| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: Virus: Registry BlockiertWindows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
25.12.2013, 12:11
| #3 |
| |  Virus: Registry Blockiert Danke cosinus, dass du so schnell weiterhelfen konntest.
__________________Ich entschuldige mich nochmals, falls ich wichtige Sachen vergessen hab zu erwähnen. Zu den Virenscannern: Nein. Die Virenscanner (Avira, danach Avast) haben nichts ausser verdächtigen Dateien gefunden, die aber harmlos sind. Dementsprechend gibts keine Logs. Ich habe das Farbar Recovery Scan Tool runtergeladen und gestartet und das ganze mal gescannt. FRST Logfile: FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 23-12-2013 01
Ran by BlueRsX (administrator) on BLUERSX-PC on 25-12-2013 12:02:33
Running from C:\Users\BlueRsX\Downloads
Windows 7 Ultimate Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(AMD) C:\Windows\System32\atiesrxx.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Pen\Pen_TouchService.exe
(Microsoft Corporation) C:\Windows\System32\wisptis.exe
(AMD) C:\Windows\System32\atieclxx.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Microsoft Corporation) C:\Windows\System32\wisptis.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Pen\Pen_TouchUser.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.22.3\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.22.3\GoogleCrashHandler64.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe
(Skillbrains) C:\Users\BlueRsX\AppData\Local\Skillbrains\lightshot\4.4.2.10\Lightshot.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(ManyCam LLC) C:\Program Files (x86)\ManyCam\Bin\ManyCam.exe
(Akamai Technologies, Inc.) C:\Users\BlueRsX\AppData\Local\Akamai\netsession_win.exe
(Akamai Technologies, Inc.) C:\Users\BlueRsX\AppData\Local\Akamai\netsession_win.exe
() C:\Program Files (x86)\WhatPulse2\whatpulse.exe
() C:\Ace of Spades\Bamboo Dock\BambooCore.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\CEPServiceManager4\CEPServiceManager.exe
() C:\Program Files (x86)\Expat Shield\bin\openvpnas.exe
(Desura Pty Ltd) C:\Program Files (x86)\Desura\desura.exe
(AnchorFree Inc.) C:\Program Files (x86)\Expat Shield\HssWPR\hsssrv.exe
() C:\Program Files (x86)\Expat Shield\bin\hsswd.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
(Dropbox, Inc.) C:\Users\BlueRsX\AppData\Roaming\Dropbox\bin\Dropbox.exe
() C:\Program Files\Autodesk\3ds Max 2014\NVIDIA\Satellite\raysat_3dsmax2014_64server.exe
(MyPCBackup.com) C:\Program Files (x86)\MyPC Backup\MyPC Backup.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(Razer Inc.) C:\Program Files (x86)\Razer\Razer Game Booster\RzKLService.exe
(OpenOffice.org) C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe
(Stardock) C:\Program Files (x86)\Stardock\ObjectDockFree\ObjectDock.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Pen\Pen_Tablet.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Pen\Pen_TabletUser.exe
(OpenOffice.org) C:\Program Files (x86)\OpenOffice.org 3\program\soffice.bin
(Wacom Technology, Corp.) C:\Program Files\Tablet\Pen\Pen_Tablet.exe
() C:\Program Files (x86)\BuzzSearch\bin\utilBuzzSearch.exe
(Stardock) C:\Program Files (x86)\Stardock\ObjectDockFree\Dock64.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\ink\InputPersonalization.exe
() C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe
(MAGIX AG) C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\HEX\Adobe CEF Helper.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_170.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_170.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [AdobeAAMUpdater-1.0] - C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\updaterstartuputility.exe [472984 2013-06-03] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [BambooCore] - C:\Ace of Spades\Bamboo Dock\BambooCore.exe [646744 2012-10-16] ()
HKLM-x32\...\Run: [amd_dc_opt] - C:\Program Files (x86)\AMD\Dual-Core Optimizer\amd_dc_opt.exe [77824 2008-07-22] (AMD)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [253816 2013-03-12] (Oracle Corporation)
HKLM-x32\...\Run: [Adobe Creative Cloud] - C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2236816 2013-07-12] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AvastUI.exe] - C:\Program Files\AVAST Software\Avast\AvastUI.exe [3764024 2013-12-24] (AVAST Software)
HKLM-x32\...\Run: [AdobeCS5.5ServiceManager] - C:\Program Files (x86)\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe [1523360 2011-01-12] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SwitchBoard] - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [20131121] - C:\Program Files\AVAST Software\Avast\Setup\emupdate\f8ed429a-0684-444f-9df3-503b8aa4976c.exe [180184 2013-11-23] (AVAST Software)
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] - C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [3806544 2013-11-29] (LogMeIn Inc.)
HKCU\...\Run: [Steam] - C:\Program Files (x86)\Steam\Steam.exe [1823656 2013-12-11] (Valve Corporation)
HKCU\...\Run: [mapdisk] - C:\Users\BlueRsX\Documents\ArmAWork\mapdisk.bat [50 2013-01-17] ()
HKCU\...\Run: [LightShot] - C:\Users\BlueRsX\AppData\Local\Skillbrains\lightshot\LightShot.exe [226592 2013-09-27] ()
HKCU\...\Run: [Skype] - C:\Program Files (x86)\Skype\Phone\Skype.exe [20584608 2013-11-14] (Skype Technologies S.A.)
HKCU\...\Run: [Desura] - C:\Program Files (x86)\Desura\desura.exe [2529096 2013-03-23] (Desura Pty Ltd)
HKCU\...\Run: [ManyCam] - C:\Program Files (x86)\ManyCam\Bin\ManyCam.exe [5399888 2013-06-10] (ManyCam LLC)
HKCU\...\Run: [Akamai NetSession Interface] - C:\Users\BlueRsX\AppData\Local\Akamai\netsession_win.exe [4489472 2013-06-05] (Akamai Technologies, Inc.)
HKCU\...\Run: [DAEMON Tools Lite] - C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3673184 2013-07-03] (Disc Soft Ltd)
HKCU\...\Run: [WhatPulse] - C:\Program Files (x86)\WhatPulse2\whatpulse.exe [3112960 2013-11-27] ()
MountPoints2: {246ef77d-3600-11e2-ae1b-b9c0d837dd4d} - E:\Autorun.exe
MountPoints2: {7e41c194-a081-11e2-8d36-002354404155} - F:\shelexec.exe Das ist Farnell.wmv
Startup: C:\Users\BlueRsX\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
ShortcutTarget: Dropbox.lnk -> C:\Users\BlueRsX\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
Startup: C:\Users\BlueRsX\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MyPC Backup.lnk
ShortcutTarget: MyPC Backup.lnk -> C:\Program Files (x86)\MyPC Backup\MyPC Backup.exe (MyPCBackup.com)
Startup: C:\Users\BlueRsX\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.4.1.lnk
ShortcutTarget: OpenOffice.org 3.4.1.lnk -> C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe ()
Startup: C:\Users\BlueRsX\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Stardock ObjectDock.lnk
ShortcutTarget: Stardock ObjectDock.lnk -> C:\Program Files (x86)\Stardock\ObjectDockFree\ObjectDock.exe (Stardock)
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.apeha.ru
BHO: avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Expat Shield Class - {3706EE7C-3CAD-445D-8A43-03EBC3B75908} - C:\Program Files (x86)\Expat Shield\HssIE\ExpatIE_64.dll (AnchorFree Inc.)
BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO: DVDVideoSoft WebPageAdjuster Class - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns64.dll No File
BHO-x32: Expat Shield Class - {3706EE7C-3CAD-445D-8A43-03EBC3B75908} - C:\Program Files (x86)\Expat Shield\HssIE\ExpatIE.dll (AnchorFree Inc.)
BHO-x32: BuzzSearch - {5cf5a690-c8f4-488e-9d20-f21aef602d41} - C:\Program Files (x86)\BuzzSearch\BuzzSearchBHO.dll (BuzzSearch)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: DVDVideoSoft WebPageAdjuster Class - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns.dll No File
Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
Toolbar: HKLM - avast! Online Security - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
Toolbar: HKLM-x32 - avast! Online Security - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\..\Interfaces\{A118592F-7855-4FF4-83AE-B5EA6DF024C3}: [NameServer]8.8.8.8
FireFox:
========
FF ProfilePath: C:\Users\BlueRsX\AppData\Roaming\Mozilla\Firefox\Profiles\lfes38bc.default
FF NetworkProxy: "ftp", "46.137.17.166"
FF NetworkProxy: "ftp_port", 3128
FF NetworkProxy: "http", "46.137.17.166"
FF NetworkProxy: "http_port", 3128
FF NetworkProxy: "no_proxies_on", "localhost, 127.0.0.1, stealthy.co"
FF NetworkProxy: "share_proxy_settings", true
FF NetworkProxy: "socks", "46.137.17.166"
FF NetworkProxy: "socks_port", 3128
FF NetworkProxy: "ssl", "46.137.17.166"
FF NetworkProxy: "ssl_port", 3128
FF NetworkProxy: "type", 0
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_170.dll ()
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect - C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_170.dll ()
FF Plugin-x32: @esn.me/esnsonar,version=0.70.4 - C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll (ESN Social Software AB)
FF Plugin-x32: @esn/esnlaunch,version=2.1.3 - C:\Program Files (x86)\Battlelog Web Plugins\2.1.3\npesnlaunch.dll No File
FF Plugin-x32: @esn/npbattlelog,version=2.3.2 - C:\Program Files (x86)\Battlelog Web Plugins\2.3.2\npbattlelog.dll (EA Digital Illusions CE AB)
FF Plugin-x32: @Google.com/GoogleEarthPlugin - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @java.com/DTPlugin,version=10.25.2 - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.25.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @wacom.com/wacom-plugin,version=1.1.0.5 - C:\Program Files (x86)\TabletPlugins\npwacom.dll (Wacom, Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect - C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll (Adobe Systems)
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Users\BlueRsX\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF Plugin HKCU: pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF Plugin HKCU: ubisoft.com/uplaypc - C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll ()
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: Battlefield Play4Free - C:\Users\BlueRsX\AppData\Roaming\Mozilla\Firefox\Profiles\lfes38bc.default\Extensions\battlefieldplay4free@ea.com
FF Extension: FT DeepDark - C:\Users\BlueRsX\AppData\Roaming\Mozilla\Firefox\Profiles\lfes38bc.default\Extensions\{77d2ed30-4cd2-11e0-b8af-0800200c9a66}
FF Extension: BuzzSearch - C:\Users\BlueRsX\AppData\Roaming\Mozilla\Firefox\Profiles\lfes38bc.default\Extensions\firefox@mybuzzsearch.com.xpi
FF Extension: Stealthy - C:\Users\BlueRsX\AppData\Roaming\Mozilla\Firefox\Profiles\lfes38bc.default\Extensions\stealthyextension@gmail.com.xpi
FF Extension: NoScript - C:\Users\BlueRsX\AppData\Roaming\Mozilla\Firefox\Profiles\lfes38bc.default\Extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi
FF Extension: Adblock Plus - C:\Users\BlueRsX\AppData\Roaming\Mozilla\Firefox\Profiles\lfes38bc.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
FF Extension: Expat Shield Helper (Please allow this installation) - C:\Program Files (x86)\Mozilla Firefox\extensions\afurladvisor@anchorfree.com
FF HKLM-x32\...\Firefox\Extensions: [webbooster@iminent.com] - C:\Program Files (x86)\Iminent\webbooster@iminent.com
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF HKLM-x32\...\Firefox\Extensions: [{ACAA314B-EEBA-48e4-AD47-84E31C44796C}] - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\ff\
Chrome:
=======
CHR HomePage:
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\30.0.1599.101\PepperFlash\pepflashplayer.dll No File
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\30.0.1599.101\ppGoogleNaClPluginChrome.dll No File
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\30.0.1599.101\pdf.dll No File
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL (Microsoft Corporation)
CHR Plugin: (Google Earth Plugin) - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.124\npGoogleUpdate3.dll No File
CHR Plugin: (Java(TM) Platform SE 7 U9) - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
CHR Plugin: ( Wacom Dynamic Link Library) - C:\Program Files (x86)\TabletPlugins\npwacom.dll (Wacom, Inc.)
CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_5_502_110.dll No File
CHR Plugin: (Java Deployment Toolkit 7.0.90.5) - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
CHR Extension: (Magic Actions for YouTube\u2122) - C:\Users\BlueRsX\AppData\Local\Google\Chrome\User Data\Default\Extensions\abjcfabbhafbcdfjoecdgepllmpfceif\6.2.4_0
CHR Extension: (Google Drive) - C:\Users\BlueRsX\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0
CHR Extension: (JAM with Chrome) - C:\Users\BlueRsX\AppData\Local\Google\Chrome\User Data\Default\Extensions\bggjdpbfjakfkacljidachigalghbnpk\0.2_0
CHR Extension: (YouTube) - C:\Users\BlueRsX\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
CHR Extension: (HIFANA X W+K TOKYO LAB) - C:\Users\BlueRsX\AppData\Local\Google\Chrome\User Data\Default\Extensions\bmhjjmolopikkbigemoocmebohfpnmkj\2_0
CHR Extension: (Google Search) - C:\Users\BlueRsX\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
CHR Extension: (AdBlock) - C:\Users\BlueRsX\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.6.8_0
CHR Extension: (Ultimate Flash Sonic) - C:\Users\BlueRsX\AppData\Local\Google\Chrome\User Data\Default\Extensions\hmgmfbijldhdncjcipeocgkgbjhaecfp\1.0_0
CHR Extension: (CanvasDraw) - C:\Users\BlueRsX\AppData\Local\Google\Chrome\User Data\Default\Extensions\knfimpamngmggpbamfoomdpebdoleghe\2_0
CHR Extension: (Chrome In-App Payments service) - C:\Users\BlueRsX\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.11_0
CHR Extension: (Battlefield Play4Free) - C:\Users\BlueRsX\AppData\Local\Google\Chrome\User Data\Default\Extensions\oiokahphinmbmakkehgelkmpolmnbkdh\1.0.96.0_0
CHR Extension: (AdBlock) - C:\Users\BlueRsX\AppData\Local\Google\Chrome\User Data\Default\Extensions\onomnaapllbibeeggnncehgfnkfafpfb\0.2_0
CHR Extension: (Click&Clean App) - C:\Users\BlueRsX\AppData\Local\Google\Chrome\User Data\Default\Extensions\pdabfienifkbhoihedcgeogidfmibmhp\8.0_0
CHR Extension: (Gmail) - C:\Users\BlueRsX\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx
CHR HKLM-x32\...\Chrome\Extension: [jhjjdgbhohaallcimgcmakfiobacimkm] - C:\Program Files (x86)\BuzzSearch\jhjjdgbhohaallcimgcmakfiobacimkm.crx
==================== Services (Whitelisted) =================
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2013-12-24] (AVAST Software)
S2 BackupStack; C:\Program Files (x86)\MyPC Backup\BackupStack.exe [38440 2013-09-19] (Just Develop It)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [49152 2013-02-04] ()
R2 ExpatShieldService; C:\Program Files (x86)\Expat Shield\bin\openvpnas.exe [331608 2012-01-17] ()
S3 ExpatTrayService; C:\Program Files (x86)\Expat Shield\bin\ExpatTrayService.EXE [77520 2012-01-17] ()
R2 ExpatWd; C:\Program Files (x86)\Expat Shield\bin\hsswd.exe [329544 2012-01-05] ()
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [377104 2013-10-11] (LogMeIn, Inc.)
R2 mi-raysat_3dsmax2014_64; C:\Program Files\Autodesk\3ds Max 2014\NVIDIA\Satellite\raysat_3dsmax2014_64server.exe [86016 2011-09-15] ()
R2 PnkBstrA; C:\Windows\SysWow64\PnkBstrA.exe [76888 2013-10-05] ()
S3 rpcapd; C:\Program Files (x86)\WinPcap\rpcapd.exe [118520 2013-03-01] (Riverbed Technology, Inc.)
R2 RzKLService; C:\Program Files (x86)\Razer\Razer Game Booster\RzKLService.exe [105448 2013-11-22] (Razer Inc.)
S3 TunngleService; C:\Program Files (x86)\Tunngle\TnglCtrl.exe [759192 2013-09-03] (Tunngle.net GmbH)
S2 Update BuzzSearch; C:\Program Files (x86)\BuzzSearch\updateBuzzSearch.exe [66336 2013-11-08] ()
R2 Util BuzzSearch; C:\Program Files (x86)\BuzzSearch\bin\utilBuzzSearch.exe [66336 2013-11-16] ()
==================== Drivers (Whitelisted) ====================
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [78648 2013-12-24] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [92544 2013-10-24] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2013-10-24] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1034464 2013-12-24] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [422216 2013-12-24] (AVAST Software)
R3 aswStm; C:\Windows\system32\drivers\aswStm.sys [82744 2013-12-24] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [207904 2013-12-24] ()
S2 atksgt; C:\Windows\System32\DRIVERS\atksgt.sys [310984 2013-01-22] ()
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283064 2013-07-28] (Disc Soft Ltd)
S3 libusb0; C:\Windows\System32\DRIVERS\libusb0.sys [42944 2010-07-28] (hxxp://libusb-win32.sourceforge.net)
R2 lirsgt; C:\Windows\System32\DRIVERS\lirsgt.sys [42696 2013-01-20] ()
R3 ManyCam; C:\Windows\System32\DRIVERS\mcvidrv_x64.sys [44928 2012-10-11] (ManyCam LLC)
R3 mcaudrv_simple; C:\Windows\System32\drivers\mcaudrv_x64.sys [28160 2013-01-31] (ManyCam LLC)
R3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [8192 2005-03-29] ()
R2 NPF; C:\Windows\System32\drivers\npf.sys [36600 2013-03-01] (Riverbed Technology, Inc.)
R3 tap0901t; C:\Windows\System32\DRIVERS\tap0901t.sys [31232 2009-09-16] (Tunngle.net)
S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [x]
S3 FairplayKD; \??\C:\ProgramData\MTA San Andreas All\Common\temp\FairplayKD.sys [x]
S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [x]
S3 tsusbhub; system32\drivers\tsusbhub.sys [x]
S3 VGPU; System32\drivers\rdvgkmd.sys [x]
S3 WinRing0_1_2_0; \??\C:\Program Files (x86)\IObit\Game Booster 3\Driver\WinRing0x64.sys [x]
S3 X6va008; \??\C:\Windows\SysWOW64\Drivers\X6va008 [x]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2013-12-25 12:02 - 2013-12-25 12:03 - 00023133 _____ C:\Users\BlueRsX\Downloads\FRST.txt
2013-12-25 12:01 - 2013-12-25 12:01 - 00000000 ____D C:\FRST
2013-12-25 12:00 - 2013-12-25 12:00 - 01928636 _____ (Farbar) C:\Users\BlueRsX\Downloads\FRST64.exe
2013-12-24 22:56 - 2013-12-24 22:56 - 01510511 _____ C:\Users\BlueRsX\Downloads\ArmA II Launcher 2010-07-22.zip
2013-12-24 15:37 - 2013-12-24 15:37 - 00000299 _____ C:\Users\BlueRsX\Desktop\unbenannt.mcx
2013-12-24 15:14 - 2013-12-24 15:14 - 00000963 _____ C:\Users\BlueRsX\Desktop\MacroX.lnk
2013-12-24 15:14 - 2013-12-24 15:14 - 00000000 ____D C:\Users\BlueRsX\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MacroX
2013-12-24 15:14 - 2013-12-24 15:14 - 00000000 ____D C:\Program Files (x86)\MacroX
2013-12-24 15:13 - 2013-12-24 15:13 - 02480915 _____ C:\Users\BlueRsX\Downloads\macrox!.exe
2013-12-24 15:10 - 2013-12-24 15:10 - 00001071 _____ C:\Users\Public\Desktop\Macro Recorder.lnk
2013-12-24 15:10 - 2013-12-24 15:10 - 00000000 ____D C:\Program Files (x86)\MacroRecorder
2013-12-24 15:09 - 2013-12-24 15:09 - 00719480 _____ (Jitbit Software ) C:\Users\BlueRsX\Downloads\MacroRecorderSetup.exe
2013-12-24 15:06 - 2013-12-24 15:06 - 02641401 _____ C:\Users\BlueRsX\Downloads\AutoHotkey_L_Install.exe
2013-12-24 15:06 - 2013-12-24 15:06 - 00001351 _____ C:\Users\BlueRsX\Documents\AutoHotkey.ahk
2013-12-24 15:06 - 2013-12-24 15:06 - 00000000 ____D C:\Program Files\AutoHotkey
2013-12-24 10:56 - 2013-12-24 10:56 - 00082744 _____ (AVAST Software) C:\Windows\system32\Drivers\aswstm.sys
2013-12-24 09:18 - 2013-12-24 09:18 - 01398336 _____ C:\uhjkjhkhjkhjkhj.vtf
2013-12-23 15:52 - 2013-12-23 15:52 - 00012107 _____ C:\Users\BlueRsX\Desktop\gafar2.zip
2013-12-23 15:03 - 2013-12-23 15:44 - 00011973 _____ C:\Users\BlueRsX\Desktop\gafar.zip
2013-12-22 20:09 - 2013-12-22 20:09 - 00002124 _____ C:\Users\Public\Desktop\MTA San Andreas 1.3.lnk
2013-12-22 20:08 - 2013-12-22 20:09 - 00000000 ____D C:\ProgramData\MTA San Andreas All
2013-12-22 20:08 - 2013-12-22 20:09 - 00000000 ____D C:\Program Files (x86)\MTA San Andreas 1.3
2013-12-22 20:06 - 2013-12-22 20:07 - 20676200 _____ (Multi Theft Auto) C:\Users\BlueRsX\Downloads\mtasa-1.3.4.exe
2013-12-20 21:32 - 2013-12-20 21:32 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-12-20 15:29 - 2013-12-20 15:29 - 00000222 _____ C:\Users\BlueRsX\Desktop\Starbound.url
2013-12-19 21:19 - 2013-12-19 21:19 - 00000000 ____D C:\Users\BlueRsX\AppData\Local\Razer_Inc
2013-12-19 21:19 - 2013-12-19 21:19 - 00000000 ____D C:\Program Files (x86)\Razer
2013-12-19 21:15 - 2013-12-19 21:19 - 00000000 ____D C:\Users\BlueRsX\Documents\Razer
2013-12-19 21:15 - 2013-12-19 21:15 - 00003176 _____ C:\Windows\System32\Tasks\Razer_Game_Booster_AutoUpdate
2013-12-19 21:13 - 2013-12-19 21:19 - 00000000 ____D C:\Users\BlueRsX\AppData\Local\Razer
2013-12-19 21:10 - 2013-12-19 21:19 - 00002129 _____ C:\Users\Public\Desktop\Razer Game Booster.lnk
2013-12-19 21:10 - 2013-12-19 21:19 - 00000000 ____D C:\ProgramData\Razer
2013-12-19 21:04 - 2013-12-19 21:05 - 00000000 ____D C:\Users\BlueRsX\Downloads\Download
2013-12-19 21:02 - 2013-12-19 21:03 - 00953168 _____ C:\Users\BlueRsX\Downloads\Razer_Game_Booster_downloader.exe
2013-12-19 20:46 - 2013-12-19 20:47 - 00000000 ____D C:\Users\BlueRsX\Desktop\Portfolio
2013-12-19 18:14 - 2013-12-19 18:24 - 00000000 ____D C:\Users\BlueRsX\Desktop\Musik
2013-12-18 21:42 - 2013-12-18 21:42 - 00000000 ____D C:\Users\BlueRsX\Desktop\Effectstock
2013-12-17 20:47 - 2013-12-17 20:47 - 00002212 _____ C:\Users\Public\Desktop\Google Earth.lnk
2013-12-16 17:49 - 2013-12-16 17:49 - 00005791 _____ C:\Users\BlueRsX\Desktop\Penispumpe.log
2013-12-16 17:48 - 2013-12-16 17:48 - 00011336 _____ C:\Users\BlueRsX\Desktop\Penispumpe.vmf
2013-12-16 16:45 - 2013-12-16 16:45 - 00003288 ____N C:\bootsqm.dat
2013-12-15 20:08 - 2013-12-15 20:10 - 00018759 _____ C:\Users\BlueRsX\Desktop\öööööö.log
2013-12-15 20:08 - 2013-12-15 20:10 - 00017937 _____ C:\Users\BlueRsX\Desktop\öööööö.prt
2013-12-15 20:08 - 2013-12-15 20:09 - 00245428 _____ C:\Users\BlueRsX\Desktop\öööööö.vmx
2013-12-15 19:50 - 2013-12-15 20:10 - 00245428 _____ C:\Users\BlueRsX\Desktop\öööööö.vmf
2013-12-12 20:39 - 2013-12-12 20:39 - 00193980 _____ C:\Users\BlueRsX\Desktop\Unbenannt 1.odt
2013-12-12 20:39 - 2013-12-12 20:39 - 00000106 ____H C:\Users\BlueRsX\Desktop\.~lock.Unbenannt 1.odt#
2013-12-12 20:00 - 2013-12-12 20:00 - 00966760 _____ C:\Users\BlueRsX\Desktop\Logo.psd
2013-12-11 20:38 - 2013-05-10 06:56 - 14631424 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2013-12-11 20:38 - 2013-05-10 06:56 - 12625920 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2013-12-11 20:38 - 2013-05-10 05:56 - 12625408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmploc.DLL
2013-12-11 20:38 - 2013-05-10 05:56 - 11410432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2013-12-11 20:37 - 2013-11-26 12:54 - 23183360 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-12-11 20:37 - 2013-11-26 11:19 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-12-11 20:37 - 2013-11-26 11:18 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2013-12-11 20:37 - 2013-11-26 11:11 - 17112576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-12-11 20:37 - 2013-11-26 10:48 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-12-11 20:37 - 2013-11-26 10:46 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2013-12-11 20:37 - 2013-11-26 10:41 - 02764288 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-12-11 20:37 - 2013-11-26 10:29 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-12-11 20:37 - 2013-11-26 10:27 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-12-11 20:37 - 2013-11-26 10:23 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-12-11 20:37 - 2013-11-26 10:21 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-12-11 20:37 - 2013-11-26 10:18 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-12-11 20:37 - 2013-11-26 10:18 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2013-12-11 20:37 - 2013-11-26 10:16 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2013-12-11 20:37 - 2013-11-26 09:57 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-12-11 20:37 - 2013-11-26 09:38 - 02166784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-12-11 20:37 - 2013-11-26 09:38 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-12-11 20:37 - 2013-11-26 09:35 - 05769216 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-12-11 20:37 - 2013-11-26 09:32 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-12-11 20:37 - 2013-11-26 09:28 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2013-12-11 20:37 - 2013-11-26 09:16 - 04243968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-12-11 20:37 - 2013-11-26 09:02 - 01995264 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-12-11 20:37 - 2013-11-26 08:48 - 12996608 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-12-11 20:37 - 2013-11-26 08:32 - 01928192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-12-11 20:37 - 2013-11-26 08:26 - 11221504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-12-11 20:37 - 2013-11-26 08:07 - 02334208 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-12-11 20:37 - 2013-11-26 07:40 - 01395200 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-12-11 20:37 - 2013-11-26 07:34 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2013-12-11 20:37 - 2013-11-26 07:34 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2013-12-11 20:37 - 2013-11-26 07:33 - 01820160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-12-11 20:37 - 2013-11-26 07:27 - 01157632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-12-11 19:54 - 2013-12-11 20:00 - 00000000 ____D C:\Users\BlueRsX\Desktop\Tutorial1
2013-12-11 19:32 - 2013-12-11 19:32 - 47423532 _____ C:\Users\BlueRsX\Desktop\firsttutorial.wav
2013-12-11 19:24 - 2013-11-23 19:26 - 00417792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll
2013-12-11 19:24 - 2013-11-23 18:47 - 00465920 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2013-12-11 19:24 - 2013-11-12 03:23 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2013-12-11 19:24 - 2013-11-12 03:07 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2013-12-11 19:24 - 2013-10-30 03:32 - 00335360 _____ (Microsoft Corporation) C:\Windows\system32\msieftp.dll
2013-12-11 19:24 - 2013-10-30 03:19 - 00301568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msieftp.dll
2013-12-11 19:24 - 2013-10-30 02:24 - 03155968 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2013-12-11 19:24 - 2013-10-19 03:18 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\imagehlp.dll
2013-12-11 19:24 - 2013-10-19 02:36 - 00159232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imagehlp.dll
2013-12-11 19:23 - 2013-10-12 03:32 - 00150016 _____ (Microsoft Corporation) C:\Windows\system32\wshom.ocx
2013-12-11 19:23 - 2013-10-12 03:31 - 00202752 _____ (Microsoft Corporation) C:\Windows\system32\scrrun.dll
2013-12-11 19:23 - 2013-10-12 03:04 - 00121856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wshom.ocx
2013-12-11 19:23 - 2013-10-12 03:03 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scrrun.dll
2013-12-11 19:23 - 2013-10-12 02:33 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\wscript.exe
2013-12-11 19:23 - 2013-10-12 02:33 - 00156160 _____ (Microsoft Corporation) C:\Windows\system32\cscript.exe
2013-12-11 19:23 - 2013-10-12 02:15 - 00141824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wscript.exe
2013-12-11 19:23 - 2013-10-12 02:15 - 00126976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cscript.exe
2013-12-11 19:23 - 2013-10-04 03:16 - 00116736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmk.sys
2013-12-11 19:23 - 2013-10-04 02:36 - 00230400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys
2013-12-10 17:04 - 2013-12-10 18:17 - 00000000 ___RD C:\Users\BlueRsX\Desktop\Filmprojekt
2013-12-07 16:57 - 2013-12-07 21:06 - 00922124 _____ C:\Users\BlueRsX\Desktop\zerstorbarumgwebudnfreg.bsp
2013-12-07 16:57 - 2013-12-07 21:06 - 00014762 _____ C:\Users\BlueRsX\Desktop\zerstorbarumgwebudnfreg.log
2013-12-07 16:57 - 2013-12-07 21:06 - 00010967 _____ C:\Users\BlueRsX\Desktop\zerstorbarumgwebudnfreg.prt
2013-12-07 16:57 - 2013-12-07 16:57 - 00297346 _____ C:\Users\BlueRsX\Desktop\zerstorbarumgwebudnfreg.vmx
2013-12-07 13:58 - 2013-12-07 21:06 - 00296816 _____ C:\Users\BlueRsX\Desktop\zerstorbarumgwebudnfreg.vmf
2013-12-07 08:42 - 2013-12-07 08:42 - 00000926 _____ C:\Users\Public\Desktop\LogMeIn Hamachi.lnk
2013-12-07 08:42 - 2013-12-07 08:42 - 00000000 ____D C:\Program Files (x86)\LogMeIn Hamachi
2013-12-06 23:35 - 2013-12-06 23:35 - 00160140 _____ C:\Users\BlueRsX\Desktop\jkhjk.vmf
2013-12-06 23:35 - 2013-12-06 23:35 - 00160140 _____ C:\Users\BlueRsX\Desktop\#.vmf
2013-12-06 14:07 - 2013-10-14 18:00 - 00028368 _____ (Microsoft Corporation) C:\Windows\system32\IEUDINIT.EXE
2013-12-06 14:01 - 2013-12-06 14:01 - 01051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2013-12-06 14:01 - 2013-12-06 14:01 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2013-12-06 14:01 - 2013-12-06 14:01 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll
2013-12-06 14:01 - 2013-12-06 14:01 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2013-12-06 14:01 - 2013-12-06 14:01 - 00523776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-12-06 14:01 - 2013-12-06 14:01 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-12-06 14:01 - 2013-12-06 14:01 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2013-12-06 14:01 - 2013-12-06 14:01 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2013-12-06 14:01 - 2013-12-06 14:01 - 00244736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2013-12-06 14:01 - 2013-12-06 14:01 - 00238288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2013-12-06 14:01 - 2013-12-06 14:01 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2013-12-06 14:01 - 2013-12-06 14:01 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-12-06 14:01 - 2013-12-06 14:01 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2013-12-06 14:01 - 2013-12-06 14:01 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2013-12-06 14:01 - 2013-12-06 14:01 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2013-12-06 14:01 - 2013-12-06 14:01 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2013-12-06 14:01 - 2013-12-06 14:01 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2013-12-06 14:01 - 2013-12-06 14:01 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2013-12-06 14:01 - 2013-12-06 14:01 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2013-12-06 14:01 - 2013-12-06 14:01 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-12-06 14:01 - 2013-12-06 14:01 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-12-06 14:01 - 2013-12-06 14:01 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2013-12-06 14:01 - 2013-12-06 14:01 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2013-12-06 14:01 - 2013-12-06 14:01 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-12-06 14:01 - 2013-12-06 14:01 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2013-12-06 14:01 - 2013-12-06 14:01 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2013-12-06 14:01 - 2013-12-06 14:01 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-12-06 14:01 - 2013-12-06 14:01 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2013-12-06 14:00 - 2013-12-06 14:00 - 01228800 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2013-12-06 14:00 - 2013-12-06 14:00 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2013-12-06 14:00 - 2013-12-06 14:00 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-12-06 14:00 - 2013-12-06 14:00 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-12-06 14:00 - 2013-12-06 14:00 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2013-12-06 14:00 - 2013-12-06 14:00 - 00610304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-12-06 14:00 - 2013-12-06 14:00 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-12-06 14:00 - 2013-12-06 14:00 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2013-12-06 14:00 - 2013-12-06 14:00 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2013-12-06 14:00 - 2013-12-06 14:00 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2013-12-06 14:00 - 2013-12-06 14:00 - 00263376 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2013-12-06 14:00 - 2013-12-06 14:00 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2013-12-06 14:00 - 2013-12-06 14:00 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2013-12-06 14:00 - 2013-12-06 14:00 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-12-06 14:00 - 2013-12-06 14:00 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2013-12-06 14:00 - 2013-12-06 14:00 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2013-12-06 14:00 - 2013-12-06 14:00 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2013-12-06 14:00 - 2013-12-06 14:00 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2013-12-06 14:00 - 2013-12-06 14:00 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2013-12-06 14:00 - 2013-12-06 14:00 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2013-12-06 14:00 - 2013-12-06 14:00 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2013-12-06 14:00 - 2013-12-06 14:00 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2013-12-06 14:00 - 2013-12-06 14:00 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-12-06 14:00 - 2013-12-06 14:00 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2013-12-06 14:00 - 2013-12-06 14:00 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-12-06 14:00 - 2013-12-06 14:00 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2013-12-06 14:00 - 2013-12-06 14:00 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2013-12-06 14:00 - 2013-12-06 14:00 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-12-06 14:00 - 2013-12-06 14:00 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-12-06 14:00 - 2013-12-06 14:00 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-12-06 14:00 - 2013-12-06 14:00 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2013-12-06 14:00 - 2013-12-06 14:00 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2013-12-06 14:00 - 2013-12-06 14:00 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2013-12-06 14:00 - 2013-12-06 14:00 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2013-12-06 14:00 - 2013-12-06 14:00 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2013-12-06 14:00 - 2013-12-06 14:00 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2013-12-06 14:00 - 2013-12-06 14:00 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2013-12-06 14:00 - 2013-12-06 14:00 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2013-12-06 14:00 - 2013-12-06 14:00 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2013-12-06 14:00 - 2013-12-06 14:00 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2013-12-06 14:00 - 2013-12-06 14:00 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2013-12-06 14:00 - 2013-12-06 14:00 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2013-12-06 14:00 - 2013-12-06 14:00 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2013-12-06 14:00 - 2013-12-06 14:00 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2013-12-06 14:00 - 2013-12-06 14:00 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2013-12-06 14:00 - 2013-12-06 14:00 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2013-12-06 14:00 - 2013-12-06 14:00 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2013-12-06 14:00 - 2013-12-06 14:00 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2013-12-06 14:00 - 2013-12-06 14:00 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2013-12-06 13:53 - 2013-12-06 14:08 - 00011300 _____ C:\Windows\IE11_main.log
2013-12-06 13:48 - 2013-12-24 10:56 - 00001966 _____ C:\Users\Public\Desktop\avast! Free Antivirus.lnk
2013-12-05 17:50 - 2013-12-05 17:50 - 00037938 _____ C:\Users\BlueRsX\Desktop\1.camproj
2013-12-05 17:38 - 2013-12-05 17:38 - 64135212 _____ C:\Users\BlueRsX\Desktop\1.wav
2013-12-05 16:05 - 2013-12-20 20:49 - 00000000 ____D C:\Users\BlueRsX\AppData\Local\CrashDumps
2013-12-03 04:50 - 2013-12-23 12:51 - 00001752 _____ C:\Users\BlueRsX\Desktop\Photoshop CS6 - Verknüpfung.lnk
2013-12-02 21:40 - 2013-12-02 21:40 - 00019979 _____ C:\Users\BlueRsX\Downloads\beethoven.zip
2013-12-02 21:40 - 2013-12-02 21:40 - 00005793 _____ C:\Users\BlueRsX\Downloads\anticlimax.zip
2013-12-02 21:38 - 2013-12-02 21:38 - 00570256 _____ C:\Users\BlueRsX\Downloads\beyond_sky.zip
2013-12-02 21:38 - 2013-12-02 21:38 - 00173098 _____ C:\Users\BlueRsX\Downloads\anthem.zip
2013-12-02 21:36 - 2013-12-02 21:36 - 00076237 _____ C:\Users\BlueRsX\Downloads\sloppy_hollow.zip
2013-12-02 21:36 - 2013-12-02 21:36 - 00050016 _____ C:\Users\BlueRsX\Downloads\penelope_anne.zip
2013-12-02 21:36 - 2013-12-02 21:36 - 00018460 _____ C:\Users\BlueRsX\Downloads\agent_red.zip
2013-12-02 21:34 - 2013-12-02 21:34 - 00168841 _____ C:\Users\BlueRsX\Downloads\silent_reaction.zip
2013-12-02 21:33 - 2013-12-02 21:33 - 01749283 _____ C:\Users\BlueRsX\Downloads\crackin.zip
2013-12-02 21:33 - 2013-12-02 21:33 - 00866132 _____ C:\Users\BlueRsX\Downloads\europe_underground.zip
2013-12-02 21:33 - 2013-12-02 21:33 - 00238891 _____ C:\Users\BlueRsX\Downloads\europe_underground_worn.zip
2013-12-02 21:33 - 2013-12-02 21:33 - 00161820 _____ C:\Users\BlueRsX\Downloads\equal_sans.zip
2013-12-02 21:32 - 2013-12-02 21:32 - 00416317 _____ C:\Users\BlueRsX\Downloads\motion_picture.zip
2013-12-02 21:32 - 2013-12-02 21:32 - 00367342 _____ C:\Users\BlueRsX\Downloads\filbert_brush.zip
2013-12-02 21:31 - 2013-12-02 21:32 - 00064205 _____ C:\Users\BlueRsX\Downloads\optien.zip
2013-12-02 21:31 - 2013-12-02 21:31 - 00382820 _____ C:\Users\BlueRsX\Downloads\ringer.zip
2013-12-02 21:30 - 2013-12-02 21:30 - 00602696 _____ C:\Users\BlueRsX\Downloads\stroke_dimension.zip
2013-12-02 21:29 - 2013-12-02 21:30 - 00241734 _____ C:\Users\BlueRsX\Downloads\sketchica.zip
2013-12-02 21:29 - 2013-12-02 21:29 - 00301822 _____ C:\Users\BlueRsX\Downloads\ventography.zip
2013-12-02 21:04 - 2013-12-03 04:50 - 00000000 ____D C:\Users\BlueRsX\Downloads\Photoshop CS6
2013-12-01 15:02 - 2013-12-01 15:02 - 01698310 _____ C:\Users\BlueRsX\Desktop\test1.mp4
2013-12-01 14:53 - 2013-12-01 14:53 - 00000000 ____D C:\Users\BlueRsX\AppData\Local\TechSmith
2013-12-01 14:52 - 2013-12-11 19:19 - 00003584 _____ C:\Users\BlueRsX\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2013-12-01 14:50 - 2013-12-11 19:32 - 00000000 ____D C:\Users\BlueRsX\Documents\Camtasia Studio
2013-12-01 14:50 - 2013-12-01 14:50 - 00000000 ____D C:\Users\BlueRsX\AppData\Roaming\TechSmith
2013-12-01 14:49 - 2013-12-01 14:49 - 00001168 _____ C:\Users\Public\Desktop\Camtasia Studio 8.lnk
2013-12-01 14:49 - 2013-12-01 14:49 - 00000000 ____D C:\ProgramData\regid.1995-08.com.techsmith
2013-12-01 14:49 - 2013-12-01 14:49 - 00000000 ____D C:\Program Files (x86)\QuickTime
2013-12-01 14:48 - 2013-12-01 14:48 - 00000000 ____D C:\ProgramData\TechSmith
2013-12-01 14:48 - 2013-12-01 14:48 - 00000000 ____D C:\Program Files (x86)\TechSmith
2013-12-01 14:41 - 2013-12-01 20:33 - 00000000 ____D C:\Users\BlueRsX\Desktop\YouTube
2013-12-01 14:37 - 2013-12-01 14:45 - 00000000 ____D C:\Users\BlueRsX\Downloads\Camtasia Studio FULL 8.1.2 + Serials [ThumperDC]
2013-12-01 14:32 - 2013-12-25 12:04 - 00000000 ____D C:\Users\BlueRsX\AppData\Local\WhatPulse
2013-12-01 14:32 - 2013-12-01 14:32 - 00001030 _____ C:\Users\Public\Desktop\WhatPulse.lnk
2013-12-01 14:32 - 2013-12-01 14:32 - 00000000 ____D C:\Users\BlueRsX\AppData\Local\CrashRpt
2013-12-01 14:32 - 2013-12-01 14:32 - 00000000 ____D C:\Program Files (x86)\WinPcap
2013-12-01 14:32 - 2013-12-01 14:32 - 00000000 ____D C:\Program Files (x86)\WhatPulse2
2013-12-01 14:30 - 2013-12-01 14:30 - 13022136 _____ (WhatPulse ) C:\Users\BlueRsX\Downloads\whatpulse-win-2.3.exe
2013-11-30 17:36 - 2013-11-30 17:37 - 03821064 _____ C:\Users\BlueRsX\Downloads\battlelog-web-plugins_2.3.2_130.exe
2013-11-25 16:46 - 2013-11-25 16:46 - 00001337 _____ C:\Users\BlueRsX\Desktop\hammer - Verknüpfung.lnk
==================== One Month Modified Files and Folders =======
2013-12-25 12:04 - 2013-12-01 14:32 - 00000000 ____D C:\Users\BlueRsX\AppData\Local\WhatPulse
2013-12-25 12:03 - 2013-12-25 12:02 - 00023133 _____ C:\Users\BlueRsX\Downloads\FRST.txt
2013-12-25 12:01 - 2013-12-25 12:01 - 00000000 ____D C:\FRST
2013-12-25 12:00 - 2013-12-25 12:00 - 01928636 _____ (Farbar) C:\Users\BlueRsX\Downloads\FRST64.exe
2013-12-25 11:59 - 2012-11-27 20:25 - 00000000 ____D C:\Users\BlueRsX\AppData\Roaming\Skype
2013-12-25 11:55 - 2012-11-21 20:59 - 00000000 ____D C:\Program Files (x86)\Steam
2013-12-25 11:53 - 2013-01-09 20:23 - 00000000 ____D C:\HammerAutosave
2013-12-25 11:44 - 2012-12-21 20:52 - 00001112 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-12-25 11:19 - 2013-11-05 20:25 - 00000000 ____D C:\Users\BlueRsX\AppData\Local\Adobe
2013-12-25 11:17 - 2013-07-28 08:24 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-12-25 10:59 - 2009-07-14 05:45 - 00013536 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-12-25 10:59 - 2009-07-14 05:45 - 00013536 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-12-25 10:56 - 2012-11-19 21:06 - 01558063 _____ C:\Windows\WindowsUpdate.log
2013-12-25 10:50 - 2013-10-04 17:24 - 00000000 ____D C:\Users\BlueRsX\AppData\Local\LogMeIn Hamachi
2013-12-25 10:48 - 2013-05-07 21:54 - 00000000 ___RD C:\Users\BlueRsX\Dropbox
2013-12-25 10:48 - 2013-05-07 21:51 - 00000000 ____D C:\Users\BlueRsX\AppData\Roaming\Dropbox
2013-12-25 10:46 - 2012-12-21 20:52 - 00001108 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-12-25 10:46 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-12-25 10:46 - 2009-07-14 05:51 - 00080931 _____ C:\Windows\setupact.log
2013-12-24 23:07 - 2012-11-21 07:25 - 00496272 _____ C:\Windows\PFRO.log
2013-12-24 22:57 - 2013-01-02 09:40 - 00000000 ____D C:\Users\BlueRsX\AppData\Local\ArmA 2 OA
2013-12-24 22:56 - 2013-12-24 22:56 - 01510511 _____ C:\Users\BlueRsX\Downloads\ArmA II Launcher 2010-07-22.zip
2013-12-24 22:41 - 2013-01-25 16:14 - 00000392 _____ C:\Windows\Tasks\update-sys.job
2013-12-24 22:39 - 2013-01-02 09:38 - 00000000 ____D C:\Users\BlueRsX\AppData\Local\ArmA 2
2013-12-24 22:25 - 2012-11-21 22:33 - 00000000 ____D C:\Users\BlueRsX\AppData\Roaming\TS3Client
2013-12-24 21:44 - 2013-01-25 16:14 - 00000392 _____ C:\Windows\Tasks\update-S-1-5-21-3985545688-2783562880-4087805722-1001.job
2013-12-24 15:37 - 2013-12-24 15:37 - 00000299 _____ C:\Users\BlueRsX\Desktop\unbenannt.mcx
2013-12-24 15:14 - 2013-12-24 15:14 - 00000963 _____ C:\Users\BlueRsX\Desktop\MacroX.lnk
2013-12-24 15:14 - 2013-12-24 15:14 - 00000000 ____D C:\Users\BlueRsX\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MacroX
2013-12-24 15:14 - 2013-12-24 15:14 - 00000000 ____D C:\Program Files (x86)\MacroX
2013-12-24 15:13 - 2013-12-24 15:13 - 02480915 _____ C:\Users\BlueRsX\Downloads\macrox!.exe
2013-12-24 15:10 - 2013-12-24 15:10 - 00001071 _____ C:\Users\Public\Desktop\Macro Recorder.lnk
2013-12-24 15:10 - 2013-12-24 15:10 - 00000000 ____D C:\Program Files (x86)\MacroRecorder
2013-12-24 15:09 - 2013-12-24 15:09 - 00719480 _____ (Jitbit Software ) C:\Users\BlueRsX\Downloads\MacroRecorderSetup.exe
2013-12-24 15:06 - 2013-12-24 15:06 - 02641401 _____ C:\Users\BlueRsX\Downloads\AutoHotkey_L_Install.exe
2013-12-24 15:06 - 2013-12-24 15:06 - 00001351 _____ C:\Users\BlueRsX\Documents\AutoHotkey.ahk
2013-12-24 15:06 - 2013-12-24 15:06 - 00000000 ____D C:\Program Files\AutoHotkey
2013-12-24 15:06 - 2009-07-14 19:18 - 00000000 ____D C:\Windows\ShellNew
2013-12-24 10:56 - 2013-12-24 10:56 - 00082744 _____ (AVAST Software) C:\Windows\system32\Drivers\aswstm.sys
2013-12-24 10:56 - 2013-12-06 13:48 - 00001966 _____ C:\Users\Public\Desktop\avast! Free Antivirus.lnk
2013-12-24 10:56 - 2013-03-05 15:14 - 00207904 _____ C:\Windows\system32\Drivers\aswVmm.sys
2013-12-24 10:56 - 2012-12-27 10:52 - 00003924 _____ C:\Windows\System32\Tasks\avast! Emergency Update
2013-12-24 10:56 - 2012-12-27 08:46 - 01034464 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2013-12-24 10:56 - 2012-12-27 08:46 - 00422216 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys
2013-12-24 10:56 - 2012-12-27 08:46 - 00334136 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2013-12-24 10:56 - 2012-12-27 08:46 - 00078648 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2013-12-24 10:56 - 2012-12-27 08:45 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2013-12-24 09:18 - 2013-12-24 09:18 - 01398336 _____ C:\uhjkjhkhjkhjkhj.vtf
2013-12-24 09:17 - 2012-11-19 21:14 - 00000000 ____D C:\Users\BlueRsX\AppData\Local\VirtualStore
2013-12-24 08:54 - 2012-11-20 17:32 - 00000000 ____D C:\Users\BlueRsX\Documents\GTA San Andreas User Files
2013-12-24 08:52 - 2009-07-14 18:58 - 00701310 _____ C:\Windows\system32\perfh007.dat
2013-12-24 08:52 - 2009-07-14 18:58 - 00150210 _____ C:\Windows\system32\perfc007.dat
2013-12-24 08:52 - 2009-07-14 06:13 - 01620612 _____ C:\Windows\system32\PerfStringBackup.INI
2013-12-23 15:52 - 2013-12-23 15:52 - 00012107 _____ C:\Users\BlueRsX\Desktop\gafar2.zip
2013-12-23 15:44 - 2013-12-23 15:03 - 00011973 _____ C:\Users\BlueRsX\Desktop\gafar.zip
2013-12-23 14:55 - 2013-03-19 14:07 - 00076288 ___SH C:\Users\BlueRsX\Documents\Thumbs.db
2013-12-23 12:51 - 2013-12-03 04:50 - 00001752 _____ C:\Users\BlueRsX\Desktop\Photoshop CS6 - Verknüpfung.lnk
2013-12-23 12:28 - 2012-11-20 23:35 - 00290184 _____ C:\Windows\SysWOW64\PnkBstrB.xtr
2013-12-23 12:28 - 2012-11-20 21:27 - 00290184 _____ C:\Windows\SysWOW64\PnkBstrB.exe
2013-12-23 12:27 - 2012-11-20 21:27 - 00280904 _____ C:\Windows\SysWOW64\PnkBstrB.ex0
2013-12-23 12:26 - 2012-11-20 20:56 - 00000000 ____D C:\Program Files (x86)\Origin
2013-12-23 07:27 - 2013-02-08 07:43 - 00000000 ___RD C:\Program Files (x86)\Skype
2013-12-23 07:27 - 2012-11-27 20:24 - 00000000 ____D C:\ProgramData\Skype
2013-12-22 20:09 - 2013-12-22 20:09 - 00002124 _____ C:\Users\Public\Desktop\MTA San Andreas 1.3.lnk
2013-12-22 20:09 - 2013-12-22 20:08 - 00000000 ____D C:\ProgramData\MTA San Andreas All
2013-12-22 20:09 - 2013-12-22 20:08 - 00000000 ____D C:\Program Files (x86)\MTA San Andreas 1.3
2013-12-22 20:07 - 2013-12-22 20:06 - 20676200 _____ (Multi Theft Auto) C:\Users\BlueRsX\Downloads\mtasa-1.3.4.exe
2013-12-21 07:55 - 2009-07-14 06:09 - 00000000 ____D C:\Windows\System32\Tasks\WPD
2013-12-21 07:54 - 2012-12-06 07:51 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-12-20 21:32 - 2013-12-20 21:32 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-12-20 20:49 - 2013-12-05 16:05 - 00000000 ____D C:\Users\BlueRsX\AppData\Local\CrashDumps
2013-12-20 15:29 - 2013-12-20 15:29 - 00000222 _____ C:\Users\BlueRsX\Desktop\Starbound.url
2013-12-19 21:32 - 2013-03-30 08:36 - 00000000 ____D C:\Users\BlueRsX\AppData\Local\Warframe
2013-12-19 21:28 - 2012-11-20 21:06 - 00255943 _____ C:\Windows\DirectX.log
2013-12-19 21:19 - 2013-12-19 21:19 - 00000000 ____D C:\Users\BlueRsX\AppData\Local\Razer_Inc
2013-12-19 21:19 - 2013-12-19 21:19 - 00000000 ____D C:\Program Files (x86)\Razer
2013-12-19 21:19 - 2013-12-19 21:15 - 00000000 ____D C:\Users\BlueRsX\Documents\Razer
2013-12-19 21:19 - 2013-12-19 21:13 - 00000000 ____D C:\Users\BlueRsX\AppData\Local\Razer
2013-12-19 21:19 - 2013-12-19 21:10 - 00002129 _____ C:\Users\Public\Desktop\Razer Game Booster.lnk
2013-12-19 21:19 - 2013-12-19 21:10 - 00000000 ____D C:\ProgramData\Razer
2013-12-19 21:15 - 2013-12-19 21:15 - 00003176 _____ C:\Windows\System32\Tasks\Razer_Game_Booster_AutoUpdate
2013-12-19 21:05 - 2013-12-19 21:04 - 00000000 ____D C:\Users\BlueRsX\Downloads\Download
2013-12-19 21:03 - 2013-12-19 21:02 - 00953168 _____ C:\Users\BlueRsX\Downloads\Razer_Game_Booster_downloader.exe
2013-12-19 20:47 - 2013-12-19 20:46 - 00000000 ____D C:\Users\BlueRsX\Desktop\Portfolio
2013-12-19 18:24 - 2013-12-19 18:14 - 00000000 ____D C:\Users\BlueRsX\Desktop\Musik
2013-12-19 17:45 - 2013-05-04 15:33 - 00000000 ____D C:\Users\BlueRsX\AppData\Roaming\Audacity
2013-12-18 21:42 - 2013-12-18 21:42 - 00000000 ____D C:\Users\BlueRsX\Desktop\Effectstock
2013-12-17 20:47 - 2013-12-17 20:47 - 00002212 _____ C:\Users\Public\Desktop\Google Earth.lnk
2013-12-17 20:47 - 2012-12-21 20:52 - 00000000 ____D C:\Program Files (x86)\Google
2013-12-16 17:49 - 2013-12-16 17:49 - 00005791 _____ C:\Users\BlueRsX\Desktop\Penispumpe.log
2013-12-16 17:48 - 2013-12-16 17:48 - 00011336 _____ C:\Users\BlueRsX\Desktop\Penispumpe.vmf
2013-12-16 16:57 - 2012-11-21 10:10 - 00000000 ____D C:\ProgramData\Adobe
2013-12-16 16:47 - 2013-11-05 20:25 - 00000000 ____D C:\Users\BlueRsX\AppData\Roaming\Adobe
2013-12-16 16:45 - 2013-12-16 16:45 - 00003288 ____N C:\bootsqm.dat
2013-12-15 20:10 - 2013-12-15 20:08 - 00018759 _____ C:\Users\BlueRsX\Desktop\öööööö.log
2013-12-15 20:10 - 2013-12-15 20:08 - 00017937 _____ C:\Users\BlueRsX\Desktop\öööööö.prt
2013-12-15 20:10 - 2013-12-15 19:50 - 00245428 _____ C:\Users\BlueRsX\Desktop\öööööö.vmf
2013-12-15 20:09 - 2013-12-15 20:08 - 00245428 _____ C:\Users\BlueRsX\Desktop\öööööö.vmx
2013-12-12 21:09 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\rescache
2013-12-12 20:39 - 2013-12-12 20:39 - 00193980 _____ C:\Users\BlueRsX\Desktop\Unbenannt 1.odt
2013-12-12 20:39 - 2013-12-12 20:39 - 00000106 ____H C:\Users\BlueRsX\Desktop\.~lock.Unbenannt 1.odt#
2013-12-12 20:00 - 2013-12-12 20:00 - 00966760 _____ C:\Users\BlueRsX\Desktop\Logo.psd
2013-12-12 16:45 - 2009-07-14 05:45 - 05238032 _____ C:\Windows\system32\FNTCACHE.DAT
2013-12-11 20:38 - 2012-12-10 08:16 - 00000000 ____D C:\ProgramData\Microsoft Help
2013-12-11 20:00 - 2013-12-11 19:54 - 00000000 ____D C:\Users\BlueRsX\Desktop\Tutorial1
2013-12-11 19:32 - 2013-12-11 19:32 - 47423532 _____ C:\Users\BlueRsX\Desktop\firsttutorial.wav
2013-12-11 19:32 - 2013-12-01 14:50 - 00000000 ____D C:\Users\BlueRsX\Documents\Camtasia Studio
2013-12-11 19:19 - 2013-12-01 14:52 - 00003584 _____ C:\Users\BlueRsX\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2013-12-10 21:39 - 2012-12-21 20:52 - 00004108 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2013-12-10 21:39 - 2012-12-21 20:52 - 00003856 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2013-12-10 21:17 - 2013-07-28 08:24 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2013-12-10 21:17 - 2012-11-20 19:50 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-12-10 21:17 - 2012-11-20 19:50 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-12-10 18:17 - 2013-12-10 17:04 - 00000000 ___RD C:\Users\BlueRsX\Desktop\Filmprojekt
2013-12-07 21:06 - 2013-12-07 16:57 - 00922124 _____ C:\Users\BlueRsX\Desktop\zerstorbarumgwebudnfreg.bsp
2013-12-07 21:06 - 2013-12-07 16:57 - 00014762 _____ C:\Users\BlueRsX\Desktop\zerstorbarumgwebudnfreg.log
2013-12-07 21:06 - 2013-12-07 16:57 - 00010967 _____ C:\Users\BlueRsX\Desktop\zerstorbarumgwebudnfreg.prt
2013-12-07 21:06 - 2013-12-07 13:58 - 00296816 _____ C:\Users\BlueRsX\Desktop\zerstorbarumgwebudnfreg.vmf
2013-12-07 16:57 - 2013-12-07 16:57 - 00297346 _____ C:\Users\BlueRsX\Desktop\zerstorbarumgwebudnfreg.vmx
2013-12-07 08:43 - 2012-11-19 21:14 - 00001425 _____ C:\Users\BlueRsX\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-12-07 08:42 - 2013-12-07 08:42 - 00000926 _____ C:\Users\Public\Desktop\LogMeIn Hamachi.lnk
2013-12-07 08:42 - 2013-12-07 08:42 - 00000000 ____D C:\Program Files (x86)\LogMeIn Hamachi
2013-12-07 00:16 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\PolicyDefinitions
2013-12-06 23:35 - 2013-12-06 23:35 - 00160140 _____ C:\Users\BlueRsX\Desktop\jkhjk.vmf
2013-12-06 23:35 - 2013-12-06 23:35 - 00160140 _____ C:\Users\BlueRsX\Desktop\#.vmf
2013-12-06 14:08 - 2013-12-06 13:53 - 00011300 _____ C:\Windows\IE11_main.log
2013-12-06 14:01 - 2013-12-06 14:01 - 01051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2013-12-06 14:01 - 2013-12-06 14:01 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2013-12-06 14:01 - 2013-12-06 14:01 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll
2013-12-06 14:01 - 2013-12-06 14:01 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2013-12-06 14:01 - 2013-12-06 14:01 - 00523776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-12-06 14:01 - 2013-12-06 14:01 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-12-06 14:01 - 2013-12-06 14:01 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2013-12-06 14:01 - 2013-12-06 14:01 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2013-12-06 14:01 - 2013-12-06 14:01 - 00244736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2013-12-06 14:01 - 2013-12-06 14:01 - 00238288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2013-12-06 14:01 - 2013-12-06 14:01 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2013-12-06 14:01 - 2013-12-06 14:01 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-12-06 14:01 - 2013-12-06 14:01 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2013-12-06 14:01 - 2013-12-06 14:01 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2013-12-06 14:01 - 2013-12-06 14:01 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2013-12-06 14:01 - 2013-12-06 14:01 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2013-12-06 14:01 - 2013-12-06 14:01 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2013-12-06 14:01 - 2013-12-06 14:01 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2013-12-06 14:01 - 2013-12-06 14:01 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2013-12-06 14:01 - 2013-12-06 14:01 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-12-06 14:01 - 2013-12-06 14:01 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-12-06 14:01 - 2013-12-06 14:01 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2013-12-06 14:01 - 2013-12-06 14:01 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2013-12-06 14:01 - 2013-12-06 14:01 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-12-06 14:01 - 2013-12-06 14:01 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2013-12-06 14:01 - 2013-12-06 14:01 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2013-12-06 14:01 - 2013-12-06 14:01 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-12-06 14:01 - 2013-12-06 14:01 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2013-12-06 14:00 - 2013-12-06 14:00 - 01228800 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2013-12-06 14:00 - 2013-12-06 14:00 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2013-12-06 14:00 - 2013-12-06 14:00 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-12-06 14:00 - 2013-12-06 14:00 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-12-06 14:00 - 2013-12-06 14:00 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2013-12-06 14:00 - 2013-12-06 14:00 - 00610304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-12-06 14:00 - 2013-12-06 14:00 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-12-06 14:00 - 2013-12-06 14:00 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2013-12-06 14:00 - 2013-12-06 14:00 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2013-12-06 14:00 - 2013-12-06 14:00 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2013-12-06 14:00 - 2013-12-06 14:00 - 00263376 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2013-12-06 14:00 - 2013-12-06 14:00 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2013-12-06 14:00 - 2013-12-06 14:00 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2013-12-06 14:00 - 2013-12-06 14:00 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-12-06 14:00 - 2013-12-06 14:00 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2013-12-06 14:00 - 2013-12-06 14:00 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2013-12-06 14:00 - 2013-12-06 14:00 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2013-12-06 14:00 - 2013-12-06 14:00 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2013-12-06 14:00 - 2013-12-06 14:00 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2013-12-06 14:00 - 2013-12-06 14:00 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2013-12-06 14:00 - 2013-12-06 14:00 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2013-12-06 14:00 - 2013-12-06 14:00 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2013-12-06 14:00 - 2013-12-06 14:00 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-12-06 14:00 - 2013-12-06 14:00 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2013-12-06 14:00 - 2013-12-06 14:00 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-12-06 14:00 - 2013-12-06 14:00 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2013-12-06 14:00 - 2013-12-06 14:00 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2013-12-06 14:00 - 2013-12-06 14:00 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-12-06 14:00 - 2013-12-06 14:00 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-12-06 14:00 - 2013-12-06 14:00 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-12-06 14:00 - 2013-12-06 14:00 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2013-12-06 14:00 - 2013-12-06 14:00 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2013-12-06 14:00 - 2013-12-06 14:00 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2013-12-06 14:00 - 2013-12-06 14:00 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2013-12-06 14:00 - 2013-12-06 14:00 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2013-12-06 14:00 - 2013-12-06 14:00 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2013-12-06 14:00 - 2013-12-06 14:00 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2013-12-06 14:00 - 2013-12-06 14:00 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2013-12-06 14:00 - 2013-12-06 14:00 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2013-12-06 14:00 - 2013-12-06 14:00 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2013-12-06 14:00 - 2013-12-06 14:00 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2013-12-06 14:00 - 2013-12-06 14:00 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2013-12-06 14:00 - 2013-12-06 14:00 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2013-12-06 14:00 - 2013-12-06 14:00 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2013-12-06 14:00 - 2013-12-06 14:00 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2013-12-06 14:00 - 2013-12-06 14:00 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2013-12-06 14:00 - 2013-12-06 14:00 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2013-12-06 14:00 - 2013-12-06 14:00 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2013-12-06 14:00 - 2013-12-06 14:00 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2013-12-06 13:40 - 2012-11-19 21:14 - 00000000 ____D C:\Users\BlueRsX
2013-12-06 13:40 - 2009-07-14 06:08 - 00032632 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2013-12-06 13:38 - 2013-07-22 16:40 - 00000000 ____D C:\Users\BlueRsX\AppData\Local\Akamai
2013-12-06 13:38 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\registration
2013-12-05 17:50 - 2013-12-05 17:50 - 00037938 _____ C:\Users\BlueRsX\Desktop\1.camproj
2013-12-05 17:38 - 2013-12-05 17:38 - 64135212 _____ C:\Users\BlueRsX\Desktop\1.wav
2013-12-04 14:37 - 2012-11-20 15:57 - 00173600 _____ C:\Users\BlueRsX\AppData\Local\GDIPFONTCACHEV1.DAT
2013-12-03 04:50 - 2013-12-02 21:04 - 00000000 ____D C:\Users\BlueRsX\Downloads\Photoshop CS6
2013-12-03 04:50 - 2013-02-05 12:04 - 00000000 ____D C:\Users\BlueRsX\AppData\Roaming\uTorrent
2013-12-02 21:40 - 2013-12-02 21:40 - 00019979 _____ C:\Users\BlueRsX\Downloads\beethoven.zip
2013-12-02 21:40 - 2013-12-02 21:40 - 00005793 _____ C:\Users\BlueRsX\Downloads\anticlimax.zip
2013-12-02 21:38 - 2013-12-02 21:38 - 00570256 _____ C:\Users\BlueRsX\Downloads\beyond_sky.zip
2013-12-02 21:38 - 2013-12-02 21:38 - 00173098 _____ C:\Users\BlueRsX\Downloads\anthem.zip
2013-12-02 21:36 - 2013-12-02 21:36 - 00076237 _____ C:\Users\BlueRsX\Downloads\sloppy_hollow.zip
2013-12-02 21:36 - 2013-12-02 21:36 - 00050016 _____ C:\Users\BlueRsX\Downloads\penelope_anne.zip
2013-12-02 21:36 - 2013-12-02 21:36 - 00018460 _____ C:\Users\BlueRsX\Downloads\agent_red.zip
2013-12-02 21:34 - 2013-12-02 21:34 - 00168841 _____ C:\Users\BlueRsX\Downloads\silent_reaction.zip
2013-12-02 21:33 - 2013-12-02 21:33 - 01749283 _____ C:\Users\BlueRsX\Downloads\crackin.zip
2013-12-02 21:33 - 2013-12-02 21:33 - 00866132 _____ C:\Users\BlueRsX\Downloads\europe_underground.zip
2013-12-02 21:33 - 2013-12-02 21:33 - 00238891 _____ C:\Users\BlueRsX\Downloads\europe_underground_worn.zip
2013-12-02 21:33 - 2013-12-02 21:33 - 00161820 _____ C:\Users\BlueRsX\Downloads\equal_sans.zip
2013-12-02 21:32 - 2013-12-02 21:32 - 00416317 _____ C:\Users\BlueRsX\Downloads\motion_picture.zip
2013-12-02 21:32 - 2013-12-02 21:32 - 00367342 _____ C:\Users\BlueRsX\Downloads\filbert_brush.zip
2013-12-02 21:32 - 2013-12-02 21:31 - 00064205 _____ C:\Users\BlueRsX\Downloads\optien.zip
2013-12-02 21:31 - 2013-12-02 21:31 - 00382820 _____ C:\Users\BlueRsX\Downloads\ringer.zip
2013-12-02 21:30 - 2013-12-02 21:30 - 00602696 _____ C:\Users\BlueRsX\Downloads\stroke_dimension.zip
2013-12-02 21:30 - 2013-12-02 21:29 - 00241734 _____ C:\Users\BlueRsX\Downloads\sketchica.zip
2013-12-02 21:29 - 2013-12-02 21:29 - 00301822 _____ C:\Users\BlueRsX\Downloads\ventography.zip
2013-12-01 20:33 - 2013-12-01 14:41 - 00000000 ____D C:\Users\BlueRsX\Desktop\YouTube
2013-12-01 15:02 - 2013-12-01 15:02 - 01698310 _____ C:\Users\BlueRsX\Desktop\test1.mp4
2013-12-01 14:53 - 2013-12-01 14:53 - 00000000 ____D C:\Users\BlueRsX\AppData\Local\TechSmith
2013-12-01 14:50 - 2013-12-01 14:50 - 00000000 ____D C:\Users\BlueRsX\AppData\Roaming\TechSmith
2013-12-01 14:49 - 2013-12-01 14:49 - 00001168 _____ C:\Users\Public\Desktop\Camtasia Studio 8.lnk
2013-12-01 14:49 - 2013-12-01 14:49 - 00000000 ____D C:\ProgramData\regid.1995-08.com.techsmith
2013-12-01 14:49 - 2013-12-01 14:49 - 00000000 ____D C:\Program Files (x86)\QuickTime
2013-12-01 14:48 - 2013-12-01 14:48 - 00000000 ____D C:\ProgramData\TechSmith
2013-12-01 14:48 - 2013-12-01 14:48 - 00000000 ____D C:\Program Files (x86)\TechSmith
2013-12-01 14:46 - 2013-01-17 14:34 - 00000000 ____D C:\Users\BlueRsX\Documents\ArmAWork
2013-12-01 14:45 - 2013-12-01 14:37 - 00000000 ____D C:\Users\BlueRsX\Downloads\Camtasia Studio FULL 8.1.2 + Serials [ThumperDC]
2013-12-01 14:32 - 2013-12-01 14:32 - 00001030 _____ C:\Users\Public\Desktop\WhatPulse.lnk
2013-12-01 14:32 - 2013-12-01 14:32 - 00000000 ____D C:\Users\BlueRsX\AppData\Local\CrashRpt
2013-12-01 14:32 - 2013-12-01 14:32 - 00000000 ____D C:\Program Files (x86)\WinPcap
2013-12-01 14:32 - 2013-12-01 14:32 - 00000000 ____D C:\Program Files (x86)\WhatPulse2
2013-12-01 14:30 - 2013-12-01 14:30 - 13022136 _____ (WhatPulse ) C:\Users\BlueRsX\Downloads\whatpulse-win-2.3.exe
2013-12-01 13:10 - 2013-11-14 22:17 - 00000000 ____D C:\Users\BlueRsX\AppData\Roaming\Systweak
2013-11-30 21:30 - 2013-03-01 19:52 - 00000000 ____D C:\Program Files (x86)\Battlelog Web Plugins
2013-11-30 17:37 - 2013-11-30 17:36 - 03821064 _____ C:\Users\BlueRsX\Downloads\battlelog-web-plugins_2.3.2_130.exe
2013-11-26 12:54 - 2013-12-11 20:37 - 23183360 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-11-26 11:19 - 2013-12-11 20:37 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-11-26 11:18 - 2013-12-11 20:37 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2013-11-26 11:11 - 2013-12-11 20:37 - 17112576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-11-26 10:48 - 2013-12-11 20:37 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-11-26 10:46 - 2013-12-11 20:37 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2013-11-26 10:41 - 2013-12-11 20:37 - 02764288 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-11-26 10:29 - 2013-12-11 20:37 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-11-26 10:27 - 2013-12-11 20:37 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-11-26 10:23 - 2013-12-11 20:37 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-11-26 10:21 - 2013-12-11 20:37 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-11-26 10:18 - 2013-12-11 20:37 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-11-26 10:18 - 2013-12-11 20:37 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2013-11-26 10:16 - 2013-12-11 20:37 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2013-11-26 09:57 - 2013-12-11 20:37 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-11-26 09:38 - 2013-12-11 20:37 - 02166784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-11-26 09:38 - 2013-12-11 20:37 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-11-26 09:35 - 2013-12-11 20:37 - 05769216 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-11-26 09:32 - 2013-12-11 20:37 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-11-26 09:28 - 2013-12-11 20:37 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2013-11-26 09:16 - 2013-12-11 20:37 - 04243968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-11-26 09:02 - 2013-12-11 20:37 - 01995264 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-11-26 08:48 - 2013-12-11 20:37 - 12996608 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-11-26 08:32 - 2013-12-11 20:37 - 01928192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-11-26 08:26 - 2013-12-11 20:37 - 11221504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-11-26 08:07 - 2013-12-11 20:37 - 02334208 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-11-26 07:40 - 2013-12-11 20:37 - 01395200 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-11-26 07:34 - 2013-12-11 20:37 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2013-11-26 07:34 - 2013-12-11 20:37 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2013-11-26 07:33 - 2013-12-11 20:37 - 01820160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-11-26 07:27 - 2013-12-11 20:37 - 01157632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-11-25 16:46 - 2013-11-25 16:46 - 00001337 _____ C:\Users\BlueRsX\Desktop\hammer - Verknüpfung.lnk
2013-11-25 16:45 - 2012-11-19 21:32 - 00000000 ____D C:\Users\BlueRsX\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
Files to move or delete:
====================
C:\ProgramData\dsgsdgdsgdsgw.pad
C:\Users\BlueRsX\HldsUpdateTool.exe
C:\Users\BlueRsX\worldpainter_1.4.0.exe
C:\Users\BlueRsX\worldpainter_1.5.0.exe
Some content of TEMP:
====================
C:\Users\BlueRsX\AppData\Local\Temp\12-10_vista_win7_win8_64_dd_ccc_whql_net4.exe
C:\Users\BlueRsX\AppData\Local\Temp\13-9_win7_win8_64_dd_ccc_whql.exe
C:\Users\BlueRsX\AppData\Local\Temp\AcDeltree.exe
C:\Users\BlueRsX\AppData\Local\Temp\AskSLib.dll
C:\Users\BlueRsX\AppData\Local\Temp\BackupSetup.exe
C:\Users\BlueRsX\AppData\Local\Temp\CmdLineExt02.dll
C:\Users\BlueRsX\AppData\Local\Temp\Creative Cloud Helper.exe
C:\Users\BlueRsX\AppData\Local\Temp\drm_dyndata_7390005.dll
C:\Users\BlueRsX\AppData\Local\Temp\DRVMGT.DLL
C:\Users\BlueRsX\AppData\Local\Temp\dsp_ipp.dll
C:\Users\BlueRsX\AppData\Local\Temp\DTLite4471-0335.exe
C:\Users\BlueRsX\AppData\Local\Temp\i4jdel0.exe
C:\Users\BlueRsX\AppData\Local\Temp\IminentSetup_20121115.exe
C:\Users\BlueRsX\AppData\Local\Temp\installerdll28017420.dll
C:\Users\BlueRsX\AppData\Local\Temp\jansi-32-git-Bukkit-1.5.2-R0.1-b2771jnks.dll
C:\Users\BlueRsX\AppData\Local\Temp\jansi-32-git-Bukkit-1.5.2-R1.0-b2788jnks.dll
C:\Users\BlueRsX\AppData\Local\Temp\jansi-32-git-Bukkit-1.6.2-R1.0-b2879jnks.dll
C:\Users\BlueRsX\AppData\Local\Temp\jre-7u11-windows-i586-iftw.exe
C:\Users\BlueRsX\AppData\Local\Temp\jre-7u25-windows-i586-iftw.exe
C:\Users\BlueRsX\AppData\Local\Temp\Offercast2802_MYC_.exe
C:\Users\BlueRsX\AppData\Local\Temp\qc_a402013b_7656_4f6f_b57f_5a8ef69f5fc4_32.exe
C:\Users\BlueRsX\AppData\Local\Temp\setupenu.dll
C:\Users\BlueRsX\AppData\Local\Temp\setupger.dll
C:\Users\BlueRsX\AppData\Local\Temp\SIntf16.dll
C:\Users\BlueRsX\AppData\Local\Temp\SIntf32.dll
C:\Users\BlueRsX\AppData\Local\Temp\SIntfNT.dll
C:\Users\BlueRsX\AppData\Local\Temp\SkypeSetup.exe
C:\Users\BlueRsX\AppData\Local\Temp\sonarinst.exe
C:\Users\BlueRsX\AppData\Local\Temp\sqlite-3.7.2-sqlitejdbc.dll
C:\Users\BlueRsX\AppData\Local\Temp\swt-win32-3349.dll
C:\Users\BlueRsX\AppData\Local\Temp\vcredist_x64.exe
C:\Users\BlueRsX\AppData\Local\Temp\xmlUpdater.exe
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2013-12-12 20:58
==================== End Of Log ============================
--- --- --- Großes Dankeschön, dass du dir Zeit nimmst  |
| Themen zu Virus: Registry Blockiert |
| avast, besser, blockiert, dateien, detected, fehlermeldung, formatierung, frage, illegal, infiziert, kleine, löschen, lösung, modifikation, nicht mehr, nichts, probleme, registry, server, setup, starten, steam, virus, win, win7, zugriff |
Baum-Darstellung