|
Plagegeister aller Art und deren Bekämpfung: Virus: Registry BlockiertWindows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
25.12.2013, 00:00 | #1 |
| Virus: Registry Blockiert Guten Abend alle miteinander! Erstmal möchte ich mich dafür entschuldigen, falls diese Frage schon einmal gestellt wurde. Aus ähnlichen Threads konnte ich keine Lösung beziehen, und sitze schon seit Stunden an dem Problem. Mir ist heute aufgefallen, dass ich seit geraumer Zeit infiziert bin. Mein Antivirusprogramm (Avast!) sagt nichts, der scheint also weitgehenst undetected zu sein. Eine kleine Hintergrundgeschichte: Ich wollte mit Freunden einen Kurzfilm in DayZ (ArmaII Modifikation) drehen, und wir brauchten das nötige Material (Autos, Items, Skins), also suchten wir nach einer Software. Uns war klar, dass das ganze illegal ist, aber wir wussten es nicht besser, und waren warschleinlich zu naiv, um zu glauben, dass Freehacks sicher sind. Programm entpackt, und gestartet. Danach geschah nichts. Ich konnte ohne Probleme das Spiel über Steam starten und auch auf Server connecten. Nur heute fiel es mir auf. Nach einer recht langen Spielpause startete ich DayZ wieder, und bekam eine Fehlermeldung "Bad Serial number given in Setup". Recht offensichtlich, was das heißt. Überall wurde mit empfohlen die Registries zu löschen oder zu editieren. Wahrscheinlich sorgte der vermeindliche Hack dafür, dass ich nicht mehr auf meine reg Dateien zugreifen kann. Zumindest nicht auf die Registries der ARMAIIOA. Hier der Fehler, der erscheint, wenn ich die Reg verändern will: Ich weise euch darauf hin, dass ich vollen Zugriff (Adminrechte) besitze. Dann habe ich das ganze nochmal im Sicherheitsmodus von Win7 (professional) gestartet, ebenfalls das gleiche Problem. Ich wäre sehr froh über: -Eine Erklärung, wie und was der Virus macht, um die Registry zu blockieren -Eine Erklärung,Wie ich das ganze beheben kann Außerdem würde ich wissen, ob eine formatierung nötig und angebracht wäre. Mit freundlichen Grüßen, Fluffy. Falls etwas |
25.12.2013, 01:15 | #2 |
/// Winkelfunktion /// TB-Süch-Tiger™ | Virus: Registry Blockiert Hallo und
__________________Hast du noch weitere Logs (mit Funden)? Malwarebytes und/oder andere Virenscanner, sind die mal fündig geworden? Ich frage deswegen nach => http://www.trojaner-board.de/125889-...tml#post941520 Bitte keine neuen Virenscans machen sondern erst nur schon vorhandene Logs in CODE-Tags posten! Relevant sind nur Logs der letzten 7 Tage bzw. seitdem das Problem besteht! Zudem bitte auch ein Log mit Farbars Tool machen: Scan mit Farbar's Recovery Scan Tool (FRST) Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop: FRST 32-Bit | FRST 64-Bit (Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
Lesestoff: Posten in CODE-Tags Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR, 7Z-Archive zu packen erschwert mir massiv die Arbeit, es sei denn natürlich die Datei wäre ansonsten zu gross für das Forum. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
__________________ |
25.12.2013, 12:11 | #3 |
| Virus: Registry Blockiert Danke cosinus, dass du so schnell weiterhelfen konntest.
__________________Ich entschuldige mich nochmals, falls ich wichtige Sachen vergessen hab zu erwähnen. Zu den Virenscannern: Nein. Die Virenscanner (Avira, danach Avast) haben nichts ausser verdächtigen Dateien gefunden, die aber harmlos sind. Dementsprechend gibts keine Logs. Ich habe das Farbar Recovery Scan Tool runtergeladen und gestartet und das ganze mal gescannt. FRST Logfile: FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 23-12-2013 01 Ran by BlueRsX (administrator) on BLUERSX-PC on 25-12-2013 12:02:33 Running from C:\Users\BlueRsX\Downloads Windows 7 Ultimate Service Pack 1 (X64) OS Language: German Standard Internet Explorer Version 11 Boot Mode: Normal ==================== Processes (Whitelisted) ================= (AMD) C:\Windows\System32\atiesrxx.exe (Wacom Technology, Corp.) C:\Program Files\Tablet\Pen\Pen_TouchService.exe (Microsoft Corporation) C:\Windows\System32\wisptis.exe (AMD) C:\Windows\System32\atieclxx.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe (Microsoft Corporation) C:\Windows\System32\wisptis.exe (Wacom Technology, Corp.) C:\Program Files\Tablet\Pen\Pen_TouchUser.exe (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.22.3\GoogleCrashHandler.exe (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.22.3\GoogleCrashHandler64.exe (Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe (Skillbrains) C:\Users\BlueRsX\AppData\Local\Skillbrains\lightshot\4.4.2.10\Lightshot.exe (Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe (ManyCam LLC) C:\Program Files (x86)\ManyCam\Bin\ManyCam.exe (Akamai Technologies, Inc.) C:\Users\BlueRsX\AppData\Local\Akamai\netsession_win.exe (Akamai Technologies, Inc.) C:\Users\BlueRsX\AppData\Local\Akamai\netsession_win.exe () C:\Program Files (x86)\WhatPulse2\whatpulse.exe () C:\Ace of Spades\Bamboo Dock\BambooCore.exe (Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\CEPServiceManager4\CEPServiceManager.exe () C:\Program Files (x86)\Expat Shield\bin\openvpnas.exe (Desura Pty Ltd) C:\Program Files (x86)\Desura\desura.exe (AnchorFree Inc.) C:\Program Files (x86)\Expat Shield\HssWPR\hsssrv.exe () C:\Program Files (x86)\Expat Shield\bin\hsswd.exe (LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe (Dropbox, Inc.) C:\Users\BlueRsX\AppData\Roaming\Dropbox\bin\Dropbox.exe () C:\Program Files\Autodesk\3ds Max 2014\NVIDIA\Satellite\raysat_3dsmax2014_64server.exe (MyPCBackup.com) C:\Program Files (x86)\MyPC Backup\MyPC Backup.exe () C:\Windows\SysWOW64\PnkBstrA.exe (Razer Inc.) C:\Program Files (x86)\Razer\Razer Game Booster\RzKLService.exe (OpenOffice.org) C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe (Stardock) C:\Program Files (x86)\Stardock\ObjectDockFree\ObjectDock.exe (Wacom Technology, Corp.) C:\Program Files\Tablet\Pen\Pen_Tablet.exe (Wacom Technology, Corp.) C:\Program Files\Tablet\Pen\Pen_TabletUser.exe (OpenOffice.org) C:\Program Files (x86)\OpenOffice.org 3\program\soffice.bin (Wacom Technology, Corp.) C:\Program Files\Tablet\Pen\Pen_Tablet.exe () C:\Program Files (x86)\BuzzSearch\bin\utilBuzzSearch.exe (Stardock) C:\Program Files (x86)\Stardock\ObjectDockFree\Dock64.exe (Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE (Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE (Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\ink\InputPersonalization.exe () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe (MAGIX AG) C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe (Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\HEX\Adobe CEF Helper.exe (Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe (Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_170.exe (Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_170.exe ==================== Registry (Whitelisted) ================== HKLM\...\Run: [AdobeAAMUpdater-1.0] - C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\updaterstartuputility.exe [472984 2013-06-03] (Adobe Systems Incorporated) HKLM-x32\...\Run: [BambooCore] - C:\Ace of Spades\Bamboo Dock\BambooCore.exe [646744 2012-10-16] () HKLM-x32\...\Run: [amd_dc_opt] - C:\Program Files (x86)\AMD\Dual-Core Optimizer\amd_dc_opt.exe [77824 2008-07-22] (AMD) HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [253816 2013-03-12] (Oracle Corporation) HKLM-x32\...\Run: [Adobe Creative Cloud] - C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2236816 2013-07-12] (Adobe Systems Incorporated) HKLM-x32\...\Run: [AvastUI.exe] - C:\Program Files\AVAST Software\Avast\AvastUI.exe [3764024 2013-12-24] (AVAST Software) HKLM-x32\...\Run: [AdobeCS5.5ServiceManager] - C:\Program Files (x86)\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe [1523360 2011-01-12] (Adobe Systems Incorporated) HKLM-x32\...\Run: [SwitchBoard] - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) HKLM-x32\...\Run: [20131121] - C:\Program Files\AVAST Software\Avast\Setup\emupdate\f8ed429a-0684-444f-9df3-503b8aa4976c.exe [180184 2013-11-23] (AVAST Software) HKLM-x32\...\Run: [LogMeIn Hamachi Ui] - C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [3806544 2013-11-29] (LogMeIn Inc.) HKCU\...\Run: [Steam] - C:\Program Files (x86)\Steam\Steam.exe [1823656 2013-12-11] (Valve Corporation) HKCU\...\Run: [mapdisk] - C:\Users\BlueRsX\Documents\ArmAWork\mapdisk.bat [50 2013-01-17] () HKCU\...\Run: [LightShot] - C:\Users\BlueRsX\AppData\Local\Skillbrains\lightshot\LightShot.exe [226592 2013-09-27] () HKCU\...\Run: [Skype] - C:\Program Files (x86)\Skype\Phone\Skype.exe [20584608 2013-11-14] (Skype Technologies S.A.) HKCU\...\Run: [Desura] - C:\Program Files (x86)\Desura\desura.exe [2529096 2013-03-23] (Desura Pty Ltd) HKCU\...\Run: [ManyCam] - C:\Program Files (x86)\ManyCam\Bin\ManyCam.exe [5399888 2013-06-10] (ManyCam LLC) HKCU\...\Run: [Akamai NetSession Interface] - C:\Users\BlueRsX\AppData\Local\Akamai\netsession_win.exe [4489472 2013-06-05] (Akamai Technologies, Inc.) HKCU\...\Run: [DAEMON Tools Lite] - C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3673184 2013-07-03] (Disc Soft Ltd) HKCU\...\Run: [WhatPulse] - C:\Program Files (x86)\WhatPulse2\whatpulse.exe [3112960 2013-11-27] () MountPoints2: {246ef77d-3600-11e2-ae1b-b9c0d837dd4d} - E:\Autorun.exe MountPoints2: {7e41c194-a081-11e2-8d36-002354404155} - F:\shelexec.exe Das ist Farnell.wmv Startup: C:\Users\BlueRsX\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk ShortcutTarget: Dropbox.lnk -> C:\Users\BlueRsX\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.) Startup: C:\Users\BlueRsX\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MyPC Backup.lnk ShortcutTarget: MyPC Backup.lnk -> C:\Program Files (x86)\MyPC Backup\MyPC Backup.exe (MyPCBackup.com) Startup: C:\Users\BlueRsX\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.4.1.lnk ShortcutTarget: OpenOffice.org 3.4.1.lnk -> C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe () Startup: C:\Users\BlueRsX\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Stardock ObjectDock.lnk ShortcutTarget: Stardock ObjectDock.lnk -> C:\Program Files (x86)\Stardock\ObjectDockFree\ObjectDock.exe (Stardock) ==================== Internet (Whitelisted) ==================== HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.apeha.ru BHO: avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software) BHO: Expat Shield Class - {3706EE7C-3CAD-445D-8A43-03EBC3B75908} - C:\Program Files (x86)\Expat Shield\HssIE\ExpatIE_64.dll (AnchorFree Inc.) BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software) BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation) BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation) BHO: DVDVideoSoft WebPageAdjuster Class - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns64.dll No File BHO-x32: Expat Shield Class - {3706EE7C-3CAD-445D-8A43-03EBC3B75908} - C:\Program Files (x86)\Expat Shield\HssIE\ExpatIE.dll (AnchorFree Inc.) BHO-x32: BuzzSearch - {5cf5a690-c8f4-488e-9d20-f21aef602d41} - C:\Program Files (x86)\BuzzSearch\BuzzSearchBHO.dll (BuzzSearch) BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation) BHO-x32: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software) BHO-x32: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation) BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation) BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) BHO-x32: DVDVideoSoft WebPageAdjuster Class - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns.dll No File Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software) Toolbar: HKLM - avast! Online Security - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software) Toolbar: HKLM-x32 - avast! Online Security - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software) Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies) Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt Tcpip\..\Interfaces\{A118592F-7855-4FF4-83AE-B5EA6DF024C3}: [NameServer]8.8.8.8 FireFox: ======== FF ProfilePath: C:\Users\BlueRsX\AppData\Roaming\Mozilla\Firefox\Profiles\lfes38bc.default FF NetworkProxy: "ftp", "46.137.17.166" FF NetworkProxy: "ftp_port", 3128 FF NetworkProxy: "http", "46.137.17.166" FF NetworkProxy: "http_port", 3128 FF NetworkProxy: "no_proxies_on", "localhost, 127.0.0.1, stealthy.co" FF NetworkProxy: "share_proxy_settings", true FF NetworkProxy: "socks", "46.137.17.166" FF NetworkProxy: "socks_port", 3128 FF NetworkProxy: "ssl", "46.137.17.166" FF NetworkProxy: "ssl_port", 3128 FF NetworkProxy: "type", 0 FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_170.dll () FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation) FF Plugin: adobe.com/AdobeAAMDetect - C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems) FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_170.dll () FF Plugin-x32: @esn.me/esnsonar,version=0.70.4 - C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll (ESN Social Software AB) FF Plugin-x32: @esn/esnlaunch,version=2.1.3 - C:\Program Files (x86)\Battlelog Web Plugins\2.1.3\npesnlaunch.dll No File FF Plugin-x32: @esn/npbattlelog,version=2.3.2 - C:\Program Files (x86)\Battlelog Web Plugins\2.3.2\npbattlelog.dll (EA Digital Illusions CE AB) FF Plugin-x32: @Google.com/GoogleEarthPlugin - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google) FF Plugin-x32: @java.com/DTPlugin,version=10.25.2 - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=10.25.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation) FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL (Microsoft Corporation) FF Plugin-x32: @pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks) FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.) FF Plugin-x32: @wacom.com/wacom-plugin,version=1.1.0.5 - C:\Program Files (x86)\TabletPlugins\npwacom.dll (Wacom, Inc.) FF Plugin-x32: adobe.com/AdobeAAMDetect - C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll (Adobe Systems) FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Users\BlueRsX\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS) FF Plugin HKCU: pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks) FF Plugin HKCU: ubisoft.com/uplaypc - C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll () FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml FF Extension: Battlefield Play4Free - C:\Users\BlueRsX\AppData\Roaming\Mozilla\Firefox\Profiles\lfes38bc.default\Extensions\battlefieldplay4free@ea.com FF Extension: FT DeepDark - C:\Users\BlueRsX\AppData\Roaming\Mozilla\Firefox\Profiles\lfes38bc.default\Extensions\{77d2ed30-4cd2-11e0-b8af-0800200c9a66} FF Extension: BuzzSearch - C:\Users\BlueRsX\AppData\Roaming\Mozilla\Firefox\Profiles\lfes38bc.default\Extensions\firefox@mybuzzsearch.com.xpi FF Extension: Stealthy - C:\Users\BlueRsX\AppData\Roaming\Mozilla\Firefox\Profiles\lfes38bc.default\Extensions\stealthyextension@gmail.com.xpi FF Extension: NoScript - C:\Users\BlueRsX\AppData\Roaming\Mozilla\Firefox\Profiles\lfes38bc.default\Extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi FF Extension: Adblock Plus - C:\Users\BlueRsX\AppData\Roaming\Mozilla\Firefox\Profiles\lfes38bc.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi FF Extension: Expat Shield Helper (Please allow this installation) - C:\Program Files (x86)\Mozilla Firefox\extensions\afurladvisor@anchorfree.com FF HKLM-x32\...\Firefox\Extensions: [webbooster@iminent.com] - C:\Program Files (x86)\Iminent\webbooster@iminent.com FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF FF HKLM-x32\...\Firefox\Extensions: [{ACAA314B-EEBA-48e4-AD47-84E31C44796C}] - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\ff\ Chrome: ======= CHR HomePage: CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\30.0.1599.101\PepperFlash\pepflashplayer.dll No File CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\30.0.1599.101\ppGoogleNaClPluginChrome.dll No File CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\30.0.1599.101\pdf.dll No File CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation) CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL (Microsoft Corporation) CHR Plugin: (Google Earth Plugin) - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google) CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.124\npGoogleUpdate3.dll No File CHR Plugin: (Java(TM) Platform SE 7 U9) - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation) CHR Plugin: ( Wacom Dynamic Link Library) - C:\Program Files (x86)\TabletPlugins\npwacom.dll (Wacom, Inc.) CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_5_502_110.dll No File CHR Plugin: (Java Deployment Toolkit 7.0.90.5) - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation) CHR Extension: (Magic Actions for YouTube\u2122) - C:\Users\BlueRsX\AppData\Local\Google\Chrome\User Data\Default\Extensions\abjcfabbhafbcdfjoecdgepllmpfceif\6.2.4_0 CHR Extension: (Google Drive) - C:\Users\BlueRsX\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0 CHR Extension: (JAM with Chrome) - C:\Users\BlueRsX\AppData\Local\Google\Chrome\User Data\Default\Extensions\bggjdpbfjakfkacljidachigalghbnpk\0.2_0 CHR Extension: (YouTube) - C:\Users\BlueRsX\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0 CHR Extension: (HIFANA X W+K TOKYO LAB) - C:\Users\BlueRsX\AppData\Local\Google\Chrome\User Data\Default\Extensions\bmhjjmolopikkbigemoocmebohfpnmkj\2_0 CHR Extension: (Google Search) - C:\Users\BlueRsX\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0 CHR Extension: (AdBlock) - C:\Users\BlueRsX\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.6.8_0 CHR Extension: (Ultimate Flash Sonic) - C:\Users\BlueRsX\AppData\Local\Google\Chrome\User Data\Default\Extensions\hmgmfbijldhdncjcipeocgkgbjhaecfp\1.0_0 CHR Extension: (CanvasDraw) - C:\Users\BlueRsX\AppData\Local\Google\Chrome\User Data\Default\Extensions\knfimpamngmggpbamfoomdpebdoleghe\2_0 CHR Extension: (Chrome In-App Payments service) - C:\Users\BlueRsX\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.11_0 CHR Extension: (Battlefield Play4Free) - C:\Users\BlueRsX\AppData\Local\Google\Chrome\User Data\Default\Extensions\oiokahphinmbmakkehgelkmpolmnbkdh\1.0.96.0_0 CHR Extension: (AdBlock) - C:\Users\BlueRsX\AppData\Local\Google\Chrome\User Data\Default\Extensions\onomnaapllbibeeggnncehgfnkfafpfb\0.2_0 CHR Extension: (Click&Clean App) - C:\Users\BlueRsX\AppData\Local\Google\Chrome\User Data\Default\Extensions\pdabfienifkbhoihedcgeogidfmibmhp\8.0_0 CHR Extension: (Gmail) - C:\Users\BlueRsX\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0 CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx CHR HKLM-x32\...\Chrome\Extension: [jhjjdgbhohaallcimgcmakfiobacimkm] - C:\Program Files (x86)\BuzzSearch\jhjjdgbhohaallcimgcmakfiobacimkm.crx ==================== Services (Whitelisted) ================= R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2013-12-24] (AVAST Software) S2 BackupStack; C:\Program Files (x86)\MyPC Backup\BackupStack.exe [38440 2013-09-19] (Just Develop It) S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [49152 2013-02-04] () R2 ExpatShieldService; C:\Program Files (x86)\Expat Shield\bin\openvpnas.exe [331608 2012-01-17] () S3 ExpatTrayService; C:\Program Files (x86)\Expat Shield\bin\ExpatTrayService.EXE [77520 2012-01-17] () R2 ExpatWd; C:\Program Files (x86)\Expat Shield\bin\hsswd.exe [329544 2012-01-05] () R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [377104 2013-10-11] (LogMeIn, Inc.) R2 mi-raysat_3dsmax2014_64; C:\Program Files\Autodesk\3ds Max 2014\NVIDIA\Satellite\raysat_3dsmax2014_64server.exe [86016 2011-09-15] () R2 PnkBstrA; C:\Windows\SysWow64\PnkBstrA.exe [76888 2013-10-05] () S3 rpcapd; C:\Program Files (x86)\WinPcap\rpcapd.exe [118520 2013-03-01] (Riverbed Technology, Inc.) R2 RzKLService; C:\Program Files (x86)\Razer\Razer Game Booster\RzKLService.exe [105448 2013-11-22] (Razer Inc.) S3 TunngleService; C:\Program Files (x86)\Tunngle\TnglCtrl.exe [759192 2013-09-03] (Tunngle.net GmbH) S2 Update BuzzSearch; C:\Program Files (x86)\BuzzSearch\updateBuzzSearch.exe [66336 2013-11-08] () R2 Util BuzzSearch; C:\Program Files (x86)\BuzzSearch\bin\utilBuzzSearch.exe [66336 2013-11-16] () ==================== Drivers (Whitelisted) ==================== R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [78648 2013-12-24] (AVAST Software) R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [92544 2013-10-24] (AVAST Software) R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2013-10-24] () R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1034464 2013-12-24] (AVAST Software) R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [422216 2013-12-24] (AVAST Software) R3 aswStm; C:\Windows\system32\drivers\aswStm.sys [82744 2013-12-24] (AVAST Software) R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [207904 2013-12-24] () S2 atksgt; C:\Windows\System32\DRIVERS\atksgt.sys [310984 2013-01-22] () R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283064 2013-07-28] (Disc Soft Ltd) S3 libusb0; C:\Windows\System32\DRIVERS\libusb0.sys [42944 2010-07-28] (hxxp://libusb-win32.sourceforge.net) R2 lirsgt; C:\Windows\System32\DRIVERS\lirsgt.sys [42696 2013-01-20] () R3 ManyCam; C:\Windows\System32\DRIVERS\mcvidrv_x64.sys [44928 2012-10-11] (ManyCam LLC) R3 mcaudrv_simple; C:\Windows\System32\drivers\mcaudrv_x64.sys [28160 2013-01-31] (ManyCam LLC) R3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [8192 2005-03-29] () R2 NPF; C:\Windows\System32\drivers\npf.sys [36600 2013-03-01] (Riverbed Technology, Inc.) R3 tap0901t; C:\Windows\System32\DRIVERS\tap0901t.sys [31232 2009-09-16] (Tunngle.net) S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [x] S3 FairplayKD; \??\C:\ProgramData\MTA San Andreas All\Common\temp\FairplayKD.sys [x] S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [x] S3 tsusbhub; system32\drivers\tsusbhub.sys [x] S3 VGPU; System32\drivers\rdvgkmd.sys [x] S3 WinRing0_1_2_0; \??\C:\Program Files (x86)\IObit\Game Booster 3\Driver\WinRing0x64.sys [x] S3 X6va008; \??\C:\Windows\SysWOW64\Drivers\X6va008 [x] ==================== NetSvcs (Whitelisted) =================== ==================== One Month Created Files and Folders ======== 2013-12-25 12:02 - 2013-12-25 12:03 - 00023133 _____ C:\Users\BlueRsX\Downloads\FRST.txt 2013-12-25 12:01 - 2013-12-25 12:01 - 00000000 ____D C:\FRST 2013-12-25 12:00 - 2013-12-25 12:00 - 01928636 _____ (Farbar) C:\Users\BlueRsX\Downloads\FRST64.exe 2013-12-24 22:56 - 2013-12-24 22:56 - 01510511 _____ C:\Users\BlueRsX\Downloads\ArmA II Launcher 2010-07-22.zip 2013-12-24 15:37 - 2013-12-24 15:37 - 00000299 _____ C:\Users\BlueRsX\Desktop\unbenannt.mcx 2013-12-24 15:14 - 2013-12-24 15:14 - 00000963 _____ C:\Users\BlueRsX\Desktop\MacroX.lnk 2013-12-24 15:14 - 2013-12-24 15:14 - 00000000 ____D C:\Users\BlueRsX\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MacroX 2013-12-24 15:14 - 2013-12-24 15:14 - 00000000 ____D C:\Program Files (x86)\MacroX 2013-12-24 15:13 - 2013-12-24 15:13 - 02480915 _____ C:\Users\BlueRsX\Downloads\macrox!.exe 2013-12-24 15:10 - 2013-12-24 15:10 - 00001071 _____ C:\Users\Public\Desktop\Macro Recorder.lnk 2013-12-24 15:10 - 2013-12-24 15:10 - 00000000 ____D C:\Program Files (x86)\MacroRecorder 2013-12-24 15:09 - 2013-12-24 15:09 - 00719480 _____ (Jitbit Software ) C:\Users\BlueRsX\Downloads\MacroRecorderSetup.exe 2013-12-24 15:06 - 2013-12-24 15:06 - 02641401 _____ C:\Users\BlueRsX\Downloads\AutoHotkey_L_Install.exe 2013-12-24 15:06 - 2013-12-24 15:06 - 00001351 _____ C:\Users\BlueRsX\Documents\AutoHotkey.ahk 2013-12-24 15:06 - 2013-12-24 15:06 - 00000000 ____D C:\Program Files\AutoHotkey 2013-12-24 10:56 - 2013-12-24 10:56 - 00082744 _____ (AVAST Software) C:\Windows\system32\Drivers\aswstm.sys 2013-12-24 09:18 - 2013-12-24 09:18 - 01398336 _____ C:\uhjkjhkhjkhjkhj.vtf 2013-12-23 15:52 - 2013-12-23 15:52 - 00012107 _____ C:\Users\BlueRsX\Desktop\gafar2.zip 2013-12-23 15:03 - 2013-12-23 15:44 - 00011973 _____ C:\Users\BlueRsX\Desktop\gafar.zip 2013-12-22 20:09 - 2013-12-22 20:09 - 00002124 _____ C:\Users\Public\Desktop\MTA San Andreas 1.3.lnk 2013-12-22 20:08 - 2013-12-22 20:09 - 00000000 ____D C:\ProgramData\MTA San Andreas All 2013-12-22 20:08 - 2013-12-22 20:09 - 00000000 ____D C:\Program Files (x86)\MTA San Andreas 1.3 2013-12-22 20:06 - 2013-12-22 20:07 - 20676200 _____ (Multi Theft Auto) C:\Users\BlueRsX\Downloads\mtasa-1.3.4.exe 2013-12-20 21:32 - 2013-12-20 21:32 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox 2013-12-20 15:29 - 2013-12-20 15:29 - 00000222 _____ C:\Users\BlueRsX\Desktop\Starbound.url 2013-12-19 21:19 - 2013-12-19 21:19 - 00000000 ____D C:\Users\BlueRsX\AppData\Local\Razer_Inc 2013-12-19 21:19 - 2013-12-19 21:19 - 00000000 ____D C:\Program Files (x86)\Razer 2013-12-19 21:15 - 2013-12-19 21:19 - 00000000 ____D C:\Users\BlueRsX\Documents\Razer 2013-12-19 21:15 - 2013-12-19 21:15 - 00003176 _____ C:\Windows\System32\Tasks\Razer_Game_Booster_AutoUpdate 2013-12-19 21:13 - 2013-12-19 21:19 - 00000000 ____D C:\Users\BlueRsX\AppData\Local\Razer 2013-12-19 21:10 - 2013-12-19 21:19 - 00002129 _____ C:\Users\Public\Desktop\Razer Game Booster.lnk 2013-12-19 21:10 - 2013-12-19 21:19 - 00000000 ____D C:\ProgramData\Razer 2013-12-19 21:04 - 2013-12-19 21:05 - 00000000 ____D C:\Users\BlueRsX\Downloads\Download 2013-12-19 21:02 - 2013-12-19 21:03 - 00953168 _____ C:\Users\BlueRsX\Downloads\Razer_Game_Booster_downloader.exe 2013-12-19 20:46 - 2013-12-19 20:47 - 00000000 ____D C:\Users\BlueRsX\Desktop\Portfolio 2013-12-19 18:14 - 2013-12-19 18:24 - 00000000 ____D C:\Users\BlueRsX\Desktop\Musik 2013-12-18 21:42 - 2013-12-18 21:42 - 00000000 ____D C:\Users\BlueRsX\Desktop\Effectstock 2013-12-17 20:47 - 2013-12-17 20:47 - 00002212 _____ C:\Users\Public\Desktop\Google Earth.lnk 2013-12-16 17:49 - 2013-12-16 17:49 - 00005791 _____ C:\Users\BlueRsX\Desktop\Penispumpe.log 2013-12-16 17:48 - 2013-12-16 17:48 - 00011336 _____ C:\Users\BlueRsX\Desktop\Penispumpe.vmf 2013-12-16 16:45 - 2013-12-16 16:45 - 00003288 ____N C:\bootsqm.dat 2013-12-15 20:08 - 2013-12-15 20:10 - 00018759 _____ C:\Users\BlueRsX\Desktop\öööööö.log 2013-12-15 20:08 - 2013-12-15 20:10 - 00017937 _____ C:\Users\BlueRsX\Desktop\öööööö.prt 2013-12-15 20:08 - 2013-12-15 20:09 - 00245428 _____ C:\Users\BlueRsX\Desktop\öööööö.vmx 2013-12-15 19:50 - 2013-12-15 20:10 - 00245428 _____ C:\Users\BlueRsX\Desktop\öööööö.vmf 2013-12-12 20:39 - 2013-12-12 20:39 - 00193980 _____ C:\Users\BlueRsX\Desktop\Unbenannt 1.odt 2013-12-12 20:39 - 2013-12-12 20:39 - 00000106 ____H C:\Users\BlueRsX\Desktop\.~lock.Unbenannt 1.odt# 2013-12-12 20:00 - 2013-12-12 20:00 - 00966760 _____ C:\Users\BlueRsX\Desktop\Logo.psd 2013-12-11 20:38 - 2013-05-10 06:56 - 14631424 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll 2013-12-11 20:38 - 2013-05-10 06:56 - 12625920 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL 2013-12-11 20:38 - 2013-05-10 05:56 - 12625408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmploc.DLL 2013-12-11 20:38 - 2013-05-10 05:56 - 11410432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll 2013-12-11 20:37 - 2013-11-26 12:54 - 23183360 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2013-12-11 20:37 - 2013-11-26 11:19 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2013-12-11 20:37 - 2013-11-26 11:18 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll 2013-12-11 20:37 - 2013-11-26 11:11 - 17112576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2013-12-11 20:37 - 2013-11-26 10:48 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll 2013-12-11 20:37 - 2013-11-26 10:46 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll 2013-12-11 20:37 - 2013-11-26 10:41 - 02764288 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2013-12-11 20:37 - 2013-11-26 10:29 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll 2013-12-11 20:37 - 2013-11-26 10:27 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll 2013-12-11 20:37 - 2013-11-26 10:23 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb 2013-12-11 20:37 - 2013-11-26 10:21 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll 2013-12-11 20:37 - 2013-11-26 10:18 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe 2013-12-11 20:37 - 2013-11-26 10:18 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe 2013-12-11 20:37 - 2013-11-26 10:16 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll 2013-12-11 20:37 - 2013-11-26 09:57 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2013-12-11 20:37 - 2013-11-26 09:38 - 02166784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll 2013-12-11 20:37 - 2013-11-26 09:38 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll 2013-12-11 20:37 - 2013-11-26 09:35 - 05769216 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2013-12-11 20:37 - 2013-11-26 09:32 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll 2013-12-11 20:37 - 2013-11-26 09:28 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll 2013-12-11 20:37 - 2013-11-26 09:16 - 04243968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll 2013-12-11 20:37 - 2013-11-26 09:02 - 01995264 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl 2013-12-11 20:37 - 2013-11-26 08:48 - 12996608 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2013-12-11 20:37 - 2013-11-26 08:32 - 01928192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl 2013-12-11 20:37 - 2013-11-26 08:26 - 11221504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll 2013-12-11 20:37 - 2013-11-26 08:07 - 02334208 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2013-12-11 20:37 - 2013-11-26 07:40 - 01395200 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2013-12-11 20:37 - 2013-11-26 07:34 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll 2013-12-11 20:37 - 2013-11-26 07:34 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll 2013-12-11 20:37 - 2013-11-26 07:33 - 01820160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll 2013-12-11 20:37 - 2013-11-26 07:27 - 01157632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll 2013-12-11 19:54 - 2013-12-11 20:00 - 00000000 ____D C:\Users\BlueRsX\Desktop\Tutorial1 2013-12-11 19:32 - 2013-12-11 19:32 - 47423532 _____ C:\Users\BlueRsX\Desktop\firsttutorial.wav 2013-12-11 19:24 - 2013-11-23 19:26 - 00417792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll 2013-12-11 19:24 - 2013-11-23 18:47 - 00465920 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll 2013-12-11 19:24 - 2013-11-12 03:23 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll 2013-12-11 19:24 - 2013-11-12 03:07 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll 2013-12-11 19:24 - 2013-10-30 03:32 - 00335360 _____ (Microsoft Corporation) C:\Windows\system32\msieftp.dll 2013-12-11 19:24 - 2013-10-30 03:19 - 00301568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msieftp.dll 2013-12-11 19:24 - 2013-10-30 02:24 - 03155968 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys 2013-12-11 19:24 - 2013-10-19 03:18 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\imagehlp.dll 2013-12-11 19:24 - 2013-10-19 02:36 - 00159232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imagehlp.dll 2013-12-11 19:23 - 2013-10-12 03:32 - 00150016 _____ (Microsoft Corporation) C:\Windows\system32\wshom.ocx 2013-12-11 19:23 - 2013-10-12 03:31 - 00202752 _____ (Microsoft Corporation) C:\Windows\system32\scrrun.dll 2013-12-11 19:23 - 2013-10-12 03:04 - 00121856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wshom.ocx 2013-12-11 19:23 - 2013-10-12 03:03 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scrrun.dll 2013-12-11 19:23 - 2013-10-12 02:33 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\wscript.exe 2013-12-11 19:23 - 2013-10-12 02:33 - 00156160 _____ (Microsoft Corporation) C:\Windows\system32\cscript.exe 2013-12-11 19:23 - 2013-10-12 02:15 - 00141824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wscript.exe 2013-12-11 19:23 - 2013-10-12 02:15 - 00126976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cscript.exe 2013-12-11 19:23 - 2013-10-04 03:16 - 00116736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmk.sys 2013-12-11 19:23 - 2013-10-04 02:36 - 00230400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys 2013-12-10 17:04 - 2013-12-10 18:17 - 00000000 ___RD C:\Users\BlueRsX\Desktop\Filmprojekt 2013-12-07 16:57 - 2013-12-07 21:06 - 00922124 _____ C:\Users\BlueRsX\Desktop\zerstorbarumgwebudnfreg.bsp 2013-12-07 16:57 - 2013-12-07 21:06 - 00014762 _____ C:\Users\BlueRsX\Desktop\zerstorbarumgwebudnfreg.log 2013-12-07 16:57 - 2013-12-07 21:06 - 00010967 _____ C:\Users\BlueRsX\Desktop\zerstorbarumgwebudnfreg.prt 2013-12-07 16:57 - 2013-12-07 16:57 - 00297346 _____ C:\Users\BlueRsX\Desktop\zerstorbarumgwebudnfreg.vmx 2013-12-07 13:58 - 2013-12-07 21:06 - 00296816 _____ C:\Users\BlueRsX\Desktop\zerstorbarumgwebudnfreg.vmf 2013-12-07 08:42 - 2013-12-07 08:42 - 00000926 _____ C:\Users\Public\Desktop\LogMeIn Hamachi.lnk 2013-12-07 08:42 - 2013-12-07 08:42 - 00000000 ____D C:\Program Files (x86)\LogMeIn Hamachi 2013-12-06 23:35 - 2013-12-06 23:35 - 00160140 _____ C:\Users\BlueRsX\Desktop\jkhjk.vmf 2013-12-06 23:35 - 2013-12-06 23:35 - 00160140 _____ C:\Users\BlueRsX\Desktop\#.vmf 2013-12-06 14:07 - 2013-10-14 18:00 - 00028368 _____ (Microsoft Corporation) C:\Windows\system32\IEUDINIT.EXE 2013-12-06 14:01 - 2013-12-06 14:01 - 01051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll 2013-12-06 14:01 - 2013-12-06 14:01 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe 2013-12-06 14:01 - 2013-12-06 14:01 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll 2013-12-06 14:01 - 2013-12-06 14:01 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat 2013-12-06 14:01 - 2013-12-06 14:01 - 00523776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll 2013-12-06 14:01 - 2013-12-06 14:01 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll 2013-12-06 14:01 - 2013-12-06 14:01 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll 2013-12-06 14:01 - 2013-12-06 14:01 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec 2013-12-06 14:01 - 2013-12-06 14:01 - 00244736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll 2013-12-06 14:01 - 2013-12-06 14:01 - 00238288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll 2013-12-06 14:01 - 2013-12-06 14:01 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll 2013-12-06 14:01 - 2013-12-06 14:01 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll 2013-12-06 14:01 - 2013-12-06 14:01 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll 2013-12-06 14:01 - 2013-12-06 14:01 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll 2013-12-06 14:01 - 2013-12-06 14:01 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll 2013-12-06 14:01 - 2013-12-06 14:01 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll 2013-12-06 14:01 - 2013-12-06 14:01 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe 2013-12-06 14:01 - 2013-12-06 14:01 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe 2013-12-06 14:01 - 2013-12-06 14:01 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll 2013-12-06 14:01 - 2013-12-06 14:01 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe 2013-12-06 14:01 - 2013-12-06 14:01 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll 2013-12-06 14:01 - 2013-12-06 14:01 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll 2013-12-06 14:01 - 2013-12-06 14:01 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx 2013-12-06 14:01 - 2013-12-06 14:01 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll 2013-12-06 14:01 - 2013-12-06 14:01 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll 2013-12-06 14:01 - 2013-12-06 14:01 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll 2013-12-06 14:01 - 2013-12-06 14:01 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll 2013-12-06 14:01 - 2013-12-06 14:01 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll 2013-12-06 14:00 - 2013-12-06 14:00 - 01228800 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll 2013-12-06 14:00 - 2013-12-06 14:00 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll 2013-12-06 14:00 - 2013-12-06 14:00 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll 2013-12-06 14:00 - 2013-12-06 14:00 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2013-12-06 14:00 - 2013-12-06 14:00 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat 2013-12-06 14:00 - 2013-12-06 14:00 - 00610304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll 2013-12-06 14:00 - 2013-12-06 14:00 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll 2013-12-06 14:00 - 2013-12-06 14:00 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll 2013-12-06 14:00 - 2013-12-06 14:00 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\html.iec 2013-12-06 14:00 - 2013-12-06 14:00 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll 2013-12-06 14:00 - 2013-12-06 14:00 - 00263376 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll 2013-12-06 14:00 - 2013-12-06 14:00 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll 2013-12-06 14:00 - 2013-12-06 14:00 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll 2013-12-06 14:00 - 2013-12-06 14:00 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll 2013-12-06 14:00 - 2013-12-06 14:00 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll 2013-12-06 14:00 - 2013-12-06 14:00 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe 2013-12-06 14:00 - 2013-12-06 14:00 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll 2013-12-06 14:00 - 2013-12-06 14:00 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe 2013-12-06 14:00 - 2013-12-06 14:00 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll 2013-12-06 14:00 - 2013-12-06 14:00 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll 2013-12-06 14:00 - 2013-12-06 14:00 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll 2013-12-06 14:00 - 2013-12-06 14:00 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll 2013-12-06 14:00 - 2013-12-06 14:00 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe 2013-12-06 14:00 - 2013-12-06 14:00 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll 2013-12-06 14:00 - 2013-12-06 14:00 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll 2013-12-06 14:00 - 2013-12-06 14:00 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll 2013-12-06 14:00 - 2013-12-06 14:00 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe 2013-12-06 14:00 - 2013-12-06 14:00 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll 2013-12-06 14:00 - 2013-12-06 14:00 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe 2013-12-06 14:00 - 2013-12-06 14:00 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll 2013-12-06 14:00 - 2013-12-06 14:00 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll 2013-12-06 14:00 - 2013-12-06 14:00 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll 2013-12-06 14:00 - 2013-12-06 14:00 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx 2013-12-06 14:00 - 2013-12-06 14:00 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe 2013-12-06 14:00 - 2013-12-06 14:00 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll 2013-12-06 14:00 - 2013-12-06 14:00 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll 2013-12-06 14:00 - 2013-12-06 14:00 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll 2013-12-06 14:00 - 2013-12-06 14:00 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll 2013-12-06 14:00 - 2013-12-06 14:00 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll 2013-12-06 14:00 - 2013-12-06 14:00 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll 2013-12-06 14:00 - 2013-12-06 14:00 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll 2013-12-06 14:00 - 2013-12-06 14:00 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll 2013-12-06 14:00 - 2013-12-06 14:00 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll 2013-12-06 14:00 - 2013-12-06 14:00 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll 2013-12-06 14:00 - 2013-12-06 14:00 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll 2013-12-06 14:00 - 2013-12-06 14:00 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe 2013-12-06 14:00 - 2013-12-06 14:00 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe 2013-12-06 14:00 - 2013-12-06 14:00 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe 2013-12-06 14:00 - 2013-12-06 14:00 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe 2013-12-06 13:53 - 2013-12-06 14:08 - 00011300 _____ C:\Windows\IE11_main.log 2013-12-06 13:48 - 2013-12-24 10:56 - 00001966 _____ C:\Users\Public\Desktop\avast! Free Antivirus.lnk 2013-12-05 17:50 - 2013-12-05 17:50 - 00037938 _____ C:\Users\BlueRsX\Desktop\1.camproj 2013-12-05 17:38 - 2013-12-05 17:38 - 64135212 _____ C:\Users\BlueRsX\Desktop\1.wav 2013-12-05 16:05 - 2013-12-20 20:49 - 00000000 ____D C:\Users\BlueRsX\AppData\Local\CrashDumps 2013-12-03 04:50 - 2013-12-23 12:51 - 00001752 _____ C:\Users\BlueRsX\Desktop\Photoshop CS6 - Verknüpfung.lnk 2013-12-02 21:40 - 2013-12-02 21:40 - 00019979 _____ C:\Users\BlueRsX\Downloads\beethoven.zip 2013-12-02 21:40 - 2013-12-02 21:40 - 00005793 _____ C:\Users\BlueRsX\Downloads\anticlimax.zip 2013-12-02 21:38 - 2013-12-02 21:38 - 00570256 _____ C:\Users\BlueRsX\Downloads\beyond_sky.zip 2013-12-02 21:38 - 2013-12-02 21:38 - 00173098 _____ C:\Users\BlueRsX\Downloads\anthem.zip 2013-12-02 21:36 - 2013-12-02 21:36 - 00076237 _____ C:\Users\BlueRsX\Downloads\sloppy_hollow.zip 2013-12-02 21:36 - 2013-12-02 21:36 - 00050016 _____ C:\Users\BlueRsX\Downloads\penelope_anne.zip 2013-12-02 21:36 - 2013-12-02 21:36 - 00018460 _____ C:\Users\BlueRsX\Downloads\agent_red.zip 2013-12-02 21:34 - 2013-12-02 21:34 - 00168841 _____ C:\Users\BlueRsX\Downloads\silent_reaction.zip 2013-12-02 21:33 - 2013-12-02 21:33 - 01749283 _____ C:\Users\BlueRsX\Downloads\crackin.zip 2013-12-02 21:33 - 2013-12-02 21:33 - 00866132 _____ C:\Users\BlueRsX\Downloads\europe_underground.zip 2013-12-02 21:33 - 2013-12-02 21:33 - 00238891 _____ C:\Users\BlueRsX\Downloads\europe_underground_worn.zip 2013-12-02 21:33 - 2013-12-02 21:33 - 00161820 _____ C:\Users\BlueRsX\Downloads\equal_sans.zip 2013-12-02 21:32 - 2013-12-02 21:32 - 00416317 _____ C:\Users\BlueRsX\Downloads\motion_picture.zip 2013-12-02 21:32 - 2013-12-02 21:32 - 00367342 _____ C:\Users\BlueRsX\Downloads\filbert_brush.zip 2013-12-02 21:31 - 2013-12-02 21:32 - 00064205 _____ C:\Users\BlueRsX\Downloads\optien.zip 2013-12-02 21:31 - 2013-12-02 21:31 - 00382820 _____ C:\Users\BlueRsX\Downloads\ringer.zip 2013-12-02 21:30 - 2013-12-02 21:30 - 00602696 _____ C:\Users\BlueRsX\Downloads\stroke_dimension.zip 2013-12-02 21:29 - 2013-12-02 21:30 - 00241734 _____ C:\Users\BlueRsX\Downloads\sketchica.zip 2013-12-02 21:29 - 2013-12-02 21:29 - 00301822 _____ C:\Users\BlueRsX\Downloads\ventography.zip 2013-12-02 21:04 - 2013-12-03 04:50 - 00000000 ____D C:\Users\BlueRsX\Downloads\Photoshop CS6 2013-12-01 15:02 - 2013-12-01 15:02 - 01698310 _____ C:\Users\BlueRsX\Desktop\test1.mp4 2013-12-01 14:53 - 2013-12-01 14:53 - 00000000 ____D C:\Users\BlueRsX\AppData\Local\TechSmith 2013-12-01 14:52 - 2013-12-11 19:19 - 00003584 _____ C:\Users\BlueRsX\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini 2013-12-01 14:50 - 2013-12-11 19:32 - 00000000 ____D C:\Users\BlueRsX\Documents\Camtasia Studio 2013-12-01 14:50 - 2013-12-01 14:50 - 00000000 ____D C:\Users\BlueRsX\AppData\Roaming\TechSmith 2013-12-01 14:49 - 2013-12-01 14:49 - 00001168 _____ C:\Users\Public\Desktop\Camtasia Studio 8.lnk 2013-12-01 14:49 - 2013-12-01 14:49 - 00000000 ____D C:\ProgramData\regid.1995-08.com.techsmith 2013-12-01 14:49 - 2013-12-01 14:49 - 00000000 ____D C:\Program Files (x86)\QuickTime 2013-12-01 14:48 - 2013-12-01 14:48 - 00000000 ____D C:\ProgramData\TechSmith 2013-12-01 14:48 - 2013-12-01 14:48 - 00000000 ____D C:\Program Files (x86)\TechSmith 2013-12-01 14:41 - 2013-12-01 20:33 - 00000000 ____D C:\Users\BlueRsX\Desktop\YouTube 2013-12-01 14:37 - 2013-12-01 14:45 - 00000000 ____D C:\Users\BlueRsX\Downloads\Camtasia Studio FULL 8.1.2 + Serials [ThumperDC] 2013-12-01 14:32 - 2013-12-25 12:04 - 00000000 ____D C:\Users\BlueRsX\AppData\Local\WhatPulse 2013-12-01 14:32 - 2013-12-01 14:32 - 00001030 _____ C:\Users\Public\Desktop\WhatPulse.lnk 2013-12-01 14:32 - 2013-12-01 14:32 - 00000000 ____D C:\Users\BlueRsX\AppData\Local\CrashRpt 2013-12-01 14:32 - 2013-12-01 14:32 - 00000000 ____D C:\Program Files (x86)\WinPcap 2013-12-01 14:32 - 2013-12-01 14:32 - 00000000 ____D C:\Program Files (x86)\WhatPulse2 2013-12-01 14:30 - 2013-12-01 14:30 - 13022136 _____ (WhatPulse ) C:\Users\BlueRsX\Downloads\whatpulse-win-2.3.exe 2013-11-30 17:36 - 2013-11-30 17:37 - 03821064 _____ C:\Users\BlueRsX\Downloads\battlelog-web-plugins_2.3.2_130.exe 2013-11-25 16:46 - 2013-11-25 16:46 - 00001337 _____ C:\Users\BlueRsX\Desktop\hammer - Verknüpfung.lnk ==================== One Month Modified Files and Folders ======= 2013-12-25 12:04 - 2013-12-01 14:32 - 00000000 ____D C:\Users\BlueRsX\AppData\Local\WhatPulse 2013-12-25 12:03 - 2013-12-25 12:02 - 00023133 _____ C:\Users\BlueRsX\Downloads\FRST.txt 2013-12-25 12:01 - 2013-12-25 12:01 - 00000000 ____D C:\FRST 2013-12-25 12:00 - 2013-12-25 12:00 - 01928636 _____ (Farbar) C:\Users\BlueRsX\Downloads\FRST64.exe 2013-12-25 11:59 - 2012-11-27 20:25 - 00000000 ____D C:\Users\BlueRsX\AppData\Roaming\Skype 2013-12-25 11:55 - 2012-11-21 20:59 - 00000000 ____D C:\Program Files (x86)\Steam 2013-12-25 11:53 - 2013-01-09 20:23 - 00000000 ____D C:\HammerAutosave 2013-12-25 11:44 - 2012-12-21 20:52 - 00001112 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2013-12-25 11:19 - 2013-11-05 20:25 - 00000000 ____D C:\Users\BlueRsX\AppData\Local\Adobe 2013-12-25 11:17 - 2013-07-28 08:24 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job 2013-12-25 10:59 - 2009-07-14 05:45 - 00013536 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2013-12-25 10:59 - 2009-07-14 05:45 - 00013536 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2013-12-25 10:56 - 2012-11-19 21:06 - 01558063 _____ C:\Windows\WindowsUpdate.log 2013-12-25 10:50 - 2013-10-04 17:24 - 00000000 ____D C:\Users\BlueRsX\AppData\Local\LogMeIn Hamachi 2013-12-25 10:48 - 2013-05-07 21:54 - 00000000 ___RD C:\Users\BlueRsX\Dropbox 2013-12-25 10:48 - 2013-05-07 21:51 - 00000000 ____D C:\Users\BlueRsX\AppData\Roaming\Dropbox 2013-12-25 10:46 - 2012-12-21 20:52 - 00001108 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2013-12-25 10:46 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT 2013-12-25 10:46 - 2009-07-14 05:51 - 00080931 _____ C:\Windows\setupact.log 2013-12-24 23:07 - 2012-11-21 07:25 - 00496272 _____ C:\Windows\PFRO.log 2013-12-24 22:57 - 2013-01-02 09:40 - 00000000 ____D C:\Users\BlueRsX\AppData\Local\ArmA 2 OA 2013-12-24 22:56 - 2013-12-24 22:56 - 01510511 _____ C:\Users\BlueRsX\Downloads\ArmA II Launcher 2010-07-22.zip 2013-12-24 22:41 - 2013-01-25 16:14 - 00000392 _____ C:\Windows\Tasks\update-sys.job 2013-12-24 22:39 - 2013-01-02 09:38 - 00000000 ____D C:\Users\BlueRsX\AppData\Local\ArmA 2 2013-12-24 22:25 - 2012-11-21 22:33 - 00000000 ____D C:\Users\BlueRsX\AppData\Roaming\TS3Client 2013-12-24 21:44 - 2013-01-25 16:14 - 00000392 _____ C:\Windows\Tasks\update-S-1-5-21-3985545688-2783562880-4087805722-1001.job 2013-12-24 15:37 - 2013-12-24 15:37 - 00000299 _____ C:\Users\BlueRsX\Desktop\unbenannt.mcx 2013-12-24 15:14 - 2013-12-24 15:14 - 00000963 _____ C:\Users\BlueRsX\Desktop\MacroX.lnk 2013-12-24 15:14 - 2013-12-24 15:14 - 00000000 ____D C:\Users\BlueRsX\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MacroX 2013-12-24 15:14 - 2013-12-24 15:14 - 00000000 ____D C:\Program Files (x86)\MacroX 2013-12-24 15:13 - 2013-12-24 15:13 - 02480915 _____ C:\Users\BlueRsX\Downloads\macrox!.exe 2013-12-24 15:10 - 2013-12-24 15:10 - 00001071 _____ C:\Users\Public\Desktop\Macro Recorder.lnk 2013-12-24 15:10 - 2013-12-24 15:10 - 00000000 ____D C:\Program Files (x86)\MacroRecorder 2013-12-24 15:09 - 2013-12-24 15:09 - 00719480 _____ (Jitbit Software ) C:\Users\BlueRsX\Downloads\MacroRecorderSetup.exe 2013-12-24 15:06 - 2013-12-24 15:06 - 02641401 _____ C:\Users\BlueRsX\Downloads\AutoHotkey_L_Install.exe 2013-12-24 15:06 - 2013-12-24 15:06 - 00001351 _____ C:\Users\BlueRsX\Documents\AutoHotkey.ahk 2013-12-24 15:06 - 2013-12-24 15:06 - 00000000 ____D C:\Program Files\AutoHotkey 2013-12-24 15:06 - 2009-07-14 19:18 - 00000000 ____D C:\Windows\ShellNew 2013-12-24 10:56 - 2013-12-24 10:56 - 00082744 _____ (AVAST Software) C:\Windows\system32\Drivers\aswstm.sys 2013-12-24 10:56 - 2013-12-06 13:48 - 00001966 _____ C:\Users\Public\Desktop\avast! Free Antivirus.lnk 2013-12-24 10:56 - 2013-03-05 15:14 - 00207904 _____ C:\Windows\system32\Drivers\aswVmm.sys 2013-12-24 10:56 - 2012-12-27 10:52 - 00003924 _____ C:\Windows\System32\Tasks\avast! Emergency Update 2013-12-24 10:56 - 2012-12-27 08:46 - 01034464 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys 2013-12-24 10:56 - 2012-12-27 08:46 - 00422216 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys 2013-12-24 10:56 - 2012-12-27 08:46 - 00334136 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe 2013-12-24 10:56 - 2012-12-27 08:46 - 00078648 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys 2013-12-24 10:56 - 2012-12-27 08:45 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr 2013-12-24 09:18 - 2013-12-24 09:18 - 01398336 _____ C:\uhjkjhkhjkhjkhj.vtf 2013-12-24 09:17 - 2012-11-19 21:14 - 00000000 ____D C:\Users\BlueRsX\AppData\Local\VirtualStore 2013-12-24 08:54 - 2012-11-20 17:32 - 00000000 ____D C:\Users\BlueRsX\Documents\GTA San Andreas User Files 2013-12-24 08:52 - 2009-07-14 18:58 - 00701310 _____ C:\Windows\system32\perfh007.dat 2013-12-24 08:52 - 2009-07-14 18:58 - 00150210 _____ C:\Windows\system32\perfc007.dat 2013-12-24 08:52 - 2009-07-14 06:13 - 01620612 _____ C:\Windows\system32\PerfStringBackup.INI 2013-12-23 15:52 - 2013-12-23 15:52 - 00012107 _____ C:\Users\BlueRsX\Desktop\gafar2.zip 2013-12-23 15:44 - 2013-12-23 15:03 - 00011973 _____ C:\Users\BlueRsX\Desktop\gafar.zip 2013-12-23 14:55 - 2013-03-19 14:07 - 00076288 ___SH C:\Users\BlueRsX\Documents\Thumbs.db 2013-12-23 12:51 - 2013-12-03 04:50 - 00001752 _____ C:\Users\BlueRsX\Desktop\Photoshop CS6 - Verknüpfung.lnk 2013-12-23 12:28 - 2012-11-20 23:35 - 00290184 _____ C:\Windows\SysWOW64\PnkBstrB.xtr 2013-12-23 12:28 - 2012-11-20 21:27 - 00290184 _____ C:\Windows\SysWOW64\PnkBstrB.exe 2013-12-23 12:27 - 2012-11-20 21:27 - 00280904 _____ C:\Windows\SysWOW64\PnkBstrB.ex0 2013-12-23 12:26 - 2012-11-20 20:56 - 00000000 ____D C:\Program Files (x86)\Origin 2013-12-23 07:27 - 2013-02-08 07:43 - 00000000 ___RD C:\Program Files (x86)\Skype 2013-12-23 07:27 - 2012-11-27 20:24 - 00000000 ____D C:\ProgramData\Skype 2013-12-22 20:09 - 2013-12-22 20:09 - 00002124 _____ C:\Users\Public\Desktop\MTA San Andreas 1.3.lnk 2013-12-22 20:09 - 2013-12-22 20:08 - 00000000 ____D C:\ProgramData\MTA San Andreas All 2013-12-22 20:09 - 2013-12-22 20:08 - 00000000 ____D C:\Program Files (x86)\MTA San Andreas 1.3 2013-12-22 20:07 - 2013-12-22 20:06 - 20676200 _____ (Multi Theft Auto) C:\Users\BlueRsX\Downloads\mtasa-1.3.4.exe 2013-12-21 07:55 - 2009-07-14 06:09 - 00000000 ____D C:\Windows\System32\Tasks\WPD 2013-12-21 07:54 - 2012-12-06 07:51 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2013-12-20 21:32 - 2013-12-20 21:32 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox 2013-12-20 20:49 - 2013-12-05 16:05 - 00000000 ____D C:\Users\BlueRsX\AppData\Local\CrashDumps 2013-12-20 15:29 - 2013-12-20 15:29 - 00000222 _____ C:\Users\BlueRsX\Desktop\Starbound.url 2013-12-19 21:32 - 2013-03-30 08:36 - 00000000 ____D C:\Users\BlueRsX\AppData\Local\Warframe 2013-12-19 21:28 - 2012-11-20 21:06 - 00255943 _____ C:\Windows\DirectX.log 2013-12-19 21:19 - 2013-12-19 21:19 - 00000000 ____D C:\Users\BlueRsX\AppData\Local\Razer_Inc 2013-12-19 21:19 - 2013-12-19 21:19 - 00000000 ____D C:\Program Files (x86)\Razer 2013-12-19 21:19 - 2013-12-19 21:15 - 00000000 ____D C:\Users\BlueRsX\Documents\Razer 2013-12-19 21:19 - 2013-12-19 21:13 - 00000000 ____D C:\Users\BlueRsX\AppData\Local\Razer 2013-12-19 21:19 - 2013-12-19 21:10 - 00002129 _____ C:\Users\Public\Desktop\Razer Game Booster.lnk 2013-12-19 21:19 - 2013-12-19 21:10 - 00000000 ____D C:\ProgramData\Razer 2013-12-19 21:15 - 2013-12-19 21:15 - 00003176 _____ C:\Windows\System32\Tasks\Razer_Game_Booster_AutoUpdate 2013-12-19 21:05 - 2013-12-19 21:04 - 00000000 ____D C:\Users\BlueRsX\Downloads\Download 2013-12-19 21:03 - 2013-12-19 21:02 - 00953168 _____ C:\Users\BlueRsX\Downloads\Razer_Game_Booster_downloader.exe 2013-12-19 20:47 - 2013-12-19 20:46 - 00000000 ____D C:\Users\BlueRsX\Desktop\Portfolio 2013-12-19 18:24 - 2013-12-19 18:14 - 00000000 ____D C:\Users\BlueRsX\Desktop\Musik 2013-12-19 17:45 - 2013-05-04 15:33 - 00000000 ____D C:\Users\BlueRsX\AppData\Roaming\Audacity 2013-12-18 21:42 - 2013-12-18 21:42 - 00000000 ____D C:\Users\BlueRsX\Desktop\Effectstock 2013-12-17 20:47 - 2013-12-17 20:47 - 00002212 _____ C:\Users\Public\Desktop\Google Earth.lnk 2013-12-17 20:47 - 2012-12-21 20:52 - 00000000 ____D C:\Program Files (x86)\Google 2013-12-16 17:49 - 2013-12-16 17:49 - 00005791 _____ C:\Users\BlueRsX\Desktop\Penispumpe.log 2013-12-16 17:48 - 2013-12-16 17:48 - 00011336 _____ C:\Users\BlueRsX\Desktop\Penispumpe.vmf 2013-12-16 16:57 - 2012-11-21 10:10 - 00000000 ____D C:\ProgramData\Adobe 2013-12-16 16:47 - 2013-11-05 20:25 - 00000000 ____D C:\Users\BlueRsX\AppData\Roaming\Adobe 2013-12-16 16:45 - 2013-12-16 16:45 - 00003288 ____N C:\bootsqm.dat 2013-12-15 20:10 - 2013-12-15 20:08 - 00018759 _____ C:\Users\BlueRsX\Desktop\öööööö.log 2013-12-15 20:10 - 2013-12-15 20:08 - 00017937 _____ C:\Users\BlueRsX\Desktop\öööööö.prt 2013-12-15 20:10 - 2013-12-15 19:50 - 00245428 _____ C:\Users\BlueRsX\Desktop\öööööö.vmf 2013-12-15 20:09 - 2013-12-15 20:08 - 00245428 _____ C:\Users\BlueRsX\Desktop\öööööö.vmx 2013-12-12 21:09 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\rescache 2013-12-12 20:39 - 2013-12-12 20:39 - 00193980 _____ C:\Users\BlueRsX\Desktop\Unbenannt 1.odt 2013-12-12 20:39 - 2013-12-12 20:39 - 00000106 ____H C:\Users\BlueRsX\Desktop\.~lock.Unbenannt 1.odt# 2013-12-12 20:00 - 2013-12-12 20:00 - 00966760 _____ C:\Users\BlueRsX\Desktop\Logo.psd 2013-12-12 16:45 - 2009-07-14 05:45 - 05238032 _____ C:\Windows\system32\FNTCACHE.DAT 2013-12-11 20:38 - 2012-12-10 08:16 - 00000000 ____D C:\ProgramData\Microsoft Help 2013-12-11 20:00 - 2013-12-11 19:54 - 00000000 ____D C:\Users\BlueRsX\Desktop\Tutorial1 2013-12-11 19:32 - 2013-12-11 19:32 - 47423532 _____ C:\Users\BlueRsX\Desktop\firsttutorial.wav 2013-12-11 19:32 - 2013-12-01 14:50 - 00000000 ____D C:\Users\BlueRsX\Documents\Camtasia Studio 2013-12-11 19:19 - 2013-12-01 14:52 - 00003584 _____ C:\Users\BlueRsX\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini 2013-12-10 21:39 - 2012-12-21 20:52 - 00004108 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA 2013-12-10 21:39 - 2012-12-21 20:52 - 00003856 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore 2013-12-10 21:17 - 2013-07-28 08:24 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater 2013-12-10 21:17 - 2012-11-20 19:50 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe 2013-12-10 21:17 - 2012-11-20 19:50 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl 2013-12-10 18:17 - 2013-12-10 17:04 - 00000000 ___RD C:\Users\BlueRsX\Desktop\Filmprojekt 2013-12-07 21:06 - 2013-12-07 16:57 - 00922124 _____ C:\Users\BlueRsX\Desktop\zerstorbarumgwebudnfreg.bsp 2013-12-07 21:06 - 2013-12-07 16:57 - 00014762 _____ C:\Users\BlueRsX\Desktop\zerstorbarumgwebudnfreg.log 2013-12-07 21:06 - 2013-12-07 16:57 - 00010967 _____ C:\Users\BlueRsX\Desktop\zerstorbarumgwebudnfreg.prt 2013-12-07 21:06 - 2013-12-07 13:58 - 00296816 _____ C:\Users\BlueRsX\Desktop\zerstorbarumgwebudnfreg.vmf 2013-12-07 16:57 - 2013-12-07 16:57 - 00297346 _____ C:\Users\BlueRsX\Desktop\zerstorbarumgwebudnfreg.vmx 2013-12-07 08:43 - 2012-11-19 21:14 - 00001425 _____ C:\Users\BlueRsX\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk 2013-12-07 08:42 - 2013-12-07 08:42 - 00000926 _____ C:\Users\Public\Desktop\LogMeIn Hamachi.lnk 2013-12-07 08:42 - 2013-12-07 08:42 - 00000000 ____D C:\Program Files (x86)\LogMeIn Hamachi 2013-12-07 00:16 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\PolicyDefinitions 2013-12-06 23:35 - 2013-12-06 23:35 - 00160140 _____ C:\Users\BlueRsX\Desktop\jkhjk.vmf 2013-12-06 23:35 - 2013-12-06 23:35 - 00160140 _____ C:\Users\BlueRsX\Desktop\#.vmf 2013-12-06 14:08 - 2013-12-06 13:53 - 00011300 _____ C:\Windows\IE11_main.log 2013-12-06 14:01 - 2013-12-06 14:01 - 01051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll 2013-12-06 14:01 - 2013-12-06 14:01 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe 2013-12-06 14:01 - 2013-12-06 14:01 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll 2013-12-06 14:01 - 2013-12-06 14:01 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat 2013-12-06 14:01 - 2013-12-06 14:01 - 00523776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll 2013-12-06 14:01 - 2013-12-06 14:01 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll 2013-12-06 14:01 - 2013-12-06 14:01 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll 2013-12-06 14:01 - 2013-12-06 14:01 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec 2013-12-06 14:01 - 2013-12-06 14:01 - 00244736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll 2013-12-06 14:01 - 2013-12-06 14:01 - 00238288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll 2013-12-06 14:01 - 2013-12-06 14:01 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll 2013-12-06 14:01 - 2013-12-06 14:01 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll 2013-12-06 14:01 - 2013-12-06 14:01 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll 2013-12-06 14:01 - 2013-12-06 14:01 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll 2013-12-06 14:01 - 2013-12-06 14:01 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll 2013-12-06 14:01 - 2013-12-06 14:01 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll 2013-12-06 14:01 - 2013-12-06 14:01 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe 2013-12-06 14:01 - 2013-12-06 14:01 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe 2013-12-06 14:01 - 2013-12-06 14:01 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll 2013-12-06 14:01 - 2013-12-06 14:01 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe 2013-12-06 14:01 - 2013-12-06 14:01 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll 2013-12-06 14:01 - 2013-12-06 14:01 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll 2013-12-06 14:01 - 2013-12-06 14:01 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx 2013-12-06 14:01 - 2013-12-06 14:01 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll 2013-12-06 14:01 - 2013-12-06 14:01 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll 2013-12-06 14:01 - 2013-12-06 14:01 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll 2013-12-06 14:01 - 2013-12-06 14:01 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll 2013-12-06 14:01 - 2013-12-06 14:01 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll 2013-12-06 14:00 - 2013-12-06 14:00 - 01228800 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll 2013-12-06 14:00 - 2013-12-06 14:00 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll 2013-12-06 14:00 - 2013-12-06 14:00 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll 2013-12-06 14:00 - 2013-12-06 14:00 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2013-12-06 14:00 - 2013-12-06 14:00 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat 2013-12-06 14:00 - 2013-12-06 14:00 - 00610304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll 2013-12-06 14:00 - 2013-12-06 14:00 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll 2013-12-06 14:00 - 2013-12-06 14:00 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll 2013-12-06 14:00 - 2013-12-06 14:00 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\html.iec 2013-12-06 14:00 - 2013-12-06 14:00 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll 2013-12-06 14:00 - 2013-12-06 14:00 - 00263376 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll 2013-12-06 14:00 - 2013-12-06 14:00 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll 2013-12-06 14:00 - 2013-12-06 14:00 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll 2013-12-06 14:00 - 2013-12-06 14:00 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll 2013-12-06 14:00 - 2013-12-06 14:00 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll 2013-12-06 14:00 - 2013-12-06 14:00 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe 2013-12-06 14:00 - 2013-12-06 14:00 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll 2013-12-06 14:00 - 2013-12-06 14:00 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe 2013-12-06 14:00 - 2013-12-06 14:00 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll 2013-12-06 14:00 - 2013-12-06 14:00 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll 2013-12-06 14:00 - 2013-12-06 14:00 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll 2013-12-06 14:00 - 2013-12-06 14:00 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll 2013-12-06 14:00 - 2013-12-06 14:00 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe 2013-12-06 14:00 - 2013-12-06 14:00 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll 2013-12-06 14:00 - 2013-12-06 14:00 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll 2013-12-06 14:00 - 2013-12-06 14:00 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll 2013-12-06 14:00 - 2013-12-06 14:00 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe 2013-12-06 14:00 - 2013-12-06 14:00 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll 2013-12-06 14:00 - 2013-12-06 14:00 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe 2013-12-06 14:00 - 2013-12-06 14:00 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll 2013-12-06 14:00 - 2013-12-06 14:00 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll 2013-12-06 14:00 - 2013-12-06 14:00 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll 2013-12-06 14:00 - 2013-12-06 14:00 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx 2013-12-06 14:00 - 2013-12-06 14:00 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe 2013-12-06 14:00 - 2013-12-06 14:00 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll 2013-12-06 14:00 - 2013-12-06 14:00 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll 2013-12-06 14:00 - 2013-12-06 14:00 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll 2013-12-06 14:00 - 2013-12-06 14:00 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll 2013-12-06 14:00 - 2013-12-06 14:00 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll 2013-12-06 14:00 - 2013-12-06 14:00 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll 2013-12-06 14:00 - 2013-12-06 14:00 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll 2013-12-06 14:00 - 2013-12-06 14:00 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll 2013-12-06 14:00 - 2013-12-06 14:00 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll 2013-12-06 14:00 - 2013-12-06 14:00 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll 2013-12-06 14:00 - 2013-12-06 14:00 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll 2013-12-06 14:00 - 2013-12-06 14:00 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe 2013-12-06 14:00 - 2013-12-06 14:00 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe 2013-12-06 14:00 - 2013-12-06 14:00 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe 2013-12-06 14:00 - 2013-12-06 14:00 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe 2013-12-06 13:40 - 2012-11-19 21:14 - 00000000 ____D C:\Users\BlueRsX 2013-12-06 13:40 - 2009-07-14 06:08 - 00032632 _____ C:\Windows\Tasks\SCHEDLGU.TXT 2013-12-06 13:38 - 2013-07-22 16:40 - 00000000 ____D C:\Users\BlueRsX\AppData\Local\Akamai 2013-12-06 13:38 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\registration 2013-12-05 17:50 - 2013-12-05 17:50 - 00037938 _____ C:\Users\BlueRsX\Desktop\1.camproj 2013-12-05 17:38 - 2013-12-05 17:38 - 64135212 _____ C:\Users\BlueRsX\Desktop\1.wav 2013-12-04 14:37 - 2012-11-20 15:57 - 00173600 _____ C:\Users\BlueRsX\AppData\Local\GDIPFONTCACHEV1.DAT 2013-12-03 04:50 - 2013-12-02 21:04 - 00000000 ____D C:\Users\BlueRsX\Downloads\Photoshop CS6 2013-12-03 04:50 - 2013-02-05 12:04 - 00000000 ____D C:\Users\BlueRsX\AppData\Roaming\uTorrent 2013-12-02 21:40 - 2013-12-02 21:40 - 00019979 _____ C:\Users\BlueRsX\Downloads\beethoven.zip 2013-12-02 21:40 - 2013-12-02 21:40 - 00005793 _____ C:\Users\BlueRsX\Downloads\anticlimax.zip 2013-12-02 21:38 - 2013-12-02 21:38 - 00570256 _____ C:\Users\BlueRsX\Downloads\beyond_sky.zip 2013-12-02 21:38 - 2013-12-02 21:38 - 00173098 _____ C:\Users\BlueRsX\Downloads\anthem.zip 2013-12-02 21:36 - 2013-12-02 21:36 - 00076237 _____ C:\Users\BlueRsX\Downloads\sloppy_hollow.zip 2013-12-02 21:36 - 2013-12-02 21:36 - 00050016 _____ C:\Users\BlueRsX\Downloads\penelope_anne.zip 2013-12-02 21:36 - 2013-12-02 21:36 - 00018460 _____ C:\Users\BlueRsX\Downloads\agent_red.zip 2013-12-02 21:34 - 2013-12-02 21:34 - 00168841 _____ C:\Users\BlueRsX\Downloads\silent_reaction.zip 2013-12-02 21:33 - 2013-12-02 21:33 - 01749283 _____ C:\Users\BlueRsX\Downloads\crackin.zip 2013-12-02 21:33 - 2013-12-02 21:33 - 00866132 _____ C:\Users\BlueRsX\Downloads\europe_underground.zip 2013-12-02 21:33 - 2013-12-02 21:33 - 00238891 _____ C:\Users\BlueRsX\Downloads\europe_underground_worn.zip 2013-12-02 21:33 - 2013-12-02 21:33 - 00161820 _____ C:\Users\BlueRsX\Downloads\equal_sans.zip 2013-12-02 21:32 - 2013-12-02 21:32 - 00416317 _____ C:\Users\BlueRsX\Downloads\motion_picture.zip 2013-12-02 21:32 - 2013-12-02 21:32 - 00367342 _____ C:\Users\BlueRsX\Downloads\filbert_brush.zip 2013-12-02 21:32 - 2013-12-02 21:31 - 00064205 _____ C:\Users\BlueRsX\Downloads\optien.zip 2013-12-02 21:31 - 2013-12-02 21:31 - 00382820 _____ C:\Users\BlueRsX\Downloads\ringer.zip 2013-12-02 21:30 - 2013-12-02 21:30 - 00602696 _____ C:\Users\BlueRsX\Downloads\stroke_dimension.zip 2013-12-02 21:30 - 2013-12-02 21:29 - 00241734 _____ C:\Users\BlueRsX\Downloads\sketchica.zip 2013-12-02 21:29 - 2013-12-02 21:29 - 00301822 _____ C:\Users\BlueRsX\Downloads\ventography.zip 2013-12-01 20:33 - 2013-12-01 14:41 - 00000000 ____D C:\Users\BlueRsX\Desktop\YouTube 2013-12-01 15:02 - 2013-12-01 15:02 - 01698310 _____ C:\Users\BlueRsX\Desktop\test1.mp4 2013-12-01 14:53 - 2013-12-01 14:53 - 00000000 ____D C:\Users\BlueRsX\AppData\Local\TechSmith 2013-12-01 14:50 - 2013-12-01 14:50 - 00000000 ____D C:\Users\BlueRsX\AppData\Roaming\TechSmith 2013-12-01 14:49 - 2013-12-01 14:49 - 00001168 _____ C:\Users\Public\Desktop\Camtasia Studio 8.lnk 2013-12-01 14:49 - 2013-12-01 14:49 - 00000000 ____D C:\ProgramData\regid.1995-08.com.techsmith 2013-12-01 14:49 - 2013-12-01 14:49 - 00000000 ____D C:\Program Files (x86)\QuickTime 2013-12-01 14:48 - 2013-12-01 14:48 - 00000000 ____D C:\ProgramData\TechSmith 2013-12-01 14:48 - 2013-12-01 14:48 - 00000000 ____D C:\Program Files (x86)\TechSmith 2013-12-01 14:46 - 2013-01-17 14:34 - 00000000 ____D C:\Users\BlueRsX\Documents\ArmAWork 2013-12-01 14:45 - 2013-12-01 14:37 - 00000000 ____D C:\Users\BlueRsX\Downloads\Camtasia Studio FULL 8.1.2 + Serials [ThumperDC] 2013-12-01 14:32 - 2013-12-01 14:32 - 00001030 _____ C:\Users\Public\Desktop\WhatPulse.lnk 2013-12-01 14:32 - 2013-12-01 14:32 - 00000000 ____D C:\Users\BlueRsX\AppData\Local\CrashRpt 2013-12-01 14:32 - 2013-12-01 14:32 - 00000000 ____D C:\Program Files (x86)\WinPcap 2013-12-01 14:32 - 2013-12-01 14:32 - 00000000 ____D C:\Program Files (x86)\WhatPulse2 2013-12-01 14:30 - 2013-12-01 14:30 - 13022136 _____ (WhatPulse ) C:\Users\BlueRsX\Downloads\whatpulse-win-2.3.exe 2013-12-01 13:10 - 2013-11-14 22:17 - 00000000 ____D C:\Users\BlueRsX\AppData\Roaming\Systweak 2013-11-30 21:30 - 2013-03-01 19:52 - 00000000 ____D C:\Program Files (x86)\Battlelog Web Plugins 2013-11-30 17:37 - 2013-11-30 17:36 - 03821064 _____ C:\Users\BlueRsX\Downloads\battlelog-web-plugins_2.3.2_130.exe 2013-11-26 12:54 - 2013-12-11 20:37 - 23183360 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2013-11-26 11:19 - 2013-12-11 20:37 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2013-11-26 11:18 - 2013-12-11 20:37 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll 2013-11-26 11:11 - 2013-12-11 20:37 - 17112576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2013-11-26 10:48 - 2013-12-11 20:37 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll 2013-11-26 10:46 - 2013-12-11 20:37 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll 2013-11-26 10:41 - 2013-12-11 20:37 - 02764288 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2013-11-26 10:29 - 2013-12-11 20:37 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll 2013-11-26 10:27 - 2013-12-11 20:37 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll 2013-11-26 10:23 - 2013-12-11 20:37 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb 2013-11-26 10:21 - 2013-12-11 20:37 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll 2013-11-26 10:18 - 2013-12-11 20:37 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe 2013-11-26 10:18 - 2013-12-11 20:37 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe 2013-11-26 10:16 - 2013-12-11 20:37 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll 2013-11-26 09:57 - 2013-12-11 20:37 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2013-11-26 09:38 - 2013-12-11 20:37 - 02166784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll 2013-11-26 09:38 - 2013-12-11 20:37 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll 2013-11-26 09:35 - 2013-12-11 20:37 - 05769216 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2013-11-26 09:32 - 2013-12-11 20:37 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll 2013-11-26 09:28 - 2013-12-11 20:37 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll 2013-11-26 09:16 - 2013-12-11 20:37 - 04243968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll 2013-11-26 09:02 - 2013-12-11 20:37 - 01995264 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl 2013-11-26 08:48 - 2013-12-11 20:37 - 12996608 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2013-11-26 08:32 - 2013-12-11 20:37 - 01928192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl 2013-11-26 08:26 - 2013-12-11 20:37 - 11221504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll 2013-11-26 08:07 - 2013-12-11 20:37 - 02334208 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2013-11-26 07:40 - 2013-12-11 20:37 - 01395200 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2013-11-26 07:34 - 2013-12-11 20:37 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll 2013-11-26 07:34 - 2013-12-11 20:37 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll 2013-11-26 07:33 - 2013-12-11 20:37 - 01820160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll 2013-11-26 07:27 - 2013-12-11 20:37 - 01157632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll 2013-11-25 16:46 - 2013-11-25 16:46 - 00001337 _____ C:\Users\BlueRsX\Desktop\hammer - Verknüpfung.lnk 2013-11-25 16:45 - 2012-11-19 21:32 - 00000000 ____D C:\Users\BlueRsX\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games Files to move or delete: ==================== C:\ProgramData\dsgsdgdsgdsgw.pad C:\Users\BlueRsX\HldsUpdateTool.exe C:\Users\BlueRsX\worldpainter_1.4.0.exe C:\Users\BlueRsX\worldpainter_1.5.0.exe Some content of TEMP: ==================== C:\Users\BlueRsX\AppData\Local\Temp\12-10_vista_win7_win8_64_dd_ccc_whql_net4.exe C:\Users\BlueRsX\AppData\Local\Temp\13-9_win7_win8_64_dd_ccc_whql.exe C:\Users\BlueRsX\AppData\Local\Temp\AcDeltree.exe C:\Users\BlueRsX\AppData\Local\Temp\AskSLib.dll C:\Users\BlueRsX\AppData\Local\Temp\BackupSetup.exe C:\Users\BlueRsX\AppData\Local\Temp\CmdLineExt02.dll C:\Users\BlueRsX\AppData\Local\Temp\Creative Cloud Helper.exe C:\Users\BlueRsX\AppData\Local\Temp\drm_dyndata_7390005.dll C:\Users\BlueRsX\AppData\Local\Temp\DRVMGT.DLL C:\Users\BlueRsX\AppData\Local\Temp\dsp_ipp.dll C:\Users\BlueRsX\AppData\Local\Temp\DTLite4471-0335.exe C:\Users\BlueRsX\AppData\Local\Temp\i4jdel0.exe C:\Users\BlueRsX\AppData\Local\Temp\IminentSetup_20121115.exe C:\Users\BlueRsX\AppData\Local\Temp\installerdll28017420.dll C:\Users\BlueRsX\AppData\Local\Temp\jansi-32-git-Bukkit-1.5.2-R0.1-b2771jnks.dll C:\Users\BlueRsX\AppData\Local\Temp\jansi-32-git-Bukkit-1.5.2-R1.0-b2788jnks.dll C:\Users\BlueRsX\AppData\Local\Temp\jansi-32-git-Bukkit-1.6.2-R1.0-b2879jnks.dll C:\Users\BlueRsX\AppData\Local\Temp\jre-7u11-windows-i586-iftw.exe C:\Users\BlueRsX\AppData\Local\Temp\jre-7u25-windows-i586-iftw.exe C:\Users\BlueRsX\AppData\Local\Temp\Offercast2802_MYC_.exe C:\Users\BlueRsX\AppData\Local\Temp\qc_a402013b_7656_4f6f_b57f_5a8ef69f5fc4_32.exe C:\Users\BlueRsX\AppData\Local\Temp\setupenu.dll C:\Users\BlueRsX\AppData\Local\Temp\setupger.dll C:\Users\BlueRsX\AppData\Local\Temp\SIntf16.dll C:\Users\BlueRsX\AppData\Local\Temp\SIntf32.dll C:\Users\BlueRsX\AppData\Local\Temp\SIntfNT.dll C:\Users\BlueRsX\AppData\Local\Temp\SkypeSetup.exe C:\Users\BlueRsX\AppData\Local\Temp\sonarinst.exe C:\Users\BlueRsX\AppData\Local\Temp\sqlite-3.7.2-sqlitejdbc.dll C:\Users\BlueRsX\AppData\Local\Temp\swt-win32-3349.dll C:\Users\BlueRsX\AppData\Local\Temp\vcredist_x64.exe C:\Users\BlueRsX\AppData\Local\Temp\xmlUpdater.exe ==================== Bamital & volsnap Check ================= C:\Windows\System32\winlogon.exe => MD5 is legit C:\Windows\System32\wininit.exe => MD5 is legit C:\Windows\SysWOW64\wininit.exe => MD5 is legit C:\Windows\explorer.exe => MD5 is legit C:\Windows\SysWOW64\explorer.exe => MD5 is legit C:\Windows\System32\svchost.exe => MD5 is legit C:\Windows\SysWOW64\svchost.exe => MD5 is legit C:\Windows\System32\services.exe => MD5 is legit C:\Windows\System32\User32.dll => MD5 is legit C:\Windows\SysWOW64\User32.dll => MD5 is legit C:\Windows\System32\userinit.exe => MD5 is legit C:\Windows\SysWOW64\userinit.exe => MD5 is legit C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit LastRegBack: 2013-12-12 20:58 ==================== End Of Log ============================ --- --- --- Großes Dankeschön, dass du dir Zeit nimmst |
25.12.2013, 17:20 | #4 |
/// Winkelfunktion /// TB-Süch-Tiger™ | Virus: Registry Blockiert Bitte das andere Log additions.txt von FRST auch posten
__________________ Logfiles bitte immer in CODE-Tags posten |
25.12.2013, 18:54 | #5 |
| Virus: Registry BlockiertCode:
ATTFilter Additional scan result of Farbar Recovery Scan Tool (x64) Version: 23-12-2013 01 Ran by BlueRsX at 2013-12-25 12:06:26 Running from C:\Users\BlueRsX\Downloads Boot Mode: Normal ========================================================== ==================== Security Center ======================== AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B} AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736} ==================== Installed Programs ====================== «The Sims 3 Deluxe Edition» (build 7.0) (x32) µTorrent (x32 Version: 3.2.2.28500) 7-Zip 9.20 (x64 edition) (Version: 9.20.00.0) Ace of Spades (x32 Version: 0.75.014) Ace of Spades (x32) Adobe After Effects CC (x32 Version: 12) Adobe AIR (x32 Version: 2.6.0.19140) Adobe Community Help (x32 Version: 3.4.980) Adobe Creative Cloud (x32 Version: 2.0.2.189) Adobe Flash Player 11 ActiveX (x32 Version: 11.9.900.170) Adobe Flash Player 11 Plugin (x32 Version: 11.9.900.170) Adobe Flash Professional CS5.5 (x32 Version: 11.5) Adobe Photoshop CC (x32 Version: 14.0) Adobe Premiere Pro CC (x32 Version: 7.0.0) Age of Empires Online (x32) Akamai NetSession Interface (HKCU) Alien Swarm - SDK (x32) Alien Swarm (x32) AMD Accelerated Video Transcoding (Version: 13.15.100.30830) AMD APP SDK Runtime (Version: 10.0.1016.4) AMD Catalyst Install Manager (Version: 8.0.915.0) AMD Drag and Drop Transcoding (Version: 2.00.0000) AMD Media Foundation Decoders (Version: 1.0.80830.1925) AMD Wireless Display v3.0 (Version: 1.0.0.14) Amnesia - The Dark Descent (x32 Version: 1.2.1) APB Reloaded (x32 Version: 1.5.7.601022) Arctic Combat (x32) ARMA 2 (x32) Arma 2: DayZ Mod (x32) Arma 2: Operation Arrowhead (x32) Arma 2: Operation Arrowhead Beta (x32) Arma 2: Operation Arrowhead Demo (x32) Arma 3 Alpha Lite (x32) ASIO4ALL (x32 Version: 2.10) Audacity 2.0.3 (x32 Version: 2.0.3) Autodesk 3ds Max 2014 (Version: 16.0.420.0) Autodesk 3ds Max 2014 64-bit Populate Data (Version: 1.0.0.1) Autodesk Backburner 2014 (x32 Version: 14.0.0.0) Autodesk Composite 2014 (Version: 9.0.0.0) Autodesk DirectConnect 2014 64-bit (Version: 8.0.56.1) Autodesk Essential Skills Movies for 3ds Max 2014 64-bit (Version: 1.2.0.0) Autodesk Inventor Server Engine for 3ds Max 2014 64-bit (Version: 16.0) Autodesk Material Library 2014 (x32 Version: 4.0.32.600) Autodesk Material Library Base Resolution Image Library 2014 (x32 Version: 4.0.32.600) Autodesk Material Library Medium Resolution Image Library 2014 (x32 Version: 4.0.32.600) Autodesk Revit Interoperability for 3ds Max 2014 (Version: 13.02.15161) AutoHotkey 1.1.13.01 (Version: 1.1.13.01) avast! Free Antivirus (x32 Version: 9.0.2011) AVRStudio4 (x32 Version: 4.12.460) Bamboo (Version: 5.2.4-6) Bamboo (x32) Bamboo Dock (x32 Version: 4.1) Bamboo Dock (x32 Version: 4.1.0) Battlefield 1942™ (x32 Version: 1.6.20.0) Battlefield 3™ (x32 Version: 1.0.0.0) Battlefield 4™ Beta (x32 Version: 1.0.0.0) Battlefield Play4Free (x32) Battlefield: Bad Company™ 2 (x32 Version: 1.0.0.0) Battlelog Web Plugins (x32 Version: 2.3.2) BattlEye for OA Uninstall (x32) BattlEye Uninstall (x32) BigMacroTool 1.5 (x32) BinMake Uninstall (x32) BinPBO Personal Edition Uninstall (x32) BI's Tools drive Uninstall (x32) Blacklight: Retribution (x32) Blender (Version: 2.69) Brick-Force (x32 Version: ) Brother HL-5250DN (x32 Version: 1.00) Brother MFL-Pro Suite MFC-7820N (x32 Version: 1.0.1.0) BuzzSearch 2013.11.07.232809 (Version: 2013.11.07.232809) <==== ATTENTION Call of Duty(R) 4 - Modern Warfare(TM) (x32 Version: 1.00.0000) Call of Duty(R) 4 - Modern Warfare(TM) (x32 Version: 1.7) Call of Duty(R) 4 - Modern Warfare(TM) 1.6 Patch (x32 Version: 1.6) Call of Duty(R) 4 - Modern Warfare(TM) 1.6 Patch (x32) Call of Duty(R) 4 - Modern Warfare(TM) 1.7 Patch (x32 Version: 1.7) Call of Duty(R) 4 - Modern Warfare(TM) 1.7 Patch (x32) Call of Duty: Black Ops II - Multiplayer (x32) Camtasia Studio 8 (x32 Version: 8.1.2.1327) Castle Crashers (x32) Catalyst Control Center Graphics Previews Common (x32 Version: 2013.0830.1944.33589) Catalyst Control Center InstallProxy (x32 Version: 2013.0921.356.5161) Catalyst Control Center Localization All (x32 Version: 2013.0830.1944.33589) CCC Help Chinese Standard (x32 Version: 2013.0830.1943.33589) CCC Help Chinese Traditional (x32 Version: 2013.0830.1943.33589) CCC Help Czech (x32 Version: 2013.0830.1943.33589) CCC Help Danish (x32 Version: 2013.0830.1943.33589) CCC Help Dutch (x32 Version: 2013.0830.1943.33589) CCC Help English (x32 Version: 2013.0830.1943.33589) CCC Help Finnish (x32 Version: 2013.0830.1943.33589) CCC Help French (x32 Version: 2013.0830.1943.33589) CCC Help German (x32 Version: 2013.0830.1943.33589) CCC Help Greek (x32 Version: 2013.0830.1943.33589) CCC Help Hungarian (x32 Version: 2013.0830.1943.33589) CCC Help Italian (x32 Version: 2013.0830.1943.33589) CCC Help Japanese (x32 Version: 2013.0830.1943.33589) CCC Help Korean (x32 Version: 2013.0830.1943.33589) CCC Help Norwegian (x32 Version: 2013.0830.1943.33589) CCC Help Polish (x32 Version: 2013.0830.1943.33589) CCC Help Portuguese (x32 Version: 2013.0830.1943.33589) CCC Help Russian (x32 Version: 2013.0830.1943.33589) CCC Help Spanish (x32 Version: 2013.0830.1943.33589) CCC Help Swedish (x32 Version: 2013.0830.1943.33589) CCC Help Thai (x32 Version: 2013.0830.1943.33589) CCC Help Turkish (x32 Version: 2013.0830.1943.33589) ccc-utility64 (Version: 2013.0830.1944.33589) Cheat Engine 6.2 (x32) Chivalry: Medieval Warfare (x32) CINEMA 4D 14.014 (Version: 14.014) CINEMA 4D Demo 14.014 (Version: 14.014) Cobra 11 - Crash Time (remove only) (x32) Company of Heroes (x32) Counter-Strike 2D 0.1.2.2 (x32) Counter-Strike: Global Offensive - SDK (x32) Counter-Strike: Global Offensive (x32) Counter-Strike: Source (x32) CraftStudio (x32 Version: 0.4.1.0) DAEMON Tools Lite (x32 Version: 4.47.1.0335) DarkRadiant 1.8.0 x64 DayZ Commander (x32 Version: 0.9.117) Dead Island Riptide (x32) Deckadance (x32 Version: 2.0) Definition Update for Microsoft Office 2010 (KB982726) 64-Bit Edition Desura (x32 Version: 100.53) Desura: No More Room in Hell (x32 Version: Open Beta) Dota 2 (x32) Dream of the Blood Moon Dropbox (HKCU Version: 2.0.22) Dual-Core Optimizer (x32 Version: 1.1.4.0169) Dwarfs F2P (x32) Edna & Harvey: Harvey's New Eyes (x32) ESN Sonar (x32 Version: 0.70.4) Expat Shield 2.25 (x32 Version: 2.25) Façade (x32 Version: 1.1.2) Fallen Earth (x32) Far Cry 3 (x32 Version: 1.05) FileZilla Client 3.6.0.2 (x32 Version: 3.6.0.2) Firebird SQL Server - MAGIX Edition (x32 Version: 2.1.31.0) FL Studio 10 (x32) FL Studio 11 (x32) FlowStone FL 3.0 (x32) Fraps (remove only) (x32) Free YouTube Download version 3.2.2.430 (x32 Version: 3.2.2.430) Free YouTube to MP3 Converter version 3.12.13.925 (x32 Version: 3.12.13.925) FSM Editor Personal Edition Uninstall (x32) GameMaker: Studio (x32) GameMaker-Studio (x32 Version: 1.2.1130) GameMaker-Studio 1.0 (HKCU) Garry's Mod (x32) Gear Up (x32) GIMP 2.8.2 (Version: 2.8.2) Gone Home (x32) Google Chrome (x32 Version: 31.0.1650.63) Google Earth (x32 Version: 7.1.2.2041) Google Update Helper (x32 Version: 1.3.22.3) Grand Theft Auto Vice City (x32 Version: 1.00.000) GTA San Andreas (x32 Version: 1.00.00001) Half-Life 2 (HKCU) Half-Life 2: Episode Two (x32) Half-Life Dedicated Server Update Tool (x32) Haunt 1.0 64bit (HKCU) Hegemony Gold: Wars of Ancient Greece (x32) Hitman Blood Money (x32 Version: 1.00.0000) IL Download Manager (x32) IL Shared Libraries (x32) Java 7 Update 25 (x32 Version: 7.0.250) Java Auto Updater (x32 Version: 2.1.9.5) League of Legends (x32 Version: 3.0.1) lightshot-4.4.2.10 (x32 Version: 4.4.2.10) Livebrush Mini (x32 Version: 1.5) LogMeIn Hamachi (x32 Version: 2.2.0.109) Macro Recorder 5.7.0 (x32 Version: 5.7.0) MacroX 3.1 (x32 Version: 3.1) MAGIX Speed burnR (MSI) (Version: 7.0.2.6) MAGIX Speed burnR (MSI) (x32 Version: 7.0.2.6) MAGIX Video deluxe 2013 Plus (Version: 12.0.0.32) MAGIX Video deluxe 2013 Plus (x32 Version: 12.0.0.32) ManyCam 3.1.57 (x32 Version: 3.1.57) Metro 2033 (x32) Microsoft .NET Framework 4 Client Profile DEU Language Pack (Version: 4.0.30320) Microsoft .NET Framework 4 Extended DEU Language Pack (Version: 4.0.30320) Microsoft .NET Framework 4.5 (Version: 4.5.50709) Microsoft Games for Windows - LIVE Redistributable (x32 Version: 3.5.92.0) Microsoft Games for Windows Marketplace (x32 Version: 3.5.50.0) Microsoft Office Access MUI (German) 2010 (Version: 14.0.7015.1000) Microsoft Office Excel MUI (German) 2010 (Version: 14.0.7015.1000) Microsoft Office Home and Student 2010 (Version: 14.0.7015.1000) Microsoft Office Office 32-bit Components 2010 (Version: 14.0.7015.1000) Microsoft Office OneNote MUI (German) 2010 (Version: 14.0.7015.1000) Microsoft Office Outlook MUI (German) 2010 (Version: 14.0.7015.1000) Microsoft Office PowerPoint MUI (German) 2010 (Version: 14.0.7015.1000) Microsoft Office Proof (English) 2010 (Version: 14.0.7015.1000) Microsoft Office Proof (French) 2010 (Version: 14.0.7015.1000) Microsoft Office Proof (German) 2010 (Version: 14.0.7015.1000) Microsoft Office Proof (Italian) 2010 (Version: 14.0.7015.1000) Microsoft Office Proofing (German) 2010 (Version: 14.0.7015.1000) Microsoft Office Publisher MUI (German) 2010 (Version: 14.0.7015.1000) Microsoft Office Shared 32-bit MUI (German) 2010 (Version: 14.0.7015.1000) Microsoft Office Shared MUI (German) 2010 (Version: 14.0.7015.1000) Microsoft Office Single Image 2010 (Version: 14.0.7015.1000) Microsoft Office Word MUI (German) 2010 (Version: 14.0.7015.1000) Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.59193) Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001) Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.59192) Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (x32 Version: 9.0.30729) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (x32 Version: 9.0.30729.4148) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (Version: 10.0.40219) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (x32 Version: 11.0.50727.1) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (x32 Version: 11.0.60610.1) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (x32 Version: 11.0.50727.1) Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.50727 (Version: 11.0.50727) Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.60610 (Version: 11.0.60610) Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.50727 (Version: 11.0.50727) Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.60610 (Version: 11.0.60610) Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.50727 (x32 Version: 11.0.50727) Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.50727 (x32 Version: 11.0.50727) Microsoft XNA Framework Redistributable 3.1 (x32 Version: 3.1.10527.0) Microsoft XNA Framework Redistributable 4.0 (x32 Version: 4.0.20823.0) Microsoft_VC80_ATL_x86 (x32 Version: 8.0.50727.4053) Microsoft_VC80_CRT_x86 (x32 Version: 8.0.50727.4053) Microsoft_VC80_MFC_x86 (x32 Version: 8.0.50727.4053) Microsoft_VC80_MFCLOC_x86 (x32 Version: 8.0.50727.4053) Microsoft_VC90_ATL_x86 (x32 Version: 1.00.0000) Microsoft_VC90_ATL_x86_x64 (Version: 1.00.0000) Microsoft_VC90_CRT_x86 (x32 Version: 1.00.0000) Microsoft_VC90_CRT_x86_x64 (Version: 1.00.0000) Microsoft_VC90_MFC_x86 (x32 Version: 1.00.0000) Microsoft_VC90_MFC_x86_x64 (Version: 1.00.0000) Microsoft_VC90_MFCLOC_x86 (x32 Version: 1.00.0000) Moonbase Alpha (x32) Mozilla Firefox 26.0 (x86 de) (x32 Version: 26.0) Mozilla Maintenance Service (x32 Version: 26.0) MSVCRT Redists (Version: 1.0) MSVCRT Redists (x32 Version: 1.0) MSXML 4.0 SP3 Parser (KB2758694) (x32 Version: 4.30.2117.0) MSXML 4.0 SP3 Parser (x32 Version: 4.30.2100.0) MTA:SA v1.3.4 (x32 Version: v1.3.4) MyPC Backup (Version: ) <==== ATTENTION Need for Speed Most Wanted - Black Edition (x32) NetSpeedMonitor 2.5.4.0 x64 (Version: 2.5.4.0) Notepad++ (x32 Version: 6.3) NVIDIA PhysX (x32 Version: 9.12.1031) Nvu 1.0 (x32 Version: 1.0) ObjectDock Free (x32 Version: 2.0) Oblivion (x32 Version: 1.2.0416) Omegalodon (x32) OpenAL (x32) OpenOffice.org 3.4.1 (x32 Version: 3.41.9593) Origin (x32 Version: 9.0.15.65) Oxygen 2 Personal Edition Uninstall (x32) Pando Media Booster (x32 Version: 2.6.0.7) Path of Exile (x32 Version: 0.10.0.22770) PAYDAY 2 (x32) PDF Settings CC (x32 Version: 12.0) PDF Settings CS5 (x32 Version: 10.0) PDF-Viewer (x32) Pivot Animator version 4.1.10 (x32 Version: 4.1.10) PlanetSide 2 (x32) Project Zomboid Demo (x32) Project64 1.6 (x32 Version: 1.6) PunkBuster Services (x32 Version: 0.993) Razer Game Booster (x32 Version: 4.1.59.0) Realm of the Mad God (x32) Reg Organizer version 6.11 (x32 Version: 6.11) RollerCoaster Tycoon® 3 (x32 Version: 1.00.000) RPG MAKER VX Ace (x32 Version: 1.01a) RPG MAKER VX Ace RTP (x32 Version: 1.00) Saints Row: The Third (x32) Samplitude Music Studio 2013 (Version: 19.0.1.18) Samplitude Music Studio 2013 (x32 Version: 19.0.1.18) Sauerbraten (x32) Scribblenauts Unlimited (x32) Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition Skype™ 6.11 (x32 Version: 6.11.102) Sound Tools Uninstall (x32) Source Filmmaker (x32) Source Multiplayer Dedicated Server (x32) Source SDK (x32) Source SDK Base 2006 (x32) Source SDK Base 2007 (x32) Starbound (x32) StarForge Alpha (x32) Steam (x32 Version: 1.0.0.0) Steinschlag (x32) Stronghold Kingdoms (x32) Sumo Paint Bamboo 2.2 (x32 Version: 2.2) Sumo Paint Bamboo 2.2 (x32 Version: v2.2) Sumotori Dreams (x32) Sumotori Full Version (x32) Super Crate Box (x32) Team Fortress 2 (x32) TeamSpeak 3 Client (x32 Version: 3.0.11.1) TexView 2 Uninstall (x32) The Elder Scrolls V: Skyrim (x32) The Punisher (x32) The Sims™ 3 (x32 Version: 1.42.130) The Sims™ 3 Diesel Каталог (x32 Version: 14.0.48) The Sims™ 3 Katy Perry Сладкие радости (x32 Version: 13.0.62) The Sims™ 3 В сумерках (x32 Version: 6.5.1) The Sims™ 3 Времена года (x32 Version: 16.0.136) The Sims™ 3 Все возрасты (x32 Version: 8.0.152) The Sims™ 3 Городская жизнь Каталог (x32 Version: 9.0.73) The Sims™ 3 Изысканная спальня Каталог (x32 Version: 11.0.84) The Sims™ 3 Карьера (x32 Version: 4.10.1) The Sims™ 3 Мир приключений (x32 Version: 2.9.10) The Sims™ 3 Отдых на природе Каталог (x32 Version: 7.3.2) The Sims™ 3 Питомцы (x32 Version: 10.0.96) The Sims™ 3 Сверхъестественное (x32 Version: 15.0.135) The Sims™ 3 Скоростной режим Каталог (x32 Version: 5.8.1) The Sims™ 3 Современная роскошь Каталог (x32 Version: 3.9.6) The Sims™ 3 Шоу-бизнес (x32 Version: 12.0.273) Thief - Deadly Shadows (x32 Version: 1.0) Thief - Deadly Shadows Collective Texture Pack by John P., ver. 1.0.3 (x32) TmNationsForever (x32) Total Overdose (x32) Tunngle beta (x32) Unity Web Player (HKCU Version: ) Unreal Development Kit (x32) Update for Microsoft .NET Framework 4.5 (KB2750147) (x32 Version: 1) Update for Microsoft .NET Framework 4.5 (KB2805221) (x32 Version: 1) Update for Microsoft .NET Framework 4.5 (KB2805226) (x32 Version: 1) Update for Microsoft Access 2010 (KB2553446) 64-Bit Edition Update for Microsoft Filter Pack 2.0 (KB2810071) 64-Bit Edition Update for Microsoft Office 2010 (KB2589298) 64-Bit Edition Update for Microsoft Office 2010 (KB2589352) 64-Bit Edition Update for Microsoft Office 2010 (KB2589375) 64-Bit Edition Update for Microsoft Office 2010 (KB2597087) 64-Bit Edition Update for Microsoft Office 2010 (KB2760598) 64-Bit Edition Update for Microsoft Office 2010 (KB2760631) 64-Bit Edition Update for Microsoft Office 2010 (KB2794737) 64-Bit Edition Update for Microsoft Office 2010 (KB2826026) 64-Bit Edition Update for Microsoft Office 2010 (KB2850079) 64-Bit Edition Update for Microsoft OneNote 2010 (KB2810072) 64-Bit Edition Update for Microsoft PowerPoint 2010 (KB2553145) 64-Bit Edition Update for Microsoft Visio Viewer 2010 (KB2810066) 64-Bit Edition Update for Microsoft Word 2010 (KB2837593) 64-Bit Edition Uplay (x32 Version: 2.0) Vegas Pro 10.0 (x32 Version: 10.0.469) Vegas Pro 12.0 (64-bit) (Version: 12.0.394) Visitor 3 Uninstall (x32) VLC media player 2.0.6 (x32 Version: 2.0.6) VTFEdit 1.2.5 (x32) Wanted: Weapons of Fate (x32 Version: 1.0.0.0) Warframe (x32) WebTablet IE Plugin (x32 Version: 1.1.0.7) WebTablet Netscape Plugin (x32 Version: 1.1.0.5) WhatPulse version 2.3 (x32 Version: 2.3) Windows Live ID Sign-in Assistant (Version: 6.500.3165.0) Windows-Treiberpaket - Sony (libusb0) LibUsbDevices (07/28/2010 1.2.1.0) (Version: 07/28/2010 1.2.1.0) WinPcap 4.1.3 (x32 Version: 4.1.0.2980) World of Tanks (x32) WorldPainter 1.6.7 (x32 Version: 1.6.7) XSplit (x32 Version: 1.2.1303.0101) YGOPro DevPro Version 1.9.2r2 (x32 Version: 1.9.2r2) YTD Video Downloader 3.9.3 (x32) Zombie Panic Source (x32) ==================== Restore Points ========================= 19-12-2013 20:27:23 DirectX wurde installiert 20-12-2013 14:30:37 Windows Update 24-12-2013 07:57:28 Windows Update 24-12-2013 09:54:12 avast! antivirus system restore point ==================== Hosts content: ========================== 2009-07-14 03:34 - 2011-01-27 15:00 - 00001211 ____A C:\Windows\system32\Drivers\etc\hosts 127.0.0.1 localhost 127.0.0.1 3dns.adobe.com 3dns-1.adobe.com 3dns-2.adobe.com 3dns-3.adobe.com 3dns-4.adobe.com activate.adobe.com activate-sea.adobe.com activate-sjc0.adobe.com activate.wip.adobe.com 127.0.0.1 activate.wip1.adobe.com activate.wip2.adobe.com activate.wip3.adobe.com activate.wip4.adobe.com adobe-dns.adobe.com adobe-dns-1.adobe.com adobe-dns-2.adobe.com adobe-dns-3.adobe.com adobe-dns-4.adobe.com 127.0.0.1 adobeereg.com practivate.adobe practivate.adobe.com practivate.adobe.newoa practivate.adobe.ntp practivate.adobe.ipp ereg.adobe.com ereg.wip.adobe.com ereg.wip1.adobe.com 127.0.0.1 ereg.wip2.adobe.com ereg.wip3.adobe.com ereg.wip4.adobe.com hl2rcv.adobe.com wip.adobe.com wip1.adobe.com wip2.adobe.com wip3.adobe.com wip4.adobe.com 127.0.0.1 www.adobeereg.com wwis-dubc1-vip60.adobe.com www.wip.adobe.com www.wip1.adobe.com 127.0.0.1 www.wip2.adobe.com www.wip3.adobe.com www.wip4.adobe.com wwis-dubc1-vip60.adobe.com crl.verisign.net CRL.VERISIGN.NET ood.opsource.net ==================== Scheduled Tasks (whitelisted) ============= Task: {11916EF8-0B0E-4F54-B2E1-38D68093DD0E} - System32\Tasks\Microsoft\Windows\TabletPC\InputPersonalization => C:\Program Files\Common Files\Microsoft Shared\ink\InputPersonalization.exe [2009-07-14] (Microsoft Corporation) Task: {185D37C2-1532-4FBB-AD9C-F945BB41F82E} - System32\Tasks\Game_Booster_AutoUpdate => C:\Program Files (x86)\IObit\Game Booster 3\AutoUpdate.exe Task: {36C1430D-A486-4E06-B10C-FEC5EC763A92} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-12-21] (Google Inc.) Task: {43DCBD1F-2966-460F-8B3B-ED1FEC6B4229} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-12-21] (Google Inc.) Task: {4A16997E-AA40-45DA-A115-46CBF0E0CAFB} - System32\Tasks\RegOrganizerQuickLaunch => C:\Program Files (x86)\Reg Organizer\RegOrganizer.exe [2013-06-24] (ChemTable Software) Task: {5582E8CA-C616-43B4-B949-065692FAE31B} - System32\Tasks\update-S-1-5-21-3985545688-2783562880-4087805722-1001 => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [2013-09-27] () Task: {6023F2C4-293D-4050-9916-479B1140D264} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-12-10] (Adobe Systems Incorporated) Task: {6DAF9451-96B6-4B0D-8E40-365C3433343F} - System32\Tasks\update-sys => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [2013-09-27] () Task: {B0D228E4-EE59-4559-8FAC-5BE6AF6199E1} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2013-12-24] (AVAST Software) Task: {E10A00CF-1876-475D-B84B-FDB2A6044AE4} - System32\Tasks\Razer_Game_Booster_AutoUpdate => C:\Program Files (x86)\Razer\Razer Game Booster\AutoUpdate.exe Task: {E78096C8-A7F1-4AD7-87FB-140E86651305} - System32\Tasks\AdobeAAMUpdater-1.0-BlueRsX-PC-BlueRsX => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\updaterstartuputility.exe [2013-06-03] (Adobe Systems Incorporated) Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\update-S-1-5-21-3985545688-2783562880-4087805722-1001.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe Task: C:\Windows\Tasks\update-sys.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe ==================== Loaded Modules (whitelisted) ============= 2010-10-04 18:54 - 2010-10-04 18:54 - 00776704 _____ () C:\Program Files (x86)\Stardock\ObjectDockFree\Dock64.dll 2012-12-20 19:57 - 2010-10-26 22:42 - 01182576 ____N () C:\Program Files\Tablet\Pen\libxml2.dll 2013-06-19 23:45 - 2013-06-19 23:45 - 03317616 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_v_1_1_0_x64.dll 2010-01-02 15:42 - 2010-01-02 15:42 - 00098304 _____ () C:\Program Files (x86)\FileZilla FTP Client\fzshellext_64.dll 2013-09-19 23:37 - 2013-09-19 23:37 - 00012288 _____ () C:\Program Files (x86)\MyPC Backup\GetText.dll 2013-09-19 23:32 - 2013-09-19 23:32 - 01102336 _____ () C:\Program Files (x86)\MyPC Backup\x64\System.Data.SQLite.dll 2013-12-24 19:03 - 2013-12-24 18:20 - 02154496 _____ () C:\Program Files\AVAST Software\Avast\defs\13122401\algo.dll 2010-10-04 18:54 - 2010-10-04 18:54 - 00675840 _____ () C:\Program Files (x86)\Stardock\ObjectDockFree\DockShellHook.dll 2012-11-29 22:59 - 2012-11-29 22:59 - 00093696 _____ () C:\Program Files (x86)\FileZilla FTP Client\fzshellext.dll 2013-06-10 10:55 - 2013-06-10 10:55 - 02010624 _____ () C:\Program Files (x86)\ManyCam\Bin\opencv_core220.dll 2013-06-10 10:55 - 2013-06-10 10:55 - 01241088 _____ () C:\Program Files (x86)\ManyCam\Bin\opencv_imgproc220.dll 2013-06-10 10:55 - 2013-06-10 10:55 - 00201216 _____ () C:\Program Files (x86)\ManyCam\Bin\opencv_video220.dll 2013-06-10 10:55 - 2013-06-10 10:55 - 00241152 _____ () C:\Program Files (x86)\ManyCam\Bin\opencv_objdetect220.dll 2013-06-10 10:55 - 2013-06-10 10:55 - 00775680 _____ () C:\Program Files (x86)\ManyCam\Bin\opencv_highgui220.dll 2013-12-25 10:47 - 2013-12-25 10:47 - 00075776 _____ () C:\Users\BlueRsX\AppData\Local\Temp\XTMP1MC3VE\DEM4642.tmp 2013-12-25 10:47 - 2013-12-25 10:47 - 00033792 _____ () C:\Users\BlueRsX\AppData\Local\Temp\YTMP7MC8AA\TAA4E2F.tmp 2013-12-25 10:47 - 2013-12-25 10:47 - 00056320 _____ () C:\Users\BlueRsX\AppData\Local\Temp\XTMP1MC3VE\DEM513D.tmp 2013-12-25 10:47 - 2013-12-25 10:47 - 00033792 _____ () C:\Users\BlueRsX\AppData\Local\Temp\YTMP7MC8AA\TAA54F7.tmp 2013-12-25 10:47 - 2013-12-25 10:47 - 00033792 _____ () C:\Users\BlueRsX\AppData\Local\Temp\YTMP7MC8AA\TAA60DC.tmp 2013-12-25 10:47 - 2013-12-25 10:47 - 00055296 _____ () C:\Users\BlueRsX\AppData\Local\Temp\XTMP1MC3VE\DEM60FC.tmp 2013-12-25 10:47 - 2013-12-25 10:47 - 00033792 _____ () C:\Users\BlueRsX\AppData\Local\Temp\YTMP7MC8AA\TAA62E3.tmp 2013-12-25 10:47 - 2013-12-25 10:47 - 00068608 _____ () C:\Users\BlueRsX\AppData\Local\Temp\XTMP1MC3VE\DEM6333.tmp 2013-12-25 10:47 - 2013-12-25 10:47 - 00075776 _____ () C:\Users\BlueRsX\AppData\Local\Temp\XTMP1MC3VE\DEM644E.tmp 2013-12-25 10:47 - 2013-12-25 10:47 - 00075776 _____ () C:\Users\BlueRsX\AppData\Local\Temp\XTMP1MC3VE\DEM649E.tmp 2013-12-25 10:47 - 2013-12-25 10:47 - 00075776 _____ () C:\Users\BlueRsX\AppData\Local\Temp\XTMP1MC3VE\DEM64CE.tmp 2013-12-25 10:47 - 2013-12-25 10:47 - 00056832 _____ () C:\Users\BlueRsX\AppData\Local\Temp\XTMP1MC3VE\DEM653E.tmp 2013-12-25 10:47 - 2013-12-25 10:47 - 00075776 _____ () C:\Users\BlueRsX\AppData\Local\Temp\XTMP1MC3VE\DEM6733.tmp 2013-12-25 10:47 - 2013-12-25 10:47 - 00075776 _____ () C:\Users\BlueRsX\AppData\Local\Temp\XTMP1MC3VE\DEM67D1.tmp 2013-12-25 10:47 - 2013-12-25 10:47 - 00075776 _____ () C:\Users\BlueRsX\AppData\Local\Temp\XTMP1MC3VE\DEM6850.tmp 2013-12-25 10:47 - 2013-12-25 10:47 - 00056320 _____ () C:\Users\BlueRsX\AppData\Local\Temp\XTMP1MC3VE\DEM695B.tmp 2013-12-25 10:47 - 2013-12-25 10:47 - 00075776 _____ () C:\Users\BlueRsX\AppData\Local\Temp\XTMP1MC3VE\DEM6A28.tmp 2013-12-25 10:47 - 2013-12-25 10:47 - 00075776 _____ () C:\Users\BlueRsX\AppData\Local\Temp\XTMP1MC3VE\DEM6AD5.tmp 2013-12-25 10:47 - 2013-12-25 10:47 - 00053760 _____ () C:\Users\BlueRsX\AppData\Local\Temp\XTMP1MC3VE\DEM6B06.tmp 2013-12-25 10:47 - 2013-12-25 10:47 - 00064000 _____ () C:\Users\BlueRsX\AppData\Local\Temp\XTMP1MC3VE\DEM6B66.tmp 2013-12-25 10:47 - 2013-12-25 10:47 - 00053760 _____ () C:\Users\BlueRsX\AppData\Local\Temp\XTMP1MC3VE\DEM6CCE.tmp 2013-12-25 10:47 - 2013-12-25 10:47 - 00057344 _____ () C:\Users\BlueRsX\AppData\Local\Temp\XTMP1MC3VE\DEM6CFF.tmp 2013-12-25 10:47 - 2013-12-25 10:47 - 00072192 _____ () C:\Users\BlueRsX\AppData\Local\Temp\XTMP1MC3VE\DEM6D7E.tmp 2013-12-25 10:47 - 2013-12-25 10:47 - 00072704 _____ () C:\Users\BlueRsX\AppData\Local\Temp\XTMP1MC3VE\DEM6DAF.tmp 2013-12-25 10:47 - 2013-12-25 10:47 - 00072192 _____ () C:\Users\BlueRsX\AppData\Local\Temp\XTMP1MC3VE\DEM6F75.tmp 2013-12-25 10:47 - 2013-12-25 10:47 - 00072192 _____ () C:\Users\BlueRsX\AppData\Local\Temp\XTMP1MC3VE\DEM6FE5.tmp 2013-12-25 10:47 - 2013-12-25 10:47 - 00120832 _____ () C:\Users\BlueRsX\AppData\Local\Temp\XTMP1MC3VE\DEM70FF.tmp 2013-12-25 10:47 - 2013-12-25 10:47 - 00120832 _____ () C:\Users\BlueRsX\AppData\Local\Temp\XTMP1MC3VE\DEM71FC.tmp 2013-12-25 10:47 - 2013-12-25 10:47 - 00120832 _____ () C:\Users\BlueRsX\AppData\Local\Temp\XTMP1MC3VE\DEM72B9.tmp 2013-12-25 10:47 - 2013-12-25 10:47 - 00120832 _____ () C:\Users\BlueRsX\AppData\Local\Temp\XTMP1MC3VE\DEM74BE.tmp 2013-12-25 10:47 - 2013-12-25 10:47 - 00120832 _____ () C:\Users\BlueRsX\AppData\Local\Temp\XTMP1MC3VE\DEM75C9.tmp 2013-12-25 10:47 - 2013-12-25 10:47 - 00120832 _____ () C:\Users\BlueRsX\AppData\Local\Temp\XTMP1MC3VE\DEM7658.tmp 2013-12-25 10:47 - 2013-12-25 10:47 - 00120832 _____ () C:\Users\BlueRsX\AppData\Local\Temp\XTMP1MC3VE\DEM7744.tmp 2013-12-25 10:47 - 2013-12-25 10:47 - 00120832 _____ () C:\Users\BlueRsX\AppData\Local\Temp\XTMP1MC3VE\DEM79F4.tmp 2013-12-25 10:47 - 2013-12-25 10:47 - 00120832 _____ () C:\Users\BlueRsX\AppData\Local\Temp\XTMP1MC3VE\DEM7A82.tmp 2013-12-25 10:47 - 2013-12-25 10:47 - 00120832 _____ () C:\Users\BlueRsX\AppData\Local\Temp\XTMP1MC3VE\DEM7B6E.tmp 2013-12-25 10:47 - 2013-12-25 10:47 - 00120832 _____ () C:\Users\BlueRsX\AppData\Local\Temp\XTMP1MC3VE\DEM7C0C.tmp 2013-12-25 10:47 - 2013-12-25 10:47 - 00120832 _____ () C:\Users\BlueRsX\AppData\Local\Temp\XTMP1MC3VE\DEM7CAA.tmp 2013-12-25 10:47 - 2013-12-25 10:47 - 00120832 _____ () C:\Users\BlueRsX\AppData\Local\Temp\XTMP1MC3VE\DEM7DB6.tmp 2013-12-25 10:47 - 2013-12-25 10:47 - 00120832 _____ () C:\Users\BlueRsX\AppData\Local\Temp\XTMP1MC3VE\DEM7E82.tmp 2013-12-25 10:47 - 2013-12-25 10:47 - 00120832 _____ () C:\Users\BlueRsX\AppData\Local\Temp\XTMP1MC3VE\DEM7F9D.tmp 2013-12-25 10:47 - 2013-12-25 10:47 - 00120832 _____ () C:\Users\BlueRsX\AppData\Local\Temp\XTMP1MC3VE\DEM807A.tmp 2013-12-25 10:47 - 2013-12-25 10:47 - 00120832 _____ () C:\Users\BlueRsX\AppData\Local\Temp\XTMP1MC3VE\DEM8146.tmp 2013-12-25 10:47 - 2013-12-25 10:47 - 00120832 _____ () C:\Users\BlueRsX\AppData\Local\Temp\XTMP1MC3VE\DEM82CE.tmp 2013-12-25 10:47 - 2013-12-25 10:47 - 00120832 _____ () C:\Users\BlueRsX\AppData\Local\Temp\XTMP1MC3VE\DEM83BA.tmp 2013-12-25 10:47 - 2013-12-25 10:47 - 00120832 _____ () C:\Users\BlueRsX\AppData\Local\Temp\XTMP1MC3VE\DEM84D5.tmp 2013-12-25 10:47 - 2013-12-25 10:47 - 00086016 _____ () C:\Users\BlueRsX\AppData\Local\Temp\XTMP1MC3VE\DEM871A.tmp 2013-12-25 10:47 - 2013-12-25 10:47 - 00086016 _____ () C:\Users\BlueRsX\AppData\Local\Temp\XTMP1MC3VE\DEM88E1.tmp 2013-12-25 10:47 - 2013-12-25 10:47 - 00086016 _____ () C:\Users\BlueRsX\AppData\Local\Temp\XTMP1MC3VE\DEM89FC.tmp 2013-12-25 10:47 - 2013-12-25 10:47 - 00086016 _____ () C:\Users\BlueRsX\AppData\Local\Temp\XTMP1MC3VE\DEM8AF7.tmp 2013-12-01 14:32 - 2013-04-08 09:34 - 00137728 _____ () C:\Program Files (x86)\WhatPulse2\CrashRpt1402.dll 2013-07-12 13:37 - 2013-07-12 13:37 - 32726528 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\HEX\libcef.dll 2013-10-24 07:48 - 2013-10-24 07:48 - 19336120 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll 2013-03-13 12:42 - 2013-06-05 13:21 - 00071560 _____ () C:\Program Files (x86)\Common Files\Adobe\CEPServiceManager4\zlib1.dll 2009-03-30 03:34 - 2009-03-30 03:34 - 00280143 _____ () C:\Program Files (x86)\Expat Shield\bin\libidn-11.dll 2009-03-27 21:02 - 2009-03-27 21:02 - 01554920 _____ () C:\Program Files (x86)\Expat Shield\bin\libeay32.dll 2009-03-27 21:02 - 2009-03-27 21:02 - 00332254 _____ () C:\Program Files (x86)\Expat Shield\bin\libssl32.dll 2013-03-13 21:48 - 2013-03-13 21:48 - 24978944 _____ () C:\Users\BlueRsX\AppData\Roaming\Dropbox\bin\libcef.dll 2010-10-04 18:54 - 2010-10-04 18:54 - 00807936 _____ () C:\Program Files (x86)\Stardock\ObjectDockFree\CrashRpt.dll 2010-10-04 18:54 - 2010-10-04 18:54 - 00053760 _____ () C:\Program Files (x86)\Stardock\ObjectDockFree\zlib.dll 2012-08-10 15:51 - 2012-08-10 15:51 - 00985088 _____ () C:\Program Files (x86)\OpenOffice.org 3\program\libxml2.dll 2013-11-16 08:34 - 2013-11-16 08:34 - 00337920 _____ () C:\Program Files (x86)\BuzzSearch\bin\sqlite3.DLL 2013-06-19 23:45 - 2013-06-19 23:45 - 00381808 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CCInvokeAAM.dll 2013-03-12 17:10 - 2013-11-06 22:48 - 00691200 _____ () C:\Program Files (x86)\Steam\SDL2.dll 2012-11-21 21:01 - 2013-12-11 20:40 - 01135016 _____ () C:\Program Files (x86)\Steam\bin\chromehtml.DLL 2012-11-21 21:01 - 2013-11-06 22:48 - 20625832 _____ () C:\Program Files (x86)\Steam\bin\libcef.dll 2012-11-21 21:01 - 2013-06-15 00:49 - 01100800 _____ () C:\Program Files (x86)\Steam\bin\avcodec-53.dll 2012-11-21 21:01 - 2013-06-15 00:49 - 00124416 _____ () C:\Program Files (x86)\Steam\bin\avutil-51.dll 2012-11-21 21:01 - 2013-06-15 00:49 - 00192000 _____ () C:\Program Files (x86)\Steam\bin\avformat-53.dll 2013-12-20 21:32 - 2013-12-20 21:32 - 03559024 _____ () C:\Program Files (x86)\Mozilla Firefox\mozjs.dll 2013-12-10 21:17 - 2013-12-10 21:17 - 16242056 _____ () C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_170.dll ==================== Alternate Data Streams (whitelisted) ========= AlternateDataStreams: C:\ProgramData:NT AlternateDataStreams: C:\Users\All Users:NT AlternateDataStreams: C:\ProgramData\Anwendungsdaten:NT AlternateDataStreams: C:\ProgramData\Application Data:NT AlternateDataStreams: C:\ProgramData\MTA San Andreas All:NT AlternateDataStreams: C:\Users\BlueRsX\Anwendungsdaten:NT AlternateDataStreams: C:\Users\BlueRsX\AppData\Roaming:NT ==================== Safe Mode (whitelisted) =================== HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service" ==================== Faulty Device Manager Devices ============= ==================== Event log errors: ========================= Application errors: ================== Error: (12/20/2013 08:49:50 PM) (Source: Application Error) (User: ) Description: Name der fehlerhaften Anwendung: starbound.exe, Version: 0.9.0.0, Zeitstempel: 0x52ad35be Name des fehlerhaften Moduls: starbound.exe, Version: 0.9.0.0, Zeitstempel: 0x52ad35be Ausnahmecode: 0x40000015 Fehleroffset: 0x003be5c5 ID des fehlerhaften Prozesses: 0x19bc Startzeit der fehlerhaften Anwendung: 0xstarbound.exe0 Pfad der fehlerhaften Anwendung: starbound.exe1 Pfad des fehlerhaften Moduls: starbound.exe2 Berichtskennung: starbound.exe3 Error: (12/20/2013 04:10:50 PM) (Source: Application Hang) (User: ) Description: Programm starbound.exe, Version 0.9.0.0 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen. Prozess-ID: 173c Startzeit: 01cefd9582c0c439 Endzeit: 22 Anwendungspfad: C:\Program Files (x86)\Steam\steamapps\common\Starbound\win32\starbound.exe Berichts-ID: e6e1d5f9-6988-11e3-a61e-87306c7bbe4a Error: (12/20/2013 04:10:40 PM) (Source: Application Hang) (User: ) Description: Programm starbound.exe, Version 0.9.0.0 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen. Prozess-ID: 9b0 Startzeit: 01cefd9577c52c7e Endzeit: 16 Anwendungspfad: C:\Program Files (x86)\Steam\steamapps\common\Starbound\win32\starbound.exe Berichts-ID: dae481e8-6988-11e3-a61e-87306c7bbe4a Error: (12/19/2013 09:36:25 PM) (Source: Application Error) (User: ) Description: Name der fehlerhaften Anwendung: FC3Updater.exe, Version: 1.2.2.0, Zeitstempel: 0x50b9583e Name des fehlerhaften Moduls: EasyHook32.dll, Version: 0.0.0.0, Zeitstempel: 0x49b2707b Ausnahmecode: 0xc0000005 Fehleroffset: 0x0000cc2f ID des fehlerhaften Prozesses: 0x13dc Startzeit der fehlerhaften Anwendung: 0xFC3Updater.exe0 Pfad der fehlerhaften Anwendung: FC3Updater.exe1 Pfad des fehlerhaften Moduls: FC3Updater.exe2 Berichtskennung: FC3Updater.exe3 Error: (12/19/2013 09:16:10 PM) (Source: Application Hang) (User: ) Description: Programm Razer_Game_Booster_downloader.exe, Version 0.0.0.0 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen. Prozess-ID: 1af8 Startzeit: 01cefcf5873a8e59 Endzeit: 145 Anwendungspfad: C:\Users\BlueRsX\Downloads\Razer_Game_Booster_downloader.exe Berichts-ID: 5bf31e2e-68ea-11e3-bbfc-e4eace414440 Error: (12/19/2013 04:42:35 PM) (Source: Application Error) (User: ) Description: Name der fehlerhaften Anwendung: FC3Editor.exe, Version: 1.0.0.0, Zeitstempel: 0x508dae71 Name des fehlerhaften Moduls: FC3.dll, Version: 0.1.0.1, Zeitstempel: 0x512269f5 Ausnahmecode: 0xc0000005 Fehleroffset: 0x00fae0f3 ID des fehlerhaften Prozesses: 0x18e8 Startzeit der fehlerhaften Anwendung: 0xFC3Editor.exe0 Pfad der fehlerhaften Anwendung: FC3Editor.exe1 Pfad des fehlerhaften Moduls: FC3Editor.exe2 Berichtskennung: FC3Editor.exe3 Error: (12/19/2013 04:42:33 PM) (Source: .NET Runtime) (User: ) Description: Anwendung: FC3Editor.exe Frameworkversion: v4.0.30319 Beschreibung: Der Prozess wurde aufgrund einer unbehandelten Ausnahme beendet. Ausnahmeinformationen: Ausnahmecode c0000005, Ausnahmeadresse 529AA5E0 Error: (12/19/2013 04:02:21 PM) (Source: Application Hang) (User: ) Description: Programm FC3Editor.exe, Version 1.0.0.0 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen. Prozess-ID: 1108 Startzeit: 01cefccb0a66c63f Endzeit: 105 Anwendungspfad: C:\Program Files (x86)\Ubisoft\FarCry 3\bin\FC3Editor.exe Berichts-ID: 8c3d2dcd-68be-11e3-bbfc-e4eace414440 Error: (12/18/2013 07:46:31 PM) (Source: Application Error) (User: ) Description: Name der fehlerhaften Anwendung: FC3Editor.exe, Version: 1.0.0.0, Zeitstempel: 0x508dae71 Name des fehlerhaften Moduls: FC3.dll, Version: 0.1.0.1, Zeitstempel: 0x512269f5 Ausnahmecode: 0xc0000005 Fehleroffset: 0x00fae0f3 ID des fehlerhaften Prozesses: 0x484 Startzeit der fehlerhaften Anwendung: 0xFC3Editor.exe0 Pfad der fehlerhaften Anwendung: FC3Editor.exe1 Pfad des fehlerhaften Moduls: FC3Editor.exe2 Berichtskennung: FC3Editor.exe3 Error: (12/18/2013 07:46:30 PM) (Source: .NET Runtime) (User: ) Description: Anwendung: FC3Editor.exe Frameworkversion: v4.0.30319 Beschreibung: Der Prozess wurde aufgrund einer unbehandelten Ausnahme beendet. Ausnahmeinformationen: Ausnahmecode c0000005, Ausnahmeadresse 08B6E0F3 System errors: ============= Error: (12/25/2013 10:49:12 AM) (Source: Service Control Manager) (User: ) Description: Der Dienst "LogMeIn Hamachi Tunneling Engine" wurde aufgrund folgenden Fehlers nicht gestartet: %%1053 Error: (12/25/2013 10:49:12 AM) (Source: Service Control Manager) (User: ) Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst LogMeIn Hamachi Tunneling Engine erreicht. Error: (12/25/2013 10:48:27 AM) (Source: Service Control Manager) (User: ) Description: Der Dienst "Update BuzzSearch" wurde aufgrund folgenden Fehlers nicht gestartet: %%1053 Error: (12/25/2013 10:48:27 AM) (Source: Service Control Manager) (User: ) Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Update BuzzSearch erreicht. Error: (12/25/2013 10:47:12 AM) (Source: Service Control Manager) (User: ) Description: Der Dienst "Computer Backup (MyPC Backup)" wurde aufgrund folgenden Fehlers nicht gestartet: %%1053 Error: (12/25/2013 10:47:12 AM) (Source: Service Control Manager) (User: ) Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Computer Backup (MyPC Backup) erreicht. Error: (12/25/2013 10:46:36 AM) (Source: Service Control Manager) (User: ) Description: Der Dienst "atksgt" wurde aufgrund folgenden Fehlers nicht gestartet: %%1275 Error: (12/25/2013 10:46:36 AM) (Source: Application Popup) (User: ) Description: Treiber atksgt.sys konnte nicht geladen werden. Error: (12/25/2013 10:46:23 AM) (Source: EventLog) (User: ) Description: Das System wurde zuvor am 25.12.2013 um 00:25:01 unerwartet heruntergefahren. Error: (12/24/2013 11:20:46 PM) (Source: Service Control Manager) (User: ) Description: Dienst "LogMeIn Hamachi Tunneling Engine" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert. Microsoft Office Sessions: ========================= Error: (12/20/2013 08:49:50 PM) (Source: Application Error)(User: ) Description: starbound.exe0.9.0.052ad35bestarbound.exe0.9.0.052ad35be40000015003be5c519bc01cefda4b1b88c1fC:\Program Files (x86)\Steam\steamapps\common\Starbound\win32\starbound.exeC:\Program Files (x86)\Steam\steamapps\common\Starbound\win32\starbound.exee2a9165e-69af-11e3-a61e-87306c7bbe4a Error: (12/20/2013 04:10:50 PM) (Source: Application Hang)(User: ) Description: starbound.exe0.9.0.0173c01cefd9582c0c43922C:\Program Files (x86)\Steam\steamapps\common\Starbound\win32\starbound.exee6e1d5f9-6988-11e3-a61e-87306c7bbe4a Error: (12/20/2013 04:10:40 PM) (Source: Application Hang)(User: ) Description: starbound.exe0.9.0.09b001cefd9577c52c7e16C:\Program Files (x86)\Steam\steamapps\common\Starbound\win32\starbound.exedae481e8-6988-11e3-a61e-87306c7bbe4a Error: (12/19/2013 09:36:25 PM) (Source: Application Error)(User: ) Description: FC3Updater.exe1.2.2.050b9583eEasyHook32.dll0.0.0.049b2707bc00000050000cc2f13dc01cefcf9f46d3db4C:\Program Files (x86)\Ubisoft\FarCry 3\bin\FC3Updater.exeC:\Program Files (x86)\Razer\Razer Game Booster\EasyHook32.dll39fdc420-68ed-11e3-bbfc-e4eace414440 Error: (12/19/2013 09:16:10 PM) (Source: Application Hang)(User: ) Description: Razer_Game_Booster_downloader.exe0.0.0.01af801cefcf5873a8e59145C:\Users\BlueRsX\Downloads\Razer_Game_Booster_downloader.exe5bf31e2e-68ea-11e3-bbfc-e4eace414440 Error: (12/19/2013 04:42:35 PM) (Source: Application Error)(User: ) Description: FC3Editor.exe1.0.0.0508dae71FC3.dll0.1.0.1512269f5c000000500fae0f318e801cefccbed707621C:\Program Files (x86)\Ubisoft\FarCry 3\bin\FC3Editor.exeC:\Program Files (x86)\Ubisoft\FarCry 3\bin\FC3.dll2df21aac-68c4-11e3-bbfc-e4eace414440 Error: (12/19/2013 04:42:33 PM) (Source: .NET Runtime)(User: ) Description: Anwendung: FC3Editor.exe Frameworkversion: v4.0.30319 Beschreibung: Der Prozess wurde aufgrund einer unbehandelten Ausnahme beendet. Ausnahmeinformationen: Ausnahmecode c0000005, Ausnahmeadresse 529AA5E0 Error: (12/19/2013 04:02:21 PM) (Source: Application Hang)(User: ) Description: FC3Editor.exe1.0.0.0110801cefccb0a66c63f105C:\Program Files (x86)\Ubisoft\FarCry 3\bin\FC3Editor.exe8c3d2dcd-68be-11e3-bbfc-e4eace414440 Error: (12/18/2013 07:46:31 PM) (Source: Application Error)(User: ) Description: FC3Editor.exe1.0.0.0508dae71FC3.dll0.1.0.1512269f5c000000500fae0f348401cefc1f497c59e0C:\Program Files (x86)\Ubisoft\FarCry 3\bin\FC3Editor.exeC:\Program Files (x86)\Ubisoft\FarCry 3\bin\FC3.dllb5546dae-6814-11e3-804d-b60321b6534d Error: (12/18/2013 07:46:30 PM) (Source: .NET Runtime)(User: ) Description: Anwendung: FC3Editor.exe Frameworkversion: v4.0.30319 Beschreibung: Der Prozess wurde aufgrund einer unbehandelten Ausnahme beendet. Ausnahmeinformationen: Ausnahmecode c0000005, Ausnahmeadresse 08B6E0F3 |
25.12.2013, 23:18 | #6 |
/// Winkelfunktion /// TB-Süch-Tiger™ | Virus: Registry BlockiertCode:
ATTFilter 127.0.0.1 3dns.adobe.com 3dns-1.adobe.com 3dns-2.adobe.com 3dns-3.adobe.com 3dns-4.adobe.com activate.adobe.com activate-sea.adobe.com activate-sjc0.adobe.com activate.wip.adobe.com 127.0.0.1 activate.wip1.adobe.com activate.wip2.adobe.com activate.wip3.adobe.com activate.wip4.adobe.com adobe-dns.adobe.com adobe-dns-1.adobe.com adobe-dns-2.adobe.com adobe-dns-3.adobe.com adobe-dns-4.adobe.com 127.0.0.1 adobeereg.com practivate.adobe practivate.adobe.com practivate.adobe.newoa practivate.adobe.ntp practivate.adobe.ipp ereg.adobe.com ereg.wip.adobe.com ereg.wip1.adobe.com 127.0.0.1 ereg.wip2.adobe.com ereg.wip3.adobe.com ereg.wip4.adobe.com hl2rcv.adobe.com wip.adobe.com wip1.adobe.com wip2.adobe.com wip3.adobe.com wip4.adobe.com 127.0.0.1 w*w.adobeereg.com wwis-dubc1-vip60.adobe.com w*w.wip.adobe.com w*w.wip1.adobe.com 127.0.0.1 w*w.wip2.adobe.com w*w.wip3.adobe.com w*w.wip4.adobe.com wwis-dubc1-vip60.adobe.com crl.verisign.net CRL.VERISIGN.NET ood.opsource.net Es geht weiter wenn du alles Illegale entfernt hast. Bei wiederholten Crack/Keygen Verstößen behalte ich es mir vor, den Support einzustellen, d.h. Hilfe nur noch bei der Datensicherung und Neuinstallation des Betriebssystems.
__________________ --> Virus: Registry Blockiert |
Themen zu Virus: Registry Blockiert |
avast, besser, blockiert, dateien, detected, fehlermeldung, formatierung, frage, illegal, infiziert, kleine, löschen, lösung, modifikation, nicht mehr, nichts, probleme, registry, server, setup, starten, steam, virus, win, win7, zugriff |