000rpm.xlsx
2024-03-13 16:10 - 2024-03-13 16:10 - 000019530 _____ C:\Windows\SysWOW64\IntegratedServicesRegionPolicySet.json
2024-03-13 16:10 - 2024-03-13 16:10 - 000019530 _____ C:\Windows\system32\IntegratedServicesRegionPolicySet.json
2024-03-13 16:06 - 2024-03-13 16:06 - 000000000 ___HD C:\$WinREAgent
2024-03-09 16:55 - 2024-03-11 19:42 - 000000000 ____D C:\Users\Klausi\Desktop\Konstruktion Lagerexzenter
2024-03-08 13:23 - 2024-03-08 13:23 - 000933992 _____ C:\Users\Klausi\Downloads\Static_Variation.csv
2024-03-08 13:20 - 2024-03-08 13:20 - 000023329 _____ C:\Users\Klausi\Desktop\Lüftersteuerung Papa.sxsch
2024-03-08 07:47 - 2024-03-08 07:47 - 000001423 _____ C:\Users\Klausi\Downloads\LM317.sub
2024-03-08 07:42 - 2024-03-08 07:42 - 000000000 ____D C:\Program Files\Common Files\DESIGNER
2024-03-08 07:32 - 2024-03-08 07:32 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logi
2024-03-07 18:48 - 2024-03-07 18:48 - 000363627 _____ C:\Users\Klausi\Downloads\applsci-09-02116-1.pdf
2024-03-07 18:44 - 2024-03-11 19:41 - 000000000 ____D C:\Users\Klausi\Desktop\Literatur_EXZENTRIZITAET
2024-03-07 17:33 - 2024-03-07 17:33 - 027726655 _____ C:\Users\Klausi\Downloads\Eccentricity fault diagnosis in a permanent magnet synchronous motor under nonstationary speed conditions.pdf
2024-03-07 17:33 - 2024-03-07 17:33 - 001347137 _____ C:\Users\Klausi\Downloads\Advanced_Eccentricity_Fault_Recognition_in_Permanent_Magnet_Synchronous_Motors_Using_Stator_Current_Signature_Analysis.pdf
2024-03-07 17:32 - 2024-03-07 17:32 - 002063144 _____ C:\Users\Klausi\Downloads\Impact_of_rotor_eccentricity_on_electromagnetic_vi-1.pdf
2024-03-07 17:28 - 2024-03-07 17:37 - 1250613880 _____ (Hexagon) C:\Users\Klausi\Downloads\windows-vs143-x86-64_Actran_Student_Edition_2023.2_setup.exe
2024-03-07 17:28 - 2024-03-07 17:34 - 2800960848 _____ (Hexagon Manufacturing Intelligence, Inc.) C:\Users\Klausi\Downloads\adams_se_2023.1_windows.exe
2024-03-06 20:14 - 2024-03-06 20:14 - 006847423 _____ C:\Users\Klausi\Downloads\I001351961Abschlussarbeit.pdf
2024-03-06 16:53 - 2024-03-06 16:53 - 000000000 ____D C:\Users\Klausi\AppData\Local\ASP.NET
2024-03-06 16:52 - 2024-03-06 16:52 - 000000000 ____D C:\Users\Klausi\AppData\Roaming\Discovery
2024-03-06 16:51 - 2024-03-06 16:53 - 000000000 ____D C:\Users\Klausi\AppData\Local\Ansys_Inc
2024-03-06 15:25 - 2024-03-08 07:33 - 000000000 ____D C:\Program Files\Mozilla Firefox
2024-03-05 17:01 - 2024-03-05 17:01 - 000000000 ____D C:\Users\Klausi\AppData\Local\Ansys, Inc
2024-03-05 17:00 - 2024-03-05 17:00 - 028010300 _____ C:\Users\Klausi\Downloads\182y0030.stp
2024-03-04 11:25 - 2024-03-04 11:25 - 005821581 _____ C:\Users\Klausi\Downloads\electronics-12-04890-1.pdf
2024-03-04 11:24 - 2024-03-04 11:24 - 005821581 _____ C:\Users\Klausi\Downloads\electronics-12-04890.pdf
2024-03-04 07:56 - 2024-03-04 07:56 - 001414564 _____ C:\Users\Klausi\Downloads\Masterthesis_1.pdf
2024-03-03 12:42 - 2024-03-15 08:40 - 000000000 ____D C:\Users\Klausi\AppData\Local\Deployment
2024-03-03 12:42 - 2024-03-03 12:42 - 000006898 _____ C:\Users\Klausi\Downloads\Report_92611040419118737.xlsx
2024-03-03 12:42 - 2024-03-03 12:42 - 000000000 ____D C:\Users\Klausi\AppData\Local\Apps\2.0
2024-03-03 11:11 - 2024-03-03 11:11 - 000000000 ____D C:\ProgramData\Ansys
2024-03-03 11:08 - 2024-03-03 11:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ansys 2024 R1
2024-03-03 10:57 - 2024-03-03 10:57 - 000000000 ____D C:\Program Files (x86)\dotnet
2024-03-03 10:50 - 2024-03-03 10:50 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Siemens NX Student Edition 2312
2024-03-03 10:45 - 2024-03-03 10:45 - 000000000 ____D C:\Program Files\Siemens
2024-03-03 10:11 - 2024-03-03 10:11 - 000015395 _____ C:\Users\Klausi\Downloads\mingw.mlpkginstall
2024-03-03 10:09 - 2024-03-03 10:09 - 000003848 _____ C:\Windows\system32\Tasks\MATLAB R2023b Startup Accelerator
2024-03-03 10:09 - 2024-03-03 10:09 - 000001360 _____ C:\Users\Public\Desktop\MATLAB R2023b.lnk
2024-03-03 10:09 - 2024-03-03 10:09 - 000000578 _____ C:\Windows\Tasks\MATLAB R2023b Startup Accelerator.job
2024-03-03 10:09 - 2024-03-03 10:09 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MATLAB R2023b
2024-03-03 10:09 - 2024-03-03 10:09 - 000000000 ____D C:\ProgramData\MathWorks
2024-03-03 09:44 - 2024-03-03 09:44 - 243181928 _____ C:\Users\Klausi\Downloads\matlab_R2023b_win64.exe
2024-03-01 09:15 - 2024-03-01 09:15 - 000845863 _____ C:\Users\Klausi\Downloads\revii_bog,+1+web.pdf
2024-03-01 08:50 - 2024-03-01 08:50 - 006430840 _____ C:\Users\Klausi\Downloads\sensors-21-03608-v2.pdf
2024-03-01 08:45 - 2024-03-01 08:45 - 002424573 _____ C:\Users\Klausi\Downloads\10.1007_s43236-020-00204-6.pdf
2024-03-01 08:44 - 2024-03-01 08:44 - 002063144 _____ C:\Users\Klausi\Downloads\Impact_of_rotor_eccentricity_on_electromagnetic_vi.pdf
2024-03-01 08:37 - 2024-03-01 08:37 - 046557998 _____ C:\Users\Klausi\Downloads\sensors-21-06579-v2.pdf
2024-03-01 08:36 - 2024-03-01 08:36 - 009666696 _____ C:\Users\Klausi\Downloads\energies-14-00712.pdf
2024-03-01 08:35 - 2024-03-01 08:35 - 002441669 _____ C:\Users\Klausi\Downloads\Effectiveness_Analysis_of_Rolling_Bearing_Fault_De.pdf
2024-02-29 17:18 - 2024-02-29 17:18 - 009653303 _____ C:\Users\Klausi\Downloads\energies-16-03198.pdf
2024-02-29 17:17 - 2024-02-29 17:17 - 007038154 _____ C:\Users\Klausi\Downloads\electronics-11-01748-v2-1.pdf
2024-02-23 15:29 - 2024-02-23 15:29 - 001238504 _____ C:\Users\Klausi\Downloads\Masterthesis_12.pdf
2024-02-23 08:29 - 2024-02-23 08:29 - 000001743 _____ C:\Users\Klausi\Downloads\S2405896315018571.bib
2024-02-21 10:07 - 2024-02-21 10:07 - 002204419 _____ C:\Users\Klausi\Downloads\Zusammenfassung-Literaturüberblick_v2.pdf
2024-02-21 09:50 - 2024-02-21 09:50 - 000056744 _____ C:\Users\Klausi\Documents\Ausrichtung Thesis.pdf
2024-02-19 17:13 - 2024-02-19 17:13 - 000408291 _____ C:\Users\Klausi\Downloads\Zusammenfassung-Literaturüberblick_v1.drawio.pdf
2024-02-19 17:13 - 2024-02-19 17:13 - 000119278 _____ C:\Users\Klausi\Downloads\Zusammenfassung-Literaturüberblick_v1.drawio
2024-02-18 10:45 - 2024-02-18 10:45 - 003437661 _____ C:\Users\Klausi\Downloads\iCE40LPHXFamilyDataSheet.pdf
2024-02-18 09:57 - 2024-02-18 09:57 - 000037816 _____ C:\Users\Klausi\Downloads\CV180X-Interrupt-v1.xlsx
2024-02-17 17:12 - 2024-02-17 17:12 - 000262032 _____ C:\Users\Klausi\Downloads\Kritischer Pfad + Turtles 1.pdf
2024-02-16 20:00 - 2024-02-16 20:00 - 000014079 _____ C:\Users\Klausi\Downloads\PMSM-Fehlerübersicht.drawio
2024-02-15 18:34 - 2024-02-15 18:34 - 001858639 _____ C:\Users\Klausi\Downloads\A_smart_diagnosis_system_based_on_automatic_recogn.pdf
2024-02-15 18:21 - 2024-02-15 18:21 - 003082545 _____ C:\Users\Klausi\Downloads\Mortazavizadeh432013PSIJ4837_1.pdf
2024-02-15 18:03 - 2024-02-15 18:03 - 002344651 _____ C:\Users\Klausi\Downloads\FSU_migr_etd-1186.pdf
2024-02-14 21:06 - 2024-02-14 21:06 - 007291350 _____ C:\Users\Klausi\Downloads\electronics-11-01748-v2_edited.pdf
2024-02-14 19:07 - 2024-02-14 19:07 - 007038154 _____ C:\Users\Klausi\Downloads\electronics-11-01748-v2.pdf
==================== Ein Monat (geänderte) ==================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2024-03-15 22:37 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-03-15 22:26 - 2019-12-07 10:14 - 000000000 ___HD C:\Windows\ELAMBKUP
2024-03-15 22:26 - 2019-12-07 10:13 - 000000000 ____D C:\Windows\INF
2024-03-15 22:24 - 2021-06-23 13:00 - 000000000 ____D C:\Users\Klausi\AppData\Local\Packages
2024-03-15 22:24 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2024-03-15 22:24 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\AppReadiness
2024-03-15 22:15 - 2021-06-23 13:00 - 000000000 ____D C:\Users\Klausi\AppData\Local\D3DSCache
2024-03-15 20:44 - 2021-06-23 13:02 - 001723356 _____ C:\Windows\system32\PerfStringBackup.INI
2024-03-15 20:44 - 2019-12-07 15:51 - 000745104 _____ C:\Windows\system32\perfh007.dat
2024-03-15 20:44 - 2019-12-07 15:51 - 000150490 _____ C:\Windows\system32\perfc007.dat
2024-03-15 20:39 - 2021-06-24 09:13 - 000000001 _____ C:\Windows\vgkbootstatus.dat
2024-03-15 20:37 - 2022-10-05 20:12 - 000000000 ____D C:\ProgramData\boost_interprocess
2024-03-15 20:37 - 2022-08-31 12:19 - 000000000 ____D C:\Users\Klausi\AppData\Local\LGHUB
2024-03-15 20:37 - 2021-06-23 18:57 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2024-03-15 20:37 - 2021-06-23 13:19 - 000000000 ____D C:\ProgramData\NVIDIA
2024-03-15 20:37 - 2021-06-23 13:11 - 000000000 __SHD C:\Users\Klausi\IntelGraphicsProfiles
2024-03-15 20:37 - 2021-06-23 13:02 - 000000000 ____D C:\Intel
2024-03-15 20:37 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\ServiceState
2024-03-15 20:36 - 2022-08-09 10:15 - 000000000 ____D C:\Program Files (x86)\Steam
2024-03-15 20:36 - 2021-06-23 18:57 - 000008192 ___SH C:\DumpStack.log.tmp
2024-03-15 20:36 - 2021-06-23 13:14 - 000000000 ____D C:\Users\Klausi\AppData\Roaming\discord
2024-03-15 19:50 - 2021-06-23 13:14 - 000000000 ____D C:\Users\Klausi\AppData\Local\Discord
2024-03-15 19:14 - 2021-06-28 18:35 - 000000000 ____D C:\Users\Klausi\AppData\Roaming\Microsoft\Word
2024-03-15 18:49 - 2021-06-23 18:57 - 000000000 ____D C:\Windows\system32\SleepStudy
2024-03-15 11:05 - 2021-08-09 07:01 - 000000000 ____D C:\Users\Klausi\AppData\Roaming\Microsoft\Excel
2024-03-15 10:03 - 2021-06-24 14:37 - 000000000 ____D C:\Users\Klausi\AppData\Local\Autodesk
2024-03-15 09:59 - 2021-06-24 15:21 - 000000000 ____D C:\Users\Klausi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Autodesk
2024-03-15 08:42 - 2022-08-31 18:14 - 000000000 ____D C:\Users\Klausi\Desktop\Spiele
2024-03-15 08:41 - 2023-10-09 08:38 - 000000000 ____D C:\Users\Klausi\Desktop\Mail-Entwürfe
2024-03-15 08:41 - 2023-10-05 17:15 - 000000000 ____D C:\Users\Klausi\Desktop\Arbeit
2024-03-15 08:04 - 2019-12-07 10:03 - 001048576 _____ C:\Windows\system32\config\BBI
2024-03-13 21:49 - 2022-03-03 09:27 - 000000000 ____D C:\Users\Klausi\AppData\Roaming\draw.io
2024-03-13 21:14 - 2023-11-29 15:44 - 000000000 ____D C:\Users\Klausi\Desktop\Vermieter
2024-03-13 16:13 - 2021-06-23 18:57 - 000608808 _____ C:\Windows\system32\FNTCACHE.DAT
2024-03-13 16:12 - 2019-12-07 15:54 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2024-03-13 16:12 - 2019-12-07 10:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2024-03-13 16:12 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\Dism
2024-03-13 16:12 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SystemResources
2024-03-13 16:12 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\oobe
2024-03-13 16:12 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\Dism
2024-03-13 16:12 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\ShellExperiences
2024-03-13 16:12 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\PolicyDefinitions
2024-03-13 16:12 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\bcastdvr
2024-03-13 16:12 - 2019-12-07 10:03 - 000000000 ____D C:\Windows\servicing
2024-03-13 16:12 - 2019-12-07 10:03 - 000000000 ____D C:\Windows\CbsTemp
2024-03-13 16:10 - 2021-06-23 12:59 - 000000000 ____D C:\Users\Klausi
2024-03-13 16:09 - 2021-06-23 19:00 - 003017216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll
2024-03-13 16:04 - 2021-06-23 13:02 - 000000000 ____D C:\Windows\system32\MRT
2024-03-13 16:02 - 2021-06-23 13:02 - 190470136 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2024-03-13 16:00 - 2021-06-23 18:57 - 000000000 ____D C:\Windows\system32\Drivers\wd
2024-03-12 18:07 - 2022-08-09 07:12 - 000000000 ____D C:\Users\Klausi\AppData\Roaming\Ansys
2024-03-12 17:21 - 2022-09-22 15:59 - 000000000 ____D C:\Users\Klausi\AppData\Roaming\SpaceClaim
2024-03-12 15:51 - 2023-05-24 14:47 - 000000000 ____D C:\Program Files\RUXIM
2024-03-10 09:45 - 2023-07-20 21:56 - 000000000 ____D C:\Users\Klausi\AppData\Local\SpaceClaim
2024-03-09 18:58 - 2021-06-23 18:57 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2024-03-09 08:56 - 2021-09-09 07:17 - 000000000 ____D C:\Program Files\Microsoft OneDrive
2024-03-08 12:19 - 2021-12-13 07:01 - 000003588 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-3272531189-96969960-2054236133-1001
2024-03-08 12:19 - 2021-06-24 15:41 - 000003194 _____ C:\Windows\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2024-03-08 12:19 - 2021-06-24 15:41 - 000002148 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2024-03-08 08:45 - 2024-01-04 07:44 - 000000000 ____D C:\Users\Klausi\Desktop\Masterthesis 2024
2024-03-08 08:23 - 2023-12-06 07:13 - 000000000 ____D C:\Users\Klausi\Documents\MPLAB Mindi
2024-03-08 07:41 - 2021-06-24 15:38 - 000000000 ____D C:\Program Files\Microsoft Office
2024-03-08 07:33 - 2023-08-27 08:31 - 000000000 ____D C:\Users\Klausi\AppData\Roaming\G HUB
2024-03-08 07:33 - 2023-05-01 10:50 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2024-03-08 07:32 - 2022-08-31 12:18 - 000000000 ____D C:\Program Files\LGHUB
2024-03-07 16:45 - 2023-05-01 10:50 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2024-03-06 20:33 - 2021-07-28 16:42 - 000000000 ____D C:\Users\Klausi\AppData\Local\Siemens
2024-03-06 16:53 - 2022-09-22 15:59 - 000000000 ____D C:\Users\Klausi\AppData\Local\Ansys
2024-03-06 14:56 - 2021-06-23 13:12 - 000004470 _____ C:\Windows\system32\Tasks\Opera scheduled assistant Autoupdate 1624450365
2024-03-06 14:52 - 2021-06-23 18:57 - 000003756 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2024-03-06 14:52 - 2021-06-23 18:57 - 000003632 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2024-03-04 07:09 - 2022-04-02 14:18 - 000000000 ____D C:\ProgramData\mwboost_interprocess
2024-03-03 10:58 - 2021-06-23 13:19 - 000000000 ____D C:\ProgramData\Package Cache
2024-03-03 10:57 - 2021-06-24 14:41 - 000000000 ____D C:\Program Files\dotnet
2024-03-03 10:11 - 2022-03-30 12:52 - 000000000 ____D C:\Users\Klausi\AppData\Local\MathWorks
2024-03-03 10:11 - 2021-06-24 16:16 - 000000000 ____D C:\Users\Klausi\AppData\Roaming\MathWorks
2024-03-03 10:11 - 2021-06-23 13:00 - 000000000 ___SD C:\Users\Klausi\AppData\Roaming\Microsoft\Credentials
2024-03-03 09:46 - 2021-06-24 15:42 - 000000000 ____D C:\Program Files\MATLAB
2024-03-02 19:34 - 2022-09-22 15:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ansys 2022 R2
2024-03-02 19:33 - 2021-06-24 15:33 - 000000000 ____D C:\Users\Klausi\AppData\Local\Package Cache
2024-03-02 19:26 - 2022-09-20 14:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Claro Software
2024-03-02 19:26 - 2022-09-20 14:28 - 000000000 ____D C:\Program Files (x86)\Claro Software
2024-03-02 19:24 - 2021-06-30 10:55 - 000000000 ____D C:\Users\Klausi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2024-03-02 19:22 - 2021-09-28 14:03 - 000000000 ____D C:\Users\Klausi\AppData\Roaming\cura
2024-03-02 19:22 - 2021-09-28 14:03 - 000000000 ____D C:\Users\Klausi\AppData\Local\cura
2024-03-02 19:19 - 2021-09-17 06:55 - 000000000 ____D C:\Program Files\KiCad
2024-03-02 19:18 - 2023-07-24 16:23 - 000000000 ____D C:\Program Files\Inkscape
2024-02-29 15:01 - 2023-11-17 14:39 - 000001408 _____ C:\Users\Klausi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Opera-Browser.lnk
2024-02-29 15:01 - 2021-06-23 13:12 - 000004236 _____ C:\Windows\system32\Tasks\Opera scheduled Autoupdate 1624450362
2024-02-27 18:12 - 2021-06-24 15:29 - 000000000 ____D C:\Users\Klausi\AppData\Roaming\Luxion
2024-02-24 17:10 - 2022-11-26 13:55 - 000000000 ____D C:\ProgramData\EA Desktop
2024-02-24 14:27 - 2021-12-06 11:57 - 000007640 _____ C:\Users\Klausi\AppData\Local\Resmon.ResmonCfg
2024-02-21 11:13 - 2024-01-19 15:31 - 000005049 _____ C:\Users\Klausi\.ganttproject
2024-02-21 11:03 - 2024-01-10 10:46 - 000000000 ____D C:\Users\Klausi\AppData\Local\CiscoSpark
2024-02-21 06:48 - 2023-05-01 10:50 - 000000000 ____D C:\Windows\system32\Tasks\Mozilla
2024-02-17 09:54 - 2024-01-26 19:31 - 000025560 _____ C:\Users\Klausi\Desktop\Gantt-Diagramm-Masterthesis_v3.gan
2024-02-16 18:57 - 2024-01-19 13:04 - 000000000 ____D C:\Users\Klausi\.ganttproject.d
2024-02-15 17:17 - 2019-12-07 10:03 - 000032768 _____ C:\Windows\system32\config\ELAM
2024-02-14 21:07 - 2019-12-07 15:54 - 000000000 ___SD C:\Windows\system32\AppV
2024-02-14 21:07 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\WinMetadata
2024-02-14 21:07 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\setup
2024-02-14 21:07 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\WinMetadata
2024-02-14 21:07 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\setup
2024-02-14 21:07 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\SecureBootUpdates
2024-02-14 21:07 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\migwiz
2024-02-14 21:07 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\appraiser
2024-02-14 21:07 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\ShellComponents
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse ========
2021-07-07 10:15 - 2023-12-12 17:31 - 000005086 _____ () C:\Users\Klausi\AppData\Roaming\LTspiceXVII.ini
2021-10-04 14:23 - 2021-10-04 14:23 - 000000244 _____ () C:\Users\Klausi\AppData\Roaming\noname.pro
2023-09-25 11:53 - 2023-09-25 11:53 - 000009762 _____ () C:\Users\Klausi\AppData\Local\recently-used.xbel
2021-12-06 11:57 - 2024-02-24 14:27 - 000007640 _____ () C:\Users\Klausi\AppData\Local\Resmon.ResmonCfg
==================== SigCheck ============================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
==================== Ende von FRST.txt ========================
|
| Themen zu Microsoft Defender hat Trojan:Script/Phonzy entdeckt |
| administrator, bonjour, defender, entfernen, firefox, geforce, google, internet, mozilla, nvidia, opera, performance, phonzy, prozesse, realtek, registry, rundll, scan, services.exe, software, svchost.exe, system, trojan, updates, virus, windows, windows defender |
Baum-Darstellung