Trojaner-Board

Trojaner-Board (https://www.trojaner-board.de/)
-   Plagegeister aller Art und deren Bekämpfung (https://www.trojaner-board.de/plagegeister-aller-art-deren-bekaempfung/)
-   -   Google Chrome öffnet dauernd Werbung (https://www.trojaner-board.de/183974-google-chrome-oeffnet-dauernd-werbung.html)

Xnatur 16.01.2017 16:45
Google Chrome öffnet dauernd Werbung
 
Guten Tag liebes Trojaner Board,

Seit einigen Tagen öffnet mir mein Chrome Browser ständig AD-Popups.
Vorallem aber, wenn ich auf Youtube bin und Videos starten will.

Unternommen habe ich bisher nur folgendes:

Komplett Scan mit Kaspersky Internet Security 2017. Hat einiges gefunden, wurde gelöscht, mein Problem persistiert jedoch weiterhin.

LG
Xnatur

burningice 16.01.2017 20:38
:hallo:
Mein Name ist Rafael und ich werde dir bei der Bereinigung helfen.

Damit ich dir optimal helfen kann, halte dich bitte an folgende Regeln:
  • Bitte lies meine Posts komplett durch bevor du sie abarbeitest
  • Wenn ein Problem auftauchen sollte oder dir etwas unklar ist, unterbreche deine Arbeit und beschreibe es so genau wie möglich.
  • Bitte kein Crossposting
  • Installiere oder Deinstalliere keine Software ohne Aufforderung
  • Bitte verwende nur die Tools, welche hier im Thread erwähnt werden und führe sie nur gemäß Anweisung aus
  • Bitte antworte innerhalb von 24h um eine sinnvolle Bereinigung zu ermöglichen
  • Poste die Logs immer in CODE-Tags (#-Button), zur Not die Logs einfach aufteilen
  • Wichtig: Nur weil dein Problem mit einem Schritt plötzlich behoben ist, bedeutet das nicht, dass dein PC auch sauber ist. Mache solange weiter, bis ich dir sage, dass dein PC "clean" ist
  • Wenn ich dir nicht binnen 36h antworte, sende mir bitte eine persönliche Nachricht!
Los geht's :abklatsch:

Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop: FRST Download FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
  • Starte jetzt FRST.
  • Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
  • Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
  • Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)


Xnatur 16.01.2017 21:28
Hallo,

Danke für die schnelle Nachricht.
Anbei die LOG Dateien.
Code:
Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 15-01-2017
durchgeführt von (Administrator) auf MILOS-PC (16-01-2017 21:24:21)
Gestartet von C:\Users\Downloads
Geladene Profile: (Verfügbare Profile: )
Platform: Windows 7 Ultimate Service Pack 1 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: Chrome)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AAHM\1.00.20\aaHMSvc.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.13\AsSysCtrlService.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AsusFanControlService\1.02.00\AsusFanControlService.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\Remote GO!\AssistTools\WiFi GO! Server.exe
(AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\avp.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe
() C:\Program Files (x86)\ASUS\AI Suite II\EasyUpdate\EzUpdt.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
() C:\Windows\KMS-R@1n.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Hewlett-Packard Development Company, LP) C:\Program Files\HP\HP ENVY 5530 series\Bin\ScanToPCActivationApp.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudPhotos.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\AsRoutineController.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
() C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvspcaps64.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\avpui.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.32.7\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.32.7\GoogleCrashHandler64.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\InstallShield Installation Information\{E6931688-DA2B-4E16-8539-3D323D69C677}\AiChargerPlus.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\Remote GO!\AssistTools\WiFile\WiFileTransfer.exe
(Elaborate Bytes AG) C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(Adobe Systems Inc.) C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\acrotray.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\TurboV EVO\TurboVHelp.exe
(Creative Technology Ltd) C:\Program Files (x86)\Creative\Sound Blaster JAM\Sound Blaster JAM Control Panel\SBJAM.exe
(Apple, Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\secd.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\USB 3.0 Boost\U3BoostSvr64.exe
() C:\Windows\KMS-R@1nHook.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\EPU\EPUHelp.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\AI Suite II.exe
(Skype Technologies) C:\Program Files (x86)\Skype\Browser\SkypeBrowserHost.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\Remote GO!\AsDLNAServerReal.exe
(Skype Technologies) C:\Program Files (x86)\Skype\Browser\SkypeBrowserHost.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\Sensor\AlertHelper\AlertHelper.exe
(HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 1.0\ksde.exe
(AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 1.0\ksdeui.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Hewlett-Packard Development Company, LP) C:\Program Files\HP\HP ENVY 5530 series\Bin\HPNetworkCommunicatorCom.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\SyncServer.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Registry (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8483032 2015-05-28] (Realtek Semiconductor)
HKLM\...\Run: [ShadowPlay] => "C:\Windows\system32\rundll32.exe" C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508128 2016-07-01] (Adobe Systems Incorporated)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [176440 2016-12-06] (Apple Inc.)
HKLM-x32\...\Run: [ASUS AiChargerPlus Execute] => C:\Program Files (x86)\InstallShield Installation Information\{E6931688-DA2B-4E16-8539-3D323D69C677}\AiChargerPlus.exe [550272 2013-01-28] (ASUSTek Computer Inc.)
HKLM-x32\...\Run: [ASUS WiFi GO! FileTransfer Execute] => C:\Program Files (x86)\ASUS\AI Suite II\Remote GO!\AssistTools\WiFile\WiFileTransfer.exe [1391416 2013-06-21] (ASUSTeK Computer Inc.)
HKLM-x32\...\Run: [VirtualCloneDrive] => C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe [88984 2013-03-10] (Elaborate Bytes AG)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Acrotray.exe [1870928 2016-12-23] (Adobe Systems Inc.)
HKLM-x32\...\Run: [Sound Blaster JAM Control Panel] => C:\Program Files (x86)\Creative\Sound Blaster JAM\Sound Blaster JAM Control Panel\SBJAM.exe [902144 2014-11-27] (Creative Technology Ltd)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2016-09-22] (Oracle Corporation)
HKU\S-1-5-21-210783167-1482073297-2139249726-1000\...\Run: [HP ENVY 5530 series (NET)] => C:\Program Files\HP\HP ENVY 5530 series\Bin\ScanToPCActivationApp.exe [3487240 2014-07-21] (Hewlett-Packard Development Company, LP)
HKU\S-1-5-21-210783167-1482073297-2139249726-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8944344 2016-09-28] (Piriform Ltd)
HKU\S-1-5-21-210783167-1482073297-2139249726-1000\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [67384 2016-11-17] (Apple Inc.)
HKU\S-1-5-21-210783167-1482073297-2139249726-1000\...\Run: [iCloudDrive] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe [110392 2016-11-17] (Apple Inc.)
HKU\S-1-5-21-210783167-1482073297-2139249726-1000\...\Run: [iCloudPhotos] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudPhotos.exe [356664 2016-11-17] (Apple Inc.)
HKU\S-1-5-21-210783167-1482073297-2139249726-1000\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [27230168 2016-11-15] (Skype Technologies S.A.)
HKU\S-1-5-21-210783167-1482073297-2139249726-1000\...\Run: [MK LOL] => C:\Program Files (x86)\MKJogo\MK IM\Bin\MKIM.exe [1092296 2017-01-04] ()
IFEO\OSPPSVC.EXE: [Debugger] KMS-R@1nHook.exe
IFEO\SppSvc.exe: [Debugger] KMS-R@1nHook.exe

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)

Tcpip\Parameters: [DhcpNameServer] 195.34.133.21 212.186.211.21
Tcpip\..\Interfaces\{3D07BB94-4660-4584-BE89-1628A21A1D8F}: [DhcpNameServer] 172.20.10.1
Tcpip\..\Interfaces\{A3BEE911-2B00-4748-9C4F-C47E99763EA2}: [DhcpNameServer] 195.34.133.21 212.186.211.21

Internet Explorer:
==================
BHO: Kaspersky Protection -> {2E38825B-8815-42CF-9126-C58BC28D4591} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\x64\IEExt\ie_plugin.dll [2016-12-06] (AO Kaspersky Lab)
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2016-12-28] (Microsoft Corporation)
BHO: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2016-10-27] (Adobe Systems Incorporated)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\URLREDIR.DLL [2016-12-28] (Microsoft Corporation)
BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\GROOVEEX.DLL [2016-12-28] (Microsoft Corporation)
BHO: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2016-10-27] (Adobe Systems Incorporated)
BHO-x32: Kaspersky Protection -> {2E38825B-8815-42CF-9126-C58BC28D4591} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\IEExt\ie_plugin.dll [2016-12-06] (AO Kaspersky Lab)
BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2016-12-28] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_112\bin\ssv.dll [2016-12-10] (Oracle Corporation)
BHO-x32: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2016-10-27] (Adobe Systems Incorporated)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\root\Office16\URLREDIR.DLL [2016-12-28] (Microsoft Corporation)
BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\root\Office16\GROOVEEX.DLL [2016-12-28] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_112\bin\jp2ssv.dll [2016-12-10] (Oracle Corporation)
BHO-x32: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2016-10-27] (Adobe Systems Incorporated)
Toolbar: HKLM - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2016-10-27] (Adobe Systems Incorporated)
Toolbar: HKLM - Kaspersky Protection Toolbar - {093F479D-712E-46CD-9E06-62E734A05F68} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\x64\IEExt\ie_plugin.dll [2016-12-06] (AO Kaspersky Lab)
Toolbar: HKLM-x32 - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2016-10-27] (Adobe Systems Incorporated)
Toolbar: HKLM-x32 - Kaspersky Protection Toolbar - {093F479D-712E-46CD-9E06-62E734A05F68} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\IEExt\ie_plugin.dll [2016-12-06] (AO Kaspersky Lab)
DPF: HKLM-x32 {D4B68B83-8710-488B-A692-D74B50BA558E} hxxp://files.creative.com/Web/softwareupdate/ocx/15113/CTPIDPDE.cab
DPF: HKLM-x32 {F6ACF75C-C32C-447B-9BEF-46B766368D29} hxxp://files.creative.com/Web/softwareupdate/ocx/150323/CTPID.cab
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-12-28] (Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-12-28] (Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-12-28] (Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-12-28] (Microsoft Corporation)

FireFox:
========
FF DefaultProfile: xkt30pix.default
FF ProfilePath: C:\Users\Milos\AppData\Roaming\Mozilla\Firefox\Profiles\xkt30pix.default [2017-01-16]
FF Homepage: Mozilla\Firefox\Profiles\xkt30pix.default -> about:home
FF Extension: (Gmail™ Notifier +) - C:\Users\Milos\AppData\Roaming\Mozilla\Firefox\Profiles\xkt30pix.default\Extensions\jid1-sqmEAwSoa3FZPc@jetpack.xpi [2016-11-10]
FF Extension: (Video DownloadHelper) - C:\Users\Milos\AppData\Roaming\Mozilla\Firefox\Profiles\xkt30pix.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2017-01-10]
FF Extension: (Adblock Plus) - C:\Users\Milos\AppData\Roaming\Mozilla\Firefox\Profiles\xkt30pix.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-11-28]
FF Extension: (DownThemAll!) - C:\Users\Milos\AppData\Roaming\Mozilla\Firefox\Profiles\xkt30pix.default\Extensions\{DDC359D1-844A-42a7-9AA1-88A850A938A8}.xpi [2016-11-10]
FF Extension: (Adobe Acrobat DC - Create PDF) - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn [2017-01-11]
FF HKLM\...\Firefox\Extensions: [light_plugin_F6F079488B53499DB99380A7E11A93F6@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\FFExt\light_plugin_firefox\addon.xpi
FF Extension: (Kaspersky Protection) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\FFExt\light_plugin_firefox\addon.xpi [2016-12-06]
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension.15@web2pdf.adobedotcom] - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn
FF HKLM-x32\...\Firefox\Extensions: [light_plugin_F6F079488B53499DB99380A7E11A93F6@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\FFExt\light_plugin_firefox\addon.xpi
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_24_0_0_194.dll [2017-01-10] ()
FF Plugin: @microsoft.com/GENUINE -> disabled [Keine Datei]
FF Plugin: @videolan.org/vlc,version=2.2.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2015-07-29] (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_24_0_0_194.dll [2017-01-10] ()
FF Plugin-x32: @java.com/DTPlugin,version=11.112.2 -> C:\Program Files (x86)\Java\jre1.8.0_112\bin\dtplugin\npDeployJava1.dll [2016-12-10] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.112.2 -> C:\Program Files (x86)\Java\jre1.8.0_112\bin\plugin2\npjp2.dll [2016-12-10] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Keine Datei]
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2016-12-28] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2016-12-28] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2016-12-11] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2016-12-11] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-17] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-17] (Google Inc.)
FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2016-12-23] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2015-07-29] (Adobe Systems)

Chrome:
=======
CHR HomePage: Default -> hxxps://www.google.at/
CHR StartupUrls: Default -> "hxxp://google.de/","hxxp://www.google.com"
CHR Profile: C:\Users\Milos\AppData\Local\Google\Chrome\User Data\Default [2017-01-16]
CHR Extension: (Google Präsentationen) - C:\Users\Milos\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-11-22]
CHR Extension: (Google Docs) - C:\Users\Milos\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-11-22]
CHR Extension: (Google Drive) - C:\Users\Milos\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-11-22]
CHR Extension: (YouTube) - C:\Users\Milos\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-11-22]
CHR Extension: (GMX MailCheck) - C:\Users\Milos\AppData\Local\Google\Chrome\User Data\Default\Extensions\camnampocfohlcgbajligmemmabnljcm [2017-01-13]
CHR Extension: (Adblock Plus) - C:\Users\Milos\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2016-11-23]
CHR Extension: (Adobe Acrobat) - C:\Users\Milos\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2017-01-16]
CHR Extension: (Google Play Musik) - C:\Users\Milos\AppData\Local\Google\Chrome\User Data\Default\Extensions\fahmaaghhglfmonjliepjlchgpgfmobi [2017-01-14]
CHR Extension: (Google Tabellen) - C:\Users\Milos\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-11-22]
CHR Extension: (Kaspersky Protection) - C:\Users\Milos\AppData\Local\Google\Chrome\User Data\Default\Extensions\fhoibnponjcgjgcnfacekaijdbbplhib [2016-11-22]
CHR Extension: (Google Docs Offline) - C:\Users\Milos\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-11-23]
CHR Extension: (Copy clean Links) - C:\Users\Milos\AppData\Local\Google\Chrome\User Data\Default\Extensions\mccgphdljaoibmimmngmeehgdocpcajn [2017-01-08]
CHR Extension: (Google Mail-Checker) - C:\Users\Milos\AppData\Local\Google\Chrome\User Data\Default\Extensions\mihcahmgecmbnbcchbopgniflfhgnkff [2016-11-23]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Milos\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-11-22]
CHR Extension: (Google Mail) - C:\Users\Milos\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-11-22]
CHR Extension: (Chrome Media Router) - C:\Users\Milos\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-12-15]
CHR HKLM\...\Chrome\Extension: [fhoibnponjcgjgcnfacekaijdbbplhib] - hxxps://chrome.google.com/webstore/detail/fhoibnponjcgjgcnfacekaijdbbplhib
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [fhoibnponjcgjgcnfacekaijdbbplhib] - hxxps://chrome.google.com/webstore/detail/fhoibnponjcgjgcnfacekaijdbbplhib

==================== Dienste (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2207960 2016-09-26] (Adobe Systems, Incorporated)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2016-09-22] (Apple Inc.)
R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe [920736 2016-11-10] ()
R2 asHmComSvc; C:\Program Files (x86)\ASUS\AAHM\1.00.20\aaHMSvc.exe [951936 2016-11-10] (ASUSTeK Computer Inc.)
R2 AsSysCtrlService; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.13\AsSysCtrlService.exe [149120 2016-11-10] (ASUSTeK Computer Inc.)
R2 AsusFanControlService; C:\Program Files (x86)\ASUS\AsusFanControlService\1.02.00\AsusFanControlService.exe [1632256 2016-11-10] (ASUSTeK Computer Inc.) [Datei ist nicht signiert]
R2 AVP17.0.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\avp.exe [241544 2016-06-28] (AO Kaspersky Lab)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [3699904 2016-12-28] (Microsoft Corporation)
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [31776 2016-12-07] (HP Inc.)
S3 klvssbrigde64; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\x64\vssbridge64.exe [77328 2016-06-28] (AO Kaspersky Lab)
R2 KMS-R@1n; C:\Windows\KMS-R@1n.exe [26112 2016-11-12] () [Datei ist nicht signiert]
R2 KSDE1.0.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 1.0\ksde.exe [241544 2016-06-28] (AO Kaspersky Lab)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [462784 2016-12-13] (NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [462784 2016-12-13] (NVIDIA Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [459832 2016-12-11] (NVIDIA Corporation)
R2 NVIDIA Wireless Controller Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe [1163712 2016-12-13] (NVIDIA Corporation)
R2 NvTelemetryContainer; C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [425408 2016-12-13] (NVIDIA Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2016-02-18] (Microsoft Corporation)

===================== Treiber (Nicht auf der Ausnahmeliste) ======================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R3 AiChargerPlus; C:\Windows\SysWow64\drivers\AiChargerPlus.sys [14848 2013-01-28] (ASUSTek Computer Inc.)
R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2014-01-28] ()
R1 AsUpIO; C:\Windows\SysWow64\drivers\AsUpIO.sys [14464 2013-01-15] ()
R3 ASUSFILTER; C:\Windows\SysWow64\drivers\ASUSFILTER.sys [46152 2011-09-20] (MCCI Corporation)
S3 ASUSstpt; C:\Windows\System32\DRIVERS\ASUSstpt.sys [27392 2013-03-28] (MCCI Corporation)
S3 ASUSumsc; C:\Windows\System32\DRIVERS\ASUSumsc.sys [151808 2013-03-28] (MCCI Corporation)
R0 cm_km; C:\Windows\System32\DRIVERS\cm_km.sys [238936 2016-06-10] (AO Kaspersky Lab)
R0 kl1; C:\Windows\System32\DRIVERS\kl1.sys [554416 2016-06-02] (AO Kaspersky Lab)
R0 klbackupdisk; C:\Windows\System32\DRIVERS\klbackupdisk.sys [63920 2016-06-07] (AO Kaspersky Lab)
R1 klbackupflt; C:\Windows\System32\DRIVERS\klbackupflt.sys [86352 2016-06-15] (AO Kaspersky Lab)
R2 kldisk; C:\Windows\System32\DRIVERS\kldisk.sys [78216 2016-05-31] (AO Kaspersky Lab)
R3 klflt; C:\Windows\System32\DRIVERS\klflt.sys [189264 2016-06-26] (AO Kaspersky Lab)
R1 klhk; C:\Windows\System32\DRIVERS\klhk.sys [305496 2016-09-12] (AO Kaspersky Lab)
R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [1036512 2016-12-06] (AO Kaspersky Lab)
R1 KLIM6; C:\Windows\System32\DRIVERS\klim6.sys [57936 2016-12-06] (AO Kaspersky Lab)
R3 klkbdflt; C:\Windows\System32\DRIVERS\klkbdflt.sys [52144 2016-05-19] (AO Kaspersky Lab)
R3 klmouflt; C:\Windows\System32\DRIVERS\klmouflt.sys [41648 2015-06-07] (Kaspersky Lab ZAO)
R1 klpd; C:\Windows\System32\DRIVERS\klpd.sys [45488 2016-05-31] (AO Kaspersky Lab)
R3 kltap; C:\Windows\System32\DRIVERS\kltap.sys [52152 2016-06-07] (The OpenVPN Project)
R1 kltdi; C:\Windows\System32\DRIVERS\kltdi.sys [75696 2016-05-17] (AO Kaspersky Lab)
R1 Klwtp; C:\Windows\System32\DRIVERS\klwtp.sys [134880 2016-12-06] (AO Kaspersky Lab)
R1 kneps; C:\Windows\System32\DRIVERS\kneps.sys [194480 2016-06-14] (AO Kaspersky Lab)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [27584 2016-12-13] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [46016 2016-12-13] (NVIDIA Corporation)
S3 ssdevfactory; C:\Windows\System32\DRIVERS\ssdevfactory.sys [41816 2016-11-03] (SteelSeries ApS)
S3 UHSfiltv; C:\Windows\System32\drivers\UHSfiltv.sys [23552 2013-05-31] (Creative Technology Ltd.)
S3 VGPU; System32\drivers\rdvgkmd.sys [X]

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2017-01-16 21:24 - 2017-01-16 21:25 - 00028848 _____ C:\Users\Milos\Downloads\FRST.txt
2017-01-16 21:24 - 2017-01-16 21:24 - 00000000 ____D C:\FRST
2017-01-16 21:23 - 2017-01-16 21:23 - 02419200 _____ (Farbar) C:\Users\Milos\Downloads\FRST64.exe
2017-01-16 20:52 - 2017-01-16 20:52 - 00503040 _____ C:\Users\Milos\Downloads\ExploitedCollegeGirls 17 01 12 Andria And Lilly.nzb
2017-01-16 20:06 - 2017-01-16 20:06 - 00229778 _____ C:\Users\Milos\Downloads\Entwicklung des Kindes- Kinder im Krankenhaus-Bindung .pdf
2017-01-16 20:05 - 2017-01-16 20:05 - 01622862 _____ C:\Users\Milos\Downloads\Bindung durch Berührung.pdf
2017-01-16 20:05 - 2017-01-16 20:05 - 00153072 _____ C:\Users\Milos\Downloads\Bindungsstörungen Kinder.pdf
2017-01-16 19:24 - 2017-01-16 19:24 - 00382038 _____ C:\Users\Milos\Downloads\out.pdf
2017-01-16 19:06 - 2017-01-16 19:06 - 48910262 _____ C:\Users\Milos\Downloads\[Thiem] Duale Reihe - Pädiatrie (4.Auflage, 2012).pdf
2017-01-15 20:29 - 2017-01-15 20:29 - 00115995 _____ C:\Users\Milos\Downloads\Motivationsschreiben-Tajinder-Ram.pdf
2017-01-15 19:10 - 2017-01-15 19:10 - 00009951 _____ C:\Users\Milos\Downloads\Gruppeneinteilung (1).xlsx
2017-01-14 18:41 - 2017-01-14 18:41 - 00187144 _____ C:\Users\Milos\Downloads\Prüfungsfragen (1) (1).pdf
2017-01-14 18:38 - 2017-01-14 18:38 - 00725394 _____ C:\Users\Milos\Downloads\Säuglingsernährung und Ernährung der Mutter.pdf
2017-01-14 18:38 - 2017-01-14 18:38 - 00455780 _____ C:\Users\Milos\Downloads\Säuglingsernähung.pdf
2017-01-14 18:38 - 2017-01-14 18:38 - 00455780 _____ C:\Users\Milos\Downloads\Säuglingsernähung (1).pdf
2017-01-14 18:38 - 2017-01-14 18:38 - 00187144 _____ C:\Users\Milos\Downloads\Prüfungsfragen (1).pdf
2017-01-14 11:49 - 2017-01-14 11:49 - 00187144 _____ C:\Users\Milos\Downloads\Prüfungsfragen.pdf
2017-01-12 21:28 - 2017-01-12 21:28 - 00000000 ____D C:\Users\Milos\Documents\OneNote-Notizbücher
2017-01-11 21:34 - 2017-01-11 21:34 - 00142181 _____ C:\Users\Milos\Downloads\Rechnung_917706740117.pdf
2017-01-11 15:28 - 2017-01-11 15:28 - 00309642 _____ C:\Users\Milos\Downloads\stundentafel_hak_2014_NEU.pdf
2017-01-11 15:27 - 2017-01-11 15:27 - 00292244 _____ C:\Users\Milos\Downloads\Schwerpunkte_HAK.pdf
2017-01-11 15:26 - 2017-01-11 15:26 - 00473584 _____ C:\Users\Milos\Downloads\cluster+modul.pdf
2017-01-11 15:24 - 2017-01-11 15:24 - 00189862 _____ C:\Users\Milos\Downloads\HAK_NEU.pdf
2017-01-11 14:43 - 2017-01-05 19:55 - 00154856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2017-01-11 14:43 - 2017-01-05 19:55 - 00095464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2017-01-11 14:43 - 2017-01-05 19:52 - 01460736 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2017-01-11 14:43 - 2017-01-05 19:52 - 01212928 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2017-01-11 14:43 - 2017-01-05 19:52 - 00730624 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2017-01-11 14:43 - 2017-01-05 19:52 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2017-01-11 14:43 - 2017-01-05 19:52 - 00463872 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2017-01-11 14:43 - 2017-01-05 19:52 - 00345600 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2017-01-11 14:43 - 2017-01-05 19:52 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2017-01-11 14:43 - 2017-01-05 19:52 - 00312320 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2017-01-11 14:43 - 2017-01-05 19:52 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2017-01-11 14:43 - 2017-01-05 19:52 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2017-01-11 14:43 - 2017-01-05 19:52 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2017-01-11 14:43 - 2017-01-05 19:52 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2017-01-11 14:43 - 2017-01-05 19:52 - 00123904 _____ (Microsoft Corporation) C:\Windows\system32\bcrypt.dll
2017-01-11 14:43 - 2017-01-05 19:52 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2017-01-11 14:43 - 2017-01-05 19:52 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2017-01-11 14:43 - 2017-01-05 19:52 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2017-01-11 14:43 - 2017-01-05 19:52 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2017-01-11 14:43 - 2017-01-05 19:52 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2017-01-11 14:43 - 2017-01-05 19:52 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2017-01-11 14:43 - 2017-01-05 18:43 - 00666112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2017-01-11 14:43 - 2017-01-05 18:43 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2017-01-11 14:43 - 2017-01-05 18:43 - 00342528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2017-01-11 14:43 - 2017-01-05 18:43 - 00261120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2017-01-11 14:43 - 2017-01-05 18:43 - 00254464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2017-01-11 14:43 - 2017-01-05 18:43 - 00223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2017-01-11 14:43 - 2017-01-05 18:43 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2017-01-11 14:43 - 2017-01-05 18:43 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2017-01-11 14:43 - 2017-01-05 18:43 - 00141312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpchttp.dll
2017-01-11 14:43 - 2017-01-05 18:43 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2017-01-11 14:43 - 2017-01-05 18:43 - 00082944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcrypt.dll
2017-01-11 14:43 - 2017-01-05 18:43 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2017-01-11 14:43 - 2017-01-05 18:43 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2017-01-11 14:43 - 2017-01-05 18:43 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2017-01-11 14:43 - 2017-01-05 18:43 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2017-01-11 14:43 - 2017-01-05 18:42 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2017-01-11 14:43 - 2017-01-05 18:32 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2017-01-11 14:43 - 2017-01-05 18:25 - 00159744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2017-01-11 14:43 - 2017-01-05 18:24 - 00291328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2017-01-11 14:43 - 2017-01-05 18:24 - 00129536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2017-01-11 14:43 - 2017-01-05 18:24 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2017-01-11 14:43 - 2017-01-05 18:23 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2017-01-11 14:43 - 2017-01-05 18:19 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll
2017-01-10 17:01 - 2017-01-10 17:01 - 03031269 _____ C:\Users\Milos\Downloads\GI-Leberzirrhose-Pankreatitis-Galle.pdf
2017-01-09 19:56 - 2017-01-09 19:56 - 11753573 _____ C:\Users\Milos\Downloads\Skript-Pflege in speziellen Situationen 1 (2).pdf
2017-01-09 17:40 - 2017-01-09 17:40 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_netaapl64_01009.Wdf
2017-01-09 17:33 - 2017-01-09 17:33 - 00185511 _____ C:\Users\Milos\Downloads\FuckingGlasses 16 10 28 Sophia Leone.nzb
2017-01-09 15:36 - 2017-01-09 15:48 - 00009888 _____ C:\Users\Milos\Downloads\Gruppeneinteilung.xlsx
2017-01-08 20:27 - 2017-01-08 20:27 - 11753573 _____ C:\Users\Milos\Downloads\Skript-Pflege in speziellen Situationen 1 (1).pdf
2017-01-08 17:28 - 2017-01-08 17:28 - 00029781 _____ C:\Users\Milos\Downloads\AA_PFISS_3 Sem_2016_Asthma_bronchiale.pdf
2017-01-08 17:25 - 2017-01-08 17:25 - 00029781 _____ C:\Users\Milos\Desktop\AA_PFISS_3 Sem_2016_Asthma_bronchiale.pdf
2017-01-08 17:19 - 2017-01-08 17:19 - 00015799 _____ C:\Users\Milos\Downloads\2013-Medikamentenplan.pdf
2017-01-08 00:03 - 2017-01-08 00:03 - 00391432 _____ C:\Users\Milos\Downloads\Sing.2016.TS.MD.GERMAN.XViD-SPECTRE{{UsenetRevolution}}.nzb
2017-01-06 19:53 - 2016-12-11 19:23 - 00134712 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2017-01-06 19:53 - 2016-09-09 19:25 - 00269600 _____ C:\Windows\SysWOW64\vulkan-1.dll
2017-01-06 19:53 - 2016-09-09 19:25 - 00261920 _____ C:\Windows\system32\vulkan-1.dll
2017-01-06 19:53 - 2016-09-09 19:25 - 00110880 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2017-01-06 19:53 - 2016-09-09 19:24 - 00125216 _____ C:\Windows\system32\vulkaninfo.exe
2017-01-06 19:51 - 2016-12-12 03:37 - 40125496 _____ C:\Windows\system32\nvcompiler.dll
2017-01-06 19:51 - 2016-12-12 03:37 - 35222976 _____ C:\Windows\SysWOW64\nvcompiler.dll
2017-01-06 19:51 - 2016-12-12 03:37 - 34703416 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2017-01-06 19:51 - 2016-12-12 03:37 - 28138432 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2017-01-06 19:51 - 2016-12-12 03:37 - 14073400 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2017-01-06 19:51 - 2016-12-12 03:37 - 10912744 _____ (NVIDIA Corporation) C:\Windows\system32\nvptxJitCompiler.dll
2017-01-06 19:51 - 2016-12-12 03:37 - 10795312 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2017-01-06 19:51 - 2016-12-12 03:37 - 10345696 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2017-01-06 19:51 - 2016-12-12 03:37 - 09151216 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2017-01-06 19:51 - 2016-12-12 03:37 - 08913328 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvptxJitCompiler.dll
2017-01-06 19:51 - 2016-12-12 03:37 - 08753832 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2017-01-06 19:51 - 2016-12-12 03:37 - 03640376 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2017-01-06 19:51 - 2016-12-12 03:37 - 03206080 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2017-01-06 19:51 - 2016-12-12 03:37 - 01953336 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6437633.dll
2017-01-06 19:51 - 2016-12-12 03:37 - 01586744 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6437633.dll
2017-01-06 19:51 - 2016-12-12 03:37 - 01036224 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2017-01-06 19:51 - 2016-12-12 03:37 - 00975416 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2017-01-06 19:51 - 2016-12-12 03:37 - 00944184 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2017-01-06 19:51 - 2016-12-12 03:37 - 00896056 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2017-01-06 19:51 - 2016-12-12 03:37 - 00683640 _____ (NVIDIA Corporation) C:\Windows\system32\nvfatbinaryLoader.dll
2017-01-06 19:51 - 2016-12-12 03:37 - 00572888 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvfatbinaryLoader.dll
2017-01-06 19:51 - 2016-12-12 03:37 - 00521096 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2017-01-06 19:51 - 2016-12-12 03:37 - 00438208 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2017-01-06 19:51 - 2016-12-12 03:37 - 00435904 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2017-01-06 19:51 - 2016-12-12 03:37 - 00407248 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2017-01-06 19:51 - 2016-12-12 03:37 - 00388544 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2017-01-06 19:51 - 2016-12-12 03:37 - 00170688 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2017-01-06 19:51 - 2016-12-12 03:37 - 00153184 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2017-01-06 19:51 - 2016-12-12 03:37 - 00148016 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2017-01-06 19:51 - 2016-12-12 03:37 - 00131536 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2017-01-05 14:10 - 2017-01-05 14:10 - 11753573 _____ C:\Users\Milos\Downloads\Skript-Pflege in speziellen Situationen 1.pdf
2017-01-05 13:48 - 2017-01-05 13:48 - 107773116 _____ C:\Users\Milos\Downloads\[Thiem] I care Pflege (2015).pdf
2017-01-04 22:10 - 2017-01-04 22:10 - 02071253 _____ C:\Users\Milos\Downloads\MODSKINPRO_6.24.3.rar
2017-01-04 22:10 - 2017-01-04 22:10 - 00000000 ____D C:\HoTroLoL
2017-01-04 21:58 - 2017-01-04 21:58 - 00000000 ____D C:\Users\Milos\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MKJogo
2017-01-04 21:58 - 2017-01-04 21:58 - 00000000 ____D C:\Program Files (x86)\MKJogo
2017-01-04 21:53 - 2017-01-04 21:53 - 00000623 _____ C:\Users\Milos\Downloads\Riot-Points-Adder-League-of-legends.rar.nzb
2017-01-04 21:52 - 2017-01-04 21:52 - 00011151 _____ C:\Users\Milos\Downloads\Free Riotpoints 100%.rar.nzb
2016-12-23 11:01 - 2016-12-23 11:07 - 00000000 ____D C:\Users\Milos\AppData\Roaming\ImgBurn
2016-12-23 10:57 - 2016-12-23 10:57 - 03101913 _____ (LIGHTNING UK!) C:\Users\Milos\Downloads\Setup_ImgBurn_2.5.8.0.exe
2016-12-23 10:57 - 2016-12-23 10:57 - 00001877 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ImgBurn.lnk
2016-12-23 10:57 - 2016-12-23 10:57 - 00001865 _____ C:\Users\Public\Desktop\ImgBurn.lnk
2016-12-23 10:57 - 2016-12-23 10:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ImgBurn
2016-12-23 10:57 - 2016-12-23 10:57 - 00000000 ____D C:\Program Files (x86)\ImgBurn
2016-12-22 16:20 - 2016-12-22 16:20 - 00297735 _____ C:\Users\Milos\Downloads\ExploitedCollegeGirls 16 11 23 Aubrey.nzb
2016-12-21 18:16 - 2016-12-21 18:16 - 00000000 ____D C:\Users\Milos\AppData\Local\Diagnostics
2016-12-20 19:04 - 2016-12-20 19:04 - 00131887 _____ C:\Users\Milos\Downloads\124357_F_FI_16-09-07_Cyclokapron.pdf
2016-12-20 18:29 - 2016-12-20 18:29 - 00046561 _____ C:\Users\Milos\Downloads\Vorbereitungsbrief_Frau Isakovic (2).docx
2016-12-20 17:52 - 2016-12-20 17:52 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\4K Download
2016-12-20 17:51 - 2016-12-20 17:51 - 31451057 _____ C:\Users\Milos\Downloads\premiumleecher.com_Downloader.4.1.2.2075.DC.rar
2016-12-20 17:37 - 2017-01-16 14:36 - 00002938 _____ C:\ProgramData\NvTelemetryContainer.log
2016-12-20 17:37 - 2017-01-15 21:12 - 00005110 _____ C:\ProgramData\NvTelemetryContainer.log_backup1
2016-12-20 17:37 - 2016-12-20 17:37 - 00004240 _____ C:\Windows\System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-12-20 17:37 - 2016-12-20 17:37 - 00000000 ____D C:\Users\Milos\AppData\Local\Chromium
2016-12-20 17:37 - 2016-12-13 00:36 - 00156096 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap64v.dll
2016-12-20 17:37 - 2016-12-13 00:36 - 00123840 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll
2016-12-20 17:37 - 2016-12-13 00:36 - 00046016 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys
2016-12-20 17:37 - 2016-12-12 15:36 - 00001951 _____ C:\Windows\NvTelemetryContainerRecovery.bat
2016-12-20 14:03 - 2016-12-20 14:03 - 183108702 _____ C:\Users\Milos\Downloads\premiumleecher.com_KAV2017b.rar
2016-12-20 13:44 - 2016-12-20 13:44 - 00046561 _____ C:\Users\Milos\Downloads\Vorbereitungsbrief_Frau Isakovic (1).docx
2016-12-20 13:42 - 2016-12-20 13:42 - 00046561 _____ C:\Users\Milos\Downloads\Vorbereitungsbrief_Frau Isakovic.docx
2016-12-18 19:31 - 2016-12-18 19:31 - 00098746 _____ C:\Users\Milos\Downloads\Passierschein.pdf
2016-12-17 18:26 - 2016-12-17 18:26 - 00815137 _____ C:\Users\Milos\Downloads\Sons_of_Anarchy_S01E05_Giving_Back_720p_BluRay.nzb
2016-12-17 18:25 - 2016-12-17 18:25 - 00107953 _____ C:\Users\Milos\Downloads\sof sons of anarchy s01e05.nzb
2016-12-17 18:24 - 2016-12-17 18:24 - 00135468 _____ C:\Users\Milos\Downloads\Cowboyup26_Sons_of_Anarchy_S01E05_COMPLETE_DL_German_Dubbed_WS_BDRiP_XviD_FREAKS_usenet_space_cowboys_info_Powered_by_https_secretusenet_com_Sons_of_Anarchy_S01E05_Bluetentraeume_DL_German_Dubbed_WS_BDRiP_XviD_FREAKS.nzb
2016-12-17 18:23 - 2016-12-17 18:23 - 00089989 _____ C:\Users\Milos\Downloads\Sons_of_Anarchy_S01E05_DVDRip_XviD_REWARD.nzb
2016-12-17 18:23 - 2016-12-17 18:23 - 00089909 _____ C:\Users\Milos\Downloads\Sons_of_Anarchy_S01E06_DVDRip_XviD_REWARD.nzb
2016-12-17 18:11 - 2016-12-17 18:11 - 00020599 _____ C:\Users\Milos\Downloads\sr-hard-target-2-2016-SubRip-windows-1251.zip
2016-12-17 18:11 - 2016-12-17 18:11 - 00020599 _____ C:\Users\Milos\Downloads\sr-hard-target-2-2016-SubRip-windows-1251 (1).zip
2016-12-17 18:10 - 2016-12-17 18:10 - 00010896 _____ C:\Users\Milos\Downloads\hr-don't-breathe-2016-SubRip-windows-1250.zip
2016-12-17 18:08 - 2016-12-17 18:08 - 00018746 _____ C:\Users\Milos\Downloads\98e3ca58bbb3843b3862cbdc3a82855a92b8025a.zip
2016-12-17 18:07 - 2016-12-17 18:07 - 00015653 _____ C:\Users\Milos\Downloads\hr-mechanic-resurrection-2016-SubRip-windows-1250.zip
2016-12-17 18:02 - 2016-12-17 18:02 - 00013869 _____ C:\Users\Milos\Downloads\8509e5d494248bd6a8be4c680288de1038c4c05f.zip
2016-12-17 18:01 - 2016-12-17 18:01 - 00450473 _____ C:\Users\Milos\Downloads\The.Mechanic.2011.BDRip.AC3.German.XviD-POE{{UsenetRevolution}}.nzb
2016-12-17 18:01 - 2016-12-17 18:01 - 00406725 _____ C:\Users\Milos\Downloads\0kL2380Wk7gv2U26C2tT.par2.nzb
2016-12-17 18:00 - 2016-12-17 18:00 - 00126758 _____ C:\Users\Milos\Downloads\Dont.Breathe.2016.German.BDRip.MD.x264-MULTiPLEX{{UsenetRevolution}}.nzb
2016-12-17 17:57 - 2016-12-17 17:57 - 00392255 _____ C:\Users\Milos\Downloads\2BD6L_20150525_027.par2.nzb
2016-12-17 17:57 - 2016-12-17 17:57 - 00018115 _____ C:\Users\Milos\Downloads\sr-latn-extraction-2015-SubRip-windows-1250.zip
2016-12-17 17:52 - 2016-12-17 17:52 - 00461216 _____ C:\Users\Milos\Downloads\Hard.Target.2.2016.German.BDRip.x264-iMPERiUM{{UsenetRevolution}}.nzb
2016-12-17 17:49 - 2016-12-17 17:49 - 00232683 _____ C:\Users\Milos\Downloads\Extraction.Operation.Condor.German.2015.AC3.BDRiP.x264-XF{{UsenetRevolution}}.nzb
2016-12-17 17:47 - 2016-12-17 17:47 - 00020610 _____ C:\Users\Milos\Downloads\be8406a5a045dd3e6a7618e6ac37a3bb02dee490.zip
2016-12-17 17:47 - 2016-12-17 17:47 - 00019111 _____ C:\Users\Milos\Downloads\35ce9de5f918d17c50da52f7b9918080bf65a70a.zip
2016-12-17 17:46 - 2016-12-17 17:46 - 00020710 _____ C:\Users\Milos\Downloads\3f38b33357d6ae30ba3db83a308560bcf11ebeb6.zip
2016-12-17 17:45 - 2016-12-17 17:45 - 00286857 _____ C:\Users\Milos\Downloads\96242941_1a3a200e_c360da44_bdf95a3-u4e.par2.nzb
2016-12-17 17:42 - 2016-12-17 17:42 - 00001000 _____ C:\Users\Milos\Downloads\Sons.of.Anarchy.S01E05.Giving.Back.720p.HDTV.x264-DOT [COMPRESSED].rar.nzb
2016-12-17 17:22 - 2016-12-17 17:22 - 00198323 _____ C:\Users\Milos\Downloads\06547b242415a6258a2f58e88cc7cbc45f529c3f.zip
2016-12-17 17:20 - 2016-12-17 17:20 - 01655079 _____ C:\Users\Milos\Downloads\sons.of.anarchy.s06.h264{{UsenetRevolution}}.nzb
2016-12-17 17:17 - 2016-12-17 17:17 - 01341397 _____ C:\Users\Milos\Downloads\sons.of.anarchy.s05.h264{{UsenetRevolution}}.nzb
2016-12-17 17:07 - 2016-12-17 17:07 - 01341188 _____ C:\Users\Milos\Downloads\sons.of.anarchy.s04.h264{{UsenetRevolution}}.nzb
2016-12-17 16:38 - 2016-12-17 16:38 - 01533023 _____ C:\Users\Milos\Downloads\sons.of.anarchy.s03.h264{{UsenetRevolution}}.nzb
2016-12-17 16:36 - 2016-12-17 16:36 - 01308567 _____ C:\Users\Milos\Downloads\sons.of.anarchy.s02.h264{{UsenetRevolution}}.nzb
2016-12-17 16:35 - 2016-12-17 16:35 - 01900977 _____ C:\Users\Milos\Downloads\sons.of.anarchy.s01.h264{{UsenetRevolution}}.nzb

==================== Ein Monat: Geänderte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2017-01-16 21:23 - 2016-11-12 18:19 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2017-01-16 21:19 - 2016-11-12 18:41 - 00000000 ____D C:\Users\Milos\AppData\Roaming\Skype
2017-01-16 21:17 - 2016-11-13 15:29 - 00000000 ____D C:\Users\Milos\AppData\Roaming\vlc
2017-01-16 21:14 - 2016-11-18 16:59 - 00000000 ____D C:\ProgramData\Kaspersky Lab
2017-01-16 19:49 - 2016-12-09 17:54 - 00000000 ____D C:\Users\Milos\AppData\Local\686FB969-E721-4E59-875C-E0E020D647EB.aplzod
2017-01-16 19:07 - 2016-11-17 13:02 - 00000000 ____D C:\Users\Public\Documents\AdobeGC
2017-01-16 14:47 - 2016-11-10 16:08 - 00000000 ____D C:\ProgramData\NVIDIA
2017-01-16 14:45 - 2009-07-14 05:45 - 00031808 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2017-01-16 14:45 - 2009-07-14 05:45 - 00031808 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2017-01-16 14:43 - 2016-11-10 16:30 - 00000000 _____ C:\Windows\Path.idx
2017-01-16 14:38 - 2016-11-10 16:25 - 01048576 _____ C:\Windows\PE_Rom.dll
2017-01-16 14:37 - 2016-12-09 17:54 - 00000000 ___RD C:\Users\Milos\iCloudDrive
2017-01-16 14:36 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2017-01-14 18:43 - 2016-11-12 18:19 - 00000000 ____D C:\Users\Milos\AppData\Local\Adobe
2017-01-14 18:43 - 2016-11-10 15:42 - 00000000 ____D C:\Users\Milos\AppData\Roaming\Adobe
2017-01-14 15:39 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\inf
2017-01-14 09:46 - 2016-11-12 14:20 - 00000000 ____D C:\Users\Milos\AppData\Local\CrashDumps
2017-01-13 20:41 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\rescache
2017-01-12 17:36 - 2016-11-19 16:01 - 00000000 ____D C:\Users\Milos\AppData\LocalLow\Mozilla
2017-01-12 15:06 - 2016-11-12 18:49 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2017-01-12 15:05 - 2016-11-12 18:47 - 00000000 ____D C:\Program Files (x86)\Microsoft Office
2017-01-11 21:58 - 2016-11-14 20:32 - 00000000 ____D C:\Windows\system32\MRT
2017-01-11 21:57 - 2016-11-10 15:34 - 135657872 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2017-01-11 21:45 - 2016-11-12 19:23 - 00002453 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat DC.lnk
2017-01-11 21:45 - 2016-11-12 19:23 - 00002037 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat Distiller DC.lnk
2017-01-11 21:43 - 2016-11-12 19:24 - 00004476 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task
2017-01-10 16:23 - 2016-11-12 18:19 - 00802904 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2017-01-10 16:23 - 2016-11-12 18:19 - 00144472 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2017-01-10 16:23 - 2016-11-12 18:19 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2017-01-10 16:23 - 2016-11-12 18:19 - 00000000 ____D C:\Windows\system32\Macromed
2017-01-10 16:23 - 2016-11-10 16:21 - 00000000 ____D C:\Windows\SysWOW64\Macromed
2017-01-06 19:53 - 2016-11-10 16:13 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2017-01-06 19:53 - 2016-11-10 16:12 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2017-01-05 12:13 - 2011-04-12 08:43 - 00698688 _____ C:\Windows\system32\perfh007.dat
2017-01-05 12:13 - 2011-04-12 08:43 - 00148828 _____ C:\Windows\system32\perfc007.dat
2017-01-05 12:13 - 2009-07-14 06:13 - 01618320 _____ C:\Windows\system32\PerfStringBackup.INI
2016-12-28 00:45 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\NDF
2016-12-20 19:48 - 2016-11-29 15:32 - 00017694 _____ C:\Users\Milos\Desktop\Microsoft Word-Dokument (neu).docx
2016-12-20 17:37 - 2016-11-10 16:15 - 00000000 ____D C:\Users\Milos\AppData\Local\NVIDIA Corporation
2016-12-20 17:37 - 2016-11-10 16:14 - 00001412 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2016-12-20 17:37 - 2016-11-10 16:13 - 00003836 _____ C:\Windows\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-12-20 17:37 - 2016-11-10 16:12 - 00003832 _____ C:\Windows\System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-12-20 17:37 - 2016-11-10 16:12 - 00003832 _____ C:\Windows\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-12-20 17:37 - 2016-11-10 16:12 - 00003824 _____ C:\Windows\System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-12-20 17:37 - 2016-11-10 16:12 - 00003648 _____ C:\Windows\System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-12-20 17:37 - 2016-11-10 16:12 - 00003588 _____ C:\Windows\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-12-20 17:37 - 2016-11-10 16:12 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2016-12-20 17:37 - 2016-11-10 16:10 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2016-12-18 19:14 - 2009-07-14 04:20 - 00000000 __RSD C:\Windows\assembly
2016-12-17 16:14 - 2016-11-22 21:05 - 00003542 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2016-12-17 16:14 - 2016-11-22 21:05 - 00003414 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2016-12-17 16:14 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\Tasks

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======

2016-11-12 19:05 - 2016-11-12 19:05 - 0000057 _____ () C:\ProgramData\Ament.ini
2016-11-10 15:59 - 2016-11-10 15:59 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
2016-12-20 17:37 - 2017-01-16 14:36 - 0002938 _____ () C:\ProgramData\NvTelemetryContainer.log
2016-12-20 17:37 - 2017-01-15 21:12 - 0005110 _____ () C:\ProgramData\NvTelemetryContainer.log_backup1

==================== Bamital & volsnap ======================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\Windows\system32\winlogon.exe => Datei ist digital signiert
C:\Windows\system32\wininit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\wininit.exe => Datei ist digital signiert
C:\Windows\explorer.exe => Datei ist digital signiert
C:\Windows\SysWOW64\explorer.exe => Datei ist digital signiert
C:\Windows\system32\svchost.exe => Datei ist digital signiert
C:\Windows\SysWOW64\svchost.exe => Datei ist digital signiert
C:\Windows\system32\services.exe => Datei ist digital signiert
C:\Windows\system32\User32.dll => Datei ist digital signiert
C:\Windows\SysWOW64\User32.dll => Datei ist digital signiert
C:\Windows\system32\userinit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\userinit.exe => Datei ist digital signiert
C:\Windows\system32\rpcss.dll => Datei ist digital signiert
C:\Windows\system32\dnsapi.dll => Datei ist digital signiert
C:\Windows\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert

LastRegBack: 2017-01-13 20:33

==================== Ende von FRST.txt ============================
Code:
Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 15-01-2017
durchgeführt von  (16-01-2017 21:25:15)
Gestartet von C:\Users\Downloads
Windows 7 Ultimate Service Pack 1 (X64) (2016-11-10 14:42:25)
Start-Modus: Normal
==========================================================


==================== Konten: =============================

Administrator (S-1-5-21-210783167-1482073297-2139249726-500 - Administrator - Disabled)
Gast (S-1-5-21-210783167-1482073297-2139249726-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-210783167-1482073297-2139249726-1002 - Limited - Enabled)
Milos (S-1-5-21-210783167-1482073297-2139249726-1000 - Administrator - Enabled) => C:\Users\Milos

==================== Sicherheits-Center ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

AV: Kaspersky Internet Security (Enabled - Up to date) {86367591-4BE4-AE08-2FD9-7FCB8259CD98}
AS: Kaspersky Internet Security (Enabled - Up to date) {3D579475-6DDE-A186-1569-44B9F9DE8725}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Kaspersky Internet Security (Enabled) {BE0DF4B4-018B-AF50-0486-D6FE7C8A8AE3}

==================== Installierte Programme ======================

(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)

4K Video Downloader 4.1 (HKLM-x32\...\4K Video Downloader_is1) (Version: 4.1.2.2075 - Open Media LLC)
Adobe Acrobat DC (HKLM-x32\...\{AC76BA86-1033-FFFF-7760-0C0F074E4100}) (Version: 15.023.20053 - Adobe Systems Incorporated)
Adobe Acrobat Pro Installer 2015.020.20042 (HKLM-x32\...\Adobe Acrobat Pro Installer 2015.020.20042) (Version: 2015.020.20042 - Adobe Inc)
Adobe Flash Player 10 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 10.0.42.34 - Adobe Systems Incorporated)
Adobe Flash Player 24 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 24.0.0.194 - Adobe Systems Incorporated)
AI Suite II (HKLM-x32\...\{34D3688E-A737-44C5-9E2A-FF73618728E1}) (Version: 2.04.01 - ASUSTeK Computer Inc.)
Alt.Binz 0.39.4 (HKLM-x32\...\Alt.Binz) (Version: 0.39.4 - Rdl)
AMD Catalyst Install Manager (HKLM\...\{5DDB9EF7-1BC0-C9C1-9829-6B9CF68AC357}) (Version: 8.0.903.0 - Advanced Micro Devices, Inc.)
Ansel (Version: 376.33 - NVIDIA Corporation) Hidden
Apple Application Support (32-Bit) (HKLM-x32\...\{D079CAAD-0C31-47A2-9AF5-A82F9CD9B221}) (Version: 5.2 - Apple Inc.)
Apple Application Support (64-Bit) (HKLM\...\{64E6007B-1DA9-42CD-BBE4-D5FA67A7C71D}) (Version: 5.2 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{55BB2110-FB43-49B3-93F4-945A0CFB0A6C}) (Version: 10.0.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Version: 2.2.0.150 - Apple Inc.)
Asmedia ASM104x USB 3.0 Host Controller Driver (HKLM-x32\...\{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}) (Version: 1.16.12.0 - Asmedia Technology)
aTube Catcher Version 3.8 (HKLM-x32\...\{D43B360E-722D-421B-BC77-20B9E0F8B6CD}_is1) (Version: 3.8 - DsNET Corp)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.23 - Piriform)
Creative Systeminformationen (HKLM-x32\...\SysInfo) (Version: 1.10 - Creative Technology Limited)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 55.0.2883.87 - Google Inc.)
Google Update Helper (x32 Version: 1.3.32.7 - Google Inc.) Hidden
HP ENVY 5530 series - Grundlegende Software für das Gerät (HKLM\...\{08CB8BF7-0CCE-4FC2-A475-A985EB11B159}) (Version: 32.3.198.49673 - Hewlett-Packard Co.)
HP ENVY 5530 series Hilfe (HKLM-x32\...\{272E06A0-7B74-481F-BD50-C632D9CA81A3}) (Version: 30.0.0 - Hewlett Packard)
HP Support Solutions Framework (HKLM-x32\...\{D549B5E2-DBE8-4190-ABA5-71106264398C}) (Version: 12.5.32.203 - HP Inc.)
HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
iCloud (HKLM\...\{4BB313CE-D3D1-424C-8823-15CF85B00B05}) (Version: 6.1.0.30 - Apple Inc.)
ImgBurn (HKLM-x32\...\ImgBurn) (Version: 2.5.8.0 - LIGHTNING UK!)
iTunes (HKLM\...\{81C96689-EA5B-4B7D-A04F-16326EC51BC2}) (Version: 12.5.4.42 - Apple Inc.)
Java 8 Update 111 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180111F0}) (Version: 8.0.1110.14 - Oracle Corporation)
Java 8 Update 112 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180112F0}) (Version: 8.0.1120.15 - Oracle Corporation)
Kaspersky Internet Security (HKLM-x32\...\InstallWIX_{E27B1D7B-3B34-43A2-9FC0-9828D5DF46E2}) (Version: 17.0.0.611 - Kaspersky Lab)
Kaspersky Internet Security (x32 Version: 17.0.0.611 - Kaspersky Lab) Hidden
Kaspersky Secure Connection (HKLM-x32\...\InstallWIX_{1CF84962-50F8-48CA-9082-B70F3A02C686}) (Version: 17.0.0.611 - Kaspersky Lab)
Kaspersky Secure Connection (x32 Version: 17.0.0.611 - Kaspersky Lab) Hidden
League of Legends (HKLM-x32\...\League of Legends 4.1.2) (Version: 4.1.2 - Riot Games)
League of Legends (x32 Version: 4.1.2 - Riot Games) Hidden
Microsoft .NET Framework 4.6.1 (DEU) (HKLM\...\{AAC5C889-B75D-3368-BC63-CB660DE44C66}) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft .NET Framework 4.6.1 Hotfix Rollup (KB3120241) (HKLM\...\{46556DC7-EFC0-361E-832E-E0A9B0D2EFAB}) (Version: 4.6.01067 - Microsoft Corporation)
Microsoft Office Professional Plus 2016 - de-de (HKLM\...\ProPlusRetail - de-de) (Version: 16.0.7571.2109 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-210783167-1482073297-2139249726-1000\...\OneDriveSetup.exe) (Version: 17.3.4604.0120 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.30319 (HKLM\...\{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.30319 (HKLM-x32\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
MK LOL (HKU\S-1-5-21-210783167-1482073297-2139249726-1000\...\MK LOL) (Version:  - )
Mozilla Firefox 50.1.0 (x86 de) (HKLM-x32\...\Mozilla Firefox 50.1.0 (x86 de)) (Version: 50.1.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 50.1.0 - Mozilla)
NVIDIA 3D Vision Controller-Treiber 369.04 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 369.04 - NVIDIA Corporation)
NVIDIA 3D Vision Treiber 376.33 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 376.33 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.2.0.96 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.2.0.96 - NVIDIA Corporation)
NVIDIA Grafiktreiber 376.33 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 376.33 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.34.17 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.17 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.16.0318 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.16.0318 - NVIDIA Corporation)
NvNodejs (Version: 3.2.0.96 - NVIDIA Corporation) Hidden
NvTelemetry (Version: 2.0.0.0 - NVIDIA Corporation) Hidden
Office 16 Click-to-Run Extensibility Component (x32 Version: 16.0.7571.2109 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (Version: 16.0.7571.2109 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (Version: 16.0.7571.2109 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (x32 Version: 16.0.7571.2109 - Microsoft Corporation) Hidden
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.67.1226.2012 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7525 - Realtek Semiconductor Corp.)
SHIELD Streaming (Version: 7.1.0350 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 3.2.0.96 - NVIDIA Corporation) Hidden
Skype™ 7.30 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.30.105 - Skype Technologies S.A.)
Sound Blaster JAM (HKLM-x32\...\{B2420891-3990-48E9-9C8D-8ED06AF7F5A2}) (Version: 1.00.02 - Creative Technology Limited)
Sound Blaster JAM Extras (HKLM-x32\...\{4E187CC4-E02C-4D07-994B-7425C40BCCAC}) (Version: 1.0 - Creative Technology Limited)
Studie zur Verbesserung von HP ENVY 5530 series (HKLM\...\{00852880-AC64-4970-A6D9-B08A27F12155}) (Version: 32.3.198.49673 - Hewlett-Packard Co.)
VirtualCloneDrive (HKLM-x32\...\VirtualCloneDrive) (Version: 5.5.0.0 - Elaborate Bytes)
VLC media player (HKLM\...\VLC media player) (Version: 2.2.4 - VideoLAN)
Vulkan Run Time Libraries 1.0.26.0 (HKLM\...\VulkanRT1.0.26.0) (Version: 1.0.26.0 - LunarG, Inc.)
Windows Driver Package - Microsoft (xusb21) XnaComposite  (08/13/2009 2.1.0.1349) (HKLM\...\0AEBEF6F936CFE16E003F7E141631FAB754D9816) (Version: 08/13/2009 2.1.0.1349 - Microsoft)
WinRAR 5.30 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.30.0 - win.rar GmbH)

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

Task: {0A2AA143-0128-4D50-9506-37C8D557D54D} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2016-09-28] (Piriform Ltd)
Task: {20249C32-9330-4E54-9F65-A8ECE40E8AFC} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2016-12-13] (NVIDIA Corporation)
Task: {2F78514C-0C20-47DC-B27E-8FF43ECD3642} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-11-22] (Google Inc.)
Task: {2FAE5D0D-1BF5-4E01-9EEE-581AAEBC6807} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-01-10] (Adobe Systems Incorporated)
Task: {3995C562-5BE4-4F89-BBAE-474F0B3B5D44} - System32\Tasks\R@1n-KMS\Office16ProPlus => wmic [Argument = path OfficeSoftwareProtectionProduct where (ID="d450596f-894d-49e0-966a-fd39ed4c4c64") call Activate]
Task: {4087EF99-A785-485D-813D-ECAC91716244} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2016-12-13] (NVIDIA Corporation)
Task: {52CFCEF4-5AD6-474B-A924-33F93C3FF879} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [2016-07-04] (HP Inc.)
Task: {5A1D87A1-284B-46BA-BE15-82B0EDA54B55} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2016-12-07] (HP Inc.)
Task: {5E830EC3-B8FD-4737-9438-BE91A45B0AED} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [2016-12-29] (Microsoft Corporation)
Task: {6A250DD1-4DC3-4148-82E0-E67F0B58AD7C} - System32\Tasks\ASUS\ASUS WiFi GO! Server Execute => C:\Program Files (x86)\ASUS\AI Suite II\Remote GO!\AssistTools\WiFi GO! Server.exe [2013-08-26] (ASUSTeK Computer Inc.)
Task: {6CAFAFE8-7CFA-4313-8D68-BC75628958BE} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2016-12-28] (Microsoft Corporation)
Task: {7261EB1D-CB1F-488E-8B28-3C0C9661B833} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2016-02-23] (Apple Inc.)
Task: {9CA9577F-B69C-4AAB-94C2-36BE57259073} - System32\Tasks\ASUS\Easy Update => C:\Program Files (x86)\ASUS\AI Suite II\EasyUpdate\EzUpdt.exe [2013-10-18] ()
Task: {A6E8CEE3-87C2-4AFC-B066-339EC0E948CA} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2016-12-13] (NVIDIA Corporation)
Task: {A8563C0A-098A-452B-8D38-3CF6857F55AD} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-12-19] (Adobe Systems Incorporated)
Task: {B2E04318-5CB7-43DA-AB39-D75783522DCF} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-11-22] (Google Inc.)
Task: {BE09BC61-E8D2-409F-BB8E-0A591C0862EF} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2016-12-13] (NVIDIA Corporation)
Task: {C6721ED0-7644-4809-B44B-E226B92E80B1} - System32\Tasks\HPCustParticipation HP ENVY 5530 series => C:\Program Files\HP\HP ENVY 5530 series\Bin\HPCustPartic.exe [2014-07-21] (Hewlett-Packard Development Company, LP)
Task: {C6E740BC-0D29-41FA-8484-2069DDBD9025} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2016-12-28] (Microsoft Corporation)
Task: {D40D2892-5524-492B-86C8-FC64EF388486} - System32\Tasks\ASUS\ASUS Network iControl Help Execute => C:\Program Files (x86)\ASUS\AI Suite II\Network iControl\NetSvcHelp\NetSvcHelpEntry.exe [2013-02-07] (ASUSTeK Computer Inc.)
Task: {D762F5FF-4E37-462A-B871-9FBBA167486F} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2016-12-13] (NVIDIA Corporation)
Task: {D91ABFC7-5E52-4CA8-B9F5-4FA099AB2563} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [2016-12-29] (Microsoft Corporation)
Task: {DE23FED1-EB5E-41EB-9483-C3204F9501DC} - System32\Tasks\ASUS\USB 3.0 Boost Service => C:\Program Files (x86)\ASUS\AI Suite II\USB 3.0 Boost\U3BoostSvr.exe [2011-09-09] ()
Task: {E0FC9EAE-B2A1-451C-BD8E-0FD59D25850D} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2016-12-13] (NVIDIA Corporation)
Task: {E5F37CC3-D21B-4248-9BF0-73E84793DE7A} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2016-12-13] (NVIDIA Corporation)
Task: {FC960DD8-F9F6-44EB-AF75-7BF1F477FA70} - System32\Tasks\ASUS\ASUS AI Suite II Execute => C:\Program Files (x86)\ASUS\AI Suite II\AsRoutineController.exe [2012-03-13] (ASUSTeK Computer Inc.)

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

==================== Verknüpfungen =============================

(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)

ShortcutWithArgument: C:\Users\Milos\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome-Apps\Google Play Musik.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) ->  --profile-directory=Default --app-id=fahmaaghhglfmonjliepjlchgpgfmobi

==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============

2016-10-05 18:17 - 2016-10-05 18:17 - 00092472 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2016-11-17 01:28 - 2016-11-17 01:28 - 01353528 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2016-11-10 16:19 - 2013-10-18 18:04 - 01426232 _____ () C:\Program Files (x86)\ASUS\AI Suite II\EasyUpdate\EzUpdt.exe
2016-11-12 18:53 - 2016-11-12 18:53 - 00026112 _____ () C:\Windows\KMS-R@1n.exe
2016-11-10 16:12 - 2016-12-13 00:35 - 01147328 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll
2016-11-10 16:12 - 2016-12-13 00:36 - 04489152 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\Poco.dll
2016-11-10 16:12 - 2016-12-11 19:47 - 00134712 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2016-01-06 17:41 - 2016-01-06 17:41 - 00062168 _____ () C:\Program Files\CCleaner\branding.dll
2016-11-10 16:17 - 2016-11-10 16:17 - 00920736 _____ () C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe
2016-11-12 18:53 - 2016-11-12 18:53 - 00005120 _____ () C:\Windows\KMS-R@1nHook.exe
2016-11-12 18:53 - 2016-11-12 18:53 - 00004096 _____ () C:\Windows\KMS-R@1nHook.dll
2016-12-15 15:12 - 2016-12-08 09:03 - 02412888 _____ () C:\Program Files (x86)\Google\Chrome\Application\55.0.2883.87\libglesv2.dll
2016-12-15 15:12 - 2016-12-08 09:03 - 00099672 _____ () C:\Program Files (x86)\Google\Chrome\Application\55.0.2883.87\libegl.dll
2016-11-10 16:20 - 2012-05-02 18:04 - 00233472 _____ () C:\Program Files (x86)\ASUS\AI Suite II\Remote GO!\AssistTools\AudioProjection.dll
2016-11-10 16:20 - 2010-12-14 17:46 - 00067584 _____ () C:\Program Files (x86)\ASUS\AI Suite II\Remote GO!\AssistTools\CoreAudioCap.dll
2016-11-10 16:20 - 2013-08-05 11:14 - 00176128 _____ () C:\Program Files (x86)\ASUS\AI Suite II\Remote GO!\AssistTools\DLCapPP.dll
2016-11-10 16:20 - 2013-06-11 12:06 - 00425984 _____ () C:\Program Files (x86)\ASUS\AI Suite II\Remote GO!\AssistTools\awiscale.DLL
2016-11-10 16:20 - 2010-10-29 18:58 - 00221184 _____ () C:\Program Files (x86)\ASUS\AI Suite II\Remote GO!\AssistTools\JpegCD.DLL
2016-11-10 16:20 - 2013-08-06 20:04 - 02502656 _____ () C:\Program Files (x86)\ASUS\AI Suite II\Remote GO!\AssistTools\xH264E.DLL
2016-11-10 16:20 - 2012-01-12 16:44 - 00475136 _____ () C:\Program Files (x86)\ASUS\AI Suite II\Remote GO!\AssistTools\WiFiGO_HookKey.dll
2016-11-10 16:20 - 2013-06-13 17:37 - 00156160 _____ () C:\Program Files (x86)\InstallShield Installation Information\{104BE4B8-D1DB-4170-977B-364960893DC8}\CloudAPI\CloudAPI.dll
2016-11-10 16:20 - 2013-03-21 19:38 - 00716800 _____ () C:\Program Files (x86)\ASUS\AI Suite II\Remote GO!\AssistTools\WiMoveHelp.dll
2016-11-10 16:20 - 2012-04-25 14:47 - 00659456 _____ () C:\Program Files (x86)\ASUS\AI Suite II\Remote GO!\AssistTools\PhoneCtrlAPI.dll
2016-06-28 00:19 - 2016-06-28 00:19 - 00865232 _____ () C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\kpcengine.2.3.dll
2016-11-10 16:19 - 2013-10-18 18:04 - 05777616 _____ () C:\Program Files (x86)\ASUS\AI Suite II\EasyUpdate\EzULIB.dll
2016-11-10 16:19 - 2013-05-08 16:22 - 00208896 _____ () C:\Program Files (x86)\ASUS\AI Suite II\EasyUpdate\ImageHelper.dll
2016-11-17 01:29 - 2016-11-17 01:29 - 01041720 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2016-10-05 18:18 - 2016-10-05 18:18 - 00080184 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2016-11-17 01:28 - 2016-11-17 01:28 - 00189752 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxslt.dll
2016-11-10 16:21 - 2013-08-19 10:23 - 00043520 ____N () C:\Program Files (x86)\ASUS\AI Suite II\TurboV EVO\HookKey32.dll
2016-11-10 16:12 - 2016-12-13 00:35 - 00018880 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2016-11-10 16:12 - 2016-12-13 00:35 - 00900032 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll
2016-11-10 16:12 - 2016-12-13 00:35 - 03774400 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\Poco.dll
2016-11-10 16:18 - 2017-01-16 14:36 - 00033792 _____ () C:\Program Files (x86)\ASUS\AXSP\1.00.19\PEbiosinterface32.dll
2016-11-10 16:18 - 2010-06-29 03:58 - 00104448 _____ () C:\Program Files (x86)\ASUS\AXSP\1.00.19\ATKEX.dll
2016-11-10 16:13 - 2016-12-13 00:33 - 64245184 _____ () C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\libcef.dll
2016-11-10 16:20 - 2012-02-06 21:08 - 00253952 _____ () C:\Program Files (x86)\ASUS\AI Suite II\Remote GO!\AssistTools\WiFile\pngio.dll
2015-03-17 01:34 - 2015-03-17 01:34 - 00010240 _____ () C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\locale\de_de\acrotray.deu
2016-11-10 16:21 - 2013-08-19 17:21 - 00253952 _____ () C:\Program Files (x86)\ASUS\AI Suite II\TurboV EVO\pngio.dll
2016-11-10 16:12 - 2016-12-12 15:36 - 00525760 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvSpCapsAPINode.node
2016-11-10 16:12 - 2016-12-12 15:36 - 00254008 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\DriverInstall.node
2016-11-10 16:12 - 2016-12-12 15:36 - 02808888 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\Downloader.node
2016-11-10 16:12 - 2016-12-12 15:36 - 00384568 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvGameShareAPINode.node
2016-11-10 16:12 - 2016-12-12 15:36 - 00447424 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvGalleryAPINode.node
2016-11-10 16:12 - 2016-12-12 15:36 - 00336832 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVAccountAPINode.node
2016-11-10 16:12 - 2016-12-12 15:36 - 01003456 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvCameraAPINode.node
2016-12-20 17:37 - 2016-12-12 15:36 - 00956472 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvSDKAPINode.node
2016-11-10 16:18 - 2011-07-12 19:14 - 00147456 _____ () C:\Program Files (x86)\ASUS\AI Suite II\AssistFunc.dll
2016-11-10 16:18 - 2010-10-05 08:22 - 00253952 _____ () C:\Program Files (x86)\ASUS\AI Suite II\pngio.dll
2016-11-10 16:19 - 2013-12-04 11:57 - 00870912 _____ () C:\Program Files (x86)\ASUS\AI Suite II\AI Charger+\AIChargerPlus.dll
2016-11-10 16:18 - 2012-10-08 17:07 - 00972288 _____ () C:\Program Files (x86)\ASUS\AI Suite II\BarGadget\BarGadget.dll
2016-11-10 16:19 - 2013-05-08 16:22 - 01040896 _____ () C:\Program Files (x86)\ASUS\AI Suite II\EasyUpdate\EasyUpdt.dll
2016-11-10 16:19 - 2012-06-19 12:56 - 01305600 _____ () C:\Program Files (x86)\ASUS\AI Suite II\MyLogo\MyLogo.dll
2016-11-10 16:20 - 2013-06-24 15:59 - 01173504 _____ () C:\Program Files (x86)\ASUS\AI Suite II\Network iControl\Network iControl.dll
2016-11-10 16:20 - 2012-07-20 09:39 - 01047040 _____ () C:\Program Files (x86)\ASUS\AI Suite II\Probe_II\ProbeII.dll
2016-11-10 16:20 - 2013-06-24 17:48 - 02055168 _____ () C:\Program Files (x86)\ASUS\AI Suite II\Remote GO!\WiFiGO.dll
2016-11-10 16:18 - 2013-04-15 14:19 - 00883712 _____ () C:\Program Files (x86)\ASUS\AI Suite II\Sensor\Sensor.dll
2016-11-10 16:18 - 2012-05-28 21:27 - 01622528 _____ () C:\Program Files (x86)\ASUS\AI Suite II\Sensor Graph\SensorGraph.dll
2016-11-10 16:18 - 2011-09-19 20:18 - 01243136 _____ () C:\Program Files (x86)\ASUS\AI Suite II\Settings\Settings.dll
2016-11-10 16:18 - 2011-07-21 09:06 - 00846848 _____ () C:\Program Files (x86)\ASUS\AI Suite II\Splitter\Splitter.dll
2016-11-10 16:18 - 2012-08-29 18:09 - 00875520 _____ () C:\Program Files (x86)\ASUS\AI Suite II\TabGadget\TabGadget.dll
2016-11-10 16:18 - 2010-08-23 03:17 - 00662016 _____ () C:\Program Files (x86)\ASUS\AAHM\1.00.20\aaHMLib.dll
2016-11-10 16:18 - 2010-10-05 08:22 - 00208896 _____ () C:\Program Files (x86)\ASUS\AI Suite II\ImageHelper.dll
2016-11-10 16:21 - 2012-01-19 09:39 - 00028672 _____ () C:\Program Files (x86)\ASUS\AI Suite II\USB BIOS Flashback\PEInfo.dll
2016-11-10 16:21 - 2010-09-23 11:51 - 00114688 _____ () C:\Program Files (x86)\ASUS\AI Suite II\USB BIOS Flashback\AsIdxParser.dll
2016-11-10 16:21 - 2010-02-25 14:01 - 00139264 _____ () C:\Program Files (x86)\ASUS\AI Suite II\USB BIOS Flashback\Aszip.dll
2016-11-10 16:18 - 2009-08-12 20:15 - 00253952 _____ () C:\Program Files (x86)\ASUS\AI Suite II\Sensor\AlertHelper\pngio.dll

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)


==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)


==================== Verknüpfungen (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)


==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)

IE trusted site: HKU\S-1-5-21-210783167-1482073297-2139249726-1000\...\sharepoint.com -> hxxps://studfhcampuswienac-files.sharepoint.com

==================== Hosts Inhalt: ===============================

(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)

2009-07-14 03:34 - 2009-06-10 22:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts


==================== Andere Bereiche ============================

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKU\S-1-5-21-210783167-1482073297-2139249726-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Milos\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 195.34.133.21 - 212.186.211.21
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.

==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==


==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

FirewallRules: [{31AC00F7-A1F5-4ABC-B9F8-179AA824E8FC}] => C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe
FirewallRules: [{2C776169-7145-451F-89A2-48AA91C79BE6}] => C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe
FirewallRules: [{BB1557A1-30E5-4312-971F-0C030DBC83E2}] => C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{6C38E65D-5428-412A-BFCA-F6E06FD70B33}] => C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{A313842A-6C61-4A12-8667-FDCD65924F5B}] => C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{827D0CD6-4CD1-4FDD-986C-36597E69206F}] => C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{91E579A5-DC4C-40E8-A2BB-6D1E22EC35F3}] => C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{F325081D-F679-4833-A232-AC43D2C54528}] => LPort=2869
FirewallRules: [{A5C70E79-7B9F-4F20-8A1B-6F66688C3991}] => LPort=1900
FirewallRules: [{96EAAD12-63BA-411C-AD72-4BFEB2B3897F}] => C:\Program Files (x86)\ASUS\AI Suite II\AI Suite II.exe
FirewallRules: [{BBF1DCA6-9826-4EF2-8546-21A3FE1E3A4E}] => C:\Program Files (x86)\ASUS\AI Suite II\AI Suite II.exe
FirewallRules: [{6656E6AE-88CD-45D7-AC60-B64F78441A76}] => C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe
FirewallRules: [{ED2A42C5-DE26-4C1C-840B-208ADF31CE06}] => C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe
FirewallRules: [{533BC99E-1A13-41BF-940F-961CF77E8966}] => C:\Users\Milos\AppData\Local\Microsoft\OneDrive\OneDrive.exe
FirewallRules: [{7B94D4C9-69E7-43B5-94DA-93E0BB5A3589}] => C:\Windows\KMS-R@1n.exe
FirewallRules: [{94919497-8A4E-476C-A8ED-186C168D2007}] => C:\Windows\KMS-R@1n.exe
FirewallRules: [{B04A1C58-85C8-4F1B-838F-E04179B5870B}] => C:\Program Files\HP\HP ENVY 5530 series\Bin\DeviceSetup.exe
FirewallRules: [{B764E70A-5280-4B18-906B-EF7E939A6310}] => LPort=5357
FirewallRules: [{56237AF9-F4EC-480C-97DD-AB4E28B5DA56}] => C:\Program Files\HP\HP ENVY 5530 series\Bin\HPNetworkCommunicatorCom.exe
FirewallRules: [{E7AB285C-CBB3-409A-91F2-B575DCF08145}] => LPort=2869
FirewallRules: [{7AA5D7FD-8995-4380-B5A6-A132C1B3866E}] => LPort=1900
FirewallRules: [{1C8B2E3B-E2B2-445D-9F2D-521A2E68005E}] => C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{0A29F24D-53CF-4D28-9CDE-03232D998FFE}] => C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{61622DAA-53E2-4F97-BEC3-EEF3D0FCD25B}] => C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{BDA1B160-263F-4256-B4D0-343FE31FD07C}] => C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{983FB56B-C434-40A2-A08F-4A4871695A36}] => C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe
FirewallRules: [{DC729786-971F-48AE-9D6B-4D4AFD036798}] => C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{2811BCD3-E90A-41B9-A091-C74859F15EB5}] => C:\Program Files\iTunes\iTunes.exe
FirewallRules: [{197F3F5D-5711-444F-9492-985BEB8AC87C}] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{6F356B39-56D0-439F-BC7E-F2019DE86287}] => C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe
FirewallRules: [{5B5E560A-2C1C-4110-B3E8-AB7605E0BE44}] => C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe
FirewallRules: [{C7289693-C2B2-4877-A366-98A5D8F5BCB8}] => C:\Program Files (x86)\ASUS\AI Suite II\Remote GO!\AssistTools\WiFi GO! Server.exe
FirewallRules: [{3821FD98-AF85-4770-962A-C93FC8B40046}] => C:\Program Files (x86)\ASUS\AI Suite II\Remote GO!\AssistTools\WiFi GO! Server.exe
FirewallRules: [{60A46FBE-DB27-4341-AA4B-5E77C4435F5B}] => C:\Program Files (x86)\ASUS\AI Suite II\Remote GO!\ASUSDMS.exe
FirewallRules: [{78C70505-D1D5-4DCD-A836-ADDA3D30E60B}] => C:\Program Files (x86)\ASUS\AI Suite II\Remote GO!\ASUSDMS.exe

==================== Wiederherstellungspunkte =========================

10-01-2017 13:46:20 Windows Update
11-01-2017 21:56:36 Windows Update

==================== Fehlerhafte Geräte im Gerätemanager =============


==================== Fehlereinträge in der Ereignisanzeige: =========================

Applikationsfehler:
==================
Error: (01/16/2017 02:36:39 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Ereignisfilter mit Abfrage "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" konnte im Namespace "//./root/CIMV2" nicht reaktiviert werden aufgrund des Fehlers 0x80041003. Ereignisse können nicht durch diesen Filter geschickt werden, bis dieses Problem gelöst ist.

Error: (01/15/2017 11:31:59 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Ereignisfilter mit Abfrage "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" konnte im Namespace "//./root/CIMV2" nicht reaktiviert werden aufgrund des Fehlers 0x80041003. Ereignisse können nicht durch diesen Filter geschickt werden, bis dieses Problem gelöst ist.

Error: (01/14/2017 06:55:49 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: WINWORD.EXE, Version: 16.0.7571.2109, Zeitstempel: 0x5864420d
Name des fehlerhaften Moduls: csi.dll, Version: 0.0.0.0, Zeitstempel: 0x58639550
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0020943a
ID des fehlerhaften Prozesses: 0x2038
Startzeit der fehlerhaften Anwendung: 0x01d26e8cd06785ab
Pfad der fehlerhaften Anwendung: C:\Program Files (x86)\Microsoft Office\Root\Office16\WINWORD.EXE
Pfad des fehlerhaften Moduls: C:\Program Files (x86)\Common Files\Microsoft Shared\Office16\csi.dll
Berichtskennung: ae82ff78-da82-11e6-b69d-ac9e174aaf68

Error: (01/14/2017 03:39:44 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 5975

Error: (01/14/2017 03:39:44 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 5975

Error: (01/14/2017 03:39:44 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (01/14/2017 09:34:14 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Ereignisfilter mit Abfrage "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" konnte im Namespace "//./root/CIMV2" nicht reaktiviert werden aufgrund des Fehlers 0x80041003. Ereignisse können nicht durch diesen Filter geschickt werden, bis dieses Problem gelöst ist.

Error: (01/13/2017 08:46:18 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 8050

Error: (01/13/2017 08:46:18 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 8050

Error: (01/13/2017 08:46:18 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second


Systemfehler:
=============
Error: (01/15/2017 11:32:15 AM) (Source: DCOM) (EventID: 10010) (User: )
Description: Der Server "{995C996E-D918-4A8C-A302-45719A6F4EA7}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.

Error: (01/14/2017 10:08:20 PM) (Source: Schannel) (EventID: 4119) (User: NT-AUTORITÄT)
Description: Es wurde eine schwerwiegende Warnung empfangen: 20.

Error: (01/14/2017 09:12:57 PM) (Source: bowser) (EventID: 8003) (User: )
Description: Der Hauptsuchdienst erhielt eine Serverankündigung vom Computer "PERICA-PC",
der der Hauptsuchdienst der Domäne für den NetBT_Tcpip_{A3BEE911-2B00-4748-9C4F-C47E99763EA2}-Transport zu sein scheint.
Der Hauptsuchdienst wurde beendet oder es wird eine Auswahl erzwungen.

Error: (01/14/2017 09:03:19 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Warten auf eine Transaktionsrückmeldung von Dienst lmhosts erreicht.

Error: (01/14/2017 08:13:03 PM) (Source: bowser) (EventID: 8003) (User: )
Description: Der Hauptsuchdienst erhielt eine Serverankündigung vom Computer "PERICA-PC",
der der Hauptsuchdienst der Domäne für den NetBT_Tcpip_{A3BEE911-2B00-4748-9C4F-C47E99763EA2}-Transport zu sein scheint.
Der Hauptsuchdienst wurde beendet oder es wird eine Auswahl erzwungen.

Error: (01/14/2017 09:34:35 AM) (Source: DCOM) (EventID: 10010) (User: )
Description: Der Server "{995C996E-D918-4A8C-A302-45719A6F4EA7}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.

Error: (01/12/2017 09:28:54 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: Der Server "{F9717507-6651-4EDB-BFF7-AE615179BCCF}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.

Error: (01/12/2017 04:40:16 PM) (Source: Schannel) (EventID: 4119) (User: NT-AUTORITÄT)
Description: Es wurde eine schwerwiegende Warnung empfangen: 20.

Error: (01/11/2017 09:56:56 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: Der Server "{3FCB7074-EC9E-4AAF-9BE3-C0E356942366}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.

Error: (01/11/2017 09:56:27 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: Der Server "{F9717507-6651-4EDB-BFF7-AE615179BCCF}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.


==================== Speicherinformationen ===========================

Prozessor: AMD FX(tm)-6350 Six-Core Processor
Prozentuale Nutzung des RAM: 40%
Installierter physikalischer RAM: 16284.35 MB
Verfügbarer physikalischer RAM: 9713.31 MB
Summe virtueller Speicher: 32566.89 MB
Verfügbarer virtueller Speicher: 24803.52 MB

==================== Laufwerke ================================

Drive c: () (Fixed) (Total:200.01 GB) (Free:105.43 GB) NTFS
Drive d: () (Fixed) (Total:731.01 GB) (Free:299.03 GB) NTFS

==================== MBR & Partitionstabelle ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: E034EDD1)
Partition 1: (Active) - (Size=500 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=200 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=731 GB) - (Type=07 NTFS)

==================== Ende von Addition.txt ============================

burningice 16.01.2017 21:56
Schritt 1
Lade dir folgendes Programm herunter und installiere es: http://filepony.de/icon/tiny/malware...ti_malware.png Malwarebytes Anti-Malware Hier findest du dazu eine bebilderte Anleitung
  • Klicke auf die Einstellungen / Erkennung und Schutz und setze dabei den Haken bei "Nach Rootkits suchen"
  • Klicke im Anschluss auf Durchsuchen, wähle den Bedrohungssuchlauf aus und klicke auf Suchlauf starten.
  • Lass am Ende des Suchlaufs alle Funde (falls vorhanden) in die Quarantäne verschieben. Klicke dazu auf Auswahl entfernen.
  • Lass deinen Rechner ggf. neu starten, um die Bereinigung abzuschließen.
  • Starte MBAM, klicke auf Verlauf und dann auf Anwendungsprotokolle.
  • Wähle das neueste Suchlaufprotokoll aus und klicke auf Export. Wähle Textdatei (.txt) aus und speichere die Datei als mbam.txt auf dem Desktop ab. Das Logfile von MBAM findest du hier.
  • Füge den Inhalt der mbam.txt mit deiner nächsten Antwort hinzu.

Schritt 2
Downloade Dir bitte AdwCleaner Logo Icon AdwCleaner auf deinen Desktop.
  • Schließe alle offenen Programme und Browser. Bebilderte Anleitung zu AdwCleaner.
  • Starte die AdwCleaner.exe mit einem Doppelklick.
  • Stimme den Nutzungsbedingungen zu.
  • Klicke auf Optionen und vergewissere dich, dass die folgenden Punkte ausgewählt sind:
    • "Tracing" Schlüssel löschen
    • Winsock Einstellungen zurücksetzen
    • Proxy Einstellungen zurücksetzen
    • Internet Explorer Richtlinien zurücksetzen
    • Chrome Richtlinien zurücksetzen
    • Stelle sicher, dass alle 5 Optionen wie hier dargestellt, ausgewählt sind
  • Klicke auf Suchlauf und warte bis dieser abgeschlossen ist.
  • Klicke nun auf Löschen und bestätige auftretende Hinweise mit Ok.
  • Dein Rechner wird automatisch neu gestartet. Nach dem Neustart öffnet sich eine Textdatei. Poste mir deren Inhalt mit deiner nächsten Antwort.
  • Die Logdatei findest du auch unter C:\AdwCleaner\AdwCleaner[Cx].txt. (x = fortlaufende Nummer).


Schritt 3
Bitte starte wieder FRST, setze den Haken bei Addition und drücke auf Untersuchen. Poste bitte wieder die beiden Textdateien, die so entstehen.

Bitte poste in deiner nächsten Antwort also:
  • Logfile von AdwCleaner
  • Logfile von Malwarebytes
  • Frst.txt
  • Addition.txt

Xnatur 17.01.2017 12:09
Hallo,

Anbei die Logfiles

Code:
Malwarebytes Anti-Malware
www.malwarebytes.org


Protection, 17.01.2017 11:05, SYSTEM, MILOS-PC, Protection, Malware Protection, Starting,
Protection, 17.01.2017 11:05, SYSTEM, MILOS-PC, Protection, Malware Protection, Started,
Protection, 17.01.2017 11:05, SYSTEM, MILOS-PC, Protection, Malicious Website Protection, Starting,
Protection, 17.01.2017 11:05, SYSTEM, MILOS-PC, Protection, Malicious Website Protection, Started,
Update, 17.01.2017 11:05, SYSTEM, MILOS-PC, Manual, Rootkit Database, 2016.2.8.1, 2016.11.20.1,
Update, 17.01.2017 11:05, SYSTEM, MILOS-PC, Manual, Remediation Database, 2016.2.12.1, 2016.12.16.1,
Update, 17.01.2017 11:05, SYSTEM, MILOS-PC, Manual, Domain Database, 2016.2.16.8, 2017.1.17.2,
Update, 17.01.2017 11:05, SYSTEM, MILOS-PC, Manual, IP Database, 2016.2.8.1, 2017.1.16.4,
Update, 17.01.2017 11:05, SYSTEM, MILOS-PC, Manual, Malware Database, 2016.2.16.6, 2017.1.17.4,
Protection, 17.01.2017 11:05, SYSTEM, MILOS-PC, Protection, Refresh, Starting,
Protection, 17.01.2017 11:05, SYSTEM, MILOS-PC, Protection, Malicious Website Protection, Stopping,
Protection, 17.01.2017 11:05, SYSTEM, MILOS-PC, Protection, Malicious Website Protection, Stopped,
Protection, 17.01.2017 11:05, SYSTEM, MILOS-PC, Protection, Refresh, Success,
Protection, 17.01.2017 11:05, SYSTEM, MILOS-PC, Protection, Malicious Website Protection, Starting,
Protection, 17.01.2017 11:05, SYSTEM, MILOS-PC, Protection, Malicious Website Protection, Started,
Detection, 17.01.2017 11:13, SYSTEM, MILOS-PC, Protection, Malware-Schutz, Datei, PUP.Optional.DownloadSponsor, C:\Users\Milos\Downloads\Smart Data Recovery - CHIP-Installer.exe, Quarantäne, [c7315b2143650c2a1204acff718f8a76]
Detection, 17.01.2017 11:26, SYSTEM, MILOS-PC, Protection, Malware-Schutz, Datei, PUP.Optional.DownloadSponsor, c:\users\milos\downloads\smart data recovery - chip-installer.exe, Quarantine Failed, 6, Das Handle ist ungültig.  , [c7315b2143650c2a1204acff718f8a76]
Detection, 17.01.2017 11:31, SYSTEM, MILOS-PC, Protection, Malware-Schutz, Datei, PUP.Optional.DownloadSponsor, c:\users\milos\downloads\smart data recovery - chip-installer.exe, Quarantine Failed, 6, Das Handle ist ungültig.  , [c7315b2143650c2a1204acff718f8a76]
Update, 17.01.2017 11:54, SYSTEM, MILOS-PC, Scheduler, Failed, No Internet connection detected,
Scan, 17.01.2017 11:55, SYSTEM, MILOS-PC, Manual, Start: 17.01.2017 11:06, Dauer: 20 Min. 25 Sek., Bedrohungssuchlauf, Abgeschlossen, 1 Malware-Erkennung, 1 Nicht-Malware-Erkennung,
Protection, 17.01.2017 11:57, SYSTEM, MILOS-PC, Protection, Malware Protection, Starting,
Protection, 17.01.2017 11:57, SYSTEM, MILOS-PC, Protection, Malware Protection, Started,
Protection, 17.01.2017 11:57, SYSTEM, MILOS-PC, Protection, Malicious Website Protection, Starting,
Protection, 17.01.2017 11:57, SYSTEM, MILOS-PC, Protection, Malicious Website Protection, Started,
Detection, 17.01.2017 11:58, SYSTEM, MILOS-PC, Protection, Malicious Website Protection, IP, 38.134.106.126, ffh.secretingswordsmen.com, 49273, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 17.01.2017 11:58, SYSTEM, MILOS-PC, Protection, Malicious Website Protection, IP, 38.134.106.126, ffh.secretingswordsmen.com, 49273, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 17.01.2017 11:58, SYSTEM, MILOS-PC, Protection, Malicious Website Protection, IP, 38.134.106.126, ffh.secretingswordsmen.com, 49274, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 17.01.2017 11:58, SYSTEM, MILOS-PC, Protection, Malicious Website Protection, IP, 38.134.106.126, ffh.secretingswordsmen.com, 49275, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 17.01.2017 11:58, SYSTEM, MILOS-PC, Protection, Malicious Website Protection, IP, 38.134.106.126, ffh.secretingswordsmen.com, 49279, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 17.01.2017 11:58, SYSTEM, MILOS-PC, Protection, Malicious Website Protection, IP, 38.134.106.117, yzy.admanaerofoil.com, 49298, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 17.01.2017 11:58, SYSTEM, MILOS-PC, Protection, Malicious Website Protection, IP, 38.134.106.117, yzy.admanaerofoil.com, 49298, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 17.01.2017 11:58, SYSTEM, MILOS-PC, Protection, Malicious Website Protection, IP, 38.134.106.117, yzy.admanaerofoil.com, 49299, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 17.01.2017 11:58, SYSTEM, MILOS-PC, Protection, Malicious Website Protection, IP, 38.134.106.117, xco.versussulphide.com, 49300, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 17.01.2017 11:58, SYSTEM, MILOS-PC, Protection, Malicious Website Protection, IP, 38.134.106.117, xco.versussulphide.com, 49300, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 17.01.2017 11:58, SYSTEM, MILOS-PC, Protection, Malicious Website Protection, IP, 38.134.106.117, xco.versussulphide.com, 49301, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 17.01.2017 11:58, SYSTEM, MILOS-PC, Protection, Malicious Website Protection, IP, 38.134.106.117, yzy.admanaerofoil.com, 49312, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 17.01.2017 11:58, SYSTEM, MILOS-PC, Protection, Malicious Website Protection, IP, 38.134.106.117, xco.versussulphide.com, 49314, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 17.01.2017 11:58, SYSTEM, MILOS-PC, Protection, Malicious Website Protection, IP, 38.134.106.117, yzy.admanaerofoil.com, 49388, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 17.01.2017 11:58, SYSTEM, MILOS-PC, Protection, Malicious Website Protection, IP, 38.134.106.117, xco.versussulphide.com, 49389, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 17.01.2017 11:58, SYSTEM, MILOS-PC, Protection, Malicious Website Protection, IP, 38.134.106.117, yzy.admanaerofoil.com, 49409, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 17.01.2017 11:58, SYSTEM, MILOS-PC, Protection, Malicious Website Protection, IP, 38.134.106.117, xco.versussulphide.com, 49410, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 17.01.2017 11:58, SYSTEM, MILOS-PC, Protection, Malicious Website Protection, IP, 38.134.106.117, yzy.admanaerofoil.com, 49427, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 17.01.2017 11:58, SYSTEM, MILOS-PC, Protection, Malicious Website Protection, IP, 38.134.106.117, xco.versussulphide.com, 49428, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 17.01.2017 11:58, SYSTEM, MILOS-PC, Protection, Malicious Website Protection, IP, 38.134.106.117, xco.versussulphide.com, 49449, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 17.01.2017 11:58, SYSTEM, MILOS-PC, Protection, Malicious Website Protection, IP, 38.134.106.117, yzy.admanaerofoil.com, 49450, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 17.01.2017 11:58, SYSTEM, MILOS-PC, Protection, Malicious Website Protection, IP, 38.134.106.117, yzy.admanaerofoil.com, 49475, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 17.01.2017 11:58, SYSTEM, MILOS-PC, Protection, Malicious Website Protection, IP, 38.134.106.117, xco.versussulphide.com, 49476, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,

(end)
Code:
# AdwCleaner v6.042 - Bericht erstellt am 17/01/2017 um 12:02:43
# Aktualisiert am 06/01/2017 von Malwarebytes
# Datenbank : 2017-01-17.1 [Server]
# Betriebssystem : Windows 7 Ultimate Service Pack 1 (X64)
# Benutzername : Milos - MILOS-PC
# Gestartet von : C:\Users\Milos\Downloads\AdwCleaner_6.042.exe
# Modus: Löschen
# Unterstützung : https://www.malwarebytes.com/support



***** [ Dienste ] *****



***** [ Ordner ] *****



***** [ Dateien ] *****



***** [ DLL ] *****



***** [ WMI ] *****



***** [ Verknüpfungen ] *****



***** [ Aufgabenplanung ] *****



***** [ Registrierungsdatenbank ] *****

[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\speedupmypc
[#] Schlüssel mit Neustart gelöscht: [x64] HKLM\SOFTWARE\Classes\speedupmypc
[-] Schlüssel gelöscht: HKU\S-1-5-21-210783167-1482073297-2139249726-1000\Software\Smart PC Solutions
[#] Schlüssel mit Neustart gelöscht: HKCU\Software\Smart PC Solutions
[#] Schlüssel mit Neustart gelöscht: [x64] HKCU\Software\Smart PC Solutions


***** [ Browser ] *****



*************************

:: "Tracing" Schlüssel gelöscht
:: Winsock Einstellungen zurückgesetzt
:: Proxy Einstellungen zurückgesetzt
:: Internet Explorer Richtlinien gelöscht
:: Chrome Richtlinien gelöscht

*************************

C:\AdwCleaner\AdwCleaner[C0].txt - [1335 Bytes] - [17/01/2017 12:02:43]
C:\AdwCleaner\AdwCleaner[S0].txt - [1622 Bytes] - [17/01/2017 12:02:14]

########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt - [1481 Bytes] ##########
Code:
Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 15-01-2017
durchgeführt von Milos (Administrator) auf MILOS-PC (17-01-2017 12:05:20)
Gestartet von C:\Users\Milos\Downloads
Geladene Profile: Milos (Verfügbare Profile: Milos)
Platform: Windows 7 Ultimate Service Pack 1 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: Chrome)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AAHM\1.00.20\aaHMSvc.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\AsRoutineController.exe
() C:\Program Files (x86)\ASUS\AI Suite II\EasyUpdate\EzUpdt.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\Remote GO!\AssistTools\WiFi GO! Server.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.13\AsSysCtrlService.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AsusFanControlService\1.02.00\AsusFanControlService.exe
(AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\avp.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.32.7\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.32.7\GoogleCrashHandler64.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\USB 3.0 Boost\U3BoostSvr64.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\TurboV EVO\TurboVHelp.exe
(AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\avpui.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\EPU\EPUHelp.exe
() C:\Windows\KMS-R@1n.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\AI Suite II.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\Sensor\AlertHelper\AlertHelper.exe
(Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
(Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(Skype Technologies) C:\Program Files (x86)\Skype\Updater\Updater.exe
(Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
() C:\Windows\KMS-R@1nHook.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
() C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Hewlett-Packard Development Company, LP) C:\Program Files\HP\HP ENVY 5530 series\Bin\ScanToPCActivationApp.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudPhotos.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Hewlett-Packard Development Company, LP) C:\Program Files\HP\HP ENVY 5530 series\Bin\HPNetworkCommunicatorCom.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\InstallShield Installation Information\{E6931688-DA2B-4E16-8539-3D323D69C677}\AiChargerPlus.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\Remote GO!\AssistTools\WiFile\WiFileTransfer.exe
(Elaborate Bytes AG) C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
(Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AdobeGCClient.exe
(Adobe Systems Inc.) C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\acrotray.exe
(Creative Technology Ltd) C:\Program Files (x86)\Creative\Sound Blaster JAM\Sound Blaster JAM Control Panel\SBJAM.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvspcaps64.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(Apple, Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\secd.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\Remote GO!\AsDLNAServerReal.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\x64\wmi64.exe

==================== Registry (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8483032 2015-05-28] (Realtek Semiconductor)
HKLM\...\Run: [ShadowPlay] => "C:\Windows\system32\rundll32.exe" C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508128 2016-07-01] (Adobe Systems Incorporated)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [176440 2016-12-06] (Apple Inc.)
HKLM-x32\...\Run: [ASUS AiChargerPlus Execute] => C:\Program Files (x86)\InstallShield Installation Information\{E6931688-DA2B-4E16-8539-3D323D69C677}\AiChargerPlus.exe [550272 2013-01-28] (ASUSTek Computer Inc.)
HKLM-x32\...\Run: [ASUS WiFi GO! FileTransfer Execute] => C:\Program Files (x86)\ASUS\AI Suite II\Remote GO!\AssistTools\WiFile\WiFileTransfer.exe [1391416 2013-06-21] (ASUSTeK Computer Inc.)
HKLM-x32\...\Run: [VirtualCloneDrive] => C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe [88984 2013-03-10] (Elaborate Bytes AG)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Acrotray.exe [1870928 2016-12-23] (Adobe Systems Inc.)
HKLM-x32\...\Run: [Sound Blaster JAM Control Panel] => C:\Program Files (x86)\Creative\Sound Blaster JAM\Sound Blaster JAM Control Panel\SBJAM.exe [902144 2014-11-27] (Creative Technology Ltd)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2016-09-22] (Oracle Corporation)
HKU\S-1-5-21-210783167-1482073297-2139249726-1000\...\Run: [HP ENVY 5530 series (NET)] => C:\Program Files\HP\HP ENVY 5530 series\Bin\ScanToPCActivationApp.exe [3487240 2014-07-21] (Hewlett-Packard Development Company, LP)
HKU\S-1-5-21-210783167-1482073297-2139249726-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8944344 2016-09-28] (Piriform Ltd)
HKU\S-1-5-21-210783167-1482073297-2139249726-1000\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [67384 2016-11-17] (Apple Inc.)
HKU\S-1-5-21-210783167-1482073297-2139249726-1000\...\Run: [iCloudDrive] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe [110392 2016-11-17] (Apple Inc.)
HKU\S-1-5-21-210783167-1482073297-2139249726-1000\...\Run: [iCloudPhotos] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudPhotos.exe [356664 2016-11-17] (Apple Inc.)
HKU\S-1-5-21-210783167-1482073297-2139249726-1000\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [27230168 2016-11-15] (Skype Technologies S.A.)
HKU\S-1-5-21-210783167-1482073297-2139249726-1000\...\Run: [MK LOL] => C:\Program Files (x86)\MKJogo\MK IM\Bin\MKIM.exe [1092296 2017-01-04] ()
IFEO\OSPPSVC.EXE: [Debugger] KMS-R@1nHook.exe
IFEO\SppSvc.exe: [Debugger] KMS-R@1nHook.exe

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)

Tcpip\Parameters: [DhcpNameServer] 195.34.133.21 212.186.211.21
Tcpip\..\Interfaces\{3D07BB94-4660-4584-BE89-1628A21A1D8F}: [DhcpNameServer] 172.20.10.1
Tcpip\..\Interfaces\{A3BEE911-2B00-4748-9C4F-C47E99763EA2}: [DhcpNameServer] 195.34.133.21 212.186.211.21

Internet Explorer:
==================
BHO: Kaspersky Protection -> {2E38825B-8815-42CF-9126-C58BC28D4591} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\x64\IEExt\ie_plugin.dll [2016-12-06] (AO Kaspersky Lab)
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2016-12-28] (Microsoft Corporation)
BHO: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2016-10-27] (Adobe Systems Incorporated)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\URLREDIR.DLL [2016-12-28] (Microsoft Corporation)
BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\GROOVEEX.DLL [2016-12-28] (Microsoft Corporation)
BHO: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2016-10-27] (Adobe Systems Incorporated)
BHO-x32: Kaspersky Protection -> {2E38825B-8815-42CF-9126-C58BC28D4591} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\IEExt\ie_plugin.dll [2016-12-06] (AO Kaspersky Lab)
BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2016-12-28] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_112\bin\ssv.dll [2016-12-10] (Oracle Corporation)
BHO-x32: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2016-10-27] (Adobe Systems Incorporated)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\root\Office16\URLREDIR.DLL [2016-12-28] (Microsoft Corporation)
BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\root\Office16\GROOVEEX.DLL [2016-12-28] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_112\bin\jp2ssv.dll [2016-12-10] (Oracle Corporation)
BHO-x32: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2016-10-27] (Adobe Systems Incorporated)
Toolbar: HKLM - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2016-10-27] (Adobe Systems Incorporated)
Toolbar: HKLM - Kaspersky Protection Toolbar - {093F479D-712E-46CD-9E06-62E734A05F68} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\x64\IEExt\ie_plugin.dll [2016-12-06] (AO Kaspersky Lab)
Toolbar: HKLM-x32 - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2016-10-27] (Adobe Systems Incorporated)
Toolbar: HKLM-x32 - Kaspersky Protection Toolbar - {093F479D-712E-46CD-9E06-62E734A05F68} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\IEExt\ie_plugin.dll [2016-12-06] (AO Kaspersky Lab)
DPF: HKLM-x32 {D4B68B83-8710-488B-A692-D74B50BA558E} hxxp://files.creative.com/Web/softwareupdate/ocx/15113/CTPIDPDE.cab
DPF: HKLM-x32 {F6ACF75C-C32C-447B-9BEF-46B766368D29} hxxp://files.creative.com/Web/softwareupdate/ocx/150323/CTPID.cab
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-12-28] (Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-12-28] (Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-12-28] (Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-12-28] (Microsoft Corporation)

FireFox:
========
FF DefaultProfile: xkt30pix.default
FF ProfilePath: C:\Users\Milos\AppData\Roaming\Mozilla\Firefox\Profiles\xkt30pix.default [2017-01-17]
FF Homepage: Mozilla\Firefox\Profiles\xkt30pix.default -> about:home
FF Extension: (Gmail™ Notifier +) - C:\Users\Milos\AppData\Roaming\Mozilla\Firefox\Profiles\xkt30pix.default\Extensions\jid1-sqmEAwSoa3FZPc@jetpack.xpi [2016-11-10]
FF Extension: (Video DownloadHelper) - C:\Users\Milos\AppData\Roaming\Mozilla\Firefox\Profiles\xkt30pix.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2017-01-10]
FF Extension: (Adblock Plus) - C:\Users\Milos\AppData\Roaming\Mozilla\Firefox\Profiles\xkt30pix.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-11-28]
FF Extension: (DownThemAll!) - C:\Users\Milos\AppData\Roaming\Mozilla\Firefox\Profiles\xkt30pix.default\Extensions\{DDC359D1-844A-42a7-9AA1-88A850A938A8}.xpi [2016-11-10]
FF Extension: (Adobe Acrobat DC - Create PDF) - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn [2017-01-11]
FF HKLM\...\Firefox\Extensions: [light_plugin_F6F079488B53499DB99380A7E11A93F6@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\FFExt\light_plugin_firefox\addon.xpi
FF Extension: (Kaspersky Protection) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\FFExt\light_plugin_firefox\addon.xpi [2016-12-06]
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension.15@web2pdf.adobedotcom] - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn
FF HKLM-x32\...\Firefox\Extensions: [light_plugin_F6F079488B53499DB99380A7E11A93F6@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\FFExt\light_plugin_firefox\addon.xpi
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_24_0_0_194.dll [2017-01-10] ()
FF Plugin: @microsoft.com/GENUINE -> disabled [Keine Datei]
FF Plugin: @videolan.org/vlc,version=2.2.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2015-07-29] (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_24_0_0_194.dll [2017-01-10] ()
FF Plugin-x32: @java.com/DTPlugin,version=11.112.2 -> C:\Program Files (x86)\Java\jre1.8.0_112\bin\dtplugin\npDeployJava1.dll [2016-12-10] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.112.2 -> C:\Program Files (x86)\Java\jre1.8.0_112\bin\plugin2\npjp2.dll [2016-12-10] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Keine Datei]
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2016-12-28] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2016-12-28] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2016-12-11] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2016-12-11] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-17] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-17] (Google Inc.)
FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2016-12-23] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2015-07-29] (Adobe Systems)

Chrome:
=======
CHR HomePage: Default -> hxxps://www.google.at/
CHR StartupUrls: Default -> "hxxp://google.de/","hxxp://www.google.com"
CHR Profile: C:\Users\Milos\AppData\Local\Google\Chrome\User Data\Default [2017-01-17]
CHR Extension: (Google Präsentationen) - C:\Users\Milos\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-11-22]
CHR Extension: (Google Docs) - C:\Users\Milos\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-11-22]
CHR Extension: (Google Drive) - C:\Users\Milos\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-11-22]
CHR Extension: (YouTube) - C:\Users\Milos\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-11-22]
CHR Extension: (GMX MailCheck) - C:\Users\Milos\AppData\Local\Google\Chrome\User Data\Default\Extensions\camnampocfohlcgbajligmemmabnljcm [2017-01-13]
CHR Extension: (Adblock Plus) - C:\Users\Milos\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2016-11-23]
CHR Extension: (Adobe Acrobat) - C:\Users\Milos\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2017-01-16]
CHR Extension: (Google Play Musik) - C:\Users\Milos\AppData\Local\Google\Chrome\User Data\Default\Extensions\fahmaaghhglfmonjliepjlchgpgfmobi [2017-01-14]
CHR Extension: (Google Tabellen) - C:\Users\Milos\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-11-22]
CHR Extension: (Kaspersky Protection) - C:\Users\Milos\AppData\Local\Google\Chrome\User Data\Default\Extensions\fhoibnponjcgjgcnfacekaijdbbplhib [2016-11-22]
CHR Extension: (Google Docs Offline) - C:\Users\Milos\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-11-23]
CHR Extension: (Copy clean Links) - C:\Users\Milos\AppData\Local\Google\Chrome\User Data\Default\Extensions\mccgphdljaoibmimmngmeehgdocpcajn [2017-01-08]
CHR Extension: (Google Mail-Checker) - C:\Users\Milos\AppData\Local\Google\Chrome\User Data\Default\Extensions\mihcahmgecmbnbcchbopgniflfhgnkff [2016-11-23]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Milos\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-11-22]
CHR Extension: (Google Mail) - C:\Users\Milos\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-11-22]
CHR Extension: (Chrome Media Router) - C:\Users\Milos\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-12-15]
CHR HKLM\...\Chrome\Extension: [fhoibnponjcgjgcnfacekaijdbbplhib] - hxxps://chrome.google.com/webstore/detail/fhoibnponjcgjgcnfacekaijdbbplhib
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [fhoibnponjcgjgcnfacekaijdbbplhib] - hxxps://chrome.google.com/webstore/detail/fhoibnponjcgjgcnfacekaijdbbplhib

==================== Dienste (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2207960 2016-09-26] (Adobe Systems, Incorporated)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2016-09-22] (Apple Inc.)
R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe [920736 2016-11-10] ()
R2 asHmComSvc; C:\Program Files (x86)\ASUS\AAHM\1.00.20\aaHMSvc.exe [951936 2016-11-10] (ASUSTeK Computer Inc.)
R2 AsSysCtrlService; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.13\AsSysCtrlService.exe [149120 2016-11-10] (ASUSTeK Computer Inc.)
R2 AsusFanControlService; C:\Program Files (x86)\ASUS\AsusFanControlService\1.02.00\AsusFanControlService.exe [1632256 2016-11-10] (ASUSTeK Computer Inc.) [Datei ist nicht signiert]
R2 AVP17.0.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\avp.exe [241544 2016-06-28] (AO Kaspersky Lab)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [3699904 2016-12-28] (Microsoft Corporation)
S2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [31776 2016-12-07] (HP Inc.)
S3 klvssbrigde64; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\x64\vssbridge64.exe [77328 2016-06-28] (AO Kaspersky Lab)
R2 KMS-R@1n; C:\Windows\KMS-R@1n.exe [26112 2016-11-12] () [Datei ist nicht signiert]
S2 KSDE1.0.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 1.0\ksde.exe [241544 2016-06-28] (AO Kaspersky Lab)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1514464 2016-03-10] (Malwarebytes)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1136608 2016-03-10] (Malwarebytes)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [462784 2016-12-13] (NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [462784 2016-12-13] (NVIDIA Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [459832 2016-12-11] (NVIDIA Corporation)
R2 NVIDIA Wireless Controller Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe [1163712 2016-12-13] (NVIDIA Corporation)
R2 NvTelemetryContainer; C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [425408 2016-12-13] (NVIDIA Corporation)
S2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2016-02-18] (Microsoft Corporation)

===================== Treiber (Nicht auf der Ausnahmeliste) ======================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R3 AiChargerPlus; C:\Windows\SysWow64\drivers\AiChargerPlus.sys [14848 2013-01-28] (ASUSTek Computer Inc.)
R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2014-01-28] ()
R1 AsUpIO; C:\Windows\SysWow64\drivers\AsUpIO.sys [14464 2013-01-15] ()
R3 ASUSFILTER; C:\Windows\SysWow64\drivers\ASUSFILTER.sys [46152 2011-09-20] (MCCI Corporation)
S3 ASUSstpt; C:\Windows\System32\DRIVERS\ASUSstpt.sys [27392 2013-03-28] (MCCI Corporation)
S3 ASUSumsc; C:\Windows\System32\DRIVERS\ASUSumsc.sys [151808 2013-03-28] (MCCI Corporation)
R0 cm_km; C:\Windows\System32\DRIVERS\cm_km.sys [238936 2016-06-10] (AO Kaspersky Lab)
R0 kl1; C:\Windows\System32\DRIVERS\kl1.sys [554416 2016-06-02] (AO Kaspersky Lab)
R0 klbackupdisk; C:\Windows\System32\DRIVERS\klbackupdisk.sys [63920 2016-06-07] (AO Kaspersky Lab)
R1 klbackupflt; C:\Windows\System32\DRIVERS\klbackupflt.sys [86352 2016-06-15] (AO Kaspersky Lab)
R2 kldisk; C:\Windows\System32\DRIVERS\kldisk.sys [78216 2016-05-31] (AO Kaspersky Lab)
R3 klflt; C:\Windows\System32\DRIVERS\klflt.sys [189264 2016-06-26] (AO Kaspersky Lab)
R1 klhk; C:\Windows\System32\DRIVERS\klhk.sys [305496 2016-09-12] (AO Kaspersky Lab)
R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [1036512 2016-12-06] (AO Kaspersky Lab)
R1 KLIM6; C:\Windows\System32\DRIVERS\klim6.sys [57936 2016-12-06] (AO Kaspersky Lab)
R3 klkbdflt; C:\Windows\System32\DRIVERS\klkbdflt.sys [52144 2016-05-19] (AO Kaspersky Lab)
R3 klmouflt; C:\Windows\System32\DRIVERS\klmouflt.sys [41648 2015-06-07] (Kaspersky Lab ZAO)
R1 klpd; C:\Windows\System32\DRIVERS\klpd.sys [45488 2016-05-31] (AO Kaspersky Lab)
R3 kltap; C:\Windows\System32\DRIVERS\kltap.sys [52152 2016-06-07] (The OpenVPN Project)
R1 kltdi; C:\Windows\System32\DRIVERS\kltdi.sys [75696 2016-05-17] (AO Kaspersky Lab)
R1 Klwtp; C:\Windows\System32\DRIVERS\klwtp.sys [134880 2016-12-06] (AO Kaspersky Lab)
R1 kneps; C:\Windows\System32\DRIVERS\kneps.sys [194480 2016-06-14] (AO Kaspersky Lab)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [27008 2016-03-10] (Malwarebytes)
R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [192216 2017-01-17] (Malwarebytes)
R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [64896 2016-03-10] (Malwarebytes Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [27584 2016-12-13] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [46016 2016-12-13] (NVIDIA Corporation)
S3 ssdevfactory; C:\Windows\System32\DRIVERS\ssdevfactory.sys [41816 2016-11-03] (SteelSeries ApS)
S3 UHSfiltv; C:\Windows\System32\drivers\UHSfiltv.sys [23552 2013-05-31] (Creative Technology Ltd.)
S3 VGPU; System32\drivers\rdvgkmd.sys [X]

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2017-01-17 12:00 - 2017-01-17 12:02 - 00000000 ____D C:\AdwCleaner
2017-01-17 11:59 - 2017-01-17 11:59 - 03988944 _____ C:\Users\Milos\Downloads\AdwCleaner_6.042.exe
2017-01-17 11:59 - 2017-01-17 11:59 - 00007836 _____ C:\Users\Milos\Desktop\mbam.txt
2017-01-17 11:05 - 2017-01-17 12:04 - 00192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2017-01-17 11:05 - 2017-01-17 11:05 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2017-01-17 11:05 - 2017-01-17 11:05 - 00000000 ____D C:\ProgramData\Malwarebytes
2017-01-17 11:05 - 2017-01-17 11:05 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2017-01-17 11:05 - 2016-03-10 14:09 - 00064896 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2017-01-17 11:05 - 2016-03-10 14:08 - 00140672 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamchameleon.sys
2017-01-17 11:05 - 2016-03-10 14:08 - 00027008 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
2017-01-17 11:03 - 2017-01-17 11:04 - 22851472 _____ (Malwarebytes ) C:\Users\Milos\Downloads\mbam-setup-2.2.1.1043.exe
2017-01-16 21:25 - 2017-01-16 21:26 - 00037543 _____ C:\Users\Milos\Downloads\Addition.txt
2017-01-16 21:24 - 2017-01-17 12:05 - 00028933 _____ C:\Users\Milos\Downloads\FRST.txt
2017-01-16 21:24 - 2017-01-17 12:05 - 00000000 ____D C:\FRST
2017-01-16 21:23 - 2017-01-16 21:23 - 02419200 _____ (Farbar) C:\Users\Milos\Downloads\FRST64.exe
2017-01-16 20:52 - 2017-01-16 20:52 - 00503040 _____ C:\Users\Milos\Downloads\ExploitedCollegeGirls 17 01 12 Andria And Lilly.nzb
2017-01-16 20:06 - 2017-01-16 20:06 - 00229778 _____ C:\Users\Milos\Downloads\Entwicklung des Kindes- Kinder im Krankenhaus-Bindung .pdf
2017-01-16 20:05 - 2017-01-16 20:05 - 01622862 _____ C:\Users\Milos\Downloads\Bindung durch Berührung.pdf
2017-01-16 20:05 - 2017-01-16 20:05 - 00153072 _____ C:\Users\Milos\Downloads\Bindungsstörungen Kinder.pdf
2017-01-16 19:24 - 2017-01-16 19:24 - 00382038 _____ C:\Users\Milos\Downloads\out.pdf
2017-01-16 19:06 - 2017-01-16 19:06 - 48910262 _____ C:\Users\Milos\Downloads\[Thiem] Duale Reihe - Pädiatrie (4.Auflage, 2012).pdf
2017-01-15 20:29 - 2017-01-15 20:29 - 00115995 _____ C:\Users\Milos\Downloads\Motivationsschreiben-Tajinder-Ram.pdf
2017-01-15 19:10 - 2017-01-15 19:10 - 00009951 _____ C:\Users\Milos\Downloads\Gruppeneinteilung (1).xlsx
2017-01-14 18:41 - 2017-01-14 18:41 - 00187144 _____ C:\Users\Milos\Downloads\Prüfungsfragen (1) (1).pdf
2017-01-14 18:38 - 2017-01-14 18:38 - 00725394 _____ C:\Users\Milos\Downloads\Säuglingsernährung und Ernährung der Mutter.pdf
2017-01-14 18:38 - 2017-01-14 18:38 - 00455780 _____ C:\Users\Milos\Downloads\Säuglingsernähung.pdf
2017-01-14 18:38 - 2017-01-14 18:38 - 00455780 _____ C:\Users\Milos\Downloads\Säuglingsernähung (1).pdf
2017-01-14 18:38 - 2017-01-14 18:38 - 00187144 _____ C:\Users\Milos\Downloads\Prüfungsfragen (1).pdf
2017-01-14 11:49 - 2017-01-14 11:49 - 00187144 _____ C:\Users\Milos\Downloads\Prüfungsfragen.pdf
2017-01-12 21:28 - 2017-01-12 21:28 - 00000000 ____D C:\Users\Milos\Documents\OneNote-Notizbücher
2017-01-11 21:34 - 2017-01-11 21:34 - 00142181 _____ C:\Users\Milos\Downloads\Rechnung_917706740117.pdf
2017-01-11 15:28 - 2017-01-11 15:28 - 00309642 _____ C:\Users\Milos\Downloads\stundentafel_hak_2014_NEU.pdf
2017-01-11 15:27 - 2017-01-11 15:27 - 00292244 _____ C:\Users\Milos\Downloads\Schwerpunkte_HAK.pdf
2017-01-11 15:26 - 2017-01-11 15:26 - 00473584 _____ C:\Users\Milos\Downloads\cluster+modul.pdf
2017-01-11 15:24 - 2017-01-11 15:24 - 00189862 _____ C:\Users\Milos\Downloads\HAK_NEU.pdf
2017-01-11 14:43 - 2017-01-05 19:55 - 00154856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2017-01-11 14:43 - 2017-01-05 19:55 - 00095464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2017-01-11 14:43 - 2017-01-05 19:52 - 01460736 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2017-01-11 14:43 - 2017-01-05 19:52 - 01212928 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2017-01-11 14:43 - 2017-01-05 19:52 - 00730624 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2017-01-11 14:43 - 2017-01-05 19:52 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2017-01-11 14:43 - 2017-01-05 19:52 - 00463872 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2017-01-11 14:43 - 2017-01-05 19:52 - 00345600 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2017-01-11 14:43 - 2017-01-05 19:52 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2017-01-11 14:43 - 2017-01-05 19:52 - 00312320 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2017-01-11 14:43 - 2017-01-05 19:52 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2017-01-11 14:43 - 2017-01-05 19:52 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2017-01-11 14:43 - 2017-01-05 19:52 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2017-01-11 14:43 - 2017-01-05 19:52 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2017-01-11 14:43 - 2017-01-05 19:52 - 00123904 _____ (Microsoft Corporation) C:\Windows\system32\bcrypt.dll
2017-01-11 14:43 - 2017-01-05 19:52 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2017-01-11 14:43 - 2017-01-05 19:52 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2017-01-11 14:43 - 2017-01-05 19:52 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2017-01-11 14:43 - 2017-01-05 19:52 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2017-01-11 14:43 - 2017-01-05 19:52 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2017-01-11 14:43 - 2017-01-05 19:52 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2017-01-11 14:43 - 2017-01-05 18:43 - 00666112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2017-01-11 14:43 - 2017-01-05 18:43 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2017-01-11 14:43 - 2017-01-05 18:43 - 00342528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2017-01-11 14:43 - 2017-01-05 18:43 - 00261120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2017-01-11 14:43 - 2017-01-05 18:43 - 00254464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2017-01-11 14:43 - 2017-01-05 18:43 - 00223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2017-01-11 14:43 - 2017-01-05 18:43 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2017-01-11 14:43 - 2017-01-05 18:43 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2017-01-11 14:43 - 2017-01-05 18:43 - 00141312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpchttp.dll
2017-01-11 14:43 - 2017-01-05 18:43 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2017-01-11 14:43 - 2017-01-05 18:43 - 00082944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcrypt.dll
2017-01-11 14:43 - 2017-01-05 18:43 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2017-01-11 14:43 - 2017-01-05 18:43 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2017-01-11 14:43 - 2017-01-05 18:43 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2017-01-11 14:43 - 2017-01-05 18:43 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2017-01-11 14:43 - 2017-01-05 18:42 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2017-01-11 14:43 - 2017-01-05 18:32 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2017-01-11 14:43 - 2017-01-05 18:25 - 00159744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2017-01-11 14:43 - 2017-01-05 18:24 - 00291328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2017-01-11 14:43 - 2017-01-05 18:24 - 00129536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2017-01-11 14:43 - 2017-01-05 18:24 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2017-01-11 14:43 - 2017-01-05 18:23 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2017-01-11 14:43 - 2017-01-05 18:19 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll
2017-01-10 17:01 - 2017-01-10 17:01 - 03031269 _____ C:\Users\Milos\Downloads\GI-Leberzirrhose-Pankreatitis-Galle.pdf
2017-01-09 19:56 - 2017-01-09 19:56 - 11753573 _____ C:\Users\Milos\Downloads\Skript-Pflege in speziellen Situationen 1 (2).pdf
2017-01-09 17:40 - 2017-01-09 17:40 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_netaapl64_01009.Wdf
2017-01-09 17:33 - 2017-01-09 17:33 - 00185511 _____ C:\Users\Milos\Downloads\FuckingGlasses 16 10 28 Sophia Leone.nzb
2017-01-09 15:36 - 2017-01-09 15:48 - 00009888 _____ C:\Users\Milos\Downloads\Gruppeneinteilung.xlsx
2017-01-08 20:27 - 2017-01-08 20:27 - 11753573 _____ C:\Users\Milos\Downloads\Skript-Pflege in speziellen Situationen 1 (1).pdf
2017-01-08 17:28 - 2017-01-08 17:28 - 00029781 _____ C:\Users\Milos\Downloads\AA_PFISS_3 Sem_2016_Asthma_bronchiale.pdf
2017-01-08 17:25 - 2017-01-08 17:25 - 00029781 _____ C:\Users\Milos\Desktop\AA_PFISS_3 Sem_2016_Asthma_bronchiale.pdf
2017-01-08 17:19 - 2017-01-08 17:19 - 00015799 _____ C:\Users\Milos\Downloads\2013-Medikamentenplan.pdf
2017-01-08 00:03 - 2017-01-08 00:03 - 00391432 _____ C:\Users\Milos\Downloads\Sing.2016.TS.MD.GERMAN.XViD-SPECTRE{{UsenetRevolution}}.nzb
2017-01-06 19:53 - 2016-12-11 19:23 - 00134712 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2017-01-06 19:53 - 2016-09-09 19:25 - 00269600 _____ C:\Windows\SysWOW64\vulkan-1.dll
2017-01-06 19:53 - 2016-09-09 19:25 - 00261920 _____ C:\Windows\system32\vulkan-1.dll
2017-01-06 19:53 - 2016-09-09 19:25 - 00110880 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2017-01-06 19:53 - 2016-09-09 19:24 - 00125216 _____ C:\Windows\system32\vulkaninfo.exe
2017-01-06 19:51 - 2016-12-12 03:37 - 40125496 _____ C:\Windows\system32\nvcompiler.dll
2017-01-06 19:51 - 2016-12-12 03:37 - 35222976 _____ C:\Windows\SysWOW64\nvcompiler.dll
2017-01-06 19:51 - 2016-12-12 03:37 - 34703416 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2017-01-06 19:51 - 2016-12-12 03:37 - 28138432 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2017-01-06 19:51 - 2016-12-12 03:37 - 14073400 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2017-01-06 19:51 - 2016-12-12 03:37 - 10912744 _____ (NVIDIA Corporation) C:\Windows\system32\nvptxJitCompiler.dll
2017-01-06 19:51 - 2016-12-12 03:37 - 10795312 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2017-01-06 19:51 - 2016-12-12 03:37 - 10345696 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2017-01-06 19:51 - 2016-12-12 03:37 - 09151216 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2017-01-06 19:51 - 2016-12-12 03:37 - 08913328 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvptxJitCompiler.dll
2017-01-06 19:51 - 2016-12-12 03:37 - 08753832 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2017-01-06 19:51 - 2016-12-12 03:37 - 03640376 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2017-01-06 19:51 - 2016-12-12 03:37 - 03206080 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2017-01-06 19:51 - 2016-12-12 03:37 - 01953336 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6437633.dll
2017-01-06 19:51 - 2016-12-12 03:37 - 01586744 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6437633.dll
2017-01-06 19:51 - 2016-12-12 03:37 - 01036224 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2017-01-06 19:51 - 2016-12-12 03:37 - 00975416 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2017-01-06 19:51 - 2016-12-12 03:37 - 00944184 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2017-01-06 19:51 - 2016-12-12 03:37 - 00896056 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2017-01-06 19:51 - 2016-12-12 03:37 - 00683640 _____ (NVIDIA Corporation) C:\Windows\system32\nvfatbinaryLoader.dll
2017-01-06 19:51 - 2016-12-12 03:37 - 00572888 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvfatbinaryLoader.dll
2017-01-06 19:51 - 2016-12-12 03:37 - 00521096 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2017-01-06 19:51 - 2016-12-12 03:37 - 00438208 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2017-01-06 19:51 - 2016-12-12 03:37 - 00435904 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2017-01-06 19:51 - 2016-12-12 03:37 - 00407248 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2017-01-06 19:51 - 2016-12-12 03:37 - 00388544 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2017-01-06 19:51 - 2016-12-12 03:37 - 00170688 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2017-01-06 19:51 - 2016-12-12 03:37 - 00153184 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2017-01-06 19:51 - 2016-12-12 03:37 - 00148016 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2017-01-06 19:51 - 2016-12-12 03:37 - 00131536 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2017-01-05 14:10 - 2017-01-05 14:10 - 11753573 _____ C:\Users\Milos\Downloads\Skript-Pflege in speziellen Situationen 1.pdf
2017-01-05 13:48 - 2017-01-05 13:48 - 107773116 _____ C:\Users\Milos\Downloads\[Thiem] I care Pflege (2015).pdf
2017-01-04 22:10 - 2017-01-04 22:10 - 02071253 _____ C:\Users\Milos\Downloads\MODSKINPRO_6.24.3.rar
2017-01-04 22:10 - 2017-01-04 22:10 - 00000000 ____D C:\HoTroLoL
2017-01-04 21:58 - 2017-01-04 21:58 - 00000000 ____D C:\Users\Milos\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MKJogo
2017-01-04 21:58 - 2017-01-04 21:58 - 00000000 ____D C:\Program Files (x86)\MKJogo
2017-01-04 21:53 - 2017-01-04 21:53 - 00000623 _____ C:\Users\Milos\Downloads\Riot-Points-Adder-League-of-legends.rar.nzb
2017-01-04 21:52 - 2017-01-04 21:52 - 00011151 _____ C:\Users\Milos\Downloads\Free Riotpoints 100%.rar.nzb
2016-12-23 11:01 - 2016-12-23 11:07 - 00000000 ____D C:\Users\Milos\AppData\Roaming\ImgBurn
2016-12-23 10:57 - 2016-12-23 10:57 - 03101913 _____ (LIGHTNING UK!) C:\Users\Milos\Downloads\Setup_ImgBurn_2.5.8.0.exe
2016-12-23 10:57 - 2016-12-23 10:57 - 00001877 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ImgBurn.lnk
2016-12-23 10:57 - 2016-12-23 10:57 - 00001865 _____ C:\Users\Public\Desktop\ImgBurn.lnk
2016-12-23 10:57 - 2016-12-23 10:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ImgBurn
2016-12-23 10:57 - 2016-12-23 10:57 - 00000000 ____D C:\Program Files (x86)\ImgBurn
2016-12-22 16:20 - 2016-12-22 16:20 - 00297735 _____ C:\Users\Milos\Downloads\ExploitedCollegeGirls 16 11 23 Aubrey.nzb
2016-12-21 18:16 - 2016-12-21 18:16 - 00000000 ____D C:\Users\Milos\AppData\Local\Diagnostics
2016-12-20 19:04 - 2016-12-20 19:04 - 00131887 _____ C:\Users\Milos\Downloads\124357_F_FI_16-09-07_Cyclokapron.pdf
2016-12-20 18:29 - 2016-12-20 18:29 - 00046561 _____ C:\Users\Milos\Downloads\Vorbereitungsbrief_Frau Isakovic (2).docx
2016-12-20 17:52 - 2016-12-20 17:52 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\4K Download
2016-12-20 17:37 - 2017-01-17 12:04 - 00002938 _____ C:\ProgramData\NvTelemetryContainer.log
2016-12-20 17:37 - 2017-01-17 12:02 - 00005110 _____ C:\ProgramData\NvTelemetryContainer.log_backup1
2016-12-20 17:37 - 2016-12-20 17:37 - 00004240 _____ C:\Windows\System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-12-20 17:37 - 2016-12-20 17:37 - 00000000 ____D C:\Users\Milos\AppData\Local\Chromium
2016-12-20 17:37 - 2016-12-13 00:36 - 00156096 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap64v.dll
2016-12-20 17:37 - 2016-12-13 00:36 - 00123840 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll
2016-12-20 17:37 - 2016-12-13 00:36 - 00046016 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys
2016-12-20 17:37 - 2016-12-12 15:36 - 00001951 _____ C:\Windows\NvTelemetryContainerRecovery.bat
2016-12-20 14:03 - 2016-12-20 14:03 - 183108702 _____ C:\Users\Milos\Downloads\premiumleecher.com_KAV2017b.rar
2016-12-20 13:44 - 2016-12-20 13:44 - 00046561 _____ C:\Users\Milos\Downloads\Vorbereitungsbrief_Frau Isakovic (1).docx
2016-12-20 13:42 - 2016-12-20 13:42 - 00046561 _____ C:\Users\Milos\Downloads\Vorbereitungsbrief_Frau Isakovic.docx
2016-12-18 19:31 - 2016-12-18 19:31 - 00098746 _____ C:\Users\Milos\Downloads\Passierschein.pdf

==================== Ein Monat: Geänderte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2017-01-17 12:06 - 2016-11-18 16:59 - 00000000 ____D C:\ProgramData\Kaspersky Lab
2017-01-17 12:05 - 2016-11-12 18:41 - 00000000 ____D C:\Users\Milos\AppData\Roaming\Skype
2017-01-17 12:04 - 2016-12-09 17:54 - 00000000 ___RD C:\Users\Milos\iCloudDrive
2017-01-17 12:04 - 2016-11-17 13:02 - 00000000 ____D C:\Users\Public\Documents\AdobeGC
2017-01-17 12:04 - 2016-11-10 16:25 - 01048576 _____ C:\Windows\PE_Rom.dll
2017-01-17 12:04 - 2016-11-10 16:08 - 00000000 ____D C:\ProgramData\NVIDIA
2017-01-17 12:03 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2017-01-17 12:02 - 2009-07-14 05:45 - 00031808 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2017-01-17 12:02 - 2009-07-14 05:45 - 00031808 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2017-01-17 11:55 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\Globalization
2017-01-17 11:23 - 2016-11-12 18:19 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2017-01-17 11:06 - 2016-11-10 16:30 - 00000000 _____ C:\Windows\Path.idx
2017-01-17 08:39 - 2016-11-13 15:29 - 00000000 ____D C:\Users\Milos\AppData\Roaming\vlc
2017-01-16 19:49 - 2016-12-09 17:54 - 00000000 ____D C:\Users\Milos\AppData\Local\686FB969-E721-4E59-875C-E0E020D647EB.aplzod
2017-01-14 18:43 - 2016-11-12 18:19 - 00000000 ____D C:\Users\Milos\AppData\Local\Adobe
2017-01-14 18:43 - 2016-11-10 15:42 - 00000000 ____D C:\Users\Milos\AppData\Roaming\Adobe
2017-01-14 15:39 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\inf
2017-01-14 09:46 - 2016-11-12 14:20 - 00000000 ____D C:\Users\Milos\AppData\Local\CrashDumps
2017-01-13 20:41 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\rescache
2017-01-12 17:36 - 2016-11-19 16:01 - 00000000 ____D C:\Users\Milos\AppData\LocalLow\Mozilla
2017-01-12 15:06 - 2016-11-12 18:49 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2017-01-12 15:05 - 2016-11-12 18:47 - 00000000 ____D C:\Program Files (x86)\Microsoft Office
2017-01-11 21:58 - 2016-11-14 20:32 - 00000000 ____D C:\Windows\system32\MRT
2017-01-11 21:57 - 2016-11-10 15:34 - 135657872 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2017-01-11 21:45 - 2016-11-12 19:23 - 00002453 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat DC.lnk
2017-01-11 21:45 - 2016-11-12 19:23 - 00002037 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat Distiller DC.lnk
2017-01-11 21:43 - 2016-11-12 19:24 - 00004476 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task
2017-01-10 16:23 - 2016-11-12 18:19 - 00802904 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2017-01-10 16:23 - 2016-11-12 18:19 - 00144472 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2017-01-10 16:23 - 2016-11-12 18:19 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2017-01-10 16:23 - 2016-11-12 18:19 - 00000000 ____D C:\Windows\system32\Macromed
2017-01-10 16:23 - 2016-11-10 16:21 - 00000000 ____D C:\Windows\SysWOW64\Macromed
2017-01-06 19:53 - 2016-11-10 16:13 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2017-01-06 19:53 - 2016-11-10 16:12 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2017-01-05 12:13 - 2011-04-12 08:43 - 00698688 _____ C:\Windows\system32\perfh007.dat
2017-01-05 12:13 - 2011-04-12 08:43 - 00148828 _____ C:\Windows\system32\perfc007.dat
2017-01-05 12:13 - 2009-07-14 06:13 - 01618320 _____ C:\Windows\system32\PerfStringBackup.INI
2016-12-28 00:45 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\NDF
2016-12-20 19:48 - 2016-11-29 15:32 - 00017694 _____ C:\Users\Milos\Desktop\Microsoft Word-Dokument (neu).docx
2016-12-20 17:37 - 2016-11-10 16:15 - 00000000 ____D C:\Users\Milos\AppData\Local\NVIDIA Corporation
2016-12-20 17:37 - 2016-11-10 16:14 - 00001412 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2016-12-20 17:37 - 2016-11-10 16:13 - 00003836 _____ C:\Windows\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-12-20 17:37 - 2016-11-10 16:12 - 00003832 _____ C:\Windows\System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-12-20 17:37 - 2016-11-10 16:12 - 00003832 _____ C:\Windows\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-12-20 17:37 - 2016-11-10 16:12 - 00003824 _____ C:\Windows\System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-12-20 17:37 - 2016-11-10 16:12 - 00003648 _____ C:\Windows\System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-12-20 17:37 - 2016-11-10 16:12 - 00003588 _____ C:\Windows\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-12-20 17:37 - 2016-11-10 16:12 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2016-12-20 17:37 - 2016-11-10 16:10 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2016-12-18 19:14 - 2009-07-14 04:20 - 00000000 __RSD C:\Windows\assembly

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======

2016-11-12 19:05 - 2016-11-12 19:05 - 0000057 _____ () C:\ProgramData\Ament.ini
2016-11-10 15:59 - 2016-11-10 15:59 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
2016-12-20 17:37 - 2017-01-17 12:04 - 0002938 _____ () C:\ProgramData\NvTelemetryContainer.log
2016-12-20 17:37 - 2017-01-17 12:02 - 0005110 _____ () C:\ProgramData\NvTelemetryContainer.log_backup1

==================== Bamital & volsnap ======================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\Windows\system32\winlogon.exe => Datei ist digital signiert
C:\Windows\system32\wininit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\wininit.exe => Datei ist digital signiert
C:\Windows\explorer.exe => Datei ist digital signiert
C:\Windows\SysWOW64\explorer.exe => Datei ist digital signiert
C:\Windows\system32\svchost.exe => Datei ist digital signiert
C:\Windows\SysWOW64\svchost.exe => Datei ist digital signiert
C:\Windows\system32\services.exe => Datei ist digital signiert
C:\Windows\system32\User32.dll => Datei ist digital signiert
C:\Windows\SysWOW64\User32.dll => Datei ist digital signiert
C:\Windows\system32\userinit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\userinit.exe => Datei ist digital signiert
C:\Windows\system32\rpcss.dll => Datei ist digital signiert
C:\Windows\system32\dnsapi.dll => Datei ist digital signiert
C:\Windows\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert

LastRegBack: 2017-01-13 20:33

==================== Ende von FRST.txt ============================
Code:
Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 15-01-2017
durchgeführt von Milos (17-01-2017 12:06:28)
Gestartet von C:\Users\Milos\Downloads
Windows 7 Ultimate Service Pack 1 (X64) (2016-11-10 14:42:25)
Start-Modus: Normal
==========================================================


==================== Konten: =============================

Administrator (S-1-5-21-210783167-1482073297-2139249726-500 - Administrator - Disabled)
Gast (S-1-5-21-210783167-1482073297-2139249726-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-210783167-1482073297-2139249726-1002 - Limited - Enabled)
Milos (S-1-5-21-210783167-1482073297-2139249726-1000 - Administrator - Enabled) => C:\Users\Milos

==================== Sicherheits-Center ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

AV: Kaspersky Internet Security (Enabled - Up to date) {86367591-4BE4-AE08-2FD9-7FCB8259CD98}
AS: Kaspersky Internet Security (Enabled - Up to date) {3D579475-6DDE-A186-1569-44B9F9DE8725}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Kaspersky Internet Security (Enabled) {BE0DF4B4-018B-AF50-0486-D6FE7C8A8AE3}

==================== Installierte Programme ======================

(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)

4K Video Downloader 4.1 (HKLM-x32\...\4K Video Downloader_is1) (Version: 4.1.2.2075 - Open Media LLC)
Adobe Acrobat DC (HKLM-x32\...\{AC76BA86-1033-FFFF-7760-0C0F074E4100}) (Version: 15.023.20053 - Adobe Systems Incorporated)
Adobe Acrobat Pro Installer 2015.020.20042 (HKLM-x32\...\Adobe Acrobat Pro Installer 2015.020.20042) (Version: 2015.020.20042 - Adobe Inc)
Adobe Flash Player 10 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 10.0.42.34 - Adobe Systems Incorporated)
Adobe Flash Player 24 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 24.0.0.194 - Adobe Systems Incorporated)
AI Suite II (HKLM-x32\...\{34D3688E-A737-44C5-9E2A-FF73618728E1}) (Version: 2.04.01 - ASUSTeK Computer Inc.)
Alt.Binz 0.39.4 (HKLM-x32\...\Alt.Binz) (Version: 0.39.4 - Rdl)
AMD Catalyst Install Manager (HKLM\...\{5DDB9EF7-1BC0-C9C1-9829-6B9CF68AC357}) (Version: 8.0.903.0 - Advanced Micro Devices, Inc.)
Ansel (Version: 376.33 - NVIDIA Corporation) Hidden
Apple Application Support (32-Bit) (HKLM-x32\...\{D079CAAD-0C31-47A2-9AF5-A82F9CD9B221}) (Version: 5.2 - Apple Inc.)
Apple Application Support (64-Bit) (HKLM\...\{64E6007B-1DA9-42CD-BBE4-D5FA67A7C71D}) (Version: 5.2 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{55BB2110-FB43-49B3-93F4-945A0CFB0A6C}) (Version: 10.0.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Version: 2.2.0.150 - Apple Inc.)
Asmedia ASM104x USB 3.0 Host Controller Driver (HKLM-x32\...\{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}) (Version: 1.16.12.0 - Asmedia Technology)
aTube Catcher Version 3.8 (HKLM-x32\...\{D43B360E-722D-421B-BC77-20B9E0F8B6CD}_is1) (Version: 3.8 - DsNET Corp)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.23 - Piriform)
Creative Systeminformationen (HKLM-x32\...\SysInfo) (Version: 1.10 - Creative Technology Limited)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 55.0.2883.87 - Google Inc.)
Google Update Helper (x32 Version: 1.3.32.7 - Google Inc.) Hidden
HP ENVY 5530 series - Grundlegende Software für das Gerät (HKLM\...\{08CB8BF7-0CCE-4FC2-A475-A985EB11B159}) (Version: 32.3.198.49673 - Hewlett-Packard Co.)
HP ENVY 5530 series Hilfe (HKLM-x32\...\{272E06A0-7B74-481F-BD50-C632D9CA81A3}) (Version: 30.0.0 - Hewlett Packard)
HP Support Solutions Framework (HKLM-x32\...\{D549B5E2-DBE8-4190-ABA5-71106264398C}) (Version: 12.5.32.203 - HP Inc.)
HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
iCloud (HKLM\...\{4BB313CE-D3D1-424C-8823-15CF85B00B05}) (Version: 6.1.0.30 - Apple Inc.)
ImgBurn (HKLM-x32\...\ImgBurn) (Version: 2.5.8.0 - LIGHTNING UK!)
iTunes (HKLM\...\{81C96689-EA5B-4B7D-A04F-16326EC51BC2}) (Version: 12.5.4.42 - Apple Inc.)
Java 8 Update 111 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180111F0}) (Version: 8.0.1110.14 - Oracle Corporation)
Java 8 Update 112 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180112F0}) (Version: 8.0.1120.15 - Oracle Corporation)
Kaspersky Internet Security (HKLM-x32\...\InstallWIX_{E27B1D7B-3B34-43A2-9FC0-9828D5DF46E2}) (Version: 17.0.0.611 - Kaspersky Lab)
Kaspersky Internet Security (x32 Version: 17.0.0.611 - Kaspersky Lab) Hidden
Kaspersky Secure Connection (HKLM-x32\...\InstallWIX_{1CF84962-50F8-48CA-9082-B70F3A02C686}) (Version: 17.0.0.611 - Kaspersky Lab)
Kaspersky Secure Connection (x32 Version: 17.0.0.611 - Kaspersky Lab) Hidden
League of Legends (HKLM-x32\...\League of Legends 4.1.2) (Version: 4.1.2 - Riot Games)
League of Legends (x32 Version: 4.1.2 - Riot Games) Hidden
Malwarebytes Anti-Malware Version 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
Microsoft .NET Framework 4.6.1 (DEU) (HKLM\...\{AAC5C889-B75D-3368-BC63-CB660DE44C66}) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft .NET Framework 4.6.1 Hotfix Rollup (KB3120241) (HKLM\...\{46556DC7-EFC0-361E-832E-E0A9B0D2EFAB}) (Version: 4.6.01067 - Microsoft Corporation)
Microsoft Office Professional Plus 2016 - de-de (HKLM\...\ProPlusRetail - de-de) (Version: 16.0.7571.2109 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-210783167-1482073297-2139249726-1000\...\OneDriveSetup.exe) (Version: 17.3.4604.0120 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.30319 (HKLM\...\{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.30319 (HKLM-x32\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
MK LOL (HKU\S-1-5-21-210783167-1482073297-2139249726-1000\...\MK LOL) (Version:  - )
Mozilla Firefox 50.1.0 (x86 de) (HKLM-x32\...\Mozilla Firefox 50.1.0 (x86 de)) (Version: 50.1.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 50.1.0 - Mozilla)
NVIDIA 3D Vision Controller-Treiber 369.04 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 369.04 - NVIDIA Corporation)
NVIDIA 3D Vision Treiber 376.33 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 376.33 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.2.0.96 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.2.0.96 - NVIDIA Corporation)
NVIDIA Grafiktreiber 376.33 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 376.33 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.34.17 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.17 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.16.0318 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.16.0318 - NVIDIA Corporation)
NvNodejs (Version: 3.2.0.96 - NVIDIA Corporation) Hidden
NvTelemetry (Version: 2.0.0.0 - NVIDIA Corporation) Hidden
Office 16 Click-to-Run Extensibility Component (x32 Version: 16.0.7571.2109 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (Version: 16.0.7571.2109 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (Version: 16.0.7571.2109 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (x32 Version: 16.0.7571.2109 - Microsoft Corporation) Hidden
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.67.1226.2012 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7525 - Realtek Semiconductor Corp.)
SHIELD Streaming (Version: 7.1.0350 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 3.2.0.96 - NVIDIA Corporation) Hidden
Skype™ 7.30 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.30.105 - Skype Technologies S.A.)
Sound Blaster JAM (HKLM-x32\...\{B2420891-3990-48E9-9C8D-8ED06AF7F5A2}) (Version: 1.00.02 - Creative Technology Limited)
Sound Blaster JAM Extras (HKLM-x32\...\{4E187CC4-E02C-4D07-994B-7425C40BCCAC}) (Version: 1.0 - Creative Technology Limited)
Studie zur Verbesserung von HP ENVY 5530 series (HKLM\...\{00852880-AC64-4970-A6D9-B08A27F12155}) (Version: 32.3.198.49673 - Hewlett-Packard Co.)
VirtualCloneDrive (HKLM-x32\...\VirtualCloneDrive) (Version: 5.5.0.0 - Elaborate Bytes)
VLC media player (HKLM\...\VLC media player) (Version: 2.2.4 - VideoLAN)
Vulkan Run Time Libraries 1.0.26.0 (HKLM\...\VulkanRT1.0.26.0) (Version: 1.0.26.0 - LunarG, Inc.)
Windows Driver Package - Microsoft (xusb21) XnaComposite  (08/13/2009 2.1.0.1349) (HKLM\...\0AEBEF6F936CFE16E003F7E141631FAB754D9816) (Version: 08/13/2009 2.1.0.1349 - Microsoft)
WinRAR 5.30 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.30.0 - win.rar GmbH)

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

Task: {0A2AA143-0128-4D50-9506-37C8D557D54D} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2016-09-28] (Piriform Ltd)
Task: {20249C32-9330-4E54-9F65-A8ECE40E8AFC} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2016-12-13] (NVIDIA Corporation)
Task: {2F78514C-0C20-47DC-B27E-8FF43ECD3642} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-11-22] (Google Inc.)
Task: {2FAE5D0D-1BF5-4E01-9EEE-581AAEBC6807} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-01-10] (Adobe Systems Incorporated)
Task: {3995C562-5BE4-4F89-BBAE-474F0B3B5D44} - System32\Tasks\R@1n-KMS\Office16ProPlus => wmic [Argument = path OfficeSoftwareProtectionProduct where (ID="d450596f-894d-49e0-966a-fd39ed4c4c64") call Activate]
Task: {4087EF99-A785-485D-813D-ECAC91716244} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2016-12-13] (NVIDIA Corporation)
Task: {52CFCEF4-5AD6-474B-A924-33F93C3FF879} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [2016-07-04] (HP Inc.)
Task: {5A1D87A1-284B-46BA-BE15-82B0EDA54B55} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2016-12-07] (HP Inc.)
Task: {5E830EC3-B8FD-4737-9438-BE91A45B0AED} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [2016-12-29] (Microsoft Corporation)
Task: {6A250DD1-4DC3-4148-82E0-E67F0B58AD7C} - System32\Tasks\ASUS\ASUS WiFi GO! Server Execute => C:\Program Files (x86)\ASUS\AI Suite II\Remote GO!\AssistTools\WiFi GO! Server.exe [2013-08-26] (ASUSTeK Computer Inc.)
Task: {6CAFAFE8-7CFA-4313-8D68-BC75628958BE} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2016-12-28] (Microsoft Corporation)
Task: {7261EB1D-CB1F-488E-8B28-3C0C9661B833} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2016-02-23] (Apple Inc.)
Task: {9CA9577F-B69C-4AAB-94C2-36BE57259073} - System32\Tasks\ASUS\Easy Update => C:\Program Files (x86)\ASUS\AI Suite II\EasyUpdate\EzUpdt.exe [2013-10-18] ()
Task: {A6E8CEE3-87C2-4AFC-B066-339EC0E948CA} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2016-12-13] (NVIDIA Corporation)
Task: {A8563C0A-098A-452B-8D38-3CF6857F55AD} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-12-19] (Adobe Systems Incorporated)
Task: {B2E04318-5CB7-43DA-AB39-D75783522DCF} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-11-22] (Google Inc.)
Task: {BE09BC61-E8D2-409F-BB8E-0A591C0862EF} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2016-12-13] (NVIDIA Corporation)
Task: {C6721ED0-7644-4809-B44B-E226B92E80B1} - System32\Tasks\HPCustParticipation HP ENVY 5530 series => C:\Program Files\HP\HP ENVY 5530 series\Bin\HPCustPartic.exe [2014-07-21] (Hewlett-Packard Development Company, LP)
Task: {C6E740BC-0D29-41FA-8484-2069DDBD9025} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2016-12-28] (Microsoft Corporation)
Task: {D40D2892-5524-492B-86C8-FC64EF388486} - System32\Tasks\ASUS\ASUS Network iControl Help Execute => C:\Program Files (x86)\ASUS\AI Suite II\Network iControl\NetSvcHelp\NetSvcHelpEntry.exe [2013-02-07] (ASUSTeK Computer Inc.)
Task: {D762F5FF-4E37-462A-B871-9FBBA167486F} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2016-12-13] (NVIDIA Corporation)
Task: {D91ABFC7-5E52-4CA8-B9F5-4FA099AB2563} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [2016-12-29] (Microsoft Corporation)
Task: {DE23FED1-EB5E-41EB-9483-C3204F9501DC} - System32\Tasks\ASUS\USB 3.0 Boost Service => C:\Program Files (x86)\ASUS\AI Suite II\USB 3.0 Boost\U3BoostSvr.exe [2011-09-09] ()
Task: {E0FC9EAE-B2A1-451C-BD8E-0FD59D25850D} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2016-12-13] (NVIDIA Corporation)
Task: {E5F37CC3-D21B-4248-9BF0-73E84793DE7A} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2016-12-13] (NVIDIA Corporation)
Task: {FC960DD8-F9F6-44EB-AF75-7BF1F477FA70} - System32\Tasks\ASUS\ASUS AI Suite II Execute => C:\Program Files (x86)\ASUS\AI Suite II\AsRoutineController.exe [2012-03-13] (ASUSTeK Computer Inc.)

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

==================== Verknüpfungen =============================

(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)

ShortcutWithArgument: C:\Users\Milos\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome-Apps\Google Play Musik.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) ->  --profile-directory=Default --app-id=fahmaaghhglfmonjliepjlchgpgfmobi

==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============

2016-10-05 18:17 - 2016-10-05 18:17 - 00092472 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2016-11-17 01:28 - 2016-11-17 01:28 - 01353528 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2016-11-10 16:19 - 2013-10-18 18:04 - 01426232 _____ () C:\Program Files (x86)\ASUS\AI Suite II\EasyUpdate\EzUpdt.exe
2016-11-12 18:53 - 2016-11-12 18:53 - 00026112 _____ () C:\Windows\KMS-R@1n.exe
2016-11-10 16:12 - 2016-12-13 00:35 - 01147328 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll
2016-11-10 16:12 - 2016-12-13 00:36 - 04489152 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\Poco.dll
2016-11-10 16:12 - 2016-12-11 19:47 - 00134712 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2016-11-12 18:53 - 2016-11-12 18:53 - 00005120 _____ () C:\Windows\KMS-R@1nHook.exe
2016-11-12 18:53 - 2016-11-12 18:53 - 00004096 _____ () C:\Windows\KMS-R@1nHook.dll
2016-11-10 16:17 - 2016-11-10 16:17 - 00920736 _____ () C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe
2016-01-06 17:41 - 2016-01-06 17:41 - 00062168 _____ () C:\Program Files\CCleaner\branding.dll
2016-12-15 15:12 - 2016-12-08 09:03 - 02412888 _____ () C:\Program Files (x86)\Google\Chrome\Application\55.0.2883.87\libglesv2.dll
2016-12-15 15:12 - 2016-12-08 09:03 - 00099672 _____ () C:\Program Files (x86)\Google\Chrome\Application\55.0.2883.87\libegl.dll
2016-11-10 16:19 - 2013-10-18 18:04 - 05777616 _____ () C:\Program Files (x86)\ASUS\AI Suite II\EasyUpdate\EzULIB.dll
2016-11-10 16:19 - 2013-05-08 16:22 - 00208896 _____ () C:\Program Files (x86)\ASUS\AI Suite II\EasyUpdate\ImageHelper.dll
2016-11-10 16:20 - 2012-05-02 18:04 - 00233472 _____ () C:\Program Files (x86)\ASUS\AI Suite II\Remote GO!\AssistTools\AudioProjection.dll
2016-11-10 16:20 - 2010-12-14 17:46 - 00067584 _____ () C:\Program Files (x86)\ASUS\AI Suite II\Remote GO!\AssistTools\CoreAudioCap.dll
2016-11-10 16:20 - 2013-08-05 11:14 - 00176128 _____ () C:\Program Files (x86)\ASUS\AI Suite II\Remote GO!\AssistTools\DLCapPP.dll
2016-11-10 16:20 - 2013-06-11 12:06 - 00425984 _____ () C:\Program Files (x86)\ASUS\AI Suite II\Remote GO!\AssistTools\awiscale.DLL
2016-11-10 16:20 - 2010-10-29 18:58 - 00221184 _____ () C:\Program Files (x86)\ASUS\AI Suite II\Remote GO!\AssistTools\JpegCD.DLL
2016-11-10 16:20 - 2013-08-06 20:04 - 02502656 _____ () C:\Program Files (x86)\ASUS\AI Suite II\Remote GO!\AssistTools\xH264E.DLL
2016-11-10 16:20 - 2012-01-12 16:44 - 00475136 _____ () C:\Program Files (x86)\ASUS\AI Suite II\Remote GO!\AssistTools\WiFiGO_HookKey.dll
2016-11-10 16:20 - 2013-06-13 17:37 - 00156160 _____ () C:\Program Files (x86)\InstallShield Installation Information\{104BE4B8-D1DB-4170-977B-364960893DC8}\CloudAPI\CloudAPI.dll
2016-11-10 16:20 - 2013-03-21 19:38 - 00716800 _____ () C:\Program Files (x86)\ASUS\AI Suite II\Remote GO!\AssistTools\WiMoveHelp.dll
2016-11-10 16:20 - 2012-04-25 14:47 - 00659456 _____ () C:\Program Files (x86)\ASUS\AI Suite II\Remote GO!\AssistTools\PhoneCtrlAPI.dll
2016-06-28 00:19 - 2016-06-28 00:19 - 00865232 _____ () C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\kpcengine.2.3.dll
2016-11-10 16:21 - 2013-08-19 10:23 - 00043520 ____N () C:\Program Files (x86)\ASUS\AI Suite II\TurboV EVO\HookKey32.dll
2016-11-10 16:21 - 2013-08-19 17:21 - 00253952 _____ () C:\Program Files (x86)\ASUS\AI Suite II\TurboV EVO\pngio.dll
2016-11-10 16:18 - 2011-07-12 19:14 - 00147456 _____ () C:\Program Files (x86)\ASUS\AI Suite II\AssistFunc.dll
2016-11-10 16:18 - 2010-10-05 08:22 - 00253952 _____ () C:\Program Files (x86)\ASUS\AI Suite II\pngio.dll
2016-11-10 16:19 - 2013-12-04 11:57 - 00870912 _____ () C:\Program Files (x86)\ASUS\AI Suite II\AI Charger+\AIChargerPlus.dll
2016-11-10 16:18 - 2012-10-08 17:07 - 00972288 _____ () C:\Program Files (x86)\ASUS\AI Suite II\BarGadget\BarGadget.dll
2016-11-10 16:19 - 2013-05-08 16:22 - 01040896 _____ () C:\Program Files (x86)\ASUS\AI Suite II\EasyUpdate\EasyUpdt.dll
2016-11-10 16:19 - 2012-06-19 12:56 - 01305600 _____ () C:\Program Files (x86)\ASUS\AI Suite II\MyLogo\MyLogo.dll
2016-11-10 16:20 - 2013-06-24 15:59 - 01173504 _____ () C:\Program Files (x86)\ASUS\AI Suite II\Network iControl\Network iControl.dll
2016-11-10 16:20 - 2012-07-20 09:39 - 01047040 _____ () C:\Program Files (x86)\ASUS\AI Suite II\Probe_II\ProbeII.dll
2016-11-10 16:20 - 2013-06-24 17:48 - 02055168 _____ () C:\Program Files (x86)\ASUS\AI Suite II\Remote GO!\WiFiGO.dll
2016-11-10 16:18 - 2013-04-15 14:19 - 00883712 _____ () C:\Program Files (x86)\ASUS\AI Suite II\Sensor\Sensor.dll
2016-11-10 16:18 - 2012-05-28 21:27 - 01622528 _____ () C:\Program Files (x86)\ASUS\AI Suite II\Sensor Graph\SensorGraph.dll
2016-11-10 16:18 - 2011-09-19 20:18 - 01243136 _____ () C:\Program Files (x86)\ASUS\AI Suite II\Settings\Settings.dll
2016-11-10 16:18 - 2011-07-21 09:06 - 00846848 _____ () C:\Program Files (x86)\ASUS\AI Suite II\Splitter\Splitter.dll
2016-11-10 16:18 - 2012-08-29 18:09 - 00875520 _____ () C:\Program Files (x86)\ASUS\AI Suite II\TabGadget\TabGadget.dll
2016-11-10 16:18 - 2010-08-23 03:17 - 00662016 _____ () C:\Program Files (x86)\ASUS\AAHM\1.00.20\aaHMLib.dll
2016-11-10 16:18 - 2010-10-05 08:22 - 00208896 _____ () C:\Program Files (x86)\ASUS\AI Suite II\ImageHelper.dll
2016-11-10 16:21 - 2012-01-19 09:39 - 00028672 _____ () C:\Program Files (x86)\ASUS\AI Suite II\USB BIOS Flashback\PEInfo.dll
2016-11-10 16:18 - 2009-08-12 20:15 - 00253952 _____ () C:\Program Files (x86)\ASUS\AI Suite II\Sensor\AlertHelper\pngio.dll
2016-11-10 16:12 - 2016-12-13 00:35 - 00018880 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2016-11-10 16:12 - 2016-12-13 00:35 - 00900032 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll
2016-11-10 16:12 - 2016-12-13 00:35 - 03774400 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\Poco.dll
2016-11-10 16:18 - 2017-01-17 12:04 - 00033792 _____ () C:\Program Files (x86)\ASUS\AXSP\1.00.19\PEbiosinterface32.dll
2016-11-10 16:18 - 2010-06-29 03:58 - 00104448 _____ () C:\Program Files (x86)\ASUS\AXSP\1.00.19\ATKEX.dll
2016-11-17 01:29 - 2016-11-17 01:29 - 01041720 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2016-10-05 18:18 - 2016-10-05 18:18 - 00080184 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2016-11-17 01:28 - 2016-11-17 01:28 - 00189752 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxslt.dll
2016-11-10 16:20 - 2012-02-06 21:08 - 00253952 _____ () C:\Program Files (x86)\ASUS\AI Suite II\Remote GO!\AssistTools\WiFile\pngio.dll
2016-09-26 13:55 - 2016-09-26 13:55 - 40523480 _____ () C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\libcef.dll
2015-03-17 01:34 - 2015-03-17 01:34 - 00010240 _____ () C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\locale\de_de\acrotray.deu
2016-11-10 16:13 - 2016-12-13 00:33 - 64245184 _____ () C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\libcef.dll
2016-11-10 16:12 - 2016-12-12 15:36 - 00525760 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvSpCapsAPINode.node
2016-11-10 16:12 - 2016-12-12 15:36 - 00254008 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\DriverInstall.node
2016-11-10 16:12 - 2016-12-12 15:36 - 02808888 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\Downloader.node
2016-11-10 16:12 - 2016-12-12 15:36 - 00384568 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvGameShareAPINode.node
2016-11-10 16:12 - 2016-12-12 15:36 - 00447424 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvGalleryAPINode.node
2016-11-10 16:12 - 2016-12-12 15:36 - 00336832 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVAccountAPINode.node
2016-11-10 16:12 - 2016-12-12 15:36 - 01003456 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvCameraAPINode.node
2016-12-20 17:37 - 2016-12-12 15:36 - 00956472 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvSDKAPINode.node

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)


==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)


==================== Verknüpfungen (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)


==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)

IE trusted site: HKU\S-1-5-21-210783167-1482073297-2139249726-1000\...\sharepoint.com -> hxxps://studfhcampuswienac-files.sharepoint.com

==================== Hosts Inhalt: ===============================

(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)

2009-07-14 03:34 - 2009-06-10 22:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts


==================== Andere Bereiche ============================

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKU\S-1-5-21-210783167-1482073297-2139249726-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Milos\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 195.34.133.21 - 212.186.211.21
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.

==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==


==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

FirewallRules: [{31AC00F7-A1F5-4ABC-B9F8-179AA824E8FC}] => C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe
FirewallRules: [{2C776169-7145-451F-89A2-48AA91C79BE6}] => C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe
FirewallRules: [{BB1557A1-30E5-4312-971F-0C030DBC83E2}] => C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{6C38E65D-5428-412A-BFCA-F6E06FD70B33}] => C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{A313842A-6C61-4A12-8667-FDCD65924F5B}] => C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{827D0CD6-4CD1-4FDD-986C-36597E69206F}] => C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{91E579A5-DC4C-40E8-A2BB-6D1E22EC35F3}] => C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{F325081D-F679-4833-A232-AC43D2C54528}] => LPort=2869
FirewallRules: [{A5C70E79-7B9F-4F20-8A1B-6F66688C3991}] => LPort=1900
FirewallRules: [{96EAAD12-63BA-411C-AD72-4BFEB2B3897F}] => C:\Program Files (x86)\ASUS\AI Suite II\AI Suite II.exe
FirewallRules: [{BBF1DCA6-9826-4EF2-8546-21A3FE1E3A4E}] => C:\Program Files (x86)\ASUS\AI Suite II\AI Suite II.exe
FirewallRules: [{6656E6AE-88CD-45D7-AC60-B64F78441A76}] => C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe
FirewallRules: [{ED2A42C5-DE26-4C1C-840B-208ADF31CE06}] => C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe
FirewallRules: [{533BC99E-1A13-41BF-940F-961CF77E8966}] => C:\Users\Milos\AppData\Local\Microsoft\OneDrive\OneDrive.exe
FirewallRules: [{7B94D4C9-69E7-43B5-94DA-93E0BB5A3589}] => C:\Windows\KMS-R@1n.exe
FirewallRules: [{94919497-8A4E-476C-A8ED-186C168D2007}] => C:\Windows\KMS-R@1n.exe
FirewallRules: [{B04A1C58-85C8-4F1B-838F-E04179B5870B}] => C:\Program Files\HP\HP ENVY 5530 series\Bin\DeviceSetup.exe
FirewallRules: [{B764E70A-5280-4B18-906B-EF7E939A6310}] => LPort=5357
FirewallRules: [{56237AF9-F4EC-480C-97DD-AB4E28B5DA56}] => C:\Program Files\HP\HP ENVY 5530 series\Bin\HPNetworkCommunicatorCom.exe
FirewallRules: [{E7AB285C-CBB3-409A-91F2-B575DCF08145}] => LPort=2869
FirewallRules: [{7AA5D7FD-8995-4380-B5A6-A132C1B3866E}] => LPort=1900
FirewallRules: [{1C8B2E3B-E2B2-445D-9F2D-521A2E68005E}] => C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{0A29F24D-53CF-4D28-9CDE-03232D998FFE}] => C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{61622DAA-53E2-4F97-BEC3-EEF3D0FCD25B}] => C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{BDA1B160-263F-4256-B4D0-343FE31FD07C}] => C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{983FB56B-C434-40A2-A08F-4A4871695A36}] => C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe
FirewallRules: [{DC729786-971F-48AE-9D6B-4D4AFD036798}] => C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{2811BCD3-E90A-41B9-A091-C74859F15EB5}] => C:\Program Files\iTunes\iTunes.exe
FirewallRules: [{197F3F5D-5711-444F-9492-985BEB8AC87C}] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{6F356B39-56D0-439F-BC7E-F2019DE86287}] => C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe
FirewallRules: [{5B5E560A-2C1C-4110-B3E8-AB7605E0BE44}] => C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe
FirewallRules: [{1DB86676-378E-468A-9D5E-4F54DC56B023}] => C:\Program Files (x86)\ASUS\AI Suite II\Remote GO!\AssistTools\WiFi GO! Server.exe
FirewallRules: [{A200ED53-BBCE-4951-B1E6-3ED289E23985}] => C:\Program Files (x86)\ASUS\AI Suite II\Remote GO!\AssistTools\WiFi GO! Server.exe
FirewallRules: [{02E84ED1-E0E5-4F22-8F37-4C041F192487}] => C:\Program Files (x86)\ASUS\AI Suite II\Remote GO!\ASUSDMS.exe
FirewallRules: [{E4AFBDAB-E8A4-4A1A-8873-B63FAF10EB79}] => C:\Program Files (x86)\ASUS\AI Suite II\Remote GO!\ASUSDMS.exe

==================== Wiederherstellungspunkte =========================

11-01-2017 21:56:36 Windows Update
17-01-2017 11:05:05 Windows Update

==================== Fehlerhafte Geräte im Gerätemanager =============


==================== Fehlereinträge in der Ereignisanzeige: =========================

Applikationsfehler:
==================
Error: (01/17/2017 12:04:17 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Ereignisfilter mit Abfrage "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" konnte im Namespace "//./root/CIMV2" nicht reaktiviert werden aufgrund des Fehlers 0x80041003. Ereignisse können nicht durch diesen Filter geschickt werden, bis dieses Problem gelöst ist.

Error: (01/17/2017 11:57:54 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Ereignisfilter mit Abfrage "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" konnte im Namespace "//./root/CIMV2" nicht reaktiviert werden aufgrund des Fehlers 0x80041003. Ereignisse können nicht durch diesen Filter geschickt werden, bis dieses Problem gelöst ist.

Error: (01/17/2017 11:37:14 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 13042

Error: (01/17/2017 11:37:14 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 13042

Error: (01/17/2017 11:37:14 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (01/17/2017 11:37:13 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 12043

Error: (01/17/2017 11:37:13 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 12043

Error: (01/17/2017 11:37:13 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (01/17/2017 11:37:12 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 11045

Error: (01/17/2017 11:37:12 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 11045


Systemfehler:
=============
Error: (01/17/2017 12:02:41 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "MBAMService" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.

Error: (01/17/2017 12:02:41 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Windows Modules Installer" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 120000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (01/17/2017 12:02:41 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Software Protection" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 120000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (01/17/2017 12:02:41 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Kaspersky Secure Connection Service 1.0.0" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (01/17/2017 12:02:41 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "HP Support Solutions Framework Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.

Error: (01/17/2017 12:02:41 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Windows Media Player-Netzwerkfreigabedienst" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 30000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (01/17/2017 12:02:41 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "iPod-Dienst" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.

Error: (01/17/2017 12:02:41 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Windows Search" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 30000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (01/17/2017 12:02:41 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Office Software Protection Platform" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.

Error: (01/17/2017 12:02:41 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "ASUS Com Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.


==================== Speicherinformationen ===========================

Prozessor: AMD FX(tm)-6350 Six-Core Processor
Prozentuale Nutzung des RAM: 26%
Installierter physikalischer RAM: 16284.35 MB
Verfügbarer physikalischer RAM: 12001.14 MB
Summe virtueller Speicher: 32566.89 MB
Verfügbarer virtueller Speicher: 27328.22 MB

==================== Laufwerke ================================

Drive c: () (Fixed) (Total:200.01 GB) (Free:111.89 GB) NTFS
Drive d: () (Fixed) (Total:731.01 GB) (Free:299.03 GB) NTFS

==================== MBR & Partitionstabelle ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: E034EDD1)
Partition 1: (Active) - (Size=500 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=200 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=731 GB) - (Type=07 NTFS)

==================== Ende von Addition.txt ============================

burningice 17.01.2017 14:06
Anleitung richtig lesen bitte und richtiges Logfile posten von Malwarebytes.

Xnatur 17.01.2017 14:53
Es ist nur nicht so alles beschrieben bzw. benannt in der neuen Version wie in der Anleitung erwähnt wird.

Ich hoffe das ist jetzt richtig.

Code:
Malwarebytes Anti-Malware
www.malwarebytes.org

Suchlaufdatum: 17.01.2017
Suchlaufzeit: 11:06
Protokolldatei: mbam.txt
Administrator: Ja

Version: 2.2.1.1043
Malware-Datenbank: v2017.01.17.04
Rootkit-Datenbank: v2016.11.20.01
Lizenz: Testversion
Malware-Schutz: Aktiviert
Schutz vor bösartigen Websites: Aktiviert
Selbstschutz: Deaktiviert

Betriebssystem: Windows 7 Service Pack 1
CPU: x64
Dateisystem: NTFS
Benutzer: Milos

Suchlauftyp: Bedrohungssuchlauf
Ergebnis: Abgeschlossen
Durchsuchte Objekte: 314178
Abgelaufene Zeit: 20 Min., 25 Sek.

Speicher: Aktiviert
Start: Aktiviert
Dateisystem: Aktiviert
Archive: Aktiviert
Rootkits: Aktiviert
Heuristik: Aktiviert
PUP: Aktiviert
PUM: Aktiviert

Prozesse: 0
(keine bösartigen Elemente erkannt)

Module: 0
(keine bösartigen Elemente erkannt)

Registrierungsschlüssel: 0
(keine bösartigen Elemente erkannt)

Registrierungswerte: 0
(keine bösartigen Elemente erkannt)

Registrierungsdaten: 0
(keine bösartigen Elemente erkannt)

Ordner: 0
(keine bösartigen Elemente erkannt)

Dateien: 2
RiskWare.FilePatcher, C:\Users\Milos\Downloads\premiumleecher.com_Downloader.4.1.2.2075.DC.rar, In Quarantäne, [16e28def3e6a1521be7e5e4e5ca5f808],
PUP.Optional.DownloadSponsor, C:\Users\Milos\Downloads\Smart Data Recovery - CHIP-Installer.exe, In Quarantäne, [14e4106c693f37ffb6602d7e649c41bf],

Physische Sektoren: 0
(keine bösartigen Elemente erkannt)


(end)

burningice 18.01.2017 16:59

ESET Online Scanner

  • Hier findest du eine bebilderte Anleitung zu ESET Online Scanner
  • Lade und starte Eset Online Scanner
  • Setze einen Haken bei Ja, ich bin mit den Nutzungsbedingungen einverstanden und klicke auf Starten.
  • Aktiviere die "Erkennung von eventuell unerwünschten Anwendungen" und wähle folgende Einstellungen.
  • Klicke auf Starten.
  • Die Signaturen werden heruntergeladen, der Scan beginnt automatisch.
  • Klicke am Ende des Suchlaufs auf Fertig stellen.
  • Schließe das Fenster von ESET.
  • Explorer öffnen.
  • C:\Programme\Eset\EsetOnlineScanner\log.txt (bei 64 Bit auch C:\Programme (x86)\Eset\EsetOnlineScanner\log.txt) suchen und mit Deinem Editor öffnen (bebildert).
  • Logfile hier posten.
  • Deinstallation: Systemsteuerung => Software / Programme deinstallieren => Eset Online Scanner V3 entfernen.
  • Manuell folgenden Ordner löschen und Papierkorb leeren => C:\Programme\Eset


Hinweis: Dieser Scan kann schon einmal mehrere Stunden dauern...

Hast du noch irgendwelche Probleme mit deinem Rechner?

Xnatur 18.01.2017 21:28
Code:
ESETSmartInstaller@High as downloader log:
all ok
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# EOSSerial=ea46f4ae528d7d4f8d18fdf565dff71f
# end=init
# utc_time=2017-01-18 07:03:37
# local_time=2017-01-18 08:03:37 (+0100, Mitteleuropäische Zeit)
# country="Austria"
# osver=6.1.7601 NT Service Pack 1
Update Init
Update Download
Update Finalize
Updated modules version: 32107
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# EOSSerial=ea46f4ae528d7d4f8d18fdf565dff71f
# end=updated
# utc_time=2017-01-18 07:05:18
# local_time=2017-01-18 08:05:18 (+0100, Mitteleuropäische Zeit)
# country="Austria"
# osver=6.1.7601 NT Service Pack 1
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.7777
# api_version=3.1.1
# EOSSerial=ea46f4ae528d7d4f8d18fdf565dff71f
# engine=32107
# end=finished
# remove_checked=true
# archives_checked=false
# unwanted_checked=true
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2017-01-18 08:21:14
# local_time=2017-01-18 09:21:14 (+0100, Mitteleuropäische Zeit)
# country="Austria"
# lang=1031
# osver=6.1.7601 NT Service Pack 1
# compatibility_mode_1='Kaspersky Internet Security'
# compatibility_mode=1313 16777213 100 100 11750 17701408 0 0
# compatibility_mode_1=''
# compatibility_mode=5893 16776573 100 94 123340 236400724 0 0
# scanned=261422
# found=0
# cleaned=0
# scan_time=4555

Xnatur 21.01.2017 11:57
Ich glaube, dass das Problem immernoch nicht gelöst wurde, denn Malwarebytes blockiert ständig bösartige Websites..

burningice 21.01.2017 14:43
Bitte starte wieder FRST, setze den Haken bei Addition und drücke auf Untersuchen. Poste bitte wieder die beiden Textdateien, die so entstehen.


Bitte die Meldungen von MBAM posten, welche Seiten er da blockiert. Kannst gerne den "Protection Log" exportieren dafür, wenn die Infos darin ersichtlich sind.

Xnatur 22.01.2017 12:09
Code:
Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 22-01-2017
durchgeführt von Milos (22-01-2017 12:06:22)
Gestartet von C:\Users\Milos\Downloads
Windows 7 Ultimate Service Pack 1 (X64) (2016-11-10 14:42:25)
Start-Modus: Normal
==========================================================


==================== Konten: =============================

Administrator (S-1-5-21-210783167-1482073297-2139249726-500 - Administrator - Disabled)
Gast (S-1-5-21-210783167-1482073297-2139249726-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-210783167-1482073297-2139249726-1002 - Limited - Enabled)
Milos (S-1-5-21-210783167-1482073297-2139249726-1000 - Administrator - Enabled) => C:\Users\Milos

==================== Sicherheits-Center ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

AV: Kaspersky Internet Security (Disabled - Up to date) {86367591-4BE4-AE08-2FD9-7FCB8259CD98}
AS: Kaspersky Internet Security (Disabled - Up to date) {3D579475-6DDE-A186-1569-44B9F9DE8725}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Kaspersky Internet Security (Disabled) {BE0DF4B4-018B-AF50-0486-D6FE7C8A8AE3}

==================== Installierte Programme ======================

(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)

4K Video Downloader 4.1 (HKLM-x32\...\4K Video Downloader_is1) (Version: 4.1.2.2075 - Open Media LLC)
Adobe Acrobat DC (HKLM-x32\...\{AC76BA86-1033-FFFF-7760-0C0F074E4100}) (Version: 15.023.20056 - Adobe Systems Incorporated)
Adobe Acrobat Pro Installer 2015.020.20042 (HKLM-x32\...\Adobe Acrobat Pro Installer 2015.020.20042) (Version: 2015.020.20042 - Adobe Inc)
Adobe Flash Player 10 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 10.0.42.34 - Adobe Systems Incorporated)
Adobe Flash Player 24 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 24.0.0.194 - Adobe Systems Incorporated)
AI Suite II (HKLM-x32\...\{34D3688E-A737-44C5-9E2A-FF73618728E1}) (Version: 2.04.01 - ASUSTeK Computer Inc.)
Alt.Binz 0.39.4 (HKLM-x32\...\Alt.Binz) (Version: 0.39.4 - Rdl)
AMD Catalyst Install Manager (HKLM\...\{5DDB9EF7-1BC0-C9C1-9829-6B9CF68AC357}) (Version: 8.0.903.0 - Advanced Micro Devices, Inc.)
Ansel (Version: 376.33 - NVIDIA Corporation) Hidden
Apple Application Support (32-Bit) (HKLM-x32\...\{D079CAAD-0C31-47A2-9AF5-A82F9CD9B221}) (Version: 5.2 - Apple Inc.)
Apple Application Support (64-Bit) (HKLM\...\{64E6007B-1DA9-42CD-BBE4-D5FA67A7C71D}) (Version: 5.2 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{55BB2110-FB43-49B3-93F4-945A0CFB0A6C}) (Version: 10.0.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Version: 2.2.0.150 - Apple Inc.)
Asmedia ASM104x USB 3.0 Host Controller Driver (HKLM-x32\...\{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}) (Version: 1.16.12.0 - Asmedia Technology)
aTube Catcher Version 3.8 (HKLM-x32\...\{D43B360E-722D-421B-BC77-20B9E0F8B6CD}_is1) (Version: 3.8 - DsNET Corp)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.23 - Piriform)
Creative Systeminformationen (HKLM-x32\...\SysInfo) (Version: 1.10 - Creative Technology Limited)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 55.0.2883.87 - Google Inc.)
Google Update Helper (x32 Version: 1.3.32.7 - Google Inc.) Hidden
HP ENVY 5530 series - Grundlegende Software für das Gerät (HKLM\...\{08CB8BF7-0CCE-4FC2-A475-A985EB11B159}) (Version: 32.3.198.49673 - Hewlett-Packard Co.)
HP ENVY 5530 series Hilfe (HKLM-x32\...\{272E06A0-7B74-481F-BD50-C632D9CA81A3}) (Version: 30.0.0 - Hewlett Packard)
HP Support Solutions Framework (HKLM-x32\...\{D549B5E2-DBE8-4190-ABA5-71106264398C}) (Version: 12.5.32.203 - HP Inc.)
HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
iCloud (HKLM\...\{4BB313CE-D3D1-424C-8823-15CF85B00B05}) (Version: 6.1.0.30 - Apple Inc.)
ImgBurn (HKLM-x32\...\ImgBurn) (Version: 2.5.8.0 - LIGHTNING UK!)
iTunes (HKLM\...\{81C96689-EA5B-4B7D-A04F-16326EC51BC2}) (Version: 12.5.4.42 - Apple Inc.)
Java 8 Update 111 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180111F0}) (Version: 8.0.1110.14 - Oracle Corporation)
Java 8 Update 112 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180112F0}) (Version: 8.0.1120.15 - Oracle Corporation)
Kaspersky Internet Security (HKLM-x32\...\InstallWIX_{E27B1D7B-3B34-43A2-9FC0-9828D5DF46E2}) (Version: 17.0.0.611 - Kaspersky Lab)
Kaspersky Internet Security (x32 Version: 17.0.0.611 - Kaspersky Lab) Hidden
Kaspersky Secure Connection (HKLM-x32\...\InstallWIX_{1CF84962-50F8-48CA-9082-B70F3A02C686}) (Version: 17.0.0.611 - Kaspersky Lab)
Kaspersky Secure Connection (x32 Version: 17.0.0.611 - Kaspersky Lab) Hidden
League of Legends (HKLM-x32\...\League of Legends 4.1.2) (Version: 4.1.2 - Riot Games)
League of Legends (x32 Version: 4.1.2 - Riot Games) Hidden
Malwarebytes Anti-Malware Version 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
Microsoft .NET Framework 4.6.1 (DEU) (HKLM\...\{AAC5C889-B75D-3368-BC63-CB660DE44C66}) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft .NET Framework 4.6.1 Hotfix Rollup (KB3120241) (HKLM\...\{46556DC7-EFC0-361E-832E-E0A9B0D2EFAB}) (Version: 4.6.01067 - Microsoft Corporation)
Microsoft Office Professional Plus 2016 - de-de (HKLM\...\ProPlusRetail - de-de) (Version: 16.0.7571.2109 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-210783167-1482073297-2139249726-1000\...\OneDriveSetup.exe) (Version: 17.3.4604.0120 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-210783167-1482073297-2139249726-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\OneDriveSetup.exe) (Version: 17.3.4604.0120 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.30319 (HKLM\...\{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.30319 (HKLM-x32\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
MK LOL (HKU\S-1-5-21-210783167-1482073297-2139249726-1000\...\MK LOL) (Version:  - )
MK LOL (HKU\S-1-5-21-210783167-1482073297-2139249726-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\MK LOL) (Version:  - )
Mozilla Firefox 50.1.0 (x86 de) (HKLM-x32\...\Mozilla Firefox 50.1.0 (x86 de)) (Version: 50.1.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 50.1.0 - Mozilla)
NVIDIA 3D Vision Controller-Treiber 369.04 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 369.04 - NVIDIA Corporation)
NVIDIA 3D Vision Treiber 376.33 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 376.33 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.2.0.96 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.2.0.96 - NVIDIA Corporation)
NVIDIA Grafiktreiber 376.33 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 376.33 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.34.17 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.17 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.16.0318 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.16.0318 - NVIDIA Corporation)
NvNodejs (Version: 3.2.0.96 - NVIDIA Corporation) Hidden
NvTelemetry (Version: 2.0.0.0 - NVIDIA Corporation) Hidden
Office 16 Click-to-Run Extensibility Component (x32 Version: 16.0.7571.2109 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (Version: 16.0.7571.2109 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (Version: 16.0.7571.2109 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (x32 Version: 16.0.7571.2109 - Microsoft Corporation) Hidden
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.67.1226.2012 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7525 - Realtek Semiconductor Corp.)
SHIELD Streaming (Version: 7.1.0350 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 3.2.0.96 - NVIDIA Corporation) Hidden
Skype™ 7.30 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.30.105 - Skype Technologies S.A.)
Sound Blaster JAM (HKLM-x32\...\{B2420891-3990-48E9-9C8D-8ED06AF7F5A2}) (Version: 1.00.02 - Creative Technology Limited)
Sound Blaster JAM Extras (HKLM-x32\...\{4E187CC4-E02C-4D07-994B-7425C40BCCAC}) (Version: 1.0 - Creative Technology Limited)
Studie zur Verbesserung von HP ENVY 5530 series (HKLM\...\{00852880-AC64-4970-A6D9-B08A27F12155}) (Version: 32.3.198.49673 - Hewlett-Packard Co.)
VirtualCloneDrive (HKLM-x32\...\VirtualCloneDrive) (Version: 5.5.0.0 - Elaborate Bytes)
VLC media player (HKLM\...\VLC media player) (Version: 2.2.4 - VideoLAN)
Vulkan Run Time Libraries 1.0.26.0 (HKLM\...\VulkanRT1.0.26.0) (Version: 1.0.26.0 - LunarG, Inc.)
Windows Driver Package - Microsoft (xusb21) XnaComposite  (08/13/2009 2.1.0.1349) (HKLM\...\0AEBEF6F936CFE16E003F7E141631FAB754D9816) (Version: 08/13/2009 2.1.0.1349 - Microsoft)
WinRAR 5.30 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.30.0 - win.rar GmbH)

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

Task: {0A2AA143-0128-4D50-9506-37C8D557D54D} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2016-09-28] (Piriform Ltd)
Task: {20249C32-9330-4E54-9F65-A8ECE40E8AFC} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2016-12-13] (NVIDIA Corporation)
Task: {2F78514C-0C20-47DC-B27E-8FF43ECD3642} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-11-22] (Google Inc.)
Task: {2FAE5D0D-1BF5-4E01-9EEE-581AAEBC6807} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-01-10] (Adobe Systems Incorporated)
Task: {3995C562-5BE4-4F89-BBAE-474F0B3B5D44} - System32\Tasks\R@1n-KMS\Office16ProPlus => wmic [Argument = path OfficeSoftwareProtectionProduct where (ID="d450596f-894d-49e0-966a-fd39ed4c4c64") call Activate]
Task: {4087EF99-A785-485D-813D-ECAC91716244} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2016-12-13] (NVIDIA Corporation)
Task: {52CFCEF4-5AD6-474B-A924-33F93C3FF879} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [2016-07-04] (HP Inc.)
Task: {5A1D87A1-284B-46BA-BE15-82B0EDA54B55} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2016-12-07] (HP Inc.)
Task: {5E830EC3-B8FD-4737-9438-BE91A45B0AED} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [2016-12-29] (Microsoft Corporation)
Task: {6A250DD1-4DC3-4148-82E0-E67F0B58AD7C} - System32\Tasks\ASUS\ASUS WiFi GO! Server Execute => C:\Program Files (x86)\ASUS\AI Suite II\Remote GO!\AssistTools\WiFi GO! Server.exe [2013-08-26] (ASUSTeK Computer Inc.)
Task: {6CAFAFE8-7CFA-4313-8D68-BC75628958BE} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2016-12-28] (Microsoft Corporation)
Task: {7261EB1D-CB1F-488E-8B28-3C0C9661B833} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2016-02-23] (Apple Inc.)
Task: {9CA9577F-B69C-4AAB-94C2-36BE57259073} - System32\Tasks\ASUS\Easy Update => C:\Program Files (x86)\ASUS\AI Suite II\EasyUpdate\EzUpdt.exe [2013-10-18] ()
Task: {A6E8CEE3-87C2-4AFC-B066-339EC0E948CA} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2016-12-13] (NVIDIA Corporation)
Task: {A8563C0A-098A-452B-8D38-3CF6857F55AD} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-12-19] (Adobe Systems Incorporated)
Task: {B2E04318-5CB7-43DA-AB39-D75783522DCF} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-11-22] (Google Inc.)
Task: {BE09BC61-E8D2-409F-BB8E-0A591C0862EF} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2016-12-13] (NVIDIA Corporation)
Task: {C6721ED0-7644-4809-B44B-E226B92E80B1} - System32\Tasks\HPCustParticipation HP ENVY 5530 series => C:\Program Files\HP\HP ENVY 5530 series\Bin\HPCustPartic.exe [2014-07-21] (Hewlett-Packard Development Company, LP)
Task: {C6E740BC-0D29-41FA-8484-2069DDBD9025} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2016-12-28] (Microsoft Corporation)
Task: {D40D2892-5524-492B-86C8-FC64EF388486} - System32\Tasks\ASUS\ASUS Network iControl Help Execute => C:\Program Files (x86)\ASUS\AI Suite II\Network iControl\NetSvcHelp\NetSvcHelpEntry.exe [2013-02-07] (ASUSTeK Computer Inc.)
Task: {D762F5FF-4E37-462A-B871-9FBBA167486F} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2016-12-13] (NVIDIA Corporation)
Task: {D91ABFC7-5E52-4CA8-B9F5-4FA099AB2563} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [2016-12-29] (Microsoft Corporation)
Task: {DE23FED1-EB5E-41EB-9483-C3204F9501DC} - System32\Tasks\ASUS\USB 3.0 Boost Service => C:\Program Files (x86)\ASUS\AI Suite II\USB 3.0 Boost\U3BoostSvr.exe [2011-09-09] ()
Task: {E0FC9EAE-B2A1-451C-BD8E-0FD59D25850D} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2016-12-13] (NVIDIA Corporation)
Task: {E5F37CC3-D21B-4248-9BF0-73E84793DE7A} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2016-12-13] (NVIDIA Corporation)
Task: {FC960DD8-F9F6-44EB-AF75-7BF1F477FA70} - System32\Tasks\ASUS\ASUS AI Suite II Execute => C:\Program Files (x86)\ASUS\AI Suite II\AsRoutineController.exe [2012-03-13] (ASUSTeK Computer Inc.)

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

==================== Verknüpfungen =============================

(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)

ShortcutWithArgument: C:\Users\Milos\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome-Apps\Google Play Musik.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) ->  --profile-directory=Default --app-id=fahmaaghhglfmonjliepjlchgpgfmobi

==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============

2016-10-05 18:17 - 2016-10-05 18:17 - 00092472 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2016-11-17 01:28 - 2016-11-17 01:28 - 01353528 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2016-11-10 16:19 - 2013-10-18 18:04 - 01426232 _____ () C:\Program Files (x86)\ASUS\AI Suite II\EasyUpdate\EzUpdt.exe
2016-01-06 17:41 - 2016-01-06 17:41 - 00062168 _____ () C:\Program Files\CCleaner\branding.dll
2016-11-12 18:53 - 2016-11-12 18:53 - 00026112 _____ () C:\Windows\KMS-R@1n.exe
2016-11-10 16:12 - 2016-12-13 00:35 - 01147328 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll
2016-11-10 16:12 - 2016-12-13 00:36 - 04489152 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\Poco.dll
2016-11-10 16:12 - 2016-12-11 19:47 - 00134712 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2016-11-10 16:17 - 2016-11-10 16:17 - 00920736 _____ () C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe
2016-11-12 18:53 - 2016-11-12 18:53 - 00005120 _____ () C:\Windows\KMS-R@1nHook.exe
2016-11-12 18:53 - 2016-11-12 18:53 - 00004096 _____ () C:\Windows\KMS-R@1nHook.dll
2016-12-15 15:12 - 2016-12-08 09:03 - 02412888 _____ () C:\Program Files (x86)\Google\Chrome\Application\55.0.2883.87\libglesv2.dll
2016-12-15 15:12 - 2016-12-08 09:03 - 00099672 _____ () C:\Program Files (x86)\Google\Chrome\Application\55.0.2883.87\libegl.dll
2016-11-10 16:20 - 2012-05-02 18:04 - 00233472 _____ () C:\Program Files (x86)\ASUS\AI Suite II\Remote GO!\AssistTools\AudioProjection.dll
2016-11-10 16:20 - 2010-12-14 17:46 - 00067584 _____ () C:\Program Files (x86)\ASUS\AI Suite II\Remote GO!\AssistTools\CoreAudioCap.dll
2016-11-10 16:20 - 2013-08-05 11:14 - 00176128 _____ () C:\Program Files (x86)\ASUS\AI Suite II\Remote GO!\AssistTools\DLCapPP.dll
2016-11-10 16:20 - 2013-06-11 12:06 - 00425984 _____ () C:\Program Files (x86)\ASUS\AI Suite II\Remote GO!\AssistTools\awiscale.DLL
2016-11-10 16:20 - 2010-10-29 18:58 - 00221184 _____ () C:\Program Files (x86)\ASUS\AI Suite II\Remote GO!\AssistTools\JpegCD.DLL
2016-11-10 16:20 - 2013-08-06 20:04 - 02502656 _____ () C:\Program Files (x86)\ASUS\AI Suite II\Remote GO!\AssistTools\xH264E.DLL
2016-11-10 16:20 - 2012-01-12 16:44 - 00475136 _____ () C:\Program Files (x86)\ASUS\AI Suite II\Remote GO!\AssistTools\WiFiGO_HookKey.dll
2016-11-10 16:20 - 2013-06-13 17:37 - 00156160 _____ () C:\Program Files (x86)\InstallShield Installation Information\{104BE4B8-D1DB-4170-977B-364960893DC8}\CloudAPI\CloudAPI.dll
2016-11-10 16:20 - 2013-03-21 19:38 - 00716800 _____ () C:\Program Files (x86)\ASUS\AI Suite II\Remote GO!\AssistTools\WiMoveHelp.dll
2016-11-10 16:20 - 2012-04-25 14:47 - 00659456 _____ () C:\Program Files (x86)\ASUS\AI Suite II\Remote GO!\AssistTools\PhoneCtrlAPI.dll
2016-11-10 16:19 - 2013-10-18 18:04 - 05777616 _____ () C:\Program Files (x86)\ASUS\AI Suite II\EasyUpdate\EzULIB.dll
2016-11-10 16:19 - 2013-05-08 16:22 - 00208896 _____ () C:\Program Files (x86)\ASUS\AI Suite II\EasyUpdate\ImageHelper.dll
2016-11-10 16:21 - 2013-08-19 10:23 - 00043520 ____N () C:\Program Files (x86)\ASUS\AI Suite II\TurboV EVO\HookKey32.dll
2016-11-10 16:21 - 2013-08-19 17:21 - 00253952 _____ () C:\Program Files (x86)\ASUS\AI Suite II\TurboV EVO\pngio.dll
2016-09-26 13:55 - 2016-09-26 13:55 - 40523480 _____ () C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\libcef.dll
2016-11-17 01:29 - 2016-11-17 01:29 - 01041720 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2016-10-05 18:18 - 2016-10-05 18:18 - 00080184 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2016-11-10 16:20 - 2012-02-06 21:08 - 00253952 _____ () C:\Program Files (x86)\ASUS\AI Suite II\Remote GO!\AssistTools\WiFile\pngio.dll
2015-03-17 01:34 - 2015-03-17 01:34 - 00010240 _____ () C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\locale\de_de\acrotray.deu
2016-11-10 16:18 - 2011-07-12 19:14 - 00147456 _____ () C:\Program Files (x86)\ASUS\AI Suite II\AssistFunc.dll
2016-11-10 16:18 - 2010-10-05 08:22 - 00253952 _____ () C:\Program Files (x86)\ASUS\AI Suite II\pngio.dll
2016-11-10 16:19 - 2013-12-04 11:57 - 00870912 _____ () C:\Program Files (x86)\ASUS\AI Suite II\AI Charger+\AIChargerPlus.dll
2016-11-10 16:18 - 2012-10-08 17:07 - 00972288 _____ () C:\Program Files (x86)\ASUS\AI Suite II\BarGadget\BarGadget.dll
2016-11-10 16:19 - 2013-05-08 16:22 - 01040896 _____ () C:\Program Files (x86)\ASUS\AI Suite II\EasyUpdate\EasyUpdt.dll
2016-11-10 16:19 - 2012-06-19 12:56 - 01305600 _____ () C:\Program Files (x86)\ASUS\AI Suite II\MyLogo\MyLogo.dll
2016-11-10 16:20 - 2013-06-24 15:59 - 01173504 _____ () C:\Program Files (x86)\ASUS\AI Suite II\Network iControl\Network iControl.dll
2016-11-10 16:20 - 2012-07-20 09:39 - 01047040 _____ () C:\Program Files (x86)\ASUS\AI Suite II\Probe_II\ProbeII.dll
2016-11-10 16:20 - 2013-06-24 17:48 - 02055168 _____ () C:\Program Files (x86)\ASUS\AI Suite II\Remote GO!\WiFiGO.dll
2016-11-10 16:18 - 2013-04-15 14:19 - 00883712 _____ () C:\Program Files (x86)\ASUS\AI Suite II\Sensor\Sensor.dll
2016-11-10 16:18 - 2012-05-28 21:27 - 01622528 _____ () C:\Program Files (x86)\ASUS\AI Suite II\Sensor Graph\SensorGraph.dll
2016-11-10 16:18 - 2011-09-19 20:18 - 01243136 _____ () C:\Program Files (x86)\ASUS\AI Suite II\Settings\Settings.dll
2016-11-10 16:18 - 2011-07-21 09:06 - 00846848 _____ () C:\Program Files (x86)\ASUS\AI Suite II\Splitter\Splitter.dll
2016-11-10 16:18 - 2012-08-29 18:09 - 00875520 _____ () C:\Program Files (x86)\ASUS\AI Suite II\TabGadget\TabGadget.dll
2016-11-10 16:18 - 2010-08-23 03:17 - 00662016 _____ () C:\Program Files (x86)\ASUS\AAHM\1.00.20\aaHMLib.dll
2016-11-10 16:18 - 2010-10-05 08:22 - 00208896 _____ () C:\Program Files (x86)\ASUS\AI Suite II\ImageHelper.dll
2016-11-10 16:21 - 2012-01-19 09:39 - 00028672 _____ () C:\Program Files (x86)\ASUS\AI Suite II\USB BIOS Flashback\PEInfo.dll
2016-11-10 16:18 - 2009-08-12 20:15 - 00253952 _____ () C:\Program Files (x86)\ASUS\AI Suite II\Sensor\AlertHelper\pngio.dll
2016-11-17 01:28 - 2016-11-17 01:28 - 00189752 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxslt.dll
2016-11-10 16:12 - 2016-12-13 00:35 - 00018880 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2016-11-10 16:12 - 2016-12-13 00:35 - 00900032 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll
2016-11-10 16:12 - 2016-12-13 00:35 - 03774400 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\Poco.dll
2016-11-10 16:13 - 2016-12-13 00:33 - 64245184 _____ () C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\libcef.dll
2016-11-10 16:12 - 2016-12-12 15:36 - 00525760 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvSpCapsAPINode.node
2016-11-10 16:12 - 2016-12-12 15:36 - 00254008 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\DriverInstall.node
2016-11-10 16:12 - 2016-12-12 15:36 - 02808888 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\Downloader.node
2016-11-10 16:12 - 2016-12-12 15:36 - 00384568 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvGameShareAPINode.node
2016-11-10 16:12 - 2016-12-12 15:36 - 00447424 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvGalleryAPINode.node
2016-11-10 16:12 - 2016-12-12 15:36 - 00336832 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVAccountAPINode.node
2016-11-10 16:12 - 2016-12-12 15:36 - 01003456 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvCameraAPINode.node
2016-12-20 17:37 - 2016-12-12 15:36 - 00956472 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvSDKAPINode.node
2016-11-10 16:18 - 2017-01-22 12:04 - 00033792 _____ () C:\Program Files (x86)\ASUS\AXSP\1.00.19\PEbiosinterface32.dll
2016-11-10 16:18 - 2010-06-29 03:58 - 00104448 _____ () C:\Program Files (x86)\ASUS\AXSP\1.00.19\ATKEX.dll

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)


==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)


==================== Verknüpfungen (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)


==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)

IE trusted site: HKU\S-1-5-21-210783167-1482073297-2139249726-1000\...\sharepoint.com -> hxxps://studfhcampuswienac-files.sharepoint.com
IE trusted site: HKU\S-1-5-21-210783167-1482073297-2139249726-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\sharepoint.com -> hxxps://studfhcampuswienac-files.sharepoint.com

==================== Hosts Inhalt: ===============================

(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)

2009-07-14 03:34 - 2009-06-10 22:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts


==================== Andere Bereiche ============================

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKU\S-1-5-21-210783167-1482073297-2139249726-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Milos\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
HKU\S-1-5-21-210783167-1482073297-2139249726-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Control Panel\Desktop\\Wallpaper -> C:\Users\Milos\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 195.34.133.21 - 212.186.211.21
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.

==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==


==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

FirewallRules: [{31AC00F7-A1F5-4ABC-B9F8-179AA824E8FC}] => C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe
FirewallRules: [{2C776169-7145-451F-89A2-48AA91C79BE6}] => C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe
FirewallRules: [{BB1557A1-30E5-4312-971F-0C030DBC83E2}] => C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{6C38E65D-5428-412A-BFCA-F6E06FD70B33}] => C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{A313842A-6C61-4A12-8667-FDCD65924F5B}] => C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{827D0CD6-4CD1-4FDD-986C-36597E69206F}] => C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{91E579A5-DC4C-40E8-A2BB-6D1E22EC35F3}] => C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{F325081D-F679-4833-A232-AC43D2C54528}] => LPort=2869
FirewallRules: [{A5C70E79-7B9F-4F20-8A1B-6F66688C3991}] => LPort=1900
FirewallRules: [{96EAAD12-63BA-411C-AD72-4BFEB2B3897F}] => C:\Program Files (x86)\ASUS\AI Suite II\AI Suite II.exe
FirewallRules: [{BBF1DCA6-9826-4EF2-8546-21A3FE1E3A4E}] => C:\Program Files (x86)\ASUS\AI Suite II\AI Suite II.exe
FirewallRules: [{6656E6AE-88CD-45D7-AC60-B64F78441A76}] => C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe
FirewallRules: [{ED2A42C5-DE26-4C1C-840B-208ADF31CE06}] => C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe
FirewallRules: [{533BC99E-1A13-41BF-940F-961CF77E8966}] => C:\Users\Milos\AppData\Local\Microsoft\OneDrive\OneDrive.exe
FirewallRules: [{7B94D4C9-69E7-43B5-94DA-93E0BB5A3589}] => C:\Windows\KMS-R@1n.exe
FirewallRules: [{94919497-8A4E-476C-A8ED-186C168D2007}] => C:\Windows\KMS-R@1n.exe
FirewallRules: [{B04A1C58-85C8-4F1B-838F-E04179B5870B}] => C:\Program Files\HP\HP ENVY 5530 series\Bin\DeviceSetup.exe
FirewallRules: [{B764E70A-5280-4B18-906B-EF7E939A6310}] => LPort=5357
FirewallRules: [{56237AF9-F4EC-480C-97DD-AB4E28B5DA56}] => C:\Program Files\HP\HP ENVY 5530 series\Bin\HPNetworkCommunicatorCom.exe
FirewallRules: [{E7AB285C-CBB3-409A-91F2-B575DCF08145}] => LPort=2869
FirewallRules: [{7AA5D7FD-8995-4380-B5A6-A132C1B3866E}] => LPort=1900
FirewallRules: [{1C8B2E3B-E2B2-445D-9F2D-521A2E68005E}] => C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{0A29F24D-53CF-4D28-9CDE-03232D998FFE}] => C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{61622DAA-53E2-4F97-BEC3-EEF3D0FCD25B}] => C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{BDA1B160-263F-4256-B4D0-343FE31FD07C}] => C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{983FB56B-C434-40A2-A08F-4A4871695A36}] => C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe
FirewallRules: [{DC729786-971F-48AE-9D6B-4D4AFD036798}] => C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{2811BCD3-E90A-41B9-A091-C74859F15EB5}] => C:\Program Files\iTunes\iTunes.exe
FirewallRules: [{197F3F5D-5711-444F-9492-985BEB8AC87C}] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{6F356B39-56D0-439F-BC7E-F2019DE86287}] => C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe
FirewallRules: [{5B5E560A-2C1C-4110-B3E8-AB7605E0BE44}] => C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe
FirewallRules: [{A5357381-2F09-4D11-9D33-A9BA497F1152}] => C:\Program Files (x86)\ASUS\AI Suite II\Remote GO!\AssistTools\WiFi GO! Server.exe
FirewallRules: [{594184E4-D7D7-4B53-A5EC-8B2BF2853843}] => C:\Program Files (x86)\ASUS\AI Suite II\Remote GO!\AssistTools\WiFi GO! Server.exe
FirewallRules: [{6E5BA715-0848-4404-92F7-843E5DB68E98}] => C:\Program Files (x86)\ASUS\AI Suite II\Remote GO!\ASUSDMS.exe
FirewallRules: [{EF6EE0B2-3CFA-496E-B774-F879816C2EC9}] => C:\Program Files (x86)\ASUS\AI Suite II\Remote GO!\ASUSDMS.exe

==================== Wiederherstellungspunkte =========================

11-01-2017 21:56:36 Windows Update
17-01-2017 11:05:05 Windows Update
20-01-2017 21:33:09 Windows Update

==================== Fehlerhafte Geräte im Gerätemanager =============


==================== Fehlereinträge in der Ereignisanzeige: =========================

Applikationsfehler:
==================
Error: (01/22/2017 12:03:59 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Ereignisfilter mit Abfrage "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" konnte im Namespace "//./root/CIMV2" nicht reaktiviert werden aufgrund des Fehlers 0x80041003. Ereignisse können nicht durch diesen Filter geschickt werden, bis dieses Problem gelöst ist.

Error: (01/21/2017 04:09:51 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 7410

Error: (01/21/2017 04:09:51 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 7410

Error: (01/21/2017 04:09:51 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (01/21/2017 03:35:07 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Ereignisfilter mit Abfrage "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" konnte im Namespace "//./root/CIMV2" nicht reaktiviert werden aufgrund des Fehlers 0x80041003. Ereignisse können nicht durch diesen Filter geschickt werden, bis dieses Problem gelöst ist.

Error: (01/21/2017 11:13:55 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Ereignisfilter mit Abfrage "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" konnte im Namespace "//./root/CIMV2" nicht reaktiviert werden aufgrund des Fehlers 0x80041003. Ereignisse können nicht durch diesen Filter geschickt werden, bis dieses Problem gelöst ist.

Error: (01/20/2017 09:27:43 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Ereignisfilter mit Abfrage "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" konnte im Namespace "//./root/CIMV2" nicht reaktiviert werden aufgrund des Fehlers 0x80041003. Ereignisse können nicht durch diesen Filter geschickt werden, bis dieses Problem gelöst ist.

Error: (01/19/2017 07:44:51 PM) (Source: SideBySide) (EventID: 80) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Users\Milos\Downloads\esetsmartinstaller_deu.exe". Fehler in
Manifest- oder Richtliniendatei "" in Zeile .
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifest.

Error: (01/19/2017 02:58:06 PM) (Source: SideBySide) (EventID: 80) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "c:\users\milos\downloads\esetsmartinstaller_deu.exe". Fehler in
Manifest- oder Richtliniendatei "" in Zeile .
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifest.

Error: (01/19/2017 02:41:27 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Ereignisfilter mit Abfrage "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" konnte im Namespace "//./root/CIMV2" nicht reaktiviert werden aufgrund des Fehlers 0x80041003. Ereignisse können nicht durch diesen Filter geschickt werden, bis dieses Problem gelöst ist.


Systemfehler:
=============
Error: (01/21/2017 11:49:48 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: Der Server "{F9717507-6651-4EDB-BFF7-AE615179BCCF}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.

Error: (01/21/2017 06:34:25 PM) (Source: Schannel) (EventID: 4119) (User: NT-AUTORITÄT)
Description: Es wurde eine schwerwiegende Warnung empfangen: 20.

Error: (01/21/2017 03:33:16 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: Der Server "{2EAD57C2-492A-4713-A340-8272B88BFF1B}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.

Error: (01/21/2017 03:32:58 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: Der Server "{3FCB7074-EC9E-4AAF-9BE3-C0E356942366}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.

Error: (01/19/2017 10:41:07 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: Der Server "{F9717507-6651-4EDB-BFF7-AE615179BCCF}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.

Error: (01/19/2017 02:41:55 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: Der Server "{5DC4F9AD-3A2B-4DF4-AC39-3FF5A19FCF4C}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.

Error: (01/18/2017 09:35:41 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: Der Server "{3FCB7074-EC9E-4AAF-9BE3-C0E356942366}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.

Error: (01/18/2017 08:05:10 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "eapihdrv" wurde aufgrund folgenden Fehlers nicht gestartet:
Der Treiber konnte nicht geladen werden.

Error: (01/18/2017 08:05:10 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: Aufgrund der Inkompatibilität mit diesem System wurde \??\C:\Users\Milos\AppData\Local\Temp\ehdrv.sys nicht geladen. Wenden Sie sich an den Softwarehersteller, um eine kompatible Version des Treibers zu erhalten.

Error: (01/18/2017 08:05:09 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "eapihdrv" wurde aufgrund folgenden Fehlers nicht gestartet:
Der Treiber konnte nicht geladen werden.


==================== Speicherinformationen ===========================

Prozessor: AMD FX(tm)-6350 Six-Core Processor
Prozentuale Nutzung des RAM: 26%
Installierter physikalischer RAM: 16284.35 MB
Verfügbarer physikalischer RAM: 11919.47 MB
Summe virtueller Speicher: 32566.89 MB
Verfügbarer virtueller Speicher: 27314.07 MB

==================== Laufwerke ================================

Drive c: () (Fixed) (Total:200.01 GB) (Free:105.96 GB) NTFS
Drive d: () (Fixed) (Total:731.01 GB) (Free:299.03 GB) NTFS

==================== MBR & Partitionstabelle ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: E034EDD1)
Partition 1: (Active) - (Size=500 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=200 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=731 GB) - (Type=07 NTFS)

==================== Ende von Addition.txt ============================
Code:
Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 22-01-2017
durchgeführt von Milos (Administrator) auf MILOS-PC (22-01-2017 12:05:40)
Gestartet von C:\Users\Milos\Downloads
Geladene Profile: Milos &  (Verfügbare Profile: Milos)
Platform: Windows 7 Ultimate Service Pack 1 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: Chrome)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AAHM\1.00.20\aaHMSvc.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.13\AsSysCtrlService.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AsusFanControlService\1.02.00\AsusFanControlService.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\Remote GO!\AssistTools\WiFi GO! Server.exe
() C:\Program Files (x86)\ASUS\AI Suite II\EasyUpdate\EzUpdt.exe
(AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\avp.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\AsRoutineController.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\USB 3.0 Boost\U3BoostSvr64.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\TurboV EVO\TurboVHelp.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.32.7\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.32.7\GoogleCrashHandler64.exe
(AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\avpui.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\EPU\EPUHelp.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Hewlett-Packard Development Company, LP) C:\Program Files\HP\HP ENVY 5530 series\Bin\ScanToPCActivationApp.exe
(Hewlett-Packard Development Company, LP) C:\Program Files\HP\HP ENVY 5530 series\Bin\HPNetworkCommunicatorCom.exe
(Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AdobeGCClient.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudPhotos.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\InstallShield Installation Information\{E6931688-DA2B-4E16-8539-3D323D69C677}\AiChargerPlus.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\Remote GO!\AssistTools\WiFile\WiFileTransfer.exe
(Elaborate Bytes AG) C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(Adobe Systems Inc.) C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\acrotray.exe
(Creative Technology Ltd) C:\Program Files (x86)\Creative\Sound Blaster JAM\Sound Blaster JAM Control Panel\SBJAM.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\AI Suite II.exe
() C:\Windows\KMS-R@1n.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\Sensor\AlertHelper\AlertHelper.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
(Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
(Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
(Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
(Skype Technologies) C:\Program Files (x86)\Skype\Updater\Updater.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvspcaps64.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\Remote GO!\AsDLNAServerReal.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
() C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe
() C:\Windows\KMS-R@1nHook.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Apple, Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\secd.exe
(AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\x64\wmi64.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Registry (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8483032 2015-05-28] (Realtek Semiconductor)
HKLM\...\Run: [ShadowPlay] => "C:\Windows\system32\rundll32.exe" C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508128 2016-07-01] (Adobe Systems Incorporated)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [176440 2016-12-06] (Apple Inc.)
HKLM-x32\...\Run: [ASUS AiChargerPlus Execute] => C:\Program Files (x86)\InstallShield Installation Information\{E6931688-DA2B-4E16-8539-3D323D69C677}\AiChargerPlus.exe [550272 2013-01-28] (ASUSTek Computer Inc.)
HKLM-x32\...\Run: [ASUS WiFi GO! FileTransfer Execute] => C:\Program Files (x86)\ASUS\AI Suite II\Remote GO!\AssistTools\WiFile\WiFileTransfer.exe [1391416 2013-06-21] (ASUSTeK Computer Inc.)
HKLM-x32\...\Run: [VirtualCloneDrive] => C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe [88984 2013-03-10] (Elaborate Bytes AG)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Acrotray.exe [1870928 2016-12-23] (Adobe Systems Inc.)
HKLM-x32\...\Run: [Sound Blaster JAM Control Panel] => C:\Program Files (x86)\Creative\Sound Blaster JAM\Sound Blaster JAM Control Panel\SBJAM.exe [902144 2014-11-27] (Creative Technology Ltd)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2016-09-22] (Oracle Corporation)
HKU\S-1-5-21-210783167-1482073297-2139249726-1000\...\Run: [HP ENVY 5530 series (NET)] => C:\Program Files\HP\HP ENVY 5530 series\Bin\ScanToPCActivationApp.exe [3487240 2014-07-21] (Hewlett-Packard Development Company, LP)
HKU\S-1-5-21-210783167-1482073297-2139249726-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8944344 2016-09-28] (Piriform Ltd)
HKU\S-1-5-21-210783167-1482073297-2139249726-1000\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [67384 2016-11-17] (Apple Inc.)
HKU\S-1-5-21-210783167-1482073297-2139249726-1000\...\Run: [iCloudDrive] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe [110392 2016-11-17] (Apple Inc.)
HKU\S-1-5-21-210783167-1482073297-2139249726-1000\...\Run: [iCloudPhotos] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudPhotos.exe [356664 2016-11-17] (Apple Inc.)
HKU\S-1-5-21-210783167-1482073297-2139249726-1000\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [27230168 2016-11-15] (Skype Technologies S.A.)
HKU\S-1-5-21-210783167-1482073297-2139249726-1000\...\Run: [MK LOL] => C:\Program Files (x86)\MKJogo\MK IM\Bin\MKIM.exe [1092296 2017-01-04] ()
HKU\S-1-5-21-210783167-1482073297-2139249726-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [HP ENVY 5530 series (NET)] => C:\Program Files\HP\HP ENVY 5530 series\Bin\ScanToPCActivationApp.exe [3487240 2014-07-21] (Hewlett-Packard Development Company, LP)
HKU\S-1-5-21-210783167-1482073297-2139249726-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8944344 2016-09-28] (Piriform Ltd)
HKU\S-1-5-21-210783167-1482073297-2139249726-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [67384 2016-11-17] (Apple Inc.)
HKU\S-1-5-21-210783167-1482073297-2139249726-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [iCloudDrive] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe [110392 2016-11-17] (Apple Inc.)
HKU\S-1-5-21-210783167-1482073297-2139249726-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [iCloudPhotos] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudPhotos.exe [356664 2016-11-17] (Apple Inc.)
HKU\S-1-5-21-210783167-1482073297-2139249726-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [27230168 2016-11-15] (Skype Technologies S.A.)
HKU\S-1-5-21-210783167-1482073297-2139249726-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [MK LOL] => C:\Program Files (x86)\MKJogo\MK IM\Bin\MKIM.exe [1092296 2017-01-04] ()
IFEO\OSPPSVC.EXE: [Debugger] KMS-R@1nHook.exe
IFEO\SppSvc.exe: [Debugger] KMS-R@1nHook.exe

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)

Tcpip\Parameters: [DhcpNameServer] 195.34.133.21 212.186.211.21
Tcpip\..\Interfaces\{3D07BB94-4660-4584-BE89-1628A21A1D8F}: [DhcpNameServer] 172.20.10.1
Tcpip\..\Interfaces\{A3BEE911-2B00-4748-9C4F-C47E99763EA2}: [DhcpNameServer] 195.34.133.21 212.186.211.21

Internet Explorer:
==================
BHO: Kaspersky Protection -> {2E38825B-8815-42CF-9126-C58BC28D4591} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\x64\IEExt\ie_plugin.dll [2016-12-06] (AO Kaspersky Lab)
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2016-12-28] (Microsoft Corporation)
BHO: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2016-10-27] (Adobe Systems Incorporated)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\URLREDIR.DLL [2016-12-28] (Microsoft Corporation)
BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\GROOVEEX.DLL [2016-12-28] (Microsoft Corporation)
BHO: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2016-10-27] (Adobe Systems Incorporated)
BHO-x32: Kaspersky Protection -> {2E38825B-8815-42CF-9126-C58BC28D4591} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\IEExt\ie_plugin.dll [2016-12-06] (AO Kaspersky Lab)
BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2016-12-28] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_112\bin\ssv.dll [2016-12-10] (Oracle Corporation)
BHO-x32: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2016-10-27] (Adobe Systems Incorporated)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\root\Office16\URLREDIR.DLL [2016-12-28] (Microsoft Corporation)
BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\root\Office16\GROOVEEX.DLL [2016-12-28] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_112\bin\jp2ssv.dll [2016-12-10] (Oracle Corporation)
BHO-x32: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2016-10-27] (Adobe Systems Incorporated)
Toolbar: HKLM - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2016-10-27] (Adobe Systems Incorporated)
Toolbar: HKLM - Kaspersky Protection Toolbar - {093F479D-712E-46CD-9E06-62E734A05F68} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\x64\IEExt\ie_plugin.dll [2016-12-06] (AO Kaspersky Lab)
Toolbar: HKLM-x32 - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2016-10-27] (Adobe Systems Incorporated)
Toolbar: HKLM-x32 - Kaspersky Protection Toolbar - {093F479D-712E-46CD-9E06-62E734A05F68} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\IEExt\ie_plugin.dll [2016-12-06] (AO Kaspersky Lab)
DPF: HKLM-x32 {D4B68B83-8710-488B-A692-D74B50BA558E} hxxp://files.creative.com/Web/softwareupdate/ocx/15113/CTPIDPDE.cab
DPF: HKLM-x32 {F6ACF75C-C32C-447B-9BEF-46B766368D29} hxxp://files.creative.com/Web/softwareupdate/ocx/150323/CTPID.cab
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-12-28] (Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-12-28] (Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-12-28] (Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-12-28] (Microsoft Corporation)

FireFox:
========
FF DefaultProfile: xkt30pix.default
FF ProfilePath: C:\Users\Milos\AppData\Roaming\Mozilla\Firefox\Profiles\xkt30pix.default [2017-01-21]
FF Homepage: Mozilla\Firefox\Profiles\xkt30pix.default -> about:home
FF Extension: (Gmail™ Notifier +) - C:\Users\Milos\AppData\Roaming\Mozilla\Firefox\Profiles\xkt30pix.default\Extensions\jid1-sqmEAwSoa3FZPc@jetpack.xpi [2016-11-10]
FF Extension: (Video DownloadHelper) - C:\Users\Milos\AppData\Roaming\Mozilla\Firefox\Profiles\xkt30pix.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2017-01-10]
FF Extension: (Adblock Plus) - C:\Users\Milos\AppData\Roaming\Mozilla\Firefox\Profiles\xkt30pix.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-11-28]
FF Extension: (DownThemAll!) - C:\Users\Milos\AppData\Roaming\Mozilla\Firefox\Profiles\xkt30pix.default\Extensions\{DDC359D1-844A-42a7-9AA1-88A850A938A8}.xpi [2016-11-10]
FF Extension: (Adobe Acrobat DC - Create PDF) - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn [2017-01-11]
FF HKLM\...\Firefox\Extensions: [light_plugin_F6F079488B53499DB99380A7E11A93F6@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\FFExt\light_plugin_firefox\addon.xpi
FF Extension: (Kaspersky Protection) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\FFExt\light_plugin_firefox\addon.xpi [2016-12-06]
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension.15@web2pdf.adobedotcom] - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn
FF HKLM-x32\...\Firefox\Extensions: [light_plugin_F6F079488B53499DB99380A7E11A93F6@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\FFExt\light_plugin_firefox\addon.xpi
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_24_0_0_194.dll [2017-01-10] ()
FF Plugin: @microsoft.com/GENUINE -> disabled [Keine Datei]
FF Plugin: @videolan.org/vlc,version=2.2.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2015-07-29] (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_24_0_0_194.dll [2017-01-10] ()
FF Plugin-x32: @java.com/DTPlugin,version=11.112.2 -> C:\Program Files (x86)\Java\jre1.8.0_112\bin\dtplugin\npDeployJava1.dll [2016-12-10] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.112.2 -> C:\Program Files (x86)\Java\jre1.8.0_112\bin\plugin2\npjp2.dll [2016-12-10] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Keine Datei]
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2016-12-28] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2016-12-28] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2016-12-11] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2016-12-11] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-17] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-17] (Google Inc.)
FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2016-12-23] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2015-07-29] (Adobe Systems)

Chrome:
=======
CHR HomePage: Default -> hxxps://www.google.at/
CHR StartupUrls: Default -> "hxxp://google.de/","hxxp://www.google.com"
CHR Profile: C:\Users\Milos\AppData\Local\Google\Chrome\User Data\Default [2017-01-22]
CHR Extension: (Google Präsentationen) - C:\Users\Milos\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-11-22]
CHR Extension: (Google Docs) - C:\Users\Milos\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-11-22]
CHR Extension: (Google Drive) - C:\Users\Milos\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-11-22]
CHR Extension: (YouTube) - C:\Users\Milos\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-11-22]
CHR Extension: (GMX MailCheck) - C:\Users\Milos\AppData\Local\Google\Chrome\User Data\Default\Extensions\camnampocfohlcgbajligmemmabnljcm [2017-01-13]
CHR Extension: (Adblock Plus) - C:\Users\Milos\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2016-11-23]
CHR Extension: (Adobe Acrobat) - C:\Users\Milos\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2017-01-16]
CHR Extension: (Google Play Musik) - C:\Users\Milos\AppData\Local\Google\Chrome\User Data\Default\Extensions\fahmaaghhglfmonjliepjlchgpgfmobi [2017-01-20]
CHR Extension: (Google Tabellen) - C:\Users\Milos\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-11-22]
CHR Extension: (Kaspersky Protection) - C:\Users\Milos\AppData\Local\Google\Chrome\User Data\Default\Extensions\fhoibnponjcgjgcnfacekaijdbbplhib [2016-11-22]
CHR Extension: (Google Docs Offline) - C:\Users\Milos\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-11-23]
CHR Extension: (Copy clean Links) - C:\Users\Milos\AppData\Local\Google\Chrome\User Data\Default\Extensions\mccgphdljaoibmimmngmeehgdocpcajn [2017-01-08]
CHR Extension: (Google Mail-Checker) - C:\Users\Milos\AppData\Local\Google\Chrome\User Data\Default\Extensions\mihcahmgecmbnbcchbopgniflfhgnkff [2016-11-23]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Milos\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-01-19]
CHR Extension: (Google Mail) - C:\Users\Milos\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-11-22]
CHR Extension: (Chrome Media Router) - C:\Users\Milos\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-12-15]
CHR HKLM\...\Chrome\Extension: [fhoibnponjcgjgcnfacekaijdbbplhib] - hxxps://chrome.google.com/webstore/detail/fhoibnponjcgjgcnfacekaijdbbplhib
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [fhoibnponjcgjgcnfacekaijdbbplhib] - hxxps://chrome.google.com/webstore/detail/fhoibnponjcgjgcnfacekaijdbbplhib

==================== Dienste (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2207960 2016-09-26] (Adobe Systems, Incorporated)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2016-09-22] (Apple Inc.)
R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe [920736 2016-11-10] ()
R2 asHmComSvc; C:\Program Files (x86)\ASUS\AAHM\1.00.20\aaHMSvc.exe [951936 2016-11-10] (ASUSTeK Computer Inc.)
R2 AsSysCtrlService; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.13\AsSysCtrlService.exe [149120 2016-11-10] (ASUSTeK Computer Inc.)
R2 AsusFanControlService; C:\Program Files (x86)\ASUS\AsusFanControlService\1.02.00\AsusFanControlService.exe [1632256 2016-11-10] (ASUSTeK Computer Inc.) [Datei ist nicht signiert]
R2 AVP17.0.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\avp.exe [241544 2016-06-28] (AO Kaspersky Lab)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [3699904 2016-12-28] (Microsoft Corporation)
S2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [31776 2016-12-07] (HP Inc.)
S3 klvssbrigde64; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\x64\vssbridge64.exe [77328 2016-06-28] (AO Kaspersky Lab)
R2 KMS-R@1n; C:\Windows\KMS-R@1n.exe [26112 2016-11-12] () [Datei ist nicht signiert]
S2 KSDE1.0.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 1.0\ksde.exe [241544 2016-06-28] (AO Kaspersky Lab)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1514464 2016-03-10] (Malwarebytes)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1136608 2016-03-10] (Malwarebytes)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [462784 2016-12-13] (NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [462784 2016-12-13] (NVIDIA Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [459832 2016-12-11] (NVIDIA Corporation)
R2 NVIDIA Wireless Controller Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe [1163712 2016-12-13] (NVIDIA Corporation)
R2 NvTelemetryContainer; C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [425408 2016-12-13] (NVIDIA Corporation)
S2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2016-02-18] (Microsoft Corporation)

===================== Treiber (Nicht auf der Ausnahmeliste) ======================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R3 AiChargerPlus; C:\Windows\SysWow64\drivers\AiChargerPlus.sys [14848 2013-01-28] (ASUSTek Computer Inc.)
R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2014-01-28] ()
R1 AsUpIO; C:\Windows\SysWow64\drivers\AsUpIO.sys [14464 2013-01-15] ()
R3 ASUSFILTER; C:\Windows\SysWow64\drivers\ASUSFILTER.sys [46152 2011-09-20] (MCCI Corporation)
S3 ASUSstpt; C:\Windows\System32\DRIVERS\ASUSstpt.sys [27392 2013-03-28] (MCCI Corporation)
S3 ASUSumsc; C:\Windows\System32\DRIVERS\ASUSumsc.sys [151808 2013-03-28] (MCCI Corporation)
R0 cm_km; C:\Windows\System32\DRIVERS\cm_km.sys [238936 2016-06-10] (AO Kaspersky Lab)
R0 kl1; C:\Windows\System32\DRIVERS\kl1.sys [554416 2016-06-02] (AO Kaspersky Lab)
R0 klbackupdisk; C:\Windows\System32\DRIVERS\klbackupdisk.sys [63920 2016-06-07] (AO Kaspersky Lab)
R1 klbackupflt; C:\Windows\System32\DRIVERS\klbackupflt.sys [86352 2016-06-15] (AO Kaspersky Lab)
R2 kldisk; C:\Windows\System32\DRIVERS\kldisk.sys [78216 2016-05-31] (AO Kaspersky Lab)
R3 klflt; C:\Windows\System32\DRIVERS\klflt.sys [189264 2016-06-26] (AO Kaspersky Lab)
R1 klhk; C:\Windows\System32\DRIVERS\klhk.sys [305496 2016-09-12] (AO Kaspersky Lab)
R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [1036512 2016-12-06] (AO Kaspersky Lab)
R1 KLIM6; C:\Windows\System32\DRIVERS\klim6.sys [57936 2016-12-06] (AO Kaspersky Lab)
R3 klkbdflt; C:\Windows\System32\DRIVERS\klkbdflt.sys [52144 2016-05-19] (AO Kaspersky Lab)
R3 klmouflt; C:\Windows\System32\DRIVERS\klmouflt.sys [41648 2015-06-07] (Kaspersky Lab ZAO)
R1 klpd; C:\Windows\System32\DRIVERS\klpd.sys [45488 2016-05-31] (AO Kaspersky Lab)
R3 kltap; C:\Windows\System32\DRIVERS\kltap.sys [52152 2016-06-07] (The OpenVPN Project)
R1 kltdi; C:\Windows\System32\DRIVERS\kltdi.sys [75696 2016-05-17] (AO Kaspersky Lab)
R1 Klwtp; C:\Windows\System32\DRIVERS\klwtp.sys [134880 2016-12-06] (AO Kaspersky Lab)
R1 kneps; C:\Windows\System32\DRIVERS\kneps.sys [194480 2016-06-14] (AO Kaspersky Lab)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [27008 2016-03-10] (Malwarebytes)
R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [192216 2017-01-22] (Malwarebytes)
R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [64896 2016-03-10] (Malwarebytes Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [27584 2016-12-13] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [46016 2016-12-13] (NVIDIA Corporation)
S3 ssdevfactory; C:\Windows\System32\DRIVERS\ssdevfactory.sys [41816 2016-11-03] (SteelSeries ApS)
S3 UHSfiltv; C:\Windows\System32\drivers\UHSfiltv.sys [23552 2013-05-31] (Creative Technology Ltd.)
S3 VGPU; System32\drivers\rdvgkmd.sys [X]

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2017-01-22 12:05 - 2017-01-22 12:05 - 00000000 ____D C:\Users\Milos\Downloads\FRST-OlderVersion
2017-01-21 15:31 - 2017-01-21 15:31 - 00038807 _____ C:\Users\Milos\Documents\Vorbereitungsbrief_Frau Isakovic.odt
2017-01-19 19:55 - 2017-01-19 19:57 - 162057150 _____ C:\Users\Milos\Downloads\[U & F] Menche (u.a.), Pflege konkret - Innere Medizin; Lehrbuch für Pflegeberufe (6. Aufl. 2013, Vers. 2).pdf
2017-01-19 19:55 - 2017-01-19 19:56 - 100455091 _____ C:\Users\Milos\Downloads\[Thiem] I care - Krankheitslehre (1. Auflage, 2015).pdf
2017-01-19 19:44 - 2013-08-25 22:06 - 29963608 _____ C:\Users\Milos\Desktop\[Spr.] Koletzko (Hrsg.), Kinder- und Jugendmedizin (14. Aufl. 2013).pdf
2017-01-19 19:35 - 2017-01-19 19:35 - 46166664 _____ C:\Users\Milos\Downloads\premiumleecher.com_Kd-Spr2013Speer-P.zip
2017-01-19 19:28 - 2017-01-19 19:28 - 28227859 _____ C:\Users\Milos\Downloads\premiumleecher.com_Kd-Spr2013Koletzko-KuJ.zip
2017-01-19 19:22 - 2017-01-19 19:22 - 104296878 _____ C:\Users\Milos\Downloads\premiumleecher.com_UroThie2012Stein-KiKuP-20151125.zip
2017-01-18 20:03 - 2017-01-18 20:03 - 02870984 _____ (ESET) C:\Users\Milos\Downloads\esetsmartinstaller_deu.exe
2017-01-17 19:04 - 2017-01-17 19:05 - 00009996 _____ C:\Users\Milos\Downloads\Gruppeneinteilung (5).xlsx
2017-01-17 19:04 - 2017-01-17 19:05 - 00009996 _____ C:\Users\Milos\Downloads\Gruppeneinteilung (4).xlsx
2017-01-17 19:04 - 2017-01-17 19:05 - 00009996 _____ C:\Users\Milos\Downloads\Gruppeneinteilung (3).xlsx
2017-01-17 19:03 - 2017-01-17 19:03 - 00009996 _____ C:\Users\Milos\Downloads\Gruppeneinteilung (2).xlsx
2017-01-17 12:36 - 2017-01-17 19:08 - 00008770 _____ C:\Users\Milos\Desktop\Einteilung neu.xlsx
2017-01-17 12:00 - 2017-01-17 12:02 - 00000000 ____D C:\AdwCleaner
2017-01-17 11:59 - 2017-01-17 14:52 - 00001459 _____ C:\Users\Milos\Desktop\mbam.txt
2017-01-17 11:59 - 2017-01-17 11:59 - 03988944 _____ C:\Users\Milos\Downloads\AdwCleaner_6.042.exe
2017-01-17 11:05 - 2017-01-22 12:04 - 00192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2017-01-17 11:05 - 2017-01-17 11:05 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2017-01-17 11:05 - 2017-01-17 11:05 - 00000000 ____D C:\ProgramData\Malwarebytes
2017-01-17 11:05 - 2017-01-17 11:05 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2017-01-17 11:05 - 2016-03-10 14:09 - 00064896 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2017-01-17 11:05 - 2016-03-10 14:08 - 00140672 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamchameleon.sys
2017-01-17 11:05 - 2016-03-10 14:08 - 00027008 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
2017-01-17 11:03 - 2017-01-17 11:04 - 22851472 _____ (Malwarebytes ) C:\Users\Milos\Downloads\mbam-setup-2.2.1.1043.exe
2017-01-16 21:25 - 2017-01-17 12:07 - 00036873 _____ C:\Users\Milos\Downloads\Addition.txt
2017-01-16 21:24 - 2017-01-22 12:05 - 00030575 _____ C:\Users\Milos\Downloads\FRST.txt
2017-01-16 21:24 - 2017-01-22 12:05 - 00000000 ____D C:\FRST
2017-01-16 21:23 - 2017-01-22 12:05 - 02420736 _____ (Farbar) C:\Users\Milos\Downloads\FRST64.exe
2017-01-16 20:52 - 2017-01-16 20:52 - 00503040 _____ C:\Users\Milos\Downloads\ExploitedCollegeGirls 17 01 12 Andria And Lilly.nzb
2017-01-16 20:06 - 2017-01-16 20:06 - 00229778 _____ C:\Users\Milos\Downloads\Entwicklung des Kindes- Kinder im Krankenhaus-Bindung .pdf
2017-01-16 20:05 - 2017-01-16 20:05 - 01622862 _____ C:\Users\Milos\Downloads\Bindung durch Berührung.pdf
2017-01-16 20:05 - 2017-01-16 20:05 - 00153072 _____ C:\Users\Milos\Downloads\Bindungsstörungen Kinder.pdf
2017-01-16 19:24 - 2017-01-16 19:24 - 00382038 _____ C:\Users\Milos\Downloads\out.pdf
2017-01-16 19:06 - 2017-01-16 19:06 - 48910262 _____ C:\Users\Milos\Downloads\[Thiem] Duale Reihe - Pädiatrie (4.Auflage, 2012).pdf
2017-01-15 20:29 - 2017-01-15 20:29 - 00115995 _____ C:\Users\Milos\Downloads\Motivationsschreiben-Tajinder-Ram.pdf
2017-01-15 19:10 - 2017-01-15 19:10 - 00009951 _____ C:\Users\Milos\Downloads\Gruppeneinteilung (1).xlsx
2017-01-14 18:41 - 2017-01-14 18:41 - 00187144 _____ C:\Users\Milos\Downloads\Prüfungsfragen (1) (1).pdf
2017-01-14 18:38 - 2017-01-14 18:38 - 00725394 _____ C:\Users\Milos\Downloads\Säuglingsernährung und Ernährung der Mutter.pdf
2017-01-14 18:38 - 2017-01-14 18:38 - 00455780 _____ C:\Users\Milos\Downloads\Säuglingsernähung.pdf
2017-01-14 18:38 - 2017-01-14 18:38 - 00455780 _____ C:\Users\Milos\Downloads\Säuglingsernähung (1).pdf
2017-01-14 18:38 - 2017-01-14 18:38 - 00187144 _____ C:\Users\Milos\Downloads\Prüfungsfragen (1).pdf
2017-01-14 11:49 - 2017-01-14 11:49 - 00187144 _____ C:\Users\Milos\Downloads\Prüfungsfragen.pdf
2017-01-12 21:28 - 2017-01-12 21:28 - 00000000 ____D C:\Users\Milos\Documents\OneNote-Notizbücher
2017-01-11 21:34 - 2017-01-11 21:34 - 00142181 _____ C:\Users\Milos\Downloads\Rechnung_917706740117.pdf
2017-01-11 15:28 - 2017-01-11 15:28 - 00309642 _____ C:\Users\Milos\Downloads\stundentafel_hak_2014_NEU.pdf
2017-01-11 15:27 - 2017-01-11 15:27 - 00292244 _____ C:\Users\Milos\Downloads\Schwerpunkte_HAK.pdf
2017-01-11 15:26 - 2017-01-11 15:26 - 00473584 _____ C:\Users\Milos\Downloads\cluster+modul.pdf
2017-01-11 15:24 - 2017-01-11 15:24 - 00189862 _____ C:\Users\Milos\Downloads\HAK_NEU.pdf
2017-01-11 14:43 - 2017-01-05 19:55 - 00154856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2017-01-11 14:43 - 2017-01-05 19:55 - 00095464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2017-01-11 14:43 - 2017-01-05 19:52 - 01460736 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2017-01-11 14:43 - 2017-01-05 19:52 - 01212928 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2017-01-11 14:43 - 2017-01-05 19:52 - 00730624 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2017-01-11 14:43 - 2017-01-05 19:52 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2017-01-11 14:43 - 2017-01-05 19:52 - 00463872 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2017-01-11 14:43 - 2017-01-05 19:52 - 00345600 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2017-01-11 14:43 - 2017-01-05 19:52 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2017-01-11 14:43 - 2017-01-05 19:52 - 00312320 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2017-01-11 14:43 - 2017-01-05 19:52 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2017-01-11 14:43 - 2017-01-05 19:52 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2017-01-11 14:43 - 2017-01-05 19:52 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2017-01-11 14:43 - 2017-01-05 19:52 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2017-01-11 14:43 - 2017-01-05 19:52 - 00123904 _____ (Microsoft Corporation) C:\Windows\system32\bcrypt.dll
2017-01-11 14:43 - 2017-01-05 19:52 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2017-01-11 14:43 - 2017-01-05 19:52 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2017-01-11 14:43 - 2017-01-05 19:52 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2017-01-11 14:43 - 2017-01-05 19:52 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2017-01-11 14:43 - 2017-01-05 19:52 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2017-01-11 14:43 - 2017-01-05 19:52 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2017-01-11 14:43 - 2017-01-05 18:43 - 00666112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2017-01-11 14:43 - 2017-01-05 18:43 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2017-01-11 14:43 - 2017-01-05 18:43 - 00342528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2017-01-11 14:43 - 2017-01-05 18:43 - 00261120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2017-01-11 14:43 - 2017-01-05 18:43 - 00254464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2017-01-11 14:43 - 2017-01-05 18:43 - 00223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2017-01-11 14:43 - 2017-01-05 18:43 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2017-01-11 14:43 - 2017-01-05 18:43 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2017-01-11 14:43 - 2017-01-05 18:43 - 00141312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpchttp.dll
2017-01-11 14:43 - 2017-01-05 18:43 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2017-01-11 14:43 - 2017-01-05 18:43 - 00082944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcrypt.dll
2017-01-11 14:43 - 2017-01-05 18:43 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2017-01-11 14:43 - 2017-01-05 18:43 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2017-01-11 14:43 - 2017-01-05 18:43 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2017-01-11 14:43 - 2017-01-05 18:43 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2017-01-11 14:43 - 2017-01-05 18:42 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2017-01-11 14:43 - 2017-01-05 18:32 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2017-01-11 14:43 - 2017-01-05 18:25 - 00159744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2017-01-11 14:43 - 2017-01-05 18:24 - 00291328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2017-01-11 14:43 - 2017-01-05 18:24 - 00129536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2017-01-11 14:43 - 2017-01-05 18:24 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2017-01-11 14:43 - 2017-01-05 18:23 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2017-01-11 14:43 - 2017-01-05 18:19 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll
2017-01-10 17:01 - 2017-01-10 17:01 - 03031269 _____ C:\Users\Milos\Downloads\GI-Leberzirrhose-Pankreatitis-Galle.pdf
2017-01-09 19:56 - 2017-01-09 19:56 - 11753573 _____ C:\Users\Milos\Downloads\Skript-Pflege in speziellen Situationen 1 (2).pdf
2017-01-09 17:40 - 2017-01-09 17:40 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_netaapl64_01009.Wdf
2017-01-09 17:33 - 2017-01-09 17:33 - 00185511 _____ C:\Users\Milos\Downloads\FuckingGlasses 16 10 28 Sophia Leone.nzb
2017-01-09 15:48 - 2017-01-16 16:20 - 00009996 _____ C:\Users\Milos\Desktop\Gruppeneinteilung.xlsx
2017-01-09 15:36 - 2017-01-09 15:48 - 00009888 _____ C:\Users\Milos\Downloads\Gruppeneinteilung.xlsx
2017-01-08 20:27 - 2017-01-08 20:27 - 11753573 _____ C:\Users\Milos\Downloads\Skript-Pflege in speziellen Situationen 1 (1).pdf
2017-01-08 17:28 - 2017-01-08 17:28 - 00029781 _____ C:\Users\Milos\Downloads\AA_PFISS_3 Sem_2016_Asthma_bronchiale.pdf
2017-01-08 17:25 - 2017-01-08 17:25 - 00029781 _____ C:\Users\Milos\Desktop\AA_PFISS_3 Sem_2016_Asthma_bronchiale.pdf
2017-01-08 17:19 - 2017-01-08 17:19 - 00015799 _____ C:\Users\Milos\Downloads\2013-Medikamentenplan.pdf
2017-01-08 00:03 - 2017-01-08 00:03 - 00391432 _____ C:\Users\Milos\Downloads\Sing.2016.TS.MD.GERMAN.XViD-SPECTRE{{UsenetRevolution}}.nzb
2017-01-06 19:53 - 2016-12-11 19:23 - 00134712 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2017-01-06 19:53 - 2016-09-09 19:25 - 00269600 _____ C:\Windows\SysWOW64\vulkan-1.dll
2017-01-06 19:53 - 2016-09-09 19:25 - 00261920 _____ C:\Windows\system32\vulkan-1.dll
2017-01-06 19:53 - 2016-09-09 19:25 - 00110880 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2017-01-06 19:53 - 2016-09-09 19:24 - 00125216 _____ C:\Windows\system32\vulkaninfo.exe
2017-01-06 19:51 - 2016-12-12 03:37 - 40125496 _____ C:\Windows\system32\nvcompiler.dll
2017-01-06 19:51 - 2016-12-12 03:37 - 35222976 _____ C:\Windows\SysWOW64\nvcompiler.dll
2017-01-06 19:51 - 2016-12-12 03:37 - 34703416 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2017-01-06 19:51 - 2016-12-12 03:37 - 28138432 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2017-01-06 19:51 - 2016-12-12 03:37 - 14073400 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2017-01-06 19:51 - 2016-12-12 03:37 - 10912744 _____ (NVIDIA Corporation) C:\Windows\system32\nvptxJitCompiler.dll
2017-01-06 19:51 - 2016-12-12 03:37 - 10795312 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2017-01-06 19:51 - 2016-12-12 03:37 - 10345696 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2017-01-06 19:51 - 2016-12-12 03:37 - 09151216 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2017-01-06 19:51 - 2016-12-12 03:37 - 08913328 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvptxJitCompiler.dll
2017-01-06 19:51 - 2016-12-12 03:37 - 08753832 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2017-01-06 19:51 - 2016-12-12 03:37 - 03640376 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2017-01-06 19:51 - 2016-12-12 03:37 - 03206080 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2017-01-06 19:51 - 2016-12-12 03:37 - 01953336 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6437633.dll
2017-01-06 19:51 - 2016-12-12 03:37 - 01586744 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6437633.dll
2017-01-06 19:51 - 2016-12-12 03:37 - 01036224 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2017-01-06 19:51 - 2016-12-12 03:37 - 00975416 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2017-01-06 19:51 - 2016-12-12 03:37 - 00944184 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2017-01-06 19:51 - 2016-12-12 03:37 - 00896056 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2017-01-06 19:51 - 2016-12-12 03:37 - 00683640 _____ (NVIDIA Corporation) C:\Windows\system32\nvfatbinaryLoader.dll
2017-01-06 19:51 - 2016-12-12 03:37 - 00572888 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvfatbinaryLoader.dll
2017-01-06 19:51 - 2016-12-12 03:37 - 00521096 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2017-01-06 19:51 - 2016-12-12 03:37 - 00438208 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2017-01-06 19:51 - 2016-12-12 03:37 - 00435904 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2017-01-06 19:51 - 2016-12-12 03:37 - 00407248 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2017-01-06 19:51 - 2016-12-12 03:37 - 00388544 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2017-01-06 19:51 - 2016-12-12 03:37 - 00170688 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2017-01-06 19:51 - 2016-12-12 03:37 - 00153184 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2017-01-06 19:51 - 2016-12-12 03:37 - 00148016 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2017-01-06 19:51 - 2016-12-12 03:37 - 00131536 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2017-01-05 14:10 - 2017-01-05 14:10 - 11753573 _____ C:\Users\Milos\Downloads\Skript-Pflege in speziellen Situationen 1.pdf
2017-01-05 13:48 - 2017-01-05 13:48 - 107773116 _____ C:\Users\Milos\Downloads\[Thiem] I care Pflege (2015).pdf
2017-01-04 22:10 - 2017-01-04 22:10 - 02071253 _____ C:\Users\Milos\Downloads\MODSKINPRO_6.24.3.rar
2017-01-04 22:10 - 2017-01-04 22:10 - 00000000 ____D C:\HoTroLoL
2017-01-04 21:58 - 2017-01-04 21:58 - 00000000 ____D C:\Users\Milos\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MKJogo
2017-01-04 21:58 - 2017-01-04 21:58 - 00000000 ____D C:\Program Files (x86)\MKJogo
2017-01-04 21:53 - 2017-01-04 21:53 - 00000623 _____ C:\Users\Milos\Downloads\Riot-Points-Adder-League-of-legends.rar.nzb
2017-01-04 21:52 - 2017-01-04 21:52 - 00011151 _____ C:\Users\Milos\Downloads\Free Riotpoints 100%.rar.nzb
2016-12-23 11:01 - 2016-12-23 11:07 - 00000000 ____D C:\Users\Milos\AppData\Roaming\ImgBurn
2016-12-23 10:57 - 2016-12-23 10:57 - 03101913 _____ (LIGHTNING UK!) C:\Users\Milos\Downloads\Setup_ImgBurn_2.5.8.0.exe
2016-12-23 10:57 - 2016-12-23 10:57 - 00001877 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ImgBurn.lnk
2016-12-23 10:57 - 2016-12-23 10:57 - 00001865 _____ C:\Users\Public\Desktop\ImgBurn.lnk
2016-12-23 10:57 - 2016-12-23 10:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ImgBurn
2016-12-23 10:57 - 2016-12-23 10:57 - 00000000 ____D C:\Program Files (x86)\ImgBurn

==================== Ein Monat: Geänderte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2017-01-22 12:06 - 2016-11-18 16:59 - 00000000 ____D C:\ProgramData\Kaspersky Lab
2017-01-22 12:04 - 2016-12-09 17:54 - 00000000 ___RD C:\Users\Milos\iCloudDrive
2017-01-22 12:04 - 2016-11-12 18:41 - 00000000 ____D C:\Users\Milos\AppData\Roaming\Skype
2017-01-22 12:04 - 2016-11-10 16:25 - 01048576 _____ C:\Windows\PE_Rom.dll
2017-01-22 12:04 - 2016-11-10 16:08 - 00000000 ____D C:\ProgramData\NVIDIA
2017-01-22 12:03 - 2016-11-17 13:02 - 00000000 ____D C:\Users\Public\Documents\AdobeGC
2017-01-22 12:03 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2017-01-21 23:49 - 2016-12-20 17:37 - 00005943 _____ C:\ProgramData\NvTelemetryContainer.log_backup1
2017-01-21 23:23 - 2016-11-12 18:19 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2017-01-21 19:17 - 2016-11-12 19:23 - 00002453 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat DC.lnk
2017-01-21 15:43 - 2009-07-14 05:45 - 00031808 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2017-01-21 15:43 - 2009-07-14 05:45 - 00031808 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2017-01-21 15:41 - 2016-11-10 16:30 - 00000000 _____ C:\Windows\Path.idx
2017-01-21 11:55 - 2016-12-09 17:54 - 00000000 ____D C:\Users\Milos\AppData\Local\686FB969-E721-4E59-875C-E0E020D647EB.aplzod
2017-01-17 18:13 - 2016-11-19 16:01 - 00000000 ____D C:\Users\Milos\AppData\LocalLow\Mozilla
2017-01-17 11:55 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\Globalization
2017-01-17 08:39 - 2016-11-13 15:29 - 00000000 ____D C:\Users\Milos\AppData\Roaming\vlc
2017-01-14 18:43 - 2016-11-12 18:19 - 00000000 ____D C:\Users\Milos\AppData\Local\Adobe
2017-01-14 18:43 - 2016-11-10 15:42 - 00000000 ____D C:\Users\Milos\AppData\Roaming\Adobe
2017-01-14 15:39 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\inf
2017-01-14 09:46 - 2016-11-12 14:20 - 00000000 ____D C:\Users\Milos\AppData\Local\CrashDumps
2017-01-13 20:41 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\rescache
2017-01-12 15:06 - 2016-11-12 18:49 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2017-01-12 15:05 - 2016-11-12 18:47 - 00000000 ____D C:\Program Files (x86)\Microsoft Office
2017-01-11 21:58 - 2016-11-14 20:32 - 00000000 ____D C:\Windows\system32\MRT
2017-01-11 21:57 - 2016-11-10 15:34 - 135657872 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2017-01-11 21:45 - 2016-11-12 19:23 - 00002037 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat Distiller DC.lnk
2017-01-11 21:43 - 2016-11-12 19:24 - 00004476 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task
2017-01-10 16:23 - 2016-11-12 18:19 - 00802904 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2017-01-10 16:23 - 2016-11-12 18:19 - 00144472 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2017-01-10 16:23 - 2016-11-12 18:19 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2017-01-10 16:23 - 2016-11-12 18:19 - 00000000 ____D C:\Windows\system32\Macromed
2017-01-10 16:23 - 2016-11-10 16:21 - 00000000 ____D C:\Windows\SysWOW64\Macromed
2017-01-06 19:53 - 2016-11-10 16:13 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2017-01-06 19:53 - 2016-11-10 16:12 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2017-01-05 12:13 - 2011-04-12 08:43 - 00698688 _____ C:\Windows\system32\perfh007.dat
2017-01-05 12:13 - 2011-04-12 08:43 - 00148828 _____ C:\Windows\system32\perfc007.dat
2017-01-05 12:13 - 2009-07-14 06:13 - 01618320 _____ C:\Windows\system32\PerfStringBackup.INI
2016-12-28 00:45 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\NDF

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======

2016-11-12 19:05 - 2016-11-12 19:05 - 0000057 _____ () C:\ProgramData\Ament.ini
2016-11-10 15:59 - 2016-11-10 15:59 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
2016-12-20 17:37 - 2017-01-22 12:04 - 0002938 _____ () C:\ProgramData\NvTelemetryContainer.log
2016-12-20 17:37 - 2017-01-21 23:49 - 0005943 _____ () C:\ProgramData\NvTelemetryContainer.log_backup1

==================== Bamital & volsnap ======================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\Windows\system32\winlogon.exe => Datei ist digital signiert
C:\Windows\system32\wininit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\wininit.exe => Datei ist digital signiert
C:\Windows\explorer.exe => Datei ist digital signiert
C:\Windows\SysWOW64\explorer.exe => Datei ist digital signiert
C:\Windows\system32\svchost.exe => Datei ist digital signiert
C:\Windows\SysWOW64\svchost.exe => Datei ist digital signiert
C:\Windows\system32\services.exe => Datei ist digital signiert
C:\Windows\system32\User32.dll => Datei ist digital signiert
C:\Windows\SysWOW64\User32.dll => Datei ist digital signiert
C:\Windows\system32\userinit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\userinit.exe => Datei ist digital signiert
C:\Windows\system32\rpcss.dll => Datei ist digital signiert
C:\Windows\system32\dnsapi.dll => Datei ist digital signiert
C:\Windows\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert

LastRegBack: 2017-01-13 20:33

==================== Ende von FRST.txt ============================
Protection Log 1
Code:
Malwarebytes Anti-Malware
www.malwarebytes.org


Protection, 22.01.2017 12:03, SYSTEM, MILOS-PC, Protection, Malware Protection, Starting,
Protection, 22.01.2017 12:03, SYSTEM, MILOS-PC, Protection, Malware Protection, Started,
Protection, 22.01.2017 12:03, SYSTEM, MILOS-PC, Protection, Malicious Website Protection, Starting,
Protection, 22.01.2017 12:04, SYSTEM, MILOS-PC, Protection, Malicious Website Protection, Started,
Update, 22.01.2017 12:04, SYSTEM, MILOS-PC, Scheduler, Malware Database, 2017.1.21.5, 2017.1.22.1,
Protection, 22.01.2017 12:04, SYSTEM, MILOS-PC, Protection, Refresh, Starting,
Protection, 22.01.2017 12:04, SYSTEM, MILOS-PC, Protection, Malicious Website Protection, Stopping,
Protection, 22.01.2017 12:04, SYSTEM, MILOS-PC, Protection, Malicious Website Protection, Stopped,
Protection, 22.01.2017 12:04, SYSTEM, MILOS-PC, Protection, Refresh, Success,
Protection, 22.01.2017 12:04, SYSTEM, MILOS-PC, Protection, Malicious Website Protection, Starting,
Protection, 22.01.2017 12:04, SYSTEM, MILOS-PC, Protection, Malicious Website Protection, Started,
Detection, 22.01.2017 12:04, SYSTEM, MILOS-PC, Protection, Malicious Website Protection, IP, 38.134.106.124, rrb.attitudesculpable.com, 49359, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 22.01.2017 12:04, SYSTEM, MILOS-PC, Protection, Malicious Website Protection, IP, 38.134.106.124, rrb.attitudesculpable.com, 49359, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 22.01.2017 12:04, SYSTEM, MILOS-PC, Protection, Malicious Website Protection, IP, 38.134.106.124, rrb.attitudesculpable.com, 49361, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 22.01.2017 12:04, SYSTEM, MILOS-PC, Protection, Malicious Website Protection, IP, 38.134.106.124, rrb.attitudesculpable.com, 49360, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 22.01.2017 12:04, SYSTEM, MILOS-PC, Protection, Malicious Website Protection, IP, 38.134.106.124, rrb.attitudesculpable.com, 49368, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 22.01.2017 12:05, SYSTEM, MILOS-PC, Protection, Malicious Website Protection, IP, 38.134.106.119, yzy.admanaerofoil.com, 49378, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 22.01.2017 12:05, SYSTEM, MILOS-PC, Protection, Malicious Website Protection, IP, 38.134.106.119, yzy.admanaerofoil.com, 49378, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 22.01.2017 12:05, SYSTEM, MILOS-PC, Protection, Malicious Website Protection, IP, 38.134.106.119, xco.versussulphide.com, 49379, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 22.01.2017 12:05, SYSTEM, MILOS-PC, Protection, Malicious Website Protection, IP, 38.134.106.119, xco.versussulphide.com, 49379, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 22.01.2017 12:05, SYSTEM, MILOS-PC, Protection, Malicious Website Protection, IP, 38.134.106.119, xco.versussulphide.com, 49380, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 22.01.2017 12:05, SYSTEM, MILOS-PC, Protection, Malicious Website Protection, IP, 38.134.106.119, yzy.admanaerofoil.com, 49381, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 22.01.2017 12:05, SYSTEM, MILOS-PC, Protection, Malicious Website Protection, IP, 38.134.106.119, xco.versussulphide.com, 49382, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 22.01.2017 12:05, SYSTEM, MILOS-PC, Protection, Malicious Website Protection, IP, 38.134.106.119, yzy.admanaerofoil.com, 49383, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 22.01.2017 12:05, SYSTEM, MILOS-PC, Protection, Malicious Website Protection, IP, 38.134.106.119, yzy.admanaerofoil.com, 49449, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 22.01.2017 12:05, SYSTEM, MILOS-PC, Protection, Malicious Website Protection, IP, 38.134.106.119, xco.versussulphide.com, 49450, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,

(end)
Protection Log 2
Code:
Malwarebytes Anti-Malware
www.malwarebytes.org


Protection, 20.01.2017 21:27, SYSTEM, MILOS-PC, Protection, Malware Protection, Starting,
Protection, 20.01.2017 21:27, SYSTEM, MILOS-PC, Protection, Malware Protection, Started,
Protection, 20.01.2017 21:27, SYSTEM, MILOS-PC, Protection, Malicious Website Protection, Starting,
Protection, 20.01.2017 21:27, SYSTEM, MILOS-PC, Protection, Malicious Website Protection, Started,
Update, 20.01.2017 21:28, SYSTEM, MILOS-PC, Scheduler, IP Database, 2017.1.18.2, 2017.1.20.1,
Update, 20.01.2017 21:28, SYSTEM, MILOS-PC, Scheduler, Domain Database, 2017.1.19.5, 2017.1.20.5,
Update, 20.01.2017 21:28, SYSTEM, MILOS-PC, Scheduler, Malware Database, 2017.1.19.7, 2017.1.20.8,
Protection, 20.01.2017 21:28, SYSTEM, MILOS-PC, Protection, Refresh, Starting,
Protection, 20.01.2017 21:28, SYSTEM, MILOS-PC, Protection, Malicious Website Protection, Stopping,
Protection, 20.01.2017 21:28, SYSTEM, MILOS-PC, Protection, Malicious Website Protection, Stopped,
Protection, 20.01.2017 21:28, SYSTEM, MILOS-PC, Protection, Refresh, Success,
Protection, 20.01.2017 21:28, SYSTEM, MILOS-PC, Protection, Malicious Website Protection, Starting,
Protection, 20.01.2017 21:28, SYSTEM, MILOS-PC, Protection, Malicious Website Protection, Started,
Detection, 20.01.2017 21:28, SYSTEM, MILOS-PC, Protection, Malicious Website Protection, IP, 38.134.106.119, xco.versussulphide.com, 49495, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 20.01.2017 21:28, SYSTEM, MILOS-PC, Protection, Malicious Website Protection, IP, 38.134.106.119, xco.versussulphide.com, 49495, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 20.01.2017 21:28, SYSTEM, MILOS-PC, Protection, Malicious Website Protection, IP, 38.134.106.119, xco.versussulphide.com, 49496, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 20.01.2017 21:28, SYSTEM, MILOS-PC, Protection, Malicious Website Protection, IP, 38.134.106.124, yzy.admanaerofoil.com, 49497, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 20.01.2017 21:28, SYSTEM, MILOS-PC, Protection, Malicious Website Protection, IP, 38.134.106.124, yzy.admanaerofoil.com, 49497, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 20.01.2017 21:28, SYSTEM, MILOS-PC, Protection, Malicious Website Protection, IP, 38.134.106.124, yzy.admanaerofoil.com, 49498, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 20.01.2017 21:28, SYSTEM, MILOS-PC, Protection, Malicious Website Protection, IP, 38.134.106.124, yzy.admanaerofoil.com, 49499, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 20.01.2017 21:28, SYSTEM, MILOS-PC, Protection, Malicious Website Protection, IP, 38.134.106.124, yzy.admanaerofoil.com, 49500, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 20.01.2017 21:28, SYSTEM, MILOS-PC, Protection, Malicious Website Protection, IP, 38.134.106.119, xco.versussulphide.com, 49501, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 20.01.2017 21:28, SYSTEM, MILOS-PC, Protection, Malicious Website Protection, IP, 38.134.106.119, xco.versussulphide.com, 49502, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 20.01.2017 21:29, SYSTEM, MILOS-PC, Protection, Malicious Website Protection, IP, 38.134.106.119, xco.versussulphide.com, 49621, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 20.01.2017 21:29, SYSTEM, MILOS-PC, Protection, Malicious Website Protection, IP, 38.134.106.119, xco.versussulphide.com, 49622, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 20.01.2017 21:29, SYSTEM, MILOS-PC, Protection, Malicious Website Protection, IP, 38.134.106.124, yzy.admanaerofoil.com, 49623, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 20.01.2017 21:29, SYSTEM, MILOS-PC, Protection, Malicious Website Protection, IP, 38.134.106.124, yzy.admanaerofoil.com, 49624, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Scan, 20.01.2017 21:40, SYSTEM, MILOS-PC, Context, Start: 20.01.2017 21:28, Dauer: 11 Min. 55 Sek., Bedrohungssuchlauf, Abgeschlossen, 0 Malware-Erkennung, 0 Nicht-Malware-Erkennungen,
Detection, 20.01.2017 22:21, SYSTEM, MILOS-PC, Protection, Malicious Website Protection, IP, 38.134.106.124, rrb.attitudesculpable.com, 50447, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 20.01.2017 22:21, SYSTEM, MILOS-PC, Protection, Malicious Website Protection, IP, 38.134.106.124, rrb.attitudesculpable.com, 50447, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 20.01.2017 22:21, SYSTEM, MILOS-PC, Protection, Malicious Website Protection, IP, 38.134.106.124, rrb.attitudesculpable.com, 50448, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 20.01.2017 22:21, SYSTEM, MILOS-PC, Protection, Malicious Website Protection, IP, 38.134.106.124, rrb.attitudesculpable.com, 50449, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 20.01.2017 22:21, SYSTEM, MILOS-PC, Protection, Malicious Website Protection, IP, 38.134.106.124, rrb.attitudesculpable.com, 50452, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 20.01.2017 22:21, SYSTEM, MILOS-PC, Protection, Malicious Website Protection, IP, 38.134.106.124, rrb.attitudesculpable.com, 50453, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 20.01.2017 22:23, SYSTEM, MILOS-PC, Protection, Malicious Website Protection, IP, 38.134.106.124, yzy.admanaerofoil.com, 50580, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 20.01.2017 22:23, SYSTEM, MILOS-PC, Protection, Malicious Website Protection, IP, 38.134.106.124, yzy.admanaerofoil.com, 50580, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 20.01.2017 22:23, SYSTEM, MILOS-PC, Protection, Malicious Website Protection, IP, 38.134.106.117, xco.versussulphide.com, 50581, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 20.01.2017 22:23, SYSTEM, MILOS-PC, Protection, Malicious Website Protection, IP, 38.134.106.117, xco.versussulphide.com, 50581, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 20.01.2017 22:28, SYSTEM, MILOS-PC, Protection, Malicious Website Protection, IP, 38.134.106.126, rrb.attitudesculpable.com, 50722, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 20.01.2017 22:28, SYSTEM, MILOS-PC, Protection, Malicious Website Protection, IP, 38.134.106.126, rrb.attitudesculpable.com, 50722, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 20.01.2017 22:28, SYSTEM, MILOS-PC, Protection, Malicious Website Protection, IP, 38.134.106.119, yzy.admanaerofoil.com, 50799, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 20.01.2017 22:28, SYSTEM, MILOS-PC, Protection, Malicious Website Protection, IP, 38.134.106.119, yzy.admanaerofoil.com, 50799, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 20.01.2017 22:28, SYSTEM, MILOS-PC, Protection, Malicious Website Protection, IP, 38.134.106.126, xco.versussulphide.com, 50800, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 20.01.2017 22:28, SYSTEM, MILOS-PC, Protection, Malicious Website Protection, IP, 38.134.106.126, xco.versussulphide.com, 50800, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 20.01.2017 23:06, SYSTEM, MILOS-PC, Protection, Malicious Website Protection, IP, 38.134.106.117, yzy.admanaerofoil.com, 51692, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 20.01.2017 23:06, SYSTEM, MILOS-PC, Protection, Malicious Website Protection, IP, 38.134.106.126, xco.versussulphide.com, 51693, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 20.01.2017 23:06, SYSTEM, MILOS-PC, Protection, Malicious Website Protection, IP, 38.134.106.117, yzy.admanaerofoil.com, 51692, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 20.01.2017 23:07, SYSTEM, MILOS-PC, Protection, Malicious Website Protection, IP, 38.134.106.117, yzy.admanaerofoil.com, 51747, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 20.01.2017 23:07, SYSTEM, MILOS-PC, Protection, Malicious Website Protection, IP, 38.134.106.126, xco.versussulphide.com, 51753, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 20.01.2017 23:13, SYSTEM, MILOS-PC, Protection, Malicious Website Protection, IP, 38.134.106.117, yzy.admanaerofoil.com, 51928, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 20.01.2017 23:13, SYSTEM, MILOS-PC, Protection, Malicious Website Protection, IP, 38.134.106.119, xco.versussulphide.com, 51929, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 20.01.2017 23:13, SYSTEM, MILOS-PC, Protection, Malicious Website Protection, IP, 38.134.106.119, xco.versussulphide.com, 51929, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 20.01.2017 23:57, SYSTEM, MILOS-PC, Protection, Malicious Website Protection, IP, 38.134.106.117, xco.versussulphide.com, 52924, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 20.01.2017 23:57, SYSTEM, MILOS-PC, Protection, Malicious Website Protection, IP, 38.134.106.117, yzy.admanaerofoil.com, 52927, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 20.01.2017 23:57, SYSTEM, MILOS-PC, Protection, Malicious Website Protection, IP, 38.134.106.117, yzy.admanaerofoil.com, 52969, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 20.01.2017 23:57, SYSTEM, MILOS-PC, Protection, Malicious Website Protection, IP, 38.134.106.117, xco.versussulphide.com, 52970, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 20.01.2017 23:59, SYSTEM, MILOS-PC, Protection, Malicious Website Protection, IP, 38.134.106.117, yzy.admanaerofoil.com, 53482, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 20.01.2017 23:59, SYSTEM, MILOS-PC, Protection, Malicious Website Protection, IP, 38.134.106.124, xco.versussulphide.com, 53483, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 20.01.2017 23:59, SYSTEM, MILOS-PC, Protection, Malicious Website Protection, IP, 38.134.106.124, xco.versussulphide.com, 53483, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 20.01.2017 23:59, SYSTEM, MILOS-PC, Protection, Malicious Website Protection, IP, 38.134.106.124, rrb.attitudesculpable.com, 53496, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 20.01.2017 23:59, SYSTEM, MILOS-PC, Protection, Malicious Website Protection, IP, 38.134.106.124, rrb.attitudesculpable.com, 53497, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 20.01.2017 23:59, SYSTEM, MILOS-PC, Protection, Malicious Website Protection, IP, 38.134.106.124, rrb.attitudesculpable.com, 53498, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 20.01.2017 23:59, SYSTEM, MILOS-PC, Protection, Malicious Website Protection, IP, 38.134.106.117, yzy.admanaerofoil.com, 53545, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 20.01.2017 23:59, SYSTEM, MILOS-PC, Protection, Malicious Website Protection, IP, 38.134.106.124, xco.versussulphide.com, 53546, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,

(end)
Das gibts noch für all die Tage, seitdem MAB installiert ist.

Danke!

burningice 22.01.2017 17:55
Ich glaube nicht, dass das an einer Infektion von deinem PC liegt.

Schritt: 1
Folge dieser Anleitung: https://support.google.com/chrome/answer/3296214?hl=de

Schritt: 2
Downloade Dir HitmanProhttp://deeprybka.trojaner-board.de/b.../hitmanpro.pngauf Deinen Desktop:

HitmanPro-32 Bit Version
HitmanPro-64 Bit Version
Hast du noch Probleme mit den Werbemeldungen?

Kommt noch die Warnung von Malwarebytes?
Wenn ja, achte mal darauf, ob es nur bei bestimmten Websites auftritt?

Xnatur 22.01.2017 19:33
Ich melde mich, falls MAB Seiten blockiert. Bis jetzt kam keine Meldung, werde das ganze 24h beobachten.

Danke!

burningice 22.01.2017 20:26
alles klar!

Hitman danach trotzdem bitte ausführen.


Alle Zeitangaben in WEZ +1. Es ist jetzt 19:40 Uhr.

Copyright ©2000-2025, Trojaner-Board


Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19