Windows 8.1 Microsoft Mouse and Keyboard Center Problem / Virus? Also ich habe nun den Account meiner Eltern benutzt da er Administationsrechte hat, die probleme sind aber auch auf diesem vorhanden.
FRST Logfile:
Code:
Alles auswählen Aufklappen ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:20-07-2015
Ran by Michel´s Daddelkiste (administrator) on MICHEL on 23-07-2015 14:37:31
Running from C:\Users\Michel´s Daddelkiste\Downloads
Loaded Profiles: Michel´s Daddelkiste (Available Profiles: Michel´s Daddelkiste & Michel)
Platform: Windows 8.1 Pro (X64) OS Language: Deutsch (Deutschland)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(AMD) C:\Windows\System32\atiesrxx.exe
(Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
(Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Security Protection\PSANHost.exe
(Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Devices Agent\AgentSvc.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAService.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Pixart Imaging Inc) C:\Windows\System32\TiltWheelMouse.exe
(Microsoft Corporation) C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe
(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
(Electronic Arts) C:\Program Files (x86)\Origin\Origin.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Overwolf LTD) C:\Program Files (x86)\Overwolf\Overwolf.exe
(Overwolf LTD) C:\Program Files (x86)\Common Files\Overwolf\0.87.22.0\OverwolfHelper.exe
(Overwolf LTD) C:\Program Files (x86)\Common Files\Overwolf\0.87.22.0\OverwolfHelper64.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
(Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAMain.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Valve Corporation) D:\Steam\Steam.exe
(Valve Corporation) D:\Steam\bin\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Valve Corporation) D:\Steam\bin\steamwebhelper.exe
(Overwolf LTD) C:\Program Files (x86)\Overwolf\0.87.22.0\OverwolfBrowser.exe
(Overwolf LTD) C:\Program Files (x86)\Overwolf\0.87.22.0\OverwolfBrowser.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(TeamSpeak Systems GmbH) C:\Users\Michel´s Daddelkiste\AppData\Local\TeamSpeak 3 Client\ts3client_win64.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [MouseDriver] => C:\Windows\system32\TiltWheelMouse.exe [241152 2013-04-09] (Pixart Imaging Inc)
HKLM\...\Run: [XboxStat] => C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe [825184 2009-09-30] (Microsoft Corporation)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [766688 2014-07-04] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2014-05-08] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [224128 2014-06-16] (Oracle Corporation)
HKLM-x32\...\Run: [iTunesHelper] => C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2014-08-01] (Apple Inc.)
HKLM-x32\...\Run: [PSUAMain] => C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAMain.exe [37624 2014-07-24] (Panda Security, S.L.)
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [3978600 2015-03-30] (LogMeIn Inc.)
HKU\S-1-5-21-345954769-3013140688-2023865255-1001\...\Run: [EADM] => C:\Program Files (x86)\Origin\Origin.exe [3632112 2015-07-20] (Electronic Arts)
HKU\S-1-5-21-345954769-3013140688-2023865255-1001\...\Run: [Overwolf] => C:\Program Files (x86)\Overwolf\Overwolf.exe [41200 2015-07-09] (Overwolf LTD)
HKU\S-1-5-21-345954769-3013140688-2023865255-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [31280256 2015-04-17] ()
HKU\S-1-5-21-345954769-3013140688-2023865255-1001\...\Run: [Gyazo] => [X]
HKU\S-1-5-21-345954769-3013140688-2023865255-1001\...\Run: [Steam] => D:\Steam\steam.exe [2895552 2015-07-21] (Valve Corporation)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
HKU\S-1-5-21-345954769-3013140688-2023865255-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/de-de/?ocid=iehp
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre8\bin\ssv.dll [2014-08-18] (Oracle Corporation)
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-05-01] (Microsoft Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2010-12-21] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre8\bin\jp2ssv.dll [2014-08-18] (Oracle Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2011-02-12] (Microsoft Corporation)
BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-05-01] (Microsoft Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2010-12-21] (Microsoft Corporation)
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-05-01] (Microsoft Corporation)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-05-01] (Microsoft Corporation)
Tcpip\..\Interfaces\{40D9973B-D9BA-4D7F-81FC-437D9B8814FF}: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{47F13971-5B56-44E3-970D-BB007E42DE19}: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{589FE36D-803B-44F7-B87A-DE05F6E2BC69}: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{A3ABE923-81B6-4C68-8271-89DC5EB0422C}: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{EE2ABEC4-C104-4B80-AE1F-6ADCEE1FD3F9}: [DhcpNameServer] 192.168.2.1
FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_17_0_0_169.dll [2015-04-14] ()
FF Plugin: @esn/npbattlelog,version=2.5.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.5.0\npbattlelogx64.dll No File
FF Plugin: @esn/npbattlelog,version=2.5.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.5.1\npbattlelogx64.dll No File
FF Plugin: @esn/npbattlelog,version=2.6.2 -> C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelogx64.dll No File
FF Plugin: @esn/npbattlelog,version=2.7.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.7.0\npbattlelogx64.dll No File
FF Plugin: @esn/npbattlelog,version=2.7.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.7.1\npbattlelogx64.dll [2015-04-30] (EA Digital Illusions CE AB)
FF Plugin: @java.com/DTPlugin,version=11.11.2 -> C:\Program Files\Java\jre8\bin\dtplugin\npDeployJava1.dll [2014-08-18] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.11.2 -> C:\Program Files\Java\jre8\bin\plugin2\npjp2.dll [2014-08-18] (Oracle Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_17_0_0_169.dll [2015-04-14] ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2014-02-21] ()
FF Plugin-x32: @esn/npbattlelog,version=2.5.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.5.0\npbattlelog.dll No File
FF Plugin-x32: @esn/npbattlelog,version=2.5.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.5.1\npbattlelog.dll No File
FF Plugin-x32: @esn/npbattlelog,version=2.6.2 -> C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelog.dll No File
FF Plugin-x32: @esn/npbattlelog,version=2.7.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.7.0\npbattlelog.dll No File
FF Plugin-x32: @esn/npbattlelog,version=2.7.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.7.1\npbattlelog.dll [2015-04-30] (EA Digital Illusions CE AB)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-07-16] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-07-16] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2014-08-05] (Adobe Systems Inc.)
Chrome:
=======
CHR Profile: C:\Users\Michel´s Daddelkiste\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Docs) - C:\Users\Michel´s Daddelkiste\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-08-18]
CHR Extension: (Google Drive) - C:\Users\Michel´s Daddelkiste\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-08-18]
CHR Extension: (YouTube) - C:\Users\Michel´s Daddelkiste\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-08-18]
CHR Extension: (Adblock Plus) - C:\Users\Michel´s Daddelkiste\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2014-08-18]
CHR Extension: (Google Search) - C:\Users\Michel´s Daddelkiste\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-08-18]
CHR Extension: (Chrome Hotword Shared Module) - C:\Users\Michel´s Daddelkiste\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-07-23]
CHR Extension: (Skype Click to Call) - C:\Users\Michel´s Daddelkiste\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2015-07-23]
CHR Extension: (Google Wallet) - C:\Users\Michel´s Daddelkiste\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-08-18]
CHR Extension: (Gmail) - C:\Users\Michel´s Daddelkiste\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-08-18]
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - https://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2015-05-01]
==================== Services (Whitelisted) =================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [344064 2014-07-04] (Advanced Micro Devices, Inc.) [File not signed]
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [1060352 2015-06-18] ()
S3 BthHFSrv; C:\Windows\System32\BthHFSrv.dll [324608 2014-10-29] (Microsoft Corporation)
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1394816 2015-05-01] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1772672 2015-05-01] (Microsoft Corporation)
S3 EasyAntiCheat; C:\Windows\SysWOW64\EasyAntiCheat.exe [237864 2015-06-20] (EasyAntiCheat Ltd)
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed]
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [417552 2015-03-30] (LogMeIn, Inc.)
R2 NanoServiceMain; C:\Program Files (x86)\Panda Security\Panda Security Protection\PSANHost.exe [141560 2014-07-24] (Panda Security, S.L.)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2004488 2015-07-20] (Electronic Arts)
S3 OverwolfUpdater; C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [1001200 2015-07-09] (Overwolf LTD)
R2 PandaAgent; C:\Program Files (x86)\Panda Security\Panda Devices Agent\AgentSvc.exe [61688 2014-07-23] (Panda Security, S.L.)
R2 PnkBstrA; C:\Windows\system32\PnkBstrA.exe [76152 2015-02-24] ()
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76152 2015-04-11] ()
R2 PSUAService; C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAService.exe [38136 2014-07-24] (Panda Security, S.L.)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366520 2015-02-04] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23792 2015-02-04] (Microsoft Corporation)
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AODDriver4.2.0; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [59648 2013-09-20] (Advanced Micro Devices)
R3 Hamachi; C:\Windows\system32\DRIVERS\Hamdrv.sys [44296 2015-03-30] (LogMeIn Inc.)
R1 NNSALPC; C:\Windows\System32\DRIVERS\NNSAlpc.sys [96800 2014-06-04] (Panda Security, S.L.)
R1 NNSHTTP; C:\Windows\System32\DRIVERS\NNSHttp.sys [162336 2014-06-18] (Panda Security, S.L.)
R1 NNSHTTPS; C:\Windows\System32\DRIVERS\NNSHttps.sys [112160 2014-06-04] (Panda Security, S.L.)
R1 NNSIDS; C:\Windows\System32\DRIVERS\NNSIds.sys [115232 2014-06-04] (Panda Security, S.L.)
R1 NNSNAHSL; C:\Windows\system32\DRIVERS\NNSNAHSL.sys [47360 2014-01-16] (Panda Security, S.L.)
R1 NNSPICC; C:\Windows\System32\DRIVERS\NNSPicc.sys [95776 2014-06-04] (Panda Security, S.L.)
R1 NNSPIHSW; C:\Windows\System32\DRIVERS\NNSPihsw.sys [70176 2014-06-04] (Panda Security, S.L.)
R1 NNSPOP3; C:\Windows\System32\DRIVERS\NNSPop3.sys [125984 2014-06-04] (Panda Security, S.L.)
R1 NNSPROT; C:\Windows\System32\DRIVERS\NNSProt.sys [306720 2014-06-04] (Panda Security, S.L.)
R1 NNSPRV; C:\Windows\System32\DRIVERS\NNSPrv.sys [169504 2014-06-04] (Panda Security, S.L.)
R1 NNSSMTP; C:\Windows\System32\DRIVERS\NNSSmtp.sys [115744 2014-06-04] (Panda Security, S.L.)
R1 NNSSTRM; C:\Windows\System32\DRIVERS\NNSStrm.sys [261152 2014-06-04] (Panda Security, S.L.)
R1 NNSTLSC; C:\Windows\System32\DRIVERS\NNSTlsc.sys [109088 2014-06-04] (Panda Security, S.L.)
R2 PSINAflt; C:\Windows\System32\DRIVERS\PSINAflt.sys [160800 2014-07-24] (Panda Security, S.L.)
R2 PSINFile; C:\Windows\System32\DRIVERS\PSINFile.sys [120352 2014-07-24] (Panda Security, S.L.)
R1 PSINKNC; C:\Windows\System32\DRIVERS\psinknc.sys [195616 2014-07-24] (Panda Security, S.L.)
R2 PSINProc; C:\Windows\System32\DRIVERS\PSINProc.sys [122400 2014-07-24] (Panda Security, S.L.)
R2 PSINProt; C:\Windows\System32\DRIVERS\PSINProt.sys [132128 2014-07-24] (Panda Security, S.L.)
R2 PSINReg; C:\Windows\System32\DRIVERS\PSINReg.sys [106016 2014-07-24] (Panda Security, S.L.)
S3 PSKMAD; C:\Windows\System32\DRIVERS\PSKMAD.sys [60400 2014-03-25] (Panda Security, S.L.)
R3 t_mouse.sys; C:\Windows\system32\DRIVERS\t_mouse.sys [6144 2013-04-09] ()
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114496 2015-02-04] (Microsoft Corporation)
S3 xb1usb; C:\Windows\System32\drivers\xb1usb.sys [34016 2014-05-27] (Microsoft Corporation)
S3 xusb22; C:\Windows\System32\drivers\xusb22.sys [87040 2014-03-18] (Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2015-07-23 14:37 - 2015-07-23 14:37 - 00018167 _____ C:\Users\Michel´s Daddelkiste\Downloads\FRST.txt
2015-07-23 14:36 - 2015-07-23 14:37 - 02135552 _____ (Farbar) C:\Users\Michel´s Daddelkiste\Downloads\FRST64.exe
2015-07-23 14:34 - 2015-07-23 14:36 - 00000000 ____D C:\Users\Michel´s Daddelkiste\AppData\Roaming\TS3Client
2015-07-23 14:34 - 2015-07-23 14:34 - 00001304 _____ C:\Users\Michel´s Daddelkiste\Desktop\TeamSpeak 3 Client.lnk
2015-07-23 14:34 - 2015-07-23 14:34 - 00000000 ____D C:\Users\Michel´s Daddelkiste\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client
2015-07-23 14:34 - 2015-07-23 14:34 - 00000000 ____D C:\Users\Michel´s Daddelkiste\AppData\Local\TeamSpeak 3 Client
2015-07-23 14:17 - 2015-07-23 14:30 - 30014480 _____ (TeamSpeak Systems GmbH) C:\Users\Michel´s Daddelkiste\Downloads\TeamSpeak3-Client-win64-3.0.16.exe
2015-07-23 14:15 - 2015-07-23 14:15 - 00000000 ____D C:\Users\Michel´s Daddelkiste\AppData\Local\CEF
2015-07-22 21:37 - 2015-07-22 21:37 - 00000116 _____ C:\Windows\setupact.log
2015-07-22 21:37 - 2015-07-22 21:37 - 00000000 _____ C:\Windows\setuperr.log
2015-07-22 21:17 - 2015-07-22 21:17 - 00003464 _____ C:\Windows\System32\Tasks\GyazoUpdateTaskMachineDaily
2015-07-22 21:16 - 2015-07-22 21:16 - 00000000 ____D C:\Users\Michel\AppData\Local\CEF
2015-07-22 21:16 - 2015-07-22 21:16 - 00000000 ____D C:\ProgramData\Gyazo
2015-07-22 21:10 - 2015-07-23 14:28 - 00003596 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-345954769-3013140688-2023865255-1001
2015-07-22 21:09 - 2015-07-22 21:09 - 00000526 _____ C:\Users\Public\Desktop\Steam.lnk
2015-07-22 21:02 - 2015-07-22 21:02 - 00000000 ____D C:\Users\Michel´s Daddelkiste\AppData\Local\GWX
2015-07-22 15:26 - 2015-07-22 15:26 - 00049519 _____ C:\Users\Michel\Downloads\Addition.txt
2015-07-22 15:25 - 2015-07-23 14:37 - 00000000 ____D C:\FRST
2015-07-22 15:25 - 2015-07-22 15:26 - 00041609 _____ C:\Users\Michel\Downloads\FRST.txt
2015-07-22 15:24 - 2015-07-22 15:24 - 02135552 _____ (Farbar) C:\Users\Michel\Downloads\FRST64.exe
2015-07-21 18:06 - 2015-07-14 16:14 - 00358912 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2015-07-21 18:06 - 2015-07-14 16:14 - 00301056 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2015-07-21 18:06 - 2015-07-14 16:14 - 00035840 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2015-07-21 18:06 - 2015-07-14 16:13 - 00044032 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2015-07-20 15:23 - 2015-07-20 15:23 - 00000000 ____D C:\Program Files (x86)\Battlelog Web Plugins
2015-07-18 09:31 - 2015-07-18 12:08 - 00000000 ____D C:\Users\Michel\Documents\Stronghold Crusader
2015-07-18 09:28 - 2015-07-18 11:40 - 00000000 ____D C:\Users\Michel\Documents\gothic3
2015-07-16 17:55 - 2015-07-09 21:51 - 00136904 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2015-07-16 17:55 - 2015-07-09 20:40 - 00359936 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll
2015-07-16 17:55 - 2015-07-09 18:03 - 03701760 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2015-07-16 17:55 - 2015-07-09 17:54 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2015-07-16 17:55 - 2015-07-09 17:53 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2015-07-16 17:55 - 2015-07-09 17:50 - 00409088 _____ (Microsoft Corporation) C:\Windows\system32\WUSettingsProvider.dll
2015-07-16 17:55 - 2015-07-09 17:50 - 00095744 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2015-07-16 17:55 - 2015-07-09 17:48 - 00891904 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2015-07-16 17:55 - 2015-07-09 17:46 - 02229248 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2015-07-16 17:55 - 2015-07-09 17:38 - 00029696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2015-07-16 17:55 - 2015-07-09 17:37 - 00124928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2015-07-16 17:55 - 2015-07-09 17:35 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2015-07-16 17:55 - 2015-07-09 17:34 - 00721920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2015-07-16 17:55 - 2015-06-27 05:08 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2015-07-16 17:55 - 2015-06-27 05:08 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2015-07-16 17:55 - 2015-06-27 04:14 - 00027136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2015-07-16 17:54 - 2015-07-02 23:21 - 19877376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2015-07-16 17:54 - 2015-07-02 22:49 - 25193984 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-07-16 17:54 - 2015-07-02 00:08 - 05923840 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-07-16 17:54 - 2015-07-01 23:14 - 04520448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2015-07-16 17:54 - 2015-06-30 00:43 - 00026288 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2015-07-16 17:54 - 2015-06-29 17:07 - 01145856 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2015-07-16 17:54 - 2015-06-29 17:07 - 01084928 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2015-07-16 17:54 - 2015-06-29 17:07 - 00764928 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2015-07-16 17:54 - 2015-06-29 17:07 - 00433152 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2015-07-16 17:54 - 2015-06-29 17:07 - 00067584 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2015-07-16 17:54 - 2015-06-28 07:07 - 00442712 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2015-07-16 17:54 - 2015-06-28 07:07 - 00178008 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2015-07-16 17:54 - 2015-06-28 07:06 - 01311960 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2015-07-16 17:54 - 2015-06-28 07:06 - 00332120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2015-07-16 17:54 - 2015-06-27 18:42 - 00747520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2015-07-16 17:54 - 2015-06-27 05:13 - 00202240 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2015-07-16 17:54 - 2015-06-27 05:12 - 00401408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2015-07-16 17:54 - 2015-06-27 05:12 - 00284672 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2015-07-16 17:54 - 2015-06-27 04:40 - 00445440 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2015-07-16 17:54 - 2015-06-27 04:05 - 01441792 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2015-07-16 17:54 - 2015-06-27 04:00 - 00989184 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2015-07-16 17:54 - 2015-06-27 03:53 - 00324096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2015-07-16 17:54 - 2015-06-27 03:26 - 00802816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2015-07-16 17:54 - 2015-06-27 01:21 - 00726528 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2015-07-16 17:54 - 2015-06-27 01:21 - 00227328 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2015-07-16 17:54 - 2015-06-25 04:31 - 04177920 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2015-07-16 17:54 - 2015-06-16 00:41 - 00065024 _____ (Microsoft Corporation) C:\Windows\system32\msiexec.exe
2015-07-16 17:54 - 2015-06-16 00:24 - 03320320 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2015-07-16 17:54 - 2015-06-15 23:16 - 00059904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msiexec.exe
2015-07-16 17:54 - 2015-06-15 23:09 - 03607552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2015-07-16 17:54 - 2015-06-15 22:50 - 02774528 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2015-07-16 17:54 - 2015-06-15 21:57 - 02460160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2015-07-16 17:54 - 2015-05-30 23:18 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\werdiagcontroller.dll
2015-07-16 17:54 - 2015-05-30 21:36 - 00230400 _____ (Microsoft Corporation) C:\Windows\system32\AudioEndpointBuilder.dll
2015-07-16 17:54 - 2015-05-30 21:35 - 00911360 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2015-07-16 17:54 - 2015-05-07 19:50 - 22292672 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2015-07-16 17:54 - 2015-05-07 19:00 - 03109376 _____ (Microsoft Corporation) C:\Windows\system32\ExplorerFrame.dll
2015-07-16 17:54 - 2015-05-07 18:53 - 19734960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2015-07-16 17:54 - 2015-05-07 18:12 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ExplorerFrame.dll
2015-07-16 17:54 - 2015-05-07 17:21 - 00522240 _____ (Microsoft Corporation) C:\Windows\system32\GeofenceMonitorService.dll
2015-07-16 17:54 - 2015-05-07 17:05 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GeofenceMonitorService.dll
2015-07-16 17:54 - 2015-05-03 17:09 - 00274944 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2015-07-16 17:54 - 2015-05-03 16:58 - 00210944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2015-07-16 17:54 - 2015-05-03 16:55 - 00971776 _____ (Microsoft Corporation) C:\Windows\system32\WSShared.dll
2015-07-16 17:54 - 2015-05-03 16:49 - 00811008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSShared.dll
2015-07-16 17:54 - 2015-05-03 02:39 - 00227328 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll
2015-07-16 17:54 - 2015-04-30 01:22 - 00130048 _____ (Microsoft Corporation) C:\Windows\system32\WiFiDisplay.dll
2015-07-16 17:54 - 2015-04-25 04:25 - 00020992 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usb8023.sys
2015-07-16 17:54 - 2015-03-09 04:02 - 00067584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storvsp.sys
2015-07-16 17:54 - 2014-11-04 21:25 - 00059712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\kbdclass.sys
2015-07-16 17:54 - 2014-11-04 21:25 - 00051008 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mouclass.sys
2015-07-16 17:54 - 2014-11-04 08:55 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sermouse.sys
2015-07-16 17:54 - 2014-11-04 08:54 - 00108544 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\i8042prt.sys
2015-07-16 17:54 - 2014-11-04 08:54 - 00032256 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\kbdhid.sys
2015-07-16 17:54 - 2014-11-04 08:54 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mouhid.sys
2015-07-16 17:53 - 2015-07-02 22:50 - 02279424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2015-07-16 17:53 - 2015-07-02 22:23 - 02885632 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-07-16 17:53 - 2015-07-02 22:19 - 12855296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2015-07-16 17:53 - 2015-07-02 21:55 - 01310720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2015-07-16 17:53 - 2015-07-02 21:20 - 14453248 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-07-16 17:53 - 2015-07-02 20:59 - 01545728 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-07-16 17:53 - 2015-06-16 00:39 - 00584192 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-07-16 17:53 - 2015-06-16 00:38 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2015-07-16 17:53 - 2015-06-16 00:26 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2015-07-16 17:53 - 2015-06-15 23:58 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2015-07-16 17:53 - 2015-06-15 23:38 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-07-16 17:53 - 2015-06-15 23:36 - 02125824 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-07-16 17:53 - 2015-06-15 23:17 - 02880000 _____ (Microsoft Corporation) C:\Windows\system32\actxprxy.dll
2015-07-16 17:53 - 2015-06-15 23:16 - 02427392 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-07-16 17:53 - 2015-06-15 23:15 - 00504320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2015-07-16 17:53 - 2015-06-15 23:13 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2015-07-16 17:53 - 2015-06-15 23:04 - 00478208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2015-07-16 17:53 - 2015-06-15 22:52 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2015-07-16 17:53 - 2015-06-15 22:47 - 00073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2015-07-16 17:53 - 2015-06-15 22:44 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2015-07-16 17:53 - 2015-06-15 22:41 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2015-07-16 17:53 - 2015-06-15 22:37 - 00880128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2015-07-16 17:53 - 2015-06-15 22:31 - 00689152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2015-07-16 17:53 - 2015-06-15 22:30 - 02052608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2015-07-16 17:53 - 2015-06-15 22:17 - 01048576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\actxprxy.dll
2015-07-16 17:53 - 2015-06-15 22:07 - 01951232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2015-07-16 17:53 - 2015-06-15 22:02 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2015-07-16 17:52 - 2015-06-16 00:24 - 00816640 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2015-07-16 17:52 - 2015-06-16 00:02 - 00087552 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2015-07-16 17:52 - 2015-06-15 23:57 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-07-16 17:52 - 2015-06-15 23:56 - 00145408 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2015-07-16 17:52 - 2015-06-15 23:55 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-07-16 17:52 - 2015-06-15 23:49 - 01032704 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2015-07-16 17:52 - 2015-06-15 23:41 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2015-07-16 17:52 - 2015-06-15 23:03 - 00664064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2015-07-16 17:52 - 2015-06-15 22:43 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2015-07-16 17:52 - 2015-06-15 22:42 - 00128000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2015-07-16 17:52 - 2015-06-15 22:32 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2015-07-16 17:52 - 2015-06-15 22:30 - 00327168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2015-07-16 17:36 - 2015-06-16 07:36 - 01661576 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2015-07-16 17:36 - 2015-06-16 07:36 - 01212248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll
2015-07-16 17:36 - 2015-06-11 05:49 - 01380600 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2015-07-16 17:36 - 2015-06-10 18:13 - 01097216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2015-07-16 17:36 - 2015-05-11 18:34 - 00332800 _____ (Microsoft Corporation) C:\Windows\system32\fhcpl.dll
2015-07-16 17:36 - 2015-04-28 15:13 - 00513480 _____ C:\Windows\SysWOW64\locale.nls
2015-07-16 17:36 - 2015-04-28 15:13 - 00513480 _____ C:\Windows\system32\locale.nls
2015-07-16 17:36 - 2015-04-23 17:47 - 03084288 _____ (Microsoft Corporation) C:\Windows\system32\msftedit.dll
2015-07-16 17:36 - 2015-04-23 17:16 - 02471424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msftedit.dll
2015-07-16 17:33 - 2015-05-07 18:47 - 00564224 _____ (Microsoft Corporation) C:\Windows\system32\apphelp.dll
2015-07-16 17:32 - 2015-05-12 15:19 - 00294912 _____ (Microsoft Corporation) C:\Windows\system32\SystemEventsBrokerServer.dll
2015-07-16 17:32 - 2015-05-03 17:07 - 07784448 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Data.Pdf.dll
2015-07-16 17:32 - 2015-05-03 16:57 - 05264384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Data.Pdf.dll
2015-07-16 17:32 - 2015-05-02 01:33 - 00410739 _____ C:\Windows\system32\ApnDatabase.xml
2015-07-14 15:48 - 2015-07-14 15:49 - 00000000 ____D C:\Users\Michel\AppData\Roaming\Trove
2015-07-01 18:00 - 2015-07-22 15:37 - 00000166 _____ C:\Users\Michel\Documents\ClownfishForTeamspeak.ini
2015-07-01 17:58 - 2015-07-01 17:58 - 00237268 _____ C:\Users\Michel\Downloads\ClownfishVoiceChanger-v1.50 (1).ts3_plugin
2015-07-01 17:57 - 2015-07-01 17:58 - 00237268 _____ C:\Users\Michel\Downloads\ClownfishVoiceChanger-v1.50.ts3_plugin
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2015-07-23 14:32 - 2014-08-18 04:21 - 01650972 _____ C:\Windows\WindowsUpdate.log
2015-07-23 14:23 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\AppReadiness
2015-07-23 14:16 - 2014-08-18 09:34 - 00001132 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-07-23 14:15 - 2015-04-07 20:40 - 00000000 ____D C:\Users\Michel´s Daddelkiste\AppData\Local\Overwolf
2015-07-23 14:15 - 2014-09-09 08:36 - 00000000 ____D C:\Users\Michel´s Daddelkiste\AppData\Local\LogMeIn Hamachi
2015-07-23 14:15 - 2014-08-19 22:42 - 00000000 ____D C:\ProgramData\Origin
2015-07-23 14:15 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\sru
2015-07-23 14:14 - 2014-08-18 09:34 - 00001128 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-07-23 14:13 - 2014-11-10 20:40 - 00000000 ____D C:\Users\Michel\AppData\Local\LogMeIn Hamachi
2015-07-22 21:53 - 2014-11-14 21:28 - 00000000 ____D C:\Users\Michel\AppData\Roaming\TS3Client
2015-07-22 21:48 - 2014-08-21 03:40 - 00226168 _____ C:\Windows\SysWOW64\PnkBstrB.exe
2015-07-22 21:43 - 2014-08-18 04:26 - 01776918 _____ C:\Windows\system32\PerfStringBackup.INI
2015-07-22 21:43 - 2013-08-23 01:24 - 00764340 _____ C:\Windows\system32\perfh007.dat
2015-07-22 21:43 - 2013-08-23 01:24 - 00159160 _____ C:\Windows\system32\perfc007.dat
2015-07-22 21:42 - 2015-04-23 21:59 - 00003596 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-345954769-3013140688-2023865255-1006
2015-07-22 21:42 - 2014-08-18 04:22 - 00000000 ____D C:\Users\Michel´s Daddelkiste
2015-07-22 21:37 - 2014-08-18 09:38 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-07-22 21:37 - 2013-08-22 16:45 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-07-22 21:36 - 2015-06-03 17:16 - 00000000 ____D C:\Program Files (x86)\Gyazo
2015-07-22 21:17 - 2015-06-03 17:16 - 00003338 _____ C:\Windows\System32\Tasks\GyazoUpdateTaskMachine
2015-07-22 21:11 - 2015-04-07 20:43 - 00000000 ____D C:\Program Files (x86)\Overwolf
2015-07-22 21:01 - 2014-08-18 09:24 - 00002273 _____ C:\Users\Michel´s Daddelkiste\Desktop\Google Chrome.lnk
2015-07-22 16:27 - 2014-11-13 18:43 - 00000000 ____D C:\Users\Michel\AppData\Roaming\.minecraft
2015-07-22 15:18 - 2014-08-21 03:40 - 00226168 _____ C:\Windows\SysWOW64\PnkBstrB.ex0
2015-07-22 14:56 - 2014-08-17 22:31 - 00000000 ____D C:\ProgramData\Package Cache
2015-07-22 14:08 - 2014-12-21 16:34 - 00000000 ____D C:\Users\Michel\Downloads\Musik
2015-07-22 13:28 - 2013-08-22 15:25 - 00262144 ___SH C:\Windows\system32\config\BBI
2015-07-21 22:03 - 2013-08-22 16:44 - 00454200 _____ C:\Windows\system32\FNTCACHE.DAT
2015-07-21 19:32 - 2014-11-25 09:25 - 00000000 ____D C:\Users\Michel\Documents\irgendwas
2015-07-21 18:55 - 2013-08-22 17:20 - 00000000 ____D C:\Windows\CbsTemp
2015-07-21 17:20 - 2014-08-21 20:41 - 00348360 _____ C:\Windows\SysWOW64\PnkBstrB.xtr
2015-07-21 16:20 - 2014-08-19 22:23 - 00000000 ____D C:\Program Files (x86)\Steam
2015-07-21 15:00 - 2015-06-18 17:08 - 00000000 ____D C:\Users\Michel\AppData\Local\Arma 3
2015-07-20 15:26 - 2014-11-12 16:16 - 00000000 ____D C:\Users\Michel\AppData\Roaming\Origin
2015-07-20 15:26 - 2014-08-19 22:41 - 00000000 ____D C:\Program Files (x86)\Origin
2015-07-20 15:18 - 2014-11-22 10:20 - 00000000 __SHD C:\Users\Michel\AppData\Local\EmieBrowserModeList
2015-07-20 15:18 - 2014-11-12 16:26 - 00000000 __SHD C:\Users\Michel\AppData\Local\EmieUserList
2015-07-20 15:18 - 2014-11-12 16:26 - 00000000 __SHD C:\Users\Michel\AppData\Local\EmieSiteList
2015-07-18 13:52 - 2014-11-27 18:08 - 00000000 ____D C:\Users\Michel\Documents\Mount&Blade Warband Savegames
2015-07-17 23:52 - 2015-04-07 10:38 - 00000000 ___SD C:\Windows\SysWOW64\GWX
2015-07-17 23:52 - 2015-04-07 10:38 - 00000000 ___SD C:\Windows\system32\GWX
2015-07-16 21:20 - 2013-08-22 17:36 - 00000000 ___RD C:\Windows\ToastData
2015-07-16 21:20 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\WinStore
2015-07-16 21:20 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\PolicyDefinitions
2015-07-16 19:19 - 2015-04-16 20:52 - 00000000 ____D C:\Windows\system32\appraiser
2015-07-16 19:19 - 2015-03-15 08:52 - 00000000 ___SD C:\Windows\system32\CompatTel
2015-07-16 19:19 - 2014-08-18 10:25 - 00000000 ____D C:\Windows\system32\MRT
2015-07-16 18:11 - 2015-05-18 20:23 - 00004104 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2015-07-16 18:11 - 2015-05-18 20:23 - 00003868 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2015-07-16 17:30 - 2013-08-22 15:25 - 00262144 ___SH C:\Windows\system32\config\ELAM
2015-07-13 23:10 - 2013-08-22 17:38 - 00792568 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-07-13 23:10 - 2013-08-22 17:38 - 00178168 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-07-09 19:45 - 2015-06-18 17:07 - 00000000 ____D C:\Users\Michel\AppData\Local\Arma 3 Launcher
2015-07-06 20:50 - 2015-04-28 17:13 - 00000000 ____D C:\Users\Michel\AppData\Roaming\Skype
2015-07-05 20:50 - 2015-05-30 20:14 - 00000000 ____D C:\Users\Michel\Documents\My Games
2015-07-03 08:43 - 2014-08-18 10:25 - 130333168 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2015-06-29 19:57 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\NDF
2015-06-25 13:41 - 2014-11-10 20:39 - 00002273 _____ C:\Users\Michel\Desktop\Google Chrome.lnk
Some files in TEMP:
====================
C:\Users\Michel´s Daddelkiste\AppData\Local\Temp\ose00000.exe
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2015-07-21 18:55
==================== End of log ============================
--- --- ---
[CODE]Additional
FRST Logfile:
Code:
Alles auswählen Aufklappen ATTFilter
scan result of Farbar Recovery Scan Tool (x64) Version:20-07-2015
Ran by Michel´s Daddelkiste at 2015-07-23 14:38:01
Running from C:\Users\Michel´s Daddelkiste\Downloads
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-345954769-3013140688-2023865255-500 - Administrator - Disabled)
Gast (S-1-5-21-345954769-3013140688-2023865255-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-345954769-3013140688-2023865255-1003 - Limited - Enabled)
Michel (S-1-5-21-345954769-3013140688-2023865255-1006 - Limited - Enabled) => C:\Users\Michel
Michel´s Daddelkiste (S-1-5-21-345954769-3013140688-2023865255-1001 - Administrator - Enabled) => C:\Users\Michel´s Daddelkiste
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Panda Free Antivirus (Enabled - Up to date) {AAF74A68-8713-CDF1-004F-30003398BE9E}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Panda Free Antivirus (Enabled - Up to date) {1196AB8C-A129-C27F-3AFF-0B72481FF423}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Panda Firewall (Enabled) {92CCCB4D-CD7C-CCA9-2B10-9935CD4BF9E5}
==================== Installed Programs ======================
(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Adobe Flash Player 17 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 17.0.0.169 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.08) - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AB0000000001}) (Version: 11.0.08 - Adobe Systems Incorporated)
Age of Empires III - The Asian Dynasties (HKLM-x32\...\InstallShield_{C43C1415-3DFC-4089-9A32-0BECF28A6046}) (Version: 1.00.0000 - Microsoft Game Studios)
Age of Empires III - The Asian Dynasties (x32 Version: 1.00.0000 - Microsoft Game Studios) Hidden
Age of Empires III (HKLM-x32\...\InstallShield_{A8CF5C37-8EC5-4C33-BB4A-87F468B77D45}) (Version: 1.00.0000 - Microsoft Game Studios)
Age of Empires III (x32 Version: 1.00.0000 - Microsoft Game Studios) Hidden
Apple Application Support (HKLM-x32\...\{78002155-F025-4070-85B3-7C0453561701}) (Version: 3.0.6 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{6AF2AC2A-3532-43FD-9F4D-BDC9C0D724C7}) (Version: 7.1.2.6 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Arma 2 (HKLM-x32\...\Steam App 33910) (Version: - Bohemia Interactive)
Arma 2: DayZ Mod (HKLM-x32\...\Steam App 224580) (Version: - Bohemia Interactive)
Arma 2: Operation Arrowhead (HKLM-x32\...\Steam App 33930) (Version: - Bohemia Interactive)
Arma 3 (HKLM-x32\...\Steam App 107410) (Version: - Bohemia Interactive)
Assassin's Creed® III (HKLM-x32\...\Steam App 208480) (Version: - Ubisoft Montreal)
Banished (HKLM-x32\...\Steam App 242920) (Version: - Shining Rock Software LLC)
Battlefield 3™ (HKLM-x32\...\{76285C16-411A-488A-BCE3-C83CB933D8CF}) (Version: 1.6.0.0 - Electronic Arts)
Battlefield 4™ (HKLM-x32\...\{ABADE36E-EC37-413B-8179-B432AD3FACE7}) (Version: 1.4.2.30944 - Electronic Arts)
Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.7.1 - EA Digital Illusions CE AB)
BattlEye for OA Uninstall (HKLM-x32\...\BattlEye for OA) (Version: - )
BattlEye Uninstall (HKLM-x32\...\BattlEye for A2) (Version: - )
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Castle Crashers (HKLM-x32\...\Steam App 204360) (Version: - The Behemoth)
Catalyst Control Center (HKLM-x32\...\WUCCCApp) (Version: 1.00.0000 - AMD)
Chivalry: Medieval Warfare (HKLM-x32\...\Steam App 219640) (Version: - Torn Banner Studios)
Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version: - Valve)
DayZ (HKLM-x32\...\Steam App 221100) (Version: - Bohemia Interactive)
DayZ Commander (HKLM-x32\...\{668B7711-6DAF-465F-9BE2-F3C07C962131}) (Version: 0.92.117 - Dotjosh Studios)
DayZLauncher version 0.0.0.13 (HKLM-x32\...\{E31045B4-9DB5-9EBD-44DF-BD4E6CFD40DF}_is1) (Version: 0.0.0.13 - Maca134)
Dishonored (HKLM-x32\...\Steam App 205100) (Version: 1.0 - Bethesda Softworks)
Empire Earth (HKLM-x32\...\{2447500B-22D7-47BD-9B13-1A927F43A267}) (Version: - )
Garry's Mod (HKLM-x32\...\Steam App 4000) (Version: - Facepunch Studios)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 43.0.2357.134 - Google Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.28.1 - Google Inc.) Hidden
Gothic 3 (HKLM-x32\...\Steam App 39500) (Version: - Piranha – Bytes)
Gyazo 3.1.4 (HKLM-x32\...\{6DB8C365-E719-4BA5-9594-10DFC244D3FD}_is1) (Version: - Nota Inc.)
HyperSnap 7 (HKLM-x32\...\HyperSnap 7) (Version: 7.29.03 - Hyperionics Technology LLC)
Interstellar Marines (HKLM-x32\...\Steam App 236370) (Version: - Zero Point Software)
iTunes (HKLM\...\{77DE5105-D05E-448C-96CB-7FA381903753}) (Version: 11.3.1.2 - Apple Inc.)
Java 8 Update 11 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418011FF}) (Version: 8.0.110 - Oracle Corporation)
League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games )
League of Legends (x32 Version: 3.0.1 - Riot Games ) Hidden
LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.328 - LogMeIn, Inc.)
LogMeIn Hamachi (x32 Version: 2.2.0.328 - LogMeIn, Inc.) Hidden
Medieval II: Total War (HKLM-x32\...\Steam App 4700) (Version: - The Creative Assembly)
Microsoft Age of Empires II (HKLM-x32\...\Age of Empires 2.0) (Version: - )
Microsoft Age of Empires II: The Conquerors Expansion (HKLM-x32\...\Age of Empires II: The Conquerors Expansion 1.0) (Version: - )
Microsoft Office 2010 Service Pack 1 (SP1) (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{047B0968-E622-4FAA-9B4B-121FA109EDDE}) (Version: - Microsoft)
Microsoft Office Professional Plus 2010 (HKLM-x32\...\Office14.PROPLUS) (Version: 14.0.6029.1000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Xbox 360 Accessories 1.2 (HKLM\...\{B3B750C0-8C22-439D-B7CE-67F3ED99CC2B}) (Version: 1.20.146.0 - Microsoft)
Microsoft Xbox One Controller for Windows (HKLM\...\{DC2CB48C-FD96-48EB-A36A-7D995BB587EB}) (Version: 1.0.2 - Microsoft Corporation)
Microsoft-Maus- und Tastatur-Center (HKLM\...\Microsoft Mouse and Keyboard Center) (Version: 2.3.188.0 - Microsoft Corporation)
Miscreated (HKLM-x32\...\Steam App 299740) (Version: - Entrada Interactive LLC)
Mount & Blade: Warband (HKLM-x32\...\Steam App 48700) (Version: - TaleWorlds Entertainment)
Mount & Blade: With Fire and Sword (HKLM-x32\...\Steam App 48720) (Version: - TaleWorlds Entertainment)
Napoleon: Total War (HKLM-x32\...\Steam App 34030) (Version: - The Creative Assembly)
Neverwinter (HKLM-x32\...\Steam App 109600) (Version: - Cryptic Studios)
Nidhogg v1.0 (HKLM-x32\...\Nidhogg v1.01.0) (Version: 1.0 - Friends in War)
Origin (HKLM-x32\...\Origin) (Version: 9.4.20.386 - Electronic Arts, Inc.)
Overwolf (HKLM-x32\...\Overwolf) (Version: 0.87.22.0 - Overwolf Ltd.)
Panda Devices Agent (HKLM-x32\...\Panda Devices Agent) (Version: 1.03.03 - Panda Security)
Panda Devices Agent (x32 Version: 1.05.00 - Panda Security) Hidden
Panda Free Antivirus (HKLM-x32\...\Panda Universal Agent Endpoint) (Version: 15.00.01.0000 - Panda Security)
Panda Free Antivirus (Version: 7.23.00.0000 - Panda Security) Hidden
PAYDAY 2 (HKLM-x32\...\Steam App 218620) (Version: - OVERKILL - a Starbreeze Studio.)
PAYDAY: The Heist (HKLM-x32\...\Steam App 24240) (Version: - OVERKILL Software)
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.993 - Even Balance, Inc.)
Robocraft (HKLM-x32\...\Steam App 301520) (Version: - Freejam)
Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 7.4.0.9058 - Microsoft Corporation)
Skype™ 7.4 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.4.102 - Skype Technologies S.A.)
Starbound (HKLM-x32\...\Steam App 211820) (Version: - )
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Stranded Deep (HKLM-x32\...\Steam App 313120) (Version: - Beam Team Games)
Stronghold Crusader Extreme HD (HKLM-x32\...\Steam App 16700) (Version: - Firefly Studios)
Stronghold Crusader HD (HKLM-x32\...\Steam App 40970) (Version: - FireFly Studios)
TeamSpeak 3 Client (HKU\S-1-5-21-345954769-3013140688-2023865255-1001\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
The Elder Scrolls Online (HKLM-x32\...\The Elder Scrolls Online) (Version: 1.0.0.0 - Zenimax Online Studios)
The Forest (HKLM-x32\...\Steam App 242760) (Version: - Endnight Games Ltd)
Toribash (HKLM-x32\...\Steam App 248570) (Version: - Nabi Studios)
Total War: Arena (HKLM-x32\...\Steam App 227520) (Version: - Creative Assembly)
Trove (HKLM-x32\...\Steam App 304050) (Version: - Trion Worlds)
Unturned (HKLM-x32\...\Steam App 304930) (Version: - Nelson Sexton)
Uplay (HKLM-x32\...\Uplay) (Version: 2.0 - Ubisoft)
War of the Roses (HKLM-x32\...\Steam App 42160) (Version: - Fatshark)
War Thunder (HKLM-x32\...\Steam App 236390) (Version: - Gaijin Entertainment)
==================== Custom CLSID (Whitelisted): ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-345954769-3013140688-2023865255-1001_Classes\CLSID\{4a30e683-5254-45a8-a825-0f70908a86d4}\InprocServer32 -> C:\Users\Michel´s Daddelkiste\Documents\HyperSnap 7\x64\ThumbDhs64.dll ()
==================== Restore Points =========================
==================== Hosts content: ===============================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2013-08-22 15:25 - 2013-08-22 15:25 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts
==================== Scheduled Tasks (Whitelisted) =============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {33ECC859-F4F1-49B5-BA8D-DB61BB1B6792} - System32\Tasks\GyazoUpdateTaskMachine => C:\Program Files (x86)\Gyazo\GyazoUpdate.exe [2015-07-16] ()
Task: {472D991A-47C0-404C-8349-B89E0B11FAA3} - \Optimize Start Menu Cache Files-S-1-5-21-345954769-3013140688-2023865255-1005 No Task File <==== ATTENTION
Task: {5FD96B53-488E-4360-8AF4-21F7D0561E84} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-08-18] (Google Inc.)
Task: {6B6035E9-DF55-4750-A261-EB7A6953EB32} - System32\Tasks\Microsoft\Windows Embedded\Embedded App Launcher Startup => C:\Windows\system32\embeddedapplauncher.exe [2014-10-29] (Microsoft Corporation)
Task: {6BF2F076-E39B-4E65-8E2F-7931115273A8} - System32\Tasks\Microsoft_MKC_Logon_Task_itype.exe => C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [2014-03-19] ()
Task: {7D8C35BC-F82D-46EF-A5D1-290815012C2B} - \Adobe Flash Player Updater No Task File <==== ATTENTION
Task: {85952270-5181-448B-BEBB-A9442F26973C} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {8976BD1F-3595-493B-B6AB-6E17EC8031F6} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-08-18] (Google Inc.)
Task: {A77D30F5-9BB2-4EC3-9069-F7056FA16163} - System32\Tasks\Microsoft_MKC_Logon_Task_ipoint.exe => C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2014-03-19] (Microsoft Corporation)
Task: {BD2701D2-56D9-4F18-BB6E-842DEC07BD2F} - System32\Tasks\GyazoUpdateTaskMachineDaily => C:\Program Files (x86)\Gyazo\GyazoUpdate.exe [2015-07-16] ()
Task: {EBDA9296-973E-4ECB-A7B1-0F0DFC8E593E} - \Overwolf Updater Task No Task File <==== ATTENTION
Task: {FE6AA9C4-83F4-4760-82C5-C518A8EEBD11} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\Windows\system32\MRT.exe [2015-07-03] (Microsoft Corporation)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
==================== Loaded Modules (Whitelisted) ==============
2009-11-19 03:34 - 2009-11-19 03:34 - 00022016 _____ () C:\Windows\System32\suge1l6.dll
2014-07-04 21:33 - 2014-07-04 21:33 - 00214528 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.PerformanceTuning.dll
2013-07-26 06:59 - 2013-07-26 06:59 - 00814592 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Device.dll
2013-07-26 06:59 - 2013-07-26 06:59 - 03650560 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Platform.dll
2014-07-04 21:33 - 2014-07-04 21:33 - 00127488 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.Wlan.dll
2014-08-21 03:40 - 2015-04-11 13:00 - 00076152 _____ () C:\Windows\SysWOW64\PnkBstrA.exe
2014-02-28 11:14 - 2014-02-28 11:14 - 00173568 _____ () C:\Users\Michel´s Daddelkiste\AppData\Local\TeamSpeak 3 Client\quazip.dll
2014-02-27 16:51 - 2014-02-27 16:51 - 01080832 _____ () C:\Users\Michel´s Daddelkiste\AppData\Local\TeamSpeak 3 Client\platforms\qwindows.dll
2014-02-27 16:51 - 2014-02-27 16:51 - 00833024 _____ () C:\Users\Michel´s Daddelkiste\AppData\Local\TeamSpeak 3 Client\sqldrivers\qsqlite.dll
2014-08-04 15:43 - 2014-08-04 15:43 - 00102344 _____ () C:\Users\Michel´s Daddelkiste\AppData\Local\TeamSpeak 3 Client\soundbackends\directsound_win64.dll
2014-08-04 15:43 - 2014-08-04 15:43 - 00108488 _____ () C:\Users\Michel´s Daddelkiste\AppData\Local\TeamSpeak 3 Client\soundbackends\windowsaudiosession_win64.dll
2014-02-27 16:51 - 2014-02-27 16:51 - 00030208 _____ () C:\Users\Michel´s Daddelkiste\AppData\Local\TeamSpeak 3 Client\imageformats\qgif.dll
2014-02-27 16:51 - 2014-02-27 16:51 - 00233984 _____ () C:\Users\Michel´s Daddelkiste\AppData\Local\TeamSpeak 3 Client\imageformats\qjpeg.dll
2014-08-04 15:46 - 2014-08-04 15:46 - 00563656 _____ () C:\Users\Michel´s Daddelkiste\AppData\Local\TeamSpeak 3 Client\plugins\clientquery_plugin.dll
2014-02-27 16:51 - 2014-02-27 16:51 - 00159232 _____ () C:\Users\Michel´s Daddelkiste\AppData\Local\TeamSpeak 3 Client\accessible\qtaccessiblewidgets.dll
2014-07-31 12:16 - 2014-07-31 12:16 - 00073544 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2014-07-31 12:16 - 2014-07-31 12:16 - 01044776 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2013-04-12 19:23 - 2013-04-12 19:23 - 00612664 _____ () C:\Program Files (x86)\Panda Security\Panda Security Protection\SQLite3.dll
2014-08-19 22:46 - 2015-07-20 15:25 - 01007104 _____ () C:\Program Files (x86)\Origin\platforms\qwindows.dll
2014-08-19 22:46 - 2015-07-20 15:25 - 00023552 _____ () C:\Program Files (x86)\Origin\imageformats\qgif.dll
2014-08-19 22:46 - 2015-07-20 15:25 - 00024576 _____ () C:\Program Files (x86)\Origin\imageformats\qico.dll
2014-08-19 22:46 - 2015-07-20 15:25 - 00216576 _____ () C:\Program Files (x86)\Origin\imageformats\qjpeg.dll
2014-08-19 22:46 - 2015-07-20 15:25 - 00261120 _____ () C:\Program Files (x86)\Origin\imageformats\qmng.dll
2014-08-19 22:46 - 2015-07-20 15:25 - 00019456 _____ () C:\Program Files (x86)\Origin\imageformats\qtga.dll
2014-08-19 22:46 - 2015-07-20 15:25 - 00337408 _____ () C:\Program Files (x86)\Origin\imageformats\qtiff.dll
2014-08-19 22:46 - 2015-07-20 15:25 - 00018944 _____ () C:\Program Files (x86)\Origin\imageformats\qwbmp.dll
2015-07-14 20:32 - 2015-07-13 23:55 - 01281864 _____ () C:\Program Files (x86)\Google\Chrome\Application\43.0.2357.134\libglesv2.dll
2015-07-14 20:32 - 2015-07-13 23:55 - 00080712 _____ () C:\Program Files (x86)\Google\Chrome\Application\43.0.2357.134\libegl.dll
2015-07-09 17:00 - 2015-07-09 17:00 - 40555008 _____ () C:\Program Files (x86)\Overwolf\0.87.22.0\libcef.DLL
2015-07-09 17:00 - 2015-07-09 17:00 - 00146432 _____ () C:\Program Files (x86)\Overwolf\0.87.22.0\OWGameEventsConsumer.dll
2015-07-22 21:16 - 2015-07-03 18:12 - 00778240 _____ () D:\Steam\SDL2.dll
2015-07-22 21:16 - 2015-07-03 18:12 - 04962816 _____ () D:\Steam\v8.dll
2015-07-22 21:16 - 2015-07-21 21:32 - 02410176 _____ () D:\Steam\video.dll
2015-07-22 21:16 - 2015-07-03 18:12 - 01556992 _____ () D:\Steam\icui18n.dll
2015-07-22 21:16 - 2015-07-03 18:12 - 01187840 _____ () D:\Steam\icuuc.dll
2015-07-22 21:16 - 2014-12-01 23:31 - 02396672 _____ () D:\Steam\libavcodec-56.dll
2015-07-22 21:16 - 2014-12-01 23:31 - 00479744 _____ () D:\Steam\libavformat-56.dll
2015-07-22 21:16 - 2014-12-01 23:31 - 00332800 _____ () D:\Steam\libavresample-2.dll
2015-07-22 21:16 - 2014-12-01 23:31 - 00442880 _____ () D:\Steam\libavutil-54.dll
2015-07-22 21:16 - 2014-12-01 23:31 - 00485888 _____ () D:\Steam\libswscale-3.dll
2015-07-22 21:16 - 2015-07-21 21:32 - 00703168 _____ () D:\Steam\bin\chromehtml.DLL
2015-07-22 21:16 - 2015-07-07 22:41 - 00169984 _____ () D:\Steam\bin\openvr_api.dll
2015-07-22 21:16 - 2015-07-03 18:12 - 39553928 _____ () D:\Steam\bin\libcef.dll
2015-07-09 17:00 - 2015-07-09 17:00 - 00985088 _____ () C:\Program Files (x86)\Overwolf\0.87.22.0\ffmpegsumo.dll
==================== Alternate Data Streams (Whitelisted) =========
(If an entry is included in the fixlist, only the ADS will be removed.)
==================== Safe Mode (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\NanoServiceMain => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PSUAService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\NanoServiceMain => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\PSUAService => ""="Service"
==================== EXE Association (Whitelisted) ===============
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
==================== Internet Explorer trusted/restricted ===============
(If an entry is included in the fixlist, it will be removed from the registry.)
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-345954769-3013140688-2023865255-1001\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg
DNS Servers: 192.168.178.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is disabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
(Currently there is no automatic fix for this section.)
==================== FirewallRules (Whitelisted) ===============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppextcomobj.exe
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppextcomobj.exe
FirewallRules: [{48EA31DF-DE71-48E0-B983-0D419A6281E5}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{D1B78C42-CA90-4D95-B71F-E7AA75C506B6}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{FC321896-58D2-44CA-BF44-CC3D30F0F327}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{EABF85EF-56AE-43BA-ADC3-1E0A16CB79F3}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{7A72799B-A873-4328-8C82-94ABA45FE432}] => (Allow) C:\Program Files (x86)\iTunes\iTunes.exe
FirewallRules: [{F3C1D98A-3011-442E-AE3F-A1578EE104F6}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{8326E0BA-63A3-4939-97D5-D7E52D75E59C}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{981A7D93-28B9-4176-94B4-C7E3DB3C8F3A}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{CF2C9E58-6EA2-4F9A-9E11-2A2EBC7AFCEE}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [TCP Query User{D11B53A8-F45C-4F8E-8C80-3D59DA824701}C:\users\michel\desktop\broforce_v04.07.14\broforce_beta.exe] => (Block) C:\users\michel\desktop\broforce_v04.07.14\broforce_beta.exe
FirewallRules: [UDP Query User{8684B433-DFD8-4597-988A-E33E48E2E12D}C:\users\michel\desktop\broforce_v04.07.14\broforce_beta.exe] => (Block) C:\users\michel\desktop\broforce_v04.07.14\broforce_beta.exe
FirewallRules: [{CB22F8A8-425D-40A4-8D60-A2343B745CFD}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Toribash\toribash.exe
FirewallRules: [{36450553-7CBF-4898-898C-E1AD70B39E2D}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Toribash\toribash.exe
FirewallRules: [{D87D6380-D093-4E17-95BB-FFFA17858DF4}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{DC0BD242-B329-4C76-8018-84DECFBD76E7}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{F377ECBE-CA7E-4304-8BC3-396F31AE9B42}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\MountBlade Warband\mb_warband.exe
FirewallRules: [{8E86FDEA-564B-4259-A1CA-5E953FF1D5C3}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\MountBlade Warband\mb_warband.exe
FirewallRules: [TCP Query User{422993D7-72E9-406C-AF53-2EBAA6FEB9EC}C:\program files\java\jre8\bin\javaw.exe] => (Block) C:\program files\java\jre8\bin\javaw.exe
FirewallRules: [UDP Query User{E5CC1D3B-35E0-490C-8372-00B5C6F28CC6}C:\program files\java\jre8\bin\javaw.exe] => (Block) C:\program files\java\jre8\bin\javaw.exe
FirewallRules: [TCP Query User{B0AEC8CF-393C-45D4-9440-EBD8028D69B7}C:\users\michel\desktop\age of empires ii\age2_x1\age2_x2.exe] => (Allow) C:\users\michel\desktop\age of empires ii\age2_x1\age2_x2.exe
FirewallRules: [UDP Query User{6BBDF20D-22F6-4AF5-BB1F-A6EC5F40B281}C:\users\michel\desktop\age of empires ii\age2_x1\age2_x2.exe] => (Allow) C:\users\michel\desktop\age of empires ii\age2_x1\age2_x2.exe
FirewallRules: [TCP Query User{308AF660-AF8D-4A7F-A03B-749B753BC663}C:\windows\syswow64\dplaysvr.exe] => (Allow) C:\windows\syswow64\dplaysvr.exe
FirewallRules: [UDP Query User{CC95F6DB-E215-4A4F-8356-18D5C01A1A93}C:\windows\syswow64\dplaysvr.exe] => (Allow) C:\windows\syswow64\dplaysvr.exe
FirewallRules: [TCP Query User{522589A0-C049-4B29-9C1B-176341586D03}D:\call of duty 4 - modern warfare\iw3mp.exe] => (Allow) D:\call of duty 4 - modern warfare\iw3mp.exe
FirewallRules: [UDP Query User{0F94F54A-1604-43D9-96AD-7E9FD87EA6B1}D:\call of duty 4 - modern warfare\iw3mp.exe] => (Allow) D:\call of duty 4 - modern warfare\iw3mp.exe
FirewallRules: [TCP Query User{97217A7D-4776-4C30-9C6F-62398E0F0E47}D:\counter strike 1.6 [portable]\root\cstrike.exe] => (Allow) D:\counter strike 1.6 [portable]\root\cstrike.exe
FirewallRules: [UDP Query User{38C656E6-E7CE-44BA-83BF-FF73365A5262}D:\counter strike 1.6 [portable]\root\cstrike.exe] => (Allow) D:\counter strike 1.6 [portable]\root\cstrike.exe
FirewallRules: [TCP Query User{F4F4801E-7A8E-4D6A-B250-9BEFB56FECE9}D:\day of defeat source [portable]\hl2.exe] => (Allow) D:\day of defeat source [portable]\hl2.exe
FirewallRules: [UDP Query User{811E8FB4-96C0-4A30-AEAF-588EDB0D6822}D:\day of defeat source [portable]\hl2.exe] => (Allow) D:\day of defeat source [portable]\hl2.exe
FirewallRules: [TCP Query User{2939A04C-5688-45CC-AB2C-6D17F7C69DEA}D:\day of defeat source [portable]\srcds.exe] => (Allow) D:\day of defeat source [portable]\srcds.exe
FirewallRules: [UDP Query User{C852E898-2000-4910-AFAC-8E1F7CB4A284}D:\day of defeat source [portable]\srcds.exe] => (Allow) D:\day of defeat source [portable]\srcds.exe
FirewallRules: [TCP Query User{C56BF3DF-3611-45F6-B663-30C242EEF24A}D:\quake3 [portable]\quake3.exe] => (Allow) D:\quake3 [portable]\quake3.exe
FirewallRules: [UDP Query User{B05A938D-783D-49E8-8E51-C1B2407393EE}D:\quake3 [portable]\quake3.exe] => (Allow) D:\quake3 [portable]\quake3.exe
FirewallRules: [TCP Query User{44A9645E-BF03-45CA-91E1-504AC8FD80E8}D:\team fortress 2 [portable]\hl2.exe] => (Allow) D:\team fortress 2 [portable]\hl2.exe
FirewallRules: [UDP Query User{A76E0FEB-DE3A-431F-937C-33B7B8E3D02D}D:\team fortress 2 [portable]\hl2.exe] => (Allow) D:\team fortress 2 [portable]\hl2.exe
FirewallRules: [TCP Query User{1DDF2AFA-F3CE-41A6-919E-459153B1FEB5}D:\warcraft iii + frozen throne [portable]\war3.exe] => (Allow) D:\warcraft iii + frozen throne [portable]\war3.exe
FirewallRules: [UDP Query User{6C6463C4-8C77-4D16-B845-051A89CB7141}D:\warcraft iii + frozen throne [portable]\war3.exe] => (Allow) D:\warcraft iii + frozen throne [portable]\war3.exe
FirewallRules: [TCP Query User{54672DFC-0EA4-4F4D-A4C5-FAC8DD7EFE73}D:\cod4 - install\setup\data\iw3mp.exe] => (Allow) D:\cod4 - install\setup\data\iw3mp.exe
FirewallRules: [UDP Query User{D849D1AB-EA47-43C6-B3AA-0FD35FD47FC0}D:\cod4 - install\setup\data\iw3mp.exe] => (Allow) D:\cod4 - install\setup\data\iw3mp.exe
FirewallRules: [{6888A420-632B-42CA-9991-0495FDEF34F4}] => (Allow) D:\SteamLibrary\SteamApps\common\Mount & Blade With Fire and Sword\mb_wfas.exe
FirewallRules: [{3E0F50A7-E715-4265-9604-6E8070F4B9A0}] => (Allow) D:\SteamLibrary\SteamApps\common\Mount & Blade With Fire and Sword\mb_wfas.exe
FirewallRules: [{CA85EDBC-DEE7-41C1-80FE-CD6C3477C6F0}] => (Allow) D:\BF4\Battlefield 3\bf3.exe
FirewallRules: [{F4914610-4F63-467D-8366-86A1BB2400E9}] => (Allow) D:\BF4\Battlefield 3\bf3.exe
FirewallRules: [{5D62F0E9-E1C7-43DE-BD78-0B051C9E2F2D}] => (Allow) D:\SteamLibrary\SteamApps\common\Cryptic Studios\Neverwinter.exe
FirewallRules: [{E02161A5-DD3D-4CE3-ACE2-D89827E5A41E}] => (Allow) D:\SteamLibrary\SteamApps\common\Cryptic Studios\Neverwinter.exe
FirewallRules: [{0A5EAF3F-7F02-4739-AF11-172A906B047B}] => (Allow) D:\SteamLibrary\SteamApps\common\Robocraft\Robocraft.exe
FirewallRules: [{3138FD1A-B956-4D5D-830B-493C3783FA45}] => (Allow) D:\SteamLibrary\SteamApps\common\Robocraft\Robocraft.exe
FirewallRules: [{350068E0-61F9-4BB4-9A25-C99D5B115FDA}] => (Allow) D:\SteamLibrary\SteamApps\common\Unturned\Unturned.exe
FirewallRules: [{664DDB74-F2A7-4834-93DC-968417CB3BC4}] => (Allow) D:\SteamLibrary\SteamApps\common\Unturned\Unturned.exe
FirewallRules: [TCP Query User{9BBD13CA-9404-437C-AD83-AE03D8E15B20}D:\steamlibrary\steamapps\common\cryptic studios\neverwinter\live\gameclient.exe] => (Allow) D:\steamlibrary\steamapps\common\cryptic studios\neverwinter\live\gameclient.exe
FirewallRules: [UDP Query User{46B9DB84-649B-4A2C-8EDC-D238858032B4}D:\steamlibrary\steamapps\common\cryptic studios\neverwinter\live\gameclient.exe] => (Allow) D:\steamlibrary\steamapps\common\cryptic studios\neverwinter\live\gameclient.exe
FirewallRules: [{0B95740C-7B09-4D26-98E0-54BFCB947438}] => (Allow) D:\SteamLibrary\SteamApps\common\War of the Roses\run_game.exe
FirewallRules: [{4426E978-E42E-4305-A319-6CEC075D4B2E}] => (Allow) D:\SteamLibrary\SteamApps\common\War of the Roses\run_game.exe
FirewallRules: [{0CE0BE62-7662-4273-8DCE-FBE18DEE1C88}] => (Allow) D:\SteamLibrary\SteamApps\common\GarrysMod\hl2.exe
FirewallRules: [{08971E34-1940-4FFC-BA5F-C45EEFEA6F2A}] => (Allow) D:\SteamLibrary\SteamApps\common\GarrysMod\hl2.exe
FirewallRules: [{9FBC3462-A6DC-46E3-A1A8-3E5940CF7210}] => (Allow) D:\SteamLibrary\SteamApps\common\Stranded Deep\Stranded_Deep_x64.exe
FirewallRules: [{7D250C55-9A12-406F-AE50-0847E1E9F474}] => (Allow) D:\SteamLibrary\SteamApps\common\Stranded Deep\Stranded_Deep_x64.exe
FirewallRules: [{E65E3FAF-35D4-46D4-80ED-E087BA5D272F}] => (Allow) D:\SteamLibrary\SteamApps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{18F64F93-1FF9-41A7-B59B-5F247D9BA43F}] => (Allow) D:\SteamLibrary\SteamApps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{8A5E308A-5666-4158-BF5F-C538CF61F011}] => (Allow) D:\SteamLibrary\SteamApps\common\Assassin's Creed 3\AC3SP.exe
FirewallRules: [{21221994-C711-461A-8E26-7F0525DD3B04}] => (Allow) D:\SteamLibrary\SteamApps\common\Assassin's Creed 3\AC3SP.exe
FirewallRules: [{2A8E854D-F5F5-4174-AEE9-E8E4C1DDBBC0}] => (Allow) D:\SteamLibrary\SteamApps\common\Assassin's Creed 3\AC3MP.exe
FirewallRules: [{496091D6-103C-4529-A28B-7751ABF8FD9E}] => (Allow) D:\SteamLibrary\SteamApps\common\Assassin's Creed 3\AC3MP.exe
FirewallRules: [{3F23D402-7417-4613-9B04-BD58B83C3DC1}] => (Allow) D:\SteamLibrary\SteamApps\common\Napoleon Total War\Napoleon.exe
FirewallRules: [{513C69D1-82D5-46D6-B395-954D16AA6FBD}] => (Allow) D:\SteamLibrary\SteamApps\common\Napoleon Total War\Napoleon.exe
FirewallRules: [{FFD9FCA9-1581-45A8-8EA5-F4FD839A22D6}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Interstellar Marines\InterstellarMarines.exe
FirewallRules: [{8C0F2F13-8BBE-4A1C-9668-DFF33EEB55DB}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Interstellar Marines\InterstellarMarines.exe
FirewallRules: [TCP Query User{6A512906-03A8-43B3-85C2-C3AD63D6F3E8}C:\program files (x86)\zenimax online\launcher\bethesda.net_launcher.exe] => (Allow) C:\program files (x86)\zenimax online\launcher\bethesda.net_launcher.exe
FirewallRules: [UDP Query User{18EC6233-01D6-4D9E-8781-5698EEC4E480}C:\program files (x86)\zenimax online\launcher\bethesda.net_launcher.exe] => (Allow) C:\program files (x86)\zenimax online\launcher\bethesda.net_launcher.exe
FirewallRules: [TCP Query User{32A20775-FB16-4001-A88B-CA3DDB09339B}C:\program files (x86)\dayzlauncher\dayzlauncher.exe] => (Allow) C:\program files (x86)\dayzlauncher\dayzlauncher.exe
FirewallRules: [UDP Query User{7DA30828-EB45-4D32-AC9F-A6313CC11489}C:\program files (x86)\dayzlauncher\dayzlauncher.exe] => (Allow) C:\program files (x86)\dayzlauncher\dayzlauncher.exe
FirewallRules: [TCP Query User{822D2936-F7A0-40C8-86A7-E8E21B32DE9B}C:\program files (x86)\the elder scrolls online\launcher\bethesda.net_launcher.exe] => (Allow) C:\program files (x86)\the elder scrolls online\launcher\bethesda.net_launcher.exe
FirewallRules: [UDP Query User{8A352B2F-5C50-440F-8A21-6ED9F0DAC46F}C:\program files (x86)\the elder scrolls online\launcher\bethesda.net_launcher.exe] => (Allow) C:\program files (x86)\the elder scrolls online\launcher\bethesda.net_launcher.exe
FirewallRules: [TCP Query User{28CBD259-74AD-45E5-92A4-90753623E7CC}C:\users\michel\desktop\the elder scrolls online\launcher\bethesda.net_launcher.exe] => (Allow) C:\users\michel\desktop\the elder scrolls online\launcher\bethesda.net_launcher.exe
FirewallRules: [UDP Query User{8FBC607B-EF0E-4588-9354-B0B112AE3A20}C:\users\michel\desktop\the elder scrolls online\launcher\bethesda.net_launcher.exe] => (Allow) C:\users\michel\desktop\the elder scrolls online\launcher\bethesda.net_launcher.exe
FirewallRules: [{F56DF98E-71A5-4F1B-B0FB-A631F369ECAE}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Banished\Application-steam-x64.exe
FirewallRules: [{63B9AE73-B38B-4D2A-8D7A-2AE3EDB5502B}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Banished\Application-steam-x64.exe
FirewallRules: [{DF51A55B-E650-4347-9DFD-49F81C65A2AF}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Arma 2\arma2.exe
FirewallRules: [{05DC04FE-46AD-46A7-9E92-597A4CB3E74D}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Arma 2\arma2.exe
FirewallRules: [{694A2567-BF99-4231-815F-54311F2B40B2}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Arma 2 Operation Arrowhead\ArmA2OA_BE.exe
FirewallRules: [{8CA33E44-B825-4012-B7EF-63C0306A67F9}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Arma 2 Operation Arrowhead\ArmA2OA_BE.exe
FirewallRules: [{60523A6F-425B-484A-95F1-77A37074AEEF}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Arma 2 Operation Arrowhead\ArmA2OA.exe
FirewallRules: [{F1760015-2A1F-4ED5-AA6D-C135F3D5EA11}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Arma 2 Operation Arrowhead\ArmA2OA.exe
FirewallRules: [{02ECD52B-8361-4572-9DFA-931D5074EC11}] => (Allow) D:\SteamLibrary\SteamApps\common\DayZ\DayZ_BE.exe
FirewallRules: [{BD0171CA-62D3-4F7B-8DFA-2BF967BCEC37}] => (Allow) D:\SteamLibrary\SteamApps\common\DayZ\DayZ_BE.exe
FirewallRules: [TCP Query User{5EBE0459-A5FB-4541-A3DC-90FDBB3DCBCE}D:\steamlibrary\steamapps\common\dayz\dayz.exe] => (Allow) D:\steamlibrary\steamapps\common\dayz\dayz.exe
FirewallRules: [UDP Query User{F7753444-E627-4916-92E6-2BB4F8969BE0}D:\steamlibrary\steamapps\common\dayz\dayz.exe] => (Allow) D:\steamlibrary\steamapps\common\dayz\dayz.exe
FirewallRules: [{CF24B18D-5FAB-427C-BDE3-57DBB6503EBD}] => (Allow) D:\SteamLibrary\SteamApps\common\Medieval II Total War\medieval2.exe
FirewallRules: [{581B5A5E-9C50-40EF-8B9D-1ECDFF735174}] => (Allow) D:\SteamLibrary\SteamApps\common\Medieval II Total War\medieval2.exe
FirewallRules: [TCP Query User{9E6E9009-C509-4EAE-9567-89883955278E}F:\age of empires ii\age2_x1\age2_x2.exe] => (Allow) F:\age of empires ii\age2_x1\age2_x2.exe
FirewallRules: [UDP Query User{51770D2D-A407-4FA5-AD86-577576904361}F:\age of empires ii\age2_x1\age2_x2.exe] => (Allow) F:\age of empires ii\age2_x1\age2_x2.exe
FirewallRules: [TCP Query User{FB47DAF7-2E46-41F6-8C42-740B145F3B6A}C:\sierra\empire earth\empire earth.exe] => (Allow) C:\sierra\empire earth\empire earth.exe
FirewallRules: [UDP Query User{B8FCA55F-5119-4507-8C35-FCE13F42B2D0}C:\sierra\empire earth\empire earth.exe] => (Allow) C:\sierra\empire earth\empire earth.exe
FirewallRules: [TCP Query User{5A52BD26-C98E-4A27-8E56-03C30DF3B9C7}C:\program files (x86)\microsoft games\age of empires ii\empires2.exe] => (Allow) C:\program files (x86)\microsoft games\age of empires ii\empires2.exe
FirewallRules: [UDP Query User{8B5CD25B-3130-400A-9AB2-F529E708AC41}C:\program files (x86)\microsoft games\age of empires ii\empires2.exe] => (Allow) C:\program files (x86)\microsoft games\age of empires ii\empires2.exe
FirewallRules: [{D42CC75B-34F5-4028-8387-755E23ACEB0B}] => (Allow) C:\Program Files (x86)\Microsoft Games\Age of Empires III\age3y.exe
FirewallRules: [{1085C83C-7A0E-4FF2-86AC-FA6A9082C1E9}] => (Allow) C:\Program Files (x86)\Microsoft Games\Age of Empires III\age3y.exe
FirewallRules: [{52298F3B-52CD-4DEA-B46A-A20E24C55F76}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{DD17F9EA-ABF2-421E-8693-A2288B469804}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{3AEB893B-649A-4368-BEC1-DC28C7E97D9D}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{765C2ABF-37F1-400A-A808-A7B446CEE03B}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [TCP Query User{73F932C5-62CE-46EC-8BFE-8811D6837E3E}D:\steamlibrary\steamapps\common\total war arena\arena.exe] => (Allow) D:\steamlibrary\steamapps\common\total war arena\arena.exe
FirewallRules: [UDP Query User{356F4EA2-5661-4195-9D5E-C36B3B2A5DA1}D:\steamlibrary\steamapps\common\total war arena\arena.exe] => (Allow) D:\steamlibrary\steamapps\common\total war arena\arena.exe
FirewallRules: [TCP Query User{2878A5B5-EA29-49B2-918F-6CC8FF189931}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [UDP Query User{E27AA324-946E-48AA-A0B0-E8B22877446A}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [{E9AAA7E2-3AD8-4680-B3D8-71F95C18BF9F}] => (Allow) D:\SteamLibrary\SteamApps\common\chivalrymedievalwarfare\Binaries\Win64\CMW.exe
FirewallRules: [{B936C548-246A-47AA-9745-92D528FDF3D6}] => (Allow) D:\SteamLibrary\SteamApps\common\chivalrymedievalwarfare\Binaries\Win64\CMW.exe
FirewallRules: [{6F1F7089-F5C9-4735-A9C5-0204872B0263}] => (Allow) D:\SteamLibrary\SteamApps\common\chivalrymedievalwarfare\CDW\Binaries\Win64\CDW.exe
FirewallRules: [{8ED8B60F-DD0D-4712-8986-E1A1491E7B4F}] => (Allow) D:\SteamLibrary\SteamApps\common\chivalrymedievalwarfare\CDW\Binaries\Win64\CDW.exe
FirewallRules: [{22E33B08-EFF0-40C6-9AEA-E322C6AE0850}] => (Allow) D:\SteamLibrary\SteamApps\common\chivalrymedievalwarfare\Binaries\Win32\CMW.exe
FirewallRules: [{DEC41335-1C9B-4BA6-AEC4-B6A9309300D2}] => (Allow) D:\SteamLibrary\SteamApps\common\chivalrymedievalwarfare\Binaries\Win32\CMW.exe
FirewallRules: [{4CC67B61-55C7-498D-AF1F-D7D9AF191D8E}] => (Allow) D:\SteamLibrary\SteamApps\common\chivalrymedievalwarfare\CDW\Binaries\Win32\CDW.exe
FirewallRules: [{2541505D-B924-47D8-8D7F-903FFBBD9AE1}] => (Allow) D:\SteamLibrary\SteamApps\common\chivalrymedievalwarfare\CDW\Binaries\Win32\CDW.exe
FirewallRules: [{B41436DD-A23E-4D7A-BAD1-CB9478E17069}] => (Allow) D:\SteamLibrary\SteamApps\common\chivalrymedievalwarfare\ChivLauncher.exe
FirewallRules: [{74D345F4-161B-4EB7-9889-F88E40560548}] => (Allow) D:\SteamLibrary\SteamApps\common\chivalrymedievalwarfare\ChivLauncher.exe
FirewallRules: [{531BD2DD-BC8B-41B3-9439-E60EBE85D4DF}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\CastleCrashers\castle.exe
FirewallRules: [{3BC4847D-52AB-4E99-9209-FE229AB5A764}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\CastleCrashers\castle.exe
FirewallRules: [{DB27E84F-A00D-4DEC-9E7A-B3469310CF19}] => (Allow) D:\SteamLibrary\SteamApps\common\The Forest\TheForest.exe
FirewallRules: [{2B5C8A8B-693F-4580-B164-30063D40404E}] => (Allow) D:\SteamLibrary\SteamApps\common\The Forest\TheForest.exe
FirewallRules: [{01823279-A15D-471F-A775-62D23EC1447B}] => (Allow) D:\SteamLibrary\SteamApps\common\Arma 3\arma3launcher.exe
FirewallRules: [{9336760F-2095-47C1-8B80-8FD2514FC08F}] => (Allow) D:\SteamLibrary\SteamApps\common\Arma 3\arma3launcher.exe
FirewallRules: [TCP Query User{CAB2E1E9-4958-4D44-A16E-8A5E1FBDC730}D:\steamlibrary\steamapps\common\arma 3\arma3.exe] => (Block) D:\steamlibrary\steamapps\common\arma 3\arma3.exe
FirewallRules: [UDP Query User{1F421AF0-7FFE-4ADE-8C83-2F7311E331FB}D:\steamlibrary\steamapps\common\arma 3\arma3.exe] => (Block) D:\steamlibrary\steamapps\common\arma 3\arma3.exe
FirewallRules: [{3B82F3C9-D81E-4A92-B3BA-C88AA872D06E}] => (Allow) D:\SteamLibrary\SteamApps\common\Dishonored\Binaries\Win32\Dishonored.exe
FirewallRules: [{C7732A81-5B75-4A49-83AE-D5D969269E08}] => (Allow) D:\SteamLibrary\SteamApps\common\Dishonored\Binaries\Win32\Dishonored.exe
FirewallRules: [{A4B6424E-085B-431D-A365-55131FBF08FA}] => (Allow) D:\SteamLibrary\SteamApps\common\PAYDAY 2\payday2_win32_release.exe
FirewallRules: [{BABEBCF0-772D-45A6-83CD-F54BB3AC02EF}] => (Allow) D:\SteamLibrary\SteamApps\common\PAYDAY 2\payday2_win32_release.exe
FirewallRules: [{3290CF6B-956E-47D8-8EA7-207840641A2F}] => (Allow) D:\SteamLibrary\SteamApps\common\Miscreated\Miscreated.exe
FirewallRules: [{B5F977D6-408C-41B1-8DC8-6D5CE7E9E657}] => (Allow) D:\SteamLibrary\SteamApps\common\Miscreated\Miscreated.exe
FirewallRules: [{F3DEE0EE-B325-4B04-B35D-03C86BCB20E2}] => (Allow) D:\SteamLibrary\SteamApps\common\Miscreated\Bin64\Miscreated.exe
FirewallRules: [{AF529E2E-D9C8-453B-B7E3-7BE762A0B0D9}] => (Allow) D:\SteamLibrary\SteamApps\common\Miscreated\Bin64\Miscreated.exe
FirewallRules: [{660D87AF-2EE9-4D16-A4DC-B5208E1C6F22}] => (Allow) D:\SteamLibrary\SteamApps\common\Total War Arena\launcher\launcher.exe
FirewallRules: [{4FA19E5D-5B0D-473A-9BAB-CBDC86B520FA}] => (Allow) D:\SteamLibrary\SteamApps\common\Total War Arena\launcher\launcher.exe
FirewallRules: [{614BCC86-9741-4E71-9873-06BE87B472F3}] => (Allow) D:\SteamLibrary\SteamApps\common\Trove\GlyphClient.exe
FirewallRules: [{FC3BF8D1-B326-4645-8DA1-A1305B10C11B}] => (Allow) D:\SteamLibrary\SteamApps\common\Trove\GlyphClient.exe
FirewallRules: [{14FC4374-0995-4135-9404-DE0AEDF4597D}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{4C0C2627-E58F-406C-935E-8F5241082B8E}] => (Allow) D:\SteamLibrary\SteamApps\common\Stronghold Crusader Extreme\Stronghold Crusader.exe
FirewallRules: [{E1A450A6-AF5F-4946-AE0E-FC77FA33E762}] => (Allow) D:\SteamLibrary\SteamApps\common\Stronghold Crusader Extreme\Stronghold Crusader.exe
FirewallRules: [{02D7F3E6-A3CA-4C6D-8D0E-2B13B258154F}] => (Allow) D:\SteamLibrary\SteamApps\common\Gothic 3\Gothic3.exe
FirewallRules: [{D3820B1F-4786-4C7B-8C66-E205F04B39EC}] => (Allow) D:\SteamLibrary\SteamApps\common\Gothic 3\Gothic3.exe
FirewallRules: [{4D154960-2DCF-4F6D-A61B-E1816706D997}] => (Allow) D:\SteamLibrary\SteamApps\common\Stronghold Crusader Extreme\Stronghold_Crusader_Extreme.exe
FirewallRules: [{4F9D5454-69FB-4477-805D-E8E039436829}] => (Allow) D:\SteamLibrary\SteamApps\common\Stronghold Crusader Extreme\Stronghold_Crusader_Extreme.exe
FirewallRules: [{D320B643-A305-457B-BF6A-E4DE6CBDD870}] => (Allow) D:\BF4\Battlefield 4\bf4_x86.exe
FirewallRules: [{31459CD2-1A3F-4A8B-AE6A-EC7BDC481021}] => (Allow) D:\BF4\Battlefield 4\bf4_x86.exe
FirewallRules: [{13C0C097-359F-4BC2-946C-AE880DBF2573}] => (Allow) D:\BF4\Battlefield 4\bf4.exe
FirewallRules: [{4689CB01-E185-4FFC-9674-45B675B4496B}] => (Allow) D:\BF4\Battlefield 4\bf4.exe
FirewallRules: [{11F5029F-50FA-450B-97EA-C76172BA8DDA}] => (Allow) D:\Steam\Steam.exe
FirewallRules: [{93BAFA84-76B8-4037-BFEA-4CE9F2B6FCAA}] => (Allow) D:\Steam\Steam.exe
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (07/23/2015 02:20:11 PM) (Source: OverwolfUpdater) (EventID: 0) (User: )
Description: Der Dienst kann nicht gestartet werden. Es wird bereits eine Instanz des Dienstes ausgeführt
Error: (07/23/2015 02:20:11 PM) (Source: OverwolfUpdater) (EventID: 0) (User: )
Description: Der Dienst kann nicht gestartet werden. Das Handle ist ungültig
Error: (07/23/2015 02:16:23 PM) (Source: MsiInstaller) (EventID: 1024) (User: Michel)
Description: Produkt: Adobe Reader XI - Deutsch - Update "{AC76BA86-7AD7-0000-2550-7A8C40011012}" konnte nicht installiert werden. Fehlercode 1625. Windows Installer kann Protokolle erstellen, um bei der Problembehandlung betreffend der Installation von Softwarepaketen behilflich zu sein. Verwenden Sie folgenden Link, um Anweisungen zur Aktivierung der Protokollierungsunterstützung zu erhalten: hxxp://go.microsoft.com/fwlink/?LinkId=23127
Error: (07/23/2015 02:15:52 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: CCC.exe, Version: 4.5.0.0, Zeitstempel: 0x5254e12e
Name des fehlerhaften Moduls: clr.dll, Version: 4.0.30319.34209, Zeitstempel: 0x5348a1ef
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000000005e2d30
ID des fehlerhaften Prozesses: 0x1848
Startzeit der fehlerhaften Anwendung: 0xCCC.exe0
Pfad der fehlerhaften Anwendung: CCC.exe1
Pfad des fehlerhaften Moduls: CCC.exe2
Berichtskennung: CCC.exe3
Vollständiger Name des fehlerhaften Pakets: CCC.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: CCC.exe5
Error: (07/23/2015 02:15:20 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: GWXUX.exe, Version: 6.3.9600.17924, Zeitstempel: 0x55959290
Name des fehlerhaften Moduls: ntdll.dll, Version: 6.3.9600.17736, Zeitstempel: 0x550f4336
Ausnahmecode: 0xc0000005
Fehleroffset: 0x000000000005473b
ID des fehlerhaften Prozesses: 0x1a08
Startzeit der fehlerhaften Anwendung: 0xGWXUX.exe0
Pfad der fehlerhaften Anwendung: GWXUX.exe1
Pfad des fehlerhaften Moduls: GWXUX.exe2
Berichtskennung: GWXUX.exe3
Vollständiger Name des fehlerhaften Pakets: GWXUX.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: GWXUX.exe5
Error: (07/23/2015 02:14:31 PM) (Source: MsiInstaller) (EventID: 1024) (User: Michel)
Description: Produkt: Adobe Reader XI - Deutsch - Update "{AC76BA86-7AD7-0000-2550-7A8C40011012}" konnte nicht installiert werden. Fehlercode 1625. Windows Installer kann Protokolle erstellen, um bei der Problembehandlung betreffend der Installation von Softwarepaketen behilflich zu sein. Verwenden Sie folgenden Link, um Anweisungen zur Aktivierung der Protokollierungsunterstützung zu erhalten: hxxp://go.microsoft.com/fwlink/?LinkId=23127
Error: (07/23/2015 02:14:17 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: CCC.exe, Version: 4.5.0.0, Zeitstempel: 0x5254e12e
Name des fehlerhaften Moduls: clr.dll, Version: 4.0.30319.34209, Zeitstempel: 0x5348a1ef
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000000005e2d30
ID des fehlerhaften Prozesses: 0x1748
Startzeit der fehlerhaften Anwendung: 0xCCC.exe0
Pfad der fehlerhaften Anwendung: CCC.exe1
Pfad des fehlerhaften Moduls: CCC.exe2
Berichtskennung: CCC.exe3
Vollständiger Name des fehlerhaften Pakets: CCC.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: CCC.exe5
Error: (07/23/2015 02:14:03 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: GWXUX.exe, Version: 6.3.9600.17924, Zeitstempel: 0x55959290
Name des fehlerhaften Moduls: mshtml.dll, Version: 11.0.9600.17924, Zeitstempel: 0x5595a0f4
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0000000000a126c0
ID des fehlerhaften Prozesses: 0xab0
Startzeit der fehlerhaften Anwendung: 0xGWXUX.exe0
Pfad der fehlerhaften Anwendung: GWXUX.exe1
Pfad des fehlerhaften Moduls: GWXUX.exe2
Berichtskennung: GWXUX.exe3
Vollständiger Name des fehlerhaften Pakets: GWXUX.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: GWXUX.exe5
Error: (07/22/2015 09:38:33 PM) (Source: MsiInstaller) (EventID: 1024) (User: Michel)
Description: Produkt: Adobe Reader XI - Deutsch - Update "{AC76BA86-7AD7-0000-2550-7A8C40011012}" konnte nicht installiert werden. Fehlercode 1625. Windows Installer kann Protokolle erstellen, um bei der Problembehandlung betreffend der Installation von Softwarepaketen behilflich zu sein. Verwenden Sie folgenden Link, um Anweisungen zur Aktivierung der Protokollierungsunterstützung zu erhalten: hxxp://go.microsoft.com/fwlink/?LinkId=23127
Error: (07/22/2015 09:38:00 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: CCC.exe, Version: 4.5.0.0, Zeitstempel: 0x5254e12e
Name des fehlerhaften Moduls: ntdll.dll, Version: 6.3.9600.17736, Zeitstempel: 0x550f4336
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0000000000054719
ID des fehlerhaften Prozesses: 0x1398
Startzeit der fehlerhaften Anwendung: 0xCCC.exe0
Pfad der fehlerhaften Anwendung: CCC.exe1
Pfad des fehlerhaften Moduls: CCC.exe2
Berichtskennung: CCC.exe3
Vollständiger Name des fehlerhaften Pakets: CCC.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: CCC.exe5
System errors:
=============
Error: (07/22/2015 09:53:30 PM) (Source: Microsoft-Windows-Kernel-Power) (EventID: 137) (User: )
Description: 5
Error: (07/22/2015 09:48:26 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT-AUTORITÄT)
Description: Installationsfehler: Die Installation des folgenden Updates ist mit Fehler 0x80070002 fehlgeschlagen: microsoft.windowscommunicationsapps
Error: (07/22/2015 09:48:26 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT-AUTORITÄT)
Description: Installationsfehler: Die Installation des folgenden Updates ist mit Fehler 0x80070002 fehlgeschlagen: Microsoft.BingSports
Error: (07/22/2015 09:48:20 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT-AUTORITÄT)
Description: Installationsfehler: Die Installation des folgenden Updates ist mit Fehler 0x80070002 fehlgeschlagen: Microsoft.ZuneMusic
Error: (07/22/2015 09:43:23 PM) (Source: Schannel) (EventID: 4120) (User: NT-AUTORITÄT)
Description: Es wurde eine schwerwiegende Warnung generiert und an den Remoteendpunkt gesendet. Dies kann dazu führen, dass die Verbindung beendet wird. Die schwerwiegende Warnung hat folgenden für das TLS-Protokoll definierten Code: 43. Der Windows-SChannel-Fehlerstatus lautet: 252.
Error: (07/22/2015 09:38:14 PM) (Source: Schannel) (EventID: 4120) (User: NT-AUTORITÄT)
Description: Es wurde eine schwerwiegende Warnung generiert und an den Remoteendpunkt gesendet. Dies kann dazu führen, dass die Verbindung beendet wird. Die schwerwiegende Warnung hat folgenden für das TLS-Protokoll definierten Code: 43. Der Windows-SChannel-Fehlerstatus lautet: 252.
Error: (07/22/2015 09:37:08 PM) (Source: Service Control Manager) (EventID: 7006) (User: )
Description: Der Aufruf "ScRegSetValueExW" ist für "FailureActions" aufgrund folgenden Fehlers fehlgeschlagen:
%%5
Error: (07/22/2015 09:37:06 PM) (Source: volsnap) (EventID: 35) (User: )
Description: Die Schattenkopien von Volume "C:" wurden abgebrochen, weil der Schattenkopiespeicher nicht vergrößert werden kann.
Error: (07/22/2015 09:37:00 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Das System wurde zuvor am 22.07.2015 um 21:00:04 unerwartet heruntergefahren.
Error: (07/22/2015 09:16:46 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Steam Client Service" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1053
Microsoft Office:
=========================
Error: (07/23/2015 02:20:11 PM) (Source: OverwolfUpdater) (EventID: 0) (User: )
Description: Der Dienst kann nicht gestartet werden. Es wird bereits eine Instanz des Dienstes ausgeführt
Error: (07/23/2015 02:20:11 PM) (Source: OverwolfUpdater) (EventID: 0) (User: )
Description: Der Dienst kann nicht gestartet werden. Das Handle ist ungültig
Error: (07/23/2015 02:16:23 PM) (Source: MsiInstaller) (EventID: 1024) (User: Michel)
Description: Adobe Reader XI - Deutsch{AC76BA86-7AD7-0000-2550-7A8C40011012}1625(NULL)(NULL)(NULL)
Error: (07/23/2015 02:15:52 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: CCC.exe4.5.0.05254e12eclr.dll4.0.30319.342095348a1efc000000500000000005e2d30184801d0c5413cf5e4a4C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exeC:\Windows\Microsoft.NET\Framework64\v4.0.30319\clr.dll8f712980-3134-11e5-8324-448a5b2faa3b
Error: (07/23/2015 02:15:20 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: GWXUX.exe6.3.9600.1792455959290ntdll.dll6.3.9600.17736550f4336c0000005000000000005473b1a0801d0c5413e588f79C:\Windows\System32\GWX\GWXUX.exeC:\Windows\SYSTEM32\ntdll.dll7c255cad-3134-11e5-8324-448a5b2faa3b
Error: (07/23/2015 02:14:31 PM) (Source: MsiInstaller) (EventID: 1024) (User: Michel)
Description: Adobe Reader XI - Deutsch{AC76BA86-7AD7-0000-2550-7A8C40011012}1625(NULL)(NULL)(NULL)
Error: (07/23/2015 02:14:17 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: CCC.exe4.5.0.05254e12eclr.dll4.0.30319.342095348a1efc000000500000000005e2d30174801d0c541037e27eeC:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exeC:\Windows\Microsoft.NET\Framework64\v4.0.30319\clr.dll564a6105-3134-11e5-8324-448a5b2faa3b
Error: (07/23/2015 02:14:03 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: GWXUX.exe6.3.9600.1792455959290mshtml.dll11.0.9600.179245595a0f4c00000050000000000a126c0ab001d0c54110370e5eC:\Windows\System32\GWX\GWXUX.exeC:\Windows\System32\mshtml.dll4e15a9ac-3134-11e5-8324-448a5b2faa3b
Error: (07/22/2015 09:38:33 PM) (Source: MsiInstaller) (EventID: 1024) (User: Michel)
Description: Adobe Reader XI - Deutsch{AC76BA86-7AD7-0000-2550-7A8C40011012}1625(NULL)(NULL)(NULL)
Error: (07/22/2015 09:38:00 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: CCC.exe4.5.0.05254e12entdll.dll6.3.9600.17736550f4336c00000050000000000054719139801d0c4b5d5fae8a2C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exeC:\Windows\SYSTEM32\ntdll.dll28b30616-30a9-11e5-8324-448a5b2faa3b
==================== Memory info ===========================
Processor: AMD FX(tm)-6300 Six-Core Processor
Percentage of memory in use: 40%
Total physical RAM: 4044.05 MB
Available physical RAM: 2394.09 MB
Total Virtual: 8140.05 MB
Available Virtual: 6258.7 MB
==================== Drives ================================
Drive c: (System) (Fixed) (Total:111.45 GB) (Free:1.76 GB) NTFS
Drive d: (Volume) (Fixed) (Total:931.51 GB) (Free:602.3 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 111.8 GB) (Disk ID: 51531BE5)
Partition 1: (Active) - (Size=350 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=111.4 GB) - (Type=07 NTFS)
========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 1CC864AB)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)
==================== End of log ============================
--- --- ---
23.07.2015, 13:41
Hybrid-Darstellung
