Zurück   Trojaner-Board > Malware entfernen > Plagegeister aller Art und deren Bekämpfung

Plagegeister aller Art und deren Bekämpfung: Eset Smart Security 9 fehlermeldung

Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen.

Antwort
Alt 09.06.2016, 18:57   #1
FRANTANIA
 
Eset Smart Security 9 fehlermeldung - Standard

Eset Smart Security 9 fehlermeldung



Hallo

Ich bekomme mit Eset Smart Security 9 folgende Fehlermeldung wenn ich Firefox öffne.(siehe Anhang).
Es wird keine Datei in Quarantäne gestellt und auch kein Virus von Eset gefunden.
Kann mir jemand beidem Problem helfen bitte ?
Angehängte Grafiken
Dateityp: png eset.PNG (11,1 KB, 258x aufgerufen)

Alt 10.06.2016, 19:57   #2
deeprybka
/// TB-Ausbilder
/// Anleitungs-Guru
 
Eset Smart Security 9 fehlermeldung - Standard

Eset Smart Security 9 fehlermeldung



Das ist keine Fehlermeldung sondern der Webschutz von ESET welcher verhindert, dass von einer bestimmten Webseite ein Dateiarchiv "aufgerufen" wird...



Mein Name ist Jürgen und ich werde Dir bei Deinem Problem behilflich sein. Zusammen schaffen wir das...
  • Bitte arbeite alle Schritte der Reihe nach ab.
  • Lies die Anleitungen sorgfältig durch bevor Du beginnst. Wenn es Probleme gibt oder Du etwas nicht verstehst, dann stoppe mit Deiner Ausführung und beschreibe mir das Problem.
  • Führe bitte nur Scans durch, zu denen Du von mir aufgefordert wurdest.
  • Bitte kein Crossposting (posten in mehreren Foren).
  • Installiere oder deinstalliere während der Bereinigung keine Software, außer Du wurdest dazu aufgefordert.
  • Speichere alle unsere Tools auf dem Desktop ab. Link: So ladet Ihr unsere Tools richtig
  • Poste die Logfiles direkt in Deinen Thread in Code-Tags.
  • Bedenke, dass wir hier alle während unserer Freizeit tätig sind, wenn du innerhalb von 24 Stunden nichts von mir liest, dann schreibe mir bitte eine PM.

Hinweis:
Ich kann Dir niemals eine Garantie geben, dass wir alle schädlichen Dateien finden werden.
Eine Formatierung ist meist der schnellere und immer der sicherste Weg, aber auch nur bei wirklicher Malware empfehlenswert.
Adware & Co. können wir sehr gut entfernen.
Solltest Du Dich für eine Bereinigung entscheiden, arbeite solange mit, bis Du mein clean bekommst.



Los geht's:

Schritt 1


Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop: FRST Download FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
  • Starte jetzt FRST.
  • Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
  • Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
  • Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)




Lesestoff
Posten in CODE-Tags: So gehts...
Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR, 7Z-Archive zu packen erschwert uns massiv die Arbeit, es sei denn natürlich die Datei wäre ansonsten zu groß für das Forum. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
  • Markiere das gesamte Logfile (geht meist mit STRG+A) und kopiere es in die Zwischenablage mit STRG+C.
  • Klicke im Editor auf das #-Symbol. Es erscheinen zwei Klammerausdrücke [CODE] [/CODE].
  • Setze den Curser zwischen die CODE-Tags und drücke STRG+V.
  • Klicke auf Erweitert/Vorschau, um so prüfen, ob du es richtig gemacht hast. Wenn alles stimmt ... auf Antworten.
__________________

__________________

Alt 11.06.2016, 12:46   #3
FRANTANIA
 
Eset Smart Security 9 fehlermeldung - Standard

Eset Smart Security 9 fehlermeldung



Ich hab den scan durchlaufen lassen ein mal die FRST.txt
Code:
ATTFilter
Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:10-06-2016
durchgeführt von RobRobsen (Administrator) auf ROBROBSEN-PC (11-06-2016 13:21:12)
Gestartet von C:\Users\RobRobsen\Desktop
Geladene Profile: RobRobsen (Verfügbare Profile: RobRobsen & DefaultAppPool)
Platform: Windows 10 Home Version 1511 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: FF)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(ESET) C:\Program Files\ESET\ESET Smart Security\ekrn.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(Microsoft Corporation) C:\Windows\System32\mqsvc.exe
(VIA Technologies, Inc.) C:\Windows\System32\ViakaraokeSrv.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Malwarebytes) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
() C:\Windows\Runservice.exe
(iRacing.com Motorsport Simulations, LLC
Bedford, MA 01730) C:\Program Files (x86)\iRacing\iRacingService.exe
(AMD) C:\Windows\System32\atieclxx.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\egui.exe
(Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(VIA Technologies, Inc.) C:\Program Files\VIA XHCI UASP Utility\usb3Monitor.exe
(Logitech Inc.) C:\Program Files\Logitech\Gaming Software\LWEMon.exe
(Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
() C:\Users\RobRobsen\AppData\Local\Program Files\Amazon\MP3 Downloader\AmazonMP3DownloaderHelper.exe
(Spotify Ltd) C:\Users\RobRobsen\AppData\Roaming\Spotify\SpotifyWebHelper.exe
(Spotify Ltd) C:\Users\RobRobsen\AppData\Roaming\Spotify\SpotifyWebHelper.exe
() C:\Program Files (x86)\Safe In Cloud\SafeInCloud.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Bose Corporation) C:\Program Files (x86)\SoundTouch\SoundTouchMusicServer\SoundTouch music server.exe
() C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe


==================== Registry (Nicht auf der Ausnahmeliste) ===========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [VIAxHCUtl] => C:\Program Files\VIA XHCI UASP Utility\usb3Monitor
HKLM\...\Run: [Start WingMan Profiler] => C:\Program Files\Logitech\Gaming Software\LWEMon.exe [190536 2010-06-14] (Logitech Inc.)
HKLM\...\Run: [StartCN] => C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe [6564552 2016-05-20] (Advanced Micro Devices, Inc.)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [176952 2016-06-01] (Apple Inc.)
HKLM-x32\...\Run: [doubleTwist] => C:\Program Files (x86)\doubleTwist\doubleTwist.Light.exe
HKLM-x32\...\Run: [Raptr] => C:\Program Files (x86)\Raptr Inc\Raptr\raptrstub.exe [58640 2016-05-23] (Raptr, Inc)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [596504 2016-04-01] (Oracle Corporation)
HKLM-x32\...\Run: [SoundTouch Music Server] => C:\Program Files (x86)\SoundTouch\SoundTouchMusicServer\SoundTouch music server.exe [1133568 2016-03-01] (Bose Corporation)
HKU\S-1-5-21-3072544863-811831933-4102423891-1000\...\Run: [AmazonMP3DownloaderHelper] => C:\Users\RobRobsen\AppData\Local\Program Files\Amazon\MP3 Downloader\AmazonMP3DownloaderHelper.exe [400704 2013-05-22] ()
HKU\S-1-5-21-3072544863-811831933-4102423891-1000\...\Run: [Spotify] => C:\Users\RobRobsen\AppData\Roaming\Spotify\Spotify.exe [6859888 2016-05-29] (Spotify Ltd)
HKU\S-1-5-21-3072544863-811831933-4102423891-1000\...\Run: [Spotify Web Helper] => C:\Users\RobRobsen\AppData\Roaming\Spotify\SpotifyWebHelper.exe [1554032 2016-05-29] (Spotify Ltd)
HKU\S-1-5-21-3072544863-811831933-4102423891-1000\...\Run: [SafeInCloud] => C:\Program Files (x86)\Safe In Cloud\SafeInCloud.exe [2191872 2016-04-06] ()
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AutorunsDisabled [2016-04-15] ()

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)

Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{f0ff30a0-3cd2-4e34-bdee-c5e400068f2f}: [DhcpNameServer] 192.168.178.1

Internet Explorer:
==================
SearchScopes: HKU\S-1-5-21-3072544863-811831933-4102423891-1000 -> {0F5A9BE2-F830-4720-A06B-ECCE14866C21} URL = hxxps://search.yahoo.com/search?ei=utf-8&fr=chr-greentree_ie&type=994519&ilc=12&p={searchTerms}
BHO: Kein Name -> {6C680BAE-655C-4E3D-8FC4-E6A520C3D928} -> Keine Datei
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_91\bin\ssv.dll [2016-05-12] (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_91\bin\jp2ssv.dll [2016-05-12] (Oracle Corporation)
Filter: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll [2011-06-08] (Advanced Micro Devices)
Filter-x32: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\amd\SteadyVideo\VideoMIMEFilter.dll [2011-06-08] (Advanced Micro Devices)
Filter: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll [2011-06-08] (Advanced Micro Devices)
Filter-x32: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\amd\SteadyVideo\VideoMIMEFilter.dll [2011-06-08] (Advanced Micro Devices)

FireFox:
========
FF ProfilePath: C:\Users\RobRobsen\AppData\Roaming\Mozilla\Firefox\Profiles\ms4gt3x2.default
FF DefaultSearchEngine: Yahoo!
FF SelectedSearchEngine: Yahoo!
FF Homepage: hxxp://www.google.de/
FF Keyword.URL: hxxps://search.yahoo.com/search?ei=utf-8&fr=greentree_ff1&type=994519&ilc=12&p=
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_22_0_0_168.dll [2016-05-26] ()
FF Plugin: @java.com/DTPlugin,version=11.91.2 -> C:\Program Files\Java\jre1.8.0_91\bin\dtplugin\npDeployJava1.dll [2016-05-12] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.91.2 -> C:\Program Files\Java\jre1.8.0_91\bin\plugin2\npjp2.dll [2016-05-12] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-11] ( Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-16] (VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_22_0_0_168.dll [2016-05-26] ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2015-12-18] ()
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-11] ( Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-11] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-11] (Google Inc.)
FF Plugin HKU\S-1-5-21-3072544863-811831933-4102423891-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\RobRobsen\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2015-07-16] (Unity Technologies ApS)
FF Plugin HKU\S-1-5-21-3072544863-811831933-4102423891-1000: amazon.com/AmazonMP3DownloaderPlugin -> C:\Users\RobRobsen\AppData\Local\Program Files\Amazon\MP3 Downloader\npAmazonMP3DownloaderPlugin10181.dll [2013-05-22] (Amazon.com, Inc.)
FF user.js: detected! => C:\Users\RobRobsen\AppData\Roaming\Mozilla\Firefox\Profiles\ms4gt3x2.default\user.js [2016-03-03]
FF SearchPlugin: C:\Users\RobRobsen\AppData\Roaming\Mozilla\Firefox\Profiles\ms4gt3x2.default\searchplugins\yahoo_ff.xml [2016-05-28]
FF Extension: SafeInCloud Password Manager - C:\Users\RobRobsen\AppData\Roaming\Mozilla\Firefox\Profiles\ms4gt3x2.default\extensions\info@safe-in-cloud.com.xpi [2016-05-13]
FF Extension: ProxTube - Unblock YouTube - C:\Users\RobRobsen\AppData\Roaming\Mozilla\Firefox\Profiles\ms4gt3x2.default\Extensions\ich@maltegoetz.de.xpi [2016-03-05]
FF Extension: New Tab Tools - C:\Users\RobRobsen\AppData\Roaming\Mozilla\Firefox\Profiles\ms4gt3x2.default\Extensions\newtabtools@darktrojan.net.xpi [2016-03-04]
FF Extension: ZIPShield - C:\Users\RobRobsen\AppData\Roaming\Mozilla\Firefox\Profiles\ms4gt3x2.default\Extensions\{b7f19b64-1edb-45b5-86fe-c3798d814231}.xpi [2016-02-27] [ist nicht signiert]
FF Extension: Adblock Plus - C:\Users\RobRobsen\AppData\Roaming\Mozilla\Firefox\Profiles\ms4gt3x2.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-04-28]

Chrome: 
=======
CHR HomePage: Default -> hxxps://search.yahoo.com/?type=994519&fr=yo-yhp-ch
CHR StartupUrls: Default -> "hxxps://search.yahoo.com/?type=994519&fr=yo-yhp-ch"
CHR DefaultSearchURL: Default -> hxxps://search.yahoo.com/search?ei=utf-8&fr=chr-yo_gc&type=994519&ilc=12&p={searchTerms}
CHR DefaultSearchKeyword: Default -> yahoo.com search
CHR DefaultSuggestURL: Default -> hxxps://ff.search.yahoo.com/gossip?output=fxjson&command={searchTerms}
CHR Profile: C:\Users\RobRobsen\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Präsentationen) - C:\Users\RobRobsen\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-06-20]
CHR Extension: (Google Docs) - C:\Users\RobRobsen\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-06-20]
CHR Extension: (Google Drive) - C:\Users\RobRobsen\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-11-18]
CHR Extension: (YouTube) - C:\Users\RobRobsen\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-28]
CHR Extension: (Alex Karpov) - C:\Users\RobRobsen\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpgndhojbofkbjpkmfhgbcnndcoadgo [2016-05-28]
CHR Extension: (Google-Suche) - C:\Users\RobRobsen\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-11-18]
CHR Extension: (Bandcamp Scrobbler) - C:\Users\RobRobsen\AppData\Local\Google\Chrome\User Data\Default\Extensions\enncmdgpakpfkapflghmnmfnpolcapml [2015-02-02]
CHR Extension: (Google Tabellen) - C:\Users\RobRobsen\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-06-20]
CHR Extension: (Google Docs Offline) - C:\Users\RobRobsen\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-05-28]
CHR Extension: (Last.fm Scrobbler) - C:\Users\RobRobsen\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhinaapppaileiechjoiifaancjggfjm [2016-05-28]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\RobRobsen\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-05-28]
CHR Extension: (Google Mail) - C:\Users\RobRobsen\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-06-20]

Opera: 
=======
StartMenuInternet: (HKLM) OperaStable - C:\Users\RobRobsen\AppData\Local\Programs\Opera\Launcher.exe

==================== Dienste (Nicht auf der Ausnahmeliste) ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2016-03-02] (Apple Inc.)
S3 EasyAntiCheat; C:\WINDOWS\SysWOW64\EasyAntiCheat.exe [238376 2015-09-09] (EasyAntiCheat Ltd)
R2 ekrn; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [2519904 2016-04-26] (ESET)
R2 iRacingService; C:\Program Files (x86)\iRacing\iRacingService.exe [826144 2016-06-09] (iRacing.com Motorsport Simulations, LLC
Bedford, MA 01730)
R2 LicCtrlService; C:\WINDOWS\runservice.exe [2560 2016-06-04] () [Datei ist nicht signiert]
R2 MBAMScheduler; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe [1513784 2015-10-05] (Malwarebytes)
S2 MBAMService; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe [1135416 2015-10-05] (Malwarebytes)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2104840 2016-01-10] (Electronic Arts)
R2 VIAKaraokeService; C:\Windows\system32\viakaraokesrv.exe [36504 2015-07-30] (VIA Technologies, Inc.)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [364464 2015-10-30] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-10-30] (Microsoft Corporation)
S2 WsAppService; C:\Program Files (x86)\Wondershare\WAF\2.1.6.0\WsAppService.exe [388608 2016-01-28] (Wondershare) [Datei ist nicht signiert]

===================== Treiber (Nicht auf der Ausnahmeliste) ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

S0 amdkmafd; C:\Windows\System32\drivers\amdkmafd.sys [23240 2016-03-21] (Advanced Micro Devices, Inc.)
R3 AtiHDAudioService; C:\Windows\system32\drivers\AtihdWT6.sys [101376 2016-05-16] (Advanced Micro Devices)
R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [264552 2016-04-26] (ESET)
R0 edevmon; C:\Windows\System32\DRIVERS\edevmon.sys [199680 2015-11-27] (ESET)
S0 eelam; C:\Windows\System32\DRIVERS\eelam.sys [14976 2015-11-27] (ESET)
R1 ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [186784 2015-11-27] (ESET)
R2 ekbdflt; C:\Windows\system32\DRIVERS\ekbdflt.sys [142976 2015-11-27] (ESET)
R1 epfw; C:\Windows\system32\DRIVERS\epfw.sys [198096 2016-04-26] (ESET)
R1 EpfwLWF; C:\Windows\system32\DRIVERS\EpfwLWF.sys [53384 2016-04-26] (ESET)
R0 epfwwfp; C:\Windows\System32\DRIVERS\epfwwfp.sys [84800 2016-04-26] (ESET)
S3 LGJoyXlCore; C:\Windows\system32\drivers\LGJoyXlCore.sys [85160 2016-04-19] (Logitech Inc.)
R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [25816 2015-10-05] (Malwarebytes)
S3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [64216 2015-10-05] (Malwarebytes Corporation)
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [589824 2015-10-30] (Realtek                                            )
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44568 2015-10-30] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [293216 2015-10-30] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [118112 2015-10-30] (Microsoft Corporation)
S3 WsAudioDevice_383; C:\Windows\system32\drivers\VirtualAudio.sys [31080 2015-07-30] (Wondershare)
U3 idsvc; kein ImagePath

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2016-06-11 13:21 - 2016-06-11 13:21 - 00016243 _____ C:\Users\RobRobsen\Desktop\FRST.txt
2016-06-11 13:21 - 2016-06-11 13:07 - 02385408 _____ (Farbar) C:\Users\RobRobsen\Desktop\FRST64.exe
2016-06-11 13:07 - 2016-06-11 13:07 - 00000000 ____D C:\Users\RobRobsen\Downloads\FRST-OlderVersion
2016-06-09 21:36 - 2016-06-09 21:37 - 00065135 _____ C:\Users\RobRobsen\Downloads\Addition.txt
2016-06-09 21:35 - 2016-06-11 13:08 - 00052348 _____ C:\Users\RobRobsen\Downloads\FRST.txt
2016-06-09 21:35 - 2016-06-11 13:07 - 02385408 _____ (Farbar) C:\Users\RobRobsen\Downloads\FRST64.exe
2016-06-05 22:34 - 2016-06-05 22:39 - 15933370 _____ C:\Users\RobRobsen\Downloads\d2872.avi
2016-06-05 16:41 - 2016-06-05 16:41 - 00003447 _____ C:\Users\RobRobsen\AppData\Local\recently-used.xbel
2016-06-05 16:37 - 2016-06-05 16:37 - 00502864 _____ C:\Users\RobRobsen\Documents\freake perfume - night sins.xcf
2016-06-05 02:27 - 2016-06-05 03:12 - 139175936 _____ C:\Users\RobRobsen\Downloads\d2939.mpg
2016-06-05 02:24 - 2016-06-05 02:51 - 82872434 _____ C:\Users\RobRobsen\Downloads\d2950.avi
2016-06-04 14:57 - 2016-06-04 14:57 - 00000000 ____D C:\Users\RobRobsen\Downloads\TEW2016_20160603
2016-06-04 14:54 - 2016-06-04 14:55 - 67704340 _____ C:\Users\RobRobsen\Downloads\TEW2016_20160603.zip
2016-06-04 14:45 - 2016-06-04 14:58 - 00001521 ___SH C:\WINDOWS\SysWOW64\mmf.sys
2016-06-04 14:45 - 2016-06-04 14:45 - 00126976 _____ C:\WINDOWS\lcmmfu.cpl
2016-06-04 14:45 - 2016-06-04 14:45 - 00048640 _____ C:\WINDOWS\mmfs.dll
2016-06-04 14:45 - 2016-06-04 14:45 - 00002560 _____ C:\WINDOWS\Runservice.exe
2016-06-04 14:45 - 2016-06-04 14:45 - 00000000 ____D C:\Users\RobRobsen\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TEW2016
2016-06-04 14:45 - 2006-10-31 21:48 - 00348160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr71.dll
2016-06-04 14:44 - 2016-06-04 14:44 - 00000000 ____D C:\Program Files (x86)\GDS
2016-06-04 14:40 - 2016-06-04 14:44 - 211544032 _____ C:\Users\RobRobsen\Downloads\TEW2016_Retail.EXE
2016-06-04 13:35 - 2016-06-04 13:35 - 00000000 ____D C:\Users\RobRobsen\AppData\LocalLow\dev4play
2016-06-04 02:00 - 2016-06-04 02:09 - 27915996 _____ C:\Users\RobRobsen\Downloads\d2601.avi
2016-06-04 01:58 - 2016-06-04 02:04 - 15543288 _____ C:\Users\RobRobsen\Downloads\d2778.avi
2016-06-03 21:58 - 2016-06-03 21:58 - 00001822 _____ C:\Users\Public\Desktop\iTunes.lnk
2016-06-03 21:58 - 2016-06-03 21:58 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2016-06-03 21:57 - 2016-06-03 21:57 - 00000000 ____D C:\Program Files\iPod
2016-06-03 18:18 - 2016-06-03 19:28 - 214967557 _____ C:\Users\RobRobsen\Downloads\d2913.avi
2016-06-03 18:18 - 2016-06-03 19:25 - 206348575 _____ C:\Users\RobRobsen\Downloads\d2731.avi
2016-06-01 21:19 - 2016-06-01 21:35 - 50872122 _____ C:\Users\RobRobsen\Downloads\d281_(new).avi
2016-06-01 21:18 - 2016-06-01 21:43 - 78299858 _____ C:\Users\RobRobsen\Downloads\d258_(new).avi
2016-06-01 18:53 - 2016-06-01 20:10 - 236621828 _____ C:\Users\RobRobsen\Downloads\so849.mpg
2016-06-01 18:53 - 2016-06-01 19:22 - 85614462 _____ C:\Users\RobRobsen\Downloads\so860.avi
2016-05-31 18:54 - 2016-05-31 18:54 - 00000000 ____D C:\Users\RobRobsen\Downloads\SECTEUR 33 - Alpha and Omega EP
2016-05-31 18:52 - 2016-05-31 18:53 - 42690928 _____ C:\Users\RobRobsen\Downloads\SECTEUR 33 - Alpha and Omega EP.zip
2016-05-30 12:44 - 2016-05-30 12:44 - 00000000 ____D C:\Users\RobRobsen\AppData\LocalLow\Robot Gentleman
2016-05-30 07:11 - 2016-05-30 07:12 - 04215436 _____ C:\Users\RobRobsen\Downloads\d1250.avi
2016-05-30 05:54 - 2016-05-30 05:56 - 06553888 _____ C:\Users\RobRobsen\Downloads\d1251.avi
2016-05-30 05:52 - 2016-05-30 05:55 - 10887999 _____ C:\Users\RobRobsen\Downloads\d2891.avi
2016-05-30 04:10 - 2016-05-30 04:10 - 00000000 ____D C:\Users\RobRobsen\Downloads\Werkstatt Recordings - 258. SUPERNOVA 1006 - ROT ON THE MARCH - Split ep
2016-05-30 04:10 - 2016-05-30 04:10 - 00000000 ____D C:\Users\RobRobsen\Downloads\Supernova 1006 - Morphine
2016-05-30 04:08 - 2016-05-30 04:08 - 45691123 _____ C:\Users\RobRobsen\Downloads\Werkstatt Recordings - 258. SUPERNOVA 1006 - ROT ON THE MARCH - Split ep.zip
2016-05-30 04:08 - 2016-05-30 04:08 - 28373968 _____ C:\Users\RobRobsen\Downloads\Supernova 1006 - Morphine.zip
2016-05-29 13:12 - 2016-05-29 13:12 - 00001076 _____ C:\Users\RobRobsen\Desktop\Tomahawk.lnk
2016-05-29 13:12 - 2016-05-29 13:12 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tomahawk
2016-05-29 13:10 - 2016-05-29 13:11 - 45250032 _____ C:\Users\RobRobsen\Downloads\tomahawk-latest.exe
2016-05-29 08:55 - 2016-05-29 08:55 - 00001150 _____ C:\Users\RobRobsen\Downloads\BH1.sto
2016-05-28 13:02 - 2016-05-29 04:14 - 00000000 ____D C:\Users\RobRobsen\AppData\Roaming\Obsidium
2016-05-28 13:02 - 2016-05-29 04:11 - 00000000 ____D C:\Users\RobRobsen\Documents\Power & Revolution
2016-05-28 06:57 - 2016-05-29 03:58 - 00000000 ____D C:\Users\RobRobsen\AppData\Local\MalwareProtectionLive
2016-05-28 06:57 - 2016-05-28 06:57 - 00000000 ____D C:\Users\RobRobsen\.swt
2016-05-28 06:56 - 2016-05-28 09:05 - 00000000 ____D C:\Users\RobRobsen\AppData\Roaming\Azureus
2016-05-28 06:56 - 2016-05-28 06:56 - 23554640 _____ C:\Users\RobRobsen\Downloads\Vuze_5720_Installer.zip
2016-05-28 06:56 - 2016-05-28 06:56 - 00000000 ____D C:\Users\RobRobsen\Downloads\Vuze_5720_Installer
2016-05-28 04:49 - 2016-05-28 04:55 - 00000000 ____D C:\Program Files (x86)\SoundTouch
2016-05-28 04:49 - 2016-05-28 04:49 - 00001978 _____ C:\Users\Public\Desktop\SoundTouch.lnk
2016-05-28 04:49 - 2016-05-28 04:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SoundTouch
2016-05-28 04:47 - 2016-05-28 04:47 - 46796800 _____ C:\Users\RobRobsen\Downloads\SoundTouch-app-installer-11.0.12.13555.msi
2016-05-27 15:04 - 2016-05-27 15:04 - 00001262 _____ C:\Users\RobRobsen\Downloads\SummerLucasS42015.sto
2016-05-27 07:15 - 2016-05-27 07:15 - 00002238 _____ C:\Users\RobRobsen\Downloads\aq_sebring.sto
2016-05-27 02:00 - 2016-05-27 02:00 - 00000000 ____D C:\Users\RobRobsen\Downloads\Amazon-Music-Download_2016-05-26_11-15
2016-05-26 11:15 - 2016-05-26 11:17 - 269885705 _____ C:\Users\RobRobsen\Downloads\Amazon-Music-Download_2016-05-26_11-15.zip
2016-05-25 02:56 - 2016-05-25 02:56 - 00000000 ____D C:\Users\RobRobsen\Downloads\Dope Stars Inc. - Ultrawired
2016-05-25 02:56 - 2016-05-25 02:56 - 00000000 ____D C:\Users\RobRobsen\Downloads\Dope Stars Inc. - The Saw Saga
2016-05-25 02:56 - 2016-05-25 02:56 - 00000000 ____D C:\Users\RobRobsen\Downloads\Dope Stars Inc. - -Neuromance
2016-05-25 02:56 - 2016-05-25 02:56 - 00000000 ____D C:\Users\RobRobsen\Downloads\Dope Stars Inc. - Make A Star EP
2016-05-25 02:56 - 2016-05-25 02:56 - 00000000 ____D C:\Users\RobRobsen\Downloads\Dope Stars Inc. - Gigahearts
2016-05-25 02:56 - 2016-05-25 02:56 - 00000000 ____D C:\Users\RobRobsen\Downloads\Dope Stars Inc. - -Decrypted_Files
2016-05-25 02:56 - 2016-05-25 02:56 - 00000000 ____D C:\Users\RobRobsen\Downloads\Dope Stars Inc. - Criminal Intents - Morning Star (Unlimited Edition)
2016-05-25 02:56 - 2016-05-25 02:56 - 00000000 ____D C:\Users\RobRobsen\Downloads\Dope Stars Inc. - Banksters
2016-05-25 02:56 - 2016-05-25 02:56 - 00000000 ____D C:\Users\RobRobsen\Downloads\Dope Stars Inc. - 21st Century Slave
2016-05-25 02:56 - 2016-05-25 02:56 - 00000000 ____D C:\Users\RobRobsen\Downloads\Dope Stars Inc. - 10.000 Watts Of Artificial Pleasures
2016-05-25 02:55 - 2016-05-25 02:55 - 00000000 ____D C:\Users\RobRobsen\Downloads\Dope Stars Inc. - TeraPunk
2016-05-25 02:55 - 2016-05-25 02:55 - 00000000 ____D C:\Users\RobRobsen\Downloads\Dope Stars Inc. - New Breed Of Digital Fuckers
2016-05-25 02:55 - 2016-05-25 02:55 - 00000000 ____D C:\Users\RobRobsen\Downloads\Date at Midnight - Songs to Fall and Forget
2016-05-25 02:55 - 2016-05-25 02:55 - 00000000 ____D C:\Users\RobRobsen\Downloads\Darkpage - STAR INDUSTRY _– Velvet
2016-05-25 02:55 - 2016-05-25 02:55 - 00000000 ____D C:\Users\RobRobsen\Downloads\Darkpage - MISSIONARIES FROM THE OUTSIDE - The Prophecies
2016-05-25 02:54 - 2016-05-25 02:55 - 151117034 _____ C:\Users\RobRobsen\Downloads\Dope Stars Inc. - -Decrypted_Files.zip
2016-05-25 02:54 - 2016-05-25 02:54 - 66019201 _____ C:\Users\RobRobsen\Downloads\Dope Stars Inc. - 10.000 Watts Of Artificial Pleasures.zip
2016-05-25 02:53 - 2016-05-25 02:54 - 94048621 _____ C:\Users\RobRobsen\Downloads\Dope Stars Inc. - Make A Star EP.zip
2016-05-25 02:53 - 2016-05-25 02:53 - 38580984 _____ C:\Users\RobRobsen\Downloads\Dope Stars Inc. - The Saw Saga.zip
2016-05-25 02:52 - 2016-05-25 02:54 - 340722971 _____ C:\Users\RobRobsen\Downloads\Dope Stars Inc. - -Neuromance.zip
2016-05-25 02:52 - 2016-05-25 02:53 - 132446090 _____ C:\Users\RobRobsen\Downloads\Dope Stars Inc. - 21st Century Slave.zip
2016-05-25 02:52 - 2016-05-25 02:52 - 199660501 _____ C:\Users\RobRobsen\Downloads\Dope Stars Inc. - Criminal Intents - Morning Star (Unlimited Edition).zip
2016-05-25 02:52 - 2016-05-25 02:52 - 19623654 _____ C:\Users\RobRobsen\Downloads\Dope Stars Inc. - Banksters.zip
2016-05-25 02:51 - 2016-05-25 02:53 - 372791707 _____ C:\Users\RobRobsen\Downloads\Dope Stars Inc. - Ultrawired.zip
2016-05-25 02:51 - 2016-05-25 02:52 - 146484726 _____ C:\Users\RobRobsen\Downloads\Dope Stars Inc. - Gigahearts.zip
2016-05-25 02:51 - 2016-05-25 02:52 - 140981161 _____ C:\Users\RobRobsen\Downloads\Dope Stars Inc. - TeraPunk.zip
2016-05-25 02:50 - 2016-05-25 02:52 - 253832826 _____ C:\Users\RobRobsen\Downloads\Dope Stars Inc. - New Breed Of Digital Fuckers.zip
2016-05-25 02:50 - 2016-05-25 02:51 - 124297197 _____ C:\Users\RobRobsen\Downloads\Darkpage - STAR INDUSTRY _– Velvet.zip
2016-05-25 02:50 - 2016-05-25 02:50 - 47596202 _____ C:\Users\RobRobsen\Downloads\Darkpage - MISSIONARIES FROM THE OUTSIDE - The Prophecies.zip
2016-05-25 02:50 - 2016-05-25 02:50 - 140710779 _____ C:\Users\RobRobsen\Downloads\Date at Midnight - Songs to Fall and Forget.zip
2016-05-24 12:40 - 2016-05-24 12:40 - 07270600 _____ (Andrey Shcherbakov) C:\Users\RobRobsen\Downloads\SafeInCloud_Setup(2).exe
2016-05-23 12:44 - 2016-05-23 12:44 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech
2016-05-23 12:43 - 2016-05-23 12:43 - 00000000 ____D C:\Program Files\Logitech
2016-05-23 12:42 - 2016-05-23 12:43 - 16082320 _____ (Logitech Inc.) C:\Users\RobRobsen\Downloads\lgs510_x64(2).exe
2016-05-23 10:08 - 2016-05-23 10:08 - 00000000 ____D C:\ProgramData\LogiShrd
2016-05-23 09:48 - 2016-05-23 09:48 - 00000000 ____D C:\Users\RobRobsen\AppData\Roaming\Logitech
2016-05-23 09:48 - 2016-05-23 09:48 - 00000000 ____D C:\Users\RobRobsen\AppData\Roaming\Logishrd
2016-05-23 09:45 - 2016-06-02 19:06 - 00000000 ____D C:\WINDOWS\LastGood
2016-05-20 23:48 - 2016-05-20 23:48 - 00462080 _____ C:\WINDOWS\system32\amdmiracast.dll
2016-05-20 23:48 - 2016-05-20 23:48 - 00141280 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdave64.dll
2016-05-20 23:48 - 2016-05-20 23:48 - 00122704 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdave32.dll
2016-05-20 23:47 - 2016-05-20 23:47 - 00150544 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atiu9p64.dll
2016-05-20 23:47 - 2016-05-20 23:47 - 00141280 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdhcp64.dll
2016-05-20 23:47 - 2016-05-20 23:47 - 00125288 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amdhcp32.dll
2016-05-20 23:47 - 2016-05-20 23:47 - 00109856 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atimpc64.dll
2016-05-20 23:47 - 2016-05-20 23:47 - 00109856 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdpcom64.dll
2016-05-20 23:47 - 2016-05-20 23:47 - 00092328 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atimpc32.dll
2016-05-20 23:47 - 2016-05-20 23:47 - 00092328 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdpcom32.dll
2016-05-20 23:46 - 2016-05-20 23:46 - 08577456 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atiumd64.dll
2016-05-20 23:44 - 2016-05-20 23:44 - 00296648 _____ (Advanced Micro Devices) C:\WINDOWS\system32\Drivers\amdacpksd.sys
2016-05-20 23:35 - 2016-05-20 23:35 - 48616960 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\amdocl64.dll
2016-05-20 23:35 - 2016-05-20 23:35 - 00252928 _____ C:\WINDOWS\system32\clinfo.exe
2016-05-20 23:34 - 2016-05-20 23:34 - 38098432 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\amdocl.dll
2016-05-20 23:33 - 2016-05-20 23:33 - 00096256 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2016-05-20 23:33 - 2016-05-20 23:33 - 00087040 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2016-05-20 23:32 - 2016-05-20 23:32 - 27433472 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\amdocl12cl64.dll
2016-05-20 23:31 - 2016-05-20 23:31 - 21600768 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\amdocl12cl.dll
2016-05-20 23:30 - 2016-05-20 23:30 - 08699392 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdvlk64.dll
2016-05-20 23:26 - 2016-05-20 23:26 - 06951424 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdvlk32.dll
2016-05-20 23:15 - 2016-05-20 23:15 - 00184320 _____ C:\WINDOWS\system32\amdhdl64.dll
2016-05-20 23:15 - 2016-05-20 23:15 - 00164352 _____ C:\WINDOWS\SysWOW64\amdhdl32.dll
2016-05-20 23:14 - 2016-05-20 23:14 - 30188032 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atio6axx.dll
2016-05-20 23:13 - 2016-05-20 23:13 - 03941528 _____ (Logitech, Inc.) C:\WINDOWS\system32\LogiLDA.DLL
2016-05-20 23:13 - 2016-05-20 23:13 - 00837584 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcr110.dll
2016-05-20 23:13 - 2016-05-20 23:13 - 00730112 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdlvr64.dll
2016-05-20 23:13 - 2016-05-20 23:13 - 00670160 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp110.dll
2016-05-20 23:13 - 2016-05-20 23:13 - 00605696 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amdlvr32.dll
2016-05-20 23:13 - 2016-05-20 23:13 - 00362976 _____ (Microsoft Corporation) C:\WINDOWS\system32\vccorlib110.dll
2016-05-20 23:12 - 2016-05-20 23:12 - 06965248 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdmantle64.dll
2016-05-20 23:12 - 2016-05-20 23:12 - 02466968 _____ (Logitech, Inc.) C:\WINDOWS\system32\LdaCx2.dll
2016-05-20 23:12 - 2016-05-20 23:12 - 00142336 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\mantle64.dll
2016-05-20 23:12 - 2016-05-20 23:12 - 00117760 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\mantle32.dll
2016-05-20 23:09 - 2016-05-20 23:09 - 05643776 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdmantle32.dll
2016-05-20 23:09 - 2016-05-20 23:09 - 00716128 _____ C:\WINDOWS\SysWOW64\atiapfxx.blb
2016-05-20 23:09 - 2016-05-20 23:09 - 00716128 _____ C:\WINDOWS\system32\atiapfxx.blb
2016-05-20 23:09 - 2016-05-20 23:09 - 00385536 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atiapfxx.exe
2016-05-20 23:09 - 2016-05-20 23:09 - 00062464 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\aticalrt64.dll
2016-05-20 23:09 - 2016-05-20 23:09 - 00055808 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\aticalcl64.dll
2016-05-20 23:09 - 2016-05-20 23:09 - 00052224 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\aticalrt.dll
2016-05-20 23:09 - 2016-05-20 23:09 - 00049152 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\aticalcl.dll
2016-05-20 23:08 - 2016-05-20 23:08 - 15711744 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\aticaldd64.dll
2016-05-20 23:08 - 2016-05-20 23:08 - 14302720 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\aticaldd.dll
2016-05-20 23:06 - 2016-05-20 23:06 - 24836096 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atioglxx.dll
2016-05-20 23:06 - 2016-05-20 23:06 - 00113152 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\mantleaxl64.dll
2016-05-20 23:06 - 2016-05-20 23:06 - 00092160 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\mantleaxl32.dll
2016-05-20 23:06 - 2016-05-20 23:06 - 00050688 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdmmcl6.dll
2016-05-20 23:06 - 2016-05-20 23:06 - 00038400 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdmmcl.dll
2016-05-20 23:05 - 2016-05-20 23:05 - 08850432 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdxc64.dll
2016-05-20 23:04 - 2016-05-20 23:04 - 03437632 _____ C:\WINDOWS\system32\atiumd6a.cap
2016-05-20 23:02 - 2016-05-20 23:02 - 07261184 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdxc32.dll
2016-05-20 23:02 - 2016-05-20 23:02 - 00588288 _____ (AMD) C:\WINDOWS\system32\atieclxx.exe
2016-05-20 23:02 - 2016-05-20 23:02 - 00442368 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atidemgy.dll
2016-05-20 23:02 - 2016-05-20 23:02 - 00306688 _____ (AMD) C:\WINDOWS\system32\atiesrxx.exe
2016-05-20 23:02 - 2016-05-20 23:02 - 00274432 _____ C:\WINDOWS\system32\dgtrayicon.exe
2016-05-20 23:02 - 2016-05-20 23:02 - 00258560 _____ C:\WINDOWS\system32\GameManager64.dll
2016-05-20 23:02 - 2016-05-20 23:02 - 00230912 _____ C:\WINDOWS\system32\amdgfxinfo64.dll
2016-05-20 23:02 - 2016-05-20 23:02 - 00223744 _____ C:\WINDOWS\SysWOW64\GameManager32.dll
2016-05-20 23:02 - 2016-05-20 23:02 - 00212480 _____ C:\WINDOWS\system32\atieah64.exe
2016-05-20 23:02 - 2016-05-20 23:02 - 00202752 _____ C:\WINDOWS\SysWOW64\amdgfxinfo32.dll
2016-05-20 23:02 - 2016-05-20 23:02 - 00190464 _____ C:\WINDOWS\SysWOW64\atieah32.exe
2016-05-20 23:02 - 2016-05-20 23:02 - 00093696 _____ (AMD) C:\WINDOWS\system32\atimuixx.dll
2016-05-20 23:01 - 2016-05-20 23:01 - 00270336 _____ (AMD) C:\WINDOWS\system32\atitmm64.dll
2016-05-20 22:59 - 2016-05-20 22:59 - 03471376 _____ C:\WINDOWS\SysWOW64\atiumdva.cap
2016-05-20 22:57 - 2016-05-20 22:57 - 01304576 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atiadlxx.dll
2016-05-20 22:57 - 2016-05-20 22:57 - 00973824 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atiadlxy.dll
2016-05-20 22:57 - 2016-05-20 22:57 - 00973824 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atiadlxx.dll
2016-05-20 22:57 - 2016-05-20 22:57 - 00185344 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atig6txx.dll
2016-05-20 22:57 - 2016-05-20 22:57 - 00159232 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atigktxx.dll
2016-05-20 22:57 - 2016-05-20 22:57 - 00119808 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atisamu64.dll
2016-05-20 22:57 - 2016-05-20 22:57 - 00106496 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atig6pxx.dll
2016-05-20 22:57 - 2016-05-20 22:57 - 00101376 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atisamu32.dll
2016-05-20 22:57 - 2016-05-20 22:57 - 00091136 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atiglpxx.dll
2016-05-20 22:57 - 2016-05-20 22:57 - 00091136 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atiglpxx.dll
2016-05-20 22:56 - 2016-05-20 22:56 - 00043520 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Drivers\ati2erec.dll
2016-05-20 22:55 - 2016-05-20 22:55 - 00251392 _____ C:\WINDOWS\system32\hsa-thunk64.dll
2016-05-20 22:55 - 2016-05-20 22:55 - 00217088 _____ C:\WINDOWS\SysWOW64\hsa-thunk.dll
2016-05-18 22:24 - 2016-05-18 22:24 - 00000000 ____D C:\Users\RobRobsen\Documents\U-Play online
2016-05-18 22:24 - 2016-05-18 22:24 - 00000000 ____D C:\Users\RobRobsen\AppData\LocalLow\U-Play online
2016-05-17 16:52 - 2016-05-17 16:53 - 00000000 ____D C:\WINDOWS\LastGood.Tmp
2016-05-17 00:05 - 2016-05-26 10:05 - 20123840 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerInstaller.exe
2016-05-16 23:00 - 2016-05-16 23:00 - 00000000 ____D C:\Users\RobRobsen\Downloads\Earth Calling Angela - Hope Springs Eternal
2016-05-16 22:39 - 2016-05-16 22:40 - 167719773 _____ C:\Users\RobRobsen\Downloads\Earth Calling Angela - Hope Springs Eternal.zip
2016-05-16 21:52 - 2016-05-16 21:52 - 00000000 ____D C:\ProgramData\Stardock
2016-05-16 03:38 - 2016-05-20 23:12 - 00865280 _____ (AMD) C:\WINDOWS\system32\coinst_16.20.dll
2016-05-16 03:38 - 2016-05-16 03:38 - 00865280 _____ (AMD) C:\WINDOWS\system32\SET79DC.tmp
2016-05-16 03:35 - 2016-05-16 03:35 - 00103424 _____ (Advanced Micro Devices) C:\WINDOWS\system32\DelayAPO.dll
2016-05-15 23:53 - 2016-05-15 23:53 - 00000000 ____D C:\Users\RobRobsen\AppData\Local\id Software
2016-05-15 17:37 - 2016-05-15 17:37 - 00000000 ____D C:\Users\RobRobsen\Downloads\Lyncelia - Forsaken Innocence (2016)
2016-05-15 17:33 - 2016-05-15 17:35 - 153686754 _____ C:\Users\RobRobsen\Downloads\Lyncelia - Forsaken Innocence (2016).zip
2016-05-14 17:31 - 2016-05-14 17:31 - 00002251 _____ C:\Users\Public\Desktop\Miro.lnk
2016-05-14 17:31 - 2016-05-14 17:31 - 00000000 ____D C:\Users\RobRobsen\AppData\Roaming\Participatory Culture Foundation
2016-05-14 17:31 - 2016-05-14 17:31 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Miro
2016-05-14 17:30 - 2016-05-14 17:30 - 00000000 ____D C:\Program Files (x86)\Participatory Culture Foundation
2016-05-14 17:29 - 2016-05-14 17:30 - 48057520 _____ C:\Users\RobRobsen\Downloads\Miro_Installer.exe
2016-05-14 05:37 - 2016-05-14 17:13 - 00000000 ____D C:\Users\RobRobsen\AppData\Roaming\iFunbox_UserCache
2016-05-14 05:37 - 2016-05-14 05:37 - 22748388 _____ (iFunbox DevTeam ) C:\Users\RobRobsen\Downloads\ifunbox_setup.exe
2016-05-13 22:20 - 2016-05-13 22:20 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Safe In Cloud
2016-05-13 22:20 - 2016-05-13 22:20 - 00000000 ____D C:\Program Files (x86)\Safe In Cloud
2016-05-13 22:19 - 2016-05-13 22:19 - 07270600 _____ (Andrey Shcherbakov) C:\Users\RobRobsen\Downloads\SafeInCloud_Setup(1).exe
2016-05-13 06:42 - 2016-05-13 06:42 - 00000000 ____D C:\Users\RobRobsen\Downloads\Voight - Shadow-Excision
2016-05-13 06:42 - 2016-05-13 06:42 - 00000000 ____D C:\Users\RobRobsen\Downloads\Spirit Host - The First Flowers Demo
2016-05-13 06:42 - 2016-05-13 06:42 - 00000000 ____D C:\Users\RobRobsen\Downloads\Shyness of Strangers - FROM ASHES
2016-05-13 06:42 - 2016-05-13 06:42 - 00000000 ____D C:\Users\RobRobsen\Downloads\RENDEZ-VOUS - Rendez-Vous EP
2016-05-13 06:42 - 2016-05-13 06:42 - 00000000 ____D C:\Users\RobRobsen\Downloads\BLEIB MODERN - Danse EP
2016-05-13 06:42 - 2016-05-13 06:42 - 00000000 ____D C:\Users\RobRobsen\Downloads\AVIARIES - Aviaries
2016-05-13 06:41 - 2016-05-13 06:41 - 00000000 ____D C:\Users\RobRobsen\Downloads\Soulimage - Can You Feel Me
2016-05-13 06:41 - 2016-05-13 06:41 - 00000000 ____D C:\Users\RobRobsen\Downloads\Projekt Ich - Wolkenträne (EP)
2016-05-13 06:41 - 2016-05-13 06:41 - 00000000 ____D C:\Users\RobRobsen\Downloads\EUROPEAN GHOST - Pale & Sick -post punk - cold wave- (UPR 047) - Compact Disc
2016-05-13 06:40 - 2016-05-13 06:41 - 99096197 _____ C:\Users\RobRobsen\Downloads\EUROPEAN GHOST - Pale & Sick -post punk - cold wave- (UPR 047) - Compact Disc.zip
2016-05-13 06:40 - 2016-05-13 06:41 - 49004158 _____ C:\Users\RobRobsen\Downloads\Projekt Ich - Wolkenträne (EP).zip
2016-05-13 06:40 - 2016-05-13 06:41 - 40089445 _____ C:\Users\RobRobsen\Downloads\Spirit Host - The First Flowers Demo.zip
2016-05-13 06:40 - 2016-05-13 06:41 - 27706770 _____ C:\Users\RobRobsen\Downloads\Soulimage - Can You Feel Me.zip
2016-05-13 06:40 - 2016-05-13 06:40 - 48674413 _____ C:\Users\RobRobsen\Downloads\RENDEZ-VOUS - Rendez-Vous EP.zip
2016-05-13 06:40 - 2016-05-13 06:40 - 40952282 _____ C:\Users\RobRobsen\Downloads\BLEIB MODERN - Danse EP.zip
2016-05-13 06:40 - 2016-05-13 06:40 - 24964727 _____ C:\Users\RobRobsen\Downloads\Shyness of Strangers - FROM ASHES.zip
2016-05-13 06:40 - 2016-05-13 06:40 - 22221584 _____ C:\Users\RobRobsen\Downloads\Voight - Shadow-Excision.zip
2016-05-13 06:39 - 2016-05-13 06:40 - 108365604 _____ C:\Users\RobRobsen\Downloads\AVIARIES - Aviaries.zip
2016-05-12 22:02 - 2016-05-12 22:02 - 00000000 ____D C:\Users\RobRobsen\AppData\Roaming\SafeInCloud
2016-05-12 22:01 - 2016-06-11 01:11 - 00000000 ____D C:\Users\RobRobsen\AppData\Local\SafeInCloud
2016-05-12 22:00 - 2016-05-12 22:00 - 07270600 _____ (Andrey Shcherbakov) C:\Users\RobRobsen\Downloads\SafeInCloud_Setup.exe
2016-05-12 22:00 - 2016-05-12 22:00 - 00000000 ____D C:\Users\RobRobsen\AppData\Local\Downloaded Installations
2016-05-12 17:39 - 2016-05-12 17:39 - 00001914 _____ C:\Users\Public\Desktop\QuickTime Player.lnk
2016-05-12 17:39 - 2016-05-12 17:39 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
2016-05-12 17:36 - 2016-05-12 17:36 - 00000000 _____ C:\WINDOWS\SysWOW64\REN8FF9.tmp
2016-05-12 17:35 - 2016-05-12 17:35 - 00110144 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge-64.dll
2016-05-12 17:35 - 2016-05-12 17:35 - 00000000 ____D C:\Users\RobRobsen\AppData\Roaming\Sun
2016-05-12 17:35 - 2016-05-12 17:35 - 00000000 ____D C:\Users\RobRobsen\.oracle_jre_usage
2016-05-12 17:31 - 2016-05-12 17:31 - 41896256 _____ (Apple Inc.) C:\Users\RobRobsen\Downloads\QuickTimeInstaller(3).exe
2016-05-12 17:31 - 2016-05-12 17:31 - 00000000 ____D C:\Users\RobRobsen\AppData\LocalLow\Oracle
2016-05-12 17:31 - 2016-05-12 17:31 - 00000000 ____D C:\Program Files\Java
2016-05-12 17:30 - 2016-05-12 17:31 - 57666112 _____ (Oracle Corporation) C:\Users\RobRobsen\Downloads\jre-8u91-windows-x64.exe
2016-05-12 17:29 - 2016-05-12 17:29 - 13163744 _____ (Microsoft Corporation) C:\Users\RobRobsen\Downloads\Silverlight_x64(2).exe

==================== Ein Monat: Geänderte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2016-06-11 13:21 - 2013-11-16 04:23 - 00000000 ____D C:\FRST
2016-06-11 13:09 - 2015-06-20 02:17 - 00001144 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2016-06-11 13:05 - 2015-08-01 23:44 - 00000884 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2016-06-11 12:31 - 2015-01-14 09:50 - 00000000 ____D C:\Users\RobRobsen\AppData\Local\Spotify
2016-06-11 12:30 - 2015-06-20 02:17 - 00001140 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2016-06-11 12:30 - 2015-01-14 09:49 - 00000000 ____D C:\Users\RobRobsen\AppData\Roaming\Spotify
2016-06-11 00:43 - 2015-09-05 02:35 - 00004172 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{7CC4D856-B6C6-4121-9F0C-8A076CD4B559}
2016-06-10 23:45 - 2015-01-14 11:23 - 00000000 ____D C:\Program Files (x86)\Steam
2016-06-10 18:36 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-06-10 18:17 - 2015-10-30 09:24 - 00000000 ___HD C:\Program Files\WindowsApps
2016-06-09 21:56 - 2016-04-15 13:47 - 00000000 ____D C:\Users\RobRobsen
2016-06-09 20:44 - 2015-09-09 20:24 - 00338680 _____ C:\WINDOWS\system32\Drivers\EasyAntiCheat.sys
2016-06-09 20:10 - 2015-01-17 08:10 - 00000000 ____D C:\Program Files (x86)\iRacing
2016-06-09 19:52 - 2016-05-06 14:43 - 00000000 ____D C:\Users\RobRobsen\Downloads\Attachments_201656
2016-06-08 19:22 - 2016-01-28 12:32 - 00004024 _____ C:\WINDOWS\System32\Tasks\Opera scheduled Autoupdate 1453977157
2016-06-08 18:52 - 2015-01-14 09:55 - 00000000 ____D C:\Users\RobRobsen\AppData\Local\Last.fm
2016-06-07 18:11 - 2015-06-20 02:17 - 00002264 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-06-07 18:11 - 2015-06-20 02:17 - 00002252 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-06-06 23:41 - 2015-08-20 09:19 - 00000000 ____D C:\Users\RobRobsen\AppData\Roaming\vlc
2016-06-05 19:20 - 2015-03-20 15:55 - 00000000 ____D C:\Users\RobRobsen\.gimp-2.8
2016-06-05 16:41 - 2015-03-20 16:00 - 00000000 ____D C:\Users\RobRobsen\AppData\Local\gtk-2.0
2016-06-03 21:58 - 2015-09-05 02:19 - 00000000 ____D C:\Program Files\iTunes
2016-06-03 21:57 - 2015-01-14 09:49 - 00000000 ____D C:\Program Files (x86)\iTunes
2016-06-03 21:57 - 2015-01-14 09:48 - 00000000 ____D C:\Program Files\Common Files\Apple
2016-06-03 19:30 - 2016-02-13 19:25 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-06-02 19:14 - 2015-10-30 08:28 - 00524288 ___SH C:\WINDOWS\system32\config\BBI
2016-06-02 19:09 - 2016-04-03 14:52 - 00000000 ____D C:\Users\RobRobsen\AppData\Roaming\PlaysTV
2016-06-02 19:09 - 2016-01-13 06:41 - 00000000 ____D C:\Users\RobRobsen\AppData\Roaming\Raptr
2016-06-02 19:07 - 2015-01-15 02:21 - 00000000 ____D C:\Program Files (x86)\AMD
2016-06-02 19:05 - 2015-10-30 09:21 - 00000000 ____D C:\WINDOWS\INF
2016-06-02 19:03 - 2013-12-17 16:50 - 00000000 ____D C:\AMD
2016-05-30 09:28 - 2016-01-12 05:55 - 00000000 ____D C:\Users\RobRobsen\AppData\Local\CrashDumps
2016-05-29 13:22 - 2015-08-20 09:07 - 00000000 ____D C:\Users\RobRobsen\AppData\Local\Tomahawk
2016-05-29 13:18 - 2015-12-10 22:59 - 00000000 ____D C:\Users\RobRobsen\AppData\Local\SpotifyResolver
2016-05-29 13:12 - 2015-08-20 09:05 - 00000000 ____D C:\Program Files (x86)\Tomahawk
2016-05-28 10:57 - 2015-02-18 01:52 - 00000000 ____D C:\Users\RobRobsen\AppData\LocalLow\Dinosaur Polo Club
2016-05-27 04:40 - 2016-02-03 12:08 - 00000000 ____D C:\Users\RobRobsen\Documents\American Truck Simulator
2016-05-25 11:02 - 2016-04-15 13:43 - 00000000 ____D C:\Program Files\AMD
2016-05-25 06:22 - 2015-01-22 14:13 - 00000000 ____D C:\Users\RobRobsen\Documents\Masters of the World
2016-05-25 05:40 - 2015-01-14 11:36 - 00000000 ____D C:\Users\RobRobsen\Documents\My Games
2016-05-23 09:56 - 2016-04-02 19:04 - 00000000 ____D C:\Users\RobRobsen\AppData\Local\Logitech
2016-05-21 01:40 - 2016-04-15 13:46 - 02086168 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-05-21 01:40 - 2016-02-13 18:59 - 00888008 _____ C:\WINDOWS\system32\perfh007.dat
2016-05-21 01:40 - 2016-02-13 18:59 - 00197092 _____ C:\WINDOWS\system32\perfc007.dat
2016-05-20 23:47 - 2016-04-29 21:48 - 08865344 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atiumdva.dll
2016-05-20 23:47 - 2016-04-29 21:48 - 00123776 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atiu9pag.dll
2016-05-20 23:47 - 2016-04-01 00:46 - 00166488 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atiuxp64.dll
2016-05-20 23:47 - 2016-04-01 00:46 - 00137136 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atiuxpag.dll
2016-05-20 23:47 - 2016-04-01 00:45 - 10694160 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atidxx64.dll
2016-05-20 23:47 - 2016-04-01 00:45 - 08876704 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atidxx32.dll
2016-05-20 23:47 - 2016-04-01 00:45 - 01511680 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\aticfx64.dll
2016-05-20 23:47 - 2016-04-01 00:45 - 01242832 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\aticfx32.dll
2016-05-20 23:46 - 2016-04-29 21:48 - 06999496 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atiumdag.dll
2016-05-20 23:46 - 2016-03-31 23:29 - 09798560 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atiumd6a.dll
2016-05-20 23:41 - 2016-04-01 00:35 - 27015680 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Drivers\atikmdag.sys
2016-05-20 22:57 - 2016-04-01 00:35 - 00498176 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Drivers\atikmpag.sys
2016-05-17 16:54 - 2016-04-03 14:50 - 00000000 ____D C:\Program Files (x86)\VulkanRT
2016-05-16 04:17 - 2016-04-29 21:48 - 00123776 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\SET77A1.tmp
2016-05-16 04:17 - 2016-04-01 00:46 - 00166488 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\SET5EBA.tmp
2016-05-16 04:17 - 2016-04-01 00:46 - 00137136 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\SET78DC.tmp
2016-05-16 04:17 - 2016-04-01 00:45 - 10689528 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\SET331E.tmp
2016-05-16 04:17 - 2016-04-01 00:45 - 08873608 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\SET42BB.tmp
2016-05-16 04:17 - 2016-04-01 00:45 - 01510144 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\SET5F79.tmp
2016-05-16 04:17 - 2016-04-01 00:45 - 01241296 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\SET6364.tmp
2016-05-16 04:16 - 2016-04-29 21:48 - 08865344 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\SET3787.tmp
2016-05-16 04:16 - 2016-04-29 21:48 - 06999496 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\SET3449.tmp
2016-05-16 04:16 - 2016-03-31 23:29 - 09798560 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\SETAE3.tmp
2016-05-16 04:11 - 2016-04-01 00:35 - 27012096 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Drivers\SET6E7.tmp
2016-05-16 03:35 - 2016-03-01 13:37 - 00101376 _____ (Advanced Micro Devices) C:\WINDOWS\system32\Drivers\AtihdWT6.sys
2016-05-16 03:24 - 2016-04-01 00:35 - 00497664 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Drivers\SET5E69.tmp
2016-05-14 18:37 - 2015-08-26 09:43 - 00000000 ____D C:\Users\RobRobsen\AppData\Roaming\MediaMonkey
2016-05-14 17:35 - 2016-02-12 14:56 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-05-14 08:10 - 2015-09-06 02:06 - 00000000 ____D C:\Users\RobRobsen\AppData\Roaming\foobar2000
2016-05-14 03:17 - 2015-05-17 17:32 - 00000000 ____D C:\Users\RobRobsen\Documents\Paradox Interactive
2016-05-13 20:13 - 2015-10-30 09:11 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-05-13 19:32 - 2015-07-30 19:32 - 00000000 ____D C:\Users\RobRobsen\AppData\Local\Packages
2016-05-12 21:03 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\rescache
2016-05-12 19:19 - 2015-06-24 04:07 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2016-05-12 19:19 - 2015-06-24 04:07 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2016-05-12 17:39 - 2015-01-14 09:56 - 00000000 ____D C:\Program Files (x86)\QuickTime
2016-05-12 17:36 - 2015-02-02 16:31 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2016-05-12 17:29 - 2015-06-24 04:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======

2015-07-31 02:21 - 2015-07-31 14:04 - 0000506 _____ () C:\Users\RobRobsen\AppData\Roaming\burnaware.ini
2015-09-05 17:05 - 2008-02-02 15:51 - 0109120 __RSH (Un4seen Developments) C:\Users\RobRobsen\AppData\Roaming\Microsoft\clog.txt
2015-09-05 17:15 - 2015-09-05 17:16 - 0000275 _____ () C:\Users\RobRobsen\AppData\Local\HamsterAudioConverterSettings.cfg
2016-06-05 16:41 - 2016-06-05 16:41 - 0003447 _____ () C:\Users\RobRobsen\AppData\Local\recently-used.xbel
2016-01-26 02:53 - 2016-01-26 02:53 - 0000109 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.400.64.bc

Einige Dateien in TEMP:
====================
C:\Users\RobRobsen\AppData\Local\Temp\DefaultPack.EXE
C:\Users\RobRobsen\AppData\Local\Temp\i4jdel0.exe
C:\Users\RobRobsen\AppData\Local\Temp\raptrpatch.exe
C:\Users\RobRobsen\AppData\Local\Temp\raptr_stub.exe


==================== Bamital & volsnap =================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert
C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert
C:\WINDOWS\explorer.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert
C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert
C:\WINDOWS\system32\services.exe => Datei ist digital signiert
C:\WINDOWS\system32\User32.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert
C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert
C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert
C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert


LastRegBack: 2016-06-03 20:47

==================== Ende von FRST.txt ==========
         


und hier die Addition.txt

Code:
ATTFilter
Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version:10-06-2016
durchgeführt von RobRobsen (2016-06-11 13:21:43)
Gestartet von C:\Users\RobRobsen\Desktop
Windows 10 Home Version 1511 (X64) (2016-04-15 12:13:47)
Start-Modus: Normal
==========================================================


==================== Konten: =============================

Administrator (S-1-5-21-3072544863-811831933-4102423891-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3072544863-811831933-4102423891-503 - Limited - Disabled)
Gast (S-1-5-21-3072544863-811831933-4102423891-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-3072544863-811831933-4102423891-1002 - Limited - Enabled)
RobRobsen (S-1-5-21-3072544863-811831933-4102423891-1000 - Administrator - Enabled) => C:\Users\RobRobsen

==================== Sicherheits-Center ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: ESET Smart Security 9.0.375.1 (Enabled - Up to date) {A2447E4A-A5AC-AE9D-7C6B-2EC29C58E834}
FW: ESET Personal Firewall (Enabled) {211E1E8B-C9F9-A04B-6D84-BC85190CE5F2}

==================== Installierte Programme ======================

(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)

60 Seconds! (HKLM\...\Steam App 368360) (Version:  - Robot Gentleman)
7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov)
Adobe Flash Player 22 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 22.0.0.168 - Adobe Systems Incorporated)
AdVenture Capitalist (HKLM-x32\...\Steam App 346900) (Version:  - Hyper Hippo Games)
Amarok (remove only) (HKLM-x32\...\Amarok) (Version: 2.8.0 - KDE)
Amazon MP3-Downloader 1.0.18 (HKU\S-1-5-21-3072544863-811831933-4102423891-1000\...\Amazon MP3-Downloader) (Version: 1.0.18 - Amazon Services LLC)
AMD Install Manager (HKLM\...\AMD Catalyst Install Manager) (Version: 9.0.000.4 - Advanced Micro Devices, Inc.)
American Truck Simulator (HKLM-x32\...\Steam App 270880) (Version:  - SCS Software)
Apple Application Support (32-Bit) (HKLM-x32\...\{26356515-5821-40FA-9C3D-9785052A1062}) (Version: 4.3.1 - Apple Inc.)
Apple Application Support (64-Bit) (HKLM\...\{C2651553-6CA3-4822-B2E6-BC4ACA6E0EA2}) (Version: 4.3.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{2E4AF2A6-50EA-4260-9BA4-5E582D11879A}) (Version: 9.3.0.15 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Version: 2.2.0.150 - Apple Inc.)
Automation - The Car Company Tycoon Game (HKLM-x32\...\Steam App 293760) (Version:  - Camshaft Software)
Besiege (HKLM-x32\...\Steam App 346010) (Version:  - Spiderling Studios)
Block'hood (HKLM\...\Steam App 416210) (Version:  - Plethora-Project LLC)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
Card Hunter (HKLM-x32\...\Steam App 293260) (Version:  - Blue Manchu)
Catalyst Control Center Next Localization BR (Version: 2016.0520.1721.29404 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHS (Version: 2016.0520.1721.29404 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHT (Version: 2016.0520.1721.29404 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CS (Version: 2016.0520.1721.29404 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DA (Version: 2016.0520.1721.29404 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DE (Version: 2016.0520.1721.29404 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization EL (Version: 2016.0520.1721.29404 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization ES (Version: 2016.0520.1721.29404 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FI (Version: 2016.0520.1721.29404 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FR (Version: 2016.0520.1721.29404 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization HU (Version: 2016.0520.1721.29404 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization IT (Version: 2016.0520.1721.29404 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization JA (Version: 2016.0520.1721.29404 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization KO (Version: 2016.0520.1721.29404 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NL (Version: 2016.0520.1721.29404 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NO (Version: 2016.0520.1721.29404 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization PL (Version: 2016.0520.1721.29404 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization RU (Version: 2016.0520.1721.29404 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization SV (Version: 2016.0520.1721.29404 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TH (Version: 2016.0520.1721.29404 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TR (Version: 2016.0520.1721.29404 - Advanced Micro Devices, Inc.) Hidden
CDBurnerXP (HKLM-x32\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.5.5767 - CDBurnerXP)
Cities XXL (HKLM-x32\...\Steam App 313010) (Version:  - Focus Home Interactive)
Cities: Skylines (HKLM-x32\...\Steam App 255710) (Version:  - Colossal Order)
CloneBD (HKLM-x32\...\CloneBD) (Version: 1.0.5.0 - Elaborate Bytes)
Craft The World (HKLM-x32\...\Steam App 248390) (Version:  - Dekovir Entertainment)
Crusader Kings II (HKLM-x32\...\Steam App 203770) (Version:  - Paradox Development Studio)
DiRT Rally (HKLM-x32\...\Steam App 310560) (Version:  - Codemasters Racing Studio)
DOOM (HKLM\...\Steam App 379720) (Version:  - id Software)
Empire of Sports (HKU\S-1-5-21-3072544863-811831933-4102423891-1000\...\EoS-{5CCCD423-F673-4CD8-9464-9D950F49BBC3}) (Version:  - F4)
ESET Smart Security (HKLM\...\{7F05953B-8BA1-4F3B-A5ED-9F91E7F435EC}) (Version: 9.0.349.15 - ESET, spol. s r.o.)
Europa Universalis IV (HKLM\...\Steam App 236850) (Version:  - Paradox Development Studio)
Evil Genius (HKLM\...\Steam App 3720) (Version:  - Elixir Studios)
foobar2000 v1.3.8 (HKLM-x32\...\foobar2000) (Version: 1.3.8 - Peter Pawlowski)
Formula Truck 2013 (HKLM-x32\...\Steam App 273750) (Version:  - Reiza Studios)
Franchise Hockey Manager 2 (HKLM-x32\...\Steam App 333830) (Version:  - Out of the Park Developments)
GIMP 2.8.14 (HKLM\...\GIMP-2_is1) (Version: 2.8.14 - The GIMP Team)
Godus (HKLM-x32\...\Steam App 232810) (Version:  - 22cans)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 51.0.2704.84 - Google Inc.)
Google Update Helper (x32 Version: 1.3.30.3 - Google Inc.) Hidden
GRID 2 (HKLM-x32\...\Steam App 44350) (Version:  - Codemasters Racing)
Hama Racing Wheel V18 (HKLM-x32\...\{AFE59147-DDC0-4A42-A10C-9EF953728A1C}) (Version: V4.0a - )
Harvest: Massive Encounter (HKLM-x32\...\Steam App 15400) (Version:  - Oxeye Game Studio)
Helium Audio Converter (build 461) (HKLM-x32\...\{8CF3206B-6330-42D6-B35E-CA7098337CB8}_is1) (Version: 2.0.0.461 - Imploded Software)
Holy Potatoes! A Weapon Shop?! (HKLM-x32\...\Steam App 363600) (Version:  - Daylight Studios)
Hurricane (HKLM-x32\...\{337B211F-4DF1-4B0D-BC23-7510C1B636A4}_is1) (Version: 0.3.10 - Alkaline)
Imagine Earth (HKLM-x32\...\Steam App 280720) (Version:  - Serious Brothers)
Invisible, Inc. (HKLM-x32\...\Steam App 243970) (Version:  - Klei Entertainment)
iRacing Setup Sync version 3.0 (HKLM-x32\...\{C9A090AA-AA71-46EE-901E-22A63652BD91}_is1) (Version: 3.0 - Nick Thissen)
iRacing.com Race Simulation (HKLM-x32\...\{CBBB3C80-76F5-42B5-92A6-C4BF84796DCB}) (Version: 1.01.0516 - iRacing.com Motorsport Simulations)
iTunes (HKLM\...\{9F4BF859-C3A4-4AB6-BDD1-9C5D58188598}) (Version: 12.4.1.6 - Apple Inc.)
Java 8 Update 91 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418091F0}) (Version: 8.0.910.14 - Oracle Corporation)
Kerbal Space Program (HKLM-x32\...\Steam App 220200) (Version:  - Squad)
Kingdom (HKLM-x32\...\Steam App 368230) (Version:  - Noio)
Last.fm Scrobbler 2.1.37 (HKLM-x32\...\LastFM_is1) (Version:  - Last.fm)
LEGO® Worlds (HKLM-x32\...\Steam App 332310) (Version:  - )
LibreOffice 4.2.8.2 (HKLM-x32\...\{2D3234B2-FC7B-41CD-9FC8-4F9C2C20C131}) (Version: 4.2.8.2 - The Document Foundation)
LockHunter 3.1, 32/64 bit (HKLM\...\LockHunter_is1) (Version:  - Crystal Rich Ltd)
Logitech Gaming Software 5.10 (HKLM\...\{1444D2EE-C7AD-44A8-844F-2634B49353D1}) (Version: 5.10.127 - Logitech)
Malwarebytes Anti-Malware Version 2.2.0.1024 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.0.1024 - Malwarebytes)
Masters of the World (HKLM-x32\...\Steam App 268890) (Version:  - Eversim)
MediaMonkey 4.1 (HKLM-x32\...\MediaMonkey_is1) (Version: 4.1 - Ventis Media Inc.)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.41212.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.51106 (HKLM-x32\...\{8e70e4e1-06d7-470b-9f74-a51bef21088e}) (Version: 11.0.51106.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23506 (HKLM-x32\...\{3ee5e5bb-b7cc-4556-8861-a00a82977d6c}) (Version: 14.0.23506.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23506 (HKLM-x32\...\{23daf363-3020-4059-b3ae-dc4ad39fed19}) (Version: 14.0.23506.0 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
Mini Metro (HKLM-x32\...\Steam App 287980) (Version:  - Dinosaur Polo Club)
Miro (HKLM-x32\...\Miro) (Version: 6.0 - Participatory Culture Foundation)
Monkey Server 0.97.0 (HKLM-x32\...\Monkey Server) (Version: 0.97.0 - Bendable Bytes LLC)
Mordheim: City of the Damned (HKLM-x32\...\Steam App 276810) (Version:  - Rogue Factor)
Mozilla Firefox 44.0.2 (x86 de) (HKLM-x32\...\Mozilla Firefox 44.0.2 (x86 de)) (Version: 44.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 44.0.2.5884 - Mozilla)
MTB Downhill Simulator (HKLM\...\Steam App 475990) (Version:  - Dev4play)
Offworld Trading Company (HKLM-x32\...\Steam App 271240) (Version:  - Mohawk Games)
OpenAL (HKLM-x32\...\OpenAL) (Version:  - )
Opera Stable 38.0.2220.29 (HKLM-x32\...\Opera 38.0.2220.29) (Version: 38.0.2220.29 - Opera Software)
Origin (HKLM-x32\...\Origin) (Version: 9.5.20.5318 - Electronic Arts, Inc.)
Plague Inc: Evolved (HKLM-x32\...\Steam App 246620) (Version:  - Ndemic Creations)
Platform (x32 Version: 1.42 - VIA Technologies, Inc.) Hidden
PlaysTV (HKLM-x32\...\PlaysTV) (Version: 1.9.1-r111300-release - Plays.tv, LLC)
Power & Revolution (HKLM\...\Steam App 467520) (Version:  - Eversim)
Pro Basketball Manager 2016 (HKLM-x32\...\Steam App 347060) (Version:  - )
Project CARS (HKLM-x32\...\Steam App 234630) (Version:  - Slightly Mad Studios)
PyQt GPL v4.11.4 for Python v3.4 (x64) (HKLM\...\PyQt GPL v4.11.4 for Python v3.4 (x64)) (Version: 4.11.4 - )
QuickTime 7 (HKLM-x32\...\{FF59BD75-466A-4D5A-AD23-AAD87C5FD44C}) (Version: 7.79.80.95 - Apple Inc.)
RaceRoom Racing Experience  (HKLM-x32\...\Steam App 211500) (Version:  - Sector3 Studios)
RaceRoom Racing Experience Launcher (HKLM-x32\...\{1FD9F07F-7BBF-4C91-B3F0-A23714A3A913}_is1) (Version: 1.0 - Sector3 Studios)
Raptr (HKLM-x32\...\Raptr) (Version: 5.2.1-r113066-release - Raptr, Inc)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.77.1126.2013 - Realtek)
REDCON (HKLM\...\Steam App 449710) (Version:  - Hexage)
Redemption: Eternal Quest (HKLM-x32\...\Steam App 390880) (Version:  - SimProse Studios)
REQ Font Stub (HKLM-x32\...\REQ Font Stub) (Version:  - )
Revo Uninstaller 1.95 (HKLM-x32\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group)
rFactor 2 (HKLM\...\Steam App 365960) (Version:  - Image Space Incorporated)
Roadkil's Unstoppable Copier Version 5.2 (HKLM-x32\...\{A306FD29-7D3A-4287-91AC-9A0180931395}_is1) (Version:  - Roadkil.Net)
Rocket League (HKLM-x32\...\Steam App 252950) (Version:  - Psyonix)
Rogue State (HKLM-x32\...\Steam App 396090) (Version:  - LRDGames, Inc.)
SafeInCloud Password Manager (HKLM-x32\...\{2C3F29B7-6FE5-4808-A2E8-86234C47246D}) (Version: 16.1.1 - Andrey Shcherbakov)
SeaMonkey 2.39 (x86 de) (HKLM-x32\...\SeaMonkey 2.39 (x86 de)) (Version: 2.39 - Mozilla)
Soccer Manager 2015 (HKLM-x32\...\Steam App 356370) (Version:  - Soccer Manager Ltd)
Software Inc. (HKLM-x32\...\Steam App 362620) (Version:  - Coredumping)
SoundTouch (HKLM-x32\...\{54BB3834-5163-4016-A203-63858BFFA181}) (Version: 11.0.12.13555 - BOSE)
Space Rogue (HKLM\...\Steam App 364300) (Version:  - Red Beat)
Sparkle 2 Evo (HKLM-x32\...\Steam App 253650) (Version:  - )
SPORE™ (HKLM-x32\...\{9DF0196F-B6B8-4C3A-8790-DE42AA530101}) (Version: 1.05.0001 - Electronic Arts)
SPORE™ Galaktische Abenteuer (HKLM-x32\...\{63CEA2E4-4FE7-4F2C-B388-C1313D24157C}) (Version: 1.01.0001 - Electronic Arts)
SPORE™ Süß & Schrecklich Ergänzungs-Pack (HKLM-x32\...\{C07F8D75-7A8D-400E-A8F9-A3F396B49BB1}) (Version: 1.00.0000 - Electronic Arts)
Spotify (HKU\S-1-5-21-3072544863-811831933-4102423891-1000\...\Spotify) (Version: 1.0.29.92.g67727800 - Spotify AB)
SRWare Iron (64-Bit) Version SRWare Iron 44.2350.0 (HKLM\...\{BA85A29D-B48E-4826-BAEE-817024E52E29}_is1) (Version: SRWare Iron 44.2350.0 - SRWare)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Stellaris (HKLM\...\Steam App 281990) (Version:  - Paradox Development Studio)
TagScanner 6.0.8 (HKLM-x32\...\TagScanner_is1) (Version:  - Sergey Serkov)
Tempest (HKLM-x32\...\Steam App 418180) (Version:  - Lion's Shade)
TEW2016 (HKLM-x32\...\TEW2016) (Version:  - )
The Mims Beginning (HKLM-x32\...\Steam App 337820) (Version:  - Squatting Penguins)
The Spatials (HKLM-x32\...\Steam App 346420) (Version:  - Weird and Wry)
This War of Mine (HKLM-x32\...\Steam App 282070) (Version:  - 11 bit studios)
Tomahawk (HKLM-x32\...\Tomahawk) (Version: 0.8.99.20160528-git-master-77e9b69 - )
Total Extreme Wrestling (HKLM-x32\...\Steam App 344810) (Version:  - Grey Dog Software)
Total Extreme Wrestling Components (HKLM-x32\...\{97CF5825-218E-4AF8-9A3E-73F031C9DF0E}) (Version: 1.00.0000 - Encore)
Trackday Manager (HKLM-x32\...\Steam App 348030) (Version:  - )
Trading Paints (HKLM-x32\...\{7B2967FB-7828-4823-8D1F-C990FD6CB12E}) (Version: 1.2.0 - Shawn05.com)
Unity Web Player (HKU\S-1-5-21-3072544863-811831933-4102423891-1000\...\UnityWebPlayer) (Version: 4.6.1f1 - Unity Technologies ApS)
Universe Sandbox ² (HKLM-x32\...\Steam App 230290) (Version:  - Giant Army)
VIA Plattform-Geräte-Manager (HKLM-x32\...\InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.42 - VIA Technologies, Inc.)
Vivaldi (HKU\S-1-5-21-3072544863-811831933-4102423891-1000\...\Vivaldi) (Version: 1.0.344.37 - Vivaldi)
VLC media player (HKLM\...\VLC media player) (Version: 2.2.1 - VideoLAN)
Vulkan Run Time Libraries 1.0.11.0 (HKLM\...\VulkanRT1.0.11.0-2) (Version: 1.0.11.0 - LunarG, Inc.)
Vulkan Run Time Libraries 1.0.11.0 (Version: 1.0.11.0 - LunarG, Inc.) Hidden
Vulkan Run Time Libraries 1.0.3.1 (HKLM\...\VulkanRT1.0.3.1-3) (Version: 1.0.3.1 - LunarG, Inc.)
Vulkan Run Time Libraries 1.0.3.1 (Version: 1.0.3.1 - LunarG, Inc.) Hidden
Vulkan Run Time Libraries 1.0.8.0 (HKLM\...\VulkanRT1.0.8.0) (Version: 1.0.8.0 - LunarG, Inc.)
Windows Installer Clean Up (HKLM-x32\...\{121634B0-2F4B-11D3-ADA3-00C04F52DD52}) (Version: 3.00.00.0000 - Microsoft Corporation)
XCOM 2 (HKLM-x32\...\Steam App 268500) (Version:  - Firaxis)
Xiph QuickTime Components (HKLM-x32\...\XiphQT) (Version:  - )
Xiph.Org Open Codecs 0.85.17777 (HKLM-x32\...\Open Codecs) (Version: 0.85.17777 - Xiph.Org)
Youtubers Life (HKLM\...\Steam App 428690) (Version:  - U-Play online)

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

CustomCLSID: HKU\S-1-5-21-3072544863-811831933-4102423891-1000_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\RobRobsen\AppData\Local\Microsoft\OneDrive\17.3.6201.1019_1\FileCoAuth.exe (Microsoft Corporation)

==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

Task: {08CCF008-8C6E-4C77-9BE1-7E8F01115003} - System32\Tasks\GoogleUpdateTaskMachineUA1d03ee7eb15eacb => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-06-20] (Google Inc.)
Task: {0F2A57AC-DAD4-41D1-A721-E0C031AE70AF} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\Windows\ehome\ehPrivJob.exe
Task: {12A3C68D-2D94-4060-8245-6264677681F6} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\Windows\ehome\ehrec.exe
Task: {19EFD870-7725-46B1-9314-649021F5F46A} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\Windows\ehome\ehPrivJob.exe
Task: {1DD476AD-8561-45B9-94D5-5DE6A7B8B3A0} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\Windows\ehome\mcupdate.exe
Task: {2B1D69BA-2067-4ABE-8B19-65F0C16BF88C} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\Windows\ehome\ehPrivJob.exe
Task: {2DFEB98C-5DAA-4688-9894-3DC0FE7EB988} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\Windows\ehome\mcupdate.exe
Task: {3D1E6133-CECF-4EA4-8A90-76DA52BCC34E} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\Windows\ehome\ehPrivJob.exe
Task: {49F37323-6021-4E93-8FB1-84CF1FEF5091} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-05-26] (Adobe Systems Incorporated)
Task: {4F3B18F3-9AFC-49F4-A01E-92F6C82DEA5C} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\Windows\ehome\ehPrivJob.exe
Task: {6388C815-ACE1-414C-9EA4-284D42B2ADF9} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {6C9201B0-5677-4E54-BD98-B36B42B45880} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {8089EFAA-FB34-4FA1-95E7-CC925EC29380} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\Windows\ehome\ehPrivJob.exe
Task: {829504FC-A278-469C-88F1-C31FAFF864A6} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-06-20] (Google Inc.)
Task: {956289AC-26C8-4E37-9E50-910900C12CC1} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\Windows\ehome\ehPrivJob.exe
Task: {99ACEAFA-695D-4C49-9BC7-6DFFFE5804A0} - System32\Tasks\Opera scheduled Autoupdate 1453977157 => C:\Users\RobRobsen\AppData\Local\Programs\Opera\launcher.exe [2016-06-07] (Opera Software)
Task: {A5087428-9CF9-40C4-B7CB-2A763FB050D8} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\Windows\ehome\mcupdate.exe
Task: {ADCADBB0-99C6-4131-9E54-5C67C9212529} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\Windows\ehome\ehrec.exe
Task: {B86EFD16-4BE9-455E-BD90-A6629351F7C5} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\Windows\ehome\MCUpdate.exe
Task: {BCD1C747-9FDC-4163-91B8-88BE3778F885} - System32\Tasks\AMD Updater => C:\Program Files\AMD\CIM\\Bin64\InstallManagerApp.exe [2016-03-21] (Advanced Micro Devices, Inc.)
Task: {BE7D7D3E-D2C3-4B74-B3A5-95CE00BB508C} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-06-20] (Google Inc.)
Task: {C0A90827-DF96-42A2-85B0-F3E791A1641A} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2016-02-23] (Apple Inc.)
Task: {CE4D0194-9A47-49FC-99C4-18CE68759521} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\Windows\ehome\ehPrivJob.exe
Task: {CF59332B-8E2D-4D7C-A563-40F2DF53FC5C} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\Windows\ehome\ehPrivJob.exe
Task: {D0A7F52D-D5D1-4CB2-8226-2DAA58EC7545} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {E14DF879-E6D5-4829-A20A-E861030DE266} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\Windows\ehome\ehPrivJob.exe
Task: {E49DB95B-BF77-4536-AB7D-F9D13DFE0685} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\Windows\ehome\ehPrivJob.exe
Task: {E83FFC9A-87CC-4CC5-B156-B12C520C00E8} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\Windows\ehome\ehPrivJob.exe
Task: {F1B5F00E-56CB-4052-BF0C-F3F9D67543D6} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {F2AAB4A3-879B-4773-B994-51CD9D7F4715} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\Windows\ehome\ehPrivJob.exe
Task: {F37C9C8E-A9E4-406D-8FEE-1B5013B97E15} - System32\Tasks\{481E88A0-6832-4A80-8127-3CB3BE7B4BF7} => pcalua.exe -a C:\Users\RobRobsen\Downloads\lgs510.exe -d C:\Users\RobRobsen\Downloads

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)

Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Verknüpfungen =============================

(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)

==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============

2016-03-18 22:56 - 2016-03-18 22:56 - 00092472 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2016-04-22 01:07 - 2016-04-22 01:07 - 01337144 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2016-06-04 14:45 - 2016-06-04 14:45 - 00002560 _____ () C:\WINDOWS\runservice.exe
2015-10-30 09:18 - 2015-10-30 09:18 - 00185856 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
2016-04-15 14:35 - 2016-04-15 14:35 - 02656952 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2016-04-15 14:35 - 2016-04-15 14:35 - 02656952 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
2016-02-13 19:02 - 2016-02-13 19:02 - 00093696 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\Windows.UI.Shell.SharedUtilities.dll
2016-05-11 14:22 - 2016-04-23 06:25 - 00472064 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2016-05-11 14:22 - 2016-04-23 06:02 - 07992832 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2016-05-11 14:22 - 2016-04-23 05:58 - 00591360 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2016-05-11 14:22 - 2016-04-23 05:58 - 02483200 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2016-05-11 14:22 - 2016-04-23 06:01 - 04089856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2015-06-25 17:34 - 2015-06-25 17:34 - 00014336 _____ () C:\Program Files\AMD\CNext\CNext\QtQuick.2\qtquick2plugin.dll
2015-06-25 17:37 - 2015-06-25 17:37 - 00739840 _____ () C:\Program Files\AMD\CNext\CNext\QtQuick\Controls\qtquickcontrolsplugin.dll
2015-06-25 17:35 - 2015-06-25 17:35 - 00014336 _____ () C:\Program Files\AMD\CNext\CNext\QtQuick\Window.2\windowplugin.dll
2015-06-25 17:38 - 2015-06-25 17:38 - 00071168 _____ () C:\Program Files\AMD\CNext\CNext\QtQuick\Layouts\qquicklayoutsplugin.dll
2015-06-25 16:53 - 2015-06-25 16:53 - 00011776 _____ () C:\Program Files\AMD\CNext\CNext\libEGL.dll
2015-06-25 16:51 - 2015-06-25 16:51 - 02013696 _____ () C:\Program Files\AMD\CNext\CNext\libGLESv2.dll
2013-05-22 20:50 - 2013-05-22 20:50 - 00400704 _____ () C:\Users\RobRobsen\AppData\Local\Program Files\Amazon\MP3 Downloader\AmazonMP3DownloaderHelper.exe
2016-04-06 12:30 - 2016-04-06 12:30 - 02191872 _____ () C:\Program Files (x86)\Safe In Cloud\SafeInCloud.exe
2016-04-19 19:17 - 2016-04-19 19:17 - 00144384 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe
2016-06-04 14:45 - 2016-06-04 14:45 - 00048640 _____ () C:\WINDOWS\mmfs.dll
2016-04-19 19:17 - 2016-04-19 19:17 - 00141312 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeBackgroundTasks.dll
2016-04-19 19:17 - 2016-04-19 19:17 - 22284800 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkyWrap.dll

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)


==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)


==================== Verknüpfungen (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)


==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)


==================== Hosts Inhalt: ===============================

(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)

2009-07-14 04:34 - 2015-08-26 10:12 - 00000840 ____A C:\WINDOWS\system32\Drivers\etc\hosts


==================== Andere Bereiche ============================

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKU\S-1-5-21-3072544863-811831933-4102423891-1000\Control Panel\Desktop\\Wallpaper -> c:\users\robrobsen\appdata\local\microsoft\windows\themes\roamedthemefiles\desktopbackground\img0.jpg
DNS Servers: 192.168.178.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.

==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)


==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [MSMQ-In-TCP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-Out-TCP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-In-UDP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-Out-UDP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [WCF-NetTcpActivator-In-TCP-64bit] => (Allow) LPort=808
FirewallRules: [{7AD706CC-B79C-4471-B337-AE46B1129118}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Europa Universalis IV\eu4.exe
FirewallRules: [{AE639298-23C2-4298-B914-8E257FA745C7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Europa Universalis IV\eu4.exe
FirewallRules: [{8D52470C-46C8-407D-B3AE-4C8D7CEF2781}] => (Allow) C:\Program Files (x86)\Raptr Inc\PlaysTV\playstv.exe
FirewallRules: [{12238A50-5484-4362-A0A0-5D056DE3B92D}] => (Allow) C:\Program Files (x86)\Raptr Inc\PlaysTV\playstv.exe
FirewallRules: [{B3890CB6-8E3D-4375-A26D-51A159D72C74}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\rFactor 2\Launcher\Launch rFactor.exe
FirewallRules: [{9BE81DD3-1653-450A-916B-BC34D31C526D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\rFactor 2\Launcher\Launch rFactor.exe
FirewallRules: [{55E863A7-B9D6-4710-9B0C-59142A9C84FC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Universe Sandbox 2\Universe Sandbox VR.exe
FirewallRules: [{91061FB9-FF65-454F-819D-C6FF9B9C0F30}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Universe Sandbox 2\Universe Sandbox VR.exe
FirewallRules: [{5B3ECBA1-211A-44A6-BC6D-BD6EEA797597}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Blockhood\BLOCKHOOD v0_40_08.exe
FirewallRules: [{B882CF64-D448-45B0-9F8B-E0512A330435}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Blockhood\BLOCKHOOD v0_40_08.exe
FirewallRules: [{7241E2C0-E2B7-404D-A847-4C2279E1DA5D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Universe Sandbox 2\Universe Sandbox x64.exe
FirewallRules: [{F42FF18D-09F5-443B-B514-1D8F654C2666}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Universe Sandbox 2\Universe Sandbox x64.exe
FirewallRules: [{ED01076B-2CFD-4776-AF9B-215F3298BAE6}] => (Allow) C:\Program Files (x86)\Software4u\iDevice Manager\Software4u.IDeviceManager.exe
FirewallRules: [{C07BEC04-4507-45D3-BD2E-7A9553BA4643}] => (Allow) C:\Program Files (x86)\Software4u\iDevice Manager\Software4u.IDeviceManager.exe
FirewallRules: [{D8F404B6-1412-43A8-A85C-780AB0D1EF5E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\mordheim\mordheim.exe
FirewallRules: [{2F834996-6BA6-4932-9FCC-FF406669D7A9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\mordheim\mordheim.exe
FirewallRules: [{410FC36C-51C6-407A-BEDE-AB0EC17BA5DC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\XCOM 2\Binaries\Win64\Launcher\ModLauncherWPF.exe
FirewallRules: [{1BA4F163-F4D9-447D-940D-EC06D10F864E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\XCOM 2\Binaries\Win64\Launcher\ModLauncherWPF.exe
FirewallRules: [{8C370E4D-146E-4FA5-8BBE-CC1AE42F9247}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Crusader Kings II\CK2game.exe
FirewallRules: [{BBB4B699-01FD-44E5-86B0-F39AD730C490}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Crusader Kings II\CK2game.exe
FirewallRules: [{9ED17B99-4C1A-4BA7-B485-8B6D92C278E4}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{8A92F458-4B82-42D2-A616-BB814BB6FEE3}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{7ECD9675-6524-4E48-8625-062F338DB74D}] => (Allow) C:\Program Files (x86)\Raptr\raptr_im.exe
FirewallRules: [{4953A212-8B4E-407E-8BB0-2994723C6FE0}] => (Allow) C:\Program Files (x86)\Raptr\raptr_im.exe
FirewallRules: [{75DF4B13-1227-42A0-A13E-7FA497F93CBB}] => (Allow) C:\Program Files (x86)\Raptr\raptr.exe
FirewallRules: [{5E5965C6-9E06-4D45-B511-8D4575262A6D}] => (Allow) C:\Program Files (x86)\Raptr\raptr.exe
FirewallRules: [{863FD560-8E95-4B4F-9F29-8F54E927B953}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\CraftTheWorld\CraftWorld.exe
FirewallRules: [{548B3EEE-5A7C-46C0-B657-86895CAE62B7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\CraftTheWorld\CraftWorld.exe
FirewallRules: [{B899A134-1922-491B-8CBA-CF57746D414D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\This War of Mine\Storyteller.exe
FirewallRules: [{E332E871-338D-43B7-A9EA-0F482A3DF046}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\This War of Mine\Storyteller.exe
FirewallRules: [{F8BDF935-46DE-4C3D-98C7-2C8AED5C6978}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Tempest\Tempest.exe
FirewallRules: [{6FF4471F-8798-4A60-8A07-65008F9DE95D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Tempest\Tempest.exe
FirewallRules: [{DA402AE7-A8A6-4C35-AC43-3F4C74D19EEE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\InvisibleInc\invisibleinc.exe
FirewallRules: [{0957B046-DEC7-4128-904B-AC5FD34015BF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\InvisibleInc\invisibleinc.exe
FirewallRules: [{5A25F66F-9E0B-4018-8822-992C0AC90CC0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Kingdom\Kingdom.exe
FirewallRules: [{89B69368-7814-4427-972F-C775D6F9E91F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Kingdom\Kingdom.exe
FirewallRules: [{55F2E153-704C-455C-9127-4BE588168070}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Basketball Pro Management 2016\PBM2016.exe
FirewallRules: [{ED960A5E-8EB5-4764-8FD2-03B83520D686}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Basketball Pro Management 2016\PBM2016.exe
FirewallRules: [{6A418D32-65A5-4074-9682-FDFB37BBF2ED}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Harvest Massive Encounter\Harvest.exe
FirewallRules: [{6B9189D3-4403-4481-A244-03B6A23B2469}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Harvest Massive Encounter\Harvest.exe
FirewallRules: [{9936F274-1820-4BC4-AC1B-B87B479B6D5B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Rogue State\winsetup.exe
FirewallRules: [{62E8A103-D887-44B1-BB04-CFBC383DBBCE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Rogue State\winsetup.exe
FirewallRules: [{469BC7B8-98FD-4955-80BD-3DE7694CCF1C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Rogue State\RogueState.exe
FirewallRules: [{EEBA77C3-E589-4212-95D2-451636444E5A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Rogue State\RogueState.exe
FirewallRules: [{4E32EE26-13E1-46D7-8C88-8162D2AB1BD7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\This War of Mine\This War of Mine.exe
FirewallRules: [{79572722-7E4E-4954-AE4B-B0CF323EA123}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\This War of Mine\This War of Mine.exe
FirewallRules: [{8AFCC12C-A2BC-4298-B501-C95033E7E222}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Franchise Hockey Manager 2\fhm2.exe
FirewallRules: [{1080E125-4903-42C9-A4FF-E1D86199801D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Franchise Hockey Manager 2\fhm2.exe
FirewallRules: [{81DD8B54-2BA7-4D1A-B029-6F30F5DF0124}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{C6AE64C6-4CCA-4958-8301-FE80F00BA5F8}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{E1B6EA37-6A3F-4387-A49D-044B224DCEDE}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{3FFE0CB4-FC64-46AC-B284-3FCBD873DCE1}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{6E1DA152-F2A9-49D5-8056-F2B419B12BDB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\MiniMetro\MiniMetro.exe
FirewallRules: [{3C1BD3F7-63CC-40CD-949E-4C53BECA2343}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\MiniMetro\MiniMetro.exe
FirewallRules: [{A629BEAE-AEBE-4A3F-8CBC-B45ABBA8F8AD}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Godus\windows\godus.exe
FirewallRules: [{FD440EB7-F04E-4EAF-B772-87198B7E08A7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Godus\windows\godus.exe
FirewallRules: [{C8974149-33E8-4225-8F7A-69EB6CADBEFF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Masters of the World\_start.exe
FirewallRules: [{68BA24C1-D9ED-4992-9995-2C0D3CAD40D9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Masters of the World\_start.exe
FirewallRules: [{34D3C920-0E7E-4095-B6B2-B95193499469}] => (Allow) C:\Users\RobRobsen\AppData\Local\Chromium\Application\chrome.exe
FirewallRules: [{6DB399F6-BA2E-41C4-9F86-9B1A71591BA5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Soccer Manager 2015\Soccer Manager 2015.exe
FirewallRules: [{B717A04A-E25D-434A-B083-106874A320C7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Soccer Manager 2015\Soccer Manager 2015.exe
FirewallRules: [{39A4C493-0E6A-49FA-ACBB-136257C1C66C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Redemption Eternal Quest\redemption.exe
FirewallRules: [{C56A71C6-C730-4821-A2E2-9BC6573E595C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Redemption Eternal Quest\redemption.exe
FirewallRules: [{B9646DA1-1B82-4CA4-BBC6-42483F36E5C0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\CardHunter\CardHunter.exe
FirewallRules: [{8B5F2635-2E5C-496B-8F8C-99A0360AD4CC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\CardHunter\CardHunter.exe
FirewallRules: [{CA38B00D-9EB1-4562-9385-CE9C166EB07F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Holy Potatoes! A Weapon Shop!\HPAWS.exe
FirewallRules: [{E4462E1E-7F72-4832-9246-0B79897B568A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Holy Potatoes! A Weapon Shop!\HPAWS.exe
FirewallRules: [TCP Query User{D8E751E4-8463-4D10-9F23-D82767AADE2D}C:\users\robrobsen\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\robrobsen\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{1DDD9A9D-92DC-42C7-B304-51A3D1F18571}C:\users\robrobsen\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\robrobsen\appdata\roaming\spotify\spotify.exe
FirewallRules: [{DE1D1D1F-4926-425C-8AEF-6284DBD06426}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{27DEDF50-9726-48FF-871C-EE62561228F9}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{FC7919CB-5E31-4BA3-A286-0F2B27DB2A28}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{6838A96B-CCC5-4464-BAD7-C0123871CA4A}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{CB468EF5-8522-4BDA-A601-F8C60F49BB71}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Mims Beginning\TheMimsBeginning.exe
FirewallRules: [{2B2056B3-E403-45DF-A8E5-B48DF6EE74D8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Mims Beginning\TheMimsBeginning.exe
FirewallRules: [{CA6A9E8D-F372-4CBF-8518-CD1DB5F5F77A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\PlagueInc\PlagueIncEvolved.exe
FirewallRules: [{60CEDD2D-E7DD-4F5D-B3C2-964B57325ED3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\PlagueInc\PlagueIncEvolved.exe
FirewallRules: [{724A78C6-6BA6-4356-BD75-880E9CAC49F5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Formula Truck 2013\FTruck.exe
FirewallRules: [{A331D42C-2B76-45E0-B3E0-4BF7E9F08700}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Formula Truck 2013\FTruck.exe
FirewallRules: [{898DFE12-4D24-47E0-BA22-9F05C9223C99}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Formula Truck 2013\FTruck Config.exe
FirewallRules: [{FED32B3B-F0B6-4ECC-BF34-32824AB0A184}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Formula Truck 2013\FTruck Config.exe
FirewallRules: [{2145CBA5-B290-4C67-B63B-63323AA2A828}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Besiege\Besiege.exe
FirewallRules: [{A96A569E-AC92-414E-9F96-218EAB696DDF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Besiege\Besiege.exe
FirewallRules: [{072521EF-424D-4344-A267-75E6234CBB98}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Cities XXL\CitiesXXL.exe
FirewallRules: [{8D804595-1411-40B1-A84D-D5465C297795}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Cities XXL\CitiesXXL.exe
FirewallRules: [{5ACCBEE6-C14E-4CC5-B502-989F4CF5AD3A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\ImagineEarth\ImagineEarth.exe
FirewallRules: [{C09AFC8A-CBEA-479D-976D-DCE9E0188808}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\ImagineEarth\ImagineEarth.exe
FirewallRules: [{F386F6A4-1B71-4765-B694-606E13574A18}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Offworld Trading Company\Offworld.exe
FirewallRules: [{40C08118-B7BA-498D-88EF-B06F795E5104}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Offworld Trading Company\Offworld.exe
FirewallRules: [{74ABAA6F-6661-49F9-BA73-2F833734A623}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Cities_Skylines\Cities.exe
FirewallRules: [{8720797F-D0CF-4DBB-B64A-8402471D1898}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Cities_Skylines\Cities.exe
FirewallRules: [{492E58BA-5DC8-49F3-8CBE-67F7F2040CC3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Automation\Automation Launcher Steam.exe
FirewallRules: [{C0CB9BFC-B0FB-4B20-A621-18D3E621A218}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Automation\Automation Launcher Steam.exe
FirewallRules: [{4BFDF459-CEC7-4FE8-BD6E-C6BCB4E7069A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Spatials\The Spatials.exe
FirewallRules: [{B336CC8C-74BD-4738-9F29-2CC97078EA3E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Spatials\The Spatials.exe
FirewallRules: [{31192B17-00B3-4FAD-A60E-0DF493A17A01}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Total Extreme Wrestling\TEW2010.exe
FirewallRules: [{D3958E84-B9FF-4420-9A7E-AF0CD6677887}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Total Extreme Wrestling\TEW2010.exe
FirewallRules: [{4CF805CE-8FBE-45B1-A746-ADE1F9BFA7FB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\AdVenture Capitalist\adventure-capitalist.exe
FirewallRules: [{7BDBF2C2-4019-42C3-8628-0945FB6544FD}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\AdVenture Capitalist\adventure-capitalist.exe
FirewallRules: [{F2E115B5-3DD3-4234-84E9-534A78116A05}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Formula Truck 2013\FTruck Dedicated.exe
FirewallRules: [{E3BA722E-74B1-4608-BFC3-35A22BD5C659}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Formula Truck 2013\FTruck Dedicated.exe
FirewallRules: [{606FD64B-891D-44AA-8443-25751A981200}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Software Inc\Software Inc.exe
FirewallRules: [{C7ACE7E9-A1A7-4C74-9FB6-2C43516DB9A4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Software Inc\Software Inc.exe
FirewallRules: [{39AD6777-2839-48A8-AF1A-B42962B4A7C8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\pCars\pCARS64.exe
FirewallRules: [{6D765EC9-343D-48FD-99D3-A6B29FE37728}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\pCars\pCARS64.exe
FirewallRules: [{1D2ECE0B-C36E-4EC0-94D7-9428B9670984}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Trackday Manager\Trackday Manager.exe
FirewallRules: [{8470EAB5-8737-4E96-8CDE-D63FC9D2835B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Trackday Manager\Trackday Manager.exe
FirewallRules: [{78A43868-6744-4018-A9A0-EE92514C5B9B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Sparkle2\sparkle2evo.exe
FirewallRules: [{E233327F-1700-4BC8-A93D-7A3A3B4F119C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Sparkle2\sparkle2evo.exe
FirewallRules: [{54DC7C58-A5CE-4E81-8628-6E104C8BED60}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\DiRT Rally\drt.exe
FirewallRules: [{56E66E16-2874-4A17-BD2E-C004E8EC1BA1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\DiRT Rally\drt.exe
FirewallRules: [{CD6DFD9F-BE9A-4C5C-897C-803368F365A6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\grid 2\grid2.exe
FirewallRules: [{04DE4C81-A94C-403B-9D1A-E27D81140F67}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\grid 2\grid2.exe
FirewallRules: [{314FEBD2-6901-4E44-88C4-3615B1EC452F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Kerbal Space Program\KSP.exe
FirewallRules: [{E4CAABBC-BC2B-49D2-9135-69905E04F8A9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Kerbal Space Program\KSP.exe
FirewallRules: [{8382A5A5-55EB-4D2D-AA28-F8D874A61D13}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Automation\Automation_Shipping_Steam.exe
FirewallRules: [{EE98D38D-0D41-428F-A7B3-25992BAB0D17}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Automation\Automation_Shipping_Steam.exe
FirewallRules: [{27F7274C-2BE0-4EFD-88A7-C172B4A6A300}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Kerbal Space Program\KSP_x64.exe
FirewallRules: [{F3526DF7-2A17-4725-A2D3-6F4EC1CC2CE2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Kerbal Space Program\KSP_x64.exe
FirewallRules: [{961EBC65-C228-4370-BF61-76E1A65457DD}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\REDCON\Redcon.exe
FirewallRules: [{63F9AF71-34B8-4555-AA10-2EA5C682D28C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\REDCON\Redcon.exe
FirewallRules: [{2980A56A-7F02-49DF-9B3F-3088183E9210}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Space Rogue\SpaceRogue.exe
FirewallRules: [{45E52DD2-F516-4132-BB5A-1E37695BFC0B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Space Rogue\SpaceRogue.exe
FirewallRules: [{34D0416F-BD93-44FF-8C8D-2636A8CC333D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Stellaris\stellaris.exe
FirewallRules: [{0237E2B5-9F60-4408-956D-C4E5905294B7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Stellaris\stellaris.exe
FirewallRules: [{EFED351C-FD24-4A33-B096-C044426029C7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\DOOM\DOOMx64.exe
FirewallRules: [{78E00B8C-8ECB-40A4-82EF-A49BE6886B12}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\DOOM\DOOMx64.exe
FirewallRules: [{C5115476-CAF4-4E56-8F15-3E65E015CD5C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\YoutubersLife\YoutubersLife.exe
FirewallRules: [{1DE511A1-6EEF-4738-ACEC-4ECE4234FE90}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\YoutubersLife\YoutubersLife.exe
FirewallRules: [{ADA0F1E4-15A0-4779-81DE-AF5F529D277A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\raceroom racing experience\Game\RRRE.exe
FirewallRules: [{8A764E80-C4FA-475B-B86B-F9703BE40ECD}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\raceroom racing experience\Game\RRRE.exe
FirewallRules: [{5E02D153-E40B-4EAE-A616-2406D5E28D45}] => (Allow) F:\steam\steamapps\common\Evil Genius\EvilGeniusLauncher.exe
FirewallRules: [{18B5D903-AAAF-4846-A1BA-F30B741AA651}] => (Allow) F:\steam\steamapps\common\Evil Genius\EvilGeniusLauncher.exe
FirewallRules: [{A821AB1F-7555-4C14-9CEE-E9867728FF16}] => (Allow) C:\Program Files (x86)\SoundTouch\SoundTouch.exe
FirewallRules: [{C27A5014-B38A-4F93-9BF0-96F752B2D5E6}] => (Allow) C:\Program Files (x86)\SoundTouch\SoundTouchMusicServer\SoundTouch music server.exe
FirewallRules: [{BC7E9CC6-2007-4762-B5D4-42B32D3DEB09}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe
FirewallRules: [{6D8DACD7-80D9-4B5C-BFFF-1B804F86C5AE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe
FirewallRules: [{FFDC806F-5960-4FC5-AC3F-4395B41B3981}] => (Allow) C:\Program Files\Vuze\Azureus.exe
FirewallRules: [{59DFFD64-BCC6-4D7B-977C-5D92673C2C8C}] => (Allow) C:\Program Files\Vuze\Azureus.exe
FirewallRules: [{7E539BAD-A37F-4099-B9AC-22B2216F8295}] => (Allow) F:\steam\steamapps\common\Power & Revolution\_start.exe
FirewallRules: [{348E80B4-A41D-416E-A0C7-8600BE9FDBF9}] => (Allow) F:\steam\steamapps\common\Power & Revolution\_start.exe
FirewallRules: [{4D4C898F-D8F0-4C24-A1E8-56418FE8C9B7}] => (Allow) F:\steam\steamapps\common\60 Seconds!\60Seconds.exe
FirewallRules: [{946A5B22-38B7-4881-B3FC-6F8C98EBE7D6}] => (Allow) F:\steam\steamapps\common\60 Seconds!\60Seconds.exe
FirewallRules: [{F6CCC433-0ECA-45FD-A1F2-C2461D70652F}] => (Allow) C:\Program Files (x86)\Raptr Inc\Raptr\raptr.exe
FirewallRules: [{509DF8E4-F272-47FA-A276-89E4C1E307FF}] => (Allow) C:\Program Files (x86)\Raptr Inc\Raptr\raptr.exe
FirewallRules: [{9CEF12B8-C8D0-42F6-A254-CB10FA13DB31}] => (Allow) C:\Program Files (x86)\Raptr Inc\Raptr\raptr_im.exe
FirewallRules: [{17E5DBE2-FB08-4997-B776-500AB975053A}] => (Allow) C:\Program Files (x86)\Raptr Inc\Raptr\raptr_im.exe
FirewallRules: [{D17A1344-91B6-458E-9D03-9BC076C531C1}] => (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [{7F10F0D1-1B88-49F3-B1AE-B123AD0744AE}] => (Allow) F:\steam\steamapps\common\MTB Downhill Simulator\MTB Downhill Simulator.exe
FirewallRules: [{3BC0184D-AB6F-4FD0-BB0F-CD556346B480}] => (Allow) F:\steam\steamapps\common\MTB Downhill Simulator\MTB Downhill Simulator.exe
FirewallRules: [{C6E10CDD-1DA0-4BFC-966B-0AE7133105D4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\American Truck Simulator\bin\win_x64\amtrucks.exe
FirewallRules: [{DE62C2DE-F4DA-4DBD-80BD-4209C6AC8372}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\American Truck Simulator\bin\win_x64\amtrucks.exe
FirewallRules: [{F06DC39C-9E0D-43CE-89C4-822CB810D349}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Wiederherstellungspunkte =========================

28-05-2016 04:48:02 Installed SoundTouch
05-06-2016 19:29:55 Geplanter Prüfpunkt

==================== Fehlerhafte Geräte im Gerätemanager =============


==================== Fehlereinträge in der Ereignisanzeige: =========================

Applikationsfehler:
==================
Error: (06/11/2016 01:11:44 AM) (Source: ATIeRecord) (EventID: 16387) (User: )
Description: ATI EEU Service event error

Error: (06/09/2016 09:56:45 PM) (Source: ATIeRecord) (EventID: 16387) (User: )
Description: ATI EEU Service event error

Error: (06/09/2016 09:56:38 PM) (Source: ATIeRecord) (EventID: 16387) (User: )
Description: ATI EEU Service event error

Error: (06/08/2016 11:03:04 PM) (Source: ATIeRecord) (EventID: 16387) (User: )
Description: ATI EEU Service event error

Error: (06/08/2016 11:02:57 PM) (Source: ATIeRecord) (EventID: 16387) (User: )
Description: ATI EEU Service event error

Error: (06/07/2016 10:29:30 PM) (Source: ATIeRecord) (EventID: 16387) (User: )
Description: ATI EEU Service event error

Error: (06/07/2016 10:29:23 PM) (Source: ATIeRecord) (EventID: 16387) (User: )
Description: ATI EEU Service event error

Error: (06/06/2016 11:58:25 PM) (Source: ATIeRecord) (EventID: 16387) (User: )
Description: ATI EEU Service event error

Error: (06/06/2016 10:32:42 PM) (Source: ATIeRecord) (EventID: 16387) (User: )
Description: ATI EEU Service event error

Error: (06/06/2016 10:32:35 PM) (Source: ATIeRecord) (EventID: 16387) (User: )
Description: ATI EEU Service event error


Systemfehler:
=============
Error: (06/11/2016 01:11:38 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Benutzerdatenzugriff_5e5c67f" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (06/11/2016 01:11:38 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Benutzerdatenspeicher _5e5c67f" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (06/11/2016 01:11:38 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Kontaktdaten_5e5c67f" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (06/11/2016 01:11:38 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Synchronisierungshost_5e5c67f" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (06/10/2016 08:54:42 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Steam Client Service" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%1053

Error: (06/10/2016 08:54:42 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Steam Client Service erreicht.

Error: (06/09/2016 09:56:33 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Benutzerdatenzugriff_57965c5" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (06/09/2016 09:56:33 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Benutzerdatenspeicher _57965c5" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (06/09/2016 09:56:33 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Kontaktdaten_57965c5" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (06/09/2016 09:56:33 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Synchronisierungshost_57965c5" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.


CodeIntegrity:
===================================
  Date: 2016-05-14 03:12:40.999
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2016-05-13 20:23:20.765
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2016-05-12 17:08:01.676
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2016-05-11 20:20:55.320
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2016-05-11 20:20:55.307
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2016-05-11 20:20:55.293
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2016-05-11 20:20:55.278
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2016-05-11 20:20:55.151
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2016-05-11 20:20:55.116
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2016-05-11 20:20:55.049
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.


==================== Speicherinformationen =========================== 

Prozessor: AMD FX(tm)-8350 Eight-Core Processor 
Prozentuale Nutzung des RAM: 14%
Installierter physikalischer RAM: 16365.52 MB
Verfügbarer physikalischer RAM: 13942.03 MB
Summe virtueller Speicher: 32749.52 MB
Verfügbarer virtueller Speicher: 29996.32 MB

==================== Laufwerke ================================

Drive c: () (Fixed) (Total:1583.08 GB) (Free:950.97 GB) NTFS
Drive f: (Volume) (Fixed) (Total:2048 GB) (Free:1973.94 GB) NTFS
Drive h: (System-reserviert) (Fixed) (Total:0.1 GB) (Free:0.06 GB) NTFS ==>[System mit Startkomponenten (eingeholt von Laufwerk)]

==================== MBR & Partitionstabelle ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 1863 GB) (Disk ID: 000A7158)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=1583.1 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=449 MB) - (Type=27)
Partition 4: (Not Active) - (Size=279.4 GB) - (Type=05)

========================================================
Disk: 1 (Size: 3726 GB) (Disk ID: 7AC5B36F)
Partition 1: (Not Active) - (Size=2048 GB) - (Type=07 NTFS)

==================== Ende von Addition.txt ============================
         
__________________

Alt 11.06.2016, 13:54   #4
deeprybka
/// TB-Ausbilder
/// Anleitungs-Guru
 
Eset Smart Security 9 fehlermeldung - Standard

Eset Smart Security 9 fehlermeldung



Schritt 1
Downloade Dir bitte AdwCleaner Logo Icon AdwCleaner auf deinen Desktop.
  • Schließe alle offenen Programme und Browser. Bebilderte Anleitung zu AdwCleaner.
  • Starte die AdwCleaner.exe mit einem Doppelklick.
  • Stimme den Nutzungsbedingungen zu.
  • Klicke auf Optionen und vergewissere dich, dass die folgenden Punkte ausgewählt sind:
    • "Tracing" Schlüssel löschen
    • Winsock Einstellungen zurücksetzen
    • Proxy Einstellungen zurücksetzen
    • Internet Explorer Richtlinien zurücksetzen
    • Chrome Richtlinien zurücksetzen
    • Stelle sicher, dass alle 5 Optionen wie hier dargestellt, ausgewählt sind
  • Klicke auf Suchlauf und warte bis dieser abgeschlossen ist.
  • Klicke nun auf Löschen und bestätige auftretende Hinweise mit Ok.
  • Dein Rechner wird automatisch neu gestartet. Nach dem Neustart öffnet sich eine Textdatei. Poste mir deren Inhalt mit deiner nächsten Antwort.
  • Die Logdatei findest du auch unter C:\AdwCleaner\AdwCleaner[Cx].txt. (x = fortlaufende Nummer).


Schritt 2
Downloade Dir HitmanProauf Deinen Desktop:

HitmanPro-32 Bit Version
HitmanPro-64 Bit Version
  • Starte die HitmanPro.exe
  • Klicke auf
  • Entferne den Haken bei
  • Klicke auf
    und
  • Akzeptiere die Lizenzbedingungen und klicke auf
  • Klicke auf

    und auf
  • Wenn der Scan beendet wurde, nichts löschen lassen etc. sondern wähle unten links auf der Button-Leiste
    und speichere die Logdatei auf Deinem Desktop.
  • Schließe HitmanPro und poste mir das Log.
__________________
Gruß
deeprybka

Lob, Kritik, Wünsche?

Spende fürs trojaner-board?
_______________________________________________
„Neminem laede, immo omnes, quantum potes, iuva.“ Arthur Schopenhauer

Alt 11.06.2016, 15:27   #5
FRANTANIA
 
Eset Smart Security 9 fehlermeldung - Standard

Eset Smart Security 9 fehlermeldung



AdwCleaner
zur info ich hab den AdwCleaner 2 mal laufen lassen weil beim ersten mal die einstellungen nicht gestimmt haben ich hab mal beide logs gepostet


Code:
ATTFilter
# AdwCleaner v5.119 - Bericht erstellt am 11/06/2016 um 16:02:49
# Aktualisiert am 30/05/2016 von Xplode
# Datenbank : 2016-06-10.1 [Server]
# Betriebssystem : Windows 10 Home  (X64)
# Benutzername : RobRobsen - ROBROBSEN-PC
# Gestartet von : C:\Users\RobRobsen\Desktop\AdwCleaner_5.119.exe
# Option : Löschen
# Unterstützung : hxxp://toolslib.net/forum

***** [ Dienste ] *****


***** [ Ordner ] *****

[-] Ordner gelöscht : C:\Users\RobRobsen\AppData\Local\MalwareProtectionLive

***** [ Dateien ] *****

[-] Datei gelöscht : C:\Users\RobRobsen\AppData\Roaming\Mozilla\Firefox\Profiles\ms4gt3x2.default\searchplugins\yahoo_ff.xml

***** [ DLLs ] *****


***** [ WMI ] *****


***** [ Verknüpfungen ] *****


***** [ Aufgabenplanung ] *****


***** [ Registrierungsdatenbank ] *****

[-] Schlüssel gelöscht : HKLM\SOFTWARE\Classes\s
[-] Schlüssel gelöscht : HKLM\SOFTWARE\Classes\f
[-] Schlüssel gelöscht : HKLM\SOFTWARE\Classes\CLSID\{A43DE495-3D00-47D4-9D2C-303115707939}
[-] Schlüssel gelöscht : HKLM\SOFTWARE\Classes\CLSID\{649CCF8F-C1C9-4275-88B7-31CA8B31154C}
[-] Schlüssel gelöscht : HKLM\SOFTWARE\Classes\CLSID\{F44DC845-F9E1-4907-8D9C-1472F72E8326}
[-] Schlüssel gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0F5A9BE2-F830-4720-A06B-ECCE14866C21}

***** [ Internetbrowser ] *****

[-] [C:\Users\RobRobsen\AppData\Roaming\Mozilla\Firefox\Profiles\ms4gt3x2.default\prefs.js] gelöscht : user_pref("keyword.URL", "hxxps://search.yahoo.com/search?ei=utf-8&fr=greentree_ff1&type=994519&ilc=12&p=");

*************************

:: "Tracing" Schlüssel gelöscht
:: Proxy Einstellungen zurückgesetzt
:: Winsock Einstellungen zurückgesetzt
:: Internet Explorer Richtlinien gelöscht
:: Chrome Richtlinien gelöscht

*************************

C:\AdwCleaner\AdwCleaner[C1].txt - [1841 Bytes] - [11/06/2016 16:02:49]
C:\AdwCleaner\AdwCleaner[R0].txt - [880 Bytes] - [13/01/2015 10:28:10]
C:\AdwCleaner\AdwCleaner[S0].txt - [940 Bytes] - [13/01/2015 10:29:24]
C:\AdwCleaner\AdwCleaner[S1].txt - [2030 Bytes] - [11/06/2016 15:53:03]

########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [2131 Bytes] ##########
         


Code:
ATTFilter
# AdwCleaner v5.119 - Bericht erstellt am 11/06/2016 um 16:13:36
# Aktualisiert am 30/05/2016 von Xplode
# Datenbank : 2016-06-10.1 [Server]
# Betriebssystem : Windows 10 Home  (X64)
# Benutzername : RobRobsen - ROBROBSEN-PC
# Gestartet von : C:\Users\RobRobsen\Desktop\AdwCleaner_5.119.exe
# Option : Löschen
# Unterstützung : hxxp://toolslib.net/forum

***** [ Dienste ] *****


***** [ Ordner ] *****


***** [ Dateien ] *****


***** [ DLLs ] *****


***** [ WMI ] *****


***** [ Verknüpfungen ] *****


***** [ Aufgabenplanung ] *****


***** [ Registrierungsdatenbank ] *****


***** [ Internetbrowser ] *****


*************************

:: "Tracing" Schlüssel gelöscht
:: Proxy Einstellungen zurückgesetzt
:: Winsock Einstellungen zurückgesetzt
:: Internet Explorer Richtlinien gelöscht
:: Chrome Richtlinien gelöscht

*************************

C:\AdwCleaner\AdwCleaner[C1].txt - [2210 Bytes] - [11/06/2016 16:02:49]
C:\AdwCleaner\AdwCleaner[C2].txt - [983 Bytes] - [11/06/2016 16:13:36]
C:\AdwCleaner\AdwCleaner[R0].txt - [880 Bytes] - [13/01/2015 10:28:10]
C:\AdwCleaner\AdwCleaner[S0].txt - [940 Bytes] - [13/01/2015 10:29:24]
C:\AdwCleaner\AdwCleaner[S1].txt - [2030 Bytes] - [11/06/2016 15:53:03]
C:\AdwCleaner\AdwCleaner[S2].txt - [1127 Bytes] - [11/06/2016 16:10:23]

########## EOF - C:\AdwCleaner\AdwCleaner[C2].txt - [1345 Bytes] ##########
         


Alt 11.06.2016, 15:28   #6
deeprybka
/// TB-Ausbilder
/// Anleitungs-Guru
 
Eset Smart Security 9 fehlermeldung - Standard

Eset Smart Security 9 fehlermeldung



OK und Hitman noch...
__________________
--> Eset Smart Security 9 fehlermeldung

Alt 11.06.2016, 15:42   #7
FRANTANIA
 
Eset Smart Security 9 fehlermeldung - Standard

Eset Smart Security 9 fehlermeldung



Hitman

Code:
ATTFilter
HitmanPro 3.7.14.265
www.hitmanpro.com

   Computer name . . . . : ROBROBSEN-PC
   Windows . . . . . . . : 10.0.0.10586.X64/8
   User name . . . . . . : ROBROBSEN-PC\RobRobsen
   UAC . . . . . . . . . : Enabled
   License . . . . . . . : Free

   Scan date . . . . . . : 2016-06-11 16:31:28
   Scan mode . . . . . . : Normal
   Scan duration . . . . : 9m 10s
   Disk access mode  . . : Direct disk access (SRB)
   Cloud . . . . . . . . : Internet
   Reboot  . . . . . . . : No

   Threats . . . . . . . : 1
   Traces  . . . . . . . : 7

   Objects scanned . . . : 2.466.073
   Files scanned . . . . : 151.755
   Remnants scanned  . . : 1.138.990 files / 1.175.328 keys

Malware _____________________________________________________________________

   C:\Users\RobRobsen\Downloads\GeekUninstaller - CHIP-Installer.exe
      Size . . . . . . . : 1.457.952 bytes
      Age  . . . . . . . : 280.7 days (2015-09-05 00:20:57)
      Entropy  . . . . . : 7.2
      SHA-256  . . . . . : 665A633993C78A50C1B805C216B3DDE4411EC504D92178DB64714EEF82C90122
      Needs elevation  . : Yes
      RSA Key Size . . . : 2048
      Authenticode . . . : Valid
    > Bitdefender  . . . : Adware.Generic.1599897
      Fuzzy  . . . . . . : 103.0


Suspicious files ____________________________________________________________

   C:\Users\RobRobsen\AppData\Local\Microsoft\Windows\INetCache\IE\OVOBCGX3\FRST64[1].exe
      Size . . . . . . . : 2.385.408 bytes
      Age  . . . . . . . : 0.1 days (2016-06-11 13:07:07)
      Entropy  . . . . . : 7.6
      SHA-256  . . . . . : 0BDE8C5473C6DB7E4079FD58CF7329287616E84D75ACF009228FBBD9CD9A1713
      Needs elevation  . : Yes
      Fuzzy  . . . . . . : 24.0
         Program has no publisher information but prompts the user for permission elevation.
         Entropy (or randomness) indicates the program is encrypted, compressed or obfuscated. This is not typical for most programs.
         Authors name is missing in version info. This is not common to most programs.
         Version control is missing. This file is probably created by an individual. This is not typical for most programs.
         Time indicates that the file appeared recently on this computer.
      Forensic Cluster
         -0.6s C:\Users\RobRobsen\AppData\Local\Microsoft\Windows\INetCache\IE\OVOBCGX3\82[1].htm
         -0.6s C:\Users\RobRobsen\AppData\Local\Microsoft\Windows\INetCookies\0KK201WP.txt
         -0.4s C:\Users\RobRobsen\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\9EC3B71635F8BA3FC68DE181A104A0EF_F6C39EF89D8A3A72327D8412589658B2
         -0.4s C:\Users\RobRobsen\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\9EC3B71635F8BA3FC68DE181A104A0EF_F6C39EF89D8A3A72327D8412589658B2
         -0.3s C:\Users\RobRobsen\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\64DCC9872C5635B1B7891B30665E0558_5552C20A2631357820903FD38A8C0F9F
         -0.3s C:\Users\RobRobsen\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\64DCC9872C5635B1B7891B30665E0558_5552C20A2631357820903FD38A8C0F9F
         -0.2s C:\Users\RobRobsen\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\6AF4EE75E3A4ABA658C0087EB9A0BB5B_4F8D4D4F8A055DA96F5FDDC885E626A4
         -0.2s C:\Users\RobRobsen\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\6AF4EE75E3A4ABA658C0087EB9A0BB5B_4F8D4D4F8A055DA96F5FDDC885E626A4
         -0.2s C:\Users\RobRobsen\AppData\Local\Microsoft\Windows\INetCache\IE\193QF5MS\FRST64[1].exe
          0.0s C:\Users\RobRobsen\AppData\Local\Microsoft\Windows\INetCache\IE\OVOBCGX3\FRST64[1].exe
          0.0s C:\Users\RobRobsen\Downloads\FRST64.exe
          3.1s C:\Users\RobRobsen\Downloads\FRST-OlderVersion\

   C:\Users\RobRobsen\Desktop\FRST64.exe
      Size . . . . . . . : 2.385.408 bytes
      Age  . . . . . . . : 0.1 days (2016-06-11 13:21:06)
      Entropy  . . . . . : 7.6
      SHA-256  . . . . . : 0BDE8C5473C6DB7E4079FD58CF7329287616E84D75ACF009228FBBD9CD9A1713
      Needs elevation  . : Yes
      Fuzzy  . . . . . . : 24.0
         Program has no publisher information but prompts the user for permission elevation.
         Entropy (or randomness) indicates the program is encrypted, compressed or obfuscated. This is not typical for most programs.
         Authors name is missing in version info. This is not common to most programs.
         Version control is missing. This file is probably created by an individual. This is not typical for most programs.
         Time indicates that the file appeared recently on this computer.
      Forensic Cluster
         -28.1s C:\Users\RobRobsen\AppData\Local\Mozilla\Firefox\Profiles\ms4gt3x2.default\cache2\entries\EEE9CEE96BE9CF79309D8BD40CC2329CAD6A84EF
          0.0s C:\Users\RobRobsen\Desktop\FRST64.exe
          3.6s C:\Users\RobRobsen\AppData\Local\Microsoft\Windows\INetCache\IE\Q0SVR6A0\up64[1]
          5.3s C:\Users\RobRobsen\Desktop\FRST.txt
          7.3s C:\Users\RobRobsen\AppData\Local\Mozilla\Firefox\Profiles\ms4gt3x2.default\cache2\entries\5CC5D6D290E01D789D7A8D876F3A94BB9B5B3793
          7.9s C:\Windows\Prefetch\FRST64.EXE-7334E0A0.pf
         21.6s C:\Users\RobRobsen\AppData\Local\Mozilla\Firefox\Profiles\ms4gt3x2.default\cache2\entries\62FFE58434BE0193D22E310870B17D8552EBF26E
         32.1s C:\Users\RobRobsen\AppData\Local\Mozilla\Firefox\Profiles\ms4gt3x2.default\cache2\entries\B5DA3E133086CD75C21680F54D9A0F62181BC226
         36.3s C:\Users\RobRobsen\Desktop\Addition.txt

   C:\Users\RobRobsen\Downloads\FRST-OlderVersion\FRST64.exe
      Size . . . . . . . : 2.385.408 bytes
      Age  . . . . . . . : 1.8 days (2016-06-09 21:35:26)
      Entropy  . . . . . : 7.6
      SHA-256  . . . . . : 59D88FF4B60191F8ADFA44D1BC49A5FA44189C51E5DE85A4647BB7609C43D23C
      Needs elevation  . : Yes
      Fuzzy  . . . . . . : 24.0
         Program has no publisher information but prompts the user for permission elevation.
         Entropy (or randomness) indicates the program is encrypted, compressed or obfuscated. This is not typical for most programs.
         Authors name is missing in version info. This is not common to most programs.
         Version control is missing. This file is probably created by an individual. This is not typical for most programs.
         Time indicates that the file appeared recently on this computer.

   C:\Users\RobRobsen\Downloads\FRST64.exe
      Size . . . . . . . : 2.385.408 bytes
      Age  . . . . . . . : 0.1 days (2016-06-11 13:07:07)
      Entropy  . . . . . : 7.6
      SHA-256  . . . . . : 0BDE8C5473C6DB7E4079FD58CF7329287616E84D75ACF009228FBBD9CD9A1713
      Needs elevation  . : Yes
      Fuzzy  . . . . . . : 24.0
         Program has no publisher information but prompts the user for permission elevation.
         Entropy (or randomness) indicates the program is encrypted, compressed or obfuscated. This is not typical for most programs.
         Authors name is missing in version info. This is not common to most programs.
         Version control is missing. This file is probably created by an individual. This is not typical for most programs.
         Time indicates that the file appeared recently on this computer.
      Forensic Cluster
         -0.6s C:\Users\RobRobsen\AppData\Local\Microsoft\Windows\INetCache\IE\OVOBCGX3\82[1].htm
         -0.6s C:\Users\RobRobsen\AppData\Local\Microsoft\Windows\INetCookies\0KK201WP.txt
         -0.4s C:\Users\RobRobsen\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\9EC3B71635F8BA3FC68DE181A104A0EF_F6C39EF89D8A3A72327D8412589658B2
         -0.4s C:\Users\RobRobsen\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\9EC3B71635F8BA3FC68DE181A104A0EF_F6C39EF89D8A3A72327D8412589658B2
         -0.3s C:\Users\RobRobsen\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\64DCC9872C5635B1B7891B30665E0558_5552C20A2631357820903FD38A8C0F9F
         -0.3s C:\Users\RobRobsen\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\64DCC9872C5635B1B7891B30665E0558_5552C20A2631357820903FD38A8C0F9F
         -0.2s C:\Users\RobRobsen\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\6AF4EE75E3A4ABA658C0087EB9A0BB5B_4F8D4D4F8A055DA96F5FDDC885E626A4
         -0.2s C:\Users\RobRobsen\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\6AF4EE75E3A4ABA658C0087EB9A0BB5B_4F8D4D4F8A055DA96F5FDDC885E626A4
         -0.2s C:\Users\RobRobsen\AppData\Local\Microsoft\Windows\INetCache\IE\193QF5MS\FRST64[1].exe
         -0.0s C:\Users\RobRobsen\AppData\Local\Microsoft\Windows\INetCache\IE\OVOBCGX3\FRST64[1].exe
          0.0s C:\Users\RobRobsen\Downloads\FRST64.exe
          3.1s C:\Users\RobRobsen\Downloads\FRST-OlderVersion\


Potential Unwanted Programs _________________________________________________

   HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{2f23ab71-4ac6-41f2-a955-ea576e553146}\ (SaleCharger)
   HKU\S-1-5-21-3072544863-811831933-4102423891-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{2f23ab71-4ac6-41f2-a955-ea576e553146}\ (SaleCharger)
         

Alt 11.06.2016, 15:57   #8
deeprybka
/// TB-Ausbilder
/// Anleitungs-Guru
 
Eset Smart Security 9 fehlermeldung - Standard

Eset Smart Security 9 fehlermeldung



Hi,

Schritt 1



Drücke bitte die + R Taste und schreibe notepad in das Ausführen Fenster.
Klicke auf OK und kopiere nun den Text aus der Codebox in das leere Textdokument:
Code:
ATTFilter
CloseProcesses:
C:\Users\RobRobsen\Downloads\GeekUninstaller - CHIP-Installer.exe
BHO: Kein Name -> {6C680BAE-655C-4E3D-8FC4-E6A520C3D928} -> Keine Datei
FF user.js: detected! => C:\Users\RobRobsen\AppData\Roaming\Mozilla\Firefox\Profiles\ms4gt3x2.default\user.js [2016-03-03]
FF Extension: ZIPShield - C:\Users\RobRobsen\AppData\Roaming\Mozilla\Firefox\Profiles\ms4gt3x2.default\Extensions\{b7f19b64-1edb-45b5-86fe-c3798d814231}.xpi [2016-02-27]
EmptyTemp:
         
Speichere dieses bitte als Fixlist.txt in das Verzeichnis ab, in dem sich auch die FRST-Anwendung befindet.
  • Starte FRST und drücke auf den Entfernen-Button.
  • Das Tool erstellt eine "Fixlog.txt" -Datei.
  • Poste mir bitte deren Inhalt.

Nach dem Reboot:

Schritt 2



Bitte starte FRST erneut, und drücke auf Untersuchen.
Bitte poste mir den Inhalt des Logs.

Bitte mal testen, Problem sollte gelöst sein.
__________________
Gruß
deeprybka

Lob, Kritik, Wünsche?

Spende fürs trojaner-board?
_______________________________________________
„Neminem laede, immo omnes, quantum potes, iuva.“ Arthur Schopenhauer

Alt 11.06.2016, 16:31   #9
FRANTANIA
 
Eset Smart Security 9 fehlermeldung - Standard

Eset Smart Security 9 fehlermeldung



Fixlog

Code:
ATTFilter
Entferungsergebnis von Farbar Recovery Scan Tool (x64) Version:10-06-2016
durchgeführt von RobRobsen (2016-06-11 17:11:31) Run:1
Gestartet von C:\Users\RobRobsen\Desktop
Geladene Profile: RobRobsen & DefaultAppPool (Verfügbare Profile: RobRobsen & DefaultAppPool)
Start-Modus: Normal
==============================================

fixlist Inhalt:
*****************
CloseProcesses:
C:\Users\RobRobsen\Downloads\GeekUninstaller - CHIP-Installer.exe
BHO: Kein Name -> {6C680BAE-655C-4E3D-8FC4-E6A520C3D928} -> Keine Datei
FF user.js: detected! => C:\Users\RobRobsen\AppData\Roaming\Mozilla\Firefox\Profiles\ms4gt3x2.default\user.js [2016-03-03]
FF Extension: ZIPShield - C:\Users\RobRobsen\AppData\Roaming\Mozilla\Firefox\Profiles\ms4gt3x2.default\Extensions\{b7f19b64-1edb-45b5-86fe-c3798d814231}.xpi [2016-02-27]
EmptyTemp:
         
*****************

Prozess erfolgreich geschlossen.
C:\Users\RobRobsen\Downloads\GeekUninstaller - CHIP-Installer.exe => erfolgreich verschoben
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6C680BAE-655C-4E3D-8FC4-E6A520C3D928}" => Schlüssel erfolgreich entfernt
HKCR\CLSID\{6C680BAE-655C-4E3D-8FC4-E6A520C3D928} => Schlüssel nicht gefunden. 
C:\Users\RobRobsen\AppData\Roaming\Mozilla\Firefox\Profiles\ms4gt3x2.default\user.js => erfolgreich verschoben
C:\Users\RobRobsen\AppData\Roaming\Mozilla\Firefox\Profiles\ms4gt3x2.default\Extensions\{b7f19b64-1edb-45b5-86fe-c3798d814231}.xpi => erfolgreich verschoben
EmptyTemp: => 24.9 GB temporäre Dateien entfernt.


Das System musste neu gestartet werden.

==== Ende von Fixlog 17:13:15 ====
         

FRST.txt


Code:
ATTFilter
Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:10-06-2016
durchgeführt von RobRobsen (Administrator) auf ROBROBSEN-PC (11-06-2016 17:22:40)
Gestartet von C:\Users\RobRobsen\Desktop
Geladene Profile: RobRobsen (Verfügbare Profile: RobRobsen & DefaultAppPool)
Platform: Windows 10 Home Version 1511 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: FF)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(ESET) C:\Program Files\ESET\ESET Smart Security\ekrn.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(VIA Technologies, Inc.) C:\Windows\System32\ViakaraokeSrv.exe
(Microsoft Corporation) C:\Windows\System32\mqsvc.exe
() C:\Windows\Runservice.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Malwarebytes) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe
(iRacing.com Motorsport Simulations, LLC
Bedford, MA 01730) C:\Program Files (x86)\iRacing\iRacingService.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\egui.exe
() C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(VIA Technologies, Inc.) C:\Program Files\VIA XHCI UASP Utility\usb3Monitor.exe
(Logitech Inc.) C:\Program Files\Logitech\Gaming Software\LWEMon.exe
(Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
() C:\Users\RobRobsen\AppData\Local\Program Files\Amazon\MP3 Downloader\AmazonMP3DownloaderHelper.exe
(Spotify Ltd) C:\Users\RobRobsen\AppData\Roaming\Spotify\SpotifyWebHelper.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
() C:\Program Files (x86)\Safe In Cloud\SafeInCloud.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Bose Corporation) C:\Program Files (x86)\SoundTouch\SoundTouchMusicServer\SoundTouch music server.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe


==================== Registry (Nicht auf der Ausnahmeliste) ===========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [VIAxHCUtl] => C:\Program Files\VIA XHCI UASP Utility\usb3Monitor
HKLM\...\Run: [Start WingMan Profiler] => C:\Program Files\Logitech\Gaming Software\LWEMon.exe [190536 2010-06-14] (Logitech Inc.)
HKLM\...\Run: [StartCN] => C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe [6564552 2016-05-20] (Advanced Micro Devices, Inc.)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [176952 2016-06-01] (Apple Inc.)
HKLM-x32\...\Run: [doubleTwist] => C:\Program Files (x86)\doubleTwist\doubleTwist.Light.exe
HKLM-x32\...\Run: [Raptr] => C:\Program Files (x86)\Raptr Inc\Raptr\raptrstub.exe [58640 2016-05-23] (Raptr, Inc)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [596504 2016-04-01] (Oracle Corporation)
HKLM-x32\...\Run: [SoundTouch Music Server] => C:\Program Files (x86)\SoundTouch\SoundTouchMusicServer\SoundTouch music server.exe [1133568 2016-03-01] (Bose Corporation)
HKU\S-1-5-21-3072544863-811831933-4102423891-1000\...\Run: [AmazonMP3DownloaderHelper] => C:\Users\RobRobsen\AppData\Local\Program Files\Amazon\MP3 Downloader\AmazonMP3DownloaderHelper.exe [400704 2013-05-22] ()
HKU\S-1-5-21-3072544863-811831933-4102423891-1000\...\Run: [Spotify] => C:\Users\RobRobsen\AppData\Roaming\Spotify\Spotify.exe [6859888 2016-05-29] (Spotify Ltd)
HKU\S-1-5-21-3072544863-811831933-4102423891-1000\...\Run: [Spotify Web Helper] => C:\Users\RobRobsen\AppData\Roaming\Spotify\SpotifyWebHelper.exe [1554032 2016-05-29] (Spotify Ltd)
HKU\S-1-5-21-3072544863-811831933-4102423891-1000\...\Run: [SafeInCloud] => C:\Program Files (x86)\Safe In Cloud\SafeInCloud.exe [2191872 2016-04-06] ()
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AutorunsDisabled [2016-04-15] ()

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)

Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{f0ff30a0-3cd2-4e34-bdee-c5e400068f2f}: [DhcpNameServer] 192.168.178.1

Internet Explorer:
==================
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_91\bin\ssv.dll [2016-05-12] (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_91\bin\jp2ssv.dll [2016-05-12] (Oracle Corporation)
Filter: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll [2011-06-08] (Advanced Micro Devices)
Filter-x32: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\amd\SteadyVideo\VideoMIMEFilter.dll [2011-06-08] (Advanced Micro Devices)
Filter: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll [2011-06-08] (Advanced Micro Devices)
Filter-x32: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\amd\SteadyVideo\VideoMIMEFilter.dll [2011-06-08] (Advanced Micro Devices)

FireFox:
========
FF ProfilePath: C:\Users\RobRobsen\AppData\Roaming\Mozilla\Firefox\Profiles\ms4gt3x2.default
FF DefaultSearchEngine: Yahoo!
FF SelectedSearchEngine: Yahoo!
FF Homepage: hxxp://www.google.de/
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_22_0_0_168.dll [2016-05-26] ()
FF Plugin: @java.com/DTPlugin,version=11.91.2 -> C:\Program Files\Java\jre1.8.0_91\bin\dtplugin\npDeployJava1.dll [2016-05-12] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.91.2 -> C:\Program Files\Java\jre1.8.0_91\bin\plugin2\npjp2.dll [2016-05-12] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-11] ( Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-16] (VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_22_0_0_168.dll [2016-05-26] ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2015-12-18] ()
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-11] ( Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-11] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-11] (Google Inc.)
FF Plugin HKU\S-1-5-21-3072544863-811831933-4102423891-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\RobRobsen\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2015-07-16] (Unity Technologies ApS)
FF Plugin HKU\S-1-5-21-3072544863-811831933-4102423891-1000: amazon.com/AmazonMP3DownloaderPlugin -> C:\Users\RobRobsen\AppData\Local\Program Files\Amazon\MP3 Downloader\npAmazonMP3DownloaderPlugin10181.dll [2013-05-22] (Amazon.com, Inc.)
FF Extension: ProxTube - Unblock YouTube - C:\Users\RobRobsen\AppData\Roaming\Mozilla\Firefox\Profiles\ms4gt3x2.default\Extensions\ich@maltegoetz.de.xpi [2016-03-05]
FF Extension: SafeInCloud Password Manager - C:\Users\RobRobsen\AppData\Roaming\Mozilla\Firefox\Profiles\ms4gt3x2.default\Extensions\info@safe-in-cloud.com.xpi [2016-05-13]
FF Extension: New Tab Tools - C:\Users\RobRobsen\AppData\Roaming\Mozilla\Firefox\Profiles\ms4gt3x2.default\Extensions\newtabtools@darktrojan.net.xpi [2016-03-04]
FF Extension: Adblock Plus - C:\Users\RobRobsen\AppData\Roaming\Mozilla\Firefox\Profiles\ms4gt3x2.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-04-28]

Chrome: 
=======
CHR HomePage: Default -> hxxps://search.yahoo.com/?type=994519&fr=yo-yhp-ch
CHR StartupUrls: Default -> "hxxps://search.yahoo.com/?type=994519&fr=yo-yhp-ch"
CHR DefaultSearchURL: Default -> hxxps://search.yahoo.com/search?ei=utf-8&fr=chr-yo_gc&type=994519&ilc=12&p={searchTerms}
CHR DefaultSearchKeyword: Default -> yahoo.com search
CHR DefaultSuggestURL: Default -> hxxps://ff.search.yahoo.com/gossip?output=fxjson&command={searchTerms}
CHR Profile: C:\Users\RobRobsen\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Präsentationen) - C:\Users\RobRobsen\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-06-20]
CHR Extension: (Google Docs) - C:\Users\RobRobsen\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-06-20]
CHR Extension: (Google Drive) - C:\Users\RobRobsen\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-11-18]
CHR Extension: (YouTube) - C:\Users\RobRobsen\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-28]
CHR Extension: (Alex Karpov) - C:\Users\RobRobsen\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpgndhojbofkbjpkmfhgbcnndcoadgo [2016-05-28]
CHR Extension: (Google-Suche) - C:\Users\RobRobsen\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-11-18]
CHR Extension: (Bandcamp Scrobbler) - C:\Users\RobRobsen\AppData\Local\Google\Chrome\User Data\Default\Extensions\enncmdgpakpfkapflghmnmfnpolcapml [2015-02-02]
CHR Extension: (Google Tabellen) - C:\Users\RobRobsen\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-06-20]
CHR Extension: (Google Docs Offline) - C:\Users\RobRobsen\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-05-28]
CHR Extension: (Last.fm Scrobbler) - C:\Users\RobRobsen\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhinaapppaileiechjoiifaancjggfjm [2016-05-28]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\RobRobsen\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-05-28]
CHR Extension: (Google Mail) - C:\Users\RobRobsen\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-06-20]

Opera: 
=======
StartMenuInternet: (HKLM) OperaStable - C:\Users\RobRobsen\AppData\Local\Programs\Opera\Launcher.exe

==================== Dienste (Nicht auf der Ausnahmeliste) ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2016-03-02] (Apple Inc.)
S3 EasyAntiCheat; C:\WINDOWS\SysWOW64\EasyAntiCheat.exe [238376 2015-09-09] (EasyAntiCheat Ltd)
R2 ekrn; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [2519904 2016-04-26] (ESET)
R2 iRacingService; C:\Program Files (x86)\iRacing\iRacingService.exe [826144 2016-06-09] (iRacing.com Motorsport Simulations, LLC
Bedford, MA 01730)
R2 LicCtrlService; C:\WINDOWS\runservice.exe [2560 2016-06-04] () [Datei ist nicht signiert]
R2 MBAMScheduler; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe [1513784 2015-10-05] (Malwarebytes)
S2 MBAMService; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe [1135416 2015-10-05] (Malwarebytes)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2104840 2016-01-10] (Electronic Arts)
R2 VIAKaraokeService; C:\Windows\system32\viakaraokesrv.exe [36504 2015-07-30] (VIA Technologies, Inc.)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [364464 2015-10-30] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-10-30] (Microsoft Corporation)
S2 WsAppService; C:\Program Files (x86)\Wondershare\WAF\2.1.6.0\WsAppService.exe [388608 2016-01-28] (Wondershare) [Datei ist nicht signiert]

===================== Treiber (Nicht auf der Ausnahmeliste) ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

S0 amdkmafd; C:\Windows\System32\drivers\amdkmafd.sys [23240 2016-03-21] (Advanced Micro Devices, Inc.)
R3 AtiHDAudioService; C:\Windows\system32\drivers\AtihdWT6.sys [101376 2016-05-16] (Advanced Micro Devices)
R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [264552 2016-04-26] (ESET)
R0 edevmon; C:\Windows\System32\DRIVERS\edevmon.sys [199680 2015-11-27] (ESET)
S0 eelam; C:\Windows\System32\DRIVERS\eelam.sys [14976 2015-11-27] (ESET)
R1 ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [186784 2015-11-27] (ESET)
R2 ekbdflt; C:\Windows\system32\DRIVERS\ekbdflt.sys [142976 2015-11-27] (ESET)
R1 epfw; C:\Windows\system32\DRIVERS\epfw.sys [198096 2016-04-26] (ESET)
R1 EpfwLWF; C:\Windows\system32\DRIVERS\EpfwLWF.sys [53384 2016-04-26] (ESET)
R0 epfwwfp; C:\Windows\System32\DRIVERS\epfwwfp.sys [84800 2016-04-26] (ESET)
S3 LGJoyXlCore; C:\Windows\system32\drivers\LGJoyXlCore.sys [85160 2016-04-19] (Logitech Inc.)
R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [25816 2015-10-05] (Malwarebytes)
S3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [64216 2015-10-05] (Malwarebytes Corporation)
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [589824 2015-10-30] (Realtek                                            )
S0 WdBoot; C:\Windows\System32\drivers\WdBoot.sys [44568 2015-10-30] (Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [293216 2015-10-30] (Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [118112 2015-10-30] (Microsoft Corporation)
S3 WsAudioDevice_383; C:\Windows\system32\drivers\VirtualAudio.sys [31080 2015-07-30] (Wondershare)
U3 idsvc; kein ImagePath

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2016-06-11 17:11 - 2016-06-11 17:13 - 00001644 _____ C:\Users\RobRobsen\Desktop\Fixlog.txt
2016-06-11 16:28 - 2016-06-11 16:41 - 00000000 ____D C:\ProgramData\HitmanPro
2016-06-11 16:27 - 2016-06-11 16:28 - 11438608 _____ (SurfRight B.V.) C:\Users\RobRobsen\Desktop\HitmanPro_x64.exe
2016-06-11 16:26 - 2016-06-11 16:27 - 11438608 _____ (SurfRight B.V.) C:\Users\RobRobsen\Downloads\HitmanPro_x64.exe
2016-06-11 15:51 - 2016-06-11 15:52 - 03677248 _____ C:\Users\RobRobsen\Desktop\AdwCleaner_5.119.exe
2016-06-11 15:51 - 2016-06-11 15:51 - 03677248 _____ C:\Users\RobRobsen\Downloads\AdwCleaner_5.119.exe
2016-06-11 13:21 - 2016-06-11 17:22 - 00015504 _____ C:\Users\RobRobsen\Desktop\FRST.txt
2016-06-11 13:21 - 2016-06-11 13:22 - 00061084 _____ C:\Users\RobRobsen\Desktop\Addition.txt
2016-06-11 13:21 - 2016-06-11 13:07 - 02385408 _____ (Farbar) C:\Users\RobRobsen\Desktop\FRST64.exe
2016-06-11 13:07 - 2016-06-11 13:07 - 00000000 ____D C:\Users\RobRobsen\Downloads\FRST-OlderVersion
2016-06-09 21:36 - 2016-06-09 21:37 - 00065135 _____ C:\Users\RobRobsen\Downloads\Addition.txt
2016-06-09 21:35 - 2016-06-11 13:08 - 00052348 _____ C:\Users\RobRobsen\Downloads\FRST.txt
2016-06-09 21:35 - 2016-06-11 13:07 - 02385408 _____ (Farbar) C:\Users\RobRobsen\Downloads\FRST64.exe
2016-06-05 22:34 - 2016-06-05 22:39 - 15933370 _____ C:\Users\RobRobsen\Downloads\d2872.avi
2016-06-05 16:41 - 2016-06-05 16:41 - 00003447 _____ C:\Users\RobRobsen\AppData\Local\recently-used.xbel
2016-06-05 16:37 - 2016-06-05 16:37 - 00502864 _____ C:\Users\RobRobsen\Documents\freake perfume - night sins.xcf
2016-06-05 02:27 - 2016-06-05 03:12 - 139175936 _____ C:\Users\RobRobsen\Downloads\d2939.mpg
2016-06-05 02:24 - 2016-06-05 02:51 - 82872434 _____ C:\Users\RobRobsen\Downloads\d2950.avi
2016-06-04 14:57 - 2016-06-04 14:57 - 00000000 ____D C:\Users\RobRobsen\Downloads\TEW2016_20160603
2016-06-04 14:54 - 2016-06-04 14:55 - 67704340 _____ C:\Users\RobRobsen\Downloads\TEW2016_20160603.zip
2016-06-04 14:45 - 2016-06-11 17:14 - 00001521 ___SH C:\WINDOWS\SysWOW64\mmf.sys
2016-06-04 14:45 - 2016-06-04 14:45 - 00126976 _____ C:\WINDOWS\lcmmfu.cpl
2016-06-04 14:45 - 2016-06-04 14:45 - 00048640 _____ C:\WINDOWS\mmfs.dll
2016-06-04 14:45 - 2016-06-04 14:45 - 00002560 _____ C:\WINDOWS\Runservice.exe
2016-06-04 14:45 - 2016-06-04 14:45 - 00000000 ____D C:\Users\RobRobsen\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TEW2016
2016-06-04 14:45 - 2006-10-31 21:48 - 00348160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr71.dll
2016-06-04 14:44 - 2016-06-04 14:44 - 00000000 ____D C:\Program Files (x86)\GDS
2016-06-04 14:40 - 2016-06-04 14:44 - 211544032 _____ C:\Users\RobRobsen\Downloads\TEW2016_Retail.EXE
2016-06-04 13:35 - 2016-06-04 13:35 - 00000000 ____D C:\Users\RobRobsen\AppData\LocalLow\dev4play
2016-06-04 02:00 - 2016-06-04 02:09 - 27915996 _____ C:\Users\RobRobsen\Downloads\d2601.avi
2016-06-04 01:58 - 2016-06-04 02:04 - 15543288 _____ C:\Users\RobRobsen\Downloads\d2778.avi
2016-06-03 21:58 - 2016-06-03 21:58 - 00001822 _____ C:\Users\Public\Desktop\iTunes.lnk
2016-06-03 21:58 - 2016-06-03 21:58 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2016-06-03 21:57 - 2016-06-03 21:57 - 00000000 ____D C:\Program Files\iPod
2016-06-03 18:18 - 2016-06-03 19:28 - 214967557 _____ C:\Users\RobRobsen\Downloads\d2913.avi
2016-06-03 18:18 - 2016-06-03 19:25 - 206348575 _____ C:\Users\RobRobsen\Downloads\d2731.avi
2016-06-01 21:19 - 2016-06-01 21:35 - 50872122 _____ C:\Users\RobRobsen\Downloads\d281_(new).avi
2016-06-01 21:18 - 2016-06-01 21:43 - 78299858 _____ C:\Users\RobRobsen\Downloads\d258_(new).avi
2016-06-01 18:53 - 2016-06-01 20:10 - 236621828 _____ C:\Users\RobRobsen\Downloads\so849.mpg
2016-06-01 18:53 - 2016-06-01 19:22 - 85614462 _____ C:\Users\RobRobsen\Downloads\so860.avi
2016-05-31 18:54 - 2016-05-31 18:54 - 00000000 ____D C:\Users\RobRobsen\Downloads\SECTEUR 33 - Alpha and Omega EP
2016-05-31 18:52 - 2016-05-31 18:53 - 42690928 _____ C:\Users\RobRobsen\Downloads\SECTEUR 33 - Alpha and Omega EP.zip
2016-05-30 12:44 - 2016-05-30 12:44 - 00000000 ____D C:\Users\RobRobsen\AppData\LocalLow\Robot Gentleman
2016-05-30 07:11 - 2016-05-30 07:12 - 04215436 _____ C:\Users\RobRobsen\Downloads\d1250.avi
2016-05-30 05:54 - 2016-05-30 05:56 - 06553888 _____ C:\Users\RobRobsen\Downloads\d1251.avi
2016-05-30 05:52 - 2016-05-30 05:55 - 10887999 _____ C:\Users\RobRobsen\Downloads\d2891.avi
2016-05-30 04:10 - 2016-05-30 04:10 - 00000000 ____D C:\Users\RobRobsen\Downloads\Werkstatt Recordings - 258. SUPERNOVA 1006 - ROT ON THE MARCH - Split ep
2016-05-30 04:10 - 2016-05-30 04:10 - 00000000 ____D C:\Users\RobRobsen\Downloads\Supernova 1006 - Morphine
2016-05-30 04:08 - 2016-05-30 04:08 - 45691123 _____ C:\Users\RobRobsen\Downloads\Werkstatt Recordings - 258. SUPERNOVA 1006 - ROT ON THE MARCH - Split ep.zip
2016-05-30 04:08 - 2016-05-30 04:08 - 28373968 _____ C:\Users\RobRobsen\Downloads\Supernova 1006 - Morphine.zip
2016-05-29 13:12 - 2016-05-29 13:12 - 00001076 _____ C:\Users\RobRobsen\Desktop\Tomahawk.lnk
2016-05-29 13:12 - 2016-05-29 13:12 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tomahawk
2016-05-29 13:10 - 2016-05-29 13:11 - 45250032 _____ C:\Users\RobRobsen\Downloads\tomahawk-latest.exe
2016-05-29 08:55 - 2016-05-29 08:55 - 00001150 _____ C:\Users\RobRobsen\Downloads\BH1.sto
2016-05-28 13:02 - 2016-05-29 04:14 - 00000000 ____D C:\Users\RobRobsen\AppData\Roaming\Obsidium
2016-05-28 13:02 - 2016-05-29 04:11 - 00000000 ____D C:\Users\RobRobsen\Documents\Power & Revolution
2016-05-28 06:57 - 2016-05-28 06:57 - 00000000 ____D C:\Users\RobRobsen\.swt
2016-05-28 06:56 - 2016-05-28 09:05 - 00000000 ____D C:\Users\RobRobsen\AppData\Roaming\Azureus
2016-05-28 06:56 - 2016-05-28 06:56 - 23554640 _____ C:\Users\RobRobsen\Downloads\Vuze_5720_Installer.zip
2016-05-28 06:56 - 2016-05-28 06:56 - 00000000 ____D C:\Users\RobRobsen\Downloads\Vuze_5720_Installer
2016-05-28 04:49 - 2016-05-28 04:55 - 00000000 ____D C:\Program Files (x86)\SoundTouch
2016-05-28 04:49 - 2016-05-28 04:49 - 00001978 _____ C:\Users\Public\Desktop\SoundTouch.lnk
2016-05-28 04:49 - 2016-05-28 04:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SoundTouch
2016-05-28 04:47 - 2016-05-28 04:47 - 46796800 _____ C:\Users\RobRobsen\Downloads\SoundTouch-app-installer-11.0.12.13555.msi
2016-05-27 15:04 - 2016-05-27 15:04 - 00001262 _____ C:\Users\RobRobsen\Downloads\SummerLucasS42015.sto
2016-05-27 07:15 - 2016-05-27 07:15 - 00002238 _____ C:\Users\RobRobsen\Downloads\aq_sebring.sto
2016-05-27 02:00 - 2016-05-27 02:00 - 00000000 ____D C:\Users\RobRobsen\Downloads\Amazon-Music-Download_2016-05-26_11-15
2016-05-26 11:15 - 2016-05-26 11:17 - 269885705 _____ C:\Users\RobRobsen\Downloads\Amazon-Music-Download_2016-05-26_11-15.zip
2016-05-25 02:56 - 2016-05-25 02:56 - 00000000 ____D C:\Users\RobRobsen\Downloads\Dope Stars Inc. - Ultrawired
2016-05-25 02:56 - 2016-05-25 02:56 - 00000000 ____D C:\Users\RobRobsen\Downloads\Dope Stars Inc. - The Saw Saga
2016-05-25 02:56 - 2016-05-25 02:56 - 00000000 ____D C:\Users\RobRobsen\Downloads\Dope Stars Inc. - -Neuromance
2016-05-25 02:56 - 2016-05-25 02:56 - 00000000 ____D C:\Users\RobRobsen\Downloads\Dope Stars Inc. - Make A Star EP
2016-05-25 02:56 - 2016-05-25 02:56 - 00000000 ____D C:\Users\RobRobsen\Downloads\Dope Stars Inc. - Gigahearts
2016-05-25 02:56 - 2016-05-25 02:56 - 00000000 ____D C:\Users\RobRobsen\Downloads\Dope Stars Inc. - -Decrypted_Files
2016-05-25 02:56 - 2016-05-25 02:56 - 00000000 ____D C:\Users\RobRobsen\Downloads\Dope Stars Inc. - Criminal Intents - Morning Star (Unlimited Edition)
2016-05-25 02:56 - 2016-05-25 02:56 - 00000000 ____D C:\Users\RobRobsen\Downloads\Dope Stars Inc. - Banksters
2016-05-25 02:56 - 2016-05-25 02:56 - 00000000 ____D C:\Users\RobRobsen\Downloads\Dope Stars Inc. - 21st Century Slave
2016-05-25 02:56 - 2016-05-25 02:56 - 00000000 ____D C:\Users\RobRobsen\Downloads\Dope Stars Inc. - 10.000 Watts Of Artificial Pleasures
2016-05-25 02:55 - 2016-05-25 02:55 - 00000000 ____D C:\Users\RobRobsen\Downloads\Dope Stars Inc. - TeraPunk
2016-05-25 02:55 - 2016-05-25 02:55 - 00000000 ____D C:\Users\RobRobsen\Downloads\Dope Stars Inc. - New Breed Of Digital Fuckers
2016-05-25 02:55 - 2016-05-25 02:55 - 00000000 ____D C:\Users\RobRobsen\Downloads\Date at Midnight - Songs to Fall and Forget
2016-05-25 02:55 - 2016-05-25 02:55 - 00000000 ____D C:\Users\RobRobsen\Downloads\Darkpage - STAR INDUSTRY _– Velvet
2016-05-25 02:55 - 2016-05-25 02:55 - 00000000 ____D C:\Users\RobRobsen\Downloads\Darkpage - MISSIONARIES FROM THE OUTSIDE - The Prophecies
2016-05-25 02:54 - 2016-05-25 02:55 - 151117034 _____ C:\Users\RobRobsen\Downloads\Dope Stars Inc. - -Decrypted_Files.zip
2016-05-25 02:54 - 2016-05-25 02:54 - 66019201 _____ C:\Users\RobRobsen\Downloads\Dope Stars Inc. - 10.000 Watts Of Artificial Pleasures.zip
2016-05-25 02:53 - 2016-05-25 02:54 - 94048621 _____ C:\Users\RobRobsen\Downloads\Dope Stars Inc. - Make A Star EP.zip
2016-05-25 02:53 - 2016-05-25 02:53 - 38580984 _____ C:\Users\RobRobsen\Downloads\Dope Stars Inc. - The Saw Saga.zip
2016-05-25 02:52 - 2016-05-25 02:54 - 340722971 _____ C:\Users\RobRobsen\Downloads\Dope Stars Inc. - -Neuromance.zip
2016-05-25 02:52 - 2016-05-25 02:53 - 132446090 _____ C:\Users\RobRobsen\Downloads\Dope Stars Inc. - 21st Century Slave.zip
2016-05-25 02:52 - 2016-05-25 02:52 - 199660501 _____ C:\Users\RobRobsen\Downloads\Dope Stars Inc. - Criminal Intents - Morning Star (Unlimited Edition).zip
2016-05-25 02:52 - 2016-05-25 02:52 - 19623654 _____ C:\Users\RobRobsen\Downloads\Dope Stars Inc. - Banksters.zip
2016-05-25 02:51 - 2016-05-25 02:53 - 372791707 _____ C:\Users\RobRobsen\Downloads\Dope Stars Inc. - Ultrawired.zip
2016-05-25 02:51 - 2016-05-25 02:52 - 146484726 _____ C:\Users\RobRobsen\Downloads\Dope Stars Inc. - Gigahearts.zip
2016-05-25 02:51 - 2016-05-25 02:52 - 140981161 _____ C:\Users\RobRobsen\Downloads\Dope Stars Inc. - TeraPunk.zip
2016-05-25 02:50 - 2016-05-25 02:52 - 253832826 _____ C:\Users\RobRobsen\Downloads\Dope Stars Inc. - New Breed Of Digital Fuckers.zip
2016-05-25 02:50 - 2016-05-25 02:51 - 124297197 _____ C:\Users\RobRobsen\Downloads\Darkpage - STAR INDUSTRY _– Velvet.zip
2016-05-25 02:50 - 2016-05-25 02:50 - 47596202 _____ C:\Users\RobRobsen\Downloads\Darkpage - MISSIONARIES FROM THE OUTSIDE - The Prophecies.zip
2016-05-25 02:50 - 2016-05-25 02:50 - 140710779 _____ C:\Users\RobRobsen\Downloads\Date at Midnight - Songs to Fall and Forget.zip
2016-05-24 12:40 - 2016-05-24 12:40 - 07270600 _____ (Andrey Shcherbakov) C:\Users\RobRobsen\Downloads\SafeInCloud_Setup(2).exe
2016-05-23 12:44 - 2016-05-23 12:44 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech
2016-05-23 12:43 - 2016-05-23 12:43 - 00000000 ____D C:\Program Files\Logitech
2016-05-23 12:42 - 2016-05-23 12:43 - 16082320 _____ (Logitech Inc.) C:\Users\RobRobsen\Downloads\lgs510_x64(2).exe
2016-05-23 10:08 - 2016-05-23 10:08 - 00000000 ____D C:\ProgramData\LogiShrd
2016-05-23 09:48 - 2016-05-23 09:48 - 00000000 ____D C:\Users\RobRobsen\AppData\Roaming\Logitech
2016-05-23 09:48 - 2016-05-23 09:48 - 00000000 ____D C:\Users\RobRobsen\AppData\Roaming\Logishrd
2016-05-23 09:45 - 2016-06-02 19:06 - 00000000 ____D C:\WINDOWS\LastGood
2016-05-20 23:48 - 2016-05-20 23:48 - 00462080 _____ C:\WINDOWS\system32\amdmiracast.dll
2016-05-20 23:48 - 2016-05-20 23:48 - 00141280 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdave64.dll
2016-05-20 23:48 - 2016-05-20 23:48 - 00122704 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdave32.dll
2016-05-20 23:47 - 2016-05-20 23:47 - 00150544 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atiu9p64.dll
2016-05-20 23:47 - 2016-05-20 23:47 - 00141280 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdhcp64.dll
2016-05-20 23:47 - 2016-05-20 23:47 - 00125288 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amdhcp32.dll
2016-05-20 23:47 - 2016-05-20 23:47 - 00109856 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atimpc64.dll
2016-05-20 23:47 - 2016-05-20 23:47 - 00109856 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdpcom64.dll
2016-05-20 23:47 - 2016-05-20 23:47 - 00092328 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atimpc32.dll
2016-05-20 23:47 - 2016-05-20 23:47 - 00092328 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdpcom32.dll
2016-05-20 23:46 - 2016-05-20 23:46 - 08577456 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atiumd64.dll
2016-05-20 23:44 - 2016-05-20 23:44 - 00296648 _____ (Advanced Micro Devices) C:\WINDOWS\system32\Drivers\amdacpksd.sys
2016-05-20 23:35 - 2016-05-20 23:35 - 48616960 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\amdocl64.dll
2016-05-20 23:35 - 2016-05-20 23:35 - 00252928 _____ C:\WINDOWS\system32\clinfo.exe
2016-05-20 23:34 - 2016-05-20 23:34 - 38098432 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\amdocl.dll
2016-05-20 23:33 - 2016-05-20 23:33 - 00096256 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2016-05-20 23:33 - 2016-05-20 23:33 - 00087040 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2016-05-20 23:32 - 2016-05-20 23:32 - 27433472 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\amdocl12cl64.dll
2016-05-20 23:31 - 2016-05-20 23:31 - 21600768 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\amdocl12cl.dll
2016-05-20 23:30 - 2016-05-20 23:30 - 08699392 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdvlk64.dll
2016-05-20 23:26 - 2016-05-20 23:26 - 06951424 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdvlk32.dll
2016-05-20 23:15 - 2016-05-20 23:15 - 00184320 _____ C:\WINDOWS\system32\amdhdl64.dll
2016-05-20 23:15 - 2016-05-20 23:15 - 00164352 _____ C:\WINDOWS\SysWOW64\amdhdl32.dll
2016-05-20 23:14 - 2016-05-20 23:14 - 30188032 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atio6axx.dll
2016-05-20 23:13 - 2016-05-20 23:13 - 03941528 _____ (Logitech, Inc.) C:\WINDOWS\system32\LogiLDA.DLL
2016-05-20 23:13 - 2016-05-20 23:13 - 00837584 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcr110.dll
2016-05-20 23:13 - 2016-05-20 23:13 - 00730112 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdlvr64.dll
2016-05-20 23:13 - 2016-05-20 23:13 - 00670160 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp110.dll
2016-05-20 23:13 - 2016-05-20 23:13 - 00605696 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amdlvr32.dll
2016-05-20 23:13 - 2016-05-20 23:13 - 00362976 _____ (Microsoft Corporation) C:\WINDOWS\system32\vccorlib110.dll
2016-05-20 23:12 - 2016-05-20 23:12 - 06965248 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdmantle64.dll
2016-05-20 23:12 - 2016-05-20 23:12 - 02466968 _____ (Logitech, Inc.) C:\WINDOWS\system32\LdaCx2.dll
2016-05-20 23:12 - 2016-05-20 23:12 - 00142336 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\mantle64.dll
2016-05-20 23:12 - 2016-05-20 23:12 - 00117760 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\mantle32.dll
2016-05-20 23:09 - 2016-05-20 23:09 - 05643776 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdmantle32.dll
2016-05-20 23:09 - 2016-05-20 23:09 - 00716128 _____ C:\WINDOWS\SysWOW64\atiapfxx.blb
2016-05-20 23:09 - 2016-05-20 23:09 - 00716128 _____ C:\WINDOWS\system32\atiapfxx.blb
2016-05-20 23:09 - 2016-05-20 23:09 - 00385536 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atiapfxx.exe
2016-05-20 23:09 - 2016-05-20 23:09 - 00062464 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\aticalrt64.dll
2016-05-20 23:09 - 2016-05-20 23:09 - 00055808 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\aticalcl64.dll
2016-05-20 23:09 - 2016-05-20 23:09 - 00052224 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\aticalrt.dll
2016-05-20 23:09 - 2016-05-20 23:09 - 00049152 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\aticalcl.dll
2016-05-20 23:08 - 2016-05-20 23:08 - 15711744 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\aticaldd64.dll
2016-05-20 23:08 - 2016-05-20 23:08 - 14302720 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\aticaldd.dll
2016-05-20 23:06 - 2016-05-20 23:06 - 24836096 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atioglxx.dll
2016-05-20 23:06 - 2016-05-20 23:06 - 00113152 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\mantleaxl64.dll
2016-05-20 23:06 - 2016-05-20 23:06 - 00092160 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\mantleaxl32.dll
2016-05-20 23:06 - 2016-05-20 23:06 - 00050688 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdmmcl6.dll
2016-05-20 23:06 - 2016-05-20 23:06 - 00038400 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdmmcl.dll
2016-05-20 23:05 - 2016-05-20 23:05 - 08850432 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdxc64.dll
2016-05-20 23:04 - 2016-05-20 23:04 - 03437632 _____ C:\WINDOWS\system32\atiumd6a.cap
2016-05-20 23:02 - 2016-05-20 23:02 - 07261184 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdxc32.dll
2016-05-20 23:02 - 2016-05-20 23:02 - 00588288 _____ (AMD) C:\WINDOWS\system32\atieclxx.exe
2016-05-20 23:02 - 2016-05-20 23:02 - 00442368 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atidemgy.dll
2016-05-20 23:02 - 2016-05-20 23:02 - 00306688 _____ (AMD) C:\WINDOWS\system32\atiesrxx.exe
2016-05-20 23:02 - 2016-05-20 23:02 - 00274432 _____ C:\WINDOWS\system32\dgtrayicon.exe
2016-05-20 23:02 - 2016-05-20 23:02 - 00258560 _____ C:\WINDOWS\system32\GameManager64.dll
2016-05-20 23:02 - 2016-05-20 23:02 - 00230912 _____ C:\WINDOWS\system32\amdgfxinfo64.dll
2016-05-20 23:02 - 2016-05-20 23:02 - 00223744 _____ C:\WINDOWS\SysWOW64\GameManager32.dll
2016-05-20 23:02 - 2016-05-20 23:02 - 00212480 _____ C:\WINDOWS\system32\atieah64.exe
2016-05-20 23:02 - 2016-05-20 23:02 - 00202752 _____ C:\WINDOWS\SysWOW64\amdgfxinfo32.dll
2016-05-20 23:02 - 2016-05-20 23:02 - 00190464 _____ C:\WINDOWS\SysWOW64\atieah32.exe
2016-05-20 23:02 - 2016-05-20 23:02 - 00093696 _____ (AMD) C:\WINDOWS\system32\atimuixx.dll
2016-05-20 23:01 - 2016-05-20 23:01 - 00270336 _____ (AMD) C:\WINDOWS\system32\atitmm64.dll
2016-05-20 22:59 - 2016-05-20 22:59 - 03471376 _____ C:\WINDOWS\SysWOW64\atiumdva.cap
2016-05-20 22:57 - 2016-05-20 22:57 - 01304576 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atiadlxx.dll
2016-05-20 22:57 - 2016-05-20 22:57 - 00973824 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atiadlxy.dll
2016-05-20 22:57 - 2016-05-20 22:57 - 00973824 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atiadlxx.dll
2016-05-20 22:57 - 2016-05-20 22:57 - 00185344 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atig6txx.dll
2016-05-20 22:57 - 2016-05-20 22:57 - 00159232 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atigktxx.dll
2016-05-20 22:57 - 2016-05-20 22:57 - 00119808 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atisamu64.dll
2016-05-20 22:57 - 2016-05-20 22:57 - 00106496 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atig6pxx.dll
2016-05-20 22:57 - 2016-05-20 22:57 - 00101376 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atisamu32.dll
2016-05-20 22:57 - 2016-05-20 22:57 - 00091136 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atiglpxx.dll
2016-05-20 22:57 - 2016-05-20 22:57 - 00091136 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atiglpxx.dll
2016-05-20 22:56 - 2016-05-20 22:56 - 00043520 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Drivers\ati2erec.dll
2016-05-20 22:55 - 2016-05-20 22:55 - 00251392 _____ C:\WINDOWS\system32\hsa-thunk64.dll
2016-05-20 22:55 - 2016-05-20 22:55 - 00217088 _____ C:\WINDOWS\SysWOW64\hsa-thunk.dll
2016-05-18 22:24 - 2016-05-18 22:24 - 00000000 ____D C:\Users\RobRobsen\Documents\U-Play online
2016-05-18 22:24 - 2016-05-18 22:24 - 00000000 ____D C:\Users\RobRobsen\AppData\LocalLow\U-Play online
2016-05-17 16:52 - 2016-05-17 16:53 - 00000000 ____D C:\WINDOWS\LastGood.Tmp
2016-05-17 00:05 - 2016-05-26 10:05 - 20123840 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerInstaller.exe
2016-05-16 23:00 - 2016-05-16 23:00 - 00000000 ____D C:\Users\RobRobsen\Downloads\Earth Calling Angela - Hope Springs Eternal
2016-05-16 22:39 - 2016-05-16 22:40 - 167719773 _____ C:\Users\RobRobsen\Downloads\Earth Calling Angela - Hope Springs Eternal.zip
2016-05-16 21:52 - 2016-05-16 21:52 - 00000000 ____D C:\ProgramData\Stardock
2016-05-16 03:38 - 2016-05-20 23:12 - 00865280 _____ (AMD) C:\WINDOWS\system32\coinst_16.20.dll
2016-05-16 03:38 - 2016-05-16 03:38 - 00865280 _____ (AMD) C:\WINDOWS\system32\SET79DC.tmp
2016-05-16 03:35 - 2016-05-16 03:35 - 00103424 _____ (Advanced Micro Devices) C:\WINDOWS\system32\DelayAPO.dll
2016-05-15 23:53 - 2016-05-15 23:53 - 00000000 ____D C:\Users\RobRobsen\AppData\Local\id Software
2016-05-15 17:37 - 2016-05-15 17:37 - 00000000 ____D C:\Users\RobRobsen\Downloads\Lyncelia - Forsaken Innocence (2016)
2016-05-15 17:33 - 2016-05-15 17:35 - 153686754 _____ C:\Users\RobRobsen\Downloads\Lyncelia - Forsaken Innocence (2016).zip
2016-05-14 17:31 - 2016-05-14 17:31 - 00002251 _____ C:\Users\Public\Desktop\Miro.lnk
2016-05-14 17:31 - 2016-05-14 17:31 - 00000000 ____D C:\Users\RobRobsen\AppData\Roaming\Participatory Culture Foundation
2016-05-14 17:31 - 2016-05-14 17:31 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Miro
2016-05-14 17:30 - 2016-05-14 17:30 - 00000000 ____D C:\Program Files (x86)\Participatory Culture Foundation
2016-05-14 17:29 - 2016-05-14 17:30 - 48057520 _____ C:\Users\RobRobsen\Downloads\Miro_Installer.exe
2016-05-14 05:37 - 2016-05-14 17:13 - 00000000 ____D C:\Users\RobRobsen\AppData\Roaming\iFunbox_UserCache
2016-05-14 05:37 - 2016-05-14 05:37 - 22748388 _____ (iFunbox DevTeam ) C:\Users\RobRobsen\Downloads\ifunbox_setup.exe
2016-05-13 22:20 - 2016-05-13 22:20 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Safe In Cloud
2016-05-13 22:20 - 2016-05-13 22:20 - 00000000 ____D C:\Program Files (x86)\Safe In Cloud
2016-05-13 22:19 - 2016-05-13 22:19 - 07270600 _____ (Andrey Shcherbakov) C:\Users\RobRobsen\Downloads\SafeInCloud_Setup(1).exe
2016-05-13 06:42 - 2016-05-13 06:42 - 00000000 ____D C:\Users\RobRobsen\Downloads\Voight - Shadow-Excision
2016-05-13 06:42 - 2016-05-13 06:42 - 00000000 ____D C:\Users\RobRobsen\Downloads\Spirit Host - The First Flowers Demo
2016-05-13 06:42 - 2016-05-13 06:42 - 00000000 ____D C:\Users\RobRobsen\Downloads\Shyness of Strangers - FROM ASHES
2016-05-13 06:42 - 2016-05-13 06:42 - 00000000 ____D C:\Users\RobRobsen\Downloads\RENDEZ-VOUS - Rendez-Vous EP
2016-05-13 06:42 - 2016-05-13 06:42 - 00000000 ____D C:\Users\RobRobsen\Downloads\BLEIB MODERN - Danse EP
2016-05-13 06:42 - 2016-05-13 06:42 - 00000000 ____D C:\Users\RobRobsen\Downloads\AVIARIES - Aviaries
2016-05-13 06:41 - 2016-05-13 06:41 - 00000000 ____D C:\Users\RobRobsen\Downloads\Soulimage - Can You Feel Me
2016-05-13 06:41 - 2016-05-13 06:41 - 00000000 ____D C:\Users\RobRobsen\Downloads\Projekt Ich - Wolkenträne (EP)
2016-05-13 06:41 - 2016-05-13 06:41 - 00000000 ____D C:\Users\RobRobsen\Downloads\EUROPEAN GHOST - Pale & Sick -post punk - cold wave- (UPR 047) - Compact Disc
2016-05-13 06:40 - 2016-05-13 06:41 - 99096197 _____ C:\Users\RobRobsen\Downloads\EUROPEAN GHOST - Pale & Sick -post punk - cold wave- (UPR 047) - Compact Disc.zip
2016-05-13 06:40 - 2016-05-13 06:41 - 49004158 _____ C:\Users\RobRobsen\Downloads\Projekt Ich - Wolkenträne (EP).zip
2016-05-13 06:40 - 2016-05-13 06:41 - 40089445 _____ C:\Users\RobRobsen\Downloads\Spirit Host - The First Flowers Demo.zip
2016-05-13 06:40 - 2016-05-13 06:41 - 27706770 _____ C:\Users\RobRobsen\Downloads\Soulimage - Can You Feel Me.zip
2016-05-13 06:40 - 2016-05-13 06:40 - 48674413 _____ C:\Users\RobRobsen\Downloads\RENDEZ-VOUS - Rendez-Vous EP.zip
2016-05-13 06:40 - 2016-05-13 06:40 - 40952282 _____ C:\Users\RobRobsen\Downloads\BLEIB MODERN - Danse EP.zip
2016-05-13 06:40 - 2016-05-13 06:40 - 24964727 _____ C:\Users\RobRobsen\Downloads\Shyness of Strangers - FROM ASHES.zip
2016-05-13 06:40 - 2016-05-13 06:40 - 22221584 _____ C:\Users\RobRobsen\Downloads\Voight - Shadow-Excision.zip
2016-05-13 06:39 - 2016-05-13 06:40 - 108365604 _____ C:\Users\RobRobsen\Downloads\AVIARIES - Aviaries.zip
2016-05-12 22:02 - 2016-05-12 22:02 - 00000000 ____D C:\Users\RobRobsen\AppData\Roaming\SafeInCloud
2016-05-12 22:01 - 2016-06-11 01:11 - 00000000 ____D C:\Users\RobRobsen\AppData\Local\SafeInCloud
2016-05-12 22:00 - 2016-05-12 22:00 - 07270600 _____ (Andrey Shcherbakov) C:\Users\RobRobsen\Downloads\SafeInCloud_Setup.exe
2016-05-12 22:00 - 2016-05-12 22:00 - 00000000 ____D C:\Users\RobRobsen\AppData\Local\Downloaded Installations
2016-05-12 17:39 - 2016-05-12 17:39 - 00001914 _____ C:\Users\Public\Desktop\QuickTime Player.lnk
2016-05-12 17:39 - 2016-05-12 17:39 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
2016-05-12 17:36 - 2016-05-12 17:36 - 00000000 _____ C:\WINDOWS\SysWOW64\REN8FF9.tmp
2016-05-12 17:35 - 2016-05-12 17:35 - 00110144 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge-64.dll
2016-05-12 17:35 - 2016-05-12 17:35 - 00000000 ____D C:\Users\RobRobsen\AppData\Roaming\Sun
2016-05-12 17:35 - 2016-05-12 17:35 - 00000000 ____D C:\Users\RobRobsen\.oracle_jre_usage
2016-05-12 17:31 - 2016-05-12 17:31 - 41896256 _____ (Apple Inc.) C:\Users\RobRobsen\Downloads\QuickTimeInstaller(3).exe
2016-05-12 17:31 - 2016-05-12 17:31 - 00000000 ____D C:\Users\RobRobsen\AppData\LocalLow\Oracle
2016-05-12 17:31 - 2016-05-12 17:31 - 00000000 ____D C:\Program Files\Java
2016-05-12 17:30 - 2016-05-12 17:31 - 57666112 _____ (Oracle Corporation) C:\Users\RobRobsen\Downloads\jre-8u91-windows-x64.exe
2016-05-12 17:29 - 2016-05-12 17:29 - 13163744 _____ (Microsoft Corporation) C:\Users\RobRobsen\Downloads\Silverlight_x64(2).exe

==================== Ein Monat: Geänderte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2016-06-11 17:23 - 2015-09-05 02:35 - 00004172 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{7CC4D856-B6C6-4121-9F0C-8A076CD4B559}
2016-06-11 17:22 - 2013-11-16 04:23 - 00000000 ____D C:\FRST
2016-06-11 17:21 - 2015-01-14 09:50 - 00000000 ____D C:\Users\RobRobsen\AppData\Local\Spotify
2016-06-11 17:21 - 2015-01-14 09:49 - 00000000 ____D C:\Users\RobRobsen\AppData\Roaming\Spotify
2016-06-11 17:20 - 2015-06-20 02:17 - 00001140 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2016-06-11 17:14 - 2016-02-13 19:25 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-06-11 17:13 - 2015-10-30 08:28 - 00524288 ___SH C:\WINDOWS\system32\config\BBI
2016-06-11 17:09 - 2015-06-20 02:17 - 00001144 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2016-06-11 17:05 - 2015-08-01 23:44 - 00000884 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2016-06-11 16:13 - 2015-01-13 10:28 - 00000000 ____D C:\AdwCleaner
2016-06-11 15:23 - 2015-01-14 11:23 - 00000000 ____D C:\Program Files (x86)\Steam
2016-06-11 14:05 - 2015-09-09 20:24 - 00338680 _____ C:\WINDOWS\system32\Drivers\EasyAntiCheat.sys
2016-06-10 18:36 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-06-10 18:17 - 2015-10-30 09:24 - 00000000 ___HD C:\Program Files\WindowsApps
2016-06-09 21:56 - 2016-04-15 13:47 - 00000000 ____D C:\Users\RobRobsen
2016-06-09 20:10 - 2015-01-17 08:10 - 00000000 ____D C:\Program Files (x86)\iRacing
2016-06-09 19:52 - 2016-05-06 14:43 - 00000000 ____D C:\Users\RobRobsen\Downloads\Attachments_201656
2016-06-08 19:22 - 2016-01-28 12:32 - 00004024 _____ C:\WINDOWS\System32\Tasks\Opera scheduled Autoupdate 1453977157
2016-06-08 18:52 - 2015-01-14 09:55 - 00000000 ____D C:\Users\RobRobsen\AppData\Local\Last.fm
2016-06-07 18:11 - 2015-06-20 02:17 - 00002264 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-06-07 18:11 - 2015-06-20 02:17 - 00002252 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-06-06 23:41 - 2015-08-20 09:19 - 00000000 ____D C:\Users\RobRobsen\AppData\Roaming\vlc
2016-06-05 19:20 - 2015-03-20 15:55 - 00000000 ____D C:\Users\RobRobsen\.gimp-2.8
2016-06-05 16:41 - 2015-03-20 16:00 - 00000000 ____D C:\Users\RobRobsen\AppData\Local\gtk-2.0
2016-06-03 21:58 - 2015-09-05 02:19 - 00000000 ____D C:\Program Files\iTunes
2016-06-03 21:57 - 2015-01-14 09:49 - 00000000 ____D C:\Program Files (x86)\iTunes
2016-06-03 21:57 - 2015-01-14 09:48 - 00000000 ____D C:\Program Files\Common Files\Apple
2016-06-02 19:09 - 2016-04-03 14:52 - 00000000 ____D C:\Users\RobRobsen\AppData\Roaming\PlaysTV
2016-06-02 19:09 - 2016-01-13 06:41 - 00000000 ____D C:\Users\RobRobsen\AppData\Roaming\Raptr
2016-06-02 19:07 - 2015-01-15 02:21 - 00000000 ____D C:\Program Files (x86)\AMD
2016-06-02 19:05 - 2015-10-30 09:21 - 00000000 ____D C:\WINDOWS\INF
2016-06-02 19:03 - 2013-12-17 16:50 - 00000000 ____D C:\AMD
2016-05-30 09:28 - 2016-01-12 05:55 - 00000000 ____D C:\Users\RobRobsen\AppData\Local\CrashDumps
2016-05-29 13:22 - 2015-08-20 09:07 - 00000000 ____D C:\Users\RobRobsen\AppData\Local\Tomahawk
2016-05-29 13:18 - 2015-12-10 22:59 - 00000000 ____D C:\Users\RobRobsen\AppData\Local\SpotifyResolver
2016-05-29 13:12 - 2015-08-20 09:05 - 00000000 ____D C:\Program Files (x86)\Tomahawk
2016-05-28 10:57 - 2015-02-18 01:52 - 00000000 ____D C:\Users\RobRobsen\AppData\LocalLow\Dinosaur Polo Club
2016-05-27 04:40 - 2016-02-03 12:08 - 00000000 ____D C:\Users\RobRobsen\Documents\American Truck Simulator
2016-05-25 11:02 - 2016-04-15 13:43 - 00000000 ____D C:\Program Files\AMD
2016-05-25 06:22 - 2015-01-22 14:13 - 00000000 ____D C:\Users\RobRobsen\Documents\Masters of the World
2016-05-25 05:40 - 2015-01-14 11:36 - 00000000 ____D C:\Users\RobRobsen\Documents\My Games
2016-05-23 09:56 - 2016-04-02 19:04 - 00000000 ____D C:\Users\RobRobsen\AppData\Local\Logitech
2016-05-21 01:40 - 2016-04-15 13:46 - 02086168 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-05-21 01:40 - 2016-02-13 18:59 - 00888008 _____ C:\WINDOWS\system32\perfh007.dat
2016-05-21 01:40 - 2016-02-13 18:59 - 00197092 _____ C:\WINDOWS\system32\perfc007.dat
2016-05-20 23:47 - 2016-04-29 21:48 - 08865344 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atiumdva.dll
2016-05-20 23:47 - 2016-04-29 21:48 - 00123776 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atiu9pag.dll
2016-05-20 23:47 - 2016-04-01 00:46 - 00166488 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atiuxp64.dll
2016-05-20 23:47 - 2016-04-01 00:46 - 00137136 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atiuxpag.dll
2016-05-20 23:47 - 2016-04-01 00:45 - 10694160 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atidxx64.dll
2016-05-20 23:47 - 2016-04-01 00:45 - 08876704 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atidxx32.dll
2016-05-20 23:47 - 2016-04-01 00:45 - 01511680 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\aticfx64.dll
2016-05-20 23:47 - 2016-04-01 00:45 - 01242832 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\aticfx32.dll
2016-05-20 23:46 - 2016-04-29 21:48 - 06999496 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atiumdag.dll
2016-05-20 23:46 - 2016-03-31 23:29 - 09798560 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atiumd6a.dll
2016-05-20 23:41 - 2016-04-01 00:35 - 27015680 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Drivers\atikmdag.sys
2016-05-20 22:57 - 2016-04-01 00:35 - 00498176 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Drivers\atikmpag.sys
2016-05-17 16:54 - 2016-04-03 14:50 - 00000000 ____D C:\Program Files (x86)\VulkanRT
2016-05-16 04:17 - 2016-04-29 21:48 - 00123776 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\SET77A1.tmp
2016-05-16 04:17 - 2016-04-01 00:46 - 00166488 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\SET5EBA.tmp
2016-05-16 04:17 - 2016-04-01 00:46 - 00137136 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\SET78DC.tmp
2016-05-16 04:17 - 2016-04-01 00:45 - 10689528 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\SET331E.tmp
2016-05-16 04:17 - 2016-04-01 00:45 - 08873608 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\SET42BB.tmp
2016-05-16 04:17 - 2016-04-01 00:45 - 01510144 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\SET5F79.tmp
2016-05-16 04:17 - 2016-04-01 00:45 - 01241296 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\SET6364.tmp
2016-05-16 04:16 - 2016-04-29 21:48 - 08865344 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\SET3787.tmp
2016-05-16 04:16 - 2016-04-29 21:48 - 06999496 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\SET3449.tmp
2016-05-16 04:16 - 2016-03-31 23:29 - 09798560 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\SETAE3.tmp
2016-05-16 04:11 - 2016-04-01 00:35 - 27012096 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Drivers\SET6E7.tmp
2016-05-16 03:35 - 2016-03-01 13:37 - 00101376 _____ (Advanced Micro Devices) C:\WINDOWS\system32\Drivers\AtihdWT6.sys
2016-05-16 03:24 - 2016-04-01 00:35 - 00497664 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Drivers\SET5E69.tmp
2016-05-14 18:37 - 2015-08-26 09:43 - 00000000 ____D C:\Users\RobRobsen\AppData\Roaming\MediaMonkey
2016-05-14 17:35 - 2016-02-12 14:56 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-05-14 08:10 - 2015-09-06 02:06 - 00000000 ____D C:\Users\RobRobsen\AppData\Roaming\foobar2000
2016-05-14 03:17 - 2015-05-17 17:32 - 00000000 ____D C:\Users\RobRobsen\Documents\Paradox Interactive
2016-05-13 20:13 - 2015-10-30 09:11 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-05-13 19:32 - 2015-07-30 19:32 - 00000000 ____D C:\Users\RobRobsen\AppData\Local\Packages
2016-05-12 21:03 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\rescache
2016-05-12 19:19 - 2015-06-24 04:07 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2016-05-12 19:19 - 2015-06-24 04:07 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2016-05-12 17:39 - 2015-01-14 09:56 - 00000000 ____D C:\Program Files (x86)\QuickTime
2016-05-12 17:36 - 2015-02-02 16:31 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2016-05-12 17:29 - 2015-06-24 04:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======

2015-07-31 02:21 - 2015-07-31 14:04 - 0000506 _____ () C:\Users\RobRobsen\AppData\Roaming\burnaware.ini
2015-09-05 17:05 - 2008-02-02 15:51 - 0109120 __RSH (Un4seen Developments) C:\Users\RobRobsen\AppData\Roaming\Microsoft\clog.txt
2015-09-05 17:15 - 2015-09-05 17:16 - 0000275 _____ () C:\Users\RobRobsen\AppData\Local\HamsterAudioConverterSettings.cfg
2016-06-05 16:41 - 2016-06-05 16:41 - 0003447 _____ () C:\Users\RobRobsen\AppData\Local\recently-used.xbel
2016-01-26 02:53 - 2016-01-26 02:53 - 0000109 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.400.64.bc

==================== Bamital & volsnap =================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert
C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert
C:\WINDOWS\explorer.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert
C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert
C:\WINDOWS\system32\services.exe => Datei ist digital signiert
C:\WINDOWS\system32\User32.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert
C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert
C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert
C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert


LastRegBack: 2016-06-03 20:47

==================== Ende von FRST.txt ============================
         

Alt 11.06.2016, 16:32   #10
deeprybka
/// TB-Ausbilder
/// Anleitungs-Guru
 
Eset Smart Security 9 fehlermeldung - Standard

Eset Smart Security 9 fehlermeldung



Gibt es jetzt noch Probleme mit dem PC? Wenn ja, welche?
__________________
Gruß
deeprybka

Lob, Kritik, Wünsche?

Spende fürs trojaner-board?
_______________________________________________
„Neminem laede, immo omnes, quantum potes, iuva.“ Arthur Schopenhauer

Alt 11.06.2016, 16:36   #11
FRANTANIA
 
Eset Smart Security 9 fehlermeldung - Standard

Eset Smart Security 9 fehlermeldung



Eset bringt keine fehler meldung mehr.
Danke für die hilfe.
Ich hab nur noch eine frage darf ich meine Firefox add-ons wieder aktivieren oder geht das spiel dan wieder von vorne los ?

Alt 11.06.2016, 16:39   #12
deeprybka
/// TB-Ausbilder
/// Anleitungs-Guru
 
Eset Smart Security 9 fehlermeldung - Standard

Eset Smart Security 9 fehlermeldung



Ja, aktivier mal und sag ob es noch Probleme gibt...
__________________
Gruß
deeprybka

Lob, Kritik, Wünsche?

Spende fürs trojaner-board?
_______________________________________________
„Neminem laede, immo omnes, quantum potes, iuva.“ Arthur Schopenhauer

Alt 11.06.2016, 16:47   #13
FRANTANIA
 
Eset Smart Security 9 fehlermeldung - Standard

Eset Smart Security 9 fehlermeldung



Scheint alles Okay zu sein

Alt 11.06.2016, 16:48   #14
deeprybka
/// TB-Ausbilder
/// Anleitungs-Guru
 
Eset Smart Security 9 fehlermeldung - Standard

Eset Smart Security 9 fehlermeldung





Wir haben es geschafft!
Die Logs sehen für mich im Moment sauber aus.

Wenn Du möchtest, kannst Du hier sagen, ob Du mit mir und meiner Hilfe zufrieden warst...und/oder das Forum mit einer kleinen Spende unterstützen.
Es bleibt mir nur noch, Dir unbeschwertes und sicheres Surfen zu wünschen und dass wir uns hier so bald nicht wiedersehen.




Cleanup:
(Die Reihenfolge ist hier entscheidend)

Falls Defogger verwendet wurde: Erneut starten und auf Re-enable klicken.

Falls Combofix verwendet wurde:
Combofix deinstallieren
  • Wichtig: Bitte Antivirus-Programm, evtl. vorhandenes Skript-Blocking und Anti-Malware Programme deaktivieren.
  • Drücke bitte die + R Taste und schreibe Combofix /Uninstall in das Ausführen-Fenster.
  • Klicke auf OK.
    Damit wird Combofix komplett entfernt und der Cache der Systemwiederherstellung geleert.
  • Nun die eben deaktivierten Programme wieder aktivieren.

Alle Logs gepostet? Dann lade Dir bitte DelFix herunter.
  • Schließe alle offenen Programme.
  • Starte die delfix.exe mit einem Doppelklick.
  • Setze vor jede Funktion ein Häkchen.
  • Klicke auf Start.

Hinweis: DelFix entfernt u.a. alle verwendeten Programme, die Quarantäne unserer Scanner, den Java-Cache und löscht sich abschließend selbst.
Starte Deinen Rechner abschließend neu. Sollten jetzt noch Programme aus unserer Bereinigung übrig sein, kannst Du diese bedenkenlos löschen.



Absicherung:
Beim Betriebsystem Windows die automatischen Updates aktivieren. Auch die sicherheitsrelevante Software sollte immer nur in der aktuellsten Version vorliegen:

Browser
Java
Flash-Player
PDF-Reader

Sicherheitslücken (z.B. hier) in deren alten Versionen werden dazu ausgenutzt, um beim einfachen Besuch einer manipulierten Website per "Drive-by" Malware zu installieren.
Ich empfehle z.B. die Verwendung von Mozilla Firefox statt des Internet Explorers. Zudem lassen sich mit dem Firefox auch PDF-Dokumente öffnen.

Aktiviere eine Firewall. Die in Windows integrierte genügt im Normalfall völlig.

Verwende ein Antivirusprogramm mit Echtzeitscanner und stets aktueller Signaturendatenbank.

Meine Kauf-Empfehlung:



Zusätzlich kannst Du Deinen PC regelmäßig mit Malwarebytes Anti-Malware scannen.

Optional:
NoScript verhindert das Ausführen von aktiven Inhalten (Java, JavaScript, Flash,...) für sämtliche Websites. Man kann aber nach dem Prinzip einer Whitelist festlegen, auf welchen Seiten Scripts erlaubt werden sollen.
Malwarebytes Anti Exploit: Schützt die Anwendungen des Computers vor der Ausnutzung bekannter Schwachstellen.


Lade Software von einem sauberen Portal wie .
Wähle beim Installieren von Software immer die benutzerdefinierte Option und entferne den Haken bei allen optional angebotenen Toolbars oder sonstigen, fürs Programm, irrelevanten Ergänzungen.
Um Adware wieder los zu werden, empfiehlt sich zunächst die Deinstallation sowie die anschließende Resteentfernung mit Adwcleaner .


Abschließend noch ein paar grundsätzliche Bemerkungen:
Ändere regelmäßig Deine wichtigen Online-Passwörter und erstelle regelmäßig Backups Deiner wichtigen Dateien oder des Systems.
Der Nutzen von Registry-Cleanern, Optimizern usw. zur Performancesteigerung ist umstritten. Ich empfehle deshalb, die Finger von der Registry zu lassen und lieber die windowseigene Datenträgerbereinigung zu verwenden.
__________________
Gruß
deeprybka

Lob, Kritik, Wünsche?

Spende fürs trojaner-board?
_______________________________________________
„Neminem laede, immo omnes, quantum potes, iuva.“ Arthur Schopenhauer

Antwort

Themen zu Eset Smart Security 9 fehlermeldung
anhang, datei, eset, eset smart security, eset smart security 9, fehlermeldung, firefox, folge, folgende, gefunde, gestellt, problem, quara, quarantäne, security, smart, smart security, virus



Ähnliche Themen: Eset Smart Security 9 fehlermeldung


  1. Firefox stürzt ab nach Installation von Eset Smart Security
    Alles rund um Windows - 01.03.2016 (4)
  2. eset smart security funktioniert nicht mehr wegen EKR.exe Fehler
    Log-Analyse und Auswertung - 23.01.2015 (7)
  3. PLAGEGEISTER ENTFERNEN BIST _ fehlermeldung bei Eset online
    Plagegeister aller Art und deren Bekämpfung - 20.01.2015 (5)
  4. Infektion gefunden unter Eset Smart Security
    Log-Analyse und Auswertung - 03.11.2014 (9)
  5. Verfügt Eset Smart Security 7 über einen wirksamen Echtzeitschutz?
    Antiviren-, Firewall- und andere Schutzprogramme - 03.10.2014 (8)
  6. Wahrscheinlicher Virus ESET Smart Security 7 -> C:\Support\couponsupport.exe
    Plagegeister aller Art und deren Bekämpfung - 10.09.2014 (11)
  7. eset smart security wechseln
    Antiviren-, Firewall- und andere Schutzprogramme - 11.01.2014 (5)
  8. ESET Mobile Security & Antivirus
    Smartphone, Tablet & Handy Security - 10.10.2013 (0)
  9. Smart Security entfernen
    Anleitungen, FAQs & Links - 27.01.2013 (2)
  10. Security Shield eingefangen +LOGS (MB-AM,OTL,ESET)
    Log-Analyse und Auswertung - 27.07.2012 (3)
  11. Smart Fortress 2012 ... ESET läuft schon
    Plagegeister aller Art und deren Bekämpfung - 13.05.2012 (1)
  12. System Smart Security definitiv entfernen
    Plagegeister aller Art und deren Bekämpfung - 06.07.2011 (63)
  13. ESET Smart Security oder ESET NOD32 Antivirus?
    Antiviren-, Firewall- und andere Schutzprogramme - 18.10.2010 (1)
  14. SmartSecurity / Smart Security entfernen
    Anleitungen, FAQs & Links - 13.03.2010 (2)
  15. Nod32 Smart Security 3 beenden???
    Antiviren-, Firewall- und andere Schutzprogramme - 17.07.2008 (1)
  16. Port 995 (GMail), Thunderbird & ESET Smart Security
    Antiviren-, Firewall- und andere Schutzprogramme - 26.05.2008 (1)
  17. Smart Security, roter Desktop, Hilfe
    Log-Analyse und Auswertung - 28.03.2005 (2)

Zum Thema Eset Smart Security 9 fehlermeldung - Hallo Ich bekomme mit Eset Smart Security 9 folgende Fehlermeldung wenn ich Firefox öffne.(siehe Anhang). Es wird keine Datei in Quarantäne gestellt und auch kein Virus von Eset gefunden. Kann - Eset Smart Security 9 fehlermeldung...
Archiv
Du betrachtest: Eset Smart Security 9 fehlermeldung auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.