FRST Logfile:
Code:
Alles auswählen Aufklappen ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 26-10-2013
Ran by Manh hao (administrator) on MANHHAO-PC on 26-10-2013 12:41:01
Running from C:\Users\Manh hao\Downloads
Windows 7 Home Premium Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 10
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(Microsoft Corporation) C:\Windows\system32\WLANExt.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Systweak) C:\Program Files (x86)\Advanced System Protector\AdvancedSystemProtector.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Google Inc.) C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
(Microsoft Corp.) C:\Users\Manh hao\Documents\MSDCSC\msdcsc.exe
(Company) C:\Users\Manh hao\AppData\Roaming\Mining\Mining.exe
(Microsoft Corporation) C:\Windows\SysWOW64\WerFault.exe
(Take-Two Interactive Software, Inc.) C:\Program Files (x86)\Rockstar Games\Rockstar Games Social Club\1_0_0_0\RGSC.exe
() C:\Program Files (x86)\i-Funbox DevTeam\ifb_conn.exe
(Smartbar) C:\Users\Manh hao\AppData\Local\Smartbar\Application\QuickShare.exe
(BitTorrent Inc.) C:\Users\Manh hao\AppData\Roaming\uTorrent\uTorrent.exe
(TeamSpeak Systems GmbH) C:\Users\Manh hao\AppData\Roaming\Mining\coin-miner.exe
() C:\Users\Manh hao\AppData\Local\Temp\SharedReg.exe
() C:\Users\Manh hao\AppData\Local\WebPlayer\AppsHat\WebPlayer.exe
(McAfee, Inc.) C:\Program Files\McAfee Security Scan\3.8.130\SSScheduler.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v2.0.50727\AppLaunch.exe
(Microsoft Corporation) C:\Users\Manh hao\AppData\Roaming\Microsoft\Windows\Templates\bootres.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
() C:\Program Files (x86)\SoftwareUpdater\SoftwareUpdater.Ui.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
() C:\Users\Manh hao\Downloads\FRST64.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [HotKeysCmds] - C:\Windows\system32\hkcmd.exe [ ] ()
HKLM\...\Run: [AdobeAAMUpdater-1.0] - C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [472984 2013-06-03] (Adobe Systems Incorporated)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKLM\...\Policies\Explorer: [HideSCAHealth] 1
HKCU\...\Run: [swg] - C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2013-02-16] (Google Inc.)
HKCU\...\Run: [RGSC] - C:\Program Files (x86)\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe [305064 2008-11-14] (Take-Two Interactive Software, Inc.)
HKCU\...\Run: [DAEMON Tools Lite] - C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3672640 2013-03-14] (Disc Soft Ltd)
HKCU\...\Run: [Olympus DSS] - C:\ProgramData\AppleDev0\rzsbkotiu.exe [596992 2013-04-26] (Elite Bypassers)
HKCU\...\Run: [MicroUpdate] - C:\Users\Manh hao\Documents\MSDCSC\msdcsc.exe [380928 2013-01-27] (Microsoft Corp.)
HKCU\...\Run: [Boot Resource Library] - C:\Users\Manh hao\AppData\Roaming\Microsoft\Windows\Templates\bootres.exe [14848 2013-09-28] (Microsoft Corporation)
HKCU\...\Run: [Startup] - C:\Users\Manh hao\AppData\Roaming\Mining\Mining.exe [10823 2013-05-12] (Company)
HKCU\...\Run: [8cd98f00b] - C:\Users\Manh hao\AppData\Roaming\8cd98f00b.exe [673792 2013-05-16] (lzoxcQYv)
HKCU\...\Run: [iFunBoxConnector] - C:\Program Files (x86)\i-Funbox DevTeam\ifb_conn.exe [812544 2012-11-20] ()
HKCU\...\Run: [锂劊瞌섥ቾ鄁阢簢滟Ქ裫ꡗ⪒聫뷇╆货箠쉕泞痿独ꁸॅ㠲魹朐뾇ⓒ㫊ꅗ龤隨큝⢴ᒊ쉎騂ᖱ痔ꑺꄮ㟊籲◞ꏚ�䝉䐓梽椫ꙣ⧱⛾쨺꧅啜�⯕⇤] - C:\ProgramData\AppleDev0\rzsbkotiu.exe [596992 2013-04-26] (Elite Bypassers)
HKCU\...\Run: [SSync] - C:\Users\Manh hao\AppData\Roaming\SSync\SSync.exe [36864 2013-04-10] ()
HKCU\...\Run: [ᩳ欷嗃굻ށ勊ਠ靖摤周䯘⤽쥵ぐ怮쐧筐녃堧䈛隥쥍锞煩룆ᔡ뉒㻬쒅胰䋩α瘄ࠣ惝䴘�ⶴ虽ꢨி敼쁫骻萒㳁劢꿨姍Їᷧ끸ﳅ҄] - C:\ProgramData\AppleDev0\rzsbkotiu.exe [596992 2013-04-26] (Elite Bypassers)
HKCU\...\Run: [DataMgr] - C:\Users\Manh hao\AppData\Roaming\DataMgr\DataMgr.exe [168848 2013-05-20] (HTTO Group, Ltd.)
HKCU\...\Run: [Browser Infrastructure Helper] - C:\Users\Manh hao\AppData\Local\Smartbar\Application\QuickShare.exe [20248 2013-09-14] (Smartbar)
HKCU\...\Run: [uTorrent] - C:\Users\Manh hao\AppData\Roaming\uTorrent\uTorrent.exe [1052496 2013-02-16] (BitTorrent Inc.)
HKCU\...\Run: [Ƃ诱焱齲ꯜ瀹�姲釛ᢜ豹윾꽕┻퇩찍ﰢἭ뵍恂뺣쨌詪╳᳷袿⼗릚蟸ᇡ㎷ථ쀕萁⸦࠳栚ꠄἋ설�慉랼啕祝鵣偪睼ੋ떥獔] - C:\ProgramData\AppleDev0\rzsbkotiu.exe [596992 2013-04-26] (Elite Bypassers)
HKCU\...\Run: [SCheck] - C:\Users\Manh hao\AppData\Roaming\SCheck\SCheck.exe [36864 2013-04-10] ()
HKCU\...\Run: [Snoozer] - C:\Users\Manh hao\AppData\Roaming\Snz\Snz.exe [1226844 2013-10-11] ()
HKCU\...\Run: [Intermediate] - C:\Users\Manh hao\AppData\Roaming\Intermediate\Intermediate.exe [36864 2013-04-10] ()
HKCU\...\Run: [OMESupervisor] - C:\Users\Manh hao\AppData\Local\omesuperv.exe [2220366 2013-10-11] ()
HKCU\...\Run: [λ嶣䞨㐩࠻亰蝿ꂔঋ㩃햨镸ﳩꭅ葚瑫篈䴌㥬蓴ィ恄尶뙺ꫧ͐챚쩍㲤饱ⶪ�萪컾剳䯶ᒫ鲢欻ﳨ츷햱爅ꡔˣⅇ윐溡삯튮쓑䛩ᮟ듓㴣챣⸪] - C:\ProgramData\AppleDev0\rzsbkotiu.exe [596992 2013-04-26] (Elite Bypassers)
HKCU\...\Run: [Ꮺꄡ獏僯夏㵛�踲ᓈ愥ॼ�톃칔듌Ⴤ벝ﺧ駋웝閯҄ﭜ鎆৫�㘈顖礰ቤ꒛�ꩣ瘣뭩�㥲�흶晗漢낔鐁ﹿ옉죭襝변䉌㠡嚻㹶䍅沔] - C:\ProgramData\AppleDev0\rzsbkotiu.exe [596992 2013-04-26] (Elite Bypassers)
HKCU\...\Run: [AppsHat] - C:\Users\Manh hao\AppData\Local\WebPlayer\AppsHat\WebPlayer.exe [202752 2012-10-26] ()
HKCU\...\Policies\Explorer: [TaskbarNoNotification] 1
HKCU\...\Policies\Explorer: [HideSCAHealth] 1
MountPoints2: {4a95f31e-7825-11e2-8457-8120fbc7507b} - E:\Autorun.exe
HKLM-x32\...\Run: [] - [x]
HKLM-x32\...\Run: [avgnt] - C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [345312 2013-03-30] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [APSDaemon] - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-21] (Apple Inc.)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-05-11] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Olympus DSS] - C:\ProgramData\AppleDev0\rzsbkotiu.exe [596992 2013-04-26] (Elite Bypassers)
HKLM-x32\...\Run: [QuickTime Task] - C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2012-04-18] (Apple Inc.)
HKLM-x32\...\Run: [Adobe Creative Cloud] - C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2236816 2013-06-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [iTunesHelper] - C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2013-08-16] (Apple Inc.)
HKLM-x32\...\Run: [KiesTrayAgent] - C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe [311152 2013-09-04] (Samsung Electronics Co., Ltd.)
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] - C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [2345296 2013-10-01] (LogMeIn Inc.)
HKLM-x32\...\Run: [YouCam Service] - C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe [255208 2011-11-29] (CyberLink Corp.)
HKU\Mama\...\Run: [swg] - C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2013-02-16] (Google Inc.)
HKU\Mama\...\Run: [Olympus DSS] - C:\ProgramData\AppleDev0\rzsbkotiu.exe [596992 2013-04-26] (Elite Bypassers)
HKU\Mama\...\Run: [Startup] - C:\Users\Mama\AppData\Roaming\Mining\mineamillion.exe [93302 2013-04-28] (Cattlescotch)
HKU\Mama\...\Run: [KiesPreload] - C:\Program Files (x86)\Samsung\Kies\Kies.exe [1564528 2013-09-04] (Samsung)
HKU\Mama\...\Run: [KiesAirMessage] - C:\Program Files (x86)\Samsung\Kies\KiesAirMessage.exe -startup
HKU\Mama\...\Run: [] - C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe [844656 2013-09-04] (Samsung)
HKU\Papa\...\Run: [swg] - C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2013-02-16] (Google Inc.)
HKU\Papa\...\Run: [IDMan] - C:\Program Files (x86)\Internet Download Manager\IDMan.exe /onboot
HKU\Papa\...\Run: [Olympus DSS] - C:\ProgramData\AppleDev0\rzsbkotiu.exe [596992 2013-04-26] (Elite Bypassers)
HKU\Papa\...\Run: [贾樮摛䋋ꇺ멊䣫䢻��鄞涅ꭠ簃偠瘏烕Ȣ윟Փ䧖㴎魫됬ᓻ䜷όꗎ賵␑嬍ᡜ㰉뢽ू⛎덩鬴⨬稢官茏�ꦺ쉺蝶뒄�ꊒꟂ⅛ை䯄뜻裸撬謹ᖆ㠯҃嘰] - C:\ProgramData\AppleDev0\rzsbkotiu.exe [596992 2013-04-26] (Elite Bypassers)
HKU\Papa\...\Run: [] - C:\Users\Papa\AppData\Roaming\\Loader.exe [15360 2013-07-12] ()
HKU\Papa\...\Run: [�蠀ႅ䲇憏㬚ꢛ㻲萪떶㸧༱ﺧඣ筗ꢒ䁉䯕筣싽ḥ�㛈嶝덖㺤먫旔葊罯솫�ꨪلᇀƣ�禙ㅋ猌嘌㔤ᓲ懣ᡡ砟㎘�㌶뀕妕⤞痗뙐] - C:\ProgramData\AppleDev0\rzsbkotiu.exe [596992 2013-04-26] (Elite Bypassers)
HKU\Papa\...\Run: [Browser Infrastructure Helper] - C:\Users\Papa\AppData\Local\Smartbar\Application\Smartbar.exe [13824 2013-02-20] (Smartbar)
HKU\Papa\...\Run: [쩥蟐䊜☟⑿㥭椇ꄜ뮨⅌ാ떵㎡脇碘빣瑓喺뤹鴐ꉶᧇ䬿튵㧗⏗泸⦧嫮쩥꿊㺛ࣇאָ琥㓇倉쏻㹊寂戨䑵ꛨ레㫃嗵磕泮㤿멠⬈跉蹅鶖迴뷗鈐ḇ] - C:\ProgramData\AppleDev0\rzsbkotiu.exe [596992 2013-04-26] (Elite Bypassers)
HKU\Papa\...\Run: [iFunBoxConnector] - C:\Program Files (x86)\i-Funbox DevTeam\ifb_conn.exe [812544 2012-11-20] ()
HKU\Selina\...\Run: [swg] - C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2013-02-16] (Google Inc.)
HKU\Selina\...\Run: [DAEMON Tools Lite] - C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3672640 2013-03-14] (Disc Soft Ltd)
HKU\Selina\...\Run: [msnmsgr] - C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe [4272624 2013-02-05] (Microsoft Corporation)
HKU\Selina\...\Run: [Protection Agent] - C:\ProgramData\Protection Enforcement Module0\ntibcpsaq.exe [1117494 2013-09-10] (ICERAMBOY)
HKU\Selina\...\Run: [Olympus DSS] - C:\ProgramData\AppleDev0\rzsbkotiu.exe [596992 2013-04-26] (Elite Bypassers)
HKU\Selina\...\Run: [iFunBoxConnector] - C:\Program Files (x86)\i-Funbox DevTeam\ifb_conn.exe [812544 2012-11-20] ()
HKU\Selina\...\Run: [] - C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe [844656 2013-09-04] (Samsung)
AppInit_DLLs: [0 ] ()
AppInit_DLLs-x32: c:\progra~3\bitguard\261694~1.246\{c16c1~1\bitguard.dll [2704352 2013-10-08] ()
IMEO\bitguard.exe: [Debugger] tasklist.exe
IMEO\bprotect.exe: [Debugger] tasklist.exe
IMEO\browserdefender.exe: [Debugger] tasklist.exe
IMEO\browserprotect.exe: [Debugger] tasklist.exe
IMEO\hijackthis.exe: [Debugger] _.exe
IMEO\housecalllauncher.exe: [Debugger] fxdd_.exe
IMEO\mbam.exe: [Debugger] doj_.exe
IMEO\mbamgui.exe: [Debugger] nkdas_.exe
IMEO\rstrui.exe: [Debugger] _.exe
IMEO\spybotsd.exe: [Debugger] uurst_.exe
Startup: C:\Users\Mama\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\blueincarnations.vbs ()
Startup: C:\Users\Manh hao\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\blueincarnations.vbs ()
Startup: C:\Users\Papa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Adobe.lnk
ShortcutTarget: Adobe.lnk -> C:\Users\Manh hao\AppData\Roaming\data\Adobe.vbs (No File)
Startup: C:\Users\Papa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Buefairy.vbs ()
Startup: C:\Users\Papa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Deferneder.vbs ()
Startup: C:\Users\Papa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Searchindexer.exe ()
Startup: C:\Users\Papa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Svchost.exe.lnk
ShortcutTarget: Svchost.exe.lnk -> C:\Users\Manh hao\AppData\Local\Temp\RarSFX32\Svchost.exe (No File)
Startup: C:\Users\Papa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Usbport.exe ()
Startup: C:\Users\Papa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Usbsupply.exe ()
Startup: C:\Users\Papa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\windowsdll.exe.lnk
ShortcutTarget: windowsdll.exe.lnk -> C:\Users\Manh hao\AppData\Local\Temp\RarSFX32\windowsdll.exe (No File)
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://feed.snap.do/?publisher=QuickObrw&dpid=QuickObrw&co=DE&userid=5cf79b0f-85c8-4c40-b01b-f818a3069e20&searchtype=ds&q={searchTerms}&installDate=24/09/2013
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://feed.snap.do/?publisher=QuickObrw&dpid=QuickObrw&co=DE&userid=5cf79b0f-85c8-4c40-b01b-f818a3069e20&searchtype=hp&installDate=24/09/2013
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/?ocid=iehp
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x01554D8E2A06CE01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de
HKCU\Software\Microsoft\Internet Explorer\Main,Start Default_Page_URL = hxxp://search.certified-toolbar.com?si=42820&st=home&tid=3347
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://search.certified-toolbar.com?si=42820&tid=3347&st=bs&q=
HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxp://feed.snap.do/?publisher=QuickObrw&dpid=QuickObrw&co=DE&userid=5cf79b0f-85c8-4c40-b01b-f818a3069e20&searchtype=ds&q={searchTerms}&installDate=24/09/2013
HKCU\Software\Microsoft\Internet Explorer\Main,bProtector Start Page = hxxp://www.delta-search.com/?babsrc=HP_ss&mntrId=F8A600FF33C882A8&affID=122304&tt=180613_ndt1&tsp=4921
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://start.mysearchdial.com/?f=1&a=tugumsd&cd=2XzuyEtN2Y1L1QzuyB0AyBzytCzyyEtCzytB0D0FtB0AtC0BtN0D0Tzu0CyDtCtDtN1L2XzutBtFtBtFtCtFyCtCzztN1L1Czu2Z2Y1N2Y1H1B1Q&cr=1742042479&ir=
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://search.certified-toolbar.com?si=42820&tid=3347&st=bs&q=
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://websearch.pur-esult.info/?pid=726&r=2013/09/27&hid=2090508738147741377&lg=EN&cc=DE
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://search.certified-toolbar.com?si=42820&tid=3347&st=bs&q=
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Default_Page_URL = hxxp://search.certified-toolbar.com?si=42820&st=home&tid=3347
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Bar = hxxp://search.certified-toolbar.com?si=42820&tid=3347&st=bs&q=
URLSearchHook: HKCU - (No Name) - {539F76FD-084E-4858-86D5-62F02F54AE86} - No File
SearchScopes: HKLM - {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxp://start.mysearchdial.com/results.php?f=4&q={searchTerms}&a=tugumsd&cd=2XzuyEtN2Y1L1QzuyB0AyBzytCzyyEtCzytB0D0FtB0AtC0BtN0D0Tzu0CyDtCtDtN1L2XzutBtFtBtFtCtFyCtCzztN1L1Czu2Z2Y1N2Y1H1B1Q&cr=1742042479&ir=
SearchScopes: HKLM-x32 - {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxp://search.certified-toolbar.com?si=42820&st=bs&tid=3347&q={searchTerms}
SearchScopes: HKLM-x32 - {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = hxxp://start.mysearchdial.com/results.php?f=4&q={searchTerms}&a=tugumsd&cd=2XzuyEtN2Y1L1QzuyB0AyBzytCzyyEtCzytB0D0FtB0AtC0BtN0D0Tzu0CyDtCtDtN1L2XzutBtFtBtFtCtFyCtCzztN1L1Czu2Z2Y1N2Y1H1B1Q&cr=1742042479&ir=
SearchScopes: HKLM-x32 - {BB74DE59-BC4C-4172-9AC4-73315F71CFFE} URL = hxxp://websearch.pur-esult.info/?l=1&q={searchTerms}&pid=726&r=2013/09/27&hid=2090508738147741377&lg=EN&cc=DE
SearchScopes: HKCU - bProtectorDefaultScope {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}
SearchScopes: HKCU - {006ee092-9658-4fd6-bd8e-a21a348e59f5} URL = hxxp://feed.snap.do/?publisher=QuickObrw&dpid=QuickObrw&co=DE&userid=5cf79b0f-85c8-4c40-b01b-f818a3069e20&searchtype=ds&q={searchTerms}&installDate=24/09/2013
SearchScopes: HKCU - {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = hxxp://www.delta-search.com/?q={searchTerms}&babsrc=SP_ss&mntrId=F8A600FF33C882A8&affID=122304&tt=180613_ndt1&tsp=4921
SearchScopes: HKCU - {6015E471-9846-49D0-90F9-2CF4FFA91393} URL = hxxp://websearch.ask.com/redirect?client=ie&tb=AVR-4&o=APN10261&src=kw&q={searchTerms}&locale=de_DE&apn_ptnrs=^AGS&apn_dtid=^YYYYYY^YY^DE&apn_uid=135c18b1-1241-48c5-996d-6d1b5593e4e0&apn_sauid=368B5388-3ED0-4C2F-9E8D-FF194D686682
SearchScopes: HKCU - {95B7759C-8C7F-4BF1-B163-73684A933233} URL = hxxp://searchqm.com/search.php?channel=sfde203fbdgy21&q={searchTerms}
SearchScopes: HKCU - {BB74DE59-BC4C-4172-9AC4-73315F71CFFE} URL = hxxp://websearch.pur-esult.info/?l=1&q={searchTerms}&pid=726&r=2013/09/27&hid=2090508738147741377&lg=EN&cc=DE
BHO: TubeBoxEngine - {31ad400d-1b06-4e33-a59a-90c2c140cba0} - C:\Windows\System32\mscoree.dll (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO: Hotspot Shield Class - {F9E4A054-E9B1-4BC3-83A3-76A1AE736170} - C:\Program Files (x86)\Hotspot Shield\HssIE\HssIE_64.dll No File
BHO-x32: MSS+ Identifier - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files\McAfee Security Scan\3.8.130\McAfeeMSS_IE.dll (McAfee, Inc.)
BHO-x32: TubeBoxEngine - {31ad400d-1b06-4e33-a59a-90c2c140cba0} - C:\Windows\\SysWOW64\mscoree.dll (Microsoft Corporation)
BHO-x32: qualitink - {73ad5d47-66e5-4127-80ca-c0eedabafbcc} - C:\Program Files (x86)\qualitink\qualitinkbho.dll (qualitink)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Microsoft-Konto-Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
BHO-x32: MinibarBHO - {AA74D58F-ACD0-450D-A85E-6C04B171C044} - C:\Program Files (x86)\Minibar\Minibar.dll (KangoExtensions)
BHO-x32: Avira SearchFree Toolbar plus Web Protection - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll (Ask)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - TubeBox - {ae07101b-46d4-4a98-af68-0333ea26e113} - C:\Windows\System32\mscoree.dll (Microsoft Corporation)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Toolbar: HKLM-x32 - Avira SearchFree Toolbar plus Web Protection - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll (Ask)
Toolbar: HKLM-x32 - TubeBox - {ae07101b-46d4-4a98-af68-0333ea26e113} - C:\Windows\\SysWOW64\mscoree.dll (Microsoft Corporation)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKCU - No Name - {D4027C7F-154A-4066-A1AD-4243D8127440} - No File
Toolbar: HKCU - Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
FireFox:
========
FF ProfilePath: C:\Users\Manh hao\AppData\Roaming\Mozilla\Firefox\Profiles\yvuvu5a8.default
FF user.js: detected! => C:\Users\Manh hao\AppData\Roaming\Mozilla\Firefox\Profiles\yvuvu5a8.default\user.js
FF NewTab: hxxp://feed.snap.do/?publisher=QuickObrw&dpid=QuickObrw&co=DE&userid=5cf79b0f-85c8-4c40-b01b-f818a3069e20&searchtype=nt&installDate=24/09/2013
FF DefaultSearchEngine: WebSearch
FF SearchEngineOrder.1: Delta Search
FF SearchEngineOrder.user_pref("browser.search.order.1,S", "WebSearch");: user_pref("browser.search.order.1,S", "WebSearch");
FF SelectedSearchEngine: Web Search
FF Homepage: hxxp://feed.snap.do/?publisher=QuickObrw&dpid=QuickObrw&co=DE&userid=5cf79b0f-85c8-4c40-b01b-f818a3069e20&searchtype=hp&installDate=24/09/2013
FF Keyword.URL: hxxp://feed.snap.do/?publisher=QuickObrw&dpid=QuickObrw&co=DE&userid=5cf79b0f-85c8-4c40-b01b-f818a3069e20&searchtype=ds&installDate=24/09/2013&q=
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_7_700_224.dll ()
FF Plugin: @java.com/DTPlugin,version=10.17.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.17.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: adobe.com/AdobeAAMDetect - C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_7_700_224.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @java.com/DTPlugin,version=10.15.2 - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.15.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @mcafee.com/McAfeeMssPlugin - C:\Program Files\McAfee Security Scan\3.8.130\npMcAfeeMss.dll (McAfee, Inc.)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3508.0205 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect - C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll (Adobe Systems)
FF Plugin HKCU: @nsroblox.roblox.com/launcher - C:\Program Files (x86)\Roblox\Versions\version-1ff4978f36a64477\\NPRobloxProxy.dll ( ROBLOX Corporation)
FF SearchPlugin: C:\Users\Manh hao\AppData\Roaming\Mozilla\Firefox\Profiles\yvuvu5a8.default\searchplugins\babylon.xml
FF SearchPlugin: C:\Users\Manh hao\AppData\Roaming\Mozilla\Firefox\Profiles\yvuvu5a8.default\searchplugins\delta.xml
FF SearchPlugin: C:\Users\Manh hao\AppData\Roaming\Mozilla\Firefox\Profiles\yvuvu5a8.default\searchplugins\Mysearchdial.xml
FF SearchPlugin: C:\Users\Manh hao\AppData\Roaming\Mozilla\Firefox\Profiles\yvuvu5a8.default\searchplugins\Web Search.xml
FF SearchPlugin: C:\Users\Manh hao\AppData\Roaming\Mozilla\Firefox\Profiles\yvuvu5a8.default\searchplugins\WebSearch.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\Web Search.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: Douwnload kEiEpeer - C:\Users\Manh hao\AppData\Roaming\Mozilla\Firefox\Profiles\yvuvu5a8.default\Extensions\ipbi_nhyq@msjoooe.org
FF Extension: SeAirch-eNewTabe - C:\Users\Manh hao\AppData\Roaming\Mozilla\Firefox\Profiles\yvuvu5a8.default\Extensions\tgeeckzpc@r-wm.net
FF Extension: QuickShare Widget - C:\Users\Manh hao\AppData\Roaming\Mozilla\Firefox\Profiles\yvuvu5a8.default\Extensions\{5cf79b0f-85c8-4c40-b01b-f818a3069e20}
FF Extension: Apps Hat - C:\Users\Manh hao\AppData\Roaming\Mozilla\Firefox\Profiles\yvuvu5a8.default\Extensions\{97A78363-B868-4B48-AC91-A783A31215AF}
FF Extension: MySearchDial - C:\Users\Manh hao\AppData\Roaming\Mozilla\Firefox\Profiles\yvuvu5a8.default\Extensions\{ad9a41d2-9a49-4fa6-a79e-71a0785364c8}
FF Extension: firefox-hotfix - C:\Users\Manh hao\AppData\Roaming\Mozilla\Firefox\Profiles\yvuvu5a8.default\Extensions\firefox-hotfix@mozilla.org.xpi
FF Extension: firefox - C:\Users\Manh hao\AppData\Roaming\Mozilla\Firefox\Profiles\yvuvu5a8.default\Extensions\firefox@qualitink.net.xpi
FF Extension: om - C:\Users\Manh hao\AppData\Roaming\Mozilla\Firefox\Profiles\yvuvu5a8.default\Extensions\om@offermosquito.com.xpi
FF Extension: noscript - C:\Users\Manh hao\AppData\Roaming\Mozilla\Firefox\Profiles\yvuvu5a8.default\Extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi
FF Extension: No Name - C:\Users\Manh hao\AppData\Roaming\Mozilla\Firefox\profiles\extensions\extensions
FF Extension: No Name - C:\Users\Manh hao\AppData\Roaming\Mozilla\Firefox\profiles\extensions\searchplugins
FF Extension: movie2kdownloader - C:\Users\Manh hao\AppData\Roaming\Mozilla\Firefox\profiles\extensions\movie2kdownloader@movie2kdownloader.com.xpi
FF Extension: No Name - C:\Users\Manh hao\AppData\Roaming\Mozilla\Firefox\profiles\extensions\prefs.bck
FF Extension: No Name - C:\Users\Manh hao\AppData\Roaming\Mozilla\Firefox\profiles\extensions\prefs.js
FF Extension: No Name - C:\Users\Manh hao\AppData\Roaming\Mozilla\Firefox\profiles\extensions\search.sqlite
FF Extension: No Name - C:\Users\Manh hao\AppData\Roaming\Mozilla\Firefox\profiles\extensions\user.js
FF Extension: No Name - C:\Users\Manh hao\AppData\Roaming\Mozilla\Firefox\profiles\extensions\user.js.orig
FF Extension: No Name - C:\Program Files (x86)\Mozilla Firefox\extensions\afurladvisor@anchorfree.com
FF Extension: No Name - C:\Program Files (x86)\Mozilla Firefox\extensions\ffxtlbr@babylon.com
Chrome:
=======
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\30.0.1599.101\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\30.0.1599.101\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\30.0.1599.101\pdf.dll ()
CHR Plugin: (QuickTime Plug-in 7.7.2) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.2) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin2.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.2) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin3.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.2) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin4.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.2) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin5.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.2) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin6.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.2) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin7.dll (Apple Inc.)
CHR Plugin: (AdobeAAMDetect) - C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll (Adobe Systems)
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll No File
CHR Plugin: (Java(TM) Platform SE 7 U15) - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
CHR Plugin: (McAfee Security Scanner +) - C:\Program Files (x86)\McAfee Security Scan\3.0.318\npMcAfeeMss.dll No File
CHR Plugin: (Roblox Launcher Plugin) - C:\Program Files (x86)\Roblox\Versions\version-1ff4978f36a64477\\NPRobloxProxy.dll ( ROBLOX Corporation)
CHR Plugin: (Photo Gallery) - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Plugin: (iTunes Application Detector) - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_7_700_224.dll ()
CHR Plugin: (Java Deployment Toolkit 7.0.150.3) - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
CHR Extension: (SeAirch-eNewTabe) - C:\Users\MANHHA~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\aakpdaeljcpejdepmiibkcoamggkpnko\1.0
CHR Extension: (QuickShare Widget) - C:\Users\MANHHA~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\amfclgbdpgndipgoegfpkkgobahigbcl\1.4_0
CHR Extension: (Google Docs) - C:\Users\MANHHA~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0
CHR Extension: (Google Drive) - C:\Users\MANHHA~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0
CHR Extension: (Movie2kDownloader) - C:\Users\MANHHA~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\blaofbhgbmeikidhlkmjhbkbfohpgekf\1.0_0
CHR Extension: (YouTube) - C:\Users\MANHHA~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
CHR Extension: (Google Search) - C:\Users\MANHHA~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
CHR Extension: (Douwnload kEiEpeer) - C:\Users\MANHHA~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\fdoebkhkmgkfdjjdpjlecjogdfcaopni\1.6
CHR Extension: (OfferMosquito) - C:\Users\MANHHA~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbmdkmlcnbapgegninelmjbfibaghdmk\0.8_0
CHR Extension: (qualitink) - C:\Users\MANHHA~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\ljkcijnbckdflhifmbnfnkjacokloacf\1.0.0_0
CHR Extension: (Awesome New Tab Page\u2122) - C:\Users\MANHHA~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mgmiemnjjchgkmgbeljfocdjjnpjnmcg\2013.432.10_0
CHR Extension: (Chrome In-App Payments service) - C:\Users\MANHHA~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.11_0
CHR Extension: (MySearchDial __MSG_newtab__) - C:\Users\MANHHA~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\pflphaooapbgpeakohlggbpidpppgdff\9.4.1.1_0
CHR Extension: (Gmail) - C:\Users\MANHHA~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1
CHR HKLM\...\Chrome\Extension: [pflphaooapbgpeakohlggbpidpppgdff] - C:\Users\MANHHA~1\AppData\Local\mysearchdial.crx
CHR HKLM-x32\...\Chrome\Extension: [blaofbhgbmeikidhlkmjhbkbfohpgekf] - C:\Program Files (x86)\Movie2KDownloader.com\Movie2KDownloader10.crx
CHR HKLM-x32\...\Chrome\Extension: [ljkcijnbckdflhifmbnfnkjacokloacf] - C:\Program Files (x86)\qualitink\ljkcijnbckdflhifmbnfnkjacokloacf.crx
CHR HKLM-x32\...\Chrome\Extension: [pflphaooapbgpeakohlggbpidpppgdff] - C:\Users\MANHHA~1\AppData\Local\mysearchdial.crx
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
==================== Services (Whitelisted) =================
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [86752 2013-03-30] (Avira Operations GmbH & Co. KG)
S2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [110816 2013-03-30] (Avira Operations GmbH & Co. KG)
S2 AntiVirWebService; C:\Program Files (x86)\Avira\AntiVir Desktop\AVWEBGRD.EXE [565472 2013-03-30] (Avira Operations GmbH & Co. KG)
S2 BitGuard; C:\ProgramData\BitGuard\2.6.1694.246\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\BitGuard.exe [3032032 2013-10-08] ()
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.8.130\McCHSvc.exe [288776 2013-09-06] (McAfee, Inc.)
S3 rpcapd; C:\Program Files (x86)\WinPcap\rpcapd.exe [118520 2013-03-01] (Riverbed Technology, Inc.)
S2 SystemStoreService; C:\Program Files (x86)\SoftwareUpdater\SystemStore.exe [296448 2013-04-30] ()
==================== Drivers (Whitelisted) ====================
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [100712 2013-03-30] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [130016 2013-03-30] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [28600 2013-03-30] (Avira Operations GmbH & Co. KG)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283200 2013-02-16] (DT Soft Ltd)
R2 NPF; C:\Windows\System32\drivers\npf.sys [36600 2013-03-01] (Riverbed Technology, Inc.)
S3 taphss6; C:\Windows\System32\DRIVERS\taphss6.sys [42184 2013-04-03] (Anchorfree Inc.)
S3 WinRing0_1_2_0; C:\Program Files (x86)\IObit\Game Booster 3\Driver\WinRing0x64.sys [14544 2010-11-01] (OpenLibSys.org)
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2013-10-26 12:40 - 2013-10-26 12:40 - 00000000 ____D C:\FRST
2013-10-26 12:39 - 2013-10-26 12:39 - 01956086 _____ (Farbar) C:\Users\Manh hao\Desktop\FRST64.exe
2013-10-26 10:40 - 2013-10-26 10:43 - 00000088 _____ C:\Windows\SysWOW64\12877889519160193173.log
2013-10-26 10:14 - 2013-10-26 10:14 - 00000000 ____D C:\Users\Manh hao\Documents\Optimizer Pro
2013-10-26 10:10 - 2013-10-26 10:10 - 02321335 _____ C:\Users\Manh hao\Downloads\MineCraft Cracker (2).zip
2013-10-26 10:10 - 2013-10-26 10:10 - 02321335 _____ C:\Users\Manh hao\Downloads\MineCraft Cracker (1).zip
2013-10-26 10:09 - 2013-10-26 10:09 - 00000000 ____D C:\Users\Manh hao\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AppsHat
2013-10-26 10:09 - 2013-10-26 10:09 - 00000000 ____D C:\Users\Manh hao\AppData\Local\WebPlayer
2013-10-26 10:09 - 2013-10-26 10:09 - 00000000 ____D C:\Users\Manh hao\AppData\Local\Minibar
2013-10-26 10:09 - 2013-10-26 10:09 - 00000000 ____D C:\Program Files (x86)\Minibar
2013-10-26 10:08 - 2013-10-26 10:08 - 00003264 _____ C:\Windows\System32\Tasks\SomotoUpdateCheckerAutoStart
2013-10-26 10:08 - 2013-10-26 10:08 - 00000000 ____D C:\Users\Manh hao\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FilesFrog Update Checker
2013-10-26 10:08 - 2013-10-26 10:08 - 00000000 ____D C:\Users\Manh hao\AppData\Local\FilesFrog Update Checker
2013-10-26 10:07 - 2013-10-26 10:07 - 00167304 _____ () C:\Users\Manh hao\Downloads\7Zip-adJLNAZ.exe
2013-10-26 09:58 - 2013-10-26 10:01 - 00000000 ____D C:\Users\Manh hao\Documents\Neuer Ordner
2013-10-26 09:58 - 2013-10-26 09:58 - 00000099 _____ C:\Users\Manh hao\Downloads\MOL_Properties.properties
2013-10-26 09:57 - 2013-10-26 09:58 - 00473416 _____ C:\Users\Manh hao\Downloads\MC_Open_Launcher.jar
2013-10-26 09:47 - 2013-10-26 09:47 - 00251361 _____ C:\Users\Manh hao\Downloads\Mineshafter-launcher (2).jar
2013-10-24 11:33 - 2013-10-24 11:35 - 00000000 ____D C:\Users\Manh hao\Desktop\Minecraft BUKKIT Server! - by MinecraftBukkit
2013-10-24 11:31 - 2013-10-24 11:32 - 17802634 _____ C:\Users\Manh hao\Downloads\Minecraft BUKKIT Server! - by MinecraftBukkit.rar
2013-10-24 11:29 - 2013-10-24 11:30 - 21075419 _____ C:\Users\Manh hao\Downloads\FutureSpawnPoint-Scb v.1.2.2.zip
2013-10-24 11:28 - 2013-10-24 11:27 - 05840896 _____ C:\Users\Manh hao\Desktop\Hamachi220.msi
2013-10-24 11:27 - 2013-10-24 11:27 - 05840896 _____ C:\Users\Manh hao\Downloads\Hamachi220.msi
2013-10-23 18:27 - 2013-10-23 18:28 - 06542715 _____ C:\Users\Manh hao\Downloads\minecraft_server.1.6.4.exe
2013-10-22 22:21 - 2013-10-22 22:21 - 00319736 _____ C:\Users\Papa\Downloads\Setup.exe
2013-10-22 21:57 - 2013-10-22 21:57 - 00000000 ____D C:\Users\Papa\AppData\Roaming\iFunbox_UserCache
2013-10-22 21:51 - 2013-10-22 22:01 - 92587046 _____ C:\Users\Papa\Desktop\Bilder.zip
2013-10-22 21:50 - 2013-10-22 22:00 - 00000000 ____D C:\Users\Papa\Desktop\Bilder
2013-10-22 20:48 - 2013-10-22 20:48 - 00000000 ____D C:\Users\Selina\Documents\Youcam
2013-10-22 20:48 - 2013-10-22 20:48 - 00000000 ____D C:\Users\Selina\AppData\Local\CyberLink
2013-10-21 22:15 - 2013-10-21 22:15 - 00002305 _____ C:\Users\Papa\Desktop\Chrome-App-Übersicht.lnk
2013-10-21 22:15 - 2013-10-21 22:15 - 00000000 ____D C:\Users\Papa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome
2013-10-21 20:27 - 2013-10-24 13:03 - 944711399 _____ C:\Users\Manh hao\Desktop\GTA+San+Andreas+by+TheSaazZzzz.zip
2013-10-21 18:19 - 2013-10-21 18:19 - 00421267 _____ C:\Users\Manh hao\Downloads\OptiFine 1.6.4.jar
2013-10-21 18:19 - 2013-10-21 18:19 - 00421267 _____ C:\Users\Manh hao\Desktop\OptiFine 1.6.4.jar
2013-10-21 18:15 - 2013-10-26 09:48 - 00000000 ____D C:\Users\Manh hao\AppData\Roaming\.minecraft
2013-10-21 18:15 - 2013-10-21 18:15 - 00251361 _____ C:\Users\Manh hao\Downloads\Mineshafter-launcher (1).jar
2013-10-21 18:05 - 2013-10-21 18:05 - 57190400 _____ C:\Users\Manh hao\Downloads\Nicht bestätigt 135859.crdownload
2013-10-21 17:40 - 2013-10-22 09:22 - 00007453 _____ C:\Users\Manh hao\Desktop\WDI_0.9_Log.log
2013-10-21 17:40 - 2013-10-21 17:40 - 00003144 _____ C:\Windows\System32\Tasks\{7D26D12B-2002-4532-B085-E1E262033DFF}
2013-10-21 17:39 - 2013-10-21 17:38 - 15914540 _____ (Montoyo Systems, vInc.) C:\Users\Manh hao\Desktop\WDI_0.9.exe
2013-10-21 17:38 - 2013-10-21 17:38 - 02204394 _____ C:\Users\Manh hao\Downloads\minecraftforge-installer-1.6.4-9.11.0.883.jar
2013-10-21 17:38 - 2013-10-21 17:38 - 02204394 _____ C:\Users\Manh hao\Desktop\minecraftforge-installer-1.6.4-9.11.0.883.jar
2013-10-21 17:37 - 2013-10-21 17:38 - 15914540 _____ (Montoyo Systems, vInc.) C:\Users\Manh hao\Downloads\WDI_0.9.exe
2013-10-21 10:09 - 2013-10-21 10:55 - 268542572 _____ C:\Users\Manh hao\Downloads\Pokemon.Y.3DS-CONTRAST.part4.rar
2013-10-21 09:30 - 2013-10-21 09:30 - 00000000 ____D C:\Users\Manh hao\AppData\Local\Cool_Mirage
2013-10-21 09:29 - 2013-10-21 09:29 - 00000000 ____D C:\Program Files (x86)\qualitink
2013-10-21 09:28 - 2013-10-21 09:28 - 00000000 ____D C:\Users\Manh hao\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\1clickmoviedownloader.com
2013-10-21 09:27 - 2013-10-21 09:29 - 65328340 _____ C:\Users\Manh hao\Downloads\Pokemon.Y.3DS-CONTRAST.7z.crdownload
2013-10-21 09:27 - 2013-10-21 09:27 - 00299280 _____ C:\Users\Manh hao\Downloads\3DS0451.part3.exe
2013-10-21 09:13 - 2013-10-21 09:13 - 00167304 _____ () C:\Users\Manh hao\Downloads\7ZipSetup-9wlIA2X.exe
2013-10-21 09:06 - 2013-10-21 09:36 - 00000000 ____D C:\Users\Manh hao\Desktop\desmume-0.9.9-win64
2013-10-21 09:04 - 2013-10-21 09:05 - 01691723 _____ C:\Users\Manh hao\Downloads\desmume-0.9.9-win64.zip
2013-10-19 23:02 - 2013-10-19 23:02 - 00000000 ____D C:\Users\Papa\AppData\Roaming\OpenOffice
2013-10-19 22:08 - 2013-10-19 22:13 - 114264027 _____ C:\Users\Manh hao\Downloads\Pokemon+X+++3DS+Emu.rar
2013-10-19 19:57 - 2013-10-19 19:57 - 05250247 _____ C:\Users\Manh hao\Downloads\Pokemon FireRed.zip
2013-10-19 19:55 - 2013-10-19 19:57 - 00000000 ____D C:\Users\Manh hao\Desktop\PokeMMO-Client
2013-10-19 19:54 - 2013-10-19 19:54 - 09775413 _____ C:\Users\Manh hao\Downloads\PokeMMO-Client.zip
2013-10-19 18:35 - 2013-10-19 18:35 - 00003584 _____ C:\Users\Manh hao\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2013-10-19 18:35 - 2013-10-19 18:35 - 00000000 ____D C:\Users\Manh hao\AppData\Roaming\Solveig Multimedia
2013-10-19 18:15 - 2013-10-19 18:15 - 00000000 ____D C:\Users\Manh hao\Documents\HyperCam3
2013-10-19 18:14 - 2013-10-19 18:14 - 00000068 _____ C:\Users\Manh hao\Downloads\SMM_HyperCam.hc3lic
2013-10-19 18:11 - 2013-10-19 18:11 - 00000000 ____D C:\Users\Manh hao\AppData\Roaming\HyperCam
2013-10-19 10:00 - 2013-10-19 21:48 - 00012333 _____ C:\Users\Manh hao\Desktop\Steckbrief von Manh hao1.odt
2013-10-19 09:49 - 2013-10-19 09:49 - 00001116 _____ C:\Users\Public\Desktop\OpenOffice 4.0.1.lnk
2013-10-19 09:49 - 2013-10-19 09:49 - 00000000 ____D C:\Users\Manh hao\AppData\Roaming\OpenOffice
2013-10-19 09:47 - 2013-10-19 09:47 - 00000000 ____D C:\Program Files (x86)\OpenOffice 4
2013-10-19 09:32 - 2013-10-19 09:32 - 00010476 _____ C:\Users\Manh hao\Downloads\Steckbrief von Manh Hao1.odt
2013-10-19 09:28 - 2013-10-19 09:28 - 00614816 _____ C:\Users\Manh hao\Downloads\OpenOffice - CHIP-Downloader.exe
2013-10-19 09:24 - 2013-10-05 20:06 - 01818624 _____ C:\Users\Manh hao\Desktop\update - Kopie.img
2013-10-19 09:24 - 2013-10-05 11:23 - 02153194 _____ C:\Users\Manh hao\Desktop\minecraftforge-installer-1.6.2-9.10.0.799 - Kopie.jar
2013-10-19 09:24 - 2013-09-20 19:37 - 00038083 _____ C:\Users\Manh hao\Desktop\com.dnddream.headsoccer - Kopie.plist
2013-10-18 17:10 - 2013-10-18 17:10 - 00001569 _____ C:\Users\Manh hao\Desktop\Pokémon Trading Card Game Online.lnk
2013-10-18 17:07 - 2013-10-18 17:10 - 00000000 ____D C:\Users\Manh hao\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pokémon Trading Card Game Online
2013-10-18 17:07 - 2013-10-18 17:07 - 00000000 ____D C:\Users\Manh hao\AppData\Roaming\Pokémon Trading Card Game Online
2013-10-18 16:46 - 2013-10-18 16:56 - 264747520 _____ C:\Users\Manh hao\Downloads\PokemonInstaller.msi
2013-10-18 15:11 - 2013-10-18 15:11 - 01251840 _____ C:\Users\Manh hao\Downloads\Minecraft Gift Code Generator 2013.exe
2013-10-18 15:10 - 2013-10-18 15:11 - 10501695 _____ C:\Users\Manh hao\Downloads\GTA 5 Free Download (June 2013).rar
2013-10-18 15:04 - 2013-10-18 15:04 - 02935637 _____ C:\Users\Manh hao\Downloads\GTA5Generator.rar
2013-10-18 15:00 - 2013-10-18 15:01 - 05180936 _____ C:\Users\Manh hao\Downloads\PS3 Emulator 1.9.4.rar
2013-10-18 14:57 - 2013-10-18 14:57 - 00000000 ____D C:\Users\Manh hao\AppData\Roaming\Snz
2013-10-17 22:38 - 2013-10-17 22:38 - 00000000 ____D C:\Program Files\McAfee Security Scan
2013-10-14 22:04 - 2013-10-26 12:36 - 00003120 _____ C:\Windows\System32\Tasks\Advanced System Protector_startup
2013-10-12 21:56 - 2013-09-23 01:28 - 01767936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-10-12 21:56 - 2013-09-23 01:28 - 01141248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-10-12 21:56 - 2013-09-23 01:27 - 14335488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-10-12 21:56 - 2013-09-23 01:27 - 13761024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-10-12 21:56 - 2013-09-23 01:27 - 02876928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-10-12 21:56 - 2013-09-23 01:27 - 02048512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-10-12 21:56 - 2013-09-23 01:27 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-10-12 21:56 - 2013-09-23 01:27 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-10-12 21:56 - 2013-09-23 01:27 - 00391168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-10-12 21:56 - 2013-09-23 01:27 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-10-12 21:56 - 2013-09-23 01:27 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-10-12 21:56 - 2013-09-23 01:27 - 00039424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-10-12 21:56 - 2013-09-23 01:27 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-10-12 21:56 - 2013-09-23 00:55 - 02241024 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-10-12 21:56 - 2013-09-23 00:55 - 01365504 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-10-12 21:56 - 2013-09-23 00:55 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-10-12 21:56 - 2013-09-23 00:54 - 19252224 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-10-12 21:56 - 2013-09-23 00:54 - 15404544 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-10-12 21:56 - 2013-09-23 00:54 - 03959296 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-10-12 21:56 - 2013-09-23 00:54 - 02647552 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-10-12 21:56 - 2013-09-23 00:54 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-10-12 21:56 - 2013-09-23 00:54 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-10-12 21:56 - 2013-09-23 00:54 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-10-12 21:56 - 2013-09-23 00:54 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-10-12 21:56 - 2013-09-23 00:54 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-10-12 21:56 - 2013-09-23 00:54 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-10-12 21:56 - 2013-09-23 00:54 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-10-12 21:56 - 2013-09-21 05:38 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-10-12 21:56 - 2013-09-21 05:30 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-10-12 21:56 - 2013-09-21 04:48 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-10-12 21:56 - 2013-09-21 04:39 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-10-12 21:31 - 2013-09-04 14:12 - 00343040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2013-10-12 21:31 - 2013-09-04 14:11 - 00325120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2013-10-12 21:31 - 2013-09-04 14:11 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2013-10-12 21:31 - 2013-09-04 14:11 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2013-10-12 21:31 - 2013-09-04 14:11 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2013-10-12 21:31 - 2013-09-04 14:11 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2013-10-12 21:31 - 2013-09-04 14:11 - 00007808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2013-10-12 21:17 - 2013-10-12 21:24 - 00000000 ____D C:\Windows\system32\MRT
2013-10-12 18:53 - 2013-07-09 07:52 - 00224256 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2013-10-12 18:53 - 2013-07-09 07:46 - 01472512 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2013-10-12 18:53 - 2013-07-09 07:46 - 00184320 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2013-10-12 18:53 - 2013-07-09 07:46 - 00139776 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2013-10-12 18:53 - 2013-07-09 06:52 - 00175104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2013-10-12 18:53 - 2013-07-09 06:46 - 01166848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2013-10-12 18:53 - 2013-07-09 06:46 - 00140288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2013-10-12 18:53 - 2013-07-09 06:46 - 00103936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2013-10-12 18:53 - 2013-07-04 14:50 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2013-10-12 18:53 - 2013-07-04 13:50 - 00530432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comctl32.dll
2013-10-12 18:53 - 2013-02-27 08:02 - 00111448 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2013-10-12 18:53 - 2013-02-27 07:48 - 01930752 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2013-10-12 18:53 - 2013-02-27 07:47 - 00070144 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll
2013-10-12 18:53 - 2013-02-27 06:49 - 01796096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2013-10-12 18:52 - 2013-07-19 03:58 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2013-10-12 18:52 - 2013-07-19 03:41 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2013-10-12 18:52 - 2013-06-06 07:50 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2013-10-12 18:52 - 2013-06-06 07:49 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2013-10-12 18:52 - 2013-06-06 07:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2013-10-12 18:52 - 2013-06-06 07:47 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2013-10-12 18:52 - 2013-06-06 06:57 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2013-10-12 18:52 - 2013-06-06 06:51 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2013-10-12 18:52 - 2013-06-06 06:50 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2013-10-12 18:52 - 2013-06-06 05:30 - 00368128 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2013-10-12 18:52 - 2013-06-06 05:01 - 00295424 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2013-10-12 18:51 - 2013-08-28 03:21 - 03155968 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2013-10-12 18:51 - 2013-08-02 04:23 - 05550528 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2013-10-12 18:51 - 2013-08-02 04:15 - 01732032 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2013-10-12 18:51 - 2013-08-02 04:15 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2013-10-12 18:51 - 2013-08-02 04:15 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2013-10-12 18:51 - 2013-08-02 04:15 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2013-10-12 18:51 - 2013-08-02 04:14 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2013-10-12 18:51 - 2013-08-02 04:14 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2013-10-12 18:51 - 2013-08-02 04:13 - 01161216 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2013-10-12 18:51 - 2013-08-02 04:13 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2013-10-12 18:51 - 2013-08-02 04:12 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2013-10-12 18:51 - 2013-08-02 04:12 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2013-10-12 18:51 - 2013-08-02 04:12 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2013-10-12 18:51 - 2013-08-02 04:12 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2013-10-12 18:51 - 2013-08-02 04:12 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2013-10-12 18:51 - 2013-08-02 04:12 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2013-10-12 18:51 - 2013-08-02 04:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2013-10-12 18:51 - 2013-08-02 04:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2013-10-12 18:51 - 2013-08-02 04:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2013-10-12 18:51 - 2013-08-02 04:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2013-10-12 18:51 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-10-12 18:51 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2013-10-12 18:51 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2013-10-12 18:51 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2013-10-12 18:51 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2013-10-12 18:51 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2013-10-12 18:51 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2013-10-12 18:51 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2013-10-12 18:51 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2013-10-12 18:51 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2013-10-12 18:51 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2013-10-12 18:51 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2013-10-12 18:51 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2013-10-12 18:51 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2013-10-12 18:51 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2013-10-12 18:51 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2013-10-12 18:51 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2013-10-12 18:51 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2013-10-12 18:51 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2013-10-12 18:51 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2013-10-12 18:51 - 2013-08-02 03:59 - 03968960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2013-10-12 18:51 - 2013-08-02 03:59 - 03913664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2013-10-12 18:51 - 2013-08-02 03:51 - 01292192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2013-10-12 18:51 - 2013-08-02 03:50 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2013-10-12 18:51 - 2013-08-02 03:50 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2013-10-12 18:51 - 2013-08-02 03:50 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2013-10-12 18:51 - 2013-08-02 03:48 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2013-10-12 18:51 - 2013-08-02 03:48 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2013-10-12 18:51 - 2013-08-02 03:48 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2013-10-12 18:51 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2013-10-12 18:51 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2013-10-12 18:51 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2013-10-12 18:51 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2013-10-12 18:51 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2013-10-12 18:51 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2013-10-12 18:51 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2013-10-12 18:51 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2013-10-12 18:51 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2013-10-12 18:51 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2013-10-12 18:51 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2013-10-12 18:51 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2013-10-12 18:51 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-10-12 18:51 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2013-10-12 18:51 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2013-10-12 18:51 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2013-10-12 18:51 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2013-10-12 18:51 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2013-10-12 18:51 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2013-10-12 18:51 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2013-10-12 18:51 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2013-10-12 18:51 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2013-10-12 18:51 - 2013-08-02 03:09 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2013-10-12 18:51 - 2013-08-02 02:59 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2013-10-12 18:51 - 2013-08-02 02:45 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2013-10-12 18:51 - 2013-08-02 02:45 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2013-10-12 18:51 - 2013-08-02 02:45 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2013-10-12 18:51 - 2013-08-02 02:45 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2013-10-12 18:51 - 2013-08-02 02:43 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2013-10-12 18:51 - 2013-08-02 02:43 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2013-10-12 18:51 - 2013-08-02 02:43 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2013-10-12 18:51 - 2013-08-02 02:43 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2013-10-12 18:51 - 2013-07-26 04:24 - 14172672 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2013-10-12 18:51 - 2013-07-25 11:25 - 01888768 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2013-10-12 18:51 - 2013-07-25 10:57 - 01620992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL
2013-10-12 18:51 - 2013-07-12 12:41 - 00185344 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbvideo.sys
2013-10-12 18:51 - 2013-07-12 12:41 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbcir.sys
2013-10-12 18:51 - 2013-07-12 12:40 - 00109824 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBAUDIO.sys
2013-10-12 18:51 - 2013-07-09 07:51 - 01217024 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2013-10-12 18:51 - 2013-07-09 06:52 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2013-10-12 18:51 - 2013-07-03 06:05 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
2013-10-12 18:51 - 2013-07-03 06:05 - 00032896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys
2013-10-12 18:51 - 2013-06-26 00:55 - 00785624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2013-10-12 18:51 - 2013-06-15 06:32 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
2013-10-12 18:51 - 2013-06-06 05:01 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2013-10-12 18:51 - 2013-06-04 08:00 - 00624128 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2013-10-12 18:51 - 2013-06-04 06:53 - 00509440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll
2013-10-12 18:50 - 2013-07-26 04:24 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\shdocvw.dll
2013-10-12 18:50 - 2013-07-26 03:55 - 12872704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2013-10-12 18:50 - 2013-07-26 03:55 - 00180224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shdocvw.dll
2013-10-12 18:50 - 2013-07-20 12:33 - 00124112 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2013-10-12 18:50 - 2013-07-20 12:33 - 00102608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2013-10-12 18:50 - 2013-07-06 08:03 - 01910208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2013-10-12 18:50 - 2013-05-13 07:50 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\certenc.dll
2013-10-12 18:50 - 2013-05-13 05:43 - 01192448 _____ (Microsoft Corporation) C:\Windows\system32\certutil.exe
2013-10-12 18:50 - 2013-05-13 05:08 - 00903168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certutil.exe
2013-10-12 18:50 - 2013-05-13 05:08 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certenc.dll
2013-10-12 18:50 - 2013-04-26 07:51 - 00751104 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
2013-10-12 18:50 - 2013-04-26 06:55 - 00492544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32spl.dll
2013-10-12 18:49 - 2013-08-01 14:09 - 00983488 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2013-10-12 18:49 - 2013-04-10 08:01 - 00265064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2013-10-12 18:49 - 2011-02-03 13:25 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2013-10-12 18:46 - 2013-10-12 18:46 - 00009309 _____ C:\Users\Manh hao\Downloads\test.rar
2013-10-12 18:43 - 2013-04-10 01:34 - 01247744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2013-10-12 18:43 - 2013-04-03 00:51 - 01643520 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2013-10-12 18:35 - 2013-10-12 18:37 - 30738633 _____ C:\Users\Manh hao\Downloads\1348396423_GTAIVPlanePack.rar
2013-10-12 09:55 - 2013-10-12 09:55 - 00001803 _____ C:\Users\Manh hao\Desktop\LaunchGTAIV - Verknüpfung.lnk
2013-10-11 10:04 - 2013-10-11 10:04 - 02220366 _____ C:\Users\Manh hao\AppData\Local\omesuperv.exe
2013-10-08 18:17 - 2013-10-08 18:17 - 00000000 ____D C:\Users\Manh hao\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BitGuard
2013-10-08 17:31 - 2013-10-08 17:31 - 00248860 _____ C:\Users\Manh hao\Downloads\HandlingChanger_v2.zip
2013-10-08 17:30 - 2013-10-08 17:30 - 00613129 _____ C:\Users\Manh hao\Downloads\1.zip
2013-10-08 17:28 - 2013-10-08 17:28 - 00058183 _____ C:\Users\Manh hao\Downloads\sobeit-file-modding.zip
2013-10-08 17:27 - 2013-10-08 17:27 - 00006924 _____ C:\Users\Manh hao\Downloads\files.txt
2013-10-08 17:27 - 2013-10-08 17:27 - 00003295 _____ C:\Users\Manh hao\Downloads\magicpatcher.zip
2013-10-08 17:25 - 2013-10-08 17:25 - 00022981 _____ C:\Users\Manh hao\Downloads\GTAIVModdingUnlockerGamerX5500.zip
2013-10-08 05:32 - 2013-10-08 05:32 - 01394176 _____ C:\Users\Papa\Downloads\Siegen-Kurzexpose.ppt
2013-10-07 22:10 - 2013-10-25 14:39 - 00000000 ____D C:\Users\Papa\Documents\Youcam
2013-10-07 22:09 - 2013-10-07 22:09 - 00000000 ____D C:\Users\Papa\AppData\Local\CyberLink
2013-10-07 17:46 - 2010-06-02 00:29 - 00783931 _____ C:\Users\Manh hao\Desktop\SparkIV EFLC 0.6.6.zip
2013-10-07 17:46 - 2010-05-28 07:34 - 00001602 _____ C:\Users\Manh hao\Desktop\Readme.txt
2013-10-07 17:46 - 2010-05-28 07:32 - 00187392 _____ (Aru) C:\Users\Manh hao\Desktop\SparkIV.exe
2013-10-07 17:46 - 2010-05-28 07:32 - 00151040 _____ C:\Users\Manh hao\Desktop\SparkIV.pdb
2013-10-07 17:46 - 2010-05-28 07:32 - 00014848 _____ (Microsoft Corporation) C:\Users\Manh hao\Desktop\SparkIV.vshost.exe
2013-10-07 17:46 - 2010-04-16 18:16 - 00001344 _____ C:\Users\Manh hao\Desktop\SparkIV.Config.xml
2013-10-07 17:45 - 2013-10-07 17:45 - 01540953 _____ C:\Users\Manh hao\Downloads\SparkIV 0.6.6 (1).zip
2013-10-07 17:45 - 2013-10-07 17:45 - 01540953 _____ C:\Users\Manh hao\Desktop\SparkIV 0.6.6 (1).zip
2013-10-06 17:33 - 2013-10-06 17:33 - 00000000 ____D C:\Users\Public\Documents\CyberLink
2013-10-06 14:19 - 2013-10-06 14:19 - 02816072 _____ (LionSea SoftWare ) C:\Users\Manh hao\Downloads\setup.exe
2013-10-06 14:16 - 2013-10-06 14:16 - 01109896 _____ (Sony Corporation ) C:\Users\Manh hao\Downloads\RIDCAM-01158806-UN.exe
2013-10-06 14:16 - 2013-10-06 14:16 - 00001308 _____ C:\Windows\DPINST.LOG
2013-10-06 14:13 - 2013-10-06 14:13 - 00947767 _____ (DriverIdentifier ) C:\Users\Manh hao\Downloads\driveridentifier_setup.exe
2013-10-06 14:03 - 2013-10-06 14:03 - 00000000 ____D C:\Users\Manh hao\Documents\Avatar
2013-10-06 14:03 - 2013-10-06 14:03 - 00000000 ____D C:\Users\Manh hao\AppData\Roaming\CyberLink
2013-10-06 14:02 - 2013-10-26 09:43 - 00000000 ____D C:\Users\Manh hao\Documents\Youcam
2013-10-06 14:02 - 2013-10-21 09:57 - 00000000 ____D C:\ProgramData\CyberLink
2013-10-06 14:02 - 2013-10-06 14:02 - 00000000 ____D C:\Users\Manh hao\AppData\Local\CyberLink
2013-10-06 14:01 - 2013-10-06 14:01 - 00001359 _____ C:\Users\Public\Desktop\CyberLink YouCam 5.lnk
2013-10-06 14:01 - 2011-04-14 05:47 - 00031216 _____ (CyberLink Corporation) C:\Windows\system32\Drivers\clwvd.sys
2013-10-06 13:59 - 2013-10-06 14:01 - 00000000 ____D C:\Program Files (x86)\CyberLink
2013-10-06 13:57 - 2013-10-06 13:57 - 00000000 ____D C:\ProgramData\install_clap
2013-10-06 13:50 - 2013-10-06 13:55 - 17216854 _____ C:\Users\Manh hao\Downloads\CyberLink-Youcam-crack-ful-serial-Keys.rar
2013-10-06 13:48 - 2013-10-06 13:49 - 00000000 ____D C:\Users\Manh hao\Downloads\CyberLink YouCam 5 Deluxe v5.0.1129 [ADHDerby]
2013-10-06 09:59 - 2013-10-06 09:59 - 00003356 _____ C:\Users\Papa\Downloads\Sascha_Schuetz.vcf
2013-10-06 09:59 - 2013-10-06 09:59 - 00003001 _____ C:\Users\Papa\Downloads\Gabor_Fejer (1).vcf
2013-10-06 09:58 - 2013-10-06 09:58 - 00003588 _____ C:\Users\Papa\Downloads\Michael_Hofstetter.vcf
2013-10-06 09:58 - 2013-10-06 09:58 - 00003001 _____ C:\Users\Papa\Downloads\Gabor_Fejer.vcf
2013-10-05 21:18 - 2013-10-05 21:18 - 01540953 _____ C:\Users\Manh hao\Downloads\SparkIV 0.6.6.zip
2013-10-05 21:17 - 2013-10-05 21:17 - 00117057 _____ C:\Users\Manh hao\Downloads\1376727517_Thug Life Clothing.rar
2013-10-05 20:06 - 2013-10-05 20:06 - 01818624 _____ C:\Users\Manh hao\Downloads\update.img
2013-10-05 19:59 - 2013-10-05 20:00 - 16048132 _____ C:\Users\Selina\Downloads\Gta 5 Downloader.rar
2013-10-05 19:58 - 2013-10-05 19:59 - 16682251 _____ C:\Users\Selina\Downloads\XBOX 360 Emulator for PC & GTA5.zip
2013-10-05 11:25 - 2013-10-05 11:23 - 02153194 _____ C:\Users\Manh hao\Desktop\minecraftforge-installer-1.6.2-9.10.0.799.jar
2013-10-05 11:23 - 2013-10-05 11:23 - 02153194 _____ C:\Users\Manh hao\Downloads\minecraftforge-installer-1.6.2-9.10.0.799.jar
2013-10-05 11:22 - 2013-10-05 11:26 - 84734859 _____ C:\Users\Manh hao\Downloads\Pixelmon 2.3.1 install.zip
2013-10-05 10:29 - 2013-10-05 10:29 - 00000000 ____D C:\Users\Manh hao\AppData\Local\LogMeIn
2013-10-04 18:02 - 2013-10-04 18:02 - 00000000 ____D C:\Users\Selina\Desktop\Minecraft Bukkit Server 1.6.4
2013-10-04 17:59 - 2013-10-04 18:01 - 61749197 _____ C:\Users\Selina\Desktop\Minecraft Bukkit Server 1.6.4.zip
2013-10-04 14:49 - 2013-10-04 14:49 - 00000000 ____D C:\Users\Selina\AppData\Local\LogMeIn
2013-10-03 22:45 - 2013-10-03 22:45 - 01394688 _____ C:\Users\Papa\Downloads\120911-Olpe-Kurzexpose-Nagelstudio.ppt
2013-10-03 04:09 - 2013-10-03 04:09 - 00000000 ____D C:\Users\Papa\AppData\Local\LogMeIn
2013-10-03 04:09 - 2013-10-03 04:09 - 00000000 ____D C:\ProgramData\LogMeIn
2013-10-02 22:45 - 2013-10-02 22:45 - 00000000 ____D C:\Program Files (x86)\LogMeIn Hamachi
2013-10-02 20:02 - 2013-10-02 20:02 - 536870912 _____ C:\Users\Papa\Downloads\pkms2.nds
2013-09-28 16:45 - 2013-09-28 16:45 - 00004121 _____ C:\Users\Selina\Downloads\mccapes_extra_164a_20130921_1116.zip
2013-09-28 09:38 - 2013-09-28 09:38 - 00004121 _____ C:\Users\Manh hao\Downloads\mccapes_extra_164a_20130921_1116 (1).zip
2013-09-28 09:36 - 2013-09-28 09:36 - 00004121 _____ C:\Users\Manh hao\Downloads\mccapes_extra_164a_20130921_1116.zip
2013-09-27 19:31 - 2013-09-27 19:31 - 00000000 ____D C:\Users\Public\Documents\CrashDump
2013-09-27 19:26 - 2013-09-27 19:26 - 00000000 ____D C:\Users\Selina\Documents\samsung
2013-09-27 19:26 - 2013-09-27 19:26 - 00000000 ____D C:\Users\Selina\AppData\Roaming\Samsung
2013-09-27 19:26 - 2013-09-27 19:26 - 00000000 ____D C:\Users\Selina\AppData\Local\Samsung
2013-09-27 17:24 - 2013-09-27 17:24 - 00000000 _____ C:\Windows\SysWOW64\config.nt
2013-09-27 17:24 - 2013-08-30 09:47 - 00287840 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2013-09-27 17:22 - 2013-09-27 17:22 - 00000000 ____D C:\Program Files\AVAST Software
2013-09-27 17:21 - 2013-09-28 16:29 - 00000000 ____D C:\ProgramData\AVAST Software
2013-09-27 17:11 - 2013-09-27 17:16 - 131918888 _____ C:\Users\Manh hao\Downloads\avast_free_antivirus_setup_8.0.1497.376.exe
2013-09-27 17:02 - 2013-10-26 12:32 - 00000000 ____D C:\ProgramData\SeAirch-eNewTabe
2013-09-27 17:02 - 2013-10-26 12:32 - 00000000 ____D C:\ProgramData\Douwnload kEiEpeer
2013-09-27 17:02 - 2013-09-27 17:02 - 00000000 ____D C:\ProgramData\SummerSoft
2013-09-27 17:00 - 2013-10-21 10:11 - 00000000 ____D C:\ProgramData\InstallMate
2013-09-27 17:00 - 2013-09-27 17:00 - 00309200 _____ (SummerSoft) C:\Users\Manh hao\Downloads\Grand Theft Auto V PC Game [Full Beta GTA 5].exe
2013-09-27 17:00 - 2013-09-27 17:00 - 00309200 _____ (SummerSoft) C:\Users\Manh hao\Downloads\Grand Theft Auto V PC Game [Full Beta GTA 5] (1).exe
2013-09-27 17:00 - 2013-09-27 17:00 - 00093442 _____ C:\Users\Manh hao\Downloads\GTAV-Downloader.rar
2013-09-26 18:01 - 2013-09-26 18:02 - 00000000 ____D C:\Users\Papa\AppData\Local\Smartbar
2013-09-26 17:56 - 2013-09-26 18:01 - 00000000 ____D C:\Users\Papa\AppData\Local\DownloadGuide
2013-09-26 17:55 - 2013-09-26 17:55 - 00000000 ____D C:\Users\Papa\AppData\Local\Software Updater
==================== One Month Modified Files and Folders =======
2013-10-26 12:41 - 2009-07-14 06:45 - 00021648 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-10-26 12:41 - 2009-07-14 06:45 - 00021648 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-10-26 12:40 - 2013-10-26 12:40 - 00000000 ____D C:\FRST
2013-10-26 12:40 - 2013-02-08 20:35 - 00001114 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-10-26 12:39 - 2013-10-26 12:39 - 01956086 _____ (Farbar) C:\Users\Manh hao\Desktop\FRST64.exe
2013-10-26 12:39 - 2013-02-16 14:48 - 00000000 ____D C:\Users\Manh hao\AppData\Roaming\uTorrent
2013-10-26 12:37 - 2013-04-20 12:18 - 00004190 _____ C:\Windows\System32\Tasks\Software Updater Ui
2013-10-26 12:36 - 2013-10-14 22:04 - 00003120 _____ C:\Windows\System32\Tasks\Advanced System Protector_startup
2013-10-26 12:36 - 2013-04-20 12:17 - 00004208 _____ C:\Windows\System32\Tasks\Software Updater
2013-10-26 12:33 - 2013-02-16 12:52 - 00000000 ____D C:\Users\Manh hao\AppData\Local\LogMeIn Hamachi
2013-10-26 12:33 - 2013-02-08 20:35 - 00001110 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-10-26 12:32 - 2013-09-27 17:02 - 00000000 ____D C:\ProgramData\SeAirch-eNewTabe
2013-10-26 12:32 - 2013-09-27 17:02 - 00000000 ____D C:\ProgramData\Douwnload kEiEpeer
2013-10-26 12:32 - 2010-11-21 05:47 - 00028286 _____ C:\Windows\PFRO.log
2013-10-26 12:32 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-10-26 12:32 - 2009-07-14 06:51 - 00016593 _____ C:\Windows\setupact.log
2013-10-26 11:26 - 2013-06-22 11:04 - 00000390 _____ C:\Windows\Tasks\update-S-1-5-21-2823766941-1517505164-3398274235-1005.job
2013-10-26 11:08 - 2013-04-02 20:53 - 00000000 ____D C:\Users\Manh hao\AppData\Roaming\Skype
2013-10-26 10:44 - 2013-04-20 12:18 - 00000000 ____D C:\Program Files (x86)\Protected Search
2013-10-26 10:43 - 2013-10-26 10:40 - 00000088 _____ C:\Windows\SysWOW64\12877889519160193173.log
2013-10-26 10:40 - 2013-06-09 15:35 - 00000000 ____D C:\Users\Manh hao\AppData\Roaming\FBDownloader
2013-10-26 10:39 - 2013-06-22 11:03 - 00000394 _____ C:\Windows\Tasks\update-sys.job
2013-10-26 10:38 - 2013-07-06 10:33 - 00000932 _____ C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2823766941-1517505164-3398274235-1005UA.job
2013-10-26 10:38 - 2013-07-06 10:33 - 00000910 _____ C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2823766941-1517505164-3398274235-1005Core.job
2013-10-26 10:14 - 2013-10-26 10:14 - 00000000 ____D C:\Users\Manh hao\Documents\Optimizer Pro
2013-10-26 10:10 - 2013-10-26 10:10 - 02321335 _____ C:\Users\Manh hao\Downloads\MineCraft Cracker (2).zip
2013-10-26 10:10 - 2013-10-26 10:10 - 02321335 _____ C:\Users\Manh hao\Downloads\MineCraft Cracker (1).zip
2013-10-26 10:09 - 2013-10-26 10:09 - 00000000 ____D C:\Users\Manh hao\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AppsHat
2013-10-26 10:09 - 2013-10-26 10:09 - 00000000 ____D C:\Users\Manh hao\AppData\Local\WebPlayer
2013-10-26 10:09 - 2013-10-26 10:09 - 00000000 ____D C:\Users\Manh hao\AppData\Local\Minibar
2013-10-26 10:09 - 2013-10-26 10:09 - 00000000 ____D C:\Program Files (x86)\Minibar
2013-10-26 10:09 - 2013-02-06 18:28 - 00000000 ____D C:\Users\Manh hao
2013-10-26 10:08 - 2013-10-26 10:08 - 00003264 _____ C:\Windows\System32\Tasks\SomotoUpdateCheckerAutoStart
2013-10-26 10:08 - 2013-10-26 10:08 - 00000000 ____D C:\Users\Manh hao\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FilesFrog Update Checker
2013-10-26 10:08 - 2013-10-26 10:08 - 00000000 ____D C:\Users\Manh hao\AppData\Local\FilesFrog Update Checker
2013-10-26 10:07 - 2013-10-26 10:07 - 00167304 _____ () C:\Users\Manh hao\Downloads\7Zip-adJLNAZ.exe
2013-10-26 10:01 - 2013-10-26 09:58 - 00000000 ____D C:\Users\Manh hao\Documents\Neuer Ordner
2013-10-26 09:58 - 2013-10-26 09:58 - 00000099 _____ C:\Users\Manh hao\Downloads\MOL_Properties.properties
2013-10-26 09:58 - 2013-10-26 09:57 - 00473416 _____ C:\Users\Manh hao\Downloads\MC_Open_Launcher.jar
2013-10-26 09:48 - 2013-10-21 18:15 - 00000000 ____D C:\Users\Manh hao\AppData\Roaming\.minecraft
2013-10-26 09:47 - 2013-10-26 09:47 - 00251361 _____ C:\Users\Manh hao\Downloads\Mineshafter-launcher (2).jar
2013-10-26 09:43 - 2013-10-06 14:02 - 00000000 ____D C:\Users\Manh hao\Documents\Youcam
2013-10-25 15:01 - 2013-05-17 18:32 - 00000282 _____ C:\Windows\Tasks\RegClean Pro_DEFAULT.job
2013-10-25 14:46 - 2013-03-24 21:38 - 00000000 ____D C:\Users\Papa\AppData\Local\Adobe
2013-10-25 14:39 - 2013-10-07 22:10 - 00000000 ____D C:\Users\Papa\Documents\Youcam
2013-10-25 14:38 - 2013-07-31 22:59 - 00000000 ____D C:\Users\Papa\AppData\Roaming\data
2013-10-25 14:37 - 2013-03-02 21:07 - 00000000 ____D C:\Users\Papa\AppData\Local\LogMeIn Hamachi
2013-10-24 18:23 - 2013-02-06 18:00 - 01155516 _____ C:\Windows\WindowsUpdate.log
2013-10-24 13:03 - 2013-10-21 20:27 - 944711399 _____ C:\Users\Manh hao\Desktop\GTA+San+Andreas+by+TheSaazZzzz.zip
2013-10-24 11:35 - 2013-10-24 11:33 - 00000000 ____D C:\Users\Manh hao\Desktop\Minecraft BUKKIT Server! - by MinecraftBukkit
2013-10-24 11:32 - 2013-10-24 11:31 - 17802634 _____ C:\Users\Manh hao\Downloads\Minecraft BUKKIT Server! - by MinecraftBukkit.rar
2013-10-24 11:30 - 2013-10-24 11:29 - 21075419 _____ C:\Users\Manh hao\Downloads\FutureSpawnPoint-Scb v.1.2.2.zip
2013-10-24 11:27 - 2013-10-24 11:28 - 05840896 _____ C:\Users\Manh hao\Desktop\Hamachi220.msi
2013-10-24 11:27 - 2013-10-24 11:27 - 05840896 _____ C:\Users\Manh hao\Downloads\Hamachi220.msi
2013-10-23 21:24 - 2013-04-13 17:29 - 00000000 ____D C:\Users\Manh hao\Desktop\Gta IV
2013-10-23 18:32 - 2013-05-17 18:32 - 00000290 _____ C:\Windows\Tasks\RegClean Pro_UPDATES.job
2013-10-23 18:28 - 2013-10-23 18:27 - 06542715 _____ C:\Users\Manh hao\Downloads\minecraft_server.1.6.4.exe
2013-10-23 14:43 - 2013-03-21 19:41 - 00000000 ____D C:\Users\Papa\AppData\Local\DoNotTrackPlus
2013-10-22 22:39 - 2013-04-23 16:41 - 00000000 ____D C:\Users\Papa\AppData\Local\Mozilla
2013-10-22 22:21 - 2013-10-22 22:21 - 00319736 _____ C:\Users\Papa\Downloads\Setup.exe
2013-10-22 22:01 - 2013-10-22 21:51 - 92587046 _____ C:\Users\Papa\Desktop\Bilder.zip
2013-10-22 22:00 - 2013-10-22 21:50 - 00000000 ____D C:\Users\Papa\Desktop\Bilder
2013-10-22 21:57 - 2013-10-22 21:57 - 00000000 ____D C:\Users\Papa\AppData\Roaming\iFunbox_UserCache
2013-10-22 20:50 - 2013-08-30 13:59 - 00000000 ____D C:\ProgramData\IObit
2013-10-22 20:48 - 2013-10-22 20:48 - 00000000 ____D C:\Users\Selina\Documents\Youcam
2013-10-22 20:48 - 2013-10-22 20:48 - 00000000 ____D C:\Users\Selina\AppData\Local\CyberLink
2013-10-22 20:47 - 2013-07-06 11:18 - 00000000 ____D C:\Users\Selina\Tracing
2013-10-22 20:46 - 2013-06-08 08:48 - 00000000 ____D C:\Users\Selina\AppData\Local\Adobe
2013-10-22 20:46 - 2013-03-02 21:04 - 00000000 ____D C:\Users\Selina\AppData\Local\LogMeIn Hamachi
2013-10-22 09:22 - 2013-10-21 17:40 - 00007453 _____ C:\Users\Manh hao\Desktop\WDI_0.9_Log.log
2013-10-21 22:15 - 2013-10-21 22:15 - 00002305 _____ C:\Users\Papa\Desktop\Chrome-App-Übersicht.lnk
2013-10-21 22:15 - 2013-10-21 22:15 - 00000000 ____D C:\Users\Papa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome
2013-10-21 18:19 - 2013-10-21 18:19 - 00421267 _____ C:\Users\Manh hao\Downloads\OptiFine 1.6.4.jar
2013-10-21 18:19 - 2013-10-21 18:19 - 00421267 _____ C:\Users\Manh hao\Desktop\OptiFine 1.6.4.jar
2013-10-21 18:15 - 2013-10-21 18:15 - 00251361 _____ C:\Users\Manh hao\Downloads\Mineshafter-launcher (1).jar
2013-10-21 18:05 - 2013-10-21 18:05 - 57190400 _____ C:\Users\Manh hao\Downloads\Nicht bestätigt 135859.crdownload
2013-10-21 17:40 - 2013-10-21 17:40 - 00003144 _____ C:\Windows\System32\Tasks\{7D26D12B-2002-4532-B085-E1E262033DFF}
2013-10-21 17:38 - 2013-10-21 17:39 - 15914540 _____ (Montoyo Systems, vInc.) C:\Users\Manh hao\Desktop\WDI_0.9.exe
2013-10-21 17:38 - 2013-10-21 17:38 - 02204394 _____ C:\Users\Manh hao\Downloads\minecraftforge-installer-1.6.4-9.11.0.883.jar
2013-10-21 17:38 - 2013-10-21 17:38 - 02204394 _____ C:\Users\Manh hao\Desktop\minecraftforge-installer-1.6.4-9.11.0.883.jar
2013-10-21 17:38 - 2013-10-21 17:37 - 15914540 _____ (Montoyo Systems, vInc.) C:\Users\Manh hao\Downloads\WDI_0.9.exe
2013-10-21 11:49 - 2013-03-02 21:04 - 00065072 _____ C:\Users\Selina\AppData\Local\GDIPFONTCACHEV1.DAT
2013-10-21 10:55 - 2013-10-21 10:09 - 268542572 _____ C:\Users\Manh hao\Downloads\Pokemon.Y.3DS-CONTRAST.part4.rar
2013-10-21 10:11 - 2013-09-27 17:00 - 00000000 ____D C:\ProgramData\InstallMate
2013-10-21 09:57 - 2013-10-06 14:02 - 00000000 ____D C:\ProgramData\CyberLink
2013-10-21 09:36 - 2013-10-21 09:06 - 00000000 ____D C:\Users\Manh hao\Desktop\desmume-0.9.9-win64
2013-10-21 09:30 - 2013-10-21 09:30 - 00000000 ____D C:\Users\Manh hao\AppData\Local\Cool_Mirage
2013-10-21 09:29 - 2013-10-21 09:29 - 00000000 ____D C:\Program Files (x86)\qualitink
2013-10-21 09:29 - 2013-10-21 09:27 - 65328340 _____ C:\Users\Manh hao\Downloads\Pokemon.Y.3DS-CONTRAST.7z.crdownload
2013-10-21 09:28 - 2013-10-21 09:28 - 00000000 ____D C:\Users\Manh hao\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\1clickmoviedownloader.com
2013-10-21 09:27 - 2013-10-21 09:27 - 00299280 _____ C:\Users\Manh hao\Downloads\3DS0451.part3.exe
2013-10-21 09:13 - 2013-10-21 09:13 - 00167304 _____ () C:\Users\Manh hao\Downloads\7ZipSetup-9wlIA2X.exe
2013-10-21 09:05 - 2013-10-21 09:04 - 01691723 _____ C:\Users\Manh hao\Downloads\desmume-0.9.9-win64.zip
2013-10-19 23:02 - 2013-10-19 23:02 - 00000000 ____D C:\Users\Papa\AppData\Roaming\OpenOffice
2013-10-19 22:59 - 2013-03-02 21:07 - 00065072 _____ C:\Users\Papa\AppData\Local\GDIPFONTCACHEV1.DAT
2013-10-19 22:13 - 2013-10-19 22:08 - 114264027 _____ C:\Users\Manh hao\Downloads\Pokemon+X+++3DS+Emu.rar
2013-10-19 21:48 - 2013-10-19 10:00 - 00012333 _____ C:\Users\Manh hao\Desktop\Steckbrief von Manh hao1.odt
2013-10-19 19:57 - 2013-10-19 19:57 - 05250247 _____ C:\Users\Manh hao\Downloads\Pokemon FireRed.zip
2013-10-19 19:57 - 2013-10-19 19:55 - 00000000 ____D C:\Users\Manh hao\Desktop\PokeMMO-Client
2013-10-19 19:54 - 2013-10-19 19:54 - 09775413 _____ C:\Users\Manh hao\Downloads\PokeMMO-Client.zip
2013-10-19 18:35 - 2013-10-19 18:35 - 00003584 _____ C:\Users\Manh hao\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2013-10-19 18:35 - 2013-10-19 18:35 - 00000000 ____D C:\Users\Manh hao\AppData\Roaming\Solveig Multimedia
2013-10-19 18:15 - 2013-10-19 18:15 - 00000000 ____D C:\Users\Manh hao\Documents\HyperCam3
2013-10-19 18:14 - 2013-10-19 18:14 - 00000068 _____ C:\Users\Manh hao\Downloads\SMM_HyperCam.hc3lic
2013-10-19 18:11 - 2013-10-19 18:11 - 00000000 ____D C:\Users\Manh hao\AppData\Roaming\HyperCam
2013-10-19 18:08 - 2013-03-16 19:46 - 00000000 ____D C:\Users\Manh hao\AppData\Local\Windows Live
2013-10-19 18:06 - 2013-05-24 19:26 - 00000000 ____D C:\Users\Manh hao\AppData\Local\Adobe
2013-10-19 18:04 - 2013-02-08 20:34 - 00065072 _____ C:\Users\Manh hao\AppData\Local\GDIPFONTCACHEV1.DAT
2013-10-19 18:03 - 2009-07-14 06:45 - 00298984 _____ C:\Windows\system32\FNTCACHE.DAT
2013-10-19 09:49 - 2013-10-19 09:49 - 00001116 _____ C:\Users\Public\Desktop\OpenOffice 4.0.1.lnk
2013-10-19 09:49 - 2013-10-19 09:49 - 00000000 ____D C:\Users\Manh hao\AppData\Roaming\OpenOffice
2013-10-19 09:47 - 2013-10-19 09:47 - 00000000 ____D C:\Program Files (x86)\OpenOffice 4
2013-10-19 09:32 - 2013-10-19 09:32 - 00010476 _____ C:\Users\Manh hao\Downloads\Steckbrief von Manh Hao1.odt
2013-10-19 09:28 - 2013-10-19 09:28 - 00614816 _____ C:\Users\Manh hao\Downloads\OpenOffice - CHIP-Downloader.exe
2013-10-18 20:19 - 2013-03-02 21:03 - 00000000 ___RD C:\Users\Selina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-10-18 20:19 - 2013-03-02 21:03 - 00000000 ___RD C:\Users\Selina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2013-10-18 17:10 - 2013-10-18 17:10 - 00001569 _____ C:\Users\Manh hao\Desktop\Pokémon Trading Card Game Online.lnk
2013-10-18 17:10 - 2013-10-18 17:07 - 00000000 ____D C:\Users\Manh hao\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pokémon Trading Card Game Online
2013-10-18 17:07 - 2013-10-18 17:07 - 00000000 ____D C:\Users\Manh hao\AppData\Roaming\Pokémon Trading Card Game Online
2013-10-18 16:56 - 2013-10-18 16:46 - 264747520 _____ C:\Users\Manh hao\Downloads\PokemonInstaller.msi
2013-10-18 16:38 - 2013-04-23 16:31 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-10-18 15:11 - 2013-10-18 15:11 - 01251840 _____ C:\Users\Manh hao\Downloads\Minecraft Gift Code Generator 2013.exe
2013-10-18 15:11 - 2013-10-18 15:10 - 10501695 _____ C:\Users\Manh hao\Downloads\GTA 5 Free Download (June 2013).rar
2013-10-18 15:05 - 2013-04-23 16:31 - 00000000 ____D C:\Users\Manh hao\AppData\Local\Mozilla
2013-10-18 15:04 - 2013-10-18 15:04 - 02935637 _____ C:\Users\Manh hao\Downloads\GTA5Generator.rar
2013-10-18 15:01 - 2013-10-18 15:00 - 05180936 _____ C:\Users\Manh hao\Downloads\PS3 Emulator 1.9.4.rar
2013-10-18 14:59 - 2013-05-31 17:41 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-10-18 14:58 - 2013-06-09 15:35 - 00000000 ____D C:\Users\Manh hao\AppData\Roaming\Intermediate
2013-10-18 14:57 - 2013-10-18 14:57 - 00000000 ____D C:\Users\Manh hao\AppData\Roaming\Snz
2013-10-18 14:57 - 2013-06-09 15:35 - 00000000 ____D C:\Users\Manh hao\AppData\Roaming\SCheck
2013-10-18 14:55 - 2013-02-06 18:29 - 00000000 ___RD C:\Users\Manh hao\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-10-18 14:55 - 2013-02-06 18:29 - 00000000 ___RD C:\Users\Manh hao\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2013-10-17 22:42 - 2013-08-31 21:58 - 00002183 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2013-10-17 22:38 - 2013-10-17 22:38 - 00000000 ____D C:\Program Files\McAfee Security Scan
2013-10-17 22:38 - 2013-03-10 18:13 - 00001931 _____ C:\Users\Public\Desktop\McAfee Security Scan Plus.lnk
2013-10-12 23:26 - 2013-03-03 00:37 - 00000000 ____D C:\Users\Papa\AppData\Local\Google
2013-10-12 23:23 - 2013-03-02 21:07 - 00000000 ___RD C:\Users\Papa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-10-12 23:23 - 2013-03-02 21:07 - 00000000 ___RD C:\Users\Papa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2013-10-12 23:18 - 2009-07-14 07:32 - 00000000 ____D C:\Program Files\Windows Defender
2013-10-12 23:18 - 2009-07-14 07:32 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2013-10-12 23:17 - 2011-04-12 09:55 - 00000000 ____D C:\Program Files\Windows Journal
2013-10-12 22:10 - 2013-05-12 19:33 - 01591234 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2013-10-12 22:10 - 2011-04-12 09:43 - 00697082 _____ C:\Windows\system32\perfh007.dat
2013-10-12 22:10 - 2011-04-12 09:43 - 00148346 _____ C:\Windows\system32\perfc007.dat
2013-10-12 22:10 - 2009-07-14 07:13 - 01591234 _____ C:\Windows\system32\PerfStringBackup.INI
2013-10-12 21:24 - 2013-10-12 21:17 - 00000000 ____D C:\Windows\system32\MRT
2013-10-12 18:59 - 2013-03-16 19:51 - 00166611 _____ C:\Windows\DirectX.log
2013-10-12 18:46 - 2013-10-12 18:46 - 00009309 _____ C:\Users\Manh hao\Downloads\test.rar
2013-10-12 18:37 - 2013-10-12 18:35 - 30738633 _____ C:\Users\Manh hao\Downloads\1348396423_GTAIVPlanePack.rar
2013-10-12 09:55 - 2013-10-12 09:55 - 00001803 _____ C:\Users\Manh hao\Desktop\LaunchGTAIV - Verknüpfung.lnk
2013-10-11 10:04 - 2013-10-11 10:04 - 02220366 _____ C:\Users\Manh hao\AppData\Local\omesuperv.exe
2013-10-10 21:52 - 2013-06-22 11:04 - 00003290 _____ C:\Windows\System32\Tasks\update-sys
2013-10-08 21:43 - 2013-09-13 16:56 - 00000000 ____D C:\ProgramData\BitGuard
2013-10-08 18:17 - 2013-10-08 18:17 - 00000000 ____D C:\Users\Manh hao\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BitGuard
2013-10-08 17:31 - 2013-10-08 17:31 - 00248860 _____ C:\Users\Manh hao\Downloads\HandlingChanger_v2.zip
2013-10-08 17:30 - 2013-10-08 17:30 - 00613129 _____ C:\Users\Manh hao\Downloads\1.zip
2013-10-08 17:28 - 2013-10-08 17:28 - 00058183 _____ C:\Users\Manh hao\Downloads\sobeit-file-modding.zip
2013-10-08 17:27 - 2013-10-08 17:27 - 00006924 _____ C:\Users\Manh hao\Downloads\files.txt
2013-10-08 17:27 - 2013-10-08 17:27 - 00003295 _____ C:\Users\Manh hao\Downloads\magicpatcher.zip
2013-10-08 17:25 - 2013-10-08 17:25 - 00022981 _____ C:\Users\Manh hao\Downloads\GTAIVModdingUnlockerGamerX5500.zip
2013-10-08 05:35 - 2013-02-08 20:35 - 00004110 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2013-10-08 05:35 - 2013-02-08 20:35 - 00003858 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2013-10-08 05:32 - 2013-10-08 05:32 - 01394176 _____ C:\Users\Papa\Downloads\Siegen-Kurzexpose.ppt
2013-10-07 22:09 - 2013-10-07 22:09 - 00000000 ____D C:\Users\Papa\AppData\Local\CyberLink
2013-10-07 17:45 - 2013-10-07 17:45 - 01540953 _____ C:\Users\Manh hao\Downloads\SparkIV 0.6.6 (1).zip
2013-10-07 17:45 - 2013-10-07 17:45 - 01540953 _____ C:\Users\Manh hao\Desktop\SparkIV 0.6.6 (1).zip
2013-10-06 17:33 - 2013-10-06 17:33 - 00000000 ____D C:\Users\Public\Documents\CyberLink
2013-10-06 14:19 - 2013-10-06 14:19 - 02816072 _____ (LionSea SoftWare ) C:\Users\Manh hao\Downloads\setup.exe
2013-10-06 14:16 - 2013-10-06 14:16 - 01109896 _____ (Sony Corporation ) C:\Users\Manh hao\Downloads\RIDCAM-01158806-UN.exe
2013-10-06 14:16 - 2013-10-06 14:16 - 00001308 _____ C:\Windows\DPINST.LOG
2013-10-06 14:13 - 2013-10-06 14:13 - 00947767 _____ (DriverIdentifier ) C:\Users\Manh hao\Downloads\driveridentifier_setup.exe
2013-10-06 14:03 - 2013-10-06 14:03 - 00000000 ____D C:\Users\Manh hao\Documents\Avatar
2013-10-06 14:03 - 2013-10-06 14:03 - 00000000 ____D C:\Users\Manh hao\AppData\Roaming\CyberLink
2013-10-06 14:02 - 2013-10-06 14:02 - 00000000 ____D C:\Users\Manh hao\AppData\Local\CyberLink
2013-10-06 14:01 - 2013-10-06 14:01 - 00001359 _____ C:\Users\Public\Desktop\CyberLink YouCam 5.lnk
2013-10-06 14:01 - 2013-10-06 13:59 - 00000000 ____D C:\Program Files (x86)\CyberLink
2013-10-06 13:57 - 2013-10-06 13:57 - 00000000 ____D C:\ProgramData\install_clap
2013-10-06 13:57 - 2013-02-08 20:27 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2013-10-06 13:55 - 2013-10-06 13:50 - 17216854 _____ C:\Users\Manh hao\Downloads\CyberLink-Youcam-crack-ful-serial-Keys.rar
2013-10-06 13:49 - 2013-10-06 13:48 - 00000000 ____D C:\Users\Manh hao\Downloads\CyberLink YouCam 5 Deluxe v5.0.1129 [ADHDerby]
2013-10-06 09:59 - 2013-10-06 09:59 - 00003356 _____ C:\Users\Papa\Downloads\Sascha_Schuetz.vcf
2013-10-06 09:59 - 2013-10-06 09:59 - 00003001 _____ C:\Users\Papa\Downloads\Gabor_Fejer (1).vcf
2013-10-06 09:58 - 2013-10-06 09:58 - 00003588 _____ C:\Users\Papa\Downloads\Michael_Hofstetter.vcf
2013-10-06 09:58 - 2013-10-06 09:58 - 00003001 _____ C:\Users\Papa\Downloads\Gabor_Fejer.vcf
2013-10-05 21:18 - 2013-10-05 21:18 - 01540953 _____ C:\Users\Manh hao\Downloads\SparkIV 0.6.6.zip
2013-10-05 21:17 - 2013-10-05 21:17 - 00117057 _____ C:\Users\Manh hao\Downloads\1376727517_Thug Life Clothing.rar
2013-10-05 20:07 - 2013-02-16 15:44 - 00000000 ____D C:\Users\Manh hao\AppData\Roaming\DAEMON Tools Lite
2013-10-05 20:06 - 2013-10-19 09:24 - 01818624 _____ C:\Users\Manh hao\Desktop\update - Kopie.img
2013-10-05 20:06 - 2013-10-05 20:06 - 01818624 _____ C:\Users\Manh hao\Downloads\update.img
2013-10-05 20:00 - 2013-10-05 19:59 - 16048132 _____ C:\Users\Selina\Downloads\Gta 5 Downloader.rar
2013-10-05 19:59 - 2013-10-05 19:58 - 16682251 _____ C:\Users\Selina\Downloads\XBOX 360 Emulator for PC & GTA5.zip
2013-10-05 11:26 - 2013-10-05 11:22 - 84734859 _____ C:\Users\Manh hao\Downloads\Pixelmon 2.3.1 install.zip
2013-10-05 11:23 - 2013-10-19 09:24 - 02153194 _____ C:\Users\Manh hao\Desktop\minecraftforge-installer-1.6.2-9.10.0.799 - Kopie.jar
2013-10-05 11:23 - 2013-10-05 11:25 - 02153194 _____ C:\Users\Manh hao\Desktop\minecraftforge-installer-1.6.2-9.10.0.799.jar
2013-10-05 11:23 - 2013-10-05 11:23 - 02153194 _____ C:\Users\Manh hao\Downloads\minecraftforge-installer-1.6.2-9.10.0.799.jar
2013-10-05 10:29 - 2013-10-05 10:29 - 00000000 ____D C:\Users\Manh hao\AppData\Local\LogMeIn
2013-10-04 18:54 - 2013-06-08 09:21 - 00000000 ____D C:\Users\Selina\AppData\Roaming\Skype
2013-10-04 18:49 - 2013-08-31 13:36 - 00000000 ____D C:\Users\Selina\AppData\Roaming\.minecraft
2013-10-04 18:02 - 2013-10-04 18:02 - 00000000 ____D C:\Users\Selina\Desktop\Minecraft Bukkit Server 1.6.4
2013-10-04 18:01 - 2013-10-04 17:59 - 61749197 _____ C:\Users\Selina\Desktop\Minecraft Bukkit Server 1.6.4.zip
2013-10-04 14:49 - 2013-10-04 14:49 - 00000000 ____D C:\Users\Selina\AppData\Local\LogMeIn
2013-10-03 22:45 - 2013-10-03 22:45 - 01394688 _____ C:\Users\Papa\Downloads\120911-Olpe-Kurzexpose-Nagelstudio.ppt
2013-10-03 04:09 - 2013-10-03 04:09 - 00000000 ____D C:\Users\Papa\AppData\Local\LogMeIn
2013-10-03 04:09 - 2013-10-03 04:09 - 00000000 ____D C:\ProgramData\LogMeIn
2013-10-02 22:46 - 2013-02-16 12:51 - 00000926 _____ C:\Users\Public\Desktop\LogMeIn Hamachi.lnk
2013-10-02 22:45 - 2013-10-02 22:45 - 00000000 ____D C:\Program Files (x86)\LogMeIn Hamachi
2013-10-02 20:31 - 2013-09-20 19:38 - 00000000 ____D C:\Users\Selina\AppData\Roaming\iFunbox_UserCache
2013-10-02 20:02 - 2013-10-02 20:02 - 536870912 _____ C:\Users\Papa\Downloads\pkms2.nds
2013-09-28 23:23 - 2013-03-02 21:07 - 00000000 ____D C:\Users\Papa\AppData\Local\VirtualStore
2013-09-28 18:32 - 2013-07-20 10:16 - 00352768 _____ C:\Users\Selina\Desktop\Minecraft.exe
2013-09-28 18:01 - 2013-06-22 20:08 - 00000000 ____D C:\Users\Selina\AppData\Roaming\TS3Client
2013-09-28 16:45 - 2013-09-28 16:45 - 00004121 _____ C:\Users\Selina\Downloads\mccapes_extra_164a_20130921_1116.zip
2013-09-28 16:29 - 2013-09-27 17:21 - 00000000 ____D C:\ProgramData\AVAST Software
2013-09-28 09:38 - 2013-09-28 09:38 - 00004121 _____ C:\Users\Manh hao\Downloads\mccapes_extra_164a_20130921_1116 (1).zip
2013-09-28 09:36 - 2013-09-28 09:36 - 00004121 _____ C:\Users\Manh hao\Downloads\mccapes_extra_164a_20130921_1116.zip
2013-09-28 09:12 - 2013-03-02 21:05 - 00000000 ____D C:\Users\Mama\AppData\Local\LogMeIn Hamachi
2013-09-27 19:54 - 2013-05-30 14:13 - 00000000 ____D C:\Users\Mama\AppData\Local\Adobe
2013-09-27 19:31 - 2013-09-27 19:31 - 00000000 ____D C:\Users\Public\Documents\CrashDump
2013-09-27 19:28 - 2013-03-02 21:16 - 00000000 ____D C:\Users\Selina\AppData\Local\DoNotTrackPlus
2013-09-27 19:26 - 2013-09-27 19:26 - 00000000 ____D C:\Users\Selina\Documents\samsung
2013-09-27 19:26 - 2013-09-27 19:26 - 00000000 ____D C:\Users\Selina\AppData\Roaming\Samsung
2013-09-27 19:26 - 2013-09-27 19:26 - 00000000 ____D C:\Users\Selina\AppData\Local\Samsung
2013-09-27 17:24 - 2013-09-27 17:24 - 00000000 _____ C:\Windows\SysWOW64\config.nt
2013-09-27 17:22 - 2013-09-27 17:22 - 00000000 ____D C:\Program Files\AVAST Software
2013-09-27 17:16 - 2013-09-27 17:11 - 131918888 _____ C:\Users\Manh hao\Downloads\avast_free_antivirus_setup_8.0.1497.376.exe
2013-09-27 17:02 - 2013-09-27 17:02 - 00000000 ____D C:\ProgramData\SummerSoft
2013-09-27 17:00 - 2013-09-27 17:00 - 00309200 _____ (SummerSoft) C:\Users\Manh hao\Downloads\Grand Theft Auto V PC Game [Full Beta GTA 5].exe
2013-09-27 17:00 - 2013-09-27 17:00 - 00309200 _____ (SummerSoft) C:\Users\Manh hao\Downloads\Grand Theft Auto V PC Game [Full Beta GTA 5] (1).exe
2013-09-27 17:00 - 2013-09-27 17:00 - 00093442 _____ C:\Users\Manh hao\Downloads\GTAV-Downloader.rar
2013-09-27 16:40 - 2013-04-02 20:53 - 00000000 ____D C:\ProgramData\Skype
2013-09-27 16:39 - 2013-04-02 20:53 - 00000000 ___RD C:\Program Files (x86)\Skype
2013-09-26 18:59 - 2013-04-20 12:16 - 00000000 ____D C:\ProgramData\Package Cache
2013-09-26 18:02 - 2013-09-26 18:01 - 00000000 ____D C:\Users\Papa\AppData\Local\Smartbar
2013-09-26 18:01 - 2013-09-26 17:56 - 00000000 ____D C:\Users\Papa\AppData\Local\DownloadGuide
2013-09-26 17:55 - 2013-09-26 17:55 - 00000000 ____D C:\Users\Papa\AppData\Local\Software Updater
2013-09-26 01:46 - 2013-02-08 21:41 - 80541720 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
Files to move or delete:
====================
C:\Users\Papa\dxtssmpj.exe
Some content of TEMP:
====================
C:\Users\Mama\AppData\Local\Temp\evoa2s1h.dll
C:\Users\Mama\AppData\Local\Temp\iwpyvtjskus.exe
C:\Users\Mama\AppData\Local\Temp\xiqrf1w1.dll
C:\Users\Manh hao\AppData\Local\Temp\10438uninstall.exe
C:\Users\Manh hao\AppData\Local\Temp\1372.exe
C:\Users\Manh hao\AppData\Local\Temp\67906.exe
C:\Users\Manh hao\AppData\Local\Temp\7kbnrc4w.dll
C:\Users\Manh hao\AppData\Local\Temp\7z920.exe
C:\Users\Manh hao\AppData\Local\Temp\appshat-distribution.exe
C:\Users\Manh hao\AppData\Local\Temp\BackupSetup.exe
C:\Users\Manh hao\AppData\Local\Temp\bdcam64_0.dll
C:\Users\Manh hao\AppData\Local\Temp\bdfilters.dll
C:\Users\Manh hao\AppData\Local\Temp\bitool.dll
C:\Users\Manh hao\AppData\Local\Temp\bzsbkotiula.exe
C:\Users\Manh hao\AppData\Local\Temp\chatzum_softonic_yahoo_62_v5.exe
C:\Users\Manh hao\AppData\Local\Temp\CheatEngine62Clean.exe
C:\Users\Manh hao\AppData\Local\Temp\DeltaTB.exe
C:\Users\Manh hao\AppData\Local\Temp\dp.exe
C:\Users\Manh hao\AppData\Local\Temp\drm_dyndata_7370014.dll
C:\Users\Manh hao\AppData\Local\Temp\drm_dyndata_7380014.dll
C:\Users\Manh hao\AppData\Local\Temp\e-y6xh5v.dll
C:\Users\Manh hao\AppData\Local\Temp\htmlayout.dll
C:\Users\Manh hao\AppData\Local\Temp\i4jdel0.exe
C:\Users\Manh hao\AppData\Local\Temp\i4jdel1.exe
C:\Users\Manh hao\AppData\Local\Temp\i4jdel2.exe
C:\Users\Manh hao\AppData\Local\Temp\i4jdel3.exe
C:\Users\Manh hao\AppData\Local\Temp\i4jdel4.exe
C:\Users\Manh hao\AppData\Local\Temp\Install_Nokia_Ovi_Suite.exe
C:\Users\Manh hao\AppData\Local\Temp\jansi-32-git-Bukkit-1.6.2-R1.0-9-g9cd35ee-b2908jnks.dll
C:\Users\Manh hao\AppData\Local\Temp\jansi-64-git-Bukkit-1.4.7-R1.0-25-g7b6d10e-b2657jnks.dll
C:\Users\Manh hao\AppData\Local\Temp\jansi-64-git-Bukkit-1.4.7-R1.0-59-ge869277-b2700jnks.dll
C:\Users\Manh hao\AppData\Local\Temp\jansi-64-git-Bukkit-1.4.7-R1.0-94-g141dcf0-b2735jnks.dll
C:\Users\Manh hao\AppData\Local\Temp\jansi-64-git-Bukkit-1.4.7-R1.0-b2624jnks.dll
C:\Users\Manh hao\AppData\Local\Temp\jansi-64-git-Bukkit-1.5.1-R0.1-1-gea5a7e4-b2736jnks.dll
C:\Users\Manh hao\AppData\Local\Temp\jansi-64-git-Bukkit-1.5.1-R0.2-11-g8205884-b2765jnks.dll
C:\Users\Manh hao\AppData\Local\Temp\jansi-64-git-Bukkit-1.5.2-R0.1-1-g53734d2-b2772jnks.dll
C:\Users\Manh hao\AppData\Local\Temp\jansi-64-git-Bukkit-1.5.2-R0.1-1-g53734d2-b2774jnks.dll
C:\Users\Manh hao\AppData\Local\Temp\jansi-64-git-Bukkit-1.5.2-R0.1-b2771jnks.dll
C:\Users\Manh hao\AppData\Local\Temp\jansi-64-git-MCPC-Plus-jenkins-MCPC-Plus-473.dll
C:\Users\Manh hao\AppData\Local\Temp\jre-7u17-windows-i586-iftw.exe
C:\Users\Manh hao\AppData\Local\Temp\LyricsPal.exe
C:\Users\Manh hao\AppData\Local\Temp\lyricstmp.exe
C:\Users\Manh hao\AppData\Local\Temp\m25xxpxf.dll
C:\Users\Manh hao\AppData\Local\Temp\MixiDJToolbar.exe
C:\Users\Manh hao\AppData\Local\Temp\MoviesToolbarSetup_Somoto_9_10_2013.exe
C:\Users\Manh hao\AppData\Local\Temp\o8x5jt68.dll
C:\Users\Manh hao\AppData\Local\Temp\OptimizerPro.exe
C:\Users\Manh hao\AppData\Local\Temp\PAYSAFEGENERATOR.EXE
C:\Users\Manh hao\AppData\Local\Temp\pricepeep_130001_0101.exe
C:\Users\Manh hao\AppData\Local\Temp\sdanircmdc.exe
C:\Users\Manh hao\AppData\Local\Temp\setup.exe
C:\Users\Manh hao\AppData\Local\Temp\SharedReg.exe
C:\Users\Manh hao\AppData\Local\Temp\SingAlong.exe
C:\Users\Manh hao\AppData\Local\Temp\SkypeSetup.exe
C:\Users\Manh hao\AppData\Local\Temp\SmartbarExeInstaller.exe
C:\Users\Manh hao\AppData\Local\Temp\sngalng.exe
C:\Users\Manh hao\AppData\Local\Temp\sqlite-3.7.2-sqlitejdbc.dll
C:\Users\Manh hao\AppData\Local\Temp\Sqlite3.dll
C:\Users\Manh hao\AppData\Local\Temp\toolbar137379285.exe
C:\Users\Manh hao\AppData\Local\Temp\toolbar137390330.exe
C:\Users\Manh hao\AppData\Local\Temp\ttpbkmqmhvm.exe
C:\Users\Manh hao\AppData\Local\Temp\uninst1.exe
C:\Users\Manh hao\AppData\Local\Temp\uninstall3697894.exe
C:\Users\Manh hao\AppData\Local\Temp\uninstall3703448.exe
C:\Users\Manh hao\AppData\Local\Temp\uninstall3703494.exe
C:\Users\Manh hao\AppData\Local\Temp\UpdateCheckerSetup.exe
C:\Users\Manh hao\AppData\Local\Temp\xmlUpdater.exe
C:\Users\Manh hao\AppData\Local\Temp\xsytzjapeaj.exe
C:\Users\Papa\AppData\Local\Temp\57156.exe
C:\Users\Papa\AppData\Local\Temp\BJKGMOF.exe
C:\Users\Papa\AppData\Local\Temp\bzsdulhzkch.exe
C:\Users\Papa\AppData\Local\Temp\cnfhtpwsjmh.exe
C:\Users\Papa\AppData\Local\Temp\cptkjxnuxbt.exe
C:\Users\Papa\AppData\Local\Temp\csdpffjeyjy.exe
C:\Users\Papa\AppData\Local\Temp\ctdimlhzezr.exe
C:\Users\Papa\AppData\Local\Temp\ctfblhvctji.exe
C:\Users\Papa\AppData\Local\Temp\cvmsepobvok.exe
C:\Users\Papa\AppData\Local\Temp\cxyqoyqvqwq.exe
C:\Users\Papa\AppData\Local\Temp\enjfvdawxpk.exe
C:\Users\Papa\AppData\Local\Temp\fp_pl_pfs_installer.exe
C:\Users\Papa\AppData\Local\Temp\iuznffnsdub.exe
C:\Users\Papa\AppData\Local\Temp\iuznffnsdug.exe
C:\Users\Papa\AppData\Local\Temp\jbuxhfvxpxo.exe
C:\Users\Papa\AppData\Local\Temp\jotuklefxbt.exe
C:\Users\Papa\AppData\Local\Temp\ljldzlhqotx.exe
C:\Users\Papa\AppData\Local\Temp\lvznxufvyrl.exe
C:\Users\Papa\AppData\Local\Temp\mfvphbwdgzo.exe
C:\Users\Papa\AppData\Local\Temp\muxzocbrrua.exe
C:\Users\Papa\AppData\Local\Temp\nxwfplvctfj.exe
C:\Users\Papa\AppData\Local\Temp\okskjzljpfo.exe
C:\Users\Papa\AppData\Local\Temp\qepxaflllfr.exe
C:\Users\Papa\AppData\Local\Temp\rixxynpxdab.exe
C:\Users\Papa\AppData\Local\Temp\rzsbkotdpan.exe
C:\Users\Papa\AppData\Local\Temp\tb3tla4g.dll
C:\Users\Papa\AppData\Local\Temp\ttdasndkxac.exe
C:\Users\Papa\AppData\Local\Temp\txgitbsxvez.exe
C:\Users\Papa\AppData\Local\Temp\vzdlfrkbhfo.exe
C:\Users\Papa\AppData\Local\Temp\wpfpdngkdui.exe
C:\Users\Papa\AppData\Local\Temp\xhytzbvrnxo.exe
C:\Users\Papa\AppData\Local\Temp\xinapqlnlip.exe
C:\Users\Papa\AppData\Local\Temp\zpeqkotiuag.exe
C:\Users\Papa\AppData\Local\Temp\zvdtfaamggf.exe
C:\Users\Selina\AppData\Local\Temp\AAMHelper.exe
C:\Users\Selina\AppData\Local\Temp\AdobeApplicationManager.exe
C:\Users\Selina\AppData\Local\Temp\bitool.dll
C:\Users\Selina\AppData\Local\Temp\gtqadjqbeai.exe
C:\Users\Selina\AppData\Local\Temp\i4jdel0.exe
C:\Users\Selina\AppData\Local\Temp\i4jdel1.exe
C:\Users\Selina\AppData\Local\Temp\i4jdel2.exe
C:\Users\Selina\AppData\Local\Temp\i4jdel3.exe
C:\Users\Selina\AppData\Local\Temp\i4jdel4.exe
C:\Users\Selina\AppData\Local\Temp\iuznffnsdro.exe
C:\Users\Selina\AppData\Local\Temp\jansi-64-git-Bukkit-1.5.2-R0.1-b2771jnks.dll
C:\Users\Selina\AppData\Local\Temp\jansi-64-git-Bukkit-1.5.2-R1.0-18-ga8c0dc1-b2808jnks.dll
C:\Users\Selina\AppData\Local\Temp\jansi-64-git-Bukkit-1.6.2-R1.0-3-g9532cb6-b2887jnks.dll
C:\Users\Selina\AppData\Local\Temp\jansi-64-git-MCPC-Plus-jenkins-MCPC-Plus-564.dll
C:\Users\Selina\AppData\Local\Temp\rbvhynpxdtb.exe
C:\Users\Selina\AppData\Local\Temp\riaicxgpxzl.exe
C:\Users\Selina\AppData\Local\Temp\SkypeSetup.exe
C:\Users\Selina\AppData\Local\Temp\sqlite-3.7.2-sqlitejdbc.dll
C:\Users\Selina\AppData\Local\Temp\?odec Performer803975.exe
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2013-09-11 22:04
==================== End Of Log ============================
--- --- ---
26.10.2013, 11:47
Hybrid-Darstellung
