cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

~ ZHPDiag v2015.9.4.134 Von Nicolas Coolman (2015/09/4)
~ gestartet von Agagn (Administrator) (2015/09/04 20:25:34)
~ Site: http://www.nicolascoolman.fr
~ Facebook: https://www.facebook.com/nicolascoolman1
~ Version des Status: Version OK
~ Modus: Scanner
~ Bericht: C:\Users\Agagn\Desktop\ZHPDiag.txt
~ Bericht: C:\Users\Agagn\AppData\Roaming\ZHP\ZHPDiag.txt
~ UAC: Activate
~ Systemstart: Normal (Normal boot)
Windows 10 Pro, 64-bit (Build 10240)

---\\ Internet-browser (2) - 0s
MFIE: Mozilla Firefox 40.0.3 (x86 de) v40.0.3
MSIE: Internet Explorer v11.0.10240.16431

---\\ Windows-Produkt-Informationen (4) - 4s
~ Windows Server License Manager Script : OK
~ Licence Script File Génération : OK
Windows Automatic Updates : OK (Demand)
Windows Activation Technologies : OK

---\\ System-Datenschutz-software (1) - 1s
Windows Defender W10 (Deactivate)

---\\ System-Optimierungs-software (1) - 1s
CCleaner v5.09.5343

---\\ Monitoring Software (1) - 1s
Adobe Flash Player 18 NPAPI

---\\ Informationen über das system (6) - 0s
~ Operating System: Intel64 Family 6 Model 42 Stepping 7, GenuineIntel
~ Operating System: 64-bit
~ Boot mode: Normal (Normal boot)
Total RAM: 8200.556 MB (71% free)
~ System Restore: Activé (Enable)
~ System drive C: has 353 GB free of 405 GB

---\\ Verbindung zu den Systemmodus (3) - 0s
~ Computer Name: DESKTOP-0EF67Q2
~ User Name: Agagn
~ Logged in as Administrator

---\\ Aufzählung von Disk-Einheiten (2) - 0s
~ Drive C: has 353 GB free of 405 GB (System)
~ Drive D: has 31 GB free of 70 GB

---\\ Status der Windows-Sicherheitscenter (7) - 0s
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK

---\\ Suche generische Systemdateien (24) - 1s
[MD5.F1CBCB7FA6F3B309639AA2D4EF74469C] - (.Microsoft Corporation - Windows-Explorer.) () -- C:\Windows\Explorer.exe [4532304] ©
[MD5.5DED2A3F11AE916C8F2724947E736261] - (.Microsoft Corporation - Windows-Hostprozess (Rundll32).) () -- C:\Windows\System32\rundll32.exe [59392] ©
[MD5.7718A2A9B2BFB2C8E2BAEB03310CA3FD] - (.Microsoft Corporation - Windows-Startanwendung.) () -- C:\Windows\System32\Wininit.exe [290312] ©
[MD5.FE32B8423711B4B4378C0BA3C3560ED4] - (.Microsoft Corporation - Interneterweiterungen für Win32.) () -- C:\Windows\System32\wininet.dll [2741760] ©
[MD5.26EFEFD877A84EE9FBDE6DEE630892C9] - (.Microsoft Corporation - Windows-Anmeldeanwendung.) () -- C:\Windows\System32\Winlogon.exe [578048] ©
[MD5.ECB1943967424DFB96E03F6A098434EF] - (.Microsoft Corporation - Softwarelizenzierungsbibliothek.) () -- C:\Windows\System32\sppcomapi.dll [430592] ©
[MD5.C287D0E32771E3222A444DC527A29477] - (.Microsoft Corporation - DNS-Client-API-DLL.) () -- C:\Windows\System32\dnsapi.dll [680256] ©
[MD5.BB5BBD0E4D04047585E4ED0F07AA51E7] - (.Microsoft Corporation - DNS-Client-API-DLL.) () -- C:\Windows\Syswow64\dnsapi.dll [534064] ©
[MD5.6C12C7E01A4F64E0AA9C88AF66955CC9] - (.Microsoft Corporation - Treiber für zusätzliche WinSock-Funktionen.) () -- C:\Windows\System32\drivers\AFD.sys [577888] ©
[MD5.8921DF6060DB5C7700AA48CB12E9EA08] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) () -- C:\Windows\System32\drivers\atapi.sys [28512] ©
[MD5.F2829DC6D292DCAC5029893BB2E9FEE3] - (.Microsoft Corporation - CD-ROM File System Driver.) () -- C:\Windows\System32\drivers\Cdfs.sys [92672] ©
[MD5.CA160E02F35A61C6F5C681FB4669C519] - (.Microsoft Corporation - SCSI CD-ROM Driver.) () -- C:\Windows\System32\drivers\Cdrom.sys [174080] ©
[MD5.25435407D97419627F4B10653433BF2B] - (.Microsoft Corporation - DFS Namespace Client Driver.) () -- C:\Windows\System32\drivers\DfsC.sys [138240] ©
[MD5.C277A49F8A8295840DEBC9240B75A282] - (.Microsoft Corporation - High Definition Audio Bus Driver.) () -- C:\Windows\System32\drivers\HDAudBus.sys [80896] ©
[MD5.D4CDEE4A62BDFFF6E8558A9552148EA7] - (.Microsoft Corporation - i8042-Anschlusstreiber.) () -- C:\Windows\System32\drivers\i8042prt.sys [114688] ©
[MD5.5D3744E6FDEC1A6FB3FA9B1DD4AF0694] - (.Microsoft Corporation - IP Network Address Translator.) () -- C:\Windows\System32\drivers\IpNat.sys [143360] ©
[MD5.1DF2C5FD2710A13B07E663A12F0E0EEA] - (.Microsoft Corporation - Windows NT SMB Minirdr.) () -- C:\Windows\System32\drivers\MRxSmb.sys [415232] ©
[MD5.F0D791348AD254360CC3C3E501CCB745] - (.Microsoft Corporation - MBT Transport driver.) () -- C:\Windows\System32\drivers\netBT.sys [273408] ©
[MD5.466EC5659C02ED53DBD47DC1BC2B8086] - (.Microsoft Corporation - NT-Dateisystemtreiber.) () -- C:\Windows\System32\drivers\ntfs.sys [2116448] ©
[MD5.38F1AE32339731F6E5A7281AE8042545] - (.Microsoft Corporation - Treiber für parallelen Anschluss.) () -- C:\Windows\System32\drivers\Parport.sys [96768] ©
[MD5.CA60F6C03611AF1710BC903ED9F566FB] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) () -- C:\Windows\System32\drivers\Rasl2tp.sys [104960] ©
[MD5.A32AED8C644734B283A7C9D08D76064D] - (.Microsoft Corporation - Geräte-Redirector für Microsoft RDP.) () -- C:\Windows\System32\drivers\rdpdr.sys [176128] ©
[MD5.28E1E63A1AC65E17B3194238FA2CF3BF] - (.Microsoft Corporation - TDI Translation Driver.) () -- C:\Windows\System32\drivers\tdx.sys [116576] ©
[MD5.823A237D871CD652C6BFD47BECB6810A] - (.Microsoft Corporation - Volumeschattenkopie-Treiber.) () -- C:\Windows\System32\drivers\volsnap.sys [378720] ©

---\\ Prozess läuft (28) - 2s
[MD5.6EB87FDB59AABF6D19C927492DEA0D36] - (.Apple Inc. - MobileDeviceService.) -- C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [77128] [PID.1688] ©
[MD5.EBBCD5DFBB1DE70E8F4AF8FA59E401FD] - (.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe [462184] [PID.1728] ©
[MD5.795BD4A690C00B75F55DC94C95A9FCA0] - (.ESET - ESET Service.) -- C:\Program Files\ESET\ESET Endpoint Security\x86\ekrn.exe [1566424] [PID.1748] ©
[MD5.E4DEBF8D1983712E5E3CF8A7D87D0ABD] - (.Synaptics Incorporated - 64-bit Synaptics Pointing Enhance Service.) -- C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [237736] [PID.2068] ©
[MD5.958E956E119EB7B9ABA142AFED1B5FF4] - (...) -- C:\Program Files (x86)\Photodex\ProShow Producer\ScsiAccess.exe [186760] [PID.2160]
[MD5.CFC9B7B465283378D374D5E380D5D244] - (.TeamViewer GmbH - TeamViewer 10.) -- C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [5611280] [PID.2176] ©
[MD5.D3324E910C1781D78BDDE4784D4BEE8C] - (.Synaptics Incorporated - Synaptics TouchPad 64-bit Enhancements.) -- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3935912] [PID.2888] ©
[MD5.CACD279EAC04E8C829FA2C529EA80B02] - (.Copyright (C) 2015 - .) -- C:\Program Files (x86)\ThinkSky\iTools 3\iToolsDaemon.exe [485240] [PID.2340]
[MD5.F2A27A0CECB4A8752E70949B6D3F3085] - (.ESET - ESET Main GUI.) -- C:\Program Files\ESET\ESET Endpoint Security\egui.exe [5025992] [PID.3100] ©
[MD5.EE18BB116DE68046B08246DD0E41B0B9] - (.IObit - Smart Defrag v4.) -- C:\Program Files (x86)\IObit\Smart Defrag 4\SmartDefrag.exe [4525344] [PID.3168] ©
[MD5.99FC5CBE42E2F2CBC47C1B990CAC3430] - (.Synaptics Incorporated - Synaptics Pointing Device Helper.) -- C:\PROGRAM FILES\SYNAPTICS\SynTP\SYNTPHELPER.EXE [201384] [PID.3448] ©
[MD5.65E8545F1297CD83534C354A7BED1848] - (.Realtek Semiconductor - Realtek HD Audio-Manager.) -- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13885696] [PID.4932] ©
[MD5.0C3154D0620F974AD5C4E8D87626C8CF] - (.Intel Corporation - igfxTray Module.) -- C:\Windows\System32\igfxtray.exe [183216] [PID.4976] ©
[MD5.E4AA3D28753EF9DB333FE40079993B09] - (.Intel Corporation - hkcmd Module.) -- C:\Windows\System32\hkcmd.exe [411056] [PID.2944] ©
[MD5.CF40080765D6F66FA93318C0DB6C7D1F] - (.Intel Corporation - persistence Module.) -- C:\Windows\System32\igfxpers.exe [453552] [PID.4556] ©
[MD5.838258B7655F2309F7BE63F844AF51BB] - (.Apple Inc. - iTunesHelper.) -- C:\Program Files\iTunes\iTunesHelper.exe [170256] [PID.1196] ©
[MD5.EDD15222718345DEF9F12336BA2405D1] - (.Murray Hurps Software Pty Ltd - Ad Muncher.) -- C:\Program Files (x86)\Ad Muncher\AdMunch.exe [560760] [PID.4496]
[MD5.E8D96F840994291789F0CDE6800AC1A4] - (.Apple Inc. - iPodService Module (64-bit).) -- C:\Program Files\iPod\bin\iPodService.exe [644880] [PID.2280] ©
[MD5.378BFB8DD2AB90552356732852E710BE] - (.Murray Hurps Software Pty Ltd - Ad Muncher 64-bit Hook Launcher.) -- C:\Program Files (x86)\Ad Muncher\AdMunch64.exe [11384] [PID.2084]
[MD5.E9C6EF9437ECB30911488F9313AD821A] - (.Tonec Inc. - Internet Download Manager agent for click m.) -- C:\Program Files (x86)\Internet Download Manager\IEMonitor.exe [269848] [PID.3356] ©
[MD5.653E252FFB8272EB1F6C5E560CA13D7F] - (.QFX Software Corporation - KeyScrambler.) -- C:\Program Files (x86)\KeyScrambler\KeyScrambler.exe [509216] [PID.5176]
[MD5.4D62299AB8AA9C8159F37DEE378D2CB4] - (.Zemana Ltd. - Zemana AntiLogger User Interface.) -- C:\Program Files (x86)\AntiLogger\AntiLogger.exe [14679464] [PID.5208]
[MD5.9AC10DF42CC1E811BB8608A0B609A7D0] - (.Oracle Corporation - Java Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [597552] [PID.5228] ©
[MD5.D79389E64A56638C1F31106856DA73A6] - (.QFX Software Corporation - KeyScrambler.) -- C:\Program Files (x86)\KeyScrambler\x64\KeyScrambler.exe [563488] [PID.5464]
[MD5.554C2CD072CC3917120D2A096CF8886E] - (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files (x86)\Internet Download Manager\IDMan.exe [3907152] [PID.3648] ©
[MD5.05299546F243159CB8A42906ACB219A8] - (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe [377000] [PID.832] ©
[MD5.E9A37605E492FBFBD5EDC3FE340F4123] - (.Copyright Microsoft Corporation - Microsoft Photos.) -- C:\Program Files\WindowsApps\Microsoft.Windows.Photos_15.827.16340.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe [7168] [PID.4668]
[MD5.4D3B680F8504CAD0D4EC9059FC17EE20] - (.Nicolas Coolman - ZHPDiag.) -- C:\Users\Agagn\Desktop\ZHPDiag3.exe [1921536] [PID.4076] ©

---\\ Mozilla Firefox, Plugins,Startseite,Seiten of search,Ausdehnung (6) - 0s
P2 - EXT FILE: (...) -- C:\Users\Agagn\AppData\Roaming\Mozilla\Firefox\Profiles\cdb6h3v0.default\extensions\firefox@mega.co.nz.xpi
P2 - EXT: (.Mozilla - Default.) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} ©
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_232.dll ©
P2 - FPN: [HKLM] [@Apple.com/iTunes,version=1.0] - (.Apple Inc..) -- C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ©
P2 - FPN: [HKLM] [@itools.hk/npiTools, version=1.0.0] - (.itools.hk Copyright (C) 2012.) -- C:\Program Files (x86)\ThinkSky\iTools 3\Extensions\npiTools.dll
P2 - FPN: [HKLM] [@photodex.com/PhotodexPresenter] - (.Photodex Corporation.) -- C:\Program Files (x86)\Photodex\ProShow Producer\Photodex Presenter\npPxPlay.dll ©

---\\ Internet Explorer, Startseite,Seiten of search,Ausdehnung (17) - 1s
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} Orphean =>.Microsoft Internet Explorer
R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV9 = 0
R4 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\PhishingFilter,EnabledV9 = 0

---\\ Internet Explorer, Proxy Management (3) - 0s
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0

---\\ Line Analysis - IniFiles, Auto Laden von Programmen (3) - 0s
F2 - REG:system.ini: UserInit=
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe (.Microsoft Corporation.)
F2 - REG:system.ini: VMApplet=

---\\ Hosts Datei-Umleitung (1) - 0s
~ Le fichier hôte est sain (The hosts file is clean) (121)

---\\ Browser Helper-Objekte (4) - 0s
O2 - BHO: IDM Helper [64Bits] - {0055C089-8582-441B-A0BF-17B458C2A3A8} . (.Internet Download Manager, Tonec Inc. - IDM Browser Helper Object.) -- C:\Program Files (x86)\Internet Download Manager\IDMIECC64.dll
O2 - BHO: Java(tm) Plug-In SSV Helper [64Bits] - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre1.8.0_60\bin\ssv.dll ©
O2 - BHO: Java(tm) Plug-In 2 SSV Helper [64Bits] - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre1.8.0_60\bin\jp2ssv.dll ©
O2 - BHO: iToolsBHO [64Bits] - {E1499FE7-129D-4B6E-B681-DDF21E14172C} . (.iTools.hk - .) -- C:\Program Files (x86)\ThinkSky\iTools 3\Extensions\iToolsBHO64.dll

---\\ Auto Laden von Programmen vom Register und Ordner (21) - 0s
O4 - HKLM\..\Run: [RTHDVCPL] . (.Realtek Semiconductor - Realtek HD Audio-Manager.) -- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe ©
O4 - HKLM\..\Run: [IgfxTray] . (.Intel Corporation - igfxTray Module.) -- C:\Windows\system32\igfxtray.exe ©
O4 - HKLM\..\Run: [HotKeysCmds] . (.Intel Corporation - hkcmd Module.) -- C:\Windows\system32\hkcmd.exe ©
O4 - HKLM\..\Run: [Persistence] . (.Intel Corporation - persistence Module.) -- C:\Windows\system32\igfxpers.exe ©
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files (x86)\Synaptics\SynTP\SynTPEnh.exe (.not file.)
O4 - HKLM\..\Run: [iTunesHelper] . (.Apple Inc. - iTunesHelper.) -- C:\Program Files\iTunes\iTunesHelper.exe ©
O4 - HKLM\..\Run: [AdobeAAMUpdater-1.0] . (.Adobe Systems Incorporated - Adobe Updater Startup Utility.) -- C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe ©
O4 - HKCU\..\Run: [IDMan] . (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files (x86)\Internet Download Manager\IDMan.exe ©
O4 - HKCU\..\Run: [AdobeBridge] (Orphean)
O4 - HKCU\..\Run: [IDM trial reset] . (...) -- D:\IDMan Trial Reset by Chamsoo.exe
O4 - HKLM\..\Wow6432Node\Run: [Ad Muncher] . (.Murray Hurps Software Pty Ltd - Ad Muncher.) -- C:\Program Files (x86)\Ad Muncher\AdMunch.exe
O4 - HKLM\..\Wow6432Node\Run: [Athan] . (.www.IslamicFinder.org - Automatic Athan (Azan) five times a day f.) -- C:\Program Files (x86)\Athan\Athan.exe
O4 - HKLM\..\Wow6432Node\Run: [KeyScrambler] . (.QFX Software Corporation - KeyScrambler.) -- C:\Program Files (x86)\KeyScrambler\keyscrambler.exe
O4 - HKLM\..\Wow6432Node\Run: [AntiLogger] . (.Zemana Ltd. - Zemana AntiLogger User Interface.) -- C:\Program Files (x86)\AntiLogger\AntiLogger.exe
O4 - HKLM\..\Wow6432Node\Run: [SunJavaUpdateSched] . (.Oracle Corporation - Java Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe ©
O4 - HKLM\..\Wow6432Node\Run: [QuickTime Task] . (.Apple Inc. - QuickTime Task.) -- C:\Program Files (x86)\QuickTime\QTTask.exe ©
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] . (.Microsoft Corporation - Microsoft OneDrive Setup.) -- C:\Windows\SysWOW64\OneDriveSetup.exe ©
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] . (.Microsoft Corporation - Microsoft OneDrive Setup.) -- C:\Windows\SysWOW64\OneDriveSetup.exe ©
O4 - HKUS\S-1-5-21-161004172-1133365576-1580197619-1001\..\Run: [IDMan] . (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files (x86)\Internet Download Manager\IDMan.exe ©
O4 - HKUS\S-1-5-21-161004172-1133365576-1580197619-1001\..\Run: [AdobeBridge] (Orphean)
O4 - HKUS\S-1-5-21-161004172-1133365576-1580197619-1001\..\Run: [IDM trial reset] . (...) -- D:\IDMan Trial Reset by Chamsoo.exe

---\\ Lop.com/Domain Entführer (2) - 0s
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1

---\\ Zusätzliche Protokolle (21) - 1s
O18 - Handler: about [64Bits] - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML-Anzeige.) -- C:\Windows\System32\mshtml.dll ©
O18 - Handler: cdl [64Bits] - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - OLE32-Erweiterung für Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: dvd [64Bits] - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - ActiveX-Steuerung für Streamingvideo.) -- C:\Windows\System32\MSVidCtl.dll ©
O18 - Handler: file [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32-Erweiterung für Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: ftp [64Bits] - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32-Erweiterung für Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: http [64Bits] - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32-Erweiterung für Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: https [64Bits] - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32-Erweiterung für Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll ©
O18 - Handler: javascript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML-Anzeige.) -- C:\Windows\System32\mshtml.dll ©
O18 - Handler: local [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32-Erweiterung für Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: mailto [64Bits] - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML-Anzeige.) -- C:\Windows\System32\mshtml.dll ©
O18 - Handler: mhtml [64Bits] - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\System32\inetcomm.dll ©
O18 - Handler: mk [64Bits] - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32-Erweiterung für Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: ms-its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll ©
O18 - Handler: res [64Bits] - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML-Anzeige.) -- C:\Windows\System32\mshtml.dll ©
O18 - Handler: tbauth [64Bits] - {14654CA6-5711-491D-B89A-58E571679951} . (.Microsoft Corporation - TBAuth protocol handler.) -- C:\Windows\System32\tbauth.dll ©
O18 - Handler: tv [64Bits] - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - ActiveX-Steuerung für Streamingvideo.) -- C:\Windows\System32\MSVidCtl.dll ©
O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML-Anzeige.) -- C:\Windows\System32\mshtml.dll ©
O18 - Filter: application/octet-stream [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll ©
O18 - Filter: application/x-complus [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll ©
O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll ©

---\\ AppInit_DLLs Registrierungswert Autorun (1) - 0s
O20 - AppInit_DLLs: . (.Zemana Ltd. - Zemana AntiLogger SDK.) - C:\Program Files (x86)\KeyCryptSDK\KeyCrypt64(1).dll

---\\ Nicht von Microsoft nicht deaktiviert Windows XP/NT/2000-Dienste (6) - 1s
O23 - Service: Apple Mobile Device Service (Apple Mobile Device Service) . (.Apple Inc. - MobileDeviceService.) - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe ©
O23 - Service: Dienst "Bonjour" (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files\Bonjour\mDNSResponder.exe ©
O23 - Service: ESET Service (ekrn) . (.ESET - ESET Service.) - C:\Program Files\ESET\ESET Endpoint Security\x86\ekrn.exe ©
O23 - Service: ScsiAccess (ScsiAccess) . (...) - C:\Program Files (x86)\Photodex\ProShow Producer\ScsiAccess.exe
O23 - Service: SynTPEnh Caller Service (SynTPEnhService) . (.Synaptics Incorporated - 64-bit Synaptics Pointing Enhance Service.) - C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe ©
O23 - Service: TeamViewer 10 (TeamViewer) . (.TeamViewer GmbH - TeamViewer 10.) - C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe ©

---\\ Im Automatikbetrieb geplanten Tasks (17) - 4s
[MD5.368290D0A612D62DA6F3D798B1BB8FE7] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [269000] ©
[MD5.30495744C8F3FB155DD03EBBB3273633] [APT] [Driver Booster Beta Scheduler] (.IObit.) -- C:\Program Files (x86)\IObit\Driver Booster Beta\Scheduler.exe [998208] ©
[MD5.2693DCF0399AE1FB17BB023347CDFA79] [APT] [Driver Booster Beta SkipUAC (Agagn)] (.IObit.) -- C:\Program Files (x86)\IObit\Driver Booster Beta\DriverBooster.exe [4473664] ©
[MD5.CACD279EAC04E8C829FA2C529EA80B02] [APT] [iToolsDaemon] (.Copyright (C) 2015.) -- C:\Program Files (x86)\ThinkSky\iTools 3\iToolsDaemon.exe [485240]
[MD5.ACD698C60D6937D535011BE4E83F7C36] [APT] [Red Giant Link] (...) -- C:\Program Files (x86)\Red Giant Link\Common\Red Giant Link.exe [136192]
[MD5.EE18BB116DE68046B08246DD0E41B0B9] [APT] [SmartDefrag4_Startup] (.IObit.) -- C:\Program Files (x86)\IObit\Smart Defrag 4\SmartDefrag.exe [4525344] ©
[MD5.57D3596B42180C634674A333A6CC9E3F] [APT] [SmartDefrag4_Update] (.IObit.) -- C:\Program Files (x86)\IObit\Smart Defrag 4\AutoUpdate.exe [2244384] ©
[MD5.34EBD4FF6A24D86BB4716D6AFCC1A89B] [APT] [Apple\AppleSoftwareUpdate] (.Apple Inc..) -- C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [561984] ©
O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\Windows\Tasks\Adobe Flash Player Updater.job [884] ©
O39 - APT: iToolsDaemon - (.Copyright (C) 2015.) -- C:\Windows\Tasks\iToolsDaemon.job [350]
O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\Windows\System32\Tasks\Adobe Flash Player Updater [3860] ©
O39 - APT: Driver Booster Beta Scheduler - (.IObit.) -- C:\Windows\System32\Tasks\Driver Booster Beta Scheduler [3446] ©
O39 - APT: Driver Booster Beta SkipUAC (Agagn) - (.IObit.) -- C:\Windows\System32\Tasks\Driver Booster Beta SkipUAC (Agagn) [3094] ©
O39 - APT: iToolsDaemon - (.Copyright (C) 2015.) -- C:\Windows\System32\Tasks\iToolsDaemon [3362]
O39 - APT: Red Giant Link - (...) -- C:\Windows\System32\Tasks\Red Giant Link [4310]
O39 - APT: SmartDefrag4_Startup - (.IObit.) -- C:\Windows\System32\Tasks\SmartDefrag4_Startup [3316] ©
O39 - APT: SmartDefrag4_Update - (.IObit.) -- C:\Windows\System32\Tasks\SmartDefrag4_Update [3312] ©

---\\ Installierte Software (64) - 6s
O42 - Logiciel: Neat Video for After Effects (64-bit) - (.ABSoft.) [HKLM][64Bits] -- Neat Video for After Effects_is1
O42 - Logiciel: Synaptics Pointing Device Driver - (.Synaptics Incorporated.) [HKLM][64Bits] -- SynTPDeinstKey ©
O42 - Logiciel: VLC media player - (.VideoLAN.) [HKLM][64Bits] -- VLC media player ©
O42 - Logiciel: WinRAR 5.30 beta 1 (64-bit) - (.win.rar GmbH.) [HKLM][64Bits] -- WinRAR archiver ©
O42 - Logiciel: ExtremeCopy - (.Easersoft.) [HKLM][64Bits] -- {20280594-6811-420E-A4E7-55EC7FE561B8} ©
O42 - Logiciel: 7-Zip 9.20 (x64 edition) - (.Igor Pavlov.) [HKLM][64Bits] -- {23170F69-40C1-2702-0920-000001000000} ©
O42 - Logiciel: Java 8 Update 51 (64-bit) - (.Oracle Corporation.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F86418051F0} ©
O42 - Logiciel: Java 8 Update 60 (64-bit) - (.Oracle Corporation.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F86418060F0} ©
O42 - Logiciel: Magic Bullet Suite 64-bit - (.Red Giant Software.) [HKLM][64Bits] -- {3C09DE13-867C-4289-9F95-4510BB3A5F57} ©
O42 - Logiciel: ESET Endpoint Security - (.ESET, spol. s r.o..) [HKLM][64Bits] -- {50821EDD-6F26-4FB9-AE31-789ACF81EC35}
O42 - Logiciel: Trapcode Suite 64-bit - (.Red Giant Software.) [HKLM][64Bits] -- {5210717F-CAFD-4F21-8DF7-6ED3862725C4} ©
O42 - Logiciel: Apple Mobile Device Support - (.Apple Inc..) [HKLM][64Bits] -- {5D61F006-168C-4B8B-B7FD-F113C10AE0E4} ©
O42 - Logiciel: Java SE Development Kit 8 Update 45 (64-bit) - (.Oracle Corporation.) [HKLM][64Bits] -- {64A3A4F4-B792-11D6-A78A-00B0D0180450} ©
O42 - Logiciel: Bonjour - (.Apple Inc..) [HKLM][64Bits] -- {6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D} ©
O42 - Logiciel: Effects Suite 64-bit - (.Red Giant Software.) [HKLM][64Bits] -- {A9462025-681A-44C7-9F6F-70C96320F4C2} ©
O42 - Logiciel: Apple Application Support (64-Bit) - (.Apple Inc..) [HKLM][64Bits] -- {B255D495-4734-4E9B-B4F5-96702FD4A7B9} ©
O42 - Logiciel: iTunes - (.Apple Inc..) [HKLM][64Bits] -- {BFEAB774-C7DC-4032-B05A-DA5F7CB7B365} ©
O42 - Logiciel: Keying Suite 64-bit - (.Red Giant Software.) [HKLM][64Bits] -- {C6A6C665-F8D7-4CAD-942A-5D2A5C8F5133} ©
O42 - Logiciel: Ad Muncher v4.94.34121 (Free) - (...) [HKLM][64Bits] -- Ad Muncher
O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe AIR ©
O42 - Logiciel: Adobe Flash Player 18 NPAPI - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player NPAPI ©
O42 - Logiciel: AntiLogger - (.Zemana Ltd..) [HKLM][64Bits] -- AntiLogger
O42 - Logiciel: Ashampoo Photo Optimizer 6.0.12 6.0.12 - (.WAGDIMANSI.) [HKLM][64Bits] -- Ashampoo Photo Optimizer 6.0.12 6.0.12
O42 - Logiciel: Athan Pro 4.5 - (...) [HKLM][64Bits] -- Athan
O42 - Logiciel: Driver Booster 3.0 Beta - (.IObit.) [HKLM][64Bits] -- Driver Booster Beta_is1 ©
O42 - Logiciel: Express Burn Disc Burning Software - (.NCH Software.) [HKLM][64Bits] -- ExpressBurn ©
O42 - Logiciel: FormatFactory 3.7.0.0 - (.Format Factory.) [HKLM][64Bits] -- FormatFactory ©
O42 - Logiciel: Hard Disk Low Level Format Tool 4.40 - (.HDDGURU.) [HKLM][64Bits] -- Hard Disk Low Level Format Tool_is1 ©
O42 - Logiciel: Magic Bullet Suite 64-bit - (.Red Giant Software.) [HKLM][64Bits] -- InstallShield_{3C09DE13-867C-4289-9F95-4510BB3A5F57} ©
O42 - Logiciel: Trapcode Suite 64-bit - (.Red Giant Software.) [HKLM][64Bits] -- InstallShield_{5210717F-CAFD-4F21-8DF7-6ED3862725C4} ©
O42 - Logiciel: Effects Suite 64-bit - (.Red Giant Software.) [HKLM][64Bits] -- InstallShield_{A9462025-681A-44C7-9F6F-70C96320F4C2} ©
O42 - Logiciel: Keying Suite 64-bit - (.Red Giant Software.) [HKLM][64Bits] -- InstallShield_{C6A6C665-F8D7-4CAD-942A-5D2A5C8F5133} ©
O42 - Logiciel: Internet Download Manager - (.Tonec Inc..) [HKLM][64Bits] -- Internet Download Manager ©
O42 - Logiciel: KeyScrambler - (.QFX Software Corporation.) [HKLM][64Bits] -- KeyScrambler
O42 - Logiciel: Mozilla Firefox 40.0.3 (x86 de) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox 40.0.3 (x86 de) ©
O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM][64Bits] -- MozillaMaintenanceService ©
O42 - Logiciel: OSS Video Decompiler 5.5.0.4 - (.OneStopSoft.) [HKLM][64Bits] -- OSS Video Decompiler_is1
O42 - Logiciel: Photodex Presenter - (.Photodex Corporation.) [HKLM][64Bits] -- Photodex Presenter ©
O42 - Logiciel: PowerISO - (.Power Software Ltd.) [HKLM][64Bits] -- PowerISO ©
O42 - Logiciel: ProShow MediaSource - Wedding Essentials - (...) [HKLM][64Bits] -- ProShow MediaSource - Wedding Essentials
O42 - Logiciel: Smart Defrag 4 - (.IObit.) [HKLM][64Bits] -- Smart Defrag 4_is1 ©
O42 - Logiciel: TeamViewer 10 - (.TeamViewer.) [HKLM][64Bits] -- TeamViewer ©
O42 - Logiciel: iTools 3 - (.Shenzhen Thinksky Technology Co., Ltd..) [HKLM][64Bits] -- ThinkSky
O42 - Logiciel: TotalImageConverter - (.Softplicity, Inc..) [HKLM][64Bits] -- Total Image Converter_is1
O42 - Logiciel: Video Motion Pro - (.UNKNOWN.) [HKLM][64Bits] -- VideoMotionPro
O42 - Logiciel: VoipConnect - (.Finarea S.A. Switzerland.) [HKLM][64Bits] -- VoipConnect_is1
O42 - Logiciel: VirusTotal Uploader 2.2 - (...) [HKLM][64Bits] -- VTUploader
O42 - Logiciel: Xilisoft Video Editor 2 - (.Xilisoft.) [HKLM][64Bits] -- Xilisoft Video Editor 2
O42 - Logiciel: Your Uninstaller! 7 - (.URSoft, Inc..) [HKLM][64Bits] -- YU2010_is1
O42 - Logiciel: AntiLogger - (.Zemana Ltd..) [HKLM][64Bits] -- {014534FF-1D46-4A77-9B48-29EFD145995B}
O42 - Logiciel: CCleaner - (.Piriform Ltd.) [HKLM][64Bits] -- {07992E15-B8DE-45E4-9312-C429095828C9} ©
O42 - Logiciel: Java 8 Update 51 - (.Oracle Corporation.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83218051F0} ©
O42 - Logiciel: Java 8 Update 60 - (.Oracle Corporation.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83218060F0} ©
O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {31B9D218-FED2-4C6C-B19F-7294FFC130B0} ©
O42 - Logiciel: Java SE Development Kit 8 Update 45 - (.Oracle Corporation.) [HKLM][64Bits] -- {32A3A4F4-B792-11D6-A78A-00B0D0180450} ©
O42 - Logiciel: Adobe After Effects CS6 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {4817D846-700B-474E-A31B-80892B3E92E3} ©
O42 - Logiciel: KeyCrypt SDK version 1.8.1.199 - (.Zemana Ltd..) [HKLM][64Bits] -- {5575EADE-4685-4E15-A9CD-6036BC2A3F75}_is1
O42 - Logiciel: PhotoInstrument 7.4 - (.Fatykhov Timur.) [HKLM][64Bits] -- {5A7A2AED-781B-45DC-AAF6-EAA3A9370C83}}_is1 ©
O42 - Logiciel: Video Motion Pro - (.UNKNOWN.) [HKLM][64Bits] -- {739BE4B3-1D6A-D5A1-C06B-E0FFB742E8C2}
O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM][64Bits] -- {789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE} ©
O42 - Logiciel: Apple Application Support (32-Bit) - (.Apple Inc..) [HKLM][64Bits] -- {7FE25256-B7C1-480D-B736-10A67A833AEA} ©
O42 - Logiciel: QuickTime - (.Apple Inc..) [HKLM][64Bits] -- {B67BAFBA-4C9F-48FA-9496-933E3B255044} ©
O42 - Logiciel: Intel(R) Processor Graphics - (.Intel Corporation.) [HKLM][64Bits] -- {F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA} ©
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC} ©

---\\ HKCU & HKLM Software Keys (97) - 6s
HKLM\SOFTWARE\Wow6432Node\ABSoft
HKLM\SOFTWARE\Wow6432Node\AdMuncher
HKLM\SOFTWARE\Wow6432Node\Adobe
HKLM\SOFTWARE\Wow6432Node\AdwCleaner
HKLM\SOFTWARE\Wow6432Node\Apple Computer, Inc.
HKLM\SOFTWARE\Wow6432Node\Apple Inc.
HKLM\SOFTWARE\Wow6432Node\AviSynth
HKLM\SOFTWARE\Wow6432Node\dll-files.com =>PUP.Optional.DllFilesFixer
HKLM\SOFTWARE\Wow6432Node\ESET
HKLM\SOFTWARE\Wow6432Node\GNU
HKLM\SOFTWARE\Wow6432Node\Google
HKLM\SOFTWARE\Wow6432Node\HaaliMkx
HKLM\SOFTWARE\Wow6432Node\Intel
HKLM\SOFTWARE\Wow6432Node\Internet Download Manager
HKLM\SOFTWARE\Wow6432Node\IObit
HKLM\SOFTWARE\Wow6432Node\JavaSoft
HKLM\SOFTWARE\Wow6432Node\JreMetrics
HKLM\SOFTWARE\Wow6432Node\Licenses
HKLM\SOFTWARE\Wow6432Node\Macromedia
HKLM\SOFTWARE\Wow6432Node\MAGIX
HKLM\SOFTWARE\Wow6432Node\MimarSinan
HKLM\SOFTWARE\Wow6432Node\Mozilla
HKLM\SOFTWARE\Wow6432Node\mozilla.org
HKLM\SOFTWARE\Wow6432Node\MozillaPlugins
HKLM\SOFTWARE\Wow6432Node\NCH Software
HKLM\SOFTWARE\Wow6432Node\Nuance
HKLM\SOFTWARE\Wow6432Node\ODBC
HKLM\SOFTWARE\Wow6432Node\Ordinarysoft
HKLM\SOFTWARE\Wow6432Node\Photodex Media Sources
HKLM\SOFTWARE\Wow6432Node\Photodex Presenter
HKLM\SOFTWARE\Wow6432Node\Piriform
HKLM\SOFTWARE\Wow6432Node\PowerISO
HKLM\SOFTWARE\Wow6432Node\QFX Software
HKLM\SOFTWARE\Wow6432Node\Red Giant Software
HKLM\SOFTWARE\Wow6432Node\SRS Labs
HKLM\SOFTWARE\Wow6432Node\TeamViewer
HKLM\SOFTWARE\Wow6432Node\Virustotal
HKLM\SOFTWARE\Wow6432Node\Volatile
HKLM\SOFTWARE\Wow6432Node\Xara
HKLM\SOFTWARE\Wow6432Node\Xilisoft
HKLM\SOFTWARE\Wow6432Node\Zemana
HKLM\SOFTWARE\Wow6432Node\RegisteredApplications
HKCU\SOFTWARE\7-Zip
HKCU\SOFTWARE\ABSoft
HKCU\SOFTWARE\Adobe
HKCU\SOFTWARE\AppDataLow
HKCU\SOFTWARE\Apple Computer, Inc.
HKCU\SOFTWARE\Apple Inc.
HKCU\SOFTWARE\Ashampoo
HKCU\SOFTWARE\ASProtect
HKCU\SOFTWARE\Dee Mon
HKCU\SOFTWARE\dll-files.com =>PUP.Optional.DllFilesFixer
HKCU\SOFTWARE\DownloadManager
HKCU\SOFTWARE\DriverSupport
HKCU\SOFTWARE\Easersoft
HKCU\SOFTWARE\ESET
HKCU\SOFTWARE\FreeTime
HKCU\SOFTWARE\Gabest
HKCU\SOFTWARE\GNU
HKCU\SOFTWARE\Haali
HKCU\SOFTWARE\Helmsman
HKCU\SOFTWARE\Hewlett-Packard
HKCU\SOFTWARE\Intel
HKCU\SOFTWARE\JavaSoft
HKCU\SOFTWARE\Licenses
HKCU\SOFTWARE\Macromedia
HKCU\SOFTWARE\Magix
HKCU\SOFTWARE\MAGIX AG
HKCU\SOFTWARE\Mozilla
HKCU\SOFTWARE\NCH Software
HKCU\SOFTWARE\Netscape
HKCU\SOFTWARE\ODBC
HKCU\SOFTWARE\Photodex
HKCU\SOFTWARE\PhotoInstrument
HKCU\SOFTWARE\Piriform
HKCU\SOFTWARE\PowerISO
HKCU\SOFTWARE\QFX Software
HKCU\SOFTWARE\Realtek
HKCU\SOFTWARE\Red Giant Software
HKCU\SOFTWARE\RedGiantSoftware
HKCU\SOFTWARE\RegisteredApplications
HKCU\SOFTWARE\Softplicity
HKCU\SOFTWARE\Synaptics
HKCU\SOFTWARE\TeamViewer
HKCU\SOFTWARE\The Silicon Realms Toolworks
HKCU\SOFTWARE\ThinkSky
HKCU\SOFTWARE\Trolltech
HKCU\SOFTWARE\URSoft
HKCU\SOFTWARE\VoipConnect
HKCU\SOFTWARE\WinRAR
HKCU\SOFTWARE\WinRAR SFX
HKCU\SOFTWARE\Wow6432Node
HKCU\SOFTWARE\Xilisoft
HKCU\SOFTWARE\ZebHelpProcess Helper
HKCU\SOFTWARE\Zemana
HKCU\SOFTWARE\AppDataLow\Software
HKCU\SOFTWARE\AppDataLow\Software\JavaSoft

---\\ Inhalt der Ordner Programme (219) - 9s
O43 - CFD: 2015/08/16 16:29:41 - [] D -- C:\Program Files (x86)\Ad Muncher
O43 - CFD: 2015/08/29 17:26:31 - [] D -- C:\Program Files (x86)\Adobe
O43 - CFD: 2015/08/18 17:59:18 - [] D -- C:\Program Files (x86)\AntiLogger
O43 - CFD: 2015/08/18 16:02:15 - [] D -- C:\Program Files (x86)\Apple Software Update
O43 - CFD: 2015/08/31 18:24:53 - [] D -- C:\Program Files (x86)\Ashampoo Photo Optimizer 6.0.12
O43 - CFD: 2015/08/18 17:20:26 - [] D -- C:\Program Files (x86)\Athan
O43 - CFD: 2015/08/18 16:01:57 - [] D -- C:\Program Files (x86)\Bonjour
O43 - CFD: 2015/08/26 16:46:52 - [] D -- C:\Program Files (x86)\CCleaner
O43 - CFD: 2015/09/02 19:13:41 - [] D -- C:\Program Files (x86)\Common Files
O43 - CFD: 2015/08/18 17:16:39 - [] D -- C:\Program Files (x86)\CoolUtils
O43 - CFD: 2015/08/22 19:28:36 - [] D -- C:\Program Files (x86)\FormatFactory
O43 - CFD: 2015/08/18 15:39:06 - [] D -- C:\Program Files (x86)\HDDGURU LLF Tool
O43 - CFD: 2015/08/29 18:18:40 - [] D -- C:\Program Files (x86)\InstallShield Installation Information
O43 - CFD: 2015/08/16 15:47:31 - [] D -- C:\Program Files (x86)\Intel
O43 - CFD: 2015/08/29 16:06:23 - [] D -- C:\Program Files (x86)\Internet Download Manager
O43 - CFD: 2015/08/16 16:36:59 - [] D -- C:\Program Files (x86)\Internet Explorer
O43 - CFD: 2015/08/21 18:54:45 - [] D -- C:\Program Files (x86)\IObit
O43 - CFD: 2015/08/18 16:02:36 - [] D -- C:\Program Files (x86)\iTunes
O43 - CFD: 2015/08/20 16:51:10 - [] D -- C:\Program Files (x86)\Java
O43 - CFD: 2015/08/18 17:59:11 - [] D -- C:\Program Files (x86)\KeyCryptSDK
O43 - CFD: 2015/08/18 17:54:37 - [] D -- C:\Program Files (x86)\KeyScrambler
O43 - CFD: 2015/08/29 17:59:14 - [] D -- C:\Program Files (x86)\LooksBuilder
O43 - CFD: 2015/09/02 19:08:50 - [] D -- C:\Program Files (x86)\MAGIX
O43 - CFD: 2015/09/02 18:56:12 - [] D -- C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 2015/08/29 16:54:11 - [] D -- C:\Program Files (x86)\Mozilla Firefox
O43 - CFD: 2015/08/28 19:56:06 - [] D -- C:\Program Files (x86)\Mozilla Maintenance Service
O43 - CFD: 2015/08/16 17:20:35 - [] D -- C:\Program Files (x86)\MSBuild
O43 - CFD: 2015/09/02 18:21:37 - [] D -- C:\Program Files (x86)\MSECache
O43 - CFD: 2015/09/04 17:09:18 - [] D -- C:\Program Files (x86)\NCH Software
O43 - CFD: 2015/08/31 18:18:10 - [] D -- C:\Program Files (x86)\OSS
O43 - CFD: 2015/09/02 17:08:54 - [] D -- C:\Program Files (x86)\PC Drivers HeadQuarters =>PUP.Optional.Generic
O43 - CFD: 2015/08/29 18:33:02 - [] D -- C:\Program Files (x86)\Photodex
O43 - CFD: 2015/08/28 20:40:29 - [] D -- C:\Program Files (x86)\PhotoInstrument
O43 - CFD: 2015/08/30 14:26:51 - [] D -- C:\Program Files (x86)\ProShow MediaSource - Wedding Essentials
O43 - CFD: 2015/08/29 21:01:06 - [] D -- C:\Program Files (x86)\QuickTime
O43 - CFD: 2015/08/29 17:59:07 - [] D -- C:\Program Files (x86)\Red Giant Link
O43 - CFD: 2015/08/16 17:20:35 - [] D -- C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 2015/08/17 16:15:28 - [] D -- C:\Program Files (x86)\TeamViewer
O43 - CFD: 2015/08/18 17:33:32 - [] D -- C:\Program Files (x86)\ThinkSky
O43 - CFD: 2015/09/02 17:01:53 - [] D -- C:\Program Files (x86)\Veloxum =>PUP.Optional.DriverSupport
O43 - CFD: 2015/08/31 18:05:00 - [] D -- C:\Program Files (x86)\VideoMotionPro
O43 - CFD: 2015/08/18 15:57:01 - [] D -- C:\Program Files (x86)\VirusTotalUploader2
O43 - CFD: 2015/08/21 20:34:59 - [] D -- C:\Program Files (x86)\VoipConnect.com
O43 - CFD: 2015/07/10 18:34:36 - [] D -- C:\Program Files (x86)\Windows Defender
O43 - CFD: 2015/07/10 18:34:36 - [] D -- C:\Program Files (x86)\Windows Mail
O43 - CFD: 2015/07/10 18:34:36 - [] D -- C:\Program Files (x86)\Windows Media Player
O43 - CFD: 2015/07/10 13:04:26 - [] D -- C:\Program Files (x86)\Windows Multimedia Platform
O43 - CFD: 2015/07/10 13:04:22 - [] D -- C:\Program Files (x86)\Windows NT
O43 - CFD: 2015/07/10 18:34:36 - [] D -- C:\Program Files (x86)\Windows Photo Viewer
O43 - CFD: 2015/07/10 13:04:26 - [] D -- C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 2015/07/10 13:04:22 - [] SHD -- C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 2015/07/10 13:04:22 - [] SD -- C:\Program Files (x86)\WindowsPowerShell
O43 - CFD: 2015/08/30 12:18:31 - [] D -- C:\Program Files (x86)\Xilisoft
O43 - CFD: 2015/08/21 18:02:16 - [] D -- C:\Program Files (x86)\Your Uninstaller! 7
O43 - CFD: 2015/08/16 15:52:29 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
O43 - CFD: 2015/07/10 13:04:26 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessibility
O43 - CFD: 2015/07/10 18:44:35 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 2015/08/16 16:29:42 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ad Muncher
O43 - CFD: 2015/07/10 18:44:35 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 2015/08/18 17:59:19 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AntiLogger
O43 - CFD: 2015/08/18 17:19:45 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Athan
O43 - CFD: 2015/08/18 17:16:44 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CoolUtils
O43 - CFD: 2015/08/17 16:34:19 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Booster 3 Beta
O43 - CFD: 2015/08/22 15:58:18 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET
O43 - CFD: 2015/08/18 17:14:40 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ExtremeCopy
O43 - CFD: 2015/08/18 15:39:06 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HDD Low Level Format Tool
O43 - CFD: 2015/08/16 15:49:26 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download Manager
O43 - CFD: 2015/08/18 17:33:37 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTools 3
O43 - CFD: 2015/08/18 16:03:25 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
O43 - CFD: 2015/08/20 16:53:23 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
O43 - CFD: 2015/08/20 16:53:23 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java Development Kit
O43 - CFD: 2015/08/18 17:53:14 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KeyScrambler
O43 - CFD: 2015/08/29 17:59:19 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Magic Bullet Looks
O43 - CFD: 2015/07/10 13:04:26 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 2015/08/29 18:08:42 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Neat Video for After Effects
O43 - CFD: 2015/09/01 19:05:42 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OSS Video Decompiler
O43 - CFD: 2015/08/28 20:40:29 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PhotoInstrument
O43 - CFD: 2015/08/21 18:51:54 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerISO
O43 - CFD: 2015/08/30 14:26:52 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ProShow MediaSource - Wedding Essentials
O43 - CFD: 2015/08/30 00:32:49 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ProShow Producer
O43 - CFD: 2015/08/29 21:01:00 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
O43 - CFD: 2015/08/29 17:59:19 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Red Giant
O43 - CFD: 2015/08/21 18:54:51 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Smart Defrag 4
O43 - CFD: 2015/07/10 13:04:26 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StartUp
O43 - CFD: 2015/07/10 13:04:26 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools
O43 - CFD: 2015/07/10 18:44:31 - [0] RHD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC
O43 - CFD: 2015/08/16 16:34:53 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
O43 - CFD: 2015/08/21 20:35:02 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VoipConnect
O43 - CFD: 2015/08/16 15:52:50 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
O43 - CFD: 2015/08/30 12:18:53 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Xilisoft
O43 - CFD: 2015/08/21 18:02:16 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Your Uninstaller! 7
O43 - CFD: 2015/09/02 17:47:29 - [] D -- C:\ProgramData\Ad Muncher
O43 - CFD: 2015/08/29 17:22:25 - [] D -- C:\ProgramData\Adobe
O43 - CFD: 2015/08/16 15:35:57 - [0] SHD -- C:\ProgramData\Anwendungsdaten
O43 - CFD: 2015/08/18 16:02:11 - [] D -- C:\ProgramData\Apple
O43 - CFD: 2015/08/18 16:02:32 - [] D -- C:\ProgramData\Apple Computer
O43 - CFD: 2015/07/10 14:21:38 - [0] SHD -- C:\ProgramData\Application Data
O43 - CFD: 2015/07/10 13:04:22 - [0] D -- C:\ProgramData\Comms
O43 - CFD: 2015/07/10 14:21:38 - [0] SHD -- C:\ProgramData\Desktop
O43 - CFD: 2015/07/10 14:21:38 - [0] SHD -- C:\ProgramData\Documents
O43 - CFD: 2015/08/16 15:35:57 - [0] SHD -- C:\ProgramData\Dokumente
O43 - CFD: 2015/08/22 15:58:18 - [] D -- C:\ProgramData\ESET
O43 - CFD: 2015/08/29 14:43:29 - [] D -- C:\ProgramData\GenArts
O43 - CFD: 2015/08/29 12:11:43 - [0] D -- C:\ProgramData\goodasnew
O43 - CFD: 2015/08/16 15:49:27 - [0] D -- C:\ProgramData\IDM
O43 - CFD: 2015/08/17 16:34:19 - [] D -- C:\ProgramData\IObit
O43 - CFD: 2015/08/21 17:43:55 - [] D -- C:\ProgramData\Logs
O43 - CFD: 2015/09/03 16:25:06 - [] D -- C:\ProgramData\MAGIX
O43 - CFD: 2015/08/21 18:25:02 - [0] D -- C:\ProgramData\MEGAsync
O43 - CFD: 2015/09/02 18:56:12 - [] SD -- C:\ProgramData\Microsoft
O43 - CFD: 2015/09/02 18:56:18 - [] D -- C:\ProgramData\Microsoft Help
O43 - CFD: 2015/08/16 15:45:11 - [] D -- C:\ProgramData\Microsoft OneDrive
O43 - CFD: 2015/08/31 18:01:17 - [] D -- C:\ProgramData\Microsoft Toolkit =>HackTool.AutoKMS
O43 - CFD: 2015/09/04 17:09:18 - [] D -- C:\ProgramData\NCH Software
O43 - CFD: 2015/08/17 16:13:50 - [] D -- C:\ProgramData\Oracle
O43 - CFD: 2015/08/22 21:21:29 - [] D -- C:\ProgramData\Package Cache
O43 - CFD: 2015/09/02 17:01:24 - [] D -- C:\ProgramData\PC Drivers HeadQuarters =>PUP.Optional.Generic
O43 - CFD: 2015/08/29 18:33:51 - [] D -- C:\ProgramData\Photodex
O43 - CFD: 2015/09/01 15:23:23 - [] D -- C:\ProgramData\ProductData
O43 - CFD: 2015/08/18 17:49:32 - [] D -- C:\ProgramData\QFX Software
O43 - CFD: 2015/08/29 14:36:35 - [] D -- C:\ProgramData\Red Giant
O43 - CFD: 2015/08/29 18:11:31 - [] D -- C:\ProgramData\RedGiant
O43 - CFD: 2015/08/23 12:05:06 - [] D -- C:\ProgramData\regid.1986-12.com.adobe
O43 - CFD: 2015/08/22 07:38:58 - [] D -- C:\ProgramData\regid.1991-06.com.microsoft
O43 - CFD: 2015/08/23 16:10:37 - [0] D -- C:\ProgramData\rgt
O43 - CFD: 2015/07/10 13:04:22 - [0] D -- C:\ProgramData\SoftwareDistribution
O43 - CFD: 2015/07/10 14:21:38 - [0] SHD -- C:\ProgramData\Start Menu
O43 - CFD: 2015/08/16 15:35:57 - [0] SHD -- C:\ProgramData\Startmenü
O43 - CFD: 2015/08/16 18:21:16 - [] D -- C:\ProgramData\Sun
O43 - CFD: 2015/09/03 17:38:33 - [] AD -- C:\ProgramData\TEMP
O43 - CFD: 2015/07/10 14:21:38 - [0] SHD -- C:\ProgramData\Templates
O43 - CFD: 2015/08/18 17:33:37 - [] D -- C:\ProgramData\ThinkSky
O43 - CFD: 2015/07/10 14:22:45 - [] D -- C:\ProgramData\USOPrivate
O43 - CFD: 2015/07/10 14:22:45 - [] D -- C:\ProgramData\USOShared
O43 - CFD: 2015/08/16 15:35:57 - [0] SHD -- C:\ProgramData\Vorlagen
O43 - CFD: 2015/08/22 15:30:20 - [] D -- C:\ProgramData\WWinManProW
O43 - CFD: 2015/08/30 12:18:31 - [] D -- C:\ProgramData\Xilisoft
O43 - CFD: 2015/08/29 13:04:31 - [] D -- C:\ProgramData\Zaxwerks
O43 - CFD: 2015/08/18 17:59:19 - [] HDC -- C:\ProgramData\{02A8F2F7-A05E-4DC5-950D-52243BB4C610}
O43 - CFD: 2015/08/29 17:26:32 - [] D -- C:\Program Files (x86)\Common Files\Adobe
O43 - CFD: 2015/08/16 16:31:53 - [] D -- C:\Program Files (x86)\Common Files\Adobe AIR
O43 - CFD: 2015/08/18 16:02:04 - [] D -- C:\Program Files (x86)\Common Files\Apple
O43 - CFD: 2015/08/20 16:49:51 - [] D -- C:\Program Files (x86)\Common Files\Java
O43 - CFD: 2015/09/03 16:25:05 - [] D -- C:\Program Files (x86)\Common Files\MAGIX Services
O43 - CFD: 2015/09/02 19:13:41 - [] D -- C:\Program Files (x86)\Common Files\MAGIX Shared
O43 - CFD: 2015/09/02 18:56:04 - [] D -- C:\Program Files (x86)\Common Files\Microsoft Shared
O43 - CFD: 2015/07/10 13:04:26 - [] D -- C:\Program Files (x86)\Common Files\Services
O43 - CFD: 2015/07/10 18:34:36 - [] D -- C:\Program Files (x86)\Common Files\System
O43 - CFD: 2015/08/29 17:26:31 - [] D -- C:\Users\Agagn\AppData\Roaming\Adobe
O43 - CFD: 2015/08/18 16:03:44 - [] D -- C:\Users\Agagn\AppData\Roaming\Apple Computer
O43 - CFD: 2015/09/04 20:25:12 - [] D -- C:\Users\Agagn\AppData\Roaming\DMCache
O43 - CFD: 2015/09/02 17:52:55 - [] D -- C:\Users\Agagn\AppData\Roaming\Download Manager
O43 - CFD: 2015/08/21 18:15:50 - [] D -- C:\Users\Agagn\AppData\Roaming\dslrBooth
O43 - CFD: 2015/08/16 17:48:14 - [] D -- C:\Users\Agagn\AppData\Roaming\ESET
O43 - CFD: 2015/08/18 17:15:04 - [] D -- C:\Users\Agagn\AppData\Roaming\ExtremeCopy
O43 - CFD: 2015/09/02 18:22:15 - [] D -- C:\Users\Agagn\AppData\Roaming\Identities
O43 - CFD: 2015/09/04 17:00:59 - [] D -- C:\Users\Agagn\AppData\Roaming\IDM
O43 - CFD: 2015/08/21 18:54:33 - [] D -- C:\Users\Agagn\AppData\Roaming\IObit
O43 - CFD: 2015/08/16 16:31:37 - [] D -- C:\Users\Agagn\AppData\Roaming\Macromedia
O43 - CFD: 2015/09/02 19:16:26 - [] D -- C:\Users\Agagn\AppData\Roaming\MAGIX
O43 - CFD: 2015/09/02 18:25:33 - [] SD -- C:\Users\Agagn\AppData\Roaming\Microsoft
O43 - CFD: 2015/08/18 16:39:04 - [] D -- C:\Users\Agagn\AppData\Roaming\Mozilla
O43 - CFD: 2015/08/18 16:39:04 - [] D -- C:\Users\Agagn\AppData\Roaming\Netscape
O43 - CFD: 2015/09/02 17:08:52 - [] D -- C:\Users\Agagn\AppData\Roaming\PC Drivers HeadQuarters =>PUP.Optional.Generic
O43 - CFD: 2015/08/29 18:33:53 - [] D -- C:\Users\Agagn\AppData\Roaming\Photodex
O43 - CFD: 2015/08/18 17:49:32 - [] D -- C:\Users\Agagn\AppData\Roaming\QFX Software
O43 - CFD: 2015/08/23 15:50:01 - [] D -- C:\Users\Agagn\AppData\Roaming\Red Giant
O43 - CFD: 2015/08/29 14:18:54 - [] D -- C:\Users\Agagn\AppData\Roaming\Red Giant Link
O43 - CFD: 2015/08/18 17:17:02 - [] D -- C:\Users\Agagn\AppData\Roaming\Softplicity
O43 - CFD: 2015/08/20 16:49:23 - [] D -- C:\Users\Agagn\AppData\Roaming\Sun
O43 - CFD: 2015/08/27 15:36:42 - [] D -- C:\Users\Agagn\AppData\Roaming\TeamViewer
O43 - CFD: 2015/08/21 18:02:03 - [] D -- C:\Users\Agagn\AppData\Roaming\URSoft
O43 - CFD: 2015/08/31 18:05:53 - [] D -- C:\Users\Agagn\AppData\Roaming\VideoMotionPro
O43 - CFD: 2015/09/02 18:49:47 - [] D -- C:\Users\Agagn\AppData\Roaming\vlc
O43 - CFD: 2015/08/21 20:45:25 - [] D -- C:\Users\Agagn\AppData\Roaming\VoipConnect
O43 - CFD: 2015/08/16 15:52:59 - [] D -- C:\Users\Agagn\AppData\Roaming\WinRAR
O43 - CFD: 2015/08/30 12:19:20 - [] D -- C:\Users\Agagn\AppData\Roaming\Xilisoft
O43 - CFD: 2015/09/04 20:25:49 - [] D -- C:\Users\Agagn\AppData\Roaming\ZHP
O43 - CFD: 2015/08/29 08:22:24 - [] D -- C:\Users\Agagn\AppData\Local\Adobe
O43 - CFD: 2015/08/16 15:42:43 - [0] SHD -- C:\Users\Agagn\AppData\Local\Anwendungsdaten
O43 - CFD: 2015/08/18 16:02:16 - [] D -- C:\Users\Agagn\AppData\Local\Apple
O43 - CFD: 2015/08/29 21:01:29 - [] D -- C:\Users\Agagn\AppData\Local\Apple Computer
O43 - CFD: 2015/08/26 16:17:35 - [] D -- C:\Users\Agagn\AppData\Local\Comms
O43 - CFD: 2015/08/29 18:17:48 - [] D -- C:\Users\Agagn\AppData\Local\Downloaded Installations
O43 - CFD: 2015/08/16 17:48:14 - [] D -- C:\Users\Agagn\AppData\Local\ESET
O43 - CFD: 2015/08/29 14:19:23 - [] D -- C:\Users\Agagn\AppData\Local\LooksBuilder
O43 - CFD: 2015/08/16 16:31:37 - [] D -- C:\Users\Agagn\AppData\Local\Macromedia
O43 - CFD: 2015/09/02 19:14:48 - [] D -- C:\Users\Agagn\AppData\Local\Magix
O43 - CFD: 2015/08/21 18:23:31 - [] D -- C:\Users\Agagn\AppData\Local\Mega Limited
O43 - CFD: 2015/09/02 18:24:03 - [] D -- C:\Users\Agagn\AppData\Local\Microsoft
O43 - CFD: 2015/08/21 20:01:06 - [] D -- C:\Users\Agagn\AppData\Local\Microsoft Help
O43 - CFD: 2015/08/22 15:35:44 - [] D -- C:\Users\Agagn\AppData\Local\MicrosoftEdge
O43 - CFD: 2015/08/16 16:25:54 - [] D -- C:\Users\Agagn\AppData\Local\Mozilla
O43 - CFD: 2015/08/17 16:11:28 - [0] D -- C:\Users\Agagn\AppData\Local\NetworkTiles
O43 - CFD: 2015/08/16 16:03:55 - [] D -- C:\Users\Agagn\AppData\Local\Packages
O43 - CFD: 2015/08/18 16:31:50 - [0] D -- C:\Users\Agagn\AppData\Local\PeerDistRepub
O43 - CFD: 2015/08/31 18:29:07 - [0] D -- C:\Users\Agagn\AppData\Local\photoOptimizeHistoryDataBase
O43 - CFD: 2015/08/17 16:34:07 - [] D -- C:\Users\Agagn\AppData\Local\Programs
O43 - CFD: 2015/08/16 15:43:37 - [] D -- C:\Users\Agagn\AppData\Local\Publishers
O43 - CFD: 2015/09/04 20:25:26 - [] D -- C:\Users\Agagn\AppData\Local\Temp
O43 - CFD: 2015/08/16 15:42:43 - [0] SHD -- C:\Users\Agagn\AppData\Local\Temporary Internet Files
O43 - CFD: 2015/08/16 15:42:45 - [] D -- C:\Users\Agagn\AppData\Local\TileDataLayer
O43 - CFD: 2015/08/16 15:42:43 - [0] SHD -- C:\Users\Agagn\AppData\Local\Verlauf
O43 - CFD: 2015/08/22 18:23:37 - [] D -- C:\Users\Agagn\AppData\Local\Video Enhancer
O43 - CFD: 2015/08/18 16:39:29 - [] D -- C:\Users\Agagn\AppData\Local\VirtualStore
O43 - CFD: 2015/09/02 19:14:44 - [] D -- C:\Users\Agagn\AppData\Local\Xara
O43 - CFD: 2015/08/18 17:59:20 - [] D -- C:\Users\Agagn\AppData\Local\Zemana
O43 - CFD: 2015/07/10 13:04:26 - [] RD -- C:\Users\Agagn\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
O43 - CFD: 2015/08/22 15:51:11 - [] RD -- C:\Users\Agagn\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 2015/08/29 19:54:31 - [] RD -- C:\Users\Agagn\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 2015/08/26 16:42:57 - [] D -- C:\Users\Agagn\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CCleaner
O43 - CFD: 2015/08/22 19:28:36 - [] D -- C:\Users\Agagn\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FormatFactory
O43 - CFD: 2015/08/16 15:49:26 - [] D -- C:\Users\Agagn\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Download Manager
O43 - CFD: 2015/07/10 13:04:26 - [] D -- C:\Users\Agagn\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 2015/08/29 19:54:31 - [] RD -- C:\Users\Agagn\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 2015/07/10 13:04:26 - [] RD -- C:\Users\Agagn\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
O43 - CFD: 2015/08/18 15:57:01 - [] D -- C:\Users\Agagn\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VirusTotal Uploader 2.2
O43 - CFD: 2015/07/10 13:04:45 - [] RSD -- C:\Users\Agagn\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell
O43 - CFD: 2015/08/16 15:52:50 - [] D -- C:\Users\Agagn\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR

---\\ Liste der Treiber des Systems (61) - 4s
O58 - SDL:2015/07/10 12:59:38 A . (.LSI - LSI 3ware SCSI Storport Driver.) -- C:\Windows\System32\drivers\3ware.sys [107360] ©
O58 - SDL:2015/07/10 12:59:38 A . (.PMC-Sierra - PMC-Sierra Storport Driver For SPC8x6G SAS.) -- C:\Windows\System32\drivers\adp80xx.sys [1135456] ©
O58 - SDL:2015/07/10 12:59:38 A . (.Advanced Micro Devices - AHCI 1.3 Device Driver.) -- C:\Windows\System32\drivers\amdsata.sys [83296] ©
O58 - SDL:2015/07/10 12:59:38 A . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) -- C:\Windows\System32\drivers\amdsbs.sys [259424] ©
O58 - SDL:2015/07/10 12:59:38 A . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\System32\drivers\amdxata.sys [26976] ©
O58 - SDL:2015/08/18 17:59:19 A . (.Zemana Ltd. - Zemana AntiLogger Driver.) -- C:\Windows\System32\drivers\AntiLog64.sys [49752]
O58 - SDL:2015/07/10 12:59:38 A . (.PMC-Sierra, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\System32\drivers\arcsas.sys [131936] ©
O58 - SDL:2015/09/01 15:24:16 A . (.Qualcomm Atheros Communications, Inc. - Qualcomm Atheros Extensible Wireless LAN de.) -- C:\Windows\System32\drivers\athw10x.sys [4316784] ©
O58 - SDL:2015/07/10 12:59:36 A . (.Qualcomm Atheros Communications, Inc. - Qualcomm Atheros Extensible Wireless LAN de.) -- C:\Windows\System32\drivers\athw8x.sys [4207104] ©
O58 - SDL:2015/07/10 12:59:38 A . (.Windows (R) Win 7 DDK provider - BCM Function 2 Device Driver.) -- C:\Windows\System32\drivers\bcmfn2.sys [17624] ©
O58 - SDL:2015/07/10 12:59:38 A . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\System32\drivers\bxvbda.sys [531296] ©
O58 - SDL:2015/08/31 17:04:10 A . (.Windows (R) Win 7 DDK provider - IEEE-1284.4-1999 Driver.) -- C:\Windows\System32\drivers\Dot4.sys [151968] ©
O58 - SDL:2015/08/31 17:04:11 A . (.Windows (R) Win 7 DDK provider - IEEE-1284.4 Print Class Driver.) -- C:\Windows\System32\drivers\Dot4Prt.sys [27040] ©
O58 - SDL:2015/02/06 13:14:16 A . (.ESET - Amon monitor.) -- C:\Windows\System32\drivers\eamonm.sys [243464] ©
O58 - SDL:2015/02/06 13:14:16 A . (.ESET - Devmon monitor.) -- C:\Windows\System32\drivers\edevmon.sys [191464] ©
O58 - SDL:2015/02/06 13:14:16 A . (.ESET - ESET Helper driver.) -- C:\Windows\System32\drivers\ehdrv.sys [177032] ©
O58 - SDL:2015/02/06 13:14:16 A . (.ESET - ESET Personal Firewall driver.) -- C:\Windows\System32\drivers\epfw.sys [196560] ©
O58 - SDL:2015/02/06 13:14:16 A . (.ESET - Epfw NDIS LightWeight Filter.) -- C:\Windows\System32\drivers\EpfwLWF.sys [44144] ©
O58 - SDL:2015/02/06 13:14:16 A . (.ESET - ESET Personal Firewall driver.) -- C:\Windows\System32\drivers\epfwwfp.sys [59552] ©
O58 - SDL:2015/07/10 12:59:38 A . (.QLogic Corporation - QLogic 10 GigE VBD.) -- C:\Windows\System32\drivers\evbda.sys [3436896] ©
O58 - SDL:2015/08/16 15:48:41 A . (.Intel Corporation - Intel(R) Management Engine Interface.) -- C:\Windows\System32\drivers\HECIx64.sys [62784] ©
O58 - SDL:2015/07/10 12:59:38 A . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) -- C:\Windows\System32\drivers\HpSAMD.sys [64352] ©
O58 - SDL:2015/07/10 12:59:36 A . (.Intel Corporation - Intel(R) Serial IO GPIO Controller Driver.) -- C:\Windows\System32\drivers\iaLPSSi_GPIO.sys [38128] ©
O58 - SDL:2015/07/10 12:59:36 A . (.Intel Corporation - Intel(R) Serial IO I2C Controller Driver.) -- C:\Windows\System32\drivers\iaLPSSi_I2C.sys [122608] ©
O58 - SDL:2015/07/10 12:59:38 A . (.Intel Corporation - Intel(R) Rapid Storage Technology driver (i.) -- C:\Windows\System32\drivers\iaStorAV.sys [673120] ©
O58 - SDL:2015/07/10 12:59:38 A . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\Windows\System32\drivers\iaStorV.sys [412000] ©
O58 - SDL:2015/07/10 12:59:39 A . (.Mellanox - InfiniBand Fabric Bus Driver.) -- C:\Windows\System32\drivers\ibbus.sys [424800] ©
O58 - SDL:2015/06/12 04:00:58 A . (.Tonec Inc. - Internet Download Manager WFP Driver.) -- C:\Windows\System32\drivers\idmwfp.sys [197616] ©
O58 - SDL:2015/08/16 15:46:47 A . (.Intel Corporation - Intel Graphics Kernel Mode Driver.) -- C:\Windows\System32\drivers\igdkmd64.sys [5384176] ©
O58 - SDL:2015/07/10 12:59:39 A . (.Broadcom Corporation - Broadcom NetLink (TM) Gigabit Ethernet NDIS.) -- C:\Windows\System32\drivers\k57nd60a.sys [425984] ©
O58 - SDL:2014/12/30 13:31:30 A . (.Zemana Ltd. - Zemana AntiLogger SDK.) -- C:\Windows\System32\drivers\KeyCrypt64.sys [76520]
O58 - SDL:2015/06/03 15:43:30 A . (.QFX Software Corporation - KeyScrambler Keyboard Encryption Driver.) -- C:\Windows\System32\drivers\keyscrambler.sys [224208]
O58 - SDL:2015/07/10 12:59:38 A . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas.sys [108896] ©
O58 - SDL:2015/07/10 12:59:38 A . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas2i.sys [104800] ©
O58 - SDL:2015/07/10 12:59:38 A . (.Avago Technologies - Avago SAS Gen3 Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas3i.sys [99168] ©
O58 - SDL:2015/07/10 12:59:38 A . (.LSI Corporation - LSI SSS PCIe/Flash Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sss.sys [82784] ©
O58 - SDL:2015/07/10 12:59:39 A . (.Avago Technologies - MEGASAS RAID Controller Driver for Windows.) -- C:\Windows\System32\drivers\megasas.sys [59744] ©
O58 - SDL:2015/07/10 12:59:39 A . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\System32\drivers\megasr.sys [575840] ©
O58 - SDL:2015/07/10 12:59:39 A . (.Mellanox - MLX4 Bus Driver.) -- C:\Windows\System32\drivers\mlx4_bus.sys [705376] ©
O58 - SDL:2015/07/10 12:59:39 A . (.Marvell Semiconductor, Inc. - Marvell Flash Controller Driver.) -- C:\Windows\System32\drivers\mvumis.sys [63840] ©
O58 - SDL:2015/07/10 12:59:39 A . (.Mellanox - NetworkDirect Support Filter Driver.) -- C:\Windows\System32\drivers\ndfltr.sys [76128] ©
O58 - SDL:2015/07/10 12:59:39 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\System32\drivers\nvraid.sys [150368] ©
O58 - SDL:2015/07/10 12:59:39 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\System32\drivers\nvstor.sys [166240] ©
O58 - SDL:2015/07/10 12:59:39 A . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\Windows\System32\drivers\percsas2i.sys [58208] ©
O58 - SDL:2015/07/10 12:59:39 A . (.Avago Technologies - MEGASAS RAID Controller Driver for Windows.) -- C:\Windows\System32\drivers\percsas3i.sys [58720] ©
O58 - SDL:2015/08/16 15:45:21 A . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function D.) -- C:\Windows\System32\drivers\RTKVHD64.sys [4504320] ©
O58 - SDL:2015/06/08 04:59:30 A . (.Power Software Ltd - PowerISO Virtual Drive.) -- C:\Windows\System32\drivers\scdemu.sys [127760] ©
O58 - SDL:2015/07/10 12:59:39 A . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\System32\drivers\sisraid2.sys [44896] ©
O58 - SDL:2015/07/10 12:59:39 A . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\System32\drivers\sisraid4.sys [81760] ©
O58 - SDL:2014/06/04 15:17:30 A . (.IObit - SmartDefrag Driver.) -- C:\Windows\System32\drivers\SmartDefragDriver.sys [21184] ©
O58 - SDL:2015/08/16 15:48:11 A . (.Synaptics Incorporated - Synaptics SMBus Driver.) -- C:\Windows\System32\drivers\Smb_driver_AMDASF_Aux.sys [33448] ©
O58 - SDL:2015/08/16 15:48:11 A . (.Synaptics Incorporated - Synaptics SMBus Driver.) -- C:\Windows\System32\drivers\Smb_driver_Intel.sys [33960] ©
O58 - SDL:2015/08/16 15:48:11 A . (.Synaptics Incorporated - Synaptics SMBus Driver.) -- C:\Windows\System32\drivers\Smb_driver_Intel_Aux.sys [33960] ©
O58 - SDL:2015/07/10 12:59:39 A . (.Promise Technology, Inc. - Promise SuperTrak EX Series Driver for Wind.) -- C:\Windows\System32\drivers\stexstor.sys [31072] ©
O58 - SDL:2015/08/16 15:48:15 A . (.Synaptics Incorporated - Synaptics Touchpad Win64 Driver.) -- C:\Windows\System32\drivers\SynTP.sys [606376] ©
O58 - SDL:2015/08/20 16:46:37 A . (.Intel Corporation - Intel(R) Management Engine Interface.) -- C:\Windows\System32\drivers\TeeDriverW8x64.sys [184608] ©
O58 - SDL:2015/07/10 12:59:48 A . (...) -- C:\Windows\System32\drivers\Udecx.sys [44032]
O58 - SDL:2015/07/10 12:59:39 A . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\System32\drivers\vsmraid.sys [166752] ©
O58 - SDL:2015/07/10 12:59:39 A . (.VIA Corporation - VIA StorX RAID Controller Driver.) -- C:\Windows\System32\drivers\VSTXRAID.SYS [305504] ©
O58 - SDL:2015/07/10 12:59:39 A . (.Mellanox - Kernel WinMad.) -- C:\Windows\System32\drivers\winmad.sys [26976] ©
O58 - SDL:2015/07/10 12:59:39 A . (.Mellanox - Kernel WinVerbs.) -- C:\Windows\System32\drivers\winverbs.sys [59232] ©

---\\ Neueste Dateien geändert oder erstellt (Benutzer) (6) - 4s
O61 - LFC: 2015/08/31 18:17:07 A . (.OneStopSoft.) -- C:\Users\Agagn\Downloads\Programs\ossvd5.5.0.3.exe [12642939]
O61 - LFC: 2015/08/29 12:32:43 A . (..) -- C:\Users\Agagn\AppData\Roaming\Red Giant Link\tools\RGLicenseCheck.exe [271360]
O61 - LFC: 2015/09/04 15:11:12 A . (..) -- C:\Users\Agagn\AppData\Local\Packages\Microsoft.Windows.ShellExperienceHost_cw5n1h2txyewy\TempState\TileCache_100_0_Data.bin [3280556]
O61 - LFC: 2015/09/04 15:10:56 A . (..) -- C:\Users\Agagn\AppData\Local\Packages\Microsoft.Windows.ShellExperienceHost_cw5n1h2txyewy\TempState\TileCache_100_0_Header.bin [19624]
O61 - LFC: 2015/09/04 15:11:30 A . (..) -- C:\Users\Agagn\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\LocalState\speech_onecorereg.bin [8192]
O61 - LFC: 2015/09/03 16:01:19 A . (..) -- C:\Users\Agagn\AppData\Local\Microsoft\Windows\1031\StructuredQuerySchema.bin [400317]

---\\ Verbände Shell Laichen (11) - 1s
O67 - Shell Spawning: <.bat> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> [HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe ©
O67 - Shell Spawning: <.cmd> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt> [HKLM\..\open\Command] (.Microsoft Corporation - Startprogramm für Ereignisanzeige-Snap-In.) -- C:\Windows\System32\eventvwr.exe ©
O67 - Shell Spawning: <.exe> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> [HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe ©
O67 - Shell Spawning: <.js> [HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\wscript.exe ©
O67 - Shell Spawning: <.reg> [HKLM\..\open\Command] (.Microsoft Corporation - Registrierungs-Editor.) -- C:\Windows\regedit.exe ©
O67 - Shell Spawning: <.scr> [HKLM\..\open\Command] (...) -- "%1" /S
O67 - Shell Spawning: <.html> [HKCU\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe ©

---\\ Startmenü Internet (8) - 0s
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe ©
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Microsoft Corporation - IE-Hilfsprogramm für Pro-Benutzerinitalisie.) -- C:\Windows\System32\ie4uinit.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Microsoft Corporation - IE-Hilfsprogramm für Pro-Benutzerinitalisie.) -- C:\Windows\System32\ie4uinit.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Microsoft Corporation - IE-Hilfsprogramm für Pro-Benutzerinitalisie.) -- C:\Windows\System32\ie4uinit.exe ©

---\\ Suche 'Ansteckung in Internet-Browsern (4) - 4s
O69 - SBI: prefs.js [Agagn - cdb6h3v0.default] user_pref("browser.search.searchengine.desc", "this is my first firefox searchEngine"); =>PUP.Optional.SearchEngine
O69 - SBI: prefs.js [Agagn - cdb6h3v0.default] user_pref("browser.search.searchengine.ptid", "amt"); =>PUP.Optional.SearchEngine
O69 - SBI: prefs.js [Agagn - cdb6h3v0.default] user_pref("browser.search.searchengine.uid", "ST9500325AS_S2WRAFNSXXXXS2WRAFNS"); =>PUP.Optional.SearchEngine
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (Bing) - http://www.bing.com/

---\\ Liste Dateien Crack & Keygen (1) - 7s
O82 - LFC: 2013/07/10 17:17:32 A . (...) -- C:\Users\Agagn\Downloads\Compressed\neat-video-cracked-by-slach.rar [9172466] =>.Crack,Keygen

---\\ Liste den Dienststart von Svchost (42) - 1s
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Microsoft Smartcard-Zertifikatpropagierungs.) -- C:\Windows\System32\certprop.dll [192000] ©
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Microsoft Smartcard-Zertifikatpropagierungs.) -- C:\Windows\System32\certprop.dll [192000] ©
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - Serverdienst-DLL.) -- C:\Windows\system32\srvsvc.dll [283136] ©
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Gruppenrichtlinienclient.) -- C:\Windows\System32\gpsvc.dll [1335296] ©
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - IKE-Erweiterung.) -- C:\Windows\System32\ikeext.dll [954368] ©
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Dienst, der IPv6-Konnektivität über ein IPv.) -- C:\Windows\System32\iphlpsvc.dll [954880] ©
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL für sekundären Anmeldedienst.) -- C:\Windows\system32\seclogon.dll [31232] ©
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Anwendungsinformationsdienst.) -- C:\Windows\System32\appinfo.dll [93696] ©
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - iSCSI-Ermittlungsdienst.) -- C:\Windows\system32\iscsiexe.dll [151040] ©
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Microsoft EAPHost-Dienst.) -- C:\Windows\System32\eapsvc.dll [106496] ©
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Aufgabenplanungsdienst.) -- C:\Windows\system32\schedsvc.dll [1008640] ©
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\system32\wbem\WMIsvc.dll [226304] ©
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - Computersuchdienst-DLL.) -- C:\Windows\System32\browser.dll [133120] ©
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\system32\profsvc.dll [324608] ©
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Remotedesktop-Konfigurationsdienst.) -- C:\Windows\System32\SessEnv.dll [371200] ©
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Problemberichte und -lösungen.) -- C:\Windows\System32\wercplsupport.dll [95744] ©
O83 - Search Svchost Services: wlidsvc (wlidsvc) . (.Microsoft Corporation - Microsoft®-Kontodienst.) -- C:\Windows\system32\wlidsvc.dll [2093056] ©
O83 - Search Svchost Services: DcpSvc (DcpSvc) . (.Microsoft Corporation - dcpsvc Task.) -- C:\Windows\system32\dcpsvc.dll [196096] ©
O83 - Search Svchost Services: NcaSvc (NcaSvc) . (.Microsoft Corporation - Microsoft-Netzwerkkonnektivitäts-Assistent.) -- C:\Windows\System32\ncasvc.dll [167424] ©
O83 - Search Svchost Services: NetSetupSvc (NetSetupSvc) . (.Microsoft Corporation - Netzwerkeinrichtungsdienst.) -- C:\Windows\System32\NetSetupSvc.dll [187392] ©
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - RAS-Verwaltung für automatisches Wählen.) -- C:\Windows\System32\rasauto.dll [106496] ©
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - RAS-Verbindungsverwaltung.) -- C:\Windows\System32\rasmans.dll [679936] ©
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Dynamischer Schnittstellen-Manager.) -- C:\Windows\System32\mprdim.dll [497152] ©
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Benachrichtigungsdienst für Systemereigniss.) -- C:\Windows\System32\sens.dll [72192] ©
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Microsoft NAT-Hilfskomponenten.) -- C:\Windows\System32\ipnathlp.dll [452608] ©
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Microsoft(R) Windows(R) Telefonieserver.) -- C:\Windows\System32\tapisrv.dll [311808] ©
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Windows Update-Agent.) -- C:\Windows\system32\wuaueng.dll [2235904] ©
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Intelligenter Hintergrundübertragungsdienst.) -- C:\Windows\System32\qmgr.dll [1168896] ©
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Windows-Shelldienste-DLL.) -- C:\Windows\System32\shsvcs.dll [593920] ©
O83 - Search Svchost Services: dmwappushservice (dmwappushservice) . (.Microsoft Corporation - dmwappushsvc.) -- C:\Windows\system32\dmwappushsvc.dll [63488] ©
O83 - Search Svchost Services: XblGameSave (XblGameSave) . (.Microsoft Corporation - Xbox Live Game Save Service.) -- C:\Windows\System32\XblGameSave.dll [1149440] ©
O83 - Search Svchost Services: XboxNetApiSvc (XboxNetApiSvc) . (.Microsoft Corporation - Xbox Live Networking Service.) -- C:\Windows\system32\XboxNetApiSvc.dll [1019392] ©
O83 - Search Svchost Services: UsoSvc (UsoSvc) . (.Microsoft Corporation - Updatesitzung für Orchestrator Core.) -- C:\Windows\system32\usocore.dll [343040] ©
O83 - Search Svchost Services: UserManager (UserManager) . (.Microsoft Corporation - Benutzer-Manager.) -- C:\Windows\System32\usermgr.dll [717312] ©
O83 - Search Svchost Services: lfsvc (lfsvc) . (.Microsoft Corporation - Geolocation-Dienst.) -- C:\Windows\System32\lfsvc.dll [27136] ©
O83 - Search Svchost Services: DmEnrollmentSvc (DmEnrollmentSvc) . (.Microsoft Corporation - Windows-Verwaltungsdienst-DLL.) -- C:\Windows\System32\Windows.Internal.Management.dll [267776] ©
O83 - Search Svchost Services: XblAuthManager (XblAuthManager) . (.Microsoft Corporation - Xbox Live Auth Manager.) -- C:\Windows\System32\XblAuthManager.dll [918016] ©
O83 - Search Svchost Services: RetailDemo (RetailDemo) . (.Microsoft Corporation - RDXService.) -- C:\Windows\system32\RDXService.dll [996352] ©
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - BDE-Dienst.) -- C:\Windows\System32\bdesvc.dll [359936] ©
O83 - Search Svchost Services: DsmSvc (DsmSvc) . (.Microsoft Corporation - Geräteinstallations-Manager.) -- C:\Windows\System32\DeviceSetupManager.dll [237568] ©
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - Windows-Shelldesigndienste-DLL.) -- C:\Windows\system32\themeservice.dll [58368] ©
O83 - Search Svchost Services: AppMgmt (AppMgmt) . (.Microsoft Corporation - Softwareinstallationsdienst.) -- C:\Windows\System32\appmgmts.dll [200192] ©

---\\ Allgemeinzustand der Dienste nicht Microsoft (SR=Running, SS=Stopped) (13) - 26s

SS - Demand [2015/08/16 16:31:33] [ 269000] Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe ©
SR - Auto [2015/05/29 18:51:26] [ 77128] Apple Mobile Device Service (Apple Mobile Device Service) . (.Apple Inc..) - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe ©
SR - Auto [2011/08/30 23:05:32] [ 462184] Dienst "Bonjour" (Bonjour Service) . (.Apple Inc..) - C:\Program Files\Bonjour\mDNSResponder.exe ©
SS - Demand [2015/08/16 15:46:54] [ 290224] Intel(R) Content Protection HECI Service (cphs) . (.Intel Corporation.) - C:\Windows\SysWOW64\IntelCpHeciSvc.exe ©
SS - Demand [2015/03/30 10:40:14] [ 41160] ESET HTTP Server (EHttpSrv) . (.ESET.) - C:\Program Files\ESET\ESET Endpoint Security\ehttpsrv.exe ©
SR - Auto [2015/03/30 10:39:18] [ 1566424] ESET Service (ekrn) . (.ESET.) - C:\Program Files\ESET\ESET Endpoint Security\x86\ekrn.exe ©
SS - Demand [2015/03/30 10:40:38] [ 183496] ESET SHA Service (eshasrv) . (.ESET.) - C:\Program Files\ESET\ESET Endpoint Security\eshasrv.exe ©
SR - Demand [2015/08/13 02:43:14] [ 644880] iPod-Dienst (iPod Service) . (.Apple Inc..) - C:\Program Files\iPod\bin\iPodService.exe ©
SS - Demand [2015/08/28 16:15:46] [ 149160] Mozilla Maintenance Service (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe ©
SR - Auto [2015/07/11 06:58:52] [ 186760] ScsiAccess (ScsiAccess) . (...) - C:\Program Files (x86)\Photodex\ProShow Producer\ScsiAccess.exe
SR - Auto [2015/08/16 15:48:17] [ 237736] SynTPEnh Caller Service (SynTPEnhService) . (.Synaptics Incorporated.) - C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe ©
SR - Auto [2015/08/07 08:30:32] [ 5611280] TeamViewer 10 (TeamViewer) . (.TeamViewer GmbH.) - C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe ©

---\\ Zusätzliche Scan (O88) (7) - 0s
HKLM\SOFTWARE\Wow6432Node\dll-files.com =>PUP.Optional.DllFilesFixer
HKCU\SOFTWARE\dll-files.com =>PUP.Optional.DllFilesFixer
C:\Program Files (x86)\PC Drivers HeadQuarters =>PUP.Optional.Generic
C:\Program Files (x86)\Veloxum =>PUP.Optional.DriverSupport
C:\ProgramData\Microsoft Toolkit =>HackTool.AutoKMS
C:\ProgramData\PC Drivers HeadQuarters =>PUP.Optional.Generic
C:\Users\Agagn\AppData\Roaming\PC Drivers HeadQuarters =>PUP.Optional.Generic

---\\ Zusammenfassung der Elemente gefunden auf Ihrer workstation (5) - 0s
http://www.nicolascoolman.fr/blog =>PUP.Optional.DllFilesFixer
http://www.nicolascoolman.fr/blog =>PUP.Optional.Generic
http://www.nicolascoolman.fr/blog =>PUP.Optional.DriverSupport
http://www.nicolascoolman.fr/trojan-autokms/ =>HackTool.AutoKMS
http://www.nicolascoolman.fr/blog =>PUP.Optional.SearchEngine

~ End of the scan, 17966 items in 90 seconds (755)(1)()

Publicité


Signaler le contenu de ce document

Publicité