| |
| |||||||
Log-Analyse und Auswertung: Win 7Premium 64,Viele Prog. lassen sich nich öffnen,Avast Virenscan wird nicht ausgeführt....Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
 |
30.04.2014, 16:18
| #31 |
 |  Win 7Premium 64,Viele Prog. lassen sich nich öffnen,Avast Virenscan wird nicht ausgeführt.... Hi Gestern Abend beim lesen noch mal,über das inplace upgrade gestolpert,und hab google bemüht. Bin dann bei dieser sehr guten Schritt für Schritt Anleitung gelandet...kein Medium nötig. Iso Download und entpacken reicht... Stell mal nen link rein wenn unerwünscht löschen... hxxp://huebauer.bplaced.net/seite%2018.htm Alles scheint soweit zu funktunieren, auser Avira läuft gar nicht mehr,und lies sich auch nicht neu installieren,werd heut was anderes Downloaden. Hab dann alls erste Amthandlung Mbam durchlaufen lassen noch 16 Funde alle bereinigt. Code:
ATTFilter Malwarebytes Anti-Malware 1.75.0.1300 www.malwarebytes.org Datenbank Version: v2014.04.25.10 Windows 7 Service Pack 1 x64 NTFS Internet Explorer 8.0.7601.17514 Alexander Hofer :: WHITEDOG [Administrator] 30.04.2014 04:51:00 mbam-log-2014-04-30 (04-51-00).txt Art des Suchlaufs: Quick-Scan Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM | P2P Deaktivierte Suchlaufeinstellungen: Durchsuchte Objekte: 239488 Laufzeit: 6 Minute(n), 56 Sekunde(n) Infizierte Speicherprozesse: 0 (Keine bösartigen Objekte gefunden) Infizierte Speichermodule: 0 (Keine bösartigen Objekte gefunden) Infizierte Registrierungsschlüssel: 0 (Keine bösartigen Objekte gefunden) Infizierte Registrierungswerte: 0 (Keine bösartigen Objekte gefunden) Infizierte Dateiobjekte der Registrierung: 0 (Keine bösartigen Objekte gefunden) Infizierte Verzeichnisse: 16 C:\Users\Alexander Hofer\AppData\Local\Smartbar (PUP.Optional.SmartBar.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Alexander Hofer\AppData\Local\Smartbar\Application (PUP.Optional.SmartBar.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Alexander Hofer\AppData\Local\Smartbar\Common (PUP.Optional.SmartBar.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Alexander Hofer\AppData\Local\Smartbar\Common\iconsWide (PUP.Optional.SmartBar.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Alexander Hofer\AppData\Local\Smartbar\SnapDo.exe_StrongName_vuedtbpoockmp1sq45awfxuouevabx0i (PUP.Optional.SmartBar.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Alexander Hofer\AppData\Local\Smartbar\SnapDo.exe_StrongName_vuedtbpoockmp1sq45awfxuouevabx0i\11.42.1.16270 (PUP.Optional.SmartBar.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Alexander Hofer\AppData\Local\Google\Chrome\User Data\Default\Extensions\jpmbfleldcgkldadpdinhjjopdfpjfjp (PUP.Optional.Wajam.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Alexander Hofer\AppData\Local\Google\Chrome\User Data\Default\Extensions\jpmbfleldcgkldadpdinhjjopdfpjfjp\1.24_0 (PUP.Optional.Wajam.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Alexander Hofer\AppData\Local\Google\Chrome\User Data\Default\Extensions\jpmbfleldcgkldadpdinhjjopdfpjfjp\1.24_0\js (PUP.Optional.Wajam.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Alexander Hofer\AppData\Local\Google\Chrome\User Data\Default\Extensions\jpmbfleldcgkldadpdinhjjopdfpjfjp\1.24_0\plugins (PUP.Optional.Wajam.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Alexander Hofer\AppData\Local\Wajam (PUP.Optional.Wajam.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Alexander Hofer\AppData\Local\Wajam\Chrome (PUP.Optional.Wajam.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Alexander Hofer\AppData\Local\Google\Chrome\User Data\Default\Extensions\olnkgiapbjhdboldbhkagdodklkphaip (PUP.Optional.CrossRider.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Alexander Hofer\AppData\Local\Google\Chrome\User Data\Default\Extensions\olnkgiapbjhdboldbhkagdodklkphaip\1.26.51_0 (PUP.Optional.CrossRider.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PriceGong (PUP.Optional.PriceGong.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Alexander Hofer\AppData\Roaming\webssearches (PUP.Optional.WebsSearches.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. Infizierte Dateien: 0 (Keine bösartigen Objekte gefunden) (Ende) FRST Logfile: FRST Logfile: FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 30-04-2014 01
Ran by Alexander Hofer (administrator) on WHITEDOG on 30-04-2014 17:07:35
Running from C:\Users\Alexander Hofer\Desktop
Windows 7 Home Premium Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 8
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(SANDBOXIE L.T.D) C:\Program Files\Sandboxie\SbieSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Atheros) C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
(Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae-svc.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
(Sony Corporation) C:\Program Files (x86)\Sony\PMB\PMBDeviceInfoProvider.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(ClientConnect Ltd.) C:\Program Files (x86)\Tbccint\ToolbarService\ToolbarService.exe
(TuneUp Software) C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesService64.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Event Service\VESMgr.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Event Service\VESMgrSub.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Event Service\VESMgrSub.exe
() C:\Program Files (x86)\XSManager\WTGService.exe
(4G Systems GmbH & Co. KG) C:\Windows\service4g.exe
(Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Realsil Microelectronics Inc.) C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
() C:\Program Files\Sony\VAIO Care\VCPerfService.exe
(ArcSoft, Inc.) C:\Program Files (x86)\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Smart Network\VSNService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(TuneUp Software) C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesApp64.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Smart Network\VSNClient.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Gate\VAIO Gate.exe
(Alps Electric Co., Ltd.) C:\Program Files\Apoint\Apoint.exe
(Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe
(Atheros Communications) C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae.exe
(Sony Corporation) C:\Program Files (x86)\Sony\PMB\PMBVolumeWatcher.exe
(4G Systems GmbH & Co. KG) C:\Windows\starter4g.exe
(Alps Electric Co., Ltd.) C:\Program Files\Apoint\ApMsgFwd.exe
(ALPS) C:\Program Files\Apoint\Apvfb.exe
(Alps Electric Co., Ltd.) C:\Program Files\Apoint\ApntEx.exe
() C:\Program Files\Sony\VAIO Care\listener.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Update\VAIOUpdt.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Update\VUAgent.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Care\VCSystemTray.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [Apoint] => C:\Program Files\Apoint\Apoint.exe [226672 2010-11-04] (Alps Electric Co., Ltd.)
HKLM\...\Run: [AthBtTray] => C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe [657568 2011-04-29] (Atheros Commnucations)
HKLM\...\Run: [AtherosBtStack] => C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [790688 2011-04-29] (Atheros Communications)
HKLM-x32\...\Run: [Malwarebytes Anti-Exploit] => C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae.exe [1294136 2014-02-21] (Malwarebytes Corporation)
HKLM-x32\...\Run: [PMBVolumeWatcher] => C:\Program Files (x86)\Sony\PMB\PMBVolumeWatcher.exe [648032 2010-11-27] (Sony Corporation)
HKLM-x32\...\Run: [starter4g] => C:\Windows\starter4g.exe [160424 2010-04-30] (4G Systems GmbH & Co. KG)
HKU\S-1-5-21-4113284352-1378585713-2786085383-1000\...\Run: [Hands Videos app] => C:\Users\Alexander Hofer\AppData\Local\TitanPokerStudio\BIN\HOHBase.exe [1264432 2013-09-30] (Hall of Hands Limited)
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = hxxp://sony.msn.com
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
URLSearchHook: HKLM-x32 - Hotspot Shield Toolbar - {c95a4e8e-816d-4655-8c79-d736da1adb6d} - C:\Program Files (x86)\Hotspot_Shield\prxtbHots.dll (Conduit Ltd.)
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKLM - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://istart.webssearches.com/web/?type=ds&ts=1397158878&from=tugs&uid=ST9500325AS_5VEJN8XYXXXX5VEJN8XY&q={searchTerms}
SearchScopes: HKLM - {014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} URL =
SearchScopes: HKLM - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://istart.webssearches.com/web/?type=ds&ts=1397158878&from=tugs&uid=ST9500325AS_5VEJN8XYXXXX5VEJN8XY&q={searchTerms}
SearchScopes: HKLM-x32 - DefaultScope {006ee092-9658-4fd6-bd8e-a21a348e59f5} URL =
SearchScopes: HKCU - DefaultScope {014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} URL = hxxp://search.conduit.com/Results.aspx?gd=&ctid=CT3320324&octid=EB_ORIGINAL_CTID&ISID=M23C69979-6FE4-4B27-8793-D479CA7B8904&SearchSource=58&CUI=&UM=5&UP=SP752B5D12-5953-4731-A92D-3E01C62C704A&q={searchTerms}&SSPV=
SearchScopes: HKCU - {014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} URL = hxxp://search.conduit.com/Results.aspx?gd=&ctid=CT3320324&octid=EB_ORIGINAL_CTID&ISID=M23C69979-6FE4-4B27-8793-D479CA7B8904&SearchSource=58&CUI=&UM=5&UP=SP752B5D12-5953-4731-A92D-3E01C62C704A&q={searchTerms}&SSPV=
SearchScopes: HKCU - {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL =
SearchScopes: HKCU - {AFDBDDAA-5D3F-42EE-B79C-185A7020515B} URL =
BHO: Plus-HD9.5vj - {11111111-1111-1111-1111-110511311166} - C:\Program Files (x86)\Plus-HD9.5vj\Plus-HD9.5vj-bho64.dll No File
BHO: avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll No File
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
BHO: DVDVideoSoft WebPageAdjuster Class - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns64.dll (DVDVideoSoft Ltd.)
BHO: No Name - {F9E4A054-E9B1-4BC3-83A3-76A1AE736170} - No File
BHO-x32: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO-x32: DivX Plus Web Player HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files (x86)\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll (DivX, LLC)
BHO-x32: CIESpeechBHO Class - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll (Atheros Commnucations)
BHO-x32: Windows Live ID-Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
BHO-x32: DVDVideoSoft WebPageAdjuster Class - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns.dll (DVDVideoSoft Ltd.)
Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll No File
Toolbar: HKLM - Snap.Do - {ae07101b-46d4-4a98-af68-0333ea26e113} - C:\Windows\system32\mscoree.dll (Microsoft Corporation)
Toolbar: HKLM-x32 - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)
Toolbar: HKLM-x32 - Hotspot Shield Toolbar - {c95a4e8e-816d-4655-8c79-d736da1adb6d} - C:\Program Files (x86)\Hotspot_Shield\prxtbHots.dll (Conduit Ltd.)
Toolbar: HKLM-x32 - No Name - {DFEFCDEE-CF1A-4FC8-89AF-189327213627} - No File
Toolbar: HKCU - No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
FireFox:
========
FF ProfilePath: C:\Users\Alexander Hofer\AppData\Roaming\Mozilla\Firefox\Profiles\1zyggcmw.default
FF DefaultSearchEngine: webssearches
FF Homepage: hxxp://search.conduit.com/?gd=&ctid=CT3320324&octid=EB_ORIGINAL_CTID&ISID=M23C69979-6FE4-4B27-8793-D479CA7B8904&SearchSource=55&CUI=&UM=5&UP=SP752B5D12-5953-4731-A92D-3E01C62C704A&SSPV=
FF SelectedSearchEngine: Conduit Search
FF NewTab: hxxp://search.conduit.com/?gd=&ctid=CT3320324&octid=EB_ORIGINAL_CTID&ISID=M23C69979-6FE4-4B27-8793-D479CA7B8904&SearchSource=69&CUI=&SSPV=&Lay=1&UM=5&UP=SP752B5D12-5953-4731-A92D-3E01C62C704A
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_13_0_0_206.dll ()
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin: @java.com/JavaPlugin - C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_206.dll ()
FF Plugin-x32: @divx.com/DivX Browser Plugin,version=1.0.0 - C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
FF Plugin-x32: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin-x32: @java.com/JavaPlugin - C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~4\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @videolan.org/vlc,version=2.0.8 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin HKCU: @Skype Limited.com/Facebook Video Calling Plugin - C:\Users\Alexander Hofer\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: ProxTube - Unblock YouTube - C:\Users\Alexander Hofer\AppData\Roaming\Mozilla\Firefox\Profiles\1zyggcmw.default\Extensions\ich@maltegoetz.de [2013-12-19]
FF Extension: Quick Start - C:\Users\Alexander Hofer\AppData\Roaming\Mozilla\Firefox\Profiles\1zyggcmw.default\Extensions\quick_start@gmail.com [2014-04-10]
FF Extension: Snap.Do - C:\Users\Alexander Hofer\AppData\Roaming\Mozilla\Firefox\Profiles\1zyggcmw.default\Extensions\{29277aa7-5faa-bf8f-0d9c-418c27786353} [2014-04-17]
FF Extension: Snap.Do - C:\Users\Alexander Hofer\AppData\Roaming\Mozilla\Firefox\Profiles\1zyggcmw.default\Extensions\{8725771a-d657-46d6-afee-17e269a615d2} [2013-05-11]
FF Extension: Hotspot Shield Helper (Please allow this installation) - C:\Program Files (x86)\Mozilla Firefox\extensions\afurladvisor@anchorfree.com [2014-03-17]
FF Extension: Hotspot Shield Extension - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\afext@anchorfree.com [2014-03-17]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF HKLM-x32\...\Firefox\Extensions: [{23fcfd51-4958-4f00-80a3-ae97e717ed8b}] - C:\Program Files (x86)\DivX\DivX Plus Web Player\firefox\DivXHTML5
FF Extension: DivX Plus Web Player HTML5 <video> - C:\Program Files (x86)\DivX\DivX Plus Web Player\firefox\DivXHTML5 [2012-02-17]
FF StartMenuInternet: FIREFOX.EXE - firefox.exe
Chrome:
=======
Error reading preferences. Please check "preferences" file for possible corruption. <======= ATTENTION
CHR Extension: (No Name) - C:\Users\Alexander Hofer\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2013-11-01]
CHR Extension: (No Name) - C:\Users\Alexander Hofer\AppData\Local\Google\Chrome\User Data\Default\Extensions\blaofbhgbmeikidhlkmjhbkbfohpgekf [2013-11-01]
CHR Extension: (No Name) - C:\Users\Alexander Hofer\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2013-11-01]
CHR Extension: (No Name) - C:\Users\Alexander Hofer\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-11-01]
CHR Extension: (No Name) - C:\Users\Alexander Hofer\AppData\Local\Google\Chrome\User Data\Default\Extensions\nneajnkjbffgblleaoojgaacokifdkhm [2013-11-01]
CHR Extension: (No Name) - C:\Users\Alexander Hofer\AppData\Local\Google\Chrome\User Data\Default\Extensions\ojckadljjmjiicmgobecinmmjdomoann [2013-11-14]
CHR HKLM-x32\...\Chrome\Extension: [blaofbhgbmeikidhlkmjhbkbfohpgekf] - C:\Program Files (x86)\Movie2KDownloader.com\Movie2KDownloader10.crx [2012-12-13]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2012-12-13]
CHR HKLM-x32\...\Chrome\Extension: [nneajnkjbffgblleaoojgaacokifdkhm] - C:\Program Files (x86)\DivX\DivX Plus Web Player\chrome\DivXHTML5\DivXHTML5.crx [2011-12-12]
==================== Services (Whitelisted) =================
S3 ACDaemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [113152 2010-03-18] (ArcSoft Inc.)
R2 Atheros Bt&Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [146592 2011-04-29] (Atheros)
S3 DCDhcpService; C:\Program Files\Sony\VAIO Smart Network\WFDA\DCDhcpService.exe [104096 2011-07-19] (Atheros Communication Inc.)
R2 MbaeSvc; C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae-svc.exe [319288 2014-02-21] (Malwarebytes Corporation)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
S2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
S3 McComponentHostServiceSony; C:\Program Files (x86)\Sony\MSS\3.0.271\McCHSvc.exe [237328 2012-03-30] (McAfee, Inc.)
R2 SampleCollector; C:\Program Files\Sony\VAIO Care\VCPerfService.exe [156672 2012-08-06] ()
R2 SbieSvc; C:\Program Files\Sandboxie\SbieSvc.exe [123664 2012-12-16] (SANDBOXIE L.T.D)
R2 TBSrv; C:\Program Files (x86)\Tbccint\ToolbarService\ToolbarService.exe [350496 2014-03-26] (ClientConnect Ltd.)
R2 TuneUp.UtilitiesSvc; C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesService64.exe [2409272 2013-12-10] (TuneUp Software)
R2 uCamMonitor; C:\Program Files (x86)\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe [105024 2011-02-23] (ArcSoft, Inc.)
S3 VCFw; C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe [887000 2011-01-20] (Sony Corporation)
R3 VUAgent; C:\Program Files\Sony\VAIO Update\VUAgent.exe [1369136 2013-09-25] (Sony Corporation)
R2 WTGService; C:\Program Files (x86)\XSManager\WTGService.exe [329168 2010-04-12] ()
R2 XS Stick Service; C:\Windows\service4g.exe [145064 2010-04-30] (4G Systems GmbH & Co. KG)
==================== Drivers (Whitelisted) ====================
R3 ArcSoftKsUFilter; C:\Windows\System32\DRIVERS\ArcSoftKsUFilter.sys [19968 2009-05-26] (ArcSoft, Inc.)
R1 ESProtectionDriver; C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae64.sys [62168 2014-02-21] ()
S1 HssDRV6; C:\Windows\System32\DRIVERS\hssdrv6.sys [44744 2013-11-02] (AnchorFree Inc.)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
R3 SbieDrv; C:\Program Files\Sandboxie\SbieDrv.sys [202632 2012-12-16] (SANDBOXIE L.T.D)
R3 TuneUpUtilitiesDrv; C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesDriver64.sys [11880 2012-11-16] (TuneUp Software)
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2014-04-30 17:07 - 2014-04-30 17:07 - 00000000 ____D () C:\Users\Alexander Hofer\Desktop\FRST-OlderVersion
2014-04-30 04:46 - 2014-04-30 04:49 - 88882192 _____ (AVAST Software) C:\Users\Public\Desktop\avast_free_antivirus_setup[1].exe
2014-04-30 04:30 - 2014-04-30 04:30 - 00000000 ____D () C:\Users\Alexander Hofer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Bluetooth-Geräte
2014-04-30 04:21 - 2014-04-30 04:25 - 01594296 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI
2014-04-30 04:13 - 2014-04-30 04:13 - 00075216 _____ () C:\Users\Alexander Hofer\AppData\Local\GDIPFONTCACHEV1.DAT
2014-04-30 04:11 - 2012-02-17 08:38 - 01031680 _____ (Microsoft Corporation) C:\Windows\system32\rdpcore.dll
2014-04-30 04:11 - 2012-02-17 07:34 - 00826880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpcore.dll
2014-04-30 04:11 - 2012-02-17 06:58 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpwd.sys
2014-04-30 04:11 - 2012-02-17 06:57 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdtcp.sys
2014-04-30 04:10 - 2014-04-30 04:10 - 00001443 _____ () C:\Users\Alexander Hofer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-04-30 04:10 - 2014-04-30 04:10 - 00001409 _____ () C:\Users\Alexander Hofer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk
2014-04-30 04:09 - 2014-04-30 04:09 - 00000020 ___SH () C:\Users\Alexander Hofer\ntuser.ini
2014-04-30 04:08 - 2014-04-30 04:08 - 00000000 _SHDL () C:\Users\Public\Documents\Eigene Musik
2014-04-30 04:08 - 2014-04-30 04:08 - 00000000 _SHDL () C:\Users\Public\Documents\Eigene Bilder
2014-04-30 04:08 - 2014-04-30 04:08 - 00000000 _SHDL () C:\Users\Default\Vorlagen
2014-04-30 04:08 - 2014-04-30 04:08 - 00000000 _SHDL () C:\Users\Default\Startmenü
2014-04-30 04:08 - 2014-04-30 04:08 - 00000000 _SHDL () C:\Users\Default\Netzwerkumgebung
2014-04-30 04:08 - 2014-04-30 04:08 - 00000000 _SHDL () C:\Users\Default\Lokale Einstellungen
2014-04-30 04:08 - 2014-04-30 04:08 - 00000000 _SHDL () C:\Users\Default\Eigene Dateien
2014-04-30 04:08 - 2014-04-30 04:08 - 00000000 _SHDL () C:\Users\Default\Druckumgebung
2014-04-30 04:08 - 2014-04-30 04:08 - 00000000 _SHDL () C:\Users\Default\Documents\Eigene Musik
2014-04-30 04:08 - 2014-04-30 04:08 - 00000000 _SHDL () C:\Users\Default\Documents\Eigene Bilder
2014-04-30 04:08 - 2014-04-30 04:08 - 00000000 _SHDL () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-04-30 04:08 - 2014-04-30 04:08 - 00000000 _SHDL () C:\Users\Default\AppData\Local\Verlauf
2014-04-30 04:08 - 2014-04-30 04:08 - 00000000 _SHDL () C:\Users\Default\AppData\Local\Anwendungsdaten
2014-04-30 04:08 - 2014-04-30 04:08 - 00000000 _SHDL () C:\Users\Default\Anwendungsdaten
2014-04-30 04:08 - 2014-04-30 04:08 - 00000000 _SHDL () C:\Users\Default User\Documents\Eigene Musik
2014-04-30 04:08 - 2014-04-30 04:08 - 00000000 _SHDL () C:\Users\Default User\Documents\Eigene Bilder
2014-04-30 04:08 - 2014-04-30 04:08 - 00000000 _SHDL () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-04-30 04:08 - 2014-04-30 04:08 - 00000000 _SHDL () C:\Users\Default User\AppData\Local\Verlauf
2014-04-30 04:08 - 2014-04-30 04:08 - 00000000 _SHDL () C:\Users\Default User\AppData\Local\Anwendungsdaten
2014-04-30 04:08 - 2014-04-30 04:08 - 00000000 _SHDL () C:\ProgramData\Vorlagen
2014-04-30 04:08 - 2014-04-30 04:08 - 00000000 _SHDL () C:\ProgramData\Startmenü
2014-04-30 04:08 - 2014-04-30 04:08 - 00000000 _SHDL () C:\ProgramData\Microsoft\Windows\Start Menu\Programme
2014-04-30 04:08 - 2014-04-30 04:08 - 00000000 _SHDL () C:\ProgramData\Favoriten
2014-04-30 04:08 - 2014-04-30 04:08 - 00000000 _SHDL () C:\ProgramData\Dokumente
2014-04-30 04:08 - 2014-04-30 04:08 - 00000000 _SHDL () C:\ProgramData\Anwendungsdaten
2014-04-30 04:08 - 2014-04-30 04:08 - 00000000 _SHDL () C:\Program Files\Gemeinsame Dateien
2014-04-30 04:08 - 2014-04-30 04:08 - 00000000 __SHD () C:\Recovery
2014-04-30 04:04 - 2012-06-03 00:19 - 02428952 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2014-04-30 04:04 - 2012-06-03 00:19 - 00701976 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2014-04-30 04:04 - 2012-06-03 00:19 - 00057880 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2014-04-30 04:04 - 2012-06-03 00:19 - 00044056 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2014-04-30 04:04 - 2012-06-03 00:19 - 00038424 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2014-04-30 04:04 - 2012-06-03 00:15 - 02622464 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2014-04-30 04:04 - 2012-06-03 00:15 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2014-04-30 04:04 - 2012-06-02 15:19 - 00186752 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2014-04-30 04:04 - 2012-06-02 15:15 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2014-04-30 03:55 - 2014-04-30 16:46 - 00482173 _____ () C:\Windows\WindowsUpdate.log
2014-04-30 03:55 - 2014-04-30 03:55 - 00262144 _____ () C:\Windows\system32\config\userdiff
2014-04-30 03:41 - 2014-04-30 03:41 - 00022960 _____ () C:\Windows\system32\emptyregdb.dat
2014-04-30 03:36 - 2014-04-30 03:36 - 00000000 ____D () C:\Users\Default\AppData\Roaming\TuneUp Software
2014-04-30 03:36 - 2014-04-30 03:36 - 00000000 ____D () C:\Users\Default\AppData\Roaming\Macromedia
2014-04-30 03:36 - 2014-04-30 03:36 - 00000000 ____D () C:\Users\Default User\AppData\Roaming\TuneUp Software
2014-04-30 03:36 - 2014-04-30 03:36 - 00000000 ____D () C:\Users\Default User\AppData\Roaming\Macromedia
2014-04-30 03:02 - 2014-04-30 04:09 - 00000000 ____D () C:\Users\Alexander Hofer
2014-04-30 03:02 - 2014-04-30 03:02 - 00001345 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk
2014-04-30 03:02 - 2014-04-30 03:02 - 00001326 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk
2014-04-30 03:02 - 2014-04-30 03:02 - 00000000 _SHDL () C:\Users\Alexander Hofer\Vorlagen
2014-04-30 03:02 - 2014-04-30 03:02 - 00000000 _SHDL () C:\Users\Alexander Hofer\Startmenü
2014-04-30 03:02 - 2014-04-30 03:02 - 00000000 _SHDL () C:\Users\Alexander Hofer\Netzwerkumgebung
2014-04-30 03:02 - 2014-04-30 03:02 - 00000000 _SHDL () C:\Users\Alexander Hofer\Lokale Einstellungen
2014-04-30 03:02 - 2014-04-30 03:02 - 00000000 _SHDL () C:\Users\Alexander Hofer\Eigene Dateien
2014-04-30 03:02 - 2014-04-30 03:02 - 00000000 _SHDL () C:\Users\Alexander Hofer\Druckumgebung
2014-04-30 03:02 - 2014-04-30 03:02 - 00000000 _SHDL () C:\Users\Alexander Hofer\Documents\Eigene Musik
2014-04-30 03:02 - 2014-04-30 03:02 - 00000000 _SHDL () C:\Users\Alexander Hofer\Documents\Eigene Bilder
2014-04-30 03:02 - 2014-04-30 03:02 - 00000000 _SHDL () C:\Users\Alexander Hofer\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-04-30 03:02 - 2014-04-30 03:02 - 00000000 _SHDL () C:\Users\Alexander Hofer\AppData\Local\Verlauf
2014-04-30 03:02 - 2014-04-30 03:02 - 00000000 _SHDL () C:\Users\Alexander Hofer\AppData\Local\Anwendungsdaten
2014-04-30 03:02 - 2014-04-30 03:02 - 00000000 _SHDL () C:\Users\Alexander Hofer\Anwendungsdaten
2014-04-30 03:02 - 2009-07-14 06:54 - 00000000 ___RD () C:\Users\Alexander Hofer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-04-30 03:02 - 2009-07-14 06:49 - 00000000 ___RD () C:\Users\Alexander Hofer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-04-30 03:01 - 2014-04-30 16:40 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-04-30 03:01 - 2014-04-30 03:05 - 00000000 ____D () C:\Program Files\CONEXANT
2014-04-30 03:01 - 2014-04-30 03:01 - 00001355 _____ () C:\Windows\TSSysprep.log
2014-04-30 03:00 - 2014-04-30 03:05 - 00000000 ____D () C:\Program Files\NVIDIA Corporation
2014-04-30 03:00 - 2014-04-30 03:00 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_Apfiltr_01009.Wdf
2014-04-30 03:00 - 2014-04-30 03:00 - 00000000 ____D () C:\ProgramData\NVIDIA Corporation
2014-04-30 03:00 - 2014-04-30 03:00 - 00000000 ____D () C:\Program Files\Apoint
2014-04-30 01:58 - 2014-04-30 03:43 - 00006155 _____ () C:\Windows\comsetup.log
2014-04-30 00:58 - 2014-04-30 01:43 - 00000000 ____D () C:\Win 7
2014-04-29 23:55 - 2014-04-30 03:33 - 00000000 ___RD () C:\Users\Alexander Hofer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BT Devices
2014-04-29 23:47 - 2014-04-30 00:00 - 00002904 _____ () C:\Users\Alexander Hofer\Desktop\Windows-Kompatibilitätsbericht.htm
2014-04-29 23:43 - 2014-04-30 01:48 - 00002576 _____ () C:\Windows\diagwrn.xml
2014-04-29 23:43 - 2014-04-30 01:48 - 00001890 _____ () C:\Windows\diagerr.xml
2014-04-29 23:34 - 2014-04-30 03:16 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2014-04-29 23:34 - 2014-04-30 03:05 - 00000000 ____D () C:\Program Files\7-Zip
2014-04-29 23:26 - 2014-04-29 23:31 - 01376768 _____ () C:\Users\Alexander Hofer\Downloads\7z920-x64 (1).msi
2014-04-29 23:26 - 2014-04-29 23:26 - 01376768 _____ () C:\Users\Alexander Hofer\Downloads\7z920-x64.msi
2014-04-29 22:32 - 2014-04-30 03:33 - 00000000 ____D () C:\Users\Alexander Hofer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows 7 USB DVD Download Tool
2014-04-29 22:32 - 2014-04-30 03:28 - 00000000 ____D () C:\Users\Alexander Hofer\AppData\Local\Apps\Windows 7 USB DVD Download Tool
2014-04-29 22:32 - 2014-04-29 22:32 - 00002572 _____ () C:\Users\Alexander Hofer\Desktop\Windows 7 USB DVD Download Tool.lnk
2014-04-29 22:30 - 2014-04-29 22:32 - 02721168 _____ (Microsoft Corporation) C:\Users\Alexander Hofer\Downloads\Windows7-USB-DVD1024-tool.exe
2014-04-29 22:07 - 2014-04-29 22:22 - 1010827264 _____ () C:\Users\Alexander Hofer\Downloads\ubuntu-14.04-desktop-amd64.iso
2014-04-28 22:09 - 2014-04-28 22:49 - 3192264704 _____ () C:\Users\Alexander Hofer\Downloads\X15-65741.iso
2014-04-28 21:02 - 2014-04-28 21:05 - 11077632 _____ () C:\Users\Alexander Hofer\Downloads\dban-2.2.7_i586.iso
2014-04-28 20:46 - 2014-04-28 20:47 - 01095461 _____ (pendrivelinux.com) C:\Users\Alexander Hofer\Downloads\Universal-USB-Installer-1.9.5.2.exe
2014-04-28 19:39 - 2014-04-30 03:12 - 00000000 ____D () C:\Program Files (x86)\ISO to USB
2014-04-28 19:39 - 2014-04-28 19:39 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ISO to USB
2014-04-28 19:26 - 2014-04-28 19:26 - 01717879 _____ () C:\Users\Alexander Hofer\Downloads\dban-1.0.7_i386.exe
2014-04-28 17:01 - 2014-04-28 17:01 - 01504136 _____ (isotousb.com ) C:\Users\Alexander Hofer\Desktop\isotousb_setup.exe
2014-04-27 20:49 - 2014-04-27 20:49 - 00002770 _____ () C:\Windows\System32\Tasks\TuneUpUtilities_Task_BkGndMaintenance2013
2014-04-25 22:15 - 2014-04-25 22:15 - 01365865 _____ () C:\Users\Alexander Hofer\Desktop\adwcleaner.exe
2014-04-25 21:36 - 2014-04-30 03:15 - 00000000 ____D () C:\Program Files (x86)\VS Revo Group
2014-04-25 21:35 - 2014-04-25 21:35 - 02623656 _____ (VS Revo Group Ltd.) C:\Users\Alexander Hofer\Desktop\revosetup95.exe
2014-04-22 21:54 - 2014-04-30 17:07 - 00019390 _____ () C:\Users\Alexander Hofer\Desktop\FRST.txt
2014-04-22 21:34 - 2014-04-23 16:58 - 00000255 _____ () C:\DelFix.txt
2014-04-22 21:32 - 2014-04-22 21:32 - 00707006 _____ () C:\Users\Alexander Hofer\Desktop\delfix.exe
2014-04-22 21:25 - 2014-04-22 21:25 - 00050477 _____ () C:\Users\Alexander Hofer\Desktop\Defogger.exe
2014-04-21 21:49 - 2014-04-30 03:34 - 00000000 ____D () C:\Users\Alexander Hofer\AppData\Roaming\Security System 2
2014-04-21 21:49 - 2014-04-30 03:30 - 00000000 ____D () C:\Users\Alexander Hofer\AppData\Local\SearchProtect
2014-04-20 20:34 - 2014-04-20 20:34 - 00448512 _____ (OldTimer Tools) C:\Users\Alexander Hofer\Desktop\TFC.exe
2014-04-20 07:28 - 2014-04-20 07:28 - 00987448 _____ () C:\Users\Alexander Hofer\Desktop\SecurityCheck.exe
2014-04-20 00:26 - 2014-04-20 00:26 - 02347384 _____ (ESET) C:\Users\Alexander Hofer\Downloads\esetsmartinstaller_enu.exe
2014-04-19 15:05 - 2014-04-30 17:07 - 02060800 _____ (Farbar) C:\Users\Alexander Hofer\Desktop\FRST64.exe
2014-04-19 14:52 - 2014-04-30 03:17 - 00000000 ____D () C:\Windows\ERUNT
2014-04-19 14:51 - 2014-04-19 14:51 - 01016261 _____ (Thisisu) C:\Users\Alexander Hofer\Desktop\JRT.exe
2014-04-19 14:41 - 2014-04-26 00:26 - 00000000 ____D () C:\AdwCleaner
2014-04-18 14:06 - 2014-04-18 14:06 - 00061175 _____ () C:\ComboFix.txt
2014-04-18 13:31 - 2014-04-30 03:17 - 00000000 ____D () C:\Windows\erdnt
2014-04-17 19:58 - 2014-04-17 19:58 - 00380416 _____ () C:\Users\Alexander Hofer\Desktop\Gmer-19357.exe
2014-04-17 19:28 - 2014-04-30 17:07 - 00000000 ____D () C:\FRST
2014-04-17 18:40 - 2014-04-30 03:12 - 00000000 ____D () C:\Program Files (x86)\ImgBurn
2014-04-17 18:20 - 2014-04-17 18:20 - 00709352 _____ ( ) C:\Users\Alexander Hofer\Downloads\COMPUTER_BILD-Download-Manager_fuer_isoworkshop.exe
2014-04-17 18:12 - 2014-04-30 03:07 - 00000000 ____D () C:\Program Files (x86)\CDBurnerXP
2014-04-17 18:10 - 2014-04-17 18:10 - 04991880 _____ (Canneverbe Limited ) C:\Users\Alexander Hofer\Documents\cdbxp_setup_4.5.3.4643_minimal.exe
2014-04-17 16:55 - 2014-04-17 17:28 - 3192264704 _____ () C:\Users\Alexander Hofer\Documents\X15-65741.iso
2014-04-17 01:26 - 2014-04-30 03:15 - 00000000 ____D () C:\Program Files (x86)\Tbccint
2014-04-16 21:12 - 2014-04-16 21:12 - 00001145 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VAIO Update.lnk
2014-04-16 21:11 - 2014-04-16 21:11 - 00000028 _____ () C:\1__Argon__.tmp
2014-04-16 18:47 - 2014-04-30 03:12 - 00000000 ____D () C:\Program Files (x86)\LinuxLive USB Creator
2014-04-16 18:47 - 2014-04-16 18:47 - 00000000 ____D () C:\Users\Alexander Hofer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\LinuxLive USB Creator
2014-04-16 18:46 - 2014-04-16 18:46 - 04764779 _____ (LinuxLive USB Creator) C:\Users\Alexander Hofer\Documents\linuxlive_usb_creator_2.8.27.exe
2014-04-16 18:22 - 2014-04-17 17:05 - 187695104 _____ () C:\Users\Alexander Hofer\Documents\gparted-live-0.18.0-2-i486.iso
2014-04-14 23:33 - 2014-04-30 03:15 - 00000000 ____D () C:\Program Files (x86)\TuneUp Utilities 2013
2014-04-14 23:31 - 2014-04-14 23:32 - 28181408 _____ (TuneUp Software) C:\Users\Alexander Hofer\Desktop\TuneUpUtilities2013_de-DE.exe
2014-04-14 21:34 - 2014-04-14 21:34 - 00074703 _____ () C:\Windows\SysWOW64\mfc45.dll
2014-04-12 16:57 - 2014-04-30 03:12 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Exploit
2014-04-12 16:57 - 2014-04-12 16:57 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Exploit
2014-04-12 16:46 - 2014-04-12 16:46 - 12589848 _____ (Malwarebytes Corp.) C:\Users\Alexander Hofer\Downloads\mbar-1.07.0.1009.exe
2014-04-12 16:42 - 2014-04-30 03:35 - 00000000 ____D () C:\Users\Alexander Hofer\Downloads\mbam-chameleon-1.62.1.1000
2014-04-12 16:39 - 2014-04-12 16:40 - 01440846 _____ () C:\Users\Alexander Hofer\Downloads\mbam-chameleon-1.62.1.1000.zip
2014-04-11 20:07 - 2014-04-30 03:34 - 00000000 ____D () C:\Users\Alexander Hofer\AppData\Roaming\Zattoo
2014-04-11 20:07 - 2014-04-30 03:33 - 00000000 ____D () C:\Users\Alexander Hofer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zattoo Europa AG
2014-04-11 20:07 - 2014-04-11 20:07 - 00000346 _____ () C:\Users\Alexander Hofer\Desktop\Zattoo Live TV.appref-ms
2014-04-11 20:04 - 2014-04-30 03:16 - 00000000 ____D () C:\ProgramData\Package Cache
2014-04-11 20:03 - 2014-04-11 20:03 - 00488160 _____ () C:\Users\Alexander Hofer\Downloads\Zattoo-5.0.1.exe
2014-04-10 21:43 - 2014-04-30 03:34 - 00000000 ____D () C:\Users\Alexander Hofer\AppData\Roaming\Uniblue
2014-04-10 21:43 - 2014-04-18 13:45 - 00000000 ____D () C:\Program Files (x86)\Uniblue
2014-04-10 21:42 - 2014-04-30 03:34 - 00000000 ____D () C:\Users\Alexander Hofer\AppData\Roaming\VOPackage
2014-04-10 21:42 - 2014-04-30 03:13 - 00000000 ____D () C:\Program Files (x86)\NewPlayer
2014-04-10 21:42 - 2014-04-10 21:42 - 00000000 ____D () C:\Users\Alexander Hofer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VOPackage
2014-04-10 19:35 - 2014-04-10 19:35 - 00016945 _____ () C:\Users\Alexander Hofer\Desktop\hs_err_pid16820.log
2014-04-10 18:51 - 2014-04-10 18:52 - 34718824 _____ (Opera Software ASA) C:\Users\Alexander Hofer\Downloads\Opera_20.0.1387.91_Setup.exe
2014-04-10 17:50 - 2014-04-10 17:50 - 00000000 __SHD () C:\Users\Alexander Hofer\AppData\Local\EmieUserList
2014-04-10 17:50 - 2014-04-10 17:50 - 00000000 __SHD () C:\Users\Alexander Hofer\AppData\Local\EmieSiteList
2014-04-10 03:04 - 2014-03-06 11:31 - 00004096 ____N (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-04-10 03:04 - 2014-03-06 10:57 - 00048640 ____N (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-04-10 03:04 - 2014-03-06 10:29 - 00111616 ____N (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-04-10 03:04 - 2014-03-06 10:28 - 00752640 ____N (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-04-10 03:04 - 2014-03-06 10:15 - 00940032 ____N (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-04-10 03:04 - 2014-03-06 10:11 - 05784064 ____N (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-04-10 03:04 - 2014-03-06 10:01 - 00051200 ____N (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-04-10 03:04 - 2014-03-06 09:56 - 00038400 ____N (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-04-10 03:04 - 2014-03-06 09:46 - 04254720 ____N (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-04-10 03:04 - 2014-03-06 09:36 - 00592896 ____N (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-04-10 03:04 - 2014-03-06 09:13 - 00032256 ____N (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
==================== One Month Modified Files and Folders =======
2014-04-30 17:07 - 2014-04-30 17:07 - 00000000 ____D () C:\Users\Alexander Hofer\Desktop\FRST-OlderVersion
2014-04-30 17:07 - 2014-04-22 21:54 - 00019390 _____ () C:\Users\Alexander Hofer\Desktop\FRST.txt
2014-04-30 17:07 - 2014-04-19 15:05 - 02060800 _____ (Farbar) C:\Users\Alexander Hofer\Desktop\FRST64.exe
2014-04-30 17:07 - 2014-04-17 19:28 - 00000000 ____D () C:\FRST
2014-04-30 16:46 - 2014-04-30 03:55 - 00482173 _____ () C:\Windows\WindowsUpdate.log
2014-04-30 16:46 - 2011-04-12 09:43 - 00699370 _____ () C:\Windows\system32\perfh007.dat
2014-04-30 16:46 - 2011-04-12 09:43 - 00149220 _____ () C:\Windows\system32\perfc007.dat
2014-04-30 16:46 - 2009-07-14 07:13 - 01619832 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-04-30 16:40 - 2014-04-30 03:01 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-04-30 16:40 - 2013-11-29 18:23 - 00000000 ____D () C:\avast! sandbox
2014-04-30 16:40 - 2013-11-01 01:47 - 00000000 ____D () C:\ProgramData\AVAST Software
2014-04-30 16:40 - 2010-11-21 05:47 - 00458340 _____ () C:\Windows\PFRO.log
2014-04-30 16:40 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-04-30 16:40 - 2009-07-14 06:51 - 00789282 _____ () C:\Windows\setupact.log
2014-04-30 07:45 - 2009-07-14 06:45 - 00029024 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-04-30 07:45 - 2009-07-14 06:45 - 00029024 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-04-30 07:36 - 2012-04-02 16:36 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-04-30 05:59 - 2011-11-09 18:52 - 00000000 ____D () C:\Program Files (x86)\Opera
2014-04-30 05:52 - 2012-03-12 03:41 - 00001178 _____ () C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-4113284352-1378585713-2786085383-1000UA.job
2014-04-30 04:49 - 2014-04-30 04:46 - 88882192 _____ (AVAST Software) C:\Users\Public\Desktop\avast_free_antivirus_setup[1].exe
2014-04-30 04:30 - 2014-04-30 04:30 - 00000000 ____D () C:\Users\Alexander Hofer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Bluetooth-Geräte
2014-04-30 04:29 - 2011-11-10 00:12 - 00000000 ____D () C:\Users\Alexander Hofer\AppData\Roaming\Skype
2014-04-30 04:25 - 2014-04-30 04:21 - 01594296 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI
2014-04-30 04:13 - 2014-04-30 04:13 - 00075216 _____ () C:\Users\Alexander Hofer\AppData\Local\GDIPFONTCACHEV1.DAT
2014-04-30 04:10 - 2014-04-30 04:10 - 00001443 _____ () C:\Users\Alexander Hofer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-04-30 04:10 - 2014-04-30 04:10 - 00001409 _____ () C:\Users\Alexander Hofer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk
2014-04-30 04:10 - 2011-11-03 21:03 - 00000000 ___RD () C:\Users\Alexander Hofer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-04-30 04:10 - 2011-11-03 21:03 - 00000000 ___RD () C:\Users\Alexander Hofer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-04-30 04:10 - 2009-07-14 07:09 - 00000000 ____D () C:\Windows\System32\Tasks\WPD
2014-04-30 04:09 - 2014-04-30 04:09 - 00000020 ___SH () C:\Users\Alexander Hofer\ntuser.ini
2014-04-30 04:09 - 2014-04-30 03:02 - 00000000 ____D () C:\Users\Alexander Hofer
2014-04-30 04:08 - 2014-04-30 04:08 - 00000000 _SHDL () C:\Users\Public\Documents\Eigene Musik
2014-04-30 04:08 - 2014-04-30 04:08 - 00000000 _SHDL () C:\Users\Public\Documents\Eigene Bilder
2014-04-30 04:08 - 2014-04-30 04:08 - 00000000 _SHDL () C:\Users\Default\Vorlagen
2014-04-30 04:08 - 2014-04-30 04:08 - 00000000 _SHDL () C:\Users\Default\Startmenü
2014-04-30 04:08 - 2014-04-30 04:08 - 00000000 _SHDL () C:\Users\Default\Netzwerkumgebung
2014-04-30 04:08 - 2014-04-30 04:08 - 00000000 _SHDL () C:\Users\Default\Lokale Einstellungen
2014-04-30 04:08 - 2014-04-30 04:08 - 00000000 _SHDL () C:\Users\Default\Eigene Dateien
2014-04-30 04:08 - 2014-04-30 04:08 - 00000000 _SHDL () C:\Users\Default\Druckumgebung
2014-04-30 04:08 - 2014-04-30 04:08 - 00000000 _SHDL () C:\Users\Default\Documents\Eigene Musik
2014-04-30 04:08 - 2014-04-30 04:08 - 00000000 _SHDL () C:\Users\Default\Documents\Eigene Bilder
2014-04-30 04:08 - 2014-04-30 04:08 - 00000000 _SHDL () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-04-30 04:08 - 2014-04-30 04:08 - 00000000 _SHDL () C:\Users\Default\AppData\Local\Verlauf
2014-04-30 04:08 - 2014-04-30 04:08 - 00000000 _SHDL () C:\Users\Default\AppData\Local\Anwendungsdaten
2014-04-30 04:08 - 2014-04-30 04:08 - 00000000 _SHDL () C:\Users\Default\Anwendungsdaten
2014-04-30 04:08 - 2014-04-30 04:08 - 00000000 _SHDL () C:\Users\Default User\Documents\Eigene Musik
2014-04-30 04:08 - 2014-04-30 04:08 - 00000000 _SHDL () C:\Users\Default User\Documents\Eigene Bilder
2014-04-30 04:08 - 2014-04-30 04:08 - 00000000 _SHDL () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-04-30 04:08 - 2014-04-30 04:08 - 00000000 _SHDL () C:\Users\Default User\AppData\Local\Verlauf
2014-04-30 04:08 - 2014-04-30 04:08 - 00000000 _SHDL () C:\Users\Default User\AppData\Local\Anwendungsdaten
2014-04-30 04:08 - 2014-04-30 04:08 - 00000000 _SHDL () C:\ProgramData\Vorlagen
2014-04-30 04:08 - 2014-04-30 04:08 - 00000000 _SHDL () C:\ProgramData\Startmenü
2014-04-30 04:08 - 2014-04-30 04:08 - 00000000 _SHDL () C:\ProgramData\Microsoft\Windows\Start Menu\Programme
2014-04-30 04:08 - 2014-04-30 04:08 - 00000000 _SHDL () C:\ProgramData\Favoriten
2014-04-30 04:08 - 2014-04-30 04:08 - 00000000 _SHDL () C:\ProgramData\Dokumente
2014-04-30 04:08 - 2014-04-30 04:08 - 00000000 _SHDL () C:\ProgramData\Anwendungsdaten
2014-04-30 04:08 - 2014-04-30 04:08 - 00000000 _SHDL () C:\Program Files\Gemeinsame Dateien
2014-04-30 04:08 - 2014-04-30 04:08 - 00000000 __SHD () C:\Recovery
2014-04-30 04:08 - 2009-07-14 05:20 - 00000000 __RHD () C:\Users\Default
2014-04-30 04:08 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\Recovery
2014-04-30 04:08 - 2009-07-14 05:20 - 00000000 ____D () C:\Program Files\Windows NT
2014-04-30 04:03 - 2009-07-14 07:32 - 00000000 ____D () C:\Windows\system32\restore
2014-04-30 03:59 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\rescache
2014-04-30 03:57 - 2009-07-14 07:38 - 00025600 ___SH () C:\Windows\system32\config\BCD-Template.LOG
2014-04-30 03:57 - 2009-07-14 07:32 - 00028672 _____ () C:\Windows\system32\config\BCD-Template
2014-04-30 03:57 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\oobe
2014-04-30 03:55 - 2014-04-30 03:55 - 00262144 _____ () C:\Windows\system32\config\userdiff
2014-04-30 03:55 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\Registration
2014-04-30 03:43 - 2014-04-30 01:58 - 00006155 _____ () C:\Windows\comsetup.log
2014-04-30 03:43 - 2009-07-14 06:51 - 00008533 _____ () C:\Windows\setuperr.log
2014-04-30 03:41 - 2014-04-30 03:41 - 00022960 _____ () C:\Windows\system32\emptyregdb.dat
2014-04-30 03:40 - 2012-02-04 02:36 - 00000000 ____D () C:\Windows\System32\Tasks\OfficeSoftwareProtectionPlatform
2014-04-30 03:40 - 2011-08-08 05:53 - 00000000 ____D () C:\Windows\System32\Tasks\Sony Corporation
2014-04-30 03:38 - 2009-07-14 06:45 - 00330600 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-04-30 03:36 - 2014-04-30 03:36 - 00000000 ____D () C:\Users\Default\AppData\Roaming\TuneUp Software
2014-04-30 03:36 - 2014-04-30 03:36 - 00000000 ____D () C:\Users\Default\AppData\Roaming\Macromedia
2014-04-30 03:36 - 2014-04-30 03:36 - 00000000 ____D () C:\Users\Default User\AppData\Roaming\TuneUp Software
2014-04-30 03:36 - 2014-04-30 03:36 - 00000000 ____D () C:\Users\Default User\AppData\Roaming\Macromedia
2014-04-30 03:36 - 2011-11-06 21:26 - 00000000 ____D () C:\Users\Alexander Hofer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2014-04-30 03:36 - 2009-07-14 06:57 - 00001547 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2014-04-30 03:36 - 2009-07-14 06:46 - 00005157 _____ () C:\Windows\DtcInstall.log
2014-04-30 03:36 - 2009-07-14 05:20 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-04-30 03:36 - 2009-07-14 05:20 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-04-30 03:36 - 2009-07-14 05:20 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-04-30 03:36 - 2009-07-14 05:20 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-04-30 03:35 - 2014-04-12 16:42 - 00000000 ____D () C:\Users\Alexander Hofer\Downloads\mbam-chameleon-1.62.1.1000
2014-04-30 03:35 - 2014-02-24 20:18 - 00000000 ____D () C:\Users\Alexander Hofer\Documents\PKR
2014-04-30 03:35 - 2014-01-21 18:54 - 00000000 ____D () C:\Users\Alexander Hofer\Documents\Wochenberichte
2014-04-30 03:35 - 2013-10-31 01:43 - 00000000 ____D () C:\Users\Alexander Hofer\AppData\Roaming\Zuiha
2014-04-30 03:35 - 2013-07-18 01:03 - 00000000 ____D () C:\Users\Alexander Hofer\Desktop\Tor Browser
2014-04-30 03:35 - 2013-03-22 22:29 - 00000000 ____D () C:\Users\Alexander Hofer\Downloads\Gameforge Live
2014-04-30 03:35 - 2013-02-18 16:38 - 00000000 ____D () C:\Users\Alexander Hofer\Desktop\preferences
2014-04-30 03:35 - 2012-12-18 18:58 - 00000000 ____D () C:\Users\Alexander Hofer\Tracing
2014-04-30 03:35 - 2012-11-20 18:28 - 00000000 ____D () C:\Users\Alexander Hofer\Documents\888poker
2014-04-30 03:35 - 2012-10-18 18:36 - 00000000 ____D () C:\Users\Alexander Hofer\Documents\ICQ
2014-04-30 03:35 - 2012-01-11 20:21 - 00000000 ____D () C:\Users\Alexander Hofer\Documents\Sony PMB
2014-04-30 03:35 - 2011-11-03 21:03 - 00000000 ____D () C:\Users\Alexander Hofer\Documents\Bluetooth Folder
2014-04-30 03:34 - 2014-04-21 21:49 - 00000000 ____D () C:\Users\Alexander Hofer\AppData\Roaming\Security System 2
2014-04-30 03:34 - 2014-04-11 20:07 - 00000000 ____D () C:\Users\Alexander Hofer\AppData\Roaming\Zattoo
2014-04-30 03:34 - 2014-04-10 21:43 - 00000000 ____D () C:\Users\Alexander Hofer\AppData\Roaming\Uniblue
2014-04-30 03:34 - 2014-04-10 21:42 - 00000000 ____D () C:\Users\Alexander Hofer\AppData\Roaming\VOPackage
2014-04-30 03:34 - 2013-11-01 09:13 - 00000000 ____D () C:\Users\Alexander Hofer\AppData\Roaming\Yzirxa
2014-04-30 03:34 - 2013-11-01 09:13 - 00000000 ____D () C:\Users\Alexander Hofer\AppData\Roaming\Ypexly
2014-04-30 03:34 - 2013-11-01 01:34 - 00000000 ____D () C:\Users\Alexander Hofer\AppData\Roaming\Ummuy
2014-04-30 03:34 - 2013-10-31 21:45 - 00000000 ____D () C:\Users\Alexander Hofer\AppData\Roaming\Qyuk
2014-04-30 03:34 - 2013-10-31 21:43 - 00000000 ____D () C:\Users\Alexander Hofer\AppData\Roaming\Ywfe
2014-04-30 03:34 - 2013-10-31 17:43 - 00000000 ____D () C:\Users\Alexander Hofer\AppData\Roaming\Ryf
2014-04-30 03:34 - 2013-10-31 17:35 - 00000000 ____D () C:\Users\Alexander Hofer\AppData\Roaming\Wuqyab
2014-04-30 03:34 - 2013-10-31 17:35 - 00000000 ____D () C:\Users\Alexander Hofer\AppData\Roaming\Ulica
2014-04-30 03:34 - 2013-10-30 17:42 - 00000000 ____D () C:\Users\Alexander Hofer\AppData\Roaming\Yztuo
2014-04-30 03:34 - 2013-10-30 02:29 - 00000000 ____D () C:\Users\Alexander Hofer\AppData\Roaming\Uvuco
2014-04-30 03:34 - 2013-10-30 02:29 - 00000000 ____D () C:\Users\Alexander Hofer\AppData\Roaming\Peri
2014-04-30 03:34 - 2013-10-29 23:29 - 00000000 ____D () C:\Users\Alexander Hofer\AppData\Roaming\Qyerbu
2014-04-30 03:34 - 2013-10-29 18:29 - 00000000 ____D () C:\Users\Alexander Hofer\AppData\Roaming\Qair
2014-04-30 03:34 - 2013-10-28 17:54 - 00000000 ____D () C:\Users\Alexander Hofer\AppData\Roaming\Ypah
2014-04-30 03:34 - 2013-10-28 17:51 - 00000000 ____D () C:\Users\Alexander Hofer\AppData\Roaming\Yflao
2014-04-30 03:34 - 2013-10-27 15:22 - 00000000 ____D () C:\Users\Alexander Hofer\AppData\Roaming\Uqavx
2014-04-30 03:34 - 2013-10-27 08:44 - 00000000 ____D () C:\Users\Alexander Hofer\AppData\Roaming\Uzys
2014-04-30 03:34 - 2013-10-27 08:44 - 00000000 ____D () C:\Users\Alexander Hofer\AppData\Roaming\Uchyga
2014-04-30 03:34 - 2013-10-27 00:46 - 00000000 ____D () C:\Users\Alexander Hofer\AppData\Roaming\Ybeso
2014-04-30 03:34 - 2013-10-27 00:43 - 00000000 ____D () C:\Users\Alexander Hofer\AppData\Roaming\Yrate
2014-04-30 03:34 - 2013-10-26 16:43 - 00000000 ____D () C:\Users\Alexander Hofer\AppData\Roaming\Yzug
2014-04-30 03:34 - 2013-10-26 12:05 - 00000000 ____D () C:\Users\Alexander Hofer\AppData\Roaming\Yzbeac
2014-04-30 03:34 - 2013-10-26 00:43 - 00000000 ____D () C:\Users\Alexander Hofer\AppData\Roaming\Tynuuv
2014-04-30 03:34 - 2013-10-25 16:42 - 00000000 ____D () C:\Users\Alexander Hofer\AppData\Roaming\Radu
2014-04-30 03:34 - 2013-06-16 12:57 - 00000000 ____D () C:\Users\Alexander Hofer\AppData\Roaming\TuneUp Software
2014-04-30 03:34 - 2012-11-20 18:28 - 00000000 ____D () C:\Users\Alexander Hofer\AppData\Roaming\PacificPoker
2014-04-30 03:34 - 2012-07-02 16:34 - 00000000 ____D () C:\Users\Alexander Hofer\AppData\Roaming\TeamViewer
2014-04-30 03:34 - 2012-06-14 00:19 - 00000000 ____D () C:\Users\Alexander Hofer\AppData\Roaming\xmldm
2014-04-30 03:34 - 2012-02-04 02:36 - 00000000 ____D () C:\Users\Alexander Hofer\AppData\Roaming\SoftGrid Client
2014-04-30 03:34 - 2011-11-23 19:10 - 00000000 ____D () C:\Users\Alexander Hofer\AppData\Roaming\vlc
2014-04-30 03:34 - 2011-11-04 11:36 - 00000000 ____D () C:\Users\Alexander Hofer\AppData\Roaming\XSManager
2014-04-30 03:34 - 2011-11-03 21:01 - 00000000 ____D () C:\Users\Alexander Hofer\AppData\Roaming\Sony Corporation
2014-04-30 03:33 - 2014-04-29 23:55 - 00000000 ___RD () C:\Users\Alexander Hofer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BT Devices
2014-04-30 03:33 - 2014-04-29 22:32 - 00000000 ____D () C:\Users\Alexander Hofer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows 7 USB DVD Download Tool
2014-04-30 03:33 - 2014-04-11 20:07 - 00000000 ____D () C:\Users\Alexander Hofer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zattoo Europa AG
2014-04-30 03:33 - 2014-03-16 14:11 - 00000000 ____D () C:\Users\Alexander Hofer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\William Hill Poker Coach
2014-04-30 03:33 - 2013-11-14 18:53 - 00000000 ____D () C:\Users\Alexander Hofer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Hands Videos app
2014-04-30 03:33 - 2013-10-31 01:43 - 00000000 ____D () C:\Users\Alexander Hofer\AppData\Roaming\Mauqu
2014-04-30 03:33 - 2013-10-30 17:43 - 00000000 ____D () C:\Users\Alexander Hofer\AppData\Roaming\Nuucfi
2014-04-30 03:33 - 2013-10-29 23:29 - 00000000 ____D () C:\Users\Alexander Hofer\AppData\Roaming\Okfa
2014-04-30 03:33 - 2013-10-29 01:51 - 00000000 ____D () C:\Users\Alexander Hofer\AppData\Roaming\Mofy
2014-04-30 03:33 - 2013-10-27 00:43 - 00000000 ____D () C:\Users\Alexander Hofer\AppData\Roaming\Ofeq
2014-04-30 03:33 - 2013-10-26 16:43 - 00000000 ____D () C:\Users\Alexander Hofer\AppData\Roaming\Merady
2014-04-30 03:33 - 2013-10-26 08:44 - 00000000 ____D () C:\Users\Alexander Hofer\AppData\Roaming\Oqxyty
2014-04-30 03:33 - 2013-10-26 00:43 - 00000000 ____D () C:\Users\Alexander Hofer\AppData\Roaming\Nagai
2014-04-30 03:33 - 2013-06-03 00:17 - 00000000 ____D () C:\Users\Alexander Hofer\AppData\Roaming\noc
2014-04-30 03:33 - 2013-02-06 00:03 - 00000000 ____D () C:\Users\Alexander Hofer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Veoh Networks, Inc
2014-04-30 03:33 - 2012-12-18 18:56 - 00000000 ____D () C:\Users\Alexander Hofer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Movie2KDownloader.com
2014-04-30 03:33 - 2012-11-27 18:17 - 00000000 ____D () C:\Users\Alexander Hofer\AppData\Roaming\Mozilla
2014-04-30 03:33 - 2012-10-18 17:57 - 00000000 ____D () C:\Users\Alexander Hofer\AppData\Roaming\OpenOffice.org
2014-04-30 03:33 - 2012-01-11 20:21 - 00000000 ____D () C:\Users\Alexander Hofer\AppData\Roaming\NVIDIA
2014-04-30 03:33 - 2011-11-09 18:53 - 00000000 ____D () C:\Users\Alexander Hofer\AppData\Roaming\Opera
2014-04-30 03:33 - 2011-11-08 19:56 - 00000000 ____D () C:\Users\Alexander Hofer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Club 7 Poker
2014-04-30 03:32 - 2014-01-04 02:28 - 00000000 ____D () C:\Users\Alexander Hofer\AppData\Local\WilliamHillPokerCoach
2014-04-30 03:32 - 2013-10-28 17:51 - 00000000 ____D () C:\Users\Alexander Hofer\AppData\Roaming\Illy
2014-04-30 03:32 - 2013-10-28 17:51 - 00000000 ____D () C:\Users\Alexander Hofer\AppData\Roaming\Deydwe
2014-04-30 03:32 - 2013-10-25 16:40 - 00000000 ____D () C:\Users\Alexander Hofer\AppData\Roaming\Alorso
2014-04-30 03:32 - 2013-06-16 14:07 - 00000000 ____D () C:\Users\Alexander Hofer\AppData\Roaming\AVG
2014-04-30 03:32 - 2013-05-17 11:03 - 00000000 ____D () C:\Users\Alexander Hofer\AppData\Roaming\iolo
2014-04-30 03:32 - 2013-05-04 17:33 - 00000000 ____D () C:\Users\Alexander Hofer\AppData\Roaming\Apple Computer
2014-04-30 03:32 - 2013-04-22 19:42 - 00000000 ____D () C:\Users\Alexander Hofer\AppData\Roaming\DVDVideoSoft
2014-04-30 03:32 - 2013-04-16 18:09 - 00000000 ____D () C:\Users\Alexander Hofer\AppData\Roaming\Imubci
2014-04-30 03:32 - 2013-02-19 17:54 - 00000000 ____D () C:\Users\Alexander Hofer\AppData\Roaming\FileZilla
2014-04-30 03:32 - 2012-10-23 20:19 - 00000000 ____D () C:\Users\Alexander Hofer\AppData\Roaming\FastStone
2014-04-30 03:32 - 2012-07-02 16:39 - 00000000 ____D () C:\Users\Alexander Hofer\AppData\Roaming\Help
2014-04-30 03:32 - 2012-07-02 16:34 - 00000000 ____D () C:\Users\Alexander Hofer\AppData\Roaming\Apple
2014-04-30 03:32 - 2012-06-14 00:19 - 00000000 ____D () C:\Users\Alexander Hofer\AppData\Roaming\11029
2014-04-30 03:32 - 2012-05-05 23:35 - 00000000 ____D () C:\Users\Alexander Hofer\AppData\Local\Zattoo
2014-04-30 03:32 - 2012-03-09 20:55 - 00000000 ____D () C:\Users\Alexander Hofer\AppData\Roaming\ArcSoft
2014-04-30 03:32 - 2012-02-01 23:28 - 00000000 ____D () C:\Users\Alexander Hofer\AppData\Roaming\Malwarebytes
2014-04-30 03:32 - 2012-01-24 18:49 - 00000000 ____D () C:\Users\Alexander Hofer\AppData\Roaming\Auslogics
2014-04-30 03:32 - 2011-11-15 22:08 - 00000000 ____D () C:\Users\Alexander Hofer\AppData\Roaming\DivX
2014-04-30 03:32 - 2011-11-08 19:33 - 00000000 ____D () C:\Users\Alexander Hofer\AppData\Roaming\Google
2014-04-30 03:32 - 2011-11-08 19:01 - 00000000 ____D () C:\Users\Alexander Hofer\AppData\Roaming\ICQ
2014-04-30 03:32 - 2011-11-04 05:07 - 00000000 ____D () C:\Users\Alexander Hofer\AppData\Roaming\GameRanger
2014-04-30 03:32 - 2011-11-04 00:47 - 00000000 ____D () C:\Users\Alexander Hofer\AppData\Roaming\Adobe
2014-04-30 03:32 - 2011-11-03 21:03 - 00000000 ____D () C:\Users\Alexander Hofer\AppData\Roaming\Intel Corporation
2014-04-30 03:32 - 2011-11-03 21:03 - 00000000 ____D () C:\Users\Alexander Hofer\AppData\Roaming\Atheros
2014-04-30 03:32 - 2011-11-03 21:01 - 00000000 ____D () C:\Users\Alexander Hofer\AppData\Roaming\Macromedia
2014-04-30 03:31 - 2014-02-03 19:12 - 00000000 ____D () C:\Users\Alexander Hofer\AppData\Local\Titan Poker
2014-04-30 03:31 - 2013-11-14 18:52 - 00000000 ____D () C:\Users\Alexander Hofer\AppData\Local\TitanPokerStudio
2014-04-30 03:31 - 2011-11-04 11:40 - 00000000 ____D () C:\Users\Alexander Hofer\AppData\Local\updater4g
2014-04-30 03:31 - 2011-11-03 21:02 - 00000000 ____D () C:\Users\Alexander Hofer\AppData\Local\VirtualStore
2014-04-30 03:30 - 2014-04-21 21:49 - 00000000 ____D () C:\Users\Alexander Hofer\AppData\Local\SearchProtect
2014-04-30 03:30 - 2014-03-16 21:35 - 00000000 ____D () C:\Users\Alexander Hofer\AppData\Local\PokerTracker 4
2014-04-30 03:30 - 2014-03-10 18:27 - 00000000 ____D () C:\Users\Alexander Hofer\AppData\Local\Skype
2014-04-30 03:30 - 2013-02-18 16:07 - 00000000 ____D () C:\Users\Alexander Hofer\AppData\Local\The_StealthNet_Team
2014-04-30 03:30 - 2012-12-18 18:56 - 00000000 ____D () C:\Users\Alexander Hofer\AppData\Local\PutLockerDownloader
2014-04-30 03:30 - 2012-04-03 22:18 - 00000000 ____D () C:\Users\Alexander Hofer\AppData\Local\PokerStars.EU
2014-04-30 03:30 - 2012-02-04 02:36 - 00000000 ____D () C:\Users\Alexander Hofer\AppData\Local\SoftGrid Client
2014-04-30 03:29 - 2013-12-10 15:37 - 00000000 ____D () C:\Users\Alexander Hofer\AppData\Local\Kesemoholdings_Limited
2014-04-30 03:29 - 2013-09-06 22:21 - 00000000 ____D () C:\Users\Alexander Hofer\AppData\Local\Citadel Commerce
2014-04-30 03:29 - 2013-07-21 00:26 - 00000000 ____D () C:\Users\Alexander Hofer\AppData\Local\DEdjcBAJ
2014-04-30 03:29 - 2013-06-16 12:49 - 00000000 ____D () C:\Users\Alexander Hofer\AppData\Local\MFAData
2014-04-30 03:29 - 2013-04-24 17:41 - 00000000 ____D () C:\Users\Alexander Hofer\AppData\Local\iLivid
2014-04-30 03:29 - 2013-04-22 19:29 - 00000000 ____D () C:\Users\Alexander Hofer\AppData\Local\Conduit
2014-04-30 03:29 - 2013-03-28 23:20 - 00000000 ____D () C:\Users\Alexander Hofer\AppData\Local\Boss Media
2014-04-30 03:29 - 2013-03-24 03:48 - 00000000 ____D () C:\Users\Alexander Hofer\AppData\Local\Chromium
2014-04-30 03:29 - 2013-03-22 22:29 - 00000000 ____D () C:\Users\Alexander Hofer\AppData\Local\Gameforge4d
2014-04-30 03:29 - 2013-02-18 09:14 - 00000000 ____D () C:\Users\Alexander Hofer\AppData\Local\FullTiltPoker.eu
2014-04-30 03:29 - 2012-12-31 04:32 - 00000000 ____D () C:\Users\Alexander Hofer\AppData\Local\cache
2014-04-30 03:29 - 2012-12-26 06:05 - 00000000 ____D () C:\Users\Alexander Hofer\AppData\Local\FullTiltPoker
2014-04-30 03:29 - 2012-09-15 05:05 - 00000000 ____D () C:\Users\Alexander Hofer\AppData\Local\Atheros
2014-04-30 03:29 - 2012-07-04 20:45 - 00000000 ____D () C:\Users\Alexander Hofer\AppData\Local\Macromedia
2014-04-30 03:29 - 2012-03-12 03:41 - 00000000 ____D () C:\Users\Alexander Hofer\AppData\Local\Facebook
2014-04-30 03:29 - 2012-02-17 02:48 - 00000000 ____D () C:\Users\Alexander Hofer\AppData\Local\DDMSettings
2014-04-30 03:29 - 2011-11-09 18:53 - 00000000 ____D () C:\Users\Alexander Hofer\AppData\Local\Opera
2014-04-30 03:29 - 2011-11-08 19:41 - 00000000 ____D () C:\Users\Alexander Hofer\AppData\Local\Mozilla
2014-04-30 03:29 - 2011-11-08 19:31 - 00000000 ____D () C:\Users\Alexander Hofer\AppData\Local\Google
2014-04-30 03:29 - 2011-11-04 12:22 - 00000000 ____D () C:\Users\Alexander Hofer\AppData\Local\CrashDumps
2014-04-30 03:29 - 2011-11-03 21:03 - 00000000 ____D () C:\Users\Alexander Hofer\AppData\Local\BMExplorer
2014-04-30 03:28 - 2014-04-29 22:32 - 00000000 ____D () C:\Users\Alexander Hofer\AppData\Local\Apps\Windows 7 USB DVD Download Tool
2014-04-30 03:28 - 2013-05-03 09:37 - 00000000 ____D () C:\Users\Alexander Hofer\AppData\Local\Apple Computer
2014-04-30 03:28 - 2013-05-03 09:33 - 00000000 ____D () C:\Users\Alexander Hofer\AppData\Local\Apple
2014-04-30 03:28 - 2012-06-06 01:16 - 00000000 ____D () C:\Users\Alexander Hofer\AppData\Local\Apps\2.0
2014-04-30 03:28 - 2012-03-09 20:55 - 00000000 ____D () C:\Users\Alexander Hofer\AppData\Local\ArcSoft
2014-04-30 03:28 - 2011-11-15 05:22 - 00000000 ____D () C:\Users\Alexander Hofer\AppData\Local\Ares
2014-04-30 03:28 - 2011-11-04 11:26 - 00000000 ____D () C:\Users\Alexander Hofer\AppData\Local\Adobe
2014-04-30 03:20 - 2013-05-27 07:49 - 00000000 ____D () C:\Windows\SysWOW64\Hotspot Shield
2014-04-30 03:20 - 2011-11-03 21:09 - 00000000 ____D () C:\Windows\SysWOW64\VAIO Startup Setting Tool
2014-04-30 03:20 - 2011-08-08 06:10 - 00000000 ____D () C:\Windows\SysWOW64\Macromed
2014-04-30 03:20 - 2011-08-08 06:06 - 00000000 ____D () C:\Windows\uk
2014-04-30 03:20 - 2011-08-08 06:06 - 00000000 ____D () C:\Windows\tr
2014-04-30 03:20 - 2011-08-08 05:51 - 00000000 ____D () C:\Windows\SysWOW64\sda
2014-04-30 03:20 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\SysWOW64\zh-HK
2014-04-30 03:20 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\SysWOW64\tr-TR
2014-04-30 03:20 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\SysWOW64\oobe
2014-04-30 03:19 - 2012-03-11 01:48 - 00000000 ____D () C:\Windows\Sun
2014-04-30 03:19 - 2012-02-27 12:30 - 00000000 ____D () C:\Windows\system32\Macromed
2014-04-30 03:19 - 2011-08-08 06:06 - 00000000 ____D () C:\Windows\sv
2014-04-30 03:19 - 2011-08-08 06:06 - 00000000 ____D () C:\Windows\sk
2014-04-30 03:19 - 2011-08-08 06:06 - 00000000 ____D () C:\Windows\ru
2014-04-30 03:19 - 2011-08-08 06:06 - 00000000 ____D () C:\Windows\ro
2014-04-30 03:19 - 2011-08-08 06:06 - 00000000 ____D () C:\Windows\pl
2014-04-30 03:19 - 2011-08-08 06:06 - 00000000 ____D () C:\Windows\no
2014-04-30 03:19 - 2011-08-08 06:06 - 00000000 ____D () C:\Windows\nl
2014-04-30 03:19 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\zh-HK
2014-04-30 03:19 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\tr-TR
2014-04-30 03:19 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\sysprep
2014-04-30 03:19 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\NDF
2014-04-30 03:19 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system
2014-04-30 03:19 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\Resources
2014-04-30 03:18 - 2011-08-08 06:06 - 00000000 ____D () C:\Windows\it
2014-04-30 03:18 - 2011-08-08 06:06 - 00000000 ____D () C:\Windows\hu
2014-04-30 03:18 - 2011-02-11 01:01 - 00000000 ____D () C:\Windows\InstDrvs
2014-04-30 03:18 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\LiveKernelReports
2014-04-30 03:17 - 2014-04-19 14:52 - 00000000 ____D () C:\Windows\ERUNT
2014-04-30 03:17 - 2014-04-18 13:31 - 00000000 ____D () C:\Windows\erdnt
2014-04-30 03:17 - 2013-12-10 15:36 - 00000000 ____D () C:\ProgramData\WilliamHillPokerCoach
2014-04-30 03:17 - 2013-08-19 19:22 - 00000000 ____D () C:\ProgramData\TuneUp Software
2014-04-30 03:17 - 2013-08-19 19:20 - 00000000 __SHD () C:\ProgramData\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F}
2014-04-30 03:17 - 2013-06-16 14:06 - 00000000 __SHD () C:\ProgramData\{D1D4879F-2279-49C9-AEBF-3B95C84EAA8F}
2014-04-30 03:17 - 2012-10-23 17:33 - 00000000 ____D () C:\ProgramData\zcaamrjwifqmcme
2014-04-30 03:17 - 2012-09-06 14:20 - 00000000 ____D () C:\ProgramData\uakgfchyatyrgxr
2014-04-30 03:17 - 2012-02-04 04:47 - 00000000 ____D () C:\ProgramData\VirtualizedApplications
2014-04-30 03:17 - 2011-08-08 06:08 - 00000000 ____D () C:\Windows\en
2014-04-30 03:17 - 2011-08-08 06:06 - 00000000 ____D () C:\Windows\fr
2014-04-30 03:17 - 2011-08-08 06:06 - 00000000 ____D () C:\Windows\fi
2014-04-30 03:17 - 2011-08-08 06:06 - 00000000 ____D () C:\Windows\el
2014-04-30 03:17 - 2011-08-08 06:06 - 00000000 ____D () C:\Windows\de
2014-04-30 03:17 - 2011-08-08 06:05 - 00000000 ____D () C:\Windows\da
2014-04-30 03:17 - 2011-08-08 06:05 - 00000000 ____D () C:\Windows\cs
2014-04-30 03:17 - 2011-08-08 06:05 - 00000000 ____D () C:\Windows\bg
2014-04-30 03:17 - 2011-08-08 05:56 - 00000000 ____D () C:\ProgramData\Sony Corporation
2014-04-30 03:17 - 2011-08-08 05:54 - 00000000 ____D () C:\ProgramData\Sun
2014-04-30 03:17 - 2011-04-12 09:54 - 00000000 ___RD () C:\Users\Public\Recorded TV
2014-04-30 03:16 - 2014-04-29 23:34 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2014-04-30 03:16 - 2014-04-11 20:04 - 00000000 ____D () C:\ProgramData\Package Cache
2014-04-30 03:16 - 2014-03-10 18:27 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2014-04-30 03:16 - 2014-02-24 19:40 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PKR
2014-04-30 03:16 - 2013-12-09 03:23 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2014-04-30 03:16 - 2013-06-16 14:06 - 00000000 ____D () C:\ProgramData\AVG
2014-04-30 03:16 - 2013-06-16 12:54 - 00000000 ____D () C:\ProgramData\AVG2013
2014-04-30 03:16 - 2013-06-16 12:49 - 00000000 ____D () C:\ProgramData\MFAData
2014-04-30 03:16 - 2013-05-18 02:32 - 00000000 ____D () C:\ProgramData\Sony
2014-04-30 03:16 - 2013-05-18 02:32 - 00000000 ____D () C:\ProgramData\McAfee Security Scan
2014-04-30 03:16 - 2013-05-17 11:03 - 00000000 __RHD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VAIO Care
2014-04-30 03:16 - 2013-05-17 11:03 - 00000000 ____D () C:\ProgramData\iolo
2014-04-30 03:16 - 2013-04-29 19:37 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sandboxie
2014-04-30 03:16 - 2013-04-22 19:42 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft
2014-04-30 03:16 - 2013-03-29 01:43 - 00000000 ____D () C:\ProgramData\Casino
2014-04-30 03:16 - 2013-03-29 01:41 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CasinoClub
2014-04-30 03:16 - 2013-03-28 23:20 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Casino Club Poker
2014-04-30 03:16 - 2013-03-28 23:20 - 00000000 ____D () C:\ProgramData\Boss Media
2014-04-30 03:16 - 2013-03-22 22:24 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Gameforge Live
2014-04-30 03:16 - 2013-03-14 04:02 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2014-04-30 03:16 - 2013-02-19 17:54 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileZilla FTP Client
2014-04-30 03:16 - 2013-02-18 09:14 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Full Tilt Poker.Eu
2014-04-30 03:16 - 2012-12-26 06:05 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Full Tilt Poker
2014-04-30 03:16 - 2012-11-27 18:17 - 00000000 ____D () C:\ProgramData\Mozilla
2014-04-30 03:16 - 2012-11-20 18:28 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\888poker
2014-04-30 03:16 - 2012-10-23 20:19 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FastStone Capture
2014-04-30 03:16 - 2012-10-18 17:56 - 00000000 ___SD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice.org 3.4.1
2014-04-30 03:16 - 2012-08-22 21:25 - 00000000 ____D () C:\ProgramData\7531CCA952F9B3C0859B9440F875F002
2014-04-30 03:16 - 2012-07-13 22:00 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2014-04-30 03:16 - 2012-05-05 23:34 - 00000000 ____D () C:\Program Files (x86)\Zattoo4
2014-04-30 03:16 - 2012-04-03 22:18 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PokerStars
2014-04-30 03:16 - 2012-02-17 02:43 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DivX Plus
2014-04-30 03:16 - 2012-02-04 02:36 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Starter (Deutsch)
2014-04-30 03:16 - 2012-02-01 23:28 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware
2014-04-30 03:16 - 2012-02-01 23:28 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-04-30 03:16 - 2012-01-14 13:05 - 00000000 ____D () C:\ProgramData\Qualcomm Atheros
2014-04-30 03:16 - 2012-01-12 07:49 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Main
2014-04-30 03:16 - 2011-11-15 22:04 - 00000000 ____D () C:\ProgramData\DivX
2014-04-30 03:16 - 2011-11-08 19:30 - 00000000 ____D () C:\ProgramData\Google
2014-04-30 03:16 - 2011-11-08 19:02 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ICQ7.6
2014-04-30 03:16 - 2011-11-08 14:09 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XSManager
2014-04-30 03:16 - 2011-11-06 21:19 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Games
2014-04-30 03:16 - 2011-11-04 11:36 - 00000000 ____D () C:\Program Files (x86)\XSManager
2014-04-30 03:16 - 2011-08-08 06:45 - 00000000 ____D () C:\ProgramData\Atheros
2014-04-30 03:16 - 2011-08-08 06:42 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sony
2014-04-30 03:16 - 2011-08-08 06:32 - 00000000 ____D () C:\ProgramData\Skype
2014-04-30 03:16 - 2011-08-08 06:29 - 00000000 ___SD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PlayStation Extras
2014-04-30 03:16 - 2011-08-08 06:18 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PMB
2014-04-30 03:16 - 2011-08-08 06:11 - 00000000 ___HD () C:\ProgramData\ArcSoft
2014-04-30 03:16 - 2011-08-08 06:11 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ArcSoft Webcam Suite
2014-04-30 03:16 - 2011-08-08 06:09 - 00000000 ____D () C:\ProgramData\Adobe
2014-04-30 03:16 - 2011-08-08 06:07 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live
2014-04-30 03:16 - 2011-08-08 06:01 - 00000000 ____D () C:\Program Files (x86)\Windows Live
2014-04-30 03:16 - 2011-08-08 05:55 - 00000000 ____D () C:\ProgramData\McAfee
2014-04-30 03:16 - 2011-08-08 05:47 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BT Program
2014-04-30 03:16 - 2011-08-08 05:42 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
2014-04-30 03:15 - 2014-04-25 21:36 - 00000000 ____D () C:\Program Files (x86)\VS Revo Group
2014-04-30 03:15 - 2014-04-17 01:26 - 00000000 ____D () C:\Program Files (x86)\Tbccint
2014-04-30 03:15 - 2014-04-14 23:33 - 00000000 ____D () C:\Program Files (x86)\TuneUp Utilities 2013
2014-04-30 03:15 - 2014-03-10 18:27 - 00000000 ___RD () C:\Program Files (x86)\Skype
2014-04-30 03:15 - 2013-06-16 13:11 - 00000000 ____D () C:\Program Files (x86)\stinger
2014-04-30 03:15 - 2013-05-03 09:34 - 00000000 ____D () C:\Program Files (x86)\QuickTime
2014-04-30 03:15 - 2013-02-06 00:03 - 00000000 ____D () C:\Program Files (x86)\Veoh Networks
2014-04-30 03:15 - 2012-10-15 03:53 - 00000000 ____D () C:\Program Files (x86)\Realtek
2014-04-30 03:15 - 2011-11-23 19:09 - 00000000 ____D () C:\Program Files (x86)\VideoLAN
2014-04-30 03:15 - 2011-08-08 05:53 - 00000000 ____D () C:\Program Files (x86)\Sony
2014-04-30 03:14 - 2014-03-15 08:36 - 00000000 ____D () C:\Program Files (x86)\PSQLINSTALL
2014-04-30 03:14 - 2014-02-24 19:40 - 00000000 ____D () C:\Program Files (x86)\PKR
2014-04-30 03:14 - 2012-11-20 18:28 - 00000000 ____D () C:\Program Files (x86)\PacificPoker
2014-04-30 03:14 - 2012-10-18 17:56 - 00000000 ____D () C:\Program Files (x86)\OpenOffice.org 3
2014-04-30 03:14 - 2012-04-03 22:17 - 00000000 ____D () C:\Program Files (x86)\PokerStars
2014-04-30 03:13 - 2014-04-10 21:42 - 00000000 ____D () C:\Program Files (x86)\NewPlayer
2014-04-30 03:13 - 2014-03-17 03:40 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-04-30 03:13 - 2013-03-14 04:01 - 00000000 ____D () C:\Program Files (x86)\Microsoft Silverlight
2014-04-30 03:13 - 2012-12-18 18:56 - 00000000 ____D () C:\Program Files (x86)\Movie2KDownloader.com
2014-04-30 03:13 - 2012-11-27 18:17 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-04-30 03:13 - 2012-02-04 02:35 - 00000000 ____D () C:\Program Files (x86)\Microsoft Application Virtualization Client
2014-04-30 03:13 - 2011-11-04 04:44 - 00000000 ____D () C:\Program Files (x86)\Microsoft Games
2014-04-30 03:13 - 2011-08-08 06:31 - 00000000 ____D () C:\Program Files (x86)\Nascom
2014-04-30 03:13 - 2011-08-08 06:19 - 00000000 ____D () C:\Program Files (x86)\MSXML 4.0
2014-04-30 03:13 - 2011-08-08 06:16 - 00000000 ____D () C:\Program Files (x86)\Microsoft Office
2014-04-30 03:13 - 2011-08-08 06:05 - 00000000 ____D () C:\Program Files (x86)\Microsoft SQL Server Compact Edition
2014-04-30 03:13 - 2011-08-08 05:50 - 00000000 ____D () C:\Program Files (x86)\NVIDIA Corporation
2014-04-30 03:12 - 2014-04-28 19:39 - 00000000 ____D () C:\Program Files (x86)\ISO to USB
2014-04-30 03:12 - 2014-04-17 18:40 - 00000000 ____D () C:\Program Files (x86)\ImgBurn
2014-04-30 03:12 - 2014-04-16 18:47 - 00000000 ____D () C:\Program Files (x86)\LinuxLive USB Creator
2014-04-30 03:12 - 2014-04-12 16:57 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Exploit
2014-04-30 03:12 - 2013-12-13 02:06 - 00000000 ____D () C:\Program Files (x86)\iPoker Robot
2014-04-30 03:12 - 2012-02-01 23:28 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes' Anti-Malware
2014-04-30 03:12 - 2011-11-08 19:01 - 00000000 ____D () C:\Program Files (x86)\ICQ7.6
2014-04-30 03:12 - 2011-08-08 05:55 - 00000000 ____D () C:\Program Files (x86)\McAfee
2014-04-30 03:12 - 2011-08-08 05:54 - 00000000 ____D () C:\Program Files (x86)\Java
2014-04-30 03:12 - 2011-08-08 05:42 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-04-30 03:12 - 2011-08-08 05:40 - 00000000 ____D () C:\Program Files (x86)\Intel
2014-04-30 03:10 - 2013-04-22 19:29 - 00000000 ____D () C:\Program Files (x86)\Hotspot_Shield
2014-04-30 03:10 - 2013-03-22 22:24 - 00000000 ____D () C:\Program Files (x86)\GameforgeLive
2014-04-30 03:10 - 2011-11-08 19:30 - 00000000 ____D () C:\Program Files (x86)\Google
2014-04-30 03:08 - 2013-02-18 09:13 - 00000000 ____D () C:\Program Files (x86)\Full Tilt Poker.Eu
2014-04-30 03:07 - 2014-04-17 18:12 - 00000000 ____D () C:\Program Files (x86)\CDBurnerXP
2014-04-30 03:07 - 2013-04-22 19:42 - 00000000 ____D () C:\Program Files (x86)\DVDVideoSoft
2014-04-30 03:07 - 2013-03-28 23:20 - 00000000 ____D () C:\Program Files (x86)\Casino Club Poker
2014-04-30 03:07 - 2013-02-19 17:54 - 00000000 ____D () C:\Program Files (x86)\FileZilla FTP Client
2014-04-30 03:07 - 2012-12-26 06:05 - 00000000 ____D () C:\Program Files (x86)\Full Tilt Poker
2014-04-30 03:07 - 2012-10-23 20:19 - 00000000 ____D () C:\Program Files (x86)\FastStone Capture
2014-04-30 03:07 - 2012-02-04 02:07 - 00000000 ____D () C:\Program Files (x86)\eBay
2014-04-30 03:07 - 2011-11-15 22:05 - 00000000 ____D () C:\Program Files (x86)\DivX
2014-04-30 03:07 - 2011-11-08 19:56 - 00000000 ____D () C:\Program Files (x86)\Club7Poker
2014-04-30 03:07 - 2011-08-08 06:28 - 00000000 ____D () C:\Program Files (x86)\Downloaded Installations
2014-04-30 03:06 - 2013-05-03 09:33 - 00000000 ____D () C:\Program Files (x86)\Apple Software Update
2014-04-30 03:06 - 2013-03-29 01:41 - 00000000 ____D () C:\Program Files (x86)\Casino
2014-04-30 03:06 - 2012-01-12 07:48 - 00000000 ____D () C:\Program Files (x86)\Atheros WiFi Driver Installation
2014-04-30 03:06 - 2011-08-08 06:11 - 00000000 ____D () C:\Program Files (x86)\ArcSoft
2014-04-30 03:06 - 2011-08-08 06:09 - 00000000 ____D () C:\Program Files (x86)\Adobe
2014-04-30 03:06 - 2011-08-08 06:00 - 00000000 ____D () C:\Program Files\Windows Live
2014-04-30 03:06 - 2011-08-08 05:53 - 00000000 ____D () C:\Program Files\Sony
2014-04-30 03:06 - 2011-08-08 05:47 - 00000000 ____D () C:\Program Files (x86)\Bluetooth Suite
2014-04-30 03:05 - 2014-04-30 03:01 - 00000000 ____D () C:\Program Files\CONEXANT
2014-04-30 03:05 - 2014-04-30 03:00 - 00000000 ____D () C:\Program Files\NVIDIA Corporation
2014-04-30 03:05 - 2014-04-29 23:34 - 00000000 ____D () C:\Program Files\7-Zip
2014-04-30 03:05 - 2013-04-29 19:37 - 00000000 ____D () C:\Program Files\Sandboxie
2014-04-30 03:05 - 2013-03-14 04:01 - 00000000 ____D () C:\Program Files\Microsoft Silverlight
2014-04-30 03:05 - 2012-07-13 22:00 - 00000000 ____D () C:\Program Files\CCleaner
2014-04-30 03:05 - 2012-02-04 02:35 - 00000000 ____D () C:\Program Files\Microsoft Office
2014-04-30 03:05 - 2011-11-15 22:07 - 00000000 ____D () C:\Program Files\DivX
2014-04-30 03:05 - 2011-08-08 05:53 - 00000000 ____D () C:\Program Files\Java
2014-04-30 03:05 - 2011-08-08 05:53 - 00000000 ____D () C:\Program Files\Common Files\Sony Shared
2014-04-30 03:05 - 2009-07-14 05:20 - 00000000 ____D () C:\Program Files\Common Files\Microsoft Shared
2014-04-30 03:02 - 2014-04-30 03:02 - 00001345 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk
2014-04-30 03:02 - 2014-04-30 03:02 - 00001326 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk
2014-04-30 03:02 - 2014-04-30 03:02 - 00000000 _SHDL () C:\Users\Alexander Hofer\Vorlagen
2014-04-30 03:02 - 2014-04-30 03:02 - 00000000 _SHDL () C:\Users\Alexander Hofer\Startmenü
2014-04-30 03:02 - 2014-04-30 03:02 - 00000000 _SHDL () C:\Users\Alexander Hofer\Netzwerkumgebung
2014-04-30 03:02 - 2014-04-30 03:02 - 00000000 _SHDL () C:\Users\Alexander Hofer\Lokale Einstellungen
2014-04-30 03:02 - 2014-04-30 03:02 - 00000000 _SHDL () C:\Users\Alexander Hofer\Eigene Dateien
2014-04-30 03:02 - 2014-04-30 03:02 - 00000000 _SHDL () C:\Users\Alexander Hofer\Druckumgebung
2014-04-30 03:02 - 2014-04-30 03:02 - 00000000 _SHDL () C:\Users\Alexander Hofer\Documents\Eigene Musik
2014-04-30 03:02 - 2014-04-30 03:02 - 00000000 _SHDL () C:\Users\Alexander Hofer\Documents\Eigene Bilder
2014-04-30 03:02 - 2014-04-30 03:02 - 00000000 _SHDL () C:\Users\Alexander Hofer\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-04-30 03:02 - 2014-04-30 03:02 - 00000000 _SHDL () C:\Users\Alexander Hofer\AppData\Local\Verlauf
2014-04-30 03:02 - 2014-04-30 03:02 - 00000000 _SHDL () C:\Users\Alexander Hofer\AppData\Local\Anwendungsdaten
2014-04-30 03:02 - 2014-04-30 03:02 - 00000000 _SHDL () C:\Users\Alexander Hofer\Anwendungsdaten
2014-04-30 03:02 - 2009-07-14 07:32 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2014-04-30 03:02 - 2009-07-14 05:20 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2014-04-30 03:01 - 2014-04-30 03:01 - 00001355 _____ () C:\Windows\TSSysprep.log
2014-04-30 03:01 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\Help
2014-04-30 03:00 - 2014-04-30 03:00 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_Apfiltr_01009.Wdf
2014-04-30 03:00 - 2014-04-30 03:00 - 00000000 ____D () C:\ProgramData\NVIDIA Corporation
2014-04-30 03:00 - 2014-04-30 03:00 - 00000000 ____D () C:\Program Files\Apoint
2014-04-30 02:24 - 2011-11-03 20:00 - 01764691 _____ () C:\Windows\WindowsUpdate (1).log
2014-04-30 01:48 - 2014-04-29 23:43 - 00002576 _____ () C:\Windows\diagwrn.xml
2014-04-30 01:48 - 2014-04-29 23:43 - 00001890 _____ () C:\Windows\diagerr.xml
2014-04-30 01:43 - 2014-04-30 00:58 - 00000000 ____D () C:\Win 7
2014-04-30 00:00 - 2014-04-29 23:47 - 00002904 _____ () C:\Users\Alexander Hofer\Desktop\Windows-Kompatibilitätsbericht.htm
2014-04-29 23:52 - 2012-03-12 03:41 - 00001156 _____ () C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-4113284352-1378585713-2786085383-1000Core.job
2014-04-29 23:35 - 2013-04-29 19:38 - 00002012 _____ () C:\Windows\Sandboxie.ini
2014-04-29 23:31 - 2014-04-29 23:26 - 01376768 _____ () C:\Users\Alexander Hofer\Downloads\7z920-x64 (1).msi
2014-04-29 23:26 - 2014-04-29 23:26 - 01376768 _____ () C:\Users\Alexander Hofer\Downloads\7z920-x64.msi
2014-04-29 22:32 - 2014-04-29 22:32 - 00002572 _____ () C:\Users\Alexander Hofer\Desktop\Windows 7 USB DVD Download Tool.lnk
2014-04-29 22:32 - 2014-04-29 22:30 - 02721168 _____ (Microsoft Corporation) C:\Users\Alexander Hofer\Downloads\Windows7-USB-DVD1024-tool.exe
2014-04-29 22:22 - 2014-04-29 22:07 - 1010827264 _____ () C:\Users\Alexander Hofer\Downloads\ubuntu-14.04-desktop-amd64.iso
2014-04-28 22:49 - 2014-04-28 22:09 - 3192264704 _____ () C:\Users\Alexander Hofer\Downloads\X15-65741.iso
2014-04-28 21:36 - 2012-04-02 16:36 - 00692400 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-04-28 21:36 - 2012-04-02 16:36 - 00003822 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-04-28 21:36 - 2011-11-11 18:01 - 00070832 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-04-28 21:05 - 2014-04-28 21:02 - 11077632 _____ () C:\Users\Alexander Hofer\Downloads\dban-2.2.7_i586.iso
2014-04-28 20:47 - 2014-04-28 20:46 - 01095461 _____ (pendrivelinux.com) C:\Users\Alexander Hofer\Downloads\Universal-USB-Installer-1.9.5.2.exe
2014-04-28 19:39 - 2014-04-28 19:39 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ISO to USB
2014-04-28 19:26 - 2014-04-28 19:26 - 01717879 _____ () C:\Users\Alexander Hofer\Downloads\dban-1.0.7_i386.exe
2014-04-28 17:01 - 2014-04-28 17:01 - 01504136 _____ (isotousb.com ) C:\Users\Alexander Hofer\Desktop\isotousb_setup.exe
2014-04-27 20:49 - 2014-04-27 20:49 - 00002770 _____ () C:\Windows\System32\Tasks\TuneUpUtilities_Task_BkGndMaintenance2013
2014-04-26 00:26 - 2014-04-19 14:41 - 00000000 ____D () C:\AdwCleaner
2014-04-25 22:15 - 2014-04-25 22:15 - 01365865 _____ () C:\Users\Alexander Hofer\Desktop\adwcleaner.exe
2014-04-25 22:04 - 2013-04-22 19:28 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hotspot Shield
2014-04-25 21:35 - 2014-04-25 21:35 - 02623656 _____ (VS Revo Group Ltd.) C:\Users\Alexander Hofer\Desktop\revosetup95.exe
2014-04-23 16:58 - 2014-04-22 21:34 - 00000255 _____ () C:\DelFix.txt
2014-04-22 21:32 - 2014-04-22 21:32 - 00707006 _____ () C:\Users\Alexander Hofer\Desktop\delfix.exe
2014-04-22 21:25 - 2014-04-22 21:25 - 00050477 _____ () C:\Users\Alexander Hofer\Desktop\Defogger.exe
2014-04-20 20:34 - 2014-04-20 20:34 - 00448512 _____ (OldTimer Tools) C:\Users\Alexander Hofer\Desktop\TFC.exe
2014-04-20 07:28 - 2014-04-20 07:28 - 00987448 _____ () C:\Users\Alexander Hofer\Desktop\SecurityCheck.exe
2014-04-20 00:26 - 2014-04-20 00:26 - 02347384 _____ (ESET) C:\Users\Alexander Hofer\Downloads\esetsmartinstaller_enu.exe
2014-04-19 14:51 - 2014-04-19 14:51 - 01016261 _____ (Thisisu) C:\Users\Alexander Hofer\Desktop\JRT.exe
2014-04-18 14:06 - 2014-04-18 14:06 - 00061175 _____ () C:\ComboFix.txt
2014-04-18 13:52 - 2009-07-14 04:34 - 00000215 _____ () C:\Windows\system.ini
2014-04-18 13:45 - 2014-04-10 21:43 - 00000000 ____D () C:\Program Files (x86)\Uniblue
2014-04-17 19:58 - 2014-04-17 19:58 - 00380416 _____ () C:\Users\Alexander Hofer\Desktop\Gmer-19357.exe
2014-04-17 18:20 - 2014-04-17 18:20 - 00709352 _____ ( ) C:\Users\Alexander Hofer\Downloads\COMPUTER_BILD-Download-Manager_fuer_isoworkshop.exe
2014-04-17 18:10 - 2014-04-17 18:10 - 04991880 _____ (Canneverbe Limited ) C:\Users\Alexander Hofer\Documents\cdbxp_setup_4.5.3.4643_minimal.exe
2014-04-17 17:28 - 2014-04-17 16:55 - 3192264704 _____ () C:\Users\Alexander Hofer\Documents\X15-65741.iso
2014-04-17 17:05 - 2014-04-16 18:22 - 187695104 _____ () C:\Users\Alexander Hofer\Documents\gparted-live-0.18.0-2-i486.iso
2014-04-17 16:41 - 2011-11-07 08:27 - 00000000 ____D () C:\Update
2014-04-16 21:12 - 2014-04-16 21:12 - 00001145 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VAIO Update.lnk
2014-04-16 21:11 - 2014-04-16 21:11 - 00000028 _____ () C:\1__Argon__.tmp
2014-04-16 18:47 - 2014-04-16 18:47 - 00000000 ____D () C:\Users\Alexander Hofer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\LinuxLive USB Creator
2014-04-16 18:46 - 2014-04-16 18:46 - 04764779 _____ (LinuxLive USB Creator) C:\Users\Alexander Hofer\Documents\linuxlive_usb_creator_2.8.27.exe
2014-04-14 23:32 - 2014-04-14 23:31 - 28181408 _____ (TuneUp Software) C:\Users\Alexander Hofer\Desktop\TuneUpUtilities2013_de-DE.exe
2014-04-14 21:34 - 2014-04-14 21:34 - 00074703 _____ () C:\Windows\SysWOW64\mfc45.dll
2014-04-12 16:57 - 2014-04-12 16:57 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Exploit
2014-04-12 16:46 - 2014-04-12 16:46 - 12589848 _____ (Malwarebytes Corp.) C:\Users\Alexander Hofer\Downloads\mbar-1.07.0.1009.exe
2014-04-12 16:40 - 2014-04-12 16:39 - 01440846 _____ () C:\Users\Alexander Hofer\Downloads\mbam-chameleon-1.62.1.1000.zip
2014-04-11 20:07 - 2014-04-11 20:07 - 00000346 _____ () C:\Users\Alexander Hofer\Desktop\Zattoo Live TV.appref-ms
2014-04-11 20:03 - 2014-04-11 20:03 - 00488160 _____ () C:\Users\Alexander Hofer\Downloads\Zattoo-5.0.1.exe
2014-04-10 21:42 - 2014-04-10 21:42 - 00000000 ____D () C:\Users\Alexander Hofer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VOPackage
2014-04-10 21:42 - 2011-11-09 18:53 - 00002047 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk
2014-04-10 19:35 - 2014-04-10 19:35 - 00016945 _____ () C:\Users\Alexander Hofer\Desktop\hs_err_pid16820.log
2014-04-10 18:52 - 2014-04-10 18:51 - 34718824 _____ (Opera Software ASA) C:\Users\Alexander Hofer\Downloads\Opera_20.0.1387.91_Setup.exe
2014-04-10 17:50 - 2014-04-10 17:50 - 00000000 __SHD () C:\Users\Alexander Hofer\AppData\Local\EmieUserList
2014-04-10 17:50 - 2014-04-10 17:50 - 00000000 __SHD () C:\Users\Alexander Hofer\AppData\Local\EmieSiteList
2014-04-10 03:04 - 2013-07-18 03:00 - 00000000 ____D () C:\Windows\system32\MRT
2014-04-09 22:12 - 2013-05-03 09:36 - 00000000 ____D () C:\Program Files (x86)\K14R
2014-04-08 00:28 - 2013-10-02 05:15 - 00081762 _____ () C:\Users\Alexander Hofer\Desktop\perso.jpeg
2014-04-02 20:50 - 2014-03-29 19:08 - 00023789 _____ () C:\Users\Alexander Hofer\Documents\ab Seite 1.odt
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2014-04-30 02:58
==================== End Of Log ============================
--- --- --- --- --- --- Geändert von Alex111155 (30.04.2014 um 16:25 Uhr) |
|
30.04.2014, 17:06
| #32 |
| | Win 7Premium 64,Viele Prog. lassen sich nich öffnen,Avast Virenscan wird nicht ausgeführt....Code:
ATTFilter Additional scan result of Farbar Recovery Scan Tool (x64) Version: 30-04-2014 01
Ran by Alexander Hofer at 2014-04-30 17:08:09
Running from C:\Users\Alexander Hofer\Desktop
Boot Mode: Normal
==========================================================
==================== Security Center ========================
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov)
888poker (HKLM-x32\...\888poker) (Version: - )
ActiveX контрола на Windows Live Mesh за отдалечени връзки (HKLM-x32\...\{B3BA4D1C-23EF-4859-9C11-1B2CCB7FADBB}) (Version: 15.4.5722.2 - Microsoft Corporation)
ActiveX-kontroll för fjärranslutningar för Windows Live Mesh (HKLM-x32\...\{376D59B1-42D9-4FA2-B6CC-E346B6BE14F5}) (Version: 15.4.5722.2 - Microsoft Corporation)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 2.5.1.17730 - Adobe Systems Inc.)
Adobe AIR (x32 Version: 2.5.1.17730 - Adobe Systems Inc.) Hidden
Adobe Flash Player 13 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 13.0.0.206 - Adobe Systems Incorporated)
Adobe Flash Player 13 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 13.0.0.206 - Adobe Systems Incorporated)
Adobe Reader X MUI (HKLM-x32\...\{AC76BA86-7AD7-FFFF-7B44-AA0000000001}) (Version: 10.0.0 - Adobe Systems Incorporated)
AION Free-to-Play Version 1.0 (HKLM-x32\...\{82E73E8D-E1E7-45A4-A311-6D31492AA913}_is1) (Version: 1.0 - Gameforge)
Alps Pointing-device for VAIO (HKLM\...\{9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}) (Version: - ALPS ELECTRIC CO., LTD.)
ArcSoft Magic-i Visual Effects 2 (HKLM-x32\...\{61438020-DDD4-42FA-99A2-50225441980A}) (Version: 2.0.1.142 - ArcSoft)
ArcSoft WebCam Companion 4 (HKLM-x32\...\{C793AD32-2BB8-4CC4-ABD3-A1469C21593C}) (Version: 4.0.21.484 - ArcSoft)
Atheros WiFi Driver Installation (HKLM-x32\...\{7D916FA5-DAE9-4A25-B089-655C70EAF607}) (Version: 3.0 - Atheros)
AVG PC TuneUp Language Pack (de-DE) (x32 Version: 12.0.4000.108 - AVG Technologies) Hidden
Bing Bar (HKLM-x32\...\{B4089055-D468-45A4-A6BA-5A138DD715FC}) (Version: 7.0.850.0 - Microsoft Corporation)
Bluetooth Win7 Suite (64) (HKLM\...\{230D1595-57DA-4933-8C4E-375797EBB7E1}) (Version: 7.3.0.100 - Atheros Communications)
Casino Club Poker (HKLM-x32\...\Casino Club Poker ) (Version: - Boss Media AB)
CasinoClub (HKLM-x32\...\CasinoClub ) (Version: - Boss Media AB)
CCleaner (HKLM\...\CCleaner) (Version: 3.24 - Piriform)
Club 7 Poker (HKCU\...\Club 7 Poker) (Version: 5.0 - )
Conexant HD Audio (HKLM\...\CNXT_AUDIO_HDA) (Version: 8.54.0.53 - Conexant)
Control ActiveX Windows Live Mesh pentru conexiuni la distanță (HKLM-x32\...\{260E3D78-94E6-47EC-8E29-46301572BB1E}) (Version: 15.4.5722.2 - Microsoft Corporation)
Contrôle ActiveX Windows Live Mesh pour connexions à distance (HKLM-x32\...\{55D003F4-9599-44BF-BA9E-95D060730DD3}) (Version: 15.4.5722.2 - Microsoft Corporation)
Controlo ActiveX do Windows Live Mesh para Ligações Remotas (HKLM-x32\...\{E54EEB5D-41ED-40FE-B4A8-8565DB81469B}) (Version: 15.4.5722.2 - Microsoft Corporation)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DHTML Editing Component (HKLM-x32\...\{2EA870FA-585F-4187-903D-CB9FFD21E2E0}) (Version: 6.02.0001 - Microsoft Corporation)
DivX-Setup (HKLM-x32\...\DivX Setup) (Version: 2.6.1.9 - DivX, LLC)
EverestPoker.com (HKCU\...\EverestPoker.com) (Version: - )
Facebook Video Calling 2.0.0.447 (HKLM-x32\...\{8DF41A9F-FE13-43E8-A003-5F9B55A011EE}) (Version: 2.0.447 - Skype Limited)
FastStone Capture 5.3 (HKLM-x32\...\FastStone Capture) (Version: 5.3 - FastStone Soft)
FileZilla Client 3.6.0.2 (HKLM-x32\...\FileZilla Client) (Version: 3.6.0.2 - FileZilla Project)
Formant ActiveX programu Windows Live Mesh odpowiedzialny za obsługę połączeń zdalnych (HKLM-x32\...\{B04A0E2F-1E4C-4E61-B18E-3B2BD6779CA7}) (Version: 15.4.5722.2 - Microsoft Corporation)
Free YouTube to MP3 Converter version 3.12.2.419 (HKLM-x32\...\Free YouTube to MP3 Converter_is1) (Version: 3.12.2.419 - DVDVideoSoft Ltd.)
Full Tilt Poker (HKLM-x32\...\{D4C9692E-4EFA-4DA0-8B7F-9439466D9E31}) (Version: 4.48.2.WIN.FullTilt.COM - )
Full Tilt Poker.Eu (HKLM-x32\...\{127BEFB3-24B2-4B44-8E99-AD22C2A5A8ED}) (Version: 4.55.4.WIN.FullTilt.EU - )
Galeria de Fotografias do Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Galeria fotografii usługi Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Galerie de photos Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Galerie foto Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Gameforge Live 1.0 "Legend" (HKLM-x32\...\{9C98989A-3A15-42DA-A3B9-D20331437D67}}_is1) (Version: 1.1.1724 - Gameforge)
GameRanger (HKCU\...\GameRanger) (Version: - GameRanger Technologies)
Hands Videos app (HKLM-x32\...\Hands Videos app) (Version: 0.1.6.30 - Hall of Hands LTD)
Hotspot Shield Toolbar (HKLM-x32\...\Hotspot_Shield Toolbar) (Version: 6.11.2.6 - Hotspot Shield) <==== ATTENTION
ICQ7.6 (HKLM-x32\...\{7644E42D-B096-457F-8B5B-901238FC81AE}) (Version: 7.6 - ICQ)
Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1007 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 7.0.0.1144 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 10.0.0.1046 - Intel Corporation)
Internet Banking Payment Assistant 2.2 (HKCU\...\Internet Banking Payment Assistant) (Version: 2.2 - Citadel Commerce)
Java Auto Updater (x32 Version: 2.0.2.4 - Sun Microsystems, Inc.) Hidden
Java(TM) 6 Update 22 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86416022FF}) (Version: 6.0.220 - Oracle)
Java(TM) 6 Update 22 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83216022FF}) (Version: 6.0.220 - Oracle)
Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Malwarebytes Anti-Malware Version 1.75.0.1300 (HKLM-x32\...\Malwarebytes' Anti-Malware_is1) (Version: 1.75.0.1300 - Malwarebytes Corporation)
Media Gallery (Version: 1.5.0.16020 - Your Company Name) Hidden
Mesh Runtime (x32 Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (DEU) (HKLM\...\{C513739C-5F16-37B5-9ACF-99925FF1C1F3}) (Version: - )
Microsoft .NET Framework 4.5.1 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (HKLM\...\{7DEBE4EB-6B40-3766-BB35-5CBBC385DA37}) (Version: - )
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft Age of Empires II (HKLM-x32\...\Age of Empires 2.0) (Version: - )
Microsoft Age of Empires II: The Conquerors Expansion (HKLM-x32\...\Age of Empires II: The Conquerors Expansion 1.0) (Version: - )
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft Office 2010 (HKLM-x32\...\{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office Klick-und-Los 2010 (HKLM-x32\...\Office14.Click2Run) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office Klick-und-Los 2010 (Version: 14.0.4763.1000 - Microsoft Corporation) Hidden
Microsoft Office Starter 2010 - Deutsch (HKLM-x32\...\{90140011-0066-0407-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30214.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Mozilla Firefox 27.0.1 (x86 de) (HKLM-x32\...\Mozilla Firefox 27.0.1 (x86 de)) (Version: 27.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 27.0.1 - Mozilla)
MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT_amd64 (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2721691) (HKLM-x32\...\{355B5AC0-CEEE-42C5-AD4D-7F3CFD806C36}) (Version: 4.30.2114.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB973685) (HKLM-x32\...\{859DFA95-E4A6-48CD-B88E-A3E483E89B44}) (Version: 4.30.2107.0 - Microsoft Corporation)
NVIDIA 3D Vision Treiber 269.73 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 269.73 - NVIDIA Corporation)
NVIDIA Display Control Panel (HKLM\...\{B2FE1952-0186-46c3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 6.14.12.6973 - NVIDIA Corporation)
NVIDIA Grafiktreiber 269.73 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 269.73 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.2.24.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.2.24.0 - NVIDIA Corporation)
NVIDIA Install Application (Version: 2.265.42.0 - NVIDIA Corporation) Hidden
NVIDIA PhysX (x32 Version: 9.12.0507 - NVIDIA Corporation) Hidden
NVIDIA PhysX-Systemsoftware 9.12.0507 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.12.0507 - NVIDIA Corporation)
NVIDIA Stereoscopic 3D Driver (x32 Version: 7.17.12.6973 - NVIDIA Corporation) Hidden
OpenOffice.org 3.4.1 (HKLM-x32\...\{2303AEEA-0FA8-4AFD-80A9-8F86BA4B44D2}) (Version: 3.41.9593 - Apache Software Foundation)
Opera 12.17 (HKLM-x32\...\Opera 12.17.1863) (Version: 12.17.1863 - Opera Software ASA)
Opera Stable 20.0.1387.91 (HKLM-x32\...\Opera 20.0.1387.91) (Version: 20.0.1387.91 - Opera Software ASA)
Opera Stable 20.0.1387.91 (HKLM-x32\...\Opera 20.0.1387.911) (Version: 20.0.1387.91 - Opera Software ASA)
Ovládací prvek ActiveX platformy Windows Live Mesh pro vzdálená připojení (HKLM-x32\...\{B6190387-0036-4BEB-8D74-A0AFC5F14706}) (Version: 15.4.5722.2 - Microsoft Corporation)
Ovládací prvok ActiveX programu Windows Live Mesh pre vzdialené pripojenia (HKLM-x32\...\{C2FD7DB5-FE30-49B6-8A2F-C5652E053C31}) (Version: 15.4.5722.2 - Microsoft Corporation)
PKR (HKLM-x32\...\PKR) (Version: - PKR Ltd)
PMB (HKLM-x32\...\{B6A98E5F-D6A7-46FB-9E9D-1F7BF443491C}) (Version: 5.5.02.12220 - Sony Corporation)
PMB VAIO Edition Guide (x32 Version: 1.6.00.06030 - Sony Corporation) Hidden
PMB VAIO Edition Plug-in (Version: 1.5.10.05300 - Sony Corporation) Hidden
PMB VAIO Edition Plug-in (x32 Version: 1.6.00.06010 - Sony Corporation) Hidden
PMB VAIO Edition Plug-in (x32 Version: 1.6.00.06140 - Sony Corporation) Hidden
Poczta usługi Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Podstawowe programy Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Poker 770 (HKCU\...\Poker 770) (Version: - )
PokerStars (HKLM-x32\...\PokerStars) (Version: - PokerStars)
Qualcomm Atheros Direct Connect (x32 Version: 3.0 - Qualcomm Atheros) Hidden
Raccolta foto di Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Realtek PCIE Card Reader (HKLM-x32\...\{C1594429-8296-4652-BF54-9DBE4932A44C}) (Version: 6.1.7601.92 - Realtek Semiconductor Corp.)
Remote Keyboard (x32 Version: 1.1.1.07060 - Sony Corporation) Hidden
Remote Play with PlayStation 3 (x32 Version: 1.1.0.15070 - Sony Corporation) Hidden
Sandboxie 3.76 (64-bit) (HKLM\...\Sandboxie) (Version: 3.76 - SANDBOXIE L.T.D)
Skype™ 6.14 (HKLM-x32\...\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}) (Version: 6.14.104 - Skype Technologies S.A.)
Sony Corporation (Version: 1.0.0 - Default Company Name) Hidden
SSLx64 (Version: 1.0.0 - Sony Corporation ) Hidden
SSLx86 (x32 Version: 1.0.0 - Sony Corporation ) Hidden
Titan Poker (HKCU\...\Titan Poker) (Version: - )
TuneUp Utilities 2013 (HKLM-x32\...\TuneUp Utilities 2013) (Version: 13.0.4000.179 - TuneUp Software)
TuneUp Utilities 2013 (x32 Version: 13.0.4000.179 - TuneUp Software) Hidden
TuneUp Utilities Language Pack (de-DE) (x32 Version: 13.0.4000.179 - TuneUp Software) Hidden
Uzak Bağlantılar İçin Windows Live Mesh ActiveX Denetimi (HKLM-x32\...\{241E7104-937A-4366-AD57-8FDDDB003939}) (Version: 15.4.5722.2 - Microsoft Corporation)
VAIO - Media Gallery (HKLM-x32\...\{FA870BF1-44A1-4B7D-93E1-C101369AF0C1}) (Version: 1.5.0.16020 - Sony Corporation)
VAIO - PMB VAIO Edition Guide (HKLM-x32\...\InstallShield_{66081CDD-C1FE-415F-BB3A-F2622BA27461}) (Version: 1.6.00.06030 - Sony Corporation)
VAIO - PMB VAIO Edition Plug-in (HKLM-x32\...\InstallShield_{270380EB-8812-42E1-8289-53700DB840D2}) (Version: 1.6.00.06140 - Sony Corporation)
VAIO - Remote Play mit PlayStation®3 (HKLM-x32\...\{07441A52-E208-478A-92B7-5C337CA8C131}) (Version: 1.1.0.15070 - Sony Corporation)
VAIO - Remote-Tastatur (HKLM-x32\...\{7396FB15-9AB4-4B78-BDD8-24A9C15D2C65}) (Version: 1.1.0.07060 - Sony Corporation)
VAIO Care (HKLM\...\{EC635BC0-0D7C-4CA2-9B87-2A330C298CB2}) (Version: 8.1.0.10120 - Sony Corporation)
VAIO Control Center (HKLM-x32\...\{72042FA6-5609-489F-A8EA-3C2DD650F667}) (Version: 4.5.0.03040 - Sony Corporation)
VAIO Data Restore Tool (HKLM-x32\...\{57B955CE-B5D3-495D-AF1B-FAEE0540BFEF}) (Version: 1.6.0.13140 - Sony Corporation)
VAIO Data Restore Tool (x32 Version: 1.6.0.13140 - Sony Corporation) Hidden
VAIO Easy Connect (HKLM-x32\...\InstallShield_{7C80D30A-AC02-4E3F-B95D-29F0E4FF937B}) (Version: 1.1.2.01120 - Sony Corporation)
VAIO Easy Connect (x32 Version: 1.1.2.01120 - Sony Corporation) Hidden
VAIO Event Service (HKLM-x32\...\{73D8886A-D416-4687-B609-0D3836BA410C}) (Version: 5.5.0.03040 - Sony Corporation)
VAIO Gate (HKLM-x32\...\{A7C30414-2382-4086-B0D6-01A88ABA21C3}) (Version: 2.4.2.02200 - Sony Corporation)
VAIO Gate Default (HKLM-x32\...\{B7546697-2A80-4256-A24B-1C33163F535B}) (Version: 2.4.0.03240 - Sony Corporation)
VAIO Hardware Diagnostics (x32 Version: 4.2.0.14280 - Sony Corporation) Hidden
VAIO Hero Screensaver - Summer 2011 Screensaver (HKLM-x32\...\VAIO Hero Screensaver - Summer 2011 Screensaver) (Version: - )
VAIO Improvement (HKLM-x32\...\{3A26D9BD-0F73-432D-B522-2BA18138F7EF}) (Version: 1.0.0.14150 - Sony Corporation)
VAIO Improvement Validation (HKLM\...\{75C95C84-264F-4CC7-8A7E-346444E6C7C1}) (Version: 1.0.4.01190 - Sony Corporation)
VAIO Quick Web Access (HKLM-x32\...\splashtop) (Version: 1.4.5.3 - Sony Corporation)
VAIO Quick Web Access (x32 Version: 1.4.5.3 - Sony Corporation) Hidden
VAIO Sample Contents (HKLM-x32\...\{547C9EB4-4CA6-402F-9D1B-8BD30DC71E44}) (Version: 1.4.2.09010 - Sony Corporation)
VAIO Smart Network (HKLM-x32\...\{0899D75A-C2FC-42EA-A702-5B9A5F24EAD5}) (Version: 3.8.1.08270 - Sony Corporation)
VAIO Update (HKLM-x32\...\{9FF95DA2-7DA1-4228-93B7-DED7EC02B6B2}) (Version: 6.3.1.10120 - Sony Corporation)
VAIO-Handbuch (HKLM-x32\...\{C6E893E7-E5EA-4CD5-917C-5443E753FCBD}) (Version: 2.0.0.02250 - Sony Corporation)
VAIO-Support für Übertragungen (HKLM-x32\...\{5DDAFB4B-C52E-468A-9E23-3B0CEEB671BF}) (Version: 1.4.0.14230 - Sony Corporation)
VC80CRTRedist - 8.0.50727.6195 (x32 Version: 1.2.0 - DivX, Inc) Hidden
VCCx86 (x32 Version: 1.0.0 - Sony Corporation) Hidden
Veoh Web Player (HKLM-x32\...\Veoh Web Player Beta) (Version: 1.1.2.0000 - Veoh Networks, Inc.)
VESx64 (Version: 1.0.0 - Sony Corporation) Hidden
VESx86 (x32 Version: 1.0.0 - Sony Corporation) Hidden
VGClientX64 (Version: 1.0.0 - Sony Corporation) Hidden
VGClientX86 (x32 Version: 1.0.0 - Sony Corporation) Hidden
Visual Studio 2010 x64 Redistributables (HKLM\...\{21B133D6-5979-47F0-BE1C-F6A6B304693F}) (Version: 13.0.0.1 - AVG Technologies)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
VIx64 (Version: 1.0.0 - Sony Corporation) Hidden
VIx86 (x32 Version: 1.0.0 - Sony Corporation) Hidden
VLC media player 2.0.8 (HKLM-x32\...\VLC media player) (Version: 2.0.8 - VideoLAN)
VO Package (HKLM-x32\...\VOPackage) (Version: 1.0.0.0 - ) <==== ATTENTION
VSNx64 (Version: 1.0.0 - Sony Corporation) Hidden
VSNx86 (x32 Version: 1.0.0 - Sony Corporation) Hidden
VU5x64 (Version: 1.1.0 - Sony Corporation ) Hidden
VU5x86 (x32 Version: 1.0.0 - Sony Corporation ) Hidden
VU5x86 (x32 Version: 1.1.0 - Sony Corporation ) Hidden
VWSTx86 (x32 Version: 1.0.0 - Sony Corporation) Hidden
William Hill Poker (HKCU\...\William Hill Poker) (Version: - )
WilliamHillPokerCoach (HKCU\...\WilliamHillPokerCoach) (Version: 4.2.0.1998 - Kessem Holdings Limited)
Windows 7 USB/DVD Download Tool (HKLM-x32\...\{CCF298AF-9CE1-4B26-B251-486E98A34789}) (Version: 1.0.30 - Microsoft Corporation)
Windows Live Communications Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3508.1109 - Microsoft Corporation)
Windows Live Essentials (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Fotogaléria (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Fotogalerie (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Fotogalleri (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Fotoğraf Galerisi (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Fotótár (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live ID Sign-in Assistant (Version: 7.250.4225.0 - Microsoft Corporation) Hidden
Windows Live Installer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Language Selector (Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live Mail (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mail (x32 Version: 15.4.3502.0922 - Корпорація Майкрософт) Hidden
Windows Live Mesh - ActiveX-besturingselement voor externe verbindingen (HKLM-x32\...\{C32CE55C-12BA-4951-8797-0967FDEF556F}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Mesh (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{2902F983-B4C1-44BA-B85D-5C6D52E2C441}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Mesh ActiveX control for remote connections (HKLM-x32\...\{C5398A89-516C-4DAF-BA07-EE7949090E56}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{C63A1E60-B6A4-440B-89A5-1FC6E4AC1C94}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Mesh ActiveX-kontroll for eksterne tilkoblinger (HKLM-x32\...\{09B7C7EB-3140-4B5E-842F-9C79A7137139}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Mesh ActiveX-objekt til fjernforbindelser (HKLM-x32\...\{57220148-3B2B-412A-A2E0-82B9DF423696}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Mesh ActiveX-vezérlő távoli kapcsolatokhoz (HKLM-x32\...\{6E29C4F7-C2C2-4B18-A15C-E09B92065F15}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Meshin etäyhteyksien ActiveX-komponentti (HKLM-x32\...\{4CF6F287-5121-483C-A5A2-07BDE19D8B4E}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live MIME IFilter (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Movie Maker (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Common (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Gallery (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live Remote Client (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Client Resources (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Service (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Service Resources (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live SOXE (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Temel Parçalar (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live Writer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Writer Resources (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Liven asennustyökalu (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Liven sähköposti (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Liven valokuvavalikoima (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Winner Casino (HKCU\...\Winner Casino) (Version: - )
Winner Poker (HKCU\...\winnerpoker) (Version: - )
XSManager (HKLM-x32\...\XSManager) (Version: 3.0 - XSManager)
Zattoo Live TV (HKCU\...\6d7aa3e3bf931c56) (Version: 1.0.0.41 - Zattoo Europa AG)
Στοιχείο ελέγχου ActiveX του Windows Live Mesh για απομακρυσμένες συνδέσεις (HKLM-x32\...\{F665F3B8-01B4-46A9-8E47-FF8DC2208C9F}) (Version: 15.4.5722.2 - Microsoft Corporation)
Συλλογή φωτογραφιών του Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Елемент керування Windows Live Mesh ActiveX для віддалених підключень (HKLM-x32\...\{6756D5CA-3E31-4308-9BF0-79DFD1AF196E}) (Version: 15.4.5722.2 - Microsoft Corporation)
Основи Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Основные компоненты Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Почта Windows Live (x32 Version: 15.4.3502.0922 - Корпорация Майкрософт) Hidden
Фотоальбом Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Фотогалерия на Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Фотоколекція Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Элемент управления Windows Live Mesh ActiveX для удаленных подключений (HKLM-x32\...\{BCB0D6F7-7EAB-4009-A6F2-8E0E7F317773}) (Version: 15.4.5722.2 - Microsoft Corporation)
==================== Restore Points =========================
30-04-2014 02:03:45 Windows Update
30-04-2014 02:11:38 Windows Update
30-04-2014 02:46:03 avast! antivirus system restore point
==================== Hosts content: ==========================
2009-07-14 04:34 - 2014-04-18 13:51 - 00000027 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 localhost
==================== Scheduled Tasks (whitelisted) =============
Task: {016A67C6-A666-4497-92FA-12902D8BD02B} - System32\Tasks\Divx-Online-Aktualisierungsprogramm => C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe [2011-07-29] ()
Task: {1B491B25-3B40-4329-9C13-C80BEB34A094} - System32\Tasks\Sony Corporation\VAIO Update\VAIO Update Self Repair => C:\Program Files\Sony\VAIO Update\VUSR.exe [2013-09-19] (Sony Corporation)
Task: {1BC7679E-AFDD-4ABA-A3B3-A4F959ABE506} - System32\Tasks\Sony Corporation\VAIO Care\VAIO Care => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2012-10-12] (Sony Corporation)
Task: {2597EFAD-173E-4874-AE35-BD831D9CF09E} - System32\Tasks\{CB41CFBB-EBE5-4434-8D4B-C10899E13328} => E:\autorun.exe
Task: {2F4C57B8-F5FE-45E0-A6D9-23E5CB7E5566} - System32\Tasks\Microsoft\Windows\WindowsBackup\AutomaticBackup => Rundll32.exe /d sdengin2.dll,ExecuteScheduledBackup
Task: {30230DAD-8A3A-443B-8F14-C5D704FBC807} - System32\Tasks\RunAsStdUser Task for VeohWebPlayer => C:\Program Files (x86)\Veoh Networks\VeohWebPlayer\veohwebplayer.exe [2012-12-30] (Veoh Networks) <==== ATTENTION
Task: {399DCAD5-7A96-4840-953C-AF0C3C737CCC} - System32\Tasks\{1089DD04-7E9C-4390-8C0F-4E0F7C3A5E1D} => E:\autorun.exe
Task: {3CBD83BD-83CC-4603-93D5-F21F381347F5} - System32\Tasks\Sony Corporation\VAIO Gate\StartExecuteProxy => C:\Program Files\Sony\VAIO Gate\ExecutionProxy.exe [2012-02-20] (Sony Corporation)
Task: {428ABB41-E3D1-4DDB-A972-65C72A70502E} - System32\Tasks\{60CC4FE5-3932-48C6-9655-2AA806BF6BB5} => c:\program files (x86)\opera\opera.exe [2014-04-30] (Opera Software)
Task: {45775074-F08A-45A2-AFC5-625B888A604F} - System32\Tasks\{6F3D813F-60F2-436F-BE02-EBA0E5AE37B4} => E:\autorun.exe
Task: {4E8C4A34-9134-4DB5-8E63-E509C0F991AC} - System32\Tasks\Sony Corporation\VAIO Update\VAIO Update => C:\Program Files\Sony\VAIO Update\VAIOUpdt.exe [2013-09-27] (Sony Corporation)
Task: {5343EDD2-A2ED-4960-9AC4-9A9011C8DDE6} - System32\Tasks\Sony Corporation\VAIO Gate\VAIO Gate => C:\Program Files\Sony\VAIO Gate\VAIO Gate.exe [2012-02-20] (Sony Corporation)
Task: {696A6324-2441-4B15-BFDD-1A452E2F5551} - System32\Tasks\Sony Corporation\VAIO Smart Network\VSN Logon Start => C:\Program Files\Sony\VAIO Smart Network\VSNClient
Task: {74C4773A-5392-40C1-908F-9C75FD3198C7} - \SidebarExecute No Task File <==== ATTENTION
Task: {7614E6F6-FDDB-45F1-9BC4-50B24E717CEA} - System32\Tasks\Sony Corporation\VAIO Improvement Validation\VAIO Improvement Validation => C:\Program Files\Sony\VAIO Improvement Validation\viv.exe [2011-01-20] (Sony Corporation)
Task: {82C190B9-0C90-443E-B837-BD39923F8852} - System32\Tasks\{55A998D1-2A5B-462E-AE5A-E972D0325531} => E:\autorun.exe
Task: {939625EF-BBF1-4868-98FF-9EF17A4F60DC} - System32\Tasks\Sony Corporation\VAIO Improvement\VAIOImprovementUploader => C:\Program Files\Sony\VAIO Improvement\viuploader.exe [2011-02-15] (Sony Corporation)
Task: {A6318819-B8EF-4D28-B3E3-1287C75CBE9B} - System32\Tasks\Sony Corporation\VAIO Care\CRMReminder => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2012-10-12] (Sony Corporation)
Task: {B2D55FCE-FB60-43B2-9A84-B224A4C49AC3} - System32\Tasks\Sony Corporation\VAIO Care\VCOneClick => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2012-10-12] (Sony Corporation)
Task: {C677501D-AD9F-4DAC-9E6E-5548C82B0B95} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-4113284352-1378585713-2786085383-1000Core => C:\Users\Alexander Hofer\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-07-11] (Facebook Inc.)
Task: {CC1DF4AB-4E09-4E37-8C0D-00652F999E0D} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-04-28] (Adobe Systems Incorporated)
Task: {CC4CE297-741A-44DB-9E59-972B9B5BF05A} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-4113284352-1378585713-2786085383-1000UA => C:\Users\Alexander Hofer\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-07-11] (Facebook Inc.)
Task: {E4C42B3D-D9B6-4903-8C66-78BAACC4DD11} - System32\Tasks\Sony Corporation\VAIO Care\VCSelfHeal => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2012-10-12] (Sony Corporation)
Task: {E72C6890-4BF5-449C-9616-F8AC6252B3D4} - System32\Tasks\Sony Corporation\VAIO Care\VCMetrics => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2012-10-12] (Sony Corporation)
Task: {EA399413-C9DE-48EF-82E5-3A018FD006EC} - System32\Tasks\Sony Corporation\VAIO Care\VCCheckIolo => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2012-10-12] (Sony Corporation)
Task: {F01D8155-1396-44DB-9C11-7E58B4D9B959} - System32\Tasks\TuneUpUtilities_Task_BkGndMaintenance2013 => C:\Program Files (x86)\TuneUp Utilities 2013\OneClick.exe [2013-12-10] (TuneUp Software)
Task: {F4128C8A-0582-4013-A888-F2114C78A6D8} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2012-10-24] (Piriform Ltd)
Task: {F98F198F-F99B-4C39-ABBB-38E4B0C72648} - System32\Tasks\Sony Corporation\VAIO Gate\VAIO Gate Restart => C:\Program Files\Sony\VAIO Gate\VAIO Gate.exe [2012-02-20] (Sony Corporation)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-4113284352-1378585713-2786085383-1000Core.job => C:\Users\Alexander Hofer\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-4113284352-1378585713-2786085383-1000UA.job => C:\Users\Alexander Hofer\AppData\Local\Facebook\Update\FacebookUpdate.exe
==================== Loaded Modules (whitelisted) =============
2013-12-10 19:45 - 2013-12-10 19:45 - 00753464 _____ () C:\Program Files (x86)\TuneUp Utilities 2013\avgrepliba.dll
2011-11-08 14:09 - 2010-04-12 19:03 - 00329168 _____ () C:\Program Files (x86)\XSManager\WTGService.exe
2012-08-06 13:27 - 2012-08-06 13:27 - 00156672 _____ () C:\Program Files\Sony\VAIO Care\VCPerfService.exe
2010-01-02 16:42 - 2010-01-02 16:42 - 00098304 _____ () C:\Program Files (x86)\FileZilla FTP Client\fzshellext_64.dll
2012-08-06 13:27 - 2012-08-06 13:27 - 00062464 _____ () C:\Program Files\Sony\VAIO Care\listener.exe
2011-08-08 05:57 - 2011-03-05 16:42 - 00013824 _____ () C:\Program Files (x86)\Sony\VAIO Event Service\VESBasePS.dll
2014-04-30 07:41 - 2014-04-30 07:41 - 00169472 _____ () C:\Windows\assembly\NativeImages_v2.0.50727_32\IsdiInterop\b7e68f030ebaf8e1ace1bed4b7d5dfec\IsdiInterop.ni.dll
2011-08-08 05:42 - 2010-09-13 18:28 - 00058880 _____ () C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IsdiInterop.dll
==================== Alternate Data Streams (whitelisted) =========
==================== Safe Mode (whitelisted) ===================
==================== Disabled items from MSCONFIG ==============
MSCONFIG\startupreg: Adobe ARM => "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
MSCONFIG\startupreg: Adobe Reader Speed Launcher => "C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe"
==================== Faulty Device Manager Devices =============
Name: Atheros AR3011 Bluetooth(R) Adapter
Description: Atheros AR3011 Bluetooth(R) Adapter
Class Guid: {e0cbf06c-cd8b-4647-bb8a-263b43f0f974}
Manufacturer: Atheros Communications
Service: BTHUSB
Problem: : Windows has stopped this device because it has reported problems. (Code 43)
Resolution: One of the drivers controlling the device notified the operating system that the device failed in some manner. For more information about how to diagnose the problem, see the hardware documentation.
Name: Hotspot Shield Routing Driver 6
Description: Hotspot Shield Routing Driver 6
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: HssDRV6
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.
==================== Event log errors: =========================
Application errors:
==================
Error: (04/30/2014 04:47:05 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: HOHBase.exe, Version: 0.1.6.30, Zeitstempel: 0x5249c1e3
Name des fehlerhaften Moduls: ntdll.dll, Version: 6.1.7601.17514, Zeitstempel: 0x4ce7ba58
Ausnahmecode: 0xc0000374
Fehleroffset: 0x000ce653
ID des fehlerhaften Prozesses: 0xf30
Startzeit der fehlerhaften Anwendung: 0xHOHBase.exe0
Pfad der fehlerhaften Anwendung: HOHBase.exe1
Pfad des fehlerhaften Moduls: HOHBase.exe2
Berichtskennung: HOHBase.exe3
Error: (04/30/2014 04:41:55 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (04/30/2014 05:13:31 AM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Fehler beim Extrahieren der Drittanbieterstammliste aus der automatischen Aktualisierungs-CAB-Datei bei <hxxp://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab>. Fehler: Ein erforderliches Zertifikat befindet sich nicht im Gültigkeitszeitraum gemessen an der aktuellen Systemzeit oder dem Zeitstempel in der signierten Datei.
.
Error: (04/30/2014 05:13:31 AM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Fehler beim Extrahieren der Drittanbieterstammliste aus der automatischen Aktualisierungs-CAB-Datei bei <hxxp://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab>. Fehler: Ein erforderliches Zertifikat befindet sich nicht im Gültigkeitszeitraum gemessen an der aktuellen Systemzeit oder dem Zeitstempel in der signierten Datei.
.
Error: (04/30/2014 05:13:31 AM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Fehler beim Extrahieren der Drittanbieterstammliste aus der automatischen Aktualisierungs-CAB-Datei bei <hxxp://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab>. Fehler: Ein erforderliches Zertifikat befindet sich nicht im Gültigkeitszeitraum gemessen an der aktuellen Systemzeit oder dem Zeitstempel in der signierten Datei.
.
Error: (04/30/2014 05:13:31 AM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Fehler beim Extrahieren der Drittanbieterstammliste aus der automatischen Aktualisierungs-CAB-Datei bei <hxxp://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab>. Fehler: Ein erforderliches Zertifikat befindet sich nicht im Gültigkeitszeitraum gemessen an der aktuellen Systemzeit oder dem Zeitstempel in der signierten Datei.
.
Error: (04/30/2014 05:13:31 AM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Fehler beim Extrahieren der Drittanbieterstammliste aus der automatischen Aktualisierungs-CAB-Datei bei <hxxp://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab>. Fehler: Ein erforderliches Zertifikat befindet sich nicht im Gültigkeitszeitraum gemessen an der aktuellen Systemzeit oder dem Zeitstempel in der signierten Datei.
.
Error: (04/30/2014 04:54:20 AM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Fehler beim Extrahieren der Drittanbieterstammliste aus der automatischen Aktualisierungs-CAB-Datei bei <hxxp://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab>. Fehler: Ein erforderliches Zertifikat befindet sich nicht im Gültigkeitszeitraum gemessen an der aktuellen Systemzeit oder dem Zeitstempel in der signierten Datei.
.
Error: (04/30/2014 04:54:17 AM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Fehler beim Extrahieren der Drittanbieterstammliste aus der automatischen Aktualisierungs-CAB-Datei bei <hxxp://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab>. Fehler: Ein erforderliches Zertifikat befindet sich nicht im Gültigkeitszeitraum gemessen an der aktuellen Systemzeit oder dem Zeitstempel in der signierten Datei.
.
Error: (04/30/2014 04:54:17 AM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Fehler beim Extrahieren der Drittanbieterstammliste aus der automatischen Aktualisierungs-CAB-Datei bei <hxxp://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab>. Fehler: Ein erforderliches Zertifikat befindet sich nicht im Gültigkeitszeitraum gemessen an der aktuellen Systemzeit oder dem Zeitstempel in der signierten Datei.
.
System errors:
=============
Error: (04/30/2014 04:41:14 PM) (Source: BTHUSB) (User: )
Description: Der lokale Bluetooth-Adapter ist aus einem unbekannten Grund fehlgeschlagen und wird nicht verwendet. Der Treiber wurde entladen.
Error: (04/30/2014 04:41:07 PM) (Source: Service Control Manager) (User: )
Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen:
HssDRV6
Error: (04/30/2014 04:40:59 PM) (Source: BTHUSB) (User: )
Description: Der lokale Bluetooth-Adapter ist aus einem unbekannten Grund fehlgeschlagen und wird nicht verwendet. Der Treiber wurde entladen.
Error: (04/30/2014 04:40:36 PM) (Source: BTHUSB) (User: )
Description: Der lokale Bluetooth-Adapter ist aus einem unbekannten Grund fehlgeschlagen und wird nicht verwendet. Der Treiber wurde entladen.
Error: (04/30/2014 04:30:34 AM) (Source: Service Control Manager) (User: )
Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen:
aswNdisFlt
HssDRV6
Error: (04/30/2014 04:30:20 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "avast! Firewall" wurde aufgrund folgenden Fehlers nicht gestartet:
%%14001
Error: (04/30/2014 04:30:20 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "avast! Antivirus" wurde aufgrund folgenden Fehlers nicht gestartet:
%%14001
Error: (04/30/2014 04:22:31 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Intel(R) Management and Security Application User Notification Service" wurde nicht richtig gestartet.
Error: (04/30/2014 04:19:36 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "VAIO Care Performance Service" wurde nicht richtig gestartet.
Error: (04/30/2014 04:15:14 AM) (Source: Service Control Manager) (User: )
Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen:
aswNdisFlt
HssDRV6
Microsoft Office Sessions:
=========================
Error: (04/30/2014 04:47:05 PM) (Source: Application Error)(User: )
Description: HOHBase.exe0.1.6.305249c1e3ntdll.dll6.1.7601.175144ce7ba58c0000374000ce653f3001cf6482e0b8f78dC:\Users\Alexander Hofer\AppData\Local\TitanPokerStudio\BIN\HOHBase.exeC:\Windows\SysWOW64\ntdll.dll4baa7546-d076-11e3-87cf-78843ceaf0e6
Error: (04/30/2014 04:41:55 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (04/30/2014 05:13:31 AM) (Source: Microsoft-Windows-CAPI2)(User: )
Description: hxxp://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cabEin erforderliches Zertifikat befindet sich nicht im Gültigkeitszeitraum gemessen an der aktuellen Systemzeit oder dem Zeitstempel in der signierten Datei.
Error: (04/30/2014 05:13:31 AM) (Source: Microsoft-Windows-CAPI2)(User: )
Description: hxxp://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cabEin erforderliches Zertifikat befindet sich nicht im Gültigkeitszeitraum gemessen an der aktuellen Systemzeit oder dem Zeitstempel in der signierten Datei.
Error: (04/30/2014 05:13:31 AM) (Source: Microsoft-Windows-CAPI2)(User: )
Description: hxxp://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cabEin erforderliches Zertifikat befindet sich nicht im Gültigkeitszeitraum gemessen an der aktuellen Systemzeit oder dem Zeitstempel in der signierten Datei.
Error: (04/30/2014 05:13:31 AM) (Source: Microsoft-Windows-CAPI2)(User: )
Description: hxxp://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cabEin erforderliches Zertifikat befindet sich nicht im Gültigkeitszeitraum gemessen an der aktuellen Systemzeit oder dem Zeitstempel in der signierten Datei.
Error: (04/30/2014 05:13:31 AM) (Source: Microsoft-Windows-CAPI2)(User: )
Description: hxxp://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cabEin erforderliches Zertifikat befindet sich nicht im Gültigkeitszeitraum gemessen an der aktuellen Systemzeit oder dem Zeitstempel in der signierten Datei.
Error: (04/30/2014 04:54:20 AM) (Source: Microsoft-Windows-CAPI2)(User: )
Description: hxxp://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cabEin erforderliches Zertifikat befindet sich nicht im Gültigkeitszeitraum gemessen an der aktuellen Systemzeit oder dem Zeitstempel in der signierten Datei.
Error: (04/30/2014 04:54:17 AM) (Source: Microsoft-Windows-CAPI2)(User: )
Description: hxxp://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cabEin erforderliches Zertifikat befindet sich nicht im Gültigkeitszeitraum gemessen an der aktuellen Systemzeit oder dem Zeitstempel in der signierten Datei.
Error: (04/30/2014 04:54:17 AM) (Source: Microsoft-Windows-CAPI2)(User: )
Description: hxxp://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cabEin erforderliches Zertifikat befindet sich nicht im Gültigkeitszeitraum gemessen an der aktuellen Systemzeit oder dem Zeitstempel in der signierten Datei.
CodeIntegrity Errors:
===================================
Date: 2014-04-18 13:45:13.305
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume3\ComboFix\catchme.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2014-04-18 13:45:13.248
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume3\ComboFix\catchme.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
==================== Memory info ===========================
Percentage of memory in use: 38%
Total physical RAM: 4077.86 MB
Available physical RAM: 2499.02 MB
Total Pagefile: 8153.92 MB
Available Pagefile: 6359.32 MB
Total Virtual: 8192 MB
Available Virtual: 8191.85 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:451.77 GB) (Free:297.22 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 466 GB) (Disk ID: 68A796D5)
Partition 1: (Not Active) - (Size=14 GB) - (Type=27)
Partition 2: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=452 GB) - (Type=07 NTFS)
==================== End Of Log ============================
mfg Alex Avast läuft nun auch wieder...war nur gesperrt,weil von anderem Rechner/Betriebssystem... Schnelle überprüfung ergab 1nen Fund. Scheint ein Fehlalarm gewesen zu sein, Adwcleaner exe. ....Virus:Win32:Evo-gen(Susp) kANN ich wieder herstellen oder? |
|
01.05.2014, 16:29
| #33 |
| /// the machine /// TB-Ausbilder    | Win 7Premium 64,Viele Prog. lassen sich nich öffnen,Avast Virenscan wird nicht ausgeführt.... Ja kannste. Was gibt es aktuell noch alles an Problemen?
__________________
__________________ |
|
01.05.2014, 17:04
| #34 |
| | Win 7Premium 64,Viele Prog. lassen sich nich öffnen,Avast Virenscan wird nicht ausgeführt.... Im moment scheint alles in Ordnung zu sein..keine Probleme mehr. Nur noch aufräumen bzw entfernen was noch da is... Mban findet im Vollständigen Suchlauf noch 5 Bedrohungen. Habs noch nicht gelöscht... Code:
ATTFilter Malwarebytes Anti-Malware 1.75.0.1300 www.malwarebytes.org Datenbank Version: v2014.04.25.10 Windows 7 Service Pack 1 x64 NTFS Internet Explorer 8.0.7601.17514 Alexander Hofer :: WHITEDOG [Administrator] 30.04.2014 17:21:55 mbam-log-2014-04-30 (17-21-55).txt Art des Suchlaufs: Vollständiger Suchlauf (C:\|D:\|) Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM | P2P Deaktivierte Suchlaufeinstellungen: Durchsuchte Objekte: 505776 Laufzeit: 1 Stunde(n), 46 Minute(n), 34 Sekunde(n) Infizierte Speicherprozesse: 0 (Keine bösartigen Objekte gefunden) Infizierte Speichermodule: 0 (Keine bösartigen Objekte gefunden) Infizierte Registrierungsschlüssel: 0 (Keine bösartigen Objekte gefunden) Infizierte Registrierungswerte: 0 (Keine bösartigen Objekte gefunden) Infizierte Dateiobjekte der Registrierung: 0 (Keine bösartigen Objekte gefunden) Infizierte Verzeichnisse: 0 (Keine bösartigen Objekte gefunden) Infizierte Dateien: 5 C:\Program Files (x86)\ICQ7.6\install_dll\OCSetupHlp.dll (PUP.Optional.OpenCandy) -> Keine Aktion durchgeführt. C:\Users\Alexander Hofer\AppData\LocalLow\Hotspot_Shield\hk64tbHot0.dll (PUP.Optional.Conduit) -> Keine Aktion durchgeführt. C:\Users\Alexander Hofer\AppData\LocalLow\Hotspot_Shield\hktbHot0.dll (PUP.Optional.Conduit) -> Keine Aktion durchgeführt. C:\Users\Alexander Hofer\AppData\LocalLow\Hotspot_Shield\ldrtbHot0.dll (PUP.Optional.Conduit) -> Keine Aktion durchgeführt. C:\Users\Alexander Hofer\AppData\LocalLow\Hotspot_Shield\tbHot0.dll (PUP.Optional.Conduit) -> Keine Aktion durchgeführt. (Ende) Hab in der Quarantäne 1500 dateien...einfach lassen oder löschen? Können die da raus? Was würde bei einer deinsallation von mban damit passieren? mfg Alex Geändert von Alex111155 (01.05.2014 um 17:09 Uhr) |
|
02.05.2014, 16:35
| #35 |
| /// the machine /// TB-Ausbilder | Win 7Premium 64,Viele Prog. lassen sich nich öffnen,Avast Virenscan wird nicht ausgeführt.... die 5 kannste löschen. Aus der Quarantäne kann nix aus, dafür ist die ja da. Aber kannst auch alles löschen. Beim Deinstalliern wird es automatisch gelöscht. Fertig  Die Reihenfolge ist hier entscheidend.
Falls Du Lob oder Kritik abgeben möchtest kannst Du das hier tun Hier noch ein paar Tipps zur Absicherung deines Systems. Ich kann garnicht zu oft erwähnen, wie wichtig es ist, dass dein System Up to Date ist.
Anti- Viren Software
Zusätzlicher Schutz
Sicheres Browsen
Alternative Browser Andere Browser tendieren zu etwas mehr Sicherheit als der IE, da diese keine Active X Elemente verwenden. Diese können von Spyware zur Infektion deines Systems missbraucht werden.
Performance Bereinige regelmäßig deine Temp Files. Ich empfehle hierzu TFC Halte dich fern von jedlichen Registry Cleanern. Diese Schaden deinem System mehr als sie helfen. Hier ein paar ( englishe ) Links Miekemoes Blogspot ( MVP ) Bill Castner ( MVP ) Don'ts
Hinweis: Bitte gib mir eine kurze Rückmeldung wenn alles erledigt ist und keine Fragen mehr vorhanden sind, so das ich diesen Thread aus meinen Abos löschen kann.
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
| Themen zu Win 7Premium 64,Viele Prog. lassen sich nich öffnen,Avast Virenscan wird nicht ausgeführt.... |
| antivirus, bingbar, browser, computer_bild-download-manager, converter, diagnostics, dvdvideosoft ltd., flash player, helper, homepage, hotspot, html/iframe.b.gen, hängen, icreinstall, installation, internet, java/exploit.cve-2013-2465.cx, java/exploit.cve-2013-2465.dq, newtab, quick_start, realtek, security, svchost.exe, warnung, win32/filecoder.bh.gen, win32/injected.f, win32/reveton.m, windows |
Linear-Darstellung
