| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: Google Chrome öffnet ständig Spam Seiten!Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
07.09.2016, 12:00
| #1 |
 |  Google Chrome öffnet ständig Spam Seiten! Hallo, ich habe seit gestern Probleme mit meinem Google Chrome, jedesmal wenn ich eine neue Seite oder irgendwas anklicke,kommt eine Spam Seite. Wenn ich unter Chrome - Einstellung gehen möchte, stürzt jedesmal der Rechner ab und ich bekommme ein Bluescreen! Malware habe ich durchlaufen lassen, aber hat nichts gefunden! Was tun?? |
|
07.09.2016, 13:03
| #2 |
| /// Winkelfunktion /// TB-Süch-Tiger™   | Google Chrome öffnet ständig Spam Seiten! Scan mit Farbar's Recovery Scan Tool (FRST)
__________________Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop:  FRST 32-Bit | FRST 64-Bit(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
 Lesestoff:Posten in CODE-Tags Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR oder 7Z-Archiv zu packen erschwert mir massiv die Arbeit. Auch wenn die Logs für einen Beitrag zu groß sein sollten, bitte ich dich die Logs direkt und notfalls über mehrere Beiträge verteilt zu posten. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
__________________ |
|
07.09.2016, 17:22
| #3 |
| | Google Chrome öffnet ständig Spam Seiten!FRST Logfile: Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 31-08-2016 durchgeführt von DJRISOW (Administrator) auf DJRISOW-PC (07-09-2016 18:16:34) Gestartet von C:\Users\DJRISOW\Desktop Geladene Profile: DJRISOW (Verfügbare Profile: DJRISOW) Platform: Windows 7 Home Premium Service Pack 1 (X64) Sprache: Deutsch (Deutschland) Internet Explorer Version 11 (Standard-Browser: Chrome) Start-Modus: Normal Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Prozesse (Nicht auf der Ausnahmeliste) ================= (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.) (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe (Comodo Security Solutions, Inc.) C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe (Malwarebytes) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe (Malwarebytes) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe (Microsoft Corporation) C:\Windows\System32\msiexec.exe (Native Instruments GmbH) C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareService.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe (PACE Anti-Piracy, Inc.) C:\Program Files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe (Reimage®) C:\Program Files\Reimage\Reimage Protector\ReiGuard.exe (Reimage®) C:\Program Files\Reimage\Reimage Protector\ReiSystem.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe (Malwarebytes) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbam.exe (Intel Corporation) C:\Windows\System32\igfxtray.exe (Intel Corporation) C:\Windows\System32\hkcmd.exe (Intel Corporation) C:\Windows\System32\igfxpers.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (RME) C:\Windows\System32\firefaceusb.exe (RME) C:\Windows\System32\TotalMixFX.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe (PixArt Imaging Incorporation) C:\Windows\PixArt\Pac207\Monitor.exe (Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe (SEIKO EPSON CORPORATION) C:\Windows\System32\spool\drivers\x64\3\E_IATIGGE.EXE (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe () C:\Users\DJRISOW\AppData\Local\Amazon Music\Amazon Music Helper.exe (Spotify Ltd) C:\Users\DJRISOW\AppData\Roaming\Spotify\SpotifyWebHelper.exe (Canon INC.) C:\Program Files (x86)\Canon\EOS Utility\EOS Utility.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe (Universal Audio, Inc.) C:\Program Files (x86)\Universal Audio\Powered Plugins\UATrayIcon.exe () C:\Program Files (x86)\Universal Audio\Powered Plugins\UADPerfMon.exe (CANON INC.) C:\Program Files (x86)\Canon\EOS Utility\EOSUPNPSV.exe (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.31.5\GoogleCrashHandler.exe (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.31.5\GoogleCrashHandler64.exe (Disc Soft Ltd) C:\Program Files (x86)\DAEMON Tools Lite\DiscSoftBusService.exe (Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Nero AG) C:\Program Files (x86)\Nero\Update\NASvc.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe ==================== Registry (Nicht auf der Ausnahmeliste) =========================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.) HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [11660904 2010-11-30] (Realtek Semiconductor) HKLM\...\Run: [VIRTU] => C:\Program Files\Lucidlogix Technologies\VIRTU\VirtuControlPanel.Exe [2619488 2011-04-21] () HKLM\...\Run: [FirefaceUsbTray1] => C:\Windows\system32\firefaceusb.exe [96768 2016-02-11] (RME) HKLM\...\Run: [FirefaceMixTray2] => C:\Windows\system32\TotalMixFX.exe [23103704 2016-02-11] (RME) HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2531472 2014-12-13] (NVIDIA Corporation) HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\nvspcap64.dll [2824504 2014-12-13] (NVIDIA Corporation) HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [558496 2014-02-27] (Adobe Systems Incorporated) HKLM\...\Run: [Monitor] => C:\Windows\PixArt\PAC207\Monitor.exe [319488 2006-11-03] (PixArt Imaging Incorporation) HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [176952 2016-03-19] (Apple Inc.) HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [67384 2016-03-18] (Apple Inc.) HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2014-10-02] (Apple Inc.) HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) HKLM-x32\...\Run: [AdobeCS6ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1073312 2012-03-09] (Adobe Systems Incorporated) HKLM-x32\...\Run: [UATrayIcon] => C:\Program Files (x86)\Universal Audio\Powered Plugins\UATrayIcon.exe [1484800 2015-07-10] (Universal Audio, Inc.) HKLM-x32\...\Run: [UAPerfMon] => C:\Program Files (x86)\Universal Audio\Powered Plugins\UADPerfMon.exe [3822592 2015-07-10] () Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation) HKU\S-1-5-21-3719051794-263782235-1391171954-1000\...\Run: [zASRockInstantBoot] => [X] HKU\S-1-5-21-3719051794-263782235-1391171954-1000\...\Run: [ASRockXTU] => [X] HKU\S-1-5-21-3719051794-263782235-1391171954-1000\...\Run: [EPSON SX125 Series] => C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIGGE.EXE [224768 2009-09-14] (SEIKO EPSON CORPORATION) HKU\S-1-5-21-3719051794-263782235-1391171954-1000\...\Run: [Amazon Music] => C:\Users\DJRISOW\AppData\Local\Amazon Music\Amazon Music Helper.exe [5886784 2015-05-07] () HKU\S-1-5-21-3719051794-263782235-1391171954-1000\...\Run: [AdobeBridge] => [X] HKU\S-1-5-21-3719051794-263782235-1391171954-1000\...\Run: [Dropbox Update] => C:\Users\DJRISOW\AppData\Local\Dropbox\Update\DropboxUpdate.exe [134512 2015-05-26] (Dropbox, Inc.) HKU\S-1-5-21-3719051794-263782235-1391171954-1000\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files (x86)\DAEMON Tools Lite\DTAgent.exe [4468056 2015-06-18] (Disc Soft Ltd) HKU\S-1-5-21-3719051794-263782235-1391171954-1000\...\Run: [Spotify Web Helper] => C:\Users\DJRISOW\AppData\Roaming\Spotify\SpotifyWebHelper.exe [1523312 2016-08-23] (Spotify Ltd) HKU\S-1-5-21-3719051794-263782235-1391171954-1000\...\MountPoints2: {13aac168-c042-11e5-a42c-002522cc2a9b} - G:\autorun.exe HKU\S-1-5-21-3719051794-263782235-1391171954-1000\...\MountPoints2: {1f825de1-7f01-11e5-8b73-002522cc2a9b} - F:\Setup\Setup.exe AppInit_DLLs-x32: C:\PROGRA~1\LUCIDL~1\VIRTU\x86\APPINI~1.DLL => C:\Program Files\Lucidlogix Technologies\VIRTU\x86\appinit_dll.dll [154208 2011-04-21] (Lucidlogix Inc.) ShellIconOverlayIdentifiers: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\DJRISOW\AppData\Roaming\Dropbox\bin\DropboxExt64.43.dll [2016-09-06] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\DJRISOW\AppData\Roaming\Dropbox\bin\DropboxExt64.43.dll [2016-09-06] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\DJRISOW\AppData\Roaming\Dropbox\bin\DropboxExt64.43.dll [2016-09-06] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\DJRISOW\AppData\Roaming\Dropbox\bin\DropboxExt64.43.dll [2016-09-06] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\DJRISOW\AppData\Roaming\Dropbox\bin\DropboxExt64.43.dll [2016-09-06] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\DJRISOW\AppData\Roaming\Dropbox\bin\DropboxExt64.43.dll [2016-09-06] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\DJRISOW\AppData\Roaming\Dropbox\bin\DropboxExt64.43.dll [2016-09-06] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\DJRISOW\AppData\Roaming\Dropbox\bin\DropboxExt64.43.dll [2016-09-06] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\DJRISOW\AppData\Roaming\Dropbox\bin\DropboxExt64.43.dll [2016-09-06] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt9] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\DJRISOW\AppData\Roaming\Dropbox\bin\DropboxExt64.43.dll [2016-09-06] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\DJRISOW\AppData\Roaming\Dropbox\bin\DropboxExt.43.dll [2016-09-06] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt10] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\DJRISOW\AppData\Roaming\Dropbox\bin\DropboxExt.43.dll [2016-09-06] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\DJRISOW\AppData\Roaming\Dropbox\bin\DropboxExt.43.dll [2016-09-06] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\DJRISOW\AppData\Roaming\Dropbox\bin\DropboxExt.43.dll [2016-09-06] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\DJRISOW\AppData\Roaming\Dropbox\bin\DropboxExt.43.dll [2016-09-06] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\DJRISOW\AppData\Roaming\Dropbox\bin\DropboxExt.43.dll [2016-09-06] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\DJRISOW\AppData\Roaming\Dropbox\bin\DropboxExt.43.dll [2016-09-06] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\DJRISOW\AppData\Roaming\Dropbox\bin\DropboxExt.43.dll [2016-09-06] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\DJRISOW\AppData\Roaming\Dropbox\bin\DropboxExt.43.dll [2016-09-06] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt9] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\DJRISOW\AppData\Roaming\Dropbox\bin\DropboxExt.43.dll [2016-09-06] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: ["DropboxExt1"] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\DJRISOW\AppData\Roaming\Dropbox\bin\DropboxExt.43.dll [2016-09-06] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: ["DropboxExt2"] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\DJRISOW\AppData\Roaming\Dropbox\bin\DropboxExt.43.dll [2016-09-06] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: ["DropboxExt3"] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\DJRISOW\AppData\Roaming\Dropbox\bin\DropboxExt.43.dll [2016-09-06] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: ["DropboxExt4"] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\DJRISOW\AppData\Roaming\Dropbox\bin\DropboxExt.43.dll [2016-09-06] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: ["DropboxExt5"] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\DJRISOW\AppData\Roaming\Dropbox\bin\DropboxExt.43.dll [2016-09-06] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: ["DropboxExt6"] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\DJRISOW\AppData\Roaming\Dropbox\bin\DropboxExt.43.dll [2016-09-06] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: ["DropboxExt7"] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\DJRISOW\AppData\Roaming\Dropbox\bin\DropboxExt.43.dll [2016-09-06] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: ["DropboxExt8"] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\DJRISOW\AppData\Roaming\Dropbox\bin\DropboxExt.43.dll [2016-09-06] (Dropbox, Inc.) Startup: C:\Users\DJRISOW\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\EOS Utility.lnk [2015-11-05] ShortcutTarget: EOS Utility.lnk -> C:\Program Files (x86)\Canon\EOS Utility\EOS Utility.exe (Canon INC.) Startup: C:\Users\DJRISOW\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Rayven Justice Choose Up Prod by The Legion DJ Pack 99BPM.zip.lnk [2015-11-05] ShortcutTarget: Rayven Justice Choose Up Prod by The Legion DJ Pack 99BPM.zip.lnk -> C:\ProgramData\{3e336eaa-a046-b486-3e33-36eaaa04baaa}\Rayven Justice Choose Up Prod by The Legion DJ Pack 99BPM.zip.exe (Keine Datei) CHR HKLM\SOFTWARE\Policies\Google: Beschränkung <======= ACHTUNG ==================== Internet (Nicht auf der Ausnahmeliste) ==================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.) Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 Tcpip\..\Interfaces\{5E3EC87F-173D-4917-85B1-CC5CF5429EBC}: [DhcpNameServer] 192.168.0.1 Tcpip\..\Interfaces\{D820ED38-357A-49FC-9CD4-CA3D247D6F48}: [DhcpNameServer] 172.20.10.1 Internet Explorer: ================== HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = www.google.com HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = www.google.com HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = www.google.com HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com HKU\S-1-5-21-3719051794-263782235-1391171954-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/p/?LinkId=619797&pc=UE07&ocid=UE07DHP SearchScopes: HKLM -> {CF6F90BD-EB6B-4057-8F3C-D777FF3A8D5F} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSERBM&pc=MSERT1 SearchScopes: HKU\S-1-5-21-3719051794-263782235-1391171954-1000 -> DefaultScope {CF6F90BD-EB6B-4057-8F3C-D777FF3A8D5F} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSERBM&pc=MSERT1 SearchScopes: HKU\S-1-5-21-3719051794-263782235-1391171954-1000 -> {CF6F90BD-EB6B-4057-8F3C-D777FF3A8D5F} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSERBM&pc=MSERT1 FireFox: ======== FF ProfilePath: C:\Users\DJRISOW\AppData\Roaming\Mozilla\Firefox\Profiles\yr8wwsrl.default FF Homepage: hxxps://www.malwarebytes.org/restorebrowser//?type=hp&ts=1446217681&z=e752470b0f30aa15396e161g4zez6q9o8g1m3qdb2g&from=dae&uid=hitachixhdp725050gla360_gec564rj1wu0gj1wu0gjx FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_22_0_0_209.dll [2016-07-12] () FF Plugin: @microsoft.com/GENUINE -> disabled [Keine Datei] FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2014-04-29] (Adobe Systems) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_22_0_0_209.dll [2016-07-12] () FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2016-03-08] () FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2015-05-21] (Google) FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Keine Datei] FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-01-10] (NVIDIA Corporation) FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-01-10] (NVIDIA Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-29] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-29] (Google Inc.) FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN) FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2014-04-29] (Adobe Systems) FF Extension: (ArchiveFacebook) - C:\Users\DJRISOW\AppData\Roaming\Mozilla\Firefox\Profiles\yr8wwsrl.default\extensions\{53A03D43-5363-4669-8190-99061B2DEBA6} [2016-04-15] Chrome: ======= CHR HomePage: Default -> hxxp://www.producerloops.com/de/Neue-Produkte.html CHR StartupUrls: Default -> "hxxp://www.rnbass.com/","hxxps://refx.com/advent/" CHR DefaultSearchURL: Default -> hxxp://www.google.com/custom?client=pub-3794288947762788&forid=1&channel=5480255188&ie=UTF-8&oe=UTF-8&safe=active&cof=GALT%3A%23008000%3BGL%3A1%3BDIV%3A%23336699%3BVLC%3A663399%3BAH%3Acenter%3BBGC%3AFFFFFF%3BLBGC%3A336699%3BALC%3A0000FF%3BLC%3A0000FF%3BT%3A000000%3BGFNT%3A0000FF%3BGIMP%3A0000FF%3BFORID%3A1&hl=de&q={searchTerms} CHR Profile: C:\Users\DJRISOW\AppData\Local\Google\Chrome\User Data\Default CHR Extension: (ProxFlow) - C:\Users\DJRISOW\AppData\Local\Google\Chrome\User Data\Default\Extensions\aakchaleigkohafkfjfjbblobjifikek [2016-08-10] CHR Extension: (YouTube) - C:\Users\DJRISOW\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-25] CHR Extension: (Google-Suche) - C:\Users\DJRISOW\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-27] CHR Extension: (Chrome Web Notes) - C:\Users\DJRISOW\AppData\Local\Google\Chrome\User Data\Default\Extensions\fnconblconehkpkgfinabjeceepmpiio [2016-09-06] CHR Extension: (Google Docs Offline) - C:\Users\DJRISOW\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-17] CHR Extension: (Google Mail) - C:\Users\DJRISOW\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-03-31] CHR Extension: (Chrome Media Router) - C:\Users\DJRISOW\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-09-07] CHR Extension: (Kein Name) - C:\Users\DJRISOW\Desktop\YouTube Video Downloader [2015-05-29] CHR HKU\S-1-5-21-3719051794-263782235-1391171954-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [dhdgffkkebhmkfjojejmpbldmpobfkfo] - hxxp://clients2.google.com/service/update2/crx ==================== Dienste (Nicht auf der Ausnahmeliste) ======================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2016-03-02] (Apple Inc.) S3 digiSPTIService64; C:\Program Files\Avid\Pro Tools\digisptiservice64.exe [190464 2014-11-17] (Avid Technology, Inc.) [Datei ist nicht signiert] R3 Disc Soft Lite Bus Service; C:\Program Files (x86)\DAEMON Tools Lite\DiscSoftBusService.exe [1268568 2015-06-18] (Disc Soft Ltd) R2 DragonUpdater; C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe [2139328 2014-05-27] (Comodo Security Solutions, Inc.) R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1148560 2014-12-13] (NVIDIA Corporation) R2 MBAMScheduler; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe [1514464 2016-03-10] (Malwarebytes) R2 MBAMService; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe [1136608 2016-03-10] (Malwarebytes) R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1701520 2014-12-13] (NVIDIA Corporation) R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [19823248 2014-12-13] (NVIDIA Corporation) R2 ReimageRealTimeProtector; C:\Program Files\Reimage\Reimage Protector\ReiGuard.exe [7953776 2016-09-01] (Reimage®) S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [Datei ist nicht signiert] S2 Angry Family; C:\Users\DJRISOW\AppData\Roaming\Angry Family\Angry Family.exe [X] S2 gramblrclient; C:\Program Files\Gramblr\gramblr.exe [X] ===================== Treiber (Nicht auf der Ausnahmeliste) ========================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) R3 AsrVDrive; C:\Windows\System32\DRIVERS\AsrVDrive.sys [23048 2011-01-26] (ASRock Inc.) R3 dtlitescsibus; C:\Windows\System32\DRIVERS\dtlitescsibus.sys [30264 2015-10-30] (Disc Soft Ltd) S3 ebdrv; C:\Windows\system32\drivers\evbda.sys [3286016 2009-06-10] (Broadcom Corporation) R3 firefaceu64; C:\Windows\System32\drivers\fireface_usb_64.sys [104832 2016-02-11] (RME) R3 iLokDrvr; C:\Windows\System32\DRIVERS\iLokDrvr.sys [25808 2013-04-11] () R3 iLokDrvr; C:\Windows\SysWOW64\DRIVERS\iLokDrvr.sys [54256 2008-09-08] (PACE Anti-Piracy, Inc.) R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [27008 2016-03-10] (Malwarebytes) R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [192216 2016-09-07] (Malwarebytes) R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [64896 2016-03-10] (Malwarebytes Corporation) R3 NIWinCDEmu; C:\Windows\System32\DRIVERS\NIWinCDEmu.sys [112408 2015-03-13] () R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19600 2014-12-13] (NVIDIA Corporation) R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [38032 2014-11-22] (NVIDIA Corporation) S3 PAC207; C:\Windows\System32\DRIVERS\PFC027.SYS [572416 2006-12-05] (PixArt Imaging Inc.) S3 RDID1027; C:\Windows\System32\Drivers\rdwm1027.sys [81920 2009-09-18] (Roland Corporation) R0 sptd; C:\Windows\System32\Drivers\sptd.sys [381608 2015-10-30] (Duplex Secure Ltd.) R3 synusb64; C:\Windows\System32\DRIVERS\synusb64.sys [30352 2011-12-14] (Steinberg Media Technologies GmbH) R3 UAD2Pcie; C:\Windows\System32\DRIVERS\UAD2Pcie.sys [48640 2015-07-10] (Universal Audio Inc.) R3 UAD2System; C:\Windows\System32\DRIVERS\UAD2System.sys [94208 2015-07-10] (Universal Audio Inc.) S3 YMIDUSBW; C:\Windows\System32\drivers\ymidusbx64.sys [43744 2015-07-28] (Yamaha Corporation) S3 YFWBUS; System32\Drivers\yfwbus.sys [X] ==================== NetSvcs (Nicht auf der Ausnahmeliste) =================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) ==================== Ein Monat: Erstellte Dateien und Ordner ======== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.) 2016-09-07 18:16 - 2016-09-07 18:16 - 02397696 _____ (Farbar) C:\Users\DJRISOW\Desktop\FRST64.exe 2016-09-07 18:16 - 2016-09-07 18:16 - 00024734 _____ C:\Users\DJRISOW\Desktop\FRST.txt 2016-09-07 18:16 - 2016-09-07 18:16 - 00000000 ____D C:\FRST 2016-09-07 11:53 - 2016-09-07 12:54 - 00000000 ____D C:\Program Files\Reimage 2016-09-07 11:53 - 2016-09-07 11:53 - 00004282 _____ C:\Windows\System32\Tasks\ReimageUpdater 2016-09-07 11:53 - 2016-09-07 11:53 - 00000000 ____D C:\ProgramData\Reimage Protector 2016-09-07 11:52 - 2016-09-07 11:54 - 00000140 _____ C:\Windows\Reimage.ini 2016-09-07 11:47 - 2016-09-07 11:47 - 00307072 _____ C:\Windows\Minidump\090716-44943-01.dmp 2016-09-07 11:41 - 2016-09-07 11:41 - 00307072 _____ C:\Windows\Minidump\090716-21216-01.dmp 2016-09-07 11:36 - 2016-09-07 11:38 - 00000000 ____D C:\AdwCleaner 2016-09-07 11:36 - 2016-09-07 11:36 - 03826240 _____ C:\Users\DJRISOW\Desktop\adwcleaner_6.010.exe 2016-09-07 11:33 - 2016-09-07 11:33 - 00002219 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2016-09-07 11:26 - 2016-09-07 11:26 - 01065376 _____ (Google Inc.) C:\Users\DJRISOW\Downloads\ChromeSetup.exe 2016-09-06 22:04 - 2016-09-06 22:04 - 08215120 _____ C:\Users\DJRISOW\Desktop\Amazon.mp4 2016-09-06 21:06 - 2016-09-06 21:06 - 00000000 ____D C:\Users\DJRISOW\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox 2016-09-06 20:51 - 2016-09-06 20:51 - 00000000 ____D C:\Users\DJRISOW\Desktop\55780 2016-09-06 19:58 - 2016-09-06 19:58 - 00000000 ____D C:\Users\DJRISOW\Desktop\Epic World Library 2016-09-06 19:57 - 2016-09-06 19:57 - 00001018 _____ C:\Users\Public\Desktop\Engine 2.lnk 2016-09-06 19:57 - 2016-09-06 19:57 - 00000000 __HDC C:\ProgramData\{52074E70-E39F-4B90-82D6-38ACBB36A8B6} 2016-09-06 19:57 - 2016-09-06 19:57 - 00000000 __HDC C:\ProgramData\{019B143A-9DF7-4A4E-9071-1FB3892DDD09} 2016-09-06 19:57 - 2016-09-06 19:57 - 00000000 ____D C:\Users\DJRISOW\Documents\Best Service 2016-09-06 19:57 - 2016-09-06 19:57 - 00000000 ____D C:\Users\DJRISOW\AppData\Local\Best Service 2016-09-06 19:57 - 2016-09-06 19:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Engine 2 2016-09-06 19:57 - 2016-09-06 19:57 - 00000000 ____D C:\ProgramData\Best Service 2016-09-06 19:57 - 2016-09-06 19:57 - 00000000 ____D C:\Program Files\Best Service 2016-09-06 12:37 - 2016-09-06 12:38 - 111777421 _____ C:\Users\DJRISOW\Desktop\Fat Joe' Remy Ma n French Montana ft RySoValid - Cookin [Xtendz] - HD - Clean.mp4 2016-09-05 18:24 - 2016-09-05 18:24 - 00001054 _____ C:\Users\Public\Desktop\Native Access.lnk 2016-09-05 18:24 - 2016-09-05 18:24 - 00000000 __HDC C:\ProgramData\{CE9BCF90-E7F3-4C22-8E3F-13DFA1FC853D} 2016-09-05 14:26 - 2016-09-05 14:27 - 41641346 _____ C:\Users\DJRISOW\Desktop\Kygo feat. Conrad Sewell - Firestone Live at Skavlan.mp4 2016-09-04 15:41 - 2016-09-04 15:41 - 00307072 _____ C:\Windows\Minidump\090416-27378-01.dmp 2016-09-03 22:48 - 2016-09-03 22:48 - 00307072 _____ C:\Windows\Minidump\090316-32495-01.dmp 2016-09-02 17:19 - 2016-09-02 17:19 - 00307072 _____ C:\Windows\Minidump\090216-28126-01.dmp 2016-09-01 23:47 - 2016-09-01 23:47 - 00307072 _____ C:\Windows\Minidump\090116-25131-01.dmp 2016-09-01 14:38 - 2016-09-01 14:38 - 00307072 _____ C:\Windows\Minidump\090116-32339-01.dmp 2016-09-01 14:34 - 2016-09-01 14:34 - 00001009 _____ C:\Users\Public\Desktop\Reaktor 5.lnk 2016-09-01 14:34 - 2016-09-01 14:34 - 00000000 __HDC C:\ProgramData\{D9728A28-7722-4D89-9A50-355260FF8E2B} 2016-09-01 13:49 - 2016-09-01 13:49 - 00000000 __HDC C:\ProgramData\{37384B65-5F11-426F-82AE-CDD606490599} 2016-09-01 13:48 - 2016-09-01 13:48 - 00000000 __HDC C:\ProgramData\{79327801-8B0E-430E-8FB6-20702A311ED7} 2016-09-01 13:48 - 2016-09-01 13:48 - 00000000 ____D C:\Users\Public\Documents\Reaktor Factory Library 2016-09-01 13:47 - 2016-09-01 13:47 - 00000000 ____D C:\Users\Public\Documents\Reaktor Blocks 2016-09-01 13:46 - 2016-09-01 13:46 - 00001094 _____ C:\Users\Public\Desktop\Controller Editor.lnk 2016-09-01 13:46 - 2016-09-01 13:46 - 00000000 __HDC C:\ProgramData\{AA454A3E-618B-4FA7-8742-D31B75115C43} 2016-09-01 13:25 - 2016-09-01 13:25 - 00000000 __HDC C:\ProgramData\{DFA16065-8ECA-4933-99B8-9CAEA99506CB} 2016-09-01 13:24 - 2016-09-01 13:24 - 00000000 __HDC C:\ProgramData\{FA2F8522-7DAF-43CB-9B78-23003AF864BB} 2016-09-01 13:22 - 2016-09-01 13:22 - 00000000 __HDC C:\ProgramData\{91A4A873-1950-4B23-A695-B24328D2D1E3} 2016-09-01 13:21 - 2016-09-01 13:21 - 00000000 __HDC C:\ProgramData\{7D1688B0-FF00-4064-99A5-E3753366C056} 2016-09-01 13:19 - 2016-09-01 13:19 - 00000000 __HDC C:\ProgramData\{6C16E1CD-7099-4249-829E-17828665267B} 2016-09-01 13:18 - 2016-09-01 13:18 - 00000000 __HDC C:\ProgramData\{FBEE89CD-D429-4948-96D2-5DD8C89C99B4} 2016-09-01 13:16 - 2016-09-01 13:16 - 00000000 __HDC C:\ProgramData\{6EA8A4B3-65E2-44FA-804F-635285EE836F} 2016-09-01 13:15 - 2016-09-01 13:15 - 00000000 __HDC C:\ProgramData\{11E6C06E-F8A8-4E8D-A1E6-34A8A0668348} 2016-09-01 13:14 - 2016-09-01 13:14 - 00000000 __HDC C:\ProgramData\{17096F5E-F808-4F7F-9134-A3DE8F7CD093} 2016-09-01 13:12 - 2016-09-01 13:12 - 00000000 __HDC C:\ProgramData\{C7147405-74FE-411E-B440-A7E2C5FCBE64} 2016-09-01 13:12 - 2016-09-01 13:12 - 00000000 __HDC C:\ProgramData\{AF974A13-112C-4A21-AAC2-088DE8A1DC31} 2016-09-01 13:11 - 2016-09-01 13:11 - 00000000 __HDC C:\ProgramData\{4B46290B-9384-4D38-8F9D-42C7DDBBBFFE} 2016-09-01 13:11 - 2016-09-01 13:11 - 00000000 __HDC C:\ProgramData\{22629EA1-FE2A-4A84-AFC7-E1DFF9DAFC5E} 2016-09-01 13:10 - 2016-09-01 13:10 - 00000000 __HDC C:\ProgramData\{5BB7DCD2-79BA-4FE2-8DCC-C4710E9271A3} 2016-09-01 13:09 - 2016-09-01 13:09 - 00000000 __HDC C:\ProgramData\{B42AD08D-C95C-4CC9-8F45-E587E7A4944B} 2016-09-01 13:07 - 2016-09-01 13:07 - 00000000 __HDC C:\ProgramData\{D32EE6FB-8B59-452B-8203-AD46E434361D} 2016-09-01 13:05 - 2016-09-01 13:05 - 00001014 _____ C:\Users\Public\Desktop\Kontakt 5.lnk 2016-09-01 13:05 - 2016-09-01 13:05 - 00000000 __HDC C:\ProgramData\{1C1EDD4B-9BC5-4A46-93AF-0D31E608815E} 2016-09-01 13:03 - 2016-09-01 13:03 - 00000000 __HDC C:\ProgramData\{1436CC31-8739-4FD7-81A7-393F03F0495B} 2016-09-01 13:02 - 2016-09-01 13:02 - 00000000 __HDC C:\ProgramData\{D059CA43-CBB2-41FE-B4E4-8FEF0614F812} 2016-09-01 13:02 - 2016-09-01 13:02 - 00000000 __HDC C:\ProgramData\{7BEDC436-56E7-4B12-BC0A-5CB05F2113A2} 2016-09-01 13:01 - 2016-09-01 13:01 - 00000000 __HDC C:\ProgramData\{776F744B-F906-497C-808A-02EC3467EB29} 2016-09-01 12:59 - 2016-09-01 12:59 - 00000000 __HDC C:\ProgramData\{61DD2F1D-990F-4CD3-95FA-8BD4D3617208} 2016-09-01 12:57 - 2016-09-01 12:57 - 00000000 __HDC C:\ProgramData\{51B54F90-B4A7-4546-9F3A-B9B8C563B16A} 2016-09-01 12:55 - 2016-09-01 12:55 - 00000000 __HDC C:\ProgramData\{6E5B3AE4-8785-4886-97B0-DEAF3D4FB2FE} 2016-09-01 12:55 - 2016-09-01 12:55 - 00000000 __HDC C:\ProgramData\{565947C1-8683-47EE-86DC-F64C0C157B53} 2016-09-01 12:49 - 2016-09-01 12:49 - 00000000 __HDC C:\ProgramData\{7AD85942-A0AF-4BC4-B654-C9ECF9B82100} 2016-09-01 12:48 - 2016-09-01 12:48 - 00000000 ____D C:\Users\Public\Documents\Form 2016-09-01 12:46 - 2016-09-01 12:46 - 00001014 _____ C:\Users\Public\Desktop\Reaktor 6.lnk 2016-09-01 12:46 - 2016-09-01 12:46 - 00000000 __HDC C:\ProgramData\{39445429-DDAA-4C68-85D4-A3E556DC22E2} 2016-09-01 12:40 - 2016-09-01 12:40 - 00000000 ____D C:\Users\DJRISOW\AppData\Local\cache 2016-09-01 12:38 - 2016-09-01 12:39 - 00000000 ____D C:\Users\DJRISOW\AppData\Roaming\Native Instruments 2016-08-30 22:23 - 2016-08-30 22:23 - 00262144 _____ C:\Windows\Minidump\083016-24367-01.dmp 2016-08-30 20:19 - 2016-08-30 20:19 - 00000000 ____D C:\Users\DJRISOW\Desktop\Track Pictures 2016-08-30 19:16 - 2016-08-30 20:29 - 00985593 _____ C:\Users\DJRISOW\Desktop\mixii.cpr 2016-08-29 15:37 - 2016-08-29 15:37 - 00000000 ____D C:\Users\DJRISOW\Documents\Xfer 2016-08-28 23:51 - 2016-08-28 23:51 - 00262144 _____ C:\Windows\Minidump\082816-25069-01.dmp 2016-08-28 23:48 - 2016-08-28 23:48 - 00262144 _____ C:\Windows\Minidump\082816-25350-01.dmp 2016-08-28 20:56 - 2016-08-28 20:56 - 00307072 _____ C:\Windows\Minidump\082816-27081-01.dmp 2016-08-27 22:38 - 2016-08-27 22:38 - 00307072 _____ C:\Windows\Minidump\082716-22245-01.dmp 2016-08-27 12:50 - 2016-08-27 12:50 - 00307072 _____ C:\Windows\Minidump\082716-28142-01.dmp 2016-08-26 13:10 - 2016-08-26 13:10 - 00307072 _____ C:\Windows\Minidump\082616-25552-01.dmp 2016-08-25 12:32 - 2016-08-25 12:32 - 00307072 _____ C:\Windows\Minidump\082516-21855-01.dmp 2016-08-24 23:30 - 2016-08-24 23:30 - 00000000 ____D C:\Users\DJRISOW\Desktop\Ultimate R&B Nexus Expansion 2016-08-24 12:59 - 2016-08-24 12:59 - 00262144 _____ C:\Windows\Minidump\082416-23524-01.dmp 2016-08-22 13:16 - 2016-08-22 13:16 - 00307072 _____ C:\Windows\Minidump\082216-27861-01.dmp 2016-08-21 21:50 - 2016-08-21 21:50 - 00307072 _____ C:\Windows\Minidump\082116-29858-01.dmp 2016-08-20 20:01 - 2016-08-20 20:01 - 00000000 ____D C:\Users\DJRISOW\AppData\Roaming\D16 Group 2016-08-20 14:23 - 2016-08-20 14:23 - 02857460 _____ C:\Users\DJRISOW\Desktop\Bassline.wav 2016-08-20 12:59 - 2016-08-20 12:59 - 00002116 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth.lnk 2016-08-19 13:15 - 2016-08-19 13:23 - 00000000 ____D C:\Users\DJRISOW\Desktop\hhu 2016-08-19 12:51 - 2016-08-19 12:51 - 00307072 _____ C:\Windows\Minidump\081916-28064-01.dmp 2016-08-18 23:54 - 2016-08-18 23:54 - 01534302 _____ C:\Users\DJRISOW\Desktop\Honorebel drop.mp4 2016-08-17 11:00 - 2016-07-08 17:32 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll 2016-08-17 11:00 - 2016-07-08 17:16 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll 2016-08-15 12:41 - 2016-08-15 12:41 - 00307072 _____ C:\Windows\Minidump\081516-21871-01.dmp 2016-08-11 15:44 - 2016-08-12 15:55 - 207801220 _____ C:\Users\DJRISOW\Desktop\Video machen.mp4 2016-08-10 12:36 - 2016-08-02 16:54 - 00394440 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll 2016-08-10 12:36 - 2016-08-02 16:08 - 00346312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll 2016-08-10 12:36 - 2016-08-02 08:54 - 25808384 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2016-08-10 12:36 - 2016-08-02 08:47 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2016-08-10 12:36 - 2016-08-02 08:47 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll 2016-08-10 12:36 - 2016-08-02 08:32 - 02894336 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2016-08-10 12:36 - 2016-08-02 08:32 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll 2016-08-10 12:36 - 2016-08-02 08:31 - 00572416 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll 2016-08-10 12:36 - 2016-08-02 08:31 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec 2016-08-10 12:36 - 2016-08-02 08:31 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll 2016-08-10 12:36 - 2016-08-02 08:31 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll 2016-08-10 12:36 - 2016-08-02 08:24 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll 2016-08-10 12:36 - 2016-08-02 08:23 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll 2016-08-10 12:36 - 2016-08-02 08:20 - 00615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll 2016-08-10 12:36 - 2016-08-02 08:19 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe 2016-08-10 12:36 - 2016-08-02 08:19 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe 2016-08-10 12:36 - 2016-08-02 08:18 - 06047744 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2016-08-10 12:36 - 2016-08-02 08:18 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll 2016-08-10 12:36 - 2016-08-02 08:18 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll 2016-08-10 12:36 - 2016-08-02 08:11 - 00969216 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe 2016-08-10 12:36 - 2016-08-02 08:08 - 00489984 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll 2016-08-10 12:36 - 2016-08-02 08:03 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb 2016-08-10 12:36 - 2016-08-02 08:00 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll 2016-08-10 12:36 - 2016-08-02 07:59 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll 2016-08-10 12:36 - 2016-08-02 07:56 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll 2016-08-10 12:36 - 2016-08-02 07:55 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll 2016-08-10 12:36 - 2016-08-02 07:54 - 20343808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2016-08-10 12:36 - 2016-08-02 07:53 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll 2016-08-10 12:36 - 2016-08-02 07:51 - 00497664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll 2016-08-10 12:36 - 2016-08-02 07:51 - 00341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec 2016-08-10 12:36 - 2016-08-02 07:51 - 00152064 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll 2016-08-10 12:36 - 2016-08-02 07:51 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll 2016-08-10 12:36 - 2016-08-02 07:51 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll 2016-08-10 12:36 - 2016-08-02 07:50 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll 2016-08-10 12:36 - 2016-08-02 07:47 - 02286592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll 2016-08-10 12:36 - 2016-08-02 07:45 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll 2016-08-10 12:36 - 2016-08-02 07:44 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll 2016-08-10 12:36 - 2016-08-02 07:42 - 00476160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll 2016-08-10 12:36 - 2016-08-02 07:41 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll 2016-08-10 12:36 - 2016-08-02 07:41 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll 2016-08-10 12:36 - 2016-08-02 07:41 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe 2016-08-10 12:36 - 2016-08-02 07:40 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll 2016-08-10 12:36 - 2016-08-02 07:38 - 00806400 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2016-08-10 12:36 - 2016-08-02 07:38 - 00724992 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2016-08-10 12:36 - 2016-08-02 07:37 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll 2016-08-10 12:36 - 2016-08-02 07:36 - 02131456 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl 2016-08-10 12:36 - 2016-08-02 07:33 - 00416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll 2016-08-10 12:36 - 2016-08-02 07:29 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll 2016-08-10 12:36 - 2016-08-02 07:28 - 15412224 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2016-08-10 12:36 - 2016-08-02 07:28 - 00091136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll 2016-08-10 12:36 - 2016-08-02 07:26 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll 2016-08-10 12:36 - 2016-08-02 07:25 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll 2016-08-10 12:36 - 2016-08-02 07:24 - 00279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll 2016-08-10 12:36 - 2016-08-02 07:23 - 02868224 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2016-08-10 12:36 - 2016-08-02 07:22 - 00130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll 2016-08-10 12:36 - 2016-08-02 07:21 - 04608000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll 2016-08-10 12:36 - 2016-08-02 07:16 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll 2016-08-10 12:36 - 2016-08-02 07:15 - 00692736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll 2016-08-10 12:36 - 2016-08-02 07:14 - 02055680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl 2016-08-10 12:36 - 2016-08-02 07:14 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll 2016-08-10 12:36 - 2016-08-02 07:11 - 13808128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll 2016-08-10 12:36 - 2016-08-02 07:10 - 01550848 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2016-08-10 12:36 - 2016-08-02 06:59 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll 2016-08-10 12:36 - 2016-08-02 06:56 - 02393088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll 2016-08-10 12:36 - 2016-08-02 06:53 - 01316352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll 2016-08-10 12:36 - 2016-08-02 06:51 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll 2016-08-10 12:36 - 2016-07-08 17:37 - 00154856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys 2016-08-10 12:36 - 2016-07-08 17:37 - 00095464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys 2016-08-10 12:36 - 2016-07-08 17:32 - 01464320 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll 2016-08-10 12:36 - 2016-07-08 17:32 - 01212928 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll 2016-08-10 12:36 - 2016-07-08 17:32 - 00730624 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll 2016-08-10 12:36 - 2016-07-08 17:32 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll 2016-08-10 12:36 - 2016-07-08 17:32 - 00463872 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll 2016-08-10 12:36 - 2016-07-08 17:32 - 00343552 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll 2016-08-10 12:36 - 2016-07-08 17:32 - 00316416 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll 2016-08-10 12:36 - 2016-07-08 17:32 - 00312320 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll 2016-08-10 12:36 - 2016-07-08 17:32 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll 2016-08-10 12:36 - 2016-07-08 17:32 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll 2016-08-10 12:36 - 2016-07-08 17:32 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll 2016-08-10 12:36 - 2016-07-08 17:32 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll 2016-08-10 12:36 - 2016-07-08 17:32 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll 2016-08-10 12:36 - 2016-07-08 17:32 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll 2016-08-10 12:36 - 2016-07-08 17:32 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll 2016-08-10 12:36 - 2016-07-08 17:32 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll 2016-08-10 12:36 - 2016-07-08 17:32 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll 2016-08-10 12:36 - 2016-07-08 17:32 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll 2016-08-10 12:36 - 2016-07-08 17:17 - 00666112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll 2016-08-10 12:36 - 2016-07-08 17:17 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll 2016-08-10 12:36 - 2016-07-08 17:16 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll 2016-08-10 12:36 - 2016-07-08 17:16 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll 2016-08-10 12:36 - 2016-07-08 17:16 - 00342528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll 2016-08-10 12:36 - 2016-07-08 17:16 - 00260608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll 2016-08-10 12:36 - 2016-07-08 17:16 - 00251392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll 2016-08-10 12:36 - 2016-07-08 17:16 - 00223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll 2016-08-10 12:36 - 2016-07-08 17:16 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll 2016-08-10 12:36 - 2016-07-08 17:16 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll 2016-08-10 12:36 - 2016-07-08 17:16 - 00141312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpchttp.dll 2016-08-10 12:36 - 2016-07-08 17:16 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll 2016-08-10 12:36 - 2016-07-08 17:16 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll 2016-08-10 12:36 - 2016-07-08 17:16 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll 2016-08-10 12:36 - 2016-07-08 17:16 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll 2016-08-10 12:36 - 2016-07-08 17:03 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe 2016-08-10 12:36 - 2016-07-08 17:01 - 03218944 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys 2016-08-10 12:36 - 2016-07-08 16:57 - 00159744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys 2016-08-10 12:36 - 2016-07-08 16:56 - 00291328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys 2016-08-10 12:36 - 2016-07-08 16:56 - 00129536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys 2016-08-10 12:36 - 2016-07-08 16:55 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe 2016-08-10 12:36 - 2016-07-08 16:55 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe 2016-08-10 12:36 - 2016-07-08 16:50 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll 2016-08-10 00:29 - 2016-08-10 00:29 - 00262144 _____ C:\Windows\Minidump\081016-31262-01.dmp ==================== Ein Monat: Geänderte Dateien und Ordner ======== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.) 2016-09-07 18:10 - 2015-07-14 15:18 - 00001106 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2016-09-07 18:10 - 2014-11-10 00:50 - 00192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys 2016-09-07 18:09 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT 2016-09-07 18:08 - 2014-11-10 00:30 - 00000000 ____D C:\ProgramData\NVIDIA 2016-09-07 12:57 - 2015-07-14 15:18 - 00001110 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2016-09-07 12:55 - 2014-11-10 01:48 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job 2016-09-07 12:44 - 2015-07-23 18:44 - 00000358 _____ C:\Windows\Tasks\VacayExpert.job 2016-09-07 12:44 - 2015-07-10 12:44 - 00000358 _____ C:\Windows\Tasks\DogWiz.job 2016-09-07 12:44 - 2015-06-26 00:44 - 00000354 _____ C:\Windows\Tasks\MoneyAid.job 2016-09-07 12:44 - 2015-06-04 12:44 - 00000356 _____ C:\Windows\Tasks\RenderOrder.job 2016-09-07 12:04 - 2015-05-26 12:53 - 00001232 _____ C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-3719051794-263782235-1391171954-1000UA.job 2016-09-07 11:56 - 2009-07-14 06:45 - 00021888 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2016-09-07 11:56 - 2009-07-14 06:45 - 00021888 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2016-09-07 11:47 - 2014-11-11 14:11 - 648730373 _____ C:\Windows\MEMORY.DMP 2016-09-07 11:47 - 2014-11-11 14:11 - 00000000 ____D C:\Windows\Minidump 2016-09-07 11:27 - 2014-11-10 00:36 - 00000000 ____D C:\Program Files (x86)\Google 2016-09-07 01:16 - 2014-11-10 20:00 - 00000000 ____D C:\Users\DJRISOW\Documents\Cubase Projects 2016-09-07 01:14 - 2016-03-28 16:25 - 00000000 ____D C:\Users\DJRISOW\AppData\Roaming\Spotify 2016-09-07 00:04 - 2015-05-26 12:53 - 00001180 _____ C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-3719051794-263782235-1391171954-1000Core.job 2016-09-06 22:05 - 2015-11-23 16:22 - 00000000 ____D C:\Users\DJRISOW\AppData\Roaming\vlc 2016-09-06 21:07 - 2014-11-12 19:01 - 00000000 ____D C:\Users\DJRISOW\AppData\Roaming\Dropbox 2016-09-06 20:32 - 2014-12-02 19:37 - 00000000 ____D C:\Users\DJRISOW\AppData\Local\Spectrasonics 2016-09-06 19:57 - 2014-11-26 22:17 - 00000000 ____D C:\Program Files (x86)\VST 2016-09-06 19:57 - 2014-11-10 01:14 - 00000000 ____D C:\ProgramData\MAGIX 2016-09-06 19:02 - 2016-03-28 16:26 - 00000000 ____D C:\Users\DJRISOW\AppData\Local\Spotify 2016-09-05 18:23 - 2015-12-04 15:10 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Native Instruments 2016-09-05 18:23 - 2015-12-04 15:10 - 00000000 ____D C:\Program Files\Native Instruments 2016-09-05 13:06 - 2011-04-12 09:43 - 00699416 _____ C:\Windows\system32\perfh007.dat 2016-09-05 13:06 - 2011-04-12 09:43 - 00149556 _____ C:\Windows\system32\perfc007.dat 2016-09-05 13:06 - 2009-07-14 07:13 - 01620612 _____ C:\Windows\system32\PerfStringBackup.INI 2016-09-05 13:06 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\inf 2016-09-04 12:36 - 2014-12-25 01:19 - 00000000 ____D C:\Users\DJRISOW\AppData\Roaming\Mp3tag 2016-09-03 11:46 - 2016-07-26 13:59 - 00000000 ____D C:\Users\DJRISOW\Desktop\mac 2016-09-01 13:56 - 2014-11-17 14:48 - 00000000 ____D C:\Users\DJRISOW\AppData\Local\Native Instruments 2016-09-01 13:49 - 2014-11-17 14:46 - 00000000 ____D C:\Program Files\Common Files\Native Instruments 2016-09-01 13:46 - 2014-11-17 14:46 - 00000000 ____D C:\ProgramData\Native Instruments 2016-09-01 13:36 - 2015-12-06 23:44 - 00000000 ____D C:\Users\Public\Documents\NI Resources 2016-09-01 13:36 - 2015-12-04 15:11 - 00000000 ____D C:\Users\DJRISOW\Documents\Native Instruments 2016-09-01 13:26 - 2015-11-19 11:29 - 00000000 ____D C:\temp 2016-09-01 13:12 - 2015-12-05 18:05 - 00000000 ____D C:\Users\Public\Documents\Session Strings Pro Library 2016-09-01 13:12 - 2015-12-05 18:03 - 00000000 ____D C:\Users\Public\Documents\Scarbee Vintage Keys Library 2016-09-01 13:11 - 2015-12-05 17:35 - 00000000 ____D C:\Users\Public\Documents\Scarbee Funk Guitarist Library 2016-09-01 13:07 - 2015-12-05 16:34 - 00000000 ____D C:\Users\Public\Documents\Kontakt Factory Library 2016-09-01 13:03 - 2015-12-05 17:14 - 00000000 ____D C:\Users\Public\Documents\Evolve R2 Library 2016-09-01 13:02 - 2015-12-05 17:13 - 00000000 ____D C:\Users\Public\Documents\Evolve Mutations 2 Library 2016-09-01 13:02 - 2015-12-05 17:12 - 00000000 ____D C:\Users\Public\Documents\Evolve Mutations Library 2016-09-01 12:57 - 2015-12-05 17:07 - 00000000 ____D C:\Users\Public\Documents\Damage Library 2016-09-01 12:55 - 2015-12-05 16:59 - 00000000 ____D C:\Users\Public\Documents\Action Strings Library 2016-09-01 12:55 - 2015-12-05 16:58 - 00000000 ____D C:\Users\Public\Documents\Action Strikes Library 2016-09-01 12:37 - 2014-11-13 00:23 - 00000000 ____D C:\ProgramData\Package Cache 2016-08-31 18:12 - 2014-11-10 00:18 - 09619946 ____H C:\Users\DJRISOW\AppData\Local\IconCache.db.backup 2016-08-26 00:43 - 2015-02-26 20:25 - 00000000 ____D C:\Users\DJRISOW\AppData\Roaming\Skype 2016-08-17 17:59 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\rescache 2016-08-14 20:25 - 2015-12-22 14:35 - 00000000 ____D C:\Users\DJRISOW\AppData\Roaming\BREVERB 2 2016-08-14 18:53 - 2014-11-10 18:59 - 00000000 ____D C:\Users\DJRISOW\Documents\VST3 Presets 2016-08-12 16:08 - 2014-12-22 17:42 - 00000132 _____ C:\Users\DJRISOW\AppData\Roaming\Adobe PNG Format CS6 Prefs 2016-08-10 19:17 - 2009-07-14 06:45 - 07233296 _____ C:\Windows\system32\FNTCACHE.DAT 2016-08-10 12:59 - 2014-11-10 17:02 - 00000000 ____D C:\Windows\system32\MRT 2016-08-10 12:49 - 2014-11-10 17:02 - 147640136 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe ==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse ======= 2014-11-13 22:20 - 2009-11-05 10:50 - 9535488 _____ (Softube) C:\Program Files (x86)\Tube Delay.dll 2014-12-11 17:08 - 2014-12-11 17:08 - 0000000 ____H () C:\Users\DJRISOW\AppData\Roaming\.C2E86F5206385595.sys 2014-12-22 17:42 - 2016-08-12 16:08 - 0000132 _____ () C:\Users\DJRISOW\AppData\Roaming\Adobe PNG Format CS6 Prefs 2015-07-12 13:59 - 2015-10-13 16:37 - 0000024 _____ () C:\Users\DJRISOW\AppData\Roaming\appdataFr25.bin 2014-11-10 02:07 - 2016-02-12 00:02 - 0000722 _____ () C:\Users\DJRISOW\AppData\Roaming\buttrc 2014-12-20 04:21 - 2014-12-20 04:21 - 0335504 _____ () C:\Users\DJRISOW\AppData\Roaming\CodecsLE_Install.log 2014-11-10 01:50 - 2016-05-31 19:19 - 0000026 _____ () C:\Users\DJRISOW\AppData\Local\isoworkshop.ini 2014-12-04 23:40 - 2014-12-04 23:40 - 0000017 _____ () C:\Users\DJRISOW\AppData\Local\resmon.resmoncfg Einige Dateien in TEMP: ==================== C:\Users\DJRISOW\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpnazfx2.dll C:\Users\DJRISOW\AppData\Local\Temp\DTLite1010-0074.exe C:\Users\DJRISOW\AppData\Local\Temp\FastDownload.exe C:\Users\DJRISOW\AppData\Local\Temp\FreeYouTubeDownload.exe C:\Users\DJRISOW\AppData\Local\Temp\Hibiki.dll C:\Users\DJRISOW\AppData\Local\Temp\libeay32.dll C:\Users\DJRISOW\AppData\Local\Temp\msvcr120.dll C:\Users\DJRISOW\AppData\Local\Temp\nvSCPAPI.dll C:\Users\DJRISOW\AppData\Local\Temp\nvSCPAPI64.dll C:\Users\DJRISOW\AppData\Local\Temp\nvStereoApiI64.dll C:\Users\DJRISOW\AppData\Local\Temp\nvStInst.exe C:\Users\DJRISOW\AppData\Local\Temp\ochelper.dll C:\Users\DJRISOW\AppData\Local\Temp\ochelper.exe C:\Users\DJRISOW\AppData\Local\Temp\PlaySound.dll C:\Users\DJRISOW\AppData\Local\Temp\ReimagePackage.exe C:\Users\DJRISOW\AppData\Local\Temp\SkypeSetup.exe C:\Users\DJRISOW\AppData\Local\Temp\sqlite3.dll C:\Users\DJRISOW\AppData\Local\Temp\System.Data.SQLite.dll C:\Users\DJRISOW\AppData\Local\Temp\System.Data.SQLite27340.dll C:\Users\DJRISOW\AppData\Local\Temp\System.Data.SQLite34478.dll C:\Users\DJRISOW\AppData\Local\Temp\System.Data.SQLite46264.dll C:\Users\DJRISOW\AppData\Local\Temp\System.Data.SQLite82440.dll C:\Users\DJRISOW\AppData\Local\Temp\System.Data.SQLite83906.dll C:\Users\DJRISOW\AppData\Local\Temp\System.Data.SQLite90696.dll C:\Users\DJRISOW\AppData\Local\Temp\tmpF18B.tmp.exe C:\Users\DJRISOW\AppData\Local\Temp\uninstall.exe C:\Users\DJRISOW\AppData\Local\Temp\vlc-2.2.1-win32.exe ==================== Bamital & volsnap ================= (Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.) C:\Windows\system32\winlogon.exe => Datei ist digital signiert C:\Windows\system32\wininit.exe => Datei ist digital signiert C:\Windows\SysWOW64\wininit.exe => Datei ist digital signiert C:\Windows\explorer.exe => Datei ist digital signiert C:\Windows\SysWOW64\explorer.exe => Datei ist digital signiert C:\Windows\system32\svchost.exe => Datei ist digital signiert C:\Windows\SysWOW64\svchost.exe => Datei ist digital signiert C:\Windows\system32\services.exe => Datei ist digital signiert C:\Windows\system32\User32.dll => Datei ist digital signiert C:\Windows\SysWOW64\User32.dll => Datei ist digital signiert C:\Windows\system32\userinit.exe => Datei ist digital signiert C:\Windows\SysWOW64\userinit.exe => Datei ist digital signiert C:\Windows\system32\rpcss.dll => Datei ist digital signiert C:\Windows\system32\dnsapi.dll => Datei ist digital signiert C:\Windows\SysWOW64\dnsapi.dll => Datei ist digital signiert C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert LastRegBack: 2016-09-05 14:15 ==================== Ende von FRST.txt ============================ |
|
07.09.2016, 17:23
| #4 |
| | Google Chrome öffnet ständig Spam Seiten!Code:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 31-08-2016
durchgeführt von DJRISOW (07-09-2016 18:17:11)
Gestartet von C:\Users\DJRISOW\Desktop
Windows 7 Home Premium Service Pack 1 (X64) (2014-11-09 22:09:40)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
Administrator (S-1-5-21-3719051794-263782235-1391171954-500 - Administrator - Disabled)
C185D41A82D249B08899 (S-1-5-21-3719051794-263782235-1391171954-1004 - Limited - Enabled)
D1C562BF37D343A79588 (S-1-5-21-3719051794-263782235-1391171954-1003 - Limited - Enabled)
DJRISOW (S-1-5-21-3719051794-263782235-1391171954-1000 - Administrator - Enabled) => C:\Users\DJRISOW
Gast (S-1-5-21-3719051794-263782235-1391171954-501 - Limited - Disabled)
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
7-Zip 9.20 (HKLM-x32\...\7-Zip) (Version: - )
Adobe After Effects CC 2014 (HKLM-x32\...\{2B22C750-5C3B-4738-B621-BA786AC7A494}) (Version: 13.0.0 - Adobe Systems Incorporated)
Adobe Flash Player 22 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 22.0.0.209 - Adobe Systems Incorporated)
Adobe Photoshop CS6 (HKLM-x32\...\{74EB3499-8B95-4B5C-96EB-7B342F3FD0C6}) (Version: 13.0 - Adobe Systems Incorporated)
AIR Creative Collection (HKLM\...\{D3AE0FF1-6A78-4099-8779-B05E313B7828}) (Version: 11.0.0 - AIR Music Technology)
Amazon Music (HKU\S-1-5-21-3719051794-263782235-1391171954-1000\...\Amazon Amazon Music) (Version: 3.9.5.820 - Amazon Services LLC)
Antares Autotune Evo VST RTAS v6.0.9 (HKLM-x32\...\Antares Autotune Evo VST RTAS_is1) (Version: - )
Apple Application Support (32-Bit) (HKLM-x32\...\{FE5C2FAA-118D-4509-B51D-3F71CC9E1B3E}) (Version: 4.3 - Apple Inc.)
Apple Application Support (64-Bit) (HKLM\...\{2937FD88-C9D6-4B82-B539-37CD0A572F42}) (Version: 4.3 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{2E4AF2A6-50EA-4260-9BA4-5E582D11879A}) (Version: 9.3.0.15 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Version: 2.2.0.150 - Apple Inc.)
Arabic World Strings (HKLM-x32\...\Arabic World Strings1.0) (Version: 1.0 - Arabic World PLugins)
Arturia minimoog V v1.6 (HKLM-x32\...\Arturia minimoog V_is1) (Version: - )
ASRock 3TB+ Unlocker v1.0 (HKLM\...\ASRock 3TB+ Unlocker_is1) (Version: - ASRock Inc.)
ASRock eXtreme Tuner v0.1.71 (HKLM-x32\...\ASRock eXtreme Tuner_is1) (Version: - )
ASRock InstantBoot v1.26 (HKLM-x32\...\ASRock InstantBoot_is1) (Version: - )
Auto-Tune EFX VST (HKLM-x32\...\{95292902-411B-4390-BCBD-8EA445F9456C}) (Version: 1.0.0 - Antares Audio Technologies)
Avid Codecs LE (HKLM-x32\...\{96263993-5E28-424D-A542-FDDEE1217CFF}) (Version: 2.4.0 - Avid Technology, Inc.)
Avid Effects (HKLM\...\{0faad20d-ad8d-4249-ad93-7f006f2aa54b}) (Version: 11.2.2 - Avid Technology, Inc.)
Avid HD Driver (x64) (HKLM\...\{658E112A-8776-4430-A275-D9248732DFB9}) (Version: 11.2.2 - Avid Technology, Inc.)
Avid Pro Tools (HKLM\...\{4D24A12F-11DE-4CA0-9CB7-0418C86A8244}) (Version: 11.2.2 - Avid Technology, Inc.)
Avid Sound Replacer (HKLM\...\{6493231d-d7c3-436e-880b-b1f12882b60c}) (Version: 11.0.0 - Avid Technology, Inc.)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
BREVERB 2 (HKLM-x32\...\{B2D9F699-B4A4-4D37-941E-1B55DF33A96D}_is1) (Version: 2.1.8 - Overloud)
Broadcom Gigabit NetLink Controller (HKLM\...\{C91DCB72-F5BB-410D-A91A-314F5D1B4284}) (Version: 14.6.1.3 - Broadcom Corporation)
bx_shredspread 1.9 (HKLM\...\bx_shredspread_is1) (Version: 1.9 - Plugin Alliance)
bx_solo 1.7 (HKLM\...\bx_solo_is1) (Version: 1.7 - Plugin Alliance)
Camel Audio Camel Phat VST v3.15 (HKLM-x32\...\Camel Audio Camel Phat VST v3.15) (Version: - )
Camel Audio Camel Space VST v1.15 (HKLM-x32\...\Camel Audio Camel Space VST v1.15) (Version: - )
Canon Utilities EOS Utility 2 (HKLM-x32\...\EOS Utility 2) (Version: 2.14.10.2 - Canon Inc.)
Canon Utilities PhotoStitch (HKLM-x32\...\PhotoStitch) (Version: 3.1.23.47 - Canon Inc.)
Celemony Melodyne Studio 4 (HKLM-x32\...\Celemony Melodyne Studio 4) (Version: 4.0.4.001 - Celemony)
Comodo Dragon (HKLM-x32\...\Comodo Dragon) (Version: 33.1.0.1 - Comodo)
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.1.0.0074 - Disc Soft Ltd)
do-search (HKLM-x32\...\do-search) (Version: 1.0.0.1 - ) <==== ACHTUNG
Dropbox (HKU\S-1-5-21-3719051794-263782235-1391171954-1000\...\Dropbox) (Version: 10.3.21 - Dropbox, Inc.)
Druckerdeinstallation für EPSON SX125 Series (HKLM\...\EPSON SX125 Series) (Version: - SEIKO EPSON Corporation)
E²Deesser (HKLM-x32\...\E²Deesser_is1) (Version: 1.2.0 - Eiosis, Inc.)
ElastikVst (x32 Version: 1.00.0000 - ueberschall sample service GmbH) Hidden
E-License Manager (HKLM-x32\...\E-License Manager) (Version: 1.3.0.0 - Best Service)
E-License Manager (Version: 1.3.0.0 - Magix) Hidden
eLicenser Control (HKLM-x32\...\eLicenser Control) (Version: 6.9.2.1179 - Steinberg Media Technologies GmbH)
Engine 2 (HKLM-x32\...\Engine 2) (Version: 2.3.0.25 - Best Service)
Engine 2 (Version: 2.3.0.25 - Best Service) Hidden
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version: - Seiko Epson Corporation)
Etron USB3.0 Host Controller (HKLM-x32\...\InstallShield_{DFBB738C-71D8-4DC5-B8D2-D65C37680E27}) (Version: 0.96 - Etron Technology)
Etron USB3.0 Host Controller (x32 Version: 0.96 - Etron Technology) Hidden
FormatFactory 3.3.5.0 (HKLM-x32\...\FormatFactory) (Version: 3.3.5.0 - Format Factory)
Free PDF to Word Doc Converter v1.1 (HKLM-x32\...\Free PDF to Word Doc Converter_is1) (Version: 1.1 - www.hellopdf.com)
GetFLV 9.8.128.18 (HKLM-x32\...\GetFLV_is1) (Version: - GetFLV, Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 53.0.2785.89 - Google Inc.)
Google Earth (HKLM-x32\...\{817750FA-EC6A-485D-9901-0683AE6FFDF1}) (Version: 7.1.5.1557 - Google)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.31.5 - Google Inc.) Hidden
Gramblr (HKLM\...\Gramblr) (Version: 2.0.0 - Gramblr Team)
Hap QuickTime Component (HKLM-x32\...\{BCA56BF3-6A57-4C4D-A151-701267CFF530}) (Version: 7.0.0 - Vidvox)
HOFA-Plugins Uninstall (HKLM-x32\...\HOFA-Plugins) (Version: - HOFA-Plugins)
Intel(R) C++ Redistributables on IA-32 (HKLM-x32\...\{317059CB-7642-4F2E-89C0-62E69D4074B7}) (Version: 15.0.148 - Intel Corporation)
Intel(R) C++ Redistributables on Intel(R) 64 (HKLM-x32\...\{2DD3C090-2986-4970-B3CB-87BB4C8AC4A5}) (Version: 15.0.148 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 7.0.0.1144 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 8.15.10.2361 - Intel Corporation)
Interlok driver setup x64 (HKLM\...\{25613C10-27D2-410B-942B-D922D5C3A7BE}) (Version: 5.9.5 - PACE Anti-Piracy, Inc.)
ISO Workshop 5.5 (HKLM-x32\...\ISO Workshop_is1) (Version: - Glorylogic)
iTunes (HKLM\...\{A31C5565-90D9-4615-AE13-94D86C3836C7}) (Version: 12.3.3.17 - Apple Inc.)
Juicer 3.90 (HKLM-x32\...\{640EAE56-81A2-49D4-9B8C-00DA3C0031AF}_is1) (Version: - Digital Juice, Inc.)
LinPlug Spectral (HKU\S-1-5-21-3719051794-263782235-1391171954-1000\...\LinPlug Spectral) (Version: - )
L-Normalizer version 2.0.2 (HKLM-x32\...\{92F87FD0-B41C-11E3-B0B1-005056A77E8F}_is1) (Version: 2.0.2 - beDSP)
Magic Bullet QuickLooks for Magix 1.4.4 (HKLM\...\{9D084A74-7208-4433-81A0-8D8AF0B1FFE3}_is1) (Version: 1.4.4 - Red Giant, LLC)
MAGIX Speed burnR (MSI) (HKLM-x32\...\MX.{328343FF-0466-4E8D-88EB-53CE3150AE11}) (Version: 7.0.2.6 - MAGIX Software GmbH)
MAGIX Speed burnR (MSI) (Version: 7.0.2.6 - MAGIX Software GmbH) Hidden
MAGIX Video Pro X6 (Designelemente) (HKLM\...\MX.{B819C28D-D7A1-4A73-B97D-BCEC5616BB4A}) (Version: 1.0.0.0 - MAGIX AG)
MAGIX Video Pro X6 (Designelemente) (Version: 1.0.0.0 - MAGIX AG) Hidden
MAGIX Video Pro X6 (Filmvorlagen) (HKLM\...\MX.{3FB5F487-B8A5-46E4-872D-2CDA114466F4}) (Version: 1.0.0.0 - MAGIX AG)
MAGIX Video Pro X6 (Filmvorlagen) (Version: 1.0.0.0 - MAGIX AG) Hidden
MAGIX Video Pro X6 (Fotoshow Maker-Stile) (HKLM\...\MX.{8F592157-9C7D-4D9E-B712-5A0D1D982819}) (Version: 1.0.0.0 - MAGIX AG)
MAGIX Video Pro X6 (Fotoshow Maker-Stile) (Version: 1.0.0.0 - MAGIX AG) Hidden
MAGIX Video Pro X6 (HKLM\...\MX.{CBC84EDA-E830-4240-9392-325C3E6D5DCA}) (Version: 13.0.4.2 - MAGIX Software GmbH)
MAGIX Video Pro X6 (Individuelle Menüvorlagen) (HKLM\...\MX.{46014C2A-4768-4171-9FDE-9DF30836D387}) (Version: 1.0.0.0 - MAGIX AG)
MAGIX Video Pro X6 (Individuelle Menüvorlagen) (Version: 1.0.0.0 - MAGIX AG) Hidden
MAGIX Video Pro X6 (Menüvorlagen) (HKLM\...\MX.{C631DC28-575A-422B-AA9C-829834486F38}) (Version: 1.0.0.0 - MAGIX AG)
MAGIX Video Pro X6 (Menüvorlagen) (Version: 1.0.0.0 - MAGIX AG) Hidden
MAGIX Video Pro X6 (proDAD Mercalli V2) (HKLM\...\MX.{A90FD7D9-5A48-4350-BA1C-E39390D158B7}) (Version: 1.0.0.0 - MAGIX AG)
MAGIX Video Pro X6 (proDAD Mercalli V2) (Version: 1.0.0.0 - MAGIX AG) Hidden
MAGIX Video Pro X6 (Red Giant Magic Bullet Quick Looks) (HKLM\...\MX.{B007B681-3208-4FEE-BD51-E97D3D913545}) (Version: 1.0.1.0 - MAGIX Software GmbH)
MAGIX Video Pro X6 (Red Giant Magic Bullet Quick Looks) (Version: 1.0.1.0 - MAGIX Software GmbH) Hidden
MAGIX Video Pro X6 (Soundtrack Maker-Stile) (HKLM\...\MX.{55A35129-47E9-4E81-9B98-775D631794AC}) (Version: 1.0.0.0 - MAGIX AG)
MAGIX Video Pro X6 (Soundtrack Maker-Stile) (Version: 1.0.0.0 - MAGIX AG) Hidden
MAGIX Video Pro X6 (Titeleffekte) (HKLM\...\MX.{4D0530E3-9918-4264-8108-B3B7E8F7B910}) (Version: 1.0.0.0 - MAGIX AG)
MAGIX Video Pro X6 (Titeleffekte) (Version: 1.0.0.0 - MAGIX AG) Hidden
MAGIX Video Pro X6 (Tutorials) (HKLM\...\MX.{9BE10A05-17B2-4CC5-8701-7ACD0FB4C2CC}) (Version: 1.0.0.0 - MAGIX AG)
MAGIX Video Pro X6 (Tutorials) (Version: 1.0.0.0 - MAGIX AG) Hidden
MAGIX Video Pro X6 (Überblendeffekte) (HKLM\...\MX.{56DE2115-3FF0-42CD-91A1-9BA4C9C7B8CA}) (Version: 1.0.0.0 - MAGIX AG)
MAGIX Video Pro X6 (Überblendeffekte) (Version: 1.0.0.0 - MAGIX AG) Hidden
MAGIX Video Pro X6 (Version: 13.0.4.2 - MAGIX Software GmbH) Hidden
MAGIX Video Pro X6 64 bit Update (Version: 13.0.5.9 - MAGIX AG) Hidden
Malwarebytes Anti-Malware Version 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
marvell 91xx driver (HKLM-x32\...\MagniDriver) (Version: 1.2.0.1003 - Marvell)
MediaInfo 0.7.82 (HKLM\...\MediaInfo) (Version: 0.7.82 - MediaArea.net)
Metric Collection SDK 35 (x32 Version: 1.2.0006.00 - Lenovo Group Limited) Hidden
Microsoft .NET Framework 4 Client Profile DEU Language Pack (HKLM\...\Microsoft .NET Framework 4 Client Profile DEU Language Pack) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Extended DEU Language Pack (HKLM\...\Microsoft .NET Framework 4 Extended DEU Language Pack) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4.5 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50709 - Microsoft Corporation)
Microsoft Office Word Viewer 2003 (HKLM-x32\...\{90850407-6000-11D3-8CFE-0150048383C9}) (Version: 11.0.8173.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable - KB2467175 (HKLM-x32\...\{a0fe116e-9a8a-466f-aee0-625cb7c207e3}) (Version: 8.0.51011 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) - KB2467175 (HKLM\...\{aac9fcc4-dd9e-4add-901c-b5496a07ab2e}) (Version: 8.0.51011 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.51106 (HKLM-x32\...\{6e8f74e0-43bd-4dce-8477-6ff6828acc07}) (Version: 11.0.51106.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.51106 (HKLM-x32\...\{8e70e4e1-06d7-470b-9f74-a51bef21088e}) (Version: 11.0.51106.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Miroslav Philharmonik (HKLM-x32\...\{BA0D0121-A3BA-487D-9C78-7AB0E676C722}) (Version: 1.0.0 - IK Multimedia)
Miroslav Philharmonik Instruments (HKLM-x32\...\{9FCCC8D1-3152-4699-8793-6CB0B9E26EBB}) (Version: 1.0 - IK Multimedia)
MixMeister BPM Analyzer 1.0 (HKLM-x32\...\MixMeister BPM Analyzer_is1) (Version: - MixMeister Technology LLC)
mocha Pro V3.2.1-7276 (HKLM-x32\...\{110ABF3B-74FA-45A4-B893-8482DA52AA9D}) (Version: 3.21.7276 - Imagineer Systems)
Mozilla Firefox 41.0 (x86 de) (HKLM-x32\...\Mozilla Firefox 41.0 (x86 de)) (Version: 41.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 41.0 - Mozilla)
Mp3tag v2.71 (HKLM-x32\...\Mp3tag) (Version: v2.71 - Florian Heidenreich)
MSXML 4.0 SP3 Parser (KB2721691) (HKLM-x32\...\{355B5AC0-CEEE-42C5-AD4D-7F3CFD806C36}) (Version: 4.30.2114.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
Native Instruments Abbey Road 50s Drummer (HKLM-x32\...\Native Instruments Abbey Road 50s Drummer) (Version: 1.2.0.10 - Native Instruments)
Native Instruments Abbey Road 60s Drummer (HKLM-x32\...\Native Instruments Abbey Road 60s Drummer) (Version: 1.3.0.11 - Native Instruments)
Native Instruments Abbey Road 70s Drummer (HKLM-x32\...\Native Instruments Abbey Road 70s Drummer) (Version: 1.3.0.7 - Native Instruments)
Native Instruments Abbey Road 80s Drummer (HKLM-x32\...\Native Instruments Abbey Road 80s Drummer) (Version: 1.3.0.4 - Native Instruments)
Native Instruments Abbey Road Modern Drummer (HKLM-x32\...\Native Instruments Abbey Road Modern Drummer) (Version: 1.3.0.2 - Native Instruments)
Native Instruments Abbey Road Vintage Drummer (HKLM-x32\...\Native Instruments Abbey Road Vintage Drummer) (Version: 1.3.0.9 - Native Instruments)
Native Instruments Absynth 5 (HKLM-x32\...\Native Instruments Absynth 5) (Version: 5.3.1.1628 - Native Instruments)
Native Instruments Action Strikes (HKLM-x32\...\Native Instruments Action Strikes) (Version: 1.2.0.2 - Native Instruments)
Native Instruments Action Strings (HKLM-x32\...\Native Instruments Action Strings) (Version: 1.5.0.1 - Native Instruments)
Native Instruments Alicias Keys (HKLM-x32\...\Native Instruments Alicias Keys) (Version: 1.5.0.1 - Native Instruments)
Native Instruments Balinese Gamelan (HKLM-x32\...\Native Instruments Balinese Gamelan) (Version: 1.2.0.5 - Native Instruments)
Native Instruments Battery 4 (HKLM-x32\...\Native Instruments Battery 4) (Version: 4.1.5.254 - Native Instruments)
Native Instruments Battery 4 Factory Library (HKLM-x32\...\Native Instruments Battery 4 Factory Library) (Version: 1.1.0.1 - Native Instruments)
Native Instruments Controller Editor (HKLM-x32\...\Native Instruments Controller Editor) (Version: 1.11.0.465 - Native Instruments)
Native Instruments Cuba (HKLM-x32\...\Native Instruments Cuba) (Version: 1.2.0.1 - Native Instruments)
Native Instruments Damage (HKLM-x32\...\Native Instruments Damage) (Version: 1.5.0.2 - Native Instruments)
Native Instruments Driver (HKLM-x32\...\Native Instruments Driver) (Version: 1.3.1.45 - Native Instruments)
Native Instruments Drum Lab (HKLM-x32\...\Native Instruments Drum Lab) (Version: 1.2.0.5 - Native Instruments)
Native Instruments Enhanced EQ (HKLM-x32\...\Native Instruments Enhanced EQ) (Version: 1.3.1.45 - Native Instruments)
Native Instruments Evolve Mutations (HKLM-x32\...\Native Instruments Evolve Mutations) (Version: 1.2.0.1 - Native Instruments)
Native Instruments Evolve Mutations 2 (HKLM-x32\...\Native Instruments Evolve Mutations 2) (Version: 1.2.0.1 - Native Instruments)
Native Instruments Evolve R2 (HKLM-x32\...\Native Instruments Evolve R2) (Version: 1.7.0.2 - Native Instruments)
Native Instruments FM8 (HKLM-x32\...\Native Instruments FM8) (Version: 1.4.1.1599 - Native Instruments)
Native Instruments Form (HKLM-x32\...\Native Instruments Form) (Version: 1.0.0.7 - Native Instruments)
Native Instruments George Duke Soul Treasures (HKLM-x32\...\Native Instruments George Duke Soul Treasures) (Version: 1.3.0.15 - Native Instruments)
Native Instruments Guitar Rig 5 (HKLM-x32\...\Native Instruments Guitar Rig 5) (Version: 5.2.0.2770 - Native Instruments)
Native Instruments Guitar Rig Pro Library for Maschine (HKLM-x32\...\Native Instruments Guitar Rig Pro Library for Maschine) (Version: - Native Instruments)
Native Instruments Kinetic Metal (HKLM-x32\...\Native Instruments Kinetic Metal) (Version: 1.1.0.13 - Native Instruments)
Native Instruments Komplete 10 Ultimate (HKLM-x32\...\Native Instruments Komplete 10 Ultimate) (Version: - Native Instruments)
Native Instruments Kontakt 5 (HKLM-x32\...\Native Instruments Kontakt 5) (Version: 5.5.2.880 - Native Instruments)
Native Instruments Kontakt Factory Library (HKLM-x32\...\Native Instruments Kontakt Factory Library) (Version: 1.2.0.3 - Native Instruments)
Native Instruments Kontour (HKLM-x32\...\Native Instruments Kontour) (Version: 1.0.0.4 - Native Instruments)
Native Instruments Maschine Drum Selection (HKLM-x32\...\Native Instruments Maschine Drum Selection) (Version: 1.3.0.2 - Native Instruments)
Native Instruments Massive (HKLM-x32\...\Native Instruments Massive) (Version: 1.5.1.637 - Native Instruments)
Native Instruments Molekular (HKLM-x32\...\Native Instruments Molekular) (Version: 1.0.0.2 - Native Instruments)
Native Instruments Monark (HKLM-x32\...\Native Instruments Monark) (Version: 1.3.0.2 - Native Instruments)
Native Instruments Native Access (HKLM-x32\...\Native Instruments Native Access) (Version: 1.0.20.101 - Native Instruments)
Native Instruments Passive EQ (HKLM-x32\...\Native Instruments Passive EQ) (Version: 1.3.1.45 - Native Instruments)
Native Instruments Polyplex (HKLM-x32\...\Native Instruments Polyplex) (Version: 1.1.0.2 - Native Instruments)
Native Instruments Rammfire (HKLM-x32\...\Native Instruments Rammfire) (Version: 2.0.0.4 - Native Instruments)
Native Instruments Razor (HKLM-x32\...\Native Instruments Razor) (Version: 1.7.0.1 - Native Instruments)
Native Instruments RC 24 (HKLM-x32\...\Native Instruments RC 24) (Version: 1.3.1.45 - Native Instruments)
Native Instruments RC 48 (HKLM-x32\...\Native Instruments RC 48) (Version: 1.3.1.45 - Native Instruments)
Native Instruments Reaktor 5 (HKLM-x32\...\Native Instruments Reaktor 5) (Version: 5.9.4.1512 - Native Instruments)
Native Instruments Reaktor 6 (HKLM-x32\...\Native Instruments Reaktor 6) (Version: 6.0.3.16 - Native Instruments)
Native Instruments Reaktor Blocks (HKLM-x32\...\Native Instruments Reaktor Blocks) (Version: 1.2.0.3 - Native Instruments)
Native Instruments Reaktor Factory Library (HKLM-x32\...\Native Instruments Reaktor Factory Library) (Version: 1.1.0.3 - Native Instruments)
Native Instruments Reaktor Prism (HKLM-x32\...\Native Instruments Reaktor Prism) (Version: 1.6.0.1 - Native Instruments)
Native Instruments Reaktor Spark R2 (HKLM-x32\...\Native Instruments Reaktor Spark R2) (Version: 1.4.0.3 - Native Instruments)
Native Instruments Reflektor (HKLM-x32\...\Native Instruments Reflektor) (Version: 2.0.0.6 - Native Instruments)
Native Instruments Retro Machines Mk2 (HKLM-x32\...\Native Instruments Retro Machines Mk2) (Version: 1.3.0.3 - Native Instruments)
Native Instruments Rise and Hit (HKLM-x32\...\Native Instruments Rise and Hit) (Version: 1.2.0.10 - Native Instruments)
Native Instruments Rounds (HKLM-x32\...\Native Instruments Rounds) (Version: 1.2.0.1 - Native Instruments)
Native Instruments Scarbee Funk Guitarist (HKLM-x32\...\Native Instruments Scarbee Funk Guitarist) (Version: 1.2.0.1 - Native Instruments)
Native Instruments Scarbee Jay-Bass (HKLM-x32\...\Native Instruments Scarbee Jay-Bass) (Version: 1.1.0.2 - Native Instruments)
Native Instruments Scarbee MM-Bass (HKLM-x32\...\Native Instruments Scarbee MM-Bass) (Version: 1.2.0.4 - Native Instruments)
Native Instruments Scarbee MM-Bass Amped (HKLM-x32\...\Native Instruments Scarbee MM-Bass Amped) (Version: 1.1.0.2 - Native Instruments)
Native Instruments Scarbee Pre-Bass (HKLM-x32\...\Native Instruments Scarbee Pre-Bass) (Version: 1.2.0.2 - Native Instruments)
Native Instruments Scarbee Pre-Bass Amped (HKLM-x32\...\Native Instruments Scarbee Pre-Bass Amped) (Version: 1.1.0.2 - Native Instruments)
Native Instruments Scarbee Rickenbacker Bass (HKLM-x32\...\Native Instruments Scarbee Rickenbacker Bass) (Version: 1.2.0.2 - Native Instruments)
Native Instruments Scarbee Vintage Keys (HKLM-x32\...\Native Instruments Scarbee Vintage Keys) (Version: 1.3.0.4 - Native Instruments)
Native Instruments Service Center (HKLM-x32\...\Native Instruments Service Center) (Version: 2.6.0.137 - Native Instruments)
Native Instruments Session Horns Pro (HKLM-x32\...\Native Instruments Session Horns Pro) (Version: 1.3.0.2 - Native Instruments)
Native Instruments Session Strings Pro (HKLM-x32\...\Native Instruments Session Strings Pro) (Version: 1.4.0.2 - Native Instruments)
Native Instruments Skanner XT (HKLM-x32\...\Native Instruments Skanner XT) (Version: 1.3.0.2 - Native Instruments)
Native Instruments Solid Bus Comp FX (HKLM-x32\...\Native Instruments Solid Bus Comp FX) (Version: 1.3.1.45 - Native Instruments)
Native Instruments Solid Dynamics FX (HKLM-x32\...\Native Instruments Solid Dynamics FX) (Version: 1.3.1.45 - Native Instruments)
Native Instruments Solid EQ FX (HKLM-x32\...\Native Instruments Solid EQ FX) (Version: 1.3.1.45 - Native Instruments)
Native Instruments Studio Drummer (HKLM-x32\...\Native Instruments Studio Drummer) (Version: 1.4.0.12 - Native Instruments)
Native Instruments Supercharger GT (HKLM-x32\...\Native Instruments Supercharger GT) (Version: 1.3.1.45 - Native Instruments)
Native Instruments The Finger R2 (HKLM-x32\...\Native Instruments The Finger R2) (Version: 1.3.0.12 - Native Instruments)
Native Instruments The Gentleman (HKLM-x32\...\Native Instruments The Gentleman) (Version: 1.2.0.2 - Native Instruments)
Native Instruments The Giant (HKLM-x32\...\Native Instruments The Giant) (Version: 1.2.0.7 - Native Instruments)
Native Instruments The Grandeur (HKLM-x32\...\Native Instruments The Grandeur) (Version: 1.2.0.2 - Native Instruments)
Native Instruments The Maverick (HKLM-x32\...\Native Instruments The Maverick) (Version: 1.2.0.2 - Native Instruments)
Native Instruments The Mouth (HKLM-x32\...\Native Instruments The Mouth) (Version: 1.3.0.4 - Native Instruments)
Native Instruments Traktors 12 (HKLM-x32\...\Native Instruments Traktors 12) (Version: 2.0.0.6 - Native Instruments)
Native Instruments Transient Master FX (HKLM-x32\...\Native Instruments Transient Master FX) (Version: 1.3.1.45 - Native Instruments)
Native Instruments Vari Comp (HKLM-x32\...\Native Instruments Vari Comp) (Version: 1.3.1.45 - Native Instruments)
Native Instruments VC 160 FX (HKLM-x32\...\Native Instruments VC 160 FX) (Version: 1.3.1.45 - Native Instruments)
Native Instruments VC 2A FX (HKLM-x32\...\Native Instruments VC 2A FX) (Version: 1.3.1.45 - Native Instruments)
Native Instruments VC 76 FX (HKLM-x32\...\Native Instruments VC 76 FX) (Version: 1.3.1.45 - Native Instruments)
Native Instruments Vintage Organs (HKLM-x32\...\Native Instruments Vintage Organs) (Version: 1.4.0.5 - Native Instruments)
Native Instruments West Africa (HKLM-x32\...\Native Instruments West Africa) (Version: 1.3.0.2 - Native Instruments)
Nero BurningROM 2015 (HKLM-x32\...\{32CEC4AD-4BEF-4EB8-833E-47DAE9382653}) (Version: 16.0.01500 - Nero AG)
Nero Info (HKLM-x32\...\{B791E0AB-87A9-41A4-8D98-D13C2E37D928}) (Version: 16.0.1003 - Nero AG)
NVIDIA 3D Vision Controller-Treiber 347.09 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 347.09 - NVIDIA Corporation)
NVIDIA 3D Vision Treiber 347.25 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 347.25 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.1.5 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.1.5 - NVIDIA Corporation)
NVIDIA Grafiktreiber 347.25 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 347.25 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.33.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.33.0 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.14.0702 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.14.0702 - NVIDIA Corporation)
OpenOffice 4.1.1 (HKLM-x32\...\{ACD0FFF9-6B35-43C1-82DB-9FF6990E8602}) (Version: 4.11.9775 - Apache Software Foundation)
OrangeVocoder v2.0-OxYGeN (HKLM-x32\...\OrangeVocoder v2.0-OxYGeN) (Version: - )
PACE License Support Win64 (HKLM-x32\...\InstallShield_{DF91FC8F-0D43-415b-BB5D-22533FC1CC1A}) (Version: 2.6.0.1134 - PACE Anti-Piracy, Inc.)
PACE License Support Win64 (Version: 2.6.0.1134 - PACE Anti-Piracy, Inc.) Hidden
PCM Native Reverb Bundle (HKLM-x32\...\PCM Native Reverb Bundle) (Version: - Lexicon)
PCM Native Reverb Bundle (x32 Version: 1.1.3 - Lexicon) Hidden
PCR-Treiber (HKLM\...\RolandRDID0027) (Version: - Roland Corporation)
PDF Settings CS6 (x32 Version: 11.0 - Adobe Systems Incorporated) Hidden
PDFCreator (HKLM-x32\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 1.7.3 - pdfforge)
PDF-Viewer (HKLM\...\{A278382D-4F1B-4D47-9885-8523F7261E8D}_is1) (Version: 2.5.311.0 - Tracker Software Products Ltd)
Ponyhoof (HKLM-x32\...\{88E96402-3BBD-02D9-0A36-6FB806AEE04E}) (Version: - )
Prerequisite installer (x32 Version: 16.0.0000 - Nero AG) Hidden
proDAD Mercalli 2.0 (64bit) (HKLM\...\proDAD-Mercalli-2.0) (Version: 2.0.116 - proDAD GmbH)
proDAD Mercalli 3.0 (64bit) (HKLM\...\proDAD-Mercalli-3.0) (Version: 3.0.215.1 - proDAD GmbH)
proDAD Vitascene 2.0 (64bit) (HKLM\...\proDAD-Vitascene-2.0) (Version: 2.0.227 - proDAD GmbH)
QuickTime 7 (HKLM-x32\...\{3D2CBC2C-65D4-4463-87AB-BB2C859C1F3E}) (Version: 7.76.80.95 - Apple Inc.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6257 - Realtek Semiconductor Corp.)
Reimage Protector (HKLM\...\Reimage Protector) (Version: - Reimage) <==== ACHTUNG
Revoice Pro (32 bit) (HKLM-x32\...\{7481C12D-51CF-4747-B1D5-3D7FE7612F0F}) (Version: 2.6.1.1 - Synchro Arts Ltd)
RME DIGICheck (HKLM-x32\...\{872BD2A4-7CB6-4692-A74E-99ABA11DED75}) (Version: 580rel - RME)
RME Fireface USB (HKLM\...\FIREFACE_USB) (Version: 1.0.89.0 - RME Intelligent Audio Solutions)
SHIELD Streaming (Version: 3.1.3000 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 16.18.9 - NVIDIA Corporation) Hidden
Skype™ 7.7 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.7.103 - Skype Technologies S.A.)
Softube Acoustic Feedback VST RTAS v1.0.7 (HKLM-x32\...\Softube Acoustic Feedback VST RTAS_is1) (Version: - )
Softube Bass Amp Room VST RTAS v1.0.2 (HKLM-x32\...\Softube Bass Amp Room VST RTAS_is1) (Version: - )
Softube FET Compressor VST RTAS v1.0.3 (HKLM-x32\...\Softube FET Compressor VST RTAS_is1) (Version: - )
Softube Metal Amp Room VST RTAS v1.1.5 (HKLM-x32\...\Softube Metal Amp Room VST RTAS_is1) (Version: - )
Softube Passive-Active Pack VST RTAS v1.0.2 (HKLM-x32\...\Softube Passive-Active Pack VST RTAS_is1) (Version: - )
Softube Plug-Ins (VST AAX 32-bit) (HKLM-x32\...\Softube Plug-Ins (VST AAX 32-bit)) (Version: 2.2.84 - Softube AB)
Softube Plug-Ins (VST AAX 64-bit) (HKLM\...\Softube Plug-Ins (VST AAX 64-bit)) (Version: 2.2.84 - Softube AB)
Softube Spring Reverb VST RTAS v1.0.4 (HKLM-x32\...\Softube Spring Reverb VST RTAS_is1) (Version: - )
Softube Tonelux Tilt VST RTAS v1.0 (HKLM-x32\...\Softube Tonelux Tilt_is1) (Version: - )
Softube Trident A-Range VST RTAS v1.0.2 (HKLM-x32\...\Softube Trident A-Range VST RTAS_is1) (Version: - )
Softube Tube Delay VST RTAS v1.0.5 (HKLM-x32\...\Softube Tube Delay VST RTAS_is1) (Version: - )
Softube Tube-Tech CL 1B VST RTAS v1.0.3 (HKLM-x32\...\Softube Tube-Tech CL 1B VST RTAS_is1) (Version: - )
Softube Tube-Tech PE 1C VST RTAS v1.0.1 (HKLM-x32\...\Softube Tube-Tech PE 1C_is1) (Version: - )
Softube Valley People Dyna-mite VST RTAS v1.0.1 (HKLM-x32\...\Softube Valley People Dyna-mite VST RTAS_is1) (Version: - )
Softube Vintage Amp Room VST RTAS v1.05 (HKLM-x32\...\Softube Vintage Amp Room VST RTAS_is1) (Version: - )
Sonnox Fraunhofer Codec Toolbox v1.0.6 (HKLM\...\Sonnox Fraunhofer Codec Toolbox v1.0.6_is1) (Version: 1.0.6 - Sonnox Ltd, Oxford, UK)
Sonnox Oxford Inflator Native VST v1.5.1 (HKLM-x32\...\Sonnox Oxford Inflator Native VST_is1) (Version: - Team AiR 2007)
Sonnox Oxford Limiter Native VST v1.1.1 (HKLM-x32\...\Sonnox Oxford Limiter Native VST_is1) (Version: - Team AiR 2007)
Sonnox Oxford R3 Dynamics Native VST v1.3.1 (HKLM-x32\...\Sonnox Oxford R3 Dynamics Native VST_is1) (Version: - Team AiR 2007)
Sonnox Oxford R3 EQ Native VST v1.6.1 (HKLM-x32\...\Sonnox Oxford R3 EQ Native VST_is1) (Version: - Team AiR 2007)
Sonnox Oxford Reverb Native VST v1.0 (HKLM-x32\...\Sonnox Oxford Reverb Native VST_is1) (Version: - Team AiR 2007)
Sonnox Oxford TransMod Native VST v1.3.1 (HKLM-x32\...\Sonnox Oxford TransMod Native VST_is1) (Version: - Team AiR 2007)
SoundToys Devil-Loc Deluxe - Academic 32 bit (HKLM-x32\...\Devil-Loc Deluxe - Academic 32 bit_is1) (Version: - SoundToys Inc)
SoundToys Little AlterBoy 32 bit (HKLM-x32\...\Little AlterBoy 32 bit_is1) (Version: - SoundToys Inc)
SoundToys NTV FX V4 - Academic V4 32 bit (HKLM-x32\...\SoundToys NTV FX V4 - Academic V4 32 bit_is1) (Version: - SoundToys Inc)
SpectraLayers Pro 3.0 (HKLM\...\{A2C0EF4C-F8DA-44E1-9D2F-9BFE1B8D3860}) (Version: 3.0.27 - Sony)
SPL Analog Code EQ Rangers Volume One VST RTAS v1.1 (HKLM-x32\...\SPL Analog Code EQ Rangers Volume One VST RTAS_is1) (Version: - )
SPL Analog Code MicroPlugs VST RTAS v1.1 (HKLM-x32\...\SPL Analog Code MicroPlugs VST RTAS_is1) (Version: - )
SPL Analog Code Transient Designer VST RTAS v1.1 (HKLM-x32\...\SPL Analog Code Transient Designer VST RTAS_is1) (Version: - )
SPL Analog Code TwinTube Processor VST RTAS v1.1 (HKLM-x32\...\SPL Analog Code TwinTube Processor VST RTAS_is1) (Version: - )
SPL Analog Code Vitalizer MK2-T VST RTAS v1.1 (HKLM-x32\...\SPL Analog Code Vitalizer MK2-T VST RTAS_is1) (Version: - )
Spotify (HKU\S-1-5-21-3719051794-263782235-1391171954-1000\...\Spotify) (Version: 1.0.36.124.g1cba1920 - Spotify AB)
StatMaker (HKLM-x32\...\{12DA0E6F-5543-440C-BAA2-28BF01070AFA}{78b2995}) (Version: - Software Publisher) <==== ACHTUNG
Steinberg Cubase 7 (HKLM-x32\...\{36035C23-2361-495A-9AE9-D1FF9A9F70B7}) (Version: 7.0.7 - Steinberg Media Technologies GmbH)
Steinberg Cubase 7.5 (HKLM-x32\...\{C75F4809-1E91-49F4-8093-45D9B053E89D}) (Version: 7.5.30 - Steinberg Media Technologies GmbH)
Steinberg Drum Loop Expansion 01 (HKLM-x32\...\{490BF87E-1F75-4453-BF55-9F540543A3CA}) (Version: 2.0.0.0 - Steinberg Media Technologies GmbH)
Steinberg EDM Toolbox MIDI Loops (HKLM-x32\...\{8C9B2EA8-9A30-4347-95E9-10E919C4F32E}) (Version: 1.0.0 - Steinberg Media Technologies GmbH)
Steinberg Groove Agent ONE Allen Morgan Signature Drums (HKLM-x32\...\{611A7035-0172-4B9B-8BB6-5046F6867D8A}) (Version: 1.0.0 - Steinberg Media Technologies GmbH)
Steinberg Groove Agent ONE Content (HKLM-x32\...\{BD86F1AC-B594-46E4-85DC-1258AC9E2232}) (Version: 1.0.0.003 - Steinberg Media Technologies GmbH)
Steinberg Groove Agent ONE Vintage Beatboxes (HKLM-x32\...\{DBF4BC99-53F1-4C97-84C3-7557D103E182}) (Version: 1.0.0.000 - Steinberg Media Technologies GmbH)
Steinberg Groove Agent SE (HKLM-x32\...\{A6790D47-D653-4B88-BED4-96878DBE5191}) (Version: 4.0.0 - Steinberg Media Technologies GmbH)
Steinberg Groove Agent SE Content (HKLM-x32\...\{AFC9D1CE-F050-437C-35A5-62DEDB262DC7}) (Version: 1.0.0 - Steinberg Media Technologies GmbH)
Steinberg HALion Sonic SE 64bit (HKLM\...\{B99C316B-C135-43B5-8E77-2BC5E241F964}) (Version: 1.6.1 - Steinberg Media Technologies GmbH)
Steinberg HALion Sonic SE Content (HKLM-x32\...\{A5051ABF-A497-4C3C-85EA-F7A4D5C19B82}) (Version: 1.6.1 - Steinberg Media Technologies GmbH)
Steinberg LoopMash Content (HKLM-x32\...\{4D454CF8-12FD-464D-B57B-B46FE27B78BB}) (Version: 2.0.0.000 - Steinberg Media Technologies GmbH)
Steinberg LoopMash Content 2 (HKLM-x32\...\{88C337F0-4CF2-4098-BDC0-D94859ECA2B4}) (Version: 1.0.0.000 - Steinberg Media Technologies GmbH)
Steinberg Midi Loop Library (HKLM-x32\...\{89DE2651-6DD9-4C15-AC94-8348362D456C}) (Version: 1.0.0 - Steinberg Media Technologies GmbH)
Steinberg Retrologue (HKLM-x32\...\{0EB4D2B3-9410-4FB7-AD46-C48CE45B9498}) (Version: 1.1.0 - Steinberg Media Technologies GmbH)
Steinberg Retrologue 64bit (HKLM\...\{4D65ECE6-131D-4B5F-8470-2750D3161619}) (Version: 1.1.0 - Steinberg Media Technologies GmbH)
Steinberg REVerence Content 01 (HKLM-x32\...\{532B917B-8235-4FA5-BE36-643A8BB053A5}) (Version: 2.0.1.000 - Steinberg Media Technologies GmbH)
Steinberg SLM128 Plug-in (HKLM-x32\...\{AE480357-42F7-4A6E-8F6E-8BC888335662}) (Version: 1.0.0 - Steinberg Media Technologies GmbH)
Steinberg Upload Manager (HKLM-x32\...\{88BBBD8F-4C19-4809-B84B-7A8F8238B48D}) (Version: 1.0.1 - Steinberg Media Technologies GmbH)
Steinberg VST Amp Rack Content 01 (HKLM-x32\...\{8CBA7E47-48DA-47DC-8E98-6984BA830295}) (Version: 1.0.1 - Steinberg Media Technologies GmbH)
Sylenth1 v2.21 (HKLM-x32\...\Sylenth1_is1) (Version: - )
TC Native Bundle v3.1 (HKLM-x32\...\TC Native Bundle v3.1) (Version: - )
TruePianos (HKLM-x32\...\TruePianos1.9.1) (Version: 1.9.1 - Team Audio Pirate)
UAD drivers. This may take a while... (x32 Version: 8.3.0.12204 - Universal Audio, Inc.) Hidden
UAD Powered Plug-Ins (HKLM-x32\...\{2bb81ba6-3983-42d3-b120-f5c4ea6e7a69}) (Version: 8.3.0.12204 - Universal Audio, Inc.)
UAD Powered Plug-Ins (Version: 8.3.0.12204 - Universal Audio, Inc.) Hidden
UAD Powered Plug-Ins (x32 Version: 8.3.0.12204 - Universal Audio, Inc.) Hidden
Urban Redline version 1.0.0 (HKLM-x32\...\{D3EFBCE5-6D4A-4C35-9BA2-7B348C4F75C6}_is1) (Version: 1.0.0 - StudioLinkedVST)
Vengeance Producer Suite - Glitch Bitch 1.0.3 (HKLM-x32\...\{67715E04-59FB-442A-9A23-76F9C0F0D78D}_is1) (Version: - keilwerth Audio / Vengeance Sound)
Vengeance Producer Suite - Scope 1.0.4 (HKLM-x32\...\{8BB53BA8-F9CC-4A53-A498-1AF91D040F63}_is1) (Version: - keilwerth Audio / Vengeance Sound)
Vengeance Producer Suite - TapeStop 1.0.1 (HKLM-x32\...\{24293F25-0C00-4DD9-8DCD-257E415FF5E4}_is1) (Version: - keilwerth Audio / Vengeance Sound)
VIRTU 1.0.0 (HKLM\...\VIRTU_is1) (Version: 1.0.0 - Lucidlogix Technologies LTD)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.1 - VideoLAN)
Vocaloid4 4.2.0 Free Edition (HKLM-x32\...\Vocaloid4 4.2.0 Free Edition_is1) (Version: Vocaloid4 4.2.0 Free Edition - )
WaveLab 8.5 (HKLM-x32\...\WaveLabPro8_5) (Version: 8.5.0.849 - Steinberg)
Waves Central 1.2.0.5 (HKLM-x32\...\{94000200-C561-4E32-99EB-3C5AD3683A70}_is1) (Version: 1.2.0 - Waves, Inc.)
Winamp (HKLM-x32\...\Winamp) (Version: 5.666 - Nullsoft, Inc)
Windows-Treiberpaket - RME Fireface USB (09/25/2014 1.0.59.0) (HKLM\...\00D7567917C0AF25A47D48DB1D9D837D1FA3A6EF) (Version: 09/25/2014 1.0.59.0 - RME)
Windows-Treiberpaket - RME Fireface USB (09/28/2015 1.0.89.0) (HKLM\...\006E5C2559FCDEE2337C96635F803548D87253B8) (Version: 09/28/2015 1.0.89.0 - RME)
WinRAR 5.11 (32-Bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.11.0 - win.rar GmbH)
Yamaha MOTIF XF Editor Standalone/VST (HKLM-x32\...\Yamaha MOTIF XF Editor Standalone_VST) (Version: 1.6.4 - Yamaha Corporation)
Yamaha USB-MIDI Driver (HKLM-x32\...\InstallShield_{2D488455-3E89-49EF-BA6E-92C2503DC89D}) (Version: 3.1.4.1 - Yamaha Corporation)
Yamaha USB-MIDI Driver (Version: 3.1.4.1 - Yamaha Corporation) Hidden
Yamaha YC-3B (HKLM-x32\...\Yamaha YC-3B) (Version: 1.1.2.7 - Yamaha Corporation)
YTD Video Downloader 4.8.7 (HKLM-x32\...\{1a413f37-ed88-4fec-9666-5c48dc4b7bb7}) (Version: 4.8.7 - GreenTree Applications SRL) <==== ACHTUNG
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
CustomCLSID: HKU\S-1-5-21-3719051794-263782235-1391171954-1000_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\DJRISOW\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-3719051794-263782235-1391171954-1000_Classes\CLSID\{ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C}\InprocServer32 -> C:\Users\DJRISOW\AppData\Roaming\Dropbox\bin\DropboxExt64.43.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-3719051794-263782235-1391171954-1000_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\DJRISOW\AppData\Roaming\Dropbox\bin\DropboxExt64.43.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-3719051794-263782235-1391171954-1000_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\DJRISOW\AppData\Roaming\Dropbox\bin\DropboxExt64.43.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-3719051794-263782235-1391171954-1000_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\DJRISOW\AppData\Roaming\Dropbox\bin\DropboxExt64.43.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-3719051794-263782235-1391171954-1000_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\DJRISOW\AppData\Roaming\Dropbox\bin\DropboxExt64.43.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-3719051794-263782235-1391171954-1000_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\DJRISOW\AppData\Roaming\Dropbox\bin\DropboxExt64.43.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-3719051794-263782235-1391171954-1000_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\DJRISOW\AppData\Roaming\Dropbox\bin\DropboxExt64.43.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-3719051794-263782235-1391171954-1000_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\DJRISOW\AppData\Roaming\Dropbox\bin\DropboxExt64.43.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-3719051794-263782235-1391171954-1000_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\DJRISOW\AppData\Roaming\Dropbox\bin\DropboxExt64.43.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-3719051794-263782235-1391171954-1000_Classes\CLSID\{FB314EE1-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\DJRISOW\AppData\Roaming\Dropbox\bin\DropboxExt64.43.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-3719051794-263782235-1391171954-1000_Classes\CLSID\{FB314EE2-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\DJRISOW\AppData\Roaming\Dropbox\bin\DropboxExt64.43.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-3719051794-263782235-1391171954-1000_Classes\CLSID\{FBC9D74C-AF55-4309-9FB2-C426E071637F}\InprocServer32 -> C:\Users\DJRISOW\AppData\Roaming\Dropbox\bin\DropboxExt64.43.dll (Dropbox, Inc.)
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {0B2B063B-2A11-4822-B698-F4DA47ABAB3E} - System32\Tasks\{1108DAF6-0B6D-415E-8098-991D5C5E4332} => pcalua.exe -a "C:\Users\DJRISOW\Desktop\LicenseSupportInstallerWin32\LicenseSupportInstallerWin32_v2.6.0_r31206\Extras\Drivers Only Win32.exe" -d C:\Users\DJRISOW\Desktop\LicenseSupportInstallerWin32\LicenseSupportInstallerWin32_v2.6.0_r31206\Extras
Task: {10EC825C-424F-42F0-AA8E-BCCFB2EEE222} - System32\Tasks\{FBEFE4EF-A1EB-4046-9851-05B3F6CA41B6} => pcalua.exe -a "C:\Users\DJRISOW\Desktop\Trilogy 1\setup.exe" -d "C:\Users\DJRISOW\Desktop\Trilogy 1"
Task: {12393805-183A-47C2-8E2F-4582475E82E6} - System32\Tasks\{6CD77EC8-DF1C-4689-B06F-5255DA18BE89} => pcalua.exe -a "C:\Users\DJRISOW\Desktop\SPL Plug IN\SPL.Analog.Code.Vitalizer.MK2-T.VST.RTAS.v1.1-AiR\setup.exe" -d "C:\Users\DJRISOW\Desktop\SPL Plug IN\SPL.Analog.Code.Vitalizer.MK2-T.VST.RTAS.v1.1-AiR"
Task: {1FC46C5C-7009-476F-BCE4-001B40059A84} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 35 => C:\Program Files (x86)\Lenovo\Customer Feedback Program 35\Lenovo.TVT.CustomerFeedback.Agent35.exe [2014-09-10] (Lenovo)
Task: {2CAA340D-8BC3-48EF-834C-FE9301F7CE17} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-07-12] (Adobe Systems Incorporated)
Task: {2D00D03A-D857-48E5-9410-89A5AD96CCF9} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-07-14] (Google Inc.)
Task: {3BF30B5D-2D9D-496A-A616-F07DD2C2BAB0} - System32\Tasks\MoneyAid => c:\programdata\{c7a44e16-5238-3458-c7a4-44e165233859}\46636783372506569b.exe <==== ACHTUNG
Task: {3E3F374D-BA6D-4428-BE2E-46B14E74294C} - System32\Tasks\DropboxUpdateTaskUserS-1-5-21-3719051794-263782235-1391171954-1000Core => C:\Users\DJRISOW\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2015-05-26] (Dropbox, Inc.)
Task: {43B3DFAF-18C5-43EF-8447-9FBDFFCA836D} - System32\Tasks\{41CB1303-D609-416E-AF25-B7C15E8803FA} => pcalua.exe -a "C:\Users\DJRISOW\Desktop\MashTactic_1_01b_VST_WIN_32\MashTactic 32 bit.exe" -d C:\Users\DJRISOW\Desktop\MashTactic_1_01b_VST_WIN_32
Task: {440D1C3C-2CE5-45CD-8C74-84838C1428FE} - System32\Tasks\{5B2D4183-0908-45A0-A571-6AF5A2ED277F} => Chrome.exe hxxp://ui.skype.com/ui/0/7.8.0.102/de/abandoninstall?page=tsProgressBar
Task: {4B0AE892-8B0A-4DF7-813D-9AB5C5B31333} - System32\Tasks\DropboxUpdateTaskUserS-1-5-21-3719051794-263782235-1391171954-1000UA => C:\Users\DJRISOW\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2015-05-26] (Dropbox, Inc.)
Task: {6FE440FC-02C5-4CBB-8DD5-2E042579D4A3} - System32\Tasks\Amazon Music Helper => C:\Users\DJRISOW\AppData\Local\Amazon Music\Amazon Music Helper.exe [2015-05-07] ()
Task: {75DCD3A4-42FD-4FB8-A2D2-D47109319994} - System32\Tasks\{8BC659D3-3A92-46A0-B95F-FEFF74F2860D} => Chrome.exe hxxp://ui.skype.com/ui/0/7.1.0.105/de/abandoninstall?source=lightinstaller&page=tsPlugin
Task: {A222371D-68B2-47D6-90ED-3F2CABCB49FC} - System32\Tasks\Nero\Nero Info => C:\Program Files (x86)\Common Files\Nero\Nero Info\NeroInfo.exe [2014-07-21] (Nero AG)
Task: {A428F1BE-BA9B-4C64-8019-5031C0D807A0} - System32\Tasks\{27A4F59A-2409-47BA-9136-C78F3B45E88B} => pcalua.exe -a C:\Users\DJRISOW\Desktop\Sylenth.Komplete.pack.win.32.64.and.mac\Lennar.Digital.Sylenth1.VSTi.v2.2.1.1.x86.PROPER-VTX\VTXSetup.exe -d C:\Users\DJRISOW\Desktop\Sylenth.Komplete.pack.win.32.64.and.mac\Lennar.Digital.Sylenth1.VSTi.v2.2.1.1.x86.PROPER-VTX
Task: {AEC6E0CA-8A81-46A7-9FAF-61F0D1412344} - System32\Tasks\RenderOrder => c:\programdata\{b7f36c97-33d6-c1e9-b7f3-36c9733db25c}\229690953678597325b.exe <==== ACHTUNG
Task: {C251711A-EA91-4AAF-B021-07ABF3493E8C} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-07-14] (Google Inc.)
Task: {CA0EE166-88A1-4E3C-9236-4F6B91AB37BF} - System32\Tasks\ReimageUpdater => C:\Program Files\Reimage\Reimage Protector\ReiGuard.exe [2016-09-01] (Reimage®) <==== ACHTUNG
Task: {D2BC4002-EAA3-401C-BE45-21E643CF76F8} - System32\Tasks\{56DEFA2F-544F-40E2-95A8-7272E3A15E1A} => pcalua.exe -a "C:\Users\DJRISOW\Desktop\reFX Nexus 2.6.5 Installer\reFX Nexus 2.6.5 Installer.exe" -d "C:\Users\DJRISOW\Desktop\reFX Nexus 2.6.5 Installer"
Task: {D5492631-2F65-46C0-8FA4-265F9AB1C620} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2016-02-23] (Apple Inc.)
Task: {D78EDF4E-0479-4FFC-8A34-94092F0B6A75} - System32\Tasks\{321D1C11-F63E-4FD4-8373-A7FAA7B24AE1} => pcalua.exe -a "C:\Users\DJRISOW\Desktop\Camel Audio\CamelCrusher\CamelCrusherWin\CamelCrusherWin_v1_41.exe" -d "C:\Users\DJRISOW\Desktop\Camel Audio\CamelCrusher\CamelCrusherWin"
Task: {E867034F-0A55-41DA-BE74-395CBCEC9060} - System32\Tasks\VacayExpert => c:\programdata\{be255c64-d4cc-e651-be25-55c64d4c7193}\8360891445966462720c.exe <==== ACHTUNG
Task: {F9F1B268-7AA2-4E89-83C0-2E1CF09B3604} - System32\Tasks\{9BF739CE-7F67-47B9-9E2F-85B340231283} => pcalua.exe -a C:\Users\DJRISOW\Desktop\ProDAD.Vitascene.1.0.34.full.+.license-izmael.z6\vitascene-10-service.34.exe -d C:\Users\DJRISOW\Desktop\ProDAD.Vitascene.1.0.34.full.+.license-izmael.z6
Task: {FA7807BC-12A5-48C5-BB60-F5AB6E795643} - System32\Tasks\DogWiz => c:\programdata\{bc928ba6-4019-a2d6-bc92-28ba64012e99}\8313796287343420975b.exe <==== ACHTUNG
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\DogWiz.job => c:\programdata\{bc928ba6-4019-a2d6-bc92-28ba64012e99}\8313796287343420975b.exe <==== ACHTUNG
Task: C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-3719051794-263782235-1391171954-1000Core.job => C:\Users\DJRISOW\AppData\Local\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-3719051794-263782235-1391171954-1000UA.job => C:\Users\DJRISOW\AppData\Local\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\MoneyAid.job => c:\programdata\{c7a44e16-5238-3458-c7a4-44e165233859}\46636783372506569b.exe <==== ACHTUNG
Task: C:\Windows\Tasks\RenderOrder.job => c:\programdata\{b7f36c97-33d6-c1e9-b7f3-36c9733db25c}\229690953678597325b.exe <==== ACHTUNG
Task: C:\Windows\Tasks\VacayExpert.job => c:\programdata\{be255c64-d4cc-e651-be25-55c64d4c7193}\8360891445966462720c.exe <==== ACHTUNG
==================== Verknüpfungen =============================
(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)
==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============
2011-03-20 18:33 - 2015-01-10 01:29 - 00117392 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2016-03-18 22:56 - 2016-03-18 22:56 - 00092472 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2016-03-18 22:56 - 2016-03-18 22:56 - 01329936 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2014-11-10 00:13 - 2011-04-10 04:40 - 00094208 _____ () C:\Windows\System32\IccLibDll_x64.dll
2014-11-15 22:41 - 2015-05-07 21:12 - 05886784 _____ () C:\Users\DJRISOW\AppData\Local\Amazon Music\Amazon Music Helper.exe
2015-07-10 05:18 - 2015-07-10 05:18 - 03822592 _____ () C:\Program Files (x86)\Universal Audio\Powered Plugins\UADPerfMon.exe
2016-09-07 11:33 - 2016-08-31 04:16 - 02280264 _____ () C:\Program Files (x86)\Google\Chrome\Application\53.0.2785.89\libglesv2.dll
2016-09-07 11:33 - 2016-08-31 04:16 - 00107848 _____ () C:\Program Files (x86)\Google\Chrome\Application\53.0.2785.89\libegl.dll
2016-09-07 11:33 - 2016-08-31 04:02 - 31541952 _____ () C:\Program Files (x86)\Google\Chrome\Application\53.0.2785.89\PepperFlash\pepflashplayer.dll
2014-08-19 10:41 - 2014-08-19 10:41 - 00507904 _____ () C:\Program Files (x86)\Canon\EOS Utility\EDSDK.dll
2015-07-10 05:18 - 2015-07-10 05:18 - 00210432 _____ () C:\Windows\system32\UAD2DriverClient.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)
AlternateDataStreams: C:\ProgramData:6B2C3EB805B95CCC [217]
AlternateDataStreams: C:\Users\All Users:6B2C3EB805B95CCC [217]
AlternateDataStreams: C:\ProgramData\Anwendungsdaten:6B2C3EB805B95CCC [217]
AlternateDataStreams: C:\ProgramData\Application Data:6B2C3EB805B95CCC [217]
AlternateDataStreams: C:\ProgramData\Microsoft:bWhQTYmHnUwCcDFr5ov15FqfcV9 [2726]
AlternateDataStreams: C:\ProgramData\Microsoft:eVdL2mVh673hCgxr1LXcqVv55 [2840]
AlternateDataStreams: C:\ProgramData\Microsoft:gCZ2LhBJ8frRzo1YofAhcf [2734]
AlternateDataStreams: C:\ProgramData\Microsoft:KHykLmkveNUq7cpFmmPtm9 [2620]
AlternateDataStreams: C:\Users\DJRISOW\Cookies:SdVE5Q7NfcdezCrytWaKUBUVaKY [2782]
AlternateDataStreams: C:\Users\DJRISOW\AppData\Local\Temp:qdisXcMkdZPdftz2H4CgjzCU [2768]
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
==================== Verknüpfungen (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)
==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
==================== Hosts Inhalt: ===============================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2009-07-14 04:34 - 2009-06-10 23:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts
==================== Andere Bereiche ============================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKU\S-1-5-21-3719051794-263782235-1391171954-1000\Control Panel\Desktop\\Wallpaper ->
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 0)
Windows Firewall ist deaktiviert.
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [{B55AB98D-ACFD-4A22-A53D-0DF0B96FE528}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
FirewallRules: [{7FF1BA73-5B27-48F6-BE58-4F0EEB253DD7}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
FirewallRules: [{7345A4DF-0F31-4A1F-A1D4-60F147DD33E8}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe
FirewallRules: [{B5366FA0-6E7B-415F-BDE2-FC28CDA26D50}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe
FirewallRules: [{E20726DF-246C-4377-B925-318DAB47BD6A}] => (Allow) C:\Program Files (x86)\Steinberg\Cubase 7\Cubase7.exe
FirewallRules: [{D29F8D7D-4E03-4B9D-BD67-3186DDAECB87}] => (Allow) LPort=51113
FirewallRules: [{1840CACE-5DD4-4413-8A1D-43C0A0377C6F}] => (Allow) LPort=51112
FirewallRules: [{9A4C5AB9-75EB-4969-8D8C-234885DE7ED3}] => (Allow) LPort=51111
FirewallRules: [{643CC436-3F6D-4182-801D-238C1678350C}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{E2A57DE4-85E0-4B2F-9D57-E29081A3A7E9}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{9519D502-62E3-4B5E-AF7B-553E5FEE0DDC}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
FirewallRules: [{CAEA284F-404A-42EB-B7F6-814D427F6FD0}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
FirewallRules: [{C98F8DB6-0FA1-4038-83C7-EFEFBECCC26C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{FDFF62E5-A487-4077-9346-87184F9A7347}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{A067515B-3996-4CEA-BB79-B1953BA57A07}] => (Allow) C:\Users\DJRISOW\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [{FE70B238-0E43-42A4-BA78-74E81E28866A}] => (Allow) C:\Users\DJRISOW\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [{CE802A6E-80DD-487C-946D-B7200E4F4940}] => (Allow) C:\Program Files\Avid\Pro Tools\AvidVideoEngine.exe
FirewallRules: [{797844F8-B4D1-45C7-BF1B-CA8D328F1FFB}] => (Allow) C:\Program Files (x86)\Nero\Nero 2015\Nero Burning ROM\StartNBR.exe
FirewallRules: [{54C40395-E62F-4FE9-A714-6D2800CFBAFF}] => (Allow) C:\Program Files (x86)\Nero\Nero 2015\Nero Burning ROM\nero.exe
FirewallRules: [{FDEC6D20-06F0-431B-AEF6-F576C398B31B}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\Video Download Capture.exe
FirewallRules: [{A216A15B-AEE7-4E86-BDBE-1D2C267D4980}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\Video Download Capture.exe
FirewallRules: [{603EFEB1-90ED-4137-9591-3FA02C9556B5}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\ApowersoftSrv.dll
FirewallRules: [{63EFEE55-3A72-49AE-AE61-017BC09A2B79}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\ApowersoftSrv.dll
FirewallRules: [{0702FDCD-7784-4BB9-ABAA-004678E5E1A2}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\ApowersoftDump.dll
FirewallRules: [{868E996D-2023-4E9D-AE43-6B733985BECB}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\ApowersoftDump.dll
FirewallRules: [{2C3679F5-2BED-4CB0-B5EA-B8651A2D07CC}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\ApowersoftAC.dll
FirewallRules: [{96DC6CBC-AC15-4D6E-B35D-B697C2560172}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\ApowersoftAC.dll
FirewallRules: [{33BDA654-DF43-4A84-B67E-59A1CF99D84D}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\ApowersoftPlayer.dll
FirewallRules: [{61406790-20DB-4188-93D4-AEAAD73AB630}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\ApowersoftPlayer.dll
FirewallRules: [{336A9018-5966-4438-A422-4F87738BFE0B}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\ApowersoftDownloaderHelp.dll
FirewallRules: [{8178ED61-5F5F-42BD-B440-F095CAC49EBF}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\ApowersoftDownloaderHelp.dll
FirewallRules: [{13CD9E28-F7A8-48C1-9E0F-B37D634145DC}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\ApowersoftHDSDump.dll
FirewallRules: [{834AEA8C-0363-42DD-B9A6-966B505E41E0}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\ApowersoftHDSDump.dll
FirewallRules: [{C5F86465-F79A-449E-AC32-67F964C5C618}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{2763103C-2689-45B3-B125-C5936EA18D35}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{F5586403-2940-45CA-ADDD-083BA2AB4DBB}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{00860453-F86F-4656-866B-94EE10E7DC72}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{4E407978-B2FC-4D6D-9160-0E5DB8176989}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{9DE48FED-1D74-4EC2-9320-ECDC7DD2BA68}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{5CF993E1-AE10-4976-9B45-959193A5F776}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{ACC51843-3EFA-4282-BAA9-E689137ACBAF}] => (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [{C90745A8-F4A3-4041-B763-B29B8B19CDCB}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Wiederherstellungspunkte =========================
05-09-2016 18:22:19 Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005
05-09-2016 18:22:58 Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005
==================== Fehlerhafte Geräte im Gerätemanager =============
==================== Fehlereinträge in der Ereignisanzeige: =========================
Applikationsfehler:
==================
Error: (09/07/2016 06:10:39 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Ereignisfilter mit Abfrage "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" konnte im Namespace "//./root/CIMV2" nicht reaktiviert werden aufgrund des Fehlers 0x80041003. Ereignisse können nicht durch diesen Filter geschickt werden, bis dieses Problem gelöst ist.
Error: (09/07/2016 11:48:50 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Ereignisfilter mit Abfrage "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" konnte im Namespace "//./root/CIMV2" nicht reaktiviert werden aufgrund des Fehlers 0x80041003. Ereignisse können nicht durch diesen Filter geschickt werden, bis dieses Problem gelöst ist.
Error: (09/07/2016 11:43:04 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Ereignisfilter mit Abfrage "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" konnte im Namespace "//./root/CIMV2" nicht reaktiviert werden aufgrund des Fehlers 0x80041003. Ereignisse können nicht durch diesen Filter geschickt werden, bis dieses Problem gelöst ist.
Error: (09/07/2016 11:30:35 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Ereignisfilter mit Abfrage "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" konnte im Namespace "//./root/CIMV2" nicht reaktiviert werden aufgrund des Fehlers 0x80041003. Ereignisse können nicht durch diesen Filter geschickt werden, bis dieses Problem gelöst ist.
Error: (09/07/2016 11:11:50 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Ereignisfilter mit Abfrage "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" konnte im Namespace "//./root/CIMV2" nicht reaktiviert werden aufgrund des Fehlers 0x80041003. Ereignisse können nicht durch diesen Filter geschickt werden, bis dieses Problem gelöst ist.
Error: (09/07/2016 10:57:03 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Ereignisfilter mit Abfrage "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" konnte im Namespace "//./root/CIMV2" nicht reaktiviert werden aufgrund des Fehlers 0x80041003. Ereignisse können nicht durch diesen Filter geschickt werden, bis dieses Problem gelöst ist.
Error: (09/07/2016 10:56:19 AM) (Source: NvStreamSvc) (EventID: 2001) (User: )
Description: Event-ID 2001
Error: (09/07/2016 10:56:19 AM) (Source: NvStreamSvc) (EventID: 2001) (User: )
Description: Event-ID 2001
Error: (09/07/2016 10:56:19 AM) (Source: NvStreamSvc) (EventID: 2001) (User: )
Description: Event-ID 2001
Error: (09/07/2016 10:35:13 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Ereignisfilter mit Abfrage "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" konnte im Namespace "//./root/CIMV2" nicht reaktiviert werden aufgrund des Fehlers 0x80041003. Ereignisse können nicht durch diesen Filter geschickt werden, bis dieses Problem gelöst ist.
Systemfehler:
=============
Error: (09/07/2016 06:09:18 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen:
cdrom
Error: (09/07/2016 06:09:09 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Windows-Connectivity für Gramblr." wurde aufgrund folgenden Fehlers nicht gestartet:
Das System kann die angegebene Datei nicht finden.
Error: (09/07/2016 06:09:06 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Angry Family" wurde aufgrund folgenden Fehlers nicht gestartet:
Das System kann die angegebene Datei nicht finden.
Error: (09/07/2016 11:48:10 AM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen:
cdrom
Error: (09/07/2016 11:48:00 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Windows-Connectivity für Gramblr." wurde aufgrund folgenden Fehlers nicht gestartet:
Das System kann die angegebene Datei nicht finden.
Error: (09/07/2016 11:47:57 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Angry Family" wurde aufgrund folgenden Fehlers nicht gestartet:
Das System kann die angegebene Datei nicht finden.
Error: (09/07/2016 11:47:52 AM) (Source: BugCheck) (EventID: 1001) (User: )
Description: Der Computer wurde nach einem schwerwiegenden Fehler neu gestartet. Der Fehlercode war: 0x0000007e (0xffffffffc0000005, 0xfffff8800662d3a1, 0xfffff8800305a838, 0xfffff8800305a090). Ein volles Abbild wurde gespeichert in: C:\Windows\MEMORY.DMP. Berichts-ID: 090716-44943-01.
Error: (09/07/2016 11:47:12 AM) (Source: EventLog) (EventID: 6008) (User: )
Description: Das System wurde zuvor am 07.09.2016 um 11:45:12 unerwartet heruntergefahren.
Error: (09/07/2016 11:42:02 AM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen:
cdrom
Error: (09/07/2016 11:41:38 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Windows-Connectivity für Gramblr." wurde aufgrund folgenden Fehlers nicht gestartet:
Das System kann die angegebene Datei nicht finden.
==================== Speicherinformationen ===========================
Prozessor: Intel(R) Core(TM) i5-2500K CPU @ 3.30GHz
Prozentuale Nutzung des RAM: 19%
Installierter physikalischer RAM: 16296.59 MB
Verfügbarer physikalischer RAM: 13089.05 MB
Summe virtueller Speicher: 32591.37 MB
Verfügbarer virtueller Speicher: 29341.28 MB
==================== Laufwerke ================================
Drive c: () (Fixed) (Total:931.29 GB) (Free:82.66 GB) NTFS
Drive d: (AUDIO ) (Fixed) (Total:1863.01 GB) (Free:532.05 GB) NTFS
Drive e: (Video Ordner) (Fixed) (Total:465.76 GB) (Free:192.7 GB) NTFS
Drive h: (Ohne Titel) (Removable) (Total:7.21 GB) (Free:6.18 GB) exFAT
==================== MBR & Partitionstabelle ==================
========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: 221A9391)
Partition: GPT.
========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 1863 GB) (Disk ID: D753B374)
Partition 1: (Not Active) - (Size=1863 GB) - (Type=07 NTFS)
========================================================
Disk: 2 (Size: 931.5 GB) (Disk ID: 221A939D)
Partition: GPT.
========================================================
Disk: 3 (Size: 7.2 GB) (Disk ID: 00000000)
Partition: GPT.
==================== Ende von Addition.txt ============================
|
|
08.09.2016, 09:01
| #5 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Google Chrome öffnet ständig Spam Seiten! Lade Dir bitte von hier  Revo Uninstaller (alternativ portable Revo Uninstaller) herunter.
__________________ Logfiles bitte immer in CODE-Tags posten  |
|
08.09.2016, 09:39
| #6 |
| | Google Chrome öffnet ständig Spam Seiten! So danke erstmal, habe das alles deinstalliert und auch so gemacht wie du es aufgeschrieben hast! Neugestartet die Kiste, trotzdem blockiert Malware ständig seiten und es gehen zich Seiten immer wieder auf! |
|
08.09.2016, 10:09
| #7 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Google Chrome öffnet ständig Spam Seiten! Es wurde auch nicht geschrieben, dass danach alles wieder ok sei. Malwarebytes Anti-Rootkit (MBAR) Downloade dir bitte  Malwarebytes Anti-Rootkit und speichere es auf deinem Desktop.
Starte keine andere Datei in diesem Ordner ohne Anweisung eines Helfers Lesestoff:Posten in CODE-Tags Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR oder 7Z-Archiv zu packen erschwert mir massiv die Arbeit. Auch wenn die Logs für einen Beitrag zu groß sein sollten, bitte ich dich die Logs direkt und notfalls über mehrere Beiträge verteilt zu posten. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
__________________ Logfiles bitte immer in CODE-Tags posten |
|
08.09.2016, 11:36
| #8 |
| | Google Chrome öffnet ständig Spam Seiten!Code:
ATTFilter Malwarebytes Anti-Rootkit BETA 1.9.3.1001
www.malwarebytes.org
Database version:
main: v2016.09.08.04
rootkit: v2016.08.15.01
Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 11.0.9600.18426
DJRISOW :: DJRISOW-PC [administrator]
08.09.2016 11:58:35
mbar-log-2016-09-08 (11-58-35).txt
Scan type: Quick scan
Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken
Scan options disabled:
Kernel memory modifications detected. Deep Anti-Rootkit Scan engaged.
Objects scanned: 471174
Time elapsed: 33 minute(s), 5 second(s)
Memory Processes Detected: 0
(No malicious items detected)
Memory Modules Detected: 0
(No malicious items detected)
Registry Keys Detected: 0
(No malicious items detected)
Registry Values Detected: 0
(No malicious items detected)
Registry Data Items Detected: 0
(No malicious items detected)
Folders Detected: 0
(No malicious items detected)
Files Detected: 0
(No malicious items detected)
Physical Sectors Detected: 0
(No malicious items detected)
(end)
|
|
08.09.2016, 11:36
| #9 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Google Chrome öffnet ständig Spam Seiten! Adware/Junkware/Toolbars entfernen Alte Versionen von adwCleaner und falls vorhanden JRT vorher löschen, danach neu runterladen auf den Desktop! Virenscanner jetzt vor dem Einsatz dieser Tools bitte komplett deaktivieren! 1. Schritt: adwCleaner Downloade Dir bitte  AdwCleaner auf deinen Desktop.
2. Schritt: JRT - Junkware Removal Tool Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
__________________ Logfiles bitte immer in CODE-Tags posten |
|
08.09.2016, 13:48
| #10 |
| | Google Chrome öffnet ständig Spam Seiten! AdwCleaner Logfile: Code:
ATTFilter # AdwCleaner v6.010 - Bericht erstellt am 08/09/2016 um 14:39:10
# Aktualisiert am 12/08/2016 von ToolsLib
# Datenbank : 2016-09-08.2 [Server]
# Betriebssystem : Windows 7 Home Premium Service Pack 1 (X64)
# Benutzername : DJRISOW - DJRISOW-PC
# Gestartet von : C:\Users\DJRISOW\Desktop\AdwCleaner_6.010 (1).exe
# Modus: Löschen
# Unterstützung : https://toolslib.net/forum
***** [ Dienste ] *****
[-] Dienst gelöscht: ReimageRealTimeProtector
***** [ Ordner ] *****
***** [ Dateien ] *****
[-] Datei gelöscht: C:\Windows\Reimage.ini
***** [ DLL ] *****
***** [ WMI ] *****
***** [ Verknüpfungen ] *****
***** [ Aufgabenplanung ] *****
***** [ Registrierungsdatenbank ] *****
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\REI_AxControl.ReiEngine
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\REI_AxControl.ReiEngine.1
[-] Schlüssel gelöscht: [x64] HKLM\SOFTWARE\Classes\CLSID\{10ECCE17-29B5-4880-A8F5-EAD298611484}
[-] Schlüssel gelöscht: [x64] HKLM\SOFTWARE\Classes\CLSID\{801B440B-1EE3-49B0-B05D-2AB076D4E8CB}
[-] Schlüssel gelöscht: [x64] HKLM\SOFTWARE\Classes\Interface\{9BB31AD8-5DB2-459E-A901-DEA536F23BA4}
[-] Schlüssel gelöscht: [x64] HKLM\SOFTWARE\Classes\Interface\{BD51A48E-EB5F-4454-8774-EF962DF64546}
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\AppID\{28FF42B8-A0DA-4BE5-9B81-E26DD59B350A}
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\Interface\{9BB31AD8-5DB2-459E-A901-DEA536F23BA4}
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\Interface\{BD51A48E-EB5F-4454-8774-EF962DF64546}
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\TypeLib\{FA6468D2-FAA4-4951-A53B-2A5CF9CC0A36}
[-] Schlüssel gelöscht: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{10ECCE17-29B5-4880-A8F5-EAD298611484}
[-] Schlüssel gelöscht: [x64] HKLM\SOFTWARE\Reimage
[-] Schlüssel gelöscht: HKU\S-1-5-21-3719051794-263782235-1391171954-1000\Software\Reimage
[-] Schlüssel gelöscht: HKU\S-1-5-21-3719051794-263782235-1391171954-1000\Software\Local AppWizard-Generated Applications\Reimage - Windows Problem Relief.
[#] Schlüssel mit Neustart gelöscht: HKCU\Software\Reimage
[#] Schlüssel mit Neustart gelöscht: HKCU\Software\Local AppWizard-Generated Applications\Reimage - Windows Problem Relief.
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\AppID\REI_AxControl.DLL
***** [ Browser ] *****
[-] [wordpress.org] [Search Provider] Gelöscht: wordpress.org
[-] [mac-os-x-10-6-8-update.softonic.de] [Search Provider] Gelöscht: mac-os-x-10-6-8-update.softonic.de
[-] [claro-search.com] [Search Provider] Gelöscht: claro-search.com
[-] [softonic] [Search Provider] Gelöscht: softonic
[-] [search.linkury.com] [Search Provider] Gelöscht: search.linkury.com
[-] [yahoo.com] [Search Provider] Gelöscht: yahoo.com
[-] [mac-os-x-10-5-6.en.softonic.com] [Search Provider] Gelöscht: mac-os-x-10-5-6.en.softonic.com
[-] [1und1.de] [Search Provider] Gelöscht: 1und1.de
[-] [do-search] [Search Provider] Gelöscht: do-search
[-] [nero.de.softonic.com] [Search Provider] Gelöscht: nero.de.softonic.com
*************************
:: "Tracing" Schlüssel gelöscht
:: Winsock Einstellungen zurückgesetzt
:: Proxy Einstellungen zurückgesetzt
:: Internet Explorer Richtlinien gelöscht
:: Chrome Richtlinien gelöscht
*************************
C:\AdwCleaner\AdwCleaner[C0].txt - [6599 Bytes] - [07/09/2016 11:38:55]
C:\AdwCleaner\AdwCleaner[C2].txt - [3451 Bytes] - [08/09/2016 14:39:10]
C:\AdwCleaner\AdwCleaner[S0].txt - [6356 Bytes] - [07/09/2016 11:38:27]
C:\AdwCleaner\AdwCleaner[S1].txt - [4099 Bytes] - [08/09/2016 14:38:40]
########## EOF - C:\AdwCleaner\AdwCleaner[C2].txt - [3670 Bytes] ##########
JRT Logfile: Code:
ATTFilter ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.0.7 (07.03.2016)
Operating System: Windows 7 Home Premium x64
Ran by DJRISOW (Administrator) on 08.09.2016 at 14:44:37,30
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
File System: 55
Successfully deleted: C:\Users\DJRISOW\AppData\Roaming\Mozilla\Firefox\Profiles\yr8wwsrl.default\extensions\staged (Folder)
Successfully deleted: C:\Users\DJRISOW\AppData\Roaming\pdfforge (Folder)
Successfully deleted: C:\Users\DJRISOW\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\07M0TH7P (Temporary Internet Files Folder)
Successfully deleted: C:\Users\DJRISOW\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\0PS72R2M (Temporary Internet Files Folder)
Successfully deleted: C:\Users\DJRISOW\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\3DSTRYW3 (Temporary Internet Files Folder)
Successfully deleted: C:\Users\DJRISOW\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\48BWPEF4 (Temporary Internet Files Folder)
Successfully deleted: C:\Users\DJRISOW\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4FMQTYQN (Temporary Internet Files Folder)
Successfully deleted: C:\Users\DJRISOW\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\62AXOPQ5 (Temporary Internet Files Folder)
Successfully deleted: C:\Users\DJRISOW\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\91G8LL1K (Temporary Internet Files Folder)
Successfully deleted: C:\Users\DJRISOW\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\AMN2PKEF (Temporary Internet Files Folder)
Successfully deleted: C:\Users\DJRISOW\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\CCC1TSLI (Temporary Internet Files Folder)
Successfully deleted: C:\Users\DJRISOW\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\DU2KW1GD (Temporary Internet Files Folder)
Successfully deleted: C:\Users\DJRISOW\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\FZG8CKJ5 (Temporary Internet Files Folder)
Successfully deleted: C:\Users\DJRISOW\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\G78H86YP (Temporary Internet Files Folder)
Successfully deleted: C:\Users\DJRISOW\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\KP189F3Q (Temporary Internet Files Folder)
Successfully deleted: C:\Users\DJRISOW\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LIXMVQOA (Temporary Internet Files Folder)
Successfully deleted: C:\Users\DJRISOW\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\MWSWAM5R (Temporary Internet Files Folder)
Successfully deleted: C:\Users\DJRISOW\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\S9N74OJ3 (Temporary Internet Files Folder)
Successfully deleted: C:\Users\DJRISOW\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\S9N74OJ3 (Temporary Internet Files Folder)
Successfully deleted: C:\Users\DJRISOW\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\SMTWDJN5 (Temporary Internet Files Folder)
Successfully deleted: C:\Users\DJRISOW\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\SMTWDJN5 (Temporary Internet Files Folder)
Successfully deleted: C:\Users\DJRISOW\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\TDTH2YVT (Temporary Internet Files Folder)
Successfully deleted: C:\Users\DJRISOW\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\U7WTMVRN (Temporary Internet Files Folder)
Successfully deleted: C:\Users\DJRISOW\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\VJUIAC0T (Temporary Internet Files Folder)
Successfully deleted: C:\Users\DJRISOW\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\W6QXG2T7 (Temporary Internet Files Folder)
Successfully deleted: C:\Users\DJRISOW\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\Y0Y9B15K (Temporary Internet Files Folder)
Successfully deleted: C:\Users\DJRISOW\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\Y5G8TLE2 (Temporary Internet Files Folder)
Successfully deleted: C:\Users\DJRISOW\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\YBA7ZSQ0 (Temporary Internet Files Folder)
Successfully deleted: C:\Users\DJRISOW\AppData\Roaming\appdataFr25.bin (File)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\07M0TH7P (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\0PS72R2M (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\3DSTRYW3 (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\48BWPEF4 (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4FMQTYQN (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\62AXOPQ5 (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\91G8LL1K (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\AMN2PKEF (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\CCC1TSLI (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\DU2KW1GD (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\FZG8CKJ5 (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\G78H86YP (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\KP189F3Q (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LIXMVQOA (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\MWSWAM5R (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\S9N74OJ3 (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\S9N74OJ3 (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\SMTWDJN5 (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\SMTWDJN5 (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\TDTH2YVT (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\U7WTMVRN (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\VJUIAC0T (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\W6QXG2T7 (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\Y0Y9B15K (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\Y5G8TLE2 (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\YBA7ZSQ0 (Temporary Internet Files Folder)
Deleted the following from C:\Users\DJRISOW\AppData\Roaming\Mozilla\Firefox\Profiles\yr8wwsrl.default\prefs.js
user_pref(extensions.quick_start.enable_search1, false);
user_pref(extensions.quick_start.sd.closeWindowWithLastTab_prev_state, false);
Registry: 0
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 08.09.2016 at 14:47:20,51
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
|
|
08.09.2016, 13:48
| #11 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Google Chrome öffnet ständig Spam Seiten! Dann zeig mal frische FRST Logs. Haken setzen bei addition.txt dann auf Untersuchen klicken
__________________ Logfiles bitte immer in CODE-Tags posten |
|
08.09.2016, 15:42
| #12 |
| | Google Chrome öffnet ständig Spam Seiten!FRST Logfile: Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 31-08-2016 durchgeführt von DJRISOW (Administrator) auf DJRISOW-PC (08-09-2016 16:40:07) Gestartet von C:\Users\DJRISOW\Desktop Geladene Profile: DJRISOW (Verfügbare Profile: DJRISOW) Platform: Windows 7 Home Premium Service Pack 1 (X64) Sprache: Deutsch (Deutschland) Internet Explorer Version 11 (Standard-Browser: Chrome) Start-Modus: Normal Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Prozesse (Nicht auf der Ausnahmeliste) ================= (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.) (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe (Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe (Comodo Security Solutions, Inc.) C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe (Native Instruments GmbH) C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareService.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe (PACE Anti-Piracy, Inc.) C:\Program Files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.31.5\GoogleCrashHandler.exe (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.31.5\GoogleCrashHandler64.exe (Intel Corporation) C:\Windows\System32\hkcmd.exe (RME) C:\Windows\System32\TotalMixFX.exe (Disc Soft Ltd) C:\Program Files (x86)\DAEMON Tools Lite\DiscSoftBusService.exe (Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Nero AG) C:\Program Files (x86)\Nero\Update\NASvc.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (Malwarebytes) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbam.exe (Malwarebytes) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe (Malwarebytes) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Steinberg Media Technologies) C:\Program Files (x86)\Steinberg\Cubase 7.5\Cubase7.5.exe (Steinberg Media Technologies GmbH) C:\Program Files (x86)\eLicenser\POS\SYNSOPOS.exe (Steinberg Media Technologies) C:\Program Files (x86)\Steinberg\Cubase 7.5\Components\videodecode.exe (Steinberg Media Technologies) C:\Program Files (x86)\Steinberg\Cubase 7.5\Components\videopreload.exe (Steinberg Media Technologies) C:\Program Files (x86)\Steinberg\Cubase 7.5\Components\videooutput.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ==================== Registry (Nicht auf der Ausnahmeliste) =========================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.) HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [11660904 2010-11-30] (Realtek Semiconductor) HKLM\...\Run: [VIRTU] => C:\Program Files\Lucidlogix Technologies\VIRTU\VirtuControlPanel.Exe [2619488 2011-04-21] () HKLM\...\Run: [FirefaceUsbTray1] => C:\Windows\system32\firefaceusb.exe [96768 2016-02-11] (RME) HKLM\...\Run: [FirefaceMixTray2] => C:\Windows\system32\TotalMixFX.exe [23103704 2016-02-11] (RME) HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2531472 2014-12-13] (NVIDIA Corporation) HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\nvspcap64.dll [2824504 2014-12-13] (NVIDIA Corporation) HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [558496 2014-02-27] (Adobe Systems Incorporated) HKLM\...\Run: [Monitor] => C:\Windows\PixArt\PAC207\Monitor.exe [319488 2006-11-03] (PixArt Imaging Incorporation) HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [176952 2016-03-19] (Apple Inc.) HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [67384 2016-03-18] (Apple Inc.) HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2014-10-02] (Apple Inc.) HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) HKLM-x32\...\Run: [AdobeCS6ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1073312 2012-03-09] (Adobe Systems Incorporated) HKLM-x32\...\Run: [UATrayIcon] => C:\Program Files (x86)\Universal Audio\Powered Plugins\UATrayIcon.exe [1484800 2015-07-10] (Universal Audio, Inc.) HKLM-x32\...\Run: [UAPerfMon] => C:\Program Files (x86)\Universal Audio\Powered Plugins\UADPerfMon.exe [3822592 2015-07-10] () Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation) HKU\S-1-5-21-3719051794-263782235-1391171954-1000\...\Run: [zASRockInstantBoot] => [X] HKU\S-1-5-21-3719051794-263782235-1391171954-1000\...\Run: [ASRockXTU] => [X] HKU\S-1-5-21-3719051794-263782235-1391171954-1000\...\Run: [EPSON SX125 Series] => C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIGGE.EXE [224768 2009-09-14] (SEIKO EPSON CORPORATION) HKU\S-1-5-21-3719051794-263782235-1391171954-1000\...\Run: [Amazon Music] => C:\Users\DJRISOW\AppData\Local\Amazon Music\Amazon Music Helper.exe [5886784 2015-05-07] () HKU\S-1-5-21-3719051794-263782235-1391171954-1000\...\Run: [AdobeBridge] => [X] HKU\S-1-5-21-3719051794-263782235-1391171954-1000\...\Run: [Dropbox Update] => C:\Users\DJRISOW\AppData\Local\Dropbox\Update\DropboxUpdate.exe [134512 2015-05-26] (Dropbox, Inc.) HKU\S-1-5-21-3719051794-263782235-1391171954-1000\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files (x86)\DAEMON Tools Lite\DTAgent.exe [4468056 2015-06-18] (Disc Soft Ltd) HKU\S-1-5-21-3719051794-263782235-1391171954-1000\...\Run: [Spotify Web Helper] => C:\Users\DJRISOW\AppData\Roaming\Spotify\SpotifyWebHelper.exe [1523312 2016-08-23] (Spotify Ltd) HKU\S-1-5-21-3719051794-263782235-1391171954-1000\...\MountPoints2: {13aac168-c042-11e5-a42c-002522cc2a9b} - G:\autorun.exe HKU\S-1-5-21-3719051794-263782235-1391171954-1000\...\MountPoints2: {1f825de1-7f01-11e5-8b73-002522cc2a9b} - F:\Setup\Setup.exe ShellIconOverlayIdentifiers: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\DJRISOW\AppData\Roaming\Dropbox\bin\DropboxExt64.43.dll [2016-09-06] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\DJRISOW\AppData\Roaming\Dropbox\bin\DropboxExt64.43.dll [2016-09-06] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\DJRISOW\AppData\Roaming\Dropbox\bin\DropboxExt64.43.dll [2016-09-06] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\DJRISOW\AppData\Roaming\Dropbox\bin\DropboxExt64.43.dll [2016-09-06] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\DJRISOW\AppData\Roaming\Dropbox\bin\DropboxExt64.43.dll [2016-09-06] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\DJRISOW\AppData\Roaming\Dropbox\bin\DropboxExt64.43.dll [2016-09-06] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\DJRISOW\AppData\Roaming\Dropbox\bin\DropboxExt64.43.dll [2016-09-06] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\DJRISOW\AppData\Roaming\Dropbox\bin\DropboxExt64.43.dll [2016-09-06] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\DJRISOW\AppData\Roaming\Dropbox\bin\DropboxExt64.43.dll [2016-09-06] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt9] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\DJRISOW\AppData\Roaming\Dropbox\bin\DropboxExt64.43.dll [2016-09-06] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\DJRISOW\AppData\Roaming\Dropbox\bin\DropboxExt.43.dll [2016-09-06] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt10] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\DJRISOW\AppData\Roaming\Dropbox\bin\DropboxExt.43.dll [2016-09-06] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\DJRISOW\AppData\Roaming\Dropbox\bin\DropboxExt.43.dll [2016-09-06] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\DJRISOW\AppData\Roaming\Dropbox\bin\DropboxExt.43.dll [2016-09-06] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\DJRISOW\AppData\Roaming\Dropbox\bin\DropboxExt.43.dll [2016-09-06] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\DJRISOW\AppData\Roaming\Dropbox\bin\DropboxExt.43.dll [2016-09-06] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\DJRISOW\AppData\Roaming\Dropbox\bin\DropboxExt.43.dll [2016-09-06] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\DJRISOW\AppData\Roaming\Dropbox\bin\DropboxExt.43.dll [2016-09-06] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\DJRISOW\AppData\Roaming\Dropbox\bin\DropboxExt.43.dll [2016-09-06] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt9] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\DJRISOW\AppData\Roaming\Dropbox\bin\DropboxExt.43.dll [2016-09-06] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: ["DropboxExt1"] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\DJRISOW\AppData\Roaming\Dropbox\bin\DropboxExt.43.dll [2016-09-06] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: ["DropboxExt2"] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\DJRISOW\AppData\Roaming\Dropbox\bin\DropboxExt.43.dll [2016-09-06] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: ["DropboxExt3"] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\DJRISOW\AppData\Roaming\Dropbox\bin\DropboxExt.43.dll [2016-09-06] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: ["DropboxExt4"] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\DJRISOW\AppData\Roaming\Dropbox\bin\DropboxExt.43.dll [2016-09-06] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: ["DropboxExt5"] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\DJRISOW\AppData\Roaming\Dropbox\bin\DropboxExt.43.dll [2016-09-06] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: ["DropboxExt6"] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\DJRISOW\AppData\Roaming\Dropbox\bin\DropboxExt.43.dll [2016-09-06] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: ["DropboxExt7"] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\DJRISOW\AppData\Roaming\Dropbox\bin\DropboxExt.43.dll [2016-09-06] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: ["DropboxExt8"] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\DJRISOW\AppData\Roaming\Dropbox\bin\DropboxExt.43.dll [2016-09-06] (Dropbox, Inc.) Startup: C:\Users\DJRISOW\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\EOS Utility.lnk [2015-11-05] ShortcutTarget: EOS Utility.lnk -> C:\Program Files (x86)\Canon\EOS Utility\EOS Utility.exe (Canon INC.) Startup: C:\Users\DJRISOW\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Rayven Justice Choose Up Prod by The Legion DJ Pack 99BPM.zip.lnk [2015-11-05] ShortcutTarget: Rayven Justice Choose Up Prod by The Legion DJ Pack 99BPM.zip.lnk -> C:\ProgramData\{3e336eaa-a046-b486-3e33-36eaaa04baaa}\Rayven Justice Choose Up Prod by The Legion DJ Pack 99BPM.zip.exe (Keine Datei) ==================== Internet (Nicht auf der Ausnahmeliste) ==================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.) Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 Tcpip\..\Interfaces\{5E3EC87F-173D-4917-85B1-CC5CF5429EBC}: [DhcpNameServer] 192.168.0.1 Tcpip\..\Interfaces\{D820ED38-357A-49FC-9CD4-CA3D247D6F48}: [DhcpNameServer] 172.20.10.1 Internet Explorer: ================== HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = www.google.com HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = www.google.com HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = www.google.com HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com HKU\S-1-5-21-3719051794-263782235-1391171954-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/p/?LinkId=619797&pc=UE07&ocid=UE07DHP SearchScopes: HKLM -> {CF6F90BD-EB6B-4057-8F3C-D777FF3A8D5F} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSERBM&pc=MSERT1 SearchScopes: HKU\S-1-5-21-3719051794-263782235-1391171954-1000 -> DefaultScope {CF6F90BD-EB6B-4057-8F3C-D777FF3A8D5F} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSERBM&pc=MSERT1 SearchScopes: HKU\S-1-5-21-3719051794-263782235-1391171954-1000 -> {CF6F90BD-EB6B-4057-8F3C-D777FF3A8D5F} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSERBM&pc=MSERT1 FireFox: ======== FF ProfilePath: C:\Users\DJRISOW\AppData\Roaming\Mozilla\Firefox\Profiles\yr8wwsrl.default FF Homepage: hxxps://www.malwarebytes.org/restorebrowser//?type=hp&ts=1446217681&z=e752470b0f30aa15396e161g4zez6q9o8g1m3qdb2g&from=dae&uid=hitachixhdp725050gla360_gec564rj1wu0gj1wu0gjx FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_22_0_0_209.dll [2016-07-12] () FF Plugin: @microsoft.com/GENUINE -> disabled [Keine Datei] FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2014-04-29] (Adobe Systems) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_22_0_0_209.dll [2016-07-12] () FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2016-03-08] () FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2015-05-21] (Google) FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Keine Datei] FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-01-10] (NVIDIA Corporation) FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-01-10] (NVIDIA Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-29] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-29] (Google Inc.) FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN) FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2014-04-29] (Adobe Systems) FF Extension: (Firefox Hotfix) - C:\Users\DJRISOW\AppData\Roaming\Mozilla\Firefox\Profiles\yr8wwsrl.default\Extensions\firefox-hotfix@mozilla.org.xpi [2016-09-07] FF Extension: (ArchiveFacebook) - C:\Users\DJRISOW\AppData\Roaming\Mozilla\Firefox\Profiles\yr8wwsrl.default\Extensions\{53A03D43-5363-4669-8190-99061B2DEBA6} [2016-04-15] Chrome: ======= CHR HomePage: Default -> hxxp://www.producerloops.com/de/Neue-Produkte.html CHR StartupUrls: Default -> "hxxp://www.rnbass.com/","hxxps://refx.com/advent/" CHR DefaultSearchURL: Default -> hxxp://www.google.com/custom?client=pub-3794288947762788&forid=1&channel=5480255188&ie=UTF-8&oe=UTF-8&safe=active&cof=GALT%3A%23008000%3BGL%3A1%3BDIV%3A%23336699%3BVLC%3A663399%3BAH%3Acenter%3BBGC%3AFFFFFF%3BLBGC%3A336699%3BALC%3A0000FF%3BLC%3A0000FF%3BT%3A000000%3BGFNT%3A0000FF%3BGIMP%3A0000FF%3BFORID%3A1&hl=de&q={searchTerms} CHR Profile: C:\Users\DJRISOW\AppData\Local\Google\Chrome\User Data\Default CHR Extension: (ProxFlow) - C:\Users\DJRISOW\AppData\Local\Google\Chrome\User Data\Default\Extensions\aakchaleigkohafkfjfjbblobjifikek [2016-08-10] CHR Extension: (YouTube) - C:\Users\DJRISOW\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-25] CHR Extension: (Google-Suche) - C:\Users\DJRISOW\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-27] CHR Extension: (Chrome Web Notes) - C:\Users\DJRISOW\AppData\Local\Google\Chrome\User Data\Default\Extensions\fnconblconehkpkgfinabjeceepmpiio [2016-09-06] CHR Extension: (Google Docs Offline) - C:\Users\DJRISOW\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-17] CHR Extension: (Google Mail) - C:\Users\DJRISOW\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-03-31] CHR Extension: (Chrome Media Router) - C:\Users\DJRISOW\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-09-07] CHR Extension: (Kein Name) - C:\Users\DJRISOW\Desktop\YouTube Video Downloader [2015-05-29] CHR HKU\S-1-5-21-3719051794-263782235-1391171954-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [dhdgffkkebhmkfjojejmpbldmpobfkfo] - hxxp://clients2.google.com/service/update2/crx ==================== Dienste (Nicht auf der Ausnahmeliste) ======================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2016-03-02] (Apple Inc.) S3 digiSPTIService64; C:\Program Files\Avid\Pro Tools\digisptiservice64.exe [190464 2014-11-17] (Avid Technology, Inc.) [Datei ist nicht signiert] R3 Disc Soft Lite Bus Service; C:\Program Files (x86)\DAEMON Tools Lite\DiscSoftBusService.exe [1268568 2015-06-18] (Disc Soft Ltd) R2 DragonUpdater; C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe [2139328 2014-05-27] (Comodo Security Solutions, Inc.) R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1148560 2014-12-13] (NVIDIA Corporation) R2 MBAMScheduler; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe [1514464 2016-03-10] (Malwarebytes) R2 MBAMService; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe [1136608 2016-03-10] (Malwarebytes) R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1701520 2014-12-13] (NVIDIA Corporation) S2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [19823248 2014-12-13] (NVIDIA Corporation) S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [Datei ist nicht signiert] S2 Angry Family; C:\Users\DJRISOW\AppData\Roaming\Angry Family\Angry Family.exe [X] S2 gramblrclient; C:\Program Files\Gramblr\gramblr.exe [X] ===================== Treiber (Nicht auf der Ausnahmeliste) ========================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) R3 AsrVDrive; C:\Windows\System32\DRIVERS\AsrVDrive.sys [23048 2011-01-26] (ASRock Inc.) R3 dtlitescsibus; C:\Windows\System32\DRIVERS\dtlitescsibus.sys [30264 2015-10-30] (Disc Soft Ltd) S3 ebdrv; C:\Windows\system32\drivers\evbda.sys [3286016 2009-06-10] (Broadcom Corporation) R3 firefaceu64; C:\Windows\System32\drivers\fireface_usb_64.sys [104832 2016-02-11] (RME) R3 iLokDrvr; C:\Windows\System32\DRIVERS\iLokDrvr.sys [25808 2013-04-11] () R3 iLokDrvr; C:\Windows\SysWOW64\DRIVERS\iLokDrvr.sys [54256 2008-09-08] (PACE Anti-Piracy, Inc.) R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [27008 2016-03-10] (Malwarebytes) R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [192216 2016-09-08] (Malwarebytes) R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [64896 2016-03-10] (Malwarebytes Corporation) R3 NIWinCDEmu; C:\Windows\System32\DRIVERS\NIWinCDEmu.sys [112408 2015-03-13] () R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19600 2014-12-13] (NVIDIA Corporation) R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [38032 2014-11-22] (NVIDIA Corporation) S3 PAC207; C:\Windows\System32\DRIVERS\PFC027.SYS [572416 2006-12-05] (PixArt Imaging Inc.) S3 RDID1027; C:\Windows\System32\Drivers\rdwm1027.sys [81920 2009-09-18] (Roland Corporation) R0 sptd; C:\Windows\System32\Drivers\sptd.sys [381608 2015-10-30] (Duplex Secure Ltd.) R3 synusb64; C:\Windows\System32\DRIVERS\synusb64.sys [30352 2011-12-14] (Steinberg Media Technologies GmbH) R3 UAD2Pcie; C:\Windows\System32\DRIVERS\UAD2Pcie.sys [48640 2015-07-10] (Universal Audio Inc.) R3 UAD2System; C:\Windows\System32\DRIVERS\UAD2System.sys [94208 2015-07-10] (Universal Audio Inc.) R3 YMIDUSBW; C:\Windows\System32\drivers\ymidusbx64.sys [43744 2015-07-28] (Yamaha Corporation) S3 YFWBUS; System32\Drivers\yfwbus.sys [X] ==================== NetSvcs (Nicht auf der Ausnahmeliste) =================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) ==================== Ein Monat: Erstellte Dateien und Ordner ======== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.) 2016-09-08 16:40 - 2016-09-08 16:40 - 00023484 _____ C:\Users\DJRISOW\Desktop\FRST.txt 2016-09-08 16:39 - 2016-09-08 16:39 - 02397696 _____ (Farbar) C:\Users\DJRISOW\Desktop\FRST64.exe 2016-09-08 14:26 - 2016-09-08 14:26 - 00307072 _____ C:\Windows\Minidump\090816-23150-01.dmp 2016-09-08 11:58 - 2016-09-08 12:36 - 00000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable) 2016-09-08 11:57 - 2016-09-08 12:35 - 00000000 ____D C:\Users\DJRISOW\Desktop\mbar 2016-09-07 23:38 - 2016-09-07 23:38 - 00262144 _____ C:\Windows\Minidump\090716-23618-01.dmp 2016-09-07 20:48 - 2016-09-08 14:58 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox 2016-09-07 18:16 - 2016-09-08 16:40 - 00000000 ____D C:\FRST 2016-09-07 11:47 - 2016-09-07 11:47 - 00307072 _____ C:\Windows\Minidump\090716-44943-01.dmp 2016-09-07 11:41 - 2016-09-07 11:41 - 00307072 _____ C:\Windows\Minidump\090716-21216-01.dmp 2016-09-07 11:36 - 2016-09-08 14:39 - 00000000 ____D C:\AdwCleaner 2016-09-07 11:33 - 2016-09-07 11:33 - 00002219 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2016-09-07 11:26 - 2016-09-07 11:26 - 01065376 _____ (Google Inc.) C:\Users\DJRISOW\Downloads\ChromeSetup.exe 2016-09-06 22:04 - 2016-09-06 22:04 - 08215120 _____ C:\Users\DJRISOW\Desktop\Amazon.mp4 2016-09-06 21:06 - 2016-09-06 21:06 - 00000000 ____D C:\Users\DJRISOW\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox 2016-09-06 20:51 - 2016-09-06 20:51 - 00000000 ____D C:\Users\DJRISOW\Desktop\55780 2016-09-06 19:58 - 2016-09-06 19:58 - 00000000 ____D C:\Users\DJRISOW\Desktop\Epic World Library 2016-09-06 19:57 - 2016-09-06 19:57 - 00001018 _____ C:\Users\Public\Desktop\Engine 2.lnk 2016-09-06 19:57 - 2016-09-06 19:57 - 00000000 __HDC C:\ProgramData\{52074E70-E39F-4B90-82D6-38ACBB36A8B6} 2016-09-06 19:57 - 2016-09-06 19:57 - 00000000 __HDC C:\ProgramData\{019B143A-9DF7-4A4E-9071-1FB3892DDD09} 2016-09-06 19:57 - 2016-09-06 19:57 - 00000000 ____D C:\Users\DJRISOW\Documents\Best Service 2016-09-06 19:57 - 2016-09-06 19:57 - 00000000 ____D C:\Users\DJRISOW\AppData\Local\Best Service 2016-09-06 19:57 - 2016-09-06 19:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Engine 2 2016-09-06 19:57 - 2016-09-06 19:57 - 00000000 ____D C:\ProgramData\Best Service 2016-09-06 19:57 - 2016-09-06 19:57 - 00000000 ____D C:\Program Files\Best Service 2016-09-06 12:37 - 2016-09-06 12:38 - 111777421 _____ C:\Users\DJRISOW\Desktop\Fat Joe' Remy Ma n French Montana ft RySoValid - Cookin [Xtendz] - HD - Clean.mp4 2016-09-05 18:24 - 2016-09-05 18:24 - 00001054 _____ C:\Users\Public\Desktop\Native Access.lnk 2016-09-05 18:24 - 2016-09-05 18:24 - 00000000 __HDC C:\ProgramData\{CE9BCF90-E7F3-4C22-8E3F-13DFA1FC853D} 2016-09-05 14:26 - 2016-09-05 14:27 - 41641346 _____ C:\Users\DJRISOW\Desktop\Kygo feat. Conrad Sewell - Firestone Live at Skavlan.mp4 2016-09-04 15:41 - 2016-09-04 15:41 - 00307072 _____ C:\Windows\Minidump\090416-27378-01.dmp 2016-09-03 22:48 - 2016-09-03 22:48 - 00307072 _____ C:\Windows\Minidump\090316-32495-01.dmp 2016-09-02 17:19 - 2016-09-02 17:19 - 00307072 _____ C:\Windows\Minidump\090216-28126-01.dmp 2016-09-01 23:47 - 2016-09-01 23:47 - 00307072 _____ C:\Windows\Minidump\090116-25131-01.dmp 2016-09-01 14:38 - 2016-09-01 14:38 - 00307072 _____ C:\Windows\Minidump\090116-32339-01.dmp 2016-09-01 14:34 - 2016-09-01 14:34 - 00001009 _____ C:\Users\Public\Desktop\Reaktor 5.lnk 2016-09-01 14:34 - 2016-09-01 14:34 - 00000000 __HDC C:\ProgramData\{D9728A28-7722-4D89-9A50-355260FF8E2B} 2016-09-01 13:49 - 2016-09-01 13:49 - 00000000 __HDC C:\ProgramData\{37384B65-5F11-426F-82AE-CDD606490599} 2016-09-01 13:48 - 2016-09-01 13:48 - 00000000 __HDC C:\ProgramData\{79327801-8B0E-430E-8FB6-20702A311ED7} 2016-09-01 13:48 - 2016-09-01 13:48 - 00000000 ____D C:\Users\Public\Documents\Reaktor Factory Library 2016-09-01 13:47 - 2016-09-01 13:47 - 00000000 ____D C:\Users\Public\Documents\Reaktor Blocks 2016-09-01 13:46 - 2016-09-01 13:46 - 00001094 _____ C:\Users\Public\Desktop\Controller Editor.lnk 2016-09-01 13:46 - 2016-09-01 13:46 - 00000000 __HDC C:\ProgramData\{AA454A3E-618B-4FA7-8742-D31B75115C43} 2016-09-01 13:25 - 2016-09-01 13:25 - 00000000 __HDC C:\ProgramData\{DFA16065-8ECA-4933-99B8-9CAEA99506CB} 2016-09-01 13:24 - 2016-09-01 13:24 - 00000000 __HDC C:\ProgramData\{FA2F8522-7DAF-43CB-9B78-23003AF864BB} 2016-09-01 13:22 - 2016-09-01 13:22 - 00000000 __HDC C:\ProgramData\{91A4A873-1950-4B23-A695-B24328D2D1E3} 2016-09-01 13:21 - 2016-09-01 13:21 - 00000000 __HDC C:\ProgramData\{7D1688B0-FF00-4064-99A5-E3753366C056} 2016-09-01 13:19 - 2016-09-01 13:19 - 00000000 __HDC C:\ProgramData\{6C16E1CD-7099-4249-829E-17828665267B} 2016-09-01 13:18 - 2016-09-01 13:18 - 00000000 __HDC C:\ProgramData\{FBEE89CD-D429-4948-96D2-5DD8C89C99B4} 2016-09-01 13:16 - 2016-09-01 13:16 - 00000000 __HDC C:\ProgramData\{6EA8A4B3-65E2-44FA-804F-635285EE836F} 2016-09-01 13:15 - 2016-09-01 13:15 - 00000000 __HDC C:\ProgramData\{11E6C06E-F8A8-4E8D-A1E6-34A8A0668348} 2016-09-01 13:14 - 2016-09-01 13:14 - 00000000 __HDC C:\ProgramData\{17096F5E-F808-4F7F-9134-A3DE8F7CD093} 2016-09-01 13:12 - 2016-09-01 13:12 - 00000000 __HDC C:\ProgramData\{C7147405-74FE-411E-B440-A7E2C5FCBE64} 2016-09-01 13:12 - 2016-09-01 13:12 - 00000000 __HDC C:\ProgramData\{AF974A13-112C-4A21-AAC2-088DE8A1DC31} 2016-09-01 13:11 - 2016-09-01 13:11 - 00000000 __HDC C:\ProgramData\{4B46290B-9384-4D38-8F9D-42C7DDBBBFFE} 2016-09-01 13:11 - 2016-09-01 13:11 - 00000000 __HDC C:\ProgramData\{22629EA1-FE2A-4A84-AFC7-E1DFF9DAFC5E} 2016-09-01 13:10 - 2016-09-01 13:10 - 00000000 __HDC C:\ProgramData\{5BB7DCD2-79BA-4FE2-8DCC-C4710E9271A3} 2016-09-01 13:09 - 2016-09-01 13:09 - 00000000 __HDC C:\ProgramData\{B42AD08D-C95C-4CC9-8F45-E587E7A4944B} 2016-09-01 13:07 - 2016-09-01 13:07 - 00000000 __HDC C:\ProgramData\{D32EE6FB-8B59-452B-8203-AD46E434361D} 2016-09-01 13:05 - 2016-09-01 13:05 - 00001014 _____ C:\Users\Public\Desktop\Kontakt 5.lnk 2016-09-01 13:05 - 2016-09-01 13:05 - 00000000 __HDC C:\ProgramData\{1C1EDD4B-9BC5-4A46-93AF-0D31E608815E} 2016-09-01 13:03 - 2016-09-01 13:03 - 00000000 __HDC C:\ProgramData\{1436CC31-8739-4FD7-81A7-393F03F0495B} 2016-09-01 13:02 - 2016-09-01 13:02 - 00000000 __HDC C:\ProgramData\{D059CA43-CBB2-41FE-B4E4-8FEF0614F812} 2016-09-01 13:02 - 2016-09-01 13:02 - 00000000 __HDC C:\ProgramData\{7BEDC436-56E7-4B12-BC0A-5CB05F2113A2} 2016-09-01 13:01 - 2016-09-01 13:01 - 00000000 __HDC C:\ProgramData\{776F744B-F906-497C-808A-02EC3467EB29} 2016-09-01 12:59 - 2016-09-01 12:59 - 00000000 __HDC C:\ProgramData\{61DD2F1D-990F-4CD3-95FA-8BD4D3617208} 2016-09-01 12:57 - 2016-09-01 12:57 - 00000000 __HDC C:\ProgramData\{51B54F90-B4A7-4546-9F3A-B9B8C563B16A} 2016-09-01 12:55 - 2016-09-01 12:55 - 00000000 __HDC C:\ProgramData\{6E5B3AE4-8785-4886-97B0-DEAF3D4FB2FE} 2016-09-01 12:55 - 2016-09-01 12:55 - 00000000 __HDC C:\ProgramData\{565947C1-8683-47EE-86DC-F64C0C157B53} 2016-09-01 12:49 - 2016-09-01 12:49 - 00000000 __HDC C:\ProgramData\{7AD85942-A0AF-4BC4-B654-C9ECF9B82100} 2016-09-01 12:48 - 2016-09-01 12:48 - 00000000 ____D C:\Users\Public\Documents\Form 2016-09-01 12:46 - 2016-09-01 12:46 - 00001014 _____ C:\Users\Public\Desktop\Reaktor 6.lnk 2016-09-01 12:46 - 2016-09-01 12:46 - 00000000 __HDC C:\ProgramData\{39445429-DDAA-4C68-85D4-A3E556DC22E2} 2016-09-01 12:40 - 2016-09-01 12:40 - 00000000 ____D C:\Users\DJRISOW\AppData\Local\cache 2016-09-01 12:38 - 2016-09-01 12:39 - 00000000 ____D C:\Users\DJRISOW\AppData\Roaming\Native Instruments 2016-08-30 22:23 - 2016-08-30 22:23 - 00262144 _____ C:\Windows\Minidump\083016-24367-01.dmp 2016-08-30 20:19 - 2016-08-30 20:19 - 00000000 ____D C:\Users\DJRISOW\Desktop\Track Pictures 2016-08-30 19:16 - 2016-08-30 20:29 - 00985593 _____ C:\Users\DJRISOW\Desktop\mixii.cpr 2016-08-29 15:37 - 2016-08-29 15:37 - 00000000 ____D C:\Users\DJRISOW\Documents\Xfer 2016-08-28 23:51 - 2016-08-28 23:51 - 00262144 _____ C:\Windows\Minidump\082816-25069-01.dmp 2016-08-28 23:48 - 2016-08-28 23:48 - 00262144 _____ C:\Windows\Minidump\082816-25350-01.dmp 2016-08-28 20:56 - 2016-08-28 20:56 - 00307072 _____ C:\Windows\Minidump\082816-27081-01.dmp 2016-08-27 22:38 - 2016-08-27 22:38 - 00307072 _____ C:\Windows\Minidump\082716-22245-01.dmp 2016-08-27 12:50 - 2016-08-27 12:50 - 00307072 _____ C:\Windows\Minidump\082716-28142-01.dmp 2016-08-26 13:10 - 2016-08-26 13:10 - 00307072 _____ C:\Windows\Minidump\082616-25552-01.dmp 2016-08-25 12:32 - 2016-08-25 12:32 - 00307072 _____ C:\Windows\Minidump\082516-21855-01.dmp 2016-08-24 23:30 - 2016-08-24 23:30 - 00000000 ____D C:\Users\DJRISOW\Desktop\Ultimate R&B Nexus Expansion 2016-08-24 12:59 - 2016-08-24 12:59 - 00262144 _____ C:\Windows\Minidump\082416-23524-01.dmp 2016-08-22 13:16 - 2016-08-22 13:16 - 00307072 _____ C:\Windows\Minidump\082216-27861-01.dmp 2016-08-21 21:50 - 2016-08-21 21:50 - 00307072 _____ C:\Windows\Minidump\082116-29858-01.dmp 2016-08-20 20:01 - 2016-08-20 20:01 - 00000000 ____D C:\Users\DJRISOW\AppData\Roaming\D16 Group 2016-08-20 14:23 - 2016-08-20 14:23 - 02857460 _____ C:\Users\DJRISOW\Desktop\Bassline.wav 2016-08-20 12:59 - 2016-08-20 12:59 - 00002116 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth.lnk 2016-08-19 13:15 - 2016-08-19 13:23 - 00000000 ____D C:\Users\DJRISOW\Desktop\hhu 2016-08-19 12:51 - 2016-08-19 12:51 - 00307072 _____ C:\Windows\Minidump\081916-28064-01.dmp 2016-08-18 23:54 - 2016-08-18 23:54 - 01534302 _____ C:\Users\DJRISOW\Desktop\Honorebel drop.mp4 2016-08-17 11:00 - 2016-07-08 17:32 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll 2016-08-17 11:00 - 2016-07-08 17:16 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll 2016-08-15 12:41 - 2016-08-15 12:41 - 00307072 _____ C:\Windows\Minidump\081516-21871-01.dmp 2016-08-11 15:44 - 2016-08-12 15:55 - 207801220 _____ C:\Users\DJRISOW\Desktop\Video machen.mp4 2016-08-10 12:36 - 2016-08-02 16:54 - 00394440 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll 2016-08-10 12:36 - 2016-08-02 16:08 - 00346312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll 2016-08-10 12:36 - 2016-08-02 08:54 - 25808384 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2016-08-10 12:36 - 2016-08-02 08:47 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2016-08-10 12:36 - 2016-08-02 08:47 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll 2016-08-10 12:36 - 2016-08-02 08:32 - 02894336 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2016-08-10 12:36 - 2016-08-02 08:32 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll 2016-08-10 12:36 - 2016-08-02 08:31 - 00572416 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll 2016-08-10 12:36 - 2016-08-02 08:31 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec 2016-08-10 12:36 - 2016-08-02 08:31 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll 2016-08-10 12:36 - 2016-08-02 08:31 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll 2016-08-10 12:36 - 2016-08-02 08:24 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll 2016-08-10 12:36 - 2016-08-02 08:23 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll 2016-08-10 12:36 - 2016-08-02 08:20 - 00615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll 2016-08-10 12:36 - 2016-08-02 08:19 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe 2016-08-10 12:36 - 2016-08-02 08:19 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe 2016-08-10 12:36 - 2016-08-02 08:18 - 06047744 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2016-08-10 12:36 - 2016-08-02 08:18 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll 2016-08-10 12:36 - 2016-08-02 08:18 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll 2016-08-10 12:36 - 2016-08-02 08:11 - 00969216 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe 2016-08-10 12:36 - 2016-08-02 08:08 - 00489984 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll 2016-08-10 12:36 - 2016-08-02 08:03 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb 2016-08-10 12:36 - 2016-08-02 08:00 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll 2016-08-10 12:36 - 2016-08-02 07:59 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll 2016-08-10 12:36 - 2016-08-02 07:56 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll 2016-08-10 12:36 - 2016-08-02 07:55 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll 2016-08-10 12:36 - 2016-08-02 07:54 - 20343808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2016-08-10 12:36 - 2016-08-02 07:53 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll 2016-08-10 12:36 - 2016-08-02 07:51 - 00497664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll 2016-08-10 12:36 - 2016-08-02 07:51 - 00341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec 2016-08-10 12:36 - 2016-08-02 07:51 - 00152064 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll 2016-08-10 12:36 - 2016-08-02 07:51 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll 2016-08-10 12:36 - 2016-08-02 07:51 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll 2016-08-10 12:36 - 2016-08-02 07:50 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll 2016-08-10 12:36 - 2016-08-02 07:47 - 02286592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll 2016-08-10 12:36 - 2016-08-02 07:45 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll 2016-08-10 12:36 - 2016-08-02 07:44 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll 2016-08-10 12:36 - 2016-08-02 07:42 - 00476160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll 2016-08-10 12:36 - 2016-08-02 07:41 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll 2016-08-10 12:36 - 2016-08-02 07:41 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll 2016-08-10 12:36 - 2016-08-02 07:41 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe 2016-08-10 12:36 - 2016-08-02 07:40 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll 2016-08-10 12:36 - 2016-08-02 07:38 - 00806400 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2016-08-10 12:36 - 2016-08-02 07:38 - 00724992 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2016-08-10 12:36 - 2016-08-02 07:37 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll 2016-08-10 12:36 - 2016-08-02 07:36 - 02131456 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl 2016-08-10 12:36 - 2016-08-02 07:33 - 00416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll 2016-08-10 12:36 - 2016-08-02 07:29 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll 2016-08-10 12:36 - 2016-08-02 07:28 - 15412224 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2016-08-10 12:36 - 2016-08-02 07:28 - 00091136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll 2016-08-10 12:36 - 2016-08-02 07:26 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll 2016-08-10 12:36 - 2016-08-02 07:25 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll 2016-08-10 12:36 - 2016-08-02 07:24 - 00279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll 2016-08-10 12:36 - 2016-08-02 07:23 - 02868224 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2016-08-10 12:36 - 2016-08-02 07:22 - 00130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll 2016-08-10 12:36 - 2016-08-02 07:21 - 04608000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll 2016-08-10 12:36 - 2016-08-02 07:16 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll 2016-08-10 12:36 - 2016-08-02 07:15 - 00692736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll 2016-08-10 12:36 - 2016-08-02 07:14 - 02055680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl 2016-08-10 12:36 - 2016-08-02 07:14 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll 2016-08-10 12:36 - 2016-08-02 07:11 - 13808128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll 2016-08-10 12:36 - 2016-08-02 07:10 - 01550848 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2016-08-10 12:36 - 2016-08-02 06:59 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll 2016-08-10 12:36 - 2016-08-02 06:56 - 02393088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll 2016-08-10 12:36 - 2016-08-02 06:53 - 01316352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll 2016-08-10 12:36 - 2016-08-02 06:51 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll 2016-08-10 12:36 - 2016-07-08 17:37 - 00154856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys 2016-08-10 12:36 - 2016-07-08 17:37 - 00095464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys 2016-08-10 12:36 - 2016-07-08 17:32 - 01464320 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll 2016-08-10 12:36 - 2016-07-08 17:32 - 01212928 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll 2016-08-10 12:36 - 2016-07-08 17:32 - 00730624 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll 2016-08-10 12:36 - 2016-07-08 17:32 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll 2016-08-10 12:36 - 2016-07-08 17:32 - 00463872 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll 2016-08-10 12:36 - 2016-07-08 17:32 - 00343552 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll 2016-08-10 12:36 - 2016-07-08 17:32 - 00316416 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll 2016-08-10 12:36 - 2016-07-08 17:32 - 00312320 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll 2016-08-10 12:36 - 2016-07-08 17:32 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll 2016-08-10 12:36 - 2016-07-08 17:32 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll 2016-08-10 12:36 - 2016-07-08 17:32 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll 2016-08-10 12:36 - 2016-07-08 17:32 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll 2016-08-10 12:36 - 2016-07-08 17:32 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll 2016-08-10 12:36 - 2016-07-08 17:32 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll 2016-08-10 12:36 - 2016-07-08 17:32 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll 2016-08-10 12:36 - 2016-07-08 17:32 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll 2016-08-10 12:36 - 2016-07-08 17:32 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll 2016-08-10 12:36 - 2016-07-08 17:32 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll 2016-08-10 12:36 - 2016-07-08 17:17 - 00666112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll 2016-08-10 12:36 - 2016-07-08 17:17 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll 2016-08-10 12:36 - 2016-07-08 17:16 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll 2016-08-10 12:36 - 2016-07-08 17:16 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll 2016-08-10 12:36 - 2016-07-08 17:16 - 00342528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll 2016-08-10 12:36 - 2016-07-08 17:16 - 00260608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll 2016-08-10 12:36 - 2016-07-08 17:16 - 00251392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll 2016-08-10 12:36 - 2016-07-08 17:16 - 00223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll 2016-08-10 12:36 - 2016-07-08 17:16 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll 2016-08-10 12:36 - 2016-07-08 17:16 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll 2016-08-10 12:36 - 2016-07-08 17:16 - 00141312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpchttp.dll 2016-08-10 12:36 - 2016-07-08 17:16 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll 2016-08-10 12:36 - 2016-07-08 17:16 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll 2016-08-10 12:36 - 2016-07-08 17:16 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll 2016-08-10 12:36 - 2016-07-08 17:16 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll 2016-08-10 12:36 - 2016-07-08 17:03 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe 2016-08-10 12:36 - 2016-07-08 17:01 - 03218944 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys 2016-08-10 12:36 - 2016-07-08 16:57 - 00159744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys 2016-08-10 12:36 - 2016-07-08 16:56 - 00291328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys 2016-08-10 12:36 - 2016-07-08 16:56 - 00129536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys 2016-08-10 12:36 - 2016-07-08 16:55 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe 2016-08-10 12:36 - 2016-07-08 16:55 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe 2016-08-10 12:36 - 2016-07-08 16:50 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll 2016-08-10 00:29 - 2016-08-10 00:29 - 00262144 _____ C:\Windows\Minidump\081016-31262-01.dmp ==================== Ein Monat: Geänderte Dateien und Ordner ======== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.) 2016-09-08 16:12 - 2014-11-10 00:50 - 00192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys 2016-09-08 16:04 - 2015-05-26 12:53 - 00001232 _____ C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-3719051794-263782235-1391171954-1000UA.job 2016-09-08 15:57 - 2015-07-14 15:18 - 00001110 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2016-09-08 15:55 - 2014-11-10 01:48 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job 2016-09-08 15:33 - 2014-11-10 20:00 - 00000000 ____D C:\Users\DJRISOW\Documents\Cubase Projects 2016-09-08 14:58 - 2015-09-24 02:30 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2016-09-08 14:58 - 2014-12-25 01:19 - 00000000 ____D C:\Users\DJRISOW\AppData\Roaming\Mp3tag 2016-09-08 14:48 - 2009-07-14 06:45 - 00021888 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2016-09-08 14:48 - 2009-07-14 06:45 - 00021888 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2016-09-08 14:40 - 2015-07-14 15:18 - 00001106 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2016-09-08 14:40 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT 2016-09-08 14:39 - 2014-11-10 00:30 - 00000000 ____D C:\ProgramData\NVIDIA 2016-09-08 14:26 - 2014-11-11 14:11 - 649733893 _____ C:\Windows\MEMORY.DMP 2016-09-08 14:26 - 2014-11-11 14:11 - 00000000 ____D C:\Windows\Minidump 2016-09-08 12:44 - 2015-07-23 18:44 - 00000358 _____ C:\Windows\Tasks\VacayExpert.job 2016-09-08 12:44 - 2015-07-10 12:44 - 00000358 _____ C:\Windows\Tasks\DogWiz.job 2016-09-08 12:44 - 2015-06-26 00:44 - 00000354 _____ C:\Windows\Tasks\MoneyAid.job 2016-09-08 12:44 - 2015-06-04 12:44 - 00000356 _____ C:\Windows\Tasks\RenderOrder.job 2016-09-08 11:57 - 2014-11-10 00:50 - 00109272 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamchameleon.sys 2016-09-08 10:51 - 2014-12-02 19:37 - 00000000 ____D C:\Users\DJRISOW\AppData\Local\Spectrasonics 2016-09-07 11:27 - 2014-11-10 00:36 - 00000000 ____D C:\Program Files (x86)\Google 2016-09-07 01:14 - 2016-03-28 16:25 - 00000000 ____D C:\Users\DJRISOW\AppData\Roaming\Spotify 2016-09-07 00:04 - 2015-05-26 12:53 - 00001180 _____ C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-3719051794-263782235-1391171954-1000Core.job 2016-09-06 22:05 - 2015-11-23 16:22 - 00000000 ____D C:\Users\DJRISOW\AppData\Roaming\vlc 2016-09-06 21:07 - 2014-11-12 19:01 - 00000000 ____D C:\Users\DJRISOW\AppData\Roaming\Dropbox 2016-09-06 19:57 - 2014-11-26 22:17 - 00000000 ____D C:\Program Files (x86)\VST 2016-09-06 19:57 - 2014-11-10 01:14 - 00000000 ____D C:\ProgramData\MAGIX 2016-09-06 19:02 - 2016-03-28 16:26 - 00000000 ____D C:\Users\DJRISOW\AppData\Local\Spotify 2016-09-05 18:23 - 2015-12-04 15:10 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Native Instruments 2016-09-05 18:23 - 2015-12-04 15:10 - 00000000 ____D C:\Program Files\Native Instruments 2016-09-05 13:06 - 2011-04-12 09:43 - 00699416 _____ C:\Windows\system32\perfh007.dat 2016-09-05 13:06 - 2011-04-12 09:43 - 00149556 _____ C:\Windows\system32\perfc007.dat 2016-09-05 13:06 - 2009-07-14 07:13 - 01620612 _____ C:\Windows\system32\PerfStringBackup.INI 2016-09-05 13:06 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\inf 2016-09-03 11:46 - 2016-07-26 13:59 - 00000000 ____D C:\Users\DJRISOW\Desktop\mac 2016-09-01 13:56 - 2014-11-17 14:48 - 00000000 ____D C:\Users\DJRISOW\AppData\Local\Native Instruments 2016-09-01 13:49 - 2014-11-17 14:46 - 00000000 ____D C:\Program Files\Common Files\Native Instruments 2016-09-01 13:46 - 2014-11-17 14:46 - 00000000 ____D C:\ProgramData\Native Instruments 2016-09-01 13:36 - 2015-12-06 23:44 - 00000000 ____D C:\Users\Public\Documents\NI Resources 2016-09-01 13:36 - 2015-12-04 15:11 - 00000000 ____D C:\Users\DJRISOW\Documents\Native Instruments 2016-09-01 13:26 - 2015-11-19 11:29 - 00000000 ____D C:\temp 2016-09-01 13:12 - 2015-12-05 18:05 - 00000000 ____D C:\Users\Public\Documents\Session Strings Pro Library 2016-09-01 13:12 - 2015-12-05 18:03 - 00000000 ____D C:\Users\Public\Documents\Scarbee Vintage Keys Library 2016-09-01 13:11 - 2015-12-05 17:35 - 00000000 ____D C:\Users\Public\Documents\Scarbee Funk Guitarist Library 2016-09-01 13:07 - 2015-12-05 16:34 - 00000000 ____D C:\Users\Public\Documents\Kontakt Factory Library 2016-09-01 13:03 - 2015-12-05 17:14 - 00000000 ____D C:\Users\Public\Documents\Evolve R2 Library 2016-09-01 13:02 - 2015-12-05 17:13 - 00000000 ____D C:\Users\Public\Documents\Evolve Mutations 2 Library 2016-09-01 13:02 - 2015-12-05 17:12 - 00000000 ____D C:\Users\Public\Documents\Evolve Mutations Library 2016-09-01 12:57 - 2015-12-05 17:07 - 00000000 ____D C:\Users\Public\Documents\Damage Library 2016-09-01 12:55 - 2015-12-05 16:59 - 00000000 ____D C:\Users\Public\Documents\Action Strings Library 2016-09-01 12:55 - 2015-12-05 16:58 - 00000000 ____D C:\Users\Public\Documents\Action Strikes Library 2016-09-01 12:37 - 2014-11-13 00:23 - 00000000 ____D C:\ProgramData\Package Cache 2016-08-31 18:12 - 2014-11-10 00:18 - 09619946 ____H C:\Users\DJRISOW\AppData\Local\IconCache.db.backup 2016-08-26 00:43 - 2015-02-26 20:25 - 00000000 ____D C:\Users\DJRISOW\AppData\Roaming\Skype 2016-08-17 17:59 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\rescache 2016-08-14 20:25 - 2015-12-22 14:35 - 00000000 ____D C:\Users\DJRISOW\AppData\Roaming\BREVERB 2 2016-08-14 18:53 - 2014-11-10 18:59 - 00000000 ____D C:\Users\DJRISOW\Documents\VST3 Presets 2016-08-12 16:08 - 2014-12-22 17:42 - 00000132 _____ C:\Users\DJRISOW\AppData\Roaming\Adobe PNG Format CS6 Prefs 2016-08-10 19:17 - 2009-07-14 06:45 - 07233296 _____ C:\Windows\system32\FNTCACHE.DAT 2016-08-10 12:59 - 2014-11-10 17:02 - 00000000 ____D C:\Windows\system32\MRT 2016-08-10 12:49 - 2014-11-10 17:02 - 147640136 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe ==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse ======= 2014-11-13 22:20 - 2009-11-05 10:50 - 9535488 _____ (Softube) C:\Program Files (x86)\Tube Delay.dll 2014-12-11 17:08 - 2014-12-11 17:08 - 0000000 ____H () C:\Users\DJRISOW\AppData\Roaming\.C2E86F5206385595.sys 2014-12-22 17:42 - 2016-08-12 16:08 - 0000132 _____ () C:\Users\DJRISOW\AppData\Roaming\Adobe PNG Format CS6 Prefs 2014-11-10 02:07 - 2016-02-12 00:02 - 0000722 _____ () C:\Users\DJRISOW\AppData\Roaming\buttrc 2014-12-20 04:21 - 2014-12-20 04:21 - 0335504 _____ () C:\Users\DJRISOW\AppData\Roaming\CodecsLE_Install.log 2014-11-10 01:50 - 2016-05-31 19:19 - 0000026 _____ () C:\Users\DJRISOW\AppData\Local\isoworkshop.ini 2014-12-04 23:40 - 2014-12-04 23:40 - 0000017 _____ () C:\Users\DJRISOW\AppData\Local\resmon.resmoncfg Einige Dateien in TEMP: ==================== C:\Users\DJRISOW\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpnazfx2.dll C:\Users\DJRISOW\AppData\Local\Temp\DTLite1010-0074.exe C:\Users\DJRISOW\AppData\Local\Temp\FastDownload.exe C:\Users\DJRISOW\AppData\Local\Temp\FreeYouTubeDownload.exe C:\Users\DJRISOW\AppData\Local\Temp\Hibiki.dll C:\Users\DJRISOW\AppData\Local\Temp\libeay32.dll C:\Users\DJRISOW\AppData\Local\Temp\msvcr120.dll C:\Users\DJRISOW\AppData\Local\Temp\nvSCPAPI.dll C:\Users\DJRISOW\AppData\Local\Temp\nvSCPAPI64.dll C:\Users\DJRISOW\AppData\Local\Temp\nvStereoApiI64.dll C:\Users\DJRISOW\AppData\Local\Temp\nvStInst.exe C:\Users\DJRISOW\AppData\Local\Temp\ochelper.dll C:\Users\DJRISOW\AppData\Local\Temp\ochelper.exe C:\Users\DJRISOW\AppData\Local\Temp\PlaySound.dll C:\Users\DJRISOW\AppData\Local\Temp\ReimagePackage.exe C:\Users\DJRISOW\AppData\Local\Temp\SkypeSetup.exe C:\Users\DJRISOW\AppData\Local\Temp\sqlite3.dll C:\Users\DJRISOW\AppData\Local\Temp\System.Data.SQLite.dll C:\Users\DJRISOW\AppData\Local\Temp\System.Data.SQLite27340.dll C:\Users\DJRISOW\AppData\Local\Temp\System.Data.SQLite34478.dll C:\Users\DJRISOW\AppData\Local\Temp\System.Data.SQLite46264.dll C:\Users\DJRISOW\AppData\Local\Temp\System.Data.SQLite82440.dll C:\Users\DJRISOW\AppData\Local\Temp\System.Data.SQLite83906.dll C:\Users\DJRISOW\AppData\Local\Temp\System.Data.SQLite90696.dll C:\Users\DJRISOW\AppData\Local\Temp\tmpF18B.tmp.exe C:\Users\DJRISOW\AppData\Local\Temp\uninstall.exe C:\Users\DJRISOW\AppData\Local\Temp\vlc-2.2.1-win32.exe ==================== Bamital & volsnap ================= (Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.) C:\Windows\system32\winlogon.exe => Datei ist digital signiert C:\Windows\system32\wininit.exe => Datei ist digital signiert C:\Windows\SysWOW64\wininit.exe => Datei ist digital signiert C:\Windows\explorer.exe => Datei ist digital signiert C:\Windows\SysWOW64\explorer.exe => Datei ist digital signiert C:\Windows\system32\svchost.exe => Datei ist digital signiert C:\Windows\SysWOW64\svchost.exe => Datei ist digital signiert C:\Windows\system32\services.exe => Datei ist digital signiert C:\Windows\system32\User32.dll => Datei ist digital signiert C:\Windows\SysWOW64\User32.dll => Datei ist digital signiert C:\Windows\system32\userinit.exe => Datei ist digital signiert C:\Windows\SysWOW64\userinit.exe => Datei ist digital signiert C:\Windows\system32\rpcss.dll => Datei ist digital signiert C:\Windows\system32\dnsapi.dll => Datei ist digital signiert C:\Windows\SysWOW64\dnsapi.dll => Datei ist digital signiert C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert LastRegBack: 2016-09-05 14:15 ==================== Ende von FRST.txt ============================ |
|
08.09.2016, 15:43
| #13 |
| | Google Chrome öffnet ständig Spam Seiten!Code:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 31-08-2016
durchgeführt von DJRISOW (08-09-2016 16:40:38)
Gestartet von C:\Users\DJRISOW\Desktop
Windows 7 Home Premium Service Pack 1 (X64) (2014-11-09 22:09:40)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
Administrator (S-1-5-21-3719051794-263782235-1391171954-500 - Administrator - Disabled)
C185D41A82D249B08899 (S-1-5-21-3719051794-263782235-1391171954-1004 - Limited - Enabled)
D1C562BF37D343A79588 (S-1-5-21-3719051794-263782235-1391171954-1003 - Limited - Enabled)
DJRISOW (S-1-5-21-3719051794-263782235-1391171954-1000 - Administrator - Enabled) => C:\Users\DJRISOW
Gast (S-1-5-21-3719051794-263782235-1391171954-501 - Limited - Disabled)
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
7-Zip 9.20 (HKLM-x32\...\7-Zip) (Version: - )
Adobe After Effects CC 2014 (HKLM-x32\...\{2B22C750-5C3B-4738-B621-BA786AC7A494}) (Version: 13.0.0 - Adobe Systems Incorporated)
Adobe Flash Player 22 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 22.0.0.209 - Adobe Systems Incorporated)
Adobe Photoshop CS6 (HKLM-x32\...\{74EB3499-8B95-4B5C-96EB-7B342F3FD0C6}) (Version: 13.0 - Adobe Systems Incorporated)
AIR Creative Collection (HKLM\...\{D3AE0FF1-6A78-4099-8779-B05E313B7828}) (Version: 11.0.0 - AIR Music Technology)
Amazon Music (HKU\S-1-5-21-3719051794-263782235-1391171954-1000\...\Amazon Amazon Music) (Version: 3.9.5.820 - Amazon Services LLC)
Antares Autotune Evo VST RTAS v6.0.9 (HKLM-x32\...\Antares Autotune Evo VST RTAS_is1) (Version: - )
Apple Application Support (32-Bit) (HKLM-x32\...\{FE5C2FAA-118D-4509-B51D-3F71CC9E1B3E}) (Version: 4.3 - Apple Inc.)
Apple Application Support (64-Bit) (HKLM\...\{2937FD88-C9D6-4B82-B539-37CD0A572F42}) (Version: 4.3 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{2E4AF2A6-50EA-4260-9BA4-5E582D11879A}) (Version: 9.3.0.15 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Version: 2.2.0.150 - Apple Inc.)
Arabic World Strings (HKLM-x32\...\Arabic World Strings1.0) (Version: 1.0 - Arabic World PLugins)
Arturia minimoog V v1.6 (HKLM-x32\...\Arturia minimoog V_is1) (Version: - )
ASRock 3TB+ Unlocker v1.0 (HKLM\...\ASRock 3TB+ Unlocker_is1) (Version: - ASRock Inc.)
ASRock eXtreme Tuner v0.1.71 (HKLM-x32\...\ASRock eXtreme Tuner_is1) (Version: - )
ASRock InstantBoot v1.26 (HKLM-x32\...\ASRock InstantBoot_is1) (Version: - )
Auto-Tune EFX VST (HKLM-x32\...\{95292902-411B-4390-BCBD-8EA445F9456C}) (Version: 1.0.0 - Antares Audio Technologies)
Avid Codecs LE (HKLM-x32\...\{96263993-5E28-424D-A542-FDDEE1217CFF}) (Version: 2.4.0 - Avid Technology, Inc.)
Avid Effects (HKLM\...\{0faad20d-ad8d-4249-ad93-7f006f2aa54b}) (Version: 11.2.2 - Avid Technology, Inc.)
Avid HD Driver (x64) (HKLM\...\{658E112A-8776-4430-A275-D9248732DFB9}) (Version: 11.2.2 - Avid Technology, Inc.)
Avid Pro Tools (HKLM\...\{4D24A12F-11DE-4CA0-9CB7-0418C86A8244}) (Version: 11.2.2 - Avid Technology, Inc.)
Avid Sound Replacer (HKLM\...\{6493231d-d7c3-436e-880b-b1f12882b60c}) (Version: 11.0.0 - Avid Technology, Inc.)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
BREVERB 2 (HKLM-x32\...\{B2D9F699-B4A4-4D37-941E-1B55DF33A96D}_is1) (Version: 2.1.8 - Overloud)
Broadcom Gigabit NetLink Controller (HKLM\...\{C91DCB72-F5BB-410D-A91A-314F5D1B4284}) (Version: 14.6.1.3 - Broadcom Corporation)
bx_shredspread 1.9 (HKLM\...\bx_shredspread_is1) (Version: 1.9 - Plugin Alliance)
bx_solo 1.7 (HKLM\...\bx_solo_is1) (Version: 1.7 - Plugin Alliance)
Camel Audio Camel Phat VST v3.15 (HKLM-x32\...\Camel Audio Camel Phat VST v3.15) (Version: - )
Camel Audio Camel Space VST v1.15 (HKLM-x32\...\Camel Audio Camel Space VST v1.15) (Version: - )
Canon Utilities EOS Utility 2 (HKLM-x32\...\EOS Utility 2) (Version: 2.14.10.2 - Canon Inc.)
Canon Utilities PhotoStitch (HKLM-x32\...\PhotoStitch) (Version: 3.1.23.47 - Canon Inc.)
Celemony Melodyne Studio 4 (HKLM-x32\...\Celemony Melodyne Studio 4) (Version: 4.0.4.001 - Celemony)
Comodo Dragon (HKLM-x32\...\Comodo Dragon) (Version: 33.1.0.1 - Comodo)
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.1.0.0074 - Disc Soft Ltd)
Dropbox (HKU\S-1-5-21-3719051794-263782235-1391171954-1000\...\Dropbox) (Version: 10.3.21 - Dropbox, Inc.)
Druckerdeinstallation für EPSON SX125 Series (HKLM\...\EPSON SX125 Series) (Version: - SEIKO EPSON Corporation)
E²Deesser (HKLM-x32\...\E²Deesser_is1) (Version: 1.2.0 - Eiosis, Inc.)
ElastikVst (x32 Version: 1.00.0000 - ueberschall sample service GmbH) Hidden
E-License Manager (HKLM-x32\...\E-License Manager) (Version: 1.3.0.0 - Best Service)
E-License Manager (Version: 1.3.0.0 - Magix) Hidden
eLicenser Control (HKLM-x32\...\eLicenser Control) (Version: 6.9.2.1179 - Steinberg Media Technologies GmbH)
Engine 2 (HKLM-x32\...\Engine 2) (Version: 2.3.0.25 - Best Service)
Engine 2 (Version: 2.3.0.25 - Best Service) Hidden
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version: - Seiko Epson Corporation)
Etron USB3.0 Host Controller (HKLM-x32\...\InstallShield_{DFBB738C-71D8-4DC5-B8D2-D65C37680E27}) (Version: 0.96 - Etron Technology)
Etron USB3.0 Host Controller (x32 Version: 0.96 - Etron Technology) Hidden
FormatFactory 3.3.5.0 (HKLM-x32\...\FormatFactory) (Version: 3.3.5.0 - Format Factory)
Free PDF to Word Doc Converter v1.1 (HKLM-x32\...\Free PDF to Word Doc Converter_is1) (Version: 1.1 - www.hellopdf.com)
GetFLV 9.8.128.18 (HKLM-x32\...\GetFLV_is1) (Version: - GetFLV, Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 53.0.2785.89 - Google Inc.)
Google Earth (HKLM-x32\...\{817750FA-EC6A-485D-9901-0683AE6FFDF1}) (Version: 7.1.5.1557 - Google)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.31.5 - Google Inc.) Hidden
Gramblr (HKLM\...\Gramblr) (Version: 2.0.0 - Gramblr Team)
Hap QuickTime Component (HKLM-x32\...\{BCA56BF3-6A57-4C4D-A151-701267CFF530}) (Version: 7.0.0 - Vidvox)
HOFA-Plugins Uninstall (HKLM-x32\...\HOFA-Plugins) (Version: - HOFA-Plugins)
Intel(R) C++ Redistributables on IA-32 (HKLM-x32\...\{317059CB-7642-4F2E-89C0-62E69D4074B7}) (Version: 15.0.148 - Intel Corporation)
Intel(R) C++ Redistributables on Intel(R) 64 (HKLM-x32\...\{2DD3C090-2986-4970-B3CB-87BB4C8AC4A5}) (Version: 15.0.148 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 7.0.0.1144 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 8.15.10.2361 - Intel Corporation)
Interlok driver setup x64 (HKLM\...\{25613C10-27D2-410B-942B-D922D5C3A7BE}) (Version: 5.9.5 - PACE Anti-Piracy, Inc.)
ISO Workshop 5.5 (HKLM-x32\...\ISO Workshop_is1) (Version: - Glorylogic)
iTunes (HKLM\...\{A31C5565-90D9-4615-AE13-94D86C3836C7}) (Version: 12.3.3.17 - Apple Inc.)
Juicer 3.90 (HKLM-x32\...\{640EAE56-81A2-49D4-9B8C-00DA3C0031AF}_is1) (Version: - Digital Juice, Inc.)
LinPlug Spectral (HKU\S-1-5-21-3719051794-263782235-1391171954-1000\...\LinPlug Spectral) (Version: - )
L-Normalizer version 2.0.2 (HKLM-x32\...\{92F87FD0-B41C-11E3-B0B1-005056A77E8F}_is1) (Version: 2.0.2 - beDSP)
Magic Bullet QuickLooks for Magix 1.4.4 (HKLM\...\{9D084A74-7208-4433-81A0-8D8AF0B1FFE3}_is1) (Version: 1.4.4 - Red Giant, LLC)
MAGIX Speed burnR (MSI) (HKLM-x32\...\MX.{328343FF-0466-4E8D-88EB-53CE3150AE11}) (Version: 7.0.2.6 - MAGIX Software GmbH)
MAGIX Speed burnR (MSI) (Version: 7.0.2.6 - MAGIX Software GmbH) Hidden
MAGIX Video Pro X6 (Designelemente) (HKLM\...\MX.{B819C28D-D7A1-4A73-B97D-BCEC5616BB4A}) (Version: 1.0.0.0 - MAGIX AG)
MAGIX Video Pro X6 (Designelemente) (Version: 1.0.0.0 - MAGIX AG) Hidden
MAGIX Video Pro X6 (Filmvorlagen) (HKLM\...\MX.{3FB5F487-B8A5-46E4-872D-2CDA114466F4}) (Version: 1.0.0.0 - MAGIX AG)
MAGIX Video Pro X6 (Filmvorlagen) (Version: 1.0.0.0 - MAGIX AG) Hidden
MAGIX Video Pro X6 (Fotoshow Maker-Stile) (HKLM\...\MX.{8F592157-9C7D-4D9E-B712-5A0D1D982819}) (Version: 1.0.0.0 - MAGIX AG)
MAGIX Video Pro X6 (Fotoshow Maker-Stile) (Version: 1.0.0.0 - MAGIX AG) Hidden
MAGIX Video Pro X6 (HKLM\...\MX.{CBC84EDA-E830-4240-9392-325C3E6D5DCA}) (Version: 13.0.4.2 - MAGIX Software GmbH)
MAGIX Video Pro X6 (Individuelle Menüvorlagen) (HKLM\...\MX.{46014C2A-4768-4171-9FDE-9DF30836D387}) (Version: 1.0.0.0 - MAGIX AG)
MAGIX Video Pro X6 (Individuelle Menüvorlagen) (Version: 1.0.0.0 - MAGIX AG) Hidden
MAGIX Video Pro X6 (Menüvorlagen) (HKLM\...\MX.{C631DC28-575A-422B-AA9C-829834486F38}) (Version: 1.0.0.0 - MAGIX AG)
MAGIX Video Pro X6 (Menüvorlagen) (Version: 1.0.0.0 - MAGIX AG) Hidden
MAGIX Video Pro X6 (proDAD Mercalli V2) (HKLM\...\MX.{A90FD7D9-5A48-4350-BA1C-E39390D158B7}) (Version: 1.0.0.0 - MAGIX AG)
MAGIX Video Pro X6 (proDAD Mercalli V2) (Version: 1.0.0.0 - MAGIX AG) Hidden
MAGIX Video Pro X6 (Red Giant Magic Bullet Quick Looks) (HKLM\...\MX.{B007B681-3208-4FEE-BD51-E97D3D913545}) (Version: 1.0.1.0 - MAGIX Software GmbH)
MAGIX Video Pro X6 (Red Giant Magic Bullet Quick Looks) (Version: 1.0.1.0 - MAGIX Software GmbH) Hidden
MAGIX Video Pro X6 (Soundtrack Maker-Stile) (HKLM\...\MX.{55A35129-47E9-4E81-9B98-775D631794AC}) (Version: 1.0.0.0 - MAGIX AG)
MAGIX Video Pro X6 (Soundtrack Maker-Stile) (Version: 1.0.0.0 - MAGIX AG) Hidden
MAGIX Video Pro X6 (Titeleffekte) (HKLM\...\MX.{4D0530E3-9918-4264-8108-B3B7E8F7B910}) (Version: 1.0.0.0 - MAGIX AG)
MAGIX Video Pro X6 (Titeleffekte) (Version: 1.0.0.0 - MAGIX AG) Hidden
MAGIX Video Pro X6 (Tutorials) (HKLM\...\MX.{9BE10A05-17B2-4CC5-8701-7ACD0FB4C2CC}) (Version: 1.0.0.0 - MAGIX AG)
MAGIX Video Pro X6 (Tutorials) (Version: 1.0.0.0 - MAGIX AG) Hidden
MAGIX Video Pro X6 (Überblendeffekte) (HKLM\...\MX.{56DE2115-3FF0-42CD-91A1-9BA4C9C7B8CA}) (Version: 1.0.0.0 - MAGIX AG)
MAGIX Video Pro X6 (Überblendeffekte) (Version: 1.0.0.0 - MAGIX AG) Hidden
MAGIX Video Pro X6 (Version: 13.0.4.2 - MAGIX Software GmbH) Hidden
MAGIX Video Pro X6 64 bit Update (Version: 13.0.5.9 - MAGIX AG) Hidden
Malwarebytes Anti-Malware Version 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
marvell 91xx driver (HKLM-x32\...\MagniDriver) (Version: 1.2.0.1003 - Marvell)
MediaInfo 0.7.82 (HKLM\...\MediaInfo) (Version: 0.7.82 - MediaArea.net)
Metric Collection SDK 35 (x32 Version: 1.2.0006.00 - Lenovo Group Limited) Hidden
Microsoft .NET Framework 4 Client Profile DEU Language Pack (HKLM\...\Microsoft .NET Framework 4 Client Profile DEU Language Pack) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Extended DEU Language Pack (HKLM\...\Microsoft .NET Framework 4 Extended DEU Language Pack) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4.5 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50709 - Microsoft Corporation)
Microsoft Office Word Viewer 2003 (HKLM-x32\...\{90850407-6000-11D3-8CFE-0150048383C9}) (Version: 11.0.8173.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable - KB2467175 (HKLM-x32\...\{a0fe116e-9a8a-466f-aee0-625cb7c207e3}) (Version: 8.0.51011 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) - KB2467175 (HKLM\...\{aac9fcc4-dd9e-4add-901c-b5496a07ab2e}) (Version: 8.0.51011 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.51106 (HKLM-x32\...\{6e8f74e0-43bd-4dce-8477-6ff6828acc07}) (Version: 11.0.51106.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.51106 (HKLM-x32\...\{8e70e4e1-06d7-470b-9f74-a51bef21088e}) (Version: 11.0.51106.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Miroslav Philharmonik (HKLM-x32\...\{BA0D0121-A3BA-487D-9C78-7AB0E676C722}) (Version: 1.0.0 - IK Multimedia)
Miroslav Philharmonik Instruments (HKLM-x32\...\{9FCCC8D1-3152-4699-8793-6CB0B9E26EBB}) (Version: 1.0 - IK Multimedia)
MixMeister BPM Analyzer 1.0 (HKLM-x32\...\MixMeister BPM Analyzer_is1) (Version: - MixMeister Technology LLC)
mocha Pro V3.2.1-7276 (HKLM-x32\...\{110ABF3B-74FA-45A4-B893-8482DA52AA9D}) (Version: 3.21.7276 - Imagineer Systems)
Mozilla Firefox 43.0.1 (x86 de) (HKLM-x32\...\Mozilla Firefox 43.0.1 (x86 de)) (Version: 43.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 43.0.1.5828 - Mozilla)
Mp3tag v2.71 (HKLM-x32\...\Mp3tag) (Version: v2.71 - Florian Heidenreich)
MSXML 4.0 SP3 Parser (KB2721691) (HKLM-x32\...\{355B5AC0-CEEE-42C5-AD4D-7F3CFD806C36}) (Version: 4.30.2114.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
Native Instruments Abbey Road 50s Drummer (HKLM-x32\...\Native Instruments Abbey Road 50s Drummer) (Version: 1.2.0.10 - Native Instruments)
Native Instruments Abbey Road 60s Drummer (HKLM-x32\...\Native Instruments Abbey Road 60s Drummer) (Version: 1.3.0.11 - Native Instruments)
Native Instruments Abbey Road 70s Drummer (HKLM-x32\...\Native Instruments Abbey Road 70s Drummer) (Version: 1.3.0.7 - Native Instruments)
Native Instruments Abbey Road 80s Drummer (HKLM-x32\...\Native Instruments Abbey Road 80s Drummer) (Version: 1.3.0.4 - Native Instruments)
Native Instruments Abbey Road Modern Drummer (HKLM-x32\...\Native Instruments Abbey Road Modern Drummer) (Version: 1.3.0.2 - Native Instruments)
Native Instruments Abbey Road Vintage Drummer (HKLM-x32\...\Native Instruments Abbey Road Vintage Drummer) (Version: 1.3.0.9 - Native Instruments)
Native Instruments Absynth 5 (HKLM-x32\...\Native Instruments Absynth 5) (Version: 5.3.1.1628 - Native Instruments)
Native Instruments Action Strikes (HKLM-x32\...\Native Instruments Action Strikes) (Version: 1.2.0.2 - Native Instruments)
Native Instruments Action Strings (HKLM-x32\...\Native Instruments Action Strings) (Version: 1.5.0.1 - Native Instruments)
Native Instruments Alicias Keys (HKLM-x32\...\Native Instruments Alicias Keys) (Version: 1.5.0.1 - Native Instruments)
Native Instruments Balinese Gamelan (HKLM-x32\...\Native Instruments Balinese Gamelan) (Version: 1.2.0.5 - Native Instruments)
Native Instruments Battery 4 (HKLM-x32\...\Native Instruments Battery 4) (Version: 4.1.5.254 - Native Instruments)
Native Instruments Battery 4 Factory Library (HKLM-x32\...\Native Instruments Battery 4 Factory Library) (Version: 1.1.0.1 - Native Instruments)
Native Instruments Controller Editor (HKLM-x32\...\Native Instruments Controller Editor) (Version: 1.11.0.465 - Native Instruments)
Native Instruments Cuba (HKLM-x32\...\Native Instruments Cuba) (Version: 1.2.0.1 - Native Instruments)
Native Instruments Damage (HKLM-x32\...\Native Instruments Damage) (Version: 1.5.0.2 - Native Instruments)
Native Instruments Driver (HKLM-x32\...\Native Instruments Driver) (Version: 1.3.1.45 - Native Instruments)
Native Instruments Drum Lab (HKLM-x32\...\Native Instruments Drum Lab) (Version: 1.2.0.5 - Native Instruments)
Native Instruments Enhanced EQ (HKLM-x32\...\Native Instruments Enhanced EQ) (Version: 1.3.1.45 - Native Instruments)
Native Instruments Evolve Mutations (HKLM-x32\...\Native Instruments Evolve Mutations) (Version: 1.2.0.1 - Native Instruments)
Native Instruments Evolve Mutations 2 (HKLM-x32\...\Native Instruments Evolve Mutations 2) (Version: 1.2.0.1 - Native Instruments)
Native Instruments Evolve R2 (HKLM-x32\...\Native Instruments Evolve R2) (Version: 1.7.0.2 - Native Instruments)
Native Instruments FM8 (HKLM-x32\...\Native Instruments FM8) (Version: 1.4.1.1599 - Native Instruments)
Native Instruments Form (HKLM-x32\...\Native Instruments Form) (Version: 1.0.0.7 - Native Instruments)
Native Instruments George Duke Soul Treasures (HKLM-x32\...\Native Instruments George Duke Soul Treasures) (Version: 1.3.0.15 - Native Instruments)
Native Instruments Guitar Rig 5 (HKLM-x32\...\Native Instruments Guitar Rig 5) (Version: 5.2.0.2770 - Native Instruments)
Native Instruments Guitar Rig Pro Library for Maschine (HKLM-x32\...\Native Instruments Guitar Rig Pro Library for Maschine) (Version: - Native Instruments)
Native Instruments Kinetic Metal (HKLM-x32\...\Native Instruments Kinetic Metal) (Version: 1.1.0.13 - Native Instruments)
Native Instruments Komplete 10 Ultimate (HKLM-x32\...\Native Instruments Komplete 10 Ultimate) (Version: - Native Instruments)
Native Instruments Kontakt 5 (HKLM-x32\...\Native Instruments Kontakt 5) (Version: 5.5.2.880 - Native Instruments)
Native Instruments Kontakt Factory Library (HKLM-x32\...\Native Instruments Kontakt Factory Library) (Version: 1.2.0.3 - Native Instruments)
Native Instruments Kontour (HKLM-x32\...\Native Instruments Kontour) (Version: 1.0.0.4 - Native Instruments)
Native Instruments Maschine Drum Selection (HKLM-x32\...\Native Instruments Maschine Drum Selection) (Version: 1.3.0.2 - Native Instruments)
Native Instruments Massive (HKLM-x32\...\Native Instruments Massive) (Version: 1.5.1.637 - Native Instruments)
Native Instruments Molekular (HKLM-x32\...\Native Instruments Molekular) (Version: 1.0.0.2 - Native Instruments)
Native Instruments Monark (HKLM-x32\...\Native Instruments Monark) (Version: 1.3.0.2 - Native Instruments)
Native Instruments Native Access (HKLM-x32\...\Native Instruments Native Access) (Version: 1.0.20.101 - Native Instruments)
Native Instruments Passive EQ (HKLM-x32\...\Native Instruments Passive EQ) (Version: 1.3.1.45 - Native Instruments)
Native Instruments Polyplex (HKLM-x32\...\Native Instruments Polyplex) (Version: 1.1.0.2 - Native Instruments)
Native Instruments Rammfire (HKLM-x32\...\Native Instruments Rammfire) (Version: 2.0.0.4 - Native Instruments)
Native Instruments Razor (HKLM-x32\...\Native Instruments Razor) (Version: 1.7.0.1 - Native Instruments)
Native Instruments RC 24 (HKLM-x32\...\Native Instruments RC 24) (Version: 1.3.1.45 - Native Instruments)
Native Instruments RC 48 (HKLM-x32\...\Native Instruments RC 48) (Version: 1.3.1.45 - Native Instruments)
Native Instruments Reaktor 5 (HKLM-x32\...\Native Instruments Reaktor 5) (Version: 5.9.4.1512 - Native Instruments)
Native Instruments Reaktor 6 (HKLM-x32\...\Native Instruments Reaktor 6) (Version: 6.0.3.16 - Native Instruments)
Native Instruments Reaktor Blocks (HKLM-x32\...\Native Instruments Reaktor Blocks) (Version: 1.2.0.3 - Native Instruments)
Native Instruments Reaktor Factory Library (HKLM-x32\...\Native Instruments Reaktor Factory Library) (Version: 1.1.0.3 - Native Instruments)
Native Instruments Reaktor Prism (HKLM-x32\...\Native Instruments Reaktor Prism) (Version: 1.6.0.1 - Native Instruments)
Native Instruments Reaktor Spark R2 (HKLM-x32\...\Native Instruments Reaktor Spark R2) (Version: 1.4.0.3 - Native Instruments)
Native Instruments Reflektor (HKLM-x32\...\Native Instruments Reflektor) (Version: 2.0.0.6 - Native Instruments)
Native Instruments Retro Machines Mk2 (HKLM-x32\...\Native Instruments Retro Machines Mk2) (Version: 1.3.0.3 - Native Instruments)
Native Instruments Rise and Hit (HKLM-x32\...\Native Instruments Rise and Hit) (Version: 1.2.0.10 - Native Instruments)
Native Instruments Rounds (HKLM-x32\...\Native Instruments Rounds) (Version: 1.2.0.1 - Native Instruments)
Native Instruments Scarbee Funk Guitarist (HKLM-x32\...\Native Instruments Scarbee Funk Guitarist) (Version: 1.2.0.1 - Native Instruments)
Native Instruments Scarbee Jay-Bass (HKLM-x32\...\Native Instruments Scarbee Jay-Bass) (Version: 1.1.0.2 - Native Instruments)
Native Instruments Scarbee MM-Bass (HKLM-x32\...\Native Instruments Scarbee MM-Bass) (Version: 1.2.0.4 - Native Instruments)
Native Instruments Scarbee MM-Bass Amped (HKLM-x32\...\Native Instruments Scarbee MM-Bass Amped) (Version: 1.1.0.2 - Native Instruments)
Native Instruments Scarbee Pre-Bass (HKLM-x32\...\Native Instruments Scarbee Pre-Bass) (Version: 1.2.0.2 - Native Instruments)
Native Instruments Scarbee Pre-Bass Amped (HKLM-x32\...\Native Instruments Scarbee Pre-Bass Amped) (Version: 1.1.0.2 - Native Instruments)
Native Instruments Scarbee Rickenbacker Bass (HKLM-x32\...\Native Instruments Scarbee Rickenbacker Bass) (Version: 1.2.0.2 - Native Instruments)
Native Instruments Scarbee Vintage Keys (HKLM-x32\...\Native Instruments Scarbee Vintage Keys) (Version: 1.3.0.4 - Native Instruments)
Native Instruments Service Center (HKLM-x32\...\Native Instruments Service Center) (Version: 2.6.0.137 - Native Instruments)
Native Instruments Session Horns Pro (HKLM-x32\...\Native Instruments Session Horns Pro) (Version: 1.3.0.2 - Native Instruments)
Native Instruments Session Strings Pro (HKLM-x32\...\Native Instruments Session Strings Pro) (Version: 1.4.0.2 - Native Instruments)
Native Instruments Skanner XT (HKLM-x32\...\Native Instruments Skanner XT) (Version: 1.3.0.2 - Native Instruments)
Native Instruments Solid Bus Comp FX (HKLM-x32\...\Native Instruments Solid Bus Comp FX) (Version: 1.3.1.45 - Native Instruments)
Native Instruments Solid Dynamics FX (HKLM-x32\...\Native Instruments Solid Dynamics FX) (Version: 1.3.1.45 - Native Instruments)
Native Instruments Solid EQ FX (HKLM-x32\...\Native Instruments Solid EQ FX) (Version: 1.3.1.45 - Native Instruments)
Native Instruments Studio Drummer (HKLM-x32\...\Native Instruments Studio Drummer) (Version: 1.4.0.12 - Native Instruments)
Native Instruments Supercharger GT (HKLM-x32\...\Native Instruments Supercharger GT) (Version: 1.3.1.45 - Native Instruments)
Native Instruments The Finger R2 (HKLM-x32\...\Native Instruments The Finger R2) (Version: 1.3.0.12 - Native Instruments)
Native Instruments The Gentleman (HKLM-x32\...\Native Instruments The Gentleman) (Version: 1.2.0.2 - Native Instruments)
Native Instruments The Giant (HKLM-x32\...\Native Instruments The Giant) (Version: 1.2.0.7 - Native Instruments)
Native Instruments The Grandeur (HKLM-x32\...\Native Instruments The Grandeur) (Version: 1.2.0.2 - Native Instruments)
Native Instruments The Maverick (HKLM-x32\...\Native Instruments The Maverick) (Version: 1.2.0.2 - Native Instruments)
Native Instruments The Mouth (HKLM-x32\...\Native Instruments The Mouth) (Version: 1.3.0.4 - Native Instruments)
Native Instruments Traktors 12 (HKLM-x32\...\Native Instruments Traktors 12) (Version: 2.0.0.6 - Native Instruments)
Native Instruments Transient Master FX (HKLM-x32\...\Native Instruments Transient Master FX) (Version: 1.3.1.45 - Native Instruments)
Native Instruments Vari Comp (HKLM-x32\...\Native Instruments Vari Comp) (Version: 1.3.1.45 - Native Instruments)
Native Instruments VC 160 FX (HKLM-x32\...\Native Instruments VC 160 FX) (Version: 1.3.1.45 - Native Instruments)
Native Instruments VC 2A FX (HKLM-x32\...\Native Instruments VC 2A FX) (Version: 1.3.1.45 - Native Instruments)
Native Instruments VC 76 FX (HKLM-x32\...\Native Instruments VC 76 FX) (Version: 1.3.1.45 - Native Instruments)
Native Instruments Vintage Organs (HKLM-x32\...\Native Instruments Vintage Organs) (Version: 1.4.0.5 - Native Instruments)
Native Instruments West Africa (HKLM-x32\...\Native Instruments West Africa) (Version: 1.3.0.2 - Native Instruments)
Nero BurningROM 2015 (HKLM-x32\...\{32CEC4AD-4BEF-4EB8-833E-47DAE9382653}) (Version: 16.0.01500 - Nero AG)
Nero Info (HKLM-x32\...\{B791E0AB-87A9-41A4-8D98-D13C2E37D928}) (Version: 16.0.1003 - Nero AG)
NVIDIA 3D Vision Controller-Treiber 347.09 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 347.09 - NVIDIA Corporation)
NVIDIA 3D Vision Treiber 347.25 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 347.25 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.1.5 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.1.5 - NVIDIA Corporation)
NVIDIA Grafiktreiber 347.25 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 347.25 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.33.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.33.0 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.14.0702 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.14.0702 - NVIDIA Corporation)
OpenOffice 4.1.1 (HKLM-x32\...\{ACD0FFF9-6B35-43C1-82DB-9FF6990E8602}) (Version: 4.11.9775 - Apache Software Foundation)
OrangeVocoder v2.0-OxYGeN (HKLM-x32\...\OrangeVocoder v2.0-OxYGeN) (Version: - )
PACE License Support Win64 (HKLM-x32\...\InstallShield_{DF91FC8F-0D43-415b-BB5D-22533FC1CC1A}) (Version: 2.6.0.1134 - PACE Anti-Piracy, Inc.)
PACE License Support Win64 (Version: 2.6.0.1134 - PACE Anti-Piracy, Inc.) Hidden
PCM Native Reverb Bundle (HKLM-x32\...\PCM Native Reverb Bundle) (Version: - Lexicon)
PCM Native Reverb Bundle (x32 Version: 1.1.3 - Lexicon) Hidden
PCR-Treiber (HKLM\...\RolandRDID0027) (Version: - Roland Corporation)
PDF Settings CS6 (x32 Version: 11.0 - Adobe Systems Incorporated) Hidden
PDFCreator (HKLM-x32\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 1.7.3 - pdfforge)
PDF-Viewer (HKLM\...\{A278382D-4F1B-4D47-9885-8523F7261E8D}_is1) (Version: 2.5.311.0 - Tracker Software Products Ltd)
Ponyhoof (HKLM-x32\...\{88E96402-3BBD-02D9-0A36-6FB806AEE04E}) (Version: - )
Prerequisite installer (x32 Version: 16.0.0000 - Nero AG) Hidden
proDAD Mercalli 2.0 (64bit) (HKLM\...\proDAD-Mercalli-2.0) (Version: 2.0.116 - proDAD GmbH)
proDAD Mercalli 3.0 (64bit) (HKLM\...\proDAD-Mercalli-3.0) (Version: 3.0.215.1 - proDAD GmbH)
proDAD Vitascene 2.0 (64bit) (HKLM\...\proDAD-Vitascene-2.0) (Version: 2.0.227 - proDAD GmbH)
QuickTime 7 (HKLM-x32\...\{3D2CBC2C-65D4-4463-87AB-BB2C859C1F3E}) (Version: 7.76.80.95 - Apple Inc.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6257 - Realtek Semiconductor Corp.)
Revoice Pro (32 bit) (HKLM-x32\...\{7481C12D-51CF-4747-B1D5-3D7FE7612F0F}) (Version: 2.6.1.1 - Synchro Arts Ltd)
RME DIGICheck (HKLM-x32\...\{872BD2A4-7CB6-4692-A74E-99ABA11DED75}) (Version: 580rel - RME)
RME Fireface USB (HKLM\...\FIREFACE_USB) (Version: 1.0.89.0 - RME Intelligent Audio Solutions)
SHIELD Streaming (Version: 3.1.3000 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 16.18.9 - NVIDIA Corporation) Hidden
Skype™ 7.7 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.7.103 - Skype Technologies S.A.)
Softube Acoustic Feedback VST RTAS v1.0.7 (HKLM-x32\...\Softube Acoustic Feedback VST RTAS_is1) (Version: - )
Softube Bass Amp Room VST RTAS v1.0.2 (HKLM-x32\...\Softube Bass Amp Room VST RTAS_is1) (Version: - )
Softube FET Compressor VST RTAS v1.0.3 (HKLM-x32\...\Softube FET Compressor VST RTAS_is1) (Version: - )
Softube Metal Amp Room VST RTAS v1.1.5 (HKLM-x32\...\Softube Metal Amp Room VST RTAS_is1) (Version: - )
Softube Passive-Active Pack VST RTAS v1.0.2 (HKLM-x32\...\Softube Passive-Active Pack VST RTAS_is1) (Version: - )
Softube Plug-Ins (VST AAX 32-bit) (HKLM-x32\...\Softube Plug-Ins (VST AAX 32-bit)) (Version: 2.2.84 - Softube AB)
Softube Plug-Ins (VST AAX 64-bit) (HKLM\...\Softube Plug-Ins (VST AAX 64-bit)) (Version: 2.2.84 - Softube AB)
Softube Spring Reverb VST RTAS v1.0.4 (HKLM-x32\...\Softube Spring Reverb VST RTAS_is1) (Version: - )
Softube Tonelux Tilt VST RTAS v1.0 (HKLM-x32\...\Softube Tonelux Tilt_is1) (Version: - )
Softube Trident A-Range VST RTAS v1.0.2 (HKLM-x32\...\Softube Trident A-Range VST RTAS_is1) (Version: - )
Softube Tube Delay VST RTAS v1.0.5 (HKLM-x32\...\Softube Tube Delay VST RTAS_is1) (Version: - )
Softube Tube-Tech CL 1B VST RTAS v1.0.3 (HKLM-x32\...\Softube Tube-Tech CL 1B VST RTAS_is1) (Version: - )
Softube Tube-Tech PE 1C VST RTAS v1.0.1 (HKLM-x32\...\Softube Tube-Tech PE 1C_is1) (Version: - )
Softube Valley People Dyna-mite VST RTAS v1.0.1 (HKLM-x32\...\Softube Valley People Dyna-mite VST RTAS_is1) (Version: - )
Softube Vintage Amp Room VST RTAS v1.05 (HKLM-x32\...\Softube Vintage Amp Room VST RTAS_is1) (Version: - )
Sonnox Fraunhofer Codec Toolbox v1.0.6 (HKLM\...\Sonnox Fraunhofer Codec Toolbox v1.0.6_is1) (Version: 1.0.6 - Sonnox Ltd, Oxford, UK)
Sonnox Oxford Inflator Native VST v1.5.1 (HKLM-x32\...\Sonnox Oxford Inflator Native VST_is1) (Version: - Team AiR 2007)
Sonnox Oxford Limiter Native VST v1.1.1 (HKLM-x32\...\Sonnox Oxford Limiter Native VST_is1) (Version: - Team AiR 2007)
Sonnox Oxford R3 Dynamics Native VST v1.3.1 (HKLM-x32\...\Sonnox Oxford R3 Dynamics Native VST_is1) (Version: - Team AiR 2007)
Sonnox Oxford R3 EQ Native VST v1.6.1 (HKLM-x32\...\Sonnox Oxford R3 EQ Native VST_is1) (Version: - Team AiR 2007)
Sonnox Oxford Reverb Native VST v1.0 (HKLM-x32\...\Sonnox Oxford Reverb Native VST_is1) (Version: - Team AiR 2007)
Sonnox Oxford TransMod Native VST v1.3.1 (HKLM-x32\...\Sonnox Oxford TransMod Native VST_is1) (Version: - Team AiR 2007)
SoundToys Devil-Loc Deluxe - Academic 32 bit (HKLM-x32\...\Devil-Loc Deluxe - Academic 32 bit_is1) (Version: - SoundToys Inc)
SoundToys Little AlterBoy 32 bit (HKLM-x32\...\Little AlterBoy 32 bit_is1) (Version: - SoundToys Inc)
SoundToys NTV FX V4 - Academic V4 32 bit (HKLM-x32\...\SoundToys NTV FX V4 - Academic V4 32 bit_is1) (Version: - SoundToys Inc)
SpectraLayers Pro 3.0 (HKLM\...\{A2C0EF4C-F8DA-44E1-9D2F-9BFE1B8D3860}) (Version: 3.0.27 - Sony)
SPL Analog Code EQ Rangers Volume One VST RTAS v1.1 (HKLM-x32\...\SPL Analog Code EQ Rangers Volume One VST RTAS_is1) (Version: - )
SPL Analog Code MicroPlugs VST RTAS v1.1 (HKLM-x32\...\SPL Analog Code MicroPlugs VST RTAS_is1) (Version: - )
SPL Analog Code Transient Designer VST RTAS v1.1 (HKLM-x32\...\SPL Analog Code Transient Designer VST RTAS_is1) (Version: - )
SPL Analog Code TwinTube Processor VST RTAS v1.1 (HKLM-x32\...\SPL Analog Code TwinTube Processor VST RTAS_is1) (Version: - )
SPL Analog Code Vitalizer MK2-T VST RTAS v1.1 (HKLM-x32\...\SPL Analog Code Vitalizer MK2-T VST RTAS_is1) (Version: - )
Spotify (HKU\S-1-5-21-3719051794-263782235-1391171954-1000\...\Spotify) (Version: 1.0.36.124.g1cba1920 - Spotify AB)
Steinberg Cubase 7 (HKLM-x32\...\{36035C23-2361-495A-9AE9-D1FF9A9F70B7}) (Version: 7.0.7 - Steinberg Media Technologies GmbH)
Steinberg Cubase 7.5 (HKLM-x32\...\{C75F4809-1E91-49F4-8093-45D9B053E89D}) (Version: 7.5.30 - Steinberg Media Technologies GmbH)
Steinberg Drum Loop Expansion 01 (HKLM-x32\...\{490BF87E-1F75-4453-BF55-9F540543A3CA}) (Version: 2.0.0.0 - Steinberg Media Technologies GmbH)
Steinberg EDM Toolbox MIDI Loops (HKLM-x32\...\{8C9B2EA8-9A30-4347-95E9-10E919C4F32E}) (Version: 1.0.0 - Steinberg Media Technologies GmbH)
Steinberg Groove Agent ONE Allen Morgan Signature Drums (HKLM-x32\...\{611A7035-0172-4B9B-8BB6-5046F6867D8A}) (Version: 1.0.0 - Steinberg Media Technologies GmbH)
Steinberg Groove Agent ONE Content (HKLM-x32\...\{BD86F1AC-B594-46E4-85DC-1258AC9E2232}) (Version: 1.0.0.003 - Steinberg Media Technologies GmbH)
Steinberg Groove Agent ONE Vintage Beatboxes (HKLM-x32\...\{DBF4BC99-53F1-4C97-84C3-7557D103E182}) (Version: 1.0.0.000 - Steinberg Media Technologies GmbH)
Steinberg Groove Agent SE (HKLM-x32\...\{A6790D47-D653-4B88-BED4-96878DBE5191}) (Version: 4.0.0 - Steinberg Media Technologies GmbH)
Steinberg Groove Agent SE Content (HKLM-x32\...\{AFC9D1CE-F050-437C-35A5-62DEDB262DC7}) (Version: 1.0.0 - Steinberg Media Technologies GmbH)
Steinberg HALion Sonic SE 64bit (HKLM\...\{B99C316B-C135-43B5-8E77-2BC5E241F964}) (Version: 1.6.1 - Steinberg Media Technologies GmbH)
Steinberg HALion Sonic SE Content (HKLM-x32\...\{A5051ABF-A497-4C3C-85EA-F7A4D5C19B82}) (Version: 1.6.1 - Steinberg Media Technologies GmbH)
Steinberg LoopMash Content (HKLM-x32\...\{4D454CF8-12FD-464D-B57B-B46FE27B78BB}) (Version: 2.0.0.000 - Steinberg Media Technologies GmbH)
Steinberg LoopMash Content 2 (HKLM-x32\...\{88C337F0-4CF2-4098-BDC0-D94859ECA2B4}) (Version: 1.0.0.000 - Steinberg Media Technologies GmbH)
Steinberg Midi Loop Library (HKLM-x32\...\{89DE2651-6DD9-4C15-AC94-8348362D456C}) (Version: 1.0.0 - Steinberg Media Technologies GmbH)
Steinberg Retrologue (HKLM-x32\...\{0EB4D2B3-9410-4FB7-AD46-C48CE45B9498}) (Version: 1.1.0 - Steinberg Media Technologies GmbH)
Steinberg Retrologue 64bit (HKLM\...\{4D65ECE6-131D-4B5F-8470-2750D3161619}) (Version: 1.1.0 - Steinberg Media Technologies GmbH)
Steinberg REVerence Content 01 (HKLM-x32\...\{532B917B-8235-4FA5-BE36-643A8BB053A5}) (Version: 2.0.1.000 - Steinberg Media Technologies GmbH)
Steinberg SLM128 Plug-in (HKLM-x32\...\{AE480357-42F7-4A6E-8F6E-8BC888335662}) (Version: 1.0.0 - Steinberg Media Technologies GmbH)
Steinberg Upload Manager (HKLM-x32\...\{88BBBD8F-4C19-4809-B84B-7A8F8238B48D}) (Version: 1.0.1 - Steinberg Media Technologies GmbH)
Steinberg VST Amp Rack Content 01 (HKLM-x32\...\{8CBA7E47-48DA-47DC-8E98-6984BA830295}) (Version: 1.0.1 - Steinberg Media Technologies GmbH)
Sylenth1 v2.21 (HKLM-x32\...\Sylenth1_is1) (Version: - )
TC Native Bundle v3.1 (HKLM-x32\...\TC Native Bundle v3.1) (Version: - )
TruePianos (HKLM-x32\...\TruePianos1.9.1) (Version: 1.9.1 - Team Audio Pirate)
UAD drivers. This may take a while... (x32 Version: 8.3.0.12204 - Universal Audio, Inc.) Hidden
UAD Powered Plug-Ins (HKLM-x32\...\{2bb81ba6-3983-42d3-b120-f5c4ea6e7a69}) (Version: 8.3.0.12204 - Universal Audio, Inc.)
UAD Powered Plug-Ins (Version: 8.3.0.12204 - Universal Audio, Inc.) Hidden
UAD Powered Plug-Ins (x32 Version: 8.3.0.12204 - Universal Audio, Inc.) Hidden
Urban Redline version 1.0.0 (HKLM-x32\...\{D3EFBCE5-6D4A-4C35-9BA2-7B348C4F75C6}_is1) (Version: 1.0.0 - StudioLinkedVST)
Vengeance Producer Suite - Glitch Bitch 1.0.3 (HKLM-x32\...\{67715E04-59FB-442A-9A23-76F9C0F0D78D}_is1) (Version: - keilwerth Audio / Vengeance Sound)
Vengeance Producer Suite - Scope 1.0.4 (HKLM-x32\...\{8BB53BA8-F9CC-4A53-A498-1AF91D040F63}_is1) (Version: - keilwerth Audio / Vengeance Sound)
Vengeance Producer Suite - TapeStop 1.0.1 (HKLM-x32\...\{24293F25-0C00-4DD9-8DCD-257E415FF5E4}_is1) (Version: - keilwerth Audio / Vengeance Sound)
VIRTU 1.0.0 (HKLM\...\VIRTU_is1) (Version: 1.0.0 - Lucidlogix Technologies LTD)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.1 - VideoLAN)
Vocaloid4 4.2.0 Free Edition (HKLM-x32\...\Vocaloid4 4.2.0 Free Edition_is1) (Version: Vocaloid4 4.2.0 Free Edition - )
WaveLab 8.5 (HKLM-x32\...\WaveLabPro8_5) (Version: 8.5.0.849 - Steinberg)
Waves Central 1.2.0.5 (HKLM-x32\...\{94000200-C561-4E32-99EB-3C5AD3683A70}_is1) (Version: 1.2.0 - Waves, Inc.)
Winamp (HKLM-x32\...\Winamp) (Version: 5.666 - Nullsoft, Inc)
Windows-Treiberpaket - RME Fireface USB (09/25/2014 1.0.59.0) (HKLM\...\00D7567917C0AF25A47D48DB1D9D837D1FA3A6EF) (Version: 09/25/2014 1.0.59.0 - RME)
Windows-Treiberpaket - RME Fireface USB (09/28/2015 1.0.89.0) (HKLM\...\006E5C2559FCDEE2337C96635F803548D87253B8) (Version: 09/28/2015 1.0.89.0 - RME)
WinRAR 5.11 (32-Bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.11.0 - win.rar GmbH)
Yamaha MOTIF XF Editor Standalone/VST (HKLM-x32\...\Yamaha MOTIF XF Editor Standalone_VST) (Version: 1.6.4 - Yamaha Corporation)
Yamaha USB-MIDI Driver (HKLM-x32\...\InstallShield_{2D488455-3E89-49EF-BA6E-92C2503DC89D}) (Version: 3.1.4.1 - Yamaha Corporation)
Yamaha USB-MIDI Driver (Version: 3.1.4.1 - Yamaha Corporation) Hidden
Yamaha YC-3B (HKLM-x32\...\Yamaha YC-3B) (Version: 1.1.2.7 - Yamaha Corporation)
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
CustomCLSID: HKU\S-1-5-21-3719051794-263782235-1391171954-1000_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\DJRISOW\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-3719051794-263782235-1391171954-1000_Classes\CLSID\{ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C}\InprocServer32 -> C:\Users\DJRISOW\AppData\Roaming\Dropbox\bin\DropboxExt64.43.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-3719051794-263782235-1391171954-1000_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\DJRISOW\AppData\Roaming\Dropbox\bin\DropboxExt64.43.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-3719051794-263782235-1391171954-1000_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\DJRISOW\AppData\Roaming\Dropbox\bin\DropboxExt64.43.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-3719051794-263782235-1391171954-1000_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\DJRISOW\AppData\Roaming\Dropbox\bin\DropboxExt64.43.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-3719051794-263782235-1391171954-1000_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\DJRISOW\AppData\Roaming\Dropbox\bin\DropboxExt64.43.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-3719051794-263782235-1391171954-1000_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\DJRISOW\AppData\Roaming\Dropbox\bin\DropboxExt64.43.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-3719051794-263782235-1391171954-1000_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\DJRISOW\AppData\Roaming\Dropbox\bin\DropboxExt64.43.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-3719051794-263782235-1391171954-1000_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\DJRISOW\AppData\Roaming\Dropbox\bin\DropboxExt64.43.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-3719051794-263782235-1391171954-1000_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\DJRISOW\AppData\Roaming\Dropbox\bin\DropboxExt64.43.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-3719051794-263782235-1391171954-1000_Classes\CLSID\{FB314EE1-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\DJRISOW\AppData\Roaming\Dropbox\bin\DropboxExt64.43.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-3719051794-263782235-1391171954-1000_Classes\CLSID\{FB314EE2-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\DJRISOW\AppData\Roaming\Dropbox\bin\DropboxExt64.43.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-3719051794-263782235-1391171954-1000_Classes\CLSID\{FBC9D74C-AF55-4309-9FB2-C426E071637F}\InprocServer32 -> C:\Users\DJRISOW\AppData\Roaming\Dropbox\bin\DropboxExt64.43.dll (Dropbox, Inc.)
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {0B2B063B-2A11-4822-B698-F4DA47ABAB3E} - System32\Tasks\{1108DAF6-0B6D-415E-8098-991D5C5E4332} => pcalua.exe -a "C:\Users\DJRISOW\Desktop\LicenseSupportInstallerWin32\LicenseSupportInstallerWin32_v2.6.0_r31206\Extras\Drivers Only Win32.exe" -d C:\Users\DJRISOW\Desktop\LicenseSupportInstallerWin32\LicenseSupportInstallerWin32_v2.6.0_r31206\Extras
Task: {10EC825C-424F-42F0-AA8E-BCCFB2EEE222} - System32\Tasks\{FBEFE4EF-A1EB-4046-9851-05B3F6CA41B6} => pcalua.exe -a "C:\Users\DJRISOW\Desktop\Trilogy 1\setup.exe" -d "C:\Users\DJRISOW\Desktop\Trilogy 1"
Task: {12393805-183A-47C2-8E2F-4582475E82E6} - System32\Tasks\{6CD77EC8-DF1C-4689-B06F-5255DA18BE89} => pcalua.exe -a "C:\Users\DJRISOW\Desktop\SPL Plug IN\SPL.Analog.Code.Vitalizer.MK2-T.VST.RTAS.v1.1-AiR\setup.exe" -d "C:\Users\DJRISOW\Desktop\SPL Plug IN\SPL.Analog.Code.Vitalizer.MK2-T.VST.RTAS.v1.1-AiR"
Task: {1FC46C5C-7009-476F-BCE4-001B40059A84} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 35 => C:\Program Files (x86)\Lenovo\Customer Feedback Program 35\Lenovo.TVT.CustomerFeedback.Agent35.exe [2014-09-10] (Lenovo)
Task: {2CAA340D-8BC3-48EF-834C-FE9301F7CE17} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-07-12] (Adobe Systems Incorporated)
Task: {2D00D03A-D857-48E5-9410-89A5AD96CCF9} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-07-14] (Google Inc.)
Task: {3BF30B5D-2D9D-496A-A616-F07DD2C2BAB0} - System32\Tasks\MoneyAid => c:\programdata\{c7a44e16-5238-3458-c7a4-44e165233859}\46636783372506569b.exe <==== ACHTUNG
Task: {3E3F374D-BA6D-4428-BE2E-46B14E74294C} - System32\Tasks\DropboxUpdateTaskUserS-1-5-21-3719051794-263782235-1391171954-1000Core => C:\Users\DJRISOW\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2015-05-26] (Dropbox, Inc.)
Task: {43B3DFAF-18C5-43EF-8447-9FBDFFCA836D} - System32\Tasks\{41CB1303-D609-416E-AF25-B7C15E8803FA} => pcalua.exe -a "C:\Users\DJRISOW\Desktop\MashTactic_1_01b_VST_WIN_32\MashTactic 32 bit.exe" -d C:\Users\DJRISOW\Desktop\MashTactic_1_01b_VST_WIN_32
Task: {440D1C3C-2CE5-45CD-8C74-84838C1428FE} - System32\Tasks\{5B2D4183-0908-45A0-A571-6AF5A2ED277F} => Chrome.exe hxxp://ui.skype.com/ui/0/7.8.0.102/de/abandoninstall?page=tsProgressBar
Task: {4B0AE892-8B0A-4DF7-813D-9AB5C5B31333} - System32\Tasks\DropboxUpdateTaskUserS-1-5-21-3719051794-263782235-1391171954-1000UA => C:\Users\DJRISOW\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2015-05-26] (Dropbox, Inc.)
Task: {6FE440FC-02C5-4CBB-8DD5-2E042579D4A3} - System32\Tasks\Amazon Music Helper => C:\Users\DJRISOW\AppData\Local\Amazon Music\Amazon Music Helper.exe [2015-05-07] ()
Task: {75DCD3A4-42FD-4FB8-A2D2-D47109319994} - System32\Tasks\{8BC659D3-3A92-46A0-B95F-FEFF74F2860D} => Chrome.exe hxxp://ui.skype.com/ui/0/7.1.0.105/de/abandoninstall?source=lightinstaller&page=tsPlugin
Task: {A222371D-68B2-47D6-90ED-3F2CABCB49FC} - System32\Tasks\Nero\Nero Info => C:\Program Files (x86)\Common Files\Nero\Nero Info\NeroInfo.exe [2014-07-21] (Nero AG)
Task: {A428F1BE-BA9B-4C64-8019-5031C0D807A0} - System32\Tasks\{27A4F59A-2409-47BA-9136-C78F3B45E88B} => pcalua.exe -a C:\Users\DJRISOW\Desktop\Sylenth.Komplete.pack.win.32.64.and.mac\Lennar.Digital.Sylenth1.VSTi.v2.2.1.1.x86.PROPER-VTX\VTXSetup.exe -d C:\Users\DJRISOW\Desktop\Sylenth.Komplete.pack.win.32.64.and.mac\Lennar.Digital.Sylenth1.VSTi.v2.2.1.1.x86.PROPER-VTX
Task: {AEC6E0CA-8A81-46A7-9FAF-61F0D1412344} - System32\Tasks\RenderOrder => c:\programdata\{b7f36c97-33d6-c1e9-b7f3-36c9733db25c}\229690953678597325b.exe <==== ACHTUNG
Task: {C251711A-EA91-4AAF-B021-07ABF3493E8C} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-07-14] (Google Inc.)
Task: {D2BC4002-EAA3-401C-BE45-21E643CF76F8} - System32\Tasks\{56DEFA2F-544F-40E2-95A8-7272E3A15E1A} => pcalua.exe -a "C:\Users\DJRISOW\Desktop\reFX Nexus 2.6.5 Installer\reFX Nexus 2.6.5 Installer.exe" -d "C:\Users\DJRISOW\Desktop\reFX Nexus 2.6.5 Installer"
Task: {D5492631-2F65-46C0-8FA4-265F9AB1C620} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2016-02-23] (Apple Inc.)
Task: {D78EDF4E-0479-4FFC-8A34-94092F0B6A75} - System32\Tasks\{321D1C11-F63E-4FD4-8373-A7FAA7B24AE1} => pcalua.exe -a "C:\Users\DJRISOW\Desktop\Camel Audio\CamelCrusher\CamelCrusherWin\CamelCrusherWin_v1_41.exe" -d "C:\Users\DJRISOW\Desktop\Camel Audio\CamelCrusher\CamelCrusherWin"
Task: {E867034F-0A55-41DA-BE74-395CBCEC9060} - System32\Tasks\VacayExpert => c:\programdata\{be255c64-d4cc-e651-be25-55c64d4c7193}\8360891445966462720c.exe <==== ACHTUNG
Task: {F9F1B268-7AA2-4E89-83C0-2E1CF09B3604} - System32\Tasks\{9BF739CE-7F67-47B9-9E2F-85B340231283} => pcalua.exe -a C:\Users\DJRISOW\Desktop\ProDAD.Vitascene.1.0.34.full.+.license-izmael.z6\vitascene-10-service.34.exe -d C:\Users\DJRISOW\Desktop\ProDAD.Vitascene.1.0.34.full.+.license-izmael.z6
Task: {FA7807BC-12A5-48C5-BB60-F5AB6E795643} - System32\Tasks\DogWiz => c:\programdata\{bc928ba6-4019-a2d6-bc92-28ba64012e99}\8313796287343420975b.exe <==== ACHTUNG
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\DogWiz.job => c:\programdata\{bc928ba6-4019-a2d6-bc92-28ba64012e99}\8313796287343420975b.exe <==== ACHTUNG
Task: C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-3719051794-263782235-1391171954-1000Core.job => C:\Users\DJRISOW\AppData\Local\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-3719051794-263782235-1391171954-1000UA.job => C:\Users\DJRISOW\AppData\Local\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\MoneyAid.job => c:\programdata\{c7a44e16-5238-3458-c7a4-44e165233859}\46636783372506569b.exe <==== ACHTUNG
Task: C:\Windows\Tasks\RenderOrder.job => c:\programdata\{b7f36c97-33d6-c1e9-b7f3-36c9733db25c}\229690953678597325b.exe <==== ACHTUNG
Task: C:\Windows\Tasks\VacayExpert.job => c:\programdata\{be255c64-d4cc-e651-be25-55c64d4c7193}\8360891445966462720c.exe <==== ACHTUNG
==================== Verknüpfungen =============================
(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)
==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============
2016-03-18 22:56 - 2016-03-18 22:56 - 00092472 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2016-03-18 22:56 - 2016-03-18 22:56 - 01329936 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2016-09-07 11:33 - 2016-08-31 04:16 - 02280264 _____ () C:\Program Files (x86)\Google\Chrome\Application\53.0.2785.89\libglesv2.dll
2016-09-07 11:33 - 2016-08-31 04:16 - 00107848 _____ () C:\Program Files (x86)\Google\Chrome\Application\53.0.2785.89\libegl.dll
2016-09-07 11:33 - 2016-08-31 04:02 - 31541952 _____ () C:\Program Files (x86)\Google\Chrome\Application\53.0.2785.89\PepperFlash\pepflashplayer.dll
2014-04-15 16:43 - 2014-04-15 16:43 - 00114176 _____ () C:\Program Files (x86)\Common Files\Steinberg\Shared Components\yamaha_vst_motif_xf_u.dll
2014-11-10 01:05 - 2014-07-10 15:46 - 00309552 _____ () C:\Program Files (x86)\eLicenser\Tools\eLicenserCore.dll
2014-11-13 22:03 - 2014-11-13 22:03 - 06492160 _____ () C:\Program Files (x86)\Steinberg\Vstplugins\Pitchwheel.dll
2016-07-06 17:26 - 2015-10-11 21:42 - 00020912 _____ () C:\Program Files (x86)\Waves\Plug-Ins V9\OKFilter.bundle\Contents\Win32\GenericMultiCoreProcessor.dll
2016-03-18 22:56 - 2016-03-18 22:56 - 01040656 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2016-03-18 22:56 - 2016-03-18 22:56 - 00080184 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)
AlternateDataStreams: C:\ProgramData:6B2C3EB805B95CCC [217]
AlternateDataStreams: C:\Users\All Users:6B2C3EB805B95CCC [217]
AlternateDataStreams: C:\ProgramData\Anwendungsdaten:6B2C3EB805B95CCC [217]
AlternateDataStreams: C:\ProgramData\Application Data:6B2C3EB805B95CCC [217]
AlternateDataStreams: C:\ProgramData\Microsoft:bWhQTYmHnUwCcDFr5ov15FqfcV9 [2726]
AlternateDataStreams: C:\ProgramData\Microsoft:eVdL2mVh673hCgxr1LXcqVv55 [2840]
AlternateDataStreams: C:\ProgramData\Microsoft:gCZ2LhBJ8frRzo1YofAhcf [2734]
AlternateDataStreams: C:\ProgramData\Microsoft:KHykLmkveNUq7cpFmmPtm9 [2620]
AlternateDataStreams: C:\Users\DJRISOW\Cookies:SdVE5Q7NfcdezCrytWaKUBUVaKY [2782]
AlternateDataStreams: C:\Users\DJRISOW\AppData\Local\Temp:qdisXcMkdZPdftz2H4CgjzCU [2768]
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
==================== Verknüpfungen (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)
==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
==================== Hosts Inhalt: ===============================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2009-07-14 04:34 - 2009-06-10 23:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts
==================== Andere Bereiche ============================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKU\S-1-5-21-3719051794-263782235-1391171954-1000\Control Panel\Desktop\\Wallpaper ->
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 0)
Windows Firewall ist deaktiviert.
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [{B55AB98D-ACFD-4A22-A53D-0DF0B96FE528}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
FirewallRules: [{7FF1BA73-5B27-48F6-BE58-4F0EEB253DD7}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
FirewallRules: [{7345A4DF-0F31-4A1F-A1D4-60F147DD33E8}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe
FirewallRules: [{B5366FA0-6E7B-415F-BDE2-FC28CDA26D50}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe
FirewallRules: [{E20726DF-246C-4377-B925-318DAB47BD6A}] => (Allow) C:\Program Files (x86)\Steinberg\Cubase 7\Cubase7.exe
FirewallRules: [{D29F8D7D-4E03-4B9D-BD67-3186DDAECB87}] => (Allow) LPort=51113
FirewallRules: [{1840CACE-5DD4-4413-8A1D-43C0A0377C6F}] => (Allow) LPort=51112
FirewallRules: [{9A4C5AB9-75EB-4969-8D8C-234885DE7ED3}] => (Allow) LPort=51111
FirewallRules: [{643CC436-3F6D-4182-801D-238C1678350C}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{E2A57DE4-85E0-4B2F-9D57-E29081A3A7E9}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{9519D502-62E3-4B5E-AF7B-553E5FEE0DDC}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
FirewallRules: [{CAEA284F-404A-42EB-B7F6-814D427F6FD0}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
FirewallRules: [{C98F8DB6-0FA1-4038-83C7-EFEFBECCC26C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{FDFF62E5-A487-4077-9346-87184F9A7347}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{A067515B-3996-4CEA-BB79-B1953BA57A07}] => (Allow) C:\Users\DJRISOW\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [{FE70B238-0E43-42A4-BA78-74E81E28866A}] => (Allow) C:\Users\DJRISOW\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [{CE802A6E-80DD-487C-946D-B7200E4F4940}] => (Allow) C:\Program Files\Avid\Pro Tools\AvidVideoEngine.exe
FirewallRules: [{797844F8-B4D1-45C7-BF1B-CA8D328F1FFB}] => (Allow) C:\Program Files (x86)\Nero\Nero 2015\Nero Burning ROM\StartNBR.exe
FirewallRules: [{54C40395-E62F-4FE9-A714-6D2800CFBAFF}] => (Allow) C:\Program Files (x86)\Nero\Nero 2015\Nero Burning ROM\nero.exe
FirewallRules: [{FDEC6D20-06F0-431B-AEF6-F576C398B31B}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\Video Download Capture.exe
FirewallRules: [{A216A15B-AEE7-4E86-BDBE-1D2C267D4980}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\Video Download Capture.exe
FirewallRules: [{603EFEB1-90ED-4137-9591-3FA02C9556B5}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\ApowersoftSrv.dll
FirewallRules: [{63EFEE55-3A72-49AE-AE61-017BC09A2B79}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\ApowersoftSrv.dll
FirewallRules: [{0702FDCD-7784-4BB9-ABAA-004678E5E1A2}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\ApowersoftDump.dll
FirewallRules: [{868E996D-2023-4E9D-AE43-6B733985BECB}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\ApowersoftDump.dll
FirewallRules: [{2C3679F5-2BED-4CB0-B5EA-B8651A2D07CC}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\ApowersoftAC.dll
FirewallRules: [{96DC6CBC-AC15-4D6E-B35D-B697C2560172}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\ApowersoftAC.dll
FirewallRules: [{33BDA654-DF43-4A84-B67E-59A1CF99D84D}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\ApowersoftPlayer.dll
FirewallRules: [{61406790-20DB-4188-93D4-AEAAD73AB630}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\ApowersoftPlayer.dll
FirewallRules: [{336A9018-5966-4438-A422-4F87738BFE0B}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\ApowersoftDownloaderHelp.dll
FirewallRules: [{8178ED61-5F5F-42BD-B440-F095CAC49EBF}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\ApowersoftDownloaderHelp.dll
FirewallRules: [{13CD9E28-F7A8-48C1-9E0F-B37D634145DC}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\ApowersoftHDSDump.dll
FirewallRules: [{834AEA8C-0363-42DD-B9A6-966B505E41E0}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\ApowersoftHDSDump.dll
FirewallRules: [{C5F86465-F79A-449E-AC32-67F964C5C618}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{2763103C-2689-45B3-B125-C5936EA18D35}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{F5586403-2940-45CA-ADDD-083BA2AB4DBB}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{00860453-F86F-4656-866B-94EE10E7DC72}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{4E407978-B2FC-4D6D-9160-0E5DB8176989}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{9DE48FED-1D74-4EC2-9320-ECDC7DD2BA68}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{5CF993E1-AE10-4976-9B45-959193A5F776}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{ACC51843-3EFA-4282-BAA9-E689137ACBAF}] => (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [{C90745A8-F4A3-4041-B763-B29B8B19CDCB}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Wiederherstellungspunkte =========================
05-09-2016 18:22:19 Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005
05-09-2016 18:22:58 Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005
08-09-2016 10:18:49 Revo Uninstaller's restore point - do-search
08-09-2016 10:21:45 Revo Uninstaller's restore point - Reimage Protector
08-09-2016 10:22:43 Revo Uninstaller's restore point - StatMaker
08-09-2016 10:23:38 Revo Uninstaller's restore point - YTD Video Downloader 4.8.7
08-09-2016 14:44:41 JRT Pre-Junkware Removal
==================== Fehlerhafte Geräte im Gerätemanager =============
==================== Fehlereinträge in der Ereignisanzeige: =========================
Applikationsfehler:
==================
Error: (09/08/2016 02:41:37 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Ereignisfilter mit Abfrage "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" konnte im Namespace "//./root/CIMV2" nicht reaktiviert werden aufgrund des Fehlers 0x80041003. Ereignisse können nicht durch diesen Filter geschickt werden, bis dieses Problem gelöst ist.
Error: (09/08/2016 02:28:19 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Ereignisfilter mit Abfrage "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" konnte im Namespace "//./root/CIMV2" nicht reaktiviert werden aufgrund des Fehlers 0x80041003. Ereignisse können nicht durch diesen Filter geschickt werden, bis dieses Problem gelöst ist.
Error: (09/08/2016 10:27:48 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Ereignisfilter mit Abfrage "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" konnte im Namespace "//./root/CIMV2" nicht reaktiviert werden aufgrund des Fehlers 0x80041003. Ereignisse können nicht durch diesen Filter geschickt werden, bis dieses Problem gelöst ist.
Error: (09/08/2016 10:18:48 AM) (Source: VSS) (EventID: 8194) (User: )
Description: Volumeschattenkopie-Dienstfehler: Beim Abfragen nach der Schnittstelle "IVssWriterCallback" ist ein unerwarteter Fehler aufgetreten. hr = 0x80070005, Zugriff verweigert
.
Die Ursache hierfür ist oft eine falsche Sicherheitseinstellung im Schreib- oder Anfrageprozess.
Vorgang:
Generatordaten werden gesammelt
Kontext:
Generatorklassen-ID: {e8132975-6f93-4464-a53e-1050253ae220}
Generatorname: System Writer
Generatorinstanz-ID: {79853168-3da7-46fd-be62-2bb24cbf2158}
Error: (09/08/2016 10:10:50 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Ereignisfilter mit Abfrage "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" konnte im Namespace "//./root/CIMV2" nicht reaktiviert werden aufgrund des Fehlers 0x80041003. Ereignisse können nicht durch diesen Filter geschickt werden, bis dieses Problem gelöst ist.
Error: (09/07/2016 11:36:46 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: Cubase7.5.exe, Version: 7.5.30.243, Zeitstempel: 0x53ce966c
Name des fehlerhaften Moduls: exceptiondumper.dll, Version: 1.1.0.2, Zeitstempel: 0x5179313e
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00002df9
ID des fehlerhaften Prozesses: 0x145c
Startzeit der fehlerhaften Anwendung: 0x01d2094cad9cf251
Pfad der fehlerhaften Anwendung: C:\Program Files (x86)\Steinberg\Cubase 7.5\Cubase7.5.exe
Pfad des fehlerhaften Moduls: C:\Program Files (x86)\Steinberg\Cubase 7.5\Components\exceptiondumper.dll
Berichtskennung: 2c9e5eac-7543-11e6-94cd-002522cc2a9b
Error: (09/07/2016 11:13:23 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: Cubase7.5.exe, Version: 7.5.30.243, Zeitstempel: 0x53ce966c
Name des fehlerhaften Moduls: ntdll.dll, Version: 6.1.7601.23418, Zeitstempel: 0x5708a73e
Ausnahmecode: 0xc0000374
Fehleroffset: 0x000ce843
ID des fehlerhaften Prozesses: 0x110c
Startzeit der fehlerhaften Anwendung: 0x01d20924d9381572
Pfad der fehlerhaften Anwendung: C:\Program Files (x86)\Steinberg\Cubase 7.5\Cubase7.5.exe
Pfad des fehlerhaften Moduls: C:\Windows\SysWOW64\ntdll.dll
Berichtskennung: e8b9fec1-753f-11e6-94cd-002522cc2a9b
Error: (09/07/2016 06:10:39 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Ereignisfilter mit Abfrage "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" konnte im Namespace "//./root/CIMV2" nicht reaktiviert werden aufgrund des Fehlers 0x80041003. Ereignisse können nicht durch diesen Filter geschickt werden, bis dieses Problem gelöst ist.
Error: (09/07/2016 11:48:50 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Ereignisfilter mit Abfrage "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" konnte im Namespace "//./root/CIMV2" nicht reaktiviert werden aufgrund des Fehlers 0x80041003. Ereignisse können nicht durch diesen Filter geschickt werden, bis dieses Problem gelöst ist.
Error: (09/07/2016 11:43:04 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Ereignisfilter mit Abfrage "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" konnte im Namespace "//./root/CIMV2" nicht reaktiviert werden aufgrund des Fehlers 0x80041003. Ereignisse können nicht durch diesen Filter geschickt werden, bis dieses Problem gelöst ist.
Systemfehler:
=============
Error: (09/08/2016 02:45:01 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "NVIDIA Streamer Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
Error: (09/08/2016 02:45:01 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "NVIDIA Display Driver Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
Error: (09/08/2016 02:40:14 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen:
cdrom
Error: (09/08/2016 02:40:07 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Windows-Connectivity für Gramblr." wurde aufgrund folgenden Fehlers nicht gestartet:
Das System kann die angegebene Datei nicht finden.
Error: (09/08/2016 02:40:04 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Angry Family" wurde aufgrund folgenden Fehlers nicht gestartet:
Das System kann die angegebene Datei nicht finden.
Error: (09/08/2016 02:38:52 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Intel(R) Management and Security Application User Notification Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
Error: (09/08/2016 02:38:52 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Nero Update" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
Error: (09/08/2016 02:38:52 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Disc Soft Lite Bus Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
Error: (09/08/2016 02:38:52 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "iPod-Dienst" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
Error: (09/08/2016 02:38:52 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Windows Search" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 30000 Millisekunden durchgeführt: Neustart des Diensts.
==================== Speicherinformationen ===========================
Prozessor: Intel(R) Core(TM) i5-2500K CPU @ 3.30GHz
Prozentuale Nutzung des RAM: 32%
Installierter physikalischer RAM: 16296.59 MB
Verfügbarer physikalischer RAM: 11064.48 MB
Summe virtueller Speicher: 32591.37 MB
Verfügbarer virtueller Speicher: 26910.06 MB
==================== Laufwerke ================================
Drive c: () (Fixed) (Total:931.29 GB) (Free:80.39 GB) NTFS
Drive d: (AUDIO ) (Fixed) (Total:1863.01 GB) (Free:531.88 GB) NTFS
Drive e: (Video Ordner) (Fixed) (Total:465.76 GB) (Free:192.7 GB) NTFS
Drive h: (Ohne Titel) (Removable) (Total:7.21 GB) (Free:6.18 GB) exFAT
==================== MBR & Partitionstabelle ==================
========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: 221A9391)
Partition: GPT.
========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 1863 GB) (Disk ID: D753B374)
Partition 1: (Not Active) - (Size=1863 GB) - (Type=07 NTFS)
========================================================
Disk: 2 (Size: 931.5 GB) (Disk ID: 221A939D)
Partition: GPT.
========================================================
Disk: 3 (Size: 7.2 GB) (Disk ID: 00000000)
Partition: GPT.
==================== Ende von Addition.txt ============================
|
|
08.09.2016, 16:39
| #14 | |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Google Chrome öffnet ständig Spam Seiten!Zitat:
__________________ Logfiles bitte immer in CODE-Tags posten |
|
08.09.2016, 17:07
| #15 |
| | Google Chrome öffnet ständig Spam Seiten! da fragst du mich was  weiss ich nicht...was soll das sein??? |
|
| Themen zu Google Chrome öffnet ständig Spam Seiten! |
| bluescree, bluescreen, chrome, einstellung, ellung, gefunde, gestern, google, google chrome, jedesmal, klicke, meinem, neue, neue seite, nichts, probleme, rechner, seite, seiten, spam, stürzt, unter, öffnet |
dann auf 
und dann auf 
. 
Linear-Darstellung
