Trojaner-Board - RunDLL C:\Program - Modul nicht gefunden (Win8)

sodala, hier wieder die Log-files.

FRST

FRST Logfile:

Code:

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 04-07-2013

Ran by Peter (administrator) on 08-07-2013 09:58:57

Running from C:\Users\Peter\Desktop

Windows 8 Pro (X64) OS Language: German Standard

Internet Explorer Version 10

Boot Mode: Normal
 

==================== Processes (Whitelisted) =================
 

(Lenovo.) C:\WINDOWS\system32\ibmpmsvc.exe

(Cisco Systems, Inc.) C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnagent.exe

(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe

(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe

(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

(Softwareentwicklung Remus - ArchiCrypt) C:\WINDOWS\system32\ACRAMDiskHandlerService64R_D4.exe

(Broadcom Corporation.) C:\WINDOWS\system32\BtwRSupportService.exe

(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe

(Broadcom Corporation.) C:\Program Files\ThinkPad\Bluetooth Software\btwdins.exe

(Microsoft Corporation) C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe

(Microsoft Corporation) C:\WINDOWS\system32\dashost.exe

(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe

(Intel Corporation) C:\WINDOWS\system32\IProsetMonitor.exe

(LENOVO INCORPORATED.) C:\Program Files\lenovo\SystemAgent\SystemAgentService.exe

(Lenovo Group Limited) C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe

(Lenovo Group Limited) C:\Program Files\LENOVO\HOTKEY\MICMUTE.exe

(Lenovo Group Limited) C:\Program Files\LENOVO\HOTKEY\TPHKLOAD.exe

(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe

(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe

(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe

(Lenovo) C:\Program Files\Lenovo\Lenovo Mobile Hotspot\LnvHotSpotSvc.exe

() C:\Program Files (x86)\Lenovo\LocationAware\loctaskmgr.exe

(Lenovo Group Limited) C:\Program Files\Lenovo\SettingsDependency\SettingsService.exe

(Authentec Inc.) C:\Program Files\ThinkVantage Fingerprint Software\upeksvr.exe

(Lenovo Group Limited) C:\Program Files\LENOVO\VIRTSCRL\virtscrl.exe

(Lenovo Group Limited) C:\Program Files\LENOVO\HOTKEY\tpnumlkd.exe

(Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\TPOSD.EXE

(Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\SHTCTKY.EXE

(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16.4.4406.1205_x64__8wekyb3d8bbwe\LiveComm.exe

() C:\Program Files (x86)\Lenovo\LocationAware\lpdagent.exe

(Lenovo.) C:\Windows\System32\TpShocks.exe

(Lenovo Group Limited) C:\Program Files\Lenovo\Password Manager\password_manager.exe

(Lenovo Group Limited) C:\Program Files (x86)\Lenovo\Password Manager\password_manager.exe

(Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\extapsup.exe

(Intel Corporation) C:\Windows\System32\hkcmd.exe

(Intel Corporation) C:\Windows\System32\igfxpers.exe

(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

(Synaptics Incorporated) C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE

(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPLpr.exe

() C:\Program Files (x86)\Datacolor\Spyder3Pro\Utility\Spyder3Utility.exe

(Ricoh co.,Ltd.) C:\Program Files (x86)\Integrated Camera Driver\X64\RCIMGDIR.exe

(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe

(Dropbox, Inc.) C:\Users\Peter\AppData\Roaming\Dropbox\bin\Dropbox.exe

(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe

(Microsoft Corporation) C:\WINDOWS\sysWOW64\wbem\wmiprvse.exe

(Dolby Laboratories Inc.) C:\Program Files (x86)\Dolby Home Theater v4\pcee4.exe

(Mozilla Corporation) C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe

(Intel Corporation) C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe

(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
 

==================== Registry (Whitelisted) ==================
 

HKLM\...\Run: [RTHDVCPL] "C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s [13538376 2013-05-21] (Realtek Semiconductor)

HKLM\...\Run: [RtHDVBg_Dolby] "C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /FORPCEE4 [1308232 2013-05-20] (Realtek Semiconductor)

HKLM\...\Run: [TpShocks] TpShocks.exe [382248 2013-05-10] (Lenovo.)

HKLM\...\Run: [PasswordManager] C:\Program Files\Lenovo\Password Manager\password_manager.exe [1534888 2012-10-23] (Lenovo Group Limited)

HKLM\...\Run: [AdobeAAMUpdater-1.0] "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [444904 2012-09-20] (Adobe Systems Incorporated)

HKLM\...\Run: [LenovoOptMouseUpdate] C:\Program Files\Lenovo\HOTKEY\extapsup.exe [255480 2013-04-19] (Lenovo Group Limited)

HKLM\...\Run: [AcWin7Hlpr] C:\Program Files (x86)\Lenovo\Access Connections\AcTBenabler.exe [x]

HKLM\...\Run: [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe [2963184 2013-05-29] (Synaptics Incorporated)

HKLM\...\Run: [LnvMobHotspotClient] C:\Program Files\Lenovo\Lenovo Mobile Hotspot\MobileHotspotclient.exe [937976 2013-05-28] (Lenovo)

HKLM\...\Run: [LENOVO.TPKNRRES] C:\Program Files\Lenovo\Communications Utility\TPKNRRES.exe [594936 2013-05-27] (Lenovo Corporation)

Winlogon\Notify\psfus: C:\Program Files\ThinkVantage Fingerprint Software\psqlpwd.dll (Authentec Inc.)

HKCU\...\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun [3673728 2012-11-06] (DT Soft Ltd)

HKCU\...\Run: [Steam] "C:\Program Files (x86)\Steam\Steam.exe" -silent [1635752 2013-05-04] (Valve Corporation)

HKCU\...\Policies\system: [DisableRegistryTools] 0

HKCU\...\Policies\system: [DisableTaskMgr] 0

MountPoints2: {2281668e-8466-11e2-beb1-3c970e590759} - "F:\setup.exe" 

MountPoints2: {e6c31630-7cf3-11e2-bea8-3c970e590759} - "F:\setup.exe" -a

HKLM-x32\...\Run: [RotateImage] C:\Program Files (x86)\Integrated Camera Driver\X64\RCIMGDIR.exe [59392 2012-05-02] (Ricoh co.,Ltd.)

HKLM-x32\...\Run: [avgnt] "C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min [345144 2013-06-26] (Avira Operations GmbH & Co. KG)

HKLM-x32\...\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)

HKLM-x32\...\Run: [AdobeCS5.5ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe" -launchedbylogin [1523360 2011-01-12] (Adobe Systems Incorporated)

HKLM-x32\...\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" [59720 2013-04-21] (Apple Inc.)

HKLM-x32\...\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime [421888 2012-10-25] (Apple Inc.)

HKLM-x32\...\Run: [Cisco AnyConnect Secure Mobility Agent for Windows] "C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnui.exe" -minimized [684024 2012-10-17] (Cisco Systems, Inc.)

HKLM-x32\...\Run: [IMSS] "C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe" [132920 2013-05-30] (Intel Corporation)

HKLM-x32\...\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe" [152392 2013-05-31] (Apple Inc.)

HKLM-x32\...\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [958576 2013-05-11] (Adobe Systems Incorporated)

HKLM-x32\...\Run: [PWMTRV] rundll32 C:\Program Files (x86)\ThinkPad\Utilities\PWMTR64V.DLL,PwrMgrBkGndMonitor [6618408 2013-06-04] (Lenovo Group Limited)

HKLM-x32\...\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" [253816 2013-03-12] (Oracle Corporation)

Lsa: [Notification Packages] scecli C:\Program Files\ThinkVantage Fingerprint Software\psqlpwd.dll

Startup: C:\ProgramData\Start Menu\Programs\Startup\Bluetooth.lnk

ShortcutTarget: Bluetooth.lnk -> C:\Program Files\ThinkPad\Bluetooth Software\BTTray.exe (Broadcom Corporation.)

Startup: C:\ProgramData\Start Menu\Programs\Startup\Spyder3Utility.lnk

ShortcutTarget: Spyder3Utility.lnk -> C:\Program Files (x86)\Datacolor\Spyder3Pro\Utility\Spyder3Utility.exe ()

Startup: C:\Users\Peter\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk

ShortcutTarget: Dropbox.lnk -> C:\Users\Peter\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)

Startup: C:\Users\Peter\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.4.1.lnk

ShortcutTarget: OpenOffice.org 3.4.1.lnk -> C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe ()
 

==================== Internet (Whitelisted) ====================
 

HKCU\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://www.lenovo.com/welcome/thinkpad

HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://lenovo13-comm.msn.com

SearchScopes: HKCU - {7AFF137D-23DE-4688-ABB1-6B39E6F3E846} URL = 

BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)

BHO: IePasswordManagerHelper Class - {BF468356-BB7E-42D7-9F15-4F3B9BCFCED2} - C:\Program Files\Lenovo\Password Manager\tvtpwm_ie_com.dll (Lenovo Group Limited)

BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)

BHO-x32: Citavi Picker - {609D670F-B735-4da7-AC6D-F3BD358E325E} - C:\Windows\\SysWOW64\mscoree.dll (Microsoft Corporation)

BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)

BHO-x32: IePasswordManagerHelper Class - {BF468356-BB7E-42D7-9F15-4F3B9BCFCED2} - C:\Program Files (x86)\Lenovo\Password Manager\tvtpwm_ie_com.dll (Lenovo Group Limited)

BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)

Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt

Tcpip\..\Interfaces\{AB94E8B7-CDFE-4189-8BD3-EB57E0CF062B}: [NameServer]193.189.244.225,193.189.244.206
 

FireFox:

========

FF ProfilePath: C:\Users\Peter\AppData\Roaming\Mozilla\Firefox\Profiles\if6ueips.default

FF SelectedSearchEngine: Google

FF Homepage: hxxp://theawesomer.com/

FF Keyword.URL: hxxp://www.google.de/search?q=

FF Plugin: @adobe.com/FlashPlayer - C:\WINDOWS\system32\Macromed\Flash\NPSWF64_11_7_700_224.dll ()

FF Plugin: @java.com/DTPlugin,version=10.25.2 - C:\WINDOWS\system32\npDeployJava1.dll (Oracle Corporation)

FF Plugin: @java.com/JavaPlugin,version=10.25.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)

FF Plugin: @videolan.org/vlc,version=2.0.5 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)

FF Plugin: @videolan.org/vlc,version=2.0.6 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)

FF Plugin: @videolan.org/vlc,version=2.0.7 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)

FF Plugin: adobe.com/AdobeAAMDetect - C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll (Adobe Systems)

FF Plugin-x32: @adobe.com/FlashPlayer - C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_11_7_700_224.dll ()

FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()

FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=3.0.72 - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)

FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)

FF Plugin-x32: @java.com/DTPlugin,version=10.25.2 - C:\WINDOWS\SysWOW64\npDeployJava1.dll (Oracle Corporation)

FF Plugin-x32: @java.com/JavaPlugin,version=10.25.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)

FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)

FF Plugin-x32: adobe.com/AdobeAAMDetect - C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll (Adobe Systems)

FF Extension: ProxTube - Gesperrte YouTube Videos entsperren - C:\Users\Peter\AppData\Roaming\Mozilla\Firefox\Profiles\if6ueips.default\Extensions\ich@maltegoetz.de

FF Extension: groovesharkUnlocker - C:\Users\Peter\AppData\Roaming\Mozilla\Firefox\Profiles\if6ueips.default\Extensions\groovesharkUnlocker@overlord1337.xpi

FF Extension: No Name - C:\Users\Peter\AppData\Roaming\Mozilla\Firefox\Profiles\if6ueips.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi

FF Extension: Default - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

FF HKCU\...\Firefox\Extensions: [{F74D5734-46F5-4B16-96F0-1E7FBF41B750}] C:\Program Files (x86)\Lenovo\Password Manager\PWM Firefox Extension\2.0b12

FF Extension: ThinkVantage Password Manager - C:\Program Files (x86)\Lenovo\Password Manager\PWM Firefox Extension\2.0b12
 

==================== Services (Whitelisted) =================
 

R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [84024 2013-06-26] (Avira Operations GmbH & Co. KG)

R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [108088 2013-06-26] (Avira Operations GmbH & Co. KG)

R2 ArchiCrypt Ultimate RAM-Disk 4; C:\WINDOWS\system32\ACRAMDiskHandlerService64R_D4.exe [1580648 2013-04-30] (Softwareentwicklung Remus - ArchiCrypt)

S3 AVControlCenter; C:\Program Files\Lenovo\Communications Utility\AVControlCenter32.exe [149496 2013-05-27] (Lenovo Corporation)

R2 BcmBtRSupport; C:\Windows\system32\BtwRSupportService.exe [2228440 2013-04-24] (Broadcom Corporation.)

S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [803872 2012-12-10] (Intel(R) Corporation)

R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [167736 2013-05-30] (Intel Corporation)

R3 Lenovo Settings Service; C:\Program Files\Lenovo\SettingsDependency\SettingsService.exe [2037240 2013-04-19] (Lenovo Group Limited)

R2 Lenovo System Agent Service; C:\Program Files\lenovo\SystemAgent\SystemAgentService.exe [559504 2012-08-16] (LENOVO INCORPORATED.)

S3 LENOVO.TVTVCAM; C:\Program Files\Lenovo\Communications Utility\vcamsvc.exe [683000 2013-05-27] (Lenovo Corporation)

R2 Lenovo.VIRTSCRLSVC; C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe [136288 2012-08-10] (Lenovo Group Limited)

R2 LnvHotSpotSvc; C:\Program Files\Lenovo\Lenovo Mobile Hotspot\LnvHotSpotSvc.exe [465912 2013-05-28] (Lenovo)

R2 LocationTaskManager; C:\Program Files (x86)\Lenovo\LocationAware\loctaskmgr.exe [463352 2013-04-19] ()

S3 SUService; C:\Program Files (x86)\Lenovo\System Update\SUService.exe [22376 2013-04-11] ()

S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [14920 2013-01-29] (Microsoft Corporation)
 

==================== Drivers (Whitelisted) ====================
 

R1 ACMoFlex64RD4; C:\WINDOWS\system32\drivers\ACMoFlex64RD4.sys [23656 2013-04-30] (Softwareentwicklung Remus - ArchiCrypt.de)

R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [100712 2013-03-27] (Avira Operations GmbH & Co. KG)

R1 avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [130016 2013-03-27] (Avira Operations GmbH & Co. KG)

R1 avkmgr; C:\Windows\system32\DRIVERS\avkmgr.sys [28600 2013-03-27] (Avira Operations GmbH & Co. KG)

R3 bcbtums; C:\Windows\system32\drivers\bcbtums.sys [172760 2013-04-24] (Broadcom Corporation.)

R3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [202752 2012-07-26] (Microsoft Corporation)

R3 BTWPANFL; C:\WINDOWS\system32\drivers\btwpanfl.sys [44912 2013-01-20] (Broadcom Corporation.)

S2 DgiVecp; C:\WINDOWS\system32\Drivers\DgiVecp.sys [53816 2009-03-02] (Samsung Electronics Co., Ltd.)

S2 DgiVecp; C:\WINDOWS\system32\Drivers\DgiVecp.sys [53816 2009-03-02] (Samsung Electronics Co., Ltd.)

R1 dtsoftbus01; C:\Windows\System32\drivers\dtsoftbus01.sys [283200 2013-03-05] (DT Soft Ltd)

R3 e1cexpress; C:\Windows\system32\DRIVERS\e1c63x64.sys [468240 2013-02-21] (Intel Corporation)

R3 LnvHIDHW; C:\Windows\System32\drivers\LnvHIDHW.sys [27496 2012-07-30] (Lenovo)

R3 MbmLowExt; C:\Windows\System32\Drivers\MbmLowExt.sys [26112 2012-10-30] (Ericsson AB)

R3 MbmUsbSerial; C:\Windows\System32\Drivers\MbmUsbSerial.sys [72704 2012-07-03] (Ericsson AB)

R3 MkBusFilter; C:\Windows\System32\drivers\MbmDeviceFilter.sys [25600 2012-10-22] (Ericsson AB)

R3 NETwNe64; C:\Windows\system32\DRIVERS\NETwew00.sys [3311072 2013-02-21] (Intel Corporation)

R0 RAMDiskVE; C:\Windows\System32\Drivers\RAMDiskVE.sys [73040 2012-09-06] (Dataram, Inc.)

R3 RCUVCAVS; C:\Windows\system32\DRIVERS\RCUVCAVS.sys [149632 2012-08-02] (Ricoh co.,Ltd.)

R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [44784 2013-05-29] (Synaptics Incorporated)

R2 smihlp; C:\Program Files\ThinkVantage Fingerprint Software\smihlp.sys [13128 2011-05-30] (Authentec Inc.)

S3 Spyder3; C:\Windows\System32\drivers\Spyder3.sys [15360 2010-03-30] ()

R3 wmbclass; C:\Windows\System32\drivers\wmbclass.sys [230912 2013-04-09] (Microsoft Corporation)

S3 XHCIPort; C:\Windows\System32\drivers\XHCIPort.sys [188384 2012-08-09] (Windows (R) Win 7 DDK provider)

S3 BTCFilterService; \SystemRoot\system32\DRIVERS\motfilt.sys [x]

S3 intaud_WaveExtensible; \SystemRoot\system32\drivers\intelaud.sys [x]

S3 iwdbus; \SystemRoot\System32\drivers\iwdbus.sys [x]

S3 motccgp; \SystemRoot\System32\drivers\motccgp.sys [x]

S3 motccgpfl; \SystemRoot\System32\drivers\motccgpfl.sys [x]

S3 motmodem; \SystemRoot\system32\DRIVERS\motmodem.sys [x]

S3 MotoSwitchService; \SystemRoot\System32\drivers\motswch.sys [x]

S3 Motousbnet; \SystemRoot\system32\DRIVERS\Motousbnet.sys [x]

S3 motusbdevice; \SystemRoot\System32\drivers\motusbdevice.sys [x]

S3 NETwNs64; \SystemRoot\system32\DRIVERS\NETwNs64.sys [x]
 

==================== NetSvcs (Whitelisted) ===================
 
 

==================== One Month Created Files and Folders ========
 

2013-07-07 23:59 - 2013-07-07 23:59 - 00263592 ____A (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe

2013-07-07 23:59 - 2013-07-07 23:59 - 00175016 ____A (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe

2013-07-07 23:59 - 2013-07-07 23:59 - 00175016 ____A (Oracle Corporation) C:\Windows\SysWOW64\java.exe

2013-07-07 23:59 - 2013-07-07 23:59 - 00096168 ____A (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll

2013-07-07 23:59 - 2013-07-07 23:59 - 00000000 ____D C:\Program Files (x86)\Java

2013-07-07 23:30 - 2013-07-08 00:10 - 00000000 ____D C:\Users\Peter\Desktop\Zeug

2013-07-07 21:13 - 2013-07-07 21:13 - 00000000 ____D C:\FRST

2013-07-07 20:11 - 2013-07-07 20:11 - 00448512 ____A (OldTimer Tools) C:\Users\Peter\Desktop\TFC.exe

2013-07-07 20:10 - 2013-07-07 20:10 - 01093032 ____A (Oracle Corporation) C:\Windows\System32\npDeployJava1.dll

2013-07-07 20:10 - 2013-07-07 20:10 - 00972712 ____A (Oracle Corporation) C:\Windows\System32\deployJava1.dll

2013-07-07 20:10 - 2013-07-07 20:10 - 00312232 ____A (Oracle Corporation) C:\Windows\System32\javaws.exe

2013-07-07 20:10 - 2013-07-07 20:10 - 00189352 ____A (Oracle Corporation) C:\Windows\System32\javaw.exe

2013-07-07 20:10 - 2013-07-07 20:10 - 00188840 ____A (Oracle Corporation) C:\Windows\System32\java.exe

2013-07-07 20:10 - 2013-07-07 20:10 - 00108968 ____A (Oracle Corporation) C:\Windows\System32\WindowsAccessBridge-64.dll

2013-07-07 20:10 - 2013-07-07 20:10 - 00000000 ____D C:\Program Files\Java

2013-07-07 13:38 - 2013-07-07 13:38 - 02347384 ____A (ESET) C:\Users\Peter\Desktop\esetsmartinstaller_enu.exe

2013-07-07 12:24 - 2013-07-07 12:24 - 00545954 ____A (Oleg N. Scherbakov) C:\Users\Peter\Desktop\JRT.exe

2013-07-07 12:24 - 2013-07-07 12:24 - 00000000 ____D C:\Windows\ERUNT

2013-07-07 12:24 - 2013-07-07 12:24 - 00000000 ____D C:\JRT

2013-07-07 12:21 - 2013-07-07 12:21 - 00002934 ____A C:\AdwCleaner[S1].txt

2013-07-07 11:38 - 2013-07-07 10:50 - 01934636 ____A (Farbar) C:\Users\Peter\Desktop\FRST64.exe

2013-07-07 00:32 - 2013-07-07 00:32 - 00000000 ____D C:\Program Files (x86)\ThinkPad

2013-07-07 00:32 - 2013-06-04 07:40 - 00020736 ____A (Lenovo Group Limited) C:\Windows\System32\Drivers\TPPWR64V.SYS

2013-07-07 00:32 - 2013-05-27 12:57 - 16819192 ____A (Lenovo Corporation) C:\Windows\System32\LibDriverMft.dll

2013-07-07 00:32 - 2013-05-27 12:57 - 00076280 ____A (Lenovo Corporation) C:\Windows\System32\LibDriverMftStart.dll

2013-07-07 00:32 - 2013-05-27 12:52 - 00067064 ____A (Lenovo Corporation) C:\Windows\SysWOW64\LibDriverMftStart.dll

2013-07-07 00:32 - 2013-05-27 12:51 - 16820728 ____A (Lenovo Corporation) C:\Windows\SysWOW64\LibDriverMft.dll

2013-07-07 00:32 - 2013-05-24 19:05 - 02366320 ____A (Microsoft Corporation) C:\Windows\System32\WudfUpdate_01011.dll

2013-07-06 22:46 - 2013-07-06 22:46 - 00000000 ____D C:\Users\Peter\AppData\Roaming\Malwarebytes

2013-07-06 22:45 - 2013-07-06 22:45 - 00000000 ____D C:\ProgramData\Malwarebytes

2013-07-04 09:08 - 2013-04-24 00:25 - 02232024 ____A (Broadcom Corporation.) C:\Windows\System32\BcmBtRSupport.dll

2013-07-04 09:08 - 2013-04-24 00:25 - 02228440 ____A (Broadcom Corporation.) C:\Windows\System32\BtwRSupportService.exe

2013-07-04 09:08 - 2013-04-24 00:25 - 00186584 ____A (Broadcom Corporation.) C:\Windows\System32\Drivers\btwaudio.sys

2013-07-04 09:08 - 2013-04-24 00:24 - 00228568 ____A (Broadcom Corporation.) C:\Windows\System32\Drivers\btwavdt.sys

2013-07-04 09:08 - 2013-04-24 00:24 - 00022744 ____A (Broadcom Corporation.) C:\Windows\System32\Drivers\btwrchid.sys

2013-07-04 09:08 - 2012-07-27 07:48 - 00040248 ____A (Broadcom Corporation.) C:\Windows\System32\Drivers\btwl2cap.sys

2013-07-04 09:07 - 2013-05-29 21:41 - 01048816 ____A (Synaptics Incorporated) C:\Windows\System32\SynCOM.dll

2013-07-04 09:07 - 2013-05-29 21:41 - 00540400 ____A (Synaptics Incorporated) C:\Windows\SysWOW64\SynCOM.dll

2013-07-04 09:07 - 2013-05-29 21:41 - 00460528 ____A (Synaptics Incorporated) C:\Windows\System32\Drivers\SynTP.sys

2013-07-04 09:07 - 2013-05-29 21:41 - 00229616 ____A (Synaptics Incorporated) C:\Windows\System32\SynTPAPI.dll

2013-07-04 09:07 - 2013-05-29 21:41 - 00178416 ____A (Synaptics Incorporated) C:\Windows\System32\SynTPCo14.dll

2013-07-04 09:07 - 2013-05-29 21:41 - 00114416 ____A (Synaptics Incorporated) C:\Windows\SysWOW64\SynTPCOM.dll

2013-07-04 09:07 - 2013-05-29 21:41 - 00044784 ____A (Synaptics Incorporated) C:\Windows\System32\Drivers\Smb_driver_Intel.sys

2013-07-03 20:58 - 2013-05-16 00:35 - 00144384 ____A (Microsoft Corporation) C:\Windows\System32\tssdisai.dll

2013-07-03 18:25 - 2013-07-03 18:25 - 00000000 ____D C:\Users\Peter\AppData\Local\Passbild_Generator

2013-07-02 15:17 - 2013-07-02 15:17 - 00000000 ____D C:\Windows\msagent

2013-07-02 15:17 - 2000-05-22 16:58 - 00244416 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msflxgrd.ocx

2013-06-26 11:12 - 2013-06-26 11:12 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox

2013-06-25 19:23 - 2013-06-25 20:42 - 00000000 ____D C:\Program Files (x86)\Mozilla Thunderbird

2013-06-20 16:23 - 2013-06-20 16:23 - 00000000 ____D C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69

2013-06-20 16:23 - 2013-06-20 16:23 - 00000000 ____D C:\Program Files\iTunes

2013-06-20 16:23 - 2013-06-20 16:23 - 00000000 ____D C:\Program Files\iPod

2013-06-20 01:43 - 2013-06-20 01:43 - 00000000 ____D C:\Program Files (x86)\Dolby Home Theater v4

2013-06-20 01:43 - 2013-06-03 17:08 - 00000008 ____A C:\Windows\System32\Drivers\RTKHDAUD.DAT

2013-06-20 01:43 - 2013-05-21 21:50 - 03425608 ____A (Realtek Semiconductor Corp.) C:\Windows\System32\Drivers\RTKVHD64.sys

2013-06-20 01:43 - 2013-05-21 15:57 - 00142408 ____A (Realtek Semiconductor Corp.) C:\Windows\System32\RCoInstII64.dll

2013-06-20 01:43 - 2013-05-21 15:05 - 00576929 ____A C:\Windows\System32\Drivers\RTAIODAT.DAT

2013-06-20 01:43 - 2013-05-21 14:15 - 24962560 ____A (Realtek Semiconductor Corp.) C:\Windows\System32\RCoRes64.dat

2013-06-20 01:43 - 2013-05-20 16:16 - 01003592 ____A (Realtek Semiconductor Corp.) C:\Windows\System32\RtkApi64.dll

2013-06-20 01:43 - 2013-05-20 14:36 - 02794056 ____A (Realtek Semiconductor Corp.) C:\Windows\System32\RtPgEx64.dll

2013-06-20 01:43 - 2013-05-02 12:01 - 02103040 ____A (Waves Audio Ltd.) C:\Windows\System32\WavesGUILib64.dll

2013-06-20 01:43 - 2013-04-30 19:53 - 03693640 ____A (Realtek Semiconductor Corp.) C:\Windows\System32\RtkAPO64.dll

2013-06-20 01:43 - 2013-04-30 14:28 - 00916016 ____A (Sony Corporation) C:\Windows\System32\SFSS_APO.dll

2013-06-20 01:43 - 2013-04-24 17:16 - 01662024 ____A (Realtek Semiconductor Corp.) C:\Windows\System32\RTSnMg64.cpl

2013-06-20 01:43 - 2013-04-23 00:40 - 02735648 ____A (Fortemedia Corporation) C:\Windows\System32\FMAPO64.dll

2013-06-20 01:43 - 2013-04-01 14:06 - 02079816 ____A (Realtek Semiconductor Corp.) C:\Windows\RtlExUpd.dll

2013-06-20 01:43 - 2013-03-23 03:43 - 00208072 ____A (Andrea Electronics Corporation) C:\Windows\System32\AERTAC64.dll

2013-06-20 01:43 - 2013-02-20 18:55 - 01284680 ____A (Realtek Semiconductor Corp.) C:\Windows\System32\RTCOM64.dll

2013-06-20 01:43 - 2012-10-02 14:41 - 00501192 ____A (DTS) C:\Windows\System32\DTSU2PLFX64.dll

2013-06-20 01:43 - 2012-10-02 14:41 - 00487368 ____A (DTS) C:\Windows\System32\DTSU2PGFX64.dll

2013-06-20 01:43 - 2012-10-02 14:41 - 00415688 ____A (DTS) C:\Windows\System32\DTSU2PREC64.dll

2013-06-20 01:43 - 2012-08-31 19:18 - 07164176 ____A (Dolby Laboratories) C:\Windows\System32\R4EEP64A.dll

2013-06-20 01:43 - 2012-08-31 19:17 - 00434960 ____A (Dolby Laboratories) C:\Windows\System32\R4EED64A.dll

2013-06-20 01:43 - 2012-08-31 19:17 - 00141584 ____A (Dolby Laboratories) C:\Windows\System32\R4EEL64A.dll

2013-06-20 01:43 - 2012-08-31 19:17 - 00124176 ____A (Dolby Laboratories) C:\Windows\System32\R4EEA64A.dll

2013-06-20 01:43 - 2012-08-31 19:17 - 00075024 ____A (Dolby Laboratories) C:\Windows\System32\R4EEG64A.dll

2013-06-19 22:15 - 2013-05-13 15:15 - 00016344 ____A (Intel Corporation) C:\Windows\System32\Drivers\IntelMEFWVer.dll

2013-06-19 22:12 - 2013-06-19 22:12 - 04876072 ____A C:\Windows\System32\FNTCACHE.DAT

2013-06-16 12:18 - 2013-05-31 01:24 - 01257472 ____A (Microsoft Corporation) C:\Windows\System32\kernel32.dll

2013-06-16 12:18 - 2013-05-31 01:08 - 00974848 ____A (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll

2013-06-16 12:18 - 2013-05-24 01:01 - 01300992 ____A (Microsoft Corporation) C:\Windows\System32\gdi32.dll

2013-06-16 12:18 - 2013-05-24 00:27 - 01022464 ____A (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll

2013-06-16 12:17 - 2013-05-15 04:25 - 00888320 ____A (Microsoft Corporation) C:\Windows\System32\autochk.exe

2013-06-16 12:17 - 2013-05-15 04:25 - 00542208 ____A (Microsoft Corporation) C:\Windows\System32\untfs.dll

2013-06-16 12:17 - 2013-05-15 04:24 - 00793088 ____A (Microsoft Corporation) C:\Windows\SysWOW64\autochk.exe

2013-06-16 12:17 - 2013-05-15 04:24 - 00482816 ____A (Microsoft Corporation) C:\Windows\SysWOW64\untfs.dll

2013-06-15 16:53 - 2013-05-04 09:58 - 00120736 ____A (Microsoft Corporation) C:\Windows\System32\AuthHost.exe

2013-06-15 16:53 - 2013-05-04 09:34 - 00446720 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\USBHUB3.SYS

2013-06-15 16:53 - 2013-05-04 09:34 - 00284416 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\spaceport.sys

2013-06-15 16:53 - 2013-05-04 09:34 - 00213248 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\UCX01000.SYS

2013-06-15 16:53 - 2013-05-04 09:30 - 00058312 ____A (Microsoft Corporation) C:\Windows\System32\wuauclt.exe

2013-06-15 16:53 - 2013-05-04 08:59 - 13644288 ____A (Microsoft Corporation) C:\Windows\System32\Windows.UI.Xaml.dll

2013-06-15 16:53 - 2013-05-04 08:59 - 03241472 ____A (Microsoft Corporation) C:\Windows\System32\wuaueng.dll

2013-06-15 16:53 - 2013-05-04 08:59 - 01619968 ____A (Microsoft Corporation) C:\Windows\System32\wucltux.dll

2013-06-15 16:53 - 2013-05-04 08:59 - 01483776 ____A (Microsoft Corporation) C:\Windows\System32\VSSVC.exe

2013-06-15 16:53 - 2013-05-04 08:59 - 00812544 ____A (Microsoft Corporation) C:\Windows\System32\Magnify.exe

2013-06-15 16:53 - 2013-05-04 08:59 - 00760320 ____A (Microsoft Corporation) C:\Windows\System32\wuapi.dll

2013-06-15 16:53 - 2013-05-04 08:59 - 00251904 ____A (Microsoft Corporation) C:\Windows\System32\WUSettingsProvider.dll

2013-06-15 16:53 - 2013-05-04 08:59 - 00141824 ____A (Microsoft Corporation) C:\Windows\System32\wuwebv.dll

2013-06-15 16:53 - 2013-05-04 08:59 - 00098304 ____A (Microsoft Corporation) C:\Windows\System32\wudriver.dll

2013-06-15 16:53 - 2013-05-04 08:59 - 00039424 ____A (Microsoft Corporation) C:\Windows\System32\wuapp.exe

2013-06-15 16:53 - 2013-05-04 08:58 - 10116096 ____A (Microsoft Corporation) C:\Windows\System32\twinui.dll

2013-06-15 16:53 - 2013-05-04 08:58 - 01332736 ____A (Microsoft Corporation) C:\Windows\System32\sysmain.dll

2013-06-15 16:53 - 2013-05-04 08:58 - 00470528 ____A (Microsoft Corporation) C:\Windows\System32\netprofmsvc.dll

2013-06-15 16:53 - 2013-05-04 08:58 - 00330240 ____A (Microsoft Corporation) C:\Windows\System32\stobject.dll

2013-06-15 16:53 - 2013-05-04 08:58 - 00328192 ____A (Microsoft Corporation) C:\Windows\System32\ubpm.dll

2013-06-15 16:53 - 2013-05-04 08:58 - 00173568 ____A (Microsoft Corporation) C:\Windows\System32\storewuauth.dll

2013-06-15 16:53 - 2013-05-04 08:58 - 00169984 ____A (Microsoft Corporation) C:\Windows\System32\netplwiz.dll

2013-06-15 16:53 - 2013-05-04 08:58 - 00151552 ____A (Microsoft Corporation) C:\Windows\System32\netprofm.dll

2013-06-15 16:53 - 2013-05-04 08:58 - 00093696 ____A (Microsoft Corporation) C:\Windows\System32\psmsrv.dll

2013-06-15 16:53 - 2013-05-04 08:57 - 02305024 ____A (Microsoft Corporation) C:\Windows\System32\authui.dll

2013-06-15 16:53 - 2013-05-04 08:57 - 01131520 ____A (Microsoft Corporation) C:\Windows\System32\AppXDeploymentServer.dll

2013-06-15 16:53 - 2013-05-04 08:57 - 00820736 ____A (Microsoft Corporation) C:\Windows\System32\gpprefcl.dll

2013-06-15 16:53 - 2013-05-04 08:57 - 00708096 ____A (Microsoft Corporation) C:\Windows\System32\AppXDeploymentExtensions.dll

2013-06-15 16:53 - 2013-05-04 08:57 - 00560640 ____A (Microsoft Corporation) C:\Windows\System32\mfmp4srcsnk.dll

2013-06-15 16:53 - 2013-05-04 08:57 - 00501760 ____A (Microsoft Corporation) C:\Windows\System32\DevicePairing.dll

2013-06-15 16:53 - 2013-05-04 08:57 - 00389120 ____A (Microsoft Corporation) C:\Windows\System32\BCP47Langs.dll

2013-06-15 16:53 - 2013-05-04 08:57 - 00179712 ____A (Microsoft Corporation) C:\Windows\System32\bisrv.dll

2013-06-15 16:53 - 2013-05-04 08:57 - 00122368 ____A (Microsoft Corporation) C:\Windows\System32\biwinrt.dll

2013-06-15 16:53 - 2013-05-04 08:57 - 00017408 ____A (Microsoft Corporation) C:\Windows\System32\muifontsetup.dll

2013-06-15 16:53 - 2013-05-04 08:56 - 00419840 ____A (Microsoft Corporation) C:\Windows\System32\intl.cpl

2013-06-15 16:53 - 2013-05-04 06:58 - 00758784 ____A (Microsoft Corporation) C:\Windows\SysWOW64\Magnify.exe

2013-06-15 16:53 - 2013-05-04 06:58 - 00621056 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll

2013-06-15 16:53 - 2013-05-04 06:58 - 00125952 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll

2013-06-15 16:53 - 2013-05-04 06:58 - 00083968 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll

2013-06-15 16:53 - 2013-05-04 06:58 - 00034304 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe

2013-06-15 16:53 - 2013-05-04 06:57 - 10788864 ____A (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.dll

2013-06-15 16:53 - 2013-05-04 06:57 - 08857088 ____A (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll

2013-06-15 16:53 - 2013-05-04 06:57 - 00303616 ____A (Microsoft Corporation) C:\Windows\SysWOW64\stobject.dll

2013-06-15 16:53 - 2013-05-04 06:57 - 00247296 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ubpm.dll

2013-06-15 16:53 - 2013-05-04 06:57 - 00151040 ____A (Microsoft Corporation) C:\Windows\SysWOW64\netplwiz.dll

2013-06-15 16:53 - 2013-05-04 06:57 - 00115712 ____A (Microsoft Corporation) C:\Windows\SysWOW64\netprofm.dll

2013-06-15 16:53 - 2013-05-04 06:57 - 00018432 ____A (Microsoft Corporation) C:\Windows\SysWOW64\npmproxy.dll

2013-06-15 16:53 - 2013-05-04 06:57 - 00014336 ____A (Microsoft Corporation) C:\Windows\SysWOW64\muifontsetup.dll

2013-06-15 16:53 - 2013-05-04 06:56 - 02035712 ____A (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll

2013-06-15 16:53 - 2013-05-04 06:56 - 00582144 ____A (Microsoft Corporation) C:\Windows\SysWOW64\gpprefcl.dll

2013-06-15 16:53 - 2013-05-04 06:56 - 00449536 ____A (Microsoft Corporation) C:\Windows\SysWOW64\DevicePairing.dll

2013-06-15 16:53 - 2013-05-04 06:56 - 00411136 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mfmp4srcsnk.dll

2013-06-15 16:53 - 2013-05-04 06:56 - 00309760 ____A (Microsoft Corporation) C:\Windows\SysWOW64\BCP47Langs.dll

2013-06-15 16:53 - 2013-05-04 06:56 - 00092160 ____A (Microsoft Corporation) C:\Windows\SysWOW64\biwinrt.dll

2013-06-15 16:53 - 2013-05-04 06:55 - 00389632 ____A (Microsoft Corporation) C:\Windows\SysWOW64\intl.cpl

2013-06-15 16:53 - 2013-05-04 06:51 - 00014848 ____A (Microsoft) C:\Windows\System32\rars.rs

2013-06-15 16:53 - 2013-05-04 06:48 - 00083968 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\hidclass.sys

2013-06-15 16:53 - 2013-05-04 06:48 - 00027648 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\hidusb.sys

2013-06-15 16:53 - 2013-05-04 06:47 - 00427520 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\rdbss.sys

2013-06-15 16:53 - 2013-05-04 06:10 - 00014848 ____A (Microsoft) C:\Windows\SysWOW64\rars.rs

2013-06-15 16:53 - 2013-05-03 00:04 - 00386646 ____A C:\Windows\System32\ApnDatabase.xml

2013-06-12 14:19 - 2013-04-03 01:37 - 00025088 ____A (Microsoft Corporation) C:\Windows\SysWOW64\cryptdlg.dll

2013-06-12 14:19 - 2013-04-03 01:12 - 00030720 ____A (Microsoft Corporation) C:\Windows\System32\cryptdlg.dll

2013-06-12 09:50 - 2013-06-05 00:09 - 00693112 ____A (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe

2013-06-12 09:50 - 2013-06-05 00:09 - 00078200 ____A (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl

2013-06-12 09:31 - 2013-05-16 00:37 - 00044032 ____A (Microsoft Corporation) C:\Windows\SysWOW64\UXInit.dll

2013-06-12 09:31 - 2013-05-16 00:36 - 14320640 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll

2013-06-12 09:31 - 2013-05-16 00:35 - 19230720 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.dll

2013-06-12 09:31 - 2013-05-16 00:35 - 00053760 ____A (Microsoft Corporation) C:\Windows\System32\UXInit.dll

2013-06-12 09:31 - 2013-05-14 15:14 - 02706432 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.tlb

2013-06-12 09:31 - 2013-05-14 11:23 - 02706432 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb

2013-06-12 09:31 - 2013-05-04 09:45 - 02233600 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\tcpip.sys

2013-06-12 09:31 - 2013-04-29 00:30 - 13760512 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll

2013-06-12 09:31 - 2013-04-29 00:30 - 02877440 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll

2013-06-12 09:31 - 2013-04-29 00:30 - 02046976 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll

2013-06-12 09:31 - 2013-04-29 00:30 - 01767936 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll

2013-06-12 09:31 - 2013-04-29 00:30 - 01141248 ____A (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll

2013-06-12 09:31 - 2013-04-29 00:30 - 00690688 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll

2013-06-12 09:31 - 2013-04-29 00:30 - 00493056 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll

2013-06-12 09:31 - 2013-04-29 00:28 - 03958784 ____A (Microsoft Corporation) C:\Windows\System32\jscript9.dll

2013-06-12 09:31 - 2013-04-29 00:28 - 02241024 ____A (Microsoft Corporation) C:\Windows\System32\wininet.dll

2013-06-12 09:31 - 2013-04-29 00:28 - 01365504 ____A (Microsoft Corporation) C:\Windows\System32\urlmon.dll

2013-06-12 09:31 - 2013-04-29 00:28 - 00915968 ____A (Microsoft Corporation) C:\Windows\System32\uxtheme.dll

2013-06-12 09:31 - 2013-04-29 00:28 - 00603136 ____A (Microsoft Corporation) C:\Windows\System32\msfeeds.dll

2013-06-12 09:31 - 2013-04-29 00:28 - 00051712 ____A (Microsoft Corporation) C:\Windows\System32\ie4uinit.exe

2013-06-12 09:31 - 2013-04-29 00:27 - 15404544 ____A (Microsoft Corporation) C:\Windows\System32\ieframe.dll

2013-06-12 09:31 - 2013-04-29 00:27 - 02647552 ____A (Microsoft Corporation) C:\Windows\System32\iertutil.dll

2013-06-12 09:31 - 2013-04-29 00:27 - 00855552 ____A (Microsoft Corporation) C:\Windows\System32\jscript.dll

2013-06-12 09:31 - 2013-04-27 07:20 - 00733184 ____A (Microsoft Corporation) C:\Windows\System32\win32spl.dll

2013-06-12 09:31 - 2013-04-24 01:13 - 01013248 ____A (Microsoft Corporation) C:\Windows\SysWOW64\certutil.exe

2013-06-12 09:31 - 2013-04-24 01:12 - 01569792 ____A (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll

2013-06-12 09:31 - 2013-04-24 01:12 - 00109056 ____A (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll

2013-06-12 09:31 - 2013-04-24 00:56 - 01255936 ____A (Microsoft Corporation) C:\Windows\System32\certutil.exe

2013-06-12 09:31 - 2013-04-24 00:55 - 01889280 ____A (Microsoft Corporation) C:\Windows\System32\crypt32.dll

2013-06-12 09:31 - 2013-04-24 00:55 - 00141312 ____A (Microsoft Corporation) C:\Windows\System32\cryptnet.dll

2013-06-12 09:31 - 2013-04-24 00:55 - 00068096 ____A (Microsoft Corporation) C:\Windows\System32\cryptsvc.dll
 

==================== One Month Modified Files and Folders =======
 

2013-07-08 09:57 - 2013-01-06 04:42 - 00000000 ___RD C:\Users\Peter\Dropbox

2013-07-08 09:57 - 2013-01-06 04:40 - 00000000 ____D C:\Users\Peter\AppData\Roaming\Dropbox

2013-07-08 09:57 - 2012-07-26 10:12 - 00000000 ____D C:\Windows\System32\sru

2013-07-08 00:41 - 2013-01-06 03:42 - 00000884 ____A C:\Windows\Tasks\Adobe Flash Player Updater.job

2013-07-08 00:10 - 2013-07-07 23:30 - 00000000 ____D C:\Users\Peter\Desktop\Zeug

2013-07-08 00:07 - 2013-01-06 09:02 - 01986157 ____A C:\Windows\WindowsUpdate.log

2013-07-07 23:59 - 2013-07-07 23:59 - 00263592 ____A (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe

2013-07-07 23:59 - 2013-07-07 23:59 - 00175016 ____A (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe

2013-07-07 23:59 - 2013-07-07 23:59 - 00175016 ____A (Oracle Corporation) C:\Windows\SysWOW64\java.exe

2013-07-07 23:59 - 2013-07-07 23:59 - 00096168 ____A (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll

2013-07-07 23:59 - 2013-07-07 23:59 - 00000000 ____D C:\Program Files (x86)\Java

2013-07-07 23:59 - 2013-02-19 18:31 - 00867240 ____A (Oracle Corporation) C:\Windows\SysWOW64\npDeployJava1.dll

2013-07-07 23:59 - 2013-02-19 18:31 - 00789416 ____A (Oracle Corporation) C:\Windows\SysWOW64\deployJava1.dll

2013-07-07 23:40 - 2013-01-06 17:49 - 00753134 ____A C:\Windows\System32\perfh007.dat

2013-07-07 23:40 - 2013-01-06 17:49 - 00155826 ____A C:\Windows\System32\perfc007.dat

2013-07-07 23:40 - 2012-07-26 09:28 - 01745416 ____A C:\Windows\System32\PerfStringBackup.INI

2013-07-07 23:33 - 2012-07-26 09:22 - 00000006 ___AH C:\Windows\Tasks\SA.DAT

2013-07-07 23:33 - 2012-07-26 07:26 - 00786432 __ASH C:\Windows\System32\config\BBI

2013-07-07 21:13 - 2013-07-07 21:13 - 00000000 ____D C:\FRST

2013-07-07 20:13 - 2012-09-13 20:32 - 00578170 ____A C:\Windows\PFRO.log

2013-07-07 20:11 - 2013-07-07 20:11 - 00448512 ____A (OldTimer Tools) C:\Users\Peter\Desktop\TFC.exe

2013-07-07 20:10 - 2013-07-07 20:10 - 01093032 ____A (Oracle Corporation) C:\Windows\System32\npDeployJava1.dll

2013-07-07 20:10 - 2013-07-07 20:10 - 00972712 ____A (Oracle Corporation) C:\Windows\System32\deployJava1.dll

2013-07-07 20:10 - 2013-07-07 20:10 - 00312232 ____A (Oracle Corporation) C:\Windows\System32\javaws.exe

2013-07-07 20:10 - 2013-07-07 20:10 - 00189352 ____A (Oracle Corporation) C:\Windows\System32\javaw.exe

2013-07-07 20:10 - 2013-07-07 20:10 - 00188840 ____A (Oracle Corporation) C:\Windows\System32\java.exe

2013-07-07 20:10 - 2013-07-07 20:10 - 00108968 ____A (Oracle Corporation) C:\Windows\System32\WindowsAccessBridge-64.dll

2013-07-07 20:10 - 2013-07-07 20:10 - 00000000 ____D C:\Program Files\Java

2013-07-07 14:14 - 2013-01-06 03:39 - 00000000 ____D C:\Users\Peter\AppData\Roaming\vlc

2013-07-07 13:38 - 2013-07-07 13:38 - 02347384 ____A (ESET) C:\Users\Peter\Desktop\esetsmartinstaller_enu.exe

2013-07-07 12:24 - 2013-07-07 12:24 - 00545954 ____A (Oleg N. Scherbakov) C:\Users\Peter\Desktop\JRT.exe

2013-07-07 12:24 - 2013-07-07 12:24 - 00000000 ____D C:\Windows\ERUNT

2013-07-07 12:24 - 2013-07-07 12:24 - 00000000 ____D C:\JRT

2013-07-07 12:21 - 2013-07-07 12:21 - 00002934 ____A C:\AdwCleaner[S1].txt

2013-07-07 10:50 - 2013-07-07 11:38 - 01934636 ____A (Farbar) C:\Users\Peter\Desktop\FRST64.exe

2013-07-07 00:32 - 2013-07-07 00:32 - 00000000 ____D C:\Program Files (x86)\ThinkPad

2013-07-07 00:32 - 2013-01-06 08:52 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information

2013-07-07 00:32 - 2013-01-06 08:52 - 00000000 ____D C:\Program Files\Lenovo

2013-07-07 00:32 - 2013-01-06 08:52 - 00000000 ____D C:\Program Files (x86)\Lenovo

2013-07-07 00:32 - 2012-07-26 10:12 - 00000000 __RSD C:\Windows\Media

2013-07-07 00:25 - 2012-07-26 10:12 - 00000000 ____D C:\Windows\System32\NDF

2013-07-06 22:46 - 2013-07-06 22:46 - 00000000 ____D C:\Users\Peter\AppData\Roaming\Malwarebytes

2013-07-06 22:45 - 2013-07-06 22:45 - 00000000 ____D C:\ProgramData\Malwarebytes

2013-07-06 22:13 - 2013-01-06 09:56 - 00000000 ____D C:\Users\Peter\AppData\Local\Adobe

2013-07-05 09:54 - 2012-07-26 10:12 - 00000000 ____D C:\Windows\AUInstallAgent

2013-07-04 09:08 - 2012-07-26 09:21 - 00057789 ____A C:\Windows\setupact.log

2013-07-04 09:07 - 2013-01-18 20:37 - 00001432 ____A C:\Windows\Synaptics.log

2013-07-04 09:07 - 2013-01-06 08:51 - 00267496 ____A C:\Windows\DPINST.LOG

2013-07-04 01:08 - 2013-05-17 09:55 - 524288848 ____A C:\Users\Peter\Desktop\Firefox.ard

2013-07-04 01:08 - 2013-01-06 02:57 - 00000000 ____D C:\Users\Peter\AppData\Roaming\Mozilla

2013-07-03 23:06 - 2012-07-26 07:37 - 00000000 ____D C:\Windows\servicing

2013-07-03 18:25 - 2013-07-03 18:25 - 00000000 ____D C:\Users\Peter\AppData\Local\Passbild_Generator

2013-07-02 16:07 - 2013-01-06 02:56 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service

2013-07-02 15:56 - 2013-04-29 16:21 - 00000000 ____D C:\Users\Peter\Documents\Citavi 4

2013-07-02 15:17 - 2013-07-02 15:17 - 00000000 ____D C:\Windows\msagent

2013-07-02 15:17 - 2012-07-26 10:12 - 00000000 ____D C:\Windows\Help

2013-06-26 11:12 - 2013-06-26 11:12 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox

2013-06-26 10:23 - 2013-05-07 18:40 - 00083672 ____A (Avira Operations GmbH & Co. KG) C:\Windows\System32\Drivers\avnetflt.sys

2013-06-25 20:42 - 2013-06-25 19:23 - 00000000 ____D C:\Program Files (x86)\Mozilla Thunderbird

2013-06-25 09:20 - 2013-01-06 09:19 - 00000000 ____D C:\Users\Peter\AppData\Roaming\Adobe

2013-06-25 09:20 - 2013-01-06 08:57 - 00000000 ____D C:\ProgramData\Adobe

2013-06-25 09:16 - 2013-01-06 08:57 - 00000000 ____D C:\Program Files (x86)\Adobe

2013-06-22 20:29 - 2013-03-19 01:29 - 00000000 ____D C:\Program Files\Intel

2013-06-22 20:29 - 2013-03-04 02:03 - 00000000 ____D C:\ProgramData\Package Cache

2013-06-22 20:28 - 2013-01-18 20:39 - 00000000 ____D C:\Program Files (x86)\Cisco

2013-06-22 20:28 - 2013-01-06 08:51 - 00000000 ____D C:\ProgramData\Intel

2013-06-22 20:28 - 2013-01-06 08:51 - 00000000 ____D C:\Program Files (x86)\Intel

2013-06-20 16:23 - 2013-06-20 16:23 - 00000000 ____D C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69

2013-06-20 16:23 - 2013-06-20 16:23 - 00000000 ____D C:\Program Files\iTunes

2013-06-20 16:23 - 2013-06-20 16:23 - 00000000 ____D C:\Program Files\iPod

2013-06-20 16:23 - 2013-05-16 23:03 - 00000000 ____D C:\Program Files (x86)\iTunes

2013-06-20 16:22 - 2012-07-26 10:12 - 00000000 ____D C:\Windows\LiveKernelReports

2013-06-20 01:43 - 2013-06-20 01:43 - 00000000 ____D C:\Program Files (x86)\Dolby Home Theater v4

2013-06-20 01:43 - 2013-01-06 08:53 - 00003066 ____A C:\RHDSetup.log

2013-06-20 01:43 - 2013-01-06 08:53 - 00000000 ____D C:\Windows\SysWOW64\RTCOM

2013-06-19 22:12 - 2013-06-19 22:12 - 04876072 ____A C:\Windows\System32\FNTCACHE.DAT

2013-06-19 21:41 - 2012-07-26 10:12 - 00000000 ____D C:\Windows\rescache

2013-06-19 01:42 - 2012-07-26 10:12 - 00000000 ____D C:\Windows\WinStore

2013-06-19 01:42 - 2012-07-26 10:12 - 00000000 ____D C:\Windows\ToastData

2013-06-19 01:42 - 2012-07-26 10:12 - 00000000 ____D C:\Program Files\Windows Photo Viewer

2013-06-19 01:42 - 2012-07-26 10:12 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer

2013-06-19 01:42 - 2012-07-26 07:38 - 00000000 ____D C:\Windows\SysWOW64\Dism

2013-06-19 01:42 - 2012-07-26 07:38 - 00000000 ____D C:\Windows\System32\Dism

2013-06-18 12:49 - 2013-01-06 10:03 - 75825640 ____A (Microsoft Corporation) C:\Windows\System32\MRT.exe

2013-06-17 14:59 - 2013-01-06 14:39 - 00000000 ____D C:\Users\Peter\AppData\Local\CrashDumps

2013-06-10 00:28 - 2013-03-09 21:44 - 00000000 ____D C:\Program Files (x86)\Steam
 

==================== Bamital & volsnap Check =================
 

C:\Windows\System32\winlogon.exe => MD5 is legit

C:\Windows\System32\wininit.exe => MD5 is legit

C:\Windows\explorer.exe => MD5 is legit

C:\Windows\SysWOW64\explorer.exe => MD5 is legit

C:\Windows\System32\svchost.exe => MD5 is legit

C:\Windows\SysWOW64\svchost.exe => MD5 is legit

C:\Windows\System32\services.exe => MD5 is legit

C:\Windows\System32\User32.dll => MD5 is legit

C:\Windows\SysWOW64\User32.dll => MD5 is legit

C:\Windows\System32\userinit.exe => MD5 is legit

C:\Windows\SysWOW64\userinit.exe => MD5 is legit

C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
 
 

LastRegBack: 2013-07-01 22:54
 

==================== End Of Log ============================

--- --- ---

Addition

Code:

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 04-07-2013

Ran by Peter at 2013-07-08 09:59:11

Running from C:\Users\Peter\Desktop

Boot Mode: Normal

==========================================================
 
 

==================== Installed Programs =======================
 

Adobe AIR (x32 Version: 3.7.0.1530)

Adobe Community Help (x32 Version: 3.4.980)

Adobe Creative Suite 5.5 Master Collection (x32 Version: 5.5)

Adobe Flash Player 11 Plugin (x32 Version: 11.7.700.224)

Adobe Photoshop Lightroom 3.6 64-bit (Version: 3.6.1)

Adobe Reader XI (11.0.03) - Deutsch (x32 Version: 11.0.03)

Anzeige am Bildschirm (Version: 7.12.00)

Apple Application Support (x32 Version: 2.3.4)

Apple Mobile Device Support (Version: 6.1.0.13)

Apple Software Update (x32 Version: 2.1.3.127)

ArchiCrypt Ultimate RAM-Disk 4 Version 4.0.1.4254 (Version: 4.0.1.4254)

Avira Free Antivirus (x32 Version: 13.0.0.3737)

Bonjour (Version: 3.0.0.10)

Cisco AnyConnect Secure Mobility Client  (x32 Version: 3.1.01065)

Cisco AnyConnect Secure Mobility Client (x32 Version: 3.1.01065)

Citavi 4 (x32 Version: 4.1.0.3)

DAEMON Tools Lite (x32 Version: 4.46.1.0327)

Disable AMT Profile Synchronization Pop-up for Windows XP/Vista/7/8 (Version: 1.00)

Dolby Home Theater v4 (x32 Version: 7.2.8000.17)

Dota 2 (x32)

Dropbox (HKCU Version: 2.0.22)

Integrated Camera Driver Installer Package Ver.1.0.0.19 (x32 Version: 1.0.0.19)

Intel AppUp(SM) center (x32 Version: 3.6.1.33057.10)

Intel(R) Management Engine Components (x32 Version: 9.0.0.1310)

Intel(R) Network Connections 18.3.72.0 (Version: 18.3.72.0)

Intel(R) Processor Graphics (x32 Version: 9.17.10.2875)

Intel(R) SDK for OpenCL - CPU Only Runtime Package (x32 Version: 2.0.0.37149)

Intel® PROSet/Wireless Software (x32 Version: 15.6.1)

Intel® Trusted Connect Service Client (Version: 1.27.757.1)

iTunes (Version: 11.0.4.4)

Java 7 Update 25 (64-bit) (Version: 7.0.250)

Java 7 Update 25 (x32 Version: 7.0.250)

Java Auto Updater (x32 Version: 2.1.9.5)

Lenovo Auto Scroll Utility (Version: 2.00)

Lenovo Dependency Package (x32 Version: 1.0)

Lenovo Patch Utility (x32 Version: 1.3.2.6)

Lenovo Patch Utility 64 bit (Version: 1.3.2.6)

Lenovo Power Management Driver (Version: 1.67.00.02)

Lenovo QuickLaunch (x32 Version: 1.00.0039)

Lenovo Settings - Camera Audio (Version: 4.0.100.0)

Lenovo Settings Dependency Package (Version: 1.2.0.21)

Lenovo Settings Mobile Hotspot (Version: 1.1.0.59)

Lenovo System Update (x32 Version: 5.02.0011)

Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.59193)

Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001)

Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)

Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (x32 Version: 9.0.30729)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (x32 Version: 9.0.30729.4148)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161)

Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (Version: 10.0.40219)

Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219)

Microsoft_VC80_ATL_x86 (x32 Version: 8.0.50727.4053)

Microsoft_VC80_ATL_x86_x64 (Version: 8.0.50727.4053)

Microsoft_VC80_CRT_x86 (x32 Version: 8.0.50727.4053)

Microsoft_VC80_CRT_x86_x64 (Version: 8.0.50727.4053)

Microsoft_VC80_MFC_x86 (x32 Version: 8.0.50727.4053)

Microsoft_VC80_MFC_x86_x64 (Version: 8.0.50727.4053)

Microsoft_VC80_MFCLOC_x86 (x32 Version: 8.0.50727.4053)

Microsoft_VC80_MFCLOC_x86_x64 (Version: 80.50727.4053)

Microsoft_VC90_ATL_x86 (x32 Version: 1.00.0000)

Microsoft_VC90_ATL_x86_x64 (Version: 1.00.0000)

Microsoft_VC90_CRT_x86 (x32 Version: 1.00.0000)

Microsoft_VC90_CRT_x86_x64 (Version: 1.00.0000)

Microsoft_VC90_MFC_x86 (x32 Version: 1.00.0000)

Microsoft_VC90_MFC_x86_x64 (Version: 1.00.0000)

Microsoft_VC90_MFCLOC_x86 (x32 Version: 1.00.0000)

Microsoft_VC90_MFCLOC_x86_x64 (Version: 1.00.0000)

Mobile Broadband Drivers (x32 Version: 8.0.8.4)

MotoHelper MergeModules (x32 Version: 1.2.0)

Mozilla Firefox 22.0 (x86 de) (x32 Version: 22.0)

Mozilla Maintenance Service (x32 Version: 22.0)

Mozilla Thunderbird 17.0.7 (x86 de) (x32 Version: 17.0.7)

OpenOffice.org 3.4.1 (x32 Version: 3.41.9593)

PDF Settings CS5 (x32 Version: 10.0)

Personal Backup 5.4 (x32 Version: 5.3)

QuickTime (x32 Version: 7.73.80.64)

RAMDisk (x32 Version: 4.0.0)

Realtek High Definition Audio Driver (x32 Version: 6.0.1.6914)

RICOH_Media_Driver_v2.24.18.01 (x32 Version: 2.24.18.01)

Spyder3Pro (x32)

Steam (x32 Version: 1.0.0.0)

SugarSync Manager (x32 Version: 1.9.61.90905)

System Requirements Lab for Intel (x32 Version: 4.5.13.0)

ThinkPad Bluetooth with Enhanced Data Rate Software (Version: 12.0.0.6850)

ThinkPad UltraNav Driver (Version: 16.2.19.9)

ThinkVantage Fingerprint Software (Version: 5.9.9.7282)

ThinkVantage Password Manager (x32 Version: 4.10.20.0)

ThinkVantage System für aktiven Festplattenschutz (Version: 1.77.0.20)

VC_CRT_x64 (Version: 1.02.0000)

VLC media player 2.0.7 (Version: 2.0.7)

Windows-Treiberpaket - Intel USB  (08/26/2011 9.3.0.1011) (Version: 08/26/2011 9.3.0.1011)

Windows-Treiberpaket - Lenovo 1.66.00.07 (08/15/2012 1.66.00.07) (Version: 08/15/2012 1.66.00.07)

Windows-Treiberpaket - Synaptics (SmbDrv) System  (08/16/2012 16.2.10.5) (Version: 08/16/2012 16.2.10.5)

Windows-Treiberpaket - Synaptics (SynTP) Mouse  (08/16/2012 16.2.10.5) (Version: 08/16/2012 16.2.10.5)
 

==================== Restore Points  =========================
 

06-07-2013 22:15:56 Entfernt Lenovo Settings - Power
 

==================== Hosts content: ==========================
 
 
 

==================== Scheduled Tasks (whitelisted) =============
 

Task: {05140339-597C-421A-AF6E-59170EA60B77} - System32\Tasks\Intel\Intel Service Manager => C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe [2012-07-12] (Intel Corporation)

Task: {10D85952-E3F6-47A1-96CF-5E1C2D874EA6} - System32\Tasks\Microsoft\Windows\SystemRestore\SR => C:\Windows\system32\srtasks.exe [2012-07-26] (Microsoft Corporation)

Task: {13A2AC02-B682-48CC-9155-2E2673580117} - System32\Tasks\Microsoft\Windows\.NET Framework\.NET Framework NGEN v4.0.30319 64 Critical

Task: {13B00855-58E6-4493-9149-96E265399B5C} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-06-11] (Adobe Systems Incorporated)

Task: {174F63D5-9DC9-4588-BAA2-5EF799A626AC} - System32\Tasks\Microsoft\Windows\WindowsUpdate\Scheduled Start => C:\WINDOWS\system32\sc.exe [2012-07-26] (Microsoft Corporation)

Task: {17644F17-DC4C-4AC8-9444-7AAA52EB5CDC} - System32\Tasks\Microsoft\Windows\NetCfg\BindingWorkItemQueueHandler

Task: {1AAFF332-5C62-4558-9991-DAA649C4C9C5} - System32\Tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask => C:\Windows\system32\rundll32.exe [2012-07-26] (Microsoft Corporation)

Task: {1DB7C2F1-876C-4F24-AD17-8428211113F9} - System32\Tasks\Microsoft\Windows\MemoryDiagnostic\ProcessMemoryDiagnosticEvents

Task: {214B24F4-FEB4-4C59-AF1F-70136065199C} - System32\Tasks\Microsoft\Windows\Shell\IndexerAutomaticMaintenance

Task: {23700E5C-0E77-499D-908A-415D5C6252F4} - System32\Tasks\Microsoft\Windows\Plug and Play\Device Install Group Policy

Task: {23A5D8BE-9196-40EB-BD89-794398B2B073} - System32\Tasks\Microsoft\Windows\WS\WSRefreshBannedAppsListTask => C:\Windows\System32\rundll32.exe [2012-07-26] (Microsoft Corporation)

Task: {286AE1D0-7CE5-4E84-BF46-166DD7601952} - System32\Tasks\Microsoft\Windows\WindowsUpdate\AUFirmwareInstall

Task: {2A84EB1D-4A5F-4E6D-868F-2A6D2B6F127D} - System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-4194780498-1423412839-850030711-1001

Task: {2B845990-C632-4F8B-B544-7D3CEDEC8A72} - System32\Tasks\TVT\TVSUUpdateTask => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe [2013-04-11] ()

Task: {2C6B9EA8-7F5A-4ABA-BF96-8D352D02A743} - System32\Tasks\Microsoft\Windows\Device Setup\Metadata Refresh

Task: {2E030FA7-3D7C-4E1D-8CFE-56ADB26FD402} - System32\Tasks\Microsoft\Windows\PI\Sqm-Tasks

Task: {3054485A-F517-4E95-9977-4DD827B1E9B3} - System32\Tasks\Microsoft\Windows\WS\Badge Update

Task: {3219AF3F-C6C3-4667-ACDE-5D1124F4BAFA} - System32\Tasks\Microsoft\Windows\Servicing\StartComponentCleanup

Task: {3489C0E0-B350-4AF2-A9F8-177B9FD94B61} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)

Task: {378401BA-A703-444A-A79C-3C47AD2DC5B6} - System32\Tasks\Microsoft\Windows\TaskScheduler\Maintenance Configurator

Task: {3AE164E7-30CD-40BC-9422-3EC7A5618965} - System32\Tasks\Microsoft\Windows\WS\WSTask

Task: {3C490ABD-D849-41AF-9AC4-87DD759B0996} - System32\Tasks\Microsoft\Windows\Power Efficiency Diagnostics\AnalyzeSystem

Task: {4073C1B3-6E16-4AA8-B7F3-C6A6D35D5071} - System32\Tasks\Microsoft\Windows\TPM\Tpm-Maintenance

Task: {44B3F1B8-5943-4072-8D8C-A9484676AC44} - System32\Tasks\Microsoft\Windows\Live\Roaming\SynchronizeWithStorage

Task: {45D1FACA-61B4-4B6A-B785-0DB763B0ABFB} - System32\Tasks\Microsoft\Windows\File Classification Infrastructure\Property Definition Sync

Task: {468F4656-001C-43F4-9971-C3F7CDFF6117} - System32\Tasks\Dolby => C:\Program Files (x86)\Dolby Home Theater v4\pcee4.exe [2012-08-31] (Dolby Laboratories Inc.)

Task: {483A8F5C-5D26-44B5-B49E-AF6741D1BBEB} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => C:\Windows\System32\MbaeParserTask.exe [2012-07-26] (Microsoft Corporation)

Task: {4B952129-9AE9-41A3-BE2B-8AD2E06F66B6} - System32\Tasks\Microsoft\Windows\SoftwareProtectionPlatform\SvcRestartTaskLogon

Task: {5755E746-D7ED-4C20-A472-66C11834CDE4} - System32\Tasks\Microsoft\Windows\TaskScheduler\Manual Maintenance

Task: {5C4EFB77-EFA6-45DF-A373-D795C0725BFF} - System32\Tasks\Microsoft\Windows\Plug and Play\Device Install Reboot Required

Task: {5DA6908C-0077-422E-BC77-73808F48A6D7} - System32\Tasks\Microsoft\Windows\WindowsUpdate\AUScheduledInstall

Task: {627441F3-8526-4B62-BF9A-1A3EA414E71A} - System32\Tasks\Microsoft\Windows\SpacePort\SpaceAgentTask => C:\Windows\system32\SpaceAgent.exe [2012-07-26] (Microsoft Corporation)

Task: {651EEF17-A3C6-4AB5-B58C-5B303DB48008} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program => C:\Program Files\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe No File

Task: {6A93B01B-DCE4-4350-9781-8BDCA860F7CD} - System32\Tasks\Microsoft\Windows\WindowsUpdate\AUSessionConnect

Task: {6E9DE125-5583-4031-B572-FEE48F25CFFF} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyMonitor => C:\Windows\System32\wpcmon.exe [2012-09-20] (Microsoft Corporation)

Task: {6FDDEA7C-6310-428D-AEB2-54FFC72811EF} - System32\Tasks\Microsoft\Windows\.NET Framework\.NET Framework NGEN v4.0.30319

Task: {70875AF2-7BE6-4C0B-8312-AD93ED8BC9EA} - System32\Tasks\Lenovo\Lenovo-15815 => C:\ProgramData\Lenovo-15815.vbs [2013-02-04] ()

Task: {74096F94-B654-4DB0-96F5-3C3408B92FE3} - System32\Tasks\Microsoft\Windows\PI\Secure-Boot-Update

Task: {7D9A9A1C-499C-40A6-8F8A-5BCC4CC9A87C} - System32\Tasks\Microsoft\Windows\TaskScheduler\Regular Maintenance

Task: {845CB020-68B5-4C6B-9876-7BEC7B3E27AC} - System32\Tasks\Microsoft\Windows\TaskScheduler\Idle Maintenance

Task: {87354DAA-66DF-4B41-9346-15958D96E1D2} - System32\Tasks\Microsoft\Windows\FileHistory\File History (maintenance mode)

Task: {91A491AB-8E6F-4480-9232-B64D74B7A365} - System32\Tasks\StartPowerDVDService => C:\PROGRAM FILES (x86)\Cyberlink\PowerDVD10\PDVD10Serv.exe No File

Task: {921A1D4E-32FB-46D7-B6C0-6F467884074D} - System32\Tasks\Microsoft\Windows\WS\Sync Licenses

Task: {9479EF8E-11D4-41B3-9783-CC65070D592D} - System32\Tasks\Microsoft\Windows\Time Synchronization\ForceSynchronizeTime

Task: {94DCF254-64FB-4C4E-8E12-5F4055C10C2A} - System32\Tasks\Microsoft\Windows\.NET Framework\.NET Framework NGEN v4.0.30319 64

Task: {989A7C6D-BE82-4C3C-AF96-6116039E336B} - System32\Tasks\Microsoft\Windows\MemoryDiagnostic\RunFullMemoryDiagnostic

Task: {A72208BF-7A49-4FB8-B684-252375F3443A} - System32\Tasks\Microsoft\Windows\WS\License Validation => C:\Windows\System32\rundll32.exe [2012-07-26] (Microsoft Corporation)

Task: {A800277E-E202-4492-AD38-3312641CBC04} - System32\Tasks\Microsoft\Windows\Live\Roaming\MaintenanceTask

Task: {AB62FA47-2C99-44B1-A5D0-D4161423BE43} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyRefresh

Task: {AC6259DE-AC59-459E-849E-6ADFFD1ADE63} - System32\Tasks\Microsoft\Windows\Shell\CreateObjectTask

Task: {AEB0B5BD-B9E5-458A-898A-E559BD9EB51B} - System32\Tasks\Microsoft\Windows\SettingSync\BackgroundUploadTask

Task: {AF549BD8-337C-4BF7-8681-36A182E30507} - System32\Tasks\Microsoft\Windows\Chkdsk\ProactiveScan

Task: {AF796771-4167-4642-8C99-27DC7F7F898D} - System32\Tasks\CreateChoiceProcessTask => C:\Windows\BrowserChoice\browserchoice.exe [2012-08-15] (Microsoft Corporation)

Task: {B08314ED-EDC3-4D26-AAEE-8EB5E19172B0} - System32\Tasks\Dolby Selector => C:\Program Files (x86)\Dolby Home Theater v4\pcee4.exe [2012-08-31] (Dolby Laboratories Inc.)

Task: {BC76AEF7-2CF0-4EB6-B65B-A8803E0B5E12} - System32\Tasks\Microsoft\Windows\AppID\SmartScreenSpecific

Task: {C1ABB015-3973-4EB9-9946-6C9D8A26916E} - System32\Tasks\Microsoft\Windows\MUI\Lpksetup => C:\WINDOWS\System32\lpksetup.exe [2012-09-20] (Microsoft Corporation)

Task: {C1ACCD1E-4385-4FB2-B5E4-7F2A57A626A2} - System32\Tasks\Microsoft\Windows\Data Integrity Scan\Data Integrity Scan

Task: {C463FD1E-31C7-4C20-AB65-08E514CA152D} - System32\Tasks\Microsoft\Windows\IME\SQM data sender

Task: {C6A88F2D-53D2-4805-9D69-443738A1847C} - System32\Tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState => C:\Windows\system32\rundll32.exe [2012-07-26] (Microsoft Corporation)

Task: {C7F4A638-FC35-4ADC-900F-EA27101938A2} - System32\Tasks\AdobeAAMUpdater-1.0-MicrosoftAccount-peter_stanzel@hotmail.de => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2012-09-20] (Adobe Systems Incorporated)

Task: {CD1054FF-8005-4904-8B9C-436EAB1E2021} - System32\Tasks\Microsoft\Windows\SoftwareProtectionPlatform\SvcRestartTaskNetwork

Task: {D0637B0C-3775-481E-8EA0-4F90E5275489} - System32\Tasks\Lenovo\Lenovo-29935 => C:\ProgramData\Lenovo-29935.vbs [2013-01-06] ()

Task: {DBCF6E1B-CE0A-441E-B7A5-219C8BE50C65} - System32\Tasks\Microsoft\Windows\.NET Framework\.NET Framework NGEN v4.0.30319 Critical

Task: {DECE5921-598D-454B-9A04-B2DE95EFC1B3} - System32\Tasks\Microsoft\Windows\Data Integrity Scan\Data Integrity Scan for Crash Recovery

Task: {E4DFE66F-E089-4CC3-A70F-957223D565F4} - System32\Tasks\Microsoft\Windows\SoftwareProtectionPlatform\SvcRestartTask

Task: {E8DAA09B-DF2A-4951-9134-6FA9587793F9} - System32\Tasks\Microsoft\Windows\Plug and Play\Sysprep Generalize Drivers => C:\Windows\System32\drvinst.exe [2012-09-20] (Microsoft Corporation)

Task: {EBF06DEC-4228-4813-AC0C-62821AE4E330} - System32\Tasks\Microsoft\Windows\Application Experience\StartupAppTask => C:\Windows\system32\rundll32.exe [2012-07-26] (Microsoft Corporation)

Task: {ED0C1F69-C3A2-41EA-B8C3-3F0D83A1F6C0} - System32\Tasks\Microsoft\Windows\Customer Experience Improvement Program\BthSQM

Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
 

==================== Faulty Device Manager Devices =============
 

Name: Cisco AnyConnect Secure Mobility Client Virtual Miniport Adapter for Windows x64

Description: Cisco AnyConnect Secure Mobility Client Virtual Miniport Adapter for Windows x64

Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}

Manufacturer: Cisco Systems

Service: vpnva

Problem: : This device is disabled. (Code 22)

Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
 

Name: WAN-Miniport (Netzwerkmonitor)

Description: WAN-Miniport (Netzwerkmonitor)

Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}

Manufacturer: Microsoft

Service: NdisWan

Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)

Resolution: Update the driver
 

Name: WAN-Miniport (Netzwerkmonitor) #2

Description: WAN-Miniport (Netzwerkmonitor)

Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}

Manufacturer: Microsoft

Service: NdisWan

Problem: : This device is disabled. (Code 22)

Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
 
 

==================== Event log errors: =========================
 

Application errors:

==================

Error: (07/07/2013 08:04:53 PM) (Source: Microsoft-Windows-Immersive-Shell) (User: PETER)

Description: Bei der Aktivierung der App „microsoft.windowscommunicationsapps_8wekyb3d8bbwe!Microsoft.WindowsLive.Mail“ ist folgender Fehler aufgetreten: -2147467263. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.
 

Error: (07/07/2013 08:04:53 PM) (Source: Microsoft-Windows-Immersive-Shell) (User: PETER)

Description: Bei der Aktivierung der App „microsoft.windowscommunicationsapps_8wekyb3d8bbwe!Microsoft.WindowsLive.Mail“ ist folgender Fehler aufgetreten: -2147467263. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.
 

Error: (07/07/2013 02:21:11 PM) (Source: SideBySide) (User: )

Description: Fehler beim Generieren des Aktivierungskontexts für "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_418ab7ef718b27ef.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_418ab7ef718b27ef.manifest2" in Zeile C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_418ab7ef718b27ef.manifest3.

Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.

In Konflikt stehende Komponenten:.

Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_418ab7ef718b27ef.manifest.

Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_8937eec6860750f5.manifest.
 

Error: (07/07/2013 01:42:49 PM) (Source: SideBySide) (User: )

Description: Fehler beim Generieren des Aktivierungskontexts für "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_418ab7ef718b27ef.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_418ab7ef718b27ef.manifest2" in Zeile C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_418ab7ef718b27ef.manifest3.

Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.

In Konflikt stehende Komponenten:.

Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_418ab7ef718b27ef.manifest.

Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_8937eec6860750f5.manifest.
 

Error: (07/07/2013 01:42:48 PM) (Source: SideBySide) (User: )

Description: Fehler beim Generieren des Aktivierungskontexts für "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_418ab7ef718b27ef.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_418ab7ef718b27ef.manifest2" in Zeile C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_418ab7ef718b27ef.manifest3.

Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.

In Konflikt stehende Komponenten:.

Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_418ab7ef718b27ef.manifest.

Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_8937eec6860750f5.manifest.
 

Error: (07/07/2013 01:42:45 PM) (Source: SideBySide) (User: )

Description: Fehler beim Generieren des Aktivierungskontexts für "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_418ab7ef718b27ef.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_418ab7ef718b27ef.manifest2" in Zeile C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_418ab7ef718b27ef.manifest3.

Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.

In Konflikt stehende Komponenten:.

Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_418ab7ef718b27ef.manifest.

Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_8937eec6860750f5.manifest.
 

Error: (07/07/2013 01:42:44 PM) (Source: SideBySide) (User: )

Description: Fehler beim Generieren des Aktivierungskontexts für "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_418ab7ef718b27ef.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_418ab7ef718b27ef.manifest2" in Zeile C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_418ab7ef718b27ef.manifest3.

Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.

In Konflikt stehende Komponenten:.

Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_418ab7ef718b27ef.manifest.

Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_8937eec6860750f5.manifest.
 

Error: (07/07/2013 01:42:43 PM) (Source: SideBySide) (User: )

Description: Fehler beim Generieren des Aktivierungskontexts für "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_418ab7ef718b27ef.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_418ab7ef718b27ef.manifest2" in Zeile C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_418ab7ef718b27ef.manifest3.

Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.

In Konflikt stehende Komponenten:.

Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_418ab7ef718b27ef.manifest.

Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_8937eec6860750f5.manifest.
 

Error: (07/07/2013 01:39:00 PM) (Source: SideBySide) (User: )

Description: Fehler beim Generieren des Aktivierungskontexts für "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_418ab7ef718b27ef.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_418ab7ef718b27ef.manifest2" in Zeile C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_418ab7ef718b27ef.manifest3.

Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.

In Konflikt stehende Komponenten:.

Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_418ab7ef718b27ef.manifest.

Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_8937eec6860750f5.manifest.
 
 

System errors:

=============

Error: (07/07/2013 11:33:45 PM) (Source: Service Control Manager) (User: )

Description: Der Dienst "DgiVecp" wurde aufgrund folgenden Fehlers nicht gestartet: 

%%20
 

Error: (07/07/2013 08:13:39 PM) (Source: Service Control Manager) (User: )

Description: Der Dienst "DgiVecp" wurde aufgrund folgenden Fehlers nicht gestartet: 

%%20
 

Error: (07/07/2013 08:12:09 PM) (Source: Service Control Manager) (User: )

Description: Der Dienst "Cisco AnyConnect Secure Mobility Agent" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 1000 Millisekunden durchgeführt: Neustart des Diensts.
 

Error: (07/07/2013 00:37:18 PM) (Source: Service Control Manager) (User: )

Description: Der Dienst "DgiVecp" wurde aufgrund folgenden Fehlers nicht gestartet: 

%%20
 
 

Microsoft Office Sessions:

=========================

Error: (07/07/2013 08:04:53 PM) (Source: Microsoft-Windows-Immersive-Shell)(User: PETER)

Description: microsoft.windowscommunicationsapps_8wekyb3d8bbwe!Microsoft.WindowsLive.Mail-2147467263
 

Error: (07/07/2013 08:04:53 PM) (Source: Microsoft-Windows-Immersive-Shell)(User: PETER)

Description: microsoft.windowscommunicationsapps_8wekyb3d8bbwe!Microsoft.WindowsLive.Mail-2147467263
 

Error: (07/07/2013 02:21:11 PM) (Source: SideBySide)(User: )

Description: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_418ab7ef718b27ef.manifestC:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_8937eec6860750f5.manifestC:\Program Files (x86)\ESET\ESET Online Scanner\ESETSmartInstaller.exe
 

Error: (07/07/2013 01:42:49 PM) (Source: SideBySide)(User: )

Description: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_418ab7ef718b27ef.manifestC:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_8937eec6860750f5.manifestC:\Users\Peter\Desktop\esetsmartinstaller_enu.exe
 

Error: (07/07/2013 01:42:48 PM) (Source: SideBySide)(User: )

Description: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_418ab7ef718b27ef.manifestC:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_8937eec6860750f5.manifestC:\Users\Peter\Desktop\esetsmartinstaller_enu.exe
 

Error: (07/07/2013 01:42:45 PM) (Source: SideBySide)(User: )

Description: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_418ab7ef718b27ef.manifestC:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_8937eec6860750f5.manifestC:\Users\Peter\Desktop\esetsmartinstaller_enu.exe
 

Error: (07/07/2013 01:42:44 PM) (Source: SideBySide)(User: )

Description: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_418ab7ef718b27ef.manifestC:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_8937eec6860750f5.manifestC:\Users\Peter\Desktop\esetsmartinstaller_enu.exe
 

Error: (07/07/2013 01:42:43 PM) (Source: SideBySide)(User: )

Description: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_418ab7ef718b27ef.manifestC:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_8937eec6860750f5.manifestC:\Users\Peter\Desktop\esetsmartinstaller_enu.exe
 

Error: (07/07/2013 01:39:00 PM) (Source: SideBySide)(User: )

Description: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_418ab7ef718b27ef.manifestC:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_8937eec6860750f5.manifestC:\Users\Peter\Desktop\esetsmartinstaller_enu.exe
 
 

CodeIntegrity Errors:

===================================

  Date: 2013-07-07 00:30:35.187

  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.
 
 

==================== Memory info =========================== 
 

Percentage of memory in use: 19%

Total physical RAM: 16202.86 MB

Available physical RAM: 12972.93 MB

Total Pagefile: 17202.86 MB

Available Pagefile: 13808.32 MB

Total Virtual: 8192 MB

Available Virtual: 8191.82 MB
 

==================== Drives ================================
 

Drive c: (Windows8_OS) (Fixed) (Total:98.35 GB) (Free:47.29 GB) NTFS (Disk=1 Partition=4) ==>[System with boot components (obtained from reading drive)]

Drive d: (Storage) (Fixed) (Total:444.87 GB) (Free:363 GB) NTFS (Disk=2 Partition=4)

Drive e: () (Fixed) (Total:1.46 GB) (Free:1.34 GB) FAT (Disk=0 Partition=1)
 

==================== MBR & Partition Table ==================
 

========================================================

Disk: 0 (Size: 1 GB) (Disk ID: E648C609)

Partition 1: (Active) - (Size=1 GB) - (Type=06)
 

========================================================

Disk: 1 (Size: 119 GB) (Disk ID: D9048793)
 

Partition: GPT Partition Type

========================================================

Disk: 2 (Size: 466 GB) (Disk ID: 9B0D3856)
 

Partition: GPT Partition Type

==================== End Of Log ============================

oh man, tausend Dank für deine Mühen! =)
Ich hab schon ein ganz schlechtes Gewissen.

Code:

OTL logfile created on: 08.07.2013 11:02:33 - Run 2

OTL by OldTimer - Version 3.2.69.0     Folder = C:\Users\Peter\Desktop

64bit- Professional  (Version = 6.2.9200) - Type = NTWorkstation

Internet Explorer (Version = 9.10.9200.16599)

Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy

 

15,82 Gb Total Physical Memory | 12,13 Gb Available Physical Memory | 76,69% Memory free

16,80 Gb Paging File | 13,06 Gb Available in Paging File | 77,73% Paging File free

Paging file location(s): c:\pagefile.sys 1000 1000 [binary data]

 

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files (x86)

Drive C: | 98,35 Gb Total Space | 47,08 Gb Free Space | 47,87% Space Free | Partition Type: NTFS

Drive D: | 444,87 Gb Total Space | 363,00 Gb Free Space | 81,60% Space Free | Partition Type: NTFS

Drive E: | 1,46 Gb Total Space | 1,41 Gb Free Space | 96,32% Space Free | Partition Type: FAT

 

Computer Name: PETER | User Name: Peter | Logged in as Administrator.

Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans

Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

 
 ========== Processes (SafeList) ==========

 

PRC - C:\Users\Peter\Desktop\OTL.exe (OldTimer Tools)

PRC - C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation)

PRC - C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe (Avira Operations GmbH & Co. KG)

PRC - C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe (Avira Operations GmbH & Co. KG)

PRC - C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe (Avira Operations GmbH & Co. KG)

PRC - C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe (Mozilla Corporation)

PRC - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_7_700_224.exe (Adobe Systems, Inc.)

PRC - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Intel Corporation)

PRC - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe (Intel Corporation)

PRC - C:\Users\Peter\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)

PRC - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems Incorporated)

PRC - C:\Programme\Lenovo\SettingsDependency\SettingsService.exe (Lenovo Group Limited)

PRC - C:\Program Files (x86)\Lenovo\LocationAware\loctaskmgr.exe ()

PRC - C:\Program Files (x86)\Lenovo\LocationAware\lpdagent.exe ()

PRC - C:\Program Files (x86)\Lenovo\Password Manager\password_manager.exe (Lenovo Group Limited)

PRC - C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnagent.exe (Cisco Systems, Inc.)

PRC - C:\Programme\Lenovo\HOTKEY\micmute.exe (Lenovo Group Limited)

PRC - C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe (Intel Corporation)

PRC - C:\Program Files (x86)\Datacolor\Spyder3Pro\Utility\Spyder3Utility.exe ()

 

 
 ========== Modules (No Company Name) ==========

 

MOD - C:\Program Files (x86)\Mozilla Firefox\mozjs.dll ()

MOD - C:\Program Files (x86)\Mozilla Thunderbird\mozjs.dll ()

MOD - C:\Program Files (x86)\Mozilla Thunderbird\NSLDAP32V60.dll ()

MOD - C:\Program Files (x86)\Mozilla Thunderbird\NSLDAPPR32V60.dll ()

MOD - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_7_700_224.dll ()

MOD - C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Dire573b08f5#\f0907d755963a43f89c0cdadb18e40d9\System.DirectoryServices.AccountManagement.ni.dll ()

MOD - C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\UIAutomationTypes\5cd95e119312a5b14f3dc20b9ff61470\UIAutomationTypes.ni.dll ()

MOD - C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\PasswordManagerUI\e3b40f5d96f736448176653fe2b8ba49\PasswordManagerUI.ni.dll ()

MOD - C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Xml\bacedff71df875743daa9064b85c4e66\System.Xml.ni.dll ()

MOD - C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Xaml\6a8a61ca5208e404ca21a0c42a59a3c8\System.Xaml.ni.dll ()

MOD - C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Management\70294bf69946a13248a65593cf2a5f36\System.Management.ni.dll ()

MOD - C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Presentatioaec034ca#\33207b30e64b258e2606362493d65c2b\PresentationFramework.Aero2.ni.dll ()

MOD - C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Presentatio5ae0f00f#\06ad035ae847f3bf5aa37702ee54f073\PresentationFramework.ni.dll ()

MOD - C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\PresentationCore\e53bef236e7a584766cbde94066936fa\PresentationCore.ni.dll ()

MOD - C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\WindowsBase\2a3d9ad8e84239b4f46bd37556a23d6b\WindowsBase.ni.dll ()

MOD - C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Core\b3d842ef956729e3ca0a3bc5e37ea6d8\System.Core.ni.dll ()

MOD - C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System\eaa570735a52e0010d3e9caa9ba50124\System.ni.dll ()

MOD - C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\mscorlib\93689d115589e64dd4912f7113a11656\mscorlib.ni.dll ()

MOD - C:\Program Files (x86)\Lenovo\LocationAware\lpdagent.exe ()

MOD - C:\Users\Peter\AppData\Roaming\Dropbox\bin\libcef.dll ()

MOD - C:\Users\Peter\AppData\Roaming\Dropbox\bin\wxmsw28uh_vc.dll ()

MOD - C:\Program Files (x86)\Intel\IntelAppStore\bin\sqlite3.dll ()

MOD - C:\Program Files (x86)\Intel\IntelAppStore\bin\osEvents.dll ()

MOD - C:\Program Files (x86)\Intel\IntelAppStore\bin\zlib1.dll ()

MOD - C:\Program Files (x86)\Intel\IntelAppStore\bin\QtNetwork4.dll ()

MOD - C:\Program Files (x86)\Intel\IntelAppStore\bin\QtXml4.dll ()

MOD - C:\Program Files (x86)\Intel\IntelAppStore\bin\log4cplus.dll ()

MOD - C:\Program Files (x86)\Intel\IntelAppStore\bin\libgsoap.dll ()

MOD - C:\Program Files (x86)\Intel\IntelAppStore\bin\serviceManagerStarter.dll ()

MOD - C:\Program Files (x86)\Intel\IntelAppStore\bin\eventsSender.dll ()

MOD - C:\Program Files (x86)\Intel\IntelAppStore\bin\featureController.dll ()

MOD - C:\Program Files (x86)\Intel\IntelAppStore\bin\QtCore4.dll ()

MOD - C:\Program Files (x86)\Intel\IntelAppStore\bin\deviceProfile.dll ()

MOD - C:\Program Files (x86)\Datacolor\Spyder3Pro\Utility\Spyder3Utility.exe ()

MOD - C:\Program Files (x86)\Datacolor\Spyder3Pro\Utility\Spyder3Utility Libs\RBScript.dll ()

MOD - C:\Program Files (x86)\Datacolor\Spyder3Pro\Utility\Spyder3Utility Libs\XML.dll ()

MOD - C:\Program Files (x86)\Datacolor\Spyder3Pro\Utility\Spyder3Utility Libs\CGamma.dll ()

MOD - C:\Program Files (x86)\Datacolor\Spyder3Pro\Utility\Spyder3Utility Libs\RegEx.dll ()

MOD - C:\Program Files (x86)\Datacolor\Spyder3Pro\Utility\Spyder3Utility Libs\Appearance Pak.dll ()

MOD - C:\Program Files (x86)\Datacolor\Spyder3Pro\Utility\Spyder3Utility Libs\Shell.dll ()

MOD - C:\Program Files (x86)\Datacolor\Spyder3Pro\Utility\Spyder3Utility Libs\CSensor.dll ()

MOD - C:\Program Files (x86)\Datacolor\Spyder3Pro\Utility\Spyder3Utility Libs\MBSRegistrationPlugin16042.dll ()

MOD - C:\Program Files (x86)\Datacolor\Spyder3Pro\Utility\Spyder3Utility Libs\MBSPluginVersionPlugin16042.dll ()

 

 
 ========== Services (SafeList) ==========

 

SRV:64bit: - (TPHDEXLGSVC) -- C:\Windows\SysNative\TPHDEXLG64.exe (Lenovo.)

SRV:64bit: - (netprofm) -- C:\Windows\SysNative\netprofmsvc.dll (Microsoft Corporation)

SRV:64bit: - (BrokerInfrastructure) -- C:\Windows\SysNative\bisrv.dll (Microsoft Corporation)

SRV:64bit: - (ArchiCrypt Ultimate RAM-Disk 4) -- C:\Windows\SysNative\ACRAMDiskHandlerService64R_D4.exe (Softwareentwicklung Remus - ArchiCrypt)

SRV:64bit: - (IBMPMSVC) -- C:\Windows\SysNative\ibmpmsvc.exe (Lenovo.)

SRV:64bit: - (BcmBtRSupport) -- C:\Windows\SysNative\BtwRSupportService.exe (Broadcom Corporation.)

SRV:64bit: - (AudioEndpointBuilder) -- C:\Windows\SysNative\AudioEndpointBuilder.dll (Microsoft Corporation)

SRV:64bit: - (Intel(R) -- C:\Windows\SysNative\IPROSetMonitor.exe (Intel Corporation)

SRV:64bit: - (TimeBroker) -- C:\Windows\SysNative\TimeBrokerServer.dll (Microsoft Corporation)

SRV:64bit: - (SystemEventsBroker) -- C:\Windows\SysNative\SystemEventsBrokerServer.dll (Microsoft Corporation)

SRV:64bit: - (wlidsvc) -- C:\Windows\SysNative\wlidsvc.dll (Microsoft Corporation)

SRV:64bit: - (LSM) -- C:\Windows\SysNative\lsm.dll (Microsoft Corporation)

SRV:64bit: - (PrintNotify) -- C:\Windows\SysNative\spool\drivers\x64\3\PrintConfig.dll (Microsoft Corporation)

SRV:64bit: - (WSService) -- C:\Windows\SysNative\WSService.dll (Microsoft Corporation)

SRV:64bit: - (fhsvc) -- C:\Windows\SysNative\fhsvc.dll (Microsoft Corporation)

SRV:64bit: - (WiaRpc) -- C:\Windows\SysNative\wiarpc.dll (Microsoft Corporation)

SRV:64bit: - (Wcmsvc) -- C:\Windows\SysNative\wcmsvc.dll (Microsoft Corporation)

SRV:64bit: - (VaultSvc) -- C:\Windows\SysNative\vaultsvc.dll (Microsoft Corporation)

SRV:64bit: - (svsvc) -- C:\Windows\SysNative\svsvc.dll (Microsoft Corporation)

SRV:64bit: - (Netlogon) -- C:\Windows\SysNative\netlogon.dll (Microsoft Corporation)

SRV:64bit: - (NcaSvc) -- C:\Windows\SysNative\NcaSvc.dll (Microsoft Corporation)

SRV:64bit: - (NcdAutoSetup) -- C:\Windows\SysNative\NcdAutoSetup.dll (Microsoft Corporation)

SRV:64bit: - (KeyIso) -- C:\Windows\SysNative\keyiso.dll (Microsoft Corporation)

SRV:64bit: - (EFS) -- C:\Windows\SysNative\efssvc.dll (Microsoft Corporation)

SRV:64bit: - (DsmSvc) -- C:\Windows\SysNative\DeviceSetupManager.dll (Microsoft Corporation)

SRV:64bit: - (DeviceAssociationService) -- C:\Windows\SysNative\das.dll (Microsoft Corporation)

SRV:64bit: - (AllUserInstallAgent) -- C:\Windows\SysNative\AUInstallAgent.dll (Microsoft Corporation)

SRV:64bit: - (AppMgmt) -- C:\Windows\SysNative\appmgmts.dll (Microsoft Corporation)

SRV:64bit: - (vmicvss) -- C:\Windows\SysNative\icsvc.dll (Microsoft Corporation)

SRV:64bit: - (vmictimesync) -- C:\Windows\SysNative\icsvc.dll (Microsoft Corporation)

SRV:64bit: - (vmicshutdown) -- C:\Windows\SysNative\icsvc.dll (Microsoft Corporation)

SRV:64bit: - (vmicrdv) -- C:\Windows\SysNative\icsvc.dll (Microsoft Corporation)

SRV:64bit: - (vmickvpexchange) -- C:\Windows\SysNative\icsvc.dll (Microsoft Corporation)

SRV:64bit: - (vmicheartbeat) -- C:\Windows\SysNative\icsvc.dll (Microsoft Corporation)

SRV - (MozillaMaintenance) -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe (Mozilla Foundation)

SRV - (AntiVirSchedulerService) -- C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe (Avira Operations GmbH & Co. KG)

SRV - (AntiVirService) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe (Avira Operations GmbH & Co. KG)

SRV - (AdobeFlashPlayerUpdateSvc) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe (Adobe Systems Incorporated)

SRV - (Power Manager DBC Service) -- C:\Program Files (x86)\ThinkPad\Utilities\PWMDBSVC.EXE (Lenovo)

SRV - (LMS) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Intel Corporation)

SRV - (jhi_service) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe (Intel Corporation)

SRV - (LnvHotSpotSvc) -- C:\Programme\Lenovo\Lenovo Mobile Hotspot\LnvHotSpotSvc.exe (Lenovo)

SRV - (AVControlCenter) -- C:\Programme\Lenovo\Communications Utility\AVControlCenter32.exe (Lenovo Corporation)

SRV - (LENOVO.TVTVCAM) -- C:\Programme\Lenovo\Communications Utility\vcamsvc.exe (Lenovo Corporation)

SRV - (LENOVO.TPKNRSVC) -- C:\Programme\Lenovo\Communications Utility\TPKNRSVC.exe (Lenovo Group Limited)

SRV - (LENOVO.CAMMUTE) -- C:\Programme\Lenovo\Communications Utility\CamMute.exe (Lenovo Corporation)

SRV - (AdobeARMservice) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems Incorporated)

SRV - (Steam Client Service) -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe (Valve Corporation)

SRV - (btwdins) -- C:\Programme\ThinkPad\Bluetooth Software\btwdins.exe (Broadcom Corporation.)

SRV - (Lenovo Settings Service) -- C:\Programme\Lenovo\SettingsDependency\SettingsService.exe (Lenovo Group Limited)

SRV - (LocationTaskManager) -- C:\Program Files (x86)\Lenovo\LocationAware\loctaskmgr.exe ()

SRV - (SUService) -- C:\Program Files (x86)\Lenovo\System Update\SUService.exe ()

SRV - (cphs) -- C:\Windows\SysWOW64\IntelCpHeciSvc.exe (Intel Corporation)

SRV - (Intel(R) -- C:\Programme\Intel\iCLS Client\SocketHeciServer.exe (Intel(R) Corporation)

SRV - (Intel(R) -- C:\Programme\Intel\iCLS Client\HeciServer.exe (Intel(R) Corporation)

SRV - (PrintNotify) -- C:\Windows\system32\spool\DRIVERS\x64\3\PrintConfig.dll (Microsoft Corporation)

SRV - (vpnagent) -- C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnagent.exe (Cisco Systems, Inc.)

SRV - (TPHKLOAD) -- C:\Programme\Lenovo\HOTKEY\tphkload.exe (Lenovo Group Limited)

SRV - (LENOVO.MICMUTE) -- C:\Programme\Lenovo\HOTKEY\micmute.exe (Lenovo Group Limited)

SRV - (Lenovo System Agent Service) -- C:\Programme\Lenovo\SystemAgent\SystemAgentService.exe (LENOVO INCORPORATED.)

SRV - (Lenovo.VIRTSCRLSVC) -- C:\Programme\Lenovo\VIRTSCRL\lvvsst.exe (Lenovo Group Limited)

SRV - (StorSvc) -- C:\Windows\SysWOW64\StorSvc.dll (Microsoft Corporation)

SRV - (SwitchBoard) -- C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe (Adobe Systems Incorporated)

 

 
 ========== Driver Services (SafeList) ==========

 

DRV:64bit: - (TPPWRIF) -- C:\Windows\SysNative\Drivers\TPPWR64V.SYS (Lenovo Group Limited)

DRV:64bit: - (SynTP) -- C:\Windows\SysNative\Drivers\SynTP.sys (Synaptics Incorporated)

DRV:64bit: - (SmbDrvI) -- C:\Windows\SysNative\Drivers\Smb_driver_Intel.sys (Synaptics Incorporated)

DRV:64bit: - (Shockprf) -- C:\Windows\SysNative\Drivers\ApsX64.sys (Lenovo.)

DRV:64bit: - (TPDIGIMN) -- C:\Windows\SysNative\Drivers\ApsHM64.sys (Lenovo.)

DRV:64bit: - (USBHUB3) -- C:\Windows\SysNative\Drivers\USBHUB3.SYS (Microsoft Corporation)

DRV:64bit: - (UCX01000) -- C:\Windows\SysNative\Drivers\UCX01000.SYS (Microsoft Corporation)

DRV:64bit: - (spaceport) -- C:\Windows\SysNative\Drivers\spaceport.sys (Microsoft Corporation)

DRV:64bit: - (ACMoFlex64RD4) -- C:\Windows\SysNative\Drivers\ACMoFlex64RD4.sys (Softwareentwicklung Remus - ArchiCrypt.de)

DRV:64bit: - (IBMPMDRV) -- C:\Windows\SysNative\Drivers\ibmpmdrv.sys (Lenovo.)

DRV:64bit: - (bcbtums) -- C:\Windows\SysNative\Drivers\bcbtums.sys (Broadcom Corporation.)

DRV:64bit: - (btwaudio) -- C:\Windows\SysNative\Drivers\btwaudio.sys (Broadcom Corporation.)

DRV:64bit: - (btwavdt) -- C:\Windows\SysNative\Drivers\btwavdt.sys (Broadcom Corporation.)

DRV:64bit: - (btwrchid) -- C:\Windows\SysNative\Drivers\btwrchid.sys (Broadcom Corporation.)

DRV:64bit: - (AMPPAL) -- C:\Windows\SysNative\Drivers\AmpPal.sys (Windows (R) Win 7 DDK provider)

DRV:64bit: - (wmbclass) -- C:\Windows\SysNative\Drivers\wmbclass.sys (Microsoft Corporation)

DRV:64bit: - (avipbb) -- C:\Windows\SysNative\Drivers\avipbb.sys (Avira Operations GmbH & Co. KG)

DRV:64bit: - (avgntflt) -- C:\Windows\SysNative\Drivers\avgntflt.sys (Avira Operations GmbH & Co. KG)

DRV:64bit: - (avkmgr) -- C:\Windows\SysNative\Drivers\avkmgr.sys (Avira Operations GmbH & Co. KG)

DRV:64bit: - (dtsoftbus01) -- C:\Windows\SysNative\Drivers\dtsoftbus01.sys (DT Soft Ltd)

DRV:64bit: - (USBXHCI) -- C:\Windows\SysNative\Drivers\USBXHCI.SYS (Microsoft Corporation)

DRV:64bit: - (storahci) -- C:\Windows\SysNative\Drivers\storahci.sys (Microsoft Corporation)

DRV:64bit: - (TPM) -- C:\Windows\SysNative\Drivers\tpm.sys (Microsoft Corporation)

DRV:64bit: - (sdbus) -- C:\Windows\SysNative\Drivers\sdbus.sys (Microsoft Corporation)

DRV:64bit: - (pdc) -- C:\Windows\SysNative\Drivers\pdc.sys (Microsoft Corporation)

DRV:64bit: - (btwampfl) -- C:\Windows\SysNative\Drivers\btwampfl.sys (Broadcom Corporation.)

DRV:64bit: - (NETwNe64) -- C:\Windows\SysNative\Drivers\NETwew00.sys (Intel Corporation)

DRV:64bit: - (e1cexpress) -- C:\Windows\SysNative\Drivers\e1c63x64.sys (Intel Corporation)

DRV:64bit: - (iaStorA) -- C:\Windows\SysNative\Drivers\iaStorA.sys (Intel Corporation)

DRV:64bit: - (BthAvrcpTg) -- C:\Windows\SysNative\Drivers\BthAvrcpTg.sys (Microsoft Corporation)

DRV:64bit: - (WdBoot) -- C:\Windows\SysNative\Drivers\WdBoot.sys (Microsoft Corporation)

DRV:64bit: - (WdFilter) -- C:\Windows\SysNative\Drivers\WdFilter.sys (Microsoft Corporation)

DRV:64bit: - (BTWPANFL) -- C:\Windows\SysNative\Drivers\btwpanfl.sys (Broadcom Corporation.)

DRV:64bit: - (MEIx64) -- C:\Windows\SysNative\Drivers\HECIx64.sys (Intel Corporation)

DRV:64bit: - (msgpiowin32) -- C:\Windows\SysNative\Drivers\msgpiowin32.sys (Microsoft Corporation)

DRV:64bit: - (igfx) -- C:\Windows\SysNative\Drivers\igdkmd64.sys (Intel Corporation)

DRV:64bit: - (USBAAPL64) -- C:\Windows\SysNative\Drivers\usbaapl64.sys (Apple, Inc.)

DRV:64bit: - (bthhfhid) -- C:\Windows\SysNative\Drivers\BthhfHid.sys (Microsoft Corporation)

DRV:64bit: - (hidi2c) -- C:\Windows\SysNative\Drivers\hidi2c.sys (Microsoft Corporation)

DRV:64bit: - (FxPPM) -- C:\Windows\SysNative\Drivers\fxppm.sys (Microsoft Corporation)

DRV:64bit: - (MbmLowExt) -- C:\Windows\SysNative\Drivers\MbmLowExt.sys (Ericsson AB)

DRV:64bit: - (MkBusFilter) -- C:\Windows\SysNative\Drivers\MbmDeviceFilter.sys (Ericsson AB)

DRV:64bit: - (vpnva) -- C:\Windows\SysNative\Drivers\vpnva64.sys (Cisco Systems, Inc.)

DRV:64bit: - (acsock) -- C:\Windows\SysNative\Drivers\acsock64.sys (Cisco Systems, Inc.)

DRV:64bit: - (RdpVideoMiniport) -- C:\Windows\SysNative\Drivers\rdpvideominiport.sys (Microsoft Corporation)

DRV:64bit: - (sdstor) -- C:\Windows\SysNative\Drivers\sdstor.sys (Microsoft Corporation)

DRV:64bit: - (dam) -- C:\Windows\SysNative\Drivers\dam.sys (Microsoft Corporation)

DRV:64bit: - (risdxc) -- C:\Windows\SysNative\Drivers\risdxc64.sys (REDC)

DRV:64bit: - (GPIOClx0101) -- C:\Windows\SysNative\Drivers\msgpioclx.sys (Microsoft Corporation)

DRV:64bit: - (ebdrv) -- C:\Windows\SysNative\Drivers\evbda.sys (Broadcom Corporation)

DRV:64bit: - (b06bdrv) -- C:\Windows\SysNative\Drivers\bxvbda.sys (Broadcom Corporation)

DRV:64bit: - (RAMDiskVE) -- C:\Windows\SysNative\Drivers\RAMDiskVE.sys (Dataram, Inc.)

DRV:64bit: - (GEARAspiWDM) -- C:\Windows\SysNative\Drivers\GEARAspiWDM.sys (GEAR Software Inc.)

DRV:64bit: - (XHCIPort) -- C:\Windows\SysNative\Drivers\xHCIPort.sys (Windows (R) Win 7 DDK provider)

DRV:64bit: - (RCUVCAVS) -- C:\Windows\SysNative\Drivers\RCUVCAVS.sys (Ricoh co.,Ltd.)

DRV:64bit: - (LnvHIDHW) -- C:\Windows\SysNative\Drivers\LnvHIDHW.sys (Lenovo)

DRV:64bit: - (btwl2cap) -- C:\Windows\SysNative\Drivers\btwl2cap.sys (Broadcom Corporation.)

DRV:64bit: - (Fs_Rec) -- C:\WINDOWS\SysNative\drivers\fs_rec.sys (Microsoft Corporation)

DRV:64bit: - (condrv) -- C:\Windows\SysNative\Drivers\condrv.sys (Microsoft Corporation)

DRV:64bit: - (VSTXRAID) -- C:\Windows\SysNative\Drivers\VSTXRAID.SYS (VIA Corporation)

DRV:64bit: - (VerifierExt) -- C:\Windows\SysNative\Drivers\VerifierExt.sys (Microsoft Corporation)

DRV:64bit: - (UASPStor) -- C:\Windows\SysNative\Drivers\uaspstor.sys (Microsoft Corporation)

DRV:64bit: - (acpiex) -- C:\Windows\SysNative\Drivers\acpiex.sys (Microsoft Corporation)

DRV:64bit: - (mvumis) -- C:\Windows\SysNative\Drivers\mvumis.sys (Marvell Semiconductor, Inc.)

DRV:64bit: - (stexstor) -- C:\Windows\SysNative\Drivers\stexstor.sys (Promise Technology, Inc.)

DRV:64bit: - (LSI_SAS2) -- C:\Windows\SysNative\Drivers\lsi_sas2.sys (LSI Corporation)

DRV:64bit: - (LSI_SSS) -- C:\Windows\SysNative\Drivers\lsi_sss.sys (LSI Corporation)

DRV:64bit: - (HpSAMD) -- C:\Windows\SysNative\Drivers\HpSAMD.sys (Hewlett-Packard Company)

DRV:64bit: - (EhStorTcgDrv) -- C:\Windows\SysNative\Drivers\EhStorTcgDrv.sys (Microsoft Corporation)

DRV:64bit: - (EhStorClass) -- C:\Windows\SysNative\Drivers\EhStorClass.sys (Microsoft Corporation)

DRV:64bit: - (amdsbs) -- C:\Windows\SysNative\Drivers\amdsbs.sys (AMD Technologies Inc.)

DRV:64bit: - (3ware) -- C:\Windows\SysNative\Drivers\3ware.sys (LSI)

DRV:64bit: - (amdsata) -- C:\Windows\SysNative\Drivers\amdsata.sys (Advanced Micro Devices)

DRV:64bit: - (amdxata) -- C:\Windows\SysNative\Drivers\amdxata.sys (Advanced Micro Devices)

DRV:64bit: - (CLFS) -- C:\Windows\SysNative\Drivers\clfs.sys (Microsoft Corporation)

DRV:64bit: - (WFPLWFS) -- C:\Windows\SysNative\Drivers\wfplwfs.sys (Microsoft Corporation)

DRV:64bit: - (vpci) -- C:\Windows\SysNative\Drivers\vpci.sys (Microsoft Corporation)

DRV:64bit: - (terminpt) -- C:\Windows\SysNative\Drivers\terminpt.sys (Microsoft Corporation)

DRV:64bit: - (mshidumdf) -- C:\Windows\SysNative\Drivers\mshidumdf.sys (Microsoft Corporation)

DRV:64bit: - (BasicDisplay) -- C:\Windows\SysNative\Drivers\BasicDisplay.sys (Microsoft Corporation)

DRV:64bit: - (HyperVideo) -- C:\Windows\SysNative\Drivers\HyperVideo.sys (Microsoft Corporation)

DRV:64bit: - (BasicRender) -- C:\Windows\SysNative\Drivers\BasicRender.sys (Microsoft Corporation)

DRV:64bit: - (gencounter) -- C:\Windows\SysNative\Drivers\vmgencounter.sys (Microsoft Corporation)

DRV:64bit: - (kdnic) -- C:\Windows\SysNative\Drivers\kdnic.sys (Microsoft Corporation)

DRV:64bit: - (acpitime) -- C:\Windows\SysNative\Drivers\acpitime.sys (Microsoft Corporation)

DRV:64bit: - (npsvctrig) -- C:\Windows\SysNative\Drivers\npsvctrig.sys (Microsoft Corporation)

DRV:64bit: - (WpdUpFltr) -- C:\Windows\SysNative\Drivers\WpdUpFltr.sys (Microsoft Corporation)

DRV:64bit: - (acpipagr) -- C:\Windows\SysNative\Drivers\acpipagr.sys (Microsoft Corporation)

DRV:64bit: - (hyperkbd) -- C:\Windows\SysNative\Drivers\hyperkbd.sys (Microsoft Corporation)

DRV:64bit: - (SerCx) -- C:\Windows\SysNative\Drivers\SerCx.sys (Microsoft Corporation)

DRV:64bit: - (SpbCx) -- C:\Windows\SysNative\Drivers\SpbCx.sys (Microsoft Corporation)

DRV:64bit: - (TsUsbGD) -- C:\Windows\SysNative\Drivers\TsUsbGD.sys (Microsoft Corporation)

DRV:64bit: - (BthHFEnum) -- C:\Windows\SysNative\Drivers\bthhfenum.sys (Microsoft Corporation)

DRV:64bit: - (dmvsc) -- C:\Windows\SysNative\Drivers\dmvsc.sys (Microsoft Corporation)

DRV:64bit: - (TsUsbFlt) -- C:\Windows\SysNative\Drivers\TsUsbFlt.sys (Microsoft Corporation)

DRV:64bit: - (Vid) -- C:\Windows\SysNative\Drivers\Vid.sys (Microsoft Corporation)

DRV:64bit: - (storvsp) -- C:\Windows\SysNative\Drivers\storvsp.sys (Microsoft Corporation)

DRV:64bit: - (wpcfltr) -- C:\Windows\SysNative\Drivers\wpcfltr.sys (Microsoft Corporation)

DRV:64bit: - (vmbusr) -- C:\Windows\SysNative\Drivers\vmbusr.sys (Microsoft Corporation)

DRV:64bit: - (vpcivsp) -- C:\Windows\SysNative\Drivers\vpcivsp.sys (Microsoft Corporation)

DRV:64bit: - (BthLEEnum) -- C:\Windows\SysNative\Drivers\BthLEEnum.sys (Microsoft Corporation)

DRV:64bit: - (NdisImPlatform) -- C:\Windows\SysNative\Drivers\NdisImPlatform.sys (Microsoft Corporation)

DRV:64bit: - (MsLldp) -- C:\Windows\SysNative\Drivers\mslldp.sys (Microsoft Corporation)

DRV:64bit: - (Ndu) -- C:\Windows\SysNative\Drivers\Ndu.sys (Microsoft Corporation)

DRV:64bit: - (MbmUsbSerial) -- C:\Windows\SysNative\Drivers\MbmUsbSerial.sys (Ericsson AB)

DRV:64bit: - (IntcDAud) -- C:\Windows\SysNative\Drivers\IntcDAud.sys (Intel(R) Corporation)

DRV:64bit: - (e1iexpress) -- C:\Windows\SysNative\Drivers\e1i63x64.sys (Intel Corporation)

DRV:64bit: - (dc3d) -- C:\Windows\SysNative\Drivers\dc3d.sys (Microsoft Corporation)

DRV:64bit: - (VClone) -- C:\Windows\SysNative\Drivers\VClone.sys (Elaborate Bytes AG)

DRV:64bit: - (Spyder3) -- C:\Windows\SysNative\Drivers\Spyder3.sys ()

DRV:64bit: - (SSPORT) -- C:\Windows\SysNative\Drivers\SSPORT.SYS (Samsung Electronics)

DRV:64bit: - (DgiVecp) -- C:\Windows\SysNative\Drivers\DGIVECP.SYS (Samsung Electronics Co., Ltd.)

DRV - (smihlp) -- C:\Programme\ThinkVantage Fingerprint Software\smihlp.sys (Authentec Inc.)

 

 
 ========== Standard Registry (SafeList) ==========

 

 
 ========== Internet Explorer ==========

 

IE:64bit: - HKLM\..\SearchScopes,DefaultScope = 

IE:64bit: - HKLM\..\SearchScopes\{7AFF137D-23DE-4688-ABB1-6B39E6F3E846}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MALCJS

IE - HKLM\..\SearchScopes,DefaultScope = 

IE - HKLM\..\SearchScopes\{7AFF137D-23DE-4688-ABB1-6B39E6F3E846}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MALCJS

 

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://lenovo13-comm.msn.com

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = hxxp://www.lenovo.com/welcome/thinkpad [binary data]

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://www.lenovo.com/welcome/thinkpad [binary data]

IE - HKCU\..\SearchScopes,DefaultScope = 

IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local;192.168.*.*

 
 ========== FireFox ==========

 

FF - prefs.js..browser.search.selectedEngine: "Google"

FF - prefs.js..browser.search.useDBForOrder: true

FF - prefs.js..browser.startup.homepage: "hxxp://theawesomer.com/"

FF - prefs.js..extensions.enabledAddons: %7BF74D5734-46F5-4B16-96F0-1E7FBF41B750%7D:4.10

FF - prefs.js..extensions.enabledAddons: groovesharkUnlocker%40overlord1337:1.3.4

FF - prefs.js..extensions.enabledAddons: ich%40maltegoetz.de:1.5.1

FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:22.0

FF - prefs.js..keyword.URL: "hxxp://www.google.de/search?q="

FF - user.js - File not found

 

FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF64_11_7_700_224.dll File not found

FF:64bit: - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.25.2: C:\WINDOWS\system32\npDeployJava1.dll (Oracle Corporation)

FF:64bit: - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.25.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)

FF:64bit: - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.5: C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)

FF:64bit: - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.6: C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)

FF:64bit: - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.7: C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)

FF:64bit: - HKLM\Software\MozillaPlugins\adobe.com/AdobeAAMDetect: C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll (Adobe Systems)

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_11_7_700_224.dll ()

FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=:  File not found

FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()

FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=3.0.72: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)

FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)

FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.25.2: C:\WINDOWS\SysWOW64\npDeployJava1.dll (Oracle Corporation)

FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.25.2: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)

FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)

FF - HKLM\Software\MozillaPlugins\adobe.com/AdobeAAMDetect: C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll (Adobe Systems)

 

FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 22.0\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2013.06.26 11:12:27 | 000,000,000 | ---D | M]

FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 22.0\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins

FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 17.0.7\extensions\\Components: C:\Program Files (x86)\Mozilla Thunderbird\components [2013.06.25 19:23:59 | 000,000,000 | ---D | M]

FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 17.0.7\extensions\\Plugins: C:\Program Files (x86)\Mozilla Thunderbird\plugins

FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\{F74D5734-46F5-4B16-96F0-1E7FBF41B750}: C:\Program Files (x86)\Lenovo\Password Manager\PWM Firefox Extension\2.0b12 [2013.01.06 15:43:36 | 000,000,000 | ---D | M]

FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 22.0\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2013.06.26 11:12:27 | 000,000,000 | ---D | M]

FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 22.0\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins

FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Thunderbird 17.0.7\extensions\\Components: C:\Program Files (x86)\Mozilla Thunderbird\components [2013.06.25 19:23:59 | 000,000,000 | ---D | M]

FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Thunderbird 17.0.7\extensions\\Plugins: C:\Program Files (x86)\Mozilla Thunderbird\plugins

 

[2013.01.06 02:57:15 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Peter\AppData\Roaming\mozilla\Extensions

[2013.07.07 12:26:33 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Peter\AppData\Roaming\mozilla\Firefox\Profiles\if6ueips.default\extensions

[2013.07.01 23:08:45 | 000,000,000 | ---D | M] (ProxTube - Unblock YouTube) -- C:\Users\Peter\AppData\Roaming\mozilla\Firefox\Profiles\if6ueips.default\extensions\ich@maltegoetz.de

[2013.04.19 12:48:28 | 000,050,424 | ---- | M] () (No name found) -- C:\Users\Peter\AppData\Roaming\mozilla\firefox\profiles\if6ueips.default\extensions\groovesharkUnlocker@overlord1337.xpi

[2013.05.09 14:00:59 | 000,870,680 | ---- | M] () (No name found) -- C:\Users\Peter\AppData\Roaming\mozilla\firefox\profiles\if6ueips.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi

[2013.06.26 11:12:27 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\mozilla firefox\browser\extensions

[2013.06.26 11:12:30 | 000,000,000 | ---D | M] (Default) -- C:\Program Files (x86)\mozilla firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

[2013.01.06 15:43:36 | 000,000,000 | ---D | M] (ThinkVantage Password Manager) -- C:\PROGRAM FILES (X86)\LENOVO\PASSWORD MANAGER\PWM FIREFOX EXTENSION\2.0B12

 

O2:64bit: - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Programme\Java\jre7\bin\ssv.dll (Oracle Corporation)

O2:64bit: - BHO: (IePasswordManagerHelper Class) - {BF468356-BB7E-42D7-9F15-4F3B9BCFCED2} - C:\Programme\Lenovo\Password Manager\tvtpwm_ie_com.dll (Lenovo Group Limited)

O2:64bit: - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Programme\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)

O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)

O2 - BHO: (IePasswordManagerHelper Class) - {BF468356-BB7E-42D7-9F15-4F3B9BCFCED2} - C:\Program Files (x86)\Lenovo\Password Manager\tvtpwm_ie_com.dll (Lenovo Group Limited)

O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)

O3:64bit: - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.

O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.

O4:64bit: - HKLM..\Run: [AcWin7Hlpr] C:\Program Files (x86)\Lenovo\Access Connections\AcTBenabler.exe File not found

O4:64bit: - HKLM..\Run: [AdobeAAMUpdater-1.0] C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe (Adobe Systems Incorporated)

O4:64bit: - HKLM..\Run: [HotKeysCmds] C:\Windows\SysNative\hkcmd.exe (Intel Corporation)

O4:64bit: - HKLM..\Run: [IgfxTray] C:\Windows\SysNative\igfxtray.exe (Intel Corporation)

O4:64bit: - HKLM..\Run: [LENOVO.TPKNRRES] C:\Programme\Lenovo\Communications Utility\TpKnrres.exe (Lenovo Corporation)

O4:64bit: - HKLM..\Run: [LenovoOptMouseUpdate] C:\Programme\Lenovo\HOTKEY\extapsup.exe (Lenovo Group Limited)

O4:64bit: - HKLM..\Run: [LnvMobHotspotClient] C:\Programme\Lenovo\Lenovo Mobile Hotspot\MobileHotspotclient.exe (Lenovo)

O4:64bit: - HKLM..\Run: [PasswordManager] C:\Programme\Lenovo\Password Manager\password_manager.exe (Lenovo Group Limited)

O4:64bit: - HKLM..\Run: [Persistence] C:\Windows\SysNative\igfxpers.exe (Intel Corporation)

O4:64bit: - HKLM..\Run: [RtHDVBg_Dolby] C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (Realtek Semiconductor)

O4:64bit: - HKLM..\Run: [RTHDVCPL] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor)

O4:64bit: - HKLM..\Run: [TpShocks] C:\WINDOWS\SysNative\TpShocks.exe (Lenovo.)

O4 - HKLM..\Run: [AdobeCS5.5ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe" -launchedbylogin File not found

O4 - HKLM..\Run: [APSDaemon] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)

O4 - HKLM..\Run: [avgnt] C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe (Avira Operations GmbH & Co. KG)

O4 - HKLM..\Run: [Cisco AnyConnect Secure Mobility Agent for Windows] C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnui.exe (Cisco Systems, Inc.)

O4 - HKLM..\Run: [IMSS] C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe (Intel Corporation)

O4 - HKLM..\Run: [PWMTRV] C:\Program Files (x86)\ThinkPad\Utilities\PWMTR64V.DLL (Lenovo Group Limited)

O4 - HKLM..\Run: [RotateImage] C:\Program Files (x86)\Integrated Camera Driver\X64\RCIMGDIR.exe (Ricoh co.,Ltd.)

O4 - HKLM..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe (Adobe Systems Incorporated)

O4 - HKCU..\Run: [DAEMON Tools Lite] C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd)

O4 - HKCU..\Run: [Steam] C:\Program Files (x86)\Steam\Steam.exe (Valve Corporation)

O4 - Startup: C:\Users\Peter\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk = C:\Users\Peter\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)

O4 - Startup: C:\Users\Peter\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.4.1.lnk = C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe ()

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableCursorSuppression = 1

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableCAD = 1

O8:64bit: - Extra context menu item: &Citavi Picker... - C:\ProgramData\Swiss Academic Software\Citavi Picker\Internet Explorer\ShowContextMenu.html ()

O8 - Extra context menu item: &Citavi Picker... - C:\ProgramData\Swiss Academic Software\Citavi Picker\Internet Explorer\ShowContextMenu.html ()

O9:64bit: - Extra 'Tools' menuitem : Lenovo Password Manager... - {F4F55DC8-0B69-4DFE-BA94-CB677B88B2A3} - C:\Programme\Lenovo\Password Manager\tvtpwm_ie_com.dll (Lenovo Group Limited)

O9 - Extra 'Tools' menuitem : Lenovo Password Manager... - {F4F55DC8-0B69-4DFE-BA94-CB677B88B2A3} - C:\Program Files (x86)\Lenovo\Password Manager\tvtpwm_ie_com.dll (Lenovo Group Limited)

O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000008 [] - C:\Programme\Bonjour\mdnsNSP.dll (Apple Inc.)

O10 - NameSpace_Catalog5\Catalog_Entries\000000000008 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)

O1364bit: - gopher Prefix: missing

O13 - gopher Prefix: missing

O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.2.1

O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{5056A1A9-3D97-4A64-9B73-116101B5EEB2}: DhcpNameServer = 192.168.2.1

O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{AB94E8B7-CDFE-4189-8BD3-EB57E0CF062B}: NameServer = 193.189.244.225,193.189.244.206

O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)

O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)

O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\WINDOWS\SysWow64\explorer.exe (Microsoft Corporation)

O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\WINDOWS\SysWow64\userinit.exe (Microsoft Corporation)

O20:64bit: - Winlogon\Notify\igfxcui: DllName - (igfxdev.dll) - C:\WINDOWS\SysNative\igfxdev.dll (Intel Corporation)

O20:64bit: - Winlogon\Notify\psfus: DllName - (C:\Program Files\ThinkVantage Fingerprint Software\psqlpwd.dll) - C:\Programme\ThinkVantage Fingerprint Software\psqlpwd.dll (Authentec Inc.)

O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.

O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.

O30 - LSA: Security Packages - (livessp) -  File not found

O32 - HKLM CDRom: AutoRun - 1

O33 - MountPoints2\{2281668e-8466-11e2-beb1-3c970e590759}\Shell - "" = AutoRun

O33 - MountPoints2\{2281668e-8466-11e2-beb1-3c970e590759}\Shell\AutoRun\command - "" = "F:\setup.exe" 

O33 - MountPoints2\{e6c31630-7cf3-11e2-bea8-3c970e590759}\Shell - "" = AutoRun

O33 - MountPoints2\{e6c31630-7cf3-11e2-bea8-3c970e590759}\Shell\AutoRun\command - "" = "F:\setup.exe" -a

O34 - HKLM BootExecute: (autocheck autochk *)

O35:64bit: - HKLM\..comfile [open] -- "%1" %*

O35:64bit: - HKLM\..exefile [open] -- "%1" %*

O35 - HKLM\..comfile [open] -- "%1" %*

O35 - HKLM\..exefile [open] -- "%1" %*

O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*

O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*

O37 - HKLM\...com [@ = comfile] -- "%1" %*

O37 - HKLM\...exe [@ = exefile] -- "%1" %*

O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)

O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

 
 ========== Files/Folders - Created Within 30 Days ==========

 

[2013.07.08 11:01:27 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\Peter\Desktop\OTL.exe

[2013.07.08 10:16:16 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Java

[2013.07.08 10:16:11 | 000,263,592 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\SysWow64\javaws.exe

[2013.07.08 10:16:10 | 000,175,016 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\SysWow64\javaw.exe

[2013.07.08 10:16:10 | 000,175,016 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\SysWow64\java.exe

[2013.07.08 10:16:10 | 000,096,168 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\SysWow64\WindowsAccessBridge-32.dll

[2013.07.08 10:16:07 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Java

[2013.07.08 10:12:07 | 000,312,232 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\SysNative\javaws.exe

[2013.07.08 10:12:06 | 000,189,352 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\SysNative\javaw.exe

[2013.07.08 10:12:06 | 000,188,840 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\SysNative\java.exe

[2013.07.08 10:12:06 | 000,108,968 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\SysNative\WindowsAccessBridge-64.dll

[2013.07.08 10:12:02 | 000,000,000 | ---D | C] -- C:\Program Files\Java

[2013.07.08 10:02:58 | 016,819,192 | ---- | C] (Lenovo Corporation) -- C:\WINDOWS\SysNative\LibDriverMft.dll

[2013.07.08 10:02:58 | 000,076,280 | ---- | C] (Lenovo Corporation) -- C:\WINDOWS\SysNative\LibDriverMftStart.dll

[2013.07.08 10:02:57 | 016,820,728 | ---- | C] (Lenovo Corporation) -- C:\WINDOWS\SysWow64\LibDriverMft.dll

[2013.07.08 10:02:57 | 000,067,064 | ---- | C] (Lenovo Corporation) -- C:\WINDOWS\SysWow64\LibDriverMftStart.dll

[2013.07.07 23:30:52 | 000,000,000 | ---D | C] -- C:\Users\Peter\Desktop\Zeug

[2013.07.07 21:13:40 | 000,000,000 | ---D | C] -- C:\FRST

[2013.07.07 20:11:26 | 000,448,512 | ---- | C] (OldTimer Tools) -- C:\Users\Peter\Desktop\TFC.exe

[2013.07.07 20:10:30 | 001,093,032 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\SysNative\npDeployJava1.dll

[2013.07.07 20:10:30 | 000,972,712 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\SysNative\deployJava1.dll

[2013.07.07 13:38:59 | 002,347,384 | ---- | C] (ESET) -- C:\Users\Peter\Desktop\esetsmartinstaller_enu.exe

[2013.07.07 12:24:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\ERUNT

[2013.07.07 12:24:32 | 000,000,000 | ---D | C] -- C:\JRT

[2013.07.07 12:24:25 | 000,545,954 | ---- | C] (Oleg N. Scherbakov) -- C:\Users\Peter\Desktop\JRT.exe

[2013.07.07 11:38:48 | 001,934,636 | ---- | C] (Farbar) -- C:\Users\Peter\Desktop\FRST64.exe

[2013.07.07 00:32:38 | 002,366,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WudfUpdate_01011.dll

[2013.07.07 00:32:26 | 000,020,736 | ---- | C] (Lenovo Group Limited) -- C:\WINDOWS\SysNative\drivers\TPPWR64V.SYS

[2013.07.07 00:32:26 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ThinkPad

[2013.07.06 22:46:09 | 000,000,000 | ---D | C] -- C:\Users\Peter\AppData\Roaming\Malwarebytes

[2013.07.06 22:45:58 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes

[2013.07.04 09:08:12 | 002,232,024 | ---- | C] (Broadcom Corporation.) -- C:\WINDOWS\SysNative\BcmBtRSupport.dll

[2013.07.04 09:08:12 | 002,228,440 | ---- | C] (Broadcom Corporation.) -- C:\WINDOWS\SysNative\BtwRSupportService.exe

[2013.07.04 09:08:12 | 000,228,568 | ---- | C] (Broadcom Corporation.) -- C:\WINDOWS\SysNative\drivers\btwavdt.sys

[2013.07.04 09:08:12 | 000,186,584 | ---- | C] (Broadcom Corporation.) -- C:\WINDOWS\SysNative\drivers\btwaudio.sys

[2013.07.04 09:08:12 | 000,040,248 | ---- | C] (Broadcom Corporation.) -- C:\WINDOWS\SysNative\drivers\btwl2cap.sys

[2013.07.04 09:08:12 | 000,022,744 | ---- | C] (Broadcom Corporation.) -- C:\WINDOWS\SysNative\drivers\btwrchid.sys

[2013.07.04 09:07:24 | 001,048,816 | ---- | C] (Synaptics Incorporated) -- C:\WINDOWS\SysNative\SynCOM.dll

[2013.07.04 09:07:24 | 000,540,400 | ---- | C] (Synaptics Incorporated) -- C:\WINDOWS\SysWow64\SynCOM.dll

[2013.07.04 09:07:24 | 000,460,528 | ---- | C] (Synaptics Incorporated) -- C:\WINDOWS\SysNative\drivers\SynTP.sys

[2013.07.04 09:07:24 | 000,229,616 | ---- | C] (Synaptics Incorporated) -- C:\WINDOWS\SysNative\SynTPAPI.dll

[2013.07.04 09:07:24 | 000,178,416 | ---- | C] (Synaptics Incorporated) -- C:\WINDOWS\SysNative\SynTPCo14.dll

[2013.07.04 09:07:24 | 000,114,416 | ---- | C] (Synaptics Incorporated) -- C:\WINDOWS\SysWow64\SynTPCOM.dll

[2013.07.04 09:07:23 | 000,044,784 | ---- | C] (Synaptics Incorporated) -- C:\WINDOWS\SysNative\drivers\Smb_driver_Intel.sys

[2013.07.04 09:04:42 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN

[2013.07.03 20:58:48 | 000,144,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\tssdisai.dll

[2013.07.03 18:25:12 | 000,000,000 | ---D | C] -- C:\Users\Peter\AppData\Local\Passbild_Generator

[2013.07.02 15:17:39 | 000,244,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\msflxgrd.ocx

[2013.07.02 15:17:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\msagent

[2013.06.26 11:12:27 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Firefox

[2013.06.25 19:23:59 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Thunderbird

[2013.06.20 16:23:25 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes

[2013.06.20 16:23:19 | 000,000,000 | ---D | C] -- C:\Program Files\iTunes

[2013.06.20 16:23:19 | 000,000,000 | ---D | C] -- C:\Program Files\iPod

[2013.06.20 16:23:19 | 000,000,000 | ---D | C] -- C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69

[2013.06.20 01:43:39 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Dolby Home Theater v4

[2013.06.20 01:43:39 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dolby

[2013.06.20 01:43:25 | 003,693,640 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SysNative\RtkAPO64.dll

[2013.06.20 01:43:25 | 002,794,056 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SysNative\RtPgEx64.dll

[2013.06.20 01:43:25 | 002,103,040 | ---- | C] (Waves Audio Ltd.) -- C:\WINDOWS\SysNative\WavesGUILib64.dll

[2013.06.20 01:43:25 | 001,662,024 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SysNative\RTSnMg64.cpl

[2013.06.20 01:43:25 | 001,003,592 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SysNative\RtkApi64.dll

[2013.06.20 01:43:25 | 000,916,016 | ---- | C] (Sony Corporation) -- C:\WINDOWS\SysNative\SFSS_APO.dll

[2013.06.20 01:43:24 | 024,962,560 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SysNative\RCoRes64.dat

[2013.06.20 01:43:24 | 007,164,176 | ---- | C] (Dolby Laboratories) -- C:\WINDOWS\SysNative\R4EEP64A.dll

[2013.06.20 01:43:24 | 001,284,680 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SysNative\RTCOM64.dll

[2013.06.20 01:43:24 | 000,434,960 | ---- | C] (Dolby Laboratories) -- C:\WINDOWS\SysNative\R4EED64A.dll

[2013.06.20 01:43:24 | 000,142,408 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SysNative\RCoInstII64.dll

[2013.06.20 01:43:24 | 000,141,584 | ---- | C] (Dolby Laboratories) -- C:\WINDOWS\SysNative\R4EEL64A.dll

[2013.06.20 01:43:24 | 000,124,176 | ---- | C] (Dolby Laboratories) -- C:\WINDOWS\SysNative\R4EEA64A.dll

[2013.06.20 01:43:24 | 000,075,024 | ---- | C] (Dolby Laboratories) -- C:\WINDOWS\SysNative\R4EEG64A.dll

[2013.06.20 01:43:23 | 002,735,648 | ---- | C] (Fortemedia Corporation) -- C:\WINDOWS\SysNative\FMAPO64.dll

[2013.06.20 01:43:23 | 000,501,192 | ---- | C] (DTS) -- C:\WINDOWS\SysNative\DTSU2PLFX64.dll

[2013.06.20 01:43:23 | 000,487,368 | ---- | C] (DTS) -- C:\WINDOWS\SysNative\DTSU2PGFX64.dll

[2013.06.20 01:43:23 | 000,415,688 | ---- | C] (DTS) -- C:\WINDOWS\SysNative\DTSU2PREC64.dll

[2013.06.20 01:43:22 | 000,208,072 | ---- | C] (Andrea Electronics Corporation) -- C:\WINDOWS\SysNative\AERTAC64.dll

[2013.06.20 01:43:21 | 002,079,816 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\RtlExUpd.dll

[2013.06.19 22:15:14 | 000,016,344 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysNative\drivers\IntelMEFWVer.dll

[2013.06.16 12:18:34 | 001,257,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\kernel32.dll

[2013.06.16 12:18:30 | 001,300,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\gdi32.dll

[2013.06.16 12:17:35 | 000,888,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\autochk.exe

[2013.06.16 12:17:35 | 000,793,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\autochk.exe

[2013.06.16 12:17:35 | 000,542,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\untfs.dll

[2013.06.16 12:17:35 | 000,482,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\untfs.dll

[2013.06.15 16:53:30 | 013,644,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.UI.Xaml.dll

[2013.06.15 16:53:29 | 010,788,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.UI.Xaml.dll

[2013.06.15 16:53:28 | 001,131,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppXDeploymentServer.dll

[2013.06.15 16:53:27 | 010,116,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\twinui.dll

[2013.06.15 16:53:24 | 000,470,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\netprofmsvc.dll

[2013.06.15 16:53:23 | 008,857,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\twinui.dll

[2013.06.15 16:53:22 | 002,305,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\authui.dll

[2013.06.15 16:53:22 | 002,035,712 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\authui.dll

[2013.06.15 16:53:22 | 000,820,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\gpprefcl.dll

[2013.06.15 16:53:22 | 000,812,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Magnify.exe

[2013.06.15 16:53:22 | 000,760,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wuapi.dll

[2013.06.15 16:53:22 | 000,708,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppXDeploymentExtensions.dll

[2013.06.15 16:53:22 | 000,621,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wuapi.dll

[2013.06.15 16:53:22 | 000,560,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfmp4srcsnk.dll

[2013.06.15 16:53:22 | 000,446,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\USBHUB3.SYS

[2013.06.15 16:53:22 | 000,389,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\BCP47Langs.dll

[2013.06.15 16:53:22 | 000,330,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\stobject.dll

[2013.06.15 16:53:22 | 000,328,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ubpm.dll

[2013.06.15 16:53:22 | 000,247,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ubpm.dll

[2013.06.15 16:53:22 | 000,213,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\UCX01000.SYS

[2013.06.15 16:53:22 | 000,169,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\netplwiz.dll

[2013.06.15 16:53:22 | 000,093,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\psmsrv.dll

[2013.06.15 16:53:22 | 000,014,848 | ---- | C] (Microsoft) -- C:\WINDOWS\SysWow64\rars.rs

[2013.06.15 16:53:22 | 000,014,848 | ---- | C] (Microsoft) -- C:\WINDOWS\SysNative\rars.rs

[2013.06.15 16:53:21 | 001,619,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wucltux.dll

[2013.06.15 16:53:21 | 000,758,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Magnify.exe

[2013.06.15 16:53:21 | 000,582,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\gpprefcl.dll

[2013.06.15 16:53:21 | 000,501,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\DevicePairing.dll

[2013.06.15 16:53:21 | 000,449,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\DevicePairing.dll

[2013.06.15 16:53:21 | 000,419,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\intl.cpl

[2013.06.15 16:53:21 | 000,389,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\intl.cpl

[2013.06.15 16:53:21 | 000,284,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\spaceport.sys

[2013.06.15 16:53:21 | 000,251,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WUSettingsProvider.dll

[2013.06.15 16:53:21 | 000,179,712 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\bisrv.dll

[2013.06.15 16:53:21 | 000,151,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\netplwiz.dll

[2013.06.15 16:53:21 | 000,122,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\biwinrt.dll

[2013.06.15 16:53:21 | 000,120,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AuthHost.exe

[2013.06.15 16:53:21 | 000,092,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\biwinrt.dll

[2013.06.15 16:53:21 | 000,083,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\hidclass.sys

[2013.06.15 16:53:21 | 000,058,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wuauclt.exe

[2013.06.15 16:53:20 | 000,411,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfmp4srcsnk.dll

[2013.06.15 16:53:20 | 000,309,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\BCP47Langs.dll

[2013.06.15 16:53:20 | 000,173,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\storewuauth.dll

[2013.06.15 16:53:20 | 000,141,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wuwebv.dll

[2013.06.15 16:53:20 | 000,125,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wuwebv.dll

[2013.06.15 16:53:20 | 000,098,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wudriver.dll

[2013.06.15 16:53:20 | 000,083,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wudriver.dll

[2013.06.15 16:53:20 | 000,039,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wuapp.exe

[2013.06.15 16:53:20 | 000,034,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wuapp.exe

[2013.06.15 16:53:20 | 000,017,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\muifontsetup.dll

[2013.06.15 16:53:20 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\muifontsetup.dll

[2013.06.12 14:19:38 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\cryptdlg.dll

[2013.06.12 14:19:38 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\cryptdlg.dll

[2013.06.12 09:50:24 | 000,693,112 | ---- | C] (Adobe Systems Incorporated) -- C:\WINDOWS\SysWow64\FlashPlayerApp.exe

[2013.06.12 09:50:24 | 000,078,200 | ---- | C] (Adobe Systems Incorporated) -- C:\WINDOWS\SysWow64\FlashPlayerCPLApp.cpl

[2013.06.12 09:31:45 | 001,889,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\crypt32.dll

[2013.06.12 09:31:45 | 001,255,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\certutil.exe

[2013.06.12 09:31:45 | 001,013,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\certutil.exe

[2013.06.12 09:31:45 | 000,733,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\win32spl.dll

[2013.06.12 09:31:45 | 000,141,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\cryptnet.dll

[2013.06.12 09:31:41 | 003,958,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\jscript9.dll

[2013.06.12 09:31:39 | 000,915,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\uxtheme.dll

[2013.06.12 09:31:39 | 000,855,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\jscript.dll

[2013.06.12 09:31:39 | 000,690,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\jscript.dll

[2013.06.12 09:31:39 | 000,603,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msfeeds.dll

[2013.06.12 09:31:39 | 000,053,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\UXInit.dll

[2013.06.12 09:31:39 | 000,051,712 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ie4uinit.exe

[2013.06.12 09:31:39 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\UXInit.dll

 
 ========== Files - Modified Within 30 Days ==========

 

[2013.07.08 11:01:27 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Peter\Desktop\OTL.exe

[2013.07.08 10:54:35 | 001,745,416 | ---- | M] () -- C:\WINDOWS\SysNative\PerfStringBackup.INI

[2013.07.08 10:54:35 | 000,753,134 | ---- | M] () -- C:\WINDOWS\SysNative\perfh007.dat

[2013.07.08 10:54:35 | 000,710,244 | ---- | M] () -- C:\WINDOWS\SysNative\perfh009.dat

[2013.07.08 10:54:35 | 000,155,826 | ---- | M] () -- C:\WINDOWS\SysNative\perfc007.dat

[2013.07.08 10:54:35 | 000,132,614 | ---- | M] () -- C:\WINDOWS\SysNative\perfc009.dat

[2013.07.08 10:52:21 | 000,067,584 | --S- | M] () -- C:\WINDOWS\bootstat.dat

[2013.07.08 10:50:19 | 268,435,456 | -HS- | M] () -- C:\swapfile.sys

[2013.07.08 10:50:15 | 4199,993,343 | -HS- | M] () -- C:\hiberfil.sys

[2013.07.08 10:41:00 | 000,000,884 | ---- | M] () -- C:\WINDOWS\tasks\Adobe Flash Player Updater.job

[2013.07.08 10:16:08 | 000,096,168 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\SysWow64\WindowsAccessBridge-32.dll

[2013.07.08 10:16:07 | 000,867,240 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\SysWow64\npDeployJava1.dll

[2013.07.08 10:16:07 | 000,789,416 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\SysWow64\deployJava1.dll

[2013.07.08 10:16:07 | 000,263,592 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\SysWow64\javaws.exe

[2013.07.08 10:16:07 | 000,175,016 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\SysWow64\javaw.exe

[2013.07.08 10:16:07 | 000,175,016 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\SysWow64\java.exe

[2013.07.08 10:12:03 | 001,093,032 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\SysNative\npDeployJava1.dll

[2013.07.08 10:12:03 | 000,972,712 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\SysNative\deployJava1.dll

[2013.07.08 10:12:03 | 000,312,232 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\SysNative\javaws.exe

[2013.07.08 10:12:03 | 000,189,352 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\SysNative\javaw.exe

[2013.07.08 10:12:03 | 000,188,840 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\SysNative\java.exe

[2013.07.08 10:12:03 | 000,108,968 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\SysNative\WindowsAccessBridge-64.dll

[2013.07.07 20:11:26 | 000,448,512 | ---- | M] (OldTimer Tools) -- C:\Users\Peter\Desktop\TFC.exe

[2013.07.07 13:38:59 | 002,347,384 | ---- | M] (ESET) -- C:\Users\Peter\Desktop\esetsmartinstaller_enu.exe

[2013.07.07 12:24:29 | 000,545,954 | ---- | M] (Oleg N. Scherbakov) -- C:\Users\Peter\Desktop\JRT.exe

[2013.07.07 10:50:04 | 001,934,636 | ---- | M] (Farbar) -- C:\Users\Peter\Desktop\FRST64.exe

[2013.07.04 09:08:36 | 000,000,890 | ---- | M] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk

[2013.07.04 01:08:43 | 524,288,848 | ---- | M] () -- C:\Users\Peter\Desktop\Firefox.ard

[2013.06.26 10:23:45 | 000,083,672 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\WINDOWS\SysNative\drivers\avnetflt.sys

[2013.06.19 22:12:46 | 004,876,072 | ---- | M] () -- C:\WINDOWS\SysNative\FNTCACHE.DAT

[2013.06.15 19:05:20 | 000,001,058 | ---- | M] () -- C:\Users\Peter\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk

 
 ========== Files Created - No Company Name ==========

 

[2013.07.04 09:08:10 | 000,000,890 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk

[2013.06.25 09:16:46 | 000,002,471 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk

[2013.06.20 01:43:35 | 000,000,008 | ---- | C] () -- C:\WINDOWS\SysNative\drivers\RTKHDAUD.DAT

[2013.06.20 01:43:24 | 000,576,929 | ---- | C] () -- C:\WINDOWS\SysNative\drivers\RTAIODAT.DAT

[2013.06.19 22:12:43 | 004,876,072 | ---- | C] () -- C:\WINDOWS\SysNative\FNTCACHE.DAT

[2013.06.15 19:05:20 | 000,001,058 | ---- | C] () -- C:\Users\Peter\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk

[2013.06.15 16:53:20 | 000,386,646 | ---- | C] () -- C:\WINDOWS\SysNative\ApnDatabase.xml

[2013.03.29 22:21:38 | 000,598,780 | ---- | C] () -- C:\WINDOWS\SysWow64\igvpkrng700.bin

[2013.03.29 22:21:34 | 000,064,512 | ---- | C] () -- C:\WINDOWS\SysWow64\igdde32.dll

[2013.03.29 22:21:33 | 000,755,048 | ---- | C] () -- C:\WINDOWS\SysWow64\igcodeckrng700.bin

[2013.03.05 18:49:54 | 000,010,240 | ---- | C] () -- C:\WINDOWS\SysWow64\vidx16.dll

[2013.02.04 00:47:21 | 000,000,198 | -H-- | C] () -- C:\ProgramData\Lenovo-15815.vbs

[2013.01.08 11:54:23 | 000,083,968 | ---- | C] () -- C:\WINDOWS\SysWow64\OEMLicense.dll

[2013.01.06 09:31:18 | 000,000,198 | -H-- | C] () -- C:\ProgramData\Lenovo-29935.vbs

[2013.01.06 08:54:01 | 000,000,000 | -H-- | C] () -- C:\ProgramData\DP45977C.lfl

[2013.01.06 02:53:12 | 000,000,017 | ---- | C] () -- C:\Users\Peter\AppData\Local\resmon.resmoncfg

[2012.07.26 10:13:10 | 000,215,943 | ---- | C] () -- C:\WINDOWS\SysWow64\dssec.dat

[2012.07.26 10:13:09 | 000,000,741 | ---- | C] () -- C:\WINDOWS\SysWow64\NOISE.DAT

[2012.07.26 09:21:26 | 000,067,584 | --S- | C] () -- C:\WINDOWS\bootstat.dat

[2012.07.26 03:17:42 | 000,043,520 | ---- | C] () -- C:\WINDOWS\SysWow64\BWContextHandler.dll

[2012.07.25 22:37:29 | 000,043,131 | ---- | C] () -- C:\WINDOWS\mib.bin

[2012.07.25 22:28:31 | 000,364,544 | ---- | C] () -- C:\WINDOWS\SysWow64\msjetoledb40.dll

[2012.07.25 22:22:56 | 000,267,284 | ---- | C] () -- C:\WINDOWS\SysWow64\igvpkrng600.bin

[2012.07.25 22:22:54 | 000,963,376 | ---- | C] () -- C:\WINDOWS\SysWow64\igcodeckrng600.bin

[2012.06.19 19:52:42 | 000,001,536 | ---- | C] () -- C:\WINDOWS\SysWow64\IusEventLog.dll

[2012.06.02 16:31:19 | 000,673,088 | ---- | C] () -- C:\WINDOWS\SysWow64\mlang.dat

 
 ========== ZeroAccess Check ==========

 

[2013.03.08 13:45:53 | 000,000,227 | RHS- | M] () -- C:\WINDOWS\assembly\Desktop.ini

 

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

 

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

 

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64

 

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

 

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

"" = C:\Windows\SysNative\shell32.dll -- [2013.03.06 08:31:28 | 019,758,592 | ---- | M] (Microsoft Corporation)

"ThreadingModel" = Apartment

 

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

"" = %SystemRoot%\system32\shell32.dll -- [2013.03.06 07:03:37 | 017,561,600 | ---- | M] (Microsoft Corporation)

"ThreadingModel" = Apartment

 

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64

"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2012.07.26 05:05:38 | 001,004,544 | ---- | M] (Microsoft Corporation)

"ThreadingModel" = Free

 

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]

"" = %systemroot%\system32\wbem\fastprox.dll -- [2012.07.26 05:18:27 | 000,784,896 | ---- | M] (Microsoft Corporation)

"ThreadingModel" = Free

 

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64

"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2012.07.26 05:07:41 | 000,455,680 | ---- | M] (Microsoft Corporation)

"ThreadingModel" = Both

 

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
 

< End of report >

Code:

OTL Extras logfile created on: 08.07.2013 11:02:33 - Run 2

OTL by OldTimer - Version 3.2.69.0     Folder = C:\Users\Peter\Desktop

64bit- Professional  (Version = 6.2.9200) - Type = NTWorkstation

Internet Explorer (Version = 9.10.9200.16599)

Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy

 

15,82 Gb Total Physical Memory | 12,13 Gb Available Physical Memory | 76,69% Memory free

16,80 Gb Paging File | 13,06 Gb Available in Paging File | 77,73% Paging File free

Paging file location(s): c:\pagefile.sys 1000 1000 [binary data]

 

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files (x86)

Drive C: | 98,35 Gb Total Space | 47,08 Gb Free Space | 47,87% Space Free | Partition Type: NTFS

Drive D: | 444,87 Gb Total Space | 363,00 Gb Free Space | 81,60% Space Free | Partition Type: NTFS

Drive E: | 1,46 Gb Total Space | 1,41 Gb Free Space | 96,32% Space Free | Partition Type: FAT

 

Computer Name: PETER | User Name: Peter | Logged in as Administrator.

Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans

Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

 
 ========== Extra Registry (SafeList) ==========

 

 
 ========== File Associations ==========

 
 64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]

.html[@ = htmlfile] -- Reg Error: Key error. File not found

.url[@ = InternetShortcut] -- C:\WINDOWS\SysNative\rundll32.exe (Microsoft Corporation)

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]

.cpl [@ = cplfile] -- C:\WINDOWS\SysWow64\control.exe (Microsoft Corporation)

.html [@ = htmlfile] -- Reg Error: Key error. File not found

 

[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]

.html [@ = FirefoxHTML] -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation)

 
 ========== Shell Spawning ==========

 
 64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]

batfile [open] -- "%1" %*

cmdfile [open] -- "%1" %*

comfile [open] -- "%1" %*

exefile [open] -- "%1" %*

helpfile [open] -- Reg Error: Key error.

htmlfile [edit] -- Reg Error: Key error.

htmlfile [open] -- Reg Error: Key error.

htmlfile [opennew] -- Reg Error: Key error.

htmlfile [print] -- "%systemroot%\system32\rundll32.exe" "%systemroot%\system32\mshtml.dll",PrintHTML "%1"

http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1

https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1

inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)

InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)

InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)

piffile [open] -- "%1" %*

regfile [merge] -- Reg Error: Key error.

scrfile [config] -- "%1"

scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l

scrfile [open] -- "%1" /S

txtfile [edit] -- Reg Error: Key error.

Unknown [openas] -- %SystemRoot%\system32\OpenWith.exe "%1" (Microsoft Corporation)

Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" (VideoLAN)

Directory [Bridge] -- C:\Program Files (x86)\Adobe\Adobe Bridge CS5.1\Bridge.exe "%L" (Adobe Systems, Inc.)

Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)

Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" (VideoLAN)

Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

Folder [explore] -- Reg Error: Value error.

Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

Applications\iexplore.exe [open] -- Reg Error: Key error.

CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- Reg Error: Key error.

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]

batfile [open] -- "%1" %*

cmdfile [open] -- "%1" %*

comfile [open] -- "%1" %*

cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)

exefile [open] -- "%1" %*

helpfile [open] -- Reg Error: Key error.

htmlfile [edit] -- Reg Error: Key error.

htmlfile [open] -- Reg Error: Key error.

htmlfile [opennew] -- Reg Error: Key error.

htmlfile [print] -- "%systemroot%\system32\rundll32.exe" "%systemroot%\system32\mshtml.dll",PrintHTML "%1"

http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1

https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1

inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)

piffile [open] -- "%1" %*

regfile [merge] -- Reg Error: Key error.

scrfile [config] -- "%1"

scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l

scrfile [open] -- "%1" /S

txtfile [edit] -- Reg Error: Key error.

Unknown [openas] -- %SystemRoot%\system32\OpenWith.exe "%1" (Microsoft Corporation)

Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" (VideoLAN)

Directory [Bridge] -- C:\Program Files (x86)\Adobe\Adobe Bridge CS5.1\Bridge.exe "%L" (Adobe Systems, Inc.)

Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)

Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" (VideoLAN)

Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

Folder [explore] -- Reg Error: Value error.

Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

Applications\iexplore.exe [open] -- Reg Error: Key error.

CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- Reg Error: Key error.

 
 ========== Security Center Settings ==========

 
 64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]

"cval" = 1

 
 64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

 
 64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]

"VistaSp1" = CE 37 E6 AF FF 6A CD 01  [binary data]

"AntiVirusOverride" = 0

"AntiSpywareOverride" = 0

"FirewallOverride" = 0

 
 64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]

 
 ========== Firewall Settings ==========

 

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]

"EnableFirewall" = 1

"DisableNotifications" = 0

 

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]

"EnableFirewall" = 1

"DisableNotifications" = 0

 

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]

"EnableFirewall" = 1

"DisableNotifications" = 0

 
 ========== Authorized Applications List ==========

 

 
 ========== Vista Active Open Ports Exception List ==========

 

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]

"{0B612613-158F-4291-B2BF-A73B3A60F08D}" = lport=2869 | protocol=6 | dir=in | app=system | 

"{0E4C5A50-3F06-4641-B2B7-2A7D935D7921}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe | 

"{1109A273-79E8-4C69-A91D-498130A2A39F}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe | 

"{37481086-BFAF-4241-B69F-141FC8E41212}" = lport=10243 | protocol=6 | dir=in | app=system | 

"{39773BA5-676D-413F-B2A6-5EFBFE1F2DBD}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe | 

"{3F57CD40-4B58-4AA8-8758-92057CA1F19B}" = lport=3702 | protocol=17 | dir=in | svc=fdrespub | app=%systemroot%\system32\svchost.exe | 

"{58881F36-698D-447C-91EE-3412AB4C6ABA}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe | 

"{5D2721B7-3E8D-4393-A20C-B37F7B92E6DF}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe | 

"{5DAA7845-30C9-4ECF-BF79-5249D6AD6C11}" = rport=3702 | protocol=17 | dir=out | svc=fdphost | app=%systemroot%\system32\svchost.exe | 

"{6332B0F9-DC69-40B9-AE5C-FD28C5ED1F9F}" = rport=3702 | protocol=17 | dir=out | svc=fdrespub | app=%systemroot%\system32\svchost.exe | 

"{7C14A2D8-D714-477C-B0BF-F514931F9A81}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe | 

"{86E36E10-DE97-4D8A-8864-3DFC2397E597}" = lport=3702 | protocol=17 | dir=in | app=%systemroot%\system32\dashost.exe | 

"{8AE87F79-92BB-4408-B7CF-4DDCFF142FFE}" = rport=2869 | protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe | 

"{A260B14A-EA0A-4F19-9343-0EA866B30F2E}" = lport=3702 | protocol=17 | dir=in | svc=fdphost | app=%systemroot%\system32\svchost.exe | 

"{BFD948DB-D012-4513-B267-0A74B73D7C82}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe | 

"{C6AE116B-3AFF-4FDF-AC01-5CDDF7EDD69F}" = rport=10243 | protocol=6 | dir=out | app=system | 

"{C8B42758-7B84-4ACE-8DCC-F9B1282A9583}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe | 

"{D32D08C5-5E2F-476B-AE82-9219221BB886}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe | 

"{F728D4DE-1A6A-429E-A54C-DC389E3BCB73}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe | 

 
 ========== Vista Active Application Exception List ==========

 

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]

"{00985F31-723C-4F66-81D7-93133224C44F}" = protocol=6 | dir=in | app=c:\program files (x86)\lenovo\system update\uncserver.exe | 

"{03D8A179-192A-4518-B8F9-F95C26E37D76}" = protocol=6 | dir=in | app=c:\program files (x86)\lenovo\system update\uncserver.exe | 

"{0469D5F0-C73F-49A3-B517-FB6EE3F37132}" = protocol=17 | dir=in | app=c:\program files (x86)\bonjour\mdnsresponder.exe | 

"{05D2EF30-3E1A-4128-9B70-AF80EF8D4872}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe | 

"{1171A85E-E06F-433D-8D4E-DED4C9958842}" = dir=out | name=@{microsoft.zunevideo_1.1.134.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunevideo/resources/33270} | 

"{124B708A-0716-4256-ABF1-A392139B3883}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe | 

"{1703DB90-2D49-4CDC-B7E6-EFE22F73A956}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\dota 2 beta\dota.exe | 

"{1BCE59F2-8617-4FB3-96D8-0F2993B901E5}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\dota 2 beta\dota.exe | 

"{26441EEC-3323-4857-A097-6B3CB2E5A695}" = dir=in | name=@{microsoft.windowsphotos_16.4.4388.928_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsphotos/photo/residappname} | 

"{2A0F5D03-1286-4C6B-8D7F-0B226F3FC0F9}" = dir=out | name=@{microsoft.bingnews_1.7.0.38_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingnews/resources/news} | 

"{2E52DA87-9FE0-4D94-A8B6-A8E52F8DCDF2}" = protocol=6 | dir=out | app=system | 

"{33BA7252-49E6-4F89-AE5B-9BB1142237D1}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steam.exe | 

"{39B657A7-CB29-4242-A78B-C3BC7DD791B3}" = dir=out | name=lenovo settings | 

"{39C67BF0-3CFF-4E29-A0FA-DBBA50B0A298}" = protocol=17 | dir=in | app=%programfiles(x86)%\windows media player\wmplayer.exe | 

"{3D5671B0-5130-4241-9145-68FE85AD7186}" = protocol=17 | dir=in | app=c:\program files (x86)\lenovo\system update\uncserver.exe | 

"{3E35E834-CF6C-45E2-AEA6-7546FC1337CD}" = dir=out | name=@{microsoft.zunemusic_1.1.144.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunemusic/resources/33273} | 

"{3ECFE42A-4762-4FB5-B1B7-AB2307A99EF8}" = dir=in | name=lenovo settings | 

"{4239510A-C645-48E8-8B6B-3CDEFF25D14D}" = dir=out | name=@{microsoft.windowsphotos_16.4.4388.928_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsphotos/photo/residappname} | 

"{4E7B2805-2AD1-4023-A346-7795CEAF3880}" = dir=out | name=dropbox | 

"{60245FF2-C579-42EC-91E8-D877CDAD0180}" = dir=out | name=lenovo support | 

"{614A80A3-AB22-47A3-AB21-C1592D119F51}" = dir=out | name=evernote | 

"{67042E56-9734-4B7B-AED5-C451FAF3BC8A}" = protocol=6 | dir=in | app=c:\users\peter\appdata\roaming\dropbox\bin\dropbox.exe | 

"{695A5445-7662-4231-BDBE-B944F1FE6F5C}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe | 

"{6DCF9495-1DE4-49B0-9729-28DDEAF24E24}" = protocol=17 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe | 

"{6FBFAF27-5E23-4F15-B846-DF58293C4DBD}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\dota 2 beta\dota.exe | 

"{730B73E9-E429-4784-AC2C-1A10C675EFC8}" = dir=out | name=@{browserchoice_6.2.0.0_neutral_neutral_cw5n1h2txyewy?ms-resource://browserchoice/resources/displayname} | 

"{76267BC0-8840-4055-897F-2B030EDECF15}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe | 

"{7824A3F0-97AA-42C3-92D3-1A6CFFC7EAFF}" = protocol=6 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe | 

"{7A03702F-FE77-41C9-AE91-9955D3084EAA}" = dir=in | name=@{microsoft.windowscommunicationsapps_16.4.4406.1205_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/resources/communicationspackagename} | 

"{7EAF0333-17F3-46D0-98E8-CC9C65DF291D}" = dir=in | app=c:\program files (x86)\itunes\itunes.exe | 

"{7F09F30C-1E7D-4FAA-A0E3-A7D7B67FA7E2}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe | 

"{808F1451-4108-46FD-ADBB-F17324B5F0BD}" = dir=out | name=@{c:\windows\winstore\resources.pri?ms-resource://winstore/resources/displayname} | 

"{81BEA66C-04BF-4327-AAB6-96C4857E934D}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe | 

"{865971D4-F2C2-4424-A396-C30ED3589D2E}" = dir=in | app=c:\program files\intel corporation\intel widi\widiapp.exe | 

"{887CA1DA-E733-460D-98FE-226D1C903EFE}" = dir=out | name=windows_ie_ac_001 | 

"{8941AF67-2956-4C3D-B613-7F70AC38E0C9}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe | 

"{8C0689BC-5FBC-48E9-91E9-33E9DFDC91EF}" = dir=out | name=@{microsoft.bingmaps_1.5.1.240_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingmaps/resources/appdisplayname} | 

"{93DCA297-50B3-4E1A-8FD7-7EDA32EB008D}" = dir=out | name=@{12199asparion.asparionclock_1.2.0.3_neutral__f89vgcf3qm37t?ms-resource://12199asparion.asparionclock/resources/spackagename} | 

"{94B11064-9F2F-404F-A781-3681AFE764E0}" = dir=out | name=google search | 

"{9559235A-18F8-448C-9FA7-00694CC484AF}" = protocol=17 | dir=in | app=c:\users\peter\appdata\roaming\dropbox\bin\dropbox.exe | 

"{97168D0B-B392-427D-BB90-13D210140C12}" = dir=out | name=@{microsoft.bingweather_1.7.0.26_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingweather/resources/apptitle} | 

"{A2978FAC-8EF7-47BA-ACD2-029E2EE9A6A5}" = protocol=17 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe | 

"{A9FCB3EE-5DC1-48F0-963B-54574976214D}" = dir=out | name=@{microsoft.windowscommunicationsapps_16.4.4406.1205_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/resources/communicationspackagename} | 

"{AA573F65-7377-47B9-A939-888224022BD6}" = dir=in | app=c:\program files (x86)\common files\apple\apple application support\webkit2webprocess.exe | 

"{AC174CE8-F460-47D2-BE0F-BDD7A9DB40A7}" = protocol=6 | dir=in | app=c:\program files (x86)\bonjour\mdnsresponder.exe | 

"{AC6D228E-C4E8-4ACD-B6F2-4B7D39C62E12}" = dir=out | name=lenovo settings | 

"{B36C98B1-481A-4014-9B2F-2BD36B0AC48D}" = dir=in | name=@{microsoft.reader_6.2.9200.20523_x64__8wekyb3d8bbwe?ms-resource://microsoft.reader/resources/shortdisplayname} | 

"{B476B212-4F6C-40E7-8193-23E9F6BBE25F}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe | 

"{C2284F77-C3A6-4160-B765-C41ADC6B720F}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe | 

"{C4385808-0272-4A74-93B0-622F0CF01C24}" = dir=in | name=evernote | 

"{D0C575F4-D540-43D4-B1FC-B038BF2358E4}" = dir=out | name=@{microsoft.reader_6.2.9200.20523_x64__8wekyb3d8bbwe?ms-resource://microsoft.reader/resources/shortdisplayname} | 

"{DFE1763B-E94D-4168-BDE0-18BB903CE3C7}" = dir=in | name=@{microsoft.skypeapp_1.3.0.112_x86__kzf8qxf38zg5c?ms-resource://microsoft.skypeapp/resources/manifest_display_name} | 

"{E01E5493-D97A-4463-9499-503693619171}" = dir=out | name=@{microsoft.xboxlivegames_1.1.134.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.xboxlivegames/resources/34150} | 

"{E1493F9D-3FBE-4419-AB4B-F96595D340DE}" = protocol=6 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe | 

"{E3D9A650-A3C3-4346-A3B9-E441F88A2B3B}" = dir=in | name=@{browserchoice_6.2.0.0_neutral_neutral_cw5n1h2txyewy?ms-resource://browserchoice/resources/displayname} | 

"{E44A6A6C-D309-40FC-BD59-2CF64643CE62}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe | 

"{E7051D14-A737-4B3F-95E5-696B05F07CD9}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe | 

"{E7985E1D-C36F-4787-80A8-6350D07E9266}" = dir=in | name=@{c:\windows\winstore\resources.pri?ms-resource://winstore/resources/displayname} | 

"{E9E8602B-1114-4CC4-A1C4-7EB27B0146BF}" = protocol=17 | dir=in | app=c:\program files (x86)\lenovo\system update\uncserver.exe | 

"{EBA64F5A-A507-482B-AA4D-42EFE742E1AB}" = dir=out | name=@{microsoft.skypeapp_1.3.0.112_x86__kzf8qxf38zg5c?ms-resource://microsoft.skypeapp/resources/manifest_display_name} | 

"{F358408F-709F-4252-BCD7-5D643A1CF0C0}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steam.exe | 

"{FEF751A1-ADE5-4DA2-99F7-B6305F81255E}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\dota 2 beta\dota.exe | 

"TCP Query User{534ED7AB-0057-48BD-A220-2C10C319CF15}C:\program files (x86)\intel\intelappstore\bin\ismagent.exe" = protocol=6 | dir=in | app=c:\program files (x86)\intel\intelappstore\bin\ismagent.exe | 

"TCP Query User{74579F1B-B081-49AE-B759-311CB3084A94}C:\users\peter\appdata\roaming\dropbox\bin\dropbox.exe" = protocol=6 | dir=in | app=c:\users\peter\appdata\roaming\dropbox\bin\dropbox.exe | 

"TCP Query User{AA7389DB-0E5B-4FC1-AA48-DBF01E6E696B}C:\program files (x86)\intel\intelappstore\bin\ismagent.exe" = protocol=6 | dir=in | app=c:\program files (x86)\intel\intelappstore\bin\ismagent.exe | 

"TCP Query User{E4E58E07-9D66-460C-A659-25CC3B8BFE9E}C:\program files (x86)\antichamber\binaries\win32\udk.exe" = protocol=6 | dir=in | app=c:\program files (x86)\antichamber\binaries\win32\udk.exe | 

"UDP Query User{985C17EB-90F0-4D71-BDC8-C3E291AF8270}C:\users\peter\appdata\roaming\dropbox\bin\dropbox.exe" = protocol=17 | dir=in | app=c:\users\peter\appdata\roaming\dropbox\bin\dropbox.exe | 

"UDP Query User{C69DC153-25BF-4FDE-A9ED-29EAA93529E5}C:\program files (x86)\intel\intelappstore\bin\ismagent.exe" = protocol=17 | dir=in | app=c:\program files (x86)\intel\intelappstore\bin\ismagent.exe | 

"UDP Query User{CC4A900B-9BEB-4DA2-A47D-8BF178F9406D}C:\program files (x86)\antichamber\binaries\win32\udk.exe" = protocol=17 | dir=in | app=c:\program files (x86)\antichamber\binaries\win32\udk.exe | 

"UDP Query User{E67FB382-8138-4277-A802-0DDF14618C4B}C:\program files (x86)\intel\intelappstore\bin\ismagent.exe" = protocol=17 | dir=in | app=c:\program files (x86)\intel\intelappstore\bin\ismagent.exe | 

 
 ========== HKEY_LOCAL_MACHINE Uninstall List ==========

 

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]

"{1D8E6291-B0D5-35EC-8441-6616F567A0F7}" = Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219

"{1E9FC118-651D-4934-97BE-E53CAE5C7D45}" = Microsoft_VC80_MFCLOC_x86_x64

"{26A24AE4-039D-4CA4-87B4-2F86417025FF}" = Java 7 Update 25 (64-bit)

"{2F72F540-1F60-4266-9506-952B21D6640D}" = Apple Mobile Device Support

"{3694BA2E-BE31-4B7E-886B-A0B559E69D4D}_is1" = Lenovo Settings Dependency Package

"{42603F7D-B08D-436B-B0D8-3E2DEF1AFD41}_is1" = Lenovo Settings Mobile Hotspot

"{4569AD91-47F4-4D9E-8FC9-717EC32D7AE1}" = Microsoft_VC80_CRT_x86_x64

"{46A84694-59EC-48F0-964C-7E76E9F8A2ED}" = ThinkVantage System für aktiven Festplattenschutz

"{49A09C2C-FFF4-478E-B397-5E0979F67F5D}" = Lenovo Patch Utility 64 bit

"{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148

"{54F2237F-018C-483B-8884-9FC0D88840C3}" = VC_CRT_x64

"{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161

"{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}" = Bonjour

"{76FF0F03-B707-4332-B5D1-A56C8303514E}" = iTunes

"{8557397C-A42D-486F-97B3-A2CBC2372593}" = Microsoft_VC90_ATL_x86_x64

"{88C6A6D9-324C-46E8-BA87-563D14021442}_is1" = Lenovo Settings - Camera Audio

"{90BF0360-A1DB-4599-A643-95AB90A52C1E}" = Microsoft_VC90_MFCLOC_x86_x64

"{925D058B-564A-443A-B4B2-7E90C6432E55}" = Microsoft_VC80_ATL_x86_x64

"{92A3CA0D-55CD-4C5D-BA95-5C2600C20F26}" = Microsoft_VC90_CRT_x86_x64

"{A472B9E4-0AFF-4F7B-B25D-F64F8E928AAB}" = Microsoft_VC90_MFC_x86_x64

"{C6D9ED03-6FCF-4410-9CB7-45CA285F9E11}" = ThinkPad Bluetooth with Enhanced Data Rate Software

"{C8C1BAD5-54E6-4146-AD07-3A8AD36569C3}" = Microsoft_VC80_MFC_x86_x64

"{D4F66BBA-D79E-4F11-9B06-70C3D75A2958}" = Adobe Photoshop Lightroom 3.6 64-bit

"{F58DA859-016E-492D-A588-317D9BB28002}" = ThinkVantage Fingerprint Software

"{FA00A3CC-7440-4938-A271-F186F50DD40D}" = Intel® Trusted Connect Service Client

"{FCF3ECF7-7AE0-4E26-B387-09A3A80B79CC}" = Intel(R) Network Connections 18.3.72.0

"97EE1802A0385A37DE6323FA39EC76BEB2D73E41" = Windows-Treiberpaket - Intel USB  (08/26/2011 9.3.0.1011)

"AAAEE77A6D9106120BBA5A7499E7EA33C5A65AB5" = Windows-Treiberpaket - Synaptics (SynTP) Mouse  (08/16/2012 16.2.10.5)

"ArchiCrypt Ultimate RAM-Disk 4_is1" = ArchiCrypt Ultimate RAM-Disk 4 Version 4.0.1.4254

"C57F9A2A0D8A43ADB5E8983DF3B6E4671E47D80D" = Windows-Treiberpaket - Synaptics (SmbDrv) System  (08/16/2012 16.2.10.5)

"DisableAMTPopup" = Disable AMT Profile Synchronization Pop-up for Windows XP/Vista/7/8

"E56A6B34B44A7A597FFEBE0E14D81095E0FD4D73" = Windows-Treiberpaket - Lenovo 1.66.00.07 (08/15/2012 1.66.00.07)

"LenovoAutoScrollUtility" = Lenovo Auto Scroll Utility

"OnScreenDisplay" = Anzeige am Bildschirm

"Power Management Driver" = Lenovo Power Management Driver

"PROSetDX" = Intel(R) Network Connections 18.3.72.0

"SynTPDeinstKey" = ThinkPad UltraNav Driver

"VLC media player" = VLC media player 2.0.7

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]

"{033E378E-6AD3-4AD5-BDEB-CBD69B31046C}" = Microsoft_VC90_ATL_x86

"{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam

"{08D2E121-7F6A-43EB-97FD-629B44903403}" = Microsoft_VC90_CRT_x86

"{0F3647F8-E51D-4FCC-8862-9A8D0C5ACF25}" = Microsoft_VC80_ATL_x86

"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148

"{2303AEEA-0FA8-4AFD-80A9-8F86BA4B44D2}" = OpenOffice.org 3.4.1

"{25C64847-B900-48AD-A164-1B4F9B774650}" = Lenovo System Update

"{26A24AE4-039D-4CA4-87B4-2F83217025FF}" = Java 7 Update 25

"{3521BDBD-D453-5D9F-AA55-44B75D214629}" = Adobe Community Help

"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater

"{5D09C772-ECB3-442B-9CC6-B4341C78FDC2}" = Apple Application Support

"{635FED5B-2C6D-49BE-87E6-7A6FCD22BC5A}" = Microsoft_VC90_MFC_x86

"{65153EA5-8B6E-43B6-857B-C6E4FC25798A}" = Intel(R) Management Engine Components

"{68D0E8C7-E4F8-424E-A6D6-97A06A323FFE}" = Mobile Broadband Drivers

"{69BCC264-0D43-469F-8434-31E738982E7B}" = Cisco AnyConnect Secure Mobility Client

"{70EE2BAA-F82A-4B8A-950E-649EFD64D5B9}" = ThinkVantage Password Manager

"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable

"{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update

"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable

"{92D58719-BBC1-4CC3-A08B-56C9E884CC2C}" = Microsoft_VC80_CRT_x86

"{94CAC2F1-C856-47F4-AF24-65A1E75AEDB9}" = MotoHelper MergeModules

"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17

"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161

"{A0087DDE-69D0-11E2-AD57-43CA6188709B}" = Adobe AIR

"{A78FE97A-C0C8-49CE-89D0-EDD524A17392}" = PDF Settings CS5

"{A802F1E3-34C8-4C84-9948-C1C4E37D0FA9}" = Lenovo QuickLaunch

"{AC76BA86-7AD7-1031-7B44-AB0000000001}" = Adobe Reader XI (11.0.03) - Deutsch

"{AF0CE7C0-A3E4-4D73-988B-B29187EC6E9A}" = QuickTime

"{B26438B4-BF51-49C3-9567-7F14A5E40CB9}" = Dolby Home Theater v4

"{B6D38690-755E-4F40-A35A-23F8BC2B86AC}" = Microsoft_VC90_MFCLOC_x86

"{C7CA731B-BF9A-46D9-92CF-8A8737AE9240}" = System Requirements Lab for Intel

"{CC0A85B2-734A-45B3-B678-05F6A6499AC7}" = Citavi 4

"{D1A19B02-817E-4296-A45B-07853FD74D57}" = Microsoft_VC80_MFC_x86

"{D57FC112-312E-4D70-860F-2DB8FB6858F0}" = Adobe Creative Suite 5.5 Master Collection

"{D92BBB52-82FF-42ED-8A3C-4E062F944AB7}" = Microsoft_VC80_MFCLOC_x86

"{E04FD66D-ADDD-48A0-B766-4111945C09D4}" = RAMDisk

"{E8F27ADF-B1ED-41AF-A7EF-D5E71778480C}" = Lenovo Patch Utility

"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219

"{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}" = Intel(R) Processor Graphics

"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver

"{F8754583-7893-4CD8-9E51-1A08F3D4C1A9}" = Integrated Camera Driver Installer Package Ver.1.0.0.19

"{fad118b4-798f-4755-9e67-a622eec95b62}" = Intel® PROSet/Wireless Software

"{FCB3772C-B7D0-4933-B1A9-3707EBACC573}" = Intel(R) SDK for OpenCL - CPU Only Runtime Package

"{FE041B02-234C-4AAA-9511-80DF6482A458}" = RICOH_Media_Driver_v2.24.18.01

"Adobe AIR" = Adobe AIR

"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin

"Avira AntiVir Desktop" = Avira Free Antivirus

"chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Adobe Community Help

"Cisco AnyConnect Secure Mobility Client" = Cisco AnyConnect Secure Mobility Client 

"DAEMON Tools Lite" = DAEMON Tools Lite

"Intel AppUp(SM) center 33057" = Intel AppUp(SM) center

"Lenovo Dependency Package_is1" = Lenovo Dependency Package

"Mozilla Firefox 22.0 (x86 de)" = Mozilla Firefox 22.0 (x86 de)

"Mozilla Thunderbird 17.0.7 (x86 de)" = Mozilla Thunderbird 17.0.7 (x86 de)

"MozillaMaintenanceService" = Mozilla Maintenance Service

"Personal Backup 5_is1" = Personal Backup 5.4

"Spyder3Pro" = Spyder3Pro

"Steam App 570" = Dota 2

"SugarSync" = SugarSync Manager

 
 ========== HKEY_CURRENT_USER Uninstall List ==========

 

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]

"Dropbox" = Dropbox

 
 ========== Last 20 Event Log Errors ==========

 

[ Application Events ]

Error - 07.07.2013 07:42:43 | Computer Name = Peter | Source = SideBySide | ID = 16842830

Description = Fehler beim Generieren des Aktivierungskontexts für "C:\Users\Peter\Desktop\esetsmartinstaller_enu.exe".

 Fehler in Manifest- oder Richtliniendatei "" in Zeile .  Eine für die Anwendung erforderliche

 Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.

In

 Konflikt stehende Komponenten:.  Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_418ab7ef718b27ef.manifest.

Komponente

 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_8937eec6860750f5.manifest.

 

Error - 07.07.2013 07:42:44 | Computer Name = Peter | Source = SideBySide | ID = 16842830

Description = Fehler beim Generieren des Aktivierungskontexts für "C:\Users\Peter\Desktop\esetsmartinstaller_enu.exe".

 Fehler in Manifest- oder Richtliniendatei "" in Zeile .  Eine für die Anwendung erforderliche

 Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.

In

 Konflikt stehende Komponenten:.  Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_418ab7ef718b27ef.manifest.

Komponente

 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_8937eec6860750f5.manifest.

 

Error - 07.07.2013 07:42:45 | Computer Name = Peter | Source = SideBySide | ID = 16842830

Description = Fehler beim Generieren des Aktivierungskontexts für "C:\Users\Peter\Desktop\esetsmartinstaller_enu.exe".

 Fehler in Manifest- oder Richtliniendatei "" in Zeile .  Eine für die Anwendung erforderliche

 Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.

In

 Konflikt stehende Komponenten:.  Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_418ab7ef718b27ef.manifest.

Komponente

 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_8937eec6860750f5.manifest.

 

Error - 07.07.2013 07:42:48 | Computer Name = Peter | Source = SideBySide | ID = 16842830

Description = Fehler beim Generieren des Aktivierungskontexts für "C:\Users\Peter\Desktop\esetsmartinstaller_enu.exe".

 Fehler in Manifest- oder Richtliniendatei "" in Zeile .  Eine für die Anwendung erforderliche

 Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.

In

 Konflikt stehende Komponenten:.  Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_418ab7ef718b27ef.manifest.

Komponente

 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_8937eec6860750f5.manifest.

 

Error - 07.07.2013 07:42:49 | Computer Name = Peter | Source = SideBySide | ID = 16842830

Description = Fehler beim Generieren des Aktivierungskontexts für "C:\Users\Peter\Desktop\esetsmartinstaller_enu.exe".

 Fehler in Manifest- oder Richtliniendatei "" in Zeile .  Eine für die Anwendung erforderliche

 Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.

In

 Konflikt stehende Komponenten:.  Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_418ab7ef718b27ef.manifest.

Komponente

 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_8937eec6860750f5.manifest.

 

Error - 07.07.2013 08:21:11 | Computer Name = Peter | Source = SideBySide | ID = 16842830

Description = Fehler beim Generieren des Aktivierungskontexts für "C:\Program Files

 (x86)\ESET\ESET Online Scanner\ESETSmartInstaller.exe". Fehler in Manifest- oder

 Richtliniendatei "" in Zeile .  Eine für die Anwendung erforderliche Komponentenversion

 steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.  In Konflikt

 stehende Komponenten:.  Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_418ab7ef718b27ef.manifest.

Komponente

 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_8937eec6860750f5.manifest.

 

Error - 07.07.2013 14:04:53 | Computer Name = Peter | Source = Microsoft-Windows-Immersive-Shell | ID = 5973

Description = Bei der Aktivierung der App „microsoft.windowscommunicationsapps_8wekyb3d8bbwe!Microsoft.WindowsLive.Mail“

 ist folgender Fehler aufgetreten: -2147467263. Weitere Informationen finden Sie

 im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.

 

Error - 07.07.2013 14:04:53 | Computer Name = Peter | Source = Microsoft-Windows-Immersive-Shell | ID = 5973

Description = Bei der Aktivierung der App „microsoft.windowscommunicationsapps_8wekyb3d8bbwe!Microsoft.WindowsLive.Mail“

 ist folgender Fehler aufgetreten: -2147467263. Weitere Informationen finden Sie

 im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.

 

Error - 08.07.2013 04:02:40 | Computer Name = Peter | Source = MsiInstaller | ID = 11316

Description = 

 

Error - 08.07.2013 04:02:40 | Computer Name = Peter | Source = MsiInstaller | ID = 11316

Description = 

 

[ Cisco AnyConnect Secure Mobility Client Events ]

Error - 08.07.2013 04:50:35 | Computer Name = Peter | Source = acvpnagent | ID = 67108865

Description = Function: CWinsecApiImpersonateUser::acquireTokens File: .\IPC\WinsecAPI.cpp

Line:

 93 CWinsecApiImpersonateUser::getUserImpersonationToken returned NULL

 

Error - 08.07.2013 04:50:35 | Computer Name = Peter | Source = acvpnagent | ID = 67108866

Description = Function: CWinsecApiImpersonateUser::CWinsecApiImpersonateUser File:

 .\IPC\WinsecAPI.cpp Line: 73 Invoked Function: CWinsecApiImpersonateUser::acquireTokens

Return

 Code: -32833517 (0xFE0B0013) Description: WINSECAPI_ERROR_GETUSERIMPERSONATIONTOKEN_FAILED
 

 

Error - 08.07.2013 04:50:35 | Computer Name = Peter | Source = acvpnagent | ID = 67108866

Description = Function: CCapiCertUtils::CCapiCertUtils File: .\Certificates\CapiCertUtils.cpp

Line:

 112 Invoked Function: CWinsecApiImpersonateUser::CWinsecApiImpersonateUser Return

 Code: -32833517 (0xFE0B0013) Description: WINSECAPI_ERROR_GETUSERIMPERSONATIONTOKEN_FAILED
 

 

Error - 08.07.2013 04:50:35 | Computer Name = Peter | Source = acvpnagent | ID = 67108866

Description = Function: CCapiCertStore::CCapiCertStore File: .\Certificates\CapiCertStore.cpp

Line:

 57 Invoked Function: CapiCertUtils Return Code: -32833517 (0xFE0B0013) Description:

 WINSECAPI_ERROR_GETUSERIMPERSONATIONTOKEN_FAILED 

 

Error - 08.07.2013 04:50:35 | Computer Name = Peter | Source = acvpnagent | ID = 67108866

Description = Function: CCapiCertSmartcardStore::CCapiCertSmartcardStore File: .\Certificates\CapiCertSmartcardStore.cpp

Line:

 39 Invoked Function: CCapiCertStore::CCapiCertStore Return Code: -32833517 (0xFE0B0013)

Description:

 WINSECAPI_ERROR_GETUSERIMPERSONATIONTOKEN_FAILED 

 

Error - 08.07.2013 04:50:35 | Computer Name = Peter | Source = acvpnagent | ID = 67108866

Description = Function: CCollectiveCertStore::addCapiSmartcardStore File: .\Certificates\CollectiveCertStore.cpp

Line:

 1612 Invoked Function: CCapiCertSmartcardStore::CCapiCertSmartcardStore Return Code:

 -32833517 (0xFE0B0013) Description: WINSECAPI_ERROR_GETUSERIMPERSONATIONTOKEN_FAILED
 

 

Error - 08.07.2013 04:51:06 | Computer Name = Peter | Source = acvpnagent | ID = 67108866

Description = Function: CThread::invokeRun File: .\Utility\Thread.cpp Line: 435 Invoked

 Function: IRunnable::Run Return Code: -32112629 (0xFE16000B) Description: BROWSERPROXY_ERROR_NO_PROXY_FILE
 

 

Error - 08.07.2013 04:55:22 | Computer Name = Peter | Source = acvpnagent | ID = 67108865

Description = Function: CServicePluginMgr::GetSettings File: .\ServicePluginMgr.cpp

Line:

 274 m_pIServicePlugin is NULL

 

Error - 08.07.2013 04:55:22 | Computer Name = Peter | Source = acvpnagent | ID = 67108865

Description = Function: CServicePluginMgr::GetSettings File: .\ServicePluginMgr.cpp

Line:

 274 m_pIServicePlugin is NULL

 

Error - 08.07.2013 04:55:22 | Computer Name = Peter | Source = acvpnagent | ID = 67108865

Description = Function: CTelemetryPluginMgr::GetSettings File: .\TelemetryPluginMgr.cpp

Line:

 311 m_pITelemetryPlugin is NULL

 

[ System Events ]

Error - 07.07.2013 06:37:18 | Computer Name = Peter | Source = Service Control Manager | ID = 7000

Description = Der Dienst "DgiVecp" wurde aufgrund folgenden Fehlers nicht gestartet:

   %%20

 

Error - 07.07.2013 14:12:09 | Computer Name = Peter | Source = Service Control Manager | ID = 7031

Description = Der Dienst "Cisco AnyConnect Secure Mobility Agent" wurde unerwartet

 beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden

 in 1000 Millisekunden durchgeführt: Neustart des Diensts.

 

Error - 07.07.2013 14:13:39 | Computer Name = Peter | Source = Service Control Manager | ID = 7000

Description = Der Dienst "DgiVecp" wurde aufgrund folgenden Fehlers nicht gestartet:

   %%20

 

Error - 07.07.2013 17:33:45 | Computer Name = Peter | Source = Service Control Manager | ID = 7000

Description = Der Dienst "DgiVecp" wurde aufgrund folgenden Fehlers nicht gestartet:

   %%20

 

Error - 08.07.2013 04:04:03 | Computer Name = Peter | Source = Service Control Manager | ID = 7000

Description = Der Dienst "DgiVecp" wurde aufgrund folgenden Fehlers nicht gestartet:

   %%20

 

Error - 08.07.2013 04:04:40 | Computer Name = Peter | Source = Service Control Manager | ID = 7011

Description = Das Zeitlimit (30000 ms) wurde beim Warten auf eine Transaktionsrückmeldung

 von Dienst Lenovo Settings Service erreicht.

 

Error - 08.07.2013 04:06:49 | Computer Name = Peter | Source = Service Control Manager | ID = 7011

Description = Das Zeitlimit (30000 ms) wurde beim Warten auf eine Transaktionsrückmeldung

 von Dienst Lenovo Settings Service erreicht.

 

Error - 08.07.2013 04:50:23 | Computer Name = Peter | Source = Service Control Manager | ID = 7000

Description = Der Dienst "DgiVecp" wurde aufgrund folgenden Fehlers nicht gestartet:

   %%20

 

Error - 08.07.2013 04:51:06 | Computer Name = Peter | Source = Service Control Manager | ID = 7011

Description = Das Zeitlimit (30000 ms) wurde beim Warten auf eine Transaktionsrückmeldung

 von Dienst Lenovo Settings Service erreicht.

 

 

< End of report >