| |
| |||||||
Log-Analyse und Auswertung: Nach Trojan.GenericKD.1704971 Fund, AdwCleaner Fund in C:\End -> Folgefund Applni.DLLsWindows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML |
 |
04.03.2017, 12:32
| #1 |
| |  Nach Trojan.GenericKD.1704971 Fund, AdwCleaner Fund in C:\End -> Folgefund Applni.DLLs Hallo, mein Bitdefender hat mir Donnerstag zwei Funde mit dem Namen Trojan.GenericKD.1704971 gezeigt. Die wurden dann "Resolved". Bitdefender hat auf eine manuelle Entfernung der infizierten Dateianhänge verwiesen. Diese konnte ich nicht finden, habe dann die E-Mailkonten in Outlook gelöscht und danach Outlook deinstalliert. Ich hoffe die Beitragsformatierung geht soweit in Ordnung. Bitdefender-Log: Code:
ATTFilter <?xml version="1.0" encoding="utf-8"?>
<?xml-stylesheet type="text/xsl" href="C:\Program Files\Bitdefender\Bitdefender 2017\ondemand.xsl"?>
<ScanSession creator="Bitdefender Internet Security 2017" name="Vollständiger System-Scan" installPath="C:\Program Files\Bitdefender\Bitdefender 2017\" creationDate="Donnerstag, 2. März 2017 20:18:56" originalPath="C:\ProgramData\Bitdefender\Desktop\Profiles\Logs\dcf483c4-26d0-4e6f-ba28-6a53a00adae1\1488476785_1_02.xml" >
<ScanSettings
statisticsRefreshInterval="1000"
scanSpeed="1.000000"
lowPriority="0"
enableExclusions="1"
enableTaskExclusions="0"
scanAdware="1"
scanSpyware="1"
scanApplications="1"
scanDialers="1"
scanKeyloggers="1"
scanFiles="1"
scanAllFiles="1"
scanProgramsOnly="0"
useCustomPrograms="0"
customPrograms=""
scanUserDefined="0"
scanPacked="1"
scanArchives="1"
useSmartScan="1"
scanEmails="1"
scanRootkits="0"
scanAllRootkits="1"
scanBoot="1"
scanMemory="1"
scanRegistry="1"
quickScan="1"
quickScanMemory="0"
quickScanAutoruns="0"
quickScanPlugins="1"
scanCookies="1"
shutdownAfter="0"
passwordPrompt="0"
onlyAllowedActions="1"
deepArchiveScan="1"
maxArchiveLevel="15"
maxArchiveSize="0"
infectedAction1="3"
infectedAction2="7"
suspectAction1="7"
suspectAction2="1"
rootkitAction="3"
userDefinedExtensions=""
scanPua="-1"
computeSha256Hash="0"
disableIndexer="0"
>
<ScanPaths>
<path>C:\</path>
<path>E:\</path>
</ScanPaths>
<ExcludedPaths>
</ExcludedPaths>
<ExcludedExtensions>
</ExcludedExtensions>
</ScanSettings>
<EngineSummary
totalSignatures="8365808"
/>
<ScanSummary
scannedArchives="739"
scannedPacked="381"
startTime="1488476785"
duration="3264125"
>
<TypeSummary type="1"
scanned="32"
infected="0"
suspicious="0"
disinfected="0"
deleted="0"
moved="0"
moved_reboot="0"
delete_reboot="0"
renamed="0"
hidden="0"
/>
<TypeSummary type="4"
scanned="0"
infected="0"
suspicious="0"
disinfected="0"
deleted="0"
moved="0"
moved_reboot="0"
delete_reboot="0"
renamed="0"
hidden="0"
/>
<TypeSummary type="0"
scanned="3697440"
infected="2"
suspicious="0"
disinfected="0"
deleted="1"
moved="1"
moved_reboot="0"
delete_reboot="0"
renamed="0"
hidden="0"
/>
<TypeSummary type="5"
scanned="0"
infected="0"
suspicious="0"
disinfected="0"
deleted="0"
moved="0"
moved_reboot="0"
delete_reboot="0"
renamed="0"
hidden="0"
/>
<TypeSummary type="2"
scanned="6842"
infected="0"
suspicious="0"
disinfected="0"
deleted="0"
moved="0"
moved_reboot="0"
delete_reboot="0"
renamed="0"
hidden="0"
/>
<TypeSummary type="3"
scanned="17043"
infected="0"
suspicious="0"
disinfected="0"
deleted="0"
moved="0"
moved_reboot="0"
delete_reboot="0"
renamed="0"
hidden="0"
/>
<TypeSummary type="6"
scanned="833"
infected="0"
suspicious="0"
disinfected="0"
deleted="0"
moved="0"
moved_reboot="0"
delete_reboot="0"
renamed="0"
hidden="0"
/>
</ScanSummary>
<ScanDetails>
<UnresolvedDetails>
</UnresolvedDetails>
<ResolvedDetails>
<Item type="0" objectType="0" path="C:\Users\Inxi\AppData\Local\Microsoft\Outlook\******@***.de.pst=>[Time: 2014=>06=>04 13:17:42][Subject: RE:Rechnung vom 04.06.2014][From: contact@regard-informatique.fr]=>nI04sKt310U3GHfhfhfhfh7979446462553.rar=>Rechnung vom_04062014_BCDERSTRT797854556455854555855541325.scr" threatType="0" threatName="Trojan.GenericKD.1704971" action="9" allActions="3 7 1 9 1 9" initialStatus="3" finalStatus="6" quarId="ddd97d83-19df-480f-bdc4-fada16422d2f" failReason="0" itemHash="" chainHash="no_hash" family="" rtvrType="" />
<Item type="0" objectType="0" path="C:\Users\Inxi\AppData\Local\Microsoft\Outlook\******@***.de.pst=>[Time: 2014=>06=>04 13:17:42][Subject: RE:Rechnung vom 04.06.2014][From: contact@regard-informatique.fr]=>nI04sKt310U3GH54555855541325.zip=>Rechnung vom_04062014_BCDERSTRT797854556455854555855541325.exe" threatType="0" threatName="Trojan.GenericKD.1704971" action="9" allActions="3 9" initialStatus="3" finalStatus="5" quarId="" failReason="0" itemHash="" chainHash="no_hash" family="" rtvrType="" />
</ResolvedDetails>
<IgnoredDetails>
</IgnoredDetails>
<QuickScanDetails>
</QuickScanDetails>
<NotScannedDetails
skipped="1055549"
ioerrors="0"
archiveBombs="0"
passwordProtected="232"
>
<Item type="0" objectType="0" path="C:\Program Files (x86)\Samsung Magician\Rapid\Rapid.dll=>(ZIP Sfx r)=>Rapid/Win7_i386/RAPID/CacheFilter/addfilter.exe" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\Program Files (x86)\Realtek\Audio\Drivers\HDADrv\WIN64\RTAIODAT.DAT=>rtkhdasetting=>103C82F2=>APO.zip=>APO=>00000924=>00000924.txt" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\Program Files (x86)\Samsung Magician\Rapid\Rapid.dll=>(ZIP Sfx r)=>Rapid/Win7_amd64/RAPID/Tools/RAPIDCollectLogs/RAPIDCollectLogs.bat" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\Program Files (x86)\Samsung Magician\Rapid\Rapid.dll=>(ZIP Sfx r)=>Rapid/Win7_amd64/RAPID/SamsungRapidSvc.exe" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\Program Files (x86)\Realtek\Audio\Drivers\HDADrv\WIN64\RTAIODAT.DAT=>rtkhdasetting=>103C82FF=>APO.zip=>APO=>00000924=>00000924.txt" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\ProgramData\Samsung\Backup\Samsung_Magician_ML_Setup_Backup.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win7_amd64/RAPID/Tools/RAPIDCollectLogs/RAPIDCollectLogs.bat" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\Program Files (x86)\Samsung Magician\Rapid\Rapid.dll=>(ZIP Sfx r)=>Rapid/Win7_amd64/RAPID/CacheFilter/amd64/SamsungRapidDiskFltr.sys" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\Program Files (x86)\Samsung Magician\Rapid\Rapid.dll=>(ZIP Sfx r)=>Rapid/LIMITATIONS.txt" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\Program Files (x86)\Samsung Magician\Rapid\Rapid.dll=>(ZIP Sfx r)=>Rapid/Win8_amd64/RAPID/OpenSourceAnnouncement.txt" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\ProgramData\Samsung\SSD Magician\Site Link\Samsung_Magician_Setup_v45.zip=>Samsung_Magician_Setup_v45.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win7_amd64/RAPID/CacheFilter/DIFxAPI.dll" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\Program Files (x86)\Realtek\Audio\Drivers\HDADrv\WIN64\RTAIODAT.DAT=>rtkhdasetting=>103C82F9=>APO.zip=>APO=>00000924=>00000924.txt" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\ProgramData\Samsung\Backup\Samsung_Magician_ML_Setup_Backup.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win7_i386/RAPID/CacheFilter/rp.exe" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\Program Files (x86)\Realtek\Audio\Drivers\HDADrv\WIN32\Rtaiodat.dat=>rtkhdasetting=>103C82F2=>APO.zip=>APO=>00000924=>00000924.txt" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\Program Files (x86)\Samsung Magician\Rapid\Rapid.dll=>(ZIP Sfx r)=>Rapid/Win8_amd64/RAPID/CacheFilter/SamsungRapidApp.exe" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\Program Files (x86)\Samsung Magician\Rapid\Rapid.dll=>(ZIP Sfx r)=>Rapid/Win7_i386/RAPID/CacheFilter/rp.exe" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\Program Files (x86)\Realtek\Audio\Drivers\HDADrv\WIN64\RTAIODAT.DAT=>rtkhdasetting=>103C82FE=>APO.zip=>APO=>00000924=>00000924.txt" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\Program Files (x86)\Samsung Magician\Rapid\Rapid.dll=>(ZIP Sfx r)=>Rapid/Win7_i386/RAPID/Tools/RAPIDCollectLogs/RAPIDCollectLogs.bat" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\Program Files (x86)\Samsung Magician\Rapid\Rapid.dll=>(ZIP Sfx r)=>Rapid/Win7_i386/RAPID/SamsungRapidSvc.exe" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\Program Files (x86)\Samsung Magician\Rapid\Rapid.dll=>(ZIP Sfx r)=>Rapid/Win7_amd64/RAPID/CacheFilter/DIFxAPI.dll" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\ProgramData\Samsung\SSD Magician\Site Link\Samsung_Magician_Setup_v45.zip=>Samsung_Magician_Setup_v45.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win7_i386/dp.exe" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\Program Files (x86)\Realtek\Audio\Drivers\HDADrv\WIN32\Rtaiodat.dat=>rtkhdasetting=>103C82F9=>APO.zip=>APO=>00000924=>00000924.txt" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\Program Files (x86)\Samsung Magician\Rapid\Rapid.dll=>(ZIP Sfx r)=>Rapid/Win7_i386/RAPID/Tools/RAPIDCollectLogs/README.txt" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\ProgramData\Samsung\Backup\Samsung_Magician_ML_Setup_Backup.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win8_amd64/RAPID/CacheFilter/rp.exe" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\Program Files (x86)\Realtek\Audio\Drivers\HDADrv\WIN32\Rtaiodat.dat=>rtkhdasetting=>103C82FE=>APO.zip=>APO=>00000924=>00000924.txt" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\Program Files (x86)\Samsung Magician\Rapid\Rapid.dll=>(ZIP Sfx r)=>Rapid/Win7_amd64/RAPID/CacheFilter/SamsungRapidDiskFltr.inf" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\Program Files (x86)\Realtek\Audio\Drivers\HDADrv\WIN32\Rtaiodat.dat=>rtkhdasetting=>103C82FF=>APO.zip=>APO=>00000924=>00000924.txt" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\Program Files (x86)\Samsung Magician\Rapid\Rapid.dll=>(ZIP Sfx r)=>Rapid/Win7_amd64/dp.exe" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\Program Files (x86)\Samsung Magician\Rapid\Rapid.dll=>(ZIP Sfx r)=>Rapid/Help.pdf" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\Program Files (x86)\Samsung Magician\Rapid\Rapid.dll=>(ZIP Sfx r)=>Rapid/Win8_amd64/RAPID/CacheFilter/DIFxAPI.dll" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\Program Files (x86)\Samsung Magician\Rapid\Rapid.dll=>(ZIP Sfx r)=>Rapid/install.exe" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\ProgramData\Samsung\Backup\Samsung_Magician_ML_Setup_Backup.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win7_i386/RAPID/CacheFilter/DIFxAPI.dll" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\ProgramData\Samsung\SSD Magician\Site Link\Samsung_Magician_Setup_v45.zip=>Samsung_Magician_Setup_v45.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win8_amd64/RAPID/CacheFilter/SamsungRapidApp.exe" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\Program Files (x86)\Samsung Magician\Rapid\Rapid.dll=>(ZIP Sfx r)=>Rapid/Win7_amd64/RAPID/CacheFilter/SamsungRapidFSFltr.cat" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\ProgramData\Samsung\SSD Magician\Site Link\Samsung_Magician_Setup_v45.zip=>Samsung_Magician_Setup_v45.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win7_i386/RAPID/CacheFilter/rp.exe" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\Program Files (x86)\Samsung Magician\Rapid\Rapid.dll=>(ZIP Sfx r)=>Rapid/OpenSourceAnnouncement.txt" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\Program Files (x86)\Samsung Magician\Rapid\Rapid.dll=>(ZIP Sfx r)=>Rapid/RELEASE_NOTES.txt" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\Program Files (x86)\Samsung Magician\Rapid\Rapid.dll=>(ZIP Sfx r)=>Rapid/Win8_amd64/RAPID/CacheFilter/addfilter.exe" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\ProgramData\Samsung\SSD Magician\Site Link\Samsung_Magician_Setup_v45.zip=>Samsung_Magician_Setup_v45.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Help.pdf" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\Program Files (x86)\Samsung Magician\Rapid\Rapid.dll=>(ZIP Sfx r)=>Rapid/Win7_amd64/RAPID/CacheFilter/addfilter.exe" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\ProgramData\Samsung\SSD Magician\Site Link\Samsung_Magician_Setup_v45.zip=>Samsung_Magician_Setup_v45.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win7_amd64/RAPID/CacheFilter/rp.exe" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\Program Files (x86)\Samsung Magician\Rapid\Rapid.dll=>(ZIP Sfx r)=>Rapid/Win7_amd64/RAPID/CacheFilter/amd64/SamsungRapidFSFltr.sys" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\Program Files (x86)\Samsung Magician\Rapid\Rapid.dll=>(ZIP Sfx r)=>Rapid/Win7_amd64/RAPID/CacheFilter/SamsungRapidDiskFltr.cat" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\Program Files (x86)\Samsung Magician\Rapid\Rapid.dll=>(ZIP Sfx r)=>Rapid/Win7_amd64/RAPID/CacheFilter/rp.exe" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\Program Files (x86)\Samsung Magician\Rapid\Rapid.dll=>(ZIP Sfx r)=>Rapid/Win7_amd64/RAPID/CacheFilter/SamsungRapidApp.exe" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\ProgramData\Samsung\SSD Magician\Site Link\Samsung_Magician_Setup_v45.zip=>Samsung_Magician_Setup_v45.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/OpenSourceAnnouncement.txt" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\Program Files (x86)\Samsung Magician\Rapid\Rapid.dll=>(ZIP Sfx r)=>Rapid/Win7_amd64/RAPID/CacheFilter/SamsungRapidFSFltr.inf" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\Program Files (x86)\Samsung Magician\Rapid\Rapid.dll=>(ZIP Sfx r)=>Rapid/Win8_amd64/RAPID/CacheFilter/rp.exe" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\Program Files (x86)\Samsung Magician\Rapid\Rapid.dll=>(ZIP Sfx r)=>Rapid/Win7_amd64/RAPID/OpenSourceAnnouncement.txt" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\ProgramData\Samsung\Backup\Samsung_Magician_ML_Setup_Backup.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win7_i386/RAPID/CacheFilter/i386/SamsungRapidDiskFltr.sys" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\Program Files (x86)\Samsung Magician\Rapid\Rapid.dll=>(ZIP Sfx r)=>Rapid/Win7_i386/RAPID/CacheFilter/SamsungRapidApp.exe" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\ProgramData\Samsung\Backup\Samsung_Magician_ML_Setup_Backup.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win7_i386/RAPID/CacheFilter/SamsungRapidDiskFltr.cat" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\Program Files (x86)\Samsung Magician\Rapid\Rapid.dll=>(ZIP Sfx r)=>Rapid/Win7_amd64/RAPID/Tools/RAPIDCollectLogs/README.txt" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\Program Files (x86)\Samsung Magician\Rapid\Rapid.dll=>(ZIP Sfx r)=>Rapid/Win8_amd64/RAPID/CacheFilter/amd64/SamsungRapidDiskFltr.sys" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\ProgramData\Samsung\SSD Magician\Site Link\Samsung_Magician_Setup_v45.zip=>Samsung_Magician_Setup_v45.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win7_amd64/RAPID/CacheFilter/SamsungRapidFSFltr.cat" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\Program Files (x86)\Samsung Magician\Rapid\Rapid.dll=>(ZIP Sfx r)=>Rapid/Win7_i386/RAPID/CacheFilter/SamsungRapidDiskFltr.inf" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\Program Files (x86)\Samsung Magician\Rapid\Rapid.dll=>(ZIP Sfx r)=>Rapid/Win7_i386/dp.exe" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\Program Files (x86)\Samsung Magician\Rapid\Rapid.dll=>(ZIP Sfx r)=>Rapid/Win7_i386/RAPID/CacheFilter/DIFxAPI.dll" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\Program Files (x86)\Samsung Magician\Rapid\Rapid.dll=>(ZIP Sfx r)=>Rapid/Win7_i386/RAPID/CacheFilter/SamsungRapidDiskFltr.cat" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\Program Files (x86)\Samsung Magician\Rapid\Rapid.dll=>(ZIP Sfx r)=>Rapid/Win7_i386/RAPID/CacheFilter/i386/SamsungRapidDiskFltr.sys" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\ProgramData\Samsung\SSD Magician\Site Link\Samsung_Magician_Setup_v45.zip=>Samsung_Magician_Setup_v45.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win8_i386/RAPID/CacheFilter/SamsungRapidApp.exe" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\Program Files (x86)\Samsung Magician\Rapid\Rapid.dll=>(ZIP Sfx r)=>Rapid/Win7_i386/RAPID/CacheFilter/SamsungRapidFSFltr.cat" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\Program Files (x86)\Samsung Magician\Rapid\Rapid.dll=>(ZIP Sfx r)=>Rapid/Win7_i386/RAPID/CacheFilter/i386/SamsungRapidFSFltr.sys" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\Program Files (x86)\Samsung Magician\Rapid\Rapid.dll=>(ZIP Sfx r)=>Rapid/Win8_amd64/RAPID/CacheFilter/SamsungRapidDiskFltr.cat" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\Program Files (x86)\Samsung Magician\Rapid\Rapid.dll=>(ZIP Sfx r)=>Rapid/Win8_amd64/RAPID/CacheFilter/amd64/SamsungRapidFSFltr.sys" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\ProgramData\Samsung\SSD Magician\Site Link\Samsung_Magician_Setup_v45.zip=>Samsung_Magician_Setup_v45.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win8_amd64/RAPID/CacheFilter/rp.exe" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\Program Files (x86)\Samsung Magician\Rapid\Rapid.dll=>(ZIP Sfx r)=>Rapid/Win7_i386/RAPID/CacheFilter/SamsungRapidFSFltr.inf" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\ProgramData\Samsung\Backup\Samsung_Magician_ML_Setup_Backup.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win8_i386/RAPID/CacheFilter/SamsungRapidFSFltr.inf" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\Program Files (x86)\Samsung Magician\Rapid\Rapid.dll=>(ZIP Sfx r)=>Rapid/Win7_i386/RAPID/OpenSourceAnnouncement.txt" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\Program Files (x86)\Samsung Magician\Rapid\Rapid.dll=>(ZIP Sfx r)=>Rapid/Win8_amd64/RAPID/CacheFilter/SamsungRapidDiskFltr.inf" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\Program Files (x86)\Samsung Magician\Rapid\Rapid.dll=>(ZIP Sfx r)=>Rapid/Win8_amd64/dp.exe" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\Program Files (x86)\Samsung Magician\Rapid\Rapid.dll=>(ZIP Sfx r)=>Rapid/Win8_i386/RAPID/CacheFilter/SamsungRapidDiskFltr.cat" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\Program Files (x86)\Samsung Magician\Rapid\Rapid.dll=>(ZIP Sfx r)=>Rapid/Win8_amd64/RAPID/CacheFilter/SamsungRapidFSFltr.cat" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\Program Files (x86)\Samsung Magician\Rapid\Rapid.dll=>(ZIP Sfx r)=>Rapid/Win8_i386/dp.exe" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\Program Files (x86)\Autodesk\Autodesk Design Review 2013\EComposite\pdfnet.res" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\Program Files (x86)\Samsung Magician\Rapid\Rapid.dll=>(ZIP Sfx r)=>Rapid/Win8_i386/RAPID/CacheFilter/SamsungRapidDiskFltr.inf" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\Program Files (x86)\Samsung Magician\Rapid\Rapid.dll=>(ZIP Sfx r)=>Rapid/Win8_amd64/RAPID/CacheFilter/SamsungRapidFSFltr.inf" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\Program Files (x86)\Samsung Magician\Rapid\Rapid.dll=>(ZIP Sfx r)=>Rapid/Win8_amd64/RAPID/Tools/RAPIDCollectLogs/RAPIDCollectLogs.bat" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\Program Files (x86)\Samsung Magician\Rapid\Rapid.dll=>(ZIP Sfx r)=>Rapid/Win8_amd64/RAPID/SamsungRapidSvc.exe" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\ProgramData\Samsung\Backup\Samsung_Magician_ML_Setup_Backup.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win8_i386/RAPID/CacheFilter/SamsungRapidDiskFltr.cat" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\Program Files (x86)\Samsung Magician\Rapid\Rapid.dll=>(ZIP Sfx r)=>Rapid/Win8_i386/RAPID/CacheFilter/addfilter.exe" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\Program Files (x86)\Samsung Magician\Rapid\Rapid.dll=>(ZIP Sfx r)=>Rapid/Win8_amd64/RAPID/Tools/RAPIDCollectLogs/README.txt" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\Program Files (x86)\Samsung Magician\Rapid\Rapid.dll=>(ZIP Sfx r)=>Rapid/Win8_i386/RAPID/CacheFilter/DIFxAPI.dll" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\Program Files (x86)\Samsung Magician\Rapid\Rapid.dll=>(ZIP Sfx r)=>Rapid/Win8_i386/RAPID/CacheFilter/i386/SamsungRapidDiskFltr.sys" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\Program Files (x86)\Samsung Magician\Rapid\Rapid.dll=>(ZIP Sfx r)=>Rapid/Win8_i386/RAPID/CacheFilter/i386/SamsungRapidFSFltr.sys" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\Program Files (x86)\Samsung Magician\Rapid\Rapid.dll=>(ZIP Sfx r)=>Rapid/Win8_i386/RAPID/CacheFilter/rp.exe" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\Program Files (x86)\Samsung Magician\Rapid\Rapid.dll=>(ZIP Sfx r)=>Rapid/Win8_i386/RAPID/CacheFilter/SamsungRapidApp.exe" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\Program Files (x86)\Samsung Magician\Rapid\Rapid.dll=>(ZIP Sfx r)=>Rapid/Win8_i386/RAPID/CacheFilter/SamsungRapidFSFltr.cat" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\Program Files (x86)\Samsung Magician\Rapid\Rapid.dll=>(ZIP Sfx r)=>Rapid/Win8_i386/RAPID/CacheFilter/SamsungRapidFSFltr.inf" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\Program Files (x86)\Samsung Magician\Rapid\Rapid.dll=>(ZIP Sfx r)=>Rapid/Win8_i386/RAPID/OpenSourceAnnouncement.txt" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\Program Files (x86)\Samsung Magician\Rapid\Rapid.dll=>(ZIP Sfx r)=>Rapid/Win8_i386/RAPID/SamsungRapidSvc.exe" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\Program Files (x86)\Samsung Magician\Rapid\Rapid.dll=>(ZIP Sfx r)=>Rapid/Win8_i386/RAPID/Tools/RAPIDCollectLogs/RAPIDCollectLogs.bat" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\ProgramData\Samsung\Backup\Samsung_Magician_ML_Setup_Backup.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win8_i386/RAPID/CacheFilter/SamsungRapidFSFltr.cat" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\ProgramData\Samsung\SSD Magician\Site Link\Samsung_Magician_Setup_v45.zip=>Samsung_Magician_Setup_v45.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win7_amd64/RAPID/CacheFilter/amd64/SamsungRapidFSFltr.sys" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\Program Files (x86)\Samsung Magician\Rapid\Rapid.dll=>(ZIP Sfx r)=>Rapid/Win8_i386/RAPID/Tools/RAPIDCollectLogs/README.txt" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\Program Files\Autodesk\DWG TrueView 2014\pdfnet.res" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="E:\Inventortutorials\Inventor_2009_Schulungsvideos1-6.zip=>3_fem_pr„gung_Screen_Stream.avi" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\Program Files\Autodesk\AutoCAD 2014\pdfnet.res" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\Autodesk\WI\Autodesk Inventor 2014\x86\de-DE\Components\adr2013\program files\Autodesk\Autodesk Design Review 2013\EComposite\pdfnet.res" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\Autodesk\WI\Autodesk Inventor 2014\x64\Components\DWGVIEWER\Program Files\DWG TrueView 2014\pdfnet.res" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\Autodesk\WI\Autodesk Entertainment Creation Suite Ultimate 2016\x64\MotionBuilder\ADSK\MB\bin\x64\python27.zip=>test=>test_zipfile.pyo=>zero" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\Autodesk\WI\Autodesk Entertainment Creation Suite Ultimate 2016\x64\MotionBuilder\ADSK\MB\bin\x64\python27.zip=>test=>test_zipfile.pyc=>zero" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\Autodesk\WI\Autodesk Entertainment Creation Suite Ultimate 2016\x64\Maya\Autodesk\Maya2016\bin\python27.zip=>test=>test_zipfile.pyo=>zero" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\Autodesk\WI\Autodesk Entertainment Creation Suite Ultimate 2016\x64\Maya\Autodesk\Maya2016\bin\python27.zip=>test=>test_zipfile.pyc=>zero" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\ProgramData\Samsung\SSD Magician\Site Link\Samsung_Magician_Setup_v45.zip=>Samsung_Magician_Setup_v45.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win7_i386/RAPID/CacheFilter/DIFxAPI.dll" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\Autodesk\AutoCAD_2014_German_Win_64bit_dlm\x64\acad\Program Files\Root\pdfnet.res" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="E:\Inventortutorials\Inventor_2009_Schulungsvideos7-12.zip=>10_baugruppe1_Screen_Stream.avi" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\ProgramData\Samsung\SSD Magician\Site Link\Samsung_Magician_Setup_v45.zip=>Samsung_Magician_Setup_v45.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win7_amd64/RAPID/CacheFilter/SamsungRapidDiskFltr.cat" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="E:\Inventortutorials\Inventor_2009_Schulungsvideos7-12.zip=>11_baugruppe2_normteile_Screen_Stream.avi" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="E:\Inventortutorials\Inventor_2009_Schulungsvideos7-12.zip=>12_baugruppe_stueli_idw_posdarstellung_Screen_Stream.avi" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="E:\Inventortutorials\Inventor_2009_Schulungsvideos7-12.zip=>7_dwg zu ipt_Screen_Stream.avi" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="E:\Inventortutorials\Inventor_2009_Schulungsvideos7-12.zip=>8_blech1_Screen_Stream.avi" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="E:\Inventortutorials\Inventor_2009_Schulungsvideos7-12.zip=>9_blech2_Screen_Stream.avi" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\ProgramData\Samsung\SSD Magician\Site Link\Samsung_Magician_Setup_v45.zip=>Samsung_Magician_Setup_v45.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/RELEASE_NOTES.txt" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="E:\Program Files\Autodesk\MotionBuilder 2016\bin\x64\python27.zip=>test=>test_zipfile.pyo=>zero" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="E:\Program Files\Autodesk\MotionBuilder 2016\bin\x64\python27.zip=>test=>test_zipfile.pyc=>zero" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="E:\Inventortutorials\Inventor_2009_Schulungsvideos1-6.zip=>1_skizze_extrusion_Screen_Stream.avi" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="E:\Inventortutorials\Inventor_2009_Schulungsvideos1-6.zip=>2_element bearbeiten_Screen_Stream.avi" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="E:\Inventortutorials\Inventor_2009_Schulungsvideos1-6.zip=>4_lagerbock_Screen_Stream.avi" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="E:\Inventortutorials\Inventor_2009_Schulungsvideos1-6.zip=>5_lagerbock_zeichnung_Screen_Stream.avi" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="E:\Inventortutorials\Inventor_2009_Schulungsvideos1-6.zip=>6_welle_Screen_Stream.avi" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="E:\Sicherung\alte Q-Nr\Nicole Ertl\Arbeitsanweisunge\Kopie von AUA_aktuell_22_03_Lagerfrist - englisch .xlsx" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\ProgramData\Samsung\SSD Magician\Site Link\Samsung_Magician_Setup_v45.zip=>Samsung_Magician_Setup_v45.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/install.exe" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\ProgramData\Samsung\SSD Magician\Site Link\Samsung_Magician_Setup_v45.zip=>Samsung_Magician_Setup_v45.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/LIMITATIONS.txt" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\ProgramData\Samsung\SSD Magician\Site Link\Samsung_Magician_Setup_v45.zip=>Samsung_Magician_Setup_v45.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win7_amd64/dp.exe" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\ProgramData\Samsung\SSD Magician\Site Link\Samsung_Magician_Setup_v45.zip=>Samsung_Magician_Setup_v45.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win7_amd64/RAPID/CacheFilter/addfilter.exe" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\ProgramData\Samsung\SSD Magician\Site Link\Samsung_Magician_Setup_v45.zip=>Samsung_Magician_Setup_v45.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win7_amd64/RAPID/CacheFilter/amd64/SamsungRapidDiskFltr.sys" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\ProgramData\Samsung\SSD Magician\Site Link\Samsung_Magician_Setup_v45.zip=>Samsung_Magician_Setup_v45.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win7_amd64/RAPID/CacheFilter/SamsungRapidApp.exe" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\ProgramData\Samsung\SSD Magician\Site Link\Samsung_Magician_Setup_v45.zip=>Samsung_Magician_Setup_v45.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win7_amd64/RAPID/CacheFilter/SamsungRapidDiskFltr.inf" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\ProgramData\Samsung\SSD Magician\Site Link\Samsung_Magician_Setup_v45.zip=>Samsung_Magician_Setup_v45.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win7_amd64/RAPID/CacheFilter/SamsungRapidFSFltr.inf" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\ProgramData\Samsung\SSD Magician\Site Link\Samsung_Magician_Setup_v45.zip=>Samsung_Magician_Setup_v45.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win7_amd64/RAPID/OpenSourceAnnouncement.txt" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\ProgramData\Samsung\SSD Magician\Site Link\Samsung_Magician_Setup_v45.zip=>Samsung_Magician_Setup_v45.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win7_amd64/RAPID/SamsungRapidSvc.exe" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\ProgramData\Samsung\SSD Magician\Site Link\Samsung_Magician_Setup_v45.zip=>Samsung_Magician_Setup_v45.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win7_amd64/RAPID/Tools/RAPIDCollectLogs/RAPIDCollectLogs.bat" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\ProgramData\Samsung\Backup\Samsung_Magician_ML_Setup_Backup.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win8_amd64/RAPID/CacheFilter/amd64/SamsungRapidDiskFltr.sys" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\ProgramData\Samsung\SSD Magician\Site Link\Samsung_Magician_Setup_v45.zip=>Samsung_Magician_Setup_v45.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win7_amd64/RAPID/Tools/RAPIDCollectLogs/README.txt" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\ProgramData\Samsung\SSD Magician\Site Link\Samsung_Magician_Setup_v45.zip=>Samsung_Magician_Setup_v45.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win7_i386/RAPID/CacheFilter/addfilter.exe" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\ProgramData\Samsung\SSD Magician\Site Link\Samsung_Magician_Setup_v45.zip=>Samsung_Magician_Setup_v45.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win7_i386/RAPID/CacheFilter/i386/SamsungRapidDiskFltr.sys" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\ProgramData\Samsung\SSD Magician\Site Link\Samsung_Magician_Setup_v45.zip=>Samsung_Magician_Setup_v45.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win7_i386/RAPID/CacheFilter/i386/SamsungRapidFSFltr.sys" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\ProgramData\Samsung\SSD Magician\Site Link\Samsung_Magician_Setup_v45.zip=>Samsung_Magician_Setup_v45.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win7_i386/RAPID/CacheFilter/SamsungRapidApp.exe" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\ProgramData\Samsung\SSD Magician\Site Link\Samsung_Magician_Setup_v45.zip=>Samsung_Magician_Setup_v45.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win7_i386/RAPID/CacheFilter/SamsungRapidDiskFltr.cat" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\ProgramData\Samsung\SSD Magician\Site Link\Samsung_Magician_Setup_v45.zip=>Samsung_Magician_Setup_v45.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win7_i386/RAPID/CacheFilter/SamsungRapidDiskFltr.inf" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\ProgramData\Samsung\Backup\Samsung_Magician_ML_Setup_Backup.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/install.exe" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\ProgramData\Samsung\SSD Magician\Site Link\Samsung_Magician_Setup_v45.zip=>Samsung_Magician_Setup_v45.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win7_i386/RAPID/CacheFilter/SamsungRapidFSFltr.cat" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\ProgramData\Samsung\SSD Magician\Site Link\Samsung_Magician_Setup_v45.zip=>Samsung_Magician_Setup_v45.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win7_i386/RAPID/CacheFilter/SamsungRapidFSFltr.inf" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\ProgramData\Samsung\SSD Magician\Site Link\Samsung_Magician_Setup_v45.zip=>Samsung_Magician_Setup_v45.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win7_i386/RAPID/OpenSourceAnnouncement.txt" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\ProgramData\Samsung\SSD Magician\Site Link\Samsung_Magician_Setup_v45.zip=>Samsung_Magician_Setup_v45.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win7_i386/RAPID/SamsungRapidSvc.exe" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\ProgramData\Samsung\SSD Magician\Site Link\Samsung_Magician_Setup_v45.zip=>Samsung_Magician_Setup_v45.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win7_i386/RAPID/Tools/RAPIDCollectLogs/RAPIDCollectLogs.bat" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\ProgramData\Samsung\SSD Magician\Site Link\Samsung_Magician_Setup_v45.zip=>Samsung_Magician_Setup_v45.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win7_i386/RAPID/Tools/RAPIDCollectLogs/README.txt" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\ProgramData\Samsung\SSD Magician\Site Link\Samsung_Magician_Setup_v45.zip=>Samsung_Magician_Setup_v45.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win8_amd64/dp.exe" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\ProgramData\Samsung\SSD Magician\Site Link\Samsung_Magician_Setup_v45.zip=>Samsung_Magician_Setup_v45.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win8_amd64/RAPID/CacheFilter/addfilter.exe" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\ProgramData\Samsung\SSD Magician\Site Link\Samsung_Magician_Setup_v45.zip=>Samsung_Magician_Setup_v45.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win8_amd64/RAPID/CacheFilter/amd64/SamsungRapidDiskFltr.sys" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\ProgramData\Samsung\SSD Magician\Site Link\Samsung_Magician_Setup_v45.zip=>Samsung_Magician_Setup_v45.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win8_amd64/RAPID/CacheFilter/amd64/SamsungRapidFSFltr.sys" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\ProgramData\Samsung\SSD Magician\Site Link\Samsung_Magician_Setup_v45.zip=>Samsung_Magician_Setup_v45.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win8_amd64/RAPID/CacheFilter/DIFxAPI.dll" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\ProgramData\Samsung\SSD Magician\Site Link\Samsung_Magician_Setup_v45.zip=>Samsung_Magician_Setup_v45.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win8_amd64/RAPID/CacheFilter/SamsungRapidDiskFltr.cat" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\ProgramData\Samsung\SSD Magician\Site Link\Samsung_Magician_Setup_v45.zip=>Samsung_Magician_Setup_v45.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win8_amd64/RAPID/CacheFilter/SamsungRapidDiskFltr.inf" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\ProgramData\Samsung\SSD Magician\Site Link\Samsung_Magician_Setup_v45.zip=>Samsung_Magician_Setup_v45.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win8_amd64/RAPID/CacheFilter/SamsungRapidFSFltr.cat" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\ProgramData\Samsung\SSD Magician\Site Link\Samsung_Magician_Setup_v45.zip=>Samsung_Magician_Setup_v45.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win8_amd64/RAPID/CacheFilter/SamsungRapidFSFltr.inf" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\ProgramData\Samsung\SSD Magician\Site Link\Samsung_Magician_Setup_v45.zip=>Samsung_Magician_Setup_v45.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win8_amd64/RAPID/OpenSourceAnnouncement.txt" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\ProgramData\Samsung\SSD Magician\Site Link\Samsung_Magician_Setup_v45.zip=>Samsung_Magician_Setup_v45.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win8_amd64/RAPID/SamsungRapidSvc.exe" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\ProgramData\Samsung\SSD Magician\Site Link\Samsung_Magician_Setup_v45.zip=>Samsung_Magician_Setup_v45.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win8_amd64/RAPID/Tools/RAPIDCollectLogs/RAPIDCollectLogs.bat" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\ProgramData\Samsung\Backup\Samsung_Magician_ML_Setup_Backup.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win8_amd64/RAPID/CacheFilter/SamsungRapidFSFltr.inf" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\ProgramData\Samsung\SSD Magician\Site Link\Samsung_Magician_Setup_v45.zip=>Samsung_Magician_Setup_v45.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win8_amd64/RAPID/Tools/RAPIDCollectLogs/README.txt" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\ProgramData\Samsung\SSD Magician\Site Link\Samsung_Magician_Setup_v45.zip=>Samsung_Magician_Setup_v45.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win8_i386/dp.exe" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\ProgramData\Samsung\SSD Magician\Site Link\Samsung_Magician_Setup_v45.zip=>Samsung_Magician_Setup_v45.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win8_i386/RAPID/CacheFilter/addfilter.exe" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\ProgramData\Samsung\SSD Magician\Site Link\Samsung_Magician_Setup_v45.zip=>Samsung_Magician_Setup_v45.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win8_i386/RAPID/CacheFilter/DIFxAPI.dll" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\ProgramData\Samsung\SSD Magician\Site Link\Samsung_Magician_Setup_v45.zip=>Samsung_Magician_Setup_v45.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win8_i386/RAPID/CacheFilter/i386/SamsungRapidDiskFltr.sys" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\ProgramData\Samsung\SSD Magician\Site Link\Samsung_Magician_Setup_v45.zip=>Samsung_Magician_Setup_v45.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win8_i386/RAPID/CacheFilter/i386/SamsungRapidFSFltr.sys" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\ProgramData\Samsung\SSD Magician\Site Link\Samsung_Magician_Setup_v45.zip=>Samsung_Magician_Setup_v45.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win8_i386/RAPID/CacheFilter/rp.exe" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\ProgramData\Samsung\SSD Magician\Site Link\Samsung_Magician_Setup_v45.zip=>Samsung_Magician_Setup_v45.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win8_i386/RAPID/CacheFilter/SamsungRapidDiskFltr.cat" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\ProgramData\Samsung\SSD Magician\Site Link\Samsung_Magician_Setup_v45.zip=>Samsung_Magician_Setup_v45.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win8_i386/RAPID/CacheFilter/SamsungRapidDiskFltr.inf" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\ProgramData\Samsung\SSD Magician\Site Link\Samsung_Magician_Setup_v45.zip=>Samsung_Magician_Setup_v45.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win8_i386/RAPID/CacheFilter/SamsungRapidFSFltr.cat" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\ProgramData\Samsung\SSD Magician\Site Link\Samsung_Magician_Setup_v45.zip=>Samsung_Magician_Setup_v45.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win8_i386/RAPID/CacheFilter/SamsungRapidFSFltr.inf" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\ProgramData\Samsung\SSD Magician\Site Link\Samsung_Magician_Setup_v45.zip=>Samsung_Magician_Setup_v45.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win8_i386/RAPID/OpenSourceAnnouncement.txt" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\ProgramData\Samsung\Backup\Samsung_Magician_ML_Setup_Backup.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win7_i386/RAPID/CacheFilter/addfilter.exe" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\ProgramData\Samsung\SSD Magician\Site Link\Samsung_Magician_Setup_v45.zip=>Samsung_Magician_Setup_v45.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win8_i386/RAPID/SamsungRapidSvc.exe" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\ProgramData\Samsung\SSD Magician\Site Link\Samsung_Magician_Setup_v45.zip=>Samsung_Magician_Setup_v45.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win8_i386/RAPID/Tools/RAPIDCollectLogs/RAPIDCollectLogs.bat" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\ProgramData\Samsung\SSD Magician\Site Link\Samsung_Magician_Setup_v45.zip=>Samsung_Magician_Setup_v45.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win8_i386/RAPID/Tools/RAPIDCollectLogs/README.txt" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\ProgramData\Samsung\Backup\Samsung_Magician_ML_Setup_Backup.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Help.pdf" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\ProgramData\Samsung\Backup\Samsung_Magician_ML_Setup_Backup.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/LIMITATIONS.txt" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\ProgramData\Samsung\Backup\Samsung_Magician_ML_Setup_Backup.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/OpenSourceAnnouncement.txt" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\ProgramData\Samsung\Backup\Samsung_Magician_ML_Setup_Backup.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/RELEASE_NOTES.txt" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\ProgramData\Samsung\Backup\Samsung_Magician_ML_Setup_Backup.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win7_amd64/dp.exe" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\ProgramData\Samsung\Backup\Samsung_Magician_ML_Setup_Backup.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win7_amd64/RAPID/CacheFilter/addfilter.exe" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\ProgramData\Samsung\Backup\Samsung_Magician_ML_Setup_Backup.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win7_amd64/RAPID/CacheFilter/amd64/SamsungRapidDiskFltr.sys" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\ProgramData\Samsung\Backup\Samsung_Magician_ML_Setup_Backup.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win7_amd64/RAPID/CacheFilter/SamsungRapidDiskFltr.cat" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\ProgramData\Samsung\Backup\Samsung_Magician_ML_Setup_Backup.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win7_amd64/RAPID/CacheFilter/amd64/SamsungRapidFSFltr.sys" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\ProgramData\Samsung\Backup\Samsung_Magician_ML_Setup_Backup.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win7_i386/RAPID/Tools/RAPIDCollectLogs/RAPIDCollectLogs.bat" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\ProgramData\Samsung\Backup\Samsung_Magician_ML_Setup_Backup.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win7_amd64/RAPID/CacheFilter/DIFxAPI.dll" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\ProgramData\Samsung\Backup\Samsung_Magician_ML_Setup_Backup.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win7_amd64/RAPID/CacheFilter/rp.exe" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\ProgramData\Samsung\Backup\Samsung_Magician_ML_Setup_Backup.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win7_amd64/RAPID/CacheFilter/SamsungRapidApp.exe" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\ProgramData\Samsung\Backup\Samsung_Magician_ML_Setup_Backup.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win7_amd64/RAPID/CacheFilter/SamsungRapidDiskFltr.inf" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\ProgramData\Samsung\Backup\Samsung_Magician_ML_Setup_Backup.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win7_amd64/RAPID/CacheFilter/SamsungRapidFSFltr.cat" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\ProgramData\Samsung\Backup\Samsung_Magician_ML_Setup_Backup.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win7_amd64/RAPID/CacheFilter/SamsungRapidFSFltr.inf" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\ProgramData\Samsung\Backup\Samsung_Magician_ML_Setup_Backup.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win7_amd64/RAPID/OpenSourceAnnouncement.txt" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\ProgramData\Samsung\Backup\Samsung_Magician_ML_Setup_Backup.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win7_amd64/RAPID/SamsungRapidSvc.exe" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\ProgramData\Samsung\Backup\Samsung_Magician_ML_Setup_Backup.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win7_amd64/RAPID/Tools/RAPIDCollectLogs/README.txt" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\ProgramData\Samsung\Backup\Samsung_Magician_ML_Setup_Backup.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win7_i386/dp.exe" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\ProgramData\Samsung\Backup\Samsung_Magician_ML_Setup_Backup.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win7_i386/RAPID/CacheFilter/i386/SamsungRapidFSFltr.sys" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\ProgramData\Samsung\Backup\Samsung_Magician_ML_Setup_Backup.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win7_i386/RAPID/CacheFilter/SamsungRapidApp.exe" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\ProgramData\Samsung\Backup\Samsung_Magician_ML_Setup_Backup.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win7_i386/RAPID/CacheFilter/SamsungRapidDiskFltr.inf" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\ProgramData\Samsung\Backup\Samsung_Magician_ML_Setup_Backup.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win7_i386/RAPID/CacheFilter/SamsungRapidFSFltr.cat" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\ProgramData\Samsung\Backup\Samsung_Magician_ML_Setup_Backup.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win7_i386/RAPID/CacheFilter/SamsungRapidFSFltr.inf" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\ProgramData\Samsung\Backup\Samsung_Magician_ML_Setup_Backup.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win7_i386/RAPID/OpenSourceAnnouncement.txt" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\ProgramData\Samsung\Backup\Samsung_Magician_ML_Setup_Backup.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win7_i386/RAPID/SamsungRapidSvc.exe" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\ProgramData\Samsung\Backup\Samsung_Magician_ML_Setup_Backup.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win7_i386/RAPID/Tools/RAPIDCollectLogs/README.txt" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\ProgramData\Samsung\Backup\Samsung_Magician_ML_Setup_Backup.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win8_amd64/dp.exe" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\ProgramData\Samsung\Backup\Samsung_Magician_ML_Setup_Backup.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win8_amd64/RAPID/CacheFilter/addfilter.exe" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\ProgramData\Samsung\Backup\Samsung_Magician_ML_Setup_Backup.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win8_amd64/RAPID/CacheFilter/amd64/SamsungRapidFSFltr.sys" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\ProgramData\Samsung\Backup\Samsung_Magician_ML_Setup_Backup.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win8_amd64/RAPID/CacheFilter/DIFxAPI.dll" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\ProgramData\Samsung\Backup\Samsung_Magician_ML_Setup_Backup.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win8_amd64/RAPID/CacheFilter/SamsungRapidApp.exe" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\ProgramData\Samsung\Backup\Samsung_Magician_ML_Setup_Backup.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win8_amd64/RAPID/CacheFilter/SamsungRapidDiskFltr.cat" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\ProgramData\Samsung\Backup\Samsung_Magician_ML_Setup_Backup.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win8_amd64/RAPID/CacheFilter/SamsungRapidDiskFltr.inf" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\ProgramData\Samsung\Backup\Samsung_Magician_ML_Setup_Backup.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win8_amd64/RAPID/CacheFilter/SamsungRapidFSFltr.cat" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\ProgramData\Samsung\Backup\Samsung_Magician_ML_Setup_Backup.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win8_amd64/RAPID/OpenSourceAnnouncement.txt" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\ProgramData\Samsung\Backup\Samsung_Magician_ML_Setup_Backup.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win8_amd64/RAPID/SamsungRapidSvc.exe" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\ProgramData\Samsung\Backup\Samsung_Magician_ML_Setup_Backup.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win8_amd64/RAPID/Tools/RAPIDCollectLogs/RAPIDCollectLogs.bat" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\ProgramData\Samsung\Backup\Samsung_Magician_ML_Setup_Backup.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win8_amd64/RAPID/Tools/RAPIDCollectLogs/README.txt" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\ProgramData\Samsung\Backup\Samsung_Magician_ML_Setup_Backup.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win8_i386/dp.exe" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\ProgramData\Samsung\Backup\Samsung_Magician_ML_Setup_Backup.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win8_i386/RAPID/CacheFilter/addfilter.exe" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\ProgramData\Samsung\Backup\Samsung_Magician_ML_Setup_Backup.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win8_i386/RAPID/CacheFilter/DIFxAPI.dll" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\ProgramData\Samsung\Backup\Samsung_Magician_ML_Setup_Backup.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win8_i386/RAPID/CacheFilter/i386/SamsungRapidDiskFltr.sys" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\ProgramData\Samsung\Backup\Samsung_Magician_ML_Setup_Backup.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win8_i386/RAPID/CacheFilter/i386/SamsungRapidFSFltr.sys" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\ProgramData\Samsung\Backup\Samsung_Magician_ML_Setup_Backup.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win8_i386/RAPID/CacheFilter/rp.exe" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\ProgramData\Samsung\Backup\Samsung_Magician_ML_Setup_Backup.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win8_i386/RAPID/CacheFilter/SamsungRapidApp.exe" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\ProgramData\Samsung\Backup\Samsung_Magician_ML_Setup_Backup.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win8_i386/RAPID/CacheFilter/SamsungRapidDiskFltr.inf" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\ProgramData\Samsung\Backup\Samsung_Magician_ML_Setup_Backup.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win8_i386/RAPID/OpenSourceAnnouncement.txt" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\ProgramData\Samsung\Backup\Samsung_Magician_ML_Setup_Backup.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win8_i386/RAPID/SamsungRapidSvc.exe" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\ProgramData\Samsung\Backup\Samsung_Magician_ML_Setup_Backup.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win8_i386/RAPID/Tools/RAPIDCollectLogs/RAPIDCollectLogs.bat" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="C:\ProgramData\Samsung\Backup\Samsung_Magician_ML_Setup_Backup.exe=>(Instyler o)=>(Instyler Module 593)=>(ZIP Sfx r)=>Rapid/Win8_i386/RAPID/Tools/RAPIDCollectLogs/README.txt" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="E:\Sicherung\alte Q-Nr\Stephanie Huebner\Archiv\STAT_150626_Managementreport_ErrorRate_2015B.xlsx" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="E:\Program Files\Autodesk\Maya2016\bin\python27.zip=>test=>test_zipfile.pyo=>zero" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="E:\Program Files\Autodesk\Maya2016\bin\python27.zip=>test=>test_zipfile.pyc=>zero" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
<Item type="0" objectType="0" path="E:\Downloads\DELL_WIRELESS-5630-EVDO-HSPA_A00_R298539.exe=>(ZIP Sfx o)=>SystemId.zip=>SystemId.txt" threatType="0" threatName="" action="1" allActions="" initialStatus="10" finalStatus="10" failReason="5" />
</NotScannedDetails>
</ScanDetails>
</ScanSession>
https://malwaretips.com/blogs/trojan-generickd-removal/ Diesen habe ich durchgeführt, ohne Befunde, bis zum Adwcleaner step. Dieser fand ebenfalls zwei Sachen und ich habe diese gelöscht. Code:
ATTFilter # AdwCleaner v6.044 - Bericht erstellt am 02/03/2017 um 21:49:36
# Aktualisiert am 28/02/2017 von Malwarebytes
# Datenbank : 2017-03-02.1 [Server]
# Betriebssystem : Windows 10 Home (X64)
# Benutzername : Inxi - INXI-PC
# Gestartet von : C:\Users\Inxi\Downloads\adwcleaner_6.044.exe
# Modus: Löschen
# Unterstützung : https://www.malwarebytes.com/support
***** [ Dienste ] *****
***** [ Ordner ] *****
[-] Ordner gelöscht: C:\ProgramData\5c9e2523-c041-4bd3-924f-697ec2ef6bde
***** [ Dateien ] *****
[-] Datei gelöscht: C:\END
***** [ DLL ] *****
***** [ WMI ] *****
***** [ Verknüpfungen ] *****
***** [ Aufgabenplanung ] *****
***** [ Registrierungsdatenbank ] *****
***** [ Browser ] *****
*************************
:: "Tracing" Schlüssel gelöscht
:: Winsock Einstellungen zurückgesetzt
:: Internet Explorer Richtlinien gelöscht
:: Chrome Richtlinien gelöscht
*************************
C:\AdwCleaner\AdwCleaner[C0].txt - [990 Bytes] - [02/03/2017 21:49:36]
C:\AdwCleaner\AdwCleaner[S0].txt - [1357 Bytes] - [02/03/2017 21:42:10]
########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt - [1135 Bytes] ##########
auf der Suche nach C:\END bin ich auf diesen Thread gestoßen. http://www.trojaner-board.de/136098-...gen-c-end.html Ich habe Malware Bytes AntiRootkit installiert und beim Start wurde ein Verweis auf die Applnit.DLL gegeben. Ich habe auf "No" geklickt und MBAR lief problemslos durch. Heute habe ich dann alle Steps des obigen Guides wiederholt (im Safemode) und habe abschließend beim JunkwareRemovalTool folgendes Log erhalten. Code:
ATTFilter ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.1.1 (02.11.2017)
Operating System: Windows 10 Home x64
Ran by Inxi (Limited) on 04.03.2017 at 11:05:48,93
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
File System: 4
Successfully deleted: C:\ProgramData\1481276973.bdinstall.bin (File)
Successfully deleted: C:\Users\Inxi\AppData\Roaming\Mozilla\Firefox\Profiles\cgvoh6rn.default\extensions\trash (Folder)
Successfully deleted: C:\WINDOWS\system32\Tasks\PCDEventLauncherTask (Task)
Successfully deleted: C:\WINDOWS\system32\Tasks\PCDoctorBackgroundMonitorTask (Task)
Registry: 0
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 04.03.2017 at 11:06:38,59
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Bei einem abschließenden Test mit MBAR wurde wieder der Verweis auf die Applnit.DLLs gegeben ohne danach beim Scan einen Befund zu melden. Inweit ist mein PC noch infiziert bzw. was sollten denn jetzt meine weiteren Schritte sein?  FSR.txt Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 03-03-2017
durchgeführt von Inxi (Administrator) auf INXI-PC (04-03-2017 11:39:33)
Gestartet von C:\Users\Inxi\Downloads
Geladene Profile: Inxi (Verfügbare Profile: Inxi & DefaultAppPool)
Platform: Windows 10 Home Version 1607 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: FF)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2017\vsserv.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(Autodesk Inc.) C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgrSvc.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2017\vsservp.exe
(Hi-Rez Studios) C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe
(Autodesk, Inc.) C:\Program Files\Autodesk\Inventor 2016\Moldflow\bin\mitsijm.exe
(Microsoft Corporation) C:\Windows\System32\mqsvc.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2017\updatesrv.exe
(Western Digital Technologies, Inc.) C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe
(Bitdefender) C:\Program Files\Bitdefender Agent\ProductAgentService.exe
(Samsung Electronics Co., Ltd.) C:\Windows\System32\RAPID\SamsungRapidSvc.exe
() C:\Program Files (x86)\Western Digital\WD SmartWare\Front Parlor\WDFME\WDFME.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(HP) C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe
() C:\Program Files (x86)\Western Digital\WD SmartWare\Front Parlor\WDSC.exe
(WDC) C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMService.exe
(Andrea Electronics Corporation) C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
(Autodesk, Inc.) C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe
(Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe
(Western Digital Technologies, Inc.) C:\Program Files (x86)\Western Digital\WD SmartWare\WDBackupEngine.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Dell Inc.) C:\Program Files\Dell\DellDataVault\DellDataVaultWiz.exe
(Dell Inc.) C:\Program Files (x86)\Dell Update\DellUpService.exe
(HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Dell Inc.) C:\Program Files (x86)\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe
(Dell Inc.) C:\Program Files\Dell\DellDataVault\DellDataVault.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Dell Inc.) C:\Program Files (x86)\Dell Update\DellUpTray.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Pixart Imaging Inc) C:\Windows\System32\TiltWheelMouse.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Samsung Electronics.) C:\Program Files (x86)\Samsung Magician\Samsung Magician.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Samsung Electronics Co., Ltd.) C:\Program Files (x86)\RAPID\CacheFilter\SamsungRapidApp.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Spotify Ltd) C:\Users\Inxi\AppData\Roaming\Spotify\SpotifyWebHelper.exe
(Akamai Technologies, Inc.) C:\Users\Inxi\AppData\Local\Akamai\netsession_win.exe
(Akamai Technologies, Inc.) C:\Users\Inxi\AppData\Local\Akamai\netsession_win.exe
(Spotify Ltd) C:\Users\Inxi\AppData\Roaming\Spotify\SpotifyWebHelper.exe
(Autodesk, Inc.) C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe
(Western Digital Technologies, Inc.) C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMStatus.exe
(NEC Electronics Corporation) C:\Program Files (x86)\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
(Hewlett-Packard Company) C:\Program Files (x86)\HP\ToolboxFX\bin\HPTLBXFX.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2017\bdagent.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.11.110.0_x64__kzf8qxf38zg5c\SkypeHost.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2017\bdwtxag.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
==================== Registry (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [MouseDriver] => C:\Windows\system32\TiltWheelMouse.exe [241152 2013-04-09] (Pixart Imaging Inc)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8512760 2015-08-03] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1411320 2015-08-03] (Realtek Semiconductor)
HKLM\...\Run: [SamsungRapidApp] => C:\Program Files (x86)\RAPID\CacheFilter\SamsungRapidApp.exe [281776 2014-09-16] (Samsung Electronics Co., Ltd.)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2634896 2015-08-07] (NVIDIA Corporation)
HKLM\...\Run: [Malwarebytes TrayApp] => C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\mbamtray.exe [2780112 2017-01-20] (Malwarebytes)
HKLM\...\Run: [WindowsDefender] => C:\Program Files\Windows Defender\MSASCuiL.exe [631808 2016-09-30] (Microsoft Corporation)
HKLM-x32\...\Run: [NUSB3MON] => C:\Program Files (x86)\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [106496 2009-10-21] (NEC Electronics Corporation)
HKLM-x32\...\Run: [ToolboxFX] => C:\Program Files (x86)\HP\ToolboxFX\bin\HPTLBXFX.exe [58936 2010-10-25] (Hewlett-Packard Company)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [ADSKAppManager] => C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgr.exe [522784 2015-11-17] (Autodesk Inc.)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-3175323499-3369025214-2853444423-1000\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3018528 2017-02-23] (Valve Corporation)
HKU\S-1-5-21-3175323499-3369025214-2853444423-1000\...\Run: [Spotify] => C:\Users\Inxi\AppData\Roaming\Spotify\Spotify.exe [7067760 2017-02-17] (Spotify Ltd)
HKU\S-1-5-21-3175323499-3369025214-2853444423-1000\...\Run: [Akamai NetSession Interface] => C:\Users\Inxi\AppData\Local\Akamai\netsession_win.exe [4691384 2015-09-10] (Akamai Technologies, Inc.)
HKU\S-1-5-21-3175323499-3369025214-2853444423-1000\...\Run: [Spotify Web Helper] => C:\Users\Inxi\AppData\Roaming\Spotify\SpotifyWebHelper.exe [1446000 2017-02-17] (Spotify Ltd)
HKU\S-1-5-21-3175323499-3369025214-2853444423-1000\...\Run: [Autodesk Sync] => C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe [1336320 2015-11-25] (Autodesk, Inc.)
HKU\S-1-5-21-3175323499-3369025214-2853444423-1000\...\Run: [Overwolf] => C:\Program Files (x86)\Overwolf\OverwolfLauncher.exe [1057848 2017-02-20] ()
HKU\S-1-5-21-3175323499-3369025214-2853444423-1000\...\Run: [Innkeeper] => C:\Users\Inxi\AppData\Local\Innkeeper\Update.exe --processStart Innkeeper.exe --process-start-args="-startup"
HKU\S-1-5-21-3175323499-3369025214-2853444423-1000\...\Policies\Explorer: []
AppInit_DLLs: C:\Windows\system32\nvinitx.dll => Keine Datei
AppInit_DLLs: , C:\WINDOWS\system32\nvinitx.dll => Keine Datei
ShellIconOverlayIdentifiers: [AutoCAD Digital Signatures Icon Overlay Handler] -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\Windows\system32\AcSignIcon.dll [2015-02-06] (Autodesk, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\WDDMStatus.lnk [2016-07-28]
ShortcutTarget: WDDMStatus.lnk -> C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMStatus.exe (Western Digital Technologies, Inc.)
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 192.168.0.2
Tcpip\..\Interfaces\{027f6474-5d44-4977-ba82-1028262a6651}: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{564ced59-5169-4294-a665-198236781d26}: [DhcpNameServer] 192.168.0.1 192.168.0.2
Tcpip\..\Interfaces\{A044B257-B0BB-4A90-A524-001E3E7A7C5C}: [DhcpNameServer] 7.254.254.254
Internet Explorer:
==================
BHO: Bitdefender-Geldbörse -> {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} -> C:\Program Files\Bitdefender\Bitdefender 2017\pmbxie.dll [2017-01-17] (Bitdefender)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: Bitdefender-Geldbörse -> {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} -> C:\Program Files\Bitdefender\Bitdefender 2017\Antispam32\pmbxie.dll [2017-01-17] (Bitdefender)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
Toolbar: HKLM - Bitdefender-Geldbörse - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender 2017\pmbxie.dll [2017-01-17] (Bitdefender)
Toolbar: HKLM-x32 - Bitdefender-Geldbörse - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender 2017\Antispam32\pmbxie.dll [2017-01-17] (Bitdefender)
FireFox:
========
FF DefaultProfile: cgvoh6rn.default
FF ProfilePath: C:\Users\Inxi\AppData\Roaming\Mozilla\Firefox\Profiles\cgvoh6rn.default [2017-03-04]
FF Homepage: Mozilla\Firefox\Profiles\cgvoh6rn.default -> www.welt.de
FF Extension: (Adblock Plus) - C:\Users\Inxi\AppData\Roaming\Mozilla\Firefox\Profiles\cgvoh6rn.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-11-23]
FF Extension: (SHA-1 deprecation staged rollout) - C:\Users\Inxi\AppData\Roaming\Mozilla\Firefox\Profiles\cgvoh6rn.default\features\{d22cf5b2-21dc-49bd-bc7c-9977629e5792}\disableSHA1rollout@mozilla.org.xpi [2017-03-04]
FF HKLM\...\Firefox\Extensions: [bdwteffv20@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender 2017\antispam32\bdwteff
FF Extension: (Bitdefender Wallet) - C:\Program Files\Bitdefender\Bitdefender 2017\antispam32\bdwteff [2017-01-18]
FF HKLM\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender 2017\bdtbext
FF Extension: (Bitdefender Antispam Toolbar) - C:\Program Files\Bitdefender\Bitdefender 2017\bdtbext [2016-12-09] [ist nicht signiert]
FF HKLM-x32\...\Firefox\Extensions: [bdwteffv20@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender 2017\antispam32\bdwteff
FF HKLM-x32\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender 2017\bdtbext
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_24_0_0_221.dll [2017-02-18] ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWoW64\Macromed\Flash\NPSWF32_24_0_0_221.dll [2017-02-18] ()
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-08-07] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-08-07] (NVIDIA Corporation)
FF Plugin-x32: @videolan.org/vlc,version=2.2.0 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-12-23] (Adobe Systems Inc.)
Chrome:
=======
CHR HKLM-x32\...\Chrome\Extension: [gannpgaobkkhmpomoijebaigcapoeebl] - hxxps://clients2.google.com/service/update2/crx
==================== Dienste (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R2 AdAppMgrSvc; C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgrSvc.exe [1139744 2015-11-17] (Autodesk Inc.)
R2 Autodesk Content Service; C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe [12288 2012-12-13] (Autodesk, Inc.) [Datei ist nicht signiert]
R2 DellDataVault; C:\Program Files\Dell\DellDataVault\DellDataVault.exe [2572024 2016-06-23] (Dell Inc.)
R2 DellDataVaultWiz; C:\Program Files\Dell\DellDataVault\DellDataVaultWiz.exe [202488 2016-06-23] (Dell Inc.)
R2 DellUpdate; C:\Program Files (x86)\Dell Update\DellUpService.exe [237272 2015-08-27] (Dell Inc.)
U2 HiPatchService; C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe [8704 2015-09-02] (Hi-Rez Studios) [Datei ist nicht signiert]
R2 HP LaserJet Service; C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe [145920 2010-10-25] (HP) [Datei ist nicht signiert]
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [31776 2016-12-07] (HP Inc.)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [4355024 2017-01-20] (Malwarebytes)
S3 mi-raysat_3dsmax2016_64; E:\Program Files\Autodesk\3ds Max 2016\NVIDIA\Satellite\raysat_3dsmax2016_64server.exe [86016 2011-09-15] () [Datei ist nicht signiert]
R2 mitsijm2016; C:\Program Files\Autodesk\Inventor 2016\Moldflow\bin\mitsijm.exe [968480 2014-09-30] (Autodesk, Inc.)
R2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [71680 2010-01-18] (Hewlett-Packard) [Datei ist nicht signiert]
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2119176 2017-01-18] (Electronic Arts)
R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [2181648 2017-01-18] (Electronic Arts)
S3 OverwolfUpdater; C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [1325112 2017-02-20] (Overwolf LTD)
R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [89600 2010-01-18] (Hewlett-Packard) [Datei ist nicht signiert]
R2 ProductAgentService; C:\Program Files\Bitdefender Agent\ProductAgentService.exe [1100392 2016-10-28] (Bitdefender)
R2 SamsungRapidSvc; C:\WINDOWS\System32\RAPID\SamsungRapidSvc.exe [28848 2014-09-16] (Samsung Electronics Co., Ltd.)
S2 SetupARService; C:\Program Files (x86)\Realtek\Audio\SetupAfterRebootService.exe [10752 2016-12-08] () [Datei ist nicht signiert]
R2 SupportAssistAgent; C:\Program Files (x86)\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe [31704 2016-09-09] (Dell Inc.)
S3 TunngleService; C:\Program Files (x86)\Tunngle\TnglCtrl.exe [809424 2015-10-27] (Tunngle.net GmbH) [Datei ist nicht signiert]
R2 UPDATESRV; C:\Program Files\Bitdefender\Bitdefender 2017\updatesrv.exe [218416 2017-01-17] (Bitdefender)
R2 VSSERV; C:\Program Files\Bitdefender\Bitdefender 2017\vsserv.exe [1526528 2017-01-17] (Bitdefender)
R2 vsservp; C:\Program Files\Bitdefender\Bitdefender 2017\vsservp.exe [524872 2016-08-25] (Bitdefender)
R2 WDBackup; C:\Program Files (x86)\Western Digital\WD SmartWare\WDBackupEngine.exe [1042808 2015-02-12] (Western Digital Technologies, Inc.)
R2 WDDMService; C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMService.exe [288768 2011-03-09] (WDC) [Datei ist nicht signiert]
R2 WDDriveService; C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe [302968 2015-02-12] (Western Digital Technologies, Inc.)
R2 WDFME; C:\Program Files (x86)\Western Digital\WD SmartWare\Front Parlor\WDFME\WDFME.exe [1066896 2011-03-09] ()
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347328 2016-07-16] (Microsoft Corporation)
R2 WDSC; C:\Program Files (x86)\Western Digital\WD SmartWare\Front Parlor\WDSC.exe [491920 2011-03-09] ()
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103720 2016-07-16] (Microsoft Corporation)
===================== Treiber (Nicht auf der Ausnahmeliste) ======================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R0 avc3; C:\WINDOWS\System32\DRIVERS\avc3.sys [1605376 2016-09-20] (BitDefender)
R3 avckf; C:\WINDOWS\System32\DRIVERS\avckf.sys [878072 2016-09-20] (BitDefender)
S0 bdelam; C:\WINDOWS\System32\drivers\bdelam.sys [23672 2016-03-14] (Bitdefender)
R1 bdfwfpf; C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys [128400 2016-06-24] (BitDefender LLC)
R1 BDVEDISK; C:\WINDOWS\system32\DRIVERS\bdvedisk.sys [87912 2015-12-04] (BitDefender)
R3 DDDriver; C:\WINDOWS\system32\drivers\DDDriver64Dcsa.sys [32464 2015-09-11] (Dell Computer Corporation)
R3 DellProf; C:\WINDOWS\system32\drivers\DellProf.sys [24240 2015-05-22] (Dell Computer Corporation)
R1 epp; C:\EEK\bin64\epp.sys [115216 2017-01-03] (Emsisoft Ltd)
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [77408 2017-02-24] ()
S3 ggsomc; C:\WINDOWS\System32\drivers\ggsomc.sys [30424 2015-04-14] (Sony Mobile Communications)
R0 gzflt; C:\WINDOWS\System32\DRIVERS\gzflt.sys [182944 2016-10-29] (BitDefender LLC)
S3 hitmanpro37; C:\WINDOWS\system32\drivers\hitmanpro37.sys [54736 2017-03-04] ()
R0 ignis; C:\WINDOWS\system32\DRIVERS\ignis.sys [309280 2017-01-17] (Bitdefender)
R2 MBAMChameleon; C:\WINDOWS\system32\drivers\MBAMChameleon.sys [186304 2017-03-04] (Malwarebytes)
R3 MBAMFarflt; C:\WINDOWS\system32\drivers\farflt.sys [111544 2017-03-04] (Malwarebytes)
R3 MBAMProtection; C:\WINDOWS\system32\drivers\mbam.sys [43968 2017-03-04] (Malwarebytes)
R0 MBAMSwissArmy; C:\WINDOWS\System32\drivers\MBAMSwissArmy.sys [251840 2017-03-04] (Malwarebytes)
R3 MBAMWebProtection; C:\WINDOWS\system32\drivers\mwac.sys [92088 2017-03-04] (Malwarebytes)
S3 NetAdapterCx; C:\WINDOWS\System32\drivers\NetAdapterCx.sys [90624 2016-07-16] ()
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nvdmwu.inf_amd64_26aa6356770b2e86\nvlddmkm.sys [13754936 2016-09-12] (NVIDIA Corporation)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [589824 2016-07-16] (Realtek )
R0 SamsungRapidDiskFltr; C:\WINDOWS\System32\DRIVERS\SamsungRapidDiskFltr.sys [268976 2014-09-16] (Samsung Electronics Co., Ltd.)
R0 SamsungRapidFSFltr; C:\WINDOWS\System32\DRIVERS\SamsungRapidFSFltr.sys [111280 2014-09-16] (Samsung Electronics Co., Ltd.)
R0 trufos; C:\WINDOWS\System32\DRIVERS\trufos.sys [520032 2016-06-22] (BitDefender S.R.L.)
R3 t_mouse.sys; C:\WINDOWS\system32\DRIVERS\t_mouse.sys [6144 2013-04-09] ()
S3 vpnva; C:\WINDOWS\System32\DRIVERS\vpnva64-6.sys [52592 2015-02-19] (Cisco Systems, Inc.)
S0 WdBoot; C:\WINDOWS\System32\drivers\WdBoot.sys [44056 2016-07-16] (Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\WdFilter.sys [290144 2016-07-16] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [123232 2016-07-16] (Microsoft Corporation)
U3 idsvc; kein ImagePath
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Ein Monat: Erstellte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2017-03-04 11:39 - 2017-03-04 11:39 - 00021635 _____ C:\Users\Inxi\Downloads\FRST.txt
2017-03-04 11:39 - 2017-03-04 11:39 - 00000000 ____D C:\FRST
2017-03-04 11:38 - 2017-03-04 11:39 - 02423808 _____ (Farbar) C:\Users\Inxi\Downloads\FRST64.exe
2017-03-04 11:06 - 2017-03-04 11:06 - 00000896 _____ C:\Users\Inxi\Desktop\JRT.txt
2017-03-04 10:37 - 2017-03-04 10:37 - 00054736 _____ C:\WINDOWS\system32\Drivers\hitmanpro37.sys
2017-03-04 10:15 - 2017-03-04 11:32 - 00000000 ____D C:\Users\Inxi\Desktop\Scan-Logs
2017-03-03 07:52 - 2017-03-03 07:52 - 00003760 _____ C:\Users\Inxi\Desktop\Rkill3_3_17.txt
2017-03-03 07:50 - 2017-03-04 10:22 - 00000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job
2017-03-03 07:16 - 2017-03-03 07:16 - 00001239 _____ C:\Users\Inxi\Desktop\Scan-Abends_03_03.txt
2017-03-02 22:11 - 2017-03-04 11:23 - 00000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2017-03-02 22:00 - 2017-03-02 22:00 - 00000000 ____D C:\Users\Inxi\Downloads\Hearthstone
2017-03-02 21:59 - 2017-03-04 11:04 - 00000000 ____D C:\Antivirus
2017-03-02 21:58 - 2017-03-02 21:59 - 00000000 ____D C:\Users\Inxi\Downloads\Projektarbeit + Inventor
2017-03-02 21:39 - 2017-03-02 22:01 - 00000000 ____D C:\Users\Inxi\Downloads\Musik
2017-03-02 21:31 - 2017-03-02 21:31 - 00000000 ____D C:\ProgramData\Emsisoft
2017-03-02 21:29 - 2017-03-04 10:52 - 00000000 ____D C:\EEK
2017-03-02 21:17 - 2017-03-04 11:00 - 00000000 ____D C:\AdwCleaner
2017-03-02 21:12 - 2017-03-02 21:12 - 00001978 _____ C:\Users\Public\Desktop\HitmanPro.lnk
2017-03-02 21:12 - 2017-03-02 21:12 - 00000000 ____D C:\Program Files\HitmanPro
2017-03-02 21:10 - 2017-03-04 10:37 - 00000000 ____D C:\ProgramData\HitmanPro
2017-03-02 21:04 - 2017-03-04 11:35 - 00111544 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys
2017-03-02 21:04 - 2017-03-04 11:25 - 00186304 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMChameleon.sys
2017-03-02 21:04 - 2017-03-04 11:25 - 00092088 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2017-03-02 21:04 - 2017-03-04 11:25 - 00043968 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2017-03-02 21:03 - 2017-03-04 11:25 - 00251840 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2017-03-02 21:03 - 2017-03-02 22:11 - 00000000 ____D C:\ProgramData\Malwarebytes
2017-03-02 21:03 - 2017-03-02 21:03 - 00001912 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2017-03-02 21:03 - 2017-03-02 21:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2017-03-02 21:03 - 2017-03-02 21:03 - 00000000 ____D C:\Program Files\Malwarebytes
2017-03-02 21:03 - 2017-02-24 06:23 - 00077408 _____ C:\WINDOWS\system32\Drivers\mbae64.sys
2017-03-02 20:51 - 2017-03-04 10:23 - 00003760 _____ C:\Users\Inxi\Desktop\Rkill.txt
2017-03-02 20:44 - 2017-03-02 20:49 - 00285804 _____ C:\TDSSKiller.3.1.0.12_02.03.2017_20.44.29_log.txt
2017-03-02 20:20 - 2017-03-02 20:18 - 00078192 _____ C:\Users\Inxi\Desktop\1488476785_1_02.xml
2017-03-02 18:43 - 2017-03-02 18:43 - 00000336 _____ C:\WINDOWS\system32\㩃坜义佄南呜䵅屐浸㑬㜳⸰浴p翺
2017-03-02 18:43 - 2017-03-02 18:43 - 00000332 _____ C:\WINDOWS\system32\㩃坜义佄南呜䵅屐浸㍬䕂⸵浴p翺
2017-03-02 18:43 - 2017-03-02 18:43 - 00000326 _____ C:\WINDOWS\system32\㩃坜义佄南呜䵅屐浸㑬㠳⸱浴p翺
2017-02-26 19:48 - 2017-02-26 19:48 - 00029938 _____ C:\Users\Inxi\Downloads\rueckmeldung_152315_TCVXKXCZIHSD.pdf
2017-02-24 16:38 - 2017-02-24 16:38 - 00000000 ____D C:\ProgramData\PC-Doctor for Windows
2017-02-24 16:38 - 2017-02-24 16:38 - 00000000 ____D C:\Program Files\Dell Support Center
2017-02-22 19:31 - 2017-02-22 19:31 - 01876505 _____ C:\Users\Inxi\Downloads\Übungen mit Kurzhanteln.pdf
2017-02-12 00:15 - 2017-02-12 00:15 - 01724748 _____ C:\Users\Inxi\Downloads\TM2-V202.pdf
2017-02-09 19:38 - 2017-02-09 19:38 - 00394680 _____ C:\Users\Inxi\Downloads\Formelsammlung_Bertram.pdf
2017-02-06 18:37 - 2017-02-06 18:37 - 00000759 _____ C:\WINDOWS\!sfxunst.ini
2017-02-06 18:37 - 2017-02-06 18:37 - 00000000 ____D C:\Users\Inxi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Lavalamp Screensaver
2017-02-06 18:37 - 2003-03-24 11:39 - 00044842 _____ (e-merge GmbH) C:\WINDOWS\SXUNINST.EXE
2017-02-06 18:37 - 2003-03-24 11:04 - 00022016 _____ C:\WINDOWS\InstHelper.exe
2017-02-06 18:37 - 2003-03-18 14:44 - 03674112 _____ (German IT Development Ltd.) C:\WINDOWS\LavaSaver.scr
==================== Ein Monat: Geänderte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2017-03-04 11:34 - 2015-02-13 20:27 - 00000000 ____D C:\Users\Inxi\AppData\Local\Spotify
2017-03-04 11:32 - 2016-11-19 02:58 - 00000000 ____D C:\Users\Inxi\AppData\LocalLow\Mozilla
2017-03-04 11:32 - 2016-07-29 13:16 - 00000000 ____D C:\Program Files\Bitdefender Agent
2017-03-04 11:32 - 2015-02-13 20:27 - 00000000 ____D C:\Users\Inxi\AppData\Roaming\Spotify
2017-03-04 11:29 - 2016-09-30 16:11 - 09821480 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2017-03-04 11:29 - 2016-07-16 23:51 - 04998886 _____ C:\WINDOWS\system32\perfh007.dat
2017-03-04 11:29 - 2016-07-16 23:51 - 01358288 _____ C:\WINDOWS\system32\perfc007.dat
2017-03-04 11:25 - 2016-12-14 16:45 - 00008192 _____ C:\WINDOWS\SysWOW64\WDPABKP.dat
2017-03-04 11:25 - 2016-09-30 16:26 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-03-04 11:25 - 2016-09-30 16:10 - 00000000 ____D C:\ProgramData\NVIDIA
2017-03-04 11:25 - 2016-07-16 07:04 - 01310720 _____ C:\WINDOWS\system32\config\BBI
2017-03-04 11:25 - 2014-12-31 15:10 - 00000000 ____D C:\ProgramData\Western Digital
2017-03-04 10:20 - 2014-12-31 14:34 - 00817452 _____ C:\bdlog.txt
2017-03-04 10:07 - 2015-11-03 11:20 - 00000000 ____D C:\Users\Inxi\AppData\Local\Akamai
2017-03-03 23:02 - 2016-09-30 16:09 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2017-03-03 22:47 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\AppReadiness
2017-03-02 22:49 - 2016-07-16 07:04 - 00065536 _____ C:\WINDOWS\system32\config\ELAM
2017-03-02 21:50 - 2016-09-30 16:11 - 00000000 ____D C:\Users\Inxi
2017-03-02 21:50 - 2016-09-30 16:09 - 00468112 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2017-03-02 21:50 - 2015-11-04 09:11 - 00000344 _____ C:\WINDOWS\Tasks\HPCeeScheduleForInxi.job
2017-03-02 20:49 - 2015-02-13 20:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
2017-03-02 20:48 - 2015-02-13 20:09 - 00000000 ____D C:\Program Files (x86)\Microsoft Office
2017-03-02 20:48 - 2009-07-14 03:34 - 00000387 _____ C:\WINDOWS\win.ini
2017-03-02 20:18 - 2015-08-24 11:46 - 00000000 ____D C:\Users\Inxi\Documents\Outlook-Dateien
2017-03-02 18:24 - 2016-12-16 08:52 - 00003272 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task v2
2017-03-02 18:24 - 2016-07-28 20:47 - 00002421 _____ C:\Users\Inxi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2017-03-02 18:24 - 2016-07-28 20:47 - 00000000 ___RD C:\Users\Inxi\OneDrive
2017-03-02 16:39 - 2016-07-16 12:47 - 00000000 ___HD C:\Program Files\WindowsApps
2017-03-02 12:35 - 2016-09-30 16:26 - 00003232 _____ C:\WINDOWS\System32\Tasks\HPCeeScheduleForInxi
2017-03-01 23:02 - 2015-02-21 12:37 - 00000000 ____D C:\Users\Inxi\AppData\Local\Battle.net
2017-03-01 20:03 - 2015-02-21 12:38 - 00000000 ____D C:\Program Files (x86)\Diablo III
2017-03-01 19:05 - 2016-08-02 19:19 - 00000000 ____D C:\Program Files (x86)\Hearthstone
2017-03-01 19:02 - 2015-02-21 12:37 - 00000000 ____D C:\Program Files (x86)\Battle.net
2017-02-26 22:37 - 2015-02-13 20:25 - 00000000 ____D C:\Program Files (x86)\Steam
2017-02-24 16:38 - 2015-02-26 00:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell
2017-02-23 18:39 - 2014-12-31 14:00 - 00000000 ____D C:\WINDOWS\system32\MRT
2017-02-23 18:37 - 2014-12-31 14:00 - 138020592 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2017-02-23 18:04 - 2015-11-02 08:54 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2017-02-23 12:58 - 2016-08-16 12:58 - 00000000 ____D C:\Program Files (x86)\Overwolf
2017-02-22 20:35 - 2016-07-16 12:36 - 00000000 ____D C:\WINDOWS\CbsTemp
2017-02-18 12:52 - 2015-04-29 00:36 - 00000884 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2017-02-18 01:52 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\SysWOW64\Macromed
2017-02-18 01:52 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\Macromed
2017-02-06 20:48 - 2016-07-16 12:49 - 00835576 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2017-02-06 20:48 - 2016-07-16 12:49 - 00177656 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======
2015-06-28 17:22 - 2015-06-28 17:22 - 0000268 ___RH () C:\Users\Inxi\AppData\Roaming\PrintingModule
2015-06-28 17:22 - 2015-06-28 17:22 - 0000268 ___RH () C:\Users\Inxi\AppData\Roaming\PrintsService
2015-04-14 18:51 - 2015-04-14 18:51 - 28579392 _____ (Sony Mobile Communications ) C:\Users\Inxi\AppData\Local\pcc.exe
2017-01-18 17:31 - 2017-01-18 17:31 - 0007608 _____ () C:\Users\Inxi\AppData\Local\Resmon.ResmonCfg
2016-12-10 12:17 - 2016-12-10 12:17 - 0387571 _____ () C:\ProgramData\cl.1481368159.bdinstall.bin
2016-12-10 12:17 - 2016-12-10 12:17 - 0055847 _____ () C:\ProgramData\dm.1481368655.bdinstall.bin
2016-12-10 12:20 - 2016-12-10 12:20 - 0035254 _____ () C:\ProgramData\dm.1481368793.bdinstall.bin
2015-06-28 17:22 - 2015-06-28 17:22 - 0000012 ___RH () C:\ProgramData\laserjet
2015-06-28 17:22 - 2015-06-28 17:22 - 0000012 ___RH () C:\ProgramData\manual
2015-11-03 15:45 - 2015-11-03 15:45 - 0000153 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.351.32.bc
2015-06-28 17:20 - 2015-08-28 18:31 - 0000020 ____H () C:\ProgramData\PKP_DLbx.DAT
2015-06-28 17:22 - 2015-06-28 17:22 - 0000020 ____H () C:\ProgramData\PKP_DLck.DAT
2015-06-28 17:22 - 2015-06-28 17:22 - 0000268 ___RH () C:\ProgramData\Quartz Composer
2015-06-28 17:22 - 2015-06-28 17:22 - 0000268 ___RH () C:\ProgramData\Radio Sounds
==================== Bamital & volsnap ======================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert
C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert
C:\WINDOWS\explorer.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert
C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert
C:\WINDOWS\system32\services.exe => Datei ist digital signiert
C:\WINDOWS\system32\User32.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert
C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert
C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert
C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert
LastRegBack: 2017-02-22 20:35
==================== Ende von FRST.txt ============================
|
|
04.03.2017, 12:33
| #2 |
| | Nach Trojan.GenericKD.1704971 Fund, AdwCleaner Fund in C:\End -> Folgefund Applni.DLLs Hier der dritte Teil.
__________________Addition.txt Code:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 03-03-2017
durchgeführt von Inxi (04-03-2017 11:40:27)
Gestartet von C:\Users\Inxi\Downloads
Windows 10 Home Version 1607 (X64) (2016-09-30 15:27:30)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
Administrator (S-1-5-21-3175323499-3369025214-2853444423-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3175323499-3369025214-2853444423-503 - Limited - Disabled)
Gast (S-1-5-21-3175323499-3369025214-2853444423-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-3175323499-3369025214-2853444423-1003 - Limited - Enabled)
Inxi (S-1-5-21-3175323499-3369025214-2853444423-1000 - Administrator - Enabled) => C:\Users\Inxi
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}
AV: Bitdefender Virenschutz (Enabled - Up to date) {3FB17364-4FCC-0FA7-6BBF-973897395371}
AS: Bitdefender Spyware-Schutz (Enabled - Up to date) {84D09280-69F6-0029-510F-AC4AECBE19CC}
AS: Malwarebytes (Enabled - Up to date) {98619B37-4FC4-67F2-1C99-EEF6D47DBD96}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Bitdefender Firewall (Enabled) {078AF241-05A3-0EFF-40E0-3E0D69EA140A}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
64 Bit HP CIO Components Installer (Version: 7.2.4 - Hewlett-Packard) Hidden
A360 Desktop (HKLM\...\{A74E6AC6-623F-4DFE-B362-32C7986EE871}) (Version: 6.2.10.1700 - Autodesk)
Adobe Acrobat Reader DC - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AC0F074E4100}) (Version: 15.023.20070 - Adobe Systems Incorporated)
Adobe Flash Player 24 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 24.0.0.221 - Adobe Systems Incorporated)
Akamai NetSession Interface (HKU\S-1-5-21-3175323499-3369025214-2853444423-1000\...\Akamai) (Version: - Akamai Technologies, Inc)
ALTools Update (HKLM-x32\...\ALUpdate_is1) (Version: v11.4 - ESTsoft Corp.)
ALZip 8.51 (HKLM-x32\...\ALZip_is1) (Version: v8.51 - ESTsoft Corp.)
AutoCAD 2014 - Deutsch (German) (Version: 19.1.108.0 - Autodesk) Hidden
AutoCAD 2014 - Deutsch (German) (Version: 19.1.18.0 - Autodesk) Hidden
AutoCAD 2014 Language Pack - Deutsch (German) (Version: 19.1.18.0 - Autodesk) Hidden
Autodesk 3ds Max 2016 (HKLM\...\Autodesk 3ds Max 2016) (Version: 18.0.873.0 - Autodesk)
Autodesk 3ds Max 2016 (Version: 18.0.873.0 - Autodesk) Hidden
Autodesk 3ds Max 2016 Populate Data (HKLM\...\{57E92DED-DC7C-41E5-B9E1-76D83BD2EABE}) (Version: 18.0.0.0 - Autodesk)
Autodesk Advanced Material Library Image Library 2016 (HKLM-x32\...\{94AD53E7-493B-4291-8714-7A3B761D2783}) (Version: 6.3.0.19 - Autodesk)
Autodesk App Manager (HKLM-x32\...\{C070121A-C8C5-4D52-9A7D-D240631BD433}) (Version: 1.1.0 - Autodesk)
Autodesk Application Manager (HKLM-x32\...\Autodesk Application Manager) (Version: 5.0.142.9 - Autodesk)
Autodesk AutoCAD 2014 - Deutsch (German) (HKLM\...\AutoCAD 2014 - Deutsch (German)) (Version: 19.1.18.0 - Autodesk)
Autodesk AutoCAD 2014 - Deutsch (German) SP1 (HKLM\...\AutoCAD 2014 - Deutsch (German) SP1) (Version: 1 - Autodesk)
Autodesk Backburner 2016 (HKLM-x32\...\{8C5F38D2-9EFE-49A4-B3F5-BF3210FED168}) (Version: 16.0.0.0 - Autodesk)
Autodesk Civil View for 3ds Max 2016 64-bit (HKLM\...\{1C4FFAF0-6DBB-4F7A-A386-46747D060826}) (Version: 18.0.0.0 - Autodesk)
Autodesk Configurator 360 addin (HKLM-x32\...\{563941AA-C055-4FAA-8B04-A4E024A61F7E}) (Version: 20.0.10300 - Autodesk)
Autodesk Content Service (HKLM-x32\...\Autodesk Content Service) (Version: 3.1.3.0 - Autodesk)
Autodesk Content Service (x32 Version: 3.1.3.0 - Autodesk) Hidden
Autodesk Content Service Language Pack (x32 Version: 3.1.3.0 - Autodesk) Hidden
Autodesk Design Review 2013 (HKLM-x32\...\Autodesk Design Review 2013) (Version: 13.0.0.82 - Autodesk, Inc.)
Autodesk Design Review 2013 (x32 Version: 13.0.0.82 - Autodesk, Inc.) Hidden
Autodesk DirectConnect 2016 64-bit (HKLM\...\Autodesk DirectConnect 2016 64-bit) (Version: 10.0.110.1 - Autodesk)
Autodesk DirectConnect 2016 64-bit (Version: 10.0.110.1 - Autodesk) Hidden
Autodesk Download Manager (HKLM-x32\...\{EC92633C-8F08-470A-BCDF-3FE5FD778C8D}) (Version: 4.0.14.0 - Autodesk, Inc.)
Autodesk DWG TrueView 2014 (HKLM\...\DWG TrueView 2014) (Version: 19.1.18.0 - Autodesk)
Autodesk DWG TrueView 2016 - English (HKLM\...\DWG TrueView 2016 - English) (Version: 20.1.49.0 - Autodesk)
Autodesk Featured Apps (HKLM-x32\...\{F732FEDA-7713-4428-934B-EF83B8DD65D0}) (Version: 1.1.0 - Autodesk)
Autodesk Inventor Content Center Libraries 2014 (Desktop Content) (HKLM\...\{B46DECD1-1864-4EF1-0000-22D71E81877C}) (Version: 18.0.17000.0000 - Autodesk)
Autodesk Inventor Content Center Libraries 2016 (Desktop Content) (HKLM\...\{B46DECD1-2064-4EF1-0000-22D71E81877C}) (Version: 20.0.13800.0000 - Autodesk)
Autodesk Inventor Electrical Catalog Browser 2016 - Deutsch (German) (HKLM\...\Autodesk Inventor Electrical Catalog Browser 2016 - Deutsch (German)) (Version: 13.0.46.0 - Autodesk)
Autodesk Inventor Electrical Catalog Browser 2016 - Deutsch (German) (Version: 13.0.46.0 - Autodesk) Hidden
Autodesk Inventor Electrical Catalog Browser 2016 Language Pack - Deutsch (German) (Version: 13.0.46.0 - Autodesk) Hidden
Autodesk Inventor Professional 2016 - Deutsch (German) (HKLM\...\Autodesk Inventor Professional 2016) (Version: 20.0.13800.0000 - Autodesk)
Autodesk Inventor Professional 2016 (Version: 20.0.13800.0000 - Autodesk) Hidden
Autodesk Inventor Professional 2016 Language Pack - Deutsch (German) (Version: 20.0.13800.0000 - Autodesk) Hidden
Autodesk Inventor Server Engine for 3ds Max 2016 (HKLM\...\{9167CA34-4E58-49E3-8892-3C439739D2D3}) (Version: 18.0 - Autodesk)
Autodesk Material Library 2014 (HKLM-x32\...\{644F9B19-A462-499C-BF4D-300ABC2A28B1}) (Version: 4.0.19.0 - Autodesk)
Autodesk Material Library 2016 (HKLM-x32\...\{29A7D6EC-63C2-42FD-8143-5812ABD2923F}) (Version: 6.3.0.19 - Autodesk)
Autodesk Material Library Base Resolution Image Library 2014 (HKLM-x32\...\{51BF3210-B825-4092-8E0D-66D689916E02}) (Version: 4.0.19.0 - Autodesk)
Autodesk Material Library Base Resolution Image Library 2016 (HKLM-x32\...\{6B4CFC6E-ECB0-47FE-95D3-65C680ED0687}) (Version: 6.3.0.19 - Autodesk)
Autodesk Material Library Low Resolution Image Library 2014 (HKLM-x32\...\{5C29CC1F-218F-4C30-948A-11066CAC59FB}) (Version: 4.0.19.0 - Autodesk)
Autodesk Material Library Low Resolution Image Library 2016 (HKLM-x32\...\{FA5DF4D1-CD59-4183-B3D4-779A56498786}) (Version: 6.3.0.15 - Autodesk)
Autodesk Material Library Medium Resolution Image Library 2016 (HKLM-x32\...\{415A5A54-325E-4815-9940-62A889CA3877}) (Version: 6.3.0.19 - Autodesk)
Autodesk Maya 2016 (HKLM\...\Autodesk Maya 2016) (Version: 16.0.1312.0 - Autodesk)
Autodesk Maya 2016 (Version: 16.0.1312.0 - Autodesk) Hidden
Autodesk MotionBuilder 2016 (HKLM\...\Autodesk MotionBuilder 2016) (Version: 16.0.0.17 - Autodesk)
Autodesk MotionBuilder 2016 (Version: 16.0.0.17 - Autodesk) Hidden
Autodesk Mudbox 2016 (HKLM\...\Autodesk Mudbox 2016) (Version: 10.0.0.166 - Autodesk)
Autodesk Mudbox 2016 (Version: 10.0.0.166 - Autodesk) Hidden
Autodesk ReCap (HKLM\...\Autodesk ReCap) (Version: 1.0.43.27 - Autodesk)
Autodesk ReCap (Version: 1.0.43.27 - Autodesk) Hidden
Autodesk ReCap 2016 (HKLM\...\Autodesk ReCap 2016) (Version: 1.5.0.33 - Autodesk)
Autodesk ReCap 2016 (Version: 1.5.0.33 - Autodesk) Hidden
Autodesk ReCap Language Pack-English (Version: 1.0.43.27 - Autodesk) Hidden
Autodesk Revit Interoperability for 3ds Max 2016 (HKLM\...\Autodesk Revit Interoperability for 3ds Max 2016) (Version: 16.0.421.0 - Autodesk)
Autodesk Revit Interoperability for 3ds Max 2016 (Version: 16.0.421.0 - Autodesk) Hidden
Autodesk Revit Interoperability for Inventor 2014 (HKLM\...\Autodesk Revit Interoperability for Inventor 2014) (Version: 13.02.15161 - Autodesk)
Autodesk Revit Interoperability for Inventor 2014 (Version: 13.02.15161 - Autodesk) Hidden
Autodesk Revit Interoperability for Inventor 2016 (HKLM\...\Autodesk Revit Interoperability for Inventor 2016) (Version: 16.0.421.0 - Autodesk)
Autodesk Revit Interoperability for Inventor 2016 (Version: 16.0.421.0 - Autodesk) Hidden
Autodesk Suite Exclusives 2016 (HKLM\...\{D0F82C64-3E66-4B12-B12C-3F79C0F731C1}) (Version: 3.0.0.0 - Autodesk)
Autodesk Vault Basic 2014 (Client) (HKLM\...\Autodesk Vault Basic 2014 (Client)) (Version: 18.0.86.0 - Autodesk)
Autodesk Vault Basic 2014 (Client) (Version: 18.0.86.0 - Autodesk) Hidden
Autodesk Vault Basic 2014 (Client) German Language Pack (Version: 18.0.86.0 - Autodesk) Hidden
Autodesk Vault Basic 2016 (Client) (HKLM\...\Autodesk Vault Basic 2016 (Client)) (Version: 21.0.50.0 - Autodesk)
Autodesk Vault Basic 2016 (Client) (Version: 21.0.50.0 - Autodesk) Hidden
Autodesk Vault Basic 2016 (Client) German Language Pack (Version: 21.0.50.0 - Autodesk) Hidden
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Bitdefender Agent (HKLM\...\Bitdefender Agent) (Version: 20.0.29.1517 - Bitdefender)
Bitdefender Internet Security 2017 (HKLM\...\Bitdefender) (Version: 21.0.22.1050 - Bitdefender)
Broken Sword 5 - the Serpent's Curse (HKLM-x32\...\Steam App 262940) (Version: - Revolution Software Ltd)
Canon MP Navigator EX 2.0 (HKLM-x32\...\MP Navigator EX 2.0) (Version: - )
Canon MP Navigator EX 4.0 (HKLM-x32\...\MP Navigator EX 4.0) (Version: - )
CanoScan LiDE 200 Scanner Driver (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_CNQ4807) (Version: - )
CanoScan LiDE 210 Scanner Driver (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_CNQ4809) (Version: - )
CDBurnerXP (HKLM-x32\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.7.6389 - CDBurnerXP)
Cura 15.04.4 (HKLM-x32\...\Cura_15.04.4) (Version: - )
Cura 15.04.6 (HKLM-x32\...\Cura_15.04.6) (Version: - )
Dell Command | Update (HKLM-x32\...\{EC542D5D-B608-4145-A8F7-749C02BE6D94}) (Version: 2.2.0 - Dell Inc.)
Dell Data Vault (Version: 4.3.9.0 - Dell Inc.) Hidden
Dell SupportAssist (HKLM\...\PC-Doctor for Windows) (Version: 1.3.6855.72 - Dell)
Dell SupportAssistAgent (HKLM-x32\...\{27130E51-9555-408B-8134-7BFF54EDE27B}) (Version: 1.3.0.72 - Dell)
Dell Update - SupportAssist Update Plugin (HKLM\...\{92F651D9-4431-469E-9B11-299D007AF656}) (Version: 2.0.2.1835 - Dell Inc.)
Dell Update (HKLM-x32\...\{DB82968B-57A4-4397-81A5-ECAB21B5DFCD}) (Version: 1.7.1015.0 - Dell Inc.)
Diablo III (HKLM-x32\...\Diablo III) (Version: - Blizzard Entertainment)
Divinity: Original Sin (HKLM-x32\...\Steam App 230230) (Version: - Larian Studios)
Dota 2 (HKLM\...\Steam App 570) (Version: - Valve)
Dota 2 Workshop Tools Alpha (HKLM-x32\...\Steam App 316570) (Version: - )
DWG TrueView 2014 (Version: 19.1.18.0 - Autodesk) Hidden
DWG TrueView 2016 - English (Version: 20.1.49.0 - Autodesk) Hidden
Eco Materials Adviser for Autodesk Inventor 2014 (64-bit) (HKLM\...\{530B8614-C5DE-475B-AF6F-71BED461552C}) (Version: 4.4.1.0 - Granta Design Limited)
Eco Materials Adviser for Autodesk Inventor 2016 (64-bit) (HKLM\...\{1A56BE00-916E-432D-A576-EB00D2FF8450}) (Version: 5.6.4.44 - Granta Design Limited)
Endless Legend (HKLM-x32\...\Steam App 289130) (Version: - AMPLITUDE Studios)
FARO LS 1.1.501.0 (64bit) (HKLM-x32\...\{8A470330-70B2-49AD-86AF-79885EF9898A}) (Version: 5.1.0.30630 - FARO Scanner Production)
FARO LS 1.1.503.3 (64bit) (HKLM-x32\...\{1C05E654-FB81-4274-BF32-292E3707701D}) (Version: 5.3.3.38662 - FARO Scanner Production)
Firewatch (HKLM\...\Steam App 383870) (Version: - Campo Santo)
Game of Thrones - A Telltale Games Series (HKLM-x32\...\Steam App 330840) (Version: - Telltale Games)
Grim Dawn (HKLM\...\Steam App 219990) (Version: - Crate Entertainment)
Hearthstone (HKLM-x32\...\Hearthstone) (Version: - Blizzard Entertainment)
HitmanPro 3.7 (HKLM\...\HitmanPro37) (Version: 3.7.15.281 - SurfRight B.V.)
HP LaserJet Professional CP1520 Series (HKLM-x32\...\{5C069542-CA13-4f1b-B90C-28C6430F4992}) (Version: - Hewlett-Packard)
HP Support Assistant (HKLM-x32\...\{79C54A05-F146-4EA0-8A70-D4EFE6181E52}) (Version: 8.3.50.9 - Hewlett-Packard Company)
HP Support Solutions Framework (HKLM-x32\...\{8F1A441E-AD6D-4732-BD6A-F38D5F1D1E47}) (Version: 12.5.32.203 - Hewlett-Packard Company)
HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
HPLaserJetHelp_LearnCenter (HKLM-x32\...\{E15C68A1-9CA5-44AC-A7F7-6C0673F196A8}) (Version: 1.02.0000 - Hewlett-Packard)
HPLJUT (x32 Version: 1.00.0012 - HP) Hidden
hppCP1520LaserJetService (x32 Version: 001.008.00477 - Hewlett-Packard) Hidden
hppLaserJetService (x32 Version: 002.015.00599 - Hewlett-Packard) Hidden
hppTLBXFXCP1520 (x32 Version: 001.012.00948 - Hewlett-Packard) Hidden
hpzTLBXFX (x32 Version: 006.015.01163 - Hewlett-Packard) Hidden
Innkeeper (HKU\S-1-5-21-3175323499-3369025214-2853444423-1000\...\Innkeeper) (Version: 0.3.4 - Curse Inc.)
InstallShieldHiRezCurrent (HKLM-x32\...\{9433FC1C-7405-433C-A26D-81076293BBCE}) (Version: 3.0.0.0 - Hi-Rez Studios)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 7.0.0.1144 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 8.15.10.2455 - Intel Corporation)
Intel® PROSet/Wireless WiFi-Software (HKLM\...\{181BBF43-CA17-4E1A-A78D-81E67A57B8A4}) (Version: 15.02.0000.1258 - Intel Corporation)
Keep Talking and Nobody Explodes (HKLM-x32\...\Steam App 341800) (Version: - Steel Crate Games)
Lavalamp Screensaver v1.2.0.0 (Demo Version) (HKLM-x32\...\Lavalamp Screensaver v1.2.0.0 (Demo Version)) (Version: - )
Malwarebytes Version 3.0.6.1469 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.0.6.1469 - Malwarebytes)
Microsoft Access database engine 2010 (English) (HKLM\...\{90140000-00D1-0409-1000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Office Professional 2010 (HKLM-x32\...\Office14.SingleImage) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-3175323499-3369025214-2853444423-1000\...\OneDriveSetup.exe) (Version: 17.3.6798.0207 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50901.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23918 (HKLM-x32\...\{dab68466-3a7d-41a8-a5cf-415e3ff8ef71}) (Version: 14.0.23918.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23918 (HKLM-x32\...\{2e085fd2-a3e4-4b39-8e10-6b8d35f55244}) (Version: 14.0.23918.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Visual Studio 2010-Tools für Office-Laufzeit (x64) Language Pack - DEU (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - DEU) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft WSE 3.0 Runtime (HKLM-x32\...\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}) (Version: 3.0.5305.0 - Microsoft Corp.)
Mozilla Firefox 51.0.1 (x86 de) (HKLM-x32\...\Mozilla Firefox 51.0.1 (x86 de)) (Version: 51.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 51.0.1.6234 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
NEC Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\InstallShield_{D7BF9739-8A68-4335-BBEE-37752AD9E86B}) (Version: 1.0.17.0 - NEC Electronics Corporation)
NEC Electronics USB 3.0 Host Controller Driver (x32 Version: 1.0.17.0 - NEC Electronics Corporation) Hidden
NVIDIA 3D Vision Treiber 355.60 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 355.60 - NVIDIA Corporation)
NVIDIA Grafiktreiber 355.60 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 355.60 - NVIDIA Corporation)
NVIDIA PhysX (HKLM-x32\...\{8B922CF8-8A6C-41CE-A858-F1755D7F5D29}) (Version: 9.12.1031 - NVIDIA Corporation)
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
Origin (HKLM-x32\...\Origin) (Version: 10.3.5.6379 - Electronic Arts, Inc.)
Overwolf (HKLM-x32\...\Overwolf) (Version: 0.102.217.0 - Overwolf Ltd.)
Path of Exile (HKLM\...\Steam App 238960) (Version: - Grinding Gear Games)
PAYDAY 2 (HKLM\...\Steam App 218620) (Version: - OVERKILL - a Starbreeze Studio.)
PDF24 Creator 6.9.2 (HKLM-x32\...\{81A6F461-0DBA-4F12-B56F-0E977EC10576}_is1) (Version: - PDF24.org)
RAPID Mode (Version: 1.0.1.81 - Samsung Electronics Co., Ltd.) Hidden
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.48.823.2011 - Realtek)
Realtek USB Audio (HKLM-x32\...\{0A46A65D-89AC-464C-8026-3CD44960BD04}) (Version: 6.3.9600.41 - Realtek Semiconductor Corp.)
Renesas Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\InstallShield_{5442DAB8-7177-49E1-8B22-09A049EA5996}) (Version: 2.1.27.0 - Renesas Electronics Corporation)
Renesas Electronics USB 3.0 Host Controller Driver (x32 Version: 2.1.27.0 - Renesas Electronics Corporation) Hidden
Samsung Magician (HKLM-x32\...\{29AE3F9F-7158-4ca7-B1ED-28A73ECDB215}_is1) (Version: 4.5.1 - Samsung Electronics)
Scrolls (HKLM-x32\...\{F7F74F7F-C458-4B7C-A6F4-80A28ED7AF0B}) (Version: 1.0.2.0 - Mojang)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version: - Microsoft)
SketchUp Import for AutoCAD 2014 (HKLM-x32\...\{644E9589-F73A-49A4-AC61-A953B9DE5669}) (Version: 1.1.0 - Autodesk)
Sony Mobile Update Engine (HKLM-x32\...\Update Engine) (Version: 2.16.15.201610281456 - Sony Mobile Communications Inc.)
Sony PC Companion 2.10.303 (HKLM-x32\...\{F09EF8F2-0976-42C1-8D9D-8DF78337C6E3}) (Version: 2.10.303 - Sony)
Space Farmers (HKLM-x32\...\Steam App 271570) (Version: - BumpkinBrothers)
Spotify (HKU\S-1-5-21-3175323499-3369025214-2853444423-1000\...\Spotify) (Version: 1.0.49.125.g72ee7853 - Spotify AB)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
The Wolf Among Us (HKLM\...\Steam App 250320) (Version: - Telltale Games)
Titan Quest (HKLM-x32\...\{412B69AF-C352-4F6F-A318-B92B3CB9ACC6}) (Version: 1.00.0000 - Iron Lore)
Titan Quest Immortal Throne (HKLM-x32\...\{B5C5C17E-FEF6-4062-8151-A427AE8AF9D7}) (Version: 1.00.0000 - Iron Lore)
Trine (HKLM\...\Steam App 35700) (Version: - Frozenbyte)
Tunngle (HKLM-x32\...\Tunngle_is1) (Version: 5.7 - Tunngle.net GmbH)
Uplay (HKLM-x32\...\Uplay) (Version: 13.0 - Ubisoft)
Usb GamePad (HKLM-x32\...\{DEC7CD2E-2BB5-40C3-9592-078F64677E6C}) (Version: 1.00.0000 - )
Valiant Hearts: The Great War™ / Soldats Inconnus : Mémoires de la Grande Guerre™ (HKLM-x32\...\Steam App 260230) (Version: - Ubisoft Montpellier)
Vektoris3D 2.5 PLUS 2.5.2 (HKLM-x32\...\0531-3074-2651-5065) (Version: 2.5.2 - kapieren.de)
Visual C++ 2008 - x64 (KB958357) - v9.0.30729.177 (HKLM-x32\...\{6DA2B636-698A-3294-BF4A-B5E11B238CDD}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation)
Visual C++ 2008 - x64 (KB958357) - v9.0.30729.177 (HKLM-x32\...\{8CCEA24C-51AE-3B71-9092-7D0C44DDA2DF}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation)
Visual C++ 2008 - x64 (KB958357) - v9.0.30729.177 (HKLM-x32\...\{C3A57BB3-9AA6-3F6F-9395-6C062BDD5FC4}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation)
Visual C++ 2008 - x64 (KB958357) - v9.0.30729.177 (HKLM-x32\...\{F6F09DD8-F39B-3A16-ADB9-C9E6B56903F9}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation)
Visual C++ 2008 - x86 (KB958357) - v9.0.30729.177 (HKLM-x32\...\{04B34E21-5BEE-3D2B-8D3D-E3E80D253F64}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation)
Visual C++ 2008 - x86 (KB958357) - v9.0.30729.177 (HKLM-x32\...\{14866AAD-1F23-39AC-A62B-7091ED1ADE64}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation)
Visual C++ 2008 - x86 (KB958357) - v9.0.30729.177 (HKLM-x32\...\{4B90093A-5D9C-3956-8ABB-95848BE6EFAD}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation)
Visual C++ 2008 - x86 (KB958357) - v9.0.30729.177 (HKLM-x32\...\{B42E259C-E4D4-37F1-A1B2-EB9C4FC5A04D}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.1 - VideoLAN)
WD Quick View (HKLM-x32\...\{BE1B25F9-5A51-4DB8-81FA-CE0CABC14D07}) (Version: 2.4.10.17 - Western Digital Technologies, Inc.)
WD SmartWare (HKLM\...\{07179D37-D5FE-4373-90D9-A25B992EFB3E}) (Version: 1.4.5.5 - Western Digital)
WD SmartWare (HKLM\...\{FECF90E3-FDEA-4A87-8A06-2683388C69C4}) (Version: 2.4.10.17 - Western Digital Technologies, Inc.)
WD SmartWare Installer (HKLM-x32\...\{647175e1-9944-4a82-bac1-102c95f0a99a}) (Version: 2.4.10.17 - Western Digital Technologies, Inc.)
Windows Driver Package - Arduino LLC (www.arduino.cc) Arduino USB Driver (01/04/2013 1.0.0.0) (HKLM\...\1E3EA5624DD04BEFECF3FFF6D3A21CCE9CD70A91) (Version: 01/04/2013 1.0.0.0 - Arduino LLC (www.arduino.cc))
Worms Clan Wars (HKLM-x32\...\Steam App 233840) (Version: - Team17 Digital Ltd)
Xvid Video Codec (HKLM-x32\...\Xvid Video Codec 1.3.2) (Version: 1.3.2 - Xvid Team)
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{00F064D8-FEC3-48ac-B07D-39C314D1727B}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\ServiceModule.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{0215A4C0-5431-4FD0-9B06-46589B5C4939}\InprocServer32 -> axdb.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{048ED0E0-12CF-4C0F-9FFA-947C2FBE8C8E}\InprocServer32 -> axdb.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{071339A1-1946-44B2-B63E-50459B15DB86}\InprocServer32 -> axdb.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{073CB204-6B29-46FC-AB98-451F1D068741}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\TestServer.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{08A60FF7-BB37-44F4-9759-0ADA6C7B9CC9}\InprocServer32 -> axdb.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{0B38CACA-3D3C-48EA-BEB5-7D95F4F6EE15}\InprocServer32 -> axdb.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{0C3393F8-94F5-4B79-8C01-49A2D0CC0FE9}\InprocServer32 -> axdb.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{0D555CE0-304A-47A6-858B-B145209A3982}\InprocServer32 -> axdb.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{1029ABC3-2457-11D5-8E9D-0010B541CD80}\localserver32 -> "E:\Program Files\Autodesk\Inventor 2014\Compatibility\Bin\DbxBridge.exe" => Keine Datei
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{12545889-6D32-4424-9967-1E1D7BD1F809}\InprocServer32 -> axdb.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{13009989-EFB5-48C9-8BD2-943E0392BD71}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\RxAppCtrl.Ocx (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{14679E3B-C952-4998-8E13-4B1286E6DD99}\InprocServer32 -> axdb.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{1481B385-759A-4B00-9257-E96357563999}\InprocServer32 -> axdb.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{162EF0A1-5A33-46F2-ACCF-CA388B084A09}\InprocServer32 -> axdb.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{18A21864-E37B-42b9-9612-2C1E8C450A29}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\ServiceModule.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{1D625598-C876-4C51-8EF5-F9D8F96F62AA}\InprocServer32 -> axdb.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{1D6DFD6A-9E16-435A-9327-6FFEC6BA372F}\InprocServer32 -> axdb.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{1E5724EA-3423-4BD3-ABD6-46E650D2DC66}\InprocServer32 -> AcETransmit.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{1E8A29BA-827D-4031-A4A3-AE7999B402F6}\InprocServer32 -> axdb.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{1EA072EE-57FD-495E-889C-8243C3BDBDBC}\InprocServer32 -> axdb.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{1FD7F53F-7ED5-439C-9A77-A3821CD09E98}\InprocServer32 -> axdb.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{20E47D5B-529A-45BD-8E77-BF1A3064A008}\InprocServer32 -> axdb.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{21DB88B0-BFBF-11D4-8DE6-0010B541CAA8}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\iDrop.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{244298EC-E661-11d4-BC13-0010B5891E89}\InprocServer32 -> E:\Program Files\Autodesk\Inventor 2014\Bin\TI.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{2709544A-5B24-4F9F-A5DA-CEC7297D3A4E}\InprocServer32 -> axdb.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{2BCA857B-A18B-4AFA-B183-CC0E49C12058}\InprocServer32 -> axdb.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{2C74F89E-7421-46B4-BA54-F86F1BD9F237}\InprocServer32 -> axdb.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{2C7D1157-7D50-4A88-9777-5EBBA3189AB8}\InprocServer32 -> axdb.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{2F8377FC-50C1-44EF-AB7A-8FF1BB8EA277}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\ServiceModule.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{3497C2EC-5684-4B21-AF74-F6760E0221DC}\InprocServer32 -> axdb.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{3897B445-D5B8-410d-899A-9789B8ADB643}\localserver32 -> "E:\Program Files\Autodesk\Inventor 2014\Compatibility\Bin\DbxBridge.exe" => Keine Datei
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{38C8B14E-7879-4DA9-8C3F-8CAAC359293A}\InprocServer32 -> axdb.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{3C3F63EA-C7BA-11d4-8E60-0010B541CD80}\localserver32 -> "E:\Program Files\Autodesk\Inventor 2014\Compatibility\Bin\DbxBridge.exe" => Keine Datei
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{3faa4380-a399-11cf-a466-00805fe418f6}\InprocServer32 -> C:\Program Files\Autodesk\DWG TrueView 2014\en-US\dwgviewrficn.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{3FC94EB5-AEBD-4f3f-A2A4-B6CE57113C01}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\RxAppDocView.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{3FCEB42C-9B98-486A-BED7-FD7F3ADB7291}\InprocServer32 -> AcETransmit.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{40770568-0D5E-49D4-BE47-BC47A4F0B0A4}\InprocServer32 -> axdb.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{44A52280-AE56-490D-890C-89FB7279ED6B}\InprocServer32 -> axdb.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{45122C53-8483-4b62-B15A-EAA9FE5FC3D5}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\ServiceModule.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{46C56738-39C6-4240-8B9B-008CCD769A84}\InprocServer32 -> axdb.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{47179DDE-10AC-4737-97C9-8CE5379343EA}\InprocServer32 -> AcETransmit.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{475C7B4A-6964-4F9E-9708-05A16EAC31D0}\InprocServer32 -> axdb.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{48270F9E-CCF6-4C79-B6FF-267C960E6425}\InprocServer32 -> axdb.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{48FEFCD7-5D7C-4E4A-9F11-60E69A31D4B1}\InprocServer32 -> axdb.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{49998808-648A-4A9C-A7A5-B1672775D9AB}\InprocServer32 -> axdb.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{4A756F5F-CBA4-428B-B17F-AF80C0C8502D}\InprocServer32 -> axdb.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{4B40437B-8972-4444-BBE3-1588FF55F203}\InprocServer32 -> axdb.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{4BD03680-3C0F-4501-AFF7-3D008586917F}\InprocServer32 -> axdb.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{4C80573A-9150-11d2-B772-0060B0F159EF}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\RxAppDocView.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{4D29B490-49B2-11D0-93C3-7E0706000000}\localserver32 -> E:\Program Files\Autodesk\Inventor 2014\Bin\Inventor.exe => Keine Datei
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{4E6F2E83-E7F0-4333-9772-875EB733C820}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\RxTest.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{5544903C-2CCC-487C-91BB-F310B72A8E9B}\InprocServer32 -> AcETransmit.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{59A224A2-BEF8-4C89-96E0-83A5411ABB6C}\InprocServer32 -> axdb.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{622F6193-E4DD-46E6-BC66-2ED88E9FD28D}\InprocServer32 -> axdb.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{62FBB030-24C7-11D3-B78D-0060B0F159EF}\localserver32 -> E:\Program Files\Autodesk\Inventor 2014\Bin\Inventor.exe => Keine Datei
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{644190AE-BD8F-493F-B63D-C79404AC5E07}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\ServiceModule.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{6451051B-AD22-4C6A-ACCE-013A0E1DDBC3}\InprocServer32 -> axdb.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{64B99FDB-1D85-447F-98C7-569DBDA723DB}\InprocServer32 -> axdb.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{6A221957-2D85-42A7-8E19-BE33950D1DEB}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2014\acad.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{6BCE6F6E-C050-4F39-BD98-E2743949F724}\InprocServer32 -> axdb.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{6F56D7C9-18DD-4C15-9FA8-C54E3610EC40}\InprocServer32 -> axdb.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{6FDE7A70-351B-11d6-988B-0010B57A8BB7}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\DtBridge.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{6FDE7A71-351B-11d6-988B-0010B57A8BB7}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\DtBridge.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{6FDE7A72-351B-11d6-988B-0010B57A8BB7}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\DtBridge.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{6FDE7A73-351B-11d6-988B-0010B57A8BB7}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\DtBridge.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{6FDE7A74-351B-11d6-988B-0010B57A8BB7}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\DtBridge.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{6FDE7A77-351B-11d6-988B-0010B57A8BB7}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\DtCp.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{70DBCAE8-8C2B-450C-9E1D-43E4686C6512}\InprocServer32 -> axdb.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{713C0E8A-5AE8-4695-B442-5ED6C4FE5C42}\InprocServer32 -> axdb.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{714D325C-E9CE-44ab-A72A-36BB410BA19B}\localserver32 -> E:\Program Files\Autodesk\Inventor 2014\Bin\FEAFilesHandler.exe => Keine Datei
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{7293E009-3015-4AD3-96EC-D42C36B5FCE3}\InprocServer32 -> AcETransmit.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{72EC5CC5-88F3-45B1-A865-0A327DF58CC8}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\ServiceModule.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{72EFC580-D085-4B81-8C55-26A79E445338}\InprocServer32 -> axdb.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{750AEC19-2E4C-4ED9-9B9F-F9CAFCD060F3}\InprocServer32 -> axdb.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{76283A80-50DD-11D3-A7E3-00C04F79D7BC}\localserver32 -> E:\Program Files\Autodesk\Inventor 2014\Bin\Inventor.exe => Keine Datei
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{794199C5-827C-41C8-8CB2-3A1EA056AF5E}\InprocServer32 -> axdb.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{798391FE-4AF2-4851-9DDA-1F0D70C02A9E}\InprocServer32 -> axdb.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{7BA16B3F-1AB3-4BD7-B959-52C4B8504EE9}\InprocServer32 -> AcInetUI.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{7C239DAB-BC87-45F3-B7B1-FCC1541A235B}\InprocServer32 -> axdb.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{7DE1BE5C-CEBA-4F1D-ACBC-9CE11EE9A2A1}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2014\acad.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{81D07C3D-0350-11D3-B7C2-0060B0EC020B}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\RxAppCtrl.Ocx (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{834CE679-2E47-49DE-9E41-FEC87E9192EB}\InprocServer32 -> axdb.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{8421A29C-54B8-11D1-9837-0060B03C43C8}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\SolidObject.Dll ()
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{846217D0-8954-11D2-8DCD-0060B0C32531}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\UCxTextBtn.Ocx (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{846217D1-8954-11D2-8DCD-0060B0C32531}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\UCxTextBtn.Ocx (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{849AFB5B-D6C9-4924-A712-F7118FF9611F}\InprocServer32 -> axdb.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{85452F88-5071-492E-B850-2E3C586DCBD8}\InprocServer32 -> axdb.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{87F5CF8F-A06D-498F-A05F-E520E6B570DB}\InprocServer32 -> axdb.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{89F0FC31-3B1D-494B-A75B-6BD4FA527B8A}\InprocServer32 -> axdb.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{8AA16DFC-DFC6-4B51-8FA2-A5D812BE33BF}\InprocServer32 -> axdb.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{8B0E6BD9-610C-11D1-9842-0060B03C43C8}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\SolidObject.Dll ()
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{8C23B656-4E6E-4B45-9920-9617168D39A3}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\TestServer.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{8ED07FEF-E1B0-4CC3-B2BA-D354828AB952}\InprocServer32 -> axdb.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{97E17F04-17DF-11d5-BC38-0010B5891E89}\InprocServer32 -> E:\Program Files\Autodesk\Inventor 2014\Bin\BodyReceiver.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{988F4102-E6E3-4282-ACAC-55270827F2A8}\InprocServer32 -> axdb.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{9906CDFC-DB2C-4126-9422-13139B148495}\InprocServer32 -> axdb.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{9A21C6C5-27FC-4442-8590-575E7AFD73BB}\InprocServer32 -> axdb.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{9ECF83FB-23C5-43B6-83DE-93CFBDD74D4A}\InprocServer32 -> axdb.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{A58F47CC-FF65-4152-B0B1-666C643A5BFC}\InprocServer32 -> AcETransmit.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{A6A3D586-44CF-44C2-A92C-620BB713B4F2}\InprocServer32 -> axdb.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{ABBE3F83-D585-4A50-9B69-198B0F566F2E}\InprocServer32 -> axdb.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{AC5CECFA-F03A-41D2-A89C-704C44935941}\InprocServer32 -> axdb.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{B1560245-190E-4BBD-81DF-9B642D0E5325}\InprocServer32 -> axdb.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{B2A579E0-A797-40B1-8AEE-A8F6404719F8}\InprocServer32 -> axdb.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{B47196BC-D4AB-41BB-A771-543D67CFC9F5}\InprocServer32 -> AcETransmit.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{B53CEF4B-1A13-49DE-BBC5-A7100FB2F38C}\InprocServer32 -> axdb.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{B5EE2B68-9A23-4BCD-BB77-FEA6DFB24DD6}\InprocServer32 -> axdb.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{B6B5DC40-96E3-11d2-B774-0060B0F159EF}\localserver32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\Inventor.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{B80687F9-FA4C-4735-9DC4-E5715F2BC698}\InprocServer32 -> axdb.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{B8E7214B-25CA-4116-84CB-E86FB9625B36}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\ServiceModule.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{BAE5802A-CF21-4F9C-AE04-D98F4036AC31}\InprocServer32 -> axdb.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{BBF6A206-CB04-479D-96AE-349E1E83319A}\InprocServer32 -> axdb.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{BBF9FDF1-52DC-11D0-8C04-0800090BE8EC}\localserver32 -> E:\Program Files\Autodesk\Inventor 2014\Bin\Inventor.exe => Keine Datei
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{BC71DEA1-D6FB-48B8-AB06-D151C81BBCDD}\InprocServer32 -> axdb.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{BD0DEB94-63DB-4392-9420-6EEE05094B1F}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2014\acad.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{BE54741D-E02B-4572-93D6-105AF4EDE777}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\ServiceModule.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{BF224DC3-B602-4EEE-BFE9-9E4E0AED6837}\InprocServer32 -> axdb.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{BF4CC07E-E9BB-40D6-873F-855B211033B9}\InprocServer32 -> axdb.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{C061C82C-D041-4214-BB07-B608107CEFCB}\InprocServer32 -> axdb.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{C2D4ACCC-A3D1-4A0A-AD59-0DD8BA3D5EE1}\InprocServer32 -> axdb.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{C343ED84-A129-11d3-B799-0060B0F159EF}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\RxApprenticeServer.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{C8C18F89-794D-466B-8B97-95634D9890EF}\InprocServer32 -> axdb.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{C8EC7647-1E79-4F13-81D7-2EED803D0D22}\InprocServer32 -> axdb.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{C92F8F8C-8B2C-11d4-B872-0060B0EC020B}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\DtBridge.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{CC23CA32-9892-4FBA-A108-FE31CA0F35A6}\InprocServer32 -> axdb.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{CD865713-70D6-4E15-BB7B-9B99AD9DEB85}\InprocServer32 -> axdb.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{CFEE2BAF-14F9-4D23-853D-B6E2BCC14263}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\ServiceModule.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{D56F5AB3-9C4D-4F1A-A851-A671D9FE8C22}\InprocServer32 -> AcETransmit.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{D66873EA-AAE5-41CC-8DD2-8CE3228E9F89}\InprocServer32 -> axdb.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{D7A1987D-4A73-11D1-9A4B-080009DCE505}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\ColorButton.Ocx (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{D7A1987E-4A73-11D1-9A4B-080009DCE505}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\ColorButton.Ocx (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{D86B6C47-11F2-4D95-B635-EA575F0892FC}\InprocServer32 -> axdb.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{DA1F437C-9BD9-11d4-B87C-0060B0EC020B}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\DtBridge.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{DB207560-8449-4FAF-BDC2-61676EB012D4}\InprocServer32 -> axdb.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{DB5D476B-3FF4-4E9D-A606-1E2B473BE571}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\AcInetUI.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{DCA7356C-FF94-4b20-AE04-7AA6A8E14117}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\ServiceModule.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{DDA9A20F-5B56-49F5-9465-CE82FC199352}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\ServiceModule.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{DE6B563C-B074-4BF1-A8A0-B3FED8703E99}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\ServiceModule.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{DE74F5AD-DA2F-429F-BAF9-850A2808D585}\InprocServer32 -> axdb.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{DF6525C2-6358-4B07-813D-708120C5FE1A}\InprocServer32 -> axdb.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{E177A457-9EAA-43C3-A3CE-84874A28F6CA}\InprocServer32 -> axdb.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{E1C85E9F-60B2-4007-80C3-2C5E09474C3B}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\RxInventorUtilities.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{E29F6C45-6927-4508-8F3F-34105FD3FC5F}\InprocServer32 -> axdb.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{E2C40589-DE61-11ce-BAE0-0020AF6D7005}\InprocServer32 -> C:\Program Files\Autodesk\AutoCAD 2014\de-DE\acadficn.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{E4222C78-3670-4BB1-9AD4-7D8F3E581F2D}\InprocServer32 -> axdb.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{E5B0515D-48D2-4F04-906D-0192ED65A2DD}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\TestServer.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{E60F81E1-49B3-11D0-93C3-7E0706000000}\localserver32 -> E:\Program Files\Autodesk\Inventor 2014\Bin\Inventor.exe => Keine Datei
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{E70DE962-842A-4488-9481-1D0FD72A020F}\InprocServer32 -> axdb.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{E9C07CEC-7B82-49E4-BBA2-7533B88E9D64}\InprocServer32 -> axdb.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{EA34A0C0-5CE7-4701-A6FA-117D25CD5EBB}\InprocServer32 -> axdb.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{EF01D98A-747B-4522-AD70-991B90855DBF}\InprocServer32 -> axdb.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{F13E75B9-6AF6-49CB-80B3-6D2FF6E09932}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\ServiceModule.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{F196F03F-651A-43AF-BE34-D11942F24445}\InprocServer32 -> axdb.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{F2D4F4E5-EEA1-46FF-A83B-A270C92DAE4B}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\DTInterop.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{F2DB0EE3-7137-4CB0-8349-483C4FF2143A}\InprocServer32 -> axdb.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{F40E2FF0-4D77-40B2-9A44-A3AEECCE8EFF}\InprocServer32 -> axdb.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{F5522F0C-962A-48AC-9992-E81B07628F1F}\InprocServer32 -> axdb.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{F61064CC-DBFB-47ee-9BC8-CA5A1CBDF0DA}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\InvResc.dll (Autodesk)
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{F78DCF7C-043D-45FC-9D21-676FC307BA3F}\InprocServer32 -> axdb.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{F868EAEC-1B73-4F5E-BA73-90EBA94E75BE}\InprocServer32 -> axdb.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{FA62F626-EBD5-4dc5-B970-D9E81E0E20E0}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\ServiceModule.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{FA97F7A7-FD19-4D55-ABF2-CFEFFF777426}\InprocServer32 -> axdb.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{FB469644-3F14-4403-ACCA-6B13486FF7BD}\localserver32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\InvTXTStack.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{FD51ED8A-D518-4554-B236-B6E9D234FD03}\InprocServer32 -> axdb.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{FD703B01-4362-423E-9BDB-91BDCB16C1C9}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\DTInterop.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{FE054BB2-AF94-40AC-88AA-2F59F7018B1D}\InprocServer32 -> axdb.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{FE317223-8EDE-4684-B424-E48B9EA90220}\InprocServer32 -> axdb.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-3175323499-3369025214-2853444423-1000_Classes\CLSID\{FE718E8F-C3AA-4F30-9103-432450CF1DA1}\InprocServer32 -> axdb.dll => Keine Datei
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {01C8757F-69D6-4751-8653-64EE3B1781D6} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\Program Files\Windows Defender\\MpCmdRun.exe [2016-07-16] (Microsoft Corporation)
Task: {03995663-C478-4D3E-BC2D-7C957695D14E} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> Keine Datei <==== ACHTUNG
Task: {03AE32F8-4F76-45EF-ACB4-A8C0390ACF9B} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => %SystemRoot%\ehome\ehPrivJob.exe
Task: {0ABBBDAD-CFE2-46F7-BB26-D8388D5D4483} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\Program Files\Windows Defender\\MpCmdRun.exe [2016-07-16] (Microsoft Corporation)
Task: {0AEE1713-DFEA-4FC1-8C8C-BCBED7C3A387} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => %SystemRoot%\ehome\ehPrivJob.exe
Task: {12AAF5C8-C841-42B3-8468-53F53CF244F3} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => %SystemRoot%\ehome\ehPrivJob.exe
Task: {12B25656-E494-4396-9EE7-B9B045FA6EF7} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2016-12-07] (HP Inc.)
Task: {171AB6EE-4BE0-4A96-965F-A84A56A12231} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => %SystemRoot%\ehome\mcupdate.exe
Task: {187C655D-2717-4061-8AAB-460E2403E108} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [2017-02-08] (HP Inc.)
Task: {18F4309A-075E-4ED0-B0F1-E31B4DC37E37} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [2016-12-21] (HP Inc.)
Task: {30C9ABC5-40F3-42C3-8608-DCE4F39C6BC3} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Keine Datei <==== ACHTUNG
Task: {3116A021-E2EF-4B86-AF73-230A2C4FF335} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => %SystemRoot%\ehome\ehPrivJob.exe
Task: {323B25C9-1E8C-419A-891E-C6640F5D49E0} - System32\Tasks\Bitdefender AgentTask_AD394AE64E874073B10A89FEEC305A3C => C:\Program Files\Bitdefender\Bitdefender 2017\bdagent.exe [2017-01-17] (Bitdefender)
Task: {36683849-D913-42FB-88A5-7C2DECBBAB3C} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => %SystemRoot%\ehome\mcupdate.exe
Task: {3760806B-61FA-43BF-94F0-5446E5F6517A} - System32\Tasks\PCDDataUploadTask => uaclauncher.exe
Task: {3A1E89AA-9046-4062-B15E-3E5B6F799C8B} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => %SystemRoot%\ehome\mcupdate.exe
Task: {3AEC780F-A9A8-4486-98F6-72D22A01DDB9} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-02-18] (Adobe Systems Incorporated)
Task: {3AEFDBDF-B79B-47ED-A0BE-055CA53AA959} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => %SystemRoot%\ehome\mcupdate.exe
Task: {3B1F2C6C-CE16-4864-B3E5-2C224A449256} - \OfficeSoftwareProtectionPlatform\SvcRestartTask -> Keine Datei <==== ACHTUNG
Task: {3C825877-937E-4189-9FEC-4B42E2465AD4} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => %windir%\ehome\MCUpdate.exe
Task: {4161CD2B-60A5-4D3F-AC35-8D69B9907223} - System32\Tasks\HPCeeScheduleForInxi => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2015-06-16] (Hewlett-Packard)
Task: {48C24EC8-22CD-446F-ACAB-665ED2AD84EA} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => %SystemRoot%\ehome\mcupdate.exe
Task: {53A9E012-8B66-4D5C-B845-E8C5B2FE1EBF} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Keine Datei <==== ACHTUNG
Task: {5586C08B-F55B-4B6D-AB15-2EF42EE6ED92} - System32\Tasks\SamsungMagician => C:\Program Files (x86)\Samsung Magician\Samsung Magician.exe [2014-09-28] (Samsung Electronics.)
Task: {5594FB48-EE1A-48E4-87B5-62F36B0F9DF2} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Keine Datei <==== ACHTUNG
Task: {5739CB9A-84FB-447F-BD19-7D2B5FC399F3} - \Microsoft\Windows\Setup\GWXTriggers\Time-Weekend -> Keine Datei <==== ACHTUNG
Task: {579D3661-9358-483F-A134-41885C72DAA5} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => %SystemRoot%\ehome\ehPrivJob.exe
Task: {5B5C50F0-CFA3-46FA-B3B8-E21CF448B618} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Product Configurator => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\ProductConfig.exe [2017-02-10] (HP Inc.)
Task: {5B66064D-EAE0-4C5B-B790-781C3EBD039C} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Keine Datei <==== ACHTUNG
Task: {5B7192A2-5309-4635-ABAF-619814DEB38F} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => %SystemRoot%\ehome\ehPrivJob.exe
Task: {5DC4C348-B713-4C8D-8681-50FC127D4DCE} - System32\Tasks\HPLJCustParticipation => C:\Program Files (x86)\HP\HPLJUT\HPLJUTSCH.exe [2010-09-22] (Hewlett Packard)
Task: {5F41E519-E849-48A9-8923-0387908F8BE3} - System32\Tasks\PCDEventLauncherTask => C:\Program Files\Dell\SupportAssist\sessionchecker.exe [2017-02-17] (PC-Doctor, Inc.)
Task: {5F5B6A89-578D-41F6-92FB-13A961A52967} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => %SystemRoot%\ehome\ehPrivJob.exe
Task: {676591E1-6B39-4F3A-BC49-D1AEF5E4E477} - \Microsoft\Windows\Setup\EOONotify -> Keine Datei <==== ACHTUNG
Task: {680F4B7D-0BA5-4ECA-A67C-E9BBC9DCAAE9} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => %SystemRoot%\ehome\ehPrivJob.exe
Task: {6CCB5E0F-51EB-4001-98AC-7D4ED5E8E4A3} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Keine Datei <==== ACHTUNG
Task: {6F4B19C5-8C01-4DE0-8FA5-26FF7700BA0A} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-12-19] (Adobe Systems Incorporated)
Task: {82662ED9-63C9-4BEE-AB4B-85172D7EAB17} - System32\Tasks\OneDrive Standalone Update Task => C:\Users\Inxi\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\OneDriveStandaloneUpdater.exe
Task: {86EEECAC-237A-4A01-9DD8-0497E8A5E1C7} - System32\Tasks\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA) => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe [2016-11-07] (HP Inc.)
Task: {8866E252-18D2-4AF3-AE78-025F4F7AEB69} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\Program Files\Windows Defender\\MpCmdRun.exe [2016-07-16] (Microsoft Corporation)
Task: {8B06D586-22F7-48D5-BF3A-D1F7FCC84A9B} - \Microsoft\Windows\Setup\gwx\rundetector -> Keine Datei <==== ACHTUNG
Task: {90338157-0A0E-40B8-9221-00951FAF2A71} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Keine Datei <==== ACHTUNG
Task: {916A6FB5-CDF1-42EA-A390-1E62E78C4EA8} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => %SystemRoot%\ehome\ehPrivJob.exe
Task: {92DE4F25-9F2F-42C9-BD2E-EA3EE4A7EBB3} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\Program Files\Windows Defender\\MpCmdRun.exe [2016-07-16] (Microsoft Corporation)
Task: {9BEE4A16-28AA-4C28-8E79-D1EE0BF43544} - System32\Tasks\Dell SupportAssistAgent AutoUpdate => C:\Program Files (x86)\Dell\SupportAssistAgent\bin\SupportAssist.exe [2016-09-09] (Dell Inc.)
Task: {9D0C40E9-4E98-42A6-A2CD-CC9583A9DD69} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Keine Datei <==== ACHTUNG
Task: {9D3DF6B4-BD5E-4E85-99A1-9EF4FA910AD0} - System32\Tasks\Bitdefender Update Product Data_A17FD818A96743FAB28AC221BEB4B2C8 => C:\Program Files\Bitdefender\Bitdefender 2015\bdproductdata.exe
Task: {A2B59692-FAFB-4CA2-A8B5-C7A6B5E2508E} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2016-12-07] (HP Inc.)
Task: {A312D51F-190F-48D7-B9C7-9107703220C4} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> Keine Datei <==== ACHTUNG
Task: {B003913E-9995-41E2-9B50-ECFE4C242A10} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => %SystemRoot%\ehome\mcupdate.exe
Task: {B486FBA7-544F-45B8-9DF2-E453247F8488} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Keine Datei <==== ACHTUNG
Task: {BE118D08-CF04-4363-B247-6EA41FAEC090} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2016-12-07] (HP Inc.)
Task: {C72C1FD7-F9BC-4342-AB47-F086D8A7CEA9} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => %SystemRoot%\ehome\mcupdate.exe
Task: {C952A526-FC09-408B-8BD4-9FF8B8202326} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Keine Datei <==== ACHTUNG
Task: {C9A7D51A-FA89-4558-A5B7-74D927C984B3} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => %SystemRoot%\ehome\ehPrivJob.exe
Task: {CF8B5AC0-B950-420D-8E28-EC271C4FF9AC} - System32\Tasks\PCDoctorBackgroundMonitorTask => C:\Program Files\Dell\SupportAssist\uaclauncher.exe [2017-02-17] (PC-Doctor, Inc.)
Task: {D17FFD1C-3C81-4BEB-96C6-BE6652F0E26A} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => %SystemRoot%\ehome\ehPrivJob.exe
Task: {D54D6483-98C8-4D78-B714-FA09120B8875} - System32\Tasks\Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864 => C:\Program Files\Bitdefender Agent\WatchDog.exe [2016-10-21] (Bitdefender)
Task: {DEE25452-1AC6-43AD-8B57-61620766D31C} - System32\Tasks\Overwolf Updater Task => C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [2017-02-20] (Overwolf LTD)
Task: {DFE15732-AE4E-499D-9707-C6390A54474E} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Keine Datei <==== ACHTUNG
Task: {E02E47D8-A477-40B5-AFCA-845F5F6FFEC3} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => %SystemRoot%\ehome\ehPrivJob.exe
Task: {E031DC5C-662A-4EE3-AFB5-8A92C639F3B7} - System32\Tasks\SystemToolsDailyTest => uaclauncher.exe
Task: {EE17E7C2-CC40-44E6-99BD-97F1AAD4CCC2} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => %SystemRoot%\ehome\ehrec.exe
Task: {F523086A-CCB1-49B8-9E55-B3AC24D1C3D6} - \Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d -> Keine Datei <==== ACHTUNG
Task: {F56D9B24-84B0-4F0C-8A9E-8A1DA4FCE3AC} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => %SystemRoot%\ehome\ehPrivJob.exe
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
Task: C:\WINDOWS\Tasks\HPCeeScheduleForInxi.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe
==================== Verknüpfungen =============================
(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)
==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============
2016-07-16 12:42 - 2016-07-16 12:42 - 00231424 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
2016-12-14 16:27 - 2016-12-09 11:29 - 02681200 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2016-12-10 12:13 - 2013-09-03 14:29 - 00111832 _____ () C:\Program Files\Bitdefender\Bitdefender 2017\bdmetrics.dll
2017-02-07 21:13 - 2017-02-07 21:13 - 01008448 _____ () C:\Program Files\Bitdefender\Bitdefender 2017\otengines_02451_002\ashttpbr.mdl
2017-02-07 21:13 - 2017-02-07 21:13 - 00541952 _____ () C:\Program Files\Bitdefender\Bitdefender 2017\otengines_02451_002\ashttpdsp.mdl
2017-02-07 21:13 - 2017-02-07 21:13 - 03243920 _____ () C:\Program Files\Bitdefender\Bitdefender 2017\otengines_02451_002\ashttpph.mdl
2017-02-07 21:13 - 2017-02-07 21:13 - 01544568 _____ () C:\Program Files\Bitdefender\Bitdefender 2017\otengines_02451_002\ashttprbl.mdl
2016-09-30 16:10 - 2016-08-01 13:54 - 00133056 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2017-03-02 21:03 - 2017-02-24 06:23 - 02264352 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\PoliciesControllerImpl.dll
2017-03-02 21:03 - 2017-02-24 06:23 - 02264528 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\MwacLib.dll
2011-03-09 10:41 - 2011-03-09 10:41 - 01066896 _____ () C:\Program Files (x86)\Western Digital\WD SmartWare\Front Parlor\WDFME\WDFME.exe
2011-03-09 10:41 - 2011-03-09 10:41 - 00491920 _____ () C:\Program Files (x86)\Western Digital\WD SmartWare\Front Parlor\WDSC.exe
2016-12-14 16:27 - 2016-12-09 11:29 - 02681200 _____ () C:\WINDOWS\SYSTEM32\CoreUIComponents.dll
2016-09-30 17:05 - 2016-09-30 17:05 - 00134656 _____ () C:\Windows\ShellExperiences\Windows.UI.Shell.SharedUtilities.dll
2017-01-11 11:12 - 2016-12-21 08:09 - 00474112 _____ () C:\Windows\ShellExperiences\QuickActions.dll
2017-01-11 11:12 - 2016-12-21 07:54 - 09760768 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2017-01-11 11:12 - 2016-12-21 07:48 - 01401856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2017-01-11 11:12 - 2016-12-21 07:48 - 00757248 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CSGSuggestLib.dll
2017-01-11 11:12 - 2016-12-21 07:48 - 01033216 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Actions.dll
2017-01-11 11:12 - 2016-12-21 07:48 - 02424320 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2017-01-11 11:12 - 2016-12-21 07:53 - 04853760 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2015-06-01 20:00 - 2015-06-01 20:00 - 00102912 _____ () C:\Windows\System32\IccLibDll_x64.dll
2015-11-16 21:06 - 2015-11-16 21:06 - 00231936 _____ () C:\Program Files\Autodesk\Autodesk Sync\qjson_Ad_0.dll
2015-11-16 21:06 - 2015-11-16 21:06 - 00048520 _____ () C:\Program Files\Autodesk\Autodesk Sync\QtSolutions_MFCMigrationFramework_Ad_2.dll
2015-11-16 21:06 - 2015-11-16 21:06 - 00059392 _____ () C:\Program Files\Autodesk\Autodesk Sync\qoauth_Ad_1.dll
2015-11-16 21:06 - 2015-11-16 21:06 - 00922112 _____ () C:\Program Files\Autodesk\Autodesk Sync\qca_Ad_2.dll
2016-12-10 12:13 - 2017-01-17 20:21 - 00023840 _____ () C:\Program Files\Bitdefender\Bitdefender 2017\lang\de-DE\bdsystray.txtui
2017-02-22 18:45 - 2017-02-22 18:45 - 00073728 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.11.110.0_x64__kzf8qxf38zg5c\SkypeHost.exe
2017-02-22 18:45 - 2017-02-22 18:45 - 00179712 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.11.110.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll
2017-02-22 18:45 - 2017-02-22 18:45 - 42895360 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.11.110.0_x64__kzf8qxf38zg5c\SkyWrap.dll
2017-02-06 18:09 - 2017-02-06 18:10 - 02215424 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.11.110.0_x64__kzf8qxf38zg5c\roottools.dll
2015-11-03 15:08 - 2015-11-17 03:33 - 00055328 _____ () C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\QtSolutions_Service-head.dll
2015-11-03 15:08 - 2015-11-17 03:33 - 00103968 _____ () C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\qjson0.dll
2010-03-05 08:24 - 2010-03-05 08:24 - 00886272 _____ () C:\Program Files (x86)\Western Digital\WD SmartWare\Front Parlor\WDFME\System.Data.SQLite.dll
2017-01-18 17:17 - 2017-01-18 17:17 - 02493440 _____ () C:\Program Files (x86)\Origin\libGLESv2.dll
2014-12-31 13:51 - 2014-09-28 17:59 - 00019872 _____ () C:\Program Files (x86)\Samsung Magician\SAMSUNG_SSD.dll
2015-08-28 19:14 - 2015-08-07 12:06 - 00011920 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2010-10-25 14:36 - 2010-10-25 14:36 - 00119864 _____ () C:\Program Files (x86)\HP\ToolboxFX\bin\nativeutils.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)
AlternateDataStreams: C:\Users\Inxi\Downloads\cdbxp_setup_4.5.7.6389_minimal.exe:BDU [0]
AlternateDataStreams: C:\Users\Inxi\Downloads\DuOSInstaller.exe:BDU [0]
AlternateDataStreams: C:\Users\Inxi\Downloads\FRST64.exe:BDU [0]
AlternateDataStreams: C:\Users\Inxi\Downloads\OriginThinSetup.exe:BDU [0]
AlternateDataStreams: C:\Users\Inxi\Downloads\Systems-Management_Application_P52W9_WN32_2.2.0_A00.EXE:BDU [0]
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMSwissArmy => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMSwissArmy => ""="Driver"
==================== Verknüpfungen (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)
HKU\S-1-5-21-3175323499-3369025214-2853444423-1000\Software\Classes\.scr: AutoCADScriptFile =>
==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
==================== Hosts Inhalt: ===============================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2009-07-14 03:34 - 2017-03-04 11:25 - 00000828 ____A C:\WINDOWS\system32\Drivers\etc\hosts
==================== Andere Bereiche ============================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKU\S-1-5-21-3175323499-3369025214-2853444423-1000\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\web\wallpaper\Windows\img0.jpg
DNS Servers: 192.168.0.1 - 192.168.0.2
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
MSCONFIG\startupreg: ADSK DLMSession => C:\Program Files (x86)\Common Files\Autodesk Shared\Autodesk Download Manager\DLMSession.exe
MSCONFIG\startupreg: ADSKAppManager => "C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgr.exe" -showminimized -checkautorun
MSCONFIG\startupreg: PDFPrint => C:\Program Files (x86)\PDF24\pdf24.exe
MSCONFIG\startupreg: Sony PC Companion => "C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe" /Background
MSCONFIG\startupreg: WD Quick View => C:\Program Files (x86)\Western Digital\WD Quick View\WDDMStatus.exe
MSCONFIG\startupreg: Xvid => C:\Program Files (x86)\Xvid\CheckUpdate.exe
HKLM\...\StartupApproved\Run32: => "ADSKAppManager"
HKU\S-1-5-21-3175323499-3369025214-2853444423-1000\...\StartupApproved\Run: => "Overwolf"
HKU\S-1-5-21-3175323499-3369025214-2853444423-1000\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-3175323499-3369025214-2853444423-1000\...\StartupApproved\Run: => "Innkeeper"
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [MSMQ-In-TCP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-Out-TCP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-In-UDP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-Out-UDP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [WCF-NetTcpActivator-In-TCP-64bit] => (Allow) LPort=808
FirewallRules: [UDP Query User{91CE20BA-8747-4748-8959-56FD99A20018}C:\users\inxi\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\inxi\appdata\local\akamai\netsession_win.exe
FirewallRules: [TCP Query User{7AC563DD-FDB8-478A-BA43-D0F1C9E30D38}C:\users\inxi\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\inxi\appdata\local\akamai\netsession_win.exe
FirewallRules: [{A40C95DB-8CA8-4C69-BEA5-272D32DED3FC}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
FirewallRules: [{0498AE6B-A5B4-49E6-8FB7-379B5D486A90}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{3048A6E3-6893-488C-9995-C6FB28256B8E}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{081A6A33-D0F9-437B-9E69-7AD67A7200B3}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{ECCB3769-93D9-4565-ABA3-6991FBB00765}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{321E7A8A-5482-4A54-9858-DE44424CCE55}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{661AFFBB-4CE6-448F-9287-911F4A18831A}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{5173538F-7C88-4C17-B173-1DF62C282750}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\dota.exe
FirewallRules: [{C0ECE853-2150-4D00-B18B-3DE4410159D1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\dota.exe
FirewallRules: [{A6F9BA1C-214D-42CC-AB1B-A6FA59315B38}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Broken Sword 5\BS5.exe
FirewallRules: [{6B0D70C5-E947-4F8C-8F15-9EDC7B896589}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Broken Sword 5\BS5.exe
FirewallRules: [{9697C16E-D819-4E22-BE01-C3B4169EE354}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Valiant Hearts\Valiant Hearts.exe
FirewallRules: [{7002A822-0C80-43E1-B9D7-E997C186D6BB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Valiant Hearts\Valiant Hearts.exe
FirewallRules: [{4633E5AC-B327-4A86-A7E8-C3F3AFE587A1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Divinity - Original Sin\Shipping\EoCApp.exe
FirewallRules: [{066CC192-5F16-4F26-8B57-A6F8B6D8A905}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Divinity - Original Sin\Shipping\EoCApp.exe
FirewallRules: [TCP Query User{BA664ACC-F3AC-4196-8170-D2F911F53CD5}C:\users\inxi\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\inxi\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{1858A687-040C-46E4-861C-3012054EB536}C:\users\inxi\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\inxi\appdata\roaming\spotify\spotify.exe
FirewallRules: [{FD66759B-196B-45E8-957D-796667332960}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\dota_ugc\game\bin\win64\dota2cfg.exe
FirewallRules: [{AEBF4DC8-B2A6-4B0F-96A7-B0DCD7826AA1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\dota_ugc\game\bin\win64\dota2cfg.exe
FirewallRules: [{105177D0-3E5A-4B59-A9E2-F4FDA48E0741}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win32\dota2.exe
FirewallRules: [{567D49EB-B300-4BDD-BF45-EDF012B02C3D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win32\dota2.exe
FirewallRules: [{28FE30EE-1367-4598-AF42-408710C4D66C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2cfg.exe
FirewallRules: [{295A01CD-1EC1-4E81-96F4-D21A526C0144}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2cfg.exe
FirewallRules: [{EE63725C-FFB7-4D46-9C3B-1FD466DEDC8C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Game of Thrones\Thrones.exe
FirewallRules: [{6DF31D4A-7988-41E0-8611-8A46B4FFD705}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Game of Thrones\Thrones.exe
FirewallRules: [{07CCECD6-7CA9-4EE4-BFE4-443C9CC61757}] => (Allow) LPort=61391
FirewallRules: [{AFE80FD3-91CE-42ED-9B50-B12025926772}] => (Allow) LPort=5000
FirewallRules: [{F3DE42D7-C242-4A1E-A87B-0A83E872EC81}] => (Allow) E:\Program Files\Autodesk\3ds Max 2016\NVIDIA\Satellite\raysat_3dsmax2016_64server.exe
FirewallRules: [{9EF69122-CC0A-4B57-A28A-EB6FE0B06C11}] => (Allow) E:\Program Files\Autodesk\3ds Max 2016\NVIDIA\Satellite\raysat_3dsmax2016_64server.exe
FirewallRules: [{E8809E35-0D37-4F15-91B0-DA34707F98BF}] => (Allow) E:\Program Files\Autodesk\3ds Max 2016\NVIDIA\Satellite\raysat_3dsmax2016_64.exe
FirewallRules: [{2AC1531D-4896-491F-B295-4181C001AD57}] => (Allow) E:\Program Files\Autodesk\3ds Max 2016\NVIDIA\Satellite\raysat_3dsmax2016_64.exe
FirewallRules: [{41C8E6CA-4B96-4DFD-9016-581C89C7E27A}] => (Allow) LPort=50248
FirewallRules: [{591E4A36-6D93-40B4-A98F-1971BC50BAAF}] => (Allow) C:\Users\Inxi\AppData\Local\Temp\7zS75E5\Installer\hpbcsiInstaller.exe
FirewallRules: [{0C0A5522-60A4-4B34-999D-2EB7770DC56A}] => (Allow) C:\Users\Inxi\AppData\Local\Temp\7zS75E5\Installer\hpbcsiInstaller.exe
FirewallRules: [{74DA4576-9ACD-4F84-896A-FFE78E4A4004}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{22BF5DD5-3D6F-417E-A0D0-F2611C50B1E3}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{8D37075F-F005-4A76-BE08-745F67DAA073}] => (Allow) C:\Program Files (x86)\Tunngle\TnglCtrl.exe
FirewallRules: [{31335935-41E1-4A29-A5BA-8B3B0B7E2FDC}] => (Allow) C:\Program Files (x86)\Tunngle\TnglCtrl.exe
FirewallRules: [{195D938F-37B5-4F7D-827F-CD083B685D4B}] => (Allow) C:\Program Files (x86)\Tunngle\TnglCtrl.exe
FirewallRules: [{F06414C2-B75D-4629-800F-D24799300D45}] => (Allow) C:\Program Files (x86)\Tunngle\TnglCtrl.exe
FirewallRules: [{51AC9FC8-A2C2-404B-A647-1EE1CFAB6EEA}] => (Allow) C:\Program Files (x86)\Tunngle\Tunngle.exe
FirewallRules: [{8FB7C415-D37B-4155-9052-53F1D6D31250}] => (Allow) C:\Program Files (x86)\Tunngle\Tunngle.exe
FirewallRules: [{9B3C7276-3D6C-446E-AF66-B80F4B97F0D9}] => (Allow) C:\Program Files (x86)\Tunngle\Tunngle.exe
FirewallRules: [{45904CAF-93EA-42CE-B1BB-4AC82C83464D}] => (Allow) C:\Program Files (x86)\Tunngle\Tunngle.exe
FirewallRules: [{95A2C29C-9A87-4A9D-87AB-0F8122A47AD4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Endless Legend\EndlessLegend.exe
FirewallRules: [{4BCC8E80-FC51-4F4A-825C-3FA880962E0C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Endless Legend\EndlessLegend.exe
FirewallRules: [{E9790320-F4CB-4F3C-B728-56CCAE37D01A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Keep Talking and Nobody Explodes\ktane.exe
FirewallRules: [{DB2D0F1E-9AE3-4004-8DF1-F0662C52754C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Keep Talking and Nobody Explodes\ktane.exe
FirewallRules: [{5F64C8E9-1922-40CC-ACA2-2A765F7C6DB3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Worms Clan Wars\WormsClanWars.exe
FirewallRules: [{E6542CC0-11B3-429C-9478-BC47922DB73A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Worms Clan Wars\WormsClanWars.exe
FirewallRules: [{87F4990F-87AD-4D17-AB88-3FF5B8622D69}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SpaceFarmers\SpaceFarmers.exe
FirewallRules: [{F4336643-E6FE-44D5-9947-336CC072B1C8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SpaceFarmers\SpaceFarmers.exe
FirewallRules: [{65603875-9DAD-42B5-815E-C9DD88F1EA08}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\PAYDAY 2\payday2_win32_release.exe
FirewallRules: [{446E796C-3942-4E02-9E13-10D3D02E4267}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\PAYDAY 2\payday2_win32_release.exe
FirewallRules: [{F2F7149F-0E49-446A-8168-D913B9A6AFC4}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\The Wolf Among Us\TheWolfAmongUs.exe
FirewallRules: [{9620BE39-B7DC-4219-8F59-886371C16B93}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\The Wolf Among Us\TheWolfAmongUs.exe
FirewallRules: [{A017EEAA-6ACF-436F-8803-616352D04BBF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Trine\_enchanted_edition_\trine1_launcher.exe
FirewallRules: [{5E25C916-58A5-49F5-BDB7-A7D67CA3C420}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Trine\_enchanted_edition_\trine1_launcher.exe
FirewallRules: [{2219BDDF-F659-4C3D-9480-11090D9B3B3A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Grim Dawn\Grim Dawn.exe
FirewallRules: [{D05CD8CD-2F14-402D-A6AA-E583DFD1E3AD}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Grim Dawn\Grim Dawn.exe
FirewallRules: [{70FD9CFB-3955-4848-B203-E0F8A8EAF255}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{7652427D-40EB-47BF-82D3-7E8BA4BAC019}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{C45CC548-5148-4E06-BD5A-B5C81DC0F763}] => (Allow) C:\Program Files (x86)\Sony Mobile\Update Engine\Sony Mobile Update Engine.exe
FirewallRules: [{109F4100-26A8-4DAF-B1DC-D69DE149C2DE}] => (Allow) C:\Program Files (x86)\Sony Mobile\Update Engine\Sony Mobile Update Engine.exe
FirewallRules: [{8CDBE4D3-0145-4160-A910-EF7A73D7D76C}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\Path of Exile\PathOfExileSteam.exe
FirewallRules: [{707B21E6-03B2-45FC-9025-50A825D3AC2E}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\Path of Exile\PathOfExileSteam.exe
FirewallRules: [{473A9F22-F2E4-425C-907A-3E71D43940C7}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{8DF12AD8-A934-4964-B408-E2A5FAF884A6}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{A11AAC82-1814-40C8-BA33-B0A447E14904}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2cfg.exe
FirewallRules: [{6B0B973C-4742-47C6-8893-F18BA062AEA2}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2cfg.exe
FirewallRules: [{9800B06D-494F-4AC3-8296-8C62E38B71D3}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{157603EA-5032-4A7B-B7F0-06FD0B96C08C}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{D9230B82-976D-48D7-A9F9-15DF2AFE260D}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\Firewatch\Firewatch.exe
FirewallRules: [{D62AA29E-6435-43B4-950C-8463D87E0ECD}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\Firewatch\Firewatch.exe
FirewallRules: [{16BCA2E6-50BA-45B3-8369-CDB3C2E3039E}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{398E516A-1100-4635-9985-C28B957E346E}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{6AA1A397-E83A-486A-A6E8-AEE6F2A843FC}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{7876281B-3773-4302-BC70-6DD9D713A085}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{963766AD-3165-4F12-8107-FD7E67471A6E}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{5285979D-F55D-4829-A8A6-23E7B5ED4D5C}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{252D9F4C-7527-421D-9ED8-0502095AAB0D}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{66CF4B59-AAF6-4CF5-8168-4A3542AD3274}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{B95CF9D2-4814-4C73-A7F4-BF76DD8411D2}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{6D5DE0FE-9F9B-4D6F-8655-2611A26C1100}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{FDF89F4B-1595-4171-8B09-DD325BE00A51}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{809E8E07-649F-4325-B594-C26E9F3D9AE2}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{CD717482-2506-4F23-B4AD-14729DACFEB6}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{4B9579DF-951F-4B02-9400-BEDA0EFDF77E}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{FEB4BC3B-5DDF-453B-9BB0-5D095350403B}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{51502220-E8B8-46DC-B0FA-D4707B214C5B}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{942EE5A1-98C9-4411-A9BB-4B061FF4AED9}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{DB638651-5A5F-4E78-A1E8-75D31EAA96EE}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{C77B45BC-1202-49F9-81B2-5ECF03DED4E4}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{734C6988-B420-4968-B492-4F9A31FDE009}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{6260F0F4-A830-4C4A-B49B-9D66B26DA57A}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{59ABDB24-3763-42B2-B587-DCD16E5B69D3}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{DDC8EB0D-D10E-426A-89E5-39B87F3EBD17}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{F0E6659F-1D4F-4B70-91B6-B23D73C7D9C9}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{A5692E10-F7C5-4197-99DC-363CDA4685B2}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{E9156034-85B6-452C-BDF2-050B49565F99}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{45161E93-9C37-433E-A83E-A49A93F69A9C}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{C1137F6B-C0CD-43E3-840E-3559F41A2F3F}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{3A7B257E-0C35-4450-A396-E77496DA57E4}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{58D18AED-DD4D-4AA7-AA25-8D8E10BA6DCB}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{87792B4D-2DEB-436F-9CF5-4FCC9D21CC90}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{A23BA636-63B3-425C-A8D9-2D78672B7178}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{5DFFB42B-891E-48AE-A8A8-D712B6B05FA9}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{2A77D9FB-D917-4A66-B4EE-BAC02C9132CA}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{D6677466-5A01-4FFE-8FD5-E4FF8023CC3C}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{4661B588-2BAE-4931-A411-6081EE73B5BD}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{1D958872-C790-48BF-B5D2-368167BF154D}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{27750C86-EEB5-43F2-B54B-9A028E03B74B}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{EECEE102-D9DE-45BC-9C1E-D86F6139990E}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{2019EF19-4CB3-4433-8422-7A73023F279D}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{5B48690B-2CDE-49E7-B505-337FAEA56D43}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{A4E871AE-E594-4086-8168-2AF6C593FA32}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{DC7CDE3D-FF36-49E3-A971-DBB2BE11E590}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{511BE784-22BA-422E-B75E-74225B250168}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{C98F1557-4B09-41FE-A57A-B64BBDBA5032}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{497F0383-1965-462F-9E16-6DCDF5F4576E}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{5DAA9F2B-E846-4AD6-8CE2-8122AE795E2F}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{0EF7CFC7-B297-4E08-B1DD-B5FC43D9B737}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{A279E1FC-DD44-4752-A467-9D47F650FBFB}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{EDCE38F9-15B1-4873-BEE7-94B5C7715E4F}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{E459FFF2-8CF8-451F-807F-A6B118ED0BCB}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{4C715F7E-1B4D-45E1-8F87-4B2A9DFA7EDB}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{0ED94804-C360-4F90-B17E-BA73580B4D9F}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{844EDB0F-1717-4383-922C-0992B3C97605}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{D4417827-6293-430C-A210-538072F99478}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{27723D40-63C5-421D-A1A4-9F6A8BBBE29F}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{DA1941ED-CBD4-4E18-AD3D-CA15F6026CCF}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{627ABDFE-87C5-4BAE-8872-45335D9C9BD1}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{77FE904A-8D88-4C76-8ADA-B347959B1473}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{DEDC3D1C-2F8F-4532-ABB3-E33285E29D57}] => (Allow) E:\Program Files (x86)\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
==================== Wiederherstellungspunkte =========================
22-02-2017 20:35:15 Windows Update
02-03-2017 20:48:21 Configured Microsoft Office Professional 2010
==================== Fehlerhafte Geräte im Gerätemanager =============
Name:
Description:
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
Name: Intel(R) Wireless Bluetooth(R)
Description: Intel(R) Wireless Bluetooth(R)
Class Guid: {e0cbf06c-cd8b-4647-bb8a-263b43f0f974}
Manufacturer: Intel Corporation
Service: BTHUSB
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
Name:
Description:
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
==================== Fehlereinträge in der Ereignisanzeige: =========================
Applikationsfehler:
==================
Error: (03/04/2017 11:27:27 AM) (Source: DellUpService.exe) (EventID: 0) (User: )
Description: [8] ERROR- The flag bios supporting SOS is false. #StackInfo#
Error: (03/04/2017 11:25:21 AM) (Source: SetupARService) (EventID: 0) (User: )
Description: Der Dienst kann nicht gestartet werden. System.NullReferenceException: Der Objektverweis wurde nicht auf eine Objektinstanz festgelegt.
bei SetupAfterRebootService.SetupARService.OnStart(String[] args)
bei System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state)
Error: (03/04/2017 11:25:18 AM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: NT-AUTORITÄT)
Description: Überspringen: Eap method DLL path Fehler bei der Überprüfung. Fehler: Type-ID=43, Autor-ID=9, Lieferant-ID=0, Lieferant-Typ=0
Error: (03/04/2017 11:25:18 AM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: NT-AUTORITÄT)
Description: Überspringen: Eap method DLL path Fehler bei der Überprüfung. Fehler: Type-ID=25, Autor-ID=9, Lieferant-ID=0, Lieferant-Typ=0
Error: (03/04/2017 11:25:18 AM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: NT-AUTORITÄT)
Description: Überspringen: Eap method DLL path Fehler bei der Überprüfung. Fehler: Type-ID=17, Autor-ID=9, Lieferant-ID=0, Lieferant-Typ=0
Error: (03/04/2017 11:25:18 AM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: NT-AUTORITÄT)
Description: Überspringen: Eap method DLL path Fehler bei der Überprüfung. Fehler: Type-ID=23, Autor-ID=8086, Lieferant-ID=0, Lieferant-Typ=0
Error: (03/04/2017 11:25:18 AM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: NT-AUTORITÄT)
Description: Überspringen: Eap method DLL path Fehler bei der Überprüfung. Fehler: Type-ID=21, Autor-ID=8086, Lieferant-ID=0, Lieferant-Typ=0
Error: (03/04/2017 11:25:18 AM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: NT-AUTORITÄT)
Description: Überspringen: Eap method DLL path Fehler bei der Überprüfung. Fehler: Type-ID=18, Autor-ID=8086, Lieferant-ID=0, Lieferant-Typ=0
Error: (03/04/2017 11:25:18 AM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: NT-AUTORITÄT)
Description: Überspringen: Eap method DLL path Fehler bei der Überprüfung. Fehler: Type-ID=43, Autor-ID=9, Lieferant-ID=0, Lieferant-Typ=0
Error: (03/04/2017 11:25:18 AM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: NT-AUTORITÄT)
Description: Überspringen: Eap method DLL path Fehler bei der Überprüfung. Fehler: Type-ID=25, Autor-ID=9, Lieferant-ID=0, Lieferant-Typ=0
Systemfehler:
=============
Error: (03/04/2017 11:31:39 AM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: Durch die Berechtigungseinstellungen für "Anwendungsspezifisch" wird dem Benutzer "NT-AUTORITÄT\SYSTEM" (SID: S-1-5-18) unter der Adresse "LocalHost (unter Verwendung von LRPC)" keine Berechtigung vom Typ "Lokal Aktivierung" für die COM-Serveranwendung mit der CLSID
{8D8F4F83-3594-4F07-8369-FC3C3CAE4919}
und der APPID
{F72671A9-012C-4725-9D2F-2A4D32D65169}
im Anwendungscontainer "Nicht verfügbar" (SID: Nicht verfügbar) gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool für Komponentendienste geändert werden.
Error: (03/04/2017 11:25:20 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Der Dienst "NetTcpActivator" ist vom Dienst "NetTcpPortSharing" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde:
Der angegebene Dienst kann nicht gestartet werden. Er ist deaktiviert oder nicht mit aktivierten Geräten verbunden.
Error: (03/04/2017 11:24:55 AM) (Source: DCOM) (EventID: 10005) (User: NT-AUTORITÄT)
Description: Fehler "1084" in DCOM, als der Dienst "dps" mit den Argumenten "Nicht verfügbar" gestartet wurde, um den folgenden Server zu verwenden:
{DDCFD26B-FEED-44CD-B71D-79487D2E5E5A}
Error: (03/04/2017 11:24:55 AM) (Source: DCOM) (EventID: 10005) (User: NT-AUTORITÄT)
Description: Fehler "1084" in DCOM, als der Dienst "dps" mit den Argumenten "Nicht verfügbar" gestartet wurde, um den folgenden Server zu verwenden:
{DDCFD26B-FEED-44CD-B71D-79487D2E5E5A}
Error: (03/04/2017 11:24:54 AM) (Source: DCOM) (EventID: 10005) (User: Inxi-PC)
Description: Fehler "1084" in DCOM, als der Dienst "ShellHWDetection" mit den Argumenten "Nicht verfügbar" gestartet wurde, um den folgenden Server zu verwenden:
{DD522ACC-F821-461A-A407-50B198B896DC}
Error: (03/04/2017 11:24:50 AM) (Source: DCOM) (EventID: 10005) (User: NT-AUTORITÄT)
Description: Fehler "1084" in DCOM, als der Dienst "dps" mit den Argumenten "Nicht verfügbar" gestartet wurde, um den folgenden Server zu verwenden:
{DDCFD26B-FEED-44CD-B71D-79487D2E5E5A}
Error: (03/04/2017 11:24:50 AM) (Source: DCOM) (EventID: 10005) (User: NT-AUTORITÄT)
Description: Fehler "1084" in DCOM, als der Dienst "dps" mit den Argumenten "Nicht verfügbar" gestartet wurde, um den folgenden Server zu verwenden:
{DDCFD26B-FEED-44CD-B71D-79487D2E5E5A}
Error: (03/04/2017 11:24:50 AM) (Source: DCOM) (EventID: 10005) (User: Inxi-PC)
Description: Fehler "1084" in DCOM, als der Dienst "WSearch" mit den Argumenten "Nicht verfügbar" gestartet wurde, um den folgenden Server zu verwenden:
{7D096C5F-AC08-4F1F-BEB7-5C22C517CE39}
Error: (03/04/2017 11:24:50 AM) (Source: DCOM) (EventID: 10005) (User: Inxi-PC)
Description: Fehler "1084" in DCOM, als der Dienst "BITS" mit den Argumenten "Nicht verfügbar" gestartet wurde, um den folgenden Server zu verwenden:
{4991D34B-80A1-4291-83B6-3328366B9097}
Error: (03/04/2017 11:24:49 AM) (Source: DCOM) (EventID: 10005) (User: Inxi-PC)
Description: Fehler "1084" in DCOM, als der Dienst "BITS" mit den Argumenten "Nicht verfügbar" gestartet wurde, um den folgenden Server zu verwenden:
{4991D34B-80A1-4291-83B6-3328366B9097}
CodeIntegrity:
===================================
Date: 2017-03-04 11:25:20.527
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Bitdefender\Bitdefender 2017\vsservp.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bitdefender\Bitdefender 2017\dbghelp.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-03-04 10:06:22.344
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Bitdefender\Bitdefender 2017\vsservp.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bitdefender\Bitdefender 2017\dbghelp.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-03-03 23:03:00.436
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-03-03 22:47:29.650
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Bitdefender\Bitdefender 2017\vsservp.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bitdefender\Bitdefender 2017\dbghelp.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-03-03 00:23:57.948
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-03-02 23:07:14.043
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-03-02 23:07:14.035
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-03-02 23:07:13.971
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-03-02 23:07:13.964
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-03-02 23:07:13.956
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
==================== Speicherinformationen ===========================
Prozessor: Intel(R) Core(TM) i7-2630QM CPU @ 2.00GHz
Prozentuale Nutzung des RAM: 54%
Installierter physikalischer RAM: 8086.16 MB
Verfügbarer physikalischer RAM: 3666.15 MB
Summe virtueller Speicher: 9110.16 MB
Verfügbarer virtueller Speicher: 4617.09 MB
==================== Laufwerke ================================
Drive c: () (Fixed) (Total:237.94 GB) (Free:35.82 GB) NTFS
Drive e: () (Fixed) (Total:465.76 GB) (Free:331.8 GB) NTFS ==>[System mit Startkomponenten (eingeholt von Laufwerk)]
==================== MBR & Partitionstabelle ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: EF6F0B8F)
Partition 1: (Active) - (Size=465.8 GB) - (Type=07 NTFS)
========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 238.5 GB) (Disk ID: 387159B4)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=237.9 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=450 MB) - (Type=27)
==================== Ende von Addition.txt ============================
Viele Grüße Inxi |
|
30.03.2017, 10:50
| #3 |
| /// Winkelfunktion /// TB-Süch-Tiger™   | Nach Trojan.GenericKD.1704971 Fund, AdwCleaner Fund in C:\End -> Folgefund Applni.DLLs Die von dir thematisierten Funde waren in deiner Mailbox bzw im Cache deines E-Mail-Clients. Einfach die Schrott-Mails löschen und gut. Ich finde ja, dass es total sinnfrei ist zusätzlich noch Mailbox-Datei scannen zu lassen, sorgt immer wieder für unnötige Angst und Panik bei Laien auch wenn mit dem System alles in Ordnung ist.
__________________
__________________ |
|
| Themen zu Nach Trojan.GenericKD.1704971 Fund, AdwCleaner Fund in C:\End -> Folgefund Applni.DLLs |
| adware, browser, dateien, defender, desktop, einstellungen, explorer, firefox, google, home, infizierte, internet, internet explorer, microsoft, mozilla, object, ordner, realtek, registry, security, server, spyware, suche, windows, windowsapps, wmi |
