System Care Antivirus beseitigen

schrauber · 22.06.2013, 13:05

AdwCleaner bitte löschen.

Downloade Dir bitte

AdwCleaner auf deinen Desktop.

Schließe alle offenen Programme und Browser. Bebilderte Anleitung zu AdwCleaner.
Starte die AdwCleaner.exe mit einem Doppelklick.
Stimme den Nutzungsbedingungen zu.
Klicke auf Optionen und vergewissere dich, dass die folgenden Punkte ausgewählt sind:
- "Tracing" Schlüssel löschen
- Winsock Einstellungen zurücksetzen
- Proxy Einstellungen zurücksetzen
- Internet Explorer Richtlinien zurücksetzen
- Chrome Richtlinien zurücksetzen
- Stelle sicher, dass alle 5 Optionen wie hier dargestellt, ausgewählt sind
Klicke auf Suchlauf und warte bis dieser abgeschlossen ist.
Klicke nun auf Löschen und bestätige auftretende Hinweise mit Ok.
Dein Rechner wird automatisch neu gestartet. Nach dem Neustart öffnet sich eine Textdatei. Poste mir deren Inhalt mit deiner nächsten Antwort.
Die Logdatei findest du auch unter C:\AdwCleaner\AdwCleaner[Cx].txt. (x = fortlaufende Nummer).

Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
Bitte lade Junkware Removal Tool auf Deinen Desktop

Starte das Tool mit Doppelklick. Ab Windows Vista (oder höher) bitte mit Rechtsklick "als Administrator ausführen" starten.
Drücke eine beliebige Taste, um das Tool zu starten.
Je nach System kann der Scan eine Weile dauern.
Wenn das Tool fertig ist wird das Logfile (JRT.txt) auf dem Desktop gespeichert und automatisch geöffnet.
Bitte poste den Inhalt der JRT.txt in Deiner nächsten Antwort.

ESET Online Scanner

Hier findest du eine bebilderte Anleitung zu ESET Online Scanner
Lade und starte Eset Online Scanner
Setze einen Haken bei Ja, ich bin mit den Nutzungsbedingungen einverstanden und klicke auf Starten.
Aktiviere die "Erkennung von eventuell unerwünschten Anwendungen" und wähle folgende Einstellungen.
Klicke auf Starten.
Die Signaturen werden heruntergeladen, der Scan beginnt automatisch.
Klicke am Ende des Suchlaufs auf Fertig stellen.
Schließe das Fenster von ESET.
Explorer öffnen.
C:\Programme\Eset\EsetOnlineScanner\log.txt (bei 64 Bit auch C:\Programme (x86)\Eset\EsetOnlineScanner\log.txt) suchen und mit Deinem Editor öffnen (bebildert).
Logfile hier posten.
Deinstallation: Systemsteuerung => Software / Programme deinstallieren => Eset Online Scanner V3 entfernen.
Manuell folgenden Ordner löschen und Papierkorb leeren => C:\Programme\Eset

Downloade Dir bitte

SecurityCheck und:

Speichere es auf dem Desktop.
Starte SecurityCheck.exe und folge den Anweisungen in der DOS-Box.
Wenn der Scan beendet wurde sollte sich ein Textdokument (checkup.txt) öffnen.

Poste den Inhalt bitte hier.

und ein frisches FRST Log bitte,dann sollten wir durch sein

bumpf · 23.06.2013, 12:44

Anbei die Logdatei des adwCleaner:AdwCleaner Logfile:

Code:

ATTFilter

# AdwCleaner v2.303 - Datei am 23/06/2013 um 13:31:08 erstellt
# Aktualisiert am 08/06/2013 von Xplode
# Betriebssystem : Windows Vista (TM) Home Premium Service Pack 2 (32 bits)
# Benutzer : Oli - TSITSIS-PC
# Bootmodus : Normal
# Ausgeführt unter : C:\Users\Oli\Desktop\adwcleaner.exe
# Option [Löschen]


**** [Dienste] ****


***** [Dateien / Ordner] *****


***** [Registrierungsdatenbank] *****


***** [Internet Browser] *****

-\\ Internet Explorer v9.0.8112.16490

[OK] Die Registrierungsdatenbank ist sauber.

*************************

AdwCleaner[S1].txt - [8292 octets] - [19/06/2013 00:33:39]
AdwCleaner[S2].txt - [633 octets] - [23/06/2013 13:31:08]

########## EOF - C:\AdwCleaner[S2].txt - [692 octets] ##########

--- --- ---

Anbei Inhalt der JRT-Datei:

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 4.9.4 (05.06.2013:1)
OS: Windows Vista (TM) Home Premium x86
Ran by Oli on 23.06.2013 at 13:46:52,33
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

~~~ Services

~~~ Registry Values

~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{A03ED460-C02F-432E-9342-F6FD4A58F8FE}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{D95DC870-3FB7-483B-9726-85C0FE205A6E}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{A03ED460-C02F-432E-9342-F6FD4A58F8FE}

~~~ Files

~~~ Folders

Successfully deleted: [Empty Folder] C:\Users\Oli\appdata\local\{22B47A58-C118-4B41-9E73-08653B18B842}
Successfully deleted: [Empty Folder] C:\Users\Oli\appdata\local\{C39D3058-CF3E-47CE-83C3-293E6910C2A4}

~~~ Event Viewer Logs were cleared

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 23.06.2013 at 13:48:27,56
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

schrauber · 23.06.2013, 16:21

Dann den Rest bitte

bumpf · 23.06.2013, 16:35

anbei die ESET-Logdatei:

ESETSmartInstaller@High as downloader log:
all ok
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.6920
# api_version=3.0.2
# EOSSerial=60d1ed1dfc24d144a7c15e80919cf0f5
# engine=14135
# end=finished
# remove_checked=false
# archives_checked=true
# unwanted_checked=false
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2013-06-23 03:27:39
# local_time=2013-06-23 05:27:39 (+0100, Mitteleuropäische Sommerzeit)
# country="Germany"
# lang=1033
# osver=6.0.6002 NT Service Pack 2
# compatibility_mode=1799 16775165 100 97 15139 237424549 7901 0
# compatibility_mode=5892 16776574 100 100 196043 209533987 0 0
# compatibility_mode=9217 16777214 0 4 61927524 61927524 0 0
# scanned=281634
# found=2
# cleaned=0
# scan_time=12554
sh=37174307090BAF615F99BE31B0F0A7779B789EF4 ft=0 fh=0000000000000000 vn="multiple threats" ac=I fn="C:\_OTL\MovedFiles.zip"
sh=63F148E5748266B2D087501E363EE5CCD26AE015 ft=1 fh=822626138d571f66 vn="a variant of Win32/Kryptik.BDQK trojan" ac=I fn="C:\_OTL\MovedFiles\06152013_144857\C_Users\Oli\AppData\Roaming\Saboy\ezhys.exe"

Beim Ausführen von SecurityCheck erscheint checkup-Editor mit folgendem Inhalt!!??:

UNSUPPORTED OPERATING SYSTEM! ABORTED!

anbei FRST-Log:
FRST Logfile:

FRST Logfile:

Code:

ATTFilter

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 22-06-2013
Ran by Oli (administrator) on 23-06-2013 17:43:04
Running from C:\Users\Oli\Desktop
Microsoft® Windows Vista™ Home Premium  Service Pack 2 (X86) OS Language: German Standard
Internet Explorer Version 9
Boot Mode: Normal

==================== Processes (Whitelisted) ===================

(Microsoft Corporation) C:\Windows\system32\SLsvc.exe
(SurfRight B.V.) C:\Program Files\HitmanPro\hmpsched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\sched.exe
(Lenovo Group Limited) C:\Windows\system32\IPSSVC.EXE
(Lenovo) C:\Program Files\ThinkPad\ConnectUtilities\AcPrfMgrSvc.exe
(Agere Systems) C:\Windows\system32\agrsmsvc.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avguard.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Microsoft Corporation) C:\Program Files\Microsoft Small Business\Business Contact Manager\BcmSqlStartupSvc.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Lenovo.) C:\Program Files\LENOVO\HOTKEY\FNF5SVC.exe
(Lenovo) C:\Program Files\Lenovo\PM Driver\PMSveH.exe
() C:\Windows\system32\PSIService.exe
() C:\Program Files\CyberLink\Shared Files\RichVideo.exe
(Soluto) C:\Program Files\Soluto\SolutoService.exe
(Microsoft Corporation) c:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe
(Microsoft Corporation) c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(Lenovo Group Limited) C:\Program Files\Common Files\Lenovo\tvt_reg_monitor_svc.exe
(Lenovo Group Limited) C:\Program Files\LENOVO\HOTKEY\TPHKSVC.exe
(Lenovo) C:\Program Files\Lenovo\Client Security Solution\tvttcsd.exe
() C:\Program Files\Lenovo\Rescue and Recovery\rrpservice.exe
(Lenovo Group Limited) c:\Program Files\Common Files\Lenovo\Scheduler\tvtsched.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
(Lenovo) C:\Program Files\ThinkPad\ConnectUtilities\AcSvc.exe
(Pure Networks, Inc.) C:\Program Files\Pure Networks\Network Magic\nmsrvc.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\System Update\SUService.exe
(Lenovo) C:\Program Files\ThinkPad\ConnectUtilities\SvcGuiHlpr.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
(Soluto) C:\Program Files\Soluto\soluto.exe
(Microsoft Corporation) C:\Windows\system32\conime.exe
(Intel Corporation) C:\Windows\system32\igfxsrvc.exe
(Synaptics, Inc.) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Microsoft Corporation) C:\Program Files\Windows Media Player\wmpnscfg.exe
(Lenovo) C:\Program Files\Lenovo\PM Driver\PMHandler.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\TpWAudAp.exe
(Lenovo Group Limited) C:\Program Files\Common Files\Lenovo\Scheduler\scheduler_proxy.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\LenovoCare\LPMGR.EXE
(Lenovo Group Limited) C:\Program Files\Lenovo\AwayTask\AwaySch.EXE
(Corel, Inc.) C:\Program Files\Corel\Corel Snapfire Plus\Corel Photo Downloader.exe
(Cyberlink Corp.) C:\Program Files\Lenovo Multimedia Center\PowerDVD\PDVDServ.exe
(Pure Networks, Inc.) C:\Program Files\Pure Networks\Network Magic\nmapp.exe
(Lenovo) C:\Program Files\ThinkPad\ConnectUtilities\ACTray.exe
(Lenovo) C:\Program Files\ThinkPad\ConnectUtilities\ACWLIcon.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\Client Security Solution\cssauth.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
(Haufe-Lexware GmbH & Co. KG) C:\Program Files\Common Files\Lexware\Update Manager\LxUpdateManager.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(Broadcom Corporation.) C:\Program Files\Lenovo\Bluetooth Software\BTTray.exe
(OpenOffice.org) C:\Program Files\OpenOffice.org 3\program\soffice.exe
(OpenOffice.org) C:\Program Files\OpenOffice.org 3\program\soffice.bin
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Broadcom Corporation.) C:\Program Files\Lenovo\Bluetooth Software\BtStackServer.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\Client Security Solution\password_manager.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\Rescue and Recovery\rrservice.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Microsoft Corporation) C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Avira Operations GmbH & Co. KG) C:\program files\avira\antivir desktop\ipmGui.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [815104 2006-10-23] (Synaptics, Inc.)
HKLM\...\Run: [PMHandler] C:\PROGRA~1\Lenovo\PMDRIV~1\PMHandler.exe [34352 2007-06-05] (Lenovo)
HKLM\...\Run: [TPWAUDAP] C:\Program Files\Lenovo\HOTKEY\TpWAudAp.exe [54560 2008-03-11] (Lenovo Group Limited)
HKLM\...\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe [178712 2008-05-07] (Intel Corporation)
HKLM\...\Run: [TVT Scheduler Proxy] C:\Program Files\Common Files\Lenovo\Scheduler\scheduler_proxy.exe [487424 2008-06-06] (Lenovo Group Limited)
HKLM\...\Run: [LPManager] C:\PROGRA~1\Lenovo\LENOVO~2\LPMGR.exe [120368 2007-04-26] (Lenovo Group Limited)
HKLM\...\Run: [DiskeeperSystray] "C:\Program Files\Diskeeper Corporation\Diskeeper\DkIcon.exe" [217176 2006-11-15] (Diskeeper Corporation)
HKLM\...\Run: [AwaySch] C:\Program Files\Lenovo\AwayTask\AwaySch.EXE [91688 2006-11-07] (Lenovo Group Limited)
HKLM\...\Run: [Corel Photo Downloader] C:\Program Files\Corel\Corel Snapfire Plus\Corel Photo Downloader.exe [478800 2006-12-14] (Corel, Inc.)
HKLM\...\Run: [RemoteControl] "C:\Program Files\Lenovo Multimedia Center\PowerDVD\PDVDServ.exe" [56928 2006-11-23] (Cyberlink Corp.)
HKLM\...\Run: [LanguageShortcut] "C:\Program Files\Lenovo Multimedia Center\PowerDVD\Language\Language.exe" [54832 2006-12-05] ()
HKLM\...\Run: [nmapp] "C:\Program Files\Pure Networks\Network Magic\nmapp.exe" -autorun -nosplash [321088 2007-03-14] (Pure Networks, Inc.)
HKLM\...\Run: [ACTray] C:\Program Files\ThinkPad\ConnectUtilities\ACTray.exe [431392 2008-10-27] (Lenovo)
HKLM\...\Run: [ACWLIcon] C:\Program Files\ThinkPad\ConnectUtilities\ACWlIcon.exe [148768 2008-10-27] (Lenovo)
HKLM\...\Run: [cssauth] "C:\Program Files\Lenovo\Client Security Solution\cssauth.exe" silent [2872632 2007-11-29] (Lenovo Group Limited)
HKLM\...\Run: [Skytel] Skytel.exe [x]
HKLM\...\Run: [APSDaemon] "C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe" [59720 2013-04-21] (Apple Inc.)
HKLM\...\Run: [BCSSync] "C:\Program Files\Microsoft Office\Office14\BCSSync.exe" /DelayServices [91520 2010-03-13] (Microsoft Corporation)
HKLM\...\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min [345312 2013-05-07] (Avira Operations GmbH & Co. KG)
HKLM\...\Run: [LexwareInfoService] C:\Program Files\Common Files\Lexware\Update Manager\LxUpdateManager.exe /autostart [189808 2011-07-31] (Haufe-Lexware GmbH & Co. KG)
HKLM\...\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime [421888 2013-05-01] (Apple Inc.)
HKLM\...\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe" [152392 2013-05-31] (Apple Inc.)
HKLM\...\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [958576 2013-04-04] (Adobe Systems Incorporated)
HKLM\...\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe" [253816 2013-03-12] (Oracle Corporation)
HKLM\...\Winlogon: [Userinit] C:\Windows\system32\userinit.exe,C:\Program Files\Soluto\soluto.exe /userinit [1161248 2012-09-11] (Soluto)
HKCU\...\Policies\system: [DisableRegistryTools] 0
HKCU\...\Policies\system: [DisableTaskMgr] 0
Startup: C:\ProgramData\Start Menu\Programs\Startup\BTTray.lnk
ShortcutTarget: BTTray.lnk -> C:\Program Files\Lenovo\Bluetooth Software\BTTray.exe (Broadcom Corporation.)
Startup: C:\ProgramData\Start Menu\Programs\Startup\LenovoRegistration.lnk
ShortcutTarget: LenovoRegistration.lnk -> C:\SWTOOLS\LenovoWelcome\LenovoRegistration.cmd ()
Startup: C:\Users\Oli\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.0.lnk
ShortcutTarget: OpenOffice.org 3.0.lnk -> C:\Program Files\OpenOffice.org 3\program\quickstart.exe ()

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Google
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Sign In
SearchScopes: HKCU - {39878658-3752-4733-BB04-5F9C10238C2B} URL = hxxp://go.web.de/tb/ie_searchplugin/?su={searchTerms}
SearchScopes: HKCU - {3B5949CE-17C6-4019-8D6C-909A620E2BC1} URL = hxxp://go.1und1.de/tb/ie_searchplugin/?su={searchTerms}
SearchScopes: HKCU - {65850DB7-5761-4F85-8ECE-3BB23CB0AAE3} URL = hxxp://go.web.de/suchbox/ebay?query={searchTerms}
SearchScopes: HKCU - {A5BEED6C-FE8D-4955-B794-A47999048803} URL = hxxp://search.gmx.com/web?q={searchTerms}&origin=tb_splugin_ie
SearchScopes: HKCU - {AFBA95A4-CF86-49DC-A67D-4E207B28DA29} URL = hxxp://go.1und1.de/suchbox/amazon?tag=1und1icon-21&field-keywords={searchTerms}
SearchScopes: HKCU - {C45A5A1F-F6E8-4B8D-892C-55093C78D74D} URL = hxxp://go.gmx.net/tb/ie_searchplugin/?su={searchTerms}
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files\Windows Live\Companion\companioncore.dll (Microsoft Corporation)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO: IePasswordManagerHelper Class - {BF468356-BB7E-42D7-9F15-4F3B9BCFCED2} - C:\Program Files\Lenovo\Client Security Solution\tvtpwm_ie_com.dll (Lenovo Group Limited)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - Lenovo ThinkVantage Toolbox - {86B9B5DD-FB75-4035-BD52-3C94F7849CAF} - C:\Program Files\PC-Doctor\ATLPcdToolbar544936.dll (PC-Doctor, Inc.)
Toolbar: HKCU -No Name - {C424171E-592A-415A-9EB1-DFD6D95D3530} -  No File
Toolbar: HKCU -No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} -  No File
DPF: {4871A87A-BFDD-4106-8153-FFDE2BAC2967} hxxp://dlm.tools.akamai.com/dlmanager/versions/activex/dlm-activex-2.2.6.2.cab
DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} hxxp://fpdownload.macromedia.com/get/flashplayer/current/polarbear/ultrashim.cab
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
Handler: haufereader - No CLSID Value - 
Handler: pure-go - {4746C79A-2042-4332-8650-48966E44ABA8} - C:\Program Files\Common Files\Pure Networks Shared\puresp3.dll (Pure Networks, Inc.)
Winsock: Catalog5 08 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1

========================== Services (Whitelisted) =================

R2 AntiVirSchedulerService; C:\Program Files\Avira\AntiVir Desktop\sched.exe [86752 2013-04-01] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [110816 2013-04-01] (Avira Operations GmbH & Co. KG)
S3 Diskeeper; C:\Program Files\Diskeeper Corporation\Diskeeper\DkService.exe [634988 2006-11-15] (Diskeeper Corporation)
R2 FNF5SVC; C:\Program Files\LENOVO\HOTKEY\FNF5SVC.exe [54560 2008-03-14] (Lenovo.)
R2 HitmanProScheduler; C:\Program Files\HitmanPro\hmpsched.exe [106280 2013-06-19] (SurfRight B.V.)
R2 IPSSVC; C:\Windows\system32\IPSSVC.EXE [108080 2007-01-30] (Lenovo Group Limited)
S3 MSSQL$MSSMLBIZ; c:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe [29293408 2010-12-10] (Microsoft Corporation)
S3 nmraapache; C:\Program Files\Pure Networks\Network Magic\WebServer\bin\nmraapache.exe [12800 2007-03-14] (Pure Networks, Inc.)
R2 nmservice; C:\Program Files\Pure Networks\Network Magic\nmsrvc.exe [321088 2007-03-14] (Pure Networks, Inc.)
R2 PMSveH; C:\Program Files\Lenovo\PM Driver\PMSveH.exe [57344 2007-03-16] (Lenovo)
R2 ProtexisLicensing; C:\Windows\system32\PSIService.exe [174656 2006-11-02] ()
R2 RichVideo; C:\Program Files\CyberLink\Shared Files\RichVideo.exe [272024 2006-12-20] ()
R2 SolutoService; C:\Program Files\Soluto\SolutoService.exe [603664 2012-09-11] (Soluto)
R2 SUService; C:\Program Files\Lenovo\System Update\SUService.exe [28672 2011-07-25] (Lenovo Group Limited)
S2 SystemStoreService; C:\Program Files\SoftwareUpdater\SystemStore.exe [296448 2013-05-02] ()
R2 TSSCoreService; C:\Program Files\Lenovo\Client Security Solution\tvttcsd.exe [779576 2007-11-29] (Lenovo)
R2 TVT Backup Protection Service; C:\Program Files\Lenovo\Rescue and Recovery\rrpservice.exe [520192 2008-06-06] ()
R2 TVT Scheduler; c:\Program Files\Common Files\Lenovo\Scheduler\tvtsched.exe [1155072 2008-06-06] (Lenovo Group Limited)

==================== Drivers (Whitelisted) ====================

R3 ATSWPDRV; C:\Windows\System32\DRIVERS\ATSwpDrv.sys [146824 2007-06-16] (AuthenTec, Inc.)
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [84744 2013-04-01] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [135136 2013-04-01] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [37352 2013-04-01] (Avira Operations GmbH & Co. KG)
R0 LPCFilter; C:\Windows\System32\DRIVERS\LPCFilter.sys [19456 2006-11-09] (COMPAL ELECTRONIC INC.)
R2 PROCDD; C:\Windows\System32\DRIVERS\PROCDD.SYS [12080 2006-11-06] (Lenovo Group Limited)
R0 Soluto; C:\Windows\System32\DRIVERS\Soluto.sys [51144 2012-09-11] (Soluto LTD.)
R1 ssmdrv; C:\Windows\System32\DRIVERS\ssmdrv.sys [28520 2012-08-27] (Avira GmbH)
S3 catchme; \??\C:\ComboFix\catchme.sys [x]
R3 cpuz135; \??\C:\Windows\TEMP\cpuz135\cpuz135_x32.sys [x]
S3 IpInIp; system32\DRIVERS\ipinip.sys [x]
S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [x]
S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [x]
S3 Vsdatant; system32\DRIVERS\vsdatant.sys [x]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-06-23 17:42 - 2013-06-23 17:42 - 01369655 ____A (Farbar) C:\Users\Oli\Desktop\FRST.exe
2013-06-23 17:37 - 2013-06-23 17:37 - 00890839 ____A C:\Users\Oli\Desktop\SecurityCheck.exe
2013-06-23 13:48 - 2013-06-23 13:48 - 00001280 ____A C:\Users\Oli\Desktop\JRT.txt
2013-06-23 13:46 - 2013-06-23 13:46 - 00545954 ____A (Oleg N. Scherbakov) C:\Users\Oli\Desktop\JRT.exe
2013-06-23 13:46 - 2013-06-23 13:46 - 00000000 ____D C:\Windows\ERUNT
2013-06-23 13:46 - 2013-06-23 13:46 - 00000000 ____D C:\JRT
2013-06-23 13:31 - 2013-06-23 13:31 - 00000760 ____A C:\AdwCleaner[S2].txt
2013-06-23 13:29 - 2013-06-23 13:29 - 00648201 ____A C:\Users\Oli\Desktop\adwcleaner.exe
2013-06-21 14:26 - 2013-06-21 14:26 - 00000000 ____D C:\FRST
2013-06-21 12:31 - 2013-06-21 12:31 - 00000000 ____A C:\Windows\setuperr.log
2013-06-21 12:31 - 2013-06-21 12:31 - 00000000 ____A C:\Windows\setupact.log
2013-06-21 11:57 - 2013-06-21 11:57 - 00003472 ____A C:\Windows\PFRO.log
2013-06-19 22:53 - 2013-06-19 22:53 - 00012872 ____A (SurfRight B.V.) C:\Windows\System32\bootdelete.exe
2013-06-19 11:48 - 2013-06-19 11:48 - 00001754 ____A C:\Users\Public\Desktop\HitmanPro.lnk
2013-06-19 11:48 - 2013-06-19 11:48 - 00000000 ____D C:\Program Files\HitmanPro
2013-06-19 11:45 - 2013-06-19 22:53 - 00000000 ____D C:\ProgramData\HitmanPro
2013-06-19 11:45 - 2013-06-19 11:45 - 09171472 ____A (SurfRight B.V.) C:\Users\Oli\Desktop\HitmanPro.exe
2013-06-19 00:33 - 2013-06-19 00:33 - 00008292 ____A C:\AdwCleaner[S1].txt
2013-06-19 00:14 - 2013-06-19 00:13 - 00263592 ____A (Oracle Corporation) C:\Windows\System32\javaws.exe
2013-06-19 00:14 - 2013-06-19 00:13 - 00175016 ____A (Oracle Corporation) C:\Windows\System32\javaw.exe
2013-06-19 00:14 - 2013-06-19 00:13 - 00175016 ____A (Oracle Corporation) C:\Windows\System32\java.exe
2013-06-19 00:14 - 2013-06-19 00:13 - 00094632 ____A (Oracle Corporation) C:\Windows\System32\WindowsAccessBridge.dll
2013-06-19 00:00 - 2013-06-19 00:00 - 00001902 ____A C:\Users\Public\Desktop\Adobe Reader X.lnk
2013-06-18 23:53 - 2013-06-23 17:39 - 00000884 ____A C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-06-18 23:53 - 2013-06-18 23:53 - 00692104 ____A (Adobe Systems Incorporated) C:\Windows\System32\FlashPlayerApp.exe
2013-06-18 23:53 - 2013-06-18 23:53 - 00071048 ____A (Adobe Systems Incorporated) C:\Windows\System32\FlashPlayerCPLApp.cpl
2013-06-15 20:36 - 2013-06-15 20:36 - 10285040 ____A (Malwarebytes Corporation                                    ) C:\Users\Oli\Desktop\mbam-setup-1.75.0.1300.exe
2013-06-15 20:03 - 2013-06-15 20:03 - 00000000 ____D C:\Windows\E89498D814304A2BA76A4A71326981E9.TMP
2013-06-15 17:24 - 2013-06-15 17:24 - 00020966 ____A C:\ComboFix.txt
2013-06-15 15:48 - 2013-06-15 17:24 - 00000000 ____D C:\ComboFix
2013-06-15 15:48 - 2011-06-26 08:45 - 00256000 ____A C:\Windows\PEV.exe
2013-06-15 15:48 - 2010-11-07 19:20 - 00208896 ____A C:\Windows\MBR.exe
2013-06-15 15:48 - 2009-04-20 06:56 - 00060416 ____A (NirSoft) C:\Windows\NIRCMD.exe
2013-06-15 15:48 - 2000-08-31 02:00 - 00518144 ____A (SteelWerX) C:\Windows\SWREG.exe
2013-06-15 15:48 - 2000-08-31 02:00 - 00406528 ____A (SteelWerX) C:\Windows\SWSC.exe
2013-06-15 15:48 - 2000-08-31 02:00 - 00098816 ____A C:\Windows\sed.exe
2013-06-15 15:48 - 2000-08-31 02:00 - 00080412 ____A C:\Windows\grep.exe
2013-06-15 15:48 - 2000-08-31 02:00 - 00068096 ____A C:\Windows\zip.exe
2013-06-15 15:47 - 2013-06-15 17:24 - 00000000 ____D C:\Qoobox
2013-06-15 15:47 - 2013-06-15 17:19 - 00000000 ____D C:\Windows\erdnt
2013-06-15 15:46 - 2013-06-15 15:47 - 05080197 ____R (Swearware) C:\Users\Oli\Desktop\ComboFix.exe
2013-06-15 15:21 - 2013-06-15 15:21 - 02237968 ____A (Kaspersky Lab ZAO) C:\Users\Oli\Desktop\tdsskiller.exe
2013-06-15 14:48 - 2013-06-15 15:07 - 00000000 ____D C:\_OTL
2013-06-15 13:42 - 2013-06-15 13:42 - 00000000 ____A C:\Users\Oli\defogger_reenable
2013-06-15 13:41 - 2013-06-15 13:41 - 00050477 ____A C:\Users\Oli\Desktop\Defogger.exe
2013-06-14 14:11 - 2013-06-14 14:11 - 00602112 ____A (OldTimer Tools) C:\Users\Oli\Desktop\OTL.exe
2013-06-14 13:13 - 2013-06-14 13:13 - 00000000 ____D C:\Program Files\Enigma Software Group
2013-06-14 13:13 - 2013-06-14 13:13 - 00000000 ____D C:\Program Files\Common Files\Wise Installation Wizard
2013-06-13 11:51 - 2013-05-17 00:39 - 01800704 ____A (Microsoft Corporation) C:\Windows\System32\jscript9.dll
2013-06-13 11:51 - 2013-05-17 00:28 - 01129472 ____A (Microsoft Corporation) C:\Windows\System32\wininet.dll
2013-06-13 11:51 - 2013-05-17 00:26 - 00231936 ____A (Microsoft Corporation) C:\Windows\System32\url.dll
2013-06-13 11:51 - 2013-05-17 00:23 - 00065024 ____A (Microsoft Corporation) C:\Windows\System32\jsproxy.dll
2013-06-13 11:51 - 2013-05-17 00:21 - 00717824 ____A (Microsoft Corporation) C:\Windows\System32\jscript.dll
2013-06-13 11:51 - 2013-05-17 00:21 - 00142848 ____A (Microsoft Corporation) C:\Windows\System32\ieUnatt.exe
2013-06-13 11:51 - 2013-05-17 00:20 - 00420864 ____A (Microsoft Corporation) C:\Windows\System32\vbscript.dll
2013-06-13 11:51 - 2013-05-17 00:19 - 00607744 ____A (Microsoft Corporation) C:\Windows\System32\msfeeds.dll
2013-06-13 11:51 - 2013-05-17 00:17 - 01796096 ____A (Microsoft Corporation) C:\Windows\System32\iertutil.dll
2013-06-13 11:51 - 2013-05-17 00:17 - 00073216 ____A (Microsoft Corporation) C:\Windows\System32\mshtmled.dll
2013-06-13 11:51 - 2013-05-17 00:16 - 02382848 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.tlb
2013-06-13 11:51 - 2013-05-17 00:12 - 00176640 ____A (Microsoft Corporation) C:\Windows\System32\ieui.dll
2013-06-13 11:50 - 2013-05-17 01:08 - 12329984 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.dll
2013-06-13 11:50 - 2013-05-17 00:49 - 09738752 ____A (Microsoft Corporation) C:\Windows\System32\ieframe.dll
2013-06-13 11:50 - 2013-05-17 00:28 - 01104384 ____A (Microsoft Corporation) C:\Windows\System32\urlmon.dll
2013-06-13 11:50 - 2013-05-17 00:27 - 01427968 ____A (Microsoft Corporation) C:\Windows\System32\inetcpl.cpl
2013-06-12 13:38 - 2013-06-12 13:38 - 00008790 ____A C:\Users\Oli\Documents\cc_20130612_133805.reg
2013-06-12 13:37 - 2013-06-12 13:37 - 00016178 ____A C:\Users\Oli\Documents\cc_20130612_133728.reg
2013-06-12 12:49 - 2013-05-08 06:37 - 00905576 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\tcpip.sys
2013-06-12 12:49 - 2013-05-03 00:03 - 03603832 ____A (Microsoft Corporation) C:\Windows\System32\ntkrnlpa.exe
2013-06-12 12:49 - 2013-05-03 00:03 - 03551096 ____A (Microsoft Corporation) C:\Windows\System32\ntoskrnl.exe
2013-06-12 12:49 - 2013-05-02 06:04 - 00443904 ____A (Microsoft Corporation) C:\Windows\System32\win32spl.dll
2013-06-12 12:49 - 2013-05-02 06:03 - 00037376 ____A (Microsoft Corporation) C:\Windows\System32\printcom.dll
2013-06-12 12:49 - 2013-04-24 06:00 - 00985600 ____A (Microsoft Corporation) C:\Windows\System32\crypt32.dll
2013-06-12 12:49 - 2013-04-24 06:00 - 00133120 ____A (Microsoft Corporation) C:\Windows\System32\cryptsvc.dll
2013-06-12 12:49 - 2013-04-24 06:00 - 00098304 ____A (Microsoft Corporation) C:\Windows\System32\cryptnet.dll
2013-06-12 12:49 - 2013-04-24 06:00 - 00041984 ____A (Microsoft Corporation) C:\Windows\System32\certenc.dll
2013-06-12 12:49 - 2013-04-24 03:46 - 00812544 ____A (Microsoft Corporation) C:\Windows\System32\certutil.exe
2013-06-12 12:49 - 2013-04-17 14:30 - 00024576 ____A (Microsoft Corporation) C:\Windows\System32\cryptdlg.dll
2013-06-10 14:22 - 2013-06-10 14:22 - 00001674 ____A C:\Users\Public\Desktop\iTunes.lnk
2013-06-10 14:21 - 2013-06-10 14:21 - 00000000 ____D C:\ProgramData\188F1432-103A-4ffb-80F1-36B633C5C9E1
2013-06-04 17:32 - 2013-06-04 17:32 - 00269890 ____A C:\Users\Oli\Documents\Hotel Xapala 08-2013.xps
2013-05-28 15:26 - 2013-06-20 21:16 - 00351450 ____A C:\Users\Oli\Documents\QuickSteuer_2012_Dasi.zip
2013-05-27 14:28 - 2013-05-27 14:28 - 00001736 ____A C:\Users\Public\Desktop\QuickTime Player.lnk

==================== One Month Modified Files and Folders ========

2013-06-23 17:42 - 2013-06-23 17:42 - 01369655 ____A (Farbar) C:\Users\Oli\Desktop\FRST.exe
2013-06-23 17:39 - 2013-06-18 23:53 - 00000884 ____A C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-06-23 17:37 - 2013-06-23 17:37 - 00890839 ____A C:\Users\Oli\Desktop\SecurityCheck.exe
2013-06-23 17:32 - 2006-11-02 14:47 - 00003616 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
2013-06-23 17:32 - 2006-11-02 14:47 - 00003616 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
2013-06-23 13:48 - 2013-06-23 13:48 - 00001280 ____A C:\Users\Oli\Desktop\JRT.txt
2013-06-23 13:46 - 2013-06-23 13:46 - 00545954 ____A (Oleg N. Scherbakov) C:\Users\Oli\Desktop\JRT.exe
2013-06-23 13:46 - 2013-06-23 13:46 - 00000000 ____D C:\Windows\ERUNT
2013-06-23 13:46 - 2013-06-23 13:46 - 00000000 ____D C:\JRT
2013-06-23 13:38 - 2008-08-16 08:26 - 01263651 ____A C:\Windows\WindowsUpdate.log
2013-06-23 13:33 - 2012-03-04 18:27 - 00000438 ____A C:\Windows\System32\Drivers\etc\hosts.ics
2013-06-23 13:33 - 2007-08-16 12:28 - 00025311 ____A C:\Windows\System32\PROCDB.INI
2013-06-23 13:33 - 2007-08-16 12:28 - 00000380 ____A C:\Windows\System32\IPSCtrl.INI
2013-06-23 13:33 - 2006-11-02 15:01 - 00000006 ___AH C:\Windows\Tasks\SA.DAT
2013-06-23 13:31 - 2013-06-23 13:31 - 00000760 ____A C:\AdwCleaner[S2].txt
2013-06-23 13:31 - 2008-08-16 08:27 - 00000012 ____A C:\Windows\bthservsdp.dat
2013-06-23 13:31 - 2006-11-02 15:01 - 00032538 ____A C:\Windows\Tasks\SCHEDLGU.TXT
2013-06-23 13:29 - 2013-06-23 13:29 - 00648201 ____A C:\Users\Oli\Desktop\adwcleaner.exe
2013-06-21 14:26 - 2013-06-21 14:26 - 00000000 ____D C:\FRST
2013-06-21 12:31 - 2013-06-21 12:31 - 00000000 ____A C:\Windows\setuperr.log
2013-06-21 12:31 - 2013-06-21 12:31 - 00000000 ____A C:\Windows\setupact.log
2013-06-21 11:57 - 2013-06-21 11:57 - 00003472 ____A C:\Windows\PFRO.log
2013-06-20 21:16 - 2013-05-28 15:26 - 00351450 ____A C:\Users\Oli\Documents\QuickSteuer_2012_Dasi.zip
2013-06-19 22:53 - 2013-06-19 22:53 - 00012872 ____A (SurfRight B.V.) C:\Windows\System32\bootdelete.exe
2013-06-19 22:53 - 2013-06-19 11:45 - 00000000 ____D C:\ProgramData\HitmanPro
2013-06-19 12:05 - 2008-08-16 09:10 - 00000000 ____D C:\Program Files\Google
2013-06-19 12:00 - 2008-12-14 23:44 - 00000000 ____D C:\Users\Oli\AppData\Local\Google
2013-06-19 11:48 - 2013-06-19 11:48 - 00001754 ____A C:\Users\Public\Desktop\HitmanPro.lnk
2013-06-19 11:48 - 2013-06-19 11:48 - 00000000 ____D C:\Program Files\HitmanPro
2013-06-19 11:45 - 2013-06-19 11:45 - 09171472 ____A (SurfRight B.V.) C:\Users\Oli\Desktop\HitmanPro.exe
2013-06-19 11:43 - 2008-12-14 23:33 - 00000000 ____D C:\ProgramData\Google
2013-06-19 00:33 - 2013-06-19 00:33 - 00008292 ____A C:\AdwCleaner[S1].txt
2013-06-19 00:13 - 2013-06-19 00:14 - 00263592 ____A (Oracle Corporation) C:\Windows\System32\javaws.exe
2013-06-19 00:13 - 2013-06-19 00:14 - 00175016 ____A (Oracle Corporation) C:\Windows\System32\javaw.exe
2013-06-19 00:13 - 2013-06-19 00:14 - 00175016 ____A (Oracle Corporation) C:\Windows\System32\java.exe
2013-06-19 00:13 - 2013-06-19 00:14 - 00094632 ____A (Oracle Corporation) C:\Windows\System32\WindowsAccessBridge.dll
2013-06-19 00:13 - 2012-08-01 10:19 - 00867240 ____A (Oracle Corporation) C:\Windows\System32\npdeployJava1.dll
2013-06-19 00:13 - 2012-01-16 16:17 - 00789416 ____A (Oracle Corporation) C:\Windows\System32\deployJava1.dll
2013-06-19 00:13 - 2008-08-16 08:59 - 00000000 ____D C:\Program Files\Java
2013-06-19 00:05 - 2008-08-16 08:48 - 00000000 ____D C:\ProgramData\Adobe
2013-06-19 00:02 - 2008-12-14 15:47 - 00000000 ____D C:\Users\Oli\AppData\Roaming\Adobe
2013-06-19 00:01 - 2008-12-21 19:07 - 00000000 ____D C:\Users\Oli\AppData\Local\Adobe
2013-06-19 00:00 - 2013-06-19 00:00 - 00001902 ____A C:\Users\Public\Desktop\Adobe Reader X.lnk
2013-06-19 00:00 - 2008-12-21 19:15 - 00000000 ____D C:\Program Files\Adobe
2013-06-19 00:00 - 2008-08-16 08:48 - 00000000 ____D C:\Program Files\Common Files\Adobe
2013-06-18 23:53 - 2013-06-18 23:53 - 00692104 ____A (Adobe Systems Incorporated) C:\Windows\System32\FlashPlayerApp.exe
2013-06-18 23:53 - 2013-06-18 23:53 - 00071048 ____A (Adobe Systems Incorporated) C:\Windows\System32\FlashPlayerCPLApp.cpl
2013-06-18 23:21 - 2009-12-27 23:29 - 00000000 ____D C:\Users\Oli\AppData\Roaming\Internet-Radio Player
2013-06-15 20:36 - 2013-06-15 20:36 - 10285040 ____A (Malwarebytes Corporation                                    ) C:\Users\Oli\Desktop\mbam-setup-1.75.0.1300.exe
2013-06-15 20:03 - 2013-06-15 20:03 - 00000000 ____D C:\Windows\E89498D814304A2BA76A4A71326981E9.TMP
2013-06-15 17:24 - 2013-06-15 17:24 - 00020966 ____A C:\ComboFix.txt
2013-06-15 17:24 - 2013-06-15 15:48 - 00000000 ____D C:\ComboFix
2013-06-15 17:24 - 2013-06-15 15:47 - 00000000 ____D C:\Qoobox
2013-06-15 17:24 - 2006-11-02 13:18 - 00000000 __RHD C:\users\Default
2013-06-15 17:24 - 2006-11-02 13:18 - 00000000 ___RD C:\users\Public
2013-06-15 17:19 - 2013-06-15 15:47 - 00000000 ____D C:\Windows\erdnt
2013-06-15 17:13 - 2006-11-02 12:23 - 00000215 ____A C:\Windows\system.ini
2013-06-15 16:02 - 2006-11-02 12:22 - 62652416 ____A C:\Windows\System32\config\software.bak
2013-06-15 16:02 - 2006-11-02 12:22 - 36175872 ____A C:\Windows\System32\config\COMPON~1.bak
2013-06-15 16:02 - 2006-11-02 12:22 - 21233664 ____A C:\Windows\System32\config\system.bak
2013-06-15 16:02 - 2006-11-02 12:22 - 00262144 ____A C:\Windows\System32\config\default.bak
2013-06-15 16:02 - 2006-11-02 12:22 - 00061440 ____A C:\Windows\System32\config\sam.bak
2013-06-15 16:02 - 2006-11-02 12:22 - 00020480 ____A C:\Windows\System32\config\security.bak
2013-06-15 15:47 - 2013-06-15 15:46 - 05080197 ____R (Swearware) C:\Users\Oli\Desktop\ComboFix.exe
2013-06-15 15:21 - 2013-06-15 15:21 - 02237968 ____A (Kaspersky Lab ZAO) C:\Users\Oli\Desktop\tdsskiller.exe
2013-06-15 15:07 - 2013-06-15 14:48 - 00000000 ____D C:\_OTL
2013-06-15 14:25 - 2012-12-21 02:03 - 00000000 ____D C:\Users\Oli\AppData\Local\DoNotTrackPlus
2013-06-15 13:42 - 2013-06-15 13:42 - 00000000 ____A C:\Users\Oli\defogger_reenable
2013-06-15 13:42 - 2008-12-14 15:40 - 00000000 ____D C:\users\Oli
2013-06-15 13:41 - 2013-06-15 13:41 - 00050477 ____A C:\Users\Oli\Desktop\Defogger.exe
2013-06-14 14:11 - 2013-06-14 14:11 - 00602112 ____A (OldTimer Tools) C:\Users\Oli\Desktop\OTL.exe
2013-06-14 13:13 - 2013-06-14 13:13 - 00000000 ____D C:\Program Files\Enigma Software Group
2013-06-14 13:13 - 2013-06-14 13:13 - 00000000 ____D C:\Program Files\Common Files\Wise Installation Wizard
2013-06-13 12:18 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\rescache
2013-06-13 11:56 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\System32\de-DE
2013-06-13 11:46 - 2006-11-02 12:24 - 73381792 ____A (Microsoft Corporation) C:\Windows\System32\mrt.exe
2013-06-12 13:38 - 2013-06-12 13:38 - 00008790 ____A C:\Users\Oli\Documents\cc_20130612_133805.reg
2013-06-12 13:37 - 2013-06-12 13:37 - 00016178 ____A C:\Users\Oli\Documents\cc_20130612_133728.reg
2013-06-10 14:22 - 2013-06-10 14:22 - 00001674 ____A C:\Users\Public\Desktop\iTunes.lnk
2013-06-10 14:21 - 2013-06-10 14:21 - 00000000 ____D C:\ProgramData\188F1432-103A-4ffb-80F1-36B633C5C9E1
2013-06-10 14:21 - 2010-06-18 23:16 - 00000000 ____D C:\Program Files\iTunes
2013-06-10 14:21 - 2010-06-18 23:16 - 00000000 ____D C:\Program Files\iPod
2013-06-08 16:28 - 2009-03-13 11:49 - 00000393 ____A C:\Users\Public\Documents\BluetoothLog.html
2013-06-04 17:32 - 2013-06-04 17:32 - 00269890 ____A C:\Users\Oli\Documents\Hotel Xapala 08-2013.xps
2013-05-27 18:50 - 2012-10-04 20:37 - 00000000 ____D C:\ProgramData\DesktopIcons
2013-05-27 14:29 - 2010-04-01 20:12 - 00000000 ____D C:\Program Files\QuickTime
2013-05-27 14:28 - 2013-05-27 14:28 - 00001736 ____A C:\Users\Public\Desktop\QuickTime Player.lnk
2013-05-27 14:07 - 2009-03-11 01:18 - 00000000 ____A C:\Users\Public\Documents\AcSvc.dmp

==================== Bamital & volsnap Check =================

C:\Windows\explorer.exe => MD5 is legit
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2013-06-23 14:16

==================== End Of Log ============================

--- --- ---

--- --- ---

und die Addition.exe:FRST Additions Logfile:

Code:

ATTFilter

Additional scan result of Farbar Recovery Scan Tool (x86) Version: 22-06-2013
Ran by Oli at 2013-06-23 17:43:23
Running from C:\Users\Oli\Desktop
Boot Mode: Normal
==========================================================


==================== Installed Programs =======================

Access Help (Version: 2.00)
Activation Assistant for the 2007 Microsoft Office suites (Version: 1.0)
Adobe Flash Player 11 ActiveX (Version: 11.7.700.224)
Adobe Reader X (10.1.7) - Deutsch (Version: 10.1.7)
Agere Systems HDA Modem
Anzeige am Bildschirm (Version: 5.32.00)
Apple Application Support (Version: 2.3.4)
Apple Mobile Device Support (Version: 6.1.0.13)
Apple Software Update (Version: 2.1.3.127)
Avira Free Antivirus (Version: 13.0.0.3640)
Bonjour (Version: 3.0.0.10)
Broadcom Gigabit Integrated Controller (Version: 10.15.06)
Business Contact Manager für Outlook 2007 SP2 (Version: 3.0.8619.1)
CCleaner (Version: 2.27)
Client Security - Password Manager (Version: 8.10.0006.00)
Corel Snapfire Plus (Version: 1.10.0000)
D3DX10 (Version: 15.4.2368.0902)
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition
Diskeeper Home (Version: 9.0.545)
EPSON-Drucker-Software
Ergänzung zu Lenovo Care (Version: 2.00)
Haufe iDesk-Service (Version: 8.08.20.5622)
Help Center (Version: 2.00c)
HitmanPro 3.7 (Version: 3.7.6.201)
iCloud (Version: 2.1.2.8)
Integrated Camera (Version: 5.8.8.012)
Intel(R) Graphics Media Accelerator Driver
Intel(R) TV Wizard
Intel® Matrix Storage Manager
Internet Explorer (Enable DEP)
iTunes (Version: 11.0.4.4)
Java 7 Update 25 (Version: 7.0.250)
Java Auto Updater (Version: 2.1.9.5)
JNLP
Junk Mail filter update (Version: 15.4.3502.0922)
Lenovo Bluetooth with Enhanced Data Rate Software 6.0.1.4900 (Version: 6.0.1.4900)
Lenovo Care (Version: 2.10)
Lenovo Fingerprint Software (Version: 1.1.0.21)
Lenovo Multimedia Center
Lenovo PM Driver (Version: 0.63.1.6)
Lenovo Registration
Lenovo System Interface Driver (Version: 1.01)
Lenovo ThinkVantage Toolbox (Version: 6.0.5449.37)
Lexware Info Service (Version: 2.90.00.0009)
Maintenance Manager (Version: 3.0.5.0)
Mesh Runtime (Version: 15.4.5722.2)
Message Center (Version: 2.01b)
Message Center Plus (Version: 2.0.0012.00)
Messenger Companion (Version: 15.4.3502.0922)
Microsoft .NET Framework 3.5 Language Pack SP1 - DEU
Microsoft .NET Framework 3.5 Language Pack SP1 - deu (Version: 3.5.30729)
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Client Profile DEU Language Pack (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6012.5000)
Microsoft Fix it Center (Version: 1.0.0100)
Microsoft Office 2003 Web Components (Version: 11.0.8003.0)
Microsoft Office 2007 Primary Interop Assemblies (Version: 12.0.4518.1014)
Microsoft Office 2010 Service Pack 1 (SP1)
Microsoft Office File Validation Add-In (Version: 14.0.5130.5003)
Microsoft Office Live Add-in 1.5 (Version: 2.0.4024.1)
Microsoft Office Outlook 2010 (Version: 14.0.6029.1000)
Microsoft Office Outlook Connector (Version: 14.0.5118.5000)
Microsoft Office Outlook MUI (German) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (French) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (German) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (Italian) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proofing (German) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared MUI (German) 2010 (Version: 14.0.6029.1000)
Microsoft Office Small Business Connectivity Components (Version: 2.0.7024.0)
Microsoft Outlook 2010 (Version: 14.0.6029.1000)
Microsoft Silverlight (Version: 5.1.20125.0)
Microsoft SQL Server 2005
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft SQL Server 2005 Express Edition (MSSMLBIZ) (Version: 9.4.5000.00)
Microsoft SQL Server Native Client (Version: 9.00.5000.00)
Microsoft SQL Server VSS Writer (Version: 9.00.5000.00)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Mozilla Maintenance Service (Version: 17.0.6)
Mozilla Thunderbird 17.0.6 (x86 de) (Version: 17.0.6)
MSVCRT (Version: 15.4.2862.0708)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
NAVIGON Fresh 3.3.1 (Version: 3.3.1)
Network Magic (Version: 4.1.7082.0)
OpenOffice.org 3.4.1 (Version: 3.41.9593)
PM Driver (Version: 0.63.1.6)
Power Ux Customization (Version: 1.00.0000)
Präsentationsdirektor (Version: 4.08)
QuickSteuer 2009 SE (Version: 15.00.00.0033)
QuickSteuer 2010 SE (Version: 16.14.00.0001)
QuickSteuer 2011 (Version: 17.08.00.0006)
QuickSteuer 2012 (Version: 18.09.00.0003)
QuickSteuer 2013 (Version: 19.06.00.0003)
QuickSteuer Wissens-Center 2009 (Version: 15.0.1.0)
QuickTime (Version: 7.74.80.86)
Realtek High Definition Audio Driver (Version: 6.0.1.5391)
Registry patch for Windows Vista USB S3 PM Enablement (Version: 1.00)
Rescue and Recovery (Version: 4.21.0015.00)
RICOH R5C83x/84x Flash Media Controller Driver Ver.3.33 (Version: 3.33.01)
Segoe UI (Version: 15.4.2271.0615)
Servicepack Datumsaktualisierung (Version: 1.00.00.0005)
Soluto (Version: 1.3.979.0)
Steuer Update 15.09 (Version: 15.09)
Synaptics Pointing Device Driver (Version: 9.0.3.0)
System Migration Assistant (Version: 6.00.0009)
System Update (Version: 3.15.0017)
ThinkVantage Access Connections (Version: 5.12)
ThinkVantage Technologies Welcome Message (Version: 1.21)
TuneUp Utilities Language Pack (de-DE) (Version: 12.0.3600.73)
Unterstützungsdateien für das Microsoft SQL Server-Setup (Englisch) (Version: 9.00.5000.00)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft Office 2010 (KB2553181) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553267) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553270) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553310) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553378) 32-Bit Edition
Update for Microsoft Office 2010 (KB2566458)
Update for Microsoft Office 2010 (KB2596964) 32-Bit Edition
Update for Microsoft Office 2010 (KB2598242) 32-Bit Edition
Update for Microsoft Office 2010 (KB2687503) 32-Bit Edition
Update for Microsoft Office 2010 (KB2687509) 32-Bit Edition
Update for Microsoft Office 2010 (KB2760631) 32-Bit Edition
Update for Microsoft Office 2010 (KB2767886) 32-Bit Edition
Update for Microsoft Outlook 2010 (KB2597090) 32-Bit Edition
Update for Microsoft Outlook 2010 (KB2687623) 32-Bit Edition
Update for Microsoft Outlook Social Connector 2010 (KB2553406) 32-Bit Edition
Wallpapers
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Family Safety (Version: 15.4.3502.0922)
Windows Live Fotogalerie (Version: 15.4.3502.0922)
Windows Live ID Sign-in Assistant (Version: 7.250.4225.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Mail (Version: 15.4.3502.0922)
Windows Live Mesh (Version: 15.4.3502.0922)
Windows Live Mesh ActiveX control for remote connections (Version: 15.4.5722.2)
Windows Live Messenger Companion Core (Version: 15.4.3502.0922)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Movie Maker (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live Photo Gallery (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3508.1109)
Windows Live Remote Client (Version: 15.4.5722.2)
Windows Live Remote Client Resources (Version: 15.4.5722.2)
Windows Live Remote Service (Version: 15.4.5722.2)
Windows Live Remote Service Resources (Version: 15.4.5722.2)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109)
Windows Live Writer (Version: 15.4.3502.0922)
Windows Live Writer Resources (Version: 15.4.3502.0922)
WordPerfect Office X3
WordPerfect Office X3 (Version: 13.2)

==================== Restore Points  =========================

12-06-2013 12:59:02 Windows Defender Checkpoint
13-06-2013 09:35:17 Windows Update
14-06-2013 10:13:23 Geplanter Prüfpunkt
14-06-2013 11:13:17 Installed SpyHunter
15-06-2013 16:42:04 Geplanter Prüfpunkt
15-06-2013 18:02:28 Removed SpyHunter
16-06-2013 10:59:21 Geplanter Prüfpunkt
17-06-2013 09:20:04 Geplanter Prüfpunkt
18-06-2013 08:43:37 Geplanter Prüfpunkt
18-06-2013 08:49:58 Windows Update
18-06-2013 21:10:53 Adobe Reader 8.1.5 - Deutsch wird entfernt
18-06-2013 21:12:56 Removed Avira SearchFree Toolbar plus Web Protection.
18-06-2013 21:17:37 Free System Utilities
18-06-2013 21:21:47 Removed Java(TM) 6 Update 39
18-06-2013 21:27:19 TuneUp Utilities 2013 wird entfernt
18-06-2013 21:28:23 TuneUp Utilities Language Pack (de-DE) wird entfernt
18-06-2013 22:13:10 Installed Java 7 Update 25
19-06-2013 10:25:08 Geplanter Prüfpunkt
21-06-2013 08:58:59 Windows Update
22-06-2013 12:52:04 Geplanter Prüfpunkt

==================== Scheduled Tasks (whitelisted) =============

Task: {13DCB811-D5D8-447B-91EA-F5A3AB23F525} - System32\Tasks\Microsoft\Windows\RestartManager\{9CD0896D-49CF-4f85-81B1-9765CB892130} => C:\Windows\system32\rmclient.exe [2006-11-02] (Microsoft Corporation)
Task: {1CC81347-6204-4B83-900C-01E02F50F067} - System32\Tasks\Microsoft\Windows\MobilePC\TMM
Task: {285A0F88-CDA8-42A1-8FE9-4EF79BB83E60} - System32\Tasks\Software Updater Ui => C:\Program Files\SoftwareUpdater\SoftwareUpdater.Ui.exe [2013-06-10] ()
Task: {2CD41F58-8409-4ACB-981A-449FDA05738E} - System32\Tasks\Lexware-Online-Aktualisierungsprogramm => C:\Program Files\Common Files\Lexware\Update Manager\LxUpdateManager.exe [2011-07-31] (Haufe-Lexware GmbH & Co. KG)
Task: {320124A7-D70F-41DE-A9D1-D5E8E19D5D91} - System32\Tasks\Microsoft\Windows\NetworkAccessProtection\NAPStatus UI
Task: {3BCDF251-CA5C-4045-A1FC-8FCEF9FBDC93} - System32\Tasks\Microsoft\Windows\Shell\CrawlStartPages
Task: {44980BEE-7809-44A9-AC24-D6E578A3B7DF} - System32\Tasks\Microsoft\Windows\RAC\RACAgent => C:\Windows\system32\RacAgent.exe [2008-01-21] (Microsoft Corporation)
Task: {552B8153-2C6B-48C7-9369-02F0BF78D20D} - System32\Tasks\Freemium1ClickMaint => C:\Users\Oli\Desktop\1Click.exe No File
Task: {5BD5E023-6AE5-413A-AD48-BA3A7AD65FEA} - System32\Tasks\User_Feed_Synchronization-{103B65BD-4798-4CA0-9487-EB211B637804} => C:\Windows\system32\msfeedssync.exe [2011-05-13] (Microsoft Corporation)
Task: {62300999-FD0E-4C05-9760-4AC872837C5D} - \Auf Updates für Windows Live Toolbar prüfen No Task File
Task: {66AF1AEE-334C-426A-BB60-1DF5D9299CB8} - System32\Tasks\Message Center plus => C:\Program Files\LENOVO\Message Center Plus\MCPLaunch.exe [2009-05-27] ()
Task: {6B9D80E7-1E65-4342-8633-82F900252741} - System32\Tasks\Microsoft\Windows Defender\MP Scheduled Scan => c:\program files\windows defender\MpCmdRun.exe [2008-01-21] (Microsoft Corporation)
Task: {914E5D7F-5FCB-405C-9757-FE742BA82212} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {927C0E4E-55C6-4D83-BEB1-174683FC8706} - System32\Tasks\Software Updater => C:\Program Files\SoftwareUpdater\SoftwareUpdater.Bootstrapper.exe [2013-06-09] ()
Task: {A4A51BD4-1C92-43BC-B631-C07063A6DC36} - System32\Tasks\CreateChoiceProcessTask => C:\Windows\System32\browserchoice.exe [2010-02-12] (Microsoft Corporation)
Task: {A5A54CFB-BA06-4CAB-A3FC-812932BEC84D} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2013-06-18] (Adobe Systems Incorporated)
Task: {A61555D3-7840-45C1-A5A9-0D49851DE37A} - System32\Tasks\Microsoft\Windows\Customer Experience Improvement Program\OptinNotification => C:\Windows\System32\wsqmcons.exe [2008-01-21] (Microsoft Corporation)
Task: {A728AE6B-5AB8-4223-AD3E-E6341441A01C} - \Microsoft\Windows\PLA\System\ConvertLogEntries No Task File
Task: {B5CB9C0A-E549-4A2A-AFF1-54B78F025725} - System32\Tasks\Java Update Scheduler => C:\Program Files\Common Files\Java\Java Update\jusched.exe [2013-03-12] (Oracle Corporation)
Task: {B6C30682-4B2C-4A1F-B105-1F2A9F6599B4} - System32\Tasks\Microsoft\Windows\MUI\Lpksetup => C:\Windows\System32\lpksetup.exe [2008-01-21] (Microsoft Corporation)
Task: {B984145E-0E45-4AFB-B8B2-7F4F1CED93A9} - System32\Tasks\Sun Microsystems-Online-Aktualisierungsprogramm => C:\Program Files\Java\jre6\bin\jusched.exe No File
Task: {C0472EA8-BAAC-4740-9F5A-C25B58B4F60E} - System32\Tasks\Microsoft\Windows Defender\MP Scheduled Signature Update => c:\program files\windows defender\MpCmdRun.exe [2008-01-21] (Microsoft Corporation)
Task: {C7B7FD5B-9D2F-426D-9CEB-A6729261784B} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task
Task: {DD76EA65-AA07-47D9-88AE-542E29B1E27C} - System32\Tasks\WPD\SqmUpload_S-1-5-21-3876124531-570904608-61060185-1003 => C:\Windows\system32\rundll32.exe [2006-11-02] (Microsoft Corporation)
Task: {E489F5F4-50F5-4912-8789-F13606FEDF8B} - System32\Tasks\Microsoft\Windows\Tcpip\WSHReset => C:\Windows\system32\schtasks.exe [2008-01-21] (Microsoft Corporation)
Task: {E5150B95-F9B4-4D5D-95A2-7EC1ACBA95F8} - System32\Tasks\Microsoft\Windows\Wireless\GatherWirelessInfo => C:\Windows\system32\gatherWirelessInfo.vbs [2008-01-21] ()

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (06/23/2013 02:08:09 PM) (Source: VSS) (User: )
Description: Volumeschattenkopie-Dienstfehler: Unerwarteter Fehler "CreateFileW(\\?\GLOBALROOT\Device\HarddiskVolumeShadowCopy30,0xc0000000,0x00000003,...)". hr = 0x80070005.

Error: (06/23/2013 02:07:20 PM) (Source: VSS) (User: )
Description: Volumeschattenkopie-Dienstfehler: Unerwarteter Fehler "CreateFileW(\\?\GLOBALROOT\Device\HarddiskVolumeShadowCopy30,0xc0000000,0x00000003,...)". hr = 0x80070005.


System errors:
=============

Microsoft Office Sessions:
=========================
Error: (06/23/2013 02:08:09 PM) (Source: VSS)(User: )
Description: CreateFileW(\\?\GLOBALROOT\Device\HarddiskVolumeShadowCopy30,0xc0000000,0x00000003,...)0x80070005

Error: (06/23/2013 02:07:20 PM) (Source: VSS)(User: )
Description: CreateFileW(\\?\GLOBALROOT\Device\HarddiskVolumeShadowCopy30,0xc0000000,0x00000003,...)0x80070005


CodeIntegrity Errors:
===================================
  Date: 2013-06-23 17:43:09.481
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\Soluto.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2013-06-23 17:43:09.263
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\Soluto.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2013-06-23 17:43:09.044
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\Soluto.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2013-06-23 17:43:08.826
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\Soluto.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2013-06-22 13:44:04.325
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\Soluto.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2013-06-22 13:44:04.122
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\Soluto.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2013-06-22 13:44:03.919
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\Soluto.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2013-06-22 13:44:03.717
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\Soluto.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2013-06-22 13:40:56.054
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\Soluto.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2013-06-22 13:40:55.820
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\Soluto.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.


==================== Memory info =========================== 

Percentage of memory in use: 54%
Total physical RAM: 3061.69 MB
Available physical RAM: 1401.72 MB
Total Pagefile: 6339.78 MB
Available Pagefile: 4527.74 MB
Total Virtual: 2047.88 MB
Available Virtual: 1914.47 MB

==================== Drives ================================

Drive c: (SW_Preload) (Fixed) (Total:227.4 GB) (Free:18.83 GB) NTFS ==>[Drive with boot components (obtained from BCD)]

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or Vista) (Size: 233 GB) (Disk ID: 69EEC121)
Partition 1: (Not Active) - (Size=5 GB) - (Type=27)
Partition 2: (Active) - (Size=227 GB) - (Type=07 NTFS)

==================== End Of Log ============================

--- --- ---

schrauber · 23.06.2013, 20:27

Noch Probleme?

bumpf · 23.06.2013, 21:31

- ESET hatte zwei Funde ausgewiesen, sind diese bereinigt?
- Programm SecutityCheck hat nicht funktioniert!?
- Bei jedem Neustart des PC erfolgt noch immer der Hinweis dass das nicht identifizierbare Programm "SoftwareUpdater.Ui.exe" auf den Computer zugreifen möchte!
- Das Programm Soluto meldet nach jedem Neustart des PC "maintenance crashes - No solution yet" --> kann "Maintenance" deinstalliert oder repariert werden?
- folgende Programme sind durch den Bereinigungsprozess noch auf dem Desktop:
- HitmanPro
- adwCleaner
- ComboFix
- Defogger
- FRST
- JRT
- Malewarebytes
- OTL
- SecurityCeck
- tdsskiller
--> soll ich sämtliche Programme löschen?

schrauber · 24.06.2013, 07:26

Zitat:

ESET hatte zwei Funde ausgewiesen, sind diese bereinigt?

Die sind schon bei OTL in Quarantäne. Entfernen wir mit unseren Tools.

Scan mit SystemLook

Lade SystemLook von jpshortstuff vom folgenden Spiegel herunter und speichere das Tool auf dem Desktop:
SystemLook (32 bit)

Doppelklicke auf die SystemLook.exe, um das Tool zu starten.
Kopiere den Inhalt der folgenden Codebox in das Textfeld des Tools:
Code:
ATTFilter
```
:filefind
*SoftwareUpdater*
*Soluto*
:regfind
SoftwareUpdater
Soluto
         
```
Klicke nun auf den Button Look, um den Scan zu starten.
Der Suchlauf kann einige Zeit dauern.
Wenn der Suchlauf beendet ist, wird sich Dein Editor mit den Ergebnissen öffnen, poste diese in deinen Thread.
Die Ergebnisse werden auf dem Desktop als SystemLook.txt gespeichert.

bumpf · 24.06.2013, 10:31

Anbei Inhalt der SystemLook.txt:

SystemLook 30.07.11 by jpshortstuff
Log created at 11:26 on 24/06/2013 by Oli
Administrator - Elevation successful

========== filefind ==========

Searching for "*SoftwareUpdater*"
C:\Program Files\SoftwareUpdater\SoftwareUpdater.Bootstrapper.exe --a---- 60928 bytes [10:45 12/03/2013] [22:59 08/06/2013] 4D62C3A7FA7C4FF08D5015D75124C92A
C:\Program Files\SoftwareUpdater\SoftwareUpdater.dll --a---- 168960 bytes [14:18 02/05/2013] [23:03 08/06/2013] 1EF11ADFB5DD20F4F78D5AACC309F633
C:\Program Files\SoftwareUpdater\SoftwareUpdater.Ui.exe --a---- 1281536 bytes [14:18 02/05/2013] [09:57 10/06/2013] 99345050F950EAD86726BB63715FEDE6
C:\ProgramData\Installations\{D8DDC00B-2881-407D-AAC2-44AEE70AF0B7}\NokiaSoftwareUpdater.log --a---- 1595222 bytes [21:03 04/04/2010] [21:04 04/04/2010] 634D86E22AF1FFD4FF2941C1057DFE6F
C:\ProgramData\NokiaInstallerCache\ProductCache\{D5878294-C113-43c5-A24F-FC333C52015A}\NokiaSoftwareUpdater.log --a---- 762556 bytes [16:57 01/08/2010] [17:33 01/08/2010] 1E66791CBC5B1D6611AF67C2F17A0096
C:\ProgramData\OviInstallerCache\{DEE1E2E5-B553-4F88-9DE7-23CBEA5D739C}\NokiaSoftwareUpdater.log --a---- 647668 bytes [18:57 04/04/2010] [14:19 01/08/2010] 6F42DFA54F7EB9B639290DE7F3D30EC2
C:\Users\All Users\Installations\{D8DDC00B-2881-407D-AAC2-44AEE70AF0B7}\NokiaSoftwareUpdater.log --a---- 1595222 bytes [21:03 04/04/2010] [21:04 04/04/2010] 634D86E22AF1FFD4FF2941C1057DFE6F
C:\Users\All Users\NokiaInstallerCache\ProductCache\{D5878294-C113-43c5-A24F-FC333C52015A}\NokiaSoftwareUpdater.log --a---- 762556 bytes [16:57 01/08/2010] [17:33 01/08/2010] 1E66791CBC5B1D6611AF67C2F17A0096
C:\Users\All Users\OviInstallerCache\{DEE1E2E5-B553-4F88-9DE7-23CBEA5D739C}\NokiaSoftwareUpdater.log --a---- 647668 bytes [18:57 04/04/2010] [14:19 01/08/2010] 6F42DFA54F7EB9B639290DE7F3D30EC2
C:\Windows\Prefetch\SOFTWAREUPDATER.BOOTSTRAPPER.-C1C0EF1D.pf --a---- 88100 bytes [10:00 10/06/2013] [16:26 23/06/2013] 3C16B5A014D8194A8594EEC75D74DE33

Searching for "*Soluto*"
C:\Program Files\Soluto\Soluto.cat --a---- 8595 bytes [09:51 11/09/2012] [09:51 11/09/2012] 8E26B571E78133756AE1623C81B49BBC
C:\Program Files\Soluto\Soluto.exe --a---- 1161248 bytes [09:56 11/09/2012] [09:56 11/09/2012] C194F802F756CA54F266FE8F8ACBB4EA
C:\Program Files\Soluto\Soluto.exe.config --a---- 319 bytes [09:51 11/09/2012] [09:51 11/09/2012] AE64595D556BB66C49AA316AC7EF0081
C:\Program Files\Soluto\Soluto.ico --a---- 77399 bytes [09:51 11/09/2012] [09:51 11/09/2012] D627FCB6EC5EEC6EDB3CFB11B73A6E27
C:\Program Files\Soluto\Soluto.inf --a---- 4861 bytes [09:54 11/09/2012] [09:54 11/09/2012] 9744981DFD2AEC14EDF5191109CA8B4C
C:\Program Files\Soluto\Soluto.lnk --a---- 1692 bytes [15:26 14/09/2012] [15:26 14/09/2012] E54F6B63BA05881635D47206E61B70C9
C:\Program Files\Soluto\Soluto.sys --a---- 51144 bytes [09:51 11/09/2012] [09:51 11/09/2012] FF35C2D01AC36B446A1B997F305F0FC2
C:\Program Files\Soluto\SolutoCleanup.exe --a---- 637968 bytes [09:56 11/09/2012] [09:56 11/09/2012] 7922FDFC8708EBB9E0F3691B366230F7
C:\Program Files\Soluto\SolutoCleanup.exe.config --a---- 1040 bytes [09:51 11/09/2012] [09:51 11/09/2012] 795ECA30F2DBF768E4913E480CDE62E1
C:\Program Files\Soluto\SolutoConsole.exe --a---- 5342224 bytes [09:56 11/09/2012] [09:56 11/09/2012] DF07EA36D733FA14E7CE07D14CE4E1FA
C:\Program Files\Soluto\SolutoDiag.exe --a---- 37904 bytes [09:56 11/09/2012] [09:56 11/09/2012] 01B868B40C10558FE59F862B246057FD
C:\Program Files\Soluto\SolutoService.exe --a---- 603664 bytes [09:56 11/09/2012] [09:56 11/09/2012] 57E4AFE38AAF4D4D864D07829B38A377
C:\Program Files\Soluto\SolutoService.exe.config --a---- 1040 bytes [09:51 11/09/2012] [09:51 11/09/2012] BBBDE0D17F16961B8BFA32E422EF7EA0
C:\Program Files\Soluto\SolutoSleep.ico --a---- 3750 bytes [09:51 11/09/2012] [09:51 11/09/2012] 130CA65A51C74E768928B806971D1370
C:\Program Files\Soluto\SolutoTray.ico --a---- 3750 bytes [09:51 11/09/2012] [09:51 11/09/2012] 130CA65A51C74E768928B806971D1370
C:\Program Files\Soluto\SolutoUninstall.exe --a---- 234016 bytes [09:57 11/09/2012] [09:57 11/09/2012] 1E726D9245F9EF1550EA5FA2F0AF285B
C:\Program Files\Soluto\SolutoUpdateService.exe --a---- 138768 bytes [09:56 11/09/2012] [09:56 11/09/2012] 5FAD1EC79C0DDAE9B2D0AEE3FC0E20F6
C:\ProgramData\Microsoft\Windows\Start Menu\Soluto.lnk --a---- 1754 bytes [15:26 14/09/2012] [15:26 14/09/2012] F7296D29B6E06D7B15E0EA18DDAEBA97
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Soluto\Soluto.lnk --a---- 1766 bytes [15:26 14/09/2012] [15:26 14/09/2012] D0797E0EF56D8A1D3AE262450D8A1E16
C:\ProgramData\Soluto\Diag\SolutoDiag.exe --a---- 37904 bytes [22:00 27/08/2012] [09:56 11/09/2012] 01B868B40C10558FE59F862B246057FD
C:\ProgramData\Soluto\Installer\SolutoInstaller.exe --a---- 980528 bytes [23:50 29/01/2011] [23:49 29/01/2011] B85050F839EE859995A697E9E254AB41
C:\ProgramData\Soluto\Logs\ServiceSolutoLog1301606553336001072128.txt --a---- 1764 bytes [21:45 18/06/2013] [22:17 18/06/2013] 12BCB133DF4C1467ED1FD8E0D8307AB2
C:\ProgramData\Soluto\Logs\ServiceSolutoLog1301606790924863622172.txt --a---- 1764 bytes [22:25 18/06/2013] [22:33 18/06/2013] E0C9A6A0F96AC723C81119204BC71B73
C:\ProgramData\Soluto\Logs\ServiceSolutoLog1301606881925243432172.txt --a---- 2860 bytes [22:40 18/06/2013] [08:54 21/06/2013] 4C9E6259ED4D819D874640A8F114C10B
C:\ProgramData\Soluto\Logs\ServiceSolutoLog1301628254987808032184.txt --a---- 1583 bytes [10:02 21/06/2013] [10:25 21/06/2013] A26B793968D34A1C3FF0B30DE62AD92C
C:\ProgramData\Soluto\Logs\ServiceSolutoLog1301646108489040872228.txt --a---- 3013 bytes [11:38 23/06/2013] [16:14 23/06/2013] 5CC779D3125DC8D16A7DC9EF112498CC
C:\ProgramData\Soluto\Logs\ServiceSolutoLog1301647837621159742184.txt --a---- 1406 bytes [16:26 23/06/2013] [16:30 23/06/2013] 634E172E30BF86B9AF35D17F89DC4E8F
C:\ProgramData\Soluto\Update\SolutoUpdateService.exe --a---- 138768 bytes [15:24 14/09/2012] [15:35 26/08/2012] F14B872D7BC512D5E61FE828FE2FF167
C:\Users\All Users\Microsoft\Windows\Start Menu\Soluto.lnk --a---- 1754 bytes [15:26 14/09/2012] [15:26 14/09/2012] F7296D29B6E06D7B15E0EA18DDAEBA97
C:\Users\All Users\Microsoft\Windows\Start Menu\Programs\Soluto\Soluto.lnk --a---- 1766 bytes [15:26 14/09/2012] [15:26 14/09/2012] D0797E0EF56D8A1D3AE262450D8A1E16
C:\Users\All Users\Soluto\Diag\SolutoDiag.exe --a---- 37904 bytes [22:00 27/08/2012] [09:56 11/09/2012] 01B868B40C10558FE59F862B246057FD
C:\Users\All Users\Soluto\Installer\SolutoInstaller.exe --a---- 980528 bytes [23:50 29/01/2011] [23:49 29/01/2011] B85050F839EE859995A697E9E254AB41
C:\Users\All Users\Soluto\Logs\ServiceSolutoLog1301606553336001072128.txt --a---- 1764 bytes [21:45 18/06/2013] [22:17 18/06/2013] 12BCB133DF4C1467ED1FD8E0D8307AB2
C:\Users\All Users\Soluto\Logs\ServiceSolutoLog1301606790924863622172.txt --a---- 1764 bytes [22:25 18/06/2013] [22:33 18/06/2013] E0C9A6A0F96AC723C81119204BC71B73
C:\Users\All Users\Soluto\Logs\ServiceSolutoLog1301606881925243432172.txt --a---- 2860 bytes [22:40 18/06/2013] [08:54 21/06/2013] 4C9E6259ED4D819D874640A8F114C10B
C:\Users\All Users\Soluto\Logs\ServiceSolutoLog1301628254987808032184.txt --a---- 1583 bytes [10:02 21/06/2013] [10:25 21/06/2013] A26B793968D34A1C3FF0B30DE62AD92C
C:\Users\All Users\Soluto\Logs\ServiceSolutoLog1301646108489040872228.txt --a---- 3013 bytes [11:38 23/06/2013] [16:14 23/06/2013] 5CC779D3125DC8D16A7DC9EF112498CC
C:\Users\All Users\Soluto\Logs\ServiceSolutoLog1301647837621159742184.txt --a---- 1406 bytes [16:26 23/06/2013] [16:30 23/06/2013] 634E172E30BF86B9AF35D17F89DC4E8F
C:\Users\All Users\Soluto\Update\SolutoUpdateService.exe --a---- 138768 bytes [15:24 14/09/2012] [15:35 26/08/2012] F14B872D7BC512D5E61FE828FE2FF167
C:\Users\Oli\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\EV1O079J\authentication-box_soluto_21_06_13_14_58[1].css --a---- 14021 bytes [21:04 23/06/2013] [21:04 23/06/2013] ACF3E93B8DF4A2389D70192055EC0887
C:\Users\Oli\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\EV1O079J\bootstrap.min_soluto_21_06_13_14_58[1].css --a---- 44181 bytes [21:04 23/06/2013] [21:04 23/06/2013] 56C68EE8AA81B3C01B9207002839722B
C:\Users\Oli\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\EV1O079J\bootstrap.min_soluto_21_06_13_14_58[1].js --a---- 4152 bytes [21:04 23/06/2013] [21:04 23/06/2013] 59500BC1640768CCC9CFEEC96ADE60B0
C:\Users\Oli\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\EV1O079J\dashboard.min_soluto_21_06_13_14_58[1].css --a---- 24540 bytes [21:04 23/06/2013] [21:04 23/06/2013] D1AB373CB37A11936DBB52A97A899A22
C:\Users\Oli\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\EV1O079J\requestWrapper-1.00_soluto_21_06_13_14_58[1].js --a---- 662 bytes [21:04 23/06/2013] [21:04 23/06/2013] 69652E3DB8934FAFD6A4E235C64908DC
C:\Users\Oli\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\EV1O079J\Screen-1.15_soluto_21_06_13_14_58[1].css --a---- 305877 bytes [21:04 23/06/2013] [21:04 23/06/2013] 9FBD194700D6CBE5858ACD481225DE67
C:\Users\Oli\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\EV1O079J\styles_soluto_21_06_13_14_58[1].css --a---- 90567 bytes [21:04 23/06/2013] [21:04 23/06/2013] 567D15FDD63AC1F738B04B0D6E8A5964
C:\Users\Oli\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\EV1O079J\view_soluto_21_06_13_14_58[1].js --a---- 2171 bytes [21:04 23/06/2013] [21:04 23/06/2013] 64A09829E92103DA9474B81DC6094019
C:\Users\Oli\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\LXT0AY76\authenticationOAuthProviders_soluto_21_06_13_14_58[1].js --a---- 10661 bytes [21:04 23/06/2013] [21:04 23/06/2013] 5BE3CA7A7CCF593BFFCCFDDC514CD347
C:\Users\Oli\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\LXT0AY76\common_soluto_21_06_13_14_58[1].css --a---- 9155 bytes [21:04 23/06/2013] [21:04 23/06/2013] CF2DB9CBF0ADB3E265AA86A7F0DB6BD5
C:\Users\Oli\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\LXT0AY76\footer.min_soluto_21_06_13_14_58[1].css --a---- 2421 bytes [21:04 23/06/2013] [21:04 23/06/2013] 2EE5FE2F13BBAE8EA51DB04FF3942A5D
C:\Users\Oli\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\LXT0AY76\grayscale_soluto_21_06_13_14_58[1].js --a---- 4472 bytes [21:04 23/06/2013] [21:04 23/06/2013] 629502213DB570539141C26E655E42C8
C:\Users\Oli\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\LXT0AY76\jquery.isotope.min_soluto_21_06_13_14_58[1].js --a---- 15585 bytes [21:04 23/06/2013] [21:04 23/06/2013] 4E3EADB474ECCE4E2F9943C6803C9934
C:\Users\Oli\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\LXT0AY76\jquery.isotope_soluto_21_06_13_14_58[1].js --a---- 16041 bytes [21:04 23/06/2013] [21:04 23/06/2013] BDAE99F366CA2ED43E1766ED69638CE8
C:\Users\Oli\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\LXT0AY76\jquery.jplayer.min_soluto_21_06_13_14_58[1].js --a---- 42363 bytes [21:04 23/06/2013] [21:04 23/06/2013] A1B4BF3BC650E00226D32D7B9EF6408A
C:\Users\Oli\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\LXT0AY76\jquery.validate.unobtrusive.min_soluto_21_06_13_14_58[1].js --a---- 3644 bytes [21:04 23/06/2013] [21:04 23/06/2013] 7E50725F07B24EE6D58285C896C8B75B
C:\Users\Oli\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\LXT0AY76\mobile_view_soluto_21_06_13_14_58[1].js --a---- 4214 bytes [21:04 23/06/2013] [21:04 23/06/2013] 6BE4AE3C5D2F58C4AF68FEC43262FD26
C:\Users\Oli\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\LXT0AY76\soluto-sh-1.00_soluto_21_06_13_14_58[1].js --a---- 51115 bytes [21:04 23/06/2013] [21:04 23/06/2013] 36EB4E12F9338862DEED30AC213EDC2B
C:\Users\Oli\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\LXT0AY76\Soluto.analytics_soluto_21_06_13_14_58[1].js --a---- 2107 bytes [21:04 23/06/2013] [21:04 23/06/2013] 01ED386D1A20E8D54FDC7CA470C05FCC
C:\Users\Oli\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\QA60GCSX\authenticationBoxManager_soluto_21_06_13_14_58[1].js --a---- 876 bytes [21:04 23/06/2013] [21:04 23/06/2013] CC59A9854EF87F6A6D9EEE83664465F1
C:\Users\Oli\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\QA60GCSX\base_soluto_21_06_13_14_58[1].css --a---- 2267 bytes [21:04 23/06/2013] [21:04 23/06/2013] 891D31FD335E6B034A2F7869C7110143
C:\Users\Oli\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\QA60GCSX\Controls_soluto_21_06_13_14_58[1].js --a---- 3775 bytes [21:04 23/06/2013] [21:04 23/06/2013] C3C53EF7D24F90A3841D1F600950D58A
C:\Users\Oli\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\QA60GCSX\jquery.address-1.5.min_soluto_21_06_13_14_58[1].js --a---- 9227 bytes [21:04 23/06/2013] [21:04 23/06/2013] CAB234B8ADA2625CF5937E9EEC95EAE4
C:\Users\Oli\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\QA60GCSX\jquery.validate.1.10.0.min_soluto_21_06_13_14_58[1].js --a---- 21417 bytes [21:04 23/06/2013] [21:04 23/06/2013] A87DAF0B6075BF7CCACFE192955AF37C
C:\Users\Oli\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\QA60GCSX\Mustache.0.4.2_soluto_21_06_13_14_58[1].js --a---- 4353 bytes [21:04 23/06/2013] [21:04 23/06/2013] 43E4AD6E935D2948B8A4B243F40F7F1C
C:\Users\Oli\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\QA60GCSX\pageEventsDispatcher_soluto_21_06_13_14_58[1].js --a---- 1191 bytes [21:04 23/06/2013] [21:04 23/06/2013] 937BE70AE48E5CCBB2F8307C063D8621
C:\Users\Oli\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\QA60GCSX\shareWithFriendsDialog_soluto_21_06_13_14_58[1].css --a---- 4421 bytes [21:04 23/06/2013] [21:04 23/06/2013] 36E26A4145E411CC9F8C3473977F0C1C
C:\Users\Oli\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\QA60GCSX\soluto.webapp_soluto_21_06_13_14_58[1].js --a---- 241238 bytes [21:04 23/06/2013] [21:04 23/06/2013] A9E3D0E48D9EFFB5D29074EE48CF6DDE
C:\Users\Oli\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\QA60GCSX\solX.debug_soluto_21_06_13_14_58[1].js --a---- 14345 bytes [21:04 23/06/2013] [21:04 23/06/2013] 2516BDECFE719B15AEE3A4366C4063E3
C:\Users\Oli\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\QA60GCSX\supporteesSection.min_soluto_21_06_13_14_58[1].css --a---- 38836 bytes [21:04 23/06/2013] [21:04 23/06/2013] 3C37693C275C806DA6ACA797BE3A5089
C:\Users\Oli\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\QA60GCSX\win8GetSoluto_soluto_21_06_13_14_58[1].js --a---- 3674 bytes [21:04 23/06/2013] [21:04 23/06/2013] AE9C2C9CC1AD8753D62DFD9F284533FE
C:\Users\Oli\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\R7ZUVHL2\app-configuration_soluto_21_06_13_14_58[1].js --a---- 40102 bytes [21:04 23/06/2013] [21:04 23/06/2013] 7604BC6AF3BA6BA8C78A4735C2F056D9
C:\Users\Oli\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\R7ZUVHL2\authenticationBox_soluto_21_06_13_14_58[1].js --a---- 4876 bytes [21:04 23/06/2013] [21:04 23/06/2013] B522E798777BEC2098B068BB7DC6AC8E
C:\Users\Oli\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\R7ZUVHL2\common-1.15_soluto_21_06_13_14_58[1].js --a---- 24423 bytes [21:04 23/06/2013] [21:04 23/06/2013] E7059F58E19FC1ADAB61209EB8EFBC68
C:\Users\Oli\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\R7ZUVHL2\curl.min_soluto_21_06_13_14_58[1].js --a---- 15113 bytes [21:04 23/06/2013] [21:04 23/06/2013] 0308A869AB1AF87682D7272FAB40F4FB
C:\Users\Oli\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\R7ZUVHL2\currentUserPackage.min_soluto_21_06_13_14_58[1].css --a---- 212 bytes [21:04 23/06/2013] [21:04 23/06/2013] 11CD196D0C735581142D365B4B6290E2
C:\Users\Oli\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\R7ZUVHL2\DetectBrowser_soluto_21_06_13_14_58[1].js --a---- 3365 bytes [21:04 23/06/2013] [21:04 23/06/2013] CE4AB27121447916C862BACA70EC63F2
C:\Users\Oli\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\R7ZUVHL2\Fonts_soluto_21_06_13_14_58[1].css --a---- 141867 bytes [21:04 23/06/2013] [21:04 23/06/2013] A712DCE3E27C816D13E8B8FF8949DE50
C:\Users\Oli\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\R7ZUVHL2\jquery.signalR-1.0.1_soluto_21_06_13_14_58[1].js --a---- 23900 bytes [21:04 23/06/2013] [21:04 23/06/2013] 10687FD796DDAA654F45808A7C3346C0
C:\Users\Oli\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\R7ZUVHL2\jquery.unobtrusive-ajax.min_soluto_21_06_13_14_58[1].js --a---- 2616 bytes [21:04 23/06/2013] [21:04 23/06/2013] B4C93B69D5FF825D8CF7D8C689271297
C:\Users\Oli\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\R7ZUVHL2\login-basic_soluto_21_06_13_14_58[1].css --a---- 970 bytes [21:04 23/06/2013] [21:04 23/06/2013] 35E17D3CF7A8CAE1BD3E72B66910EE4A
C:\Users\Oli\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\R7ZUVHL2\SolutoApp_soluto_21_06_13_14_58[1].js --a---- 3895 bytes [21:04 23/06/2013] [21:04 23/06/2013] 536D1AEB687EAD4F78EF7148B907BB4E
C:\Users\Oli\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\R7ZUVHL2\win8GetSoluto_soluto_21_06_13_14_58[1].css --a---- 10172 bytes [21:04 23/06/2013] [21:04 23/06/2013] 6A8387CA4D439F24224DD28B0D9E076C
C:\Users\Oli\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\R7ZUVHL2\WindowsServerMachineView_soluto_21_06_13_14_58[1].js --a---- 1321 bytes [21:04 23/06/2013] [21:04 23/06/2013] C0D81C9F415DC35045A1CD1A1F3D8EF1
C:\Users\Oli\AppData\LocalLow\Microsoft\Internet Explorer\DOMStore\IEE61AS4\www.soluto[1].xml --a---- 95 bytes [03:56 06/06/2013] [21:10 23/06/2013] 2E3EC1FB9C3692E93C5A246F740E15C0
C:\Windows\assembly\NativeImages_v2.0.50727_32\Soluto\920a53b5c94d926cff7bec5fbf0915d4\Soluto.ni.exe --a---- 1588736 bytes [10:41 16/05/2013] [10:41 16/05/2013] 4ABF22AC168BD3AD06CB5043433668C8
C:\Windows\assembly\NativeImages_v2.0.50727_32\SolutoCleanup\359252c124e0458c19613bf87d79f0a3\SolutoCleanup.ni.dll --a---- 750080 bytes [22:21 18/02/2013] [22:21 18/02/2013] 340473CC256A07B0A5157C053D7CA670
C:\Windows\assembly\NativeImages_v2.0.50727_32\SolutoConsole\16efd28ca974413083a18a5d7b6d459d\SolutoConsole.ni.exe --a---- 7588864 bytes [10:42 16/05/2013] [10:42 16/05/2013] AEB39AF1B17F633EC3814DE387A5E9C3
C:\Windows\assembly\NativeImages_v2.0.50727_32\SolutoService\8c89e9b1c44dd5be22e6f5565b0f0d96\SolutoService.ni.exe --a---- 2130432 bytes [10:43 16/05/2013] [10:43 16/05/2013] 9F5A3A6D87D8B5BAD6FFF20242C8628A
C:\Windows\assembly\NativeImages_v2.0.50727_32\SolutoUpdateService\ef37f49f885a22ca9cb9a14c7fa001c2\SolutoUpdateService.ni.dll --a---- 135680 bytes [10:43 16/05/2013] [10:43 16/05/2013] ACF6230EBC346FD6E7C55895CBF6293D
C:\Windows\Installer\{EF3990EC-1FA6-4734-BB98-BBDEA885F08B}\Soluto.exe -ra---- 77399 bytes [15:26 14/09/2012] [15:26 14/09/2012] D627FCB6EC5EEC6EDB3CFB11B73A6E27
C:\Windows\Installer\{EF3990EC-1FA6-4734-BB98-BBDEA885F08B}\Soluto_1.exe -ra---- 77399 bytes [15:26 14/09/2012] [15:26 14/09/2012] D627FCB6EC5EEC6EDB3CFB11B73A6E27
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Soluto.cat ----s-- 8595 bytes [19:22 24/05/2011] [09:51 11/09/2012] 8E26B571E78133756AE1623C81B49BBC
C:\Windows\System32\drivers\Soluto.sys --a---- 51144 bytes [15:26 14/09/2012] [09:51 11/09/2012] FF35C2D01AC36B446A1B997F305F0FC2
C:\Windows\System32\DRVSTORE\Soluto_650756C288B7E3F1A1D5932110EF00AB1D585753\Soluto.cat --a--c- 8595 bytes [15:26 14/09/2012] [09:51 11/09/2012] 8E26B571E78133756AE1623C81B49BBC
C:\Windows\System32\DRVSTORE\Soluto_650756C288B7E3F1A1D5932110EF00AB1D585753\Soluto.inf --a--c- 4861 bytes [15:26 14/09/2012] [09:54 11/09/2012] 9744981DFD2AEC14EDF5191109CA8B4C
C:\Windows\System32\DRVSTORE\Soluto_650756C288B7E3F1A1D5932110EF00AB1D585753\Soluto.sys --a--c- 51144 bytes [15:26 14/09/2012] [09:51 11/09/2012] FF35C2D01AC36B446A1B997F305F0FC2

========== regfind ==========

Searching for "SoftwareUpdater"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files\SoftwareUpdater\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\0B5524D8179C1F741B1860F6D70C0C18\Features]
"SoftwareUpdater"="ProductFeature"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\SystemStoreService]
"ImagePath"=""C:\Program Files\SoftwareUpdater\SystemStore.exe" -displayname "System Store" -servicename "SystemStoreService""
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\SystemStoreService]
"ImagePath"=""C:\Program Files\SoftwareUpdater\SystemStore.exe" -displayname "System Store" -servicename "SystemStoreService""
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SystemStoreService]
"ImagePath"=""C:\Program Files\SoftwareUpdater\SystemStore.exe" -displayname "System Store" -servicename "SystemStoreService""

Searching for "Soluto"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\soluto.com]
[HKEY_LOCAL_MACHINE\SOFTWARE\Avira\AntiVir Desktop\Overwrite_Keys\HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\userinit]
"UseAsDefault"="C:\Windows\system32\userinit.exe,C:\Program Files\Soluto\soluto.exe /userinit"
[HKEY_LOCAL_MACHINE\SOFTWARE\Caphyon\Advanced Installer\Windows Firewall\{EF3990EC-1FA6-4734-BB98-BBDEA885F08B}\Registered Applications]
"Soluto_Cleanup"="C:\Program Files\Soluto\SolutoCleanup.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Caphyon\Advanced Installer\Windows Firewall\{EF3990EC-1FA6-4734-BB98-BBDEA885F08B}\Registered Applications]
"Soluto_Experimental_Alpha_Tray"="C:\Program Files\Soluto\Soluto.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Caphyon\Advanced Installer\Windows Firewall\{EF3990EC-1FA6-4734-BB98-BBDEA885F08B}\Registered Applications]
"Soluto_Experimental_Alpha_Service"="C:\Program Files\Soluto\SolutoService.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Caphyon\Advanced Installer\Windows Firewall\{EF3990EC-1FA6-4734-BB98-BBDEA885F08B}\Registered Applications]
"Soluto_Experimental_Alpha_Console"="C:\Program Files\Soluto\SolutoConsole.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Caphyon\Advanced Installer\Windows Firewall\{EF3990EC-1FA6-4734-BB98-BBDEA885F08B}\Registered Applications]
"Soluto_Experimental_Alpha_Update_Service"="C:\Program Files\Soluto\SolutoUpdateService.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Features\CE0993FE6AF14374BB89BBED8A580FB8]
"Soluto"="MainFeature"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\CE0993FE6AF14374BB89BBED8A580FB8]
"ProductName"="Soluto"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\CE0993FE6AF14374BB89BBED8A580FB8]
"ProductIcon"="C:\Windows\Installer\{EF3990EC-1FA6-4734-BB98-BBDEA885F08B}\Soluto.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\CE0993FE6AF14374BB89BBED8A580FB8\SourceList]
"LastUsedSource"="n;1;C:\ProgramData\Soluto\Update\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\CE0993FE6AF14374BB89BBED8A580FB8\SourceList\Net]
"1"="C:\ProgramData\Soluto\Update\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\.NETFramework]
"DbgManagedDebugger"=""C:\Program Files\Soluto\Debugger\x86\ntsd.exe" -p %d -d -noio -c ".dump /mFhut /u /o C:\ProgramData\Soluto\Dumps\ApplicationDumps\JIT.dmp; .kill; q""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\.NETFramework\v2.0.50727\NGENService\Roots\C:/Program Files/Soluto/Soluto.exe]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\.NETFramework\v2.0.50727\NGENService\Roots\C:/Program Files/Soluto/SolutoConsole.exe]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\.NETFramework\v2.0.50727\NGENService\Roots\C:/Program Files/Soluto/SolutoService.exe]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Fusion\NativeImagesIndex\v2.0.50727_32\IL\2db4b5ad\11310c1c\120]
"DisplayName"="Soluto,1.3.979.0,,"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Fusion\NativeImagesIndex\v2.0.50727_32\IL\37b3b211\5c7cc545\6c]
"DisplayName"="SolutoCleanup,1.3.979.0,,"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Fusion\NativeImagesIndex\v2.0.50727_32\IL\445e4183\25d0a1ee\117]
"DisplayName"="SolutoConsole,1.3.979.0,,"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Fusion\NativeImagesIndex\v2.0.50727_32\IL\65aa3039\6df238ed\62]
"DisplayName"="SolutoUpdateService,1.3.979.0,,"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Fusion\NativeImagesIndex\v2.0.50727_32\IL\da93022\5f3d6dd8\114]
"DisplayName"="SolutoService,1.3.979.0,,"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Fusion\NativeImagesIndex\v2.0.50727_32\NI\12d6e8a4\37b3b211\fd]
"DisplayName"="SolutoCleanup,1.3.979.0,,"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Fusion\NativeImagesIndex\v2.0.50727_32\NI\1bd6c8b5\da93022\196]
"DisplayName"="SolutoService,1.3.979.0,,"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Fusion\NativeImagesIndex\v2.0.50727_32\NI\25e3b6cd\65aa3039\194]
"DisplayName"="SolutoUpdateService,1.3.979.0,,"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Fusion\NativeImagesIndex\v2.0.50727_32\NI\445e2440\2db4b5ad\1ec]
"DisplayName"="Soluto,1.3.979.0,,"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Fusion\NativeImagesIndex\v2.0.50727_32\NI\7e9b1e18\445e4183\198]
"DisplayName"="SolutoConsole,1.3.979.0,,"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\DIFx\DriverStore\Soluto_650756C288B7E3F1A1D5932110EF00AB1D585753]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\DIFx\DriverStore\Soluto_650756C288B7E3F1A1D5932110EF00AB1D585753]
"INF"="Soluto.inf"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\DIFx\DriverStore\Soluto_650756C288B7E3F1A1D5932110EF00AB1D585753]
"Services"="Soluto"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\DIFx\DriverStore\Soluto_650756C288B7E3F1A1D5932110EF00AB1D585753]
"ProductName"="Soluto"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\DIFx\DriverStore\Soluto_650756C288B7E3F1A1D5932110EF00AB1D585753]
"ManufacturerName"="Soluto"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\DIFx\DriverStore\Soluto_650756C288B7E3F1A1D5932110EF00AB1D585753]
"DisplayName"="Soluto"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\DIFx\DriverStore\Soluto_650756C288B7E3F1A1D5932110EF00AB1D585753]
"DependentInstallerName"="Soluto"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\DIFx\Services\Soluto]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\DIFx\Services\Soluto]
"RefCount"="Soluto_650756C288B7E3F1A1D5932110EF00AB1D585753"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\DIFxApp\Components\{DBE44BAB-D4D0-4662-9759-2EC64D10C27E}]
"DriverStore"="C:\Windows\system32\DRVSTORE\Soluto_650756C288B7E3F1A1D5932110EF00AB1D585753\Soluto.inf"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files\Soluto\Debugger\"="1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files\Soluto\"="1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Soluto\"="1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files\Soluto\Debugger\x86\"="1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\00C0446AB0065794AA28D66008185D6F]
"CE0993FE6AF14374BB89BBED8A580FB8"="C:\Program Files\Soluto\PCGDeviceScanLib.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\04E460EFE07206A4D92D9D0D867B171F]
"CE0993FE6AF14374BB89BBED8A580FB8"="02:\SYSTEM\CurrentControlSet\Services\Soluto\Parameters\DriverVersion"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\05621E2A4D1C45747B2A0385F9B26398]
"CE0993FE6AF14374BB89BBED8A580FB8"="C:\Program Files\Soluto\PCGConfiguration.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\06B7F198E68FA094C93B216D70080503]
"CE0993FE6AF14374BB89BBED8A580FB8"="C:\Program Files\Soluto\PCGDriverProbe.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0ECA674BCF5A93A4A8A1415EFCE9854C]
"CE0993FE6AF14374BB89BBED8A580FB8"="C:\Program Files\Soluto\PCGBootVisualizingCommon.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\13A08055A6D8B9B4EAE0A631C238EF3D]
"CE0993FE6AF14374BB89BBED8A580FB8"="C:\Program Files\Soluto\SolutoUpdateService.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\16E33755A33D3534E9E3197D3D9A9547]
"CE0993FE6AF14374BB89BBED8A580FB8"="C:\Program Files\Soluto\sqlcese35.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\16EF5DC976996C24CA3331BAEA6EF4C9]
"CE0993FE6AF14374BB89BBED8A580FB8"="C:\Program Files\Soluto\SolutoConsole.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\18DBD2B45FE740841BF523B9C9ABA61F]
"CE0993FE6AF14374BB89BBED8A580FB8"="C:\Program Files\Soluto\Newtonsoft.Json.Net35.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\20502EA9A50A2F542B015BA0FDB9B263]
"CE0993FE6AF14374BB89BBED8A580FB8"="C:\Program Files\Soluto\System.Data.SqlServerCe.Entity.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\269CE7D653037B54CB810DD384F4D4A4]
"CE0993FE6AF14374BB89BBED8A580FB8"="C:\Program Files\Soluto\SolutoDiag.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2CB549A8680625E4AB95D7EB025C722A]
"CE0993FE6AF14374BB89BBED8A580FB8"="C:\Program Files\Soluto\Debugger\x86\dbgeng.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2DB7F1DEEA809834D91DE22DFBC1E528]
"CE0993FE6AF14374BB89BBED8A580FB8"="C:\Program Files\Soluto\Interop.NetFwTypeLib.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\323FF66F3E5FF524590FE426A1F14809]
"CE0993FE6AF14374BB89BBED8A580FB8"="C:\Program Files\Soluto\SolutoUninstall.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\3591A02AA247084408238255694D6D25]
"CE0993FE6AF14374BB89BBED8A580FB8"="C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Soluto\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\3C5EE9FA95CD8514686E9955D93036A6]
"CE0993FE6AF14374BB89BBED8A580FB8"="C:\Program Files\Soluto\SolutoService.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\3D29DFF0CF9E4C746BA363689BF214C2]
"CE0993FE6AF14374BB89BBED8A580FB8"="C:\Program Files\Soluto\AmCharts.Windows.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\3F160C404EC9F6A4CAB38AED7EC7D1CD]
"CE0993FE6AF14374BB89BBED8A580FB8"="C:\Program Files\Soluto\Community.CsharpSqlite.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\42EF54014D4E6844C970B2530FA008C9]
"CE0993FE6AF14374BB89BBED8A580FB8"="C:\Program Files\Soluto\PCGAppControlPluginLoader.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4938A1B02A3F09B4CA29B440BED7B6F7]
"CE0993FE6AF14374BB89BBED8A580FB8"="C:\Program Files\Soluto\PCGRSPProbe.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\49AF9DD728F9FC94A93B37410276F0A0]
"CE0993FE6AF14374BB89BBED8A580FB8"="C:\Program Files\Soluto\PCGSAProbe.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4D7AAB1842B0B0E42923C30801005E18]
"CE0993FE6AF14374BB89BBED8A580FB8"="C:\Program Files\Soluto\PCGPrestoSerializer.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\501D60149C86F0D438329AD1F20A7E5A]
"CE0993FE6AF14374BB89BBED8A580FB8"="C:\Program Files\Soluto\PCGPostBootResources.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\52120AFAA3B639B4282028AD4E9BEE1F]
"CE0993FE6AF14374BB89BBED8A580FB8"="C:\Program Files\Soluto\Debugger\x86\ntsd.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\574066CBC0DF4AB429DDF70DE865666E]
"CE0993FE6AF14374BB89BBED8A580FB8"="C:\Program Files\Soluto\cpuidsdk.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\57C15D86264B7AD469AF3558408C212D]
"CE0993FE6AF14374BB89BBED8A580FB8"="C:\Program Files\Soluto\PCGCatalogItemFootprint.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\5CE53D5283242E246852A7BDB0166150]
"CE0993FE6AF14374BB89BBED8A580FB8"="C:\Program Files\Soluto\PCGFramework.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\5F6BFD716C2D5124EBAE907F7202E0DB]
"CE0993FE6AF14374BB89BBED8A580FB8"="C:\Program Files\Soluto\Debugger\x86\dbghelp.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\63AC7394DD3F1634091B8448AA4D66B6]
"CE0993FE6AF14374BB89BBED8A580FB8"="C:\Program Files\Soluto\Interop.IWshRuntimeLibrary.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\67EE6AB9E68FD3E48A6D443F91620927]
"CE0993FE6AF14374BB89BBED8A580FB8"="C:\Program Files\Soluto\PCGDllExportInspector.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6B002CD9FAB436847B8EB2F5E77D19FD]
"CE0993FE6AF14374BB89BBED8A580FB8"="C:\Program Files\Soluto\SolutoCleanup.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6C4281BFF7F568C44BF97CF5D0044EC4]
"CE0993FE6AF14374BB89BBED8A580FB8"="C:\Program Files\Soluto\Ionic.Zip.Reduced.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6DBD0E1E6BAC74B4B9012B3CBAF50B45]
"CE0993FE6AF14374BB89BBED8A580FB8"="C:\ProgramData\Soluto\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6DD8BB6DCD650C24EA168216528F28F1]
"CE0993FE6AF14374BB89BBED8A580FB8"="C:\Program Files\Soluto\PCGCommunication.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\738A8CFAC22349440A07F87A20EEF052]
"CE0993FE6AF14374BB89BBED8A580FB8"="C:\Program Files\Soluto\PCGHIDProbe.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\760F65F8E152C1C42816810F13D96FC5]
"CE0993FE6AF14374BB89BBED8A580FB8"="02:\SYSTEM\CurrentControlSet\Services\Soluto\Start"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7A149D8A4CB2E3E42900E8CFC3BCF40C]
"CE0993FE6AF14374BB89BBED8A580FB8"="C:\Program Files\Soluto\sqlceer35EN.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7A7A1EB50ACCAB241AAA8184D1C29B01]
"CE0993FE6AF14374BB89BBED8A580FB8"="C:\Program Files\Soluto\Microsoft.ServiceHosting.ServiceRuntime.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7D063A18E5C932B4B92101F7B2C06DEF]
"CE0993FE6AF14374BB89BBED8A580FB8"="C:\Program Files\Soluto\sqlceoledb35.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7F920763786159E4C9352E1E86BEEF98]
"CE0993FE6AF14374BB89BBED8A580FB8"="C:\Program Files\Soluto\sqlceca35.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8A85590A08AFEBA4F86766994BDB1F98]
"CE0993FE6AF14374BB89BBED8A580FB8"="C:\Program Files\Soluto\Debugger\x86\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8AA8CAA743658B34D8E01CF56ABA12BC]
"CE0993FE6AF14374BB89BBED8A580FB8"="C:\Program Files\Soluto\System.Data.SqlServerCe.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\90F7D44C1B9A5B04FA7CC7FE23B50129]
"CE0993FE6AF14374BB89BBED8A580FB8"="C:\Program Files\Soluto\Debugger\x86\cdb.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9133EA92902C05E4FB7B7B83412E0FB7]
"CE0993FE6AF14374BB89BBED8A580FB8"="C:\Program Files\Soluto\PCGAzureShared.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\94D9A5F8747C20D4AAD3FC5BAEFE396A]
"CE0993FE6AF14374BB89BBED8A580FB8"="C:\Program Files\Soluto\PCGUsersCenter.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9D040A33A83F5D648B2C164189EF2F8E]
"CE0993FE6AF14374BB89BBED8A580FB8"="C:\Program Files\Soluto\sqlceqp35.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A7004AB79751A8A49B6FA8FAA2000E51]
"CE0993FE6AF14374BB89BBED8A580FB8"="C:\Program Files\Soluto\PCGClientCommon.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\AC0D3D7C1FC70B441B18A3C2460EB09C]
"CE0993FE6AF14374BB89BBED8A580FB8"="C:\Program Files\Soluto\PCGUpgrader.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B08AD877FE1D85D4B81E833E9BB2E209]
"CE0993FE6AF14374BB89BBED8A580FB8"="C:\Program Files\Soluto\PCGDatabase.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B4C10870FD149D14FBD76B1089E0517C]
"CE0993FE6AF14374BB89BBED8A580FB8"="C:\Program Files\Soluto\PCGCatalogItemCache.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BAB44EBD0D4D26647995E26CD4012CE7]
"CE0993FE6AF14374BB89BBED8A580FB8"="C:\Program Files\Soluto\Soluto.inf"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BCFE66EAE64588E4A8894328C0249D80]
"CE0993FE6AF14374BB89BBED8A580FB8"="C:\Program Files\Soluto\PCGPreCompiled.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BD06A66CCD5E5E14CA3F0787C19CDB8C]
"CE0993FE6AF14374BB89BBED8A580FB8"="C:\Program Files\Soluto\AmCharts.Windows.Design.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BF3A7628ABE725C4F9B02AB90D07BDD7]
"CE0993FE6AF14374BB89BBED8A580FB8"="C:\Program Files\Soluto\Soluto.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\C2A5DB6F24F795142B7A6FDAFD5CC0BD]
"CE0993FE6AF14374BB89BBED8A580FB8"="C:\Program Files\Soluto\Debugger\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CA4A3AD5B4D1F404C827A36CE3CC01C5]
"CE0993FE6AF14374BB89BBED8A580FB8"="C:\Program Files\Soluto\PCGDataAggregation.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D9286A55C9AD32849B7242B5C8BBD2A3]
"CE0993FE6AF14374BB89BBED8A580FB8"="C:\Program Files\Soluto\PCGBrowsersProbe.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DB503670E967F2D45B0CEEC09F5AAD05]
"CE0993FE6AF14374BB89BBED8A580FB8"="C:\Program Files\Soluto\PCGEntities.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DB87A3D8295C8AF468343548CF548826]
"CE0993FE6AF14374BB89BBED8A580FB8"="C:\Program Files\Soluto\Soluto.cat"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DC74AB635231A57468FD74BCB672A621]
"CE0993FE6AF14374BB89BBED8A580FB8"="C:\Program Files\Soluto\PCGClientCommunication.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E14CD53F8C7FB5345B8B7B40251B8B5E]
"CE0993FE6AF14374BB89BBED8A580FB8"="C:\Program Files\Soluto\SolutoTray.ico"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E8190B0477486344E91CF066C8D6BBE1]
"CE0993FE6AF14374BB89BBED8A580FB8"="C:\Program Files\Soluto\CrashTest.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\ED0FBB010DC77054AB67497612B34AEB]
"CE0993FE6AF14374BB89BBED8A580FB8"="C:\Program Files\Soluto\sqlcecompact35.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EFCB624B3449FC0498D23E31613C35F4]
"CE0993FE6AF14374BB89BBED8A580FB8"="C:\Program Files\Soluto\PCGBootVisualizingCore.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F40D911EB2D7444489F90E894F84139D]
"CE0993FE6AF14374BB89BBED8A580FB8"="C:\Program Files\Soluto\PCGWuInfo.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F463A8E0A23009342B29193406D4E2A5]
"CE0993FE6AF14374BB89BBED8A580FB8"="C:\Program Files\Soluto\sqlceme35.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F4990D840BA247C4CABA0C1E92E82CE5]
"CE0993FE6AF14374BB89BBED8A580FB8"="C:\Program Files\Soluto\PCGAzureEntityFramework.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\CE0993FE6AF14374BB89BBED8A580FB8\Features]
"Soluto"="}C5IUy95[Au9}TRUQlaG1%5bowtr]=dK*dhr`tgPMainFeature"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\CE0993FE6AF14374BB89BBED8A580FB8\InstallProperties]
"Comments"="Soluto Installer"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\CE0993FE6AF14374BB89BBED8A580FB8\InstallProperties]
"Contact"="support@soluto.com"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\CE0993FE6AF14374BB89BBED8A580FB8\InstallProperties]
"HelpLink"="hxxp://www.soluto.com"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\CE0993FE6AF14374BB89BBED8A580FB8\InstallProperties]
"InstallLocation"="C:\Program Files\Soluto\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\CE0993FE6AF14374BB89BBED8A580FB8\InstallProperties]
"InstallSource"="C:\ProgramData\Soluto\Update\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\CE0993FE6AF14374BB89BBED8A580FB8\InstallProperties]
"Publisher"="Soluto"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\CE0993FE6AF14374BB89BBED8A580FB8\InstallProperties]
"URLInfoAbout"="hxxp://www.soluto.com"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\CE0993FE6AF14374BB89BBED8A580FB8\InstallProperties]
"URLUpdateInfo"="hxxp://www.soluto.com"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\CE0993FE6AF14374BB89BBED8A580FB8\InstallProperties]
"DisplayName"="Soluto"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{EF3990EC-1FA6-4734-BB98-BBDEA885F08B}]
"Comments"="Soluto Installer"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{EF3990EC-1FA6-4734-BB98-BBDEA885F08B}]
"Contact"="support@soluto.com"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{EF3990EC-1FA6-4734-BB98-BBDEA885F08B}]
"HelpLink"="hxxp://www.soluto.com"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{EF3990EC-1FA6-4734-BB98-BBDEA885F08B}]
"InstallLocation"="C:\Program Files\Soluto\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{EF3990EC-1FA6-4734-BB98-BBDEA885F08B}]
"InstallSource"="C:\ProgramData\Soluto\Update\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{EF3990EC-1FA6-4734-BB98-BBDEA885F08B}]
"Publisher"="Soluto"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{EF3990EC-1FA6-4734-BB98-BBDEA885F08B}]
"URLInfoAbout"="hxxp://www.soluto.com"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{EF3990EC-1FA6-4734-BB98-BBDEA885F08B}]
"URLUpdateInfo"="hxxp://www.soluto.com"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{EF3990EC-1FA6-4734-BB98-BBDEA885F08B}]
"DisplayName"="Soluto"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Windows Error Reporting\LocalDumps]
"DumpFolder"="C:\ProgramData\Soluto\Dumps\ApplicationDumps"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AeDebug]
"Debugger"=""C:\Program Files\Soluto\Debugger\x86\ntsd.exe" -p %ld -e %ld -noio -c "g;g;.dump /u /o /mFhut C:\ProgramData\Soluto\Dumps\ApplicationDumps\AeDebug.dmp; .kill; q""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon]
"Userinit"="C:\Windows\system32\userinit.exe,C:\Program Files\Soluto\soluto.exe /userinit"
[HKEY_LOCAL_MACHINE\SOFTWARE\Soluto]
[HKEY_LOCAL_MACHINE\SOFTWARE\Soluto]
"ServerURIFallback"="prodenv6.mysoluto.com"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Minimal\SolutoService]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Network\SolutoService]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_SOLUTO]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_SOLUTO\0000]
"Service"="Soluto"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_SOLUTO\0000]
"DeviceDesc"="Soluto"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_SOLUTO\0000\Control]
"ActiveService"="Soluto"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\Eventlog\Application\Soluto PC-Genome Service]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\Eventlog\Application\Soluto Update Service]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{297CA8DB-3797-4327-A636-0B4577DEC727}"="v2.0|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Private|App=C:\Program Files\Soluto\SolutoCleanup.exe|Name=Soluto Cleanup|Edge=FALSE|"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{1FF35979-F546-4B6C-8145-C9252396A77F}"="v2.0|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Private|App=C:\Program Files\Soluto\SolutoCleanup.exe|Name=Soluto Cleanup|Edge=FALSE|"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{35897003-7FA5-4022-98D3-CE8234788680}"="v2.0|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Private|App=C:\Program Files\Soluto\Soluto.exe|Name=Soluto Tray|Edge=FALSE|"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{471088C2-2421-4DB0-8374-4F0D3473A495}"="v2.0|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Private|App=C:\Program Files\Soluto\Soluto.exe|Name=Soluto Tray|Edge=FALSE|"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{4F9D7C53-5DB1-4D97-B8C9-B5DD25DF6383}"="v2.0|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Private|App=C:\Program Files\Soluto\SolutoService.exe|Name=Soluto Service|Edge=FALSE|"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{76FE9453-AC4F-4BB9-A4B7-C5514DF68762}"="v2.0|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Private|App=C:\Program Files\Soluto\SolutoService.exe|Name=Soluto Service|Edge=FALSE|"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{032AEE9E-7CAB-4AEE-B80A-822AEC2ACF4E}"="v2.0|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Private|App=C:\Program Files\Soluto\SolutoConsole.exe|Name=Soluto Console|Edge=FALSE|"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{9B513AB4-E9C2-4797-B6DF-A7434954156B}"="v2.0|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Private|App=C:\Program Files\Soluto\SolutoConsole.exe|Name=Soluto Console|Edge=FALSE|"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{21AFC349-A607-43C8-A786-DCE345461BC0}"="v2.0|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Private|App=C:\Program Files\Soluto\SolutoUpdateService.exe|Name=Soluto Update Service|Edge=FALSE|"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{1DB0C885-09F7-4C74-B48C-2B8397579F5C}"="v2.0|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Private|App=C:\Program Files\Soluto\SolutoUpdateService.exe|Name=Soluto Update Service|Edge=FALSE|"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\Soluto]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\Soluto]
"Description"="Soluto Mini-Filter Driver"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\Soluto]
"DisplayName"="Soluto"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\Soluto]
"ImagePath"="system32\DRIVERS\Soluto.sys"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\Soluto\Instances]
"DefaultInstance"="Soluto Instance"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\Soluto\Instances\Soluto Instance]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\Soluto\Enum]
"0"="Root\LEGACY_SOLUTO\0000"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\SolutoService]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\SolutoService]
"ImagePath"=""C:\Program Files\Soluto\SolutoService.exe""
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\SolutoService]
"DisplayName"="Soluto PCGenome Core Service"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\SolutoService]
"Description"="Soluto PCGenome Core Service"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Control\SafeBoot\Minimal\SolutoService]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Control\SafeBoot\Network\SolutoService]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_SOLUTO]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_SOLUTO\0000]
"Service"="Soluto"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_SOLUTO\0000]
"DeviceDesc"="Soluto"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\Eventlog\Application\Soluto PC-Genome Service]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\Eventlog\Application\Soluto Update Service]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{297CA8DB-3797-4327-A636-0B4577DEC727}"="v2.0|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Private|App=C:\Program Files\Soluto\SolutoCleanup.exe|Name=Soluto Cleanup|Edge=FALSE|"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{1FF35979-F546-4B6C-8145-C9252396A77F}"="v2.0|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Private|App=C:\Program Files\Soluto\SolutoCleanup.exe|Name=Soluto Cleanup|Edge=FALSE|"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{35897003-7FA5-4022-98D3-CE8234788680}"="v2.0|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Private|App=C:\Program Files\Soluto\Soluto.exe|Name=Soluto Tray|Edge=FALSE|"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{471088C2-2421-4DB0-8374-4F0D3473A495}"="v2.0|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Private|App=C:\Program Files\Soluto\Soluto.exe|Name=Soluto Tray|Edge=FALSE|"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{4F9D7C53-5DB1-4D97-B8C9-B5DD25DF6383}"="v2.0|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Private|App=C:\Program Files\Soluto\SolutoService.exe|Name=Soluto Service|Edge=FALSE|"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{76FE9453-AC4F-4BB9-A4B7-C5514DF68762}"="v2.0|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Private|App=C:\Program Files\Soluto\SolutoService.exe|Name=Soluto Service|Edge=FALSE|"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{032AEE9E-7CAB-4AEE-B80A-822AEC2ACF4E}"="v2.0|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Private|App=C:\Program Files\Soluto\SolutoConsole.exe|Name=Soluto Console|Edge=FALSE|"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{9B513AB4-E9C2-4797-B6DF-A7434954156B}"="v2.0|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Private|App=C:\Program Files\Soluto\SolutoConsole.exe|Name=Soluto Console|Edge=FALSE|"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{21AFC349-A607-43C8-A786-DCE345461BC0}"="v2.0|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Private|App=C:\Program Files\Soluto\SolutoUpdateService.exe|Name=Soluto Update Service|Edge=FALSE|"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{1DB0C885-09F7-4C74-B48C-2B8397579F5C}"="v2.0|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Private|App=C:\Program Files\Soluto\SolutoUpdateService.exe|Name=Soluto Update Service|Edge=FALSE|"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\Soluto]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\Soluto]
"Description"="Soluto Mini-Filter Driver"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\Soluto]
"DisplayName"="Soluto"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\Soluto]
"ImagePath"="system32\DRIVERS\Soluto.sys"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\Soluto\Instances]
"DefaultInstance"="Soluto Instance"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\Soluto\Instances\Soluto Instance]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\SolutoService]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\SolutoService]
"ImagePath"=""C:\Program Files\Soluto\SolutoService.exe""
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\SolutoService]
"DisplayName"="Soluto PCGenome Core Service"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\SolutoService]
"Description"="Soluto PCGenome Core Service"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SolutoService]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\SolutoService]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SOLUTO]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SOLUTO\0000]
"Service"="Soluto"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SOLUTO\0000]
"DeviceDesc"="Soluto"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SOLUTO\0000\Control]
"ActiveService"="Soluto"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Eventlog\Application\Soluto PC-Genome Service]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Eventlog\Application\Soluto Update Service]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{297CA8DB-3797-4327-A636-0B4577DEC727}"="v2.0|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Private|App=C:\Program Files\Soluto\SolutoCleanup.exe|Name=Soluto Cleanup|Edge=FALSE|"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{1FF35979-F546-4B6C-8145-C9252396A77F}"="v2.0|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Private|App=C:\Program Files\Soluto\SolutoCleanup.exe|Name=Soluto Cleanup|Edge=FALSE|"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{35897003-7FA5-4022-98D3-CE8234788680}"="v2.0|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Private|App=C:\Program Files\Soluto\Soluto.exe|Name=Soluto Tray|Edge=FALSE|"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{471088C2-2421-4DB0-8374-4F0D3473A495}"="v2.0|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Private|App=C:\Program Files\Soluto\Soluto.exe|Name=Soluto Tray|Edge=FALSE|"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{4F9D7C53-5DB1-4D97-B8C9-B5DD25DF6383}"="v2.0|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Private|App=C:\Program Files\Soluto\SolutoService.exe|Name=Soluto Service|Edge=FALSE|"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{76FE9453-AC4F-4BB9-A4B7-C5514DF68762}"="v2.0|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Private|App=C:\Program Files\Soluto\SolutoService.exe|Name=Soluto Service|Edge=FALSE|"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{032AEE9E-7CAB-4AEE-B80A-822AEC2ACF4E}"="v2.0|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Private|App=C:\Program Files\Soluto\SolutoConsole.exe|Name=Soluto Console|Edge=FALSE|"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{9B513AB4-E9C2-4797-B6DF-A7434954156B}"="v2.0|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Private|App=C:\Program Files\Soluto\SolutoConsole.exe|Name=Soluto Console|Edge=FALSE|"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{21AFC349-A607-43C8-A786-DCE345461BC0}"="v2.0|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Private|App=C:\Program Files\Soluto\SolutoUpdateService.exe|Name=Soluto Update Service|Edge=FALSE|"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{1DB0C885-09F7-4C74-B48C-2B8397579F5C}"="v2.0|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Private|App=C:\Program Files\Soluto\SolutoUpdateService.exe|Name=Soluto Update Service|Edge=FALSE|"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Soluto]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Soluto]
"Description"="Soluto Mini-Filter Driver"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Soluto]
"DisplayName"="Soluto"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Soluto]
"ImagePath"="system32\DRIVERS\Soluto.sys"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Soluto\Instances]
"DefaultInstance"="Soluto Instance"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Soluto\Instances\Soluto Instance]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Soluto\Enum]
"0"="Root\LEGACY_SOLUTO\0000"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SolutoService]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SolutoService]
"ImagePath"=""C:\Program Files\Soluto\SolutoService.exe""
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SolutoService]
"DisplayName"="Soluto PCGenome Core Service"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SolutoService]
"Description"="Soluto PCGenome Core Service"
[HKEY_USERS\S-1-5-21-3876124531-570904608-61060185-1003\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\soluto.com]

Searching for " "
[HKEY_CURRENT_USER\Software\Lenovo\AMSG]
"SerialNumber"="L3YT079 "
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Uninstall\JNLP]
"Comments"="JNLP "
[HKEY_LOCAL_MACHINE\SOFTWARE\PC-Doctor\PC-Doctor for Windows]
"system_summary_warranty_serial"="L3YT079 "
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\WpdBusEnumRoot\UMB\2&37c186b&1&STORAGE#VOLUME#1&19F7E59C&0&_??_USBSTOR#DISK&VEN_TEAC&PROD_MINI&REV_1.00#0 9121200000234&0#]
"DeviceDesc"="MINI "
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\WpdBusEnumRoot\UMB\2&37c186b&1&STORAGE#VOLUME#1&19F7E59C&0&_??_USBSTOR#DISK&VEN_TEAC&PROD_MINI&REV_1.00#1 0082600000948&0#]
"DeviceDesc"="MINI "
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\WpdBusEnumRoot\UMB\2&37c186b&1&STORAGE#VOLUME#1&19F7E59C&0&_??_USBSTOR#DISK&VEN_TEAC&PROD_MINI&REV_1.00#0 9121200000234&0#]
"DeviceDesc"="MINI "
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\WpdBusEnumRoot\UMB\2&37c186b&1&STORAGE#VOLUME#1&19F7E59C&0&_??_USBSTOR#DISK&VEN_TEAC&PROD_MINI&REV_1.00#1 0082600000948&0#]
"DeviceDesc"="MINI "
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\WpdBusEnumRoot\UMB\2&37c186b&1&STORAGE#VOLUME#1&19F7E59C&0&_??_USBSTOR#DISK&VEN_TEAC&PROD_MINI&REV_1. 00#09121200000234&0#]
"DeviceDesc"="MINI "
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\WpdBusEnumRoot\UMB\2&37c186b&1&STORAGE#VOLUME#1&19F7E59C&0&_??_USBSTOR#DISK&VEN_TEAC&PROD_MINI&REV_1. 00#10082600000948&0#]
"DeviceDesc"="MINI "
[HKEY_USERS\S-1-5-21-3876124531-570904608-61060185-1003\Software\Lenovo\AMSG]
"SerialNumber"="L3YT079 "
[HKEY_USERS\S-1-5-21-3876124531-570904608-61060185-1003\Software\Microsoft\Windows\CurrentVersion\Uninstall\JNLP]
"Comments"="JNLP "

-= EOF =-

schrauber · 24.06.2013, 11:13

Hi,

Fixen mit OTL

Starte bitte die OTL.exe.
Kopiere nun den Inhalt aus der Codebox in die Textbox.

Code:

ATTFilter

:files
C:\Program Files\SoftwareUpdater
:reg
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files\SoftwareUpdater\"=-
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\SystemStoreService]
[HKEY_LOCAL_MACHINE\SOFTWARE\Avira\AntiVir Desktop\Overwrite_Keys\HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\userinit]
"UseAsDefault"="C:\Windows\system32\userinit.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon]
"Userinit"="C:\Windows\system32\userinit.exe"
:Commands
[emptytemp]

Solltest du deinen Benutzernamen z. B. durch "*****" unkenntlich gemacht haben, so füge an entsprechender Stelle deinen richtigen Benutzernamen ein. Andernfalls wird der Fix nicht funktionieren.
Schließe bitte nun alle Programme.
Klicke nun bitte auf den Fix Button.
OTL kann gegebenfalls einen Neustart verlangen. Bitte dies zulassen.
Nach dem Neustart findest Du ein Textdokument auf deinem Desktop.
( Auch zu finden unter C:\_OTL\MovedFiles\<Uhrzeit_Datum>.txt)
Kopiere nun den Inhalt hier in Deinen Thread

bumpf · 24.06.2013, 11:38

anbei die OTL-Datei:

All processes killed
========== FILES ==========
C:\Program Files\SoftwareUpdater folder moved successfully.
========== REGISTRY ==========
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders\\C:\Program Files\SoftwareUpdater\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\SystemStoreService\ deleted successfully.
Unable to set value : HKEY_LOCAL_MACHINE\SOFTWARE\Avira\AntiVir Desktop\Overwrite_Keys\HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\userinit\\"UseAsDefault"|"C:\Windows\system32\userinit.exe" /E!
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\\"Userinit"|"C:\Windows\system32\userinit.exe" /E : value set successfully!
========== COMMANDS ==========

[EMPTYTEMP]

User: Administrator
->Temp folder emptied: 0 bytes

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Oli
->Temp folder emptied: 9288367 bytes
->Temporary Internet Files folder emptied: 1180414 bytes
->Java cache emptied: 810 bytes
->Flash cache emptied: 760 bytes

User: Public
->Temp folder emptied: 0 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 1319741 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 17878933 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 28,00 mb

OTL by OldTimer - Version 3.2.69.0 log created on 06242013_122709

Files\Folders moved on Reboot...

PendingFileRenameOperations files...

Registry entries deleted on Reboot...

schrauber · 24.06.2013, 12:28

Reboot. Kommen noch Meldungen?

bumpf · 24.06.2013, 15:44

Es kommen keine Meldungen mehr!! :-))
Bei der Gelegenheit noch ein paar Fragen, ggfs. können diese zügig beantwortet bzw. behoben werden:

- Meine Lenovo ThinkVantage Toolbox (PC-Doctor) meldet bereits seit 13.01.2010, dass zwei Fehler erkannt wurden, wenn ich das Programm starten möchte (mit Doppelklick), öffnet das Programm nicht und der Programmstart bricht ohne Meldung ab!!??
- Ich hatte 2-3 mal Microsoft Office Testversionen heruntergeladen, welche inzwischen abgelaufen sind und ich diese nicht mehr nutzen kann. Ich denke, die Programme sind noch auf dem PC gespeichert, kann diese aber nicht eindeutig identifizieren und will nicht notwendige Programme "aus Versehen" löschen/deinstallieren. Welche kann ich denn löschen? Zudem habe ich Open Office installiert, das Öffnen vieler Dateien (z.B. Powerpoint-Dateien) funktioniert allerdings nicht??
- Bis vor ein paar Monaten hatte ich auf der rechten Seite meines Desktops Info- bzw. Vorschaufenster (z.B. Kalender, News-Ticker) installiert (erfolgte automatisch mit Auslieferung des PC), welche nicht mehr ersichtlich sind, ich finde diese allerdings nicht mehr!!
- Ich möchte mir eine gut funktionierende Antivirensoftware zulegen, da ich mich mit dem kostenlosen Avira Antivirenprogramm nicht besonders sicher fühle, hast Du mir da einen Tipp? Reicht die Windows-Firewall aus oder empfielhlt sich da auch ein anderer ggfs. zusätzlicher Anbieter?

Ich hoffe, diese zusätzlichen Probleme bzw. Fragen sind nicht unverschämt, aber ich kenn mich einfach nicht besonders gut aus und finde Eure Unterstützung spitze!!

Vielen Dank nochmals, viele Grüße

Oli

Ca. nach einer halben Stunde nach dem Neustart des PC kam jetzt doch noch die Meldung des Soluto-Programms: "maintenance crashed - No solution yet" !!

schrauber · 24.06.2013, 16:30

Zitat:

- Meine Lenovo ThinkVantage Toolbox (PC-Doctor) meldet bereits seit 13.01.2010, dass zwei Fehler erkannt wurden, wenn ich das Programm starten möchte (mit Doppelklick), öffnet das Programm nicht und der Programmstart bricht ohne Meldung ab!!??

Deinstalliern, neu installieren. oder noch besser: deinstallieren, neu installieren vergessen

Zitat:

- Ich hatte 2-3 mal Microsoft Office Testversionen heruntergeladen, welche inzwischen abgelaufen sind und ich diese nicht mehr nutzen kann. Ich denke, die Programme sind noch auf dem PC gespeichert, kann diese aber nicht eindeutig identifizieren und will nicht notwendige Programme "aus Versehen" löschen/deinstallieren. Welche kann ich denn löschen? Zudem habe ich Open Office installiert, das Öffnen vieler Dateien (z.B. Powerpoint-Dateien) funktioniert allerdings nicht??

Ebenso, deinstallieren und neu installieren. Für OpenOffice gibt es noch Addons zum nachinstallieren. Bei Office steht es eigentlich dabei, da würd ich aber eh alles deinstallieren, ausser du hast eine Version gekauft.

Zitat:

Bis vor ein paar Monaten hatte ich auf der rechten Seite meines Desktops Info- bzw. Vorschaufenster (z.B. Kalender, News-Ticker) installiert (erfolgte automatisch mit Auslieferung des PC), welche nicht mehr ersichtlich sind, ich finde diese allerdings nicht mehr!!

Bei Windows 7 würd ich auf Sidebar tippen. Möglich dass ein ähnliches 3rd-Party-Tool installiert war. Da bin ich aber überfragt.

Zitat:

Ich möchte mir eine gut funktionierende Antivirensoftware zulegen, da ich mich mit dem kostenlosen Avira Antivirenprogramm nicht besonders sicher fühle, hast Du mir da einen Tipp? Reicht die Windows-Firewall aus oder empfielhlt sich da auch ein anderer ggfs. zusätzlicher Anbieter?

Im Allgemeinen reicht die Firewall von Windows, wenn Du hinter einem Router sitzt.
Wenns kostenlos sein soll, Avast, wenn es bissl Geld kosten darf, Emsisoft.

Zitat:

Ich hoffe, diese zusätzlichen Probleme bzw. Fragen sind nicht unverschämt, aber ich kenn mich einfach nicht besonders gut aus und finde Eure Unterstützung spitze!!

Wo ich ne Antwort hab helf ich auch gern

Zitat:

Ca. nach einer halben Stunde nach dem Neustart des PC kam jetzt doch noch die Meldung des Soluto-Programms: "maintenance crashed - No solution yet" !!

Du bist der 5te oder so mit dem Stress. Brauchst Du Soluto eigentlich? Wenn nicht, deinstallieren und Ruhe ist.

bumpf · 24.06.2013, 17:26

- Bzgl. der Deinstallation der Microsoft Office Programme: Kann ich alle Programme, die mit "Microsoft" beginnen deinstallieren?? Ebenso den "Business Contact Manager für Outlook 2007"? Anbei die Übersicht der installierten Programme (aus CCCleaner):

Access Help 15.08.2008 1,64MB 2.00
Adobe Flash Player 11 ActiveX Adobe Systems Incorporated 17.06.2013 11.7.700.224
Adobe Reader X (10.1.7) - Deutsch Adobe Systems Incorporated 18.06.2013 121,8MB 10.1.7
Agere Systems HDA Modem Agere Systems 15.08.2008
Apple Application Support Apple Inc. 19.05.2013 64,7MB 2.3.4
Apple Mobile Device Support Apple Inc. 02.03.2013 24,7MB 6.1.0.13
Apple Software Update Apple Inc. 19.05.2012 2,38MB 2.1.3.127
Avira Free Antivirus Avira 23.06.2013 62,6MB 13.0.0.3736
Bonjour Apple Inc. 19.05.2012 1,03MB 3.0.0.10
Broadcom Gigabit Integrated Controller Broadcom Corporation 15.08.2008 0,74MB 10.15.06
Business Contact Manager für Outlook 2007 SP2 Microsoft Corporation 17.06.2009 31,5MB 3.0.8619.1
CCleaner Piriform 28.12.2009 2,88MB 2.27
Client Security - Password Manager Lenovo Group Limited 30.12.2008 105,6MB 8.10.0006.00
Corel Snapfire Plus Corel Corporation 15.08.2008 113,9MB 1.10.0000
Diskeeper Home Diskeeper Corporation 15.08.2008 12,1MB 9.0.545
EPSON-Drucker-Software 08.10.2011
Ergänzung zu Lenovo Care 15.08.2008 1,88MB 2.00
Haufe iDesk-Service Haufe 27.12.2009 44,9MB 8.08.20.5622
Help Center 15.08.2008 2,05MB 2.00c
iCloud Apple Inc. 23.04.2013 48,4MB 2.1.2.8
Integrated Camera Sonix 15.08.2008 3,61MB 5.8.8.012
Intel(R) Graphics Media Accelerator Driver Intel Corporation 03.01.2011
Intel(R) TV Wizard Intel Corporation 03.01.2011 48,9MB
Intel® Matrix Storage Manager Intel Corporation 03.01.2011 3,77MB
Internet Explorer (Enable DEP) 21.02.2013 4,41MB
iTunes Apple Inc. 09.06.2013 186,4MB 11.0.4.4
Java 7 Update 25 Oracle 18.06.2013 131,0MB 7.0.250
JNLP JNLP 23.05.2013
Lenovo Bluetooth with Enhanced Data Rate Software 6.0.1.4900 Lenovo. 15.08.2008 40,8MB 6.0.1.4900
Lenovo Care 15.08.2008 1,93MB 2.10
Lenovo Care System Update Lenovo 17.09.2012 27,2MB 3.15.0017
Lenovo Fingerprint Software Ihr Firmenname 15.08.2008 15,9MB 1.1.0.21
Lenovo Multimedia Center 15.08.2008 3,23MB
Lenovo Registration Lenovo - Leader Technologies 15.08.2008 0,81MB
Lenovo System Interface Driver 30.12.2008 4,00KB 1.01
Lenovo ThinkVantage Toolbox PC-Doctor, Inc. 12.01.2010 116,8MB 6.0.5449.37
Lexware Info Service Haufe-Lexware GmbH & Co.KG 09.05.2013 13,7MB 2.90.00.0009
Maintenance Manager 15.08.2008 6,57MB 3.0.5.0
Message Center 15.08.2008 2,02MB 2.01b
Message Center Plus Lenovo Group Limited 30.05.2009 1,70MB 2.0.0012.00
Microsoft .NET Framework 3.5 Language Pack SP1 - DEU Microsoft Corporation 17.06.2009 37,0MB
Microsoft .NET Framework 3.5 SP1 Microsoft Corporation 21.05.2009 37,0MB
Microsoft .NET Framework 4 Client Profile Microsoft Corporation 02.01.2011 120,3MB 4.0.30319
Microsoft .NET Framework 4 Client Profile DEU Language Pack Microsoft Corporation 02.01.2011 24,5MB 4.0.30319
Microsoft Fix it Center Microsoft Corporation 18.07.2012 21,8MB 1.0.0100
Microsoft Office 2003 Web Components Microsoft Corporation 13.12.2012 21,7MB 11.0.8003.0
Microsoft Office 2007 Primary Interop Assemblies Microsoft Corporation 17.12.2011 13,7MB 12.0.4518.1014
Microsoft Office File Validation Add-In Microsoft Corporation 15.09.2011 7,95MB 14.0.5130.5003
Microsoft Office Live Add-in 1.5 Microsoft Corporation 23.06.2012 0,49MB 2.0.4024.1
Microsoft Office Outlook Connector Microsoft Corporation 03.01.2011 3,36MB 14.0.5118.5000
Microsoft Office Small Business Connectivity Components Microsoft Corporation 15.08.2008 0,15MB 2.0.7024.0
Microsoft Outlook 2010 Microsoft Corporation 23.06.2012 1.036,8MB 14.0.6029.1000
Microsoft Silverlight Microsoft Corporation 12.03.2013 23,8MB 5.1.20125.0
Microsoft SQL Server 2005 Microsoft Corporation 15.08.2008 66,7MB
Microsoft SQL Server 2005 Compact Edition [ENU] Microsoft Corporation 03.01.2011 1,74MB 3.1.0000
Microsoft SQL Server Native Client Microsoft Corporation 23.03.2011 2,63MB 9.00.5000.00
Microsoft SQL Server VSS Writer Microsoft Corporation 02.07.2011 0,68MB 9.00.5000.00
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 Microsoft Corporation 28.07.2009 0,25MB 8.0.50727.4053
Microsoft Visual C++ 2005 Redistributable Microsoft Corporation 20.06.2011 0,29MB 8.0.56336
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 Microsoft Corporation 28.07.2009 0,19MB 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 Microsoft Corporation 20.03.2009 0,58MB 9.0.30729
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 Microsoft Corporation 02.01.2011 0,58MB 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 Microsoft Corporation 20.06.2011 0,58MB 9.0.30729.6161
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 Microsoft Corporation 19.10.2011 16,5MB 10.0.40219
Mozilla Maintenance Service Mozilla 15.05.2013 0,22MB 17.0.6
Mozilla Thunderbird 17.0.6 (x86 de) Mozilla 15.05.2013 42,2MB 17.0.6
MSXML 4.0 SP2 (KB954430) Microsoft Corporation 13.12.2008 1,28MB 4.20.9870.0
MSXML 4.0 SP2 (KB973688) Microsoft Corporation 25.11.2009 1,34MB 4.20.9876.0
NAVIGON Fresh 3.3.1 NAVIGON 25.06.2011 66,9MB 3.3.1
Network Magic Pure Networks 15.08.2008 28,1MB 4.1.7082.0
OpenOffice.org 3.4.1 Apache Software Foundation 07.02.2013 331,7MB 3.41.9593
PM Driver Lenovo 15.08.2008 0,37MB 0.63.1.6
Präsentationsdirektor 03.01.2011 1,97MB 4.08
QuickSteuer 2009 SE Lexware 28.12.2009 171,9MB 15.00.00.0033
QuickSteuer 2010 SE Haufe-Lexware GmbH & Co. KG 01.04.2012 416,7MB 16.14.00.0001
QuickSteuer 2011 Haufe-Lexware GmbH & Co.KG 25.03.2013 445,0MB 17.08.00.0006
QuickSteuer 2012 Haufe-Lexware GmbH & Co.KG 11.05.2013 611,6MB 18.09.00.0003
QuickSteuer 2013 Haufe-Lexware GmbH & Co.KG 11.05.2013 619,5MB 19.06.00.0003
QuickSteuer Wissens-Center 2009 Haufe Mediengruppe 27.12.2009 15.0.1.0
QuickTime Apple Inc. 26.05.2013 74,7MB 7.74.80.86
Realtek High Definition Audio Driver Realtek Semiconductor Corp. 15.08.2008 14,2MB 6.0.1.5391
Registry patch for Windows Vista USB S3 PM Enablement 15.08.2008 4,00KB 1.00
Rescue and Recovery Lenovo Group Limited 30.12.2008 101,7MB 4.21.0015.00
RICOH R5C83x/84x Flash Media Controller Driver Ver.3.33 15.08.2008 1,67MB 3.33.01
Soluto Soluto 13.09.2012 28,1MB 1.3.979.0
Synaptics Pointing Device Driver Synaptics 15.08.2008 12,8MB 9.0.3.0
System Migration Assistant Lenovo Group Limited. 17.09.2012 32,1MB 6.00.0009
ThinkVantage Access Connections Lenovo 07.02.2009 76,7MB 5.12
Unterstützungsdateien für das Microsoft SQL Server-Setup (Englisch) Microsoft Corporation 02.07.2011 30,7MB 9.00.5000.00
Windows Live Mesh ActiveX control for remote connections Microsoft Corporation 03.01.2011 5,58MB 15.4.5722.2
WordPerfect Office X3 Corel Corporation 15.08.2008 282,4MB

- wegen Soluto-Meldung: Für was wird denn das maintenance-Programm benötigt, habe zwei derartige Programme auf meinem Rechner: Maintenance Manager und Mozilla Maintenance Service?

- Wegen Antivirensoftware: Die Emsisoft kostet nach 3 Testmonaten 40.- EUR, das ist ganz schön happig, namhafte Programme wie Norton Internet Security 2013 (20.- EUR), F-Secure Anti-Virus 2012 (13.- EUR) bzw. F-Secure InternetSecurity 2012 (30.- EUR) oder Kaspersky Internet Security 2013 (28.- EUR) bzw. Kaspersky Anti Virus 2013 (23.- EUR) sind da deutlich günstiger, sind diese bzw. welches davon auch zu empfehlen? Wobei wenn von Norton das 360 empfehlenswert ist, kostet dieses auch 40.- EUR.

- Soll ich nun die Bereinigungsprogramme, welche auf dem Desktop gespeichert sind, löschen?

schrauber · 24.06.2013, 18:44

Zitat:

namhafte Programme wie Norton Internet Security 2013

dann brauchst auch gar nix installieren

. Norton is scheisse.

Hast Du irgendwas von Office 2003/2007 oder 2010 gekauft? Wenn nicht und Du nutzt es eh nit, kannste alles was Office is deinstallieren.

Soluto ist einzeln aufgeführt, das deinstallieren.

23.06.2013, 16:21	#33
schrauber /// the machine /// TB-Ausbilder	System Care Antivirus beseitigen Dann den Rest bitte __________________ __________________

23.06.2013, 20:27	#35
schrauber /// the machine /// TB-Ausbilder	System Care Antivirus beseitigen Noch Probleme? __________________ gruß, schrauber *Proud Member of UNITE and ASAP since 2009* Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM!

24.06.2013, 12:28	#41
schrauber /// the machine /// TB-Ausbilder	System Care Antivirus beseitigen Reboot. Kommen noch Meldungen? __________________ gruß, schrauber *Proud Member of UNITE and ASAP since 2009* Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM!

System Care Antivirus beseitigen

Log-Analyse und Auswertung: System Care Antivirus beseitigen