Zurück   Trojaner-Board > Malware entfernen > Plagegeister aller Art und deren Bekämpfung

Plagegeister aller Art und deren Bekämpfung: Strong Signal nicht zu Entfernen.

Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen.

Antwort
Alt 12.05.2015, 20:38   #1
Jasch91
 
Strong Signal nicht zu Entfernen. - Standard

Strong Signal nicht zu Entfernen.



Hallo Tro-Community,
ich komme ich großer Not, seit einem Tag hat sich wohl irgendwo "Strong Signal" eingeschlichen und treibt mich mit Werbung in den Wahnsinn. Mein Avast ist auf dem neuesten Stand und habe schon AdwCleaner versucht und nichts funktioniert.

Alt 12.05.2015, 21:30   #2
Bootsektor
Ruhe in Frieden
† 2019
 
Strong Signal nicht zu Entfernen. - Standard

Strong Signal nicht zu Entfernen.





Mein Name ist Sandra und ich werde Dir bei Deinem Problem behilflich sein.
  • Bitte arbeite alle Schritte der Reihe nach ab.
  • Lese die Anleitungen sorgfältig durch bevor Du beginnst. Wenn es Probleme gibt oder Du etwas nicht verstehst, dann stoppe mit Deiner Ausführung und beschreibe mir das Problem
  • Führe bitte nur Scans durch zu denen Du von mir aufgefordert wirst.
  • Bitte kein Crossposting ( posten in mehreren Foren).
  • Installiere oder deinstalliere während der Bereinigung keine Software, ausser Du wurdest dazu aufgefordert.
  • Poste die Logfiles direkt in deinen Thread in Code-Tags.
  • Bedenke, dass wir hier alle während unserer Freizeit tätig sind, wenn du innerhalb von 2 Tagen nichts von mir hörst, dann schreibe mir bitte eine PM.

Hinweis: Ich kann Dir niemals eine Garantie geben, dass ich auch alles finde. Eine Formatierung ist meist der schnellere und bei einem Befall durch Malware immer der sicherste Weg. Adware lässt sich in den allermeisten Fällen problemlos entfernen.
Solltest Du Dich für eine Bereinigung entscheiden, arbeite solange mit, bis Dir jemand vom Team sagt, dass Du clean bist.

Posten in Code Tags
Bitte füge die Logs immer in Code-Tags ein. Wenn Du das nicht machst, erschwert es mir sehr das Auswerten. Danke.
Dazu:
  • Klicke über dem Antwortfenster auf die Raute #, dann steht dort in eckigen Klammern [] CODE /CODE.
  • Zwischen den beiden code-Bausteinen fügst Du dann deine Logfiles ein. Also CODE Logfile /CODE
  • Wenn die Logs zu lang sein sollten, dann teile sie bitte auf und poste sie dann hier in Deinem Thread, notfalls in mehreren Antworten.

Schritt 1
Bitte poste das Log vom Adwarecleaner

Schritt 2
Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop: FRST Download FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
  • Starte jetzt FRST.
  • Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
  • Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
  • Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)

__________________

__________________

Alt 13.05.2015, 00:31   #3
Jasch91
 
Strong Signal nicht zu Entfernen. - Standard

Strong Signal nicht zu Entfernen.



AdwCleaner:

Code:
ATTFilter
# AdwCleaner v4.204 - Bericht erstellt 13/05/2015 um 01:24:36
# Aktualisiert 12/05/2015 von Xplode
# Datenbank : 2015-05-12.2 [Server]
# Betriebssystem : Windows 8.1  (x64)
# Benutzername : Jasch - JASCH-PC
# Gestarted von : C:\Users\Jasch\Downloads\adwcleaner_4.204.exe
# Option : Löschen

***** [ Dienste ] *****

[#] Dienst Gelöscht : Service Mgr StrongSignal

***** [ Dateien / Ordner ] *****

Ordner Gelöscht : C:\Program Files (x86)\Strong Signal
Ordner Gelöscht : C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\niloccemoadcdkdjlinkgdfekeahmflj
Datei Gelöscht : C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_niloccemoadcdkdjlinkgdfekeahmflj_0.localstorage
Datei Gelöscht : C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_niloccemoadcdkdjlinkgdfekeahmflj_0.localstorage-journal

***** [ Geplante Tasks ] *****


***** [ Verknüpfungen ] *****


***** [ Registrierungsdatenbank ] *****

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{F83D1872-D9FF-47F8-B5A0-49CC51E24EE8}
Schlüssel Gelöscht : HKLM\SOFTWARE\StrongSignal

***** [ Internetbrowser ] *****

-\\ Internet Explorer v11.0.9600.17416


-\\ Google Chrome v42.0.2311.135

[C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] - Gelöscht [Extension] : niloccemoadcdkdjlinkgdfekeahmflj
[C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] - Gelöscht [Homepage] : hxxp://www.trovi.com/?gd=&ctid=CT3330789&octid=EB_ORIGINAL_CTID&ISID=MB400F51F-89D9-4F2E-8745-BC5EEC935428&SearchSource=55&CUI=&UM=6&UP=SPFBA2212C-C499-4EDA-862E-B18FDEB1C3E9&SSPV=
[C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] - Gelöscht [Startup_URLs] : hxxp://myhome.vi-view.com/?type=hp&ts=1421675379&from=cor&uid=TOSHIBAXMK1059GSMP_1262P45VTXX1262P45VT

*************************

AdwCleaner[R0].txt - [5678 Bytes] - [12/05/2015 20:28:10]
AdwCleaner[R1].txt - [2217 Bytes] - [12/05/2015 20:48:21]
AdwCleaner[R2].txt - [3249 Bytes] - [12/05/2015 20:59:58]
AdwCleaner[R3].txt - [2640 Bytes] - [12/05/2015 21:02:49]
AdwCleaner[R4].txt - [2270 Bytes] - [12/05/2015 21:05:33]
AdwCleaner[R5].txt - [2570 Bytes] - [12/05/2015 21:30:54]
AdwCleaner[R6].txt - [2744 Bytes] - [13/05/2015 01:24:10]
AdwCleaner[S0].txt - [5083 Bytes] - [12/05/2015 20:29:23]
AdwCleaner[S1].txt - [2280 Bytes] - [12/05/2015 20:48:56]
AdwCleaner[S2].txt - [3308 Bytes] - [12/05/2015 21:01:29]
AdwCleaner[S3].txt - [2329 Bytes] - [12/05/2015 21:10:46]
AdwCleaner[S4].txt - [2633 Bytes] - [12/05/2015 21:31:37]
AdwCleaner[S5].txt - [2668 Bytes] - [13/05/2015 01:24:36]

########## EOF - C:\AdwCleaner\AdwCleaner[S5].txt - [2727  Bytes] ##########
         
FRST.txt:

FRST Logfile:

FRST Logfile:
Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 09-05-2015
Ran by Jasch (administrator) on JASCH-PC on 13-05-2015 01:28:37
Running from C:\Users\Jasch\Downloads
Loaded Profiles: Jasch (Available profiles: Jasch)
Platform: Windows 8.1 (X64) OS Language: Deutsch (Deutschland)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Avast Software s.r.o.) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Broadcom Corporation.) C:\Windows\System32\BtwRSupportService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(Beepa P/L) C:\Fraps\fraps.exe
(Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe
(Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.26.9\GoogleCrashHandler.exe
() C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(DEVGURU Co., LTD.) C:\Program Files (x86)\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe
() C:\Program Files (x86)\Common Files\0780f478-67ce-4ec3-98db-39a65f4618ce\Updater.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.26.9\GoogleCrashHandler64.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Intel(R) Corporation) C:\Program Files\Intel\NCS2\WMIProv\ncs2prov.exe
(NVIDIA Corporation) C:\Users\Jasch\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\NvOAWrapperCache.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\LCore.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Spotify Ltd) C:\Users\Jasch\AppData\Roaming\Spotify\SpotifyWebHelper.exe
(Disc Soft Ltd) C:\Program Files (x86)\DAEMON Tools Ultra\DiscSoftBusService.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Spotify Ltd) C:\Users\Jasch\AppData\Roaming\Spotify\Spotify.exe
(Spotify Ltd) C:\Users\Jasch\AppData\Roaming\Spotify\SpotifyCrashService.exe
(Samsung) C:\Program Files (x86)\Samsung\Kies\Kies.exe
(Spotify Ltd) C:\Users\Jasch\AppData\Roaming\Spotify\Spotify.exe
(Spotify Ltd) C:\Users\Jasch\AppData\Roaming\Spotify\Spotify.exe
(Avast Software s.r.o.) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Razer Inc.) C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe
(Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
() C:\ProgramData\Razer\Synapse\RzStats\RzStats.Manager.exe
(Razer, Inc.) C:\Program Files (x86)\Razer\InGameEngine\32bit\RazerIngameEngine.exe
(Razer, Inc.) C:\Users\Jasch\AppData\Local\Razer\InGameEngine\cache\RzStats.Manager\RzCefRenderProcess.exe
(Beepa P/L) C:\Fraps\fraps64.dat
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2673296 2015-03-28] (NVIDIA Corporation)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [287592 2014-05-28] (Intel Corporation)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13667032 2014-02-24] (Realtek Semiconductor)
HKLM\...\Run: [Launch LCore] => C:\Program Files\Logitech Gaming Software\LCore.exe [13318424 2015-02-26] (Logitech Inc.)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [5515496 2015-05-12] (Avast Software s.r.o.)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Razer Synapse] => C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe [590144 2015-04-22] (Razer Inc.)
HKLM-x32\...\Run: [KiesTrayAgent] => C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe [311616 2015-02-24] (Samsung Electronics Co., Ltd.)
HKLM\...\Winlogon: [Userinit] C:\Windows\system32\userinit.exe,C:\Windows\skipmetrosuite.exe,
HKU\S-1-5-21-2577149796-2635466800-2005262636-1002\...\Run: [GoogleChromeAutoLaunch_5287039B98BC68C2D6F0BFD625D75439] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [812872 2015-04-28] (Google Inc.)
HKU\S-1-5-21-2577149796-2635466800-2005262636-1002\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [2889408 2015-04-14] (Valve Corporation)
HKU\S-1-5-21-2577149796-2635466800-2005262636-1002\...\Run: [Spotify Web Helper] => C:\Users\Jasch\AppData\Roaming\Spotify\SpotifyWebHelper.exe [2020920 2015-05-01] (Spotify Ltd)
HKU\S-1-5-21-2577149796-2635466800-2005262636-1002\...\Run: [DAEMON Tools Ultra Agent] => C:\Program Files (x86)\DAEMON Tools Ultra\DTAgent.exe [3732752 2015-02-26] (Disc Soft Ltd)
HKU\S-1-5-21-2577149796-2635466800-2005262636-1002\...\Run: [Spotify] => C:\Users\Jasch\AppData\Roaming\Spotify\Spotify.exe [7168568 2015-05-01] (Spotify Ltd)
HKU\S-1-5-21-2577149796-2635466800-2005262636-1002\...\Run: [KiesPreload] => C:\Program Files (x86)\Samsung\Kies\Kies.exe [1565504 2015-02-24] (Samsung)
HKU\S-1-5-21-2577149796-2635466800-2005262636-1002\...\MountPoints2: {7cde29b3-c824-11e4-8257-d0509947abf9} - "F:\Setup.exe" 
HKU\S-1-5-21-2577149796-2635466800-2005262636-1002\...\MountPoints2: {b5ef9f1b-d1a2-11e4-825d-000272ce57e0} - "K:\setup.exe" 
HKU\S-1-5-21-2577149796-2635466800-2005262636-1002\...\MountPoints2: {b5ef9f1e-d1a2-11e4-825d-000272ce57e0} - "L:\setup.exe" 
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Avast Free Antivirus.lnk [2015-03-11]
ShortcutTarget: Avast Free Antivirus.lnk -> C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o.)
ShellIconOverlayIdentifiers: ["DropboxExt1"] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Jasch\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-03-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt2"] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Jasch\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-03-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt3"] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Jasch\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-03-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt4"] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Jasch\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-03-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt5"] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Jasch\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-03-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt6"] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Jasch\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-03-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt7"] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Jasch\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-03-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt8"] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Jasch\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-03-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2015-05-12] (Avast Software s.r.o.)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = https://www.google.com/?trackid=sp-006
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = https://www.google.com/search?trackid=sp-006&q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = 
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = 
HKU\S-1-5-21-2577149796-2635466800-2005262636-1002\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.google.com/search?trackid=sp-006&q={searchTerms}
HKU\S-1-5-21-2577149796-2635466800-2005262636-1002\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.com/?trackid=sp-006
HKU\S-1-5-21-2577149796-2635466800-2005262636-1002\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/de-de/?ocid=iehp
HKU\S-1-5-21-2577149796-2635466800-2005262636-1002\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.google.com/?trackid=sp-006
SearchScopes: HKLM-x32 -> {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = https://www.google.com/search?trackid=sp-006&q={searchTerms}
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-21-2577149796-2635466800-2005262636-1002 -> {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = https://www.google.com/search?trackid=sp-006&q={searchTerms}
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-05-12] (Avast Software s.r.o.)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-05-12] (Avast Software s.r.o.)
BHO-x32: No Name -> {c723a437-2eaf-466d-a95b-3fa0966bf88c} ->  No File
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1

FireFox:
========
FF Plugin: @videolan.org/vlc,version=2.2.0 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-16] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-16] (VideoLAN)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2014-06-24] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2014-06-24] (Intel Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-04-08] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-04-08] (NVIDIA Corporation)
FF Plugin-x32: @raidcall.en/RCplugin -> C:\Users\Jasch\AppData\Roaming\raidcall\plugins\nprcplugin.dll [2014-05-27] (Raidcall)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-03-11] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-03-11] (Google Inc.)
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2015-03-11]

Chrome: 
=======
CHR HomePage: Default -> hxxp://www.trovi.com/?gd=&ctid=CT3330789&octid=EB_ORIGINAL_CTID&ISID=MB400F51F-89D9-4F2E-8745-BC5EEC935428&SearchSource=55&CUI=&UM=6&UP=SPFBA2212C-C499-4EDA-862E-B18FDEB1C3E9&SSPV=
CHR StartupUrls: Default -> "hxxp://myhome.vi-view.com/?type=hp&ts=1421675379&from=cor&uid=TOSHIBAXMK1059GSMP_1262P45VTXX1262P45VT", "hxxp://www.mystartsearch.com/?type=hp&ts=1426100241&from=cor&uid=SamsungXSSDX850XPROX512GB_S2BENWAG112479Y"
CHR DefaultSuggestURL: Default -> {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&gs_ri={google:suggestRid}&xssi=t&q={searchTerms}&{google:inputType}{google:cursorPosition}{google:currentPageUrl}{google:pageClassification}{google:searchVersion}{google:sessionToken}{google:prefetchQuery}sugkey={google:suggestAPIKeyParameter}
CHR Profile: C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Slides) - C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-03-11]
CHR Extension: (BetterTTV) - C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\ajopnjidmegmdimjlfnijceegpefgped [2015-03-19]
CHR Extension: (Google Docs) - C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-03-11]
CHR Extension: (Google Drive) - C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-03-11]
CHR Extension: (Please enter your password) - C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\bfbmjmiodbnnpllbbbfblcplfjjepjdn [2015-03-11]
CHR Extension: (YouTube) - C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-03-11]
CHR Extension: (Adblock Plus) - C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2015-03-11]
CHR Extension: (Adblock for Youtube™) - C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmedhionkhpnakcndndgjdbohmhepckk [2015-03-11]
CHR Extension: (Google Search) - C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-03-11]
CHR Extension: (Google Sheets) - C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-03-11]
CHR Extension: (Hola Better Internet) - C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\gkojfkhlekighikafcpjkiklfbnlmeio [2015-03-11]
CHR Extension: (Bookmark Manager) - C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\gmlllbghnfkpflemihljekbapjopfjik [2015-04-21]
CHR Extension: (Avast Online Security) - C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2015-03-11]
CHR Extension: (feedly) - C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\hipbfijinpcgfogaopmgehiegacbhmob [2015-03-11]
CHR Extension: (Google Keep - notes and lists) - C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\hmjkmjkepdijhoojdojkdfohbdgmmhki [2015-03-11]
CHR Extension: (Dropbox) - C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\ioekoebejdcmnlefjiknokhhafglcjdl [2015-03-11]
CHR Extension: (Google Play) - C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\komhbcfkdcgmcdoenjcjheifdiabikfi [2015-03-11]
CHR Extension: (Chrome Hotword Shared Module) - C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-03-11]
CHR Extension: (Speed Dial 3(Web)) - C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\lceefillmbhhileboicaeakgcikdocmm [2015-03-11]
CHR Extension: (Google Mail Checker) - C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\mihcahmgecmbnbcchbopgniflfhgnkff [2015-03-11]
CHR Extension: (Pocket) - C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\mjcnijlhddpbdemagnpefmlkjdagkogk [2015-03-11]
CHR Extension: (Save to Pocket) - C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\niloccemoadcdkdjlinkgdfekeahmflj [2015-05-13]
CHR Extension: (Google Wallet) - C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-03-11]
CHR Extension: (Google Chrome to Phone Extension) - C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\oadboiipflhobonjjffjbfekfjcgkhco [2015-03-11]
CHR Extension: (Gmail) - C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-03-11]
CHR Extension: (Canvas Rider) - C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\poknhlcknimnnbfcombaooklofipaibk [2015-03-11]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-03-11]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [343336 2015-05-12] (Avast Software s.r.o.)
R2 BcmBtRSupport; C:\Windows\system32\BtwRSupportService.exe [2255064 2013-10-28] (Broadcom Corporation.)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [967040 2015-04-01] ()
S3 BthHFSrv; C:\Windows\System32\BthHFSrv.dll [324608 2014-10-29] (Microsoft Corporation)
R3 Disc Soft Ultra Bus Service; C:\Program Files (x86)\DAEMON Tools Ultra\DiscSoftBusService.exe [1378576 2015-02-26] (Disc Soft Ltd)
S3 Futuremark SystemInfo Service; C:\Program Files (x86)\Futuremark\SystemInfo\FMSISvc.exe [342240 2015-05-06] (Futuremark)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1152144 2015-03-28] (NVIDIA Corporation)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [16232 2014-05-28] (Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [887256 2014-05-13] (Intel(R) Corporation)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [131544 2014-06-24] (Intel Corporation)
S3 iumsvc; C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [174368 2014-04-09] ()
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [154584 2014-06-24] (Intel Corporation)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1878672 2015-03-28] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [22995600 2015-03-28] (NVIDIA Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [1931632 2015-04-21] (Electronic Arts)
R2 Razer Game Scanner Service; C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe [187072 2015-02-05] ()
R2 ss_conn_service; C:\Program Files (x86)\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe [743688 2014-10-13] (DEVGURU Co., LTD.)
S3 Survarium-Steam Update Service; D:\SteamLibrary\steamapps\common\Survarium\game\binaries\x86\survarium_service.exe [76408 2015-04-03] ()
R2 Update Mgr StrongSignal; C:\Program Files (x86)\Common Files\0780f478-67ce-4ec3-98db-39a65f4618ce\Updater.exe [478992 2015-05-12] ()
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366520 2015-02-04] (Microsoft Corporation)
S2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23792 2015-02-04] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29168 2015-05-12] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [89944 2015-05-12] (Avast Software s.r.o.)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93528 2015-05-12] (Avast Software s.r.o.)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65736 2015-05-12] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1047320 2015-05-12] (Avast Software s.r.o.)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [442264 2015-05-12] (Avast Software s.r.o.)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [137288 2015-05-12] (Avast Software s.r.o.)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [272248 2015-05-12] ()
R3 bcbtums; C:\Windows\system32\drivers\bcbtums.sys [170712 2013-10-28] (Broadcom Corporation.)
S3 BthA2DP; C:\Windows\system32\drivers\BthA2DP.sys [132608 2015-01-30] (Microsoft Corporation)
R3 dtultrascsibus; C:\Windows\System32\drivers\dtultrascsibus.sys [30352 2015-03-12] (Disc Soft Ltd)
R3 e1dexpress; C:\Windows\system32\DRIVERS\e1d64x64.sys [457496 2014-03-14] (Intel Corporation)
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [129312 2014-09-30] (Intel Corporation)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19600 2015-03-28] (NVIDIA Corporation)
S3 NVSWCFilter; C:\Windows\System32\drivers\nvswcfilter.sys [19616 2015-02-05] (Windows (R) Win 7 DDK provider)
S3 NVVADARM; C:\Windows\system32\drivers\nvvadarm.sys [39056 2015-04-09] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [38032 2015-02-05] (NVIDIA Corporation)
R3 rzendpt; C:\Windows\System32\drivers\rzendpt.sys [40104 2015-03-10] (Razer Inc)
R2 rzpmgrk; C:\Windows\system32\drivers\rzpmgrk.sys [37184 2015-02-05] (Razer, Inc.)
R2 rzpnk; C:\Windows\system32\drivers\rzpnk.sys [129600 2015-02-04] (Razer, Inc.)
R3 ScpVBus; C:\Windows\System32\drivers\ScpVBus.sys [39168 2013-05-19] (Scarlet.Crush Productions)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114496 2015-02-04] (Microsoft Corporation)
S3 xusb22; C:\Windows\System32\drivers\xusb22.sys [87040 2014-03-18] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-05-13 01:28 - 2015-05-13 01:28 - 00024525 _____ () C:\Users\Jasch\Downloads\FRST.txt
2015-05-12 21:17 - 2015-05-13 01:28 - 00000000 ____D () C:\FRST
2015-05-12 21:17 - 2015-05-12 21:17 - 02102784 _____ (Farbar) C:\Users\Jasch\Downloads\FRST64.exe
2015-05-12 20:45 - 2015-05-12 20:45 - 00000887 _____ () C:\Users\Public\Desktop\VLC media player.lnk
2015-05-12 20:41 - 2015-05-12 20:41 - 00364472 _____ (Avast Software s.r.o.) C:\Windows\system32\aswBoot.exe
2015-05-12 20:41 - 2015-05-12 20:41 - 00043112 _____ (Avast Software s.r.o.) C:\Windows\avastSS.scr
2015-05-12 20:35 - 2015-05-12 20:35 - 02623656 _____ (VS Revo Group Ltd.) C:\Users\Jasch\Downloads\revosetup95.exe
2015-05-12 20:35 - 2015-05-12 20:35 - 00000000 ____D () C:\Program Files (x86)\VS Revo Group
2015-05-12 20:28 - 2015-05-13 01:24 - 00000000 ____D () C:\AdwCleaner
2015-05-12 20:28 - 2015-05-12 20:28 - 02209792 _____ () C:\Users\Jasch\Downloads\adwcleaner_4.204.exe
2015-05-12 14:51 - 2015-05-12 14:52 - 364569139 _____ () C:\Users\Jasch\Downloads\BaNkS-dynamic-gapps-L-5-9-15.zip
2015-05-12 14:51 - 2015-05-12 14:51 - 278663454 _____ () C:\Users\Jasch\Downloads\BlissPop-v3.2-hlte-UNOFFICIAL-20150509-1328.zip
2015-05-11 01:13 - 2015-05-11 01:16 - 00000000 ____D () C:\Users\Jasch\AppData\Roaming\PixelPiracy
2015-05-11 00:30 - 2015-05-11 00:30 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\InputMapper
2015-05-10 23:32 - 2015-05-10 23:33 - 00000000 ____D () C:\Users\Jasch\AppData\Roaming\Tera_Awesomium
2015-05-10 22:31 - 2015-05-10 22:31 - 00001718 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rainmeter.lnk
2015-05-10 22:31 - 2015-05-10 22:31 - 00000000 ____D () C:\Users\Jasch\Documents\Rainmeter
2015-05-10 22:31 - 2015-05-10 22:31 - 00000000 ____D () C:\Users\Jasch\AppData\Roaming\Rainmeter
2015-05-10 22:31 - 2015-05-10 22:31 - 00000000 ____D () C:\Program Files\Rainmeter
2015-05-10 00:41 - 2015-05-10 01:39 - 265356980 _____ () C:\Users\Jasch\Downloads\Black Desert.rar
2015-05-09 00:31 - 2015-05-09 00:32 - 00000000 ____D () C:\Users\Jasch\Documents\3DMark
2015-05-09 00:31 - 2015-05-09 00:31 - 00000022 _____ () C:\Windows\GPU-Z.INI
2015-05-09 00:31 - 2015-05-09 00:31 - 00000000 ____D () C:\Users\Jasch\AppData\Local\Futuremark
2015-05-09 00:31 - 2015-05-09 00:31 - 00000000 ____D () C:\Temp
2015-05-09 00:30 - 2015-05-09 00:30 - 00000000 ____D () C:\Program Files (x86)\Futuremark
2015-05-07 21:11 - 2015-05-10 23:30 - 00000000 ____D () C:\ProgramData\boost_interprocess
2015-05-07 21:11 - 2015-05-07 21:11 - 00000000 ____D () C:\Users\Jasch\AppData\Local\TERA
2015-05-05 17:05 - 2015-05-05 17:05 - 00000000 ____D () C:\Users\Jasch\Downloads\PUBattleRoyale.0.6.0
2015-05-05 04:37 - 2015-05-05 05:10 - 00000000 ____D () C:\Users\Jasch\Downloads\The.Witcher.Enhanced.Edition.v1.5.0.1304.Plus.6.Trainer
2015-05-05 04:36 - 2015-05-05 04:36 - 00000000 ____D () C:\Users\Jasch\Downloads\ppt-wedc
2015-05-05 04:17 - 2015-05-05 04:17 - 00000000 ____D () C:\Users\Jasch\Downloads\witcheywoman1303-ch (2)
2015-05-05 02:49 - 2015-05-05 02:49 - 00000000 ____D () C:\Users\Jasch\Downloads\witcher_ee_v1.5_trn+8
2015-05-04 22:27 - 2015-05-04 22:27 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cheat Engine 6.4
2015-05-04 22:27 - 2015-05-04 22:27 - 00000000 ____D () C:\Program Files (x86)\Cheat Engine 6.4
2015-05-01 13:27 - 2015-05-01 13:27 - 1389207675 _____ () C:\Windows\MEMORY.DMP
2015-05-01 13:27 - 2015-05-01 13:27 - 02164672 _____ () C:\Windows\Minidump\050115-8406-01.dmp
2015-05-01 13:27 - 2015-05-01 13:27 - 00000000 ____D () C:\Windows\Minidump
2015-04-28 15:55 - 2015-04-28 15:56 - 00000000 ____D () C:\Users\Jasch\Downloads\[Wii]Mario_Party_8[PAL][MULTI5][ESPALWii.com]
2015-04-28 15:51 - 2015-04-28 15:52 - 00000000 ____D () C:\Users\Jasch\Documents\Dolphin Emulator
2015-04-28 15:51 - 2015-04-28 15:51 - 00000000 ____D () C:\Users\Jasch\Downloads\Skies of Arcadia Legends (Europe) (En,Fr,De,Es)
2015-04-28 15:48 - 2015-04-28 15:50 - 946765370 _____ () C:\Users\Jasch\Downloads\Skies of Arcadia Legends (Europe) (En,Fr,De,Es).7z
2015-04-28 15:42 - 2015-04-28 15:55 - 228963446 _____ () C:\Users\Jasch\Downloads\[Wii]Mario_Party_8[PAL][MULTI5][ESPALWii.com].rar
2015-04-21 07:22 - 2015-04-21 07:22 - 00000000 ____D () C:\Users\Jasch\AppData\Local\Maca134
2015-04-21 06:16 - 2015-04-21 06:18 - 00000000 ____D () C:\Program Files (x86)\Origin Games
2015-04-21 06:15 - 2015-04-21 07:39 - 00000000 ____D () C:\Users\Jasch\AppData\Roaming\Origin
2015-04-21 06:15 - 2015-04-21 06:16 - 00000000 ____D () C:\Users\Jasch\AppData\Local\Origin
2015-04-21 06:15 - 2015-04-21 06:15 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin
2015-04-21 06:15 - 2015-04-21 06:15 - 00000000 ____D () C:\Program Files (x86)\Origin
2015-04-21 05:56 - 2015-05-07 00:15 - 00000000 ____D () C:\Program Files (x86)\A3Launcher
2015-04-21 05:56 - 2015-04-21 05:56 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\A3Launcher
2015-04-16 16:18 - 2015-04-16 16:18 - 00000000 ____D () C:\Users\Jasch\Downloads\SteamMover_v0_1
2015-04-15 06:51 - 2015-04-08 22:32 - 00560968 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2015-04-15 06:50 - 2015-04-09 02:58 - 31570064 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2015-04-15 06:50 - 2015-04-09 02:58 - 30397072 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2015-04-15 06:50 - 2015-04-09 02:58 - 25375048 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2015-04-15 06:50 - 2015-04-09 02:58 - 24053576 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2015-04-15 06:50 - 2015-04-09 02:58 - 15818528 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2015-04-15 06:50 - 2015-04-09 02:58 - 15716232 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2015-04-15 06:50 - 2015-04-09 02:58 - 14006752 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2015-04-15 06:50 - 2015-04-09 02:58 - 12852784 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2015-04-15 06:50 - 2015-04-09 02:58 - 11380728 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2015-04-15 06:50 - 2015-04-09 02:58 - 10423952 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2015-04-15 06:50 - 2015-04-09 02:58 - 02896528 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2015-04-15 06:50 - 2015-04-09 02:58 - 02573456 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2015-04-15 06:50 - 2015-04-09 02:58 - 01895568 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6435012.dll
2015-04-15 06:50 - 2015-04-09 02:58 - 01557648 _____ (NVIDIA Corporation) C:\Windows\system32\nvmcvadgenco64.dll
2015-04-15 06:50 - 2015-04-09 02:58 - 01557648 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6435012.dll
2015-04-15 06:50 - 2015-04-09 02:58 - 01086424 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll
2015-04-15 06:50 - 2015-04-09 02:58 - 01047368 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2015-04-15 06:50 - 2015-04-09 02:58 - 01037640 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2015-04-15 06:50 - 2015-04-09 02:58 - 00970568 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2015-04-15 06:50 - 2015-04-09 02:58 - 00962192 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2015-04-15 06:50 - 2015-04-09 02:58 - 00927440 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2015-04-15 06:50 - 2015-04-09 02:58 - 00849552 _____ () C:\Windows\system32\nvmcumd.dll
2015-04-15 06:50 - 2015-04-09 02:58 - 00499344 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2015-04-15 06:50 - 2015-04-09 02:58 - 00402576 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2015-04-15 06:50 - 2015-04-09 02:58 - 00390472 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2015-04-15 06:50 - 2015-04-09 02:58 - 00346256 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2015-04-15 06:50 - 2015-04-09 02:58 - 00175880 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2015-04-15 06:50 - 2015-04-09 02:58 - 00154256 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2015-04-15 06:50 - 2015-04-09 02:58 - 00150648 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2015-04-15 06:50 - 2015-04-09 02:58 - 00128512 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2015-04-15 06:50 - 2015-04-09 02:58 - 00100680 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcaparm.dll
2015-04-15 06:50 - 2015-04-09 02:58 - 00039056 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvadarm.sys
2015-04-14 22:46 - 2015-04-14 22:46 - 00000000 ____D () C:\Users\Jasch\AppData\Local\openvr
2015-04-14 06:49 - 2015-05-11 00:27 - 00000080 _____ () C:\Users\Jasch\AppData\Local剜捯獫慴⁲慇敭屳呇⁁屖湥楴汴浥湥⹴湩潦
2015-04-13 00:21 - 2015-04-13 00:22 - 00000000 ____D () C:\Users\Jasch\AppData\Local\PAYDAY 2

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-05-13 01:27 - 2015-03-10 12:11 - 00006469 _____ () C:\Windows\SysWOW64\Gms.log
2015-05-13 01:26 - 2015-03-11 15:00 - 01963776 _____ () C:\Windows\WindowsUpdate.log
2015-05-13 01:25 - 2015-03-23 23:46 - 00003138 _____ () C:\Windows\System32\Tasks\FRAPS
2015-05-13 01:25 - 2015-03-23 23:45 - 00000000 ____D () C:\Fraps
2015-05-13 01:25 - 2015-03-12 01:22 - 00000000 ____D () C:\Users\Jasch\AppData\Local\Spotify
2015-05-13 01:25 - 2015-03-11 15:25 - 00000000 ____D () C:\Program Files (x86)\Steam
2015-05-13 01:25 - 2015-03-11 15:14 - 00001122 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-05-13 01:25 - 2015-03-10 11:55 - 00000000 ____D () C:\ProgramData\NVIDIA
2015-05-13 01:25 - 2013-08-22 16:46 - 00056222 _____ () C:\Windows\setupact.log
2015-05-13 01:25 - 2013-08-22 16:45 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2015-05-13 01:19 - 2015-03-11 15:14 - 00001126 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-05-13 01:00 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\system32\sru
2015-05-12 23:37 - 2015-03-11 20:57 - 00000000 ____D () C:\ProgramData\0780f478-67ce-4ec3-98db-39a65f4618ce
2015-05-12 22:15 - 2015-03-11 15:16 - 00003600 _____ () C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2577149796-2635466800-2005262636-1002
2015-05-12 21:38 - 2015-03-10 11:48 - 01780340 _____ () C:\Windows\system32\PerfStringBackup.INI
2015-05-12 21:38 - 2013-08-23 01:24 - 00765378 _____ () C:\Windows\system32\perfh007.dat
2015-05-12 21:38 - 2013-08-23 01:24 - 00159696 _____ () C:\Windows\system32\perfc007.dat
2015-05-12 21:37 - 2015-03-12 01:21 - 00000000 ____D () C:\Users\Jasch\AppData\Roaming\Spotify
2015-05-12 21:02 - 2013-08-22 16:44 - 00338272 _____ () C:\Windows\system32\FNTCACHE.DAT
2015-05-12 20:42 - 2015-03-10 11:40 - 00023972 _____ () C:\Windows\PFRO.log
2015-05-12 20:41 - 2015-03-11 15:22 - 01047320 _____ (Avast Software s.r.o.) C:\Windows\system32\Drivers\aswSnx.sys
2015-05-12 20:41 - 2015-03-11 15:22 - 00442264 _____ (Avast Software s.r.o.) C:\Windows\system32\Drivers\aswSP.sys
2015-05-12 20:41 - 2015-03-11 15:22 - 00272248 _____ () C:\Windows\system32\Drivers\aswVmm.sys
2015-05-12 20:41 - 2015-03-11 15:22 - 00137288 _____ (Avast Software s.r.o.) C:\Windows\system32\Drivers\aswStm.sys
2015-05-12 20:41 - 2015-03-11 15:22 - 00093528 _____ (Avast Software s.r.o.) C:\Windows\system32\Drivers\aswRdr2.sys
2015-05-12 20:41 - 2015-03-11 15:22 - 00089944 _____ (Avast Software s.r.o.) C:\Windows\system32\Drivers\aswMonFlt.sys
2015-05-12 20:41 - 2015-03-11 15:22 - 00065736 _____ () C:\Windows\system32\Drivers\aswRvrt.sys
2015-05-12 20:41 - 2015-03-11 15:22 - 00029168 _____ () C:\Windows\system32\Drivers\aswHwid.sys
2015-05-12 20:41 - 2015-03-11 15:22 - 00003924 _____ () C:\Windows\System32\Tasks\avast! Emergency Update
2015-05-12 20:41 - 2013-08-22 15:25 - 00262144 ___SH () C:\Windows\system32\config\ELAM
2015-05-12 20:29 - 2013-08-22 15:25 - 00262144 ___SH () C:\Windows\system32\config\BBI
2015-05-12 20:08 - 2015-03-11 15:10 - 00000000 ____D () C:\Users\Jasch
2015-05-12 20:07 - 2015-03-11 15:42 - 00000000 ____D () C:\Users\Jasch\AppData\Local\Battle.net
2015-05-12 14:57 - 2015-03-11 15:22 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
2015-05-11 20:36 - 2015-03-11 20:57 - 00000000 ____D () C:\Users\Jasch\AppData\Local\JDownloader v2.0
2015-05-11 19:48 - 2015-03-13 21:43 - 00000000 ____D () C:\Users\Jasch\AppData\Local\Arma 3
2015-05-11 19:38 - 2015-03-15 00:10 - 00000000 ____D () C:\Users\Jasch\AppData\Roaming\vlc
2015-05-11 19:17 - 2015-03-15 00:12 - 00000000 ____D () C:\Users\Jasch\AppData\Roaming\uTorrent
2015-05-11 00:30 - 2015-03-16 22:25 - 00000000 ____D () C:\Users\Jasch\AppData\Roaming\InputMapper
2015-05-11 00:29 - 2015-03-16 22:25 - 00000000 ____D () C:\Users\Jasch\AppData\Roaming\DSDCS
2015-05-07 00:12 - 2015-03-13 21:42 - 00000000 ____D () C:\Users\Jasch\AppData\Local\Arma 3 Launcher
2015-05-05 05:33 - 2015-03-17 00:45 - 00000000 ____D () C:\Users\Jasch\AppData\Local\The Witcher
2015-04-27 21:09 - 2015-03-10 11:56 - 00152366 _____ () C:\Windows\DPINST.LOG
2015-04-27 02:06 - 2015-03-24 00:08 - 00000000 ____D () C:\ProgramData\Origin
2015-04-21 07:55 - 2015-03-11 18:40 - 00266417 _____ () C:\Windows\DirectX.log
2015-04-21 06:15 - 2015-03-24 00:09 - 00000000 ____D () C:\ProgramData\Electronic Arts
2015-04-19 03:30 - 2015-03-11 20:13 - 00000000 ____D () C:\Users\Jasch\AppData\Roaming\TS3Client
2015-04-17 18:21 - 2015-04-09 00:41 - 00000000 ____D () C:\Program Files\Rockstar Games
2015-04-17 18:21 - 2015-04-09 00:41 - 00000000 ____D () C:\Program Files (x86)\Rockstar Games
2015-04-15 22:53 - 2013-08-22 17:20 - 00000000 ____D () C:\Windows\CbsTemp
2015-04-15 06:52 - 2015-03-10 12:13 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2015-04-15 06:52 - 2015-03-10 11:55 - 00000000 ____D () C:\Program Files (x86)\NVIDIA Corporation
2015-04-15 06:51 - 2015-03-10 11:55 - 00000000 ____D () C:\ProgramData\NVIDIA Corporation

==================== Files in the root of some directories =======

2015-03-16 22:17 - 2015-03-16 22:31 - 0001439 _____ () C:\Users\Jasch\AppData\Roaming\SpeedRunnersLog.txt
2015-03-10 12:08 - 2015-03-10 12:08 - 0000000 ____H () C:\ProgramData\DP45977C.lfl

Some content of TEMP:
====================
C:\Users\Jasch\AppData\Local\Temp\Quarantine.exe
C:\Users\Jasch\AppData\Local\Temp\sqlite3.dll


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-05-12 03:05

==================== End Of Log ============================
         
--- --- ---

--- --- ---


Addition.txt:
Code:
ATTFilter
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 09-05-2015
Ran by Jasch at 2015-05-13 01:29:02
Running from C:\Users\Jasch\Downloads
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-2577149796-2635466800-2005262636-500 - Administrator - Disabled)
Gast (S-1-5-21-2577149796-2635466800-2005262636-501 - Limited - Disabled)
Jasch (S-1-5-21-2577149796-2635466800-2005262636-1002 - Administrator - Enabled) => C:\Users\Jasch

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKU\S-1-5-21-2577149796-2635466800-2005262636-1002\...\uTorrent) (Version: 3.4.2.38913 - BitTorrent Inc.)
140 (HKLM-x32\...\Steam App 242820) (Version:  - Carlsen Games)
3DMark Demo (HKLM-x32\...\Steam App 231350) (Version:  - Futuremark)
Arma 2 (HKLM-x32\...\Steam App 33910) (Version:  - Bohemia Interactive)
Arma 2: DayZ Mod (HKLM-x32\...\Steam App 224580) (Version:  - Bohemia Interactive)
Arma 3 (HKLM-x32\...\Steam App 107410) (Version:  - Bohemia Interactive)
Asmedia ASM104x USB 3.0 Host Controller Driver (HKLM-x32\...\{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}) (Version: 1.16.15.0 - Asmedia Technology)
Assassin's Creed Rogue (HKLM-x32\...\Uplay Install 895) (Version:  - Ubisoft)
Avast Free Antivirus (HKLM-x32\...\Avast) (Version: 10.2.2218 - AVAST Software)
Battle.net (HKLM-x32\...\Battle.net) (Version:  - Blizzard Entertainment)
Bejeweled® 3 (HKLM-x32\...\{E99C27B2-EB2E-4244-9F5C-A96F55100F0C}) (Version: 1.1.13.4753 - Electronic Arts, Inc.)
Cheat Engine 6.4 (HKLM-x32\...\Cheat Engine 6.4_is1) (Version:  - Cheat Engine)
Counter-Strike (HKLM-x32\...\Steam App 10) (Version:  - Valve)
Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version:  - Valve)
DAEMON Tools Ultra (HKLM-x32\...\DAEMON Tools Ultra) (Version: 3.0.0.0310 - Disc Soft Ltd)
DayZ (HKLM-x32\...\Steam App 221100) (Version:  - Bohemia Interactive)
Dead Space 2 (HKLM-x32\...\Steam App 47780) (Version:  - Visceral Games)
Deus Ex: Human Revolution - Director's Cut (HKLM-x32\...\Steam App 238010) (Version:  - Eidos Montreal)
Divinity - Original Sin (HKLM-x32\...\Divinity - Original Sin_is1) (Version:  - )
DmC Devil May Cry (HKLM-x32\...\Steam App 220440) (Version:  - Ninja Theory)
Dota 2 (HKLM-x32\...\Steam App 570) (Version:  - Valve)
Dragon Age Inquisition Digital Deluxe Edition MULTi2 1.0 (HKLM-x32\...\Dragon Age Inquisition Digital Deluxe Edition MULTi2 1.0) (Version:  - )
Dragon Age: Origins (HKLM-x32\...\Steam App 17450) (Version:  - BioWare)
Dropbox (HKU\S-1-5-21-2577149796-2635466800-2005262636-1002\...\Dropbox) (Version: 3.2.9 - Dropbox, Inc.)
Far Cry 4 Update v1.8 (HKLM-x32\...\RmFyQ3J5NA==_is1) (Version: 1 - )
Fraps (HKLM-x32\...\Fraps) (Version:  - )
Futuremark SystemInfo (HKLM-x32\...\{0DD83DE7-507E-44AE-BC2D-2FAAFA48CCA5}) (Version: 4.37.548.0 - Futuremark)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 42.0.2311.135 - Google Inc.)
Google Update Helper (x32 Version: 1.3.26.9 - Google Inc.) Hidden
Grand Theft Auto V (HKLM-x32\...\Steam App 271590) (Version:  - Rockstar North)
Guild Wars 2 (HKLM-x32\...\Guild Wars 2) (Version:  - NCsoft Corporation, Ltd.)
H1Z1 (HKLM-x32\...\Steam App 295110) (Version:  - Sony Online Entertainment)
H1Z1 Test Server (HKLM-x32\...\Steam App 362300) (Version:  - )
Half-Life 2 (HKLM-x32\...\Steam App 220) (Version:  - Valve)
HAWKEN (HKLM-x32\...\Steam App 271290) (Version:  - Reloaded Games)
Hearthstone (HKLM-x32\...\Hearthstone) (Version:  - Blizzard Entertainment)
InputMapper (HKLM-x32\...\{D4A693C5-9E3E-41B9-9039-6FDA58AA5D2F}) (Version: 1.5.30.0 - DSDCS)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 10.0.25.1048 - Intel Corporation)
Intel(R) Network Connections 19.1.51.0 (HKLM\...\PROSetDX) (Version: 19.1.51.0 - Intel)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 13.1.0.1058 - Intel Corporation)
Intel(R) Update Manager (HKLM-x32\...\{84A2B59B-6A7B-4C01-8592-15C9BFE6AC36}) (Version: 2.4.3 - Intel Corporation)
Intel® Chipsatz-Gerätesoftware (x32 Version: 10.0.20 - Intel(R) Corporation) Hidden
JDownloader 2 (HKLM\...\jdownloader2) (Version: 2.0 - AppWork GmbH)
Logitech Gaming Software 8.58 (HKLM\...\Logitech Gaming Software) (Version: 8.58.177 - Logitech Inc.)
Lume (HKLM-x32\...\Steam App 105100) (Version:  - State of Play Games)
Mass Effect 2 (HKLM-x32\...\Steam App 24980) (Version:  - BioWare)
Mass Effect 3 (HKLM-x32\...\Mass Effect 3_is1) (Version: Mass Effect 3 - )
Metro Redux (HKLM-x32\...\Metro Redux_is1) (Version: Metro Redux - )
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{b341426f-8543-4e0d-96c3-e976f8ec5ab6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{4fd02573-5f12-4ae4-8027-c63f8e1115af}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
Microsoft-Maus- und Tastatur-Center (HKLM\...\Microsoft Mouse and Keyboard Center) (Version: 2.3.188.0 - Microsoft Corporation)
MirrorMoon EP (HKLM-x32\...\Steam App 231310) (Version:  - Santa Ragione)
Nidhogg (HKLM-x32\...\Steam App 94400) (Version:  - Messhof)
Nosgoth (HKLM-x32\...\Steam App 200110) (Version:  - Psyonix)
NVIDIA 3D Vision Controller-Treiber 349.95 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 349.95 - NVIDIA Corporation)
NVIDIA 3D Vision Treiber 350.12 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 350.12 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.4.1.21 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.4.1.21 - NVIDIA Corporation)
NVIDIA Grafiktreiber 350.12 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 350.12 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.33.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.33.0 - NVIDIA Corporation)
NVIDIA Miracast Virtueller Ton 350.12 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Miracast.VirtualAudio) (Version: 350.12 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.15.0324 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0324 - NVIDIA Corporation)
Ori and the Blind Forest (HKLM-x32\...\Ori and the Blind Forest_is1) (Version:  - )
Origin (HKLM-x32\...\Origin) (Version: 9.5.12.2862 - Electronic Arts, Inc.)
Outlast (HKLM-x32\...\Steam App 238320) (Version:  - Red Barrels)
Papers, Please (HKLM-x32\...\Steam App 239030) (Version:  - 3909)
PAYDAY 2 (HKLM-x32\...\Steam App 218620) (Version:  - OVERKILL - a Starbreeze Studio.)
Pillars of Eternity (HKLM-x32\...\1207666813_is1) (Version: 2.0.0.1 - GOG.com)
Pixel Piracy (HKLM-x32\...\Steam App 264140) (Version:  - Vitali Kirpu)
Portal (HKLM-x32\...\Steam App 400) (Version:  - Valve)
Portal 2 (HKLM-x32\...\Steam App 620) (Version:  - Valve)
Qualcomm Atheros Inc.(R) AR81Family Gigabit/Fast Ethernet Driver (HKLM-x32\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 2.1.0.21 - Qualcomm Atheros Inc.)
RaidCall (HKLM-x32\...\RaidCall) (Version: 7.3.6-1.0.13004.105 - raidcall.com)
Rainmeter (HKLM-x32\...\Rainmeter) (Version: 3.3 beta r2412 - )
Razer Synapse (HKLM-x32\...\{0D78BEE2-F8FF-4498-AF1A-3FF81CED8AC6}) (Version: 1.18.19.25502 - Razer Inc.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7195 - Realtek Semiconductor Corp.)
Revo Uninstaller 1.95 (HKLM-x32\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.1.5.8 - Rockstar Games)
Samsung Kies (HKLM-x32\...\InstallShield_{758C8301-2696-4855-AF45-534B1200980A}) (Version: 2.6.3.15013.18 - Samsung Electronics Co., Ltd.)
Samsung Kies (x32 Version: 2.6.3.15013.18 - Samsung Electronics Co., Ltd.) Hidden
SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.49.0 - SAMSUNG Electronics Co., Ltd.)
SHIELD Streaming (Version: 4.1.1000 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 2.4.1.21 - NVIDIA Corporation) Hidden
Shovel Knight (HKLM-x32\...\Steam App 250760) (Version:  - Yacht Club Games)
Sid Meiers Civilization Beyond Earth (HKLM-x32\...\U2lkTWVpZXJzQ2l2aWxpemF0aW9uQmV5b25kRWFydGg=_is1) (Version: 1 - )
Sleeping Dogs™ (HKLM-x32\...\Steam App 202170) (Version:  - United Front Games)
South Park Der Stab der Wahrheit Version 1.4 (HKLM-x32\...\South Park Der Stab der Wahrheit_is1) (Version: 1.4 - RFT)
SpeedRunners (HKLM-x32\...\Steam App 207140) (Version:  - DoubleDutch Games)
Spotify (HKU\S-1-5-21-2577149796-2635466800-2005262636-1002\...\Spotify) (Version: 1.0.4.90.g0b6df40b - Spotify AB)
StartIsBack+ (HKLM-x32\...\StartIsBack) (Version: 1.7.5 - startisback.com)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Super Crate Box (HKLM-x32\...\Steam App 212800) (Version:  - Vlambeer)
Survarium (HKLM-x32\...\Steam App 355840) (Version:  - Vostok Games)
Survarium-Steam (HKLM-x32\...\{A3D9343D-77CD-4bf4-A47A-F87B3BE985B4}_is1) (Version: 0.27d - )
Syndicate (HKLM-x32\...\{64CFBAAB-46F7-4628-8D9B-E656A8C11CDB}) (Version: 2.0.0.3 - Electronic Arts)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
TERA (HKLM-x32\...\Steam App 323370) (Version:  - En Masse Entertainment)
The Banner Saga (HKLM-x32\...\Steam App 237990) (Version:  - Stoic)
The Elder Scrolls V Skyrim - Legendary Edition (HKLM-x32\...\The Elder Scrolls V Skyrim - Legendary Edition_is1) (Version:  - )
The Stanley Parable (HKLM-x32\...\Steam App 221910) (Version:  - Galactic Cafe)
The Vanishing of Ethan Carter (HKLM-x32\...\The Vanishing of Ethan Carter_is1) (Version:  - )
The Walking Dead (HKLM-x32\...\Steam App 207610) (Version:  - )
The Walking Dead: Season Two (HKLM-x32\...\Steam App 261030) (Version:  - Telltale Games)
The Witcher 2: Assassins of Kings Enhanced Edition (HKLM-x32\...\Steam App 20920) (Version:  - CD PROJEKT RED)
The Witcher 3: Wild Hunt (HKLM-x32\...\Steam App 292030) (Version:  - CD PROJEKT RED)
The Witcher: Enhanced Edition (HKLM-x32\...\Steam App 20900) (Version:  - CD PROJEKT RED)
The Wolf Among Us (HKLM-x32\...\Steam App 250320) (Version:  - Telltale Games)
Thief (HKLM-x32\...\Steam App 239160) (Version:  - Eidos-Montréal)
Tomb Raider (HKLM-x32\...\Steam App 203160) (Version:  - Crystal Dynamics)
Torchlight II (HKLM-x32\...\Steam App 200710) (Version:  - Runic Games)
Unepic (HKLM-x32\...\Steam App 233980) (Version:  - Francisco Téllez de Meneses)
Uplay (HKLM-x32\...\Uplay) (Version: 4.9 - Ubisoft)
VLC media player (HKLM\...\VLC media player) (Version: 2.2.1 - VideoLAN)
WAKFU (HKLM-x32\...\Steam App 215080) (Version:  - Ankama Studio)
WildStar (HKLM-x32\...\WildStar) (Version:  - NCSOFT)
WinRAR 5.21 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH)
World of Warcraft (HKLM-x32\...\World of Warcraft) (Version:  - Blizzard Entertainment)
World of Warcraft Classic (HKLM-x32\...\{D55ED80F-FAFD-40E1-99FC-89AF8614A9B5}_is1) (Version: 1.12.1.5875 - Blizzard Entertainment)
World of Warships (HKLM-x32\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C814EU}_is1) (Version:  - Wargaming.net)
World of Warships (HKU\S-1-5-21-2577149796-2635466800-2005262636-1002\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C814eu}_is1) (Version:  - Wargaming.net)
Ys I (HKLM-x32\...\Steam App 223810) (Version:  - Nihon Falcom)
Ys II (HKLM-x32\...\Steam App 223870) (Version:  - Nihon Falcom)
Ys Origin (HKLM-x32\...\Steam App 207350) (Version:  - Nihon Falcom)

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

CustomCLSID: HKU\S-1-5-21-2577149796-2635466800-2005262636-1002_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\Jasch\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2577149796-2635466800-2005262636-1002_Classes\CLSID\{ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C}\InprocServer32 -> C:\Users\Jasch\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2577149796-2635466800-2005262636-1002_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Jasch\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2577149796-2635466800-2005262636-1002_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Jasch\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2577149796-2635466800-2005262636-1002_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Jasch\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2577149796-2635466800-2005262636-1002_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Jasch\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2577149796-2635466800-2005262636-1002_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Jasch\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2577149796-2635466800-2005262636-1002_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Jasch\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2577149796-2635466800-2005262636-1002_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Jasch\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2577149796-2635466800-2005262636-1002_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Jasch\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)

==================== Restore Points  =========================

21-04-2015 06:20:16 DirectX wurde installiert
29-04-2015 05:48:12 Geplanter Prüfpunkt
08-05-2015 05:44:43 Geplanter Prüfpunkt
12-05-2015 20:41:00 avast! antivirus system restore point

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2013-08-22 15:25 - 2013-08-22 15:25 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {287C9390-106D-4528-9FFA-9EAD4D749E78} - System32\Tasks\Microsoft\Windows\Setup\gwx\runappraiser => C:\Windows\system32\GWX\GWXConfigManager.exe [2015-03-24] (Microsoft Corporation)
Task: {29A1CFC8-5FFE-4670-BDC2-954FF0BB27B5} - \WPD\SqmUpload_S-1-5-21-2577149796-2635466800-2005262636-1001 No Task File <==== ATTENTION
Task: {307C6A97-1FCF-42B1-AC2C-EC9E74294DA3} - System32\Tasks\Microsoft\Windows\Setup\gwx\launchtrayprocess => C:\Windows\system32\GWX\GWX.exe [2015-03-24] (Microsoft Corporation)
Task: {3A55AB04-D66A-4187-B864-C8078B676E5C} - System32\Tasks\Microsoft_Hardware_Launch_mousekeyboardcenter_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\mousekeyboardcenter.exe [2014-03-19] (Microsoft)
Task: {3B99FEA7-8203-4251-B32B-6D41EF545041} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [2014-04-09] ()
Task: {3ED46A50-188C-41BA-B28B-0BA3C6BF3293} - System32\Tasks\FRAPS => C:\Fraps\fraps.exe [2013-02-26] (Beepa P/L)
Task: {496B33F5-E4D6-4C59-97A2-71FA7ABE9427} - \Optimize Start Menu Cache Files-S-1-5-21-2577149796-2635466800-2005262636-1001 No Task File <==== ATTENTION
Task: {66028CC7-38C9-42DC-9086-15CB8AC0DAB0} - System32\Tasks\Microsoft_Hardware_Launch_itype_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [2014-03-19] (Microsoft Corporation)
Task: {8ADAE917-BA3C-4A33-91FD-7264097150DB} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-03-11] (Google Inc.)
Task: {CD2B26FD-EB65-4866-AA78-6E8B3CB56BCF} - System32\Tasks\Microsoft_Hardware_Launch_ipoint_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2014-03-19] (Microsoft Corporation)
Task: {CE8A2142-D17F-459C-AC86-F7CE4EC261F1} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxconfig => C:\Windows\system32\GWX\GWXConfigManager.exe [2015-03-24] (Microsoft Corporation)
Task: {D09D1182-4702-4018-B6F5-2BF3FE18C09A} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2015-05-12] (Avast Software s.r.o.)
Task: {D1A23371-9AE1-48B8-A639-ED6FA033AF1D} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxcontent => C:\Windows\system32\GWX\GWXConfigManager.exe [2015-03-24] (Microsoft Corporation)
Task: {E33AFA8C-172B-4354-AEFF-2D1C5FDDBEE1} - System32\Tasks\Microsoft_MKC_Logon_Task_ipoint.exe => C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2014-03-19] (Microsoft Corporation)
Task: {EC022927-6213-4CC3-929D-E380ED50A59F} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-03-11] (Google Inc.)
Task: {F5BE761E-959A-4A40-9947-E1497DE43282} - System32\Tasks\Microsoft_MKC_Logon_Task_itype.exe => C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [2014-03-19] (Microsoft Corporation)
Task: {FCB2EBE5-8D17-42B1-BBCA-F04EDF71C48E} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473-Logon => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [2014-04-09] ()
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) ==============

2015-03-10 11:55 - 2015-04-08 23:30 - 00116552 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2015-02-05 02:24 - 2015-02-05 02:25 - 00187072 _____ () C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
2015-04-10 03:35 - 2015-05-12 23:38 - 00478992 _____ () C:\Program Files (x86)\Common Files\0780f478-67ce-4ec3-98db-39a65f4618ce\Updater.exe
2014-09-18 09:23 - 2014-09-18 09:23 - 00866584 _____ () C:\Program Files\Logitech Gaming Software\libGLESv2.dll
2015-02-26 20:39 - 2015-02-26 20:39 - 01050904 _____ () C:\Program Files\Logitech Gaming Software\platforms\qwindows.dll
2014-09-18 09:23 - 2014-09-18 09:23 - 00059160 _____ () C:\Program Files\Logitech Gaming Software\libEGL.dll
2015-02-26 20:39 - 2015-02-26 20:39 - 00242456 _____ () C:\Program Files\Logitech Gaming Software\imageformats\qjpeg.dll
2015-03-14 07:49 - 2015-03-14 07:49 - 00291840 _____ () C:\ProgramData\Razer\Synapse\RzStats\RzStats.Manager.exe
2015-05-12 20:41 - 2015-05-12 20:41 - 00104400 _____ () C:\Program Files\AVAST Software\Avast\log.dll
2015-05-12 20:41 - 2015-05-12 20:41 - 00081728 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2015-05-12 20:31 - 2015-05-12 20:31 - 02927616 _____ () C:\Program Files\AVAST Software\Avast\defs\15051201\algo.dll
2015-05-13 01:26 - 2015-05-13 01:26 - 02927616 _____ () C:\Program Files\AVAST Software\Avast\defs\15051202\algo.dll
2015-03-31 16:00 - 2015-03-28 05:45 - 00011920 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2015-04-30 22:21 - 2015-04-28 04:07 - 01252680 _____ () C:\Program Files (x86)\Google\Chrome\Application\42.0.2311.135\libglesv2.dll
2015-04-30 22:21 - 2015-04-28 04:07 - 00080712 _____ () C:\Program Files (x86)\Google\Chrome\Application\42.0.2311.135\libegl.dll
2015-03-12 01:22 - 2015-05-01 13:28 - 40518200 _____ () C:\Users\Jasch\AppData\Roaming\Spotify\libcef.dll
2015-03-12 01:22 - 2015-05-01 13:28 - 01365560 _____ () C:\Users\Jasch\AppData\Roaming\Spotify\libglesv2.dll
2015-03-12 01:22 - 2015-05-01 13:28 - 00219192 _____ () C:\Users\Jasch\AppData\Roaming\Spotify\libegl.dll
2015-03-12 01:22 - 2015-03-23 23:23 - 09305656 _____ () C:\Users\Jasch\AppData\Roaming\Spotify\pdf.dll
2015-03-12 01:22 - 2015-05-01 13:28 - 00990776 _____ () C:\Users\Jasch\AppData\Roaming\Spotify\ffmpegsumo.dll
2015-03-11 15:22 - 2015-03-11 15:22 - 40540672 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2015-02-02 09:52 - 2015-02-02 09:52 - 00137728 _____ () C:\ProgramData\Razer\Synapse\CrashReporter\CrashRpt1402.dll
2015-03-14 22:55 - 2014-11-26 04:12 - 40622592 _____ () C:\Users\Jasch\AppData\Local\razer\InGameEngine\cache\RzStats.Manager\cef\libcef.dll
2015-03-14 22:55 - 2014-11-26 04:12 - 00911360 _____ () C:\Users\Jasch\AppData\Local\razer\InGameEngine\cache\RzStats.Manager\cef\libglesv2.dll
2015-03-14 22:55 - 2014-11-26 04:12 - 00134144 _____ () C:\Users\Jasch\AppData\Local\razer\InGameEngine\cache\RzStats.Manager\cef\libegl.dll
2015-04-30 22:21 - 2015-04-28 04:07 - 14980424 _____ () C:\Program Files (x86)\Google\Chrome\Application\42.0.2311.135\PepperFlash\pepflashplayer.dll
2014-06-24 17:08 - 2014-06-24 17:08 - 01241560 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)


==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== EXE Association (whitelisted) ===============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, the associated entry will be removed from the registry.)

IE trusted site: HKU\S-1-5-21-2577149796-2635466800-2005262636-1002\...\clonewarsadventures.com -> clonewarsadventures.com
IE trusted site: HKU\S-1-5-21-2577149796-2635466800-2005262636-1002\...\freerealms.com -> freerealms.com
IE trusted site: HKU\S-1-5-21-2577149796-2635466800-2005262636-1002\...\soe.com -> soe.com
IE trusted site: HKU\S-1-5-21-2577149796-2635466800-2005262636-1002\...\sony.com -> sony.com


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-2577149796-2635466800-2005262636-1002\Control Panel\Desktop\\Wallpaper -> C:\Users\Jasch\Downloads\546342.jpg
DNS Servers: 192.168.178.1

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

HKLM\...\StartupApproved\Run32: => "AvastUI.exe"

==================== FirewallRules (whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{A428E2F5-00A4-445C-B0A9-6C1597084A7A}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{0EA249FB-7E19-4EC4-BCBC-38B1F7632813}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{68A434AC-400A-4C23-8073-AEAC2B29C838}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{A1EE3227-D5EE-4A89-9452-5718413D2966}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{6B629227-5BA4-4B47-88FC-31822E0A6AEB}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{94884C65-DC1D-42AB-A771-451AB7000768}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{5EA49406-2BAA-46C2-851C-8E26742C5DD4}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{5508CBFF-C166-4BD6-ADFA-76D34D21113E}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{2D84D1F2-28EB-4F03-B953-5D453403085B}] => (Allow) C:\Users\Jasch\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [{47EBE97C-6BB8-4BB9-90D0-48447E90E26E}] => (Allow) C:\Users\Jasch\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [{8B1B04C4-330A-44E3-AC94-4085985111FF}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{ED4DE2A2-3ECD-4DB0-A9C5-F19C2B596C25}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{3C2D921F-723B-479B-B66B-C622D991D784}] => (Allow) D:\Battle.net\Battle.net.exe
FirewallRules: [{E89F2FAC-C38D-47DD-BDA2-1DB4B643A2F1}] => (Allow) D:\Battle.net\Battle.net.exe
FirewallRules: [{D712384A-DEC8-4625-983C-1A58DA677607}] => (Allow) C:\Program Files (x86)\Hearthstone\Hearthstone.exe
FirewallRules: [{658C40DD-AEB4-470A-94A1-3E40D0D6228A}] => (Allow) C:\Program Files (x86)\Hearthstone\Hearthstone.exe
FirewallRules: [{069B03CC-6D7D-4C9D-A32C-3248BA998D68}] => (Allow) D:\SteamLibrary\steamapps\common\Half-Life\hl.exe
FirewallRules: [{68E0DD00-6B92-424A-B17E-E75F59820AD2}] => (Allow) D:\SteamLibrary\steamapps\common\Half-Life\hl.exe
FirewallRules: [{763F5B12-1934-409E-941F-04B6B285FDAD}] => (Allow) D:\SteamLibrary\steamapps\common\Thief\Binaries\Win64\Shipping-ThiefGame.exe
FirewallRules: [{BA02BE4D-60C0-462C-858E-C4591FE8DC88}] => (Allow) D:\SteamLibrary\steamapps\common\Thief\Binaries\Win64\Shipping-ThiefGame.exe
FirewallRules: [{8C02FA5C-CA98-4CA1-A74B-DD79AAAEB4B0}] => (Allow) D:\SteamLibrary\steamapps\common\SpeedRunners\SpeedRunners.exe
FirewallRules: [{8934E16B-5CD6-40D6-99D6-4D18A5BB67B9}] => (Allow) D:\SteamLibrary\steamapps\common\SpeedRunners\SpeedRunners.exe
FirewallRules: [{6C0B6200-A849-4D4D-AA2A-F7DCF5523C1F}] => (Allow) D:\SteamLibrary\steamapps\common\H1Z1\LaunchPad.exe
FirewallRules: [{FE55933A-AFA3-4D6F-887B-3C2DBF8098F7}] => (Allow) D:\SteamLibrary\steamapps\common\H1Z1\LaunchPad.exe
FirewallRules: [TCP Query User{9D3AB7FA-A9BB-431A-9D39-90945C53A3BB}D:\steamlibrary\steamapps\common\dayz\dayz.exe] => (Allow) D:\steamlibrary\steamapps\common\dayz\dayz.exe
FirewallRules: [UDP Query User{1D591FE2-E08C-4ACB-AC12-C9D19D59A59D}D:\steamlibrary\steamapps\common\dayz\dayz.exe] => (Allow) D:\steamlibrary\steamapps\common\dayz\dayz.exe
FirewallRules: [{6F27BBA0-D353-4E3C-96BE-1E832C8AA7B6}] => (Allow) C:\Program Files\Logitech Gaming Software\LCore.exe
FirewallRules: [{9C1D100F-7C67-44B6-B259-A59818863129}] => (Allow) C:\Program Files\Logitech Gaming Software\LCore.exe
FirewallRules: [{362D1942-E6E7-4C63-9294-85250AA176BF}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{E09D24F8-0540-47C6-A421-476114B61F2C}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{D1E3992A-F2FE-4D57-AABD-D07A882B061D}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{2A452897-0EB1-4418-B10A-58DB2F20CECD}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [TCP Query User{0169CBA1-9759-4D8C-8D70-56BBE37BDC2D}D:\steamlibrary\steamapps\common\h1z1\h1z1.exe] => (Allow) D:\steamlibrary\steamapps\common\h1z1\h1z1.exe
FirewallRules: [UDP Query User{82242893-AED1-436F-BBF1-C326EC6F2C49}D:\steamlibrary\steamapps\common\h1z1\h1z1.exe] => (Allow) D:\steamlibrary\steamapps\common\h1z1\h1z1.exe
FirewallRules: [{C9A86A78-06C6-4631-A39C-B68FAD275CB1}] => (Allow) D:\SteamLibrary\steamapps\common\SleepingDogs\HKShip.exe
FirewallRules: [{7F0CF4F5-BBDE-4DA7-83CB-2340A5D3091B}] => (Allow) D:\SteamLibrary\steamapps\common\SleepingDogs\HKShip.exe
FirewallRules: [TCP Query User{55D33573-04FD-4DA7-8D90-3460FBCC08BB}C:\users\jasch\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\jasch\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{766CED77-ABBD-46B4-930B-573986B6A924}C:\users\jasch\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\jasch\appdata\roaming\spotify\spotify.exe
FirewallRules: [TCP Query User{BB93D967-713B-4A2C-8654-BC7E69797EB5}D:\far cry 4\bin\farcry4.exe] => (Allow) D:\far cry 4\bin\farcry4.exe
FirewallRules: [UDP Query User{52B3495E-1B76-48C3-86EB-FE47C793EB63}D:\far cry 4\bin\farcry4.exe] => (Allow) D:\far cry 4\bin\farcry4.exe
FirewallRules: [{E32A984A-71FD-4B0C-8270-E65CEF355BC1}] => (Allow) D:\Battle.net\Hearthstone\Hearthstone.exe
FirewallRules: [{C96D4D51-C39F-41A8-B24E-76E0DED11F2C}] => (Allow) D:\Battle.net\Hearthstone\Hearthstone.exe
FirewallRules: [TCP Query User{CE6772B7-F388-4AE7-824A-52E5919273AC}C:\users\jasch\appdata\local\jdownloader v2.0\jdownloader2.exe] => (Block) C:\users\jasch\appdata\local\jdownloader v2.0\jdownloader2.exe
FirewallRules: [UDP Query User{252CEB18-96F5-47E8-ACA1-0AD8B27DFAC7}C:\users\jasch\appdata\local\jdownloader v2.0\jdownloader2.exe] => (Block) C:\users\jasch\appdata\local\jdownloader v2.0\jdownloader2.exe
FirewallRules: [{6143BEFB-8323-429B-9F80-E19DC50A02B5}] => (Allow) D:\Games\AC Rogue\ACC.exe
FirewallRules: [{953ED705-06F3-4418-A482-A164BDFD5F75}] => (Allow) D:\Games\AC Rogue\ACC.exe
FirewallRules: [TCP Query User{F10E4BDB-35EA-40A5-85E6-2CA14B50FF4E}D:\games\far cry 4\bin\farcry4.exe] => (Allow) D:\games\far cry 4\bin\farcry4.exe
FirewallRules: [UDP Query User{9C41E1F1-C609-43AE-854D-4ED3358C55AA}D:\games\far cry 4\bin\farcry4.exe] => (Allow) D:\games\far cry 4\bin\farcry4.exe
FirewallRules: [{6632B3E2-B215-4377-B409-7D44B07AE548}] => (Allow) D:\SteamLibrary\steamapps\common\Deus Ex Human Revolution Director's Cut\DXHRDC.exe
FirewallRules: [{2CBF6991-A77B-4C62-BE3E-71825054407C}] => (Allow) D:\SteamLibrary\steamapps\common\Deus Ex Human Revolution Director's Cut\DXHRDC.exe
FirewallRules: [{2353AD09-23DC-4AAA-AD25-9E386491F029}] => (Allow) D:\SteamLibrary\steamapps\common\Tomb Raider\TombRaider.exe
FirewallRules: [{B192EC39-BD34-4BA7-8CB5-C08B5E3010B2}] => (Allow) D:\SteamLibrary\steamapps\common\Tomb Raider\TombRaider.exe
FirewallRules: [{3C3D5BC9-E1B1-4D04-B93D-C52C6D00BDEC}] => (Allow) D:\SteamLibrary\steamapps\common\dota 2 beta\dota.exe
FirewallRules: [{C2CEA69F-E7EB-4911-B739-BBCCA42149EF}] => (Allow) D:\SteamLibrary\steamapps\common\dota 2 beta\dota.exe
FirewallRules: [{55763A88-AF87-479A-860C-8F1BE43DC649}] => (Allow) D:\SteamLibrary\steamapps\common\Half-Life 2\hl2.exe
FirewallRules: [{9FF058D3-57FC-4E7B-85D0-4D0F11F3E689}] => (Allow) D:\SteamLibrary\steamapps\common\Half-Life 2\hl2.exe
FirewallRules: [{DE605936-B699-45D5-B08B-70D2B80D2490}] => (Allow) D:\SteamLibrary\steamapps\common\Arma 3\arma3.exe
FirewallRules: [{32CC28ED-71A5-4583-ACED-12F144C61F4A}] => (Allow) D:\SteamLibrary\steamapps\common\Arma 3\arma3.exe
FirewallRules: [{B6A68D37-BF36-47C4-88B3-D32BD1552E6D}] => (Allow) D:\SteamLibrary\steamapps\common\Arma 3\arma3launcher.exe
FirewallRules: [{F243CF19-8236-48F2-B134-326AE90684AC}] => (Allow) D:\SteamLibrary\steamapps\common\Arma 3\arma3launcher.exe
FirewallRules: [{83228CA6-C1BC-4C8C-88C2-C00D9F78D308}] => (Allow) C:\Users\Jasch\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{05D1BC32-F479-4F92-87DF-A389DBDB4873}] => (Allow) C:\Users\Jasch\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{5E862747-81AC-4F31-8BF4-3442C216A8DB}] => (Allow) D:\SteamLibrary\steamapps\common\3DMark\3DMarkLauncher.exe
FirewallRules: [{C0E8BFDD-CC8A-4DD0-A20F-35B5C9FCBA67}] => (Allow) D:\SteamLibrary\steamapps\common\3DMark\3DMarkLauncher.exe
FirewallRules: [{8204C9D0-EFB4-4FFD-8C56-C81E11E369EB}] => (Allow) D:\SteamLibrary\steamapps\common\3DMark\bin\x86\3DMark.exe
FirewallRules: [{9514551A-078A-4F47-B759-41CB07C43488}] => (Allow) D:\SteamLibrary\steamapps\common\3DMark\bin\x86\3DMark.exe
FirewallRules: [{95BA32E5-5941-48A4-A00B-225501D8397D}] => (Allow) D:\SteamLibrary\steamapps\common\3DMark\bin\x64\3DMark.exe
FirewallRules: [{BD06B555-20D6-4636-A19D-ABB496AF1966}] => (Allow) D:\SteamLibrary\steamapps\common\3DMark\bin\x64\3DMark.exe
FirewallRules: [{AADF24DD-B943-4C42-A2EA-451E5B2CEE19}] => (Allow) D:\SteamLibrary\steamapps\common\nosgoth\Binaries\Win32\Nosgoth.exe
FirewallRules: [{8303D643-0B3A-4FBC-AEEA-BF069EE2BF8C}] => (Allow) D:\SteamLibrary\steamapps\common\nosgoth\Binaries\Win32\Nosgoth.exe
FirewallRules: [{5B247AC1-4642-4128-A441-1FAAEAFC6057}] => (Allow) D:\SteamLibrary\steamapps\common\Wakfu\transition\transition.exe
FirewallRules: [{6F2BC838-9522-49E5-8030-8FFCBE17691D}] => (Allow) D:\SteamLibrary\steamapps\common\Wakfu\transition\transition.exe
FirewallRules: [TCP Query User{9CA05AF7-A6C4-4690-A748-985F91ABBA1C}D:\steamlibrary\steamapps\common\dayz\dayz.exe] => (Allow) D:\steamlibrary\steamapps\common\dayz\dayz.exe
FirewallRules: [UDP Query User{EE91D4BC-417B-49C2-ABCE-08C0DDEDC3DE}D:\steamlibrary\steamapps\common\dayz\dayz.exe] => (Allow) D:\steamlibrary\steamapps\common\dayz\dayz.exe
FirewallRules: [{25F76477-EB10-477D-92A7-DCBB982FD230}] => (Allow) D:\SteamLibrary\steamapps\common\The Witcher Enhanced Edition\System\witcher.exe
FirewallRules: [{E476A509-7FEB-4FBB-B8CC-4A16375DFA7B}] => (Allow) D:\SteamLibrary\steamapps\common\The Witcher Enhanced Edition\System\witcher.exe
FirewallRules: [{997CEE49-1253-4CA7-B49F-E1EFD27DFEA4}] => (Allow) D:\SteamLibrary\steamapps\common\The Witcher Enhanced Edition\System\djinni!.exe
FirewallRules: [{C41EC134-E153-4EC5-9C68-48B8AF91CEA9}] => (Allow) D:\SteamLibrary\steamapps\common\The Witcher Enhanced Edition\System\djinni!.exe
FirewallRules: [{29D32734-1458-4C12-B7AE-25E3BB131A81}] => (Allow) D:\SteamLibrary\steamapps\common\The Witcher Enhanced Edition\Digital Comic\DigitalComic.exe
FirewallRules: [{6BE1C260-9711-49DE-A4F6-F7E72A729EC0}] => (Allow) D:\SteamLibrary\steamapps\common\The Witcher Enhanced Edition\Digital Comic\DigitalComic.exe
FirewallRules: [TCP Query User{AD04912C-0F0E-4466-81F9-90D616F4FD18}D:\steamlibrary\steamapps\common\h1z1\h1z1.exe] => (Allow) D:\steamlibrary\steamapps\common\h1z1\h1z1.exe
FirewallRules: [UDP Query User{E747ACC3-F42B-4ECC-92C8-69EE693CE1B6}D:\steamlibrary\steamapps\common\h1z1\h1z1.exe] => (Allow) D:\steamlibrary\steamapps\common\h1z1\h1z1.exe
FirewallRules: [TCP Query User{D4FAA045-1387-4CC7-88C7-D13AAD0374ED}C:\users\jasch\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\jasch\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{A05BA291-A46F-44B7-BCA2-0BA0D2CE74B5}C:\users\jasch\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\jasch\appdata\roaming\spotify\spotify.exe
FirewallRules: [TCP Query User{E3178FF2-2FA8-42D1-B716-D78435447464}C:\program files (x86)\metro 2033 redux\metro_benchmark.exe] => (Allow) C:\program files (x86)\metro 2033 redux\metro_benchmark.exe
FirewallRules: [UDP Query User{2FB4AEAB-CED0-4800-82EE-B4E20719EFCF}C:\program files (x86)\metro 2033 redux\metro_benchmark.exe] => (Allow) C:\program files (x86)\metro 2033 redux\metro_benchmark.exe
FirewallRules: [TCP Query User{848E2C76-7691-4461-977D-B3B8C4DB7F3E}C:\program files (x86)\deep silver\metro redux\metro 2033 redux\metro_benchmark.exe] => (Allow) C:\program files (x86)\deep silver\metro redux\metro 2033 redux\metro_benchmark.exe
FirewallRules: [UDP Query User{F9E0FA7F-38D1-42C0-B8C4-4179FF7C9B85}C:\program files (x86)\deep silver\metro redux\metro 2033 redux\metro_benchmark.exe] => (Allow) C:\program files (x86)\deep silver\metro redux\metro 2033 redux\metro_benchmark.exe
FirewallRules: [TCP Query User{B0844BE9-CEEA-4729-BDEB-44A66FAF38E2}D:\games\divinity\shipping\eocapp.exe] => (Allow) D:\games\divinity\shipping\eocapp.exe
FirewallRules: [UDP Query User{3393A539-0B06-44BA-B533-F6E209DE8044}D:\games\divinity\shipping\eocapp.exe] => (Allow) D:\games\divinity\shipping\eocapp.exe
FirewallRules: [TCP Query User{53D8FCDD-C8E5-4404-8CFE-BE16D7E0A777}D:\games\vanishing of ethan carter\binaries\win64\astronautsgame-win64-shipping.exe] => (Allow) D:\games\vanishing of ethan carter\binaries\win64\astronautsgame-win64-shipping.exe
FirewallRules: [UDP Query User{301199F9-17AE-4502-AEDE-1593197B6435}D:\games\vanishing of ethan carter\binaries\win64\astronautsgame-win64-shipping.exe] => (Allow) D:\games\vanishing of ethan carter\binaries\win64\astronautsgame-win64-shipping.exe
FirewallRules: [{980BC4B1-5891-4558-AD68-4B3129188FB7}] => (Allow) D:\SteamLibrary\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{C9AAA964-5DBC-4EFE-9D78-611219206B3A}] => (Allow) D:\SteamLibrary\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [TCP Query User{DC6FE9E6-523D-42F9-9096-D635900D337E}D:\games\world of warships\wowslauncher.exe] => (Allow) D:\games\world of warships\wowslauncher.exe
FirewallRules: [UDP Query User{9411BFC7-0CB4-4564-8989-9A0680827B57}D:\games\world of warships\wowslauncher.exe] => (Allow) D:\games\world of warships\wowslauncher.exe
FirewallRules: [{ECFA988E-E52E-40B8-98F4-333C53376A39}] => (Allow) D:\SteamLibrary\steamapps\common\supercratebox\supercratebox.exe
FirewallRules: [{1DDC726C-B72D-4EC3-8ADE-087798965623}] => (Allow) D:\SteamLibrary\steamapps\common\supercratebox\supercratebox.exe
FirewallRules: [{A1B14460-2A51-4161-A020-359056737705}] => (Allow) D:\SteamLibrary\steamapps\common\DayZ\DayZ_BE.exe
FirewallRules: [{C944C8BE-8E1A-4D5A-8690-827F5F383C82}] => (Allow) D:\SteamLibrary\steamapps\common\DayZ\DayZ_BE.exe
FirewallRules: [TCP Query User{D1134A74-3010-4BD1-BE38-4CAD15E761AB}D:\games\mass effect 3\binaries\win32\masseffect3.exe] => (Block) D:\games\mass effect 3\binaries\win32\masseffect3.exe
FirewallRules: [UDP Query User{5FA0565D-1CCD-4793-94EB-51B24F4CEFCF}D:\games\mass effect 3\binaries\win32\masseffect3.exe] => (Block) D:\games\mass effect 3\binaries\win32\masseffect3.exe
FirewallRules: [{C12587D2-7721-4076-A395-187568C15306}] => (Allow) D:\SteamLibrary\steamapps\common\Hawken\Binaries\Win32\HawkenGame-Win32-Shipping.exe
FirewallRules: [{E8980F81-2A7A-4AC0-9A62-C55FCA60ABE5}] => (Allow) D:\SteamLibrary\steamapps\common\Hawken\Binaries\Win32\HawkenGame-Win32-Shipping.exe
FirewallRules: [{0FDA4E6C-BFF1-46BD-9483-C73E121DB2B3}] => (Allow) D:\SteamLibrary\steamapps\common\Survarium\temp\survarium_launcher.exe
FirewallRules: [{F871B07B-C6D2-469F-ABC4-5C639E8E7F88}] => (Allow) D:\SteamLibrary\steamapps\common\Survarium\temp\survarium_updater.exe
FirewallRules: [{A1394C47-83A3-4CD8-B420-4DF05A1F04BD}] => (Allow) D:\SteamLibrary\steamapps\common\Survarium\temp\survarium_updater.exe
FirewallRules: [{642F275F-B85D-48D8-8DE4-ED81F1865B4B}] => (Allow) D:\SteamLibrary\steamapps\common\Survarium\temp\survarium_updater.exe
FirewallRules: [{4A733EC8-982A-4C4F-A1FC-3146C61384E4}] => (Allow) D:\SteamLibrary\steamapps\common\Survarium\temp\survarium_updater.exe
FirewallRules: [{D16DE861-7778-4C2C-A141-22430A1A253A}] => (Allow) D:\SteamLibrary\steamapps\common\Survarium\game\binaries\x86\survarium.exe
FirewallRules: [{F92E839D-499D-4A81-9C83-F8891E6297C0}] => (Allow) D:\SteamLibrary\steamapps\common\Survarium\game\binaries\x86\survarium.exe
FirewallRules: [TCP Query User{91A54CB3-439E-498A-AA07-EED815789344}D:\steamlibrary\steamapps\common\survarium\game\binaries\x86\survarium.exe] => (Allow) D:\steamlibrary\steamapps\common\survarium\game\binaries\x86\survarium.exe
FirewallRules: [UDP Query User{3B5D93B7-8FC1-4FAD-BECC-729A8C83B2BA}D:\steamlibrary\steamapps\common\survarium\game\binaries\x86\survarium.exe] => (Allow) D:\steamlibrary\steamapps\common\survarium\game\binaries\x86\survarium.exe
FirewallRules: [{C85F98C4-DA89-4818-BDDD-A0DFE1D9CEE9}] => (Allow) D:\SteamLibrary\steamapps\common\Ys I\ys1plus.exe
FirewallRules: [{1BFA5570-DC04-41FE-A82D-0A4EADF4F67E}] => (Allow) D:\SteamLibrary\steamapps\common\Ys I\ys1plus.exe
FirewallRules: [{7E638BA4-9343-423A-B478-56BA6311AC5B}] => (Allow) D:\SteamLibrary\steamapps\common\Ys I\config.exe
FirewallRules: [{A09333E1-A5EB-4FF7-9AAB-88318915FA74}] => (Allow) D:\SteamLibrary\steamapps\common\Ys I\config.exe
FirewallRules: [{4D1A57E6-E81A-4553-B064-63FF68590190}] => (Allow) D:\SteamLibrary\steamapps\common\Ys II\ys2plus.exe
FirewallRules: [{66AED8CA-368A-47C6-933C-B15209378BCF}] => (Allow) D:\SteamLibrary\steamapps\common\Ys II\ys2plus.exe
FirewallRules: [{B0E8C358-2EA2-4DE1-8AC1-F80454229E67}] => (Allow) D:\SteamLibrary\steamapps\common\Ys II\config.exe
FirewallRules: [{A2522D9E-1814-4F34-A2C2-D610629C17F0}] => (Allow) D:\SteamLibrary\steamapps\common\Ys II\config.exe
FirewallRules: [{9CD6B7B0-D78E-4C6A-B61D-24D923BE4285}] => (Allow) D:\SteamLibrary\steamapps\common\Ys Origin\yso_win.exe
FirewallRules: [{3823A811-2F24-41FD-8F8B-66057C79DF4C}] => (Allow) D:\SteamLibrary\steamapps\common\Ys Origin\yso_win.exe
FirewallRules: [{8353B0FF-BDEA-4EF6-80A4-41C18E323791}] => (Allow) D:\SteamLibrary\steamapps\common\Ys Origin\config.exe
FirewallRules: [{38F684B5-533A-45C3-980B-0F281348D9C3}] => (Allow) D:\SteamLibrary\steamapps\common\Ys Origin\config.exe
FirewallRules: [{F82F0772-8097-48CE-B65A-95C0128A0FCA}] => (Allow) D:\SteamLibrary\steamapps\common\Shovel Knight\ShovelKnight.exe
FirewallRules: [{BADF8670-252C-47DE-BCB8-E27F6FC1EB22}] => (Allow) D:\SteamLibrary\steamapps\common\Shovel Knight\ShovelKnight.exe
FirewallRules: [{68E8677E-DDB3-4E64-B01F-4FC756F2447C}] => (Allow) D:\SteamLibrary\steamapps\common\Nidhogg\Nidhogg.exe
FirewallRules: [{20820483-DC57-4FAC-868C-4834978BC5DB}] => (Allow) D:\SteamLibrary\steamapps\common\Nidhogg\Nidhogg.exe
FirewallRules: [{5D17C59D-7A56-493F-8987-ACB31195E38B}] => (Allow) D:\SteamLibrary\steamapps\common\Arma 2\arma2.exe
FirewallRules: [{7616B7F2-2DDD-471C-920D-F1A779E721CD}] => (Allow) D:\SteamLibrary\steamapps\common\Arma 2\arma2.exe
FirewallRules: [{EEAB1CCF-6125-4ED9-B19F-2EE3062EDEF2}] => (Allow) D:\SteamLibrary\steamapps\common\Lume\Lume.exe
FirewallRules: [{0BC212B1-6893-43FA-95B5-7EF21C4EB920}] => (Allow) D:\SteamLibrary\steamapps\common\Lume\Lume.exe
FirewallRules: [{67F1A9CA-C943-4CB1-ACC9-58197880BB65}] => (Allow) D:\SteamLibrary\steamapps\common\PapersPlease\PapersPlease.exe
FirewallRules: [{BCBB6636-F818-46C0-A988-D4A37B202F93}] => (Allow) D:\SteamLibrary\steamapps\common\PapersPlease\PapersPlease.exe
FirewallRules: [{3DE28FBA-08AF-49EF-891F-E10407488BF8}] => (Allow) D:\SteamLibrary\steamapps\common\PAYDAY 2\payday2_win32_release.exe
FirewallRules: [{F5260715-62CB-465B-B7B1-6B1D5846940F}] => (Allow) D:\SteamLibrary\steamapps\common\PAYDAY 2\payday2_win32_release.exe
FirewallRules: [{B0253630-CB06-4C4E-B0CF-0ECFD54A8D08}] => (Allow) D:\SteamLibrary\steamapps\common\Portal\hl2.exe
FirewallRules: [{C4881D7B-E76D-46EA-871F-5B6070899477}] => (Allow) D:\SteamLibrary\steamapps\common\Portal\hl2.exe
FirewallRules: [{A11789F5-0CDC-44C1-AB0D-BD4691492570}] => (Allow) D:\SteamLibrary\steamapps\common\Portal 2\portal2.exe
FirewallRules: [{693965F7-1263-45EE-97E1-734A4E1F081A}] => (Allow) D:\SteamLibrary\steamapps\common\Portal 2\portal2.exe
FirewallRules: [{9E821329-98F3-446F-A404-277CC32D5A27}] => (Allow) D:\SteamLibrary\steamapps\common\The Stanley Parable\stanley.exe
FirewallRules: [{C3B49149-31E5-4209-8935-9D23A07EE148}] => (Allow) D:\SteamLibrary\steamapps\common\The Stanley Parable\stanley.exe
FirewallRules: [{4C36151E-D553-4641-A86D-0DC19C462BD6}] => (Allow) D:\SteamLibrary\steamapps\common\The Wolf Among Us\TheWolfAmongUs.exe
FirewallRules: [{1D2A3F13-7C0D-43A2-B00E-CA65B9AAF0B3}] => (Allow) D:\SteamLibrary\steamapps\common\The Wolf Among Us\TheWolfAmongUs.exe
FirewallRules: [{11CD40F7-E15E-466B-B7B3-1638F958D646}] => (Allow) D:\SteamLibrary\steamapps\common\The Walking Dead\WalkingDead101.exe
FirewallRules: [{AC66C2BA-5693-428C-8ED7-69DEDB69274F}] => (Allow) D:\SteamLibrary\steamapps\common\The Walking Dead\WalkingDead101.exe
FirewallRules: [{B208BC5B-02D4-4DA8-AA3A-94B26D5B9318}] => (Allow) D:\SteamLibrary\steamapps\common\The Walking Dead Season Two\TheWalkingDead2.exe
FirewallRules: [{CB82052A-FED9-4C1F-B27C-07B62ADC75DB}] => (Allow) D:\SteamLibrary\steamapps\common\The Walking Dead Season Two\TheWalkingDead2.exe
FirewallRules: [{70E382B6-117E-4973-9154-C39C95C44C81}] => (Allow) D:\SteamLibrary\steamapps\common\DmC Devil May Cry\Binaries\Win32\DMC-DevilMayCry.exe
FirewallRules: [{1304BFB5-6690-440F-BE02-170F3C1BE5AC}] => (Allow) D:\SteamLibrary\steamapps\common\DmC Devil May Cry\Binaries\Win32\DMC-DevilMayCry.exe
FirewallRules: [{5E3376B4-2D3A-4830-989B-687B1EAA45AC}] => (Allow) D:\SteamLibrary\steamapps\common\140\140.exe
FirewallRules: [{305321CD-6BEF-4A2B-B9CD-00E4F94DE2D3}] => (Allow) D:\SteamLibrary\steamapps\common\140\140.exe
FirewallRules: [{1C0E590C-FD5A-4843-A75C-F2CFA1EB65FA}] => (Allow) D:\SteamLibrary\steamapps\common\MirrorMoonEP\MirrorMoonEP.exe
FirewallRules: [{EC4C78EB-5D58-407C-A0D1-18C9477DE4D7}] => (Allow) D:\SteamLibrary\steamapps\common\MirrorMoonEP\MirrorMoonEP.exe
FirewallRules: [{A87A467D-8C2D-46AD-9E89-E6F1BB4CEB0C}] => (Allow) D:\SteamLibrary\steamapps\common\Pixel Piracy\PixelPiracy.exe
FirewallRules: [{A053420B-6C37-4F33-8556-04F2B421F108}] => (Allow) D:\SteamLibrary\steamapps\common\Pixel Piracy\PixelPiracy.exe
FirewallRules: [{689DF153-F24C-4EB3-9596-10A8D73C00CB}] => (Allow) D:\SteamLibrary\steamapps\common\Grand Theft Auto V\GTAVLauncher.exe
FirewallRules: [{FDD72598-A4C9-4B9E-A2A4-5E96C5A4B196}] => (Allow) D:\SteamLibrary\steamapps\common\Grand Theft Auto V\GTAVLauncher.exe
FirewallRules: [TCP Query User{F221A2A1-CDBC-42AD-A93B-F452ADCACA1A}D:\steamlibrary\steamapps\common\grand theft auto v\gta5.exe] => (Allow) D:\steamlibrary\steamapps\common\grand theft auto v\gta5.exe
FirewallRules: [UDP Query User{14280FDB-FC29-467F-A27B-BA015D44CD55}D:\steamlibrary\steamapps\common\grand theft auto v\gta5.exe] => (Allow) D:\steamlibrary\steamapps\common\grand theft auto v\gta5.exe
FirewallRules: [TCP Query User{2C433EF0-9004-4BDC-BF6E-A4B6485CD8A7}C:\program files (x86)\steam\steamapps\grand theft auto v\gta5.exe] => (Allow) C:\program files (x86)\steam\steamapps\grand theft auto v\gta5.exe
FirewallRules: [UDP Query User{696D218B-52DC-4BBA-9427-1F2F62E53408}C:\program files (x86)\steam\steamapps\grand theft auto v\gta5.exe] => (Allow) C:\program files (x86)\steam\steamapps\grand theft auto v\gta5.exe
FirewallRules: [{4EFBFAEF-C6BB-479C-8963-3DBEB5C9F2F3}] => (Allow) D:\SteamLibrary\steamapps\common\Torchlight II\ModLauncher.exe
FirewallRules: [{216EF548-106A-43EE-AE8F-5C76BF2C921A}] => (Allow) D:\SteamLibrary\steamapps\common\Torchlight II\ModLauncher.exe
FirewallRules: [TCP Query User{7D0F8A5F-2509-47E6-AA10-5C3DE4D50E24}C:\program files (x86)\a3launcher\a3launcher.exe] => (Allow) C:\program files (x86)\a3launcher\a3launcher.exe
FirewallRules: [UDP Query User{669CDB72-5623-417C-B307-A7D974C6F386}C:\program files (x86)\a3launcher\a3launcher.exe] => (Allow) C:\program files (x86)\a3launcher\a3launcher.exe
FirewallRules: [{A1B4F96A-EA19-42F5-9C1F-678A89C51ABF}] => (Allow) D:\SteamLibrary\steamapps\common\Outlast\OutlastLauncher.exe
FirewallRules: [{8F29B4E4-2FF2-46A0-993E-EBD2C8982A2E}] => (Allow) D:\SteamLibrary\steamapps\common\Outlast\OutlastLauncher.exe
FirewallRules: [{8697DC61-444E-46C9-971D-19706E3921D1}] => (Allow) C:\Program Files (x86)\Origin Games\Syndicate (1993)\data\Game\DOSBox\LAUNCHER.exe
FirewallRules: [{687FAAD0-6F46-41F9-9645-6FED545810E0}] => (Allow) C:\Program Files (x86)\Origin Games\Syndicate (1993)\data\Game\DOSBox\LAUNCHER.exe
FirewallRules: [{6C8A36D3-EFAC-4A6C-8CCD-CF6FA5E2C5E5}] => (Allow) D:\Origin\Bejeweled 3\Bejeweled3.exe
FirewallRules: [{882CFE06-FB0B-44C8-A1EE-166165D5D98B}] => (Allow) D:\Origin\Bejeweled 3\Bejeweled3.exe
FirewallRules: [{DBFEE50E-D6B3-4A29-A9CF-026BB4F75D5A}] => (Allow) D:\SteamLibrary\steamapps\common\Dead Space 2\deadspace2.exe
FirewallRules: [{D6F17580-45A6-451D-9DE7-9D46D07DC94C}] => (Allow) D:\SteamLibrary\steamapps\common\Dead Space 2\deadspace2.exe
FirewallRules: [{1D60AAE8-B1BC-45D9-8031-E739578CEAE2}] => (Allow) D:\SteamLibrary\steamapps\common\Mass Effect 2\Binaries\MassEffect2.exe
FirewallRules: [{8F048E3D-16A8-4F14-9952-C5C8E51620D8}] => (Allow) D:\SteamLibrary\steamapps\common\Mass Effect 2\Binaries\MassEffect2.exe
FirewallRules: [{6DBE6F0D-0756-4E94-86D5-1754FE9661BD}] => (Allow) D:\SteamLibrary\steamapps\common\Mass Effect 2\MassEffect2Launcher.exe
FirewallRules: [{0DC8DAA4-62A2-4E62-81D5-CE732AC6B62B}] => (Allow) D:\SteamLibrary\steamapps\common\Mass Effect 2\MassEffect2Launcher.exe
FirewallRules: [{0D9F36B2-4107-48AB-B9D3-12B8ACA71180}] => (Allow) D:\SteamLibrary\steamapps\common\Dragon Age Origins\bin_ship\DAOrigins.exe
FirewallRules: [{6BB0FDD2-407A-4CC7-9A5C-562A7F06B567}] => (Allow) D:\SteamLibrary\steamapps\common\Dragon Age Origins\bin_ship\DAOrigins.exe
FirewallRules: [{5B0ACFAD-B29E-44D9-919C-7F2E6786A606}] => (Allow) D:\SteamLibrary\steamapps\common\Dragon Age Origins\DAOriginsLauncher.exe
FirewallRules: [{9F87D3F0-EB79-46AA-A271-3F89AE24D231}] => (Allow) D:\SteamLibrary\steamapps\common\Dragon Age Origins\DAOriginsLauncher.exe
FirewallRules: [TCP Query User{61B6791A-A36D-46DB-BFE3-F66C7152C279}D:\battle.net\hearthstone\hearthstone.exe] => (Allow) D:\battle.net\hearthstone\hearthstone.exe
FirewallRules: [UDP Query User{9D0AB1A9-EAFB-4757-B540-7E48109199A8}D:\battle.net\hearthstone\hearthstone.exe] => (Allow) D:\battle.net\hearthstone\hearthstone.exe
FirewallRules: [{38A96370-2C4E-4FC8-8F89-DCF77642DB62}] => (Allow) D:\SteamLibrary\steamapps\common\H1Z1 Test\LaunchPad.exe
FirewallRules: [{7CC5BE3B-B145-414D-9652-3153B285787F}] => (Allow) D:\SteamLibrary\steamapps\common\H1Z1 Test\LaunchPad.exe
FirewallRules: [{25A37989-D4BA-474A-B767-4CA979F285EF}] => (Allow) D:\SteamLibrary\steamapps\common\nosgoth\Binaries\Win32\Nosgoth.exe
FirewallRules: [{BD414A13-1908-402F-824F-066128B309D4}] => (Allow) D:\SteamLibrary\steamapps\common\nosgoth\Binaries\Win32\Nosgoth.exe
FirewallRules: [{D87C0926-8ED3-4496-86A3-B94FCC36DD0F}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{B4079F74-1138-40FE-99DF-D24A52B559D6}] => (Allow) D:\SteamLibrary\steamapps\common\the witcher 2\Launcher.exe
FirewallRules: [{FE9F2F8A-02A7-4B5D-9872-17BFC929261B}] => (Allow) D:\SteamLibrary\steamapps\common\the witcher 2\Launcher.exe
FirewallRules: [{D8426BCF-E352-4DA1-8844-0791E8D7BB80}] => (Allow) D:\SteamLibrary\steamapps\common\Unepic\unepic.exe
FirewallRules: [{077AAD8F-6FEA-404E-AFA6-44BB350694DA}] => (Allow) D:\SteamLibrary\steamapps\common\Unepic\unepic.exe
FirewallRules: [TCP Query User{5A5E366F-BCF4-48AA-8802-B5A6F1EDF440}C:\program files (x86)\steam\steamapps\arma 3\arma3.exe] => (Allow) C:\program files (x86)\steam\steamapps\arma 3\arma3.exe
FirewallRules: [UDP Query User{D952C09B-D2AC-470F-BED9-5094454F606E}C:\program files (x86)\steam\steamapps\arma 3\arma3.exe] => (Allow) C:\program files (x86)\steam\steamapps\arma 3\arma3.exe
FirewallRules: [{69C2C989-8EA9-4EFD-924B-DEE9D9947005}] => (Allow) D:\SteamLibrary\steamapps\common\TERA\TERA-Launcher.exe
FirewallRules: [{EC711128-6A87-4D5B-BD2D-C0AB25A8CED5}] => (Allow) D:\SteamLibrary\steamapps\common\TERA\TERA-Launcher.exe
FirewallRules: [{C94EA61A-CB28-4140-A3F3-39E69ED723A9}] => (Allow) D:\SteamLibrary\steamapps\common\3DMark\bin\x86\3DMark.exe
FirewallRules: [{54FE237E-1970-484B-9E81-3B7569448828}] => (Allow) D:\SteamLibrary\steamapps\common\3DMark\bin\x86\3DMark.exe
FirewallRules: [{1E86DEA2-2694-4F62-A42D-AB1CF9E6F9AD}] => (Allow) D:\SteamLibrary\steamapps\common\3DMark\bin\x64\3DMark.exe
FirewallRules: [{D43129D9-68F5-4C52-9800-F15AA763D8B6}] => (Allow) D:\SteamLibrary\steamapps\common\3DMark\bin\x64\3DMark.exe
FirewallRules: [{530C7820-172E-4F98-BD16-8EE742F80975}] => (Allow) D:\SteamLibrary\steamapps\common\tbs\win32\The Banner Saga.exe
FirewallRules: [{809AA726-A857-4F11-A115-58FF82E16F93}] => (Allow) D:\SteamLibrary\steamapps\common\tbs\win32\The Banner Saga.exe

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (05/13/2015 01:27:07 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: MsMpEng.exe, Version: 4.7.205.0, Zeitstempel: 0x54cb5aeb
Name des fehlerhaften Moduls: mpengine.dll, Version: 1.1.9700.0, Zeitstempel: 0x51d28fcb
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000000005615b7
ID des fehlerhaften Prozesses: 0xcbc
Startzeit der fehlerhaften Anwendung: 0xMsMpEng.exe0
Pfad der fehlerhaften Anwendung: MsMpEng.exe1
Pfad des fehlerhaften Moduls: MsMpEng.exe2
Berichtskennung: MsMpEng.exe3
Vollständiger Name des fehlerhaften Pakets: MsMpEng.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: MsMpEng.exe5

Error: (05/13/2015 01:25:44 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: MsMpEng.exe, Version: 4.7.205.0, Zeitstempel: 0x54cb5aeb
Name des fehlerhaften Moduls: mpengine.dll, Version: 1.1.9700.0, Zeitstempel: 0x51d28fcb
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000000005615b7
ID des fehlerhaften Prozesses: 0xe48
Startzeit der fehlerhaften Anwendung: 0xMsMpEng.exe0
Pfad der fehlerhaften Anwendung: MsMpEng.exe1
Pfad des fehlerhaften Moduls: MsMpEng.exe2
Berichtskennung: MsMpEng.exe3
Vollständiger Name des fehlerhaften Pakets: MsMpEng.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: MsMpEng.exe5

Error: (05/12/2015 09:39:18 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: MsMpEng.exe, Version: 4.7.205.0, Zeitstempel: 0x54cb5aeb
Name des fehlerhaften Moduls: mpengine.dll, Version: 1.1.9700.0, Zeitstempel: 0x51d28fcb
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000000005615b7
ID des fehlerhaften Prozesses: 0x2060
Startzeit der fehlerhaften Anwendung: 0xMsMpEng.exe0
Pfad der fehlerhaften Anwendung: MsMpEng.exe1
Pfad des fehlerhaften Moduls: MsMpEng.exe2
Berichtskennung: MsMpEng.exe3
Vollständiger Name des fehlerhaften Pakets: MsMpEng.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: MsMpEng.exe5

Error: (05/12/2015 09:35:35 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: MsMpEng.exe, Version: 4.7.205.0, Zeitstempel: 0x54cb5aeb
Name des fehlerhaften Moduls: mpengine.dll, Version: 1.1.9700.0, Zeitstempel: 0x51d28fcb
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000000005615b7
ID des fehlerhaften Prozesses: 0x12cc
Startzeit der fehlerhaften Anwendung: 0xMsMpEng.exe0
Pfad der fehlerhaften Anwendung: MsMpEng.exe1
Pfad des fehlerhaften Moduls: MsMpEng.exe2
Berichtskennung: MsMpEng.exe3
Vollständiger Name des fehlerhaften Pakets: MsMpEng.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: MsMpEng.exe5

Error: (05/12/2015 09:32:24 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: MsMpEng.exe, Version: 4.7.205.0, Zeitstempel: 0x54cb5aeb
Name des fehlerhaften Moduls: mpengine.dll, Version: 1.1.9700.0, Zeitstempel: 0x51d28fcb
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000000005615b7
ID des fehlerhaften Prozesses: 0xc70
Startzeit der fehlerhaften Anwendung: 0xMsMpEng.exe0
Pfad der fehlerhaften Anwendung: MsMpEng.exe1
Pfad des fehlerhaften Moduls: MsMpEng.exe2
Berichtskennung: MsMpEng.exe3
Vollständiger Name des fehlerhaften Pakets: MsMpEng.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: MsMpEng.exe5

Error: (05/12/2015 09:30:07 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: MsMpEng.exe, Version: 4.7.205.0, Zeitstempel: 0x54cb5aeb
Name des fehlerhaften Moduls: mpengine.dll, Version: 1.1.9700.0, Zeitstempel: 0x51d28fcb
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000000005615b7
ID des fehlerhaften Prozesses: 0xb88
Startzeit der fehlerhaften Anwendung: 0xMsMpEng.exe0
Pfad der fehlerhaften Anwendung: MsMpEng.exe1
Pfad des fehlerhaften Moduls: MsMpEng.exe2
Berichtskennung: MsMpEng.exe3
Vollständiger Name des fehlerhaften Pakets: MsMpEng.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: MsMpEng.exe5

Error: (05/12/2015 09:24:18 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: MsMpEng.exe, Version: 4.7.205.0, Zeitstempel: 0x54cb5aeb
Name des fehlerhaften Moduls: mpengine.dll, Version: 1.1.9700.0, Zeitstempel: 0x51d28fcb
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000000005615b7
ID des fehlerhaften Prozesses: 0xb98
Startzeit der fehlerhaften Anwendung: 0xMsMpEng.exe0
Pfad der fehlerhaften Anwendung: MsMpEng.exe1
Pfad des fehlerhaften Moduls: MsMpEng.exe2
Berichtskennung: MsMpEng.exe3
Vollständiger Name des fehlerhaften Pakets: MsMpEng.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: MsMpEng.exe5

Error: (05/12/2015 09:20:09 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: MsMpEng.exe, Version: 4.7.205.0, Zeitstempel: 0x54cb5aeb
Name des fehlerhaften Moduls: mpengine.dll, Version: 1.1.9700.0, Zeitstempel: 0x51d28fcb
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000000005615b7
ID des fehlerhaften Prozesses: 0x10a4
Startzeit der fehlerhaften Anwendung: 0xMsMpEng.exe0
Pfad der fehlerhaften Anwendung: MsMpEng.exe1
Pfad des fehlerhaften Moduls: MsMpEng.exe2
Berichtskennung: MsMpEng.exe3
Vollständiger Name des fehlerhaften Pakets: MsMpEng.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: MsMpEng.exe5

Error: (05/12/2015 09:15:57 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: MsMpEng.exe, Version: 4.7.205.0, Zeitstempel: 0x54cb5aeb
Name des fehlerhaften Moduls: mpengine.dll, Version: 1.1.9700.0, Zeitstempel: 0x51d28fcb
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000000005615b7
ID des fehlerhaften Prozesses: 0x1c9c
Startzeit der fehlerhaften Anwendung: 0xMsMpEng.exe0
Pfad der fehlerhaften Anwendung: MsMpEng.exe1
Pfad des fehlerhaften Moduls: MsMpEng.exe2
Berichtskennung: MsMpEng.exe3
Vollständiger Name des fehlerhaften Pakets: MsMpEng.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: MsMpEng.exe5

Error: (05/12/2015 09:12:29 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: MsMpEng.exe, Version: 4.7.205.0, Zeitstempel: 0x54cb5aeb
Name des fehlerhaften Moduls: mpengine.dll, Version: 1.1.9700.0, Zeitstempel: 0x51d28fcb
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000000005615b7
ID des fehlerhaften Prozesses: 0xcdc
Startzeit der fehlerhaften Anwendung: 0xMsMpEng.exe0
Pfad der fehlerhaften Anwendung: MsMpEng.exe1
Pfad des fehlerhaften Moduls: MsMpEng.exe2
Berichtskennung: MsMpEng.exe3
Vollständiger Name des fehlerhaften Pakets: MsMpEng.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: MsMpEng.exe5


System errors:
=============
Error: (05/13/2015 01:28:18 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Windows Defender-Dienst" wurde unerwartet beendet. Dies ist bereits 3 Mal passiert.

Error: (05/13/2015 01:27:07 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Windows Defender-Dienst" wurde unerwartet beendet. Dies ist bereits 2 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 60000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (05/13/2015 01:25:44 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Windows Defender-Dienst" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 60000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (05/13/2015 01:24:37 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Windows Search" wurde unerwartet beendet. Dies ist bereits 2 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 30000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (05/13/2015 01:24:36 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Update Mgr StrongSignal" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 60000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (05/13/2015 01:24:36 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Service Mgr StrongSignal" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 60000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (05/13/2015 01:24:36 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Intel(R) Dynamic Application Loader Host Interface Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.

Error: (05/13/2015 01:24:36 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Intel® ME Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.

Error: (05/13/2015 01:24:36 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Intel(R) Rapid Storage Technology" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.

Error: (05/13/2015 01:24:35 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Steam Client Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.


Microsoft Office Sessions:
=========================
Error: (05/13/2015 01:27:07 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: MsMpEng.exe4.7.205.054cb5aebmpengine.dll1.1.9700.051d28fcbc000000500000000005615b7cbc01d08d0b1be87192C:\Program Files\Windows Defender\MsMpEng.exeC:\ProgramData\Microsoft\Windows Defender\Definition Updates\Default\mpengine.dll6745ac56-f8fe-11e4-8281-000272ce57e0

Error: (05/13/2015 01:25:44 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: MsMpEng.exe4.7.205.054cb5aebmpengine.dll1.1.9700.051d28fcbc000000500000000005615b7e4801d08d0ae9d9488cC:\Program Files\Windows Defender\MsMpEng.exeC:\ProgramData\Microsoft\Windows Defender\Definition Updates\Default\mpengine.dll35cb6123-f8fe-11e4-8281-000272ce57e0

Error: (05/12/2015 09:39:18 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: MsMpEng.exe4.7.205.054cb5aebmpengine.dll1.1.9700.051d28fcbc000000500000000005615b7206001d08ceaf558ee7fC:\Program Files\Windows Defender\MsMpEng.exeC:\ProgramData\Microsoft\Windows Defender\Definition Updates\Default\mpengine.dll941c78bf-f8de-11e4-8280-000272ce57e0

Error: (05/12/2015 09:35:35 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: MsMpEng.exe4.7.205.054cb5aebmpengine.dll1.1.9700.051d28fcbc000000500000000005615b712cc01d08cea838a481fC:\Program Files\Windows Defender\MsMpEng.exeC:\ProgramData\Microsoft\Windows Defender\Definition Updates\Default\mpengine.dll0f3b2d6d-f8de-11e4-8280-000272ce57e0

Error: (05/12/2015 09:32:24 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: MsMpEng.exe4.7.205.054cb5aebmpengine.dll1.1.9700.051d28fcbc000000500000000005615b7c7001d08cea5cb20496C:\Program Files\Windows Defender\MsMpEng.exeC:\ProgramData\Microsoft\Windows Defender\Definition Updates\Default\mpengine.dll9d4518ef-f8dd-11e4-8280-000272ce57e0

Error: (05/12/2015 09:30:07 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: MsMpEng.exe4.7.205.054cb5aebmpengine.dll1.1.9700.051d28fcbc000000500000000005615b7b8801d08cea085027c0C:\Program Files\Windows Defender\MsMpEng.exeC:\ProgramData\Microsoft\Windows Defender\Definition Updates\Default\mpengine.dll4b4e0974-f8dd-11e4-827f-000272ce57e0

Error: (05/12/2015 09:24:18 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: MsMpEng.exe4.7.205.054cb5aebmpengine.dll1.1.9700.051d28fcbc000000500000000005615b7b9801d08ce93a202196C:\Program Files\Windows Defender\MsMpEng.exeC:\ProgramData\Microsoft\Windows Defender\Definition Updates\Default\mpengine.dll7b3edbe8-f8dc-11e4-827e-000272ce57e0

Error: (05/12/2015 09:20:09 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: MsMpEng.exe4.7.205.054cb5aebmpengine.dll1.1.9700.051d28fcbc000000500000000005615b710a401d08ce836e4df5bC:\Program Files\Windows Defender\MsMpEng.exeC:\ProgramData\Microsoft\Windows Defender\Definition Updates\Default\mpengine.dlle6ca8142-f8db-11e4-827d-000272ce57e0

Error: (05/12/2015 09:15:57 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: MsMpEng.exe4.7.205.054cb5aebmpengine.dll1.1.9700.051d28fcbc000000500000000005615b71c9c01d08ce7bb49e436C:\Program Files\Windows Defender\MsMpEng.exeC:\ProgramData\Microsoft\Windows Defender\Definition Updates\Default\mpengine.dll50c60e24-f8db-11e4-827d-000272ce57e0

Error: (05/12/2015 09:12:29 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: MsMpEng.exe4.7.205.054cb5aebmpengine.dll1.1.9700.051d28fcbc000000500000000005615b7cdc01d08ce7916f2a13C:\Program Files\Windows Defender\MsMpEng.exeC:\ProgramData\Microsoft\Windows Defender\Definition Updates\Default\mpengine.dlld4cbdc81-f8da-11e4-827d-000272ce57e0


==================== Memory info =========================== 

Processor: Intel(R) Core(TM) i7-5960X CPU @ 3.00GHz
Percentage of memory in use: 8%
Total physical RAM: 32693.84 MB
Available physical RAM: 29870.36 MB
Total Pagefile: 65461.84 MB
Available Pagefile: 62030.17 MB
Total Virtual: 131072 MB
Available Virtual: 131071.83 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:476.42 GB) (Free:197.96 GB) NTFS
Drive d: (Data) (Fixed) (Total:3725.9 GB) (Free:2493.22 GB) NTFS
Drive f: (Dragon.Age.Inqui) (CDROM) (Total:0.38 GB) (Free:0 GB) CDFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 476.9 GB) (Disk ID: 00000000)

Partition: GPT Partition Type.

========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 3726 GB) (Disk ID: 00000000)

Partition: GPT Partition Type.

==================== End Of Log ============================
         
Danke
__________________

Alt 13.05.2015, 21:21   #4
Bootsektor
Ruhe in Frieden
† 2019
 
Strong Signal nicht zu Entfernen. - Standard

Strong Signal nicht zu Entfernen.



Hallo,

wie sieht es nach diesen Schritten aus?

Schritt 1

Drücke bitte die Windowstaste + R Taste und schreibe notepad in das Ausführen Fenster.

Kopiere nun folgenden Text aus der Code-Box in das leere Textdokument

Code:
ATTFilter
Task: {29A1CFC8-5FFE-4670-BDC2-954FF0BB27B5} - \WPD\SqmUpload_S-1-5-21-2577149796-2635466800-2005262636-1001 No Task File <==== ATTENTION
Task: {496B33F5-E4D6-4C59-97A2-71FA7ABE9427} - \Optimize Start Menu Cache Files-S-1-5-21-2577149796-2635466800-2005262636-1001 No Task File <==== ATTENTION
BHO-x32: No Name -> {c723a437-2eaf-466d-a95b-3fa0966bf88c} ->  No File
R2 Update Mgr StrongSignal; C:\Program Files (x86)\Common Files\0780f478-67ce-4ec3-98db-39a65f4618ce\Updater.exe [478992 2015-05-12] ()
C:\Program Files (x86)\Common Files\0780f478-67ce-4ec3-98db-39a65f4618ce\
         

Speichere diese bitte als Fixlist.txt auf deinem Desktop (oder dem Verzeichnis in dem sich FRST befindet).
  • Starte nun FRST erneut und klicke den Entfernen Button.
  • Das Tool erstellt eine Fixlog.txt.
  • Poste mir deren Inhalt.




Schritt 2
In deinem Chrome Browser ist trovi.com als Startseite eingetragen
Stelle nach dieser Anleitung deine Startseite neu ein.

Schritt 3
Bitte kopiere folgendes in die Adresszeile deines Chromebrowsers

Code:
ATTFilter
chrome://settings/startup
         
in die URL-Zeile von chrome kopieren und drücke die EnterTaste.

Lösche dort alles von vi-view und mystartsearch.


Schritt 4
Starte noch einmal FRST.
  • Setze den Haken bei addition.txt und drücke auf Scan.
  • Wenn der Scan abgeschlossen ist, werden zwei neue Logfiles FRST.txt und addition.txt erstellt und auf dem Desktop (oder in dem Verzeichnis in dem FRST liegt) gespeichert.
  • Poste den Inhalt dieser Logfiles bitte hier in deinen Thread.

Alt 13.05.2015, 22:58   #5
Jasch91
 
Strong Signal nicht zu Entfernen. - Standard

Strong Signal nicht zu Entfernen.



Fixlog.txt
Code:
ATTFilter
Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 13-05-2015 01
Ran by Jasch at 2015-05-13 23:50:19 Run:3
Running from C:\Users\Jasch\Downloads
Loaded Profiles: Jasch (Available profiles: Jasch)
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
Task: {29A1CFC8-5FFE-4670-BDC2-954FF0BB27B5} - \WPD\SqmUpload_S-1-5-21-2577149796-2635466800-2005262636-1001 No Task File <==== ATTENTION
Task: {496B33F5-E4D6-4C59-97A2-71FA7ABE9427} - \Optimize Start Menu Cache Files-S-1-5-21-2577149796-2635466800-2005262636-1001 No Task File <==== ATTENTION
BHO-x32: No Name -> {c723a437-2eaf-466d-a95b-3fa0966bf88c} ->  No File
R2 Update Mgr StrongSignal; C:\Program Files (x86)\Common Files\0780f478-67ce-4ec3-98db-39a65f4618ce\Updater.exe [478992 2015-05-12] ()
C:\Program Files (x86)\Common Files\0780f478-67ce-4ec3-98db-39a65f4618ce\
*****************

"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{29A1CFC8-5FFE-4670-BDC2-954FF0BB27B5}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{29A1CFC8-5FFE-4670-BDC2-954FF0BB27B5}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\WPD\SqmUpload_S-1-5-21-2577149796-2635466800-2005262636-1001" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{496B33F5-E4D6-4C59-97A2-71FA7ABE9427}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{496B33F5-E4D6-4C59-97A2-71FA7ABE9427}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Optimize Start Menu Cache Files-S-1-5-21-2577149796-2635466800-2005262636-1001" => Key deleted successfully.
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{c723a437-2eaf-466d-a95b-3fa0966bf88c}" => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{c723a437-2eaf-466d-a95b-3fa0966bf88c} => Key not found. 
Update Mgr StrongSignal => Unable to stop service
Update Mgr StrongSignal => Service deleted successfully.
C:\Program Files (x86)\Common Files\0780f478-67ce-4ec3-98db-39a65f4618ce => Moved successfully.


The system needed a reboot. 

==== End of Fixlog 23:50:25 ====
         
FRST.txt

FRST Logfile:
Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 13-05-2015 01
Ran by Jasch (administrator) on JASCH-PC on 13-05-2015 23:54:25
Running from C:\Users\Jasch\Downloads
Loaded Profiles: Jasch (Available profiles: Jasch)
Platform: Windows 8.1 (X64) OS Language: Deutsch (Deutschland)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Avast Software s.r.o.) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Broadcom Corporation.) C:\Windows\System32\BtwRSupportService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(Beepa P/L) C:\Fraps\fraps.exe
(Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe
(Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.26.9\GoogleCrashHandler.exe
() C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
() C:\ProgramData\0780f478-67ce-4ec3-98db-39a65f4618ce\PluginContainer.exe
(DEVGURU Co., LTD.) C:\Program Files (x86)\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.26.9\GoogleCrashHandler64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Intel(R) Corporation) C:\Program Files\Intel\NCS2\WMIProv\ncs2prov.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(NVIDIA Corporation) C:\Users\Jasch\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\NvOAWrapperCache.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\LCore.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.3.9600.17477_none_fa2b7d3b9b36c7b4\TiWorker.exe
(Spotify Ltd) C:\Users\Jasch\AppData\Roaming\Spotify\SpotifyWebHelper.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Disc Soft Ltd) C:\Program Files (x86)\DAEMON Tools Ultra\DiscSoftBusService.exe
(Samsung) C:\Program Files (x86)\Samsung\Kies\Kies.exe
(Avast Software s.r.o.) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Razer Inc.) C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(Beepa P/L) C:\Fraps\fraps64.dat
(Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
() C:\ProgramData\Razer\Synapse\RzStats\RzStats.Manager.exe
(Razer, Inc.) C:\Program Files (x86)\Razer\InGameEngine\32bit\RazerIngameEngine.exe
(Razer, Inc.) C:\Users\Jasch\AppData\Local\Razer\InGameEngine\cache\RzStats.Manager\RzCefRenderProcess.exe
() C:\ProgramData\0780f478-67ce-4ec3-98db-39a65f4618ce\plugins\4\Plugin.exe
() C:\ProgramData\0780f478-67ce-4ec3-98db-39a65f4618ce\plugins\2\Plugin.exe
() C:\ProgramData\0780f478-67ce-4ec3-98db-39a65f4618ce\plugins\3\Plugin.exe
() C:\ProgramData\0780f478-67ce-4ec3-98db-39a65f4618ce\plugins\8\Plugin.exe
() C:\ProgramData\0780f478-67ce-4ec3-98db-39a65f4618ce\plugins\5\Plugin.exe
() C:\ProgramData\0780f478-67ce-4ec3-98db-39a65f4618ce\plugins\6\Plugin.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
() C:\ProgramData\0780f478-67ce-4ec3-98db-39a65f4618ce\plugins\3\Plugin.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2673296 2015-03-28] (NVIDIA Corporation)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [287592 2014-05-28] (Intel Corporation)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13667032 2014-02-24] (Realtek Semiconductor)
HKLM\...\Run: [Launch LCore] => C:\Program Files\Logitech Gaming Software\LCore.exe [13318424 2015-02-26] (Logitech Inc.)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [5515496 2015-05-12] (Avast Software s.r.o.)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Razer Synapse] => C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe [590144 2015-04-22] (Razer Inc.)
HKLM-x32\...\Run: [KiesTrayAgent] => C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe [311616 2015-02-24] (Samsung Electronics Co., Ltd.)
HKLM\...\Winlogon: [Userinit] C:\Windows\system32\userinit.exe,C:\Windows\skipmetrosuite.exe,
HKU\S-1-5-21-2577149796-2635466800-2005262636-1002\...\Run: [GoogleChromeAutoLaunch_5287039B98BC68C2D6F0BFD625D75439] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [812872 2015-04-28] (Google Inc.)
HKU\S-1-5-21-2577149796-2635466800-2005262636-1002\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [2888384 2015-05-12] (Valve Corporation)
HKU\S-1-5-21-2577149796-2635466800-2005262636-1002\...\Run: [Spotify Web Helper] => C:\Users\Jasch\AppData\Roaming\Spotify\SpotifyWebHelper.exe [2020920 2015-05-01] (Spotify Ltd)
HKU\S-1-5-21-2577149796-2635466800-2005262636-1002\...\Run: [DAEMON Tools Ultra Agent] => C:\Program Files (x86)\DAEMON Tools Ultra\DTAgent.exe [3732752 2015-02-26] (Disc Soft Ltd)
HKU\S-1-5-21-2577149796-2635466800-2005262636-1002\...\Run: [Spotify] => C:\Users\Jasch\AppData\Roaming\Spotify\Spotify.exe [7168568 2015-05-01] (Spotify Ltd)
HKU\S-1-5-21-2577149796-2635466800-2005262636-1002\...\Run: [KiesPreload] => C:\Program Files (x86)\Samsung\Kies\Kies.exe [1565504 2015-02-24] (Samsung)
HKU\S-1-5-21-2577149796-2635466800-2005262636-1002\...\MountPoints2: {7cde29b3-c824-11e4-8257-d0509947abf9} - "F:\Setup.exe" 
HKU\S-1-5-21-2577149796-2635466800-2005262636-1002\...\MountPoints2: {b5ef9f1b-d1a2-11e4-825d-000272ce57e0} - "K:\setup.exe" 
HKU\S-1-5-21-2577149796-2635466800-2005262636-1002\...\MountPoints2: {b5ef9f1e-d1a2-11e4-825d-000272ce57e0} - "L:\setup.exe" 
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Avast Free Antivirus.lnk [2015-03-11]
ShortcutTarget: Avast Free Antivirus.lnk -> C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o.)
ShellIconOverlayIdentifiers: ["DropboxExt1"] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Jasch\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-03-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt2"] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Jasch\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-03-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt3"] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Jasch\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-03-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt4"] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Jasch\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-03-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt5"] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Jasch\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-03-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt6"] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Jasch\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-03-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt7"] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Jasch\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-03-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt8"] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Jasch\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-03-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2015-05-12] (Avast Software s.r.o.)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = https://www.google.com/?trackid=sp-006
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = https://www.google.com/search?trackid=sp-006&q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = 
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = 
HKU\S-1-5-21-2577149796-2635466800-2005262636-1002\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.google.com/search?trackid=sp-006&q={searchTerms}
HKU\S-1-5-21-2577149796-2635466800-2005262636-1002\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.com/?trackid=sp-006
HKU\S-1-5-21-2577149796-2635466800-2005262636-1002\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/de-de/?ocid=iehp
HKU\S-1-5-21-2577149796-2635466800-2005262636-1002\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.google.com/?trackid=sp-006
SearchScopes: HKLM-x32 -> {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = https://www.google.com/search?trackid=sp-006&q={searchTerms}
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-21-2577149796-2635466800-2005262636-1002 -> DefaultScope {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = https://www.google.com/search?trackid=sp-006&q={searchTerms}
SearchScopes: HKU\S-1-5-21-2577149796-2635466800-2005262636-1002 -> {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = https://www.google.com/search?trackid=sp-006&q={searchTerms}
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-05-12] (Avast Software s.r.o.)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-05-12] (Avast Software s.r.o.)
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1

FireFox:
========
FF ProfilePath: C:\Users\Jasch\AppData\Roaming\Mozilla\Firefox\Profiles\897yqm5q.default
FF Plugin: @videolan.org/vlc,version=2.2.0 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-16] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-16] (VideoLAN)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2014-06-24] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2014-06-24] (Intel Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-04-08] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-04-08] (NVIDIA Corporation)
FF Plugin-x32: @raidcall.en/RCplugin -> C:\Users\Jasch\AppData\Roaming\raidcall\plugins\nprcplugin.dll [2014-05-27] (Raidcall)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-03-11] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-03-11] (Google Inc.)
FF Extension: Strong Signal - C:\Users\Jasch\AppData\Roaming\Mozilla\Firefox\Profiles\897yqm5q.default\Extensions\{456805be-0bfd-4897-9cd1-cd3d5604efb2}.xpi [2015-05-13]
FF Extension: Adblock Plus - C:\Users\Jasch\AppData\Roaming\Mozilla\Firefox\Profiles\897yqm5q.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2015-05-13]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2015-03-11]
FF Extension: No Name - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} [Not Found]

Chrome: 
=======
CHR HomePage: Default -> hxxp://www.destructoid.com/
CHR DefaultSuggestURL: Default -> {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&gs_ri={google:suggestRid}&xssi=t&q={searchTerms}&{google:inputType}{google:cursorPosition}{google:currentPageUrl}{google:pageClassification}{google:searchVersion}{google:sessionToken}{google:prefetchQuery}sugkey={google:suggestAPIKeyParameter}
CHR Profile: C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Slides) - C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-03-11]
CHR Extension: (BetterTTV) - C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\ajopnjidmegmdimjlfnijceegpefgped [2015-03-19]
CHR Extension: (Google Docs) - C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-03-11]
CHR Extension: (Google Drive) - C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-03-11]
CHR Extension: (Republic For Chrome ROG Edition) - C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\baddhngpffecbmlmdpnfldobhaaaifde [2015-05-13]
CHR Extension: (Please enter your password) - C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\bfbmjmiodbnnpllbbbfblcplfjjepjdn [2015-03-11]
CHR Extension: (YouTube) - C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-03-11]
CHR Extension: (Adblock Plus) - C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2015-03-11]
CHR Extension: (Adblock for Youtube™) - C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmedhionkhpnakcndndgjdbohmhepckk [2015-03-11]
CHR Extension: (Google Search) - C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-03-11]
CHR Extension: (Google Sheets) - C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-03-11]
CHR Extension: (Hola Better Internet) - C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\gkojfkhlekighikafcpjkiklfbnlmeio [2015-03-11]
CHR Extension: (Bookmark Manager) - C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\gmlllbghnfkpflemihljekbapjopfjik [2015-04-21]
CHR Extension: (Avast Online Security) - C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2015-03-11]
CHR Extension: (feedly) - C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\hipbfijinpcgfogaopmgehiegacbhmob [2015-03-11]
CHR Extension: (Google Keep - notes and lists) - C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\hmjkmjkepdijhoojdojkdfohbdgmmhki [2015-03-11]
CHR Extension: (Dropbox) - C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\ioekoebejdcmnlefjiknokhhafglcjdl [2015-03-11]
CHR Extension: (Google Play) - C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\komhbcfkdcgmcdoenjcjheifdiabikfi [2015-03-11]
CHR Extension: (Chrome Hotword Shared Module) - C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-03-11]
CHR Extension: (Speed Dial 3(Web)) - C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\lceefillmbhhileboicaeakgcikdocmm [2015-03-11]
CHR Extension: (Strong Signal) - C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\ldpclljhefhlahjipacagpcjolbejgcm [2015-05-13]
CHR Extension: (Google Mail Checker) - C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\mihcahmgecmbnbcchbopgniflfhgnkff [2015-03-11]
CHR Extension: (Pocket) - C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\mjcnijlhddpbdemagnpefmlkjdagkogk [2015-03-11]
CHR Extension: (Save to Pocket) - C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\niloccemoadcdkdjlinkgdfekeahmflj [2015-05-13]
CHR Extension: (Google Wallet) - C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-03-11]
CHR Extension: (Google Chrome to Phone Extension) - C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\oadboiipflhobonjjffjbfekfjcgkhco [2015-03-11]
CHR Extension: (Gmail) - C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-03-11]
CHR Extension: (Canvas Rider) - C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\poknhlcknimnnbfcombaooklofipaibk [2015-03-11]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-03-11]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [343336 2015-05-12] (Avast Software s.r.o.)
R2 BcmBtRSupport; C:\Windows\system32\BtwRSupportService.exe [2255064 2013-10-28] (Broadcom Corporation.)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [441216 2015-05-05] ()
S3 BthHFSrv; C:\Windows\System32\BthHFSrv.dll [324608 2014-10-29] (Microsoft Corporation)
R3 Disc Soft Ultra Bus Service; C:\Program Files (x86)\DAEMON Tools Ultra\DiscSoftBusService.exe [1378576 2015-02-26] (Disc Soft Ltd)
S3 Futuremark SystemInfo Service; C:\Program Files (x86)\Futuremark\SystemInfo\FMSISvc.exe [342240 2015-05-06] (Futuremark)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1152144 2015-03-28] (NVIDIA Corporation)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [16232 2014-05-28] (Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [887256 2014-05-13] (Intel(R) Corporation)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [131544 2014-06-24] (Intel Corporation)
S3 iumsvc; C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [174368 2014-04-09] ()
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [154584 2014-06-24] (Intel Corporation)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1878672 2015-03-28] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [22995600 2015-03-28] (NVIDIA Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [1931632 2015-04-21] (Electronic Arts)
R2 Razer Game Scanner Service; C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe [187072 2015-02-05] ()
R2 Service Mgr StrongSignal; C:\ProgramData\0780f478-67ce-4ec3-98db-39a65f4618ce\PluginContainer.exe [556304 2015-05-13] ()
R2 ss_conn_service; C:\Program Files (x86)\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe [743688 2014-10-13] (DEVGURU Co., LTD.)
S3 Survarium-Steam Update Service; D:\SteamLibrary\steamapps\common\Survarium\game\binaries\x86\survarium_service.exe [76408 2015-04-03] ()
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366520 2015-02-04] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23792 2015-02-04] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29168 2015-05-12] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [89944 2015-05-12] (Avast Software s.r.o.)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93528 2015-05-12] (Avast Software s.r.o.)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65736 2015-05-12] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1047320 2015-05-12] (Avast Software s.r.o.)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [442264 2015-05-12] (Avast Software s.r.o.)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [137288 2015-05-12] (Avast Software s.r.o.)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [272248 2015-05-12] ()
R3 bcbtums; C:\Windows\system32\drivers\bcbtums.sys [170712 2013-10-28] (Broadcom Corporation.)
S3 BthA2DP; C:\Windows\system32\drivers\BthA2DP.sys [132608 2015-01-30] (Microsoft Corporation)
R3 dtultrascsibus; C:\Windows\System32\drivers\dtultrascsibus.sys [30352 2015-03-12] (Disc Soft Ltd)
R3 e1dexpress; C:\Windows\system32\DRIVERS\e1d64x64.sys [457496 2014-03-14] (Intel Corporation)
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [129312 2014-09-30] (Intel Corporation)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19600 2015-03-28] (NVIDIA Corporation)
S3 NVSWCFilter; C:\Windows\System32\drivers\nvswcfilter.sys [19616 2015-02-05] (Windows (R) Win 7 DDK provider)
S3 NVVADARM; C:\Windows\system32\drivers\nvvadarm.sys [39056 2015-04-09] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [38032 2015-02-05] (NVIDIA Corporation)
R3 rzendpt; C:\Windows\System32\drivers\rzendpt.sys [40104 2015-03-10] (Razer Inc)
R2 rzpmgrk; C:\Windows\system32\drivers\rzpmgrk.sys [37184 2015-02-05] (Razer, Inc.)
R2 rzpnk; C:\Windows\system32\drivers\rzpnk.sys [129600 2015-02-04] (Razer, Inc.)
R3 ScpVBus; C:\Windows\System32\drivers\ScpVBus.sys [39168 2013-05-19] (Scarlet.Crush Productions)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114496 2015-02-04] (Microsoft Corporation)
S3 xusb22; C:\Windows\System32\drivers\xusb22.sys [87040 2014-03-18] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-05-13 23:51 - 2015-05-13 23:51 - 00003138 _____ () C:\Windows\System32\Tasks\FRAPS
2015-05-13 23:50 - 2015-05-13 23:50 - 00000000 ____D () C:\Users\Jasch\Downloads\FRST-OlderVersion
2015-05-13 19:33 - 2015-05-13 19:33 - 00000000 ____D () C:\Users\Jasch\AppData\Local\Macromedia
2015-05-13 19:32 - 2015-05-13 19:32 - 00000000 ____D () C:\Users\Jasch\AppData\Local\Adobe
2015-05-13 19:21 - 2015-05-13 19:21 - 00000000 ____D () C:\Users\Jasch\AppData\Roaming\Mozilla
2015-05-13 19:21 - 2015-05-13 19:21 - 00000000 ____D () C:\Users\Jasch\AppData\Local\Mozilla
2015-05-13 19:21 - 2015-05-13 19:21 - 00000000 ____D () C:\ProgramData\Mozilla
2015-05-13 01:32 - 2015-05-13 01:32 - 00000000 ____D () C:\Program Files (x86)\Strong Signal
2015-05-13 01:29 - 2015-05-13 01:29 - 00068568 _____ () C:\Users\Jasch\Downloads\Addition.txt
2015-05-13 01:28 - 2015-05-13 23:54 - 00025688 _____ () C:\Users\Jasch\Downloads\FRST.txt
2015-05-12 21:17 - 2015-05-13 23:54 - 00000000 ____D () C:\FRST
2015-05-12 21:17 - 2015-05-13 23:50 - 02104832 _____ (Farbar) C:\Users\Jasch\Downloads\FRST64.exe
2015-05-12 20:45 - 2015-05-12 20:45 - 00000887 _____ () C:\Users\Public\Desktop\VLC media player.lnk
2015-05-12 20:41 - 2015-05-12 20:41 - 00364472 _____ (Avast Software s.r.o.) C:\Windows\system32\aswBoot.exe
2015-05-12 20:41 - 2015-05-12 20:41 - 00043112 _____ (Avast Software s.r.o.) C:\Windows\avastSS.scr
2015-05-12 20:35 - 2015-05-12 20:35 - 02623656 _____ (VS Revo Group Ltd.) C:\Users\Jasch\Downloads\revosetup95.exe
2015-05-12 20:35 - 2015-05-12 20:35 - 00000000 ____D () C:\Program Files (x86)\VS Revo Group
2015-05-12 20:28 - 2015-05-13 01:24 - 00000000 ____D () C:\AdwCleaner
2015-05-12 20:28 - 2015-05-12 20:28 - 02209792 _____ () C:\Users\Jasch\Downloads\adwcleaner_4.204.exe
2015-05-12 14:51 - 2015-05-12 14:52 - 364569139 _____ () C:\Users\Jasch\Downloads\BaNkS-dynamic-gapps-L-5-9-15.zip
2015-05-12 14:51 - 2015-05-12 14:51 - 278663454 _____ () C:\Users\Jasch\Downloads\BlissPop-v3.2-hlte-UNOFFICIAL-20150509-1328.zip
2015-05-11 01:13 - 2015-05-11 01:16 - 00000000 ____D () C:\Users\Jasch\AppData\Roaming\PixelPiracy
2015-05-11 00:30 - 2015-05-11 00:30 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\InputMapper
2015-05-10 23:32 - 2015-05-10 23:33 - 00000000 ____D () C:\Users\Jasch\AppData\Roaming\Tera_Awesomium
2015-05-10 22:31 - 2015-05-10 22:31 - 00001718 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rainmeter.lnk
2015-05-10 22:31 - 2015-05-10 22:31 - 00000000 ____D () C:\Users\Jasch\Documents\Rainmeter
2015-05-10 22:31 - 2015-05-10 22:31 - 00000000 ____D () C:\Users\Jasch\AppData\Roaming\Rainmeter
2015-05-10 22:31 - 2015-05-10 22:31 - 00000000 ____D () C:\Program Files\Rainmeter
2015-05-10 00:41 - 2015-05-10 01:39 - 265356980 _____ () C:\Users\Jasch\Downloads\Black Desert.rar
2015-05-09 00:31 - 2015-05-09 00:32 - 00000000 ____D () C:\Users\Jasch\Documents\3DMark
2015-05-09 00:31 - 2015-05-09 00:31 - 00000022 _____ () C:\Windows\GPU-Z.INI
2015-05-09 00:31 - 2015-05-09 00:31 - 00000000 ____D () C:\Users\Jasch\AppData\Local\Futuremark
2015-05-09 00:31 - 2015-05-09 00:31 - 00000000 ____D () C:\Temp
2015-05-09 00:30 - 2015-05-09 00:30 - 00000000 ____D () C:\Program Files (x86)\Futuremark
2015-05-07 21:11 - 2015-05-10 23:30 - 00000000 ____D () C:\ProgramData\boost_interprocess
2015-05-07 21:11 - 2015-05-07 21:11 - 00000000 ____D () C:\Users\Jasch\AppData\Local\TERA
2015-05-05 17:05 - 2015-05-05 17:05 - 00000000 ____D () C:\Users\Jasch\Downloads\PUBattleRoyale.0.6.0
2015-05-05 04:37 - 2015-05-05 05:10 - 00000000 ____D () C:\Users\Jasch\Downloads\The.Witcher.Enhanced.Edition.v1.5.0.1304.Plus.6.Trainer
2015-05-05 04:36 - 2015-05-05 04:36 - 00000000 ____D () C:\Users\Jasch\Downloads\ppt-wedc
2015-05-05 04:17 - 2015-05-05 04:17 - 00000000 ____D () C:\Users\Jasch\Downloads\witcheywoman1303-ch (2)
2015-05-05 02:49 - 2015-05-05 02:49 - 00000000 ____D () C:\Users\Jasch\Downloads\witcher_ee_v1.5_trn+8
2015-05-04 22:27 - 2015-05-04 22:27 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cheat Engine 6.4
2015-05-04 22:27 - 2015-05-04 22:27 - 00000000 ____D () C:\Program Files (x86)\Cheat Engine 6.4
2015-05-01 13:27 - 2015-05-01 13:27 - 1389207675 _____ () C:\Windows\MEMORY.DMP
2015-05-01 13:27 - 2015-05-01 13:27 - 02164672 _____ () C:\Windows\Minidump\050115-8406-01.dmp
2015-05-01 13:27 - 2015-05-01 13:27 - 00000000 ____D () C:\Windows\Minidump
2015-04-28 15:55 - 2015-04-28 15:56 - 00000000 ____D () C:\Users\Jasch\Downloads\[Wii]Mario_Party_8[PAL][MULTI5][ESPALWii.com]
2015-04-28 15:51 - 2015-04-28 15:52 - 00000000 ____D () C:\Users\Jasch\Documents\Dolphin Emulator
2015-04-28 15:51 - 2015-04-28 15:51 - 00000000 ____D () C:\Users\Jasch\Downloads\Skies of Arcadia Legends (Europe) (En,Fr,De,Es)
2015-04-28 15:48 - 2015-04-28 15:50 - 946765370 _____ () C:\Users\Jasch\Downloads\Skies of Arcadia Legends (Europe) (En,Fr,De,Es).7z
2015-04-28 15:42 - 2015-04-28 15:55 - 228963446 _____ () C:\Users\Jasch\Downloads\[Wii]Mario_Party_8[PAL][MULTI5][ESPALWii.com].rar
2015-04-21 07:22 - 2015-04-21 07:22 - 00000000 ____D () C:\Users\Jasch\AppData\Local\Maca134
2015-04-21 06:16 - 2015-04-21 06:18 - 00000000 ____D () C:\Program Files (x86)\Origin Games
2015-04-21 06:15 - 2015-04-21 07:39 - 00000000 ____D () C:\Users\Jasch\AppData\Roaming\Origin
2015-04-21 06:15 - 2015-04-21 06:16 - 00000000 ____D () C:\Users\Jasch\AppData\Local\Origin
2015-04-21 06:15 - 2015-04-21 06:15 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin
2015-04-21 06:15 - 2015-04-21 06:15 - 00000000 ____D () C:\Program Files (x86)\Origin
2015-04-21 05:56 - 2015-05-07 00:15 - 00000000 ____D () C:\Program Files (x86)\A3Launcher
2015-04-21 05:56 - 2015-04-21 05:56 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\A3Launcher
2015-04-16 16:18 - 2015-04-16 16:18 - 00000000 ____D () C:\Users\Jasch\Downloads\SteamMover_v0_1
2015-04-15 06:51 - 2015-04-08 22:32 - 00560968 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2015-04-15 06:50 - 2015-04-09 02:58 - 31570064 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2015-04-15 06:50 - 2015-04-09 02:58 - 30397072 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2015-04-15 06:50 - 2015-04-09 02:58 - 25375048 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2015-04-15 06:50 - 2015-04-09 02:58 - 24053576 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2015-04-15 06:50 - 2015-04-09 02:58 - 15818528 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2015-04-15 06:50 - 2015-04-09 02:58 - 15716232 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2015-04-15 06:50 - 2015-04-09 02:58 - 14006752 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2015-04-15 06:50 - 2015-04-09 02:58 - 12852784 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2015-04-15 06:50 - 2015-04-09 02:58 - 11380728 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2015-04-15 06:50 - 2015-04-09 02:58 - 10423952 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2015-04-15 06:50 - 2015-04-09 02:58 - 02896528 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2015-04-15 06:50 - 2015-04-09 02:58 - 02573456 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2015-04-15 06:50 - 2015-04-09 02:58 - 01895568 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6435012.dll
2015-04-15 06:50 - 2015-04-09 02:58 - 01557648 _____ (NVIDIA Corporation) C:\Windows\system32\nvmcvadgenco64.dll
2015-04-15 06:50 - 2015-04-09 02:58 - 01557648 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6435012.dll
2015-04-15 06:50 - 2015-04-09 02:58 - 01086424 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll
2015-04-15 06:50 - 2015-04-09 02:58 - 01047368 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2015-04-15 06:50 - 2015-04-09 02:58 - 01037640 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2015-04-15 06:50 - 2015-04-09 02:58 - 00970568 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2015-04-15 06:50 - 2015-04-09 02:58 - 00962192 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2015-04-15 06:50 - 2015-04-09 02:58 - 00927440 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2015-04-15 06:50 - 2015-04-09 02:58 - 00849552 _____ () C:\Windows\system32\nvmcumd.dll
2015-04-15 06:50 - 2015-04-09 02:58 - 00499344 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2015-04-15 06:50 - 2015-04-09 02:58 - 00402576 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2015-04-15 06:50 - 2015-04-09 02:58 - 00390472 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2015-04-15 06:50 - 2015-04-09 02:58 - 00346256 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2015-04-15 06:50 - 2015-04-09 02:58 - 00175880 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2015-04-15 06:50 - 2015-04-09 02:58 - 00154256 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2015-04-15 06:50 - 2015-04-09 02:58 - 00150648 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2015-04-15 06:50 - 2015-04-09 02:58 - 00128512 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2015-04-15 06:50 - 2015-04-09 02:58 - 00100680 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcaparm.dll
2015-04-15 06:50 - 2015-04-09 02:58 - 00039056 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvadarm.sys
2015-04-14 22:46 - 2015-04-14 22:46 - 00000000 ____D () C:\Users\Jasch\AppData\Local\openvr
2015-04-14 06:49 - 2015-05-11 00:27 - 00000080 _____ () C:\Users\Jasch\AppData\Local剜捯獫慴⁲慇敭屳呇⁁屖湥楴汴浥湥⹴湩潦
2015-04-13 00:21 - 2015-04-13 00:22 - 00000000 ____D () C:\Users\Jasch\AppData\Local\PAYDAY 2

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-05-13 23:53 - 2015-03-12 01:22 - 00000000 ____D () C:\Users\Jasch\AppData\Local\Spotify
2015-05-13 23:53 - 2015-03-12 01:21 - 00000000 ____D () C:\Users\Jasch\AppData\Roaming\Spotify
2015-05-13 23:53 - 2015-03-10 12:11 - 00006469 _____ () C:\Windows\SysWOW64\Gms.log
2015-05-13 23:52 - 2015-03-11 15:00 - 02014953 _____ () C:\Windows\WindowsUpdate.log
2015-05-13 23:51 - 2015-03-23 23:45 - 00000000 ____D () C:\Fraps
2015-05-13 23:51 - 2015-03-11 15:25 - 00000000 ____D () C:\Program Files (x86)\Steam
2015-05-13 23:51 - 2015-03-11 15:14 - 00001122 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-05-13 23:51 - 2015-03-10 11:55 - 00000000 ____D () C:\ProgramData\NVIDIA
2015-05-13 23:51 - 2015-03-10 11:40 - 00024300 _____ () C:\Windows\PFRO.log
2015-05-13 23:51 - 2013-08-22 16:46 - 00056570 _____ () C:\Windows\setupact.log
2015-05-13 23:51 - 2013-08-22 16:45 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2015-05-13 23:48 - 2015-03-11 20:57 - 00000000 ____D () C:\ProgramData\0780f478-67ce-4ec3-98db-39a65f4618ce
2015-05-13 23:19 - 2015-03-11 15:14 - 00001126 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-05-13 23:00 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\system32\sru
2015-05-13 20:06 - 2015-03-13 21:43 - 00000000 ____D () C:\Users\Jasch\AppData\Local\Arma 3
2015-05-13 03:09 - 2013-08-22 17:20 - 00000000 ____D () C:\Windows\CbsTemp
2015-05-13 01:31 - 2015-03-10 11:48 - 01780340 _____ () C:\Windows\system32\PerfStringBackup.INI
2015-05-13 01:31 - 2013-08-23 01:24 - 00765378 _____ () C:\Windows\system32\perfh007.dat
2015-05-13 01:31 - 2013-08-23 01:24 - 00159696 _____ () C:\Windows\system32\perfc007.dat
2015-05-12 22:15 - 2015-03-11 15:16 - 00003600 _____ () C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2577149796-2635466800-2005262636-1002
2015-05-12 21:02 - 2013-08-22 16:44 - 00338272 _____ () C:\Windows\system32\FNTCACHE.DAT
2015-05-12 20:41 - 2015-03-11 15:22 - 01047320 _____ (Avast Software s.r.o.) C:\Windows\system32\Drivers\aswSnx.sys
2015-05-12 20:41 - 2015-03-11 15:22 - 00442264 _____ (Avast Software s.r.o.) C:\Windows\system32\Drivers\aswSP.sys
2015-05-12 20:41 - 2015-03-11 15:22 - 00272248 _____ () C:\Windows\system32\Drivers\aswVmm.sys
2015-05-12 20:41 - 2015-03-11 15:22 - 00137288 _____ (Avast Software s.r.o.) C:\Windows\system32\Drivers\aswStm.sys
2015-05-12 20:41 - 2015-03-11 15:22 - 00093528 _____ (Avast Software s.r.o.) C:\Windows\system32\Drivers\aswRdr2.sys
2015-05-12 20:41 - 2015-03-11 15:22 - 00089944 _____ (Avast Software s.r.o.) C:\Windows\system32\Drivers\aswMonFlt.sys
2015-05-12 20:41 - 2015-03-11 15:22 - 00065736 _____ () C:\Windows\system32\Drivers\aswRvrt.sys
2015-05-12 20:41 - 2015-03-11 15:22 - 00029168 _____ () C:\Windows\system32\Drivers\aswHwid.sys
2015-05-12 20:41 - 2015-03-11 15:22 - 00003924 _____ () C:\Windows\System32\Tasks\avast! Emergency Update
2015-05-12 20:41 - 2013-08-22 15:25 - 00262144 ___SH () C:\Windows\system32\config\ELAM
2015-05-12 20:29 - 2013-08-22 15:25 - 00262144 ___SH () C:\Windows\system32\config\BBI
2015-05-12 20:08 - 2015-03-11 15:10 - 00000000 ____D () C:\Users\Jasch
2015-05-12 20:07 - 2015-03-11 15:42 - 00000000 ____D () C:\Users\Jasch\AppData\Local\Battle.net
2015-05-12 14:57 - 2015-03-11 15:22 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
2015-05-11 20:36 - 2015-03-11 20:57 - 00000000 ____D () C:\Users\Jasch\AppData\Local\JDownloader v2.0
2015-05-11 19:38 - 2015-03-15 00:10 - 00000000 ____D () C:\Users\Jasch\AppData\Roaming\vlc
2015-05-11 19:17 - 2015-03-15 00:12 - 00000000 ____D () C:\Users\Jasch\AppData\Roaming\uTorrent
2015-05-11 00:30 - 2015-03-16 22:25 - 00000000 ____D () C:\Users\Jasch\AppData\Roaming\InputMapper
2015-05-11 00:29 - 2015-03-16 22:25 - 00000000 ____D () C:\Users\Jasch\AppData\Roaming\DSDCS
2015-05-07 00:12 - 2015-03-13 21:42 - 00000000 ____D () C:\Users\Jasch\AppData\Local\Arma 3 Launcher
2015-05-05 05:33 - 2015-03-17 00:45 - 00000000 ____D () C:\Users\Jasch\AppData\Local\The Witcher
2015-04-27 21:09 - 2015-03-10 11:56 - 00152366 _____ () C:\Windows\DPINST.LOG
2015-04-27 02:06 - 2015-03-24 00:08 - 00000000 ____D () C:\ProgramData\Origin
2015-04-21 07:55 - 2015-03-11 18:40 - 00266417 _____ () C:\Windows\DirectX.log
2015-04-21 06:15 - 2015-03-24 00:09 - 00000000 ____D () C:\ProgramData\Electronic Arts
2015-04-19 03:30 - 2015-03-11 20:13 - 00000000 ____D () C:\Users\Jasch\AppData\Roaming\TS3Client
2015-04-17 18:21 - 2015-04-09 00:41 - 00000000 ____D () C:\Program Files\Rockstar Games
2015-04-17 18:21 - 2015-04-09 00:41 - 00000000 ____D () C:\Program Files (x86)\Rockstar Games
2015-04-15 06:52 - 2015-03-10 12:13 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2015-04-15 06:52 - 2015-03-10 11:55 - 00000000 ____D () C:\Program Files (x86)\NVIDIA Corporation
2015-04-15 06:51 - 2015-03-10 11:55 - 00000000 ____D () C:\ProgramData\NVIDIA Corporation

==================== Files in the root of some directories =======

2015-03-16 22:17 - 2015-03-16 22:31 - 0001439 _____ () C:\Users\Jasch\AppData\Roaming\SpeedRunnersLog.txt
2015-03-10 12:08 - 2015-03-10 12:08 - 0000000 ____H () C:\ProgramData\DP45977C.lfl

Some content of TEMP:
====================
C:\Users\Jasch\AppData\Local\Temp\Quarantine.exe
C:\Users\Jasch\AppData\Local\Temp\sqlite3.dll


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-05-12 03:05

==================== End Of Log ============================
         
--- --- ---


Addition.txt:
Code:
ATTFilter
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 13-05-2015 01
Ran by Jasch at 2015-05-13 23:54:58
Running from C:\Users\Jasch\Downloads
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-2577149796-2635466800-2005262636-500 - Administrator - Disabled)
Gast (S-1-5-21-2577149796-2635466800-2005262636-501 - Limited - Disabled)
Jasch (S-1-5-21-2577149796-2635466800-2005262636-1002 - Administrator - Enabled) => C:\Users\Jasch

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKU\S-1-5-21-2577149796-2635466800-2005262636-1002\...\uTorrent) (Version: 3.4.2.38913 - BitTorrent Inc.)
140 (HKLM-x32\...\Steam App 242820) (Version:  - Carlsen Games)
3DMark Demo (HKLM-x32\...\Steam App 231350) (Version:  - Futuremark)
Arma 2 (HKLM-x32\...\Steam App 33910) (Version:  - Bohemia Interactive)
Arma 2: DayZ Mod (HKLM-x32\...\Steam App 224580) (Version:  - Bohemia Interactive)
Arma 3 (HKLM-x32\...\Steam App 107410) (Version:  - Bohemia Interactive)
Asmedia ASM104x USB 3.0 Host Controller Driver (HKLM-x32\...\{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}) (Version: 1.16.15.0 - Asmedia Technology)
Assassin's Creed Rogue (HKLM-x32\...\Uplay Install 895) (Version:  - Ubisoft)
Avast Free Antivirus (HKLM-x32\...\Avast) (Version: 10.2.2218 - AVAST Software)
Battle.net (HKLM-x32\...\Battle.net) (Version:  - Blizzard Entertainment)
Bejeweled® 3 (HKLM-x32\...\{E99C27B2-EB2E-4244-9F5C-A96F55100F0C}) (Version: 1.1.13.4753 - Electronic Arts, Inc.)
Cheat Engine 6.4 (HKLM-x32\...\Cheat Engine 6.4_is1) (Version:  - Cheat Engine)
Counter-Strike (HKLM-x32\...\Steam App 10) (Version:  - Valve)
Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version:  - Valve)
DAEMON Tools Ultra (HKLM-x32\...\DAEMON Tools Ultra) (Version: 3.0.0.0310 - Disc Soft Ltd)
DayZ (HKLM-x32\...\Steam App 221100) (Version:  - Bohemia Interactive)
Dead Space 2 (HKLM-x32\...\Steam App 47780) (Version:  - Visceral Games)
Deus Ex: Human Revolution - Director's Cut (HKLM-x32\...\Steam App 238010) (Version:  - Eidos Montreal)
Divinity - Original Sin (HKLM-x32\...\Divinity - Original Sin_is1) (Version:  - )
DmC Devil May Cry (HKLM-x32\...\Steam App 220440) (Version:  - Ninja Theory)
Dota 2 (HKLM-x32\...\Steam App 570) (Version:  - Valve)
Dragon Age Inquisition Digital Deluxe Edition MULTi2 1.0 (HKLM-x32\...\Dragon Age Inquisition Digital Deluxe Edition MULTi2 1.0) (Version:  - )
Dragon Age: Origins (HKLM-x32\...\Steam App 17450) (Version:  - BioWare)
Dropbox (HKU\S-1-5-21-2577149796-2635466800-2005262636-1002\...\Dropbox) (Version: 3.2.9 - Dropbox, Inc.)
Far Cry 4 Update v1.8 (HKLM-x32\...\RmFyQ3J5NA==_is1) (Version: 1 - )
Fraps (HKLM-x32\...\Fraps) (Version:  - )
Futuremark SystemInfo (HKLM-x32\...\{0DD83DE7-507E-44AE-BC2D-2FAAFA48CCA5}) (Version: 4.37.548.0 - Futuremark)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 42.0.2311.135 - Google Inc.)
Google Update Helper (x32 Version: 1.3.26.9 - Google Inc.) Hidden
Grand Theft Auto V (HKLM-x32\...\Steam App 271590) (Version:  - Rockstar North)
Guild Wars 2 (HKLM-x32\...\Guild Wars 2) (Version:  - NCsoft Corporation, Ltd.)
H1Z1 (HKLM-x32\...\Steam App 295110) (Version:  - Sony Online Entertainment)
H1Z1 Test Server (HKLM-x32\...\Steam App 362300) (Version:  - )
Half-Life 2 (HKLM-x32\...\Steam App 220) (Version:  - Valve)
HAWKEN (HKLM-x32\...\Steam App 271290) (Version:  - Reloaded Games)
Hearthstone (HKLM-x32\...\Hearthstone) (Version:  - Blizzard Entertainment)
InputMapper (HKLM-x32\...\{D4A693C5-9E3E-41B9-9039-6FDA58AA5D2F}) (Version: 1.5.30.0 - DSDCS)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 10.0.25.1048 - Intel Corporation)
Intel(R) Network Connections 19.1.51.0 (HKLM\...\PROSetDX) (Version: 19.1.51.0 - Intel)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 13.1.0.1058 - Intel Corporation)
Intel(R) Update Manager (HKLM-x32\...\{84A2B59B-6A7B-4C01-8592-15C9BFE6AC36}) (Version: 2.4.3 - Intel Corporation)
Intel® Chipsatz-Gerätesoftware (x32 Version: 10.0.20 - Intel(R) Corporation) Hidden
JDownloader 2 (HKLM\...\jdownloader2) (Version: 2.0 - AppWork GmbH)
Logitech Gaming Software 8.58 (HKLM\...\Logitech Gaming Software) (Version: 8.58.177 - Logitech Inc.)
Lume (HKLM-x32\...\Steam App 105100) (Version:  - State of Play Games)
Mass Effect 2 (HKLM-x32\...\Steam App 24980) (Version:  - BioWare)
Mass Effect 3 (HKLM-x32\...\Mass Effect 3_is1) (Version: Mass Effect 3 - )
Metro Redux (HKLM-x32\...\Metro Redux_is1) (Version: Metro Redux - )
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{b341426f-8543-4e0d-96c3-e976f8ec5ab6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{4fd02573-5f12-4ae4-8027-c63f8e1115af}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
Microsoft-Maus- und Tastatur-Center (HKLM\...\Microsoft Mouse and Keyboard Center) (Version: 2.3.188.0 - Microsoft Corporation)
MirrorMoon EP (HKLM-x32\...\Steam App 231310) (Version:  - Santa Ragione)
Nidhogg (HKLM-x32\...\Steam App 94400) (Version:  - Messhof)
Nosgoth (HKLM-x32\...\Steam App 200110) (Version:  - Psyonix)
NVIDIA 3D Vision Controller-Treiber 349.95 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 349.95 - NVIDIA Corporation)
NVIDIA 3D Vision Treiber 350.12 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 350.12 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.4.1.21 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.4.1.21 - NVIDIA Corporation)
NVIDIA Grafiktreiber 350.12 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 350.12 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.33.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.33.0 - NVIDIA Corporation)
NVIDIA Miracast Virtueller Ton 350.12 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Miracast.VirtualAudio) (Version: 350.12 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.15.0324 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0324 - NVIDIA Corporation)
Ori and the Blind Forest (HKLM-x32\...\Ori and the Blind Forest_is1) (Version:  - )
Origin (HKLM-x32\...\Origin) (Version: 9.5.12.2862 - Electronic Arts, Inc.)
Outlast (HKLM-x32\...\Steam App 238320) (Version:  - Red Barrels)
Papers, Please (HKLM-x32\...\Steam App 239030) (Version:  - 3909)
PAYDAY 2 (HKLM-x32\...\Steam App 218620) (Version:  - OVERKILL - a Starbreeze Studio.)
Pillars of Eternity (HKLM-x32\...\1207666813_is1) (Version: 2.0.0.1 - GOG.com)
Pixel Piracy (HKLM-x32\...\Steam App 264140) (Version:  - Vitali Kirpu)
Portal (HKLM-x32\...\Steam App 400) (Version:  - Valve)
Portal 2 (HKLM-x32\...\Steam App 620) (Version:  - Valve)
Qualcomm Atheros Inc.(R) AR81Family Gigabit/Fast Ethernet Driver (HKLM-x32\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 2.1.0.21 - Qualcomm Atheros Inc.)
RaidCall (HKLM-x32\...\RaidCall) (Version: 7.3.6-1.0.13004.105 - raidcall.com)
Rainmeter (HKLM-x32\...\Rainmeter) (Version: 3.3 beta r2412 - )
Razer Synapse (HKLM-x32\...\{0D78BEE2-F8FF-4498-AF1A-3FF81CED8AC6}) (Version: 1.18.19.25502 - Razer Inc.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7195 - Realtek Semiconductor Corp.)
Revo Uninstaller 1.95 (HKLM-x32\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.1.5.8 - Rockstar Games)
Samsung Kies (HKLM-x32\...\InstallShield_{758C8301-2696-4855-AF45-534B1200980A}) (Version: 2.6.3.15013.18 - Samsung Electronics Co., Ltd.)
Samsung Kies (x32 Version: 2.6.3.15013.18 - Samsung Electronics Co., Ltd.) Hidden
SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.49.0 - SAMSUNG Electronics Co., Ltd.)
SHIELD Streaming (Version: 4.1.1000 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 2.4.1.21 - NVIDIA Corporation) Hidden
Shovel Knight (HKLM-x32\...\Steam App 250760) (Version:  - Yacht Club Games)
Sid Meiers Civilization Beyond Earth (HKLM-x32\...\U2lkTWVpZXJzQ2l2aWxpemF0aW9uQmV5b25kRWFydGg=_is1) (Version: 1 - )
Sleeping Dogs™ (HKLM-x32\...\Steam App 202170) (Version:  - United Front Games)
South Park Der Stab der Wahrheit Version 1.4 (HKLM-x32\...\South Park Der Stab der Wahrheit_is1) (Version: 1.4 - RFT)
SpeedRunners (HKLM-x32\...\Steam App 207140) (Version:  - DoubleDutch Games)
Spotify (HKU\S-1-5-21-2577149796-2635466800-2005262636-1002\...\Spotify) (Version: 1.0.4.90.g0b6df40b - Spotify AB)
StartIsBack+ (HKLM-x32\...\StartIsBack) (Version: 1.7.5 - startisback.com)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Super Crate Box (HKLM-x32\...\Steam App 212800) (Version:  - Vlambeer)
Survarium (HKLM-x32\...\Steam App 355840) (Version:  - Vostok Games)
Survarium-Steam (HKLM-x32\...\{A3D9343D-77CD-4bf4-A47A-F87B3BE985B4}_is1) (Version: 0.27d - )
Syndicate (HKLM-x32\...\{64CFBAAB-46F7-4628-8D9B-E656A8C11CDB}) (Version: 2.0.0.3 - Electronic Arts)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
TERA (HKLM-x32\...\Steam App 323370) (Version:  - En Masse Entertainment)
The Banner Saga (HKLM-x32\...\Steam App 237990) (Version:  - Stoic)
The Elder Scrolls V Skyrim - Legendary Edition (HKLM-x32\...\The Elder Scrolls V Skyrim - Legendary Edition_is1) (Version:  - )
The Stanley Parable (HKLM-x32\...\Steam App 221910) (Version:  - Galactic Cafe)
The Vanishing of Ethan Carter (HKLM-x32\...\The Vanishing of Ethan Carter_is1) (Version:  - )
The Walking Dead (HKLM-x32\...\Steam App 207610) (Version:  - )
The Walking Dead: Season Two (HKLM-x32\...\Steam App 261030) (Version:  - Telltale Games)
The Witcher 2: Assassins of Kings Enhanced Edition (HKLM-x32\...\Steam App 20920) (Version:  - CD PROJEKT RED)
The Witcher 3: Wild Hunt (HKLM-x32\...\Steam App 292030) (Version:  - CD PROJEKT RED)
The Witcher: Enhanced Edition (HKLM-x32\...\Steam App 20900) (Version:  - CD PROJEKT RED)
The Wolf Among Us (HKLM-x32\...\Steam App 250320) (Version:  - Telltale Games)
Thief (HKLM-x32\...\Steam App 239160) (Version:  - Eidos-Montréal)
Tomb Raider (HKLM-x32\...\Steam App 203160) (Version:  - Crystal Dynamics)
Torchlight II (HKLM-x32\...\Steam App 200710) (Version:  - Runic Games)
Unepic (HKLM-x32\...\Steam App 233980) (Version:  - Francisco Téllez de Meneses)
Uplay (HKLM-x32\...\Uplay) (Version: 4.9 - Ubisoft)
VLC media player (HKLM\...\VLC media player) (Version: 2.2.1 - VideoLAN)
WAKFU (HKLM-x32\...\Steam App 215080) (Version:  - Ankama Studio)
WildStar (HKLM-x32\...\WildStar) (Version:  - NCSOFT)
WinRAR 5.21 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH)
World of Warcraft (HKLM-x32\...\World of Warcraft) (Version:  - Blizzard Entertainment)
World of Warcraft Classic (HKLM-x32\...\{D55ED80F-FAFD-40E1-99FC-89AF8614A9B5}_is1) (Version: 1.12.1.5875 - Blizzard Entertainment)
World of Warships (HKLM-x32\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C814EU}_is1) (Version:  - Wargaming.net)
World of Warships (HKU\S-1-5-21-2577149796-2635466800-2005262636-1002\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C814eu}_is1) (Version:  - Wargaming.net)
Ys I (HKLM-x32\...\Steam App 223810) (Version:  - Nihon Falcom)
Ys II (HKLM-x32\...\Steam App 223870) (Version:  - Nihon Falcom)
Ys Origin (HKLM-x32\...\Steam App 207350) (Version:  - Nihon Falcom)

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

CustomCLSID: HKU\S-1-5-21-2577149796-2635466800-2005262636-1002_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\Jasch\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2577149796-2635466800-2005262636-1002_Classes\CLSID\{ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C}\InprocServer32 -> C:\Users\Jasch\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2577149796-2635466800-2005262636-1002_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Jasch\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2577149796-2635466800-2005262636-1002_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Jasch\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2577149796-2635466800-2005262636-1002_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Jasch\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2577149796-2635466800-2005262636-1002_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Jasch\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2577149796-2635466800-2005262636-1002_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Jasch\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2577149796-2635466800-2005262636-1002_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Jasch\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2577149796-2635466800-2005262636-1002_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Jasch\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2577149796-2635466800-2005262636-1002_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Jasch\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)

==================== Restore Points  =========================

21-04-2015 06:20:16 DirectX wurde installiert
29-04-2015 05:48:12 Geplanter Prüfpunkt
08-05-2015 05:44:43 Geplanter Prüfpunkt
12-05-2015 20:41:00 avast! antivirus system restore point

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2013-08-22 15:25 - 2013-08-22 15:25 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {1395FF18-46E6-4800-A80E-51384A1BEE8B} - System32\Tasks\FRAPS => C:\Fraps\fraps.exe [2013-02-26] (Beepa P/L)
Task: {287C9390-106D-4528-9FFA-9EAD4D749E78} - System32\Tasks\Microsoft\Windows\Setup\gwx\runappraiser => C:\Windows\system32\GWX\GWXConfigManager.exe [2015-03-24] (Microsoft Corporation)
Task: {307C6A97-1FCF-42B1-AC2C-EC9E74294DA3} - System32\Tasks\Microsoft\Windows\Setup\gwx\launchtrayprocess => C:\Windows\system32\GWX\GWX.exe [2015-03-24] (Microsoft Corporation)
Task: {3A55AB04-D66A-4187-B864-C8078B676E5C} - System32\Tasks\Microsoft_Hardware_Launch_mousekeyboardcenter_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\mousekeyboardcenter.exe [2014-03-19] (Microsoft)
Task: {3B99FEA7-8203-4251-B32B-6D41EF545041} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [2014-04-09] ()
Task: {66028CC7-38C9-42DC-9086-15CB8AC0DAB0} - System32\Tasks\Microsoft_Hardware_Launch_itype_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [2014-03-19] (Microsoft Corporation)
Task: {8ADAE917-BA3C-4A33-91FD-7264097150DB} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-03-11] (Google Inc.)
Task: {CD2B26FD-EB65-4866-AA78-6E8B3CB56BCF} - System32\Tasks\Microsoft_Hardware_Launch_ipoint_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2014-03-19] (Microsoft Corporation)
Task: {CE8A2142-D17F-459C-AC86-F7CE4EC261F1} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxconfig => C:\Windows\system32\GWX\GWXConfigManager.exe [2015-03-24] (Microsoft Corporation)
Task: {D09D1182-4702-4018-B6F5-2BF3FE18C09A} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2015-05-12] (Avast Software s.r.o.)
Task: {D1A23371-9AE1-48B8-A639-ED6FA033AF1D} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxcontent => C:\Windows\system32\GWX\GWXConfigManager.exe [2015-03-24] (Microsoft Corporation)
Task: {E33AFA8C-172B-4354-AEFF-2D1C5FDDBEE1} - System32\Tasks\Microsoft_MKC_Logon_Task_ipoint.exe => C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2014-03-19] (Microsoft Corporation)
Task: {EC022927-6213-4CC3-929D-E380ED50A59F} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-03-11] (Google Inc.)
Task: {F5BE761E-959A-4A40-9947-E1497DE43282} - System32\Tasks\Microsoft_MKC_Logon_Task_itype.exe => C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [2014-03-19] (Microsoft Corporation)
Task: {FCB2EBE5-8D17-42B1-BBCA-F04EDF71C48E} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473-Logon => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [2014-04-09] ()
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) ==============

2015-03-10 11:55 - 2015-04-08 23:30 - 00116552 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2015-02-05 02:24 - 2015-02-05 02:25 - 00187072 _____ () C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
2015-03-11 17:35 - 2015-05-13 23:48 - 00556304 _____ () C:\ProgramData\0780f478-67ce-4ec3-98db-39a65f4618ce\PluginContainer.exe
2014-09-18 09:23 - 2014-09-18 09:23 - 00866584 _____ () C:\Program Files\Logitech Gaming Software\libGLESv2.dll
2015-02-26 20:39 - 2015-02-26 20:39 - 01050904 _____ () C:\Program Files\Logitech Gaming Software\platforms\qwindows.dll
2014-09-18 09:23 - 2014-09-18 09:23 - 00059160 _____ () C:\Program Files\Logitech Gaming Software\libEGL.dll
2015-02-26 20:39 - 2015-02-26 20:39 - 00242456 _____ () C:\Program Files\Logitech Gaming Software\imageformats\qjpeg.dll
2015-03-14 07:49 - 2015-03-14 07:49 - 00291840 _____ () C:\ProgramData\Razer\Synapse\RzStats\RzStats.Manager.exe
2015-05-13 18:42 - 2015-05-13 18:42 - 00422672 _____ () C:\ProgramData\0780f478-67ce-4ec3-98db-39a65f4618ce\plugins\4\plugin.exe
2015-05-13 17:42 - 2015-05-13 17:42 - 01274128 _____ () C:\ProgramData\0780f478-67ce-4ec3-98db-39a65f4618ce\plugins\2\plugin.exe
2015-05-13 19:43 - 2015-05-13 19:43 - 00480528 _____ () C:\ProgramData\0780f478-67ce-4ec3-98db-39a65f4618ce\plugins\3\plugin.exe
2015-05-13 23:49 - 2015-05-13 23:49 - 00639760 _____ () C:\ProgramData\0780f478-67ce-4ec3-98db-39a65f4618ce\plugins\8\plugin.exe
2015-05-13 18:42 - 2015-05-13 18:42 - 00662800 _____ () C:\ProgramData\0780f478-67ce-4ec3-98db-39a65f4618ce\plugins\5\plugin.exe
2015-05-13 14:40 - 2015-05-13 14:40 - 00454928 _____ () C:\ProgramData\0780f478-67ce-4ec3-98db-39a65f4618ce\plugins\6\plugin.exe
2015-05-12 20:41 - 2015-05-12 20:41 - 00104400 _____ () C:\Program Files\AVAST Software\Avast\log.dll
2015-05-12 20:41 - 2015-05-12 20:41 - 00081728 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2015-05-13 21:52 - 2015-05-13 21:52 - 02927616 _____ () C:\Program Files\AVAST Software\Avast\defs\15051302\algo.dll
2015-03-31 16:00 - 2015-03-28 05:45 - 00011920 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2015-04-30 22:21 - 2015-04-28 04:07 - 01252680 _____ () C:\Program Files (x86)\Google\Chrome\Application\42.0.2311.135\libglesv2.dll
2015-04-30 22:21 - 2015-04-28 04:07 - 00080712 _____ () C:\Program Files (x86)\Google\Chrome\Application\42.0.2311.135\libegl.dll
2015-03-11 15:22 - 2015-03-11 15:22 - 40540672 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2015-02-02 09:52 - 2015-02-02 09:52 - 00137728 _____ () C:\ProgramData\Razer\Synapse\CrashReporter\CrashRpt1402.dll
2015-04-30 22:21 - 2015-04-28 04:07 - 14980424 _____ () C:\Program Files (x86)\Google\Chrome\Application\42.0.2311.135\PepperFlash\pepflashplayer.dll
2015-03-11 15:25 - 2015-04-16 19:40 - 00776192 _____ () C:\Program Files (x86)\Steam\SDL2.dll
2015-03-11 15:25 - 2015-04-23 04:16 - 04962816 _____ () C:\Program Files (x86)\Steam\v8.dll
2015-03-11 15:25 - 2015-05-12 00:03 - 02396352 _____ () C:\Program Files (x86)\Steam\video.dll
2015-03-11 15:25 - 2015-04-23 04:16 - 01556992 _____ () C:\Program Files (x86)\Steam\icui18n.dll
2015-03-11 15:25 - 2015-04-23 04:16 - 01187840 _____ () C:\Program Files (x86)\Steam\icuuc.dll
2015-03-11 15:25 - 2014-12-01 23:31 - 02396672 _____ () C:\Program Files (x86)\Steam\libavcodec-56.dll
2015-03-11 15:25 - 2014-12-01 23:31 - 00479744 _____ () C:\Program Files (x86)\Steam\libavformat-56.dll
2015-03-11 15:25 - 2014-12-01 23:31 - 00332800 _____ () C:\Program Files (x86)\Steam\libavresample-2.dll
2015-03-11 15:25 - 2014-12-01 23:31 - 00442880 _____ () C:\Program Files (x86)\Steam\libavutil-54.dll
2015-03-11 15:25 - 2014-12-01 23:31 - 00485888 _____ () C:\Program Files (x86)\Steam\libswscale-3.dll
2015-03-11 15:25 - 2015-05-12 00:03 - 00703168 _____ () C:\Program Files (x86)\Steam\bin\chromehtml.DLL
2015-03-11 15:25 - 2015-05-11 21:01 - 36302728 _____ () C:\Program Files (x86)\Steam\bin\libcef.dll
2015-03-14 22:55 - 2014-11-26 04:12 - 40622592 _____ () C:\Users\Jasch\AppData\Local\razer\InGameEngine\cache\RzStats.Manager\cef\libcef.dll
2015-03-14 22:55 - 2014-11-26 04:12 - 00911360 _____ () C:\Users\Jasch\AppData\Local\razer\InGameEngine\cache\RzStats.Manager\cef\libglesv2.dll
2015-03-14 22:55 - 2014-11-26 04:12 - 00134144 _____ () C:\Users\Jasch\AppData\Local\razer\InGameEngine\cache\RzStats.Manager\cef\libegl.dll
2014-06-24 17:08 - 2014-06-24 17:08 - 01241560 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)


==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== EXE Association (whitelisted) ===============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, the associated entry will be removed from the registry.)

IE trusted site: HKU\S-1-5-21-2577149796-2635466800-2005262636-1002\...\clonewarsadventures.com -> clonewarsadventures.com
IE trusted site: HKU\S-1-5-21-2577149796-2635466800-2005262636-1002\...\freerealms.com -> freerealms.com
IE trusted site: HKU\S-1-5-21-2577149796-2635466800-2005262636-1002\...\soe.com -> soe.com
IE trusted site: HKU\S-1-5-21-2577149796-2635466800-2005262636-1002\...\sony.com -> sony.com


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-2577149796-2635466800-2005262636-1002\Control Panel\Desktop\\Wallpaper -> C:\Users\Jasch\Downloads\546342.jpg
DNS Servers: 192.168.178.1

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

HKLM\...\StartupApproved\Run32: => "AvastUI.exe"

==================== FirewallRules (whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{A428E2F5-00A4-445C-B0A9-6C1597084A7A}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{0EA249FB-7E19-4EC4-BCBC-38B1F7632813}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{68A434AC-400A-4C23-8073-AEAC2B29C838}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{A1EE3227-D5EE-4A89-9452-5718413D2966}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{6B629227-5BA4-4B47-88FC-31822E0A6AEB}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{94884C65-DC1D-42AB-A771-451AB7000768}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{5EA49406-2BAA-46C2-851C-8E26742C5DD4}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{5508CBFF-C166-4BD6-ADFA-76D34D21113E}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{2D84D1F2-28EB-4F03-B953-5D453403085B}] => (Allow) C:\Users\Jasch\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [{47EBE97C-6BB8-4BB9-90D0-48447E90E26E}] => (Allow) C:\Users\Jasch\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [{8B1B04C4-330A-44E3-AC94-4085985111FF}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{ED4DE2A2-3ECD-4DB0-A9C5-F19C2B596C25}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{3C2D921F-723B-479B-B66B-C622D991D784}] => (Allow) D:\Battle.net\Battle.net.exe
FirewallRules: [{E89F2FAC-C38D-47DD-BDA2-1DB4B643A2F1}] => (Allow) D:\Battle.net\Battle.net.exe
FirewallRules: [{D712384A-DEC8-4625-983C-1A58DA677607}] => (Allow) C:\Program Files (x86)\Hearthstone\Hearthstone.exe
FirewallRules: [{658C40DD-AEB4-470A-94A1-3E40D0D6228A}] => (Allow) C:\Program Files (x86)\Hearthstone\Hearthstone.exe
FirewallRules: [{069B03CC-6D7D-4C9D-A32C-3248BA998D68}] => (Allow) D:\SteamLibrary\steamapps\common\Half-Life\hl.exe
FirewallRules: [{68E0DD00-6B92-424A-B17E-E75F59820AD2}] => (Allow) D:\SteamLibrary\steamapps\common\Half-Life\hl.exe
FirewallRules: [{763F5B12-1934-409E-941F-04B6B285FDAD}] => (Allow) D:\SteamLibrary\steamapps\common\Thief\Binaries\Win64\Shipping-ThiefGame.exe
FirewallRules: [{BA02BE4D-60C0-462C-858E-C4591FE8DC88}] => (Allow) D:\SteamLibrary\steamapps\common\Thief\Binaries\Win64\Shipping-ThiefGame.exe
FirewallRules: [{8C02FA5C-CA98-4CA1-A74B-DD79AAAEB4B0}] => (Allow) D:\SteamLibrary\steamapps\common\SpeedRunners\SpeedRunners.exe
FirewallRules: [{8934E16B-5CD6-40D6-99D6-4D18A5BB67B9}] => (Allow) D:\SteamLibrary\steamapps\common\SpeedRunners\SpeedRunners.exe
FirewallRules: [{6C0B6200-A849-4D4D-AA2A-F7DCF5523C1F}] => (Allow) D:\SteamLibrary\steamapps\common\H1Z1\LaunchPad.exe
FirewallRules: [{FE55933A-AFA3-4D6F-887B-3C2DBF8098F7}] => (Allow) D:\SteamLibrary\steamapps\common\H1Z1\LaunchPad.exe
FirewallRules: [TCP Query User{9D3AB7FA-A9BB-431A-9D39-90945C53A3BB}D:\steamlibrary\steamapps\common\dayz\dayz.exe] => (Allow) D:\steamlibrary\steamapps\common\dayz\dayz.exe
FirewallRules: [UDP Query User{1D591FE2-E08C-4ACB-AC12-C9D19D59A59D}D:\steamlibrary\steamapps\common\dayz\dayz.exe] => (Allow) D:\steamlibrary\steamapps\common\dayz\dayz.exe
FirewallRules: [{6F27BBA0-D353-4E3C-96BE-1E832C8AA7B6}] => (Allow) C:\Program Files\Logitech Gaming Software\LCore.exe
FirewallRules: [{9C1D100F-7C67-44B6-B259-A59818863129}] => (Allow) C:\Program Files\Logitech Gaming Software\LCore.exe
FirewallRules: [{362D1942-E6E7-4C63-9294-85250AA176BF}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{E09D24F8-0540-47C6-A421-476114B61F2C}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{D1E3992A-F2FE-4D57-AABD-D07A882B061D}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{2A452897-0EB1-4418-B10A-58DB2F20CECD}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [TCP Query User{0169CBA1-9759-4D8C-8D70-56BBE37BDC2D}D:\steamlibrary\steamapps\common\h1z1\h1z1.exe] => (Allow) D:\steamlibrary\steamapps\common\h1z1\h1z1.exe
FirewallRules: [UDP Query User{82242893-AED1-436F-BBF1-C326EC6F2C49}D:\steamlibrary\steamapps\common\h1z1\h1z1.exe] => (Allow) D:\steamlibrary\steamapps\common\h1z1\h1z1.exe
FirewallRules: [{C9A86A78-06C6-4631-A39C-B68FAD275CB1}] => (Allow) D:\SteamLibrary\steamapps\common\SleepingDogs\HKShip.exe
FirewallRules: [{7F0CF4F5-BBDE-4DA7-83CB-2340A5D3091B}] => (Allow) D:\SteamLibrary\steamapps\common\SleepingDogs\HKShip.exe
FirewallRules: [TCP Query User{55D33573-04FD-4DA7-8D90-3460FBCC08BB}C:\users\jasch\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\jasch\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{766CED77-ABBD-46B4-930B-573986B6A924}C:\users\jasch\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\jasch\appdata\roaming\spotify\spotify.exe
FirewallRules: [TCP Query User{BB93D967-713B-4A2C-8654-BC7E69797EB5}D:\far cry 4\bin\farcry4.exe] => (Allow) D:\far cry 4\bin\farcry4.exe
FirewallRules: [UDP Query User{52B3495E-1B76-48C3-86EB-FE47C793EB63}D:\far cry 4\bin\farcry4.exe] => (Allow) D:\far cry 4\bin\farcry4.exe
FirewallRules: [{E32A984A-71FD-4B0C-8270-E65CEF355BC1}] => (Allow) D:\Battle.net\Hearthstone\Hearthstone.exe
FirewallRules: [{C96D4D51-C39F-41A8-B24E-76E0DED11F2C}] => (Allow) D:\Battle.net\Hearthstone\Hearthstone.exe
FirewallRules: [TCP Query User{CE6772B7-F388-4AE7-824A-52E5919273AC}C:\users\jasch\appdata\local\jdownloader v2.0\jdownloader2.exe] => (Block) C:\users\jasch\appdata\local\jdownloader v2.0\jdownloader2.exe
FirewallRules: [UDP Query User{252CEB18-96F5-47E8-ACA1-0AD8B27DFAC7}C:\users\jasch\appdata\local\jdownloader v2.0\jdownloader2.exe] => (Block) C:\users\jasch\appdata\local\jdownloader v2.0\jdownloader2.exe
FirewallRules: [{6143BEFB-8323-429B-9F80-E19DC50A02B5}] => (Allow) D:\Games\AC Rogue\ACC.exe
FirewallRules: [{953ED705-06F3-4418-A482-A164BDFD5F75}] => (Allow) D:\Games\AC Rogue\ACC.exe
FirewallRules: [TCP Query User{F10E4BDB-35EA-40A5-85E6-2CA14B50FF4E}D:\games\far cry 4\bin\farcry4.exe] => (Allow) D:\games\far cry 4\bin\farcry4.exe
FirewallRules: [UDP Query User{9C41E1F1-C609-43AE-854D-4ED3358C55AA}D:\games\far cry 4\bin\farcry4.exe] => (Allow) D:\games\far cry 4\bin\farcry4.exe
FirewallRules: [{6632B3E2-B215-4377-B409-7D44B07AE548}] => (Allow) D:\SteamLibrary\steamapps\common\Deus Ex Human Revolution Director's Cut\DXHRDC.exe
FirewallRules: [{2CBF6991-A77B-4C62-BE3E-71825054407C}] => (Allow) D:\SteamLibrary\steamapps\common\Deus Ex Human Revolution Director's Cut\DXHRDC.exe
FirewallRules: [{2353AD09-23DC-4AAA-AD25-9E386491F029}] => (Allow) D:\SteamLibrary\steamapps\common\Tomb Raider\TombRaider.exe
FirewallRules: [{B192EC39-BD34-4BA7-8CB5-C08B5E3010B2}] => (Allow) D:\SteamLibrary\steamapps\common\Tomb Raider\TombRaider.exe
FirewallRules: [{3C3D5BC9-E1B1-4D04-B93D-C52C6D00BDEC}] => (Allow) D:\SteamLibrary\steamapps\common\dota 2 beta\dota.exe
FirewallRules: [{C2CEA69F-E7EB-4911-B739-BBCCA42149EF}] => (Allow) D:\SteamLibrary\steamapps\common\dota 2 beta\dota.exe
FirewallRules: [{55763A88-AF87-479A-860C-8F1BE43DC649}] => (Allow) D:\SteamLibrary\steamapps\common\Half-Life 2\hl2.exe
FirewallRules: [{9FF058D3-57FC-4E7B-85D0-4D0F11F3E689}] => (Allow) D:\SteamLibrary\steamapps\common\Half-Life 2\hl2.exe
FirewallRules: [{DE605936-B699-45D5-B08B-70D2B80D2490}] => (Allow) D:\SteamLibrary\steamapps\common\Arma 3\arma3.exe
FirewallRules: [{32CC28ED-71A5-4583-ACED-12F144C61F4A}] => (Allow) D:\SteamLibrary\steamapps\common\Arma 3\arma3.exe
FirewallRules: [{B6A68D37-BF36-47C4-88B3-D32BD1552E6D}] => (Allow) D:\SteamLibrary\steamapps\common\Arma 3\arma3launcher.exe
FirewallRules: [{F243CF19-8236-48F2-B134-326AE90684AC}] => (Allow) D:\SteamLibrary\steamapps\common\Arma 3\arma3launcher.exe
FirewallRules: [{83228CA6-C1BC-4C8C-88C2-C00D9F78D308}] => (Allow) C:\Users\Jasch\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{05D1BC32-F479-4F92-87DF-A389DBDB4873}] => (Allow) C:\Users\Jasch\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{5E862747-81AC-4F31-8BF4-3442C216A8DB}] => (Allow) D:\SteamLibrary\steamapps\common\3DMark\3DMarkLauncher.exe
FirewallRules: [{C0E8BFDD-CC8A-4DD0-A20F-35B5C9FCBA67}] => (Allow) D:\SteamLibrary\steamapps\common\3DMark\3DMarkLauncher.exe
FirewallRules: [{8204C9D0-EFB4-4FFD-8C56-C81E11E369EB}] => (Allow) D:\SteamLibrary\steamapps\common\3DMark\bin\x86\3DMark.exe
FirewallRules: [{9514551A-078A-4F47-B759-41CB07C43488}] => (Allow) D:\SteamLibrary\steamapps\common\3DMark\bin\x86\3DMark.exe
FirewallRules: [{95BA32E5-5941-48A4-A00B-225501D8397D}] => (Allow) D:\SteamLibrary\steamapps\common\3DMark\bin\x64\3DMark.exe
FirewallRules: [{BD06B555-20D6-4636-A19D-ABB496AF1966}] => (Allow) D:\SteamLibrary\steamapps\common\3DMark\bin\x64\3DMark.exe
FirewallRules: [{AADF24DD-B943-4C42-A2EA-451E5B2CEE19}] => (Allow) D:\SteamLibrary\steamapps\common\nosgoth\Binaries\Win32\Nosgoth.exe
FirewallRules: [{8303D643-0B3A-4FBC-AEEA-BF069EE2BF8C}] => (Allow) D:\SteamLibrary\steamapps\common\nosgoth\Binaries\Win32\Nosgoth.exe
FirewallRules: [{5B247AC1-4642-4128-A441-1FAAEAFC6057}] => (Allow) D:\SteamLibrary\steamapps\common\Wakfu\transition\transition.exe
FirewallRules: [{6F2BC838-9522-49E5-8030-8FFCBE17691D}] => (Allow) D:\SteamLibrary\steamapps\common\Wakfu\transition\transition.exe
FirewallRules: [TCP Query User{9CA05AF7-A6C4-4690-A748-985F91ABBA1C}D:\steamlibrary\steamapps\common\dayz\dayz.exe] => (Allow) D:\steamlibrary\steamapps\common\dayz\dayz.exe
FirewallRules: [UDP Query User{EE91D4BC-417B-49C2-ABCE-08C0DDEDC3DE}D:\steamlibrary\steamapps\common\dayz\dayz.exe] => (Allow) D:\steamlibrary\steamapps\common\dayz\dayz.exe
FirewallRules: [{25F76477-EB10-477D-92A7-DCBB982FD230}] => (Allow) D:\SteamLibrary\steamapps\common\The Witcher Enhanced Edition\System\witcher.exe
FirewallRules: [{E476A509-7FEB-4FBB-B8CC-4A16375DFA7B}] => (Allow) D:\SteamLibrary\steamapps\common\The Witcher Enhanced Edition\System\witcher.exe
FirewallRules: [{997CEE49-1253-4CA7-B49F-E1EFD27DFEA4}] => (Allow) D:\SteamLibrary\steamapps\common\The Witcher Enhanced Edition\System\djinni!.exe
FirewallRules: [{C41EC134-E153-4EC5-9C68-48B8AF91CEA9}] => (Allow) D:\SteamLibrary\steamapps\common\The Witcher Enhanced Edition\System\djinni!.exe
FirewallRules: [{29D32734-1458-4C12-B7AE-25E3BB131A81}] => (Allow) D:\SteamLibrary\steamapps\common\The Witcher Enhanced Edition\Digital Comic\DigitalComic.exe
FirewallRules: [{6BE1C260-9711-49DE-A4F6-F7E72A729EC0}] => (Allow) D:\SteamLibrary\steamapps\common\The Witcher Enhanced Edition\Digital Comic\DigitalComic.exe
FirewallRules: [TCP Query User{AD04912C-0F0E-4466-81F9-90D616F4FD18}D:\steamlibrary\steamapps\common\h1z1\h1z1.exe] => (Allow) D:\steamlibrary\steamapps\common\h1z1\h1z1.exe
FirewallRules: [UDP Query User{E747ACC3-F42B-4ECC-92C8-69EE693CE1B6}D:\steamlibrary\steamapps\common\h1z1\h1z1.exe] => (Allow) D:\steamlibrary\steamapps\common\h1z1\h1z1.exe
FirewallRules: [TCP Query User{D4FAA045-1387-4CC7-88C7-D13AAD0374ED}C:\users\jasch\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\jasch\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{A05BA291-A46F-44B7-BCA2-0BA0D2CE74B5}C:\users\jasch\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\jasch\appdata\roaming\spotify\spotify.exe
FirewallRules: [TCP Query User{E3178FF2-2FA8-42D1-B716-D78435447464}C:\program files (x86)\metro 2033 redux\metro_benchmark.exe] => (Allow) C:\program files (x86)\metro 2033 redux\metro_benchmark.exe
FirewallRules: [UDP Query User{2FB4AEAB-CED0-4800-82EE-B4E20719EFCF}C:\program files (x86)\metro 2033 redux\metro_benchmark.exe] => (Allow) C:\program files (x86)\metro 2033 redux\metro_benchmark.exe
FirewallRules: [TCP Query User{848E2C76-7691-4461-977D-B3B8C4DB7F3E}C:\program files (x86)\deep silver\metro redux\metro 2033 redux\metro_benchmark.exe] => (Allow) C:\program files (x86)\deep silver\metro redux\metro 2033 redux\metro_benchmark.exe
FirewallRules: [UDP Query User{F9E0FA7F-38D1-42C0-B8C4-4179FF7C9B85}C:\program files (x86)\deep silver\metro redux\metro 2033 redux\metro_benchmark.exe] => (Allow) C:\program files (x86)\deep silver\metro redux\metro 2033 redux\metro_benchmark.exe
FirewallRules: [TCP Query User{B0844BE9-CEEA-4729-BDEB-44A66FAF38E2}D:\games\divinity\shipping\eocapp.exe] => (Allow) D:\games\divinity\shipping\eocapp.exe
FirewallRules: [UDP Query User{3393A539-0B06-44BA-B533-F6E209DE8044}D:\games\divinity\shipping\eocapp.exe] => (Allow) D:\games\divinity\shipping\eocapp.exe
FirewallRules: [TCP Query User{53D8FCDD-C8E5-4404-8CFE-BE16D7E0A777}D:\games\vanishing of ethan carter\binaries\win64\astronautsgame-win64-shipping.exe] => (Allow) D:\games\vanishing of ethan carter\binaries\win64\astronautsgame-win64-shipping.exe
FirewallRules: [UDP Query User{301199F9-17AE-4502-AEDE-1593197B6435}D:\games\vanishing of ethan carter\binaries\win64\astronautsgame-win64-shipping.exe] => (Allow) D:\games\vanishing of ethan carter\binaries\win64\astronautsgame-win64-shipping.exe
FirewallRules: [{980BC4B1-5891-4558-AD68-4B3129188FB7}] => (Allow) D:\SteamLibrary\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{C9AAA964-5DBC-4EFE-9D78-611219206B3A}] => (Allow) D:\SteamLibrary\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [TCP Query User{DC6FE9E6-523D-42F9-9096-D635900D337E}D:\games\world of warships\wowslauncher.exe] => (Allow) D:\games\world of warships\wowslauncher.exe
FirewallRules: [UDP Query User{9411BFC7-0CB4-4564-8989-9A0680827B57}D:\games\world of warships\wowslauncher.exe] => (Allow) D:\games\world of warships\wowslauncher.exe
FirewallRules: [{ECFA988E-E52E-40B8-98F4-333C53376A39}] => (Allow) D:\SteamLibrary\steamapps\common\supercratebox\supercratebox.exe
FirewallRules: [{1DDC726C-B72D-4EC3-8ADE-087798965623}] => (Allow) D:\SteamLibrary\steamapps\common\supercratebox\supercratebox.exe
FirewallRules: [{A1B14460-2A51-4161-A020-359056737705}] => (Allow) D:\SteamLibrary\steamapps\common\DayZ\DayZ_BE.exe
FirewallRules: [{C944C8BE-8E1A-4D5A-8690-827F5F383C82}] => (Allow) D:\SteamLibrary\steamapps\common\DayZ\DayZ_BE.exe
FirewallRules: [TCP Query User{D1134A74-3010-4BD1-BE38-4CAD15E761AB}D:\games\mass effect 3\binaries\win32\masseffect3.exe] => (Block) D:\games\mass effect 3\binaries\win32\masseffect3.exe
FirewallRules: [UDP Query User{5FA0565D-1CCD-4793-94EB-51B24F4CEFCF}D:\games\mass effect 3\binaries\win32\masseffect3.exe] => (Block) D:\games\mass effect 3\binaries\win32\masseffect3.exe
FirewallRules: [{C12587D2-7721-4076-A395-187568C15306}] => (Allow) D:\SteamLibrary\steamapps\common\Hawken\Binaries\Win32\HawkenGame-Win32-Shipping.exe
FirewallRules: [{E8980F81-2A7A-4AC0-9A62-C55FCA60ABE5}] => (Allow) D:\SteamLibrary\steamapps\common\Hawken\Binaries\Win32\HawkenGame-Win32-Shipping.exe
FirewallRules: [{0FDA4E6C-BFF1-46BD-9483-C73E121DB2B3}] => (Allow) D:\SteamLibrary\steamapps\common\Survarium\temp\survarium_launcher.exe
FirewallRules: [{F871B07B-C6D2-469F-ABC4-5C639E8E7F88}] => (Allow) D:\SteamLibrary\steamapps\common\Survarium\temp\survarium_updater.exe
FirewallRules: [{A1394C47-83A3-4CD8-B420-4DF05A1F04BD}] => (Allow) D:\SteamLibrary\steamapps\common\Survarium\temp\survarium_updater.exe
FirewallRules: [{642F275F-B85D-48D8-8DE4-ED81F1865B4B}] => (Allow) D:\SteamLibrary\steamapps\common\Survarium\temp\survarium_updater.exe
FirewallRules: [{4A733EC8-982A-4C4F-A1FC-3146C61384E4}] => (Allow) D:\SteamLibrary\steamapps\common\Survarium\temp\survarium_updater.exe
FirewallRules: [{D16DE861-7778-4C2C-A141-22430A1A253A}] => (Allow) D:\SteamLibrary\steamapps\common\Survarium\game\binaries\x86\survarium.exe
FirewallRules: [{F92E839D-499D-4A81-9C83-F8891E6297C0}] => (Allow) D:\SteamLibrary\steamapps\common\Survarium\game\binaries\x86\survarium.exe
FirewallRules: [TCP Query User{91A54CB3-439E-498A-AA07-EED815789344}D:\steamlibrary\steamapps\common\survarium\game\binaries\x86\survarium.exe] => (Allow) D:\steamlibrary\steamapps\common\survarium\game\binaries\x86\survarium.exe
FirewallRules: [UDP Query User{3B5D93B7-8FC1-4FAD-BECC-729A8C83B2BA}D:\steamlibrary\steamapps\common\survarium\game\binaries\x86\survarium.exe] => (Allow) D:\steamlibrary\steamapps\common\survarium\game\binaries\x86\survarium.exe
FirewallRules: [{C85F98C4-DA89-4818-BDDD-A0DFE1D9CEE9}] => (Allow) D:\SteamLibrary\steamapps\common\Ys I\ys1plus.exe
FirewallRules: [{1BFA5570-DC04-41FE-A82D-0A4EADF4F67E}] => (Allow) D:\SteamLibrary\steamapps\common\Ys I\ys1plus.exe
FirewallRules: [{7E638BA4-9343-423A-B478-56BA6311AC5B}] => (Allow) D:\SteamLibrary\steamapps\common\Ys I\config.exe
FirewallRules: [{A09333E1-A5EB-4FF7-9AAB-88318915FA74}] => (Allow) D:\SteamLibrary\steamapps\common\Ys I\config.exe
FirewallRules: [{4D1A57E6-E81A-4553-B064-63FF68590190}] => (Allow) D:\SteamLibrary\steamapps\common\Ys II\ys2plus.exe
FirewallRules: [{66AED8CA-368A-47C6-933C-B15209378BCF}] => (Allow) D:\SteamLibrary\steamapps\common\Ys II\ys2plus.exe
FirewallRules: [{B0E8C358-2EA2-4DE1-8AC1-F80454229E67}] => (Allow) D:\SteamLibrary\steamapps\common\Ys II\config.exe
FirewallRules: [{A2522D9E-1814-4F34-A2C2-D610629C17F0}] => (Allow) D:\SteamLibrary\steamapps\common\Ys II\config.exe
FirewallRules: [{9CD6B7B0-D78E-4C6A-B61D-24D923BE4285}] => (Allow) D:\SteamLibrary\steamapps\common\Ys Origin\yso_win.exe
FirewallRules: [{3823A811-2F24-41FD-8F8B-66057C79DF4C}] => (Allow) D:\SteamLibrary\steamapps\common\Ys Origin\yso_win.exe
FirewallRules: [{8353B0FF-BDEA-4EF6-80A4-41C18E323791}] => (Allow) D:\SteamLibrary\steamapps\common\Ys Origin\config.exe
FirewallRules: [{38F684B5-533A-45C3-980B-0F281348D9C3}] => (Allow) D:\SteamLibrary\steamapps\common\Ys Origin\config.exe
FirewallRules: [{F82F0772-8097-48CE-B65A-95C0128A0FCA}] => (Allow) D:\SteamLibrary\steamapps\common\Shovel Knight\ShovelKnight.exe
FirewallRules: [{BADF8670-252C-47DE-BCB8-E27F6FC1EB22}] => (Allow) D:\SteamLibrary\steamapps\common\Shovel Knight\ShovelKnight.exe
FirewallRules: [{68E8677E-DDB3-4E64-B01F-4FC756F2447C}] => (Allow) D:\SteamLibrary\steamapps\common\Nidhogg\Nidhogg.exe
FirewallRules: [{20820483-DC57-4FAC-868C-4834978BC5DB}] => (Allow) D:\SteamLibrary\steamapps\common\Nidhogg\Nidhogg.exe
FirewallRules: [{5D17C59D-7A56-493F-8987-ACB31195E38B}] => (Allow) D:\SteamLibrary\steamapps\common\Arma 2\arma2.exe
FirewallRules: [{7616B7F2-2DDD-471C-920D-F1A779E721CD}] => (Allow) D:\SteamLibrary\steamapps\common\Arma 2\arma2.exe
FirewallRules: [{EEAB1CCF-6125-4ED9-B19F-2EE3062EDEF2}] => (Allow) D:\SteamLibrary\steamapps\common\Lume\Lume.exe
FirewallRules: [{0BC212B1-6893-43FA-95B5-7EF21C4EB920}] => (Allow) D:\SteamLibrary\steamapps\common\Lume\Lume.exe
FirewallRules: [{67F1A9CA-C943-4CB1-ACC9-58197880BB65}] => (Allow) D:\SteamLibrary\steamapps\common\PapersPlease\PapersPlease.exe
FirewallRules: [{BCBB6636-F818-46C0-A988-D4A37B202F93}] => (Allow) D:\SteamLibrary\steamapps\common\PapersPlease\PapersPlease.exe
FirewallRules: [{3DE28FBA-08AF-49EF-891F-E10407488BF8}] => (Allow) D:\SteamLibrary\steamapps\common\PAYDAY 2\payday2_win32_release.exe
FirewallRules: [{F5260715-62CB-465B-B7B1-6B1D5846940F}] => (Allow) D:\SteamLibrary\steamapps\common\PAYDAY 2\payday2_win32_release.exe
FirewallRules: [{B0253630-CB06-4C4E-B0CF-0ECFD54A8D08}] => (Allow) D:\SteamLibrary\steamapps\common\Portal\hl2.exe
FirewallRules: [{C4881D7B-E76D-46EA-871F-5B6070899477}] => (Allow) D:\SteamLibrary\steamapps\common\Portal\hl2.exe
FirewallRules: [{A11789F5-0CDC-44C1-AB0D-BD4691492570}] => (Allow) D:\SteamLibrary\steamapps\common\Portal 2\portal2.exe
FirewallRules: [{693965F7-1263-45EE-97E1-734A4E1F081A}] => (Allow) D:\SteamLibrary\steamapps\common\Portal 2\portal2.exe
FirewallRules: [{9E821329-98F3-446F-A404-277CC32D5A27}] => (Allow) D:\SteamLibrary\steamapps\common\The Stanley Parable\stanley.exe
FirewallRules: [{C3B49149-31E5-4209-8935-9D23A07EE148}] => (Allow) D:\SteamLibrary\steamapps\common\The Stanley Parable\stanley.exe
FirewallRules: [{4C36151E-D553-4641-A86D-0DC19C462BD6}] => (Allow) D:\SteamLibrary\steamapps\common\The Wolf Among Us\TheWolfAmongUs.exe
FirewallRules: [{1D2A3F13-7C0D-43A2-B00E-CA65B9AAF0B3}] => (Allow) D:\SteamLibrary\steamapps\common\The Wolf Among Us\TheWolfAmongUs.exe
FirewallRules: [{11CD40F7-E15E-466B-B7B3-1638F958D646}] => (Allow) D:\SteamLibrary\steamapps\common\The Walking Dead\WalkingDead101.exe
FirewallRules: [{AC66C2BA-5693-428C-8ED7-69DEDB69274F}] => (Allow) D:\SteamLibrary\steamapps\common\The Walking Dead\WalkingDead101.exe
FirewallRules: [{B208BC5B-02D4-4DA8-AA3A-94B26D5B9318}] => (Allow) D:\SteamLibrary\steamapps\common\The Walking Dead Season Two\TheWalkingDead2.exe
FirewallRules: [{CB82052A-FED9-4C1F-B27C-07B62ADC75DB}] => (Allow) D:\SteamLibrary\steamapps\common\The Walking Dead Season Two\TheWalkingDead2.exe
FirewallRules: [{70E382B6-117E-4973-9154-C39C95C44C81}] => (Allow) D:\SteamLibrary\steamapps\common\DmC Devil May Cry\Binaries\Win32\DMC-DevilMayCry.exe
FirewallRules: [{1304BFB5-6690-440F-BE02-170F3C1BE5AC}] => (Allow) D:\SteamLibrary\steamapps\common\DmC Devil May Cry\Binaries\Win32\DMC-DevilMayCry.exe
FirewallRules: [{5E3376B4-2D3A-4830-989B-687B1EAA45AC}] => (Allow) D:\SteamLibrary\steamapps\common\140\140.exe
FirewallRules: [{305321CD-6BEF-4A2B-B9CD-00E4F94DE2D3}] => (Allow) D:\SteamLibrary\steamapps\common\140\140.exe
FirewallRules: [{1C0E590C-FD5A-4843-A75C-F2CFA1EB65FA}] => (Allow) D:\SteamLibrary\steamapps\common\MirrorMoonEP\MirrorMoonEP.exe
FirewallRules: [{EC4C78EB-5D58-407C-A0D1-18C9477DE4D7}] => (Allow) D:\SteamLibrary\steamapps\common\MirrorMoonEP\MirrorMoonEP.exe
FirewallRules: [{A87A467D-8C2D-46AD-9E89-E6F1BB4CEB0C}] => (Allow) D:\SteamLibrary\steamapps\common\Pixel Piracy\PixelPiracy.exe
FirewallRules: [{A053420B-6C37-4F33-8556-04F2B421F108}] => (Allow) D:\SteamLibrary\steamapps\common\Pixel Piracy\PixelPiracy.exe
FirewallRules: [{689DF153-F24C-4EB3-9596-10A8D73C00CB}] => (Allow) D:\SteamLibrary\steamapps\common\Grand Theft Auto V\GTAVLauncher.exe
FirewallRules: [{FDD72598-A4C9-4B9E-A2A4-5E96C5A4B196}] => (Allow) D:\SteamLibrary\steamapps\common\Grand Theft Auto V\GTAVLauncher.exe
FirewallRules: [TCP Query User{F221A2A1-CDBC-42AD-A93B-F452ADCACA1A}D:\steamlibrary\steamapps\common\grand theft auto v\gta5.exe] => (Allow) D:\steamlibrary\steamapps\common\grand theft auto v\gta5.exe
FirewallRules: [UDP Query User{14280FDB-FC29-467F-A27B-BA015D44CD55}D:\steamlibrary\steamapps\common\grand theft auto v\gta5.exe] => (Allow) D:\steamlibrary\steamapps\common\grand theft auto v\gta5.exe
FirewallRules: [TCP Query User{2C433EF0-9004-4BDC-BF6E-A4B6485CD8A7}C:\program files (x86)\steam\steamapps\grand theft auto v\gta5.exe] => (Allow) C:\program files (x86)\steam\steamapps\grand theft auto v\gta5.exe
FirewallRules: [UDP Query User{696D218B-52DC-4BBA-9427-1F2F62E53408}C:\program files (x86)\steam\steamapps\grand theft auto v\gta5.exe] => (Allow) C:\program files (x86)\steam\steamapps\grand theft auto v\gta5.exe
FirewallRules: [{4EFBFAEF-C6BB-479C-8963-3DBEB5C9F2F3}] => (Allow) D:\SteamLibrary\steamapps\common\Torchlight II\ModLauncher.exe
FirewallRules: [{216EF548-106A-43EE-AE8F-5C76BF2C921A}] => (Allow) D:\SteamLibrary\steamapps\common\Torchlight II\ModLauncher.exe
FirewallRules: [TCP Query User{7D0F8A5F-2509-47E6-AA10-5C3DE4D50E24}C:\program files (x86)\a3launcher\a3launcher.exe] => (Allow) C:\program files (x86)\a3launcher\a3launcher.exe
FirewallRules: [UDP Query User{669CDB72-5623-417C-B307-A7D974C6F386}C:\program files (x86)\a3launcher\a3launcher.exe] => (Allow) C:\program files (x86)\a3launcher\a3launcher.exe
FirewallRules: [{A1B4F96A-EA19-42F5-9C1F-678A89C51ABF}] => (Allow) D:\SteamLibrary\steamapps\common\Outlast\OutlastLauncher.exe
FirewallRules: [{8F29B4E4-2FF2-46A0-993E-EBD2C8982A2E}] => (Allow) D:\SteamLibrary\steamapps\common\Outlast\OutlastLauncher.exe
FirewallRules: [{8697DC61-444E-46C9-971D-19706E3921D1}] => (Allow) C:\Program Files (x86)\Origin Games\Syndicate (1993)\data\Game\DOSBox\LAUNCHER.exe
FirewallRules: [{687FAAD0-6F46-41F9-9645-6FED545810E0}] => (Allow) C:\Program Files (x86)\Origin Games\Syndicate (1993)\data\Game\DOSBox\LAUNCHER.exe
FirewallRules: [{6C8A36D3-EFAC-4A6C-8CCD-CF6FA5E2C5E5}] => (Allow) D:\Origin\Bejeweled 3\Bejeweled3.exe
FirewallRules: [{882CFE06-FB0B-44C8-A1EE-166165D5D98B}] => (Allow) D:\Origin\Bejeweled 3\Bejeweled3.exe
FirewallRules: [{DBFEE50E-D6B3-4A29-A9CF-026BB4F75D5A}] => (Allow) D:\SteamLibrary\steamapps\common\Dead Space 2\deadspace2.exe
FirewallRules: [{D6F17580-45A6-451D-9DE7-9D46D07DC94C}] => (Allow) D:\SteamLibrary\steamapps\common\Dead Space 2\deadspace2.exe
FirewallRules: [{1D60AAE8-B1BC-45D9-8031-E739578CEAE2}] => (Allow) D:\SteamLibrary\steamapps\common\Mass Effect 2\Binaries\MassEffect2.exe
FirewallRules: [{8F048E3D-16A8-4F14-9952-C5C8E51620D8}] => (Allow) D:\SteamLibrary\steamapps\common\Mass Effect 2\Binaries\MassEffect2.exe
FirewallRules: [{6DBE6F0D-0756-4E94-86D5-1754FE9661BD}] => (Allow) D:\SteamLibrary\steamapps\common\Mass Effect 2\MassEffect2Launcher.exe
FirewallRules: [{0DC8DAA4-62A2-4E62-81D5-CE732AC6B62B}] => (Allow) D:\SteamLibrary\steamapps\common\Mass Effect 2\MassEffect2Launcher.exe
FirewallRules: [{0D9F36B2-4107-48AB-B9D3-12B8ACA71180}] => (Allow) D:\SteamLibrary\steamapps\common\Dragon Age Origins\bin_ship\DAOrigins.exe
FirewallRules: [{6BB0FDD2-407A-4CC7-9A5C-562A7F06B567}] => (Allow) D:\SteamLibrary\steamapps\common\Dragon Age Origins\bin_ship\DAOrigins.exe
FirewallRules: [{5B0ACFAD-B29E-44D9-919C-7F2E6786A606}] => (Allow) D:\SteamLibrary\steamapps\common\Dragon Age Origins\DAOriginsLauncher.exe
FirewallRules: [{9F87D3F0-EB79-46AA-A271-3F89AE24D231}] => (Allow) D:\SteamLibrary\steamapps\common\Dragon Age Origins\DAOriginsLauncher.exe
FirewallRules: [TCP Query User{61B6791A-A36D-46DB-BFE3-F66C7152C279}D:\battle.net\hearthstone\hearthstone.exe] => (Allow) D:\battle.net\hearthstone\hearthstone.exe
FirewallRules: [UDP Query User{9D0AB1A9-EAFB-4757-B540-7E48109199A8}D:\battle.net\hearthstone\hearthstone.exe] => (Allow) D:\battle.net\hearthstone\hearthstone.exe
FirewallRules: [{38A96370-2C4E-4FC8-8F89-DCF77642DB62}] => (Allow) D:\SteamLibrary\steamapps\common\H1Z1 Test\LaunchPad.exe
FirewallRules: [{7CC5BE3B-B145-414D-9652-3153B285787F}] => (Allow) D:\SteamLibrary\steamapps\common\H1Z1 Test\LaunchPad.exe
FirewallRules: [{25A37989-D4BA-474A-B767-4CA979F285EF}] => (Allow) D:\SteamLibrary\steamapps\common\nosgoth\Binaries\Win32\Nosgoth.exe
FirewallRules: [{BD414A13-1908-402F-824F-066128B309D4}] => (Allow) D:\SteamLibrary\steamapps\common\nosgoth\Binaries\Win32\Nosgoth.exe
FirewallRules: [{D87C0926-8ED3-4496-86A3-B94FCC36DD0F}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{B4079F74-1138-40FE-99DF-D24A52B559D6}] => (Allow) D:\SteamLibrary\steamapps\common\the witcher 2\Launcher.exe
FirewallRules: [{FE9F2F8A-02A7-4B5D-9872-17BFC929261B}] => (Allow) D:\SteamLibrary\steamapps\common\the witcher 2\Launcher.exe
FirewallRules: [{D8426BCF-E352-4DA1-8844-0791E8D7BB80}] => (Allow) D:\SteamLibrary\steamapps\common\Unepic\unepic.exe
FirewallRules: [{077AAD8F-6FEA-404E-AFA6-44BB350694DA}] => (Allow) D:\SteamLibrary\steamapps\common\Unepic\unepic.exe
FirewallRules: [TCP Query User{5A5E366F-BCF4-48AA-8802-B5A6F1EDF440}C:\program files (x86)\steam\steamapps\arma 3\arma3.exe] => (Allow) C:\program files (x86)\steam\steamapps\arma 3\arma3.exe
FirewallRules: [UDP Query User{D952C09B-D2AC-470F-BED9-5094454F606E}C:\program files (x86)\steam\steamapps\arma 3\arma3.exe] => (Allow) C:\program files (x86)\steam\steamapps\arma 3\arma3.exe
FirewallRules: [{69C2C989-8EA9-4EFD-924B-DEE9D9947005}] => (Allow) D:\SteamLibrary\steamapps\common\TERA\TERA-Launcher.exe
FirewallRules: [{EC711128-6A87-4D5B-BD2D-C0AB25A8CED5}] => (Allow) D:\SteamLibrary\steamapps\common\TERA\TERA-Launcher.exe
FirewallRules: [{C94EA61A-CB28-4140-A3F3-39E69ED723A9}] => (Allow) D:\SteamLibrary\steamapps\common\3DMark\bin\x86\3DMark.exe
FirewallRules: [{54FE237E-1970-484B-9E81-3B7569448828}] => (Allow) D:\SteamLibrary\steamapps\common\3DMark\bin\x86\3DMark.exe
FirewallRules: [{1E86DEA2-2694-4F62-A42D-AB1CF9E6F9AD}] => (Allow) D:\SteamLibrary\steamapps\common\3DMark\bin\x64\3DMark.exe
FirewallRules: [{D43129D9-68F5-4C52-9800-F15AA763D8B6}] => (Allow) D:\SteamLibrary\steamapps\common\3DMark\bin\x64\3DMark.exe
FirewallRules: [{530C7820-172E-4F98-BD16-8EE742F80975}] => (Allow) D:\SteamLibrary\steamapps\common\tbs\win32\The Banner Saga.exe
FirewallRules: [{809AA726-A857-4F11-A115-58FF82E16F93}] => (Allow) D:\SteamLibrary\steamapps\common\tbs\win32\The Banner Saga.exe

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (05/13/2015 11:55:15 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: MsMpEng.exe, Version: 4.7.205.0, Zeitstempel: 0x54cb5aeb
Name des fehlerhaften Moduls: mpengine.dll, Version: 1.1.9700.0, Zeitstempel: 0x51d28fcb
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000000005615b7
ID des fehlerhaften Prozesses: 0x1dd8
Startzeit der fehlerhaften Anwendung: 0xMsMpEng.exe0
Pfad der fehlerhaften Anwendung: MsMpEng.exe1
Pfad des fehlerhaften Moduls: MsMpEng.exe2
Berichtskennung: MsMpEng.exe3
Vollständiger Name des fehlerhaften Pakets: MsMpEng.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: MsMpEng.exe5

Error: (05/13/2015 11:51:26 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: MsMpEng.exe, Version: 4.7.205.0, Zeitstempel: 0x54cb5aeb
Name des fehlerhaften Moduls: mpengine.dll, Version: 1.1.9700.0, Zeitstempel: 0x51d28fcb
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000000005615b7
ID des fehlerhaften Prozesses: 0xe60
Startzeit der fehlerhaften Anwendung: 0xMsMpEng.exe0
Pfad der fehlerhaften Anwendung: MsMpEng.exe1
Pfad des fehlerhaften Moduls: MsMpEng.exe2
Berichtskennung: MsMpEng.exe3
Vollständiger Name des fehlerhaften Pakets: MsMpEng.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: MsMpEng.exe5

Error: (05/13/2015 07:44:37 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: plugin-container.exe, Version: 38.0.0.5606, Zeitstempel: 0x554d0f95
Name des fehlerhaften Moduls: mozalloc.dll, Version: 38.0.0.5606, Zeitstempel: 0x554cfff8
Ausnahmecode: 0x80000003
Fehleroffset: 0x00001aa1
ID des fehlerhaften Prozesses: 0x25c4
Startzeit der fehlerhaften Anwendung: 0xplugin-container.exe0
Pfad der fehlerhaften Anwendung: plugin-container.exe1
Pfad des fehlerhaften Moduls: plugin-container.exe2
Berichtskennung: plugin-container.exe3
Vollständiger Name des fehlerhaften Pakets: plugin-container.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: plugin-container.exe5

Error: (05/13/2015 01:27:07 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: MsMpEng.exe, Version: 4.7.205.0, Zeitstempel: 0x54cb5aeb
Name des fehlerhaften Moduls: mpengine.dll, Version: 1.1.9700.0, Zeitstempel: 0x51d28fcb
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000000005615b7
ID des fehlerhaften Prozesses: 0xcbc
Startzeit der fehlerhaften Anwendung: 0xMsMpEng.exe0
Pfad der fehlerhaften Anwendung: MsMpEng.exe1
Pfad des fehlerhaften Moduls: MsMpEng.exe2
Berichtskennung: MsMpEng.exe3
Vollständiger Name des fehlerhaften Pakets: MsMpEng.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: MsMpEng.exe5

Error: (05/13/2015 01:25:44 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: MsMpEng.exe, Version: 4.7.205.0, Zeitstempel: 0x54cb5aeb
Name des fehlerhaften Moduls: mpengine.dll, Version: 1.1.9700.0, Zeitstempel: 0x51d28fcb
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000000005615b7
ID des fehlerhaften Prozesses: 0xe48
Startzeit der fehlerhaften Anwendung: 0xMsMpEng.exe0
Pfad der fehlerhaften Anwendung: MsMpEng.exe1
Pfad des fehlerhaften Moduls: MsMpEng.exe2
Berichtskennung: MsMpEng.exe3
Vollständiger Name des fehlerhaften Pakets: MsMpEng.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: MsMpEng.exe5

Error: (05/12/2015 09:39:18 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: MsMpEng.exe, Version: 4.7.205.0, Zeitstempel: 0x54cb5aeb
Name des fehlerhaften Moduls: mpengine.dll, Version: 1.1.9700.0, Zeitstempel: 0x51d28fcb
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000000005615b7
ID des fehlerhaften Prozesses: 0x2060
Startzeit der fehlerhaften Anwendung: 0xMsMpEng.exe0
Pfad der fehlerhaften Anwendung: MsMpEng.exe1
Pfad des fehlerhaften Moduls: MsMpEng.exe2
Berichtskennung: MsMpEng.exe3
Vollständiger Name des fehlerhaften Pakets: MsMpEng.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: MsMpEng.exe5

Error: (05/12/2015 09:35:35 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: MsMpEng.exe, Version: 4.7.205.0, Zeitstempel: 0x54cb5aeb
Name des fehlerhaften Moduls: mpengine.dll, Version: 1.1.9700.0, Zeitstempel: 0x51d28fcb
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000000005615b7
ID des fehlerhaften Prozesses: 0x12cc
Startzeit der fehlerhaften Anwendung: 0xMsMpEng.exe0
Pfad der fehlerhaften Anwendung: MsMpEng.exe1
Pfad des fehlerhaften Moduls: MsMpEng.exe2
Berichtskennung: MsMpEng.exe3
Vollständiger Name des fehlerhaften Pakets: MsMpEng.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: MsMpEng.exe5

Error: (05/12/2015 09:32:24 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: MsMpEng.exe, Version: 4.7.205.0, Zeitstempel: 0x54cb5aeb
Name des fehlerhaften Moduls: mpengine.dll, Version: 1.1.9700.0, Zeitstempel: 0x51d28fcb
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000000005615b7
ID des fehlerhaften Prozesses: 0xc70
Startzeit der fehlerhaften Anwendung: 0xMsMpEng.exe0
Pfad der fehlerhaften Anwendung: MsMpEng.exe1
Pfad des fehlerhaften Moduls: MsMpEng.exe2
Berichtskennung: MsMpEng.exe3
Vollständiger Name des fehlerhaften Pakets: MsMpEng.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: MsMpEng.exe5

Error: (05/12/2015 09:30:07 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: MsMpEng.exe, Version: 4.7.205.0, Zeitstempel: 0x54cb5aeb
Name des fehlerhaften Moduls: mpengine.dll, Version: 1.1.9700.0, Zeitstempel: 0x51d28fcb
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000000005615b7
ID des fehlerhaften Prozesses: 0xb88
Startzeit der fehlerhaften Anwendung: 0xMsMpEng.exe0
Pfad der fehlerhaften Anwendung: MsMpEng.exe1
Pfad des fehlerhaften Moduls: MsMpEng.exe2
Berichtskennung: MsMpEng.exe3
Vollständiger Name des fehlerhaften Pakets: MsMpEng.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: MsMpEng.exe5

Error: (05/12/2015 09:24:18 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: MsMpEng.exe, Version: 4.7.205.0, Zeitstempel: 0x54cb5aeb
Name des fehlerhaften Moduls: mpengine.dll, Version: 1.1.9700.0, Zeitstempel: 0x51d28fcb
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000000005615b7
ID des fehlerhaften Prozesses: 0xb98
Startzeit der fehlerhaften Anwendung: 0xMsMpEng.exe0
Pfad der fehlerhaften Anwendung: MsMpEng.exe1
Pfad des fehlerhaften Moduls: MsMpEng.exe2
Berichtskennung: MsMpEng.exe3
Vollständiger Name des fehlerhaften Pakets: MsMpEng.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: MsMpEng.exe5


System errors:
=============
Error: (05/13/2015 11:55:15 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Windows Defender-Dienst" wurde unerwartet beendet. Dies ist bereits 2 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 60000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (05/13/2015 11:51:46 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Steam Client Service" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%1053

Error: (05/13/2015 11:51:46 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Steam Client Service erreicht.

Error: (05/13/2015 11:51:26 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Windows Defender-Dienst" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 60000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (05/13/2015 02:15:44 AM) (Source: DCOM) (EventID: 10010) (User: Jasch-PC)
Description: {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}

Error: (05/13/2015 02:15:13 AM) (Source: DCOM) (EventID: 10010) (User: Jasch-PC)
Description: {1B1F472E-3221-4826-97DB-2C2324D389AE}

Error: (05/13/2015 01:28:18 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Windows Defender-Dienst" wurde unerwartet beendet. Dies ist bereits 3 Mal passiert.

Error: (05/13/2015 01:27:07 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Windows Defender-Dienst" wurde unerwartet beendet. Dies ist bereits 2 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 60000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (05/13/2015 01:25:44 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Windows Defender-Dienst" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 60000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (05/13/2015 01:24:37 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Windows Search" wurde unerwartet beendet. Dies ist bereits 2 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 30000 Millisekunden durchgeführt: Neustart des Diensts.


Microsoft Office Sessions:
=========================
Error: (05/13/2015 11:55:15 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: MsMpEng.exe4.7.205.054cb5aebmpengine.dll1.1.9700.051d28fcbc000000500000000005615b71dd801d08dc719b992b5C:\Program Files\Windows Defender\MsMpEng.exeC:\ProgramData\Microsoft\Windows Defender\Definition Updates\Default\mpengine.dllbc584783-f9ba-11e4-8282-000272ce57e0

Error: (05/13/2015 11:51:26 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: MsMpEng.exe4.7.205.054cb5aebmpengine.dll1.1.9700.051d28fcbc000000500000000005615b7e6001d08dc6f01d5818C:\Program Files\Windows Defender\MsMpEng.exeC:\ProgramData\Microsoft\Windows Defender\Definition Updates\Default\mpengine.dll339cc00a-f9ba-11e4-8282-000272ce57e0

Error: (05/13/2015 07:44:37 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: plugin-container.exe38.0.0.5606554d0f95mozalloc.dll38.0.0.5606554cfff88000000300001aa125c401d08da2f892cec8C:\Program Files (x86)\Mozilla Firefox\plugin-container.exeC:\Program Files (x86)\Mozilla Firefox\mozalloc.dllb908379a-f997-11e4-8281-000272ce57e0

Error: (05/13/2015 01:27:07 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: MsMpEng.exe4.7.205.054cb5aebmpengine.dll1.1.9700.051d28fcbc000000500000000005615b7cbc01d08d0b1be87192C:\Program Files\Windows Defender\MsMpEng.exeC:\ProgramData\Microsoft\Windows Defender\Definition Updates\Default\mpengine.dll6745ac56-f8fe-11e4-8281-000272ce57e0

Error: (05/13/2015 01:25:44 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: MsMpEng.exe4.7.205.054cb5aebmpengine.dll1.1.9700.051d28fcbc000000500000000005615b7e4801d08d0ae9d9488cC:\Program Files\Windows Defender\MsMpEng.exeC:\ProgramData\Microsoft\Windows Defender\Definition Updates\Default\mpengine.dll35cb6123-f8fe-11e4-8281-000272ce57e0

Error: (05/12/2015 09:39:18 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: MsMpEng.exe4.7.205.054cb5aebmpengine.dll1.1.9700.051d28fcbc000000500000000005615b7206001d08ceaf558ee7fC:\Program Files\Windows Defender\MsMpEng.exeC:\ProgramData\Microsoft\Windows Defender\Definition Updates\Default\mpengine.dll941c78bf-f8de-11e4-8280-000272ce57e0

Error: (05/12/2015 09:35:35 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: MsMpEng.exe4.7.205.054cb5aebmpengine.dll1.1.9700.051d28fcbc000000500000000005615b712cc01d08cea838a481fC:\Program Files\Windows Defender\MsMpEng.exeC:\ProgramData\Microsoft\Windows Defender\Definition Updates\Default\mpengine.dll0f3b2d6d-f8de-11e4-8280-000272ce57e0

Error: (05/12/2015 09:32:24 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: MsMpEng.exe4.7.205.054cb5aebmpengine.dll1.1.9700.051d28fcbc000000500000000005615b7c7001d08cea5cb20496C:\Program Files\Windows Defender\MsMpEng.exeC:\ProgramData\Microsoft\Windows Defender\Definition Updates\Default\mpengine.dll9d4518ef-f8dd-11e4-8280-000272ce57e0

Error: (05/12/2015 09:30:07 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: MsMpEng.exe4.7.205.054cb5aebmpengine.dll1.1.9700.051d28fcbc000000500000000005615b7b8801d08cea085027c0C:\Program Files\Windows Defender\MsMpEng.exeC:\ProgramData\Microsoft\Windows Defender\Definition Updates\Default\mpengine.dll4b4e0974-f8dd-11e4-827f-000272ce57e0

Error: (05/12/2015 09:24:18 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: MsMpEng.exe4.7.205.054cb5aebmpengine.dll1.1.9700.051d28fcbc000000500000000005615b7b9801d08ce93a202196C:\Program Files\Windows Defender\MsMpEng.exeC:\ProgramData\Microsoft\Windows Defender\Definition Updates\Default\mpengine.dll7b3edbe8-f8dc-11e4-827e-000272ce57e0


==================== Memory info =========================== 

Processor: Intel(R) Core(TM) i7-5960X CPU @ 3.00GHz
Percentage of memory in use: 8%
Total physical RAM: 32693.84 MB
Available physical RAM: 29879.36 MB
Total Pagefile: 65461.84 MB
Available Pagefile: 62140.96 MB
Total Virtual: 131072 MB
Available Virtual: 131071.83 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:476.42 GB) (Free:196.88 GB) NTFS
Drive d: (Data) (Fixed) (Total:3725.9 GB) (Free:2493.22 GB) NTFS
Drive f: (Dragon.Age.Inqui) (CDROM) (Total:0.38 GB) (Free:0 GB) CDFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 476.9 GB) (Disk ID: 00000000)

Partition: GPT Partition Type.

========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 3726 GB) (Disk ID: 00000000)

Partition: GPT Partition Type.

==================== End Of Log ============================
         


Alt 14.05.2015, 20:59   #6
Bootsektor
Ruhe in Frieden
† 2019
 
Strong Signal nicht zu Entfernen. - Standard

Strong Signal nicht zu Entfernen.



Hallo,

blödes Zeugs.

Nochmal die ChromeStartseite in google.com ändern

Schritt 1

Drücke bitte die Windowstaste + R Taste und schreibe notepad in das Ausführen Fenster.

Kopiere nun folgenden Text aus der Code-Box in das leere Textdokument

Code:
ATTFilter
CHR Extension: (Strong Signal) - C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\ldpclljhefhlahjipacagpcjolbejgcm [2015-05-13]
R2 Service Mgr StrongSignal; C:\ProgramData\0780f478-67ce-4ec3-98db-39a65f4618ce\PluginContainer.exe [556304 2015-05-13] ()
C:\Program Files (x86)\Strong Signal
C:\ProgramData\0780f478-67ce-4ec3-98db-39a65f4618ce
C:\ProgramData\DP45977C.lfl
emptytemp:
         

Speichere diese bitte als Fixlist.txt auf deinem Desktop (oder dem Verzeichnis in dem sich FRST befindet).
  • Starte nun FRST erneut und klicke den Entfernen Button.
  • Das Tool erstellt eine Fixlog.txt.
  • Poste mir deren Inhalt.



Schritt 2
Starte noch einmal FRST.
  • Setze den Haken bei addition.txt und drücke auf Scan.
  • Wenn der Scan abgeschlossen ist, werden zwei neue Logfiles FRST.txt und addition.txt erstellt und auf dem Desktop (oder in dem Verzeichnis in dem FRST liegt) gespeichert.
  • Poste den Inhalt dieser Logfiles bitte hier in deinen Thread.
__________________
--> Strong Signal nicht zu Entfernen.

Alt 15.05.2015, 07:15   #7
Jasch91
 
Strong Signal nicht zu Entfernen. - Standard

Strong Signal nicht zu Entfernen.



fixlog
Code:
ATTFilter
Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 14-05-2015 02
Ran by Jasch at 2015-05-15 08:05:30 Run:4
Running from C:\Users\Jasch\Downloads
Loaded Profiles: Jasch (Available profiles: Jasch)
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
CHR Extension: (Strong Signal) - C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\ldpclljhefhlahjipacagpcjolbejgcm [2015-05-13]
R2 Service Mgr StrongSignal; C:\ProgramData\0780f478-67ce-4ec3-98db-39a65f4618ce\PluginContainer.exe [556304 2015-05-13] ()
C:\Program Files (x86)\Strong Signal
C:\ProgramData\0780f478-67ce-4ec3-98db-39a65f4618ce
C:\ProgramData\DP45977C.lfl
emptytemp:
*****************

C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\ldpclljhefhlahjipacagpcjolbejgcm => Moved successfully.
Service Mgr StrongSignal => Unable to stop service
Service Mgr StrongSignal => Service deleted successfully.
C:\Program Files (x86)\Strong Signal => Moved successfully.

"C:\ProgramData\0780f478-67ce-4ec3-98db-39a65f4618ce" directory move:

Could not move "C:\ProgramData\0780f478-67ce-4ec3-98db-39a65f4618ce" directory. => Scheduled to move on reboot.

C:\ProgramData\DP45977C.lfl => Moved successfully.
EmptyTemp: => Removed 513.5 MB temporary data.

Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 2015-05-15 08:07:11)<=

C:\ProgramData\0780f478-67ce-4ec3-98db-39a65f4618ce => Moved successfully.

==== End of Fixlog 08:07:11 ====
         
frst.txt:

FRST Logfile:

FRST Logfile:
Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 14-05-2015 02
Ran by Jasch (administrator) on JASCH-PC on 15-05-2015 08:09:34
Running from C:\Users\Jasch\Downloads
Loaded Profiles: Jasch (Available profiles: Jasch)
Platform: Windows 8.1 (X64) OS Language: Deutsch (Deutschland)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Avast Software s.r.o.) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Broadcom Corporation.) C:\Windows\System32\BtwRSupportService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Beepa P/L) C:\Fraps\fraps.exe
(Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe
(Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe
() C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(DEVGURU Co., LTD.) C:\Program Files (x86)\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.26.9\GoogleCrashHandler.exe
() C:\Program Files (x86)\Common Files\0780f478-67ce-4ec3-98db-39a65f4618ce\Updater.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.26.9\GoogleCrashHandler64.exe
(Intel(R) Corporation) C:\Program Files\Intel\NCS2\WMIProv\ncs2prov.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.3.9600.17709_none_fa7932f59afc2e40\TiWorker.exe
(NVIDIA Corporation) C:\Users\Jasch\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\NvOAWrapperCache.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\LCore.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(Spotify Ltd) C:\Users\Jasch\AppData\Roaming\Spotify\SpotifyWebHelper.exe
(Beepa P/L) C:\Fraps\fraps64.dat
(Disc Soft Ltd) C:\Program Files (x86)\DAEMON Tools Ultra\DiscSoftBusService.exe
(Spotify Ltd) C:\Users\Jasch\AppData\Roaming\Spotify\Spotify.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
(Spotify Ltd) C:\Users\Jasch\AppData\Roaming\Spotify\SpotifyCrashService.exe
(Samsung) C:\Program Files (x86)\Samsung\Kies\Kies.exe
(Spotify Ltd) C:\Users\Jasch\AppData\Roaming\Spotify\Spotify.exe
(Spotify Ltd) C:\Users\Jasch\AppData\Roaming\Spotify\Spotify.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Avast Software s.r.o.) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Razer Inc.) C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe
(Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
() C:\ProgramData\Razer\Synapse\RzStats\RzStats.Manager.exe
(Razer, Inc.) C:\Program Files (x86)\Razer\InGameEngine\32bit\RazerIngameEngine.exe
(Razer, Inc.) C:\Users\Jasch\AppData\Local\Razer\InGameEngine\cache\RzStats.Manager\RzCefRenderProcess.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2673296 2015-03-28] (NVIDIA Corporation)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [287592 2014-05-28] (Intel Corporation)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13667032 2014-02-24] (Realtek Semiconductor)
HKLM\...\Run: [Launch LCore] => C:\Program Files\Logitech Gaming Software\LCore.exe [13318424 2015-02-26] (Logitech Inc.)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [5515496 2015-05-12] (Avast Software s.r.o.)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Razer Synapse] => C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe [590144 2015-04-22] (Razer Inc.)
HKLM-x32\...\Run: [KiesTrayAgent] => C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe [311616 2015-02-24] (Samsung Electronics Co., Ltd.)
HKLM\...\Winlogon: [Userinit] C:\Windows\system32\userinit.exe,C:\Windows\skipmetrosuite.exe,
HKU\S-1-5-21-2577149796-2635466800-2005262636-1002\...\Run: [GoogleChromeAutoLaunch_5287039B98BC68C2D6F0BFD625D75439] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [812872 2015-05-05] (Google Inc.)
HKU\S-1-5-21-2577149796-2635466800-2005262636-1002\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [2888384 2015-05-12] (Valve Corporation)
HKU\S-1-5-21-2577149796-2635466800-2005262636-1002\...\Run: [Spotify Web Helper] => C:\Users\Jasch\AppData\Roaming\Spotify\SpotifyWebHelper.exe [2020920 2015-05-01] (Spotify Ltd)
HKU\S-1-5-21-2577149796-2635466800-2005262636-1002\...\Run: [DAEMON Tools Ultra Agent] => C:\Program Files (x86)\DAEMON Tools Ultra\DTAgent.exe [3732752 2015-02-26] (Disc Soft Ltd)
HKU\S-1-5-21-2577149796-2635466800-2005262636-1002\...\Run: [Spotify] => C:\Users\Jasch\AppData\Roaming\Spotify\Spotify.exe [7168568 2015-05-01] (Spotify Ltd)
HKU\S-1-5-21-2577149796-2635466800-2005262636-1002\...\Run: [KiesPreload] => C:\Program Files (x86)\Samsung\Kies\Kies.exe [1565504 2015-02-24] (Samsung)
HKU\S-1-5-21-2577149796-2635466800-2005262636-1002\...\MountPoints2: {7cde29b3-c824-11e4-8257-d0509947abf9} - "F:\Setup.exe" 
HKU\S-1-5-21-2577149796-2635466800-2005262636-1002\...\MountPoints2: {b5ef9f1b-d1a2-11e4-825d-000272ce57e0} - "K:\setup.exe" 
HKU\S-1-5-21-2577149796-2635466800-2005262636-1002\...\MountPoints2: {b5ef9f1e-d1a2-11e4-825d-000272ce57e0} - "L:\setup.exe" 
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Avast Free Antivirus.lnk [2015-03-11]
ShortcutTarget: Avast Free Antivirus.lnk -> C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o.)
ShellIconOverlayIdentifiers: ["DropboxExt1"] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Jasch\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-03-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt2"] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Jasch\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-03-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt3"] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Jasch\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-03-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt4"] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Jasch\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-03-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt5"] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Jasch\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-03-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt6"] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Jasch\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-03-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt7"] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Jasch\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-03-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt8"] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Jasch\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-03-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2015-05-12] (Avast Software s.r.o.)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = https://www.google.com/?trackid=sp-006
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = https://www.google.com/search?trackid=sp-006&q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = 
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = 
HKU\S-1-5-21-2577149796-2635466800-2005262636-1002\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.google.com/search?trackid=sp-006&q={searchTerms}
HKU\S-1-5-21-2577149796-2635466800-2005262636-1002\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.com/?trackid=sp-006
HKU\S-1-5-21-2577149796-2635466800-2005262636-1002\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/de-de/?ocid=iehp
HKU\S-1-5-21-2577149796-2635466800-2005262636-1002\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.google.com/?trackid=sp-006
SearchScopes: HKLM-x32 -> {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = https://www.google.com/search?trackid=sp-006&q={searchTerms}
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-21-2577149796-2635466800-2005262636-1002 -> DefaultScope {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = https://www.google.com/search?trackid=sp-006&q={searchTerms}
SearchScopes: HKU\S-1-5-21-2577149796-2635466800-2005262636-1002 -> {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = https://www.google.com/search?trackid=sp-006&q={searchTerms}
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-05-12] (Avast Software s.r.o.)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-05-12] (Avast Software s.r.o.)
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1

FireFox:
========
FF ProfilePath: C:\Users\Jasch\AppData\Roaming\Mozilla\Firefox\Profiles\897yqm5q.default
FF Plugin: @videolan.org/vlc,version=2.2.0 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-16] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-16] (VideoLAN)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2014-06-24] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2014-06-24] (Intel Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-04-08] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-04-08] (NVIDIA Corporation)
FF Plugin-x32: @raidcall.en/RCplugin -> C:\Users\Jasch\AppData\Roaming\raidcall\plugins\nprcplugin.dll [2014-05-27] (Raidcall)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-03-11] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-03-11] (Google Inc.)
FF Extension: Strong Signal - C:\Users\Jasch\AppData\Roaming\Mozilla\Firefox\Profiles\897yqm5q.default\Extensions\{456805be-0bfd-4897-9cd1-cd3d5604efb2}.xpi [2015-05-13]
FF Extension: Adblock Plus - C:\Users\Jasch\AppData\Roaming\Mozilla\Firefox\Profiles\897yqm5q.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2015-05-13]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2015-03-11]
FF Extension: No Name - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} [Not Found]

Chrome: 
=======
CHR HomePage: Default -> hxxp://google.com/
CHR DefaultSuggestURL: Default -> {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&gs_ri={google:suggestRid}&xssi=t&q={searchTerms}&{google:inputType}{google:cursorPosition}{google:currentPageUrl}{google:pageClassification}{google:searchVersion}{google:sessionToken}{google:prefetchQuery}sugkey={google:suggestAPIKeyParameter}
CHR Profile: C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Slides) - C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-03-11]
CHR Extension: (BetterTTV) - C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\ajopnjidmegmdimjlfnijceegpefgped [2015-03-19]
CHR Extension: (Google Docs) - C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-03-11]
CHR Extension: (Google Drive) - C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-03-11]
CHR Extension: (Republic For Chrome ROG Edition) - C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\baddhngpffecbmlmdpnfldobhaaaifde [2015-05-13]
CHR Extension: (Please enter your password) - C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\bfbmjmiodbnnpllbbbfblcplfjjepjdn [2015-03-11]
CHR Extension: (YouTube) - C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-03-11]
CHR Extension: (Adblock Plus) - C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2015-03-11]
CHR Extension: (Adblock for Youtube™) - C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmedhionkhpnakcndndgjdbohmhepckk [2015-03-11]
CHR Extension: (Google Search) - C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-03-11]
CHR Extension: (Google Sheets) - C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-03-11]
CHR Extension: (Hola Better Internet) - C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\gkojfkhlekighikafcpjkiklfbnlmeio [2015-03-11]
CHR Extension: (Bookmark Manager) - C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\gmlllbghnfkpflemihljekbapjopfjik [2015-04-21]
CHR Extension: (Avast Online Security) - C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2015-03-11]
CHR Extension: (feedly) - C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\hipbfijinpcgfogaopmgehiegacbhmob [2015-03-11]
CHR Extension: (Google Keep - notes and lists) - C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\hmjkmjkepdijhoojdojkdfohbdgmmhki [2015-03-11]
CHR Extension: (Dropbox) - C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\ioekoebejdcmnlefjiknokhhafglcjdl [2015-03-11]
CHR Extension: (Google Play) - C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\komhbcfkdcgmcdoenjcjheifdiabikfi [2015-03-11]
CHR Extension: (Chrome Hotword Shared Module) - C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-03-11]
CHR Extension: (Speed Dial 3(Web)) - C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\lceefillmbhhileboicaeakgcikdocmm [2015-03-11]
CHR Extension: (Google Mail Checker) - C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\mihcahmgecmbnbcchbopgniflfhgnkff [2015-03-11]
CHR Extension: (Pocket) - C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\mjcnijlhddpbdemagnpefmlkjdagkogk [2015-03-11]
CHR Extension: (Save to Pocket) - C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\niloccemoadcdkdjlinkgdfekeahmflj [2015-05-13]
CHR Extension: (Google Wallet) - C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-03-11]
CHR Extension: (Google Chrome to Phone Extension) - C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\oadboiipflhobonjjffjbfekfjcgkhco [2015-03-11]
CHR Extension: (Gmail) - C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-03-11]
CHR Extension: (Canvas Rider) - C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\poknhlcknimnnbfcombaooklofipaibk [2015-03-11]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-03-11]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [343336 2015-05-12] (Avast Software s.r.o.)
R2 BcmBtRSupport; C:\Windows\system32\BtwRSupportService.exe [2255064 2013-10-28] (Broadcom Corporation.)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [441216 2015-05-05] ()
S3 BthHFSrv; C:\Windows\System32\BthHFSrv.dll [324608 2014-10-29] (Microsoft Corporation)
R3 Disc Soft Ultra Bus Service; C:\Program Files (x86)\DAEMON Tools Ultra\DiscSoftBusService.exe [1378576 2015-02-26] (Disc Soft Ltd)
S3 Futuremark SystemInfo Service; C:\Program Files (x86)\Futuremark\SystemInfo\FMSISvc.exe [342240 2015-05-06] (Futuremark)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1152144 2015-03-28] (NVIDIA Corporation)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [16232 2014-05-28] (Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [887256 2014-05-13] (Intel(R) Corporation)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [131544 2014-06-24] (Intel Corporation)
S3 iumsvc; C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [174368 2014-04-09] ()
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [154584 2014-06-24] (Intel Corporation)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1878672 2015-03-28] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [22995600 2015-03-28] (NVIDIA Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [1931632 2015-04-21] (Electronic Arts)
R2 Razer Game Scanner Service; C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe [187072 2015-02-05] ()
R2 ss_conn_service; C:\Program Files (x86)\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe [743688 2014-10-13] (DEVGURU Co., LTD.)
S3 Survarium-Steam Update Service; D:\SteamLibrary\steamapps\common\Survarium\game\binaries\x86\survarium_service.exe [76408 2015-04-03] ()
R2 Update Mgr StrongSignal; C:\Program Files (x86)\Common Files\0780f478-67ce-4ec3-98db-39a65f4618ce\Updater.exe [478992 2015-05-15] ()
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366520 2015-02-04] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23792 2015-02-04] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29168 2015-05-12] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [89944 2015-05-12] (Avast Software s.r.o.)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93528 2015-05-12] (Avast Software s.r.o.)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65736 2015-05-12] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1047320 2015-05-12] (Avast Software s.r.o.)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [442264 2015-05-12] (Avast Software s.r.o.)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [137288 2015-05-12] (Avast Software s.r.o.)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [272248 2015-05-12] ()
R3 bcbtums; C:\Windows\system32\drivers\bcbtums.sys [170712 2013-10-28] (Broadcom Corporation.)
S3 BthA2DP; C:\Windows\system32\drivers\BthA2DP.sys [132608 2015-01-30] (Microsoft Corporation)
R3 dtultrascsibus; C:\Windows\System32\drivers\dtultrascsibus.sys [30352 2015-03-12] (Disc Soft Ltd)
R3 e1dexpress; C:\Windows\system32\DRIVERS\e1d64x64.sys [457496 2014-03-14] (Intel Corporation)
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [129312 2014-09-30] (Intel Corporation)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19600 2015-03-28] (NVIDIA Corporation)
S3 NVSWCFilter; C:\Windows\System32\drivers\nvswcfilter.sys [19616 2015-02-05] (Windows (R) Win 7 DDK provider)
S3 NVVADARM; C:\Windows\system32\drivers\nvvadarm.sys [39056 2015-04-09] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [38032 2015-02-05] (NVIDIA Corporation)
R3 rzendpt; C:\Windows\System32\drivers\rzendpt.sys [40104 2015-03-10] (Razer Inc)
R2 rzpmgrk; C:\Windows\system32\drivers\rzpmgrk.sys [37184 2015-02-05] (Razer, Inc.)
R2 rzpnk; C:\Windows\system32\drivers\rzpnk.sys [129600 2015-02-04] (Razer, Inc.)
R3 ScpVBus; C:\Windows\System32\drivers\ScpVBus.sys [39168 2013-05-19] (Scarlet.Crush Productions)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114496 2015-02-04] (Microsoft Corporation)
S3 xusb22; C:\Windows\System32\drivers\xusb22.sys [87040 2014-03-18] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-05-14 15:11 - 2015-04-30 22:35 - 00124112 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2015-05-14 15:11 - 2015-04-30 22:35 - 00102608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-05-14 15:06 - 2015-03-03 15:17 - 00295552 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2015-05-14 11:31 - 2015-05-14 11:31 - 00000000 ____D () C:\ProgramData\GFACE
2015-05-14 11:30 - 2015-05-14 11:30 - 00000000 ____D () C:\Users\Jasch\AppData\Local\wf-launcher
2015-05-14 00:40 - 2015-05-14 00:40 - 00001203 _____ () C:\Users\Public\Desktop\WS Launcher.lnk
2015-05-14 00:40 - 2015-05-14 00:40 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WS Launcher
2015-05-14 00:24 - 2015-05-14 00:30 - 00000000 ____D () C:\Users\Jasch\AppData\Roaming\WS Launcher
2015-05-14 00:24 - 2015-05-14 00:24 - 00000000 ____D () C:\Program Files (x86)\Launcher
2015-05-14 00:23 - 2015-05-14 00:23 - 19296256 _____ () C:\Users\Jasch\Downloads\WSLauncher_Installer.msi
2015-05-13 23:51 - 2015-05-15 08:07 - 00003138 _____ () C:\Windows\System32\Tasks\FRAPS
2015-05-13 23:50 - 2015-05-15 08:05 - 00000000 ____D () C:\Users\Jasch\Downloads\FRST-OlderVersion
2015-05-13 19:33 - 2015-05-13 19:33 - 00000000 ____D () C:\Users\Jasch\AppData\Local\Macromedia
2015-05-13 19:32 - 2015-05-13 19:32 - 00000000 ____D () C:\Users\Jasch\AppData\Local\Adobe
2015-05-13 19:21 - 2015-05-13 19:21 - 00000000 ____D () C:\Users\Jasch\AppData\Roaming\Mozilla
2015-05-13 19:21 - 2015-05-13 19:21 - 00000000 ____D () C:\Users\Jasch\AppData\Local\Mozilla
2015-05-13 19:21 - 2015-05-13 19:21 - 00000000 ____D () C:\ProgramData\Mozilla
2015-05-13 03:09 - 2015-05-01 01:05 - 00429568 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2015-05-13 03:09 - 2015-05-01 00:48 - 00358912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2015-05-13 03:09 - 2015-04-21 19:14 - 24971776 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-05-13 03:09 - 2015-04-21 18:50 - 00584192 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-05-13 03:09 - 2015-04-21 18:50 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2015-05-13 03:09 - 2015-04-21 18:49 - 02885120 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-05-13 03:09 - 2015-04-21 18:37 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2015-05-13 03:09 - 2015-04-21 18:35 - 00816640 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2015-05-13 03:09 - 2015-04-21 18:31 - 06025728 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-05-13 03:09 - 2015-04-21 18:24 - 19691008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2015-05-13 03:09 - 2015-04-21 18:13 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2015-05-13 03:09 - 2015-04-21 18:11 - 00504320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2015-05-13 03:09 - 2015-04-21 18:09 - 00341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2015-05-13 03:09 - 2015-04-21 18:08 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-05-13 03:09 - 2015-04-21 18:07 - 00145408 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2015-05-13 03:09 - 2015-04-21 18:05 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-05-13 03:09 - 2015-04-21 18:04 - 02278400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2015-05-13 03:09 - 2015-04-21 17:59 - 01032704 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2015-05-13 03:09 - 2015-04-21 17:58 - 00664576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2015-05-13 03:09 - 2015-04-21 17:52 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2015-05-13 03:09 - 2015-04-21 17:49 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-05-13 03:09 - 2015-04-21 17:49 - 00720384 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2015-05-13 03:09 - 2015-04-21 17:49 - 00374272 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2015-05-13 03:09 - 2015-04-21 17:46 - 02125824 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-05-13 03:09 - 2015-04-21 17:40 - 14401536 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-05-13 03:09 - 2015-04-21 17:38 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2015-05-13 03:09 - 2015-04-21 17:37 - 00128000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2015-05-13 03:09 - 2015-04-21 17:36 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2015-05-13 03:09 - 2015-04-21 17:32 - 00880128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2015-05-13 03:09 - 2015-04-21 17:31 - 04305920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2015-05-13 03:09 - 2015-04-21 17:28 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2015-05-13 03:09 - 2015-04-21 17:27 - 02352128 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-05-13 03:09 - 2015-04-21 17:26 - 00688640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2015-05-13 03:09 - 2015-04-21 17:26 - 00327168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2015-05-13 03:09 - 2015-04-21 17:25 - 02052608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2015-05-13 03:09 - 2015-04-21 17:17 - 12828672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2015-05-13 03:09 - 2015-04-21 17:15 - 01547264 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-05-13 03:09 - 2015-04-21 17:03 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2015-05-13 03:09 - 2015-04-21 17:02 - 01882112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2015-05-13 03:09 - 2015-04-21 16:58 - 01310208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2015-05-13 03:09 - 2015-04-21 16:56 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2015-05-13 03:09 - 2015-04-14 00:48 - 04180480 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2015-05-13 03:09 - 2015-04-10 03:00 - 01996800 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2015-05-13 03:09 - 2015-04-10 02:50 - 01387008 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2015-05-13 03:09 - 2015-04-10 02:34 - 02256896 _____ (Microsoft Corporation) C:\Windows\system32\dwmcore.dll
2015-05-13 03:09 - 2015-04-10 02:26 - 01560576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2015-05-13 03:09 - 2015-04-10 02:11 - 01943040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmcore.dll
2015-05-13 03:09 - 2015-04-09 00:55 - 00410128 _____ (Microsoft Corporation) C:\Windows\system32\services.exe
2015-05-13 03:09 - 2015-04-03 02:35 - 00445440 _____ (Microsoft Corporation) C:\Windows\system32\PhotoMetadataHandler.dll
2015-05-13 03:09 - 2015-04-03 02:14 - 00364544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PhotoMetadataHandler.dll
2015-05-13 03:09 - 2015-04-02 00:22 - 02985984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dbgeng.dll
2015-05-13 03:09 - 2015-04-02 00:20 - 04417536 _____ (Microsoft Corporation) C:\Windows\system32\dbgeng.dll
2015-05-13 03:09 - 2015-04-01 05:45 - 01491456 _____ (Microsoft Corporation) C:\Windows\system32\dbghelp.dll
2015-05-13 03:09 - 2015-04-01 04:31 - 01207296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dbghelp.dll
2015-05-13 03:09 - 2015-03-30 07:47 - 00561928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2015-05-13 03:09 - 2015-03-27 05:27 - 00445440 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2015-05-13 03:09 - 2015-03-27 04:50 - 00324096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2015-05-13 03:09 - 2015-03-27 04:48 - 01441792 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2015-05-13 03:09 - 2015-03-20 03:56 - 00080384 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ahcache.sys
2015-05-13 03:09 - 2015-03-13 06:03 - 00239424 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sdbus.sys
2015-05-13 03:09 - 2015-03-13 06:03 - 00154432 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dumpsd.sys
2015-05-13 03:09 - 2015-03-13 04:02 - 00316416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\udfs.sys
2015-05-13 03:09 - 2015-03-13 03:11 - 02162176 _____ (Microsoft Corporation) C:\Windows\system32\SRH.dll
2015-05-13 03:09 - 2015-03-13 02:39 - 01812992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SRH.dll
2015-05-13 03:09 - 2015-03-13 02:29 - 00410017 _____ () C:\Windows\system32\ApnDatabase.xml
2015-05-13 03:09 - 2015-03-11 03:49 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\sdbinst.exe
2015-05-13 03:09 - 2015-03-11 03:09 - 00021504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sdbinst.exe
2015-05-13 03:09 - 2015-03-06 05:08 - 02067968 _____ (Microsoft Corporation) C:\Windows\system32\wpdshext.dll
2015-05-13 03:09 - 2015-03-06 04:47 - 01696256 _____ (Microsoft Corporation) C:\Windows\system32\wevtsvc.dll
2015-05-13 03:09 - 2015-03-06 04:43 - 01969664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wpdshext.dll
2015-05-13 03:09 - 2015-03-04 03:32 - 00172544 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Input.Inking.dll
2015-05-13 03:09 - 2015-03-04 03:12 - 00141824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Input.Inking.dll
2015-05-13 03:09 - 2015-02-18 01:19 - 00186368 _____ (Microsoft Corporation) C:\Windows\system32\dpapisrv.dll
2015-05-13 03:09 - 2015-01-30 02:53 - 02819584 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers.dll
2015-05-13 01:29 - 2015-05-13 23:55 - 00069482 _____ () C:\Users\Jasch\Downloads\Addition.txt
2015-05-13 01:28 - 2015-05-15 08:09 - 00025276 _____ () C:\Users\Jasch\Downloads\FRST.txt
2015-05-12 21:17 - 2015-05-15 08:09 - 00000000 ____D () C:\FRST
2015-05-12 21:17 - 2015-05-15 08:05 - 02106368 _____ (Farbar) C:\Users\Jasch\Downloads\FRST64.exe
2015-05-12 20:45 - 2015-05-12 20:45 - 00000887 _____ () C:\Users\Public\Desktop\VLC media player.lnk
2015-05-12 20:41 - 2015-05-12 20:41 - 00364472 _____ (Avast Software s.r.o.) C:\Windows\system32\aswBoot.exe
2015-05-12 20:41 - 2015-05-12 20:41 - 00043112 _____ (Avast Software s.r.o.) C:\Windows\avastSS.scr
2015-05-12 20:35 - 2015-05-12 20:35 - 02623656 _____ (VS Revo Group Ltd.) C:\Users\Jasch\Downloads\revosetup95.exe
2015-05-12 20:35 - 2015-05-12 20:35 - 00000000 ____D () C:\Program Files (x86)\VS Revo Group
2015-05-12 20:28 - 2015-05-13 01:24 - 00000000 ____D () C:\AdwCleaner
2015-05-12 20:28 - 2015-05-12 20:28 - 02209792 _____ () C:\Users\Jasch\Downloads\adwcleaner_4.204.exe
2015-05-12 14:51 - 2015-05-12 14:52 - 364569139 _____ () C:\Users\Jasch\Downloads\BaNkS-dynamic-gapps-L-5-9-15.zip
2015-05-12 14:51 - 2015-05-12 14:51 - 278663454 _____ () C:\Users\Jasch\Downloads\BlissPop-v3.2-hlte-UNOFFICIAL-20150509-1328.zip
2015-05-11 01:13 - 2015-05-11 01:16 - 00000000 ____D () C:\Users\Jasch\AppData\Roaming\PixelPiracy
2015-05-11 00:30 - 2015-05-11 00:30 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\InputMapper
2015-05-10 23:32 - 2015-05-10 23:33 - 00000000 ____D () C:\Users\Jasch\AppData\Roaming\Tera_Awesomium
2015-05-10 22:31 - 2015-05-10 22:31 - 00001718 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rainmeter.lnk
2015-05-10 22:31 - 2015-05-10 22:31 - 00000000 ____D () C:\Users\Jasch\Documents\Rainmeter
2015-05-10 22:31 - 2015-05-10 22:31 - 00000000 ____D () C:\Users\Jasch\AppData\Roaming\Rainmeter
2015-05-10 22:31 - 2015-05-10 22:31 - 00000000 ____D () C:\Program Files\Rainmeter
2015-05-10 00:41 - 2015-05-10 01:39 - 265356980 _____ () C:\Users\Jasch\Downloads\Black Desert.rar
2015-05-09 00:31 - 2015-05-09 00:32 - 00000000 ____D () C:\Users\Jasch\Documents\3DMark
2015-05-09 00:31 - 2015-05-09 00:31 - 00000022 _____ () C:\Windows\GPU-Z.INI
2015-05-09 00:31 - 2015-05-09 00:31 - 00000000 ____D () C:\Users\Jasch\AppData\Local\Futuremark
2015-05-09 00:31 - 2015-05-09 00:31 - 00000000 ____D () C:\Temp
2015-05-09 00:30 - 2015-05-09 00:30 - 00000000 ____D () C:\Program Files (x86)\Futuremark
2015-05-07 21:11 - 2015-05-10 23:30 - 00000000 ____D () C:\ProgramData\boost_interprocess
2015-05-07 21:11 - 2015-05-07 21:11 - 00000000 ____D () C:\Users\Jasch\AppData\Local\TERA
2015-05-05 17:05 - 2015-05-05 17:05 - 00000000 ____D () C:\Users\Jasch\Downloads\PUBattleRoyale.0.6.0
2015-05-05 04:37 - 2015-05-05 05:10 - 00000000 ____D () C:\Users\Jasch\Downloads\The.Witcher.Enhanced.Edition.v1.5.0.1304.Plus.6.Trainer
2015-05-05 04:36 - 2015-05-05 04:36 - 00000000 ____D () C:\Users\Jasch\Downloads\ppt-wedc
2015-05-05 04:17 - 2015-05-05 04:17 - 00000000 ____D () C:\Users\Jasch\Downloads\witcheywoman1303-ch (2)
2015-05-05 02:49 - 2015-05-05 02:49 - 00000000 ____D () C:\Users\Jasch\Downloads\witcher_ee_v1.5_trn+8
2015-05-04 22:27 - 2015-05-04 22:27 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cheat Engine 6.4
2015-05-04 22:27 - 2015-05-04 22:27 - 00000000 ____D () C:\Program Files (x86)\Cheat Engine 6.4
2015-05-01 13:27 - 2015-05-01 13:27 - 1389207675 _____ () C:\Windows\MEMORY.DMP
2015-05-01 13:27 - 2015-05-01 13:27 - 02164672 _____ () C:\Windows\Minidump\050115-8406-01.dmp
2015-05-01 13:27 - 2015-05-01 13:27 - 00000000 ____D () C:\Windows\Minidump
2015-04-28 15:55 - 2015-04-28 15:56 - 00000000 ____D () C:\Users\Jasch\Downloads\[Wii]Mario_Party_8[PAL][MULTI5][ESPALWii.com]
2015-04-28 15:51 - 2015-04-28 15:52 - 00000000 ____D () C:\Users\Jasch\Documents\Dolphin Emulator
2015-04-28 15:51 - 2015-04-28 15:51 - 00000000 ____D () C:\Users\Jasch\Downloads\Skies of Arcadia Legends (Europe) (En,Fr,De,Es)
2015-04-28 15:48 - 2015-04-28 15:50 - 946765370 _____ () C:\Users\Jasch\Downloads\Skies of Arcadia Legends (Europe) (En,Fr,De,Es).7z
2015-04-28 15:42 - 2015-04-28 15:55 - 228963446 _____ () C:\Users\Jasch\Downloads\[Wii]Mario_Party_8[PAL][MULTI5][ESPALWii.com].rar
2015-04-21 07:22 - 2015-04-21 07:22 - 00000000 ____D () C:\Users\Jasch\AppData\Local\Maca134
2015-04-21 06:16 - 2015-04-21 06:18 - 00000000 ____D () C:\Program Files (x86)\Origin Games
2015-04-21 06:15 - 2015-04-21 07:39 - 00000000 ____D () C:\Users\Jasch\AppData\Roaming\Origin
2015-04-21 06:15 - 2015-04-21 06:16 - 00000000 ____D () C:\Users\Jasch\AppData\Local\Origin
2015-04-21 06:15 - 2015-04-21 06:15 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin
2015-04-21 06:15 - 2015-04-21 06:15 - 00000000 ____D () C:\Program Files (x86)\Origin
2015-04-21 05:56 - 2015-05-07 00:15 - 00000000 ____D () C:\Program Files (x86)\A3Launcher
2015-04-21 05:56 - 2015-04-21 05:56 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\A3Launcher
2015-04-16 16:18 - 2015-04-16 16:18 - 00000000 ____D () C:\Users\Jasch\Downloads\SteamMover_v0_1
2015-04-15 06:51 - 2015-04-08 22:32 - 00560968 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2015-04-15 06:50 - 2015-04-09 02:58 - 31570064 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2015-04-15 06:50 - 2015-04-09 02:58 - 30397072 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2015-04-15 06:50 - 2015-04-09 02:58 - 25375048 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2015-04-15 06:50 - 2015-04-09 02:58 - 24053576 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2015-04-15 06:50 - 2015-04-09 02:58 - 15818528 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2015-04-15 06:50 - 2015-04-09 02:58 - 15716232 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2015-04-15 06:50 - 2015-04-09 02:58 - 14006752 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2015-04-15 06:50 - 2015-04-09 02:58 - 12852784 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2015-04-15 06:50 - 2015-04-09 02:58 - 11380728 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2015-04-15 06:50 - 2015-04-09 02:58 - 10423952 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2015-04-15 06:50 - 2015-04-09 02:58 - 02896528 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2015-04-15 06:50 - 2015-04-09 02:58 - 02573456 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2015-04-15 06:50 - 2015-04-09 02:58 - 01895568 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6435012.dll
2015-04-15 06:50 - 2015-04-09 02:58 - 01557648 _____ (NVIDIA Corporation) C:\Windows\system32\nvmcvadgenco64.dll
2015-04-15 06:50 - 2015-04-09 02:58 - 01557648 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6435012.dll
2015-04-15 06:50 - 2015-04-09 02:58 - 01086424 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll
2015-04-15 06:50 - 2015-04-09 02:58 - 01047368 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2015-04-15 06:50 - 2015-04-09 02:58 - 01037640 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2015-04-15 06:50 - 2015-04-09 02:58 - 00970568 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2015-04-15 06:50 - 2015-04-09 02:58 - 00962192 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2015-04-15 06:50 - 2015-04-09 02:58 - 00927440 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2015-04-15 06:50 - 2015-04-09 02:58 - 00849552 _____ () C:\Windows\system32\nvmcumd.dll
2015-04-15 06:50 - 2015-04-09 02:58 - 00499344 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2015-04-15 06:50 - 2015-04-09 02:58 - 00402576 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2015-04-15 06:50 - 2015-04-09 02:58 - 00390472 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2015-04-15 06:50 - 2015-04-09 02:58 - 00346256 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2015-04-15 06:50 - 2015-04-09 02:58 - 00175880 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2015-04-15 06:50 - 2015-04-09 02:58 - 00154256 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2015-04-15 06:50 - 2015-04-09 02:58 - 00150648 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2015-04-15 06:50 - 2015-04-09 02:58 - 00128512 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2015-04-15 06:50 - 2015-04-09 02:58 - 00100680 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcaparm.dll
2015-04-15 06:50 - 2015-04-09 02:58 - 00039056 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvadarm.sys
2015-04-15 04:34 - 2015-03-23 23:59 - 07476032 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-04-15 04:34 - 2015-03-23 23:59 - 01733952 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2015-04-15 04:34 - 2015-03-23 23:59 - 00360480 _____ (Microsoft Corporation) C:\Windows\system32\sechost.dll
2015-04-15 04:34 - 2015-03-23 23:58 - 01498872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2015-04-15 04:34 - 2015-03-23 23:45 - 00257216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sechost.dll
2015-04-15 04:34 - 2015-03-20 06:12 - 00246272 _____ (Microsoft Corporation) C:\Windows\system32\microsoft-windows-system-events.dll
2015-04-15 04:34 - 2015-03-20 06:10 - 00285184 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2015-04-15 04:34 - 2015-03-20 06:10 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2015-04-15 04:34 - 2015-03-20 05:17 - 00411648 _____ (Microsoft Corporation) C:\Windows\system32\tracerpt.exe
2015-04-15 04:34 - 2015-03-20 04:41 - 00369152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tracerpt.exe
2015-04-15 04:34 - 2015-03-20 04:40 - 00950784 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
2015-04-15 04:34 - 2015-03-20 04:16 - 00749568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdh.dll
2015-04-15 04:34 - 2015-03-14 10:54 - 00133256 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2015-04-15 04:34 - 2015-03-14 03:56 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2015-04-15 04:34 - 2015-03-14 03:56 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2015-04-15 04:34 - 2015-03-14 03:51 - 00015360 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll
2015-04-15 04:34 - 2015-03-14 03:37 - 00267264 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll
2015-04-15 04:34 - 2015-03-14 03:14 - 00027136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2015-04-15 04:34 - 2015-03-14 02:22 - 03678720 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2015-04-15 04:34 - 2015-03-14 02:12 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2015-04-15 04:34 - 2015-03-14 02:12 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2015-04-15 04:34 - 2015-03-14 02:09 - 00200192 _____ (Microsoft Corporation) C:\Windows\system32\storewuauth.dll
2015-04-15 04:34 - 2015-03-14 02:08 - 00408064 _____ (Microsoft Corporation) C:\Windows\system32\WUSettingsProvider.dll
2015-04-15 04:34 - 2015-03-14 02:08 - 00095744 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2015-04-15 04:34 - 2015-03-14 02:06 - 02373632 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2015-04-15 04:34 - 2015-03-14 02:06 - 00891392 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2015-04-15 04:34 - 2015-03-14 02:02 - 00124928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2015-04-15 04:34 - 2015-03-14 02:02 - 00029696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2015-04-15 04:34 - 2015-03-14 01:59 - 00721920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2015-04-15 04:34 - 2015-03-14 01:59 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2015-04-15 04:34 - 2015-03-13 04:58 - 00259072 _____ (Microsoft Corporation) C:\Windows\system32\pku2u.dll
2015-04-15 04:34 - 2015-03-13 04:37 - 00208896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pku2u.dll
2015-04-15 04:34 - 2015-03-04 12:25 - 00377152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\clfs.sys
2015-04-15 04:34 - 2015-03-04 05:04 - 00075264 _____ (Microsoft Corporation) C:\Windows\system32\clfsw32.dll
2015-04-15 04:34 - 2015-03-04 04:19 - 00058880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\clfsw32.dll
2015-04-15 04:34 - 2015-02-24 10:32 - 00991552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\http.sys

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-05-15 08:09 - 2015-03-10 12:11 - 00006469 _____ () C:\Windows\SysWOW64\Gms.log
2015-05-15 08:08 - 2015-03-12 01:22 - 00000000 ____D () C:\Users\Jasch\AppData\Local\Spotify
2015-05-15 08:08 - 2015-03-11 15:00 - 01724605 _____ () C:\Windows\WindowsUpdate.log
2015-05-15 08:07 - 2015-03-23 23:45 - 00000000 ____D () C:\Fraps
2015-05-15 08:07 - 2015-03-11 15:25 - 00000000 ____D () C:\Program Files (x86)\Steam
2015-05-15 08:07 - 2015-03-11 15:14 - 00001122 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-05-15 08:07 - 2015-03-10 11:55 - 00000000 ____D () C:\ProgramData\NVIDIA
2015-05-15 08:07 - 2015-03-10 11:40 - 00028636 _____ () C:\Windows\PFRO.log
2015-05-15 08:07 - 2013-08-22 16:46 - 00058658 _____ () C:\Windows\setupact.log
2015-05-15 08:07 - 2013-08-22 16:45 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2015-05-15 08:00 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\system32\sru
2015-05-15 07:19 - 2015-03-11 15:14 - 00001126 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-05-15 00:42 - 2015-03-12 01:21 - 00000000 ____D () C:\Users\Jasch\AppData\Roaming\Spotify
2015-05-14 20:43 - 2013-08-22 17:20 - 00000000 ____D () C:\Windows\CbsTemp
2015-05-14 15:22 - 2015-03-10 11:48 - 01780340 _____ () C:\Windows\system32\PerfStringBackup.INI
2015-05-14 15:22 - 2013-08-23 01:24 - 00765378 _____ () C:\Windows\system32\perfh007.dat
2015-05-14 15:22 - 2013-08-23 01:24 - 00159696 _____ () C:\Windows\system32\perfc007.dat
2015-05-14 15:14 - 2013-08-22 17:36 - 00000000 ___RD () C:\Windows\ImmersiveControlPanel
2015-05-14 15:14 - 2013-08-22 16:44 - 00338272 _____ () C:\Windows\system32\FNTCACHE.DAT
2015-05-14 15:14 - 2013-08-22 15:36 - 00000000 ____D () C:\Windows\system32\AdvancedInstallers
2015-05-14 15:11 - 2015-03-10 12:16 - 00000000 ____D () C:\Windows\system32\MRT
2015-05-14 15:07 - 2013-08-22 15:25 - 00262144 ___SH () C:\Windows\system32\config\ELAM
2015-05-14 15:06 - 2013-08-23 01:26 - 00000000 ____D () C:\Program Files\Windows Journal
2015-05-14 13:10 - 2015-03-11 15:16 - 00003600 _____ () C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2577149796-2635466800-2005262636-1002
2015-05-14 13:04 - 2015-03-15 00:10 - 00000000 ____D () C:\Users\Jasch\AppData\Roaming\vlc
2015-05-14 00:27 - 2015-03-13 21:43 - 00000000 ____D () C:\Users\Jasch\AppData\Local\Arma 3
2015-05-12 20:41 - 2015-03-11 15:22 - 01047320 _____ (Avast Software s.r.o.) C:\Windows\system32\Drivers\aswSnx.sys
2015-05-12 20:41 - 2015-03-11 15:22 - 00442264 _____ (Avast Software s.r.o.) C:\Windows\system32\Drivers\aswSP.sys
2015-05-12 20:41 - 2015-03-11 15:22 - 00272248 _____ () C:\Windows\system32\Drivers\aswVmm.sys
2015-05-12 20:41 - 2015-03-11 15:22 - 00137288 _____ (Avast Software s.r.o.) C:\Windows\system32\Drivers\aswStm.sys
2015-05-12 20:41 - 2015-03-11 15:22 - 00093528 _____ (Avast Software s.r.o.) C:\Windows\system32\Drivers\aswRdr2.sys
2015-05-12 20:41 - 2015-03-11 15:22 - 00089944 _____ (Avast Software s.r.o.) C:\Windows\system32\Drivers\aswMonFlt.sys
2015-05-12 20:41 - 2015-03-11 15:22 - 00065736 _____ () C:\Windows\system32\Drivers\aswRvrt.sys
2015-05-12 20:41 - 2015-03-11 15:22 - 00029168 _____ () C:\Windows\system32\Drivers\aswHwid.sys
2015-05-12 20:41 - 2015-03-11 15:22 - 00003924 _____ () C:\Windows\System32\Tasks\avast! Emergency Update
2015-05-12 20:29 - 2013-08-22 15:25 - 00262144 ___SH () C:\Windows\system32\config\BBI
2015-05-12 20:08 - 2015-03-11 15:10 - 00000000 ____D () C:\Users\Jasch
2015-05-12 20:07 - 2015-03-11 15:42 - 00000000 ____D () C:\Users\Jasch\AppData\Local\Battle.net
2015-05-12 14:57 - 2015-03-11 15:22 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
2015-05-11 20:36 - 2015-03-11 20:57 - 00000000 ____D () C:\Users\Jasch\AppData\Local\JDownloader v2.0
2015-05-11 19:17 - 2015-03-15 00:12 - 00000000 ____D () C:\Users\Jasch\AppData\Roaming\uTorrent
2015-05-11 00:30 - 2015-03-16 22:25 - 00000000 ____D () C:\Users\Jasch\AppData\Roaming\InputMapper
2015-05-11 00:29 - 2015-03-16 22:25 - 00000000 ____D () C:\Users\Jasch\AppData\Roaming\DSDCS
2015-05-11 00:27 - 2015-04-14 06:49 - 00000080 _____ () C:\Users\Jasch\AppData\Local剜捯獫慴⁲慇敭屳呇⁁屖湥楴汴浥湥⹴湩潦
2015-05-07 00:12 - 2015-03-13 21:42 - 00000000 ____D () C:\Users\Jasch\AppData\Local\Arma 3 Launcher
2015-05-05 19:59 - 2013-08-22 17:38 - 00792568 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-05-05 19:59 - 2013-08-22 17:38 - 00178168 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-05-05 05:33 - 2015-03-17 00:45 - 00000000 ____D () C:\Users\Jasch\AppData\Local\The Witcher
2015-04-30 10:07 - 2015-03-10 12:16 - 140425016 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2015-04-27 21:09 - 2015-03-10 11:56 - 00152366 _____ () C:\Windows\DPINST.LOG
2015-04-27 02:06 - 2015-03-24 00:08 - 00000000 ____D () C:\ProgramData\Origin
2015-04-21 07:55 - 2015-03-11 18:40 - 00266417 _____ () C:\Windows\DirectX.log
2015-04-21 06:15 - 2015-03-24 00:09 - 00000000 ____D () C:\ProgramData\Electronic Arts
2015-04-19 03:30 - 2015-03-11 20:13 - 00000000 ____D () C:\Users\Jasch\AppData\Roaming\TS3Client
2015-04-17 18:21 - 2015-04-09 00:41 - 00000000 ____D () C:\Program Files\Rockstar Games
2015-04-17 18:21 - 2015-04-09 00:41 - 00000000 ____D () C:\Program Files (x86)\Rockstar Games
2015-04-15 06:52 - 2015-03-10 12:13 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2015-04-15 06:52 - 2015-03-10 11:55 - 00000000 ____D () C:\Program Files (x86)\NVIDIA Corporation
2015-04-15 06:51 - 2015-03-10 11:55 - 00000000 ____D () C:\ProgramData\NVIDIA Corporation

==================== Files in the root of some directories =======

2015-03-16 22:17 - 2015-03-16 22:31 - 0001439 _____ () C:\Users\Jasch\AppData\Roaming\SpeedRunnersLog.txt

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-05-12 03:05

==================== End Of Log ============================
         
--- --- ---

--- --- ---

Alt 15.05.2015, 07:16   #8
Jasch91
 
Strong Signal nicht zu Entfernen. - Standard

addition



addition.txt

Code:
ATTFilter
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 14-05-2015 02
Ran by Jasch at 2015-05-15 08:10:01
Running from C:\Users\Jasch\Downloads
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-2577149796-2635466800-2005262636-500 - Administrator - Disabled)
Gast (S-1-5-21-2577149796-2635466800-2005262636-501 - Limited - Disabled)
Jasch (S-1-5-21-2577149796-2635466800-2005262636-1002 - Administrator - Enabled) => C:\Users\Jasch

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKU\S-1-5-21-2577149796-2635466800-2005262636-1002\...\uTorrent) (Version: 3.4.2.38913 - BitTorrent Inc.)
140 (HKLM-x32\...\Steam App 242820) (Version:  - Carlsen Games)
3DMark Demo (HKLM-x32\...\Steam App 231350) (Version:  - Futuremark)
Arma 2 (HKLM-x32\...\Steam App 33910) (Version:  - Bohemia Interactive)
Arma 2: DayZ Mod (HKLM-x32\...\Steam App 224580) (Version:  - Bohemia Interactive)
Arma 3 (HKLM-x32\...\Steam App 107410) (Version:  - Bohemia Interactive)
Asmedia ASM104x USB 3.0 Host Controller Driver (HKLM-x32\...\{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}) (Version: 1.16.15.0 - Asmedia Technology)
Assassin's Creed Rogue (HKLM-x32\...\Uplay Install 895) (Version:  - Ubisoft)
Avast Free Antivirus (HKLM-x32\...\Avast) (Version: 10.2.2218 - AVAST Software)
Battle.net (HKLM-x32\...\Battle.net) (Version:  - Blizzard Entertainment)
Bejeweled® 3 (HKLM-x32\...\{E99C27B2-EB2E-4244-9F5C-A96F55100F0C}) (Version: 1.1.13.4753 - Electronic Arts, Inc.)
Cheat Engine 6.4 (HKLM-x32\...\Cheat Engine 6.4_is1) (Version:  - Cheat Engine)
Counter-Strike (HKLM-x32\...\Steam App 10) (Version:  - Valve)
Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version:  - Valve)
DAEMON Tools Ultra (HKLM-x32\...\DAEMON Tools Ultra) (Version: 3.0.0.0310 - Disc Soft Ltd)
DayZ (HKLM-x32\...\Steam App 221100) (Version:  - Bohemia Interactive)
Dead Space 2 (HKLM-x32\...\Steam App 47780) (Version:  - Visceral Games)
Deus Ex: Human Revolution - Director's Cut (HKLM-x32\...\Steam App 238010) (Version:  - Eidos Montreal)
Divinity - Original Sin (HKLM-x32\...\Divinity - Original Sin_is1) (Version:  - )
DmC Devil May Cry (HKLM-x32\...\Steam App 220440) (Version:  - Ninja Theory)
Dota 2 (HKLM-x32\...\Steam App 570) (Version:  - Valve)
Dragon Age Inquisition Digital Deluxe Edition MULTi2 1.0 (HKLM-x32\...\Dragon Age Inquisition Digital Deluxe Edition MULTi2 1.0) (Version:  - )
Dragon Age: Origins (HKLM-x32\...\Steam App 17450) (Version:  - BioWare)
Dropbox (HKU\S-1-5-21-2577149796-2635466800-2005262636-1002\...\Dropbox) (Version: 3.2.9 - Dropbox, Inc.)
Far Cry 4 Update v1.8 (HKLM-x32\...\RmFyQ3J5NA==_is1) (Version: 1 - )
Fraps (HKLM-x32\...\Fraps) (Version:  - )
Futuremark SystemInfo (HKLM-x32\...\{0DD83DE7-507E-44AE-BC2D-2FAAFA48CCA5}) (Version: 4.37.548.0 - Futuremark)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 42.0.2311.152 - Google Inc.)
Google Update Helper (x32 Version: 1.3.26.9 - Google Inc.) Hidden
Grand Theft Auto V (HKLM-x32\...\Steam App 271590) (Version:  - Rockstar North)
Guild Wars 2 (HKLM-x32\...\Guild Wars 2) (Version:  - NCsoft Corporation, Ltd.)
H1Z1 (HKLM-x32\...\Steam App 295110) (Version:  - Sony Online Entertainment)
H1Z1 Test Server (HKLM-x32\...\Steam App 362300) (Version:  - )
Half-Life 2 (HKLM-x32\...\Steam App 220) (Version:  - Valve)
HAWKEN (HKLM-x32\...\Steam App 271290) (Version:  - Reloaded Games)
Hearthstone (HKLM-x32\...\Hearthstone) (Version:  - Blizzard Entertainment)
InputMapper (HKLM-x32\...\{D4A693C5-9E3E-41B9-9039-6FDA58AA5D2F}) (Version: 1.5.30.0 - DSDCS)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 10.0.25.1048 - Intel Corporation)
Intel(R) Network Connections 19.1.51.0 (HKLM\...\PROSetDX) (Version: 19.1.51.0 - Intel)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 13.1.0.1058 - Intel Corporation)
Intel(R) Update Manager (HKLM-x32\...\{84A2B59B-6A7B-4C01-8592-15C9BFE6AC36}) (Version: 2.4.3 - Intel Corporation)
Intel® Chipsatz-Gerätesoftware (x32 Version: 10.0.20 - Intel(R) Corporation) Hidden
JDownloader 2 (HKLM\...\jdownloader2) (Version: 2.0 - AppWork GmbH)
Logitech Gaming Software 8.58 (HKLM\...\Logitech Gaming Software) (Version: 8.58.177 - Logitech Inc.)
Lume (HKLM-x32\...\Steam App 105100) (Version:  - State of Play Games)
Mass Effect 2 (HKLM-x32\...\Steam App 24980) (Version:  - BioWare)
Mass Effect 3 (HKLM-x32\...\Mass Effect 3_is1) (Version: Mass Effect 3 - )
Metro Redux (HKLM-x32\...\Metro Redux_is1) (Version: Metro Redux - )
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{b341426f-8543-4e0d-96c3-e976f8ec5ab6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{4fd02573-5f12-4ae4-8027-c63f8e1115af}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
Microsoft-Maus- und Tastatur-Center (HKLM\...\Microsoft Mouse and Keyboard Center) (Version: 2.3.188.0 - Microsoft Corporation)
MirrorMoon EP (HKLM-x32\...\Steam App 231310) (Version:  - Santa Ragione)
Nidhogg (HKLM-x32\...\Steam App 94400) (Version:  - Messhof)
Nosgoth (HKLM-x32\...\Steam App 200110) (Version:  - Psyonix)
NVIDIA 3D Vision Controller-Treiber 349.95 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 349.95 - NVIDIA Corporation)
NVIDIA 3D Vision Treiber 350.12 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 350.12 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.4.1.21 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.4.1.21 - NVIDIA Corporation)
NVIDIA Grafiktreiber 350.12 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 350.12 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.33.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.33.0 - NVIDIA Corporation)
NVIDIA Miracast Virtueller Ton 350.12 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Miracast.VirtualAudio) (Version: 350.12 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.15.0324 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0324 - NVIDIA Corporation)
Ori and the Blind Forest (HKLM-x32\...\Ori and the Blind Forest_is1) (Version:  - )
Origin (HKLM-x32\...\Origin) (Version: 9.5.12.2862 - Electronic Arts, Inc.)
Outlast (HKLM-x32\...\Steam App 238320) (Version:  - Red Barrels)
Papers, Please (HKLM-x32\...\Steam App 239030) (Version:  - 3909)
PAYDAY 2 (HKLM-x32\...\Steam App 218620) (Version:  - OVERKILL - a Starbreeze Studio.)
Pillars of Eternity (HKLM-x32\...\1207666813_is1) (Version: 2.0.0.1 - GOG.com)
Pixel Piracy (HKLM-x32\...\Steam App 264140) (Version:  - Vitali Kirpu)
Portal (HKLM-x32\...\Steam App 400) (Version:  - Valve)
Portal 2 (HKLM-x32\...\Steam App 620) (Version:  - Valve)
Qualcomm Atheros Inc.(R) AR81Family Gigabit/Fast Ethernet Driver (HKLM-x32\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 2.1.0.21 - Qualcomm Atheros Inc.)
RaidCall (HKLM-x32\...\RaidCall) (Version: 7.3.6-1.0.13004.105 - raidcall.com)
Rainmeter (HKLM-x32\...\Rainmeter) (Version: 3.3 beta r2412 - )
Razer Synapse (HKLM-x32\...\{0D78BEE2-F8FF-4498-AF1A-3FF81CED8AC6}) (Version: 1.18.19.25502 - Razer Inc.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7195 - Realtek Semiconductor Corp.)
Revo Uninstaller 1.95 (HKLM-x32\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.1.5.8 - Rockstar Games)
Samsung Kies (HKLM-x32\...\InstallShield_{758C8301-2696-4855-AF45-534B1200980A}) (Version: 2.6.3.15013.18 - Samsung Electronics Co., Ltd.)
Samsung Kies (x32 Version: 2.6.3.15013.18 - Samsung Electronics Co., Ltd.) Hidden
SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.49.0 - SAMSUNG Electronics Co., Ltd.)
SHIELD Streaming (Version: 4.1.1000 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 2.4.1.21 - NVIDIA Corporation) Hidden
Shovel Knight (HKLM-x32\...\Steam App 250760) (Version:  - Yacht Club Games)
Sid Meiers Civilization Beyond Earth (HKLM-x32\...\U2lkTWVpZXJzQ2l2aWxpemF0aW9uQmV5b25kRWFydGg=_is1) (Version: 1 - )
Sleeping Dogs™ (HKLM-x32\...\Steam App 202170) (Version:  - United Front Games)
South Park Der Stab der Wahrheit Version 1.4 (HKLM-x32\...\South Park Der Stab der Wahrheit_is1) (Version: 1.4 - RFT)
SpeedRunners (HKLM-x32\...\Steam App 207140) (Version:  - DoubleDutch Games)
Spotify (HKU\S-1-5-21-2577149796-2635466800-2005262636-1002\...\Spotify) (Version: 1.0.4.90.g0b6df40b - Spotify AB)
StartIsBack+ (HKLM-x32\...\StartIsBack) (Version: 1.7.5 - startisback.com)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Super Crate Box (HKLM-x32\...\Steam App 212800) (Version:  - Vlambeer)
Survarium (HKLM-x32\...\Steam App 355840) (Version:  - Vostok Games)
Survarium-Steam (HKLM-x32\...\{A3D9343D-77CD-4bf4-A47A-F87B3BE985B4}_is1) (Version: 0.27d - )
Syndicate (HKLM-x32\...\{64CFBAAB-46F7-4628-8D9B-E656A8C11CDB}) (Version: 2.0.0.3 - Electronic Arts)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
TERA (HKLM-x32\...\Steam App 323370) (Version:  - En Masse Entertainment)
The Banner Saga (HKLM-x32\...\Steam App 237990) (Version:  - Stoic)
The Elder Scrolls V Skyrim - Legendary Edition (HKLM-x32\...\The Elder Scrolls V Skyrim - Legendary Edition_is1) (Version:  - )
The Stanley Parable (HKLM-x32\...\Steam App 221910) (Version:  - Galactic Cafe)
The Vanishing of Ethan Carter (HKLM-x32\...\The Vanishing of Ethan Carter_is1) (Version:  - )
The Walking Dead (HKLM-x32\...\Steam App 207610) (Version:  - )
The Walking Dead: Season Two (HKLM-x32\...\Steam App 261030) (Version:  - Telltale Games)
The Witcher 2: Assassins of Kings Enhanced Edition (HKLM-x32\...\Steam App 20920) (Version:  - CD PROJEKT RED)
The Witcher 3: Wild Hunt (HKLM-x32\...\Steam App 292030) (Version:  - CD PROJEKT RED)
The Witcher: Enhanced Edition (HKLM-x32\...\Steam App 20900) (Version:  - CD PROJEKT RED)
The Wolf Among Us (HKLM-x32\...\Steam App 250320) (Version:  - Telltale Games)
Thief (HKLM-x32\...\Steam App 239160) (Version:  - Eidos-Montréal)
Tomb Raider (HKLM-x32\...\Steam App 203160) (Version:  - Crystal Dynamics)
Torchlight II (HKLM-x32\...\Steam App 200710) (Version:  - Runic Games)
Unepic (HKLM-x32\...\Steam App 233980) (Version:  - Francisco Téllez de Meneses)
Uplay (HKLM-x32\...\Uplay) (Version: 4.9 - Ubisoft)
VLC media player (HKLM\...\VLC media player) (Version: 2.2.1 - VideoLAN)
WAKFU (HKLM-x32\...\Steam App 215080) (Version:  - Ankama Studio)
Warface (HKLM-x32\...\Steam App 291480) (Version:  - Crytek)
WildStar (HKLM-x32\...\WildStar) (Version:  - NCSOFT)
WinRAR 5.21 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH)
World of Warcraft (HKLM-x32\...\World of Warcraft) (Version:  - Blizzard Entertainment)
World of Warcraft Classic (HKLM-x32\...\{D55ED80F-FAFD-40E1-99FC-89AF8614A9B5}_is1) (Version: 1.12.1.5875 - Blizzard Entertainment)
World of Warships (HKLM-x32\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C814EU}_is1) (Version:  - Wargaming.net)
World of Warships (HKU\S-1-5-21-2577149796-2635466800-2005262636-1002\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C814eu}_is1) (Version:  - Wargaming.net)
WS Launcher (HKLM-x32\...\{7CD2FACD-18D7-46C7-A4C6-17FD6D97E045}) (Version: 0.0.2.1 - Launcher)
Ys I (HKLM-x32\...\Steam App 223810) (Version:  - Nihon Falcom)
Ys II (HKLM-x32\...\Steam App 223870) (Version:  - Nihon Falcom)
Ys Origin (HKLM-x32\...\Steam App 207350) (Version:  - Nihon Falcom)

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

CustomCLSID: HKU\S-1-5-21-2577149796-2635466800-2005262636-1002_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\Jasch\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2577149796-2635466800-2005262636-1002_Classes\CLSID\{ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C}\InprocServer32 -> C:\Users\Jasch\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2577149796-2635466800-2005262636-1002_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Jasch\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2577149796-2635466800-2005262636-1002_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Jasch\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2577149796-2635466800-2005262636-1002_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Jasch\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2577149796-2635466800-2005262636-1002_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Jasch\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2577149796-2635466800-2005262636-1002_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Jasch\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2577149796-2635466800-2005262636-1002_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Jasch\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2577149796-2635466800-2005262636-1002_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Jasch\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2577149796-2635466800-2005262636-1002_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Jasch\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)

==================== Restore Points  =========================

29-04-2015 05:48:12 Geplanter Prüfpunkt
08-05-2015 05:44:43 Geplanter Prüfpunkt
12-05-2015 20:41:00 avast! antivirus system restore point
14-05-2015 00:24:35 Installed WS Launcher

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2013-08-22 15:25 - 2013-08-22 15:25 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {287C9390-106D-4528-9FFA-9EAD4D749E78} - System32\Tasks\Microsoft\Windows\Setup\gwx\runappraiser => C:\Windows\system32\GWX\GWXConfigManager.exe [2015-03-24] (Microsoft Corporation)
Task: {2CD5651F-5A6E-4F1B-88B8-0733A1C1E037} - System32\Tasks\FRAPS => C:\Fraps\fraps.exe [2013-02-26] (Beepa P/L)
Task: {307C6A97-1FCF-42B1-AC2C-EC9E74294DA3} - System32\Tasks\Microsoft\Windows\Setup\gwx\launchtrayprocess => C:\Windows\system32\GWX\GWX.exe [2015-03-24] (Microsoft Corporation)
Task: {3A55AB04-D66A-4187-B864-C8078B676E5C} - System32\Tasks\Microsoft_Hardware_Launch_mousekeyboardcenter_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\mousekeyboardcenter.exe [2014-03-19] (Microsoft)
Task: {3B99FEA7-8203-4251-B32B-6D41EF545041} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [2014-04-09] ()
Task: {66028CC7-38C9-42DC-9086-15CB8AC0DAB0} - System32\Tasks\Microsoft_Hardware_Launch_itype_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [2014-03-19] (Microsoft Corporation)
Task: {8ADAE917-BA3C-4A33-91FD-7264097150DB} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-03-11] (Google Inc.)
Task: {B55619D5-7532-423B-9D80-9A0D2F4FE4F0} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\Windows\system32\MRT.exe [2015-04-30] (Microsoft Corporation)
Task: {CD2B26FD-EB65-4866-AA78-6E8B3CB56BCF} - System32\Tasks\Microsoft_Hardware_Launch_ipoint_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2014-03-19] (Microsoft Corporation)
Task: {CE8A2142-D17F-459C-AC86-F7CE4EC261F1} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxconfig => C:\Windows\system32\GWX\GWXConfigManager.exe [2015-03-24] (Microsoft Corporation)
Task: {D09D1182-4702-4018-B6F5-2BF3FE18C09A} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2015-05-12] (Avast Software s.r.o.)
Task: {D1A23371-9AE1-48B8-A639-ED6FA033AF1D} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxcontent => C:\Windows\system32\GWX\GWXConfigManager.exe [2015-03-24] (Microsoft Corporation)
Task: {E33AFA8C-172B-4354-AEFF-2D1C5FDDBEE1} - System32\Tasks\Microsoft_MKC_Logon_Task_ipoint.exe => C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2014-03-19] (Microsoft Corporation)
Task: {EC022927-6213-4CC3-929D-E380ED50A59F} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-03-11] (Google Inc.)
Task: {F5BE761E-959A-4A40-9947-E1497DE43282} - System32\Tasks\Microsoft_MKC_Logon_Task_itype.exe => C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [2014-03-19] (Microsoft Corporation)
Task: {FCB2EBE5-8D17-42B1-BBCA-F04EDF71C48E} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473-Logon => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [2014-04-09] ()
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (Whitelisted) ==============

2015-03-10 11:55 - 2015-04-08 23:30 - 00116552 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2015-02-05 02:24 - 2015-02-05 02:25 - 00187072 _____ () C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
2015-05-14 04:52 - 2015-05-15 06:24 - 00478992 _____ () C:\Program Files (x86)\Common Files\0780f478-67ce-4ec3-98db-39a65f4618ce\Updater.exe
2014-09-18 09:23 - 2014-09-18 09:23 - 00866584 _____ () C:\Program Files\Logitech Gaming Software\libGLESv2.dll
2015-02-26 20:39 - 2015-02-26 20:39 - 01050904 _____ () C:\Program Files\Logitech Gaming Software\platforms\qwindows.dll
2014-09-18 09:23 - 2014-09-18 09:23 - 00059160 _____ () C:\Program Files\Logitech Gaming Software\libEGL.dll
2015-02-26 20:39 - 2015-02-26 20:39 - 00242456 _____ () C:\Program Files\Logitech Gaming Software\imageformats\qjpeg.dll
2015-03-14 07:49 - 2015-03-14 07:49 - 00291840 _____ () C:\ProgramData\Razer\Synapse\RzStats\RzStats.Manager.exe
2015-05-12 20:41 - 2015-05-12 20:41 - 00104400 _____ () C:\Program Files\AVAST Software\Avast\log.dll
2015-05-12 20:41 - 2015-05-12 20:41 - 00081728 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2015-05-14 23:17 - 2015-05-14 23:17 - 02928128 _____ () C:\Program Files\AVAST Software\Avast\defs\15051401\algo.dll
2015-03-31 16:00 - 2015-03-28 05:45 - 00011920 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2015-05-14 12:23 - 2015-05-05 06:06 - 01252680 _____ () C:\Program Files (x86)\Google\Chrome\Application\42.0.2311.152\libglesv2.dll
2015-05-14 12:23 - 2015-05-05 06:06 - 00080712 _____ () C:\Program Files (x86)\Google\Chrome\Application\42.0.2311.152\libegl.dll
2015-03-11 15:25 - 2015-04-16 19:40 - 00776192 _____ () C:\Program Files (x86)\Steam\SDL2.dll
2015-03-11 15:25 - 2015-04-23 04:16 - 04962816 _____ () C:\Program Files (x86)\Steam\v8.dll
2015-03-11 15:25 - 2015-05-12 00:03 - 02396352 _____ () C:\Program Files (x86)\Steam\video.dll
2015-03-11 15:25 - 2015-04-23 04:16 - 01556992 _____ () C:\Program Files (x86)\Steam\icui18n.dll
2015-03-11 15:25 - 2015-04-23 04:16 - 01187840 _____ () C:\Program Files (x86)\Steam\icuuc.dll
2015-03-11 15:25 - 2014-12-01 23:31 - 02396672 _____ () C:\Program Files (x86)\Steam\libavcodec-56.dll
2015-03-11 15:25 - 2014-12-01 23:31 - 00479744 _____ () C:\Program Files (x86)\Steam\libavformat-56.dll
2015-03-11 15:25 - 2014-12-01 23:31 - 00332800 _____ () C:\Program Files (x86)\Steam\libavresample-2.dll
2015-03-11 15:25 - 2014-12-01 23:31 - 00442880 _____ () C:\Program Files (x86)\Steam\libavutil-54.dll
2015-03-11 15:25 - 2014-12-01 23:31 - 00485888 _____ () C:\Program Files (x86)\Steam\libswscale-3.dll
2015-03-11 15:25 - 2015-05-12 00:03 - 00703168 _____ () C:\Program Files (x86)\Steam\bin\chromehtml.DLL
2015-03-12 01:22 - 2015-05-01 13:28 - 40518200 _____ () C:\Users\Jasch\AppData\Roaming\Spotify\libcef.dll
2015-03-11 15:25 - 2015-05-11 21:01 - 36302728 _____ () C:\Program Files (x86)\Steam\bin\libcef.dll
2015-03-12 01:22 - 2015-05-01 13:28 - 01365560 _____ () C:\Users\Jasch\AppData\Roaming\Spotify\libglesv2.dll
2015-03-12 01:22 - 2015-05-01 13:28 - 00219192 _____ () C:\Users\Jasch\AppData\Roaming\Spotify\libegl.dll
2015-03-12 01:22 - 2015-03-23 23:23 - 09305656 _____ () C:\Users\Jasch\AppData\Roaming\Spotify\pdf.dll
2015-03-12 01:22 - 2015-05-01 13:28 - 00990776 _____ () C:\Users\Jasch\AppData\Roaming\Spotify\ffmpegsumo.dll
2015-03-11 15:22 - 2015-03-11 15:22 - 40540672 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2015-02-02 09:52 - 2015-02-02 09:52 - 00137728 _____ () C:\ProgramData\Razer\Synapse\CrashReporter\CrashRpt1402.dll
2015-03-14 22:55 - 2014-11-26 04:12 - 40622592 _____ () C:\Users\Jasch\AppData\Local\razer\InGameEngine\cache\RzStats.Manager\cef\libcef.dll
2015-03-14 22:55 - 2014-11-26 04:12 - 00911360 _____ () C:\Users\Jasch\AppData\Local\razer\InGameEngine\cache\RzStats.Manager\cef\libglesv2.dll
2015-03-14 22:55 - 2014-11-26 04:12 - 00134144 _____ () C:\Users\Jasch\AppData\Local\razer\InGameEngine\cache\RzStats.Manager\cef\libegl.dll
2015-05-14 12:23 - 2015-05-05 06:06 - 14982472 _____ () C:\Program Files (x86)\Google\Chrome\Application\42.0.2311.152\PepperFlash\pepflashplayer.dll
2014-06-24 17:08 - 2014-06-24 17:08 - 01241560 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== EXE Association (Whitelisted) ===============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, the associated entry will be removed from the registry.)

IE trusted site: HKU\S-1-5-21-2577149796-2635466800-2005262636-1002\...\clonewarsadventures.com -> clonewarsadventures.com
IE trusted site: HKU\S-1-5-21-2577149796-2635466800-2005262636-1002\...\freerealms.com -> freerealms.com
IE trusted site: HKU\S-1-5-21-2577149796-2635466800-2005262636-1002\...\soe.com -> soe.com
IE trusted site: HKU\S-1-5-21-2577149796-2635466800-2005262636-1002\...\sony.com -> sony.com


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-2577149796-2635466800-2005262636-1002\Control Panel\Desktop\\Wallpaper -> C:\Users\Jasch\Downloads\546342.jpg
DNS Servers: 192.168.178.1

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

HKLM\...\StartupApproved\Run32: => "AvastUI.exe"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{A428E2F5-00A4-445C-B0A9-6C1597084A7A}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{0EA249FB-7E19-4EC4-BCBC-38B1F7632813}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{68A434AC-400A-4C23-8073-AEAC2B29C838}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{A1EE3227-D5EE-4A89-9452-5718413D2966}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{6B629227-5BA4-4B47-88FC-31822E0A6AEB}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{94884C65-DC1D-42AB-A771-451AB7000768}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{5EA49406-2BAA-46C2-851C-8E26742C5DD4}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{5508CBFF-C166-4BD6-ADFA-76D34D21113E}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{2D84D1F2-28EB-4F03-B953-5D453403085B}] => (Allow) C:\Users\Jasch\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [{47EBE97C-6BB8-4BB9-90D0-48447E90E26E}] => (Allow) C:\Users\Jasch\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [{8B1B04C4-330A-44E3-AC94-4085985111FF}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{ED4DE2A2-3ECD-4DB0-A9C5-F19C2B596C25}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{3C2D921F-723B-479B-B66B-C622D991D784}] => (Allow) D:\Battle.net\Battle.net.exe
FirewallRules: [{E89F2FAC-C38D-47DD-BDA2-1DB4B643A2F1}] => (Allow) D:\Battle.net\Battle.net.exe
FirewallRules: [{D712384A-DEC8-4625-983C-1A58DA677607}] => (Allow) C:\Program Files (x86)\Hearthstone\Hearthstone.exe
FirewallRules: [{658C40DD-AEB4-470A-94A1-3E40D0D6228A}] => (Allow) C:\Program Files (x86)\Hearthstone\Hearthstone.exe
FirewallRules: [{069B03CC-6D7D-4C9D-A32C-3248BA998D68}] => (Allow) D:\SteamLibrary\steamapps\common\Half-Life\hl.exe
FirewallRules: [{68E0DD00-6B92-424A-B17E-E75F59820AD2}] => (Allow) D:\SteamLibrary\steamapps\common\Half-Life\hl.exe
FirewallRules: [{763F5B12-1934-409E-941F-04B6B285FDAD}] => (Allow) D:\SteamLibrary\steamapps\common\Thief\Binaries\Win64\Shipping-ThiefGame.exe
FirewallRules: [{BA02BE4D-60C0-462C-858E-C4591FE8DC88}] => (Allow) D:\SteamLibrary\steamapps\common\Thief\Binaries\Win64\Shipping-ThiefGame.exe
FirewallRules: [{8C02FA5C-CA98-4CA1-A74B-DD79AAAEB4B0}] => (Allow) D:\SteamLibrary\steamapps\common\SpeedRunners\SpeedRunners.exe
FirewallRules: [{8934E16B-5CD6-40D6-99D6-4D18A5BB67B9}] => (Allow) D:\SteamLibrary\steamapps\common\SpeedRunners\SpeedRunners.exe
FirewallRules: [{6C0B6200-A849-4D4D-AA2A-F7DCF5523C1F}] => (Allow) D:\SteamLibrary\steamapps\common\H1Z1\LaunchPad.exe
FirewallRules: [{FE55933A-AFA3-4D6F-887B-3C2DBF8098F7}] => (Allow) D:\SteamLibrary\steamapps\common\H1Z1\LaunchPad.exe
FirewallRules: [TCP Query User{9D3AB7FA-A9BB-431A-9D39-90945C53A3BB}D:\steamlibrary\steamapps\common\dayz\dayz.exe] => (Allow) D:\steamlibrary\steamapps\common\dayz\dayz.exe
FirewallRules: [UDP Query User{1D591FE2-E08C-4ACB-AC12-C9D19D59A59D}D:\steamlibrary\steamapps\common\dayz\dayz.exe] => (Allow) D:\steamlibrary\steamapps\common\dayz\dayz.exe
FirewallRules: [{6F27BBA0-D353-4E3C-96BE-1E832C8AA7B6}] => (Allow) C:\Program Files\Logitech Gaming Software\LCore.exe
FirewallRules: [{9C1D100F-7C67-44B6-B259-A59818863129}] => (Allow) C:\Program Files\Logitech Gaming Software\LCore.exe
FirewallRules: [{362D1942-E6E7-4C63-9294-85250AA176BF}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{E09D24F8-0540-47C6-A421-476114B61F2C}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{D1E3992A-F2FE-4D57-AABD-D07A882B061D}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{2A452897-0EB1-4418-B10A-58DB2F20CECD}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [TCP Query User{0169CBA1-9759-4D8C-8D70-56BBE37BDC2D}D:\steamlibrary\steamapps\common\h1z1\h1z1.exe] => (Allow) D:\steamlibrary\steamapps\common\h1z1\h1z1.exe
FirewallRules: [UDP Query User{82242893-AED1-436F-BBF1-C326EC6F2C49}D:\steamlibrary\steamapps\common\h1z1\h1z1.exe] => (Allow) D:\steamlibrary\steamapps\common\h1z1\h1z1.exe
FirewallRules: [{C9A86A78-06C6-4631-A39C-B68FAD275CB1}] => (Allow) D:\SteamLibrary\steamapps\common\SleepingDogs\HKShip.exe
FirewallRules: [{7F0CF4F5-BBDE-4DA7-83CB-2340A5D3091B}] => (Allow) D:\SteamLibrary\steamapps\common\SleepingDogs\HKShip.exe
FirewallRules: [TCP Query User{55D33573-04FD-4DA7-8D90-3460FBCC08BB}C:\users\jasch\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\jasch\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{766CED77-ABBD-46B4-930B-573986B6A924}C:\users\jasch\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\jasch\appdata\roaming\spotify\spotify.exe
FirewallRules: [TCP Query User{BB93D967-713B-4A2C-8654-BC7E69797EB5}D:\far cry 4\bin\farcry4.exe] => (Allow) D:\far cry 4\bin\farcry4.exe
FirewallRules: [UDP Query User{52B3495E-1B76-48C3-86EB-FE47C793EB63}D:\far cry 4\bin\farcry4.exe] => (Allow) D:\far cry 4\bin\farcry4.exe
FirewallRules: [{E32A984A-71FD-4B0C-8270-E65CEF355BC1}] => (Allow) D:\Battle.net\Hearthstone\Hearthstone.exe
FirewallRules: [{C96D4D51-C39F-41A8-B24E-76E0DED11F2C}] => (Allow) D:\Battle.net\Hearthstone\Hearthstone.exe
FirewallRules: [TCP Query User{CE6772B7-F388-4AE7-824A-52E5919273AC}C:\users\jasch\appdata\local\jdownloader v2.0\jdownloader2.exe] => (Block) C:\users\jasch\appdata\local\jdownloader v2.0\jdownloader2.exe
FirewallRules: [UDP Query User{252CEB18-96F5-47E8-ACA1-0AD8B27DFAC7}C:\users\jasch\appdata\local\jdownloader v2.0\jdownloader2.exe] => (Block) C:\users\jasch\appdata\local\jdownloader v2.0\jdownloader2.exe
FirewallRules: [{6143BEFB-8323-429B-9F80-E19DC50A02B5}] => (Allow) D:\Games\AC Rogue\ACC.exe
FirewallRules: [{953ED705-06F3-4418-A482-A164BDFD5F75}] => (Allow) D:\Games\AC Rogue\ACC.exe
FirewallRules: [TCP Query User{F10E4BDB-35EA-40A5-85E6-2CA14B50FF4E}D:\games\far cry 4\bin\farcry4.exe] => (Allow) D:\games\far cry 4\bin\farcry4.exe
FirewallRules: [UDP Query User{9C41E1F1-C609-43AE-854D-4ED3358C55AA}D:\games\far cry 4\bin\farcry4.exe] => (Allow) D:\games\far cry 4\bin\farcry4.exe
FirewallRules: [{6632B3E2-B215-4377-B409-7D44B07AE548}] => (Allow) D:\SteamLibrary\steamapps\common\Deus Ex Human Revolution Director's Cut\DXHRDC.exe
FirewallRules: [{2CBF6991-A77B-4C62-BE3E-71825054407C}] => (Allow) D:\SteamLibrary\steamapps\common\Deus Ex Human Revolution Director's Cut\DXHRDC.exe
FirewallRules: [{2353AD09-23DC-4AAA-AD25-9E386491F029}] => (Allow) D:\SteamLibrary\steamapps\common\Tomb Raider\TombRaider.exe
FirewallRules: [{B192EC39-BD34-4BA7-8CB5-C08B5E3010B2}] => (Allow) D:\SteamLibrary\steamapps\common\Tomb Raider\TombRaider.exe
FirewallRules: [{3C3D5BC9-E1B1-4D04-B93D-C52C6D00BDEC}] => (Allow) D:\SteamLibrary\steamapps\common\dota 2 beta\dota.exe
FirewallRules: [{C2CEA69F-E7EB-4911-B739-BBCCA42149EF}] => (Allow) D:\SteamLibrary\steamapps\common\dota 2 beta\dota.exe
FirewallRules: [{55763A88-AF87-479A-860C-8F1BE43DC649}] => (Allow) D:\SteamLibrary\steamapps\common\Half-Life 2\hl2.exe
FirewallRules: [{9FF058D3-57FC-4E7B-85D0-4D0F11F3E689}] => (Allow) D:\SteamLibrary\steamapps\common\Half-Life 2\hl2.exe
FirewallRules: [{DE605936-B699-45D5-B08B-70D2B80D2490}] => (Allow) D:\SteamLibrary\steamapps\common\Arma 3\arma3.exe
FirewallRules: [{32CC28ED-71A5-4583-ACED-12F144C61F4A}] => (Allow) D:\SteamLibrary\steamapps\common\Arma 3\arma3.exe
FirewallRules: [{B6A68D37-BF36-47C4-88B3-D32BD1552E6D}] => (Allow) D:\SteamLibrary\steamapps\common\Arma 3\arma3launcher.exe
FirewallRules: [{F243CF19-8236-48F2-B134-326AE90684AC}] => (Allow) D:\SteamLibrary\steamapps\common\Arma 3\arma3launcher.exe
FirewallRules: [{83228CA6-C1BC-4C8C-88C2-C00D9F78D308}] => (Allow) C:\Users\Jasch\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{05D1BC32-F479-4F92-87DF-A389DBDB4873}] => (Allow) C:\Users\Jasch\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{5E862747-81AC-4F31-8BF4-3442C216A8DB}] => (Allow) D:\SteamLibrary\steamapps\common\3DMark\3DMarkLauncher.exe
FirewallRules: [{C0E8BFDD-CC8A-4DD0-A20F-35B5C9FCBA67}] => (Allow) D:\SteamLibrary\steamapps\common\3DMark\3DMarkLauncher.exe
FirewallRules: [{8204C9D0-EFB4-4FFD-8C56-C81E11E369EB}] => (Allow) D:\SteamLibrary\steamapps\common\3DMark\bin\x86\3DMark.exe
FirewallRules: [{9514551A-078A-4F47-B759-41CB07C43488}] => (Allow) D:\SteamLibrary\steamapps\common\3DMark\bin\x86\3DMark.exe
FirewallRules: [{95BA32E5-5941-48A4-A00B-225501D8397D}] => (Allow) D:\SteamLibrary\steamapps\common\3DMark\bin\x64\3DMark.exe
FirewallRules: [{BD06B555-20D6-4636-A19D-ABB496AF1966}] => (Allow) D:\SteamLibrary\steamapps\common\3DMark\bin\x64\3DMark.exe
FirewallRules: [{AADF24DD-B943-4C42-A2EA-451E5B2CEE19}] => (Allow) D:\SteamLibrary\steamapps\common\nosgoth\Binaries\Win32\Nosgoth.exe
FirewallRules: [{8303D643-0B3A-4FBC-AEEA-BF069EE2BF8C}] => (Allow) D:\SteamLibrary\steamapps\common\nosgoth\Binaries\Win32\Nosgoth.exe
FirewallRules: [{5B247AC1-4642-4128-A441-1FAAEAFC6057}] => (Allow) D:\SteamLibrary\steamapps\common\Wakfu\transition\transition.exe
FirewallRules: [{6F2BC838-9522-49E5-8030-8FFCBE17691D}] => (Allow) D:\SteamLibrary\steamapps\common\Wakfu\transition\transition.exe
FirewallRules: [TCP Query User{9CA05AF7-A6C4-4690-A748-985F91ABBA1C}D:\steamlibrary\steamapps\common\dayz\dayz.exe] => (Allow) D:\steamlibrary\steamapps\common\dayz\dayz.exe
FirewallRules: [UDP Query User{EE91D4BC-417B-49C2-ABCE-08C0DDEDC3DE}D:\steamlibrary\steamapps\common\dayz\dayz.exe] => (Allow) D:\steamlibrary\steamapps\common\dayz\dayz.exe
FirewallRules: [{25F76477-EB10-477D-92A7-DCBB982FD230}] => (Allow) D:\SteamLibrary\steamapps\common\The Witcher Enhanced Edition\System\witcher.exe
FirewallRules: [{E476A509-7FEB-4FBB-B8CC-4A16375DFA7B}] => (Allow) D:\SteamLibrary\steamapps\common\The Witcher Enhanced Edition\System\witcher.exe
FirewallRules: [{997CEE49-1253-4CA7-B49F-E1EFD27DFEA4}] => (Allow) D:\SteamLibrary\steamapps\common\The Witcher Enhanced Edition\System\djinni!.exe
FirewallRules: [{C41EC134-E153-4EC5-9C68-48B8AF91CEA9}] => (Allow) D:\SteamLibrary\steamapps\common\The Witcher Enhanced Edition\System\djinni!.exe
FirewallRules: [{29D32734-1458-4C12-B7AE-25E3BB131A81}] => (Allow) D:\SteamLibrary\steamapps\common\The Witcher Enhanced Edition\Digital Comic\DigitalComic.exe
FirewallRules: [{6BE1C260-9711-49DE-A4F6-F7E72A729EC0}] => (Allow) D:\SteamLibrary\steamapps\common\The Witcher Enhanced Edition\Digital Comic\DigitalComic.exe
FirewallRules: [TCP Query User{AD04912C-0F0E-4466-81F9-90D616F4FD18}D:\steamlibrary\steamapps\common\h1z1\h1z1.exe] => (Allow) D:\steamlibrary\steamapps\common\h1z1\h1z1.exe
FirewallRules: [UDP Query User{E747ACC3-F42B-4ECC-92C8-69EE693CE1B6}D:\steamlibrary\steamapps\common\h1z1\h1z1.exe] => (Allow) D:\steamlibrary\steamapps\common\h1z1\h1z1.exe
FirewallRules: [TCP Query User{D4FAA045-1387-4CC7-88C7-D13AAD0374ED}C:\users\jasch\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\jasch\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{A05BA291-A46F-44B7-BCA2-0BA0D2CE74B5}C:\users\jasch\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\jasch\appdata\roaming\spotify\spotify.exe
FirewallRules: [TCP Query User{E3178FF2-2FA8-42D1-B716-D78435447464}C:\program files (x86)\metro 2033 redux\metro_benchmark.exe] => (Allow) C:\program files (x86)\metro 2033 redux\metro_benchmark.exe
FirewallRules: [UDP Query User{2FB4AEAB-CED0-4800-82EE-B4E20719EFCF}C:\program files (x86)\metro 2033 redux\metro_benchmark.exe] => (Allow) C:\program files (x86)\metro 2033 redux\metro_benchmark.exe
FirewallRules: [TCP Query User{848E2C76-7691-4461-977D-B3B8C4DB7F3E}C:\program files (x86)\deep silver\metro redux\metro 2033 redux\metro_benchmark.exe] => (Allow) C:\program files (x86)\deep silver\metro redux\metro 2033 redux\metro_benchmark.exe
FirewallRules: [UDP Query User{F9E0FA7F-38D1-42C0-B8C4-4179FF7C9B85}C:\program files (x86)\deep silver\metro redux\metro 2033 redux\metro_benchmark.exe] => (Allow) C:\program files (x86)\deep silver\metro redux\metro 2033 redux\metro_benchmark.exe
FirewallRules: [TCP Query User{B0844BE9-CEEA-4729-BDEB-44A66FAF38E2}D:\games\divinity\shipping\eocapp.exe] => (Allow) D:\games\divinity\shipping\eocapp.exe
FirewallRules: [UDP Query User{3393A539-0B06-44BA-B533-F6E209DE8044}D:\games\divinity\shipping\eocapp.exe] => (Allow) D:\games\divinity\shipping\eocapp.exe
FirewallRules: [TCP Query User{53D8FCDD-C8E5-4404-8CFE-BE16D7E0A777}D:\games\vanishing of ethan carter\binaries\win64\astronautsgame-win64-shipping.exe] => (Allow) D:\games\vanishing of ethan carter\binaries\win64\astronautsgame-win64-shipping.exe
FirewallRules: [UDP Query User{301199F9-17AE-4502-AEDE-1593197B6435}D:\games\vanishing of ethan carter\binaries\win64\astronautsgame-win64-shipping.exe] => (Allow) D:\games\vanishing of ethan carter\binaries\win64\astronautsgame-win64-shipping.exe
FirewallRules: [{980BC4B1-5891-4558-AD68-4B3129188FB7}] => (Allow) D:\SteamLibrary\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{C9AAA964-5DBC-4EFE-9D78-611219206B3A}] => (Allow) D:\SteamLibrary\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [TCP Query User{DC6FE9E6-523D-42F9-9096-D635900D337E}D:\games\world of warships\wowslauncher.exe] => (Allow) D:\games\world of warships\wowslauncher.exe
FirewallRules: [UDP Query User{9411BFC7-0CB4-4564-8989-9A0680827B57}D:\games\world of warships\wowslauncher.exe] => (Allow) D:\games\world of warships\wowslauncher.exe
FirewallRules: [{ECFA988E-E52E-40B8-98F4-333C53376A39}] => (Allow) D:\SteamLibrary\steamapps\common\supercratebox\supercratebox.exe
FirewallRules: [{1DDC726C-B72D-4EC3-8ADE-087798965623}] => (Allow) D:\SteamLibrary\steamapps\common\supercratebox\supercratebox.exe
FirewallRules: [{A1B14460-2A51-4161-A020-359056737705}] => (Allow) D:\SteamLibrary\steamapps\common\DayZ\DayZ_BE.exe
FirewallRules: [{C944C8BE-8E1A-4D5A-8690-827F5F383C82}] => (Allow) D:\SteamLibrary\steamapps\common\DayZ\DayZ_BE.exe
FirewallRules: [TCP Query User{D1134A74-3010-4BD1-BE38-4CAD15E761AB}D:\games\mass effect 3\binaries\win32\masseffect3.exe] => (Block) D:\games\mass effect 3\binaries\win32\masseffect3.exe
FirewallRules: [UDP Query User{5FA0565D-1CCD-4793-94EB-51B24F4CEFCF}D:\games\mass effect 3\binaries\win32\masseffect3.exe] => (Block) D:\games\mass effect 3\binaries\win32\masseffect3.exe
FirewallRules: [{C12587D2-7721-4076-A395-187568C15306}] => (Allow) D:\SteamLibrary\steamapps\common\Hawken\Binaries\Win32\HawkenGame-Win32-Shipping.exe
FirewallRules: [{E8980F81-2A7A-4AC0-9A62-C55FCA60ABE5}] => (Allow) D:\SteamLibrary\steamapps\common\Hawken\Binaries\Win32\HawkenGame-Win32-Shipping.exe
FirewallRules: [{0FDA4E6C-BFF1-46BD-9483-C73E121DB2B3}] => (Allow) D:\SteamLibrary\steamapps\common\Survarium\temp\survarium_launcher.exe
FirewallRules: [{F871B07B-C6D2-469F-ABC4-5C639E8E7F88}] => (Allow) D:\SteamLibrary\steamapps\common\Survarium\temp\survarium_updater.exe
FirewallRules: [{A1394C47-83A3-4CD8-B420-4DF05A1F04BD}] => (Allow) D:\SteamLibrary\steamapps\common\Survarium\temp\survarium_updater.exe
FirewallRules: [{642F275F-B85D-48D8-8DE4-ED81F1865B4B}] => (Allow) D:\SteamLibrary\steamapps\common\Survarium\temp\survarium_updater.exe
FirewallRules: [{4A733EC8-982A-4C4F-A1FC-3146C61384E4}] => (Allow) D:\SteamLibrary\steamapps\common\Survarium\temp\survarium_updater.exe
FirewallRules: [{D16DE861-7778-4C2C-A141-22430A1A253A}] => (Allow) D:\SteamLibrary\steamapps\common\Survarium\game\binaries\x86\survarium.exe
FirewallRules: [{F92E839D-499D-4A81-9C83-F8891E6297C0}] => (Allow) D:\SteamLibrary\steamapps\common\Survarium\game\binaries\x86\survarium.exe
FirewallRules: [TCP Query User{91A54CB3-439E-498A-AA07-EED815789344}D:\steamlibrary\steamapps\common\survarium\game\binaries\x86\survarium.exe] => (Allow) D:\steamlibrary\steamapps\common\survarium\game\binaries\x86\survarium.exe
FirewallRules: [UDP Query User{3B5D93B7-8FC1-4FAD-BECC-729A8C83B2BA}D:\steamlibrary\steamapps\common\survarium\game\binaries\x86\survarium.exe] => (Allow) D:\steamlibrary\steamapps\common\survarium\game\binaries\x86\survarium.exe
FirewallRules: [{C85F98C4-DA89-4818-BDDD-A0DFE1D9CEE9}] => (Allow) D:\SteamLibrary\steamapps\common\Ys I\ys1plus.exe
FirewallRules: [{1BFA5570-DC04-41FE-A82D-0A4EADF4F67E}] => (Allow) D:\SteamLibrary\steamapps\common\Ys I\ys1plus.exe
FirewallRules: [{7E638BA4-9343-423A-B478-56BA6311AC5B}] => (Allow) D:\SteamLibrary\steamapps\common\Ys I\config.exe
FirewallRules: [{A09333E1-A5EB-4FF7-9AAB-88318915FA74}] => (Allow) D:\SteamLibrary\steamapps\common\Ys I\config.exe
FirewallRules: [{4D1A57E6-E81A-4553-B064-63FF68590190}] => (Allow) D:\SteamLibrary\steamapps\common\Ys II\ys2plus.exe
FirewallRules: [{66AED8CA-368A-47C6-933C-B15209378BCF}] => (Allow) D:\SteamLibrary\steamapps\common\Ys II\ys2plus.exe
FirewallRules: [{B0E8C358-2EA2-4DE1-8AC1-F80454229E67}] => (Allow) D:\SteamLibrary\steamapps\common\Ys II\config.exe
FirewallRules: [{A2522D9E-1814-4F34-A2C2-D610629C17F0}] => (Allow) D:\SteamLibrary\steamapps\common\Ys II\config.exe
FirewallRules: [{9CD6B7B0-D78E-4C6A-B61D-24D923BE4285}] => (Allow) D:\SteamLibrary\steamapps\common\Ys Origin\yso_win.exe
FirewallRules: [{3823A811-2F24-41FD-8F8B-66057C79DF4C}] => (Allow) D:\SteamLibrary\steamapps\common\Ys Origin\yso_win.exe
FirewallRules: [{8353B0FF-BDEA-4EF6-80A4-41C18E323791}] => (Allow) D:\SteamLibrary\steamapps\common\Ys Origin\config.exe
FirewallRules: [{38F684B5-533A-45C3-980B-0F281348D9C3}] => (Allow) D:\SteamLibrary\steamapps\common\Ys Origin\config.exe
FirewallRules: [{F82F0772-8097-48CE-B65A-95C0128A0FCA}] => (Allow) D:\SteamLibrary\steamapps\common\Shovel Knight\ShovelKnight.exe
FirewallRules: [{BADF8670-252C-47DE-BCB8-E27F6FC1EB22}] => (Allow) D:\SteamLibrary\steamapps\common\Shovel Knight\ShovelKnight.exe
FirewallRules: [{68E8677E-DDB3-4E64-B01F-4FC756F2447C}] => (Allow) D:\SteamLibrary\steamapps\common\Nidhogg\Nidhogg.exe
FirewallRules: [{20820483-DC57-4FAC-868C-4834978BC5DB}] => (Allow) D:\SteamLibrary\steamapps\common\Nidhogg\Nidhogg.exe
FirewallRules: [{5D17C59D-7A56-493F-8987-ACB31195E38B}] => (Allow) D:\SteamLibrary\steamapps\common\Arma 2\arma2.exe
FirewallRules: [{7616B7F2-2DDD-471C-920D-F1A779E721CD}] => (Allow) D:\SteamLibrary\steamapps\common\Arma 2\arma2.exe
FirewallRules: [{EEAB1CCF-6125-4ED9-B19F-2EE3062EDEF2}] => (Allow) D:\SteamLibrary\steamapps\common\Lume\Lume.exe
FirewallRules: [{0BC212B1-6893-43FA-95B5-7EF21C4EB920}] => (Allow) D:\SteamLibrary\steamapps\common\Lume\Lume.exe
FirewallRules: [{67F1A9CA-C943-4CB1-ACC9-58197880BB65}] => (Allow) D:\SteamLibrary\steamapps\common\PapersPlease\PapersPlease.exe
FirewallRules: [{BCBB6636-F818-46C0-A988-D4A37B202F93}] => (Allow) D:\SteamLibrary\steamapps\common\PapersPlease\PapersPlease.exe
FirewallRules: [{3DE28FBA-08AF-49EF-891F-E10407488BF8}] => (Allow) D:\SteamLibrary\steamapps\common\PAYDAY 2\payday2_win32_release.exe
FirewallRules: [{F5260715-62CB-465B-B7B1-6B1D5846940F}] => (Allow) D:\SteamLibrary\steamapps\common\PAYDAY 2\payday2_win32_release.exe
FirewallRules: [{B0253630-CB06-4C4E-B0CF-0ECFD54A8D08}] => (Allow) D:\SteamLibrary\steamapps\common\Portal\hl2.exe
FirewallRules: [{C4881D7B-E76D-46EA-871F-5B6070899477}] => (Allow) D:\SteamLibrary\steamapps\common\Portal\hl2.exe
FirewallRules: [{A11789F5-0CDC-44C1-AB0D-BD4691492570}] => (Allow) D:\SteamLibrary\steamapps\common\Portal 2\portal2.exe
FirewallRules: [{693965F7-1263-45EE-97E1-734A4E1F081A}] => (Allow) D:\SteamLibrary\steamapps\common\Portal 2\portal2.exe
FirewallRules: [{9E821329-98F3-446F-A404-277CC32D5A27}] => (Allow) D:\SteamLibrary\steamapps\common\The Stanley Parable\stanley.exe
FirewallRules: [{C3B49149-31E5-4209-8935-9D23A07EE148}] => (Allow) D:\SteamLibrary\steamapps\common\The Stanley Parable\stanley.exe
FirewallRules: [{4C36151E-D553-4641-A86D-0DC19C462BD6}] => (Allow) D:\SteamLibrary\steamapps\common\The Wolf Among Us\TheWolfAmongUs.exe
FirewallRules: [{1D2A3F13-7C0D-43A2-B00E-CA65B9AAF0B3}] => (Allow) D:\SteamLibrary\steamapps\common\The Wolf Among Us\TheWolfAmongUs.exe
FirewallRules: [{11CD40F7-E15E-466B-B7B3-1638F958D646}] => (Allow) D:\SteamLibrary\steamapps\common\The Walking Dead\WalkingDead101.exe
FirewallRules: [{AC66C2BA-5693-428C-8ED7-69DEDB69274F}] => (Allow) D:\SteamLibrary\steamapps\common\The Walking Dead\WalkingDead101.exe
FirewallRules: [{B208BC5B-02D4-4DA8-AA3A-94B26D5B9318}] => (Allow) D:\SteamLibrary\steamapps\common\The Walking Dead Season Two\TheWalkingDead2.exe
FirewallRules: [{CB82052A-FED9-4C1F-B27C-07B62ADC75DB}] => (Allow) D:\SteamLibrary\steamapps\common\The Walking Dead Season Two\TheWalkingDead2.exe
FirewallRules: [{70E382B6-117E-4973-9154-C39C95C44C81}] => (Allow) D:\SteamLibrary\steamapps\common\DmC Devil May Cry\Binaries\Win32\DMC-DevilMayCry.exe
FirewallRules: [{1304BFB5-6690-440F-BE02-170F3C1BE5AC}] => (Allow) D:\SteamLibrary\steamapps\common\DmC Devil May Cry\Binaries\Win32\DMC-DevilMayCry.exe
FirewallRules: [{5E3376B4-2D3A-4830-989B-687B1EAA45AC}] => (Allow) D:\SteamLibrary\steamapps\common\140\140.exe
FirewallRules: [{305321CD-6BEF-4A2B-B9CD-00E4F94DE2D3}] => (Allow) D:\SteamLibrary\steamapps\common\140\140.exe
FirewallRules: [{1C0E590C-FD5A-4843-A75C-F2CFA1EB65FA}] => (Allow) D:\SteamLibrary\steamapps\common\MirrorMoonEP\MirrorMoonEP.exe
FirewallRules: [{EC4C78EB-5D58-407C-A0D1-18C9477DE4D7}] => (Allow) D:\SteamLibrary\steamapps\common\MirrorMoonEP\MirrorMoonEP.exe
FirewallRules: [{A87A467D-8C2D-46AD-9E89-E6F1BB4CEB0C}] => (Allow) D:\SteamLibrary\steamapps\common\Pixel Piracy\PixelPiracy.exe
FirewallRules: [{A053420B-6C37-4F33-8556-04F2B421F108}] => (Allow) D:\SteamLibrary\steamapps\common\Pixel Piracy\PixelPiracy.exe
FirewallRules: [{689DF153-F24C-4EB3-9596-10A8D73C00CB}] => (Allow) D:\SteamLibrary\steamapps\common\Grand Theft Auto V\GTAVLauncher.exe
FirewallRules: [{FDD72598-A4C9-4B9E-A2A4-5E96C5A4B196}] => (Allow) D:\SteamLibrary\steamapps\common\Grand Theft Auto V\GTAVLauncher.exe
FirewallRules: [TCP Query User{F221A2A1-CDBC-42AD-A93B-F452ADCACA1A}D:\steamlibrary\steamapps\common\grand theft auto v\gta5.exe] => (Allow) D:\steamlibrary\steamapps\common\grand theft auto v\gta5.exe
FirewallRules: [UDP Query User{14280FDB-FC29-467F-A27B-BA015D44CD55}D:\steamlibrary\steamapps\common\grand theft auto v\gta5.exe] => (Allow) D:\steamlibrary\steamapps\common\grand theft auto v\gta5.exe
FirewallRules: [TCP Query User{2C433EF0-9004-4BDC-BF6E-A4B6485CD8A7}C:\program files (x86)\steam\steamapps\grand theft auto v\gta5.exe] => (Allow) C:\program files (x86)\steam\steamapps\grand theft auto v\gta5.exe
FirewallRules: [UDP Query User{696D218B-52DC-4BBA-9427-1F2F62E53408}C:\program files (x86)\steam\steamapps\grand theft auto v\gta5.exe] => (Allow) C:\program files (x86)\steam\steamapps\grand theft auto v\gta5.exe
FirewallRules: [{4EFBFAEF-C6BB-479C-8963-3DBEB5C9F2F3}] => (Allow) D:\SteamLibrary\steamapps\common\Torchlight II\ModLauncher.exe
FirewallRules: [{216EF548-106A-43EE-AE8F-5C76BF2C921A}] => (Allow) D:\SteamLibrary\steamapps\common\Torchlight II\ModLauncher.exe
FirewallRules: [TCP Query User{7D0F8A5F-2509-47E6-AA10-5C3DE4D50E24}C:\program files (x86)\a3launcher\a3launcher.exe] => (Allow) C:\program files (x86)\a3launcher\a3launcher.exe
FirewallRules: [UDP Query User{669CDB72-5623-417C-B307-A7D974C6F386}C:\program files (x86)\a3launcher\a3launcher.exe] => (Allow) C:\program files (x86)\a3launcher\a3launcher.exe
FirewallRules: [{A1B4F96A-EA19-42F5-9C1F-678A89C51ABF}] => (Allow) D:\SteamLibrary\steamapps\common\Outlast\OutlastLauncher.exe
FirewallRules: [{8F29B4E4-2FF2-46A0-993E-EBD2C8982A2E}] => (Allow) D:\SteamLibrary\steamapps\common\Outlast\OutlastLauncher.exe
FirewallRules: [{8697DC61-444E-46C9-971D-19706E3921D1}] => (Allow) C:\Program Files (x86)\Origin Games\Syndicate (1993)\data\Game\DOSBox\LAUNCHER.exe
FirewallRules: [{687FAAD0-6F46-41F9-9645-6FED545810E0}] => (Allow) C:\Program Files (x86)\Origin Games\Syndicate (1993)\data\Game\DOSBox\LAUNCHER.exe
FirewallRules: [{6C8A36D3-EFAC-4A6C-8CCD-CF6FA5E2C5E5}] => (Allow) D:\Origin\Bejeweled 3\Bejeweled3.exe
FirewallRules: [{882CFE06-FB0B-44C8-A1EE-166165D5D98B}] => (Allow) D:\Origin\Bejeweled 3\Bejeweled3.exe
FirewallRules: [{DBFEE50E-D6B3-4A29-A9CF-026BB4F75D5A}] => (Allow) D:\SteamLibrary\steamapps\common\Dead Space 2\deadspace2.exe
FirewallRules: [{D6F17580-45A6-451D-9DE7-9D46D07DC94C}] => (Allow) D:\SteamLibrary\steamapps\common\Dead Space 2\deadspace2.exe
FirewallRules: [{1D60AAE8-B1BC-45D9-8031-E739578CEAE2}] => (Allow) D:\SteamLibrary\steamapps\common\Mass Effect 2\Binaries\MassEffect2.exe
FirewallRules: [{8F048E3D-16A8-4F14-9952-C5C8E51620D8}] => (Allow) D:\SteamLibrary\steamapps\common\Mass Effect 2\Binaries\MassEffect2.exe
FirewallRules: [{6DBE6F0D-0756-4E94-86D5-1754FE9661BD}] => (Allow) D:\SteamLibrary\steamapps\common\Mass Effect 2\MassEffect2Launcher.exe
FirewallRules: [{0DC8DAA4-62A2-4E62-81D5-CE732AC6B62B}] => (Allow) D:\SteamLibrary\steamapps\common\Mass Effect 2\MassEffect2Launcher.exe
FirewallRules: [{0D9F36B2-4107-48AB-B9D3-12B8ACA71180}] => (Allow) D:\SteamLibrary\steamapps\common\Dragon Age Origins\bin_ship\DAOrigins.exe
FirewallRules: [{6BB0FDD2-407A-4CC7-9A5C-562A7F06B567}] => (Allow) D:\SteamLibrary\steamapps\common\Dragon Age Origins\bin_ship\DAOrigins.exe
FirewallRules: [{5B0ACFAD-B29E-44D9-919C-7F2E6786A606}] => (Allow) D:\SteamLibrary\steamapps\common\Dragon Age Origins\DAOriginsLauncher.exe
FirewallRules: [{9F87D3F0-EB79-46AA-A271-3F89AE24D231}] => (Allow) D:\SteamLibrary\steamapps\common\Dragon Age Origins\DAOriginsLauncher.exe
FirewallRules: [TCP Query User{61B6791A-A36D-46DB-BFE3-F66C7152C279}D:\battle.net\hearthstone\hearthstone.exe] => (Allow) D:\battle.net\hearthstone\hearthstone.exe
FirewallRules: [UDP Query User{9D0AB1A9-EAFB-4757-B540-7E48109199A8}D:\battle.net\hearthstone\hearthstone.exe] => (Allow) D:\battle.net\hearthstone\hearthstone.exe
FirewallRules: [{38A96370-2C4E-4FC8-8F89-DCF77642DB62}] => (Allow) D:\SteamLibrary\steamapps\common\H1Z1 Test\LaunchPad.exe
FirewallRules: [{7CC5BE3B-B145-414D-9652-3153B285787F}] => (Allow) D:\SteamLibrary\steamapps\common\H1Z1 Test\LaunchPad.exe
FirewallRules: [{B4079F74-1138-40FE-99DF-D24A52B559D6}] => (Allow) D:\SteamLibrary\steamapps\common\the witcher 2\Launcher.exe
FirewallRules: [{FE9F2F8A-02A7-4B5D-9872-17BFC929261B}] => (Allow) D:\SteamLibrary\steamapps\common\the witcher 2\Launcher.exe
FirewallRules: [{D8426BCF-E352-4DA1-8844-0791E8D7BB80}] => (Allow) D:\SteamLibrary\steamapps\common\Unepic\unepic.exe
FirewallRules: [{077AAD8F-6FEA-404E-AFA6-44BB350694DA}] => (Allow) D:\SteamLibrary\steamapps\common\Unepic\unepic.exe
FirewallRules: [TCP Query User{5A5E366F-BCF4-48AA-8802-B5A6F1EDF440}C:\program files (x86)\steam\steamapps\arma 3\arma3.exe] => (Allow) C:\program files (x86)\steam\steamapps\arma 3\arma3.exe
FirewallRules: [UDP Query User{D952C09B-D2AC-470F-BED9-5094454F606E}C:\program files (x86)\steam\steamapps\arma 3\arma3.exe] => (Allow) C:\program files (x86)\steam\steamapps\arma 3\arma3.exe
FirewallRules: [{69C2C989-8EA9-4EFD-924B-DEE9D9947005}] => (Allow) D:\SteamLibrary\steamapps\common\TERA\TERA-Launcher.exe
FirewallRules: [{EC711128-6A87-4D5B-BD2D-C0AB25A8CED5}] => (Allow) D:\SteamLibrary\steamapps\common\TERA\TERA-Launcher.exe
FirewallRules: [{C94EA61A-CB28-4140-A3F3-39E69ED723A9}] => (Allow) D:\SteamLibrary\steamapps\common\3DMark\bin\x86\3DMark.exe
FirewallRules: [{54FE237E-1970-484B-9E81-3B7569448828}] => (Allow) D:\SteamLibrary\steamapps\common\3DMark\bin\x86\3DMark.exe
FirewallRules: [{1E86DEA2-2694-4F62-A42D-AB1CF9E6F9AD}] => (Allow) D:\SteamLibrary\steamapps\common\3DMark\bin\x64\3DMark.exe
FirewallRules: [{D43129D9-68F5-4C52-9800-F15AA763D8B6}] => (Allow) D:\SteamLibrary\steamapps\common\3DMark\bin\x64\3DMark.exe
FirewallRules: [{530C7820-172E-4F98-BD16-8EE742F80975}] => (Allow) D:\SteamLibrary\steamapps\common\tbs\win32\The Banner Saga.exe
FirewallRules: [{809AA726-A857-4F11-A115-58FF82E16F93}] => (Allow) D:\SteamLibrary\steamapps\common\tbs\win32\The Banner Saga.exe
FirewallRules: [{363E24C5-9173-4385-8E8E-0CE892D96A5A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warface\live\nw.exe
FirewallRules: [{F0BD5C2C-2512-4F45-B577-7DCA71EE8153}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warface\live\nw.exe
FirewallRules: [{B5EDE426-4BB9-4005-AB30-EDD1AA287F40}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{366E4513-C4B8-4312-A028-66D126EB2DD5}] => (Allow) D:\SteamLibrary\steamapps\common\nosgoth\Binaries\Win32\Nosgoth.exe
FirewallRules: [{A6CE60C2-69E6-45A7-9C71-398F563EE43E}] => (Allow) D:\SteamLibrary\steamapps\common\nosgoth\Binaries\Win32\Nosgoth.exe

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (05/14/2015 03:05:20 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: MsMpEng.exe, Version: 4.7.205.0, Zeitstempel: 0x54cb5aeb
Name des fehlerhaften Moduls: mpengine.dll, Version: 1.1.9700.0, Zeitstempel: 0x51d28fcb
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000000005615b7
ID des fehlerhaften Prozesses: 0xe28
Startzeit der fehlerhaften Anwendung: 0xMsMpEng.exe0
Pfad der fehlerhaften Anwendung: MsMpEng.exe1
Pfad des fehlerhaften Moduls: MsMpEng.exe2
Berichtskennung: MsMpEng.exe3
Vollständiger Name des fehlerhaften Pakets: MsMpEng.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: MsMpEng.exe5

Error: (05/14/2015 01:06:04 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: Wasteland Launcher.exe, Version: 0.0.2.1, Zeitstempel: 0x554909d3
Name des fehlerhaften Moduls: KERNELBASE.dll, Version: 6.3.9600.17415, Zeitstempel: 0x54504ade
Ausnahmecode: 0xe0434352
Fehleroffset: 0x00014598
ID des fehlerhaften Prozesses: 0x37c4
Startzeit der fehlerhaften Anwendung: 0xWasteland Launcher.exe0
Pfad der fehlerhaften Anwendung: Wasteland Launcher.exe1
Pfad des fehlerhaften Moduls: Wasteland Launcher.exe2
Berichtskennung: Wasteland Launcher.exe3
Vollständiger Name des fehlerhaften Pakets: Wasteland Launcher.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: Wasteland Launcher.exe5

Error: (05/14/2015 01:06:04 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Anwendung: Wasteland Launcher.exe
Frameworkversion: v4.0.30319
Beschreibung: Der Prozess wurde aufgrund eines Ausnahmefehlers beendet.
Ausnahmeinformationen: System.ComponentModel.Win32Exception
Stapel:
   bei System.Diagnostics.Process.Kill()
   bei Wasteland_Launcher.MainWindow.updateLauncher_ButtonClick(System.Object, System.Windows.RoutedEventArgs)
   bei System.Windows.RoutedEventHandlerInfo.InvokeHandler(System.Object, System.Windows.RoutedEventArgs)
   bei System.Windows.EventRoute.InvokeHandlersImpl(System.Object, System.Windows.RoutedEventArgs, Boolean)
   bei System.Windows.UIElement.RaiseEventImpl(System.Windows.DependencyObject, System.Windows.RoutedEventArgs)
   bei System.Windows.UIElement.RaiseEvent(System.Windows.RoutedEventArgs)
   bei System.Windows.Controls.Primitives.ButtonBase.OnClick()
   bei System.Windows.Controls.Button.OnClick()
   bei System.Windows.Controls.Primitives.ButtonBase.OnMouseLeftButtonUp(System.Windows.Input.MouseButtonEventArgs)
   bei System.Windows.UIElement.OnMouseLeftButtonUpThunk(System.Object, System.Windows.Input.MouseButtonEventArgs)
   bei System.Windows.Input.MouseButtonEventArgs.InvokeEventHandler(System.Delegate, System.Object)
   bei System.Windows.RoutedEventArgs.InvokeHandler(System.Delegate, System.Object)
   bei System.Windows.RoutedEventHandlerInfo.InvokeHandler(System.Object, System.Windows.RoutedEventArgs)
   bei System.Windows.EventRoute.InvokeHandlersImpl(System.Object, System.Windows.RoutedEventArgs, Boolean)
   bei System.Windows.UIElement.ReRaiseEventAs(System.Windows.DependencyObject, System.Windows.RoutedEventArgs, System.Windows.RoutedEvent)
   bei System.Windows.UIElement.OnMouseUpThunk(System.Object, System.Windows.Input.MouseButtonEventArgs)
   bei System.Windows.Input.MouseButtonEventArgs.InvokeEventHandler(System.Delegate, System.Object)
   bei System.Windows.RoutedEventArgs.InvokeHandler(System.Delegate, System.Object)
   bei System.Windows.RoutedEventHandlerInfo.InvokeHandler(System.Object, System.Windows.RoutedEventArgs)
   bei System.Windows.EventRoute.InvokeHandlersImpl(System.Object, System.Windows.RoutedEventArgs, Boolean)
   bei System.Windows.UIElement.RaiseEventImpl(System.Windows.DependencyObject, System.Windows.RoutedEventArgs)
   bei System.Windows.UIElement.RaiseTrustedEvent(System.Windows.RoutedEventArgs)
   bei System.Windows.UIElement.RaiseEvent(System.Windows.RoutedEventArgs, Boolean)
   bei System.Windows.Input.InputManager.ProcessStagingArea()
   bei System.Windows.Input.InputManager.ProcessInput(System.Windows.Input.InputEventArgs)
   bei System.Windows.Input.InputProviderSite.ReportInput(System.Windows.Input.InputReport)
   bei System.Windows.Interop.HwndMouseInputProvider.ReportInput(IntPtr, System.Windows.Input.InputMode, Int32, System.Windows.Input.RawMouseActions, Int32, Int32, Int32)
   bei System.Windows.Interop.HwndMouseInputProvider.FilterMessage(IntPtr, MS.Internal.Interop.WindowMessage, IntPtr, IntPtr, Boolean ByRef)
   bei System.Windows.Interop.HwndSource.InputFilterMessage(IntPtr, Int32, IntPtr, IntPtr, Boolean ByRef)
   bei MS.Win32.HwndWrapper.WndProc(IntPtr, Int32, IntPtr, IntPtr, Boolean ByRef)
   bei MS.Win32.HwndSubclass.DispatcherCallbackOperation(System.Object)
   bei System.Windows.Threading.ExceptionWrapper.InternalRealCall(System.Delegate, System.Object, Int32)
   bei MS.Internal.Threading.ExceptionFilterHelper.TryCatchWhen(System.Object, System.Delegate, System.Object, Int32, System.Delegate)
   bei System.Windows.Threading.Dispatcher.LegacyInvokeImpl(System.Windows.Threading.DispatcherPriority, System.TimeSpan, System.Delegate, System.Object, Int32)
   bei MS.Win32.HwndSubclass.SubclassWndProc(IntPtr, Int32, IntPtr, IntPtr)
   bei MS.Win32.UnsafeNativeMethods.DispatchMessage(System.Windows.Interop.MSG ByRef)
   bei System.Windows.Threading.Dispatcher.PushFrameImpl(System.Windows.Threading.DispatcherFrame)
   bei System.Windows.Threading.Dispatcher.PushFrame(System.Windows.Threading.DispatcherFrame)
   bei System.Windows.Threading.Dispatcher.Run()
   bei System.Windows.Application.RunDispatcher(System.Object)
   bei System.Windows.Application.RunInternal(System.Windows.Window)
   bei System.Windows.Application.Run(System.Windows.Window)
   bei Wasteland_Launcher.App.Main()

Error: (05/14/2015 11:31:08 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: nw.exe, Version: 0.0.0.0, Zeitstempel: 0x52a12888
Name des fehlerhaften Moduls: nw.exe, Version: 0.0.0.0, Zeitstempel: 0x52a12888
Ausnahmecode: 0x80000003
Fehleroffset: 0x00332a90
ID des fehlerhaften Prozesses: 0x3554
Startzeit der fehlerhaften Anwendung: 0xnw.exe0
Pfad der fehlerhaften Anwendung: nw.exe1
Pfad des fehlerhaften Moduls: nw.exe2
Berichtskennung: nw.exe3
Vollständiger Name des fehlerhaften Pakets: nw.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: nw.exe5

Error: (05/14/2015 00:26:50 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: Wasteland Launcher.exe, Version: 0.0.2.1, Zeitstempel: 0x554909d3
Name des fehlerhaften Moduls: KERNELBASE.dll, Version: 6.3.9600.17415, Zeitstempel: 0x54504ade
Ausnahmecode: 0xe0434352
Fehleroffset: 0x00014598
ID des fehlerhaften Prozesses: 0x1e00
Startzeit der fehlerhaften Anwendung: 0xWasteland Launcher.exe0
Pfad der fehlerhaften Anwendung: Wasteland Launcher.exe1
Pfad des fehlerhaften Moduls: Wasteland Launcher.exe2
Berichtskennung: Wasteland Launcher.exe3
Vollständiger Name des fehlerhaften Pakets: Wasteland Launcher.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: Wasteland Launcher.exe5

Error: (05/14/2015 00:26:50 AM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Anwendung: Wasteland Launcher.exe
Frameworkversion: v4.0.30319
Beschreibung: Der Prozess wurde aufgrund eines Ausnahmefehlers beendet.
Ausnahmeinformationen: System.ComponentModel.Win32Exception
Stapel:
   bei System.Diagnostics.Process.Kill()
   bei Wasteland_Launcher.MainWindow.updateLauncher_ButtonClick(System.Object, System.Windows.RoutedEventArgs)
   bei System.Windows.RoutedEventHandlerInfo.InvokeHandler(System.Object, System.Windows.RoutedEventArgs)
   bei System.Windows.EventRoute.InvokeHandlersImpl(System.Object, System.Windows.RoutedEventArgs, Boolean)
   bei System.Windows.UIElement.RaiseEventImpl(System.Windows.DependencyObject, System.Windows.RoutedEventArgs)
   bei System.Windows.UIElement.RaiseEvent(System.Windows.RoutedEventArgs)
   bei System.Windows.Controls.Primitives.ButtonBase.OnClick()
   bei System.Windows.Controls.Button.OnClick()
   bei System.Windows.Controls.Primitives.ButtonBase.OnMouseLeftButtonUp(System.Windows.Input.MouseButtonEventArgs)
   bei System.Windows.UIElement.OnMouseLeftButtonUpThunk(System.Object, System.Windows.Input.MouseButtonEventArgs)
   bei System.Windows.Input.MouseButtonEventArgs.InvokeEventHandler(System.Delegate, System.Object)
   bei System.Windows.RoutedEventArgs.InvokeHandler(System.Delegate, System.Object)
   bei System.Windows.RoutedEventHandlerInfo.InvokeHandler(System.Object, System.Windows.RoutedEventArgs)
   bei System.Windows.EventRoute.InvokeHandlersImpl(System.Object, System.Windows.RoutedEventArgs, Boolean)
   bei System.Windows.UIElement.ReRaiseEventAs(System.Windows.DependencyObject, System.Windows.RoutedEventArgs, System.Windows.RoutedEvent)
   bei System.Windows.UIElement.OnMouseUpThunk(System.Object, System.Windows.Input.MouseButtonEventArgs)
   bei System.Windows.Input.MouseButtonEventArgs.InvokeEventHandler(System.Delegate, System.Object)
   bei System.Windows.RoutedEventArgs.InvokeHandler(System.Delegate, System.Object)
   bei System.Windows.RoutedEventHandlerInfo.InvokeHandler(System.Object, System.Windows.RoutedEventArgs)
   bei System.Windows.EventRoute.InvokeHandlersImpl(System.Object, System.Windows.RoutedEventArgs, Boolean)
   bei System.Windows.UIElement.RaiseEventImpl(System.Windows.DependencyObject, System.Windows.RoutedEventArgs)
   bei System.Windows.UIElement.RaiseTrustedEvent(System.Windows.RoutedEventArgs)
   bei System.Windows.UIElement.RaiseEvent(System.Windows.RoutedEventArgs, Boolean)
   bei System.Windows.Input.InputManager.ProcessStagingArea()
   bei System.Windows.Input.InputManager.ProcessInput(System.Windows.Input.InputEventArgs)
   bei System.Windows.Input.InputProviderSite.ReportInput(System.Windows.Input.InputReport)
   bei System.Windows.Interop.HwndMouseInputProvider.ReportInput(IntPtr, System.Windows.Input.InputMode, Int32, System.Windows.Input.RawMouseActions, Int32, Int32, Int32)
   bei System.Windows.Interop.HwndMouseInputProvider.FilterMessage(IntPtr, MS.Internal.Interop.WindowMessage, IntPtr, IntPtr, Boolean ByRef)
   bei System.Windows.Interop.HwndSource.InputFilterMessage(IntPtr, Int32, IntPtr, IntPtr, Boolean ByRef)
   bei MS.Win32.HwndWrapper.WndProc(IntPtr, Int32, IntPtr, IntPtr, Boolean ByRef)
   bei MS.Win32.HwndSubclass.DispatcherCallbackOperation(System.Object)
   bei System.Windows.Threading.ExceptionWrapper.InternalRealCall(System.Delegate, System.Object, Int32)
   bei MS.Internal.Threading.ExceptionFilterHelper.TryCatchWhen(System.Object, System.Delegate, System.Object, Int32, System.Delegate)
   bei System.Windows.Threading.Dispatcher.LegacyInvokeImpl(System.Windows.Threading.DispatcherPriority, System.TimeSpan, System.Delegate, System.Object, Int32)
   bei MS.Win32.HwndSubclass.SubclassWndProc(IntPtr, Int32, IntPtr, IntPtr)
   bei MS.Win32.UnsafeNativeMethods.DispatchMessage(System.Windows.Interop.MSG ByRef)
   bei System.Windows.Threading.Dispatcher.PushFrameImpl(System.Windows.Threading.DispatcherFrame)
   bei System.Windows.Threading.Dispatcher.PushFrame(System.Windows.Threading.DispatcherFrame)
   bei System.Windows.Threading.Dispatcher.Run()
   bei System.Windows.Application.RunDispatcher(System.Object)
   bei System.Windows.Application.RunInternal(System.Windows.Window)
   bei System.Windows.Application.Run(System.Windows.Window)
   bei Wasteland_Launcher.App.Main()

Error: (05/14/2015 00:06:18 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: MsMpEng.exe, Version: 4.7.205.0, Zeitstempel: 0x54cb5aeb
Name des fehlerhaften Moduls: mpengine.dll, Version: 1.1.9700.0, Zeitstempel: 0x51d28fcb
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000000005615b7
ID des fehlerhaften Prozesses: 0x18c4
Startzeit der fehlerhaften Anwendung: 0xMsMpEng.exe0
Pfad der fehlerhaften Anwendung: MsMpEng.exe1
Pfad des fehlerhaften Moduls: MsMpEng.exe2
Berichtskennung: MsMpEng.exe3
Vollständiger Name des fehlerhaften Pakets: MsMpEng.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: MsMpEng.exe5

Error: (05/13/2015 11:55:15 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: MsMpEng.exe, Version: 4.7.205.0, Zeitstempel: 0x54cb5aeb
Name des fehlerhaften Moduls: mpengine.dll, Version: 1.1.9700.0, Zeitstempel: 0x51d28fcb
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000000005615b7
ID des fehlerhaften Prozesses: 0x1dd8
Startzeit der fehlerhaften Anwendung: 0xMsMpEng.exe0
Pfad der fehlerhaften Anwendung: MsMpEng.exe1
Pfad des fehlerhaften Moduls: MsMpEng.exe2
Berichtskennung: MsMpEng.exe3
Vollständiger Name des fehlerhaften Pakets: MsMpEng.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: MsMpEng.exe5

Error: (05/13/2015 11:51:26 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: MsMpEng.exe, Version: 4.7.205.0, Zeitstempel: 0x54cb5aeb
Name des fehlerhaften Moduls: mpengine.dll, Version: 1.1.9700.0, Zeitstempel: 0x51d28fcb
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000000005615b7
ID des fehlerhaften Prozesses: 0xe60
Startzeit der fehlerhaften Anwendung: 0xMsMpEng.exe0
Pfad der fehlerhaften Anwendung: MsMpEng.exe1
Pfad des fehlerhaften Moduls: MsMpEng.exe2
Berichtskennung: MsMpEng.exe3
Vollständiger Name des fehlerhaften Pakets: MsMpEng.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: MsMpEng.exe5

Error: (05/13/2015 07:44:37 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: plugin-container.exe, Version: 38.0.0.5606, Zeitstempel: 0x554d0f95
Name des fehlerhaften Moduls: mozalloc.dll, Version: 38.0.0.5606, Zeitstempel: 0x554cfff8
Ausnahmecode: 0x80000003
Fehleroffset: 0x00001aa1
ID des fehlerhaften Prozesses: 0x25c4
Startzeit der fehlerhaften Anwendung: 0xplugin-container.exe0
Pfad der fehlerhaften Anwendung: plugin-container.exe1
Pfad des fehlerhaften Moduls: plugin-container.exe2
Berichtskennung: plugin-container.exe3
Vollständiger Name des fehlerhaften Pakets: plugin-container.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: plugin-container.exe5


System errors:
=============
Error: (05/15/2015 03:26:58 AM) (Source: DCOM) (EventID: 10010) (User: Jasch-PC)
Description: {1B1F472E-3221-4826-97DB-2C2324D389AE}

Error: (05/15/2015 03:26:27 AM) (Source: DCOM) (EventID: 10010) (User: Jasch-PC)
Description: {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}

Error: (05/14/2015 03:18:11 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT-AUTORITÄT)
Description: Installationsfehler: Die Installation des folgenden Updates ist mit Fehler 0x80070002 fehlgeschlagen: Update für Windows 8.1 für x64-Systeme (KB3044374)

Error: (05/14/2015 03:18:11 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT-AUTORITÄT)
Description: Installationsfehler: Die Installation des folgenden Updates ist mit Fehler 0x80070002 fehlgeschlagen: Kumulatives Sicherheitsupdate für Internet Explorer 11 für Windows 8.1 für x64-Systeme (KB3049563)

Error: (05/14/2015 03:18:11 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT-AUTORITÄT)
Description: Installationsfehler: Die Installation des folgenden Updates ist mit Fehler 0x800f0841 fehlgeschlagen: Update für Windows 8.1 für x64-Systeme (KB3038701)

Error: (05/14/2015 03:18:11 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT-AUTORITÄT)
Description: Installationsfehler: Die Installation des folgenden Updates ist mit Fehler 0x80070002 fehlgeschlagen: Update für Windows 8.1 für x64-Systeme (KB3045992)

Error: (05/14/2015 03:18:11 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT-AUTORITÄT)
Description: Installationsfehler: Die Installation des folgenden Updates ist mit Fehler 0x80070002 fehlgeschlagen: Sicherheitsupdate für Windows 8.1 für x64-basierte Systeme (KB3055642)

Error: (05/14/2015 03:18:11 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT-AUTORITÄT)
Description: Installationsfehler: Die Installation des folgenden Updates ist mit Fehler 0x80070002 fehlgeschlagen: Sicherheitsupdate für Windows 8.1 für x64-basierte Systeme (KB3045755)

Error: (05/14/2015 03:18:11 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT-AUTORITÄT)
Description: Installationsfehler: Die Installation des folgenden Updates ist mit Fehler 0x80070002 fehlgeschlagen: Sicherheitsupdate für Windows 8.1 für x64-basierte Systeme (KB3045999)

Error: (05/14/2015 03:18:11 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT-AUTORITÄT)
Description: Installationsfehler: Die Installation des folgenden Updates ist mit Fehler 0x80070002 fehlgeschlagen: Sicherheitsupdate für Microsoft .NET Framework 4.5.1 und 4.5.2 unter Windows 8.1 und Windows Server 2012 R2 für x64-basierte Systeme (KB3023222)


Microsoft Office Sessions:
=========================
Error: (05/14/2015 03:05:20 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: MsMpEng.exe4.7.205.054cb5aebmpengine.dll1.1.9700.051d28fcbc000000500000000005615b7e2801d08e469e3c3e1bC:\Program Files\Windows Defender\MsMpEng.exeC:\ProgramData\Microsoft\Windows Defender\Definition Updates\Default\mpengine.dlldf0c4b36-fa39-11e4-8283-000272ce57e0

Error: (05/14/2015 01:06:04 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Wasteland Launcher.exe0.0.2.1554909d3KERNELBASE.dll6.3.9600.1741554504adee04343520001459837c401d08e3537f6a37eC:\Program Files (x86)\Launcher\WS Launcher\Wasteland Launcher.exeC:\Windows\SYSTEM32\KERNELBASE.dll360f48f7-fa29-11e4-8282-000272ce57e0

Error: (05/14/2015 01:06:04 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Anwendung: Wasteland Launcher.exe
Frameworkversion: v4.0.30319
Beschreibung: Der Prozess wurde aufgrund eines Ausnahmefehlers beendet.
Ausnahmeinformationen: System.ComponentModel.Win32Exception
Stapel:
   bei System.Diagnostics.Process.Kill()
   bei Wasteland_Launcher.MainWindow.updateLauncher_ButtonClick(System.Object, System.Windows.RoutedEventArgs)
   bei System.Windows.RoutedEventHandlerInfo.InvokeHandler(System.Object, System.Windows.RoutedEventArgs)
   bei System.Windows.EventRoute.InvokeHandlersImpl(System.Object, System.Windows.RoutedEventArgs, Boolean)
   bei System.Windows.UIElement.RaiseEventImpl(System.Windows.DependencyObject, System.Windows.RoutedEventArgs)
   bei System.Windows.UIElement.RaiseEvent(System.Windows.RoutedEventArgs)
   bei System.Windows.Controls.Primitives.ButtonBase.OnClick()
   bei System.Windows.Controls.Button.OnClick()
   bei System.Windows.Controls.Primitives.ButtonBase.OnMouseLeftButtonUp(System.Windows.Input.MouseButtonEventArgs)
   bei System.Windows.UIElement.OnMouseLeftButtonUpThunk(System.Object, System.Windows.Input.MouseButtonEventArgs)
   bei System.Windows.Input.MouseButtonEventArgs.InvokeEventHandler(System.Delegate, System.Object)
   bei System.Windows.RoutedEventArgs.InvokeHandler(System.Delegate, System.Object)
   bei System.Windows.RoutedEventHandlerInfo.InvokeHandler(System.Object, System.Windows.RoutedEventArgs)
   bei System.Windows.EventRoute.InvokeHandlersImpl(System.Object, System.Windows.RoutedEventArgs, Boolean)
   bei System.Windows.UIElement.ReRaiseEventAs(System.Windows.DependencyObject, System.Windows.RoutedEventArgs, System.Windows.RoutedEvent)
   bei System.Windows.UIElement.OnMouseUpThunk(System.Object, System.Windows.Input.MouseButtonEventArgs)
   bei System.Windows.Input.MouseButtonEventArgs.InvokeEventHandler(System.Delegate, System.Object)
   bei System.Windows.RoutedEventArgs.InvokeHandler(System.Delegate, System.Object)
   bei System.Windows.RoutedEventHandlerInfo.InvokeHandler(System.Object, System.Windows.RoutedEventArgs)
   bei System.Windows.EventRoute.InvokeHandlersImpl(System.Object, System.Windows.RoutedEventArgs, Boolean)
   bei System.Windows.UIElement.RaiseEventImpl(System.Windows.DependencyObject, System.Windows.RoutedEventArgs)
   bei System.Windows.UIElement.RaiseTrustedEvent(System.Windows.RoutedEventArgs)
   bei System.Windows.UIElement.RaiseEvent(System.Windows.RoutedEventArgs, Boolean)
   bei System.Windows.Input.InputManager.ProcessStagingArea()
   bei System.Windows.Input.InputManager.ProcessInput(System.Windows.Input.InputEventArgs)
   bei System.Windows.Input.InputProviderSite.ReportInput(System.Windows.Input.InputReport)
   bei System.Windows.Interop.HwndMouseInputProvider.ReportInput(IntPtr, System.Windows.Input.InputMode, Int32, System.Windows.Input.RawMouseActions, Int32, Int32, Int32)
   bei System.Windows.Interop.HwndMouseInputProvider.FilterMessage(IntPtr, MS.Internal.Interop.WindowMessage, IntPtr, IntPtr, Boolean ByRef)
   bei System.Windows.Interop.HwndSource.InputFilterMessage(IntPtr, Int32, IntPtr, IntPtr, Boolean ByRef)
   bei MS.Win32.HwndWrapper.WndProc(IntPtr, Int32, IntPtr, IntPtr, Boolean ByRef)
   bei MS.Win32.HwndSubclass.DispatcherCallbackOperation(System.Object)
   bei System.Windows.Threading.ExceptionWrapper.InternalRealCall(System.Delegate, System.Object, Int32)
   bei MS.Internal.Threading.ExceptionFilterHelper.TryCatchWhen(System.Object, System.Delegate, System.Object, Int32, System.Delegate)
   bei System.Windows.Threading.Dispatcher.LegacyInvokeImpl(System.Windows.Threading.DispatcherPriority, System.TimeSpan, System.Delegate, System.Object, Int32)
   bei MS.Win32.HwndSubclass.SubclassWndProc(IntPtr, Int32, IntPtr, IntPtr)
   bei MS.Win32.UnsafeNativeMethods.DispatchMessage(System.Windows.Interop.MSG ByRef)
   bei System.Windows.Threading.Dispatcher.PushFrameImpl(System.Windows.Threading.DispatcherFrame)
   bei System.Windows.Threading.Dispatcher.PushFrame(System.Windows.Threading.DispatcherFrame)
   bei System.Windows.Threading.Dispatcher.Run()
   bei System.Windows.Application.RunDispatcher(System.Object)
   bei System.Windows.Application.RunInternal(System.Windows.Window)
   bei System.Windows.Application.Run(System.Windows.Window)
   bei Wasteland_Launcher.App.Main()

Error: (05/14/2015 11:31:08 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: nw.exe0.0.0.052a12888nw.exe0.0.0.052a128888000000300332a90355401d08e28ad7fbdb7C:\Program Files (x86)\Steam\steamapps\common\Warface\live\nw.exeC:\Program Files (x86)\Steam\steamapps\common\Warface\live\nw.exef331e0d2-fa1b-11e4-8282-000272ce57e0

Error: (05/14/2015 00:26:50 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Wasteland Launcher.exe0.0.2.1554909d3KERNELBASE.dll6.3.9600.1741554504adee0434352000145981e0001d08dcba08fe512C:\Program Files (x86)\Launcher\WS Launcher\Wasteland Launcher.exeC:\Windows\SYSTEM32\KERNELBASE.dll25a5d809-f9bf-11e4-8282-000272ce57e0

Error: (05/14/2015 00:26:50 AM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Anwendung: Wasteland Launcher.exe
Frameworkversion: v4.0.30319
Beschreibung: Der Prozess wurde aufgrund eines Ausnahmefehlers beendet.
Ausnahmeinformationen: System.ComponentModel.Win32Exception
Stapel:
   bei System.Diagnostics.Process.Kill()
   bei Wasteland_Launcher.MainWindow.updateLauncher_ButtonClick(System.Object, System.Windows.RoutedEventArgs)
   bei System.Windows.RoutedEventHandlerInfo.InvokeHandler(System.Object, System.Windows.RoutedEventArgs)
   bei System.Windows.EventRoute.InvokeHandlersImpl(System.Object, System.Windows.RoutedEventArgs, Boolean)
   bei System.Windows.UIElement.RaiseEventImpl(System.Windows.DependencyObject, System.Windows.RoutedEventArgs)
   bei System.Windows.UIElement.RaiseEvent(System.Windows.RoutedEventArgs)
   bei System.Windows.Controls.Primitives.ButtonBase.OnClick()
   bei System.Windows.Controls.Button.OnClick()
   bei System.Windows.Controls.Primitives.ButtonBase.OnMouseLeftButtonUp(System.Windows.Input.MouseButtonEventArgs)
   bei System.Windows.UIElement.OnMouseLeftButtonUpThunk(System.Object, System.Windows.Input.MouseButtonEventArgs)
   bei System.Windows.Input.MouseButtonEventArgs.InvokeEventHandler(System.Delegate, System.Object)
   bei System.Windows.RoutedEventArgs.InvokeHandler(System.Delegate, System.Object)
   bei System.Windows.RoutedEventHandlerInfo.InvokeHandler(System.Object, System.Windows.RoutedEventArgs)
   bei System.Windows.EventRoute.InvokeHandlersImpl(System.Object, System.Windows.RoutedEventArgs, Boolean)
   bei System.Windows.UIElement.ReRaiseEventAs(System.Windows.DependencyObject, System.Windows.RoutedEventArgs, System.Windows.RoutedEvent)
   bei System.Windows.UIElement.OnMouseUpThunk(System.Object, System.Windows.Input.MouseButtonEventArgs)
   bei System.Windows.Input.MouseButtonEventArgs.InvokeEventHandler(System.Delegate, System.Object)
   bei System.Windows.RoutedEventArgs.InvokeHandler(System.Delegate, System.Object)
   bei System.Windows.RoutedEventHandlerInfo.InvokeHandler(System.Object, System.Windows.RoutedEventArgs)
   bei System.Windows.EventRoute.InvokeHandlersImpl(System.Object, System.Windows.RoutedEventArgs, Boolean)
   bei System.Windows.UIElement.RaiseEventImpl(System.Windows.DependencyObject, System.Windows.RoutedEventArgs)
   bei System.Windows.UIElement.RaiseTrustedEvent(System.Windows.RoutedEventArgs)
   bei System.Windows.UIElement.RaiseEvent(System.Windows.RoutedEventArgs, Boolean)
   bei System.Windows.Input.InputManager.ProcessStagingArea()
   bei System.Windows.Input.InputManager.ProcessInput(System.Windows.Input.InputEventArgs)
   bei System.Windows.Input.InputProviderSite.ReportInput(System.Windows.Input.InputReport)
   bei System.Windows.Interop.HwndMouseInputProvider.ReportInput(IntPtr, System.Windows.Input.InputMode, Int32, System.Windows.Input.RawMouseActions, Int32, Int32, Int32)
   bei System.Windows.Interop.HwndMouseInputProvider.FilterMessage(IntPtr, MS.Internal.Interop.WindowMessage, IntPtr, IntPtr, Boolean ByRef)
   bei System.Windows.Interop.HwndSource.InputFilterMessage(IntPtr, Int32, IntPtr, IntPtr, Boolean ByRef)
   bei MS.Win32.HwndWrapper.WndProc(IntPtr, Int32, IntPtr, IntPtr, Boolean ByRef)
   bei MS.Win32.HwndSubclass.DispatcherCallbackOperation(System.Object)
   bei System.Windows.Threading.ExceptionWrapper.InternalRealCall(System.Delegate, System.Object, Int32)
   bei MS.Internal.Threading.ExceptionFilterHelper.TryCatchWhen(System.Object, System.Delegate, System.Object, Int32, System.Delegate)
   bei System.Windows.Threading.Dispatcher.LegacyInvokeImpl(System.Windows.Threading.DispatcherPriority, System.TimeSpan, System.Delegate, System.Object, Int32)
   bei MS.Win32.HwndSubclass.SubclassWndProc(IntPtr, Int32, IntPtr, IntPtr)
   bei MS.Win32.UnsafeNativeMethods.DispatchMessage(System.Windows.Interop.MSG ByRef)
   bei System.Windows.Threading.Dispatcher.PushFrameImpl(System.Windows.Threading.DispatcherFrame)
   bei System.Windows.Threading.Dispatcher.PushFrame(System.Windows.Threading.DispatcherFrame)
   bei System.Windows.Threading.Dispatcher.Run()
   bei System.Windows.Application.RunDispatcher(System.Object)
   bei System.Windows.Application.RunInternal(System.Windows.Window)
   bei System.Windows.Application.Run(System.Windows.Window)
   bei Wasteland_Launcher.App.Main()

Error: (05/14/2015 00:06:18 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: MsMpEng.exe4.7.205.054cb5aebmpengine.dll1.1.9700.051d28fcbc000000500000000005615b718c401d08dc7a2770250C:\Program Files\Windows Defender\MsMpEng.exeC:\ProgramData\Microsoft\Windows Defender\Definition Updates\Default\mpengine.dll471e7475-f9bc-11e4-8282-000272ce57e0

Error: (05/13/2015 11:55:15 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: MsMpEng.exe4.7.205.054cb5aebmpengine.dll1.1.9700.051d28fcbc000000500000000005615b71dd801d08dc719b992b5C:\Program Files\Windows Defender\MsMpEng.exeC:\ProgramData\Microsoft\Windows Defender\Definition Updates\Default\mpengine.dllbc584783-f9ba-11e4-8282-000272ce57e0

Error: (05/13/2015 11:51:26 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: MsMpEng.exe4.7.205.054cb5aebmpengine.dll1.1.9700.051d28fcbc000000500000000005615b7e6001d08dc6f01d5818C:\Program Files\Windows Defender\MsMpEng.exeC:\ProgramData\Microsoft\Windows Defender\Definition Updates\Default\mpengine.dll339cc00a-f9ba-11e4-8282-000272ce57e0

Error: (05/13/2015 07:44:37 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: plugin-container.exe38.0.0.5606554d0f95mozalloc.dll38.0.0.5606554cfff88000000300001aa125c401d08da2f892cec8C:\Program Files (x86)\Mozilla Firefox\plugin-container.exeC:\Program Files (x86)\Mozilla Firefox\mozalloc.dllb908379a-f997-11e4-8281-000272ce57e0


==================== Memory info =========================== 

Processor: Intel(R) Core(TM) i7-5960X CPU @ 3.00GHz
Percentage of memory in use: 10%
Total physical RAM: 32693.84 MB
Available physical RAM: 29408.87 MB
Total Pagefile: 65461.84 MB
Available Pagefile: 61524.61 MB
Total Virtual: 131072 MB
Available Virtual: 131071.84 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:476.42 GB) (Free:184.62 GB) NTFS
Drive d: (Data) (Fixed) (Total:3725.9 GB) (Free:2493.01 GB) NTFS
Drive f: (Dragon.Age.Inqui) (CDROM) (Total:0.38 GB) (Free:0 GB) CDFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 476.9 GB) (Disk ID: 00000000)

Partition: GPT Partition Type.

========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 3726 GB) (Disk ID: 00000000)

Partition: GPT Partition Type.

==================== End Of Log ============================
         

Alt 16.05.2015, 21:24   #9
Bootsektor
Ruhe in Frieden
† 2019
 
Strong Signal nicht zu Entfernen. - Standard

Strong Signal nicht zu Entfernen.



Verdammt, das ist hartnäckig.

Mal sehen was MBAM dazu meint.

Schritt 1
Downloade Dir bitte Malwarebytes Anti-Malware
  • Installiere das Programm in den vorgegebenen Pfad.
  • Starte Malwarebytes' Anti-Malware (MBAM).
  • Sollte die Benutzeroberfläche noch in Englisch sein, klicke auf Settings und wähle bei Language Deutsch aus.
  • Klicke im Anschluss auf Suchlauf, wähle den Bedrohungssuchlauf aus und klicke auf Suchlauf jetzt starten.
  • Lass am Ende des Suchlaufs alle Funde (falls vorhanden) in die Quarantäne verschieben. Klicke dazu auf Aktionen anwenden.
  • Lass deinen Rechner ggf. neu starten, um die Bereinigung abzuschließen.
  • Starte MBAM, klicke auf Verlauf und dann auf Anwendungsprotokolle.
  • Wähle das neueste Suchlauf-Protokoll aus und klicke auf Ansicht. Wähle Exportieren auf Textdatei (.txt) und speichere die Datei als mbam.txt auf dem Desktop ab.
  • Füge den Inhalt der mbam.txt mit deiner nächsten Antwort hinzu.

Schritt 2
Starte noch einmal FRST.
  • Setze den Haken bei addition.txt und drücke auf Scan.
  • Wenn der Scan abgeschlossen ist, werden zwei neue Logfiles FRST.txt und addition.txt erstellt und auf dem Desktop (oder in dem Verzeichnis in dem FRST liegt) gespeichert.
  • Poste den Inhalt dieser Logfiles bitte hier in deinen Thread.

Alt 17.05.2015, 23:56   #10
Jasch91
 
Strong Signal nicht zu Entfernen. - Standard

Strong Signal nicht zu Entfernen.



mbam.txt

Code:
ATTFilter
 Malwarebytes Anti-Malware 
www.malwarebytes.org

Suchlauf Datum: 18.05.2015
Suchlauf-Zeit: 00:40:28
Logdatei: mbam.txt
Administrator: Ja

Version: 2.01.6.1022
Malware Datenbank: v2015.05.17.03
Rootkit Datenbank: v2015.05.16.01
Lizenz: Testversion
Malware Schutz: Aktiviert
Bösartiger Webseiten Schutz: Aktiviert
Selbstschutz: Deaktiviert

Betriebssystem: Windows 8.1
CPU: x64
Dateisystem: NTFS
Benutzer: Jasch

Suchlauf-Art: Bedrohungs-Suchlauf
Ergebnis: Abgeschlossen
Durchsuchte Objekte: 345833
Verstrichene Zeit: 5 Min, 8 Sek

Speicher: Aktiviert
Autostart: Aktiviert
Dateisystem: Aktiviert
Archive: Aktiviert
Rootkits: Deaktiviert
Heuristik: Aktiviert
PUP: Aktiviert
PUM: Aktiviert

Prozesse: 9
PUP.Optional.StrongSignal.SID.A, C:\ProgramData\0780f478-67ce-4ec3-98db-39a65f4618ce\PluginContainer.exe, 1348, Löschen bei Neustart, [51663361b0daae887d3c4c0e3bcb11ef]
PUP.Optional.StrongSignal.SID.A, C:\ProgramData\0780f478-67ce-4ec3-98db-39a65f4618ce\plugins\6\Plugin.exe, 11592, Löschen bei Neustart, [caeddeb653373bfb6f4aec6ef70fe61a]
PUP.Optional.StrongSignal.SID.A, C:\ProgramData\0780f478-67ce-4ec3-98db-39a65f4618ce\plugins\5\Plugin.exe, 4936, Löschen bei Neustart, [edcacbc9c8c2dc5ad8e1e77333d3e719]
PUP.Optional.StrongSignal.SID.A, C:\ProgramData\0780f478-67ce-4ec3-98db-39a65f4618ce\plugins\2\Plugin.exe, 13204, Löschen bei Neustart, [4d6a6b29bad038fe4970e77310f638c8]
PUP.Optional.StrongSignal.SID.A, C:\ProgramData\0780f478-67ce-4ec3-98db-39a65f4618ce\plugins\3\Plugin.exe, 13760, Löschen bei Neustart, [9522a1f308824cea8a2ff367d53145bb]
PUP.Optional.StrongSignal.SID.A, C:\ProgramData\0780f478-67ce-4ec3-98db-39a65f4618ce\plugins\3\Plugin.exe, 12988, Löschen bei Neustart, [9522a1f308824cea8a2ff367d53145bb]
PUP.Optional.StrongSignal.SID.A, C:\ProgramData\0780f478-67ce-4ec3-98db-39a65f4618ce\plugins\4\Plugin.exe, 4148, Löschen bei Neustart, [eccb583cb1d91323f6c39ebca85ea65a]
PUP.Optional.StrongSignal.SID.A, C:\ProgramData\0780f478-67ce-4ec3-98db-39a65f4618ce\plugins\8\Plugin.exe, 2184, Löschen bei Neustart, [2f88385cbbcff5414c6dfb5f9076a45c]
PUP.Optional.StrongSignal.SID.A, C:\Program Files (x86)\Common Files\0780f478-67ce-4ec3-98db-39a65f4618ce\Updater.exe, 7012, Löschen bei Neustart, [298ea3f1c9c18aac1d9c0258a462c937]

Module: 0
(Keine schädliche Elemente gefunden)

Registrierungsschlüssel: 2
PUP.Optional.StrongSignal.SID.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\Service Mgr StrongSignal, In Quarantäne, [51663361b0daae887d3c4c0e3bcb11ef], 
PUP.Optional.StrongSignal.SID.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\Update Mgr StrongSignal, In Quarantäne, [298ea3f1c9c18aac1d9c0258a462c937], 

Registrierungswerte: 2
PUP.Optional.SearchSimple.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}|URL, hxxp://q.search-simple.com/?affID=bl_29a89b69-1046-4d10-b0fb-daeacffa79da&q={searchTerms}, In Quarantäne, [694ee3b1abdf9c9a0edc630949bcb34d]
PUP.Optional.SearchSimple.A, HKU\S-1-5-21-2577149796-2635466800-2005262636-1002\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{E9410C70-B6AE-41FF-AB71-32F4B279EA5F}|URL, hxxp://q.search-simple.com/?affID=bl_29a89b69-1046-4d10-b0fb-daeacffa79da&q={searchTerms}, In Quarantäne, [fcbbb1e36822f4428a5fe389bd487888]

Registrierungsdaten: 2
PUP.Optional.SearchSimple.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Start Page, hxxp://q.search-simple.com/?affID=bl_29a89b69-1046-4d10-b0fb-daeacffa79da, Gut: (www.google.com), Schlecht: (hxxp://q.search-simple.com/?affID=bl_29a89b69-1046-4d10-b0fb-daeacffa79da),Ersetzt,[a215e3b11d6d71c5409d4fc37d89817f]
PUP.Optional.SearchSimple.A, HKU\S-1-5-21-2577149796-2635466800-2005262636-1002\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Start Page, hxxp://q.search-simple.com/?affID=bl_29a89b69-1046-4d10-b0fb-daeacffa79da, Gut: (www.google.com), Schlecht: (hxxp://q.search-simple.com/?affID=bl_29a89b69-1046-4d10-b0fb-daeacffa79da),Ersetzt,[0fa897fd8505df5715c6e52da75f758b]

Ordner: 21
PUP.Optional.StrongSignal.A, C:\Program Files (x86)\Strong Signal, In Quarantäne, [51668b090585eb4b0e5c78576c9745bb], 
PUP.Optional.StrongSignal.A, C:\Program Files (x86)\Strong Signal\Extensions, In Quarantäne, [51668b090585eb4b0e5c78576c9745bb], 
PUP.Optional.StrongSignal.A, C:\ProgramData\0780f478-67ce-4ec3-98db-39a65f4618ce, Löschen bei Neustart, [a5125f35672375c1486c9b347c876f91], 
PUP.Optional.StrongSignal.A, C:\ProgramData\0780f478-67ce-4ec3-98db-39a65f4618ce\PluginContainer, In Quarantäne, [a5125f35672375c1486c9b347c876f91], 
PUP.Optional.StrongSignal.A, C:\ProgramData\0780f478-67ce-4ec3-98db-39a65f4618ce\plugins, Löschen bei Neustart, [a5125f35672375c1486c9b347c876f91], 
PUP.Optional.StrongSignal.A, C:\ProgramData\0780f478-67ce-4ec3-98db-39a65f4618ce\plugins\2, Löschen bei Neustart, [a5125f35672375c1486c9b347c876f91], 
PUP.Optional.StrongSignal.A, C:\ProgramData\0780f478-67ce-4ec3-98db-39a65f4618ce\plugins\2bak, In Quarantäne, [a5125f35672375c1486c9b347c876f91], 
PUP.Optional.StrongSignal.A, C:\ProgramData\0780f478-67ce-4ec3-98db-39a65f4618ce\plugins\3, Löschen bei Neustart, [a5125f35672375c1486c9b347c876f91], 
PUP.Optional.StrongSignal.A, C:\ProgramData\0780f478-67ce-4ec3-98db-39a65f4618ce\plugins\3bak, In Quarantäne, [a5125f35672375c1486c9b347c876f91], 
PUP.Optional.StrongSignal.A, C:\ProgramData\0780f478-67ce-4ec3-98db-39a65f4618ce\plugins\4, Löschen bei Neustart, [a5125f35672375c1486c9b347c876f91], 
PUP.Optional.StrongSignal.A, C:\ProgramData\0780f478-67ce-4ec3-98db-39a65f4618ce\plugins\4bak, In Quarantäne, [a5125f35672375c1486c9b347c876f91], 
PUP.Optional.StrongSignal.A, C:\ProgramData\0780f478-67ce-4ec3-98db-39a65f4618ce\plugins\5, Löschen bei Neustart, [a5125f35672375c1486c9b347c876f91], 
PUP.Optional.StrongSignal.A, C:\ProgramData\0780f478-67ce-4ec3-98db-39a65f4618ce\plugins\5bak, In Quarantäne, [a5125f35672375c1486c9b347c876f91], 
PUP.Optional.StrongSignal.A, C:\ProgramData\0780f478-67ce-4ec3-98db-39a65f4618ce\plugins\6, Löschen bei Neustart, [a5125f35672375c1486c9b347c876f91], 
PUP.Optional.StrongSignal.A, C:\ProgramData\0780f478-67ce-4ec3-98db-39a65f4618ce\plugins\6bak, In Quarantäne, [a5125f35672375c1486c9b347c876f91], 
PUP.Optional.StrongSignal.A, C:\ProgramData\0780f478-67ce-4ec3-98db-39a65f4618ce\plugins\8, Löschen bei Neustart, [a5125f35672375c1486c9b347c876f91], 
PUP.Optional.StrongSignal.A, C:\ProgramData\0780f478-67ce-4ec3-98db-39a65f4618ce\plugins\8bak, In Quarantäne, [a5125f35672375c1486c9b347c876f91], 
PUP.Optional.StrongSignal.A, C:\Program Files (x86)\Common Files\0780f478-67ce-4ec3-98db-39a65f4618ce, Löschen bei Neustart, [1a9dcec6b7d3ad89af063d9222e152ae], 
PUP.Optional.StrongSignal.A, C:\Program Files (x86)\Common Files\0780f478-67ce-4ec3-98db-39a65f4618ce\Updater, In Quarantäne, [1a9dcec6b7d3ad89af063d9222e152ae], 
PUP.Optional.StrongSignal.A, C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\kmflphdpkoolcmmpgmmlhdghcdjondmd\1.0.5612.33606_0, In Quarantäne, [b8ff70240783072f1db73a211beb639d], 
PUP.Optional.StrongSignal.A, C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\kmflphdpkoolcmmpgmmlhdghcdjondmd, In Quarantäne, [b8ff70240783072f1db73a211beb639d], 

Dateien: 27
PUP.Optional.StrongSignal.SID.A, C:\ProgramData\0780f478-67ce-4ec3-98db-39a65f4618ce\PluginContainer.exe, Löschen bei Neustart, [51663361b0daae887d3c4c0e3bcb11ef], 
PUP.Optional.StrongSignal.SID.A, C:\ProgramData\0780f478-67ce-4ec3-98db-39a65f4618ce\plugins\6\Plugin.exe, Löschen bei Neustart, [caeddeb653373bfb6f4aec6ef70fe61a], 
PUP.Optional.StrongSignal.SID.A, C:\ProgramData\0780f478-67ce-4ec3-98db-39a65f4618ce\plugins\5\Plugin.exe, Löschen bei Neustart, [edcacbc9c8c2dc5ad8e1e77333d3e719], 
PUP.Optional.StrongSignal.SID.A, C:\ProgramData\0780f478-67ce-4ec3-98db-39a65f4618ce\plugins\2\Plugin.exe, Löschen bei Neustart, [4d6a6b29bad038fe4970e77310f638c8], 
PUP.Optional.StrongSignal.SID.A, C:\ProgramData\0780f478-67ce-4ec3-98db-39a65f4618ce\plugins\3\Plugin.exe, Löschen bei Neustart, [9522a1f308824cea8a2ff367d53145bb], 
PUP.Optional.StrongSignal.SID.A, C:\ProgramData\0780f478-67ce-4ec3-98db-39a65f4618ce\plugins\4\Plugin.exe, Löschen bei Neustart, [eccb583cb1d91323f6c39ebca85ea65a], 
PUP.Optional.StrongSignal.SID.A, C:\ProgramData\0780f478-67ce-4ec3-98db-39a65f4618ce\plugins\8\Plugin.exe, Löschen bei Neustart, [2f88385cbbcff5414c6dfb5f9076a45c], 
PUP.Optional.StrongSignal.SID.A, C:\Program Files (x86)\Common Files\0780f478-67ce-4ec3-98db-39a65f4618ce\Updater.exe, Löschen bei Neustart, [298ea3f1c9c18aac1d9c0258a462c937], 
PUP.Optional.StrongSignal.SID.A, C:\ProgramData\0780f478-67ce-4ec3-98db-39a65f4618ce\PluginContainer.bak, In Quarantäne, [a80fabe9385273c3e8d1abaf9472e818], 
PUP.Optional.StrongSignal.SID.A, C:\ProgramData\0780f478-67ce-4ec3-98db-39a65f4618ce\plugins\2bak\Plugin.exe, In Quarantäne, [8235f0a4fe8cbf771f9a41198581f709], 
PUP.Optional.StrongSignal.SID.A, C:\ProgramData\0780f478-67ce-4ec3-98db-39a65f4618ce\plugins\3bak\Plugin.exe, In Quarantäne, [0cab4e46cbbfdc5abefbc694a1656898], 
PUP.Optional.StrongSignal.SID.A, C:\ProgramData\0780f478-67ce-4ec3-98db-39a65f4618ce\plugins\4bak\Plugin.exe, In Quarantäne, [e5d2781c83073ef857624b0f4abc37c9], 
PUP.Optional.StrongSignal.SID.A, C:\ProgramData\0780f478-67ce-4ec3-98db-39a65f4618ce\plugins\5bak\Plugin.exe, In Quarantäne, [8532aaea90fa4bebdfdad68466a025db], 
PUP.Optional.StrongSignal.SID.A, C:\ProgramData\0780f478-67ce-4ec3-98db-39a65f4618ce\plugins\6bak\Plugin.exe, In Quarantäne, [b0075b39fc8ea88e5e5b84d6c14529d7], 
PUP.Optional.StrongSignal.SID.A, C:\ProgramData\0780f478-67ce-4ec3-98db-39a65f4618ce\plugins\8bak\Plugin.exe, In Quarantäne, [cfe80b898109ae887742ec6eab5b2ad6], 
PUP.Optional.PricePeep.A, C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_static.pricepeep00.pricepeep.net_0.localstorage, In Quarantäne, [2394fc986a20d16595a5795dae557c84], 
PUP.Optional.PricePeep.A, C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_static.pricepeep00.pricepeep.net_0.localstorage-journal, In Quarantäne, [5364850f0585162059e190466f94ae52], 
PUP.Optional.StrongSignal.A, C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_strongsignal-a.akamaihd.net_0.localstorage, Löschen bei Neustart, [6e49217399f1fd3953bd19bfff0439c7], 
PUP.Optional.StrongSignal.A, C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_strongsignal-a.akamaihd.net_0.localstorage-journal, Löschen bei Neustart, [2e89d8bc2565df57aa6655838b78a858], 
PUP.Optional.StrongSignal.A, C:\Users\Jasch\AppData\Roaming\Mozilla\Firefox\Profiles\897yqm5q.default\extensions\{456805be-0bfd-4897-9cd1-cd3d5604efb2}.xpi, In Quarantäne, [5a5d761ed1b9e353db40db94e71ed12f], 
PUP.Optional.StrongSignal.A, C:\Program Files (x86)\Strong Signal\Extensions\kmflphdpkoolcmmpgmmlhdghcdjondmd.crx, In Quarantäne, [51668b090585eb4b0e5c78576c9745bb], 
PUP.Optional.StrongSignal.A, C:\ProgramData\0780f478-67ce-4ec3-98db-39a65f4618ce\temp, In Quarantäne, [a5125f35672375c1486c9b347c876f91], 
PUP.Optional.StrongSignal.A, C:\Program Files (x86)\Common Files\0780f478-67ce-4ec3-98db-39a65f4618ce\Updater.bak, In Quarantäne, [1a9dcec6b7d3ad89af063d9222e152ae], 
PUP.Optional.StrongSignal.A, C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\kmflphdpkoolcmmpgmmlhdghcdjondmd\1.0.5612.33606_0\manifest.json, In Quarantäne, [b8ff70240783072f1db73a211beb639d], 
PUP.Optional.StrongSignal.A, C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\kmflphdpkoolcmmpgmmlhdghcdjondmd\1.0.5612.33606_0\background.js, In Quarantäne, [b8ff70240783072f1db73a211beb639d], 
PUP.Optional.StrongSignal.A, C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\kmflphdpkoolcmmpgmmlhdghcdjondmd\1.0.5612.33606_0\content.js, In Quarantäne, [b8ff70240783072f1db73a211beb639d], 
PUP.Optional.StrongSignal.A, C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\kmflphdpkoolcmmpgmmlhdghcdjondmd\1.0.5612.33606_0\icon.png, In Quarantäne, [b8ff70240783072f1db73a211beb639d], 

Physische Sektoren: 0
(Keine schädliche Elemente gefunden)


(end)
         

FRST Logfile:

FRST Logfile:
Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 16-05-2015 02
Ran by Jasch (administrator) on JASCH-PC on 18-05-2015 00:54:23
Running from C:\Users\Jasch\Downloads
Loaded Profiles: Jasch (Available profiles: Jasch)
Platform: Windows 8.1 (X64) OS Language: Deutsch (Deutschland)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Avast Software s.r.o.) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Broadcom Corporation.) C:\Windows\System32\BtwRSupportService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe
(Malwarebytes Corporation) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe
(Beepa P/L) C:\Fraps\fraps.exe
(Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe
(Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe
(Malwarebytes Corporation) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(Malwarebytes Corporation) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbam.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.26.9\GoogleCrashHandler.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
() C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(DEVGURU Co., LTD.) C:\Program Files (x86)\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.26.9\GoogleCrashHandler64.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\LCore.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Spotify Ltd) C:\Users\Jasch\AppData\Roaming\Spotify\SpotifyWebHelper.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Samsung) C:\Program Files (x86)\Samsung\Kies\Kies.exe
(Disc Soft Ltd) C:\Program Files (x86)\DAEMON Tools Ultra\DiscSoftBusService.exe
(Avast Software s.r.o.) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Razer Inc.) C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe
(Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
(Beepa P/L) C:\Fraps\fraps64.dat
() C:\ProgramData\Razer\Synapse\RzStats\RzStats.Manager.exe
(Razer, Inc.) C:\Program Files (x86)\Razer\InGameEngine\32bit\RazerIngameEngine.exe
(Razer, Inc.) C:\Users\Jasch\AppData\Local\Razer\InGameEngine\cache\RzStats.Manager\RzCefRenderProcess.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2673296 2015-03-28] (NVIDIA Corporation)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [287592 2014-05-28] (Intel Corporation)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13667032 2014-02-24] (Realtek Semiconductor)
HKLM\...\Run: [Launch LCore] => C:\Program Files\Logitech Gaming Software\LCore.exe [13318424 2015-02-26] (Logitech Inc.)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [5515496 2015-05-12] (Avast Software s.r.o.)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Razer Synapse] => C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe [590144 2015-04-22] (Razer Inc.)
HKLM-x32\...\Run: [KiesTrayAgent] => C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe [311616 2015-02-24] (Samsung Electronics Co., Ltd.)
HKLM\...\Winlogon: [Userinit] C:\Windows\system32\userinit.exe,C:\Windows\skipmetrosuite.exe,
HKU\S-1-5-21-2577149796-2635466800-2005262636-1002\...\Run: [GoogleChromeAutoLaunch_5287039B98BC68C2D6F0BFD625D75439] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [812872 2015-05-05] (Google Inc.)
HKU\S-1-5-21-2577149796-2635466800-2005262636-1002\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [2888384 2015-05-15] (Valve Corporation)
HKU\S-1-5-21-2577149796-2635466800-2005262636-1002\...\Run: [Spotify Web Helper] => C:\Users\Jasch\AppData\Roaming\Spotify\SpotifyWebHelper.exe [2020920 2015-05-01] (Spotify Ltd)
HKU\S-1-5-21-2577149796-2635466800-2005262636-1002\...\Run: [DAEMON Tools Ultra Agent] => C:\Program Files (x86)\DAEMON Tools Ultra\DTAgent.exe [3732752 2015-02-26] (Disc Soft Ltd)
HKU\S-1-5-21-2577149796-2635466800-2005262636-1002\...\Run: [Spotify] => C:\Users\Jasch\AppData\Roaming\Spotify\Spotify.exe [7168568 2015-05-01] (Spotify Ltd)
HKU\S-1-5-21-2577149796-2635466800-2005262636-1002\...\Run: [KiesPreload] => C:\Program Files (x86)\Samsung\Kies\Kies.exe [1565504 2015-02-24] (Samsung)
HKU\S-1-5-21-2577149796-2635466800-2005262636-1002\...\MountPoints2: {7cde29b3-c824-11e4-8257-d0509947abf9} - "F:\Setup.exe" 
HKU\S-1-5-21-2577149796-2635466800-2005262636-1002\...\MountPoints2: {b5ef9f1b-d1a2-11e4-825d-000272ce57e0} - "K:\setup.exe" 
HKU\S-1-5-21-2577149796-2635466800-2005262636-1002\...\MountPoints2: {b5ef9f1e-d1a2-11e4-825d-000272ce57e0} - "L:\setup.exe" 
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Avast Free Antivirus.lnk [2015-03-11]
ShortcutTarget: Avast Free Antivirus.lnk -> C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o.)
ShellIconOverlayIdentifiers: ["DropboxExt1"] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Jasch\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-03-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt2"] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Jasch\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-03-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt3"] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Jasch\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-03-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt4"] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Jasch\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-03-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt5"] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Jasch\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-03-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt6"] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Jasch\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-03-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt7"] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Jasch\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-03-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt8"] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Jasch\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-03-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2015-05-12] (Avast Software s.r.o.)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = https://www.google.com/?trackid=sp-006
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = https://www.google.com/search?trackid=sp-006&q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = 
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = 
HKU\S-1-5-21-2577149796-2635466800-2005262636-1002\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.google.com/search?trackid=sp-006&q={searchTerms}
HKU\S-1-5-21-2577149796-2635466800-2005262636-1002\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/de-de/?ocid=iehp
HKU\S-1-5-21-2577149796-2635466800-2005262636-1002\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.google.com/?trackid=sp-006
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKLM-x32 -> {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = https://www.google.com/search?trackid=sp-006&q={searchTerms}
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-21-2577149796-2635466800-2005262636-1002 -> DefaultScope {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = 
SearchScopes: HKU\S-1-5-21-2577149796-2635466800-2005262636-1002 -> OldSearch URL = https://www.google.com/search?trackid=sp-006&q={searchTerms}
SearchScopes: HKU\S-1-5-21-2577149796-2635466800-2005262636-1002 -> {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = 
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-05-12] (Avast Software s.r.o.)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-05-12] (Avast Software s.r.o.)
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1

FireFox:
========
FF ProfilePath: C:\Users\Jasch\AppData\Roaming\Mozilla\Firefox\Profiles\897yqm5q.default
FF Plugin: @videolan.org/vlc,version=2.2.0 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-16] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-16] (VideoLAN)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2014-06-24] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2014-06-24] (Intel Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-04-08] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-04-08] (NVIDIA Corporation)
FF Plugin-x32: @raidcall.en/RCplugin -> C:\Users\Jasch\AppData\Roaming\raidcall\plugins\nprcplugin.dll [2014-05-27] (Raidcall)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-03-11] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-03-11] (Google Inc.)
FF Extension: Adblock Plus - C:\Users\Jasch\AppData\Roaming\Mozilla\Firefox\Profiles\897yqm5q.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2015-05-13]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2015-03-11]
FF Extension: No Name - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} [Not Found]

Chrome: 
=======
CHR HomePage: Default -> hxxp://google.com/
CHR StartupUrls: Default -> "hxxp://google.com/"
CHR DefaultSuggestURL: Default -> {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&gs_ri={google:suggestRid}&xssi=t&q={searchTerms}&{google:inputType}{google:cursorPosition}{google:currentPageUrl}{google:pageClassification}{google:searchVersion}{google:sessionToken}{google:prefetchQuery}sugkey={google:suggestAPIKeyParameter}
CHR Profile: C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Slides) - C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-03-11]
CHR Extension: (BetterTTV) - C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\ajopnjidmegmdimjlfnijceegpefgped [2015-03-19]
CHR Extension: (Google Docs) - C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-03-11]
CHR Extension: (Google Drive) - C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-03-11]
CHR Extension: (Republic For Chrome ROG Edition) - C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\baddhngpffecbmlmdpnfldobhaaaifde [2015-05-13]
CHR Extension: (Please enter your password) - C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\bfbmjmiodbnnpllbbbfblcplfjjepjdn [2015-03-11]
CHR Extension: (YouTube) - C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-03-11]
CHR Extension: (Adblock Plus) - C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2015-03-11]
CHR Extension: (Adblock for Youtube™) - C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmedhionkhpnakcndndgjdbohmhepckk [2015-03-11]
CHR Extension: (Google Search) - C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-03-11]
CHR Extension: (Google Sheets) - C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-03-11]
CHR Extension: (Hola Better Internet) - C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\gkojfkhlekighikafcpjkiklfbnlmeio [2015-03-11]
CHR Extension: (Bookmark Manager) - C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\gmlllbghnfkpflemihljekbapjopfjik [2015-04-21]
CHR Extension: (Avast Online Security) - C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2015-03-11]
CHR Extension: (feedly) - C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\hipbfijinpcgfogaopmgehiegacbhmob [2015-03-11]
CHR Extension: (Google Keep - notes and lists) - C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\hmjkmjkepdijhoojdojkdfohbdgmmhki [2015-03-11]
CHR Extension: (Dropbox) - C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\ioekoebejdcmnlefjiknokhhafglcjdl [2015-03-11]
CHR Extension: (Google Play) - C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\komhbcfkdcgmcdoenjcjheifdiabikfi [2015-03-11]
CHR Extension: (Chrome Hotword Shared Module) - C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-03-11]
CHR Extension: (Speed Dial 3(Web)) - C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\lceefillmbhhileboicaeakgcikdocmm [2015-03-11]
CHR Extension: (Google Mail Checker) - C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\mihcahmgecmbnbcchbopgniflfhgnkff [2015-03-11]
CHR Extension: (Pocket) - C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\mjcnijlhddpbdemagnpefmlkjdagkogk [2015-03-11]
CHR Extension: (Save to Pocket) - C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\niloccemoadcdkdjlinkgdfekeahmflj [2015-05-13]
CHR Extension: (Google Wallet) - C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-03-11]
CHR Extension: (Google Chrome to Phone Extension) - C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\oadboiipflhobonjjffjbfekfjcgkhco [2015-03-11]
CHR Extension: (Gmail) - C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-03-11]
CHR Extension: (Canvas Rider) - C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\poknhlcknimnnbfcombaooklofipaibk [2015-03-11]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-03-11]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [343336 2015-05-12] (Avast Software s.r.o.)
R2 BcmBtRSupport; C:\Windows\system32\BtwRSupportService.exe [2255064 2013-10-28] (Broadcom Corporation.)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [441216 2015-05-05] ()
S3 BthHFSrv; C:\Windows\System32\BthHFSrv.dll [324608 2014-10-29] (Microsoft Corporation)
R3 Disc Soft Ultra Bus Service; C:\Program Files (x86)\DAEMON Tools Ultra\DiscSoftBusService.exe [1378576 2015-02-26] (Disc Soft Ltd)
S3 Futuremark SystemInfo Service; C:\Program Files (x86)\Futuremark\SystemInfo\FMSISvc.exe [342240 2015-05-06] (Futuremark)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1152144 2015-03-28] (NVIDIA Corporation)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [16232 2014-05-28] (Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [887256 2014-05-13] (Intel(R) Corporation)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [131544 2014-06-24] (Intel Corporation)
S3 iumsvc; C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [174368 2014-04-09] ()
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [154584 2014-06-24] (Intel Corporation)
R2 MBAMScheduler; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe [1871160 2015-04-14] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe [1080120 2015-04-14] (Malwarebytes Corporation)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1878672 2015-03-28] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [22995600 2015-03-28] (NVIDIA Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [1931632 2015-04-21] (Electronic Arts)
R2 Razer Game Scanner Service; C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe [187072 2015-02-05] ()
R2 ss_conn_service; C:\Program Files (x86)\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe [743688 2014-10-13] (DEVGURU Co., LTD.)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366520 2015-02-04] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23792 2015-02-04] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29168 2015-05-12] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [89944 2015-05-12] (Avast Software s.r.o.)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93528 2015-05-12] (Avast Software s.r.o.)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65736 2015-05-12] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1047320 2015-05-12] (Avast Software s.r.o.)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [442264 2015-05-12] (Avast Software s.r.o.)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [137288 2015-05-12] (Avast Software s.r.o.)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [272248 2015-05-12] ()
R3 bcbtums; C:\Windows\system32\drivers\bcbtums.sys [170712 2013-10-28] (Broadcom Corporation.)
S3 BthA2DP; C:\Windows\system32\drivers\BthA2DP.sys [132608 2015-01-30] (Microsoft Corporation)
R3 dtultrascsibus; C:\Windows\System32\drivers\dtultrascsibus.sys [30352 2015-03-12] (Disc Soft Ltd)
R3 e1dexpress; C:\Windows\system32\DRIVERS\e1d64x64.sys [457496 2014-03-14] (Intel Corporation)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-04-14] (Malwarebytes Corporation)
R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [136408 2015-05-18] (Malwarebytes Corporation)
R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [64216 2015-04-14] (Malwarebytes Corporation)
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [129312 2014-09-30] (Intel Corporation)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19600 2015-03-28] (NVIDIA Corporation)
S3 NVSWCFilter; C:\Windows\System32\drivers\nvswcfilter.sys [19616 2015-02-05] (Windows (R) Win 7 DDK provider)
S3 NVVADARM; C:\Windows\system32\drivers\nvvadarm.sys [39056 2015-04-09] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [38032 2015-02-05] (NVIDIA Corporation)
R3 rzendpt; C:\Windows\System32\drivers\rzendpt.sys [40104 2015-03-10] (Razer Inc)
R2 rzpmgrk; C:\Windows\system32\drivers\rzpmgrk.sys [37184 2015-02-05] (Razer, Inc.)
R2 rzpnk; C:\Windows\system32\drivers\rzpnk.sys [129600 2015-02-04] (Razer, Inc.)
R3 ScpVBus; C:\Windows\System32\drivers\ScpVBus.sys [39168 2013-05-19] (Scarlet.Crush Productions)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114496 2015-02-04] (Microsoft Corporation)
S3 xusb22; C:\Windows\System32\drivers\xusb22.sys [87040 2014-03-18] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-05-18 00:53 - 2015-05-18 00:53 - 00012201 _____ () C:\Users\Jasch\Downloads\mbam.txt
2015-05-18 00:40 - 2015-05-18 00:47 - 00136408 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2015-05-18 00:39 - 2015-05-18 00:39 - 00001118 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2015-05-18 00:39 - 2015-05-18 00:39 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 
2015-05-18 00:39 - 2015-05-18 00:39 - 00000000 ____D () C:\ProgramData\Malwarebytes
2015-05-18 00:39 - 2015-05-18 00:39 - 00000000 ____D () C:\Program Files (x86)\ Malwarebytes Anti-Malware 
2015-05-18 00:39 - 2015-04-14 09:38 - 00064216 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2015-05-18 00:39 - 2015-04-14 09:37 - 00107736 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2015-05-18 00:39 - 2015-04-14 09:37 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2015-05-18 00:38 - 2015-05-18 00:38 - 21546080 _____ (Malwarebytes Corporation ) C:\Users\Jasch\Downloads\mbam-setup-2.1.6.1022.exe
2015-05-16 12:42 - 2015-05-16 12:42 - 00061001 _____ () C:\Users\Jasch\Downloads\[kat.cr]gurren.lagann.1080p.hi10p.5.1.aac.dual.audio.eng.jap.torrent
2015-05-16 12:42 - 2015-05-16 12:42 - 00000000 ____D () C:\Users\Jasch\Downloads\Tengen
2015-05-16 02:16 - 2015-05-16 02:16 - 01063623 _____ () C:\Users\Jasch\Downloads\4archive-master.zip
2015-05-16 02:16 - 2015-05-16 02:16 - 00000000 ____D () C:\Users\Jasch\Downloads\4archive-master
2015-05-15 22:02 - 2015-05-15 22:02 - 00003104 _____ () C:\Windows\System32\Tasks\{A8B3F7B9-43CE-4E44-AEE0-36A6EF026900}
2015-05-15 22:02 - 2015-05-15 22:02 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2015-05-15 09:18 - 2015-05-15 09:20 - 00000000 ____D () C:\Users\Jasch\Documents\Witcher 2
2015-05-15 09:18 - 2015-05-15 09:18 - 00000000 ____D () C:\Users\Jasch\AppData\Local\The Witcher 2
2015-05-14 15:11 - 2015-04-30 22:35 - 00124112 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2015-05-14 15:11 - 2015-04-30 22:35 - 00102608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-05-14 15:06 - 2015-03-03 15:17 - 00295552 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2015-05-14 11:31 - 2015-05-14 11:31 - 00000000 ____D () C:\ProgramData\GFACE
2015-05-14 11:30 - 2015-05-14 11:30 - 00000000 ____D () C:\Users\Jasch\AppData\Local\wf-launcher
2015-05-14 00:40 - 2015-05-14 00:40 - 00001203 _____ () C:\Users\Public\Desktop\WS Launcher.lnk
2015-05-14 00:40 - 2015-05-14 00:40 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WS Launcher
2015-05-14 00:24 - 2015-05-14 00:30 - 00000000 ____D () C:\Users\Jasch\AppData\Roaming\WS Launcher
2015-05-14 00:24 - 2015-05-14 00:24 - 00000000 ____D () C:\Program Files (x86)\Launcher
2015-05-14 00:23 - 2015-05-14 00:23 - 19296256 _____ () C:\Users\Jasch\Downloads\WSLauncher_Installer.msi
2015-05-13 23:51 - 2015-05-18 00:47 - 00003138 _____ () C:\Windows\System32\Tasks\FRAPS
2015-05-13 23:50 - 2015-05-18 00:54 - 00000000 ____D () C:\Users\Jasch\Downloads\FRST-OlderVersion
2015-05-13 19:33 - 2015-05-13 19:33 - 00000000 ____D () C:\Users\Jasch\AppData\Local\Macromedia
2015-05-13 19:32 - 2015-05-13 19:32 - 00000000 ____D () C:\Users\Jasch\AppData\Local\Adobe
2015-05-13 19:21 - 2015-05-13 19:21 - 00000000 ____D () C:\Users\Jasch\AppData\Roaming\Mozilla
2015-05-13 19:21 - 2015-05-13 19:21 - 00000000 ____D () C:\Users\Jasch\AppData\Local\Mozilla
2015-05-13 19:21 - 2015-05-13 19:21 - 00000000 ____D () C:\ProgramData\Mozilla
2015-05-13 03:09 - 2015-05-01 01:05 - 00429568 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2015-05-13 03:09 - 2015-05-01 00:48 - 00358912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2015-05-13 03:09 - 2015-04-21 19:14 - 24971776 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-05-13 03:09 - 2015-04-21 18:50 - 00584192 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-05-13 03:09 - 2015-04-21 18:50 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2015-05-13 03:09 - 2015-04-21 18:49 - 02885120 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-05-13 03:09 - 2015-04-21 18:37 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2015-05-13 03:09 - 2015-04-21 18:35 - 00816640 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2015-05-13 03:09 - 2015-04-21 18:31 - 06025728 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-05-13 03:09 - 2015-04-21 18:24 - 19691008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2015-05-13 03:09 - 2015-04-21 18:13 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2015-05-13 03:09 - 2015-04-21 18:11 - 00504320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2015-05-13 03:09 - 2015-04-21 18:09 - 00341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2015-05-13 03:09 - 2015-04-21 18:08 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-05-13 03:09 - 2015-04-21 18:07 - 00145408 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2015-05-13 03:09 - 2015-04-21 18:05 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-05-13 03:09 - 2015-04-21 18:04 - 02278400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2015-05-13 03:09 - 2015-04-21 17:59 - 01032704 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2015-05-13 03:09 - 2015-04-21 17:58 - 00664576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2015-05-13 03:09 - 2015-04-21 17:52 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2015-05-13 03:09 - 2015-04-21 17:49 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-05-13 03:09 - 2015-04-21 17:49 - 00720384 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2015-05-13 03:09 - 2015-04-21 17:49 - 00374272 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2015-05-13 03:09 - 2015-04-21 17:46 - 02125824 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-05-13 03:09 - 2015-04-21 17:40 - 14401536 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-05-13 03:09 - 2015-04-21 17:38 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2015-05-13 03:09 - 2015-04-21 17:37 - 00128000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2015-05-13 03:09 - 2015-04-21 17:36 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2015-05-13 03:09 - 2015-04-21 17:32 - 00880128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2015-05-13 03:09 - 2015-04-21 17:31 - 04305920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2015-05-13 03:09 - 2015-04-21 17:28 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2015-05-13 03:09 - 2015-04-21 17:27 - 02352128 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-05-13 03:09 - 2015-04-21 17:26 - 00688640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2015-05-13 03:09 - 2015-04-21 17:26 - 00327168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2015-05-13 03:09 - 2015-04-21 17:25 - 02052608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2015-05-13 03:09 - 2015-04-21 17:17 - 12828672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2015-05-13 03:09 - 2015-04-21 17:15 - 01547264 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-05-13 03:09 - 2015-04-21 17:03 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2015-05-13 03:09 - 2015-04-21 17:02 - 01882112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2015-05-13 03:09 - 2015-04-21 16:58 - 01310208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2015-05-13 03:09 - 2015-04-21 16:56 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2015-05-13 03:09 - 2015-04-14 00:48 - 04180480 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2015-05-13 03:09 - 2015-04-10 03:00 - 01996800 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2015-05-13 03:09 - 2015-04-10 02:50 - 01387008 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2015-05-13 03:09 - 2015-04-10 02:34 - 02256896 _____ (Microsoft Corporation) C:\Windows\system32\dwmcore.dll
2015-05-13 03:09 - 2015-04-10 02:26 - 01560576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2015-05-13 03:09 - 2015-04-10 02:11 - 01943040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmcore.dll
2015-05-13 03:09 - 2015-04-09 00:55 - 00410128 _____ (Microsoft Corporation) C:\Windows\system32\services.exe
2015-05-13 03:09 - 2015-04-03 02:35 - 00445440 _____ (Microsoft Corporation) C:\Windows\system32\PhotoMetadataHandler.dll
2015-05-13 03:09 - 2015-04-03 02:14 - 00364544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PhotoMetadataHandler.dll
2015-05-13 03:09 - 2015-04-02 00:22 - 02985984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dbgeng.dll
2015-05-13 03:09 - 2015-04-02 00:20 - 04417536 _____ (Microsoft Corporation) C:\Windows\system32\dbgeng.dll
2015-05-13 03:09 - 2015-04-01 05:45 - 01491456 _____ (Microsoft Corporation) C:\Windows\system32\dbghelp.dll
2015-05-13 03:09 - 2015-04-01 04:31 - 01207296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dbghelp.dll
2015-05-13 03:09 - 2015-03-30 07:47 - 00561928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2015-05-13 03:09 - 2015-03-27 05:27 - 00445440 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2015-05-13 03:09 - 2015-03-27 04:50 - 00324096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2015-05-13 03:09 - 2015-03-27 04:48 - 01441792 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2015-05-13 03:09 - 2015-03-20 03:56 - 00080384 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ahcache.sys
2015-05-13 03:09 - 2015-03-13 06:03 - 00239424 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sdbus.sys
2015-05-13 03:09 - 2015-03-13 06:03 - 00154432 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dumpsd.sys
2015-05-13 03:09 - 2015-03-13 04:02 - 00316416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\udfs.sys
2015-05-13 03:09 - 2015-03-13 03:11 - 02162176 _____ (Microsoft Corporation) C:\Windows\system32\SRH.dll
2015-05-13 03:09 - 2015-03-13 02:39 - 01812992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SRH.dll
2015-05-13 03:09 - 2015-03-13 02:29 - 00410017 _____ () C:\Windows\system32\ApnDatabase.xml
2015-05-13 03:09 - 2015-03-11 03:49 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\sdbinst.exe
2015-05-13 03:09 - 2015-03-11 03:09 - 00021504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sdbinst.exe
2015-05-13 03:09 - 2015-03-06 05:08 - 02067968 _____ (Microsoft Corporation) C:\Windows\system32\wpdshext.dll
2015-05-13 03:09 - 2015-03-06 04:47 - 01696256 _____ (Microsoft Corporation) C:\Windows\system32\wevtsvc.dll
2015-05-13 03:09 - 2015-03-06 04:43 - 01969664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wpdshext.dll
2015-05-13 03:09 - 2015-03-04 03:32 - 00172544 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Input.Inking.dll
2015-05-13 03:09 - 2015-03-04 03:12 - 00141824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Input.Inking.dll
2015-05-13 03:09 - 2015-02-18 01:19 - 00186368 _____ (Microsoft Corporation) C:\Windows\system32\dpapisrv.dll
2015-05-13 03:09 - 2015-01-30 02:53 - 02819584 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers.dll
2015-05-13 01:29 - 2015-05-15 08:10 - 00085646 _____ () C:\Users\Jasch\Downloads\Addition.txt
2015-05-13 01:28 - 2015-05-18 00:54 - 00025158 _____ () C:\Users\Jasch\Downloads\FRST.txt
2015-05-12 21:17 - 2015-05-18 00:54 - 02107392 _____ (Farbar) C:\Users\Jasch\Downloads\FRST64.exe
2015-05-12 21:17 - 2015-05-18 00:54 - 00000000 ____D () C:\FRST
2015-05-12 20:45 - 2015-05-12 20:45 - 00000887 _____ () C:\Users\Public\Desktop\VLC media player.lnk
2015-05-12 20:41 - 2015-05-12 20:41 - 00364472 _____ (Avast Software s.r.o.) C:\Windows\system32\aswBoot.exe
2015-05-12 20:41 - 2015-05-12 20:41 - 00043112 _____ (Avast Software s.r.o.) C:\Windows\avastSS.scr
2015-05-12 20:35 - 2015-05-12 20:35 - 02623656 _____ (VS Revo Group Ltd.) C:\Users\Jasch\Downloads\revosetup95.exe
2015-05-12 20:35 - 2015-05-12 20:35 - 00000000 ____D () C:\Program Files (x86)\VS Revo Group
2015-05-12 20:28 - 2015-05-13 01:24 - 00000000 ____D () C:\AdwCleaner
2015-05-12 20:28 - 2015-05-12 20:28 - 02209792 _____ () C:\Users\Jasch\Downloads\adwcleaner_4.204.exe
2015-05-12 14:51 - 2015-05-12 14:52 - 364569139 _____ () C:\Users\Jasch\Downloads\BaNkS-dynamic-gapps-L-5-9-15.zip
2015-05-12 14:51 - 2015-05-12 14:51 - 278663454 _____ () C:\Users\Jasch\Downloads\BlissPop-v3.2-hlte-UNOFFICIAL-20150509-1328.zip
2015-05-11 01:13 - 2015-05-11 01:16 - 00000000 ____D () C:\Users\Jasch\AppData\Roaming\PixelPiracy
2015-05-11 00:30 - 2015-05-11 00:30 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\InputMapper
2015-05-10 23:32 - 2015-05-10 23:33 - 00000000 ____D () C:\Users\Jasch\AppData\Roaming\Tera_Awesomium
2015-05-10 22:31 - 2015-05-10 22:31 - 00001718 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rainmeter.lnk
2015-05-10 22:31 - 2015-05-10 22:31 - 00000000 ____D () C:\Users\Jasch\Documents\Rainmeter
2015-05-10 22:31 - 2015-05-10 22:31 - 00000000 ____D () C:\Users\Jasch\AppData\Roaming\Rainmeter
2015-05-10 22:31 - 2015-05-10 22:31 - 00000000 ____D () C:\Program Files\Rainmeter
2015-05-10 00:41 - 2015-05-10 01:39 - 265356980 _____ () C:\Users\Jasch\Downloads\Black Desert.rar
2015-05-09 00:31 - 2015-05-09 00:32 - 00000000 ____D () C:\Users\Jasch\Documents\3DMark
2015-05-09 00:31 - 2015-05-09 00:31 - 00000022 _____ () C:\Windows\GPU-Z.INI
2015-05-09 00:31 - 2015-05-09 00:31 - 00000000 ____D () C:\Users\Jasch\AppData\Local\Futuremark
2015-05-09 00:31 - 2015-05-09 00:31 - 00000000 ____D () C:\Temp
2015-05-09 00:30 - 2015-05-09 00:30 - 00000000 ____D () C:\Program Files (x86)\Futuremark
2015-05-07 21:11 - 2015-05-10 23:30 - 00000000 ____D () C:\ProgramData\boost_interprocess
2015-05-07 21:11 - 2015-05-07 21:11 - 00000000 ____D () C:\Users\Jasch\AppData\Local\TERA
2015-05-05 17:05 - 2015-05-05 17:05 - 00000000 ____D () C:\Users\Jasch\Downloads\PUBattleRoyale.0.6.0
2015-05-05 04:37 - 2015-05-05 05:10 - 00000000 ____D () C:\Users\Jasch\Downloads\The.Witcher.Enhanced.Edition.v1.5.0.1304.Plus.6.Trainer
2015-05-05 04:36 - 2015-05-05 04:36 - 00000000 ____D () C:\Users\Jasch\Downloads\ppt-wedc
2015-05-05 04:17 - 2015-05-05 04:17 - 00000000 ____D () C:\Users\Jasch\Downloads\witcheywoman1303-ch (2)
2015-05-05 02:49 - 2015-05-05 02:49 - 00000000 ____D () C:\Users\Jasch\Downloads\witcher_ee_v1.5_trn+8
2015-05-04 22:27 - 2015-05-04 22:27 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cheat Engine 6.4
2015-05-01 13:27 - 2015-05-16 14:11 - 1063731379 _____ () C:\Windows\MEMORY.DMP
2015-05-01 13:27 - 2015-05-16 14:11 - 00000000 ____D () C:\Windows\Minidump
2015-05-01 13:27 - 2015-05-01 13:27 - 02164672 _____ () C:\Windows\Minidump\050115-8406-01.dmp
2015-04-28 15:55 - 2015-04-28 15:56 - 00000000 ____D () C:\Users\Jasch\Downloads\[Wii]Mario_Party_8[PAL][MULTI5][ESPALWii.com]
2015-04-28 15:51 - 2015-04-28 15:52 - 00000000 ____D () C:\Users\Jasch\Documents\Dolphin Emulator
2015-04-28 15:51 - 2015-04-28 15:51 - 00000000 ____D () C:\Users\Jasch\Downloads\Skies of Arcadia Legends (Europe) (En,Fr,De,Es)
2015-04-28 15:48 - 2015-04-28 15:50 - 946765370 _____ () C:\Users\Jasch\Downloads\Skies of Arcadia Legends (Europe) (En,Fr,De,Es).7z
2015-04-28 15:42 - 2015-04-28 15:55 - 228963446 _____ () C:\Users\Jasch\Downloads\[Wii]Mario_Party_8[PAL][MULTI5][ESPALWii.com].rar
2015-04-21 07:22 - 2015-04-21 07:22 - 00000000 ____D () C:\Users\Jasch\AppData\Local\Maca134
2015-04-21 06:16 - 2015-04-21 06:18 - 00000000 ____D () C:\Program Files (x86)\Origin Games
2015-04-21 06:15 - 2015-04-21 07:39 - 00000000 ____D () C:\Users\Jasch\AppData\Roaming\Origin
2015-04-21 06:15 - 2015-04-21 06:16 - 00000000 ____D () C:\Users\Jasch\AppData\Local\Origin
2015-04-21 06:15 - 2015-04-21 06:15 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin
2015-04-21 06:15 - 2015-04-21 06:15 - 00000000 ____D () C:\Program Files (x86)\Origin
2015-04-21 05:56 - 2015-05-07 00:15 - 00000000 ____D () C:\Program Files (x86)\A3Launcher
2015-04-21 05:56 - 2015-04-21 05:56 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\A3Launcher

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-05-18 00:53 - 2015-03-10 11:48 - 01780340 _____ () C:\Windows\system32\PerfStringBackup.INI
2015-05-18 00:53 - 2013-08-23 01:24 - 00765378 _____ () C:\Windows\system32\perfh007.dat
2015-05-18 00:53 - 2013-08-23 01:24 - 00159696 _____ () C:\Windows\system32\perfc007.dat
2015-05-18 00:52 - 2015-03-11 15:16 - 00003598 _____ () C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2577149796-2635466800-2005262636-1002
2015-05-18 00:52 - 2015-03-11 15:00 - 02038277 _____ () C:\Windows\WindowsUpdate.log
2015-05-18 00:51 - 2015-03-12 01:22 - 00000000 ____D () C:\Users\Jasch\AppData\Local\Spotify
2015-05-18 00:51 - 2015-03-12 01:21 - 00000000 ____D () C:\Users\Jasch\AppData\Roaming\Spotify
2015-05-18 00:49 - 2015-03-10 12:11 - 00006469 _____ () C:\Windows\SysWOW64\Gms.log
2015-05-18 00:47 - 2015-03-23 23:45 - 00000000 ____D () C:\Fraps
2015-05-18 00:47 - 2015-03-11 15:25 - 00000000 ____D () C:\Program Files (x86)\Steam
2015-05-18 00:47 - 2015-03-11 15:14 - 00001122 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-05-18 00:47 - 2015-03-10 11:55 - 00000000 ____D () C:\ProgramData\NVIDIA
2015-05-18 00:47 - 2015-03-10 11:40 - 00038582 _____ () C:\Windows\PFRO.log
2015-05-18 00:47 - 2013-08-22 16:46 - 00059702 _____ () C:\Windows\setupact.log
2015-05-18 00:47 - 2013-08-22 16:45 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2015-05-18 00:34 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\system32\sru
2015-05-16 22:14 - 2015-03-11 20:57 - 00000000 ____D () C:\Users\Jasch\AppData\Local\JDownloader v2.0
2015-05-16 21:19 - 2015-03-11 15:14 - 00001126 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-05-16 14:15 - 2015-03-15 00:10 - 00000000 ____D () C:\Users\Jasch\AppData\Roaming\vlc
2015-05-16 13:59 - 2015-03-11 15:10 - 00000000 ____D () C:\Users\Jasch
2015-05-16 13:51 - 2015-03-15 00:12 - 00000000 ____D () C:\Users\Jasch\AppData\Roaming\uTorrent
2015-05-16 05:52 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\rescache
2015-05-15 22:38 - 2015-03-13 21:43 - 00000000 ____D () C:\Users\Jasch\AppData\Local\Arma 3
2015-05-15 22:02 - 2015-04-03 23:24 - 00000000 ____D () C:\Users\Jasch\Documents\Survarium-Steam
2015-05-15 22:01 - 2015-03-11 15:22 - 00000000 ____D () C:\Program Files (x86)\StartIsBack
2015-05-15 09:18 - 2015-03-11 18:40 - 00284890 _____ () C:\Windows\DirectX.log
2015-05-14 20:43 - 2013-08-22 17:20 - 00000000 ____D () C:\Windows\CbsTemp
2015-05-14 15:14 - 2013-08-22 17:36 - 00000000 ___RD () C:\Windows\ImmersiveControlPanel
2015-05-14 15:14 - 2013-08-22 16:44 - 00338272 _____ () C:\Windows\system32\FNTCACHE.DAT
2015-05-14 15:14 - 2013-08-22 15:36 - 00000000 ____D () C:\Windows\system32\AdvancedInstallers
2015-05-14 15:11 - 2015-03-10 12:16 - 00000000 ____D () C:\Windows\system32\MRT
2015-05-14 15:07 - 2013-08-22 15:25 - 00262144 ___SH () C:\Windows\system32\config\ELAM
2015-05-14 15:06 - 2013-08-23 01:26 - 00000000 ____D () C:\Program Files\Windows Journal
2015-05-12 20:41 - 2015-03-11 15:22 - 01047320 _____ (Avast Software s.r.o.) C:\Windows\system32\Drivers\aswSnx.sys
2015-05-12 20:41 - 2015-03-11 15:22 - 00442264 _____ (Avast Software s.r.o.) C:\Windows\system32\Drivers\aswSP.sys
2015-05-12 20:41 - 2015-03-11 15:22 - 00272248 _____ () C:\Windows\system32\Drivers\aswVmm.sys
2015-05-12 20:41 - 2015-03-11 15:22 - 00137288 _____ (Avast Software s.r.o.) C:\Windows\system32\Drivers\aswStm.sys
2015-05-12 20:41 - 2015-03-11 15:22 - 00093528 _____ (Avast Software s.r.o.) C:\Windows\system32\Drivers\aswRdr2.sys
2015-05-12 20:41 - 2015-03-11 15:22 - 00089944 _____ (Avast Software s.r.o.) C:\Windows\system32\Drivers\aswMonFlt.sys
2015-05-12 20:41 - 2015-03-11 15:22 - 00065736 _____ () C:\Windows\system32\Drivers\aswRvrt.sys
2015-05-12 20:41 - 2015-03-11 15:22 - 00029168 _____ () C:\Windows\system32\Drivers\aswHwid.sys
2015-05-12 20:41 - 2015-03-11 15:22 - 00003924 _____ () C:\Windows\System32\Tasks\avast! Emergency Update
2015-05-12 20:29 - 2013-08-22 15:25 - 00262144 ___SH () C:\Windows\system32\config\BBI
2015-05-12 20:07 - 2015-03-11 15:42 - 00000000 ____D () C:\Users\Jasch\AppData\Local\Battle.net
2015-05-12 14:57 - 2015-03-11 15:22 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
2015-05-11 00:30 - 2015-03-16 22:25 - 00000000 ____D () C:\Users\Jasch\AppData\Roaming\InputMapper
2015-05-11 00:29 - 2015-03-16 22:25 - 00000000 ____D () C:\Users\Jasch\AppData\Roaming\DSDCS
2015-05-11 00:27 - 2015-04-14 06:49 - 00000080 _____ () C:\Users\Jasch\AppData\Local剜捯獫慴⁲慇敭屳呇⁁屖湥楴汴浥湥⹴湩潦
2015-05-07 00:12 - 2015-03-13 21:42 - 00000000 ____D () C:\Users\Jasch\AppData\Local\Arma 3 Launcher
2015-05-05 19:59 - 2013-08-22 17:38 - 00792568 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-05-05 19:59 - 2013-08-22 17:38 - 00178168 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-05-05 05:33 - 2015-03-17 00:45 - 00000000 ____D () C:\Users\Jasch\AppData\Local\The Witcher
2015-04-30 10:07 - 2015-03-10 12:16 - 140425016 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2015-04-27 21:09 - 2015-03-10 11:56 - 00152366 _____ () C:\Windows\DPINST.LOG
2015-04-27 02:06 - 2015-03-24 00:08 - 00000000 ____D () C:\ProgramData\Origin
2015-04-21 06:15 - 2015-03-24 00:09 - 00000000 ____D () C:\ProgramData\Electronic Arts
2015-04-19 03:30 - 2015-03-11 20:13 - 00000000 ____D () C:\Users\Jasch\AppData\Roaming\TS3Client

==================== Files in the root of some directories =======

2015-03-16 22:17 - 2015-03-16 22:31 - 0001439 _____ () C:\Users\Jasch\AppData\Roaming\SpeedRunnersLog.txt

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-05-12 03:05

==================== End Of Log ============================
         
--- --- ---

--- --- ---

Alt 17.05.2015, 23:57   #11
Jasch91
 
Strong Signal nicht zu Entfernen. - Standard

Strong Signal nicht zu Entfernen.



addition.txt:

Code:
ATTFilter
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 16-05-2015 02
Ran by Jasch at 2015-05-18 00:54:48
Running from C:\Users\Jasch\Downloads
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-2577149796-2635466800-2005262636-500 - Administrator - Disabled)
Gast (S-1-5-21-2577149796-2635466800-2005262636-501 - Limited - Disabled)
Jasch (S-1-5-21-2577149796-2635466800-2005262636-1002 - Administrator - Enabled) => C:\Users\Jasch

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKU\S-1-5-21-2577149796-2635466800-2005262636-1002\...\uTorrent) (Version: 3.4.2.38913 - BitTorrent Inc.)
140 (HKLM-x32\...\Steam App 242820) (Version:  - Carlsen Games)
3DMark Demo (HKLM-x32\...\Steam App 231350) (Version:  - Futuremark)
Arma 2 (HKLM-x32\...\Steam App 33910) (Version:  - Bohemia Interactive)
Arma 2: DayZ Mod (HKLM-x32\...\Steam App 224580) (Version:  - Bohemia Interactive)
Arma 3 (HKLM-x32\...\Steam App 107410) (Version:  - Bohemia Interactive)
Asmedia ASM104x USB 3.0 Host Controller Driver (HKLM-x32\...\{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}) (Version: 1.16.15.0 - Asmedia Technology)
Assassin's Creed Rogue (HKLM-x32\...\Uplay Install 895) (Version:  - Ubisoft)
Avast Free Antivirus (HKLM-x32\...\Avast) (Version: 10.2.2218 - AVAST Software)
Battle.net (HKLM-x32\...\Battle.net) (Version:  - Blizzard Entertainment)
Bejeweled® 3 (HKLM-x32\...\{E99C27B2-EB2E-4244-9F5C-A96F55100F0C}) (Version: 1.1.13.4753 - Electronic Arts, Inc.)
Counter-Strike (HKLM-x32\...\Steam App 10) (Version:  - Valve)
Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version:  - Valve)
DAEMON Tools Ultra (HKLM-x32\...\DAEMON Tools Ultra) (Version: 3.0.0.0310 - Disc Soft Ltd)
DayZ (HKLM-x32\...\Steam App 221100) (Version:  - Bohemia Interactive)
Dead Space 2 (HKLM-x32\...\Steam App 47780) (Version:  - Visceral Games)
Deus Ex: Human Revolution - Director's Cut (HKLM-x32\...\Steam App 238010) (Version:  - Eidos Montreal)
Divinity - Original Sin (HKLM-x32\...\Divinity - Original Sin_is1) (Version:  - )
DmC Devil May Cry (HKLM-x32\...\Steam App 220440) (Version:  - Ninja Theory)
Dota 2 (HKLM-x32\...\Steam App 570) (Version:  - Valve)
Dragon Age Inquisition Digital Deluxe Edition MULTi2 1.0 (HKLM-x32\...\Dragon Age Inquisition Digital Deluxe Edition MULTi2 1.0) (Version:  - )
Dragon Age: Origins (HKLM-x32\...\Steam App 17450) (Version:  - BioWare)
Dropbox (HKU\S-1-5-21-2577149796-2635466800-2005262636-1002\...\Dropbox) (Version: 3.2.9 - Dropbox, Inc.)
Far Cry 4 Update v1.8 (HKLM-x32\...\RmFyQ3J5NA==_is1) (Version: 1 - )
Fraps (HKLM-x32\...\Fraps) (Version:  - )
Futuremark SystemInfo (HKLM-x32\...\{0DD83DE7-507E-44AE-BC2D-2FAAFA48CCA5}) (Version: 4.37.548.0 - Futuremark)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 42.0.2311.152 - Google Inc.)
Google Update Helper (x32 Version: 1.3.26.9 - Google Inc.) Hidden
Grand Theft Auto V (HKLM-x32\...\Steam App 271590) (Version:  - Rockstar North)
Guild Wars 2 (HKLM-x32\...\Guild Wars 2) (Version:  - NCsoft Corporation, Ltd.)
H1Z1 (HKLM-x32\...\Steam App 295110) (Version:  - Sony Online Entertainment)
H1Z1 Test Server (HKLM-x32\...\Steam App 362300) (Version:  - )
Half-Life 2 (HKLM-x32\...\Steam App 220) (Version:  - Valve)
HAWKEN (HKLM-x32\...\Steam App 271290) (Version:  - Reloaded Games)
Hearthstone (HKLM-x32\...\Hearthstone) (Version:  - Blizzard Entertainment)
InputMapper (HKLM-x32\...\{D4A693C5-9E3E-41B9-9039-6FDA58AA5D2F}) (Version: 1.5.30.0 - DSDCS)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 10.0.25.1048 - Intel Corporation)
Intel(R) Network Connections 19.1.51.0 (HKLM\...\PROSetDX) (Version: 19.1.51.0 - Intel)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 13.1.0.1058 - Intel Corporation)
Intel(R) Update Manager (HKLM-x32\...\{84A2B59B-6A7B-4C01-8592-15C9BFE6AC36}) (Version: 2.4.3 - Intel Corporation)
Intel® Chipsatz-Gerätesoftware (x32 Version: 10.0.20 - Intel(R) Corporation) Hidden
JDownloader 2 (HKLM\...\jdownloader2) (Version: 2.0 - AppWork GmbH)
Logitech Gaming Software 8.58 (HKLM\...\Logitech Gaming Software) (Version: 8.58.177 - Logitech Inc.)
Lume (HKLM-x32\...\Steam App 105100) (Version:  - State of Play Games)
Malwarebytes Anti-Malware Version 2.1.6.1022 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.6.1022 - Malwarebytes Corporation)
Mass Effect 2 (HKLM-x32\...\Steam App 24980) (Version:  - BioWare)
Mass Effect 3 (HKLM-x32\...\Mass Effect 3_is1) (Version: Mass Effect 3 - )
Metro Redux (HKLM-x32\...\Metro Redux_is1) (Version: Metro Redux - )
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{b341426f-8543-4e0d-96c3-e976f8ec5ab6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{4fd02573-5f12-4ae4-8027-c63f8e1115af}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
Microsoft-Maus- und Tastatur-Center (HKLM\...\Microsoft Mouse and Keyboard Center) (Version: 2.3.188.0 - Microsoft Corporation)
MirrorMoon EP (HKLM-x32\...\Steam App 231310) (Version:  - Santa Ragione)
Nidhogg (HKLM-x32\...\Steam App 94400) (Version:  - Messhof)
Nosgoth (HKLM-x32\...\Steam App 200110) (Version:  - Psyonix)
NVIDIA 3D Vision Controller-Treiber 349.95 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 349.95 - NVIDIA Corporation)
NVIDIA 3D Vision Treiber 350.12 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 350.12 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.4.1.21 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.4.1.21 - NVIDIA Corporation)
NVIDIA Grafiktreiber 350.12 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 350.12 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.33.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.33.0 - NVIDIA Corporation)
NVIDIA Miracast Virtueller Ton 350.12 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Miracast.VirtualAudio) (Version: 350.12 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.15.0324 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0324 - NVIDIA Corporation)
Ori and the Blind Forest (HKLM-x32\...\Ori and the Blind Forest_is1) (Version:  - )
Origin (HKLM-x32\...\Origin) (Version: 9.5.12.2862 - Electronic Arts, Inc.)
Outlast (HKLM-x32\...\Steam App 238320) (Version:  - Red Barrels)
Papers, Please (HKLM-x32\...\Steam App 239030) (Version:  - 3909)
PAYDAY 2 (HKLM-x32\...\Steam App 218620) (Version:  - OVERKILL - a Starbreeze Studio.)
Pillars of Eternity (HKLM-x32\...\1207666813_is1) (Version: 2.0.0.1 - GOG.com)
Pixel Piracy (HKLM-x32\...\Steam App 264140) (Version:  - Vitali Kirpu)
Portal (HKLM-x32\...\Steam App 400) (Version:  - Valve)
Portal 2 (HKLM-x32\...\Steam App 620) (Version:  - Valve)
Qualcomm Atheros Inc.(R) AR81Family Gigabit/Fast Ethernet Driver (HKLM-x32\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 2.1.0.21 - Qualcomm Atheros Inc.)
RaidCall (HKLM-x32\...\RaidCall) (Version: 7.3.6-1.0.13004.105 - raidcall.com)
Rainmeter (HKLM-x32\...\Rainmeter) (Version: 3.3 beta r2412 - )
Razer Synapse (HKLM-x32\...\{0D78BEE2-F8FF-4498-AF1A-3FF81CED8AC6}) (Version: 1.18.19.25502 - Razer Inc.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7195 - Realtek Semiconductor Corp.)
Revo Uninstaller 1.95 (HKLM-x32\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.1.5.8 - Rockstar Games)
Samsung Kies (HKLM-x32\...\InstallShield_{758C8301-2696-4855-AF45-534B1200980A}) (Version: 2.6.3.15013.18 - Samsung Electronics Co., Ltd.)
Samsung Kies (x32 Version: 2.6.3.15013.18 - Samsung Electronics Co., Ltd.) Hidden
SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.49.0 - SAMSUNG Electronics Co., Ltd.)
SHIELD Streaming (Version: 4.1.1000 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 2.4.1.21 - NVIDIA Corporation) Hidden
Shovel Knight (HKLM-x32\...\Steam App 250760) (Version:  - Yacht Club Games)
Sleeping Dogs™ (HKLM-x32\...\Steam App 202170) (Version:  - United Front Games)
SpeedRunners (HKLM-x32\...\Steam App 207140) (Version:  - DoubleDutch Games)
Spotify (HKU\S-1-5-21-2577149796-2635466800-2005262636-1002\...\Spotify) (Version: 1.0.4.90.g0b6df40b - Spotify AB)
StartIsBack+ (HKLM-x32\...\StartIsBack) (Version: 1.7.5 - startisback.com)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Super Crate Box (HKLM-x32\...\Steam App 212800) (Version:  - Vlambeer)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
TERA (HKLM-x32\...\Steam App 323370) (Version:  - En Masse Entertainment)
The Banner Saga (HKLM-x32\...\Steam App 237990) (Version:  - Stoic)
The Elder Scrolls V Skyrim - Legendary Edition (HKLM-x32\...\The Elder Scrolls V Skyrim - Legendary Edition_is1) (Version:  - )
The Stanley Parable (HKLM-x32\...\Steam App 221910) (Version:  - Galactic Cafe)
The Walking Dead (HKLM-x32\...\Steam App 207610) (Version:  - )
The Walking Dead: Season Two (HKLM-x32\...\Steam App 261030) (Version:  - Telltale Games)
The Witcher 2: Assassins of Kings Enhanced Edition (HKLM-x32\...\Steam App 20920) (Version:  - CD PROJEKT RED)
The Witcher 3: Wild Hunt (HKLM-x32\...\Steam App 292030) (Version:  - CD PROJEKT RED)
The Witcher: Enhanced Edition (HKLM-x32\...\Steam App 20900) (Version:  - CD PROJEKT RED)
The Wolf Among Us (HKLM-x32\...\Steam App 250320) (Version:  - Telltale Games)
Thief (HKLM-x32\...\Steam App 239160) (Version:  - Eidos-Montréal)
Tomb Raider (HKLM-x32\...\Steam App 203160) (Version:  - Crystal Dynamics)
Torchlight II (HKLM-x32\...\Steam App 200710) (Version:  - Runic Games)
Unepic (HKLM-x32\...\Steam App 233980) (Version:  - Francisco Téllez de Meneses)
Uplay (HKLM-x32\...\Uplay) (Version: 4.9 - Ubisoft)
VLC media player (HKLM\...\VLC media player) (Version: 2.2.1 - VideoLAN)
Warface (HKLM-x32\...\Steam App 291480) (Version:  - Crytek)
WildStar (HKLM-x32\...\WildStar) (Version:  - NCSOFT)
WinRAR 5.21 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH)
World of Warcraft (HKLM-x32\...\World of Warcraft) (Version:  - Blizzard Entertainment)
World of Warcraft Classic (HKLM-x32\...\{D55ED80F-FAFD-40E1-99FC-89AF8614A9B5}_is1) (Version: 1.12.1.5875 - Blizzard Entertainment)
World of Warships (HKLM-x32\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C814EU}_is1) (Version:  - Wargaming.net)
World of Warships (HKU\S-1-5-21-2577149796-2635466800-2005262636-1002\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C814eu}_is1) (Version:  - Wargaming.net)
WS Launcher (HKLM-x32\...\{7CD2FACD-18D7-46C7-A4C6-17FD6D97E045}) (Version: 0.0.2.1 - Launcher)
Ys I (HKLM-x32\...\Steam App 223810) (Version:  - Nihon Falcom)
Ys II (HKLM-x32\...\Steam App 223870) (Version:  - Nihon Falcom)
Ys Origin (HKLM-x32\...\Steam App 207350) (Version:  - Nihon Falcom)

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

CustomCLSID: HKU\S-1-5-21-2577149796-2635466800-2005262636-1002_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\Jasch\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2577149796-2635466800-2005262636-1002_Classes\CLSID\{ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C}\InprocServer32 -> C:\Users\Jasch\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2577149796-2635466800-2005262636-1002_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Jasch\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2577149796-2635466800-2005262636-1002_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Jasch\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2577149796-2635466800-2005262636-1002_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Jasch\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2577149796-2635466800-2005262636-1002_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Jasch\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2577149796-2635466800-2005262636-1002_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Jasch\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2577149796-2635466800-2005262636-1002_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Jasch\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2577149796-2635466800-2005262636-1002_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Jasch\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2577149796-2635466800-2005262636-1002_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Jasch\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)

==================== Restore Points  =========================

29-04-2015 05:48:12 Geplanter Prüfpunkt
08-05-2015 05:44:43 Geplanter Prüfpunkt
12-05-2015 20:41:00 avast! antivirus system restore point
14-05-2015 00:24:35 Installed WS Launcher
15-05-2015 09:17:53 DirectX wurde installiert

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2013-08-22 15:25 - 2013-08-22 15:25 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {23573724-2CF0-4AFB-8C7C-8CAE8A1FC6ED} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\Windows\system32\MRT.exe [2015-04-30] (Microsoft Corporation)
Task: {287C9390-106D-4528-9FFA-9EAD4D749E78} - System32\Tasks\Microsoft\Windows\Setup\gwx\runappraiser => C:\Windows\system32\GWX\GWXConfigManager.exe [2015-03-24] (Microsoft Corporation)
Task: {307C6A97-1FCF-42B1-AC2C-EC9E74294DA3} - System32\Tasks\Microsoft\Windows\Setup\gwx\launchtrayprocess => C:\Windows\system32\GWX\GWX.exe [2015-03-24] (Microsoft Corporation)
Task: {3A55AB04-D66A-4187-B864-C8078B676E5C} - System32\Tasks\Microsoft_Hardware_Launch_mousekeyboardcenter_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\mousekeyboardcenter.exe [2014-03-19] (Microsoft)
Task: {3B99FEA7-8203-4251-B32B-6D41EF545041} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [2014-04-09] ()
Task: {66028CC7-38C9-42DC-9086-15CB8AC0DAB0} - System32\Tasks\Microsoft_Hardware_Launch_itype_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [2014-03-19] (Microsoft Corporation)
Task: {8ADAE917-BA3C-4A33-91FD-7264097150DB} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-03-11] (Google Inc.)
Task: {9FB8D689-F386-4A1B-8D06-5E42A3F445F3} - System32\Tasks\{A8B3F7B9-43CE-4E44-AEE0-36A6EF026900} => pcalua.exe -a D:\SteamLibrary\steamapps\common\Survarium\unins000.exe
Task: {CD2B26FD-EB65-4866-AA78-6E8B3CB56BCF} - System32\Tasks\Microsoft_Hardware_Launch_ipoint_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2014-03-19] (Microsoft Corporation)
Task: {CE8A2142-D17F-459C-AC86-F7CE4EC261F1} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxconfig => C:\Windows\system32\GWX\GWXConfigManager.exe [2015-03-24] (Microsoft Corporation)
Task: {D09D1182-4702-4018-B6F5-2BF3FE18C09A} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2015-05-12] (Avast Software s.r.o.)
Task: {D1A23371-9AE1-48B8-A639-ED6FA033AF1D} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxcontent => C:\Windows\system32\GWX\GWXConfigManager.exe [2015-03-24] (Microsoft Corporation)
Task: {E334AD00-7C0E-4682-8C40-BE14EC5A9DB0} - System32\Tasks\FRAPS => C:\Fraps\fraps.exe [2013-02-26] (Beepa P/L)
Task: {E33AFA8C-172B-4354-AEFF-2D1C5FDDBEE1} - System32\Tasks\Microsoft_MKC_Logon_Task_ipoint.exe => C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2014-03-19] (Microsoft Corporation)
Task: {EC022927-6213-4CC3-929D-E380ED50A59F} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-03-11] (Google Inc.)
Task: {F5BE761E-959A-4A40-9947-E1497DE43282} - System32\Tasks\Microsoft_MKC_Logon_Task_itype.exe => C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [2014-03-19] (Microsoft Corporation)
Task: {FCB2EBE5-8D17-42B1-BBCA-F04EDF71C48E} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473-Logon => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [2014-04-09] ()
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (Whitelisted) ==============

2015-03-10 11:55 - 2015-04-08 23:30 - 00116552 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2015-02-05 02:24 - 2015-02-05 02:25 - 00187072 _____ () C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
2014-09-18 09:23 - 2014-09-18 09:23 - 00866584 _____ () C:\Program Files\Logitech Gaming Software\libGLESv2.dll
2015-02-26 20:39 - 2015-02-26 20:39 - 01050904 _____ () C:\Program Files\Logitech Gaming Software\platforms\qwindows.dll
2014-09-18 09:23 - 2014-09-18 09:23 - 00059160 _____ () C:\Program Files\Logitech Gaming Software\libEGL.dll
2015-02-26 20:39 - 2015-02-26 20:39 - 00242456 _____ () C:\Program Files\Logitech Gaming Software\imageformats\qjpeg.dll
2015-03-14 07:49 - 2015-03-14 07:49 - 00291840 _____ () C:\ProgramData\Razer\Synapse\RzStats\RzStats.Manager.exe
2015-05-12 20:41 - 2015-05-12 20:41 - 00104400 _____ () C:\Program Files\AVAST Software\Avast\log.dll
2015-05-12 20:41 - 2015-05-12 20:41 - 00081728 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2015-05-18 00:41 - 2015-05-18 00:41 - 02929664 _____ () C:\Program Files\AVAST Software\Avast\defs\15051701\algo.dll
2015-03-31 16:00 - 2015-03-28 05:45 - 00011920 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2015-03-11 15:25 - 2015-04-16 19:40 - 00776192 _____ () C:\Program Files (x86)\Steam\SDL2.dll
2015-03-11 15:25 - 2015-04-23 04:16 - 04962816 _____ () C:\Program Files (x86)\Steam\v8.dll
2015-03-11 15:25 - 2015-05-15 03:58 - 02396352 _____ () C:\Program Files (x86)\Steam\video.dll
2015-03-11 15:25 - 2015-04-23 04:16 - 01556992 _____ () C:\Program Files (x86)\Steam\icui18n.dll
2015-03-11 15:25 - 2015-04-23 04:16 - 01187840 _____ () C:\Program Files (x86)\Steam\icuuc.dll
2015-03-11 15:25 - 2014-12-01 23:31 - 02396672 _____ () C:\Program Files (x86)\Steam\libavcodec-56.dll
2015-03-11 15:25 - 2014-12-01 23:31 - 00479744 _____ () C:\Program Files (x86)\Steam\libavformat-56.dll
2015-03-11 15:25 - 2014-12-01 23:31 - 00332800 _____ () C:\Program Files (x86)\Steam\libavresample-2.dll
2015-03-11 15:25 - 2014-12-01 23:31 - 00442880 _____ () C:\Program Files (x86)\Steam\libavutil-54.dll
2015-03-11 15:25 - 2014-12-01 23:31 - 00485888 _____ () C:\Program Files (x86)\Steam\libswscale-3.dll
2015-03-11 15:25 - 2015-05-15 03:57 - 00703168 _____ () C:\Program Files (x86)\Steam\bin\chromehtml.DLL
2015-05-14 12:23 - 2015-05-05 06:06 - 01252680 _____ () C:\Program Files (x86)\Google\Chrome\Application\42.0.2311.152\libglesv2.dll
2015-05-14 12:23 - 2015-05-05 06:06 - 00080712 _____ () C:\Program Files (x86)\Google\Chrome\Application\42.0.2311.152\libegl.dll
2015-03-11 15:25 - 2015-05-11 21:01 - 36302728 _____ () C:\Program Files (x86)\Steam\bin\libcef.dll
2015-03-11 15:22 - 2015-03-11 15:22 - 40540672 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2015-02-02 09:52 - 2015-02-02 09:52 - 00137728 _____ () C:\ProgramData\Razer\Synapse\CrashReporter\CrashRpt1402.dll
2015-03-14 22:55 - 2014-11-26 04:12 - 40622592 _____ () C:\Users\Jasch\AppData\Local\razer\InGameEngine\cache\RzStats.Manager\cef\libcef.dll
2015-03-14 22:55 - 2014-11-26 04:12 - 00911360 _____ () C:\Users\Jasch\AppData\Local\razer\InGameEngine\cache\RzStats.Manager\cef\libglesv2.dll
2015-03-14 22:55 - 2014-11-26 04:12 - 00134144 _____ () C:\Users\Jasch\AppData\Local\razer\InGameEngine\cache\RzStats.Manager\cef\libegl.dll
2014-06-24 17:08 - 2014-06-24 17:08 - 01241560 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
2015-05-14 12:23 - 2015-05-05 06:06 - 14982472 _____ () C:\Program Files (x86)\Google\Chrome\Application\42.0.2311.152\PepperFlash\pepflashplayer.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== EXE Association (Whitelisted) ===============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, the associated entry will be removed from the registry.)

IE trusted site: HKU\S-1-5-21-2577149796-2635466800-2005262636-1002\...\clonewarsadventures.com -> clonewarsadventures.com
IE trusted site: HKU\S-1-5-21-2577149796-2635466800-2005262636-1002\...\freerealms.com -> freerealms.com
IE trusted site: HKU\S-1-5-21-2577149796-2635466800-2005262636-1002\...\soe.com -> soe.com
IE trusted site: HKU\S-1-5-21-2577149796-2635466800-2005262636-1002\...\sony.com -> sony.com


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-2577149796-2635466800-2005262636-1002\Control Panel\Desktop\\Wallpaper -> C:\Users\Jasch\Downloads\546342.jpg
DNS Servers: 192.168.178.1

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

HKLM\...\StartupApproved\Run32: => "AvastUI.exe"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{A428E2F5-00A4-445C-B0A9-6C1597084A7A}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{0EA249FB-7E19-4EC4-BCBC-38B1F7632813}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{68A434AC-400A-4C23-8073-AEAC2B29C838}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{A1EE3227-D5EE-4A89-9452-5718413D2966}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{6B629227-5BA4-4B47-88FC-31822E0A6AEB}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{94884C65-DC1D-42AB-A771-451AB7000768}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{5EA49406-2BAA-46C2-851C-8E26742C5DD4}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{5508CBFF-C166-4BD6-ADFA-76D34D21113E}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{2D84D1F2-28EB-4F03-B953-5D453403085B}] => (Allow) C:\Users\Jasch\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [{47EBE97C-6BB8-4BB9-90D0-48447E90E26E}] => (Allow) C:\Users\Jasch\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [{8B1B04C4-330A-44E3-AC94-4085985111FF}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{ED4DE2A2-3ECD-4DB0-A9C5-F19C2B596C25}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{3C2D921F-723B-479B-B66B-C622D991D784}] => (Allow) D:\Battle.net\Battle.net.exe
FirewallRules: [{E89F2FAC-C38D-47DD-BDA2-1DB4B643A2F1}] => (Allow) D:\Battle.net\Battle.net.exe
FirewallRules: [{D712384A-DEC8-4625-983C-1A58DA677607}] => (Allow) C:\Program Files (x86)\Hearthstone\Hearthstone.exe
FirewallRules: [{658C40DD-AEB4-470A-94A1-3E40D0D6228A}] => (Allow) C:\Program Files (x86)\Hearthstone\Hearthstone.exe
FirewallRules: [{069B03CC-6D7D-4C9D-A32C-3248BA998D68}] => (Allow) D:\SteamLibrary\steamapps\common\Half-Life\hl.exe
FirewallRules: [{68E0DD00-6B92-424A-B17E-E75F59820AD2}] => (Allow) D:\SteamLibrary\steamapps\common\Half-Life\hl.exe
FirewallRules: [{763F5B12-1934-409E-941F-04B6B285FDAD}] => (Allow) D:\SteamLibrary\steamapps\common\Thief\Binaries\Win64\Shipping-ThiefGame.exe
FirewallRules: [{BA02BE4D-60C0-462C-858E-C4591FE8DC88}] => (Allow) D:\SteamLibrary\steamapps\common\Thief\Binaries\Win64\Shipping-ThiefGame.exe
FirewallRules: [{8C02FA5C-CA98-4CA1-A74B-DD79AAAEB4B0}] => (Allow) D:\SteamLibrary\steamapps\common\SpeedRunners\SpeedRunners.exe
FirewallRules: [{8934E16B-5CD6-40D6-99D6-4D18A5BB67B9}] => (Allow) D:\SteamLibrary\steamapps\common\SpeedRunners\SpeedRunners.exe
FirewallRules: [{6C0B6200-A849-4D4D-AA2A-F7DCF5523C1F}] => (Allow) D:\SteamLibrary\steamapps\common\H1Z1\LaunchPad.exe
FirewallRules: [{FE55933A-AFA3-4D6F-887B-3C2DBF8098F7}] => (Allow) D:\SteamLibrary\steamapps\common\H1Z1\LaunchPad.exe
FirewallRules: [TCP Query User{9D3AB7FA-A9BB-431A-9D39-90945C53A3BB}D:\steamlibrary\steamapps\common\dayz\dayz.exe] => (Allow) D:\steamlibrary\steamapps\common\dayz\dayz.exe
FirewallRules: [UDP Query User{1D591FE2-E08C-4ACB-AC12-C9D19D59A59D}D:\steamlibrary\steamapps\common\dayz\dayz.exe] => (Allow) D:\steamlibrary\steamapps\common\dayz\dayz.exe
FirewallRules: [{6F27BBA0-D353-4E3C-96BE-1E832C8AA7B6}] => (Allow) C:\Program Files\Logitech Gaming Software\LCore.exe
FirewallRules: [{9C1D100F-7C67-44B6-B259-A59818863129}] => (Allow) C:\Program Files\Logitech Gaming Software\LCore.exe
FirewallRules: [{362D1942-E6E7-4C63-9294-85250AA176BF}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{E09D24F8-0540-47C6-A421-476114B61F2C}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{D1E3992A-F2FE-4D57-AABD-D07A882B061D}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{2A452897-0EB1-4418-B10A-58DB2F20CECD}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [TCP Query User{0169CBA1-9759-4D8C-8D70-56BBE37BDC2D}D:\steamlibrary\steamapps\common\h1z1\h1z1.exe] => (Allow) D:\steamlibrary\steamapps\common\h1z1\h1z1.exe
FirewallRules: [UDP Query User{82242893-AED1-436F-BBF1-C326EC6F2C49}D:\steamlibrary\steamapps\common\h1z1\h1z1.exe] => (Allow) D:\steamlibrary\steamapps\common\h1z1\h1z1.exe
FirewallRules: [{C9A86A78-06C6-4631-A39C-B68FAD275CB1}] => (Allow) D:\SteamLibrary\steamapps\common\SleepingDogs\HKShip.exe
FirewallRules: [{7F0CF4F5-BBDE-4DA7-83CB-2340A5D3091B}] => (Allow) D:\SteamLibrary\steamapps\common\SleepingDogs\HKShip.exe
FirewallRules: [TCP Query User{55D33573-04FD-4DA7-8D90-3460FBCC08BB}C:\users\jasch\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\jasch\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{766CED77-ABBD-46B4-930B-573986B6A924}C:\users\jasch\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\jasch\appdata\roaming\spotify\spotify.exe
FirewallRules: [TCP Query User{BB93D967-713B-4A2C-8654-BC7E69797EB5}D:\far cry 4\bin\farcry4.exe] => (Allow) D:\far cry 4\bin\farcry4.exe
FirewallRules: [UDP Query User{52B3495E-1B76-48C3-86EB-FE47C793EB63}D:\far cry 4\bin\farcry4.exe] => (Allow) D:\far cry 4\bin\farcry4.exe
FirewallRules: [{E32A984A-71FD-4B0C-8270-E65CEF355BC1}] => (Allow) D:\Battle.net\Hearthstone\Hearthstone.exe
FirewallRules: [{C96D4D51-C39F-41A8-B24E-76E0DED11F2C}] => (Allow) D:\Battle.net\Hearthstone\Hearthstone.exe
FirewallRules: [TCP Query User{CE6772B7-F388-4AE7-824A-52E5919273AC}C:\users\jasch\appdata\local\jdownloader v2.0\jdownloader2.exe] => (Block) C:\users\jasch\appdata\local\jdownloader v2.0\jdownloader2.exe
FirewallRules: [UDP Query User{252CEB18-96F5-47E8-ACA1-0AD8B27DFAC7}C:\users\jasch\appdata\local\jdownloader v2.0\jdownloader2.exe] => (Block) C:\users\jasch\appdata\local\jdownloader v2.0\jdownloader2.exe
FirewallRules: [{6143BEFB-8323-429B-9F80-E19DC50A02B5}] => (Allow) D:\Games\AC Rogue\ACC.exe
FirewallRules: [{953ED705-06F3-4418-A482-A164BDFD5F75}] => (Allow) D:\Games\AC Rogue\ACC.exe
FirewallRules: [TCP Query User{F10E4BDB-35EA-40A5-85E6-2CA14B50FF4E}D:\games\far cry 4\bin\farcry4.exe] => (Allow) D:\games\far cry 4\bin\farcry4.exe
FirewallRules: [UDP Query User{9C41E1F1-C609-43AE-854D-4ED3358C55AA}D:\games\far cry 4\bin\farcry4.exe] => (Allow) D:\games\far cry 4\bin\farcry4.exe
FirewallRules: [{6632B3E2-B215-4377-B409-7D44B07AE548}] => (Allow) D:\SteamLibrary\steamapps\common\Deus Ex Human Revolution Director's Cut\DXHRDC.exe
FirewallRules: [{2CBF6991-A77B-4C62-BE3E-71825054407C}] => (Allow) D:\SteamLibrary\steamapps\common\Deus Ex Human Revolution Director's Cut\DXHRDC.exe
FirewallRules: [{2353AD09-23DC-4AAA-AD25-9E386491F029}] => (Allow) D:\SteamLibrary\steamapps\common\Tomb Raider\TombRaider.exe
FirewallRules: [{B192EC39-BD34-4BA7-8CB5-C08B5E3010B2}] => (Allow) D:\SteamLibrary\steamapps\common\Tomb Raider\TombRaider.exe
FirewallRules: [{3C3D5BC9-E1B1-4D04-B93D-C52C6D00BDEC}] => (Allow) D:\SteamLibrary\steamapps\common\dota 2 beta\dota.exe
FirewallRules: [{C2CEA69F-E7EB-4911-B739-BBCCA42149EF}] => (Allow) D:\SteamLibrary\steamapps\common\dota 2 beta\dota.exe
FirewallRules: [{55763A88-AF87-479A-860C-8F1BE43DC649}] => (Allow) D:\SteamLibrary\steamapps\common\Half-Life 2\hl2.exe
FirewallRules: [{9FF058D3-57FC-4E7B-85D0-4D0F11F3E689}] => (Allow) D:\SteamLibrary\steamapps\common\Half-Life 2\hl2.exe
FirewallRules: [{DE605936-B699-45D5-B08B-70D2B80D2490}] => (Allow) D:\SteamLibrary\steamapps\common\Arma 3\arma3.exe
FirewallRules: [{32CC28ED-71A5-4583-ACED-12F144C61F4A}] => (Allow) D:\SteamLibrary\steamapps\common\Arma 3\arma3.exe
FirewallRules: [{B6A68D37-BF36-47C4-88B3-D32BD1552E6D}] => (Allow) D:\SteamLibrary\steamapps\common\Arma 3\arma3launcher.exe
FirewallRules: [{F243CF19-8236-48F2-B134-326AE90684AC}] => (Allow) D:\SteamLibrary\steamapps\common\Arma 3\arma3launcher.exe
FirewallRules: [{83228CA6-C1BC-4C8C-88C2-C00D9F78D308}] => (Allow) C:\Users\Jasch\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{05D1BC32-F479-4F92-87DF-A389DBDB4873}] => (Allow) C:\Users\Jasch\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{5E862747-81AC-4F31-8BF4-3442C216A8DB}] => (Allow) D:\SteamLibrary\steamapps\common\3DMark\3DMarkLauncher.exe
FirewallRules: [{C0E8BFDD-CC8A-4DD0-A20F-35B5C9FCBA67}] => (Allow) D:\SteamLibrary\steamapps\common\3DMark\3DMarkLauncher.exe
FirewallRules: [{8204C9D0-EFB4-4FFD-8C56-C81E11E369EB}] => (Allow) D:\SteamLibrary\steamapps\common\3DMark\bin\x86\3DMark.exe
FirewallRules: [{9514551A-078A-4F47-B759-41CB07C43488}] => (Allow) D:\SteamLibrary\steamapps\common\3DMark\bin\x86\3DMark.exe
FirewallRules: [{95BA32E5-5941-48A4-A00B-225501D8397D}] => (Allow) D:\SteamLibrary\steamapps\common\3DMark\bin\x64\3DMark.exe
FirewallRules: [{BD06B555-20D6-4636-A19D-ABB496AF1966}] => (Allow) D:\SteamLibrary\steamapps\common\3DMark\bin\x64\3DMark.exe
FirewallRules: [{AADF24DD-B943-4C42-A2EA-451E5B2CEE19}] => (Allow) D:\SteamLibrary\steamapps\common\nosgoth\Binaries\Win32\Nosgoth.exe
FirewallRules: [{8303D643-0B3A-4FBC-AEEA-BF069EE2BF8C}] => (Allow) D:\SteamLibrary\steamapps\common\nosgoth\Binaries\Win32\Nosgoth.exe
FirewallRules: [TCP Query User{9CA05AF7-A6C4-4690-A748-985F91ABBA1C}D:\steamlibrary\steamapps\common\dayz\dayz.exe] => (Allow) D:\steamlibrary\steamapps\common\dayz\dayz.exe
FirewallRules: [UDP Query User{EE91D4BC-417B-49C2-ABCE-08C0DDEDC3DE}D:\steamlibrary\steamapps\common\dayz\dayz.exe] => (Allow) D:\steamlibrary\steamapps\common\dayz\dayz.exe
FirewallRules: [{25F76477-EB10-477D-92A7-DCBB982FD230}] => (Allow) D:\SteamLibrary\steamapps\common\The Witcher Enhanced Edition\System\witcher.exe
FirewallRules: [{E476A509-7FEB-4FBB-B8CC-4A16375DFA7B}] => (Allow) D:\SteamLibrary\steamapps\common\The Witcher Enhanced Edition\System\witcher.exe
FirewallRules: [{997CEE49-1253-4CA7-B49F-E1EFD27DFEA4}] => (Allow) D:\SteamLibrary\steamapps\common\The Witcher Enhanced Edition\System\djinni!.exe
FirewallRules: [{C41EC134-E153-4EC5-9C68-48B8AF91CEA9}] => (Allow) D:\SteamLibrary\steamapps\common\The Witcher Enhanced Edition\System\djinni!.exe
FirewallRules: [{29D32734-1458-4C12-B7AE-25E3BB131A81}] => (Allow) D:\SteamLibrary\steamapps\common\The Witcher Enhanced Edition\Digital Comic\DigitalComic.exe
FirewallRules: [{6BE1C260-9711-49DE-A4F6-F7E72A729EC0}] => (Allow) D:\SteamLibrary\steamapps\common\The Witcher Enhanced Edition\Digital Comic\DigitalComic.exe
FirewallRules: [TCP Query User{AD04912C-0F0E-4466-81F9-90D616F4FD18}D:\steamlibrary\steamapps\common\h1z1\h1z1.exe] => (Allow) D:\steamlibrary\steamapps\common\h1z1\h1z1.exe
FirewallRules: [UDP Query User{E747ACC3-F42B-4ECC-92C8-69EE693CE1B6}D:\steamlibrary\steamapps\common\h1z1\h1z1.exe] => (Allow) D:\steamlibrary\steamapps\common\h1z1\h1z1.exe
FirewallRules: [TCP Query User{D4FAA045-1387-4CC7-88C7-D13AAD0374ED}C:\users\jasch\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\jasch\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{A05BA291-A46F-44B7-BCA2-0BA0D2CE74B5}C:\users\jasch\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\jasch\appdata\roaming\spotify\spotify.exe
FirewallRules: [TCP Query User{E3178FF2-2FA8-42D1-B716-D78435447464}C:\program files (x86)\metro 2033 redux\metro_benchmark.exe] => (Allow) C:\program files (x86)\metro 2033 redux\metro_benchmark.exe
FirewallRules: [UDP Query User{2FB4AEAB-CED0-4800-82EE-B4E20719EFCF}C:\program files (x86)\metro 2033 redux\metro_benchmark.exe] => (Allow) C:\program files (x86)\metro 2033 redux\metro_benchmark.exe
FirewallRules: [TCP Query User{848E2C76-7691-4461-977D-B3B8C4DB7F3E}C:\program files (x86)\deep silver\metro redux\metro 2033 redux\metro_benchmark.exe] => (Allow) C:\program files (x86)\deep silver\metro redux\metro 2033 redux\metro_benchmark.exe
FirewallRules: [UDP Query User{F9E0FA7F-38D1-42C0-B8C4-4179FF7C9B85}C:\program files (x86)\deep silver\metro redux\metro 2033 redux\metro_benchmark.exe] => (Allow) C:\program files (x86)\deep silver\metro redux\metro 2033 redux\metro_benchmark.exe
FirewallRules: [TCP Query User{B0844BE9-CEEA-4729-BDEB-44A66FAF38E2}D:\games\divinity\shipping\eocapp.exe] => (Allow) D:\games\divinity\shipping\eocapp.exe
FirewallRules: [UDP Query User{3393A539-0B06-44BA-B533-F6E209DE8044}D:\games\divinity\shipping\eocapp.exe] => (Allow) D:\games\divinity\shipping\eocapp.exe
FirewallRules: [TCP Query User{53D8FCDD-C8E5-4404-8CFE-BE16D7E0A777}D:\games\vanishing of ethan carter\binaries\win64\astronautsgame-win64-shipping.exe] => (Allow) D:\games\vanishing of ethan carter\binaries\win64\astronautsgame-win64-shipping.exe
FirewallRules: [UDP Query User{301199F9-17AE-4502-AEDE-1593197B6435}D:\games\vanishing of ethan carter\binaries\win64\astronautsgame-win64-shipping.exe] => (Allow) D:\games\vanishing of ethan carter\binaries\win64\astronautsgame-win64-shipping.exe
FirewallRules: [{980BC4B1-5891-4558-AD68-4B3129188FB7}] => (Allow) D:\SteamLibrary\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{C9AAA964-5DBC-4EFE-9D78-611219206B3A}] => (Allow) D:\SteamLibrary\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [TCP Query User{DC6FE9E6-523D-42F9-9096-D635900D337E}D:\games\world of warships\wowslauncher.exe] => (Allow) D:\games\world of warships\wowslauncher.exe
FirewallRules: [UDP Query User{9411BFC7-0CB4-4564-8989-9A0680827B57}D:\games\world of warships\wowslauncher.exe] => (Allow) D:\games\world of warships\wowslauncher.exe
FirewallRules: [{ECFA988E-E52E-40B8-98F4-333C53376A39}] => (Allow) D:\SteamLibrary\steamapps\common\supercratebox\supercratebox.exe
FirewallRules: [{1DDC726C-B72D-4EC3-8ADE-087798965623}] => (Allow) D:\SteamLibrary\steamapps\common\supercratebox\supercratebox.exe
FirewallRules: [{A1B14460-2A51-4161-A020-359056737705}] => (Allow) D:\SteamLibrary\steamapps\common\DayZ\DayZ_BE.exe
FirewallRules: [{C944C8BE-8E1A-4D5A-8690-827F5F383C82}] => (Allow) D:\SteamLibrary\steamapps\common\DayZ\DayZ_BE.exe
FirewallRules: [TCP Query User{D1134A74-3010-4BD1-BE38-4CAD15E761AB}D:\games\mass effect 3\binaries\win32\masseffect3.exe] => (Block) D:\games\mass effect 3\binaries\win32\masseffect3.exe
FirewallRules: [UDP Query User{5FA0565D-1CCD-4793-94EB-51B24F4CEFCF}D:\games\mass effect 3\binaries\win32\masseffect3.exe] => (Block) D:\games\mass effect 3\binaries\win32\masseffect3.exe
FirewallRules: [{C12587D2-7721-4076-A395-187568C15306}] => (Allow) D:\SteamLibrary\steamapps\common\Hawken\Binaries\Win32\HawkenGame-Win32-Shipping.exe
FirewallRules: [{E8980F81-2A7A-4AC0-9A62-C55FCA60ABE5}] => (Allow) D:\SteamLibrary\steamapps\common\Hawken\Binaries\Win32\HawkenGame-Win32-Shipping.exe
FirewallRules: [TCP Query User{91A54CB3-439E-498A-AA07-EED815789344}D:\steamlibrary\steamapps\common\survarium\game\binaries\x86\survarium.exe] => (Allow) D:\steamlibrary\steamapps\common\survarium\game\binaries\x86\survarium.exe
FirewallRules: [UDP Query User{3B5D93B7-8FC1-4FAD-BECC-729A8C83B2BA}D:\steamlibrary\steamapps\common\survarium\game\binaries\x86\survarium.exe] => (Allow) D:\steamlibrary\steamapps\common\survarium\game\binaries\x86\survarium.exe
FirewallRules: [{C85F98C4-DA89-4818-BDDD-A0DFE1D9CEE9}] => (Allow) D:\SteamLibrary\steamapps\common\Ys I\ys1plus.exe
FirewallRules: [{1BFA5570-DC04-41FE-A82D-0A4EADF4F67E}] => (Allow) D:\SteamLibrary\steamapps\common\Ys I\ys1plus.exe
FirewallRules: [{7E638BA4-9343-423A-B478-56BA6311AC5B}] => (Allow) D:\SteamLibrary\steamapps\common\Ys I\config.exe
FirewallRules: [{A09333E1-A5EB-4FF7-9AAB-88318915FA74}] => (Allow) D:\SteamLibrary\steamapps\common\Ys I\config.exe
FirewallRules: [{4D1A57E6-E81A-4553-B064-63FF68590190}] => (Allow) D:\SteamLibrary\steamapps\common\Ys II\ys2plus.exe
FirewallRules: [{66AED8CA-368A-47C6-933C-B15209378BCF}] => (Allow) D:\SteamLibrary\steamapps\common\Ys II\ys2plus.exe
FirewallRules: [{B0E8C358-2EA2-4DE1-8AC1-F80454229E67}] => (Allow) D:\SteamLibrary\steamapps\common\Ys II\config.exe
FirewallRules: [{A2522D9E-1814-4F34-A2C2-D610629C17F0}] => (Allow) D:\SteamLibrary\steamapps\common\Ys II\config.exe
FirewallRules: [{9CD6B7B0-D78E-4C6A-B61D-24D923BE4285}] => (Allow) D:\SteamLibrary\steamapps\common\Ys Origin\yso_win.exe
FirewallRules: [{3823A811-2F24-41FD-8F8B-66057C79DF4C}] => (Allow) D:\SteamLibrary\steamapps\common\Ys Origin\yso_win.exe
FirewallRules: [{8353B0FF-BDEA-4EF6-80A4-41C18E323791}] => (Allow) D:\SteamLibrary\steamapps\common\Ys Origin\config.exe
FirewallRules: [{38F684B5-533A-45C3-980B-0F281348D9C3}] => (Allow) D:\SteamLibrary\steamapps\common\Ys Origin\config.exe
FirewallRules: [{F82F0772-8097-48CE-B65A-95C0128A0FCA}] => (Allow) D:\SteamLibrary\steamapps\common\Shovel Knight\ShovelKnight.exe
FirewallRules: [{BADF8670-252C-47DE-BCB8-E27F6FC1EB22}] => (Allow) D:\SteamLibrary\steamapps\common\Shovel Knight\ShovelKnight.exe
FirewallRules: [{68E8677E-DDB3-4E64-B01F-4FC756F2447C}] => (Allow) D:\SteamLibrary\steamapps\common\Nidhogg\Nidhogg.exe
FirewallRules: [{20820483-DC57-4FAC-868C-4834978BC5DB}] => (Allow) D:\SteamLibrary\steamapps\common\Nidhogg\Nidhogg.exe
FirewallRules: [{5D17C59D-7A56-493F-8987-ACB31195E38B}] => (Allow) D:\SteamLibrary\steamapps\common\Arma 2\arma2.exe
FirewallRules: [{7616B7F2-2DDD-471C-920D-F1A779E721CD}] => (Allow) D:\SteamLibrary\steamapps\common\Arma 2\arma2.exe
FirewallRules: [{EEAB1CCF-6125-4ED9-B19F-2EE3062EDEF2}] => (Allow) D:\SteamLibrary\steamapps\common\Lume\Lume.exe
FirewallRules: [{0BC212B1-6893-43FA-95B5-7EF21C4EB920}] => (Allow) D:\SteamLibrary\steamapps\common\Lume\Lume.exe
FirewallRules: [{67F1A9CA-C943-4CB1-ACC9-58197880BB65}] => (Allow) D:\SteamLibrary\steamapps\common\PapersPlease\PapersPlease.exe
FirewallRules: [{BCBB6636-F818-46C0-A988-D4A37B202F93}] => (Allow) D:\SteamLibrary\steamapps\common\PapersPlease\PapersPlease.exe
FirewallRules: [{3DE28FBA-08AF-49EF-891F-E10407488BF8}] => (Allow) D:\SteamLibrary\steamapps\common\PAYDAY 2\payday2_win32_release.exe
FirewallRules: [{F5260715-62CB-465B-B7B1-6B1D5846940F}] => (Allow) D:\SteamLibrary\steamapps\common\PAYDAY 2\payday2_win32_release.exe
FirewallRules: [{B0253630-CB06-4C4E-B0CF-0ECFD54A8D08}] => (Allow) D:\SteamLibrary\steamapps\common\Portal\hl2.exe
FirewallRules: [{C4881D7B-E76D-46EA-871F-5B6070899477}] => (Allow) D:\SteamLibrary\steamapps\common\Portal\hl2.exe
FirewallRules: [{A11789F5-0CDC-44C1-AB0D-BD4691492570}] => (Allow) D:\SteamLibrary\steamapps\common\Portal 2\portal2.exe
FirewallRules: [{693965F7-1263-45EE-97E1-734A4E1F081A}] => (Allow) D:\SteamLibrary\steamapps\common\Portal 2\portal2.exe
FirewallRules: [{9E821329-98F3-446F-A404-277CC32D5A27}] => (Allow) D:\SteamLibrary\steamapps\common\The Stanley Parable\stanley.exe
FirewallRules: [{C3B49149-31E5-4209-8935-9D23A07EE148}] => (Allow) D:\SteamLibrary\steamapps\common\The Stanley Parable\stanley.exe
FirewallRules: [{4C36151E-D553-4641-A86D-0DC19C462BD6}] => (Allow) D:\SteamLibrary\steamapps\common\The Wolf Among Us\TheWolfAmongUs.exe
FirewallRules: [{1D2A3F13-7C0D-43A2-B00E-CA65B9AAF0B3}] => (Allow) D:\SteamLibrary\steamapps\common\The Wolf Among Us\TheWolfAmongUs.exe
FirewallRules: [{11CD40F7-E15E-466B-B7B3-1638F958D646}] => (Allow) D:\SteamLibrary\steamapps\common\The Walking Dead\WalkingDead101.exe
FirewallRules: [{AC66C2BA-5693-428C-8ED7-69DEDB69274F}] => (Allow) D:\SteamLibrary\steamapps\common\The Walking Dead\WalkingDead101.exe
FirewallRules: [{B208BC5B-02D4-4DA8-AA3A-94B26D5B9318}] => (Allow) D:\SteamLibrary\steamapps\common\The Walking Dead Season Two\TheWalkingDead2.exe
FirewallRules: [{CB82052A-FED9-4C1F-B27C-07B62ADC75DB}] => (Allow) D:\SteamLibrary\steamapps\common\The Walking Dead Season Two\TheWalkingDead2.exe
FirewallRules: [{70E382B6-117E-4973-9154-C39C95C44C81}] => (Allow) D:\SteamLibrary\steamapps\common\DmC Devil May Cry\Binaries\Win32\DMC-DevilMayCry.exe
FirewallRules: [{1304BFB5-6690-440F-BE02-170F3C1BE5AC}] => (Allow) D:\SteamLibrary\steamapps\common\DmC Devil May Cry\Binaries\Win32\DMC-DevilMayCry.exe
FirewallRules: [{5E3376B4-2D3A-4830-989B-687B1EAA45AC}] => (Allow) D:\SteamLibrary\steamapps\common\140\140.exe
FirewallRules: [{305321CD-6BEF-4A2B-B9CD-00E4F94DE2D3}] => (Allow) D:\SteamLibrary\steamapps\common\140\140.exe
FirewallRules: [{1C0E590C-FD5A-4843-A75C-F2CFA1EB65FA}] => (Allow) D:\SteamLibrary\steamapps\common\MirrorMoonEP\MirrorMoonEP.exe
FirewallRules: [{EC4C78EB-5D58-407C-A0D1-18C9477DE4D7}] => (Allow) D:\SteamLibrary\steamapps\common\MirrorMoonEP\MirrorMoonEP.exe
FirewallRules: [{A87A467D-8C2D-46AD-9E89-E6F1BB4CEB0C}] => (Allow) D:\SteamLibrary\steamapps\common\Pixel Piracy\PixelPiracy.exe
FirewallRules: [{A053420B-6C37-4F33-8556-04F2B421F108}] => (Allow) D:\SteamLibrary\steamapps\common\Pixel Piracy\PixelPiracy.exe
FirewallRules: [{689DF153-F24C-4EB3-9596-10A8D73C00CB}] => (Allow) D:\SteamLibrary\steamapps\common\Grand Theft Auto V\GTAVLauncher.exe
FirewallRules: [{FDD72598-A4C9-4B9E-A2A4-5E96C5A4B196}] => (Allow) D:\SteamLibrary\steamapps\common\Grand Theft Auto V\GTAVLauncher.exe
FirewallRules: [TCP Query User{F221A2A1-CDBC-42AD-A93B-F452ADCACA1A}D:\steamlibrary\steamapps\common\grand theft auto v\gta5.exe] => (Allow) D:\steamlibrary\steamapps\common\grand theft auto v\gta5.exe
FirewallRules: [UDP Query User{14280FDB-FC29-467F-A27B-BA015D44CD55}D:\steamlibrary\steamapps\common\grand theft auto v\gta5.exe] => (Allow) D:\steamlibrary\steamapps\common\grand theft auto v\gta5.exe
FirewallRules: [TCP Query User{2C433EF0-9004-4BDC-BF6E-A4B6485CD8A7}C:\program files (x86)\steam\steamapps\grand theft auto v\gta5.exe] => (Allow) C:\program files (x86)\steam\steamapps\grand theft auto v\gta5.exe
FirewallRules: [UDP Query User{696D218B-52DC-4BBA-9427-1F2F62E53408}C:\program files (x86)\steam\steamapps\grand theft auto v\gta5.exe] => (Allow) C:\program files (x86)\steam\steamapps\grand theft auto v\gta5.exe
FirewallRules: [{4EFBFAEF-C6BB-479C-8963-3DBEB5C9F2F3}] => (Allow) D:\SteamLibrary\steamapps\common\Torchlight II\ModLauncher.exe
FirewallRules: [{216EF548-106A-43EE-AE8F-5C76BF2C921A}] => (Allow) D:\SteamLibrary\steamapps\common\Torchlight II\ModLauncher.exe
FirewallRules: [TCP Query User{7D0F8A5F-2509-47E6-AA10-5C3DE4D50E24}C:\program files (x86)\a3launcher\a3launcher.exe] => (Allow) C:\program files (x86)\a3launcher\a3launcher.exe
FirewallRules: [UDP Query User{669CDB72-5623-417C-B307-A7D974C6F386}C:\program files (x86)\a3launcher\a3launcher.exe] => (Allow) C:\program files (x86)\a3launcher\a3launcher.exe
FirewallRules: [{A1B4F96A-EA19-42F5-9C1F-678A89C51ABF}] => (Allow) D:\SteamLibrary\steamapps\common\Outlast\OutlastLauncher.exe
FirewallRules: [{8F29B4E4-2FF2-46A0-993E-EBD2C8982A2E}] => (Allow) D:\SteamLibrary\steamapps\common\Outlast\OutlastLauncher.exe
FirewallRules: [{6C8A36D3-EFAC-4A6C-8CCD-CF6FA5E2C5E5}] => (Allow) D:\Origin\Bejeweled 3\Bejeweled3.exe
FirewallRules: [{882CFE06-FB0B-44C8-A1EE-166165D5D98B}] => (Allow) D:\Origin\Bejeweled 3\Bejeweled3.exe
FirewallRules: [{DBFEE50E-D6B3-4A29-A9CF-026BB4F75D5A}] => (Allow) D:\SteamLibrary\steamapps\common\Dead Space 2\deadspace2.exe
FirewallRules: [{D6F17580-45A6-451D-9DE7-9D46D07DC94C}] => (Allow) D:\SteamLibrary\steamapps\common\Dead Space 2\deadspace2.exe
FirewallRules: [{1D60AAE8-B1BC-45D9-8031-E739578CEAE2}] => (Allow) D:\SteamLibrary\steamapps\common\Mass Effect 2\Binaries\MassEffect2.exe
FirewallRules: [{8F048E3D-16A8-4F14-9952-C5C8E51620D8}] => (Allow) D:\SteamLibrary\steamapps\common\Mass Effect 2\Binaries\MassEffect2.exe
FirewallRules: [{6DBE6F0D-0756-4E94-86D5-1754FE9661BD}] => (Allow) D:\SteamLibrary\steamapps\common\Mass Effect 2\MassEffect2Launcher.exe
FirewallRules: [{0DC8DAA4-62A2-4E62-81D5-CE732AC6B62B}] => (Allow) D:\SteamLibrary\steamapps\common\Mass Effect 2\MassEffect2Launcher.exe
FirewallRules: [{0D9F36B2-4107-48AB-B9D3-12B8ACA71180}] => (Allow) D:\SteamLibrary\steamapps\common\Dragon Age Origins\bin_ship\DAOrigins.exe
FirewallRules: [{6BB0FDD2-407A-4CC7-9A5C-562A7F06B567}] => (Allow) D:\SteamLibrary\steamapps\common\Dragon Age Origins\bin_ship\DAOrigins.exe
FirewallRules: [{5B0ACFAD-B29E-44D9-919C-7F2E6786A606}] => (Allow) D:\SteamLibrary\steamapps\common\Dragon Age Origins\DAOriginsLauncher.exe
FirewallRules: [{9F87D3F0-EB79-46AA-A271-3F89AE24D231}] => (Allow) D:\SteamLibrary\steamapps\common\Dragon Age Origins\DAOriginsLauncher.exe
FirewallRules: [TCP Query User{61B6791A-A36D-46DB-BFE3-F66C7152C279}D:\battle.net\hearthstone\hearthstone.exe] => (Allow) D:\battle.net\hearthstone\hearthstone.exe
FirewallRules: [UDP Query User{9D0AB1A9-EAFB-4757-B540-7E48109199A8}D:\battle.net\hearthstone\hearthstone.exe] => (Allow) D:\battle.net\hearthstone\hearthstone.exe
FirewallRules: [{38A96370-2C4E-4FC8-8F89-DCF77642DB62}] => (Allow) D:\SteamLibrary\steamapps\common\H1Z1 Test\LaunchPad.exe
FirewallRules: [{7CC5BE3B-B145-414D-9652-3153B285787F}] => (Allow) D:\SteamLibrary\steamapps\common\H1Z1 Test\LaunchPad.exe
FirewallRules: [{B4079F74-1138-40FE-99DF-D24A52B559D6}] => (Allow) D:\SteamLibrary\steamapps\common\the witcher 2\Launcher.exe
FirewallRules: [{FE9F2F8A-02A7-4B5D-9872-17BFC929261B}] => (Allow) D:\SteamLibrary\steamapps\common\the witcher 2\Launcher.exe
FirewallRules: [{D8426BCF-E352-4DA1-8844-0791E8D7BB80}] => (Allow) D:\SteamLibrary\steamapps\common\Unepic\unepic.exe
FirewallRules: [{077AAD8F-6FEA-404E-AFA6-44BB350694DA}] => (Allow) D:\SteamLibrary\steamapps\common\Unepic\unepic.exe
FirewallRules: [TCP Query User{5A5E366F-BCF4-48AA-8802-B5A6F1EDF440}C:\program files (x86)\steam\steamapps\arma 3\arma3.exe] => (Allow) C:\program files (x86)\steam\steamapps\arma 3\arma3.exe
FirewallRules: [UDP Query User{D952C09B-D2AC-470F-BED9-5094454F606E}C:\program files (x86)\steam\steamapps\arma 3\arma3.exe] => (Allow) C:\program files (x86)\steam\steamapps\arma 3\arma3.exe
FirewallRules: [{69C2C989-8EA9-4EFD-924B-DEE9D9947005}] => (Allow) D:\SteamLibrary\steamapps\common\TERA\TERA-Launcher.exe
FirewallRules: [{EC711128-6A87-4D5B-BD2D-C0AB25A8CED5}] => (Allow) D:\SteamLibrary\steamapps\common\TERA\TERA-Launcher.exe
FirewallRules: [{C94EA61A-CB28-4140-A3F3-39E69ED723A9}] => (Allow) D:\SteamLibrary\steamapps\common\3DMark\bin\x86\3DMark.exe
FirewallRules: [{54FE237E-1970-484B-9E81-3B7569448828}] => (Allow) D:\SteamLibrary\steamapps\common\3DMark\bin\x86\3DMark.exe
FirewallRules: [{1E86DEA2-2694-4F62-A42D-AB1CF9E6F9AD}] => (Allow) D:\SteamLibrary\steamapps\common\3DMark\bin\x64\3DMark.exe
FirewallRules: [{D43129D9-68F5-4C52-9800-F15AA763D8B6}] => (Allow) D:\SteamLibrary\steamapps\common\3DMark\bin\x64\3DMark.exe
FirewallRules: [{530C7820-172E-4F98-BD16-8EE742F80975}] => (Allow) D:\SteamLibrary\steamapps\common\tbs\win32\The Banner Saga.exe
FirewallRules: [{809AA726-A857-4F11-A115-58FF82E16F93}] => (Allow) D:\SteamLibrary\steamapps\common\tbs\win32\The Banner Saga.exe
FirewallRules: [{363E24C5-9173-4385-8E8E-0CE892D96A5A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warface\live\nw.exe
FirewallRules: [{F0BD5C2C-2512-4F45-B577-7DCA71EE8153}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warface\live\nw.exe
FirewallRules: [{B5EDE426-4BB9-4005-AB30-EDD1AA287F40}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{366E4513-C4B8-4312-A028-66D126EB2DD5}] => (Allow) D:\SteamLibrary\steamapps\common\nosgoth\Binaries\Win32\Nosgoth.exe
FirewallRules: [{A6CE60C2-69E6-45A7-9C71-398F563EE43E}] => (Allow) D:\SteamLibrary\steamapps\common\nosgoth\Binaries\Win32\Nosgoth.exe
FirewallRules: [TCP Query User{0D36DACD-4808-4E33-809F-2D7E68D288F0}D:\steamlibrary\steamapps\common\the witcher 2\bin\witcher2.exe] => (Allow) D:\steamlibrary\steamapps\common\the witcher 2\bin\witcher2.exe
FirewallRules: [UDP Query User{765B05AE-6D69-4368-ACAB-069D273D57B5}D:\steamlibrary\steamapps\common\the witcher 2\bin\witcher2.exe] => (Allow) D:\steamlibrary\steamapps\common\the witcher 2\bin\witcher2.exe

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (05/16/2015 03:18:39 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: csgo.exe, Version: 0.0.0.0, Zeitstempel: 0x54c98822
Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc0000005
Fehleroffset: 0xe3a23070
ID des fehlerhaften Prozesses: 0x874
Startzeit der fehlerhaften Anwendung: 0xcsgo.exe0
Pfad der fehlerhaften Anwendung: csgo.exe1
Pfad des fehlerhaften Moduls: csgo.exe2
Berichtskennung: csgo.exe3
Vollständiger Name des fehlerhaften Pakets: csgo.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: csgo.exe5

Error: (05/15/2015 09:45:57 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: Wasteland Launcher.exe, Version: 0.0.2.1, Zeitstempel: 0x554909d3
Name des fehlerhaften Moduls: KERNELBASE.dll, Version: 6.3.9600.17415, Zeitstempel: 0x54504ade
Ausnahmecode: 0xe0434352
Fehleroffset: 0x00014598
ID des fehlerhaften Prozesses: 0x2b9c
Startzeit der fehlerhaften Anwendung: 0xWasteland Launcher.exe0
Pfad der fehlerhaften Anwendung: Wasteland Launcher.exe1
Pfad des fehlerhaften Moduls: Wasteland Launcher.exe2
Berichtskennung: Wasteland Launcher.exe3
Vollständiger Name des fehlerhaften Pakets: Wasteland Launcher.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: Wasteland Launcher.exe5

Error: (05/15/2015 09:45:57 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Anwendung: Wasteland Launcher.exe
Frameworkversion: v4.0.30319
Beschreibung: Der Prozess wurde aufgrund eines Ausnahmefehlers beendet.
Ausnahmeinformationen: System.ComponentModel.Win32Exception
Stapel:
   bei System.Diagnostics.Process.Kill()
   bei Wasteland_Launcher.MainWindow.updateLauncher_ButtonClick(System.Object, System.Windows.RoutedEventArgs)
   bei System.Windows.RoutedEventHandlerInfo.InvokeHandler(System.Object, System.Windows.RoutedEventArgs)
   bei System.Windows.EventRoute.InvokeHandlersImpl(System.Object, System.Windows.RoutedEventArgs, Boolean)
   bei System.Windows.UIElement.RaiseEventImpl(System.Windows.DependencyObject, System.Windows.RoutedEventArgs)
   bei System.Windows.UIElement.RaiseEvent(System.Windows.RoutedEventArgs)
   bei System.Windows.Controls.Primitives.ButtonBase.OnClick()
   bei System.Windows.Controls.Button.OnClick()
   bei System.Windows.Controls.Primitives.ButtonBase.OnMouseLeftButtonUp(System.Windows.Input.MouseButtonEventArgs)
   bei System.Windows.UIElement.OnMouseLeftButtonUpThunk(System.Object, System.Windows.Input.MouseButtonEventArgs)
   bei System.Windows.Input.MouseButtonEventArgs.InvokeEventHandler(System.Delegate, System.Object)
   bei System.Windows.RoutedEventArgs.InvokeHandler(System.Delegate, System.Object)
   bei System.Windows.RoutedEventHandlerInfo.InvokeHandler(System.Object, System.Windows.RoutedEventArgs)
   bei System.Windows.EventRoute.InvokeHandlersImpl(System.Object, System.Windows.RoutedEventArgs, Boolean)
   bei System.Windows.UIElement.ReRaiseEventAs(System.Windows.DependencyObject, System.Windows.RoutedEventArgs, System.Windows.RoutedEvent)
   bei System.Windows.UIElement.OnMouseUpThunk(System.Object, System.Windows.Input.MouseButtonEventArgs)
   bei System.Windows.Input.MouseButtonEventArgs.InvokeEventHandler(System.Delegate, System.Object)
   bei System.Windows.RoutedEventArgs.InvokeHandler(System.Delegate, System.Object)
   bei System.Windows.RoutedEventHandlerInfo.InvokeHandler(System.Object, System.Windows.RoutedEventArgs)
   bei System.Windows.EventRoute.InvokeHandlersImpl(System.Object, System.Windows.RoutedEventArgs, Boolean)
   bei System.Windows.UIElement.RaiseEventImpl(System.Windows.DependencyObject, System.Windows.RoutedEventArgs)
   bei System.Windows.UIElement.RaiseTrustedEvent(System.Windows.RoutedEventArgs)
   bei System.Windows.UIElement.RaiseEvent(System.Windows.RoutedEventArgs, Boolean)
   bei System.Windows.Input.InputManager.ProcessStagingArea()
   bei System.Windows.Input.InputManager.ProcessInput(System.Windows.Input.InputEventArgs)
   bei System.Windows.Input.InputProviderSite.ReportInput(System.Windows.Input.InputReport)
   bei System.Windows.Interop.HwndMouseInputProvider.ReportInput(IntPtr, System.Windows.Input.InputMode, Int32, System.Windows.Input.RawMouseActions, Int32, Int32, Int32)
   bei System.Windows.Interop.HwndMouseInputProvider.FilterMessage(IntPtr, MS.Internal.Interop.WindowMessage, IntPtr, IntPtr, Boolean ByRef)
   bei System.Windows.Interop.HwndSource.InputFilterMessage(IntPtr, Int32, IntPtr, IntPtr, Boolean ByRef)
   bei MS.Win32.HwndWrapper.WndProc(IntPtr, Int32, IntPtr, IntPtr, Boolean ByRef)
   bei MS.Win32.HwndSubclass.DispatcherCallbackOperation(System.Object)
   bei System.Windows.Threading.ExceptionWrapper.InternalRealCall(System.Delegate, System.Object, Int32)
   bei MS.Internal.Threading.ExceptionFilterHelper.TryCatchWhen(System.Object, System.Delegate, System.Object, Int32, System.Delegate)
   bei System.Windows.Threading.Dispatcher.LegacyInvokeImpl(System.Windows.Threading.DispatcherPriority, System.TimeSpan, System.Delegate, System.Object, Int32)
   bei MS.Win32.HwndSubclass.SubclassWndProc(IntPtr, Int32, IntPtr, IntPtr)
   bei MS.Win32.UnsafeNativeMethods.DispatchMessage(System.Windows.Interop.MSG ByRef)
   bei System.Windows.Threading.Dispatcher.PushFrameImpl(System.Windows.Threading.DispatcherFrame)
   bei System.Windows.Threading.Dispatcher.PushFrame(System.Windows.Threading.DispatcherFrame)
   bei System.Windows.Threading.Dispatcher.Run()
   bei System.Windows.Application.RunDispatcher(System.Object)
   bei System.Windows.Application.RunInternal(System.Windows.Window)
   bei System.Windows.Application.Run(System.Windows.Window)
   bei Wasteland_Launcher.App.Main()

Error: (05/15/2015 03:54:31 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: csgo.exe, Version: 0.0.0.0, Zeitstempel: 0x54c98822
Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc0000005
Fehleroffset: 0xa2743070
ID des fehlerhaften Prozesses: 0x1ae4
Startzeit der fehlerhaften Anwendung: 0xcsgo.exe0
Pfad der fehlerhaften Anwendung: csgo.exe1
Pfad des fehlerhaften Moduls: csgo.exe2
Berichtskennung: csgo.exe3
Vollständiger Name des fehlerhaften Pakets: csgo.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: csgo.exe5

Error: (05/15/2015 09:17:53 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Fehler beim Kryptografiedienst während der Verarbeitung des "OnIdentity()"-Aufrufobjekts "System Writer".


Details:
AddCoreCsiFiles : GetNextFileMapContent() failed.

System Error:
Falscher Parameter.
.

Error: (05/15/2015 08:20:52 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: csgo.exe, Version: 0.0.0.0, Zeitstempel: 0x54c98822
Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc0000005
Fehleroffset: 0xf2673070
ID des fehlerhaften Prozesses: 0x2060
Startzeit der fehlerhaften Anwendung: 0xcsgo.exe0
Pfad der fehlerhaften Anwendung: csgo.exe1
Pfad des fehlerhaften Moduls: csgo.exe2
Berichtskennung: csgo.exe3
Vollständiger Name des fehlerhaften Pakets: csgo.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: csgo.exe5

Error: (05/14/2015 03:05:20 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: MsMpEng.exe, Version: 4.7.205.0, Zeitstempel: 0x54cb5aeb
Name des fehlerhaften Moduls: mpengine.dll, Version: 1.1.9700.0, Zeitstempel: 0x51d28fcb
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000000005615b7
ID des fehlerhaften Prozesses: 0xe28
Startzeit der fehlerhaften Anwendung: 0xMsMpEng.exe0
Pfad der fehlerhaften Anwendung: MsMpEng.exe1
Pfad des fehlerhaften Moduls: MsMpEng.exe2
Berichtskennung: MsMpEng.exe3
Vollständiger Name des fehlerhaften Pakets: MsMpEng.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: MsMpEng.exe5

Error: (05/14/2015 01:06:04 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: Wasteland Launcher.exe, Version: 0.0.2.1, Zeitstempel: 0x554909d3
Name des fehlerhaften Moduls: KERNELBASE.dll, Version: 6.3.9600.17415, Zeitstempel: 0x54504ade
Ausnahmecode: 0xe0434352
Fehleroffset: 0x00014598
ID des fehlerhaften Prozesses: 0x37c4
Startzeit der fehlerhaften Anwendung: 0xWasteland Launcher.exe0
Pfad der fehlerhaften Anwendung: Wasteland Launcher.exe1
Pfad des fehlerhaften Moduls: Wasteland Launcher.exe2
Berichtskennung: Wasteland Launcher.exe3
Vollständiger Name des fehlerhaften Pakets: Wasteland Launcher.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: Wasteland Launcher.exe5

Error: (05/14/2015 01:06:04 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Anwendung: Wasteland Launcher.exe
Frameworkversion: v4.0.30319
Beschreibung: Der Prozess wurde aufgrund eines Ausnahmefehlers beendet.
Ausnahmeinformationen: System.ComponentModel.Win32Exception
Stapel:
   bei System.Diagnostics.Process.Kill()
   bei Wasteland_Launcher.MainWindow.updateLauncher_ButtonClick(System.Object, System.Windows.RoutedEventArgs)
   bei System.Windows.RoutedEventHandlerInfo.InvokeHandler(System.Object, System.Windows.RoutedEventArgs)
   bei System.Windows.EventRoute.InvokeHandlersImpl(System.Object, System.Windows.RoutedEventArgs, Boolean)
   bei System.Windows.UIElement.RaiseEventImpl(System.Windows.DependencyObject, System.Windows.RoutedEventArgs)
   bei System.Windows.UIElement.RaiseEvent(System.Windows.RoutedEventArgs)
   bei System.Windows.Controls.Primitives.ButtonBase.OnClick()
   bei System.Windows.Controls.Button.OnClick()
   bei System.Windows.Controls.Primitives.ButtonBase.OnMouseLeftButtonUp(System.Windows.Input.MouseButtonEventArgs)
   bei System.Windows.UIElement.OnMouseLeftButtonUpThunk(System.Object, System.Windows.Input.MouseButtonEventArgs)
   bei System.Windows.Input.MouseButtonEventArgs.InvokeEventHandler(System.Delegate, System.Object)
   bei System.Windows.RoutedEventArgs.InvokeHandler(System.Delegate, System.Object)
   bei System.Windows.RoutedEventHandlerInfo.InvokeHandler(System.Object, System.Windows.RoutedEventArgs)
   bei System.Windows.EventRoute.InvokeHandlersImpl(System.Object, System.Windows.RoutedEventArgs, Boolean)
   bei System.Windows.UIElement.ReRaiseEventAs(System.Windows.DependencyObject, System.Windows.RoutedEventArgs, System.Windows.RoutedEvent)
   bei System.Windows.UIElement.OnMouseUpThunk(System.Object, System.Windows.Input.MouseButtonEventArgs)
   bei System.Windows.Input.MouseButtonEventArgs.InvokeEventHandler(System.Delegate, System.Object)
   bei System.Windows.RoutedEventArgs.InvokeHandler(System.Delegate, System.Object)
   bei System.Windows.RoutedEventHandlerInfo.InvokeHandler(System.Object, System.Windows.RoutedEventArgs)
   bei System.Windows.EventRoute.InvokeHandlersImpl(System.Object, System.Windows.RoutedEventArgs, Boolean)
   bei System.Windows.UIElement.RaiseEventImpl(System.Windows.DependencyObject, System.Windows.RoutedEventArgs)
   bei System.Windows.UIElement.RaiseTrustedEvent(System.Windows.RoutedEventArgs)
   bei System.Windows.UIElement.RaiseEvent(System.Windows.RoutedEventArgs, Boolean)
   bei System.Windows.Input.InputManager.ProcessStagingArea()
   bei System.Windows.Input.InputManager.ProcessInput(System.Windows.Input.InputEventArgs)
   bei System.Windows.Input.InputProviderSite.ReportInput(System.Windows.Input.InputReport)
   bei System.Windows.Interop.HwndMouseInputProvider.ReportInput(IntPtr, System.Windows.Input.InputMode, Int32, System.Windows.Input.RawMouseActions, Int32, Int32, Int32)
   bei System.Windows.Interop.HwndMouseInputProvider.FilterMessage(IntPtr, MS.Internal.Interop.WindowMessage, IntPtr, IntPtr, Boolean ByRef)
   bei System.Windows.Interop.HwndSource.InputFilterMessage(IntPtr, Int32, IntPtr, IntPtr, Boolean ByRef)
   bei MS.Win32.HwndWrapper.WndProc(IntPtr, Int32, IntPtr, IntPtr, Boolean ByRef)
   bei MS.Win32.HwndSubclass.DispatcherCallbackOperation(System.Object)
   bei System.Windows.Threading.ExceptionWrapper.InternalRealCall(System.Delegate, System.Object, Int32)
   bei MS.Internal.Threading.ExceptionFilterHelper.TryCatchWhen(System.Object, System.Delegate, System.Object, Int32, System.Delegate)
   bei System.Windows.Threading.Dispatcher.LegacyInvokeImpl(System.Windows.Threading.DispatcherPriority, System.TimeSpan, System.Delegate, System.Object, Int32)
   bei MS.Win32.HwndSubclass.SubclassWndProc(IntPtr, Int32, IntPtr, IntPtr)
   bei MS.Win32.UnsafeNativeMethods.DispatchMessage(System.Windows.Interop.MSG ByRef)
   bei System.Windows.Threading.Dispatcher.PushFrameImpl(System.Windows.Threading.DispatcherFrame)
   bei System.Windows.Threading.Dispatcher.PushFrame(System.Windows.Threading.DispatcherFrame)
   bei System.Windows.Threading.Dispatcher.Run()
   bei System.Windows.Application.RunDispatcher(System.Object)
   bei System.Windows.Application.RunInternal(System.Windows.Window)
   bei System.Windows.Application.Run(System.Windows.Window)
   bei Wasteland_Launcher.App.Main()

Error: (05/14/2015 11:31:08 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: nw.exe, Version: 0.0.0.0, Zeitstempel: 0x52a12888
Name des fehlerhaften Moduls: nw.exe, Version: 0.0.0.0, Zeitstempel: 0x52a12888
Ausnahmecode: 0x80000003
Fehleroffset: 0x00332a90
ID des fehlerhaften Prozesses: 0x3554
Startzeit der fehlerhaften Anwendung: 0xnw.exe0
Pfad der fehlerhaften Anwendung: nw.exe1
Pfad des fehlerhaften Moduls: nw.exe2
Berichtskennung: nw.exe3
Vollständiger Name des fehlerhaften Pakets: nw.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: nw.exe5


System errors:
=============
Error: (05/16/2015 02:11:25 PM) (Source: BugCheck) (EventID: 1001) (User: )
Description: 0x0000009f (0x0000000000000003, 0xffffe0016d7c7060, 0xffffd0003f7aa960, 0xffffe0016cbf87e0)C:\Windows\MEMORY.DMP

Error: (05/16/2015 02:11:25 PM) (Source: BugCheck) (EventID: 1005) (User: )
Description: 

Error: (05/16/2015 02:11:24 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Das System wurde zuvor am ‎16.‎05.‎2015 um 13:24:40 unerwartet heruntergefahren.

Error: (05/16/2015 02:11:15 PM) (Source: Microsoft-Windows-Kernel-Boot) (EventID: 29) (User: NT-AUTORITÄT)
Description: 32212254731145168

Error: (05/16/2015 02:09:28 PM) (Source: nvlddmkm) (EventID: 14) (User: )
Description: \Device\0000009c111f(8b4c) 85001def 18627880

Error: (05/16/2015 11:31:05 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Steam Client Service" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%1053

Error: (05/16/2015 11:31:05 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Steam Client Service erreicht.

Error: (05/16/2015 05:37:21 AM) (Source: DCOM) (EventID: 10010) (User: Jasch-PC)
Description: {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}

Error: (05/16/2015 05:36:51 AM) (Source: DCOM) (EventID: 10010) (User: Jasch-PC)
Description: {1B1F472E-3221-4826-97DB-2C2324D389AE}

Error: (05/15/2015 02:44:33 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Das System wurde zuvor am ‎15.‎05.‎2015 um 14:07:06 unerwartet heruntergefahren.


Microsoft Office Sessions:
=========================
Error: (05/16/2015 03:18:39 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: csgo.exe0.0.0.054c98822unknown0.0.0.000000000c0000005e3a2307087401d08fdace777ea3D:\SteamLibrary\steamapps\common\Counter-Strike Global Offensive\csgo.exeunknown108510cf-fbce-11e4-828b-000272ce57e0

Error: (05/15/2015 09:45:57 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Wasteland Launcher.exe0.0.2.1554909d3KERNELBASE.dll6.3.9600.1741554504adee0434352000145982b9c01d08f44d2c137c9C:\Program Files (x86)\Launcher\WS Launcher\Wasteland Launcher.exeC:\Windows\SYSTEM32\KERNELBASE.dll00dfeacc-fb3b-11e4-828a-000272ce57e0

Error: (05/15/2015 09:45:57 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Anwendung: Wasteland Launcher.exe
Frameworkversion: v4.0.30319
Beschreibung: Der Prozess wurde aufgrund eines Ausnahmefehlers beendet.
Ausnahmeinformationen: System.ComponentModel.Win32Exception
Stapel:
   bei System.Diagnostics.Process.Kill()
   bei Wasteland_Launcher.MainWindow.updateLauncher_ButtonClick(System.Object, System.Windows.RoutedEventArgs)
   bei System.Windows.RoutedEventHandlerInfo.InvokeHandler(System.Object, System.Windows.RoutedEventArgs)
   bei System.Windows.EventRoute.InvokeHandlersImpl(System.Object, System.Windows.RoutedEventArgs, Boolean)
   bei System.Windows.UIElement.RaiseEventImpl(System.Windows.DependencyObject, System.Windows.RoutedEventArgs)
   bei System.Windows.UIElement.RaiseEvent(System.Windows.RoutedEventArgs)
   bei System.Windows.Controls.Primitives.ButtonBase.OnClick()
   bei System.Windows.Controls.Button.OnClick()
   bei System.Windows.Controls.Primitives.ButtonBase.OnMouseLeftButtonUp(System.Windows.Input.MouseButtonEventArgs)
   bei System.Windows.UIElement.OnMouseLeftButtonUpThunk(System.Object, System.Windows.Input.MouseButtonEventArgs)
   bei System.Windows.Input.MouseButtonEventArgs.InvokeEventHandler(System.Delegate, System.Object)
   bei System.Windows.RoutedEventArgs.InvokeHandler(System.Delegate, System.Object)
   bei System.Windows.RoutedEventHandlerInfo.InvokeHandler(System.Object, System.Windows.RoutedEventArgs)
   bei System.Windows.EventRoute.InvokeHandlersImpl(System.Object, System.Windows.RoutedEventArgs, Boolean)
   bei System.Windows.UIElement.ReRaiseEventAs(System.Windows.DependencyObject, System.Windows.RoutedEventArgs, System.Windows.RoutedEvent)
   bei System.Windows.UIElement.OnMouseUpThunk(System.Object, System.Windows.Input.MouseButtonEventArgs)
   bei System.Windows.Input.MouseButtonEventArgs.InvokeEventHandler(System.Delegate, System.Object)
   bei System.Windows.RoutedEventArgs.InvokeHandler(System.Delegate, System.Object)
   bei System.Windows.RoutedEventHandlerInfo.InvokeHandler(System.Object, System.Windows.RoutedEventArgs)
   bei System.Windows.EventRoute.InvokeHandlersImpl(System.Object, System.Windows.RoutedEventArgs, Boolean)
   bei System.Windows.UIElement.RaiseEventImpl(System.Windows.DependencyObject, System.Windows.RoutedEventArgs)
   bei System.Windows.UIElement.RaiseTrustedEvent(System.Windows.RoutedEventArgs)
   bei System.Windows.UIElement.RaiseEvent(System.Windows.RoutedEventArgs, Boolean)
   bei System.Windows.Input.InputManager.ProcessStagingArea()
   bei System.Windows.Input.InputManager.ProcessInput(System.Windows.Input.InputEventArgs)
   bei System.Windows.Input.InputProviderSite.ReportInput(System.Windows.Input.InputReport)
   bei System.Windows.Interop.HwndMouseInputProvider.ReportInput(IntPtr, System.Windows.Input.InputMode, Int32, System.Windows.Input.RawMouseActions, Int32, Int32, Int32)
   bei System.Windows.Interop.HwndMouseInputProvider.FilterMessage(IntPtr, MS.Internal.Interop.WindowMessage, IntPtr, IntPtr, Boolean ByRef)
   bei System.Windows.Interop.HwndSource.InputFilterMessage(IntPtr, Int32, IntPtr, IntPtr, Boolean ByRef)
   bei MS.Win32.HwndWrapper.WndProc(IntPtr, Int32, IntPtr, IntPtr, Boolean ByRef)
   bei MS.Win32.HwndSubclass.DispatcherCallbackOperation(System.Object)
   bei System.Windows.Threading.ExceptionWrapper.InternalRealCall(System.Delegate, System.Object, Int32)
   bei MS.Internal.Threading.ExceptionFilterHelper.TryCatchWhen(System.Object, System.Delegate, System.Object, Int32, System.Delegate)
   bei System.Windows.Threading.Dispatcher.LegacyInvokeImpl(System.Windows.Threading.DispatcherPriority, System.TimeSpan, System.Delegate, System.Object, Int32)
   bei MS.Win32.HwndSubclass.SubclassWndProc(IntPtr, Int32, IntPtr, IntPtr)
   bei MS.Win32.UnsafeNativeMethods.DispatchMessage(System.Windows.Interop.MSG ByRef)
   bei System.Windows.Threading.Dispatcher.PushFrameImpl(System.Windows.Threading.DispatcherFrame)
   bei System.Windows.Threading.Dispatcher.PushFrame(System.Windows.Threading.DispatcherFrame)
   bei System.Windows.Threading.Dispatcher.Run()
   bei System.Windows.Application.RunDispatcher(System.Object)
   bei System.Windows.Application.RunInternal(System.Windows.Window)
   bei System.Windows.Application.Run(System.Windows.Window)
   bei Wasteland_Launcher.App.Main()

Error: (05/15/2015 03:54:31 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: csgo.exe0.0.0.054c98822unknown0.0.0.000000000c0000005a27430701ae401d08f16a67e9defD:\SteamLibrary\steamapps\common\Counter-Strike Global Offensive\csgo.exeunknowne889e537-fb09-11e4-828a-000272ce57e0

Error: (05/15/2015 09:17:53 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: 
Details:
AddCoreCsiFiles : GetNextFileMapContent() failed.

System Error:
Falscher Parameter.

Error: (05/15/2015 08:20:52 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: csgo.exe0.0.0.054c98822unknown0.0.0.000000000c0000005f2673070206001d08ed7472368ccD:\SteamLibrary\steamapps\common\Counter-Strike Global Offensive\csgo.exeunknown88f61e22-faca-11e4-8289-000272ce57e0

Error: (05/14/2015 03:05:20 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: MsMpEng.exe4.7.205.054cb5aebmpengine.dll1.1.9700.051d28fcbc000000500000000005615b7e2801d08e469e3c3e1bC:\Program Files\Windows Defender\MsMpEng.exeC:\ProgramData\Microsoft\Windows Defender\Definition Updates\Default\mpengine.dlldf0c4b36-fa39-11e4-8283-000272ce57e0

Error: (05/14/2015 01:06:04 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Wasteland Launcher.exe0.0.2.1554909d3KERNELBASE.dll6.3.9600.1741554504adee04343520001459837c401d08e3537f6a37eC:\Program Files (x86)\Launcher\WS Launcher\Wasteland Launcher.exeC:\Windows\SYSTEM32\KERNELBASE.dll360f48f7-fa29-11e4-8282-000272ce57e0

Error: (05/14/2015 01:06:04 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Anwendung: Wasteland Launcher.exe
Frameworkversion: v4.0.30319
Beschreibung: Der Prozess wurde aufgrund eines Ausnahmefehlers beendet.
Ausnahmeinformationen: System.ComponentModel.Win32Exception
Stapel:
   bei System.Diagnostics.Process.Kill()
   bei Wasteland_Launcher.MainWindow.updateLauncher_ButtonClick(System.Object, System.Windows.RoutedEventArgs)
   bei System.Windows.RoutedEventHandlerInfo.InvokeHandler(System.Object, System.Windows.RoutedEventArgs)
   bei System.Windows.EventRoute.InvokeHandlersImpl(System.Object, System.Windows.RoutedEventArgs, Boolean)
   bei System.Windows.UIElement.RaiseEventImpl(System.Windows.DependencyObject, System.Windows.RoutedEventArgs)
   bei System.Windows.UIElement.RaiseEvent(System.Windows.RoutedEventArgs)
   bei System.Windows.Controls.Primitives.ButtonBase.OnClick()
   bei System.Windows.Controls.Button.OnClick()
   bei System.Windows.Controls.Primitives.ButtonBase.OnMouseLeftButtonUp(System.Windows.Input.MouseButtonEventArgs)
   bei System.Windows.UIElement.OnMouseLeftButtonUpThunk(System.Object, System.Windows.Input.MouseButtonEventArgs)
   bei System.Windows.Input.MouseButtonEventArgs.InvokeEventHandler(System.Delegate, System.Object)
   bei System.Windows.RoutedEventArgs.InvokeHandler(System.Delegate, System.Object)
   bei System.Windows.RoutedEventHandlerInfo.InvokeHandler(System.Object, System.Windows.RoutedEventArgs)
   bei System.Windows.EventRoute.InvokeHandlersImpl(System.Object, System.Windows.RoutedEventArgs, Boolean)
   bei System.Windows.UIElement.ReRaiseEventAs(System.Windows.DependencyObject, System.Windows.RoutedEventArgs, System.Windows.RoutedEvent)
   bei System.Windows.UIElement.OnMouseUpThunk(System.Object, System.Windows.Input.MouseButtonEventArgs)
   bei System.Windows.Input.MouseButtonEventArgs.InvokeEventHandler(System.Delegate, System.Object)
   bei System.Windows.RoutedEventArgs.InvokeHandler(System.Delegate, System.Object)
   bei System.Windows.RoutedEventHandlerInfo.InvokeHandler(System.Object, System.Windows.RoutedEventArgs)
   bei System.Windows.EventRoute.InvokeHandlersImpl(System.Object, System.Windows.RoutedEventArgs, Boolean)
   bei System.Windows.UIElement.RaiseEventImpl(System.Windows.DependencyObject, System.Windows.RoutedEventArgs)
   bei System.Windows.UIElement.RaiseTrustedEvent(System.Windows.RoutedEventArgs)
   bei System.Windows.UIElement.RaiseEvent(System.Windows.RoutedEventArgs, Boolean)
   bei System.Windows.Input.InputManager.ProcessStagingArea()
   bei System.Windows.Input.InputManager.ProcessInput(System.Windows.Input.InputEventArgs)
   bei System.Windows.Input.InputProviderSite.ReportInput(System.Windows.Input.InputReport)
   bei System.Windows.Interop.HwndMouseInputProvider.ReportInput(IntPtr, System.Windows.Input.InputMode, Int32, System.Windows.Input.RawMouseActions, Int32, Int32, Int32)
   bei System.Windows.Interop.HwndMouseInputProvider.FilterMessage(IntPtr, MS.Internal.Interop.WindowMessage, IntPtr, IntPtr, Boolean ByRef)
   bei System.Windows.Interop.HwndSource.InputFilterMessage(IntPtr, Int32, IntPtr, IntPtr, Boolean ByRef)
   bei MS.Win32.HwndWrapper.WndProc(IntPtr, Int32, IntPtr, IntPtr, Boolean ByRef)
   bei MS.Win32.HwndSubclass.DispatcherCallbackOperation(System.Object)
   bei System.Windows.Threading.ExceptionWrapper.InternalRealCall(System.Delegate, System.Object, Int32)
   bei MS.Internal.Threading.ExceptionFilterHelper.TryCatchWhen(System.Object, System.Delegate, System.Object, Int32, System.Delegate)
   bei System.Windows.Threading.Dispatcher.LegacyInvokeImpl(System.Windows.Threading.DispatcherPriority, System.TimeSpan, System.Delegate, System.Object, Int32)
   bei MS.Win32.HwndSubclass.SubclassWndProc(IntPtr, Int32, IntPtr, IntPtr)
   bei MS.Win32.UnsafeNativeMethods.DispatchMessage(System.Windows.Interop.MSG ByRef)
   bei System.Windows.Threading.Dispatcher.PushFrameImpl(System.Windows.Threading.DispatcherFrame)
   bei System.Windows.Threading.Dispatcher.PushFrame(System.Windows.Threading.DispatcherFrame)
   bei System.Windows.Threading.Dispatcher.Run()
   bei System.Windows.Application.RunDispatcher(System.Object)
   bei System.Windows.Application.RunInternal(System.Windows.Window)
   bei System.Windows.Application.Run(System.Windows.Window)
   bei Wasteland_Launcher.App.Main()

Error: (05/14/2015 11:31:08 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: nw.exe0.0.0.052a12888nw.exe0.0.0.052a128888000000300332a90355401d08e28ad7fbdb7C:\Program Files (x86)\Steam\steamapps\common\Warface\live\nw.exeC:\Program Files (x86)\Steam\steamapps\common\Warface\live\nw.exef331e0d2-fa1b-11e4-8282-000272ce57e0


==================== Memory info =========================== 

Processor: Intel(R) Core(TM) i7-5960X CPU @ 3.00GHz
Percentage of memory in use: 9%
Total physical RAM: 32693.84 MB
Available physical RAM: 29506.03 MB
Total Pagefile: 65461.84 MB
Available Pagefile: 61752.7 MB
Total Virtual: 131072 MB
Available Virtual: 131071.84 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:476.42 GB) (Free:155.77 GB) NTFS
Drive d: (Data) (Fixed) (Total:3725.9 GB) (Free:2523.01 GB) NTFS
Drive f: (Dragon.Age.Inqui) (CDROM) (Total:0.38 GB) (Free:0 GB) CDFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 476.9 GB) (Disk ID: 00000000)

Partition: GPT Partition Type.

========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 3726 GB) (Disk ID: 00000000)

Partition: GPT Partition Type.

==================== End Of Log ============================
         

Alt 18.05.2015, 22:19   #12
Bootsektor
Ruhe in Frieden
† 2019
 
Strong Signal nicht zu Entfernen. - Standard

Strong Signal nicht zu Entfernen.



Hallo,

das sieht doch gut aus.

Schritt 1
Da der Scan mit Eset sehr gründlich ist, kann er unter Umständen mehrere Stunden dauern

ESET Online Scanner

  • Hier findest du eine bebilderte Anleitung zu ESET Online Scanner
  • Lade und starte Eset Online Scanner
  • Setze einen Haken bei Ja, ich bin mit den Nutzungsbedingungen einverstanden und klicke auf Starten.
  • Aktiviere die "Erkennung von eventuell unerwünschten Anwendungen" und wähle folgende Einstellungen.
  • Klicke auf Starten.
  • Die Signaturen werden heruntergeladen, der Scan beginnt automatisch.
  • Klicke am Ende des Suchlaufs auf Fertig stellen.
  • Schließe das Fenster von ESET.
  • Explorer öffnen.
  • C:\Programme\Eset\EsetOnlineScanner\log.txt (bei 64 Bit auch C:\Programme (x86)\Eset\EsetOnlineScanner\log.txt) suchen und mit Deinem Editor öffnen (bebildert).
  • Logfile hier posten.
  • Deinstallation: Systemsteuerung => Software / Programme deinstallieren => Eset Online Scanner V3 entfernen.
  • Manuell folgenden Ordner löschen und Papierkorb leeren => C:\Programme\Eset



Schritt 2
Starte noch einmal FRST.
  • Ändere keine der Voreinstellungen und drücke auf Scan.
  • Wenn der Scan abgeschlossen ist, wird ein neues Logfile FRST.txt erstellt und auf dem Desktop gespeichert.
  • Poste den Inhalt dieses Logfiles bitte hier in deinen Thread.

Alt 19.05.2015, 11:00   #13
Jasch91
 
Strong Signal nicht zu Entfernen. - Standard

Strong Signal nicht zu Entfernen.



eset
Code:
ATTFilter
ESETSmartInstaller@High as downloader log:
all ok
ESETSmartInstaller@High as downloader log:
all ok
ESETSmartInstaller@High as downloader log:
all ok
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.7623
# api_version=3.0.2
# EOSSerial=198dd997691290459ba07e6ec2c800de
# engine=23906
# end=finished
# remove_checked=false
# archives_checked=true
# unwanted_checked=true
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2015-05-19 12:34:51
# local_time=2015-05-19 02:34:51 (+0100, Mitteleuropäische Sommerzeit)
# country="Germany"
# lang=1031
# osver=6.2.9200 NT 
# compatibility_mode_1='avast! Antivirus'
# compatibility_mode=783 16777213 71 91 539563 5919169 0 0
# compatibility_mode_1=''
# compatibility_mode=5893 16776574 100 94 386860 9078083 0 0
# scanned=490604
# found=21
# cleaned=0
# scan_time=6042
sh=4C6C5897996EF0DE358E1CE5267564A86544F6C5 ft=1 fh=8d8c50f642443068 vn="Win32/BrowseFox.AZ evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\Strong Signal\Uninstaller.exe.vir"
sh=E527BBCAFEDDC287A621A2DB49A1F10502C1E3D0 ft=1 fh=4c77490216ec3f95 vn="Variante von Win32/ELEX.BH evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\ProgramData\WindowsMangerProtect\ProtectWindowsManager.exe.vir"
sh=E463ACFE9829A72AB2E222BAFADB1C3F7BD6785B ft=1 fh=c71c001116150659 vn="Variante von Win32/ELEX.CP evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\Jasch\AppData\Roaming\mystartsearch\UninstallManager.exe.vir"
sh=E8EA8EAF06673B4FEAE8A4286111B1B50FE85EF8 ft=1 fh=5b46995987d866ca vn="Variante von Win32/BrowseFox.AU evtl. unerwünschte Anwendung" ac=I fn="C:\FRST\Quarantine\C\Program Files (x86)\Common Files\0780f478-67ce-4ec3-98db-39a65f4618ce\Updater.bak"
sh=DD5C059A0FCF10C639A10009D33D59F7F045CC24 ft=1 fh=e186422e2fa86f2e vn="Variante von Win32/BrowseFox.AU evtl. unerwünschte Anwendung" ac=I fn="C:\FRST\Quarantine\C\Program Files (x86)\Common Files\0780f478-67ce-4ec3-98db-39a65f4618ce\Updater.exe"
sh=2944118B4373BCCF6E9E81CAC4EC40B5464BB760 ft=1 fh=09b6bcd827846eac vn="Variante von Win32/BrowseFox.AU evtl. unerwünschte Anwendung" ac=I fn="C:\FRST\Quarantine\C\ProgramData\0780f478-67ce-4ec3-98db-39a65f4618ce\PluginContainer.bak"
sh=380740C8CFA5F5049E31059F4D13E395A52F253C ft=1 fh=2e154830e3fc81fa vn="Variante von Win32/BrowseFox.AU evtl. unerwünschte Anwendung" ac=I fn="C:\FRST\Quarantine\C\ProgramData\0780f478-67ce-4ec3-98db-39a65f4618ce\PluginContainer.exe"
sh=862DFFF7AE8FB0FE38E0A1133B788F752F691A27 ft=1 fh=a5905a7087db11cb vn="Variante von Win32/BrowseFox.AP evtl. unerwünschte Anwendung" ac=I fn="C:\FRST\Quarantine\C\ProgramData\0780f478-67ce-4ec3-98db-39a65f4618ce\plugins\2\Plugin.exe"
sh=24DF0F5168025DEF70A0B3D85724F17BBF912EBB ft=1 fh=bfbe885de4386a65 vn="Variante von Win32/BrowseFox.AP evtl. unerwünschte Anwendung" ac=I fn="C:\FRST\Quarantine\C\ProgramData\0780f478-67ce-4ec3-98db-39a65f4618ce\plugins\2bak\Plugin.exe"
sh=4BA64935CD0ED32306FAA41B7B9ACECE2A475569 ft=1 fh=5b4d599765c4da03 vn="Variante von Win32/BrowseFox.AF evtl. unerwünschte Anwendung" ac=I fn="C:\FRST\Quarantine\C\ProgramData\0780f478-67ce-4ec3-98db-39a65f4618ce\plugins\3\Plugin.exe"
sh=4941F67619DB4F51CAE4CEFF37C655BD20292C5C ft=1 fh=bb62a6a2c8209fd4 vn="Variante von Win32/BrowseFox.AT evtl. unerwünschte Anwendung" ac=I fn="C:\FRST\Quarantine\C\ProgramData\0780f478-67ce-4ec3-98db-39a65f4618ce\plugins\4\Plugin.exe"
sh=73F939683BF22D143CD46AFA627DACC9882CCADA ft=1 fh=de6b6ab1ec4ea24d vn="Variante von Win32/BrowseFox.AT evtl. unerwünschte Anwendung" ac=I fn="C:\FRST\Quarantine\C\ProgramData\0780f478-67ce-4ec3-98db-39a65f4618ce\plugins\4bak\Plugin.exe"
sh=9EE215021FD8BA09540B103E1000EF3874CD33BD ft=1 fh=156fc33cfca6049f vn="Variante von Win32/BrowseFox.AF evtl. unerwünschte Anwendung" ac=I fn="C:\FRST\Quarantine\C\ProgramData\0780f478-67ce-4ec3-98db-39a65f4618ce\plugins\6\Plugin.exe"
sh=3F25ADA418E4991D905254E403F5C3E06E331845 ft=1 fh=9499e5901feef99d vn="Variante von Win32/BrowseFox.AF evtl. unerwünschte Anwendung" ac=I fn="C:\FRST\Quarantine\C\ProgramData\0780f478-67ce-4ec3-98db-39a65f4618ce\plugins\6bak\Plugin.exe"
sh=D182924E3AF11D74581BC2D923A3EA9C84E1E2F1 ft=1 fh=00e6c07610a0f42f vn="Variante von Win32/BrowseFox.AT evtl. unerwünschte Anwendung" ac=I fn="C:\FRST\Quarantine\C\ProgramData\0780f478-67ce-4ec3-98db-39a65f4618ce\plugins\8\Plugin.exe"
sh=2275E4B25A978FFDDD9614C5A0F92575D7356F39 ft=1 fh=939760f176ab2b95 vn="Variante von Win32/BrowseFox.AT evtl. unerwünschte Anwendung" ac=I fn="C:\FRST\Quarantine\C\ProgramData\0780f478-67ce-4ec3-98db-39a65f4618ce\plugins\8bak\Plugin.exe"
sh=1C634E0BF906A18E47F3204A570F2D7294EFF3B7 ft=0 fh=0000000000000000 vn="Variante von Win32/Packed.VMProtect.AAA Trojaner" ac=I fn="C:\Users\Jasch\Downloads\Dragon.Age.Inquisition.Up.1-2.5.Incl.DLC.and.Crack.v3-3DM.iso"
sh=E089440DA7933E190E8B95179E9EB3DD36E967F6 ft=1 fh=2b15b209fcb58d5d vn="Variante von Win32/Packed.VMProtect.AAA Trojaner" ac=I fn="D:\Games\Dragon Age Inquisition\3dmgame.dll"
sh=7D85A8A8F04013DFA9E895999CED80D31475C29E ft=1 fh=6ea06a1e9519710f vn="Variante von Win32/Packed.VMProtect.AAH Trojaner" ac=I fn="D:\Games\The Elder Scrolls V Skyrim - Legendary Edition\steam_api.dll"
sh=CC118D25905D0221EA2739DBDAC12D0AE4FE7950 ft=1 fh=e4140fd75e95bb09 vn="Variante von Win32/Packed.VMProtect.AAA Trojaner" ac=I fn="D:\Images\Dragon Age Inquisition Digital Deluxe Edition MULTi2\DA.I.DDE_M2.exe"
sh=0000000000000000000000000000000000000000 ft=- fh=0000000000000000 vn="Variante von Win32/Packed.VMProtect.AAH Trojaner" ac=I fn="D:\Images\The.Elder.Scrolls.V.Skyrim.Legendary.Edition.MULTi8-PROPHET\ppt-slm8.iso"
         
frst.txt


FRST Logfile:

FRST Logfile:
Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 16-05-2015 02
Ran by Jasch (administrator) on JASCH-PC on 19-05-2015 11:59:49
Running from C:\Users\Jasch\Downloads
Loaded Profiles: Jasch (Available profiles: Jasch)
Platform: Windows 8.1 (X64) OS Language: Deutsch (Deutschland)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Avast Software s.r.o.) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Broadcom Corporation.) C:\Windows\System32\BtwRSupportService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe
(Malwarebytes Corporation) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe
(Beepa P/L) C:\Fraps\fraps.exe
(Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe
(Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe
(Malwarebytes Corporation) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.27.5\GoogleCrashHandler.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(Malwarebytes Corporation) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbam.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
() C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(DEVGURU Co., LTD.) C:\Program Files (x86)\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.27.5\GoogleCrashHandler64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\LCore.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(Spotify Ltd) C:\Users\Jasch\AppData\Roaming\Spotify\SpotifyWebHelper.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Disc Soft Ltd) C:\Program Files (x86)\DAEMON Tools Ultra\DiscSoftBusService.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
(Samsung) C:\Program Files (x86)\Samsung\Kies\Kies.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Avast Software s.r.o.) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Razer Inc.) C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe
(Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
(Beepa P/L) C:\Fraps\fraps64.dat
() C:\ProgramData\Razer\Synapse\RzStats\RzStats.Manager.exe
(Razer, Inc.) C:\Program Files (x86)\Razer\InGameEngine\32bit\RazerIngameEngine.exe
(Razer, Inc.) C:\Users\Jasch\AppData\Local\Razer\InGameEngine\cache\RzStats.Manager\RzCefRenderProcess.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
(Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2685072 2015-05-01] (NVIDIA Corporation)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [287592 2014-05-28] (Intel Corporation)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13667032 2014-02-24] (Realtek Semiconductor)
HKLM\...\Run: [Launch LCore] => C:\Program Files\Logitech Gaming Software\LCore.exe [13318424 2015-02-26] (Logitech Inc.)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [5515496 2015-05-12] (Avast Software s.r.o.)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Razer Synapse] => C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe [590144 2015-04-22] (Razer Inc.)
HKLM-x32\...\Run: [KiesTrayAgent] => C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe [311616 2015-02-24] (Samsung Electronics Co., Ltd.)
HKLM\...\Winlogon: [Userinit] C:\Windows\system32\userinit.exe,C:\Windows\skipmetrosuite.exe,
HKU\S-1-5-21-2577149796-2635466800-2005262636-1002\...\Run: [GoogleChromeAutoLaunch_5287039B98BC68C2D6F0BFD625D75439] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [812872 2015-05-05] (Google Inc.)
HKU\S-1-5-21-2577149796-2635466800-2005262636-1002\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [2888384 2015-05-15] (Valve Corporation)
HKU\S-1-5-21-2577149796-2635466800-2005262636-1002\...\Run: [Spotify Web Helper] => C:\Users\Jasch\AppData\Roaming\Spotify\SpotifyWebHelper.exe [2020920 2015-05-01] (Spotify Ltd)
HKU\S-1-5-21-2577149796-2635466800-2005262636-1002\...\Run: [DAEMON Tools Ultra Agent] => C:\Program Files (x86)\DAEMON Tools Ultra\DTAgent.exe [3732752 2015-02-26] (Disc Soft Ltd)
HKU\S-1-5-21-2577149796-2635466800-2005262636-1002\...\Run: [Spotify] => C:\Users\Jasch\AppData\Roaming\Spotify\Spotify.exe [7168568 2015-05-01] (Spotify Ltd)
HKU\S-1-5-21-2577149796-2635466800-2005262636-1002\...\Run: [KiesPreload] => C:\Program Files (x86)\Samsung\Kies\Kies.exe [1565504 2015-02-24] (Samsung)
HKU\S-1-5-21-2577149796-2635466800-2005262636-1002\...\MountPoints2: {7cde29b3-c824-11e4-8257-d0509947abf9} - "F:\Setup.exe" 
HKU\S-1-5-21-2577149796-2635466800-2005262636-1002\...\MountPoints2: {b5ef9f1b-d1a2-11e4-825d-000272ce57e0} - "K:\setup.exe" 
HKU\S-1-5-21-2577149796-2635466800-2005262636-1002\...\MountPoints2: {b5ef9f1e-d1a2-11e4-825d-000272ce57e0} - "L:\setup.exe" 
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Avast Free Antivirus.lnk [2015-03-11]
ShortcutTarget: Avast Free Antivirus.lnk -> C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o.)
ShellIconOverlayIdentifiers: ["DropboxExt1"] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Jasch\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-03-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt2"] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Jasch\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-03-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt3"] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Jasch\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-03-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt4"] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Jasch\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-03-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt5"] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Jasch\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-03-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt6"] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Jasch\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-03-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt7"] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Jasch\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-03-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt8"] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Jasch\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-03-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2015-05-12] (Avast Software s.r.o.)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = https://www.google.com/?trackid=sp-006
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = https://www.google.com/search?trackid=sp-006&q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = 
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = 
HKU\S-1-5-21-2577149796-2635466800-2005262636-1002\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.google.com/search?trackid=sp-006&q={searchTerms}
HKU\S-1-5-21-2577149796-2635466800-2005262636-1002\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/de-de/?ocid=iehp
HKU\S-1-5-21-2577149796-2635466800-2005262636-1002\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.google.com/?trackid=sp-006
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKLM-x32 -> {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = https://www.google.com/search?trackid=sp-006&q={searchTerms}
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-21-2577149796-2635466800-2005262636-1002 -> DefaultScope {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = 
SearchScopes: HKU\S-1-5-21-2577149796-2635466800-2005262636-1002 -> OldSearch URL = https://www.google.com/search?trackid=sp-006&q={searchTerms}
SearchScopes: HKU\S-1-5-21-2577149796-2635466800-2005262636-1002 -> {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = 
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-05-12] (Avast Software s.r.o.)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-05-12] (Avast Software s.r.o.)
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1

FireFox:
========
FF ProfilePath: C:\Users\Jasch\AppData\Roaming\Mozilla\Firefox\Profiles\897yqm5q.default
FF Plugin: @videolan.org/vlc,version=2.2.0 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-16] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-16] (VideoLAN)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2014-06-24] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2014-06-24] (Intel Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-05-12] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-05-12] (NVIDIA Corporation)
FF Plugin-x32: @raidcall.en/RCplugin -> C:\Users\Jasch\AppData\Roaming\raidcall\plugins\nprcplugin.dll [2014-05-27] (Raidcall)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-18] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-18] (Google Inc.)
FF Extension: Adblock Plus - C:\Users\Jasch\AppData\Roaming\Mozilla\Firefox\Profiles\897yqm5q.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2015-05-13]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2015-03-11]
FF Extension: No Name - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} [Not Found]

Chrome: 
=======
CHR HomePage: Default -> hxxp://google.com/
CHR StartupUrls: Default -> "hxxp://google.com/"
CHR DefaultSuggestURL: Default -> {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&gs_ri={google:suggestRid}&xssi=t&q={searchTerms}&{google:inputType}{google:cursorPosition}{google:currentPageUrl}{google:pageClassification}{google:searchVersion}{google:sessionToken}{google:prefetchQuery}sugkey={google:suggestAPIKeyParameter}
CHR Profile: C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Slides) - C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-03-11]
CHR Extension: (BetterTTV) - C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\ajopnjidmegmdimjlfnijceegpefgped [2015-03-19]
CHR Extension: (Google Docs) - C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-03-11]
CHR Extension: (Google Drive) - C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-03-11]
CHR Extension: (Republic For Chrome ROG Edition) - C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\baddhngpffecbmlmdpnfldobhaaaifde [2015-05-13]
CHR Extension: (Please enter your password) - C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\bfbmjmiodbnnpllbbbfblcplfjjepjdn [2015-03-11]
CHR Extension: (YouTube) - C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-03-11]
CHR Extension: (Adblock Plus) - C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2015-03-11]
CHR Extension: (Adblock for Youtube™) - C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmedhionkhpnakcndndgjdbohmhepckk [2015-03-11]
CHR Extension: (Google Search) - C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-03-11]
CHR Extension: (Google Sheets) - C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-03-11]
CHR Extension: (Hola Better Internet) - C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\gkojfkhlekighikafcpjkiklfbnlmeio [2015-03-11]
CHR Extension: (Bookmark Manager) - C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\gmlllbghnfkpflemihljekbapjopfjik [2015-04-21]
CHR Extension: (Avast Online Security) - C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2015-03-11]
CHR Extension: (feedly) - C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\hipbfijinpcgfogaopmgehiegacbhmob [2015-03-11]
CHR Extension: (Google Keep - notes and lists) - C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\hmjkmjkepdijhoojdojkdfohbdgmmhki [2015-03-11]
CHR Extension: (Dropbox) - C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\ioekoebejdcmnlefjiknokhhafglcjdl [2015-03-11]
CHR Extension: (Google Play) - C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\komhbcfkdcgmcdoenjcjheifdiabikfi [2015-03-11]
CHR Extension: (Chrome Hotword Shared Module) - C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-03-11]
CHR Extension: (Speed Dial 3(Web)) - C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\lceefillmbhhileboicaeakgcikdocmm [2015-03-11]
CHR Extension: (Google Mail Checker) - C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\mihcahmgecmbnbcchbopgniflfhgnkff [2015-03-11]
CHR Extension: (Pocket) - C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\mjcnijlhddpbdemagnpefmlkjdagkogk [2015-03-11]
CHR Extension: (Save to Pocket) - C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\niloccemoadcdkdjlinkgdfekeahmflj [2015-05-13]
CHR Extension: (Google Wallet) - C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-03-11]
CHR Extension: (Google Chrome to Phone Extension) - C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\oadboiipflhobonjjffjbfekfjcgkhco [2015-03-11]
CHR Extension: (Gmail) - C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-03-11]
CHR Extension: (Canvas Rider) - C:\Users\Jasch\AppData\Local\Google\Chrome\User Data\Default\Extensions\poknhlcknimnnbfcombaooklofipaibk [2015-03-11]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-03-11]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [343336 2015-05-12] (Avast Software s.r.o.)
R2 BcmBtRSupport; C:\Windows\system32\BtwRSupportService.exe [2255064 2013-10-28] (Broadcom Corporation.)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [441216 2015-05-05] ()
R3 Disc Soft Ultra Bus Service; C:\Program Files (x86)\DAEMON Tools Ultra\DiscSoftBusService.exe [1378576 2015-02-26] (Disc Soft Ltd)
S3 Futuremark SystemInfo Service; C:\Program Files (x86)\Futuremark\SystemInfo\FMSISvc.exe [342240 2015-05-06] (Futuremark)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1152656 2015-05-01] (NVIDIA Corporation)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [16232 2014-05-28] (Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [887256 2014-05-13] (Intel(R) Corporation)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [131544 2014-06-24] (Intel Corporation)
S3 iumsvc; C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [174368 2014-04-09] ()
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [154584 2014-06-24] (Intel Corporation)
R2 MBAMScheduler; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe [1871160 2015-04-14] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe [1080120 2015-04-14] (Malwarebytes Corporation)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1884304 2015-05-01] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [22997648 2015-05-01] (NVIDIA Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [1931632 2015-04-21] (Electronic Arts)
R2 Razer Game Scanner Service; C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe [187072 2015-02-05] ()
R2 ss_conn_service; C:\Program Files (x86)\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe [743688 2014-10-13] (DEVGURU Co., LTD.)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366520 2015-02-04] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23792 2015-02-04] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29168 2015-05-12] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [89944 2015-05-12] (Avast Software s.r.o.)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93528 2015-05-12] (Avast Software s.r.o.)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65736 2015-05-12] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1047320 2015-05-12] (Avast Software s.r.o.)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [442264 2015-05-12] (Avast Software s.r.o.)
S2 aswStm; C:\Windows\system32\drivers\aswStm.sys [137288 2015-05-12] (Avast Software s.r.o.)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [272248 2015-05-12] ()
R3 bcbtums; C:\Windows\system32\drivers\bcbtums.sys [170712 2013-10-28] (Broadcom Corporation.)
S3 BthA2DP; C:\Windows\system32\drivers\BthA2DP.sys [132608 2015-01-30] (Microsoft Corporation)
R3 dtultrascsibus; C:\Windows\System32\drivers\dtultrascsibus.sys [30352 2015-03-12] (Disc Soft Ltd)
R3 e1dexpress; C:\Windows\system32\DRIVERS\e1d64x64.sys [457496 2014-03-14] (Intel Corporation)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-04-14] (Malwarebytes Corporation)
R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [136408 2015-05-19] (Malwarebytes Corporation)
R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [64216 2015-04-14] (Malwarebytes Corporation)
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [129312 2014-09-30] (Intel Corporation)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19600 2015-05-01] (NVIDIA Corporation)
S3 NVSWCFilter; C:\Windows\System32\drivers\nvswcfilter.sys [19616 2015-02-05] (Windows (R) Win 7 DDK provider)
S3 NVVADARM; C:\Windows\system32\drivers\nvvadarm.sys [39056 2015-05-12] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [38032 2015-02-05] (NVIDIA Corporation)
R3 rzendpt; C:\Windows\System32\drivers\rzendpt.sys [40104 2015-03-10] (Razer Inc)
R2 rzpmgrk; C:\Windows\system32\drivers\rzpmgrk.sys [37184 2015-02-05] (Razer, Inc.)
R2 rzpnk; C:\Windows\system32\drivers\rzpnk.sys [129600 2015-02-04] (Razer, Inc.)
R3 ScpVBus; C:\Windows\System32\drivers\ScpVBus.sys [39168 2013-05-19] (Scarlet.Crush Productions)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114496 2015-02-04] (Microsoft Corporation)
S3 xusb22; C:\Windows\System32\drivers\xusb22.sys [87040 2014-03-18] (Microsoft Corporation)
R4 USBHUB3; \SystemRoot\System32\drivers\UsbHub3.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-05-19 00:23 - 2015-05-19 00:45 - 00000000 ____D () C:\Users\Jasch\Documents\The Witcher 3
2015-05-18 23:23 - 2015-05-18 23:23 - 02347384 _____ (ESET) C:\Users\Jasch\Downloads\esetsmartinstaller_deu.exe
2015-05-18 22:25 - 2015-05-18 22:25 - 00002153 _____ () C:\Users\Public\Desktop\3D Vision Photo Viewer.lnk
2015-05-18 22:24 - 2015-05-12 04:34 - 00571024 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2015-05-18 22:23 - 2015-05-13 08:52 - 00195912 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys
2015-05-18 22:23 - 2015-05-13 08:52 - 00031552 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap64.dll
2015-05-18 22:23 - 2015-05-12 08:27 - 42718864 _____ () C:\Windows\system32\nvcompiler.dll
2015-05-18 22:23 - 2015-05-12 08:27 - 37741712 _____ () C:\Windows\SysWOW64\nvcompiler.dll
2015-05-18 22:23 - 2015-05-12 08:27 - 30478992 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2015-05-18 22:23 - 2015-05-12 08:27 - 22945424 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2015-05-18 22:23 - 2015-05-12 08:27 - 16145176 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2015-05-18 22:23 - 2015-05-12 08:27 - 15858728 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2015-05-18 22:23 - 2015-05-12 08:27 - 14455296 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2015-05-18 22:23 - 2015-05-12 08:27 - 13263568 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2015-05-18 22:23 - 2015-05-12 08:27 - 11790144 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2015-05-18 22:23 - 2015-05-12 08:27 - 10972304 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2015-05-18 22:23 - 2015-05-12 08:27 - 02932368 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2015-05-18 22:23 - 2015-05-12 08:27 - 02599056 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2015-05-18 22:23 - 2015-05-12 08:27 - 01898312 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6435286.dll
2015-05-18 22:23 - 2015-05-12 08:27 - 01557648 _____ (NVIDIA Corporation) C:\Windows\system32\nvmcvadgenco64.dll
2015-05-18 22:23 - 2015-05-12 08:27 - 01557648 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6435286.dll
2015-05-18 22:23 - 2015-05-12 08:27 - 01099808 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll
2015-05-18 22:23 - 2015-05-12 08:27 - 01059984 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2015-05-18 22:23 - 2015-05-12 08:27 - 01050256 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2015-05-18 22:23 - 2015-05-12 08:27 - 00982672 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2015-05-18 22:23 - 2015-05-12 08:27 - 00974480 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2015-05-18 22:23 - 2015-05-12 08:27 - 00939080 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2015-05-18 22:23 - 2015-05-12 08:27 - 00878816 _____ () C:\Windows\system32\nvmcumd.dll
2015-05-18 22:23 - 2015-05-12 08:27 - 00502896 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2015-05-18 22:23 - 2015-05-12 08:27 - 00408208 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2015-05-18 22:23 - 2015-05-12 08:27 - 00407296 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2015-05-18 22:23 - 2015-05-12 08:27 - 00364176 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2015-05-18 22:23 - 2015-05-12 08:27 - 00176064 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2015-05-18 22:23 - 2015-05-12 08:27 - 00154256 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2015-05-18 22:23 - 2015-05-12 08:27 - 00150832 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2015-05-18 22:23 - 2015-05-12 08:27 - 00128512 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2015-05-18 22:23 - 2015-05-12 08:27 - 00117576 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcaparm.dll
2015-05-18 22:23 - 2015-05-12 08:27 - 00039056 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvadarm.sys
2015-05-18 00:53 - 2015-05-18 00:53 - 00012201 _____ () C:\Users\Jasch\Downloads\mbam.txt
2015-05-18 00:40 - 2015-05-19 05:18 - 00136408 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2015-05-18 00:39 - 2015-05-18 00:39 - 00001118 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2015-05-18 00:39 - 2015-05-18 00:39 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 
2015-05-18 00:39 - 2015-05-18 00:39 - 00000000 ____D () C:\ProgramData\Malwarebytes
2015-05-18 00:39 - 2015-05-18 00:39 - 00000000 ____D () C:\Program Files (x86)\ Malwarebytes Anti-Malware 
2015-05-18 00:39 - 2015-04-14 09:38 - 00064216 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2015-05-18 00:39 - 2015-04-14 09:37 - 00107736 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2015-05-18 00:39 - 2015-04-14 09:37 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2015-05-18 00:38 - 2015-05-18 00:38 - 21546080 _____ (Malwarebytes Corporation ) C:\Users\Jasch\Downloads\mbam-setup-2.1.6.1022.exe
2015-05-16 12:42 - 2015-05-16 12:42 - 00061001 _____ () C:\Users\Jasch\Downloads\[kat.cr]gurren.lagann.1080p.hi10p.5.1.aac.dual.audio.eng.jap.torrent
2015-05-16 12:42 - 2015-05-16 12:42 - 00000000 ____D () C:\Users\Jasch\Downloads\Tengen
2015-05-16 02:16 - 2015-05-16 02:16 - 01063623 _____ () C:\Users\Jasch\Downloads\4archive-master.zip
2015-05-16 02:16 - 2015-05-16 02:16 - 00000000 ____D () C:\Users\Jasch\Downloads\4archive-master
2015-05-15 22:02 - 2015-05-15 22:02 - 00003104 _____ () C:\Windows\System32\Tasks\{A8B3F7B9-43CE-4E44-AEE0-36A6EF026900}
2015-05-15 22:02 - 2015-05-15 22:02 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2015-05-15 09:18 - 2015-05-15 09:20 - 00000000 ____D () C:\Users\Jasch\Documents\Witcher 2
2015-05-15 09:18 - 2015-05-15 09:18 - 00000000 ____D () C:\Users\Jasch\AppData\Local\The Witcher 2
2015-05-14 15:11 - 2015-04-30 22:35 - 00124112 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2015-05-14 15:11 - 2015-04-30 22:35 - 00102608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-05-14 15:06 - 2015-03-03 15:17 - 00295552 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2015-05-14 11:31 - 2015-05-14 11:31 - 00000000 ____D () C:\ProgramData\GFACE
2015-05-14 11:30 - 2015-05-14 11:30 - 00000000 ____D () C:\Users\Jasch\AppData\Local\wf-launcher
2015-05-14 00:40 - 2015-05-14 00:40 - 00001203 _____ () C:\Users\Public\Desktop\WS Launcher.lnk
2015-05-14 00:40 - 2015-05-14 00:40 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WS Launcher
2015-05-14 00:24 - 2015-05-14 00:30 - 00000000 ____D () C:\Users\Jasch\AppData\Roaming\WS Launcher
2015-05-14 00:24 - 2015-05-14 00:24 - 00000000 ____D () C:\Program Files (x86)\Launcher
2015-05-14 00:23 - 2015-05-14 00:23 - 19296256 _____ () C:\Users\Jasch\Downloads\WSLauncher_Installer.msi
2015-05-13 23:51 - 2015-05-19 00:17 - 00003138 _____ () C:\Windows\System32\Tasks\FRAPS
2015-05-13 23:50 - 2015-05-18 00:54 - 00000000 ____D () C:\Users\Jasch\Downloads\FRST-OlderVersion
2015-05-13 19:33 - 2015-05-13 19:33 - 00000000 ____D () C:\Users\Jasch\AppData\Local\Macromedia
2015-05-13 19:32 - 2015-05-13 19:32 - 00000000 ____D () C:\Users\Jasch\AppData\Local\Adobe
2015-05-13 19:21 - 2015-05-13 19:21 - 00000000 ____D () C:\Users\Jasch\AppData\Roaming\Mozilla
2015-05-13 19:21 - 2015-05-13 19:21 - 00000000 ____D () C:\Users\Jasch\AppData\Local\Mozilla
2015-05-13 19:21 - 2015-05-13 19:21 - 00000000 ____D () C:\ProgramData\Mozilla
2015-05-13 03:09 - 2015-05-01 01:05 - 00429568 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2015-05-13 03:09 - 2015-05-01 00:48 - 00358912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2015-05-13 03:09 - 2015-04-21 19:14 - 24971776 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-05-13 03:09 - 2015-04-21 18:50 - 00584192 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-05-13 03:09 - 2015-04-21 18:50 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2015-05-13 03:09 - 2015-04-21 18:49 - 02885120 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-05-13 03:09 - 2015-04-21 18:37 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2015-05-13 03:09 - 2015-04-21 18:35 - 00816640 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2015-05-13 03:09 - 2015-04-21 18:31 - 06025728 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-05-13 03:09 - 2015-04-21 18:24 - 19691008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2015-05-13 03:09 - 2015-04-21 18:13 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2015-05-13 03:09 - 2015-04-21 18:11 - 00504320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2015-05-13 03:09 - 2015-04-21 18:09 - 00341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2015-05-13 03:09 - 2015-04-21 18:08 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-05-13 03:09 - 2015-04-21 18:07 - 00145408 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2015-05-13 03:09 - 2015-04-21 18:05 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-05-13 03:09 - 2015-04-21 18:04 - 02278400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2015-05-13 03:09 - 2015-04-21 17:59 - 01032704 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2015-05-13 03:09 - 2015-04-21 17:58 - 00664576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2015-05-13 03:09 - 2015-04-21 17:52 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2015-05-13 03:09 - 2015-04-21 17:49 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-05-13 03:09 - 2015-04-21 17:49 - 00720384 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2015-05-13 03:09 - 2015-04-21 17:49 - 00374272 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2015-05-13 03:09 - 2015-04-21 17:46 - 02125824 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-05-13 03:09 - 2015-04-21 17:40 - 14401536 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-05-13 03:09 - 2015-04-21 17:38 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2015-05-13 03:09 - 2015-04-21 17:37 - 00128000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2015-05-13 03:09 - 2015-04-21 17:36 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2015-05-13 03:09 - 2015-04-21 17:32 - 00880128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2015-05-13 03:09 - 2015-04-21 17:31 - 04305920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2015-05-13 03:09 - 2015-04-21 17:28 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2015-05-13 03:09 - 2015-04-21 17:27 - 02352128 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-05-13 03:09 - 2015-04-21 17:26 - 00688640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2015-05-13 03:09 - 2015-04-21 17:26 - 00327168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2015-05-13 03:09 - 2015-04-21 17:25 - 02052608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2015-05-13 03:09 - 2015-04-21 17:17 - 12828672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2015-05-13 03:09 - 2015-04-21 17:15 - 01547264 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-05-13 03:09 - 2015-04-21 17:03 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2015-05-13 03:09 - 2015-04-21 17:02 - 01882112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2015-05-13 03:09 - 2015-04-21 16:58 - 01310208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2015-05-13 03:09 - 2015-04-21 16:56 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2015-05-13 03:09 - 2015-04-14 00:48 - 04180480 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2015-05-13 03:09 - 2015-04-10 03:00 - 01996800 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2015-05-13 03:09 - 2015-04-10 02:50 - 01387008 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2015-05-13 03:09 - 2015-04-10 02:34 - 02256896 _____ (Microsoft Corporation) C:\Windows\system32\dwmcore.dll
2015-05-13 03:09 - 2015-04-10 02:26 - 01560576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2015-05-13 03:09 - 2015-04-10 02:11 - 01943040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmcore.dll
2015-05-13 03:09 - 2015-04-09 00:55 - 00410128 _____ (Microsoft Corporation) C:\Windows\system32\services.exe
2015-05-13 03:09 - 2015-04-03 02:35 - 00445440 _____ (Microsoft Corporation) C:\Windows\system32\PhotoMetadataHandler.dll
2015-05-13 03:09 - 2015-04-03 02:14 - 00364544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PhotoMetadataHandler.dll
2015-05-13 03:09 - 2015-04-02 00:22 - 02985984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dbgeng.dll
2015-05-13 03:09 - 2015-04-02 00:20 - 04417536 _____ (Microsoft Corporation) C:\Windows\system32\dbgeng.dll
2015-05-13 03:09 - 2015-04-01 05:45 - 01491456 _____ (Microsoft Corporation) C:\Windows\system32\dbghelp.dll
2015-05-13 03:09 - 2015-04-01 04:31 - 01207296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dbghelp.dll
2015-05-13 03:09 - 2015-03-30 07:47 - 00561928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2015-05-13 03:09 - 2015-03-27 05:27 - 00445440 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2015-05-13 03:09 - 2015-03-27 04:50 - 00324096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2015-05-13 03:09 - 2015-03-27 04:48 - 01441792 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2015-05-13 03:09 - 2015-03-20 03:56 - 00080384 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ahcache.sys
2015-05-13 03:09 - 2015-03-13 06:03 - 00239424 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\sdbus.sys
2015-05-13 03:09 - 2015-03-13 06:03 - 00154432 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\dumpsd.sys
2015-05-13 03:09 - 2015-03-13 04:02 - 00316416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\udfs.sys
2015-05-13 03:09 - 2015-03-13 03:11 - 02162176 _____ (Microsoft Corporation) C:\Windows\system32\SRH.dll
2015-05-13 03:09 - 2015-03-13 02:39 - 01812992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SRH.dll
2015-05-13 03:09 - 2015-03-13 02:29 - 00410017 _____ () C:\Windows\system32\ApnDatabase.xml
2015-05-13 03:09 - 2015-03-11 03:49 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\sdbinst.exe
2015-05-13 03:09 - 2015-03-11 03:09 - 00021504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sdbinst.exe
2015-05-13 03:09 - 2015-03-06 05:08 - 02067968 _____ (Microsoft Corporation) C:\Windows\system32\wpdshext.dll
2015-05-13 03:09 - 2015-03-06 04:47 - 01696256 _____ (Microsoft Corporation) C:\Windows\system32\wevtsvc.dll
2015-05-13 03:09 - 2015-03-06 04:43 - 01969664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wpdshext.dll
2015-05-13 03:09 - 2015-03-04 03:32 - 00172544 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Input.Inking.dll
2015-05-13 03:09 - 2015-03-04 03:12 - 00141824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Input.Inking.dll
2015-05-13 03:09 - 2015-02-18 01:19 - 00186368 _____ (Microsoft Corporation) C:\Windows\system32\dpapisrv.dll
2015-05-13 03:09 - 2015-01-30 02:53 - 02819584 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers.dll
2015-05-13 01:29 - 2015-05-18 00:55 - 00081394 _____ () C:\Users\Jasch\Downloads\Addition.txt
2015-05-13 01:28 - 2015-05-19 11:59 - 00025348 _____ () C:\Users\Jasch\Downloads\FRST.txt
2015-05-12 21:17 - 2015-05-19 11:59 - 00000000 ____D () C:\FRST
2015-05-12 21:17 - 2015-05-18 00:54 - 02107392 _____ (Farbar) C:\Users\Jasch\Downloads\FRST64.exe
2015-05-12 20:45 - 2015-05-12 20:45 - 00000887 _____ () C:\Users\Public\Desktop\VLC media player.lnk
2015-05-12 20:41 - 2015-05-12 20:41 - 00364472 _____ (Avast Software s.r.o.) C:\Windows\system32\aswBoot.exe
2015-05-12 20:41 - 2015-05-12 20:41 - 00043112 _____ (Avast Software s.r.o.) C:\Windows\avastSS.scr
2015-05-12 20:35 - 2015-05-12 20:35 - 02623656 _____ (VS Revo Group Ltd.) C:\Users\Jasch\Downloads\revosetup95.exe
2015-05-12 20:35 - 2015-05-12 20:35 - 00000000 ____D () C:\Program Files (x86)\VS Revo Group
2015-05-12 20:28 - 2015-05-13 01:24 - 00000000 ____D () C:\AdwCleaner
2015-05-12 20:28 - 2015-05-12 20:28 - 02209792 _____ () C:\Users\Jasch\Downloads\adwcleaner_4.204.exe
2015-05-12 14:51 - 2015-05-12 14:52 - 364569139 _____ () C:\Users\Jasch\Downloads\BaNkS-dynamic-gapps-L-5-9-15.zip
2015-05-12 14:51 - 2015-05-12 14:51 - 278663454 _____ () C:\Users\Jasch\Downloads\BlissPop-v3.2-hlte-UNOFFICIAL-20150509-1328.zip
2015-05-11 01:13 - 2015-05-11 01:16 - 00000000 ____D () C:\Users\Jasch\AppData\Roaming\PixelPiracy
2015-05-11 00:30 - 2015-05-11 00:30 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\InputMapper
2015-05-10 23:32 - 2015-05-10 23:33 - 00000000 ____D () C:\Users\Jasch\AppData\Roaming\Tera_Awesomium
2015-05-10 22:31 - 2015-05-10 22:31 - 00001718 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rainmeter.lnk
2015-05-10 22:31 - 2015-05-10 22:31 - 00000000 ____D () C:\Users\Jasch\Documents\Rainmeter
2015-05-10 22:31 - 2015-05-10 22:31 - 00000000 ____D () C:\Users\Jasch\AppData\Roaming\Rainmeter
2015-05-10 22:31 - 2015-05-10 22:31 - 00000000 ____D () C:\Program Files\Rainmeter
2015-05-10 00:41 - 2015-05-10 01:39 - 265356980 _____ () C:\Users\Jasch\Downloads\Black Desert.rar
2015-05-09 00:31 - 2015-05-09 00:32 - 00000000 ____D () C:\Users\Jasch\Documents\3DMark
2015-05-09 00:31 - 2015-05-09 00:31 - 00000022 _____ () C:\Windows\GPU-Z.INI
2015-05-09 00:31 - 2015-05-09 00:31 - 00000000 ____D () C:\Users\Jasch\AppData\Local\Futuremark
2015-05-09 00:31 - 2015-05-09 00:31 - 00000000 ____D () C:\Temp
2015-05-09 00:30 - 2015-05-09 00:30 - 00000000 ____D () C:\Program Files (x86)\Futuremark
2015-05-07 21:11 - 2015-05-10 23:30 - 00000000 ____D () C:\ProgramData\boost_interprocess
2015-05-07 21:11 - 2015-05-07 21:11 - 00000000 ____D () C:\Users\Jasch\AppData\Local\TERA
2015-05-05 17:05 - 2015-05-05 17:05 - 00000000 ____D () C:\Users\Jasch\Downloads\PUBattleRoyale.0.6.0
2015-05-05 04:37 - 2015-05-05 05:10 - 00000000 ____D () C:\Users\Jasch\Downloads\The.Witcher.Enhanced.Edition.v1.5.0.1304.Plus.6.Trainer
2015-05-05 04:36 - 2015-05-05 04:36 - 00000000 ____D () C:\Users\Jasch\Downloads\ppt-wedc
2015-05-05 04:17 - 2015-05-05 04:17 - 00000000 ____D () C:\Users\Jasch\Downloads\witcheywoman1303-ch (2)
2015-05-05 02:49 - 2015-05-05 02:49 - 00000000 ____D () C:\Users\Jasch\Downloads\witcher_ee_v1.5_trn+8
2015-05-04 22:27 - 2015-05-04 22:27 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cheat Engine 6.4
2015-05-01 13:27 - 2015-05-16 14:11 - 1063731379 _____ () C:\Windows\MEMORY.DMP
2015-05-01 13:27 - 2015-05-16 14:11 - 00000000 ____D () C:\Windows\Minidump
2015-05-01 13:27 - 2015-05-01 13:27 - 02164672 _____ () C:\Windows\Minidump\050115-8406-01.dmp
2015-04-28 15:55 - 2015-04-28 15:56 - 00000000 ____D () C:\Users\Jasch\Downloads\[Wii]Mario_Party_8[PAL][MULTI5][ESPALWii.com]
2015-04-28 15:51 - 2015-04-28 15:52 - 00000000 ____D () C:\Users\Jasch\Documents\Dolphin Emulator
2015-04-28 15:51 - 2015-04-28 15:51 - 00000000 ____D () C:\Users\Jasch\Downloads\Skies of Arcadia Legends (Europe) (En,Fr,De,Es)
2015-04-28 15:48 - 2015-04-28 15:50 - 946765370 _____ () C:\Users\Jasch\Downloads\Skies of Arcadia Legends (Europe) (En,Fr,De,Es).7z
2015-04-28 15:42 - 2015-04-28 15:55 - 228963446 _____ () C:\Users\Jasch\Downloads\[Wii]Mario_Party_8[PAL][MULTI5][ESPALWii.com].rar
2015-04-21 07:22 - 2015-04-21 07:22 - 00000000 ____D () C:\Users\Jasch\AppData\Local\Maca134
2015-04-21 06:16 - 2015-04-21 06:18 - 00000000 ____D () C:\Program Files (x86)\Origin Games
2015-04-21 06:15 - 2015-04-21 07:39 - 00000000 ____D () C:\Users\Jasch\AppData\Roaming\Origin
2015-04-21 06:15 - 2015-04-21 06:16 - 00000000 ____D () C:\Users\Jasch\AppData\Local\Origin
2015-04-21 06:15 - 2015-04-21 06:15 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin
2015-04-21 06:15 - 2015-04-21 06:15 - 00000000 ____D () C:\Program Files (x86)\Origin
2015-04-21 05:56 - 2015-05-07 00:15 - 00000000 ____D () C:\Program Files (x86)\A3Launcher
2015-04-21 05:56 - 2015-04-21 05:56 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\A3Launcher

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-05-19 11:25 - 2015-03-11 15:14 - 00001136 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-05-19 11:02 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\system32\sru
2015-05-19 01:00 - 2015-03-11 15:00 - 01223576 _____ () C:\Windows\WindowsUpdate.log
2015-05-19 00:58 - 2015-03-11 15:16 - 00003600 _____ () C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2577149796-2635466800-2005262636-1002
2015-05-19 00:23 - 2015-03-11 15:25 - 00000000 ____D () C:\Program Files (x86)\Steam
2015-05-19 00:23 - 2015-03-10 11:48 - 01780340 _____ () C:\Windows\system32\PerfStringBackup.INI
2015-05-19 00:23 - 2013-08-23 01:24 - 00765378 _____ () C:\Windows\system32\perfh007.dat
2015-05-19 00:23 - 2013-08-23 01:24 - 00159696 _____ () C:\Windows\system32\perfc007.dat
2015-05-19 00:19 - 2015-03-10 12:11 - 00006469 _____ () C:\Windows\SysWOW64\Gms.log
2015-05-19 00:17 - 2015-03-23 23:45 - 00000000 ____D () C:\Fraps
2015-05-19 00:17 - 2015-03-12 01:22 - 00000000 ____D () C:\Users\Jasch\AppData\Local\Spotify
2015-05-19 00:17 - 2015-03-12 01:21 - 00000000 ____D () C:\Users\Jasch\AppData\Roaming\Spotify
2015-05-19 00:17 - 2015-03-11 15:14 - 00001132 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-05-19 00:16 - 2015-03-10 11:55 - 00000000 ____D () C:\ProgramData\NVIDIA
2015-05-19 00:16 - 2013-08-22 16:46 - 00062434 _____ () C:\Windows\setupact.log
2015-05-19 00:16 - 2013-08-22 16:45 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2015-05-19 00:01 - 2015-03-11 15:10 - 00000000 ____D () C:\Users\Jasch
2015-05-19 00:01 - 2015-03-10 11:40 - 00038930 _____ () C:\Windows\PFRO.log
2015-05-18 22:32 - 2015-03-11 15:10 - 00000000 ____D () C:\Users\Jasch\AppData\Local\NVIDIA
2015-05-18 22:29 - 2015-03-10 11:55 - 00000000 ____D () C:\ProgramData\NVIDIA Corporation
2015-05-18 22:25 - 2015-03-10 12:13 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2015-05-18 21:20 - 2015-03-11 15:14 - 00004108 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2015-05-18 21:20 - 2015-03-11 15:14 - 00003872 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2015-05-16 22:14 - 2015-03-11 20:57 - 00000000 ____D () C:\Users\Jasch\AppData\Local\JDownloader v2.0
2015-05-16 14:15 - 2015-03-15 00:10 - 00000000 ____D () C:\Users\Jasch\AppData\Roaming\vlc
2015-05-16 13:51 - 2015-03-15 00:12 - 00000000 ____D () C:\Users\Jasch\AppData\Roaming\uTorrent
2015-05-16 05:52 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\rescache
2015-05-15 22:38 - 2015-03-13 21:43 - 00000000 ____D () C:\Users\Jasch\AppData\Local\Arma 3
2015-05-15 22:02 - 2015-04-03 23:24 - 00000000 ____D () C:\Users\Jasch\Documents\Survarium-Steam
2015-05-15 22:01 - 2015-03-11 15:22 - 00000000 ____D () C:\Program Files (x86)\StartIsBack
2015-05-15 09:18 - 2015-03-11 18:40 - 00284890 _____ () C:\Windows\DirectX.log
2015-05-14 20:43 - 2013-08-22 17:20 - 00000000 ____D () C:\Windows\CbsTemp
2015-05-14 15:14 - 2013-08-22 17:36 - 00000000 ___RD () C:\Windows\ImmersiveControlPanel
2015-05-14 15:14 - 2013-08-22 16:44 - 00338272 _____ () C:\Windows\system32\FNTCACHE.DAT
2015-05-14 15:14 - 2013-08-22 15:36 - 00000000 ____D () C:\Windows\system32\AdvancedInstallers
2015-05-14 15:11 - 2015-03-10 12:16 - 00000000 ____D () C:\Windows\system32\MRT
2015-05-14 15:07 - 2013-08-22 15:25 - 00262144 ___SH () C:\Windows\system32\config\ELAM
2015-05-14 15:06 - 2013-08-23 01:26 - 00000000 ____D () C:\Program Files\Windows Journal
2015-05-13 08:52 - 2015-02-20 02:18 - 01558848 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdagenco6420103.dll
2015-05-12 20:41 - 2015-03-11 15:22 - 01047320 _____ (Avast Software s.r.o.) C:\Windows\system32\Drivers\aswSnx.sys
2015-05-12 20:41 - 2015-03-11 15:22 - 00442264 _____ (Avast Software s.r.o.) C:\Windows\system32\Drivers\aswSP.sys
2015-05-12 20:41 - 2015-03-11 15:22 - 00272248 _____ () C:\Windows\system32\Drivers\aswVmm.sys
2015-05-12 20:41 - 2015-03-11 15:22 - 00137288 _____ (Avast Software s.r.o.) C:\Windows\system32\Drivers\aswStm.sys
2015-05-12 20:41 - 2015-03-11 15:22 - 00093528 _____ (Avast Software s.r.o.) C:\Windows\system32\Drivers\aswRdr2.sys
2015-05-12 20:41 - 2015-03-11 15:22 - 00089944 _____ (Avast Software s.r.o.) C:\Windows\system32\Drivers\aswMonFlt.sys
2015-05-12 20:41 - 2015-03-11 15:22 - 00065736 _____ () C:\Windows\system32\Drivers\aswRvrt.sys
2015-05-12 20:41 - 2015-03-11 15:22 - 00029168 _____ () C:\Windows\system32\Drivers\aswHwid.sys
2015-05-12 20:41 - 2015-03-11 15:22 - 00003924 _____ () C:\Windows\System32\Tasks\avast! Emergency Update
2015-05-12 20:29 - 2013-08-22 15:25 - 00262144 ___SH () C:\Windows\system32\config\BBI
2015-05-12 20:07 - 2015-03-11 15:42 - 00000000 ____D () C:\Users\Jasch\AppData\Local\Battle.net
2015-05-12 14:57 - 2015-03-11 15:22 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
2015-05-12 08:27 - 2015-03-10 11:55 - 00112784 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2015-05-12 08:27 - 2015-03-10 11:55 - 00105288 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2015-05-12 08:27 - 2015-02-20 02:18 - 17540416 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2015-05-12 08:27 - 2015-02-20 02:18 - 15048816 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2015-05-12 08:27 - 2015-02-20 02:18 - 12849056 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2015-05-12 08:27 - 2015-02-20 02:18 - 03363224 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2015-05-12 08:27 - 2015-02-20 02:18 - 02971776 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2015-05-12 08:27 - 2015-02-20 02:18 - 00031710 _____ () C:\Windows\system32\nvinfo.pb
2015-05-12 05:30 - 2015-03-10 11:55 - 06872392 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2015-05-12 05:30 - 2015-03-10 11:55 - 03490448 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2015-05-12 05:30 - 2015-03-10 11:55 - 02558608 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2015-05-12 05:30 - 2015-03-10 11:55 - 00937288 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
2015-05-12 05:30 - 2015-03-10 11:55 - 00385352 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2015-05-12 05:30 - 2015-03-10 11:55 - 00062608 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2015-05-11 19:01 - 2015-03-10 11:55 - 04391871 _____ () C:\Windows\system32\nvcoproc.bin
2015-05-11 00:30 - 2015-03-16 22:25 - 00000000 ____D () C:\Users\Jasch\AppData\Roaming\InputMapper
2015-05-11 00:29 - 2015-03-16 22:25 - 00000000 ____D () C:\Users\Jasch\AppData\Roaming\DSDCS
2015-05-11 00:27 - 2015-04-14 06:49 - 00000080 _____ () C:\Users\Jasch\AppData\Local剜捯獫慴⁲慇敭屳呇⁁屖湥楴汴浥湥⹴湩潦
2015-05-07 00:12 - 2015-03-13 21:42 - 00000000 ____D () C:\Users\Jasch\AppData\Local\Arma 3 Launcher
2015-05-05 19:59 - 2013-08-22 17:38 - 00792568 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-05-05 19:59 - 2013-08-22 17:38 - 00178168 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-05-05 05:33 - 2015-03-17 00:45 - 00000000 ____D () C:\Users\Jasch\AppData\Local\The Witcher
2015-05-01 18:51 - 2015-03-10 12:13 - 01316184 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll
2015-05-01 18:51 - 2015-03-10 12:13 - 01316000 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspbridge.dll
2015-05-01 18:50 - 2015-03-10 12:13 - 01756424 _____ (NVIDIA Corporation) C:\Windows\system32\nvspbridge64.dll
2015-05-01 18:50 - 2015-03-10 12:13 - 01570672 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll
2015-04-30 10:07 - 2015-03-10 12:16 - 140425016 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2015-04-27 21:09 - 2015-03-10 11:56 - 00152366 _____ () C:\Windows\DPINST.LOG
2015-04-27 02:06 - 2015-03-24 00:08 - 00000000 ____D () C:\ProgramData\Origin
2015-04-21 06:15 - 2015-03-24 00:09 - 00000000 ____D () C:\ProgramData\Electronic Arts
2015-04-19 03:30 - 2015-03-11 20:13 - 00000000 ____D () C:\Users\Jasch\AppData\Roaming\TS3Client

==================== Files in the root of some directories =======

2015-03-16 22:17 - 2015-03-16 22:31 - 0001439 _____ () C:\Users\Jasch\AppData\Roaming\SpeedRunnersLog.txt

Some content of TEMP:
====================
C:\Users\Jasch\AppData\Local\Temp\nvSCPAPI.dll
C:\Users\Jasch\AppData\Local\Temp\nvSCPAPI64.dll
C:\Users\Jasch\AppData\Local\Temp\nvStereoApiI.dll
C:\Users\Jasch\AppData\Local\Temp\nvStInst.exe


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-05-12 03:05

==================== End Of Log ============================
         
--- --- ---

--- --- ---

Alt 21.05.2015, 22:09   #14
Bootsektor
Ruhe in Frieden
† 2019
 
Strong Signal nicht zu Entfernen. - Standard

Strong Signal nicht zu Entfernen.



Hallo,

Zitat:
"C:\Users\Jasch\Downloads\Dragon.Age.Inquisition.Up.1-2.5.Incl.DLC.and.Crack.v3-3DM.iso"
Was ist das?

Alt 21.05.2015, 22:14   #15
Jasch91
 
Strong Signal nicht zu Entfernen. - Standard

Strong Signal nicht zu Entfernen.



Eine Mod für Dragon Age Inq. War noch in Daemon Tools eingebunden.

Antwort

Themen zu Strong Signal nicht zu Entfernen.
adwcleaner, avast, entferne, entfernen, funktionier, funktioniert, großer, neues, neueste, nichts, nichts funktioniert, not, signal, stand, strong, strong signal, treibt, versuch, versucht, werbung




Ähnliche Themen: Strong Signal nicht zu Entfernen.


  1. monitor kein signal
    Netzwerk und Hardware - 06.04.2017 (19)
  2. Strong Signal lässt sich nicht entfernen
    Log-Analyse und Auswertung - 14.09.2015 (17)
  3. Strong Signal läst sich einfach nicht entfernen
    Plagegeister aller Art und deren Bekämpfung - 11.08.2015 (10)
  4. All of your files were protected by a strong encryption with RSA-2048 using CryptoWall 3.0. -> *.xxx
    Log-Analyse und Auswertung - 23.07.2015 (9)
  5. Windows 8.1: Startseite im Browser wird auf Yahoo umgeleitet, Webseiten blenden Werbung von Strong Signal ein
    Log-Analyse und Auswertung - 08.06.2015 (9)
  6. Entfernen von Signal Strong?
    Plagegeister aller Art und deren Bekämpfung - 17.02.2015 (11)
  7. Bildschirm bekommt kein Signal?
    Netzwerk und Hardware - 07.07.2014 (2)
  8. Neue Grafikkarte kein Signal
    Netzwerk und Hardware - 29.01.2014 (21)
  9. No Signal während Grafikkarteninstallation
    Alles rund um Windows - 02.04.2012 (4)
  10. Strong Malware Defender entfernen
    Anleitungen, FAQs & Links - 21.02.2012 (2)
  11. Lustige Farben (Grafikfehler), Bildschirm tot (kein Signal), Windows tot (startet nicht mehr)
    Alles rund um Windows - 11.07.2011 (2)
  12. bildschirm no signal detected pc piepst-.-
    Netzwerk und Hardware - 02.02.2011 (3)
  13. Kein Signal LCD-Laptop
    Netzwerk und Hardware - 25.10.2009 (0)
  14. Pc bootet nicht mehr '' No input signal ''
    Alles rund um Windows - 09.06.2009 (1)
  15. Absturz - kein Signal WIN XP SP3
    Netzwerk und Hardware - 30.03.2009 (7)
  16. Kein signal
    Netzwerk und Hardware - 14.02.2009 (14)
  17. Kein Internet trotz Signal
    Antiviren-, Firewall- und andere Schutzprogramme - 20.06.2005 (2)

Zum Thema Strong Signal nicht zu Entfernen. - Hallo Tro-Community, ich komme ich großer Not, seit einem Tag hat sich wohl irgendwo "Strong Signal" eingeschlichen und treibt mich mit Werbung in den Wahnsinn. Mein Avast ist auf dem - Strong Signal nicht zu Entfernen....
Archiv
Du betrachtest: Strong Signal nicht zu Entfernen. auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.