Hi Matthias,
hab gesehen das mein Bruder auch etwas Updatefaul war. Habe alle Windows Updates gestern noch durchlaufen lassen. Hab deshalb den FRST Scan nocheinmaldurch laufen lassen. Deshalb hier die frischen Log's + MBAM.
MBAM: Code:
Malwarebytes
www.malwarebytes.com
-Protokolldetails-
Scan-Datum: 24.06.21
Scan-Zeit: 15:17
Protokolldatei: 949972cc-d4ee-11eb-aafa-94c69197b5dc.json
-Softwaredaten-
Version: 4.4.0.117
Komponentenversion: 1.0.1344
Version des Aktualisierungspakets: 1.0.42175
Lizenz: Testversion
-Systemdaten-
Betriebssystem: Windows 10 (Build 19041.985)
CPU: x64
Dateisystem: NTFS
Benutzer: DESKTOP-6K1BO3P\maikp
-Scan-Übersicht-
Scan-Typ: Bedrohungs-Scan
Scan gestartet von: Manuell
Ergebnis: Abgeschlossen
Gescannte Objekte: 330873
Erkannte Bedrohungen: 17
In die Quarantäne verschobene Bedrohungen: 17
Abgelaufene Zeit: 4 Min., 21 Sek.
-Scan-Optionen-
Speicher: Aktiviert
Start: Aktiviert
Dateisystem: Aktiviert
Archive: Aktiviert
Rootkits: Deaktiviert
Heuristik: Aktiviert
PUP: Erkennung
PUM: Erkennung
-Scan-Details-
Prozess: 0
(keine bösartigen Elemente erkannt)
Modul: 0
(keine bösartigen Elemente erkannt)
Registrierungsschlüssel: 0
(keine bösartigen Elemente erkannt)
Registrierungswert: 0
(keine bösartigen Elemente erkannt)
Registrierungsdaten: 0
(keine bösartigen Elemente erkannt)
Daten-Stream: 0
(keine bösartigen Elemente erkannt)
Ordner: 0
(keine bösartigen Elemente erkannt)
Datei: 17
Generic.Malware/Suspicious, C:\USERS\MAIKP\APPDATA\LOCAL\SETUP32567.EXE, In Quarantäne, 0, 392686, 1.0.42175, , shuriken, , C7F52865F4C7444AF6480977272F3E1D, FD4673EDB15D18EFD3F554ABC0F4B4A45F15FD4D48BECDB032B6279DAB2E5196
Generic.Malware/Suspicious, C:\USERS\MAIKP\APPDATA\LOCAL\SETUP68752.EXE, In Quarantäne, 0, 392686, 1.0.42175, , shuriken, , C7F52865F4C7444AF6480977272F3E1D, FD4673EDB15D18EFD3F554ABC0F4B4A45F15FD4D48BECDB032B6279DAB2E5196
Generic.Malware/Suspicious, C:\USERS\MAIKP\APPDATA\LOCAL\SETUP43750.EXE, In Quarantäne, 0, 392686, 1.0.42175, , shuriken, , C7F52865F4C7444AF6480977272F3E1D, FD4673EDB15D18EFD3F554ABC0F4B4A45F15FD4D48BECDB032B6279DAB2E5196
Generic.Malware/Suspicious, C:\USERS\MAIKP\APPDATA\LOCAL\SETUP16028.EXE, In Quarantäne, 0, 392686, 1.0.42175, , shuriken, , C7F52865F4C7444AF6480977272F3E1D, FD4673EDB15D18EFD3F554ABC0F4B4A45F15FD4D48BECDB032B6279DAB2E5196
Malware.AI.1112351986, C:\USERS\MAIKP\DOWNLOADS\COVID.ZIP, In Quarantäne, 1000000, 0, 1.0.42175, 30AC2FA791EFC91F424D24F2, dds, 01303940, DAA35386716AE05BE07EF2C6E6603744, E28C41178EE03DEAB117A4CDCCB5D377F4E43AC4A87F53EA798D1DA082792CA8
PUP.Optional.InstallUnion, C:\USERS\MAIKP\DOWNLOADS\DLL INJECTOR V2_68752.EXE, In Quarantäne, 11096, 721386, 1.0.42175, 6595407FA61D51D8E15081CE, dds, 01303940, 6A2B155006DADF84C7CDCDBDED6C6AC3, 17DEE04B609C1953D8739D7642E7CE8571FAAD21B2283FABD98E7931E8BEA819
PUP.Optional.InstallUnion, C:\USERS\MAIKP\DOWNLOADS\EXTREME INJECTOR 3.8_32567.EXE, In Quarantäne, 11096, 721386, 1.0.42175, 6595407FA61D51D8E15081CE, dds, 01303940, 6A2B155006DADF84C7CDCDBDED6C6AC3, 17DEE04B609C1953D8739D7642E7CE8571FAAD21B2283FABD98E7931E8BEA819
PUP.Optional.InstallUnion, C:\USERS\MAIKP\DOWNLOADS\DLL INJECTOR V2_43750.EXE, In Quarantäne, 11096, 721386, 1.0.42175, 6595407FA61D51D8E15081CE, dds, 01303940, 6A2B155006DADF84C7CDCDBDED6C6AC3, 17DEE04B609C1953D8739D7642E7CE8571FAAD21B2283FABD98E7931E8BEA819
Malware.AI.3697371477, C:\USERS\MAIKP\DOWNLOADS\HAXORMODEV13.ZIP, In Quarantäne, 1000000, 0, 1.0.42175, 87A87B4660E872A6DC616955, dds, 01303940, 687D33B873FB20A05F8E7C10D1D3AEAF, E21086FC76BAAAC00A618AB409B73E4C9D2C4B8CF22D6702512902BF74726FAB
PUP.Optional.InstallUnion, C:\USERS\MAIKP\DOWNLOADS\DLL INJECTOR V2_16028.EXE, In Quarantäne, 11096, 721386, 1.0.42175, 6595407FA61D51D8E15081CE, dds, 01303940, 6A2B155006DADF84C7CDCDBDED6C6AC3, 17DEE04B609C1953D8739D7642E7CE8571FAAD21B2283FABD98E7931E8BEA819
Trojan.Injector, C:\USERS\MAIKP\DOWNLOADS\DLLINJECTOR (2).EXE, In Quarantäne, 743, 747780, 1.0.42175, A1ACF4DAEDF805EAC783D14D, dds, 01303940, 0A5A1030BEBA8CBA4F283A0636231EE1, 0DB7DDDD89FC145AB250C69C543A0B0CCC5BCE53D017F2FAF63D9A115A011D26
Adware.DownloadAssistant, C:\USERS\MAIKP\DOWNLOADS\KDO-AMONG-US-237688577187.ZIP, In Quarantäne, 763, 892045, 1.0.42175, 2ACDD13E66E544891DCD6427, dds, 01303940, DB24592252251D372AE9B3823D21E0CE, E7D09D30FD648E650372036D9644425963D48FA7BA87FEAD1F0EFA242C0D621E
Trojan.Injector, C:\USERS\MAIKP\DOWNLOADS\DLLINJECTOR.EXE, In Quarantäne, 743, 747780, 1.0.42175, A1ACF4DAEDF805EAC783D14D, dds, 01303940, 0A5A1030BEBA8CBA4F283A0636231EE1, 0DB7DDDD89FC145AB250C69C543A0B0CCC5BCE53D017F2FAF63D9A115A011D26
PUP.Optional.BundleInstaller, C:\USERS\MAIKP\DOWNLOADS\UTWEB_INSTALLER.EXE, In Quarantäne, 527, 875791, 1.0.42175, , ame, , 5D23F9AEE9945A1F7C695BB54412D8AF, 42DF8EF347C41713614649921EF0B36ED763DA41CBB2D43576ED1EE8F6ADAE9C
PUP.Optional.ChipDe, C:\USERS\MAIKP\DOWNLOADS\VLC MEDIA PLAYER 64 BIT - CHIP-INSTALLER VOM 31.03.2021 BF9D0ADAD0EDE38EB4DE4BA37219C086.EXE, In Quarantäne, 630, 557991, 1.0.42175, , ame, , 9A3EA170EE790A5E496858194A3AE493, 0C558FFF60A02EAFE267B4C075D687CF9F172FE0A4D4263E9B858A9896CD43A2
PUP.Optional.BundleInstaller, C:\USERS\MAIKP\DOWNLOADS\UTORRENT.EXE, In Quarantäne, 527, 875791, 1.0.42175, , ame, , C7C8F54708D4867BD0E1FD8D0AF1A73B, 6850ECC63BA46B91559AB8AEF1BF890F7E3DD26622A9D0935CD84D425DA798FE
Trojan.Injector, C:\USERS\MAIKP\DOWNLOADS\DLLINJECTOR (1).EXE, In Quarantäne, 743, 747780, 1.0.42175, A1ACF4DAEDF805EAC783D14D, dds, 01303940, 0A5A1030BEBA8CBA4F283A0636231EE1, 0DB7DDDD89FC145AB250C69C543A0B0CCC5BCE53D017F2FAF63D9A115A011D26
Physischer Sektor: 0
(keine bösartigen Elemente erkannt)
WMI: 0
(keine bösartigen Elemente erkannt)
(end) FRST: Code:
Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 26-06-2021
durchgeführt von maikp (Administrator) auf DESKTOP-6K1BO3P (Acer Nitro N50-600) (26-06-2021 15:54:27)
Gestartet von C:\Users\maikp\OneDrive\Desktop\Neuer Ordner
Geladene Profile: maikp
Platform: Windows 10 Home Version 21H1 19043.1081 (X64) Sprache: Deutsch (Deutschland)
Standard-Browser: Edge
Start-Modus: Normal
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
(Acer Incorporated -> ) C:\Program Files (x86)\Acer\Care Center\ACCStd.exe
(Acer Incorporated -> Acer Incorporated) C:\Program Files (x86)\Acer\Care Center\ACCSvc.exe
(Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\NitroSense Service\PSAdminAgent.exe
(Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\NitroSense Service\PSSvc.exe
(Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Quick Access Service\QAAdminAgent.exe
(Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Quick Access Service\QAAgent.exe
(Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Quick Access Service\QASvc.exe
(Discord Inc. -> Discord Inc.) C:\Users\maikp\AppData\Local\Discord\app-1.0.9002\Discord.exe <6>
(Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe
(Epic Games Inc. -> Epic Games, Inc.) D:\Epic Games\Launcher\Engine\Binaries\Win64\EpicWebHelper.exe <4>
(Epic Games Inc. -> Epic Games, Inc.) D:\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe
(Global Media (Thailand) Co., Ltd -> Global Media (Thailand) Co., Ltd) C:\Program Files (x86)\MaskVPN\mask_svc.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.82\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.82\GoogleCrashHandler64.exe
(Hanvon Ugee Technology Co., Ltd. -> ) C:\Program Files\Pentablet\PenTablet.exe
(Intel Corporation -> Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Intel Corporation -> Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Intel Corporation -> Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_ffc75848a6342fdf\jhi_service.exe
(Intel(R) Extreme Tuning Utility -> Intel(R) Corporation) C:\Program Files (x86)\Intel\Intel(R) Extreme Tuning Utility\XtuService.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel(R) Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\ibtsiva.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <10>
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.Office.Desktop_16051.14026.20308.0_x86__8wekyb3d8bbwe\Office16\SDXHelperBgt.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.2103.8.0_x64__8wekyb3d8bbwe\Calculator.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.13426.20920.0_x64__8wekyb3d8bbwe\HxOutlook.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.13426.20920.0_x64__8wekyb3d8bbwe\HxTsr.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows Hardware Compatibility Publisher -> Creative Technology Ltd) C:\Windows\SysWOW64\Creative.UWPRPCService.exe
(Mixbyte Inc -> ) C:\Program Files (x86)\Common Files\Freemake Shared\ProductUpdater\ProductUpdater.exe
(Mixbyte Inc -> Freemake) C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe <2>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <2>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(OP.GG -> OP.GG) C:\Users\maikp\AppData\Local\Programs\opgg-electron-app\OP.GG.exe <5>
(Plarium Global Ltd -> ) D:\Plarium\PlariumPlay\6.6.0-0.0.0\PlariumPlayClientService.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe
(Riot Games, Inc. -> Riot Games, Inc.) C:\Program Files\Riot Vanguard\vgtray.exe
(SweetLabs Inc. -> SweetLabs, Inc) C:\Users\maikp\AppData\Local\Host App Service\Engine\HostAppServiceUpdater.exe
(WildTangent Inc -> ) C:\Program Files (x86)\WildTangent Games\Integration\WildTangentHelperService.exe
==================== Registry (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\RtkAudUService64.exe [672192 2018-04-18] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [320584 2018-02-13] (Intel(R) Rapid Storage Technology -> Intel Corporation)
HKLM\...\Run: [Riot Vanguard] => C:\Program Files\Riot Vanguard\vgtray.exe [564152 2021-05-21] (Riot Games, Inc. -> Riot Games, Inc.)
HKLM\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
HKLM\...\Run: [PenTablet] => C:\Program Files\Pentablet\PenTablet.exe [782016 2021-03-02] (Hanvon Ugee Technology Co., Ltd. -> )
HKLM-x32\...\Run: [ProductUpdater] => C:\Program Files (x86)\Common Files\Freemake Shared\ProductUpdater\ProductUpdater.exe [186592 2021-03-18] (Mixbyte Inc -> )
HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2133728 2017-09-12] (Wondershare Technology Co.,Ltd -> Wondershare)
HKU\S-1-5-21-614334572-4075455891-1303054103-1001\...\Run: [EpicGamesLauncher] => D:\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [33249248 2021-06-18] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-614334572-4075455891-1303054103-1001\...\Run: [Discord] => C:\Users\maikp\AppData\Local\Discord\Update.exe [1512760 2020-12-03] (Discord Inc. -> GitHub)
HKU\S-1-5-21-614334572-4075455891-1303054103-1001\...\Run: [Steam] => C:\Users\maikp\Desktop\steam.exe [4109032 2021-06-09] (Valve -> Valve Corporation)
HKU\S-1-5-21-614334572-4075455891-1303054103-1001\...\Run: [com.blitz.app] => C:\Users\maikp\AppData\Local\Programs\Blitz\Blitz.exe [109893896 2021-06-25] (Swift Media Entertainment, Inc. -> Blitz, Inc.)
HKU\S-1-5-21-614334572-4075455891-1303054103-1001\...\Run: [Snap Camera] => "C:\Program Files\Snap Inc\Snap Camera\Snap Camera.exe" --minimized-mode
HKU\S-1-5-21-614334572-4075455891-1303054103-1001\...\Run: [Voicemod] => D:\Voicemod Desktop\VoicemodDesktop.exe [5710480 2021-03-10] (Voicemod Sociedad Limitada -> Voicemod)
HKU\S-1-5-21-614334572-4075455891-1303054103-1001\...\Run: [Web Companion] => C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe --minimize
HKU\S-1-5-21-614334572-4075455891-1303054103-1001\...\Run: [gtarcade] => "C:\Users\maikp\AppData\Local\Gtarcade\app\gtarcade.exe" /auto_start=1 /game_id=0
HKU\S-1-5-21-614334572-4075455891-1303054103-1001\...\Run: [com.squirrel.Teams.Teams] => C:\Users\maikp\AppData\Local\Microsoft\Teams\Update.exe [2453704 2021-03-25] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
HKU\S-1-5-21-614334572-4075455891-1303054103-1001\...\Run: [utweb] => "C:\Users\maikp\AppData\Roaming\uTorrent Web\utweb.exe" /MINIMIZED
HKU\S-1-5-21-614334572-4075455891-1303054103-1001\...\Run: [Overwolf] => D:\Overwolf\OverwolfLauncher.exe [1747288 2021-06-06] (Overwolf Ltd -> Overwolf Ltd.)
HKU\S-1-5-21-614334572-4075455891-1303054103-1001\...\Run: [PlariumPlay] => D:\Plarium\PlariumPlay\PlariumPlay --args -run-with-os
HKU\S-1-5-21-614334572-4075455891-1303054103-1001\...\Run: [electron.app.OP.GG] => C:\Users\maikp\AppData\Local\Programs\opgg-electron-app\OP.GG.exe [110822424 2021-06-10] (OP.GG -> OP.GG)
HKU\S-1-5-21-614334572-4075455891-1303054103-1001\...\Run: [Battle.net] => C:\Program Files (x86)\Battle.net\Battle.net.exe [1079184 2021-06-09] (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
HKLM\...\Print\Monitors\us008 Langmon: C:\Windows\system32\us008lm.dll [31256 2016-02-15] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\91.0.4472.114\Installer\chrmstp.exe [2021-06-22] (Google LLC -> Google LLC)
Startup: C:\Users\maikp\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Nexon Launcher.lnk [2021-01-30]
ShortcutTarget: Nexon Launcher.lnk -> D:\Nexon Launcher\nexon_launcher.exe (Keine Datei)
GroupPolicy: Beschränkung ? <==== ACHTUNG
Policies: C:\ProgramData\NTUSER.pol: Beschränkung <==== ACHTUNG
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) ============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {2BB692C1-F60F-479E-ADC2-1CAF9422A2AC} - \Microsoft\Windows\Shell\FamilySafetyMonitorToastTask -> Keine Datei <==== ACHTUNG
Task: {2E72B4AB-2350-431C-A6DD-C8CC34371AFC} - \NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} -> Keine Datei <==== ACHTUNG
Task: {341AF946-CF59-4BC5-807F-6568DEE4BA9D} - \NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} -> Keine Datei <==== ACHTUNG
Task: {3B23AE36-D1ED-49D3-9336-09A9D6AD066A} - \NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} -> Keine Datei <==== ACHTUNG
Task: {3E932CC6-614B-4128-A64F-8862C1AA5BC3} - \UbtFrameworkService -> Keine Datei <==== ACHTUNG
Task: {4631FC9E-CFF8-4114-A720-D4CEF3C910E9} - \NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} -> Keine Datei <==== ACHTUNG
Task: {520B23B2-3BD9-4D6A-8AED-72C2E377BC26} - System32\Tasks\AcerCMUpdateTask2.1.16258 => C:\Program Files (x86)\Acer\Amundsen\2.1.16258\AWC.exe [152880 2016-09-20] (Acer Incorporated -> )
Task: {574D687B-6C33-4157-ADFF-164BFA43C860} - System32\Tasks\Oem\AcerJumpstartTask => C:\Program Files (x86)\Acer\Acer Jumpstart\hermes.exe [65064 2020-03-16] (Acer Incorporated -> Acer)
Task: {60CF1D63-389B-4880-B2EB-5719E8E6A3DA} - \ACCBackgroundApplication -> Keine Datei <==== ACHTUNG
Task: {6A9D27A9-2366-4FFD-B560-8591F249D6C9} - \NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} -> Keine Datei <==== ACHTUNG
Task: {6ECC17BA-2F21-4D1D-A937-AF5B7E29ED7A} - \Microsoft\Windows\UpdateOrchestrator\Reboot -> Keine Datei <==== ACHTUNG
Task: {71284B95-8B53-49D1-82DE-E8BC20176B54} - \ACCAgent -> Keine Datei <==== ACHTUNG
Task: {77D09686-A393-44F5-BDFF-BBF8257A681E} - System32\Tasks\Overwolf Updater Task => D:\Overwolf\OverwolfUpdater.exe [2493784 2021-06-06] (Overwolf Ltd -> Overwolf LTD)
Task: {7A5C3E79-620E-4235-8D76-36DDB6401397} - \ACC -> Keine Datei <==== ACHTUNG
Task: {7BC7FEFC-1D08-436A-BA8A-2FC1EA2CC310} - \Microsoft\Windows\UpdateOrchestrator\USO_Broker_Display -> Keine Datei <==== ACHTUNG
Task: {910DD0A8-37A9-491E-A33E-FEABDC818F4B} - \NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} -> Keine Datei <==== ACHTUNG
Task: {9C992FDA-7345-48A1-AA77-9135C0F99640} - \UEIPInvitation -> Keine Datei <==== ACHTUNG
Task: {9E757E94-0D74-4822-AB40-C654DA75DED2} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154440 2021-02-05] (Google LLC -> Google LLC)
Task: {AC562A00-57BE-4658-802B-002DAAB858EA} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154440 2021-02-05] (Google LLC -> Google LLC)
Task: {ADD9E730-F89B-4B04-884A-960BDD0A4771} - System32\Tasks\Quick Access => C:\Program Files\Acer\Quick Access Service\QALauncher.exe [447528 2020-09-10] (Acer Incorporated -> Acer Incorporated)
Task: {B6E67297-4E2A-4BAB-9C4A-63B62EDBF591} - \Microsoft\Windows\Management\Provisioning\PostResetBoot -> Keine Datei <==== ACHTUNG
Task: {B8C56822-FBD1-4D2F-B99E-0647ACA652B8} - \OneDrive Standalone Update Task v2 -> Keine Datei <==== ACHTUNG
Task: {BC894BEE-DBDC-4320-9E55-1FA1481FFE4E} - \NitroSense -> Keine Datei <==== ACHTUNG
Task: {C2098BE2-A29A-4EB1-97F6-F0C57E086D4F} - \Microsoft\Windows\Speech\HeadsetButtonPress -> Keine Datei <==== ACHTUNG
Task: {C48D50E5-71A9-48D8-B7C1-3DA9AECBDEC3} - \Microsoft\Windows\WindowsUpdate\sih -> Keine Datei <==== ACHTUNG
Task: {CAA5095A-5710-4ECA-B479-63AFD24C2EBC} - System32\Tasks\Oem\wlanBrokerTask => C:\Program Files (x86)\Acer\ExpressVPN\wlanBroker.exe [17688 2019-11-16] (Acer Incorporated -> )
Task: {D51E9408-AD9D-48C9-987F-F3B6B1E84F08} - \Software Update Application -> Keine Datei <==== ACHTUNG
Task: {DF84172F-5893-4B81-87CE-CDD27440D134} - \App Explorer -> Keine Datei <==== ACHTUNG
Task: {F7574562-3728-426F-A030-0B9A34FDE8C6} - System32\Tasks\Mozilla\Firefox Default Browser Agent E7CF176E110C211B => C:\Program Files (x86)\Mozilla Firefox\default-browser-agent.exe
Task: {FAAE648A-8635-4BB9-A4F3-A2F76450A42E} - \NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} -> Keine Datei <==== ACHTUNG
Task: {FB9C3FA5-846A-4676-9F7B-00C8C836FD42} - \NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} -> Keine Datei <==== ACHTUNG
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{3d2fa56a-527e-489e-a1d8-37e542a17379}: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{7b527701-6d97-4960-bd2e-1a3699baf7d1}: [DhcpNameServer] 172.39.1.1
Edge:
=======
Edge Extension: (Kein Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [nicht gefunden]
Edge Extension: (Kein Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [nicht gefunden]
Edge Extension: (Kein Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [nicht gefunden]
Edge Extension: (Kein Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [nicht gefunden]
Edge DefaultProfile: Default
Edge Profile: C:\Users\maikp\AppData\Local\Microsoft\Edge\User Data\Default [2021-06-26]
FireFox:
========
FF DefaultProfile: 87kwyut5.default
FF ProfilePath: C:\Users\maikp\AppData\Roaming\Mozilla\Firefox\Profiles\87kwyut5.default [2021-06-14]
FF Extension: (Amazon Assistant for Firefox) - C:\Users\maikp\AppData\Roaming\Mozilla\Firefox\Profiles\87kwyut5.default\Extensions\abb-acer@amazon.com.xpi [2021-02-04] [UpdateUrl:hxxps://s3-us-west-2.amazonaws.com/ubp-ubpextension-us-prod/vendor-update/firefox/acer1/updates.json]
FF Extension: (Deutsch (DE) Language Pack) - C:\Users\maikp\AppData\Roaming\Mozilla\Firefox\Profiles\87kwyut5.default\Extensions\langpack-de@firefox.mozilla.org.xpi [2021-02-26]
FF Plugin: @videolan.org/vlc,version=3.0.12 -> D:\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2018-01-24] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [Datei ist nicht signiert]
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2018-01-24] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [Datei ist nicht signiert]
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\maikp\AppData\Local\Google\Chrome\User Data\Default [2021-06-26]
CHR DownloadDir: D:\
CHR Notifications: Default -> hxxps://app.knuddels.de; hxxps://bestcaptcharesolver.com; hxxps://de.aliexpress.com; hxxps://filmii.wondershare.com; hxxps://linkvertise.com; hxxps://web.whatsapp.com; hxxps://ww7.ouo.today; hxxps://www.epal.gg; hxxps://www.giga.de; hxxps://www.netflix.com; hxxps://www.prosieben.de; hxxps://www.reddit.com
CHR Extension: (Präsentationen) - C:\Users\maikp\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-12-19]
CHR Extension: (Audio-Equalizer) - C:\Users\maikp\AppData\Local\Google\Chrome\User Data\Default\Extensions\aemjbieioebobglekneinkpijacjiohn [2020-12-19]
CHR Extension: (BetterTTV) - C:\Users\maikp\AppData\Local\Google\Chrome\User Data\Default\Extensions\ajopnjidmegmdimjlfnijceegpefgped [2021-05-24]
CHR Extension: (Docs) - C:\Users\maikp\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2020-12-19]
CHR Extension: (Google Drive) - C:\Users\maikp\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-12-19]
CHR Extension: (YouTube) - C:\Users\maikp\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-12-19]
CHR Extension: (Adblock Plus - kostenloser Adblocker) - C:\Users\maikp\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2021-05-20]
CHR Extension: (Tabellen) - C:\Users\maikp\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-12-19]
CHR Extension: (Google Docs Offline) - C:\Users\maikp\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-06-24]
CHR Extension: (Audio Mi- sound booster & equalizer) - C:\Users\maikp\AppData\Local\Google\Chrome\User Data\Default\Extensions\hdmohcenjhllhmcehajbpfpiepjdpnpp [2021-06-18]
CHR Extension: (Web Safety) - C:\Users\maikp\AppData\Local\Google\Chrome\User Data\Default\Extensions\mfhcmdonhekjhfbjmeacdjbhlfgpjabp [2021-02-03]
CHR Extension: (Ears: Bass Boost, EQ Any Audio!) - C:\Users\maikp\AppData\Local\Google\Chrome\User Data\Default\Extensions\nfdfiepdkbnoanddpianalelglmfooik [2020-12-19]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\maikp\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Extension: (Google Mail) - C:\Users\maikp\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-12-19]
CHR Extension: (Chrome Media Router) - C:\Users\maikp\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-06-04]
CHR Profile: C:\Users\maikp\AppData\Local\Google\Chrome\User Data\Profile 1 [2021-02-04]
CHR Extension: (Präsentationen) - C:\Users\maikp\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-02-04]
CHR Extension: (Docs) - C:\Users\maikp\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2021-02-04]
CHR Extension: (Google Drive) - C:\Users\maikp\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-02-04]
CHR Extension: (YouTube) - C:\Users\maikp\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2021-02-04]
CHR Extension: (Tabellen) - C:\Users\maikp\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-02-04]
CHR Extension: (Google Docs Offline) - C:\Users\maikp\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-02-04]
CHR Extension: (Web Safety) - C:\Users\maikp\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\mfhcmdonhekjhfbjmeacdjbhlfgpjabp [2021-02-04]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\maikp\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-02-04]
CHR Extension: (Google Mail) - C:\Users\maikp\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-02-04]
CHR Extension: (Chrome Media Router) - C:\Users\maikp\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-02-04]
CHR Profile: C:\Users\maikp\AppData\Local\Google\Chrome\User Data\System Profile [2021-02-04]
CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif]
CHR HKLM-x32\...\Chrome\Extension: [aegnopegbbhjeeiganiajffnalhlkkjb]
CHR HKLM-x32\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif]
CHR HKLM-x32\...\Chrome\Extension: [mfhcmdonhekjhfbjmeacdjbhlfgpjabp]
==================== Dienste (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R2 ACCSvc; C:\Program Files (x86)\Acer\Care Center\ACCSvc.exe [301872 2018-07-26] (Acer Incorporated -> Acer Incorporated)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8901968 2021-02-24] (BattlEye Innovations e.K. -> )
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [802432 2021-06-23] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
R2 Freemake Improver; C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe [84704 2021-03-18] (Mixbyte Inc -> Freemake)
R2 MaskVPNService; C:\Program Files (x86)\MaskVPN\mask_svc.exe [7493560 2020-08-06] (Global Media (Thailand) Co., Ltd -> Global Media (Thailand) Co., Ltd)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7391408 2021-06-24] (Malwarebytes Inc -> Malwarebytes)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2556048 2021-06-22] (Electronic Arts, Inc. -> Electronic Arts)
R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3474584 2021-06-22] (Electronic Arts, Inc. -> Electronic Arts)
S3 OverwolfUpdater; D:\Overwolf\OverwolfUpdater.exe [2493784 2021-06-06] (Overwolf Ltd -> Overwolf LTD)
R2 Plarium Play Client Service; D:\Plarium\PlariumPlay\6.6.0-0.0.0\PlariumPlayClientService.exe [92280 2021-05-28] (Plarium Global Ltd -> )
R3 PSSvc; C:\Program Files\Acer\NitroSense Service\PSSvc.exe [855344 2018-06-22] (Acer Incorporated -> Acer Incorporated)
R3 QASvc; C:\Program Files\Acer\Quick Access Service\QASvc.exe [526888 2020-09-10] (Acer Incorporated -> Acer Incorporated)
S3 ss_conn_launcher_service; C:\WINDOWS\System32\Samsung\EasySetup\ss_conn_launcher.exe [182120 2019-09-24] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 UEIPSvc; C:\Program Files\Acer\User Experience Improvement Program Service\Framework\UBTService.exe [304944 2018-06-28] (Acer Incorporated -> Acer Incorporated)
R2 UWPService; C:\WINDOWS\SysWOW64\Creative.UWPRPCService.exe [357288 2020-10-27] (Microsoft Windows Hardware Compatibility Publisher -> Creative Technology Ltd)
S3 vgc; C:\Program Files\Riot Vanguard\vgc.exe [10322376 2021-05-21] (Riot Games, Inc. -> Riot Games, Inc.)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2105.5-0\NisSrv.exe [2644776 2021-06-22] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WildTangentHelper; C:\Program Files (x86)\WildTangent Games\Integration\WildTangentHelperService.exe [1637424 2021-06-16] (WildTangent Inc -> )
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2105.5-0\MsMpEng.exe [136656 2021-06-22] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Treiber (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
S3 CorsairVBusDriver; C:\WINDOWS\System32\drivers\CorsairVBusDriver.sys [45984 2020-07-06] (Microsoft Windows Hardware Compatibility Publisher -> Corsair)
S3 CorsairVHidDriver; C:\WINDOWS\System32\drivers\CorsairVHidDriver.sys [21920 2020-07-06] (Microsoft Windows Hardware Compatibility Publisher -> Corsair)
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [199128 2021-06-24] (Malwarebytes Inc -> Malwarebytes)
R3 GeneStor; C:\WINDOWS\System32\drivers\GeneStor.sys [181072 2019-07-22] (GENESYS LOGIC, INC. -> Genesys Logic)
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [220752 2021-06-24] (Malwarebytes Inc -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2021-06-24] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMFarflt; C:\WINDOWS\System32\DRIVERS\farflt.sys [198888 2021-06-25] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [69016 2021-06-25] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248992 2021-06-24] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [156880 2021-06-25] (Malwarebytes Inc -> Malwarebytes)
R3 MBfilt; C:\WINDOWS\system32\drivers\MBfilt64.sys [34896 2018-12-10] (WDKTestCert ctl_avpbuild,131450919658074287 -> Creative Technology Ltd.)
R3 ScpVBus; C:\WINDOWS\System32\drivers\ScpVBus.sys [39168 2013-05-19] (Bruce James -> Scarlet.Crush Productions)
R3 SnapCameraVirtualDevice; C:\WINDOWS\System32\drivers\SnapCameraVirtualDevice.sys [2800232 2020-10-12] (Snap Inc. -> Windows (R) Win 7 DDK provider)
S3 ssudqcfilter; C:\WINDOWS\System32\drivers\ssudqcfilter.sys [64872 2019-09-24] (Samsung Electronics Co., Ltd. -> QUALCOMM Incorporated)
S3 ss_conn_usb_driver; C:\WINDOWS\System32\Drivers\ss_conn_usb_driver.sys [43368 2019-09-24] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 ss_conn_usb_driver2; C:\WINDOWS\System32\Drivers\ss_conn_usb_driver2.sys [43584 2019-09-24] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [27136 2018-08-29] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
R1 vgk; C:\Program Files\Riot Vanguard\vgk.sys [8182600 2021-05-20] (Riot Games, Inc. -> Riot Games, Inc.)
R3 vmulti; C:\WINDOWS\System32\drivers\vmulti.sys [10752 2020-04-13] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider)
R3 VOICEMOD_Driver; C:\WINDOWS\system32\drivers\vmdrv.sys [48136 2021-03-03] (Voicemod Sociedad Limitada -> Windows (R) Win 7 DDK provider)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [49568 2021-06-22] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [425184 2021-06-22] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [76000 2021-06-22] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Ein Monat (erstellte) (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2021-06-25 18:22 - 2021-06-25 18:22 - 000000569 _____ C:\Users\Public\Desktop\Guild Wars 2.lnk
2021-06-25 18:22 - 2021-06-25 18:22 - 000000569 _____ C:\ProgramData\Desktop\Guild Wars 2.lnk
2021-06-25 18:22 - 2021-06-25 18:22 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Guild Wars 2
2021-06-25 16:21 - 2021-06-25 16:21 - 000198888 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys
2021-06-25 16:21 - 2021-06-25 16:21 - 000156880 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2021-06-25 16:21 - 2021-06-25 16:21 - 000069016 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2021-06-25 16:04 - 2021-06-25 16:04 - 002371072 _____ C:\WINDOWS\system32\rdpnano.dll
2021-06-25 16:04 - 2021-06-25 16:04 - 001314128 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2021-06-25 16:04 - 2021-06-25 16:04 - 000570880 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2021-06-25 16:04 - 2021-06-25 16:04 - 000452608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2021-06-25 16:04 - 2021-06-25 16:04 - 000084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscui.cpl
2021-06-25 16:04 - 2021-06-25 16:04 - 000067584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscui.cpl
2021-06-25 16:04 - 2021-06-25 16:04 - 000011333 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-06-25 16:03 - 2021-06-25 16:03 - 002260992 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll
2021-06-25 16:03 - 2021-06-25 16:03 - 001823304 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2021-06-25 16:03 - 2021-06-25 16:03 - 001393504 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2021-06-25 16:03 - 2021-06-25 16:03 - 000097792 _____ C:\WINDOWS\system32\Drivers\cimfs.sys
2021-06-25 16:03 - 2021-06-25 16:03 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe
2021-06-25 14:40 - 2021-06-26 15:54 - 000000000 ____D C:\FRST
2021-06-24 20:38 - 2021-06-24 20:38 - 000000000 ____D C:\Program Files (x86)\Origin Games
2021-06-24 15:29 - 2021-06-24 19:30 - 000000000 ____D C:\Users\maikp\AppData\Local\BitTorrentHelper
2021-06-24 15:17 - 2021-06-24 15:17 - 000248992 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2021-06-24 15:17 - 2021-06-24 15:17 - 000220752 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
2021-06-24 15:17 - 2021-06-24 15:17 - 000002037 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2021-06-24 15:17 - 2021-06-24 15:17 - 000002025 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2021-06-24 15:17 - 2021-06-24 15:17 - 000002025 _____ C:\ProgramData\Desktop\Malwarebytes.lnk
2021-06-24 15:17 - 2021-06-24 15:17 - 000000000 ____D C:\Users\maikp\AppData\Local\mbam
2021-06-24 15:17 - 2021-06-24 15:17 - 000000000 ____D C:\ProgramData\Malwarebytes
2021-06-24 15:17 - 2021-06-24 15:16 - 000199128 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2021-06-24 15:17 - 2021-06-24 15:16 - 000019912 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys
2021-06-24 15:16 - 2021-06-24 15:16 - 000000000 ____D C:\Program Files\Malwarebytes
2021-06-20 09:35 - 2021-06-20 09:36 - 000001675 _____ C:\Users\Public\Desktop\League of Legends PBE.lnk
2021-06-20 09:35 - 2021-06-20 09:36 - 000001675 _____ C:\ProgramData\Desktop\League of Legends PBE.lnk
2021-06-19 20:36 - 2021-06-19 20:36 - 000004009 _____ C:\Users\maikp\AppData\Local\recently-used.xbel
2021-06-19 14:30 - 2021-06-19 20:36 - 000000000 ____D C:\Users\maikp\AppData\Local\gtk-2.0
2021-06-19 14:04 - 2021-06-19 14:04 - 000000688 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GIMP 2.10.24.lnk
2021-06-16 21:22 - 2021-06-16 21:22 - 000000000 ____D C:\Users\maikp\AppData\Roaming\ninjamuffin99
2021-06-15 07:44 - 2021-06-15 07:44 - 000000742 _____ C:\Users\Public\Desktop\300.lnk
2021-06-15 07:44 - 2021-06-15 07:44 - 000000742 _____ C:\ProgramData\Desktop\300.lnk
2021-06-15 07:44 - 2021-06-15 07:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\300
2021-06-15 07:33 - 2021-06-15 09:01 - 000000000 ____D C:\ProgramData\Jump.net
2021-06-14 14:26 - 2021-06-14 14:26 - 000000000 ___HD C:\ProgramData\CyberLink
2021-06-14 14:25 - 2021-06-14 14:29 - 000000000 ____D C:\Users\maikp\AppData\Roaming\league-profile-tool
2021-06-14 14:22 - 2021-06-14 14:24 - 000000000 ____D C:\Users\maikp\AppData\Roaming\rift-explorer
2021-06-14 13:43 - 2021-06-14 13:43 - 000000000 ____D C:\Users\maikp\AppData\LocalLow\VUP
2021-06-14 09:37 - 2021-06-14 09:37 - 000000000 ____D C:\Users\maikp\AppData\Local\DeadByDaylight
2021-06-13 21:42 - 2021-06-13 21:42 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2021-06-13 21:42 - 2021-06-13 21:42 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2021-06-13 21:42 - 2021-06-13 21:42 - 002260480 _____ (The ICU Project) C:\WINDOWS\system32\icu.dll
2021-06-13 21:42 - 2021-06-13 21:42 - 001864192 _____ (The ICU Project) C:\WINDOWS\SysWOW64\icu.dll
2021-06-13 21:42 - 2021-06-13 21:42 - 000657464 _____ C:\WINDOWS\system32\WindowManagementAPI.dll
2021-06-13 21:42 - 2021-06-13 21:42 - 000468440 _____ C:\WINDOWS\SysWOW64\WindowManagementAPI.dll
2021-06-13 21:42 - 2021-06-13 21:42 - 000423936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2021-06-13 21:42 - 2021-06-13 21:42 - 000223744 _____ C:\WINDOWS\SysWOW64\TpmTool.exe
2021-06-13 21:41 - 2021-06-13 21:41 - 000563712 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2021-06-13 21:41 - 2021-06-13 21:41 - 000287232 _____ C:\WINDOWS\system32\CoreMas.dll
2021-06-13 21:41 - 2021-06-13 21:41 - 000272384 _____ C:\WINDOWS\system32\TpmTool.exe
2021-06-13 20:50 - 2021-06-13 20:50 - 000000000 ____D C:\Users\maikp\AppData\Roaming\java
2021-06-13 20:50 - 2021-06-13 20:50 - 000000000 ____D C:\Users\maikp\AppData\Local\JxBrowser
2021-06-13 20:49 - 2021-06-13 20:57 - 000000000 ____D C:\Users\maikp\Knuddels-Stapp
2021-06-13 20:49 - 2021-06-13 20:49 - 000002203 _____ C:\Users\maikp\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Knuddels.lnk
2021-06-12 21:08 - 2021-06-22 21:18 - 000000000 ____D C:\Users\maikp\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Roblox
2021-06-12 21:08 - 2021-06-12 21:12 - 000000000 ____D C:\Users\maikp\AppData\Local\Roblox
2021-06-12 06:24 - 2021-06-12 06:24 - 000000000 ____D C:\Users\maikp\AppData\Local\WorldExplorers
2021-06-11 20:42 - 2021-06-11 20:42 - 002096599 _____ C:\Users\maikp\Downloads\videoplayback_8_1.mp4
2021-06-10 07:01 - 2021-06-10 07:01 - 000000000 ____D C:\Users\maikp\AppData\Roaming\Samsung
2021-06-10 07:01 - 2021-06-10 07:01 - 000000000 ____D C:\ProgramData\Samsung
2021-06-09 06:46 - 2021-06-25 16:29 - 000000000 ____D C:\Users\maikp\AppData\Local\Battle.net
2021-06-09 06:46 - 2021-06-11 11:36 - 000000000 ____D C:\Users\maikp\AppData\Roaming\Battle.net
2021-06-09 06:46 - 2021-06-09 06:47 - 000000000 ____D C:\Program Files (x86)\Battle.net
2021-06-09 06:46 - 2021-06-09 06:46 - 004837816 _____ (Blizzard Entertainment) C:\Users\maikp\Downloads\Battle.net-Setup (1).exe
2021-06-09 06:46 - 2021-06-09 06:46 - 000000950 _____ C:\Users\Public\Desktop\Battle.net.lnk
2021-06-09 06:46 - 2021-06-09 06:46 - 000000950 _____ C:\ProgramData\Desktop\Battle.net.lnk
2021-06-09 06:46 - 2021-06-09 06:46 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battle.net
2021-06-06 10:45 - 2021-06-06 10:45 - 011406403 _____ C:\Users\maikp\Downloads\1394475 Headhunterz & Sub Zero Project - Our Church - Our Church.osz
2021-06-06 08:26 - 2021-06-06 08:26 - 000000016 _____ C:\Users\maikp\AppData\Roaming\obs-virtualcam.txt
2021-06-05 16:25 - 2021-06-05 16:25 - 000144960 _____ C:\Users\maikp\Downloads\339793066056900.webp
2021-06-05 16:24 - 2021-06-05 16:24 - 000147406 _____ C:\Users\maikp\Downloads\339793058039203.webp
2021-06-04 14:34 - 2021-06-04 14:34 - 000000487 _____ C:\Users\Public\Desktop\Heroes of the Storm.lnk
2021-06-04 14:34 - 2021-06-04 14:34 - 000000487 _____ C:\ProgramData\Desktop\Heroes of the Storm.lnk
2021-06-04 14:34 - 2021-06-04 14:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Heroes of the Storm
2021-06-04 10:35 - 2021-06-04 10:35 - 012709888 _____ C:\Users\maikp\Downloads\Fences3-sd-setup.exe
2021-06-04 10:35 - 2021-06-04 10:35 - 000000000 ____D C:\Users\maikp\Downloads\Stardock
2021-06-04 07:44 - 2021-06-04 07:44 - 004919052 _____ C:\Users\maikp\Downloads\1111373 S3RL - Sky Rocket.osz
2021-06-01 23:31 - 2021-06-01 23:31 - 008814152 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\Netwtw08.sys
2021-06-01 23:31 - 2021-06-01 23:31 - 001419336 _____ (Intel Corporation) C:\WINDOWS\system32\IntelIHVRouter08.dll
2021-06-01 22:32 - 2021-06-01 22:32 - 002681440 _____ C:\WINDOWS\system32\Drivers\Netwfw08.dat
2021-05-31 14:40 - 2021-05-31 14:40 - 002278383 _____ C:\Users\maikp\Downloads\ModSkin_11.11.1 (1).zip
2021-05-30 17:01 - 2021-05-30 17:01 - 132269392 _____ (Badlion) C:\Users\maikp\Downloads\Badlion Client Setup 3.2.0.exe
2021-05-30 17:00 - 2021-05-30 17:00 - 002666496 _____ C:\Users\maikp\Downloads\MinecraftInstaller (2).msi
2021-05-30 17:00 - 2021-05-30 17:00 - 002666496 _____ C:\Users\maikp\Downloads\MinecraftInstaller (1).msi
2021-05-30 17:00 - 2021-05-30 17:00 - 000000707 _____ C:\Users\Public\Desktop\Minecraft Launcher.lnk
2021-05-30 17:00 - 2021-05-30 17:00 - 000000707 _____ C:\ProgramData\Desktop\Minecraft Launcher.lnk
2021-05-30 17:00 - 2021-05-30 17:00 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Minecraft Launcher
2021-05-30 09:34 - 2021-05-30 09:34 - 002278383 _____ C:\Users\maikp\Downloads\ModSkin_11.11.1.zip
2021-05-29 07:06 - 2021-05-29 07:06 - 000596590 _____ C:\Users\maikp\Downloads\Bot TFT (1).rar
2021-05-28 21:36 - 2021-06-25 12:10 - 000000000 ____D C:\ProgramData\Origin
2021-05-28 21:30 - 2021-06-25 12:10 - 000000000 ____D C:\Program Files (x86)\Origin
2021-05-28 21:30 - 2021-06-24 20:40 - 000000000 ____D C:\Users\maikp\AppData\Roaming\Origin
2021-05-28 21:30 - 2021-06-23 13:49 - 000000000 ____D C:\Users\maikp\AppData\Local\Origin
2021-05-28 21:30 - 2021-05-28 21:30 - 063661016 _____ (Electronic Arts) C:\Users\maikp\Downloads\OriginThinSetup (7).exe
2021-05-28 21:30 - 2021-05-28 21:30 - 000001066 _____ C:\Users\Public\Desktop\Origin.lnk
2021-05-28 21:30 - 2021-05-28 21:30 - 000001066 _____ C:\ProgramData\Desktop\Origin.lnk
2021-05-28 21:30 - 2021-05-28 21:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin
2021-05-28 21:21 - 2021-05-28 21:21 - 003675557 _____ C:\Users\maikp\Downloads\136685 Tristam & Braken [Monstercat] - Flight.osz
2021-05-27 16:10 - 2021-05-27 16:10 - 000000000 ____D C:\Users\maikp\AppData\Local\WitchIt
2021-05-27 15:47 - 2021-05-27 15:50 - 000000000 ____D C:\Users\maikp\AppData\Local\KnockoutCity
2021-05-27 15:34 - 2021-05-27 15:34 - 000001473 _____ C:\Users\maikp\Downloads\beatmaps_fur_jimmy.txt
==================== Ein Monat (geänderte) ==================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2021-06-26 15:55 - 2020-12-19 18:12 - 000000000 ____D C:\ProgramData\NVIDIA
2021-06-26 15:53 - 2020-12-19 18:01 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-06-26 15:51 - 2020-12-19 19:14 - 000000000 ____D C:\Users\maikp\AppData\Roaming\discord
2021-06-26 15:41 - 2020-12-19 19:14 - 000000000 ____D C:\Users\maikp\AppData\Local\Discord
2021-06-26 14:36 - 2021-05-13 02:44 - 000000000 ____D C:\Users\maikp\AppData\Roaming\opgg-electron-app
2021-06-26 14:28 - 2020-12-19 18:53 - 000000000 ____D C:\ProgramData\Riot Games
2021-06-26 14:25 - 2020-12-19 19:43 - 000000000 ____D C:\Users\maikp\AppData\Local\osu!
2021-06-26 13:19 - 2020-12-19 18:11 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-06-26 06:50 - 2020-12-19 18:23 - 000000000 ____D C:\Users\maikp\AppData\Local\Host App Service
2021-06-25 18:44 - 2021-02-12 08:45 - 000000000 ____D C:\Users\maikp\AppData\Local\ElevatedDiagnostics
2021-06-25 18:38 - 2020-12-19 19:21 - 000000000 ____D C:\Users\maikp\Desktop\appcache
2021-06-25 16:33 - 2020-12-19 19:23 - 000000000 ____D C:\Users\maikp\Desktop\depotcache
2021-06-25 16:32 - 2020-12-19 19:23 - 000000000 ____D C:\Users\maikp\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2021-06-25 16:28 - 2020-12-19 18:24 - 001724608 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-06-25 16:28 - 2020-12-19 18:02 - 000743714 _____ C:\WINDOWS\system32\perfh007.dat
2021-06-25 16:28 - 2020-12-19 18:02 - 000150136 _____ C:\WINDOWS\system32\perfc007.dat
2021-06-25 16:28 - 2020-12-19 18:00 - 000000000 ____D C:\WINDOWS\INF
2021-06-25 16:23 - 2021-01-14 13:57 - 000000001 _____ C:\WINDOWS\vgkbootstatus.dat
2021-06-25 16:23 - 2020-12-19 19:21 - 000000000 ____D C:\Users\maikp\Desktop\package
2021-06-25 16:21 - 2020-12-19 18:11 - 000258784 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-06-25 16:21 - 2020-12-19 18:11 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-06-25 16:21 - 2020-12-19 18:01 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-06-25 16:20 - 2020-12-19 18:01 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-06-25 16:20 - 2020-12-19 18:01 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2021-06-25 16:20 - 2020-12-19 18:01 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2021-06-25 16:20 - 2020-12-19 18:01 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2021-06-25 16:20 - 2020-12-19 18:01 - 000000000 ____D C:\WINDOWS\SystemResources
2021-06-25 16:20 - 2020-12-19 18:01 - 000000000 ____D C:\WINDOWS\system32\setup
2021-06-25 16:20 - 2020-12-19 18:01 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-06-25 16:20 - 2020-12-19 18:01 - 000000000 ____D C:\WINDOWS\system32\Dism
2021-06-25 16:20 - 2020-12-19 18:01 - 000000000 ____D C:\WINDOWS\Provisioning
2021-06-25 16:20 - 2020-12-19 18:01 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-06-25 16:20 - 2020-12-19 17:57 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2021-06-25 16:05 - 2020-12-19 17:58 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-06-25 15:48 - 2020-12-19 19:21 - 000000000 ____D C:\Users\maikp\Desktop\steamapps
2021-06-25 15:47 - 2020-12-19 19:22 - 000000901 _____ C:\Users\maikp\Desktop\update_hosts_cached.vdf
2021-06-25 15:39 - 2020-12-19 18:38 - 000000000 ____D C:\Users\maikp\AppData\Local\NVIDIA Corporation
2021-06-25 15:39 - 2020-12-19 18:12 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2021-06-25 15:25 - 2020-12-19 21:10 - 000000000 ____D C:\Users\maikp\AppData\Roaming\Blitz
2021-06-25 15:22 - 2021-05-19 13:40 - 000000032 _____ C:\Users\maikp\AppData\Roaming\.machineId
2021-06-25 15:22 - 2021-03-31 19:31 - 000000000 ____D C:\Users\maikp\AppData\Local\CrashDumps
2021-06-25 15:21 - 2021-02-05 10:57 - 000002243 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-06-25 15:21 - 2021-02-05 10:57 - 000002202 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2021-06-25 15:21 - 2021-02-05 10:57 - 000002202 _____ C:\ProgramData\Desktop\Google Chrome.lnk
2021-06-25 15:21 - 2020-12-26 00:56 - 000002440 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-06-25 15:21 - 2020-12-26 00:56 - 000002278 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2021-06-25 15:21 - 2020-12-26 00:56 - 000002278 _____ C:\ProgramData\Desktop\Microsoft Edge.lnk
2021-06-25 15:17 - 2020-12-19 18:01 - 000000000 ___HD C:\Program Files\WindowsApps
2021-06-25 15:12 - 2020-12-19 18:01 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2021-06-25 15:12 - 2020-12-19 18:01 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE
2021-06-25 15:12 - 2020-12-19 18:01 - 000000000 ____D C:\WINDOWS\system32\migwiz
2021-06-25 15:12 - 2020-12-19 18:01 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2021-06-25 15:12 - 2020-12-19 18:01 - 000000000 ____D C:\WINDOWS\system32\et-EE
2021-06-25 15:12 - 2020-12-19 17:57 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2021-06-25 15:11 - 2020-12-19 18:01 - 000000000 ___RD C:\WINDOWS\PrintDialog
2021-06-25 15:10 - 2020-12-19 18:38 - 000000000 ____D C:\Users\maikp\AppData\Local\D3DSCache
2021-06-24 20:41 - 2021-03-31 19:46 - 000000000 ____D C:\ProgramData\Wondershare
2021-06-24 20:40 - 2021-03-31 19:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wondershare
2021-06-24 20:40 - 2021-03-31 19:44 - 000000000 ____D C:\Program Files\Wondershare
2021-06-24 15:17 - 2020-12-19 18:01 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2021-06-24 10:33 - 2021-04-30 16:57 - 000000000 ____D C:\Users\maikp\AppData\Roaming\EasyAntiCheat
2021-06-24 10:33 - 2020-12-20 13:28 - 000000000 ____D C:\Users\maikp\OneDrive\Dokumente\My Games
2021-06-23 13:56 - 2021-01-13 18:06 - 000000000 ____D C:\Users\maikp\AppData\Roaming\.minecraft
2021-06-23 11:20 - 2021-02-01 19:17 - 000000000 ____D C:\Users\maikp\AppData\Roaming\audacity
2021-06-22 23:17 - 2020-12-19 18:28 - 000000000 ____D C:\Users\maikp\AppData\Local\PlaceholderTileLogoFolder
2021-06-22 23:12 - 2020-12-19 21:09 - 000000000 ____D C:\Users\maikp\AppData\Local\blitz-updater
2021-06-22 18:53 - 2021-05-24 17:46 - 000000306 __RSH C:\ProgramData\ntuser.pol
2021-06-22 10:33 - 2020-12-19 18:11 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2021-06-21 15:20 - 2021-03-03 17:35 - 000000000 ____D C:\Users\maikp\AppData\Roaming\Rokkr
2021-06-19 20:37 - 2021-05-07 18:49 - 000000000 ____D C:\Users\maikp\AppData\Local\babl-0.1
2021-06-19 15:09 - 2020-12-30 18:49 - 000000000 ___HD C:\Program Files\Common Files\EAInstaller
2021-06-17 03:56 - 2020-12-19 18:27 - 000003378 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-614334572-4075455891-1303054103-1001
2021-06-17 03:56 - 2020-12-19 18:27 - 000000000 ___RD C:\Users\maikp\OneDrive
2021-06-17 03:56 - 2020-12-19 18:23 - 000002399 _____ C:\Users\maikp\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-06-14 14:23 - 2020-12-19 19:21 - 000000000 ____D C:\Users\maikp\Desktop\dumps
2021-06-14 13:46 - 2020-12-19 19:29 - 000001286 _____ C:\Users\maikp\Desktop\GameOverlayUI.exe.log.last
2021-06-14 09:04 - 2020-12-19 19:21 - 000000000 ____D C:\Users\maikp\Desktop\steamui
2021-06-14 09:04 - 2020-12-19 19:21 - 000000000 ____D C:\Users\maikp\Desktop\servers
2021-06-14 09:04 - 2020-12-19 19:21 - 000000000 ____D C:\Users\maikp\Desktop\resource
2021-06-14 09:04 - 2020-12-19 19:21 - 000000000 ____D C:\Users\maikp\Desktop\friends
2021-06-14 09:04 - 2020-12-19 19:21 - 000000000 ____D C:\Users\maikp\Desktop\controller_base
2021-06-14 09:04 - 2020-12-19 19:21 - 000000000 ____D C:\Users\maikp\Desktop\clientui
2021-06-14 09:04 - 2020-12-19 19:21 - 000000000 ____D C:\Users\maikp\Desktop\bin
2021-06-13 20:49 - 2020-12-19 18:23 - 000000000 ____D C:\Users\maikp
2021-06-13 13:22 - 2020-12-21 22:29 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2021-06-12 21:09 - 2021-01-07 19:05 - 000000256 _____ C:\Users\maikp\AppData\LocalLow\rbxcsettings.rbx
2021-06-12 09:44 - 2021-05-18 02:23 - 000000000 ____D C:\Fraps
2021-06-12 05:46 - 2020-12-19 21:09 - 000002249 _____ C:\Users\maikp\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Blitz.lnk
2021-06-11 15:39 - 2020-12-21 22:28 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-06-11 15:37 - 2020-12-21 22:28 - 132447432 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-06-10 07:01 - 2020-12-19 18:26 - 000000000 ____D C:\Users\maikp\AppData\Local\Packages
2021-06-09 06:45 - 2021-02-03 14:36 - 000000000 ____D C:\Users\maikp\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Club Cooee
2021-06-09 01:50 - 2020-12-19 19:21 - 000004054 _____ C:\Users\maikp\Desktop\steam.signatures
2021-06-09 01:37 - 2020-12-19 19:21 - 021031888 _____ (Valve Corporation) C:\Users\maikp\Desktop\steamclient64.dll
2021-06-09 01:37 - 2020-12-19 19:21 - 017687272 _____ (Valve Corporation) C:\Users\maikp\Desktop\steamclient.dll
2021-06-09 01:37 - 2020-12-19 19:21 - 013285608 _____ (Valve Corporation) C:\Users\maikp\Desktop\SteamUI.dll
2021-06-09 01:37 - 2020-12-19 19:21 - 009194728 _____ (Valve Corporation) C:\Users\maikp\Desktop\streaming_client.exe
2021-06-09 01:37 - 2020-12-19 19:21 - 003642088 _____ C:\Users\maikp\Desktop\video.dll
2021-06-09 01:37 - 2020-12-19 19:21 - 001744104 _____ (Valve Corporation) C:\Users\maikp\Desktop\GameOverlayRenderer64.dll
2021-06-09 01:37 - 2020-12-19 19:21 - 001442024 _____ (Valve Corporation) C:\Users\maikp\Desktop\GameOverlayRenderer.dll
2021-06-09 01:37 - 2020-12-19 19:21 - 000653032 _____ (Valve Corporation) C:\Users\maikp\Desktop\steamerrorreporter64.exe
2021-06-09 01:37 - 2020-12-19 19:21 - 000569576 _____ (Valve Corporation) C:\Users\maikp\Desktop\steamerrorreporter.exe
2021-06-09 01:37 - 2020-12-19 19:21 - 000504040 _____ (Valve Corporation) C:\Users\maikp\Desktop\vstdlib_s64.dll
2021-06-09 01:37 - 2020-12-19 19:21 - 000501992 _____ C:\Users\maikp\Desktop\Steam.dll
2021-06-09 01:37 - 2020-12-19 19:21 - 000487144 _____ C:\Users\maikp\Desktop\VkLayer_steam_fossilize64.dll
2021-06-09 01:37 - 2020-12-19 19:21 - 000484072 _____ (Valve Corporation) C:\Users\maikp\Desktop\crashhandler64.dll
2021-06-09 01:37 - 2020-12-19 19:21 - 000450280 _____ (Valve Corporation) C:\Users\maikp\Desktop\tier0_s64.dll
2021-06-09 01:37 - 2020-12-19 19:21 - 000407784 _____ C:\Users\maikp\Desktop\VkLayer_steam_fossilize.dll
2021-06-09 01:37 - 2020-12-19 19:21 - 000384744 _____ (Valve Corporation) C:\Users\maikp\Desktop\GameOverlayUI.exe
2021-06-09 01:37 - 2020-12-19 19:21 - 000378600 _____ (Valve Corporation) C:\Users\maikp\Desktop\crashhandler.dll
2021-06-09 01:37 - 2020-12-19 19:21 - 000357608 _____ (Valve Corporation) C:\Users\maikp\Desktop\tier0_s.dll
2021-06-09 01:37 - 2020-12-19 19:21 - 000336616 _____ (Valve Corporation) C:\Users\maikp\Desktop\vstdlib_s.dll
2021-06-09 01:37 - 2020-12-19 19:21 - 000193768 _____ C:\Users\maikp\Desktop\SteamOverlayVulkanLayer64.dll
2021-06-09 01:37 - 2020-12-19 19:21 - 000156904 _____ C:\Users\maikp\Desktop\SteamOverlayVulkanLayer.dll
2021-06-09 01:37 - 2018-05-22 02:30 - 004109032 _____ (Valve Corporation) C:\Users\maikp\Desktop\steam.exe
2021-06-08 10:13 - 2020-12-19 18:37 - 000000000 ____D C:\Users\maikp\AppData\Local\UnrealEngine
2021-06-06 08:33 - 2021-01-17 16:33 - 000000000 ____D C:\Users\maikp\AppData\Roaming\obs-studio
2021-06-06 08:33 - 2021-01-17 16:33 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OBS Studio
2021-06-02 11:39 - 2021-01-06 16:24 - 000000000 ____D C:\Users\maikp\AppData\Local\log
2021-05-30 17:02 - 2021-03-07 11:50 - 002479648 _____ (<Turtle Entertainment>) C:\WINDOWS\system32\Drivers\BadlionAnticheat.sys
2021-05-28 21:27 - 2018-10-30 01:30 - 000000000 ____D C:\ProgramData\Package Cache
2021-05-28 21:14 - 2021-04-13 14:40 - 000000646 _____ C:\Users\Public\Desktop\Apex Legends.lnk
2021-05-28 21:14 - 2021-04-13 14:40 - 000000646 _____ C:\ProgramData\Desktop\Apex Legends.lnk
2021-05-28 16:58 - 2021-02-27 13:08 - 000000000 ____D C:\Users\maikp\AppData\Roaming\DS4Windows
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse ========
2021-05-19 13:40 - 2021-06-25 15:22 - 000000032 _____ () C:\Users\maikp\AppData\Roaming\.machineId
2021-06-06 08:26 - 2021-06-06 08:26 - 000000016 _____ () C:\Users\maikp\AppData\Roaming\obs-virtualcam.txt
2021-01-04 15:25 - 2021-01-04 15:25 - 000000035 _____ () C:\Users\maikp\AppData\Roaming\~SiMPLEX.ini
2021-05-08 11:09 - 2021-05-08 13:02 - 000049799 _____ () C:\Users\maikp\AppData\Local\PlariumPlay.log
2021-06-19 20:36 - 2021-06-19 20:36 - 000004009 _____ () C:\Users\maikp\AppData\Local\recently-used.xbel
2021-04-09 18:57 - 2021-04-09 18:57 - 000007602 _____ () C:\Users\maikp\AppData\Local\Resmon.ResmonCfg
==================== SigCheck ============================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
==================== Ende von FRST.txt ======================== |