Addition Part: Code:
Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 12-02-2017
durchgeführt von Felix (12-02-2017 22:11:16)
Gestartet von C:\Users\Felix\Desktop
Windows 10 Home Version 1607 (X64) (2017-01-29 17:06:53)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
Administrator (S-1-5-21-1078537693-2019248843-686258836-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1078537693-2019248843-686258836-503 - Limited - Disabled)
Felix (S-1-5-21-1078537693-2019248843-686258836-1002 - Administrator - Enabled) => C:\Users\Felix
Gast (S-1-5-21-1078537693-2019248843-686258836-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-1078537693-2019248843-686258836-1006 - Limited - Enabled)
UpdatusUser (S-1-5-21-1078537693-2019248843-686258836-1001 - Limited - Enabled) => C:\Users\UpdatusUser
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: Avira Antivirus (Enabled - Up to date) {4D041356-F94D-285F-8768-AAE50FA36859}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avira Antivirus (Enabled - Up to date) {F665F2B2-DF77-27D1-BDD8-9197742422E4}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
7-Zip 16.04 (x64) (HKLM\...\7-Zip) (Version: 16.04 - Igor Pavlov)
Absolute Reminder (HKLM-x32\...\{40F4FF7A-B214-4453-B973-080B09CED019}) (Version: 2.1.0.9 - Absolute Software)
Adobe Flash Player 19 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 19.0.0.245 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.11) - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AB0000000001}) (Version: 11.0.11 - Adobe Systems Incorporated)
AllShare Framework DMS (HKLM\...\{83232C27-8C3F-44A5-9EB2-BB7161228ADD}) (Version: 1.3.23 - Samsung)
Apple Application Support (HKLM-x32\...\{83CAF0DE-8D3B-4C37-A631-2B8F16EC3031}) (Version: 3.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{BDD99690-3541-4619-9D2A-3CDDB3E15F9E}) (Version: 8.0.5.6 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Avast Browser Cleanup (HKU\S-1-5-21-1078537693-2019248843-686258836-1002\...\Avast Browser Cleanup) (Version: 12.1.2272.125 - AVAST Software)
Avira Antivirus (HKLM-x32\...\Avira Antivirus) (Version: 15.0.24.146 - Avira Operations GmbH & Co. KG)
Avira Connect (HKLM-x32\...\{845380e2-f0b5-4584-bc40-cc54345b3c06}) (Version: 1.2.77.41287 - Avira Operations GmbH & Co. KG)
Avira Connect (x32 Version: 1.2.77.41287 - Avira Operations GmbH & Co. KG) Hidden
Benutzerhandbuch (x32 Version: 1.0.0.9 - Lenovo) Hidden
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Canon Easy-WebPrint EX (HKLM-x32\...\Easy-WebPrint EX) (Version: 1.5.0.0 - Canon Inc.)
Canon IJ Network Scanner Selector EX (HKLM-x32\...\Canon_IJ_Network_Scanner_Selector_EX) (Version: - Canon Inc.)
Canon IJ Network Tool (HKLM-x32\...\Canon_IJ_Network_UTILITY) (Version: 3.1.0 - Canon Inc.)
Canon IJ Scan Utility (HKLM-x32\...\Canon_IJ_Scan_Utility) (Version: - Canon Inc.)
Canon MG4200 series Benutzerregistrierung (HKLM-x32\...\Canon MG4200 series Benutzerregistrierung) (Version: - Canon Inc.)
Canon MG4200 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG4200_series) (Version: 1.01 - Canon Inc.)
Canon MG4200 series On-screen Manual (HKLM-x32\...\Canon MG4200 series On-screen Manual) (Version: 7.5.0 - Canon Inc.)
Canon MP640 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MP640_series) (Version: - )
Canon My Image Garden (HKLM-x32\...\Canon My Image Garden) (Version: 1.1.2 - Canon Inc.)
Canon My Image Garden Design Files (HKLM-x32\...\Canon My Image Garden Design Files) (Version: 1.0.1 - Canon Inc.)
Canon My Printer (HKLM-x32\...\CanonMyPrinter) (Version: 3.0.0 - Canon Inc.)
Canon Quick Menu (HKLM-x32\...\CanonQuickMenu) (Version: 2.0.0 - Canon Inc.)
Cisco AnyConnect Secure Mobility Client (HKLM-x32\...\Cisco AnyConnect Secure Mobility Client) (Version: 3.1.07021 - Cisco Systems, Inc.)
Cisco AnyConnect Secure Mobility Client (x32 Version: 3.1.07021 - Cisco Systems, Inc.) Hidden
Citavi 4 (HKLM-x32\...\{CC0A85B2-734A-45B3-B678-05F6A6499AC7}) (Version: 4.4.0.28 - Swiss Academic Software)
Dolby Home Theater v4 (HKLM-x32\...\{B26438B4-BF51-49C3-9567-7F14A5E40CB9}) (Version: 7.2.8000.17 - Dolby Laboratories Inc)
Dropbox (HKU\S-1-5-21-1078537693-2019248843-686258836-1002\...\Dropbox) (Version: 19.4.13 - Dropbox, Inc.)
Energy Management (HKLM-x32\...\InstallShield_{D0956C11-0F60-43FE-99AD-524E833471BB}) (Version: 8.0.2.4 - Lenovo)
Energy Management (x32 Version: 8.0.2.4 - Lenovo) Hidden
ExpressCache (HKLM\...\{2EBEFDA8-F905-4C39-AC1C-D5ABE7B3E0AE}) (Version: 1.0.86 - Diskeeper Corporation)
FUSSBALL MANAGER 08 (HKLM-x32\...\FUSSBALL MANAGER 08) (Version: - Electronic Arts)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 56.0.2924.87 - Google Inc.)
Google Drive (HKLM-x32\...\{07A12123-B717-496B-B471-48AF6407B433}) (Version: 1.32.4066.7445 - Google, Inc.)
Google Update Helper (x32 Version: 1.3.32.7 - Google Inc.) Hidden
HUAWEI DataCard Driver 4.05.00.00 (HKLM-x32\...\HUAWEI DataCard Driver) (Version: 4.05.00.00 - Huawei technologies Co., Ltd.)
Intel AppUp(SM) center (HKLM-x32\...\Intel AppUp(SM) center 33057) (Version: 3.6.1.33057.10 - Intel)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.0.1252 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.4276 - Intel Corporation)
Intel(R) Rapid Start Technology (HKLM-x32\...\3D073343-CEEB-4ce7-85AC-A69A7631B5D6) (Version: 2.1.0.1002 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 11.6.0.1030 - Intel Corporation)
Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation)
Intel(R) WiDi (HKLM\...\{6097158B-0184-4140-BEC3-7885794D2571}) (Version: 3.5.40.0 - Intel Corporation)
Intel® PROSet/Wireless Software (HKLM-x32\...\{c9967fbd-e3c3-4ed0-992a-5b33260f2944}) (Version: 16.1.5 - Intel Corporation)
iTunes (HKLM\...\{2ABBBD91-91E5-4AD7-929A-FE15D1DC0576}) (Version: 12.0.1.26 - Apple Inc.)
Java 7 Update 67 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F03217067FF}) (Version: 7.0.670 - Oracle)
Lenovo EasyCamera (HKLM-x32\...\{ADE16A9D-FBDC-4ecc-B6BD-9C31E51D0332}) (Version: 3.15.0414.1 - Vimicro)
Lenovo EasyCamera (HKLM-x32\...\{ADE16A9D-FBDC-4ecc-B6BD-9C31E51D0333}) (Version: 1.12.824.1 - Vimicro)
Lenovo MediaShow6 (HKLM-x32\...\InstallShield_{8FCCB703-3FBF-49e7-A43F-A81E27D9B07E}) (Version: 6.0.4326 - CyberLink Corp.)
Lenovo MediaShow6 (x32 Version: 6.0.4326 - CyberLink Corp.) Hidden
Lenovo OneKey Recovery (HKLM-x32\...\InstallShield_{46F4D124-20E5-4D12-BE52-EC177A7A4B42}) (Version: 8.0.0.1219 - CyberLink Corp.)
Lenovo OneKey Recovery (Version: 8.0.0.1219 - CyberLink Corp.) Hidden
Lenovo Photos (HKLM-x32\...\Lenovo Photos) (Version: 4.8.5 - CEWE COLOR AG u Co. OHG)
Lenovo PowerDVD10 (HKLM-x32\...\InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}) (Version: 10.0.4331.52 - CyberLink Corp.)
Lenovo PowerDVD10 (x32 Version: 10.0.4331.52 - CyberLink Corp.) Hidden
Lenovo Smart Update (HKLM-x32\...\{29B7C0EB-A1E6-4BC3-8344-70EDE4F189F1}) (Version: 1.6.77 - Lenovo Corporation)
Lenovo YouCam (HKLM-x32\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 4.1.3127 - CyberLink Corp.)
Lenovo YouCam (x32 Version: 4.1.3127 - CyberLink Corp.) Hidden
LenovoDrv_x64 (HKLM\...\{83E68458-AF28-4CA4-8AFC-595A10307290}) (Version: 1.0.00 - Lenovo)
Microsoft Office (HKLM-x32\...\{90150000-0138-0409-0000-0000000FF1CE}) (Version: 15.0.4454.1510 - Microsoft Corporation)
Microsoft Office Professional Plus 2010 (HKLM\...\Office14.PROPLUS) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-1078537693-2019248843-686258836-1002\...\OneDriveSetup.exe) (Version: 17.3.6743.1212 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6E8E85E8-CE4B-4FF5-91F7-04999C9FAE6A}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{6AFCA4E1-9B78-3640-8F72-A7BF33448200}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Visual Studio 2010-Tools für Office-Laufzeit (x64) Language Pack - DEU (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - DEU) (Version: 10.0.50903 - Microsoft Corporation)
Mobile Connection Manager (HKLM-x32\...\o2DE) (Version: - Mobile Connection Manager)
Motion Control (HKLM\...\Motion Control) (Version: 1.1.2.43 - Lenovo)
Moveslink2 (HKU\S-1-5-21-1078537693-2019248843-686258836-1002\...\09caaf8ee8bfbd57) (Version: 1.4.4.199 - Suunto)
Mozilla Firefox 37.0.1 (x86 de) (HKLM-x32\...\Mozilla Firefox 37.0.1 (x86 de)) (Version: 37.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 37.0.1 - Mozilla)
Nero BurningROM 2015 (HKLM-x32\...\{7DEF9F2B-97EE-432E-91D9-FF39816B29D6}) (Version: 16.0.02700 - Nero AG)
Nero Info (HKLM-x32\...\{B791E0AB-87A9-41A4-8D98-D13C2E37D928}) (Version: 16.0.1007 - Nero AG)
Nitro Pro 8 (HKLM\...\{34BE77EE-B563-49D7-A8A0-FFD76D29BBD3}) (Version: 8.0.10.7 - Nitro)
NVIDIA PhysX-Systemsoftware 9.12.1031 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.12.1031 - NVIDIA Corporation)
NVIDIA Update 1.11.3 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 1.11.3 - NVIDIA Corporation)
Opera Stable 36.0.2130.46 (HKLM-x32\...\Opera 36.0.2130.46) (Version: 36.0.2130.46 - Opera Software)
PDF Split And Merge Basic (HKLM\...\{9A40D2F8-9458-458B-95E3-B57797C574E1}) (Version: 2.2.3 - Andrea Vacondio)
Power2Go (HKLM-x32\...\{40BF1E83-20EB-11D8-97C5-0009C5020658}) (Version: 5.6.0.9109 - CyberLink Corp.)
Prerequisite installer (x32 Version: 16.0.0004 - Nero AG) Hidden
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.3.730.2012 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6823 - Realtek Semiconductor Corp.)
Realtek USB 2.0 Card Reader (HKLM-x32\...\{96AE7E41-E34E-47D0-AC07-1091A8127911}) (Version: 6.1.8400.39030 - Realtek Semiconductor Corp.)
Safari (HKLM-x32\...\{C779648B-410E-4BBA-B75B-5815BCEFE71D}) (Version: 5.34.57.2 - Apple Inc.)
Samsung Kies (HKLM-x32\...\InstallShield_{758C8301-2696-4855-AF45-534B1200980A}) (Version: 2.6.3.14044_17 - Samsung Electronics Co., Ltd.)
Samsung Kies (x32 Version: 2.6.3.14044_17 - Samsung Electronics Co., Ltd.) Hidden
Samsung Kies3 (HKLM-x32\...\InstallShield_{88547073-C566-4895-9005-EBE98EA3F7C7}) (Version: 3.2.15072.2 - Samsung Electronics Co., Ltd.)
Samsung Kies3 (x32 Version: 3.2.15072.2 - Samsung Electronics Co., Ltd.) Hidden
Samsung Link 2.0.0.1409291832 (HKLM\...\8474-7877-9059-0204) (Version: 2.0.0.1409291832 - Copyright 2013 SAMSUNG)
Samsung USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.55.0 - Samsung Electronics Co., Ltd.)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{A3364707-2F53-4C83-8F68-C9877A9080C7}) (Version: - Microsoft)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (Version: - Microsoft) Hidden
Shared C Run-time for x64 (HKLM\...\{EF79C448-6946-4D71-8134-03407888C054}) (Version: 10.0.0 - McAfee)
Skype Click to Call (HKLM-x32\...\{873F8E7C-10E6-449F-BD7E-5FBA7C8E1C9B}) (Version: 8.5.0.9167 - Microsoft Corporation)
Skype™ 7.6 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.6.105 - Skype Technologies S.A.)
Smart Switch (HKLM-x32\...\InstallShield_{74FA5314-85C8-4E2A-907D-D9ECCCB770A7}) (Version: 4.0.15064.11 - Samsung Electronics Co., Ltd.)
Smart Switch (x32 Version: 4.0.15064.11 - Samsung Electronics Co., Ltd.) Hidden
Spotify (HKU\S-1-5-21-1078537693-2019248843-686258836-1002\...\Spotify) (Version: 1.0.18.60.g5fe0413d - Spotify AB)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 19.0.9.5 - Synaptics Incorporated)
UserGuide (HKLM-x32\...\InstallShield_{F07C2CF8-4C53-4EC3-8162-A6221E36EB88}) (Version: 1.0.0.9 - Lenovo)
VLC media player (HKLM\...\VLC media player) (Version: 2.1.5 - VideoLAN)
Windows Driver Package - Lenovo Corporation (LAD) System (06/08/2012 1.0.0.3) (HKLM\...\C48768A2A32F4649238F7DCF737A260911895FDE) (Version: 06/08/2012 1.0.0.3 - Lenovo Corporation)
Windows-Treiberpaket - Lenovo (ACPIVPC) System (06/15/2012 8.1.0.1) (HKLM\...\71BC3FD63F450BA0A957AAECBDB4A000C4F2BE42) (Version: 06/15/2012 8.1.0.1 - Lenovo)
Windows-Treiberpaket - Lenovo (WUDFRd) LenovoVhid (06/19/2012 10.13.29.733) (HKLM\...\8A223E56FB1ED4F697B54E5BF96F1EB63B512684) (Version: 06/19/2012 10.13.29.733 - Lenovo)
WinZip 20.0 (HKLM\...\{CD95F661-A5C4-44F5-A6AA-ECDD91C240EF}) (Version: 20.0.11659 - WinZip Computing, S.L. )
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
CustomCLSID: HKU\S-1-5-21-1078537693-2019248843-686258836-1002_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\Felix\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1078537693-2019248843-686258836-1002_Classes\CLSID\{CB2B673F-D441-4CD4-AFBE-DC4037CA4220}\InprocServer32 -> C:\Program Files\WinZip\adxloader64.dll ()
CustomCLSID: HKU\S-1-5-21-1078537693-2019248843-686258836-1002_Classes\CLSID\{ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C}\InprocServer32 -> C:\Users\Felix\AppData\Roaming\Dropbox\bin\DropboxExt64.14.0.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1078537693-2019248843-686258836-1002_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Felix\AppData\Roaming\Dropbox\bin\DropboxExt64.14.0.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1078537693-2019248843-686258836-1002_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Felix\AppData\Roaming\Dropbox\bin\DropboxExt64.14.0.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1078537693-2019248843-686258836-1002_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Felix\AppData\Roaming\Dropbox\bin\DropboxExt64.14.0.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1078537693-2019248843-686258836-1002_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Felix\AppData\Roaming\Dropbox\bin\DropboxExt64.14.0.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1078537693-2019248843-686258836-1002_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Felix\AppData\Roaming\Dropbox\bin\DropboxExt64.14.0.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1078537693-2019248843-686258836-1002_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Felix\AppData\Roaming\Dropbox\bin\DropboxExt64.14.0.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1078537693-2019248843-686258836-1002_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Felix\AppData\Roaming\Dropbox\bin\DropboxExt64.14.0.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1078537693-2019248843-686258836-1002_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Felix\AppData\Roaming\Dropbox\bin\DropboxExt64.14.0.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1078537693-2019248843-686258836-1002_Classes\CLSID\{FB314EE1-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Felix\AppData\Roaming\Dropbox\bin\DropboxExt64.14.0.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1078537693-2019248843-686258836-1002_Classes\CLSID\{FB314EE2-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Felix\AppData\Roaming\Dropbox\bin\DropboxExt64.14.0.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1078537693-2019248843-686258836-1002_Classes\CLSID\{FBC9D74C-AF55-4309-9FB2-C426E071637F}\InprocServer32 -> C:\Users\Felix\AppData\Roaming\Dropbox\bin\DropboxExt64.14.0.dll (Dropbox, Inc.)
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {0093FEC3-5026-43DC-972E-AE00B5D57B3E} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-10-02] (Google Inc.)
Task: {065F4AA9-800C-4567-AD26-CC870783F473} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Keine Datei <==== ACHTUNG
Task: {0CD3CFF0-1311-413D-9355-34BF28F19B29} - System32\Tasks\{5971D186-1817-4543-85AD-26773F0D42FB} => pcalua.exe -a E:\DirectX\dxsetup.exe -d E:\DirectX
Task: {27DFE8E2-A5AA-4E92-A89F-19B589ED62E4} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Keine Datei <==== ACHTUNG
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => %SystemRoot%\System32\AutoWorkplace.exe
Task: {3BA21BE5-2D85-4264-A1C3-593680B1A950} - System32\Tasks\DropboxUpdateTaskUserS-1-5-21-1078537693-2019248843-686258836-1002Core => C:\Users\Felix\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2016-11-07] (Dropbox, Inc.)
Task: {52B3D700-4DE1-457C-B726-D66ACBA282D2} - System32\Tasks\{F5F28A24-8DE9-4FC4-A49E-331E59D30708} => pcalua.exe -a "C:\Program Files (x86)\InstallShield Installation Information\{40BF1E83-20EB-11D8-97C5-0009C5020658}\Setup.exe" -c -uninstall
Task: {6196F863-51CD-4C13-A345-5875CF00AA15} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Keine Datei <==== ACHTUNG
Task: {6BF1C634-5EB3-4FC9-97C0-8AA903808802} - \OfficeSoftwareProtectionPlatform\SvcRestartTask -> Keine Datei <==== ACHTUNG
Task: {88A53FE0-7A77-4342-83AA-B5CC40885327} - System32\Tasks\Opera scheduled Autoupdate 1437387024 => C:\Program Files (x86)\Opera\launcher.exe [2016-04-11] (Opera Software)
Task: {A40D0F35-DD9E-4B47-B05B-5E69282CD534} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-12-19] (Adobe Systems Incorporated)
Task: {A9FF28BC-5EFE-4AEB-ABDA-46A81CE4A58E} - System32\Tasks\MirageAgent => C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe [2012-07-27] (CyberLink)
Task: {B237B92D-221D-41B7-9AB6-87182A992624} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> Keine Datei <==== ACHTUNG
Task: {B78F5F03-D490-48BA-994E-E792884ED74A} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Keine Datei <==== ACHTUNG
Task: {B797FBF4-ECB5-4493-A40F-027F5D320299} - System32\Tasks\avastBCLS-1-5-21-1078537693-2019248843-686258836-1002 => C:\Users\Felix\AppData\Roaming\AVAST Software\Browser Cleanup\BCUSched.exe [2017-02-07] (AVAST Software)
Task: {B7CF7494-7397-44A7-BB02-447104BFBB9A} - System32\Tasks\GoogleUpdateTaskMachineUA1cff60de7c5444d => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-10-02] (Google Inc.)
Task: {C5B22835-7074-43F6-AF77-316BA7E66FE5} - System32\Tasks\Dolby Selector => C:\Program Files (x86)\Dolby Home Theater v4\pcee4.exe
Task: {C65B4662-8C3B-43A5-8D90-49DFDE268BE2} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-10-02] (Google Inc.)
Task: {C89DE650-468A-49EB-B537-7F10CC269736} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Keine Datei <==== ACHTUNG
Task: {D02DB910-7851-41EF-8E35-7906B8911D96} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Keine Datei <==== ACHTUNG
Task: {D48E25CA-5966-4EF6-BD38-DAE9298B10D0} - System32\Tasks\Nero\Nero Info => C:\Program Files (x86)\Common Files\Nero\Nero Info\NeroInfo.exe [2015-03-04] (Nero AG)
Task: {DC47EA05-B5E9-4B24-A823-3AAA870E0B47} - System32\Tasks\DropboxUpdateTaskUserS-1-5-21-1078537693-2019248843-686258836-1002UA => C:\Users\Felix\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2016-11-07] (Dropbox, Inc.)
Task: {DCA23760-D455-445D-AD6B-B2BC6541B3CF} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Keine Datei <==== ACHTUNG
Task: {E3F3B51D-C67D-44BC-897A-63F77070149D} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Keine Datei <==== ACHTUNG
Task: {E6D4DB78-47B2-431A-A8F8-64B0EAB76878} - \WPD\SqmUpload_S-1-5-21-1078537693-2019248843-686258836-1002 -> Keine Datei <==== ACHTUNG
Task: {EC2C41BD-109A-41AC-A7FE-DD0C745CE4C0} - System32\Tasks\avast! BCU UpdateS-1-5-21-1078537693-2019248843-686258836-1002 => C:\Users\Felix\AppData\Roaming\AVAST Software\Browser Cleanup\BCUUpdate.exe [2015-03-18] (AVAST Software)
Task: {F7BD20D1-F463-4395-9333-5E25C5BA3420} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Keine Datei <==== ACHTUNG
Task: {F8F85967-B05C-403E-A897-93280F61E08C} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Keine Datei <==== ACHTUNG
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskUserS-1-5-21-1078537693-2019248843-686258836-1002Core.job => C:\Users\Felix\AppData\Local\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskUserS-1-5-21-1078537693-2019248843-686258836-1002UA.job => C:\Users\Felix\AppData\Local\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\Synaptics TouchPad Enhancements.job => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
==================== Verknüpfungen =============================
(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)
==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============
2016-07-16 12:42 - 2016-07-16 12:42 - 00231424 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
2017-01-29 16:45 - 2017-01-29 16:45 - 02681200 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2014-10-14 20:54 - 2014-09-29 17:32 - 00025088 _____ () C:\Program Files\Samsung\Samsung Link\JniSys.dll
2014-10-14 20:54 - 2014-09-29 17:32 - 02633728 _____ () C:\Program Files\Samsung\Samsung Link\scone_proxy.dll
2014-10-14 20:54 - 2014-09-29 17:32 - 02540544 _____ () C:\Program Files\Samsung\Samsung Link\scone_stub.dll
2013-12-21 10:25 - 2013-12-21 10:25 - 00036864 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\64bit\JNIInterface.dll
2013-12-21 10:26 - 2013-12-21 10:26 - 00144384 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\64bit\ASFAPI.dll
2013-12-21 10:27 - 2013-12-21 10:27 - 00018944 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\64bit\MediaDB_Manager.dll
2013-10-22 08:52 - 2013-10-22 08:52 - 00030720 _____ () C:\WINDOWS\SYSTEM32\MediaDB64.dll
2013-10-22 08:52 - 2013-10-22 08:52 - 00908800 _____ () C:\WINDOWS\SYSTEM32\ContentDirectoryPresenter64.dll
2013-12-21 10:27 - 2013-12-21 10:27 - 00521728 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\64bit\DMS_Manager.dll
2013-07-23 18:19 - 2013-07-23 18:19 - 00049152 _____ () C:\WINDOWS\SYSTEM32\boost_date_time-vc90-mt-1_47.dll
2013-07-23 18:19 - 2013-07-23 18:19 - 00058880 _____ () C:\WINDOWS\SYSTEM32\boost_thread-vc90-mt-1_47.dll
2013-07-23 18:19 - 2013-07-23 18:19 - 00299520 _____ () C:\WINDOWS\SYSTEM32\boost_serialization-vc90-mt-1_47.dll
2013-07-23 18:19 - 2013-07-23 18:19 - 00016896 _____ () C:\WINDOWS\SYSTEM32\boost_system-vc90-mt-1_47.dll
2017-01-29 17:36 - 2017-01-29 17:36 - 00669696 _____ () C:\Windows\Temp\sqlite-3.7.151-amd64-sqlitejdbc.dll
2017-01-29 17:08 - 2016-12-29 14:16 - 00134712 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2017-01-29 16:45 - 2017-01-29 16:45 - 02681200 _____ () C:\WINDOWS\SYSTEM32\CoreUIComponents.dll
2017-01-29 16:45 - 2017-01-29 16:45 - 00134656 _____ () C:\Windows\ShellExperiences\Windows.UI.Shell.SharedUtilities.dll
2017-01-29 16:45 - 2017-01-29 16:45 - 00474112 _____ () C:\Windows\ShellExperiences\QuickActions.dll
2017-01-29 16:46 - 2017-01-29 16:46 - 09760768 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2017-01-29 16:46 - 2017-01-29 16:46 - 01401856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2017-01-29 16:46 - 2017-01-29 16:46 - 00757248 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CSGSuggestLib.dll
2017-01-29 16:46 - 2017-01-29 16:46 - 01033216 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Actions.dll
2017-01-29 16:46 - 2017-01-29 16:46 - 02424320 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2017-01-29 16:46 - 2017-01-29 16:46 - 04853760 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2013-07-03 10:27 - 2012-03-21 04:05 - 00051776 _____ () C:\Program Files\Realtek\Audio\HDA\FMAPP.exe
2014-10-14 20:54 - 2014-09-29 17:32 - 00049664 _____ () C:\Program Files\Samsung\Samsung Link\JniIO.dll
2013-09-05 00:17 - 2013-09-05 00:17 - 04300456 _____ () C:\Program Files\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF
2017-02-04 20:17 - 2017-02-01 10:47 - 02459992 _____ () C:\Program Files (x86)\Google\Chrome\Application\56.0.2924.87\libglesv2.dll
2017-02-04 20:17 - 2017-02-01 10:47 - 00099672 _____ () C:\Program Files (x86)\Google\Chrome\Application\56.0.2924.87\libegl.dll
2017-02-06 20:02 - 2017-02-06 20:03 - 00073728 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.11.105.0_x64__kzf8qxf38zg5c\SkypeHost.exe
2017-02-06 20:02 - 2017-02-06 20:03 - 00179712 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.11.105.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll
2017-02-06 20:02 - 2017-02-06 20:03 - 42895872 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.11.105.0_x64__kzf8qxf38zg5c\SkyWrap.dll
2017-02-06 20:02 - 2017-02-06 20:03 - 02215424 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.11.105.0_x64__kzf8qxf38zg5c\roottools.dll
2015-02-19 22:37 - 2015-02-19 22:37 - 00063376 _____ () C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\zlib1.dll
2014-07-31 11:16 - 2014-07-31 11:16 - 00073544 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2014-10-11 13:05 - 2014-10-11 13:05 - 01044776 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2013-12-11 15:46 - 2013-12-11 15:46 - 01114624 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\DMSManager.dll
2013-07-23 18:18 - 2013-07-23 18:18 - 00227840 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\boost_serialization-vc90-mt-1_47.dll
2013-07-23 18:18 - 2013-07-23 18:18 - 00038912 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\boost_date_time-vc90-mt-1_47.dll
2013-07-23 18:18 - 2013-07-23 18:18 - 00012800 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\boost_system-vc90-mt-1_47.dll
2013-07-23 18:18 - 2013-07-23 18:18 - 00046592 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\boost_thread-vc90-mt-1_47.dll
2013-10-22 08:48 - 2013-10-22 08:48 - 00707072 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\ContentDirectoryPresenter.dll
2013-10-24 15:53 - 2013-10-24 15:53 - 00107008 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\DCMCDP.dll
2013-12-11 15:46 - 2013-12-11 15:46 - 00102400 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\FolderCDP.dll
2013-10-24 15:53 - 2013-10-24 15:53 - 00032768 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\Autobackup.dll
2013-04-19 15:38 - 2013-04-19 15:38 - 00055808 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\RosettaAllShare.dll
2013-12-11 15:46 - 2013-12-11 15:46 - 00077312 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\MetadataFramework.dll
2013-02-14 18:42 - 2013-02-14 18:42 - 00520234 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\sqlite3.dll
2013-02-14 18:42 - 2013-02-14 18:42 - 05717504 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\DCMImgExtractor.dll
2013-02-14 18:42 - 2013-02-14 18:42 - 00450560 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\MoodExtractor.dll
2013-10-25 18:48 - 2013-10-25 18:48 - 00028672 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\AutoChaptering.dll
2013-10-25 18:49 - 2013-10-25 18:49 - 00028160 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\AudioExtractor.dll
2013-12-11 15:45 - 2013-12-11 15:45 - 00017920 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\VideoExtractor.dll
2013-10-25 18:53 - 2013-10-25 18:53 - 00012288 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\ImageExtractor.dll
2013-10-25 18:48 - 2013-10-25 18:48 - 00013824 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\TextExtractor.dll
2013-10-25 18:48 - 2013-10-25 18:48 - 00064000 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\ID3Driver.dll
2013-10-25 18:48 - 2013-10-25 18:48 - 00023040 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\RichInfoDriver.dll
2013-02-14 18:42 - 2013-02-14 18:42 - 00147456 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\libexpat.dll
2013-10-25 18:48 - 2013-10-25 18:48 - 00012288 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\VideoThumb.dll
2013-10-25 18:53 - 2013-10-25 18:53 - 00117248 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\ThumbnailMaker.dll
2013-12-11 15:45 - 2013-12-11 15:45 - 00134144 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\VideoMetadataDriver.dll
2013-10-25 18:48 - 2013-10-25 18:48 - 00024064 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\SECMetaDriver.dll
2013-10-25 18:48 - 2013-10-25 18:48 - 00024064 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\photoDriver.dll
2013-10-25 18:48 - 2013-10-25 18:48 - 00289792 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\libThumbnail.dll
2013-02-14 18:42 - 2013-02-14 18:42 - 00686080 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\avformat-52.dll
2013-02-14 18:42 - 2013-02-14 18:42 - 00366592 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\tag.dll
2013-10-25 18:53 - 2013-10-25 18:53 - 01033728 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\ImageMagickWrapper.dll
2013-02-14 18:42 - 2013-02-14 18:42 - 04671488 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\avcodec-52.dll
2013-10-25 18:48 - 2013-10-25 18:48 - 00290816 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\libKeyFrame.dll
2013-02-14 18:42 - 2013-02-14 18:42 - 00070656 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\avutil-50.dll
2013-02-14 18:42 - 2013-02-14 18:42 - 00152064 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\swscale-0.dll
2013-02-14 18:42 - 2013-02-14 18:42 - 00399826 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\libexif-12.dll.dll
2013-02-14 18:42 - 2013-02-14 18:42 - 00044032 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\us.dll
2013-07-03 10:21 - 2012-06-25 09:41 - 01198912 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\ACE.dll
2017-02-12 20:17 - 2017-02-12 20:17 - 00098816 ____R () C:\Users\Felix\AppData\Local\Temp\_MEI78282\win32api.pyd
2017-02-12 20:17 - 2017-02-12 20:17 - 00110080 ____R () C:\Users\Felix\AppData\Local\Temp\_MEI78282\pywintypes27.dll
2017-02-12 20:17 - 2017-02-12 20:17 - 00364544 ____R () C:\Users\Felix\AppData\Local\Temp\_MEI78282\pythoncom27.dll
2017-02-12 20:17 - 2017-02-12 20:17 - 00320512 ____R () C:\Users\Felix\AppData\Local\Temp\_MEI78282\win32com.shell.shell.pyd
2017-02-12 20:17 - 2017-02-12 20:17 - 00914432 ____R () C:\Users\Felix\AppData\Local\Temp\_MEI78282\_hashlib.pyd
2017-02-12 20:17 - 2017-02-12 20:17 - 01176576 ____R () C:\Users\Felix\AppData\Local\Temp\_MEI78282\wx._core_.pyd
2017-02-12 20:17 - 2017-02-12 20:17 - 00806400 ____R () C:\Users\Felix\AppData\Local\Temp\_MEI78282\wx._gdi_.pyd
2017-02-12 20:17 - 2017-02-12 20:17 - 00816128 ____R () C:\Users\Felix\AppData\Local\Temp\_MEI78282\wx._windows_.pyd
2017-02-12 20:17 - 2017-02-12 20:17 - 01067008 ____R () C:\Users\Felix\AppData\Local\Temp\_MEI78282\wx._controls_.pyd
2017-02-12 20:17 - 2017-02-12 20:17 - 00733184 ____R () C:\Users\Felix\AppData\Local\Temp\_MEI78282\wx._misc_.pyd
2017-02-12 20:17 - 2017-02-12 20:17 - 00682496 ____R () C:\Users\Felix\AppData\Local\Temp\_MEI78282\pysqlite2._sqlite.pyd
2017-02-12 20:17 - 2017-02-12 20:17 - 00088064 ____R () C:\Users\Felix\AppData\Local\Temp\_MEI78282\_ctypes.pyd
2017-02-12 20:17 - 2017-02-12 20:17 - 00686080 ____R () C:\Users\Felix\AppData\Local\Temp\_MEI78282\unicodedata.pyd
2017-02-12 20:17 - 2017-02-12 20:17 - 00119808 ____R () C:\Users\Felix\AppData\Local\Temp\_MEI78282\win32file.pyd
2017-02-12 20:17 - 2017-02-12 20:17 - 00108544 ____R () C:\Users\Felix\AppData\Local\Temp\_MEI78282\win32security.pyd
2017-02-12 20:17 - 2017-02-12 20:17 - 00007168 ____R () C:\Users\Felix\AppData\Local\Temp\_MEI78282\hashobjs_ext.pyd
2017-02-12 20:17 - 2017-02-12 20:17 - 00017920 ____R () C:\Users\Felix\AppData\Local\Temp\_MEI78282\thumbnails_ext.pyd
2017-02-12 20:17 - 2017-02-12 20:17 - 00088064 ____R () C:\Users\Felix\AppData\Local\Temp\_MEI78282\usb_ext.pyd
2017-02-12 20:17 - 2017-02-12 20:17 - 00012800 ____R () C:\Users\Felix\AppData\Local\Temp\_MEI78282\common.time34.pyd
2017-02-12 20:17 - 2017-02-12 20:17 - 00018432 ____R () C:\Users\Felix\AppData\Local\Temp\_MEI78282\win32event.pyd
2017-02-12 20:17 - 2017-02-12 20:17 - 00167936 ____R () C:\Users\Felix\AppData\Local\Temp\_MEI78282\win32gui.pyd
2017-02-12 20:17 - 2017-02-12 20:17 - 00046080 ____R () C:\Users\Felix\AppData\Local\Temp\_MEI78282\_socket.pyd
2017-02-12 20:17 - 2017-02-12 20:17 - 01303552 ____R () C:\Users\Felix\AppData\Local\Temp\_MEI78282\_ssl.pyd
2017-02-12 20:17 - 2017-02-12 20:17 - 00128512 ____R () C:\Users\Felix\AppData\Local\Temp\_MEI78282\_elementtree.pyd
2017-02-12 20:17 - 2017-02-12 20:17 - 00127488 ____R () C:\Users\Felix\AppData\Local\Temp\_MEI78282\pyexpat.pyd
2017-02-12 20:17 - 2017-02-12 20:17 - 00038912 ____R () C:\Users\Felix\AppData\Local\Temp\_MEI78282\win32inet.pyd
2017-02-12 20:17 - 2017-02-12 20:17 - 00036864 ____R () C:\Users\Felix\AppData\Local\Temp\_MEI78282\_psutil_windows.pyd
2017-02-12 20:17 - 2017-02-12 20:17 - 00524248 ____R () C:\Users\Felix\AppData\Local\Temp\_MEI78282\windows._lib_cacheinvalidation.pyd
2017-02-12 20:17 - 2017-02-12 20:17 - 00011264 ____R () C:\Users\Felix\AppData\Local\Temp\_MEI78282\win32crypt.pyd
2017-02-12 20:17 - 2017-02-12 20:17 - 00123392 ____R () C:\Users\Felix\AppData\Local\Temp\_MEI78282\wx._wizard.pyd
2017-02-12 20:17 - 2017-02-12 20:17 - 00077312 ____R () C:\Users\Felix\AppData\Local\Temp\_MEI78282\wx._html2.pyd
2017-02-12 20:17 - 2017-02-12 20:17 - 00027648 ____R () C:\Users\Felix\AppData\Local\Temp\_MEI78282\_multiprocessing.pyd
2017-02-12 20:17 - 2017-02-12 20:17 - 00020480 ____R () C:\Users\Felix\AppData\Local\Temp\_MEI78282\_yappi.pyd
2017-02-12 20:17 - 2017-02-12 20:17 - 00035840 ____R () C:\Users\Felix\AppData\Local\Temp\_MEI78282\win32process.pyd
2017-02-12 20:17 - 2017-02-12 20:17 - 00078848 ____R () C:\Users\Felix\AppData\Local\Temp\_MEI78282\wx._animate.pyd
2017-02-12 20:17 - 2017-02-12 20:17 - 00024064 ____R () C:\Users\Felix\AppData\Local\Temp\_MEI78282\win32pipe.pyd
2017-02-12 20:17 - 2017-02-12 20:17 - 00010240 ____R () C:\Users\Felix\AppData\Local\Temp\_MEI78282\select.pyd
2017-02-12 20:17 - 2017-02-12 20:17 - 00025600 ____R () C:\Users\Felix\AppData\Local\Temp\_MEI78282\win32pdh.pyd
2017-02-12 20:17 - 2017-02-12 20:17 - 00017408 ____R () C:\Users\Felix\AppData\Local\Temp\_MEI78282\win32profile.pyd
2017-02-12 20:17 - 2017-02-12 20:17 - 00022528 ____R () C:\Users\Felix\AppData\Local\Temp\_MEI78282\win32ts.pyd
2016-11-07 20:50 - 2016-11-07 20:50 - 06950432 _____ () C:\Users\Felix\AppData\Local\Apps\2.0\6AO9PYBW.MNP\LNO9QCND.KAL\move..tion_391e8feca7b0cf78_0001.0004_6f8afc924d2bed6c\BLLWrapper.DLL
2013-07-03 10:48 - 2012-07-18 13:27 - 00021072 _____ () C:\Program Files (x86)\Lenovo\Lenovo Smart Update\HookDll.dll
2017-02-08 00:35 - 2017-02-07 05:48 - 00801600 _____ () C:\Users\Felix\AppData\Roaming\Dropbox\bin\dropbox_watchdog.dll
2017-02-01 20:25 - 2017-01-14 00:53 - 00035792 _____ () C:\Users\Felix\AppData\Roaming\Dropbox\bin\_multiprocessing.pyd
2017-02-01 20:25 - 2017-01-14 00:53 - 00100296 _____ () C:\Users\Felix\AppData\Roaming\Dropbox\bin\_ctypes.pyd
2017-02-01 20:25 - 2017-01-14 00:53 - 00018888 _____ () C:\Users\Felix\AppData\Roaming\Dropbox\bin\select.pyd
2017-02-01 20:25 - 2017-02-07 05:50 - 00019776 _____ () C:\Users\Felix\AppData\Roaming\Dropbox\bin\tornado.speedups.pyd
2017-02-01 20:25 - 2017-01-14 00:53 - 00694224 _____ () C:\Users\Felix\AppData\Roaming\Dropbox\bin\unicodedata.pyd
2017-02-08 00:35 - 2017-02-07 05:50 - 00020824 _____ () C:\Users\Felix\AppData\Roaming\Dropbox\bin\cryptography.hazmat.bindings._constant_time.pyd
2017-02-01 20:25 - 2017-01-14 00:54 - 00123856 _____ () C:\Users\Felix\AppData\Roaming\Dropbox\bin\_cffi_backend.pyd
2017-02-08 00:35 - 2017-02-07 05:50 - 01682768 _____ () C:\Users\Felix\AppData\Roaming\Dropbox\bin\cryptography.hazmat.bindings._openssl.pyd
2017-02-08 00:35 - 2017-02-07 05:50 - 00020816 _____ () C:\Users\Felix\AppData\Roaming\Dropbox\bin\cryptography.hazmat.bindings._padding.pyd
2017-02-08 00:35 - 2017-01-14 00:53 - 00145864 _____ () C:\Users\Felix\AppData\Roaming\Dropbox\bin\pyexpat.pyd
2017-02-08 00:35 - 2017-01-14 00:54 - 00019408 _____ () C:\Users\Felix\AppData\Roaming\Dropbox\bin\faulthandler.pyd
2017-02-08 00:35 - 2017-01-14 00:53 - 00116688 _____ () C:\Users\Felix\AppData\Roaming\Dropbox\bin\pywintypes27.dll
2017-02-01 20:25 - 2017-01-14 00:56 - 00105928 _____ () C:\Users\Felix\AppData\Roaming\Dropbox\bin\win32api.pyd
2017-02-01 20:25 - 2017-02-07 05:50 - 00022864 _____ () C:\Users\Felix\AppData\Roaming\Dropbox\bin\winffi.crt.compiled._winffi_crt.pyd
2017-02-08 00:35 - 2017-02-07 05:50 - 00052544 _____ () C:\Users\Felix\AppData\Roaming\Dropbox\bin\psutil._psutil_windows.pyd
2017-02-08 00:35 - 2017-02-07 05:50 - 00038712 _____ () C:\Users\Felix\AppData\Roaming\Dropbox\bin\fastpath.pyd
2017-02-08 00:35 - 2017-01-14 00:53 - 00392144 _____ () C:\Users\Felix\AppData\Roaming\Dropbox\bin\pythoncom27.dll
2017-02-08 00:35 - 2017-01-14 00:56 - 00020936 _____ () C:\Users\Felix\AppData\Roaming\Dropbox\bin\mmapfile.pyd
2017-02-01 20:25 - 2017-01-14 00:56 - 00024528 _____ () C:\Users\Felix\AppData\Roaming\Dropbox\bin\win32event.pyd
2017-02-01 20:25 - 2017-01-14 00:57 - 00116176 _____ () C:\Users\Felix\AppData\Roaming\Dropbox\bin\win32security.pyd
2017-02-01 20:25 - 2017-02-07 05:50 - 00381760 _____ () C:\Users\Felix\AppData\Roaming\Dropbox\bin\win32com.shell.shell.pyd
2017-02-01 20:25 - 2017-01-14 00:56 - 00124880 _____ () C:\Users\Felix\AppData\Roaming\Dropbox\bin\win32file.pyd
2017-02-01 20:25 - 2017-02-07 05:50 - 00026456 _____ () C:\Users\Felix\AppData\Roaming\Dropbox\bin\winffi.kernel32.compiled._winffi_kernel32.pyd
2017-02-01 20:25 - 2017-01-14 00:56 - 00024016 _____ () C:\Users\Felix\AppData\Roaming\Dropbox\bin\win32clipboard.pyd
2017-02-01 20:25 - 2017-01-14 00:56 - 00175560 _____ () C:\Users\Felix\AppData\Roaming\Dropbox\bin\win32gui.pyd
2017-02-01 20:25 - 2017-01-14 00:57 - 00030160 _____ () C:\Users\Felix\AppData\Roaming\Dropbox\bin\win32pipe.pyd
2017-02-01 20:25 - 2017-01-14 00:57 - 00043472 _____ () C:\Users\Felix\AppData\Roaming\Dropbox\bin\win32process.pyd
2017-02-01 20:25 - 2017-01-14 00:57 - 00048592 _____ () C:\Users\Felix\AppData\Roaming\Dropbox\bin\win32service.pyd
2017-02-01 20:25 - 2017-01-14 00:56 - 00057808 _____ () C:\Users\Felix\AppData\Roaming\Dropbox\bin\win32evtlog.pyd
2017-02-01 20:25 - 2017-01-14 00:57 - 00024016 _____ () C:\Users\Felix\AppData\Roaming\Dropbox\bin\win32profile.pyd
2017-02-08 00:35 - 2017-02-07 05:50 - 00246608 _____ () C:\Users\Felix\AppData\Roaming\Dropbox\bin\breakpad.client.windows.handler.pyd
2017-02-08 00:35 - 2017-02-07 05:50 - 00027488 _____ () C:\Users\Felix\AppData\Roaming\Dropbox\bin\dropbox.infinite.win.compiled._driverinstallation.pyd
2017-02-01 20:25 - 2017-01-14 00:55 - 00241104 _____ () C:\Users\Felix\AppData\Roaming\Dropbox\bin\_jpegtran.pyd
2017-02-08 00:35 - 2017-02-07 05:50 - 00022336 _____ () C:\Users\Felix\AppData\Roaming\Dropbox\bin\cpuid.compiled._cpuid.pyd
2017-02-01 20:25 - 2017-01-14 00:57 - 00028616 _____ () C:\Users\Felix\AppData\Roaming\Dropbox\bin\win32ts.pyd
2017-02-08 00:35 - 2017-02-07 05:50 - 01826104 _____ () C:\Users\Felix\AppData\Roaming\Dropbox\bin\PyQt5.QtCore.pyd
2017-02-01 20:25 - 2017-01-14 00:54 - 00083912 _____ () C:\Users\Felix\AppData\Roaming\Dropbox\bin\sip.pyd
2017-02-08 00:35 - 2017-02-07 05:50 - 01972536 _____ () C:\Users\Felix\AppData\Roaming\Dropbox\bin\PyQt5.QtGui.pyd
2017-02-08 00:35 - 2017-02-07 05:50 - 03928896 _____ () C:\Users\Felix\AppData\Roaming\Dropbox\bin\PyQt5.QtWidgets.pyd
2017-02-08 00:35 - 2017-02-07 05:50 - 00531264 _____ () C:\Users\Felix\AppData\Roaming\Dropbox\bin\PyQt5.QtNetwork.pyd
2017-02-01 20:25 - 2017-02-07 05:50 - 00025432 _____ () C:\Users\Felix\AppData\Roaming\Dropbox\bin\winscreenshot.compiled._CaptureScreenshot.pyd
2017-02-08 00:35 - 2017-02-07 05:50 - 00133432 _____ () C:\Users\Felix\AppData\Roaming\Dropbox\bin\PyQt5.QtWebKit.pyd
2017-02-08 00:35 - 2017-02-07 05:50 - 00224064 _____ () C:\Users\Felix\AppData\Roaming\Dropbox\bin\PyQt5.QtWebKitWidgets.pyd
2017-02-08 00:35 - 2017-02-07 05:50 - 00207680 _____ () C:\Users\Felix\AppData\Roaming\Dropbox\bin\PyQt5.QtPrintSupport.pyd
2017-02-01 20:25 - 2017-02-07 05:50 - 00021840 _____ () C:\Users\Felix\AppData\Roaming\Dropbox\bin\winffi.user32.compiled._winffi_user32.pyd
2017-02-01 20:25 - 2017-02-07 05:50 - 00069968 _____ () C:\Users\Felix\AppData\Roaming\Dropbox\bin\windisplaytoast.compiled._DisplayToast.pyd
2017-02-01 20:25 - 2017-02-07 05:50 - 00022872 _____ () C:\Users\Felix\AppData\Roaming\Dropbox\bin\winffi.iphlpapi.compiled._winffi_iphlpapi.pyd
2017-02-01 20:25 - 2017-02-07 05:50 - 00021848 _____ () C:\Users\Felix\AppData\Roaming\Dropbox\bin\winffi.winerror.compiled._winffi_winerror.pyd
2017-02-01 20:25 - 2017-02-07 05:50 - 00022872 _____ () C:\Users\Felix\AppData\Roaming\Dropbox\bin\winffi.wininet.compiled._winffi_wininet.pyd
2017-02-01 20:25 - 2017-01-14 00:57 - 00350152 _____ () C:\Users\Felix\AppData\Roaming\Dropbox\bin\winxpgui.pyd
2017-02-08 00:35 - 2017-02-07 05:50 - 00103232 _____ () C:\Users\Felix\AppData\Roaming\Dropbox\bin\PyQt5.QtWinExtras.pyd
2017-02-01 20:25 - 2017-02-07 05:50 - 00023896 _____ () C:\Users\Felix\AppData\Roaming\Dropbox\bin\winverifysignature.compiled._VerifySignature.pyd
2017-02-08 00:35 - 2017-02-07 05:50 - 00025936 _____ () C:\Users\Felix\AppData\Roaming\Dropbox\bin\librsyncffi.compiled._librsyncffi.pyd
2017-02-08 00:35 - 2017-01-14 00:51 - 00036296 _____ () C:\Users\Felix\AppData\Roaming\Dropbox\bin\librsync.dll
2017-02-08 00:35 - 2017-02-07 05:50 - 00033112 _____ () C:\Users\Felix\AppData\Roaming\Dropbox\bin\enterprise_data.compiled._enterprise_data.pyd
2017-02-08 00:35 - 2016-12-22 07:58 - 00293392 _____ () C:\Users\Felix\AppData\Roaming\Dropbox\bin\EnterpriseDataAdapter.dll
2017-02-08 00:35 - 2017-02-07 05:50 - 00084288 _____ () C:\Users\Felix\AppData\Roaming\Dropbox\bin\dropbox_sqlite_ext.DLL
2017-02-08 00:35 - 2017-01-14 01:02 - 00017864 _____ () C:\Users\Felix\AppData\Roaming\Dropbox\bin\libEGL.dll
2017-02-08 00:35 - 2017-01-14 01:02 - 01631184 _____ () C:\Users\Felix\AppData\Roaming\Dropbox\bin\libGLESv2.dll
2017-02-08 00:35 - 2017-02-07 05:50 - 00042816 _____ () C:\Users\Felix\AppData\Roaming\Dropbox\bin\PyQt5.QtWebChannel.pyd
2017-02-08 00:35 - 2017-02-07 05:50 - 00171336 _____ () C:\Users\Felix\AppData\Roaming\Dropbox\bin\PyQt5.QtWebEngineWidgets.pyd
2017-02-08 00:35 - 2017-02-07 05:50 - 00357688 _____ () C:\Users\Felix\AppData\Roaming\Dropbox\bin\PyQt5.QtQml.pyd
2017-02-01 20:25 - 2017-01-14 00:57 - 00060880 _____ () C:\Users\Felix\AppData\Roaming\Dropbox\bin\win32print.pyd
2017-02-01 20:25 - 2017-02-07 05:50 - 00026456 _____ () C:\Users\Felix\AppData\Roaming\Dropbox\bin\winffi.winhttp.compiled._winffi_winhttp.pyd
2017-02-08 00:35 - 2017-02-07 05:50 - 00546104 _____ () C:\Users\Felix\AppData\Roaming\Dropbox\bin\PyQt5.QtQuick.pyd
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
==================== Verknüpfungen (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)
==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
==================== Hosts Inhalt: ===============================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2013-08-22 14:25 - 2013-08-22 14:25 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts
==================== Andere Bereiche ============================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKU\S-1-5-21-1078537693-2019248843-686258836-1002\Control Panel\Desktop\\Wallpaper -> C:\Felix\Snowboard Wallpapers\Snowboard_wallpaper_Nicolas-Muller-_1920x1080.jpg
DNS Servers: 192.168.8.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [vm-monitoring-nb-session] => LPort=139
FirewallRules: [{45FE6330-5EDB-4BBA-AD1E-A374B3B6A209}] => C:\Program Files (x86)\Nero\Nero 2015\Nero Burning ROM\nero.exe
FirewallRules: [{65AC40DA-528A-4B99-8191-C9DF7CCA74C5}] => C:\Program Files (x86)\Nero\Nero 2015\Nero Burning ROM\StartNBR.exe
FirewallRules: [{C658C94A-EA18-4D73-9092-29431F0613D4}] => C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{D0095373-48F8-4752-A635-9D7EE8205D54}] => C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [UDP Query User{92166C44-F5F9-4262-85B0-C0BCA414350D}C:\users\felix\appdata\roaming\spotify\spotify.exe] => C:\users\felix\appdata\roaming\spotify\spotify.exe
FirewallRules: [TCP Query User{21BD3293-333C-4113-A62F-3B1B015314E4}C:\users\felix\appdata\roaming\spotify\spotify.exe] => C:\users\felix\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{82AE3F01-51C0-47F5-8230-1B5D0033D5B7}C:\users\felix\appdata\roaming\dropbox\bin\dropbox.exe] => C:\users\felix\appdata\roaming\dropbox\bin\dropbox.exe
FirewallRules: [TCP Query User{404EBC5E-B9C2-4F1B-B388-EC3F315C5EE3}C:\users\felix\appdata\roaming\dropbox\bin\dropbox.exe] => C:\users\felix\appdata\roaming\dropbox\bin\dropbox.exe
FirewallRules: [{B0B9C0E6-F146-4500-8E24-061DF14C6E7E}] => C:\Program Files (x86)\iTunes\iTunes.exe
FirewallRules: [{8418201C-9554-41EF-BDD8-4A0214C7EA56}] => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
FirewallRules: [{51400B8C-2652-47E7-BAA0-20F851AEED60}] => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
FirewallRules: [{292C3273-784D-444D-A72A-07B72BAE2DC6}] => C:\Program Files\Intel Corporation\Intel WiDi\WiDiApp.exe
FirewallRules: [{05407D69-FEC3-4131-83C2-963DC16C3C50}] => C:\Program Files (x86)\Lenovo\PowerDVD10\PowerDVD Cinema\PowerDVDCinema10.exe
FirewallRules: [{725DFA50-D992-49F9-8FBB-030FD4FA3E02}] => C:\Program Files (x86)\Lenovo\PowerDVD10\PowerDVD10.EXE
FirewallRules: [{1C643327-D3D9-4C86-98B3-BD309B291847}] => C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
FirewallRules: [{79D54DC8-713C-4002-9994-5110D9BAA7FD}] => D:\Programme\Office14\GROOVE.EXE
FirewallRules: [{EDCF5330-8F2D-41B1-BCAF-90F8A6F0911D}] => D:\Programme\Office14\GROOVE.EXE
FirewallRules: [{7AD965C3-72B9-4502-9B4A-D5E0C11AD2A4}] => D:\Programme\Office14\ONENOTE.EXE
FirewallRules: [{035E7C89-46EB-4B48-B16B-774E3597A7F0}] => D:\Programme\Office14\ONENOTE.EXE
FirewallRules: [{D7EF488B-238C-4322-A9DF-60F13532B285}] => D:\Programme\Office14\outlook.exe
FirewallRules: [{E7839166-CB67-4A77-B741-436D6014E7E4}] => D:\Programme\Office14\GROOVE.EXE
FirewallRules: [{D7F85A1D-431A-4339-9C5D-D548E71AE4C3}] => D:\Programme\Office14\GROOVE.EXE
FirewallRules: [{5C57C510-467E-48BC-9931-59D2D6CC585A}] => D:\Programme\Office14\ONENOTE.EXE
FirewallRules: [{060A138E-1803-43EB-9162-A35D4F1885B4}] => D:\Programme\Office14\ONENOTE.EXE
FirewallRules: [{8FE8F125-38C6-4572-8760-0CC4C5096ECE}] => C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{BAC178C0-2AD2-4CA0-BCEE-A4A462C58EE5}] => C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe
FirewallRules: [{AA832FDE-FD79-4A17-9A3F-248B9CDF3CEF}] => C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe
FirewallRules: [TCP Query User{C53A6FE7-92C7-4905-B188-D8021A9FDFE4}C:\users\felix\appdata\roaming\spotify\spotify.exe] => C:\users\felix\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{7AA8CD62-8D91-4BFA-B73C-4A6EEE87274D}C:\users\felix\appdata\roaming\spotify\spotify.exe] => C:\users\felix\appdata\roaming\spotify\spotify.exe
FirewallRules: [{B152DCDF-0293-412D-98CF-7D6ADD306767}] => C:\Users\Felix\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [{2A63C53E-CA1D-4327-B82E-7B185229CED9}] => C:\Users\Felix\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [{2DB78C5F-A7C8-45BD-A129-FDA7BAE6883E}] => C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{BC4EF10F-7A63-49D8-B337-9A78C66C3100}] => C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{492C79F5-5C54-4D90-9A8F-4A9AAF923066}] => C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{CF52B653-CC86-45D8-8691-5AF2A2B06EF8}] => C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{DB5329C9-EE4F-4B33-B38D-C45A4AB2A05B}] => C:\Users\Felix\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe
FirewallRules: [{5372604E-8F3D-4093-B976-300B633E8967}] => LPort=8743
FirewallRules: [{ECBCCDA5-FD33-4747-AF98-DF431E24B124}] => LPort=8643
FirewallRules: [{64EC97C1-6A4B-4C3B-B117-F2F1048E4733}] => LPort=7676
FirewallRules: [{5BBF33D8-C27E-4199-AAB1-F6067F5AA333}] => LPort=7679
FirewallRules: [{C5B6EB29-23F4-4159-AB41-8957B45B7FA7}] => LPort=24234
FirewallRules: [{234DB7E3-6A86-424F-99D1-5389F9160A31}] => LPort=7900
FirewallRules: [{46476EA0-2C91-4A7F-80C5-D431169E7174}] => LPort=1900
FirewallRules: [{7CD8061D-6BFC-48B8-9ED2-B68038C61E0E}] => C:\Program Files\Samsung\Samsung Link\Samsung Link.exe
FirewallRules: [{E2D759B8-0E67-43E2-864A-D69614D4695D}] => C:\Program Files\Samsung\Samsung Link\Samsung Link.exe
FirewallRules: [{97D85475-216E-44A1-AF62-25AFF6A16EE9}] => C:\Program Files\Samsung\Samsung Link\Samsung Link Tray Agent.exe
FirewallRules: [{B88A5D7A-675B-48A7-B4E4-D4876A5F2EFC}] => C:\Program Files\Samsung\Samsung Link\Samsung Link Tray Agent.exe
FirewallRules: [{8FB07FAE-56BF-418C-B975-1A14589EBDDD}] => C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\AllShareFrameworkDMS.exe
FirewallRules: [{81FB46EA-154F-4321-A492-3BB82707CCD3}] => C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\AllShareFrameworkDMS.exe
FirewallRules: [{AF783283-9B24-4C00-84CF-CC2B4D52FAB1}] => C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{B840725C-D52C-4E5E-9D78-5B9EE8245714}] => C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{CB650059-4C14-4B70-B333-455E1B39C008}] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Wiederherstellungspunkte =========================
12-02-2017 19:30:31 Windows Update
==================== Fehlerhafte Geräte im Gerätemanager =============
Name: Cisco AnyConnect Secure Mobility Client Virtual Miniport Adapter for Windows x64
Description: Cisco AnyConnect Secure Mobility Client Virtual Miniport Adapter for Windows x64
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Cisco Systems
Service: vpnva
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
==================== Fehlereinträge in der Ereignisanzeige: =========================
Applikationsfehler:
==================
Error: (02/12/2017 07:59:24 PM) (Source: Windows Search Service) (EventID: 3104) (User: )
Description: Fehler beim Aufzählen von Benutzersitzungen zum Generieren von Filterpools.
Details:
(HRESULT : 0x80040210) (0x80040210)
Error: (02/12/2017 07:59:12 PM) (Source: Windows Search Service) (EventID: 3104) (User: )
Description: Fehler beim Aufzählen von Benutzersitzungen zum Generieren von Filterpools.
Details:
(HRESULT : 0x80040210) (0x80040210)
Error: (02/12/2017 07:55:32 PM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: NT-AUTORITÄT)
Description: Überspringen: Eap method DLL path Fehler bei der Überprüfung. Fehler: Type-ID=43, Autor-ID=9, Lieferant-ID=0, Lieferant-Typ=0
Error: (02/12/2017 07:55:32 PM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: NT-AUTORITÄT)
Description: Überspringen: Eap method DLL path Fehler bei der Überprüfung. Fehler: Type-ID=25, Autor-ID=9, Lieferant-ID=0, Lieferant-Typ=0
Error: (02/12/2017 07:55:32 PM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: NT-AUTORITÄT)
Description: Überspringen: Eap method DLL path Fehler bei der Überprüfung. Fehler: Type-ID=17, Autor-ID=9, Lieferant-ID=0, Lieferant-Typ=0
Error: (02/12/2017 07:55:30 PM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: NT-AUTORITÄT)
Description: Überspringen: Eap method DLL path Fehler bei der Überprüfung. Fehler: Type-ID=43, Autor-ID=9, Lieferant-ID=0, Lieferant-Typ=0
Error: (02/12/2017 07:55:30 PM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: NT-AUTORITÄT)
Description: Überspringen: Eap method DLL path Fehler bei der Überprüfung. Fehler: Type-ID=25, Autor-ID=9, Lieferant-ID=0, Lieferant-Typ=0
Error: (02/12/2017 07:55:30 PM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: NT-AUTORITÄT)
Description: Überspringen: Eap method DLL path Fehler bei der Überprüfung. Fehler: Type-ID=17, Autor-ID=9, Lieferant-ID=0, Lieferant-Typ=0
Error: (02/12/2017 07:31:09 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Fehler beim Kryptografiedienst während der Verarbeitung des "OnIdentity()"-Aufrufobjekts "System Writer".
Details:
AddLegacyDriverFiles: Unable to back up image of binary Microsoft-Verbindungsschichterkennungsprotokoll.
System Error:
Zugriff verweigert
.
Error: (02/08/2017 07:19:08 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 3079
Systemfehler:
=============
Error: (02/12/2017 08:20:07 PM) (Source: DCOM) (EventID: 10010) (User: NT-AUTORITÄT)
Description: Der Server "{784E29F4-5EBE-4279-9948-1E8FE941646D}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.
Error: (02/12/2017 08:17:07 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: Durch die Berechtigungseinstellungen für "Anwendungsspezifisch" wird dem Benutzer "NT-AUTORITÄT\Lokaler Dienst" (SID: S-1-5-19) unter der Adresse "LocalHost (unter Verwendung von LRPC)" keine Berechtigung vom Typ "Lokal Aktivierung" für die COM-Serveranwendung mit der CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
und der APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
im Anwendungscontainer "Nicht verfügbar" (SID: Nicht verfügbar) gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool für Komponentendienste geändert werden.
Error: (02/12/2017 08:17:07 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: Durch die Berechtigungseinstellungen für "Anwendungsspezifisch" wird dem Benutzer "NT-AUTORITÄT\Lokaler Dienst" (SID: S-1-5-19) unter der Adresse "LocalHost (unter Verwendung von LRPC)" keine Berechtigung vom Typ "Lokal Aktivierung" für die COM-Serveranwendung mit der CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
und der APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
im Anwendungscontainer "Nicht verfügbar" (SID: Nicht verfügbar) gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool für Komponentendienste geändert werden.
Error: (02/12/2017 08:17:07 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: Durch die Berechtigungseinstellungen für "Anwendungsspezifisch" wird dem Benutzer "NT-AUTORITÄT\SYSTEM" (SID: S-1-5-18) unter der Adresse "LocalHost (unter Verwendung von LRPC)" keine Berechtigung vom Typ "Lokal Aktivierung" für die COM-Serveranwendung mit der CLSID
{8D8F4F83-3594-4F07-8369-FC3C3CAE4919}
und der APPID
{F72671A9-012C-4725-9D2F-2A4D32D65169}
im Anwendungscontainer "Nicht verfügbar" (SID: Nicht verfügbar) gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool für Komponentendienste geändert werden.
Error: (02/12/2017 07:58:41 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "NVIDIA Update Service Daemon" wurde aufgrund folgenden Fehlers nicht gestartet:
Der Dienst konnte wegen einer fehlerhaften Anmeldung nicht gestartet werden.
Error: (02/12/2017 07:58:41 PM) (Source: Service Control Manager) (EventID: 7038) (User: )
Description: Der Dienst "nvUpdatusService" konnte sich nicht als ".\UpdatusUser" mit dem aktuellen Kennwort aufgrund des folgenden Fehlers anmelden:
Der Benutzername oder das Kennwort ist falsch.
Vergewissern Sie sich, dass der Dienst richtig konfiguriert ist im Dienste-Snap-In in der Microsoft Management Console (MMC).
Error: (02/12/2017 07:55:42 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Avira.ServiceHost erreicht.
Error: (02/12/2017 07:54:52 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Das System wurde zuvor am 12.02.2017 um 19:34:23 unerwartet heruntergefahren.
Error: (02/12/2017 07:41:48 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT-AUTORITÄT)
Description: Installationsfehler: Die Installation des folgenden Updates ist mit Fehler 0x800705b4 fehlgeschlagen: NVIDIA - Display - 12/29/2016 12:00:00 AM - 21.21.13.7654
Error: (02/08/2017 02:07:10 AM) (Source: volsnap) (EventID: 36) (User: )
Description: The shadow copies of volume C: were aborted because the shadow copy storage could not grow due to a user imposed limit.
==================== Speicherinformationen ===========================
Prozessor: Intel(R) Core(TM) i7-3537U CPU @ 2.00GHz
Prozentuale Nutzung des RAM: 57%
Installierter physikalischer RAM: 8066.02 MB
Verfügbarer physikalischer RAM: 3438.58 MB
Summe virtueller Speicher: 9474.02 MB
Verfügbarer virtueller Speicher: 4174.86 MB
==================== Laufwerke ================================
Drive c: (Windows8_OS) (Fixed) (Total:890.73 GB) (Free:30.8 GB) NTFS ==>[System mit Startkomponenten (eingeholt von Laufwerk)]
Drive d: (LENOVO) (Fixed) (Total:25 GB) (Free:19.76 GB) NTFS
==================== MBR & Partitionstabelle ==================
========================================================
Disk: 0 (Size: 22.4 GB) (Disk ID: 48583CDC)
Partition: GPT.
========================================================
Disk: 1 (Size: 931.5 GB) (Disk ID: 48583CDF)
Partition: GPT.
==================== Ende von Addition.txt ============================ Und hier noch der TDSSKiller Report: Code:
22:19:23.0384 0x1afc TDSS rootkit removing tool 3.1.0.12 Nov 7 2016 07:10:01
22:19:23.0384 0x1afc UEFI system
22:20:25.0659 0x1afc ============================================================
22:20:25.0659 0x1afc Current date / time: 2017/02/12 22:20:25.0659
22:20:25.0737 0x1afc SystemInfo:
22:20:25.0737 0x1afc
22:20:25.0737 0x1afc OS Version: 10.0.14393 ServicePack: 0.0
22:20:25.0737 0x1afc Product type: Workstation
22:20:25.0737 0x1afc ComputerName: IDEA-PC
22:20:25.0737 0x1afc UserName: Felix
22:20:25.0737 0x1afc Windows directory: C:\WINDOWS
22:20:25.0737 0x1afc System windows directory: C:\WINDOWS
22:20:25.0737 0x1afc Running under WOW64
22:20:25.0737 0x1afc Processor architecture: Intel x64
22:20:25.0737 0x1afc Number of processors: 4
22:20:25.0737 0x1afc Page size: 0x1000
22:20:25.0737 0x1afc Boot type: Normal boot
22:20:25.0737 0x1afc CodeIntegrityOptions = 0x00000001
22:20:25.0737 0x1afc ============================================================
22:20:26.0407 0x1afc KLMD registered as C:\WINDOWS\system32\drivers\42686842.sys
22:20:26.0407 0x1afc KLMD ARK init status: drvProperties = 0xFFF00, osBuild = 14393.693, osProperties = 0x19
22:20:26.0735 0x1afc System UUID: {BE081366-5144-73D4-1C63-5240D96036CA}
22:20:27.0194 0x1afc Drive \Device\Harddisk0\DR0 - Size: 0x5976F6000 ( 22.37 Gb ), SectorSize: 0x200, Cylinders: 0xB67, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
22:20:27.0241 0x1afc Drive \Device\Harddisk1\DR1 - Size: 0xE8E0DB6000 ( 931.51 Gb ), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
22:20:27.0288 0x1afc ============================================================
22:20:27.0288 0x1afc \Device\Harddisk0\DR0:
22:20:27.0288 0x1afc GPT partitions:
22:20:27.0288 0x1afc \Device\Harddisk0\DR0\Partition1: GPT, TypeGUID: {B8CB5058-C187-4719-BAF0-379CA2D4C97E}, UniqueGUID: {4613EE39-4727-4347-8134-173F590F716F}, Name: HFS, StartLBA 0x1000, BlocksNum 0x24B9800
22:20:27.0288 0x1afc \Device\Harddisk0\DR0\Partition2: GPT, TypeGUID: {D3BFE2DE-3DAF-11DF-BA40-E3A556D89593}, UniqueGUID: {AACF0AFF-6B40-47FD-9702-F9903FF3E526}, Name: Basic data partition, StartLBA 0x24BB000, BlocksNum 0x800000
22:20:27.0288 0x1afc MBR partitions:
22:20:27.0288 0x1afc \Device\Harddisk1\DR1:
22:20:27.0334 0x1afc GPT partitions:
22:20:27.0397 0x1afc \Device\Harddisk1\DR1\Partition1: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {7B90BF87-9B3D-442C-8090-5AA50D38504F}, Name: Basic data partition, StartLBA 0x800, BlocksNum 0x1F4000
22:20:27.0397 0x1afc \Device\Harddisk1\DR1\Partition2: GPT, TypeGUID: {C12A7328-F81F-11D2-BA4B-00A0C93EC93B}, UniqueGUID: {B9F1467C-0D1D-41B9-87E1-4D25797544BC}, Name: EFI system partition, StartLBA 0x1F4800, BlocksNum 0x82000
22:20:27.0397 0x1afc \Device\Harddisk1\DR1\Partition3: GPT, TypeGUID: {BFBFAFE7-A34F-448A-9A5B-6213EB736C22}, UniqueGUID: {7B1DD7B5-BE09-4C37-8B89-89A97C6DF513}, Name: Basic data partition, StartLBA 0x276800, BlocksNum 0x1F4000
22:20:27.0397 0x1afc \Device\Harddisk1\DR1\Partition4: GPT, TypeGUID: {E3C9E316-0B5C-4DB8-817D-F92DF00215AE}, UniqueGUID: {0F59B35A-6AF4-4CF2-8B65-0ECDBFC0169F}, Name: Microsoft reserved partition, StartLBA 0x46A800, BlocksNum 0x40000
22:20:27.0397 0x1afc \Device\Harddisk1\DR1\Partition5: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {9730F9BA-012D-4E51-BF21-626AA411DDBB}, Name: Basic data partition, StartLBA 0x4AA800, BlocksNum 0x6F575000
22:20:27.0397 0x1afc \Device\Harddisk1\DR1\Partition6: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {BBA69484-912C-47EA-9CCC-B10216526E0D}, Name: , StartLBA 0x6FA1F800, BlocksNum 0xE1000
22:20:27.0397 0x1afc \Device\Harddisk1\DR1\Partition7: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {08A344D1-1303-41BC-AA4A-CF37BB73770A}, Name: , StartLBA 0x6FB00800, BlocksNum 0xAF000
22:20:27.0397 0x1afc \Device\Harddisk1\DR1\Partition8: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {1D7DCFD2-3B11-4B76-A105-9C4009E67C0F}, Name: Basic data partition, StartLBA 0x6FBAF800, BlocksNum 0x3200000
22:20:27.0397 0x1afc \Device\Harddisk1\DR1\Partition9: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {8BDC1AFE-78C5-463B-BC4B-2DFF443AE4DA}, Name: Basic data partition, StartLBA 0x72DAF800, BlocksNum 0x1957000
22:20:27.0397 0x1afc MBR partitions:
22:20:27.0397 0x1afc ============================================================
22:20:27.0564 0x1afc C: <-> \Device\Harddisk1\DR1\Partition5
22:20:27.0672 0x1afc D: <-> \Device\Harddisk1\DR1\Partition8
22:20:27.0672 0x1afc ============================================================
22:20:27.0672 0x1afc Initialize success
22:20:27.0672 0x1afc ============================================================
22:21:21.0017 0x1508 ============================================================
22:21:21.0017 0x1508 Scan started
22:21:21.0017 0x1508 Mode: Manual; SigCheck; TDLFS;
22:21:21.0017 0x1508 ============================================================
22:21:21.0017 0x1508 KSN ping started
22:21:28.0176 0x1508 KSN ping finished: true
22:21:34.0704 0x1508 ================ Scan system memory ========================
22:21:34.0704 0x1508 System memory - ok
22:21:34.0704 0x1508 ================ Scan services =============================
22:21:36.0086 0x1508 1394ohci - ok
22:21:36.0115 0x1508 3ware - ok
22:21:36.0147 0x1508 ACPI - ok
22:21:36.0147 0x1508 AcpiDev - ok
22:21:36.0193 0x1508 acpiex - ok
22:21:36.0193 0x1508 acpipagr - ok
22:21:36.0269 0x1508 AcpiPmi - ok
22:21:36.0441 0x1508 acpitime - ok
22:21:36.0596 0x1508 [ 3B42D95D20CD2AACDB0564471AE43ED7, BF49568D7060159F61D5F6DE7ECDECCCD1F920A2881544BA83CF420C822F6653 ] ACPIVPC C:\WINDOWS\System32\drivers\AcpiVpc.sys
22:21:36.0690 0x1508 ACPIVPC - ok
22:21:36.0860 0x1508 [ D0B11E40EA74A98A5E133DF1F5276240, BAD5885CD8CC271D59DFA95159EFC3AC36D2BA11B6DA593AAED0C45F1C2F280F ] acsock C:\WINDOWS\system32\DRIVERS\acsock64.sys
22:21:36.0892 0x1508 acsock - ok
22:21:37.0173 0x1508 [ FC5B75CA6A1DA31EDD4F8D53F5540B98, CDC445F2790ADFC4C5568C40D4DA8BB95CD71991665B38AEC3D84571C99C3520 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
22:21:37.0204 0x1508 AdobeARMservice - ok
22:21:37.0261 0x1508 ADP80XX - ok
22:21:37.0332 0x1508 AFD - ok
22:21:37.0367 0x1508 ahcache - ok
22:21:37.0414 0x1508 AJRouter - ok
22:21:37.0549 0x1508 ALG - ok
22:21:38.0193 0x1508 [ 5EE5E5DF9E92B3A5581B9DE7DCC05972, 6AD4D98F00C2B454807450EDB9ED3545BA91B608A853A59BDE7282808CBFF6B0 ] AllShare Framework DMS C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\AllShareFrameworkManagerDMS.exe
22:21:38.0224 0x1508 AllShare Framework DMS - detected UnsignedFile.Multi.Generic ( 1 )
22:21:45.0361 0x1508 Detect skipped due to KSN trusted
22:21:45.0361 0x1508 AllShare Framework DMS - ok
22:21:45.0426 0x1508 AmdK8 - ok
22:21:45.0442 0x1508 AmdPPM - ok
22:21:45.0505 0x1508 amdsata - ok
22:21:45.0571 0x1508 amdsbs - ok
22:21:45.0633 0x1508 amdxata - ok
22:21:45.0774 0x1508 [ 0C3D62CB6B8F2B3CC42369BAC0F58AD5, F0121EACB6060DF1F6C5F79C15D5B483F301EF85B3C79F67806520BE9CEE398E ] AMPPAL C:\WINDOWS\System32\drivers\AMPPAL.sys
22:21:45.0805 0x1508 AMPPAL - ok
22:21:46.0393 0x1508 [ 98D7647EF729503A60EF870DA5C21D0D, 7E36E8E3D9D0BD940DC225E1DB7EFD90F76F7BE8DCAD9782255556C31D6FD476 ] AntiVirMailService C:\Program Files (x86)\Avira\AntiVir Desktop\avmailc7.exe
22:21:46.0425 0x1508 AntiVirMailService - ok
22:21:46.0896 0x1508 [ 229E752A26B53E155524D6530B95CDD4, B4D3DEA52860143D16A57EBA31CD3394B8B4FEA642EB3A736C8388447AB7E0E9 ] AntiVirSchedulerService C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
22:21:46.0914 0x1508 AntiVirSchedulerService - ok
22:21:47.0054 0x1508 [ 229E752A26B53E155524D6530B95CDD4, B4D3DEA52860143D16A57EBA31CD3394B8B4FEA642EB3A736C8388447AB7E0E9 ] AntiVirService C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
22:21:47.0086 0x1508 AntiVirService - ok
22:21:47.0767 0x1508 [ F2B26CD2305E917B1EA1BF49E0C59E31, 8CCE64C68B80D56C7604DB6ABD187F66C624462328F4886C607F0A46D8E9DE92 ] AntiVirWebService C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe
22:21:47.0798 0x1508 AntiVirWebService - ok
22:21:47.0798 0x1508 AppID - ok
22:21:47.0845 0x1508 AppIDSvc - ok
22:21:47.0876 0x1508 Appinfo - ok
22:21:48.0171 0x1508 [ 650D03E40F93FAE323CB841F80368E5C, F67B97CFDCE2EE9294977725268EFDB0DD724BD16E7ED5BFCA45375AA8EBA5BB ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
22:21:48.0202 0x1508 Apple Mobile Device - ok
22:21:48.0283 0x1508 applockerfltr - ok
22:21:48.0377 0x1508 AppReadiness - ok
22:21:48.0408 0x1508 AppXSvc - ok
22:21:48.0440 0x1508 arcsas - ok
22:21:48.0440 0x1508 AsyncMac - ok
22:21:48.0518 0x1508 atapi - ok
22:21:48.0627 0x1508 AudioEndpointBuilder - ok
22:21:48.0643 0x1508 Audiosrv - ok
22:21:48.0783 0x1508 [ 19A629CC661BBB49E25203B9626354F9, 9FDE67E19CE0B5973441A11EB0D5CD8187C1B47B3A2C866FD6BD939D31F42924 ] avgntflt C:\WINDOWS\system32\DRIVERS\avgntflt.sys
22:21:48.0815 0x1508 avgntflt - ok
22:21:48.0942 0x1508 [ B34C86461D03F33E9B1A57699DCABED3, 127A63A3AEC796DDF7E19432CAF523CA23051058752B9772244655797B3B4CDB ] avipbb C:\WINDOWS\system32\DRIVERS\avipbb.sys
22:21:48.0974 0x1508 avipbb - ok
22:21:49.0370 0x1508 [ 2AEE4D1D7E668F1CCF97EDE93509B0EE, B082B3BBB27D3C8B26A754508C3B98BA803FEA707898FF18A120D6A2679098DF ] Avira.ServiceHost C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
22:21:49.0386 0x1508 Avira.ServiceHost - ok
22:21:49.0436 0x1508 [ 79F7741A773FF194EEC64A8161AE26D5, 3DDEA5FBDCB74A2BACC895A44C8C2A947F09E2649ED61D781E99DD61DBFACA5D ] avkmgr C:\WINDOWS\system32\DRIVERS\avkmgr.sys
22:21:49.0436 0x1508 avkmgr - ok
22:21:49.0564 0x1508 [ 899D89FDF015BBAF628076987D74C295, 7534A10F652FBE559431B9B1C6BC13874E8BC7438D7AFD7553F96811FD3E59BD ] avnetflt C:\WINDOWS\system32\DRIVERS\avnetflt.sys
22:21:49.0595 0x1508 avnetflt - ok
22:21:49.0611 0x1508 AxInstSV - ok
22:21:49.0627 0x1508 b06bdrv - ok
22:21:49.0658 0x1508 BasicDisplay - ok
22:21:49.0720 0x1508 BasicRender - ok
22:21:49.0752 0x1508 bcmfn - ok
22:21:49.0767 0x1508 bcmfn2 - ok
22:21:49.0845 0x1508 BDESVC - ok
22:21:49.0877 0x1508 Beep - ok
22:21:49.0907 0x1508 BFE - ok
22:21:49.0934 0x1508 BITS - ok
22:21:50.0328 0x1508 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD, 17BFFC5DF609CE3B2F0CAB4BD6C118608C66A3AD86116A47E90B2BB7D8954122 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
22:21:50.0359 0x1508 Bonjour Service - ok
22:21:50.0375 0x1508 bowser - ok
22:21:50.0457 0x1508 BrokerInfrastructure - ok
22:21:50.0548 0x1508 Browser - ok
22:21:50.0626 0x1508 BthAvrcpTg - ok
22:21:50.0689 0x1508 BthEnum - ok
22:21:50.0783 0x1508 BthHFEnum - ok
22:21:50.0876 0x1508 bthhfhid - ok
22:21:50.0955 0x1508 BthHFSrv - ok
22:21:51.0117 0x1508 BthLEEnum - ok
22:21:51.0180 0x1508 BTHMODEM - ok
22:21:51.0180 0x1508 BthPan - ok
22:21:51.0195 0x1508 BTHPORT - ok
22:21:51.0227 0x1508 bthserv - ok
22:21:51.0227 0x1508 BTHUSB - ok
22:21:51.0294 0x1508 buttonconverter - ok
22:21:51.0403 0x1508 CapImg - ok
22:21:51.0403 0x1508 cdfs - ok
22:21:51.0481 0x1508 CDPSvc - ok
22:21:51.0512 0x1508 CDPUserSvc - ok
22:21:51.0564 0x1508 cdrom - ok
22:21:51.0626 0x1508 CertPropSvc - ok
22:21:51.0658 0x1508 cht4iscsi - ok
22:21:51.0658 0x1508 cht4vbd - ok
22:21:51.0798 0x1508 circlass - ok
22:21:51.0861 0x1508 CLFS - ok
22:21:51.0983 0x1508 ClipSVC - ok
22:21:52.0092 0x1508 clreg - ok
22:21:52.0186 0x1508 CmBatt - ok
22:21:52.0251 0x1508 CNG - ok
22:21:52.0257 0x1508 cnghwassist - ok
22:21:53.0430 0x1508 CompositeBus - ok
22:21:53.0446 0x1508 COMSysApp - ok
22:21:53.0477 0x1508 condrv - ok
22:21:53.0658 0x1508 CoreMessagingRegistrar - ok
22:21:54.0892 0x1508 [ A28D6FA203CE094BDE7ED8CEC6079E42, 5DCA8BA21F5FD0D9F00620E7592949ABCF3BA202CF7AF3D84F93DF7C13E2D4C9 ] cphs C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
22:21:54.0932 0x1508 cphs - ok
22:21:54.0981 0x1508 CryptSvc - ok
22:21:55.0012 0x1508 dam - ok
22:21:55.0044 0x1508 DcomLaunch - ok
22:21:55.0137 0x1508 DcpSvc - ok
22:21:55.0231 0x1508 defragsvc - ok
22:21:55.0282 0x1508 DeviceAssociationService - ok
22:21:55.0376 0x1508 DeviceInstall - ok
22:21:55.0445 0x1508 DevQueryBroker - ok
22:21:55.0513 0x1508 Dfsc - ok
22:21:55.0563 0x1508 Dhcp - ok
22:21:55.0813 0x1508 diagnosticshub.standardcollector.service - ok
22:21:55.0920 0x1508 DiagTrack - ok
22:21:56.0020 0x1508 disk - ok
22:21:56.0067 0x1508 DmEnrollmentSvc - ok
22:21:56.0083 0x1508 dmvsc - ok
22:21:56.0145 0x1508 dmwappushservice - ok
22:21:56.0223 0x1508 Dnscache - ok
22:21:56.0252 0x1508 dot3svc - ok
22:21:56.0255 0x1508 DPS - ok
22:21:56.0257 0x1508 drmkaud - ok
22:21:56.0273 0x1508 DsmSvc - ok
22:21:56.0289 0x1508 DsSvc - ok
22:21:56.0304 0x1508 DXGKrnl - ok
22:21:56.0320 0x1508 EapHost - ok
22:21:56.0320 0x1508 ebdrv - ok
22:21:56.0335 0x1508 EFS - ok
22:21:56.0382 0x1508 EhStorClass - ok
22:21:56.0468 0x1508 EhStorTcgDrv - ok
22:21:56.0515 0x1508 embeddedmode - ok
22:21:56.0580 0x1508 EntAppSvc - ok
22:21:56.0642 0x1508 ErrDev - ok
22:21:56.0767 0x1508 EventSystem - ok
22:21:56.0941 0x1508 [ 23B79B19F49A037EBA4A9A3BB03ED91D, 2E0918B20188CBFAC0E64A5B36739DF4638A343553908888DFDD708743370F3F ] ewusbnet C:\WINDOWS\system32\DRIVERS\ewusbnet.sys
22:21:56.0974 0x1508 ewusbnet - ok
22:21:57.0099 0x1508 [ D2EAA04AF43154B62FA85B08BAD0A7CA, B18F09CAD04AD61A1B8DCD3BBC70A82FB50008C147389D3245E39856BA940A87 ] excfs C:\WINDOWS\system32\DRIVERS\excfs.sys
22:21:57.0099 0x1508 excfs - ok
22:21:57.0178 0x1508 [ E6082A6C109238A725D83184724C4A36, 66F0D4798C357FFCC5A35E45BE8E5F0A97E7BCF98CFAA1BB2269F6D6B910A0A3 ] excsd C:\WINDOWS\system32\DRIVERS\excsd.sys
22:21:57.0193 0x1508 excsd - ok
22:21:57.0275 0x1508 exfat - ok
22:21:57.0453 0x1508 [ 68030FF4B7669E15916910885E2E6160, 324EC07A0135354A5D41ED841919D61C218ECA718DE8A8357B0D2AD0B621777B ] ExpressCache C:\Program Files\Diskeeper Corporation\ExpressCache\ExpressCache.exe
22:21:57.0485 0x1508 ExpressCache - ok
22:21:57.0543 0x1508 fastfat - ok
22:21:57.0611 0x1508 Fax - ok
22:21:57.0673 0x1508 fdc - ok
22:21:57.0720 0x1508 fdPHost - ok
22:21:57.0751 0x1508 FDResPub - ok
22:21:57.0892 0x1508 fhsvc - ok
22:21:57.0989 0x1508 FileCrypt - ok
22:21:58.0004 0x1508 FileInfo - ok
22:21:58.0051 0x1508 Filetrace - ok
22:21:58.0168 0x1508 flpydisk - ok
22:21:58.0183 0x1508 FltMgr - ok
22:21:58.0250 0x1508 FontCache - ok
22:21:58.0675 0x1508 FontCache3.0.0.0 - ok
22:21:58.0769 0x1508 FrameServer - ok
22:21:58.0784 0x1508 FsDepends - ok
22:21:58.0784 0x1508 Fs_Rec - ok
22:21:58.0831 0x1508 fvevol - ok
22:21:58.0909 0x1508 [ 8E98D21EE06192492A5671A6144D092F, B8F656B34D361EA5AFB47F3A67AB2221580DADA59C8CD0CB83181E4AD8B562B4 ] GEARAspiWDM C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys
22:21:58.0925 0x1508 GEARAspiWDM - ok
22:21:59.0068 0x1508 gencounter - ok
22:21:59.0131 0x1508 genericusbfn - ok
22:21:59.0193 0x1508 GPIOClx0101 - ok
22:21:59.0259 0x1508 gpsvc - ok
22:21:59.0337 0x1508 GpuEnergyDrv - ok
22:21:59.0799 0x1508 [ 053EEEE1ABAE53F044F1E386E22AE525, 195C8B78C0CF68F3DC1C08E58CE2A7146764F9273C39EF369194A366FA8EE1AD ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
22:21:59.0827 0x1508 gupdate - ok
22:21:59.0845 0x1508 [ 053EEEE1ABAE53F044F1E386E22AE525, 195C8B78C0CF68F3DC1C08E58CE2A7146764F9273C39EF369194A366FA8EE1AD ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
22:21:59.0861 0x1508 gupdatem - ok
22:21:59.0984 0x1508 HDAudBus - ok
22:22:00.0004 0x1508 HidBatt - ok
22:22:00.0067 0x1508 HidBth - ok
22:22:00.0098 0x1508 hidi2c - ok
22:22:00.0192 0x1508 hidinterrupt - ok
22:22:00.0192 0x1508 HidIr - ok
22:22:00.0241 0x1508 hidserv - ok
22:22:00.0366 0x1508 HidUsb - ok
22:22:00.0429 0x1508 HomeGroupListener - ok
22:22:00.0468 0x1508 HomeGroupProvider - ok
22:22:00.0484 0x1508 HpSAMD - ok
22:22:00.0548 0x1508 HTTP - ok
22:22:00.0657 0x1508 [ 08B1A06A55F068A17A51BA26618CF50F, 8ADFC9D3003208A9B3BE12DCD1418A13C4D19E13E00EFEE556EF87B70F49B2E6 ] huawei_enumerator C:\WINDOWS\System32\drivers\ew_jubusenum.sys
22:22:00.0688 0x1508 huawei_enumerator - ok
22:22:00.0798 0x1508 HvHost - ok
22:22:00.0861 0x1508 hvservice - ok
22:22:00.0908 0x1508 hwpolicy - ok
22:22:01.0020 0x1508 hyperkbd - ok
22:22:01.0191 0x1508 i8042prt - ok
22:22:01.0204 0x1508 iagpio - ok
22:22:01.0206 0x1508 iai2c - ok
22:22:01.0285 0x1508 iaLPSS2i_GPIO2 - ok
22:22:01.0300 0x1508 iaLPSS2i_I2C - ok
22:22:01.0300 0x1508 iaLPSSi_GPIO - ok
22:22:01.0458 0x1508 iaLPSSi_I2C - ok
22:22:01.0704 0x1508 [ 6C91E425ACE29594BD574DE38AC9B76D, 697784E4C7AF08B1F35662D8AD871E6890CECE22B6E64985B7C1A66C10DA390D ] iaStorA C:\WINDOWS\system32\drivers\iaStorA.sys
22:22:01.0736 0x1508 iaStorA - ok
22:22:01.0861 0x1508 iaStorAV - ok
22:22:01.0876 0x1508 iaStorV - ok
22:22:01.0939 0x1508 ibbus - ok
22:22:02.0032 0x1508 [ 62F0CB0A54EAF37E15EC385300957BB8, 55FCF7068D84D5AEEAF3149A5349BF13F1D18E34956217916ED7C1950885E63C ] ibtfltcoex C:\WINDOWS\system32\DRIVERS\ibtfltcoex.sys
22:22:02.0064 0x1508 ibtfltcoex - ok
22:22:02.0370 0x1508 [ ABEFA4BD23329FD9BD47496BF2E58774, 9689D4C6380735EE1CC7F480696CDDC229E0FA511942AC813314D353584D82DD ] IconMan_R C:\Program Files (x86)\Realtek\Realtek USB 2.0 Card Reader\RIconMan.exe
22:22:02.0448 0x1508 IconMan_R - detected UnsignedFile.Multi.Generic ( 1 )
22:22:09.0604 0x1508 Detect skipped due to KSN trusted
22:22:09.0604 0x1508 IconMan_R - ok
22:22:09.0682 0x1508 icssvc - ok
22:22:09.0955 0x1508 [ 9CE4D3A79D3180AC5A141E2F7E7137F4, 1D717D2156B78632895281779D2646AB066619EA1DB293A9505BF7C174F53271 ] igfx C:\WINDOWS\system32\DRIVERS\igdkmd64.sys
22:22:10.0039 0x1508 igfx - ok
22:22:10.0082 0x1508 [ 6A9C613D0F5F9676D128F39B63ACE45B, 027B9568C740E336C7CBBE952309E2719E8FFA14E7DFC2B85B49E0C0CE7D2149 ] igfxCUIService1.0.0.0 C:\WINDOWS\system32\igfxCUIService.exe
22:22:10.0084 0x1508 igfxCUIService1.0.0.0 - ok
22:22:10.0100 0x1508 IKEEXT - ok
22:22:10.0116 0x1508 IndirectKmd - ok
22:22:10.0209 0x1508 [ B1F193AB8FB72E9FC34B3A39314ED872, 408E98D9C8ABB928090DD9E5D1BB227EFBC997BF168437BAEF0461EB0D1DAE3D ] intaud_WaveExtensible C:\WINDOWS\system32\drivers\intelaud.sys
22:22:10.0246 0x1508 intaud_WaveExtensible - ok
22:22:10.0548 0x1508 [ 55FCBF5440EE61DBC5A6F637F7B4C776, 7D6F0DE6B8D38D4BA87592E9F39B402530007D43A23E8E7A57AA6CC30D53AC22 ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RTKVHD64.sys
22:22:10.0610 0x1508 IntcAzAudAddService - ok
22:22:10.0892 0x1508 [ 87871AB7AC797F922A6F3D4C874CED96, 2BCD89911E42827CD294DD7D1486A7845D1F98019E51958E0F488384401B2944 ] IntcDAud C:\WINDOWS\system32\DRIVERS\IntcDAud.sys
22:22:10.0907 0x1508 IntcDAud - ok
22:22:11.0439 0x1508 [ C99F8E90DE4B8F0C7FE15BB1CBCD29DC, F791EE101EEF8B9F48102B6C63A89B78F7C0041C750C4F4C0D16D54B583B7B5C ] Intel(R) Capability Licensing Service Interface C:\Program Files\Intel\iCLS Client\HeciServer.exe
22:22:11.0455 0x1508 Intel(R) Capability Licensing Service Interface - ok
22:22:11.0502 0x1508 intelide - ok
22:22:11.0549 0x1508 intelpep - ok
22:22:11.0739 0x1508 intelppm - ok
22:22:11.0771 0x1508 iorate - ok
22:22:11.0786 0x1508 IpFilterDriver - ok
22:22:11.0802 0x1508 iphlpsvc - ok
22:22:11.0819 0x1508 IPMIDRV - ok
22:22:11.0829 0x1508 IPNAT - ok
22:22:12.0101 0x1508 [ 7FAE5B6CDB18B0B2E81F32869F595022, D873A7EE94749E1700E8F6B8BB7B485AE1B0B83388D63BE06335720498D4794F ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
22:22:12.0133 0x1508 iPod Service - ok
22:22:12.0133 0x1508 irda - ok
22:22:12.0133 0x1508 IRENUM - ok
22:22:12.0180 0x1508 irmon - ok
22:22:12.0340 0x1508 [ 4D9B9A794F22415B8C3E0CCFBE61BC7A, 4CF01BC95F0AD7DC42AF8A0FCE032DF00610524A98CF52F531E9DE93137E7B87 ] irstrtdv C:\WINDOWS\System32\drivers\irstrtdv.sys
22:22:12.0371 0x1508 irstrtdv - ok
22:22:14.0401 0x1508 [ E145E934392E7A49FDC6775AC3A347F8, 8E5DBC8C34FB3B68851489E0860BA3ACE6CDF46BB5E2AEFD1DEF6E895566068B ] irstrtsv C:\WINDOWS\SysWOW64\irstrtsv.exe
22:22:14.0432 0x1508 irstrtsv - ok
22:22:14.0464 0x1508 isapnp - ok
22:22:14.0549 0x1508 iScsiPrt - ok
22:22:14.0674 0x1508 [ 48B904D31F2369D7B0122617038D3F5B, 8A43CB37667929CCCC37B6E79E82509BBCA6C8884B44059DC87BCA7C21BE7FE1 ] iwdbus C:\WINDOWS\System32\drivers\iwdbus.sys
22:22:14.0705 0x1508 iwdbus - ok
22:22:14.0954 0x1508 [ 78ABBE558F57144047F10A0F50FE4B2F, 6BE608F7697D83FD6C7E6EA422AC5637933BDC96B1044C12DE9A419CE7D6F6CE ] jhi_service C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
22:22:14.0986 0x1508 jhi_service - ok
22:22:15.0099 0x1508 kbdclass - ok
22:22:15.0099 0x1508 kbdhid - ok
22:22:15.0161 0x1508 kdnic - ok
22:22:15.0192 0x1508 KeyIso - ok
22:22:15.0192 0x1508 KSecDD - ok
22:22:15.0248 0x1508 KSecPkg - ok
22:22:15.0258 0x1508 ksthunk - ok
22:22:15.0320 0x1508 KtmRm - ok
22:22:15.0582 0x1508 [ 61959D7B5A83C524909325AE751F19F9, 1D6AC527C36E9986CDE7B852B11DC9DC8DE367CEEDE0AE481B1FB5C6E4F26C26 ] LAD C:\WINDOWS\System32\drivers\LAD.sys
22:22:15.0613 0x1508 LAD - ok
22:22:15.0644 0x1508 LanmanServer - ok
22:22:15.0785 0x1508 LanmanWorkstation - ok
22:22:16.0085 0x1508 [ 93138543A4D836E97543BA2B857BDBFF, 23B4C52AFDCA16D5DC49F08FE755B1AF457BEBBE1599EF7B9C310C105639384B ] Lenovo Smart Update Service C:\Program Files (x86)\Lenovo\Lenovo Smart Update\Lenovo Smart Update Service.exe
22:22:16.0101 0x1508 Lenovo Smart Update Service - ok
22:22:16.0163 0x1508 lfsvc - ok
22:22:16.0261 0x1508 [ BE166935083F9C38EDFDC21B9A7A679B, 89C64DBE58E1B974208AAAA5CC757C599B1439C205C3C48BF16BA054A06DBC94 ] LHDmgr C:\WINDOWS\system32\DRIVERS\LhdX64.sys
22:22:16.0277 0x1508 LHDmgr - ok
22:22:16.0324 0x1508 LicenseManager - ok
22:22:16.0371 0x1508 lltdio - ok
22:22:16.0402 0x1508 lltdsvc - ok
22:22:16.0433 0x1508 lmhosts - ok
22:22:16.0743 0x1508 [ 2C24DC448DBE8DB9BE1441B824C57E79, DA2257EEC964A47D03C2BB13317FD788E51D4685E2395B303ED7B2575FEF3B19 ] LMS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
22:22:16.0758 0x1508 LMS - ok
22:22:16.0847 0x1508 LSI_SAS - ok
22:22:16.0878 0x1508 LSI_SAS2i - ok
22:22:16.0894 0x1508 LSI_SAS3i - ok
22:22:16.0894 0x1508 LSI_SSS - ok
22:22:16.0987 0x1508 LSM - ok
22:22:16.0987 0x1508 luafv - ok
22:22:17.0063 0x1508 MapsBroker - ok
22:22:17.0117 0x1508 megasas - ok
22:22:17.0211 0x1508 megasas2i - ok
22:22:17.0371 0x1508 megasr - ok
22:22:17.0558 0x1508 [ 772A1DEEDFDBC244183B5C805D1B7D85, 7D821B8DF1F174E5414FFDEAB5207DB687740E9842F7203600AEBA086945AFC9 ] MEIx64 C:\WINDOWS\System32\drivers\HECIx64.sys
22:22:17.0573 0x1508 MEIx64 - ok
22:22:17.0636 0x1508 MessagingService - ok
22:22:17.0683 0x1508 mlx4_bus - ok
22:22:17.0808 0x1508 MMCSS - ok
22:22:17.0861 0x1508 Modem - ok
22:22:17.0893 0x1508 monitor - ok
22:22:17.0986 0x1508 mouclass - ok
22:22:18.0002 0x1508 mouhid - ok
22:22:18.0018 0x1508 mountmgr - ok
22:22:18.0291 0x1508 [ 269BDB3CB77EB77BABE2862BEAB1F208, EC693365C73D59244CB77E181042128A9901BA5C1109CD4F1B9A2008DF1F9582 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
22:22:18.0307 0x1508 MozillaMaintenance - ok
22:22:18.0307 0x1508 mpsdrv - ok
22:22:18.0354 0x1508 MpsSvc - ok
22:22:18.0401 0x1508 MRxDAV - ok
22:22:18.0479 0x1508 mrxsmb - ok
22:22:18.0510 0x1508 mrxsmb10 - ok
22:22:18.0557 0x1508 mrxsmb20 - ok
22:22:18.0607 0x1508 MsBridge - ok
22:22:18.0638 0x1508 MSDTC - ok
22:22:18.0763 0x1508 Msfs - ok
22:22:18.0919 0x1508 msgpiowin32 - ok
22:22:18.0966 0x1508 mshidkmdf - ok
22:22:19.0013 0x1508 mshidumdf - ok
22:22:19.0107 0x1508 msisadrv - ok
22:22:19.0248 0x1508 MSiSCSI - ok
22:22:19.0250 0x1508 msiserver - ok
22:22:19.0266 0x1508 MSKSSRV - ok
22:22:19.0266 0x1508 MsLldp - ok
22:22:19.0407 0x1508 MSPCLOCK - ok
22:22:19.0407 0x1508 MSPQM - ok
22:22:19.0422 0x1508 MsRPC - ok
22:22:19.0469 0x1508 mssmbios - ok
22:22:19.0469 0x1508 MSTEE - ok
22:22:19.0485 0x1508 MTConfig - ok
22:22:19.0500 0x1508 Mup - ok
22:22:19.0500 0x1508 mvumis - ok
22:22:19.0602 0x1508 NativeWifiP - ok
22:22:19.0972 0x1508 [ 988CDC4DAE2186F3A5ED6EE7D3E6B5CA, DB40F7705F0475FF774452E365152EBEDDC77D8ACE48419DABE02DD385C6B725 ] NAUpdate C:\Program Files (x86)\Nero\Update\NASvc.exe
22:22:20.0004 0x1508 NAUpdate - ok
22:22:20.0066 0x1508 NcaSvc - ok
22:22:20.0128 0x1508 NcbService - ok
22:22:20.0128 0x1508 NcdAutoSetup - ok
22:22:20.0206 0x1508 ndfltr - ok
22:22:20.0288 0x1508 NDIS - ok
22:22:20.0335 0x1508 NdisCap - ok
22:22:20.0491 0x1508 NdisImPlatform - ok
22:22:20.0580 0x1508 NdisTapi - ok
22:22:20.0580 0x1508 Ndisuio - ok
22:22:20.0650 0x1508 NdisVirtualBus - ok
22:22:20.0666 0x1508 NdisWan - ok
22:22:20.0681 0x1508 ndiswanlegacy - ok
22:22:20.0916 0x1508 ndproxy - ok
22:22:20.0916 0x1508 Ndu - ok
22:22:20.0994 0x1508 NetAdapterCx - ok
22:22:21.0009 0x1508 NetBIOS - ok
22:22:21.0025 0x1508 NetBT - ok
22:22:21.0041 0x1508 Netlogon - ok
22:22:21.0074 0x1508 Netman - ok
22:22:21.0287 0x1508 netprofm - ok
22:22:21.0303 0x1508 NetSetupSvc - ok
22:22:21.0723 0x1508 NetTcpPortSharing - ok
22:22:21.0832 0x1508 NETwNe64 - ok
22:22:21.0926 0x1508 NgcCtnrSvc - ok
22:22:21.0942 0x1508 NgcSvc - ok
22:22:22.0086 0x1508 [ FC91D7804B8FE5C2F0B12585C612F592, 0F43466D0F52D6A5282BD076005AC5F615C8CFCAC0D4B17B152E8AD0F556CB08 ] NitroDriverReadSpool8 C:\Program Files\Common Files\Nitro\Pro\8.0\NitroPDFDriverService8x64.exe
22:22:22.0101 0x1508 NitroDriverReadSpool8 - ok
22:22:22.0146 0x1508 NlaSvc - ok
22:22:22.0259 0x1508 [ 21D28C3448983A072B907E9BAC93D223, 27EF785F8A26E461EE9CDA18445E4896EB5BAE73ABE77262639320D45BC6A512 ] nlsX86cc C:\WINDOWS\SysWOW64\NLSSRV32.EXE
22:22:22.0275 0x1508 nlsX86cc - ok
22:22:22.0321 0x1508 Npfs - ok
22:22:22.0353 0x1508 npsvctrig - ok
22:22:22.0400 0x1508 nsi - ok
22:22:22.0415 0x1508 nsiproxy - ok
22:22:22.0493 0x1508 NTFS - ok
22:22:22.0580 0x1508 Null - ok
22:22:26.0611 0x1508 [ 88F3EEDD47473E7206C0A049AE96A0F7, 3A02CF546993270E3DE2715F1065A4832CC1F2C6CCB62D87DDB939C423EF1EA1 ] nvlddmkm C:\WINDOWS\System32\DriverStore\FileRepository\nvltwu.inf_amd64_0221ce4ec0827f74\nvlddmkm.sys
22:22:26.0876 0x1508 nvlddmkm - ok
22:22:26.0939 0x1508 [ 63718B0FF94E14B883650DA9CD7DBED9, 37BA4B85E677E041277051B476A640E8FA270B423B5D41874050AAAE91619AFE ] nvpciflt C:\WINDOWS\system32\DRIVERS\nvpciflt.sys
22:22:26.0939 0x1508 nvpciflt - ok
22:22:26.0986 0x1508 nvraid - ok
22:22:26.0986 0x1508 nvstor - ok
22:22:27.0250 0x1508 [ 845AF450F71A11B7358C6EFE9A76A894, 8042DF2402D00E210536552AC8202F6112F75C2F1506B0BED8DD3F04AF7BEF3F ] nvUpdatusService C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
22:22:27.0281 0x1508 nvUpdatusService - ok
22:22:27.0328 0x1508 OneSyncSvc - ok
22:22:27.0469 0x1508 [ 4965B005492CBA7719E82B71E3245495, 52AD72C05FACC1E0E416A1FA25F34FDD3CB274FAB973BEAAE911A2FACA42B650 ] ose64 C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
22:22:27.0500 0x1508 ose64 - ok
22:22:27.0817 0x1508 [ 61BFFB5F57AD12F83AB64B7181829B34, 1DD0DD35E4158F95765EE6639F217DF03A0A19E624E020DBA609268C08A13846 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
22:22:27.0911 0x1508 osppsvc - ok
22:22:27.0942 0x1508 p2pimsvc - ok
22:22:28.0143 0x1508 p2psvc - ok
22:22:28.0303 0x1508 Parport - ok
22:22:28.0412 0x1508 partmgr - ok
22:22:28.0474 0x1508 PcaSvc - ok
22:22:28.0546 0x1508 pci - ok
22:22:28.0674 0x1508 pciide - ok
22:22:28.0700 0x1508 pcmcia - ok
22:22:28.0708 0x1508 pcw - ok
22:22:28.0739 0x1508 pdc - ok
22:22:28.0739 0x1508 PEAUTH - ok
22:22:28.0770 0x1508 percsas2i - ok
22:22:28.0770 0x1508 percsas3i - ok
22:22:30.0730 0x1508 PerfHost - ok
22:22:30.0746 0x1508 PhoneSvc - ok
22:22:30.0921 0x1508 PimIndexMaintenanceSvc - ok
22:22:31.0014 0x1508 pla - ok
22:22:31.0090 0x1508 PlugPlay - ok
22:22:31.0121 0x1508 PNRPAutoReg - ok
22:22:31.0126 0x1508 PNRPsvc - ok
22:22:31.0226 0x1508 PolicyAgent - ok
22:22:31.0236 0x1508 Power - ok
22:22:31.0267 0x1508 PptpMiniport - ok
22:22:32.0380 0x1508 [ 7196D3C2E2E3129814C8DAB91F9A7D1E, 6763E4BF8E846B597E78778E520F5BADC95608BAA4EA0AC84971384B5D976DD7 ] PrintNotify C:\WINDOWS\system32\spool\drivers\x64\3\PrintConfig.dll
22:22:32.0489 0x1508 PrintNotify - ok
22:22:32.0536 0x1508 Processor - ok
22:22:32.0555 0x1508 ProfSvc - ok
22:22:32.0664 0x1508 Psched - ok
22:22:32.0747 0x1508 QWAVE - ok
22:22:32.0778 0x1508 QWAVEdrv - ok
22:22:32.0794 0x1508 RasAcd - ok
22:22:32.0877 0x1508 RasAgileVpn - ok
22:22:32.0971 0x1508 RasAuto - ok
22:22:32.0986 0x1508 Rasl2tp - ok
22:22:33.0064 0x1508 RasMan - ok
22:22:33.0091 0x1508 RasPppoe - ok
22:22:33.0126 0x1508 RasSstp - ok
22:22:33.0270 0x1508 rdbss - ok
22:22:33.0301 0x1508 rdpbus - ok
22:22:33.0317 0x1508 RDPDR - ok
22:22:33.0379 0x1508 RdpVideoMiniport - ok
22:22:33.0379 0x1508 rdyboost - ok
22:22:33.0379 0x1508 ReFSv1 - ok
22:22:33.0427 0x1508 RemoteAccess - ok
22:22:33.0521 0x1508 RemoteRegistry - ok
22:22:33.0579 0x1508 RetailDemo - ok
22:22:33.0626 0x1508 RFCOMM - ok
22:22:33.0673 0x1508 RmSvc - ok
22:22:33.0769 0x1508 RpcEptMapper - ok
22:22:33.0847 0x1508 RpcLocator - ok
22:22:33.0878 0x1508 RpcSs - ok
22:22:33.0925 0x1508 rspndr - ok
22:22:33.0956 0x1508 rt640x64 - ok
22:22:34.0148 0x1508 [ 3940780911A7BD1793B7CEEC9E4429C2, 539511D26D2EE348F80D9EFA414FD731983B14D8218E498217E7A0A0E439E41C ] RTSUER C:\WINDOWS\system32\Drivers\RtsUer.sys
22:22:34.0195 0x1508 RTSUER - ok
22:22:34.0292 0x1508 s3cap - ok
22:22:34.0417 0x1508 SamSs - ok
22:22:34.0885 0x1508 [ 964E210576799C93263A32C70331E833, 80EB44272CB38F0210B4305E617390BF8E78A98B23AFD67751608628A652CF95 ] Samsung Link Service C:\Program Files\Samsung\Samsung Link\Samsung Link.exe
22:22:34.0900 0x1508 Samsung Link Service - ok
22:22:34.0978 0x1508 sbp2port - ok
22:22:35.0057 0x1508 SCardSvr - ok
22:22:35.0162 0x1508 ScDeviceEnum - ok
22:22:35.0307 0x1508 scfilter - ok
22:22:35.0354 0x1508 Schedule - ok
22:22:35.0370 0x1508 scmbus - ok
22:22:35.0496 0x1508 scmdisk0101 - ok
22:22:35.0496 0x1508 SCPolicySvc - ok
22:22:35.0548 0x1508 sdbus - ok
22:22:35.0563 0x1508 SDRSVC - ok
22:22:35.0579 0x1508 sdstor - ok
22:22:35.0642 0x1508 seclogon - ok
22:22:35.0704 0x1508 SENS - ok
22:22:35.0735 0x1508 SensorDataService - ok
22:22:35.0779 0x1508 SensorService - ok
22:22:35.0898 0x1508 SensrSvc - ok
22:22:35.0898 0x1508 SerCx - ok
22:22:35.0898 0x1508 SerCx2 - ok
22:22:36.0052 0x1508 Serenum - ok
22:22:36.0064 0x1508 Serial - ok
22:22:36.0082 0x1508 sermouse - ok
22:22:36.0142 0x1508 SessionEnv - ok
22:22:36.0205 0x1508 sfloppy - ok
22:22:36.0205 0x1508 SharedAccess - ok
22:22:36.0284 0x1508 ShellHWDetection - ok
22:22:36.0318 0x1508 shpamsvc - ok
22:22:36.0474 0x1508 SiSRaid2 - ok
22:22:36.0573 0x1508 SiSRaid4 - ok
22:22:37.0135 0x1508 [ 0B70786BD1062CD4C6B58E412B9C3E55, 60ED027642FFF97BFFA55AE3EFFCCBB6D6AD8196D35E9ED06F9AF431E3C0402A ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
22:22:37.0165 0x1508 SkypeUpdate - ok
22:22:37.0279 0x1508 [ 8A6571231D93C08434A56E19E33A35CB, 78A12B58D129D5B2017C9A94734656B9F1ED41345DF1D01F82702D4D95C1BE3F ] SmbDrvI C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys
22:22:37.0293 0x1508 SmbDrvI - ok
22:22:37.0403 0x1508 smphost - ok
22:22:37.0434 0x1508 SmsRouter - ok
22:22:37.0512 0x1508 SNMPTRAP - ok
22:22:37.0562 0x1508 spaceport - ok
22:22:37.0609 0x1508 SpbCx - ok
22:22:37.0734 0x1508 Spooler - ok
22:22:37.0763 0x1508 sppsvc - ok
22:22:37.0826 0x1508 srv - ok
22:22:37.0877 0x1508 srv2 - ok
22:22:37.0892 0x1508 srvnet - ok
22:22:37.0970 0x1508 SSDPSRV - ok
22:22:38.0033 0x1508 SstpSvc - ok
22:22:38.0436 0x1508 [ 9DA3B55B17B54789AFB8C657D4ACE4D7, 5E4599E682327E3B8097A88A69ED73F96254A29054744D5DFB782054863F131E ] ss_conn_service C:\Program Files (x86)\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe
22:22:38.0467 0x1508 ss_conn_service - ok
22:22:38.0581 0x1508 StateRepository - ok
22:22:38.0769 0x1508 stexstor - ok
22:22:38.0800 0x1508 stisvc - ok
22:22:38.0839 0x1508 storahci - ok
22:22:39.0018 0x1508 storflt - ok
22:22:39.0034 0x1508 stornvme - ok
22:22:39.0179 0x1508 storqosflt - ok
22:22:39.0244 0x1508 StorSvc - ok
22:22:39.0253 0x1508 storufs - ok
22:22:39.0427 0x1508 storvsc - ok
22:22:39.0505 0x1508 svsvc - ok
22:22:39.0642 0x1508 swenum - ok
22:22:39.0705 0x1508 swprv - ok
22:22:39.0803 0x1508 Synth3dVsc - ok
22:22:40.0162 0x1508 [ 7DC2B34FB6F1798F2D13453E0321D025, 60EF12A8824384DD88D9C5D188E8FB137F0F85A63C06AAF720CB2D616EB847F4 ] SynTP C:\WINDOWS\system32\DRIVERS\SynTP.sys
22:22:40.0194 0x1508 SynTP - ok
22:22:40.0566 0x1508 [ 6FBDBC24B1642868E041463795CBFA44, E9FA0DB094E7B2129ABD325BC91A48D6646380D6AA97BE6233C220E0C98637AF ] SynTPEnhService C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
22:22:40.0606 0x1508 SynTPEnhService - ok
22:22:40.0684 0x1508 SysMain - ok
22:22:40.0841 0x1508 SystemEventsBroker - ok
22:22:40.0872 0x1508 TabletInputService - ok
22:22:40.0903 0x1508 TapiSrv - ok
22:22:40.0934 0x1508 Tcpip - ok
22:22:40.0950 0x1508 Tcpip6 - ok
22:22:41.0028 0x1508 tcpipreg - ok
22:22:41.0076 0x1508 tdx - ok
22:22:41.0076 0x1508 terminpt - ok
22:22:41.0140 0x1508 TermService - ok
22:22:41.0360 0x1508 [ 8F14DE79EBE73D6D717B8455E64DDA86, 7561D79B1F213AC4877E7972CCD2926228330CDDE244FA8E3B77F4FB192BACC8 ] TGCM_ImportWiFiSvc C:\Program Files (x86)\o2\Mobile Connection Manager\ImpWiFiSvc.exe
22:22:41.0376 0x1508 TGCM_ImportWiFiSvc - ok
22:22:41.0423 0x1508 Themes - ok
22:22:41.0469 0x1508 TieringEngineService - ok
22:22:41.0548 0x1508 tiledatamodelsvc - ok
22:22:41.0563 0x1508 TimeBrokerSvc - ok
22:22:41.0579 0x1508 TPM - ok
22:22:41.0594 0x1508 TrkWks - ok
22:22:41.0719 0x1508 TrustedInstaller - ok
22:22:41.0735 0x1508 tsusbflt - ok
22:22:41.0957 0x1508 TsUsbGD - ok
22:22:41.0972 0x1508 tunnel - ok
22:22:42.0004 0x1508 tzautoupdate - ok
22:22:42.0088 0x1508 UASPStor - ok
22:22:42.0090 0x1508 UcmCx0101 - ok
22:22:42.0169 0x1508 UcmTcpciCx0101 - ok
22:22:42.0235 0x1508 UcmUcsi - ok
22:22:42.0236 0x1508 Ucx01000 - ok
22:22:42.0332 0x1508 UdeCx - ok
22:22:42.0347 0x1508 udfs - ok
22:22:42.0410 0x1508 UEFI - ok
22:22:42.0425 0x1508 Ufx01000 - ok
22:22:42.0504 0x1508 UfxChipidea - ok
22:22:42.0551 0x1508 ufxsynopsys - ok
22:22:42.0632 0x1508 UI0Detect - ok
22:22:42.0648 0x1508 umbus - ok
22:22:42.0741 0x1508 UmPass - ok
22:22:42.0773 0x1508 UmRdpService - ok
22:22:42.0824 0x1508 UnistoreSvc - ok
22:22:43.0327 0x1508 [ E1A119AD21F5AFE22EB516C549306D3D, 48769D5E7A78B7A2C00F1F6798AC133CF3E0B2C76F71D3719BD741DDD8F2D229 ] UNS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
22:22:43.0357 0x1508 UNS - ok
22:22:43.0373 0x1508 upnphost - ok
22:22:43.0451 0x1508 UrsChipidea - ok
22:22:43.0467 0x1508 UrsCx01000 - ok
22:22:43.0549 0x1508 UrsSynopsys - ok
22:22:43.0642 0x1508 [ 8047D8AFA070A4C3B9FCBDBF77A84C45, D8B47716EE57391E3B9CBE3B35FF1F933F08E40B1C8C12EB5BE2438D9E409FF0 ] usb3Hub C:\WINDOWS\System32\drivers\usb3Hub.sys
22:22:43.0658 0x1508 usb3Hub - ok
22:22:43.0767 0x1508 [ 5C3BE22E485B9BF11FCEFDC676C728D0, F55061066ECF6920D56518A677BB538C18B7F1BB150ED6DB3591408F44E8D53A ] USBAAPL64 C:\WINDOWS\System32\Drivers\usbaapl64.sys
22:22:43.0811 0x1508 USBAAPL64 - ok
22:22:43.0860 0x1508 usbccgp - ok
22:22:44.0048 0x1508 usbcir - ok
22:22:44.0079 0x1508 usbehci - ok
22:22:44.0126 0x1508 usbhub - ok
22:22:44.0157 0x1508 USBHUB3 - ok
22:22:44.0184 0x1508 usbohci - ok
22:22:44.0317 0x1508 usbprint - ok
22:22:44.0335 0x1508 usbser - ok
22:22:44.0398 0x1508 USBSTOR - ok
22:22:44.0445 0x1508 usbuhci - ok
22:22:44.0445 0x1508 USBXHCI - ok
22:22:44.0548 0x1508 UserDataSvc - ok
22:22:44.0564 0x1508 UserManager - ok
22:22:44.0673 0x1508 UsoSvc - ok
22:22:44.0689 0x1508 VaultSvc - ok
22:22:44.0782 0x1508 vdrvroot - ok
22:22:44.0845 0x1508 vds - ok
22:22:44.0907 0x1508 VerifierExt - ok
22:22:44.0923 0x1508 vhdmp - ok
22:22:44.0923 0x1508 vhf - ok
22:22:45.0395 0x1508 [ 73A8377232E54A485E204165892B58FD, 9B3B9F14BB0C2967B8BCAC6E8C81ED6772CE5F6B014009BEB9946741FF78F771 ] vm331avs C:\WINDOWS\System32\Drivers\vm331avs.sys
22:22:45.0426 0x1508 vm331avs - ok
22:22:45.0504 0x1508 vmbus - ok
22:22:45.0504 0x1508 VMBusHID - ok
22:22:45.0611 0x1508 vmgid - ok
22:22:45.0626 0x1508 vmicguestinterface - ok
22:22:45.0642 0x1508 vmicheartbeat - ok
22:22:45.0658 0x1508 vmickvpexchange - ok
22:22:45.0673 0x1508 vmicrdv - ok
22:22:45.0673 0x1508 vmicshutdown - ok
22:22:45.0673 0x1508 vmictimesync - ok
22:22:45.0689 0x1508 vmicvmsession - ok
22:22:45.0689 0x1508 vmicvss - ok
22:22:45.0705 0x1508 volmgr - ok
22:22:45.0705 0x1508 volmgrx - ok
22:22:45.0705 0x1508 volsnap - ok
22:22:45.0783 0x1508 volume - ok
22:22:45.0881 0x1508 vpci - ok
22:22:46.0006 0x1508 [ 6D1FEF6AB025EAEDA5977587AB36B6EF, 1C65F5D7200EA918AD6D5FCCD60D5C2B5240B57E0AE65ECFB94076CD45C1852E ] vpnagent C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnagent.exe
22:22:46.0038 0x1508 vpnagent - ok
22:22:46.0096 0x1508 [ 0F42C39016F82F345C0F2DB2D5B90EB4, 2E957E72BB8D0293F61FA7385BA9400DF7759E1E3D35FE24F3877A6460988F4D ] vpnva C:\WINDOWS\System32\drivers\vpnva64-6.sys
22:22:46.0104 0x1508 vpnva - ok
22:22:46.0106 0x1508 vsmraid - ok
22:22:46.0120 0x1508 VSS - ok
22:22:46.0223 0x1508 VSTXRAID - ok
22:22:46.0295 0x1508 vwifibus - ok
22:22:46.0311 0x1508 vwififlt - ok
22:22:46.0327 0x1508 vwifimp - ok
22:22:46.0413 0x1508 W32Time - ok
22:22:46.0428 0x1508 WacomPen - ok
22:22:46.0579 0x1508 WalletService - ok
22:22:46.0610 0x1508 wanarp - ok
22:22:46.0610 0x1508 wanarpv6 - ok
22:22:46.0657 0x1508 wbengine - ok
22:22:46.0673 0x1508 WbioSrvc - ok
22:22:46.0720 0x1508 wcifs - ok
22:22:46.0798 0x1508 Wcmsvc - ok
22:22:46.0798 0x1508 wcncsvc - ok
22:22:46.0814 0x1508 wcnfs - ok
22:22:46.0862 0x1508 WdBoot - ok
22:22:46.0868 0x1508 Wdf01000 - ok
22:22:46.0876 0x1508 WdFilter - ok
22:22:46.0896 0x1508 WdiServiceHost - ok
22:22:46.0896 0x1508 WdiSystemHost - ok
22:22:46.0942 0x1508 wdiwifi - ok
22:22:47.0067 0x1508 WdNisDrv - ok
22:22:47.0228 0x1508 WdNisSvc - ok
22:22:47.0274 0x1508 WebClient - ok
22:22:47.0289 0x1508 Wecsvc - ok
22:22:47.0399 0x1508 WEPHOSTSVC - ok
22:22:47.0414 0x1508 wercplsupport - ok
22:22:47.0446 0x1508 WerSvc - ok
22:22:47.0446 0x1508 WFPLWFS - ok
22:22:47.0508 0x1508 WiaRpc - ok
22:22:47.0580 0x1508 WIMMount - ok
22:22:47.0595 0x1508 WinDefend - ok
22:22:47.0674 0x1508 WindowsTrustedRT - ok
22:22:47.0689 0x1508 WindowsTrustedRTProxy - ok
22:22:47.0830 0x1508 WinHttpAutoProxySvc - ok
22:22:47.0930 0x1508 WinMad - ok
22:22:48.0055 0x1508 Winmgmt - ok
22:22:48.0117 0x1508 WinRM - ok
22:22:48.0216 0x1508 WINUSB - ok
22:22:48.0216 0x1508 WinVerbs - ok
22:22:48.0276 0x1508 wisvc - ok
22:22:48.0276 0x1508 WlanSvc - ok
22:22:48.0292 0x1508 wlidsvc - ok
22:22:48.0308 0x1508 WmiAcpi - ok
22:22:48.0308 0x1508 wmiApSrv - ok
22:22:48.0355 0x1508 WMPNetworkSvc - ok
22:22:48.0386 0x1508 Wof - ok
22:22:48.0401 0x1508 workfolderssvc - ok
22:22:48.0417 0x1508 WPDBusEnum - ok
22:22:48.0495 0x1508 WpdUpFltr - ok
22:22:48.0495 0x1508 WpnService - ok
22:22:48.0564 0x1508 WpnUserService - ok
22:22:48.0595 0x1508 ws2ifsl - ok
22:22:48.0642 0x1508 wscsvc - ok
22:22:48.0673 0x1508 WSDPrintDevice - ok
22:22:48.0705 0x1508 WSDScan - ok
22:22:48.0705 0x1508 WSearch - ok
22:22:48.0835 0x1508 [ 72B4E9DF6456C43C42A1419B09486045, 536BA7377B5BEA7EA46864453933111DB88DB8FB689C68915ACD7261A996E61D ] wsvd C:\WINDOWS\system32\DRIVERS\wsvd.sys
22:22:48.0856 0x1508 wsvd - ok
22:22:48.0888 0x1508 wuauserv - ok
22:22:48.0888 0x1508 WudfPf - ok
22:22:48.0919 0x1508 WUDFRd - ok
22:22:48.0997 0x1508 wudfsvc - ok
22:22:49.0091 0x1508 WwanSvc - ok
22:22:49.0122 0x1508 XblAuthManager - ok
22:22:49.0218 0x1508 XblGameSave - ok
22:22:49.0282 0x1508 xboxgip - ok
22:22:49.0391 0x1508 XboxNetApiSvc - ok
22:22:49.0547 0x1508 [ 24E57041608ED6A9D7FDAD0D9EC214E2, 895A16072F5EFFF57A7DCA21917540726BF816A2746EC47A066AAD363F69E5D7 ] XHCIPort C:\WINDOWS\System32\drivers\XHCIPort.sys
22:22:49.0563 0x1508 XHCIPort - ok
22:22:49.0610 0x1508 xinputhid - ok
22:22:49.0610 0x1508 ================ Scan global ===============================
22:22:49.0970 0x1508 [ Global ] - ok
22:22:49.0970 0x1508 ================ Scan MBR ==================================
22:22:49.0970 0x1508 [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk0\DR0
22:22:50.0048 0x1508 \Device\Harddisk0\DR0 - ok
22:22:50.0129 0x1508 [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk1\DR1
22:22:51.0454 0x1508 \Device\Harddisk1\DR1 - ok
22:22:51.0454 0x1508 ================ Scan VBR ==================================
22:22:51.0454 0x1508 [ 4442C0A6C04745FB6E5882AD4133A05F ] \Device\Harddisk0\DR0\Partition1
22:22:51.0470 0x1508 \Device\Harddisk0\DR0\Partition1 - ok
22:22:51.0470 0x1508 [ 59014596487591A949E8A045D0E522A6 ] \Device\Harddisk0\DR0\Partition2
22:22:51.0470 0x1508 \Device\Harddisk0\DR0\Partition2 - ok
22:22:51.0501 0x1508 [ 60110377D545070931DE2C735CC49B23 ] \Device\Harddisk1\DR1\Partition1
22:22:51.0501 0x1508 \Device\Harddisk1\DR1\Partition1 - ok
22:22:51.0548 0x1508 [ 1A7093003BA2FCD59A56245DD826495B ] \Device\Harddisk1\DR1\Partition2
22:22:51.0551 0x1508 \Device\Harddisk1\DR1\Partition2 - ok
22:22:51.0567 0x1508 [ BA4366A4E9E493BADFFECE0B067B5CA8 ] \Device\Harddisk1\DR1\Partition3
22:22:51.0567 0x1508 \Device\Harddisk1\DR1\Partition3 - ok
22:22:51.0613 0x1508 [ 2D524F05766D084E9BC1747B63390F77 ] \Device\Harddisk1\DR1\Partition4
22:22:51.0613 0x1508 \Device\Harddisk1\DR1\Partition4 - ok
22:22:51.0660 0x1508 [ 52B95B5A5511A5358F9FEF004E291253 ] \Device\Harddisk1\DR1\Partition5
22:22:51.0692 0x1508 \Device\Harddisk1\DR1\Partition5 - ok
22:22:51.0723 0x1508 [ 85667DFBE8D94B5EFF93FF83FF44ACBD ] \Device\Harddisk1\DR1\Partition6
22:22:51.0754 0x1508 \Device\Harddisk1\DR1\Partition6 - ok
22:22:51.0785 0x1508 [ D72F8FE5DE14D91AF9254F4DD5441C81 ] \Device\Harddisk1\DR1\Partition7
22:22:51.0785 0x1508 \Device\Harddisk1\DR1\Partition7 - ok
22:22:51.0835 0x1508 [ 67576F561E36183297764E14D59AF4B1 ] \Device\Harddisk1\DR1\Partition8
22:22:51.0862 0x1508 \Device\Harddisk1\DR1\Partition8 - ok
22:22:52.0003 0x1508 [ 7E665B8C94FE1CD22464F8DC964092EA ] \Device\Harddisk1\DR1\Partition9
22:22:52.0088 0x1508 \Device\Harddisk1\DR1\Partition9 - ok
22:22:52.0089 0x1508 ================ Scan generic autorun ======================
22:22:54.0705 0x1508 [ F4289711A51D52B537354ABB5DB95EA2, 494FFA26BADAB67DB8E8C42B439A725106089D588C4AD44A038A86C60FC5C44B ] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
22:22:55.0103 0x1508 RtHDVCpl - ok
22:22:55.0752 0x1508 [ CEE343A27FE95BD6510E78A0EA7E012C, DC2D659EFEFF56B69F4CEB706C7F3EBECEE99C845FEFBB1D936130755B7D4BA1 ] C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
22:22:55.0798 0x1508 RtHDVBg_Dolby - ok
22:22:56.0689 0x1508 [ DF99547E3CD8C828202546ED9C4D7D25, 83013EEE760004E812CD63662843D1F3972AFBF83B4739935FC746F470FA7188 ] C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe
22:22:57.0289 0x1508 Energy Management - ok
22:22:57.0383 0x1508 [ D41309D7717CC5D62C2E0C5EB6B127B3, 50F46F762320C9B2560AA356B31EB564651F92BDA2DBCE34E3E349A65E347FAC ] C:\Program Files (x86)\Lenovo\Energy Management\Utility.exe
22:22:57.0383 0x1508 EnergyUtility - ok
22:22:57.0690 0x1508 [ 39CF316EB5842AE27CC0D3CC4E2840DE, BC4D4ED926F988B7B70CC87B7EC92D148DA6BC39C5C514751F1B0CA69D0F9081 ] D:\Programme\Office14\BCSSync.exe
22:22:57.0736 0x1508 BCSSync - ok
22:22:58.0158 0x1508 [ 81B72C1A79FA177859EA9E7EA849108F, 085F8E8FDC747D83D7276578A396B70A590F0C403CF28E9D5CB8593F2E9F4C69 ] C:\Program Files\Samsung\Samsung Link\Samsung Link Tray Agent.exe
22:22:58.0174 0x1508 Samsung Link - ok
22:22:58.0174 0x1508 SynTPEnh - ok
22:22:58.0428 0x1508 [ DD2764BF044F573EB40EF4ED65A53474, 920D1AF6E284F4E3E1D200B660F5DB65938D51D5E7FBD1AF6EBB2E0BB8F30F15 ] C:\Program Files (x86)\USB Camera\VM331STI.EXE
22:22:58.0459 0x1508 331BigDog - ok
22:22:58.0544 0x1508 332BigDog - ok
22:22:58.0986 0x1508 [ C9FA5D8E2D841B03025FEFA837D07F0A, CFEC08018E0391AD28F69300F00F8322A791876C1DA21365EA6BF320F8270A33 ] C:\Program Files (x86)\Lenovo\Lenovo Smart Update\Lenovo Smart Update.exe
22:22:59.0033 0x1508 Smart Update - ok
22:22:59.0399 0x1508 [ A1741C3B79F9DF8895E05EF43579E74B, 446094FDBA93518ABE1CDEC50E24AB60BC7CA78022A289AF5C21461778FD8001 ] C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe
22:22:59.0415 0x1508 YouCam Mirage - ok
22:22:59.0595 0x1508 [ 79EDDBCBFFC23585BC1495AFC03CC4D7, 325A6C067A52BAD7070C1C758EA69645FD8083AC6D0ABA8340BDBE1A712E005F ] C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe
22:22:59.0610 0x1508 YouCam Tray - ok
22:23:00.0021 0x1508 [ B7995C675014EEBE77A0BEB7AFCCFC08, 41D186C63273301CF0A1C1EE7B6EB0BB75A251DD441532C5CEB7A4095FB103CD ] C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe
22:23:00.0036 0x1508 RemoteControl10 - ok
22:23:00.0036 0x1508 mcui_exe - ok
22:23:00.0492 0x1508 [ 43E946AAD268FEAFB1E286677E70CB5D, 7798926B3CF11D1CF7DFF9B3D67AD3DC67010A62F3132CAEA273EB299A61B176 ] C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe
22:23:00.0528 0x1508 Intel AppUp(SM) center - ok
22:23:00.0877 0x1508 [ 3A767D4CF95CAC1299554B89C4DE5920, E18D2BD562981A4BA54A677C8838ABE9056D1704EC2CC1A8B465390CAC9D1875 ] C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
22:23:00.0908 0x1508 KiesTrayAgent - ok
22:23:01.0686 0x1508 [ CDFFB0058BA113ED8C6099DE11FAAD49, D258D1F340734113C1E538C32DF15011009C19A9E88E0F471E3D8387D4EA7AEB ] C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE
22:23:01.0749 0x1508 CanonQuickMenu - ok
22:23:01.0890 0x1508 [ B793DDE01D181ED91F333BF10FE2FC50, F9BA0FD8EC0C0E9D7E5969BC9ED0D0322EDFC8E65B11F642A7118B41F5BF197F ] C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe
22:23:01.0905 0x1508 IJNetworkScannerSelectorEX - ok
22:23:01.0999 0x1508 [ 0EF0822810009D58118CCDFD098FA9F4, 9FAA263057898BCDBCB0A064C463F48D149474AA339A3C4C47626CC118750D2D ] C:\Program Files (x86)\iTunes\iTunesHelper.exe
22:23:02.0015 0x1508 iTunesHelper - ok
22:23:02.0137 0x1508 [ 1BC31F797516DC7B7446B62A849D5905, 49B35A41F1C3739800CBA2A559C2AEFE89FBC090F8305681AF3B379B639E16AA ] C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
22:23:02.0152 0x1508 avgnt - ok
22:23:02.0301 0x1508 [ FB4A23C4A1D1108B8FFBCE8053259008, AC370998F118EE488F5B35B4CD3C8FC1092B85805FC1ACDBF0897B307EF9DB0E ] C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnui.exe
22:23:02.0333 0x1508 Cisco AnyConnect Secure Mobility Agent for Windows - ok
22:23:02.0536 0x1508 [ 3E04F1E482357B1FC8B088197C3D9FF8, 85524ADDC27ADC831EBBD24E079B412CFDC69E5F594BD153319087665A28D546 ] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
22:23:02.0567 0x1508 Adobe ARM - ok
22:23:02.0708 0x1508 [ 258E2CD2C4984A977106C9EF7CA8AF69, D8F6409D5F5782CC27D159D18E914A3DB59D8644D7017CA6F84F0CF30E95174C ] C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe
22:23:02.0723 0x1508 Avira SystrayStartTrigger - ok
22:23:02.0929 0x1508 OneDriveSetup - ok
22:23:02.0945 0x1508 OneDriveSetup - ok
22:23:02.0945 0x1508 OneDriveSetup - ok
22:23:03.0056 0x1508 WAB Migrate - ok
22:23:03.0399 0x1508 [ 6F8574160EE5D7E22FD8BB4DD1F6EF79, 92DB7E3C3054BBB0958F852ACA9BF56931ECEDDD10862198D39E3C42F666E850 ] C:\Users\Felix\AppData\Roaming\Spotify\SpotifyWebHelper.exe
22:23:03.0462 0x1508 Spotify Web Helper - ok
22:23:03.0915 0x1508 [ CD7DC286D2FDFACB965C3E10967B2199, 30FFB133E70D694BE6968E86E999C797EE7349DCC4E9ACFB338412C039374388 ] C:\Users\Felix\AppData\Local\Microsoft\OneDrive\OneDrive.exe
22:23:03.0946 0x1508 OneDrive - ok
22:23:04.0147 0x1508 [ A1F58FFF448E4099297D6EE0641D4D0E, 47839789332AAF8861F7731BF2D3FBB5E0991EA0D0B457BB4C8C1784F76C73DC ] C:\Users\Felix\AppData\Local\Dropbox\Update\DropboxUpdate.exe
22:23:04.0180 0x1508 Dropbox Update - ok
22:23:04.0396 0x1508 GoogleDriveSync - ok
22:23:04.0789 0x1508 [ 5ABED82D8CA1208EE94E40B07FBB831A, BF623AF3F8AFED8C852E068A2DA19B227541399AAB9D0119FC418397965663F9 ] C:\Users\Felix\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Suunto\Moveslink2.appref-ms
22:23:05.0281 0x1508 Moveslink2 - detected UnsignedFile.Multi.Generic ( 1 )
22:23:12.0492 0x1508 Moveslink2 ( UnsignedFile.Multi.Generic ) - warning
22:23:19.0736 0x1508 AV detected via SS2: Avira Antivirus, C:\Program Files (x86)\Avira\AntiVir Desktop\wsctool.exe ( 15.0.24.143 ), 0x41000 ( enabled : updated )
22:23:19.0736 0x1508 AV detected via SS2: Windows Defender, C:\Program Files\Windows Defender\MSASCui.exe ( 4.10.14393.187 ), 0x62100 ( disabled : updated )
22:23:19.0783 0x1508 Win FW state via NFP2: enabled ( trusted )
22:23:26.0939 0x1508 ============================================================
22:23:26.0939 0x1508 Scan finished
22:23:26.0939 0x1508 ============================================================
22:23:26.0939 0x22d4 Detected object count: 1
22:23:26.0939 0x22d4 Actual detected object count: 1
22:25:33.0642 0x22d4 Moveslink2 ( UnsignedFile.Multi.Generic ) - skipped by user
22:25:33.0642 0x22d4 Moveslink2 ( UnsignedFile.Multi.Generic ) - User select action: Skip Ich hoffe das passt.
VG
Felix |