Ordner vom Desktop verschwunden - PC zeitweise langsam, WLAN bricht immer wieder ab TDSS
Code:
Alles auswählen Aufklappen ATTFilter
20:57:35.0839 0x2674 TDSS rootkit removing tool 3.1.0.15 Apr 18 2017 11:34:02
20:57:35.0839 0x2674 UEFI system
20:57:54.0464 0x2674 ============================================================
20:57:54.0464 0x2674 Current date / time: 2017/04/21 20:57:54.0464
20:57:54.0464 0x2674 SystemInfo:
20:57:54.0464 0x2674
20:57:54.0464 0x2674 OS Version: 10.0.14393 ServicePack: 0.0
20:57:54.0464 0x2674 Product type: Workstation
20:57:54.0464 0x2674 ComputerName: LENOVO-PC
20:57:54.0464 0x2674 UserName: Manja
20:57:54.0464 0x2674 Windows directory: C:\WINDOWS
20:57:54.0464 0x2674 System windows directory: C:\WINDOWS
20:57:54.0464 0x2674 Running under WOW64
20:57:54.0464 0x2674 Processor architecture: Intel x64
20:57:54.0464 0x2674 Number of processors: 4
20:57:54.0464 0x2674 Page size: 0x1000
20:57:54.0464 0x2674 Boot type: Normal boot
20:57:54.0464 0x2674 CodeIntegrityOptions = 0x00000001
20:57:54.0464 0x2674 ============================================================
20:58:02.0229 0x2674 KLMD registered as C:\WINDOWS\system32\drivers\04160760.sys
20:58:02.0229 0x2674 KLMD ARK init status: drvProperties = 0xFFF00, osBuild = 14393.953, osProperties = 0x19
20:58:03.0229 0x2674 System UUID: {4F31EA09-3837-F40B-F169-B5FDCF9CF545}
20:58:04.0511 0x2674 Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 ( 931.51 Gb ), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
20:58:04.0589 0x2674 ============================================================
20:58:04.0589 0x2674 \Device\Harddisk0\DR0:
20:58:04.0604 0x2674 GPT partitions:
20:58:04.0604 0x2674 \Device\Harddisk0\DR0\Partition1: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {BF6A7184-8544-45FB-A78B-BBC875CD61C8}, Name: Basic data partition, StartLBA 0x800, BlocksNum 0x1F4000
20:58:04.0604 0x2674 \Device\Harddisk0\DR0\Partition2: GPT, TypeGUID: {C12A7328-F81F-11D2-BA4B-00A0C93EC93B}, UniqueGUID: {3C4D5381-1FEE-49F4-BD08-A2842BEBD1A1}, Name: EFI system partition, StartLBA 0x1F4800, BlocksNum 0x82000
20:58:04.0604 0x2674 \Device\Harddisk0\DR0\Partition3: GPT, TypeGUID: {BFBFAFE7-A34F-448A-9A5B-6213EB736C22}, UniqueGUID: {37B2536D-FC21-4E94-B713-58F446803292}, Name: Basic data partition, StartLBA 0x276800, BlocksNum 0x1F4000
20:58:04.0604 0x2674 \Device\Harddisk0\DR0\Partition4: GPT, TypeGUID: {E3C9E316-0B5C-4DB8-817D-F92DF00215AE}, UniqueGUID: {628B78F7-34B0-491A-9D29-C48630E2AD30}, Name: Microsoft reserved partition, StartLBA 0x46A800, BlocksNum 0x40000
20:58:04.0604 0x2674 \Device\Harddisk0\DR0\Partition5: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {F6046E4B-531D-47E6-B859-17E7D4316F7C}, Name: Basic data partition, StartLBA 0x4AA800, BlocksNum 0x6F70D800
20:58:04.0604 0x2674 \Device\Harddisk0\DR0\Partition6: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {1039B095-4DDE-40DA-8D93-4306C7407A22}, Name: Basic data partition, StartLBA 0x6FBB8000, BlocksNum 0x3200000
20:58:04.0604 0x2674 \Device\Harddisk0\DR0\Partition7: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {2ABF23B6-FA2C-428F-BC39-6BEC8C606C7E}, Name: Basic data partition, StartLBA 0x72DB8000, BlocksNum 0x194E800
20:58:04.0604 0x2674 MBR partitions:
20:58:04.0604 0x2674 ============================================================
20:58:04.0745 0x2674 C: <-> \Device\Harddisk0\DR0\Partition5
20:58:04.0933 0x2674 D: <-> \Device\Harddisk0\DR0\Partition6
20:58:04.0933 0x2674 ============================================================
20:58:04.0933 0x2674 Initialize success
20:58:04.0933 0x2674 ============================================================
20:59:17.0063 0x1c98 ============================================================
20:59:17.0063 0x1c98 Scan started
20:59:17.0063 0x1c98 Mode: Manual; SigCheck; TDLFS;
20:59:17.0063 0x1c98 ============================================================
20:59:17.0063 0x1c98 KSN ping started
20:59:43.0657 0x1c98 KSN ping finished: true
20:59:56.0767 0x1c98 ================ Scan system memory ========================
20:59:56.0767 0x1c98 System memory - ok
20:59:56.0767 0x1c98 ================ Scan services =============================
20:59:57.0173 0x1c98 1394ohci - ok
20:59:57.0189 0x1c98 3ware - ok
20:59:57.0220 0x1c98 ACPI - ok
20:59:57.0251 0x1c98 AcpiDev - ok
20:59:57.0267 0x1c98 acpiex - ok
20:59:57.0267 0x1c98 acpipagr - ok
20:59:57.0329 0x1c98 AcpiPmi - ok
20:59:57.0345 0x1c98 acpitime - ok
20:59:57.0392 0x1c98 [ AF7A18603B0B82DFA5B420456FAF2201, 64AD831433778BB0B0B1615EEA7682960ED5815A091A9EFEE95A862EFBDE6D69 ] ACPIVPC C:\WINDOWS\System32\drivers\AcpiVpc.sys
20:59:57.0923 0x1c98 ACPIVPC - ok
20:59:58.0126 0x1c98 [ 671133C0AC2D8B40B7574F69059653E9, A36CC49A0C829A5C4D6CF273791071213F5FFB57DC7022D523CFB731374FF63C ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
20:59:58.0157 0x1c98 AdobeARMservice - ok
20:59:58.0220 0x1c98 ADP80XX - ok
20:59:58.0423 0x1c98 [ 0D0E5281784C2C526BA43C2ECD374288, BE4B16E08A96A24BEB904A2216A538340FD91A11E0CAB43BF8788C35DAD2D2B5 ] Afc C:\WINDOWS\syswow64\drivers\Afc.sys
20:59:58.0454 0x1c98 Afc - ok
20:59:58.0470 0x1c98 AFD - ok
20:59:58.0517 0x1c98 ahcache - ok
20:59:58.0532 0x1c98 AJRouter - ok
20:59:58.0548 0x1c98 ALG - ok
20:59:58.0642 0x1c98 [ 0990E6809D6C56C6DA85FE0EF20280EA, CC18608EB12DFB055C3AFCA2BB44FEDEE451F3F8CFEB87141F8EAD53F6BF6DD5 ] AMD External Events Utility C:\WINDOWS\system32\atiesrxx.exe
20:59:58.0689 0x1c98 AMD External Events Utility - ok
20:59:58.0720 0x1c98 AmdK8 - ok
20:59:58.0720 0x1c98 amdkmdag - ok
20:59:58.0861 0x1c98 [ 29C00798F093C2F54628F7C54DA77001, 8C85D9936103E19C60C8DE4DE98EA7F722BD3676911D873007FF2D152A456ED7 ] amdkmdap C:\WINDOWS\system32\DRIVERS\atikmpag.sys
20:59:58.0954 0x1c98 amdkmdap - ok
20:59:59.0001 0x1c98 [ 8A375CB3B6D1A56A2AEEE72A5F1D0926, 03D6EA77B141675B719E66DA09D1DACC7137B19F9918C303DD6870B3F36ADEBB ] amdkmpfd C:\WINDOWS\system32\drivers\amdkmpfd.sys
20:59:59.0032 0x1c98 amdkmpfd - ok
20:59:59.0048 0x1c98 AmdPPM - ok
20:59:59.0048 0x1c98 amdsata - ok
20:59:59.0064 0x1c98 amdsbs - ok
20:59:59.0064 0x1c98 amdxata - ok
20:59:59.0345 0x1c98 [ E6CEE7C270AD1CAE17EA910C85211BAE, 1DEB7185CEDC5918C20353C13AA0398D739A318729700F057B13821FF0FF5C97 ] AntiVirMailService C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe
20:59:59.0392 0x1c98 AntiVirMailService - ok
20:59:59.0423 0x1c98 [ 9658B76971381D9053E48E896256D5EB, 48C763BAF349E663D0E41657779BF5D1106A7C3E7F8C898185DC5D1998C0CDAF ] AntiVirSchedulerService C:\Program Files (x86)\Avira\Antivirus\sched.exe
20:59:59.0470 0x1c98 AntiVirSchedulerService - ok
20:59:59.0517 0x1c98 [ 9658B76971381D9053E48E896256D5EB, 48C763BAF349E663D0E41657779BF5D1106A7C3E7F8C898185DC5D1998C0CDAF ] AntiVirService C:\Program Files (x86)\Avira\Antivirus\avguard.exe
20:59:59.0564 0x1c98 AntiVirService - ok
20:59:59.0736 0x1c98 [ B62E24EEC8C4B6E8A173CAD069B5033A, 719F7C51D615591E70D549552AC66343526902007480278C0E56AA7E1F406F96 ] AntiVirWebService C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe
20:59:59.0782 0x1c98 AntiVirWebService - ok
20:59:59.0798 0x1c98 AppID - ok
20:59:59.0814 0x1c98 AppIDSvc - ok
20:59:59.0829 0x1c98 Appinfo - ok
20:59:59.0861 0x1c98 applockerfltr - ok
20:59:59.0907 0x1c98 AppReadiness - ok
20:59:59.0923 0x1c98 AppXSvc - ok
20:59:59.0939 0x1c98 arcsas - ok
20:59:59.0954 0x1c98 AsyncMac - ok
21:00:00.0017 0x1c98 atapi - ok
21:00:00.0048 0x1c98 athr - ok
21:00:00.0079 0x1c98 AudioEndpointBuilder - ok
21:00:00.0095 0x1c98 Audiosrv - ok
21:00:00.0173 0x1c98 [ 11F3AAFB5D279AFBCBB0AD9FF76A24F8, 06C5FA1BD64EB54691629363DD0771394F81E4EB216E489D5169395736E80D99 ] avgntflt C:\WINDOWS\system32\DRIVERS\avgntflt.sys
21:00:00.0236 0x1c98 avgntflt - ok
21:00:00.0298 0x1c98 [ F8520E88246641E51108922944FB34A6, 326DCB8114439FB1F75E9DB6E5F7818654FAAC4CD957B80DEE17B850676A737F ] avipbb C:\WINDOWS\system32\DRIVERS\avipbb.sys
21:00:00.0345 0x1c98 avipbb - ok
21:00:00.0517 0x1c98 [ 586FCB1EEC849C06A8DDDDAB276AF113, E193FA64A86C27B2B7AA43E74A196BCBF79A9644F94C96E84E6CC76A405193B6 ] Avira.ServiceHost C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
21:00:00.0548 0x1c98 Avira.ServiceHost - ok
21:00:00.0579 0x1c98 [ 2CBA09A7983B1D39531B768BCED08C20, B40968DFE1A648CCB9260033E1EA57B5D496274A335B000354156B0DB740EDE0 ] avkmgr C:\WINDOWS\system32\DRIVERS\avkmgr.sys
21:00:00.0595 0x1c98 avkmgr - ok
21:00:00.0626 0x1c98 [ 1DC2F715792CF33428AD7993ACBD224D, 129FBD517E016914CD61C35894C0B9B2074E680F1EB21201597E5C13CAF4529F ] avmeject C:\WINDOWS\system32\drivers\avmeject.sys
21:00:00.0673 0x1c98 avmeject - ok
21:00:00.0720 0x1c98 [ 8D18C6406FF8DC39028177E1E5675182, 44985DEE74F235567FB849350256F342BCE26EF66439D761FA3F6EDA22882092 ] avnetflt C:\WINDOWS\system32\DRIVERS\avnetflt.sys
21:00:00.0767 0x1c98 avnetflt - ok
21:00:00.0907 0x1c98 [ D50D54178CA7BF63BD60ABEC8E7772CC, 19EFE0808C2660A22DD69158FEC30F8CB83167D832C3EBE12C99261C6FB79ADF ] avusbflt C:\WINDOWS\system32\Drivers\avusbflt.sys
21:00:00.0939 0x1c98 avusbflt - ok
21:00:00.0970 0x1c98 AxInstSV - ok
21:00:00.0986 0x1c98 b06bdrv - ok
21:00:01.0017 0x1c98 BasicDisplay - ok
21:00:01.0032 0x1c98 BasicRender - ok
21:00:01.0079 0x1c98 [ E68481BE45ADDF4E2A6790BB653610A4, 1F868D19C2CF206CAB36E990E5DC20782DB69FC51944CDFD494A09333E35F026 ] bcbtums C:\WINDOWS\system32\drivers\bcbtums.sys
21:00:01.0157 0x1c98 bcbtums - ok
21:00:01.0986 0x1c98 [ 85081187E02D743CDC8E2B8728281734, AB1BB7BB4A1C4446754D5A77D4DE25B042AEA95870092FE951C8C4CCDA8FCD15 ] BCM43XX C:\WINDOWS\system32\DRIVERS\bcmwl63a.sys
21:00:02.0345 0x1c98 BCM43XX - ok
21:00:02.0564 0x1c98 [ 02123BE5D4D5CA48E93AC914EC936DC4, 1F5EBE116590726D0F601D487F26C7FC550F62144A0F9A64022E3DC2C940F17E ] BcmBtRSupport C:\WINDOWS\system32\BtwRSupportService.exe
21:00:02.0626 0x1c98 BcmBtRSupport - ok
21:00:02.0657 0x1c98 bcmfn - ok
21:00:02.0673 0x1c98 bcmfn2 - ok
21:00:03.0376 0x1c98 [ 85081187E02D743CDC8E2B8728281734, AB1BB7BB4A1C4446754D5A77D4DE25B042AEA95870092FE951C8C4CCDA8FCD15 ] BCMWL63A C:\WINDOWS\system32\DRIVERS\bcmwl63a.sys
21:00:03.0579 0x1c98 BCMWL63A - ok
21:00:03.0611 0x1c98 BDESVC - ok
21:00:03.0626 0x1c98 Beep - ok
21:00:03.0657 0x1c98 BFE - ok
21:00:03.0689 0x1c98 BITS - ok
21:00:03.0689 0x1c98 bowser - ok
21:00:03.0720 0x1c98 BrokerInfrastructure - ok
21:00:03.0751 0x1c98 Browser - ok
21:00:03.0767 0x1c98 BthA2DP - ok
21:00:03.0829 0x1c98 BthAvrcpTg - ok
21:00:03.0829 0x1c98 BthEnum - ok
21:00:03.0892 0x1c98 BthHFAud - ok
21:00:03.0907 0x1c98 BthHFEnum - ok
21:00:03.0923 0x1c98 bthhfhid - ok
21:00:03.0939 0x1c98 BthHFSrv - ok
21:00:03.0970 0x1c98 BthLEEnum - ok
21:00:03.0986 0x1c98 BTHMODEM - ok
21:00:04.0001 0x1c98 BthPan - ok
21:00:04.0017 0x1c98 BTHPORT - ok
21:00:04.0017 0x1c98 bthserv - ok
21:00:04.0017 0x1c98 BTHUSB - ok
21:00:04.0111 0x1c98 [ 93995198BCBA40C99994B4CF3ABCE964, 38A9422D9202FC1BA4104186BBA60CE55FD7A7239DB2CDE12B8D727F00F977AF ] btwampfl C:\WINDOWS\system32\DRIVERS\btwampfl.sys
21:00:04.0329 0x1c98 btwampfl - ok
21:00:04.0376 0x1c98 buttonconverter - ok
21:00:04.0392 0x1c98 CapImg - ok
21:00:04.0407 0x1c98 cdfs - ok
21:00:04.0439 0x1c98 CDPSvc - ok
21:00:04.0439 0x1c98 CDPUserSvc - ok
21:00:04.0626 0x1c98 cdrom - ok
21:00:04.0704 0x1c98 CertPropSvc - ok
21:00:04.0892 0x1c98 [ 59B4AB79011957DD3B83F0C2E63741BD, 5DE68785D701DBA0F98452B7D5CC407BEECD51685F39516157733CED2EF2FA19 ] chip1click C:\Program Files (x86)\Chip Digital GmbH\chip1click\chip 1-click installer.exe
21:00:05.0282 0x1c98 chip1click - detected UnsignedFile.Multi.Generic ( 1 )
21:00:05.0970 0x1c98 Detect skipped due to KSN trusted
21:00:05.0970 0x1c98 chip1click - ok
21:00:05.0986 0x1c98 cht4iscsi - ok
21:00:06.0017 0x1c98 cht4vbd - ok
21:00:06.0079 0x1c98 circlass - ok
21:00:06.0111 0x1c98 CLFS - ok
21:00:06.0767 0x1c98 [ 209D07A9F54C2211C4C1E387EC971C97, 02112545E31E617602ED527E9191BD819413FB3732EAD16699E0C5795F8C58B2 ] ClickToRunSvc C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe
21:00:06.0829 0x1c98 ClickToRunSvc - ok
21:00:06.0845 0x1c98 ClipSVC - ok
21:00:06.0861 0x1c98 clreg - ok
21:00:06.0907 0x1c98 CmBatt - ok
21:00:06.0939 0x1c98 CNG - ok
21:00:06.0970 0x1c98 cnghwassist - ok
21:00:07.0095 0x1c98 [ A0E8F4630E62D7616F0186B07ED3B66B, 9EF5FCA42FF7ECA59EDE736908D37CF53421EED830FAA8EBBD461CE7939EA09C ] CnxtHdAudService C:\WINDOWS\system32\drivers\CHDRT64.sys
21:00:07.0126 0x1c98 CnxtHdAudService - ok
21:00:07.0282 0x1c98 CompositeBus - ok
21:00:07.0298 0x1c98 COMSysApp - ok
21:00:07.0329 0x1c98 condrv - ok
21:00:07.0345 0x1c98 CoreMessagingRegistrar - ok
21:00:07.0501 0x1c98 [ 2EF1127FFCB66C5D41A98A734B021FE1, 4587DF6F67BAD40BDC07B9670CF15EBC86337A2B8AFAE73F89827076886F8B1A ] cphs C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
21:00:09.0064 0x1c98 cphs - ok
21:00:09.0079 0x1c98 CryptSvc - ok
21:00:09.0142 0x1c98 [ 4E6337DE03F36BCE168110E6B59F6A5B, 2DB940EBBA971B3801E273B80D8CBD975040A8B87908E7E0733E4DBB0EFC2611 ] CxAudMsg C:\WINDOWS\system32\CxAudMsg64.exe
21:00:09.0157 0x1c98 CxAudMsg - ok
21:00:09.0173 0x1c98 dam - ok
21:00:09.0204 0x1c98 DcomLaunch - ok
21:00:09.0236 0x1c98 DcpSvc - ok
21:00:09.0267 0x1c98 defragsvc - ok
21:00:09.0282 0x1c98 DeviceAssociationService - ok
21:00:09.0298 0x1c98 DeviceInstall - ok
21:00:09.0345 0x1c98 DevQueryBroker - ok
21:00:09.0361 0x1c98 Dfsc - ok
21:00:09.0439 0x1c98 [ 9593475FBC857A05D93BFF4FA7323C2B, D2A958AF5EFDC6136A6ABB7F8D5FE1F84C967E79BEA96C5BE3661A0145DEB907 ] dg_ssudbus C:\WINDOWS\system32\DRIVERS\ssudbus.sys
21:00:09.0861 0x1c98 dg_ssudbus - ok
21:00:09.0954 0x1c98 Dhcp - ok
21:00:10.0048 0x1c98 diagnosticshub.standardcollector.service - ok
21:00:10.0079 0x1c98 DiagTrack - ok
21:00:10.0126 0x1c98 disk - ok
21:00:10.0173 0x1c98 DmEnrollmentSvc - ok
21:00:10.0220 0x1c98 dmvsc - ok
21:00:10.0251 0x1c98 dmwappushservice - ok
21:00:10.0282 0x1c98 Dnscache - ok
21:00:10.0314 0x1c98 dot3svc - ok
21:00:10.0345 0x1c98 DPS - ok
21:00:10.0408 0x1c98 drmkaud - ok
21:00:10.0470 0x1c98 DsmSvc - ok
21:00:10.0486 0x1c98 DsSvc - ok
21:00:10.0517 0x1c98 DXGKrnl - ok
21:00:10.0532 0x1c98 EapHost - ok
21:00:10.0564 0x1c98 ebdrv - ok
21:00:10.0595 0x1c98 EFS - ok
21:00:10.0611 0x1c98 EhStorClass - ok
21:00:10.0657 0x1c98 EhStorTcgDrv - ok
21:00:10.0689 0x1c98 embeddedmode - ok
21:00:10.0704 0x1c98 EntAppSvc - ok
21:00:10.0814 0x1c98 [ 20ECD0A490A121CB34F553FAD1DBBD39, 17C9DA33E78FBC7582B0AA53C611929B80FBBE1343B84A179D515B51C964D218 ] EpsonScanSvc C:\WINDOWS\system32\EscSvc64.exe
21:00:10.0829 0x1c98 EpsonScanSvc - ok
21:00:11.0017 0x1c98 [ A7E8186E04F38E836C19AC147F8B2ED0, 329639595F02060C215A6334FCE1651FB9B9B5679BA9052A487B57265608D162 ] EPSON_PM_RPCV4_05 C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_WT50RP.EXE
21:00:11.0032 0x1c98 EPSON_PM_RPCV4_05 - ok
21:00:11.0032 0x1c98 ErrDev - ok
21:00:11.0283 0x1c98 [ 8842ED1E87D7662F249B5B63501E693B, A6D71351C2F32295926664875369C0BF93C59541B023884BDAC684E1EA94487A ] ESRV_SVC_QUEENCREEK C:\Program Files\Intel\SUR\QUEENCREEK\esrv_svc.exe
21:00:11.0361 0x1c98 ESRV_SVC_QUEENCREEK - ok
21:00:11.0595 0x1c98 [ 6BD85B39B7B23F03B24CF641ED29147B, 850F21750BB39E5239B1584E1117844CAAAF6A5C58E79366552309F917675CE5 ] ETD C:\WINDOWS\system32\DRIVERS\ETD.sys
21:00:11.0657 0x1c98 ETD - ok
21:00:11.0736 0x1c98 [ 8916EACF1256E1C5A3AF81FD39C747E7, FF28FB95E9F9287C1005CF0D9EB84F7CA3D137689862860C9848398504E1EFFF ] ETDService C:\Program Files\Elantech\ETDService.exe
21:00:11.0767 0x1c98 ETDService - ok
21:00:11.0829 0x1c98 EventSystem - ok
21:00:11.0861 0x1c98 exfat - ok
21:00:11.0892 0x1c98 fastfat - ok
21:00:11.0908 0x1c98 Fax - ok
21:00:11.0939 0x1c98 fdc - ok
21:00:11.0970 0x1c98 fdPHost - ok
21:00:11.0970 0x1c98 FDResPub - ok
21:00:12.0048 0x1c98 fhsvc - ok
21:00:12.0111 0x1c98 FileCrypt - ok
21:00:12.0126 0x1c98 FileInfo - ok
21:00:12.0142 0x1c98 Filetrace - ok
21:00:12.0157 0x1c98 flpydisk - ok
21:00:12.0173 0x1c98 FltMgr - ok
21:00:12.0204 0x1c98 FontCache - ok
21:00:12.0314 0x1c98 FontCache3.0.0.0 - ok
21:00:12.0329 0x1c98 FrameServer - ok
21:00:12.0345 0x1c98 FsDepends - ok
21:00:12.0361 0x1c98 Fs_Rec - ok
21:00:12.0376 0x1c98 fvevol - ok
21:00:12.0611 0x1c98 [ 0D2843C3C676B852D0B01CEA1E1DAE6C, 2F2751E09725D52008865F08A08F9989BCC4BA07FBC11B3BEF4332DC463CFC63 ] fwlanusb5_nv2 C:\WINDOWS\system32\DRIVERS\fwlanusb5_nv2.sys
21:00:12.0657 0x1c98 fwlanusb5_nv2 - ok
21:00:12.0704 0x1c98 gencounter - ok
21:00:12.0767 0x1c98 genericusbfn - ok
21:00:12.0783 0x1c98 GPIOClx0101 - ok
21:00:12.0814 0x1c98 gpsvc - ok
21:00:12.0861 0x1c98 GpuEnergyDrv - ok
21:00:12.0892 0x1c98 HDAudBus - ok
21:00:12.0939 0x1c98 HidBatt - ok
21:00:12.0970 0x1c98 HidBth - ok
21:00:12.0986 0x1c98 hidi2c - ok
21:00:13.0001 0x1c98 hidinterrupt - ok
21:00:13.0001 0x1c98 HidIr - ok
21:00:13.0064 0x1c98 hidserv - ok
21:00:13.0079 0x1c98 HidUsb - ok
21:00:13.0095 0x1c98 HomeGroupListener - ok
21:00:13.0173 0x1c98 HomeGroupProvider - ok
21:00:13.0236 0x1c98 HpSAMD - ok
21:00:13.0251 0x1c98 HTTP - ok
21:00:13.0298 0x1c98 HvHost - ok
21:00:13.0361 0x1c98 hvservice - ok
21:00:13.0376 0x1c98 hwpolicy - ok
21:00:13.0392 0x1c98 hyperkbd - ok
21:00:13.0423 0x1c98 i8042prt - ok
21:00:13.0454 0x1c98 iagpio - ok
21:00:13.0470 0x1c98 iai2c - ok
21:00:13.0501 0x1c98 iaLPSS2i_GPIO2 - ok
21:00:13.0517 0x1c98 iaLPSS2i_I2C - ok
21:00:13.0548 0x1c98 iaLPSSi_GPIO - ok
21:00:13.0548 0x1c98 iaLPSSi_I2C - ok
21:00:13.0736 0x1c98 [ 71341219FBB4BAB7F2462C4267DAB594, 0C6B684781D27F423D20186A40D7513DD6ABC38AD286D013791B37CBF5477A55 ] iaStorA C:\WINDOWS\system32\drivers\iaStorA.sys
21:00:13.0767 0x1c98 iaStorA - ok
21:00:13.0783 0x1c98 iaStorAV - ok
21:00:13.0892 0x1c98 [ B64E1D5BABD095C13A382838F9DCC77F, D8FF4E1BBA7EF5EE136CC5892C72E0774D0AAE40CD9EB3368A698DA6C078BBAA ] IAStorDataMgrSvc C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
21:00:13.0907 0x1c98 IAStorDataMgrSvc - ok
21:00:13.0923 0x1c98 iaStorV - ok
21:00:13.0954 0x1c98 ibbus - ok
21:00:14.0001 0x1c98 icssvc - ok
21:00:15.0345 0x1c98 [ 197FC03D62EEBCBCB8866B7EC0E1A6F0, 4197CBDAED113D13256C20FD2058E72C60EB2C28AE60EF6C3B3A0969CD7B2764 ] igfx C:\WINDOWS\system32\DRIVERS\igdkmd64.sys
21:00:15.0611 0x1c98 igfx - ok
21:00:15.0751 0x1c98 [ 34CB407D6FCAB16C8C1A1C97C72D15AC, 4EBC135F8ECB9756F62C0918CB811420FAC36AAE78667D318B9F4BF01862ECBD ] igfxCUIService2.0.0.0 C:\WINDOWS\system32\igfxCUIService.exe
21:00:15.0798 0x1c98 igfxCUIService2.0.0.0 - ok
21:00:15.0829 0x1c98 IKEEXT - ok
21:00:15.0861 0x1c98 IndirectKmd - ok
21:00:15.0908 0x1c98 [ DB65573521AB51941F4FA799D0968136, 418F5E3FE725B7B114F3DAEBDCEBCE7F4AD8ECAAFF572C02BA9ACCE86D55BFD8 ] intaud_WaveExtensible C:\WINDOWS\system32\drivers\intelaud.sys
21:00:15.0954 0x1c98 intaud_WaveExtensible - ok
21:00:16.0079 0x1c98 [ E300D1E37B737ED14F7A08CD5604E5D9, 5C1135081E29D7F4A97D5CAA2C8FBE1DD04EC7A3D8E648E69F2AA9EBDD88EBBB ] IntcDAud C:\WINDOWS\system32\DRIVERS\IntcDAud.sys
21:00:16.0111 0x1c98 IntcDAud - ok
21:00:16.0314 0x1c98 [ 0DB1E3F6189C628675F855C0EB510419, 989F539E82105019D2D81255369B96DC65826CD2A421DA09809155B26F69C555 ] Intel(R) Capability Licensing Service Interface C:\Program Files\Intel\iCLS Client\HeciServer.exe
21:00:16.0408 0x1c98 Intel(R) Capability Licensing Service Interface - detected UnsignedFile.Multi.Generic ( 1 )
21:00:17.0673 0x1c98 Detect skipped due to KSN trusted
21:00:17.0673 0x1c98 Intel(R) Capability Licensing Service Interface - ok
21:00:17.0892 0x1c98 [ 492AAF2FF66F437F0E796574B116EFC3, 6BF21C61ED05705DD58203952A750D1AB4D4B62F3A2B640BBBD9B85D1ECC3E5C ] Intel(R) Capability Licensing Service TCP IP Interface C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
21:00:17.0923 0x1c98 Intel(R) Capability Licensing Service TCP IP Interface - ok
21:00:17.0986 0x1c98 intelide - ok
21:00:18.0017 0x1c98 intelpep - ok
21:00:18.0048 0x1c98 intelppm - ok
21:00:18.0064 0x1c98 iorate - ok
21:00:18.0064 0x1c98 IpFilterDriver - ok
21:00:18.0126 0x1c98 iphlpsvc - ok
21:00:18.0142 0x1c98 IPMIDRV - ok
21:00:18.0158 0x1c98 IPNAT - ok
21:00:18.0173 0x1c98 irda - ok
21:00:18.0173 0x1c98 IRENUM - ok
21:00:18.0189 0x1c98 irmon - ok
21:00:18.0220 0x1c98 isapnp - ok
21:00:18.0251 0x1c98 iScsiPrt - ok
21:00:18.0548 0x1c98 [ 52069AEB42D3D0F97CBCA1085EBF55E6, ADB2EFFF563B3FE113FCD156FD1E469BC24FC1D68AFEDCA21306F76592C9FF88 ] jhi_service C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
21:00:18.0579 0x1c98 jhi_service - ok
21:00:18.0658 0x1c98 kbdclass - ok
21:00:18.0673 0x1c98 kbdhid - ok
21:00:18.0704 0x1c98 kdnic - ok
21:00:18.0704 0x1c98 KeyIso - ok
21:00:18.0720 0x1c98 KSecDD - ok
21:00:18.0751 0x1c98 KSecPkg - ok
21:00:18.0767 0x1c98 ksthunk - ok
21:00:18.0798 0x1c98 KtmRm - ok
21:00:18.0845 0x1c98 [ 4E5EA006CFFB96E0BAFC767D659AAB9A, A24A334955FB98D0903971454FADAC639D535BD32BB48964BD95019C7F6C454E ] L1C C:\WINDOWS\System32\drivers\L1C63x64.sys
21:00:18.0876 0x1c98 L1C - ok
21:00:18.0892 0x1c98 LanmanServer - ok
21:00:18.0892 0x1c98 LanmanWorkstation - ok
21:00:18.0939 0x1c98 lfsvc - ok
21:00:18.0970 0x1c98 LicenseManager - ok
21:00:18.0970 0x1c98 lltdio - ok
21:00:18.0986 0x1c98 lltdsvc - ok
21:00:19.0017 0x1c98 lmhosts - ok
21:00:19.0236 0x1c98 [ 4799AAD825F79C187FBA948D299386E7, 4E3618CF59B81825CF3E2AEC070CC57E3869BFF7543BB151530F02A3947A22F8 ] LSC.Services.SystemService C:\Program Files\Lenovo\Lenovo Solution Center\App\LSC.Services.SystemService.exe
21:00:19.0298 0x1c98 LSC.Services.SystemService - ok
21:00:19.0345 0x1c98 LSI_SAS - ok
21:00:19.0361 0x1c98 LSI_SAS2i - ok
21:00:19.0392 0x1c98 LSI_SAS3i - ok
21:00:19.0408 0x1c98 LSI_SSS - ok
21:00:19.0439 0x1c98 LSM - ok
21:00:19.0439 0x1c98 luafv - ok
21:00:19.0470 0x1c98 MapsBroker - ok
21:00:19.0501 0x1c98 megasas - ok
21:00:19.0564 0x1c98 megasas2i - ok
21:00:19.0579 0x1c98 megasr - ok
21:00:19.0626 0x1c98 [ 18B9AD128EC84E8D16A83F70CF36594F, 199DF15D68E2A079794E5DD325162C1A68A65EF26EEF5A6C6154281DDE57279A ] MEIx64 C:\WINDOWS\system32\DRIVERS\TeeDriverx64.sys
21:00:19.0673 0x1c98 MEIx64 - ok
21:00:19.0736 0x1c98 MessagingService - ok
21:00:19.0767 0x1c98 mlx4_bus - ok
21:00:19.0783 0x1c98 MMCSS - ok
21:00:19.0829 0x1c98 Modem - ok
21:00:19.0876 0x1c98 monitor - ok
21:00:19.0908 0x1c98 mouclass - ok
21:00:19.0908 0x1c98 mouhid - ok
21:00:19.0908 0x1c98 mountmgr - ok
21:00:20.0001 0x1c98 [ 2419641B6E64F4F76D369110969DA77C, 6E3FBCA61089BFFA0B214CD8AFF35E8F85FD3240BBA75B05FA4E98B2453AEF55 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
21:00:20.0048 0x1c98 MozillaMaintenance - ok
21:00:20.0048 0x1c98 mpsdrv - ok
21:00:20.0064 0x1c98 MpsSvc - ok
21:00:20.0095 0x1c98 MRxDAV - ok
21:00:20.0126 0x1c98 mrxsmb - ok
21:00:20.0142 0x1c98 mrxsmb10 - ok
21:00:20.0158 0x1c98 mrxsmb20 - ok
21:00:20.0189 0x1c98 MsBridge - ok
21:00:20.0204 0x1c98 MSDTC - ok
21:00:20.0220 0x1c98 Msfs - ok
21:00:20.0283 0x1c98 msgpiowin32 - ok
21:00:20.0298 0x1c98 mshidkmdf - ok
21:00:20.0314 0x1c98 mshidumdf - ok
21:00:20.0329 0x1c98 msisadrv - ok
21:00:20.0392 0x1c98 MSiSCSI - ok
21:00:20.0408 0x1c98 msiserver - ok
21:00:20.0423 0x1c98 MSKSSRV - ok
21:00:20.0439 0x1c98 MsLldp - ok
21:00:20.0470 0x1c98 MSPCLOCK - ok
21:00:20.0486 0x1c98 MSPQM - ok
21:00:20.0501 0x1c98 MsRPC - ok
21:00:20.0533 0x1c98 mssmbios - ok
21:00:20.0548 0x1c98 MSTEE - ok
21:00:20.0579 0x1c98 MTConfig - ok
21:00:20.0579 0x1c98 Mup - ok
21:00:20.0595 0x1c98 mvumis - ok
21:00:20.0611 0x1c98 NativeWifiP - ok
21:00:20.0642 0x1c98 NcaSvc - ok
21:00:20.0658 0x1c98 NcbService - ok
21:00:20.0689 0x1c98 NcdAutoSetup - ok
21:00:20.0704 0x1c98 ndfltr - ok
21:00:20.0736 0x1c98 NDIS - ok
21:00:20.0736 0x1c98 NdisCap - ok
21:00:20.0814 0x1c98 NdisImPlatform - ok
21:00:20.0829 0x1c98 NdisTapi - ok
21:00:20.0829 0x1c98 Ndisuio - ok
21:00:20.0845 0x1c98 NdisVirtualBus - ok
21:00:20.0861 0x1c98 NdisWan - ok
21:00:20.0861 0x1c98 ndiswanlegacy - ok
21:00:20.0876 0x1c98 ndproxy - ok
21:00:20.0892 0x1c98 Ndu - ok
21:00:20.0908 0x1c98 NetAdapterCx - ok
21:00:20.0908 0x1c98 NetBIOS - ok
21:00:20.0923 0x1c98 NetBT - ok
21:00:20.0923 0x1c98 Netlogon - ok
21:00:20.0939 0x1c98 Netman - ok
21:00:20.0986 0x1c98 netprofm - ok
21:00:21.0017 0x1c98 NetSetupSvc - ok
21:00:21.0158 0x1c98 NetTcpPortSharing - ok
21:00:21.0204 0x1c98 NgcCtnrSvc - ok
21:00:21.0236 0x1c98 NgcSvc - ok
21:00:21.0361 0x1c98 [ 9B214FF571749C9055EEDFCE52A81F90, F1D0BD4DF34B6F5532B1756E50C6317D63DD71AB577D1F8CBA74A7A225456EB0 ] NitroDriverReadSpool8 C:\Program Files\Common Files\Nitro\Pro\8.0\NitroPDFDriverService8x64.exe
21:00:21.0408 0x1c98 NitroDriverReadSpool8 - ok
21:00:21.0408 0x1c98 NlaSvc - ok
21:00:22.0220 0x1c98 [ BF15D119A19F8FD8B71F1E22C1BDA579, D24EFD135DB598DF2858AE8CDBEF92B439AE47F2880DD6E45D52ABD1E4FA5394 ] nlsX86cc C:\WINDOWS\SysWOW64\NLSSRV32.EXE
21:00:22.0892 0x1c98 nlsX86cc - ok
21:00:22.0908 0x1c98 Npfs - ok
21:00:22.0954 0x1c98 npsvctrig - ok
21:00:22.0986 0x1c98 nsi - ok
21:00:22.0986 0x1c98 nsiproxy - ok
21:00:23.0001 0x1c98 NTFS - ok
21:00:23.0033 0x1c98 Null - ok
21:00:23.0080 0x1c98 nvraid - ok
21:00:23.0080 0x1c98 nvstor - ok
21:00:23.0142 0x1c98 OneSyncSvc - ok
21:00:23.0298 0x1c98 [ 30B5F9FB0C35AE6B4A0851D24CE2EE8B, 0340E77E8EC2ADC21B8DDD9C9CC95B3F4BCAFD54618A333C72D7D9587D593B83 ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
21:00:23.0329 0x1c98 ose - ok
21:00:23.0345 0x1c98 p2pimsvc - ok
21:00:23.0345 0x1c98 p2psvc - ok
21:00:23.0361 0x1c98 Parport - ok
21:00:23.0376 0x1c98 partmgr - ok
21:00:23.0423 0x1c98 PcaSvc - ok
21:00:23.0439 0x1c98 pci - ok
21:00:23.0470 0x1c98 pciide - ok
21:00:23.0486 0x1c98 pcmcia - ok
21:00:23.0501 0x1c98 pcw - ok
21:00:23.0517 0x1c98 pdc - ok
21:00:23.0533 0x1c98 PEAUTH - ok
21:00:23.0548 0x1c98 percsas2i - ok
21:00:23.0564 0x1c98 percsas3i - ok
21:00:23.0595 0x1c98 PerfHost - ok
21:00:23.0642 0x1c98 PhoneSvc - ok
21:00:23.0689 0x1c98 PimIndexMaintenanceSvc - ok
21:00:23.0736 0x1c98 pla - ok
21:00:23.0736 0x1c98 PlugPlay - ok
21:00:23.0751 0x1c98 PNRPAutoReg - ok
21:00:23.0751 0x1c98 PNRPsvc - ok
21:00:23.0767 0x1c98 PolicyAgent - ok
21:00:23.0767 0x1c98 Power - ok
21:00:23.0798 0x1c98 PptpMiniport - ok
21:00:24.0439 0x1c98 [ 77ABF70C71922873BC160933571B3F83, 7FCFBB4B42E7A92FCF11388CD5B600EA79A7C134F13A8A88CF8DCD3DB96C3F5A ] PrintNotify C:\WINDOWS\system32\spool\drivers\x64\3\PrintConfig.dll
21:00:24.0908 0x1c98 PrintNotify - ok
21:00:24.0955 0x1c98 Processor - ok
21:00:24.0986 0x1c98 ProfSvc - ok
21:00:24.0986 0x1c98 Psched - ok
21:00:25.0017 0x1c98 QWAVE - ok
21:00:25.0048 0x1c98 QWAVEdrv - ok
21:00:25.0080 0x1c98 RasAcd - ok
21:00:25.0158 0x1c98 RasAgileVpn - ok
21:00:25.0189 0x1c98 RasAuto - ok
21:00:25.0220 0x1c98 Rasl2tp - ok
21:00:25.0236 0x1c98 RasMan - ok
21:00:25.0251 0x1c98 RasPppoe - ok
21:00:25.0251 0x1c98 RasSstp - ok
21:00:25.0267 0x1c98 rdbss - ok
21:00:25.0298 0x1c98 rdpbus - ok
21:00:25.0314 0x1c98 RDPDR - ok
21:00:25.0345 0x1c98 RdpVideoMiniport - ok
21:00:25.0345 0x1c98 rdyboost - ok
21:00:25.0392 0x1c98 ReFSv1 - ok
21:00:25.0423 0x1c98 RemoteAccess - ok
21:00:25.0455 0x1c98 RemoteRegistry - ok
21:00:25.0501 0x1c98 RetailDemo - ok
21:00:25.0533 0x1c98 RFCOMM - ok
21:00:25.0736 0x1c98 [ FBA61BB4C484A01A655AFB18FF86C417, D53B2110CB09D0A909C4E330C468351BFE076BB056CCDDCB8ADA2FB91E96352E ] RichVideo64 C:\Program Files\CyberLink\Shared files\RichVideo64.exe
21:00:25.0767 0x1c98 RichVideo64 - ok
21:00:25.0783 0x1c98 RmSvc - ok
21:00:25.0814 0x1c98 RpcEptMapper - ok
21:00:25.0845 0x1c98 RpcLocator - ok
21:00:25.0861 0x1c98 RpcSs - ok
21:00:25.0876 0x1c98 rspndr - ok
21:00:26.0001 0x1c98 [ 05E8543E0D8C07535944FC0CB15E0DA0, 8E076E7582C95E9251CB03D2F1F7FBA1E31ACAE21E16224C9ACDCC1489165A86 ] RTSUER C:\WINDOWS\system32\Drivers\RtsUer.sys
21:00:26.0017 0x1c98 RTSUER - ok
21:00:26.0423 0x1c98 [ FF8B926ABA5BDA6562D7106E8A92BE7B, 887007E4D3F90CF6228B21D75E5B89818C18A7F2E2DB66C85039E6ECB5A16A15 ] rtsuvc C:\WINDOWS\system32\DRIVERS\rtsuvc.sys
21:00:26.0501 0x1c98 rtsuvc - ok
21:00:26.0548 0x1c98 s3cap - ok
21:00:26.0580 0x1c98 SamSs - ok
21:00:26.0580 0x1c98 SAService - ok
21:00:26.0642 0x1c98 sbp2port - ok
21:00:26.0720 0x1c98 SCardSvr - ok
21:00:26.0751 0x1c98 ScDeviceEnum - ok
21:00:26.0798 0x1c98 scfilter - ok
21:00:26.0814 0x1c98 Schedule - ok
21:00:26.0829 0x1c98 scmbus - ok
21:00:26.0876 0x1c98 scmdisk0101 - ok
21:00:26.0923 0x1c98 SCPolicySvc - ok
21:00:26.0955 0x1c98 sdbus - ok
21:00:27.0001 0x1c98 SDRSVC - ok
21:00:27.0048 0x1c98 sdstor - ok
21:00:27.0064 0x1c98 seclogon - ok
21:00:27.0142 0x1c98 [ 07F83829E7429E60298440CD1E601A6A, 9F1229CD8DD9092C27A01F5D56E3C0D59C2BB9F0139ABF042E56F343637FDA33 ] semav6msr64 C:\WINDOWS\system32\drivers\semav6msr64.sys
21:00:27.0189 0x1c98 semav6msr64 - ok
21:00:27.0204 0x1c98 SENS - ok
21:00:27.0236 0x1c98 SensorDataService - ok
21:00:27.0267 0x1c98 SensorService - ok
21:00:27.0298 0x1c98 SensrSvc - ok
21:00:27.0314 0x1c98 SerCx - ok
21:00:27.0330 0x1c98 SerCx2 - ok
21:00:27.0345 0x1c98 Serenum - ok
21:00:27.0376 0x1c98 Serial - ok
21:00:27.0408 0x1c98 sermouse - ok
21:00:27.0439 0x1c98 SessionEnv - ok
21:00:27.0454 0x1c98 sfloppy - ok
21:00:27.0501 0x1c98 SharedAccess - ok
21:00:27.0626 0x1c98 ShellHWDetection - ok
21:00:27.0658 0x1c98 shpamsvc - ok
21:00:27.0673 0x1c98 SiSRaid2 - ok
21:00:27.0689 0x1c98 SiSRaid4 - ok
21:00:27.0814 0x1c98 [ F6EF225A23D336CA30001E5007644C24, B0A4B1256C1074F1B4F73E3BBA16FD4683D6EEA583DEEF8E11EFD29BA7541F2A ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
21:00:27.0861 0x1c98 SkypeUpdate - ok
21:00:27.0923 0x1c98 smphost - ok
21:00:27.0986 0x1c98 [ 6CFE5AB2A11DC8FD80B4CE74364C39BC, E271867F4944CFA1E3ED25061C190D00B808198E20153E56D22D63871019F315 ] smsbda C:\WINDOWS\system32\drivers\smsbda.sys
21:00:28.0048 0x1c98 smsbda - ok
21:00:28.0142 0x1c98 SmsRouter - ok
21:00:28.0173 0x1c98 SNMPTRAP - ok
21:00:28.0251 0x1c98 [ 3A4F2C0BB87A0895ABEBA341AA1E341B, 4DADEEF3C5D181502D6F4A00FBBF3B001FA626E49569FB330D7AE2955CC7DE08 ] Sony PC Companion C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe
21:00:28.0361 0x1c98 Sony PC Companion - detected UnsignedFile.Multi.Generic ( 1 )
21:00:28.0923 0x1c98 Detect skipped due to KSN trusted
21:00:28.0923 0x1c98 Sony PC Companion - ok
21:00:28.0970 0x1c98 spaceport - ok
21:00:28.0986 0x1c98 SpbCx - ok
21:00:29.0017 0x1c98 Spooler - ok
21:00:29.0048 0x1c98 sppsvc - ok
21:00:29.0064 0x1c98 srv - ok
21:00:29.0080 0x1c98 srv2 - ok
21:00:29.0095 0x1c98 srvnet - ok
21:00:29.0189 0x1c98 SSDPSRV - ok
21:00:29.0220 0x1c98 SstpSvc - ok
21:00:29.0314 0x1c98 [ 592FF34A2FD6C6351B8A3AA76B2C0A9E, 152B7472DE531AC45492F562DD470B2CE33F1EEF13BC78F26046AE5ABF54E32F ] ssudmdm C:\WINDOWS\system32\DRIVERS\ssudmdm.sys
21:00:29.0392 0x1c98 ssudmdm - ok
21:00:29.0423 0x1c98 StateRepository - ok
21:00:29.0455 0x1c98 stexstor - ok
21:00:29.0517 0x1c98 stisvc - ok
21:00:29.0533 0x1c98 storahci - ok
21:00:29.0580 0x1c98 storflt - ok
21:00:29.0595 0x1c98 stornvme - ok
21:00:29.0642 0x1c98 storqosflt - ok
21:00:29.0673 0x1c98 StorSvc - ok
21:00:29.0689 0x1c98 storufs - ok
21:00:29.0705 0x1c98 storvsc - ok
21:00:29.0830 0x1c98 [ 26B2BB5733F69B0A8306BAC37551F90A, 60F1A0C23727144B53F1C64348907AAD611F991C0A8C9F93AC8194210634420B ] SUService C:\Program Files (x86)\Lenovo\System Update\SUService.exe
21:00:29.0861 0x1c98 SUService - ok
21:00:29.0892 0x1c98 svsvc - ok
21:00:29.0892 0x1c98 swenum - ok
21:00:29.0908 0x1c98 swprv - ok
21:00:29.0955 0x1c98 Synth3dVsc - ok
21:00:29.0986 0x1c98 SysMain - ok
21:00:30.0033 0x1c98 SystemEventsBroker - ok
21:00:30.0189 0x1c98 [ 48D2B8AA8C2F1C3360EC33554EC4E6D2, 0F66A9CBED9E70DA3CED6E009795000D41259AD345E3BD3C2EA2F2969588BB04 ] SystemUsageReportSvc_QUEENCREEK C:\Program Files\Intel Driver Update Utility\SUR\SurSvc.exe
21:00:30.0236 0x1c98 SystemUsageReportSvc_QUEENCREEK - ok
21:00:30.0267 0x1c98 TabletInputService - ok
21:00:30.0267 0x1c98 TapiSrv - ok
21:00:30.0298 0x1c98 Tcpip - ok
21:00:30.0298 0x1c98 Tcpip6 - ok
21:00:30.0345 0x1c98 tcpipreg - ok
21:00:30.0361 0x1c98 tdx - ok
21:00:30.0376 0x1c98 terminpt - ok
21:00:30.0408 0x1c98 TermService - ok
21:00:30.0439 0x1c98 Themes - ok
21:00:30.0455 0x1c98 TieringEngineService - ok
21:00:30.0470 0x1c98 tiledatamodelsvc - ok
21:00:30.0501 0x1c98 TimeBrokerSvc - ok
21:00:30.0517 0x1c98 TPM - ok
21:00:30.0533 0x1c98 TrkWks - ok
21:00:30.0580 0x1c98 TrustedInstaller - ok
21:00:30.0580 0x1c98 tsusbflt - ok
21:00:30.0626 0x1c98 TsUsbGD - ok
21:00:30.0626 0x1c98 tunnel - ok
21:00:30.0658 0x1c98 tzautoupdate - ok
21:00:30.0705 0x1c98 UASPStor - ok
21:00:30.0705 0x1c98 UcmCx0101 - ok
21:00:30.0720 0x1c98 UcmTcpciCx0101 - ok
21:00:30.0720 0x1c98 UcmUcsi - ok
21:00:30.0736 0x1c98 Ucx01000 - ok
21:00:30.0751 0x1c98 UdeCx - ok
21:00:30.0751 0x1c98 udfs - ok
21:00:30.0767 0x1c98 UEFI - ok
21:00:30.0767 0x1c98 Ufx01000 - ok
21:00:30.0783 0x1c98 UfxChipidea - ok
21:00:30.0798 0x1c98 ufxsynopsys - ok
21:00:30.0830 0x1c98 UI0Detect - ok
21:00:30.0861 0x1c98 umbus - ok
21:00:30.0892 0x1c98 UmPass - ok
21:00:30.0908 0x1c98 UmRdpService - ok
21:00:30.0955 0x1c98 UnistoreSvc - ok
21:00:30.0986 0x1c98 upnphost - ok
21:00:31.0001 0x1c98 UrsChipidea - ok
21:00:31.0017 0x1c98 UrsCx01000 - ok
21:00:31.0017 0x1c98 UrsSynopsys - ok
21:00:31.0048 0x1c98 usbccgp - ok
21:00:31.0095 0x1c98 usbcir - ok
21:00:31.0095 0x1c98 usbehci - ok
21:00:31.0111 0x1c98 usbhub - ok
21:00:31.0126 0x1c98 USBHUB3 - ok
21:00:31.0142 0x1c98 usbohci - ok
21:00:31.0142 0x1c98 usbprint - ok
21:00:31.0158 0x1c98 usbser - ok
21:00:31.0189 0x1c98 USBSTOR - ok
21:00:31.0205 0x1c98 usbuhci - ok
21:00:31.0220 0x1c98 USBXHCI - ok
21:00:31.0220 0x1c98 usb_rndisx - ok
21:00:31.0251 0x1c98 UserDataSvc - ok
21:00:31.0267 0x1c98 UserManager - ok
21:00:31.0533 0x1c98 [ 8842ED1E87D7662F249B5B63501E693B, A6D71351C2F32295926664875369C0BF93C59541B023884BDAC684E1EA94487A ] USER_ESRV_SVC_QUEENCREEK C:\Program Files\Intel\SUR\QUEENCREEK\esrv_svc.exe
21:00:31.0564 0x1c98 USER_ESRV_SVC_QUEENCREEK - ok
21:00:31.0564 0x1c98 UsoSvc - ok
21:00:31.0580 0x1c98 VaultSvc - ok
21:00:31.0580 0x1c98 vdrvroot - ok
21:00:31.0595 0x1c98 vds - ok
21:00:31.0626 0x1c98 VerifierExt - ok
21:00:31.0626 0x1c98 vhdmp - ok
21:00:31.0642 0x1c98 vhf - ok
21:00:31.0642 0x1c98 vmbus - ok
21:00:31.0673 0x1c98 VMBusHID - ok
21:00:31.0673 0x1c98 vmgid - ok
21:00:31.0689 0x1c98 vmicguestinterface - ok
21:00:31.0705 0x1c98 vmicheartbeat - ok
21:00:31.0705 0x1c98 vmickvpexchange - ok
21:00:31.0736 0x1c98 vmicrdv - ok
21:00:31.0751 0x1c98 vmicshutdown - ok
21:00:31.0751 0x1c98 vmictimesync - ok
21:00:31.0751 0x1c98 vmicvmsession - ok
21:00:31.0767 0x1c98 vmicvss - ok
21:00:31.0767 0x1c98 volmgr - ok
21:00:31.0783 0x1c98 volmgrx - ok
21:00:31.0798 0x1c98 volsnap - ok
21:00:31.0814 0x1c98 volume - ok
21:00:31.0845 0x1c98 vpci - ok
21:00:31.0861 0x1c98 vsmraid - ok
21:00:31.0876 0x1c98 VSS - ok
21:00:31.0892 0x1c98 VSTXRAID - ok
21:00:31.0923 0x1c98 vwifibus - ok
21:00:31.0923 0x1c98 vwififlt - ok
21:00:31.0923 0x1c98 vwifimp - ok
21:00:31.0939 0x1c98 W32Time - ok
21:00:31.0955 0x1c98 WacomPen - ok
21:00:32.0001 0x1c98 WalletService - ok
21:00:32.0017 0x1c98 wanarp - ok
21:00:32.0033 0x1c98 wanarpv6 - ok
21:00:32.0080 0x1c98 wbengine - ok
21:00:32.0111 0x1c98 WbioSrvc - ok
21:00:32.0111 0x1c98 wcifs - ok
21:00:32.0142 0x1c98 Wcmsvc - ok
21:00:32.0158 0x1c98 wcncsvc - ok
21:00:32.0173 0x1c98 wcnfs - ok
21:00:32.0173 0x1c98 WdBoot - ok
21:00:32.0205 0x1c98 Wdf01000 - ok
21:00:32.0205 0x1c98 WdFilter - ok
21:00:32.0330 0x1c98 WdiServiceHost - ok
21:00:32.0345 0x1c98 WdiSystemHost - ok
21:00:32.0361 0x1c98 wdiwifi - ok
21:00:32.0376 0x1c98 WdNisDrv - ok
21:00:32.0408 0x1c98 WdNisSvc - ok
21:00:32.0423 0x1c98 WebClient - ok
21:00:32.0439 0x1c98 Wecsvc - ok
21:00:32.0455 0x1c98 WEPHOSTSVC - ok
21:00:32.0501 0x1c98 wercplsupport - ok
21:00:32.0501 0x1c98 WerSvc - ok
21:00:32.0517 0x1c98 WFPLWFS - ok
21:00:32.0517 0x1c98 WiaRpc - ok
21:00:32.0548 0x1c98 WIMMount - ok
21:00:32.0548 0x1c98 WinDefend - ok
21:00:32.0580 0x1c98 WindowsTrustedRT - ok
21:00:32.0595 0x1c98 WindowsTrustedRTProxy - ok
21:00:32.0626 0x1c98 WinHttpAutoProxySvc - ok
21:00:32.0642 0x1c98 WinMad - ok
21:00:32.0798 0x1c98 Winmgmt - ok
21:00:32.0814 0x1c98 WinRM - ok
21:00:32.0861 0x1c98 WINUSB - ok
21:00:32.0876 0x1c98 WinVerbs - ok
21:00:32.0908 0x1c98 wisvc - ok
21:00:32.0955 0x1c98 WlanSvc - ok
21:00:32.0970 0x1c98 wlidsvc - ok
21:00:32.0970 0x1c98 WmiAcpi - ok
21:00:33.0017 0x1c98 wmiApSrv - ok
21:00:33.0064 0x1c98 WMPNetworkSvc - ok
21:00:33.0080 0x1c98 Wof - ok
21:00:33.0111 0x1c98 workfolderssvc - ok
21:00:33.0158 0x1c98 WPDBusEnum - ok
21:00:33.0205 0x1c98 WpdUpFltr - ok
21:00:33.0220 0x1c98 WpnService - ok
21:00:33.0236 0x1c98 WpnUserService - ok
21:00:33.0251 0x1c98 ws2ifsl - ok
21:00:33.0283 0x1c98 wscsvc - ok
21:00:33.0298 0x1c98 WSDPrintDevice - ok
21:00:33.0314 0x1c98 WSDScan - ok
21:00:33.0330 0x1c98 WSearch - ok
21:00:33.0361 0x1c98 [ 72B4E9DF6456C43C42A1419B09486045, 536BA7377B5BEA7EA46864453933111DB88DB8FB689C68915ACD7261A996E61D ] wsvd C:\WINDOWS\system32\DRIVERS\wsvd.sys
21:00:33.0705 0x1c98 wsvd - ok
21:00:33.0814 0x1c98 wuauserv - ok
21:00:33.0830 0x1c98 WudfPf - ok
21:00:33.0845 0x1c98 WUDFRd - ok
21:00:33.0876 0x1c98 wudfsvc - ok
21:00:33.0876 0x1c98 WUDFWpdFs - ok
21:00:33.0892 0x1c98 WUDFWpdMtp - ok
21:00:33.0908 0x1c98 WwanSvc - ok
21:00:33.0939 0x1c98 XblAuthManager - ok
21:00:33.0986 0x1c98 XblGameSave - ok
21:00:34.0001 0x1c98 xboxgip - ok
21:00:34.0048 0x1c98 XboxNetApiSvc - ok
21:00:34.0095 0x1c98 xinputhid - ok
21:00:34.0158 0x1c98 ================ Scan global ===============================
21:00:34.0345 0x1c98 [ Global ] - ok
21:00:34.0345 0x1c98 ================ Scan MBR ==================================
21:00:34.0376 0x1c98 [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk0\DR0
21:00:34.0783 0x1c98 \Device\Harddisk0\DR0 - ok
21:00:34.0783 0x1c98 ================ Scan VBR ==================================
21:00:34.0814 0x1c98 [ 2E17CCD49D062E31E0B3A9684E00B350 ] \Device\Harddisk0\DR0\Partition1
21:00:34.0845 0x1c98 \Device\Harddisk0\DR0\Partition1 - ok
21:00:34.0876 0x1c98 [ C3176033020941E2EBB9159D1CDFFBA7 ] \Device\Harddisk0\DR0\Partition2
21:00:34.0892 0x1c98 \Device\Harddisk0\DR0\Partition2 - ok
21:00:34.0908 0x1c98 [ 8BAE10C7C382DC892756A9D0E473039A ] \Device\Harddisk0\DR0\Partition3
21:00:34.0908 0x1c98 \Device\Harddisk0\DR0\Partition3 - ok
21:00:34.0939 0x1c98 [ F5A529530EF5DB5350E971E33C81254D ] \Device\Harddisk0\DR0\Partition4
21:00:34.0939 0x1c98 \Device\Harddisk0\DR0\Partition4 - ok
21:00:34.0955 0x1c98 [ 5122B00C1E0E999E5CF0A458F0650CCD ] \Device\Harddisk0\DR0\Partition5
21:00:34.0970 0x1c98 \Device\Harddisk0\DR0\Partition5 - ok
21:00:35.0001 0x1c98 [ 03AD12C5EF9EE07B720AF1D09B4A77FE ] \Device\Harddisk0\DR0\Partition6
21:00:35.0048 0x1c98 \Device\Harddisk0\DR0\Partition6 - ok
21:00:35.0080 0x1c98 [ 9A20E57ED890E0C7CA48B383F2AD9784 ] \Device\Harddisk0\DR0\Partition7
21:00:35.0126 0x1c98 \Device\Harddisk0\DR0\Partition7 - ok
21:00:35.0126 0x1c98 ================ Scan generic autorun ======================
21:00:35.0298 0x1c98 [ FFBFE1175531CD582D89796835CBB598, 7DC1FEB90AFC08C829001849985C7B20CB782F05CD9C000C6C9D42D3FDB1DDF4 ] C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe
21:00:35.0330 0x1c98 cAudioFilterAgent - ok
21:00:35.0658 0x1c98 [ 4F8B94EC4D4FFA0712CCADF8145F28D1, 6CED9332100CA71FB17930AAC4ED1798E6F3A83CEBEE0A3412EFA01F6F1A6F22 ] C:\Program Files\CONEXANT\SAII\SACpl.exe
21:00:35.0705 0x1c98 SmartAudio - ok
21:00:35.0705 0x1c98 ETDCtrl - ok
21:00:37.0751 0x1c98 [ AC2ECBAA39F816944A608926973EFDB7, 9C32F89B255B2690843EA96A331665B27A28E4EF67B16AC6D254FE593146F7D5 ] C:\WINDOWS\RTFTrack.exe
21:00:38.0001 0x1c98 RtsFT - ok
21:00:38.0095 0x1c98 [ BAD24090378CD1D9D70DD21CF21D1BFB, A5FB5F8DCF33BB252304D6DA7CB62906E5A437A561A066A647C8D199EE3C57B8 ] C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe
21:00:38.0189 0x1c98 IAStorIcon - detected UnsignedFile.Multi.Generic ( 1 )
21:00:38.0564 0x1c98 Detect skipped due to KSN trusted
21:00:38.0564 0x1c98 IAStorIcon - ok
21:00:38.0673 0x1c98 [ 48EB2BD8D360E9C8D9A71968A477ADBE, 2E9D5D9790EC07279CDA6A213A90D52C764CD9338194C47DBA26C545D65853BA ] C:\WINDOWS\system32\igfxtray.exe
21:00:38.0720 0x1c98 IgfxTray - ok
21:00:41.0642 0x1c98 [ E0AD9F72153A7F55702C3170FDA7876C, 839A8D0B72C3A0530ACC447532CA4CACC19E3C91CEA6B9CBB9498D36DD2DFBE6 ] C:\Program Files (x86)\Lenovo\Energy Manager\Energy Manager.exe
21:00:42.0095 0x1c98 Energy Manager - ok
21:00:42.0158 0x1c98 [ F0627CE818DA58BAE771DCD4669FA343, 070CE17C9DAC01CC5AE465DFA3FDD8A44ABF97AC8101ED238C96668027B6F10B ] C:\Program Files (x86)\Lenovo\Energy Manager\Utility.exe
21:00:42.0158 0x1c98 Lenovo Utility - ok
21:00:42.0439 0x1c98 [ 233A10D4B3F6897899112E4EC60F1906, 1F7E768E57064938114DF2EFC5B219EB0D30A7D9E574924E9CED054462505AF0 ] C:\WINDOWS\WindowsMobile\wmdc.exe
21:00:42.0470 0x1c98 Windows Mobile Device Center - ok
21:00:43.0423 0x1c98 [ FE18DDEA98D90DBF850AFCA0158ABEC8, 8EC0099B560CC23DA6D26A71A202667D1A7C4BC37CE0F9F3458EA40440541D06 ] C:\Users\Administrator\Desktop\Everything\Everything.exe
21:00:43.0548 0x1c98 Everything - detected UnsignedFile.Multi.Generic ( 1 )
21:00:43.0705 0x1c98 Detect skipped due to KSN trusted
21:00:43.0705 0x1c98 Everything - ok
21:00:43.0830 0x1c98 [ 8F83160C43C61FC6775391B46B7C16BF, 648588126B2CD0B9F50F478BF4F7474137D1285061A3B22B56C1CB5B4FD3C3BF ] C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe
21:00:43.0861 0x1c98 UpdateP2GShortCut - ok
21:00:44.0080 0x1c98 [ 305C1D680482E937D65D2A43448629A1, EFCA1B8FB5F932276E1CE6679EB155CF643E2B3CCCE36AF07C68C2A82473C7F6 ] C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXRCV.exe
21:00:44.0111 0x1c98 FUFAXRCV - ok
21:00:44.0298 0x1c98 [ 92B992307F1BF5F9DE727ACDD5A4CD4A, B6F751A990A90C5346CE5C2B11EEB8A09F582835A63D3921E70E286E45C24475 ] C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXSTM.exe
21:00:44.0330 0x1c98 FUFAXSTM - ok
21:00:44.0486 0x1c98 [ 4ABA86D5B0D440F33BDBDBDAEA065C42, 434E035E4748D0E4CEB08E655FF9A1739FF7E0099CCCC42122A24736DE3DE7E3 ] C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe
21:00:44.0533 0x1c98 EEventManager - ok
21:00:44.0595 0x1c98 [ 7D440447C6FCDEC9BBB739A048AA90CD, FA39828FD3FE9A1B57E1022B04729E7711C984E131CBE44BF1FAE73EF430D762 ] C:\WINDOWS\tsnp2std.exe
21:00:44.0673 0x1c98 tsnp2std - detected UnsignedFile.Multi.Generic ( 1 )
21:00:44.0830 0x1c98 Detect skipped due to KSN trusted
21:00:44.0830 0x1c98 tsnp2std - ok
21:00:45.0080 0x1c98 [ D9F25B1C673DEEF18A45AD2080DC9A5E, 76C4E520099F0CF3556158B6C154B68E4F954D4CA6A1851FB08979207F482200 ] C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe
21:00:45.0095 0x1c98 StartCCC - ok
21:00:45.0330 0x1c98 [ DBD8934E3909B60DA81A91BF53B76901, 29B061C5E05097394B8B9D7C6681783DB02735CE8AAD06BCC03C08617D778039 ] C:\Program Files (x86)\Avira\Antivirus\avgnt.exe
21:00:45.0361 0x1c98 avgnt - ok
21:00:45.0470 0x1c98 [ 2AB57E205B61BCB095168A97B8D2AC4D, 18D9709CED7F02B694405E62ED5BA8EBE737FF59BB2D9EFBF0335C0F3BEE105B ] C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe
21:00:45.0502 0x1c98 Avira SystrayStartTrigger - ok
21:00:46.0111 0x1c98 OneDriveSetup - ok
21:00:46.0111 0x1c98 OneDriveSetup - ok
21:00:47.0595 0x1c98 [ 103C5E01E5705A4BD468CBC902AA8EEF, 7598411CE3BA9C79CF74E64A5691D92ADA8121735495C1AB3B56F9E6CA3B0FB1 ] C:\Program Files (x86)\Vidalia Relay Bundle\Vidalia\vidalia.exe
21:00:47.0986 0x1c98 Vidalia - detected UnsignedFile.Multi.Generic ( 1 )
21:00:48.0252 0x1c98 Vidalia ( UnsignedFile.Multi.Generic ) - warning
21:00:51.0111 0x1c98 [ 3F6B014280D8A98ACC323BB28CA5BCA7, 724FE1E949D57E982B50CC6FBBA8BCB524C42592A39ED60D37042CC2C2E73CAB ] C:\Program Files\CCleaner\CCleaner64.exe
21:00:51.0392 0x1c98 CCleaner Monitoring - ok
21:00:51.0783 0x1c98 [ 642102CCB9EF737E188D136B93AB9A1F, 9BF47F3B3DAD7938C804C951FC81AC5C1EA8BDD94AB29630D5080CE797F3CC0F ] C:\Users\Manja\AppData\Local\Microsoft\OneDrive\OneDrive.exe
21:00:51.0830 0x1c98 OneDrive - ok
21:00:52.0064 0x1c98 [ FD9A7F99A09DB266D0C1361B0ACCBD7E, 579160BDACDFE39AE5DDD7B5C2964453E89BA8D933F3FB16C6E3897EA3BDED29 ] C:\Users\Administrator\AppData\Local\Microsoft\OneDrive\OneDrive.exe
21:00:52.0189 0x1c98 OneDrive - ok
21:00:52.0189 0x1c98 Waiting for KSN requests completion. In queue: 3
21:00:52.0330 0x0650 Object required for P2P: [ 3F6B014280D8A98ACC323BB28CA5BCA7 ] C:\Program Files\CCleaner\CCleaner64.exe
21:00:52.0689 0x0650 Object send P2P result: true
21:00:53.0220 0x1c98 AV detected via SS2: Avira Antivirus, C:\Program Files (x86)\Avira\Antivirus\WindowsSecurityCenter.exe ( 15.0.25.170 ), 0x41000 ( enabled : updated )
21:00:53.0267 0x1c98 AV detected via SS2: Windows Defender, C:\Program Files\Windows Defender\MSASCui.exe ( 4.10.14393.187 ), 0x60100 ( disabled : updated )
21:00:53.0283 0x1c98 Win FW state via NFP2: enabled ( trusted )
21:00:53.0455 0x1c98 ============================================================
21:00:53.0455 0x1c98 Scan finished
21:00:53.0455 0x1c98 ============================================================
21:00:53.0470 0x045c Detected object count: 1
21:00:53.0470 0x045c Actual detected object count: 1
21:01:26.0991 0x045c Vidalia ( UnsignedFile.Multi.Generic ) - skipped by user
21:01:26.0991 0x045c Vidalia ( UnsignedFile.Multi.Generic ) - User select action: Skip
21:02:53.0290 0x27ac ============================================================
21:02:53.0290 0x27ac Scan started
21:02:53.0290 0x27ac Mode: Manual; SigCheck; TDLFS;
21:02:53.0290 0x27ac ============================================================
21:02:53.0290 0x27ac KSN ping started
21:02:53.0290 0x27ac KSN ping finished: false
21:02:57.0906 0x27ac ================ Scan system memory ========================
21:02:57.0906 0x27ac System memory - ok
21:02:57.0906 0x27ac ================ Scan services =============================
21:02:58.0328 0x27ac 1394ohci - ok
21:02:58.0343 0x27ac 3ware - ok
21:02:58.0375 0x27ac ACPI - ok
21:02:58.0390 0x27ac AcpiDev - ok
21:02:58.0406 0x27ac acpiex - ok
21:02:58.0422 0x27ac acpipagr - ok
21:02:58.0468 0x27ac AcpiPmi - ok
21:02:58.0484 0x27ac acpitime - ok
21:02:58.0531 0x27ac [ AF7A18603B0B82DFA5B420456FAF2201, 64AD831433778BB0B0B1615EEA7682960ED5815A091A9EFEE95A862EFBDE6D69 ] ACPIVPC C:\WINDOWS\System32\drivers\AcpiVpc.sys
21:02:58.0562 0x27ac ACPIVPC - ok
21:02:58.0640 0x27ac [ 671133C0AC2D8B40B7574F69059653E9, A36CC49A0C829A5C4D6CF273791071213F5FFB57DC7022D523CFB731374FF63C ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
21:02:58.0672 0x27ac AdobeARMservice - ok
21:02:58.0687 0x27ac ADP80XX - ok
21:02:58.0812 0x27ac [ 0D0E5281784C2C526BA43C2ECD374288, BE4B16E08A96A24BEB904A2216A538340FD91A11E0CAB43BF8788C35DAD2D2B5 ] Afc C:\WINDOWS\syswow64\drivers\Afc.sys
21:02:58.0828 0x27ac Afc - ok
21:02:58.0859 0x27ac AFD - ok
21:02:58.0875 0x27ac ahcache - ok
21:02:58.0906 0x27ac AJRouter - ok
21:02:58.0937 0x27ac ALG - ok
21:02:59.0031 0x27ac [ 0990E6809D6C56C6DA85FE0EF20280EA, CC18608EB12DFB055C3AFCA2BB44FEDEE451F3F8CFEB87141F8EAD53F6BF6DD5 ] AMD External Events Utility C:\WINDOWS\system32\atiesrxx.exe
21:02:59.0062 0x27ac AMD External Events Utility - ok
21:02:59.0078 0x27ac AmdK8 - ok
21:02:59.0078 0x27ac amdkmdag - ok
21:02:59.0218 0x27ac [ 29C00798F093C2F54628F7C54DA77001, 8C85D9936103E19C60C8DE4DE98EA7F722BD3676911D873007FF2D152A456ED7 ] amdkmdap C:\WINDOWS\system32\DRIVERS\atikmpag.sys
21:02:59.0250 0x27ac amdkmdap - ok
21:02:59.0297 0x27ac [ 8A375CB3B6D1A56A2AEEE72A5F1D0926, 03D6EA77B141675B719E66DA09D1DACC7137B19F9918C303DD6870B3F36ADEBB ] amdkmpfd C:\WINDOWS\system32\drivers\amdkmpfd.sys
21:02:59.0312 0x27ac amdkmpfd - ok
21:02:59.0328 0x27ac AmdPPM - ok
21:02:59.0359 0x27ac amdsata - ok
21:02:59.0390 0x27ac amdsbs - ok
21:02:59.0390 0x27ac amdxata - ok
21:02:59.0609 0x27ac [ E6CEE7C270AD1CAE17EA910C85211BAE, 1DEB7185CEDC5918C20353C13AA0398D739A318729700F057B13821FF0FF5C97 ] AntiVirMailService C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe
21:02:59.0640 0x27ac AntiVirMailService - ok
21:02:59.0734 0x27ac [ 9658B76971381D9053E48E896256D5EB, 48C763BAF349E663D0E41657779BF5D1106A7C3E7F8C898185DC5D1998C0CDAF ] AntiVirSchedulerService C:\Program Files (x86)\Avira\Antivirus\sched.exe
21:02:59.0765 0x27ac AntiVirSchedulerService - ok
21:02:59.0828 0x27ac [ 9658B76971381D9053E48E896256D5EB, 48C763BAF349E663D0E41657779BF5D1106A7C3E7F8C898185DC5D1998C0CDAF ] AntiVirService C:\Program Files (x86)\Avira\Antivirus\avguard.exe
21:02:59.0859 0x27ac AntiVirService - ok
21:03:00.0140 0x27ac [ B62E24EEC8C4B6E8A173CAD069B5033A, 719F7C51D615591E70D549552AC66343526902007480278C0E56AA7E1F406F96 ] AntiVirWebService C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe
21:03:00.0172 0x27ac AntiVirWebService - ok
21:03:00.0203 0x27ac AppID - ok
21:03:00.0219 0x27ac AppIDSvc - ok
21:03:00.0234 0x27ac Appinfo - ok
21:03:00.0265 0x27ac applockerfltr - ok
21:03:00.0297 0x27ac AppReadiness - ok
21:03:00.0328 0x27ac AppXSvc - ok
21:03:00.0375 0x27ac arcsas - ok
21:03:00.0375 0x27ac AsyncMac - ok
21:03:00.0437 0x27ac atapi - ok
21:03:00.0453 0x27ac athr - ok
21:03:00.0500 0x27ac AudioEndpointBuilder - ok
21:03:00.0515 0x27ac Audiosrv - ok
21:03:00.0547 0x27ac [ 11F3AAFB5D279AFBCBB0AD9FF76A24F8, 06C5FA1BD64EB54691629363DD0771394F81E4EB216E489D5169395736E80D99 ] avgntflt C:\WINDOWS\system32\DRIVERS\avgntflt.sys
21:03:00.0562 0x27ac avgntflt - ok
21:03:00.0625 0x27ac [ F8520E88246641E51108922944FB34A6, 326DCB8114439FB1F75E9DB6E5F7818654FAAC4CD957B80DEE17B850676A737F ] avipbb C:\WINDOWS\system32\DRIVERS\avipbb.sys
21:03:00.0656 0x27ac avipbb - ok
21:03:00.0828 0x27ac [ 586FCB1EEC849C06A8DDDDAB276AF113, E193FA64A86C27B2B7AA43E74A196BCBF79A9644F94C96E84E6CC76A405193B6 ] Avira.ServiceHost C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
21:03:00.0875 0x27ac Avira.ServiceHost - ok
21:03:00.0890 0x27ac [ 2CBA09A7983B1D39531B768BCED08C20, B40968DFE1A648CCB9260033E1EA57B5D496274A335B000354156B0DB740EDE0 ] avkmgr C:\WINDOWS\system32\DRIVERS\avkmgr.sys
21:03:00.0906 0x27ac avkmgr - ok
21:03:00.0953 0x27ac [ 1DC2F715792CF33428AD7993ACBD224D, 129FBD517E016914CD61C35894C0B9B2074E680F1EB21201597E5C13CAF4529F ] avmeject C:\WINDOWS\system32\drivers\avmeject.sys
21:03:00.0968 0x27ac avmeject - ok
21:03:01.0015 0x27ac [ 8D18C6406FF8DC39028177E1E5675182, 44985DEE74F235567FB849350256F342BCE26EF66439D761FA3F6EDA22882092 ] avnetflt C:\WINDOWS\system32\DRIVERS\avnetflt.sys
21:03:01.0031 0x27ac avnetflt - ok
21:03:01.0078 0x27ac [ D50D54178CA7BF63BD60ABEC8E7772CC, 19EFE0808C2660A22DD69158FEC30F8CB83167D832C3EBE12C99261C6FB79ADF ] avusbflt C:\WINDOWS\system32\Drivers\avusbflt.sys
21:03:01.0109 0x27ac avusbflt - ok
21:03:01.0125 0x27ac AxInstSV - ok
21:03:01.0172 0x27ac b06bdrv - ok
21:03:01.0203 0x27ac BasicDisplay - ok
21:03:01.0218 0x27ac BasicRender - ok
21:03:01.0328 0x27ac [ E68481BE45ADDF4E2A6790BB653610A4, 1F868D19C2CF206CAB36E990E5DC20782DB69FC51944CDFD494A09333E35F026 ] bcbtums C:\WINDOWS\system32\drivers\bcbtums.sys
21:03:01.0359 0x27ac bcbtums - ok
21:03:02.0547 0x27ac [ 85081187E02D743CDC8E2B8728281734, AB1BB7BB4A1C4446754D5A77D4DE25B042AEA95870092FE951C8C4CCDA8FCD15 ] BCM43XX C:\WINDOWS\system32\DRIVERS\bcmwl63a.sys
21:03:02.0734 0x27ac BCM43XX - ok
21:03:03.0015 0x27ac [ 02123BE5D4D5CA48E93AC914EC936DC4, 1F5EBE116590726D0F601D487F26C7FC550F62144A0F9A64022E3DC2C940F17E ] BcmBtRSupport C:\WINDOWS\system32\BtwRSupportService.exe
21:03:03.0093 0x27ac BcmBtRSupport - ok
21:03:03.0140 0x27ac bcmfn - ok
21:03:03.0140 0x27ac bcmfn2 - ok
21:03:03.0890 0x27ac [ 85081187E02D743CDC8E2B8728281734, AB1BB7BB4A1C4446754D5A77D4DE25B042AEA95870092FE951C8C4CCDA8FCD15 ] BCMWL63A C:\WINDOWS\system32\DRIVERS\bcmwl63a.sys
21:03:04.0094 0x27ac BCMWL63A - ok
21:03:04.0109 0x27ac BDESVC - ok
21:03:04.0172 0x27ac Beep - ok
21:03:04.0203 0x27ac BFE - ok
21:03:04.0234 0x27ac BITS - ok
21:03:04.0265 0x27ac bowser - ok
21:03:04.0281 0x27ac BrokerInfrastructure - ok
21:03:04.0312 0x27ac Browser - ok
21:03:04.0344 0x27ac BthA2DP - ok
21:03:04.0375 0x27ac BthAvrcpTg - ok
21:03:04.0375 0x27ac BthEnum - ok
21:03:04.0453 0x27ac BthHFAud - ok
21:03:04.0469 0x27ac BthHFEnum - ok
21:03:04.0484 0x27ac bthhfhid - ok
21:03:04.0500 0x27ac BthHFSrv - ok
21:03:04.0531 0x27ac BthLEEnum - ok
21:03:04.0562 0x27ac BTHMODEM - ok
21:03:04.0578 0x27ac BthPan - ok
21:03:04.0578 0x27ac BTHPORT - ok
21:03:04.0594 0x27ac bthserv - ok
21:03:04.0609 0x27ac BTHUSB - ok
21:03:04.0672 0x27ac [ 93995198BCBA40C99994B4CF3ABCE964, 38A9422D9202FC1BA4104186BBA60CE55FD7A7239DB2CDE12B8D727F00F977AF ] btwampfl C:\WINDOWS\system32\DRIVERS\btwampfl.sys
21:03:04.0703 0x27ac btwampfl - ok
21:03:04.0750 0x27ac buttonconverter - ok
21:03:04.0750 0x27ac CapImg - ok
21:03:04.0765 0x27ac cdfs - ok
21:03:04.0797 0x27ac CDPSvc - ok
21:03:04.0797 0x27ac CDPUserSvc - ok
21:03:04.0922 0x27ac cdrom - ok
21:03:04.0969 0x27ac CertPropSvc - ok
21:03:05.0078 0x27ac [ 59B4AB79011957DD3B83F0C2E63741BD, 5DE68785D701DBA0F98452B7D5CC407BEECD51685F39516157733CED2EF2FA19 ] chip1click C:\Program Files (x86)\Chip Digital GmbH\chip1click\chip 1-click installer.exe
21:03:05.0094 0x27ac chip1click - detected UnsignedFile.Multi.Generic ( 1 )
21:03:05.0094 0x27ac Detect skipped due to KSN trusted
21:03:05.0094 0x27ac chip1click - ok
21:03:05.0109 0x27ac cht4iscsi - ok
21:03:05.0109 0x27ac cht4vbd - ok
21:03:05.0140 0x27ac circlass - ok
21:03:05.0172 0x27ac CLFS - ok
21:03:05.0578 0x27ac [ 209D07A9F54C2211C4C1E387EC971C97, 02112545E31E617602ED527E9191BD819413FB3732EAD16699E0C5795F8C58B2 ] ClickToRunSvc C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe
21:03:05.0640 0x27ac ClickToRunSvc - ok
21:03:05.0656 0x27ac ClipSVC - ok
21:03:05.0687 0x27ac clreg - ok
21:03:05.0719 0x27ac CmBatt - ok
21:03:05.0750 0x27ac CNG - ok
21:03:05.0781 0x27ac cnghwassist - ok
21:03:05.0937 0x27ac [ A0E8F4630E62D7616F0186B07ED3B66B, 9EF5FCA42FF7ECA59EDE736908D37CF53421EED830FAA8EBBD461CE7939EA09C ] CnxtHdAudService C:\WINDOWS\system32\drivers\CHDRT64.sys
21:03:05.0984 0x27ac CnxtHdAudService - ok
21:03:06.0062 0x27ac CompositeBus - ok
21:03:06.0078 0x27ac COMSysApp - ok
21:03:06.0094 0x27ac condrv - ok
21:03:06.0125 0x27ac CoreMessagingRegistrar - ok
21:03:06.0328 0x27ac [ 2EF1127FFCB66C5D41A98A734B021FE1, 4587DF6F67BAD40BDC07B9670CF15EBC86337A2B8AFAE73F89827076886F8B1A ] cphs C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
21:03:06.0359 0x27ac cphs - ok
21:03:06.0406 0x27ac CryptSvc - ok
21:03:06.0469 0x27ac [ 4E6337DE03F36BCE168110E6B59F6A5B, 2DB940EBBA971B3801E273B80D8CBD975040A8B87908E7E0733E4DBB0EFC2611 ] CxAudMsg C:\WINDOWS\system32\CxAudMsg64.exe
21:03:06.0500 0x27ac CxAudMsg - ok
21:03:06.0515 0x27ac dam - ok
21:03:06.0531 0x27ac DcomLaunch - ok
21:03:06.0578 0x27ac DcpSvc - ok
21:03:06.0625 0x27ac defragsvc - ok
21:03:06.0656 0x27ac DeviceAssociationService - ok
21:03:06.0672 0x27ac DeviceInstall - ok
21:03:06.0734 0x27ac DevQueryBroker - ok
21:03:06.0734 0x27ac Dfsc - ok
21:03:06.0797 0x27ac [ 9593475FBC857A05D93BFF4FA7323C2B, D2A958AF5EFDC6136A6ABB7F8D5FE1F84C967E79BEA96C5BE3661A0145DEB907 ] dg_ssudbus C:\WINDOWS\system32\DRIVERS\ssudbus.sys
21:03:06.0828 0x27ac dg_ssudbus - ok
21:03:06.0875 0x27ac Dhcp - ok
21:03:06.0984 0x27ac diagnosticshub.standardcollector.service - ok
21:03:07.0015 0x27ac DiagTrack - ok
21:03:07.0062 0x27ac disk - ok
21:03:07.0094 0x27ac DmEnrollmentSvc - ok
21:03:07.0140 0x27ac dmvsc - ok
21:03:07.0172 0x27ac dmwappushservice - ok
21:03:07.0219 0x27ac Dnscache - ok
21:03:07.0250 0x27ac dot3svc - ok
21:03:07.0265 0x27ac DPS - ok
21:03:07.0312 0x27ac drmkaud - ok
21:03:07.0344 0x27ac DsmSvc - ok
21:03:07.0375 0x27ac DsSvc - ok
21:03:07.0390 0x27ac DXGKrnl - ok
21:03:07.0406 0x27ac EapHost - ok
21:03:07.0437 0x27ac ebdrv - ok
21:03:07.0469 0x27ac EFS - ok
21:03:07.0500 0x27ac EhStorClass - ok
21:03:07.0515 0x27ac EhStorTcgDrv - ok
21:03:07.0562 0x27ac embeddedmode - ok
21:03:07.0578 0x27ac EntAppSvc - ok
21:03:07.0640 0x27ac [ 20ECD0A490A121CB34F553FAD1DBBD39, 17C9DA33E78FBC7582B0AA53C611929B80FBBE1343B84A179D515B51C964D218 ] EpsonScanSvc C:\WINDOWS\system32\EscSvc64.exe
21:03:07.0672 0x27ac EpsonScanSvc - ok
21:03:07.0765 0x27ac [ A7E8186E04F38E836C19AC147F8B2ED0, 329639595F02060C215A6334FCE1651FB9B9B5679BA9052A487B57265608D162 ] EPSON_PM_RPCV4_05 C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_WT50RP.EXE
21:03:07.0797 0x27ac EPSON_PM_RPCV4_05 - ok
21:03:07.0797 0x27ac ErrDev - ok
21:03:08.0031 0x27ac [ 8842ED1E87D7662F249B5B63501E693B, A6D71351C2F32295926664875369C0BF93C59541B023884BDAC684E1EA94487A ] ESRV_SVC_QUEENCREEK C:\Program Files\Intel\SUR\QUEENCREEK\esrv_svc.exe
21:03:08.0062 0x27ac ESRV_SVC_QUEENCREEK - ok
21:03:08.0109 0x27ac [ 6BD85B39B7B23F03B24CF641ED29147B, 850F21750BB39E5239B1584E1117844CAAAF6A5C58E79366552309F917675CE5 ] ETD C:\WINDOWS\system32\DRIVERS\ETD.sys
21:03:08.0125 0x27ac ETD - ok
21:03:08.0234 0x27ac [ 8916EACF1256E1C5A3AF81FD39C747E7, FF28FB95E9F9287C1005CF0D9EB84F7CA3D137689862860C9848398504E1EFFF ] ETDService C:\Program Files\Elantech\ETDService.exe
21:03:08.0265 0x27ac ETDService - ok
21:03:08.0437 0x27ac EventSystem - ok
21:03:08.0469 0x27ac exfat - ok
21:03:08.0484 0x27ac fastfat - ok
21:03:08.0500 0x27ac Fax - ok
21:03:08.0531 0x27ac fdc - ok
21:03:08.0562 0x27ac fdPHost - ok
21:03:08.0562 0x27ac FDResPub - ok
21:03:08.0640 0x27ac fhsvc - ok
21:03:08.0687 0x27ac FileCrypt - ok
21:03:08.0703 0x27ac FileInfo - ok
21:03:08.0703 0x27ac Filetrace - ok
21:03:08.0703 0x27ac flpydisk - ok
21:03:08.0719 0x27ac FltMgr - ok
21:03:08.0781 0x27ac FontCache - ok
21:03:08.0875 0x27ac FontCache3.0.0.0 - ok
21:03:08.0906 0x27ac FrameServer - ok
21:03:08.0906 0x27ac FsDepends - ok
21:03:08.0922 0x27ac Fs_Rec - ok
21:03:08.0969 0x27ac fvevol - ok
21:03:09.0094 0x27ac [ 0D2843C3C676B852D0B01CEA1E1DAE6C, 2F2751E09725D52008865F08A08F9989BCC4BA07FBC11B3BEF4332DC463CFC63 ] fwlanusb5_nv2 C:\WINDOWS\system32\DRIVERS\fwlanusb5_nv2.sys
21:03:09.0125 0x27ac fwlanusb5_nv2 - ok
21:03:09.0187 0x27ac gencounter - ok
21:03:09.0203 0x27ac genericusbfn - ok
21:03:09.0250 0x27ac GPIOClx0101 - ok
21:03:09.0265 0x27ac gpsvc - ok
21:03:09.0312 0x27ac GpuEnergyDrv - ok
21:03:09.0344 0x27ac HDAudBus - ok
21:03:09.0359 0x27ac HidBatt - ok
21:03:09.0375 0x27ac HidBth - ok
21:03:09.0375 0x27ac hidi2c - ok
21:03:09.0390 0x27ac hidinterrupt - ok
21:03:09.0406 0x27ac HidIr - ok
21:03:09.0422 0x27ac hidserv - ok
21:03:09.0453 0x27ac HidUsb - ok
21:03:09.0469 0x27ac HomeGroupListener - ok
21:03:09.0515 0x27ac HomeGroupProvider - ok
21:03:09.0547 0x27ac HpSAMD - ok
21:03:09.0578 0x27ac HTTP - ok
21:03:09.0625 0x27ac HvHost - ok
21:03:09.0687 0x27ac hvservice - ok
21:03:09.0703 0x27ac hwpolicy - ok
21:03:09.0734 0x27ac hyperkbd - ok
21:03:09.0765 0x27ac i8042prt - ok
21:03:09.0812 0x27ac iagpio - ok
21:03:09.0828 0x27ac iai2c - ok
21:03:09.0844 0x27ac iaLPSS2i_GPIO2 - ok
21:03:09.0844 0x27ac iaLPSS2i_I2C - ok
21:03:09.0890 0x27ac iaLPSSi_GPIO - ok
21:03:09.0906 0x27ac iaLPSSi_I2C - ok
21:03:10.0015 0x27ac [ 71341219FBB4BAB7F2462C4267DAB594, 0C6B684781D27F423D20186A40D7513DD6ABC38AD286D013791B37CBF5477A55 ] iaStorA C:\WINDOWS\system32\drivers\iaStorA.sys
21:03:10.0062 0x27ac iaStorA - ok
21:03:10.0109 0x27ac iaStorAV - ok
21:03:10.0187 0x27ac [ B64E1D5BABD095C13A382838F9DCC77F, D8FF4E1BBA7EF5EE136CC5892C72E0774D0AAE40CD9EB3368A698DA6C078BBAA ] IAStorDataMgrSvc C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
21:03:10.0203 0x27ac IAStorDataMgrSvc - ok
21:03:10.0234 0x27ac iaStorV - ok
21:03:10.0250 0x27ac ibbus - ok
21:03:10.0312 0x27ac icssvc - ok
21:03:11.0242 0x27ac [ 197FC03D62EEBCBCB8866B7EC0E1A6F0, 4197CBDAED113D13256C20FD2058E72C60EB2C28AE60EF6C3B3A0969CD7B2764 ] igfx C:\WINDOWS\system32\DRIVERS\igdkmd64.sys
21:03:11.0367 0x27ac igfx - ok
21:03:11.0445 0x27ac [ 34CB407D6FCAB16C8C1A1C97C72D15AC, 4EBC135F8ECB9756F62C0918CB811420FAC36AAE78667D318B9F4BF01862ECBD ] igfxCUIService2.0.0.0 C:\WINDOWS\system32\igfxCUIService.exe
21:03:11.0477 0x27ac igfxCUIService2.0.0.0 - ok
21:03:11.0492 0x27ac IKEEXT - ok
21:03:11.0524 0x27ac IndirectKmd - ok
21:03:11.0586 0x27ac [ DB65573521AB51941F4FA799D0968136, 418F5E3FE725B7B114F3DAEBDCEBCE7F4AD8ECAAFF572C02BA9ACCE86D55BFD8 ] intaud_WaveExtensible C:\WINDOWS\system32\drivers\intelaud.sys
21:03:11.0602 0x27ac intaud_WaveExtensible - ok
21:03:11.0711 0x27ac [ E300D1E37B737ED14F7A08CD5604E5D9, 5C1135081E29D7F4A97D5CAA2C8FBE1DD04EC7A3D8E648E69F2AA9EBDD88EBBB ] IntcDAud C:\WINDOWS\system32\DRIVERS\IntcDAud.sys
21:03:11.0742 0x27ac IntcDAud - ok
21:03:11.0914 0x27ac [ 0DB1E3F6189C628675F855C0EB510419, 989F539E82105019D2D81255369B96DC65826CD2A421DA09809155B26F69C555 ] Intel(R) Capability Licensing Service Interface C:\Program Files\Intel\iCLS Client\HeciServer.exe
21:03:11.0945 0x27ac Intel(R) Capability Licensing Service Interface - detected UnsignedFile.Multi.Generic ( 1 )
21:03:11.0945 0x27ac Detect skipped due to KSN trusted
21:03:11.0945 0x27ac Intel(R) Capability Licensing Service Interface - ok
21:03:12.0218 0x27ac [ 492AAF2FF66F437F0E796574B116EFC3, 6BF21C61ED05705DD58203952A750D1AB4D4B62F3A2B640BBBD9B85D1ECC3E5C ] Intel(R) Capability Licensing Service TCP IP Interface C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
21:03:12.0249 0x27ac Intel(R) Capability Licensing Service TCP IP Interface - ok
21:03:12.0296 0x27ac intelide - ok
21:03:12.0327 0x27ac intelpep - ok
21:03:12.0343 0x27ac intelppm - ok
21:03:12.0374 0x27ac iorate - ok
21:03:12.0390 0x27ac IpFilterDriver - ok
21:03:12.0436 0x27ac iphlpsvc - ok
21:03:12.0468 0x27ac IPMIDRV - ok
21:03:12.0468 0x27ac IPNAT - ok
21:03:12.0499 0x27ac irda - ok
21:03:12.0515 0x27ac IRENUM - ok
21:03:12.0536 0x27ac irmon - ok
21:03:12.0552 0x27ac isapnp - ok
21:03:12.0598 0x27ac iScsiPrt - ok
21:03:12.0802 0x27ac [ 52069AEB42D3D0F97CBCA1085EBF55E6, ADB2EFFF563B3FE113FCD156FD1E469BC24FC1D68AFEDCA21306F76592C9FF88 ] jhi_service C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
21:03:12.0817 0x27ac jhi_service - ok
21:03:12.0911 0x27ac kbdclass - ok
21:03:12.0958 0x27ac kbdhid - ok
21:03:12.0973 0x27ac kdnic - ok
21:03:12.0989 0x27ac KeyIso - ok
21:03:12.0989 0x27ac KSecDD - ok
21:03:13.0020 0x27ac KSecPkg - ok
21:03:13.0036 0x27ac ksthunk - ok
21:03:13.0067 0x27ac KtmRm - ok
21:03:13.0098 0x27ac [ 4E5EA006CFFB96E0BAFC767D659AAB9A, A24A334955FB98D0903971454FADAC639D535BD32BB48964BD95019C7F6C454E ] L1C C:\WINDOWS\System32\drivers\L1C63x64.sys
21:03:13.0130 0x27ac L1C - ok
21:03:13.0161 0x27ac LanmanServer - ok
21:03:13.0161 0x27ac LanmanWorkstation - ok
21:03:13.0196 0x27ac lfsvc - ok
21:03:13.0226 0x27ac LicenseManager - ok
21:03:13.0226 0x27ac lltdio - ok
21:03:13.0242 0x27ac lltdsvc - ok
21:03:13.0273 0x27ac lmhosts - ok
21:03:13.0476 0x27ac [ 4799AAD825F79C187FBA948D299386E7, 4E3618CF59B81825CF3E2AEC070CC57E3869BFF7543BB151530F02A3947A22F8 ] LSC.Services.SystemService C:\Program Files\Lenovo\Lenovo Solution Center\App\LSC.Services.SystemService.exe
21:03:13.0492 0x27ac LSC.Services.SystemService - ok
21:03:13.0570 0x27ac LSI_SAS - ok
21:03:13.0570 0x27ac LSI_SAS2i - ok
21:03:13.0617 0x27ac LSI_SAS3i - ok
21:03:13.0648 0x27ac LSI_SSS - ok
21:03:13.0664 0x27ac LSM - ok
21:03:13.0695 0x27ac luafv - ok
21:03:13.0711 0x27ac MapsBroker - ok
21:03:13.0742 0x27ac megasas - ok
21:03:13.0780 0x27ac megasas2i - ok
21:03:13.0811 0x27ac megasr - ok
21:03:13.0858 0x27ac [ 18B9AD128EC84E8D16A83F70CF36594F, 199DF15D68E2A079794E5DD325162C1A68A65EF26EEF5A6C6154281DDE57279A ] MEIx64 C:\WINDOWS\system32\DRIVERS\TeeDriverx64.sys
21:03:13.0889 0x27ac MEIx64 - ok
21:03:13.0920 0x27ac MessagingService - ok
21:03:13.0967 0x27ac mlx4_bus - ok
21:03:13.0967 0x27ac MMCSS - ok
21:03:13.0998 0x27ac Modem - ok
21:03:14.0030 0x27ac monitor - ok
21:03:14.0030 0x27ac mouclass - ok
21:03:14.0061 0x27ac mouhid - ok
21:03:14.0076 0x27ac mountmgr - ok
21:03:14.0202 0x27ac [ 2419641B6E64F4F76D369110969DA77C, 6E3FBCA61089BFFA0B214CD8AFF35E8F85FD3240BBA75B05FA4E98B2453AEF55 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
21:03:14.0233 0x27ac MozillaMaintenance - ok
21:03:14.0280 0x27ac mpsdrv - ok
21:03:14.0295 0x27ac MpsSvc - ok
21:03:14.0342 0x27ac MRxDAV - ok
21:03:14.0358 0x27ac mrxsmb - ok
21:03:14.0389 0x27ac mrxsmb10 - ok
21:03:14.0405 0x27ac mrxsmb20 - ok
21:03:14.0436 0x27ac MsBridge - ok
21:03:14.0452 0x27ac MSDTC - ok
21:03:14.0467 0x27ac Msfs - ok
21:03:14.0498 0x27ac msgpiowin32 - ok
21:03:14.0498 0x27ac mshidkmdf - ok
21:03:14.0514 0x27ac mshidumdf - ok
21:03:14.0530 0x27ac msisadrv - ok
21:03:14.0561 0x27ac MSiSCSI - ok
21:03:14.0561 0x27ac msiserver - ok
21:03:14.0592 0x27ac MSKSSRV - ok
21:03:14.0608 0x27ac MsLldp - ok
21:03:14.0623 0x27ac MSPCLOCK - ok
21:03:14.0639 0x27ac MSPQM - ok
21:03:14.0655 0x27ac MsRPC - ok
21:03:14.0655 0x27ac mssmbios - ok
21:03:14.0670 0x27ac MSTEE - ok
21:03:14.0670 0x27ac MTConfig - ok
21:03:14.0670 0x27ac Mup - ok
21:03:14.0670 0x27ac mvumis - ok
21:03:14.0686 0x27ac NativeWifiP - ok
21:03:14.0717 0x27ac NcaSvc - ok
21:03:14.0717 0x27ac NcbService - ok
21:03:14.0717 0x27ac NcdAutoSetup - ok
21:03:14.0733 0x27ac ndfltr - ok
21:03:14.0733 0x27ac NDIS - ok
21:03:14.0733 0x27ac NdisCap - ok
21:03:14.0998 0x27ac NdisImPlatform - ok
21:03:15.0061 0x27ac NdisTapi - ok
21:03:15.0061 0x27ac Ndisuio - ok
21:03:15.0092 0x27ac NdisVirtualBus - ok
21:03:15.0123 0x27ac NdisWan - ok
21:03:15.0123 0x27ac ndiswanlegacy - ok
21:03:15.0139 0x27ac ndproxy - ok
21:03:15.0155 0x27ac Ndu - ok
21:03:15.0155 0x27ac NetAdapterCx - ok
21:03:15.0155 0x27ac NetBIOS - ok
21:03:15.0155 0x27ac NetBT - ok
21:03:15.0170 0x27ac Netlogon - ok
21:03:15.0186 0x27ac Netman - ok
21:03:15.0233 0x27ac netprofm - ok
21:03:15.0295 0x27ac NetSetupSvc - ok
21:03:15.0545 0x27ac NetTcpPortSharing - ok
21:03:15.0577 0x27ac NgcCtnrSvc - ok
21:03:15.0608 0x27ac NgcSvc - ok
21:03:15.0702 0x27ac [ 9B214FF571749C9055EEDFCE52A81F90, F1D0BD4DF34B6F5532B1756E50C6317D63DD71AB577D1F8CBA74A7A225456EB0 ] NitroDriverReadSpool8 C:\Program Files\Common Files\Nitro\Pro\8.0\NitroPDFDriverService8x64.exe
21:03:15.0717 0x27ac NitroDriverReadSpool8 - ok
21:03:15.0733 0x27ac NlaSvc - ok
21:03:16.0655 0x27ac [ BF15D119A19F8FD8B71F1E22C1BDA579, D24EFD135DB598DF2858AE8CDBEF92B439AE47F2880DD6E45D52ABD1E4FA5394 ] nlsX86cc C:\WINDOWS\SysWOW64\NLSSRV32.EXE
21:03:16.0670 0x27ac nlsX86cc - ok
21:03:16.0702 0x27ac Npfs - ok
21:03:16.0733 0x27ac npsvctrig - ok
21:03:16.0764 0x27ac nsi - ok
21:03:16.0764 0x27ac nsiproxy - ok
21:03:16.0811 0x27ac NTFS - ok
21:03:16.0811 0x27ac Null - ok
21:03:16.0858 0x27ac nvraid - ok
21:03:16.0858 0x27ac nvstor - ok
21:03:16.0920 0x27ac OneSyncSvc - ok
21:03:17.0092 0x27ac [ 30B5F9FB0C35AE6B4A0851D24CE2EE8B, 0340E77E8EC2ADC21B8DDD9C9CC95B3F4BCAFD54618A333C72D7D9587D593B83 ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
21:03:17.0123 0x27ac ose - ok
21:03:17.0139 0x27ac p2pimsvc - ok
21:03:17.0170 0x27ac p2psvc - ok
21:03:17.0186 0x27ac Parport - ok
21:03:17.0202 0x27ac partmgr - ok
21:03:17.0233 0x27ac PcaSvc - ok
21:03:17.0248 0x27ac pci - ok
21:03:17.0311 0x27ac pciide - ok
21:03:17.0328 0x27ac pcmcia - ok
21:03:17.0328 0x27ac pcw - ok
21:03:17.0360 0x27ac pdc - ok
21:03:17.0375 0x27ac PEAUTH - ok
21:03:17.0391 0x27ac percsas2i - ok
21:03:17.0407 0x27ac percsas3i - ok
21:03:17.0422 0x27ac PerfHost - ok
21:03:17.0453 0x27ac PhoneSvc - ok
21:03:17.0469 0x27ac PimIndexMaintenanceSvc - ok
21:03:17.0519 0x27ac pla - ok
21:03:17.0535 0x27ac PlugPlay - ok
21:03:17.0535 0x27ac PNRPAutoReg - ok
21:03:17.0550 0x27ac PNRPsvc - ok
21:03:17.0566 0x27ac PolicyAgent - ok
21:03:17.0581 0x27ac Power - ok
21:03:17.0597 0x27ac PptpMiniport - ok
21:03:18.0331 0x27ac [ 77ABF70C71922873BC160933571B3F83, 7FCFBB4B42E7A92FCF11388CD5B600EA79A7C134F13A8A88CF8DCD3DB96C3F5A ] PrintNotify C:\WINDOWS\system32\spool\drivers\x64\3\PrintConfig.dll
21:03:18.0425 0x27ac PrintNotify - ok
21:03:18.0472 0x27ac Processor - ok
21:03:18.0503 0x27ac ProfSvc - ok
21:03:18.0519 0x27ac Psched - ok
21:03:18.0534 0x27ac QWAVE - ok
21:03:18.0566 0x27ac QWAVEdrv - ok
21:03:18.0597 0x27ac RasAcd - ok
21:03:18.0628 0x27ac RasAgileVpn - ok
21:03:18.0660 0x27ac RasAuto - ok
21:03:18.0675 0x27ac Rasl2tp - ok
21:03:18.0691 0x27ac RasMan - ok
21:03:18.0706 0x27ac RasPppoe - ok
21:03:18.0722 0x27ac RasSstp - ok
21:03:18.0722 0x27ac rdbss - ok
21:03:18.0769 0x27ac rdpbus - ok
21:03:18.0769 0x27ac RDPDR - ok
21:03:18.0800 0x27ac RdpVideoMiniport - ok
21:03:18.0800 0x27ac rdyboost - ok
21:03:18.0816 0x27ac ReFSv1 - ok
21:03:18.0863 0x27ac RemoteAccess - ok
21:03:18.0878 0x27ac RemoteRegistry - ok
21:03:18.0910 0x27ac RetailDemo - ok
21:03:18.0941 0x27ac RFCOMM - ok
21:03:19.0050 0x27ac [ FBA61BB4C484A01A655AFB18FF86C417, D53B2110CB09D0A909C4E330C468351BFE076BB056CCDDCB8ADA2FB91E96352E ] RichVideo64 C:\Program Files\CyberLink\Shared files\RichVideo64.exe
21:03:19.0081 0x27ac RichVideo64 - ok
21:03:19.0206 0x27ac RmSvc - ok
21:03:19.0222 0x27ac RpcEptMapper - ok
21:03:19.0253 0x27ac RpcLocator - ok
21:03:19.0253 0x27ac RpcSs - ok
21:03:19.0269 0x27ac rspndr - ok
21:03:19.0391 0x27ac [ 05E8543E0D8C07535944FC0CB15E0DA0, 8E076E7582C95E9251CB03D2F1F7FBA1E31ACAE21E16224C9ACDCC1489165A86 ] RTSUER C:\WINDOWS\system32\Drivers\RtsUer.sys
21:03:19.0422 0x27ac RTSUER - ok
21:03:19.0672 0x27ac [ FF8B926ABA5BDA6562D7106E8A92BE7B, 887007E4D3F90CF6228B21D75E5B89818C18A7F2E2DB66C85039E6ECB5A16A15 ] rtsuvc C:\WINDOWS\system32\DRIVERS\rtsuvc.sys
21:03:19.0719 0x27ac rtsuvc - ok
21:03:19.0766 0x27ac s3cap - ok
21:03:19.0797 0x27ac SamSs - ok
21:03:19.0813 0x27ac SAService - ok
21:03:19.0844 0x27ac sbp2port - ok
21:03:19.0906 0x27ac SCardSvr - ok
21:03:19.0969 0x27ac ScDeviceEnum - ok
21:03:20.0016 0x27ac scfilter - ok
21:03:20.0047 0x27ac Schedule - ok
21:03:20.0063 0x27ac scmbus - ok
21:03:20.0078 0x27ac scmdisk0101 - ok
21:03:20.0141 0x27ac SCPolicySvc - ok
21:03:20.0170 0x27ac sdbus - ok
21:03:20.0178 0x27ac SDRSVC - ok
21:03:20.0194 0x27ac sdstor - ok
21:03:20.0209 0x27ac seclogon - ok
21:03:20.0269 0x27ac [ 07F83829E7429E60298440CD1E601A6A, 9F1229CD8DD9092C27A01F5D56E3C0D59C2BB9F0139ABF042E56F343637FDA33 ] semav6msr64 C:\WINDOWS\system32\drivers\semav6msr64.sys
21:03:20.0285 0x27ac semav6msr64 - ok
21:03:20.0316 0x27ac SENS - ok
21:03:20.0347 0x27ac SensorDataService - ok
21:03:20.0378 0x27ac SensorService - ok
21:03:20.0410 0x27ac SensrSvc - ok
21:03:20.0425 0x27ac SerCx - ok
21:03:20.0425 0x27ac SerCx2 - ok
21:03:20.0441 0x27ac Serenum - ok
21:03:20.0456 0x27ac Serial - ok
21:03:20.0472 0x27ac sermouse - ok
21:03:20.0503 0x27ac SessionEnv - ok
21:03:20.0503 0x27ac sfloppy - ok
21:03:20.0550 0x27ac SharedAccess - ok
21:03:20.0613 0x27ac ShellHWDetection - ok
21:03:20.0628 0x27ac shpamsvc - ok
21:03:20.0644 0x27ac SiSRaid2 - ok
21:03:20.0660 0x27ac SiSRaid4 - ok
21:03:20.0816 0x27ac [ F6EF225A23D336CA30001E5007644C24, B0A4B1256C1074F1B4F73E3BBA16FD4683D6EEA583DEEF8E11EFD29BA7541F2A ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
21:03:20.0847 0x27ac SkypeUpdate - ok
21:03:20.0863 0x27ac smphost - ok
21:03:20.0894 0x27ac [ 6CFE5AB2A11DC8FD80B4CE74364C39BC, E271867F4944CFA1E3ED25061C190D00B808198E20153E56D22D63871019F315 ] smsbda C:\WINDOWS\system32\drivers\smsbda.sys
21:03:20.0910 0x27ac smsbda - ok
21:03:20.0957 0x27ac SmsRouter - ok
21:03:20.0988 0x27ac SNMPTRAP - ok
21:03:21.0113 0x27ac [ 3A4F2C0BB87A0895ABEBA341AA1E341B, 4DADEEF3C5D181502D6F4A00FBBF3B001FA626E49569FB330D7AE2955CC7DE08 ] Sony PC Companion C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe
21:03:21.0144 0x27ac Sony PC Companion - detected UnsignedFile.Multi.Generic ( 1 )
21:03:21.0144 0x27ac Detect skipped due to KSN trusted
21:03:21.0144 0x27ac Sony PC Companion - ok
21:03:21.0197 0x27ac spaceport - ok
21:03:21.0213 0x27ac SpbCx - ok
21:03:21.0229 0x27ac Spooler - ok
21:03:21.0260 0x27ac sppsvc - ok
21:03:21.0275 0x27ac srv - ok
21:03:21.0291 0x27ac srv2 - ok
21:03:21.0307 0x27ac srvnet - ok
21:03:21.0322 0x27ac SSDPSRV - ok
21:03:21.0338 0x27ac SstpSvc - ok
21:03:21.0416 0x27ac [ 592FF34A2FD6C6351B8A3AA76B2C0A9E, 152B7472DE531AC45492F562DD470B2CE33F1EEF13BC78F26046AE5ABF54E32F ] ssudmdm C:\WINDOWS\system32\DRIVERS\ssudmdm.sys
21:03:21.0447 0x27ac ssudmdm - ok
21:03:21.0479 0x27ac StateRepository - ok
21:03:21.0510 0x27ac stexstor - ok
21:03:21.0557 0x27ac stisvc - ok
21:03:21.0572 0x27ac storahci - ok
21:03:21.0619 0x27ac storflt - ok
21:03:21.0650 0x27ac stornvme - ok
21:03:21.0682 0x27ac storqosflt - ok
21:03:21.0697 0x27ac StorSvc - ok
21:03:21.0713 0x27ac storufs - ok
21:03:21.0728 0x27ac storvsc - ok
21:03:21.0838 0x27ac [ 26B2BB5733F69B0A8306BAC37551F90A, 60F1A0C23727144B53F1C64348907AAD611F991C0A8C9F93AC8194210634420B ] SUService C:\Program Files (x86)\Lenovo\System Update\SUService.exe
21:03:21.0869 0x27ac SUService - ok
21:03:21.0885 0x27ac svsvc - ok
21:03:21.0900 0x27ac swenum - ok
21:03:21.0900 0x27ac swprv - ok
21:03:21.0947 0x27ac Synth3dVsc - ok
21:03:21.0979 0x27ac SysMain - ok
21:03:22.0025 0x27ac SystemEventsBroker - ok
21:03:22.0088 0x27ac [ 48D2B8AA8C2F1C3360EC33554EC4E6D2, 0F66A9CBED9E70DA3CED6E009795000D41259AD345E3BD3C2EA2F2969588BB04 ] SystemUsageReportSvc_QUEENCREEK C:\Program Files\Intel Driver Update Utility\SUR\SurSvc.exe
21:03:22.0103 0x27ac SystemUsageReportSvc_QUEENCREEK - ok
21:03:22.0119 0x27ac TabletInputService - ok
21:03:22.0135 0x27ac TapiSrv - ok
21:03:22.0160 0x27ac Tcpip - ok
21:03:22.0160 0x27ac Tcpip6 - ok
21:03:22.0188 0x27ac tcpipreg - ok
21:03:22.0219 0x27ac tdx - ok
21:03:22.0235 0x27ac terminpt - ok
21:03:22.0266 0x27ac TermService - ok
21:03:22.0313 0x27ac Themes - ok
21:03:22.0360 0x27ac TieringEngineService - ok
21:03:22.0360 0x27ac tiledatamodelsvc - ok
21:03:22.0391 0x27ac TimeBrokerSvc - ok
21:03:22.0422 0x27ac TPM - ok
21:03:22.0438 0x27ac TrkWks - ok
21:03:22.0501 0x27ac TrustedInstaller - ok
21:03:22.0516 0x27ac tsusbflt - ok
21:03:22.0532 0x27ac TsUsbGD - ok
21:03:22.0547 0x27ac tunnel - ok
21:03:22.0579 0x27ac tzautoupdate - ok
21:03:22.0610 0x27ac UASPStor - ok
21:03:22.0641 0x27ac UcmCx0101 - ok
21:03:22.0641 0x27ac UcmTcpciCx0101 - ok
21:03:22.0657 0x27ac UcmUcsi - ok
21:03:22.0672 0x27ac Ucx01000 - ok
21:03:22.0688 0x27ac UdeCx - ok
21:03:22.0704 0x27ac udfs - ok
21:03:22.0721 0x27ac UEFI - ok
21:03:22.0721 0x27ac Ufx01000 - ok
21:03:22.0737 0x27ac UfxChipidea - ok
21:03:22.0768 0x27ac ufxsynopsys - ok
21:03:22.0831 0x27ac UI0Detect - ok
21:03:22.0846 0x27ac umbus - ok
21:03:22.0871 0x27ac UmPass - ok
21:03:22.0899 0x27ac UmRdpService - ok
21:03:22.0931 0x27ac UnistoreSvc - ok
21:03:22.0962 0x27ac upnphost - ok
21:03:23.0009 0x27ac UrsChipidea - ok
21:03:23.0024 0x27ac UrsCx01000 - ok
21:03:23.0040 0x27ac UrsSynopsys - ok
21:03:23.0065 0x27ac usbccgp - ok
21:03:23.0065 0x27ac usbcir - ok
21:03:23.0081 0x27ac usbehci - ok
21:03:23.0096 0x27ac usbhub - ok
21:03:23.0112 0x27ac USBHUB3 - ok
21:03:23.0128 0x27ac usbohci - ok
21:03:23.0143 0x27ac usbprint - ok
21:03:23.0143 0x27ac usbser - ok
21:03:23.0143 0x27ac USBSTOR - ok
21:03:23.0159 0x27ac usbuhci - ok
21:03:23.0180 0x27ac USBXHCI - ok
21:03:23.0180 0x27ac usb_rndisx - ok
21:03:23.0243 0x27ac UserDataSvc - ok
21:03:23.0258 0x27ac UserManager - ok
21:03:23.0540 0x27ac [ 8842ED1E87D7662F249B5B63501E693B, A6D71351C2F32295926664875369C0BF93C59541B023884BDAC684E1EA94487A ] USER_ESRV_SVC_QUEENCREEK C:\Program Files\Intel\SUR\QUEENCREEK\esrv_svc.exe
21:03:23.0571 0x27ac USER_ESRV_SVC_QUEENCREEK - ok
21:03:23.0603 0x27ac UsoSvc - ok
21:03:23.0603 0x27ac VaultSvc - ok
21:03:23.0603 0x27ac vdrvroot - ok
21:03:23.0634 0x27ac vds - ok
21:03:23.0649 0x27ac VerifierExt - ok
21:03:23.0649 0x27ac vhdmp - ok
21:03:23.0665 0x27ac vhf - ok
21:03:23.0665 0x27ac vmbus - ok
21:03:23.0681 0x27ac VMBusHID - ok
21:03:23.0681 0x27ac vmgid - ok
21:03:23.0712 0x27ac vmicguestinterface - ok
21:03:23.0712 0x27ac vmicheartbeat - ok
21:03:23.0712 0x27ac vmickvpexchange - ok
21:03:23.0745 0x27ac vmicrdv - ok
21:03:23.0760 0x27ac vmicshutdown - ok
21:03:23.0760 0x27ac vmictimesync - ok
21:03:23.0760 0x27ac vmicvmsession - ok
21:03:23.0760 0x27ac vmicvss - ok
21:03:23.0780 0x27ac volmgr - ok
21:03:23.0780 0x27ac volmgrx - ok
21:03:23.0780 0x27ac volsnap - ok
21:03:23.0812 0x27ac volume - ok
21:03:23.0841 0x27ac vpci - ok
21:03:23.0841 0x27ac vsmraid - ok
21:03:23.0857 0x27ac VSS - ok
21:03:23.0873 0x27ac VSTXRAID - ok
21:03:23.0904 0x27ac vwifibus - ok
21:03:23.0904 0x27ac vwififlt - ok
21:03:23.0904 0x27ac vwifimp - ok
21:03:23.0920 0x27ac W32Time - ok
21:03:23.0935 0x27ac WacomPen - ok
21:03:23.0982 0x27ac WalletService - ok
21:03:24.0013 0x27ac wanarp - ok
21:03:24.0013 0x27ac wanarpv6 - ok
21:03:24.0045 0x27ac wbengine - ok
21:03:24.0071 0x27ac WbioSrvc - ok
21:03:24.0077 0x27ac wcifs - ok
21:03:24.0109 0x27ac Wcmsvc - ok
21:03:24.0124 0x27ac wcncsvc - ok
21:03:24.0124 0x27ac wcnfs - ok
21:03:24.0140 0x27ac WdBoot - ok
21:03:24.0140 0x27ac Wdf01000 - ok
21:03:24.0156 0x27ac WdFilter - ok
21:03:24.0171 0x27ac WdiServiceHost - ok
21:03:24.0171 0x27ac WdiSystemHost - ok
21:03:24.0187 0x27ac wdiwifi - ok
21:03:24.0202 0x27ac WdNisDrv - ok
21:03:24.0234 0x27ac WdNisSvc - ok
21:03:24.0249 0x27ac WebClient - ok
21:03:24.0281 0x27ac Wecsvc - ok
21:03:24.0296 0x27ac WEPHOSTSVC - ok
21:03:24.0328 0x27ac wercplsupport - ok
21:03:24.0359 0x27ac WerSvc - ok
21:03:24.0359 0x27ac WFPLWFS - ok
21:03:24.0390 0x27ac WiaRpc - ok
21:03:24.0421 0x27ac WIMMount - ok
21:03:24.0421 0x27ac WinDefend - ok
21:03:24.0468 0x27ac WindowsTrustedRT - ok
21:03:24.0484 0x27ac WindowsTrustedRTProxy - ok
21:03:24.0499 0x27ac WinHttpAutoProxySvc - ok
21:03:24.0515 0x27ac WinMad - ok
21:03:24.0578 0x27ac Winmgmt - ok
21:03:24.0625 0x27ac WinRM - ok
21:03:24.0703 0x27ac WINUSB - ok
21:03:24.0718 0x27ac WinVerbs - ok
21:03:24.0765 0x27ac wisvc - ok
21:03:24.0812 0x27ac WlanSvc - ok
21:03:24.0843 0x27ac wlidsvc - ok
21:03:24.0843 0x27ac WmiAcpi - ok
21:03:24.0877 0x27ac wmiApSrv - ok
21:03:24.0908 0x27ac WMPNetworkSvc - ok
21:03:24.0939 0x27ac Wof - ok
21:03:24.0971 0x27ac workfolderssvc - ok
21:03:25.0017 0x27ac WPDBusEnum - ok
21:03:25.0033 0x27ac WpdUpFltr - ok
21:03:25.0064 0x27ac WpnService - ok
21:03:25.0064 0x27ac WpnUserService - ok
21:03:25.0096 0x27ac ws2ifsl - ok
21:03:25.0127 0x27ac wscsvc - ok
21:03:25.0142 0x27ac WSDPrintDevice - ok
21:03:25.0158 0x27ac WSDScan - ok
21:03:25.0174 0x27ac WSearch - ok
21:03:25.0221 0x27ac [ 72B4E9DF6456C43C42A1419B09486045, 536BA7377B5BEA7EA46864453933111DB88DB8FB689C68915ACD7261A996E61D ] wsvd C:\WINDOWS\system32\DRIVERS\wsvd.sys
21:03:25.0267 0x27ac wsvd - ok
21:03:25.0299 0x27ac wuauserv - ok
21:03:25.0299 0x27ac WudfPf - ok
21:03:25.0314 0x27ac WUDFRd - ok
21:03:25.0330 0x27ac wudfsvc - ok
21:03:25.0330 0x27ac WUDFWpdFs - ok
21:03:25.0330 0x27ac WUDFWpdMtp - ok
21:03:25.0346 0x27ac WwanSvc - ok
21:03:25.0385 0x27ac XblAuthManager - ok
21:03:25.0448 0x27ac XblGameSave - ok
21:03:25.0479 0x27ac xboxgip - ok
21:03:25.0526 0x27ac XboxNetApiSvc - ok
21:03:25.0573 0x27ac xinputhid - ok
21:03:25.0635 0x27ac ================ Scan global ===============================
21:03:25.0729 0x27ac [ Global ] - ok
21:03:25.0729 0x27ac ================ Scan MBR ==================================
21:03:25.0760 0x27ac [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk0\DR0
21:03:26.0107 0x27ac \Device\Harddisk0\DR0 - ok
21:03:26.0107 0x27ac ================ Scan VBR ==================================
21:03:26.0138 0x27ac [ 2E17CCD49D062E31E0B3A9684E00B350 ] \Device\Harddisk0\DR0\Partition1
21:03:26.0169 0x27ac \Device\Harddisk0\DR0\Partition1 - ok
21:03:26.0200 0x27ac [ C3176033020941E2EBB9159D1CDFFBA7 ] \Device\Harddisk0\DR0\Partition2
21:03:26.0200 0x27ac \Device\Harddisk0\DR0\Partition2 - ok
21:03:26.0232 0x27ac [ 8BAE10C7C382DC892756A9D0E473039A ] \Device\Harddisk0\DR0\Partition3
21:03:26.0232 0x27ac \Device\Harddisk0\DR0\Partition3 - ok
21:03:26.0263 0x27ac [ F5A529530EF5DB5350E971E33C81254D ] \Device\Harddisk0\DR0\Partition4
21:03:26.0263 0x27ac \Device\Harddisk0\DR0\Partition4 - ok
21:03:26.0294 0x27ac [ 5122B00C1E0E999E5CF0A458F0650CCD ] \Device\Harddisk0\DR0\Partition5
21:03:26.0326 0x27ac \Device\Harddisk0\DR0\Partition5 - ok
21:03:26.0372 0x27ac [ 03AD12C5EF9EE07B720AF1D09B4A77FE ] \Device\Harddisk0\DR0\Partition6
21:03:26.0419 0x27ac \Device\Harddisk0\DR0\Partition6 - ok
21:03:26.0466 0x27ac [ 9A20E57ED890E0C7CA48B383F2AD9784 ] \Device\Harddisk0\DR0\Partition7
21:03:26.0513 0x27ac \Device\Harddisk0\DR0\Partition7 - ok
21:03:26.0513 0x27ac ================ Scan generic autorun ======================
21:03:26.0685 0x27ac [ FFBFE1175531CD582D89796835CBB598, 7DC1FEB90AFC08C829001849985C7B20CB782F05CD9C000C6C9D42D3FDB1DDF4 ] C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe
21:03:26.0716 0x27ac cAudioFilterAgent - ok
21:03:26.0857 0x27ac [ 4F8B94EC4D4FFA0712CCADF8145F28D1, 6CED9332100CA71FB17930AAC4ED1798E6F3A83CEBEE0A3412EFA01F6F1A6F22 ] C:\Program Files\CONEXANT\SAII\SACpl.exe
21:03:26.0888 0x27ac SmartAudio - ok
21:03:26.0888 0x27ac ETDCtrl - ok
21:03:27.0872 0x27ac [ AC2ECBAA39F816944A608926973EFDB7, 9C32F89B255B2690843EA96A331665B27A28E4EF67B16AC6D254FE593146F7D5 ] C:\WINDOWS\RTFTrack.exe
21:03:28.0029 0x27ac RtsFT - ok
21:03:28.0122 0x27ac [ BAD24090378CD1D9D70DD21CF21D1BFB, A5FB5F8DCF33BB252304D6DA7CB62906E5A437A561A066A647C8D199EE3C57B8 ] C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe
21:03:28.0138 0x27ac IAStorIcon - detected UnsignedFile.Multi.Generic ( 1 )
21:03:28.0138 0x27ac Detect skipped due to KSN trusted
21:03:28.0138 0x27ac IAStorIcon - ok
21:03:28.0216 0x27ac [ 48EB2BD8D360E9C8D9A71968A477ADBE, 2E9D5D9790EC07279CDA6A213A90D52C764CD9338194C47DBA26C545D65853BA ] C:\WINDOWS\system32\igfxtray.exe
21:03:28.0247 0x27ac IgfxTray - ok
21:03:30.0107 0x27ac [ E0AD9F72153A7F55702C3170FDA7876C, 839A8D0B72C3A0530ACC447532CA4CACC19E3C91CEA6B9CBB9498D36DD2DFBE6 ] C:\Program Files (x86)\Lenovo\Energy Manager\Energy Manager.exe
21:03:30.0373 0x27ac Energy Manager - ok
21:03:30.0435 0x27ac [ F0627CE818DA58BAE771DCD4669FA343, 070CE17C9DAC01CC5AE465DFA3FDD8A44ABF97AC8101ED238C96668027B6F10B ] C:\Program Files (x86)\Lenovo\Energy Manager\Utility.exe
21:03:30.0451 0x27ac Lenovo Utility - ok
21:03:30.0529 0x27ac [ 233A10D4B3F6897899112E4EC60F1906, 1F7E768E57064938114DF2EFC5B219EB0D30A7D9E574924E9CED054462505AF0 ] C:\WINDOWS\WindowsMobile\wmdc.exe
21:03:30.0560 0x27ac Windows Mobile Device Center - ok
21:03:30.0837 0x27ac [ FE18DDEA98D90DBF850AFCA0158ABEC8, 8EC0099B560CC23DA6D26A71A202667D1A7C4BC37CE0F9F3458EA40440541D06 ] C:\Users\Administrator\Desktop\Everything\Everything.exe
21:03:30.0884 0x27ac Everything - detected UnsignedFile.Multi.Generic ( 1 )
21:03:30.0884 0x27ac Detect skipped due to KSN trusted
21:03:30.0884 0x27ac Everything - ok
21:03:31.0072 0x27ac [ 8F83160C43C61FC6775391B46B7C16BF, 648588126B2CD0B9F50F478BF4F7474137D1285061A3B22B56C1CB5B4FD3C3BF ] C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe
21:03:31.0103 0x27ac UpdateP2GShortCut - ok
21:03:31.0243 0x27ac [ 305C1D680482E937D65D2A43448629A1, EFCA1B8FB5F932276E1CE6679EB155CF643E2B3CCCE36AF07C68C2A82473C7F6 ] C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXRCV.exe
21:03:31.0259 0x27ac FUFAXRCV - ok
21:03:31.0384 0x27ac [ 92B992307F1BF5F9DE727ACDD5A4CD4A, B6F751A990A90C5346CE5C2B11EEB8A09F582835A63D3921E70E286E45C24475 ] C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXSTM.exe
21:03:31.0400 0x27ac FUFAXSTM - ok
21:03:31.0541 0x27ac [ 4ABA86D5B0D440F33BDBDBDAEA065C42, 434E035E4748D0E4CEB08E655FF9A1739FF7E0099CCCC42122A24736DE3DE7E3 ] C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe
21:03:31.0557 0x27ac EEventManager - ok
21:03:31.0650 0x27ac [ 7D440447C6FCDEC9BBB739A048AA90CD, FA39828FD3FE9A1B57E1022B04729E7711C984E131CBE44BF1FAE73EF430D762 ] C:\WINDOWS\tsnp2std.exe
21:03:31.0681 0x27ac tsnp2std - detected UnsignedFile.Multi.Generic ( 1 )
21:03:31.0681 0x27ac Detect skipped due to KSN trusted
21:03:31.0681 0x27ac tsnp2std - ok
21:03:32.0135 0x27ac [ D9F25B1C673DEEF18A45AD2080DC9A5E, 76C4E520099F0CF3556158B6C154B68E4F954D4CA6A1851FB08979207F482200 ] C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe
21:03:32.0182 0x27ac StartCCC - ok
21:03:32.0807 0x27ac [ DBD8934E3909B60DA81A91BF53B76901, 29B061C5E05097394B8B9D7C6681783DB02735CE8AAD06BCC03C08617D778039 ] C:\Program Files (x86)\Avira\Antivirus\avgnt.exe
21:03:32.0838 0x27ac avgnt - ok
21:03:32.0932 0x27ac [ 2AB57E205B61BCB095168A97B8D2AC4D, 18D9709CED7F02B694405E62ED5BA8EBE737FF59BB2D9EFBF0335C0F3BEE105B ] C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe
21:03:32.0947 0x27ac Avira SystrayStartTrigger - ok
21:03:33.0197 0x27ac OneDriveSetup - ok
21:03:33.0197 0x27ac OneDriveSetup - ok
21:03:33.0807 0x27ac [ 103C5E01E5705A4BD468CBC902AA8EEF, 7598411CE3BA9C79CF74E64A5691D92ADA8121735495C1AB3B56F9E6CA3B0FB1 ] C:\Program Files (x86)\Vidalia Relay Bundle\Vidalia\vidalia.exe
21:03:33.0963 0x27ac Vidalia - detected UnsignedFile.Multi.Generic ( 1 )
21:03:33.0963 0x27ac Vidalia ( UnsignedFile.Multi.Generic ) - warning
21:03:36.0713 0x27ac [ 3F6B014280D8A98ACC323BB28CA5BCA7, 724FE1E949D57E982B50CC6FBBA8BCB524C42592A39ED60D37042CC2C2E73CAB ] C:\Program Files\CCleaner\CCleaner64.exe
21:03:36.0885 0x27ac CCleaner Monitoring - ok
21:03:36.0901 0x27ac Object required for P2P: [ 3F6B014280D8A98ACC323BB28CA5BCA7 ] C:\Program Files\CCleaner\CCleaner64.exe
21:03:36.0916 0x27ac Object send P2P result: false
21:03:37.0229 0x27ac [ 642102CCB9EF737E188D136B93AB9A1F, 9BF47F3B3DAD7938C804C951FC81AC5C1EA8BDD94AB29630D5080CE797F3CC0F ] C:\Users\Manja\AppData\Local\Microsoft\OneDrive\OneDrive.exe
21:03:37.0276 0x27ac OneDrive - ok
21:03:37.0527 0x27ac [ FD9A7F99A09DB266D0C1361B0ACCBD7E, 579160BDACDFE39AE5DDD7B5C2964453E89BA8D933F3FB16C6E3897EA3BDED29 ] C:\Users\Administrator\AppData\Local\Microsoft\OneDrive\OneDrive.exe
21:03:37.0559 0x27ac OneDrive - ok
21:03:37.0574 0x27ac AV detected via SS2: Avira Antivirus, C:\Program Files (x86)\Avira\Antivirus\WindowsSecurityCenter.exe ( 15.0.25.170 ), 0x41000 ( enabled : updated )
21:03:37.0574 0x27ac AV detected via SS2: Windows Defender, C:\Program Files\Windows Defender\MSASCui.exe ( 4.10.14393.187 ), 0x60100 ( disabled : updated )
21:03:37.0621 0x27ac Win FW state via NFP2: enabled ( trusted )
21:03:37.0621 0x27ac ============================================================
21:03:37.0621 0x27ac Scan finished
21:03:37.0621 0x27ac ============================================================
21:03:37.0637 0x276c Detected object count: 1
21:03:37.0637 0x276c Actual detected object count: 1
21:03:47.0806 0x276c Vidalia ( UnsignedFile.Multi.Generic ) - skipped by user
21:03:47.0806 0x276c Vidalia ( UnsignedFile.Multi.Generic ) - User select action: Skip
21:05:17.0505 0x02c0 Deinitialize success
FRST.txt
Code:
Alles auswählen Aufklappen ATTFilter
Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 15-03-2017 (ACHTUNG: ====> FRSTVersion ist 37 Tage alt und könnte veraltet sein )
durchgeführt von Manja (Administrator) auf LENOVO-PC (21-04-2017 21:06:50)
Gestartet von C:\Users\Manja\Desktop
Geladene Profile: Manja (Verfügbare Profile: Manja & Administrator)
Platform: Windows 10 Home Version 1607 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: Edge)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
(AMD) C:\Windows\System32\atiesrxx.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avguard.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
(Broadcom Corporation.) C:\Windows\System32\BtwRSupportService.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDService.exe
(Chip Digital GmbH) C:\Program Files (x86)\Chip Digital GmbH\chip1click\chip 1-click installer.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(SEIKO EPSON CORPORATION) C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_WT50RP.EXE
(Nalpeiron Ltd.) C:\Windows\SysWOW64\NLSSRV32.EXE
(Nitro PDF Software) C:\Program Files\Common Files\Nitro\Pro\8.0\NitroPDFDriverService8x64.exe
() C:\Program Files\CyberLink\Shared files\RichVideo64.exe
() C:\Program Files\Intel Driver Update Utility\SUR\SurSvc.exe
(Conexant Systems Inc.) C:\Windows\System32\CxAudMsg64.exe
(Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avshadow.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
() C:\Program Files (x86)\Lenovo\System Update\SUService.exe
(AMD) C:\Windows\System32\atieclxx.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
() C:\Windows\System32\igfxTray.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.13.133.0_x64__kzf8qxf38zg5c\SkypeHost.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Conexant Systems, Inc.) C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe
(CyberLink Corp.) C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe
(Realtek semiconductor) C:\Windows\RTFTrack.exe
(Lenovo(beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Manager\Energy Manager.exe
(Lenovo(beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Manager\utility.exe
() C:\Program Files (x86)\Vidalia Relay Bundle\Vidalia\vidalia.exe
(ArcSoft, Inc.) C:\Program Files (x86)\ArcSoft\ArcSoft TV 5.0\TMTV5Monitor.exe
(SEIKO EPSON CORPORATION) C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXRCV.exe
(SEIKO EPSON CORPORATION) C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXSTM.exe
(SEIKO EPSON CORPORATION) C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe
() C:\Program Files (x86)\Vidalia Relay Bundle\Tor\tor.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Lenovo) C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe
(Microsoft Corporation) C:\Windows\System32\InstallAgent.exe
(Microsoft Corporation) C:\Windows\System32\InstallAgentUserBroker.exe
(Lenovo) C:\Users\Manja\AppData\Local\Apps\2.0\H1XBY3NA.MTY\ORDNQXPM.YZE\lsb...tion_2d7b41b05b24775e_0001.0006_3b0a905c8de4f74a\LSB.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Corporation) C:\Windows\SysWOW64\backgroundTaskHost.exe
==================== Registry (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [cAudioFilterAgent] => C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [935104 2014-11-25] (Conexant Systems, Inc.)
HKLM\...\Run: [SmartAudio] => C:\Program Files\CONEXANT\SAII\SACpl.exe [1830616 2014-04-10] (Conexant Systems, Inc.)
HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [3242696 2015-10-07] (ELAN Microelectronics Corp.)
HKLM\...\Run: [RtsFT] => C:\WINDOWS\RTFTrack.exe [9309936 2015-08-30] (Realtek semiconductor)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [287592 2013-08-30] (Intel Corporation)
HKLM\...\Run: [IgfxTray] => C:\WINDOWS\system32\igfxtray.exe [393208 2016-10-07] ()
HKLM\...\Run: [Energy Manager] => C:\Program Files (x86)\Lenovo\Energy Manager\Energy Manager.exe [15813616 2014-03-12] (Lenovo(beijing) Limited)
HKLM\...\Run: [Lenovo Utility] => C:\Program Files (x86)\Lenovo\Energy Manager\Utility.exe [80880 2014-03-12] (Lenovo(beijing) Limited)
HKLM\...\Run: [Windows Mobile Device Center] => C:\WINDOWS\WindowsMobile\wmdc.exe [660360 2007-05-31] (Microsoft Corporation)
HKLM\...\Run: [Everything] => C:\Users\Administrator\Desktop\Everything\Everything.exe [1441792 2014-08-06] ()
HKLM-x32\...\Run: [UpdateP2GShortCut] => C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe [214312 2011-12-06] (CyberLink Corp.)
HKLM-x32\...\Run: [FUFAXRCV] => C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXRCV.exe [650784 2015-12-22] (SEIKO EPSON CORPORATION)
HKLM-x32\...\Run: [FUFAXSTM] => C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXSTM.exe [863776 2015-12-22] (SEIKO EPSON CORPORATION)
HKLM-x32\...\Run: [EEventManager] => C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [1065024 2014-06-10] (SEIKO EPSON CORPORATION)
HKLM-x32\...\Run: [tsnp2std] => C:\WINDOWS\tsnp2std.exe [258048 2007-01-05] (SONIX)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2015-06-22] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [avgnt] => C:\Program Files (x86)\Avira\Antivirus\avgnt.exe [909744 2017-03-26] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [Avira SystrayStartTrigger] => C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe [63432 2017-01-19] (Avira Operations GmbH & Co. KG)
HKLM\...\Policies\Explorer: [EnableShellExecuteHooks] 1
HKU\S-1-5-21-2024608735-1276328420-4132175576-1001\...\Run: [Vidalia] => C:\Program Files (x86)\Vidalia Relay Bundle\Vidalia\vidalia.exe [6239727 2013-01-26] ()
HKU\S-1-5-21-2024608735-1276328420-4132175576-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [9363672 2017-02-08] (Piriform Ltd)
HKU\S-1-5-21-2024608735-1276328420-4132175576-1001\...\MountPoints2: {152510a8-0b88-11e7-8381-4a5ab6dfb585} - "F:\AutoRun.exe"
HKU\S-1-5-18\...\Run: [EPLTarget\P0000000000000000] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YATIIVE.EXE [283232 2012-02-28] (SEIKO EPSON CORPORATION)
HKLM\...\Providers\uccs53rf: C:\Program Files (x86)\Grotersp Mapper\local64spl.dll [310784 2017-02-07] ()
ShellExecuteHooks: Kein Name - {B7F52870-EABC-11E6-A3B1-64006A5CFC23} - C:\Users\Manja\AppData\Roaming\Valrythujaent\Faoing.dll [145408 2017-02-07] ()
ShellIconOverlayIdentifiers: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Users\Manja\AppData\Local\Microsoft\OneDrive\17.3.6799.0327\amd64\FileSyncShell64.dll [2017-04-21] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Users\Manja\AppData\Local\Microsoft\OneDrive\17.3.6799.0327\amd64\FileSyncShell64.dll [2017-04-21] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Users\Manja\AppData\Local\Microsoft\OneDrive\17.3.6799.0327\amd64\FileSyncShell64.dll [2017-04-21] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Users\Manja\AppData\Local\Microsoft\OneDrive\17.3.6799.0327\FileSyncShell.dll [2017-04-21] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Users\Manja\AppData\Local\Microsoft\OneDrive\17.3.6799.0327\FileSyncShell.dll [2017-04-21] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Users\Manja\AppData\Local\Microsoft\OneDrive\17.3.6799.0327\FileSyncShell.dll [2017-04-21] (Microsoft Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\TMMonitor.lnk [2015-10-11]
ShortcutTarget: TMMonitor.lnk -> C:\Program Files (x86)\ArcSoft\ArcSoft TV 5.0\TMTV5Monitor.exe (ArcSoft, Inc.)
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{a859d951-1702-4c70-843c-1f03b6a5db08}: [DhcpNameServer] 192.168.1.1
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com/?pc=MSE1
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKU\S-1-5-21-2024608735-1276328420-4132175576-1001\Software\Microsoft\Internet Explorer\Main,Start Page =
HKU\S-1-5-21-2024608735-1276328420-4132175576-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://www.lenovo.com
SearchScopes: HKLM -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL =
SearchScopes: HKLM-x32 -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL =
SearchScopes: HKU\S-1-5-21-2024608735-1276328420-4132175576-1001 -> DefaultScope {F89CBD86-A9F4-11E4-826F-485AB6DFB586} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKU\S-1-5-21-2024608735-1276328420-4132175576-1001 -> {0BB5F216-46AD-4421-8307-71AD5A980D61} URL =
SearchScopes: HKU\S-1-5-21-2024608735-1276328420-4132175576-1001 -> {F89CBD86-A9F4-11E4-826F-485AB6DFB586} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKU\S-1-5-21-2024608735-1276328420-4132175576-1001 -> {FF9451C6-C472-4F44-98C3-0A2D6DCACFBE} URL = hxxps://de.search.yahoo.com/search?p={searchTerms}&intl=de&fr=yset_ie_syc_oracle&type=orcl_default&partnerexternal-oracle=external-oracle
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll [2017-03-14] (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL [2017-03-14] (Microsoft Corporation)
BHO-x32: E-Web Print -> {201CF130-E29C-4E5C-A73F-CD197DEFA6AE} -> C:\Program Files (x86)\Epson Software\E-Web Print\ewps_tb.dll [2014-11-27] (SEIKO EPSON CORPORATION)
Toolbar: HKLM-x32 - E-Web Print - {201CF130-E29C-4E5C-A73F-CD197DEFA6AE} - C:\Program Files (x86)\Epson Software\E-Web Print\ewps_tb.dll [2014-11-27] (SEIKO EPSON CORPORATION)
Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL [2016-04-20] (Microsoft Corporation)
FireFox:
========
FF ProfilePath: C:\Users\Manja\AppData\Roaming\Mozilla\Firefox\Profiles\v589m9uz.default-1488680288971 [2017-04-21]
FF Homepage: Mozilla\Firefox\Profiles\v589m9uz.default-1488680288971 -> hxxps://www.ixquick.com/do/mypage.pl?prf=71655fbbbc8e4b165b2a6245f3e01481
FF NetworkProxy: Mozilla\Firefox\Profiles\v589m9uz.default-1488680288971 -> type", 0
FF Extension: (Easy Screenshot) - C:\Users\Manja\AppData\Roaming\Mozilla\Firefox\Profiles\v589m9uz.default-1488680288971\Extensions\easyscreenshot@mozillaonline.com.xpi [2017-03-05]
FF Extension: (Ghostery) - C:\Users\Manja\AppData\Roaming\Mozilla\Firefox\Profiles\v589m9uz.default-1488680288971\Extensions\firefox@ghostery.com.xpi [2017-03-05]
FF Extension: (HTTPS Everywhere) - C:\Users\Manja\AppData\Roaming\Mozilla\Firefox\Profiles\v589m9uz.default-1488680288971\Extensions\https-everywhere-eff@eff.org.xpi [2017-04-09]
FF Extension: (ProxTube) - C:\Users\Manja\AppData\Roaming\Mozilla\Firefox\Profiles\v589m9uz.default-1488680288971\Extensions\ich@maltegoetz.de.xpi [2017-04-21]
FF Extension: (YouTube mp3) - C:\Users\Manja\AppData\Roaming\Mozilla\Firefox\Profiles\v589m9uz.default-1488680288971\Extensions\info@youtube-mp3.org.xpi [2017-03-05]
FF Extension: (FireShot) - C:\Users\Manja\AppData\Roaming\Mozilla\Firefox\Profiles\v589m9uz.default-1488680288971\Extensions\{0b457cAA-602d-484a-8fe7-c1d894a011ba} [2017-03-05]
FF Extension: (FlashGot) - C:\Users\Manja\AppData\Roaming\Mozilla\Firefox\Profiles\v589m9uz.default-1488680288971\Extensions\{19503e42-ca3c-4c27-b1e2-9cdb2170ee34}.xpi [2017-03-05]
FF Extension: (Youtube to MP3 Converter) - C:\Users\Manja\AppData\Roaming\Mozilla\Firefox\Profiles\v589m9uz.default-1488680288971\Extensions\{37115292-022c-4500-a5da-95738388073a}.xpi [2017-03-06]
FF Extension: (NoScript) - C:\Users\Manja\AppData\Roaming\Mozilla\Firefox\Profiles\v589m9uz.default-1488680288971\Extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi [2017-03-18]
FF Extension: (Download YouTube Videos as MP4) - C:\Users\Manja\AppData\Roaming\Mozilla\Firefox\Profiles\v589m9uz.default-1488680288971\Extensions\{b9bfaf1c-a63f-47cd-8b9a-29526ced9060}.xpi [2017-03-05]
FF Extension: (Video DownloadHelper) - C:\Users\Manja\AppData\Roaming\Mozilla\Firefox\Profiles\v589m9uz.default-1488680288971\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2017-03-05]
FF Extension: (Adblock Plus) - C:\Users\Manja\AppData\Roaming\Mozilla\Firefox\Profiles\v589m9uz.default-1488680288971\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2017-03-05]
FF Extension: (DownThemAll!) - C:\Users\Manja\AppData\Roaming\Mozilla\Firefox\Profiles\v589m9uz.default-1488680288971\Extensions\{DDC359D1-844A-42a7-9AA1-88A850A938A8}.xpi [2017-03-05]
FF Extension: (Site Deployment Checker) - C:\Program Files\Mozilla Firefox\browser\features\deployment-checker@mozilla.org.xpi [2017-04-01] [ist nicht signiert]
FF HKLM-x32\...\Firefox\Extensions: [e-webprint@epson.com] - C:\Program Files (x86)\Epson Software\E-Web Print\Firefox Add-on
FF Extension: (E-Web Print) - C:\Program Files (x86)\Epson Software\E-Web Print\Firefox Add-on [2016-02-22] [ist nicht signiert]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_24_0_0_221.dll [2017-03-05] ()
FF Plugin: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll [2017-02-06] (Tracker Software Products (Canada) Ltd.)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50905.0\npctrl.dll [2017-02-10] ( Microsoft Corporation)
FF Plugin: @tracker-software.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll [2017-02-06] (Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWoW64\Macromed\Flash\NPSWF32_24_0_0_221.dll [2017-03-05] ()
FF Plugin-x32: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll [2017-02-06] (Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-08-08] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-08-08] (Intel Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50905.0\npctrl.dll [2017-02-10] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2015-01-13] (Microsoft Corporation)
FF Plugin-x32: @nitropdf.com/NitroPDF -> C:\Program Files (x86)\Nitro\Pro 8\npnitromozilla.dll [2013-08-17] (Nitro PDF)
FF Plugin-x32: @tracker-software.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll [2017-02-06] (Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2016-12-17] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-2024608735-1276328420-4132175576-1001: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll [2017-02-06] (Tracker Software Products (Canada) Ltd.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npPDFXCviewNPPlugin.dll [2017-02-06] (Tracker Software Products (Canada) Ltd.)
FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\browser\defaults\preferences\firefox.js [2017-02-07]
21.04.2017, 20:21
Baum-Darstellung