| |
| |||||||
Log-Analyse und Auswertung: Win10 Pro, 64 Bit, v 22h22: Trojaner Wacatac.h!mlWindows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML |
24.10.2023, 16:04
| #1 |
| |  Win10 Pro, 64 Bit, v 22h22: Trojaner Wacatac.h!ml Mahlzeit. Ich habe seit einiger Zeit (erste Meldung am 15.10.2023 laut WEindows) Probleme mit oben genannten Trojaner. Bisherige Versuche den zu entfernen schlugen Fehl. Versucht hab ich es mit "Combo Cleaner". Der hat gar nichts gefunden. Der Windows Virenscanner hilft bei dem Ding auch nicht wirklich, da die Meldungen immer wieder kommen. Gibt es die Möglichkeit die Logfile vom Win Virenscanner hochzuladen? könnte ich machen wenn es hilft... Ansonsten habe ich noch nichts unternommen. Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 06-10-2023
durchgeführt von ************* (Administrator) auf NILS (ASUS System Product Name) (24-10-2023 16:43:26)
Gestartet von C:\Users\*************\Desktop\FRST64 (1).exe
Geladene Profile: ************* & Administrator
Plattform: Microsoft Windows 10 Pro Version 22H2 19045.3570 (X64) Sprache: Deutsch (Deutschland)
Standard-Browser: Opera
Start-Modus: Normal
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
(A-Volute SAS -> ASUSTeKcomputer.Inc) C:\Program Files\ASUSTeKcomputer.Inc\nhAsusStrix\UserInterface\nhAsusStrixUILauncher.exe
(Brother Industries, Ltd.) [Datei ist nicht signiert] C:\Program Files (x86)\Brother\SoftwareUpdateNotification\SoftwareUpdateNotificationService.exe
(C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DipAwayMode.exe ->) (ASUSTeK COMPUTER INC. -> ) C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\SetThreadAffinityMaskX64.exe
(C:\Program Files (x86)\ASUS\ArmouryDevice\asus_framework.exe ->) (ASUSTeK COMPUTER INC. -> ) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\SwAgent\ArmourySwAgent.exe
(C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmourySocketServer.exe ->) (ASUSTeK COMPUTER INC. -> ASUS) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmouryHtmlDebugServer.exe
(C:\Program Files\ASUS\ARMOURY CRATE Lite Service\ArmouryCrate.Service.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Program Files\ASUS\ARMOURY CRATE Lite Service\ArmouryCrate.UserSessionHelper.exe
(C:\Program Files\ASUSTeKcomputer.Inc\nhAsusStrix\UserInterface\nhAsusStrixUILauncher.exe ->) (A-Volute SAS -> ) C:\Program Files\ASUSTeKcomputer.Inc\nhAsusStrix\UserInterface\x64\nhAsusStrixSvc64.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3>
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(D:\Programme\Icue\Corsair iCUE5 Software\clink\Corsair.Service.exe ->) (Corsair Memory, Inc. -> Corsair Memory, Inc.) D:\Programme\Icue\Corsair iCUE5 Software\clink\Corsair.Service.CpuIdRemote64.exe
(D:\Programme\Icue\Corsair iCUE5 Software\clink\Corsair.Service.exe ->) (Corsair Memory, Inc. -> Corsair Memory, Inc.) D:\Programme\Icue\Corsair iCUE5 Software\clink\Corsair.Service.DisplayAdapter.exe
(D:\Programme\Icue\Corsair iCUE5 Software\iCUE.exe ->) (Corsair Memory, Inc. -> ) D:\Programme\Icue\Corsair iCUE5 Software\crashpad_handler.exe
(D:\Programme\Icue\Corsair iCUE5 Software\iCUE.exe ->) (Corsair Memory, Inc. -> Corsair Memory, Inc.) D:\Programme\Icue\Corsair iCUE5 Software\QmlRenderer.exe
(D:\Programme\Icue\Corsair iCUE5 Software\iCUE.exe ->) (Valve Corp. -> Valve Corporation) E:\Steam\steam.exe
(E:\Steam\steam.exe ->) (Valve Corp. -> Valve Corporation) E:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe <6>
(explorer.exe ->) (Corsair Memory, Inc. -> Corsair Memory, Inc.) D:\Programme\Icue\Corsair iCUE5 Software\iCUE.exe
(explorer.exe ->) (Logitech Inc -> Logitech Inc.) C:\Program Files\Logitech Gaming Software\LCore.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.312\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.312\GoogleCrashHandler64.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\23.204.1001.0003\Microsoft.SharePoint.exe
(Nuance Communications, Inc. -> Nuance Communications, Inc.) C:\Program Files (x86)\Nuance\PaperPort\pptd40nt.exe
(Nuance Communications, Inc. -> Nuance Communications, Inc.) C:\Program Files (x86)\Nuance\PDF Professional 7\PdfPro7Hook.exe
(Nvidia Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(Opera Norway AS -> Opera Software) D:\Programme\Opera\103.0.4928.34\opera_crashreporter.exe <2>
(Opera Norway AS -> Opera Software) D:\Programme\Opera\opera.exe <15>
(services.exe ->) () [Datei ist nicht signiert] C:\Program Files (x86)\Brother\iPrint&Scan\USBAppControl.exe
(services.exe ->) () [Datei ist nicht signiert] C:\Program Files (x86)\Brother\iPrint&Scan\WorkflowAppControl.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUS Inc.) C:\Program Files (x86)\ASUS\GameSDK Service\GameSDK.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> Asustek Computer Inc.) C:\Program Files (x86)\ASUS\AsusCertService\AsusCertService.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AsusFanControlService\2.03.28\AsusFanControlService.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AXSP\4.02.25\atkexComSvc.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.) C:\Program Files (x86)\LightingService\LightingService.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Program Files\ASUS\ARMOURY CRATE Lite Service\ArmouryCrate.Service.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.) C:\Program Files\ASUS\ROG Live Service\ROGLiveService.exe
(services.exe ->) (Brother Industries, Ltd.) [Datei ist nicht signiert] C:\Program Files (x86)\Browny02\BrYNSvc.exe
(services.exe ->) (Corsair Memory, Inc. -> Corsair Memory, Inc.) D:\Programme\Icue\Corsair iCUE5 Software\clink\Corsair.Service.exe
(services.exe ->) (Corsair Memory, Inc. -> Corsair Memory, Inc.) D:\Programme\Icue\Corsair iCUE5 Software\CueLLAccessService.exe
(services.exe ->) (Corsair Memory, Inc. -> Corsair Memory, Inc.) D:\Programme\Icue\Corsair iCUE5 Software\iCUEUpdateService.exe
(services.exe ->) (DTS, Inc. -> DTS Inc.) C:\Windows\System32\DTS\PC\APO4x\DtsApo4Service.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_af50fdb80983f7bc\jhi_service.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorvd.inf_amd64_d0ba3dc7378fedf6\RstMwService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_06c43e1ee675eae7\WMIRegistrationService.exe
(services.exe ->) (Logitech Inc -> Logitech Inc.) C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft GameInput\x64\gameinputsvc.exe <2>
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\vds.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\NisSrv.exe
(services.exe ->) (Nuance Communications, Inc. -> Nuance Communications, Inc.) C:\Program Files (x86)\Nuance\PaperPort\PDFProFiltSrvPP.exe
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_4eef80c06561d01a\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (O&O Software GmbH -> O&O Software GmbH) D:\Programme\OO Software\DiskImage\oodiag.exe
(services.exe ->) (RCS LT, UAB -> RCS LT) C:\Program Files (x86)\Combo Cleaner\ComboCleaner.Guard.exe
(services.exe ->) (RCS LT, UAB -> RCS LT) C:\Program Files (x86)\Combo Cleaner\ComboCleaner.WinService.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_1b5d53254a23bb6b\RtkAudUService64.exe <2>
(services.exe ->) (Samsung Electronics Co., Ltd. -> Clonix & CottonCandy) C:\Program Files (x86)\Samsung\Samsung Magician\MigrationService\MigrationService.exe
(services.exe ->) (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\Samsung Magician\SamsungMagicianSVC.exe
(services.exe ->) (Synology Inc. -> ) C:\Program Files (x86)\Synology\SynologyDrive\bin\vss-service-x64.exe
(services.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) D:\Programme\TeamViewer\TeamViewer_Service.exe
(services.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\steamservice.exe
(svchost.exe ->) (ASUSTeK COMPUTER INC. -> ) C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DipAwayMode.exe
(svchost.exe ->) (ASUSTeK COMPUTER INC. -> ) C:\Program Files\ASUS\KINGSTON_Aac_DRAM\AacKingstonDramHal_x64.exe
(svchost.exe ->) (ASUSTeK COMPUTER INC. -> ) C:\Program Files\ASUS\KINGSTON_Aac_DRAM\AacKingstonDramHal_x86.exe
(svchost.exe ->) (ASUSTeK COMPUTER INC. -> ASUS) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\AcPowerNotification\AcPowerNotification.exe
(svchost.exe ->) (ASUSTeK COMPUTER INC. -> ASUS) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmourySocketServer.exe
(svchost.exe ->) (ASUSTeK COMPUTER INC. -> ASUS) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\MBLedSDK\NoiseCancelingEngine.exe
(svchost.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek Compputer Inc.) C:\Program Files\ASUS\AacMB\Aac3572MbHal_x86.exe <2>
(svchost.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite III\AISuite3.exe
(svchost.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ArmouryDevice\asus_framework.exe <11>
(svchost.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.) C:\Program Files\ASUS\AacExtCard\extensionCardHal_x86.exe
(svchost.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.) C:\Program Files\ASUS\ASUS_Aac_DRAM\Aac3572DramHal_x86.exe
(svchost.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\ProgramData\UWP\AsusSetup.exe
(svchost.exe ->) (ASUSTeK COMPUTER INC. -> TODO: <Company name>) C:\Program Files (x86)\ASUS\AI Suite III\DIP4\GpuFanHelper.exe
(svchost.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_11.2307.4.0_x64__8wekyb3d8bbwe\CalculatorApp.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.823.7272.0_x64__8wekyb3d8bbwe\GameBar.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.823.7272.0_x64__8wekyb3d8bbwe\GameBarFTServer.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\vdsldr.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(svchost.exe ->) (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\Samsung Magician\SamsungMagician.exe <4>
==================== Registry (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [Launch LCore] => C:\Program Files\Logitech Gaming Software\LCore.exe [18725336 2022-05-12] (Logitech Inc -> Logitech Inc.)
HKLM\...\Run: [OODITRAY.EXE] => D:\Programme\OO Software\DiskImage\ooditray.exe [8482336 2022-06-09] (O&O Software GmbH -> O&O Software GmbH)
HKLM\...\Run: [RtkAudUService] => C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_1b5d53254a23bb6b\RtkAudUService64.exe [1672488 2023-08-08] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [Corsair iCUE5 Software] => D:\Programme\Icue\Corsair iCUE5 Software\iCUE Launcher.exe [184872 2023-07-26] (Corsair Memory, Inc. -> Corsair Memory, Inc.)
HKLM-x32\...\Run: [I19C] => C:\Windows\twain_32\Brimi19c\Common\TwDsUiLaunch.exe [94560 2021-01-28] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM-x32\...\Run: [BrotherSoftwareUpdateNotification] => C:\Program Files (x86)\Brother\SoftwareUpdateNotification\SoftwareUpdateNotificationService.exe [3591168 2022-10-09] (Brother Industries, Ltd.) [Datei ist nicht signiert]
HKLM-x32\...\Run: [ISUSPM] => C:\ProgramData\FLEXnet\Connect\11\isuspm.exe [2075480 2013-06-24] (Flexera Software LLC -> Flexera Software LLC.)
HKLM-x32\...\Run: [PaperPort PTD] => C:\Program Files (x86)\Nuance\PaperPort\pptd40nt.exe [35648 2015-01-19] (Nuance Communications, Inc. -> Nuance Communications, Inc.)
HKLM-x32\...\Run: [IndexSearch] => C:\Program Files (x86)\Nuance\PaperPort\IndexSearch.exe [17600 2015-01-19] (Nuance Communications, Inc. -> Nuance Communications, Inc.)
HKLM-x32\...\Run: [PDFProHook] => C:\Program Files (x86)\Nuance\PDF Professional 7\pdfpro7hook.exe [641864 2013-03-20] (Nuance Communications, Inc. -> Nuance Communications, Inc.)
HKLM-x32\...\Run: [BrStsMon00] => C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [3785728 2023-09-06] (Brother Industries, Ltd.) [Datei ist nicht signiert]
HKU\S-1-5-21-1015958511-946308799-99104230-1001\...\Run: [Steam] => E:\Steam\steam.exe [4375912 2023-09-29] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-1015958511-946308799-99104230-1001\...\Run: [nhAsusStrixUILauncher] => C:\Program Files\ASUSTeKcomputer.Inc\nhAsusStrix\UserInterface\nhAsusStrixUILauncher.exe [706096 2020-11-17] (A-Volute SAS -> ASUSTeKcomputer.Inc)
HKU\S-1-5-21-1015958511-946308799-99104230-1001\...\Run: [EADM] => E:\Origin\EA Desktop\EA Desktop\EALauncher.exe [2655848 2023-10-04] (Electronic Arts, Inc. -> Electronic Arts)
HKU\S-1-5-21-1015958511-946308799-99104230-1001\...\Run: [MicrosoftEdgeAutoLaunch_83ACD5459AB27AC8BF22FC93BE7BDCB6] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [4187176 2023-10-20] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-1015958511-946308799-99104230-500\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2588584 2023-10-20] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-1015958511-946308799-99104230-500\...\Run: [MicrosoftEdgeAutoLaunch_98769996E24836F99EC8617644423B4C] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [4187176 2023-10-20] (Microsoft Corporation -> Microsoft Corporation)
HKLM\...\Print\Monitors\CUSTPDF Writer Monitor x86: C:\Windows\system32\custmon64i.dll [97768 2016-01-23] (Acro Software Inc. -> )
HKLM\...\Print\Monitors\KX Language Monitor: C:\Windows\system32\KXPLM64.DLL [113608 2022-08-22] (Microsoft Windows Hardware Compatibility Publisher -> KYOCERA Document Solutions Inc.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\118.0.5993.89\Installer\chrmstp.exe [2023-10-19] (Google LLC -> Google LLC)
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {EDA2AA0B-A54F-442A-B132-7281F23E52B0} - \install Realtek Audio UWP Services -> Keine Datei <==== ACHTUNG
Task: {651A7B57-2D7F-4C96-A31F-A22A14003846} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1566200 2023-09-20] (Adobe Inc. -> Adobe Inc.)
Task: {3CB7949C-7F78-4A20-AA83-9DA2B9CD4B35} - System32\Tasks\ASUS\AcPowerNotification => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\AcPowerNotification\AcPowerNotification.exe [313192 2023-06-26] (ASUSTeK COMPUTER INC. -> ASUS)
Task: {DDEF5E85-C8AF-4E66-B2B4-F2F532016F4D} - System32\Tasks\ASUS\ArmourySocketServer => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmourySocketServer.exe [1881448 2023-06-26] (ASUSTeK COMPUTER INC. -> ASUS)
Task: {F5012BFE-98D4-470E-822F-7EADAEBE260E} - System32\Tasks\ASUS\ASUS AISuiteIII => C:\Program Files (x86)\ASUS\AI Suite III\AISuite3.exe [2183016 2023-06-16] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)
Task: {188DC3DB-3D9D-4441-83CA-3518AE25CA5B} - System32\Tasks\ASUS\ASUS DIPAwayMode => C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DipAwayMode.exe [1467240 2023-04-27] (ASUSTeK COMPUTER INC. -> )
Task: {8BF47231-4A8C-489B-957C-3A00ACF26AAA} - System32\Tasks\ASUS\ASUSUpdateTaskMachineCore1d8f538e5b48f89 => C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [153112 2022-11-10] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)
Task: {C224B0B9-A8D5-4CBD-A747-C17840FDF6FE} - System32\Tasks\ASUS\ASUSUpdateTaskMachineUA => C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [153112 2022-11-10] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)
Task: {690602B9-AF2D-4DD5-917D-86988EF22B5D} - System32\Tasks\ASUS\Framework Service => C:\Program Files (x86)\ASUS\ArmouryDevice\asus_framework.exe [139091304 2023-05-31] (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.)
Task: {D78F8DCC-29FE-4EC6-8695-ED388A670C43} - System32\Tasks\ASUS\GpuFanHelper => C:\Program Files (x86)\ASUS\AI Suite III\DIP4\GpuFanHelper.exe [4332392 2023-04-27] (ASUSTeK COMPUTER INC. -> TODO: <Company name>)
Task: {3F19B7FD-17EC-44A9-9104-5B06D418B565} - System32\Tasks\ASUS\NoiseCancelingEngine => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\MBLedSDK\NoiseCancelingEngine.exe [1254760 2023-03-27] (ASUSTeK COMPUTER INC. -> ASUS)
Task: {9AD05A82-A7F4-4B60-938B-2C1907EEF281} - System32\Tasks\ASUS\P508PowerAgent_sdk => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ShareFromArmouryIII\Mouse\ROG STRIX CARRY\P508PowerAgent.exe (Keine Datei)
Task: {33718E5F-BB94-489C-B778-299BFD612F21} - System32\Tasks\GoogleUpdateTaskMachineCore{CCB8D9B7-3245-419B-8E6E-78825BC89AEC} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [162072 2023-06-22] (Google LLC -> Google LLC)
Task: {EDD83E16-A3FB-4622-9502-FCCBF7680783} - System32\Tasks\GoogleUpdateTaskMachineUA{3B0D66BB-C13B-4185-ABC4-F4DE1FAD90DB} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [162072 2023-06-22] (Google LLC -> Google LLC)
Task: {98B50FEB-07CB-45A1-AF03-668EE7E2E96D} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26977976 2023-10-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {08D2E71C-861A-4E9B-9639-3DB8CCF74C0A} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26977976 2023-10-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {5B1D6361-F437-4F09-A0D4-4ABD3F2191E1} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [160736 2023-10-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {A4BA4FDF-FEED-4CB3-AFEB-BDCD39FE086D} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [160736 2023-10-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {99D736EA-504C-4BAF-8659-15DCCE332998} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [169136 2023-10-04] (Microsoft Corporation -> Microsoft Corporation)
Task: {BA6217BD-8D02-40B7-A1D9-5FD3E410AB71} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\MpCmdRun.exe [1596304 2023-10-05] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {C3B24456-7B3D-41EC-8328-B8DA3450ADA4} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\MpCmdRun.exe [1596304 2023-10-05] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {87A3652F-FADC-437F-8B12-1672890B164F} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\MpCmdRun.exe [1596304 2023-10-05] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {7B38FC13-2E6B-48C9-8985-C440BB3F1A3D} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\MpCmdRun.exe [1596304 2023-10-05] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {F2F6D9D8-9D54-4507-87BB-FA5F1318FD35} - System32\Tasks\nhAsusStrixSvc32Run => C:\Program Files\ASUSTeKcomputer.Inc\nhAsusStrix\UserInterface\nhAsusStrixSvc32.exe [3330608 2020-11-17] (A-Volute SAS -> )
Task: {8100CB26-D7F8-4BE5-827F-7ECBC2D5F8A8} - System32\Tasks\nhAsusStrixSvc64Run => C:\Program Files\ASUSTeKcomputer.Inc\nhAsusStrix\UserInterface\x64\nhAsusStrixSvc64.exe [324144 2020-11-17] (A-Volute SAS -> )
Task: {80B29947-CDE2-4F17-8F53-57C6AE35D77C} - System32\Tasks\nhAsusStrixUILauncherRun => C:\Program Files\ASUSTeKcomputer.Inc\nhAsusStrix\UserInterface\nhAsusStrixUILauncher.exe [706096 2020-11-17] (A-Volute SAS -> ASUSTeKcomputer.Inc)
Task: {9759BCCA-C069-41B4-BE74-58380BD4431D} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1003128 2022-03-15] (Nvidia Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {1E89BAB9-2D82-438B-90A2-6B4ACBA800B6} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3342376 2023-01-27] (Nvidia Corporation -> NVIDIA Corporation)
Task: {FB9C5F35-715F-456A-818C-9854EB864793} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [649784 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {03475392-8B99-4332-B4DF-A7CF168522F7} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {672F7BF3-58EA-4C28-B880-EAC44068B10F} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {F3BB9870-ED35-4635-8B0F-65845ABD400E} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {DB53AE0B-DC44-474C-9463-9D47E5EB042F} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {EFD91C06-A92B-4A39-9CBE-576FB9C0D9FE} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {EB6F2BF3-E755-42CE-AF09-D1B86B6C08E3} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {0951C6AC-02A9-4721-9D02-75922A0AA19A} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4130832 2023-10-20] (Microsoft Corporation -> Microsoft Corporation)
Task: {E49E9A1D-382D-4B31-B9EB-73B5EDA76FB7} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-1015958511-946308799-99104230-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4130832 2023-10-20] (Microsoft Corporation -> Microsoft Corporation)
Task: {CA051577-82F9-4E2E-81D1-6541D26A2568} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-1015958511-946308799-99104230-500 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4130832 2023-10-20] (Microsoft Corporation -> Microsoft Corporation)
Task: {A6096183-899D-410D-9D45-AF2E228C3792} - System32\Tasks\OO DiskImage {1134bc43-872c-4cf2-bb20-e236ddede230} => D:\Programme\OO Software\DiskImage\oodiag.exe [10517536 2022-06-09] (O&O Software GmbH -> O&O Software GmbH)
Task: {E2657147-E9A9-491C-B3E3-D539C6A1D2EC} - System32\Tasks\Opera scheduled Autoupdate 1668108186 => D:\Programme\Opera\launcher.exe [2820000 2023-10-16] (Opera Norway AS -> Opera Software)
Task: {0A5A74B5-D2A0-4897-A52D-6084D9A45283} - System32\Tasks\SamsungMagician => C:\Program Files (x86)\Samsung\Samsung Magician\SamsungMagician.exe [138741312 2023-09-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
Task: C:\Windows\Tasks\OO DiskImage {1134bc43-872c-4cf2-bb20-e236ddede230}.job => D:\Programme\OO Software\DiskImage\oodiag.exe,/run {1134bc43-872c-4cf2-bb20-e236ddede230}O&O DiskImage G:\OO Software\Berichte\Aufgabe20230116.xml
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Edge:
=======
Edge Profile: C:\Users\*************\AppData\Local\Microsoft\Edge\User Data\Default [2023-10-16]
Edge Extension: (Google Docs Offline) - C:\Users\*************\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-08-28]
Edge Extension: (Edge relevant text changes) - C:\Users\*************\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-09-19]
FireFox:
========
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2023-08-02] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2023-10-09] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2023-10-04] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: ZEON/PDF,version=2.0 -> C:\Program Files (x86)\Nuance\PDF Professional 7\bin\nppdf.dll [2011-07-15] (Zeon Corporation -> Zeon Corporation)
Chrome:
=======
CHR Profile: C:\Users\*************\AppData\Local\Google\Chrome\User Data\Default [2023-10-16]
CHR Extension: (Google Docs Offline) - C:\Users\*************\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-06-22]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\*************\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-06-22]
Opera:
=======
OPR DefaultProfile: Default
StartMenuInternet: (HKU\S-1-5-21-1015958511-946308799-99104230-1001) OperaStable - "D:\Programme\Opera\Launcher.exe"
==================== Dienste (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [173040 2023-09-20] (Adobe Inc. -> Adobe Inc.)
R2 ArmouryCrateService; C:\Program Files\ASUS\ARMOURY CRATE Lite Service\ArmouryCrate.Service.exe [399992 2023-09-01] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\4.02.25\atkexComSvc.exe [903016 2023-10-11] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)
S2 asus; C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [153112 2022-11-10] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)
R2 AsusCertService; C:\Program Files (x86)\ASUS\AsusCertService\AsusCertService.exe [501608 2023-08-18] (ASUSTeK COMPUTER INC. -> Asustek Computer Inc.)
R2 AsusFanControlService; C:\Program Files (x86)\ASUS\AsusFanControlService\2.03.28\AsusFanControlService.exe [1735528 2023-07-06] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)
S3 asusm; C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [153112 2022-11-10] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)
S2 AsusUpdateCheck; C:\Windows\System32\AsusUpdateCheck.exe [1204688 2023-10-21] (ASUSTeK COMPUTER INC. -> )
R3 BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [377856 2023-07-20] (Brother Industries, Ltd.) [Datei ist nicht signiert]
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [12860928 2023-10-14] (Microsoft Corporation -> Microsoft Corporation)
R2 CMigrationService; C:\Program Files (x86)\Samsung\Samsung Magician\MigrationService\MigrationService.exe [761408 2023-09-08] (Samsung Electronics Co., Ltd. -> Clonix & CottonCandy)
R3 ComboCleaner.Guard; C:\Program Files (x86)\Combo Cleaner\ComboCleaner.Guard.exe [143488 2021-11-05] (RCS LT, UAB -> RCS LT)
R3 ComboCleaner.WinService; C:\Program Files (x86)\Combo Cleaner\ComboCleaner.WinService.exe [151168 2021-11-05] (RCS LT, UAB -> RCS LT)
S3 CorsairDeviceListerService; D:\Programme\Icue\Corsair iCUE5 Software\CorsairDeviceListerService.exe [151080 2023-07-26] (Corsair Memory, Inc. -> Corsair Memory, Inc.)
R2 CorsairLLAService; D:\Programme\Icue\Corsair iCUE5 Software\CueLLAccessService.exe [246824 2023-07-26] (Corsair Memory, Inc. -> Corsair Memory, Inc.)
R2 CorsairService; D:\Programme\Icue\Corsair iCUE5 Software\clink\Corsair.Service.exe [84008 2023-07-26] (Corsair Memory, Inc. -> Corsair Memory, Inc.)
S3 Denuvo Anti-Cheat Update Service; C:\Program Files\Denuvo Anti-Cheat\denuvo-anti-cheat-update-service.exe [977776 2023-05-14] (DENUVO GmbH -> Denuvo GmbH)
R2 DtsApo4Service; C:\Windows\System32\DTS\PC\APO4x\DtsApo4Service.exe [434000 2023-08-08] (DTS, Inc. -> DTS Inc.)
S3 EABackgroundService; E:\Origin\EA Desktop\EA Desktop\EABackgroundService.exe [11070056 2023-10-04] (Electronic Arts, Inc. -> Electronic Arts)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [1135648 2022-11-18] (EasyAntiCheat Oy -> Epic Games, Inc)
S3 EasyAntiCheat_EOS; C:\Program Files (x86)\EasyAntiCheat_EOS\EasyAntiCheat_EOS.exe [954704 2023-10-15] (EasyAntiCheat Oy -> Epic Games, Inc.)
S4 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [934352 2022-07-11] (Epic Games Inc. -> Epic Games, Inc.)
S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\23.204.1001.0003\FileSyncHelper.exe [3504552 2023-10-20] (Microsoft Corporation -> Microsoft Corporation)
S3 Futuremark SystemInfo Service; C:\Program Files (x86)\Futuremark\SystemInfo\FMSISvc.exe [347408 2023-03-06] (Underwriters Laboratories Inc. -> Futuremark)
R2 GameSDK Service; C:\Program Files (x86)\ASUS\GameSDK Service\GameSDK.exe [397544 2022-05-31] (ASUSTeK COMPUTER INC. -> ASUS Inc.)
R3 iCUEUpdateService; D:\Programme\Icue\Corsair iCUE5 Software\iCUEUpdateService.exe [351784 2023-07-26] (Corsair Memory, Inc. -> Corsair Memory, Inc.)
S2 Intel(R) Platform License Manager Service; C:\Windows\System32\DriverStore\FileRepository\iclsclient.inf_amd64_4911ed214bf8cf23\lib\PlatformLicenseManagerService.exe [740960 2023-06-22] (Intel Corporation -> Intel(R) Corporation)
R2 LightingService; C:\Program Files (x86)\LightingService\LightingService.exe [4283240 2023-05-31] (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.)
R2 LogiRegistryService; C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe [206808 2022-05-12] (Logitech Inc -> Logitech Inc.)
S4 NGS; C:\ProgramData\Nexon\NGS\NGService.exe [3134240 2023-01-14] (NEXON Korea Corporation. -> NEXON Korea Corporation)
S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\23.204.1001.0003\OneDriveUpdaterService.exe [3841976 2023-10-20] (Microsoft Corporation -> Microsoft Corporation)
R2 OO DiskImage; D:\Programme\OO Software\DiskImage\oodiag.exe [10517536 2022-06-09] (O&O Software GmbH -> O&O Software GmbH)
R2 PDFProFiltSrvPP; C:\Program Files (x86)\Nuance\PaperPort\PDFProFiltSrvPP.exe [77336 2015-01-19] (Nuance Communications, Inc. -> Nuance Communications, Inc.)
S3 Rockstar Service; E:\Rockstar\RockstarService.exe [1846768 2023-05-06] (Rockstar Games, Inc. -> Rockstar Games)
R2 ROG Live Service; C:\Program Files\ASUS\ROG Live Service\ROGLiveService.exe [1799640 2023-09-20] (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.)
R2 SamsungMagicianSVC; C:\Program Files (x86)\Samsung\Samsung Magician\SamsungMagicianSVC.exe [427072 2023-09-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [402264 2023-10-11] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 Synology Drive VSS Service x64; C:\Program Files (x86)\Synology\SynologyDrive\bin\vss-service-x64.exe [360320 2022-10-25] (Synology Inc. -> )
R2 TeamViewer; D:\Programme\TeamViewer\TeamViewer_Service.exe [20856120 2023-10-11] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
R2 USBAppControl; C:\Program Files (x86)\Brother\iPrint&Scan\USBAppControl.exe [12288 2023-07-25] () [Datei ist nicht signiert]
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\NisSrv.exe [3116904 2023-10-05] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\MsMpEng.exe [133584 2023-10-05] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WorkflowAppControl; C:\Program Files (x86)\Brother\iPrint&Scan\WorkflowAppControl.exe [19456 2023-07-25] () [Datei ist nicht signiert]
R2 NVDisplay.ContainerLocalSystem; C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_4eef80c06561d01a\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_4eef80c06561d01a\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
===================== Treiber (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R1 Asusgio2; C:\Windows\system32\drivers\AsIO2.sys [34384 2022-02-10] (ASUSTeK Computer Inc. -> )
R1 Asusgio3; C:\Windows\system32\drivers\AsIO3.sys [59440 2023-08-17] (ASUSTeK COMPUTER INC. -> Asustek Computer Inc.)
R3 ASUSSC200; C:\Windows\system32\DRIVERS\ASUSSC200.sys [3805696 2016-12-08] (Microsoft Windows Hardware Compatibility Publisher -> ASUSTeK)
R3 BdDci; C:\Windows\system32\DRIVERS\bddci.sys [802976 2020-12-04] (Bitdefender SRL -> Bitdefender)
S3 BthA2dp; C:\Windows\System32\drivers\BthA2dp.sys [280064 2022-11-10] (Microsoft Corporation) [Datei ist nicht signiert]
S3 CorsairGamingAudioService; C:\Windows\System32\drivers\CorsairGamingAudio64.sys [63008 2023-01-20] (Microsoft Windows Hardware Compatibility Publisher -> Corsair Memory, Inc.)
R2 CorsairLLAccessE5C64D47D42077BE149D03EA22D08195C0CE50B1; D:\Programme\Icue\Corsair iCUE5 Software\CorsairLLAccess64.sys [21752 2023-07-26] (Microsoft Windows Hardware Compatibility Publisher -> Corsair Memory, Inc.)
R3 CorsairVBusDriver; C:\Windows\System32\drivers\CorsairVBusDriver.sys [47032 2023-07-26] (Microsoft Windows Hardware Compatibility Publisher -> Corsair)
R3 CorsairVHidDriver; C:\Windows\System32\drivers\CorsairVHidDriver.sys [22968 2023-07-26] (Microsoft Windows Hardware Compatibility Publisher -> Corsair)
R3 cpuz154; C:\Windows\temp\cpuz154\cpuz154_x64.sys [40976 2023-10-21] (Microsoft Windows Hardware Compatibility Publisher -> CPUID)
R3 cpuz157; C:\Windows\temp\cpuz157\cpuz157_x64.sys [43016 2023-10-21] (Microsoft Windows Hardware Compatibility Publisher -> CPUID)
R1 CTIAIO; C:\Windows\system32\drivers\CtiAIo64.sys [32840 2023-07-26] (Microsoft Windows Hardware Compatibility Publisher -> Creative Technology Innovation Co., LTd.)
S3 Denuvo Anti-Cheat; C:\Program Files\Denuvo Anti-Cheat\denuvo-anti-cheat.sys [1091584 2023-05-14] (Microsoft Windows Hardware Compatibility Publisher -> Denuvo GmbH)
R3 e2fexpress; C:\Windows\System32\DriverStore\FileRepository\e2f.inf_amd64_bf51b653ec31b8ab\e2f.sys [531568 2023-07-02] (Intel Corporation -> Intel Corporation)
R3 gzflt; C:\Windows\System32\DRIVERS\gzflt.sys [176008 2021-09-30] (Microsoft Windows Hardware Compatibility Publisher -> BitDefender LLC)
R3 iaLPSS2_GPIO2_ADL; C:\Windows\System32\DriverStore\FileRepository\ialpss2_gpio2_adl.inf_amd64_302e75596cffa74a\iaLPSS2_GPIO2_ADL.sys [150616 2022-10-18] (Intel Corporation -> Intel Corporation)
R3 iaLPSS2_I2C_ADL; C:\Windows\System32\DriverStore\FileRepository\ialpss2_i2c_adl.inf_amd64_e736c048ca307ed2\iaLPSS2_I2C_ADL.sys [220224 2022-10-18] (Intel Corporation -> Intel Corporation)
R0 iaStorVD; C:\Windows\System32\drivers\iaStorVD.sys [1606816 2023-07-24] (Intel Corporation -> Intel Corporation)
R3 IGO_VSD; C:\Windows\system32\drivers\igovsd.sys [43392 2022-09-22] (British Cayman Islands Intelligo Technology Inc. Taiwan Branch -> ASUSTek Computer Inc.)
R4 IOMap; C:\Windows\system32\drivers\IOMap64.sys [54752 2023-01-19] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)
R3 LGBusEnum; C:\Windows\system32\drivers\LGBusEnum64.sys [46264 2022-05-12] (Logitech Inc -> Logitech Inc.)
R3 LGJoyXlCore; C:\Windows\system32\drivers\LGJoyXlCore64.sys [76480 2022-05-12] (Logitech Inc -> Logitech Inc.)
R3 LGVirHid; C:\Windows\system32\drivers\LGVirHid64.sys [34496 2022-05-12] (Logitech Inc -> Logitech Inc.)
R3 MpKslda16bfec; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{6BD2A3B8-8D63-4A6E-B08D-45C7D700E746}\MpKslDrv.sys [263560 2023-10-23] (Microsoft Windows -> Microsoft Corporation)
R1 MSIO; C:\Windows\system32\drivers\MsIo64.sys [19000 2023-04-05] (Microsoft Windows Hardware Compatibility Publisher -> MICSYS Technology Co., LTd)
R3 NvModuleTracker; C:\Windows\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_0c1cc60a4b422185\NvModuleTracker.sys [45656 2022-07-14] (Nvidia Corporation -> NVIDIA Corporation)
S3 SNTUSB64; C:\Windows\System32\drivers\SNTUSB64.SYS [70624 2017-08-16] (SafeNet Canada, Inc. -> SafeNet, Inc.)
R3 Trufos; C:\Windows\System32\DRIVERS\Trufos.sys [615840 2021-10-01] (Microsoft Windows Hardware Compatibility Publisher -> Bitdefender)
R3 ViGEmBus; C:\Windows\System32\drivers\ViGEmBus.sys [69168 2019-04-04] (Microsoft Windows Hardware Compatibility Publisher -> Benjamin Höglinger-Stelzer)
S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [55856 2023-10-05] (Microsoft Windows Early Launch Anti-Malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [572712 2023-10-05] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [105872 2023-10-05] (Microsoft Windows -> Microsoft Corporation)
S4 GSDriver; \SystemRoot\System32\drivers\GSDriver64.sys [X]
S3 SIUSBXP; \??\C:\Windows\system32\drivers\SiUSBXp.sys [X]
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Drei Monate (erstellte) (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2023-10-24 16:43 - 2023-10-24 16:43 - 000041651 _____ C:\Users\*************\Desktop\FRST.txt
2023-10-24 16:42 - 2023-10-24 16:42 - 002383360 _____ (Farbar) C:\Users\*************\Desktop\FRST64 (1).exe
2023-10-23 21:39 - 2023-10-24 16:43 - 000000000 ____D C:\FRST
2023-10-23 21:38 - 2023-10-23 21:38 - 002383360 _____ (Farbar) C:\Users\*************\Downloads\FRST64.exe
2023-10-23 21:22 - 2023-10-23 21:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GridinSoft Anti-Malware
2023-10-23 21:22 - 2023-10-23 21:30 - 000000000 ____D C:\Program Files\GridinSoft Anti-Malware
2023-10-23 21:22 - 2023-10-23 21:22 - 000905704 _____ (Gridinsoft LLC) C:\Users\*************\Downloads\gsam-de-install.exe
2023-10-23 21:22 - 2023-10-23 21:22 - 000000000 ____D C:\ProgramData\GridinSoft
2023-10-22 13:06 - 2023-10-22 13:06 - 000000202 _____ C:\Users\*************\Desktop\The Riftbreaker.url
2023-10-22 13:06 - 2023-10-22 13:06 - 000000000 ____D C:\Users\*************\Documents\The Riftbreaker
2023-10-22 13:06 - 2023-10-22 13:06 - 000000000 ____D C:\Users\*************\AppData\LocalLow\Tlön Industries
2023-10-22 13:04 - 2023-10-22 13:04 - 000000202 _____ C:\Users\*************\Desktop\Per Aspera.url
2023-10-22 12:12 - 2023-10-22 12:12 - 000000202 _____ C:\Users\*************\Desktop\Defense Grid 2.url
2023-10-22 12:04 - 2023-10-22 12:04 - 000000202 _____ C:\Users\*************\Desktop\Sekiro™ Shadows Die Twice.url
2023-10-22 12:04 - 2023-10-22 12:04 - 000000000 ____D C:\Users\*************\AppData\Roaming\Sekiro
2023-10-18 19:31 - 2023-10-18 19:31 - 000073139 _____ C:\Users\*************\Desktop\Auftragsbestätigung_Überweisung_DE12494900703562363800_18-10-2023_19-31.pdf
2023-10-17 17:31 - 2023-10-17 17:31 - 000000000 ____D C:\Windows\LastGood.Tmp
2023-10-17 17:29 - 2023-10-12 15:40 - 001487904 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2023-10-17 17:29 - 2023-10-12 15:40 - 001423960 _____ C:\Windows\system32\vulkan-1-999-0-0-0.dll
2023-10-17 17:29 - 2023-10-12 15:40 - 001423960 _____ C:\Windows\system32\vulkan-1.dll
2023-10-17 17:29 - 2023-10-12 15:40 - 001246296 _____ C:\Windows\SysWOW64\vulkan-1-999-0-0-0.dll
2023-10-17 17:29 - 2023-10-12 15:40 - 001246296 _____ C:\Windows\SysWOW64\vulkan-1.dll
2023-10-17 17:29 - 2023-10-12 15:40 - 001226760 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2023-10-17 17:29 - 2023-10-12 15:40 - 000850512 _____ C:\Windows\system32\vulkaninfo-1-999-0-0-0.exe
2023-10-17 17:29 - 2023-10-12 15:40 - 000850512 _____ C:\Windows\system32\vulkaninfo.exe
2023-10-17 17:29 - 2023-10-12 15:40 - 000731216 _____ C:\Windows\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2023-10-17 17:29 - 2023-10-12 15:40 - 000731216 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2023-10-17 17:29 - 2023-10-12 15:37 - 000670344 _____ (NVIDIA Corporation) C:\Windows\system32\nvofapi64.dll
2023-10-17 17:29 - 2023-10-12 15:37 - 000504840 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvofapi.dll
2023-10-17 17:29 - 2023-10-12 15:36 - 002171528 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2023-10-17 17:29 - 2023-10-12 15:36 - 001624184 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2023-10-17 17:29 - 2023-10-12 15:36 - 001540728 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2023-10-17 17:29 - 2023-10-12 15:36 - 001198728 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2023-10-17 17:29 - 2023-10-12 15:36 - 000996984 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2023-10-17 17:29 - 2023-10-12 15:36 - 000810104 _____ (NVIDIA Corporation) C:\Windows\system32\nvidia-smi.exe
2023-10-17 17:29 - 2023-10-12 15:36 - 000774280 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2023-10-17 17:29 - 2023-10-12 15:35 - 015095944 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2023-10-17 17:29 - 2023-10-12 15:35 - 012375584 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2023-10-17 17:29 - 2023-10-12 15:35 - 006462600 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2023-10-17 17:29 - 2023-10-12 15:35 - 005862520 _____ (NVIDIA Corporation) C:\Windows\system32\nvcudadebugger.dll
2023-10-17 17:29 - 2023-10-12 15:35 - 005849736 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2023-10-17 17:29 - 2023-10-12 15:35 - 000853536 _____ (NVIDIA Corporation) C:\Windows\system32\MCU.exe
2023-10-17 17:29 - 2023-10-12 15:35 - 000459272 _____ (NVIDIA Corporation) C:\Windows\system32\nvdebugdump.exe
2023-10-17 17:29 - 2023-10-12 03:41 - 000113783 _____ C:\Windows\system32\nvinfo.pb
2023-10-16 18:24 - 2023-10-21 21:42 - 108789760 _____ C:\Windows\system32\config\SOFTWARE
2023-10-15 12:35 - 2023-10-15 12:35 - 000000000 ____D C:\Users\*************\AppData\LocalLow\Iron Wolf Studio
2023-10-15 12:35 - 2023-10-15 12:35 - 000000000 ____D C:\Users\*************\AppData\Local\Iron Wolf Studio
2023-10-15 11:57 - 2023-10-23 20:51 - 000000000 ____D C:\Program Files (x86)\Combo Cleaner
2023-10-15 11:57 - 2023-10-15 11:57 - 000001955 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Combo Cleaner.lnk
2023-10-15 11:57 - 2023-10-15 11:57 - 000001949 _____ C:\Users\Public\Desktop\Combo Cleaner.lnk
2023-10-15 11:57 - 2023-10-15 11:57 - 000000000 ____D C:\Users\*************\AppData\Local\RCS_LT
2023-10-11 17:08 - 2023-10-11 17:08 - 000000000 ____D C:\Program Files\Two-Way AI Noise Cancelation
2023-10-11 16:59 - 2023-10-11 16:59 - 000000000 ____D C:\Program Files\ViGEm ViGEmBus
2023-10-11 16:57 - 2023-10-11 16:57 - 000016059 _____ C:\Windows\system32\IntegratedServicesRegionPolicySet.json
2023-10-11 16:54 - 2023-10-11 16:54 - 000000000 ___HD C:\$WinREAgent
2023-10-11 16:42 - 2023-10-11 16:43 - 000000000 ____D C:\ProgramData\X360CE
2023-10-08 12:54 - 2023-10-08 12:54 - 000000000 ____D C:\Users\*************\AppData\LocalLow\JacobDzwinel
2023-10-06 18:45 - 2023-10-06 18:45 - 000000203 _____ C:\Users\*************\Desktop\Midnight Fight Express.url
2023-10-04 22:16 - 2023-10-04 22:16 - 000000000 ____D C:\ProgramData\PLUG
2023-10-04 18:16 - 2023-10-04 18:16 - 000000000 ____D C:\Program Files\RUXIM
2023-10-04 17:27 - 2023-10-04 17:27 - 000000000 ____D C:\Program Files\Common Files\DESIGNER
2023-10-03 19:36 - 2023-10-04 09:54 - 000000000 ____D C:\XboxGames
2023-10-03 19:36 - 2023-10-03 19:36 - 000000028 ____H C:\.GamingRoot
2023-10-03 19:36 - 2023-10-03 19:36 - 000000000 ____D C:\Users\*************\AppData\Local\INetHistory
2023-10-03 19:36 - 2023-10-03 19:36 - 000000000 ____D C:\Users\*************\AppData\Local\EAConnect_microsoft
2023-10-03 19:36 - 2023-10-03 19:36 - 000000000 ____D C:\Program Files (x86)\Windows Kits
2023-10-03 19:36 - 2023-10-03 19:36 - 000000000 ____D C:\Program Files (x86)\Microsoft GameInput
2023-10-03 19:36 - 2023-10-03 19:35 - 000503808 _____ (Microsoft Corporation) C:\Windows\system32\gameplatformservices.dll
2023-10-03 16:44 - 2023-10-03 16:44 - 000000203 _____ C:\Users\*************\Desktop\Destroyer The U-Boat Hunter.url
2023-09-29 22:52 - 2023-09-30 16:34 - 000001037 _____ C:\Users\Public\Desktop\LoxoneConfig 14.4.9.25.lnk
2023-09-27 21:12 - 2023-10-02 19:18 - 000000000 ____D C:\Users\*************\Documents\Euro Truck Simulator 2
2023-09-27 20:41 - 2023-09-27 20:41 - 000000203 _____ C:\Users\*************\Desktop\Perfect Heist 2.url
2023-09-27 20:27 - 2023-09-27 20:27 - 000154442 _____ C:\Users\*************\Desktop\VEIwNzM2NjIwMTYy.pdf
2023-09-25 18:28 - 2023-09-25 18:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung Magician
2023-09-21 17:34 - 2023-09-21 17:34 - 000000203 _____ C:\Users\*************\Desktop\PAYDAY 3.url
2023-09-20 21:48 - 2023-09-20 21:48 - 000000000 ____D C:\Users\*************\AppData\Local\Brother_Industries,_Ltd
2023-09-20 19:35 - 2023-09-20 19:36 - 000000000 ____D C:\Users\*************\AppData\Local\Brother
2023-09-20 19:31 - 2023-09-20 19:37 - 000000000 ____D C:\Users\*************\AppData\Roaming\Brother
2023-09-20 19:30 - 2023-09-20 19:30 - 000000000 ____D C:\ProgramData\zeon
2023-09-20 19:30 - 2023-09-20 19:30 - 000000000 ____D C:\Program Files\Nuance
2023-09-20 19:29 - 2023-09-20 19:36 - 000000000 ____D C:\Users\*************\AppData\Local\Nuance
2023-09-20 19:29 - 2023-09-20 19:36 - 000000000 ____D C:\ProgramData\Nuance
2023-09-20 19:29 - 2023-09-20 19:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nuance PaperPort 14
2023-09-20 19:29 - 2023-09-20 19:30 - 000000000 ____D C:\Program Files (x86)\Nuance
2023-09-20 19:29 - 2023-09-20 19:29 - 000001915 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Software Updates.lnk
2023-09-20 19:29 - 2023-09-20 19:29 - 000000000 ____D C:\Users\*************\Documents\Eigene Webseiten
2023-09-20 19:29 - 2023-09-20 19:29 - 000000000 ____D C:\ProgramData\ScanSoft
2023-09-20 19:29 - 2023-09-20 19:29 - 000000000 ____D C:\ProgramData\Macrovision
2023-09-20 19:29 - 2023-09-20 19:29 - 000000000 ____D C:\ProgramData\FLEXnet
2023-09-20 19:28 - 2023-10-12 09:08 - 000006482 _____ C:\Windows\BRRBCOM.INI
2023-09-20 19:28 - 2023-09-20 19:36 - 000000000 ____D C:\Program Files (x86)\Browny02
2023-09-20 19:28 - 2023-09-20 19:28 - 000002117 _____ C:\Users\Public\Desktop\Brother Creative Center.lnk
2023-09-20 19:28 - 2023-09-20 19:28 - 000001692 _____ C:\Users\Public\Desktop\Brother Utilities.lnk
2023-09-20 19:28 - 2023-09-20 19:28 - 000000964 _____ C:\Users\Public\Desktop\Brother iPrint&Scan.lnk
2023-09-20 19:28 - 2023-09-20 19:28 - 000000024 _____ C:\Windows\Brpfx04a.ini
2023-09-20 19:28 - 2023-09-20 19:28 - 000000000 ____D C:\ProgramData\PCFaxTx
2023-09-20 19:28 - 2023-09-20 19:28 - 000000000 ____D C:\ProgramData\PCFaxRx
2023-09-20 19:28 - 2023-09-20 19:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brother
2023-09-20 19:28 - 2023-09-20 19:28 - 000000000 ____D C:\Program Files (x86)\PC-FAXReceive
2023-09-20 19:28 - 2019-10-29 12:52 - 000318464 _____ ( ) C:\Windows\system32\BrFaxTxAppRunA64.dll
2023-09-20 19:28 - 2019-09-26 16:19 - 000121344 _____ () C:\Windows\system32\BrNetSti.dll
2023-09-20 19:28 - 2019-07-12 15:45 - 000670208 _____ C:\Windows\system32\NSSRH64.dll
2023-09-20 19:28 - 2019-07-12 15:45 - 000072192 _____ () C:\Windows\system32\BrWiaNCp.dll
2023-09-20 19:28 - 2019-07-12 15:45 - 000065024 _____ () C:\Windows\system32\Brnsplg.dll
2023-09-20 19:27 - 2023-09-20 19:37 - 000000000 ____D C:\ProgramData\Brother
2023-09-20 19:25 - 2023-09-20 19:31 - 000000000 ____D C:\Program Files (x86)\Brother
2023-09-19 19:35 - 2023-09-19 19:35 - 000000000 ____D C:\Program Files (x86)\Intel
2023-09-19 19:34 - 2023-07-24 08:31 - 001606816 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStorVD.sys
2023-09-19 19:34 - 2023-07-24 08:31 - 000030880 _____ (Intel Corporation) C:\Windows\system32\RstMwEventLogMsg.dll
2023-09-14 17:22 - 2023-09-14 17:22 - 000000000 ____D C:\Users\*************\AppData\Local\Backup
2023-09-12 20:35 - 2023-09-12 20:35 - 000000199 _____ C:\Users\*************\Desktop\Counter-Strike Global Offensive.url
2023-09-10 20:40 - 2023-09-10 20:40 - 000000000 ____D C:\Users\*************\AppData\Local\PAYDAY3
2023-09-10 13:06 - 2023-09-10 13:06 - 000000000 ____D C:\Users\*************\AppData\Local\LoxoneConfig
2023-09-09 20:28 - 2023-09-09 20:28 - 000000202 _____ C:\Users\*************\Desktop\Tom Clancy's Rainbow Six Siege.url
2023-09-03 19:16 - 2023-09-03 19:16 - 000000000 ____D C:\Users\*************\AppData\LocalLow\Festive Vector
2023-09-02 13:16 - 2023-09-02 13:16 - 000000203 _____ C:\Users\*************\Desktop\Sail Forth.url
2023-09-01 16:38 - 2023-09-01 16:38 - 000000000 ____D C:\Users\*************\AppData\LocalLow\Jounitus
2023-08-29 20:37 - 2023-08-29 20:37 - 000000000 ____D C:\Users\*************\AppData\Local\SixDays
2023-08-27 21:56 - 2023-08-27 21:56 - 000000203 _____ C:\Users\*************\Desktop\Six Days in Fallujah.url
2023-08-27 16:46 - 2023-08-27 16:46 - 000000000 ____D C:\Users\*************\AppData\LocalLow\TeamSuneat
2023-08-27 16:29 - 2023-08-27 16:29 - 000000000 ____D C:\Users\*************\AppData\LocalLow\Proton Studio
2023-08-27 16:07 - 2023-08-27 16:07 - 000000000 ____D C:\Users\*************\AppData\LocalLow\PyramidGames
2023-08-27 16:03 - 2023-08-27 16:03 - 000000203 _____ C:\Users\*************\Desktop\Time Wasters.url
2023-08-27 16:03 - 2023-08-27 16:03 - 000000203 _____ C:\Users\*************\Desktop\Blade Assault.url
2023-08-25 13:35 - 2023-08-25 13:35 - 000000438 _____ C:\Windows\Tasks\OO DiskImage {1134bc43-872c-4cf2-bb20-e236ddede230}.job
2023-08-24 19:34 - 2023-08-24 19:34 - 000000000 ____D C:\Users\*************\AppData\Roaming\.mono
2023-08-24 18:33 - 2023-08-24 18:33 - 000000373 _____ C:\Users\*************\Desktop\Homeworld Deserts of Kharak.url
2023-08-24 18:31 - 2023-08-24 18:31 - 000000000 ____D C:\Users\*************\AppData\LocalLow\THD
2023-08-20 19:47 - 2023-08-20 19:47 - 000000202 _____ C:\Users\*************\Desktop\BUTCHER Demo.url
2023-08-11 17:33 - 2023-08-11 17:33 - 000000910 _____ C:\Users\Public\Desktop\LoxoneConfig 14.3.8.3.lnk
2023-08-08 20:41 - 2023-08-08 20:30 - 000083456 _____ (Microsoft Corporation) C:\Windows\system32\devcon.exe
2023-08-08 20:40 - 2023-09-19 19:35 - 000000000 ____D C:\ProgramData\Intel Package Cache {d8170687-85fa-4716-bafd-087205d0db72}
2023-08-08 20:33 - 2023-08-08 20:31 - 006489960 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys
2023-08-08 20:33 - 2023-08-08 20:31 - 000299864 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTHDASIO64.dll
2023-08-08 20:33 - 2023-08-08 20:31 - 000253272 _____ (Realtek Semiconductor Corp.) C:\Windows\SysWOW64\RTHDASIO.dll
2023-08-05 16:30 - 2023-08-05 16:30 - 000000203 _____ C:\Users\*************\Desktop\Yet Another Zombie Survivors.url
2023-08-05 16:08 - 2023-08-05 16:08 - 000000000 ____D C:\Users\*************\AppData\LocalLow\Awesome Games Studio
2023-08-02 22:00 - 2023-08-02 22:00 - 000000000 ____D C:\Users\*************\AppData\Local\CrashReportClient
2023-07-27 21:10 - 2023-07-27 21:10 - 000000000 ____D C:\Program Files\KDService
2023-07-26 22:31 - 2023-10-24 16:40 - 000000000 ____D C:\Users\*************\AppData\Roaming\asus_framework
2023-07-26 21:51 - 2023-07-26 21:51 - 000000917 _____ C:\Users\Public\Desktop\LoxoneConfig 14.2.6.16.lnk
2023-07-26 21:48 - 2023-07-26 21:55 - 000000603 _____ C:\Users\*************\Desktop\iCUE.lnk
2023-07-26 21:48 - 2023-07-26 21:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Corsair
2023-07-26 21:27 - 2023-09-21 17:29 - 000000000 ____D C:\Windows\system32\Drivers\NVIDIA Corporation
2023-07-26 21:27 - 2023-07-26 21:27 - 000000000 ____D C:\Windows\system32\lxss
2023-07-26 21:27 - 2023-07-26 21:27 - 000000000 ____D C:\Users\*************\AppData\Roaming\NVIDIA
2023-07-26 21:22 - 2023-10-12 15:37 - 000958072 _____ (NVIDIA Corporation) C:\Windows\system32\nvml.dll
2023-07-26 21:22 - 2023-10-12 15:35 - 003620488 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2023-07-26 21:22 - 2023-10-12 15:34 - 007866464 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2023-07-26 21:22 - 2023-10-12 15:34 - 006746288 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2023-07-26 21:21 - 2023-07-13 06:45 - 000121880 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys
2023-07-26 21:19 - 2023-07-26 21:19 - 000003976 _____ C:\Windows\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-07-26 21:19 - 2023-07-26 21:19 - 000003940 _____ C:\Windows\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-07-26 21:19 - 2023-07-26 21:19 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2023-07-26 21:19 - 2023-01-20 18:45 - 002904632 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll
2023-07-26 21:19 - 2023-01-20 18:45 - 002234920 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll
2023-07-26 21:19 - 2023-01-20 18:45 - 001297464 _____ (NVIDIA Corporation) C:\Windows\system32\NvRtmpStreamer64.dll
2023-07-26 21:18 - 2023-07-26 21:18 - 000004308 _____ C:\Windows\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-07-26 21:18 - 2023-07-26 21:18 - 000003858 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-07-26 21:18 - 2023-07-26 21:18 - 000003858 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-07-26 21:18 - 2023-07-26 21:18 - 000003858 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-07-26 21:18 - 2023-07-26 21:18 - 000003858 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-07-26 21:17 - 2022-12-13 11:27 - 000169512 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap64v.dll
2023-07-26 21:17 - 2022-12-13 11:27 - 000148520 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll
2023-07-26 21:17 - 2022-10-14 09:06 - 000059928 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys
==================== Drei Monate (geänderte) ==================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2094-09-16 21:47 - 2022-11-10 21:17 - 000000000 ____D C:\Program Files (x86)\LightingService
2023-10-24 16:43 - 2022-11-10 21:16 - 000000000 ____D C:\ProgramData\NVIDIA
2023-10-24 16:43 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\AppReadiness
2023-10-24 16:40 - 2023-06-22 14:35 - 000000000 ____D C:\Program Files (x86)\Google
2023-10-24 16:40 - 2022-11-11 18:53 - 000000000 ____D C:\Users\*************\AppData\Local\CrashDumps
2023-10-24 16:40 - 2022-11-10 23:25 - 000000000 ____D C:\Users\*************\AppData\Roaming\Samsung Magician
2023-10-24 16:40 - 2022-09-08 05:15 - 000000000 ____D C:\Windows\SystemTemp
2023-10-23 22:07 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-10-23 21:54 - 2023-05-15 09:54 - 000000000 ____D C:\Users\*************\Documents\Outlook-Dateien
2023-10-23 21:45 - 2022-11-10 21:16 - 000000000 ____D C:\Program Files\ASUS
2023-10-23 21:30 - 2019-12-07 11:13 - 000000000 ____D C:\Windows\INF
2023-10-23 20:48 - 2022-11-10 22:15 - 000000000 ____D C:\Users\*************\AppData\Roaming\TS3Client
2023-10-23 19:43 - 2022-11-10 21:12 - 000000000 ____D C:\Users\*************\AppData\Local\Packages
2023-10-23 19:43 - 2022-11-10 21:12 - 000000000 ____D C:\ProgramData\Packages
2023-10-23 19:42 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2023-10-23 19:39 - 2022-11-10 21:09 - 000000000 ____D C:\Windows\system32\SleepStudy
2023-10-22 13:06 - 2022-11-10 22:15 - 000000000 ____D C:\Users\*************\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2023-10-22 12:22 - 2022-11-10 23:11 - 000000000 ____D C:\Users\Default\AppData\Local\Kyocera
2023-10-22 11:52 - 2022-11-10 21:09 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-10-21 22:40 - 2022-11-10 21:25 - 000000000 ____D C:\Users\*************\AppData\Local\D3DSCache
2023-10-21 21:48 - 2022-11-10 21:16 - 001722792 _____ C:\Windows\system32\PerfStringBackup.INI
2023-10-21 21:48 - 2019-12-07 16:50 - 000743714 _____ C:\Windows\system32\perfh007.dat
2023-10-21 21:48 - 2019-12-07 16:50 - 000150136 _____ C:\Windows\system32\perfc007.dat
2023-10-21 21:44 - 2022-11-10 22:40 - 000000202 _____ C:\Users\*************\Desktop\Rocket League.url
2023-10-21 21:42 - 2022-11-10 23:33 - 000000000 ____D C:\Program Files\Microsoft OneDrive
2023-10-21 21:42 - 2022-11-10 21:09 - 001256320 _____ () C:\Windows\system32\wpbbin.exe
2023-10-21 21:42 - 2022-11-10 21:09 - 001204688 _____ C:\Windows\system32\AsusUpdateCheck.exe
2023-10-21 21:42 - 2022-11-10 21:09 - 000008192 ___SH C:\DumpStack.log.tmp
2023-10-21 21:42 - 2022-11-10 21:09 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2023-10-21 21:42 - 2019-12-07 11:03 - 000786432 _____ C:\Windows\system32\config\BBI
2023-10-21 01:29 - 2022-11-10 22:52 - 000000000 ____D C:\Users\*************\AppData\Roaming\discord
2023-10-21 01:29 - 2022-11-10 21:12 - 000000000 ____D C:\Users\*************
2023-10-21 00:52 - 2022-11-10 22:52 - 000000000 ____D C:\Users\*************\AppData\Local\Discord
2023-10-20 21:32 - 2023-03-03 16:55 - 000003580 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-1015958511-946308799-99104230-500
2023-10-20 21:32 - 2022-11-10 22:26 - 000003194 _____ C:\Windows\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2023-10-20 21:32 - 2022-11-10 22:26 - 000002148 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2023-10-20 21:32 - 2022-11-10 21:32 - 000003584 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-1015958511-946308799-99104230-1001
2023-10-19 21:30 - 2023-06-22 14:35 - 000002239 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2023-10-19 21:30 - 2023-06-22 14:35 - 000002198 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2023-10-18 21:18 - 2023-02-09 18:58 - 000004562 _____ C:\Windows\system32\Tasks\Adobe Acrobat Update Task
2023-10-18 21:18 - 2023-02-09 18:58 - 000002073 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk
2023-10-18 17:36 - 2022-11-10 21:23 - 000004166 _____ C:\Windows\system32\Tasks\Opera scheduled Autoupdate 1668108186
2023-10-18 17:36 - 2022-11-10 21:23 - 000000851 _____ C:\Users\*************\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Opera-Browser.lnk
2023-10-17 20:07 - 2022-11-23 23:01 - 000000000 ____D C:\Users\*************\AppData\Roaming\Microsoft\Word
2023-10-17 18:35 - 2022-12-10 12:56 - 000001623 _____ C:\Windows\system32\config\VSMIDK
2023-10-17 17:31 - 2022-11-11 17:19 - 000000000 ____D C:\Users\*************\AppData\LocalLow\NVIDIA
2023-10-17 17:31 - 2022-11-10 21:17 - 000000000 ____D C:\Users\*************\AppData\Local\NVIDIA
2023-10-17 17:29 - 2022-11-11 00:01 - 000000000 ____D C:\Users\*************\AppData\Roaming\TeamViewer
2023-10-16 18:24 - 2022-12-10 13:13 - 000000000 ____D C:\Windows\Microsoft Antimalware
2023-10-16 18:12 - 2022-11-10 21:12 - 000000000 ___SD C:\Users\*************\AppData\Roaming\Microsoft\Credentials
2023-10-16 17:07 - 2022-11-10 21:09 - 000000000 ____D C:\ProgramData\ASUS
2023-10-15 18:53 - 2022-11-18 17:19 - 000000000 ____D C:\Program Files (x86)\EasyAntiCheat_EOS
2023-10-15 18:53 - 2022-11-10 23:31 - 000000000 ____D C:\Users\*************\AppData\Roaming\EasyAntiCheat
2023-10-15 11:57 - 2022-11-10 21:16 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2023-10-15 11:31 - 2022-11-11 00:02 - 000000000 ____D C:\Users\*************\AppData\Local\TeamViewer
2023-10-14 15:18 - 2022-11-10 22:24 - 000000000 ____D C:\Program Files\Microsoft Office
2023-10-11 17:35 - 2022-11-10 21:18 - 000000000 ____D C:\Users\*************\AppData\Roaming\Microsoft\MMC
2023-10-11 17:08 - 2022-11-10 21:16 - 000000000 ____D C:\Windows\system32\Tasks\ASUS
2023-10-11 17:08 - 2022-11-10 21:14 - 000000000 ____D C:\Program Files (x86)\ASUS
2023-10-11 17:07 - 2022-11-10 23:52 - 000000977 _____ C:\Users\Public\Desktop\CPUID ASUS CPU-Z.lnk
2023-10-11 17:03 - 2019-12-07 11:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2023-10-11 17:02 - 2022-11-10 21:09 - 000314896 _____ C:\Windows\system32\FNTCACHE.DAT
2023-10-11 17:01 - 2023-02-25 15:49 - 000000000 ___SD C:\Windows\system32\AppV
2023-10-11 17:01 - 2023-02-25 15:49 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2023-10-11 17:01 - 2019-12-07 16:54 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2023-10-11 17:01 - 2019-12-07 16:54 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2023-10-11 17:01 - 2019-12-07 16:50 - 000000000 ____D C:\Windows\SysWOW64\de
2023-10-11 17:01 - 2019-12-07 16:50 - 000000000 ____D C:\Windows\system32\de
2023-10-11 17:01 - 2019-12-07 11:14 - 000000000 ___SD C:\Windows\SysWOW64\F12
2023-10-11 17:01 - 2019-12-07 11:14 - 000000000 ___SD C:\Windows\SysWOW64\DiagSvcs
2023-10-11 17:01 - 2019-12-07 11:14 - 000000000 ___SD C:\Windows\system32\UNP
2023-10-11 17:01 - 2019-12-07 11:14 - 000000000 ___SD C:\Windows\system32\F12
2023-10-11 17:01 - 2019-12-07 11:14 - 000000000 ___SD C:\Windows\system32\DiagSvcs
2023-10-11 17:01 - 2019-12-07 11:14 - 000000000 ___RD C:\Windows\PrintDialog
2023-10-11 17:01 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\WinMetadata
2023-10-11 17:01 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\setup
2023-10-11 17:01 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\PerceptionSimulation
2023-10-11 17:01 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\oobe
2023-10-11 17:01 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\migwiz
2023-10-11 17:01 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\lv-LV
2023-10-11 17:01 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\lt-LT
2023-10-11 17:01 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\et-EE
2023-10-11 17:01 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\es-MX
2023-10-11 17:01 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\Dism
2023-10-11 17:01 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\Com
2023-10-11 17:01 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\AdvancedInstallers
2023-10-11 17:01 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SystemResources
2023-10-11 17:01 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\WinMetadata
2023-10-11 17:01 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\WinBioPlugIns
2023-10-11 17:01 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\SystemResetPlatform
2023-10-11 17:01 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\Sysprep
2023-10-11 17:01 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\ShellExperiences
2023-10-11 17:01 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\setup
2023-10-11 17:01 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\PerceptionSimulation
2023-10-11 17:01 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\oobe
2023-10-11 17:01 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\migwiz
2023-10-11 17:01 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\lv-LV
2023-10-11 17:01 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\lt-LT
2023-10-11 17:01 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\et-EE
2023-10-11 17:01 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\es-MX
2023-10-11 17:01 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\Dism
2023-10-11 17:01 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\Com
2023-10-11 17:01 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\appraiser
2023-10-11 17:01 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\AdvancedInstallers
2023-10-11 17:01 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\ShellExperiences
2023-10-11 17:01 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\ShellComponents
2023-10-11 17:01 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\Provisioning
2023-10-11 17:01 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\PolicyDefinitions
2023-10-11 17:01 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\IME
2023-10-11 17:01 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\bcastdvr
2023-10-11 17:01 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Windows Defender
2023-10-11 17:01 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Common Files\System
2023-10-11 17:01 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2023-10-11 17:01 - 2019-12-07 11:03 - 000000000 ____D C:\Windows\servicing
2023-10-11 17:00 - 2019-12-07 16:54 - 000023552 _____ (Microsoft Corporation) C:\Windows\system32\OEMDefaultAssociations.dll
2023-10-11 17:00 - 2019-12-07 11:15 - 000208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msclmd.dll
2023-10-11 17:00 - 2019-12-07 11:14 - 000232448 _____ (Microsoft Corporation) C:\Windows\system32\msclmd.dll
2023-10-11 17:00 - 2019-12-07 11:03 - 000000000 ____D C:\Windows\CbsTemp
2023-10-11 16:57 - 2022-11-10 21:12 - 003014144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll
2023-10-11 16:53 - 2022-11-10 21:17 - 000000000 ____D C:\Windows\system32\MRT
2023-10-11 16:51 - 2022-11-10 21:17 - 181553176 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2023-10-10 16:31 - 2022-11-10 22:19 - 000000000 ____D C:\Users\*************\AppData\Roaming\Loxone
2023-10-09 16:38 - 2022-11-10 22:05 - 000000000 ____D C:\Users\*************\AppData\Local\Steam
2023-10-05 17:14 - 2022-11-10 21:09 - 000000000 ____D C:\Windows\system32\Drivers\wd
2023-10-03 19:36 - 2022-11-10 21:15 - 000000000 ____D C:\Users\*************\AppData\Local\PlaceholderTileLogoFolder
2023-09-29 22:52 - 2022-11-10 22:19 - 000000920 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Loxone Monitor.lnk
2023-09-29 22:52 - 2022-11-10 22:19 - 000000917 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Loxone Config.lnk
2023-09-29 22:52 - 2022-11-10 22:19 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Loxone
2023-09-29 22:52 - 2022-11-10 22:19 - 000000000 ____D C:\ProgramData\Loxone
2023-09-28 21:02 - 2023-01-09 17:34 - 000000000 ____D C:\Users\*************\Desktop\Neuer Ordner
2023-09-25 21:53 - 2022-11-10 22:51 - 000000000 ____D C:\Users\*************\Desktop\Programme
2023-09-25 18:28 - 2022-11-10 23:02 - 000003348 _____ C:\Windows\system32\Tasks\SamsungMagician
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse ========
2023-06-22 12:15 - 2023-06-22 16:49 - 000000128 _____ () C:\Users\*************\AppData\Local\PUTTY.RND
==================== SigCheckExt =========================
2023-09-20 19:28 - 2019-10-29 12:52 - 000318464 _____ ( ) C:\Windows\system32\BrFaxTxAppRunA64.dll
2023-09-20 19:28 - 2019-09-26 16:19 - 000121344 _____ () C:\Windows\system32\BrNetSti.dll
2023-09-20 19:28 - 2019-07-12 15:45 - 000065024 _____ () C:\Windows\system32\Brnsplg.dll
2023-09-20 19:28 - 2019-07-12 15:45 - 000072192 _____ () C:\Windows\system32\BrWiaNCp.dll
2023-08-08 20:41 - 2023-08-08 20:30 - 000083456 _____ (Microsoft Corporation) C:\Windows\system32\devcon.exe
2023-10-03 19:36 - 2023-10-03 19:35 - 000503808 _____ (Microsoft Corporation) C:\Windows\system32\gameplatformservices.dll
2023-09-20 19:28 - 2019-07-12 15:45 - 000670208 _____ C:\Windows\system32\NSSRH64.dll
2022-10-13 14:48 - 2022-10-13 14:48 - 001064448 _____ C:\Windows\DDS-StartBit.exe
2022-10-13 14:48 - 2022-10-13 14:48 - 001064448 _____ C:\Windows\DDS-StartBsp.exe
2003-03-18 21:14 - 2003-03-18 21:14 - 000499712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcp71.dll
2003-02-21 05:42 - 2003-02-21 05:42 - 000348160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcr71.dll
2023-10-24 16:42 - 2023-10-24 16:42 - 002383360 _____ (Farbar) C:\Users\*************\Desktop\FRST64 (1).exe
2023-10-23 21:38 - 2023-10-23 21:38 - 002383360 _____ (Farbar) C:\Users\*************\Downloads\FRST64.exe
==================== SigCheck ============================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
==================== BCD ================================
Start-Manager für Firmware
--------------------------
Bezeichner {fwbootmgr}
displayorder {bootmgr}
{8d418ede-6d27-11ee-8965-806e6f6e6963}
{8d418edf-6d27-11ee-8965-806e6f6e6963}
{8d418ee0-6d27-11ee-8965-806e6f6e6963}
timeout 1
Windows-Start-Manager
---------------------
Bezeichner {bootmgr}
device partition=\Device\HarddiskVolume2
path \EFI\Microsoft\Boot\bootmgfw.efi
description Windows Boot Manager
locale de-DE
inherit {globalsettings}
default {current}
resumeobject {fe30fece-612a-11ed-bb12-d0af40d472f3}
displayorder {current}
toolsdisplayorder {memdiag}
timeout 30
Firmwareanwendung (101fffff)
----------------------------
Bezeichner {8d418ede-6d27-11ee-8965-806e6f6e6963}
description UEFI:CD/DVD Drive
Firmwareanwendung (101fffff)
----------------------------
Bezeichner {8d418edf-6d27-11ee-8965-806e6f6e6963}
description UEFI:Removable Device
Firmwareanwendung (101fffff)
----------------------------
Bezeichner {8d418ee0-6d27-11ee-8965-806e6f6e6963}
description UEFI:Network Device
Windows-Startladeprogramm
-------------------------
Bezeichner {current}
device partition=C:
path \Windows\system32\winload.efi
description Windows 10
locale de-DE
inherit {bootloadersettings}
recoverysequence {fe30fed0-612a-11ed-bb12-d0af40d472f3}
displaymessageoverride Recovery
recoveryenabled Yes
isolatedcontext Yes
allowedinmemorysettings 0x15000075
osdevice partition=C:
systemroot \Windows
resumeobject {fe30fece-612a-11ed-bb12-d0af40d472f3}
nx OptIn
bootmenupolicy Standard
Windows-Startladeprogramm
-------------------------
Bezeichner {fe30fed0-612a-11ed-bb12-d0af40d472f3}
device ramdisk=[\Device\HarddiskVolume5]\Recovery\WindowsRE\Winre.wim,{fe30fed1-612a-11ed-bb12-d0af40d472f3}
path \windows\system32\winload.efi
description Windows Recovery Environment
locale de-de
inherit {bootloadersettings}
displaymessage Recovery
osdevice ramdisk=[\Device\HarddiskVolume5]\Recovery\WindowsRE\Winre.wim,{fe30fed1-612a-11ed-bb12-d0af40d472f3}
systemroot \windows
nx OptIn
bootmenupolicy Standard
winpe Yes
Wiederaufnahme aus dem Ruhezustand
----------------------------------
Bezeichner {fe30fece-612a-11ed-bb12-d0af40d472f3}
device partition=C:
path \Windows\system32\winresume.efi
description Windows Resume Application
locale de-DE
inherit {resumeloadersettings}
recoverysequence {fe30fed0-612a-11ed-bb12-d0af40d472f3}
recoveryenabled Yes
isolatedcontext Yes
allowedinmemorysettings 0x15000075
filedevice partition=C:
filepath \hiberfil.sys
bootmenupolicy Standard
debugoptionenabled No
Windows-Speichertestprogramm
----------------------------
Bezeichner {memdiag}
device partition=\Device\HarddiskVolume2
path \EFI\Microsoft\Boot\memtest.efi
description Windows-Speicherdiagnose
locale de-DE
inherit {globalsettings}
badmemoryaccess Yes
EMS-Einstellungen
-----------------
Bezeichner {emssettings}
bootems No
Debuggereinstellungen
---------------------
Bezeichner {dbgsettings}
debugtype Local
RAM-Defekte
-----------
Bezeichner {badmemory}
Globale Einstellungen
---------------------
Bezeichner {globalsettings}
inherit {dbgsettings}
{emssettings}
{badmemory}
Startladeprogramm-Einstellungen
-------------------------------
Bezeichner {bootloadersettings}
inherit {globalsettings}
{hypervisorsettings}
Hypervisoreinstellungen
-----------------------
Bezeichner {hypervisorsettings}
hypervisordebugtype Serial
hypervisordebugport 1
hypervisorbaudrate 115200
Einstellungen zur Ladeprogrammfortsetzung
-----------------------------------------
Bezeichner {resumeloadersettings}
inherit {globalsettings}
Geräteoptionen
--------------
Bezeichner {fe30fed1-612a-11ed-bb12-d0af40d472f3}
description Windows Recovery
ramdisksdidevice partition=\Device\HarddiskVolume5
ramdisksdipath \Recovery\WindowsRE\boot.sdi
==================== Ende von FRST.txt ========================
Ich hoffe mir kann da wer helfen.  |
| Themen zu Win10 Pro, 64 Bit, v 22h22: Trojaner Wacatac.h!ml |
| administrator, adobe, defender, desktop, dll, entfernen, euro, geforce, google, installation, internet, logfile, nvidia, pdf, performance, prozesse, realtek, scan, server, services.exe, svchost.exe, system, temp, trojaner, windows |
Baum-Darstellung