![]() |
Plagegeister aller Art und deren Bekämpfung: IE10 unter Win 7 (64bit) crashed neuerdings bei jedem StartWindows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
![]() |
![]() | #1 |
| ![]() IE10 unter Win 7 (64bit) crashed neuerdings bei jedem Start Hallo liebe Board-Community! seit einigen Tagen kann mein IE10 (unter Windows 7 64bit) nicht mehr gestartet werden. Ich kann es nicht genau eingrenzen ob bzw. wann er zuletzt funktionierte, weil ich üblicherweise einen anderen Browser benutze. Ich hatte vor zwei tagen verschiedene neue Treiber und automatische Windows Updates wurden installiert, aber auch shark007 Codec-Pack was diverses zeugs ungefragt mitinstaiierte :-( Ich kann daher nicht genau eingrenzen, was zu dem Problem geführt hat. Es äußert sich so, dass der Internet Explorer beim Start das Popup bringt "Internet Explorer funktioniert nicht mehr - das Programm wird aufgrund eines Problems nicht richtig ausgeführt....". Wenn ich den IE10 deinstalliere (das entsprechende Update entferne) wird wieder IE9 installiert und der funktioniert fehlerfrei. Sobald man aber wieder den IE10 installiert, tritt das Problem erneut auf. IE 10 ohne add-ons zu starten bringt nichts. Wenn ich aber im abgesicherten Modus starte läuft der IE 10 wiederum problemlos. Es muss also irgendetwas beim Systemstart geladen werden was das Problem verursacht. Wie kann ich das Problem näher eingrenzen und beheben? Im angehängten Zipfile findet ihr die mit OTL erstellten OTL.Txt und Extras.Txt sowie ein mit GMER erstelltes gmer.log Schöne Grüße mutz01 |
![]() | #2 |
/// the machine /// TB-Ausbilder ![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() | ![]() IE10 unter Win 7 (64bit) crashed neuerdings bei jedem Start hi,
__________________Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop: ![]() (Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
__________________ |
![]() | #3 |
| ![]() IE10 unter Win 7 (64bit) crashed neuerdings bei jedem Start Hallo Schrauber,
__________________vielen Dank für die superschnelle Antwort. Hier die beiden angefragten Logs FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 09-07-2013 01 Ran by ******* (administrator) on 09-07-2013 18:04:12 Running from C:\Users\*******\Desktop Windows 7 Professional Service Pack 1 (X64) OS Language: German Standard Internet Explorer Version 10 Boot Mode: Normal ==================== Processes (Whitelisted) ================= (Lenovo.) C:\Windows\system32\ibmpmsvc.exe (DisplayLink Corp.) C:\Program Files\DisplayLink Core Software\DisplayLinkManager.exe (Logitech, Inc.) C:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.exe (DisplayLink Corp.) C:\Program Files\DisplayLink Core Software\DisplayLinkUserAgent.exe (Microsoft Corporation) C:\Windows\system32\WLANExt.exe (Lenovo Group Limited) C:\Program Files\LENOVO\HOTKEY\TPHKSVC.exe (Lenovo Group Limited) C:\Program Files\LENOVO\HOTKEY\TPHKLOAD.exe (Lenovo) C:\Program Files (x86)\Lenovo\Access Connections\AcPrfMgrSvc.exe (Lenovo) C:\Program Files (x86)\Lenovo\Access Connections\AcSvc.exe (Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe (Broadcom Corporation.) C:\Program Files\ThinkPad\Bluetooth Software\btwdins.exe (Authentec Inc.) C:\Program Files\ThinkVantage Fingerprint Software\upeksvr.exe (Conexant Systems Inc.) C:\Windows\system32\CxAudMsg64.exe (DVBLogic) C:\Program Files (x86)\DVBLogic\DVBLink\dvblink_client.exe (Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe (Intel Corporation) C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe (Lenovo Group Limited) C:\Program Files\Lenovo\Communications Utility\CAMMUTE.exe (Lenovo Group Limited) C:\Program Files\LENOVO\HOTKEY\MICMUTE.exe (Lenovo Group Limited) C:\Program Files\Lenovo\Communications Utility\TPKNRSVC.exe (Lenovo Group Limited) C:\Program Files\Lenovo\Communications Utility\vcamsvc.exe (Lenovo Group Limited) C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe (Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe () C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe (Conexant Systems, Inc.) C:\Windows\SysWOW64\SAsrv.exe (Memeo) C:\Program Files (x86)\Seagate\Seagate Dashboard\SeagateDashboardService.exe (TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe (Data Perceptions / PowerProgrammer) C:\Program Files (x86)\Lenovo\MobileAccess\WebUpdateSvc4.exe (Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE (Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe (Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe (Intel Corporation) C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe (Intel(R) Corporation) C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe (Microsoft Corporation) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Macheen) C:\Program Files (x86)\Lenovo\MobileAccess\MacheenService.exe (Lenovo Group Limited) C:\Program Files (x86)\Lenovo\Screen Reading Optimizer\SROSVC.exe (Lenovo Group Limited) C:\Program Files (x86)\Common Files\Lenovo\tvt_reg_monitor_svc.exe (Ericsson AB) C:\Program Files (x86)\Mobile Broadband drivers\WMCore\mini_WMCore.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (Lenovo Group Limited) C:\PROGRA~1\LENOVO\VIRTSCRL\virtscrl.exe (TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer.exe (Lenovo Group Limited) C:\PROGRA~1\Lenovo\HOTKEY\TPONSCR.EXE (Lenovo Group Limited) C:\PROGRA~1\Lenovo\HOTKEY\SHTCTKY.EXE (Lenovo Group Limited) C:\PROGRA~1\Lenovo\HOTKEY\tpnumlkd.exe (TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version8\tv_w32.exe (TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version8\tv_x64.exe (Lenovo.) C:\Windows\System32\TpShocks.exe (Lenovo Group Limited) C:\Program Files\Lenovo\Communications Utility\TpKnrres.exe (Lenovo Group Limited) C:\Program Files\Lenovo\AutoLock\ALCKRESI.exe (Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe (Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE () C:\Program Files (x86)\Lion\Lion.exe (Eye-Fi, Inc.) C:\Program Files (x86)\Eye-Fi\Helper\EyeFiHelper.exe (ACD Systems International Inc.) C:\Program Files (x86)\Common Files\ACD Systems\DE\DevDetect.exe (Broadcom Corporation.) C:\Program Files\ThinkPad\Bluetooth Software\BTTray.exe (Docking Station) C:\Program Files (x86)\Lenovo\igpxtskmgn64.exe (Logitech, Inc.) C:\Program Files\Logitech\SetPoint\SetPoint.exe (Lenovo) C:\Program Files (x86)\Lenovo\MobileAccess\MobileAccess.exe (DisplayLink Corp.) C:\Program Files\Lenovo Display Adapter\DisplayLinkLenovoSupport.exe () C:\Program Files\Logitech\SetPoint\x86\SetPoint32.exe (DisplayLink Corp.) C:\Program Files\DisplayLink Core Software\DisplayLinkUI.exe (Dropbox, Inc.) C:\Users\*******\AppData\Roaming\Dropbox\bin\Dropbox.exe () C:\Program Files (x86)\Gajim\bin\gajim.exe (Logitech, Inc.) C:\Program Files\Common Files\Logishrd\KHAL2\KHALMNPR.EXE (Lenovo Group Limited) C:\PROGRA~2\ThinkPad\UTILIT~1\SCHTASK.exe (Lenovo Group Limited) C:\Program Files (x86)\Lenovo\Screen Reading Optimizer\SRORest.exe (Broadcom Corporation.) C:\Program Files\ThinkPad\Bluetooth Software\BtStackServer.exe (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Broadcom Corporation.) C:\Program Files\ThinkPad\Bluetooth Software\Bluetooth Headset Helper.exe (Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office14\OUTLOOK.EXE (Lenovo) C:\Program Files (x86)\Lenovo\Access Connections\SvcGuiHlpr.exe (Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE (Microsoft Corporation) C:\Windows\sysWow64\SearchProtocolHost.exe (Microsoft Corporation) c:\program files\windows defender\MpCmdRun.exe (Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_7_700_224.exe (Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_7_700_224.exe (Lenovo) C:\Program Files (x86)\ThinkPad\Utilities\PWMDBSVC.EXE ==================== Registry (Whitelisted) ================== HKLM\...\Run: [TpShocks] - TpShocks.exe [380776 2011-03-29] (Lenovo.) HKLM\...\Run: [LENOVO.TPKNRRES] - C:\Program Files\Lenovo\Communications Utility\TPKNRRES.exe [290160 2012-06-01] (Lenovo Group Limited) HKLM\...\Run: [ALCKRESI.EXE] - C:\Program Files\Lenovo\AutoLock\ALCKRESI.EXE [386408 2011-09-27] (Lenovo Group Limited) HKLM\...\Run: [AcWin7Hlpr] - C:\Program Files (x86)\Lenovo\Access Connections\AcTBenabler.exe [63784 2013-03-18] (Lenovo) HKLM\...\Winlogon: [Userinit] C:\Windows\system32\userinit.exe, Winlogon\Notify\LBTWlgn: c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll (Logitech, Inc.) Winlogon\Notify\psfus: C:\Program Files\ThinkVantage Fingerprint Software\psqlpwd.dll (Authentec Inc.) HKCU\...\Run: [Skype] - "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun [17418928 2012-07-13] (Skype Technologies S.A.) HKCU\...\Run: [OfficeSyncProcess] - "C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE" [719672 2012-01-20] (Microsoft Corporation) HKCU\...\Run: [Lion] - "C:\Program Files (x86)\Lion\Lion.exe" [235579 2010-04-14] () HKCU\...\Run: [Google Update] - "C:\Users\*******\AppData\Local\Google\Update\GoogleUpdate.exe" /c [136176 2012-02-22] (Google Inc.) HKCU\...\Run: [Eye-Fi] - "C:\Program Files (x86)\Eye-Fi\Helper\EyeFiHelper.exe" [3961464 2011-12-22] (Eye-Fi, Inc.) HKCU\...\Run: [Device Detector] - DevDetect.exe -autorun [x] MountPoints2: {0f5bc55c-87d0-11e2-973a-60d819d5a7a5} - E:\Start.exe MountPoints2: {15568f21-533e-11e2-aa1b-60d819d5a7a5} - E:\AutoRun.exe MountPoints2: {15568f36-533e-11e2-aa1b-60d819d5a7a5} - E:\AutoRun.exe MountPoints2: {3ce48f40-6232-11e1-8159-028037ec0200} - F:\Start.bat MountPoints2: {9a35c050-f962-11e0-879a-806e6f6e6963} - Q:\LenovoQDrive.exe MountPoints2: {acc6c15a-8bac-11e1-a964-60d819d5a7a5} - E:\AutoRun.exe MountPoints2: {f98ca1c2-54f5-11e2-b21b-60d819d5a7a5} - E:\AutoRun.exe HKLM-x32\...\Run: [] - [x] HKLM-x32\...\Run: [Lenovo Registration] - C:\Program Files (x86)\Lenovo Registration\LenovoReg.exe /boot [4351712 2011-07-13] (Lenovo, Inc.) HKLM-x32\...\Run: [PWMTRV] - rundll32 C:\PROGRA~2\ThinkPad\UTILIT~1\PWMTR64V.DLL,PwrMgrBkGndMonitor [6001448 2013-03-18] (Lenovo Group Limited) HKLM-x32\...\Run: [MobileAccess] - C:\Program Files (x86)\Lenovo\MobileAccess\MobileAccess.exe -silentExitIfNotFirst [155864 2013-04-17] (Lenovo) HKU\Default\...\RunOnce: [mctadmin] - C:\Windows\System32\mctadmin.exe [97280 2009-07-14] (Microsoft Corporation) HKU\Default\...\RunOnce: [] - [x] HKU\Default\...\RunOnce: [Lenovoautoqdrive] - C:\PROGRA~2\Common~1\Lenovo\Lenovo~1\LenovoAutorunreg.exe /DRIVE=Q [159744 2009-03-24] () HKU\Default\...\RunOnce: [Lenovo.ShowBand] - C:\Program Files\Lenovo\SimpleTap DeskBand\ShowBand.exe /show [156000 2012-05-16] (Lenovo) HKU\Default User\...\RunOnce: [mctadmin] - C:\Windows\System32\mctadmin.exe [97280 2009-07-14] (Microsoft Corporation) HKU\Default User\...\RunOnce: [] - [x] HKU\Default User\...\RunOnce: [Lenovoautoqdrive] - C:\PROGRA~2\Common~1\Lenovo\Lenovo~1\LenovoAutorunreg.exe /DRIVE=Q [159744 2009-03-24] () HKU\Default User\...\RunOnce: [Lenovo.ShowBand] - C:\Program Files\Lenovo\SimpleTap DeskBand\ShowBand.exe /show [156000 2012-05-16] (Lenovo) Lsa: [Notification Packages] scecli C:\Program Files\ThinkVantage Fingerprint Software\psqlpwd.dll C:\Program Files\ThinkPad\Bluetooth Software\BtwProximityCP.dll ACGina Startup: C:\ProgramData\Start Menu\Programs\Startup\Bluetooth.lnk ShortcutTarget: Bluetooth.lnk -> C:\Program Files\ThinkPad\Bluetooth Software\BTTray.exe (Broadcom Corporation.) Startup: C:\ProgramData\Start Menu\Programs\Startup\igpxtskmgn.lnk ShortcutTarget: igpxtskmgn.lnk -> C:\Program Files (x86)\Lenovo\igpxtskmgn64.exe (Docking Station) Startup: C:\ProgramData\Start Menu\Programs\Startup\Logitech SetPoint.lnk ShortcutTarget: Logitech SetPoint.lnk -> C:\Program Files\Logitech\SetPoint\SetPoint.exe (Logitech, Inc.) Startup: C:\Users\*******\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk ShortcutTarget: Dropbox.lnk -> C:\Users\*******\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.) Startup: C:\Users\*******\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Gajim.lnk ShortcutTarget: Gajim.lnk -> C:\Program Files (x86)\Gajim\bin\gajim.exe () ==================== Internet (Whitelisted) ==================== HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/ BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~3\Office14\GROOVEEX.DLL (Microsoft Corporation) BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.) BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~3\Office14\URLREDIR.DLL (Microsoft Corporation) BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll No File BHO-x32: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~3\Office14\GROOVEEX.DLL (Microsoft Corporation) BHO-x32: Windows Live ID-Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.) BHO-x32: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated) BHO-x32: Skype Browser Helper - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~3\Office14\URLREDIR.DLL (Microsoft Corporation) Toolbar: HKLM-x32 - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated) DPF: HKLM-x32 {A6616B31-4860-41E2-98E3-CA7649AF172F} file:///F:/launch.ocx Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - No File Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies) Tcpip\Parameters: [DhcpNameServer] FireFox: ======== FF ProfilePath: C:\Users\*******\AppData\Roaming\Mozilla\Firefox\Profiles\vtnf0i9h.default FF user.js: detected! => C:\Users\*******\AppData\Roaming\Mozilla\Firefox\Profiles\vtnf0i9h.default\user.js FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_7_700_224.dll () FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.) FF Plugin: @microsoft.com/GENUINE - disabled No File FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20125.0\npctrl.dll ( Microsoft Corporation) FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~3\Office14\NPAUTHZ.DLL (Microsoft Corporation) FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_7_700_224.dll () FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll () FF Plugin-x32: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.) FF Plugin-x32: @Google.com/GoogleEarthPlugin - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google) FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 - C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll (Google, Inc.) FF Plugin-x32: @java.com/DTPlugin,version=10.25.2 - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation) FF Plugin-x32: @microsoft.com/GENUINE - disabled No File FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.20125.0\npctrl.dll ( Microsoft Corporation) FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~2\MICROS~3\Office14\NPAUTHZ.DLL (Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~3\Office14\NPSPWRAP.DLL (Microsoft Corporation) FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation) FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\\npGoogleUpdate3.dll (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\\npGoogleUpdate3.dll (Google Inc.) FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF Plugin HKCU: @talk.google.com/GoogleTalkPlugin - C:\Users\*******\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll (Google) FF Plugin HKCU: @talk.google.com/O1DPlugin - C:\Users\*******\AppData\Roaming\Mozilla\plugins\npo1d.dll (Google) FF Plugin HKCU: @talk.google.com/O3DPlugin - C:\Users\*******\AppData\Roaming\Mozilla\plugins\npgtpo3dautoplugin.dll () FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\*******\AppData\Local\Google\Update\\npGoogleUpdate3.dll (Google Inc.) FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\*******\AppData\Local\Google\Update\\npGoogleUpdate3.dll (Google Inc.) FF SearchPlugin: C:\Users\*******\AppData\Roaming\Mozilla\Firefox\Profiles\vtnf0i9h.default\searchplugins\babylon.xml FF SearchPlugin: C:\Users\*******\AppData\Roaming\Mozilla\Firefox\Profiles\vtnf0i9h.default\searchplugins\delta.xml FF Extension: United States English Spellchecker - C:\Users\*******\AppData\Roaming\Mozilla\Firefox\Profiles\vtnf0i9h.default\Extensions\en-US@dictionaries.addons.mozilla.org FF Extension: FireShot - C:\Users\*******\AppData\Roaming\Mozilla\Firefox\Profiles\vtnf0i9h.default\Extensions\{0b457cAA-602d-484a-8fe7-c1d894a011ba} FF Extension: IE Tab 2 (FF 3.6+) - C:\Users\*******\AppData\Roaming\Mozilla\Firefox\Profiles\vtnf0i9h.default\Extensions\{1BC9BA34-1EED-42ca-A505-6D2F1A935BBB} FF Extension: ColorZilla - C:\Users\*******\AppData\Roaming\Mozilla\Firefox\Profiles\vtnf0i9h.default\Extensions\{6AC85730-7D0F-4de0-B3FA-21142DD85326} FF Extension: firebug - C:\Users\*******\AppData\Roaming\Mozilla\Firefox\Profiles\vtnf0i9h.default\Extensions\firebug@software.joehewitt.com.xpi FF Extension: password.generator - C:\Users\*******\AppData\Roaming\Mozilla\Firefox\Profiles\vtnf0i9h.default\Extensions\password.generator@kolya.ca.xpi FF Extension: secureLogin - C:\Users\*******\AppData\Roaming\Mozilla\Firefox\Profiles\vtnf0i9h.default\Extensions\secureLogin@blueimp.net.xpi FF Extension: No Name - C:\Users\*******\AppData\Roaming\Mozilla\Firefox\Profiles\vtnf0i9h.default\Extensions\{3e9bb2a7-62ca-4efa-a4e6-f6f6168a652d}.xpi FF Extension: No Name - C:\Users\*******\AppData\Roaming\Mozilla\Firefox\Profiles\vtnf0i9h.default\Extensions\{64161300-e22b-11db-8314-0800200c9a66}.xpi FF Extension: No Name - C:\Users\*******\AppData\Roaming\Mozilla\Firefox\Profiles\vtnf0i9h.default\Extensions\{c45c406e-ab73-11d8-be73-000a95be3b12}.xpi FF Extension: No Name - C:\Users\*******\AppData\Roaming\Mozilla\Firefox\Profiles\vtnf0i9h.default\Extensions\{EF522540-89F5-46b9-B6FE-1829E2B572C6}.xpi FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} FF Extension: Java Console - C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA} FF Extension: Java Console - C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA} FF Extension: Default - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} FF HKLM-x32\...\Firefox\Extensions: [VIP1X@verisign.com] C:\Program Files (x86)\Symantec\VIP Access Client\ FF HKLM-x32\...\Firefox\Extensions: [VIP2X@verisign.com] C:\Program Files (x86)\Symantec\VIP Access Client\ Chrome: ======= CHR Extension: (Skype Click to Call) - C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\ CHR Extension: (DivX Plus Web Player HTML5 \u003Cvideo\u003E) - C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\nneajnkjbffgblleaoojgaacokifdkhm\ ==================== Services (Whitelisted) ================= S2 CLKMSVC10_38F51D56; C:\Program Files (x86)\CyberLink\PowerDVD10\NavFilter\kmsvc.exe [241648 2012-04-02] (CyberLink) S2 CLKMSVC10_9EC60124; C:\Program Files (x86)\CyberLink\PowerDVD9\NavFilter\kmsvc.exe [240112 2010-11-23] (CyberLink) R2 CxAudMsg; C:\Windows\system32\CxAudMsg64.exe [198784 2010-12-17] (Conexant Systems Inc.) R2 DisplayLinkService; C:\Program Files\DisplayLink Core Software\DisplayLinkManager.exe [9573736 2011-02-03] (DisplayLink Corp.) S3 DozeSvc; C:\Program Files (x86)\ThinkPad\Utilities\DZSVC64.EXE [320576 2013-03-18] (Lenovo.) R2 dvblink_client; C:\Program Files (x86)\DVBLogic\DVBLink\dvblink_client.exe [1213952 2011-12-06] (DVBLogic) R2 LENOVO.TVTVCAM; C:\Program Files\Lenovo\Communications Utility\vcamsvc.exe [179568 2012-06-01] (Lenovo Group Limited) R2 Lenovo.VIRTSCRLSVC; C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe [133992 2011-07-12] (Lenovo Group Limited) R2 MacheenService; C:\Program Files (x86)\Lenovo\MobileAccess\MacheenService.exe [32480 2013-04-17] (Macheen) S3 OpenVPNService; C:\Program Files (x86)\OpenVPN\bin\openvpnserv.exe [36366 2010-09-06] () R2 RichVideo; C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [244904 2010-09-06] () R2 SROSVC; C:\Program Files (x86)\Lenovo\Screen Reading Optimizer\SROSVC.exe [446800 2012-03-05] (Lenovo Group Limited) S3 SUService; C:\Program Files (x86)\Lenovo\System Update\SUService.exe [22376 2013-04-11] () R2 ThinkVantage Registry Monitor Service; C:\Program Files (x86)\Common Files\Lenovo\tvt_reg_monitor_svc.exe [1028096 2010-12-11] (Lenovo Group Limited) S3 TVT Backup Service; C:\Program Files (x86)\Lenovo\Rescue and Recovery\rrservice.exe [1475896 2010-12-11] (Lenovo Group Limited) R2 WebUpdate4; C:\Program Files (x86)\Lenovo\MobileAccess\WebUpdateSvc4.exe [278800 2013-01-16] (Data Perceptions / PowerProgrammer) R2 WMCoreService; C:\Program Files (x86)\Mobile Broadband drivers\WMCore\mini_WMCore.exe [648744 2011-08-12] (Ericsson AB) R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3342640 2012-08-23] (Intel® Corporation) ==================== Drivers (Whitelisted) ==================== S3 AX88772; C:\Windows\System32\DRIVERS\ax88772.sys [79360 2011-06-01] (ASIX Electronics Corp.) S3 btusb64v; C:\Windows\System32\drivers\btusb64v.sys [36688 2011-11-30] (BUFFALO INC.) S3 DisplayLinkUsbPort; C:\Windows\System32\DRIVERS\DisplayLinkUsbPort_5.6.30272.0.sys [17408 2012-02-28] (hxxp://libusb-win32.sourceforge.net) R3 dvblink_tuner; C:\Windows\System32\drivers\dvblink_tuner.sys [78184 2011-12-08] (DVBLogic) R3 ecnssndis; C:\Windows\System32\Drivers\wwuss64.sys [26664 2010-03-03] (Ericsson AB) R3 ecnssndisfltr; C:\Windows\System32\Drivers\wwussf64.sys [30248 2010-03-03] (Ericsson AB) R3 l36wgps; C:\Windows\System32\DRIVERS\l36wgps64.sys [101416 2011-07-01] (Ericsson AB) R3 Mbm3CBus; C:\Windows\System32\DRIVERS\Mbm3CBus.sys [419400 2011-04-29] (MCCI Corporation) R3 Mbm3DevMt; C:\Windows\System32\DRIVERS\Mbm3DevMt.sys [430664 2011-04-29] (MCCI Corporation) R3 Mbm3mdfl; C:\Windows\System32\DRIVERS\Mbm3mdfl.sys [19528 2011-04-29] (MCCI Corporation) R3 Mbm3Mdm; C:\Windows\System32\DRIVERS\Mbm3Mdm.sys [483400 2011-04-29] (MCCI Corporation) R3 NETwNs64; C:\Windows\System32\DRIVERS\Netwsw00.sys [11523072 2012-09-30] (Intel Corporation) R1 PHCORE; C:\Program Files\Lenovo\RapidBoot\PHCORE64.SYS [32104 2011-07-08] (Lenovo Group Limited) S3 pmxdrv; C:\Windows\system32\drivers\pmxdrv.sys [31152 2011-10-18] () S3 pmxdrv; C:\Windows\system32\drivers\pmxdrv.sys [31152 2011-10-18] () R3 SmbDrvI; C:\Windows\System32\DRIVERS\Smb_driver_Intel.sys [44344 2012-10-17] (Synaptics Incorporated) R2 smihlp2; C:\Program Files\ThinkVantage Fingerprint Software\smihlp.sys [13128 2011-05-30] (Authentec Inc.) R3 tvtvcamd; C:\Windows\System32\DRIVERS\tvtvcamd.sys [27432 2011-12-07] (ThinkVantage Communications Utility) R3 WwanUsbServ; C:\Windows\System32\DRIVERS\WwanUsbMp64.sys [268840 2011-08-12] (Ericsson AB) S3 ew_hwusbdev; system32\DRIVERS\ew_hwusbdev.sys [x] S3 huawei_cdcacm; system32\DRIVERS\ew_jucdcacm.sys [x] S3 huawei_enumerator; system32\DRIVERS\ew_jubusenum.sys [x] ==================== NetSvcs (Whitelisted) =================== ==================== One Month Created Files and Folders ======== 2013-07-09 18:03 - 2013-07-09 18:03 - 01776221 ____A (Farbar) C:\Users\*******\Desktop\FRST64.exe 2013-07-09 18:03 - 2013-07-09 18:03 - 00000000 ____D C:\FRST 2013-07-09 17:33 - 2013-07-09 17:33 - 00037441 ____A C:\Users\*******\Desktop\logs.zip 2013-07-09 17:15 - 2013-07-09 17:33 - 00010567 ____A C:\Users\*******\Desktop\gmer.log 2013-07-09 16:59 - 2013-07-09 16:59 - 00377856 ____A C:\Users\*******\Desktop\gmer_2.1.19163.exe 2013-07-09 16:55 - 2013-07-09 16:55 - 00000474 ____A C:\Users\*******\Desktop\defogger_disable.log 2013-07-09 16:55 - 2013-07-09 16:55 - 00000190 ____A C:\Users\*******\Desktop\sympton.txt 2013-07-09 16:55 - 2013-07-09 16:55 - 00000000 ____A C:\Users\*******\defogger_reenable 2013-07-09 16:54 - 2013-07-09 16:54 - 00050477 ____A C:\Users\*******\Desktop\Defogger.exe 2013-07-09 16:50 - 2013-07-09 16:53 - 00122754 ____A C:\Users\*******\Desktop\Extras.Txt 2013-07-09 16:49 - 2013-07-09 17:21 - 00111102 ____A C:\Users\*******\Desktop\OTL.Txt 2013-07-09 16:44 - 2013-07-09 16:44 - 00602112 ____A (OldTimer Tools) C:\Users\*******\Desktop\OTL(1).exe 2013-07-09 16:44 - 2013-07-09 16:44 - 00000120 ____A C:\Users\*******\Desktop\WlA05T5E.htm 2013-07-09 16:43 - 2013-07-09 16:43 - 00602112 ____A (OldTimer Tools) C:\Users\*******\Downloads\OTL.exe 2013-07-09 15:52 - 2013-07-09 15:53 - 00000000 ____D C:\Users\*******\AppData\Local\Avg2013 2013-07-09 15:38 - 2013-07-09 17:38 - 00000000 ____D C:\Windows\pss 2013-07-09 14:43 - 2013-07-09 14:53 - 00000134 ____A C:\Users\*******\Desktop\Internet Explorer-Problembehebung.url 2013-07-09 14:36 - 2013-07-09 14:36 - 19233792 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 15404544 ____A (Microsoft Corporation) C:\Windows\System32\ieframe.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 14327808 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 13760512 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 03958784 ____A (Microsoft Corporation) C:\Windows\System32\jscript9.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 02877440 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 02706432 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb 2013-07-09 14:36 - 2013-07-09 14:36 - 02706432 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.tlb 2013-07-09 14:36 - 2013-07-09 14:36 - 02648064 ____A (Microsoft Corporation) C:\Windows\System32\iertutil.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 02241024 ____A (Microsoft Corporation) C:\Windows\System32\wininet.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 02046976 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 01767936 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 01509376 ____A (Microsoft Corporation) C:\Windows\System32\inetcpl.cpl 2013-07-09 14:36 - 2013-07-09 14:36 - 01441280 ____A (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl 2013-07-09 14:36 - 2013-07-09 14:36 - 01400416 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat 2013-07-09 14:36 - 2013-07-09 14:36 - 01400416 ____A (Microsoft Corporation) C:\Windows\System32\ieapfltr.dat 2013-07-09 14:36 - 2013-07-09 14:36 - 01365504 ____A (Microsoft Corporation) C:\Windows\System32\urlmon.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 01141248 ____A (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 01054720 ____A (Microsoft Corporation) C:\Windows\System32\MsSpellCheckingFacility.exe 2013-07-09 14:36 - 2013-07-09 14:36 - 00905728 ____A (Microsoft Corporation) C:\Windows\System32\mshtmlmedia.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00855552 ____A (Microsoft Corporation) C:\Windows\System32\jscript.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00762368 ____A (Microsoft Corporation) C:\Windows\System32\ieapfltr.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00719360 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00690688 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00629248 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00603136 ____A (Microsoft Corporation) C:\Windows\System32\msfeeds.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00599552 ____A (Microsoft Corporation) C:\Windows\System32\vbscript.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00526336 ____A (Microsoft Corporation) C:\Windows\System32\ieui.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00523264 ____A (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00493056 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00452096 ____A (Microsoft Corporation) C:\Windows\System32\dxtmsft.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00441856 ____A (Microsoft Corporation) C:\Windows\System32\html.iec 2013-07-09 14:36 - 2013-07-09 14:36 - 00391168 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00361984 ____A (Microsoft Corporation) C:\Windows\SysWOW64\html.iec 2013-07-09 14:36 - 2013-07-09 14:36 - 00357888 ____A (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00281600 ____A (Microsoft Corporation) C:\Windows\System32\dxtrans.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00270848 ____A (Microsoft Corporation) C:\Windows\System32\iedkcs32.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00247296 ____A (Microsoft Corporation) C:\Windows\System32\webcheck.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00242200 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00235008 ____A (Microsoft Corporation) C:\Windows\System32\url.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00232960 ____A (Microsoft Corporation) C:\Windows\SysWOW64\url.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00226816 ____A (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00226304 ____A (Microsoft Corporation) C:\Windows\System32\elshyph.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00216064 ____A (Microsoft Corporation) C:\Windows\System32\msls31.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00204800 ____A (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00197120 ____A (Microsoft Corporation) C:\Windows\System32\msrating.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00185344 ____A (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00173568 ____A (Microsoft Corporation) C:\Windows\System32\ieUnatt.exe 2013-07-09 14:36 - 2013-07-09 14:36 - 00167424 ____A (Microsoft Corporation) C:\Windows\System32\iexpress.exe 2013-07-09 14:36 - 2013-07-09 14:36 - 00163840 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00158720 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00150528 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe 2013-07-09 14:36 - 2013-07-09 14:36 - 00149504 ____A (Microsoft Corporation) C:\Windows\System32\occache.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00144896 ____A (Microsoft Corporation) C:\Windows\System32\wextract.exe 2013-07-09 14:36 - 2013-07-09 14:36 - 00138752 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe 2013-07-09 14:36 - 2013-07-09 14:36 - 00137216 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe 2013-07-09 14:36 - 2013-07-09 14:36 - 00136704 ____A (Microsoft Corporation) C:\Windows\System32\iesysprep.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00136192 ____A (Microsoft Corporation) C:\Windows\System32\iepeers.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00135680 ____A (Microsoft Corporation) C:\Windows\System32\IEAdvpack.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00125440 ____A (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00117248 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00110592 ____A (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00109056 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00102912 ____A (Microsoft Corporation) C:\Windows\System32\inseng.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00097280 ____A (Microsoft Corporation) C:\Windows\System32\mshtmled.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00092160 ____A (Microsoft Corporation) C:\Windows\System32\SetIEInstalledDate.exe 2013-07-09 14:36 - 2013-07-09 14:36 - 00089600 ____A (Microsoft Corporation) C:\Windows\System32\RegisterIEPKEYs.exe 2013-07-09 14:36 - 2013-07-09 14:36 - 00082432 ____A (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00081408 ____A (Microsoft Corporation) C:\Windows\System32\icardie.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00079872 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00077312 ____A (Microsoft Corporation) C:\Windows\System32\tdc.ocx 2013-07-09 14:36 - 2013-07-09 14:36 - 00073728 ____A (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe 2013-07-09 14:36 - 2013-07-09 14:36 - 00071680 ____A (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe 2013-07-09 14:36 - 2013-07-09 14:36 - 00069120 ____A (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00067072 ____A (Microsoft Corporation) C:\Windows\System32\iesetup.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00062976 ____A (Microsoft Corporation) C:\Windows\System32\pngfilt.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00061952 ____A (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx 2013-07-09 14:36 - 2013-07-09 14:36 - 00061440 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00057344 ____A (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00053760 ____A (Microsoft Corporation) C:\Windows\System32\jsproxy.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00052224 ____A (Microsoft Corporation) C:\Windows\System32\msfeedsbs.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00051712 ____A (Microsoft Corporation) C:\Windows\System32\ie4uinit.exe 2013-07-09 14:36 - 2013-07-09 14:36 - 00051200 ____A (Microsoft Corporation) C:\Windows\System32\imgutil.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00048640 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00048640 ____A (Microsoft Corporation) C:\Windows\System32\mshtmler.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00041984 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00039936 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00039936 ____A (Microsoft Corporation) C:\Windows\System32\iernonce.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00038400 ____A (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00033280 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00027648 ____A (Microsoft Corporation) C:\Windows\System32\licmgr10.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00023040 ____A (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00013824 ____A (Microsoft Corporation) C:\Windows\System32\mshta.exe 2013-07-09 14:36 - 2013-07-09 14:36 - 00012800 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe 2013-07-09 14:36 - 2013-07-09 14:36 - 00012800 ____A (Microsoft Corporation) C:\Windows\System32\msfeedssync.exe 2013-07-09 14:36 - 2013-07-09 14:36 - 00011776 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe 2013-07-09 08:14 - 2013-07-09 08:14 - 00000000 ____D C:\Users\Default\AppData\Roaming\TuneUp Software 2013-07-09 08:14 - 2013-07-09 08:14 - 00000000 ____D C:\Users\Default User\AppData\Roaming\TuneUp Software 2013-07-08 19:30 - 2013-07-08 19:30 - 00270214 ____A C:\Windows\msxml4-KB2758694-deu.LOG 2013-07-08 19:14 - 2013-02-17 01:40 - 00028672 ____A (Microsoft Corporation) C:\Windows\System32\IEUDINIT.EXE 2013-07-08 18:52 - 2013-07-08 19:10 - 518418786 ____A (WinFuture) C:\Users\*******\Downloads\WinFuture_7SP1_x64_UpdatePack_2.27_Juni_2013-Vollversion.exe 2013-07-08 17:49 - 2012-08-23 16:13 - 00243200 ____A (Microsoft Corporation) C:\Windows\System32\rdpudd.dll 2013-07-08 17:49 - 2012-08-23 16:10 - 00019456 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\rdpvideominiport.sys 2013-07-08 17:49 - 2012-08-23 16:08 - 00030208 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\TsUsbGD.sys 2013-07-08 17:49 - 2012-08-23 16:07 - 00057856 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\TsUsbFlt.sys 2013-07-08 17:49 - 2012-08-23 15:47 - 00046592 ____A (Microsoft Corporation) C:\Windows\SysWOW64\MsRdpWebAccess.dll 2013-07-08 17:49 - 2012-08-23 15:46 - 00016896 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wksprtPS.dll 2013-07-08 17:49 - 2012-08-23 15:41 - 00013312 ____A (Microsoft Corporation) C:\Windows\System32\TsUsbRedirectionGroupPolicyControl.exe 2013-07-08 17:49 - 2012-08-23 15:40 - 00013312 ____A (Microsoft Corporation) C:\Windows\System32\TsUsbRedirectionGroupPolicyExtension.dll 2013-07-08 17:49 - 2012-08-23 15:24 - 00015360 ____A (Microsoft Corporation) C:\Windows\System32\RdpGroupPolicyExtension.dll 2013-07-08 17:49 - 2012-08-23 15:20 - 00054272 ____A (Microsoft Corporation) C:\Windows\System32\MsRdpWebAccess.dll 2013-07-08 17:49 - 2012-08-23 15:18 - 00037376 ____A (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll 2013-07-08 17:49 - 2012-08-23 15:17 - 00018432 ____A (Microsoft Corporation) C:\Windows\System32\wksprtPS.dll 2013-07-08 17:49 - 2012-08-23 15:06 - 00043520 ____A (Microsoft Corporation) C:\Windows\System32\TsUsbGDCoInstaller.dll 2013-07-08 17:49 - 2012-08-23 14:52 - 00044032 ____A (Microsoft Corporation) C:\Windows\System32\tsgqec.dll 2013-07-08 17:49 - 2012-08-23 13:20 - 00062976 ____A (Microsoft Corporation) C:\Windows\System32\TSWbPrxy.exe 2013-07-08 17:49 - 2012-08-23 13:15 - 00269312 ____A (Microsoft Corporation) C:\Windows\SysWOW64\aaclient.dll 2013-07-08 17:49 - 2012-08-23 13:14 - 00384000 ____A (Microsoft Corporation) C:\Windows\System32\wksprt.exe 2013-07-08 17:49 - 2012-08-23 13:12 - 00192000 ____A (Microsoft Corporation) C:\Windows\SysWOW64\rdpendp_winip.dll 2013-07-08 17:49 - 2012-08-23 12:54 - 00322560 ____A (Microsoft Corporation) C:\Windows\System32\aaclient.dll 2013-07-08 17:49 - 2012-08-23 12:51 - 00228864 ____A (Microsoft Corporation) C:\Windows\System32\rdpendp_winip.dll 2013-07-08 17:49 - 2012-08-23 12:39 - 01048064 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe 2013-07-08 17:49 - 2012-08-23 12:22 - 01123840 ____A (Microsoft Corporation) C:\Windows\System32\mstsc.exe 2013-07-08 17:49 - 2012-08-23 11:51 - 03174912 ____A (Microsoft Corporation) C:\Windows\System32\rdpcorets.dll 2013-07-08 17:49 - 2012-08-23 10:19 - 04916224 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll 2013-07-08 17:49 - 2012-08-23 10:13 - 05773824 ____A (Microsoft Corporation) C:\Windows\System32\mstscax.dll 2013-07-08 17:47 - 2012-08-24 20:13 - 00154480 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\ksecpkg.sys 2013-07-08 17:47 - 2012-08-24 20:09 - 00458712 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\cng.sys 2013-07-08 17:47 - 2012-08-24 20:05 - 00340992 ____A (Microsoft Corporation) C:\Windows\System32\schannel.dll 2013-07-08 17:47 - 2012-08-24 20:03 - 01448448 ____A (Microsoft Corporation) C:\Windows\System32\lsasrv.dll 2013-07-08 17:47 - 2012-08-24 18:57 - 00247808 ____A (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll 2013-07-08 17:47 - 2012-08-24 18:57 - 00022016 ____A (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll 2013-07-08 17:47 - 2012-08-24 18:53 - 00096768 ____A (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll 2013-07-08 17:47 - 2012-05-04 13:00 - 00366592 ____A (Microsoft Corporation) C:\Windows\System32\qdvd.dll 2013-07-08 17:47 - 2012-05-04 11:59 - 00514560 ____A (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll 2013-07-08 17:31 - 2013-07-08 17:31 - 00000000 ____D C:\Users\test\AppData\Roaming\PwrMgr 2013-07-08 17:30 - 2013-07-08 17:31 - 00000000 ____D C:\Users\test\AppData\Local\LSC 2013-07-08 17:20 - 2013-07-08 17:29 - 00000000 ____D C:\Users\test\AppData\Roaming\Adobe 2013-07-08 17:20 - 2013-07-08 17:20 - 00120320 ____A C:\Users\test\AppData\Local\GDIPFONTCACHEV1.DAT 2013-07-08 17:20 - 2013-07-08 17:20 - 00000000 ____D C:\Users\test\Documents\Synaptics 2013-07-08 17:20 - 2013-07-08 17:20 - 00000000 ____D C:\Users\test\Documents\Bluetooth-Exchange-Ordner 2013-07-08 17:20 - 2013-07-08 17:20 - 00000000 ____D C:\Users\test\AppData\Roaming\Seagate 2013-07-08 17:20 - 2013-07-08 17:20 - 00000000 ____D C:\Users\test\AppData\Roaming\Memeo 2013-07-08 17:20 - 2013-07-08 17:20 - 00000000 ____D C:\Users\test\AppData\Roaming\LSC 2013-07-08 17:20 - 2013-07-08 17:20 - 00000000 ____D C:\Users\test\AppData\Roaming\Logitech 2013-07-08 17:20 - 2013-07-08 17:20 - 00000000 ____D C:\Users\test\AppData\Roaming\Lexware 2013-07-08 17:20 - 2013-07-08 17:20 - 00000000 ____D C:\Users\test\AppData\Roaming\Leadertech 2013-07-08 17:20 - 2013-07-08 17:20 - 00000000 ____D C:\Users\test\AppData\Roaming\Apple Computer 2013-07-08 17:20 - 2013-07-08 17:20 - 00000000 ____D C:\Users\test\AppData\Local\Power2Go 2013-07-08 17:20 - 2013-07-08 17:20 - 00000000 ____D C:\Users\test\AppData\Local\MobileAccess 2013-07-08 17:20 - 2013-07-08 17:20 - 00000000 ____D C:\Users\test\AppData\Local\Lexware 2013-07-08 17:20 - 2013-07-08 17:20 - 00000000 ____D C:\Users\test\AppData\Local\Lenovo 2013-07-08 17:20 - 2013-07-08 17:20 - 00000000 ____D C:\Users\test\AppData\Local\Broadcom 2013-07-08 17:20 - 2013-07-08 17:20 - 00000000 ____D C:\Users\test\AppData\Local\Adobe 2013-07-08 17:19 - 2013-07-08 17:20 - 00001194 ____A C:\Users\test\Desktop\Blu-ray Disc Suite.lnk 2013-07-08 17:19 - 2013-07-08 17:20 - 00000000 ____D C:\users\test 2013-07-08 17:19 - 2013-07-08 17:19 - 00000020 __ASH C:\Users\test\ntuser.ini 2013-07-08 17:19 - 2013-07-08 17:19 - 00000000 __SHD C:\Users\test\Vorlagen 2013-07-08 17:19 - 2013-07-08 17:19 - 00000000 __SHD C:\Users\test\Startmenü 2013-07-08 17:19 - 2013-07-08 17:19 - 00000000 __SHD C:\Users\test\Netzwerkumgebung 2013-07-08 17:19 - 2013-07-08 17:19 - 00000000 __SHD C:\Users\test\Lokale Einstellungen 2013-07-08 17:19 - 2013-07-08 17:19 - 00000000 __SHD C:\Users\test\Eigene Dateien 2013-07-08 17:19 - 2013-07-08 17:19 - 00000000 __SHD C:\Users\test\Druckumgebung 2013-07-08 17:19 - 2013-07-08 17:19 - 00000000 __SHD C:\Users\test\Documents\Eigene Musik 2013-07-08 17:19 - 2013-07-08 17:19 - 00000000 __SHD C:\Users\test\Documents\Eigene Bilder 2013-07-08 17:19 - 2013-07-08 17:19 - 00000000 __SHD C:\Users\test\AppData\Local\Verlauf 2013-07-08 17:19 - 2013-07-08 17:19 - 00000000 __SHD C:\Users\test\AppData\Local\Anwendungsdaten 2013-07-08 17:19 - 2013-07-08 17:19 - 00000000 __SHD C:\Users\test\Anwendungsdaten 2013-07-08 17:19 - 2013-07-08 17:19 - 00000000 ____D C:\Users\test\AppData\Roaming\Intel 2013-07-08 17:19 - 2012-10-21 13:28 - 00000000 ____D C:\Users\test\AppData\Roaming\Macromedia 2013-07-08 17:19 - 2012-02-21 18:04 - 00000000 ____D C:\Users\test\AppData\Local\Microsoft Help 2013-07-08 17:13 - 2013-07-08 17:13 - 00861184 ____A (Microsoft Corporation) C:\Users\*******\Downloads\IE10-Windows6.1-de-de.exe 2013-07-08 16:09 - 2013-07-08 16:09 - 00000000 ____D C:\Users\*******\AppData\Roaming\TuneUp Software 2013-07-08 15:31 - 2013-07-09 15:53 - 00000000 ____D C:\ProgramData\MFAData 2013-07-08 15:31 - 2013-07-08 15:31 - 00000000 ____D C:\Users\*******\AppData\Local\MFAData 2013-07-08 14:56 - 2013-07-08 15:28 - 159486920 ____A (AVG Technologies) C:\Users\*******\Downloads\avg_ipw_x64_all_2013_3345a6382(1).exe 2013-07-08 10:54 - 2013-07-08 12:17 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox 2013-07-01 18:45 - 2010-11-21 05:24 - 00381440 ____A (Microsoft Corporation) C:\Windows\System32\mfds.dll 2013-07-01 18:28 - 2013-07-01 18:28 - 00000000 ____D C:\Users\*******\AppData\Roaming\MediaConfiguration 2013-07-01 18:26 - 2013-07-01 18:26 - 00000000 ____D C:\Users\*******\AppData\Roaming\Media Control 2013-07-01 18:25 - 2013-07-01 18:25 - 03050508 ____A (Damien Bain-Thouverez ) C:\Users\*******\Downloads\MediaControl_6.0.15.exe 2013-07-01 18:07 - 2013-07-01 18:07 - 00000000 ____D C:\Users\*******\AppData\Roaming\Advanced 2013-07-01 18:07 - 2013-07-01 18:07 - 00000000 ____D C:\Program Files (x86)\Shark007 2013-07-01 18:07 - 2013-04-05 21:26 - 01679360 ____A C:\Windows\SysWOW64\ac3filter.acm.new 2013-07-01 18:05 - 2013-07-01 18:05 - 00000000 ____D C:\Users\*******\AppData\Roaming\BabSolution 2013-07-01 18:04 - 2013-07-01 18:07 - 00000000 ____D C:\ProgramData\Advanced 2013-07-01 18:04 - 2013-07-01 18:04 - 00000000 ____D C:\Users\*******\AppData\Roaming\Babylon 2013-07-01 18:04 - 2013-07-01 18:04 - 00000000 ____D C:\ProgramData\Babylon 2013-07-01 18:03 - 2013-07-01 18:04 - 29160522 ____A C:\Users\*******\Downloads\32bit_Advanced_v418.exe 2013-07-01 17:47 - 2013-07-01 17:50 - 00000000 ____D C:\Users\*******\AppData\Roaming\vlc 2013-07-01 17:46 - 2013-07-01 17:46 - 00003584 ____A C:\Users\*******\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini 2013-07-01 17:34 - 2013-07-01 18:45 - 00000000 ____D C:\Users\*******\AppData\Roaming\Shark007 2013-07-01 17:34 - 2013-07-01 18:45 - 00000000 ____D C:\ProgramData\Shark007 2013-07-01 17:34 - 2013-07-01 17:34 - 00000000 ____D C:\Program Files\Shark007 2013-07-01 17:34 - 2013-05-27 15:08 - 00127488 ____A C:\Windows\System32\ff_vfw.dll 2013-07-01 17:34 - 2013-05-16 01:06 - 01593696 ____A (MPC-HC Team) C:\Windows\System32\VSFilter.dll 2013-07-01 17:34 - 2013-04-05 21:27 - 02231296 ____A C:\Windows\System32\ac3filter.acm.new 2013-07-01 17:34 - 2013-04-05 21:27 - 02231296 ____A C:\Windows\System32\ac3filter.acm 2013-07-01 17:34 - 2013-03-17 10:22 - 03554304 ____A (x264vfw project) C:\Windows\System32\x264vfw.dll 2013-07-01 17:34 - 2012-07-21 12:55 - 00180736 ____A (fccHandler) C:\Windows\System32\ac3acm.acm 2013-07-01 17:34 - 2012-07-21 12:54 - 00361472 ____A (fccHandler) C:\Windows\System32\aacacm.acm 2013-07-01 17:34 - 2012-07-17 15:21 - 00206336 ____A C:\Windows\System32\unrar64.dll 2013-07-01 17:34 - 2011-12-07 20:37 - 00148992 ____A ( ) C:\Windows\System32\lagarith.dll 2013-07-01 17:34 - 2009-08-11 18:22 - 00580096 ____A C:\Windows\System32\ac3filter.acm.old 2013-07-01 17:34 - 2009-01-22 22:51 - 00124909 ____A (Open Source Software community project) C:\Windows\System32\pthreadGC2.dll 2013-07-01 17:34 - 2007-02-05 17:05 - 00000038 ____A C:\Windows\AviSplitter.INI 2013-07-01 17:33 - 2013-07-01 17:34 - 18422493 ____A C:\Users\*******\Downloads\Advanced_x64Components_v418.exe 2013-07-01 17:31 - 2013-07-09 16:31 - 00000000 ____D C:\Program Files (x86)\VideoLAN 2013-07-01 17:29 - 2013-07-01 17:31 - 22937227 ____A C:\Users\*******\Downloads\vlc-2.0.7-win32.exe 2013-07-01 17:29 - 2013-07-01 17:30 - 14989539 ____A C:\Users\*******\Downloads\vlc-2.0.7-win32.exe.part 2013-07-01 16:38 - 2013-07-01 16:38 - 00000000 ____A C:\END 2013-06-28 02:06 - 2013-06-28 03:36 - 00000528 ____A C:\Windows\Tasks\PCDoctorBackgroundMonitorTask-Delay.job 2013-06-18 10:16 - 2013-05-13 07:51 - 01464320 ____A (Microsoft Corporation) C:\Windows\System32\crypt32.dll 2013-06-18 10:16 - 2013-05-13 07:51 - 00184320 ____A (Microsoft Corporation) C:\Windows\System32\cryptsvc.dll 2013-06-18 10:16 - 2013-05-13 07:51 - 00139776 ____A (Microsoft Corporation) C:\Windows\System32\cryptnet.dll 2013-06-18 10:16 - 2013-05-13 07:50 - 00052224 ____A (Microsoft Corporation) C:\Windows\System32\certenc.dll 2013-06-18 10:16 - 2013-05-13 06:45 - 01160192 ____A (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll 2013-06-18 10:16 - 2013-05-13 06:45 - 00140288 ____A (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll 2013-06-18 10:16 - 2013-05-13 06:45 - 00103936 ____A (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll 2013-06-18 10:16 - 2013-05-13 05:43 - 01192448 ____A (Microsoft Corporation) C:\Windows\System32\certutil.exe 2013-06-18 10:16 - 2013-05-13 05:08 - 00903168 ____A (Microsoft Corporation) C:\Windows\SysWOW64\certutil.exe 2013-06-18 10:16 - 2013-05-13 05:08 - 00043008 ____A (Microsoft Corporation) C:\Windows\SysWOW64\certenc.dll 2013-06-18 10:16 - 2013-05-10 07:49 - 00030720 ____A (Microsoft Corporation) C:\Windows\System32\cryptdlg.dll 2013-06-18 10:16 - 2013-05-10 05:20 - 00024576 ____A (Microsoft Corporation) C:\Windows\SysWOW64\cryptdlg.dll 2013-06-18 10:16 - 2013-05-08 08:39 - 01910632 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\tcpip.sys 2013-06-18 10:16 - 2013-04-26 07:51 - 00751104 ____A (Microsoft Corporation) C:\Windows\System32\win32spl.dll 2013-06-18 10:16 - 2013-04-26 06:55 - 00492544 ____A (Microsoft Corporation) C:\Windows\SysWOW64\win32spl.dll 2013-06-18 10:16 - 2013-04-26 01:30 - 01505280 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll 2013-06-18 10:16 - 2013-04-17 09:02 - 01230336 ____A (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll 2013-06-18 10:16 - 2013-04-17 08:24 - 01424384 ____A (Microsoft Corporation) C:\Windows\System32\WindowsCodecs.dll 2013-06-18 10:16 - 2013-04-01 00:52 - 01887232 ____A (Microsoft Corporation) C:\Windows\System32\d3d11.dll ==================== One Month Modified Files and Folders ======= 2013-07-09 18:04 - 2012-04-08 09:53 - 00000884 ____A C:\Windows\Tasks\Adobe Flash Player Updater.job 2013-07-09 18:03 - 2013-07-09 18:03 - 01776221 ____A (Farbar) C:\Users\*******\Desktop\FRST64.exe 2013-07-09 18:03 - 2013-07-09 18:03 - 00000000 ____D C:\FRST 2013-07-09 18:02 - 2012-02-24 20:00 - 00000000 ____D C:\Users\*******\AppData\Roaming\Gajim 2013-07-09 18:02 - 2012-02-21 21:46 - 00000000 ___RD C:\Users\*******\Dropbox 2013-07-09 18:02 - 2012-02-21 21:45 - 00000000 ____D C:\Users\*******\AppData\Roaming\Dropbox 2013-07-09 18:02 - 2011-10-18 10:39 - 00001124 ____A C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2013-07-09 18:01 - 2012-12-26 21:28 - 00000000 ____D C:\Users\*******\AppData\Local\Eye-Fi 2013-07-09 18:01 - 2011-10-18 10:39 - 00001120 ____A C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2013-07-09 17:54 - 2009-07-14 06:45 - 00031296 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2013-07-09 17:54 - 2009-07-14 06:45 - 00031296 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2013-07-09 17:50 - 2011-10-18 10:38 - 01553380 ____A C:\Windows\WindowsUpdate.log 2013-07-09 17:49 - 2011-10-18 20:18 - 00700418 ____A C:\Windows\System32\perfh007.dat 2013-07-09 17:49 - 2011-10-18 20:18 - 00149182 ____A C:\Windows\System32\perfc007.dat 2013-07-09 17:49 - 2009-07-14 07:13 - 01621308 ____A C:\Windows\System32\PerfStringBackup.INI 2013-07-09 17:44 - 2009-07-14 07:08 - 00000006 ___AH C:\Windows\Tasks\SA.DAT 2013-07-09 17:44 - 2009-07-14 06:51 - 00136770 ____A C:\Windows\setupact.log 2013-07-09 17:38 - 2013-07-09 15:38 - 00000000 ____D C:\Windows\pss 2013-07-09 17:33 - 2013-07-09 17:33 - 00037441 ____A C:\Users\*******\Desktop\logs.zip 2013-07-09 17:33 - 2013-07-09 17:15 - 00010567 ____A C:\Users\*******\Desktop\gmer.log 2013-07-09 17:21 - 2013-07-09 16:49 - 00111102 ____A C:\Users\*******\Desktop\OTL.Txt 2013-07-09 17:13 - 2012-02-22 11:37 - 00001124 ____A C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4186067094-2021574243-1185577494-1000UA.job 2013-07-09 16:59 - 2013-07-09 16:59 - 00377856 ____A C:\Users\*******\Desktop\gmer_2.1.19163.exe 2013-07-09 16:55 - 2013-07-09 16:55 - 00000474 ____A C:\Users\*******\Desktop\defogger_disable.log 2013-07-09 16:55 - 2013-07-09 16:55 - 00000190 ____A C:\Users\*******\Desktop\sympton.txt 2013-07-09 16:55 - 2013-07-09 16:55 - 00000000 ____A C:\Users\*******\defogger_reenable 2013-07-09 16:55 - 2012-02-20 15:48 - 00000000 ____D C:\users\******* 2013-07-09 16:54 - 2013-07-09 16:54 - 00050477 ____A C:\Users\*******\Desktop\Defogger.exe 2013-07-09 16:53 - 2013-07-09 16:50 - 00122754 ____A C:\Users\*******\Desktop\Extras.Txt 2013-07-09 16:44 - 2013-07-09 16:44 - 00602112 ____A (OldTimer Tools) C:\Users\*******\Desktop\OTL(1).exe 2013-07-09 16:44 - 2013-07-09 16:44 - 00000120 ____A C:\Users\*******\Desktop\WlA05T5E.htm 2013-07-09 16:43 - 2013-07-09 16:43 - 00602112 ____A (OldTimer Tools) C:\Users\*******\Downloads\OTL.exe 2013-07-09 16:35 - 2010-11-21 05:47 - 00098060 ____A C:\Windows\PFRO.log 2013-07-09 16:33 - 2011-10-18 10:38 - 00000000 ____D C:\Program Files (x86)\Adobe 2013-07-09 16:31 - 2013-07-01 17:31 - 00000000 ____D C:\Program Files (x86)\VideoLAN 2013-07-09 16:30 - 2012-06-26 10:30 - 00000000 ____D C:\Program Files (x86)\Java 2013-07-09 15:53 - 2013-07-09 15:52 - 00000000 ____D C:\Users\*******\AppData\Local\Avg2013 2013-07-09 15:53 - 2013-07-08 15:31 - 00000000 ____D C:\ProgramData\MFAData 2013-07-09 15:13 - 2012-02-22 11:37 - 00001072 ____A C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4186067094-2021574243-1185577494-1000Core.job 2013-07-09 15:07 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\PolicyDefinitions 2013-07-09 15:06 - 2013-03-26 09:38 - 00127327 ____A C:\Windows\IE10_main.log 2013-07-09 14:53 - 2013-07-09 14:43 - 00000134 ____A C:\Users\*******\Desktop\Internet Explorer-Problembehebung.url 2013-07-09 14:36 - 2013-07-09 14:36 - 19233792 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 15404544 ____A (Microsoft Corporation) C:\Windows\System32\ieframe.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 14327808 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 13760512 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 03958784 ____A (Microsoft Corporation) C:\Windows\System32\jscript9.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 02877440 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 02706432 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb 2013-07-09 14:36 - 2013-07-09 14:36 - 02706432 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.tlb 2013-07-09 14:36 - 2013-07-09 14:36 - 02648064 ____A (Microsoft Corporation) C:\Windows\System32\iertutil.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 02241024 ____A (Microsoft Corporation) C:\Windows\System32\wininet.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 02046976 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 01767936 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 01509376 ____A (Microsoft Corporation) C:\Windows\System32\inetcpl.cpl 2013-07-09 14:36 - 2013-07-09 14:36 - 01441280 ____A (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl 2013-07-09 14:36 - 2013-07-09 14:36 - 01400416 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat 2013-07-09 14:36 - 2013-07-09 14:36 - 01400416 ____A (Microsoft Corporation) C:\Windows\System32\ieapfltr.dat 2013-07-09 14:36 - 2013-07-09 14:36 - 01365504 ____A (Microsoft Corporation) C:\Windows\System32\urlmon.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 01141248 ____A (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 01054720 ____A (Microsoft Corporation) C:\Windows\System32\MsSpellCheckingFacility.exe 2013-07-09 14:36 - 2013-07-09 14:36 - 00905728 ____A (Microsoft Corporation) C:\Windows\System32\mshtmlmedia.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00855552 ____A (Microsoft Corporation) C:\Windows\System32\jscript.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00762368 ____A (Microsoft Corporation) C:\Windows\System32\ieapfltr.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00719360 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00690688 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00629248 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00603136 ____A (Microsoft Corporation) C:\Windows\System32\msfeeds.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00599552 ____A (Microsoft Corporation) C:\Windows\System32\vbscript.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00526336 ____A (Microsoft Corporation) C:\Windows\System32\ieui.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00523264 ____A (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00493056 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00452096 ____A (Microsoft Corporation) C:\Windows\System32\dxtmsft.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00441856 ____A (Microsoft Corporation) C:\Windows\System32\html.iec 2013-07-09 14:36 - 2013-07-09 14:36 - 00391168 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00361984 ____A (Microsoft Corporation) C:\Windows\SysWOW64\html.iec 2013-07-09 14:36 - 2013-07-09 14:36 - 00357888 ____A (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00281600 ____A (Microsoft Corporation) C:\Windows\System32\dxtrans.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00270848 ____A (Microsoft Corporation) C:\Windows\System32\iedkcs32.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00247296 ____A (Microsoft Corporation) C:\Windows\System32\webcheck.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00242200 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00235008 ____A (Microsoft Corporation) C:\Windows\System32\url.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00232960 ____A (Microsoft Corporation) C:\Windows\SysWOW64\url.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00226816 ____A (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00226304 ____A (Microsoft Corporation) C:\Windows\System32\elshyph.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00216064 ____A (Microsoft Corporation) C:\Windows\System32\msls31.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00204800 ____A (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00197120 ____A (Microsoft Corporation) C:\Windows\System32\msrating.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00185344 ____A (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00173568 ____A (Microsoft Corporation) C:\Windows\System32\ieUnatt.exe 2013-07-09 14:36 - 2013-07-09 14:36 - 00167424 ____A (Microsoft Corporation) C:\Windows\System32\iexpress.exe 2013-07-09 14:36 - 2013-07-09 14:36 - 00163840 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00158720 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00150528 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe 2013-07-09 14:36 - 2013-07-09 14:36 - 00149504 ____A (Microsoft Corporation) C:\Windows\System32\occache.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00144896 ____A (Microsoft Corporation) C:\Windows\System32\wextract.exe 2013-07-09 14:36 - 2013-07-09 14:36 - 00138752 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe 2013-07-09 14:36 - 2013-07-09 14:36 - 00137216 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe 2013-07-09 14:36 - 2013-07-09 14:36 - 00136704 ____A (Microsoft Corporation) C:\Windows\System32\iesysprep.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00136192 ____A (Microsoft Corporation) C:\Windows\System32\iepeers.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00135680 ____A (Microsoft Corporation) C:\Windows\System32\IEAdvpack.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00125440 ____A (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00117248 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00110592 ____A (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00109056 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00102912 ____A (Microsoft Corporation) C:\Windows\System32\inseng.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00097280 ____A (Microsoft Corporation) C:\Windows\System32\mshtmled.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00092160 ____A (Microsoft Corporation) C:\Windows\System32\SetIEInstalledDate.exe 2013-07-09 14:36 - 2013-07-09 14:36 - 00089600 ____A (Microsoft Corporation) C:\Windows\System32\RegisterIEPKEYs.exe 2013-07-09 14:36 - 2013-07-09 14:36 - 00082432 ____A (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00081408 ____A (Microsoft Corporation) C:\Windows\System32\icardie.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00079872 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00077312 ____A (Microsoft Corporation) C:\Windows\System32\tdc.ocx 2013-07-09 14:36 - 2013-07-09 14:36 - 00073728 ____A (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe 2013-07-09 14:36 - 2013-07-09 14:36 - 00071680 ____A (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe 2013-07-09 14:36 - 2013-07-09 14:36 - 00069120 ____A (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00067072 ____A (Microsoft Corporation) C:\Windows\System32\iesetup.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00062976 ____A (Microsoft Corporation) C:\Windows\System32\pngfilt.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00061952 ____A (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx 2013-07-09 14:36 - 2013-07-09 14:36 - 00061440 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00057344 ____A (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00053760 ____A (Microsoft Corporation) C:\Windows\System32\jsproxy.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00052224 ____A (Microsoft Corporation) C:\Windows\System32\msfeedsbs.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00051712 ____A (Microsoft Corporation) C:\Windows\System32\ie4uinit.exe 2013-07-09 14:36 - 2013-07-09 14:36 - 00051200 ____A (Microsoft Corporation) C:\Windows\System32\imgutil.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00048640 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00048640 ____A (Microsoft Corporation) C:\Windows\System32\mshtmler.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00041984 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00039936 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00039936 ____A (Microsoft Corporation) C:\Windows\System32\iernonce.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00038400 ____A (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00033280 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00027648 ____A (Microsoft Corporation) C:\Windows\System32\licmgr10.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00023040 ____A (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00013824 ____A (Microsoft Corporation) C:\Windows\System32\mshta.exe 2013-07-09 14:36 - 2013-07-09 14:36 - 00012800 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe 2013-07-09 14:36 - 2013-07-09 14:36 - 00012800 ____A (Microsoft Corporation) C:\Windows\System32\msfeedssync.exe 2013-07-09 14:36 - 2013-07-09 14:36 - 00011776 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe 2013-07-09 13:56 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\rescache 2013-07-09 12:39 - 2012-02-21 15:06 - 00001912 ____A C:\Windows\epplauncher.mif 2013-07-09 11:05 - 2012-02-20 15:48 - 00000466 ____A C:\Windows\Tasks\SystemToolsDailyTest.job 2013-07-09 10:07 - 2012-12-05 12:14 - 00000377 ____A C:\ProgramData\LastUpdate.xml 2013-07-09 10:07 - 2012-12-05 12:14 - 00000207 ____A C:\Windows\WebUpdateSvc4.INI 2013-07-09 09:52 - 2012-12-05 11:59 - 00000000 ____D C:\Users\*******\AppData\Local\MobileAccess 2013-07-09 08:14 - 2013-07-09 08:14 - 00000000 ____D C:\Users\Default\AppData\Roaming\TuneUp Software 2013-07-09 08:14 - 2013-07-09 08:14 - 00000000 ____D C:\Users\Default User\AppData\Roaming\TuneUp Software 2013-07-08 19:34 - 2012-02-21 15:06 - 01599202 ____A C:\Windows\SysWOW64\PerfStringBackup.INI 2013-07-08 19:30 - 2013-07-08 19:30 - 00270214 ____A C:\Windows\msxml4-KB2758694-deu.LOG 2013-07-08 19:30 - 2013-05-13 12:19 - 00000000 ____D C:\Program Files (x86)\MSXML 4.0 2013-07-08 19:10 - 2013-07-08 18:52 - 518418786 ____A (WinFuture) C:\Users\*******\Downloads\WinFuture_7SP1_x64_UpdatePack_2.27_Juni_2013-Vollversion.exe 2013-07-08 18:18 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\System32\NDF 2013-07-08 17:51 - 2012-02-21 18:12 - 00000000 ____D C:\Users\*******\AppData\Roaming\Skype 2013-07-08 17:31 - 2013-07-08 17:31 - 00000000 ____D C:\Users\test\AppData\Roaming\PwrMgr 2013-07-08 17:31 - 2013-07-08 17:30 - 00000000 ____D C:\Users\test\AppData\Local\LSC 2013-07-08 17:29 - 2013-07-08 17:20 - 00000000 ____D C:\Users\test\AppData\Roaming\Adobe 2013-07-08 17:20 - 2013-07-08 17:20 - 00120320 ____A C:\Users\test\AppData\Local\GDIPFONTCACHEV1.DAT 2013-07-08 17:20 - 2013-07-08 17:20 - 00000000 ____D C:\Users\test\Documents\Synaptics 2013-07-08 17:20 - 2013-07-08 17:20 - 00000000 ____D C:\Users\test\Documents\Bluetooth-Exchange-Ordner 2013-07-08 17:20 - 2013-07-08 17:20 - 00000000 ____D C:\Users\test\AppData\Roaming\Seagate 2013-07-08 17:20 - 2013-07-08 17:20 - 00000000 ____D C:\Users\test\AppData\Roaming\Memeo 2013-07-08 17:20 - 2013-07-08 17:20 - 00000000 ____D C:\Users\test\AppData\Roaming\LSC 2013-07-08 17:20 - 2013-07-08 17:20 - 00000000 ____D C:\Users\test\AppData\Roaming\Logitech 2013-07-08 17:20 - 2013-07-08 17:20 - 00000000 ____D C:\Users\test\AppData\Roaming\Lexware 2013-07-08 17:20 - 2013-07-08 17:20 - 00000000 ____D C:\Users\test\AppData\Roaming\Leadertech 2013-07-08 17:20 - 2013-07-08 17:20 - 00000000 ____D C:\Users\test\AppData\Roaming\Apple Computer 2013-07-08 17:20 - 2013-07-08 17:20 - 00000000 ____D C:\Users\test\AppData\Local\Power2Go 2013-07-08 17:20 - 2013-07-08 17:20 - 00000000 ____D C:\Users\test\AppData\Local\MobileAccess 2013-07-08 17:20 - 2013-07-08 17:20 - 00000000 ____D C:\Users\test\AppData\Local\Lexware 2013-07-08 17:20 - 2013-07-08 17:20 - 00000000 ____D C:\Users\test\AppData\Local\Lenovo 2013-07-08 17:20 - 2013-07-08 17:20 - 00000000 ____D C:\Users\test\AppData\Local\Broadcom 2013-07-08 17:20 - 2013-07-08 17:20 - 00000000 ____D C:\Users\test\AppData\Local\Adobe 2013-07-08 17:20 - 2013-07-08 17:19 - 00001194 ____A C:\Users\test\Desktop\Blu-ray Disc Suite.lnk 2013-07-08 17:20 - 2013-07-08 17:19 - 00000000 ____D C:\users\test 2013-07-08 17:19 - 2013-07-08 17:19 - 00000020 __ASH C:\Users\test\ntuser.ini 2013-07-08 17:19 - 2013-07-08 17:19 - 00000000 __SHD C:\Users\test\Vorlagen 2013-07-08 17:19 - 2013-07-08 17:19 - 00000000 __SHD C:\Users\test\Startmenü 2013-07-08 17:19 - 2013-07-08 17:19 - 00000000 __SHD C:\Users\test\Netzwerkumgebung 2013-07-08 17:19 - 2013-07-08 17:19 - 00000000 __SHD C:\Users\test\Lokale Einstellungen 2013-07-08 17:19 - 2013-07-08 17:19 - 00000000 __SHD C:\Users\test\Eigene Dateien 2013-07-08 17:19 - 2013-07-08 17:19 - 00000000 __SHD C:\Users\test\Druckumgebung 2013-07-08 17:19 - 2013-07-08 17:19 - 00000000 __SHD C:\Users\test\Documents\Eigene Musik 2013-07-08 17:19 - 2013-07-08 17:19 - 00000000 __SHD C:\Users\test\Documents\Eigene Bilder 2013-07-08 17:19 - 2013-07-08 17:19 - 00000000 __SHD C:\Users\test\AppData\Local\Verlauf 2013-07-08 17:19 - 2013-07-08 17:19 - 00000000 __SHD C:\Users\test\AppData\Local\Anwendungsdaten 2013-07-08 17:19 - 2013-07-08 17:19 - 00000000 __SHD C:\Users\test\Anwendungsdaten 2013-07-08 17:19 - 2013-07-08 17:19 - 00000000 ____D C:\Users\test\AppData\Roaming\Intel 2013-07-08 17:13 - 2013-07-08 17:13 - 00861184 ____A (Microsoft Corporation) C:\Users\*******\Downloads\IE10-Windows6.1-de-de.exe 2013-07-08 16:09 - 2013-07-08 16:09 - 00000000 ____D C:\Users\*******\AppData\Roaming\TuneUp Software 2013-07-08 15:31 - 2013-07-08 15:31 - 00000000 ____D C:\Users\*******\AppData\Local\MFAData 2013-07-08 15:28 - 2013-07-08 14:56 - 159486920 ____A (AVG Technologies) C:\Users\*******\Downloads\avg_ipw_x64_all_2013_3345a6382(1).exe 2013-07-08 13:24 - 2012-02-23 21:08 - 00000600 ____A C:\Users\*******\AppData\Roaming\winscp.rnd 2013-07-08 13:13 - 2012-05-07 20:33 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2013-07-08 12:17 - 2013-07-08 10:54 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox 2013-07-01 18:45 - 2013-07-01 17:34 - 00000000 ____D C:\Users\*******\AppData\Roaming\Shark007 2013-07-01 18:45 - 2013-07-01 17:34 - 00000000 ____D C:\ProgramData\Shark007 2013-07-01 18:28 - 2013-07-01 18:28 - 00000000 ____D C:\Users\*******\AppData\Roaming\MediaConfiguration 2013-07-01 18:26 - 2013-07-01 18:26 - 00000000 ____D C:\Users\*******\AppData\Roaming\Media Control 2013-07-01 18:25 - 2013-07-01 18:25 - 03050508 ____A (Damien Bain-Thouverez ) C:\Users\*******\Downloads\MediaControl_6.0.15.exe 2013-07-01 18:07 - 2013-07-01 18:07 - 00000000 ____D C:\Users\*******\AppData\Roaming\Advanced 2013-07-01 18:07 - 2013-07-01 18:07 - 00000000 ____D C:\Program Files (x86)\Shark007 2013-07-01 18:07 - 2013-07-01 18:04 - 00000000 ____D C:\ProgramData\Advanced 2013-07-01 18:05 - 2013-07-01 18:05 - 00000000 ____D C:\Users\*******\AppData\Roaming\BabSolution 2013-07-01 18:04 - 2013-07-01 18:04 - 00000000 ____D C:\Users\*******\AppData\Roaming\Babylon 2013-07-01 18:04 - 2013-07-01 18:04 - 00000000 ____D C:\ProgramData\Babylon 2013-07-01 18:04 - 2013-07-01 18:03 - 29160522 ____A C:\Users\*******\Downloads\32bit_Advanced_v418.exe 2013-07-01 17:50 - 2013-07-01 17:47 - 00000000 ____D C:\Users\*******\AppData\Roaming\vlc 2013-07-01 17:46 - 2013-07-01 17:46 - 00003584 ____A C:\Users\*******\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini 2013-07-01 17:40 - 2012-04-07 14:42 - 00000000 ____D C:\Program Files (x86)\DivX 2013-07-01 17:40 - 2012-04-07 14:41 - 00000000 ____D C:\ProgramData\DivX 2013-07-01 17:34 - 2013-07-01 17:34 - 00000000 ____D C:\Program Files\Shark007 2013-07-01 17:34 - 2013-07-01 17:33 - 18422493 ____A C:\Users\*******\Downloads\Advanced_x64Components_v418.exe 2013-07-01 17:31 - 2013-07-01 17:29 - 22937227 ____A C:\Users\*******\Downloads\vlc-2.0.7-win32.exe 2013-07-01 17:30 - 2013-07-01 17:29 - 14989539 ____A C:\Users\*******\Downloads\vlc-2.0.7-win32.exe.part 2013-07-01 16:44 - 2012-04-07 14:43 - 00000000 ____D C:\Program Files\DivX 2013-07-01 16:38 - 2013-07-01 16:38 - 00000000 ____A C:\END 2013-07-01 16:34 - 2012-06-26 10:30 - 00867240 ____A (Oracle Corporation) C:\Windows\SysWOW64\npdeployJava1.dll 2013-07-01 16:34 - 2012-02-21 19:34 - 00789416 ____A (Oracle Corporation) C:\Windows\SysWOW64\deployJava1.dll 2013-07-01 10:07 - 2012-02-21 17:18 - 00000000 ____D C:\Users\*******\AppData\Roaming\Mozilla 2013-06-28 10:45 - 2012-02-20 15:51 - 00120320 ____A C:\Users\*******\AppData\Local\GDIPFONTCACHEV1.DAT 2013-06-28 10:45 - 2012-02-20 15:48 - 00000528 ____A C:\Windows\Tasks\PCDoctorBackgroundMonitorTask.job 2013-06-28 10:45 - 2009-07-14 06:45 - 02377552 ____A C:\Windows\System32\FNTCACHE.DAT 2013-06-28 03:36 - 2013-06-28 02:06 - 00000528 ____A C:\Windows\Tasks\PCDoctorBackgroundMonitorTask-Delay.job 2013-06-28 02:07 - 2012-11-22 14:58 - 00000000 ____D C:\ldiag 2013-06-18 11:41 - 2012-02-21 13:03 - 75825640 ____A (Microsoft Corporation) C:\Windows\System32\MRT.exe 2013-06-18 11:39 - 2012-02-23 21:07 - 00000600 ____A C:\Users\*******\AppData\Local\PUTTY.RND 2013-06-13 12:04 - 2012-04-08 09:53 - 00692104 ____A (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe 2013-06-13 12:04 - 2012-02-21 19:11 - 00071048 ____A (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl ==================== Bamital & volsnap Check ================= C:\Windows\System32\winlogon.exe => MD5 is legit C:\Windows\System32\wininit.exe => MD5 is legit C:\Windows\SysWOW64\wininit.exe => MD5 is legit C:\Windows\explorer.exe => MD5 is legit C:\Windows\SysWOW64\explorer.exe => MD5 is legit C:\Windows\System32\svchost.exe => MD5 is legit C:\Windows\SysWOW64\svchost.exe => MD5 is legit C:\Windows\System32\services.exe => MD5 is legit C:\Windows\System32\User32.dll => MD5 is legit C:\Windows\SysWOW64\User32.dll => MD5 is legit C:\Windows\System32\userinit.exe => MD5 is legit C:\Windows\SysWOW64\userinit.exe => MD5 is legit C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit LastRegBack: 2013-07-08 19:59 ==================== End Of Log ============================ Code:
ATTFilter Additional scan result of Farbar Recovery Scan Tool (x64) Version: 09-07-2013 01 Ran by ******* at 2013-07-09 18:04:34 Running from C:\Users\*******\Desktop Boot Mode: Normal ========================================================== ==================== Installed Programs ======================= ACDSee Foto-Manager 12 (x32 Version: 12.0.344) Adobe Acrobat 8 Professional - English, Français, Deutsch (x32 Version: 8.1.0) Adobe After Effects CS3 Presets (x32 Version: 8) Adobe Anchor Service CS3 (x32 Version: 1.0) Adobe Asset Services CS3 (x32 Version: 3) Adobe Bridge CS3 (x32 Version: 2) Adobe Bridge Start Meeting (x32 Version: 1.0) Adobe BridgeTalk Plugin CS3 (x32 Version: 1.0) Adobe Camera Raw 4.0 (x32 Version: 4.0) Adobe CMaps (x32 Version: 1.0) Adobe Color - Photoshop Specific (x32 Version: 1.0) Adobe Color Common Settings (x32 Version: 1.0) Adobe Color EU Recommended Settings (x32 Version: 1.0) Adobe Color JA Extra Settings (x32 Version: 1.0) Adobe Color NA Extra Settings (x32 Version: 1.0) Adobe Creative Suite 3 Master Collection (x32 Version: 1.0) Adobe Creative Suite 3 Master Collection hinzufügen oder entfernen (x32 Version: 1.0) Adobe Default Language CS3 (x32 Version: 1.0) Adobe Device Central CS3 (x32 Version: 1.0) Adobe Dreamweaver CS3 (x32 Version: 9) Adobe ExtendScript Toolkit 2 (x32 Version: 2.0) Adobe Extension Manager CS3 (x32 Version: 1.8) Adobe Flash CS3 (x32 Version: 9.0) Adobe Flash Player 11 Plugin (x32 Version: 11.7.700.224) Adobe Fonts All (x32 Version: 1.0) Adobe Help Viewer CS3 (x32 Version: 1) Adobe Illustrator CS3 (x32 Version: 13.0) Adobe InDesign CS3 (x32 Version: 5.0) Adobe InDesign CS3 Icon Handler (x32 Version: 5.0) Adobe Linguistics CS3 (x32 Version: 3.0.0) Adobe MotionPicture Color Files (x32 Version: 1.0) Adobe PDF Library Files (x32 Version: 8.0) Adobe Photoshop CS3 (x32 Version: 10) Adobe Reader XI (11.0.03) - Deutsch (x32 Version: 11.0.03) Adobe Setup (x32 Version: 1.0) Adobe SING CS3 (x32 Version: 0.1) Adobe Stock Photos CS3 (x32 Version: 1.5) Adobe Type Support (x32 Version: 1.0) Adobe Update Manager CS3 (x32 Version: 5.1.0) Adobe Version Cue CS3 Client (x32 Version: 3) Adobe Video Profiles (x32 Version: 1.0) Adobe WAS CS3 (x32 Version: 1.0) Adobe WinSoft Linguistics Plugin (x32 Version: 1.0) Adobe XMP DVA Panels CS3 (x32 Version: 1.0) Adobe XMP Panels CS3 (x32 Version: 1.0) AHV content for Acrobat and Flash (x32 Version: 1) allTunes (x32 Version: Altova XMLSpy 2005 Enterprise Edition (x32 Version: 7.30) Anzeige am Bildschirm (Version: 6.67.10) Apple Application Support (x32 Version: 2.1.6) Apple Mobile Device Support (Version: Apple Software Update (x32 Version: AutoHotkey (x32 Version: Avery Wizard 4.0 (x32 Version: 4.0.201) AX88772A (x32 Version: 1.05) Axure RP Pro 6 (x32 Version: Bonjour (Version: BUFFALO TurboUSB for FLASH/HDD (x32) Bundled software uninstaller (x32) CDDRV_Installer (Version: 4.60) Conexant 20672 SmartAudio HD (Version: Create Recovery Media (x32 Version: CyberLink BD_3D Advisor 2.0 (x32 Version: 2.0.3928) CyberLink Blu-ray Disc Suite (x32 Version: 7.0.3825) CyberLink MediaShow (x32 Version: 5.1.2023a) CyberLink Power2Go (x32 Version: 6.1.4813b) CyberLink PowerBackup (x32 Version: 2.5.8720) CyberLink PowerBackup (x32 Version: 2.6.1018) CyberLink PowerDirector (x32 Version: 8.0.4905d) CyberLink PowerDVD 10 (x32 Version: 10.0.4002.52) CyberLink PowerDVD 9 (x32 Version: 9.0.3530.52) CyberLink PowerProducer (x32 Version: D3DX10 (x32 Version: 15.4.2368.0902) Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition (x32) DisplayLink Core Software (Version: 5.6.30272.0) DivX-Setup (x32 Version: Dolby Home Theater v4 (x32 Version: 7.2.7000.4) dows-Treiberpaket - Intel System (09/10/2010 (Version: 09/10/2010 Dropbox (HKCU Version: 2.0.22) DVBLink Network Client (x32 Version: 4.1.0000) ElsterFormular (x32 Version: Energie-Manager (x32 Version: 6.53) erLT (x32 Version: 1.20.0137) Explorer Lx Vollversion (x32 Version: 3.4.0) Eye-Fi Center 3.4 (x32 Version: 3.4.26) Gajim (x32 Version: 0.14.4) Google Chrome (x32 Version: 12.0.742.112) Google Earth Plug-in (x32 Version: Google Talk Plugin (x32 Version: Google Update Helper (x32 Version: Integrated Camera Driver Installer Package Ver. (x32 Version: Integrated Camera TWAIN (x32 Version: Intel PROSet Wireless Intel(R) Control Center (x32 Version: Intel(R) Identity Protection Technology (x32 Version: Intel(R) Management Engine Components (x32 Version: Intel(R) Network Connections Drivers (Version: 16.8) Intel(R) Processor Graphics (x32 Version: Intel(R) PROSet/Wireless for Bluetooth(R) + High Speed (Version: Intel(R) SDK for OpenCL - CPU Only Runtime Package (x32 Version: Intel(R) WiDi (Version: Intel(R) Wireless Display Intel® PROSet/Wireless WiFi-Software (Version: 15.03.1000.1637) iTunes (Version: JGsoft RegexBuddy 2.4.3 (x32 Version: 2.4.3) Junk Mail filter update (x32 Version: 15.4.3502.0922) KhalInstallWrapper (Version: 2.00.0000) Last.fm (x32) Lenovo Auto Scroll Utility (Version: 1.11) Lenovo Display Adapter (Version: 5.6.30320.0) Lenovo Mobile Access (x32 Version: 3.2.30417.1301) Lenovo Mobile Broadband Activation (x32 Version: 4.2.1003.00) Lenovo Patch Utility (x32 Version: Lenovo Patch Utility 64 bit (Version: Lenovo Power Management Driver (Version: Lenovo Registration (x32 Version: 1.0.4) Lenovo Screen Reading Optimizer (x32 Version: 1.16) Lenovo Solution Center (Version: Lenovo System Interface Driver (Version: 1.05) Lenovo System Update (x32 Version: 5.02.0011) Lenovo ThinkVantage Toolbox (Version: 6.0.5849.23) Lenovo USB 2.0 Port Replicator with Digital Video (x32 Version: 1.05) Lenovo User Guide (x32 Version: 1.0.0008.00) Lenovo Warranty Information (x32 Version: 1.0.0005.00) Lenovo Welcome (x32 Version: Lexware Elster (x32 Version: Lexware financial office premium 2013 (x32 Version: Lexware Info Service (x32 Version: Lion 3.1.0 (x32) Logitech SetPoint (x32 Version: 4.80) Lookeen Version (x32 Version: Memeo AutoSync (x32) Memeo Instant Backup (x32 Version: Mesh Runtime (x32 Version: 15.4.5722.2) Message Center Plus (x32 Version: 2.0.0012.00) Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319) Microsoft .NET Framework 4 Client Profile DEU Language Pack (Version: 4.0.30319) Microsoft .NET Framework 4 Extended (Version: 4.0.30319) Microsoft .NET Framework 4 Extended DEU Language Pack (Version: 4.0.30319) Microsoft Antimalware Service DE-DE Language Pack (Version: 3.0.8402.2) Microsoft Application Error Reporting (Version: 12.0.6015.5000) Microsoft Office 2010 Language Pack Service Pack 1 (SP1) (x32) Microsoft Office 2010 Service Pack 1 (SP1) (x32) Microsoft Office Access MUI (German) 2010 (x32 Version: 14.0.6029.1000) Microsoft Office Excel MUI (German) 2010 (x32 Version: 14.0.6029.1000) Microsoft Office Groove MUI (German) 2010 (x32 Version: 14.0.6029.1000) Microsoft Office InfoPath MUI (German) 2010 (x32 Version: 14.0.6029.1000) Microsoft Office Office 64-bit Components 2010 (Version: 14.0.6029.1000) Microsoft Office OneNote MUI (German) 2010 (x32 Version: 14.0.6029.1000) Microsoft Office Outlook MUI (German) 2010 (x32 Version: 14.0.6029.1000) Microsoft Office PowerPoint MUI (German) 2010 (x32 Version: 14.0.6029.1000) Microsoft Office Professional Plus 2010 (x32 Version: 14.0.6029.1000) Microsoft Office Proof (English) 2010 (x32 Version: 14.0.6029.1000) Microsoft Office Proof (French) 2010 (x32 Version: 14.0.6029.1000) Microsoft Office Proof (German) 2010 (x32 Version: 14.0.6029.1000) Microsoft Office Proof (Italian) 2010 (x32 Version: 14.0.6029.1000) Microsoft Office Proofing (German) 2010 (x32 Version: 14.0.6029.1000) Microsoft Office Publisher MUI (German) 2010 (x32 Version: 14.0.6029.1000) Microsoft Office Shared 64-bit MUI (German) 2010 (Version: 14.0.6029.1000) Microsoft Office Shared MUI (German) 2010 (x32 Version: 14.0.6029.1000) Microsoft Office Visio 2010 (x32 Version: 14.0.6029.1000) Microsoft Office Visio MUI (German) 2010 (x32 Version: 14.0.6029.1000) Microsoft Office Word MUI (German) 2010 (x32 Version: 14.0.6029.1000) Microsoft Security Client DE-DE Language Pack (Version: 2.1.1116.0) Microsoft Silverlight (Version: 5.1.20125.0) Microsoft SQL Server 2005 Compact Edition [ENU] (x32 Version: 3.1.0000) Microsoft Visio 2010 Service Pack 1 (SP1) (x32) Microsoft Visio Premium 2010 (x32 Version: 14.0.6029.1000) Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.56336) Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.59193) Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001) Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.50727.42) Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (x32 Version: 9.0.30729) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (Version: 10.0.30319) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219) Mobile Broadband Drivers (x32 Version: Mozilla Firefox 22.0 (x86 de) (x32 Version: 22.0) Mozilla Maintenance Service (x32 Version: 22.0) MSVCRT (x32 Version: 15.4.2862.0708) MSVCRT_amd64 (x32 Version: 15.4.2862.0708) MSXML 4.0 SP2 (KB954430) (x32 Version: 4.20.9870.0) MSXML 4.0 SP2 (KB973688) (x32 Version: 4.20.9876.0) MSXML 4.0 SP3 Parser (KB2758694) (x32 Version: 4.30.2117.0) MySQL Workbench 5.2 CE (x32 Version: 5.2.37) Ninja 4.9.6 (x32 Version: 4) OdbcLx 3.4 (x32 Version: 3.4.0) OpenVPN 2.1.3 (x32 Version: 2.1.3) PDF Settings (x32 Version: 1.0) Picasa 3 (x32 Version: 3.8) PlayReady PC Runtime amd64 (Version: 1.3.0) PuTTY version 0.62 (x32 Version: 0.62) RapidBoot (Version: 1.10) Registry Patch to Enable Maximum Power Saving on WiFi Adapters for Windows 7 (Version: 1.00) Renesas Electronics USB 3.0 Host Controller Driver (x32 Version: Rescue and Recovery (x32 Version: 4.31.0010.00) RICOH_Media_Driver_v2.12.18.01 (x32 Version: Seagate Dashboard (x32 Version: Shark007 Advanced Codecs (x32 Version: 4.1.8) Skype Click to Call (x32 Version: 5.10.9560) Skype™ 5.10 (x32 Version: 5.10.116) TeamViewer 8 (x32 Version: 8.0.19045) TextPad 5 (x32 Version: 5.3.1) ThinkPad Bluetooth with Enhanced Data Rate Software (Version: ThinkPad UltraNav Driver (Version: ThinkVantage Access Connections (x32 Version: 6.01) ThinkVantage AutoLock (Version: 1.06) ThinkVantage Communications Utility (Version: ThinkVantage Fingerprint Software (Version: ThinkVantage GPS (x32 Version: 2.80) ThinkVantage System für aktiven Festplattenschutz (Version: Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (x32 Version: 1) Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (x32 Version: 1) Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (x32 Version: 1) Update for Microsoft .NET Framework 4 Client Profile (KB2836939) (x32 Version: 1) Update for Microsoft .NET Framework 4 Extended (KB2468871) (x32 Version: 1) Update for Microsoft .NET Framework 4 Extended (KB2533523) (x32 Version: 1) Update for Microsoft .NET Framework 4 Extended (KB2600217) (x32 Version: 1) Update for Microsoft .NET Framework 4 Extended (KB2836939) (x32 Version: 1) Update for Microsoft Office 2010 (KB2494150) (x32) Update for Microsoft Office 2010 (KB2553065) (x32) Update for Microsoft Office 2010 (KB2553092) (x32) Update for Microsoft Office 2010 (KB2553181) 32-Bit Edition (x32) Update for Microsoft Office 2010 (KB2553267) 32-Bit Edition (x32) Update for Microsoft Office 2010 (KB2553270) 32-Bit Edition (x32) Update for Microsoft Office 2010 (KB2553310) 32-Bit Edition (x32) Update for Microsoft Office 2010 (KB2553378) 32-Bit Edition (x32) Update for Microsoft Office 2010 (KB2566458) (x32) Update for Microsoft Office 2010 (KB2596964) 32-Bit Edition (x32) Update for Microsoft Office 2010 (KB2598242) 32-Bit Edition (x32) Update for Microsoft Office 2010 (KB2687503) 32-Bit Edition (x32) Update for Microsoft Office 2010 (KB2687509) 32-Bit Edition (x32) Update for Microsoft Office 2010 (KB2760631) 32-Bit Edition (x32) Update for Microsoft Office 2010 (KB2767886) 32-Bit Edition (x32) Update for Microsoft OneNote 2010 (KB2553290) 32-Bit Edition (x32) Update for Microsoft Outlook 2010 (KB2597090) 32-Bit Edition (x32) Update for Microsoft Outlook 2010 (KB2687623) 32-Bit Edition (x32) Update for Microsoft Outlook Social Connector 2010 (KB2553406) 32-Bit Edition (x32) Update for Microsoft PowerPoint 2010 (KB2598240) 32-Bit Edition (x32) Update for Microsoft SharePoint Workspace 2010 (KB2589371) 32-Bit Edition (x32) USB PnP Sound Device VC80CRTRedist - 8.0.50727.6195 (x32 Version: 1.2.0) VirtualCloneDrive (x32) Visual Studio 2010 x64 Redistributables (Version: vtiger CRM Outlook Plug-in 5.0.4 (x32) Windows Live Communications Platform (x32 Version: 15.4.3502.0922) Windows Live Essentials (x32 Version: 15.4.3502.0922) Windows Live Essentials (x32 Version: 15.4.3508.1109) Windows Live Fotogalerie (x32 Version: 15.4.3502.0922) Windows Live ID Sign-in Assistant (Version: 7.250.4225.0) Windows Live Installer (x32 Version: 15.4.3502.0922) Windows Live Language Selector (Version: 15.4.3508.1109) Windows Live Mail (x32 Version: 15.4.3502.0922) Windows Live Mesh (x32 Version: 15.4.3502.0922) Windows Live Mesh ActiveX control for remote connections (x32 Version: 15.4.5722.2) Windows Live Messenger (x32 Version: 15.4.3502.0922) Windows Live MIME IFilter (Version: 15.4.3502.0922) Windows Live Movie Maker (x32 Version: 15.4.3502.0922) Windows Live Photo Common (x32 Version: 15.4.3502.0922) Windows Live Photo Gallery (x32 Version: 15.4.3502.0922) Windows Live PIMT Platform (x32 Version: 15.4.3508.1109) Windows Live Remote Client (Version: 15.4.5722.2) Windows Live Remote Client Resources (Version: 15.4.5722.2) Windows Live Remote Service (Version: 15.4.5722.2) Windows Live Remote Service Resources (Version: 15.4.5722.2) Windows Live SOXE (x32 Version: 15.4.3502.0922) Windows Live SOXE Definitions (x32 Version: 15.4.3502.0922) Windows Live UX Platform (x32 Version: 15.4.3502.0922) Windows Live UX Platform Language Pack (x32 Version: 15.4.3508.1109) Windows Live Writer (x32 Version: 15.4.3502.0922) Windows Live Writer Resources (x32 Version: 15.4.3502.0922) Windows-Treiberpaket - Intel (e1cexpress) Net (12/21/2010 (Version: 12/21/2010 Windows-Treiberpaket - Intel (MEIx64) System (10/19/2010 (Version: 10/19/2010 Windows-Treiberpaket - Intel System (11/20/2010 (Version: 11/20/2010 Windows-Treiberpaket - Intel USB (12/21/2010 (Version: 12/21/2010 Windows-Treiberpaket - Lenovo (01/19/2011 (Version: 01/19/2011 Windows-Treiberpaket - Synaptics (SynTP) Mouse (03/24/2011 (Version: 03/24/2011 WinRAR (x32) WinSCP 4.3.7 (x32 Version: 4.3.7) x64 Components v4.1.8 (Version: 4.1.8) ==================== Restore Points ========================= 08-07-2013 17:12:03 Windows Modules Installer 09-07-2013 09:03:48 Removed AVG 2013 09-07-2013 09:04:15 Removed AVG 2013 09-07-2013 09:08:10 Windows Modules Installer 09-07-2013 10:37:22 Installed AVG 2013 09-07-2013 10:37:29 Installed AVG 2013 09-07-2013 10:44:13 Windows Update 09-07-2013 11:11:48 Windows Modules Installer 09-07-2013 12:36:06 Windows Modules Installer 09-07-2013 13:03:51 Windows Update 09-07-2013 13:52:23 Removed AVG 2013 09-07-2013 13:52:52 Removed AVG 2013 09-07-2013 14:30:04 Removed Java 7 Update 25 ==================== Hosts content: ========================== 2009-07-14 04:34 - 2009-06-10 23:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts ==================== Scheduled Tasks (whitelisted) ============= Task: {00713CFB-3A50-4B0C-BB3F-7BC0D8524A84} - System32\Tasks\Lenovo\SROptimizer => %TRPATH%\SRORest.exe No File Task: {054149D2-2FD9-462A-8859-8CFD8DC4EAA8} - System32\Tasks\OpenVPN => C:\Program Files (x86)\OpenVPN\bin\openvpn-gui-1.0.3.exe [2009-11-20] () Task: {1E60361D-A9DE-49EE-8D76-86936634E2E1} - System32\Tasks\TVT\TVSUUpdateTask => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe [2013-04-11] () Task: {20EEBC53-E413-4A81-B81E-02FF2BD50602} - System32\Tasks\Lenovo\Lenovo Solution Center Launcher => C:\Program Files\lenovo\lenovo solution center\lsc.exe [2012-05-16] () Task: {336A6F38-316A-444C-AE70-64B601EAE457} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\Windows\ehome\mcupdate.exe [2010-11-21] (Microsoft Corporation) Task: {3E04C34F-E604-4680-9B86-F72DD891274A} - System32\Tasks\Microsoft\Windows Defender\MP Scheduled Scan => C:\program files\windows defender\MpCmdRun.exe [2009-07-14] (Microsoft Corporation) Task: {42764682-1D7D-4D6A-98E2-40C59E864DE8} - System32\Tasks\TVT\UpdateRnR => %TVTCOMMON%\Scheduler\tvtsetsched.exe No File Task: {4549C22C-327E-43C2-96BF-385DA8016E49} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-06-13] (Adobe Systems Incorporated) Task: {45E20089-2980-4FD7-8484-DD513DC8F979} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program => C:\Program Files\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe [2012-05-16] (Lenovo) Task: {4D1E4553-5838-4142-B22F-2195CC018F43} - System32\Tasks\TVT\LaunchRnR => %RR%\rrcmd.exe No File Task: {5030B593-053A-49BE-9E45-3EE9C15C8147} - System32\Tasks\PCDEventLauncher => C:\Program Files\PC-Doctor\sessionchecker.exe [2011-06-27] (PC-Doctor, Inc.) Task: {52407D94-E571-4629-A38F-1F7C45C51205} - System32\Tasks\Lenovo\LSC\LSCHardwareScan => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe [2012-05-16] () Task: {63EA78BF-EB01-4DE1-BDBD-82BE40D1B688} - System32\Tasks\PCDoctorBackgroundMonitorTask-Delay => C:\Program Files\PC-Doctor\uaclauncher.exe [2011-06-27] (PC-Doctor, Inc.) Task: {73267756-9306-4FCB-9A44-81687E4D9938} - System32\Tasks\TVT\ChangePWD => %RR%\rrcmd.exe No File Task: {7A9B897D-C903-4196-B34A-7C6A004824B5} - System32\Tasks\SystemToolsDailyTest => C:\Program Files\PC-Doctor\uaclauncher.exe [2011-06-27] (PC-Doctor, Inc.) Task: {8AA7C951-0151-44AA-B181-6F14BD1FD8A7} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-4186067094-2021574243-1185577494-1000Core => C:\Users\*******\AppData\Local\Google\Update\GoogleUpdate.exe [2012-02-22] (Google Inc.) Task: {8EFB4469-6B5F-4B69-8B4E-DE1258FC916E} - System32\Tasks\MCP => C:\Program Files (x86)\LENOVO\Message Center Plus\MCPLaunch.exe [2009-05-27] () Task: {9A88F3D2-4B95-4F51-A25A-695FDCC6F7E8} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task Task: {9AD49CC5-57B7-4A41-A1F1-19673577EB95} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-10-18] (Google Inc.) Task: {AA30FAE9-0B46-4BFB-8A97-C0A72D1A5F34} - System32\Tasks\PCDoctorBackgroundMonitorTask => C:\Program Files\PC-Doctor\uaclauncher.exe [2011-06-27] (PC-Doctor, Inc.) Task: {AD8A2E7C-6519-4533-9344-30A5B1CA1D2E} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-10-18] (Google Inc.) Task: {B2A6A355-BB70-407F-B67C-51E4C310229A} - System32\Tasks\Microsoft\Windows\WindowsBackup\Windows Backup Monitor => C:\Windows\system32\sdclt.exe [2010-11-21] (Microsoft Corporation) Task: {B41B7871-275D-430E-98D7-1DBE91B89D77} - System32\Tasks\EPUpdater => C:\Users\*******\AppData\Roaming\BABSOL~1\Shared\BabMaint.exe [2013-06-06] () Task: {B640A734-04DB-46FF-8DE7-73CAA7BBA63F} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-4186067094-2021574243-1185577494-1000UA => C:\Users\*******\AppData\Local\Google\Update\GoogleUpdate.exe [2012-02-22] (Google Inc.) Task: {CC4BDFE8-F53D-4FCA-AD0B-990B95C07506} - System32\Tasks\alltunes => C:\Program No File Task: {D97C9E93-5B1C-4B53-86B4-602809F4B7CE} - System32\Tasks\vpn\VPNLogin => C:\Users\*******\Documents\vpnlogin.exe [2011-05-04] () Task: {F285462A-C723-4B5B-B878-75A11F23A82E} - System32\Tasks\Microsoft\Windows\MobilePC\DisplayLink TMM Control Task: {F2B7A8EA-4967-4595-9E33-BD9297370B6C} - System32\Tasks\Microsoft\Windows\MUI\Lpksetup => C:\Windows\System32\lpksetup.exe [2010-11-21] (Microsoft Corporation) Task: {F4964A2D-EDD7-4F2B-A566-DF1884629C5B} - System32\Tasks\Microsoft\Windows\WindowsBackup\AutomaticBackup => C:\Windows\system32\rundll32.exe [2009-07-14] (Microsoft Corporation) Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4186067094-2021574243-1185577494-1000Core.job => C:\Users\*******\AppData\Local\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4186067094-2021574243-1185577494-1000UA.job => C:\Users\*******\AppData\Local\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\PCDoctorBackgroundMonitorTask-Delay.job => C:\Program Files\PC-Doctor\uaclauncher.exe Task: C:\Windows\Tasks\PCDoctorBackgroundMonitorTask.job => C:\Program Files\PC-Doctor\uaclauncher.exe Task: C:\Windows\Tasks\SystemToolsDailyTest.job => C:\Program Files\PC-Doctor\uaclauncher.exe ==================== Faulty Device Manager Devices ============= ==================== Event log errors: ========================= Application errors: ================== Error: (07/09/2013 05:45:24 PM) (Source: WinMgmt) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (07/09/2013 05:29:43 PM) (Source: Application Error) (User: ) Description: Name der fehlerhaften Anwendung: IEXPLORE.EXE, Version: 10.0.9200.16618, Zeitstempel: 0x51b2f318 Name des fehlerhaften Moduls: unknown, Version:, Zeitstempel: 0x00000000 Ausnahmecode: 0xc0000005 Fehleroffset: 0x74b4c9f1 ID des fehlerhaften Prozesses: 0x67c Startzeit der fehlerhaften Anwendung: 0xIEXPLORE.EXE0 Pfad der fehlerhaften Anwendung: IEXPLORE.EXE1 Pfad des fehlerhaften Moduls: IEXPLORE.EXE2 Berichtskennung: IEXPLORE.EXE3 Error: (07/09/2013 05:27:57 PM) (Source: Application Error) (User: ) Description: Name der fehlerhaften Anwendung: IEXPLORE.EXE, Version: 10.0.9200.16618, Zeitstempel: 0x51b2f318 Name des fehlerhaften Moduls: unknown, Version:, Zeitstempel: 0x00000000 Ausnahmecode: 0xc0000005 Fehleroffset: 0x74b4c9f1 ID des fehlerhaften Prozesses: 0xd60 Startzeit der fehlerhaften Anwendung: 0xIEXPLORE.EXE0 Pfad der fehlerhaften Anwendung: IEXPLORE.EXE1 Pfad des fehlerhaften Moduls: IEXPLORE.EXE2 Berichtskennung: IEXPLORE.EXE3 Error: (07/09/2013 05:24:18 PM) (Source: Application Error) (User: ) Description: Name der fehlerhaften Anwendung: IEXPLORE.EXE, Version: 10.0.9200.16618, Zeitstempel: 0x51b2f318 Name des fehlerhaften Moduls: unknown, Version:, Zeitstempel: 0x00000000 Ausnahmecode: 0xc0000005 Fehleroffset: 0x74b4c9f1 ID des fehlerhaften Prozesses: 0x1844 Startzeit der fehlerhaften Anwendung: 0xIEXPLORE.EXE0 Pfad der fehlerhaften Anwendung: IEXPLORE.EXE1 Pfad des fehlerhaften Moduls: IEXPLORE.EXE2 Berichtskennung: IEXPLORE.EXE3 Error: (07/09/2013 04:39:43 PM) (Source: Application Error) (User: ) Description: Name der fehlerhaften Anwendung: IEXPLORE.EXE, Version: 10.0.9200.16618, Zeitstempel: 0x51b2f318 Name des fehlerhaften Moduls: unknown, Version:, Zeitstempel: 0x00000000 Ausnahmecode: 0xc0000005 Fehleroffset: 0x74b4c9f1 ID des fehlerhaften Prozesses: 0x1418 Startzeit der fehlerhaften Anwendung: 0xIEXPLORE.EXE0 Pfad der fehlerhaften Anwendung: IEXPLORE.EXE1 Pfad des fehlerhaften Moduls: IEXPLORE.EXE2 Berichtskennung: IEXPLORE.EXE3 Error: (07/09/2013 04:39:02 PM) (Source: Application Error) (User: ) Description: Name der fehlerhaften Anwendung: IEXPLORE.EXE, Version: 10.0.9200.16618, Zeitstempel: 0x51b2f318 Name des fehlerhaften Moduls: unknown, Version:, Zeitstempel: 0x00000000 Ausnahmecode: 0xc0000005 Fehleroffset: 0x74b4c9f1 ID des fehlerhaften Prozesses: 0x16ac Startzeit der fehlerhaften Anwendung: 0xIEXPLORE.EXE0 Pfad der fehlerhaften Anwendung: IEXPLORE.EXE1 Pfad des fehlerhaften Moduls: IEXPLORE.EXE2 Berichtskennung: IEXPLORE.EXE3 Error: (07/09/2013 04:39:01 PM) (Source: Application Error) (User: ) Description: Name der fehlerhaften Anwendung: IEXPLORE.EXE, Version: 10.0.9200.16618, Zeitstempel: 0x51b2f318 Name des fehlerhaften Moduls: unknown, Version:, Zeitstempel: 0x00000000 Ausnahmecode: 0xc0000005 Fehleroffset: 0x74b4c9f1 ID des fehlerhaften Prozesses: 0x1688 Startzeit der fehlerhaften Anwendung: 0xIEXPLORE.EXE0 Pfad der fehlerhaften Anwendung: IEXPLORE.EXE1 Pfad des fehlerhaften Moduls: IEXPLORE.EXE2 Berichtskennung: IEXPLORE.EXE3 Error: (07/09/2013 04:39:01 PM) (Source: Application Error) (User: ) Description: Name der fehlerhaften Anwendung: IEXPLORE.EXE, Version: 10.0.9200.16618, Zeitstempel: 0x51b2f318 Name des fehlerhaften Moduls: unknown, Version:, Zeitstempel: 0x00000000 Ausnahmecode: 0xc0000005 Fehleroffset: 0x74b4c9f1 ID des fehlerhaften Prozesses: 0x1558 Startzeit der fehlerhaften Anwendung: 0xIEXPLORE.EXE0 Pfad der fehlerhaften Anwendung: IEXPLORE.EXE1 Pfad des fehlerhaften Moduls: IEXPLORE.EXE2 Berichtskennung: IEXPLORE.EXE3 Error: (07/09/2013 04:38:58 PM) (Source: Application Error) (User: ) Description: Name der fehlerhaften Anwendung: IEXPLORE.EXE, Version: 10.0.9200.16618, Zeitstempel: 0x51b2f318 Name des fehlerhaften Moduls: unknown, Version:, Zeitstempel: 0x00000000 Ausnahmecode: 0xc0000005 Fehleroffset: 0x74b4c9f1 ID des fehlerhaften Prozesses: 0x145c Startzeit der fehlerhaften Anwendung: 0xIEXPLORE.EXE0 Pfad der fehlerhaften Anwendung: IEXPLORE.EXE1 Pfad des fehlerhaften Moduls: IEXPLORE.EXE2 Berichtskennung: IEXPLORE.EXE3 Error: (07/09/2013 04:38:58 PM) (Source: Application Error) (User: ) Description: Name der fehlerhaften Anwendung: IEXPLORE.EXE, Version: 10.0.9200.16618, Zeitstempel: 0x51b2f318 Name des fehlerhaften Moduls: unknown, Version:, Zeitstempel: 0x00000000 Ausnahmecode: 0xc0000005 Fehleroffset: 0x74b4c9f1 ID des fehlerhaften Prozesses: 0x130c Startzeit der fehlerhaften Anwendung: 0xIEXPLORE.EXE0 Pfad der fehlerhaften Anwendung: IEXPLORE.EXE1 Pfad des fehlerhaften Moduls: IEXPLORE.EXE2 Berichtskennung: IEXPLORE.EXE3 System errors: ============= Error: (07/09/2013 05:47:25 PM) (Source: Service Control Manager) (User: ) Description: Der Dienst "MemeoBackgroundService" wurde aufgrund folgenden Fehlers nicht gestartet: %%1053 Error: (07/09/2013 05:47:25 PM) (Source: Service Control Manager) (User: ) Description: Das Zeitlimit (120000 ms) wurde beim Verbindungsversuch mit dem Dienst MemeoBackgroundService erreicht. Error: (07/09/2013 04:36:06 PM) (Source: Service Control Manager) (User: ) Description: Der Dienst "Funktionssuche-Ressourcenveröffentlichung" wurde mit folgendem Fehler beendet: %%-2147024809 Error: (07/09/2013 04:25:55 PM) (Source: Service Control Manager) (User: ) Description: Der Dienst "Funktionssuche-Ressourcenveröffentlichung" wurde mit folgendem Fehler beendet: %%-2147024809 Error: (07/09/2013 03:54:58 PM) (Source: Service Control Manager) (User: ) Description: Der Dienst "Funktionssuche-Ressourcenveröffentlichung" wurde mit folgendem Fehler beendet: %%-2147024809 Error: (07/09/2013 03:47:39 PM) (Source: Service Control Manager) (User: ) Description: Der Dienst "Funktionssuche-Ressourcenveröffentlichung" wurde mit folgendem Fehler beendet: %%-2147024809 Error: (07/09/2013 03:46:36 PM) (Source: Service Control Manager) (User: ) Description: Der Aufruf "ScRegSetValueExW" ist für "FailureActions" aufgrund folgenden Fehlers fehlgeschlagen: %%5 Error: (07/09/2013 03:45:57 PM) (Source: Service Control Manager) (User: ) Description: Der Aufruf "ScRegSetValueExW" ist für "Start" aufgrund folgenden Fehlers fehlgeschlagen: %%5 Error: (07/09/2013 03:45:57 PM) (Source: Service Control Manager) (User: ) Description: Der Aufruf "ScRegSetValueExW" ist für "Start" aufgrund folgenden Fehlers fehlgeschlagen: %%5 Error: (07/09/2013 03:39:41 PM) (Source: Service Control Manager) (User: ) Description: Der Dienst "Aufgabenplanung" ist vom Dienst "Windows-Ereignisprotokoll" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde: %%1058 Microsoft Office Sessions: ========================= Error: (07/09/2013 05:45:24 PM) (Source: WinMgmt)(User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (07/09/2013 05:29:43 PM) (Source: Application Error)(User: ) Description: IEXPLORE.EXE10.0.9200.1661851b2f318unknown0.0.0.000000000c000000574b4c9f167c01ce7cb921a58f23C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXEunknown60343cbd-e8ac-11e2-a367-60d819d5a7a5 Error: (07/09/2013 05:27:57 PM) (Source: Application Error)(User: ) Description: IEXPLORE.EXE10.0.9200.1661851b2f318unknown0.0.0.000000000c000000574b4c9f1d6001ce7cb8e32bd152C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXEunknown21294afb-e8ac-11e2-a367-60d819d5a7a5 Error: (07/09/2013 05:24:18 PM) (Source: Application Error)(User: ) Description: IEXPLORE.EXE10.0.9200.1661851b2f318unknown0.0.0.000000000c000000574b4c9f1184401ce7cb860023e79C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXEunknown9e745b90-e8ab-11e2-a367-60d819d5a7a5 Error: (07/09/2013 04:39:43 PM) (Source: Application Error)(User: ) Description: IEXPLORE.EXE10.0.9200.1661851b2f318unknown0.0.0.000000000c000000574b4c9f1141801ce7cb22691aa71C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXEunknown6453a1b4-e8a5-11e2-a367-60d819d5a7a5 Error: (07/09/2013 04:39:02 PM) (Source: Application Error)(User: ) Description: IEXPLORE.EXE10.0.9200.1661851b2f318unknown0.0.0.000000000c000000574b4c9f116ac01ce7cb20e11396eC:\Program Files (x86)\Internet Explorer\IEXPLORE.EXEunknown4bd330b1-e8a5-11e2-a367-60d819d5a7a5 Error: (07/09/2013 04:39:01 PM) (Source: Application Error)(User: ) Description: IEXPLORE.EXE10.0.9200.1661851b2f318unknown0.0.0.000000000c000000574b4c9f1168801ce7cb20db463c4C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXEunknown4b765b06-e8a5-11e2-a367-60d819d5a7a5 Error: (07/09/2013 04:39:01 PM) (Source: Application Error)(User: ) Description: IEXPLORE.EXE10.0.9200.1661851b2f318unknown0.0.0.000000000c000000574b4c9f1155801ce7cb20d4ba737C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXEunknown4b0d9e7a-e8a5-11e2-a367-60d819d5a7a5 Error: (07/09/2013 04:38:58 PM) (Source: Application Error)(User: ) Description: IEXPLORE.EXE10.0.9200.1661851b2f318unknown0.0.0.000000000c000000574b4c9f1145c01ce7cb20bfe6691C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXEunknown49c05dd4-e8a5-11e2-a367-60d819d5a7a5 Error: (07/09/2013 04:38:58 PM) (Source: Application Error)(User: ) Description: IEXPLORE.EXE10.0.9200.1661851b2f318unknown0.0.0.000000000c000000574b4c9f1130c01ce7cb20bd8508dC:\Program Files (x86)\Internet Explorer\IEXPLORE.EXEunknown4997e66f-e8a5-11e2-a367-60d819d5a7a5 ==================== Memory info =========================== Percentage of memory in use: 32% Total physical RAM: 8075.23 MB Available physical RAM: 5458.94 MB Total Pagefile: 16148.65 MB Available Pagefile: 13422.86 MB Total Virtual: 8192 MB Available Virtual: 8191.82 MB ==================== Drives ================================ Drive c: (Windows7_OS) (Fixed) (Total:138.11 GB) (Free:33.64 GB) NTFS (Disk=0 Partition=2) ==>[System with boot components (obtained from reading drive)] Drive j: (Info) (Network) (Total:800.52 GB) (Free:180.24 GB) NTFS Drive m: (management) (Network) (Total:800.52 GB) (Free:180.24 GB) NTFS Drive o: (orga) (Network) (Total:800.52 GB) (Free:180.24 GB) NTFS Drive p: (Public) (Network) (Total:800.52 GB) (Free:180.24 GB) NTFS Drive q: (Lenovo_Recovery) (Fixed) (Total:9.77 GB) (Free:0 GB) NTFS (Disk=0 Partition=3) Drive r: (homebase) (Network) (Total:91.67 GB) (Free:24.38 GB) NTFS Drive s: () (Network) (Total:297.99 GB) (Free:99.26 GB) NTFS Drive t: (ice) (Network) (Total:91.67 GB) (Free:24.38 GB) NTFS Drive u: () (Network) (Total:297.99 GB) (Free:99.26 GB) NTFS Drive v: (admin) (Network) (Total:800.52 GB) (Free:180.24 GB) NTFS Drive w: (Medien) (Network) (Total:226.74 GB) (Free:24.89 GB) NTFS Drive y: (Luka) (Network) (Total:800.52 GB) (Free:180.24 GB) NTFS Drive z: (System) (Network) (Total:42.9 GB) (Free:9.68 GB) NTFS ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (Size: 149 GB) (Disk ID: EEBD654D) Partition 1: (Active) - (Size=1 GB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=138 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=10 GB) - (Type=07 NTFS) ==================== End Of Log ============================ Schöne Grüße mutz01 |
![]() | #4 |
/// the machine /// TB-Ausbilder ![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() | ![]() IE10 unter Win 7 (64bit) crashed neuerdings bei jedem Start Downloade Dir bitte ![]()
Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
und ein frisches FRST Log bitte.
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
![]() | #5 |
| ![]() IE10 unter Win 7 (64bit) crashed neuerdings bei jedem Start Hallo Schrauber, AdwCleaner wurde ausgeführt. Hier der Bericht: Code:
ATTFilter # AdwCleaner v2.304 - Datei am 09/07/2013 um 21:09:43 erstellt # Aktualisiert am 03/07/2013 von Xplode # Betriebssystem : Windows 7 Professional Service Pack 1 (64 bits) # Benutzer : ******* - *******-NOTEBOOK # Bootmodus : Normal # Ausgeführt unter : C:\Users\*******\Desktop\adwcleaner.exe # Option [Löschen] **** [Dienste] **** ***** [Dateien / Ordner] ***** Datei Gelöscht : C:\END Datei Gelöscht : C:\Users\*******\AppData\Roaming\Mozilla\Firefox\Profiles\vtnf0i9h.default\foxydeal.sqlite Datei Gelöscht : C:\Users\*******\AppData\Roaming\Mozilla\Firefox\Profiles\vtnf0i9h.default\searchplugins\Babylon.xml Datei Gelöscht : C:\Users\*******\AppData\Roaming\Mozilla\Firefox\Profiles\vtnf0i9h.default\searchplugins\delta.xml Ordner Gelöscht : C:\ProgramData\Babylon Ordner Gelöscht : C:\ProgramData\Partner Ordner Gelöscht : C:\Users\*******\AppData\Local\PackageAware Ordner Gelöscht : C:\Users\*******\AppData\Roaming\BabSolution Ordner Gelöscht : C:\Users\*******\AppData\Roaming\Babylon ***** [Registrierungsdatenbank] ***** Schlüssel Gelöscht : HKCU\Software\BabSolution Schlüssel Gelöscht : HKCU\Software\BI Schlüssel Gelöscht : HKCU\Software\Conduit Schlüssel Gelöscht : HKCU\Software\DataMngr Schlüssel Gelöscht : HKCU\Software\DataMngr_Toolbar Schlüssel Gelöscht : HKCU\Software\delta LTD Schlüssel Gelöscht : HKCU\Software\FoxyDeal Schlüssel Gelöscht : HKCU\Software\f2da8ce038be42 Schlüssel Gelöscht : HKLM\Software\BabylonToolbar Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{4D076AB4-7562-427A-B5D2-BD96E19DEE56} Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3} Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\secman.DLL Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Prod.cap Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\S Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{11549FE4-7C5A-4C17-9FC3-56FC5162A994} Schlüssel Gelöscht : HKLM\Software\DataMngr Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE} Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{826D7151-8D99-434B-8540-082B8C2AE556} Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE} Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5} Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\f2da8ce038be42 Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\bi_uninstaller Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{1231839B-064E-4788-B865-465A1B5266FD} Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{2DAC2231-CC35-482B-97C5-CED1D4185080} Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{3F1CD84C-04A3-4EA0-9EA1-7D134FD66C82} Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{3F83A9CA-B5F0-44EC-9357-35BB3E84B07F} Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{47E520EA-CAD2-4F51-8F30-613B3A1C33EB} Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{57C91446-8D81-4156-A70E-624551442DE9} Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE} Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{70AFB7B2-9FB5-4A70-905B-0E9576142E1D} Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{7AD65FD1-79E0-406D-B03C-DD7C14726D69} Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{97DD820D-2E20-40AD-B01E-6730B2FCE630} Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{B177446D-54A4-4869-BABC-8566110B4BE0} Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{D9D1DFC5-502D-43E4-B1BB-4D0B7841489A} Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{E0B07188-A528-4F9E-B2F7-C7FDE8680AE4} Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{F05B12E1-ADE8-4485-B45B-898748B53C37} ***** [Internet Browser] ***** -\\ Internet Explorer v10.0.9200.16618 [OK] Die Registrierungsdatenbank ist sauber. -\\ Mozilla Firefox v22.0 (de) Datei : C:\Users\*******\AppData\Roaming\Mozilla\Firefox\Profiles\vtnf0i9h.default\prefs.js C:\Users\*******\AppData\Roaming\Mozilla\Firefox\Profiles\vtnf0i9h.default\user.js ... Gelöscht ! Gelöscht : user_pref("extensions.delta.admin", false); Gelöscht : user_pref("extensions.delta.aflt", "babsst"); Gelöscht : user_pref("extensions.delta.appId", "{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}"); Gelöscht : user_pref("extensions.delta.autoRvrt", "false"); Gelöscht : user_pref("extensions.delta.dfltLng", "de"); Gelöscht : user_pref("extensions.delta.excTlbr", false); Gelöscht : user_pref("extensions.delta.ffxUnstlRst", true); Gelöscht : user_pref("extensions.delta.id", "d44ed4b300000000000060d819d5a7a5"); Gelöscht : user_pref("extensions.delta.instlDay", "15887"); Gelöscht : user_pref("extensions.delta.instlRef", "sst"); Gelöscht : user_pref("extensions.delta.newTab", false); Gelöscht : user_pref("extensions.delta.prdct", "delta"); Gelöscht : user_pref("extensions.delta.prtnrId", "delta"); Gelöscht : user_pref("extensions.delta.rvrt", "false"); Gelöscht : user_pref("extensions.delta.smplGrp", "none"); Gelöscht : user_pref("extensions.delta.tlbrId", "base"); Gelöscht : user_pref("extensions.delta.tlbrSrchUrl", ""); Gelöscht : user_pref("extensions.delta.vrsn", ""); Gelöscht : user_pref("extensions.delta.vrsnTs", ""); Gelöscht : user_pref("extensions.delta.vrsni", ""); Gelöscht : user_pref("extensions.delta_i.babExt", ""); Gelöscht : user_pref("extensions.delta_i.babTrack", "affID=119820&tsp=4930"); Gelöscht : user_pref("extensions.delta_i.srcExt", "ss"); Datei : C:\Users\Margarete\AppData\Roaming\Mozilla\Firefox\Profiles\sm70sqsj.default\prefs.js [OK] Die Datei ist sauber. -\\ Google Chrome v12.0.742.112 Datei : C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Preferences [OK] Die Datei ist sauber. ************************* AdwCleaner[R1].txt - [5960 octets] - [09/07/2013 21:09:26] AdwCleaner[S1].txt - [6023 octets] - [09/07/2013 21:09:43] ########## EOF - C:\AdwCleaner[S1].txt - [6083 octets] ########## Code:
ATTFilter ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Junkware Removal Tool (JRT) by Thisisu Version: 5.0.2 (07.09.2013:1) OS: Windows 7 Professional x64 Ran by ******* on 09.07.2013 at 21:18:44,62 ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ ~~~ Services ~~~ Registry Values ~~~ Registry Keys ~~~ Files ~~~ Folders ~~~ FireFox Successfully deleted: [File] C:\Users\*******\AppData\Roaming\mozilla\firefox\profiles\vtnf0i9h.default\invalidprefs.js Emptied folder: C:\Users\*******\AppData\Roaming\mozilla\firefox\profiles\vtnf0i9h.default\minidumps [43 files] ~~~ Event Viewer Logs were cleared ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Scan was completed on 09.07.2013 at 21:23:14,63 End of JRT log ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ und hier das neue FRST-Log: FRST Logfile: FRST Logfile: FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 09-07-2013 01 Ran by ******* (administrator) on 09-07-2013 21:40:28 Running from C:\Users\*******\Desktop Windows 7 Professional Service Pack 1 (X64) OS Language: German Standard Internet Explorer Version 10 Boot Mode: Normal ==================== Processes (Whitelisted) ================= (Lenovo Group Limited) C:\Program Files\Lenovo\RapidBoot\HyperW7Svc64.exe (Lenovo.) C:\Windows\system32\ibmpmsvc.exe (DisplayLink Corp.) C:\Program Files\DisplayLink Core Software\DisplayLinkManager.exe (Logitech, Inc.) C:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.exe (DisplayLink Corp.) C:\Program Files\DisplayLink Core Software\DisplayLinkUserAgent.exe (Microsoft Corporation) C:\Windows\system32\WLANExt.exe (Microsoft Corporation) C:\Windows\System32\lpksetup.exe (Lenovo Group Limited) C:\Program Files\LENOVO\HOTKEY\TPHKSVC.exe (Lenovo Group Limited) C:\Program Files\LENOVO\HOTKEY\TPHKLOAD.exe (Lenovo) C:\Program Files (x86)\Lenovo\Access Connections\AcPrfMgrSvc.exe (Lenovo) C:\Program Files (x86)\Lenovo\Access Connections\AcSvc.exe (Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe (Broadcom Corporation.) C:\Program Files\ThinkPad\Bluetooth Software\btwdins.exe (CyberLink) C:\Program Files (x86)\CyberLink\PowerDVD10\NavFilter\kmsvc.exe (CyberLink) C:\Program Files (x86)\CyberLink\PowerDVD9\NavFilter\kmsvc.exe (Authentec Inc.) C:\Program Files\ThinkVantage Fingerprint Software\upeksvr.exe (Microsoft Corporation) C:\Windows\system32\lpksetup.exe (Conexant Systems Inc.) C:\Windows\system32\CxAudMsg64.exe (DVBLogic) C:\Program Files (x86)\DVBLogic\DVBLink\dvblink_client.exe (Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe (Intel Corporation) C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe (Lenovo Group Limited) C:\Program Files\Lenovo\Communications Utility\CAMMUTE.exe (Lenovo Group Limited) C:\Program Files\LENOVO\HOTKEY\MICMUTE.exe (Lenovo Group Limited) C:\Program Files\Lenovo\Communications Utility\TPKNRSVC.exe (Lenovo Group Limited) C:\Program Files\Lenovo\Communications Utility\vcamsvc.exe (Lenovo Group Limited) C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe (Memeo) C:\Program Files (x86)\Memeo\AutoBackup\MemeoBackgroundService.exe (DisplayLink Corp.) C:\Program Files\Lenovo Display Adapter\DisplayLinkLenovoSupport.exe (DisplayLink Corp.) C:\Program Files\DisplayLink Core Software\DisplayLinkUI.exe (Lenovo Group Limited) C:\PROGRA~1\Lenovo\HOTKEY\TPONSCR.EXE (Lenovo Group Limited) C:\PROGRA~1\Lenovo\HOTKEY\SHTCTKY.EXE (Lenovo Group Limited) C:\PROGRA~1\LENOVO\VIRTSCRL\virtscrl.exe (Lenovo Group Limited) C:\PROGRA~1\Lenovo\HOTKEY\tpnumlkd.exe (Microsoft Corporation) C:\Windows\system32\PrintIsolationHost.exe (Lenovo Group Limited) C:\Program Files (x86)\Lenovo\Screen Reading Optimizer\SRORest.exe (Lenovo.) C:\Windows\System32\TpShocks.exe (Lenovo Group Limited) C:\Program Files\Lenovo\Communications Utility\TpKnrres.exe (Lenovo Group Limited) C:\Program Files\Lenovo\AutoLock\ALCKRESI.exe (Intel Corporation) C:\Windows\System32\igfxpers.exe (Intel Corporation) C:\Windows\system32\igfxsrvc.exe (Intel Corporation) C:\Windows\System32\hkcmd.exe () C:\Program Files\CONEXANT\ForteConfig\fmapp.exe (Logitech Inc.) C:\Program Files\Logitech\SetPoint\LBTWiz.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe (Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE () C:\Program Files (x86)\Lion\Lion.exe (Synaptics Incorporated) C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE (Eye-Fi, Inc.) C:\Program Files (x86)\Eye-Fi\Helper\EyeFiHelper.exe (ACD Systems International Inc.) C:\Program Files (x86)\Common Files\ACD Systems\DE\DevDetect.exe (Broadcom Corporation.) C:\Program Files\ThinkPad\Bluetooth Software\BTTray.exe (Docking Station) C:\Program Files (x86)\Lenovo\igpxtskmgn64.exe (Logitech, Inc.) C:\Program Files\Logitech\SetPoint\SetPoint.exe (Dropbox, Inc.) C:\Users\*******\AppData\Roaming\Dropbox\bin\Dropbox.exe () C:\Program Files (x86)\Gajim\bin\gajim.exe (Lenovo) C:\Program Files (x86)\Lenovo\MobileAccess\MobileAccess.exe (Elaborate Bytes AG) C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe () C:\Program Files (x86)\Seagate\Seagate Dashboard\MemeoLauncher.exe (Ricoh co.,Ltd.) C:\Program Files (x86)\Integrated Camera Driver\X64\RCIMGDIR.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPLpr.exe (CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD9\PDVD9Serv.exe (CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe (Renesas Electronics Corporation) C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe (Memeo Inc.) C:\Program Files (x86)\Memeo\AutoBackup\MemeoLauncher2.exe (Memeo Inc.) C:\Program Files (x86)\Memeo\AutoSync\MemeoLauncher2.exe (Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe (DVBLogic) C:\Program Files (x86)\DVBLogic\DVBLink\dvblink_mc_launcher.exe (Dolby Laboratories Inc.) C:\Program Files (x86)\Dolby Home Theater v4\pcee4.exe () C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe (CyberLink) C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe (cyberlink) C:\Program Files (x86)\CyberLink\Shared files\brs.exe (Adobe Systems Inc.) C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\acrotray.exe () C:\Program Files\Logitech\SetPoint\x86\SetPoint32.exe (Logitech, Inc.) C:\Program Files\Common Files\Logishrd\KHAL2\KHALMNPR.EXE () C:\Program Files (x86)\Lenovo\Access Connections\AcFnF5.exe (Haufe-Lexware GmbH & Co. KG) C:\Program Files (x86)\Common Files\Lexware\LxWebAccess\LxWebAccess.exe (Microsoft Corporation) \\?\C:\Windows\system32\wbem\WMIADAP.EXE (Lenovo Group Limited) C:\PROGRA~2\ThinkPad\UTILIT~1\SCHTASK.exe ==================== Registry (Whitelisted) ================== HKLM\...\Run: [TpShocks] - TpShocks.exe [380776 2011-03-29] (Lenovo.) HKLM\...\Run: [LENOVO.TPKNRRES] - C:\Program Files\Lenovo\Communications Utility\TPKNRRES.exe [290160 2012-06-01] (Lenovo Group Limited) HKLM\...\Run: [ALCKRESI.EXE] - C:\Program Files\Lenovo\AutoLock\ALCKRESI.EXE [386408 2011-09-27] (Lenovo Group Limited) HKLM\...\Run: [AcWin7Hlpr] - C:\Program Files (x86)\Lenovo\Access Connections\AcTBenabler.exe [63784 2013-03-18] (Lenovo) HKLM\...\Run: [SmartAudio] - C:\Program Files\CONEXANT\SAII\SAIICpl.exe /t [316032 2010-12-14] (Conexant systems, Inc.) HKLM\...\Run: [Persistence] - C:\Windows\system32\igfxpers.exe [417088 2012-06-11] (Intel Corporation) HKLM\...\Run: [Kernel and Hardware Abstraction Layer] - KHALMNPR.EXE [x] HKLM\...\Run: [IgfxTray] - C:\Windows\system32\igfxtray.exe [170304 2012-08-27] (Intel Corporation) HKLM\...\Run: [HotKeysCmds] - C:\Windows\system32\hkcmd.exe [392512 2012-06-11] (Intel Corporation) HKLM\...\Run: [ForteConfig] - C:\Program Files\Conexant\ForteConfig\fmapp.exe [49056 2010-10-26] () HKLM\...\Run: [Cm108Sound] - C:\Windows\syswow64\RunDll32.exe C:\Windows\Syswow64\cm108.dll,CMICtrlWnd [8146944 2010-07-05] (C-Media Corporation) HKLM\...\Run: [Bluetooth Connection Assistant] - LBTWIZ.EXE -silent [x] HKLM\...\Run: [SynTPEnh] - %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe [2963184 2013-04-24] (Synaptics Incorporated) HKLM\...\Winlogon: [Userinit] C:\Windows\system32\userinit.exe, Winlogon\Notify\LBTWlgn: c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll (Logitech, Inc.) Winlogon\Notify\psfus: C:\Program Files\ThinkVantage Fingerprint Software\psqlpwd.dll (Authentec Inc.) HKCU\...\Run: [Skype] - "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun [17418928 2012-07-13] (Skype Technologies S.A.) HKCU\...\Run: [OfficeSyncProcess] - "C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE" [719672 2012-01-20] (Microsoft Corporation) HKCU\...\Run: [Lion] - "C:\Program Files (x86)\Lion\Lion.exe" [235579 2010-04-14] () HKCU\...\Run: [Google Update] - "C:\Users\*******\AppData\Local\Google\Update\GoogleUpdate.exe" /c [136176 2012-02-22] (Google Inc.) HKCU\...\Run: [Eye-Fi] - "C:\Program Files (x86)\Eye-Fi\Helper\EyeFiHelper.exe" [3961464 2011-12-22] (Eye-Fi, Inc.) HKCU\...\Run: [Device Detector] - DevDetect.exe -autorun [x] HKCU\...\Policies\system: [DisableRegistryTools] 0 HKCU\...\Policies\system: [DisableTaskMgr] 0 MountPoints2: {0f5bc55c-87d0-11e2-973a-60d819d5a7a5} - E:\Start.exe MountPoints2: {15568f21-533e-11e2-aa1b-60d819d5a7a5} - E:\AutoRun.exe MountPoints2: {15568f36-533e-11e2-aa1b-60d819d5a7a5} - E:\AutoRun.exe MountPoints2: {3ce48f40-6232-11e1-8159-028037ec0200} - F:\Start.bat MountPoints2: {9a35c050-f962-11e0-879a-806e6f6e6963} - Q:\LenovoQDrive.exe MountPoints2: {acc6c15a-8bac-11e1-a964-60d819d5a7a5} - E:\AutoRun.exe MountPoints2: {f98ca1c2-54f5-11e2-b21b-60d819d5a7a5} - E:\AutoRun.exe HKLM-x32\...\Run: [] - [x] HKLM-x32\...\Run: [Lenovo Registration] - C:\Program Files (x86)\Lenovo Registration\LenovoReg.exe /boot [4351712 2011-07-13] (Lenovo, Inc.) HKLM-x32\...\Run: [PWMTRV] - rundll32 C:\PROGRA~2\ThinkPad\UTILIT~1\PWMTR64V.DLL,PwrMgrBkGndMonitor [6001448 2013-03-18] (Lenovo Group Limited) HKLM-x32\...\Run: [MobileAccess] - C:\Program Files (x86)\Lenovo\MobileAccess\MobileAccess.exe -silentExitIfNotFirst [155864 2013-04-17] (Lenovo) HKLM-x32\...\Run: [VirtualCloneDrive] - "C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe" /s [89456 2011-03-07] (Elaborate Bytes AG) HKLM-x32\...\Run: [UpdatePSTShortCut] - "C:\Program Files (x86)\CyberLink\Blu-ray Disc Suite\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\Blu-ray Disc Suite" UpdateWithCreateOnce "Software\CyberLink\PowerStarter" [222504 2011-06-13] (CyberLink Corp.) HKLM-x32\...\Run: [UpdatePPShortCut] - "C:\Program Files (x86)\CyberLink\PowerProducer\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\PowerProducer" update "Software\CyberLink\PowerProducer\5.0" [222504 2010-09-17] (CyberLink Corp.) HKLM-x32\...\Run: [SunJavaUpdateSched] - "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" [x] HKLM-x32\...\Run: [Seagate Dashboard] - C:\Program Files (x86)\Seagate\Seagate Dashboard\MemeoLauncher.exe --silent --no_ui [79112 2011-06-01] () HKLM-x32\...\Run: [RotateImage] - C:\Program Files (x86)\Integrated Camera Driver\X64\RCIMGDIR.exe [55808 2008-10-30] (Ricoh co.,Ltd.) HKLM-x32\...\Run: [RemoteControl9] - "C:\Program Files (x86)\CyberLink\PowerDVD9\PDVD9Serv.exe" [87336 2010-08-02] (CyberLink Corp.) HKLM-x32\...\Run: [RemoteControl10] - "C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe" [87336 2011-03-30] (CyberLink Corp.) HKLM-x32\...\Run: [NUSB3MON] - "C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe" [115048 2011-09-16] (Renesas Electronics Corporation) HKLM-x32\...\Run: [Memeo Instant Backup] - C:\Program Files (x86)\Memeo\AutoBackup\MemeoLauncher2.exe --silent --no_ui [136416 2011-05-04] (Memeo Inc.) HKLM-x32\...\Run: [Memeo AutoSync] - C:\Program Files (x86)\Memeo\AutoSync\MemeoLauncher2.exe --silent [144608 2011-05-05] (Memeo Inc.) HKLM-x32\...\Run: [LexwareInfoService] - C:\Program Files (x86)\Common Files\Lexware\Update Manager\LxUpdateManager.exe /autostart [189808 2011-07-31] (Haufe-Lexware GmbH & Co. KG) HKLM-x32\...\Run: [iTunesHelper] - "C:\Program Files (x86)\iTunes\iTunesHelper.exe" [421736 2012-01-16] (Apple Inc.) HKLM-x32\...\Run: [IMSS] - "C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe" [112152 2011-01-17] (Intel Corporation) HKLM-x32\...\Run: [DVBLink MediaCenter Launcher] - C:\Program Files (x86)\DVBLogic\DVBLink\dvblink_mc_launcher.exe [58368 2011-12-06] (DVBLogic) HKLM-x32\...\Run: [Dolby Home Theater v4] - "C:\Program Files (x86)\Dolby Home Theater v4\pcee4.exe" -autostart [506712 2011-02-03] (Dolby Laboratories Inc.) HKLM-x32\...\Run: [DivXUpdate] - "C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW [1263952 2013-02-13] () HKLM-x32\...\Run: [DivXMediaServer] - C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe [x] HKLM-x32\...\Run: [CLMLServer] - "C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe" [103720 2009-11-02] (CyberLink) HKLM-x32\...\Run: [BDRegion] - C:\Program Files (x86)\Cyberlink\Shared files\brs.exe [75048 2012-04-02] (cyberlink) HKLM-x32\...\Run: [BCSSync] - "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices [91520 2010-03-13] (Microsoft Corporation) HKLM-x32\...\Run: [AVG_UI] - "C:\Program Files (x86)\AVG\AVG2013\avgui.exe" /TRAYONLY [x] HKLM-x32\...\Run: [APSDaemon] - "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" [59240 2011-11-02] (Apple Inc.) HKLM-x32\...\Run: [Adobe ARM] - "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [958576 2013-04-04] (Adobe Systems Incorporated) HKLM-x32\...\Run: [Acrobat Assistant 8.0] - "C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\Acrotray.exe" [624248 2007-05-10] (Adobe Systems Inc.) HKU\Default\...\RunOnce: [mctadmin] - C:\Windows\System32\mctadmin.exe [97280 2009-07-14] (Microsoft Corporation) HKU\Default\...\RunOnce: [] - [x] HKU\Default\...\RunOnce: [Lenovoautoqdrive] - C:\PROGRA~2\Common~1\Lenovo\Lenovo~1\LenovoAutorunreg.exe /DRIVE=Q [159744 2009-03-24] () HKU\Default\...\RunOnce: [Lenovo.ShowBand] - C:\Program Files\Lenovo\SimpleTap DeskBand\ShowBand.exe /show [156000 2012-05-16] (Lenovo) HKU\Default User\...\RunOnce: [mctadmin] - C:\Windows\System32\mctadmin.exe [97280 2009-07-14] (Microsoft Corporation) HKU\Default User\...\RunOnce: [] - [x] HKU\Default User\...\RunOnce: [Lenovoautoqdrive] - C:\PROGRA~2\Common~1\Lenovo\Lenovo~1\LenovoAutorunreg.exe /DRIVE=Q [159744 2009-03-24] () HKU\Default User\...\RunOnce: [Lenovo.ShowBand] - C:\Program Files\Lenovo\SimpleTap DeskBand\ShowBand.exe /show [156000 2012-05-16] (Lenovo) Lsa: [Notification Packages] scecli C:\Program Files\ThinkVantage Fingerprint Software\psqlpwd.dll C:\Program Files\ThinkPad\Bluetooth Software\BtwProximityCP.dll ACGina Startup: C:\ProgramData\Start Menu\Programs\Startup\Bluetooth.lnk ShortcutTarget: Bluetooth.lnk -> C:\Program Files\ThinkPad\Bluetooth Software\BTTray.exe (Broadcom Corporation.) Startup: C:\ProgramData\Start Menu\Programs\Startup\igpxtskmgn.lnk ShortcutTarget: igpxtskmgn.lnk -> C:\Program Files (x86)\Lenovo\igpxtskmgn64.exe (Docking Station) Startup: C:\ProgramData\Start Menu\Programs\Startup\Logitech SetPoint.lnk ShortcutTarget: Logitech SetPoint.lnk -> C:\Program Files\Logitech\SetPoint\SetPoint.exe (Logitech, Inc.) Startup: C:\Users\*******\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk ShortcutTarget: Dropbox.lnk -> C:\Users\*******\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.) Startup: C:\Users\*******\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Gajim.lnk ShortcutTarget: Gajim.lnk -> C:\Program Files (x86)\Gajim\bin\gajim.exe () ==================== Internet (Whitelisted) ==================== HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/ BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~3\Office14\GROOVEEX.DLL (Microsoft Corporation) BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.) BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~3\Office14\URLREDIR.DLL (Microsoft Corporation) BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll No File BHO-x32: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~3\Office14\GROOVEEX.DLL (Microsoft Corporation) BHO-x32: Windows Live ID-Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.) BHO-x32: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated) BHO-x32: Skype Browser Helper - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~3\Office14\URLREDIR.DLL (Microsoft Corporation) Toolbar: HKLM-x32 - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated) DPF: HKLM-x32 {A6616B31-4860-41E2-98E3-CA7649AF172F} file:///F:/launch.ocx Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - No File Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies) Tcpip\Parameters: [DhcpNameServer] FireFox: ======== FF ProfilePath: C:\Users\*******\AppData\Roaming\Mozilla\Firefox\Profiles\vtnf0i9h.default FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_7_700_224.dll () FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.) FF Plugin: @microsoft.com/GENUINE - disabled No File FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20125.0\npctrl.dll ( Microsoft Corporation) FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~3\Office14\NPAUTHZ.DLL (Microsoft Corporation) FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_7_700_224.dll () FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll () FF Plugin-x32: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.) FF Plugin-x32: @Google.com/GoogleEarthPlugin - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google) FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 - C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll (Google, Inc.) FF Plugin-x32: @java.com/DTPlugin,version=10.25.2 - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation) FF Plugin-x32: @microsoft.com/GENUINE - disabled No File FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.20125.0\npctrl.dll ( Microsoft Corporation) FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~2\MICROS~3\Office14\NPAUTHZ.DLL (Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~3\Office14\NPSPWRAP.DLL (Microsoft Corporation) FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation) FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\\npGoogleUpdate3.dll (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\\npGoogleUpdate3.dll (Google Inc.) FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF Plugin HKCU: @talk.google.com/GoogleTalkPlugin - C:\Users\*******\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll (Google) FF Plugin HKCU: @talk.google.com/O1DPlugin - C:\Users\*******\AppData\Roaming\Mozilla\plugins\npo1d.dll (Google) FF Plugin HKCU: @talk.google.com/O3DPlugin - C:\Users\*******\AppData\Roaming\Mozilla\plugins\npgtpo3dautoplugin.dll () FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\*******\AppData\Local\Google\Update\\npGoogleUpdate3.dll (Google Inc.) FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\*******\AppData\Local\Google\Update\\npGoogleUpdate3.dll (Google Inc.) FF Extension: United States English Spellchecker - C:\Users\*******\AppData\Roaming\Mozilla\Firefox\Profiles\vtnf0i9h.default\Extensions\en-US@dictionaries.addons.mozilla.org FF Extension: FireShot - C:\Users\*******\AppData\Roaming\Mozilla\Firefox\Profiles\vtnf0i9h.default\Extensions\{0b457cAA-602d-484a-8fe7-c1d894a011ba} FF Extension: IE Tab 2 (FF 3.6+) - C:\Users\*******\AppData\Roaming\Mozilla\Firefox\Profiles\vtnf0i9h.default\Extensions\{1BC9BA34-1EED-42ca-A505-6D2F1A935BBB} FF Extension: ColorZilla - C:\Users\*******\AppData\Roaming\Mozilla\Firefox\Profiles\vtnf0i9h.default\Extensions\{6AC85730-7D0F-4de0-B3FA-21142DD85326} FF Extension: firebug - C:\Users\*******\AppData\Roaming\Mozilla\Firefox\Profiles\vtnf0i9h.default\Extensions\firebug@software.joehewitt.com.xpi FF Extension: password.generator - C:\Users\*******\AppData\Roaming\Mozilla\Firefox\Profiles\vtnf0i9h.default\Extensions\password.generator@kolya.ca.xpi FF Extension: secureLogin - C:\Users\*******\AppData\Roaming\Mozilla\Firefox\Profiles\vtnf0i9h.default\Extensions\secureLogin@blueimp.net.xpi FF Extension: No Name - C:\Users\*******\AppData\Roaming\Mozilla\Firefox\Profiles\vtnf0i9h.default\Extensions\{3e9bb2a7-62ca-4efa-a4e6-f6f6168a652d}.xpi FF Extension: No Name - C:\Users\*******\AppData\Roaming\Mozilla\Firefox\Profiles\vtnf0i9h.default\Extensions\{64161300-e22b-11db-8314-0800200c9a66}.xpi FF Extension: No Name - C:\Users\*******\AppData\Roaming\Mozilla\Firefox\Profiles\vtnf0i9h.default\Extensions\{c45c406e-ab73-11d8-be73-000a95be3b12}.xpi FF Extension: No Name - C:\Users\*******\AppData\Roaming\Mozilla\Firefox\Profiles\vtnf0i9h.default\Extensions\{EF522540-89F5-46b9-B6FE-1829E2B572C6}.xpi FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} FF Extension: Java Console - C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA} FF Extension: Java Console - C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA} FF Extension: Default - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} FF HKLM-x32\...\Firefox\Extensions: [VIP1X@verisign.com] C:\Program Files (x86)\Symantec\VIP Access Client\ FF HKLM-x32\...\Firefox\Extensions: [VIP2X@verisign.com] C:\Program Files (x86)\Symantec\VIP Access Client\ Chrome: ======= CHR Extension: (Skype Click to Call) - C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\ CHR Extension: (DivX Plus Web Player HTML5 \u003Cvideo\u003E) - C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\nneajnkjbffgblleaoojgaacokifdkhm\ ==================== Services (Whitelisted) ================= R2 CLKMSVC10_38F51D56; C:\Program Files (x86)\CyberLink\PowerDVD10\NavFilter\kmsvc.exe [241648 2012-04-02] (CyberLink) R2 CLKMSVC10_9EC60124; C:\Program Files (x86)\CyberLink\PowerDVD9\NavFilter\kmsvc.exe [240112 2010-11-23] (CyberLink) R2 CxAudMsg; C:\Windows\system32\CxAudMsg64.exe [198784 2010-12-17] (Conexant Systems Inc.) R2 DisplayLinkService; C:\Program Files\DisplayLink Core Software\DisplayLinkManager.exe [9573736 2011-02-03] (DisplayLink Corp.) S3 DozeSvc; C:\Program Files (x86)\ThinkPad\Utilities\DZSVC64.EXE [320576 2013-03-18] (Lenovo.) R2 dvblink_client; C:\Program Files (x86)\DVBLogic\DVBLink\dvblink_client.exe [1213952 2011-12-06] (DVBLogic) R2 LENOVO.TVTVCAM; C:\Program Files\Lenovo\Communications Utility\vcamsvc.exe [179568 2012-06-01] (Lenovo Group Limited) R2 Lenovo.VIRTSCRLSVC; C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe [133992 2011-07-12] (Lenovo Group Limited) S2 MacheenService; C:\Program Files (x86)\Lenovo\MobileAccess\MacheenService.exe [32480 2013-04-17] (Macheen) S3 OpenVPNService; C:\Program Files (x86)\OpenVPN\bin\openvpnserv.exe [36366 2010-09-06] () S2 RichVideo; C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [244904 2010-09-06] () S2 SROSVC; C:\Program Files (x86)\Lenovo\Screen Reading Optimizer\SROSVC.exe [446800 2012-03-05] (Lenovo Group Limited) S3 SUService; C:\Program Files (x86)\Lenovo\System Update\SUService.exe [22376 2013-04-11] () S2 ThinkVantage Registry Monitor Service; C:\Program Files (x86)\Common Files\Lenovo\tvt_reg_monitor_svc.exe [1028096 2010-12-11] (Lenovo Group Limited) S3 TVT Backup Service; C:\Program Files (x86)\Lenovo\Rescue and Recovery\rrservice.exe [1475896 2010-12-11] (Lenovo Group Limited) S2 WebUpdate4; C:\Program Files (x86)\Lenovo\MobileAccess\WebUpdateSvc4.exe [278800 2013-01-16] (Data Perceptions / PowerProgrammer) S2 WMCoreService; C:\Program Files (x86)\Mobile Broadband drivers\WMCore\mini_WMCore.exe [648744 2011-08-12] (Ericsson AB) S2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3342640 2012-08-23] (Intel® Corporation) ==================== Drivers (Whitelisted) ==================== S3 AX88772; C:\Windows\System32\DRIVERS\ax88772.sys [79360 2011-06-01] (ASIX Electronics Corp.) S3 btusb64v; C:\Windows\System32\drivers\btusb64v.sys [36688 2011-11-30] (BUFFALO INC.) S3 DisplayLinkUsbPort; C:\Windows\System32\DRIVERS\DisplayLinkUsbPort_5.6.30272.0.sys [17408 2012-02-28] (hxxp://libusb-win32.sourceforge.net) R3 dvblink_tuner; C:\Windows\System32\drivers\dvblink_tuner.sys [78184 2011-12-08] (DVBLogic) R3 ecnssndis; C:\Windows\System32\Drivers\wwuss64.sys [26664 2010-03-03] (Ericsson AB) R3 ecnssndisfltr; C:\Windows\System32\Drivers\wwussf64.sys [30248 2010-03-03] (Ericsson AB) R3 l36wgps; C:\Windows\System32\DRIVERS\l36wgps64.sys [101416 2011-07-01] (Ericsson AB) R3 Mbm3CBus; C:\Windows\System32\DRIVERS\Mbm3CBus.sys [419400 2011-04-29] (MCCI Corporation) R3 Mbm3DevMt; C:\Windows\System32\DRIVERS\Mbm3DevMt.sys [430664 2011-04-29] (MCCI Corporation) R3 Mbm3mdfl; C:\Windows\System32\DRIVERS\Mbm3mdfl.sys [19528 2011-04-29] (MCCI Corporation) R3 Mbm3Mdm; C:\Windows\System32\DRIVERS\Mbm3Mdm.sys [483400 2011-04-29] (MCCI Corporation) R3 NETwNs64; C:\Windows\System32\DRIVERS\Netwsw00.sys [11523072 2012-09-30] (Intel Corporation) R1 PHCORE; C:\Program Files\Lenovo\RapidBoot\PHCORE64.SYS [32104 2011-07-08] (Lenovo Group Limited) S3 pmxdrv; C:\Windows\system32\drivers\pmxdrv.sys [31152 2011-10-18] () S3 pmxdrv; C:\Windows\system32\drivers\pmxdrv.sys [31152 2011-10-18] () R3 SmbDrvI; C:\Windows\System32\DRIVERS\Smb_driver_Intel.sys [44344 2012-10-17] (Synaptics Incorporated) R2 smihlp2; C:\Program Files\ThinkVantage Fingerprint Software\smihlp.sys [13128 2011-05-30] (Authentec Inc.) R3 tvtvcamd; C:\Windows\System32\DRIVERS\tvtvcamd.sys [27432 2011-12-07] (ThinkVantage Communications Utility) R3 WwanUsbServ; C:\Windows\System32\DRIVERS\WwanUsbMp64.sys [268840 2011-08-12] (Ericsson AB) S3 ew_hwusbdev; system32\DRIVERS\ew_hwusbdev.sys [x] S3 huawei_cdcacm; system32\DRIVERS\ew_jucdcacm.sys [x] S3 huawei_enumerator; system32\DRIVERS\ew_jubusenum.sys [x] ==================== NetSvcs (Whitelisted) =================== ==================== One Month Created Files and Folders ======== 2013-07-09 21:23 - 2013-07-09 21:23 - 00000879 ____A C:\Users\*******\Desktop\JRT.txt 2013-07-09 21:18 - 2013-07-09 21:18 - 00000000 ____D C:\Windows\ERUNT 2013-07-09 21:17 - 2013-07-09 21:17 - 00552389 ____A (Oleg N. Scherbakov) C:\Users\*******\Desktop\JRT.exe 2013-07-09 21:15 - 2013-07-09 21:15 - 00001258 ____A C:\AdwCleaner[R2].txt 2013-07-09 21:09 - 2013-07-09 21:09 - 00006122 ____A C:\AdwCleaner[S1].txt 2013-07-09 21:09 - 2013-07-09 21:09 - 00005960 ____A C:\AdwCleaner[R1].txt 2013-07-09 21:07 - 2013-07-09 21:07 - 00650027 ____A C:\Users\*******\Desktop\adwcleaner.exe 2013-07-09 18:03 - 2013-07-09 18:03 - 01776221 ____A (Farbar) C:\Users\*******\Desktop\FRST64.exe 2013-07-09 18:03 - 2013-07-09 18:03 - 00000000 ____D C:\FRST 2013-07-09 17:33 - 2013-07-09 17:33 - 00037441 ____A C:\Users\*******\Desktop\logs.zip 2013-07-09 17:15 - 2013-07-09 17:33 - 00010567 ____A C:\Users\*******\Desktop\gmer.log 2013-07-09 16:59 - 2013-07-09 16:59 - 00377856 ____A C:\Users\*******\Desktop\gmer_2.1.19163.exe 2013-07-09 16:55 - 2013-07-09 16:55 - 00000474 ____A C:\Users\*******\Desktop\defogger_disable.log 2013-07-09 16:55 - 2013-07-09 16:55 - 00000190 ____A C:\Users\*******\Desktop\sympton.txt 2013-07-09 16:55 - 2013-07-09 16:55 - 00000000 ____A C:\Users\*******\defogger_reenable 2013-07-09 16:54 - 2013-07-09 16:54 - 00050477 ____A C:\Users\*******\Desktop\Defogger.exe 2013-07-09 16:50 - 2013-07-09 16:53 - 00122754 ____A C:\Users\*******\Desktop\Extras.Txt 2013-07-09 16:49 - 2013-07-09 17:21 - 00111102 ____A C:\Users\*******\Desktop\OTL.Txt 2013-07-09 16:44 - 2013-07-09 16:44 - 00602112 ____A (OldTimer Tools) C:\Users\*******\Desktop\OTL(1).exe 2013-07-09 16:44 - 2013-07-09 16:44 - 00000120 ____A C:\Users\*******\Desktop\WlA05T5E.htm 2013-07-09 16:43 - 2013-07-09 16:43 - 00602112 ____A (OldTimer Tools) C:\Users\*******\Downloads\OTL.exe 2013-07-09 15:52 - 2013-07-09 15:53 - 00000000 ____D C:\Users\*******\AppData\Local\Avg2013 2013-07-09 15:38 - 2013-07-09 17:38 - 00000000 ____D C:\Windows\pss 2013-07-09 14:43 - 2013-07-09 14:53 - 00000134 ____A C:\Users\*******\Desktop\Internet Explorer-Problembehebung.url 2013-07-09 14:36 - 2013-07-09 14:36 - 19233792 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 15404544 ____A (Microsoft Corporation) C:\Windows\System32\ieframe.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 14327808 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 13760512 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 03958784 ____A (Microsoft Corporation) C:\Windows\System32\jscript9.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 02877440 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 02706432 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb 2013-07-09 14:36 - 2013-07-09 14:36 - 02706432 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.tlb 2013-07-09 14:36 - 2013-07-09 14:36 - 02648064 ____A (Microsoft Corporation) C:\Windows\System32\iertutil.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 02241024 ____A (Microsoft Corporation) C:\Windows\System32\wininet.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 02046976 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 01767936 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 01509376 ____A (Microsoft Corporation) C:\Windows\System32\inetcpl.cpl 2013-07-09 14:36 - 2013-07-09 14:36 - 01441280 ____A (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl 2013-07-09 14:36 - 2013-07-09 14:36 - 01400416 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat 2013-07-09 14:36 - 2013-07-09 14:36 - 01400416 ____A (Microsoft Corporation) C:\Windows\System32\ieapfltr.dat 2013-07-09 14:36 - 2013-07-09 14:36 - 01365504 ____A (Microsoft Corporation) C:\Windows\System32\urlmon.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 01141248 ____A (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 01054720 ____A (Microsoft Corporation) C:\Windows\System32\MsSpellCheckingFacility.exe 2013-07-09 14:36 - 2013-07-09 14:36 - 00905728 ____A (Microsoft Corporation) C:\Windows\System32\mshtmlmedia.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00855552 ____A (Microsoft Corporation) C:\Windows\System32\jscript.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00762368 ____A (Microsoft Corporation) C:\Windows\System32\ieapfltr.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00719360 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00690688 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00629248 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00603136 ____A (Microsoft Corporation) C:\Windows\System32\msfeeds.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00599552 ____A (Microsoft Corporation) C:\Windows\System32\vbscript.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00526336 ____A (Microsoft Corporation) C:\Windows\System32\ieui.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00523264 ____A (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00493056 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00452096 ____A (Microsoft Corporation) C:\Windows\System32\dxtmsft.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00441856 ____A (Microsoft Corporation) C:\Windows\System32\html.iec 2013-07-09 14:36 - 2013-07-09 14:36 - 00391168 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00361984 ____A (Microsoft Corporation) C:\Windows\SysWOW64\html.iec 2013-07-09 14:36 - 2013-07-09 14:36 - 00357888 ____A (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00281600 ____A (Microsoft Corporation) C:\Windows\System32\dxtrans.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00270848 ____A (Microsoft Corporation) C:\Windows\System32\iedkcs32.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00247296 ____A (Microsoft Corporation) C:\Windows\System32\webcheck.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00242200 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00235008 ____A (Microsoft Corporation) C:\Windows\System32\url.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00232960 ____A (Microsoft Corporation) C:\Windows\SysWOW64\url.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00226816 ____A (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00226304 ____A (Microsoft Corporation) C:\Windows\System32\elshyph.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00216064 ____A (Microsoft Corporation) C:\Windows\System32\msls31.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00204800 ____A (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00197120 ____A (Microsoft Corporation) C:\Windows\System32\msrating.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00185344 ____A (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00173568 ____A (Microsoft Corporation) C:\Windows\System32\ieUnatt.exe 2013-07-09 14:36 - 2013-07-09 14:36 - 00167424 ____A (Microsoft Corporation) C:\Windows\System32\iexpress.exe 2013-07-09 14:36 - 2013-07-09 14:36 - 00163840 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00158720 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00150528 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe 2013-07-09 14:36 - 2013-07-09 14:36 - 00149504 ____A (Microsoft Corporation) C:\Windows\System32\occache.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00144896 ____A (Microsoft Corporation) C:\Windows\System32\wextract.exe 2013-07-09 14:36 - 2013-07-09 14:36 - 00138752 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe 2013-07-09 14:36 - 2013-07-09 14:36 - 00137216 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe 2013-07-09 14:36 - 2013-07-09 14:36 - 00136704 ____A (Microsoft Corporation) C:\Windows\System32\iesysprep.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00136192 ____A (Microsoft Corporation) C:\Windows\System32\iepeers.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00135680 ____A (Microsoft Corporation) C:\Windows\System32\IEAdvpack.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00125440 ____A (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00117248 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00110592 ____A (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00109056 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00102912 ____A (Microsoft Corporation) C:\Windows\System32\inseng.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00097280 ____A (Microsoft Corporation) C:\Windows\System32\mshtmled.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00092160 ____A (Microsoft Corporation) C:\Windows\System32\SetIEInstalledDate.exe 2013-07-09 14:36 - 2013-07-09 14:36 - 00089600 ____A (Microsoft Corporation) C:\Windows\System32\RegisterIEPKEYs.exe 2013-07-09 14:36 - 2013-07-09 14:36 - 00082432 ____A (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00081408 ____A (Microsoft Corporation) C:\Windows\System32\icardie.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00079872 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00077312 ____A (Microsoft Corporation) C:\Windows\System32\tdc.ocx 2013-07-09 14:36 - 2013-07-09 14:36 - 00073728 ____A (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe 2013-07-09 14:36 - 2013-07-09 14:36 - 00071680 ____A (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe 2013-07-09 14:36 - 2013-07-09 14:36 - 00069120 ____A (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00067072 ____A (Microsoft Corporation) C:\Windows\System32\iesetup.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00062976 ____A (Microsoft Corporation) C:\Windows\System32\pngfilt.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00061952 ____A (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx 2013-07-09 14:36 - 2013-07-09 14:36 - 00061440 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00057344 ____A (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00053760 ____A (Microsoft Corporation) C:\Windows\System32\jsproxy.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00052224 ____A (Microsoft Corporation) C:\Windows\System32\msfeedsbs.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00051712 ____A (Microsoft Corporation) C:\Windows\System32\ie4uinit.exe 2013-07-09 14:36 - 2013-07-09 14:36 - 00051200 ____A (Microsoft Corporation) C:\Windows\System32\imgutil.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00048640 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00048640 ____A (Microsoft Corporation) C:\Windows\System32\mshtmler.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00041984 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00039936 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00039936 ____A (Microsoft Corporation) C:\Windows\System32\iernonce.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00038400 ____A (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00033280 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00027648 ____A (Microsoft Corporation) C:\Windows\System32\licmgr10.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00023040 ____A (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00013824 ____A (Microsoft Corporation) C:\Windows\System32\mshta.exe 2013-07-09 14:36 - 2013-07-09 14:36 - 00012800 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe 2013-07-09 14:36 - 2013-07-09 14:36 - 00012800 ____A (Microsoft Corporation) C:\Windows\System32\msfeedssync.exe 2013-07-09 14:36 - 2013-07-09 14:36 - 00011776 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe 2013-07-09 08:14 - 2013-07-09 08:14 - 00000000 ____D C:\Users\Default\AppData\Roaming\TuneUp Software 2013-07-09 08:14 - 2013-07-09 08:14 - 00000000 ____D C:\Users\Default User\AppData\Roaming\TuneUp Software 2013-07-08 19:30 - 2013-07-08 19:30 - 00270214 ____A C:\Windows\msxml4-KB2758694-deu.LOG 2013-07-08 19:14 - 2013-02-17 01:40 - 00028672 ____A (Microsoft Corporation) C:\Windows\System32\IEUDINIT.EXE 2013-07-08 18:52 - 2013-07-08 19:10 - 518418786 ____A (WinFuture) C:\Users\*******\Downloads\WinFuture_7SP1_x64_UpdatePack_2.27_Juni_2013-Vollversion.exe 2013-07-08 17:49 - 2012-08-23 16:13 - 00243200 ____A (Microsoft Corporation) C:\Windows\System32\rdpudd.dll 2013-07-08 17:49 - 2012-08-23 16:10 - 00019456 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\rdpvideominiport.sys 2013-07-08 17:49 - 2012-08-23 16:08 - 00030208 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\TsUsbGD.sys 2013-07-08 17:49 - 2012-08-23 16:07 - 00057856 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\TsUsbFlt.sys 2013-07-08 17:49 - 2012-08-23 15:47 - 00046592 ____A (Microsoft Corporation) C:\Windows\SysWOW64\MsRdpWebAccess.dll 2013-07-08 17:49 - 2012-08-23 15:46 - 00016896 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wksprtPS.dll 2013-07-08 17:49 - 2012-08-23 15:41 - 00013312 ____A (Microsoft Corporation) C:\Windows\System32\TsUsbRedirectionGroupPolicyControl.exe 2013-07-08 17:49 - 2012-08-23 15:40 - 00013312 ____A (Microsoft Corporation) C:\Windows\System32\TsUsbRedirectionGroupPolicyExtension.dll 2013-07-08 17:49 - 2012-08-23 15:24 - 00015360 ____A (Microsoft Corporation) C:\Windows\System32\RdpGroupPolicyExtension.dll 2013-07-08 17:49 - 2012-08-23 15:20 - 00054272 ____A (Microsoft Corporation) C:\Windows\System32\MsRdpWebAccess.dll 2013-07-08 17:49 - 2012-08-23 15:18 - 00037376 ____A (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll 2013-07-08 17:49 - 2012-08-23 15:17 - 00018432 ____A (Microsoft Corporation) C:\Windows\System32\wksprtPS.dll 2013-07-08 17:49 - 2012-08-23 15:06 - 00043520 ____A (Microsoft Corporation) C:\Windows\System32\TsUsbGDCoInstaller.dll 2013-07-08 17:49 - 2012-08-23 14:52 - 00044032 ____A (Microsoft Corporation) C:\Windows\System32\tsgqec.dll 2013-07-08 17:49 - 2012-08-23 13:20 - 00062976 ____A (Microsoft Corporation) C:\Windows\System32\TSWbPrxy.exe 2013-07-08 17:49 - 2012-08-23 13:15 - 00269312 ____A (Microsoft Corporation) C:\Windows\SysWOW64\aaclient.dll 2013-07-08 17:49 - 2012-08-23 13:14 - 00384000 ____A (Microsoft Corporation) C:\Windows\System32\wksprt.exe 2013-07-08 17:49 - 2012-08-23 13:12 - 00192000 ____A (Microsoft Corporation) C:\Windows\SysWOW64\rdpendp_winip.dll 2013-07-08 17:49 - 2012-08-23 12:54 - 00322560 ____A (Microsoft Corporation) C:\Windows\System32\aaclient.dll 2013-07-08 17:49 - 2012-08-23 12:51 - 00228864 ____A (Microsoft Corporation) C:\Windows\System32\rdpendp_winip.dll 2013-07-08 17:49 - 2012-08-23 12:39 - 01048064 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe 2013-07-08 17:49 - 2012-08-23 12:22 - 01123840 ____A (Microsoft Corporation) C:\Windows\System32\mstsc.exe 2013-07-08 17:49 - 2012-08-23 11:51 - 03174912 ____A (Microsoft Corporation) C:\Windows\System32\rdpcorets.dll 2013-07-08 17:49 - 2012-08-23 10:19 - 04916224 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll 2013-07-08 17:49 - 2012-08-23 10:13 - 05773824 ____A (Microsoft Corporation) C:\Windows\System32\mstscax.dll 2013-07-08 17:47 - 2012-08-24 20:13 - 00154480 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\ksecpkg.sys 2013-07-08 17:47 - 2012-08-24 20:09 - 00458712 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\cng.sys 2013-07-08 17:47 - 2012-08-24 20:05 - 00340992 ____A (Microsoft Corporation) C:\Windows\System32\schannel.dll 2013-07-08 17:47 - 2012-08-24 20:03 - 01448448 ____A (Microsoft Corporation) C:\Windows\System32\lsasrv.dll 2013-07-08 17:47 - 2012-08-24 18:57 - 00247808 ____A (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll 2013-07-08 17:47 - 2012-08-24 18:57 - 00022016 ____A (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll 2013-07-08 17:47 - 2012-08-24 18:53 - 00096768 ____A (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll 2013-07-08 17:47 - 2012-05-04 13:00 - 00366592 ____A (Microsoft Corporation) C:\Windows\System32\qdvd.dll 2013-07-08 17:47 - 2012-05-04 11:59 - 00514560 ____A (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll 2013-07-08 17:31 - 2013-07-08 17:31 - 00000000 ____D C:\Users\test\AppData\Roaming\PwrMgr 2013-07-08 17:30 - 2013-07-08 17:31 - 00000000 ____D C:\Users\test\AppData\Local\LSC 2013-07-08 17:20 - 2013-07-08 17:29 - 00000000 ____D C:\Users\test\AppData\Roaming\Adobe 2013-07-08 17:20 - 2013-07-08 17:20 - 00120320 ____A C:\Users\test\AppData\Local\GDIPFONTCACHEV1.DAT 2013-07-08 17:20 - 2013-07-08 17:20 - 00000000 ____D C:\Users\test\Documents\Synaptics 2013-07-08 17:20 - 2013-07-08 17:20 - 00000000 ____D C:\Users\test\Documents\Bluetooth-Exchange-Ordner 2013-07-08 17:20 - 2013-07-08 17:20 - 00000000 ____D C:\Users\test\AppData\Roaming\Seagate 2013-07-08 17:20 - 2013-07-08 17:20 - 00000000 ____D C:\Users\test\AppData\Roaming\Memeo 2013-07-08 17:20 - 2013-07-08 17:20 - 00000000 ____D C:\Users\test\AppData\Roaming\LSC 2013-07-08 17:20 - 2013-07-08 17:20 - 00000000 ____D C:\Users\test\AppData\Roaming\Logitech 2013-07-08 17:20 - 2013-07-08 17:20 - 00000000 ____D C:\Users\test\AppData\Roaming\Lexware 2013-07-08 17:20 - 2013-07-08 17:20 - 00000000 ____D C:\Users\test\AppData\Roaming\Leadertech 2013-07-08 17:20 - 2013-07-08 17:20 - 00000000 ____D C:\Users\test\AppData\Roaming\Apple Computer 2013-07-08 17:20 - 2013-07-08 17:20 - 00000000 ____D C:\Users\test\AppData\Local\Power2Go 2013-07-08 17:20 - 2013-07-08 17:20 - 00000000 ____D C:\Users\test\AppData\Local\MobileAccess 2013-07-08 17:20 - 2013-07-08 17:20 - 00000000 ____D C:\Users\test\AppData\Local\Lexware 2013-07-08 17:20 - 2013-07-08 17:20 - 00000000 ____D C:\Users\test\AppData\Local\Lenovo 2013-07-08 17:20 - 2013-07-08 17:20 - 00000000 ____D C:\Users\test\AppData\Local\Broadcom 2013-07-08 17:20 - 2013-07-08 17:20 - 00000000 ____D C:\Users\test\AppData\Local\Adobe 2013-07-08 17:19 - 2013-07-08 17:20 - 00001194 ____A C:\Users\test\Desktop\Blu-ray Disc Suite.lnk 2013-07-08 17:19 - 2013-07-08 17:20 - 00000000 ____D C:\users\test 2013-07-08 17:19 - 2013-07-08 17:19 - 00000020 __ASH C:\Users\test\ntuser.ini 2013-07-08 17:19 - 2013-07-08 17:19 - 00000000 __SHD C:\Users\test\Vorlagen 2013-07-08 17:19 - 2013-07-08 17:19 - 00000000 __SHD C:\Users\test\Startmenü 2013-07-08 17:19 - 2013-07-08 17:19 - 00000000 __SHD C:\Users\test\Netzwerkumgebung 2013-07-08 17:19 - 2013-07-08 17:19 - 00000000 __SHD C:\Users\test\Lokale Einstellungen 2013-07-08 17:19 - 2013-07-08 17:19 - 00000000 __SHD C:\Users\test\Eigene Dateien 2013-07-08 17:19 - 2013-07-08 17:19 - 00000000 __SHD C:\Users\test\Druckumgebung 2013-07-08 17:19 - 2013-07-08 17:19 - 00000000 __SHD C:\Users\test\Documents\Eigene Musik 2013-07-08 17:19 - 2013-07-08 17:19 - 00000000 __SHD C:\Users\test\Documents\Eigene Bilder 2013-07-08 17:19 - 2013-07-08 17:19 - 00000000 __SHD C:\Users\test\AppData\Local\Verlauf 2013-07-08 17:19 - 2013-07-08 17:19 - 00000000 __SHD C:\Users\test\AppData\Local\Anwendungsdaten 2013-07-08 17:19 - 2013-07-08 17:19 - 00000000 __SHD C:\Users\test\Anwendungsdaten 2013-07-08 17:19 - 2013-07-08 17:19 - 00000000 ____D C:\Users\test\AppData\Roaming\Intel 2013-07-08 17:19 - 2012-10-21 13:28 - 00000000 ____D C:\Users\test\AppData\Roaming\Macromedia 2013-07-08 17:19 - 2012-02-21 18:04 - 00000000 ____D C:\Users\test\AppData\Local\Microsoft Help 2013-07-08 17:13 - 2013-07-08 17:13 - 00861184 ____A (Microsoft Corporation) C:\Users\*******\Downloads\IE10-Windows6.1-de-de.exe 2013-07-08 16:09 - 2013-07-08 16:09 - 00000000 ____D C:\Users\*******\AppData\Roaming\TuneUp Software 2013-07-08 15:31 - 2013-07-09 15:53 - 00000000 ____D C:\ProgramData\MFAData 2013-07-08 15:31 - 2013-07-08 15:31 - 00000000 ____D C:\Users\*******\AppData\Local\MFAData 2013-07-08 14:56 - 2013-07-08 15:28 - 159486920 ____A (AVG Technologies) C:\Users\*******\Downloads\avg_ipw_x64_all_2013_3345a6382(1).exe 2013-07-08 10:54 - 2013-07-08 12:17 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox 2013-07-01 18:45 - 2010-11-21 05:24 - 00381440 ____A (Microsoft Corporation) C:\Windows\System32\mfds.dll 2013-07-01 18:28 - 2013-07-01 18:28 - 00000000 ____D C:\Users\*******\AppData\Roaming\MediaConfiguration 2013-07-01 18:26 - 2013-07-01 18:26 - 00000000 ____D C:\Users\*******\AppData\Roaming\Media Control 2013-07-01 18:25 - 2013-07-01 18:25 - 03050508 ____A (Damien Bain-Thouverez ) C:\Users\*******\Downloads\MediaControl_6.0.15.exe 2013-07-01 18:07 - 2013-07-01 18:07 - 00000000 ____D C:\Users\*******\AppData\Roaming\Advanced 2013-07-01 18:07 - 2013-07-01 18:07 - 00000000 ____D C:\Program Files (x86)\Shark007 2013-07-01 18:07 - 2013-04-05 21:26 - 01679360 ____A C:\Windows\SysWOW64\ac3filter.acm.new 2013-07-01 18:04 - 2013-07-01 18:07 - 00000000 ____D C:\ProgramData\Advanced 2013-07-01 18:03 - 2013-07-01 18:04 - 29160522 ____A C:\Users\*******\Downloads\32bit_Advanced_v418.exe 2013-07-01 17:47 - 2013-07-01 17:50 - 00000000 ____D C:\Users\*******\AppData\Roaming\vlc 2013-07-01 17:46 - 2013-07-01 17:46 - 00003584 ____A C:\Users\*******\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini 2013-07-01 17:34 - 2013-07-01 18:45 - 00000000 ____D C:\Users\*******\AppData\Roaming\Shark007 2013-07-01 17:34 - 2013-07-01 18:45 - 00000000 ____D C:\ProgramData\Shark007 2013-07-01 17:34 - 2013-07-01 17:34 - 00000000 ____D C:\Program Files\Shark007 2013-07-01 17:34 - 2013-05-27 15:08 - 00127488 ____A C:\Windows\System32\ff_vfw.dll 2013-07-01 17:34 - 2013-05-16 01:06 - 01593696 ____A (MPC-HC Team) C:\Windows\System32\VSFilter.dll 2013-07-01 17:34 - 2013-04-05 21:27 - 02231296 ____A C:\Windows\System32\ac3filter.acm.new 2013-07-01 17:34 - 2013-04-05 21:27 - 02231296 ____A C:\Windows\System32\ac3filter.acm 2013-07-01 17:34 - 2013-03-17 10:22 - 03554304 ____A (x264vfw project) C:\Windows\System32\x264vfw.dll 2013-07-01 17:34 - 2012-07-21 12:55 - 00180736 ____A (fccHandler) C:\Windows\System32\ac3acm.acm 2013-07-01 17:34 - 2012-07-21 12:54 - 00361472 ____A (fccHandler) C:\Windows\System32\aacacm.acm 2013-07-01 17:34 - 2012-07-17 15:21 - 00206336 ____A C:\Windows\System32\unrar64.dll 2013-07-01 17:34 - 2011-12-07 20:37 - 00148992 ____A ( ) C:\Windows\System32\lagarith.dll 2013-07-01 17:34 - 2009-08-11 18:22 - 00580096 ____A C:\Windows\System32\ac3filter.acm.old 2013-07-01 17:34 - 2009-01-22 22:51 - 00124909 ____A (Open Source Software community project) C:\Windows\System32\pthreadGC2.dll 2013-07-01 17:34 - 2007-02-05 17:05 - 00000038 ____A C:\Windows\AviSplitter.INI 2013-07-01 17:33 - 2013-07-01 17:34 - 18422493 ____A C:\Users\*******\Downloads\Advanced_x64Components_v418.exe 2013-07-01 17:31 - 2013-07-09 16:31 - 00000000 ____D C:\Program Files (x86)\VideoLAN 2013-07-01 17:29 - 2013-07-01 17:31 - 22937227 ____A C:\Users\*******\Downloads\vlc-2.0.7-win32.exe 2013-07-01 17:29 - 2013-07-01 17:30 - 14989539 ____A C:\Users\*******\Downloads\vlc-2.0.7-win32.exe.part 2013-06-28 02:06 - 2013-06-28 03:36 - 00000528 ____A C:\Windows\Tasks\PCDoctorBackgroundMonitorTask-Delay.job 2013-06-18 10:16 - 2013-05-13 07:51 - 01464320 ____A (Microsoft Corporation) C:\Windows\System32\crypt32.dll 2013-06-18 10:16 - 2013-05-13 07:51 - 00184320 ____A (Microsoft Corporation) C:\Windows\System32\cryptsvc.dll 2013-06-18 10:16 - 2013-05-13 07:51 - 00139776 ____A (Microsoft Corporation) C:\Windows\System32\cryptnet.dll 2013-06-18 10:16 - 2013-05-13 07:50 - 00052224 ____A (Microsoft Corporation) C:\Windows\System32\certenc.dll 2013-06-18 10:16 - 2013-05-13 06:45 - 01160192 ____A (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll 2013-06-18 10:16 - 2013-05-13 06:45 - 00140288 ____A (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll 2013-06-18 10:16 - 2013-05-13 06:45 - 00103936 ____A (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll 2013-06-18 10:16 - 2013-05-13 05:43 - 01192448 ____A (Microsoft Corporation) C:\Windows\System32\certutil.exe 2013-06-18 10:16 - 2013-05-13 05:08 - 00903168 ____A (Microsoft Corporation) C:\Windows\SysWOW64\certutil.exe 2013-06-18 10:16 - 2013-05-13 05:08 - 00043008 ____A (Microsoft Corporation) C:\Windows\SysWOW64\certenc.dll 2013-06-18 10:16 - 2013-05-10 07:49 - 00030720 ____A (Microsoft Corporation) C:\Windows\System32\cryptdlg.dll 2013-06-18 10:16 - 2013-05-10 05:20 - 00024576 ____A (Microsoft Corporation) C:\Windows\SysWOW64\cryptdlg.dll 2013-06-18 10:16 - 2013-05-08 08:39 - 01910632 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\tcpip.sys 2013-06-18 10:16 - 2013-04-26 07:51 - 00751104 ____A (Microsoft Corporation) C:\Windows\System32\win32spl.dll 2013-06-18 10:16 - 2013-04-26 06:55 - 00492544 ____A (Microsoft Corporation) C:\Windows\SysWOW64\win32spl.dll 2013-06-18 10:16 - 2013-04-26 01:30 - 01505280 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll 2013-06-18 10:16 - 2013-04-17 09:02 - 01230336 ____A (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll 2013-06-18 10:16 - 2013-04-17 08:24 - 01424384 ____A (Microsoft Corporation) C:\Windows\System32\WindowsCodecs.dll 2013-06-18 10:16 - 2013-04-01 00:52 - 01887232 ____A (Microsoft Corporation) C:\Windows\System32\d3d11.dll ==================== One Month Modified Files and Folders ======= 2013-07-09 21:40 - 2012-02-24 20:00 - 00000000 ____D C:\Users\*******\AppData\Roaming\Gajim 2013-07-09 21:40 - 2012-02-21 21:46 - 00000000 ___RD C:\Users\*******\Dropbox 2013-07-09 21:40 - 2012-02-21 21:45 - 00000000 ____D C:\Users\*******\AppData\Roaming\Dropbox 2013-07-09 21:39 - 2012-12-26 21:28 - 00000000 ____D C:\Users\*******\AppData\Local\Eye-Fi 2013-07-09 21:39 - 2011-10-18 10:39 - 00001120 ____A C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2013-07-09 21:38 - 2011-10-18 10:38 - 01567201 ____A C:\Windows\WindowsUpdate.log 2013-07-09 21:38 - 2009-07-14 07:08 - 00000006 ___AH C:\Windows\Tasks\SA.DAT 2013-07-09 21:38 - 2009-07-14 06:51 - 00136994 ____A C:\Windows\setupact.log 2013-07-09 21:23 - 2013-07-09 21:23 - 00000879 ____A C:\Users\*******\Desktop\JRT.txt 2013-07-09 21:20 - 2009-07-14 06:45 - 00031296 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2013-07-09 21:20 - 2009-07-14 06:45 - 00031296 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2013-07-09 21:18 - 2013-07-09 21:18 - 00000000 ____D C:\Windows\ERUNT 2013-07-09 21:18 - 2011-10-18 20:18 - 00700418 ____A C:\Windows\System32\perfh007.dat 2013-07-09 21:18 - 2011-10-18 20:18 - 00149182 ____A C:\Windows\System32\perfc007.dat 2013-07-09 21:18 - 2009-07-14 07:13 - 01621308 ____A C:\Windows\System32\PerfStringBackup.INI 2013-07-09 21:17 - 2013-07-09 21:17 - 00552389 ____A (Oleg N. Scherbakov) C:\Users\*******\Desktop\JRT.exe 2013-07-09 21:15 - 2013-07-09 21:15 - 00001258 ____A C:\AdwCleaner[R2].txt 2013-07-09 21:13 - 2012-02-22 11:37 - 00001124 ____A C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4186067094-2021574243-1185577494-1000UA.job 2013-07-09 21:09 - 2013-07-09 21:09 - 00006122 ____A C:\AdwCleaner[S1].txt 2013-07-09 21:09 - 2013-07-09 21:09 - 00005960 ____A C:\AdwCleaner[R1].txt 2013-07-09 21:07 - 2013-07-09 21:07 - 00650027 ____A C:\Users\*******\Desktop\adwcleaner.exe 2013-07-09 21:04 - 2012-04-08 09:53 - 00000884 ____A C:\Windows\Tasks\Adobe Flash Player Updater.job 2013-07-09 21:02 - 2011-10-18 10:39 - 00001124 ____A C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2013-07-09 19:59 - 2012-02-21 18:12 - 00000000 ____D C:\Users\*******\AppData\Roaming\Skype 2013-07-09 18:03 - 2013-07-09 18:03 - 01776221 ____A (Farbar) C:\Users\*******\Desktop\FRST64.exe 2013-07-09 18:03 - 2013-07-09 18:03 - 00000000 ____D C:\FRST 2013-07-09 17:38 - 2013-07-09 15:38 - 00000000 ____D C:\Windows\pss 2013-07-09 17:33 - 2013-07-09 17:33 - 00037441 ____A C:\Users\*******\Desktop\logs.zip 2013-07-09 17:33 - 2013-07-09 17:15 - 00010567 ____A C:\Users\*******\Desktop\gmer.log 2013-07-09 17:21 - 2013-07-09 16:49 - 00111102 ____A C:\Users\*******\Desktop\OTL.Txt 2013-07-09 16:59 - 2013-07-09 16:59 - 00377856 ____A C:\Users\*******\Desktop\gmer_2.1.19163.exe 2013-07-09 16:55 - 2013-07-09 16:55 - 00000474 ____A C:\Users\*******\Desktop\defogger_disable.log 2013-07-09 16:55 - 2013-07-09 16:55 - 00000190 ____A C:\Users\*******\Desktop\sympton.txt 2013-07-09 16:55 - 2013-07-09 16:55 - 00000000 ____A C:\Users\*******\defogger_reenable 2013-07-09 16:55 - 2012-02-20 15:48 - 00000000 ____D C:\users\******* 2013-07-09 16:54 - 2013-07-09 16:54 - 00050477 ____A C:\Users\*******\Desktop\Defogger.exe 2013-07-09 16:53 - 2013-07-09 16:50 - 00122754 ____A C:\Users\*******\Desktop\Extras.Txt 2013-07-09 16:44 - 2013-07-09 16:44 - 00602112 ____A (OldTimer Tools) C:\Users\*******\Desktop\OTL(1).exe 2013-07-09 16:44 - 2013-07-09 16:44 - 00000120 ____A C:\Users\*******\Desktop\WlA05T5E.htm 2013-07-09 16:43 - 2013-07-09 16:43 - 00602112 ____A (OldTimer Tools) C:\Users\*******\Downloads\OTL.exe 2013-07-09 16:35 - 2010-11-21 05:47 - 00098060 ____A C:\Windows\PFRO.log 2013-07-09 16:33 - 2011-10-18 10:38 - 00000000 ____D C:\Program Files (x86)\Adobe 2013-07-09 16:31 - 2013-07-01 17:31 - 00000000 ____D C:\Program Files (x86)\VideoLAN 2013-07-09 16:30 - 2012-06-26 10:30 - 00000000 ____D C:\Program Files (x86)\Java 2013-07-09 15:53 - 2013-07-09 15:52 - 00000000 ____D C:\Users\*******\AppData\Local\Avg2013 2013-07-09 15:53 - 2013-07-08 15:31 - 00000000 ____D C:\ProgramData\MFAData 2013-07-09 15:13 - 2012-02-22 11:37 - 00001072 ____A C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4186067094-2021574243-1185577494-1000Core.job 2013-07-09 15:07 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\PolicyDefinitions 2013-07-09 15:06 - 2013-03-26 09:38 - 00127327 ____A C:\Windows\IE10_main.log 2013-07-09 14:53 - 2013-07-09 14:43 - 00000134 ____A C:\Users\*******\Desktop\Internet Explorer-Problembehebung.url 2013-07-09 14:36 - 2013-07-09 14:36 - 19233792 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 15404544 ____A (Microsoft Corporation) C:\Windows\System32\ieframe.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 14327808 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 13760512 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 03958784 ____A (Microsoft Corporation) C:\Windows\System32\jscript9.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 02877440 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 02706432 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb 2013-07-09 14:36 - 2013-07-09 14:36 - 02706432 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.tlb 2013-07-09 14:36 - 2013-07-09 14:36 - 02648064 ____A (Microsoft Corporation) C:\Windows\System32\iertutil.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 02241024 ____A (Microsoft Corporation) C:\Windows\System32\wininet.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 02046976 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 01767936 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 01509376 ____A (Microsoft Corporation) C:\Windows\System32\inetcpl.cpl 2013-07-09 14:36 - 2013-07-09 14:36 - 01441280 ____A (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl 2013-07-09 14:36 - 2013-07-09 14:36 - 01400416 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat 2013-07-09 14:36 - 2013-07-09 14:36 - 01400416 ____A (Microsoft Corporation) C:\Windows\System32\ieapfltr.dat 2013-07-09 14:36 - 2013-07-09 14:36 - 01365504 ____A (Microsoft Corporation) C:\Windows\System32\urlmon.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 01141248 ____A (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 01054720 ____A (Microsoft Corporation) C:\Windows\System32\MsSpellCheckingFacility.exe 2013-07-09 14:36 - 2013-07-09 14:36 - 00905728 ____A (Microsoft Corporation) C:\Windows\System32\mshtmlmedia.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00855552 ____A (Microsoft Corporation) C:\Windows\System32\jscript.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00762368 ____A (Microsoft Corporation) C:\Windows\System32\ieapfltr.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00719360 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00690688 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00629248 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00603136 ____A (Microsoft Corporation) C:\Windows\System32\msfeeds.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00599552 ____A (Microsoft Corporation) C:\Windows\System32\vbscript.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00526336 ____A (Microsoft Corporation) C:\Windows\System32\ieui.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00523264 ____A (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00493056 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00452096 ____A (Microsoft Corporation) C:\Windows\System32\dxtmsft.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00441856 ____A (Microsoft Corporation) C:\Windows\System32\html.iec 2013-07-09 14:36 - 2013-07-09 14:36 - 00391168 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00361984 ____A (Microsoft Corporation) C:\Windows\SysWOW64\html.iec 2013-07-09 14:36 - 2013-07-09 14:36 - 00357888 ____A (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00281600 ____A (Microsoft Corporation) C:\Windows\System32\dxtrans.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00270848 ____A (Microsoft Corporation) C:\Windows\System32\iedkcs32.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00247296 ____A (Microsoft Corporation) C:\Windows\System32\webcheck.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00242200 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00235008 ____A (Microsoft Corporation) C:\Windows\System32\url.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00232960 ____A (Microsoft Corporation) C:\Windows\SysWOW64\url.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00226816 ____A (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00226304 ____A (Microsoft Corporation) C:\Windows\System32\elshyph.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00216064 ____A (Microsoft Corporation) C:\Windows\System32\msls31.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00204800 ____A (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00197120 ____A (Microsoft Corporation) C:\Windows\System32\msrating.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00185344 ____A (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00173568 ____A (Microsoft Corporation) C:\Windows\System32\ieUnatt.exe 2013-07-09 14:36 - 2013-07-09 14:36 - 00167424 ____A (Microsoft Corporation) C:\Windows\System32\iexpress.exe 2013-07-09 14:36 - 2013-07-09 14:36 - 00163840 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00158720 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00150528 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe 2013-07-09 14:36 - 2013-07-09 14:36 - 00149504 ____A (Microsoft Corporation) C:\Windows\System32\occache.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00144896 ____A (Microsoft Corporation) C:\Windows\System32\wextract.exe 2013-07-09 14:36 - 2013-07-09 14:36 - 00138752 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe 2013-07-09 14:36 - 2013-07-09 14:36 - 00137216 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe 2013-07-09 14:36 - 2013-07-09 14:36 - 00136704 ____A (Microsoft Corporation) C:\Windows\System32\iesysprep.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00136192 ____A (Microsoft Corporation) C:\Windows\System32\iepeers.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00135680 ____A (Microsoft Corporation) C:\Windows\System32\IEAdvpack.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00125440 ____A (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00117248 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00110592 ____A (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00109056 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00102912 ____A (Microsoft Corporation) C:\Windows\System32\inseng.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00097280 ____A (Microsoft Corporation) C:\Windows\System32\mshtmled.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00092160 ____A (Microsoft Corporation) C:\Windows\System32\SetIEInstalledDate.exe 2013-07-09 14:36 - 2013-07-09 14:36 - 00089600 ____A (Microsoft Corporation) C:\Windows\System32\RegisterIEPKEYs.exe 2013-07-09 14:36 - 2013-07-09 14:36 - 00082432 ____A (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00081408 ____A (Microsoft Corporation) C:\Windows\System32\icardie.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00079872 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00077312 ____A (Microsoft Corporation) C:\Windows\System32\tdc.ocx 2013-07-09 14:36 - 2013-07-09 14:36 - 00073728 ____A (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe 2013-07-09 14:36 - 2013-07-09 14:36 - 00071680 ____A (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe 2013-07-09 14:36 - 2013-07-09 14:36 - 00069120 ____A (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00067072 ____A (Microsoft Corporation) C:\Windows\System32\iesetup.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00062976 ____A (Microsoft Corporation) C:\Windows\System32\pngfilt.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00061952 ____A (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx 2013-07-09 14:36 - 2013-07-09 14:36 - 00061440 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00057344 ____A (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00053760 ____A (Microsoft Corporation) C:\Windows\System32\jsproxy.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00052224 ____A (Microsoft Corporation) C:\Windows\System32\msfeedsbs.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00051712 ____A (Microsoft Corporation) C:\Windows\System32\ie4uinit.exe 2013-07-09 14:36 - 2013-07-09 14:36 - 00051200 ____A (Microsoft Corporation) C:\Windows\System32\imgutil.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00048640 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00048640 ____A (Microsoft Corporation) C:\Windows\System32\mshtmler.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00041984 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00039936 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00039936 ____A (Microsoft Corporation) C:\Windows\System32\iernonce.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00038400 ____A (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00033280 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00027648 ____A (Microsoft Corporation) C:\Windows\System32\licmgr10.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00023040 ____A (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00013824 ____A (Microsoft Corporation) C:\Windows\System32\mshta.exe 2013-07-09 14:36 - 2013-07-09 14:36 - 00012800 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe 2013-07-09 14:36 - 2013-07-09 14:36 - 00012800 ____A (Microsoft Corporation) C:\Windows\System32\msfeedssync.exe 2013-07-09 14:36 - 2013-07-09 14:36 - 00011776 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe 2013-07-09 13:56 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\rescache 2013-07-09 12:39 - 2012-02-21 15:06 - 00001912 ____A C:\Windows\epplauncher.mif 2013-07-09 11:05 - 2012-02-20 15:48 - 00000466 ____A C:\Windows\Tasks\SystemToolsDailyTest.job 2013-07-09 10:07 - 2012-12-05 12:14 - 00000377 ____A C:\ProgramData\LastUpdate.xml 2013-07-09 10:07 - 2012-12-05 12:14 - 00000207 ____A C:\Windows\WebUpdateSvc4.INI 2013-07-09 09:52 - 2012-12-05 11:59 - 00000000 ____D C:\Users\*******\AppData\Local\MobileAccess 2013-07-09 08:14 - 2013-07-09 08:14 - 00000000 ____D C:\Users\Default\AppData\Roaming\TuneUp Software 2013-07-09 08:14 - 2013-07-09 08:14 - 00000000 ____D C:\Users\Default User\AppData\Roaming\TuneUp Software 2013-07-08 19:34 - 2012-02-21 15:06 - 01599202 ____A C:\Windows\SysWOW64\PerfStringBackup.INI 2013-07-08 19:30 - 2013-07-08 19:30 - 00270214 ____A C:\Windows\msxml4-KB2758694-deu.LOG 2013-07-08 19:30 - 2013-05-13 12:19 - 00000000 ____D C:\Program Files (x86)\MSXML 4.0 2013-07-08 19:10 - 2013-07-08 18:52 - 518418786 ____A (WinFuture) C:\Users\*******\Downloads\WinFuture_7SP1_x64_UpdatePack_2.27_Juni_2013-Vollversion.exe 2013-07-08 18:18 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\System32\NDF 2013-07-08 17:31 - 2013-07-08 17:31 - 00000000 ____D C:\Users\test\AppData\Roaming\PwrMgr 2013-07-08 17:31 - 2013-07-08 17:30 - 00000000 ____D C:\Users\test\AppData\Local\LSC 2013-07-08 17:29 - 2013-07-08 17:20 - 00000000 ____D C:\Users\test\AppData\Roaming\Adobe 2013-07-08 17:20 - 2013-07-08 17:20 - 00120320 ____A C:\Users\test\AppData\Local\GDIPFONTCACHEV1.DAT 2013-07-08 17:20 - 2013-07-08 17:20 - 00000000 ____D C:\Users\test\Documents\Synaptics 2013-07-08 17:20 - 2013-07-08 17:20 - 00000000 ____D C:\Users\test\Documents\Bluetooth-Exchange-Ordner 2013-07-08 17:20 - 2013-07-08 17:20 - 00000000 ____D C:\Users\test\AppData\Roaming\Seagate 2013-07-08 17:20 - 2013-07-08 17:20 - 00000000 ____D C:\Users\test\AppData\Roaming\Memeo 2013-07-08 17:20 - 2013-07-08 17:20 - 00000000 ____D C:\Users\test\AppData\Roaming\LSC 2013-07-08 17:20 - 2013-07-08 17:20 - 00000000 ____D C:\Users\test\AppData\Roaming\Logitech 2013-07-08 17:20 - 2013-07-08 17:20 - 00000000 ____D C:\Users\test\AppData\Roaming\Lexware 2013-07-08 17:20 - 2013-07-08 17:20 - 00000000 ____D C:\Users\test\AppData\Roaming\Leadertech 2013-07-08 17:20 - 2013-07-08 17:20 - 00000000 ____D C:\Users\test\AppData\Roaming\Apple Computer 2013-07-08 17:20 - 2013-07-08 17:20 - 00000000 ____D C:\Users\test\AppData\Local\Power2Go 2013-07-08 17:20 - 2013-07-08 17:20 - 00000000 ____D C:\Users\test\AppData\Local\MobileAccess 2013-07-08 17:20 - 2013-07-08 17:20 - 00000000 ____D C:\Users\test\AppData\Local\Lexware 2013-07-08 17:20 - 2013-07-08 17:20 - 00000000 ____D C:\Users\test\AppData\Local\Lenovo 2013-07-08 17:20 - 2013-07-08 17:20 - 00000000 ____D C:\Users\test\AppData\Local\Broadcom 2013-07-08 17:20 - 2013-07-08 17:20 - 00000000 ____D C:\Users\test\AppData\Local\Adobe 2013-07-08 17:20 - 2013-07-08 17:19 - 00001194 ____A C:\Users\test\Desktop\Blu-ray Disc Suite.lnk 2013-07-08 17:20 - 2013-07-08 17:19 - 00000000 ____D C:\users\test 2013-07-08 17:19 - 2013-07-08 17:19 - 00000020 __ASH C:\Users\test\ntuser.ini 2013-07-08 17:19 - 2013-07-08 17:19 - 00000000 __SHD C:\Users\test\Vorlagen 2013-07-08 17:19 - 2013-07-08 17:19 - 00000000 __SHD C:\Users\test\Startmenü 2013-07-08 17:19 - 2013-07-08 17:19 - 00000000 __SHD C:\Users\test\Netzwerkumgebung 2013-07-08 17:19 - 2013-07-08 17:19 - 00000000 __SHD C:\Users\test\Lokale Einstellungen 2013-07-08 17:19 - 2013-07-08 17:19 - 00000000 __SHD C:\Users\test\Eigene Dateien 2013-07-08 17:19 - 2013-07-08 17:19 - 00000000 __SHD C:\Users\test\Druckumgebung 2013-07-08 17:19 - 2013-07-08 17:19 - 00000000 __SHD C:\Users\test\Documents\Eigene Musik 2013-07-08 17:19 - 2013-07-08 17:19 - 00000000 __SHD C:\Users\test\Documents\Eigene Bilder 2013-07-08 17:19 - 2013-07-08 17:19 - 00000000 __SHD C:\Users\test\AppData\Local\Verlauf 2013-07-08 17:19 - 2013-07-08 17:19 - 00000000 __SHD C:\Users\test\AppData\Local\Anwendungsdaten 2013-07-08 17:19 - 2013-07-08 17:19 - 00000000 __SHD C:\Users\test\Anwendungsdaten 2013-07-08 17:19 - 2013-07-08 17:19 - 00000000 ____D C:\Users\test\AppData\Roaming\Intel 2013-07-08 17:13 - 2013-07-08 17:13 - 00861184 ____A (Microsoft Corporation) C:\Users\*******\Downloads\IE10-Windows6.1-de-de.exe 2013-07-08 16:09 - 2013-07-08 16:09 - 00000000 ____D C:\Users\*******\AppData\Roaming\TuneUp Software 2013-07-08 15:31 - 2013-07-08 15:31 - 00000000 ____D C:\Users\*******\AppData\Local\MFAData 2013-07-08 15:28 - 2013-07-08 14:56 - 159486920 ____A (AVG Technologies) C:\Users\*******\Downloads\avg_ipw_x64_all_2013_3345a6382(1).exe 2013-07-08 13:24 - 2012-02-23 21:08 - 00000600 ____A C:\Users\*******\AppData\Roaming\winscp.rnd 2013-07-08 13:13 - 2012-05-07 20:33 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2013-07-08 12:17 - 2013-07-08 10:54 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox 2013-07-01 18:45 - 2013-07-01 17:34 - 00000000 ____D C:\Users\*******\AppData\Roaming\Shark007 2013-07-01 18:45 - 2013-07-01 17:34 - 00000000 ____D C:\ProgramData\Shark007 2013-07-01 18:28 - 2013-07-01 18:28 - 00000000 ____D C:\Users\*******\AppData\Roaming\MediaConfiguration 2013-07-01 18:26 - 2013-07-01 18:26 - 00000000 ____D C:\Users\*******\AppData\Roaming\Media Control 2013-07-01 18:25 - 2013-07-01 18:25 - 03050508 ____A (Damien Bain-Thouverez ) C:\Users\*******\Downloads\MediaControl_6.0.15.exe 2013-07-01 18:07 - 2013-07-01 18:07 - 00000000 ____D C:\Users\*******\AppData\Roaming\Advanced 2013-07-01 18:07 - 2013-07-01 18:07 - 00000000 ____D C:\Program Files (x86)\Shark007 2013-07-01 18:07 - 2013-07-01 18:04 - 00000000 ____D C:\ProgramData\Advanced 2013-07-01 18:04 - 2013-07-01 18:03 - 29160522 ____A C:\Users\*******\Downloads\32bit_Advanced_v418.exe 2013-07-01 17:50 - 2013-07-01 17:47 - 00000000 ____D C:\Users\*******\AppData\Roaming\vlc 2013-07-01 17:46 - 2013-07-01 17:46 - 00003584 ____A C:\Users\*******\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini 2013-07-01 17:40 - 2012-04-07 14:42 - 00000000 ____D C:\Program Files (x86)\DivX 2013-07-01 17:40 - 2012-04-07 14:41 - 00000000 ____D C:\ProgramData\DivX 2013-07-01 17:34 - 2013-07-01 17:34 - 00000000 ____D C:\Program Files\Shark007 2013-07-01 17:34 - 2013-07-01 17:33 - 18422493 ____A C:\Users\*******\Downloads\Advanced_x64Components_v418.exe 2013-07-01 17:31 - 2013-07-01 17:29 - 22937227 ____A C:\Users\*******\Downloads\vlc-2.0.7-win32.exe 2013-07-01 17:30 - 2013-07-01 17:29 - 14989539 ____A C:\Users\*******\Downloads\vlc-2.0.7-win32.exe.part 2013-07-01 16:44 - 2012-04-07 14:43 - 00000000 ____D C:\Program Files\DivX 2013-07-01 16:34 - 2012-06-26 10:30 - 00867240 ____A (Oracle Corporation) C:\Windows\SysWOW64\npdeployJava1.dll 2013-07-01 16:34 - 2012-02-21 19:34 - 00789416 ____A (Oracle Corporation) C:\Windows\SysWOW64\deployJava1.dll 2013-07-01 10:07 - 2012-02-21 17:18 - 00000000 ____D C:\Users\*******\AppData\Roaming\Mozilla 2013-06-28 10:45 - 2012-02-20 15:51 - 00120320 ____A C:\Users\*******\AppData\Local\GDIPFONTCACHEV1.DAT 2013-06-28 10:45 - 2012-02-20 15:48 - 00000528 ____A C:\Windows\Tasks\PCDoctorBackgroundMonitorTask.job 2013-06-28 10:45 - 2009-07-14 06:45 - 02377552 ____A C:\Windows\System32\FNTCACHE.DAT 2013-06-28 03:36 - 2013-06-28 02:06 - 00000528 ____A C:\Windows\Tasks\PCDoctorBackgroundMonitorTask-Delay.job 2013-06-28 02:07 - 2012-11-22 14:58 - 00000000 ____D C:\ldiag 2013-06-18 11:41 - 2012-02-21 13:03 - 75825640 ____A (Microsoft Corporation) C:\Windows\System32\MRT.exe 2013-06-18 11:39 - 2012-02-23 21:07 - 00000600 ____A C:\Users\*******\AppData\Local\PUTTY.RND 2013-06-13 12:04 - 2012-04-08 09:53 - 00692104 ____A (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe 2013-06-13 12:04 - 2012-02-21 19:11 - 00071048 ____A (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl ==================== Bamital & volsnap Check ================= C:\Windows\System32\winlogon.exe => MD5 is legit C:\Windows\System32\wininit.exe => MD5 is legit C:\Windows\SysWOW64\wininit.exe => MD5 is legit C:\Windows\explorer.exe => MD5 is legit C:\Windows\SysWOW64\explorer.exe => MD5 is legit C:\Windows\System32\svchost.exe => MD5 is legit C:\Windows\SysWOW64\svchost.exe => MD5 is legit C:\Windows\System32\services.exe => MD5 is legit C:\Windows\System32\User32.dll => MD5 is legit C:\Windows\SysWOW64\User32.dll => MD5 is legit C:\Windows\System32\userinit.exe => MD5 is legit C:\Windows\SysWOW64\userinit.exe => MD5 is legit C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit LastRegBack: 2013-07-08 19:59 ==================== End Of Log ============================ --- --- --- --- --- --- Hallo Schrauber, ich hab mal getestet, ob die bisherigen Schritte etwas gebracht haben, aber das Problem besteht noch. Ich hoffe es war nicht kontraproduktiv !? Auf jeden Fall bringt adwcleaner aktuell keinen Fehler mehr und das JRT findet auch nichts verdächtiges mehr. Was nun? Schöne Grüße mutz01 |
![]() | #6 |
/// the machine /// TB-Ausbilder ![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() | ![]() IE10 unter Win 7 (64bit) crashed neuerdings bei jedem StartESET Online Scanner
Downloade Dir bitte ![]()
Setze folgendermassen den Internet Explorer zurück:
und ein frisches FRST Log bitte.
__________________ --> IE10 unter Win 7 (64bit) crashed neuerdings bei jedem Start |
![]() | #7 |
| ![]() IE10 unter Win 7 (64bit) crashed neuerdings bei jedem Start Hallo Schrauber, Vielen Dank für die Anweisungen! Hier die Ergebnisse: der ESET Online Scanner sagt: "No threats found": Code:
ATTFilter ESETSmartInstaller@High as downloader log: all ok # version=8 # OnlineScannerApp.exe= # OnlineScanner.ocx= # api_version=3.0.2 # EOSSerial=cab614964c575e448207cd1749756f8f # engine=14334 # end=finished # remove_checked=false # archives_checked=true # unwanted_checked=false # unsafe_checked=false # antistealth_checked=true # utc_time=2013-07-10 10:02:21 # local_time=2013-07-10 12:02:21 (+0100, Mitteleuropäische Sommerzeit) # country="Germany" # lang=1033 # osver=6.1.7601 NT Service Pack 1 # compatibility_mode=5893 16776573 100 94 51406 125080391 0 0 # scanned=287778 # found=0 # cleaned=0 # scan_time=7780 Code:
ATTFilter Results of screen317's Security Check version 0.99.68 Windows 7 Service Pack 1 x64 (UAC is disabled!) Internet Explorer 10 ``````````````Antivirus/Firewall Check:`````````````` WMI entry may not exist for antivirus; attempting automatic update. `````````Anti-malware/Other Utilities Check:````````` Altova XMLSpy 2005 Enterprise Edition Adobe Flash Player 11.7.700.224 Adobe Reader XI Mozilla Firefox (22.0) Google Chrome 12.0.742.112 ````````Process Check: objlist.exe by Laurent```````` `````````````````System Health check````````````````` Total Fragmentation on Drive C: ````````````````````End of Log`````````````````````` Über die Systemsteuerung konnte ich zwar die Internetoptionen aufrufen. Der Versuch die Einstellungen zurück zu setzen scheiterte aber. Von den vier Punkten die da zurückgesetzt wurden, wurde einer mit einem roten Kreuz quittiert und drei mit grünen Häkchen. Das Kreuz befindet sich an "Benutzeranpassungen werden zurückgesetzt". Das hat nicht geklappt. Die Häkchen befinden sich bei "Browser-Add-Ons werden deaktiviert", "Standardeinstellungen werden angewendet" und "Persönliche Einstellungen werden gelöscht". Ich habe den Rechner daher im abgesicherten Modus (nur Netzwerktreiber) gestartet und mich damit noch mal eingeloggt. Dort kann ich ja den IE starten und dort bekam ich auch alle vier Tasks mit einem grünen Häkchen quittiert. Das Problem besteht aber noch ![]() Hier das aktuelle FRST-Resultat: FRST Logfile: FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 09-07-2013 01 Ran by ********* (administrator) on 10-07-2013 13:59:20 Running from C:\Users\*********\Desktop Windows 7 Professional Service Pack 1 (X64) OS Language: German Standard Internet Explorer Version 10 Boot Mode: Normal ==================== Processes (Whitelisted) ================= (Lenovo.) C:\Windows\system32\ibmpmsvc.exe (DisplayLink Corp.) C:\Program Files\DisplayLink Core Software\DisplayLinkManager.exe (Logitech, Inc.) C:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.exe (DisplayLink Corp.) C:\Program Files\DisplayLink Core Software\DisplayLinkUserAgent.exe (Microsoft Corporation) C:\Windows\system32\WLANExt.exe (Lenovo Group Limited) C:\Program Files\LENOVO\HOTKEY\TPHKSVC.exe (Lenovo Group Limited) C:\Program Files\LENOVO\HOTKEY\TPHKLOAD.exe (Lenovo) C:\Program Files (x86)\Lenovo\Access Connections\AcPrfMgrSvc.exe (Lenovo) C:\Program Files (x86)\Lenovo\Access Connections\AcSvc.exe (Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe (Broadcom Corporation.) C:\Program Files\ThinkPad\Bluetooth Software\btwdins.exe (Authentec Inc.) C:\Program Files\ThinkVantage Fingerprint Software\upeksvr.exe (Conexant Systems Inc.) C:\Windows\system32\CxAudMsg64.exe (DVBLogic) C:\Program Files (x86)\DVBLogic\DVBLink\dvblink_client.exe (Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe (Intel Corporation) C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe (Lenovo Group Limited) C:\Program Files\Lenovo\Communications Utility\CAMMUTE.exe (Lenovo Group Limited) C:\Program Files\LENOVO\HOTKEY\MICMUTE.exe (Lenovo Group Limited) C:\Program Files\Lenovo\Communications Utility\TPKNRSVC.exe (Lenovo Group Limited) C:\Program Files\Lenovo\Communications Utility\vcamsvc.exe (Lenovo Group Limited) C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe (DisplayLink Corp.) C:\Program Files\Lenovo Display Adapter\DisplayLinkLenovoSupport.exe (DisplayLink Corp.) C:\Program Files\DisplayLink Core Software\DisplayLinkUI.exe (Lenovo Group Limited) C:\PROGRA~1\Lenovo\HOTKEY\TPONSCR.EXE (Lenovo Group Limited) C:\PROGRA~1\Lenovo\HOTKEY\SHTCTKY.EXE (Lenovo Group Limited) C:\PROGRA~1\LENOVO\VIRTSCRL\virtscrl.exe (Lenovo Group Limited) C:\PROGRA~1\Lenovo\HOTKEY\tpnumlkd.exe (Lenovo.) C:\Windows\System32\TpShocks.exe (Lenovo Group Limited) C:\Program Files\Lenovo\Communications Utility\TpKnrres.exe (Lenovo Group Limited) C:\Program Files\Lenovo\AutoLock\ALCKRESI.exe (Intel Corporation) C:\Windows\System32\igfxpers.exe (Intel Corporation) C:\Windows\system32\igfxsrvc.exe (Intel Corporation) C:\Windows\System32\hkcmd.exe () C:\Program Files\CONEXANT\ForteConfig\fmapp.exe (Logitech Inc.) C:\Program Files\Logitech\SetPoint\LBTWiz.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe (Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE () C:\Program Files (x86)\Lion\Lion.exe (Synaptics Incorporated) C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE (Eye-Fi, Inc.) C:\Program Files (x86)\Eye-Fi\Helper\EyeFiHelper.exe (ACD Systems International Inc.) C:\Program Files (x86)\Common Files\ACD Systems\DE\DevDetect.exe (Broadcom Corporation.) C:\Program Files\ThinkPad\Bluetooth Software\BTTray.exe (Docking Station) C:\Program Files (x86)\Lenovo\igpxtskmgn64.exe (Logitech, Inc.) C:\Program Files\Logitech\SetPoint\SetPoint.exe (Dropbox, Inc.) C:\Users\*********\AppData\Roaming\Dropbox\bin\Dropbox.exe () C:\Program Files (x86)\Gajim\bin\gajim.exe (Lenovo) C:\Program Files (x86)\Lenovo\MobileAccess\MobileAccess.exe (Elaborate Bytes AG) C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPLpr.exe (Ricoh co.,Ltd.) C:\Program Files (x86)\Integrated Camera Driver\X64\RCIMGDIR.exe (CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD9\PDVD9Serv.exe (CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe (Renesas Electronics Corporation) C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe (Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe (DVBLogic) C:\Program Files (x86)\DVBLogic\DVBLink\dvblink_mc_launcher.exe (Dolby Laboratories Inc.) C:\Program Files (x86)\Dolby Home Theater v4\pcee4.exe () C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe () C:\Program Files\Logitech\SetPoint\x86\SetPoint32.exe (CyberLink) C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe (cyberlink) C:\Program Files (x86)\CyberLink\Shared files\brs.exe (Logitech, Inc.) C:\Program Files\Common Files\Logishrd\KHAL2\KHALMNPR.EXE (Adobe Systems Inc.) C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\acrotray.exe (Lenovo Group Limited) C:\Program Files (x86)\Lenovo\Screen Reading Optimizer\SRORest.exe (Lenovo Group Limited) C:\PROGRA~2\ThinkPad\UTILIT~1\SCHTASK.exe (Broadcom Corporation.) C:\Program Files\ThinkPad\Bluetooth Software\BtStackServer.exe (Broadcom Corporation.) C:\Program Files\ThinkPad\Bluetooth Software\Bluetooth Headset Helper.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PrivacyIconClient.exe (Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe () C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe (Conexant Systems, Inc.) C:\Windows\SysWOW64\SAsrv.exe (Memeo) C:\Program Files (x86)\Seagate\Seagate Dashboard\SeagateDashboardService.exe (TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe (Data Perceptions / PowerProgrammer) C:\Program Files (x86)\Lenovo\MobileAccess\WebUpdateSvc4.exe (Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE (Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe (Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe (TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer.exe (Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version8\tv_w32.exe (TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version8\tv_x64.exe (Macrovision Europe Ltd.) C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe (Lenovo) C:\Program Files (x86)\Lenovo\Access Connections\SvcGuiHlpr.exe (Memeo) C:\Program Files (x86)\Seagate\Seagate Dashboard\MemeoDashboard.exe (Macheen) C:\Program Files (x86)\Lenovo\MobileAccess\MacheenService.exe () C:\Program Files (x86)\Memeo\AutoBackup\InstantBackup.exe (Axentra Corporation) C:\Program Files (x86)\Seagate\Seagate Dashboard\HipServAgent\HipServAgent.exe (Lenovo) C:\Program Files (x86)\ThinkPad\Utilities\PWMDBSVC.EXE (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Intel Corporation) C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe (Intel(R) Corporation) C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe (Microsoft Corporation) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe (Lenovo Group Limited) C:\Program Files (x86)\Lenovo\Screen Reading Optimizer\SROSVC.exe (Lenovo Group Limited) C:\Program Files (x86)\Common Files\Lenovo\tvt_reg_monitor_svc.exe (Ericsson AB) C:\Program Files (x86)\Mobile Broadband drivers\WMCore\mini_WMCore.exe ==================== Registry (Whitelisted) ================== HKLM\...\Run: [TpShocks] - TpShocks.exe [380776 2011-03-29] (Lenovo.) HKLM\...\Run: [LENOVO.TPKNRRES] - C:\Program Files\Lenovo\Communications Utility\TPKNRRES.exe [290160 2012-06-01] (Lenovo Group Limited) HKLM\...\Run: [ALCKRESI.EXE] - C:\Program Files\Lenovo\AutoLock\ALCKRESI.EXE [386408 2011-09-27] (Lenovo Group Limited) HKLM\...\Run: [AcWin7Hlpr] - C:\Program Files (x86)\Lenovo\Access Connections\AcTBenabler.exe [63784 2013-03-18] (Lenovo) HKLM\...\Run: [SmartAudio] - C:\Program Files\CONEXANT\SAII\SAIICpl.exe /t [316032 2010-12-14] (Conexant systems, Inc.) HKLM\...\Run: [Persistence] - C:\Windows\system32\igfxpers.exe [417088 2012-06-11] (Intel Corporation) HKLM\...\Run: [Kernel and Hardware Abstraction Layer] - KHALMNPR.EXE [x] HKLM\...\Run: [IgfxTray] - C:\Windows\system32\igfxtray.exe [170304 2012-08-27] (Intel Corporation) HKLM\...\Run: [HotKeysCmds] - C:\Windows\system32\hkcmd.exe [392512 2012-06-11] (Intel Corporation) HKLM\...\Run: [ForteConfig] - C:\Program Files\Conexant\ForteConfig\fmapp.exe [49056 2010-10-26] () HKLM\...\Run: [Cm108Sound] - C:\Windows\syswow64\RunDll32.exe C:\Windows\Syswow64\cm108.dll,CMICtrlWnd [8146944 2010-07-05] (C-Media Corporation) HKLM\...\Run: [Bluetooth Connection Assistant] - LBTWIZ.EXE -silent [x] HKLM\...\Run: [SynTPEnh] - %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe [2963184 2013-04-24] (Synaptics Incorporated) HKLM\...\Winlogon: [Userinit] C:\Windows\system32\userinit.exe, Winlogon\Notify\LBTWlgn: c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll (Logitech, Inc.) Winlogon\Notify\psfus: C:\Program Files\ThinkVantage Fingerprint Software\psqlpwd.dll (Authentec Inc.) HKCU\...\Run: [Skype] - "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun [17418928 2012-07-13] (Skype Technologies S.A.) HKCU\...\Run: [OfficeSyncProcess] - "C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE" [719672 2012-01-20] (Microsoft Corporation) HKCU\...\Run: [Lion] - "C:\Program Files (x86)\Lion\Lion.exe" [235579 2010-04-14] () HKCU\...\Run: [Google Update] - "C:\Users\*********\AppData\Local\Google\Update\GoogleUpdate.exe" /c [136176 2012-02-22] (Google Inc.) HKCU\...\Run: [Eye-Fi] - "C:\Program Files (x86)\Eye-Fi\Helper\EyeFiHelper.exe" [3961464 2011-12-22] (Eye-Fi, Inc.) HKCU\...\Run: [Device Detector] - DevDetect.exe -autorun [x] HKCU\...\Policies\system: [DisableRegistryTools] 0 HKCU\...\Policies\system: [DisableTaskMgr] 0 MountPoints2: {0f5bc55c-87d0-11e2-973a-60d819d5a7a5} - E:\Start.exe MountPoints2: {15568f21-533e-11e2-aa1b-60d819d5a7a5} - E:\AutoRun.exe MountPoints2: {15568f36-533e-11e2-aa1b-60d819d5a7a5} - E:\AutoRun.exe MountPoints2: {3ce48f40-6232-11e1-8159-028037ec0200} - F:\Start.bat MountPoints2: {9a35c050-f962-11e0-879a-806e6f6e6963} - Q:\LenovoQDrive.exe MountPoints2: {acc6c15a-8bac-11e1-a964-60d819d5a7a5} - E:\AutoRun.exe MountPoints2: {f98ca1c2-54f5-11e2-b21b-60d819d5a7a5} - E:\AutoRun.exe HKLM-x32\...\Run: [] - [x] HKLM-x32\...\Run: [Lenovo Registration] - C:\Program Files (x86)\Lenovo Registration\LenovoReg.exe /boot [4351712 2011-07-13] (Lenovo, Inc.) HKLM-x32\...\Run: [PWMTRV] - rundll32 C:\PROGRA~2\ThinkPad\UTILIT~1\PWMTR64V.DLL,PwrMgrBkGndMonitor [6001448 2013-03-18] (Lenovo Group Limited) HKLM-x32\...\Run: [MobileAccess] - C:\Program Files (x86)\Lenovo\MobileAccess\MobileAccess.exe -silentExitIfNotFirst [155864 2013-04-17] (Lenovo) HKLM-x32\...\Run: [VirtualCloneDrive] - "C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe" /s [89456 2011-03-07] (Elaborate Bytes AG) HKLM-x32\...\Run: [UpdatePSTShortCut] - "C:\Program Files (x86)\CyberLink\Blu-ray Disc Suite\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\Blu-ray Disc Suite" UpdateWithCreateOnce "Software\CyberLink\PowerStarter" [222504 2011-06-13] (CyberLink Corp.) HKLM-x32\...\Run: [UpdatePPShortCut] - "C:\Program Files (x86)\CyberLink\PowerProducer\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\PowerProducer" update "Software\CyberLink\PowerProducer\5.0" [222504 2010-09-17] (CyberLink Corp.) HKLM-x32\...\Run: [SunJavaUpdateSched] - "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" [x] HKLM-x32\...\Run: [Seagate Dashboard] - C:\Program Files (x86)\Seagate\Seagate Dashboard\MemeoLauncher.exe --silent --no_ui [79112 2011-06-01] () HKLM-x32\...\Run: [RotateImage] - C:\Program Files (x86)\Integrated Camera Driver\X64\RCIMGDIR.exe [55808 2008-10-30] (Ricoh co.,Ltd.) HKLM-x32\...\Run: [RemoteControl9] - "C:\Program Files (x86)\CyberLink\PowerDVD9\PDVD9Serv.exe" [87336 2010-08-02] (CyberLink Corp.) HKLM-x32\...\Run: [RemoteControl10] - "C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe" [87336 2011-03-30] (CyberLink Corp.) HKLM-x32\...\Run: [NUSB3MON] - "C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe" [115048 2011-09-16] (Renesas Electronics Corporation) HKLM-x32\...\Run: [Memeo Instant Backup] - C:\Program Files (x86)\Memeo\AutoBackup\MemeoLauncher2.exe --silent --no_ui [136416 2011-05-04] (Memeo Inc.) HKLM-x32\...\Run: [Memeo AutoSync] - C:\Program Files (x86)\Memeo\AutoSync\MemeoLauncher2.exe --silent [144608 2011-05-05] (Memeo Inc.) HKLM-x32\...\Run: [LexwareInfoService] - C:\Program Files (x86)\Common Files\Lexware\Update Manager\LxUpdateManager.exe /autostart [189808 2011-07-31] (Haufe-Lexware GmbH & Co. KG) HKLM-x32\...\Run: [iTunesHelper] - "C:\Program Files (x86)\iTunes\iTunesHelper.exe" [421736 2012-01-16] (Apple Inc.) HKLM-x32\...\Run: [IMSS] - "C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe" [112152 2011-01-17] (Intel Corporation) HKLM-x32\...\Run: [DVBLink MediaCenter Launcher] - C:\Program Files (x86)\DVBLogic\DVBLink\dvblink_mc_launcher.exe [58368 2011-12-06] (DVBLogic) HKLM-x32\...\Run: [Dolby Home Theater v4] - "C:\Program Files (x86)\Dolby Home Theater v4\pcee4.exe" -autostart [506712 2011-02-03] (Dolby Laboratories Inc.) HKLM-x32\...\Run: [DivXUpdate] - "C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW [1263952 2013-02-13] () HKLM-x32\...\Run: [DivXMediaServer] - C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe [x] HKLM-x32\...\Run: [CLMLServer] - "C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe" [103720 2009-11-02] (CyberLink) HKLM-x32\...\Run: [BDRegion] - C:\Program Files (x86)\Cyberlink\Shared files\brs.exe [75048 2012-04-02] (cyberlink) HKLM-x32\...\Run: [BCSSync] - "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices [91520 2010-03-13] (Microsoft Corporation) HKLM-x32\...\Run: [AVG_UI] - "C:\Program Files (x86)\AVG\AVG2013\avgui.exe" /TRAYONLY [x] HKLM-x32\...\Run: [APSDaemon] - "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" [59240 2011-11-02] (Apple Inc.) HKLM-x32\...\Run: [Adobe ARM] - "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [958576 2013-04-04] (Adobe Systems Incorporated) HKLM-x32\...\Run: [Acrobat Assistant 8.0] - "C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\Acrotray.exe" [624248 2007-05-10] (Adobe Systems Inc.) HKU\Default\...\RunOnce: [mctadmin] - C:\Windows\System32\mctadmin.exe [97280 2009-07-14] (Microsoft Corporation) HKU\Default\...\RunOnce: [] - [x] HKU\Default\...\RunOnce: [Lenovoautoqdrive] - C:\PROGRA~2\Common~1\Lenovo\Lenovo~1\LenovoAutorunreg.exe /DRIVE=Q [159744 2009-03-24] () HKU\Default\...\RunOnce: [Lenovo.ShowBand] - C:\Program Files\Lenovo\SimpleTap DeskBand\ShowBand.exe /show [156000 2012-05-16] (Lenovo) HKU\Default User\...\RunOnce: [mctadmin] - C:\Windows\System32\mctadmin.exe [97280 2009-07-14] (Microsoft Corporation) HKU\Default User\...\RunOnce: [] - [x] HKU\Default User\...\RunOnce: [Lenovoautoqdrive] - C:\PROGRA~2\Common~1\Lenovo\Lenovo~1\LenovoAutorunreg.exe /DRIVE=Q [159744 2009-03-24] () HKU\Default User\...\RunOnce: [Lenovo.ShowBand] - C:\Program Files\Lenovo\SimpleTap DeskBand\ShowBand.exe /show [156000 2012-05-16] (Lenovo) Lsa: [Notification Packages] scecli C:\Program Files\ThinkVantage Fingerprint Software\psqlpwd.dll C:\Program Files\ThinkPad\Bluetooth Software\BtwProximityCP.dll ACGina Startup: C:\ProgramData\Start Menu\Programs\Startup\Bluetooth.lnk ShortcutTarget: Bluetooth.lnk -> C:\Program Files\ThinkPad\Bluetooth Software\BTTray.exe (Broadcom Corporation.) Startup: C:\ProgramData\Start Menu\Programs\Startup\igpxtskmgn.lnk ShortcutTarget: igpxtskmgn.lnk -> C:\Program Files (x86)\Lenovo\igpxtskmgn64.exe (Docking Station) Startup: C:\ProgramData\Start Menu\Programs\Startup\Logitech SetPoint.lnk ShortcutTarget: Logitech SetPoint.lnk -> C:\Program Files\Logitech\SetPoint\SetPoint.exe (Logitech, Inc.) Startup: C:\Users\*********\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk ShortcutTarget: Dropbox.lnk -> C:\Users\*********\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.) Startup: C:\Users\*********\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Gajim.lnk ShortcutTarget: Gajim.lnk -> C:\Program Files (x86)\Gajim\bin\gajim.exe () ==================== Internet (Whitelisted) ==================== HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/ HKCU SearchScopes: DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~3\Office14\GROOVEEX.DLL (Microsoft Corporation) BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.) BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~3\Office14\URLREDIR.DLL (Microsoft Corporation) BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll No File BHO-x32: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~3\Office14\GROOVEEX.DLL (Microsoft Corporation) BHO-x32: Windows Live ID-Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.) BHO-x32: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated) BHO-x32: Skype Browser Helper - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~3\Office14\URLREDIR.DLL (Microsoft Corporation) Toolbar: HKLM-x32 - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated) DPF: HKLM-x32 {A6616B31-4860-41E2-98E3-CA7649AF172F} file:///F:/launch.ocx Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - No File Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies) FireFox: ======== FF ProfilePath: C:\Users\*********\AppData\Roaming\Mozilla\Firefox\Profiles\vtnf0i9h.default FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_7_700_224.dll () FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.) FF Plugin: @microsoft.com/GENUINE - disabled No File FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20125.0\npctrl.dll ( Microsoft Corporation) FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~3\Office14\NPAUTHZ.DLL (Microsoft Corporation) FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_7_700_224.dll () FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll () FF Plugin-x32: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.) FF Plugin-x32: @Google.com/GoogleEarthPlugin - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google) FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 - C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll (Google, Inc.) FF Plugin-x32: @java.com/DTPlugin,version=10.25.2 - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation) FF Plugin-x32: @microsoft.com/GENUINE - disabled No File FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.20125.0\npctrl.dll ( Microsoft Corporation) FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~2\MICROS~3\Office14\NPAUTHZ.DLL (Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~3\Office14\NPSPWRAP.DLL (Microsoft Corporation) FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation) FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\\npGoogleUpdate3.dll (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\\npGoogleUpdate3.dll (Google Inc.) FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF Plugin HKCU: @talk.google.com/GoogleTalkPlugin - C:\Users\*********\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll (Google) FF Plugin HKCU: @talk.google.com/O1DPlugin - C:\Users\*********\AppData\Roaming\Mozilla\plugins\npo1d.dll (Google) FF Plugin HKCU: @talk.google.com/O3DPlugin - C:\Users\*********\AppData\Roaming\Mozilla\plugins\npgtpo3dautoplugin.dll () FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\*********\AppData\Local\Google\Update\\npGoogleUpdate3.dll (Google Inc.) FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\*********\AppData\Local\Google\Update\\npGoogleUpdate3.dll (Google Inc.) FF Extension: United States English Spellchecker - C:\Users\*********\AppData\Roaming\Mozilla\Firefox\Profiles\vtnf0i9h.default\Extensions\en-US@dictionaries.addons.mozilla.org FF Extension: FireShot - C:\Users\*********\AppData\Roaming\Mozilla\Firefox\Profiles\vtnf0i9h.default\Extensions\{0b457cAA-602d-484a-8fe7-c1d894a011ba} FF Extension: IE Tab 2 (FF 3.6+) - C:\Users\*********\AppData\Roaming\Mozilla\Firefox\Profiles\vtnf0i9h.default\Extensions\{1BC9BA34-1EED-42ca-A505-6D2F1A935BBB} FF Extension: ColorZilla - C:\Users\*********\AppData\Roaming\Mozilla\Firefox\Profiles\vtnf0i9h.default\Extensions\{6AC85730-7D0F-4de0-B3FA-21142DD85326} FF Extension: firebug - C:\Users\*********\AppData\Roaming\Mozilla\Firefox\Profiles\vtnf0i9h.default\Extensions\firebug@software.joehewitt.com.xpi FF Extension: password.generator - C:\Users\*********\AppData\Roaming\Mozilla\Firefox\Profiles\vtnf0i9h.default\Extensions\password.generator@kolya.ca.xpi FF Extension: secureLogin - C:\Users\*********\AppData\Roaming\Mozilla\Firefox\Profiles\vtnf0i9h.default\Extensions\secureLogin@blueimp.net.xpi FF Extension: No Name - C:\Users\*********\AppData\Roaming\Mozilla\Firefox\Profiles\vtnf0i9h.default\Extensions\{3e9bb2a7-62ca-4efa-a4e6-f6f6168a652d}.xpi FF Extension: No Name - C:\Users\*********\AppData\Roaming\Mozilla\Firefox\Profiles\vtnf0i9h.default\Extensions\{64161300-e22b-11db-8314-0800200c9a66}.xpi FF Extension: No Name - C:\Users\*********\AppData\Roaming\Mozilla\Firefox\Profiles\vtnf0i9h.default\Extensions\{c45c406e-ab73-11d8-be73-000a95be3b12}.xpi FF Extension: No Name - C:\Users\*********\AppData\Roaming\Mozilla\Firefox\Profiles\vtnf0i9h.default\Extensions\{EF522540-89F5-46b9-B6FE-1829E2B572C6}.xpi FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} FF Extension: Java Console - C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA} FF Extension: Java Console - C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA} FF Extension: Default - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} FF HKLM-x32\...\Firefox\Extensions: [VIP1X@verisign.com] C:\Program Files (x86)\Symantec\VIP Access Client\ FF HKLM-x32\...\Firefox\Extensions: [VIP2X@verisign.com] C:\Program Files (x86)\Symantec\VIP Access Client\ Chrome: ======= CHR Extension: (Skype Click to Call) - C:\Users\*********\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\ CHR Extension: (DivX Plus Web Player HTML5 \u003Cvideo\u003E) - C:\Users\*********\AppData\Local\Google\Chrome\User Data\Default\Extensions\nneajnkjbffgblleaoojgaacokifdkhm\ ==================== Services (Whitelisted) ================= S2 CLKMSVC10_38F51D56; C:\Program Files (x86)\CyberLink\PowerDVD10\NavFilter\kmsvc.exe [241648 2012-04-02] (CyberLink) S2 CLKMSVC10_9EC60124; C:\Program Files (x86)\CyberLink\PowerDVD9\NavFilter\kmsvc.exe [240112 2010-11-23] (CyberLink) R2 CxAudMsg; C:\Windows\system32\CxAudMsg64.exe [198784 2010-12-17] (Conexant Systems Inc.) R2 DisplayLinkService; C:\Program Files\DisplayLink Core Software\DisplayLinkManager.exe [9573736 2011-02-03] (DisplayLink Corp.) S3 DozeSvc; C:\Program Files (x86)\ThinkPad\Utilities\DZSVC64.EXE [320576 2013-03-18] (Lenovo.) R2 dvblink_client; C:\Program Files (x86)\DVBLogic\DVBLink\dvblink_client.exe [1213952 2011-12-06] (DVBLogic) R2 LENOVO.TVTVCAM; C:\Program Files\Lenovo\Communications Utility\vcamsvc.exe [179568 2012-06-01] (Lenovo Group Limited) R2 Lenovo.VIRTSCRLSVC; C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe [133992 2011-07-12] (Lenovo Group Limited) R2 MacheenService; C:\Program Files (x86)\Lenovo\MobileAccess\MacheenService.exe [32480 2013-04-17] (Macheen) S3 OpenVPNService; C:\Program Files (x86)\OpenVPN\bin\openvpnserv.exe [36366 2010-09-06] () R2 RichVideo; C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [244904 2010-09-06] () R2 SROSVC; C:\Program Files (x86)\Lenovo\Screen Reading Optimizer\SROSVC.exe [446800 2012-03-05] (Lenovo Group Limited) S3 SUService; C:\Program Files (x86)\Lenovo\System Update\SUService.exe [22376 2013-04-11] () R2 ThinkVantage Registry Monitor Service; C:\Program Files (x86)\Common Files\Lenovo\tvt_reg_monitor_svc.exe [1028096 2010-12-11] (Lenovo Group Limited) S3 TVT Backup Service; C:\Program Files (x86)\Lenovo\Rescue and Recovery\rrservice.exe [1475896 2010-12-11] (Lenovo Group Limited) R2 WebUpdate4; C:\Program Files (x86)\Lenovo\MobileAccess\WebUpdateSvc4.exe [278800 2013-01-16] (Data Perceptions / PowerProgrammer) R2 WMCoreService; C:\Program Files (x86)\Mobile Broadband drivers\WMCore\mini_WMCore.exe [648744 2011-08-12] (Ericsson AB) R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3342640 2012-08-23] (Intel® Corporation) ==================== Drivers (Whitelisted) ==================== S3 AX88772; C:\Windows\System32\DRIVERS\ax88772.sys [79360 2011-06-01] (ASIX Electronics Corp.) S3 btusb64v; C:\Windows\System32\drivers\btusb64v.sys [36688 2011-11-30] (BUFFALO INC.) S3 DisplayLinkUsbPort; C:\Windows\System32\DRIVERS\DisplayLinkUsbPort_5.6.30272.0.sys [17408 2012-02-28] (hxxp://libusb-win32.sourceforge.net) R3 dvblink_tuner; C:\Windows\System32\drivers\dvblink_tuner.sys [78184 2011-12-08] (DVBLogic) R3 ecnssndis; C:\Windows\System32\Drivers\wwuss64.sys [26664 2010-03-03] (Ericsson AB) R3 ecnssndisfltr; C:\Windows\System32\Drivers\wwussf64.sys [30248 2010-03-03] (Ericsson AB) R3 l36wgps; C:\Windows\System32\DRIVERS\l36wgps64.sys [101416 2011-07-01] (Ericsson AB) R3 Mbm3CBus; C:\Windows\System32\DRIVERS\Mbm3CBus.sys [419400 2011-04-29] (MCCI Corporation) R3 Mbm3DevMt; C:\Windows\System32\DRIVERS\Mbm3DevMt.sys [430664 2011-04-29] (MCCI Corporation) R3 Mbm3mdfl; C:\Windows\System32\DRIVERS\Mbm3mdfl.sys [19528 2011-04-29] (MCCI Corporation) R3 Mbm3Mdm; C:\Windows\System32\DRIVERS\Mbm3Mdm.sys [483400 2011-04-29] (MCCI Corporation) R3 NETwNs64; C:\Windows\System32\DRIVERS\Netwsw00.sys [11523072 2012-09-30] (Intel Corporation) R1 PHCORE; C:\Program Files\Lenovo\RapidBoot\PHCORE64.SYS [32104 2011-07-08] (Lenovo Group Limited) S3 pmxdrv; C:\Windows\system32\drivers\pmxdrv.sys [31152 2011-10-18] () S3 pmxdrv; C:\Windows\system32\drivers\pmxdrv.sys [31152 2011-10-18] () R3 SmbDrvI; C:\Windows\System32\DRIVERS\Smb_driver_Intel.sys [44344 2012-10-17] (Synaptics Incorporated) R2 smihlp2; C:\Program Files\ThinkVantage Fingerprint Software\smihlp.sys [13128 2011-05-30] (Authentec Inc.) R3 tvtvcamd; C:\Windows\System32\DRIVERS\tvtvcamd.sys [27432 2011-12-07] (ThinkVantage Communications Utility) R3 WwanUsbServ; C:\Windows\System32\DRIVERS\WwanUsbMp64.sys [268840 2011-08-12] (Ericsson AB) S3 ew_hwusbdev; system32\DRIVERS\ew_hwusbdev.sys [x] S3 huawei_cdcacm; system32\DRIVERS\ew_jucdcacm.sys [x] S3 huawei_enumerator; system32\DRIVERS\ew_jubusenum.sys [x] ==================== NetSvcs (Whitelisted) =================== ==================== One Month Created Files and Folders ======== 2013-07-10 12:07 - 2013-07-10 13:58 - 00002475 ____A C:\Users\*********\Desktop\eset.txt 2013-07-10 12:07 - 2013-07-10 12:07 - 00890988 ____A C:\Users\*********\Desktop\SecurityCheck.exe 2013-07-10 09:43 - 2013-07-10 09:44 - 02347384 ____A (ESET) C:\Users\*********\Desktop\esetsmartinstaller_enu.exe 2013-07-09 21:48 - 2013-07-09 21:48 - 00001318 ____A C:\AdwCleaner[R3].txt 2013-07-09 21:18 - 2013-07-09 21:18 - 00000000 ____D C:\Windows\ERUNT 2013-07-09 21:17 - 2013-07-09 21:17 - 00552389 ____A (Oleg N. Scherbakov) C:\Users\*********\Desktop\JRT.exe 2013-07-09 21:15 - 2013-07-09 21:15 - 00001258 ____A C:\AdwCleaner[R2].txt 2013-07-09 21:09 - 2013-07-09 21:09 - 00006122 ____A C:\AdwCleaner[S1].txt 2013-07-09 21:09 - 2013-07-09 21:09 - 00005960 ____A C:\AdwCleaner[R1].txt 2013-07-09 21:07 - 2013-07-09 21:07 - 00650027 ____A C:\Users\*********\Desktop\adwcleaner.exe 2013-07-09 18:03 - 2013-07-09 18:03 - 01776221 ____A (Farbar) C:\Users\*********\Desktop\FRST64.exe 2013-07-09 18:03 - 2013-07-09 18:03 - 00000000 ____D C:\FRST 2013-07-09 17:33 - 2013-07-09 17:33 - 00037441 ____A C:\Users\*********\Desktop\logs.zip 2013-07-09 16:59 - 2013-07-09 16:59 - 00377856 ____A C:\Users\*********\Desktop\gmer_2.1.19163.exe 2013-07-09 16:55 - 2013-07-09 16:55 - 00000190 ____A C:\Users\*********\Desktop\sympton.txt 2013-07-09 16:55 - 2013-07-09 16:55 - 00000000 ____A C:\Users\*********\defogger_reenable 2013-07-09 16:54 - 2013-07-09 16:54 - 00050477 ____A C:\Users\*********\Desktop\Defogger.exe 2013-07-09 16:50 - 2013-07-09 16:53 - 00122754 ____A C:\Users\*********\Desktop\Extras.Txt 2013-07-09 16:44 - 2013-07-09 16:44 - 00602112 ____A (OldTimer Tools) C:\Users\*********\Desktop\OTL(1).exe 2013-07-09 16:44 - 2013-07-09 16:44 - 00000120 ____A C:\Users\*********\Desktop\WlA05T5E.htm 2013-07-09 16:43 - 2013-07-09 16:43 - 00602112 ____A (OldTimer Tools) C:\Users\*********\Downloads\OTL.exe 2013-07-09 15:52 - 2013-07-09 15:53 - 00000000 ____D C:\Users\*********\AppData\Local\Avg2013 2013-07-09 15:38 - 2013-07-09 17:38 - 00000000 ____D C:\Windows\pss 2013-07-09 14:43 - 2013-07-09 14:53 - 00000134 ____A C:\Users\*********\Desktop\Internet Explorer-Problembehebung.url 2013-07-09 14:36 - 2013-07-09 14:36 - 19233792 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 15404544 ____A (Microsoft Corporation) C:\Windows\System32\ieframe.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 14327808 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 13760512 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 03958784 ____A (Microsoft Corporation) C:\Windows\System32\jscript9.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 02877440 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 02706432 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb 2013-07-09 14:36 - 2013-07-09 14:36 - 02706432 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.tlb 2013-07-09 14:36 - 2013-07-09 14:36 - 02648064 ____A (Microsoft Corporation) C:\Windows\System32\iertutil.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 02241024 ____A (Microsoft Corporation) C:\Windows\System32\wininet.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 02046976 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 01767936 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 01509376 ____A (Microsoft Corporation) C:\Windows\System32\inetcpl.cpl 2013-07-09 14:36 - 2013-07-09 14:36 - 01441280 ____A (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl 2013-07-09 14:36 - 2013-07-09 14:36 - 01400416 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat 2013-07-09 14:36 - 2013-07-09 14:36 - 01400416 ____A (Microsoft Corporation) C:\Windows\System32\ieapfltr.dat 2013-07-09 14:36 - 2013-07-09 14:36 - 01365504 ____A (Microsoft Corporation) C:\Windows\System32\urlmon.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 01141248 ____A (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 01054720 ____A (Microsoft Corporation) C:\Windows\System32\MsSpellCheckingFacility.exe 2013-07-09 14:36 - 2013-07-09 14:36 - 00905728 ____A (Microsoft Corporation) C:\Windows\System32\mshtmlmedia.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00855552 ____A (Microsoft Corporation) C:\Windows\System32\jscript.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00762368 ____A (Microsoft Corporation) C:\Windows\System32\ieapfltr.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00719360 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00690688 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00629248 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00603136 ____A (Microsoft Corporation) C:\Windows\System32\msfeeds.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00599552 ____A (Microsoft Corporation) C:\Windows\System32\vbscript.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00526336 ____A (Microsoft Corporation) C:\Windows\System32\ieui.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00523264 ____A (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00493056 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00452096 ____A (Microsoft Corporation) C:\Windows\System32\dxtmsft.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00441856 ____A (Microsoft Corporation) C:\Windows\System32\html.iec 2013-07-09 14:36 - 2013-07-09 14:36 - 00391168 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00361984 ____A (Microsoft Corporation) C:\Windows\SysWOW64\html.iec 2013-07-09 14:36 - 2013-07-09 14:36 - 00357888 ____A (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00281600 ____A (Microsoft Corporation) C:\Windows\System32\dxtrans.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00270848 ____A (Microsoft Corporation) C:\Windows\System32\iedkcs32.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00247296 ____A (Microsoft Corporation) C:\Windows\System32\webcheck.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00242200 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00235008 ____A (Microsoft Corporation) C:\Windows\System32\url.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00232960 ____A (Microsoft Corporation) C:\Windows\SysWOW64\url.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00226816 ____A (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00226304 ____A (Microsoft Corporation) C:\Windows\System32\elshyph.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00216064 ____A (Microsoft Corporation) C:\Windows\System32\msls31.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00204800 ____A (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00197120 ____A (Microsoft Corporation) C:\Windows\System32\msrating.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00185344 ____A (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00173568 ____A (Microsoft Corporation) C:\Windows\System32\ieUnatt.exe 2013-07-09 14:36 - 2013-07-09 14:36 - 00167424 ____A (Microsoft Corporation) C:\Windows\System32\iexpress.exe 2013-07-09 14:36 - 2013-07-09 14:36 - 00163840 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00158720 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00150528 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe 2013-07-09 14:36 - 2013-07-09 14:36 - 00149504 ____A (Microsoft Corporation) C:\Windows\System32\occache.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00144896 ____A (Microsoft Corporation) C:\Windows\System32\wextract.exe 2013-07-09 14:36 - 2013-07-09 14:36 - 00138752 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe 2013-07-09 14:36 - 2013-07-09 14:36 - 00137216 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe 2013-07-09 14:36 - 2013-07-09 14:36 - 00136704 ____A (Microsoft Corporation) C:\Windows\System32\iesysprep.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00136192 ____A (Microsoft Corporation) C:\Windows\System32\iepeers.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00135680 ____A (Microsoft Corporation) C:\Windows\System32\IEAdvpack.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00125440 ____A (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00117248 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00110592 ____A (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00109056 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00102912 ____A (Microsoft Corporation) C:\Windows\System32\inseng.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00097280 ____A (Microsoft Corporation) C:\Windows\System32\mshtmled.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00092160 ____A (Microsoft Corporation) C:\Windows\System32\SetIEInstalledDate.exe 2013-07-09 14:36 - 2013-07-09 14:36 - 00089600 ____A (Microsoft Corporation) C:\Windows\System32\RegisterIEPKEYs.exe 2013-07-09 14:36 - 2013-07-09 14:36 - 00082432 ____A (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00081408 ____A (Microsoft Corporation) C:\Windows\System32\icardie.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00079872 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00077312 ____A (Microsoft Corporation) C:\Windows\System32\tdc.ocx 2013-07-09 14:36 - 2013-07-09 14:36 - 00073728 ____A (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe 2013-07-09 14:36 - 2013-07-09 14:36 - 00071680 ____A (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe 2013-07-09 14:36 - 2013-07-09 14:36 - 00069120 ____A (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00067072 ____A (Microsoft Corporation) C:\Windows\System32\iesetup.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00062976 ____A (Microsoft Corporation) C:\Windows\System32\pngfilt.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00061952 ____A (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx 2013-07-09 14:36 - 2013-07-09 14:36 - 00061440 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00057344 ____A (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00053760 ____A (Microsoft Corporation) C:\Windows\System32\jsproxy.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00052224 ____A (Microsoft Corporation) C:\Windows\System32\msfeedsbs.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00051712 ____A (Microsoft Corporation) C:\Windows\System32\ie4uinit.exe 2013-07-09 14:36 - 2013-07-09 14:36 - 00051200 ____A (Microsoft Corporation) C:\Windows\System32\imgutil.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00048640 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00048640 ____A (Microsoft Corporation) C:\Windows\System32\mshtmler.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00041984 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00039936 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00039936 ____A (Microsoft Corporation) C:\Windows\System32\iernonce.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00038400 ____A (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00033280 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00027648 ____A (Microsoft Corporation) C:\Windows\System32\licmgr10.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00023040 ____A (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00013824 ____A (Microsoft Corporation) C:\Windows\System32\mshta.exe 2013-07-09 14:36 - 2013-07-09 14:36 - 00012800 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe 2013-07-09 14:36 - 2013-07-09 14:36 - 00012800 ____A (Microsoft Corporation) C:\Windows\System32\msfeedssync.exe 2013-07-09 14:36 - 2013-07-09 14:36 - 00011776 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe 2013-07-09 08:14 - 2013-07-09 08:14 - 00000000 ____D C:\Users\Default\AppData\Roaming\TuneUp Software 2013-07-09 08:14 - 2013-07-09 08:14 - 00000000 ____D C:\Users\Default User\AppData\Roaming\TuneUp Software 2013-07-08 19:30 - 2013-07-08 19:30 - 00270214 ____A C:\Windows\msxml4-KB2758694-deu.LOG 2013-07-08 19:14 - 2013-02-17 01:40 - 00028672 ____A (Microsoft Corporation) C:\Windows\System32\IEUDINIT.EXE 2013-07-08 18:52 - 2013-07-08 19:10 - 518418786 ____A (WinFuture) C:\Users\*********\Downloads\WinFuture_7SP1_x64_UpdatePack_2.27_Juni_2013-Vollversion.exe 2013-07-08 17:49 - 2012-08-23 16:13 - 00243200 ____A (Microsoft Corporation) C:\Windows\System32\rdpudd.dll 2013-07-08 17:49 - 2012-08-23 16:10 - 00019456 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\rdpvideominiport.sys 2013-07-08 17:49 - 2012-08-23 16:08 - 00030208 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\TsUsbGD.sys 2013-07-08 17:49 - 2012-08-23 16:07 - 00057856 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\TsUsbFlt.sys 2013-07-08 17:49 - 2012-08-23 15:47 - 00046592 ____A (Microsoft Corporation) C:\Windows\SysWOW64\MsRdpWebAccess.dll 2013-07-08 17:49 - 2012-08-23 15:46 - 00016896 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wksprtPS.dll 2013-07-08 17:49 - 2012-08-23 15:41 - 00013312 ____A (Microsoft Corporation) C:\Windows\System32\TsUsbRedirectionGroupPolicyControl.exe 2013-07-08 17:49 - 2012-08-23 15:40 - 00013312 ____A (Microsoft Corporation) C:\Windows\System32\TsUsbRedirectionGroupPolicyExtension.dll 2013-07-08 17:49 - 2012-08-23 15:24 - 00015360 ____A (Microsoft Corporation) C:\Windows\System32\RdpGroupPolicyExtension.dll 2013-07-08 17:49 - 2012-08-23 15:20 - 00054272 ____A (Microsoft Corporation) C:\Windows\System32\MsRdpWebAccess.dll 2013-07-08 17:49 - 2012-08-23 15:18 - 00037376 ____A (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll 2013-07-08 17:49 - 2012-08-23 15:17 - 00018432 ____A (Microsoft Corporation) C:\Windows\System32\wksprtPS.dll 2013-07-08 17:49 - 2012-08-23 15:06 - 00043520 ____A (Microsoft Corporation) C:\Windows\System32\TsUsbGDCoInstaller.dll 2013-07-08 17:49 - 2012-08-23 14:52 - 00044032 ____A (Microsoft Corporation) C:\Windows\System32\tsgqec.dll 2013-07-08 17:49 - 2012-08-23 13:20 - 00062976 ____A (Microsoft Corporation) C:\Windows\System32\TSWbPrxy.exe 2013-07-08 17:49 - 2012-08-23 13:15 - 00269312 ____A (Microsoft Corporation) C:\Windows\SysWOW64\aaclient.dll 2013-07-08 17:49 - 2012-08-23 13:14 - 00384000 ____A (Microsoft Corporation) C:\Windows\System32\wksprt.exe 2013-07-08 17:49 - 2012-08-23 13:12 - 00192000 ____A (Microsoft Corporation) C:\Windows\SysWOW64\rdpendp_winip.dll 2013-07-08 17:49 - 2012-08-23 12:54 - 00322560 ____A (Microsoft Corporation) C:\Windows\System32\aaclient.dll 2013-07-08 17:49 - 2012-08-23 12:51 - 00228864 ____A (Microsoft Corporation) C:\Windows\System32\rdpendp_winip.dll 2013-07-08 17:49 - 2012-08-23 12:39 - 01048064 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe 2013-07-08 17:49 - 2012-08-23 12:22 - 01123840 ____A (Microsoft Corporation) C:\Windows\System32\mstsc.exe 2013-07-08 17:49 - 2012-08-23 11:51 - 03174912 ____A (Microsoft Corporation) C:\Windows\System32\rdpcorets.dll 2013-07-08 17:49 - 2012-08-23 10:19 - 04916224 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll 2013-07-08 17:49 - 2012-08-23 10:13 - 05773824 ____A (Microsoft Corporation) C:\Windows\System32\mstscax.dll 2013-07-08 17:47 - 2012-08-24 20:13 - 00154480 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\ksecpkg.sys 2013-07-08 17:47 - 2012-08-24 20:09 - 00458712 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\cng.sys 2013-07-08 17:47 - 2012-08-24 20:05 - 00340992 ____A (Microsoft Corporation) C:\Windows\System32\schannel.dll 2013-07-08 17:47 - 2012-08-24 20:03 - 01448448 ____A (Microsoft Corporation) C:\Windows\System32\lsasrv.dll 2013-07-08 17:47 - 2012-08-24 18:57 - 00247808 ____A (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll 2013-07-08 17:47 - 2012-08-24 18:57 - 00022016 ____A (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll 2013-07-08 17:47 - 2012-08-24 18:53 - 00096768 ____A (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll 2013-07-08 17:47 - 2012-05-04 13:00 - 00366592 ____A (Microsoft Corporation) C:\Windows\System32\qdvd.dll 2013-07-08 17:47 - 2012-05-04 11:59 - 00514560 ____A (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll 2013-07-08 17:31 - 2013-07-08 17:31 - 00000000 ____D C:\Users\test\AppData\Roaming\PwrMgr 2013-07-08 17:30 - 2013-07-08 17:31 - 00000000 ____D C:\Users\test\AppData\Local\LSC 2013-07-08 17:20 - 2013-07-08 17:29 - 00000000 ____D C:\Users\test\AppData\Roaming\Adobe 2013-07-08 17:20 - 2013-07-08 17:20 - 00120320 ____A C:\Users\test\AppData\Local\GDIPFONTCACHEV1.DAT 2013-07-08 17:20 - 2013-07-08 17:20 - 00000000 ____D C:\Users\test\Documents\Synaptics 2013-07-08 17:20 - 2013-07-08 17:20 - 00000000 ____D C:\Users\test\Documents\Bluetooth-Exchange-Ordner 2013-07-08 17:20 - 2013-07-08 17:20 - 00000000 ____D C:\Users\test\AppData\Roaming\Seagate 2013-07-08 17:20 - 2013-07-08 17:20 - 00000000 ____D C:\Users\test\AppData\Roaming\Memeo 2013-07-08 17:20 - 2013-07-08 17:20 - 00000000 ____D C:\Users\test\AppData\Roaming\LSC 2013-07-08 17:20 - 2013-07-08 17:20 - 00000000 ____D C:\Users\test\AppData\Roaming\Logitech 2013-07-08 17:20 - 2013-07-08 17:20 - 00000000 ____D C:\Users\test\AppData\Roaming\Lexware 2013-07-08 17:20 - 2013-07-08 17:20 - 00000000 ____D C:\Users\test\AppData\Roaming\Leadertech 2013-07-08 17:20 - 2013-07-08 17:20 - 00000000 ____D C:\Users\test\AppData\Roaming\Apple Computer 2013-07-08 17:20 - 2013-07-08 17:20 - 00000000 ____D C:\Users\test\AppData\Local\Power2Go 2013-07-08 17:20 - 2013-07-08 17:20 - 00000000 ____D C:\Users\test\AppData\Local\MobileAccess 2013-07-08 17:20 - 2013-07-08 17:20 - 00000000 ____D C:\Users\test\AppData\Local\Lexware 2013-07-08 17:20 - 2013-07-08 17:20 - 00000000 ____D C:\Users\test\AppData\Local\Lenovo 2013-07-08 17:20 - 2013-07-08 17:20 - 00000000 ____D C:\Users\test\AppData\Local\Broadcom 2013-07-08 17:20 - 2013-07-08 17:20 - 00000000 ____D C:\Users\test\AppData\Local\Adobe 2013-07-08 17:19 - 2013-07-08 17:20 - 00001194 ____A C:\Users\test\Desktop\Blu-ray Disc Suite.lnk 2013-07-08 17:19 - 2013-07-08 17:20 - 00000000 ____D C:\users\test 2013-07-08 17:19 - 2013-07-08 17:19 - 00000020 __ASH C:\Users\test\ntuser.ini 2013-07-08 17:19 - 2013-07-08 17:19 - 00000000 __SHD C:\Users\test\Vorlagen 2013-07-08 17:19 - 2013-07-08 17:19 - 00000000 __SHD C:\Users\test\Startmenü 2013-07-08 17:19 - 2013-07-08 17:19 - 00000000 __SHD C:\Users\test\Netzwerkumgebung 2013-07-08 17:19 - 2013-07-08 17:19 - 00000000 __SHD C:\Users\test\Lokale Einstellungen 2013-07-08 17:19 - 2013-07-08 17:19 - 00000000 __SHD C:\Users\test\Eigene Dateien 2013-07-08 17:19 - 2013-07-08 17:19 - 00000000 __SHD C:\Users\test\Druckumgebung 2013-07-08 17:19 - 2013-07-08 17:19 - 00000000 __SHD C:\Users\test\Documents\Eigene Musik 2013-07-08 17:19 - 2013-07-08 17:19 - 00000000 __SHD C:\Users\test\Documents\Eigene Bilder 2013-07-08 17:19 - 2013-07-08 17:19 - 00000000 __SHD C:\Users\test\AppData\Local\Verlauf 2013-07-08 17:19 - 2013-07-08 17:19 - 00000000 __SHD C:\Users\test\AppData\Local\Anwendungsdaten 2013-07-08 17:19 - 2013-07-08 17:19 - 00000000 __SHD C:\Users\test\Anwendungsdaten 2013-07-08 17:19 - 2013-07-08 17:19 - 00000000 ____D C:\Users\test\AppData\Roaming\Intel 2013-07-08 17:19 - 2012-10-21 13:28 - 00000000 ____D C:\Users\test\AppData\Roaming\Macromedia 2013-07-08 17:19 - 2012-02-21 18:04 - 00000000 ____D C:\Users\test\AppData\Local\Microsoft Help 2013-07-08 17:13 - 2013-07-08 17:13 - 00861184 ____A (Microsoft Corporation) C:\Users\*********\Downloads\IE10-Windows6.1-de-de.exe 2013-07-08 16:09 - 2013-07-08 16:09 - 00000000 ____D C:\Users\*********\AppData\Roaming\TuneUp Software 2013-07-08 15:31 - 2013-07-09 15:53 - 00000000 ____D C:\ProgramData\MFAData 2013-07-08 15:31 - 2013-07-08 15:31 - 00000000 ____D C:\Users\*********\AppData\Local\MFAData 2013-07-08 14:56 - 2013-07-08 15:28 - 159486920 ____A (AVG Technologies) C:\Users\*********\Downloads\avg_ipw_x64_all_2013_3345a6382(1).exe 2013-07-08 10:54 - 2013-07-08 12:17 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox 2013-07-01 18:45 - 2010-11-21 05:24 - 00381440 ____A (Microsoft Corporation) C:\Windows\System32\mfds.dll 2013-07-01 18:28 - 2013-07-01 18:28 - 00000000 ____D C:\Users\*********\AppData\Roaming\MediaConfiguration 2013-07-01 18:26 - 2013-07-01 18:26 - 00000000 ____D C:\Users\*********\AppData\Roaming\Media Control 2013-07-01 18:25 - 2013-07-01 18:25 - 03050508 ____A (Damien Bain-Thouverez ) C:\Users\*********\Downloads\MediaControl_6.0.15.exe 2013-07-01 18:07 - 2013-07-01 18:07 - 00000000 ____D C:\Users\*********\AppData\Roaming\Advanced 2013-07-01 18:07 - 2013-07-01 18:07 - 00000000 ____D C:\Program Files (x86)\Shark007 2013-07-01 18:07 - 2013-04-05 21:26 - 01679360 ____A C:\Windows\SysWOW64\ac3filter.acm.new 2013-07-01 18:04 - 2013-07-01 18:07 - 00000000 ____D C:\ProgramData\Advanced 2013-07-01 18:03 - 2013-07-01 18:04 - 29160522 ____A C:\Users\*********\Downloads\32bit_Advanced_v418.exe 2013-07-01 17:47 - 2013-07-01 17:50 - 00000000 ____D C:\Users\*********\AppData\Roaming\vlc 2013-07-01 17:46 - 2013-07-01 17:46 - 00003584 ____A C:\Users\*********\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini 2013-07-01 17:34 - 2013-07-01 18:45 - 00000000 ____D C:\Users\*********\AppData\Roaming\Shark007 2013-07-01 17:34 - 2013-07-01 18:45 - 00000000 ____D C:\ProgramData\Shark007 2013-07-01 17:34 - 2013-07-01 17:34 - 00000000 ____D C:\Program Files\Shark007 2013-07-01 17:34 - 2013-05-27 15:08 - 00127488 ____A C:\Windows\System32\ff_vfw.dll 2013-07-01 17:34 - 2013-05-16 01:06 - 01593696 ____A (MPC-HC Team) C:\Windows\System32\VSFilter.dll 2013-07-01 17:34 - 2013-04-05 21:27 - 02231296 ____A C:\Windows\System32\ac3filter.acm.new 2013-07-01 17:34 - 2013-04-05 21:27 - 02231296 ____A C:\Windows\System32\ac3filter.acm 2013-07-01 17:34 - 2013-03-17 10:22 - 03554304 ____A (x264vfw project) C:\Windows\System32\x264vfw.dll 2013-07-01 17:34 - 2012-07-21 12:55 - 00180736 ____A (fccHandler) C:\Windows\System32\ac3acm.acm 2013-07-01 17:34 - 2012-07-21 12:54 - 00361472 ____A (fccHandler) C:\Windows\System32\aacacm.acm 2013-07-01 17:34 - 2012-07-17 15:21 - 00206336 ____A C:\Windows\System32\unrar64.dll 2013-07-01 17:34 - 2011-12-07 20:37 - 00148992 ____A ( ) C:\Windows\System32\lagarith.dll 2013-07-01 17:34 - 2009-08-11 18:22 - 00580096 ____A C:\Windows\System32\ac3filter.acm.old 2013-07-01 17:34 - 2009-01-22 22:51 - 00124909 ____A (Open Source Software community project) C:\Windows\System32\pthreadGC2.dll 2013-07-01 17:34 - 2007-02-05 17:05 - 00000038 ____A C:\Windows\AviSplitter.INI 2013-07-01 17:33 - 2013-07-01 17:34 - 18422493 ____A C:\Users\*********\Downloads\Advanced_x64Components_v418.exe 2013-07-01 17:31 - 2013-07-09 16:31 - 00000000 ____D C:\Program Files (x86)\VideoLAN 2013-07-01 17:29 - 2013-07-01 17:31 - 22937227 ____A C:\Users\*********\Downloads\vlc-2.0.7-win32.exe 2013-07-01 17:29 - 2013-07-01 17:30 - 14989539 ____A C:\Users\*********\Downloads\vlc-2.0.7-win32.exe.part 2013-06-28 02:06 - 2013-06-28 03:36 - 00000528 ____A C:\Windows\Tasks\PCDoctorBackgroundMonitorTask-Delay.job 2013-06-18 10:16 - 2013-05-13 07:51 - 01464320 ____A (Microsoft Corporation) C:\Windows\System32\crypt32.dll 2013-06-18 10:16 - 2013-05-13 07:51 - 00184320 ____A (Microsoft Corporation) C:\Windows\System32\cryptsvc.dll 2013-06-18 10:16 - 2013-05-13 07:51 - 00139776 ____A (Microsoft Corporation) C:\Windows\System32\cryptnet.dll 2013-06-18 10:16 - 2013-05-13 07:50 - 00052224 ____A (Microsoft Corporation) C:\Windows\System32\certenc.dll 2013-06-18 10:16 - 2013-05-13 06:45 - 01160192 ____A (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll 2013-06-18 10:16 - 2013-05-13 06:45 - 00140288 ____A (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll 2013-06-18 10:16 - 2013-05-13 06:45 - 00103936 ____A (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll 2013-06-18 10:16 - 2013-05-13 05:43 - 01192448 ____A (Microsoft Corporation) C:\Windows\System32\certutil.exe 2013-06-18 10:16 - 2013-05-13 05:08 - 00903168 ____A (Microsoft Corporation) C:\Windows\SysWOW64\certutil.exe 2013-06-18 10:16 - 2013-05-13 05:08 - 00043008 ____A (Microsoft Corporation) C:\Windows\SysWOW64\certenc.dll 2013-06-18 10:16 - 2013-05-10 07:49 - 00030720 ____A (Microsoft Corporation) C:\Windows\System32\cryptdlg.dll 2013-06-18 10:16 - 2013-05-10 05:20 - 00024576 ____A (Microsoft Corporation) C:\Windows\SysWOW64\cryptdlg.dll 2013-06-18 10:16 - 2013-05-08 08:39 - 01910632 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\tcpip.sys 2013-06-18 10:16 - 2013-04-26 07:51 - 00751104 ____A (Microsoft Corporation) C:\Windows\System32\win32spl.dll 2013-06-18 10:16 - 2013-04-26 06:55 - 00492544 ____A (Microsoft Corporation) C:\Windows\SysWOW64\win32spl.dll 2013-06-18 10:16 - 2013-04-26 01:30 - 01505280 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll 2013-06-18 10:16 - 2013-04-17 09:02 - 01230336 ____A (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll 2013-06-18 10:16 - 2013-04-17 08:24 - 01424384 ____A (Microsoft Corporation) C:\Windows\System32\WindowsCodecs.dll 2013-06-18 10:16 - 2013-04-01 00:52 - 01887232 ____A (Microsoft Corporation) C:\Windows\System32\d3d11.dll ==================== One Month Modified Files and Folders ======= 2013-07-10 13:58 - 2013-07-10 12:07 - 00002475 ____A C:\Users\*********\Desktop\eset.txt 2013-07-10 13:58 - 2011-10-18 20:18 - 00700418 ____A C:\Windows\System32\perfh007.dat 2013-07-10 13:58 - 2011-10-18 20:18 - 00149182 ____A C:\Windows\System32\perfc007.dat 2013-07-10 13:58 - 2009-07-14 07:13 - 01621308 ____A C:\Windows\System32\PerfStringBackup.INI 2013-07-10 13:57 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\System32\NDF 2013-07-10 13:55 - 2012-12-26 21:28 - 00000000 ____D C:\Users\*********\AppData\Local\Eye-Fi 2013-07-10 13:55 - 2012-02-24 20:00 - 00000000 ____D C:\Users\*********\AppData\Roaming\Gajim 2013-07-10 13:55 - 2012-02-21 21:46 - 00000000 ___RD C:\Users\*********\Dropbox 2013-07-10 13:55 - 2012-02-21 21:45 - 00000000 ____D C:\Users\*********\AppData\Roaming\Dropbox 2013-07-10 13:55 - 2011-10-18 10:39 - 00001120 ____A C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2013-07-10 13:54 - 2009-07-14 07:08 - 00000006 ___AH C:\Windows\Tasks\SA.DAT 2013-07-10 13:54 - 2009-07-14 06:51 - 00137755 ____A C:\Windows\setupact.log 2013-07-10 13:50 - 2012-02-20 15:48 - 00000466 ____A C:\Windows\Tasks\SystemToolsDailyTest.job 2013-07-10 13:49 - 2011-10-18 10:38 - 01805790 ____A C:\Windows\WindowsUpdate.log 2013-07-10 13:49 - 2010-11-21 05:47 - 00100722 ____A C:\Windows\PFRO.log 2013-07-10 13:13 - 2012-02-22 11:37 - 00001124 ____A C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4186067094-2021574243-1185577494-1000UA.job 2013-07-10 13:04 - 2012-04-08 09:53 - 00000884 ____A C:\Windows\Tasks\Adobe Flash Player Updater.job 2013-07-10 13:02 - 2011-10-18 10:39 - 00001124 ____A C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2013-07-10 12:07 - 2013-07-10 12:07 - 00890988 ____A C:\Users\*********\Desktop\SecurityCheck.exe 2013-07-10 10:07 - 2012-12-05 12:14 - 00000377 ____A C:\ProgramData\LastUpdate.xml 2013-07-10 10:07 - 2012-12-05 12:14 - 00000207 ____A C:\Windows\WebUpdateSvc4.INI 2013-07-10 09:47 - 2009-07-14 06:45 - 00031296 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2013-07-10 09:47 - 2009-07-14 06:45 - 00031296 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2013-07-10 09:44 - 2013-07-10 09:43 - 02347384 ____A (ESET) C:\Users\*********\Desktop\esetsmartinstaller_enu.exe 2013-07-10 09:40 - 2012-02-21 18:12 - 00000000 ____D C:\Users\*********\AppData\Roaming\Skype 2013-07-09 22:56 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\rescache 2013-07-09 21:48 - 2013-07-09 21:48 - 00001318 ____A C:\AdwCleaner[R3].txt 2013-07-09 21:18 - 2013-07-09 21:18 - 00000000 ____D C:\Windows\ERUNT 2013-07-09 21:17 - 2013-07-09 21:17 - 00552389 ____A (Oleg N. Scherbakov) C:\Users\*********\Desktop\JRT.exe 2013-07-09 21:15 - 2013-07-09 21:15 - 00001258 ____A C:\AdwCleaner[R2].txt 2013-07-09 21:09 - 2013-07-09 21:09 - 00006122 ____A C:\AdwCleaner[S1].txt 2013-07-09 21:09 - 2013-07-09 21:09 - 00005960 ____A C:\AdwCleaner[R1].txt 2013-07-09 21:07 - 2013-07-09 21:07 - 00650027 ____A C:\Users\*********\Desktop\adwcleaner.exe 2013-07-09 18:03 - 2013-07-09 18:03 - 01776221 ____A (Farbar) C:\Users\*********\Desktop\FRST64.exe 2013-07-09 18:03 - 2013-07-09 18:03 - 00000000 ____D C:\FRST 2013-07-09 17:38 - 2013-07-09 15:38 - 00000000 ____D C:\Windows\pss 2013-07-09 17:33 - 2013-07-09 17:33 - 00037441 ____A C:\Users\*********\Desktop\logs.zip 2013-07-09 16:59 - 2013-07-09 16:59 - 00377856 ____A C:\Users\*********\Desktop\gmer_2.1.19163.exe 2013-07-09 16:55 - 2013-07-09 16:55 - 00000190 ____A C:\Users\*********\Desktop\sympton.txt 2013-07-09 16:55 - 2013-07-09 16:55 - 00000000 ____A C:\Users\*********\defogger_reenable 2013-07-09 16:55 - 2012-02-20 15:48 - 00000000 ____D C:\users\********* 2013-07-09 16:54 - 2013-07-09 16:54 - 00050477 ____A C:\Users\*********\Desktop\Defogger.exe 2013-07-09 16:53 - 2013-07-09 16:50 - 00122754 ____A C:\Users\*********\Desktop\Extras.Txt 2013-07-09 16:44 - 2013-07-09 16:44 - 00602112 ____A (OldTimer Tools) C:\Users\*********\Desktop\OTL(1).exe 2013-07-09 16:44 - 2013-07-09 16:44 - 00000120 ____A C:\Users\*********\Desktop\WlA05T5E.htm 2013-07-09 16:43 - 2013-07-09 16:43 - 00602112 ____A (OldTimer Tools) C:\Users\*********\Downloads\OTL.exe 2013-07-09 16:33 - 2011-10-18 10:38 - 00000000 ____D C:\Program Files (x86)\Adobe 2013-07-09 16:31 - 2013-07-01 17:31 - 00000000 ____D C:\Program Files (x86)\VideoLAN 2013-07-09 16:30 - 2012-06-26 10:30 - 00000000 ____D C:\Program Files (x86)\Java 2013-07-09 15:53 - 2013-07-09 15:52 - 00000000 ____D C:\Users\*********\AppData\Local\Avg2013 2013-07-09 15:53 - 2013-07-08 15:31 - 00000000 ____D C:\ProgramData\MFAData 2013-07-09 15:13 - 2012-02-22 11:37 - 00001072 ____A C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4186067094-2021574243-1185577494-1000Core.job 2013-07-09 15:07 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\PolicyDefinitions 2013-07-09 15:06 - 2013-03-26 09:38 - 00127327 ____A C:\Windows\IE10_main.log 2013-07-09 14:53 - 2013-07-09 14:43 - 00000134 ____A C:\Users\*********\Desktop\Internet Explorer-Problembehebung.url 2013-07-09 14:36 - 2013-07-09 14:36 - 19233792 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 15404544 ____A (Microsoft Corporation) C:\Windows\System32\ieframe.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 14327808 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 13760512 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 03958784 ____A (Microsoft Corporation) C:\Windows\System32\jscript9.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 02877440 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 02706432 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb 2013-07-09 14:36 - 2013-07-09 14:36 - 02706432 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.tlb 2013-07-09 14:36 - 2013-07-09 14:36 - 02648064 ____A (Microsoft Corporation) C:\Windows\System32\iertutil.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 02241024 ____A (Microsoft Corporation) C:\Windows\System32\wininet.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 02046976 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 01767936 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 01509376 ____A (Microsoft Corporation) C:\Windows\System32\inetcpl.cpl 2013-07-09 14:36 - 2013-07-09 14:36 - 01441280 ____A (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl 2013-07-09 14:36 - 2013-07-09 14:36 - 01400416 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat 2013-07-09 14:36 - 2013-07-09 14:36 - 01400416 ____A (Microsoft Corporation) C:\Windows\System32\ieapfltr.dat 2013-07-09 14:36 - 2013-07-09 14:36 - 01365504 ____A (Microsoft Corporation) C:\Windows\System32\urlmon.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 01141248 ____A (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 01054720 ____A (Microsoft Corporation) C:\Windows\System32\MsSpellCheckingFacility.exe 2013-07-09 14:36 - 2013-07-09 14:36 - 00905728 ____A (Microsoft Corporation) C:\Windows\System32\mshtmlmedia.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00855552 ____A (Microsoft Corporation) C:\Windows\System32\jscript.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00762368 ____A (Microsoft Corporation) C:\Windows\System32\ieapfltr.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00719360 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00690688 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00629248 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00603136 ____A (Microsoft Corporation) C:\Windows\System32\msfeeds.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00599552 ____A (Microsoft Corporation) C:\Windows\System32\vbscript.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00526336 ____A (Microsoft Corporation) C:\Windows\System32\ieui.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00523264 ____A (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00493056 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00452096 ____A (Microsoft Corporation) C:\Windows\System32\dxtmsft.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00441856 ____A (Microsoft Corporation) C:\Windows\System32\html.iec 2013-07-09 14:36 - 2013-07-09 14:36 - 00391168 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00361984 ____A (Microsoft Corporation) C:\Windows\SysWOW64\html.iec 2013-07-09 14:36 - 2013-07-09 14:36 - 00357888 ____A (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00281600 ____A (Microsoft Corporation) C:\Windows\System32\dxtrans.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00270848 ____A (Microsoft Corporation) C:\Windows\System32\iedkcs32.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00247296 ____A (Microsoft Corporation) C:\Windows\System32\webcheck.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00242200 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00235008 ____A (Microsoft Corporation) C:\Windows\System32\url.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00232960 ____A (Microsoft Corporation) C:\Windows\SysWOW64\url.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00226816 ____A (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00226304 ____A (Microsoft Corporation) C:\Windows\System32\elshyph.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00216064 ____A (Microsoft Corporation) C:\Windows\System32\msls31.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00204800 ____A (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00197120 ____A (Microsoft Corporation) C:\Windows\System32\msrating.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00185344 ____A (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00173568 ____A (Microsoft Corporation) C:\Windows\System32\ieUnatt.exe 2013-07-09 14:36 - 2013-07-09 14:36 - 00167424 ____A (Microsoft Corporation) C:\Windows\System32\iexpress.exe 2013-07-09 14:36 - 2013-07-09 14:36 - 00163840 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00158720 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00150528 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe 2013-07-09 14:36 - 2013-07-09 14:36 - 00149504 ____A (Microsoft Corporation) C:\Windows\System32\occache.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00144896 ____A (Microsoft Corporation) C:\Windows\System32\wextract.exe 2013-07-09 14:36 - 2013-07-09 14:36 - 00138752 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe 2013-07-09 14:36 - 2013-07-09 14:36 - 00137216 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe 2013-07-09 14:36 - 2013-07-09 14:36 - 00136704 ____A (Microsoft Corporation) C:\Windows\System32\iesysprep.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00136192 ____A (Microsoft Corporation) C:\Windows\System32\iepeers.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00135680 ____A (Microsoft Corporation) C:\Windows\System32\IEAdvpack.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00125440 ____A (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00117248 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00110592 ____A (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00109056 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00102912 ____A (Microsoft Corporation) C:\Windows\System32\inseng.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00097280 ____A (Microsoft Corporation) C:\Windows\System32\mshtmled.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00092160 ____A (Microsoft Corporation) C:\Windows\System32\SetIEInstalledDate.exe 2013-07-09 14:36 - 2013-07-09 14:36 - 00089600 ____A (Microsoft Corporation) C:\Windows\System32\RegisterIEPKEYs.exe 2013-07-09 14:36 - 2013-07-09 14:36 - 00082432 ____A (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00081408 ____A (Microsoft Corporation) C:\Windows\System32\icardie.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00079872 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00077312 ____A (Microsoft Corporation) C:\Windows\System32\tdc.ocx 2013-07-09 14:36 - 2013-07-09 14:36 - 00073728 ____A (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe 2013-07-09 14:36 - 2013-07-09 14:36 - 00071680 ____A (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe 2013-07-09 14:36 - 2013-07-09 14:36 - 00069120 ____A (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00067072 ____A (Microsoft Corporation) C:\Windows\System32\iesetup.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00062976 ____A (Microsoft Corporation) C:\Windows\System32\pngfilt.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00061952 ____A (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx 2013-07-09 14:36 - 2013-07-09 14:36 - 00061440 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00057344 ____A (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00053760 ____A (Microsoft Corporation) C:\Windows\System32\jsproxy.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00052224 ____A (Microsoft Corporation) C:\Windows\System32\msfeedsbs.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00051712 ____A (Microsoft Corporation) C:\Windows\System32\ie4uinit.exe 2013-07-09 14:36 - 2013-07-09 14:36 - 00051200 ____A (Microsoft Corporation) C:\Windows\System32\imgutil.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00048640 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00048640 ____A (Microsoft Corporation) C:\Windows\System32\mshtmler.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00041984 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00039936 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00039936 ____A (Microsoft Corporation) C:\Windows\System32\iernonce.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00038400 ____A (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00033280 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00027648 ____A (Microsoft Corporation) C:\Windows\System32\licmgr10.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00023040 ____A (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll 2013-07-09 14:36 - 2013-07-09 14:36 - 00013824 ____A (Microsoft Corporation) C:\Windows\System32\mshta.exe 2013-07-09 14:36 - 2013-07-09 14:36 - 00012800 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe 2013-07-09 14:36 - 2013-07-09 14:36 - 00012800 ____A (Microsoft Corporation) C:\Windows\System32\msfeedssync.exe 2013-07-09 14:36 - 2013-07-09 14:36 - 00011776 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe 2013-07-09 12:39 - 2012-02-21 15:06 - 00001912 ____A C:\Windows\epplauncher.mif 2013-07-09 09:52 - 2012-12-05 11:59 - 00000000 ____D C:\Users\*********\AppData\Local\MobileAccess 2013-07-09 08:14 - 2013-07-09 08:14 - 00000000 ____D C:\Users\Default\AppData\Roaming\TuneUp Software 2013-07-09 08:14 - 2013-07-09 08:14 - 00000000 ____D C:\Users\Default User\AppData\Roaming\TuneUp Software 2013-07-08 19:34 - 2012-02-21 15:06 - 01599202 ____A C:\Windows\SysWOW64\PerfStringBackup.INI 2013-07-08 19:30 - 2013-07-08 19:30 - 00270214 ____A C:\Windows\msxml4-KB2758694-deu.LOG 2013-07-08 19:30 - 2013-05-13 12:19 - 00000000 ____D C:\Program Files (x86)\MSXML 4.0 2013-07-08 19:10 - 2013-07-08 18:52 - 518418786 ____A (WinFuture) C:\Users\*********\Downloads\WinFuture_7SP1_x64_UpdatePack_2.27_Juni_2013-Vollversion.exe 2013-07-08 17:31 - 2013-07-08 17:31 - 00000000 ____D C:\Users\test\AppData\Roaming\PwrMgr 2013-07-08 17:31 - 2013-07-08 17:30 - 00000000 ____D C:\Users\test\AppData\Local\LSC 2013-07-08 17:29 - 2013-07-08 17:20 - 00000000 ____D C:\Users\test\AppData\Roaming\Adobe 2013-07-08 17:20 - 2013-07-08 17:20 - 00120320 ____A C:\Users\test\AppData\Local\GDIPFONTCACHEV1.DAT 2013-07-08 17:20 - 2013-07-08 17:20 - 00000000 ____D C:\Users\test\Documents\Synaptics 2013-07-08 17:20 - 2013-07-08 17:20 - 00000000 ____D C:\Users\test\Documents\Bluetooth-Exchange-Ordner 2013-07-08 17:20 - 2013-07-08 17:20 - 00000000 ____D C:\Users\test\AppData\Roaming\Seagate 2013-07-08 17:20 - 2013-07-08 17:20 - 00000000 ____D C:\Users\test\AppData\Roaming\Memeo 2013-07-08 17:20 - 2013-07-08 17:20 - 00000000 ____D C:\Users\test\AppData\Roaming\LSC 2013-07-08 17:20 - 2013-07-08 17:20 - 00000000 ____D C:\Users\test\AppData\Roaming\Logitech 2013-07-08 17:20 - 2013-07-08 17:20 - 00000000 ____D C:\Users\test\AppData\Roaming\Lexware 2013-07-08 17:20 - 2013-07-08 17:20 - 00000000 ____D C:\Users\test\AppData\Roaming\Leadertech 2013-07-08 17:20 - 2013-07-08 17:20 - 00000000 ____D C:\Users\test\AppData\Roaming\Apple Computer 2013-07-08 17:20 - 2013-07-08 17:20 - 00000000 ____D C:\Users\test\AppData\Local\Power2Go 2013-07-08 17:20 - 2013-07-08 17:20 - 00000000 ____D C:\Users\test\AppData\Local\MobileAccess 2013-07-08 17:20 - 2013-07-08 17:20 - 00000000 ____D C:\Users\test\AppData\Local\Lexware 2013-07-08 17:20 - 2013-07-08 17:20 - 00000000 ____D C:\Users\test\AppData\Local\Lenovo 2013-07-08 17:20 - 2013-07-08 17:20 - 00000000 ____D C:\Users\test\AppData\Local\Broadcom 2013-07-08 17:20 - 2013-07-08 17:20 - 00000000 ____D C:\Users\test\AppData\Local\Adobe 2013-07-08 17:20 - 2013-07-08 17:19 - 00001194 ____A C:\Users\test\Desktop\Blu-ray Disc Suite.lnk 2013-07-08 17:20 - 2013-07-08 17:19 - 00000000 ____D C:\users\test 2013-07-08 17:19 - 2013-07-08 17:19 - 00000020 __ASH C:\Users\test\ntuser.ini 2013-07-08 17:19 - 2013-07-08 17:19 - 00000000 __SHD C:\Users\test\Vorlagen 2013-07-08 17:19 - 2013-07-08 17:19 - 00000000 __SHD C:\Users\test\Startmenü 2013-07-08 17:19 - 2013-07-08 17:19 - 00000000 __SHD C:\Users\test\Netzwerkumgebung 2013-07-08 17:19 - 2013-07-08 17:19 - 00000000 __SHD C:\Users\test\Lokale Einstellungen 2013-07-08 17:19 - 2013-07-08 17:19 - 00000000 __SHD C:\Users\test\Eigene Dateien 2013-07-08 17:19 - 2013-07-08 17:19 - 00000000 __SHD C:\Users\test\Druckumgebung 2013-07-08 17:19 - 2013-07-08 17:19 - 00000000 __SHD C:\Users\test\Documents\Eigene Musik 2013-07-08 17:19 - 2013-07-08 17:19 - 00000000 __SHD C:\Users\test\Documents\Eigene Bilder 2013-07-08 17:19 - 2013-07-08 17:19 - 00000000 __SHD C:\Users\test\AppData\Local\Verlauf 2013-07-08 17:19 - 2013-07-08 17:19 - 00000000 __SHD C:\Users\test\AppData\Local\Anwendungsdaten 2013-07-08 17:19 - 2013-07-08 17:19 - 00000000 __SHD C:\Users\test\Anwendungsdaten 2013-07-08 17:19 - 2013-07-08 17:19 - 00000000 ____D C:\Users\test\AppData\Roaming\Intel 2013-07-08 17:13 - 2013-07-08 17:13 - 00861184 ____A (Microsoft Corporation) C:\Users\*********\Downloads\IE10-Windows6.1-de-de.exe 2013-07-08 16:09 - 2013-07-08 16:09 - 00000000 ____D C:\Users\*********\AppData\Roaming\TuneUp Software 2013-07-08 15:31 - 2013-07-08 15:31 - 00000000 ____D C:\Users\*********\AppData\Local\MFAData 2013-07-08 15:28 - 2013-07-08 14:56 - 159486920 ____A (AVG Technologies) C:\Users\*********\Downloads\avg_ipw_x64_all_2013_3345a6382(1).exe 2013-07-08 13:24 - 2012-02-23 21:08 - 00000600 ____A C:\Users\*********\AppData\Roaming\winscp.rnd 2013-07-08 13:13 - 2012-05-07 20:33 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2013-07-08 12:17 - 2013-07-08 10:54 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox 2013-07-01 18:45 - 2013-07-01 17:34 - 00000000 ____D C:\Users\*********\AppData\Roaming\Shark007 2013-07-01 18:45 - 2013-07-01 17:34 - 00000000 ____D C:\ProgramData\Shark007 2013-07-01 18:28 - 2013-07-01 18:28 - 00000000 ____D C:\Users\*********\AppData\Roaming\MediaConfiguration 2013-07-01 18:26 - 2013-07-01 18:26 - 00000000 ____D C:\Users\*********\AppData\Roaming\Media Control 2013-07-01 18:25 - 2013-07-01 18:25 - 03050508 ____A (Damien Bain-Thouverez ) C:\Users\*********\Downloads\MediaControl_6.0.15.exe 2013-07-01 18:07 - 2013-07-01 18:07 - 00000000 ____D C:\Users\*********\AppData\Roaming\Advanced 2013-07-01 18:07 - 2013-07-01 18:07 - 00000000 ____D C:\Program Files (x86)\Shark007 2013-07-01 18:07 - 2013-07-01 18:04 - 00000000 ____D C:\ProgramData\Advanced 2013-07-01 18:04 - 2013-07-01 18:03 - 29160522 ____A C:\Users\*********\Downloads\32bit_Advanced_v418.exe 2013-07-01 17:50 - 2013-07-01 17:47 - 00000000 ____D C:\Users\*********\AppData\Roaming\vlc 2013-07-01 17:46 - 2013-07-01 17:46 - 00003584 ____A C:\Users\*********\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini 2013-07-01 17:40 - 2012-04-07 14:42 - 00000000 ____D C:\Program Files (x86)\DivX 2013-07-01 17:40 - 2012-04-07 14:41 - 00000000 ____D C:\ProgramData\DivX 2013-07-01 17:34 - 2013-07-01 17:34 - 00000000 ____D C:\Program Files\Shark007 2013-07-01 17:34 - 2013-07-01 17:33 - 18422493 ____A C:\Users\*********\Downloads\Advanced_x64Components_v418.exe 2013-07-01 17:31 - 2013-07-01 17:29 - 22937227 ____A C:\Users\*********\Downloads\vlc-2.0.7-win32.exe 2013-07-01 17:30 - 2013-07-01 17:29 - 14989539 ____A C:\Users\*********\Downloads\vlc-2.0.7-win32.exe.part 2013-07-01 16:44 - 2012-04-07 14:43 - 00000000 ____D C:\Program Files\DivX 2013-07-01 16:34 - 2012-06-26 10:30 - 00867240 ____A (Oracle Corporation) C:\Windows\SysWOW64\npdeployJava1.dll 2013-07-01 16:34 - 2012-02-21 19:34 - 00789416 ____A (Oracle Corporation) C:\Windows\SysWOW64\deployJava1.dll 2013-07-01 10:07 - 2012-02-21 17:18 - 00000000 ____D C:\Users\*********\AppData\Roaming\Mozilla 2013-06-28 10:45 - 2012-02-20 15:51 - 00120320 ____A C:\Users\*********\AppData\Local\GDIPFONTCACHEV1.DAT 2013-06-28 10:45 - 2012-02-20 15:48 - 00000528 ____A C:\Windows\Tasks\PCDoctorBackgroundMonitorTask.job 2013-06-28 10:45 - 2009-07-14 06:45 - 02377552 ____A C:\Windows\System32\FNTCACHE.DAT 2013-06-28 03:36 - 2013-06-28 02:06 - 00000528 ____A C:\Windows\Tasks\PCDoctorBackgroundMonitorTask-Delay.job 2013-06-28 02:07 - 2012-11-22 14:58 - 00000000 ____D C:\ldiag 2013-06-18 11:41 - 2012-02-21 13:03 - 75825640 ____A (Microsoft Corporation) C:\Windows\System32\MRT.exe 2013-06-18 11:39 - 2012-02-23 21:07 - 00000600 ____A C:\Users\*********\AppData\Local\PUTTY.RND 2013-06-13 12:04 - 2012-04-08 09:53 - 00692104 ____A (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe 2013-06-13 12:04 - 2012-02-21 19:11 - 00071048 ____A (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl ==================== Bamital & volsnap Check ================= C:\Windows\System32\winlogon.exe => MD5 is legit C:\Windows\System32\wininit.exe => MD5 is legit C:\Windows\SysWOW64\wininit.exe => MD5 is legit C:\Windows\explorer.exe => MD5 is legit C:\Windows\SysWOW64\explorer.exe => MD5 is legit C:\Windows\System32\svchost.exe => MD5 is legit C:\Windows\SysWOW64\svchost.exe => MD5 is legit C:\Windows\System32\services.exe => MD5 is legit C:\Windows\System32\User32.dll => MD5 is legit C:\Windows\SysWOW64\User32.dll => MD5 is legit C:\Windows\System32\userinit.exe => MD5 is legit C:\Windows\SysWOW64\userinit.exe => MD5 is legit C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit LastRegBack: 2013-07-08 19:59 ==================== End Of Log ============================ --- --- --- Schöne Grüße mutz01 |
![]() | #8 |
/// the machine /// TB-Ausbilder ![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() | ![]() IE10 unter Win 7 (64bit) crashed neuerdings bei jedem Start Deinstalliere den IE, und installiere ihn neu. Welche Fehlermeldung kommt wenn er crasht?
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
![]() | #9 |
| ![]() IE10 unter Win 7 (64bit) crashed neuerdings bei jedem Start Hallo Schrauber, ich habe den IE10 deinstalliert und erneut installiert. Zusammen mit dem IE kamen noch 19 "wichtige Updates". Hatte schon gehofft, dass die etwas an der Situation ändern. Leider vergeblich. Der Fehler besteht weiterhin und äußert sich wie folgt: Man startet den IE und es kommt sofort die folgende Meldung Wenn man auf Abbrechen klickt, kommt nach ein paar Sekunden die Meldung: Im Hintergrund sieht man, dass der IE die Standard startseite aufrufen will. In der Adresszeile steht: de.msn.com/?ocid=iehp Sofort kommt die Meldung "Internet Explorer funktioniert nicht mehr". Wenn ich dann auf "Programm schließen" klicke startet der IE erneut. Im Title der Seite steht dann "Fehler beim Wiederherstellen der Seite de.msn.com/?ocid=iehp" Es findet sofort eine Weiterleitung statt, so dass in der Adresszeile steht: res://ieframe.dll/acr_error.htm#msn.com,hxxp://de.msn.com/?ocid=iehp Darauf hin schmiert er erneut mit den beiden o.g. Meldungen ab. Wenn ich dann wieder auf "Programm schließen" klicke, passiert das Gleiche erneut res://ieframe.dll/acr_error.htm#,res://ieframe.dll/acr_error.htm#msn.com,hxxp://de.msn.com/?ocid=iehp u.s.w. Das geht so lange bis ich in der Taskleiste mit der rechten Maustaste auf "Fenster schließen gehe" anstatt auf "Programm schließen" zu klicken. Schöne Grüße mutz01 |
![]() | #10 |
/// the machine /// TB-Ausbilder ![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() | ![]() IE10 unter Win 7 (64bit) crashed neuerdings bei jedem Start Öffne mal bitte FRST, setz nen Haken bei Additional und scanne, poste beide Logfiles.
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
![]() | #11 |
| ![]() IE10 unter Win 7 (64bit) crashed neuerdings bei jedem Start Hi Schrauber, hier die beiden Logfiles: FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 10-07-2013 04 Ran by ******* (administrator) on 11-07-2013 10:03:50 Running from C:\Users\*******\Desktop Windows 7 Professional Service Pack 1 (X64) OS Language: German Standard Internet Explorer Version 10 Boot Mode: Normal ==================== Processes (Whitelisted) ================= (Lenovo.) C:\Windows\system32\ibmpmsvc.exe (DisplayLink Corp.) C:\Program Files\DisplayLink Core Software\DisplayLinkManager.exe (Logitech, Inc.) C:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.exe (DisplayLink Corp.) C:\Program Files\DisplayLink Core Software\DisplayLinkUserAgent.exe (Authentec Inc.) C:\Program Files\ThinkVantage Fingerprint Software\upeksvr.exe (Microsoft Corporation) C:\Windows\system32\WLANExt.exe (Lenovo Group Limited) C:\Program Files\LENOVO\HOTKEY\TPHKSVC.exe (Lenovo Group Limited) C:\Program Files\LENOVO\HOTKEY\TPHKLOAD.exe (Lenovo) C:\Program Files (x86)\Lenovo\Access Connections\AcPrfMgrSvc.exe (Lenovo) C:\Program Files (x86)\Lenovo\Access Connections\AcSvc.exe (Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe (Broadcom Corporation.) C:\Program Files\ThinkPad\Bluetooth Software\btwdins.exe (Lenovo.) C:\Windows\System32\TpShocks.exe (Lenovo Group Limited) C:\Program Files\Lenovo\Communications Utility\TpKnrres.exe (Lenovo Group Limited) C:\Program Files\Lenovo\AutoLock\ALCKRESI.exe (Intel Corporation) C:\Windows\System32\igfxpers.exe (Intel Corporation) C:\Windows\system32\igfxsrvc.exe (Intel Corporation) C:\Windows\System32\hkcmd.exe () C:\Program Files\CONEXANT\ForteConfig\fmapp.exe (Logitech Inc.) C:\Program Files\Logitech\SetPoint\LBTWiz.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe (Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE () C:\Program Files (x86)\Lion\Lion.exe (Eye-Fi, Inc.) C:\Program Files (x86)\Eye-Fi\Helper\EyeFiHelper.exe (ACD Systems International Inc.) C:\Program Files (x86)\Common Files\ACD Systems\DE\DevDetect.exe (Broadcom Corporation.) C:\Program Files\ThinkPad\Bluetooth Software\BTTray.exe (Docking Station) C:\Program Files (x86)\Lenovo\igpxtskmgn64.exe (Logitech, Inc.) C:\Program Files\Logitech\SetPoint\SetPoint.exe (Dropbox, Inc.) C:\Users\*******\AppData\Roaming\Dropbox\bin\Dropbox.exe () C:\Program Files (x86)\Gajim\bin\gajim.exe (Lenovo) C:\Program Files (x86)\Lenovo\MobileAccess\MobileAccess.exe (Elaborate Bytes AG) C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe (Ricoh co.,Ltd.) C:\Program Files (x86)\Integrated Camera Driver\X64\RCIMGDIR.exe (CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD9\PDVD9Serv.exe (CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe (Renesas Electronics Corporation) C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe (Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe (DVBLogic) C:\Program Files (x86)\DVBLogic\DVBLink\dvblink_mc_launcher.exe (Dolby Laboratories Inc.) C:\Program Files (x86)\Dolby Home Theater v4\pcee4.exe (CyberLink) C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe (cyberlink) C:\Program Files (x86)\CyberLink\Shared files\brs.exe (Adobe Systems Inc.) C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\acrotray.exe (Lenovo Group Limited) C:\PROGRA~1\Lenovo\HOTKEY\tpnumlkd.exe (Lenovo Group Limited) C:\PROGRA~1\Lenovo\HOTKEY\TPONSCR.EXE (Lenovo Group Limited) C:\PROGRA~1\Lenovo\HOTKEY\SHTCTKY.EXE (Conexant Systems Inc.) C:\Windows\system32\CxAudMsg64.exe (DVBLogic) C:\Program Files (x86)\DVBLogic\DVBLink\dvblink_client.exe (Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe (Intel Corporation) C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe (Lenovo Group Limited) C:\Program Files\Lenovo\Communications Utility\CAMMUTE.exe (Lenovo Group Limited) C:\Program Files\LENOVO\HOTKEY\MICMUTE.exe (Lenovo Group Limited) C:\Program Files\Lenovo\Communications Utility\TPKNRSVC.exe (Lenovo Group Limited) C:\Program Files\Lenovo\Communications Utility\vcamsvc.exe (Lenovo Group Limited) C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe (DisplayLink Corp.) C:\Program Files\DisplayLink Core Software\DisplayLinkUI.exe (DisplayLink Corp.) C:\Program Files\Lenovo Display Adapter\DisplayLinkLenovoSupport.exe (Synaptics Incorporated) C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPLpr.exe () C:\Program Files\Logitech\SetPoint\x86\SetPoint32.exe (Logitech, Inc.) C:\Program Files\Common Files\Logishrd\KHAL2\KHALMNPR.EXE (Lenovo Group Limited) C:\Program Files (x86)\Lenovo\Screen Reading Optimizer\SRORest.exe (Lenovo Group Limited) C:\PROGRA~2\ThinkPad\UTILIT~1\SCHTASK.exe (Lenovo Group Limited) C:\PROGRA~1\LENOVO\VIRTSCRL\virtscrl.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PrivacyIconClient.exe (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Broadcom Corporation.) C:\Program Files\ThinkPad\Bluetooth Software\BtStackServer.exe (Broadcom Corporation.) C:\Program Files\ThinkPad\Bluetooth Software\Bluetooth Headset Helper.exe (Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe () C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe (Conexant Systems, Inc.) C:\Windows\SysWOW64\SAsrv.exe (Memeo) C:\Program Files (x86)\Seagate\Seagate Dashboard\SeagateDashboardService.exe (TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe (Data Perceptions / PowerProgrammer) C:\Program Files (x86)\Lenovo\MobileAccess\WebUpdateSvc4.exe (Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE (Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe (Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (Macrovision Europe Ltd.) C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe (TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer.exe (Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe (Lenovo) C:\Program Files (x86)\Lenovo\Access Connections\SvcGuiHlpr.exe (TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version8\tv_w32.exe (TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version8\tv_x64.exe () C:\Program Files (x86)\Memeo\AutoBackup\InstantBackup.exe (Memeo Inc.) C:\Program Files (x86)\Memeo\AutoBackup\MemeoUpdater.exe (Macheen) C:\Program Files (x86)\Lenovo\MobileAccess\MacheenService.exe (Memeo) C:\Program Files (x86)\Seagate\Seagate Dashboard\MemeoDashboard.exe (Axentra Corporation) C:\Program Files (x86)\Seagate\Seagate Dashboard\HipServAgent\HipServAgent.exe (Lenovo) C:\Program Files (x86)\ThinkPad\Utilities\PWMDBSVC.EXE (Intel Corporation) C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe (Intel(R) Corporation) C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe (Microsoft Corporation) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe (Lenovo Group Limited) C:\Program Files (x86)\Lenovo\Screen Reading Optimizer\SROSVC.exe (Lenovo Group Limited) C:\Program Files (x86)\Common Files\Lenovo\tvt_reg_monitor_svc.exe (Ericsson AB) C:\Program Files (x86)\Mobile Broadband drivers\WMCore\mini_WMCore.exe () C:\Program Files (x86)\LENOVO\Message Center Plus\MCPLaunch.exe ==================== Registry (Whitelisted) ================== HKLM\...\Run: [TpShocks] - TpShocks.exe [380776 2011-03-29] (Lenovo.) HKLM\...\Run: [LENOVO.TPKNRRES] - C:\Program Files\Lenovo\Communications Utility\TPKNRRES.exe [290160 2012-06-01] (Lenovo Group Limited) HKLM\...\Run: [ALCKRESI.EXE] - C:\Program Files\Lenovo\AutoLock\ALCKRESI.EXE [386408 2011-09-27] (Lenovo Group Limited) HKLM\...\Run: [AcWin7Hlpr] - C:\Program Files (x86)\Lenovo\Access Connections\AcTBenabler.exe [63784 2013-03-18] (Lenovo) HKLM\...\Run: [SmartAudio] - C:\Program Files\CONEXANT\SAII\SAIICpl.exe /t [316032 2010-12-14] (Conexant systems, Inc.) HKLM\...\Run: [Persistence] - C:\Windows\system32\igfxpers.exe [417088 2012-06-11] (Intel Corporation) HKLM\...\Run: [Kernel and Hardware Abstraction Layer] - KHALMNPR.EXE [x] HKLM\...\Run: [IgfxTray] - C:\Windows\system32\igfxtray.exe [170304 2012-08-27] (Intel Corporation) HKLM\...\Run: [HotKeysCmds] - C:\Windows\system32\hkcmd.exe [392512 2012-06-11] (Intel Corporation) HKLM\...\Run: [ForteConfig] - C:\Program Files\Conexant\ForteConfig\fmapp.exe [49056 2010-10-26] () HKLM\...\Run: [Cm108Sound] - C:\Windows\syswow64\RunDll32.exe C:\Windows\Syswow64\cm108.dll,CMICtrlWnd [8146944 2010-07-05] (C-Media Corporation) HKLM\...\Run: [Bluetooth Connection Assistant] - LBTWIZ.EXE -silent [x] HKLM\...\Run: [SynTPEnh] - %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe [2963184 2013-04-24] (Synaptics Incorporated) Winlogon\Notify\LBTWlgn: c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll (Logitech, Inc.) Winlogon\Notify\psfus: C:\Program Files\ThinkVantage Fingerprint Software\psqlpwd.dll (Authentec Inc.) HKCU\...\Run: [Skype] - "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun [17418928 2012-07-13] (Skype Technologies S.A.) HKCU\...\Run: [OfficeSyncProcess] - "C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE" [719672 2012-01-20] (Microsoft Corporation) HKCU\...\Run: [Lion] - "C:\Program Files (x86)\Lion\Lion.exe" [235579 2010-04-14] () HKCU\...\Run: [Google Update] - "C:\Users\*******\AppData\Local\Google\Update\GoogleUpdate.exe" /c [136176 2012-02-22] (Google Inc.) HKCU\...\Run: [Eye-Fi] - "C:\Program Files (x86)\Eye-Fi\Helper\EyeFiHelper.exe" [3961464 2011-12-22] (Eye-Fi, Inc.) HKCU\...\Run: [Device Detector] - DevDetect.exe -autorun [x] HKCU\...\Policies\system: [DisableRegistryTools] 0 HKCU\...\Policies\system: [DisableTaskMgr] 0 MountPoints2: {0f5bc55c-87d0-11e2-973a-60d819d5a7a5} - E:\Start.exe MountPoints2: {15568f21-533e-11e2-aa1b-60d819d5a7a5} - E:\AutoRun.exe MountPoints2: {15568f36-533e-11e2-aa1b-60d819d5a7a5} - E:\AutoRun.exe MountPoints2: {3ce48f40-6232-11e1-8159-028037ec0200} - F:\Start.bat MountPoints2: {9a35c050-f962-11e0-879a-806e6f6e6963} - Q:\LenovoQDrive.exe MountPoints2: {acc6c15a-8bac-11e1-a964-60d819d5a7a5} - E:\AutoRun.exe MountPoints2: {f98ca1c2-54f5-11e2-b21b-60d819d5a7a5} - E:\AutoRun.exe HKLM-x32\...\Run: [] - [x] HKLM-x32\...\Run: [Lenovo Registration] - C:\Program Files (x86)\Lenovo Registration\LenovoReg.exe /boot [4351712 2011-07-13] (Lenovo, Inc.) HKLM-x32\...\Run: [PWMTRV] - rundll32 C:\PROGRA~2\ThinkPad\UTILIT~1\PWMTR64V.DLL,PwrMgrBkGndMonitor [6001448 2013-03-18] (Lenovo Group Limited) HKLM-x32\...\Run: [MobileAccess] - C:\Program Files (x86)\Lenovo\MobileAccess\MobileAccess.exe -silentExitIfNotFirst [155864 2013-04-17] (Lenovo) HKLM-x32\...\Run: [VirtualCloneDrive] - "C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe" /s [89456 2011-03-07] (Elaborate Bytes AG) HKLM-x32\...\Run: [UpdatePSTShortCut] - "C:\Program Files (x86)\CyberLink\Blu-ray Disc Suite\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\Blu-ray Disc Suite" UpdateWithCreateOnce "Software\CyberLink\PowerStarter" [222504 2011-06-13] (CyberLink Corp.) HKLM-x32\...\Run: [UpdatePPShortCut] - "C:\Program Files (x86)\CyberLink\PowerProducer\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\PowerProducer" update "Software\CyberLink\PowerProducer\5.0" [222504 2010-09-17] (CyberLink Corp.) HKLM-x32\...\Run: [SunJavaUpdateSched] - "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" [x] HKLM-x32\...\Run: [Seagate Dashboard] - C:\Program Files (x86)\Seagate\Seagate Dashboard\MemeoLauncher.exe --silent --no_ui [79112 2011-06-01] () HKLM-x32\...\Run: [RotateImage] - C:\Program Files (x86)\Integrated Camera Driver\X64\RCIMGDIR.exe [55808 2008-10-30] (Ricoh co.,Ltd.) HKLM-x32\...\Run: [RemoteControl9] - "C:\Program Files (x86)\CyberLink\PowerDVD9\PDVD9Serv.exe" [87336 2010-08-02] (CyberLink Corp.) HKLM-x32\...\Run: [RemoteControl10] - "C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe" [87336 2011-03-30] (CyberLink Corp.) HKLM-x32\...\Run: [NUSB3MON] - "C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe" [115048 2011-09-16] (Renesas Electronics Corporation) HKLM-x32\...\Run: [Memeo Instant Backup] - C:\Program Files (x86)\Memeo\AutoBackup\MemeoLauncher2.exe --silent --no_ui [136416 2011-05-04] (Memeo Inc.) HKLM-x32\...\Run: [Memeo AutoSync] - C:\Program Files (x86)\Memeo\AutoSync\MemeoLauncher2.exe --silent [144608 2011-05-05] (Memeo Inc.) HKLM-x32\...\Run: [LexwareInfoService] - C:\Program Files (x86)\Common Files\Lexware\Update Manager\LxUpdateManager.exe /autostart [189808 2011-07-31] (Haufe-Lexware GmbH & Co. KG) HKLM-x32\...\Run: [iTunesHelper] - "C:\Program Files (x86)\iTunes\iTunesHelper.exe" [421736 2012-01-16] (Apple Inc.) HKLM-x32\...\Run: [IMSS] - "C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe" [112152 2011-01-17] (Intel Corporation) HKLM-x32\...\Run: [DVBLink MediaCenter Launcher] - C:\Program Files (x86)\DVBLogic\DVBLink\dvblink_mc_launcher.exe [58368 2011-12-06] (DVBLogic) HKLM-x32\...\Run: [Dolby Home Theater v4] - "C:\Program Files (x86)\Dolby Home Theater v4\pcee4.exe" -autostart [506712 2011-02-03] (Dolby Laboratories Inc.) HKLM-x32\...\Run: [DivXMediaServer] - C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe [x] HKLM-x32\...\Run: [CLMLServer] - "C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe" [103720 2009-11-02] (CyberLink) HKLM-x32\...\Run: [BDRegion] - C:\Program Files (x86)\Cyberlink\Shared files\brs.exe [75048 2012-04-02] (cyberlink) HKLM-x32\...\Run: [BCSSync] - "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices [91520 2010-03-13] (Microsoft Corporation) HKLM-x32\...\Run: [AVG_UI] - "C:\Program Files (x86)\AVG\AVG2013\avgui.exe" /TRAYONLY [x] HKLM-x32\...\Run: [APSDaemon] - "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" [59240 2011-11-02] (Apple Inc.) HKLM-x32\...\Run: [Adobe ARM] - "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [958576 2013-04-04] (Adobe Systems Incorporated) HKLM-x32\...\Run: [Acrobat Assistant 8.0] - "C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\Acrotray.exe" [624248 2007-05-10] (Adobe Systems Inc.) HKU\Default\...\RunOnce: [mctadmin] - C:\Windows\System32\mctadmin.exe [97280 2009-07-14] (Microsoft Corporation) HKU\Default\...\RunOnce: [] - [x] HKU\Default\...\RunOnce: [Lenovoautoqdrive] - C:\PROGRA~2\Common~1\Lenovo\Lenovo~1\LenovoAutorunreg.exe /DRIVE=Q [159744 2009-03-24] () HKU\Default\...\RunOnce: [Lenovo.ShowBand] - C:\Program Files\Lenovo\SimpleTap DeskBand\ShowBand.exe /show [156000 2012-05-16] (Lenovo) HKU\Default User\...\RunOnce: [mctadmin] - C:\Windows\System32\mctadmin.exe [97280 2009-07-14] (Microsoft Corporation) HKU\Default User\...\RunOnce: [] - [x] HKU\Default User\...\RunOnce: [Lenovoautoqdrive] - C:\PROGRA~2\Common~1\Lenovo\Lenovo~1\LenovoAutorunreg.exe /DRIVE=Q [159744 2009-03-24] () HKU\Default User\...\RunOnce: [Lenovo.ShowBand] - C:\Program Files\Lenovo\SimpleTap DeskBand\ShowBand.exe /show [156000 2012-05-16] (Lenovo) Lsa: [Notification Packages] scecli C:\Program Files\ThinkVantage Fingerprint Software\psqlpwd.dll C:\Program Files\ThinkPad\Bluetooth Software\BtwProximityCP.dll ACGina Startup: C:\ProgramData\Start Menu\Programs\Startup\Bluetooth.lnk ShortcutTarget: Bluetooth.lnk -> C:\Program Files\ThinkPad\Bluetooth Software\BTTray.exe (Broadcom Corporation.) Startup: C:\ProgramData\Start Menu\Programs\Startup\igpxtskmgn.lnk ShortcutTarget: igpxtskmgn.lnk -> C:\Program Files (x86)\Lenovo\igpxtskmgn64.exe (Docking Station) Startup: C:\ProgramData\Start Menu\Programs\Startup\Logitech SetPoint.lnk ShortcutTarget: Logitech SetPoint.lnk -> C:\Program Files\Logitech\SetPoint\SetPoint.exe (Logitech, Inc.) Startup: C:\Users\*******\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk ShortcutTarget: Dropbox.lnk -> C:\Users\*******\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.) Startup: C:\Users\*******\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Gajim.lnk ShortcutTarget: Gajim.lnk -> C:\Program Files (x86)\Gajim\bin\gajim.exe () ==================== Internet (Whitelisted) ==================== HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/ BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~3\Office14\GROOVEEX.DLL (Microsoft Corporation) BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.) BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~3\Office14\URLREDIR.DLL (Microsoft Corporation) BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll No File BHO-x32: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~3\Office14\GROOVEEX.DLL (Microsoft Corporation) BHO-x32: Windows Live ID-Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.) BHO-x32: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated) BHO-x32: Skype Browser Helper - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~3\Office14\URLREDIR.DLL (Microsoft Corporation) Toolbar: HKLM-x32 - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated) DPF: HKLM-x32 {A6616B31-4860-41E2-98E3-CA7649AF172F} file:///F:/launch.ocx Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - No File Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies) Tcpip\Parameters: [DhcpNameServer] FireFox: ======== FF ProfilePath: C:\Users\*******\AppData\Roaming\Mozilla\Firefox\Profiles\vtnf0i9h.default FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_7_700_224.dll () FF Plugin: @microsoft.com/GENUINE - disabled No File FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation) FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~3\Office14\NPAUTHZ.DLL (Microsoft Corporation) FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_7_700_224.dll () FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll () FF Plugin-x32: @Google.com/GoogleEarthPlugin - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google) FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 - C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll (Google, Inc.) FF Plugin-x32: @java.com/DTPlugin,version=10.25.2 - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation) FF Plugin-x32: @microsoft.com/GENUINE - disabled No File FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation) FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~2\MICROS~3\Office14\NPAUTHZ.DLL (Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~3\Office14\NPSPWRAP.DLL (Microsoft Corporation) FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation) FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\\npGoogleUpdate3.dll (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\\npGoogleUpdate3.dll (Google Inc.) FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF Plugin HKCU: @talk.google.com/GoogleTalkPlugin - C:\Users\*******\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll (Google) FF Plugin HKCU: @talk.google.com/O1DPlugin - C:\Users\*******\AppData\Roaming\Mozilla\plugins\npo1d.dll (Google) FF Plugin HKCU: @talk.google.com/O3DPlugin - C:\Users\*******\AppData\Roaming\Mozilla\plugins\npgtpo3dautoplugin.dll () FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\*******\AppData\Local\Google\Update\\npGoogleUpdate3.dll (Google Inc.) FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\*******\AppData\Local\Google\Update\\npGoogleUpdate3.dll (Google Inc.) FF Extension: United States English Spellchecker - C:\Users\*******\AppData\Roaming\Mozilla\Firefox\Profiles\vtnf0i9h.default\Extensions\en-US@dictionaries.addons.mozilla.org FF Extension: FireShot - C:\Users\*******\AppData\Roaming\Mozilla\Firefox\Profiles\vtnf0i9h.default\Extensions\{0b457cAA-602d-484a-8fe7-c1d894a011ba} FF Extension: IE Tab 2 (FF 3.6+) - C:\Users\*******\AppData\Roaming\Mozilla\Firefox\Profiles\vtnf0i9h.default\Extensions\{1BC9BA34-1EED-42ca-A505-6D2F1A935BBB} FF Extension: ColorZilla - C:\Users\*******\AppData\Roaming\Mozilla\Firefox\Profiles\vtnf0i9h.default\Extensions\{6AC85730-7D0F-4de0-B3FA-21142DD85326} FF Extension: firebug - C:\Users\*******\AppData\Roaming\Mozilla\Firefox\Profiles\vtnf0i9h.default\Extensions\firebug@software.joehewitt.com.xpi FF Extension: password.generator - C:\Users\*******\AppData\Roaming\Mozilla\Firefox\Profiles\vtnf0i9h.default\Extensions\password.generator@kolya.ca.xpi FF Extension: secureLogin - C:\Users\*******\AppData\Roaming\Mozilla\Firefox\Profiles\vtnf0i9h.default\Extensions\secureLogin@blueimp.net.xpi FF Extension: No Name - C:\Users\*******\AppData\Roaming\Mozilla\Firefox\Profiles\vtnf0i9h.default\Extensions\{3e9bb2a7-62ca-4efa-a4e6-f6f6168a652d}.xpi FF Extension: No Name - C:\Users\*******\AppData\Roaming\Mozilla\Firefox\Profiles\vtnf0i9h.default\Extensions\{64161300-e22b-11db-8314-0800200c9a66}.xpi FF Extension: No Name - C:\Users\*******\AppData\Roaming\Mozilla\Firefox\Profiles\vtnf0i9h.default\Extensions\{c45c406e-ab73-11d8-be73-000a95be3b12}.xpi FF Extension: No Name - C:\Users\*******\AppData\Roaming\Mozilla\Firefox\Profiles\vtnf0i9h.default\Extensions\{EF522540-89F5-46b9-B6FE-1829E2B572C6}.xpi FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} FF Extension: Java Console - C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA} FF Extension: Java Console - C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA} FF Extension: Default - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} FF HKLM-x32\...\Firefox\Extensions: [VIP1X@verisign.com] C:\Program Files (x86)\Symantec\VIP Access Client\ FF HKLM-x32\...\Firefox\Extensions: [VIP2X@verisign.com] C:\Program Files (x86)\Symantec\VIP Access Client\ Chrome: ======= ==================== Services (Whitelisted) ================= S2 CLKMSVC10_38F51D56; C:\Program Files (x86)\CyberLink\PowerDVD10\NavFilter\kmsvc.exe [241648 2012-04-02] (CyberLink) S2 CLKMSVC10_9EC60124; C:\Program Files (x86)\CyberLink\PowerDVD9\NavFilter\kmsvc.exe [240112 2010-11-23] (CyberLink) R2 CxAudMsg; C:\Windows\system32\CxAudMsg64.exe [198784 2010-12-17] (Conexant Systems Inc.) R2 DisplayLinkService; C:\Program Files\DisplayLink Core Software\DisplayLinkManager.exe [9573736 2011-02-03] (DisplayLink Corp.) S3 DozeSvc; C:\Program Files (x86)\ThinkPad\Utilities\DZSVC64.EXE [320576 2013-03-18] (Lenovo.) R2 dvblink_client; C:\Program Files (x86)\DVBLogic\DVBLink\dvblink_client.exe [1213952 2011-12-06] (DVBLogic) R2 LENOVO.TVTVCAM; C:\Program Files\Lenovo\Communications Utility\vcamsvc.exe [179568 2012-06-01] (Lenovo Group Limited) R2 Lenovo.VIRTSCRLSVC; C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe [133992 2011-07-12] (Lenovo Group Limited) R2 MacheenService; C:\Program Files (x86)\Lenovo\MobileAccess\MacheenService.exe [32480 2013-04-17] (Macheen) S3 OpenVPNService; C:\Program Files (x86)\OpenVPN\bin\openvpnserv.exe [36366 2010-09-06] () R2 RichVideo; C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [244904 2010-09-06] () R2 SROSVC; C:\Program Files (x86)\Lenovo\Screen Reading Optimizer\SROSVC.exe [446800 2012-03-05] (Lenovo Group Limited) S3 SUService; C:\Program Files (x86)\Lenovo\System Update\SUService.exe [22376 2013-04-11] () R2 ThinkVantage Registry Monitor Service; C:\Program Files (x86)\Common Files\Lenovo\tvt_reg_monitor_svc.exe [1028096 2010-12-11] (Lenovo Group Limited) S3 TVT Backup Service; C:\Program Files (x86)\Lenovo\Rescue and Recovery\rrservice.exe [1475896 2010-12-11] (Lenovo Group Limited) R2 WebUpdate4; C:\Program Files (x86)\Lenovo\MobileAccess\WebUpdateSvc4.exe [278800 2013-01-16] (Data Perceptions / PowerProgrammer) R2 WMCoreService; C:\Program Files (x86)\Mobile Broadband drivers\WMCore\mini_WMCore.exe [648744 2011-08-12] (Ericsson AB) R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3342640 2012-08-23] (Intel® Corporation) ==================== Drivers (Whitelisted) ==================== S3 AX88772; C:\Windows\System32\DRIVERS\ax88772.sys [79360 2011-06-01] (ASIX Electronics Corp.) R3 btusb64v; C:\Windows\System32\drivers\btusb64v.sys [36688 2011-11-30] (BUFFALO INC.) S3 DisplayLinkUsbPort; C:\Windows\System32\DRIVERS\DisplayLinkUsbPort_5.6.30272.0.sys [17408 2012-02-28] (hxxp://libusb-win32.sourceforge.net) R3 dvblink_tuner; C:\Windows\System32\drivers\dvblink_tuner.sys [78184 2011-12-08] (DVBLogic) R3 ecnssndis; C:\Windows\System32\Drivers\wwuss64.sys [26664 2010-03-03] (Ericsson AB) R3 ecnssndisfltr; C:\Windows\System32\Drivers\wwussf64.sys [30248 2010-03-03] (Ericsson AB) R3 l36wgps; C:\Windows\System32\DRIVERS\l36wgps64.sys [101416 2011-07-01] (Ericsson AB) R3 Mbm3CBus; C:\Windows\System32\DRIVERS\Mbm3CBus.sys [419400 2011-04-29] (MCCI Corporation) R3 Mbm3DevMt; C:\Windows\System32\DRIVERS\Mbm3DevMt.sys [430664 2011-04-29] (MCCI Corporation) R3 Mbm3mdfl; C:\Windows\System32\DRIVERS\Mbm3mdfl.sys [19528 2011-04-29] (MCCI Corporation) R3 Mbm3Mdm; C:\Windows\System32\DRIVERS\Mbm3Mdm.sys [483400 2011-04-29] (MCCI Corporation) R3 NETwNs64; C:\Windows\System32\DRIVERS\Netwsw00.sys [11523072 2012-09-30] (Intel Corporation) R1 PHCORE; C:\Program Files\Lenovo\RapidBoot\PHCORE64.SYS [32104 2011-07-08] (Lenovo Group Limited) S3 pmxdrv; C:\Windows\system32\drivers\pmxdrv.sys [31152 2011-10-18] () S3 pmxdrv; C:\Windows\system32\drivers\pmxdrv.sys [31152 2011-10-18] () R3 SmbDrvI; C:\Windows\System32\DRIVERS\Smb_driver_Intel.sys [44344 2012-10-17] (Synaptics Incorporated) R2 smihlp2; C:\Program Files\ThinkVantage Fingerprint Software\smihlp.sys [13128 2011-05-30] (Authentec Inc.) R3 tvtvcamd; C:\Windows\System32\DRIVERS\tvtvcamd.sys [27432 2011-12-07] (ThinkVantage Communications Utility) R3 WwanUsbServ; C:\Windows\System32\DRIVERS\WwanUsbMp64.sys [268840 2011-08-12] (Ericsson AB) S3 ew_hwusbdev; system32\DRIVERS\ew_hwusbdev.sys [x] S3 huawei_cdcacm; system32\DRIVERS\ew_jucdcacm.sys [x] S3 huawei_enumerator; system32\DRIVERS\ew_jubusenum.sys [x] ==================== NetSvcs (Whitelisted) =================== ==================== One Month Created Files and Folders ======== 2013-07-10 18:06 - 2013-07-10 18:08 - 00000149 ____A C:\Users\*******\Documents\regsrv.bat 2013-07-10 15:45 - 2013-07-10 15:45 - 19238912 ____A (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2013-07-10 15:45 - 2013-07-10 15:45 - 15404032 ____A (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2013-07-10 15:45 - 2013-07-10 15:45 - 14329856 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2013-07-10 15:45 - 2013-07-10 15:45 - 13760512 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll 2013-07-10 15:45 - 2013-07-10 15:45 - 03958784 ____A (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2013-07-10 15:45 - 2013-07-10 15:45 - 02877440 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll 2013-07-10 15:45 - 2013-07-10 15:45 - 02706432 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb 2013-07-10 15:45 - 2013-07-10 15:45 - 02706432 ____A (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2013-07-10 15:45 - 2013-07-10 15:45 - 02648576 ____A (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2013-07-10 15:45 - 2013-07-10 15:45 - 02241024 ____A (Microsoft Corporation) C:\Windows\system32\wininet.dll 2013-07-10 15:45 - 2013-07-10 15:45 - 02046976 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll 2013-07-10 15:45 - 2013-07-10 15:45 - 01767936 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll 2013-07-10 15:45 - 2013-07-10 15:45 - 01509376 ____A (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl 2013-07-10 15:45 - 2013-07-10 15:45 - 01441280 ____A (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl 2013-07-10 15:45 - 2013-07-10 15:45 - 01400416 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat 2013-07-10 15:45 - 2013-07-10 15:45 - 01400416 ____A (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat 2013-07-10 15:45 - 2013-07-10 15:45 - 01365504 ____A (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2013-07-10 15:45 - 2013-07-10 15:45 - 01141248 ____A (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll 2013-07-10 15:45 - 2013-07-10 15:45 - 01054720 ____A (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe 2013-07-10 15:45 - 2013-07-10 15:45 - 00905728 ____A (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll 2013-07-10 15:45 - 2013-07-10 15:45 - 00855552 ____A (Microsoft Corporation) C:\Windows\system32\jscript.dll 2013-07-10 15:45 - 2013-07-10 15:45 - 00762368 ____A (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll 2013-07-10 15:45 - 2013-07-10 15:45 - 00719360 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll 2013-07-10 15:45 - 2013-07-10 15:45 - 00690688 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll 2013-07-10 15:45 - 2013-07-10 15:45 - 00629248 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll 2013-07-10 15:45 - 2013-07-10 15:45 - 00603136 ____A (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2013-07-10 15:45 - 2013-07-10 15:45 - 00599552 ____A (Microsoft Corporation) C:\Windows\system32\vbscript.dll 2013-07-10 15:45 - 2013-07-10 15:45 - 00526336 ____A (Microsoft Corporation) C:\Windows\system32\ieui.dll 2013-07-10 15:45 - 2013-07-10 15:45 - 00523264 ____A (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll 2013-07-10 15:45 - 2013-07-10 15:45 - 00493056 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll 2013-07-10 15:45 - 2013-07-10 15:45 - 00452096 ____A (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll 2013-07-10 15:45 - 2013-07-10 15:45 - 00441856 ____A (Microsoft Corporation) C:\Windows\system32\html.iec 2013-07-10 15:45 - 2013-07-10 15:45 - 00391168 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll 2013-07-10 15:45 - 2013-07-10 15:45 - 00361984 ____A (Microsoft Corporation) C:\Windows\SysWOW64\html.iec 2013-07-10 15:45 - 2013-07-10 15:45 - 00357888 ____A (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll 2013-07-10 15:45 - 2013-07-10 15:45 - 00281600 ____A (Microsoft Corporation) C:\Windows\system32\dxtrans.dll 2013-07-10 15:45 - 2013-07-10 15:45 - 00270848 ____A (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll 2013-07-10 15:45 - 2013-07-10 15:45 - 00247296 ____A (Microsoft Corporation) C:\Windows\system32\webcheck.dll 2013-07-10 15:45 - 2013-07-10 15:45 - 00242200 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll 2013-07-10 15:45 - 2013-07-10 15:45 - 00235008 ____A (Microsoft Corporation) C:\Windows\system32\url.dll 2013-07-10 15:45 - 2013-07-10 15:45 - 00232960 ____A (Microsoft Corporation) C:\Windows\SysWOW64\url.dll 2013-07-10 15:45 - 2013-07-10 15:45 - 00226816 ____A (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll 2013-07-10 15:45 - 2013-07-10 15:45 - 00226304 ____A (Microsoft Corporation) C:\Windows\system32\elshyph.dll 2013-07-10 15:45 - 2013-07-10 15:45 - 00216064 ____A (Microsoft Corporation) C:\Windows\system32\msls31.dll 2013-07-10 15:45 - 2013-07-10 15:45 - 00204800 ____A (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll 2013-07-10 15:45 - 2013-07-10 15:45 - 00197120 ____A (Microsoft Corporation) C:\Windows\system32\msrating.dll 2013-07-10 15:45 - 2013-07-10 15:45 - 00185344 ____A (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll 2013-07-10 15:45 - 2013-07-10 15:45 - 00173568 ____A (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe 2013-07-10 15:45 - 2013-07-10 15:45 - 00167424 ____A (Microsoft Corporation) C:\Windows\system32\iexpress.exe 2013-07-10 15:45 - 2013-07-10 15:45 - 00163840 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll 2013-07-10 15:45 - 2013-07-10 15:45 - 00158720 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll 2013-07-10 15:45 - 2013-07-10 15:45 - 00150528 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe 2013-07-10 15:45 - 2013-07-10 15:45 - 00149504 ____A (Microsoft Corporation) C:\Windows\system32\occache.dll 2013-07-10 15:45 - 2013-07-10 15:45 - 00144896 ____A (Microsoft Corporation) C:\Windows\system32\wextract.exe 2013-07-10 15:45 - 2013-07-10 15:45 - 00138752 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe 2013-07-10 15:45 - 2013-07-10 15:45 - 00137216 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe 2013-07-10 15:45 - 2013-07-10 15:45 - 00136704 ____A (Microsoft Corporation) C:\Windows\system32\iesysprep.dll 2013-07-10 15:45 - 2013-07-10 15:45 - 00136192 ____A (Microsoft Corporation) C:\Windows\system32\iepeers.dll 2013-07-10 15:45 - 2013-07-10 15:45 - 00135680 ____A (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll 2013-07-10 15:45 - 2013-07-10 15:45 - 00125440 ____A (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll 2013-07-10 15:45 - 2013-07-10 15:45 - 00117248 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll 2013-07-10 15:45 - 2013-07-10 15:45 - 00110592 ____A (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll 2013-07-10 15:45 - 2013-07-10 15:45 - 00109056 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll 2013-07-10 15:45 - 2013-07-10 15:45 - 00102912 ____A (Microsoft Corporation) C:\Windows\system32\inseng.dll 2013-07-10 15:45 - 2013-07-10 15:45 - 00097280 ____A (Microsoft Corporation) C:\Windows\system32\mshtmled.dll 2013-07-10 15:45 - 2013-07-10 15:45 - 00092160 ____A (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe 2013-07-10 15:45 - 2013-07-10 15:45 - 00089600 ____A (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe 2013-07-10 15:45 - 2013-07-10 15:45 - 00082432 ____A (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll 2013-07-10 15:45 - 2013-07-10 15:45 - 00081408 ____A (Microsoft Corporation) C:\Windows\system32\icardie.dll 2013-07-10 15:45 - 2013-07-10 15:45 - 00079872 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll 2013-07-10 15:45 - 2013-07-10 15:45 - 00077312 ____A (Microsoft Corporation) C:\Windows\system32\tdc.ocx 2013-07-10 15:45 - 2013-07-10 15:45 - 00073728 ____A (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe 2013-07-10 15:45 - 2013-07-10 15:45 - 00071680 ____A (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe 2013-07-10 15:45 - 2013-07-10 15:45 - 00069120 ____A (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll 2013-07-10 15:45 - 2013-07-10 15:45 - 00067072 ____A (Microsoft Corporation) C:\Windows\system32\iesetup.dll 2013-07-10 15:45 - 2013-07-10 15:45 - 00062976 ____A (Microsoft Corporation) C:\Windows\system32\pngfilt.dll 2013-07-10 15:45 - 2013-07-10 15:45 - 00061952 ____A (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx 2013-07-10 15:45 - 2013-07-10 15:45 - 00061440 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll 2013-07-10 15:45 - 2013-07-10 15:45 - 00057344 ____A (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll 2013-07-10 15:45 - 2013-07-10 15:45 - 00053248 ____A (Microsoft Corporation) C:\Windows\system32\jsproxy.dll 2013-07-10 15:45 - 2013-07-10 15:45 - 00052224 ____A (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll 2013-07-10 15:45 - 2013-07-10 15:45 - 00051712 ____A (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2013-07-10 15:45 - 2013-07-10 15:45 - 00051200 ____A (Microsoft Corporation) C:\Windows\system32\imgutil.dll 2013-07-10 15:45 - 2013-07-10 15:45 - 00048640 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll 2013-07-10 15:45 - 2013-07-10 15:45 - 00048640 ____A (Microsoft Corporation) C:\Windows\system32\mshtmler.dll 2013-07-10 15:45 - 2013-07-10 15:45 - 00041984 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll 2013-07-10 15:45 - 2013-07-10 15:45 - 00039936 ____A (Microsoft Corporation) C:\Windows\system32\iernonce.dll 2013-07-10 15:45 - 2013-07-10 15:45 - 00039424 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll 2013-07-10 15:45 - 2013-07-10 15:45 - 00038400 ____A (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll 2013-07-10 15:45 - 2013-07-10 15:45 - 00033280 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll 2013-07-10 15:45 - 2013-07-10 15:45 - 00027648 ____A (Microsoft Corporation) C:\Windows\system32\licmgr10.dll 2013-07-10 15:45 - 2013-07-10 15:45 - 00023040 ____A (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll 2013-07-10 15:45 - 2013-07-10 15:45 - 00013824 ____A (Microsoft Corporation) C:\Windows\system32\mshta.exe 2013-07-10 15:45 - 2013-07-10 15:45 - 00012800 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe 2013-07-10 15:45 - 2013-07-10 15:45 - 00012800 ____A (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe 2013-07-10 15:45 - 2013-07-10 15:45 - 00011776 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe 2013-07-10 14:58 - 2013-06-05 05:34 - 03153920 ____A (Microsoft Corporation) C:\Windows\system32\win32k.sys 2013-07-10 14:58 - 2013-06-04 08:00 - 00624128 ____A (Microsoft Corporation) C:\Windows\system32\qedit.dll 2013-07-10 14:58 - 2013-06-04 06:53 - 00509440 ____A (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll 2013-07-10 14:58 - 2013-05-06 08:03 - 01887744 ____A (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL 2013-07-10 14:58 - 2013-05-06 06:56 - 01620480 ____A (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL 2013-07-10 14:58 - 2013-04-10 01:34 - 01247744 ____A (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll 2013-07-10 14:58 - 2013-04-03 00:51 - 01643520 ____A (Microsoft Corporation) C:\Windows\system32\DWrite.dll 2013-07-10 12:07 - 2013-07-10 14:14 - 00082838 ____A C:\Users\*******\Desktop\eset.txt 2013-07-10 12:07 - 2013-07-10 12:07 - 00890988 ____A C:\Users\*******\Desktop\SecurityCheck.exe 2013-07-10 09:43 - 2013-07-10 09:44 - 02347384 ____A (ESET) C:\Users\*******\Desktop\esetsmartinstaller_enu.exe 2013-07-09 21:48 - 2013-07-09 21:48 - 00001318 ____A C:\AdwCleaner[R3].txt 2013-07-09 21:18 - 2013-07-09 21:18 - 00000000 ____D C:\Windows\ERUNT 2013-07-09 21:17 - 2013-07-09 21:17 - 00552389 ____A (Oleg N. Scherbakov) C:\Users\*******\Desktop\JRT.exe 2013-07-09 21:15 - 2013-07-09 21:15 - 00001258 ____A C:\AdwCleaner[R2].txt 2013-07-09 21:09 - 2013-07-09 21:09 - 00006122 ____A C:\AdwCleaner[S1].txt 2013-07-09 21:09 - 2013-07-09 21:09 - 00005960 ____A C:\AdwCleaner[R1].txt 2013-07-09 21:07 - 2013-07-09 21:07 - 00650027 ____A C:\Users\*******\Desktop\adwcleaner.exe 2013-07-09 18:03 - 2013-07-11 10:02 - 01777775 ____A (Farbar) C:\Users\*******\Desktop\FRST64.exe 2013-07-09 18:03 - 2013-07-09 18:03 - 00000000 ____D C:\FRST 2013-07-09 17:33 - 2013-07-09 17:33 - 00037441 ____A C:\Users\*******\Desktop\logs.zip 2013-07-09 16:59 - 2013-07-09 16:59 - 00377856 ____A C:\Users\*******\Desktop\gmer_2.1.19163.exe 2013-07-09 16:55 - 2013-07-09 16:55 - 00000190 ____A C:\Users\*******\Desktop\sympton.txt 2013-07-09 16:55 - 2013-07-09 16:55 - 00000000 ____A C:\Users\*******\defogger_reenable 2013-07-09 16:54 - 2013-07-09 16:54 - 00050477 ____A C:\Users\*******\Desktop\Defogger.exe 2013-07-09 16:50 - 2013-07-09 16:53 - 00122754 ____A C:\Users\*******\Desktop\Extras.Txt 2013-07-09 16:44 - 2013-07-09 16:44 - 00602112 ____A (OldTimer Tools) C:\Users\*******\Desktop\OTL(1).exe 2013-07-09 16:44 - 2013-07-09 16:44 - 00000120 ____A C:\Users\*******\Desktop\WlA05T5E.htm 2013-07-09 16:43 - 2013-07-09 16:43 - 00602112 ____A (OldTimer Tools) C:\Users\*******\Downloads\OTL.exe 2013-07-09 16:31 - 2013-07-09 16:31 - 00003436 ____A C:\Windows\System32\Tasks\{94309A7D-5DD0-4419-9D1D-9404C5A6E646} 2013-07-09 15:52 - 2013-07-09 15:53 - 00000000 ____D C:\Users\*******\AppData\Local\Avg2013 2013-07-09 15:38 - 2013-07-09 17:38 - 00000000 ____D C:\Windows\pss 2013-07-09 14:57 - 2013-07-10 17:24 - 00001436 ____A C:\Users\*******\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk 2013-07-09 14:43 - 2013-07-10 15:11 - 00000134 ____A C:\Users\*******\Desktop\Internet Explorer-Problembehebung.url 2013-07-09 08:14 - 2013-07-09 08:14 - 00000000 ____D C:\Users\Default\AppData\Roaming\TuneUp Software 2013-07-09 08:14 - 2013-07-09 08:14 - 00000000 ____D C:\Users\Default User\AppData\Roaming\TuneUp Software 2013-07-08 19:30 - 2013-07-08 19:30 - 00270214 ____A C:\Windows\msxml4-KB2758694-deu.LOG 2013-07-08 19:14 - 2013-02-17 01:40 - 00028672 ____A (Microsoft Corporation) C:\Windows\system32\IEUDINIT.EXE 2013-07-08 18:52 - 2013-07-08 19:10 - 518418786 ____A (WinFuture) C:\Users\*******\Downloads\WinFuture_7SP1_x64_UpdatePack_2.27_Juni_2013-Vollversion.exe 2013-07-08 17:49 - 2012-08-23 16:13 - 00243200 ____A (Microsoft Corporation) C:\Windows\system32\rdpudd.dll 2013-07-08 17:49 - 2012-08-23 16:10 - 00019456 ____A (Microsoft Corporation) C:\Windows\system32\Drivers\rdpvideominiport.sys 2013-07-08 17:49 - 2012-08-23 16:08 - 00030208 ____A (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbGD.sys 2013-07-08 17:49 - 2012-08-23 16:07 - 00057856 ____A (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbFlt.sys 2013-07-08 17:49 - 2012-08-23 15:47 - 00046592 ____A (Microsoft Corporation) C:\Windows\SysWOW64\MsRdpWebAccess.dll 2013-07-08 17:49 - 2012-08-23 15:46 - 00016896 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wksprtPS.dll 2013-07-08 17:49 - 2012-08-23 15:41 - 00013312 ____A (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe 2013-07-08 17:49 - 2012-08-23 15:40 - 00013312 ____A (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll 2013-07-08 17:49 - 2012-08-23 15:24 - 00015360 ____A (Microsoft Corporation) C:\Windows\system32\RdpGroupPolicyExtension.dll 2013-07-08 17:49 - 2012-08-23 15:20 - 00054272 ____A (Microsoft Corporation) C:\Windows\system32\MsRdpWebAccess.dll 2013-07-08 17:49 - 2012-08-23 15:18 - 00037376 ____A (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll 2013-07-08 17:49 - 2012-08-23 15:17 - 00018432 ____A (Microsoft Corporation) C:\Windows\system32\wksprtPS.dll 2013-07-08 17:49 - 2012-08-23 15:06 - 00043520 ____A (Microsoft Corporation) C:\Windows\system32\TsUsbGDCoInstaller.dll 2013-07-08 17:49 - 2012-08-23 14:52 - 00044032 ____A (Microsoft Corporation) C:\Windows\system32\tsgqec.dll 2013-07-08 17:49 - 2012-08-23 13:20 - 00062976 ____A (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe 2013-07-08 17:49 - 2012-08-23 13:15 - 00269312 ____A (Microsoft Corporation) C:\Windows\SysWOW64\aaclient.dll 2013-07-08 17:49 - 2012-08-23 13:14 - 00384000 ____A (Microsoft Corporation) C:\Windows\system32\wksprt.exe 2013-07-08 17:49 - 2012-08-23 13:12 - 00192000 ____A (Microsoft Corporation) C:\Windows\SysWOW64\rdpendp_winip.dll 2013-07-08 17:49 - 2012-08-23 12:54 - 00322560 ____A (Microsoft Corporation) C:\Windows\system32\aaclient.dll 2013-07-08 17:49 - 2012-08-23 12:51 - 00228864 ____A (Microsoft Corporation) C:\Windows\system32\rdpendp_winip.dll 2013-07-08 17:49 - 2012-08-23 12:39 - 01048064 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe 2013-07-08 17:49 - 2012-08-23 12:22 - 01123840 ____A (Microsoft Corporation) C:\Windows\system32\mstsc.exe 2013-07-08 17:49 - 2012-08-23 11:51 - 03174912 ____A (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll 2013-07-08 17:49 - 2012-08-23 10:19 - 04916224 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll 2013-07-08 17:49 - 2012-08-23 10:13 - 05773824 ____A (Microsoft Corporation) C:\Windows\system32\mstscax.dll 2013-07-08 17:47 - 2012-08-24 20:13 - 00154480 ____A (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys 2013-07-08 17:47 - 2012-08-24 20:09 - 00458712 ____A (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys 2013-07-08 17:47 - 2012-08-24 20:05 - 00340992 ____A (Microsoft Corporation) C:\Windows\system32\schannel.dll 2013-07-08 17:47 - 2012-08-24 20:03 - 01448448 ____A (Microsoft Corporation) C:\Windows\system32\lsasrv.dll 2013-07-08 17:47 - 2012-08-24 18:57 - 00247808 ____A (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll 2013-07-08 17:47 - 2012-08-24 18:57 - 00022016 ____A (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll 2013-07-08 17:47 - 2012-08-24 18:53 - 00096768 ____A (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll 2013-07-08 17:47 - 2012-05-04 13:00 - 00366592 ____A (Microsoft Corporation) C:\Windows\system32\qdvd.dll 2013-07-08 17:47 - 2012-05-04 11:59 - 00514560 ____A (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll 2013-07-08 17:31 - 2013-07-08 17:31 - 00000000 ____D C:\Users\test\AppData\Roaming\PwrMgr 2013-07-08 17:30 - 2013-07-08 17:31 - 00000000 ____D C:\Users\test\AppData\Local\LSC 2013-07-08 17:20 - 2013-07-08 17:29 - 00000000 ____D C:\Users\test\AppData\Roaming\Adobe 2013-07-08 17:20 - 2013-07-08 17:20 - 00120320 ____A C:\Users\test\AppData\Local\GDIPFONTCACHEV1.DAT 2013-07-08 17:20 - 2013-07-08 17:20 - 00000000 ____D C:\Users\test\Documents\Synaptics 2013-07-08 17:20 - 2013-07-08 17:20 - 00000000 ____D C:\Users\test\Documents\Bluetooth-Exchange-Ordner 2013-07-08 17:20 - 2013-07-08 17:20 - 00000000 ____D C:\Users\test\AppData\Roaming\Seagate 2013-07-08 17:20 - 2013-07-08 17:20 - 00000000 ____D C:\Users\test\AppData\Roaming\Memeo 2013-07-08 17:20 - 2013-07-08 17:20 - 00000000 ____D C:\Users\test\AppData\Roaming\LSC 2013-07-08 17:20 - 2013-07-08 17:20 - 00000000 ____D C:\Users\test\AppData\Roaming\Logitech 2013-07-08 17:20 - 2013-07-08 17:20 - 00000000 ____D C:\Users\test\AppData\Roaming\Lexware 2013-07-08 17:20 - 2013-07-08 17:20 - 00000000 ____D C:\Users\test\AppData\Roaming\Leadertech 2013-07-08 17:20 - 2013-07-08 17:20 - 00000000 ____D C:\Users\test\AppData\Roaming\Apple Computer 2013-07-08 17:20 - 2013-07-08 17:20 - 00000000 ____D C:\Users\test\AppData\Local\Power2Go 2013-07-08 17:20 - 2013-07-08 17:20 - 00000000 ____D C:\Users\test\AppData\Local\MobileAccess 2013-07-08 17:20 - 2013-07-08 17:20 - 00000000 ____D C:\Users\test\AppData\Local\Lexware 2013-07-08 17:20 - 2013-07-08 17:20 - 00000000 ____D C:\Users\test\AppData\Local\Lenovo 2013-07-08 17:20 - 2013-07-08 17:20 - 00000000 ____D C:\Users\test\AppData\Local\Broadcom 2013-07-08 17:20 - 2013-07-08 17:20 - 00000000 ____D C:\Users\test\AppData\Local\Adobe 2013-07-08 17:19 - 2013-07-08 17:20 - 00001194 ____A C:\Users\test\Desktop\Blu-ray Disc Suite.lnk 2013-07-08 17:19 - 2013-07-08 17:20 - 00000000 ____D C:\Users\test 2013-07-08 17:19 - 2013-07-08 17:19 - 00000020 __ASH C:\Users\test\ntuser.ini 2013-07-08 17:19 - 2013-07-08 17:19 - 00000000 __SHD C:\Users\test\Vorlagen 2013-07-08 17:19 - 2013-07-08 17:19 - 00000000 __SHD C:\Users\test\Startmenü 2013-07-08 17:19 - 2013-07-08 17:19 - 00000000 __SHD C:\Users\test\Netzwerkumgebung 2013-07-08 17:19 - 2013-07-08 17:19 - 00000000 __SHD C:\Users\test\Lokale Einstellungen 2013-07-08 17:19 - 2013-07-08 17:19 - 00000000 __SHD C:\Users\test\Eigene Dateien 2013-07-08 17:19 - 2013-07-08 17:19 - 00000000 __SHD C:\Users\test\Druckumgebung 2013-07-08 17:19 - 2013-07-08 17:19 - 00000000 __SHD C:\Users\test\Documents\Eigene Musik 2013-07-08 17:19 - 2013-07-08 17:19 - 00000000 __SHD C:\Users\test\Documents\Eigene Bilder 2013-07-08 17:19 - 2013-07-08 17:19 - 00000000 __SHD C:\Users\test\AppData\Local\Verlauf 2013-07-08 17:19 - 2013-07-08 17:19 - 00000000 __SHD C:\Users\test\AppData\Local\Anwendungsdaten 2013-07-08 17:19 - 2013-07-08 17:19 - 00000000 __SHD C:\Users\test\Anwendungsdaten 2013-07-08 17:19 - 2013-07-08 17:19 - 00000000 ____D C:\Users\test\AppData\Roaming\Intel 2013-07-08 17:19 - 2012-10-21 13:28 - 00000000 ____D C:\Users\test\AppData\Roaming\Macromedia 2013-07-08 17:19 - 2012-02-21 18:04 - 00000000 ____D C:\Users\test\AppData\Local\Microsoft Help 2013-07-08 17:13 - 2013-07-08 17:13 - 00861184 ____A (Microsoft Corporation) C:\Users\*******\Downloads\IE10-Windows6.1-de-de.exe 2013-07-08 16:09 - 2013-07-08 16:09 - 00003230 ____A C:\Windows\System32\Tasks\SidebarExecute 2013-07-08 16:09 - 2013-07-08 16:09 - 00000000 ____D C:\Users\*******\AppData\Roaming\TuneUp Software 2013-07-08 15:31 - 2013-07-09 15:53 - 00000000 ____D C:\ProgramData\MFAData 2013-07-08 15:31 - 2013-07-08 15:31 - 00000000 ____D C:\Users\*******\AppData\Local\MFAData 2013-07-08 14:56 - 2013-07-08 15:28 - 159486920 ____A (AVG Technologies) C:\Users\*******\Downloads\avg_ipw_x64_all_2013_3345a6382(1).exe 2013-07-08 10:54 - 2013-07-08 12:17 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox 2013-07-01 18:45 - 2010-11-21 05:24 - 00381440 ____A (Microsoft Corporation) C:\Windows\system32\mfds.dll 2013-07-01 18:28 - 2013-07-01 18:28 - 00000000 ____D C:\Users\*******\AppData\Roaming\MediaConfiguration 2013-07-01 18:26 - 2013-07-01 18:26 - 00000000 ____D C:\Users\*******\AppData\Roaming\Media Control 2013-07-01 18:25 - 2013-07-01 18:25 - 03050508 ____A (Damien Bain-Thouverez ) C:\Users\*******\Downloads\MediaControl_6.0.15.exe 2013-07-01 18:07 - 2013-07-01 18:07 - 00000000 ____D C:\Program Files (x86)\Shark007 2013-07-01 18:05 - 2013-07-01 18:05 - 00003406 ____A C:\Windows\System32\Tasks\EPUpdater 2013-07-01 18:04 - 2013-07-10 17:00 - 00000000 ____D C:\ProgramData\Advanced 2013-07-01 18:03 - 2013-07-01 18:04 - 29160522 ____A C:\Users\*******\Downloads\32bit_Advanced_v418.exe 2013-07-01 17:47 - 2013-07-01 17:50 - 00000000 ____D C:\Users\*******\AppData\Roaming\vlc 2013-07-01 17:46 - 2013-07-01 17:46 - 00003584 ____A C:\Users\*******\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini 2013-07-01 17:33 - 2013-07-01 17:34 - 18422493 ____A C:\Users\*******\Downloads\Advanced_x64Components_v418.exe 2013-07-01 17:31 - 2013-07-09 16:31 - 00000000 ____D C:\Program Files (x86)\VideoLAN 2013-07-01 17:29 - 2013-07-01 17:31 - 22937227 ____A C:\Users\*******\Downloads\vlc-2.0.7-win32.exe 2013-07-01 17:29 - 2013-07-01 17:30 - 14989539 ____A C:\Users\*******\Downloads\vlc-2.0.7-win32.exe.part 2013-06-28 02:06 - 2013-06-28 03:36 - 00000528 ____A C:\Windows\Tasks\PCDoctorBackgroundMonitorTask-Delay.job 2013-06-28 02:06 - 2013-06-28 02:06 - 00003378 ____A C:\Windows\System32\Tasks\PCDoctorBackgroundMonitorTask-Delay 2013-06-18 10:16 - 2013-05-13 07:51 - 01464320 ____A (Microsoft Corporation) C:\Windows\system32\crypt32.dll 2013-06-18 10:16 - 2013-05-13 07:51 - 00184320 ____A (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll 2013-06-18 10:16 - 2013-05-13 07:51 - 00139776 ____A (Microsoft Corporation) C:\Windows\system32\cryptnet.dll 2013-06-18 10:16 - 2013-05-13 07:50 - 00052224 ____A (Microsoft Corporation) C:\Windows\system32\certenc.dll 2013-06-18 10:16 - 2013-05-13 06:45 - 01160192 ____A (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll 2013-06-18 10:16 - 2013-05-13 06:45 - 00140288 ____A (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll 2013-06-18 10:16 - 2013-05-13 06:45 - 00103936 ____A (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll 2013-06-18 10:16 - 2013-05-13 05:43 - 01192448 ____A (Microsoft Corporation) C:\Windows\system32\certutil.exe 2013-06-18 10:16 - 2013-05-13 05:08 - 00903168 ____A (Microsoft Corporation) C:\Windows\SysWOW64\certutil.exe 2013-06-18 10:16 - 2013-05-13 05:08 - 00043008 ____A (Microsoft Corporation) C:\Windows\SysWOW64\certenc.dll 2013-06-18 10:16 - 2013-05-10 07:49 - 00030720 ____A (Microsoft Corporation) C:\Windows\system32\cryptdlg.dll 2013-06-18 10:16 - 2013-05-10 05:20 - 00024576 ____A (Microsoft Corporation) C:\Windows\SysWOW64\cryptdlg.dll 2013-06-18 10:16 - 2013-05-08 08:39 - 01910632 ____A (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys 2013-06-18 10:16 - 2013-04-26 07:51 - 00751104 ____A (Microsoft Corporation) C:\Windows\system32\win32spl.dll 2013-06-18 10:16 - 2013-04-26 06:55 - 00492544 ____A (Microsoft Corporation) C:\Windows\SysWOW64\win32spl.dll 2013-06-18 10:16 - 2013-04-26 01:30 - 01505280 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll 2013-06-18 10:16 - 2013-04-17 09:02 - 01230336 ____A (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll 2013-06-18 10:16 - 2013-04-17 08:24 - 01424384 ____A (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll 2013-06-18 10:16 - 2013-04-01 00:52 - 01887232 ____A (Microsoft Corporation) C:\Windows\system32\d3d11.dll ==================== One Month Modified Files and Folders ======= 2013-07-11 10:04 - 2012-04-08 09:53 - 00000884 ____A C:\Windows\Tasks\Adobe Flash Player Updater.job 2013-07-11 10:04 - 2012-02-24 20:00 - 00000000 ____D C:\Users\*******\AppData\Roaming\Gajim 2013-07-11 10:02 - 2013-07-09 18:03 - 01777775 ____A (Farbar) C:\Users\*******\Desktop\FRST64.exe 2013-07-11 10:02 - 2011-10-18 20:18 - 00700418 ____A C:\Windows\system32\perfh007.dat 2013-07-11 10:02 - 2011-10-18 20:18 - 00149182 ____A C:\Windows\system32\perfc007.dat 2013-07-11 10:02 - 2011-10-18 10:39 - 00001124 ____A C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2013-07-11 10:02 - 2009-07-14 07:13 - 01621308 ____A C:\Windows\system32\PerfStringBackup.INI 2013-07-11 09:58 - 2012-02-21 21:46 - 00000000 ___RD C:\Users\*******\Dropbox 2013-07-11 09:58 - 2012-02-21 21:45 - 00000000 ____D C:\Users\*******\AppData\Roaming\Dropbox 2013-07-11 09:58 - 2011-10-18 10:39 - 00001120 ____A C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2013-07-11 09:57 - 2012-12-26 21:28 - 00000000 ____D C:\Users\*******\AppData\Local\Eye-Fi 2013-07-11 09:57 - 2009-07-14 07:08 - 00000006 ___AH C:\Windows\Tasks\SA.DAT 2013-07-11 09:57 - 2009-07-14 06:51 - 00138203 ____A C:\Windows\setupact.log 2013-07-10 18:42 - 2011-10-18 10:38 - 01138115 ____A C:\Windows\WindowsUpdate.log 2013-07-10 18:34 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\rescache 2013-07-10 18:13 - 2012-02-22 11:37 - 00001124 ____A C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4186067094-2021574243-1185577494-1000UA.job 2013-07-10 18:08 - 2013-07-10 18:06 - 00000149 ____A C:\Users\*******\Documents\regsrv.bat 2013-07-10 18:08 - 2009-07-14 06:54 - 00000749 __RAH C:\Windows\WindowsShell.Manifest 2013-07-10 18:08 - 2009-07-14 06:54 - 00000174 ___SH C:\Users\Public\desktop.ini 2013-07-10 18:08 - 2009-07-14 06:54 - 00000174 ___SH C:\Users\desktop.ini 2013-07-10 18:08 - 2009-07-14 06:54 - 00000174 ___SH C:\Program Files\desktop.ini 2013-07-10 18:08 - 2009-07-14 06:54 - 00000174 ___SH C:\Program Files (x86)\desktop.ini 2013-07-10 18:08 - 2009-07-14 05:20 - 00000000 __RHD C:\Users\Public\Libraries 2013-07-10 17:25 - 2009-07-14 06:45 - 00031296 ___AH C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2013-07-10 17:25 - 2009-07-14 06:45 - 00031296 ___AH C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2013-07-10 17:24 - 2013-07-09 14:57 - 00001436 ____A C:\Users\*******\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk 2013-07-10 17:17 - 2013-03-26 09:38 - 00152331 ____A C:\Windows\IE10_main.log 2013-07-10 17:17 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\PolicyDefinitions 2013-07-10 17:11 - 2012-02-20 16:24 - 00000476 ___SH C:\Users\*******\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\desktop.ini 2013-07-10 17:02 - 2010-11-21 05:47 - 00101006 ____A C:\Windows\PFRO.log 2013-07-10 17:01 - 2012-04-07 14:43 - 00000000 ____D C:\Program Files\DivX 2013-07-10 17:01 - 2012-04-07 14:42 - 00000000 ____D C:\Program Files (x86)\DivX 2013-07-10 17:01 - 2012-04-07 14:41 - 00000000 ____D C:\ProgramData\DivX 2013-07-10 17:00 - 2013-07-01 18:04 - 00000000 ____D C:\ProgramData\Advanced 2013-07-10 15:45 - 2013-07-10 15:45 - 19238912 ____A (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2013-07-10 15:45 - 2013-07-10 15:45 - 15404032 ____A (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2013-07-10 15:45 - 2013-07-10 15:45 - 14329856 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2013-07-10 15:45 - 2013-07-10 15:45 - 13760512 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll 2013-07-10 15:45 - 2013-07-10 15:45 - 03958784 ____A (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2013-07-10 15:45 - 2013-07-10 15:45 - 02877440 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll 2013-07-10 15:45 - 2013-07-10 15:45 - 02706432 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb 2013-07-10 15:45 - 2013-07-10 15:45 - 02706432 ____A (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2013-07-10 15:45 - 2013-07-10 15:45 - 02648576 ____A (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2013-07-10 15:45 - 2013-07-10 15:45 - 02241024 ____A (Microsoft Corporation) C:\Windows\system32\wininet.dll 2013-07-10 15:45 - 2013-07-10 15:45 - 02046976 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll 2013-07-10 15:45 - 2013-07-10 15:45 - 01767936 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll 2013-07-10 15:45 - 2013-07-10 15:45 - 01509376 ____A (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl 2013-07-10 15:45 - 2013-07-10 15:45 - 01441280 ____A (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl 2013-07-10 15:45 - 2013-07-10 15:45 - 01400416 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat 2013-07-10 15:45 - 2013-07-10 15:45 - 01400416 ____A (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat 2013-07-10 15:45 - 2013-07-10 15:45 - 01365504 ____A (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2013-07-10 15:45 - 2013-07-10 15:45 - 01141248 ____A (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll 2013-07-10 15:45 - 2013-07-10 15:45 - 01054720 ____A (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe 2013-07-10 15:45 - 2013-07-10 15:45 - 00905728 ____A (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll 2013-07-10 15:45 - 2013-07-10 15:45 - 00855552 ____A (Microsoft Corporation) C:\Windows\system32\jscript.dll 2013-07-10 15:45 - 2013-07-10 15:45 - 00762368 ____A (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll 2013-07-10 15:45 - 2013-07-10 15:45 - 00719360 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll 2013-07-10 15:45 - 2013-07-10 15:45 - 00690688 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll 2013-07-10 15:45 - 2013-07-10 15:45 - 00629248 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll 2013-07-10 15:45 - 2013-07-10 15:45 - 00603136 ____A (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2013-07-10 15:45 - 2013-07-10 15:45 - 00599552 ____A (Microsoft Corporation) C:\Windows\system32\vbscript.dll 2013-07-10 15:45 - 2013-07-10 15:45 - 00526336 ____A (Microsoft Corporation) C:\Windows\system32\ieui.dll 2013-07-10 15:45 - 2013-07-10 15:45 - 00523264 ____A (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll 2013-07-10 15:45 - 2013-07-10 15:45 - 00493056 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll 2013-07-10 15:45 - 2013-07-10 15:45 - 00452096 ____A (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll 2013-07-10 15:45 - 2013-07-10 15:45 - 00441856 ____A (Microsoft Corporation) C:\Windows\system32\html.iec 2013-07-10 15:45 - 2013-07-10 15:45 - 00391168 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll 2013-07-10 15:45 - 2013-07-10 15:45 - 00361984 ____A (Microsoft Corporation) C:\Windows\SysWOW64\html.iec 2013-07-10 15:45 - 2013-07-10 15:45 - 00357888 ____A (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll 2013-07-10 15:45 - 2013-07-10 15:45 - 00281600 ____A (Microsoft Corporation) C:\Windows\system32\dxtrans.dll 2013-07-10 15:45 - 2013-07-10 15:45 - 00270848 ____A (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll 2013-07-10 15:45 - 2013-07-10 15:45 - 00247296 ____A (Microsoft Corporation) C:\Windows\system32\webcheck.dll 2013-07-10 15:45 - 2013-07-10 15:45 - 00242200 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll 2013-07-10 15:45 - 2013-07-10 15:45 - 00235008 ____A (Microsoft Corporation) C:\Windows\system32\url.dll 2013-07-10 15:45 - 2013-07-10 15:45 - 00232960 ____A (Microsoft Corporation) C:\Windows\SysWOW64\url.dll 2013-07-10 15:45 - 2013-07-10 15:45 - 00226816 ____A (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll 2013-07-10 15:45 - 2013-07-10 15:45 - 00226304 ____A (Microsoft Corporation) C:\Windows\system32\elshyph.dll 2013-07-10 15:45 - 2013-07-10 15:45 - 00216064 ____A (Microsoft Corporation) C:\Windows\system32\msls31.dll 2013-07-10 15:45 - 2013-07-10 15:45 - 00204800 ____A (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll 2013-07-10 15:45 - 2013-07-10 15:45 - 00197120 ____A (Microsoft Corporation) C:\Windows\system32\msrating.dll 2013-07-10 15:45 - 2013-07-10 15:45 - 00185344 ____A (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll 2013-07-10 15:45 - 2013-07-10 15:45 - 00173568 ____A (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe 2013-07-10 15:45 - 2013-07-10 15:45 - 00167424 ____A (Microsoft Corporation) C:\Windows\system32\iexpress.exe 2013-07-10 15:45 - 2013-07-10 15:45 - 00163840 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll 2013-07-10 15:45 - 2013-07-10 15:45 - 00158720 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll 2013-07-10 15:45 - 2013-07-10 15:45 - 00150528 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe 2013-07-10 15:45 - 2013-07-10 15:45 - 00149504 ____A (Microsoft Corporation) C:\Windows\system32\occache.dll 2013-07-10 15:45 - 2013-07-10 15:45 - 00144896 ____A (Microsoft Corporation) C:\Windows\system32\wextract.exe 2013-07-10 15:45 - 2013-07-10 15:45 - 00138752 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe 2013-07-10 15:45 - 2013-07-10 15:45 - 00137216 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe 2013-07-10 15:45 - 2013-07-10 15:45 - 00136704 ____A (Microsoft Corporation) C:\Windows\system32\iesysprep.dll 2013-07-10 15:45 - 2013-07-10 15:45 - 00136192 ____A (Microsoft Corporation) C:\Windows\system32\iepeers.dll 2013-07-10 15:45 - 2013-07-10 15:45 - 00135680 ____A (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll 2013-07-10 15:45 - 2013-07-10 15:45 - 00125440 ____A (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll 2013-07-10 15:45 - 2013-07-10 15:45 - 00117248 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll 2013-07-10 15:45 - 2013-07-10 15:45 - 00110592 ____A (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll 2013-07-10 15:45 - 2013-07-10 15:45 - 00109056 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll 2013-07-10 15:45 - 2013-07-10 15:45 - 00102912 ____A (Microsoft Corporation) C:\Windows\system32\inseng.dll 2013-07-10 15:45 - 2013-07-10 15:45 - 00097280 ____A (Microsoft Corporation) C:\Windows\system32\mshtmled.dll 2013-07-10 15:45 - 2013-07-10 15:45 - 00092160 ____A (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe 2013-07-10 15:45 - 2013-07-10 15:45 - 00089600 ____A (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe 2013-07-10 15:45 - 2013-07-10 15:45 - 00082432 ____A (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll 2013-07-10 15:45 - 2013-07-10 15:45 - 00081408 ____A (Microsoft Corporation) C:\Windows\system32\icardie.dll 2013-07-10 15:45 - 2013-07-10 15:45 - 00079872 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll 2013-07-10 15:45 - 2013-07-10 15:45 - 00077312 ____A (Microsoft Corporation) C:\Windows\system32\tdc.ocx 2013-07-10 15:45 - 2013-07-10 15:45 - 00073728 ____A (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe 2013-07-10 15:45 - 2013-07-10 15:45 - 00071680 ____A (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe 2013-07-10 15:45 - 2013-07-10 15:45 - 00069120 ____A (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll 2013-07-10 15:45 - 2013-07-10 15:45 - 00067072 ____A (Microsoft Corporation) C:\Windows\system32\iesetup.dll 2013-07-10 15:45 - 2013-07-10 15:45 - 00062976 ____A (Microsoft Corporation) C:\Windows\system32\pngfilt.dll 2013-07-10 15:45 - 2013-07-10 15:45 - 00061952 ____A (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx 2013-07-10 15:45 - 2013-07-10 15:45 - 00061440 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll 2013-07-10 15:45 - 2013-07-10 15:45 - 00057344 ____A (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll 2013-07-10 15:45 - 2013-07-10 15:45 - 00053248 ____A (Microsoft Corporation) C:\Windows\system32\jsproxy.dll 2013-07-10 15:45 - 2013-07-10 15:45 - 00052224 ____A (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll 2013-07-10 15:45 - 2013-07-10 15:45 - 00051712 ____A (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2013-07-10 15:45 - 2013-07-10 15:45 - 00051200 ____A (Microsoft Corporation) C:\Windows\system32\imgutil.dll 2013-07-10 15:45 - 2013-07-10 15:45 - 00048640 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll 2013-07-10 15:45 - 2013-07-10 15:45 - 00048640 ____A (Microsoft Corporation) C:\Windows\system32\mshtmler.dll 2013-07-10 15:45 - 2013-07-10 15:45 - 00041984 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll 2013-07-10 15:45 - 2013-07-10 15:45 - 00039936 ____A (Microsoft Corporation) C:\Windows\system32\iernonce.dll 2013-07-10 15:45 - 2013-07-10 15:45 - 00039424 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll 2013-07-10 15:45 - 2013-07-10 15:45 - 00038400 ____A (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll 2013-07-10 15:45 - 2013-07-10 15:45 - 00033280 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll 2013-07-10 15:45 - 2013-07-10 15:45 - 00027648 ____A (Microsoft Corporation) C:\Windows\system32\licmgr10.dll 2013-07-10 15:45 - 2013-07-10 15:45 - 00023040 ____A (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll 2013-07-10 15:45 - 2013-07-10 15:45 - 00013824 ____A (Microsoft Corporation) C:\Windows\system32\mshta.exe 2013-07-10 15:45 - 2013-07-10 15:45 - 00012800 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe 2013-07-10 15:45 - 2013-07-10 15:45 - 00012800 ____A (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe 2013-07-10 15:45 - 2013-07-10 15:45 - 00011776 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe 2013-07-10 15:17 - 2009-07-14 06:45 - 02377552 ____A C:\Windows\system32\FNTCACHE.DAT 2013-07-10 15:16 - 2012-05-15 21:21 - 00000000 ____D C:\Program Files\Microsoft Silverlight 2013-07-10 15:16 - 2012-05-15 21:21 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight 2013-07-10 15:15 - 2012-02-21 17:18 - 00000000 ____D C:\Users\*******\AppData\Roaming\Mozilla 2013-07-10 15:15 - 2010-11-21 09:17 - 00000000 ____D C:\Program Files\Windows Journal 2013-07-10 15:15 - 2009-07-14 07:32 - 00000000 ____D C:\Program Files\Windows Defender 2013-07-10 15:15 - 2009-07-14 07:32 - 00000000 ____D C:\Program Files (x86)\Windows Defender 2013-07-10 15:14 - 2012-02-21 16:41 - 00000000 ____D C:\ProgramData\Microsoft Help 2013-07-10 15:13 - 2012-02-22 11:37 - 00001072 ____A C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4186067094-2021574243-1185577494-1000Core.job 2013-07-10 15:11 - 2013-07-09 14:43 - 00000134 ____A C:\Users\*******\Desktop\Internet Explorer-Problembehebung.url 2013-07-10 15:11 - 2012-02-21 13:03 - 78185248 ____A (Microsoft Corporation) C:\Windows\system32\MRT.exe 2013-07-10 14:14 - 2013-07-10 12:07 - 00082838 ____A C:\Users\*******\Desktop\eset.txt 2013-07-10 13:57 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\NDF 2013-07-10 13:50 - 2012-02-20 15:48 - 00000466 ____A C:\Windows\Tasks\SystemToolsDailyTest.job 2013-07-10 12:07 - 2013-07-10 12:07 - 00890988 ____A C:\Users\*******\Desktop\SecurityCheck.exe 2013-07-10 11:00 - 2012-02-20 15:48 - 00003508 ____A C:\Windows\System32\Tasks\SystemToolsDailyTest 2013-07-10 11:00 - 2012-02-20 15:48 - 00003448 ____A C:\Windows\System32\Tasks\PCDEventLauncher 2013-07-10 10:07 - 2012-12-05 12:14 - 00000377 ____A C:\ProgramData\LastUpdate.xml 2013-07-10 10:07 - 2012-12-05 12:14 - 00000207 ____A C:\Windows\WebUpdateSvc4.INI 2013-07-10 09:44 - 2013-07-10 09:43 - 02347384 ____A (ESET) C:\Users\*******\Desktop\esetsmartinstaller_enu.exe 2013-07-10 09:40 - 2012-02-21 18:12 - 00000000 ____D C:\Users\*******\AppData\Roaming\Skype 2013-07-09 21:48 - 2013-07-09 21:48 - 00001318 ____A C:\AdwCleaner[R3].txt 2013-07-09 21:18 - 2013-07-09 21:18 - 00000000 ____D C:\Windows\ERUNT 2013-07-09 21:17 - 2013-07-09 21:17 - 00552389 ____A (Oleg N. Scherbakov) C:\Users\*******\Desktop\JRT.exe 2013-07-09 21:15 - 2013-07-09 21:15 - 00001258 ____A C:\AdwCleaner[R2].txt 2013-07-09 21:09 - 2013-07-09 21:09 - 00006122 ____A C:\AdwCleaner[S1].txt 2013-07-09 21:09 - 2013-07-09 21:09 - 00005960 ____A C:\AdwCleaner[R1].txt 2013-07-09 21:07 - 2013-07-09 21:07 - 00650027 ____A C:\Users\*******\Desktop\adwcleaner.exe 2013-07-09 18:03 - 2013-07-09 18:03 - 00000000 ____D C:\FRST 2013-07-09 17:38 - 2013-07-09 15:38 - 00000000 ____D C:\Windows\pss 2013-07-09 17:38 - 2012-02-20 16:24 - 00000000 ___RD C:\Users\*******\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup 2013-07-09 17:33 - 2013-07-09 17:33 - 00037441 ____A C:\Users\*******\Desktop\logs.zip 2013-07-09 16:59 - 2013-07-09 16:59 - 00377856 ____A C:\Users\*******\Desktop\gmer_2.1.19163.exe 2013-07-09 16:55 - 2013-07-09 16:55 - 00000190 ____A C:\Users\*******\Desktop\sympton.txt 2013-07-09 16:55 - 2013-07-09 16:55 - 00000000 ____A C:\Users\*******\defogger_reenable 2013-07-09 16:55 - 2012-02-20 15:48 - 00000000 ____D C:\Users\******* 2013-07-09 16:54 - 2013-07-09 16:54 - 00050477 ____A C:\Users\*******\Desktop\Defogger.exe 2013-07-09 16:53 - 2013-07-09 16:50 - 00122754 ____A C:\Users\*******\Desktop\Extras.Txt 2013-07-09 16:44 - 2013-07-09 16:44 - 00602112 ____A (OldTimer Tools) C:\Users\*******\Desktop\OTL(1).exe 2013-07-09 16:44 - 2013-07-09 16:44 - 00000120 ____A C:\Users\*******\Desktop\WlA05T5E.htm 2013-07-09 16:43 - 2013-07-09 16:43 - 00602112 ____A (OldTimer Tools) C:\Users\*******\Downloads\OTL.exe 2013-07-09 16:33 - 2011-10-18 10:38 - 00000000 ____D C:\Program Files (x86)\Adobe 2013-07-09 16:31 - 2013-07-09 16:31 - 00003436 ____A C:\Windows\System32\Tasks\{94309A7D-5DD0-4419-9D1D-9404C5A6E646} 2013-07-09 16:31 - 2013-07-01 17:31 - 00000000 ____D C:\Program Files (x86)\VideoLAN 2013-07-09 16:30 - 2012-06-26 10:30 - 00000000 ____D C:\Program Files (x86)\Java 2013-07-09 15:53 - 2013-07-09 15:52 - 00000000 ____D C:\Users\*******\AppData\Local\Avg2013 2013-07-09 15:53 - 2013-07-08 15:31 - 00000000 ____D C:\ProgramData\MFAData 2013-07-09 12:39 - 2012-02-21 15:06 - 00001912 ____A C:\Windows\epplauncher.mif 2013-07-09 09:52 - 2012-12-05 11:59 - 00000000 ____D C:\Users\*******\AppData\Local\MobileAccess 2013-07-09 08:14 - 2013-07-09 08:14 - 00000000 ____D C:\Users\Default\AppData\Roaming\TuneUp Software 2013-07-09 08:14 - 2013-07-09 08:14 - 00000000 ____D C:\Users\Default User\AppData\Roaming\TuneUp Software 2013-07-09 01:57 - 2011-10-18 10:39 - 00004120 ____A C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA 2013-07-09 01:57 - 2011-10-18 10:39 - 00003868 ____A C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore 2013-07-08 19:34 - 2012-02-21 15:06 - 01599202 ____A C:\Windows\SysWOW64\PerfStringBackup.INI 2013-07-08 19:30 - 2013-07-08 19:30 - 00270214 ____A C:\Windows\msxml4-KB2758694-deu.LOG 2013-07-08 19:30 - 2013-05-13 12:19 - 00000000 ____D C:\Program Files (x86)\MSXML 4.0 2013-07-08 19:10 - 2013-07-08 18:52 - 518418786 ____A (WinFuture) C:\Users\*******\Downloads\WinFuture_7SP1_x64_UpdatePack_2.27_Juni_2013-Vollversion.exe 2013-07-08 17:31 - 2013-07-08 17:31 - 00000000 ____D C:\Users\test\AppData\Roaming\PwrMgr 2013-07-08 17:31 - 2013-07-08 17:30 - 00000000 ____D C:\Users\test\AppData\Local\LSC 2013-07-08 17:29 - 2013-07-08 17:20 - 00000000 ____D C:\Users\test\AppData\Roaming\Adobe 2013-07-08 17:20 - 2013-07-08 17:20 - 00120320 ____A C:\Users\test\AppData\Local\GDIPFONTCACHEV1.DAT 2013-07-08 17:20 - 2013-07-08 17:20 - 00000000 ____D C:\Users\test\Documents\Synaptics 2013-07-08 17:20 - 2013-07-08 17:20 - 00000000 ____D C:\Users\test\Documents\Bluetooth-Exchange-Ordner 2013-07-08 17:20 - 2013-07-08 17:20 - 00000000 ____D C:\Users\test\AppData\Roaming\Seagate 2013-07-08 17:20 - 2013-07-08 17:20 - 00000000 ____D C:\Users\test\AppData\Roaming\Memeo 2013-07-08 17:20 - 2013-07-08 17:20 - 00000000 ____D C:\Users\test\AppData\Roaming\LSC 2013-07-08 17:20 - 2013-07-08 17:20 - 00000000 ____D C:\Users\test\AppData\Roaming\Logitech 2013-07-08 17:20 - 2013-07-08 17:20 - 00000000 ____D C:\Users\test\AppData\Roaming\Lexware 2013-07-08 17:20 - 2013-07-08 17:20 - 00000000 ____D C:\Users\test\AppData\Roaming\Leadertech 2013-07-08 17:20 - 2013-07-08 17:20 - 00000000 ____D C:\Users\test\AppData\Roaming\Apple Computer 2013-07-08 17:20 - 2013-07-08 17:20 - 00000000 ____D C:\Users\test\AppData\Local\Power2Go 2013-07-08 17:20 - 2013-07-08 17:20 - 00000000 ____D C:\Users\test\AppData\Local\MobileAccess 2013-07-08 17:20 - 2013-07-08 17:20 - 00000000 ____D C:\Users\test\AppData\Local\Lexware 2013-07-08 17:20 - 2013-07-08 17:20 - 00000000 ____D C:\Users\test\AppData\Local\Lenovo 2013-07-08 17:20 - 2013-07-08 17:20 - 00000000 ____D C:\Users\test\AppData\Local\Broadcom 2013-07-08 17:20 - 2013-07-08 17:20 - 00000000 ____D C:\Users\test\AppData\Local\Adobe 2013-07-08 17:20 - 2013-07-08 17:19 - 00001194 ____A C:\Users\test\Desktop\Blu-ray Disc Suite.lnk 2013-07-08 17:20 - 2013-07-08 17:19 - 00000000 ____D C:\Users\test 2013-07-08 17:19 - 2013-07-08 17:19 - 00000020 __ASH C:\Users\test\ntuser.ini 2013-07-08 17:19 - 2013-07-08 17:19 - 00000000 __SHD C:\Users\test\Vorlagen 2013-07-08 17:19 - 2013-07-08 17:19 - 00000000 __SHD C:\Users\test\Startmenü 2013-07-08 17:19 - 2013-07-08 17:19 - 00000000 __SHD C:\Users\test\Netzwerkumgebung 2013-07-08 17:19 - 2013-07-08 17:19 - 00000000 __SHD C:\Users\test\Lokale Einstellungen 2013-07-08 17:19 - 2013-07-08 17:19 - 00000000 __SHD C:\Users\test\Eigene Dateien 2013-07-08 17:19 - 2013-07-08 17:19 - 00000000 __SHD C:\Users\test\Druckumgebung 2013-07-08 17:19 - 2013-07-08 17:19 - 00000000 __SHD C:\Users\test\Documents\Eigene Musik 2013-07-08 17:19 - 2013-07-08 17:19 - 00000000 __SHD C:\Users\test\Documents\Eigene Bilder 2013-07-08 17:19 - 2013-07-08 17:19 - 00000000 __SHD C:\Users\test\AppData\Local\Verlauf 2013-07-08 17:19 - 2013-07-08 17:19 - 00000000 __SHD C:\Users\test\AppData\Local\Anwendungsdaten 2013-07-08 17:19 - 2013-07-08 17:19 - 00000000 __SHD C:\Users\test\Anwendungsdaten 2013-07-08 17:19 - 2013-07-08 17:19 - 00000000 ____D C:\Users\test\AppData\Roaming\Intel 2013-07-08 17:13 - 2013-07-08 17:13 - 00861184 ____A (Microsoft Corporation) C:\Users\*******\Downloads\IE10-Windows6.1-de-de.exe 2013-07-08 16:09 - 2013-07-08 16:09 - 00003230 ____A C:\Windows\System32\Tasks\SidebarExecute 2013-07-08 16:09 - 2013-07-08 16:09 - 00000000 ____D C:\Users\*******\AppData\Roaming\TuneUp Software 2013-07-08 15:31 - 2013-07-08 15:31 - 00000000 ____D C:\Users\*******\AppData\Local\MFAData 2013-07-08 15:28 - 2013-07-08 14:56 - 159486920 ____A (AVG Technologies) C:\Users\*******\Downloads\avg_ipw_x64_all_2013_3345a6382(1).exe 2013-07-08 15:08 - 2012-02-22 11:37 - 00004100 ____A C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-4186067094-2021574243-1185577494-1000UA 2013-07-08 15:08 - 2012-02-22 11:37 - 00003704 ____A C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-4186067094-2021574243-1185577494-1000Core 2013-07-08 13:24 - 2012-02-23 21:08 - 00000600 ____A C:\Users\*******\AppData\Roaming\winscp.rnd 2013-07-08 13:13 - 2012-05-07 20:33 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2013-07-08 12:17 - 2013-07-08 10:54 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox 2013-07-01 18:28 - 2013-07-01 18:28 - 00000000 ____D C:\Users\*******\AppData\Roaming\MediaConfiguration 2013-07-01 18:26 - 2013-07-01 18:26 - 00000000 ____D C:\Users\*******\AppData\Roaming\Media Control 2013-07-01 18:25 - 2013-07-01 18:25 - 03050508 ____A (Damien Bain-Thouverez ) C:\Users\*******\Downloads\MediaControl_6.0.15.exe 2013-07-01 18:07 - 2013-07-01 18:07 - 00000000 ____D C:\Program Files (x86)\Shark007 2013-07-01 18:05 - 2013-07-01 18:05 - 00003406 ____A C:\Windows\System32\Tasks\EPUpdater 2013-07-01 18:04 - 2013-07-01 18:03 - 29160522 ____A C:\Users\*******\Downloads\32bit_Advanced_v418.exe 2013-07-01 17:50 - 2013-07-01 17:47 - 00000000 ____D C:\Users\*******\AppData\Roaming\vlc 2013-07-01 17:46 - 2013-07-01 17:46 - 00003584 ____A C:\Users\*******\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini 2013-07-01 17:34 - 2013-07-01 17:33 - 18422493 ____A C:\Users\*******\Downloads\Advanced_x64Components_v418.exe 2013-07-01 17:31 - 2013-07-01 17:29 - 22937227 ____A C:\Users\*******\Downloads\vlc-2.0.7-win32.exe 2013-07-01 17:30 - 2013-07-01 17:29 - 14989539 ____A C:\Users\*******\Downloads\vlc-2.0.7-win32.exe.part 2013-07-01 16:34 - 2012-06-26 10:30 - 00867240 ____A (Oracle Corporation) C:\Windows\SysWOW64\npdeployJava1.dll 2013-07-01 16:34 - 2012-02-21 19:34 - 00789416 ____A (Oracle Corporation) C:\Windows\SysWOW64\deployJava1.dll 2013-06-28 10:45 - 2012-02-20 15:51 - 00120320 ____A C:\Users\*******\AppData\Local\GDIPFONTCACHEV1.DAT 2013-06-28 10:45 - 2012-02-20 15:48 - 00000528 ____A C:\Windows\Tasks\PCDoctorBackgroundMonitorTask.job 2013-06-28 03:36 - 2013-06-28 02:06 - 00000528 ____A C:\Windows\Tasks\PCDoctorBackgroundMonitorTask-Delay.job 2013-06-28 02:07 - 2012-11-22 14:58 - 00000000 ____D C:\ldiag 2013-06-28 02:06 - 2013-06-28 02:06 - 00003378 ____A C:\Windows\System32\Tasks\PCDoctorBackgroundMonitorTask-Delay 2013-06-28 02:06 - 2012-02-20 15:48 - 00004248 ____A C:\Windows\System32\Tasks\PCDoctorBackgroundMonitorTask 2013-06-18 12:07 - 2012-02-21 21:45 - 00000000 ____D C:\Users\*******\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox 2013-06-18 11:39 - 2012-02-23 21:07 - 00000600 ____A C:\Users\*******\AppData\Local\PUTTY.RND 2013-06-13 12:04 - 2012-04-08 09:53 - 00692104 ____A (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe 2013-06-13 12:04 - 2012-04-08 09:53 - 00003822 ____A C:\Windows\System32\Tasks\Adobe Flash Player Updater 2013-06-13 12:04 - 2012-02-21 19:11 - 00071048 ____A (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl ==================== Bamital & volsnap Check ================= C:\Windows\System32\winlogon.exe => MD5 is legit C:\Windows\System32\wininit.exe => MD5 is legit C:\Windows\SysWOW64\wininit.exe => MD5 is legit C:\Windows\explorer.exe => MD5 is legit C:\Windows\SysWOW64\explorer.exe => MD5 is legit C:\Windows\System32\svchost.exe => MD5 is legit C:\Windows\SysWOW64\svchost.exe => MD5 is legit C:\Windows\System32\services.exe => MD5 is legit C:\Windows\System32\User32.dll => MD5 is legit C:\Windows\SysWOW64\User32.dll => MD5 is legit C:\Windows\System32\userinit.exe => MD5 is legit C:\Windows\SysWOW64\userinit.exe => MD5 is legit C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit LastRegBack: 2013-07-08 19:59 ==================== End Of Log ============================ Addition.txt: Code:
ATTFilter Additional scan result of Farbar Recovery Scan Tool (x64) Version: 10-07-2013 04 Ran by ******* at 2013-07-11 10:04:14 Running from C:\Users\*******\Desktop Boot Mode: Normal ========================================================== ==================== Installed Programs ======================= ACDSee Foto-Manager 12 (x32 Version: 12.0.344) Adobe Acrobat 8 Professional - English, Français, Deutsch (x32 Version: 8.1.0) Adobe After Effects CS3 Presets (x32 Version: 8) Adobe Anchor Service CS3 (x32 Version: 1.0) Adobe Asset Services CS3 (x32 Version: 3) Adobe Bridge CS3 (x32 Version: 2) Adobe Bridge Start Meeting (x32 Version: 1.0) Adobe BridgeTalk Plugin CS3 (x32 Version: 1.0) Adobe Camera Raw 4.0 (x32 Version: 4.0) Adobe CMaps (x32 Version: 1.0) Adobe Color - Photoshop Specific (x32 Version: 1.0) Adobe Color Common Settings (x32 Version: 1.0) Adobe Color EU Recommended Settings (x32 Version: 1.0) Adobe Color JA Extra Settings (x32 Version: 1.0) Adobe Color NA Extra Settings (x32 Version: 1.0) Adobe Creative Suite 3 Master Collection (x32 Version: 1.0) Adobe Creative Suite 3 Master Collection hinzufügen oder entfernen (x32 Version: 1.0) Adobe Default Language CS3 (x32 Version: 1.0) Adobe Device Central CS3 (x32 Version: 1.0) Adobe Dreamweaver CS3 (x32 Version: 9) Adobe ExtendScript Toolkit 2 (x32 Version: 2.0) Adobe Extension Manager CS3 (x32 Version: 1.8) Adobe Flash CS3 (x32 Version: 9.0) Adobe Flash Player 11 Plugin (x32 Version: 11.7.700.224) Adobe Fonts All (x32 Version: 1.0) Adobe Help Viewer CS3 (x32 Version: 1) Adobe Illustrator CS3 (x32 Version: 13.0) Adobe InDesign CS3 (x32 Version: 5.0) Adobe InDesign CS3 Icon Handler (x32 Version: 5.0) Adobe Linguistics CS3 (x32 Version: 3.0.0) Adobe MotionPicture Color Files (x32 Version: 1.0) Adobe PDF Library Files (x32 Version: 8.0) Adobe Photoshop CS3 (x32 Version: 10) Adobe Reader XI (11.0.03) - Deutsch (x32 Version: 11.0.03) Adobe Setup (x32 Version: 1.0) Adobe SING CS3 (x32 Version: 0.1) Adobe Stock Photos CS3 (x32 Version: 1.5) Adobe Type Support (x32 Version: 1.0) Adobe Update Manager CS3 (x32 Version: 5.1.0) Adobe Version Cue CS3 Client (x32 Version: 3) Adobe Video Profiles (x32 Version: 1.0) Adobe WAS CS3 (x32 Version: 1.0) Adobe WinSoft Linguistics Plugin (x32 Version: 1.0) Adobe XMP DVA Panels CS3 (x32 Version: 1.0) Adobe XMP Panels CS3 (x32 Version: 1.0) AHV content for Acrobat and Flash (x32 Version: 1) allTunes (x32 Version: Altova XMLSpy 2005 Enterprise Edition (x32 Version: 7.30) Anzeige am Bildschirm (Version: 6.67.10) Apple Application Support (x32 Version: 2.1.6) Apple Mobile Device Support (Version: Apple Software Update (x32 Version: AutoHotkey (x32 Version: Avery Wizard 4.0 (x32 Version: 4.0.201) AX88772A (x32 Version: 1.05) Axure RP Pro 6 (x32 Version: Bonjour (Version: BUFFALO TurboUSB for FLASH/HDD (x32) CDDRV_Installer (Version: 4.60) Conexant 20672 SmartAudio HD (Version: Create Recovery Media (x32 Version: CyberLink BD_3D Advisor 2.0 (x32 Version: 2.0.3928) CyberLink Blu-ray Disc Suite (x32 Version: 7.0.3825) CyberLink MediaShow (x32 Version: 5.1.2023a) CyberLink Power2Go (x32 Version: 6.1.4813b) CyberLink PowerBackup (x32 Version: 2.5.8720) CyberLink PowerBackup (x32 Version: 2.6.1018) CyberLink PowerDirector (x32 Version: 8.0.4905d) CyberLink PowerDVD 10 (x32 Version: 10.0.4002.52) CyberLink PowerDVD 9 (x32 Version: 9.0.3530.52) CyberLink PowerProducer (x32 Version: D3DX10 (x32 Version: 15.4.2368.0902) Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition (x32) DisplayLink Core Software (Version: 5.6.30272.0) Dolby Home Theater v4 (x32 Version: 7.2.7000.4) dows-Treiberpaket - Intel System (09/10/2010 (Version: 09/10/2010 Dropbox (HKCU Version: 2.0.22) DVBLink Network Client (x32 Version: 4.1.0000) ElsterFormular (x32 Version: Energie-Manager (x32 Version: 6.53) erLT (x32 Version: 1.20.0137) Explorer Lx Vollversion (x32 Version: 3.4.0) Eye-Fi Center 3.4 (x32 Version: 3.4.26) Gajim (x32 Version: 0.14.4) Google Chrome (x32 Version: 12.0.742.112) Google Earth Plug-in (x32 Version: Google Talk Plugin (x32 Version: Google Update Helper (x32 Version: Integrated Camera Driver Installer Package Ver. (x32 Version: Integrated Camera TWAIN (x32 Version: Intel PROSet Wireless Intel(R) Control Center (x32 Version: Intel(R) Identity Protection Technology (x32 Version: Intel(R) Management Engine Components (x32 Version: Intel(R) Network Connections Drivers (Version: 16.8) Intel(R) Processor Graphics (x32 Version: Intel(R) PROSet/Wireless for Bluetooth(R) + High Speed (Version: Intel(R) SDK for OpenCL - CPU Only Runtime Package (x32 Version: Intel(R) WiDi (Version: Intel(R) Wireless Display Intel® PROSet/Wireless WiFi-Software (Version: 15.03.1000.1637) iTunes (Version: JGsoft RegexBuddy 2.4.3 (x32 Version: 2.4.3) Junk Mail filter update (x32 Version: 15.4.3502.0922) KhalInstallWrapper (Version: 2.00.0000) Last.fm (x32) Lenovo Auto Scroll Utility (Version: 1.11) Lenovo Display Adapter (Version: 5.6.30320.0) Lenovo Mobile Access (x32 Version: 3.2.30417.1301) Lenovo Mobile Broadband Activation (x32 Version: 4.2.1003.00) Lenovo Patch Utility (x32 Version: Lenovo Patch Utility 64 bit (Version: Lenovo Power Management Driver (Version: Lenovo Registration (x32 Version: 1.0.4) Lenovo Screen Reading Optimizer (x32 Version: 1.16) Lenovo Solution Center (Version: Lenovo System Interface Driver (Version: 1.05) Lenovo System Update (x32 Version: 5.02.0011) Lenovo ThinkVantage Toolbox (Version: 6.0.5849.23) Lenovo USB 2.0 Port Replicator with Digital Video (x32 Version: 1.05) Lenovo User Guide (x32 Version: 1.0.0008.00) Lenovo Warranty Information (x32 Version: 1.0.0005.00) Lenovo Welcome (x32 Version: Lexware Elster (x32 Version: Lexware financial office premium 2013 (x32 Version: Lexware Info Service (x32 Version: Lion 3.1.0 (x32) Logitech SetPoint (x32 Version: 4.80) Lookeen Version (x32 Version: Memeo AutoSync (x32) Memeo Instant Backup (x32 Version: Mesh Runtime (x32 Version: 15.4.5722.2) Message Center Plus (x32 Version: 2.0.0012.00) Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319) Microsoft .NET Framework 4 Client Profile DEU Language Pack (Version: 4.0.30319) Microsoft .NET Framework 4 Extended (Version: 4.0.30319) Microsoft .NET Framework 4 Extended DEU Language Pack (Version: 4.0.30319) Microsoft Antimalware Service DE-DE Language Pack (Version: 3.0.8402.2) Microsoft Application Error Reporting (Version: 12.0.6015.5000) Microsoft Office 2010 Language Pack Service Pack 1 (SP1) (x32) Microsoft Office 2010 Service Pack 1 (SP1) (x32) Microsoft Office Access MUI (German) 2010 (x32 Version: 14.0.6029.1000) Microsoft Office Excel MUI (German) 2010 (x32 Version: 14.0.6029.1000) Microsoft Office Groove MUI (German) 2010 (x32 Version: 14.0.6029.1000) Microsoft Office InfoPath MUI (German) 2010 (x32 Version: 14.0.6029.1000) Microsoft Office Office 64-bit Components 2010 (Version: 14.0.6029.1000) Microsoft Office OneNote MUI (German) 2010 (x32 Version: 14.0.6029.1000) Microsoft Office Outlook MUI (German) 2010 (x32 Version: 14.0.6029.1000) Microsoft Office PowerPoint MUI (German) 2010 (x32 Version: 14.0.6029.1000) Microsoft Office Professional Plus 2010 (x32 Version: 14.0.6029.1000) Microsoft Office Proof (English) 2010 (x32 Version: 14.0.6029.1000) Microsoft Office Proof (French) 2010 (x32 Version: 14.0.6029.1000) Microsoft Office Proof (German) 2010 (x32 Version: 14.0.6029.1000) Microsoft Office Proof (Italian) 2010 (x32 Version: 14.0.6029.1000) Microsoft Office Proofing (German) 2010 (x32 Version: 14.0.6029.1000) Microsoft Office Publisher MUI (German) 2010 (x32 Version: 14.0.6029.1000) Microsoft Office Shared 64-bit MUI (German) 2010 (Version: 14.0.6029.1000) Microsoft Office Shared MUI (German) 2010 (x32 Version: 14.0.6029.1000) Microsoft Office Visio 2010 (x32 Version: 14.0.6029.1000) Microsoft Office Visio MUI (German) 2010 (x32 Version: 14.0.6029.1000) Microsoft Office Word MUI (German) 2010 (x32 Version: 14.0.6029.1000) Microsoft Security Client DE-DE Language Pack (Version: 2.1.1116.0) Microsoft Silverlight (Version: 5.1.20513.0) Microsoft SQL Server 2005 Compact Edition [ENU] (x32 Version: 3.1.0000) Microsoft Visio 2010 Service Pack 1 (SP1) (x32) Microsoft Visio Premium 2010 (x32 Version: 14.0.6029.1000) Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.56336) Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.59193) Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001) Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.50727.42) Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (x32 Version: 9.0.30729) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (Version: 10.0.30319) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219) Mobile Broadband Drivers (x32 Version: Mozilla Firefox 22.0 (x86 de) (x32 Version: 22.0) Mozilla Maintenance Service (x32 Version: 22.0) MSVCRT (x32 Version: 15.4.2862.0708) MSVCRT_amd64 (x32 Version: 15.4.2862.0708) MSXML 4.0 SP2 (KB954430) (x32 Version: 4.20.9870.0) MSXML 4.0 SP2 (KB973688) (x32 Version: 4.20.9876.0) MSXML 4.0 SP3 Parser (KB2758694) (x32 Version: 4.30.2117.0) MySQL Workbench 5.2 CE (x32 Version: 5.2.37) Ninja 4.9.6 (x32 Version: 4) OdbcLx 3.4 (x32 Version: 3.4.0) OpenVPN 2.1.3 (x32 Version: 2.1.3) PDF Settings (x32 Version: 1.0) Picasa 3 (x32 Version: 3.8) PlayReady PC Runtime amd64 (Version: 1.3.0) PuTTY version 0.62 (x32 Version: 0.62) RapidBoot (Version: 1.10) Registry Patch to Enable Maximum Power Saving on WiFi Adapters for Windows 7 (Version: 1.00) Renesas Electronics USB 3.0 Host Controller Driver (x32 Version: Rescue and Recovery (x32 Version: 4.31.0010.00) RICOH_Media_Driver_v2.12.18.01 (x32 Version: Seagate Dashboard (x32 Version: Skype Click to Call (x32 Version: 5.10.9560) Skype™ 5.10 (x32 Version: 5.10.116) TeamViewer 8 (x32 Version: 8.0.19045) TextPad 5 (x32 Version: 5.3.1) ThinkPad Bluetooth with Enhanced Data Rate Software (Version: ThinkPad UltraNav Driver (Version: ThinkVantage Access Connections (x32 Version: 6.01) ThinkVantage AutoLock (Version: 1.06) ThinkVantage Communications Utility (Version: ThinkVantage Fingerprint Software (Version: ThinkVantage GPS (x32 Version: 2.80) ThinkVantage System für aktiven Festplattenschutz (Version: Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (x32 Version: 1) Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (x32 Version: 1) Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (x32 Version: 1) Update for Microsoft .NET Framework 4 Client Profile (KB2836939) (x32 Version: 1) Update for Microsoft .NET Framework 4 Extended (KB2468871) (x32 Version: 1) Update for Microsoft .NET Framework 4 Extended (KB2533523) (x32 Version: 1) Update for Microsoft .NET Framework 4 Extended (KB2600217) (x32 Version: 1) Update for Microsoft .NET Framework 4 Extended (KB2836939) (x32 Version: 1) Update for Microsoft Office 2010 (KB2494150) (x32) Update for Microsoft Office 2010 (KB2553065) (x32) Update for Microsoft Office 2010 (KB2553092) (x32) Update for Microsoft Office 2010 (KB2553181) 32-Bit Edition (x32) Update for Microsoft Office 2010 (KB2553267) 32-Bit Edition (x32) Update for Microsoft Office 2010 (KB2553270) 32-Bit Edition (x32) Update for Microsoft Office 2010 (KB2553310) 32-Bit Edition (x32) Update for Microsoft Office 2010 (KB2553378) 32-Bit Edition (x32) Update for Microsoft Office 2010 (KB2566458) (x32) Update for Microsoft Office 2010 (KB2596964) 32-Bit Edition (x32) Update for Microsoft Office 2010 (KB2598242) 32-Bit Edition (x32) Update for Microsoft Office 2010 (KB2687503) 32-Bit Edition (x32) Update for Microsoft Office 2010 (KB2687509) 32-Bit Edition (x32) Update for Microsoft Office 2010 (KB2760631) 32-Bit Edition (x32) Update for Microsoft Office 2010 (KB2767886) 32-Bit Edition (x32) Update for Microsoft OneNote 2010 (KB2553290) 32-Bit Edition (x32) Update for Microsoft Outlook 2010 (KB2597090) 32-Bit Edition (x32) Update for Microsoft Outlook 2010 (KB2687623) 32-Bit Edition (x32) Update for Microsoft Outlook Social Connector 2010 (KB2553406) 32-Bit Edition (x32) Update for Microsoft PowerPoint 2010 (KB2598240) 32-Bit Edition (x32) Update for Microsoft SharePoint Workspace 2010 (KB2589371) 32-Bit Edition (x32) USB PnP Sound Device VC80CRTRedist - 8.0.50727.6195 (x32 Version: 1.2.0) VirtualCloneDrive (x32) Visual Studio 2010 x64 Redistributables (Version: vtiger CRM Outlook Plug-in 5.0.4 (x32) Windows Live Communications Platform (x32 Version: 15.4.3502.0922) Windows Live Essentials (x32 Version: 15.4.3502.0922) Windows Live Essentials (x32 Version: 15.4.3508.1109) Windows Live Fotogalerie (x32 Version: 15.4.3502.0922) Windows Live ID Sign-in Assistant (Version: 7.250.4225.0) Windows Live Installer (x32 Version: 15.4.3502.0922) Windows Live Language Selector (Version: 15.4.3508.1109) Windows Live Mail (x32 Version: 15.4.3502.0922) Windows Live Mesh (x32 Version: 15.4.3502.0922) Windows Live Mesh ActiveX control for remote connections (x32 Version: 15.4.5722.2) Windows Live Messenger (x32 Version: 15.4.3502.0922) Windows Live MIME IFilter (Version: 15.4.3502.0922) Windows Live Movie Maker (x32 Version: 15.4.3502.0922) Windows Live Photo Common (x32 Version: 15.4.3502.0922) Windows Live Photo Gallery (x32 Version: 15.4.3502.0922) Windows Live PIMT Platform (x32 Version: 15.4.3508.1109) Windows Live Remote Client (Version: 15.4.5722.2) Windows Live Remote Client Resources (Version: 15.4.5722.2) Windows Live Remote Service (Version: 15.4.5722.2) Windows Live Remote Service Resources (Version: 15.4.5722.2) Windows Live SOXE (x32 Version: 15.4.3502.0922) Windows Live SOXE Definitions (x32 Version: 15.4.3502.0922) Windows Live UX Platform (x32 Version: 15.4.3502.0922) Windows Live UX Platform Language Pack (x32 Version: 15.4.3508.1109) Windows Live Writer (x32 Version: 15.4.3502.0922) Windows Live Writer Resources (x32 Version: 15.4.3502.0922) Windows-Treiberpaket - Intel (e1cexpress) Net (12/21/2010 (Version: 12/21/2010 Windows-Treiberpaket - Intel (MEIx64) System (10/19/2010 (Version: 10/19/2010 Windows-Treiberpaket - Intel System (11/20/2010 (Version: 11/20/2010 Windows-Treiberpaket - Intel USB (12/21/2010 (Version: 12/21/2010 Windows-Treiberpaket - Lenovo (01/19/2011 (Version: 01/19/2011 Windows-Treiberpaket - Synaptics (SynTP) Mouse (03/24/2011 (Version: 03/24/2011 WinRAR (x32) WinSCP 4.3.7 (x32 Version: 4.3.7) ==================== Restore Points ========================= 09-07-2013 11:11:48 Windows Modules Installer 09-07-2013 12:36:06 Windows Modules Installer 09-07-2013 13:03:51 Windows Update 09-07-2013 13:52:23 Removed AVG 2013 09-07-2013 13:52:52 Removed AVG 2013 09-07-2013 14:30:04 Removed Java 7 Update 25 10-07-2013 12:51:02 Windows Modules Installer 10-07-2013 13:04:09 Windows Update 10-07-2013 13:44:43 Windows Update 10-07-2013 15:00:38 Removed Shark007 Advanced Codecs. 10-07-2013 15:06:31 Windows Modules Installer 10-07-2013 15:14:04 Windows Modules Installer ==================== Hosts content: ========================== 2009-07-14 04:34 - 2009-06-10 23:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts ==================== Scheduled Tasks (whitelisted) ============= Task: {00713CFB-3A50-4B0C-BB3F-7BC0D8524A84} - System32\Tasks\Lenovo\SROptimizer => %TRPATH%\SRORest.exe No File Task: {054149D2-2FD9-462A-8859-8CFD8DC4EAA8} - System32\Tasks\OpenVPN => C:\Program Files (x86)\OpenVPN\bin\openvpn-gui-1.0.3.exe [2009-11-20] () Task: {1E60361D-A9DE-49EE-8D76-86936634E2E1} - System32\Tasks\TVT\TVSUUpdateTask => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe [2013-04-11] () Task: {20EEBC53-E413-4A81-B81E-02FF2BD50602} - System32\Tasks\Lenovo\Lenovo Solution Center Launcher => C:\Program Files\lenovo\lenovo solution center\lsc.exe [2012-05-16] () Task: {336A6F38-316A-444C-AE70-64B601EAE457} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\Windows\ehome\mcupdate.exe [2010-11-21] (Microsoft Corporation) Task: {42764682-1D7D-4D6A-98E2-40C59E864DE8} - System32\Tasks\TVT\UpdateRnR => %TVTCOMMON%\Scheduler\tvtsetsched.exe No File Task: {4549C22C-327E-43C2-96BF-385DA8016E49} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-06-13] (Adobe Systems Incorporated) Task: {45E20089-2980-4FD7-8484-DD513DC8F979} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program => C:\Program Files\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe [2012-05-16] (Lenovo) Task: {4D1E4553-5838-4142-B22F-2195CC018F43} - System32\Tasks\TVT\LaunchRnR => %RR%\rrcmd.exe No File Task: {5030B593-053A-49BE-9E45-3EE9C15C8147} - System32\Tasks\PCDEventLauncher => C:\Program Files\PC-Doctor\sessionchecker.exe [2011-06-27] (PC-Doctor, Inc.) Task: {52407D94-E571-4629-A38F-1F7C45C51205} - System32\Tasks\Lenovo\LSC\LSCHardwareScan => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe [2012-05-16] () Task: {63EA78BF-EB01-4DE1-BDBD-82BE40D1B688} - System32\Tasks\PCDoctorBackgroundMonitorTask-Delay => C:\Program Files\PC-Doctor\uaclauncher.exe [2011-06-27] (PC-Doctor, Inc.) Task: {73267756-9306-4FCB-9A44-81687E4D9938} - System32\Tasks\TVT\ChangePWD => %RR%\rrcmd.exe No File Task: {7A9B897D-C903-4196-B34A-7C6A004824B5} - System32\Tasks\SystemToolsDailyTest => C:\Program Files\PC-Doctor\uaclauncher.exe [2011-06-27] (PC-Doctor, Inc.) Task: {7E9B2E12-3727-4035-801F-550734B02A7A} - System32\Tasks\Microsoft\Windows Defender\MP Scheduled Scan => C:\program files\windows defender\MpCmdRun.exe [2009-07-14] (Microsoft Corporation) Task: {8AA7C951-0151-44AA-B181-6F14BD1FD8A7} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-4186067094-2021574243-1185577494-1000Core => C:\Users\*******\AppData\Local\Google\Update\GoogleUpdate.exe [2012-02-22] (Google Inc.) Task: {8EFB4469-6B5F-4B69-8B4E-DE1258FC916E} - System32\Tasks\MCP => C:\Program Files (x86)\LENOVO\Message Center Plus\MCPLaunch.exe [2009-05-27] () Task: {9A88F3D2-4B95-4F51-A25A-695FDCC6F7E8} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task Task: {9AD49CC5-57B7-4A41-A1F1-19673577EB95} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-10-18] (Google Inc.) Task: {AA30FAE9-0B46-4BFB-8A97-C0A72D1A5F34} - System32\Tasks\PCDoctorBackgroundMonitorTask => C:\Program Files\PC-Doctor\uaclauncher.exe [2011-06-27] (PC-Doctor, Inc.) Task: {AD8A2E7C-6519-4533-9344-30A5B1CA1D2E} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-10-18] (Google Inc.) Task: {B2A6A355-BB70-407F-B67C-51E4C310229A} - System32\Tasks\Microsoft\Windows\WindowsBackup\Windows Backup Monitor => C:\Windows\system32\sdclt.exe [2010-11-21] (Microsoft Corporation) Task: {B41B7871-275D-430E-98D7-1DBE91B89D77} - System32\Tasks\EPUpdater => C:\Users\*******\AppData\Roaming\BABSOL~1\Shared\BabMaint.exe No File Task: {B640A734-04DB-46FF-8DE7-73CAA7BBA63F} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-4186067094-2021574243-1185577494-1000UA => C:\Users\*******\AppData\Local\Google\Update\GoogleUpdate.exe [2012-02-22] (Google Inc.) Task: {CC4BDFE8-F53D-4FCA-AD0B-990B95C07506} - System32\Tasks\alltunes => C:\Program No File Task: {D97C9E93-5B1C-4B53-86B4-602809F4B7CE} - System32\Tasks\vpn\VPNLogin => C:\Users\*******\Documents\vpnlogin.exe [2011-05-04] () Task: {F285462A-C723-4B5B-B878-75A11F23A82E} - System32\Tasks\Microsoft\Windows\MobilePC\DisplayLink TMM Control Task: {F2B7A8EA-4967-4595-9E33-BD9297370B6C} - System32\Tasks\Microsoft\Windows\MUI\Lpksetup => C:\Windows\System32\lpksetup.exe [2010-11-21] (Microsoft Corporation) Task: {F4964A2D-EDD7-4F2B-A566-DF1884629C5B} - System32\Tasks\Microsoft\Windows\WindowsBackup\AutomaticBackup => C:\Windows\system32\rundll32.exe [2009-07-14] (Microsoft Corporation) Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4186067094-2021574243-1185577494-1000Core.job => C:\Users\*******\AppData\Local\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4186067094-2021574243-1185577494-1000UA.job => C:\Users\*******\AppData\Local\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\PCDoctorBackgroundMonitorTask-Delay.job => C:\Program Files\PC-Doctor\uaclauncher.exe Task: C:\Windows\Tasks\PCDoctorBackgroundMonitorTask.job => C:\Program Files\PC-Doctor\uaclauncher.exe Task: C:\Windows\Tasks\SystemToolsDailyTest.job => C:\Program Files\PC-Doctor\uaclauncher.exe ==================== Faulty Device Manager Devices ============= ==================== Event log errors: ========================= Application errors: ================== Error: (07/11/2013 10:00:04 AM) (Source: Application Error) (User: ) Description: Name der fehlerhaften Anwendung: IEXPLORE.EXE, Version: 10.0.9200.16635, Zeitstempel: 0x51b7a921 Name des fehlerhaften Moduls: unknown, Version:, Zeitstempel: 0x00000000 Ausnahmecode: 0xc0000005 Fehleroffset: 0x72bec9f1 ID des fehlerhaften Prozesses: 0x19f8 Startzeit der fehlerhaften Anwendung: 0xIEXPLORE.EXE0 Pfad der fehlerhaften Anwendung: IEXPLORE.EXE1 Pfad des fehlerhaften Moduls: IEXPLORE.EXE2 Berichtskennung: IEXPLORE.EXE3 Error: (07/11/2013 10:00:02 AM) (Source: Application Error) (User: ) Description: Name der fehlerhaften Anwendung: IEXPLORE.EXE, Version: 10.0.9200.16635, Zeitstempel: 0x51b7a921 Name des fehlerhaften Moduls: unknown, Version:, Zeitstempel: 0x00000000 Ausnahmecode: 0xc0000005 Fehleroffset: 0x72bec9f1 ID des fehlerhaften Prozesses: 0x2188 Startzeit der fehlerhaften Anwendung: 0xIEXPLORE.EXE0 Pfad der fehlerhaften Anwendung: IEXPLORE.EXE1 Pfad des fehlerhaften Moduls: IEXPLORE.EXE2 Berichtskennung: IEXPLORE.EXE3 Error: (07/11/2013 10:00:01 AM) (Source: Application Error) (User: ) Description: Name der fehlerhaften Anwendung: IEXPLORE.EXE, Version: 10.0.9200.16635, Zeitstempel: 0x51b7a921 Name des fehlerhaften Moduls: unknown, Version:, Zeitstempel: 0x00000000 Ausnahmecode: 0xc0000005 Fehleroffset: 0x72bec9f1 ID des fehlerhaften Prozesses: 0xd80 Startzeit der fehlerhaften Anwendung: 0xIEXPLORE.EXE0 Pfad der fehlerhaften Anwendung: IEXPLORE.EXE1 Pfad des fehlerhaften Moduls: IEXPLORE.EXE2 Berichtskennung: IEXPLORE.EXE3 Error: (07/11/2013 09:59:54 AM) (Source: Application Error) (User: ) Description: Name der fehlerhaften Anwendung: IEXPLORE.EXE, Version: 10.0.9200.16635, Zeitstempel: 0x51b7a921 Name des fehlerhaften Moduls: unknown, Version:, Zeitstempel: 0x00000000 Ausnahmecode: 0xc0000005 Fehleroffset: 0x72bec9f1 ID des fehlerhaften Prozesses: 0x1e7c Startzeit der fehlerhaften Anwendung: 0xIEXPLORE.EXE0 Pfad der fehlerhaften Anwendung: IEXPLORE.EXE1 Pfad des fehlerhaften Moduls: IEXPLORE.EXE2 Berichtskennung: IEXPLORE.EXE3 Error: (07/11/2013 09:57:48 AM) (Source: WinMgmt) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (07/10/2013 06:44:57 PM) (Source: WinMgmt) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (07/10/2013 06:08:59 PM) (Source: Application Error) (User: ) Description: Name der fehlerhaften Anwendung: IEXPLORE.EXE, Version: 10.0.9200.16635, Zeitstempel: 0x51b7a921 Name des fehlerhaften Moduls: unknown, Version:, Zeitstempel: 0x00000000 Ausnahmecode: 0xc0000005 Fehleroffset: 0x74bfc9f1 ID des fehlerhaften Prozesses: 0x247c Startzeit der fehlerhaften Anwendung: 0xIEXPLORE.EXE0 Pfad der fehlerhaften Anwendung: IEXPLORE.EXE1 Pfad des fehlerhaften Moduls: IEXPLORE.EXE2 Berichtskennung: IEXPLORE.EXE3 Error: (07/10/2013 06:08:58 PM) (Source: Application Error) (User: ) Description: Name der fehlerhaften Anwendung: IEXPLORE.EXE, Version: 10.0.9200.16635, Zeitstempel: 0x51b7a921 Name des fehlerhaften Moduls: unknown, Version:, Zeitstempel: 0x00000000 Ausnahmecode: 0xc0000005 Fehleroffset: 0x74bfc9f1 ID des fehlerhaften Prozesses: 0x11e0 Startzeit der fehlerhaften Anwendung: 0xIEXPLORE.EXE0 Pfad der fehlerhaften Anwendung: IEXPLORE.EXE1 Pfad des fehlerhaften Moduls: IEXPLORE.EXE2 Berichtskennung: IEXPLORE.EXE3 Error: (07/10/2013 06:08:54 PM) (Source: Application Error) (User: ) Description: Name der fehlerhaften Anwendung: IEXPLORE.EXE, Version: 10.0.9200.16635, Zeitstempel: 0x51b7a921 Name des fehlerhaften Moduls: unknown, Version:, Zeitstempel: 0x00000000 Ausnahmecode: 0xc0000005 Fehleroffset: 0x74bfc9f1 ID des fehlerhaften Prozesses: 0x1600 Startzeit der fehlerhaften Anwendung: 0xIEXPLORE.EXE0 Pfad der fehlerhaften Anwendung: IEXPLORE.EXE1 Pfad des fehlerhaften Moduls: IEXPLORE.EXE2 Berichtskennung: IEXPLORE.EXE3 Error: (07/10/2013 05:47:43 PM) (Source: Application Error) (User: ) Description: Name der fehlerhaften Anwendung: IEXPLORE.EXE, Version: 10.0.9200.16635, Zeitstempel: 0x51b7a921 Name des fehlerhaften Moduls: unknown, Version:, Zeitstempel: 0x00000000 Ausnahmecode: 0xc0000005 Fehleroffset: 0x74bfc9f1 ID des fehlerhaften Prozesses: 0x2058 Startzeit der fehlerhaften Anwendung: 0xIEXPLORE.EXE0 Pfad der fehlerhaften Anwendung: IEXPLORE.EXE1 Pfad des fehlerhaften Moduls: IEXPLORE.EXE2 Berichtskennung: IEXPLORE.EXE3 System errors: ============= Error: (07/11/2013 09:59:49 AM) (Source: Service Control Manager) (User: ) Description: Der Dienst "MemeoBackgroundService" wurde aufgrund folgenden Fehlers nicht gestartet: %%1053 Error: (07/11/2013 09:59:49 AM) (Source: Service Control Manager) (User: ) Description: Das Zeitlimit (120000 ms) wurde beim Verbindungsversuch mit dem Dienst MemeoBackgroundService erreicht. Error: (07/10/2013 06:46:57 PM) (Source: Service Control Manager) (User: ) Description: Der Dienst "MemeoBackgroundService" wurde aufgrund folgenden Fehlers nicht gestartet: %%1053 Error: (07/10/2013 06:46:57 PM) (Source: Service Control Manager) (User: ) Description: Das Zeitlimit (120000 ms) wurde beim Verbindungsversuch mit dem Dienst MemeoBackgroundService erreicht. Error: (07/10/2013 05:20:40 PM) (Source: Service Control Manager) (User: ) Description: Der Dienst "MemeoBackgroundService" wurde aufgrund folgenden Fehlers nicht gestartet: %%1053 Error: (07/10/2013 05:20:40 PM) (Source: Service Control Manager) (User: ) Description: Das Zeitlimit (120000 ms) wurde beim Verbindungsversuch mit dem Dienst MemeoBackgroundService erreicht. Error: (07/10/2013 05:20:38 PM) (Source: Microsoft-Windows-LanguagePackSetup) (User: NT-AUTORITÄT) Description: Fehler bei der CBS-Clientinitialisierung. Letzter Fehler: 0x80080005 Error: (07/10/2013 05:20:38 PM) (Source: DCOM) (User: ) Description: {752073A1-23F2-4396-85F0-8FDB879ED0ED} Error: (07/10/2013 05:10:44 PM) (Source: Service Control Manager) (User: ) Description: Der Dienst "MemeoBackgroundService" wurde aufgrund folgenden Fehlers nicht gestartet: %%1053 Error: (07/10/2013 05:10:44 PM) (Source: Service Control Manager) (User: ) Description: Das Zeitlimit (120000 ms) wurde beim Verbindungsversuch mit dem Dienst MemeoBackgroundService erreicht. Microsoft Office Sessions: ========================= Error: (07/11/2013 10:00:04 AM) (Source: Application Error)(User: ) Description: IEXPLORE.EXE10.0.9200.1663551b7a921unknown0.0.0.000000000c000000572bec9f119f801ce7e0ca6ca2165C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXEunknowne4933cc8-e9ff-11e2-a214-60d819d5a7a5 Error: (07/11/2013 10:00:02 AM) (Source: Application Error)(User: ) Description: IEXPLORE.EXE10.0.9200.1663551b7a921unknown0.0.0.000000000c000000572bec9f1218801ce7e0ca5aedda4C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXEunknowne377f908-e9ff-11e2-a214-60d819d5a7a5 Error: (07/11/2013 10:00:01 AM) (Source: Application Error)(User: ) Description: IEXPLORE.EXE10.0.9200.1663551b7a921unknown0.0.0.000000000c000000572bec9f1d8001ce7e0ca47ec9c3C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXEunknowne2a873f0-e9ff-11e2-a214-60d819d5a7a5 Error: (07/11/2013 09:59:54 AM) (Source: Application Error)(User: ) Description: IEXPLORE.EXE10.0.9200.1663551b7a921unknown0.0.0.000000000c000000572bec9f11e7c01ce7e0c9f5c840bC:\Program Files (x86)\Internet Explorer\IEXPLORE.EXEunknownde6c0a15-e9ff-11e2-a214-60d819d5a7a5 Error: (07/11/2013 09:57:48 AM) (Source: WinMgmt)(User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (07/10/2013 06:44:57 PM) (Source: WinMgmt)(User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (07/10/2013 06:08:59 PM) (Source: Application Error)(User: ) Description: IEXPLORE.EXE10.0.9200.1663551b7a921unknown0.0.0.000000000c000000574bfc9f1247c01ce7d87c96e0254C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXEunknown072d8896-e97b-11e2-a22c-60d819d5a7a5 Error: (07/10/2013 06:08:58 PM) (Source: Application Error)(User: ) Description: IEXPLORE.EXE10.0.9200.1663551b7a921unknown0.0.0.000000000c000000574bfc9f111e001ce7d87c8d3e526C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXEunknown069678a8-e97b-11e2-a22c-60d819d5a7a5 Error: (07/10/2013 06:08:54 PM) (Source: Application Error)(User: ) Description: IEXPLORE.EXE10.0.9200.1663551b7a921unknown0.0.0.000000000c000000574bfc9f1160001ce7d87c58dba87C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXEunknown03e90ba8-e97b-11e2-a22c-60d819d5a7a5 Error: (07/10/2013 05:47:43 PM) (Source: Application Error)(User: ) Description: IEXPLORE.EXE10.0.9200.1663551b7a921unknown0.0.0.000000000c000000574bfc9f1205801ce7d84d0c88144C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXEunknown0e85b5c6-e978-11e2-a22c-60d819d5a7a5 ==================== Memory info =========================== Percentage of memory in use: 31% Total physical RAM: 8075.23 MB Available physical RAM: 5555.88 MB Total Pagefile: 16148.65 MB Available Pagefile: 13376.2 MB Total Virtual: 8192 MB Available Virtual: 8191.83 MB ==================== Drives ================================ Drive c: (Windows7_OS) (Fixed) (Total:138.11 GB) (Free:40.62 GB) NTFS (Disk=0 Partition=2) ==>[System with boot components (obtained from reading drive)] Drive j: (Info) (Network) (Total:800.52 GB) (Free:192.12 GB) NTFS Drive m: (management) (Network) (Total:800.52 GB) (Free:192.12 GB) NTFS Drive o: (orga) (Network) (Total:800.52 GB) (Free:192.12 GB) NTFS Drive p: (Public) (Network) (Total:800.52 GB) (Free:192.12 GB) NTFS Drive q: (Lenovo_Recovery) (Fixed) (Total:9.77 GB) (Free:0 GB) NTFS (Disk=0 Partition=3) Drive r: (homebase) (Network) (Total:91.67 GB) (Free:24.38 GB) NTFS Drive s: () (Network) (Total:297.99 GB) (Free:99.07 GB) NTFS Drive t: (ice) (Network) (Total:91.67 GB) (Free:24.38 GB) NTFS Drive u: () (Network) (Total:297.99 GB) (Free:99.07 GB) NTFS Drive v: (admin) (Network) (Total:800.52 GB) (Free:192.12 GB) NTFS Drive w: (Medien) (Network) (Total:226.74 GB) (Free:24.89 GB) NTFS Drive y: (Luka) (Network) (Total:800.52 GB) (Free:192.12 GB) NTFS Drive z: (System) (Network) (Total:42.9 GB) (Free:9.1 GB) NTFS ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (Size: 149 GB) (Disk ID: EEBD654D) Partition 1: (Active) - (Size=1 GB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=138 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=10 GB) - (Type=07 NTFS) ==================== End Of Log ============================ Mutz01 |
![]() | #12 |
/// the machine /// TB-Ausbilder ![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() | ![]() IE10 unter Win 7 (64bit) crashed neuerdings bei jedem Start Versuch mal das: "0xc0000005" Fehlermeldung und Windows Explorer reagiert nicht mehr auf einem Computer mit Windows 7 oder Windows Server 2008 R2 Hast du schonmal die 64bit Version von IE geöffnet? Geht die? Wenn Du nen Downgrade zu IE9 machst, funktioniert der dann?
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
![]() | #13 | |
| ![]() IE10 unter Win 7 (64bit) crashed neuerdings bei jedem Start Hi Schrauber, ich habe den Hotfix heruntergeladen und installiert. Das hat leider nichts gebracht. Zum Thema IE9: Zitat:
Evtl. nutzt IE10 irgendwelche Bibliotheken (Hardwarebeschleunigung der Grafikkarte oder whatever). Mein Rechner ist ein Lenovo Notebook und da gibt es eine System-Update-Funktion, die ab und zu mehr oder weniger ungefragt aktuelle Treiber runterläd und istalliert. Vielleicht kam durch ein solches Update das Problem. Kannst Du an den Logs was sehen, was auf einen kürzlich aktualisierten Treiber hinweist? Oder gibt es Tools mit denen man das eingrenzen kann (selektiv Treiber beim Systemstart nicht zu laden o.ä.)? Gruß mutz01 |
![]() | #14 |
/// the machine /// TB-Ausbilder ![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() | ![]() IE10 unter Win 7 (64bit) crashed neuerdings bei jedem Start Du kannst über msconfig, den Boot-Reiter, einzelne Sachen abschalten.
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
![]() | #15 |
| ![]() IE10 unter Win 7 (64bit) crashed neuerdings bei jedem Start Das gilt für Programme und Prozesse, aber nicht für Treiber, oder? Wie könnte ich den rausfinden, welcher Treiber kürzlich aktualisiert wurde (falls ein Treiber die Ursache ist). Hallo Schrauber, ich habe die Ursache gefunden. Das Probelm ist gelöst! Meine Vermutung war ja, dass es sich um ein Treiber-Problem handelt, also habe ich in den Installations-Protokollen des Lenovo System Updates geschaut und gesehen, dass kürzlich ein GraKa-Treiberupdate kam. Da ich nicht unbedingt auf einen veralteten Treiber zurück gehen wollte habe ich in den IE-Optionen geschaut, was evtl. Optionen sind, die im Zusammenhang mit der Grafikkarte relevant sein könnten. Da kam ich auf folgendes: Softwarerendering anstalle von GPU-Rendering verwenden Das schien mir vielversprechend, also habe ich diese Option angehakt und damit hat es sofort geklappt (sogar ohne Neustart, obwohl diese Option angeblich erst nach Neustart aktiv wird). Entweder der Treiber oder der IE ist buggy, aber ich kann gut mit dieser Lösung leben, denn ich benutze den IE nicht als Standardbrowser. Trotzdem vielen Dank für Deinen exzellenten, rasend schnellen Support. Auf jeden Fall weiß ich jetzt, dass mein System sauber ist. ![]() Spende ist unterwegs. Schöne Grüße mutz01 |
![]() |
Themen zu IE10 unter Win 7 (64bit) crashed neuerdings bei jedem Start |
abgesicherten, automatische, browser, explorer, explorer funktioniert nicht, funktioniert nicht, funktioniert nicht mehr, gmer, grenzen, internet, internet explorer, modus, neue, nicht mehr, popup, problem, programm, shark, start, starten, systemstart, treiber, updates, win, windows, windows 7, windows updates |