Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 11.06.2024
durchgeführt von Leon (Administrator) auf DESKTOP-3A98VGK (18-06-2024 21:13:29)
Gestartet von C:\Users\Leon\Desktop\FRST64.exe
Geladene Profile: Leon
Plattform: Microsoft Windows 10 Pro Version 22H2 19045.4239 (X64) Sprache: Deutsch (Deutschland)
Standard-Browser: Opera
Start-Modus: Normal

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(services.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_updater.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <2>
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvmdi.inf_amd64_23954e33c8a39da4\Display.NvContainer\NVDisplay.Container.exe <2>
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.19041.4163_none_7e304ec47c735f2e\TiWorker.exe
(svchost.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> ) C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe

==================== Registry (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [SteelSeriesGG] => C:\Program Files\SteelSeries\GG\SteelSeriesGG.exe [15898448 2024-06-10] (SteelSeries ApS -> SteelSeries ApS)
HKLM\...\Run: [Riot Vanguard] => C:\Program Files\Riot Vanguard\vgtray.exe [3023152 2024-05-24] (Riot Games, Inc. -> Riot Games, Inc.)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [367456 2024-04-22] (Apple Inc. -> Apple Inc.)
HKLM\...\Policies\Explorer: [NoStartMenuMFUprogramsList] 1
HKLM\...\Policies\Explorer: [AllowOnlineTips] 0
HKLM\...\Policies\Explorer: [NoInternetOpenWith] 1
HKLM\...\Policies\Explorer: [NoAutorun] 1
HKLM\...\Policies\Explorer: [HideSCAMeetNow] 1
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Beschränkung <==== ACHTUNG
HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Beschränkung <==== ACHTUNG
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender Security Center: Beschränkung <==== ACHTUNG
HKLM\Software\Policies\...\system: [EnableActivityFeed] 0
HKLM\Software\Policies\...\system: [RSoPLogging] 0
HKLM\Software\Policies\...\system: [UploadUserActivities] 0
HKLM\Software\Policies\...\system: [PublishUserActivities] 0
HKLM\Software\Policies\...\system: [AllowClipboardHistory] 0
HKLM\Software\Policies\...\system: [AllowCrossDeviceClipboard] 0
HKU\S-1-5-21-3319196770-3689827822-2008546791-1001\...\Run: [Opera GX Stable] => C:\Users\Leon\AppData\Local\Programs\Opera GX\launcher.exe [2251680 2024-06-12] (Opera Norway AS -> Opera Software)
HKU\S-1-5-21-3319196770-3689827822-2008546791-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [37550568 2024-06-12] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-3319196770-3689827822-2008546791-1001\...\Run: [Steam] => D:\Steam\steam.exe [4382056 2024-05-24] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-3319196770-3689827822-2008546791-1001\...\Run: [Spotify] => C:\Users\Leon\AppData\Roaming\Spotify\Spotify.exe [34580296 2024-06-06] (Spotify AB -> Spotify Ltd)
HKU\S-1-5-21-3319196770-3689827822-2008546791-1001\...\Run: [BlueMail] => C:\WINDOWS\explorer.exe me.blueone.win:noopt:hidden (Keine Datei) <==== ACHTUNG
HKU\S-1-5-21-3319196770-3689827822-2008546791-1001\...\Run: [RiotClient] => D:\Riot Games\Riot Client\RiotClientServices.exe [72122128 2024-06-12] (Riot Games, Inc. -> Riot Games, Inc.)
HKU\S-1-5-21-3319196770-3689827822-2008546791-1001\...\Run: [Opera GX Browser Assistant] => C:\Users\Leon\AppData\Local\Programs\Opera GX\assistant\browser_assistant.exe [3291288 2021-02-01] (Opera Software AS -> Opera Software)
HKU\S-1-5-21-3319196770-3689827822-2008546791-1001\...\Run: [Battle.net] => C:\Program Files (x86)\Battle.net\Battle.net.exe [981640 2024-06-09] (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
HKU\S-1-5-21-3319196770-3689827822-2008546791-1001\...\Run: [LGHUB] => C:\Program Files\LGHUB\system_tray\lghub_system_tray.exe [46043392 2024-06-01] (Logitech Inc -> Logitech, Inc.)
HKU\S-1-5-21-3319196770-3689827822-2008546791-1001\...\Run: [Discord] => C:\Users\Leon\AppData\Local\Discord\Update.exe [1526552 2024-05-13] (Discord Inc. -> GitHub)
HKU\S-1-5-21-3319196770-3689827822-2008546791-1001\...\Run: [CrosshairX] => C:\Users\Leon\Downloads\Crosshair.X.v2024.05.16\Crosshair.X.v2024.05.16\CrosshairX.exe [154311680 2024-05-28] (GitHub, Inc.) [Datei ist nicht signiert]
HKU\S-1-5-21-3319196770-3689827822-2008546791-1001\...\Policies\Explorer: [NoInstrumentation] 1
HKU\S-1-5-21-3319196770-3689827822-2008546791-1001\...\Policies\Explorer: [NoResolveSearch] 1
HKU\S-1-5-21-3319196770-3689827822-2008546791-1001\...\Policies\Explorer: [NoRecentDocsHistory] 1
HKU\S-1-5-21-3319196770-3689827822-2008546791-1001\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKU\S-1-5-21-3319196770-3689827822-2008546791-1001\...\Policies\Explorer: [HideSCAMeetNow] 1
HKU\S-1-5-21-3319196770-3689827822-2008546791-500\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [4899856 2024-06-17] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-3319196770-3689827822-2008546791-500\...\Policies\Explorer: [NoInstrumentation] 1
HKU\S-1-5-21-3319196770-3689827822-2008546791-500\...\Policies\Explorer: [NoResolveSearch] 1
HKU\S-1-5-21-3319196770-3689827822-2008546791-500\...\Policies\Explorer: [NoRecentDocsHistory] 1
HKU\S-1-5-21-3319196770-3689827822-2008546791-500\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
GroupPolicy: Beschränkung ? <==== ACHTUNG
Policies: C:\ProgramData\NTUSER.pol: Beschränkung <==== ACHTUNG
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Beschränkung <==== ACHTUNG
HKLM\SOFTWARE\Policies\Microsoft\Edge: Beschränkung <==== ACHTUNG

==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

Task: {721ABA99-C250-4B16-BC94-9A4DF56D6455} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [617096 2022-02-25] (Apple Inc. -> Apple Inc.)
Task: {7B92ABED-B86E-4A7D-8A1C-A37C48169E31} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28499424 2024-06-07] (Microsoft Corporation -> Microsoft Corporation)
Task: {30040C6A-38C5-4E73-85CC-D5F66B8139B6} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28499424 2024-06-07] (Microsoft Corporation -> Microsoft Corporation)
Task: {9B4236A2-863F-4118-AA4F-96F8D7328881} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [309800 2024-06-15] (Microsoft Corporation -> Microsoft Corporation)
Task: {1053ED25-05D9-49B4-944D-9A994636E641} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [309800 2024-06-15] (Microsoft Corporation -> Microsoft Corporation)
Task: {86A2A223-F27B-4327-BFEA-FDC47F178790} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [169648 2024-06-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {A701E7CB-4712-44E6-8AAE-8A35784242B4} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\Schedule created by enrollment client to reattest client certificate => C:\WINDOWS\system32\deviceenroller.exe [483328 2024-03-28] (Microsoft Windows -> Microsoft Corporation)
Task: {71528E4D-AD98-4A51-81B5-6D4CA51C1F3C} - System32\Tasks\MSIAfterburner => C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe [804312 2023-04-11] (MICRO-STAR INTERNATIONAL CO., LTD. -> )
Task: {53659F92-4F73-4354-9264-8D41CB74E03E} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1277480 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files\NVIDIA Corporation\NvContainer\-d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {74869DB8-2DBD-4902-9933-5ECF7D81F716} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3347496 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {0D788293-E2B2-4B12-8D7E-CDCBB2B2D22E} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [646696 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files (x86)\NVIDIA Corporation\NvNode\--launcher=TaskScheduler
Task: {1CC6C054-A42E-4134-8CE1-B10F5B3F3099} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1673768 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {5496C198-0BEC-4655-A416-85EDD68E5617} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1673768 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {8A1E53D0-9B43-49B7-B1A4-685C86B1DEC0} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1673768 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {F64D40F6-0C2C-470A-82AC-C3F8230AE3B9} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1673768 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {AFB03138-BAB0-400A-BC40-48DCCF1698A9} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4209168 2024-06-17] (Microsoft Corporation -> Microsoft Corporation)
Task: {2581D5B6-A8E2-4D55-988A-3B725D8864E9} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-3319196770-3689827822-2008546791-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4209168 2024-06-17] (Microsoft Corporation -> Microsoft Corporation)
Task: {1D2BF4E8-0BA4-4065-B5D2-DA7DB416B5D4} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-3319196770-3689827822-2008546791-500 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4209168 2024-06-17] (Microsoft Corporation -> Microsoft Corporation)
Task: {233450BF-B045-42F7-91A9-64B4AE0DB0A2} - System32\Tasks\Opera GX scheduled assistant Autoupdate 1713510510 => C:\Users\Leon\AppData\Local\Programs\Opera GX\launcher.exe [2251680 2024-06-12] (Opera Norway AS -> Opera Software) -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\Leon\AppData\Local\Programs\Opera GX\assistant" $(Arg0)
Task: {96822747-5A0D-49FF-A5CF-388CADD40BFA} - System32\Tasks\Opera GX scheduled Autoupdate 1712237227 => C:\Users\Leon\AppData\Local\Programs\Opera GX\launcher.exe [2251680 2024-06-12] (Opera Norway AS -> Opera Software)

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)

Task: C:\WINDOWS\Tasks\BKEConfig.job => C:\Users\Leon\AppData\Roaming\COV\NahimicService.exe
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)

Hosts: Es ist mehr als ein Eintrag in der Hosts Datei zu finden. Siehe Hosts-Bereich in Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{0faf9da4-df40-4b64-9647-bbc3e0ef3a23}: [DhcpNameServer] 192.168.74.242
Tcpip\..\Interfaces\{1a626239-8b3f-4e17-9ada-d46df549c3af}: [DhcpNameServer] 192.168.8.1
Tcpip\..\Interfaces\{f1f6c234-8bf7-4d85-8f6d-2f946074affb}: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{f1f6c234-8bf7-4d85-8f6d-2f946074affb}: [DhcpDomain] fritz.box
Tcpip\..\Interfaces\{f59fe0c4-d507-429b-b1fc-c5f2ce15f2a4}: [DhcpNameServer] 172.20.10.1

Edge: 
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\Leon\AppData\Local\Microsoft\Edge\User Data\Default [2024-06-18]
Edge HKLM-x32\...\Edge\Extension: [caiblelclndcckfafdaggpephhgfpoip]
Edge HKLM-x32\...\Edge\Extension: [emgfgdclgfeldebanedpihppahgngnle]

FireFox:
========
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2024-05-05] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2024-05-05] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2024-05-05] (Microsoft Corporation -> Microsoft Corporation)

Chrome: 
=======
CHR Profile: C:\Users\Leon\AppData\Local\Google\Chrome\User Data\Default [2024-06-18]
CHR Extension: (Google Docs Offline) - C:\Users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-04-04]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Leon\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2024-04-04]
CHR HKLM-x32\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll]
CHR HKLM-x32\...\Chrome\Extension: [ccbpbkebodcjkknkfkpmfeciinhidaeh]
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk]

Opera: 
=======
StartMenuInternet: (HKU\S-1-5-21-3319196770-3689827822-2008546791-1001) Opera GXStable - "C:\Users\Leon\AppData\Local\Programs\Opera GX\Launcher.exe"

==================== Dienste (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

"ESProtectionDriver" => Dienst konnte nicht entsperrt werden. <==== ACHTUNG
HKLM\SYSTEM\ControlSet001\Services\ESProtectionDriver => C:\WINDOWS\system32\drivers\mbae64.sys [158640 2024-06-18] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) <==== ACHTUNG (Rootkit!/Gesperrter Dienst)
"mbamchameleon" => Dienst konnte nicht entsperrt werden. <==== ACHTUNG
HKLM\SYSTEM\ControlSet001\Services\mbamchameleon => \SystemRoot\System32\Drivers\MbamChameleon.sys <==== ACHTUNG (Rootkit!/Gesperrter Dienst)
"MBAMFarflt" => Dienst konnte nicht entsperrt werden. <==== ACHTUNG
HKLM\SYSTEM\ControlSet001\Services\MBAMFarflt => \??\C:\WINDOWS\system32\DRIVERS\farflt.sys <==== ACHTUNG (Rootkit!/Gesperrter Dienst)
"MBAMProtection" => Dienst konnte nicht entsperrt werden. <==== ACHTUNG
HKLM\SYSTEM\ControlSet001\Services\MBAMProtection => \??\C:\WINDOWS\system32\DRIVERS\mbam.sys <==== ACHTUNG (Rootkit!/Gesperrter Dienst)
"MBAMWebProtection" => Dienst konnte nicht entsperrt werden. <==== ACHTUNG
HKLM\SYSTEM\ControlSet001\Services\MBAMWebProtection => \??\C:\WINDOWS\system32\DRIVERS\mwac.sys <==== ACHTUNG (Rootkit!/Gesperrter Dienst)

R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [103776 2024-03-30] (Apple Inc. -> Apple Inc.)
S3 battlenet_helpersvc; C:\ProgramData\Battle.net_components\battlenet_helpersvc\AgentHelper.exe [2568840 2024-06-09] (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [18681128 2024-06-13] (BattlEye Innovations e.K. -> )
S2 bits; C:\WINDOWS\System32\svchost.exe [55456 2023-11-23] (Microsoft Windows Publisher -> Microsoft Corporation) <==== ACHTUNG (kein ServiceDLL)
S2 bits; C:\WINDOWS\SysWOW64\svchost.exe [46544 2023-11-23] (Microsoft Windows Publisher -> Microsoft Corporation) <==== ACHTUNG (kein ServiceDLL)
S3 BITS_bkp; C:\WINDOWS\System32\qmgr.dll [1481216 2023-11-23] (Microsoft Windows -> Microsoft Corporation)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [14012384 2024-06-07] (Microsoft Corporation -> Microsoft Corporation)
S2 dosvc; C:\WINDOWS\System32\svchost.exe [55456 2023-11-23] (Microsoft Windows Publisher -> Microsoft Corporation) <==== ACHTUNG (kein ServiceDLL)
S2 dosvc; C:\WINDOWS\SysWOW64\svchost.exe [46544 2023-11-23] (Microsoft Windows Publisher -> Microsoft Corporation) <==== ACHTUNG (kein ServiceDLL)
S3 dosvc_bkp; C:\WINDOWS\system32\dosvc.dll [1534464 2024-03-28] (Microsoft Windows -> Microsoft Corporation)
S3 EasyAntiCheat_EOS; C:\Program Files (x86)\EasyAntiCheat_EOS\EasyAntiCheat_EOS.exe [955816 2024-04-05] (EasyAntiCheat Oy -> Epic Games, Inc.)
S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [934352 2023-08-02] (Epic Games Inc. -> Epic Games, Inc.)
S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\24.108.0528.0005\FileSyncHelper.exe [3514384 2024-06-17] (Microsoft Corporation -> Microsoft Corporation)
R2 LGHUBUpdaterService; C:\Program Files\LGHUB\lghub_updater.exe [10988800 2024-06-01] (Logitech Inc -> Logitech, Inc.)
S2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [8895072 2024-06-18] (Malwarebytes Inc. -> Malwarebytes)
S3 MBVpnTunnelService; C:\Program Files\Malwarebytes\Anti-Malware\MBVpnTunnelService.exe [3073888 2024-06-18] (Malwarebytes Inc. -> Malwarebytes)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvmdi.inf_amd64_23954e33c8a39da4\Display.NvContainer\NVDisplay.Container.exe [1275016 2024-06-02] (NVIDIA Corporation -> NVIDIA Corporation)
S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\24.108.0528.0005\OneDriveUpdaterService.exe [3853744 2024-06-17] (Microsoft Corporation -> Microsoft Corporation)
S3 Rockstar Service; D:\Launcher\RockstarService.exe [5813744 2024-06-01] (Rockstar Games, Inc. -> Rockstar Games)
S3 SteelSeriesGGUpdateServiceProxy; C:\Program Files\SteelSeries\GG\SteelSeriesGGUpdateServiceProxy.exe [1500608 2023-09-18] (SteelSeries ApS -> )
S2 UsoSvc; C:\WINDOWS\system32\svchost.exe [55456 2023-11-23] (Microsoft Windows Publisher -> Microsoft Corporation) <==== ACHTUNG (kein ServiceDLL)
S2 UsoSvc; C:\WINDOWS\SysWOW64\svchost.exe [46544 2023-11-23] (Microsoft Windows Publisher -> Microsoft Corporation) <==== ACHTUNG (kein ServiceDLL)
S2 UsoSvc_bkp; C:\WINDOWS\system32\usosvc.dll [570368 2024-03-28] (Microsoft Windows -> Microsoft Corporation)
S3 vgc; C:\Program Files\Riot Vanguard\vgc.exe [9685928 2024-05-24] (Riot Games, Inc. -> Riot Games, Inc.)
S3 WaaSMedicSvc_bkp; C:\WINDOWS\System32\WaaSMedicSvc.dll [427520 2023-12-13] (Microsoft Windows -> Microsoft Corporation)
S3 wuauserv; C:\WINDOWS\system32\svchost.exe [55456 2023-11-23] (Microsoft Windows Publisher -> Microsoft Corporation) <==== ACHTUNG (kein ServiceDLL)
S3 wuauserv; C:\WINDOWS\SysWOW64\svchost.exe [46544 2023-11-23] (Microsoft Windows Publisher -> Microsoft Corporation) <==== ACHTUNG (kein ServiceDLL)
S3 wuauserv_bkp; C:\WINDOWS\system32\wuaueng.dll [3436544 2024-03-28] (Microsoft Windows -> Microsoft Corporation)

===================== Treiber (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

S3 9190049c; C:\WINDOWS\System32\Drivers\9190049c.sys [377392 2024-06-18] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R3 amdgpio3; C:\WINDOWS\System32\drivers\amdgpio3.sys [36928 2022-09-16] (ASMedia Technology Inc. -> Advanced Micro Devices, Inc)
S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [39272 2023-06-27] (Apple Inc. -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [55608 2023-06-27] (Apple Inc. -> Apple Inc.)
S3 atvi-randgrid; C:\ProgramData\Battle.net_components\randgridauks\randgrid.sys [2988864 2024-06-09] (Activision Publishing Inc -> Activision Blizzard, Inc.)
S3 dg_ssudbus; C:\WINDOWS\System32\drivers\ssudbus2.sys [160376 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 ew_usbccgpfilter; C:\WINDOWS\System32\drivers\ew_usbccgpfilter.sys [18944 2020-12-05] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 HidGuardian; C:\WINDOWS\System32\drivers\HidGuardian.sys [26736 2017-04-17] (Microsoft Windows Hardware Compatibility Publisher -> Benjamin Höglinger-Stelzer)
S3 HidHide; C:\WINDOWS\System32\drivers\HidHide.sys [61408 2021-04-01] (Microsoft Windows Hardware Compatibility Publisher -> Nefarius Software Solutions e.U.)
S3 HWHandSet; C:\WINDOWS\System32\drivers\hw_quusbmdm.sys [226560 2020-12-05] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 hwusb_cdcacm; C:\WINDOWS\System32\drivers\hw_cdcacm.sys [127360 2020-12-05] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 hw_usbdev; C:\WINDOWS\System32\drivers\hw_usbdev.sys [116864 2020-12-05] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 LGJoyHidFilter; C:\WINDOWS\system32\drivers\LGJoyHidFilter.sys [57368 2018-03-19] (Logitech Inc -> Logitech Inc.)
S3 LGJoyHidLo; C:\WINDOWS\system32\drivers\LGJoyHidLo.sys [47256 2018-03-19] (Logitech Inc -> Logitech Inc.)
S3 LGJoyXlCore; C:\WINDOWS\system32\drivers\LGJoyXlCore.sys [67736 2018-03-19] (Logitech Inc -> Logitech Inc.)
R3 logi_joy_bus_enum; C:\WINDOWS\system32\drivers\logi_joy_bus_enum.sys [44880 2024-05-24] (Logitech Inc -> Logitech)
R3 logi_joy_vir_hid; C:\WINDOWS\system32\drivers\logi_joy_vir_hid.sys [32080 2022-09-23] (Logitech Inc -> Logitech)
R3 logi_joy_xlcore; C:\WINDOWS\system32\drivers\logi_joy_xlcore.sys [73040 2024-05-24] (Logitech Inc -> Logitech)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [21480 2024-06-18] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
S3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [239576 2024-06-18] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MSIGamingHeadset; C:\WINDOWS\System32\drivers\MSGH70.sys [3796072 2019-10-04] (Microsoft Windows Hardware Compatibility Publisher -> C-MEDIA Inc.)
S3 Netaapl; C:\WINDOWS\System32\drivers\netaapl64.sys [23040 2018-08-16] (Microsoft Windows Hardware Compatibility Publisher -> Apple Inc.)
R3 NvModuleTracker; C:\WINDOWS\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_ea6cec41fc5b2a8b\NvModuleTracker.sys [47240 2024-04-03] (NVIDIA Corporation -> NVIDIA Corporation)
R3 RTCore64; C:\Program Files (x86)\MSI Afterburner\RTCore64.sys [36824 2020-07-13] (MICRO-STAR INTERNATIONAL CO., LTD. -> )
S3 SIVDriver; C:\WINDOWS\system32\Drivers\SIVX64.sys [205552 2021-02-12] (RH Software Ltd -> Ray Hinchliffe)
S3 spacedeskKtmInputKeybd; C:\WINDOWS\System32\drivers\spacedeskKtmInputKeybd.sys [35240 2018-10-05] (Datronicsoft, Inc. -> )
S3 spacedeskKtmInputMouse; C:\WINDOWS\System32\drivers\spacedeskKtmInputMouse.sys [35240 2018-10-05] (Datronicsoft, Inc. -> )
R3 ssdevfactory; C:\WINDOWS\System32\drivers\ssdevfactory.sys [43568 2024-06-10] (Microsoft Windows Hardware Compatibility Publisher -> SteelSeries ApS)
R3 sshid; C:\WINDOWS\System32\drivers\sshid.sys [54408 2024-06-10] (Microsoft Windows Hardware Compatibility Publisher -> SteelSeries ApS)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [167544 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 ssudqcfilter; C:\WINDOWS\System32\drivers\ssudqcfilter.sys [65144 2021-10-08] (Samsung Electronics Co., Ltd. -> QUALCOMM Incorporated)
S3 ss_conn_usb_driver2; C:\WINDOWS\System32\Drivers\ss_conn_usb_driver2.sys [50720 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R3 SteelSeries_Sonar_VAD; C:\WINDOWS\System32\DriverStore\FileRepository\steelseries-sonar-vad.inf_amd64_da15ab44a6216a8e\SteelSeries-Sonar-VAD.sys [95440 2023-03-17] (SteelSeries ApS -> Windows (R) Win 7 DDK provider)
S3 USBAAPL64; C:\WINDOWS\System32\Drivers\usbaapl64.sys [54784 2018-08-22] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.)
S3 VBoxUSB; C:\WINDOWS\System32\Drivers\VBoxUSB.sys [189304 2024-01-15] (Oracle Corporation -> Oracle and/or its affiliates)
R1 vgk; C:\Program Files\Riot Vanguard\vgk.sys [41214432 2024-05-24] (Riot Games, Inc. -> Riot Games, Inc.)
S3 vjoy; C:\WINDOWS\System32\drivers\vjoy.sys [57976 2017-04-06] (Shaul Eizikovich -> Shaul Eizikovich)
U3 AarSvc_4c5d0; kein ImagePath
U3 BcastDVRUserService_4c5d0; kein ImagePath
U3 BluetoothUserService_4c5d0; kein ImagePath
U3 CaptureService_4c5d0; kein ImagePath
U3 cbdhsvc_4c5d0; kein ImagePath
U2 CDPUserSvc_4c5d0; kein ImagePath
U3 ConsentUxUserSvc_4c5d0; kein ImagePath
U3 CredentialEnrollmentManagerUserSvc_4c5d0; kein ImagePath
U3 DeviceAssociationBrokerSvc_4c5d0; kein ImagePath
U3 DevicePickerUserSvc_4c5d0; kein ImagePath
U3 DevicesFlowUserSvc_4c5d0; kein ImagePath
U3 GoogleChromeElevationService; kein ImagePath
U2 gupdate; kein ImagePath
U3 gupdatem; kein ImagePath
U3 logi_generic_hid_filter; kein ImagePath
U3 logi_joy_hid_filter; kein ImagePath
U3 logi_joy_hid_lo; kein ImagePath
U3 MessagingService_4c5d0; kein ImagePath
U3 MicrosoftEdgeElevationService; kein ImagePath
U2 OneSyncSvc_4c5d0; kein ImagePath
U3 PimIndexMaintenanceSvc_4c5d0; kein ImagePath
U3 PrintWorkflowUserSvc_4c5d0; kein ImagePath
U3 RetailDemo; kein ImagePath
U3 Sense; kein ImagePath
U3 ssbthid; kein ImagePath
U3 UdkUserSvc_4c5d0; kein ImagePath
U3 UnistoreSvc_4c5d0; kein ImagePath
U3 UserDataSvc_4c5d0; kein ImagePath
U0 WdBoot; kein ImagePath
U0 WdFilter; kein ImagePath
U3 WdNisDrv; kein ImagePath
U3 WdNisSvc; kein ImagePath
U4 WerSvc; kein ImagePath
U2 WinDefend; kein ImagePath
U2 WpnUserService_4c5d0; kein ImagePath

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat (erstellte) (Nicht auf der Ausnahmeliste) =========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2024-06-18 21:56 - 2024-06-18 21:56 - 000000000 _____ C:\Recovery.txt
2024-06-18 21:13 - 2024-06-18 21:13 - 000028126 _____ C:\Users\Leon\Desktop\FRST.txt
2024-06-18 21:11 - 2024-06-18 21:12 - 000000000 ____D C:\Symbols
2024-06-18 21:10 - 2024-06-18 21:13 - 000000000 ____D C:\FRST
2024-06-18 21:10 - 2024-06-18 21:11 - 651165696 _____ C:\Users\Leon\Downloads\DESKTOP-3A98VGK.06-18-2024.16-11-31.Boot_1.etl
2024-06-18 21:09 - 2024-06-18 21:09 - 002395136 _____ (Farbar) C:\Users\Leon\Desktop\FRST64.exe
2024-06-18 21:02 - 2024-06-18 21:13 - 000000000 ____D C:\Users\Leon\AppData\Local\Malwarebytes
2024-06-18 21:02 - 2024-06-18 21:02 - 000002105 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2024-06-18 21:02 - 2024-06-18 21:02 - 000002093 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2024-06-18 21:02 - 2024-06-18 21:02 - 000000000 ____D C:\ProgramData\Malwarebytes
2024-06-18 21:02 - 2024-06-18 21:02 - 000000000 ____D C:\Program Files\Malwarebytes
2024-06-18 20:52 - 2024-06-18 20:52 - 000003140 _____ C:\WINDOWS\system32\Tasks\MSIAfterburner
2024-06-18 20:16 - 2024-06-18 20:16 - 000000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job
2024-06-18 20:15 - 2024-06-18 20:15 - 000000279 _____ C:\Users\Leon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Papierkorb.lnk
2024-06-18 19:45 - 2024-06-18 19:45 - 000000000 ____D C:\WINDOWS\LastGood.Tmp
2024-06-18 19:34 - 2024-06-18 19:34 - 000000000 ____D C:\Program Files (x86)\Adaware
2024-06-18 19:29 - 2024-06-18 19:29 - 000000000 ____D C:\WINDOWS\ERDNT
2024-06-18 19:23 - 2024-06-18 19:23 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-3319196770-3689827822-2008546791-500
2024-06-18 19:11 - 2024-06-18 19:11 - 000000000 ____D C:\Users\Administrator\AppData\Local\CEF
2024-06-18 19:09 - 2024-06-18 19:09 - 000000000 ____D C:\Users\Administrator\AppData\Local\Publishers
2024-06-18 19:09 - 2024-06-18 19:09 - 000000000 ____D C:\Users\Administrator\ansel
2024-06-18 19:08 - 2024-06-18 19:13 - 000000000 ____D C:\Users\Administrator\AppData\Local\Packages
2024-06-18 19:08 - 2024-06-18 19:11 - 000000000 ____D C:\Users\Administrator\AppData\Local\NVIDIA Corporation
2024-06-18 19:08 - 2024-06-18 19:09 - 000000000 ____D C:\Users\Administrator\AppData\Roaming\Microsoft\Windows
2024-06-18 19:08 - 2024-06-18 19:09 - 000000000 ____D C:\Users\Administrator
2024-06-18 19:08 - 2024-06-18 19:08 - 000002117 _____ C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2024-06-18 19:08 - 2024-06-18 19:08 - 000000020 ___SH C:\Users\Administrator\ntuser.ini
2024-06-18 19:08 - 2024-06-18 19:08 - 000000000 _SHDL C:\Users\Administrator\Vorlagen
2024-06-18 19:08 - 2024-06-18 19:08 - 000000000 _SHDL C:\Users\Administrator\Startmenü
2024-06-18 19:08 - 2024-06-18 19:08 - 000000000 _SHDL C:\Users\Administrator\Netzwerkumgebung
2024-06-18 19:08 - 2024-06-18 19:08 - 000000000 _SHDL C:\Users\Administrator\Lokale Einstellungen
2024-06-18 19:08 - 2024-06-18 19:08 - 000000000 _SHDL C:\Users\Administrator\Eigene Dateien
2024-06-18 19:08 - 2024-06-18 19:08 - 000000000 _SHDL C:\Users\Administrator\Druckumgebung
2024-06-18 19:08 - 2024-06-18 19:08 - 000000000 _SHDL C:\Users\Administrator\Documents\Eigene Videos
2024-06-18 19:08 - 2024-06-18 19:08 - 000000000 _SHDL C:\Users\Administrator\Documents\Eigene Musik
2024-06-18 19:08 - 2024-06-18 19:08 - 000000000 _SHDL C:\Users\Administrator\Documents\Eigene Bilder
2024-06-18 19:08 - 2024-06-18 19:08 - 000000000 _SHDL C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2024-06-18 19:08 - 2024-06-18 19:08 - 000000000 _SHDL C:\Users\Administrator\AppData\Local\Verlauf
2024-06-18 19:08 - 2024-06-18 19:08 - 000000000 _SHDL C:\Users\Administrator\AppData\Local\Anwendungsdaten
2024-06-18 19:08 - 2024-06-18 19:08 - 000000000 _SHDL C:\Users\Administrator\Anwendungsdaten
2024-06-18 19:08 - 2024-06-18 19:08 - 000000000 ___SD C:\Users\Administrator\AppData\Roaming\Microsoft\SystemCertificates
2024-06-18 19:08 - 2024-06-18 19:08 - 000000000 ___SD C:\Users\Administrator\AppData\Roaming\Microsoft\Protect
2024-06-18 19:08 - 2024-06-18 19:08 - 000000000 ___SD C:\Users\Administrator\AppData\Roaming\Microsoft\Crypto
2024-06-18 19:08 - 2024-06-18 19:08 - 000000000 ___SD C:\Users\Administrator\AppData\Roaming\Microsoft\Credentials
2024-06-18 19:08 - 2024-06-18 19:08 - 000000000 ___RD C:\Users\Administrator\3D Objects
2024-06-18 19:08 - 2024-06-18 19:08 - 000000000 ____D C:\Users\Administrator\AppData\Roaming\Microsoft\Vault
2024-06-18 19:08 - 2024-06-18 19:08 - 000000000 ____D C:\Users\Administrator\AppData\Roaming\Adobe
2024-06-18 19:08 - 2024-06-18 19:08 - 000000000 ____D C:\Users\Administrator\AppData\LocalLow\NVIDIA
2024-06-18 19:08 - 2024-06-18 19:08 - 000000000 ____D C:\Users\Administrator\AppData\Local\NVIDIA
2024-06-18 19:08 - 2024-06-18 19:08 - 000000000 ____D C:\Users\Administrator\AppData\Local\ConnectedDevicesPlatform
2024-06-18 19:08 - 2024-06-18 11:22 - 000000000 ____D C:\Users\Administrator\AppData\Local\Kaspersky Lab
2024-06-18 19:08 - 2024-06-07 19:05 - 000000000 ___RD C:\Users\Administrator\OneDrive
2024-06-18 19:08 - 2024-04-04 15:22 - 000001599 _____ C:\Users\Administrator\Desktop\Atlas.lnk
2024-06-18 19:05 - 2024-06-18 19:05 - 000000000 ____D C:\Users\Leon\AppData\Local\ElevatedDiagnostics
2024-06-18 18:53 - 2024-06-18 18:57 - 000000000 ____D C:\ProgramData\AVG
2024-06-18 18:51 - 2024-06-18 18:51 - 000000000 ____D C:\AdwCleaner
2024-06-18 18:47 - 2024-06-18 18:47 - 000000000 ____D C:\ProgramData\Sophos
2024-06-18 18:29 - 2024-06-18 18:47 - 000000000 ____D C:\ProgramData\SecTaskMan
2024-06-18 18:20 - 2024-06-18 18:20 - 000000000 ____D C:\Program Files (x86)\custom_resouce
2024-06-18 16:40 - 2024-06-18 16:31 - 000002070 _____ C:\Users\Leon\AppData\Roaming\Microsoft\Windows\Start Menu\startscreen.lnk
2024-06-18 16:31 - 2024-06-18 16:40 - 000000000 ____D C:\Users\Leon\AppData\Local\OpenShell
2024-06-18 16:31 - 2024-06-18 16:31 - 000000000 ____D C:\Users\Leon\AppData\Roaming\OpenShell
2024-06-18 16:15 - 2024-06-18 21:12 - 000000000 ____D C:\SymCache
2024-06-18 16:12 - 2024-06-18 16:12 - 000000028 ____H C:\.GamingRoot
2024-06-18 16:11 - 2024-06-18 16:11 - 000000000 ____D C:\ProgramData\WindowsPerformanceRecorder
2024-06-18 16:09 - 2024-06-18 16:16 - 000000000 ____D C:\Users\Leon\AppData\Local\Windows Performance Analyzer
2024-06-18 16:09 - 2024-06-18 16:09 - 000000000 ____D C:\Users\Leon\Documents\WPA Files
2024-06-18 16:08 - 2024-06-18 16:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Kits
2024-06-18 16:08 - 2024-06-18 16:08 - 000000000 ____D C:\Program Files (x86)\Windows Kits
2024-06-18 14:36 - 2024-06-18 14:36 - 000000000 ____D C:\Users\Leon\AppData\Local\nzxt cam-updater
2024-06-18 14:35 - 2024-06-18 14:35 - 000001790 _____ C:\Users\Leon\Desktop\CrosshairX.exe.lnk
2024-06-18 12:49 - 2024-06-18 12:49 - 000000448 __RSH C:\ProgramData\ntuser.pol
2024-06-18 12:40 - 2024-06-18 12:45 - 000000000 ____D C:\Users\Leon\AppData\Local\Rufus
2024-06-18 12:12 - 2024-06-18 12:12 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avira
2024-06-18 12:08 - 2024-06-18 12:12 - 000159136 _____ C:\WINDOWS\system32\rtp.db
2024-06-18 12:08 - 2024-06-18 12:08 - 000000000 ____D C:\WINDOWS\SysWOW64\statReporter
2024-06-18 12:08 - 2024-06-18 12:08 - 000000000 ____D C:\Users\Public\Security Sessions
2024-06-18 12:08 - 2024-06-18 12:08 - 000000000 ____D C:\Users\Leon\AppData\Local\AviraWebView2Cache
2024-06-18 12:08 - 2024-06-18 12:08 - 000000000 ____D C:\Users\Leon\AppData\Local\Avira
2024-06-18 12:07 - 2024-06-18 21:02 - 000000000 ____D C:\WINDOWS\ELAMBKUP
2024-06-18 11:22 - 2024-06-18 11:22 - 000000000 ____D C:\Users\Leon\AppData\Local\Kaspersky Lab
2024-06-18 11:22 - 2024-06-18 11:22 - 000000000 ____D C:\Users\Default\AppData\Local\Kaspersky Lab
2024-06-18 11:22 - 2024-06-18 11:22 - 000000000 ____D C:\Program Files (x86)\dotnet
2024-06-18 11:21 - 2024-06-18 11:29 - 000000000 ____D C:\Program Files\Common Files\AV
2024-06-18 10:18 - 2024-06-18 10:18 - 000000000 ___HD C:\$AV_ASW
2024-06-18 10:13 - 2024-06-18 10:13 - 000000000 ____D C:\Users\Leon\AppData\Roaming\Goldberg SteamEmu Saves
2024-06-18 09:59 - 2024-06-18 09:59 - 000000000 ____D C:\WINDOWS\system32\o2
2024-06-18 09:59 - 2024-06-18 09:59 - 000000000 ____D C:\Users\Leon\AppData\Roaming\Avast Software
2024-06-18 09:40 - 2024-06-18 21:13 - 001300558 _____ C:\WINDOWS\ntbtlog.txt
2024-06-17 21:43 - 2024-06-17 21:43 - 000003194 _____ C:\WINDOWS\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2024-06-17 21:43 - 2024-06-17 21:43 - 000002158 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2024-06-17 21:17 - 2024-06-17 21:17 - 000949472 _____ (Trellix US LLC.) C:\WINDOWS\system32\Drivers\mfehidk.sys.7e8a.deleteme
2024-06-17 21:17 - 2024-06-17 21:17 - 000491232 _____ (Trellix US LLC.) C:\WINDOWS\system32\Drivers\mfeaack.sys.e7e9.deleteme
2024-06-17 21:17 - 2024-06-17 21:17 - 000354016 _____ (Trellix US LLC.) C:\WINDOWS\system32\Drivers\mfeavfk.sys.6ee4.deleteme
2024-06-17 21:17 - 2024-06-17 21:17 - 000106720 _____ (Trellix US LLC.) C:\WINDOWS\system32\Drivers\mfeplk.sys.222a.deleteme
2024-06-17 21:17 - 2024-06-17 21:17 - 000060128 _____ (Trellix US LLC.) C:\WINDOWS\system32\Drivers\mfeaacsk.sys.6eb9.deleteme
2024-06-17 14:38 - 2024-06-17 14:38 - 000004308 _____ C:\WINDOWS\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-06-17 14:38 - 2024-06-17 14:38 - 000003976 _____ C:\WINDOWS\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-06-17 14:38 - 2024-06-17 14:38 - 000003940 _____ C:\WINDOWS\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-06-17 14:38 - 2024-06-17 14:38 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-06-17 14:38 - 2024-06-17 14:38 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-06-17 14:38 - 2024-06-17 14:38 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-06-17 14:38 - 2024-06-17 14:38 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-06-17 14:38 - 2024-06-11 22:53 - 002900520 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll
2024-06-17 14:08 - 2024-06-17 14:08 - 000000000 ____D C:\WINDOWS\pss
2024-06-17 10:29 - 2024-06-17 10:29 - 000949472 _____ (Trellix US LLC.) C:\WINDOWS\system32\Drivers\mfehidk.sys.47d9.deleteme
2024-06-17 10:29 - 2024-06-17 10:29 - 000491232 _____ (Trellix US LLC.) C:\WINDOWS\system32\Drivers\mfeaack.sys.f61d.deleteme
2024-06-17 10:29 - 2024-06-17 10:29 - 000354016 _____ (Trellix US LLC.) C:\WINDOWS\system32\Drivers\mfeavfk.sys.6c3d.deleteme
2024-06-17 10:29 - 2024-06-17 10:29 - 000106720 _____ (Trellix US LLC.) C:\WINDOWS\system32\Drivers\mfeplk.sys.47f8.deleteme
2024-06-17 10:29 - 2024-06-17 10:29 - 000060128 _____ (Trellix US LLC.) C:\WINDOWS\system32\Drivers\mfeaacsk.sys.c890.deleteme
2024-06-17 10:29 - 2024-06-17 10:29 - 000000000 ____D C:\Program Files\Common Files\McAfee
2024-06-17 10:05 - 2024-06-17 10:05 - 000004232 _____ C:\WINDOWS\system32\Tasks\Opera GX scheduled Autoupdate 1712237227
2024-06-17 10:05 - 2024-06-17 10:05 - 000001435 _____ C:\Users\Leon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Browser Opera GX.lnk
2024-06-15 11:33 - 2024-06-15 11:33 - 000000000 ____D C:\Users\Leon\AppData\LocalLow\Brothel Empire
2024-06-12 18:09 - 2024-06-12 18:09 - 000000000 ____D C:\Users\Leon\AppData\Local\Microsoft_Corporation
2024-06-12 17:22 - 2024-06-12 17:22 - 000000000 ____D C:\Users\Leon\AppData\Local\alt app installer
2024-06-12 17:16 - 2024-06-12 17:16 - 000000000 ____D C:\Users\Leon\AppData\Local\INetHistory
2024-06-12 17:15 - 2024-06-18 16:12 - 000000000 ____D C:\XboxGames
2024-06-12 16:44 - 2024-06-18 19:55 - 000000000 ____D C:\Users\Leon\AppData\Roaming\Microsoft\MMC
2024-06-12 15:58 - 2024-06-18 20:16 - 000000000 ____D C:\Users\Leon\AppData\Roaming\CrosshairX
2024-06-09 23:04 - 2024-06-09 23:04 - 000000000 ____D C:\Program Files\dotnet
2024-06-08 01:55 - 2024-06-08 01:56 - 000000000 ____D C:\Users\Leon\VirtualBox VMs
2024-06-08 01:32 - 2024-06-08 23:34 - 000000000 ____D C:\Users\Leon\.VirtualBox
2024-06-08 01:31 - 2024-06-08 23:35 - 000000000 ____D C:\Program Files\Oracle
2024-06-07 19:05 - 2024-06-07 19:05 - 000000000 ____D C:\WINDOWS\system32\%userprofile%
2024-06-04 17:53 - 2024-06-02 20:28 - 002031376 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2024-06-04 17:53 - 2024-06-02 20:28 - 002031376 _____ C:\WINDOWS\system32\vulkaninfo.exe
2024-06-04 17:53 - 2024-06-02 20:28 - 001578768 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2024-06-04 17:53 - 2024-06-02 20:28 - 001578768 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2024-06-04 17:53 - 2024-06-02 20:28 - 001295120 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2024-06-04 17:53 - 2024-06-02 20:28 - 001295120 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2024-06-04 17:53 - 2024-06-02 20:27 - 001445136 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2024-06-04 17:53 - 2024-06-02 20:27 - 001445136 _____ C:\WINDOWS\system32\vulkan-1.dll
2024-06-04 17:53 - 2024-06-02 20:27 - 000477720 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2024-06-04 17:53 - 2024-06-02 20:27 - 000374832 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2024-06-04 17:53 - 2024-06-02 20:24 - 001068568 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvml.dll
2024-06-04 17:53 - 2024-06-02 20:24 - 000670256 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvofapi64.dll
2024-06-04 17:53 - 2024-06-02 20:24 - 000505896 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvofapi.dll
2024-06-04 17:53 - 2024-06-02 20:23 - 002178688 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2024-06-04 17:53 - 2024-06-02 20:23 - 001547912 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2024-06-04 17:53 - 2024-06-02 20:23 - 001203864 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2024-06-04 17:53 - 2024-06-02 20:23 - 000847896 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvidia-smi.exe
2024-06-04 17:53 - 2024-06-02 20:22 - 001630360 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2024-06-04 17:53 - 2024-06-02 20:22 - 001033368 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2024-06-04 17:53 - 2024-06-02 20:22 - 000796312 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2024-06-04 17:53 - 2024-06-02 20:22 - 000459816 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdebugdump.exe
2024-06-04 17:53 - 2024-06-02 20:21 - 016117808 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2024-06-04 17:53 - 2024-06-02 20:21 - 013007512 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2024-06-04 17:53 - 2024-06-02 20:21 - 006914072 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2024-06-04 17:53 - 2024-06-02 20:21 - 005913648 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2024-06-04 17:53 - 2024-06-02 20:21 - 005867032 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcudadebugger.dll
2024-06-04 17:53 - 2024-06-02 20:21 - 003788312 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2024-06-04 17:53 - 2024-06-02 20:20 - 000853016 _____ (NVIDIA Corporation) C:\WINDOWS\system32\MCU.exe
2024-06-04 17:53 - 2024-06-02 20:19 - 007060272 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2024-06-04 17:53 - 2024-06-02 20:19 - 006141096 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2024-06-04 17:53 - 2024-06-02 05:42 - 000123973 _____ C:\WINDOWS\system32\nvinfo.pb
2024-06-04 17:39 - 2024-06-17 11:01 - 000000000 ____D C:\Users\Leon\AppData\Roaming\COV
2024-06-04 17:39 - 2024-06-17 10:14 - 000000000 ____D C:\Users\Leon\AppData\Roaming\COVF
2024-06-04 17:39 - 2024-06-04 18:51 - 000000290 _____ C:\WINDOWS\Tasks\BKEConfig.job
2024-06-04 17:38 - 2024-06-04 17:38 - 000000000 ____D C:\Users\Leon\AppData\Local\BrowserAuth_CGM
2024-06-04 17:24 - 2024-06-04 17:24 - 000000000 ____D C:\DR
2024-06-03 15:05 - 2024-06-18 20:19 - 000000000 ____D C:\Users\Leon\AppData\Local\Discord
2024-06-03 15:05 - 2024-06-12 18:12 - 000002242 _____ C:\Users\Leon\Desktop\Discord.lnk
2024-06-03 14:38 - 2024-06-03 14:38 - 000000000 ____D C:\Users\Leon\AppData\Local\OO Software
2024-06-03 14:28 - 2024-06-03 14:28 - 000000000 ____D C:\Users\Leon\AppData\Local\mbamtray
2024-06-03 14:06 - 2021-02-12 19:24 - 000205552 _____ (Ray Hinchliffe) C:\WINDOWS\system32\Drivers\SIVX64.sys
2024-06-03 13:57 - 2024-06-03 14:05 - 000000000 ____D C:\Users\Leon\tmp
2024-06-03 13:55 - 2024-06-03 18:07 - 000000000 ____D C:\Users\Leon\AppData\Roaming\steam
2024-06-03 13:27 - 2024-06-08 01:56 - 000000000 ____D C:\Users\Leon\AppData\Roaming\Process Hacker 2
2024-06-03 13:19 - 2024-06-03 13:19 - 000000000 ____D C:\Users\Leon\AppData\Local\net.dllinjector
2024-06-02 17:27 - 2024-06-02 17:27 - 000000000 ____D C:\Users\Leon\AppData\Local\citizenfx
2024-06-02 01:36 - 2024-06-02 01:42 - 000000000 ____D C:\Users\Leon\Documents\Rockstar Games
2024-06-01 23:12 - 2024-06-02 01:37 - 000000000 ____D C:\Users\Leon\AppData\Local\Rockstar Games
2024-06-01 23:12 - 2024-06-01 23:12 - 000000000 ____D C:\Program Files\Rockstar Games
2024-06-01 23:12 - 2024-06-01 23:12 - 000000000 ____D C:\Program Files (x86)\Rockstar Games
2024-06-01 23:11 - 2024-06-01 23:12 - 000000000 ____D C:\ProgramData\Rockstar Games
2024-06-01 23:11 - 2024-06-01 23:11 - 000000000 ____D C:\Users\Leon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Rockstar Games
2024-06-01 23:03 - 2024-06-02 02:28 - 000000000 ____D C:\Users\Leon\AppData\Roaming\CitizenFX
2024-06-01 22:41 - 2024-06-01 22:41 - 000000000 ____D C:\Users\Leon\AppData\Local\OneDrive
2024-06-01 22:00 - 2024-06-02 02:43 - 000000000 ____D C:\Users\Leon\AppData\Local\DigitalEntitlements
2024-06-01 16:18 - 2024-06-01 16:18 - 000000856 _____ C:\Users\Public\Desktop\Logitech G HUB.lnk
2024-06-01 16:18 - 2024-06-01 16:18 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logi
2024-06-01 16:18 - 2024-06-01 16:18 - 000000000 ____D C:\Program Files\LGHUB
2024-05-28 22:16 - 2024-05-28 22:19 - 000000000 ____D C:\Users\Leon\Downloads\Crosshair.X.v2024.05.16
2024-05-24 13:32 - 2024-05-24 13:32 - 000000000 ____D C:\Users\Leon\AppData\Roaming\Microsoft\Document Building Blocks
2024-05-24 13:31 - 2024-05-24 13:31 - 000000000 ____D C:\Users\Leon\AppData\Roaming\Microsoft\QuickStyles
2024-05-24 13:02 - 2024-06-18 21:13 - 000000000 ____D C:\Users\Leon\AppData\Roaming\G HUB
2024-05-24 13:02 - 2024-06-18 21:13 - 000000000 ____D C:\Users\Leon\AppData\Local\LGHUB
2024-05-24 13:02 - 2024-06-12 10:53 - 000000000 ____D C:\Users\Leon\AppData\Roaming\lghub
2024-05-24 13:02 - 2024-05-24 13:02 - 000073040 _____ (Logitech) C:\WINDOWS\system32\Drivers\logi_joy_xlcore.sys
2024-05-24 13:02 - 2024-05-24 13:02 - 000044880 _____ (Logitech) C:\WINDOWS\system32\Drivers\logi_joy_bus_enum.sys
2024-05-24 13:02 - 2024-05-24 13:02 - 000000000 ____D C:\ProgramData\LGHUB
2024-05-21 21:15 - 2024-05-14 04:22 - 000121872 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhda64v.sys
2024-05-21 16:50 - 2024-05-21 16:50 - 000000000 ____D C:\Users\Leon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ASIO4ALL v2
2024-05-21 16:50 - 2024-05-21 16:50 - 000000000 ____D C:\Program Files (x86)\ASIO4ALL v2
2024-05-21 15:27 - 2024-05-21 15:27 - 000000000 ____D C:\Program Files\Common Files\Propellerhead Software
2024-05-19 21:13 - 2024-05-22 21:24 - 000000000 ____D C:\Users\Leon\Documents\Image-Line
2024-05-19 21:11 - 2024-06-18 16:05 - 000000000 ____D C:\Users\Leon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Image-Line
2024-05-19 21:11 - 2024-06-03 14:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Image-Line
2024-05-19 21:10 - 2024-05-21 16:48 - 000000000 ____D C:\Program Files\Image-Line
2024-05-19 21:09 - 2024-05-19 21:09 - 000000000 ____D C:\Program Files (x86)\Image-Line

==================== Ein Monat (geänderte) ==================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2024-06-18 21:09 - 2024-04-04 14:35 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2024-06-18 21:03 - 2024-04-04 15:27 - 000684798 _____ C:\WINDOWS\system32\perfh007.dat
2024-06-18 21:03 - 2024-04-04 15:27 - 000141256 _____ C:\WINDOWS\system32\perfc007.dat
2024-06-18 21:03 - 2024-04-04 15:24 - 000000000 ____D C:\WINDOWS\INF
2024-06-18 21:03 - 2024-04-04 14:41 - 001590260 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2024-06-18 21:02 - 2024-04-04 16:26 - 000000000 ____D C:\Users\Leon\AppData\Roaming\steelseries-gg-client
2024-06-18 21:00 - 2024-04-13 00:47 - 000000001 _____ C:\WINDOWS\vgkbootstatus.dat
2024-06-18 20:57 - 2024-04-07 03:07 - 000000000 ____D C:\ProgramData\NVIDIA
2024-06-18 20:57 - 2024-04-04 14:35 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2024-06-18 20:52 - 2024-04-04 15:22 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2024-06-18 20:24 - 2024-04-04 21:04 - 000000000 ____D C:\Users\Leon\AppData\Roaming\discord
2024-06-18 20:17 - 2024-04-04 15:25 - 000000000 ____D C:\WINDOWS\SystemTemp
2024-06-18 20:05 - 2024-04-07 03:08 - 000000000 ____D C:\Users\Leon\AppData\Local\NVIDIA
2024-06-18 20:00 - 2024-04-04 15:25 - 000000000 ____D C:\WINDOWS\AppReadiness
2024-06-18 19:42 - 2024-04-07 03:06 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2024-06-18 19:08 - 2024-04-04 15:25 - 000000000 ___RD C:\WINDOWS\PrintDialog
2024-06-18 19:08 - 2024-04-04 15:25 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2024-06-18 19:08 - 2024-04-04 14:41 - 000000000 __RHD C:\Users\Public\AccountPictures
2024-06-18 18:49 - 2024-04-04 20:03 - 000000000 ____D C:\Users\Leon\AppData\Local\Spotify
2024-06-18 18:45 - 2024-04-04 20:00 - 000000000 ____D C:\Users\Leon\AppData\Roaming\Spotify
2024-06-18 18:37 - 2024-04-06 23:12 - 000000000 ____D C:\Program Files (x86)\MSI Afterburner
2024-06-18 16:57 - 2024-04-05 00:51 - 000000000 ____D C:\Users\Leon\AppData\Roaming\EasyAntiCheat
2024-06-18 16:29 - 2024-04-04 15:25 - 000000000 ___HD C:\Program Files\WindowsApps
2024-06-18 16:08 - 2024-04-04 15:14 - 000000000 ____D C:\ProgramData\Package Cache
2024-06-18 15:57 - 2024-05-15 18:55 - 000000000 ____D C:\Users\Leon\AppData\Local\CapCut
2024-06-18 15:52 - 2024-04-07 03:09 - 000000000 ____D C:\Users\Leon\AppData\Local\D3DSCache
2024-06-18 15:49 - 2024-04-04 14:35 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2024-06-18 14:33 - 2024-04-08 12:11 - 000000000 ____D C:\Program Files (x86)\CapFrameX
2024-06-18 14:16 - 2024-04-04 14:50 - 000000000 ____D C:\WINDOWS\system32\MRT
2024-06-18 12:38 - 2024-04-04 15:25 - 000000000 ___HD C:\WINDOWS\system32\GroupPolicy
2024-06-18 12:35 - 2024-04-04 14:35 - 000440992 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2024-06-18 11:29 - 2024-04-04 15:22 - 000008192 _____ C:\WINDOWS\system32\config\ELAM
2024-06-18 10:15 - 2024-04-04 14:40 - 000000000 ____D C:\Users\Leon
2024-06-18 09:47 - 2024-04-04 14:41 - 000000000 ____D C:\Users\Leon\AppData\Local\Packages
2024-06-18 09:33 - 2024-04-04 15:27 - 000001439 _____ C:\Users\Leon\Desktop\Browser Opera GX.lnk
2024-06-18 08:28 - 2024-04-06 23:19 - 000007602 _____ C:\Users\Leon\AppData\Local\Resmon.ResmonCfg
2024-06-17 22:08 - 2024-04-04 15:16 - 000000000 ____D C:\Program Files\7-Zip
2024-06-17 22:06 - 2024-04-04 15:22 - 000000000 ____D C:\WINDOWS\CbsTemp
2024-06-17 21:58 - 2024-05-05 22:52 - 000000000 ___RD C:\Users\Leon\OneDrive
2024-06-17 21:43 - 2024-05-06 23:11 - 000000000 ____D C:\Program Files\Microsoft OneDrive
2024-06-17 21:43 - 2024-05-05 22:52 - 000003596 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-3319196770-3689827822-2008546791-1001
2024-06-17 14:38 - 2024-04-07 03:08 - 000001489 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2024-06-17 14:38 - 2024-04-07 03:07 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2024-06-17 12:09 - 2024-05-14 14:39 - 000000000 ____D C:\Users\Leon\AppData\Roaming\Microsoft\Word
2024-06-17 10:43 - 2024-05-05 22:49 - 000000000 ____D C:\Program Files\Microsoft Office
2024-06-17 10:43 - 2024-04-04 15:25 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2024-06-17 10:34 - 2024-04-04 17:37 - 000000000 ____D C:\Users\Leon\AppData\Local\CrashDumps
2024-06-17 10:34 - 2024-04-04 17:11 - 000000000 ____D C:\Users\Leon\AppData\Local\Steam
2024-06-16 19:23 - 2024-04-05 15:11 - 000000000 ____D C:\Users\Leon\AppData\Local\YuniteClient
2024-06-15 11:22 - 2024-05-02 16:06 - 000000000 ____D C:\Users\Leon\AppData\Local\Battle.net
2024-06-13 11:44 - 2024-04-20 00:26 - 000000000 ____D C:\Users\Leon\AppData\Local\Ubisoft Game Launcher
2024-06-12 18:14 - 2024-04-04 14:41 - 000000000 ____D C:\ProgramData\Packages
2024-06-12 17:17 - 2024-04-12 23:56 - 000000000 ____D C:\Users\Leon\AppData\Roaming\riot-client-ux
2024-06-12 17:16 - 2024-04-04 14:44 - 000000000 ____D C:\Users\Leon\AppData\Local\PlaceholderTileLogoFolder
2024-06-12 16:41 - 2024-04-04 14:40 - 000000000 ____D C:\Users\Leon\AppData\Roaming\Microsoft\Windows
2024-06-12 16:20 - 2024-04-04 14:41 - 000000000 ____D C:\Users\Leon\AppData\Local\ConnectedDevicesPlatform
2024-06-11 22:52 - 2024-04-07 03:07 - 002231336 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll
2024-06-11 22:52 - 2024-04-07 03:07 - 001296936 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvRtmpStreamer64.dll
2024-06-11 22:24 - 2024-04-04 16:40 - 000086568 _____ C:\WINDOWS\system32\FvSDK_x64.dll
2024-06-11 22:24 - 2024-04-04 16:40 - 000075304 _____ C:\WINDOWS\SysWOW64\FvSDK_x86.dll
2024-06-11 18:31 - 2024-04-07 03:07 - 000001951 _____ C:\WINDOWS\NvContainerRecovery.bat
2024-06-09 12:18 - 2024-05-02 16:05 - 000000000 ____D C:\Program Files (x86)\Battle.net
2024-06-07 21:32 - 2024-04-12 23:58 - 000000000 ____D C:\Program Files\Riot Vanguard
2024-06-07 19:05 - 2024-05-05 22:52 - 000000000 ___RD C:\Users\Default\OneDrive
2024-06-06 20:05 - 2024-04-04 14:35 - 000003756 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2024-06-06 20:05 - 2024-04-04 14:35 - 000003632 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2024-06-03 18:23 - 2024-04-04 21:19 - 000000000 ____D C:\Users\Leon\Downloads\tron
2024-06-03 18:07 - 2024-04-04 17:01 - 000000555 _____ C:\Users\Public\Desktop\Steam.lnk
2024-06-03 15:05 - 2024-04-04 21:04 - 000000000 ____D C:\Users\Leon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Discord Inc
2024-06-03 15:05 - 2024-04-04 21:04 - 000000000 ____D C:\Users\Leon\AppData\Local\SquirrelTemp
2024-06-03 14:37 - 2024-04-04 15:25 - 000000000 ____D C:\WINDOWS\SystemApps
2024-06-03 14:11 - 2024-04-04 15:31 - 000000000 ____D C:\WINDOWS\Panther
2024-06-03 13:31 - 2024-04-10 17:17 - 000000000 ____D C:\Program Files (x86)\Microsoft Visual Studio
2024-06-03 13:31 - 2024-04-04 15:27 - 000000000 ____D C:\Program Files (x86)\MSBuild
2024-06-03 13:20 - 2024-04-04 14:41 - 000000000 ____D C:\Users\Leon\AppData\Local\VirtualStore
2024-05-27 23:07 - 2024-05-15 14:33 - 000000000 ____D C:\Users\Leon\AppData\Roaming\Microsoft\PowerPoint
2024-05-24 13:09 - 2024-04-04 15:28 - 000000000 ____D C:\Users\Leon\AppData\Local\UnrealEngine
2024-05-24 13:02 - 2024-04-04 16:20 - 000000000 ____D C:\ProgramData\Logishrd
2024-05-23 06:12 - 2024-04-04 15:25 - 000000000 ____D C:\WINDOWS\ServiceState
2024-05-22 18:14 - 2024-05-02 16:06 - 000000954 _____ C:\Users\Public\Desktop\Battle.net.lnk
2024-05-22 18:14 - 2024-04-20 00:26 - 000001310 _____ C:\Users\Leon\Desktop\Ubisoft Connect.lnk
2024-05-22 18:14 - 2024-04-08 13:36 - 000000821 _____ C:\Users\Leon\Desktop\Alphares.lnk
2024-05-22 18:14 - 2024-04-08 12:11 - 000001758 _____ C:\Users\Public\Desktop\CapFrameX.lnk
2024-05-22 18:14 - 2024-04-08 01:50 - 000001171 _____ C:\Users\Leon\Desktop\MSI Afterburner.lnk
2024-05-22 18:14 - 2024-04-05 15:11 - 000001182 _____ C:\Users\Leon\Desktop\Yunite Client.lnk
2024-05-22 18:14 - 2024-04-04 15:28 - 000001260 _____ C:\Users\Public\Desktop\Epic Games Launcher.lnk
2024-05-22 18:14 - 2024-04-04 15:22 - 000001599 _____ C:\Users\Leon\Downloads\Atlas.lnk
2024-05-22 18:11 - 2024-05-14 14:39 - 000000000 ____D C:\Users\Leon\AppData\Roaming\Microsoft\Office
2024-05-19 21:23 - 2024-04-10 17:17 - 000000000 ____D C:\Users\Leon\AppData\Roaming\Visual Studio Setup

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse ========

2024-04-06 23:19 - 2024-06-18 08:28 - 000007602 _____ () C:\Users\Leon\AppData\Local\Resmon.ResmonCfg
2024-04-04 17:07 - 2024-04-04 17:36 - 000000383 _____ () C:\Users\Leon\AppData\Local\rtb.json
2024-04-04 17:07 - 2024-04-04 17:36 - 000515767 _____ () C:\Users\Leon\AppData\Local\rtb.log

==================== SigCheck ============================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)