Zurück   Trojaner-Board > Malware entfernen > Log-Analyse und Auswertung
Virenverdacht. Kann jemand Logfile analysieren?

Virenverdacht. Kann jemand Logfile analysieren?


Log-Analyse und Auswertung: Virenverdacht. Kann jemand Logfile analysieren?

Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML.

 
Vorheriger Beitrag Vorheriger Beitrag   Nächster Beitrag Nächster Beitrag
Alt 04.01.2018, 21:52   #1
Tim79
 
Virenverdacht. Kann jemand Logfile analysieren? - Standard

Virenverdacht. Kann jemand Logfile analysieren?


Hallo,
mein Rechner ist seit kurzem sehr langsam geworden (sämtliche Prozesse). Was ich an offensichtlicher Merkwürdigkeit erkennen kann, ist ein nicht schließbares Browserfenster im Firefox, welches eine fake-Seite mit Aufforderung der Aktualisierung des flashplayers beinhaltet.

AV-Program (Comodo) hat nichts gefunden.

Kann mir jemand weiterhelfen?
Anbei der Hijack-Logfile. Ich habe auch einen Farbar-Logfile erstellt, aber damit es nicht zu unübersichtlich wird vielleicht erstmal nur Hijack.

Logfile of HijackThis Fork (Alpha) by Alex Dragokas v.2.7.0.24

Platform: x64 Windows 10 (Home), 10.0.16299.125 (ReleaseId: 1709), Service Pack: 0
Time: 04.01.2018 - 20:34 (UTC+01:00)
Language: OS: German (0x407). Display: German (0x407). Non-Unicode: German (0x407)
Elevated: Yes
Ran by: Timothy (group: Administrator) on SILBERLOCKE, FirstRun: yes

Firefox: 57.0.3.6569
Edge: 11.0.16299.125
Internet Explorer: 11.0.16299.98
Default: "C:\program files (x86)\Mozilla Firefox\firefox.exe" -osint -url "%1" (Firefox)

Boot mode: Normal

Running processes:
Number | Path
1 C:\Program Files (x86)\COMODO\Internet Security Essentials\isesrv.exe
1 C:\Program Files (x86)\COMODO\Internet Security Essentials\vkise.exe
1 C:\Program Files (x86)\Common Files\microsoft shared\ink\TabTip32.exe
1 C:\Program Files (x86)\Intel\Bluetooth\ibtrksrv.exe
1 C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
1 C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
1 C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
1 C:\Program Files (x86)\Lenovo\Energy Manager\Energy Manager.exe
1 C:\Program Files (x86)\Lenovo\Energy Manager\utility.exe
1 C:\Program Files (x86)\Lenovo\MotionControl\MotionControl.exe
1 C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe
6 C:\Program Files (x86)\Mozilla Firefox\firefox.exe
1 C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
1 C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
1 C:\Program Files\Bonjour\mDNSResponder.exe
1 C:\Program Files\COMODO\COMODO Internet Security\cavwp.exe
1 C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
1 C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe
1 C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
1 C:\Program Files\Common Files\microsoft shared\ink\TabTip.exe
1 C:\Program Files\Intel Corporation\Intel WiDi\BrcmSetSecurity.exe
1 C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
1 C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe
1 C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe
1 C:\Program Files\Intel\iCLS Client\HeciServer.exe
1 C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
2 C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
3 C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
1 C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
1 C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
1 C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
1 C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
1 C:\Program Files\Windows Defender\MSASCuiL.exe
1 C:\Program Files\Windows Defender\NisSrv.exe
1 C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.13.257.0_x64__kzf8qxf38zg5c\SkypeHost.exe
1 C:\Users\Timothy\AppData\Local\Microsoft\OneDrive\OneDrive.exe
1 C:\Users\Timothy\Downloads\MemCompression
2 C:\Users\Timothy\Downloads\hijackthis.exe
1 C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
1 C:\Windows\RTFTrack.exe
1 C:\Windows\SysWOW64\IntelCpHeciSvc.exe
1 C:\Windows\System32\ApplicationFrameHost.exe
4 C:\Windows\System32\RuntimeBroker.exe
1 C:\Windows\System32\SearchIndexer.exe
1 C:\Windows\System32\SecurityHealthService.exe
1 C:\Windows\System32\WUDFHost.exe
1 C:\Windows\System32\audiodg.exe
1 C:\Windows\System32\backgroundTaskHost.exe
1 C:\Windows\System32\conhost.exe
2 C:\Windows\System32\csrss.exe
1 C:\Windows\System32\ctfmon.exe
1 C:\Windows\System32\dasHost.exe
3 C:\Windows\System32\dllhost.exe
1 C:\Windows\System32\dwm.exe
1 C:\Windows\System32\escsvc64.exe
2 C:\Windows\System32\fontdrvhost.exe
1 C:\Windows\System32\ibtsiva.exe
1 C:\Windows\System32\igfxCUIService.exe
1 C:\Windows\System32\igfxEM.exe
1 C:\Windows\System32\igfxHK.exe
1 C:\Windows\System32\igfxTray.exe
1 C:\Windows\System32\lsass.exe
1 C:\Windows\System32\msdtc.exe
1 C:\Windows\System32\services.exe
1 C:\Windows\System32\sihost.exe
1 C:\Windows\System32\smartscreen.exe
1 C:\Windows\System32\smss.exe
1 C:\Windows\System32\spoolsv.exe
73 C:\Windows\System32\svchost.exe
1 C:\Windows\System32\taskhostw.exe
1 C:\Windows\System32\wininit.exe
1 C:\Windows\System32\winlogon.exe
1 C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
1 C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
1 C:\Windows\explorer.exe
1 D:\1&1\1&1 Surf-Stick\AssistantServices.exe
1 D:\Eigene Programme\Mozilla\Thunderbird\thunderbird.exe
1 D:\Eigene Programme\Softonic\gfSubtitlePlayer.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://lenovo13.msn.com/?pc=LCJB
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://lenovo13.msn.com/?pc=LCJB
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
O2-32 - HKLM\..\BHO: E-Web Print - {201CF130-E29C-4E5C-A73F-CD197DEFA6AE} - C:\Program Files (x86)\Epson Software\E-Web Print\ewps_tb.dll
O3-32 - HKLM\..\Toolbar: E-Web Print - {201CF130-E29C-4E5C-A73F-CD197DEFA6AE} - C:\Program Files (x86)\Epson Software\E-Web Print\ewps_tb.dll
O4 - Global User Startup: Motion Control.lnk -> C:\Program Files (x86)\Lenovo\MotionControl\MotionControl.exe
O4 - Global User Startup: iSCTsysTray.lnk -> C:\Program Files (x86)\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe
O4 - HKCU\..\Run: [OneDrive] C:\Users\Timothy\AppData\Local\Microsoft\OneDrive\OneDrive.exe /background
O4 - HKCU\..\StartupApproved\Run: [EPLTarget\P0000000000000000] (2015/08/04) C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_IATILEE.EXE /EPT "EPLTarget\P0000000000000000" /M "XP-412 413 415 Series"
O4 - HKCU\..\StartupApproved\Run: [EPLTarget\P0000000000000001] (2015/08/04) C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_IATILEE.EXE /EPT "EPLTarget\P0000000000000001" /M "XP-412 413 415 Series"
O4 - HKCU\..\StartupApproved\Run: [Spotify Web Helper] (2014/10/15) C:\Users\Timothy\AppData\Roaming\Spotify\SpotifyWebHelper.exe
O4 - HKLM\..\FileRenameOperations: C:\WINDOWS\AppCompat\Programs\Amcache.hve.tmp -> C:\WINDOWS\AppCompat\Programs\Amcache.hve
O4 - HKLM\..\Run: [COMODO Autostart {D5EFF3B3-E126-4AF6-BCE9-852A72129E10}] C:\Program Files\COMODO\COMODO Internet Security\cistray.exe
O4 - HKLM\..\Run: [Energy Manager] C:\Program Files (x86)\Lenovo\Energy Manager\Energy Manager.exe
O4 - HKLM\..\Run: [Lenovo Utility] C:\Program Files (x86)\Lenovo\Energy Manager\Utility.exe
O4 - HKLM\..\Run: [NvBackend] C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
O4 - HKLM\..\Run: [ShadowPlay] C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart
O4 - HKLM\..\Run: [Windows Mobile Device Center] C:\WINDOWS\WindowsMobile\wmdc.exe
O4 - HKLM\..\StartupApproved\Run32: [IseUI] (1601/01/01) C:\Program Files (x86)\COMODO\Internet Security Essentials\vkise.exe
O4 - HKLM\..\StartupApproved\Run32: [PDFPrint] (2015/08/04) D:\Eigene Programme\PDF24\pdf24.exe
O4 - HKLM\..\StartupApproved\Run32: [UIExec] (2016/04/23) D:\1&1\1&1 Surf-Stick\UIExec.exe
O4 - HKLM\..\StartupApproved\Run: [RtHDVBg_Dolby] (1601/01/01) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe /FORPCEE4
O4 - HKLM\..\StartupApproved\Run: [RtHDVBg_LENOVO_DOLBYDRAGON] (1601/01/01) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe /LENOVO_DOLBYDRAGON
O4 - HKLM\..\StartupApproved\Run: [RtHDVBg_LENOVO_MICPKEY] (1601/01/01) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe /LENOVO_MICPKEY
O4 - HKLM\..\StartupApproved\Run: [RtHDVCpl] (1601/01/01) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s
O4 - HKLM\..\StartupApproved\Run: [RtsFT] (1601/01/01) C:\WINDOWS\RTFTrack.exe
O4 - HKLM\..\StartupApproved\Run: [SecurityHealth] (1601/01/01) C:\Program Files\Windows Defender\MSASCuiL.exe
O4 - HKLM\..\StartupApproved\Run: [SynTPEnh] (1601/01/01) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\StartupApproved\Run: [iTunesHelper] (2015/08/04) C:\Program Files\iTunes\iTunesHelper.exe
O4-32 - HKLM\..\Run: [Intel AppUp(SM) center] C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe --domain-id F0399437-FD0C-4A48-B101-F0314A6172E4
O4-32 - HKLM\..\Run: [YouCam Tray] C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe /s
O9-32 - Extra 'Tools' menuitem: Mobilen Favoriten erstellen... - HKLM\..\{2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\WINDOWS\WindowsMobile\INetRepl.dll
O9-32 - Extra button: (no name) - HKLM\..\{2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\WINDOWS\WindowsMobile\INetRepl.dll
O9-32 - Extra button: Mobilen Favoriten erstellen - HKLM\..\{2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\WINDOWS\WindowsMobile\INetRepl.dll
O17 - DHCP DNS - 1: 192.168.178.1
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O21 - ShellIconOverlayIdentifiers: BackedUpOverlay Class - {0C4A258A-3F3B-4FFF-80A7-9B3BEC139472} - C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll (file missing)
O21 - ShellIconOverlayIdentifiers: Enhanced Storage Icon Overlay Handler Class - {D9144DCD-E998-4ECA-AB6A-DCD83CCBA16D} - C:\Windows\System32\EhStorShell.dll
O21 - ShellIconOverlayIdentifiers: PendingOverlay Class - {62CCD8E3-9C21-41E1-B55E-1E26DFC68511} - C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll (file missing)
O21 - ShellIconOverlayIdentifiers: RootFolderOverlay Class - {A759AFF6-5851-457D-A540-F4ECED148351} - C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll (file missing)
O21 - ShellIconOverlayIdentifiers: SharedOverlay Class - {1574C9EF-7D58-488F-B358-8B78C1538F51} - C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll (file missing)
O22 - Task: (Ready) EPSON XP-412 413 415 Series Invitation {32AA5F3E-42AF-416D-93A7-97E0483F7BC7}.job - C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_ITSLEE.EXE /EXE:"{32AA5F3E-42AF-416D-93A7-97E0483F7BC7}" /F:"Invitation"
O22 - Task: (Ready) EPSON XP-412 413 415 Series Invitation {5F7996FF-B50D-4D17-B92F-F39799635033}.job - C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_ITSLEE.EXE /EXE:"{5F7996FF-B50D-4D17-B92F-F39799635033}" /F:"Invitation"
O22 - Task: (Ready) EPSON XP-412 413 415 Series Invitation {AEE47A68-7976-4063-8DD5-B4B8A7776E2E}.job - C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_ITSLEE.EXE /EXE:"{AEE47A68-7976-4063-8DD5-B4B8A7776E2E}" /F:"Invitation"
O22 - Task: (Ready) EPSON XP-412 413 415 Series Update {32AA5F3E-42AF-416D-93A7-97E0483F7BC7}.job - C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_ITSLEE.EXE /EXE:"{32AA5F3E-42AF-416D-93A7-97E0483F7BC7}" /F:"Update"
O22 - Task: (Ready) EPSON XP-412 413 415 Series Update {5F7996FF-B50D-4D17-B92F-F39799635033}.job - C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_ITSLEE.EXE /EXE:"{5F7996FF-B50D-4D17-B92F-F39799635033}" /F:"Update"
O22 - Task: (Ready) EPSON XP-412 413 415 Series Update {AEE47A68-7976-4063-8DD5-B4B8A7776E2E}.job - C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_ITSLEE.EXE /EXE:"{AEE47A68-7976-4063-8DD5-B4B8A7776E2E}" /F:"Update"
O22 - Task: (Ready) Synaptics TouchPad Enhancements.job - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O22 - Task: (disabled) (telemetry) \COMODO\COMODO Telemetry {18AD3DFA-30C0-4B5F-84F7-F1870B1A4921} - C:\Program Files\COMODO\COMODO Internet Security\cis.exe --telemetry
O22 - Task: (disabled) (telemetry) \Microsoft\Windows\Application Experience\StartupAppTask - C:\WINDOWS\system32\rundll32.exe Startupscan.dll,SusRunTask
O22 - Task: (disabled) (telemetry) \Microsoft\Windows\Customer Experience Improvement Program\BthSQM - {C8367320-6F85-11E0-A1F0-0800200C9A66},SYSTEM - C:\WINDOWS\System32\BthTelemetry.dll
O22 - Task: (disabled) (telemetry) \Microsoft\Windows\Customer Experience Improvement Program\Consolidator - C:\WINDOWS\System32\wsqmcons.exe
O22 - Task: (disabled) (telemetry) \Microsoft\Windows\Customer Experience Improvement Program\UsbCeip - {C27F6B1D-FE0B-45E4-9257-38799FA69BC8},SYSTEM - C:\WINDOWS\System32\usbceip.dll
O22 - Task: (disabled) (telemetry) \Microsoft\Windows\IME\SQM data sender - {CCB1D8CB-D39F-41C9-B793-0196214BDC4E} - C:\Windows\System32\IME\shared\imecfm.dll
O22 - Task: (disabled) Adobe Flash Player Updater - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O22 - Task: (disabled) AdobeAAMUpdater-1.0-Silberlocke-Julia - C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe -mode=scheduled (file missing)
O22 - Task: (disabled) CreateChoiceProcessTask - C:\Windows\BrowserChoice\browserchoice.exe /launch (file missing)
O22 - Task: (disabled) Dolby Selector - C:\Program Files (x86)\Dolby Home Theater v4\pcee4.exe -autostart (file missing)
O22 - Task: (disabled) EPSON XP-412 413 415 Series Invitation {32AA5F3E-42AF-416D-93A7-97E0483F7BC7} - C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_ITSLEE.EXE /EXE:"{32AA5F3E-42AF-416D-93A7-97E0483F7BC7}" /F:"Invitation"
O22 - Task: (disabled) EPSON XP-412 413 415 Series Invitation {5F7996FF-B50D-4D17-B92F-F39799635033} - C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_ITSLEE.EXE /EXE:"{5F7996FF-B50D-4D17-B92F-F39799635033}" /F:"Invitation"
O22 - Task: (disabled) EPSON XP-412 413 415 Series Invitation {AEE47A68-7976-4063-8DD5-B4B8A7776E2E} - C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_ITSLEE.EXE /EXE:"{AEE47A68-7976-4063-8DD5-B4B8A7776E2E}" /F:"Invitation"
O22 - Task: (disabled) EPSON XP-412 413 415 Series Update {32AA5F3E-42AF-416D-93A7-97E0483F7BC7} - C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_ITSLEE.EXE /EXE:"{32AA5F3E-42AF-416D-93A7-97E0483F7BC7}" /F:"Update"
O22 - Task: (disabled) EPSON XP-412 413 415 Series Update {5F7996FF-B50D-4D17-B92F-F39799635033} - C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_ITSLEE.EXE /EXE:"{5F7996FF-B50D-4D17-B92F-F39799635033}" /F:"Update"
O22 - Task: (disabled) EPSON XP-412 413 415 Series Update {AEE47A68-7976-4063-8DD5-B4B8A7776E2E} - C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_ITSLEE.EXE /EXE:"{AEE47A68-7976-4063-8DD5-B4B8A7776E2E}" /F:"Update"
O22 - Task: (disabled) IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 - C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe --automatic
O22 - Task: (disabled) IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473-Logon - C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe --automatic
O22 - Task: (disabled) OneDrive Standalone Update Task - C:\Users\Timothy\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\OneDriveStandaloneUpdater.exe (file missing)
O22 - Task: (disabled) Optimize Start Menu Cache Files-S-1-5-21-1821675693-422080741-3404470268-1002 - {2D3F8A1B-6DCD-4ED5-BDBA-A096594B98EF},$(Arg0) - C:\Windows\System32\twinapi.dll
O22 - Task: (disabled) Optimize Start Menu Cache Files-S-1-5-21-1821675693-422080741-3404470268-1006 - {2D3F8A1B-6DCD-4ED5-BDBA-A096594B98EF},$(Arg0) - C:\Windows\System32\twinapi.dll
O22 - Task: (disabled) \COMODO\COMODO Autostart {D5EFF3B3-E126-4AF6-BCE9-852A72129E10} - C:\Program Files\COMODO\COMODO Internet Security\cistray.exe
O22 - Task: (disabled) \COMODO\COMODO CMC {06A09C0F-DD9C-4191-A670-71115CD78627} - C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe --launchSchedule {06A09C0F-DD9C-4191-A670-71115CD78627}
O22 - Task: (disabled) \COMODO\COMODO Maintenance {947247B5-026A-4437-9371-770782BE839D} - C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe --launchSchedule {947247B5-026A-4437-9371-770782BE839D}
O22 - Task: (disabled) \COMODO\COMODO Scan {F140D794-60B6-4F00-9235-D6457AA25B22} - C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe --launchSchedule {F140D794-60B6-4F00-9235-D6457AA25B22}
O22 - Task: (disabled) \COMODO\COMODO Signature Update {B9D5C6F9-17D2-4917-8BD0-614BAA1C6A59} - C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe --launchSchedule {B9D5C6F9-17D2-4917-8BD0-614BAA1C6A59}
O22 - Task: (disabled) \COMODO\COMODO Update {A6D52E4F-569B-4756-B3D8-DF217313DA85} - C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe --launchSchedule {A6D52E4F-569B-4756-B3D8-DF217313DA85}
O22 - Task: (disabled) \Microsoft\Windows Live\SOXE\Extractor Definitions Update Task - {3519154C-227E-47F3-9CC9-12C3F05817F1} - (no file)
O22 - Task: (disabled) \Microsoft\Windows\.NET Framework\.NET Framework NGEN v4.0.30319 64 Critical - {613FBA38-A3DF-4AB8-9674-5604984A299A},/RuntimeWide - C:\Windows\System32\mscoree.dll
O22 - Task: (disabled) \Microsoft\Windows\.NET Framework\.NET Framework NGEN v4.0.30319 Critical - {DE434264-8FE9-4C0B-A83B-89EBEEBFF78E},/RuntimeWide - C:\Windows\System32\mscoree.dll
O22 - Task: (disabled) \Microsoft\Windows\Active Directory Rights Management Services Client\AD RMS Rights Policy Template Management (Automated) - {CF2CF428-325B-48D3-8CA8-7633E36E5A32} - C:\WINDOWS\system32\msdrm.dll
O22 - Task: (disabled) \Microsoft\Windows\Active Directory Rights Management Services Client\AD RMS Rights Policy Template Management (Manual) - {BF5CB148-7C77-4D8A-A53E-D81C70CF743C} - C:\WINDOWS\system32\msdrm.dll
O22 - Task: (disabled) \Microsoft\Windows\AppID\EDP Policy Manager - {DECA92E0-AF85-439E-9204-86679978DA08},EdpPolicyManager - C:\WINDOWS\System32\AppLockerCsp.dll
O22 - Task: (disabled) \Microsoft\Windows\AppID\PolicyConverter - C:\WINDOWS\system32\appidpolicyconverter.exe
O22 - Task: (disabled) \Microsoft\Windows\AppID\VerifiedPublisherCertStoreCheck - C:\WINDOWS\system32\appidcertstorecheck.exe
O22 - Task: (disabled) \Microsoft\Windows\ApplicationData\CleanupTemporaryState - C:\WINDOWS\system32\rundll32.exe Windows.Storage.ApplicationData.dll,CleanupTemporaryState
O22 - Task: (disabled) \Microsoft\Windows\ApplicationData\DsSvcCleanup - C:\WINDOWS\system32\dstokenclean.exe
O22 - Task: (disabled) \Microsoft\Windows\ApplicationData\appuriverifierdaily - C:\WINDOWS\system32\AppHostRegistrationVerifier.exe
O22 - Task: (disabled) \Microsoft\Windows\ApplicationData\appuriverifierinstall - C:\WINDOWS\system32\AppHostRegistrationVerifier.exe
O22 - Task: (disabled) \Microsoft\Windows\AppxDeploymentClient\Pre-staged app cleanup - C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\AppxDeploymentClient.dll,AppxPreStageCleanupRunTask
O22 - Task: (disabled) \Microsoft\Windows\Autochk\Proxy - C:\WINDOWS\system32\rundll32.exe /d acproxy.dll,PerformAutochkOperations
O22 - Task: (disabled) \Microsoft\Windows\BitLocker\BitLocker MDM policy Refresh - {61BCD1B9-340C-40EC-9D41-D7F1C0632F05},BitLockerPolicy - C:\WINDOWS\System32\edptask.dll
O22 - Task: (disabled) \Microsoft\Windows\Bluetooth\UninstallDeviceTask - C:\WINDOWS\system32\BthUdTask.exe $(Arg0)
O22 - Task: (disabled) \Microsoft\Windows\CertificateServicesClient\AikCertEnrollTask - {47E30D54-DAC1-473A-AFF7-2355BF78881F},AIKCertEnroll - C:\WINDOWS\system32\ngctasks.dll
O22 - Task: (disabled) \Microsoft\Windows\CertificateServicesClient\CryptoPolicyTask - {47E30D54-DAC1-473A-AFF7-2355BF78881F},CryptoPolicy - C:\WINDOWS\system32\ngctasks.dll
O22 - Task: (disabled) \Microsoft\Windows\CertificateServicesClient\KeyPreGenTask - {47E30D54-DAC1-473A-AFF7-2355BF78881F},NGCKeyPregen - C:\WINDOWS\system32\ngctasks.dll
O22 - Task: (disabled) \Microsoft\Windows\CertificateServicesClient\SystemTask - {58FB76B9-AC85-4E55-AC04-427593B1D060},SYSTEM - C:\WINDOWS\system32\dimsjob.dll
O22 - Task: (disabled) \Microsoft\Windows\CertificateServicesClient\UserTask - {58FB76B9-AC85-4E55-AC04-427593B1D060},USER - C:\WINDOWS\system32\dimsjob.dll
O22 - Task: (disabled) \Microsoft\Windows\CertificateServicesClient\UserTask-Roam - {58FB76B9-AC85-4E55-AC04-427593B1D060},KEYROAMING - C:\WINDOWS\system32\dimsjob.dll
O22 - Task: (disabled) \Microsoft\Windows\Chkdsk\ProactiveScan - {CF4270F5-2E43-4468-83B3-A8C45BB33EA1} - C:\Windows\System32\pstask.dll
O22 - Task: (disabled) \Microsoft\Windows\Chkdsk\SyspartRepair - C:\WINDOWS\system32\bcdboot.exe C:\WINDOWS /sysrepair
O22 - Task: (disabled) \Microsoft\Windows\DUSM\dusmtask - C:\WINDOWS\System32\dusmtask.exe
O22 - Task: (disabled) \Microsoft\Windows\Data Integrity Scan\Data Integrity Scan - {DCFD3EA8-D960-4719-8206-490AE315F94F} - C:\Windows\System32\discan.dll
O22 - Task: (disabled) \Microsoft\Windows\Data Integrity Scan\Data Integrity Scan for Crash Recovery - {DCFD3EA8-D960-4719-8206-490AE315F94F},-CrashRecovery - C:\Windows\System32\discan.dll
O22 - Task: (disabled) \Microsoft\Windows\Defrag\ScheduledDefrag - C:\WINDOWS\system32\defrag.exe -c -h -o -$
O22 - Task: (disabled) \Microsoft\Windows\Device Setup\Metadata Refresh - {23C1F3CF-C110-4512-ACA9-7B6174ECE888} - C:\WINDOWS\System32\DeviceSetupManagerAPI.dll
O22 - Task: (disabled) \Microsoft\Windows\DeviceDirectoryClient\HandleCommand - {AE31B729-D5FD-401E-AF42-784074835AFE},-HandleCommand - C:\WINDOWS\system32\DeviceDirectoryClient.dll
O22 - Task: (disabled) \Microsoft\Windows\DeviceDirectoryClient\HandleWnsCommand - {AE31B729-D5FD-401E-AF42-784074835AFE},-WnsCommand - C:\WINDOWS\system32\DeviceDirectoryClient.dll
O22 - Task: (disabled) \Microsoft\Windows\DeviceDirectoryClient\IntegrityCheck - {AE31B729-D5FD-401E-AF42-784074835AFE},-IntegrityCheck - C:\WINDOWS\system32\DeviceDirectoryClient.dll
O22 - Task: (disabled) \Microsoft\Windows\DeviceDirectoryClient\LocateCommandUserSession - {AE31B729-D5FD-401E-AF42-784074835AFE},-UserSessionCommand - C:\WINDOWS\system32\DeviceDirectoryClient.dll
O22 - Task: (disabled) \Microsoft\Windows\DeviceDirectoryClient\RegisterDeviceAccountChange - {AE31B729-D5FD-401E-AF42-784074835AFE},-RegisterDevice -AccountChange - C:\WINDOWS\system32\DeviceDirectoryClient.dll
O22 - Task: (disabled) \Microsoft\Windows\DeviceDirectoryClient\RegisterDeviceConnectedToNetwork - {AE31B729-D5FD-401E-AF42-784074835AFE},-RegisterDevice -ConnectedToNetwork - C:\WINDOWS\system32\DeviceDirectoryClient.dll
O22 - Task: (disabled) \Microsoft\Windows\DeviceDirectoryClient\RegisterDeviceLocationRightsChange - {AE31B729-D5FD-401E-AF42-784074835AFE},-RegisterDevice -SettingChange -NoLocation - C:\WINDOWS\system32\DeviceDirectoryClient.dll
O22 - Task: (disabled) \Microsoft\Windows\DeviceDirectoryClient\RegisterDevicePeriodic1 - {AE31B729-D5FD-401E-AF42-784074835AFE},-RegisterDevice -Periodic -FreeNetworkOnly - C:\WINDOWS\system32\DeviceDirectoryClient.dll
O22 - Task: (disabled) \Microsoft\Windows\DeviceDirectoryClient\RegisterDevicePeriodic24 - {AE31B729-D5FD-401E-AF42-784074835AFE},-RegisterDevice -Periodic - C:\WINDOWS\system32\DeviceDirectoryClient.dll
O22 - Task: (disabled) \Microsoft\Windows\DeviceDirectoryClient\RegisterDevicePeriodic6 - {AE31B729-D5FD-401E-AF42-784074835AFE},-RegisterDevice -Periodic - C:\WINDOWS\system32\DeviceDirectoryClient.dll
O22 - Task: (disabled) \Microsoft\Windows\DeviceDirectoryClient\RegisterDevicePolicyChange - {AE31B729-D5FD-401E-AF42-784074835AFE},-RegisterDevice -SettingChange -NoLocation - C:\WINDOWS\system32\DeviceDirectoryClient.dll
O22 - Task: (disabled) \Microsoft\Windows\DeviceDirectoryClient\RegisterDeviceProtectionStateChanged - {AE31B729-D5FD-401E-AF42-784074835AFE},-RegisterDevice -ProtectionStateChanged -FreeNetworkOnly -NoLocation - C:\WINDOWS\system32\DeviceDirectoryClient.dll
O22 - Task: (disabled) \Microsoft\Windows\DeviceDirectoryClient\RegisterDeviceScreenOnOff - {AE31B729-D5FD-401E-AF42-784074835AFE},-RegisterDevice -ScreenOnOff - C:\WINDOWS\system32\DeviceDirectoryClient.dll
O22 - Task: (disabled) \Microsoft\Windows\DeviceDirectoryClient\RegisterDeviceSettingChange - {AE31B729-D5FD-401E-AF42-784074835AFE},-RegisterDevice -SettingChange -Full - C:\WINDOWS\system32\DeviceDirectoryClient.dll
O22 - Task: (disabled) \Microsoft\Windows\DeviceDirectoryClient\RegisterUserDevice - {AE31B729-D5FD-401E-AF42-784074835AFE},-RegisterUserDevice -NewAccount - C:\WINDOWS\system32\DeviceDirectoryClient.dll
O22 - Task: (disabled) \Microsoft\Windows\Diagnosis\Scheduled - {C1F85EF8-BCC2-4606-BB39-70C523715EB3} - C:\WINDOWS\System32\sdiagschd.dll
O22 - Task: (disabled) \Microsoft\Windows\DiskCleanup\SilentCleanup - C:\WINDOWS\system32\cleanmgr.exe /autoclean /d C:
O22 - Task: (disabled) \Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticDataCollector - C:\WINDOWS\system32\rundll32.exe dfdts.dll,DfdGetDefaultPolicyAndSMART
O22 - Task: (disabled) \Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticResolver - C:\WINDOWS\system32\DFDWiz.exe
O22 - Task: (disabled) \Microsoft\Windows\DiskFootprint\Diagnostics - C:\WINDOWS\system32\disksnapshot.exe -z
O22 - Task: (disabled) \Microsoft\Windows\DiskFootprint\StorageSense - {AB2A519B-03B0-43CE-940A-A73DF850B49A} - C:\WINDOWS\system32\StorageUsage.dll
O22 - Task: (disabled) \Microsoft\Windows\EDP\EDP App Launch Task - {61BCD1B9-340C-40EC-9D41-D7F1C0632F05},AppLaunch - C:\WINDOWS\System32\edptask.dll
O22 - Task: (disabled) \Microsoft\Windows\EDP\EDP Auth Task - {61BCD1B9-340C-40EC-9D41-D7F1C0632F05},ReAuth - C:\WINDOWS\System32\edptask.dll
O22 - Task: (disabled) \Microsoft\Windows\EDP\EDP Inaccessible Credentials Task - {61BCD1B9-340C-40EC-9D41-D7F1C0632F05},MissingCredentials - C:\WINDOWS\System32\edptask.dll
O22 - Task: (disabled) \Microsoft\Windows\EDP\StorageCardEncryption Task - {61BCD1B9-340C-40EC-9D41-D7F1C0632F05},SDCardEncryptionPolicy - C:\WINDOWS\System32\edptask.dll
O22 - Task: (disabled) \Microsoft\Windows\EnterpriseMgmt\MDMMaintenenceTask - C:\WINDOWS\system32\MDMAgent.exe
O22 - Task: (disabled) \Microsoft\Windows\ExploitGuard\ExploitGuard MDM policy Refresh - {711001CD-CC1D-4470-9B7E-1EF73849C79E},ExploitGuardPolicy - C:\WINDOWS\System32\MitigationConfiguration.dll
O22 - Task: (disabled) \Microsoft\Windows\Feedback\Siuf\DmClient - C:\WINDOWS\system32\dmclient.exe
O22 - Task: (disabled) \Microsoft\Windows\Feedback\Siuf\DmClientOnScenarioDownload - C:\WINDOWS\system32\dmclient.exe utcwnf
O22 - Task: (disabled) \Microsoft\Windows\FileHistory\File History (maintenance mode) - {89917B7C-A1A6-11DF-8BF6-18A90531A85A} - C:\WINDOWS\System32\fhtask.dll
O22 - Task: (disabled) \Microsoft\Windows\LanguageComponentsInstaller\Installation - {6F58F65F-EC0E-4ACA-99FE-FC5A1A25E4BE},Install $(Arg0) - C:\Windows\System32\LanguageComponentsInstaller.dll
O22 - Task: (disabled) \Microsoft\Windows\LanguageComponentsInstaller\Uninstallation - {6F58F65F-EC0E-4ACA-99FE-FC5A1A25E4BE},Uninstall - C:\Windows\System32\LanguageComponentsInstaller.dll
O22 - Task: (disabled) \Microsoft\Windows\License Manager\TempSignedLicenseExchange - {77646A68-AD14-4D53-897D-7BE4DDE5F929} - C:\Windows\System32\TempSignedLicenseExchangeTask.dll
O22 - Task: (disabled) \Microsoft\Windows\Location\Notifications - C:\WINDOWS\System32\LocationNotificationWindows.exe
O22 - Task: (disabled) \Microsoft\Windows\Location\WindowsActionDialog - C:\WINDOWS\System32\WindowsActionDialog.exe
O22 - Task: (disabled) \Microsoft\Windows\MUI\LPRemove - C:\WINDOWS\system32\lpremove.exe
O22 - Task: (disabled) \Microsoft\Windows\Maintenance\WinSAT - {A9A33436-678B-4C9C-A211-7CC38785E79D} - C:\WINDOWS\system32\WinSATAPI.dll
O22 - Task: (disabled) \Microsoft\Windows\Management\Provisioning\Cellular - C:\WINDOWS\system32\ProvTool.exe /turn 7 /source CellStateChangeTask
O22 - Task: (disabled) \Microsoft\Windows\Management\Provisioning\Logon - C:\WINDOWS\system32\ProvTool.exe /turn 5 /source LogonIdleTask
O22 - Task: (disabled) \Microsoft\Windows\Maps\MapsToastTask - {9885AEF2-BD9F-41E0-B15E-B3141395E803},$(Arg0);$(Arg1);$(Arg2);$(Arg3);$(Arg4);$(Arg5);$(Arg6);$(Arg7) - C:\WINDOWS\System32\mapstoasttask.dll
O22 - Task: (disabled) \Microsoft\Windows\Maps\MapsUpdateTask - {B9033E87-33CF-4D77-BC9B-895AFBBA72E4} - C:\WINDOWS\System32\mapsupdatetask.dll
O22 - Task: (disabled) \Microsoft\Windows\MemoryDiagnostic\ProcessMemoryDiagnosticEvents - {8168E74A-B39F-46D8-ADCD-7BED477B80A3},Event - C:\WINDOWS\System32\MemoryDiagnostic.dll
O22 - Task: (disabled) \Microsoft\Windows\MemoryDiagnostic\RunFullMemoryDiagnostic - {8168E74A-B39F-46D8-ADCD-7BED477B80A3},Time - C:\WINDOWS\System32\MemoryDiagnostic.dll
O22 - Task: (disabled) \Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser - C:\WINDOWS\System32\MbaeParserTask.exe
O22 - Task: (disabled) \Microsoft\Windows\MobilePC\HotStart - {06DA0625-9701-43DA-BFD7-FBEEA2180A1E} - (no file)
O22 - Task: (disabled) \Microsoft\Windows\Multimedia\SystemSoundsService - {2DEA658F-54C1-4227-AF9B-260AB5FC3543} - C:\WINDOWS\System32\PlaySndSrv.dll
O22 - Task: (disabled) \Microsoft\Windows\NetCfg\BindingWorkItemQueueHandler - {5AA199A0-1CED-43A5-9B85-3226086738A3} - (no file)
O22 - Task: (disabled) \Microsoft\Windows\NetTrace\GatherNetworkInfo - C:\WINDOWS\system32\gatherNetworkInfo.vbs
O22 - Task: (disabled) \Microsoft\Windows\PI\Secure-Boot-Update - {5014B7C8-934E-4262-9816-887FA745A6C4},SBServicing - C:\WINDOWS\system32\TpmTasks.dll
O22 - Task: (disabled) \Microsoft\Windows\PI\Sqm-Tasks - {5014B7C8-934E-4262-9816-887FA745A6C4},PiSqmTasks - C:\WINDOWS\system32\TpmTasks.dll
O22 - Task: (disabled) \Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor - {EA9155A3-8A39-40B4-8963-D3C761B18371} - (no file)
O22 - Task: (disabled) \Microsoft\Windows\Plug and Play\Device Install Group Policy - {60400283-B242-4FA8-8C25-CAF695B88209} - C:\Windows\System32\pnppolicy.dll
O22 - Task: (disabled) \Microsoft\Windows\Plug and Play\Device Install Reboot Required - {48794782-6A1F-47B9-BD52-1D5F95D49C1B} - C:\Windows\System32\pnpui.dll
O22 - Task: (disabled) \Microsoft\Windows\Plug and Play\Sysprep Generalize Drivers - C:\WINDOWS\System32\drvinst.exe 6
O22 - Task: (disabled) \Microsoft\Windows\Power Efficiency Diagnostics\AnalyzeSystem - {927EA2AF-1C54-43D5-825E-0074CE028EEE} - C:\WINDOWS\System32\energytask.dll
O22 - Task: (disabled) \Microsoft\Windows\Printing\EduPrintProv - C:\WINDOWS\system32\eduprintprov.exe
O22 - Task: (disabled) \Microsoft\Windows\PushToInstall\LoginCheck - C:\WINDOWS\system32\sc.exe start pushtoinstall login
O22 - Task: (disabled) \Microsoft\Windows\Ras\MobilityManager - {C463A0FC-794F-4FDF-9201-01938CEACAFA} - C:\WINDOWS\system32\rasmbmgr.dll
O22 - Task: (disabled) \Microsoft\Windows\RecoveryEnvironment\VerifyWinRE - {89D1D0C2-A3CF-490C-ABE3-B86CDE34B047},VerifyWinRE - C:\WINDOWS\System32\ReAgentTask.dll
O22 - Task: (disabled) \Microsoft\Windows\Registry\RegIdleBackup - {CA767AA8-9157-4604-B64B-40747123D5F2} - C:\WINDOWS\System32\regidle.dll
O22 - Task: (disabled) \Microsoft\Windows\RemoteAssistance\RemoteAssistanceTask - C:\WINDOWS\system32\RAServer.exe /offerraupdate
O22 - Task: (disabled) \Microsoft\Windows\SMB\UninstallSMB1ClientTask - C:\WINDOWS\system32\WindowsPowerShell\v1.0\powershell.exe -ExecutionPolicy Unrestricted -NonInteractive -NoProfile -WindowStyle Hidden "& C:\WINDOWS\system32\WindowsPowerShell\v1.0\Modules\SmbShare\DisableUnusedSmb1.ps1 -Scenario Client"
O22 - Task: (disabled) \Microsoft\Windows\SMB\UninstallSMB1ServerTask - C:\WINDOWS\system32\WindowsPowerShell\v1.0\powershell.exe -ExecutionPolicy Unrestricted -NonInteractive -NoProfile -WindowStyle Hidden "& C:\WINDOWS\system32\WindowsPowerShell\v1.0\Modules\SmbShare\DisableUnusedSmb1.ps1 -Scenario Server"
O22 - Task: (disabled) \Microsoft\Windows\Servicing\StartComponentCleanup - {752073A1-23F2-4396-85F0-8FDB879ED0ED} - C:\WINDOWS\servicing\TrustedInstaller.exe
O22 - Task: (disabled) \Microsoft\Windows\SettingSync\BackgroundUploadTask - {59B9640B-3F70-4D1C-B159-F26EEB8A4C87} - C:\WINDOWS\system32\SettingSyncCore.dll
O22 - Task: (disabled) \Microsoft\Windows\SettingSync\BackupTask - {60A4C78C-E2B8-4E6E-876F-DA203B02C05E} - C:\WINDOWS\system32\SettingSyncCore.dll
O22 - Task: (disabled) \Microsoft\Windows\SettingSync\NetworkStateChangeTask - {A4173A49-F373-4475-9A0F-2D615204DC20} - C:\WINDOWS\system32\SettingSyncCore.dll
O22 - Task: (disabled) \Microsoft\Windows\Setup\SetupCleanupTask - {7C83C056-1D0D-4C8E-A6B0-89E79C213559} - C:\WINDOWS\system32\oobe\SetupCleanupTask.dll
O22 - Task: (disabled) \Microsoft\Windows\SharedPC\Account Cleanup - C:\WINDOWS\System32\rundll32.exe C:\WINDOWS\System32\Windows.SharedPC.AccountManager.dll,StartMaintenance
O22 - Task: (disabled) \Microsoft\Windows\Shell\FamilySafetyMonitorToastTask - {D2CBF5F7-5702-440B-8D8F-8203034A6B82},$(Arg0) - C:\WINDOWS\System32\WpcRefreshTask.dll
O22 - Task: (disabled) \Microsoft\Windows\Shell\FamilySafetyRefreshTask - {C844C79D-AED8-4DCE-AB25-4D359BED84F8},$(Arg0) - C:\WINDOWS\System32\WpcRefreshTask.dll
O22 - Task: (disabled) \Microsoft\Windows\Shell\FamilySafetyUpload - {EBF00FCB-0769-4B81-9BEC-6C05514111AA},4 - (no file)
O22 - Task: (disabled) \Microsoft\Windows\Shell\IndexerAutomaticMaintenance - {3FBA60A6-7BF5-4868-A2CA-6623B3DFFEA6} - C:\WINDOWS\System32\srchadmin.dll
O22 - Task: (disabled) \Microsoft\Windows\SideShow\AutoWake - {E51DFD48-AA36-4B45-BB52-E831F02E8316} - (no file)
O22 - Task: (disabled) \Microsoft\Windows\SideShow\GadgetManager - {FF87090D-4A9A-4F47-879B-29A80C355D61},$(Arg0) - (no file)
O22 - Task: (disabled) \Microsoft\Windows\SideShow\SessionAgent - {45F26E9E-6199-477F-85DA-AF1EDFE067B1} - (no file)
O22 - Task: (disabled) \Microsoft\Windows\SideShow\SystemDataProviders - {7CCA6768-8373-4D28-8876-83E8B4E3A969} - (no file)
O22 - Task: (disabled) \Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task - {BF6C1E47-86EC-4194-9CE5-13C15DCB2001},IdleSyncMaintenance - (no file)
O22 - Task: (disabled) \Microsoft\Windows\SkyDrive\Routine Maintenance Task - {1B1F472E-3221-4826-97DB-2C2324D389AE},RoutineMaintenance - (no file)
O22 - Task: (disabled) \Microsoft\Windows\SoftwareProtectionPlatform\SvcRestartTaskLogon - {B1AEBB5D-EAD9-4476-B375-9C3ED9F32AFC},logon - C:\WINDOWS\System32\sppcext.dll
O22 - Task: (disabled) \Microsoft\Windows\SoftwareProtectionPlatform\SvcRestartTaskNetwork - {B1AEBB5D-EAD9-4476-B375-9C3ED9F32AFC},network - C:\WINDOWS\System32\sppcext.dll
O22 - Task: (disabled) \Microsoft\Windows\SpacePort\SpaceAgentTask - C:\WINDOWS\system32\SpaceAgent.exe
O22 - Task: (disabled) \Microsoft\Windows\SpacePort\SpaceManagerTask - C:\WINDOWS\system32\spaceman.exe /Work
O22 - Task: (disabled) \Microsoft\Windows\Speech\SpeechModelDownloadTask - C:\WINDOWS\system32\speech_onecore\common\SpeechModelDownload.exe
O22 - Task: (disabled) \Microsoft\Windows\Storage Tiers Management\Storage Tiers Management Initialization - {5C9AB547-345D-4175-9AF6-65133463A100} - C:\WINDOWS\system32\TieringEngineService.exe
O22 - Task: (disabled) \Microsoft\Windows\Storage Tiers Management\Storage Tiers Optimization - C:\WINDOWS\system32\defrag.exe -c -h -g -# -m 8 -i 13500
O22 - Task: (disabled) \Microsoft\Windows\Sysmain\HybridDriveCachePrepopulate - {17C82257-654E-4C47-8E23-DCA24EAA76A0} - C:\WINDOWS\system32\sysmain.dll
O22 - Task: (disabled) \Microsoft\Windows\Sysmain\HybridDriveCacheRebalance - {D44377B8-1F2F-4FAA-9C8E-6C4AD2928E47} - C:\WINDOWS\system32\sysmain.dll
O22 - Task: (disabled) \Microsoft\Windows\Sysmain\ResPriStaticDbSync - {297EE78C-BA95-4E94-81D3-D6E7F089C7B5} - C:\WINDOWS\system32\sysmain.dll
O22 - Task: (disabled) \Microsoft\Windows\SystemRestore\SR - C:\WINDOWS\system32\srtasks.exe ExecuteScheduledSPPCreation
O22 - Task: (disabled) \Microsoft\Windows\TPM\Tpm-HASCertRetr - {5014B7C8-934E-4262-9816-887FA745A6C4},HASCertRetr - C:\WINDOWS\system32\TpmTasks.dll
O22 - Task: (disabled) \Microsoft\Windows\TPM\Tpm-Maintenance - {5014B7C8-934E-4262-9816-887FA745A6C4},TpmTasks - C:\WINDOWS\system32\TpmTasks.dll
O22 - Task: (disabled) \Microsoft\Windows\Task Manager\Interactive - {855FEC53-D2E4-4999-9E87-3414E9CF0FF4},$(Arg0) - C:\WINDOWS\system32\wdc.dll
O22 - Task: (disabled) \Microsoft\Windows\TextServicesFramework\MsCtfMonitor - {01575CFE-9A55-4003-A5E1-F38D1EBDCBE1} - C:\WINDOWS\system32\MsCtfMonitor.dll
O22 - Task: (disabled) \Microsoft\Windows\Time Synchronization\ForceSynchronizeTime - {A31AD6C2-FF4C-43D4-8E90-7101023096F9},TimeSyncTask - C:\WINDOWS\system32\TimeSyncTask.dll
O22 - Task: (disabled) \Microsoft\Windows\Time Synchronization\SynchronizeTime - C:\WINDOWS\system32\sc.exe start w32time task_started
O22 - Task: (disabled) \Microsoft\Windows\Time Zone\SynchronizeTimeZone - C:\WINDOWS\system32\tzsync.exe
O22 - Task: (disabled) \Microsoft\Windows\UPnP\UPnPHostConfig - C:\WINDOWS\system32\sc.exe config upnphost start= auto
O22 - Task: (disabled) \Microsoft\Windows\USB\Usb-Notifications - {E05BE1C8-92A8-4757-B575-ACAECB4E6A40} - C:\Windows\System32\UsbTask.dll
O22 - Task: (disabled) \Microsoft\Windows\UpdateOrchestrator\Maintenance Install - C:\WINDOWS\system32\usoclient.exe StartInstall
O22 - Task: (disabled) \Microsoft\Windows\UpdateOrchestrator\MusUx_UpdateInterval - C:\WINDOWS\system32\MusNotification.exe Display
O22 - Task: (disabled) \Microsoft\Windows\UpdateOrchestrator\Reboot - C:\WINDOWS\system32\MusNotification.exe
O22 - Task: (disabled) \Microsoft\Windows\User Profile Service\HiveUploadTask - {BA677074-762C-444B-94C8-8C83F93F6605} - C:\WINDOWS\system32\profsvc.dll
O22 - Task: (disabled) \Microsoft\Windows\WDI\ResolutionHost - {900BE39D-6BE8-461A-BC4D-B0FA71F5ECB1} - C:\WINDOWS\System32\wdi.dll
O22 - Task: (disabled) \Microsoft\Windows\WOF\WIM-Hash-Management - {B7BFFB5A-EFA8-4D8C-BBDE-C8D5FAAF54A1},WimHashManagement - C:\WINDOWS\system32\WofTasks.dll
O22 - Task: (disabled) \Microsoft\Windows\WOF\WIM-Hash-Validation - {B7BFFB5A-EFA8-4D8C-BBDE-C8D5FAAF54A1},WimHashValidation - C:\WINDOWS\system32\WofTasks.dll
O22 - Task: (disabled) \Microsoft\Windows\WaaSMedic\PerformRemediation - C:\WINDOWS\System32\WaaSMedic.exe None
O22 - Task: (disabled) \Microsoft\Windows\Windows Filtering Platform\BfeOnServiceStartTypeChange - C:\WINDOWS\system32\rundll32.exe bfe.dll,BfeOnServiceStartTypeChange
O22 - Task: (disabled) \Microsoft\Windows\Windows Media Sharing\UpdateLibrary - C:\Program Files\Windows Media Player\wmpnscfg.exe
O22 - Task: (disabled) \Microsoft\Windows\WindowsColorSystem\Calibration Loader - {B210D694-C8DF-490D-9576-9E20CDBC20BD} - C:\Windows\System32\mscms.dll
O22 - Task: (disabled) \Microsoft\Windows\WindowsUpdate\AUFirmwareInstall - {EFF7F153-1C97-417A-B633-FEDE6683A939} - C:\WINDOWS\system32\wuaueng.dll
O22 - Task: (disabled) \Microsoft\Windows\WindowsUpdate\AUScheduledInstall - {F3B4E234-7A68-4E43-B813-E4BA55A065F6} - C:\WINDOWS\system32\wuaueng.dll
O22 - Task: (disabled) \Microsoft\Windows\WindowsUpdate\AUSessionConnect - {784E29F4-5EBE-4279-9948-1E8FE941646D} - C:\WINDOWS\system32\wuaueng.dll
O22 - Task: (disabled) \Microsoft\Windows\WindowsUpdate\Automatic App Update - {A6BA00FE-40E8-477C-B713-C64A14F18ADB} - C:\Windows\System32\wuautoappupdate.dll
O22 - Task: (disabled) \Microsoft\Windows\WindowsUpdate\Scheduled Start With Network - C:\WINDOWS\system32\sc.exe start wuauserv
O22 - Task: (disabled) \Microsoft\Windows\WindowsUpdate\sih - C:\WINDOWS\System32\sihclient.exe
O22 - Task: (disabled) \Microsoft\Windows\WindowsUpdate\sihboot - C:\WINDOWS\System32\sihclient.exe /boot
O22 - Task: (disabled) \Microsoft\Windows\Wininet\CacheTask - {0358B920-0AC7-461F-98F4-58E32CD89148} - C:\WINDOWS\system32\wininet.dll
O22 - Task: (disabled) \Microsoft\Windows\Work Folders\Work Folders Logon Synchronization - {97D47D56-3777-49FB-8E8F-90D7E30E1A1E},Logon - C:\Windows\System32\WorkFoldersShell.dll
O22 - Task: (disabled) \Microsoft\Windows\Work Folders\Work Folders Maintenance Work - {63260BCE-A3FB-4A34-AA51-D4D8E877B62B} - C:\Windows\System32\WorkFoldersShell.dll
O22 - Task: (disabled) \Microsoft\Windows\Workplace Join\Automatic-Device-Join - C:\WINDOWS\System32\dsregcmd.exe
O22 - Task: (disabled) \Microsoft\Windows\Workplace Join\Automatic-Workplace-Join - C:\WINDOWS\System32\AutoWorkplace.exe join (file missing)
O22 - Task: (disabled) \Microsoft\Windows\Workplace Join\Recovery-Check - C:\WINDOWS\System32\dsregcmd.exe /checkrecovery
O22 - Task: (disabled) \Microsoft\XblGameSave\XblGameSaveTask - C:\WINDOWS\System32\XblGameSaveTask.exe standby
O22 - Task: (disabled) \Microsoft\XblGameSave\XblGameSaveTaskLogon - C:\WINDOWS\System32\XblGameSaveTask.exe logon
O22 - Task: (disabled) {31DDBD37-5DB7-4030-8064-10B0CAA806C3} - C:\Program Files\COMODO\COMODO Internet Security\cistray.exe
O22 - Task: User_Feed_Synchronization-{378B9684-447C-4B1D-8F30-A43196F33206} - C:\WINDOWS\system32\msfeedssync.exe sync
O22 - Task: User_Feed_Synchronization-{4A1B2899-EA36-407B-8ADB-E49F6887C024} - C:\WINDOWS\system32\msfeedssync.exe sync
O22 - Task: \Microsoft\Windows\.NET Framework\.NET Framework NGEN v4.0.30319 - {84F0FAE1-C27B-4F6F-807B-28CF6F96287D},/RuntimeWide - C:\Windows\System32\mscoree.dll
O22 - Task: \Microsoft\Windows\.NET Framework\.NET Framework NGEN v4.0.30319 64 - {429BC048-379E-45E0-80E4-EB1977941B5C},/RuntimeWide - C:\Windows\System32\mscoree.dll
O22 - Task: \Microsoft\Windows\PushToInstall\Registration - C:\WINDOWS\system32\sc.exe start pushtoinstall registration
O22 - Task: \Microsoft\Windows\RetailDemo\CleanupOfflineContent - {61f77d5e-afe9-400b-a5e6-e9e80fc8e601} - C:\Windows\System32\RDXTaskFactory.dll
O22 - Task: \Microsoft\Windows\SoftwareProtectionPlatform\SvcRestartTask - {B1AEBB5D-EAD9-4476-B375-9C3ED9F32AFC},timer - C:\WINDOWS\System32\sppcext.dll
O22 - Task: \Microsoft\Windows\Sysmain\WsSwapAssessmentTask - C:\WINDOWS\system32\rundll32.exe sysmain.dll,PfSvWsSwapAssessmentTask
O22 - Task: \Microsoft\Windows\UpdateOrchestrator\Schedule Scan - C:\WINDOWS\system32\usoclient.exe StartScan
O22 - Task: \Microsoft\Windows\UpdateOrchestrator\USO_Broker_Display - C:\WINDOWS\system32\MusNotification.exe Display
O22 - Task: \Microsoft\Windows\UpdateOrchestrator\UpdateAssistant - C:\WINDOWS\UpdateAssistant\UpdateAssistant.exe /ClientID Win10Upgrade:VNL:EosWu:{} (Microsoft)
O22 - Task: \Microsoft\Windows\UpdateOrchestrator\UpdateAssistantCalendarRun - C:\WINDOWS\UpdateAssistant\UpdateAssistant.exe /ClientID Win10Upgrade:VNL:EosWu:{} /CalendarRun (Microsoft)
O22 - Task: \Microsoft\Windows\WindowsUpdate\Scheduled Start - C:\WINDOWS\system32\sc.exe start wuauserv
O23 - Service R2: Adobe Genuine Software Integrity Service - (AGSService) - C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
O23 - Service R2: Apple Mobile Device Service - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service R2: Arbeitsstationsdienst - (LanmanWorkstation) - C:\WINDOWS\System32\svchost.exe; "ServiceDll" = C:\WINDOWS\System32\wkssvc.dll
O23 - Service R2: Aufgabenplanung - (Schedule) - C:\WINDOWS\system32\svchost.exe; "ServiceDll" = C:\WINDOWS\system32\schedsvc.dll
O23 - Service R2: Automatische WLAN-Konfiguration - (WlanSvc) - C:\WINDOWS\system32\svchost.exe; "ServiceDll" = C:\WINDOWS\System32\wlansvc.dll
O23 - Service R2: Basisfiltermodul - (BFE) - C:\WINDOWS\system32\svchost.exe; "ServiceDll" = C:\WINDOWS\System32\bfe.dll
O23 - Service R2: Benachrichtigungsdienst für Systemereignisse - (SENS) - C:\WINDOWS\system32\svchost.exe; "ServiceDll" = C:\WINDOWS\System32\sens.dll
O23 - Service R2: Benutzer-Manager - (UserManager) - C:\WINDOWS\system32\svchost.exe; "ServiceDll" = C:\WINDOWS\System32\usermgr.dll
O23 - Service R2: Benutzerdienst für die Plattform für verbundene Geräte - (CDPUserSvc) - C:\WINDOWS\system32\svchost.exe; "ServiceDll" = C:\WINDOWS\System32\CDPUserSvc.dll
O23 - Service R2: Benutzererfahrung und Telemetrie im verbundenen Modus - (DiagTrack) - C:\WINDOWS\System32\svchost.exe; "ServiceDll" = C:\WINDOWS\system32\diagtrack.dll
O23 - Service R2: Benutzerprofildienst - (ProfSvc) - C:\WINDOWS\system32\svchost.exe; "ServiceDll" = C:\WINDOWS\system32\profsvc.dll
O23 - Service R2: BrcmSetSecurity - C:\Program Files\Intel Corporation\Intel WiDi\BrcmSetSecurity.exe
O23 - Service R2: COM+-Ereignissystem - (EventSystem) - C:\WINDOWS\system32\svchost.exe; "ServiceDll" = C:\WINDOWS\system32\es.dll
O23 - Service R2: COMODO Internet Security Helper Service - (CmdAgent) - C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
O23 - Service R2: DCOM-Server-Prozessstart - (DcomLaunch) - C:\WINDOWS\system32\svchost.exe; "ServiceDll" = C:\WINDOWS\system32\rpcss.dll
O23 - Service R2: DHCP-Client - (Dhcp) - C:\WINDOWS\system32\svchost.exe; "ServiceDll" = C:\WINDOWS\system32\dhcpcore.dll
O23 - Service R2: DNS-Client - (Dnscache) - C:\WINDOWS\system32\svchost.exe; "ServiceDll" = C:\WINDOWS\System32\dnsrslvr.dll
O23 - Service R2: Datennutzung - (DusmSvc) - C:\WINDOWS\System32\svchost.exe; "ServiceDll" = C:\WINDOWS\System32\dusmsvc.dll
O23 - Service R2: Designs - (Themes) - C:\WINDOWS\System32\svchost.exe; "ServiceDll" = C:\WINDOWS\system32\themeservice.dll
O23 - Service R2: Diagnoserichtliniendienst - (DPS) - C:\WINDOWS\System32\svchost.exe; "ServiceDll" = C:\WINDOWS\system32\dps.dll
O23 - Service R2: Dienst "Bonjour" - (Bonjour Service) - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service R2: Dienst für Bildschirmtastatur und Schreibbereich - (TabletInputService) - C:\WINDOWS\System32\svchost.exe; "ServiceDll" = C:\WINDOWS\System32\TabSvc.dll
O23 - Service R2: Druckwarteschlange - (Spooler) - C:\WINDOWS\System32\spoolsv.exe
O23 - Service R2: Epson Scanner Service - (EpsonScanSvc) - C:\WINDOWS\system32\EscSvc64.exe
O23 - Service R2: Gerätezuordnungsdienst - (DeviceAssociationService) - C:\WINDOWS\system32\svchost.exe; "ServiceDll" = C:\WINDOWS\system32\das.dll
O23 - Service R2: Gruppenrichtlinienclient - (gpsvc) - C:\WINDOWS\system32\svchost.exe; "ServiceDll" = C:\WINDOWS\System32\gpsvc.dll
O23 - Service R2: IP-Hilfsdienst - (iphlpsvc) - C:\WINDOWS\System32\svchost.exe; "ServiceDll" = C:\WINDOWS\System32\iphlpsvc.dll
O23 - Service R2: Infrastrukturdienst für Hintergrundaufgaben - (BrokerInfrastructure) - C:\WINDOWS\system32\svchost.exe; "ServiceDll" = C:\WINDOWS\System32\bisrv.dll
O23 - Service R2: Intel Bluetooth Service - (ibtsiva) - C:\WINDOWS\system32\ibtsiva.exe
O23 - Service R2: Intel(R) Capability Licensing Service Interface - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service R2: Intel(R) Dynamic Application Loader Host Interface Service - (jhi_service) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service R2: Intel(R) HD Graphics Control Panel Service - (igfxCUIService2.0.0.0) - C:\WINDOWS\system32\igfxCUIService.exe
O23 - Service R2: Intel(R) ME Service - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
O23 - Service R2: Intel(R) Management and Security Application Local Management Service - (LMS) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service R2: Intel(R) Rapid Storage Technology - (IAStorDataMgrSvc) - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service R2: Intel(R) Smart Connect Technology Agent - (ISCTAgent) - C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe
O23 - Service R2: Intel(R) Wireless Bluetooth(R) 4.0 Radio Management - C:\Program Files (x86)\Intel\Bluetooth\ibtrksrv.exe
O23 - Service R2: Kryptografiedienste - (CryptSvc) - C:\WINDOWS\system32\svchost.exe; "ServiceDll" = C:\WINDOWS\system32\cryptsvc.dll
O23 - Service R2: Lokaler Sitzungs-Manager - (LSM) - C:\WINDOWS\system32\svchost.exe; "ServiceDll" = C:\WINDOWS\System32\lsm.dll
O23 - Service R2: Manager für heruntergeladene Karten - (MapsBroker) - C:\WINDOWS\System32\svchost.exe; "ServiceDll" = C:\WINDOWS\System32\moshost.dll
O23 - Service R2: NLA (Network Location Awareness) - (NlaSvc) - C:\WINDOWS\System32\svchost.exe; "ServiceDll" = C:\WINDOWS\System32\nlasvc.dll
O23 - Service R2: NVIDIA Display Container LS - (NVDisplay.ContainerLocalSystem) - C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
O23 - Service R2: NVIDIA Network Service - (NvNetworkService) - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service R2: NVIDIA Streamer Service - (NvStreamSvc) - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
O23 - Service R2: Netzwerkspeicher-Schnittstellendienst - (nsi) - C:\WINDOWS\system32\svchost.exe; "ServiceDll" = C:\WINDOWS\System32\nsisvc.dll
O23 - Service R2: PDF24 - D:\Eigene Programme\PDF24\pdf24.exe
O23 - Service R2: Plattformdienst für verbundene Geräte - (CDPSvc) - C:\WINDOWS\system32\svchost.exe; "ServiceDll" = C:\WINDOWS\System32\CDPSvc.dll
O23 - Service R2: RAS-Verbindungsverwaltung - (RasMan) - C:\WINDOWS\System32\svchost.exe; "ServiceDll" = C:\WINDOWS\System32\rasmans.dll
O23 - Service R2: RPC-Endpunktzuordnung - (RpcEptMapper) - C:\WINDOWS\system32\svchost.exe; "ServiceDll" = C:\WINDOWS\System32\RpcEpMap.dll
O23 - Service R2: Remoteprozeduraufruf (RPC) - (RpcSs) - C:\WINDOWS\system32\svchost.exe; "ServiceDll" = C:\WINDOWS\system32\rpcss.dll
O23 - Service R2: Server - (LanmanServer) - C:\WINDOWS\system32\svchost.exe; "ServiceDll" = C:\WINDOWS\system32\srvsvc.dll
O23 - Service R2: Shellhardwareerkennung - (ShellHWDetection) - C:\WINDOWS\System32\svchost.exe; "ServiceDll" = C:\WINDOWS\System32\shsvcs.dll
O23 - Service R2: Sicherheitscenter - (wscsvc) - C:\WINDOWS\System32\svchost.exe; "ServiceDll" = C:\WINDOWS\System32\wscsvc.dll
O23 - Service R2: Stromversorgung - (Power) - C:\WINDOWS\system32\svchost.exe; "ServiceDll" = C:\WINDOWS\system32\umpo.dll
O23 - Service R2: Superfetch - (SysMain) - C:\WINDOWS\system32\svchost.exe; "ServiceDll" = C:\WINDOWS\system32\sysmain.dll
O23 - Service R2: SynTPEnh Caller Service - (SynTPEnhService) - C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
O23 - Service R2: Synchronisierungshost - (OneSyncSvc) - C:\WINDOWS\system32\svchost.exe; "ServiceDll" = C:\WINDOWS\System32\APHostService.dll
O23 - Service R2: Systemereignissebroker - (SystemEventsBroker) - C:\WINDOWS\system32\svchost.exe; "ServiceDll" = C:\WINDOWS\System32\SystemEventsBrokerServer.dll
O23 - Service R2: UI Assistant Service - D:\1&1\1&1 Surf-Stick\AssistantServices.exe
O23 - Service R2: Windows Defender Firewall - (MpsSvc) - C:\WINDOWS\system32\svchost.exe; "ServiceDll" = C:\WINDOWS\system32\mpssvc.dll
O23 - Service R2: Windows Defender Security Center Service - (SecurityHealthService) - C:\WINDOWS\system32\SecurityHealthService.exe
O23 - Service R2: Windows Media Player-Netzwerkfreigabedienst - (WMPNetworkSvc) - C:\Program Files\Windows Media Player\wmpnetwk.exe
O23 - Service R2: Windows Search - (WSearch) - C:\WINDOWS\system32\SearchIndexer.exe
O23 - Service R2: Windows-Audio - (Audiosrv) - C:\WINDOWS\System32\svchost.exe; "ServiceDll" = C:\WINDOWS\System32\Audiosrv.dll
O23 - Service R2: Windows-Audio-Endpunkterstellung - (AudioEndpointBuilder) - C:\WINDOWS\System32\svchost.exe; "ServiceDll" = C:\WINDOWS\System32\AudioEndpointBuilder.dll
O23 - Service R2: Windows-Dienst für Schriftartencache - (FontCache) - C:\WINDOWS\system32\svchost.exe; "ServiceDll" = C:\WINDOWS\system32\FntCache.dll
O23 - Service R2: Windows-Pushbenachrichtigungs-Benutzerdienst - (WpnUserService) - C:\WINDOWS\system32\svchost.exe; "ServiceDll" = C:\WINDOWS\System32\WpnUserService.dll
O23 - Service R2: Windows-Pushbenachrichtigungssystemdienst - (WpnService) - C:\WINDOWS\system32\svchost.exe; "ServiceDll" = C:\WINDOWS\system32\WpnService.dll
O23 - Service R2: Windows-Verbindungs-Manager - (Wcmsvc) - C:\WINDOWS\system32\svchost.exe; "ServiceDll" = C:\WINDOWS\System32\wcmsvc.dll
O23 - Service R2: Windows-Verwaltungsinstrumentation - (Winmgmt) - C:\WINDOWS\system32\svchost.exe; "ServiceDll" = C:\WINDOWS\system32\wbem\WMIsvc.dll
O23 - Service R2: isesrv - C:\Program Files (x86)\COMODO\Internet Security Essentials\isesrv.exe
O23 - Service R2: Überwachung verteilter Verknüpfungen (Client) - (TrkWks) - C:\WINDOWS\System32\svchost.exe; "ServiceDll" = C:\WINDOWS\System32\trkwks.dll
O23 - Service R3: ActiveX-Installer (AxInstSV) - (AxInstSV) - C:\WINDOWS\system32\svchost.exe; "ServiceDll" = C:\WINDOWS\System32\AxInstSV.dll
O23 - Service R3: Adobe Flash Player Update Service - (AdobeFlashPlayerUpdateSvc) - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service R3: AllJoyn-Routerdienst - (AJRouter) - C:\WINDOWS\system32\svchost.exe; "ServiceDll" = C:\WINDOWS\System32\AJRouter.dll
O23 - Service R3: Anmelde-Assistent für Microsoft-Konten - (wlidsvc) - C:\WINDOWS\system32\svchost.exe; "ServiceDll" = C:\WINDOWS\system32\wlidsvc.dll
O23 - Service R3: Anmeldedienst - (Netlogon) - C:\WINDOWS\system32\lsass.exe; "ServiceDll" = C:\WINDOWS\system32\netlogon.dll
O23 - Service R3: Anmeldeinformationsverwaltung - (VaultSvc) - C:\WINDOWS\system32\lsass.exe; "ServiceDll" = C:\Windows\System32\vaultsvc.dll
O23 - Service R3: Anschlussumleitung für Remotedesktopdienst im Benutzermodus - (UmRdpService) - C:\WINDOWS\System32\svchost.exe; "ServiceDll" = C:\WINDOWS\System32\umrdp.dll
O23 - Service R3: Anwendungsidentität - (AppIDSvc) - C:\WINDOWS\system32\svchost.exe; "ServiceDll" = C:\WINDOWS\System32\appidsvc.dll
O23 - Service R3: Anwendungsinformationen - (Appinfo) - C:\WINDOWS\system32\svchost.exe; "ServiceDll" = C:\WINDOWS\System32\appinfo.dll
O23 - Service R3: App-Vorbereitung - (AppReadiness) - C:\WINDOWS\System32\svchost.exe; "ServiceDll" = C:\WINDOWS\system32\AppReadiness.dll
O23 - Service R3: AppX-Bereitstellungsdienst (AppXSVC) - (AppXSvc) - C:\WINDOWS\system32\svchost.exe; "ServiceDll" = C:\WINDOWS\system32\appxdeploymentserver.dll
O23 - Service R3: Arbeitsordner - (workfolderssvc) - C:\WINDOWS\System32\svchost.exe; "ServiceDll" = C:\WINDOWS\system32\workfolderssvc.dll
O23 - Service R3: Autom. Setup von Geräten, die mit dem Netzwerk verbunden sind - (NcdAutoSetup) - C:\WINDOWS\System32\svchost.exe; "ServiceDll" = C:\WINDOWS\System32\NcdAutoSetup.dll
O23 - Service R3: Automatische Konfiguration (verkabelt) - (dot3svc) - C:\WINDOWS\system32\svchost.exe; "ServiceDll" = C:\WINDOWS\System32\dot3svc.dll
O23 - Service R3: Benutzerdatenspeicher - (UnistoreSvc) - C:\WINDOWS\System32\svchost.exe; "ServiceDll" = C:\WINDOWS\System32\unistore.dll
O23 - Service R3: Benutzerdatenzugriff - (UserDataSvc) - C:\WINDOWS\system32\svchost.exe; "ServiceDll" = C:\WINDOWS\System32\userdataservice.dll
O23 - Service R3: BitLocker-Laufwerkverschlüsselungsdienst - (BDESVC) - C:\WINDOWS\System32\svchost.exe; "ServiceDll" = C:\WINDOWS\System32\bdesvc.dll
O23 - Service R3: Blockebenen-Sicherungsmodul - (wbengine) - C:\WINDOWS\system32\wbengine.exe
O23 - Service R3: Bluetooth-Freisprechdienst - (BthHFSrv) - C:\WINDOWS\System32\svchost.exe; "ServiceDll" = C:\WINDOWS\System32\BthHFSrv.dll
O23 - Service R3: Bluetooth-Unterstützungsdienst - (bthserv) - C:\WINDOWS\system32\svchost.exe; "ServiceDll" = C:\WINDOWS\system32\bthserv.dll
O23 - Service R3: Broker für DevQuery-Hintergrundermittlung - (DevQueryBroker) - C:\WINDOWS\system32\svchost.exe; "ServiceDll" = C:\WINDOWS\system32\DevQueryBroker.dll
O23 - Service R3: CNG-Schlüsselisolation - (KeyIso) - C:\WINDOWS\system32\lsass.exe; "ServiceDll" = C:\WINDOWS\system32\keyiso.dll
O23 - Service R3: COMODO Virtual Service Manager - (cmdvirth) - C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe
O23 - Service R3: Computerbrowser - (Browser) - C:\WINDOWS\System32\svchost.exe; "ServiceDll" = C:\WINDOWS\System32\browser.dll
O23 - Service R3: Dateiversionsverlauf-Dienst - (fhsvc) - C:\WINDOWS\system32\svchost.exe; "ServiceDll" = C:\WINDOWS\system32\fhsvc.dll
O23 - Service R3: Datenfreigabedienst - (DsSvc) - C:\WINDOWS\System32\svchost.exe; "ServiceDll" = C:\WINDOWS\System32\DsSvc.dll
O23 - Service R3: DevicesFlow - (DevicesFlowUserSvc) - C:\WINDOWS\system32\svchost.exe; "ServiceDll" = C:\WINDOWS\System32\DevicesFlowBroker.dll
O23 - Service R3: Diagnosediensthost - (WdiServiceHost) - C:\WINDOWS\System32\svchost.exe; "ServiceDll" = C:\WINDOWS\system32\wdi.dll
O23 - Service R3: Diagnosesystemhost - (WdiSystemHost) - C:\WINDOWS\System32\svchost.exe; "ServiceDll" = C:\WINDOWS\system32\wdi.dll
O23 - Service R3: Diagnostic Execution Service - (diagsvc) - C:\WINDOWS\System32\svchost.exe; "ServiceDll" = C:\WINDOWS\system32\DiagSvc.dll
O23 - Service R3: Dienst "Assistent für lokale Profile" - (wlpasvc) - C:\WINDOWS\system32\svchost.exe; "ServiceDll" = C:\WINDOWS\System32\lpasvc.dll
O23 - Service R3: Dienst für Einzelhandelsdemos - (RetailDemo) - C:\WINDOWS\System32\svchost.exe; "ServiceDll" = C:\WINDOWS\system32\RDXService.dll
O23 - Service R3: Dienst für räumliche Daten - (SharedRealitySvc) - C:\WINDOWS\system32\svchost.exe; "ServiceDll" = C:\WINDOWS\System32\SharedRealitySvc.dll
O23 - Service R3: Distributed Transaction Coordinator - (MSDTC) - C:\WINDOWS\System32\msdtc.exe
O23 - Service R3: Echtzeit-Datenträgerprüfung - (svsvc) - C:\WINDOWS\system32\svchost.exe; "ServiceDll" = C:\WINDOWS\system32\svsvc.dll
O23 - Service R3: Eingabegerätedienst - (hidserv) - C:\WINDOWS\system32\svchost.exe; "ServiceDll" = C:\WINDOWS\system32\hidserv.dll
O23 - Service R3: Eingebetteter Modus - (embeddedmode) - C:\WINDOWS\System32\svchost.exe; "ServiceDll" = C:\WINDOWS\System32\embeddedmodesvc.dll
O23 - Service R3: Enumeratordienst für tragbare Geräte - (WPDBusEnum) - C:\WINDOWS\system32\svchost.exe; "ServiceDll" = C:\WINDOWS\system32\wpdbusenum.dll
O23 - Service R3: Ereignisse zum Abrufen von Standbildern - (WiaRpc) - C:\WINDOWS\system32\svchost.exe; "ServiceDll" = C:\WINDOWS\System32\wiarpc.dll
O23 - Service R3: Erkennung interaktiver Dienste - (UI0Detect) - C:\WINDOWS\system32\UI0Detect.exe
O23 - Service R3: Extensible Authentication-Protokoll - (Eaphost) - C:\WINDOWS\System32\svchost.exe; "ServiceDll" = C:\WINDOWS\System32\eapsvc.dll
O23 - Service R3: Fax - C:\WINDOWS\system32\fxssvc.exe
O23 - Service R3: Funktionssuchanbieter-Host - (fdPHost) - C:\WINDOWS\system32\svchost.exe; "ServiceDll" = C:\WINDOWS\system32\fdPHost.dll
O23 - Service R3: Funktionssuche-Ressourcenveröffentlichung - (FDResPub) - C:\WINDOWS\system32\svchost.exe; "ServiceDll" = C:\WINDOWS\system32\fdrespub.dll
O23 - Service R3: Funkverwaltungsdienst - (RmSvc) - C:\WINDOWS\System32\svchost.exe; "ServiceDll" = C:\WINDOWS\System32\RMapi.dll
O23 - Service R3: Gatewaydienst auf Anwendungsebene - (ALG) - C:\WINDOWS\System32\alg.exe
O23 - Service R3: Geolocation-Dienst - (lfsvc) - C:\WINDOWS\system32\svchost.exe; "ServiceDll" = C:\WINDOWS\System32\lfsvc.dll
O23 - Service R3: Geräteinstallations-Manager - (DsmSvc) - C:\WINDOWS\system32\svchost.exe; "ServiceDll" = C:\WINDOWS\System32\DeviceSetupManager.dll
O23 - Service R3: Geräteinstallationsdienst - (DeviceInstall) - C:\WINDOWS\system32\svchost.exe; "ServiceDll" = C:\WINDOWS\system32\umpnpmgr.dll
O23 - Service R3: GraphicsPerfSvc - C:\WINDOWS\System32\svchost.exe; "ServiceDll" = C:\WINDOWS\System32\GraphicsPerfSvc.dll
O23 - Service R3: Heimnetzgruppen-Anbieter - (HomeGroupProvider) - C:\WINDOWS\System32\svchost.exe; "ServiceDll" = C:\WINDOWS\system32\provsvc.dll
O23 - Service R3: Heimnetzgruppen-Listener - (HomeGroupListener) - C:\WINDOWS\System32\svchost.exe; "ServiceDll" = C:\WINDOWS\system32\ListSvc.dll
O23 - Service R3: Hostdienst für Windows Encryption Provider - (WEPHOSTSVC) - C:\WINDOWS\system32\svchost.exe; "ServiceDll" = C:\WINDOWS\system32\wephostsvc.dll
O23 - Service R3: Hyper-V PowerShell Direct-Dienst - (vmicvmsession) - C:\WINDOWS\system32\svchost.exe; "ServiceDll" = C:\WINDOWS\System32\icsvc.dll
O23 - Service R3: Hyper-V-Datenaustauschdienst - (vmickvpexchange) - C:\WINDOWS\system32\svchost.exe; "ServiceDll" = C:\WINDOWS\System32\icsvc.dll
O23 - Service R3: Hyper-V-Dienst für Zeitsynchronisierung - (vmictimesync) - C:\WINDOWS\system32\svchost.exe; "ServiceDll" = C:\WINDOWS\System32\icsvc.dll
O23 - Service R3: Hyper-V-Dienst zum Herunterfahren des Gasts - (vmicshutdown) - C:\WINDOWS\system32\svchost.exe; "ServiceDll" = C:\WINDOWS\System32\icsvc.dll
O23 - Service R3: Hyper-V-Gastdienstschnittstelle - (vmicguestinterface) - C:\WINDOWS\system32\svchost.exe; "ServiceDll" = C:\WINDOWS\System32\icsvc.dll
O23 - Service R3: Hyper-V-Remotedesktopvirtualisierungsdienst - (vmicrdv) - C:\WINDOWS\system32\svchost.exe; "ServiceDll" = C:\WINDOWS\System32\icsvcext.dll
O23 - Service R3: Hyper-V-Taktdienst - (vmicheartbeat) - C:\WINDOWS\system32\svchost.exe; "ServiceDll" = C:\WINDOWS\System32\icsvc.dll
O23 - Service R3: Hyper-V-Volumeschattenkopie-Anforderer - (vmicvss) - C:\WINDOWS\system32\svchost.exe; "ServiceDll" = C:\WINDOWS\System32\icsvcext.dll
O23 - Service R3: IKE- und AuthIP IPsec-Schlüsselerstellungsmodule - (IKEEXT) - C:\WINDOWS\system32\svchost.exe; "ServiceDll" = C:\WINDOWS\System32\ikeext.dll
O23 - Service R3: IPsec-Richtlinien-Agent - (PolicyAgent) - C:\WINDOWS\system32\svchost.exe; "ServiceDll" = C:\WINDOWS\System32\ipsecsvc.dll
O23 - Service R3: Infrarotüberwachungsdienst - (irmon) - C:\WINDOWS\system32\svchost.exe; "ServiceDll" = C:\WINDOWS\System32\irmon.dll
O23 - Service R3: Intel(R) Capability Licensing Service TCP IP Interface - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service R3: Intel(R) Content Protection HECI Service - (cphs) - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service R3: Intel(R) Update Manager - (iumsvc) - C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe
O23 - Service R3: Intelligenter Hintergrundübertragungsdienst - (BITS) - C:\WINDOWS\System32\svchost.exe; "ServiceDll" = C:\WINDOWS\System32\qmgr.dll
O23 - Service R3: Kacheldaten-Modellserver - (tiledatamodelsvc) - C:\WINDOWS\system32\svchost.exe; "ServiceDll" = C:\WINDOWS\system32\tileobjserver.dll
O23 - Service R3: Konfiguration für Remotedesktops - (SessionEnv) - C:\WINDOWS\System32\svchost.exe; "ServiceDll" = C:\WINDOWS\system32\sessenv.dll
O23 - Service R3: Konfigurationsdienst für die IP-Übersetzung - (IpxlatCfgSvc) - C:\WINDOWS\System32\svchost.exe; "ServiceDll" = C:\WINDOWS\System32\IpxlatCfg.dll
O23 - Service R3: Kontaktdaten - (PimIndexMaintenanceSvc) - C:\WINDOWS\system32\svchost.exe; "ServiceDll" = C:\WINDOWS\System32\PimIndexMaintenance.dll
O23 - Service R3: KtmRm für Distributed Transaction Coordinator - (KtmRm) - C:\WINDOWS\System32\svchost.exe; "ServiceDll" = C:\WINDOWS\system32\msdtckrm.dll
O23 - Service R3: Laufwerke optimieren - (defragsvc) - C:\WINDOWS\system32\svchost.exe; "ServiceDll" = C:\WINDOWS\System32\defragsvc.dll
O23 - Service R3: Leistungsindikator-DLL-Host - (PerfHost) - C:\WINDOWS\SysWow64\perfhost.exe
O23 - Service R3: Leistungsprotokolle und -warnungen - (pla) - C:\WINDOWS\System32\svchost.exe; "ServiceDll" = C:\WINDOWS\system32\pla.dll
O23 - Service R3: Manager-Dienst für den Funktionszugriff - (camsvc) - C:\WINDOWS\system32\svchost.exe; "ServiceDll" = C:\WINDOWS\system32\CapabilityAccessManager.dll
O23 - Service R3: MessagingService - C:\WINDOWS\system32\svchost.exe; "ServiceDll" = C:\WINDOWS\System32\MessagingService.dll
O23 - Service R3: Microsoft Passport - (NgcSvc) - C:\WINDOWS\system32\svchost.exe; "ServiceDll" = C:\WINDOWS\system32\ngcsvc.dll
O23 - Service R3: Microsoft Passport-Container - (NgcCtnrSvc) - C:\WINDOWS\system32\svchost.exe; "ServiceDll" = C:\WINDOWS\System32\NgcCtnrSvc.dll
O23 - Service R3: Microsoft Windows SMS-Routerdienst. - (SmsRouter) - C:\WINDOWS\system32\svchost.exe; "ServiceDll" = C:\WINDOWS\system32\SmsRouterSvc.dll
O23 - Service R3: Microsoft iSCSI-Initiator-Dienst - (MSiSCSI) - C:\WINDOWS\system32\svchost.exe; "ServiceDll" = C:\WINDOWS\system32\iscsiexe.dll
O23 - Service R3: Microsoft-SMP für Speicherplätze - (smphost) - C:\WINDOWS\System32\svchost.exe; "ServiceDll" = C:\WINDOWS\System32\smphost.dll
O23 - Service R3: Microsoft-Softwareschattenkopie-Anbieter - (swprv) - C:\WINDOWS\System32\svchost.exe; "ServiceDll" = C:\WINDOWS\System32\swprv.dll
O23 - Service R3: Mozilla Maintenance Service - (MozillaMaintenance) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service R3: Natürliche Authentifizierung - (NaturalAuthentication) - C:\WINDOWS\system32\svchost.exe; "ServiceDll" = C:\WINDOWS\System32\NaturalAuth.dll
O23 - Service R3: Netzwerkeinrichtungsdienst - (NetSetupSvc) - C:\WINDOWS\System32\svchost.exe; "ServiceDll" = C:\WINDOWS\System32\NetSetupSvc.dll
O23 - Service R3: Netzwerkkonnektivitäts-Assistent - (NcaSvc) - C:\WINDOWS\System32\svchost.exe; "ServiceDll" = C:\WINDOWS\System32\ncasvc.dll
O23 - Service R3: Netzwerklistendienst - (netprofm) - C:\WINDOWS\System32\svchost.exe; "ServiceDll" = C:\WINDOWS\System32\netprofmsvc.dll
O23 - Service R3: Netzwerkverbindungen - (Netman) - C:\WINDOWS\System32\svchost.exe; "ServiceDll" = C:\WINDOWS\System32\netman.dll
O23 - Service R3: Netzwerkverbindungsbroker - (NcbService) - C:\WINDOWS\System32\svchost.exe; "ServiceDll" = C:\WINDOWS\System32\ncbservice.dll
O23 - Service R3: PNRP-Computernamenveröffentlichungs-Dienst - (PNRPAutoReg) - C:\WINDOWS\System32\svchost.exe; "ServiceDll" = C:\WINDOWS\system32\pnrpauto.dll
O23 - Service R3: Peer Name Resolution-Protokoll - (PNRPsvc) - C:\WINDOWS\System32\svchost.exe; "ServiceDll" = C:\WINDOWS\system32\pnrpsvc.dll
O23 - Service R3: Peernetzwerk-Gruppenzuordnung - (p2psvc) - C:\WINDOWS\System32\svchost.exe; "ServiceDll" = C:\WINDOWS\system32\p2psvc.dll
O23 - Service R3: Peernetzwerkidentitäts-Manager - (p2pimsvc) - C:\WINDOWS\System32\svchost.exe; "ServiceDll" = C:\WINDOWS\system32\pnrpsvc.dll
O23 - Service R3: Plug & Play - (PlugPlay) - C:\WINDOWS\system32\svchost.exe; "ServiceDll" = C:\WINDOWS\system32\umpnpmgr.dll
O23 - Service R3: PrintWorkflow - (PrintWorkflowUserSvc) - C:\WINDOWS\system32\svchost.exe; "ServiceDll" = C:\WINDOWS\System32\PrintWorkflowService.dll
O23 - Service R3: Printer Extensions and Notifications - (PrintNotify) - C:\WINDOWS\system32\svchost.exe; "ServiceDll" = C:\WINDOWS\system32\spool\drivers\x64\3\PrintConfig.dll
O23 - Service R3: RPC-Locator - (RpcLocator) - C:\WINDOWS\system32\locator.exe
O23 - Service R3: Registrierungsdienst für die Geräteverwaltung - (DmEnrollmentSvc) - C:\WINDOWS\system32\svchost.exe; "ServiceDll" = C:\WINDOWS\system32\Windows.Internal.Management.dll
O23 - Service R3: Remotedesktopdienste - (TermService) - C:\WINDOWS\System32\svchost.exe; "ServiceDll" = C:\WINDOWS\System32\termsrv.dll
O23 - Service R3: Richtlinie zum Entfernen der Scmartcard - (SCPolicySvc) - C:\WINDOWS\system32\svchost.exe; "ServiceDll" = C:\WINDOWS\System32\certprop.dll
O23 - Service R3: SNMP-Trap - (SNMPTRAP) - C:\WINDOWS\System32\snmptrap.exe
O23 - Service R3: SSDP-Suche - (SSDPSRV) - C:\WINDOWS\system32\svchost.exe; "ServiceDll" = C:\WINDOWS\System32\ssdpsrv.dll
O23 - Service R3: SSTP-Dienst - (SstpSvc) - C:\WINDOWS\system32\svchost.exe; "ServiceDll" = C:\WINDOWS\system32\sstpsvc.dll
O23 - Service R3: Sekundäre Anmeldung - (seclogon) - C:\WINDOWS\system32\svchost.exe; "ServiceDll" = C:\WINDOWS\system32\seclogon.dll
O23 - Service R3: Sensordatendienst - (SensorDataService) - C:\WINDOWS\System32\SensorDataService.exe
O23 - Service R3: Sensordienst - (SensorService) - C:\WINDOWS\system32\svchost.exe; "ServiceDll" = C:\WINDOWS\system32\SensorService.dll
O23 - Service R3: Sensorüberwachungsdienst - (SensrSvc) - C:\WINDOWS\system32\svchost.exe; "ServiceDll" = C:\WINDOWS\system32\sensrsvc.dll
O23 - Service R3: Smartcard-Geräteaufzählungsdienst - (ScDeviceEnum) - C:\WINDOWS\system32\svchost.exe; "ServiceDll" = C:\WINDOWS\System32\ScDeviceEnum.dll
O23 - Service R3: Speicherdienst - (StorSvc) - C:\WINDOWS\System32\svchost.exe; "ServiceDll" = C:\WINDOWS\system32\storsvc.dll
O23 - Service R3: Standardsammlungsdienst des Microsoft(R)-Diagnose-Hubs - (diagnosticshub.standardcollector.service) - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe
O23 - Service R3: Storage Tiers Management - (TieringEngineService) - C:\WINDOWS\system32\TieringEngineService.exe
O23 - Service R3: TCP/IP-NetBIOS-Hilfsdienst - (lmhosts) - C:\WINDOWS\System32\svchost.exe; "ServiceDll" = C:\WINDOWS\System32\lmhsvc.dll
O23 - Service R3: Telefondienst - (PhoneSvc) - C:\WINDOWS\system32\svchost.exe; "ServiceDll" = C:\WINDOWS\System32\PhoneService.dll
O23 - Service R3: Telefonie - (TapiSrv) - C:\WINDOWS\System32\svchost.exe; "ServiceDll" = C:\WINDOWS\System32\tapisrv.dll
O23 - Service R3: UPnP-Gerätehost - (upnphost) - C:\WINDOWS\system32\svchost.exe; "ServiceDll" = C:\WINDOWS\System32\upnphost.dll
O23 - Service R3: Unterstützung in der Systemsteuerung unter Lösungen für Probleme - (wercplsupport) - C:\WINDOWS\System32\svchost.exe; "ServiceDll" = C:\WINDOWS\System32\wercplsupport.dll
O23 - Service R3: Update Orchestrator Service - (UsoSvc) - C:\WINDOWS\system32\svchost.exe; "ServiceDll" = C:\WINDOWS\system32\usocore.dll
O23 - Service R3: Verbessertes Windows-Audio/Video-Streaming - (QWAVE) - C:\WINDOWS\system32\svchost.exe; "ServiceDll" = C:\WINDOWS\system32\qwave.dll
O23 - Service R3: Verbindungs-Manager-Dienst von Wi-Fi Direct Services - (WFDSConMgrSvc) - C:\WINDOWS\system32\svchost.exe; "ServiceDll" = C:\WINDOWS\System32\wfdsconmgrsvc.dll
O23 - Service R3: Verbindungsschicht-Topologieerkennungs-Zuordnungsprogramm - (lltdsvc) - C:\WINDOWS\System32\svchost.exe; "ServiceDll" = C:\WINDOWS\System32\lltdsvc.dll
O23 - Service R3: Verschlüsselndes Dateisystem (EFS) - (EFS) - C:\WINDOWS\System32\lsass.exe; "ServiceDll" = C:\WINDOWS\system32\efssvc.dll
O23 - Service R3: Verwaltungsdienst für Unternehmens-Apps - (EntAppSvc) - C:\WINDOWS\system32\svchost.exe; "ServiceDll" = C:\WINDOWS\system32\EnterpriseAppMgmtSvc.dll
O23 - Service R3: Virtueller Datenträger - (vds) - C:\WINDOWS\System32\vds.exe
O23 - Service R3: Volumeschattenkopie - (VSS) - C:\WINDOWS\system32\vssvc.exe
O23 - Service R3: WMI-Leistungsadapter - (wmiApSrv) - C:\WINDOWS\system32\wbem\WmiApSrv.exe
O23 - Service R3: WWAN - automatische Konfiguration - (WwanSvc) - C:\WINDOWS\system32\svchost.exe; "ServiceDll" = C:\WINDOWS\System32\wwansvc.dll
O23 - Service R3: WalletService - C:\WINDOWS\System32\svchost.exe; "ServiceDll" = C:\WINDOWS\system32\WalletService.dll
O23 - Service R3: WarpJITSvc - C:\WINDOWS\System32\svchost.exe; "ServiceDll" = C:\WINDOWS\System32\Windows.WARP.JITService.dll
O23 - Service R3: Web Account Manager - (TokenBroker) - C:\WINDOWS\system32\svchost.exe; "ServiceDll" = C:\WINDOWS\System32\TokenBroker.dll
O23 - Service R3: Webclient - (WebClient) - C:\WINDOWS\system32\svchost.exe; "ServiceDll" = C:\WINDOWS\System32\webclnt.dll
O23 - Service R3: Windows Defender Antivirus Service - (WinDefend) - C:\Program Files\Windows Defender\MsMpEng.exe
O23 - Service R3: Windows Defender Antivirus-Netzwerkinspektionsdienst - (WdNisSvc) - C:\Program Files\Windows Defender\NisSrv.exe
O23 - Service R3: Windows Perception Service - (spectrum) - C:\WINDOWS\system32\spectrum.exe
O23 - Service R3: Windows PushToInstall-Dienst - (PushToInstall) - C:\WINDOWS\System32\svchost.exe; "ServiceDll" = C:\WINDOWS\system32\PushToInstall.dll
O23 - Service R3: Windows Store-Installationsdienst - (InstallService) - C:\WINDOWS\System32\svchost.exe; "ServiceDll" = C:\WINDOWS\system32\InstallService.dll
O23 - Service R3: Windows Update - (wuauserv) - C:\WINDOWS\system32\svchost.exe; "ServiceDll" = C:\WINDOWS\system32\wuaueng.dll
O23 - Service R3: Windows-Bilderfassung (WIA) - (stisvc) - C:\WINDOWS\system32\svchost.exe; "ServiceDll" = C:\WINDOWS\System32\wiaservc.dll
O23 - Service R3: Windows-Biometriedienst - (WbioSrvc) - C:\WINDOWS\system32\svchost.exe; "ServiceDll" = C:\WINDOWS\System32\wbiosrvc.dll
O23 - Service R3: Windows-Dienst für mobile Hotspots - (icssvc) - C:\WINDOWS\system32\svchost.exe; "ServiceDll" = C:\WINDOWS\System32\tetheringservice.dll
O23 - Service R3: Windows-Ereignissammlung - (Wecsvc) - C:\WINDOWS\system32\svchost.exe; "ServiceDll" = C:\WINDOWS\system32\wecsvc.dll
O23 - Service R3: Windows-Fehlerberichterstattungsdienst - (WerSvc) - C:\WINDOWS\System32\svchost.exe; "ServiceDll" = C:\WINDOWS\System32\WerSvc.dll
O23 - Service R3: Windows-Insider-Dienst - (wisvc) - C:\WINDOWS\system32\svchost.exe; "ServiceDll" = C:\WINDOWS\system32\flightsettings.dll
O23 - Service R3: Windows-Kamera-FrameServer - (FrameServer) - C:\WINDOWS\System32\svchost.exe; "ServiceDll" = C:\WINDOWS\system32\FrameServer.dll
O23 - Service R3: Windows-Lizenz-Manager-Dienst - (LicenseManager) - C:\WINDOWS\System32\svchost.exe; "ServiceDll" = C:\WINDOWS\system32\LicenseManagerSvc.dll
O23 - Service R3: Windows-Remoteverwaltung (WS-Verwaltung) - (WinRM) - C:\WINDOWS\System32\svchost.exe; "ServiceDll" = C:\WINDOWS\system32\WsmSvc.dll
O23 - Service R3: Windows-Sicherung - (SDRSVC) - C:\WINDOWS\system32\svchost.exe; "ServiceDll" = C:\WINDOWS\System32\SDRSVC.dll
O23 - Service R3: Windows-Sofortverbindung - Konfigurationsregistrierungsstelle - (wcncsvc) - C:\WINDOWS\System32\svchost.exe; "ServiceDll" = C:\WINDOWS\System32\wcncsvc.dll
O23 - Service R3: Windows-Zeitgeber - (W32Time) - C:\WINDOWS\system32\svchost.exe; "ServiceDll" = C:\WINDOWS\system32\w32time.dll
O23 - Service R3: Xbox Accessory Management Service - (XboxGipSvc) - C:\WINDOWS\system32\svchost.exe; "ServiceDll" = C:\WINDOWS\System32\XboxGipSvc.dll
O23 - Service R3: Xbox Live Authentifizierungs-Manager - (XblAuthManager) - C:\WINDOWS\system32\svchost.exe; "ServiceDll" = C:\WINDOWS\System32\XblAuthManager.dll
O23 - Service R3: Xbox Live-Netzwerkservice - (XboxNetApiSvc) - C:\WINDOWS\system32\svchost.exe; "ServiceDll" = C:\WINDOWS\system32\XboxNetApiSvc.dll
O23 - Service R3: Xbox Live-Spiele speichern - (XblGameSave) - C:\WINDOWS\system32\svchost.exe; "ServiceDll" = C:\WINDOWS\System32\XblGameSave.dll
O23 - Service R3: Zahlungs- und NFC/SE-Manager - (SEMgrSvc) - C:\WINDOWS\system32\svchost.exe; "ServiceDll" = C:\WINDOWS\system32\SEMgrSvc.dll
O23 - Service R3: Zeitbroker - (TimeBrokerSvc) - C:\WINDOWS\system32\svchost.exe; "ServiceDll" = C:\WINDOWS\System32\TimeBrokerServer.dll
O23 - Service R3: Zertifikatverteilung - (CertPropSvc) - C:\WINDOWS\system32\svchost.exe; "ServiceDll" = C:\WINDOWS\System32\certprop.dll
O23 - Service R3: dmwappushsvc - (dmwappushservice) - C:\WINDOWS\system32\svchost.exe; "ServiceDll" = C:\WINDOWS\system32\dmwappushsvc.dll
O23 - Service R3: iPod-Dienst - (iPod Service) - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service S3: Verwaltung für automatische RAS-Verbindung - (RasAuto) - C:\WINDOWS\System32\svchost.exe; "ServiceDll" = C:\WINDOWS\System32\rasauto.dll
O23 - Service S3: Windows Installer - (msiserver) - C:\WINDOWS\system32\msiexec.exe
O23 - Service S3: Windows Modules Installer - (TrustedInstaller) - C:\WINDOWS\servicing\TrustedInstaller.exe


--
End of file - Time spent: 33 sec. - 149572 bytes, CRC32: FFFFFFFF. Sign: 䂢症

 

Themen zu Virenverdacht. Kann jemand Logfile analysieren?
adobe, antivirus, authentifizierung, basisfiltermodul, bho, bildschirm, bonjour, defender, entfernen, firefox, flash player, hijackthis, home, installation, karte, langsam, logfile, mozilla, prozesse, realtek, registry, rundll, security, software, system, tcp, windows, windowsapps


« JS/Coinminer.f - wird gefunden beim Start von Chrome, kann nicht desinfiziert werden | Rechner ist extrem langsam MBAM findet trojan.didrix und backdoor.nanoCore und Backdoor.Qakbot »


Ähnliche Themen: Virenverdacht. Kann jemand Logfile analysieren?


  1. Kann mir jemand diese Logfile ansehen?
    Log-Analyse und Auswertung - 06.03.2011 (1)
  2. combofix logfile kann mal jemand drüberschauen?
    Log-Analyse und Auswertung - 14.11.2010 (1)
  3. Logfile kann jemand reinschauen?
    Mülltonne - 15.10.2009 (1)
  4. Kann sich jemand das Logfile anschauen?
    Log-Analyse und Auswertung - 20.02.2009 (7)
  5. Kann jemand mein Logfile auswerten?
    Log-Analyse und Auswertung - 17.02.2008 (6)
  6. Kann jemand mein logfile anschauen?
    Log-Analyse und Auswertung - 07.11.2007 (32)
  7. Kann mir jemand bei der auswertung des Logfile helfen?
    Log-Analyse und Auswertung - 12.07.2007 (6)
  8. Kann mir bitte jemand das LOGFILE durchsehen???
    Log-Analyse und Auswertung - 20.07.2006 (4)
  9. kann jemand meinen logfile checken?
    Log-Analyse und Auswertung - 28.02.2006 (1)
  10. TR/BUDDY.F - Wer kann mein Logfile analysieren?
    Log-Analyse und Auswertung - 01.06.2005 (1)
  11. Kann mir jemand meinen escan log analysieren?
    Mülltonne - 29.05.2005 (1)
  12. Kann mal jemand mein Logfile analysieren?
    Plagegeister aller Art und deren Bekämpfung - 19.05.2005 (2)
  13. Kann mir jemand dieses Logfile untersuchen?
    Log-Analyse und Auswertung - 17.04.2005 (2)
  14. Kann mir jemand sagen .. Logfile sauber
    Log-Analyse und Auswertung - 10.04.2005 (3)
  15. Kann sich jemand mal die Logfile anschauen?
    Log-Analyse und Auswertung - 27.02.2005 (2)
  16. Meine logfile! kann mir jemand helfen?
    Log-Analyse und Auswertung - 15.02.2005 (16)
  17. ich hab da so´n logfile, kann mir jemand helfen?
    Log-Analyse und Auswertung - 22.12.2004 (1)
Anleitungen und Tipps

- Für alle Hilfesuchenden! Was beachten?

- Anleitung: MyStartSearch.com entfernen

- Anleitung: WebSearches löschen

- Hilfe: iStartSurf entfernen – so gehts!

- Anleitung: Omiga Plus richtig entfernen

- Browser Viren entfernen


Zum Thema Virenverdacht. Kann jemand Logfile analysieren? - Hallo, mein Rechner ist seit kurzem sehr langsam geworden (sämtliche Prozesse). Was ich an offensichtlicher Merkwürdigkeit erkennen kann, ist ein nicht schließbares Browserfenster im Firefox, welches eine fake-Seite mit Aufforderung - Virenverdacht. Kann jemand Logfile analysieren?...
Archiv
Du betrachtest: Virenverdacht. Kann jemand Logfile analysieren? auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131