~ ZHPDiag v2015.10.16.150 Von Nicolas Coolman (2015/10/16) ~ gestartet von wilfried (Administrator) (2015/10/18 23:16:57) ~ Site: http://www.nicolascoolman.fr ~ Facebook: https://www.facebook.com/nicolascoolman1 ~ Version des Status: Version OK ~ Modus: Scanner ~ Bericht: C:\Users\wilfried\Desktop\ZHPDiag.txt ~ Bericht: C:\Users\wilfried\AppData\Roaming\ZHP\ZHPDiag.txt ~ UAC: Activate ~ Systemstart: Normal (Normal boot) Windows 7 Ultimate, 64-bit Service Pack 1 (Build 7601) ---\\ Internet-browser (2) - 1s MFIE: Mozilla Firefox 41.0.2 (x86 de) v41.0.2 MSIE: Internet Explorer v11.0.9600.18059 ---\\ Windows-Produkt-Informationen (4) - 3s ~ Windows Server License Manager Script : OK ~ Licence Script File Génération : OK Windows Automatic Updates : OK Windows Activation Technologies : KO ---\\ System-Datenschutz-software (3) - 9s Avira Antivirus v15.0.13.210 Malwarebytes Anti-Malware Version 2.2.0.1024 Windows Defender W7 (Activate) ---\\ System-Datenschutz-software (Überflüssig) (1) - 9s Spybot - Search & Destroy v2.0.12 ---\\ Monitoring Software (2) - 9s Adobe Flash Player 19 NPAPI Adobe Reader XI ---\\ Informationen über das system (6) - 0s ~ Operating System: AMD64 Family 15 Model 107 Stepping 2, AuthenticAMD ~ Operating System: 64-bit ~ Boot mode: Normal (Normal boot) Total RAM: 4128.12 MB (36% free) ~ System Restore: Activé (Enable) ~ System drive C: has 10 GB free of 99 GB ---\\ Verbindung zu den Systemmodus (3) - 0s ~ Computer Name: WILFRIEDPC ~ User Name: wilfried ~ Logged in as Administrator ---\\ Aufzählung von Disk-Einheiten (4) - 1s ~ Drive C: has 10 GB free of 99 GB (System) ~ Drive D: has 44 GB free of 188 GB ~ Drive E: has 68 GB free of 188 GB ~ Drive K: has 258 GB free of 381 GB ---\\ Status der Windows-Sicherheitscenter (11) - 0s [HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK [HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK [HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK ---\\ Suche generische Systemdateien (25) - 1s [MD5.332FEAB1435662FC6C672E25BEB37BE3] - (.Microsoft Corporation - Windows-Explorer.) () -- C:\Windows\Explorer.exe [2871808] © [MD5.DD81D91FF3B0763C392422865C9AC12E] - (.Microsoft Corporation - Windows-Hostprozess (Rundll32).) () -- C:\Windows\System32\rundll32.exe [45568] © [MD5.94355C28C1970635A31B3FE52EB7CEBA] - (.Microsoft Corporation - Windows-Startanwendung.) () -- C:\Windows\System32\Wininit.exe [129024] © [MD5.BD06D875FB79E92DAF724C91DE743AFA] - (.Microsoft Corporation - Interneterweiterungen für Win32.) () -- C:\Windows\System32\wininet.dll [2487808] © [MD5.8CEBD9D0A0A879CDE9F36F4383B7CAEA] - (.Microsoft Corporation - Windows-Anmeldeanwendung.) () -- C:\Windows\System32\Winlogon.exe [455168] © [MD5.067FA52BFB59A56110A12312EF9AF243] - (.Microsoft Corporation - Softwarelizenzierungsbibliothek.) () -- C:\Windows\System32\sppcomapi.dll [232448] © [MD5.492D07D79E7024CA310867B526D9636D] - (.Microsoft Corporation - DNS-Client-API-DLL.) () -- C:\Windows\System32\dnsapi.dll [357888] © [MD5.B40420876B9288E0A1C8CCA8A84E5DC9] - (.Microsoft Corporation - DNS-Client-API-DLL.) () -- C:\Windows\Syswow64\dnsapi.dll [270336] © [MD5.FA886682CFC5D36718D3E436AACF10B9] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) () -- C:\Windows\System32\drivers\AFD.sys [497152] © [MD5.02062C0B390B7729EDC9E69C680A6F3C] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) () -- C:\Windows\System32\drivers\atapi.sys [24128] © [MD5.B8BD2BB284668C84865658C77574381A] - (.Microsoft Corporation - CD-ROM File System Driver.) () -- C:\Windows\System32\drivers\Cdfs.sys [92160] © [MD5.F036CE71586E93D94DAB220D7BDF4416] - (.Microsoft Corporation - SCSI CD-ROM Driver.) () -- C:\Windows\System32\drivers\Cdrom.sys [147456] © [MD5.9BB2EF44EAA163B29C4A4587887A0FE4] - (.Microsoft Corporation - DFS Namespace Client Driver.) () -- C:\Windows\System32\drivers\DfsC.sys [102400] © [MD5.97BFED39B6B79EB12CDDBFEED51F56BB] - (.Microsoft Corporation - High Definition Audio Bus Driver.) () -- C:\Windows\System32\drivers\HDAudBus.sys [122368] © [MD5.FA55C73D4AFFA7EE23AC4BE53B4592D3] - (.Microsoft Corporation - i8042-Anschlusstreiber.) () -- C:\Windows\System32\drivers\i8042prt.sys [105472] © [MD5.AF9B39A7E7B6CAA203B3862582E9F2D0] - (.Microsoft Corporation - IP Network Address Translator.) () -- C:\Windows\System32\drivers\IpNat.sys [116224] © [MD5.ACB6782973BD93760D597FC7BB37E692] - (.Microsoft Corporation - Windows NT SMB Minirdr.) () -- C:\Windows\System32\drivers\MRxSmb.sys [159232] © [MD5.09594D1089C523423B32A4229263F068] - (.Microsoft Corporation - MBT Transport driver.) () -- C:\Windows\System32\drivers\netBT.sys [261632] © [MD5.1A29A59A4C5BA6F8C85062A613B7E2B2] - (.Microsoft Corporation - NT-Dateisystemtreiber.) () -- C:\Windows\System32\drivers\ntfs.sys [1684928] © [MD5.0086431C29C35BE1DBC43F52CC273887] - (.Microsoft Corporation - Treiber für parallelen Anschluss.) () -- C:\Windows\System32\drivers\Parport.sys [97280] © [MD5.471815800AE33E6F1C32FB1B97C490CA] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) () -- C:\Windows\System32\drivers\Rasl2tp.sys [129536] © [MD5.1B6163C503398B23FF8B939C67747683] - (.Microsoft Corporation - Microsoft RDP Device redirector.) () -- C:\Windows\System32\drivers\rdpdr.sys [165888] © [MD5.548260A7B8654E024DC30BF8A7C5BAA4] - (.Microsoft Corporation - SMB Transport driver.) () -- C:\Windows\System32\drivers\smb.sys [93184] © [MD5.70988118145F5F10EF24720B97F35F65] - (.Microsoft Corporation - TDI Translation Driver.) () -- C:\Windows\System32\drivers\tdx.sys [119296] © [MD5.0D08D2F3B3FF84E433346669B5E0F639] - (.Microsoft Corporation - Volumeschattenkopie-Treiber.) () -- C:\Windows\System32\drivers\volsnap.sys [295808] © ---\\ Prozess läuft (29) - 3s [MD5.218BE8301F0F19A60D88D6DED3A738B7] - (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 309.0.) -- C:\Windows\system32\nvvsvc.exe [878400] [PID.788] © [MD5.09B22DB1B104FACC1E745498CBB0A8D7] - (.NVIDIA Corporation - NVIDIA User Experience Driver Component.) -- C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe [1125192] [PID.1284] © [MD5.218BE8301F0F19A60D88D6DED3A738B7] - (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 309.0.) -- C:\Windows\system32\nvvsvc.exe [878400] [PID.1292] © [MD5.18B0643B3B504E0FDCFCE0C8743B29C7] - (.Avira Operations GmbH & Co. KG - Antivirus Host Framework Service.) -- C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [461672] [PID.1408] © [MD5.013697369EAFFA675D0671607F036020] - (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [82128] [PID.1848] © [MD5.18B0643B3B504E0FDCFCE0C8743B29C7] - (.Avira Operations GmbH & Co. KG - Antivirus Host Framework Service.) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [461672] [PID.1992] © [MD5.6AFCD25B843D0C731B6987E39995AE72] - (.MSI - Super Charger Service.) -- C:\Program Files (x86)\MSI\Super Charger\ChargeService.exe [162800] [PID.1808] © [MD5.20EEDD348A664BAD06C4E1D381D1B57C] - (.Deutsche Telekom AG - Netzmanager Service.) -- C:\Program Files\Netzmanager\NMInfraIS2\Netzmanager_Service.exe [2868736] [PID.1392] [MD5.6196F48E7D7C901549A0208110036F40] - (.The Eraser Project - Eraser..) -- C:\Program Files\Eraser\Eraser.exe [462736] [PID.2152] © [MD5.C1A86A6D6847DEFF009EAE85BA0C1F20] - (.Avira Operations GmbH & Co. KG - Avira system tray application.) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [782520] [PID.2340] © [MD5.94B65E73FC29455191D6F60696D0332E] - (.NVIDIA Corporation - NVIDIA Settings.) -- C:\Program Files\NVIDIA Corporation\Display\nvtray.exe [2448712] [PID.2484] © [MD5.206387AB881E93A1A6EB89966C8651F1] - (.Safer-Networking Ltd. - Spybot-S&D 2 Scanner Service.) -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [1103392] [PID.2692] © [MD5.82B220AAC7079DBD34F014589E5A5886] - (.TuneUp Software - TuneUp Utilities Service.) -- C:\Program Files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesService64.exe [2145080] [PID.2844] © [MD5.76648BCBEB840B391E85DAD2DC04FFC9] - (.Avira Operations GmbH & Co. KG - Avira.ServiceHost.) -- C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [240872] [PID.2944] © [MD5.A529CFE32565C0B145578FFB2B32C9A5] - (.Safer-Networking Ltd. - Spybot-S&D 2 Background update service.) -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [1369624] [PID.2068] © [MD5.CB63BDB77BB86549FC3303C2F11EDC18] - (.Safer-Networking Ltd. - Windows Security Center integration..) -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [168384] [PID.2604] © [MD5.14DCA74CB34502CA919966F31FBB8B0D] - (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe [377000] [PID.2420] © [MD5.6889C27BF72713E2C5C2C1531AB8F979] - (.TuneUp Software - TuneUp Utilities.) -- C:\Program Files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesApp64.exe [2040120] [PID.3120] © [MD5.383BCE6E505C8D4B6F447812FE4C1E5C] - (.Avira Operations GmbH & Co. KG - AntiVir shadow copy service.) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe [632152] [PID.3136] © [MD5.4C62D08215EBD1C9FEB395550183DC99] - (.Avira Operations GmbH & Co. KG - Avira Launcher.) -- C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe [135800] [PID.3644] © [MD5.A3A25E0509F67473B960DAF214828BE3] - (.NVIDIA Corporation - NVIDIA Settings Update Manager.) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [1259296] [PID.4108] © [MD5.401DF9F49F7A66FA906F19D075CE8A5D] - (.AppWork GmbH - JDownloader 2 Launcher.) -- C:\Users\wilfried\AppData\Local\JDownloader v2.0\JDownloader2.exe [418304] [PID.1872] © [MD5.452DB84283EB2F043827AC95D62CE19C] - (.Safer-Networking Ltd. - Update.) -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe [3487240] [PID.720] © [MD5.D34AEAB97BD5AA928B9B2F9EB67E10E8] - (.BitTorrent Inc. - µTorrent.) -- C:\Users\wilfried\AppData\Roaming\uTorrent\uTorrent.exe [1850192] [PID.5352] [MD5.D34AEAB97BD5AA928B9B2F9EB67E10E8] - (.BitTorrent Inc. - µTorrent.) -- C:\Users\wilfried\AppData\Roaming\uTorrent\uTorrent.exe [1850192] [PID.5288] [MD5.91EADE0A0A24664F75955377EDF2E4E2] - (.Mozilla Corporation - Plugin Container for Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe [278184] [PID.4880] © [MD5.ED51CB30657A6C3217A03D1628FB9038] - (.Adobe Systems, Inc. - Adobe Flash Player 19.0 r0.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_19_0_0_185.exe [3425992] [PID.6048] © [MD5.ED51CB30657A6C3217A03D1628FB9038] - (.Adobe Systems, Inc. - Adobe Flash Player 19.0 r0.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_19_0_0_185.exe [3425992] [PID.4168] © [MD5.316FD62C35A211B696D5EFD879F8EB60] - (.Nicolas Coolman - ZHPDiag.) -- E:\Downloads\ADWCleaner\ZHPDiag3.exe [1956352] [PID.380] © ---\\ Mozilla Firefox, Plugins,Startseite,Seiten of search,Ausdehnung (5) - 1s P2 - EXT FILE: (...) -- C:\Users\wilfried\AppData\Roaming\Mozilla\Firefox\Profiles\qrppakrq.default-1423430213362\extensions\firefox@zenmate.com.xpi P2 - EXT FILE: (...) -- C:\Users\wilfried\AppData\Roaming\Mozilla\Firefox\Profiles\qrppakrq.default-1423430213362\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi P2 - EXT FILE: (...) -- C:\Users\wilfried\AppData\Roaming\Mozilla\Firefox\Profiles\qrppakrq.default-1423430213362\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi P2 - EXT: (.Mozilla - Default.) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} © P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_185.dll © ---\\ Internet Explorer, Startseite,Seiten of search,Ausdehnung (11) - 0s R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/ R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = about:blank R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = about:blank R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = about:blank R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = about:blank R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} Orphean =>.Microsoft Internet Explorer ---\\ Internet Explorer, Proxy Management (5) - 0s R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll R5 - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0 ---\\ Line Analysis - IniFiles, Auto Laden von Programmen (3) - 0s F2 - REG:system.ini: UserInit=C:\Windows\System32\Userinit.exe (.Microsoft Corporation.) © F2 - REG:system.ini: Shell=C:\Windows\explorer.exe (.Microsoft Corporation.) © F2 - REG:system.ini: VMApplet=C:\Windows\SysWOW64\SystemPropertiesPerformance.exe (.Microsoft Corporation.) © ---\\ Hosts Datei-Umleitung (1) - 0s ~ Le fichier hôte est sain (The hosts file is clean) (21) ---\\ Browser Helper-Objekte (2) - 0s O2 - BHO: Java(tm) Plug-In SSV Helper [64Bits] - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} (Orphean) O2 - BHO: Java(tm) Plug-In 2 SSV Helper [64Bits] - {DBC80044-A445-435b-BC74-9C25C1C588A9} (Orphean) ---\\ Auto Laden von Programmen vom Register und Ordner (16) - 1s O4 - HKLM\..\Run: [SpywareTerminatorShield] E:\Downloads\Spyware\4f50n.Spyware.Terminator.Premium.2015.3.0.0.102..Multilingual\Cracked\SpywareTerminatorShield.exe (.not file.) O4 - HKLM\..\Run: [SpywareTerminatorUpdater] E:\Downloads\Spyware\4f50n.Spyware.Terminator.Premium.2015.3.0.0.102..Multilingual\Cracked\SpywareTerminatorUpdate.exe (.not file.) O4 - HKCU\..\Run: [Eraser] . (.The Eraser Project - Eraser..) -- C:\Program Files\Eraser\Eraser.exe © O4 - HKCU\..\Run: [Spybot-S&D Cleaning] . (.Safer-Networking Ltd. - Search results cleaner.) -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDCleaner.exe © O4 - HKCU\..\Run: [SpybotPostWindows10UpgradeReInstall] . (.Safer-Networking Ltd. - Makes sure Spybot 2 is there on Windows 10..) -- C:\Program Files\Common Files\AV\Spybot - Search and Destroy\Test.exe © O4 - HKLM\..\Wow6432Node\Run: [avgnt] . (.Avira Operations GmbH & Co. KG - Avira system tray application.) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe © O4 - HKLM\..\Wow6432Node\Run: [LiveMonitor] . (.Copyright (C) 2001 - UpdateMonitor MFC Application.) -- C:\Program Files (x86)\MSI\Live Update 3\LMonitor.exe O4 - HKLM\..\Wow6432Node\Run: [Live Update] . (.Micro-Star INT'L CO., LTD. - Live Update 6 Application.) -- C:\Program Files (x86)\MSI\Live Update\Live Update.exe O4 - HKLM\..\Wow6432Node\Run: [Avira SystrayStartTrigger] . (.Avira Operations GmbH & Co. KG - Avira.SystrayStartTrigger.) -- C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe © O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Windows-Minianwendungen.) -- C:\Program Files (x86)\Windows Sidebar\sidebar.exe © O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Windows-Minianwendungen.) -- C:\Program Files (x86)\Windows Sidebar\sidebar.exe © O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe © O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe © O4 - HKUS\S-1-5-21-2104831317-3245060443-4232704113-1000\..\Run: [Eraser] . (.The Eraser Project - Eraser..) -- C:\Program Files\Eraser\Eraser.exe © O4 - HKUS\S-1-5-21-2104831317-3245060443-4232704113-1000\..\Run: [Spybot-S&D Cleaning] . (.Safer-Networking Ltd. - Search results cleaner.) -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDCleaner.exe © O4 - HKUS\S-1-5-21-2104831317-3245060443-4232704113-1000\..\Run: [SpybotPostWindows10UpgradeReInstall] . (.Safer-Networking Ltd. - Makes sure Spybot 2 is there on Windows 10..) -- C:\Program Files\Common Files\AV\Spybot - Search and Destroy\Test.exe © ---\\ Lop.com/Domain Entführer (9) - 0s O17 - HKLM\System\CCS\Services\Tcpip\Parameters: NameServer = 8.8.8.8,8.8.4.4,4.2.2.1,4.2.2.2,208.67.222.222,208.67.220.220,8.26.56.26,8.20.247.20,156.154.70.1,156.154.71.1 =>.Google Public DNS O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.2.1 192.168.2.1 O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpDomain = Speedport_W_724V_09011603_00_012 O17 - HKLM\System\CS1\Services\Tcpip\Parameters: NameServer = 8.8.8.8,8.8.4.4,4.2.2.1,4.2.2.2,208.67.222.222,208.67.220.220,8.26.56.26,8.20.247.20,156.154.70.1,156.154.71.1 =>.Google Public DNS O17 - HKLM\System\CS1\Services\Tcpip\Parameters: DhcpNameServer = 192.168.2.1 192.168.2.1 O17 - HKLM\System\CS1\Services\Tcpip\Parameters: DhcpDomain = Speedport_W_724V_09011603_00_012 O17 - HKLM\System\CS2\Services\Tcpip\Parameters: NameServer = 8.8.8.8,8.8.4.4,4.2.2.1,4.2.2.2,208.67.222.222,208.67.220.220,8.26.56.26,8.20.247.20,156.154.70.1,156.154.71.1 =>.Google Public DNS O17 - HKLM\System\CS2\Services\Tcpip\Parameters: DhcpNameServer = 192.168.2.1 192.168.2.1 O17 - HKLM\System\CS2\Services\Tcpip\Parameters: DhcpDomain = Speedport_W_724V_09011603_00_012 ---\\ Zusätzliche Protokolle (23) - 1s O18 - Handler: about [64Bits] - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML-Anzeige.) -- C:\Windows\SysWOW64\mshtml.dll © O18 - Handler: cdl [64Bits] - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - OLE32-Erweiterung für Win32.) -- C:\Windows\SysWOW64\urlmon.dll © O18 - Handler: dvd [64Bits] - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - ActiveX-Steuerung für Streamingvideo.) -- C:\Windows\SysWOW64\MSVidCtl.dll © O18 - Handler: file [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32-Erweiterung für Win32.) -- C:\Windows\SysWOW64\urlmon.dll © O18 - Handler: ftp [64Bits] - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32-Erweiterung für Win32.) -- C:\Windows\SysWOW64\urlmon.dll © O18 - Handler: grooveLocalGWS [64Bits] - {88FED34C-F0CA-4636-A375-3CB6248B04CD} . (.Microsoft Corporation - GrooveSystemServices Module.) -- C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll © O18 - Handler: http [64Bits] - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32-Erweiterung für Win32.) -- C:\Windows\SysWOW64\urlmon.dll © O18 - Handler: https [64Bits] - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32-Erweiterung für Win32.) -- C:\Windows\SysWOW64\urlmon.dll © O18 - Handler: its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll © O18 - Handler: javascript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML-Anzeige.) -- C:\Windows\SysWOW64\mshtml.dll © O18 - Handler: local [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32-Erweiterung für Win32.) -- C:\Windows\SysWOW64\urlmon.dll © O18 - Handler: mailto [64Bits] - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML-Anzeige.) -- C:\Windows\SysWOW64\mshtml.dll © O18 - Handler: mhtml [64Bits] - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\System32\inetcomm.dll © O18 - Handler: mk [64Bits] - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32-Erweiterung für Win32.) -- C:\Windows\SysWOW64\urlmon.dll © O18 - Handler: ms-help [64Bits] - {314111c7-a502-11d2-bbca-00c04f8ec294} . (.Microsoft Corporation - Microsoft® Help Data Services Module.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Help\hxds.dll © O18 - Handler: ms-its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll © O18 - Handler: res [64Bits] - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML-Anzeige.) -- C:\Windows\SysWOW64\mshtml.dll © O18 - Handler: tv [64Bits] - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - ActiveX-Steuerung für Streamingvideo.) -- C:\Windows\SysWOW64\MSVidCtl.dll © O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML-Anzeige.) -- C:\Windows\SysWOW64\mshtml.dll © O18 - Filter: application/octet-stream [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll © O18 - Filter: application/x-complus [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll © O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll © O18 - Filter: text/xml [64Bits] - {807563E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files (x86)\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL © ---\\ Nicht von Microsoft nicht deaktiviert Windows XP/NT/2000-Dienste (15) - 1s O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe © O23 - Service: Avira Email-Schutz (AntiVirMailService) . (.Avira Operations GmbH & Co. KG - Antivirus MailScanner WFP Service.) - C:\Program Files (x86)\Avira\AntiVir Desktop\avmailc7.exe © O23 - Service: Avira Planer (AntiVirSchedulerService) . (.Avira Operations GmbH & Co. KG - Antivirus Host Framework Service.) - C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe © O23 - Service: Avira Echtzeit-Scanner (AntiVirService) . (.Avira Operations GmbH & Co. KG - Antivirus Host Framework Service.) - C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe © O23 - Service: Avira Browser-Schutz (AntiVirWebService) . (.Avira Operations GmbH & Co. KG - AntiVir WebGuard WFP Service.) - C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe © O23 - Service: Avira Service Host (Avira.ServiceHost) . (.Avira Operations GmbH & Co. KG - Avira.ServiceHost.) - C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe © O23 - Service: (MBAMService) . (.Malwarebytes - Malwarebytes Anti-Malware.) - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe © O23 - Service: MSI_SuperCharger (MSI_SuperCharger) . (.MSI - Super Charger Service.) - C:\Program Files (x86)\MSI\Super Charger\ChargeService.exe © O23 - Service: Netzmanager Infrastruktur Informationssystem Dienst (Netzmanager Service) . (.Deutsche Telekom AG - Netzmanager Service.) - C:\Program Files\Netzmanager\NMInfraIS2\Netzmanager_Service.exe O23 - Service: NVIDIA Display Driver Service (nvsvc) . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 309.0.) - C:\Windows\system32\nvvsvc.exe © O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) . (.NVIDIA Corporation - NVIDIA Settings Update Manager.) - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe © O23 - Service: Spybot-S&D 2 Scanner Service (SDScannerService) . (.Safer-Networking Ltd. - Spybot-S&D 2 Scanner Service.) - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe © O23 - Service: Spybot-S&D 2 Updating Service (SDUpdateService) . (.Safer-Networking Ltd. - Spybot-S&D 2 Background update service.) - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe © O23 - Service: Spybot-S&D 2 Security Center Service (SDWSCService) . (.Safer-Networking Ltd. - Windows Security Center integration..) - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe © O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) . (.TuneUp Software - TuneUp Utilities Service.) - C:\Program Files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesService64.exe © ---\\ Listet die BootExecute Daten (1) - 0s O34 - HKLM BootExecute: (sh4native Sh4Removal) ---\\ Im Automatikbetrieb geplanten Tasks (13) - 3s [MD5.E3FB05F33E1404AD606B1E1FE7C323C3] [APT] [Adobe Acrobat Update Task] (.Adobe Systems Incorporated.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [998104] © [MD5.E3FB05F33E1404AD606B1E1FE7C323C3] [APT] [Adobe-Online-Aktualisierungsprogramm] (.Adobe Systems Incorporated.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [998104] © [MD5.00000000000000000000000000000000] [APT] [arp_flush] (...) -- C:\Program Files (x86)\hide.me VPN\FlushArpCache.exe (.not file.) [0] [MD5.3FDCA1F725CA8E367B9DBBC43F983423] [APT] [Java Update Scheduler] (.Oracle Corporation.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [335232] © [MD5.00000000000000000000000000000000] [APT] [SpyHunter4Startup] (...) -- E:\Downloads\Spyware\-SpyHntrMlwreScrtySte4.18.9.4384Prtble-\SpyHunter 4.18.9.4384 Portable\SpyHunter4.exe (.not file.) [0] =>.Superfluous.SpyHunter [MD5.77303337B4244D771B7861337AAA1201] [APT] [TuneUpUtilities_Task_BkGndMaintenance2013] (.TuneUp Software.) -- C:\Program Files (x86)\TuneUp Utilities 2014\OneClick.exe [460088] © [MD5.1716F7D34D7FA044A46D255E9B58B118] [APT] [{7DFD0197-81BD-4FE9-8AE2-F6D121A7AC1B}] (.Avira Operations GmbH & Co. KG.) -- C:\Users\wilfried\AppData\Local\Temp\cleaner\avwebloader.exe [307944] © O39 - APT: Adobe Acrobat Update Task - (.Adobe Systems Incorporated.) -- C:\Windows\System32\Tasks\Adobe Acrobat Update Task [3886] © O39 - APT: Adobe-Online-Aktualisierungsprogramm - (.Adobe Systems Incorporated.) -- C:\Windows\System32\Tasks\Adobe-Online-Aktualisierungsprogramm [3694] © O39 - APT: arp_flush - (...) -- C:\Windows\System32\Tasks\arp_flush [2718] O39 - APT: Java Update Scheduler - (.Oracle Corporation.) -- C:\Windows\System32\Tasks\Java Update Scheduler [3704] © O39 - APT: SpyHunter4Startup - (...) -- C:\Windows\System32\Tasks\SpyHunter4Startup [3362] =>.Superfluous.SpyHunter O39 - APT: TuneUpUtilities_Task_BkGndMaintenance2013 - (.TuneUp Software.) -- C:\Windows\System32\Tasks\TuneUpUtilities_Task_BkGndMaintenance2013 [2770] © ---\\ Installierte Software (83) - 18s O42 - Logiciel: CPUID CPU-Z 1.73 - (...) [HKLM][64Bits] -- CPUID CPU-Z_is1 O42 - Logiciel: EPSON-Drucker-Software - (.SEIKO EPSON Corporation.) [HKLM][64Bits] -- EPSON Printer and Utilities © O42 - Logiciel: JDownloader 2 - (.AppWork GmbH.) [HKLM][64Bits] -- jdownloader2 © O42 - Logiciel: MediaInfo 0.7.78 - (.MediaArea.net.) [HKLM][64Bits] -- MediaInfo © O42 - Logiciel: NVIDIA Drivers - (.NVIDIA Corporation.) [HKLM][64Bits] -- NVIDIA Drivers © O42 - Logiciel: TAP-Windows 9.9.2 - (...) [HKLM][64Bits] -- TAP-Windows O42 - Logiciel: WinRAR 5.00 (64-bit) - (.win.rar GmbH.) [HKLM][64Bits] -- WinRAR archiver © O42 - Logiciel: Java 8 Update 60 (64-bit) - (.Oracle Corporation.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F86418060F0} © O42 - Logiciel: Visual Studio 2012 x64 Redistributables - (.AVG Technologies.) [HKLM][64Bits] -- {8C775E70-A791-4DA8-BCC3-6AB7136F4484} © O42 - Logiciel: NVIDIA Grafiktreiber 309.08 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver © O42 - Logiciel: NVIDIA Update 1.10.8 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update © O42 - Logiciel: Eraser 5.8.7 - (.The Eraser Project.) [HKLM][64Bits] -- {B80CC46C-5839-4A48-B051-3CACF23A2718}_is1 © O42 - Logiciel: JDownloader 0.9 - (.AppWork GmbH.) [HKLM][64Bits] -- 5513-1208-7298-9440-1 © O42 - Logiciel: 7-Zip 4.65 - (...) [HKLM][64Bits] -- 7-Zip O42 - Logiciel: Adobe Flash Player 19 NPAPI - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player NPAPI © O42 - Logiciel: AVG Web TuneUp - (.AVG Technologies.) [HKLM][64Bits] -- AVG Web TuneUp © O42 - Logiciel: Avidemux 2.6 - 64bits - (...) [HKLM][64Bits] -- Avidemux 2.6 - 64bits (64-bit) O42 - Logiciel: Avira Antivirus v15.0.13.210 - (.Avira Operations GmbH & Co. KG.) [HKLM][64Bits] -- Avira Antivirus © O42 - Logiciel: Big City Adventure: San Francisco - (.INTENIUM GmbH.) [HKLM][64Bits] -- Big City Adventure: San Francisco O42 - Logiciel: Die 12 Heldentaten des Herkules - (.INTENIUM GmbH.) [HKLM][64Bits] -- Die 12 Heldentaten des Herkules O42 - Logiciel: Die 12 Heldentaten des Herkules 2: Der Kretische Stier - (.INTENIUM GmbH.) [HKLM][64Bits] -- Die 12 Heldentaten des Herkules 2: Der Kretische Stier O42 - Logiciel: Die 12 Heldentaten des Herkules 3: Frauenpower - (.INTENIUM GmbH.) [HKLM][64Bits] -- Die 12 Heldentaten des Herkules 3: Frauenpower O42 - Logiciel: Die 4 Elemente II Sammleredition - (.INTENIUM GmbH.) [HKLM][64Bits] -- Die 4 Elemente II Sammleredition O42 - Logiciel: Die Musketiere: Victorias Abenteuer - (.INTENIUM GmbH.) [HKLM][64Bits] -- Die Musketiere: Victorias Abenteuer O42 - Logiciel: Die Wiege Ägyptens - (.INTENIUM GmbH.) [HKLM][64Bits] -- Die Wiege Ägyptens O42 - Logiciel: DEUTSCHLAND SPIELT GAME CENTER - (.INTENIUM GmbH.) [HKLM][64Bits] -- DSGPlayer O42 - Logiciel: Fairy Kingdom - (.INTENIUM GmbH.) [HKLM][64Bits] -- Fairy Kingdom O42 - Logiciel: ffdshow v1.3.4500 [2013-01-06] - (...) [HKLM][64Bits] -- ffdshow_is1 O42 - Logiciel: FLAC To MP3 V4.0.4 - (.FLAC To MP3, Inc..) [HKLM][64Bits] -- FLAC To MP3_is1 O42 - Logiciel: Floria - (.INTENIUM GmbH.) [HKLM][64Bits] -- Floria O42 - Logiciel: Free M4a to MP3 Converter 8.1 - (.ManiacTools.com.) [HKLM][64Bits] -- Free M4a to MP3 Converter_is1 © O42 - Logiciel: Gizmos: Geist der Weihnacht - (.INTENIUM GmbH.) [HKLM][64Bits] -- Gizmos: Geist der Weihnacht O42 - Logiciel: Gizmos: Gruselige Abenteuer - (.INTENIUM GmbH.) [HKLM][64Bits] -- Gizmos: Gruselige Abenteuer O42 - Logiciel: Gizmos: Rätsel des Universums - (.INTENIUM GmbH.) [HKLM][64Bits] -- Gizmos: Rätsel des Universums O42 - Logiciel: Heroes from the Past: Jeanne d'Arc - (.INTENIUM GmbH.) [HKLM][64Bits] -- Heroes from the Past: Jeanne d'Arc O42 - Logiciel: ImgBurn - (.LIGHTNING UK!.) [HKLM][64Bits] -- ImgBurn O42 - Logiciel: Island Tribe - (.INTENIUM GmbH.) [HKLM][64Bits] -- Island Tribe O42 - Logiciel: Kingdom Chronicles Sammleredition - (.INTENIUM GmbH.) [HKLM][64Bits] -- Kingdom Chronicles Sammleredition O42 - Logiciel: K-Lite Codec Pack 10.4.0 Full - (...) [HKLM][64Bits] -- KLiteCodecPack_is1 O42 - Logiciel: Land der Pharaonen - (...) [HKLM][64Bits] -- Land der Pharaonen O42 - Logiciel: Laruaville 2 - (.INTENIUM GmbH.) [HKLM][64Bits] -- Laruaville 2 O42 - Logiciel: Laruaville 3 - (.INTENIUM GmbH.) [HKLM][64Bits] -- Laruaville 3 O42 - Logiciel: Laruaville: Die Geisterstadt - (.INTENIUM GmbH.) [HKLM][64Bits] -- Laruaville: Die Geisterstadt O42 - Logiciel: Malwarebytes Anti-Malware Version 2.2.0.1024 - (.Malwarebytes.) [HKLM][64Bits] -- Malwarebytes Anti-Malware_is1 © O42 - Logiciel: Meridian: Zeitalter der Erfindungen - (.INTENIUM GmbH.) [HKLM][64Bits] -- Meridian: Zeitalter der Erfindungen O42 - Logiciel: MKVToolNix 5.7.0 - (.Moritz Bunkus.) [HKLM][64Bits] -- MKVToolNix © O42 - Logiciel: Mozilla Firefox 41.0.2 (x86 de) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox 41.0.2 (x86 de) © O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM][64Bits] -- MozillaMaintenanceService © O42 - Logiciel: MSI Live Update 3 - (...) [HKLM][64Bits] -- MSI Live Update 3 O42 - Logiciel: Mystika 2: Die Zuflucht - (.INTENIUM GmbH.) [HKLM][64Bits] -- Mystika 2: Die Zuflucht O42 - Logiciel: Mystika: Zwischen Licht und Schatten - (.INTENIUM GmbH.) [HKLM][64Bits] -- Mystika: Zwischen Licht und Schatten O42 - Logiciel: Next Stop: Das Eisenbahn-Imperium - (.INTENIUM GmbH.) [HKLM][64Bits] -- Next Stop: Das Eisenbahn-Imperium O42 - Logiciel: Queen's Quest: Turm der Dunkelheit Sammleredition - (.INTENIUM GmbH.) [HKLM][64Bits] -- Queen's Quest: Turm der Dunkelheit Sammleredition O42 - Logiciel: Roads of Rome - (.INTENIUM GmbH.) [HKLM][64Bits] -- Roads of Rome O42 - Logiciel: Roads of Rome 2 - (.INTENIUM GmbH.) [HKLM][64Bits] -- Roads of Rome 2 O42 - Logiciel: TuneUp Utilities 2014 - (.TuneUp Software.) [HKLM][64Bits] -- TuneUp Utilities © O42 - Logiciel: Verbotene Geheimnisse: Alien Town - (.INTENIUM GmbH.) [HKLM][64Bits] -- Verbotene Geheimnisse: Alien Town O42 - Logiciel: Viking Saga 2: New World - (.INTENIUM GmbH.) [HKLM][64Bits] -- Viking Saga 2: New World O42 - Logiciel: VLC media player - (.VideoLAN.) [HKLM][64Bits] -- VLC media player © O42 - Logiciel: DivxToDVD 0.5.2b - (.VSO-Software SARL.) [HKLM][64Bits] -- VSO DivxToDVD_is1 O42 - Logiciel: Nero 8 Essentials - (.Nero AG.) [HKLM][64Bits] -- {0A5F80AA-FCA7-41C5-BF1C-74727ECE1031} © O42 - Logiciel: Avira Launcher v1.1.47.11018 - (.Avira Operations GmbH & Co. KG.) [HKLM][64Bits] -- {27743B8E-DD60-4A84-BE7C-26570DDD5BB9} © O42 - Logiciel: Microsoft XNA Framework Redistributable 4.0 - (.Microsoft Corporation.) [HKLM][64Bits] -- {2BFC7AA0-544C-4E3A-8796-67F3BE655BE9} © O42 - Logiciel: VCRedistSetup - (.Nero AG.) [HKLM][64Bits] -- {3921A67A-5AB1-4E48-9444-C71814CF3027} © O42 - Logiciel: HiJackThis - (.Trend Micro.) [HKLM][64Bits] -- {45A66726-69BC-466B-A7A4-12FCBA4883D7} © O42 - Logiciel: MSI Live Update 6 - (.MSI.) [HKLM][64Bits] -- {4F46CF54-47D2-41F4-B230-B0954C544420}}_is1 © O42 - Logiciel: neroxml - (.Nero AG.) [HKLM][64Bits] -- {56C049BE-79E9-4502-BEA7-9754A3E60F9B} © O42 - Logiciel: Avira Launcher v1.1.47.11018 - (.Avira Operations GmbH & Co. KG.) [HKLM][64Bits] -- {5dfbeba9-9f22-463d-8c95-c861911810a2} © O42 - Logiciel: Faasoft Audio Converter 5.2.23.5604 - (.Faasoft Corporation.) [HKLM][64Bits] -- {6A4806A7-4A4C-458C-B42F-BB508CA69F3F}_is1 O42 - Logiciel: MSI Super Charger - (.MSI.) [HKLM][64Bits] -- {7CDF10DD-A9B5-4DA3-AB95-E193248D4369}_is1 © O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) [HKLM][64Bits] -- {86493ADD-824D-4B8E-BD72-8C5DCDC52A71} © O42 - Logiciel: VSO CopyToDVD 4 - (.VSO Software.) [HKLM][64Bits] -- {870F1750-BA89-11DA-A94D-0800200C9A66}_is1 © O42 - Logiciel: SUPER © v2014.build.60+Recorder (2014/02/18) Version v2014.buil - (.eRightSoft.) [HKLM][64Bits] -- {8E2A18E2-96AF-8549-4DE7-5C06B75719A4}_is1 © O42 - Logiciel: Visual Studio 2012 x86 Redistributables - (.AVG Technologies CZ, s.r.o..) [HKLM][64Bits] -- {98EFF19A-30AB-4E4B-B943-F06B1C63EBF8} © O42 - Logiciel: Adobe Refresh Manager - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-0804-1033-1959-001824147215} © O42 - Logiciel: Adobe Reader XI (11.0.13) - Deutsch - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-1031-7B44-AB0000000001} © O42 - Logiciel: Winrar Activator Version 1.2 - (.Rarlab.) [HKLM][64Bits] -- {AE0B3F2A-EB65-4D01-A3E1-6D879C6AAF2A}_is1 O42 - Logiciel: Spybot - Search & Destroy - (.Safer-Networking Ltd..) [HKLM][64Bits] -- {B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1 © O42 - Logiciel: XMedia Recode Version 3.2.3.8 - (.XMedia Recode.) [HKLM][64Bits] -- {DDA3C325-47B2-4730-9672-BF3771C08799}_is1 O42 - Logiciel: Microsoft WSE 3.0 Runtime - (.Microsoft Corp..) [HKLM][64Bits] -- {E3E71D07-CD27-46CB-8448-16D4FB29AA13} © O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC} © O42 - Logiciel: MSXML 4.0 SP2 (KB973688) - (.Microsoft Corporation.) [HKLM][64Bits] -- {F662A8E6-F4DC-41A2-901E-8C11F044BDEC} © O42 - Logiciel: µTorrent - (.BitTorrent Inc..) [HKCU][64Bits] -- uTorrent ---\\ HKCU & HKLM Software Keys (149) - 18s HKLM\SOFTWARE\Wow6432Node\7-Zip HKLM\SOFTWARE\Wow6432Node\Adobe HKLM\SOFTWARE\Wow6432Node\AdwCleaner HKLM\SOFTWARE\Wow6432Node\Ahead HKLM\SOFTWARE\Wow6432Node\Audible HKLM\SOFTWARE\Wow6432Node\AVAST Software HKLM\SOFTWARE\Wow6432Node\AVG Tuneup HKLM\SOFTWARE\Wow6432Node\AVG Web TuneUp =>Toolbar.AVGSafeGuard HKLM\SOFTWARE\Wow6432Node\Avidemux 2.6 - 64bits (64-bit) HKLM\SOFTWARE\Wow6432Node\Avira HKLM\SOFTWARE\Wow6432Node\AviSynth HKLM\SOFTWARE\Wow6432Node\CyberGhost HKLM\SOFTWARE\Wow6432Node\DAMN HKLM\SOFTWARE\Wow6432Node\DIOC HKLM\SOFTWARE\Wow6432Node\DivXNetworks HKLM\SOFTWARE\Wow6432Node\DVDVideoSoft HKLM\SOFTWARE\Wow6432Node\ej-technologies HKLM\SOFTWARE\Wow6432Node\EnigmaSoftwareGroup HKLM\SOFTWARE\Wow6432Node\EPSON HKLM\SOFTWARE\Wow6432Node\Faasoft HKLM\SOFTWARE\Wow6432Node\GNU HKLM\SOFTWARE\Wow6432Node\Google HKLM\SOFTWARE\Wow6432Node\ImgBurn HKLM\SOFTWARE\Wow6432Node\Intel HKLM\SOFTWARE\Wow6432Node\JavaSoft HKLM\SOFTWARE\Wow6432Node\JreMetrics HKLM\SOFTWARE\Wow6432Node\Khronos HKLM\SOFTWARE\Wow6432Node\KLCodecPack HKLM\SOFTWARE\Wow6432Node\LAV HKLM\SOFTWARE\Wow6432Node\Macromedia HKLM\SOFTWARE\Wow6432Node\Malwarebytes Anti-Rootkit HKLM\SOFTWARE\Wow6432Node\Malwarebytes' Anti-Malware HKLM\SOFTWARE\Wow6432Node\McAfee.com HKLM\SOFTWARE\Wow6432Node\MimarSinan HKLM\SOFTWARE\Wow6432Node\Mozilla HKLM\SOFTWARE\Wow6432Node\mozilla.org HKLM\SOFTWARE\Wow6432Node\MozillaPlugins HKLM\SOFTWARE\Wow6432Node\MSI HKLM\SOFTWARE\Wow6432Node\Nero HKLM\SOFTWARE\Wow6432Node\NeroDigital HKLM\SOFTWARE\Wow6432Node\NVIDIA Corporation HKLM\SOFTWARE\Wow6432Node\ODBC HKLM\SOFTWARE\Wow6432Node\Opera Software HKLM\SOFTWARE\Wow6432Node\oxxogames HKLM\SOFTWARE\Wow6432Node\Realtek HKLM\SOFTWARE\Wow6432Node\Realtek Semiconductor Corp. HKLM\SOFTWARE\Wow6432Node\Safer Networking Limited HKLM\SOFTWARE\Wow6432Node\TrendMicro HKLM\SOFTWARE\Wow6432Node\TuneUp HKLM\SOFTWARE\Wow6432Node\Unreal HKLM\SOFTWARE\Wow6432Node\VideoLAN HKLM\SOFTWARE\Wow6432Node\VSO HKLM\SOFTWARE\Wow6432Node\Wow6432Node HKLM\SOFTWARE\Wow6432Node\X-AVCSD HKLM\SOFTWARE\Wow6432Node\RegisteredApplications HKCU\SOFTWARE\7-Zip HKCU\SOFTWARE\A2 HKCU\SOFTWARE\AC3Filter HKCU\SOFTWARE\Adobe HKCU\SOFTWARE\Ahead HKCU\SOFTWARE\AppDataLow HKCU\SOFTWARE\Astar Games HKCU\SOFTWARE\AVG Web TuneUp =>Toolbar.AVGSafeGuard HKCU\SOFTWARE\Avira HKCU\SOFTWARE\BigBlueBubble HKCU\SOFTWARE\BitTorrent HKCU\SOFTWARE\Chromium HKCU\SOFTWARE\Code Sector HKCU\SOFTWARE\Codeminion HKCU\SOFTWARE\com.runningpillow.ttt HKCU\SOFTWARE\ComputerBild HKCU\SOFTWARE\Cygnus Solutions HKCU\SOFTWARE\DAMN HKCU\SOFTWARE\Digital River HKCU\SOFTWARE\DVDVideoSoft HKCU\SOFTWARE\ej-technologies HKCU\SOFTWARE\EPSON HKCU\SOFTWARE\Faasoft HKCU\SOFTWARE\Far Mills HKCU\SOFTWARE\Freeware HKCU\SOFTWARE\Fugazo HKCU\SOFTWARE\Gabest HKCU\SOFTWARE\GameHouse HKCU\SOFTWARE\GNU HKCU\SOFTWARE\Gogii Games HKCU\SOFTWARE\GoldenGate HKCU\SOFTWARE\Good games HKCU\SOFTWARE\Google HKCU\SOFTWARE\Haali HKCU\SOFTWARE\HeartWare HKCU\SOFTWARE\Heidi Computers Ltd HKCU\SOFTWARE\Icaros HKCU\SOFTWARE\ImgBurn HKCU\SOFTWARE\Intel HKCU\SOFTWARE\Intenium HKCU\SOFTWARE\JavaSoft HKCU\SOFTWARE\JollyBear HKCU\SOFTWARE\Ladia Group HKCU\SOFTWARE\LAV HKCU\SOFTWARE\Macromedia HKCU\SOFTWARE\madshi HKCU\SOFTWARE\Magicbit HKCU\SOFTWARE\ManiacTools HKCU\SOFTWARE\MCAFEE HKCU\SOFTWARE\MediaChance HKCU\SOFTWARE\MediaProLab HKCU\SOFTWARE\Meridian93 HKCU\SOFTWARE\Mirball HKCU\SOFTWARE\MisAndCheeze HKCU\SOFTWARE\mkvmergeGUI HKCU\SOFTWARE\Mozilla HKCU\SOFTWARE\Multidecoder HKCU\SOFTWARE\MultimediaTools HKCU\SOFTWARE\Nero HKCU\SOFTWARE\Netscape HKCU\SOFTWARE\NVIDIA Corporation HKCU\SOFTWARE\OceanMediaGames HKCU\SOFTWARE\ODBC HKCU\SOFTWARE\Opera Software HKCU\SOFTWARE\otr HKCU\SOFTWARE\Pixart HKCU\SOFTWARE\PopCap HKCU\SOFTWARE\PuzzleLab HKCU\SOFTWARE\QtProject HKCU\SOFTWARE\Realtek HKCU\SOFTWARE\Rumbic Studio HKCU\SOFTWARE\Safer Networking Limited HKCU\SOFTWARE\Sahmon Studio HKCU\SOFTWARE\Shaman Games HKCU\SOFTWARE\Silverback Productions HKCU\SOFTWARE\SoftVTU HKCU\SOFTWARE\Spyware Terminator HKCU\SOFTWARE\Stargaze Interactive HKCU\SOFTWARE\Sysinternals HKCU\SOFTWARE\TCP Optimizer HKCU\SOFTWARE\Test3D HKCU\SOFTWARE\Trend Micro HKCU\SOFTWARE\Trolltech HKCU\SOFTWARE\TuneUp HKCU\SOFTWARE\Unity HKCU\SOFTWARE\VirtualDub.org HKCU\SOFTWARE\VSO HKCU\SOFTWARE\Whalebox Studio HKCU\SOFTWARE\WinRAR HKCU\SOFTWARE\WinRAR SFX HKCU\SOFTWARE\Wow6432Node HKCU\SOFTWARE\ZebHelpProcess Helper HKCU\SOFTWARE\AppDataLow\Software HKCU\SOFTWARE\AppDataLow\Software\JavaSoft ---\\ Inhalt der Ordner Programme (319) - 19s O43 - CFD: 2014/04/15 13:08:07 - [] D -- C:\Program Files (x86)\1by1 O43 - CFD: 2015/01/14 17:02:37 - [] D -- C:\Program Files (x86)\7-Zip O43 - CFD: 2014/04/23 08:26:02 - [] D -- C:\Program Files (x86)\Adobe O43 - CFD: 2015/01/14 13:41:23 - [] D -- C:\Program Files (x86)\AVG Web TuneUp =>Toolbar.AVGSafeGuard O43 - CFD: 2015/07/06 12:31:56 - [] D -- C:\Program Files (x86)\Avira O43 - CFD: 2014/04/16 10:43:46 - [] D -- C:\Program Files (x86)\AviSynth 2.5 O43 - CFD: 2015/05/21 05:43:10 - [] D -- C:\Program Files (x86)\Common Files O43 - CFD: 2014/04/15 10:29:53 - [] D -- C:\Program Files (x86)\DAMN NFO Viewer O43 - CFD: 2015/09/28 01:24:20 - [] D -- C:\Program Files (x86)\DEUTSCHLAND SPIELT O43 - CFD: 2014/06/23 11:26:11 - [] D -- C:\Program Files (x86)\eRightSoft O43 - CFD: 2015/06/09 08:28:32 - [] D -- C:\Program Files (x86)\Faasoft O43 - CFD: 2014/08/07 11:41:03 - [] D -- C:\Program Files (x86)\Free M4a to MP3 Converter O43 - CFD: 2014/05/17 12:27:53 - [] D -- C:\Program Files (x86)\Free Videos To DVD O43 - CFD: 2014/11/26 14:07:19 - [] D -- C:\Program Files (x86)\Google O43 - CFD: 2015/02/25 11:02:42 - [] D -- C:\Program Files (x86)\hide.me VPN O43 - CFD: 2014/11/23 12:32:17 - [] D -- C:\Program Files (x86)\ImgBurn O43 - CFD: 2014/04/16 05:46:31 - [] HD -- C:\Program Files (x86)\InstallShield Installation Information O43 - CFD: 2015/10/17 08:39:52 - [] D -- C:\Program Files (x86)\Internet Explorer O43 - CFD: 2014/04/16 13:15:38 - [] D -- C:\Program Files (x86)\K-Lite Codec Pack O43 - CFD: 2015/10/14 08:35:15 - [] D -- C:\Program Files (x86)\Malwarebytes Anti-Malware O43 - CFD: 2014/06/01 09:23:21 - [] D -- C:\Program Files (x86)\Microsoft Office O43 - CFD: 2014/06/01 09:23:13 - [] D -- C:\Program Files (x86)\Microsoft Visual Studio O43 - CFD: 2014/06/01 09:20:58 - [] D -- C:\Program Files (x86)\Microsoft Visual Studio 8 O43 - CFD: 2014/06/01 09:23:29 - [] D -- C:\Program Files (x86)\Microsoft Works O43 - CFD: 2015/09/02 06:49:39 - [] D -- C:\Program Files (x86)\Microsoft WSE O43 - CFD: 2015/06/03 12:21:39 - [] D -- C:\Program Files (x86)\Microsoft XNA O43 - CFD: 2014/06/01 09:22:49 - [] D -- C:\Program Files (x86)\Microsoft.NET O43 - CFD: 2015/02/06 13:58:07 - [] D -- C:\Program Files (x86)\MKVToolNix O43 - CFD: 2015/10/17 08:41:41 - [] D -- C:\Program Files (x86)\Mozilla Firefox O43 - CFD: 2015/10/17 08:41:41 - [] D -- C:\Program Files (x86)\Mozilla Maintenance Service O43 - CFD: 2014/06/01 09:23:25 - [] D -- C:\Program Files (x86)\MSBuild O43 - CFD: 2015/06/12 07:18:10 - [] D -- C:\Program Files (x86)\MSI O43 - CFD: 2014/05/20 04:19:07 - [0] D -- C:\Program Files (x86)\MSXML 4.0 O43 - CFD: 2014/05/17 12:40:05 - [] D -- C:\Program Files (x86)\Nero O43 - CFD: 2014/04/15 06:12:29 - [] D -- C:\Program Files (x86)\NVIDIA Corporation O43 - CFD: 2014/11/25 11:32:59 - [] D -- C:\Program Files (x86)\Opera O43 - CFD: 2015/09/16 12:48:09 - [] D -- C:\Program Files (x86)\OXXOGames O43 - CFD: 2014/04/15 06:35:58 - [] D -- C:\Program Files (x86)\Realtek O43 - CFD: 2009/07/14 07:32:38 - [] D -- C:\Program Files (x86)\Reference Assemblies O43 - CFD: 2015/10/13 13:46:54 - [] D -- C:\Program Files (x86)\Spybot - Search & Destroy 2 O43 - CFD: 2014/04/15 06:36:29 - [0] HD -- C:\Program Files (x86)\Temp O43 - CFD: 2014/04/24 06:47:47 - [] D -- C:\Program Files (x86)\Trend Micro O43 - CFD: 2015/07/05 22:49:04 - [] D -- C:\Program Files (x86)\TuneUp Utilities 2014 O43 - CFD: 2009/07/14 06:57:06 - [0] HD -- C:\Program Files (x86)\Uninstall Information O43 - CFD: 2015/03/17 09:32:55 - [0] D -- C:\Program Files (x86)\URUSoft O43 - CFD: 2015/05/21 06:17:25 - [] D -- C:\Program Files (x86)\VideoLAN O43 - CFD: 2015/05/22 11:10:52 - [0] D -- C:\Program Files (x86)\VS Revo Group O43 - CFD: 2015/02/09 15:50:39 - [] D -- C:\Program Files (x86)\vso O43 - CFD: 2015/05/21 05:36:11 - [0] D -- C:\Program Files (x86)\Webteh O43 - CFD: 2014/03/13 21:03:08 - [] D -- C:\Program Files (x86)\Windows Defender O43 - CFD: 2011/04/12 09:43:43 - [] D -- C:\Program Files (x86)\Windows Mail O43 - CFD: 2015/07/05 20:54:43 - [] D -- C:\Program Files (x86)\Windows Media Player O43 - CFD: 2009/07/14 07:32:38 - [] D -- C:\Program Files (x86)\Windows NT O43 - CFD: 2011/04/12 09:43:43 - [] D -- C:\Program Files (x86)\Windows Photo Viewer O43 - CFD: 2010/11/21 05:31:38 - [] D -- C:\Program Files (x86)\Windows Portable Devices O43 - CFD: 2011/04/12 09:43:43 - [] D -- C:\Program Files (x86)\Windows Sidebar O43 - CFD: 2014/04/16 18:09:57 - [] D -- C:\Program Files (x86)\WinRAR O43 - CFD: 2015/07/18 09:40:03 - [] D -- C:\Program Files (x86)\XMedia Recode O43 - CFD: 2015/01/14 17:02:37 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip O43 - CFD: 2014/04/19 05:48:56 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories O43 - CFD: 2014/04/15 05:58:57 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools O43 - CFD: 2014/04/16 10:48:03 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avidemux (64bits) O43 - CFD: 2015/10/13 09:07:28 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira O43 - CFD: 2015/09/23 09:17:45 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID O43 - CFD: 2015/09/28 01:23:47 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DEUTSCHLAND SPIELT O43 - CFD: 2014/05/13 10:36:21 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON O43 - CFD: 2015/03/24 14:43:56 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Eraser O43 - CFD: 2014/04/16 15:53:15 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ffdshow O43 - CFD: 2015/03/04 13:52:59 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FLAC To MP3 O43 - CFD: 2014/08/07 11:41:01 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Free M4a to MP3 Converter O43 - CFD: 2014/04/15 12:38:46 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games O43 - CFD: 2015/03/06 18:06:39 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Handbrake O43 - CFD: 2014/11/23 12:32:18 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ImgBurn O43 - CFD: 2015/09/14 17:10:44 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java O43 - CFD: 2014/04/16 13:15:52 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack O43 - CFD: 2009/07/14 06:57:09 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance O43 - CFD: 2015/10/14 08:35:15 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware O43 - CFD: 2014/06/01 09:24:53 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office O43 - CFD: 2014/12/05 08:01:17 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MKVToolNix O43 - CFD: 2015/06/12 07:18:13 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MSI O43 - CFD: 2014/05/17 12:43:38 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero 8 O43 - CFD: 2015/09/02 06:49:14 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Netzmanager O43 - CFD: 2014/04/29 07:24:31 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy 2 O43 - CFD: 2015/09/15 00:47:29 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup O43 - CFD: 2014/06/23 11:26:16 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SUPER © - by eRightSoft O43 - CFD: 2011/04/12 09:54:45 - [0] RHD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC O43 - CFD: 2015/01/03 06:52:32 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TuneUp Utilities 2014 O43 - CFD: 2015/02/09 18:32:53 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\URUSoft O43 - CFD: 2015/05/21 06:18:23 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN O43 - CFD: 2015/02/09 15:50:48 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VSO O43 - CFD: 2015/01/12 11:36:48 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR O43 - CFD: 2015/07/18 09:40:03 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XMedia Recode O43 - CFD: 2014/08/03 13:10:03 - [] D -- C:\ProgramData\1912 Titanic Mystery O43 - CFD: 2014/04/23 08:29:14 - [] D -- C:\ProgramData\Adobe O43 - CFD: 2015/09/22 10:12:20 - [] D -- C:\ProgramData\Alawar Stargaze O43 - CFD: 2014/04/15 06:03:03 - [0] SHD -- C:\ProgramData\Anwendungsdaten O43 - CFD: 2009/07/14 07:08:56 - [0] SHD -- C:\ProgramData\Application Data O43 - CFD: 2014/12/17 07:01:05 - [] D -- C:\ProgramData\Arizona-Rose-2 O43 - CFD: 2014/08/24 11:06:13 - [] D -- C:\ProgramData\Astar Games O43 - CFD: 2014/08/23 12:08:48 - [] D -- C:\ProgramData\AVAST Software O43 - CFD: 2015/01/14 13:41:44 - [] D -- C:\ProgramData\AVG Web TuneUp =>Toolbar.AVGSafeGuard O43 - CFD: 2015/06/12 07:13:49 - [] D -- C:\ProgramData\Avira O43 - CFD: 2014/07/04 08:50:21 - [] D -- C:\ProgramData\BC Soft Games O43 - CFD: 2014/08/24 12:59:55 - [] D -- C:\ProgramData\Becky Brogan 2 O43 - CFD: 2015/09/20 10:55:31 - [] D -- C:\ProgramData\BlitPop O43 - CFD: 2014/09/27 05:51:03 - [] D -- C:\ProgramData\Cateia Games O43 - CFD: 2014/06/27 14:18:26 - [] HD -- C:\ProgramData\Common Files O43 - CFD: 2009/07/14 07:08:56 - [0] SHD -- C:\ProgramData\Desktop O43 - CFD: 2009/07/14 07:08:56 - [0] SHD -- C:\ProgramData\Documents O43 - CFD: 2014/04/15 06:03:03 - [0] SHD -- C:\ProgramData\Dokumente O43 - CFD: 2014/05/13 10:36:20 - [] D -- C:\ProgramData\EPSON O43 - CFD: 2014/04/15 06:03:03 - [0] SHD -- C:\ProgramData\Favoriten O43 - CFD: 2009/07/14 07:08:56 - [0] SHD -- C:\ProgramData\Favorites O43 - CFD: 2014/05/18 05:57:48 - [] D -- C:\ProgramData\Fugazo O43 - CFD: 2014/04/22 16:15:39 - [] D -- C:\ProgramData\GameHouse O43 - CFD: 2014/12/19 18:53:04 - [] D -- C:\ProgramData\HitmanPro O43 - CFD: 2014/12/22 08:25:16 - [] D -- C:\ProgramData\HitmanPro.Alert O43 - CFD: 2015/09/20 10:17:10 - [] D -- C:\ProgramData\Intenium O43 - CFD: 2014/05/08 05:59:35 - [] D -- C:\ProgramData\Islands O43 - CFD: 2015/09/26 11:56:21 - [] D -- C:\ProgramData\JollyBear O43 - CFD: 2014/08/17 17:31:40 - [] D -- C:\ProgramData\LittleGamesCompany O43 - CFD: 2015/06/03 12:37:37 - [] D -- C:\ProgramData\Magic-Heroes O43 - CFD: 2014/11/15 09:35:52 - [] D -- C:\ProgramData\Malwarebytes O43 - CFD: 2015/05/13 10:50:15 - [] D -- C:\ProgramData\Malwarebytes' Anti-Malware (portable) O43 - CFD: 2014/06/19 07:51:57 - [] D -- C:\ProgramData\McAfee O43 - CFD: 2014/08/23 08:04:29 - [] D -- C:\ProgramData\Meridian93 O43 - CFD: 2014/08/27 10:58:47 - [] D -- C:\ProgramData\Merscom O43 - CFD: 2015/01/14 13:39:16 - [] D -- C:\ProgramData\MFAData O43 - CFD: 2015/09/18 16:58:39 - [] SD -- C:\ProgramData\Microsoft O43 - CFD: 2015/07/01 11:11:46 - [] D -- C:\ProgramData\Microsoft Help O43 - CFD: 2014/04/15 06:08:43 - [] D -- C:\ProgramData\Mozilla O43 - CFD: 2014/08/28 08:54:25 - [] D -- C:\ProgramData\MumboJumbo O43 - CFD: 2014/05/17 12:40:05 - [] D -- C:\ProgramData\Nero O43 - CFD: 2015/09/02 06:56:13 - [] D -- C:\ProgramData\Netzmanager O43 - CFD: 2014/04/25 09:06:47 - [] D -- C:\ProgramData\Norton O43 - CFD: 2014/04/15 06:28:32 - [] D -- C:\ProgramData\NortonInstaller O43 - CFD: 2015/08/07 06:59:58 - [] D -- C:\ProgramData\NVIDIA O43 - CFD: 2014/04/15 06:11:47 - [] D -- C:\ProgramData\NVIDIA Corporation O43 - CFD: 2015/03/09 11:09:13 - [] D -- C:\ProgramData\Oracle O43 - CFD: 2015/10/13 09:07:54 - [] D -- C:\ProgramData\Package Cache O43 - CFD: 2014/08/22 13:47:00 - [] D -- C:\ProgramData\Playrix Entertainment O43 - CFD: 2014/04/27 11:24:47 - [] D -- C:\ProgramData\RescueFrenzy O43 - CFD: 2014/04/30 17:23:40 - [] D -- C:\ProgramData\rionix O43 - CFD: 2014/08/24 11:20:37 - [] D -- C:\ProgramData\Rumbic Studio O43 - CFD: 2015/09/20 10:17:10 - [] D -- C:\ProgramData\ScreenSeven O43 - CFD: 2014/09/10 06:28:23 - [] D -- C:\ProgramData\Spybot - Search & Destroy O43 - CFD: 2015/10/14 06:08:26 - [] D -- C:\ProgramData\Spyware Terminator O43 - CFD: 2009/07/14 07:08:56 - [0] SHD -- C:\ProgramData\Start Menu O43 - CFD: 2014/04/15 06:03:03 - [0] SHD -- C:\ProgramData\Startmenü O43 - CFD: 2014/04/15 06:32:54 - [] D -- C:\ProgramData\Sun O43 - CFD: 2009/07/14 07:08:56 - [0] SHD -- C:\ProgramData\Templates O43 - CFD: 2014/08/27 11:27:29 - [] D -- C:\ProgramData\The Revills Games O43 - CFD: 2015/09/29 07:30:56 - [] D -- C:\ProgramData\TuneUp Software O43 - CFD: 2014/04/15 06:03:03 - [0] SHD -- C:\ProgramData\Vorlagen O43 - CFD: 2015/02/09 18:13:36 - [] D -- C:\ProgramData\VSO O43 - CFD: 2014/04/23 08:26:11 - [] D -- C:\Program Files (x86)\Common Files\Adobe O43 - CFD: 2014/06/01 09:23:13 - [] D -- C:\Program Files (x86)\Common Files\DESIGNER O43 - CFD: 2014/04/15 06:35:54 - [] D -- C:\Program Files (x86)\Common Files\InstallShield O43 - CFD: 2014/12/01 13:17:34 - [] D -- C:\Program Files (x86)\Common Files\Java O43 - CFD: 2015/06/03 12:21:39 - [] D -- C:\Program Files (x86)\Common Files\microsoft shared O43 - CFD: 2014/05/17 12:42:28 - [] D -- C:\Program Files (x86)\Common Files\Nero O43 - CFD: 2009/07/14 05:20:08 - [] D -- C:\Program Files (x86)\Common Files\Services O43 - CFD: 2009/07/14 05:20:08 - [] D -- C:\Program Files (x86)\Common Files\SpeechEngines O43 - CFD: 2014/04/25 08:52:14 - [0] D -- C:\Program Files (x86)\Common Files\Symantec Shared O43 - CFD: 2014/06/01 09:20:42 - [] D -- C:\Program Files (x86)\Common Files\System O43 - CFD: 2014/04/15 13:15:17 - [] D -- C:\Users\wilfried\AppData\Roaming\1by1 O43 - CFD: 2014/10/31 13:43:24 - [] D -- C:\Users\wilfried\AppData\Roaming\4 Friends Games O43 - CFD: 2014/08/28 10:49:11 - [] D -- C:\Users\wilfried\AppData\Roaming\8Floor O43 - CFD: 2014/12/17 06:59:41 - [] D -- C:\Users\wilfried\AppData\Roaming\A2 Entertainment O43 - CFD: 2014/04/23 08:28:39 - [] D -- C:\Users\wilfried\AppData\Roaming\Adobe O43 - CFD: 2015/09/23 06:11:26 - [] D -- C:\Users\wilfried\AppData\Roaming\Alawar Stargaze O43 - CFD: 2015/07/27 10:34:28 - [] D -- C:\Users\wilfried\AppData\Roaming\AlawarEntertainment O43 - CFD: 2015/07/25 10:18:12 - [] D -- C:\Users\wilfried\AppData\Roaming\aliasworlds O43 - CFD: 2015/07/27 10:45:01 - [] D -- C:\Users\wilfried\AppData\Roaming\AllMyGods O43 - CFD: 2015/06/22 10:34:42 - [] D -- C:\Users\wilfried\AppData\Roaming\Ancient Quest of Saqqarah__intenium O43 - CFD: 2015/10/11 10:43:41 - [] D -- C:\Users\wilfried\AppData\Roaming\avidemux O43 - CFD: 2015/04/01 14:06:28 - [] D -- C:\Users\wilfried\AppData\Roaming\Avira O43 - CFD: 2015/06/22 10:44:16 - [] D -- C:\Users\wilfried\AppData\Roaming\Awem O43 - CFD: 2014/07/04 08:50:21 - [] D -- C:\Users\wilfried\AppData\Roaming\BC Soft Games O43 - CFD: 2015/05/21 05:36:10 - [] D -- C:\Users\wilfried\AppData\Roaming\BSplayer O43 - CFD: 2015/05/20 14:00:08 - [] D -- C:\Users\wilfried\AppData\Roaming\BSplayer Pro O43 - CFD: 2014/04/29 18:02:29 - [] D -- C:\Users\wilfried\AppData\Roaming\Building the Great Wall of China O43 - CFD: 2015/09/20 10:51:23 - [] D -- C:\Users\wilfried\AppData\Roaming\cerasus.media O43 - CFD: 2014/04/15 16:37:04 - [] D -- C:\Users\wilfried\AppData\Roaming\Deep Shadows O43 - CFD: 2014/05/08 08:03:02 - [] D -- C:\Users\wilfried\AppData\Roaming\Divo Games O43 - CFD: 2014/11/29 23:17:43 - [] D -- C:\Users\wilfried\AppData\Roaming\DominiGames O43 - CFD: 2014/11/22 16:42:47 - [] D -- C:\Users\wilfried\AppData\Roaming\dvdcss O43 - CFD: 2015/05/21 05:43:10 - [] D -- C:\Users\wilfried\AppData\Roaming\DVDVideoSoft O43 - CFD: 2014/05/09 13:46:22 - [] D -- C:\Users\wilfried\AppData\Roaming\EscapeTheMuseum2 O43 - CFD: 2015/06/09 08:28:46 - [] D -- C:\Users\wilfried\AppData\Roaming\Faasoft Audio Converter O43 - CFD: 2014/11/14 12:41:23 - [0] D -- C:\Users\wilfried\AppData\Roaming\FileAdvisor O43 - CFD: 2014/10/12 11:02:34 - [] D -- C:\Users\wilfried\AppData\Roaming\Five-BN Games O43 - CFD: 2015/04/03 11:39:14 - [] D -- C:\Users\wilfried\AppData\Roaming\Floria O43 - CFD: 2014/08/28 09:04:45 - [] D -- C:\Users\wilfried\AppData\Roaming\FlyWheelGames O43 - CFD: 2014/05/17 12:27:00 - [] D -- C:\Users\wilfried\AppData\Roaming\FreeMoviesToDVD O43 - CFD: 2014/08/31 08:48:22 - [] D -- C:\Users\wilfried\AppData\Roaming\Freeze Tag O43 - CFD: 2014/05/21 11:11:10 - [] D -- C:\Users\wilfried\AppData\Roaming\Friday's games O43 - CFD: 2014/08/16 11:31:27 - [] D -- C:\Users\wilfried\AppData\Roaming\Fuzzy Bug Interactive O43 - CFD: 2015/04/10 22:00:53 - [] D -- C:\Users\wilfried\AppData\Roaming\GalileoPress O43 - CFD: 2014/04/29 14:50:08 - [] D -- C:\Users\wilfried\AppData\Roaming\GFI O43 - CFD: 2014/08/28 09:29:32 - [] D -- C:\Users\wilfried\AppData\Roaming\GO Games O43 - CFD: 2014/11/29 18:12:14 - [] D -- C:\Users\wilfried\AppData\Roaming\Gogii O43 - CFD: 2014/08/23 07:53:31 - [] D -- C:\Users\wilfried\AppData\Roaming\Gogii Games O43 - CFD: 2014/11/25 11:19:34 - [] HD -- C:\Users\wilfried\AppData\Roaming\GoldenGate O43 - CFD: 2015/09/27 14:52:42 - [] D -- C:\Users\wilfried\AppData\Roaming\GreenSauceGames O43 - CFD: 2015/03/06 18:10:54 - [] D -- C:\Users\wilfried\AppData\Roaming\HandBrake O43 - CFD: 2015/02/25 11:06:49 - [] D -- C:\Users\wilfried\AppData\Roaming\Hide.me O43 - CFD: 2014/04/15 06:03:47 - [] D -- C:\Users\wilfried\AppData\Roaming\Identities O43 - CFD: 2015/04/10 19:52:36 - [] D -- C:\Users\wilfried\AppData\Roaming\ImgBurn O43 - CFD: 2014/04/24 07:18:01 - [] D -- C:\Users\wilfried\AppData\Roaming\InstallShield O43 - CFD: 2014/04/21 18:05:05 - [] D -- C:\Users\wilfried\AppData\Roaming\Intenium O43 - CFD: 2015/07/14 14:35:55 - [] D -- C:\Users\wilfried\AppData\Roaming\Islands O43 - CFD: 2015/01/27 11:37:39 - [] D -- C:\Users\wilfried\AppData\Roaming\Jewel Match 4 O43 - CFD: 2015/01/27 08:51:20 - [] D -- C:\Users\wilfried\AppData\Roaming\Jewel Match Snowscapes O43 - CFD: 2015/09/05 22:15:46 - [] D -- C:\Users\wilfried\AppData\Roaming\Jumb-O-Fun Games O43 - CFD: 2015/04/05 07:50:57 - [] D -- C:\Users\wilfried\AppData\Roaming\Laruaville O43 - CFD: 2015/04/03 11:44:26 - [] D -- C:\Users\wilfried\AppData\Roaming\Laruaville2 O43 - CFD: 2015/08/14 08:25:27 - [] D -- C:\Users\wilfried\AppData\Roaming\Laruaville3 O43 - CFD: 2014/10/12 10:22:52 - [] D -- C:\Users\wilfried\AppData\Roaming\Lazy Turtle Games O43 - CFD: 2014/08/23 08:16:17 - [] D -- C:\Users\wilfried\AppData\Roaming\LegacyGames O43 - CFD: 2014/08/23 08:21:54 - [] D -- C:\Users\wilfried\AppData\Roaming\LegacyInteractive O43 - CFD: 2014/08/17 17:31:40 - [] D -- C:\Users\wilfried\AppData\Roaming\LittleGamesCompany O43 - CFD: 2014/04/15 06:19:04 - [] D -- C:\Users\wilfried\AppData\Roaming\Macromedia O43 - CFD: 2014/05/10 09:53:53 - [] D -- C:\Users\wilfried\AppData\Roaming\Magic Seeds O43 - CFD: 2014/05/09 09:55:37 - [] D -- C:\Users\wilfried\AppData\Roaming\MagicIndie O43 - CFD: 2011/04/12 09:54:45 - [0] D -- C:\Users\wilfried\AppData\Roaming\Media Center Programs O43 - CFD: 2015/10/02 12:37:22 - [] D -- C:\Users\wilfried\AppData\Roaming\MediaInfo O43 - CFD: 2014/08/23 08:04:13 - [] D -- C:\Users\wilfried\AppData\Roaming\Meridian93 O43 - CFD: 2014/08/27 10:58:47 - [] D -- C:\Users\wilfried\AppData\Roaming\Merscom O43 - CFD: 2015/09/01 06:42:06 - [] SD -- C:\Users\wilfried\AppData\Roaming\Microsoft O43 - CFD: 2015/02/06 13:54:03 - [] D -- C:\Users\wilfried\AppData\Roaming\mkvtoolnix O43 - CFD: 2014/04/22 12:51:34 - [] D -- C:\Users\wilfried\AppData\Roaming\Mozilla O43 - CFD: 2015/09/20 10:31:27 - [] D -- C:\Users\wilfried\AppData\Roaming\My Games O43 - CFD: 2014/10/12 08:02:42 - [] D -- C:\Users\wilfried\AppData\Roaming\MysteryTag O43 - CFD: 2014/05/17 12:46:01 - [] D -- C:\Users\wilfried\AppData\Roaming\Nero O43 - CFD: 2014/05/08 06:02:09 - [] D -- C:\Users\wilfried\AppData\Roaming\Nitreal Games O43 - CFD: 2014/11/25 11:32:55 - [0] D -- C:\Users\wilfried\AppData\Roaming\Opera Software O43 - CFD: 2015/07/16 12:45:56 - [] D -- C:\Users\wilfried\AppData\Roaming\OWL Studio O43 - CFD: 2014/05/09 14:11:09 - [] D -- C:\Users\wilfried\AppData\Roaming\Purple Patch Games O43 - CFD: 2014/04/21 22:19:34 - [] D -- C:\Users\wilfried\AppData\Roaming\Rainbow O43 - CFD: 2015/07/10 08:33:14 - [] D -- C:\Users\wilfried\AppData\Roaming\Realore_Whiterra Adelantado O43 - CFD: 2015/07/10 22:33:10 - [] D -- C:\Users\wilfried\AppData\Roaming\Realore_Whiterra Roads Of Rome 2 O43 - CFD: 2015/07/14 09:59:28 - [] D -- C:\Users\wilfried\AppData\Roaming\Realore_Whiterra_RoadsOfRome_de O43 - CFD: 2015/03/16 18:39:54 - [] D -- C:\Users\wilfried\AppData\Roaming\Rumbic Studio O43 - CFD: 2014/08/28 09:03:10 - [] D -- C:\Users\wilfried\AppData\Roaming\ShamanGS O43 - CFD: 2014/08/24 11:47:30 - [] D -- C:\Users\wilfried\AppData\Roaming\Silverback Productions O43 - CFD: 2014/08/28 09:09:22 - [] D -- C:\Users\wilfried\AppData\Roaming\Skunk Studios O43 - CFD: 2014/09/02 07:56:31 - [] D -- C:\Users\wilfried\AppData\Roaming\Specialbit O43 - CFD: 2014/08/22 13:52:06 - [] D -- C:\Users\wilfried\AppData\Roaming\StoneLoopsIT O43 - CFD: 2015/09/14 17:07:54 - [] D -- C:\Users\wilfried\AppData\Roaming\Sun O43 - CFD: 2014/04/27 16:23:44 - [] D -- C:\Users\wilfried\AppData\Roaming\TeraCopy O43 - CFD: 2015/03/17 09:16:58 - [] D -- C:\Users\wilfried\AppData\Roaming\TheFixerUpper O43 - CFD: 2014/08/03 13:10:25 - [] D -- C:\Users\wilfried\AppData\Roaming\TitanicMystery O43 - CFD: 2014/08/22 13:45:20 - [] D -- C:\Users\wilfried\AppData\Roaming\TOSST O43 - CFD: 2015/01/14 09:27:58 - [] D -- C:\Users\wilfried\AppData\Roaming\TuneUp Software O43 - CFD: 2015/06/22 10:35:46 - [] D -- C:\Users\wilfried\AppData\Roaming\unikgame O43 - CFD: 2014/11/29 16:51:05 - [] D -- C:\Users\wilfried\AppData\Roaming\Urchin O43 - CFD: 2015/10/18 23:16:21 - [] D -- C:\Users\wilfried\AppData\Roaming\uTorrent O43 - CFD: 2015/03/16 18:36:22 - [] D -- C:\Users\wilfried\AppData\Roaming\V-Games O43 - CFD: 2015/07/31 18:25:01 - [] D -- C:\Users\wilfried\AppData\Roaming\VikingSaga2_realore_intenium_de O43 - CFD: 2015/07/27 12:14:19 - [] D -- C:\Users\wilfried\AppData\Roaming\VikingSaga_realore_de O43 - CFD: 2015/10/18 22:46:25 - [] D -- C:\Users\wilfried\AppData\Roaming\vlc O43 - CFD: 2015/09/30 18:57:48 - [] D -- C:\Users\wilfried\AppData\Roaming\Vso O43 - CFD: 2015/02/06 07:02:51 - [] D -- C:\Users\wilfried\AppData\Roaming\Western Software Technologies O43 - CFD: 2014/04/15 07:23:47 - [] D -- C:\Users\wilfried\AppData\Roaming\WinRAR O43 - CFD: 2015/07/18 16:26:48 - [] D -- C:\Users\wilfried\AppData\Roaming\XMedia Recode O43 - CFD: 2015/10/18 23:17:24 - [] D -- C:\Users\wilfried\AppData\Roaming\ZHP O43 - CFD: 2015/07/13 12:30:26 - [] D -- C:\Users\wilfried\AppData\Roaming\ZOG O43 - CFD: 2015/09/14 17:59:14 - [] D -- C:\Users\wilfried\AppData\Local\Adobe O43 - CFD: 2014/07/20 12:50:26 - [] D -- C:\Users\wilfried\AppData\Local\Ahead O43 - CFD: 2014/04/15 06:03:15 - [0] SHD -- C:\Users\wilfried\AppData\Local\Anwendungsdaten O43 - CFD: 2015/05/26 12:33:07 - [] D -- C:\Users\wilfried\AppData\Local\Apps O43 - CFD: 2015/01/14 17:42:01 - [] D -- C:\Users\wilfried\AppData\Local\AVG Web TuneUp =>Toolbar.AVGSafeGuard O43 - CFD: 2014/04/15 06:16:46 - [] D -- C:\Users\wilfried\AppData\Local\Comodo O43 - CFD: 2015/10/18 12:32:28 - [] D -- C:\Users\wilfried\AppData\Local\CrashDumps O43 - CFD: 2015/05/15 18:51:52 - [0] D -- C:\Users\wilfried\AppData\Local\Diagnostics O43 - CFD: 2015/02/07 16:10:21 - [] D -- C:\Users\wilfried\AppData\Local\DvdSubExtractor O43 - CFD: 2015/09/14 17:55:55 - [] D -- C:\Users\wilfried\AppData\Local\ElevatedDiagnostics O43 - CFD: 2014/11/30 16:42:36 - [] SHD -- C:\Users\wilfried\AppData\Local\EmieBrowserModeList O43 - CFD: 2014/05/14 09:05:47 - [] SHD -- C:\Users\wilfried\AppData\Local\EmieSiteList O43 - CFD: 2014/05/14 09:05:47 - [] SHD -- C:\Users\wilfried\AppData\Local\EmieUserList O43 - CFD: 2015/10/17 08:39:33 - [] D -- C:\Users\wilfried\AppData\Local\Eraser O43 - CFD: 2014/08/24 10:54:18 - [] D -- C:\Users\wilfried\AppData\Local\Farmington Tales 2 - Winter Crop O43 - CFD: 2014/08/25 17:12:02 - [] D -- C:\Users\wilfried\AppData\Local\Gamenauts O43 - CFD: 2014/11/26 14:07:10 - [] D -- C:\Users\wilfried\AppData\Local\Google O43 - CFD: 2015/06/01 07:58:51 - [] D -- C:\Users\wilfried\AppData\Local\GWX O43 - CFD: 2015/10/18 16:33:32 - [] D -- C:\Users\wilfried\AppData\Local\JDownloader v2.0 O43 - CFD: 2015/09/26 11:56:21 - [] D -- C:\Users\wilfried\AppData\Local\JollyBear O43 - CFD: 2014/04/29 18:02:20 - [] D -- C:\Users\wilfried\AppData\Local\LoadHelper O43 - CFD: 2014/04/15 06:19:04 - [] D -- C:\Users\wilfried\AppData\Local\Macromedia O43 - CFD: 2015/01/14 09:22:02 - [] D -- C:\Users\wilfried\AppData\Local\MFAData O43 - CFD: 2015/07/06 06:44:18 - [] D -- C:\Users\wilfried\AppData\Local\Microsoft O43 - CFD: 2015/09/14 03:13:40 - [] D -- C:\Users\wilfried\AppData\Local\Microsoft Games O43 - CFD: 2015/02/01 09:52:28 - [0] D -- C:\Users\wilfried\AppData\Local\Microsoft Help O43 - CFD: 2014/04/15 06:09:01 - [] D -- C:\Users\wilfried\AppData\Local\Mozilla O43 - CFD: 2014/11/23 12:14:11 - [] D -- C:\Users\wilfried\AppData\Local\Nero O43 - CFD: 2014/04/19 16:41:30 - [] D -- C:\Users\wilfried\AppData\Local\NPE O43 - CFD: 2014/11/25 11:32:55 - [0] D -- C:\Users\wilfried\AppData\Local\Opera Software O43 - CFD: 2014/04/15 06:16:47 - [] D -- C:\Users\wilfried\AppData\Local\Packages O43 - CFD: 2014/04/16 13:12:47 - [] D -- C:\Users\wilfried\AppData\Local\Programs O43 - CFD: 2015/02/04 09:41:01 - [] D -- C:\Users\wilfried\AppData\Local\Runefall O43 - CFD: 2015/10/18 23:17:33 - [] D -- C:\Users\wilfried\AppData\Local\Temp O43 - CFD: 2014/11/25 10:46:26 - [0] D -- C:\Users\wilfried\AppData\Local\Temp10644 O43 - CFD: 2014/04/15 06:03:15 - [0] SHD -- C:\Users\wilfried\AppData\Local\Temporary Internet Files O43 - CFD: 2014/06/27 14:19:16 - [] D -- C:\Users\wilfried\AppData\Local\TuneUp Software O43 - CFD: 2014/04/15 06:03:15 - [0] SHD -- C:\Users\wilfried\AppData\Local\Verlauf O43 - CFD: 2015/07/31 18:08:39 - [] D -- C:\Users\wilfried\AppData\Local\VikingSaga2_realore_intenium_de O43 - CFD: 2015/07/27 10:46:10 - [] D -- C:\Users\wilfried\AppData\Local\VikingSaga_realore_de O43 - CFD: 2015/02/09 18:36:08 - [] D -- C:\Users\wilfried\AppData\Local\VirtualStore O43 - CFD: 2014/08/01 22:04:17 - [0] D -- C:\Users\wilfried\AppData\Local\WorldofTanks O43 - CFD: 2009/07/14 06:54:32 - [] RD -- C:\Users\wilfried\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories O43 - CFD: 2015/10/17 08:43:02 - [] RD -- C:\Users\wilfried\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools O43 - CFD: 2015/09/20 10:13:39 - [] D -- C:\Users\wilfried\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\DEUTSCHLAND SPIELT O43 - CFD: 2015/06/09 08:28:35 - [] D -- C:\Users\wilfried\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Faasoft O43 - CFD: 2014/04/24 06:47:47 - [] D -- C:\Users\wilfried\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HiJackThis O43 - CFD: 2015/01/14 13:54:28 - [] D -- C:\Users\wilfried\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\JDownloader O43 - CFD: 2009/07/14 06:49:38 - [] RD -- C:\Users\wilfried\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance O43 - CFD: 2015/10/17 08:43:02 - [] RD -- C:\Users\wilfried\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup O43 - CFD: 2015/01/12 11:36:47 - [] D -- C:\Users\wilfried\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR ---\\ ShellIconOverlayIdentifiers (SIOI) (7) - 0s O106 - SIOI: Enhanced Storage Icon Overlay Handler Class [EnhancedStorageShell] - {D9144DCD-E998-4ECA-AB6A-DCD83CCBA16D}. (.Microsoft Corporation - Windows-Shellerweiterungs-DLL für erweitert.) -- C:\Windows\System32\EhStorShell.dll © O106 - SIOI: Groove Explorer Icon Overlay 1 (GFS Unread Stub) [Groove Explorer Icon Overlay 1 (GFS Unread Stub)] - {99FD978C-D287-4F50-827F-B2C658EDA8E7}. (.Microsoft Corporation - GrooveShellExtensions Module.) -- C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll © O106 - SIOI: Groove Explorer Icon Overlay 2 (GFS Stub) [Groove Explorer Icon Overlay 2 (GFS Stub)] - {AB5C5600-7E6E-4B06-9197-9ECEF74D31CC}. (.Microsoft Corporation - GrooveShellExtensions Module.) -- C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll © O106 - SIOI: Groove Explorer Icon Overlay 2.5 (GFS Unread Folder) [Groove Explorer Icon Overlay 2.5 (GFS Unread Folder)] - {920E6DB1-9907-4370-B3A0-BAFC03D81399}. (.Microsoft Corporation - GrooveShellExtensions Module.) -- C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll © O106 - SIOI: Groove Explorer Icon Overlay 3 (GFS Folder) [Groove Explorer Icon Overlay 3 (GFS Folder)] - {16F3DD56-1AF5-4347-846D-7C10C4192619}. (.Microsoft Corporation - GrooveShellExtensions Module.) -- C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll © O106 - SIOI: Groove Explorer Icon Overlay 4 (GFS Unread Mark) [Groove Explorer Icon Overlay 4 (GFS Unread Mark)] - {2916C86E-86A6-43FE-8112-43ABE6BF8DCC}. (.Microsoft Corporation - GrooveShellExtensions Module.) -- C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll © O106 - SIOI: Sharing Overlay (Private) [SharingPrivate] - {08244EE6-92F0-47f2-9FC9-929BAA2E7235}. (.Microsoft Corporation - Shellerweiterungen für Freigaben.) -- C:\Windows\System32\ntshrui.dll © ---\\ Aufzählung von den Registrierungsschlüssel StartupReg (4) - 0s O53 - SMSR:HKLM\...\startupreg\CyberGhost [Key] . (...) -- C:\Program Files\CyberGhost 5\CyberGhost.EXE (.not file.) O53 - SMSR:HKLM\...\startupreg\Live Update [Key] . (...) -- C:\Program Files (x86)\MSI\Live Update\StartLiveUpdate.exe (.not file.) O53 - SMSR:HKLM\...\startupreg\LiveMonitor [Key] . (.Copyright (C) 2001 - UpdateMonitor MFC Application.) -- C:\Program Files (x86)\MSI\Live Update 3\LMonitor.exe O53 - SMSR:HKLM\...\startupreg\Super Charger [Key] . (.MSI - Super Charger.) -- C:\Program Files (x86)\MSI\Super Charger\Super Charger.exe © ---\\ Liste der Treiber des Systems (61) - 46s O58 - SDL:2009/07/14 03:52:21 A . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\System32\drivers\adp94xx.sys [491088] © O58 - SDL:2009/07/14 03:52:21 A . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\System32\drivers\adpahci.sys [339536] © O58 - SDL:2009/07/14 03:52:21 A . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver (X64).) -- C:\Windows\System32\drivers\adpu320.sys [182864] © O58 - SDL:2009/07/14 03:52:21 A . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\System32\drivers\aliide.sys [15440] © O58 - SDL:2011/03/11 08:41:12 A . (.Advanced Micro Devices - AHCI 1.2 Device Driver.) -- C:\Windows\System32\drivers\amdsata.sys [107904] © O58 - SDL:2009/07/14 03:52:20 A . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) -- C:\Windows\System32\drivers\amdsbs.sys [194128] © O58 - SDL:2011/03/11 08:41:12 A . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\System32\drivers\amdxata.sys [27008] © O58 - SDL:2009/07/14 03:52:21 A . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\System32\drivers\arc.sys [87632] © O58 - SDL:2009/07/14 03:52:21 A . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\System32\drivers\arcsas.sys [97856] © O58 - SDL:2015/09/25 15:33:26 A . (.Avira Operations GmbH & Co. KG - Avira Minifilter Driver.) -- C:\Windows\System32\drivers\avgntflt.sys [163544] © O58 - SDL:2015/01/14 13:41:10 A . (.AVG Technologies - .) -- C:\Windows\System32\drivers\avgtpx64.sys [52000] © O58 - SDL:2015/07/23 17:47:00 A . (.Avira Operations GmbH & Co. KG - Avira Driver for Security Enhancement.) -- C:\Windows\System32\drivers\avipbb.sys [141416] © O58 - SDL:2014/02/25 11:41:04 A . (.Avira Operations GmbH & Co. KG - Avira Manager Driver.) -- C:\Windows\System32\drivers\avkmgr.sys [28600] © O58 - SDL:2015/09/25 15:33:26 A . (.Avira Operations GmbH & Co. KG - Avira WFP Network Driver.) -- C:\Windows\System32\drivers\avnetflt.sys [74952] © O58 - SDL:2009/06/10 22:34:23 A . (.Broadcom Corporation - Broadcom NetXtreme Gigabit Ethernet NDIS6.x.) -- C:\Windows\System32\drivers\b57nd60a.sys [270848] © O58 - SDL:2009/06/10 22:41:06 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower.) -- C:\Windows\System32\drivers\BrFiltLo.sys [18432] © O58 - SDL:2009/06/10 22:41:06 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper.) -- C:\Windows\System32\drivers\BrFiltUp.sys [8704] © O58 - SDL:2009/07/14 03:19:07 A . (.Brother Industries Ltd. - Brother Schnittstellentreiber (WDM) (seriel.) -- C:\Windows\System32\drivers\BrSerId.sys [286720] © O58 - SDL:2009/06/10 22:41:10 A . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\System32\drivers\BrSerWdm.sys [47104] © O58 - SDL:2009/06/10 22:41:10 A . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\System32\drivers\BrUsbMdm.sys [14976] © O58 - SDL:2009/06/10 22:41:10 A . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\System32\drivers\BrUsbSer.sys [14720] © O58 - SDL:2009/06/10 22:34:28 A . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\System32\drivers\bxvbda.sys [468480] © O58 - SDL:2009/07/14 03:52:31 A . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\cmdide.sys [17488] © O58 - SDL:2009/07/14 03:47:48 A . (.Emulex - Storport Miniport Driver for LightPulse HBA.) -- C:\Windows\System32\drivers\elxstor.sys [530496] © O58 - SDL:2009/06/10 22:34:33 A . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\Windows\System32\drivers\evbda.sys [3286016] © O58 - SDL:2009/06/10 22:31:59 A . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for.) -- C:\Windows\System32\drivers\hcw85cir.sys [31232] © O58 - SDL:2010/11/21 05:23:47 A . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) -- C:\Windows\System32\drivers\HpSAMD.sys [78720] © O58 - SDL:2011/03/11 08:41:26 A . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\Windows\System32\drivers\iaStorV.sys [410496] © O58 - SDL:2009/07/14 03:48:04 A . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\System32\drivers\iirsp.sys [44112] © O58 - SDL:2009/07/14 03:48:04 A . (.LSI Corporation - LSI Fusion-MPT FC Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_fc.sys [114752] © O58 - SDL:2009/07/14 03:48:04 A . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas.sys [106560] © O58 - SDL:2009/07/14 03:48:04 A . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas2.sys [65600] © O58 - SDL:2009/07/14 03:48:04 A . (.LSI Corporation - LSI Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_scsi.sys [115776] © O58 - SDL:2015/10/05 09:50:06 A . (.Malwarebytes - Malwarebytes Anti-Malware.) -- C:\Windows\System32\drivers\mbam.sys [25816] © O58 - SDL:2015/10/05 09:50:10 A . (.Malwarebytes - Malwarebytes Chameleon Protection Driver.) -- C:\Windows\System32\drivers\mbamchameleon.sys [109272] © O58 - SDL:2015/10/14 08:40:17 A . (.Malwarebytes - Malwarebytes Anti-Malware.) -- C:\Windows\System32\drivers\MBAMSwissArmy.sys [192216] © O58 - SDL:2009/07/14 03:48:04 A . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\Windows\System32\drivers\megasas.sys [35392] © O58 - SDL:2009/07/14 03:48:04 A . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\System32\drivers\MegaSR.sys [284736] © O58 - SDL:2015/10/05 09:50:18 A . (.Malwarebytes Corporation - Malwarebytes Web Access Control.) -- C:\Windows\System32\drivers\mwac.sys [63704] © O58 - SDL:2009/07/14 03:48:26 A . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\System32\drivers\nfrd960.sys [51264] © O58 - SDL:2015/02/18 10:55:54 A . (.NVIDIA Corporation - NVIDIA Windows Kernel Mode Driver, Version.) -- C:\Windows\System32\drivers\nvlddmkm.sys [13585736] © O58 - SDL:2009/06/10 22:35:35 A . (.NVIDIA Corporation - NVIDIA MCP Networking Function Driver..) -- C:\Windows\System32\drivers\nvm62x64.sys [408960] © O58 - SDL:2010/08/12 12:07:50 A . (.NVIDIA Corporation - NVIDIA MCP Networking Function Driver..) -- C:\Windows\System32\drivers\nvmf6264.sys [350952] © O58 - SDL:2007/05/03 12:29:10 A . (.NVIDIA Corporation - NVIDIA MCP Networking Function Driver..) -- C:\Windows\System32\drivers\nvmfdx64.sys [1487784] © O58 - SDL:2011/03/11 08:41:34 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\System32\drivers\nvraid.sys [148352] © O58 - SDL:2007/02/16 02:50:40 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) SMU Microcontroller Driv.) -- C:\Windows\System32\drivers\nvsmu.sys [25896] © O58 - SDL:2011/03/11 08:41:34 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\System32\drivers\nvstor.sys [166272] © O58 - SDL:2007/08/09 18:12:34 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\System32\drivers\nvstor64.sys [130080] © O58 - SDL:2015/02/09 14:38:31 A . (.VSO Software - low level access layer for CD/DVD/BD device.) -- C:\Windows\System32\drivers\pcouffin.sys [82816] © O58 - SDL:2009/07/14 03:45:46 A . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\System32\drivers\ql2300.sys [1524816] © O58 - SDL:2009/07/14 03:45:45 A . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\System32\drivers\ql40xx.sys [128592] © O58 - SDL:2011/10/04 03:18:06 A . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function D.) -- C:\Windows\System32\drivers\RTKVHD64.sys [3091944] © O58 - SDL:2009/06/10 22:37:19 A . (.Macrovision Corporation, Macrovision Europe Limited, - Macrovision SECURITY Driver.) -- C:\Windows\System32\drivers\secdrv.sys [23040] © O58 - SDL:2009/07/14 02:00:40 A . (.Brother Industries Ltd. - Brother Schnittstellentreiber (WDM) (seriel.) -- C:\Windows\System32\drivers\serial.sys [94208] © O58 - SDL:2009/07/14 03:45:45 A . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\System32\drivers\sisraid2.sys [43584] © O58 - SDL:2009/07/14 03:45:46 A . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\System32\drivers\sisraid4.sys [80464] © O58 - SDL:2009/07/14 03:45:55 A . (.Promise Technology - Promise SuperTrak EX Series Driver for Win.) -- C:\Windows\System32\drivers\stexstor.sys [24656] © O58 - SDL:2013/08/22 14:40:24 A . (.The OpenVPN Project - TAP-Windows Virtual Network Driver.) -- C:\Windows\System32\drivers\tap0901.sys [40664] © O58 - SDL:2012/12/19 08:42:10 A . (...) -- C:\Windows\System32\drivers\t_mouse.sys [6144] O58 - SDL:2009/07/14 03:45:55 A . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\viaide.sys [17488] © O58 - SDL:2009/07/14 03:45:55 A . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\System32\drivers\vsmraid.sys [161872] © ---\\ Neueste Dateien geändert oder erstellt (Benutzer) (4) - 37s O61 - LFC: 2015/10/18 05:42:54 N . (.Java(TM) Native Access (JNA).) -- C:\Users\wilfried\AppData\Local\JDownloader v2.0\tmp\jna\jna5449703487180300942.dll [198144] O61 - LFC: 2015/10/18 05:43:18 A . (..) -- C:\Users\wilfried\AppData\Local\JDownloader v2.0\tmp\7zip\SevenZipJBinding-FKPz9\lib7-Zip-JBinding.dll [4078962] O61 - LFC: 2015/10/18 05:43:19 A . (..) -- C:\Users\wilfried\AppData\Local\JDownloader v2.0\tmp\7zip\SevenZipJBinding-FKPz9\libgcc_s_sjlj-1.dll [566439] O61 - LFC: 2015/10/17 14:17:59 A . (..) -- C:\Users\wilfried\AppData\Local\Adobe\Acrobat\11.0\UserCache.bin [112981] ---\\ Verbände Shell Laichen (10) - 0s O67 - Shell Spawning: <.bat> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.cpl> [HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe © O67 - Shell Spawning: <.cmd> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.com> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.evt> [HKLM\..\open\Command] (.Microsoft Corporation - Startprogramm für Ereignisanzeige-Snap-In.) -- C:\Windows\System32\eventvwr.exe © O67 - Shell Spawning: <.exe> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.js> [HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\wscript.exe © O67 - Shell Spawning: <.reg> [HKLM\..\open\Command] (.Microsoft Corporation - Registrierungs-Editor.) -- C:\Windows\regedit.exe © O67 - Shell Spawning: <.scr> [HKLM\..\open\Command] (...) -- "%1" /S O67 - Shell Spawning: <.html> [HKCU\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe © ---\\ Startmenü Internet (4) - 1s O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe © O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe © O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe © O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe © ---\\ Suche 'Ansteckung in Internet-Browsern (1) - 11s O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (Bing) - http://www.bing.com/ ---\\ Liste den Dienststart von Svchost (34) - 1s O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Anwendungserfahrungdienst.) -- C:\Windows\System32\aelupsvc.dll [72192] © O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Microsoft Smartcard-Zertifikatpropagierungs.) -- C:\Windows\System32\certprop.dll [80384] © O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Microsoft Smartcard-Zertifikatpropagierungs.) -- C:\Windows\System32\certprop.dll [80384] © O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - Serverdienst-DLL.) -- C:\Windows\system32\srvsvc.dll [236032] © O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Gruppenrichtlinienclient.) -- C:\Windows\System32\gpsvc.dll [777728] © O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - IKE-Erweiterung.) -- C:\Windows\System32\ikeext.dll [859648] © O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Windows-Audiodienst.) -- C:\Windows\System32\Audiosrv.dll [680960] © O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - RAS-Verwaltung für automatisches Wählen.) -- C:\Windows\System32\rasauto.dll [99328] © O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - RAS-Verbindungsverwaltung.) -- C:\Windows\System32\rasmans.dll [344064] © O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Dynamischer Schnittstellen-Manager.) -- C:\Windows\System32\mprdim.dll [97792] © O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Benachrichtigungsdienst für Systemereigniss.) -- C:\Windows\System32\Sens.dll [64512] © O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Microsoft NAT-Hilfskomponenten.) -- C:\Windows\System32\ipnathlp.dll [359424] © O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Microsoft(R) Windows(R) Telefonieserver.) -- C:\Windows\System32\tapisrv.dll [316928] © O83 - Search Svchost Services: UxTuneUp (UxTuneUp) . (.TuneUp Software - TuneUp Theme Extension.) -- C:\Windows\System32\uxtuneup.dll [43320] © O83 - Search Svchost Services: TermService (TermService) . (.Microsoft Corporation - Remoteverbindungs-Manager für Remotedesktop.) -- C:\Windows\System32\termsrv.dll [683520] © O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Windows Update-Agent.) -- C:\Windows\system32\wuaueng.dll [2607104] © O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Intelligenter Hintergrundübertragungsdienst.) -- C:\Windows\System32\qmgr.dll [849920] © O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Windows-Shelldienste-DLL.) -- C:\Windows\System32\shsvcs.dll [370688] © O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Dienst, der IPv6-Konnektivität über ein IPv.) -- C:\Windows\System32\iphlpsvc.dll [569344] © O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL für sekundären Anmeldedienst.) -- C:\Windows\system32\seclogon.dll [30720] © O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Anwendungsinformationsdienst.) -- C:\Windows\System32\appinfo.dll [70656] © O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - iSCSI-Ermittlungsdienst.) -- C:\Windows\system32\iscsiexe.dll [156672] © O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Multimediaklassen-Planungsdienst.) -- C:\Windows\system32\mmcss.dll [67584] © O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\system32\wbem\WMIsvc.dll [242688] © O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Remotedesktop-Konfigurationsdienst.) -- C:\Windows\System32\SessEnv.dll [121856] © O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - Computersuchdienst-DLL.) -- C:\Windows\System32\browser.dll [136704] © O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Microsoft EAPHost-Dienst.) -- C:\Windows\System32\eapsvc.dll [111104] © O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Aufgabenplanungsdienst.) -- C:\Windows\system32\schedsvc.dll [1110016] © O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Schlüsselverwaltungsdienst.) -- C:\Windows\system32\kmsvc.dll [90624] © O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Problemberichte und -lösungen.) -- C:\Windows\System32\wercplsupport.dll [84480] © O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\system32\profsvc.dll [210432] © O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - Windows-Shelldesigndienste-DLL.) -- C:\Windows\system32\themeservice.dll [44544] © O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - BDE-Dienst.) -- C:\Windows\System32\bdesvc.dll [100864] © O83 - Search Svchost Services: AppMgmt (AppMgmt) . (.Microsoft Corporation - Softwareinstallationsdienst.) -- C:\Windows\System32\appmgmts.dll [193536] © ---\\ Liste der Ausnahmen in der Firewall (FirewallRules) (2) - 2s O87 - FAEL: "{305A08F1-A222-46D1-9C08-BA774E792CD8}" [In-None-P6-TRUE] .(.BitTorrent Inc. - µTorrent.) -- C:\Users\wilfried\AppData\Roaming\uTorrent\uTorrent.exe O87 - FAEL: "{5E179D43-7FE5-403B-9173-4675352EB030}" [In-None-P17-TRUE] .(.BitTorrent Inc. - µTorrent.) -- C:\Users\wilfried\AppData\Roaming\uTorrent\uTorrent.exe ---\\ Allgemeinzustand der Dienste nicht Microsoft (SR=Running, SS=Stopped) (22) - 29s SR - Auto [2015/07/07 20:12:28] [ 82128] Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe © SS - Demand [2015/09/22 05:53:33] [ 269000] Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe © SS - Auto [2015/09/25 15:33:15] [ 932912] Avira Email-Schutz (AntiVirMailService) . (.Avira Operations GmbH & Co. KG.) - C:\Program Files (x86)\Avira\AntiVir Desktop\avmailc7.exe © SR - Auto [2015/09/25 15:33:25] [ 461672] Avira Planer (AntiVirSchedulerService) . (.Avira Operations GmbH & Co. KG.) - C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe © SR - Auto [2015/09/25 15:33:15] [ 461672] Avira Echtzeit-Scanner (AntiVirService) . (.Avira Operations GmbH & Co. KG.) - C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe © SS - Auto [2015/10/14 10:10:56] [ 1147720] Avira Browser-Schutz (AntiVirWebService) . (.Avira Operations GmbH & Co. KG.) - C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe © SR - Auto [2015/09/10 09:19:44] [ 240872] Avira Service Host (Avira.ServiceHost) . (.Avira Operations GmbH & Co. KG.) - C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe © SS - Auto [2015/10/05 09:48:46] [ 1135416] (MBAMService) . (.Malwarebytes.) - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe © SS - Demand [2015/10/16 06:43:26] [ 147624] Mozilla Maintenance Service (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe © SS - Disabled [2015/06/08 14:51:54] [ 1736872] MSI_LiveUpdate_Service (MSI_LiveUpdate_Service) . (.Micro-Star INT'L CO., LTD..) - C:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe SR - Auto [2014/03/17 15:59:50] [ 162800] MSI_SuperCharger (MSI_SuperCharger) . (.MSI.) - C:\Program Files (x86)\MSI\Super Charger\ChargeService.exe © SS - Disabled [2008/06/08 09:31:04] [ 877864] Nero BackItUp Scheduler 3 (Nero BackItUp Scheduler 3) . (.Nero AG.) - C:\Program Files (x86)\Nero\Nero8\Nero BackItUp\NBService.exe © SR - Auto [2015/06/11 18:46:26] [ 2868736] Netzmanager Infrastruktur Informationssystem Dienst (Netzmanager Service) . (.Deutsche Telekom AG.) - C:\Program Files\Netzmanager\NMInfraIS2\Netzmanager_Service.exe SS - Disabled [2008/06/24 16:05:56] [ 537896] NMIndexingService (NMIndexingService) . (.Nero AG.) - C:\Program Files (x86)\Common Files\Nero\Lib\NMIndexingService.exe © SR - Auto [2015/01/31 02:57:18] [ 878400] NVIDIA Display Driver Service (nvsvc) . (.NVIDIA Corporation.) - C:\Windows\system32\nvvsvc.exe © SR - Auto [2013/02/19 22:32:20] [ 1259296] NVIDIA Update Service Daemon (nvUpdatusService) . (.NVIDIA Corporation.) - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe © SS - Disabled [2006/12/19 10:30:26] [ 81920] PLFlash DeviceIoControl Service (PLFlash DeviceIoControl Service) . (.Prolific Technology Inc..) - C:\Windows\SysWOW64\IoctlSvc.exe © SR - Auto [2012/11/13 14:07:16] [ 1103392] Spybot-S&D 2 Scanner Service (SDScannerService) . (.Safer-Networking Ltd..) - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe © SR - Auto [2012/11/13 14:07:20] [ 1369624] Spybot-S&D 2 Updating Service (SDUpdateService) . (.Safer-Networking Ltd..) - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe © SR - Auto [2012/11/13 14:07:24] [ 168384] Spybot-S&D 2 Security Center Service (SDWSCService) . (.Safer-Networking Ltd..) - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe © SR - Auto [2015/06/25 07:53:52] [ 2145080] TuneUp Utilities Service (TuneUp.UtilitiesSvc) . (.TuneUp Software.) - C:\Program Files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesService64.exe © ---\\ Search Tracing Registry Key (2) - 1s HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\PerformanceOptimizer_RASAPI32 =>PUP.Optional.BProtector HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\PerformanceOptimizer_RASMANCS =>PUP.Optional.BProtector ---\\ Zusätzliche Scan (O88) (8) - 0s C:\Windows\System32\Tasks\SpyHunter4Startup =>.Superfluous.SpyHunter HKLM\SOFTWARE\Wow6432Node\AVG Web TuneUp =>Toolbar.AVGSafeGuard HKCU\SOFTWARE\AVG Web TuneUp =>Toolbar.AVGSafeGuard C:\Program Files (x86)\AVG Web TuneUp =>Toolbar.AVGSafeGuard C:\ProgramData\AVG Web TuneUp =>Toolbar.AVGSafeGuard C:\Users\wilfried\AppData\Local\AVG Web TuneUp =>Toolbar.AVGSafeGuard HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\PerformanceOptimizer_RASAPI32 =>PUP.Optional.BProtector HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\PerformanceOptimizer_RASMANCS =>PUP.Optional.BProtector ---\\ Zusammenfassung der Elemente gefunden auf Ihrer workstation (3) - 0s http://www.nicolascoolman.fr/blog =>.Superfluous.SpyHunter http://www.nicolascoolman.fr/blog =>Toolbar.AVGSafeGuard http://www.nicolascoolman.fr/pup-bprotector/ =>PUP.Optional.BProtector ~ End of the scan, 23971 items in 220 seconds (946)(0)()