|
Log-Analyse und Auswertung: Nach Trojan.GenericKD.1704971 Fund, AdwCleaner Fund in C:\End -> Folgefund Applni.DLLsWindows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
04.03.2017, 12:32 | #1 |
| Nach Trojan.GenericKD.1704971 Fund, AdwCleaner Fund in C:\End -> Folgefund Applni.DLLs Hallo, mein Bitdefender hat mir Donnerstag zwei Funde mit dem Namen Trojan.GenericKD.1704971 gezeigt. Die wurden dann "Resolved". Bitdefender hat auf eine manuelle Entfernung der infizierten Dateianhänge verwiesen. Diese konnte ich nicht finden, habe dann die E-Mailkonten in Outlook gelöscht und danach Outlook deinstalliert. Ich hoffe die Beitragsformatierung geht soweit in Ordnung. Bitdefender-Log: Code:
ATTFilter <?xml version="1.0" encoding="utf-8"?> <?xml-stylesheet type="text/xsl" href="C:\Program Files\Bitdefender\Bitdefender 2017\ondemand.xsl"?> <ScanSession creator="Bitdefender Internet Security 2017" name="Vollständiger System-Scan" installPath="C:\Program Files\Bitdefender\Bitdefender 2017\" creationDate="Donnerstag, 2. März 2017 20:18:56" originalPath="C:\ProgramData\Bitdefender\Desktop\Profiles\Logs\dcf483c4-26d0-4e6f-ba28-6a53a00adae1\1488476785_1_02.xml" > <ScanSettings statisticsRefreshInterval="1000" scanSpeed="1.000000" lowPriority="0" enableExclusions="1" enableTaskExclusions="0" scanAdware="1" scanSpyware="1" scanApplications="1" scanDialers="1" scanKeyloggers="1" scanFiles="1" scanAllFiles="1" scanProgramsOnly="0" useCustomPrograms="0" customPrograms="" scanUserDefined="0" scanPacked="1" scanArchives="1" useSmartScan="1" scanEmails="1" scanRootkits="0" scanAllRootkits="1" scanBoot="1" scanMemory="1" scanRegistry="1" quickScan="1" quickScanMemory="0" quickScanAutoruns="0" quickScanPlugins="1" scanCookies="1" shutdownAfter="0" passwordPrompt="0" onlyAllowedActions="1" deepArchiveScan="1" maxArchiveLevel="15" maxArchiveSize="0" infectedAction1="3" infectedAction2="7" suspectAction1="7" suspectAction2="1" rootkitAction="3" userDefinedExtensions="" scanPua="-1" computeSha256Hash="0" disableIndexer="0" > <ScanPaths> <path>C:\</path> <path>E:\</path> </ScanPaths> <ExcludedPaths> </ExcludedPaths> <ExcludedExtensions> </ExcludedExtensions> </ScanSettings> <EngineSummary totalSignatures="8365808" /> <ScanSummary scannedArchives="739" scannedPacked="381" startTime="1488476785" duration="3264125" > <TypeSummary type="1" scanned="32" infected="0" suspicious="0" disinfected="0" deleted="0" moved="0" moved_reboot="0" delete_reboot="0" renamed="0" hidden="0" /> <TypeSummary type="4" scanned="0" infected="0" suspicious="0" disinfected="0" deleted="0" moved="0" moved_reboot="0" delete_reboot="0" renamed="0" hidden="0" /> <TypeSummary type="0" scanned="3697440" infected="2" suspicious="0" disinfected="0" deleted="1" moved="1" moved_reboot="0" delete_reboot="0" renamed="0" hidden="0" /> <TypeSummary type="5" scanned="0" infected="0" suspicious="0" disinfected="0" deleted="0" moved="0" moved_reboot="0" delete_reboot="0" renamed="0" hidden="0" /> <TypeSummary type="2" scanned="6842" infected="0" suspicious="0" disinfected="0" deleted="0" moved="0" moved_reboot="0" delete_reboot="0" renamed="0" hidden="0" /> <TypeSummary type="3" scanned="17043" infected="0" suspicious="0" disinfected="0" deleted="0" moved="0" moved_reboot="0" delete_reboot="0" renamed="0" hidden="0" /> <TypeSummary type="6" scanned="833" infected="0" suspicious="0" disinfected="0" deleted="0" moved="0" moved_reboot="0" delete_reboot="0" renamed="0" hidden="0" /> </ScanSummary> <ScanDetails> <UnresolvedDetails> </UnresolvedDetails> <ResolvedDetails> <Item type="0" objectType="0" path="C:\Users\Inxi\AppData\Local\Microsoft\Outlook\******@***.de.pst=>[Time: 2014=>06=>04 13:17:42][Subject: RE:Rechnung vom 04.06.2014][From: contact@regard-informatique.fr]=>nI04sKt310U3GHfhfhfhfh7979446462553.rar=>Rechnung vom_04062014_BCDERSTRT797854556455854555855541325.scr" threatType="0" threatName="Trojan.GenericKD.1704971" action="9" allActions="3 7 1 9 1 9" initialStatus="3" finalStatus="6" quarId="ddd97d83-19df-480f-bdc4-fada16422d2f" failReason="0" itemHash="" chainHash="no_hash" family="" rtvrType="" /> <Item type="0" objectType="0" path="C:\Users\Inxi\AppData\Local\Microsoft\Outlook\******@***.de.pst=>[Time: 2014=>06=>04 13:17:42][Subject: RE:Rechnung vom 04.06.2014][From: contact@regard-informatique.fr]=>nI04sKt310U3GH54555855541325.zip=>Rechnung vom_04062014_BCDERSTRT797854556455854555855541325.exe" threatType="0" threatName="Trojan.GenericKD.1704971" action="9" allActions="3 9" initialStatus="3" finalStatus="5" quarId="" failReason="0" itemHash="" chainHash="no_hash" family="" rtvrType="" /> </ResolvedDetails> <IgnoredDetails> </IgnoredDetails> <QuickScanDetails> </QuickScanDetails> <NotScannedDetails skipped="1055549" ioerrors="0" archiveBombs="0" passwordProtected="232" > <Item type="0" objectType="0" path="C:\Program Files (x86)\Samsung Magician\Rapid\Rapid.dll=>(ZIP Sfx r)=>Rapid/Win7_i386/RAPID/CacheFilter/addfilter.exe" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\Program Files (x86)\Realtek\Audio\Drivers\HDADrv\WIN64\RTAIODAT.DAT=>rtkhdasetting=>103C82F2=>APO.zip=>APO=>00000924=>00000924.txt" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\Program Files (x86)\Samsung Magician\Rapid\Rapid.dll=>(ZIP Sfx r)=>Rapid/Win7_amd64/RAPID/Tools/RAPIDCollectLogs/RAPIDCollectLogs.bat" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\Program Files (x86)\Samsung Magician\Rapid\Rapid.dll=>(ZIP Sfx r)=>Rapid/Win7_amd64/RAPID/SamsungRapidSvc.exe" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\Program Files (x86)\Realtek\Audio\Drivers\HDADrv\WIN64\RTAIODAT.DAT=>rtkhdasetting=>103C82FF=>APO.zip=>APO=>00000924=>00000924.txt" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\ProgramData\Samsung\Backup\Samsung_Magician_ML_Setup_Backup.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win7_amd64/RAPID/Tools/RAPIDCollectLogs/RAPIDCollectLogs.bat" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\Program Files (x86)\Samsung Magician\Rapid\Rapid.dll=>(ZIP Sfx r)=>Rapid/Win7_amd64/RAPID/CacheFilter/amd64/SamsungRapidDiskFltr.sys" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\Program Files (x86)\Samsung Magician\Rapid\Rapid.dll=>(ZIP Sfx r)=>Rapid/LIMITATIONS.txt" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\Program Files (x86)\Samsung Magician\Rapid\Rapid.dll=>(ZIP Sfx r)=>Rapid/Win8_amd64/RAPID/OpenSourceAnnouncement.txt" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\ProgramData\Samsung\SSD Magician\Site Link\Samsung_Magician_Setup_v45.zip=>Samsung_Magician_Setup_v45.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win7_amd64/RAPID/CacheFilter/DIFxAPI.dll" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\Program Files (x86)\Realtek\Audio\Drivers\HDADrv\WIN64\RTAIODAT.DAT=>rtkhdasetting=>103C82F9=>APO.zip=>APO=>00000924=>00000924.txt" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\ProgramData\Samsung\Backup\Samsung_Magician_ML_Setup_Backup.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win7_i386/RAPID/CacheFilter/rp.exe" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\Program Files (x86)\Realtek\Audio\Drivers\HDADrv\WIN32\Rtaiodat.dat=>rtkhdasetting=>103C82F2=>APO.zip=>APO=>00000924=>00000924.txt" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\Program Files (x86)\Samsung Magician\Rapid\Rapid.dll=>(ZIP Sfx r)=>Rapid/Win8_amd64/RAPID/CacheFilter/SamsungRapidApp.exe" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\Program Files (x86)\Samsung Magician\Rapid\Rapid.dll=>(ZIP Sfx r)=>Rapid/Win7_i386/RAPID/CacheFilter/rp.exe" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\Program Files (x86)\Realtek\Audio\Drivers\HDADrv\WIN64\RTAIODAT.DAT=>rtkhdasetting=>103C82FE=>APO.zip=>APO=>00000924=>00000924.txt" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\Program Files (x86)\Samsung Magician\Rapid\Rapid.dll=>(ZIP Sfx r)=>Rapid/Win7_i386/RAPID/Tools/RAPIDCollectLogs/RAPIDCollectLogs.bat" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\Program Files (x86)\Samsung Magician\Rapid\Rapid.dll=>(ZIP Sfx r)=>Rapid/Win7_i386/RAPID/SamsungRapidSvc.exe" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\Program Files (x86)\Samsung Magician\Rapid\Rapid.dll=>(ZIP Sfx r)=>Rapid/Win7_amd64/RAPID/CacheFilter/DIFxAPI.dll" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\ProgramData\Samsung\SSD Magician\Site Link\Samsung_Magician_Setup_v45.zip=>Samsung_Magician_Setup_v45.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win7_i386/dp.exe" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\Program Files (x86)\Realtek\Audio\Drivers\HDADrv\WIN32\Rtaiodat.dat=>rtkhdasetting=>103C82F9=>APO.zip=>APO=>00000924=>00000924.txt" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\Program Files (x86)\Samsung Magician\Rapid\Rapid.dll=>(ZIP Sfx r)=>Rapid/Win7_i386/RAPID/Tools/RAPIDCollectLogs/README.txt" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\ProgramData\Samsung\Backup\Samsung_Magician_ML_Setup_Backup.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win8_amd64/RAPID/CacheFilter/rp.exe" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\Program Files (x86)\Realtek\Audio\Drivers\HDADrv\WIN32\Rtaiodat.dat=>rtkhdasetting=>103C82FE=>APO.zip=>APO=>00000924=>00000924.txt" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\Program Files (x86)\Samsung Magician\Rapid\Rapid.dll=>(ZIP Sfx r)=>Rapid/Win7_amd64/RAPID/CacheFilter/SamsungRapidDiskFltr.inf" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\Program Files (x86)\Realtek\Audio\Drivers\HDADrv\WIN32\Rtaiodat.dat=>rtkhdasetting=>103C82FF=>APO.zip=>APO=>00000924=>00000924.txt" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\Program Files (x86)\Samsung Magician\Rapid\Rapid.dll=>(ZIP Sfx r)=>Rapid/Win7_amd64/dp.exe" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\Program Files (x86)\Samsung Magician\Rapid\Rapid.dll=>(ZIP Sfx r)=>Rapid/Help.pdf" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\Program Files (x86)\Samsung Magician\Rapid\Rapid.dll=>(ZIP Sfx r)=>Rapid/Win8_amd64/RAPID/CacheFilter/DIFxAPI.dll" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\Program Files (x86)\Samsung Magician\Rapid\Rapid.dll=>(ZIP Sfx r)=>Rapid/install.exe" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\ProgramData\Samsung\Backup\Samsung_Magician_ML_Setup_Backup.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win7_i386/RAPID/CacheFilter/DIFxAPI.dll" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\ProgramData\Samsung\SSD Magician\Site Link\Samsung_Magician_Setup_v45.zip=>Samsung_Magician_Setup_v45.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win8_amd64/RAPID/CacheFilter/SamsungRapidApp.exe" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\Program Files (x86)\Samsung Magician\Rapid\Rapid.dll=>(ZIP Sfx r)=>Rapid/Win7_amd64/RAPID/CacheFilter/SamsungRapidFSFltr.cat" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\ProgramData\Samsung\SSD Magician\Site Link\Samsung_Magician_Setup_v45.zip=>Samsung_Magician_Setup_v45.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win7_i386/RAPID/CacheFilter/rp.exe" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\Program Files (x86)\Samsung Magician\Rapid\Rapid.dll=>(ZIP Sfx r)=>Rapid/OpenSourceAnnouncement.txt" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\Program Files (x86)\Samsung Magician\Rapid\Rapid.dll=>(ZIP Sfx r)=>Rapid/RELEASE_NOTES.txt" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\Program Files (x86)\Samsung Magician\Rapid\Rapid.dll=>(ZIP Sfx r)=>Rapid/Win8_amd64/RAPID/CacheFilter/addfilter.exe" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\ProgramData\Samsung\SSD Magician\Site Link\Samsung_Magician_Setup_v45.zip=>Samsung_Magician_Setup_v45.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Help.pdf" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\Program Files (x86)\Samsung Magician\Rapid\Rapid.dll=>(ZIP Sfx r)=>Rapid/Win7_amd64/RAPID/CacheFilter/addfilter.exe" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\ProgramData\Samsung\SSD Magician\Site Link\Samsung_Magician_Setup_v45.zip=>Samsung_Magician_Setup_v45.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win7_amd64/RAPID/CacheFilter/rp.exe" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\Program Files (x86)\Samsung Magician\Rapid\Rapid.dll=>(ZIP Sfx r)=>Rapid/Win7_amd64/RAPID/CacheFilter/amd64/SamsungRapidFSFltr.sys" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\Program Files (x86)\Samsung Magician\Rapid\Rapid.dll=>(ZIP Sfx r)=>Rapid/Win7_amd64/RAPID/CacheFilter/SamsungRapidDiskFltr.cat" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\Program Files (x86)\Samsung Magician\Rapid\Rapid.dll=>(ZIP Sfx r)=>Rapid/Win7_amd64/RAPID/CacheFilter/rp.exe" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\Program Files (x86)\Samsung Magician\Rapid\Rapid.dll=>(ZIP Sfx r)=>Rapid/Win7_amd64/RAPID/CacheFilter/SamsungRapidApp.exe" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\ProgramData\Samsung\SSD Magician\Site Link\Samsung_Magician_Setup_v45.zip=>Samsung_Magician_Setup_v45.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/OpenSourceAnnouncement.txt" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\Program Files (x86)\Samsung Magician\Rapid\Rapid.dll=>(ZIP Sfx r)=>Rapid/Win7_amd64/RAPID/CacheFilter/SamsungRapidFSFltr.inf" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\Program Files (x86)\Samsung Magician\Rapid\Rapid.dll=>(ZIP Sfx r)=>Rapid/Win8_amd64/RAPID/CacheFilter/rp.exe" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\Program Files (x86)\Samsung Magician\Rapid\Rapid.dll=>(ZIP Sfx r)=>Rapid/Win7_amd64/RAPID/OpenSourceAnnouncement.txt" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\ProgramData\Samsung\Backup\Samsung_Magician_ML_Setup_Backup.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win7_i386/RAPID/CacheFilter/i386/SamsungRapidDiskFltr.sys" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\Program Files (x86)\Samsung Magician\Rapid\Rapid.dll=>(ZIP Sfx r)=>Rapid/Win7_i386/RAPID/CacheFilter/SamsungRapidApp.exe" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\ProgramData\Samsung\Backup\Samsung_Magician_ML_Setup_Backup.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win7_i386/RAPID/CacheFilter/SamsungRapidDiskFltr.cat" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\Program Files (x86)\Samsung Magician\Rapid\Rapid.dll=>(ZIP Sfx r)=>Rapid/Win7_amd64/RAPID/Tools/RAPIDCollectLogs/README.txt" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\Program Files (x86)\Samsung Magician\Rapid\Rapid.dll=>(ZIP Sfx r)=>Rapid/Win8_amd64/RAPID/CacheFilter/amd64/SamsungRapidDiskFltr.sys" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\ProgramData\Samsung\SSD Magician\Site Link\Samsung_Magician_Setup_v45.zip=>Samsung_Magician_Setup_v45.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win7_amd64/RAPID/CacheFilter/SamsungRapidFSFltr.cat" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\Program Files (x86)\Samsung Magician\Rapid\Rapid.dll=>(ZIP Sfx r)=>Rapid/Win7_i386/RAPID/CacheFilter/SamsungRapidDiskFltr.inf" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\Program Files (x86)\Samsung Magician\Rapid\Rapid.dll=>(ZIP Sfx r)=>Rapid/Win7_i386/dp.exe" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\Program Files (x86)\Samsung Magician\Rapid\Rapid.dll=>(ZIP Sfx r)=>Rapid/Win7_i386/RAPID/CacheFilter/DIFxAPI.dll" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\Program Files (x86)\Samsung Magician\Rapid\Rapid.dll=>(ZIP Sfx r)=>Rapid/Win7_i386/RAPID/CacheFilter/SamsungRapidDiskFltr.cat" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\Program Files (x86)\Samsung Magician\Rapid\Rapid.dll=>(ZIP Sfx r)=>Rapid/Win7_i386/RAPID/CacheFilter/i386/SamsungRapidDiskFltr.sys" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\ProgramData\Samsung\SSD Magician\Site Link\Samsung_Magician_Setup_v45.zip=>Samsung_Magician_Setup_v45.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win8_i386/RAPID/CacheFilter/SamsungRapidApp.exe" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\Program Files (x86)\Samsung Magician\Rapid\Rapid.dll=>(ZIP Sfx r)=>Rapid/Win7_i386/RAPID/CacheFilter/SamsungRapidFSFltr.cat" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\Program Files (x86)\Samsung Magician\Rapid\Rapid.dll=>(ZIP Sfx r)=>Rapid/Win7_i386/RAPID/CacheFilter/i386/SamsungRapidFSFltr.sys" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\Program Files (x86)\Samsung Magician\Rapid\Rapid.dll=>(ZIP Sfx r)=>Rapid/Win8_amd64/RAPID/CacheFilter/SamsungRapidDiskFltr.cat" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\Program Files (x86)\Samsung Magician\Rapid\Rapid.dll=>(ZIP Sfx r)=>Rapid/Win8_amd64/RAPID/CacheFilter/amd64/SamsungRapidFSFltr.sys" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\ProgramData\Samsung\SSD Magician\Site Link\Samsung_Magician_Setup_v45.zip=>Samsung_Magician_Setup_v45.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win8_amd64/RAPID/CacheFilter/rp.exe" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\Program Files (x86)\Samsung Magician\Rapid\Rapid.dll=>(ZIP Sfx r)=>Rapid/Win7_i386/RAPID/CacheFilter/SamsungRapidFSFltr.inf" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\ProgramData\Samsung\Backup\Samsung_Magician_ML_Setup_Backup.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win8_i386/RAPID/CacheFilter/SamsungRapidFSFltr.inf" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\Program Files (x86)\Samsung Magician\Rapid\Rapid.dll=>(ZIP Sfx r)=>Rapid/Win7_i386/RAPID/OpenSourceAnnouncement.txt" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\Program Files (x86)\Samsung Magician\Rapid\Rapid.dll=>(ZIP Sfx r)=>Rapid/Win8_amd64/RAPID/CacheFilter/SamsungRapidDiskFltr.inf" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\Program Files (x86)\Samsung Magician\Rapid\Rapid.dll=>(ZIP Sfx r)=>Rapid/Win8_amd64/dp.exe" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\Program Files (x86)\Samsung Magician\Rapid\Rapid.dll=>(ZIP Sfx r)=>Rapid/Win8_i386/RAPID/CacheFilter/SamsungRapidDiskFltr.cat" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\Program Files (x86)\Samsung Magician\Rapid\Rapid.dll=>(ZIP Sfx r)=>Rapid/Win8_amd64/RAPID/CacheFilter/SamsungRapidFSFltr.cat" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\Program Files (x86)\Samsung Magician\Rapid\Rapid.dll=>(ZIP Sfx r)=>Rapid/Win8_i386/dp.exe" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\Program Files (x86)\Autodesk\Autodesk Design Review 2013\EComposite\pdfnet.res" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\Program Files (x86)\Samsung Magician\Rapid\Rapid.dll=>(ZIP Sfx r)=>Rapid/Win8_i386/RAPID/CacheFilter/SamsungRapidDiskFltr.inf" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\Program Files (x86)\Samsung Magician\Rapid\Rapid.dll=>(ZIP Sfx r)=>Rapid/Win8_amd64/RAPID/CacheFilter/SamsungRapidFSFltr.inf" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\Program Files (x86)\Samsung Magician\Rapid\Rapid.dll=>(ZIP Sfx r)=>Rapid/Win8_amd64/RAPID/Tools/RAPIDCollectLogs/RAPIDCollectLogs.bat" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\Program Files (x86)\Samsung Magician\Rapid\Rapid.dll=>(ZIP Sfx r)=>Rapid/Win8_amd64/RAPID/SamsungRapidSvc.exe" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\ProgramData\Samsung\Backup\Samsung_Magician_ML_Setup_Backup.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win8_i386/RAPID/CacheFilter/SamsungRapidDiskFltr.cat" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\Program Files (x86)\Samsung Magician\Rapid\Rapid.dll=>(ZIP Sfx r)=>Rapid/Win8_i386/RAPID/CacheFilter/addfilter.exe" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\Program Files (x86)\Samsung Magician\Rapid\Rapid.dll=>(ZIP Sfx r)=>Rapid/Win8_amd64/RAPID/Tools/RAPIDCollectLogs/README.txt" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\Program Files (x86)\Samsung Magician\Rapid\Rapid.dll=>(ZIP Sfx r)=>Rapid/Win8_i386/RAPID/CacheFilter/DIFxAPI.dll" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\Program Files (x86)\Samsung Magician\Rapid\Rapid.dll=>(ZIP Sfx r)=>Rapid/Win8_i386/RAPID/CacheFilter/i386/SamsungRapidDiskFltr.sys" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\Program Files (x86)\Samsung Magician\Rapid\Rapid.dll=>(ZIP Sfx r)=>Rapid/Win8_i386/RAPID/CacheFilter/i386/SamsungRapidFSFltr.sys" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\Program Files (x86)\Samsung Magician\Rapid\Rapid.dll=>(ZIP Sfx r)=>Rapid/Win8_i386/RAPID/CacheFilter/rp.exe" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\Program Files (x86)\Samsung Magician\Rapid\Rapid.dll=>(ZIP Sfx r)=>Rapid/Win8_i386/RAPID/CacheFilter/SamsungRapidApp.exe" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\Program Files (x86)\Samsung Magician\Rapid\Rapid.dll=>(ZIP Sfx r)=>Rapid/Win8_i386/RAPID/CacheFilter/SamsungRapidFSFltr.cat" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\Program Files (x86)\Samsung Magician\Rapid\Rapid.dll=>(ZIP Sfx r)=>Rapid/Win8_i386/RAPID/CacheFilter/SamsungRapidFSFltr.inf" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\Program Files (x86)\Samsung Magician\Rapid\Rapid.dll=>(ZIP Sfx r)=>Rapid/Win8_i386/RAPID/OpenSourceAnnouncement.txt" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\Program Files (x86)\Samsung Magician\Rapid\Rapid.dll=>(ZIP Sfx r)=>Rapid/Win8_i386/RAPID/SamsungRapidSvc.exe" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\Program Files (x86)\Samsung Magician\Rapid\Rapid.dll=>(ZIP Sfx r)=>Rapid/Win8_i386/RAPID/Tools/RAPIDCollectLogs/RAPIDCollectLogs.bat" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\ProgramData\Samsung\Backup\Samsung_Magician_ML_Setup_Backup.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win8_i386/RAPID/CacheFilter/SamsungRapidFSFltr.cat" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\ProgramData\Samsung\SSD Magician\Site Link\Samsung_Magician_Setup_v45.zip=>Samsung_Magician_Setup_v45.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win7_amd64/RAPID/CacheFilter/amd64/SamsungRapidFSFltr.sys" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\Program Files (x86)\Samsung Magician\Rapid\Rapid.dll=>(ZIP Sfx r)=>Rapid/Win8_i386/RAPID/Tools/RAPIDCollectLogs/README.txt" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\Program Files\Autodesk\DWG TrueView 2014\pdfnet.res" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="E:\Inventortutorials\Inventor_2009_Schulungsvideos1-6.zip=>3_fem_pr„gung_Screen_Stream.avi" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\Program Files\Autodesk\AutoCAD 2014\pdfnet.res" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\Autodesk\WI\Autodesk Inventor 2014\x86\de-DE\Components\adr2013\program files\Autodesk\Autodesk Design Review 2013\EComposite\pdfnet.res" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\Autodesk\WI\Autodesk Inventor 2014\x64\Components\DWGVIEWER\Program Files\DWG TrueView 2014\pdfnet.res" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\Autodesk\WI\Autodesk Entertainment Creation Suite Ultimate 2016\x64\MotionBuilder\ADSK\MB\bin\x64\python27.zip=>test=>test_zipfile.pyo=>zero" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\Autodesk\WI\Autodesk Entertainment Creation Suite Ultimate 2016\x64\MotionBuilder\ADSK\MB\bin\x64\python27.zip=>test=>test_zipfile.pyc=>zero" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\Autodesk\WI\Autodesk Entertainment Creation Suite Ultimate 2016\x64\Maya\Autodesk\Maya2016\bin\python27.zip=>test=>test_zipfile.pyo=>zero" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\Autodesk\WI\Autodesk Entertainment Creation Suite Ultimate 2016\x64\Maya\Autodesk\Maya2016\bin\python27.zip=>test=>test_zipfile.pyc=>zero" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\ProgramData\Samsung\SSD Magician\Site Link\Samsung_Magician_Setup_v45.zip=>Samsung_Magician_Setup_v45.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win7_i386/RAPID/CacheFilter/DIFxAPI.dll" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\Autodesk\AutoCAD_2014_German_Win_64bit_dlm\x64\acad\Program Files\Root\pdfnet.res" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="E:\Inventortutorials\Inventor_2009_Schulungsvideos7-12.zip=>10_baugruppe1_Screen_Stream.avi" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\ProgramData\Samsung\SSD Magician\Site Link\Samsung_Magician_Setup_v45.zip=>Samsung_Magician_Setup_v45.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win7_amd64/RAPID/CacheFilter/SamsungRapidDiskFltr.cat" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="E:\Inventortutorials\Inventor_2009_Schulungsvideos7-12.zip=>11_baugruppe2_normteile_Screen_Stream.avi" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="E:\Inventortutorials\Inventor_2009_Schulungsvideos7-12.zip=>12_baugruppe_stueli_idw_posdarstellung_Screen_Stream.avi" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="E:\Inventortutorials\Inventor_2009_Schulungsvideos7-12.zip=>7_dwg zu ipt_Screen_Stream.avi" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="E:\Inventortutorials\Inventor_2009_Schulungsvideos7-12.zip=>8_blech1_Screen_Stream.avi" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="E:\Inventortutorials\Inventor_2009_Schulungsvideos7-12.zip=>9_blech2_Screen_Stream.avi" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\ProgramData\Samsung\SSD Magician\Site Link\Samsung_Magician_Setup_v45.zip=>Samsung_Magician_Setup_v45.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/RELEASE_NOTES.txt" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="E:\Program Files\Autodesk\MotionBuilder 2016\bin\x64\python27.zip=>test=>test_zipfile.pyo=>zero" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="E:\Program Files\Autodesk\MotionBuilder 2016\bin\x64\python27.zip=>test=>test_zipfile.pyc=>zero" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="E:\Inventortutorials\Inventor_2009_Schulungsvideos1-6.zip=>1_skizze_extrusion_Screen_Stream.avi" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="E:\Inventortutorials\Inventor_2009_Schulungsvideos1-6.zip=>2_element bearbeiten_Screen_Stream.avi" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="E:\Inventortutorials\Inventor_2009_Schulungsvideos1-6.zip=>4_lagerbock_Screen_Stream.avi" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="E:\Inventortutorials\Inventor_2009_Schulungsvideos1-6.zip=>5_lagerbock_zeichnung_Screen_Stream.avi" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="E:\Inventortutorials\Inventor_2009_Schulungsvideos1-6.zip=>6_welle_Screen_Stream.avi" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="E:\Sicherung\alte Q-Nr\Nicole Ertl\Arbeitsanweisunge\Kopie von AUA_aktuell_22_03_Lagerfrist - englisch .xlsx" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\ProgramData\Samsung\SSD Magician\Site Link\Samsung_Magician_Setup_v45.zip=>Samsung_Magician_Setup_v45.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/install.exe" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\ProgramData\Samsung\SSD Magician\Site Link\Samsung_Magician_Setup_v45.zip=>Samsung_Magician_Setup_v45.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/LIMITATIONS.txt" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\ProgramData\Samsung\SSD Magician\Site Link\Samsung_Magician_Setup_v45.zip=>Samsung_Magician_Setup_v45.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win7_amd64/dp.exe" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\ProgramData\Samsung\SSD Magician\Site Link\Samsung_Magician_Setup_v45.zip=>Samsung_Magician_Setup_v45.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win7_amd64/RAPID/CacheFilter/addfilter.exe" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\ProgramData\Samsung\SSD Magician\Site Link\Samsung_Magician_Setup_v45.zip=>Samsung_Magician_Setup_v45.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win7_amd64/RAPID/CacheFilter/amd64/SamsungRapidDiskFltr.sys" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\ProgramData\Samsung\SSD Magician\Site Link\Samsung_Magician_Setup_v45.zip=>Samsung_Magician_Setup_v45.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win7_amd64/RAPID/CacheFilter/SamsungRapidApp.exe" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\ProgramData\Samsung\SSD Magician\Site Link\Samsung_Magician_Setup_v45.zip=>Samsung_Magician_Setup_v45.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win7_amd64/RAPID/CacheFilter/SamsungRapidDiskFltr.inf" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\ProgramData\Samsung\SSD Magician\Site Link\Samsung_Magician_Setup_v45.zip=>Samsung_Magician_Setup_v45.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win7_amd64/RAPID/CacheFilter/SamsungRapidFSFltr.inf" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\ProgramData\Samsung\SSD Magician\Site Link\Samsung_Magician_Setup_v45.zip=>Samsung_Magician_Setup_v45.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win7_amd64/RAPID/OpenSourceAnnouncement.txt" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\ProgramData\Samsung\SSD Magician\Site Link\Samsung_Magician_Setup_v45.zip=>Samsung_Magician_Setup_v45.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win7_amd64/RAPID/SamsungRapidSvc.exe" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\ProgramData\Samsung\SSD Magician\Site Link\Samsung_Magician_Setup_v45.zip=>Samsung_Magician_Setup_v45.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win7_amd64/RAPID/Tools/RAPIDCollectLogs/RAPIDCollectLogs.bat" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\ProgramData\Samsung\Backup\Samsung_Magician_ML_Setup_Backup.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win8_amd64/RAPID/CacheFilter/amd64/SamsungRapidDiskFltr.sys" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\ProgramData\Samsung\SSD Magician\Site Link\Samsung_Magician_Setup_v45.zip=>Samsung_Magician_Setup_v45.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win7_amd64/RAPID/Tools/RAPIDCollectLogs/README.txt" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\ProgramData\Samsung\SSD Magician\Site Link\Samsung_Magician_Setup_v45.zip=>Samsung_Magician_Setup_v45.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win7_i386/RAPID/CacheFilter/addfilter.exe" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\ProgramData\Samsung\SSD Magician\Site Link\Samsung_Magician_Setup_v45.zip=>Samsung_Magician_Setup_v45.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win7_i386/RAPID/CacheFilter/i386/SamsungRapidDiskFltr.sys" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\ProgramData\Samsung\SSD Magician\Site Link\Samsung_Magician_Setup_v45.zip=>Samsung_Magician_Setup_v45.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win7_i386/RAPID/CacheFilter/i386/SamsungRapidFSFltr.sys" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\ProgramData\Samsung\SSD Magician\Site Link\Samsung_Magician_Setup_v45.zip=>Samsung_Magician_Setup_v45.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win7_i386/RAPID/CacheFilter/SamsungRapidApp.exe" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\ProgramData\Samsung\SSD Magician\Site Link\Samsung_Magician_Setup_v45.zip=>Samsung_Magician_Setup_v45.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win7_i386/RAPID/CacheFilter/SamsungRapidDiskFltr.cat" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\ProgramData\Samsung\SSD Magician\Site Link\Samsung_Magician_Setup_v45.zip=>Samsung_Magician_Setup_v45.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win7_i386/RAPID/CacheFilter/SamsungRapidDiskFltr.inf" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\ProgramData\Samsung\Backup\Samsung_Magician_ML_Setup_Backup.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/install.exe" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\ProgramData\Samsung\SSD Magician\Site Link\Samsung_Magician_Setup_v45.zip=>Samsung_Magician_Setup_v45.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win7_i386/RAPID/CacheFilter/SamsungRapidFSFltr.cat" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\ProgramData\Samsung\SSD Magician\Site Link\Samsung_Magician_Setup_v45.zip=>Samsung_Magician_Setup_v45.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win7_i386/RAPID/CacheFilter/SamsungRapidFSFltr.inf" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\ProgramData\Samsung\SSD Magician\Site Link\Samsung_Magician_Setup_v45.zip=>Samsung_Magician_Setup_v45.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win7_i386/RAPID/OpenSourceAnnouncement.txt" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\ProgramData\Samsung\SSD Magician\Site Link\Samsung_Magician_Setup_v45.zip=>Samsung_Magician_Setup_v45.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win7_i386/RAPID/SamsungRapidSvc.exe" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\ProgramData\Samsung\SSD Magician\Site Link\Samsung_Magician_Setup_v45.zip=>Samsung_Magician_Setup_v45.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win7_i386/RAPID/Tools/RAPIDCollectLogs/RAPIDCollectLogs.bat" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\ProgramData\Samsung\SSD Magician\Site Link\Samsung_Magician_Setup_v45.zip=>Samsung_Magician_Setup_v45.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win7_i386/RAPID/Tools/RAPIDCollectLogs/README.txt" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\ProgramData\Samsung\SSD Magician\Site Link\Samsung_Magician_Setup_v45.zip=>Samsung_Magician_Setup_v45.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win8_amd64/dp.exe" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\ProgramData\Samsung\SSD Magician\Site Link\Samsung_Magician_Setup_v45.zip=>Samsung_Magician_Setup_v45.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win8_amd64/RAPID/CacheFilter/addfilter.exe" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\ProgramData\Samsung\SSD Magician\Site Link\Samsung_Magician_Setup_v45.zip=>Samsung_Magician_Setup_v45.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win8_amd64/RAPID/CacheFilter/amd64/SamsungRapidDiskFltr.sys" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\ProgramData\Samsung\SSD Magician\Site Link\Samsung_Magician_Setup_v45.zip=>Samsung_Magician_Setup_v45.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win8_amd64/RAPID/CacheFilter/amd64/SamsungRapidFSFltr.sys" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\ProgramData\Samsung\SSD Magician\Site Link\Samsung_Magician_Setup_v45.zip=>Samsung_Magician_Setup_v45.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win8_amd64/RAPID/CacheFilter/DIFxAPI.dll" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\ProgramData\Samsung\SSD Magician\Site Link\Samsung_Magician_Setup_v45.zip=>Samsung_Magician_Setup_v45.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win8_amd64/RAPID/CacheFilter/SamsungRapidDiskFltr.cat" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\ProgramData\Samsung\SSD Magician\Site Link\Samsung_Magician_Setup_v45.zip=>Samsung_Magician_Setup_v45.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win8_amd64/RAPID/CacheFilter/SamsungRapidDiskFltr.inf" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\ProgramData\Samsung\SSD Magician\Site Link\Samsung_Magician_Setup_v45.zip=>Samsung_Magician_Setup_v45.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win8_amd64/RAPID/CacheFilter/SamsungRapidFSFltr.cat" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\ProgramData\Samsung\SSD Magician\Site Link\Samsung_Magician_Setup_v45.zip=>Samsung_Magician_Setup_v45.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win8_amd64/RAPID/CacheFilter/SamsungRapidFSFltr.inf" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\ProgramData\Samsung\SSD Magician\Site Link\Samsung_Magician_Setup_v45.zip=>Samsung_Magician_Setup_v45.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win8_amd64/RAPID/OpenSourceAnnouncement.txt" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\ProgramData\Samsung\SSD Magician\Site Link\Samsung_Magician_Setup_v45.zip=>Samsung_Magician_Setup_v45.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win8_amd64/RAPID/SamsungRapidSvc.exe" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\ProgramData\Samsung\SSD Magician\Site Link\Samsung_Magician_Setup_v45.zip=>Samsung_Magician_Setup_v45.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win8_amd64/RAPID/Tools/RAPIDCollectLogs/RAPIDCollectLogs.bat" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\ProgramData\Samsung\Backup\Samsung_Magician_ML_Setup_Backup.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win8_amd64/RAPID/CacheFilter/SamsungRapidFSFltr.inf" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\ProgramData\Samsung\SSD Magician\Site Link\Samsung_Magician_Setup_v45.zip=>Samsung_Magician_Setup_v45.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win8_amd64/RAPID/Tools/RAPIDCollectLogs/README.txt" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\ProgramData\Samsung\SSD Magician\Site Link\Samsung_Magician_Setup_v45.zip=>Samsung_Magician_Setup_v45.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win8_i386/dp.exe" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\ProgramData\Samsung\SSD Magician\Site Link\Samsung_Magician_Setup_v45.zip=>Samsung_Magician_Setup_v45.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win8_i386/RAPID/CacheFilter/addfilter.exe" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\ProgramData\Samsung\SSD Magician\Site Link\Samsung_Magician_Setup_v45.zip=>Samsung_Magician_Setup_v45.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win8_i386/RAPID/CacheFilter/DIFxAPI.dll" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\ProgramData\Samsung\SSD Magician\Site Link\Samsung_Magician_Setup_v45.zip=>Samsung_Magician_Setup_v45.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win8_i386/RAPID/CacheFilter/i386/SamsungRapidDiskFltr.sys" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\ProgramData\Samsung\SSD Magician\Site Link\Samsung_Magician_Setup_v45.zip=>Samsung_Magician_Setup_v45.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win8_i386/RAPID/CacheFilter/i386/SamsungRapidFSFltr.sys" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\ProgramData\Samsung\SSD Magician\Site Link\Samsung_Magician_Setup_v45.zip=>Samsung_Magician_Setup_v45.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win8_i386/RAPID/CacheFilter/rp.exe" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\ProgramData\Samsung\SSD Magician\Site Link\Samsung_Magician_Setup_v45.zip=>Samsung_Magician_Setup_v45.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win8_i386/RAPID/CacheFilter/SamsungRapidDiskFltr.cat" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\ProgramData\Samsung\SSD Magician\Site Link\Samsung_Magician_Setup_v45.zip=>Samsung_Magician_Setup_v45.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win8_i386/RAPID/CacheFilter/SamsungRapidDiskFltr.inf" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\ProgramData\Samsung\SSD Magician\Site Link\Samsung_Magician_Setup_v45.zip=>Samsung_Magician_Setup_v45.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win8_i386/RAPID/CacheFilter/SamsungRapidFSFltr.cat" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\ProgramData\Samsung\SSD Magician\Site Link\Samsung_Magician_Setup_v45.zip=>Samsung_Magician_Setup_v45.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win8_i386/RAPID/CacheFilter/SamsungRapidFSFltr.inf" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\ProgramData\Samsung\SSD Magician\Site Link\Samsung_Magician_Setup_v45.zip=>Samsung_Magician_Setup_v45.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win8_i386/RAPID/OpenSourceAnnouncement.txt" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\ProgramData\Samsung\Backup\Samsung_Magician_ML_Setup_Backup.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win7_i386/RAPID/CacheFilter/addfilter.exe" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\ProgramData\Samsung\SSD Magician\Site Link\Samsung_Magician_Setup_v45.zip=>Samsung_Magician_Setup_v45.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win8_i386/RAPID/SamsungRapidSvc.exe" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\ProgramData\Samsung\SSD Magician\Site Link\Samsung_Magician_Setup_v45.zip=>Samsung_Magician_Setup_v45.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win8_i386/RAPID/Tools/RAPIDCollectLogs/RAPIDCollectLogs.bat" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\ProgramData\Samsung\SSD Magician\Site Link\Samsung_Magician_Setup_v45.zip=>Samsung_Magician_Setup_v45.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win8_i386/RAPID/Tools/RAPIDCollectLogs/README.txt" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\ProgramData\Samsung\Backup\Samsung_Magician_ML_Setup_Backup.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Help.pdf" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\ProgramData\Samsung\Backup\Samsung_Magician_ML_Setup_Backup.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/LIMITATIONS.txt" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\ProgramData\Samsung\Backup\Samsung_Magician_ML_Setup_Backup.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/OpenSourceAnnouncement.txt" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\ProgramData\Samsung\Backup\Samsung_Magician_ML_Setup_Backup.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/RELEASE_NOTES.txt" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\ProgramData\Samsung\Backup\Samsung_Magician_ML_Setup_Backup.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win7_amd64/dp.exe" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\ProgramData\Samsung\Backup\Samsung_Magician_ML_Setup_Backup.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win7_amd64/RAPID/CacheFilter/addfilter.exe" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\ProgramData\Samsung\Backup\Samsung_Magician_ML_Setup_Backup.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win7_amd64/RAPID/CacheFilter/amd64/SamsungRapidDiskFltr.sys" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\ProgramData\Samsung\Backup\Samsung_Magician_ML_Setup_Backup.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win7_amd64/RAPID/CacheFilter/SamsungRapidDiskFltr.cat" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\ProgramData\Samsung\Backup\Samsung_Magician_ML_Setup_Backup.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win7_amd64/RAPID/CacheFilter/amd64/SamsungRapidFSFltr.sys" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\ProgramData\Samsung\Backup\Samsung_Magician_ML_Setup_Backup.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win7_i386/RAPID/Tools/RAPIDCollectLogs/RAPIDCollectLogs.bat" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\ProgramData\Samsung\Backup\Samsung_Magician_ML_Setup_Backup.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win7_amd64/RAPID/CacheFilter/DIFxAPI.dll" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\ProgramData\Samsung\Backup\Samsung_Magician_ML_Setup_Backup.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win7_amd64/RAPID/CacheFilter/rp.exe" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\ProgramData\Samsung\Backup\Samsung_Magician_ML_Setup_Backup.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win7_amd64/RAPID/CacheFilter/SamsungRapidApp.exe" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\ProgramData\Samsung\Backup\Samsung_Magician_ML_Setup_Backup.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win7_amd64/RAPID/CacheFilter/SamsungRapidDiskFltr.inf" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\ProgramData\Samsung\Backup\Samsung_Magician_ML_Setup_Backup.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win7_amd64/RAPID/CacheFilter/SamsungRapidFSFltr.cat" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\ProgramData\Samsung\Backup\Samsung_Magician_ML_Setup_Backup.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win7_amd64/RAPID/CacheFilter/SamsungRapidFSFltr.inf" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\ProgramData\Samsung\Backup\Samsung_Magician_ML_Setup_Backup.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win7_amd64/RAPID/OpenSourceAnnouncement.txt" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\ProgramData\Samsung\Backup\Samsung_Magician_ML_Setup_Backup.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win7_amd64/RAPID/SamsungRapidSvc.exe" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\ProgramData\Samsung\Backup\Samsung_Magician_ML_Setup_Backup.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win7_amd64/RAPID/Tools/RAPIDCollectLogs/README.txt" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\ProgramData\Samsung\Backup\Samsung_Magician_ML_Setup_Backup.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win7_i386/dp.exe" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\ProgramData\Samsung\Backup\Samsung_Magician_ML_Setup_Backup.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win7_i386/RAPID/CacheFilter/i386/SamsungRapidFSFltr.sys" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\ProgramData\Samsung\Backup\Samsung_Magician_ML_Setup_Backup.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win7_i386/RAPID/CacheFilter/SamsungRapidApp.exe" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\ProgramData\Samsung\Backup\Samsung_Magician_ML_Setup_Backup.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win7_i386/RAPID/CacheFilter/SamsungRapidDiskFltr.inf" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\ProgramData\Samsung\Backup\Samsung_Magician_ML_Setup_Backup.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win7_i386/RAPID/CacheFilter/SamsungRapidFSFltr.cat" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\ProgramData\Samsung\Backup\Samsung_Magician_ML_Setup_Backup.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win7_i386/RAPID/CacheFilter/SamsungRapidFSFltr.inf" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\ProgramData\Samsung\Backup\Samsung_Magician_ML_Setup_Backup.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win7_i386/RAPID/OpenSourceAnnouncement.txt" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\ProgramData\Samsung\Backup\Samsung_Magician_ML_Setup_Backup.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win7_i386/RAPID/SamsungRapidSvc.exe" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\ProgramData\Samsung\Backup\Samsung_Magician_ML_Setup_Backup.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win7_i386/RAPID/Tools/RAPIDCollectLogs/README.txt" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\ProgramData\Samsung\Backup\Samsung_Magician_ML_Setup_Backup.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win8_amd64/dp.exe" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\ProgramData\Samsung\Backup\Samsung_Magician_ML_Setup_Backup.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win8_amd64/RAPID/CacheFilter/addfilter.exe" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\ProgramData\Samsung\Backup\Samsung_Magician_ML_Setup_Backup.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win8_amd64/RAPID/CacheFilter/amd64/SamsungRapidFSFltr.sys" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\ProgramData\Samsung\Backup\Samsung_Magician_ML_Setup_Backup.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win8_amd64/RAPID/CacheFilter/DIFxAPI.dll" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\ProgramData\Samsung\Backup\Samsung_Magician_ML_Setup_Backup.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win8_amd64/RAPID/CacheFilter/SamsungRapidApp.exe" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\ProgramData\Samsung\Backup\Samsung_Magician_ML_Setup_Backup.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win8_amd64/RAPID/CacheFilter/SamsungRapidDiskFltr.cat" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\ProgramData\Samsung\Backup\Samsung_Magician_ML_Setup_Backup.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win8_amd64/RAPID/CacheFilter/SamsungRapidDiskFltr.inf" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\ProgramData\Samsung\Backup\Samsung_Magician_ML_Setup_Backup.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win8_amd64/RAPID/CacheFilter/SamsungRapidFSFltr.cat" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\ProgramData\Samsung\Backup\Samsung_Magician_ML_Setup_Backup.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win8_amd64/RAPID/OpenSourceAnnouncement.txt" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\ProgramData\Samsung\Backup\Samsung_Magician_ML_Setup_Backup.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win8_amd64/RAPID/SamsungRapidSvc.exe" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\ProgramData\Samsung\Backup\Samsung_Magician_ML_Setup_Backup.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win8_amd64/RAPID/Tools/RAPIDCollectLogs/RAPIDCollectLogs.bat" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\ProgramData\Samsung\Backup\Samsung_Magician_ML_Setup_Backup.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win8_amd64/RAPID/Tools/RAPIDCollectLogs/README.txt" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\ProgramData\Samsung\Backup\Samsung_Magician_ML_Setup_Backup.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win8_i386/dp.exe" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\ProgramData\Samsung\Backup\Samsung_Magician_ML_Setup_Backup.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win8_i386/RAPID/CacheFilter/addfilter.exe" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\ProgramData\Samsung\Backup\Samsung_Magician_ML_Setup_Backup.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win8_i386/RAPID/CacheFilter/DIFxAPI.dll" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\ProgramData\Samsung\Backup\Samsung_Magician_ML_Setup_Backup.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win8_i386/RAPID/CacheFilter/i386/SamsungRapidDiskFltr.sys" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\ProgramData\Samsung\Backup\Samsung_Magician_ML_Setup_Backup.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win8_i386/RAPID/CacheFilter/i386/SamsungRapidFSFltr.sys" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\ProgramData\Samsung\Backup\Samsung_Magician_ML_Setup_Backup.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win8_i386/RAPID/CacheFilter/rp.exe" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\ProgramData\Samsung\Backup\Samsung_Magician_ML_Setup_Backup.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win8_i386/RAPID/CacheFilter/SamsungRapidApp.exe" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\ProgramData\Samsung\Backup\Samsung_Magician_ML_Setup_Backup.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win8_i386/RAPID/CacheFilter/SamsungRapidDiskFltr.inf" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\ProgramData\Samsung\Backup\Samsung_Magician_ML_Setup_Backup.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win8_i386/RAPID/OpenSourceAnnouncement.txt" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\ProgramData\Samsung\Backup\Samsung_Magician_ML_Setup_Backup.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win8_i386/RAPID/SamsungRapidSvc.exe" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\ProgramData\Samsung\Backup\Samsung_Magician_ML_Setup_Backup.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win8_i386/RAPID/Tools/RAPIDCollectLogs/RAPIDCollectLogs.bat" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="C:\ProgramData\Samsung\Backup\Samsung_Magician_ML_Setup_Backup.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win8_i386/RAPID/Tools/RAPIDCollectLogs/README.txt" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="E:\Sicherung\alte Q-Nr\Stephanie Huebner\Archiv\STAT_150626_Managementreport_ErrorRate_2015B.xlsx" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="E:\Program Files\Autodesk\Maya2016\bin\python27.zip=>test=>test_zipfile.pyo=>zero" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="E:\Program Files\Autodesk\Maya2016\bin\python27.zip=>test=>test_zipfile.pyc=>zero" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> <Item type="0" objectType="0" path="E:\Downloads\DELL_WIRELESS-5630-EVDO-HSPA_A00_R298539.exe=>(ZIP Sfx o)=>SystemId.zip=>SystemId.txt" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" /> </NotScannedDetails> </ScanDetails> </ScanSession> https://malwaretips.com/blogs/trojan-generickd-removal/ Diesen habe ich durchgeführt, ohne Befunde, bis zum Adwcleaner step. Dieser fand ebenfalls zwei Sachen und ich habe diese gelöscht. Code:
ATTFilter # AdwCleaner v6.044 - Bericht erstellt am 02/03/2017 um 21:49:36 # Aktualisiert am 28/02/2017 von Malwarebytes # Datenbank : 2017-03-02.1 [Server] # Betriebssystem : Windows 10 Home (X64) # Benutzername : Inxi - INXI-PC # Gestartet von : C:\Users\Inxi\Downloads\adwcleaner_6.044.exe # Modus: Löschen # Unterstützung : https://www.malwarebytes.com/support ***** [ Dienste ] ***** ***** [ Ordner ] ***** [-] Ordner gelöscht: C:\ProgramData\5c9e2523-c041-4bd3-924f-697ec2ef6bde ***** [ Dateien ] ***** [-] Datei gelöscht: C:\END ***** [ DLL ] ***** ***** [ WMI ] ***** ***** [ Verknüpfungen ] ***** ***** [ Aufgabenplanung ] ***** ***** [ Registrierungsdatenbank ] ***** ***** [ Browser ] ***** ************************* :: "Tracing" Schlüssel gelöscht :: Winsock Einstellungen zurückgesetzt :: Internet Explorer Richtlinien gelöscht :: Chrome Richtlinien gelöscht ************************* C:\AdwCleaner\AdwCleaner[C0].txt - [990 Bytes] - [02/03/2017 21:49:36] C:\AdwCleaner\AdwCleaner[S0].txt - [1357 Bytes] - [02/03/2017 21:42:10] ########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt - [1135 Bytes] ########## auf der Suche nach C:\END bin ich auf diesen Thread gestoßen. http://www.trojaner-board.de/136098-...gen-c-end.html Ich habe Malware Bytes AntiRootkit installiert und beim Start wurde ein Verweis auf die Applnit.DLL gegeben. Ich habe auf "No" geklickt und MBAR lief problemslos durch. Heute habe ich dann alle Steps des obigen Guides wiederholt (im Safemode) und habe abschließend beim JunkwareRemovalTool folgendes Log erhalten. Code:
ATTFilter ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Junkware Removal Tool (JRT) by Malwarebytes Version: 8.1.1 (02.11.2017) Operating System: Windows 10 Home x64 Ran by Inxi (Limited) on 04.03.2017 at 11:05:48,93 ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ File System: 4 Successfully deleted: C:\ProgramData\1481276973.bdinstall.bin (File) Successfully deleted: C:\Users\Inxi\AppData\Roaming\Mozilla\Firefox\Profiles\cgvoh6rn.default\extensions\trash (Folder) Successfully deleted: C:\WINDOWS\system32\Tasks\PCDEventLauncherTask (Task) Successfully deleted: C:\WINDOWS\system32\Tasks\PCDoctorBackgroundMonitorTask (Task) Registry: 0 ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Scan was completed on 04.03.2017 at 11:06:38,59 End of JRT log ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Bei einem abschließenden Test mit MBAR wurde wieder der Verweis auf die Applnit.DLLs gegeben ohne danach beim Scan einen Befund zu melden. Inweit ist mein PC noch infiziert bzw. was sollten denn jetzt meine weiteren Schritte sein? FSR.txt Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 03-03-2017 durchgeführt von Inxi (Administrator) auf INXI-PC (04-03-2017 11:39:33) Gestartet von C:\Users\Inxi\Downloads Geladene Profile: Inxi (Verfügbare Profile: Inxi & DefaultAppPool) Platform: Windows 10 Home Version 1607 (X64) Sprache: Deutsch (Deutschland) Internet Explorer Version 11 (Standard-Browser: FF) Start-Modus: Normal Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Prozesse (Nicht auf der Ausnahmeliste) ================= (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.) (Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2017\vsserv.exe (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (Autodesk Inc.) C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgrSvc.exe (Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe (Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2017\vsservp.exe (Hi-Rez Studios) C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe (Autodesk, Inc.) C:\Program Files\Autodesk\Inventor 2016\Moldflow\bin\mitsijm.exe (Microsoft Corporation) C:\Windows\System32\mqsvc.exe (Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2017\updatesrv.exe (Western Digital Technologies, Inc.) C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe (Bitdefender) C:\Program Files\Bitdefender Agent\ProductAgentService.exe (Samsung Electronics Co., Ltd.) C:\Windows\System32\RAPID\SamsungRapidSvc.exe () C:\Program Files (x86)\Western Digital\WD SmartWare\Front Parlor\WDFME\WDFME.exe (Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe (HP) C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe () C:\Program Files (x86)\Western Digital\WD SmartWare\Front Parlor\WDSC.exe (WDC) C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMService.exe (Andrea Electronics Corporation) C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe (Autodesk, Inc.) C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe (Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe (Western Digital Technologies, Inc.) C:\Program Files (x86)\Western Digital\WD SmartWare\WDBackupEngine.exe (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe (Dell Inc.) C:\Program Files\Dell\DellDataVault\DellDataVaultWiz.exe (Dell Inc.) C:\Program Files (x86)\Dell Update\DellUpService.exe (HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Dell Inc.) C:\Program Files (x86)\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe (Dell Inc.) C:\Program Files\Dell\DellDataVault\DellDataVault.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (Dell Inc.) C:\Program Files (x86)\Dell Update\DellUpTray.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe (Pixart Imaging Inc) C:\Windows\System32\TiltWheelMouse.exe (Intel Corporation) C:\Windows\System32\igfxtray.exe (Intel Corporation) C:\Windows\System32\hkcmd.exe (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Intel Corporation) C:\Windows\System32\igfxpers.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe (Samsung Electronics.) C:\Program Files (x86)\Samsung Magician\Samsung Magician.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (Samsung Electronics Co., Ltd.) C:\Program Files (x86)\RAPID\CacheFilter\SamsungRapidApp.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe (Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe (Spotify Ltd) C:\Users\Inxi\AppData\Roaming\Spotify\SpotifyWebHelper.exe (Akamai Technologies, Inc.) C:\Users\Inxi\AppData\Local\Akamai\netsession_win.exe (Akamai Technologies, Inc.) C:\Users\Inxi\AppData\Local\Akamai\netsession_win.exe (Spotify Ltd) C:\Users\Inxi\AppData\Roaming\Spotify\SpotifyWebHelper.exe (Autodesk, Inc.) C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe (Western Digital Technologies, Inc.) C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMStatus.exe (NEC Electronics Corporation) C:\Program Files (x86)\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe (Hewlett-Packard Company) C:\Program Files (x86)\HP\ToolboxFX\bin\HPTLBXFX.exe (Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe (Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2017\bdagent.exe () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.11.110.0_x64__kzf8qxf38zg5c\SkypeHost.exe (Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2017\bdwtxag.exe (Microsoft Corporation) C:\Windows\System32\smartscreen.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe ==================== Registry (Nicht auf der Ausnahmeliste) ==================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.) HKLM\...\Run: [MouseDriver] => C:\Windows\system32\TiltWheelMouse.exe [241152 2013-04-09] (Pixart Imaging Inc) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8512760 2015-08-03] (Realtek Semiconductor) HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1411320 2015-08-03] (Realtek Semiconductor) HKLM\...\Run: [SamsungRapidApp] => C:\Program Files (x86)\RAPID\CacheFilter\SamsungRapidApp.exe [281776 2014-09-16] (Samsung Electronics Co., Ltd.) HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2634896 2015-08-07] (NVIDIA Corporation) HKLM\...\Run: [Malwarebytes TrayApp] => C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\mbamtray.exe [2780112 2017-01-20] (Malwarebytes) HKLM\...\Run: [WindowsDefender] => C:\Program Files\Windows Defender\MSASCuiL.exe [631808 2016-09-30] (Microsoft Corporation) HKLM-x32\...\Run: [NUSB3MON] => C:\Program Files (x86)\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [106496 2009-10-21] (NEC Electronics Corporation) HKLM-x32\...\Run: [ToolboxFX] => C:\Program Files (x86)\HP\ToolboxFX\bin\HPTLBXFX.exe [58936 2010-10-25] (Hewlett-Packard Company) HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard) HKLM-x32\...\Run: [] => [X] HKLM-x32\...\Run: [ADSKAppManager] => C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgr.exe [522784 2015-11-17] (Autodesk Inc.) Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation) HKU\S-1-5-21-3175323499-3369025214-2853444423-1000\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3018528 2017-02-23] (Valve Corporation) HKU\S-1-5-21-3175323499-3369025214-2853444423-1000\...\Run: [Spotify] => C:\Users\Inxi\AppData\Roaming\Spotify\Spotify.exe [7067760 2017-02-17] (Spotify Ltd) HKU\S-1-5-21-3175323499-3369025214-2853444423-1000\...\Run: [Akamai NetSession Interface] => C:\Users\Inxi\AppData\Local\Akamai\netsession_win.exe [4691384 2015-09-10] (Akamai Technologies, Inc.) HKU\S-1-5-21-3175323499-3369025214-2853444423-1000\...\Run: [Spotify Web Helper] => C:\Users\Inxi\AppData\Roaming\Spotify\SpotifyWebHelper.exe [1446000 2017-02-17] (Spotify Ltd) HKU\S-1-5-21-3175323499-3369025214-2853444423-1000\...\Run: [Autodesk Sync] => C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe [1336320 2015-11-25] (Autodesk, Inc.) HKU\S-1-5-21-3175323499-3369025214-2853444423-1000\...\Run: [Overwolf] => C:\Program Files (x86)\Overwolf\OverwolfLauncher.exe [1057848 2017-02-20] () HKU\S-1-5-21-3175323499-3369025214-2853444423-1000\...\Run: [Innkeeper] => C:\Users\Inxi\AppData\Local\Innkeeper\Update.exe --processStart Innkeeper.exe --process-start-args="-startup" HKU\S-1-5-21-3175323499-3369025214-2853444423-1000\...\Policies\Explorer: [] AppInit_DLLs: C:\Windows\system32\nvinitx.dll => Keine Datei AppInit_DLLs: , C:\WINDOWS\system32\nvinitx.dll => Keine Datei ShellIconOverlayIdentifiers: [AutoCAD Digital Signatures Icon Overlay Handler] -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\Windows\system32\AcSignIcon.dll [2015-02-06] (Autodesk, Inc.) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\WDDMStatus.lnk [2016-07-28] ShortcutTarget: WDDMStatus.lnk -> C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMStatus.exe (Western Digital Technologies, Inc.) ==================== Internet (Nicht auf der Ausnahmeliste) ==================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.) Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 192.168.0.2 Tcpip\..\Interfaces\{027f6474-5d44-4977-ba82-1028262a6651}: [DhcpNameServer] 192.168.2.1 Tcpip\..\Interfaces\{564ced59-5169-4294-a665-198236781d26}: [DhcpNameServer] 192.168.0.1 192.168.0.2 Tcpip\..\Interfaces\{A044B257-B0BB-4A90-A524-001E3E7A7C5C}: [DhcpNameServer] 7.254.254.254 Internet Explorer: ================== BHO: Bitdefender-Geldbörse -> {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} -> C:\Program Files\Bitdefender\Bitdefender 2017\pmbxie.dll [2017-01-17] (Bitdefender) BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation) BHO-x32: Bitdefender-Geldbörse -> {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} -> C:\Program Files\Bitdefender\Bitdefender 2017\Antispam32\pmbxie.dll [2017-01-17] (Bitdefender) BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation) Toolbar: HKLM - Bitdefender-Geldbörse - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender 2017\pmbxie.dll [2017-01-17] (Bitdefender) Toolbar: HKLM-x32 - Bitdefender-Geldbörse - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender 2017\Antispam32\pmbxie.dll [2017-01-17] (Bitdefender) FireFox: ======== FF DefaultProfile: cgvoh6rn.default FF ProfilePath: C:\Users\Inxi\AppData\Roaming\Mozilla\Firefox\Profiles\cgvoh6rn.default [2017-03-04] FF Homepage: Mozilla\Firefox\Profiles\cgvoh6rn.default -> www.welt.de FF Extension: (Adblock Plus) - C:\Users\Inxi\AppData\Roaming\Mozilla\Firefox\Profiles\cgvoh6rn.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-11-23] FF Extension: (SHA-1 deprecation staged rollout) - C:\Users\Inxi\AppData\Roaming\Mozilla\Firefox\Profiles\cgvoh6rn.default\features\{d22cf5b2-21dc-49bd-bc7c-9977629e5792}\disableSHA1rollout@mozilla.org.xpi [2017-03-04] FF HKLM\...\Firefox\Extensions: [bdwteffv20@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender 2017\antispam32\bdwteff FF Extension: (Bitdefender Wallet) - C:\Program Files\Bitdefender\Bitdefender 2017\antispam32\bdwteff [2017-01-18] FF HKLM\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender 2017\bdtbext FF Extension: (Bitdefender Antispam Toolbar) - C:\Program Files\Bitdefender\Bitdefender 2017\bdtbext [2016-12-09] [ist nicht signiert] FF HKLM-x32\...\Firefox\Extensions: [bdwteffv20@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender 2017\antispam32\bdwteff FF HKLM-x32\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender 2017\bdtbext FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_24_0_0_221.dll [2017-02-18] () FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] ( Microsoft Corporation) FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWoW64\Macromed\Flash\NPSWF32_24_0_0_221.dll [2017-02-18] () FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] ( Microsoft Corporation) FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation) FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-08-07] (NVIDIA Corporation) FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-08-07] (NVIDIA Corporation) FF Plugin-x32: @videolan.org/vlc,version=2.2.0 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-12-23] (Adobe Systems Inc.) Chrome: ======= CHR HKLM-x32\...\Chrome\Extension: [gannpgaobkkhmpomoijebaigcapoeebl] - hxxps://clients2.google.com/service/update2/crx ==================== Dienste (Nicht auf der Ausnahmeliste) ==================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) R2 AdAppMgrSvc; C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgrSvc.exe [1139744 2015-11-17] (Autodesk Inc.) R2 Autodesk Content Service; C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe [12288 2012-12-13] (Autodesk, Inc.) [Datei ist nicht signiert] R2 DellDataVault; C:\Program Files\Dell\DellDataVault\DellDataVault.exe [2572024 2016-06-23] (Dell Inc.) R2 DellDataVaultWiz; C:\Program Files\Dell\DellDataVault\DellDataVaultWiz.exe [202488 2016-06-23] (Dell Inc.) R2 DellUpdate; C:\Program Files (x86)\Dell Update\DellUpService.exe [237272 2015-08-27] (Dell Inc.) U2 HiPatchService; C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe [8704 2015-09-02] (Hi-Rez Studios) [Datei ist nicht signiert] R2 HP LaserJet Service; C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe [145920 2010-10-25] (HP) [Datei ist nicht signiert] R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [31776 2016-12-07] (HP Inc.) R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [4355024 2017-01-20] (Malwarebytes) S3 mi-raysat_3dsmax2016_64; E:\Program Files\Autodesk\3ds Max 2016\NVIDIA\Satellite\raysat_3dsmax2016_64server.exe [86016 2011-09-15] () [Datei ist nicht signiert] R2 mitsijm2016; C:\Program Files\Autodesk\Inventor 2016\Moldflow\bin\mitsijm.exe [968480 2014-09-30] (Autodesk, Inc.) R2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [71680 2010-01-18] (Hewlett-Packard) [Datei ist nicht signiert] S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2119176 2017-01-18] (Electronic Arts) R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [2181648 2017-01-18] (Electronic Arts) S3 OverwolfUpdater; C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [1325112 2017-02-20] (Overwolf LTD) R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [89600 2010-01-18] (Hewlett-Packard) [Datei ist nicht signiert] R2 ProductAgentService; C:\Program Files\Bitdefender Agent\ProductAgentService.exe [1100392 2016-10-28] (Bitdefender) R2 SamsungRapidSvc; C:\WINDOWS\System32\RAPID\SamsungRapidSvc.exe [28848 2014-09-16] (Samsung Electronics Co., Ltd.) S2 SetupARService; C:\Program Files (x86)\Realtek\Audio\SetupAfterRebootService.exe [10752 2016-12-08] () [Datei ist nicht signiert] R2 SupportAssistAgent; C:\Program Files (x86)\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe [31704 2016-09-09] (Dell Inc.) S3 TunngleService; C:\Program Files (x86)\Tunngle\TnglCtrl.exe [809424 2015-10-27] (Tunngle.net GmbH) [Datei ist nicht signiert] R2 UPDATESRV; C:\Program Files\Bitdefender\Bitdefender 2017\updatesrv.exe [218416 2017-01-17] (Bitdefender) R2 VSSERV; C:\Program Files\Bitdefender\Bitdefender 2017\vsserv.exe [1526528 2017-01-17] (Bitdefender) R2 vsservp; C:\Program Files\Bitdefender\Bitdefender 2017\vsservp.exe [524872 2016-08-25] (Bitdefender) R2 WDBackup; C:\Program Files (x86)\Western Digital\WD SmartWare\WDBackupEngine.exe [1042808 2015-02-12] (Western Digital Technologies, Inc.) R2 WDDMService; C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMService.exe [288768 2011-03-09] (WDC) [Datei ist nicht signiert] R2 WDDriveService; C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe [302968 2015-02-12] (Western Digital Technologies, Inc.) R2 WDFME; C:\Program Files (x86)\Western Digital\WD SmartWare\Front Parlor\WDFME\WDFME.exe [1066896 2011-03-09] () S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347328 2016-07-16] (Microsoft Corporation) R2 WDSC; C:\Program Files (x86)\Western Digital\WD SmartWare\Front Parlor\WDSC.exe [491920 2011-03-09] () R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103720 2016-07-16] (Microsoft Corporation) ===================== Treiber (Nicht auf der Ausnahmeliste) ====================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) R0 avc3; C:\WINDOWS\System32\DRIVERS\avc3.sys [1605376 2016-09-20] (BitDefender) R3 avckf; C:\WINDOWS\System32\DRIVERS\avckf.sys [878072 2016-09-20] (BitDefender) S0 bdelam; C:\WINDOWS\System32\drivers\bdelam.sys [23672 2016-03-14] (Bitdefender) R1 bdfwfpf; C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys [128400 2016-06-24] (BitDefender LLC) R1 BDVEDISK; C:\WINDOWS\system32\DRIVERS\bdvedisk.sys [87912 2015-12-04] (BitDefender) R3 DDDriver; C:\WINDOWS\system32\drivers\DDDriver64Dcsa.sys [32464 2015-09-11] (Dell Computer Corporation) R3 DellProf; C:\WINDOWS\system32\drivers\DellProf.sys [24240 2015-05-22] (Dell Computer Corporation) R1 epp; C:\EEK\bin64\epp.sys [115216 2017-01-03] (Emsisoft Ltd) R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [77408 2017-02-24] () S3 ggsomc; C:\WINDOWS\System32\drivers\ggsomc.sys [30424 2015-04-14] (Sony Mobile Communications) R0 gzflt; C:\WINDOWS\System32\DRIVERS\gzflt.sys [182944 2016-10-29] (BitDefender LLC) S3 hitmanpro37; C:\WINDOWS\system32\drivers\hitmanpro37.sys [54736 2017-03-04] () R0 ignis; C:\WINDOWS\system32\DRIVERS\ignis.sys [309280 2017-01-17] (Bitdefender) R2 MBAMChameleon; C:\WINDOWS\system32\drivers\MBAMChameleon.sys [186304 2017-03-04] (Malwarebytes) R3 MBAMFarflt; C:\WINDOWS\system32\drivers\farflt.sys [111544 2017-03-04] (Malwarebytes) R3 MBAMProtection; C:\WINDOWS\system32\drivers\mbam.sys [43968 2017-03-04] (Malwarebytes) R0 MBAMSwissArmy; C:\WINDOWS\System32\drivers\MBAMSwissArmy.sys [251840 2017-03-04] (Malwarebytes) R3 MBAMWebProtection; C:\WINDOWS\system32\drivers\mwac.sys [92088 2017-03-04] (Malwarebytes) S3 NetAdapterCx; C:\WINDOWS\System32\drivers\NetAdapterCx.sys [90624 2016-07-16] () R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nvdmwu.inf_amd64_26aa6356770b2e86\nvlddmkm.sys [13754936 2016-09-12] (NVIDIA Corporation) R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [589824 2016-07-16] (Realtek ) R0 SamsungRapidDiskFltr; C:\WINDOWS\System32\DRIVERS\SamsungRapidDiskFltr.sys [268976 2014-09-16] (Samsung Electronics Co., Ltd.) R0 SamsungRapidFSFltr; C:\WINDOWS\System32\DRIVERS\SamsungRapidFSFltr.sys [111280 2014-09-16] (Samsung Electronics Co., Ltd.) R0 trufos; C:\WINDOWS\System32\DRIVERS\trufos.sys [520032 2016-06-22] (BitDefender S.R.L.) R3 t_mouse.sys; C:\WINDOWS\system32\DRIVERS\t_mouse.sys [6144 2013-04-09] () S3 vpnva; C:\WINDOWS\System32\DRIVERS\vpnva64-6.sys [52592 2015-02-19] (Cisco Systems, Inc.) S0 WdBoot; C:\WINDOWS\System32\drivers\WdBoot.sys [44056 2016-07-16] (Microsoft Corporation) R0 WdFilter; C:\WINDOWS\System32\drivers\WdFilter.sys [290144 2016-07-16] (Microsoft Corporation) S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [123232 2016-07-16] (Microsoft Corporation) U3 idsvc; kein ImagePath ==================== NetSvcs (Nicht auf der Ausnahmeliste) =================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) ==================== Ein Monat: Erstellte Dateien und Ordner ======== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.) 2017-03-04 11:39 - 2017-03-04 11:39 - 00021635 _____ C:\Users\Inxi\Downloads\FRST.txt 2017-03-04 11:39 - 2017-03-04 11:39 - 00000000 ____D C:\FRST 2017-03-04 11:38 - 2017-03-04 11:39 - 02423808 _____ (Farbar) C:\Users\Inxi\Downloads\FRST64.exe 2017-03-04 11:06 - 2017-03-04 11:06 - 00000896 _____ C:\Users\Inxi\Desktop\JRT.txt 2017-03-04 10:37 - 2017-03-04 10:37 - 00054736 _____ C:\WINDOWS\system32\Drivers\hitmanpro37.sys 2017-03-04 10:15 - 2017-03-04 11:32 - 00000000 ____D C:\Users\Inxi\Desktop\Scan-Logs 2017-03-03 07:52 - 2017-03-03 07:52 - 00003760 _____ C:\Users\Inxi\Desktop\Rkill3_3_17.txt 2017-03-03 07:50 - 2017-03-04 10:22 - 00000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job 2017-03-03 07:16 - 2017-03-03 07:16 - 00001239 _____ C:\Users\Inxi\Desktop\Scan-Abends_03_03.txt 2017-03-02 22:11 - 2017-03-04 11:23 - 00000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable) 2017-03-02 22:00 - 2017-03-02 22:00 - 00000000 ____D C:\Users\Inxi\Downloads\Hearthstone 2017-03-02 21:59 - 2017-03-04 11:04 - 00000000 ____D C:\Antivirus 2017-03-02 21:58 - 2017-03-02 21:59 - 00000000 ____D C:\Users\Inxi\Downloads\Projektarbeit + Inventor 2017-03-02 21:39 - 2017-03-02 22:01 - 00000000 ____D C:\Users\Inxi\Downloads\Musik 2017-03-02 21:31 - 2017-03-02 21:31 - 00000000 ____D C:\ProgramData\Emsisoft 2017-03-02 21:29 - 2017-03-04 10:52 - 00000000 ____D C:\EEK 2017-03-02 21:17 - 2017-03-04 11:00 - 00000000 ____D C:\AdwCleaner 2017-03-02 21:12 - 2017-03-02 21:12 - 00001978 _____ C:\Users\Public\Desktop\HitmanPro.lnk 2017-03-02 21:12 - 2017-03-02 21:12 - 00000000 ____D C:\Program Files\HitmanPro 2017-03-02 21:10 - 2017-03-04 10:37 - 00000000 ____D C:\ProgramData\HitmanPro 2017-03-02 21:04 - 2017-03-04 11:35 - 00111544 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys 2017-03-02 21:04 - 2017-03-04 11:25 - 00186304 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMChameleon.sys 2017-03-02 21:04 - 2017-03-04 11:25 - 00092088 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys 2017-03-02 21:04 - 2017-03-04 11:25 - 00043968 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys 2017-03-02 21:03 - 2017-03-04 11:25 - 00251840 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys 2017-03-02 21:03 - 2017-03-02 22:11 - 00000000 ____D C:\ProgramData\Malwarebytes 2017-03-02 21:03 - 2017-03-02 21:03 - 00001912 _____ C:\Users\Public\Desktop\Malwarebytes.lnk 2017-03-02 21:03 - 2017-03-02 21:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes 2017-03-02 21:03 - 2017-03-02 21:03 - 00000000 ____D C:\Program Files\Malwarebytes 2017-03-02 21:03 - 2017-02-24 06:23 - 00077408 _____ C:\WINDOWS\system32\Drivers\mbae64.sys 2017-03-02 20:51 - 2017-03-04 10:23 - 00003760 _____ C:\Users\Inxi\Desktop\Rkill.txt 2017-03-02 20:44 - 2017-03-02 20:49 - 00285804 _____ C:\TDSSKiller.3.1.0.12_02.03.2017_20.44.29_log.txt 2017-03-02 20:20 - 2017-03-02 20:18 - 00078192 _____ C:\Users\Inxi\Desktop\1488476785_1_02.xml 2017-03-02 18:43 - 2017-03-02 18:43 - 00000336 _____ C:\WINDOWS\system32\㩃坜义佄南呜䵅屐浸㑬㜳⸰浴p翺 2017-03-02 18:43 - 2017-03-02 18:43 - 00000332 _____ C:\WINDOWS\system32\㩃坜义佄南呜䵅屐浸㍬䕂⸵浴p翺 2017-03-02 18:43 - 2017-03-02 18:43 - 00000326 _____ C:\WINDOWS\system32\㩃坜义佄南呜䵅屐浸㑬㠳⸱浴p翺 2017-02-26 19:48 - 2017-02-26 19:48 - 00029938 _____ C:\Users\Inxi\Downloads\rueckmeldung_152315_TCVXKXCZIHSD.pdf 2017-02-24 16:38 - 2017-02-24 16:38 - 00000000 ____D C:\ProgramData\PC-Doctor for Windows 2017-02-24 16:38 - 2017-02-24 16:38 - 00000000 ____D C:\Program Files\Dell Support Center 2017-02-22 19:31 - 2017-02-22 19:31 - 01876505 _____ C:\Users\Inxi\Downloads\Übungen mit Kurzhanteln.pdf 2017-02-12 00:15 - 2017-02-12 00:15 - 01724748 _____ C:\Users\Inxi\Downloads\TM2-V202.pdf 2017-02-09 19:38 - 2017-02-09 19:38 - 00394680 _____ C:\Users\Inxi\Downloads\Formelsammlung_Bertram.pdf 2017-02-06 18:37 - 2017-02-06 18:37 - 00000759 _____ C:\WINDOWS\!sfxunst.ini 2017-02-06 18:37 - 2017-02-06 18:37 - 00000000 ____D C:\Users\Inxi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Lavalamp Screensaver 2017-02-06 18:37 - 2003-03-24 11:39 - 00044842 _____ (e-merge GmbH) C:\WINDOWS\SXUNINST.EXE 2017-02-06 18:37 - 2003-03-24 11:04 - 00022016 _____ C:\WINDOWS\InstHelper.exe 2017-02-06 18:37 - 2003-03-18 14:44 - 03674112 _____ (German IT Development Ltd.) C:\WINDOWS\LavaSaver.scr ==================== Ein Monat: Geänderte Dateien und Ordner ======== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.) 2017-03-04 11:34 - 2015-02-13 20:27 - 00000000 ____D C:\Users\Inxi\AppData\Local\Spotify 2017-03-04 11:32 - 2016-11-19 02:58 - 00000000 ____D C:\Users\Inxi\AppData\LocalLow\Mozilla 2017-03-04 11:32 - 2016-07-29 13:16 - 00000000 ____D C:\Program Files\Bitdefender Agent 2017-03-04 11:32 - 2015-02-13 20:27 - 00000000 ____D C:\Users\Inxi\AppData\Roaming\Spotify 2017-03-04 11:29 - 2016-09-30 16:11 - 09821480 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2017-03-04 11:29 - 2016-07-16 23:51 - 04998886 _____ C:\WINDOWS\system32\perfh007.dat 2017-03-04 11:29 - 2016-07-16 23:51 - 01358288 _____ C:\WINDOWS\system32\perfc007.dat 2017-03-04 11:25 - 2016-12-14 16:45 - 00008192 _____ C:\WINDOWS\SysWOW64\WDPABKP.dat 2017-03-04 11:25 - 2016-09-30 16:26 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT 2017-03-04 11:25 - 2016-09-30 16:10 - 00000000 ____D C:\ProgramData\NVIDIA 2017-03-04 11:25 - 2016-07-16 07:04 - 01310720 _____ C:\WINDOWS\system32\config\BBI 2017-03-04 11:25 - 2014-12-31 15:10 - 00000000 ____D C:\ProgramData\Western Digital 2017-03-04 10:20 - 2014-12-31 14:34 - 00817452 _____ C:\bdlog.txt 2017-03-04 10:07 - 2015-11-03 11:20 - 00000000 ____D C:\Users\Inxi\AppData\Local\Akamai 2017-03-03 23:02 - 2016-09-30 16:09 - 00000000 ____D C:\WINDOWS\system32\SleepStudy 2017-03-03 22:47 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\AppReadiness 2017-03-02 22:49 - 2016-07-16 07:04 - 00065536 _____ C:\WINDOWS\system32\config\ELAM 2017-03-02 21:50 - 2016-09-30 16:11 - 00000000 ____D C:\Users\Inxi 2017-03-02 21:50 - 2016-09-30 16:09 - 00468112 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2017-03-02 21:50 - 2015-11-04 09:11 - 00000344 _____ C:\WINDOWS\Tasks\HPCeeScheduleForInxi.job 2017-03-02 20:49 - 2015-02-13 20:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2017-03-02 20:48 - 2015-02-13 20:09 - 00000000 ____D C:\Program Files (x86)\Microsoft Office 2017-03-02 20:48 - 2009-07-14 03:34 - 00000387 _____ C:\WINDOWS\win.ini 2017-03-02 20:18 - 2015-08-24 11:46 - 00000000 ____D C:\Users\Inxi\Documents\Outlook-Dateien 2017-03-02 18:24 - 2016-12-16 08:52 - 00003272 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task v2 2017-03-02 18:24 - 2016-07-28 20:47 - 00002421 _____ C:\Users\Inxi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2017-03-02 18:24 - 2016-07-28 20:47 - 00000000 ___RD C:\Users\Inxi\OneDrive 2017-03-02 16:39 - 2016-07-16 12:47 - 00000000 ___HD C:\Program Files\WindowsApps 2017-03-02 12:35 - 2016-09-30 16:26 - 00003232 _____ C:\WINDOWS\System32\Tasks\HPCeeScheduleForInxi 2017-03-01 23:02 - 2015-02-21 12:37 - 00000000 ____D C:\Users\Inxi\AppData\Local\Battle.net 2017-03-01 20:03 - 2015-02-21 12:38 - 00000000 ____D C:\Program Files (x86)\Diablo III 2017-03-01 19:05 - 2016-08-02 19:19 - 00000000 ____D C:\Program Files (x86)\Hearthstone 2017-03-01 19:02 - 2015-02-21 12:37 - 00000000 ____D C:\Program Files (x86)\Battle.net 2017-02-26 22:37 - 2015-02-13 20:25 - 00000000 ____D C:\Program Files (x86)\Steam 2017-02-24 16:38 - 2015-02-26 00:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell 2017-02-23 18:39 - 2014-12-31 14:00 - 00000000 ____D C:\WINDOWS\system32\MRT 2017-02-23 18:37 - 2014-12-31 14:00 - 138020592 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2017-02-23 18:04 - 2015-11-02 08:54 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk 2017-02-23 12:58 - 2016-08-16 12:58 - 00000000 ____D C:\Program Files (x86)\Overwolf 2017-02-22 20:35 - 2016-07-16 12:36 - 00000000 ____D C:\WINDOWS\CbsTemp 2017-02-18 12:52 - 2015-04-29 00:36 - 00000884 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job 2017-02-18 01:52 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\SysWOW64\Macromed 2017-02-18 01:52 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\Macromed 2017-02-06 20:48 - 2016-07-16 12:49 - 00835576 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe 2017-02-06 20:48 - 2016-07-16 12:49 - 00177656 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl ==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse ======= 2015-06-28 17:22 - 2015-06-28 17:22 - 0000268 ___RH () C:\Users\Inxi\AppData\Roaming\PrintingModule 2015-06-28 17:22 - 2015-06-28 17:22 - 0000268 ___RH () C:\Users\Inxi\AppData\Roaming\PrintsService 2015-04-14 18:51 - 2015-04-14 18:51 - 28579392 _____ (Sony Mobile Communications ) C:\Users\Inxi\AppData\Local\pcc.exe 2017-01-18 17:31 - 2017-01-18 17:31 - 0007608 _____ () C:\Users\Inxi\AppData\Local\Resmon.ResmonCfg 2016-12-10 12:17 - 2016-12-10 12:17 - 0387571 _____ () C:\ProgramData\cl.1481368159.bdinstall.bin 2016-12-10 12:17 - 2016-12-10 12:17 - 0055847 _____ () C:\ProgramData\dm.1481368655.bdinstall.bin 2016-12-10 12:20 - 2016-12-10 12:20 - 0035254 _____ () C:\ProgramData\dm.1481368793.bdinstall.bin 2015-06-28 17:22 - 2015-06-28 17:22 - 0000012 ___RH () C:\ProgramData\laserjet 2015-06-28 17:22 - 2015-06-28 17:22 - 0000012 ___RH () C:\ProgramData\manual 2015-11-03 15:45 - 2015-11-03 15:45 - 0000153 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.351.32.bc 2015-06-28 17:20 - 2015-08-28 18:31 - 0000020 ____H () C:\ProgramData\PKP_DLbx.DAT 2015-06-28 17:22 - 2015-06-28 17:22 - 0000020 ____H () C:\ProgramData\PKP_DLck.DAT 2015-06-28 17:22 - 2015-06-28 17:22 - 0000268 ___RH () C:\ProgramData\Quartz Composer 2015-06-28 17:22 - 2015-06-28 17:22 - 0000268 ___RH () C:\ProgramData\Radio Sounds ==================== Bamital & volsnap ====================== (Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.) C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert C:\WINDOWS\explorer.exe => Datei ist digital signiert C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert C:\WINDOWS\system32\services.exe => Datei ist digital signiert C:\WINDOWS\system32\User32.dll => Datei ist digital signiert C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert LastRegBack: 2017-02-22 20:35 ==================== Ende von FRST.txt ============================ |
04.03.2017, 12:33 | #2 |
| Nach Trojan.GenericKD.1704971 Fund, AdwCleaner Fund in C:\End -> Folgefund Applni.DLLs Hier der dritte Teil.
__________________Addition.txt Code:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 03-03-2017 durchgeführt von Inxi (04-03-2017 11:40:27) Gestartet von C:\Users\Inxi\Downloads Windows 10 Home Version 1607 (X64) (2016-09-30 15:27:30) Start-Modus: Normal ========================================================== ==================== Konten: ============================= Administrator (S-1-5-21-3175323499-3369025214-2853444423-500 - Administrator - Disabled) DefaultAccount (S-1-5-21-3175323499-3369025214-2853444423-503 - Limited - Disabled) Gast (S-1-5-21-3175323499-3369025214-2853444423-501 - Limited - Disabled) HomeGroupUser$ (S-1-5-21-3175323499-3369025214-2853444423-1003 - Limited - Enabled) Inxi (S-1-5-21-3175323499-3369025214-2853444423-1000 - Administrator - Enabled) => C:\Users\Inxi ==================== Sicherheits-Center ======================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.) AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B} AV: Bitdefender Virenschutz (Enabled - Up to date) {3FB17364-4FCC-0FA7-6BBF-973897395371} AS: Bitdefender Spyware-Schutz (Enabled - Up to date) {84D09280-69F6-0029-510F-AC4AECBE19CC} AS: Malwarebytes (Enabled - Up to date) {98619B37-4FC4-67F2-1C99-EEF6D47DBD96} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} FW: Bitdefender Firewall (Enabled) {078AF241-05A3-0EFF-40E0-3E0D69EA140A} ==================== Installierte Programme ====================== (Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.) 64 Bit HP CIO Components Installer (Version: 7.2.4 - Hewlett-Packard) Hidden A360 Desktop (HKLM\...\{A74E6AC6-623F-4DFE-B362-32C7986EE871}) (Version: 6.2.10.1700 - Autodesk) Adobe Acrobat Reader DC - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AC0F074E4100}) (Version: 15.023.20070 - Adobe Systems Incorporated) Adobe Flash Player 24 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 24.0.0.221 - Adobe Systems Incorporated) Akamai NetSession Interface (HKU\S-1-5-21-3175323499-3369025214-2853444423-1000\...\Akamai) (Version: - Akamai Technologies, Inc) ALTools Update (HKLM-x32\...\ALUpdate_is1) (Version: v11.4 - ESTsoft Corp.) ALZip 8.51 (HKLM-x32\...\ALZip_is1) (Version: v8.51 - ESTsoft Corp.) AutoCAD 2014 - Deutsch (German) (Version: 19.1.108.0 - Autodesk) Hidden AutoCAD 2014 - Deutsch (German) (Version: 19.1.18.0 - Autodesk) Hidden AutoCAD 2014 Language Pack - Deutsch (German) (Version: 19.1.18.0 - Autodesk) Hidden Autodesk 3ds Max 2016 (HKLM\...\Autodesk 3ds Max 2016) (Version: 18.0.873.0 - Autodesk) Autodesk 3ds Max 2016 (Version: 18.0.873.0 - Autodesk) Hidden Autodesk 3ds Max 2016 Populate Data (HKLM\...\{57E92DED-DC7C-41E5-B9E1-76D83BD2EABE}) (Version: 18.0.0.0 - Autodesk) Autodesk Advanced Material Library Image Library 2016 (HKLM-x32\...\{94AD53E7-493B-4291-8714-7A3B761D2783}) (Version: 6.3.0.19 - Autodesk) Autodesk App Manager (HKLM-x32\...\{C070121A-C8C5-4D52-9A7D-D240631BD433}) (Version: 1.1.0 - Autodesk) Autodesk Application Manager (HKLM-x32\...\Autodesk Application Manager) (Version: 5.0.142.9 - Autodesk) Autodesk AutoCAD 2014 - Deutsch (German) (HKLM\...\AutoCAD 2014 - Deutsch (German)) (Version: 19.1.18.0 - Autodesk) Autodesk AutoCAD 2014 - Deutsch (German) SP1 (HKLM\...\AutoCAD 2014 - Deutsch (German) SP1) (Version: 1 - Autodesk) Autodesk Backburner 2016 (HKLM-x32\...\{8C5F38D2-9EFE-49A4-B3F5-BF3210FED168}) (Version: 16.0.0.0 - Autodesk) Autodesk Civil View for 3ds Max 2016 64-bit (HKLM\...\{1C4FFAF0-6DBB-4F7A-A386-46747D060826}) (Version: 18.0.0.0 - Autodesk) Autodesk Configurator 360 addin (HKLM-x32\...\{563941AA-C055-4FAA-8B04-A4E024A61F7E}) (Version: 20.0.10300 - Autodesk) Autodesk Content Service (HKLM-x32\...\Autodesk Content Service) (Version: 3.1.3.0 - Autodesk) Autodesk Content Service (x32 Version: 3.1.3.0 - Autodesk) Hidden Autodesk Content Service Language Pack (x32 Version: 3.1.3.0 - Autodesk) Hidden Autodesk Design Review 2013 (HKLM-x32\...\Autodesk Design Review 2013) (Version: 13.0.0.82 - Autodesk, Inc.) Autodesk Design Review 2013 (x32 Version: 13.0.0.82 - Autodesk, Inc.) Hidden Autodesk DirectConnect 2016 64-bit (HKLM\...\Autodesk DirectConnect 2016 64-bit) (Version: 10.0.110.1 - Autodesk) Autodesk DirectConnect 2016 64-bit (Version: 10.0.110.1 - Autodesk) Hidden Autodesk Download Manager (HKLM-x32\...\{EC92633C-8F08-470A-BCDF-3FE5FD778C8D}) (Version: 4.0.14.0 - Autodesk, Inc.) Autodesk DWG TrueView 2014 (HKLM\...\DWG TrueView 2014) (Version: 19.1.18.0 - Autodesk) Autodesk DWG TrueView 2016 - English (HKLM\...\DWG TrueView 2016 - English) (Version: 20.1.49.0 - Autodesk) Autodesk Featured Apps (HKLM-x32\...\{F732FEDA-7713-4428-934B-EF83B8DD65D0}) (Version: 1.1.0 - Autodesk) Autodesk Inventor Content Center Libraries 2014 (Desktop Content) (HKLM\...\{B46DECD1-1864-4EF1-0000-22D71E81877C}) (Version: 18.0.17000.0000 - Autodesk) Autodesk Inventor Content Center Libraries 2016 (Desktop Content) (HKLM\...\{B46DECD1-2064-4EF1-0000-22D71E81877C}) (Version: 20.0.13800.0000 - Autodesk) Autodesk Inventor Electrical Catalog Browser 2016 - Deutsch (German) (HKLM\...\Autodesk Inventor Electrical Catalog Browser 2016 - Deutsch (German)) (Version: 13.0.46.0 - Autodesk) Autodesk Inventor Electrical Catalog Browser 2016 - Deutsch (German) (Version: 13.0.46.0 - Autodesk) Hidden Autodesk Inventor Electrical Catalog Browser 2016 Language Pack - Deutsch (German) (Version: 13.0.46.0 - Autodesk) Hidden Autodesk Inventor Professional 2016 - Deutsch (German) (HKLM\...\Autodesk Inventor Professional 2016) (Version: 20.0.13800.0000 - Autodesk) Autodesk Inventor Professional 2016 (Version: 20.0.13800.0000 - Autodesk) Hidden Autodesk Inventor Professional 2016 Language Pack - Deutsch (German) (Version: 20.0.13800.0000 - Autodesk) Hidden Autodesk Inventor Server Engine for 3ds Max 2016 (HKLM\...\{9167CA34-4E58-49E3-8892-3C439739D2D3}) (Version: 18.0 - Autodesk) Autodesk Material Library 2014 (HKLM-x32\...\{644F9B19-A462-499C-BF4D-300ABC2A28B1}) (Version: 4.0.19.0 - Autodesk) Autodesk Material Library 2016 (HKLM-x32\...\{29A7D6EC-63C2-42FD-8143-5812ABD2923F}) (Version: 6.3.0.19 - Autodesk) Autodesk Material Library Base Resolution Image Library 2014 (HKLM-x32\...\{51BF3210-B825-4092-8E0D-66D689916E02}) (Version: 4.0.19.0 - Autodesk) Autodesk Material Library Base Resolution Image Library 2016 (HKLM-x32\...\{6B4CFC6E-ECB0-47FE-95D3-65C680ED0687}) (Version: 6.3.0.19 - Autodesk) Autodesk Material Library Low Resolution Image Library 2014 (HKLM-x32\...\{5C29CC1F-218F-4C30-948A-11066CAC59FB}) (Version: 4.0.19.0 - Autodesk) Autodesk Material Library Low Resolution Image Library 2016 (HKLM-x32\...\{FA5DF4D1-CD59-4183-B3D4-779A56498786}) (Version: 6.3.0.15 - Autodesk) Autodesk Material Library Medium Resolution Image Library 2016 (HKLM-x32\...\{415A5A54-325E-4815-9940-62A889CA3877}) (Version: 6.3.0.19 - Autodesk) Autodesk Maya 2016 (HKLM\...\Autodesk Maya 2016) (Version: 16.0.1312.0 - Autodesk) Autodesk Maya 2016 (Version: 16.0.1312.0 - Autodesk) Hidden Autodesk MotionBuilder 2016 (HKLM\...\Autodesk MotionBuilder 2016) (Version: 16.0.0.17 - Autodesk) Autodesk MotionBuilder 2016 (Version: 16.0.0.17 - Autodesk) Hidden Autodesk Mudbox 2016 (HKLM\...\Autodesk Mudbox 2016) (Version: 10.0.0.166 - Autodesk) Autodesk Mudbox 2016 (Version: 10.0.0.166 - Autodesk) Hidden Autodesk ReCap (HKLM\...\Autodesk ReCap) (Version: 1.0.43.27 - Autodesk) Autodesk ReCap (Version: 1.0.43.27 - Autodesk) Hidden Autodesk ReCap 2016 (HKLM\...\Autodesk ReCap 2016) (Version: 1.5.0.33 - Autodesk) Autodesk ReCap 2016 (Version: 1.5.0.33 - Autodesk) Hidden Autodesk ReCap Language Pack-English (Version: 1.0.43.27 - Autodesk) Hidden Autodesk Revit Interoperability for 3ds Max 2016 (HKLM\...\Autodesk Revit Interoperability for 3ds Max 2016) (Version: 16.0.421.0 - Autodesk) Autodesk Revit Interoperability for 3ds Max 2016 (Version: 16.0.421.0 - Autodesk) Hidden Autodesk Revit Interoperability for Inventor 2014 (HKLM\...\Autodesk Revit Interoperability for Inventor 2014) (Version: 13.02.15161 - Autodesk) Autodesk Revit Interoperability for Inventor 2014 (Version: 13.02.15161 - Autodesk) Hidden Autodesk Revit Interoperability for Inventor 2016 (HKLM\...\Autodesk Revit Interoperability for Inventor 2016) (Version: 16.0.421.0 - Autodesk) Autodesk Revit Interoperability for Inventor 2016 (Version: 16.0.421.0 - Autodesk) Hidden Autodesk Suite Exclusives 2016 (HKLM\...\{D0F82C64-3E66-4B12-B12C-3F79C0F731C1}) (Version: 3.0.0.0 - Autodesk) Autodesk Vault Basic 2014 (Client) (HKLM\...\Autodesk Vault Basic 2014 (Client)) (Version: 18.0.86.0 - Autodesk) Autodesk Vault Basic 2014 (Client) (Version: 18.0.86.0 - Autodesk) Hidden Autodesk Vault Basic 2014 (Client) German Language Pack (Version: 18.0.86.0 - Autodesk) Hidden Autodesk Vault Basic 2016 (Client) (HKLM\...\Autodesk Vault Basic 2016 (Client)) (Version: 21.0.50.0 - Autodesk) Autodesk Vault Basic 2016 (Client) (Version: 21.0.50.0 - Autodesk) Hidden Autodesk Vault Basic 2016 (Client) German Language Pack (Version: 21.0.50.0 - Autodesk) Hidden Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment) Bitdefender Agent (HKLM\...\Bitdefender Agent) (Version: 20.0.29.1517 - Bitdefender) Bitdefender Internet Security 2017 (HKLM\...\Bitdefender) (Version: 21.0.22.1050 - Bitdefender) Broken Sword 5 - the Serpent's Curse (HKLM-x32\...\Steam App 262940) (Version: - Revolution Software Ltd) Canon MP Navigator EX 2.0 (HKLM-x32\...\MP Navigator EX 2.0) (Version: - ) Canon MP Navigator EX 4.0 (HKLM-x32\...\MP Navigator EX 4.0) (Version: - ) CanoScan LiDE 200 Scanner Driver (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_CNQ4807) (Version: - ) CanoScan LiDE 210 Scanner Driver (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_CNQ4809) (Version: - ) CDBurnerXP (HKLM-x32\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.7.6389 - CDBurnerXP) Cura 15.04.4 (HKLM-x32\...\Cura_15.04.4) (Version: - ) Cura 15.04.6 (HKLM-x32\...\Cura_15.04.6) (Version: - ) Dell Command | Update (HKLM-x32\...\{EC542D5D-B608-4145-A8F7-749C02BE6D94}) (Version: 2.2.0 - Dell Inc.) Dell Data Vault (Version: 4.3.9.0 - Dell Inc.) Hidden Dell SupportAssist (HKLM\...\PC-Doctor for Windows) (Version: 1.3.6855.72 - Dell) Dell SupportAssistAgent (HKLM-x32\...\{27130E51-9555-408B-8134-7BFF54EDE27B}) (Version: 1.3.0.72 - Dell) Dell Update - SupportAssist Update Plugin (HKLM\...\{92F651D9-4431-469E-9B11-299D007AF656}) (Version: 2.0.2.1835 - Dell Inc.) Dell Update (HKLM-x32\...\{DB82968B-57A4-4397-81A5-ECAB21B5DFCD}) (Version: 1.7.1015.0 - Dell Inc.) Diablo III (HKLM-x32\...\Diablo III) (Version: - Blizzard Entertainment) Divinity: Original Sin (HKLM-x32\...\Steam App 230230) (Version: - Larian Studios) Dota 2 (HKLM\...\Steam App 570) (Version: - Valve) Dota 2 Workshop Tools Alpha (HKLM-x32\...\Steam App 316570) (Version: - ) DWG TrueView 2014 (Version: 19.1.18.0 - Autodesk) Hidden DWG TrueView 2016 - English (Version: 20.1.49.0 - Autodesk) Hidden Eco Materials Adviser for Autodesk Inventor 2014 (64-bit) (HKLM\...\{530B8614-C5DE-475B-AF6F-71BED461552C}) (Version: 4.4.1.0 - Granta Design Limited) Eco Materials Adviser for Autodesk Inventor 2016 (64-bit) (HKLM\...\{1A56BE00-916E-432D-A576-EB00D2FF8450}) (Version: 5.6.4.44 - Granta Design Limited) Endless Legend (HKLM-x32\...\Steam App 289130) (Version: - AMPLITUDE Studios) FARO LS 1.1.501.0 (64bit) (HKLM-x32\...\{8A470330-70B2-49AD-86AF-79885EF9898A}) (Version: 5.1.0.30630 - FARO Scanner Production) FARO LS 1.1.503.3 (64bit) (HKLM-x32\...\{1C05E654-FB81-4274-BF32-292E3707701D}) (Version: 5.3.3.38662 - FARO Scanner Production) Firewatch (HKLM\...\Steam App 383870) (Version: - Campo Santo) Game of Thrones - A Telltale Games Series (HKLM-x32\...\Steam App 330840) (Version: - Telltale Games) Grim Dawn (HKLM\...\Steam App 219990) (Version: - Crate Entertainment) Hearthstone (HKLM-x32\...\Hearthstone) (Version: - Blizzard Entertainment) HitmanPro 3.7 (HKLM\...\HitmanPro37) (Version: 3.7.15.281 - SurfRight B.V.) HP LaserJet Professional CP1520 Series (HKLM-x32\...\{5C069542-CA13-4f1b-B90C-28C6430F4992}) (Version: - Hewlett-Packard) HP Support Assistant (HKLM-x32\...\{79C54A05-F146-4EA0-8A70-D4EFE6181E52}) (Version: 8.3.50.9 - Hewlett-Packard Company) HP Support Solutions Framework (HKLM-x32\...\{8F1A441E-AD6D-4732-BD6A-F38D5F1D1E47}) (Version: 12.5.32.203 - Hewlett-Packard Company) HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard) HPLaserJetHelp_LearnCenter (HKLM-x32\...\{E15C68A1-9CA5-44AC-A7F7-6C0673F196A8}) (Version: 1.02.0000 - Hewlett-Packard) HPLJUT (x32 Version: 1.00.0012 - HP) Hidden hppCP1520LaserJetService (x32 Version: 001.008.00477 - Hewlett-Packard) Hidden hppLaserJetService (x32 Version: 002.015.00599 - Hewlett-Packard) Hidden hppTLBXFXCP1520 (x32 Version: 001.012.00948 - Hewlett-Packard) Hidden hpzTLBXFX (x32 Version: 006.015.01163 - Hewlett-Packard) Hidden Innkeeper (HKU\S-1-5-21-3175323499-3369025214-2853444423-1000\...\Innkeeper) (Version: 0.3.4 - Curse Inc.) InstallShieldHiRezCurrent (HKLM-x32\...\{9433FC1C-7405-433C-A26D-81076293BBCE}) (Version: 3.0.0.0 - Hi-Rez Studios) Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 7.0.0.1144 - Intel Corporation) Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 8.15.10.2455 - Intel Corporation) Intel® PROSet/Wireless WiFi-Software (HKLM\...\{181BBF43-CA17-4E1A-A78D-81E67A57B8A4}) (Version: 15.02.0000.1258 - Intel Corporation) Keep Talking and Nobody Explodes (HKLM-x32\...\Steam App 341800) (Version: - Steel Crate Games) Lavalamp Screensaver v1.2.0.0 (Demo Version) (HKLM-x32\...\Lavalamp Screensaver v1.2.0.0 (Demo Version)) (Version: - ) Malwarebytes Version 3.0.6.1469 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.0.6.1469 - Malwarebytes) Microsoft Access database engine 2010 (English) (HKLM\...\{90140000-00D1-0409-1000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation) Microsoft Office Professional 2010 (HKLM-x32\...\Office14.SingleImage) (Version: 14.0.7015.1000 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-3175323499-3369025214-2853444423-1000\...\OneDriveSetup.exe) (Version: 17.3.6798.0207 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50901.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23918 (HKLM-x32\...\{dab68466-3a7d-41a8-a5cf-415e3ff8ef71}) (Version: 14.0.23918.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23918 (HKLM-x32\...\{2e085fd2-a3e4-4b39-8e10-6b8d35f55244}) (Version: 14.0.23918.0 - Microsoft Corporation) Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation) Microsoft Visual Studio 2010-Tools für Office-Laufzeit (x64) Language Pack - DEU (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - DEU) (Version: 10.0.50903 - Microsoft Corporation) Microsoft WSE 3.0 Runtime (HKLM-x32\...\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}) (Version: 3.0.5305.0 - Microsoft Corp.) Mozilla Firefox 51.0.1 (x86 de) (HKLM-x32\...\Mozilla Firefox 51.0.1 (x86 de)) (Version: 51.0.1 - Mozilla) Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 51.0.1.6234 - Mozilla) MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation) MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation) NEC Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\InstallShield_{D7BF9739-8A68-4335-BBEE-37752AD9E86B}) (Version: 1.0.17.0 - NEC Electronics Corporation) NEC Electronics USB 3.0 Host Controller Driver (x32 Version: 1.0.17.0 - NEC Electronics Corporation) Hidden NVIDIA 3D Vision Treiber 355.60 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 355.60 - NVIDIA Corporation) NVIDIA Grafiktreiber 355.60 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 355.60 - NVIDIA Corporation) NVIDIA PhysX (HKLM-x32\...\{8B922CF8-8A6C-41CE-A858-F1755D7F5D29}) (Version: 9.12.1031 - NVIDIA Corporation) OpenAL (HKLM-x32\...\OpenAL) (Version: - ) Origin (HKLM-x32\...\Origin) (Version: 10.3.5.6379 - Electronic Arts, Inc.) Overwolf (HKLM-x32\...\Overwolf) (Version: 0.102.217.0 - Overwolf Ltd.) Path of Exile (HKLM\...\Steam App 238960) (Version: - Grinding Gear Games) PAYDAY 2 (HKLM\...\Steam App 218620) (Version: - OVERKILL - a Starbreeze Studio.) PDF24 Creator 6.9.2 (HKLM-x32\...\{81A6F461-0DBA-4F12-B56F-0E977EC10576}_is1) (Version: - PDF24.org) RAPID Mode (Version: 1.0.1.81 - Samsung Electronics Co., Ltd.) Hidden Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.48.823.2011 - Realtek) Realtek USB Audio (HKLM-x32\...\{0A46A65D-89AC-464C-8026-3CD44960BD04}) (Version: 6.3.9600.41 - Realtek Semiconductor Corp.) Renesas Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\InstallShield_{5442DAB8-7177-49E1-8B22-09A049EA5996}) (Version: 2.1.27.0 - Renesas Electronics Corporation) Renesas Electronics USB 3.0 Host Controller Driver (x32 Version: 2.1.27.0 - Renesas Electronics Corporation) Hidden Samsung Magician (HKLM-x32\...\{29AE3F9F-7158-4ca7-B1ED-28A73ECDB215}_is1) (Version: 4.5.1 - Samsung Electronics) Scrolls (HKLM-x32\...\{F7F74F7F-C458-4B7C-A6F4-80A28ED7AF0B}) (Version: 1.0.2.0 - Mojang) Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version: - Microsoft) SketchUp Import for AutoCAD 2014 (HKLM-x32\...\{644E9589-F73A-49A4-AC61-A953B9DE5669}) (Version: 1.1.0 - Autodesk) Sony Mobile Update Engine (HKLM-x32\...\Update Engine) (Version: 2.16.15.201610281456 - Sony Mobile Communications Inc.) Sony PC Companion 2.10.303 (HKLM-x32\...\{F09EF8F2-0976-42C1-8D9D-8DF78337C6E3}) (Version: 2.10.303 - Sony) Space Farmers (HKLM-x32\...\Steam App 271570) (Version: - BumpkinBrothers) Spotify (HKU\S-1-5-21-3175323499-3369025214-2853444423-1000\...\Spotify) (Version: 1.0.49.125.g72ee7853 - Spotify AB) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) The Wolf Among Us (HKLM\...\Steam App 250320) (Version: - Telltale Games) Titan Quest (HKLM-x32\...\{412B69AF-C352-4F6F-A318-B92B3CB9ACC6}) (Version: 1.00.0000 - Iron Lore) Titan Quest Immortal Throne (HKLM-x32\...\{B5C5C17E-FEF6-4062-8151-A427AE8AF9D7}) (Version: 1.00.0000 - Iron Lore) Trine (HKLM\...\Steam App 35700) (Version: - Frozenbyte) Tunngle (HKLM-x32\...\Tunngle_is1) (Version: 5.7 - Tunngle.net GmbH) Uplay (HKLM-x32\...\Uplay) (Version: 13.0 - Ubisoft) Usb GamePad (HKLM-x32\...\{DEC7CD2E-2BB5-40C3-9592-078F64677E6C}) (Version: 1.00.0000 - ) Valiant Hearts: The Great War™ / Soldats Inconnus : Mémoires de la Grande Guerre™ (HKLM-x32\...\Steam App 260230) (Version: - Ubisoft Montpellier) Vektoris3D 2.5 PLUS 2.5.2 (HKLM-x32\...\0531-3074-2651-5065) (Version: 2.5.2 - kapieren.de) Visual C++ 2008 - x64 (KB958357) - v9.0.30729.177 (HKLM-x32\...\{6DA2B636-698A-3294-BF4A-B5E11B238CDD}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation) Visual C++ 2008 - x64 (KB958357) - v9.0.30729.177 (HKLM-x32\...\{8CCEA24C-51AE-3B71-9092-7D0C44DDA2DF}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation) Visual C++ 2008 - x64 (KB958357) - v9.0.30729.177 (HKLM-x32\...\{C3A57BB3-9AA6-3F6F-9395-6C062BDD5FC4}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation) Visual C++ 2008 - x64 (KB958357) - v9.0.30729.177 (HKLM-x32\...\{F6F09DD8-F39B-3A16-ADB9-C9E6B56903F9}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation) Visual C++ 2008 - x86 (KB958357) - v9.0.30729.177 (HKLM-x32\...\{04B34E21-5BEE-3D2B-8D3D-E3E80D253F64}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation) Visual C++ 2008 - x86 (KB958357) - v9.0.30729.177 (HKLM-x32\...\{14866AAD-1F23-39AC-A62B-7091ED1ADE64}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation) Visual C++ 2008 - x86 (KB958357) - v9.0.30729.177 (HKLM-x32\...\{4B90093A-5D9C-3956-8ABB-95848BE6EFAD}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation) Visual C++ 2008 - x86 (KB958357) - v9.0.30729.177 (HKLM-x32\...\{B42E259C-E4D4-37F1-A1B2-EB9C4FC5A04D}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation) VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.1 - VideoLAN) WD Quick View (HKLM-x32\...\{BE1B25F9-5A51-4DB8-81FA-CE0CABC14D07}) (Version: 2.4.10.17 - Western Digital Technologies, Inc.) WD SmartWare (HKLM\...\{07179D37-D5FE-4373-90D9-A25B992EFB3E}) (Version: 1.4.5.5 - Western Digital) WD SmartWare (HKLM\...\{FECF90E3-FDEA-4A87-8A06-2683388C69C4}) (Version: 2.4.10.17 - Western Digital Technologies, Inc.) WD SmartWare Installer (HKLM-x32\...\{647175e1-9944-4a82-bac1-102c95f0a99a}) (Version: 2.4.10.17 - Western Digital Technologies, Inc.) Windows Driver Package - Arduino LLC (www.arduino.cc) Arduino USB Driver (01/04/2013 1.0.0.0) (HKLM\...\1E3EA5624DD04BEFECF3FFF6D3A21CCE9CD70A91) (Version: 01/04/2013 1.0.0.0 - Arduino LLC (www.arduino.cc)) Worms Clan Wars (HKLM-x32\...\Steam App 233840) (Version: - Team17 Digital Ltd) Xvid Video Codec (HKLM-x32\...\Xvid Video Codec 1.3.2) (Version: 1.3.2 - Xvid Team) ==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ========================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{00F064D8-FEC3-48ac-B07D-39C314D1727B}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\ServiceModule.dll (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{0215A4C0-5431-4FD0-9B06-46589B5C4939}\InprocServer32 -> axdb.dll => Keine Datei CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{048ED0E0-12CF-4C0F-9FFA-947C2FBE8C8E}\InprocServer32 -> axdb.dll => Keine Datei CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{071339A1-1946-44B2-B63E-50459B15DB86}\InprocServer32 -> axdb.dll => Keine Datei CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{073CB204-6B29-46FC-AB98-451F1D068741}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\TestServer.dll (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{08A60FF7-BB37-44F4-9759-0ADA6C7B9CC9}\InprocServer32 -> axdb.dll => Keine Datei CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{0B38CACA-3D3C-48EA-BEB5-7D95F4F6EE15}\InprocServer32 -> axdb.dll => Keine Datei CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{0C3393F8-94F5-4B79-8C01-49A2D0CC0FE9}\InprocServer32 -> axdb.dll => Keine Datei CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{0D555CE0-304A-47A6-858B-B145209A3982}\InprocServer32 -> axdb.dll => Keine Datei CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{1029ABC3-2457-11D5-8E9D-0010B541CD80}\localserver32 -> "E:\Program Files\Autodesk\Inventor 2014\Compatibility\Bin\DbxBridge.exe" => Keine Datei CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{12545889-6D32-4424-9967-1E1D7BD1F809}\InprocServer32 -> axdb.dll => Keine Datei CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{13009989-EFB5-48C9-8BD2-943E0392BD71}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\RxAppCtrl.Ocx (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{14679E3B-C952-4998-8E13-4B1286E6DD99}\InprocServer32 -> axdb.dll => Keine Datei CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{1481B385-759A-4B00-9257-E96357563999}\InprocServer32 -> axdb.dll => Keine Datei CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{162EF0A1-5A33-46F2-ACCF-CA388B084A09}\InprocServer32 -> axdb.dll => Keine Datei CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{18A21864-E37B-42b9-9612-2C1E8C450A29}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\ServiceModule.dll (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{1D625598-C876-4C51-8EF5-F9D8F96F62AA}\InprocServer32 -> axdb.dll => Keine Datei CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{1D6DFD6A-9E16-435A-9327-6FFEC6BA372F}\InprocServer32 -> axdb.dll => Keine Datei CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{1E5724EA-3423-4BD3-ABD6-46E650D2DC66}\InprocServer32 -> AcETransmit.dll => Keine Datei CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{1E8A29BA-827D-4031-A4A3-AE7999B402F6}\InprocServer32 -> axdb.dll => Keine Datei CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{1EA072EE-57FD-495E-889C-8243C3BDBDBC}\InprocServer32 -> axdb.dll => Keine Datei CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{1FD7F53F-7ED5-439C-9A77-A3821CD09E98}\InprocServer32 -> axdb.dll => Keine Datei CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{20E47D5B-529A-45BD-8E77-BF1A3064A008}\InprocServer32 -> axdb.dll => Keine Datei CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{21DB88B0-BFBF-11D4-8DE6-0010B541CAA8}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\iDrop.dll (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{244298EC-E661-11d4-BC13-0010B5891E89}\InprocServer32 -> E:\Program Files\Autodesk\Inventor 2014\Bin\TI.dll => Keine Datei CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{2709544A-5B24-4F9F-A5DA-CEC7297D3A4E}\InprocServer32 -> axdb.dll => Keine Datei CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{2BCA857B-A18B-4AFA-B183-CC0E49C12058}\InprocServer32 -> axdb.dll => Keine Datei CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{2C74F89E-7421-46B4-BA54-F86F1BD9F237}\InprocServer32 -> axdb.dll => Keine Datei CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{2C7D1157-7D50-4A88-9777-5EBBA3189AB8}\InprocServer32 -> axdb.dll => Keine Datei CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{2F8377FC-50C1-44EF-AB7A-8FF1BB8EA277}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\ServiceModule.dll (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{3497C2EC-5684-4B21-AF74-F6760E0221DC}\InprocServer32 -> axdb.dll => Keine Datei CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{3897B445-D5B8-410d-899A-9789B8ADB643}\localserver32 -> "E:\Program Files\Autodesk\Inventor 2014\Compatibility\Bin\DbxBridge.exe" => Keine Datei CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{38C8B14E-7879-4DA9-8C3F-8CAAC359293A}\InprocServer32 -> axdb.dll => Keine Datei CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{3C3F63EA-C7BA-11d4-8E60-0010B541CD80}\localserver32 -> "E:\Program Files\Autodesk\Inventor 2014\Compatibility\Bin\DbxBridge.exe" => Keine Datei CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{3faa4380-a399-11cf-a466-00805fe418f6}\InprocServer32 -> C:\Program Files\Autodesk\DWG TrueView 2014\en-US\dwgviewrficn.dll (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{3FC94EB5-AEBD-4f3f-A2A4-B6CE57113C01}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\RxAppDocView.dll (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{3FCEB42C-9B98-486A-BED7-FD7F3ADB7291}\InprocServer32 -> AcETransmit.dll => Keine Datei CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{40770568-0D5E-49D4-BE47-BC47A4F0B0A4}\InprocServer32 -> axdb.dll => Keine Datei CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{44A52280-AE56-490D-890C-89FB7279ED6B}\InprocServer32 -> axdb.dll => Keine Datei CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{45122C53-8483-4b62-B15A-EAA9FE5FC3D5}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\ServiceModule.dll (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{46C56738-39C6-4240-8B9B-008CCD769A84}\InprocServer32 -> axdb.dll => Keine Datei CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{47179DDE-10AC-4737-97C9-8CE5379343EA}\InprocServer32 -> AcETransmit.dll => Keine Datei CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{475C7B4A-6964-4F9E-9708-05A16EAC31D0}\InprocServer32 -> axdb.dll => Keine Datei CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{48270F9E-CCF6-4C79-B6FF-267C960E6425}\InprocServer32 -> axdb.dll => Keine Datei CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{48FEFCD7-5D7C-4E4A-9F11-60E69A31D4B1}\InprocServer32 -> axdb.dll => Keine Datei CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{49998808-648A-4A9C-A7A5-B1672775D9AB}\InprocServer32 -> axdb.dll => Keine Datei CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{4A756F5F-CBA4-428B-B17F-AF80C0C8502D}\InprocServer32 -> axdb.dll => Keine Datei CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{4B40437B-8972-4444-BBE3-1588FF55F203}\InprocServer32 -> axdb.dll => Keine Datei CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{4BD03680-3C0F-4501-AFF7-3D008586917F}\InprocServer32 -> axdb.dll => Keine Datei CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{4C80573A-9150-11d2-B772-0060B0F159EF}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\RxAppDocView.dll (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{4D29B490-49B2-11D0-93C3-7E0706000000}\localserver32 -> E:\Program Files\Autodesk\Inventor 2014\Bin\Inventor.exe => Keine Datei CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{4E6F2E83-E7F0-4333-9772-875EB733C820}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\RxTest.dll (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{5544903C-2CCC-487C-91BB-F310B72A8E9B}\InprocServer32 -> AcETransmit.dll => Keine Datei CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{59A224A2-BEF8-4C89-96E0-83A5411ABB6C}\InprocServer32 -> axdb.dll => Keine Datei CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{622F6193-E4DD-46E6-BC66-2ED88E9FD28D}\InprocServer32 -> axdb.dll => Keine Datei CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{62FBB030-24C7-11D3-B78D-0060B0F159EF}\localserver32 -> E:\Program Files\Autodesk\Inventor 2014\Bin\Inventor.exe => Keine Datei CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{644190AE-BD8F-493F-B63D-C79404AC5E07}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\ServiceModule.dll (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{6451051B-AD22-4C6A-ACCE-013A0E1DDBC3}\InprocServer32 -> axdb.dll => Keine Datei CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{64B99FDB-1D85-447F-98C7-569DBDA723DB}\InprocServer32 -> axdb.dll => Keine Datei CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{6A221957-2D85-42A7-8E19-BE33950D1DEB}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2014\acad.exe (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{6BCE6F6E-C050-4F39-BD98-E2743949F724}\InprocServer32 -> axdb.dll => Keine Datei CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{6F56D7C9-18DD-4C15-9FA8-C54E3610EC40}\InprocServer32 -> axdb.dll => Keine Datei CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{6FDE7A70-351B-11d6-988B-0010B57A8BB7}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\DtBridge.dll (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{6FDE7A71-351B-11d6-988B-0010B57A8BB7}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\DtBridge.dll (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{6FDE7A72-351B-11d6-988B-0010B57A8BB7}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\DtBridge.dll (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{6FDE7A73-351B-11d6-988B-0010B57A8BB7}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\DtBridge.dll (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{6FDE7A74-351B-11d6-988B-0010B57A8BB7}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\DtBridge.dll (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{6FDE7A77-351B-11d6-988B-0010B57A8BB7}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\DtCp.dll (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{70DBCAE8-8C2B-450C-9E1D-43E4686C6512}\InprocServer32 -> axdb.dll => Keine Datei CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{713C0E8A-5AE8-4695-B442-5ED6C4FE5C42}\InprocServer32 -> axdb.dll => Keine Datei CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{714D325C-E9CE-44ab-A72A-36BB410BA19B}\localserver32 -> E:\Program Files\Autodesk\Inventor 2014\Bin\FEAFilesHandler.exe => Keine Datei CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{7293E009-3015-4AD3-96EC-D42C36B5FCE3}\InprocServer32 -> AcETransmit.dll => Keine Datei CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{72EC5CC5-88F3-45B1-A865-0A327DF58CC8}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\ServiceModule.dll (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{72EFC580-D085-4B81-8C55-26A79E445338}\InprocServer32 -> axdb.dll => Keine Datei CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{750AEC19-2E4C-4ED9-9B9F-F9CAFCD060F3}\InprocServer32 -> axdb.dll => Keine Datei CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{76283A80-50DD-11D3-A7E3-00C04F79D7BC}\localserver32 -> E:\Program Files\Autodesk\Inventor 2014\Bin\Inventor.exe => Keine Datei CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{794199C5-827C-41C8-8CB2-3A1EA056AF5E}\InprocServer32 -> axdb.dll => Keine Datei CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{798391FE-4AF2-4851-9DDA-1F0D70C02A9E}\InprocServer32 -> axdb.dll => Keine Datei CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{7BA16B3F-1AB3-4BD7-B959-52C4B8504EE9}\InprocServer32 -> AcInetUI.dll => Keine Datei CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{7C239DAB-BC87-45F3-B7B1-FCC1541A235B}\InprocServer32 -> axdb.dll => Keine Datei CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{7DE1BE5C-CEBA-4F1D-ACBC-9CE11EE9A2A1}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2014\acad.exe (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{81D07C3D-0350-11D3-B7C2-0060B0EC020B}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\RxAppCtrl.Ocx (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{834CE679-2E47-49DE-9E41-FEC87E9192EB}\InprocServer32 -> axdb.dll => Keine Datei CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{8421A29C-54B8-11D1-9837-0060B03C43C8}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\SolidObject.Dll () CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{846217D0-8954-11D2-8DCD-0060B0C32531}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\UCxTextBtn.Ocx (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{846217D1-8954-11D2-8DCD-0060B0C32531}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\UCxTextBtn.Ocx (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{849AFB5B-D6C9-4924-A712-F7118FF9611F}\InprocServer32 -> axdb.dll => Keine Datei CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{85452F88-5071-492E-B850-2E3C586DCBD8}\InprocServer32 -> axdb.dll => Keine Datei CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{87F5CF8F-A06D-498F-A05F-E520E6B570DB}\InprocServer32 -> axdb.dll => Keine Datei CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{89F0FC31-3B1D-494B-A75B-6BD4FA527B8A}\InprocServer32 -> axdb.dll => Keine Datei CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{8AA16DFC-DFC6-4B51-8FA2-A5D812BE33BF}\InprocServer32 -> axdb.dll => Keine Datei CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{8B0E6BD9-610C-11D1-9842-0060B03C43C8}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\SolidObject.Dll () CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{8C23B656-4E6E-4B45-9920-9617168D39A3}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\TestServer.dll (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{8ED07FEF-E1B0-4CC3-B2BA-D354828AB952}\InprocServer32 -> axdb.dll => Keine Datei CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{97E17F04-17DF-11d5-BC38-0010B5891E89}\InprocServer32 -> E:\Program Files\Autodesk\Inventor 2014\Bin\BodyReceiver.dll => Keine Datei CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{988F4102-E6E3-4282-ACAC-55270827F2A8}\InprocServer32 -> axdb.dll => Keine Datei CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{9906CDFC-DB2C-4126-9422-13139B148495}\InprocServer32 -> axdb.dll => Keine Datei CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{9A21C6C5-27FC-4442-8590-575E7AFD73BB}\InprocServer32 -> axdb.dll => Keine Datei CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{9ECF83FB-23C5-43B6-83DE-93CFBDD74D4A}\InprocServer32 -> axdb.dll => Keine Datei CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{A58F47CC-FF65-4152-B0B1-666C643A5BFC}\InprocServer32 -> AcETransmit.dll => Keine Datei CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{A6A3D586-44CF-44C2-A92C-620BB713B4F2}\InprocServer32 -> axdb.dll => Keine Datei CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{ABBE3F83-D585-4A50-9B69-198B0F566F2E}\InprocServer32 -> axdb.dll => Keine Datei CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{AC5CECFA-F03A-41D2-A89C-704C44935941}\InprocServer32 -> axdb.dll => Keine Datei CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{B1560245-190E-4BBD-81DF-9B642D0E5325}\InprocServer32 -> axdb.dll => Keine Datei CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{B2A579E0-A797-40B1-8AEE-A8F6404719F8}\InprocServer32 -> axdb.dll => Keine Datei CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{B47196BC-D4AB-41BB-A771-543D67CFC9F5}\InprocServer32 -> AcETransmit.dll => Keine Datei CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{B53CEF4B-1A13-49DE-BBC5-A7100FB2F38C}\InprocServer32 -> axdb.dll => Keine Datei CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{B5EE2B68-9A23-4BCD-BB77-FEA6DFB24DD6}\InprocServer32 -> axdb.dll => Keine Datei CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{B6B5DC40-96E3-11d2-B774-0060B0F159EF}\localserver32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\Inventor.exe (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{B80687F9-FA4C-4735-9DC4-E5715F2BC698}\InprocServer32 -> axdb.dll => Keine Datei CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{B8E7214B-25CA-4116-84CB-E86FB9625B36}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\ServiceModule.dll (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{BAE5802A-CF21-4F9C-AE04-D98F4036AC31}\InprocServer32 -> axdb.dll => Keine Datei CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{BBF6A206-CB04-479D-96AE-349E1E83319A}\InprocServer32 -> axdb.dll => Keine Datei CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{BBF9FDF1-52DC-11D0-8C04-0800090BE8EC}\localserver32 -> E:\Program Files\Autodesk\Inventor 2014\Bin\Inventor.exe => Keine Datei CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{BC71DEA1-D6FB-48B8-AB06-D151C81BBCDD}\InprocServer32 -> axdb.dll => Keine Datei CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{BD0DEB94-63DB-4392-9420-6EEE05094B1F}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2014\acad.exe (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{BE54741D-E02B-4572-93D6-105AF4EDE777}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\ServiceModule.dll (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{BF224DC3-B602-4EEE-BFE9-9E4E0AED6837}\InprocServer32 -> axdb.dll => Keine Datei CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{BF4CC07E-E9BB-40D6-873F-855B211033B9}\InprocServer32 -> axdb.dll => Keine Datei CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{C061C82C-D041-4214-BB07-B608107CEFCB}\InprocServer32 -> axdb.dll => Keine Datei CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{C2D4ACCC-A3D1-4A0A-AD59-0DD8BA3D5EE1}\InprocServer32 -> axdb.dll => Keine Datei CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{C343ED84-A129-11d3-B799-0060B0F159EF}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\RxApprenticeServer.dll (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{C8C18F89-794D-466B-8B97-95634D9890EF}\InprocServer32 -> axdb.dll => Keine Datei CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{C8EC7647-1E79-4F13-81D7-2EED803D0D22}\InprocServer32 -> axdb.dll => Keine Datei CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{C92F8F8C-8B2C-11d4-B872-0060B0EC020B}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\DtBridge.dll (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{CC23CA32-9892-4FBA-A108-FE31CA0F35A6}\InprocServer32 -> axdb.dll => Keine Datei CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{CD865713-70D6-4E15-BB7B-9B99AD9DEB85}\InprocServer32 -> axdb.dll => Keine Datei CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{CFEE2BAF-14F9-4D23-853D-B6E2BCC14263}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\ServiceModule.dll (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{D56F5AB3-9C4D-4F1A-A851-A671D9FE8C22}\InprocServer32 -> AcETransmit.dll => Keine Datei CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{D66873EA-AAE5-41CC-8DD2-8CE3228E9F89}\InprocServer32 -> axdb.dll => Keine Datei CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{D7A1987D-4A73-11D1-9A4B-080009DCE505}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\ColorButton.Ocx (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{D7A1987E-4A73-11D1-9A4B-080009DCE505}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\ColorButton.Ocx (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{D86B6C47-11F2-4D95-B635-EA575F0892FC}\InprocServer32 -> axdb.dll => Keine Datei CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{DA1F437C-9BD9-11d4-B87C-0060B0EC020B}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\DtBridge.dll (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{DB207560-8449-4FAF-BDC2-61676EB012D4}\InprocServer32 -> axdb.dll => Keine Datei CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{DB5D476B-3FF4-4E9D-A606-1E2B473BE571}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\AcInetUI.dll (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{DCA7356C-FF94-4b20-AE04-7AA6A8E14117}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\ServiceModule.dll (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{DDA9A20F-5B56-49F5-9465-CE82FC199352}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\ServiceModule.dll (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{DE6B563C-B074-4BF1-A8A0-B3FED8703E99}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\ServiceModule.dll (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{DE74F5AD-DA2F-429F-BAF9-850A2808D585}\InprocServer32 -> axdb.dll => Keine Datei CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{DF6525C2-6358-4B07-813D-708120C5FE1A}\InprocServer32 -> axdb.dll => Keine Datei CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{E177A457-9EAA-43C3-A3CE-84874A28F6CA}\InprocServer32 -> axdb.dll => Keine Datei CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{E1C85E9F-60B2-4007-80C3-2C5E09474C3B}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\RxInventorUtilities.dll (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{E29F6C45-6927-4508-8F3F-34105FD3FC5F}\InprocServer32 -> axdb.dll => Keine Datei CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{E2C40589-DE61-11ce-BAE0-0020AF6D7005}\InprocServer32 -> C:\Program Files\Autodesk\AutoCAD 2014\de-DE\acadficn.dll (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{E4222C78-3670-4BB1-9AD4-7D8F3E581F2D}\InprocServer32 -> axdb.dll => Keine Datei CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{E5B0515D-48D2-4F04-906D-0192ED65A2DD}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\TestServer.dll (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{E60F81E1-49B3-11D0-93C3-7E0706000000}\localserver32 -> E:\Program Files\Autodesk\Inventor 2014\Bin\Inventor.exe => Keine Datei CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{E70DE962-842A-4488-9481-1D0FD72A020F}\InprocServer32 -> axdb.dll => Keine Datei CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{E9C07CEC-7B82-49E4-BBA2-7533B88E9D64}\InprocServer32 -> axdb.dll => Keine Datei CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{EA34A0C0-5CE7-4701-A6FA-117D25CD5EBB}\InprocServer32 -> axdb.dll => Keine Datei CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{EF01D98A-747B-4522-AD70-991B90855DBF}\InprocServer32 -> axdb.dll => Keine Datei CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{F13E75B9-6AF6-49CB-80B3-6D2FF6E09932}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\ServiceModule.dll (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{F196F03F-651A-43AF-BE34-D11942F24445}\InprocServer32 -> axdb.dll => Keine Datei CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{F2D4F4E5-EEA1-46FF-A83B-A270C92DAE4B}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\DTInterop.dll (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{F2DB0EE3-7137-4CB0-8349-483C4FF2143A}\InprocServer32 -> axdb.dll => Keine Datei CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{F40E2FF0-4D77-40B2-9A44-A3AEECCE8EFF}\InprocServer32 -> axdb.dll => Keine Datei CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{F5522F0C-962A-48AC-9992-E81B07628F1F}\InprocServer32 -> axdb.dll => Keine Datei CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{F61064CC-DBFB-47ee-9BC8-CA5A1CBDF0DA}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\InvResc.dll (Autodesk) CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{F78DCF7C-043D-45FC-9D21-676FC307BA3F}\InprocServer32 -> axdb.dll => Keine Datei CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{F868EAEC-1B73-4F5E-BA73-90EBA94E75BE}\InprocServer32 -> axdb.dll => Keine Datei CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{FA62F626-EBD5-4dc5-B970-D9E81E0E20E0}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\ServiceModule.dll (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{FA97F7A7-FD19-4D55-ABF2-CFEFFF777426}\InprocServer32 -> axdb.dll => Keine Datei CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{FB469644-3F14-4403-ACCA-6B13486FF7BD}\localserver32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\InvTXTStack.exe (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{FD51ED8A-D518-4554-B236-B6E9D234FD03}\InprocServer32 -> axdb.dll => Keine Datei CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{FD703B01-4362-423E-9BDB-91BDCB16C1C9}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\DTInterop.dll (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{FE054BB2-AF94-40AC-88AA-2F59F7018B1D}\InprocServer32 -> axdb.dll => Keine Datei CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{FE317223-8EDE-4684-B424-E48B9EA90220}\InprocServer32 -> axdb.dll => Keine Datei CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{FE718E8F-C3AA-4F30-9103-432450CF1DA1}\InprocServer32 -> axdb.dll => Keine Datei ==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) ============= (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) Task: {01C8757F-69D6-4751-8653-64EE3B1781D6} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\Program Files\Windows Defender\\MpCmdRun.exe [2016-07-16] (Microsoft Corporation) Task: {03995663-C478-4D3E-BC2D-7C957695D14E} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> Keine Datei <==== ACHTUNG Task: {03AE32F8-4F76-45EF-ACB4-A8C0390ACF9B} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => %SystemRoot%\ehome\ehPrivJob.exe Task: {0ABBBDAD-CFE2-46F7-BB26-D8388D5D4483} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\Program Files\Windows Defender\\MpCmdRun.exe [2016-07-16] (Microsoft Corporation) Task: {0AEE1713-DFEA-4FC1-8C8C-BCBED7C3A387} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => %SystemRoot%\ehome\ehPrivJob.exe Task: {12AAF5C8-C841-42B3-8468-53F53CF244F3} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => %SystemRoot%\ehome\ehPrivJob.exe Task: {12B25656-E494-4396-9EE7-B9B045FA6EF7} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2016-12-07] (HP Inc.) Task: {171AB6EE-4BE0-4A96-965F-A84A56A12231} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => %SystemRoot%\ehome\mcupdate.exe Task: {187C655D-2717-4061-8AAB-460E2403E108} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [2017-02-08] (HP Inc.) Task: {18F4309A-075E-4ED0-B0F1-E31B4DC37E37} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [2016-12-21] (HP Inc.) Task: {30C9ABC5-40F3-42C3-8608-DCE4F39C6BC3} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Keine Datei <==== ACHTUNG Task: {3116A021-E2EF-4B86-AF73-230A2C4FF335} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => %SystemRoot%\ehome\ehPrivJob.exe Task: {323B25C9-1E8C-419A-891E-C6640F5D49E0} - System32\Tasks\Bitdefender AgentTask_AD394AE64E874073B10A89FEEC305A3C => C:\Program Files\Bitdefender\Bitdefender 2017\bdagent.exe [2017-01-17] (Bitdefender) Task: {36683849-D913-42FB-88A5-7C2DECBBAB3C} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => %SystemRoot%\ehome\mcupdate.exe Task: {3760806B-61FA-43BF-94F0-5446E5F6517A} - System32\Tasks\PCDDataUploadTask => uaclauncher.exe Task: {3A1E89AA-9046-4062-B15E-3E5B6F799C8B} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => %SystemRoot%\ehome\mcupdate.exe Task: {3AEC780F-A9A8-4486-98F6-72D22A01DDB9} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-02-18] (Adobe Systems Incorporated) Task: {3AEFDBDF-B79B-47ED-A0BE-055CA53AA959} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => %SystemRoot%\ehome\mcupdate.exe Task: {3B1F2C6C-CE16-4864-B3E5-2C224A449256} - \OfficeSoftwareProtectionPlatform\SvcRestartTask -> Keine Datei <==== ACHTUNG Task: {3C825877-937E-4189-9FEC-4B42E2465AD4} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => %windir%\ehome\MCUpdate.exe Task: {4161CD2B-60A5-4D3F-AC35-8D69B9907223} - System32\Tasks\HPCeeScheduleForInxi => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2015-06-16] (Hewlett-Packard) Task: {48C24EC8-22CD-446F-ACAB-665ED2AD84EA} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => %SystemRoot%\ehome\mcupdate.exe Task: {53A9E012-8B66-4D5C-B845-E8C5B2FE1EBF} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Keine Datei <==== ACHTUNG Task: {5586C08B-F55B-4B6D-AB15-2EF42EE6ED92} - System32\Tasks\SamsungMagician => C:\Program Files (x86)\Samsung Magician\Samsung Magician.exe [2014-09-28] (Samsung Electronics.) Task: {5594FB48-EE1A-48E4-87B5-62F36B0F9DF2} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Keine Datei <==== ACHTUNG Task: {5739CB9A-84FB-447F-BD19-7D2B5FC399F3} - \Microsoft\Windows\Setup\GWXTriggers\Time-Weekend -> Keine Datei <==== ACHTUNG Task: {579D3661-9358-483F-A134-41885C72DAA5} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => %SystemRoot%\ehome\ehPrivJob.exe Task: {5B5C50F0-CFA3-46FA-B3B8-E21CF448B618} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Product Configurator => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\ProductConfig.exe [2017-02-10] (HP Inc.) Task: {5B66064D-EAE0-4C5B-B790-781C3EBD039C} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Keine Datei <==== ACHTUNG Task: {5B7192A2-5309-4635-ABAF-619814DEB38F} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => %SystemRoot%\ehome\ehPrivJob.exe Task: {5DC4C348-B713-4C8D-8681-50FC127D4DCE} - System32\Tasks\HPLJCustParticipation => C:\Program Files (x86)\HP\HPLJUT\HPLJUTSCH.exe [2010-09-22] (Hewlett Packard) Task: {5F41E519-E849-48A9-8923-0387908F8BE3} - System32\Tasks\PCDEventLauncherTask => C:\Program Files\Dell\SupportAssist\sessionchecker.exe [2017-02-17] (PC-Doctor, Inc.) Task: {5F5B6A89-578D-41F6-92FB-13A961A52967} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => %SystemRoot%\ehome\ehPrivJob.exe Task: {676591E1-6B39-4F3A-BC49-D1AEF5E4E477} - \Microsoft\Windows\Setup\EOONotify -> Keine Datei <==== ACHTUNG Task: {680F4B7D-0BA5-4ECA-A67C-E9BBC9DCAAE9} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => %SystemRoot%\ehome\ehPrivJob.exe Task: {6CCB5E0F-51EB-4001-98AC-7D4ED5E8E4A3} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Keine Datei <==== ACHTUNG Task: {6F4B19C5-8C01-4DE0-8FA5-26FF7700BA0A} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-12-19] (Adobe Systems Incorporated) Task: {82662ED9-63C9-4BEE-AB4B-85172D7EAB17} - System32\Tasks\OneDrive Standalone Update Task => C:\Users\Inxi\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\OneDriveStandaloneUpdater.exe Task: {86EEECAC-237A-4A01-9DD8-0497E8A5E1C7} - System32\Tasks\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA) => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe [2016-11-07] (HP Inc.) Task: {8866E252-18D2-4AF3-AE78-025F4F7AEB69} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\Program Files\Windows Defender\\MpCmdRun.exe [2016-07-16] (Microsoft Corporation) Task: {8B06D586-22F7-48D5-BF3A-D1F7FCC84A9B} - \Microsoft\Windows\Setup\gwx\rundetector -> Keine Datei <==== ACHTUNG Task: {90338157-0A0E-40B8-9221-00951FAF2A71} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Keine Datei <==== ACHTUNG Task: {916A6FB5-CDF1-42EA-A390-1E62E78C4EA8} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => %SystemRoot%\ehome\ehPrivJob.exe Task: {92DE4F25-9F2F-42C9-BD2E-EA3EE4A7EBB3} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\Program Files\Windows Defender\\MpCmdRun.exe [2016-07-16] (Microsoft Corporation) Task: {9BEE4A16-28AA-4C28-8E79-D1EE0BF43544} - System32\Tasks\Dell SupportAssistAgent AutoUpdate => C:\Program Files (x86)\Dell\SupportAssistAgent\bin\SupportAssist.exe [2016-09-09] (Dell Inc.) Task: {9D0C40E9-4E98-42A6-A2CD-CC9583A9DD69} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Keine Datei <==== ACHTUNG Task: {9D3DF6B4-BD5E-4E85-99A1-9EF4FA910AD0} - System32\Tasks\Bitdefender Update Product Data_A17FD818A96743FAB28AC221BEB4B2C8 => C:\Program Files\Bitdefender\Bitdefender 2015\bdproductdata.exe Task: {A2B59692-FAFB-4CA2-A8B5-C7A6B5E2508E} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2016-12-07] (HP Inc.) Task: {A312D51F-190F-48D7-B9C7-9107703220C4} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> Keine Datei <==== ACHTUNG Task: {B003913E-9995-41E2-9B50-ECFE4C242A10} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => %SystemRoot%\ehome\mcupdate.exe Task: {B486FBA7-544F-45B8-9DF2-E453247F8488} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Keine Datei <==== ACHTUNG Task: {BE118D08-CF04-4363-B247-6EA41FAEC090} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2016-12-07] (HP Inc.) Task: {C72C1FD7-F9BC-4342-AB47-F086D8A7CEA9} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => %SystemRoot%\ehome\mcupdate.exe Task: {C952A526-FC09-408B-8BD4-9FF8B8202326} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Keine Datei <==== ACHTUNG Task: {C9A7D51A-FA89-4558-A5B7-74D927C984B3} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => %SystemRoot%\ehome\ehPrivJob.exe Task: {CF8B5AC0-B950-420D-8E28-EC271C4FF9AC} - System32\Tasks\PCDoctorBackgroundMonitorTask => C:\Program Files\Dell\SupportAssist\uaclauncher.exe [2017-02-17] (PC-Doctor, Inc.) Task: {D17FFD1C-3C81-4BEB-96C6-BE6652F0E26A} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => %SystemRoot%\ehome\ehPrivJob.exe Task: {D54D6483-98C8-4D78-B714-FA09120B8875} - System32\Tasks\Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864 => C:\Program Files\Bitdefender Agent\WatchDog.exe [2016-10-21] (Bitdefender) Task: {DEE25452-1AC6-43AD-8B57-61620766D31C} - System32\Tasks\Overwolf Updater Task => C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [2017-02-20] (Overwolf LTD) Task: {DFE15732-AE4E-499D-9707-C6390A54474E} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Keine Datei <==== ACHTUNG Task: {E02E47D8-A477-40B5-AFCA-845F5F6FFEC3} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => %SystemRoot%\ehome\ehPrivJob.exe Task: {E031DC5C-662A-4EE3-AFB5-8A92C639F3B7} - System32\Tasks\SystemToolsDailyTest => uaclauncher.exe Task: {EE17E7C2-CC40-44E6-99BD-97F1AAD4CCC2} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => %SystemRoot%\ehome\ehrec.exe Task: {F523086A-CCB1-49B8-9E55-B3AC24D1C3D6} - \Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d -> Keine Datei <==== ACHTUNG Task: {F56D9B24-84B0-4F0C-8A9E-8A1DA4FCE3AC} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => %SystemRoot%\ehome\ehPrivJob.exe (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.) Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe Task: C:\WINDOWS\Tasks\HPCeeScheduleForInxi.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe ==================== Verknüpfungen ============================= (Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.) ==================== Geladene Module (Nicht auf der Ausnahmeliste) ============== 2016-07-16 12:42 - 2016-07-16 12:42 - 00231424 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll 2016-12-14 16:27 - 2016-12-09 11:29 - 02681200 _____ () C:\WINDOWS\system32\CoreUIComponents.dll 2016-12-10 12:13 - 2013-09-03 14:29 - 00111832 _____ () C:\Program Files\Bitdefender\Bitdefender 2017\bdmetrics.dll 2017-02-07 21:13 - 2017-02-07 21:13 - 01008448 _____ () C:\Program Files\Bitdefender\Bitdefender 2017\otengines_02451_002\ashttpbr.mdl 2017-02-07 21:13 - 2017-02-07 21:13 - 00541952 _____ () C:\Program Files\Bitdefender\Bitdefender 2017\otengines_02451_002\ashttpdsp.mdl 2017-02-07 21:13 - 2017-02-07 21:13 - 03243920 _____ () C:\Program Files\Bitdefender\Bitdefender 2017\otengines_02451_002\ashttpph.mdl 2017-02-07 21:13 - 2017-02-07 21:13 - 01544568 _____ () C:\Program Files\Bitdefender\Bitdefender 2017\otengines_02451_002\ashttprbl.mdl 2016-09-30 16:10 - 2016-08-01 13:54 - 00133056 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll 2017-03-02 21:03 - 2017-02-24 06:23 - 02264352 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\PoliciesControllerImpl.dll 2017-03-02 21:03 - 2017-02-24 06:23 - 02264528 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\MwacLib.dll 2011-03-09 10:41 - 2011-03-09 10:41 - 01066896 _____ () C:\Program Files (x86)\Western Digital\WD SmartWare\Front Parlor\WDFME\WDFME.exe 2011-03-09 10:41 - 2011-03-09 10:41 - 00491920 _____ () C:\Program Files (x86)\Western Digital\WD SmartWare\Front Parlor\WDSC.exe 2016-12-14 16:27 - 2016-12-09 11:29 - 02681200 _____ () C:\WINDOWS\SYSTEM32\CoreUIComponents.dll 2016-09-30 17:05 - 2016-09-30 17:05 - 00134656 _____ () C:\Windows\ShellExperiences\Windows.UI.Shell.SharedUtilities.dll 2017-01-11 11:12 - 2016-12-21 08:09 - 00474112 _____ () C:\Windows\ShellExperiences\QuickActions.dll 2017-01-11 11:12 - 2016-12-21 07:54 - 09760768 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll 2017-01-11 11:12 - 2016-12-21 07:48 - 01401856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll 2017-01-11 11:12 - 2016-12-21 07:48 - 00757248 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CSGSuggestLib.dll 2017-01-11 11:12 - 2016-12-21 07:48 - 01033216 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Actions.dll 2017-01-11 11:12 - 2016-12-21 07:48 - 02424320 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll 2017-01-11 11:12 - 2016-12-21 07:53 - 04853760 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll 2015-06-01 20:00 - 2015-06-01 20:00 - 00102912 _____ () C:\Windows\System32\IccLibDll_x64.dll 2015-11-16 21:06 - 2015-11-16 21:06 - 00231936 _____ () C:\Program Files\Autodesk\Autodesk Sync\qjson_Ad_0.dll 2015-11-16 21:06 - 2015-11-16 21:06 - 00048520 _____ () C:\Program Files\Autodesk\Autodesk Sync\QtSolutions_MFCMigrationFramework_Ad_2.dll 2015-11-16 21:06 - 2015-11-16 21:06 - 00059392 _____ () C:\Program Files\Autodesk\Autodesk Sync\qoauth_Ad_1.dll 2015-11-16 21:06 - 2015-11-16 21:06 - 00922112 _____ () C:\Program Files\Autodesk\Autodesk Sync\qca_Ad_2.dll 2016-12-10 12:13 - 2017-01-17 20:21 - 00023840 _____ () C:\Program Files\Bitdefender\Bitdefender 2017\lang\de-DE\bdsystray.txtui 2017-02-22 18:45 - 2017-02-22 18:45 - 00073728 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.11.110.0_x64__kzf8qxf38zg5c\SkypeHost.exe 2017-02-22 18:45 - 2017-02-22 18:45 - 00179712 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.11.110.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll 2017-02-22 18:45 - 2017-02-22 18:45 - 42895360 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.11.110.0_x64__kzf8qxf38zg5c\SkyWrap.dll 2017-02-06 18:09 - 2017-02-06 18:10 - 02215424 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.11.110.0_x64__kzf8qxf38zg5c\roottools.dll 2015-11-03 15:08 - 2015-11-17 03:33 - 00055328 _____ () C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\QtSolutions_Service-head.dll 2015-11-03 15:08 - 2015-11-17 03:33 - 00103968 _____ () C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\qjson0.dll 2010-03-05 08:24 - 2010-03-05 08:24 - 00886272 _____ () C:\Program Files (x86)\Western Digital\WD SmartWare\Front Parlor\WDFME\System.Data.SQLite.dll 2017-01-18 17:17 - 2017-01-18 17:17 - 02493440 _____ () C:\Program Files (x86)\Origin\libGLESv2.dll 2014-12-31 13:51 - 2014-09-28 17:59 - 00019872 _____ () C:\Program Files (x86)\Samsung Magician\SAMSUNG_SSD.dll 2015-08-28 19:14 - 2015-08-07 12:06 - 00011920 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll 2010-10-25 14:36 - 2010-10-25 14:36 - 00119864 _____ () C:\Program Files (x86)\HP\ToolboxFX\bin\nativeutils.dll ==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) ========= (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.) AlternateDataStreams: C:\Users\Inxi\Downloads\cdbxp_setup_4.5.7.6389_minimal.exe:BDU [0] AlternateDataStreams: C:\Users\Inxi\Downloads\DuOSInstaller.exe:BDU [0] AlternateDataStreams: C:\Users\Inxi\Downloads\FRST64.exe:BDU [0] AlternateDataStreams: C:\Users\Inxi\Downloads\OriginThinSetup.exe:BDU [0] AlternateDataStreams: C:\Users\Inxi\Downloads\Systems-Management_Application_P52W9_WN32_2.2.0_A00.EXE:BDU [0] ==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) =================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMSwissArmy => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMSwissArmy => ""="Driver" ==================== Verknüpfungen (Nicht auf der Ausnahmeliste) =============== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.) HKU\S-1-5-21-3175323499-3369025214-2853444423-1000\Software\Classes\.scr: AutoCADScriptFile => ==================== Internet Explorer Vertrauenswürdig/Eingeschränkt =============== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.) ==================== Hosts Inhalt: =============================== (Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.) 2009-07-14 03:34 - 2017-03-04 11:25 - 00000828 ____A C:\WINDOWS\system32\Drivers\etc\hosts ==================== Andere Bereiche ============================ (Aktuell gibt es keinen automatisierten Fix für diesen Bereich.) HKU\S-1-5-21-3175323499-3369025214-2853444423-1000\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\web\wallpaper\Windows\img0.jpg DNS Servers: 192.168.0.1 - 192.168.0.2 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Windows Firewall ist aktiviert. ==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge == MSCONFIG\startupreg: ADSK DLMSession => C:\Program Files (x86)\Common Files\Autodesk Shared\Autodesk Download Manager\DLMSession.exe MSCONFIG\startupreg: ADSKAppManager => "C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgr.exe" -showminimized -checkautorun MSCONFIG\startupreg: PDFPrint => C:\Program Files (x86)\PDF24\pdf24.exe MSCONFIG\startupreg: Sony PC Companion => "C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe" /Background MSCONFIG\startupreg: WD Quick View => C:\Program Files (x86)\Western Digital\WD Quick View\WDDMStatus.exe MSCONFIG\startupreg: Xvid => C:\Program Files (x86)\Xvid\CheckUpdate.exe HKLM\...\StartupApproved\Run32: => "ADSKAppManager" HKU\S-1-5-21-3175323499-3369025214-2853444423-1000\...\StartupApproved\Run: => "Overwolf" HKU\S-1-5-21-3175323499-3369025214-2853444423-1000\...\StartupApproved\Run: => "Steam" HKU\S-1-5-21-3175323499-3369025214-2853444423-1000\...\StartupApproved\Run: => "Innkeeper" ==================== Firewall Regeln (Nicht auf der Ausnahmeliste) =============== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139 FirewallRules: [MSMQ-In-TCP] => (Allow) %systemroot%\system32\mqsvc.exe FirewallRules: [MSMQ-Out-TCP] => (Allow) %systemroot%\system32\mqsvc.exe FirewallRules: [MSMQ-In-UDP] => (Allow) %systemroot%\system32\mqsvc.exe FirewallRules: [MSMQ-Out-UDP] => (Allow) %systemroot%\system32\mqsvc.exe FirewallRules: [WCF-NetTcpActivator-In-TCP-64bit] => (Allow) LPort=808 FirewallRules: [UDP Query User{91CE20BA-8747-4748-8959-56FD99A20018}C:\users\inxi\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\inxi\appdata\local\akamai\netsession_win.exe FirewallRules: [TCP Query User{7AC563DD-FDB8-478A-BA43-D0F1C9E30D38}C:\users\inxi\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\inxi\appdata\local\akamai\netsession_win.exe FirewallRules: [{A40C95DB-8CA8-4C69-BEA5-272D32DED3FC}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe FirewallRules: [{0498AE6B-A5B4-49E6-8FB7-379B5D486A90}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{3048A6E3-6893-488C-9995-C6FB28256B8E}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{081A6A33-D0F9-437B-9E69-7AD67A7200B3}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{ECCB3769-93D9-4565-ABA3-6991FBB00765}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{321E7A8A-5482-4A54-9858-DE44424CCE55}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe FirewallRules: [{661AFFBB-4CE6-448F-9287-911F4A18831A}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe FirewallRules: [{5173538F-7C88-4C17-B173-1DF62C282750}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\dota.exe FirewallRules: [{C0ECE853-2150-4D00-B18B-3DE4410159D1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\dota.exe FirewallRules: [{A6F9BA1C-214D-42CC-AB1B-A6FA59315B38}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Broken Sword 5\BS5.exe FirewallRules: [{6B0D70C5-E947-4F8C-8F15-9EDC7B896589}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Broken Sword 5\BS5.exe FirewallRules: [{9697C16E-D819-4E22-BE01-C3B4169EE354}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Valiant Hearts\Valiant Hearts.exe FirewallRules: [{7002A822-0C80-43E1-B9D7-E997C186D6BB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Valiant Hearts\Valiant Hearts.exe FirewallRules: [{4633E5AC-B327-4A86-A7E8-C3F3AFE587A1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Divinity - Original Sin\Shipping\EoCApp.exe FirewallRules: [{066CC192-5F16-4F26-8B57-A6F8B6D8A905}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Divinity - Original Sin\Shipping\EoCApp.exe FirewallRules: [TCP Query User{BA664ACC-F3AC-4196-8170-D2F911F53CD5}C:\users\inxi\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\inxi\appdata\roaming\spotify\spotify.exe FirewallRules: [UDP Query User{1858A687-040C-46E4-861C-3012054EB536}C:\users\inxi\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\inxi\appdata\roaming\spotify\spotify.exe FirewallRules: [{FD66759B-196B-45E8-957D-796667332960}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\dota_ugc\game\bin\win64\dota2cfg.exe FirewallRules: [{AEBF4DC8-B2A6-4B0F-96A7-B0DCD7826AA1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\dota_ugc\game\bin\win64\dota2cfg.exe FirewallRules: [{105177D0-3E5A-4B59-A9E2-F4FDA48E0741}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win32\dota2.exe FirewallRules: [{567D49EB-B300-4BDD-BF45-EDF012B02C3D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win32\dota2.exe FirewallRules: [{28FE30EE-1367-4598-AF42-408710C4D66C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2cfg.exe FirewallRules: [{295A01CD-1EC1-4E81-96F4-D21A526C0144}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2cfg.exe FirewallRules: [{EE63725C-FFB7-4D46-9C3B-1FD466DEDC8C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Game of Thrones\Thrones.exe FirewallRules: [{6DF31D4A-7988-41E0-8611-8A46B4FFD705}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Game of Thrones\Thrones.exe FirewallRules: [{07CCECD6-7CA9-4EE4-BFE4-443C9CC61757}] => (Allow) LPort=61391 FirewallRules: [{AFE80FD3-91CE-42ED-9B50-B12025926772}] => (Allow) LPort=5000 FirewallRules: [{F3DE42D7-C242-4A1E-A87B-0A83E872EC81}] => (Allow) E:\Program Files\Autodesk\3ds Max 2016\NVIDIA\Satellite\raysat_3dsmax2016_64server.exe FirewallRules: [{9EF69122-CC0A-4B57-A28A-EB6FE0B06C11}] => (Allow) E:\Program Files\Autodesk\3ds Max 2016\NVIDIA\Satellite\raysat_3dsmax2016_64server.exe FirewallRules: [{E8809E35-0D37-4F15-91B0-DA34707F98BF}] => (Allow) E:\Program Files\Autodesk\3ds Max 2016\NVIDIA\Satellite\raysat_3dsmax2016_64.exe FirewallRules: [{2AC1531D-4896-491F-B295-4181C001AD57}] => (Allow) E:\Program Files\Autodesk\3ds Max 2016\NVIDIA\Satellite\raysat_3dsmax2016_64.exe FirewallRules: [{41C8E6CA-4B96-4DFD-9016-581C89C7E27A}] => (Allow) LPort=50248 FirewallRules: [{591E4A36-6D93-40B4-A98F-1971BC50BAAF}] => (Allow) C:\Users\Inxi\AppData\Local\Temp\7zS75E5\Installer\hpbcsiInstaller.exe FirewallRules: [{0C0A5522-60A4-4B34-999D-2EB7770DC56A}] => (Allow) C:\Users\Inxi\AppData\Local\Temp\7zS75E5\Installer\hpbcsiInstaller.exe FirewallRules: [{74DA4576-9ACD-4F84-896A-FFE78E4A4004}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{22BF5DD5-3D6F-417E-A0D0-F2611C50B1E3}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{8D37075F-F005-4A76-BE08-745F67DAA073}] => (Allow) C:\Program Files (x86)\Tunngle\TnglCtrl.exe FirewallRules: [{31335935-41E1-4A29-A5BA-8B3B0B7E2FDC}] => (Allow) C:\Program Files (x86)\Tunngle\TnglCtrl.exe FirewallRules: [{195D938F-37B5-4F7D-827F-CD083B685D4B}] => (Allow) C:\Program Files (x86)\Tunngle\TnglCtrl.exe FirewallRules: [{F06414C2-B75D-4629-800F-D24799300D45}] => (Allow) C:\Program Files (x86)\Tunngle\TnglCtrl.exe FirewallRules: [{51AC9FC8-A2C2-404B-A647-1EE1CFAB6EEA}] => (Allow) C:\Program Files (x86)\Tunngle\Tunngle.exe FirewallRules: [{8FB7C415-D37B-4155-9052-53F1D6D31250}] => (Allow) C:\Program Files (x86)\Tunngle\Tunngle.exe FirewallRules: [{9B3C7276-3D6C-446E-AF66-B80F4B97F0D9}] => (Allow) C:\Program Files (x86)\Tunngle\Tunngle.exe FirewallRules: [{45904CAF-93EA-42CE-B1BB-4AC82C83464D}] => (Allow) C:\Program Files (x86)\Tunngle\Tunngle.exe FirewallRules: [{95A2C29C-9A87-4A9D-87AB-0F8122A47AD4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Endless Legend\EndlessLegend.exe FirewallRules: [{4BCC8E80-FC51-4F4A-825C-3FA880962E0C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Endless Legend\EndlessLegend.exe FirewallRules: [{E9790320-F4CB-4F3C-B728-56CCAE37D01A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Keep Talking and Nobody Explodes\ktane.exe FirewallRules: [{DB2D0F1E-9AE3-4004-8DF1-F0662C52754C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Keep Talking and Nobody Explodes\ktane.exe FirewallRules: [{5F64C8E9-1922-40CC-ACA2-2A765F7C6DB3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Worms Clan Wars\WormsClanWars.exe FirewallRules: [{E6542CC0-11B3-429C-9478-BC47922DB73A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Worms Clan Wars\WormsClanWars.exe FirewallRules: [{87F4990F-87AD-4D17-AB88-3FF5B8622D69}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SpaceFarmers\SpaceFarmers.exe FirewallRules: [{F4336643-E6FE-44D5-9947-336CC072B1C8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SpaceFarmers\SpaceFarmers.exe FirewallRules: [{65603875-9DAD-42B5-815E-C9DD88F1EA08}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\PAYDAY 2\payday2_win32_release.exe FirewallRules: [{446E796C-3942-4E02-9E13-10D3D02E4267}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\PAYDAY 2\payday2_win32_release.exe FirewallRules: [{F2F7149F-0E49-446A-8168-D913B9A6AFC4}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\The Wolf Among Us\TheWolfAmongUs.exe FirewallRules: [{9620BE39-B7DC-4219-8F59-886371C16B93}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\The Wolf Among Us\TheWolfAmongUs.exe FirewallRules: [{A017EEAA-6ACF-436F-8803-616352D04BBF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Trine\_enchanted_edition_\trine1_launcher.exe FirewallRules: [{5E25C916-58A5-49F5-BDB7-A7D67CA3C420}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Trine\_enchanted_edition_\trine1_launcher.exe FirewallRules: [{2219BDDF-F659-4C3D-9480-11090D9B3B3A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Grim Dawn\Grim Dawn.exe FirewallRules: [{D05CD8CD-2F14-402D-A6AA-E583DFD1E3AD}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Grim Dawn\Grim Dawn.exe FirewallRules: [{70FD9CFB-3955-4848-B203-E0F8A8EAF255}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe FirewallRules: [{7652427D-40EB-47BF-82D3-7E8BA4BAC019}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe FirewallRules: [{C45CC548-5148-4E06-BD5A-B5C81DC0F763}] => (Allow) C:\Program Files (x86)\Sony Mobile\Update Engine\Sony Mobile Update Engine.exe FirewallRules: [{109F4100-26A8-4DAF-B1DC-D69DE149C2DE}] => (Allow) C:\Program Files (x86)\Sony Mobile\Update Engine\Sony Mobile Update Engine.exe FirewallRules: [{8CDBE4D3-0145-4160-A910-EF7A73D7D76C}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\Path of Exile\PathOfExileSteam.exe FirewallRules: [{707B21E6-03B2-45FC-9025-50A825D3AC2E}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\Path of Exile\PathOfExileSteam.exe FirewallRules: [{473A9F22-F2E4-425C-907A-3E71D43940C7}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{8DF12AD8-A934-4964-B408-E2A5FAF884A6}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{A11AAC82-1814-40C8-BA33-B0A447E14904}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2cfg.exe FirewallRules: [{6B0B973C-4742-47C6-8893-F18BA062AEA2}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2cfg.exe FirewallRules: [{9800B06D-494F-4AC3-8296-8C62E38B71D3}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{157603EA-5032-4A7B-B7F0-06FD0B96C08C}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{D9230B82-976D-48D7-A9F9-15DF2AFE260D}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\Firewatch\Firewatch.exe FirewallRules: [{D62AA29E-6435-43B4-950C-8463D87E0ECD}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\Firewatch\Firewatch.exe FirewallRules: [{16BCA2E6-50BA-45B3-8369-CDB3C2E3039E}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{398E516A-1100-4635-9985-C28B957E346E}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{6AA1A397-E83A-486A-A6E8-AEE6F2A843FC}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{7876281B-3773-4302-BC70-6DD9D713A085}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{963766AD-3165-4F12-8107-FD7E67471A6E}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{5285979D-F55D-4829-A8A6-23E7B5ED4D5C}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{252D9F4C-7527-421D-9ED8-0502095AAB0D}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{66CF4B59-AAF6-4CF5-8168-4A3542AD3274}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{B95CF9D2-4814-4C73-A7F4-BF76DD8411D2}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{6D5DE0FE-9F9B-4D6F-8655-2611A26C1100}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{FDF89F4B-1595-4171-8B09-DD325BE00A51}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{809E8E07-649F-4325-B594-C26E9F3D9AE2}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{CD717482-2506-4F23-B4AD-14729DACFEB6}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{4B9579DF-951F-4B02-9400-BEDA0EFDF77E}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{FEB4BC3B-5DDF-453B-9BB0-5D095350403B}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{51502220-E8B8-46DC-B0FA-D4707B214C5B}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{942EE5A1-98C9-4411-A9BB-4B061FF4AED9}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{DB638651-5A5F-4E78-A1E8-75D31EAA96EE}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{C77B45BC-1202-49F9-81B2-5ECF03DED4E4}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{734C6988-B420-4968-B492-4F9A31FDE009}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{6260F0F4-A830-4C4A-B49B-9D66B26DA57A}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{59ABDB24-3763-42B2-B587-DCD16E5B69D3}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{DDC8EB0D-D10E-426A-89E5-39B87F3EBD17}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{F0E6659F-1D4F-4B70-91B6-B23D73C7D9C9}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{A5692E10-F7C5-4197-99DC-363CDA4685B2}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{E9156034-85B6-452C-BDF2-050B49565F99}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{45161E93-9C37-433E-A83E-A49A93F69A9C}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{C1137F6B-C0CD-43E3-840E-3559F41A2F3F}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{3A7B257E-0C35-4450-A396-E77496DA57E4}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{58D18AED-DD4D-4AA7-AA25-8D8E10BA6DCB}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{87792B4D-2DEB-436F-9CF5-4FCC9D21CC90}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{A23BA636-63B3-425C-A8D9-2D78672B7178}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{5DFFB42B-891E-48AE-A8A8-D712B6B05FA9}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{2A77D9FB-D917-4A66-B4EE-BAC02C9132CA}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{D6677466-5A01-4FFE-8FD5-E4FF8023CC3C}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{4661B588-2BAE-4931-A411-6081EE73B5BD}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{1D958872-C790-48BF-B5D2-368167BF154D}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{27750C86-EEB5-43F2-B54B-9A028E03B74B}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{EECEE102-D9DE-45BC-9C1E-D86F6139990E}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{2019EF19-4CB3-4433-8422-7A73023F279D}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{5B48690B-2CDE-49E7-B505-337FAEA56D43}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{A4E871AE-E594-4086-8168-2AF6C593FA32}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{DC7CDE3D-FF36-49E3-A971-DBB2BE11E590}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{511BE784-22BA-422E-B75E-74225B250168}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{C98F1557-4B09-41FE-A57A-B64BBDBA5032}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{497F0383-1965-462F-9E16-6DCDF5F4576E}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{5DAA9F2B-E846-4AD6-8CE2-8122AE795E2F}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{0EF7CFC7-B297-4E08-B1DD-B5FC43D9B737}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{A279E1FC-DD44-4752-A467-9D47F650FBFB}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{EDCE38F9-15B1-4873-BEE7-94B5C7715E4F}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{E459FFF2-8CF8-451F-807F-A6B118ED0BCB}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{4C715F7E-1B4D-45E1-8F87-4B2A9DFA7EDB}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{0ED94804-C360-4F90-B17E-BA73580B4D9F}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{844EDB0F-1717-4383-922C-0992B3C97605}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{D4417827-6293-430C-A210-538072F99478}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{27723D40-63C5-421D-A1A4-9F6A8BBBE29F}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{DA1941ED-CBD4-4E18-AD3D-CA15F6026CCF}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{627ABDFE-87C5-4BAE-8872-45335D9C9BD1}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{77FE904A-8D88-4C76-8ADA-B347959B1473}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{DEDC3D1C-2F8F-4532-ABB3-E33285E29D57}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe ==================== Wiederherstellungspunkte ========================= 22-02-2017 20:35:15 Windows Update 02-03-2017 20:48:21 Configured Microsoft Office Professional 2010 ==================== Fehlerhafte Geräte im Gerätemanager ============= Name: Description: Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. Name: Intel(R) Wireless Bluetooth(R) Description: Intel(R) Wireless Bluetooth(R) Class Guid: {e0cbf06c-cd8b-4647-bb8a-263b43f0f974} Manufacturer: Intel Corporation Service: BTHUSB Problem: : This device is disabled. (Code 22) Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions. Name: Description: Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. ==================== Fehlereinträge in der Ereignisanzeige: ========================= Applikationsfehler: ================== Error: (03/04/2017 11:27:27 AM) (Source: DellUpService.exe) (EventID: 0) (User: ) Description: [8] ERROR- The flag bios supporting SOS is false. #StackInfo# Error: (03/04/2017 11:25:21 AM) (Source: SetupARService) (EventID: 0) (User: ) Description: Der Dienst kann nicht gestartet werden. System.NullReferenceException: Der Objektverweis wurde nicht auf eine Objektinstanz festgelegt. bei SetupAfterRebootService.SetupARService.OnStart(String[] args) bei System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state) Error: (03/04/2017 11:25:18 AM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: NT-AUTORITÄT) Description: Überspringen: Eap method DLL path Fehler bei der Überprüfung. Fehler: Type-ID=43, Autor-ID=9, Lieferant-ID=0, Lieferant-Typ=0 Error: (03/04/2017 11:25:18 AM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: NT-AUTORITÄT) Description: Überspringen: Eap method DLL path Fehler bei der Überprüfung. Fehler: Type-ID=25, Autor-ID=9, Lieferant-ID=0, Lieferant-Typ=0 Error: (03/04/2017 11:25:18 AM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: NT-AUTORITÄT) Description: Überspringen: Eap method DLL path Fehler bei der Überprüfung. Fehler: Type-ID=17, Autor-ID=9, Lieferant-ID=0, Lieferant-Typ=0 Error: (03/04/2017 11:25:18 AM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: NT-AUTORITÄT) Description: Überspringen: Eap method DLL path Fehler bei der Überprüfung. Fehler: Type-ID=23, Autor-ID=8086, Lieferant-ID=0, Lieferant-Typ=0 Error: (03/04/2017 11:25:18 AM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: NT-AUTORITÄT) Description: Überspringen: Eap method DLL path Fehler bei der Überprüfung. Fehler: Type-ID=21, Autor-ID=8086, Lieferant-ID=0, Lieferant-Typ=0 Error: (03/04/2017 11:25:18 AM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: NT-AUTORITÄT) Description: Überspringen: Eap method DLL path Fehler bei der Überprüfung. Fehler: Type-ID=18, Autor-ID=8086, Lieferant-ID=0, Lieferant-Typ=0 Error: (03/04/2017 11:25:18 AM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: NT-AUTORITÄT) Description: Überspringen: Eap method DLL path Fehler bei der Überprüfung. Fehler: Type-ID=43, Autor-ID=9, Lieferant-ID=0, Lieferant-Typ=0 Error: (03/04/2017 11:25:18 AM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: NT-AUTORITÄT) Description: Überspringen: Eap method DLL path Fehler bei der Überprüfung. Fehler: Type-ID=25, Autor-ID=9, Lieferant-ID=0, Lieferant-Typ=0 Systemfehler: ============= Error: (03/04/2017 11:31:39 AM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT) Description: Durch die Berechtigungseinstellungen für "Anwendungsspezifisch" wird dem Benutzer "NT-AUTORITÄT\SYSTEM" (SID: S-1-5-18) unter der Adresse "LocalHost (unter Verwendung von LRPC)" keine Berechtigung vom Typ "Lokal Aktivierung" für die COM-Serveranwendung mit der CLSID {8D8F4F83-3594-4F07-8369-FC3C3CAE4919} und der APPID {F72671A9-012C-4725-9D2F-2A4D32D65169} im Anwendungscontainer "Nicht verfügbar" (SID: Nicht verfügbar) gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool für Komponentendienste geändert werden. Error: (03/04/2017 11:25:20 AM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: Der Dienst "NetTcpActivator" ist vom Dienst "NetTcpPortSharing" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde: Der angegebene Dienst kann nicht gestartet werden. Er ist deaktiviert oder nicht mit aktivierten Geräten verbunden. Error: (03/04/2017 11:24:55 AM) (Source: DCOM) (EventID: 10005) (User: NT-AUTORITÄT) Description: Fehler "1084" in DCOM, als der Dienst "dps" mit den Argumenten "Nicht verfügbar" gestartet wurde, um den folgenden Server zu verwenden: {DDCFD26B-FEED-44CD-B71D-79487D2E5E5A} Error: (03/04/2017 11:24:55 AM) (Source: DCOM) (EventID: 10005) (User: NT-AUTORITÄT) Description: Fehler "1084" in DCOM, als der Dienst "dps" mit den Argumenten "Nicht verfügbar" gestartet wurde, um den folgenden Server zu verwenden: {DDCFD26B-FEED-44CD-B71D-79487D2E5E5A} Error: (03/04/2017 11:24:54 AM) (Source: DCOM) (EventID: 10005) (User: Inxi-PC) Description: Fehler "1084" in DCOM, als der Dienst "ShellHWDetection" mit den Argumenten "Nicht verfügbar" gestartet wurde, um den folgenden Server zu verwenden: {DD522ACC-F821-461A-A407-50B198B896DC} Error: (03/04/2017 11:24:50 AM) (Source: DCOM) (EventID: 10005) (User: NT-AUTORITÄT) Description: Fehler "1084" in DCOM, als der Dienst "dps" mit den Argumenten "Nicht verfügbar" gestartet wurde, um den folgenden Server zu verwenden: {DDCFD26B-FEED-44CD-B71D-79487D2E5E5A} Error: (03/04/2017 11:24:50 AM) (Source: DCOM) (EventID: 10005) (User: NT-AUTORITÄT) Description: Fehler "1084" in DCOM, als der Dienst "dps" mit den Argumenten "Nicht verfügbar" gestartet wurde, um den folgenden Server zu verwenden: {DDCFD26B-FEED-44CD-B71D-79487D2E5E5A} Error: (03/04/2017 11:24:50 AM) (Source: DCOM) (EventID: 10005) (User: Inxi-PC) Description: Fehler "1084" in DCOM, als der Dienst "WSearch" mit den Argumenten "Nicht verfügbar" gestartet wurde, um den folgenden Server zu verwenden: {7D096C5F-AC08-4F1F-BEB7-5C22C517CE39} Error: (03/04/2017 11:24:50 AM) (Source: DCOM) (EventID: 10005) (User: Inxi-PC) Description: Fehler "1084" in DCOM, als der Dienst "BITS" mit den Argumenten "Nicht verfügbar" gestartet wurde, um den folgenden Server zu verwenden: {4991D34B-80A1-4291-83B6-3328366B9097} Error: (03/04/2017 11:24:49 AM) (Source: DCOM) (EventID: 10005) (User: Inxi-PC) Description: Fehler "1084" in DCOM, als der Dienst "BITS" mit den Argumenten "Nicht verfügbar" gestartet wurde, um den folgenden Server zu verwenden: {4991D34B-80A1-4291-83B6-3328366B9097} CodeIntegrity: =================================== Date: 2017-03-04 11:25:20.527 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Bitdefender\Bitdefender 2017\vsservp.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bitdefender\Bitdefender 2017\dbghelp.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-03-04 10:06:22.344 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Bitdefender\Bitdefender 2017\vsservp.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bitdefender\Bitdefender 2017\dbghelp.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-03-03 23:03:00.436 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-03-03 22:47:29.650 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Bitdefender\Bitdefender 2017\vsservp.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bitdefender\Bitdefender 2017\dbghelp.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-03-03 00:23:57.948 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-03-02 23:07:14.043 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-03-02 23:07:14.035 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-03-02 23:07:13.971 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-03-02 23:07:13.964 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-03-02 23:07:13.956 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements. ==================== Speicherinformationen =========================== Prozessor: Intel(R) Core(TM) i7-2630QM CPU @ 2.00GHz Prozentuale Nutzung des RAM: 54% Installierter physikalischer RAM: 8086.16 MB Verfügbarer physikalischer RAM: 3666.15 MB Summe virtueller Speicher: 9110.16 MB Verfügbarer virtueller Speicher: 4617.09 MB ==================== Laufwerke ================================ Drive c: () (Fixed) (Total:237.94 GB) (Free:35.82 GB) NTFS Drive e: () (Fixed) (Total:465.76 GB) (Free:331.8 GB) NTFS ==>[System mit Startkomponenten (eingeholt von Laufwerk)] ==================== MBR & Partitionstabelle ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: EF6F0B8F) Partition 1: (Active) - (Size=465.8 GB) - (Type=07 NTFS) ======================================================== Disk: 1 (MBR Code: Windows 7 or 8) (Size: 238.5 GB) (Disk ID: 387159B4) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=237.9 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=450 MB) - (Type=27) ==================== Ende von Addition.txt ============================ Viele Grüße Inxi |
30.03.2017, 10:50 | #3 |
/// Winkelfunktion /// TB-Süch-Tiger™ | Nach Trojan.GenericKD.1704971 Fund, AdwCleaner Fund in C:\End -> Folgefund Applni.DLLs Die von dir thematisierten Funde waren in deiner Mailbox bzw im Cache deines E-Mail-Clients. Einfach die Schrott-Mails löschen und gut. Ich finde ja, dass es total sinnfrei ist zusätzlich noch Mailbox-Datei scannen zu lassen, sorgt immer wieder für unnötige Angst und Panik bei Laien auch wenn mit dem System alles in Ordnung ist.
__________________
__________________ |
Themen zu Nach Trojan.GenericKD.1704971 Fund, AdwCleaner Fund in C:\End -> Folgefund Applni.DLLs |
adware, browser, dateien, defender, desktop, einstellungen, explorer, firefox, google, home, infizierte, internet, internet explorer, microsoft, mozilla, object, ordner, realtek, registry, security, server, spyware, suche, windows, windowsapps, wmi |