~ ZHPDiag v2015.9.4.134 Von Nicolas Coolman (2015/09/4) ~ gestartet von Agagn (Administrator) (2015/09/04 20:25:34) ~ Site: http://www.nicolascoolman.fr ~ Facebook: https://www.facebook.com/nicolascoolman1 ~ Version des Status: Version OK ~ Modus: Scanner ~ Bericht: C:\Users\Agagn\Desktop\ZHPDiag.txt ~ Bericht: C:\Users\Agagn\AppData\Roaming\ZHP\ZHPDiag.txt ~ UAC: Activate ~ Systemstart: Normal (Normal boot) Windows 10 Pro, 64-bit (Build 10240) ---\\ Internet-browser (2) - 0s MFIE: Mozilla Firefox 40.0.3 (x86 de) v40.0.3 MSIE: Internet Explorer v11.0.10240.16431 ---\\ Windows-Produkt-Informationen (4) - 4s ~ Windows Server License Manager Script : OK ~ Licence Script File Génération : OK Windows Automatic Updates : OK (Demand) Windows Activation Technologies : OK ---\\ System-Datenschutz-software (1) - 1s Windows Defender W10 (Deactivate) ---\\ System-Optimierungs-software (1) - 1s CCleaner v5.09.5343 ---\\ Monitoring Software (1) - 1s Adobe Flash Player 18 NPAPI ---\\ Informationen über das system (6) - 0s ~ Operating System: Intel64 Family 6 Model 42 Stepping 7, GenuineIntel ~ Operating System: 64-bit ~ Boot mode: Normal (Normal boot) Total RAM: 8200.556 MB (71% free) ~ System Restore: Activé (Enable) ~ System drive C: has 353 GB free of 405 GB ---\\ Verbindung zu den Systemmodus (3) - 0s ~ Computer Name: DESKTOP-0EF67Q2 ~ User Name: Agagn ~ Logged in as Administrator ---\\ Aufzählung von Disk-Einheiten (2) - 0s ~ Drive C: has 353 GB free of 405 GB (System) ~ Drive D: has 31 GB free of 70 GB ---\\ Status der Windows-Sicherheitscenter (7) - 0s [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK [HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK [HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK ---\\ Suche generische Systemdateien (24) - 1s [MD5.F1CBCB7FA6F3B309639AA2D4EF74469C] - (.Microsoft Corporation - Windows-Explorer.) () -- C:\Windows\Explorer.exe [4532304] © [MD5.5DED2A3F11AE916C8F2724947E736261] - (.Microsoft Corporation - Windows-Hostprozess (Rundll32).) () -- C:\Windows\System32\rundll32.exe [59392] © [MD5.7718A2A9B2BFB2C8E2BAEB03310CA3FD] - (.Microsoft Corporation - Windows-Startanwendung.) () -- C:\Windows\System32\Wininit.exe [290312] © [MD5.FE32B8423711B4B4378C0BA3C3560ED4] - (.Microsoft Corporation - Interneterweiterungen für Win32.) () -- C:\Windows\System32\wininet.dll [2741760] © [MD5.26EFEFD877A84EE9FBDE6DEE630892C9] - (.Microsoft Corporation - Windows-Anmeldeanwendung.) () -- C:\Windows\System32\Winlogon.exe [578048] © [MD5.ECB1943967424DFB96E03F6A098434EF] - (.Microsoft Corporation - Softwarelizenzierungsbibliothek.) () -- C:\Windows\System32\sppcomapi.dll [430592] © [MD5.C287D0E32771E3222A444DC527A29477] - (.Microsoft Corporation - DNS-Client-API-DLL.) () -- C:\Windows\System32\dnsapi.dll [680256] © [MD5.BB5BBD0E4D04047585E4ED0F07AA51E7] - (.Microsoft Corporation - DNS-Client-API-DLL.) () -- C:\Windows\Syswow64\dnsapi.dll [534064] © [MD5.6C12C7E01A4F64E0AA9C88AF66955CC9] - (.Microsoft Corporation - Treiber für zusätzliche WinSock-Funktionen.) () -- C:\Windows\System32\drivers\AFD.sys [577888] © [MD5.8921DF6060DB5C7700AA48CB12E9EA08] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) () -- C:\Windows\System32\drivers\atapi.sys [28512] © [MD5.F2829DC6D292DCAC5029893BB2E9FEE3] - (.Microsoft Corporation - CD-ROM File System Driver.) () -- C:\Windows\System32\drivers\Cdfs.sys [92672] © [MD5.CA160E02F35A61C6F5C681FB4669C519] - (.Microsoft Corporation - SCSI CD-ROM Driver.) () -- C:\Windows\System32\drivers\Cdrom.sys [174080] © [MD5.25435407D97419627F4B10653433BF2B] - (.Microsoft Corporation - DFS Namespace Client Driver.) () -- C:\Windows\System32\drivers\DfsC.sys [138240] © [MD5.C277A49F8A8295840DEBC9240B75A282] - (.Microsoft Corporation - High Definition Audio Bus Driver.) () -- C:\Windows\System32\drivers\HDAudBus.sys [80896] © [MD5.D4CDEE4A62BDFFF6E8558A9552148EA7] - (.Microsoft Corporation - i8042-Anschlusstreiber.) () -- C:\Windows\System32\drivers\i8042prt.sys [114688] © [MD5.5D3744E6FDEC1A6FB3FA9B1DD4AF0694] - (.Microsoft Corporation - IP Network Address Translator.) () -- C:\Windows\System32\drivers\IpNat.sys [143360] © [MD5.1DF2C5FD2710A13B07E663A12F0E0EEA] - (.Microsoft Corporation - Windows NT SMB Minirdr.) () -- C:\Windows\System32\drivers\MRxSmb.sys [415232] © [MD5.F0D791348AD254360CC3C3E501CCB745] - (.Microsoft Corporation - MBT Transport driver.) () -- C:\Windows\System32\drivers\netBT.sys [273408] © [MD5.466EC5659C02ED53DBD47DC1BC2B8086] - (.Microsoft Corporation - NT-Dateisystemtreiber.) () -- C:\Windows\System32\drivers\ntfs.sys [2116448] © [MD5.38F1AE32339731F6E5A7281AE8042545] - (.Microsoft Corporation - Treiber für parallelen Anschluss.) () -- C:\Windows\System32\drivers\Parport.sys [96768] © [MD5.CA60F6C03611AF1710BC903ED9F566FB] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) () -- C:\Windows\System32\drivers\Rasl2tp.sys [104960] © [MD5.A32AED8C644734B283A7C9D08D76064D] - (.Microsoft Corporation - Geräte-Redirector für Microsoft RDP.) () -- C:\Windows\System32\drivers\rdpdr.sys [176128] © [MD5.28E1E63A1AC65E17B3194238FA2CF3BF] - (.Microsoft Corporation - TDI Translation Driver.) () -- C:\Windows\System32\drivers\tdx.sys [116576] © [MD5.823A237D871CD652C6BFD47BECB6810A] - (.Microsoft Corporation - Volumeschattenkopie-Treiber.) () -- C:\Windows\System32\drivers\volsnap.sys [378720] © ---\\ Prozess läuft (28) - 2s [MD5.6EB87FDB59AABF6D19C927492DEA0D36] - (.Apple Inc. - MobileDeviceService.) -- C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [77128] [PID.1688] © [MD5.EBBCD5DFBB1DE70E8F4AF8FA59E401FD] - (.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe [462184] [PID.1728] © [MD5.795BD4A690C00B75F55DC94C95A9FCA0] - (.ESET - ESET Service.) -- C:\Program Files\ESET\ESET Endpoint Security\x86\ekrn.exe [1566424] [PID.1748] © [MD5.E4DEBF8D1983712E5E3CF8A7D87D0ABD] - (.Synaptics Incorporated - 64-bit Synaptics Pointing Enhance Service.) -- C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [237736] [PID.2068] © [MD5.958E956E119EB7B9ABA142AFED1B5FF4] - (...) -- C:\Program Files (x86)\Photodex\ProShow Producer\ScsiAccess.exe [186760] [PID.2160] [MD5.CFC9B7B465283378D374D5E380D5D244] - (.TeamViewer GmbH - TeamViewer 10.) -- C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [5611280] [PID.2176] © [MD5.D3324E910C1781D78BDDE4784D4BEE8C] - (.Synaptics Incorporated - Synaptics TouchPad 64-bit Enhancements.) -- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3935912] [PID.2888] © [MD5.CACD279EAC04E8C829FA2C529EA80B02] - (.Copyright (C) 2015 - .) -- C:\Program Files (x86)\ThinkSky\iTools 3\iToolsDaemon.exe [485240] [PID.2340] [MD5.F2A27A0CECB4A8752E70949B6D3F3085] - (.ESET - ESET Main GUI.) -- C:\Program Files\ESET\ESET Endpoint Security\egui.exe [5025992] [PID.3100] © [MD5.EE18BB116DE68046B08246DD0E41B0B9] - (.IObit - Smart Defrag v4.) -- C:\Program Files (x86)\IObit\Smart Defrag 4\SmartDefrag.exe [4525344] [PID.3168] © [MD5.99FC5CBE42E2F2CBC47C1B990CAC3430] - (.Synaptics Incorporated - Synaptics Pointing Device Helper.) -- C:\PROGRAM FILES\SYNAPTICS\SynTP\SYNTPHELPER.EXE [201384] [PID.3448] © [MD5.65E8545F1297CD83534C354A7BED1848] - (.Realtek Semiconductor - Realtek HD Audio-Manager.) -- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13885696] [PID.4932] © [MD5.0C3154D0620F974AD5C4E8D87626C8CF] - (.Intel Corporation - igfxTray Module.) -- C:\Windows\System32\igfxtray.exe [183216] [PID.4976] © [MD5.E4AA3D28753EF9DB333FE40079993B09] - (.Intel Corporation - hkcmd Module.) -- C:\Windows\System32\hkcmd.exe [411056] [PID.2944] © [MD5.CF40080765D6F66FA93318C0DB6C7D1F] - (.Intel Corporation - persistence Module.) -- C:\Windows\System32\igfxpers.exe [453552] [PID.4556] © [MD5.838258B7655F2309F7BE63F844AF51BB] - (.Apple Inc. - iTunesHelper.) -- C:\Program Files\iTunes\iTunesHelper.exe [170256] [PID.1196] © [MD5.EDD15222718345DEF9F12336BA2405D1] - (.Murray Hurps Software Pty Ltd - Ad Muncher.) -- C:\Program Files (x86)\Ad Muncher\AdMunch.exe [560760] [PID.4496] [MD5.E8D96F840994291789F0CDE6800AC1A4] - (.Apple Inc. - iPodService Module (64-bit).) -- C:\Program Files\iPod\bin\iPodService.exe [644880] [PID.2280] © [MD5.378BFB8DD2AB90552356732852E710BE] - (.Murray Hurps Software Pty Ltd - Ad Muncher 64-bit Hook Launcher.) -- C:\Program Files (x86)\Ad Muncher\AdMunch64.exe [11384] [PID.2084] [MD5.E9C6EF9437ECB30911488F9313AD821A] - (.Tonec Inc. - Internet Download Manager agent for click m.) -- C:\Program Files (x86)\Internet Download Manager\IEMonitor.exe [269848] [PID.3356] © [MD5.653E252FFB8272EB1F6C5E560CA13D7F] - (.QFX Software Corporation - KeyScrambler.) -- C:\Program Files (x86)\KeyScrambler\KeyScrambler.exe [509216] [PID.5176] [MD5.4D62299AB8AA9C8159F37DEE378D2CB4] - (.Zemana Ltd. - Zemana AntiLogger User Interface.) -- C:\Program Files (x86)\AntiLogger\AntiLogger.exe [14679464] [PID.5208] [MD5.9AC10DF42CC1E811BB8608A0B609A7D0] - (.Oracle Corporation - Java Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [597552] [PID.5228] © [MD5.D79389E64A56638C1F31106856DA73A6] - (.QFX Software Corporation - KeyScrambler.) -- C:\Program Files (x86)\KeyScrambler\x64\KeyScrambler.exe [563488] [PID.5464] [MD5.554C2CD072CC3917120D2A096CF8886E] - (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files (x86)\Internet Download Manager\IDMan.exe [3907152] [PID.3648] © [MD5.05299546F243159CB8A42906ACB219A8] - (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe [377000] [PID.832] © [MD5.E9A37605E492FBFBD5EDC3FE340F4123] - (.Copyright Microsoft Corporation - Microsoft Photos.) -- C:\Program Files\WindowsApps\Microsoft.Windows.Photos_15.827.16340.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe [7168] [PID.4668] [MD5.4D3B680F8504CAD0D4EC9059FC17EE20] - (.Nicolas Coolman - ZHPDiag.) -- C:\Users\Agagn\Desktop\ZHPDiag3.exe [1921536] [PID.4076] © ---\\ Mozilla Firefox, Plugins,Startseite,Seiten of search,Ausdehnung (6) - 0s P2 - EXT FILE: (...) -- C:\Users\Agagn\AppData\Roaming\Mozilla\Firefox\Profiles\cdb6h3v0.default\extensions\firefox@mega.co.nz.xpi P2 - EXT: (.Mozilla - Default.) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} © P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_232.dll © P2 - FPN: [HKLM] [@Apple.com/iTunes,version=1.0] - (.Apple Inc..) -- C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll © P2 - FPN: [HKLM] [@itools.hk/npiTools, version=1.0.0] - (.itools.hk Copyright (C) 2012.) -- C:\Program Files (x86)\ThinkSky\iTools 3\Extensions\npiTools.dll P2 - FPN: [HKLM] [@photodex.com/PhotodexPresenter] - (.Photodex Corporation.) -- C:\Program Files (x86)\Photodex\ProShow Producer\Photodex Presenter\npPxPlay.dll © ---\\ Internet Explorer, Startseite,Seiten of search,Ausdehnung (17) - 1s R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/ R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/ R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/ R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/ R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/ R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/ R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/ R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/ R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/ R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/ R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} Orphean =>.Microsoft Internet Explorer R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV9 = 0 R4 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\PhishingFilter,EnabledV9 = 0 ---\\ Internet Explorer, Proxy Management (3) - 0s R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1 R5 - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0 ---\\ Line Analysis - IniFiles, Auto Laden von Programmen (3) - 0s F2 - REG:system.ini: UserInit= F2 - REG:system.ini: Shell=C:\Windows\explorer.exe (.Microsoft Corporation.) F2 - REG:system.ini: VMApplet= ---\\ Hosts Datei-Umleitung (1) - 0s ~ Le fichier hôte est sain (The hosts file is clean) (121) ---\\ Browser Helper-Objekte (4) - 0s O2 - BHO: IDM Helper [64Bits] - {0055C089-8582-441B-A0BF-17B458C2A3A8} . (.Internet Download Manager, Tonec Inc. - IDM Browser Helper Object.) -- C:\Program Files (x86)\Internet Download Manager\IDMIECC64.dll O2 - BHO: Java(tm) Plug-In SSV Helper [64Bits] - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre1.8.0_60\bin\ssv.dll © O2 - BHO: Java(tm) Plug-In 2 SSV Helper [64Bits] - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre1.8.0_60\bin\jp2ssv.dll © O2 - BHO: iToolsBHO [64Bits] - {E1499FE7-129D-4B6E-B681-DDF21E14172C} . (.iTools.hk - .) -- C:\Program Files (x86)\ThinkSky\iTools 3\Extensions\iToolsBHO64.dll ---\\ Auto Laden von Programmen vom Register und Ordner (21) - 0s O4 - HKLM\..\Run: [RTHDVCPL] . (.Realtek Semiconductor - Realtek HD Audio-Manager.) -- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe © O4 - HKLM\..\Run: [IgfxTray] . (.Intel Corporation - igfxTray Module.) -- C:\Windows\system32\igfxtray.exe © O4 - HKLM\..\Run: [HotKeysCmds] . (.Intel Corporation - hkcmd Module.) -- C:\Windows\system32\hkcmd.exe © O4 - HKLM\..\Run: [Persistence] . (.Intel Corporation - persistence Module.) -- C:\Windows\system32\igfxpers.exe © O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files (x86)\Synaptics\SynTP\SynTPEnh.exe (.not file.) O4 - HKLM\..\Run: [iTunesHelper] . (.Apple Inc. - iTunesHelper.) -- C:\Program Files\iTunes\iTunesHelper.exe © O4 - HKLM\..\Run: [AdobeAAMUpdater-1.0] . (.Adobe Systems Incorporated - Adobe Updater Startup Utility.) -- C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe © O4 - HKCU\..\Run: [IDMan] . (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files (x86)\Internet Download Manager\IDMan.exe © O4 - HKCU\..\Run: [AdobeBridge] (Orphean) O4 - HKCU\..\Run: [IDM trial reset] . (...) -- D:\IDMan Trial Reset by Chamsoo.exe O4 - HKLM\..\Wow6432Node\Run: [Ad Muncher] . (.Murray Hurps Software Pty Ltd - Ad Muncher.) -- C:\Program Files (x86)\Ad Muncher\AdMunch.exe O4 - HKLM\..\Wow6432Node\Run: [Athan] . (.www.IslamicFinder.org - Automatic Athan (Azan) five times a day f.) -- C:\Program Files (x86)\Athan\Athan.exe O4 - HKLM\..\Wow6432Node\Run: [KeyScrambler] . (.QFX Software Corporation - KeyScrambler.) -- C:\Program Files (x86)\KeyScrambler\keyscrambler.exe O4 - HKLM\..\Wow6432Node\Run: [AntiLogger] . (.Zemana Ltd. - Zemana AntiLogger User Interface.) -- C:\Program Files (x86)\AntiLogger\AntiLogger.exe O4 - HKLM\..\Wow6432Node\Run: [SunJavaUpdateSched] . (.Oracle Corporation - Java Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe © O4 - HKLM\..\Wow6432Node\Run: [QuickTime Task] . (.Apple Inc. - QuickTime Task.) -- C:\Program Files (x86)\QuickTime\QTTask.exe © O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] . (.Microsoft Corporation - Microsoft OneDrive Setup.) -- C:\Windows\SysWOW64\OneDriveSetup.exe © O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] . (.Microsoft Corporation - Microsoft OneDrive Setup.) -- C:\Windows\SysWOW64\OneDriveSetup.exe © O4 - HKUS\S-1-5-21-161004172-1133365576-1580197619-1001\..\Run: [IDMan] . (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files (x86)\Internet Download Manager\IDMan.exe © O4 - HKUS\S-1-5-21-161004172-1133365576-1580197619-1001\..\Run: [AdobeBridge] (Orphean) O4 - HKUS\S-1-5-21-161004172-1133365576-1580197619-1001\..\Run: [IDM trial reset] . (...) -- D:\IDMan Trial Reset by Chamsoo.exe ---\\ Lop.com/Domain Entführer (2) - 0s O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1 O17 - HKLM\System\CS1\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1 ---\\ Zusätzliche Protokolle (21) - 1s O18 - Handler: about [64Bits] - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML-Anzeige.) -- C:\Windows\System32\mshtml.dll © O18 - Handler: cdl [64Bits] - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - OLE32-Erweiterung für Win32.) -- C:\Windows\System32\urlmon.dll © O18 - Handler: dvd [64Bits] - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - ActiveX-Steuerung für Streamingvideo.) -- C:\Windows\System32\MSVidCtl.dll © O18 - Handler: file [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32-Erweiterung für Win32.) -- C:\Windows\System32\urlmon.dll © O18 - Handler: ftp [64Bits] - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32-Erweiterung für Win32.) -- C:\Windows\System32\urlmon.dll © O18 - Handler: http [64Bits] - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32-Erweiterung für Win32.) -- C:\Windows\System32\urlmon.dll © O18 - Handler: https [64Bits] - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32-Erweiterung für Win32.) -- C:\Windows\System32\urlmon.dll © O18 - Handler: its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll © O18 - Handler: javascript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML-Anzeige.) -- C:\Windows\System32\mshtml.dll © O18 - Handler: local [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32-Erweiterung für Win32.) -- C:\Windows\System32\urlmon.dll © O18 - Handler: mailto [64Bits] - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML-Anzeige.) -- C:\Windows\System32\mshtml.dll © O18 - Handler: mhtml [64Bits] - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\System32\inetcomm.dll © O18 - Handler: mk [64Bits] - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32-Erweiterung für Win32.) -- C:\Windows\System32\urlmon.dll © O18 - Handler: ms-its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll © O18 - Handler: res [64Bits] - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML-Anzeige.) -- C:\Windows\System32\mshtml.dll © O18 - Handler: tbauth [64Bits] - {14654CA6-5711-491D-B89A-58E571679951} . (.Microsoft Corporation - TBAuth protocol handler.) -- C:\Windows\System32\tbauth.dll © O18 - Handler: tv [64Bits] - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - ActiveX-Steuerung für Streamingvideo.) -- C:\Windows\System32\MSVidCtl.dll © O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML-Anzeige.) -- C:\Windows\System32\mshtml.dll © O18 - Filter: application/octet-stream [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll © O18 - Filter: application/x-complus [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll © O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll © ---\\ AppInit_DLLs Registrierungswert Autorun (1) - 0s O20 - AppInit_DLLs: . (.Zemana Ltd. - Zemana AntiLogger SDK.) - C:\Program Files (x86)\KeyCryptSDK\KeyCrypt64(1).dll ---\\ Nicht von Microsoft nicht deaktiviert Windows XP/NT/2000-Dienste (6) - 1s O23 - Service: Apple Mobile Device Service (Apple Mobile Device Service) . (.Apple Inc. - MobileDeviceService.) - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe © O23 - Service: Dienst "Bonjour" (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files\Bonjour\mDNSResponder.exe © O23 - Service: ESET Service (ekrn) . (.ESET - ESET Service.) - C:\Program Files\ESET\ESET Endpoint Security\x86\ekrn.exe © O23 - Service: ScsiAccess (ScsiAccess) . (...) - C:\Program Files (x86)\Photodex\ProShow Producer\ScsiAccess.exe O23 - Service: SynTPEnh Caller Service (SynTPEnhService) . (.Synaptics Incorporated - 64-bit Synaptics Pointing Enhance Service.) - C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe © O23 - Service: TeamViewer 10 (TeamViewer) . (.TeamViewer GmbH - TeamViewer 10.) - C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe © ---\\ Im Automatikbetrieb geplanten Tasks (17) - 4s [MD5.368290D0A612D62DA6F3D798B1BB8FE7] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [269000] © [MD5.30495744C8F3FB155DD03EBBB3273633] [APT] [Driver Booster Beta Scheduler] (.IObit.) -- C:\Program Files (x86)\IObit\Driver Booster Beta\Scheduler.exe [998208] © [MD5.2693DCF0399AE1FB17BB023347CDFA79] [APT] [Driver Booster Beta SkipUAC (Agagn)] (.IObit.) -- C:\Program Files (x86)\IObit\Driver Booster Beta\DriverBooster.exe [4473664] © [MD5.CACD279EAC04E8C829FA2C529EA80B02] [APT] [iToolsDaemon] (.Copyright (C) 2015.) -- C:\Program Files (x86)\ThinkSky\iTools 3\iToolsDaemon.exe [485240] [MD5.ACD698C60D6937D535011BE4E83F7C36] [APT] [Red Giant Link] (...) -- C:\Program Files (x86)\Red Giant Link\Common\Red Giant Link.exe [136192] [MD5.EE18BB116DE68046B08246DD0E41B0B9] [APT] [SmartDefrag4_Startup] (.IObit.) -- C:\Program Files (x86)\IObit\Smart Defrag 4\SmartDefrag.exe [4525344] © [MD5.57D3596B42180C634674A333A6CC9E3F] [APT] [SmartDefrag4_Update] (.IObit.) -- C:\Program Files (x86)\IObit\Smart Defrag 4\AutoUpdate.exe [2244384] © [MD5.34EBD4FF6A24D86BB4716D6AFCC1A89B] [APT] [Apple\AppleSoftwareUpdate] (.Apple Inc..) -- C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [561984] © O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\Windows\Tasks\Adobe Flash Player Updater.job [884] © O39 - APT: iToolsDaemon - (.Copyright (C) 2015.) -- C:\Windows\Tasks\iToolsDaemon.job [350] O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\Windows\System32\Tasks\Adobe Flash Player Updater [3860] © O39 - APT: Driver Booster Beta Scheduler - (.IObit.) -- C:\Windows\System32\Tasks\Driver Booster Beta Scheduler [3446] © O39 - APT: Driver Booster Beta SkipUAC (Agagn) - (.IObit.) -- C:\Windows\System32\Tasks\Driver Booster Beta SkipUAC (Agagn) [3094] © O39 - APT: iToolsDaemon - (.Copyright (C) 2015.) -- C:\Windows\System32\Tasks\iToolsDaemon [3362] O39 - APT: Red Giant Link - (...) -- C:\Windows\System32\Tasks\Red Giant Link [4310] O39 - APT: SmartDefrag4_Startup - (.IObit.) -- C:\Windows\System32\Tasks\SmartDefrag4_Startup [3316] © O39 - APT: SmartDefrag4_Update - (.IObit.) -- C:\Windows\System32\Tasks\SmartDefrag4_Update [3312] © ---\\ Installierte Software (64) - 6s O42 - Logiciel: Neat Video for After Effects (64-bit) - (.ABSoft.) [HKLM][64Bits] -- Neat Video for After Effects_is1 O42 - Logiciel: Synaptics Pointing Device Driver - (.Synaptics Incorporated.) [HKLM][64Bits] -- SynTPDeinstKey © O42 - Logiciel: VLC media player - (.VideoLAN.) [HKLM][64Bits] -- VLC media player © O42 - Logiciel: WinRAR 5.30 beta 1 (64-bit) - (.win.rar GmbH.) [HKLM][64Bits] -- WinRAR archiver © O42 - Logiciel: ExtremeCopy - (.Easersoft.) [HKLM][64Bits] -- {20280594-6811-420E-A4E7-55EC7FE561B8} © O42 - Logiciel: 7-Zip 9.20 (x64 edition) - (.Igor Pavlov.) [HKLM][64Bits] -- {23170F69-40C1-2702-0920-000001000000} © O42 - Logiciel: Java 8 Update 51 (64-bit) - (.Oracle Corporation.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F86418051F0} © O42 - Logiciel: Java 8 Update 60 (64-bit) - (.Oracle Corporation.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F86418060F0} © O42 - Logiciel: Magic Bullet Suite 64-bit - (.Red Giant Software.) [HKLM][64Bits] -- {3C09DE13-867C-4289-9F95-4510BB3A5F57} © O42 - Logiciel: ESET Endpoint Security - (.ESET, spol. s r.o..) [HKLM][64Bits] -- {50821EDD-6F26-4FB9-AE31-789ACF81EC35} O42 - Logiciel: Trapcode Suite 64-bit - (.Red Giant Software.) [HKLM][64Bits] -- {5210717F-CAFD-4F21-8DF7-6ED3862725C4} © O42 - Logiciel: Apple Mobile Device Support - (.Apple Inc..) [HKLM][64Bits] -- {5D61F006-168C-4B8B-B7FD-F113C10AE0E4} © O42 - Logiciel: Java SE Development Kit 8 Update 45 (64-bit) - (.Oracle Corporation.) [HKLM][64Bits] -- {64A3A4F4-B792-11D6-A78A-00B0D0180450} © O42 - Logiciel: Bonjour - (.Apple Inc..) [HKLM][64Bits] -- {6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D} © O42 - Logiciel: Effects Suite 64-bit - (.Red Giant Software.) [HKLM][64Bits] -- {A9462025-681A-44C7-9F6F-70C96320F4C2} © O42 - Logiciel: Apple Application Support (64-Bit) - (.Apple Inc..) [HKLM][64Bits] -- {B255D495-4734-4E9B-B4F5-96702FD4A7B9} © O42 - Logiciel: iTunes - (.Apple Inc..) [HKLM][64Bits] -- {BFEAB774-C7DC-4032-B05A-DA5F7CB7B365} © O42 - Logiciel: Keying Suite 64-bit - (.Red Giant Software.) [HKLM][64Bits] -- {C6A6C665-F8D7-4CAD-942A-5D2A5C8F5133} © O42 - Logiciel: Ad Muncher v4.94.34121 (Free) - (...) [HKLM][64Bits] -- Ad Muncher O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe AIR © O42 - Logiciel: Adobe Flash Player 18 NPAPI - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player NPAPI © O42 - Logiciel: AntiLogger - (.Zemana Ltd..) [HKLM][64Bits] -- AntiLogger O42 - Logiciel: Ashampoo Photo Optimizer 6.0.12 6.0.12 - (.WAGDIMANSI.) [HKLM][64Bits] -- Ashampoo Photo Optimizer 6.0.12 6.0.12 O42 - Logiciel: Athan Pro 4.5 - (...) [HKLM][64Bits] -- Athan O42 - Logiciel: Driver Booster 3.0 Beta - (.IObit.) [HKLM][64Bits] -- Driver Booster Beta_is1 © O42 - Logiciel: Express Burn Disc Burning Software - (.NCH Software.) [HKLM][64Bits] -- ExpressBurn © O42 - Logiciel: FormatFactory 3.7.0.0 - (.Format Factory.) [HKLM][64Bits] -- FormatFactory © O42 - Logiciel: Hard Disk Low Level Format Tool 4.40 - (.HDDGURU.) [HKLM][64Bits] -- Hard Disk Low Level Format Tool_is1 © O42 - Logiciel: Magic Bullet Suite 64-bit - (.Red Giant Software.) [HKLM][64Bits] -- InstallShield_{3C09DE13-867C-4289-9F95-4510BB3A5F57} © O42 - Logiciel: Trapcode Suite 64-bit - (.Red Giant Software.) [HKLM][64Bits] -- InstallShield_{5210717F-CAFD-4F21-8DF7-6ED3862725C4} © O42 - Logiciel: Effects Suite 64-bit - (.Red Giant Software.) [HKLM][64Bits] -- InstallShield_{A9462025-681A-44C7-9F6F-70C96320F4C2} © O42 - Logiciel: Keying Suite 64-bit - (.Red Giant Software.) [HKLM][64Bits] -- InstallShield_{C6A6C665-F8D7-4CAD-942A-5D2A5C8F5133} © O42 - Logiciel: Internet Download Manager - (.Tonec Inc..) [HKLM][64Bits] -- Internet Download Manager © O42 - Logiciel: KeyScrambler - (.QFX Software Corporation.) [HKLM][64Bits] -- KeyScrambler O42 - Logiciel: Mozilla Firefox 40.0.3 (x86 de) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox 40.0.3 (x86 de) © O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM][64Bits] -- MozillaMaintenanceService © O42 - Logiciel: OSS Video Decompiler 5.5.0.4 - (.OneStopSoft.) [HKLM][64Bits] -- OSS Video Decompiler_is1 O42 - Logiciel: Photodex Presenter - (.Photodex Corporation.) [HKLM][64Bits] -- Photodex Presenter © O42 - Logiciel: PowerISO - (.Power Software Ltd.) [HKLM][64Bits] -- PowerISO © O42 - Logiciel: ProShow MediaSource - Wedding Essentials - (...) [HKLM][64Bits] -- ProShow MediaSource - Wedding Essentials O42 - Logiciel: Smart Defrag 4 - (.IObit.) [HKLM][64Bits] -- Smart Defrag 4_is1 © O42 - Logiciel: TeamViewer 10 - (.TeamViewer.) [HKLM][64Bits] -- TeamViewer © O42 - Logiciel: iTools 3 - (.Shenzhen Thinksky Technology Co., Ltd..) [HKLM][64Bits] -- ThinkSky O42 - Logiciel: TotalImageConverter - (.Softplicity, Inc..) [HKLM][64Bits] -- Total Image Converter_is1 O42 - Logiciel: Video Motion Pro - (.UNKNOWN.) [HKLM][64Bits] -- VideoMotionPro O42 - Logiciel: VoipConnect - (.Finarea S.A. Switzerland.) [HKLM][64Bits] -- VoipConnect_is1 O42 - Logiciel: VirusTotal Uploader 2.2 - (...) [HKLM][64Bits] -- VTUploader O42 - Logiciel: Xilisoft Video Editor 2 - (.Xilisoft.) [HKLM][64Bits] -- Xilisoft Video Editor 2 O42 - Logiciel: Your Uninstaller! 7 - (.URSoft, Inc..) [HKLM][64Bits] -- YU2010_is1 O42 - Logiciel: AntiLogger - (.Zemana Ltd..) [HKLM][64Bits] -- {014534FF-1D46-4A77-9B48-29EFD145995B} O42 - Logiciel: CCleaner - (.Piriform Ltd.) [HKLM][64Bits] -- {07992E15-B8DE-45E4-9312-C429095828C9} © O42 - Logiciel: Java 8 Update 51 - (.Oracle Corporation.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83218051F0} © O42 - Logiciel: Java 8 Update 60 - (.Oracle Corporation.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83218060F0} © O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {31B9D218-FED2-4C6C-B19F-7294FFC130B0} © O42 - Logiciel: Java SE Development Kit 8 Update 45 - (.Oracle Corporation.) [HKLM][64Bits] -- {32A3A4F4-B792-11D6-A78A-00B0D0180450} © O42 - Logiciel: Adobe After Effects CS6 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {4817D846-700B-474E-A31B-80892B3E92E3} © O42 - Logiciel: KeyCrypt SDK version 1.8.1.199 - (.Zemana Ltd..) [HKLM][64Bits] -- {5575EADE-4685-4E15-A9CD-6036BC2A3F75}_is1 O42 - Logiciel: PhotoInstrument 7.4 - (.Fatykhov Timur.) [HKLM][64Bits] -- {5A7A2AED-781B-45DC-AAF6-EAA3A9370C83}}_is1 © O42 - Logiciel: Video Motion Pro - (.UNKNOWN.) [HKLM][64Bits] -- {739BE4B3-1D6A-D5A1-C06B-E0FFB742E8C2} O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM][64Bits] -- {789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE} © O42 - Logiciel: Apple Application Support (32-Bit) - (.Apple Inc..) [HKLM][64Bits] -- {7FE25256-B7C1-480D-B736-10A67A833AEA} © O42 - Logiciel: QuickTime - (.Apple Inc..) [HKLM][64Bits] -- {B67BAFBA-4C9F-48FA-9496-933E3B255044} © O42 - Logiciel: Intel(R) Processor Graphics - (.Intel Corporation.) [HKLM][64Bits] -- {F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA} © O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC} © ---\\ HKCU & HKLM Software Keys (97) - 6s HKLM\SOFTWARE\Wow6432Node\ABSoft HKLM\SOFTWARE\Wow6432Node\AdMuncher HKLM\SOFTWARE\Wow6432Node\Adobe HKLM\SOFTWARE\Wow6432Node\AdwCleaner HKLM\SOFTWARE\Wow6432Node\Apple Computer, Inc. HKLM\SOFTWARE\Wow6432Node\Apple Inc. HKLM\SOFTWARE\Wow6432Node\AviSynth HKLM\SOFTWARE\Wow6432Node\dll-files.com =>PUP.Optional.DllFilesFixer HKLM\SOFTWARE\Wow6432Node\ESET HKLM\SOFTWARE\Wow6432Node\GNU HKLM\SOFTWARE\Wow6432Node\Google HKLM\SOFTWARE\Wow6432Node\HaaliMkx HKLM\SOFTWARE\Wow6432Node\Intel HKLM\SOFTWARE\Wow6432Node\Internet Download Manager HKLM\SOFTWARE\Wow6432Node\IObit HKLM\SOFTWARE\Wow6432Node\JavaSoft HKLM\SOFTWARE\Wow6432Node\JreMetrics HKLM\SOFTWARE\Wow6432Node\Licenses HKLM\SOFTWARE\Wow6432Node\Macromedia HKLM\SOFTWARE\Wow6432Node\MAGIX HKLM\SOFTWARE\Wow6432Node\MimarSinan HKLM\SOFTWARE\Wow6432Node\Mozilla HKLM\SOFTWARE\Wow6432Node\mozilla.org HKLM\SOFTWARE\Wow6432Node\MozillaPlugins HKLM\SOFTWARE\Wow6432Node\NCH Software HKLM\SOFTWARE\Wow6432Node\Nuance HKLM\SOFTWARE\Wow6432Node\ODBC HKLM\SOFTWARE\Wow6432Node\Ordinarysoft HKLM\SOFTWARE\Wow6432Node\Photodex Media Sources HKLM\SOFTWARE\Wow6432Node\Photodex Presenter HKLM\SOFTWARE\Wow6432Node\Piriform HKLM\SOFTWARE\Wow6432Node\PowerISO HKLM\SOFTWARE\Wow6432Node\QFX Software HKLM\SOFTWARE\Wow6432Node\Red Giant Software HKLM\SOFTWARE\Wow6432Node\SRS Labs HKLM\SOFTWARE\Wow6432Node\TeamViewer HKLM\SOFTWARE\Wow6432Node\Virustotal HKLM\SOFTWARE\Wow6432Node\Volatile HKLM\SOFTWARE\Wow6432Node\Xara HKLM\SOFTWARE\Wow6432Node\Xilisoft HKLM\SOFTWARE\Wow6432Node\Zemana HKLM\SOFTWARE\Wow6432Node\RegisteredApplications HKCU\SOFTWARE\7-Zip HKCU\SOFTWARE\ABSoft HKCU\SOFTWARE\Adobe HKCU\SOFTWARE\AppDataLow HKCU\SOFTWARE\Apple Computer, Inc. HKCU\SOFTWARE\Apple Inc. HKCU\SOFTWARE\Ashampoo HKCU\SOFTWARE\ASProtect HKCU\SOFTWARE\Dee Mon HKCU\SOFTWARE\dll-files.com =>PUP.Optional.DllFilesFixer HKCU\SOFTWARE\DownloadManager HKCU\SOFTWARE\DriverSupport HKCU\SOFTWARE\Easersoft HKCU\SOFTWARE\ESET HKCU\SOFTWARE\FreeTime HKCU\SOFTWARE\Gabest HKCU\SOFTWARE\GNU HKCU\SOFTWARE\Haali HKCU\SOFTWARE\Helmsman HKCU\SOFTWARE\Hewlett-Packard HKCU\SOFTWARE\Intel HKCU\SOFTWARE\JavaSoft HKCU\SOFTWARE\Licenses HKCU\SOFTWARE\Macromedia HKCU\SOFTWARE\Magix HKCU\SOFTWARE\MAGIX AG HKCU\SOFTWARE\Mozilla HKCU\SOFTWARE\NCH Software HKCU\SOFTWARE\Netscape HKCU\SOFTWARE\ODBC HKCU\SOFTWARE\Photodex HKCU\SOFTWARE\PhotoInstrument HKCU\SOFTWARE\Piriform HKCU\SOFTWARE\PowerISO HKCU\SOFTWARE\QFX Software HKCU\SOFTWARE\Realtek HKCU\SOFTWARE\Red Giant Software HKCU\SOFTWARE\RedGiantSoftware HKCU\SOFTWARE\RegisteredApplications HKCU\SOFTWARE\Softplicity HKCU\SOFTWARE\Synaptics HKCU\SOFTWARE\TeamViewer HKCU\SOFTWARE\The Silicon Realms Toolworks HKCU\SOFTWARE\ThinkSky HKCU\SOFTWARE\Trolltech HKCU\SOFTWARE\URSoft HKCU\SOFTWARE\VoipConnect HKCU\SOFTWARE\WinRAR HKCU\SOFTWARE\WinRAR SFX HKCU\SOFTWARE\Wow6432Node HKCU\SOFTWARE\Xilisoft HKCU\SOFTWARE\ZebHelpProcess Helper HKCU\SOFTWARE\Zemana HKCU\SOFTWARE\AppDataLow\Software HKCU\SOFTWARE\AppDataLow\Software\JavaSoft ---\\ Inhalt der Ordner Programme (219) - 9s O43 - CFD: 2015/08/16 16:29:41 - [] D -- C:\Program Files (x86)\Ad Muncher O43 - CFD: 2015/08/29 17:26:31 - [] D -- C:\Program Files (x86)\Adobe O43 - CFD: 2015/08/18 17:59:18 - [] D -- C:\Program Files (x86)\AntiLogger O43 - CFD: 2015/08/18 16:02:15 - [] D -- C:\Program Files (x86)\Apple Software Update O43 - CFD: 2015/08/31 18:24:53 - [] D -- C:\Program Files (x86)\Ashampoo Photo Optimizer 6.0.12 O43 - CFD: 2015/08/18 17:20:26 - [] D -- C:\Program Files (x86)\Athan O43 - CFD: 2015/08/18 16:01:57 - [] D -- C:\Program Files (x86)\Bonjour O43 - CFD: 2015/08/26 16:46:52 - [] D -- C:\Program Files (x86)\CCleaner O43 - CFD: 2015/09/02 19:13:41 - [] D -- C:\Program Files (x86)\Common Files O43 - CFD: 2015/08/18 17:16:39 - [] D -- C:\Program Files (x86)\CoolUtils O43 - CFD: 2015/08/22 19:28:36 - [] D -- C:\Program Files (x86)\FormatFactory O43 - CFD: 2015/08/18 15:39:06 - [] D -- C:\Program Files (x86)\HDDGURU LLF Tool O43 - CFD: 2015/08/29 18:18:40 - [] D -- C:\Program Files (x86)\InstallShield Installation Information O43 - CFD: 2015/08/16 15:47:31 - [] D -- C:\Program Files (x86)\Intel O43 - CFD: 2015/08/29 16:06:23 - [] D -- C:\Program Files (x86)\Internet Download Manager O43 - CFD: 2015/08/16 16:36:59 - [] D -- C:\Program Files (x86)\Internet Explorer O43 - CFD: 2015/08/21 18:54:45 - [] D -- C:\Program Files (x86)\IObit O43 - CFD: 2015/08/18 16:02:36 - [] D -- C:\Program Files (x86)\iTunes O43 - CFD: 2015/08/20 16:51:10 - [] D -- C:\Program Files (x86)\Java O43 - CFD: 2015/08/18 17:59:11 - [] D -- C:\Program Files (x86)\KeyCryptSDK O43 - CFD: 2015/08/18 17:54:37 - [] D -- C:\Program Files (x86)\KeyScrambler O43 - CFD: 2015/08/29 17:59:14 - [] D -- C:\Program Files (x86)\LooksBuilder O43 - CFD: 2015/09/02 19:08:50 - [] D -- C:\Program Files (x86)\MAGIX O43 - CFD: 2015/09/02 18:56:12 - [] D -- C:\Program Files (x86)\Microsoft.NET O43 - CFD: 2015/08/29 16:54:11 - [] D -- C:\Program Files (x86)\Mozilla Firefox O43 - CFD: 2015/08/28 19:56:06 - [] D -- C:\Program Files (x86)\Mozilla Maintenance Service O43 - CFD: 2015/08/16 17:20:35 - [] D -- C:\Program Files (x86)\MSBuild O43 - CFD: 2015/09/02 18:21:37 - [] D -- C:\Program Files (x86)\MSECache O43 - CFD: 2015/09/04 17:09:18 - [] D -- C:\Program Files (x86)\NCH Software O43 - CFD: 2015/08/31 18:18:10 - [] D -- C:\Program Files (x86)\OSS O43 - CFD: 2015/09/02 17:08:54 - [] D -- C:\Program Files (x86)\PC Drivers HeadQuarters =>PUP.Optional.Generic O43 - CFD: 2015/08/29 18:33:02 - [] D -- C:\Program Files (x86)\Photodex O43 - CFD: 2015/08/28 20:40:29 - [] D -- C:\Program Files (x86)\PhotoInstrument O43 - CFD: 2015/08/30 14:26:51 - [] D -- C:\Program Files (x86)\ProShow MediaSource - Wedding Essentials O43 - CFD: 2015/08/29 21:01:06 - [] D -- C:\Program Files (x86)\QuickTime O43 - CFD: 2015/08/29 17:59:07 - [] D -- C:\Program Files (x86)\Red Giant Link O43 - CFD: 2015/08/16 17:20:35 - [] D -- C:\Program Files (x86)\Reference Assemblies O43 - CFD: 2015/08/17 16:15:28 - [] D -- C:\Program Files (x86)\TeamViewer O43 - CFD: 2015/08/18 17:33:32 - [] D -- C:\Program Files (x86)\ThinkSky O43 - CFD: 2015/09/02 17:01:53 - [] D -- C:\Program Files (x86)\Veloxum =>PUP.Optional.DriverSupport O43 - CFD: 2015/08/31 18:05:00 - [] D -- C:\Program Files (x86)\VideoMotionPro O43 - CFD: 2015/08/18 15:57:01 - [] D -- C:\Program Files (x86)\VirusTotalUploader2 O43 - CFD: 2015/08/21 20:34:59 - [] D -- C:\Program Files (x86)\VoipConnect.com O43 - CFD: 2015/07/10 18:34:36 - [] D -- C:\Program Files (x86)\Windows Defender O43 - CFD: 2015/07/10 18:34:36 - [] D -- C:\Program Files (x86)\Windows Mail O43 - CFD: 2015/07/10 18:34:36 - [] D -- C:\Program Files (x86)\Windows Media Player O43 - CFD: 2015/07/10 13:04:26 - [] D -- C:\Program Files (x86)\Windows Multimedia Platform O43 - CFD: 2015/07/10 13:04:22 - [] D -- C:\Program Files (x86)\Windows NT O43 - CFD: 2015/07/10 18:34:36 - [] D -- C:\Program Files (x86)\Windows Photo Viewer O43 - CFD: 2015/07/10 13:04:26 - [] D -- C:\Program Files (x86)\Windows Portable Devices O43 - CFD: 2015/07/10 13:04:22 - [] SHD -- C:\Program Files (x86)\Windows Sidebar O43 - CFD: 2015/07/10 13:04:22 - [] SD -- C:\Program Files (x86)\WindowsPowerShell O43 - CFD: 2015/08/30 12:18:31 - [] D -- C:\Program Files (x86)\Xilisoft O43 - CFD: 2015/08/21 18:02:16 - [] D -- C:\Program Files (x86)\Your Uninstaller! 7 O43 - CFD: 2015/08/16 15:52:29 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip O43 - CFD: 2015/07/10 13:04:26 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessibility O43 - CFD: 2015/07/10 18:44:35 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories O43 - CFD: 2015/08/16 16:29:42 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ad Muncher O43 - CFD: 2015/07/10 18:44:35 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools O43 - CFD: 2015/08/18 17:59:19 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AntiLogger O43 - CFD: 2015/08/18 17:19:45 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Athan O43 - CFD: 2015/08/18 17:16:44 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CoolUtils O43 - CFD: 2015/08/17 16:34:19 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Booster 3 Beta O43 - CFD: 2015/08/22 15:58:18 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET O43 - CFD: 2015/08/18 17:14:40 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ExtremeCopy O43 - CFD: 2015/08/18 15:39:06 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HDD Low Level Format Tool O43 - CFD: 2015/08/16 15:49:26 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download Manager O43 - CFD: 2015/08/18 17:33:37 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTools 3 O43 - CFD: 2015/08/18 16:03:25 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes O43 - CFD: 2015/08/20 16:53:23 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java O43 - CFD: 2015/08/20 16:53:23 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java Development Kit O43 - CFD: 2015/08/18 17:53:14 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KeyScrambler O43 - CFD: 2015/08/29 17:59:19 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Magic Bullet Looks O43 - CFD: 2015/07/10 13:04:26 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance O43 - CFD: 2015/08/29 18:08:42 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Neat Video for After Effects O43 - CFD: 2015/09/01 19:05:42 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OSS Video Decompiler O43 - CFD: 2015/08/28 20:40:29 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PhotoInstrument O43 - CFD: 2015/08/21 18:51:54 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerISO O43 - CFD: 2015/08/30 14:26:52 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ProShow MediaSource - Wedding Essentials O43 - CFD: 2015/08/30 00:32:49 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ProShow Producer O43 - CFD: 2015/08/29 21:01:00 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime O43 - CFD: 2015/08/29 17:59:19 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Red Giant O43 - CFD: 2015/08/21 18:54:51 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Smart Defrag 4 O43 - CFD: 2015/07/10 13:04:26 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StartUp O43 - CFD: 2015/07/10 13:04:26 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools O43 - CFD: 2015/07/10 18:44:31 - [0] RHD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC O43 - CFD: 2015/08/16 16:34:53 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN O43 - CFD: 2015/08/21 20:35:02 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VoipConnect O43 - CFD: 2015/08/16 15:52:50 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR O43 - CFD: 2015/08/30 12:18:53 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Xilisoft O43 - CFD: 2015/08/21 18:02:16 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Your Uninstaller! 7 O43 - CFD: 2015/09/02 17:47:29 - [] D -- C:\ProgramData\Ad Muncher O43 - CFD: 2015/08/29 17:22:25 - [] D -- C:\ProgramData\Adobe O43 - CFD: 2015/08/16 15:35:57 - [0] SHD -- C:\ProgramData\Anwendungsdaten O43 - CFD: 2015/08/18 16:02:11 - [] D -- C:\ProgramData\Apple O43 - CFD: 2015/08/18 16:02:32 - [] D -- C:\ProgramData\Apple Computer O43 - CFD: 2015/07/10 14:21:38 - [0] SHD -- C:\ProgramData\Application Data O43 - CFD: 2015/07/10 13:04:22 - [0] D -- C:\ProgramData\Comms O43 - CFD: 2015/07/10 14:21:38 - [0] SHD -- C:\ProgramData\Desktop O43 - CFD: 2015/07/10 14:21:38 - [0] SHD -- C:\ProgramData\Documents O43 - CFD: 2015/08/16 15:35:57 - [0] SHD -- C:\ProgramData\Dokumente O43 - CFD: 2015/08/22 15:58:18 - [] D -- C:\ProgramData\ESET O43 - CFD: 2015/08/29 14:43:29 - [] D -- C:\ProgramData\GenArts O43 - CFD: 2015/08/29 12:11:43 - [0] D -- C:\ProgramData\goodasnew O43 - CFD: 2015/08/16 15:49:27 - [0] D -- C:\ProgramData\IDM O43 - CFD: 2015/08/17 16:34:19 - [] D -- C:\ProgramData\IObit O43 - CFD: 2015/08/21 17:43:55 - [] D -- C:\ProgramData\Logs O43 - CFD: 2015/09/03 16:25:06 - [] D -- C:\ProgramData\MAGIX O43 - CFD: 2015/08/21 18:25:02 - [0] D -- C:\ProgramData\MEGAsync O43 - CFD: 2015/09/02 18:56:12 - [] SD -- C:\ProgramData\Microsoft O43 - CFD: 2015/09/02 18:56:18 - [] D -- C:\ProgramData\Microsoft Help O43 - CFD: 2015/08/16 15:45:11 - [] D -- C:\ProgramData\Microsoft OneDrive O43 - CFD: 2015/08/31 18:01:17 - [] D -- C:\ProgramData\Microsoft Toolkit =>HackTool.AutoKMS O43 - CFD: 2015/09/04 17:09:18 - [] D -- C:\ProgramData\NCH Software O43 - CFD: 2015/08/17 16:13:50 - [] D -- C:\ProgramData\Oracle O43 - CFD: 2015/08/22 21:21:29 - [] D -- C:\ProgramData\Package Cache O43 - CFD: 2015/09/02 17:01:24 - [] D -- C:\ProgramData\PC Drivers HeadQuarters =>PUP.Optional.Generic O43 - CFD: 2015/08/29 18:33:51 - [] D -- C:\ProgramData\Photodex O43 - CFD: 2015/09/01 15:23:23 - [] D -- C:\ProgramData\ProductData O43 - CFD: 2015/08/18 17:49:32 - [] D -- C:\ProgramData\QFX Software O43 - CFD: 2015/08/29 14:36:35 - [] D -- C:\ProgramData\Red Giant O43 - CFD: 2015/08/29 18:11:31 - [] D -- C:\ProgramData\RedGiant O43 - CFD: 2015/08/23 12:05:06 - [] D -- C:\ProgramData\regid.1986-12.com.adobe O43 - CFD: 2015/08/22 07:38:58 - [] D -- C:\ProgramData\regid.1991-06.com.microsoft O43 - CFD: 2015/08/23 16:10:37 - [0] D -- C:\ProgramData\rgt O43 - CFD: 2015/07/10 13:04:22 - [0] D -- C:\ProgramData\SoftwareDistribution O43 - CFD: 2015/07/10 14:21:38 - [0] SHD -- C:\ProgramData\Start Menu O43 - CFD: 2015/08/16 15:35:57 - [0] SHD -- C:\ProgramData\Startmenü O43 - CFD: 2015/08/16 18:21:16 - [] D -- C:\ProgramData\Sun O43 - CFD: 2015/09/03 17:38:33 - [] AD -- C:\ProgramData\TEMP O43 - CFD: 2015/07/10 14:21:38 - [0] SHD -- C:\ProgramData\Templates O43 - CFD: 2015/08/18 17:33:37 - [] D -- C:\ProgramData\ThinkSky O43 - CFD: 2015/07/10 14:22:45 - [] D -- C:\ProgramData\USOPrivate O43 - CFD: 2015/07/10 14:22:45 - [] D -- C:\ProgramData\USOShared O43 - CFD: 2015/08/16 15:35:57 - [0] SHD -- C:\ProgramData\Vorlagen O43 - CFD: 2015/08/22 15:30:20 - [] D -- C:\ProgramData\WWinManProW O43 - CFD: 2015/08/30 12:18:31 - [] D -- C:\ProgramData\Xilisoft O43 - CFD: 2015/08/29 13:04:31 - [] D -- C:\ProgramData\Zaxwerks O43 - CFD: 2015/08/18 17:59:19 - [] HDC -- C:\ProgramData\{02A8F2F7-A05E-4DC5-950D-52243BB4C610} O43 - CFD: 2015/08/29 17:26:32 - [] D -- C:\Program Files (x86)\Common Files\Adobe O43 - CFD: 2015/08/16 16:31:53 - [] D -- C:\Program Files (x86)\Common Files\Adobe AIR O43 - CFD: 2015/08/18 16:02:04 - [] D -- C:\Program Files (x86)\Common Files\Apple O43 - CFD: 2015/08/20 16:49:51 - [] D -- C:\Program Files (x86)\Common Files\Java O43 - CFD: 2015/09/03 16:25:05 - [] D -- C:\Program Files (x86)\Common Files\MAGIX Services O43 - CFD: 2015/09/02 19:13:41 - [] D -- C:\Program Files (x86)\Common Files\MAGIX Shared O43 - CFD: 2015/09/02 18:56:04 - [] D -- C:\Program Files (x86)\Common Files\Microsoft Shared O43 - CFD: 2015/07/10 13:04:26 - [] D -- C:\Program Files (x86)\Common Files\Services O43 - CFD: 2015/07/10 18:34:36 - [] D -- C:\Program Files (x86)\Common Files\System O43 - CFD: 2015/08/29 17:26:31 - [] D -- C:\Users\Agagn\AppData\Roaming\Adobe O43 - CFD: 2015/08/18 16:03:44 - [] D -- C:\Users\Agagn\AppData\Roaming\Apple Computer O43 - CFD: 2015/09/04 20:25:12 - [] D -- C:\Users\Agagn\AppData\Roaming\DMCache O43 - CFD: 2015/09/02 17:52:55 - [] D -- C:\Users\Agagn\AppData\Roaming\Download Manager O43 - CFD: 2015/08/21 18:15:50 - [] D -- C:\Users\Agagn\AppData\Roaming\dslrBooth O43 - CFD: 2015/08/16 17:48:14 - [] D -- C:\Users\Agagn\AppData\Roaming\ESET O43 - CFD: 2015/08/18 17:15:04 - [] D -- C:\Users\Agagn\AppData\Roaming\ExtremeCopy O43 - CFD: 2015/09/02 18:22:15 - [] D -- C:\Users\Agagn\AppData\Roaming\Identities O43 - CFD: 2015/09/04 17:00:59 - [] D -- C:\Users\Agagn\AppData\Roaming\IDM O43 - CFD: 2015/08/21 18:54:33 - [] D -- C:\Users\Agagn\AppData\Roaming\IObit O43 - CFD: 2015/08/16 16:31:37 - [] D -- C:\Users\Agagn\AppData\Roaming\Macromedia O43 - CFD: 2015/09/02 19:16:26 - [] D -- C:\Users\Agagn\AppData\Roaming\MAGIX O43 - CFD: 2015/09/02 18:25:33 - [] SD -- C:\Users\Agagn\AppData\Roaming\Microsoft O43 - CFD: 2015/08/18 16:39:04 - [] D -- C:\Users\Agagn\AppData\Roaming\Mozilla O43 - CFD: 2015/08/18 16:39:04 - [] D -- C:\Users\Agagn\AppData\Roaming\Netscape O43 - CFD: 2015/09/02 17:08:52 - [] D -- C:\Users\Agagn\AppData\Roaming\PC Drivers HeadQuarters =>PUP.Optional.Generic O43 - CFD: 2015/08/29 18:33:53 - [] D -- C:\Users\Agagn\AppData\Roaming\Photodex O43 - CFD: 2015/08/18 17:49:32 - [] D -- C:\Users\Agagn\AppData\Roaming\QFX Software O43 - CFD: 2015/08/23 15:50:01 - [] D -- C:\Users\Agagn\AppData\Roaming\Red Giant O43 - CFD: 2015/08/29 14:18:54 - [] D -- C:\Users\Agagn\AppData\Roaming\Red Giant Link O43 - CFD: 2015/08/18 17:17:02 - [] D -- C:\Users\Agagn\AppData\Roaming\Softplicity O43 - CFD: 2015/08/20 16:49:23 - [] D -- C:\Users\Agagn\AppData\Roaming\Sun O43 - CFD: 2015/08/27 15:36:42 - [] D -- C:\Users\Agagn\AppData\Roaming\TeamViewer O43 - CFD: 2015/08/21 18:02:03 - [] D -- C:\Users\Agagn\AppData\Roaming\URSoft O43 - CFD: 2015/08/31 18:05:53 - [] D -- C:\Users\Agagn\AppData\Roaming\VideoMotionPro O43 - CFD: 2015/09/02 18:49:47 - [] D -- C:\Users\Agagn\AppData\Roaming\vlc O43 - CFD: 2015/08/21 20:45:25 - [] D -- C:\Users\Agagn\AppData\Roaming\VoipConnect O43 - CFD: 2015/08/16 15:52:59 - [] D -- C:\Users\Agagn\AppData\Roaming\WinRAR O43 - CFD: 2015/08/30 12:19:20 - [] D -- C:\Users\Agagn\AppData\Roaming\Xilisoft O43 - CFD: 2015/09/04 20:25:49 - [] D -- C:\Users\Agagn\AppData\Roaming\ZHP O43 - CFD: 2015/08/29 08:22:24 - [] D -- C:\Users\Agagn\AppData\Local\Adobe O43 - CFD: 2015/08/16 15:42:43 - [0] SHD -- C:\Users\Agagn\AppData\Local\Anwendungsdaten O43 - CFD: 2015/08/18 16:02:16 - [] D -- C:\Users\Agagn\AppData\Local\Apple O43 - CFD: 2015/08/29 21:01:29 - [] D -- C:\Users\Agagn\AppData\Local\Apple Computer O43 - CFD: 2015/08/26 16:17:35 - [] D -- C:\Users\Agagn\AppData\Local\Comms O43 - CFD: 2015/08/29 18:17:48 - [] D -- C:\Users\Agagn\AppData\Local\Downloaded Installations O43 - CFD: 2015/08/16 17:48:14 - [] D -- C:\Users\Agagn\AppData\Local\ESET O43 - CFD: 2015/08/29 14:19:23 - [] D -- C:\Users\Agagn\AppData\Local\LooksBuilder O43 - CFD: 2015/08/16 16:31:37 - [] D -- C:\Users\Agagn\AppData\Local\Macromedia O43 - CFD: 2015/09/02 19:14:48 - [] D -- C:\Users\Agagn\AppData\Local\Magix O43 - CFD: 2015/08/21 18:23:31 - [] D -- C:\Users\Agagn\AppData\Local\Mega Limited O43 - CFD: 2015/09/02 18:24:03 - [] D -- C:\Users\Agagn\AppData\Local\Microsoft O43 - CFD: 2015/08/21 20:01:06 - [] D -- C:\Users\Agagn\AppData\Local\Microsoft Help O43 - CFD: 2015/08/22 15:35:44 - [] D -- C:\Users\Agagn\AppData\Local\MicrosoftEdge O43 - CFD: 2015/08/16 16:25:54 - [] D -- C:\Users\Agagn\AppData\Local\Mozilla O43 - CFD: 2015/08/17 16:11:28 - [0] D -- C:\Users\Agagn\AppData\Local\NetworkTiles O43 - CFD: 2015/08/16 16:03:55 - [] D -- C:\Users\Agagn\AppData\Local\Packages O43 - CFD: 2015/08/18 16:31:50 - [0] D -- C:\Users\Agagn\AppData\Local\PeerDistRepub O43 - CFD: 2015/08/31 18:29:07 - [0] D -- C:\Users\Agagn\AppData\Local\photoOptimizeHistoryDataBase O43 - CFD: 2015/08/17 16:34:07 - [] D -- C:\Users\Agagn\AppData\Local\Programs O43 - CFD: 2015/08/16 15:43:37 - [] D -- C:\Users\Agagn\AppData\Local\Publishers O43 - CFD: 2015/09/04 20:25:26 - [] D -- C:\Users\Agagn\AppData\Local\Temp O43 - CFD: 2015/08/16 15:42:43 - [0] SHD -- C:\Users\Agagn\AppData\Local\Temporary Internet Files O43 - CFD: 2015/08/16 15:42:45 - [] D -- C:\Users\Agagn\AppData\Local\TileDataLayer O43 - CFD: 2015/08/16 15:42:43 - [0] SHD -- C:\Users\Agagn\AppData\Local\Verlauf O43 - CFD: 2015/08/22 18:23:37 - [] D -- C:\Users\Agagn\AppData\Local\Video Enhancer O43 - CFD: 2015/08/18 16:39:29 - [] D -- C:\Users\Agagn\AppData\Local\VirtualStore O43 - CFD: 2015/09/02 19:14:44 - [] D -- C:\Users\Agagn\AppData\Local\Xara O43 - CFD: 2015/08/18 17:59:20 - [] D -- C:\Users\Agagn\AppData\Local\Zemana O43 - CFD: 2015/07/10 13:04:26 - [] RD -- C:\Users\Agagn\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility O43 - CFD: 2015/08/22 15:51:11 - [] RD -- C:\Users\Agagn\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories O43 - CFD: 2015/08/29 19:54:31 - [] RD -- C:\Users\Agagn\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools O43 - CFD: 2015/08/26 16:42:57 - [] D -- C:\Users\Agagn\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CCleaner O43 - CFD: 2015/08/22 19:28:36 - [] D -- C:\Users\Agagn\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FormatFactory O43 - CFD: 2015/08/16 15:49:26 - [] D -- C:\Users\Agagn\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Download Manager O43 - CFD: 2015/07/10 13:04:26 - [] D -- C:\Users\Agagn\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance O43 - CFD: 2015/08/29 19:54:31 - [] RD -- C:\Users\Agagn\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup O43 - CFD: 2015/07/10 13:04:26 - [] RD -- C:\Users\Agagn\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools O43 - CFD: 2015/08/18 15:57:01 - [] D -- C:\Users\Agagn\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VirusTotal Uploader 2.2 O43 - CFD: 2015/07/10 13:04:45 - [] RSD -- C:\Users\Agagn\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell O43 - CFD: 2015/08/16 15:52:50 - [] D -- C:\Users\Agagn\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR ---\\ Liste der Treiber des Systems (61) - 4s O58 - SDL:2015/07/10 12:59:38 A . (.LSI - LSI 3ware SCSI Storport Driver.) -- C:\Windows\System32\drivers\3ware.sys [107360] © O58 - SDL:2015/07/10 12:59:38 A . (.PMC-Sierra - PMC-Sierra Storport Driver For SPC8x6G SAS.) -- C:\Windows\System32\drivers\adp80xx.sys [1135456] © O58 - SDL:2015/07/10 12:59:38 A . (.Advanced Micro Devices - AHCI 1.3 Device Driver.) -- C:\Windows\System32\drivers\amdsata.sys [83296] © O58 - SDL:2015/07/10 12:59:38 A . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) -- C:\Windows\System32\drivers\amdsbs.sys [259424] © O58 - SDL:2015/07/10 12:59:38 A . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\System32\drivers\amdxata.sys [26976] © O58 - SDL:2015/08/18 17:59:19 A . (.Zemana Ltd. - Zemana AntiLogger Driver.) -- C:\Windows\System32\drivers\AntiLog64.sys [49752] O58 - SDL:2015/07/10 12:59:38 A . (.PMC-Sierra, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\System32\drivers\arcsas.sys [131936] © O58 - SDL:2015/09/01 15:24:16 A . (.Qualcomm Atheros Communications, Inc. - Qualcomm Atheros Extensible Wireless LAN de.) -- C:\Windows\System32\drivers\athw10x.sys [4316784] © O58 - SDL:2015/07/10 12:59:36 A . (.Qualcomm Atheros Communications, Inc. - Qualcomm Atheros Extensible Wireless LAN de.) -- C:\Windows\System32\drivers\athw8x.sys [4207104] © O58 - SDL:2015/07/10 12:59:38 A . (.Windows (R) Win 7 DDK provider - BCM Function 2 Device Driver.) -- C:\Windows\System32\drivers\bcmfn2.sys [17624] © O58 - SDL:2015/07/10 12:59:38 A . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\System32\drivers\bxvbda.sys [531296] © O58 - SDL:2015/08/31 17:04:10 A . (.Windows (R) Win 7 DDK provider - IEEE-1284.4-1999 Driver.) -- C:\Windows\System32\drivers\Dot4.sys [151968] © O58 - SDL:2015/08/31 17:04:11 A . (.Windows (R) Win 7 DDK provider - IEEE-1284.4 Print Class Driver.) -- C:\Windows\System32\drivers\Dot4Prt.sys [27040] © O58 - SDL:2015/02/06 13:14:16 A . (.ESET - Amon monitor.) -- C:\Windows\System32\drivers\eamonm.sys [243464] © O58 - SDL:2015/02/06 13:14:16 A . (.ESET - Devmon monitor.) -- C:\Windows\System32\drivers\edevmon.sys [191464] © O58 - SDL:2015/02/06 13:14:16 A . (.ESET - ESET Helper driver.) -- C:\Windows\System32\drivers\ehdrv.sys [177032] © O58 - SDL:2015/02/06 13:14:16 A . (.ESET - ESET Personal Firewall driver.) -- C:\Windows\System32\drivers\epfw.sys [196560] © O58 - SDL:2015/02/06 13:14:16 A . (.ESET - Epfw NDIS LightWeight Filter.) -- C:\Windows\System32\drivers\EpfwLWF.sys [44144] © O58 - SDL:2015/02/06 13:14:16 A . (.ESET - ESET Personal Firewall driver.) -- C:\Windows\System32\drivers\epfwwfp.sys [59552] © O58 - SDL:2015/07/10 12:59:38 A . (.QLogic Corporation - QLogic 10 GigE VBD.) -- C:\Windows\System32\drivers\evbda.sys [3436896] © O58 - SDL:2015/08/16 15:48:41 A . (.Intel Corporation - Intel(R) Management Engine Interface.) -- C:\Windows\System32\drivers\HECIx64.sys [62784] © O58 - SDL:2015/07/10 12:59:38 A . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) -- C:\Windows\System32\drivers\HpSAMD.sys [64352] © O58 - SDL:2015/07/10 12:59:36 A . (.Intel Corporation - Intel(R) Serial IO GPIO Controller Driver.) -- C:\Windows\System32\drivers\iaLPSSi_GPIO.sys [38128] © O58 - SDL:2015/07/10 12:59:36 A . (.Intel Corporation - Intel(R) Serial IO I2C Controller Driver.) -- C:\Windows\System32\drivers\iaLPSSi_I2C.sys [122608] © O58 - SDL:2015/07/10 12:59:38 A . (.Intel Corporation - Intel(R) Rapid Storage Technology driver (i.) -- C:\Windows\System32\drivers\iaStorAV.sys [673120] © O58 - SDL:2015/07/10 12:59:38 A . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\Windows\System32\drivers\iaStorV.sys [412000] © O58 - SDL:2015/07/10 12:59:39 A . (.Mellanox - InfiniBand Fabric Bus Driver.) -- C:\Windows\System32\drivers\ibbus.sys [424800] © O58 - SDL:2015/06/12 04:00:58 A . (.Tonec Inc. - Internet Download Manager WFP Driver.) -- C:\Windows\System32\drivers\idmwfp.sys [197616] © O58 - SDL:2015/08/16 15:46:47 A . (.Intel Corporation - Intel Graphics Kernel Mode Driver.) -- C:\Windows\System32\drivers\igdkmd64.sys [5384176] © O58 - SDL:2015/07/10 12:59:39 A . (.Broadcom Corporation - Broadcom NetLink (TM) Gigabit Ethernet NDIS.) -- C:\Windows\System32\drivers\k57nd60a.sys [425984] © O58 - SDL:2014/12/30 13:31:30 A . (.Zemana Ltd. - Zemana AntiLogger SDK.) -- C:\Windows\System32\drivers\KeyCrypt64.sys [76520] O58 - SDL:2015/06/03 15:43:30 A . (.QFX Software Corporation - KeyScrambler Keyboard Encryption Driver.) -- C:\Windows\System32\drivers\keyscrambler.sys [224208] O58 - SDL:2015/07/10 12:59:38 A . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas.sys [108896] © O58 - SDL:2015/07/10 12:59:38 A . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas2i.sys [104800] © O58 - SDL:2015/07/10 12:59:38 A . (.Avago Technologies - Avago SAS Gen3 Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas3i.sys [99168] © O58 - SDL:2015/07/10 12:59:38 A . (.LSI Corporation - LSI SSS PCIe/Flash Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sss.sys [82784] © O58 - SDL:2015/07/10 12:59:39 A . (.Avago Technologies - MEGASAS RAID Controller Driver for Windows.) -- C:\Windows\System32\drivers\megasas.sys [59744] © O58 - SDL:2015/07/10 12:59:39 A . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\System32\drivers\megasr.sys [575840] © O58 - SDL:2015/07/10 12:59:39 A . (.Mellanox - MLX4 Bus Driver.) -- C:\Windows\System32\drivers\mlx4_bus.sys [705376] © O58 - SDL:2015/07/10 12:59:39 A . (.Marvell Semiconductor, Inc. - Marvell Flash Controller Driver.) -- C:\Windows\System32\drivers\mvumis.sys [63840] © O58 - SDL:2015/07/10 12:59:39 A . (.Mellanox - NetworkDirect Support Filter Driver.) -- C:\Windows\System32\drivers\ndfltr.sys [76128] © O58 - SDL:2015/07/10 12:59:39 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\System32\drivers\nvraid.sys [150368] © O58 - SDL:2015/07/10 12:59:39 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\System32\drivers\nvstor.sys [166240] © O58 - SDL:2015/07/10 12:59:39 A . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\Windows\System32\drivers\percsas2i.sys [58208] © O58 - SDL:2015/07/10 12:59:39 A . (.Avago Technologies - MEGASAS RAID Controller Driver for Windows.) -- C:\Windows\System32\drivers\percsas3i.sys [58720] © O58 - SDL:2015/08/16 15:45:21 A . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function D.) -- C:\Windows\System32\drivers\RTKVHD64.sys [4504320] © O58 - SDL:2015/06/08 04:59:30 A . (.Power Software Ltd - PowerISO Virtual Drive.) -- C:\Windows\System32\drivers\scdemu.sys [127760] © O58 - SDL:2015/07/10 12:59:39 A . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\System32\drivers\sisraid2.sys [44896] © O58 - SDL:2015/07/10 12:59:39 A . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\System32\drivers\sisraid4.sys [81760] © O58 - SDL:2014/06/04 15:17:30 A . (.IObit - SmartDefrag Driver.) -- C:\Windows\System32\drivers\SmartDefragDriver.sys [21184] © O58 - SDL:2015/08/16 15:48:11 A . (.Synaptics Incorporated - Synaptics SMBus Driver.) -- C:\Windows\System32\drivers\Smb_driver_AMDASF_Aux.sys [33448] © O58 - SDL:2015/08/16 15:48:11 A . (.Synaptics Incorporated - Synaptics SMBus Driver.) -- C:\Windows\System32\drivers\Smb_driver_Intel.sys [33960] © O58 - SDL:2015/08/16 15:48:11 A . (.Synaptics Incorporated - Synaptics SMBus Driver.) -- C:\Windows\System32\drivers\Smb_driver_Intel_Aux.sys [33960] © O58 - SDL:2015/07/10 12:59:39 A . (.Promise Technology, Inc. - Promise SuperTrak EX Series Driver for Wind.) -- C:\Windows\System32\drivers\stexstor.sys [31072] © O58 - SDL:2015/08/16 15:48:15 A . (.Synaptics Incorporated - Synaptics Touchpad Win64 Driver.) -- C:\Windows\System32\drivers\SynTP.sys [606376] © O58 - SDL:2015/08/20 16:46:37 A . (.Intel Corporation - Intel(R) Management Engine Interface.) -- C:\Windows\System32\drivers\TeeDriverW8x64.sys [184608] © O58 - SDL:2015/07/10 12:59:48 A . (...) -- C:\Windows\System32\drivers\Udecx.sys [44032] O58 - SDL:2015/07/10 12:59:39 A . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\System32\drivers\vsmraid.sys [166752] © O58 - SDL:2015/07/10 12:59:39 A . (.VIA Corporation - VIA StorX RAID Controller Driver.) -- C:\Windows\System32\drivers\VSTXRAID.SYS [305504] © O58 - SDL:2015/07/10 12:59:39 A . (.Mellanox - Kernel WinMad.) -- C:\Windows\System32\drivers\winmad.sys [26976] © O58 - SDL:2015/07/10 12:59:39 A . (.Mellanox - Kernel WinVerbs.) -- C:\Windows\System32\drivers\winverbs.sys [59232] © ---\\ Neueste Dateien geändert oder erstellt (Benutzer) (6) - 4s O61 - LFC: 2015/08/31 18:17:07 A . (.OneStopSoft.) -- C:\Users\Agagn\Downloads\Programs\ossvd5.5.0.3.exe [12642939] O61 - LFC: 2015/08/29 12:32:43 A . (..) -- C:\Users\Agagn\AppData\Roaming\Red Giant Link\tools\RGLicenseCheck.exe [271360] O61 - LFC: 2015/09/04 15:11:12 A . (..) -- C:\Users\Agagn\AppData\Local\Packages\Microsoft.Windows.ShellExperienceHost_cw5n1h2txyewy\TempState\TileCache_100_0_Data.bin [3280556] O61 - LFC: 2015/09/04 15:10:56 A . (..) -- C:\Users\Agagn\AppData\Local\Packages\Microsoft.Windows.ShellExperienceHost_cw5n1h2txyewy\TempState\TileCache_100_0_Header.bin [19624] O61 - LFC: 2015/09/04 15:11:30 A . (..) -- C:\Users\Agagn\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\LocalState\speech_onecorereg.bin [8192] O61 - LFC: 2015/09/03 16:01:19 A . (..) -- C:\Users\Agagn\AppData\Local\Microsoft\Windows\1031\StructuredQuerySchema.bin [400317] ---\\ Verbände Shell Laichen (11) - 1s O67 - Shell Spawning: <.bat> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.cpl> [HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe © O67 - Shell Spawning: <.cmd> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.com> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.evt> [HKLM\..\open\Command] (.Microsoft Corporation - Startprogramm für Ereignisanzeige-Snap-In.) -- C:\Windows\System32\eventvwr.exe © O67 - Shell Spawning: <.exe> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.html> [HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe © O67 - Shell Spawning: <.js> [HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\wscript.exe © O67 - Shell Spawning: <.reg> [HKLM\..\open\Command] (.Microsoft Corporation - Registrierungs-Editor.) -- C:\Windows\regedit.exe © O67 - Shell Spawning: <.scr> [HKLM\..\open\Command] (...) -- "%1" /S O67 - Shell Spawning: <.html> [HKCU\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe © ---\\ Startmenü Internet (8) - 0s O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe © O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe © O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe © O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Microsoft Corporation - IE-Hilfsprogramm für Pro-Benutzerinitalisie.) -- C:\Windows\System32\ie4uinit.exe © O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe © O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Microsoft Corporation - IE-Hilfsprogramm für Pro-Benutzerinitalisie.) -- C:\Windows\System32\ie4uinit.exe © O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe © O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Microsoft Corporation - IE-Hilfsprogramm für Pro-Benutzerinitalisie.) -- C:\Windows\System32\ie4uinit.exe © ---\\ Suche 'Ansteckung in Internet-Browsern (4) - 4s O69 - SBI: prefs.js [Agagn - cdb6h3v0.default] user_pref("browser.search.searchengine.desc", "this is my first firefox searchEngine"); =>PUP.Optional.SearchEngine O69 - SBI: prefs.js [Agagn - cdb6h3v0.default] user_pref("browser.search.searchengine.ptid", "amt"); =>PUP.Optional.SearchEngine O69 - SBI: prefs.js [Agagn - cdb6h3v0.default] user_pref("browser.search.searchengine.uid", "ST9500325AS_S2WRAFNSXXXXS2WRAFNS"); =>PUP.Optional.SearchEngine O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (Bing) - http://www.bing.com/ ---\\ Liste Dateien Crack & Keygen (1) - 7s O82 - LFC: 2013/07/10 17:17:32 A . (...) -- C:\Users\Agagn\Downloads\Compressed\neat-video-cracked-by-slach.rar [9172466] =>.Crack,Keygen ---\\ Liste den Dienststart von Svchost (42) - 1s O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Microsoft Smartcard-Zertifikatpropagierungs.) -- C:\Windows\System32\certprop.dll [192000] © O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Microsoft Smartcard-Zertifikatpropagierungs.) -- C:\Windows\System32\certprop.dll [192000] © O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - Serverdienst-DLL.) -- C:\Windows\system32\srvsvc.dll [283136] © O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Gruppenrichtlinienclient.) -- C:\Windows\System32\gpsvc.dll [1335296] © O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - IKE-Erweiterung.) -- C:\Windows\System32\ikeext.dll [954368] © O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Dienst, der IPv6-Konnektivität über ein IPv.) -- C:\Windows\System32\iphlpsvc.dll [954880] © O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL für sekundären Anmeldedienst.) -- C:\Windows\system32\seclogon.dll [31232] © O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Anwendungsinformationsdienst.) -- C:\Windows\System32\appinfo.dll [93696] © O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - iSCSI-Ermittlungsdienst.) -- C:\Windows\system32\iscsiexe.dll [151040] © O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Microsoft EAPHost-Dienst.) -- C:\Windows\System32\eapsvc.dll [106496] © O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Aufgabenplanungsdienst.) -- C:\Windows\system32\schedsvc.dll [1008640] © O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\system32\wbem\WMIsvc.dll [226304] © O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - Computersuchdienst-DLL.) -- C:\Windows\System32\browser.dll [133120] © O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\system32\profsvc.dll [324608] © O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Remotedesktop-Konfigurationsdienst.) -- C:\Windows\System32\SessEnv.dll [371200] © O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Problemberichte und -lösungen.) -- C:\Windows\System32\wercplsupport.dll [95744] © O83 - Search Svchost Services: wlidsvc (wlidsvc) . (.Microsoft Corporation - Microsoft®-Kontodienst.) -- C:\Windows\system32\wlidsvc.dll [2093056] © O83 - Search Svchost Services: DcpSvc (DcpSvc) . (.Microsoft Corporation - dcpsvc Task.) -- C:\Windows\system32\dcpsvc.dll [196096] © O83 - Search Svchost Services: NcaSvc (NcaSvc) . (.Microsoft Corporation - Microsoft-Netzwerkkonnektivitäts-Assistent.) -- C:\Windows\System32\ncasvc.dll [167424] © O83 - Search Svchost Services: NetSetupSvc (NetSetupSvc) . (.Microsoft Corporation - Netzwerkeinrichtungsdienst.) -- C:\Windows\System32\NetSetupSvc.dll [187392] © O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - RAS-Verwaltung für automatisches Wählen.) -- C:\Windows\System32\rasauto.dll [106496] © O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - RAS-Verbindungsverwaltung.) -- C:\Windows\System32\rasmans.dll [679936] © O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Dynamischer Schnittstellen-Manager.) -- C:\Windows\System32\mprdim.dll [497152] © O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Benachrichtigungsdienst für Systemereigniss.) -- C:\Windows\System32\sens.dll [72192] © O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Microsoft NAT-Hilfskomponenten.) -- C:\Windows\System32\ipnathlp.dll [452608] © O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Microsoft(R) Windows(R) Telefonieserver.) -- C:\Windows\System32\tapisrv.dll [311808] © O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Windows Update-Agent.) -- C:\Windows\system32\wuaueng.dll [2235904] © O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Intelligenter Hintergrundübertragungsdienst.) -- C:\Windows\System32\qmgr.dll [1168896] © O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Windows-Shelldienste-DLL.) -- C:\Windows\System32\shsvcs.dll [593920] © O83 - Search Svchost Services: dmwappushservice (dmwappushservice) . (.Microsoft Corporation - dmwappushsvc.) -- C:\Windows\system32\dmwappushsvc.dll [63488] © O83 - Search Svchost Services: XblGameSave (XblGameSave) . (.Microsoft Corporation - Xbox Live Game Save Service.) -- C:\Windows\System32\XblGameSave.dll [1149440] © O83 - Search Svchost Services: XboxNetApiSvc (XboxNetApiSvc) . (.Microsoft Corporation - Xbox Live Networking Service.) -- C:\Windows\system32\XboxNetApiSvc.dll [1019392] © O83 - Search Svchost Services: UsoSvc (UsoSvc) . (.Microsoft Corporation - Updatesitzung für Orchestrator Core.) -- C:\Windows\system32\usocore.dll [343040] © O83 - Search Svchost Services: UserManager (UserManager) . (.Microsoft Corporation - Benutzer-Manager.) -- C:\Windows\System32\usermgr.dll [717312] © O83 - Search Svchost Services: lfsvc (lfsvc) . (.Microsoft Corporation - Geolocation-Dienst.) -- C:\Windows\System32\lfsvc.dll [27136] © O83 - Search Svchost Services: DmEnrollmentSvc (DmEnrollmentSvc) . (.Microsoft Corporation - Windows-Verwaltungsdienst-DLL.) -- C:\Windows\System32\Windows.Internal.Management.dll [267776] © O83 - Search Svchost Services: XblAuthManager (XblAuthManager) . (.Microsoft Corporation - Xbox Live Auth Manager.) -- C:\Windows\System32\XblAuthManager.dll [918016] © O83 - Search Svchost Services: RetailDemo (RetailDemo) . (.Microsoft Corporation - RDXService.) -- C:\Windows\system32\RDXService.dll [996352] © O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - BDE-Dienst.) -- C:\Windows\System32\bdesvc.dll [359936] © O83 - Search Svchost Services: DsmSvc (DsmSvc) . (.Microsoft Corporation - Geräteinstallations-Manager.) -- C:\Windows\System32\DeviceSetupManager.dll [237568] © O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - Windows-Shelldesigndienste-DLL.) -- C:\Windows\system32\themeservice.dll [58368] © O83 - Search Svchost Services: AppMgmt (AppMgmt) . (.Microsoft Corporation - Softwareinstallationsdienst.) -- C:\Windows\System32\appmgmts.dll [200192] © ---\\ Allgemeinzustand der Dienste nicht Microsoft (SR=Running, SS=Stopped) (13) - 26s SS - Demand [2015/08/16 16:31:33] [ 269000] Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe © SR - Auto [2015/05/29 18:51:26] [ 77128] Apple Mobile Device Service (Apple Mobile Device Service) . (.Apple Inc..) - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe © SR - Auto [2011/08/30 23:05:32] [ 462184] Dienst "Bonjour" (Bonjour Service) . (.Apple Inc..) - C:\Program Files\Bonjour\mDNSResponder.exe © SS - Demand [2015/08/16 15:46:54] [ 290224] Intel(R) Content Protection HECI Service (cphs) . (.Intel Corporation.) - C:\Windows\SysWOW64\IntelCpHeciSvc.exe © SS - Demand [2015/03/30 10:40:14] [ 41160] ESET HTTP Server (EHttpSrv) . (.ESET.) - C:\Program Files\ESET\ESET Endpoint Security\ehttpsrv.exe © SR - Auto [2015/03/30 10:39:18] [ 1566424] ESET Service (ekrn) . (.ESET.) - C:\Program Files\ESET\ESET Endpoint Security\x86\ekrn.exe © SS - Demand [2015/03/30 10:40:38] [ 183496] ESET SHA Service (eshasrv) . (.ESET.) - C:\Program Files\ESET\ESET Endpoint Security\eshasrv.exe © SR - Demand [2015/08/13 02:43:14] [ 644880] iPod-Dienst (iPod Service) . (.Apple Inc..) - C:\Program Files\iPod\bin\iPodService.exe © SS - Demand [2015/08/28 16:15:46] [ 149160] Mozilla Maintenance Service (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe © SR - Auto [2015/07/11 06:58:52] [ 186760] ScsiAccess (ScsiAccess) . (...) - C:\Program Files (x86)\Photodex\ProShow Producer\ScsiAccess.exe SR - Auto [2015/08/16 15:48:17] [ 237736] SynTPEnh Caller Service (SynTPEnhService) . (.Synaptics Incorporated.) - C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe © SR - Auto [2015/08/07 08:30:32] [ 5611280] TeamViewer 10 (TeamViewer) . (.TeamViewer GmbH.) - C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe © ---\\ Zusätzliche Scan (O88) (7) - 0s HKLM\SOFTWARE\Wow6432Node\dll-files.com =>PUP.Optional.DllFilesFixer HKCU\SOFTWARE\dll-files.com =>PUP.Optional.DllFilesFixer C:\Program Files (x86)\PC Drivers HeadQuarters =>PUP.Optional.Generic C:\Program Files (x86)\Veloxum =>PUP.Optional.DriverSupport C:\ProgramData\Microsoft Toolkit =>HackTool.AutoKMS C:\ProgramData\PC Drivers HeadQuarters =>PUP.Optional.Generic C:\Users\Agagn\AppData\Roaming\PC Drivers HeadQuarters =>PUP.Optional.Generic ---\\ Zusammenfassung der Elemente gefunden auf Ihrer workstation (5) - 0s http://www.nicolascoolman.fr/blog =>PUP.Optional.DllFilesFixer http://www.nicolascoolman.fr/blog =>PUP.Optional.Generic http://www.nicolascoolman.fr/blog =>PUP.Optional.DriverSupport http://www.nicolascoolman.fr/trojan-autokms/ =>HackTool.AutoKMS http://www.nicolascoolman.fr/blog =>PUP.Optional.SearchEngine ~ End of the scan, 17966 items in 90 seconds (755)(1)()