| |
| |||||||
Log-Analyse und Auswertung: "Aus Sicherheitsgründen wurde ihr Windowssystem blockiert."Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
04.02.2012, 20:56
| #1 |
 |  "Aus Sicherheitsgründen wurde ihr Windowssystem blockiert." Nabend miteinander. So wie es aussieht bin ich der nächste "Zwangskunde", der dazu verpflichtet ist ein Sicherheitsupdate zu erwerben und nach ein wenigen Minuten bin ich glücklicherweise mal wieder über dieses Forum gestolpert und fand heraus das ich nicht der einzige Betroffenene bin. Im Prinzip passiert genau das gleiche, was bei den anderen Betroffenen auch passiert. Der Bildschirm wird mit einem Mal schwarz und in Fenster blinkt auf, welches mich zwingt dieses Sicherheitsupdate zu kaufen. Mein Cousin hatte vor 1-2 Monaten das gleiche Problem und ließ sein PC temporär abgeben sodass alles wieder zum laufen gebracht wird. Im Nachhinein wurde sein PC soweit ich weiß lediglich zurückgesetzt. Außerdem scheint dieses Fenster nur zu erscheinen wenn ich mit dem Internet in Verbindung stehe. Nun frage ich mich ob es Sinn macht den PC einfach zurückzusetzen (da ich ein mehrere Wiederherstellungspunkte finden konnte) oder ihn komplett neu aufzusetzen, was ich dann wiederwillig auch machen würde. Vielen Dank im Voraus an die hilfsbereiten User die mir evt. weiterhelfen können. Klasse Arbeit, Respekt. Hier sind die Logs: OTL-Report Code:
ATTFilter OTL logfile created on: 04.02.2012 20:34:52 - Run 1 OTL by OldTimer - Version 3.2.31.0 Folder = C:\Users\***\Downloads 64bit- Home Premium Edition (Version = 6.1.7600) - Type = NTWorkstation Internet Explorer (Version = 8.0.7600.16385) Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy 4,00 Gb Total Physical Memory | 2,50 Gb Available Physical Memory | 62,52% Memory free 8,00 Gb Paging File | 6,35 Gb Available in Paging File | 79,41% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86) Drive C: | 100,01 Gb Total Space | 26,41 Gb Free Space | 26,41% Space Free | Partition Type: NTFS Drive D: | 365,75 Gb Total Space | 176,12 Gb Free Space | 48,15% Space Free | Partition Type: NTFS Unable to calculate disk information. Computer Name: ***-PC | User Name: *** | Logged in as Administrator. Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days ========== Processes (SafeList) ========== PRC - C:\Users\***\Downloads\OTL.exe (OldTimer Tools) PRC - C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation) PRC - C:\Windows\SysWOW64\PnkBstrA.exe () PRC - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe (NVIDIA Corporation) PRC - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe (NVIDIA Corporation) PRC - C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe (Avira GmbH) PRC - C:\Program Files (x86)\phonostar-Player\phonostarTimer.exe () PRC - C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe (Avira GmbH) PRC - C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe (Avira GmbH) PRC - C:\Users\***\AppData\Local\Mozilla\Firefox\firefox.exe () PRC - D:\Multimedia\3DSMAX 2012\3ds Max 2012\mentalimages\satellite\raysat_3dsmax2012_64server.exe () PRC - C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe () PRC - C:\Program Files (x86)\DivX\DivX Plus Web Player\DDMService.exe (DivX, LLC) PRC - C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe (LogMeIn Inc.) PRC - C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd) PRC - C:\Program Files (x86)\EXPERTool\TBPANEL.exe (Gainward Co.) PRC - C:\Program Files (x86)\avmwlanstick\WLanGUI.exe (AVM Berlin) PRC - C:\Program Files (x86)\avmwlanstick\WlanNetService.exe (AVM Berlin) PRC - C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe (Safer-Networking Ltd.) PRC - C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe (Safer Networking Ltd.) PRC - C:\Program Files (x86)\Common Files\Nero\Lib\NMIndexStoreSvr.exe (Nero AG) PRC - C:\Program Files (x86)\Razer\Krait\razerofa.exe (Razer Inc.) PRC - C:\Program Files (x86)\Razer\Krait\razerhid.exe () PRC - C:\Windows\SysWOW64\IoctlSvc.exe (Prolific Technology Inc.) PRC - C:\Windows\PixArt\Pac207\Monitor.exe (PixArt Imaging Incorporation) ========== Modules (No Company Name) ========== MOD - C:\Program Files (x86)\Mozilla Firefox\mozjs.dll () MOD - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\Nv3DVStreaming.dll () MOD - C:\Program Files (x86)\phonostar-Player\phonostarTimer.exe () MOD - C:\Program Files (x86)\phonostar-Player\QtCore4.dll () MOD - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll () MOD - C:\Program Files (x86)\phonostar-Player\plugins\sqldrivers\qsqlite4.dll () MOD - C:\Program Files (x86)\phonostar-Player\QtGui4.dll () MOD - C:\Program Files (x86)\phonostar-Player\QtSql4.dll () MOD - C:\Users\***\AppData\Local\Mozilla\Firefox\firefox.exe () MOD - C:\Program Files (x86)\DivX\DivX Update\DivXUpdateCheck.dll () MOD - C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe () MOD - C:\Program Files (x86)\Razer\Krait\razerhid.exe () MOD - C:\Program Files (x86)\EXPERTool\TBManage.dll () ========== Win32 Services (SafeList) ========== SRV:64bit: - (FLEXnet Licensing Service 64) -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe (Flexera Software, Inc.) SRV:64bit: - (wlcrasvc) -- C:\Program Files\Windows Live\Mesh\wlcrasvc.exe (Microsoft Corporation) SRV:64bit: - (WinDefend) -- C:\Program Files\Windows Defender\MpSvc.dll (Microsoft Corporation) SRV - (PnkBstrA) -- C:\Windows\SysWOW64\PnkBstrA.exe () SRV - (Steam Client Service) -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe (Valve Corporation) SRV - (nvUpdatusService) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe (NVIDIA Corporation) SRV - (Stereo Service) -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe (NVIDIA Corporation) SRV - (AntiVirService) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe (Avira GmbH) SRV - (AntiVirSchedulerService) -- C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe (Avira GmbH) SRV - (mi-raysat_3dsmax2012_64) -- D:\Multimedia\3DSMAX 2012\3ds Max 2012\mentalimages\satellite\raysat_3dsmax2012_64server.exe () SRV - (Hamachi2Svc) -- C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe (LogMeIn Inc.) SRV - (rpcapd) Remote Packet Capture Protocol v.0 (experimental) -- C:\Program Files (x86)\WinPcap\rpcapd.exe (CACE Technologies, Inc.) SRV - (clr_optimization_v4.0.30319_32) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe (Microsoft Corporation) SRV - (clr_optimization_v2.0.50727_32) -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe (Microsoft Corporation) SRV - (AVM WLAN Connection Service) -- C:\Program Files (x86)\avmwlanstick\WlanNetService.exe (AVM Berlin) SRV - (SBSDWSCService) -- C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe (Safer Networking Ltd.) SRV - (PLFlash DeviceIoControl Service) -- C:\Windows\SysWOW64\IoctlSvc.exe (Prolific Technology Inc.) ========== Driver Services (SafeList) ========== DRV:64bit: - (taphss) -- C:\Windows\SysNative\drivers\taphss.sys (AnchorFree Inc) DRV:64bit: - (avipbb) -- C:\Windows\SysNative\drivers\avipbb.sys (Avira GmbH) DRV:64bit: - (avgntflt) -- C:\Windows\SysNative\drivers\avgntflt.sys (Avira GmbH) DRV:64bit: - (amdsata) -- C:\Windows\SysNative\drivers\amdsata.sys (Advanced Micro Devices) DRV:64bit: - (amdxata) -- C:\Windows\SysNative\drivers\amdxata.sys (Advanced Micro Devices) DRV:64bit: - (sptd) -- C:\Windows\SysNative\drivers\sptd.sys () DRV:64bit: - (VIAHdAudAddService) -- C:\Windows\SysNative\drivers\viahduaa.sys (VIA Technologies, Inc.) DRV:64bit: - (NPF) -- C:\Windows\SysNative\drivers\npf.sys (CACE Technologies, Inc.) DRV:64bit: - (WmVirHid) -- C:\Windows\SysNative\drivers\WmVirHid.sys (Logitech Inc.) DRV:64bit: - (WmBEnum) -- C:\Windows\SysNative\drivers\WmBEnum.sys (Logitech Inc.) DRV:64bit: - (WmXlCore) -- C:\Windows\SysNative\drivers\WmXlCore.sys (Logitech Inc.) DRV:64bit: - (hamachi) -- C:\Windows\SysNative\drivers\hamachi.sys (LogMeIn, Inc.) DRV:64bit: - (xusb21) -- C:\Windows\SysNative\drivers\xusb21.sys (Microsoft Corporation) DRV:64bit: - (RTL8167) -- C:\Windows\SysNative\drivers\Rt64win7.sys (Realtek ) DRV:64bit: - (nvamacpi) -- C:\Windows\SysNative\drivers\nvamacpi.sys (NVIDIA Corporation) DRV:64bit: - (MTsensor) -- C:\Windows\SysNative\drivers\ASACPI.sys () DRV:64bit: - (amdsbs) -- C:\Windows\SysNative\drivers\amdsbs.sys (AMD Technologies Inc.) DRV:64bit: - (LSI_SAS2) -- C:\Windows\SysNative\drivers\lsi_sas2.sys (LSI Corporation) DRV:64bit: - (HpSAMD) -- C:\Windows\SysNative\drivers\HpSAMD.sys (Hewlett-Packard Company) DRV:64bit: - (stexstor) -- C:\Windows\SysNative\drivers\stexstor.sys (Promise Technology) DRV:64bit: - (LMouFilt) -- C:\Windows\SysNative\drivers\LMouFilt.Sys (Logitech, Inc.) DRV:64bit: - (LHidFilt) -- C:\Windows\SysNative\drivers\LHidFilt.Sys (Logitech, Inc.) DRV:64bit: - (ebdrv) -- C:\Windows\SysNative\drivers\evbda.sys (Broadcom Corporation) DRV:64bit: - (b06bdrv) -- C:\Windows\SysNative\drivers\bxvbda.sys (Broadcom Corporation) DRV:64bit: - (b57nd60a) -- C:\Windows\SysNative\drivers\b57nd60a.sys (Broadcom Corporation) DRV:64bit: - (hcw85cir) -- C:\Windows\SysNative\drivers\hcw85cir.sys (Hauppauge Computer Works, Inc.) DRV:64bit: - (FWLANUSB) -- C:\Windows\SysNative\drivers\fwlanusb.sys (AVM GmbH) DRV:64bit: - (avmeject) -- C:\Windows\SysNative\drivers\avmeject.sys (AVM Berlin) DRV:64bit: - (PAC207) -- C:\Windows\SysNative\drivers\PFC027.SYS (PixArt Imaging Inc.) DRV:64bit: - (krait03) -- C:\Windows\SysNative\drivers\krait.sys (Razer (Asia-Pacific) Pte Ltd) DRV - (WIMMount) -- C:\Windows\SysWOW64\drivers\wimmount.sys (Microsoft Corporation) ========== Standard Registry (SafeList) ========== ========== Internet Explorer ========== IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = about:blank IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.kiebel.de IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = hxxp://www.google.com/ie IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com IE - HKCU\..\URLSearchHook: - No CLSID value found IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyServer" = http=;ftp=;https=; ========== FireFox ========== FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll () FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0: C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC) FF - HKLM\Software\MozillaPlugins\@divx.com/DivX OVS Helper,version=1.0.0: C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.) FF - HKLM\Software\MozillaPlugins\@esn.me/esnsonar,version=0.70.0: C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.0\npesnsonar.dll File not found FF - HKLM\Software\MozillaPlugins\@gamersfirst.com/LiveLauncher: C:\Program Files (x86)\GamersFirst\LIVE!\nplivelauncher.dll File not found FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.) FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files (x86)\Microsoft Silverlight\4.0.60831.0\npctrl.dll ( Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3508.1109: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVision: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation) FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVisionStreaming: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation) FF - HKLM\Software\MozillaPlugins\@pandonetworks.com/PandoWebPlugin: C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks) FF - HKCU\Software\MozillaPlugins\pandonetworks.com/PandoWebPlugin: C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks) FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{23fcfd51-4958-4f00-80a3-ae97e717ed8b}: C:\Program Files (x86)\DivX\DivX Plus Web Player\firefox\html5video [2011.02.06 01:37:41 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{6904342A-8307-11DF-A508-4AE2DFD72085}: C:\Program Files (x86)\DivX\DivX Plus Web Player\firefox\wpa [2011.02.06 01:37:42 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 10.0\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2012.02.04 19:15:27 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 10.0\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2012.02.04 19:15:43 | 000,000,000 | ---D | M] (No name found) -- C:\Users\***\AppData\Roaming\mozilla\Extensions [2012.02.04 19:15:27 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\mozilla firefox\extensions [2012.01.29 17:12:48 | 000,134,104 | ---- | M] (Mozilla Foundation) -- C:\Program Files (x86)\mozilla firefox\components\browsercomps.dll [2012.01.29 15:02:49 | 000,001,392 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\amazondotcom-de.xml [2012.01.29 14:50:55 | 000,002,252 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\bing.xml [2012.01.29 15:02:49 | 000,001,153 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\eBay-de.xml [2012.01.29 15:02:49 | 000,006,805 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\leo_ende_de.xml [2012.01.29 15:02:49 | 000,001,178 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\wikipedia-de.xml [2012.01.29 15:02:49 | 000,001,105 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\yahoo-de.xml O1 HOSTS File: ([2011.10.31 20:20:25 | 000,437,925 | R--- | M]) - C:\Windows\SysNative\drivers\etc\hosts O1 - Hosts: 127.0.0.1 www.007guard.com O1 - Hosts: 127.0.0.1 007guard.com O1 - Hosts: 127.0.0.1 008i.com O1 - Hosts: 127.0.0.1 www.008k.com O1 - Hosts: 127.0.0.1 008k.com O1 - Hosts: 127.0.0.1 www.00hq.com O1 - Hosts: 127.0.0.1 00hq.com O1 - Hosts: 127.0.0.1 010402.com O1 - Hosts: 127.0.0.1 www.032439.com O1 - Hosts: 127.0.0.1 032439.com O1 - Hosts: 127.0.0.1 www.0scan.com O1 - Hosts: 127.0.0.1 0scan.com O1 - Hosts: 127.0.0.1 1000gratisproben.com O1 - Hosts: 127.0.0.1 www.1000gratisproben.com O1 - Hosts: 127.0.0.1 1001namen.com O1 - Hosts: 127.0.0.1 www.1001namen.com O1 - Hosts: 127.0.0.1 100888290cs.com O1 - Hosts: 127.0.0.1 www.100888290cs.com O1 - Hosts: 127.0.0.1 www.100sexlinks.com O1 - Hosts: 127.0.0.1 100sexlinks.com O1 - Hosts: 127.0.0.1 10sek.com O1 - Hosts: 127.0.0.1 www.10sek.com O1 - Hosts: 127.0.0.1 www.1-2005-search.com O1 - Hosts: 127.0.0.1 1-2005-search.com O1 - Hosts: 127.0.0.1 123fporn.info O1 - Hosts: 15060 more lines... O2:64bit: - BHO: (no name) - {F9E4A054-E9B1-4BC3-83A3-76A1AE736170} - No CLSID value found. O2 - BHO: (DivX Plus Web Player HTML5 <video>) - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC) O2 - BHO: (Spybot-S&D IE Protection) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~2\SPYBOT~1\SDHelper.dll (Safer Networking Limited) O2 - BHO: (DivX HiQ) - {593DDEC6-7468-4cdd-90E1-42DADAA222E9} - C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC) O2 - BHO: (Skype Plug-In) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O3:64bit: - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found. O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found. O4:64bit: - HKLM..\Run: [Kernel and Hardware Abstraction Layer] C:\Windows\KHALMNPR.Exe (Logitech, Inc.) O4:64bit: - HKLM..\Run: [Monitor] C:\Windows\PixArt\Pac207\Monitor.exe (PixArt Imaging Incorporation) O4:64bit: - HKLM..\Run: [Start WingMan Profiler] C:\Program Files\Logitech\Gaming Software\LWEMon.exe (Logitech Inc.) O4:64bit: - HKLM..\Run: [XboxStat] C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe (Microsoft Corporation) O4 - HKLM..\Run: [avgnt] C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe (Avira GmbH) O4 - HKLM..\Run: [AVMWlanClient] C:\Program Files (x86)\avmwlanstick\wlangui.exe (AVM Berlin) O4 - HKLM..\Run: [DivX Download Manager] C:\Program Files (x86)\DivX\DivX Plus Web Player\DDmService.exe (DivX, LLC) O4 - HKLM..\Run: [DivXUpdate] C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe () O4 - HKLM..\Run: [HDAudDeck] C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe (VIA) O4 - HKLM..\Run: [Krait] C:\Program Files (x86)\Razer\Krait\razerhid.exe () O4 - HKLM..\Run: [LogMeIn Hamachi Ui] C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe (LogMeIn Inc.) O4 - HKCU..\Run: [DAEMON Tools Lite] C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd) O4 - HKCU..\Run: [Firefox helper] C:\Users\***\AppData\Local\Mozilla\Firefox\firefox.exe () O4 - HKCU..\Run: [GAINWARD] C:\Program Files (x86)\EXPERTool\TBPanel.exe (Gainward Co.) O4 - HKCU..\Run: [IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] C:\Program Files (x86)\Common Files\Nero\Lib\NMIndexStoreSvr.exe (Nero AG) O4 - HKCU..\Run: [phonostarTimer] C:\Program Files (x86)\phonostar-Player\phonostarTimer.exe () O4 - HKCU..\Run: [SpybotSD TeaTimer] C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe (Safer-Networking Ltd.) O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 91 00 00 00 [binary data] O8:64bit: - Extra context menu item: Free YouTube Download - C:\Users\***\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubedownload.htm () O8:64bit: - Extra context menu item: Free YouTube to Mp3 Converter - C:\Users\***\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm () O8 - Extra context menu item: Free YouTube Download - C:\Users\***\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubedownload.htm () O8 - Extra context menu item: Free YouTube to Mp3 Converter - C:\Users\***\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm () O9 - Extra Button: ICQ7.5 - {7578ADEA-D65F-4C89-A249-B1C88B6FFC20} - C:\Program Files (x86)\ICQ7.5\ICQ.exe (ICQ, LLC.) O9 - Extra 'Tools' menuitem : ICQ7.5 - {7578ADEA-D65F-4C89-A249-B1C88B6FFC20} - C:\Program Files (x86)\ICQ7.5\ICQ.exe (ICQ, LLC.) O9 - Extra Button: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O9 - Extra 'Tools' menuitem : Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O9 - Extra 'Tools' menuitem : Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~2\SPYBOT~1\SDHelper.dll (Safer Networking Limited) O1364bit: - gopher Prefix: missing O13 - gopher Prefix: missing O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab (Java Plug-in 1.6.0_26) O16 - DPF: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab (Java Plug-in 1.6.0_22) O16 - DPF: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab (Java Plug-in 1.6.0_26) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab (Java Plug-in 1.6.0_26) O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{D9049A6C-BFAE-4881-9619-72B9D9DF5E20}: DhcpNameServer = 192.168.178.1 O18:64bit: - Protocol\Handler\livecall - No CLSID value found O18:64bit: - Protocol\Handler\msnim - No CLSID value found O18:64bit: - Protocol\Handler\skype4com - No CLSID value found O18:64bit: - Protocol\Handler\skype-ie-addon-data - No CLSID value found O18:64bit: - Protocol\Handler\wlmailhtml - No CLSID value found O18:64bit: - Protocol\Handler\wlpg - No CLSID value found O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies) O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation) O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation) O20:64bit: - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation) O20:64bit: - HKLM Winlogon: VMApplet - (/pagefile) - File not found O20 - HKLM Winlogon: Shell - (explorer.exe) -C:\Windows\SysWow64\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: UserInit - (userinit.exe) -C:\Windows\SysWow64\userinit.exe (Microsoft Corporation) O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found. O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found. O32 - HKLM CDRom: AutoRun - 1 O33 - MountPoints2\{03931e47-bf31-11df-a3a9-001c4af6542a}\Shell - "" = AutoRun O33 - MountPoints2\{03931e47-bf31-11df-a3a9-001c4af6542a}\Shell\AutoRun\command - "" = J:\Autorun.exe O33 - MountPoints2\{fad6ee4c-85e9-11df-a60f-e0cb4eeb276d}\Shell - "" = AutoRun O33 - MountPoints2\{fad6ee4c-85e9-11df-a60f-e0cb4eeb276d}\Shell\AutoRun\command - "" = J:\pushinst.exe O34 - HKLM BootExecute: (autocheck autochk *) O35:64bit: - HKLM\..comfile [open] -- "%1" %* O35:64bit: - HKLM\..exefile [open] -- "%1" %* O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %* O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* ========== Files/Folders - Created Within 30 Days ========== [2012.02.04 19:15:37 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Roaming\Mozilla [2012.02.04 19:15:26 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Firefox [2012.02.04 17:55:15 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Roaming\vlc [2012.02.04 17:35:32 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\{A5AA1B76-B396-49CB-9541-00A82A614B12} [2012.02.04 17:12:08 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\{1E6D47C9-3FF6-4F9D-8BE4-E259BD32C8F5} [2012.02.04 17:10:03 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\{E54DFAB0-EB21-4F47-AB76-5CAF04337814} [2012.02.04 17:09:51 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\{966A14DF-B55F-444F-B75F-0324FBD0BD16} [2012.02.04 17:07:31 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\{569B1217-83A5-4FCD-A4B2-430CB837B4D7} [2012.02.04 17:06:58 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\{DE882FD0-48E0-4A01-B155-41D0B84F0921} [2012.02.04 13:46:53 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\{5A7E7EF9-C30C-4240-9C65-4D3E7F345CE2} [2012.02.04 13:46:20 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\{D2AE81ED-0A03-4327-AA73-D1A2009B5668} [2012.02.03 23:10:52 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\{45A683D3-628C-4BD0-A2E5-82522A6AAA6B} [2012.02.03 23:10:19 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\{7D026089-5AAB-4367-92EA-1CFE964B406C} [2012.02.03 18:58:23 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\{4DD4BE78-8D6A-4F6A-B0E4-1EFCA594ED7E} [2012.02.03 18:57:50 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\{F08C76BD-EDB6-4BC5-92BA-BE80EA9E087D} [2012.02.03 18:41:54 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\{387ED5A4-619C-425F-940B-31843A44E485} [2012.02.03 18:41:22 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\{5E1D00A0-4EA4-42B1-8673-0A6A82783D97} [2012.02.03 13:41:25 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\{ECCA06E9-2C80-426F-B310-D8ED7EC8C57D} [2012.02.03 13:41:13 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\{5CA3A495-2134-49DE-82D0-339982A1A3A7} [2012.02.02 20:44:46 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\{F15935F5-38D5-4C37-BA6C-FECB46918D35} [2012.02.02 20:44:13 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\{89A7BB63-5D63-4E0D-99D5-04B8A9B5935E} [2012.02.02 19:49:30 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\{7CBAB9AA-02F3-4A83-A193-946514EA015B} [2012.02.02 19:48:56 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\{089B188F-7D13-4519-B2C0-7F94C0A2ECAE} [2012.02.02 14:34:57 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\{FE25A113-5649-4D0D-AD3F-812032D4D582} [2012.02.01 21:50:01 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\{84A94437-F1E4-413C-AF4A-275863EDB3F3} [2012.02.01 21:49:26 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\{B5191EA1-299C-4839-8215-65F5707656BC} [2012.02.01 13:33:11 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\{67FFAD97-6045-4AF2-971E-4573A717ED46} [2012.02.01 13:32:34 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\{2DBB58F5-9E20-4BA8-B33B-7E922F5FF45F} [2012.01.31 20:22:23 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\{44BF4808-C489-4B97-8370-AB0DAB2AE0EC} [2012.01.31 20:21:47 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\{05247B52-78B2-453A-94F9-414B2FD3A2EA} [2012.01.31 12:35:42 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\{6D090DBE-7482-4696-B192-847DEE98B795} [2012.01.31 12:35:07 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\{76D225D3-33A8-430F-87C8-9C0329599779} [2012.01.31 10:54:02 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\{0FE587E6-611A-469C-B2C8-65D02D3D783F} [2012.01.31 10:53:28 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\{38ACC61F-205B-48AF-988C-FBE4239837FE} [2012.01.31 10:51:54 | 001,446,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\lsasrv.dll [2012.01.31 10:51:53 | 000,395,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\webio.dll [2012.01.31 10:51:53 | 000,314,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\webio.dll [2012.01.31 10:51:53 | 000,136,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sspicli.dll [2012.01.31 10:51:52 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sspisrv.dll [2012.01.31 10:51:52 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\secur32.dll [2012.01.31 01:22:03 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\{9705669E-5E26-49B0-BE50-CCEEB867C91F} [2012.01.31 01:21:30 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\{E37853D6-BB6E-402A-9BDB-CB71168BC1AD} [2012.01.31 00:21:16 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\{B210B450-BD8E-4D78-820E-5B9622F354D4} [2012.01.31 00:20:43 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\{CE1F9325-ECD5-4B79-822E-FA9C61402874} [2012.01.31 00:06:56 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\{4B23293D-C593-4B43-BAE3-FC85E91FC645} [2012.01.31 00:06:22 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\{ABDDA8EE-095B-40BB-ABDB-E57DE68972DE} [2012.01.30 11:48:58 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\{FD0A922A-B59A-450E-A489-BDBF6CEB3654} [2012.01.30 11:48:17 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\{9746A045-8B39-40D6-B259-81FEDD32DA1A} [2012.01.29 21:19:52 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\{7D2C0C20-09D8-4715-B944-D10008D2705D} [2012.01.29 17:07:06 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PR Mumble [2012.01.29 17:07:04 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\PR Mumble [2012.01.29 17:02:52 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Roaming\Mumble [2012.01.29 13:17:04 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\{93B090E6-7317-4504-8818-CA0AA33ADF08} [2012.01.29 13:16:31 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\{C238C44B-4BF2-4005-8DEF-7CF84A8A8BFA} [2012.01.28 19:24:55 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\{60C10243-B018-442E-8B66-2CFF5F4EBCB0} [2012.01.28 19:24:22 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\{177372BF-77F4-43B3-9D9C-E2B446E243C4} [2012.01.28 14:44:16 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\{9ADC6996-E4D2-4451-9BE5-9E6A35B56778} [2012.01.28 14:43:42 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\{8275313E-E5DC-47CB-9A9A-8C464577C480} [2012.01.27 22:52:57 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\{31A02422-B465-46CF-9413-C3FE65E225F9} [2012.01.27 11:18:09 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\{C755C938-024D-4EB8-B73B-FA6DFA1315A2} [2012.01.27 11:17:35 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\{719F4287-4691-4585-8FBF-9294697E2151} [2012.01.26 13:09:49 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\{90499306-4FBD-4618-A2FB-55B486C25CE9} [2012.01.26 13:09:36 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\{C566679A-775D-47B5-B2F7-A54B6D5F6D66} [2012.01.25 22:35:49 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\{771AD264-401E-4C1B-8137-D8DDE624AC8B} [2012.01.25 22:35:15 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\{0B383A22-9F45-4E82-A028-521225B32EB8} [2012.01.25 22:01:34 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\{DCC48510-C26C-4809-BB38-145C576D1111} [2012.01.25 22:01:03 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\{383AF8C9-DA51-46C9-B1A8-EF0ABCDC411A} [2012.01.25 19:43:29 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\{CCAA9100-1822-4B9A-96FE-3838B4DC110D} [2012.01.25 19:43:09 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\{1957A4D9-998D-4E1D-A4A3-D0272CAC17CD} [2012.01.25 12:40:15 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\{3683D255-1140-4E6F-AA83-A14E3A1C7D68} [2012.01.25 12:39:45 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\{3118AF8C-CE81-4C16-B365-8FCC14912544} [2012.01.24 12:35:45 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\{23C50D01-0BAD-4ADA-AD6E-DF5CCDA8240A} [2012.01.24 12:35:35 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\{7A5CA5A5-9D64-45D1-98B5-D8CF57AF5D0C} [2012.01.23 15:51:34 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\{2320960E-F074-4079-938A-75D2EDA79BF7} [2012.01.23 15:51:21 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\{6F116D25-0D73-45CF-BD93-9CDC39F4FC23} [2012.01.22 16:46:15 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\{9399FA03-98DD-458C-8B89-FC96FA0C070C} [2012.01.22 16:18:40 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\{E2741554-6D54-43CE-8266-7FD16F4F1302} [2012.01.22 16:18:05 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\{C97852F9-D0DF-423D-9AEF-EEB63F9F57A6} [2012.01.22 12:03:31 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\{48D3E383-5181-4E8A-906C-25EB296CC1B9} [2012.01.22 12:03:19 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\{866C25CD-875C-4314-ABA2-F1BD29A0286D} [2012.01.21 14:50:53 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\{E408D843-C250-49C3-A3F2-DF2F67A13B85} [2012.01.21 14:50:18 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\{F6A0C0D3-4D98-4C14-BE1B-773D16C0E140} [2012.01.21 14:39:13 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\{DFF11D2A-717C-409D-B6A8-981974D82E8A} [2012.01.21 14:39:03 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\{D1E31EC6-EFE9-4AFD-9B72-9CE131C3BCAC} [2012.01.20 17:38:26 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\{0C89F94F-5A96-426D-BAF0-BA96F9FFEE74} [2012.01.20 15:03:18 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\{A6363F71-AB0A-4B22-B2C6-993FF8F827BA} [2012.01.20 15:02:43 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\{89097892-73EB-438C-B8A8-3BE66B09AFAA} [2012.01.20 13:13:46 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\{FF19221E-538C-4D44-81EF-F99294B5C47B} [2012.01.20 13:13:34 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\{5AC20614-9655-4639-A32F-27E438D129E7} [2012.01.19 13:16:13 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\{E8B61337-1A2C-4AE9-8A49-51CCF4E76494} [2012.01.19 13:16:01 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\{5DC95792-C904-4709-8D9E-5321EDBAD182} [2012.01.18 13:28:05 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\{CCA38CEF-7943-4650-87B0-E8E40F236A76} [2012.01.18 13:27:53 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\{63932211-D1D4-4A5C-9BF1-262C848A4616} [2012.01.17 12:58:09 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\{5225CB05-72BB-4797-9B0C-E1E3EB00D1EE} [2012.01.17 12:57:33 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\{4A6B7F30-915D-4EAA-BA0A-A630387B42A4} [2012.01.16 22:48:51 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\{9547B992-4A45-4115-8141-AD18114F0506} [2012.01.16 22:48:39 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\{A55ED13F-74A1-44F5-A561-ACE7CF4805D1} [2012.01.16 13:27:06 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\{1F8075F8-CF56-41E1-8DCA-B26CBCB3FC21} [2012.01.16 13:26:46 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\{A1E8CA25-9BE8-492B-9765-66A4755C8AC6} [2012.01.15 19:27:04 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\{E6C779B3-5C49-49D5-BB7D-A1A3B610D65A} [2012.01.15 19:00:16 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\{54576BCA-6A20-4504-9260-9D78DF77718F} [2012.01.15 18:59:41 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\{851D6444-5E28-4B99-BA53-BEA1A1389B18} [2012.01.15 13:31:37 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\{34954429-9F09-4C7A-8263-B8623BE6CAEF} [2012.01.15 13:31:26 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\{ED61EDAD-AC39-4AB4-A88A-9C62C58C99A4} [2012.01.15 13:01:26 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\{B1E5B652-B856-439D-8368-0B4FB6837FAD} [2012.01.15 13:00:47 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\{F7853B9B-BAF6-4C20-B8E1-6A9904E781D2} [2012.01.15 01:54:07 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\{9687F68E-5DB2-4C5A-A63A-59282056E982} [2012.01.15 01:53:34 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\{0EDB22C9-0C42-4B2B-ABD4-5F7EFFF5A906} [2012.01.15 01:37:26 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\{A7B544A8-1812-45B3-ABC1-4B98DA801712} [2012.01.15 01:36:52 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\{A4554713-65D2-4496-828D-0147E8C1E4A4} [2012.01.13 18:09:50 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\{CBC79024-5A20-4EC0-B146-59192C383111} [2012.01.13 18:09:12 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\{E7044FC7-EE42-4755-A245-E3DBA675FCB6} [2012.01.13 13:27:19 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\{0E039BD9-6C9B-4D50-9C0C-DEC1D24D2B43} [2012.01.12 08:40:58 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\{A4EAC3C1-3718-4D6A-B23E-4581A07AAA9C} [2012.01.12 08:40:44 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\{A98D9C96-4B22-4D25-842C-7FE2F4A2EEE4} [2012.01.11 13:47:34 | 001,572,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\quartz.dll [2012.01.11 13:47:34 | 001,328,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\quartz.dll [2012.01.11 13:47:34 | 000,514,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\qdvd.dll [2012.01.11 13:47:34 | 000,366,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\qdvd.dll [2012.01.11 13:47:32 | 000,852,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript.dll [2012.01.11 13:47:32 | 000,716,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript.dll [2012.01.11 13:47:30 | 001,739,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntdll.dll [2012.01.11 13:47:29 | 000,077,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\packager.dll [2012.01.11 13:47:29 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\packager.dll [2012.01.11 13:45:06 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\{AB86FCA6-CFED-4538-B6C5-8EBD63CE9D95} [2012.01.11 13:44:37 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\{5D339E66-C6D8-4173-9182-80045AF22EB8} [2012.01.10 20:29:06 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\{0D912E44-9C63-4DB0-872A-27BFBF911C4A} [2012.01.10 20:28:31 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\{0C75DDE8-22F8-4B0A-BBD4-92D27470ACE2} [2012.01.10 14:42:57 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\{1BCA9CD8-253D-42B4-97DE-299CCA501CCD} [2012.01.10 14:42:30 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\{711C80D4-DB96-4B15-919E-514EF52EA055} [2012.01.10 13:33:37 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\{E98DDA14-C3AC-40A9-A524-479AF36EA818} [2012.01.10 13:33:25 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\{D077B08E-3C55-427C-8D5C-626001A3454E} [2012.01.09 13:25:12 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\{5C95C8E9-39F0-4C5E-964E-37140DA80560} [2012.01.08 17:28:45 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\{501BF037-C403-4819-A3DA-1203860E3C44} [2012.01.08 17:28:16 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\{1295E940-B53E-491E-8892-05FE8C91B53A} [2012.01.08 14:43:27 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\{E7719FBD-C726-457D-A500-54E6E786EA12} [2012.01.06 21:09:42 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\{58CFACBB-3A39-4BA5-B132-AC4FF40FD0B6} [2012.01.06 21:09:08 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\{712D40C3-7E53-4A06-901A-51FE7CAAED3E} [2012.01.06 13:26:25 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\{10457955-F7A9-40AD-AF58-5DA9D2B48A24} [2 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ] ========== Files - Modified Within 30 Days ========== [2012.02.04 20:35:51 | 000,019,904 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 [2012.02.04 20:35:51 | 000,019,904 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 [2012.02.04 20:28:26 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat [2012.02.04 20:28:22 | 3220,480,000 | -HS- | M] () -- C:\hiberfil.sys [2012.01.31 22:58:52 | 001,642,148 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI [2012.01.31 22:58:52 | 000,707,300 | ---- | M] () -- C:\Windows\SysNative\perfh007.dat [2012.01.31 22:58:52 | 000,660,918 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat [2012.01.31 22:58:52 | 000,152,892 | ---- | M] () -- C:\Windows\SysNative\perfc007.dat [2012.01.31 22:58:52 | 000,125,108 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat [2012.01.30 15:45:29 | 000,080,169 | ---- | M] () -- C:\Users\***\.recently-used.xbel [2012.01.29 17:08:59 | 000,002,385 | ---- | M] () -- C:\Users\***\Documents\PR_MumbleAutomaticCertificateBackup.p12 [2012.01.29 17:03:05 | 000,002,386 | ---- | M] () -- C:\Users\***\Documents\MumbleAutomaticCertificateBackup.p12 [2012.01.29 16:51:01 | 000,234,536 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrB.xtr [2012.01.29 16:51:01 | 000,234,536 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrB.exe [2012.01.29 14:56:00 | 000,075,064 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrA.exe [2012.01.29 14:55:59 | 000,794,408 | ---- | M] () -- C:\Windows\SysWow64\pbsvc.exe [2012.01.29 14:27:16 | 000,111,928 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrB.ex0 [2012.01.25 20:16:51 | 037,609,040 | ---- | M] () -- C:\Users\***\Documents\ts3_recording_12_01_25_20_13_33.wav [2012.01.25 19:17:52 | 051,152,720 | ---- | M] () -- C:\Users\***\Documents\ts3_recording_12_01_25_19_13_23.wav [2012.01.16 22:43:56 | 000,022,440 | ---- | M] () -- C:\Users\***\Documents\Chemie Säuren.odt [2012.01.16 21:51:30 | 116,799,404 | ---- | M] () -- C:\Users\***\Documents\ts3_recording_12_01_16_21_41_7.wav [2012.01.16 21:24:26 | 002,908,844 | ---- | M] () -- C:\Users\***\Documents\ts3_recording_12_01_16_21_24_8.wav [2012.01.15 12:59:07 | 000,319,216 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT [2012.01.15 02:47:12 | 000,006,286 | ---- | M] () -- C:\Users\***\Documents\Naldo.wlmp [2012.01.14 21:36:53 | 001,227,264 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\dx8vb.dll [2012.01.09 22:58:52 | 001,619,106 | ---- | M] () -- C:\Windows\SysWow64\PerfStringBackup.INI [2012.01.09 19:05:11 | 000,022,064 | ---- | M] () -- C:\Users\***\Documents\Chemie Ethin.odt [2012.01.09 18:41:53 | 000,012,966 | ---- | M] () -- C:\Users\***\Documents\Chemie SPICKAR.odt [2 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ] ========== Files Created - No Company Name ========== [2012.02.04 19:15:28 | 000,001,142 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk [2012.01.30 15:45:29 | 000,080,169 | ---- | C] () -- C:\Users\***\.recently-used.xbel [2012.01.29 17:08:59 | 000,002,385 | ---- | C] () -- C:\Users\***\Documents\PR_MumbleAutomaticCertificateBackup.p12 [2012.01.29 17:03:05 | 000,002,386 | ---- | C] () -- C:\Users\***\Documents\MumbleAutomaticCertificateBackup.p12 [2012.01.25 20:13:34 | 037,609,040 | ---- | C] () -- C:\Users\***\Documents\ts3_recording_12_01_25_20_13_33.wav [2012.01.25 19:13:25 | 051,152,720 | ---- | C] () -- C:\Users\***\Documents\ts3_recording_12_01_25_19_13_23.wav [2012.01.16 22:43:54 | 000,022,440 | ---- | C] () -- C:\Users\***\Documents\Chemie Säuren.odt [2012.01.16 21:41:21 | 116,799,404 | ---- | C] () -- C:\Users\***\Documents\ts3_recording_12_01_16_21_41_7.wav [2012.01.16 21:24:10 | 002,908,844 | ---- | C] () -- C:\Users\***\Documents\ts3_recording_12_01_16_21_24_8.wav [2012.01.15 02:47:12 | 000,006,286 | ---- | C] () -- C:\Users\***\Documents\Naldo.wlmp [2012.01.09 18:41:51 | 000,012,966 | ---- | C] () -- C:\Users\***\Documents\Chemie SPICKAR.odt [2012.01.08 19:21:26 | 000,022,064 | ---- | C] () -- C:\Users\***\Documents\Chemie Ethin.odt [2011.09.22 11:29:58 | 000,321,856 | ---- | C] () -- C:\Windows\SysWow64\nvStreaming.exe [2011.05.29 16:27:45 | 000,000,094 | ---- | C] () -- C:\Users\***\AppData\Local\fusioncache.dat [2011.05.29 16:16:18 | 001,619,106 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI [2011.04.30 21:52:12 | 000,000,264 | ---- | C] () -- C:\Windows\{789289CA-F73A-4A16-A331-54D498CE069F}_WiseFW.ini [2010.12.17 23:32:20 | 000,794,408 | ---- | C] () -- C:\Windows\SysWow64\pbsvc.exe [2010.08.19 16:29:32 | 002,444,656 | ---- | C] () -- C:\Windows\SysWow64\pbsvc_apb.exe [2010.08.13 21:32:32 | 000,000,056 | -H-- | C] () -- C:\ProgramData\ezsidmv.dat [2010.07.20 14:06:42 | 000,000,244 | ---- | C] () -- C:\Windows\ODBCINST.INI [2010.07.07 15:11:19 | 000,234,536 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrB.exe [2010.07.07 15:11:18 | 002,434,856 | ---- | C] () -- C:\Windows\SysWow64\pbsvc_bc2.exe [2010.07.07 15:11:18 | 000,075,064 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrA.exe [2010.07.02 15:46:05 | 000,001,769 | ---- | C] () -- C:\Windows\Language_trs.ini [2010.07.02 15:46:03 | 000,015,497 | ---- | C] () -- C:\Windows\Ascd_tmp.ini [2010.06.25 18:03:12 | 000,053,299 | ---- | C] () -- C:\Windows\SysWow64\pthreadVC.dll [2010.06.17 09:46:32 | 000,000,026 | ---- | C] () -- C:\Windows\Irremote.ini [2010.06.17 09:43:56 | 000,881,664 | ---- | C] () -- C:\Windows\SysWow64\xvidcore.dll [2010.06.17 09:43:56 | 000,178,176 | ---- | C] () -- C:\Windows\SysWow64\unrar.dll [2010.06.17 09:43:56 | 000,000,038 | ---- | C] () -- C:\Windows\avisplitter.ini [2010.06.17 09:43:55 | 000,205,824 | ---- | C] () -- C:\Windows\SysWow64\xvidvfw.dll [2010.06.17 09:43:55 | 000,085,504 | ---- | C] () -- C:\Windows\SysWow64\ff_vfw.dll [2009.10.05 11:10:18 | 000,007,756 | ---- | C] () -- C:\Windows\cadx2.ini [2009.07.14 06:38:36 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat [2009.07.14 03:35:51 | 000,000,741 | ---- | C] () -- C:\Windows\SysWow64\NOISE.DAT [2009.07.14 03:34:42 | 000,215,943 | ---- | C] () -- C:\Windows\SysWow64\dssec.dat [2009.07.14 01:10:29 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin [2009.07.14 00:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\SysWow64\BWContextHandler.dll [2009.07.13 22:03:59 | 000,364,544 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll [2009.06.10 22:26:10 | 000,673,088 | ---- | C] () -- C:\Windows\SysWow64\mlang.dat [2009.04.02 13:30:14 | 000,010,296 | ---- | C] () -- C:\Windows\SysWow64\drivers\ASUSHWIO.SYS [2008.10.22 04:29:06 | 000,173,550 | ---- | C] () -- C:\Windows\SysWow64\xlive.dll.cat [2006.11.02 08:27:46 | 000,000,518 | ---- | C] () -- C:\Windows\SysWow64\SP207.INI [1997.06.14 09:56:08 | 000,056,832 | ---- | C] () -- C:\Windows\SysWow64\iyvu9_32.dll ========== LOP Check ========== [2012.01.26 18:42:43 | 000,000,000 | ---D | M] -- C:\Users\***\AppData\Roaming\.minecraft [2011.08.03 22:53:18 | 000,000,000 | ---D | M] -- C:\Users\***\AppData\Roaming\Autodesk [2012.02.04 19:12:00 | 000,000,000 | ---D | M] -- C:\Users\***\AppData\Roaming\DAEMON Tools Lite [2011.08.21 18:54:05 | 000,000,000 | ---D | M] -- C:\Users\***\AppData\Roaming\DVDVideoSoft [2011.04.10 01:03:21 | 000,000,000 | ---D | M] -- C:\Users\***\AppData\Roaming\DVDVideoSoftIEHelpers [2011.12.02 16:29:31 | 000,000,000 | ---D | M] -- C:\Users\***\AppData\Roaming\FreeHideIP [2010.09.12 00:16:54 | 000,000,000 | ---D | M] -- C:\Users\***\AppData\Roaming\GrabPro [2012.01.30 15:45:29 | 000,000,000 | ---D | M] -- C:\Users\***\AppData\Roaming\gtk-2.0 [2012.01.02 22:00:02 | 000,000,000 | ---D | M] -- C:\Users\***\AppData\Roaming\ICQ [2010.09.13 14:38:05 | 000,000,000 | ---D | M] -- C:\Users\***\AppData\Roaming\L4dOgerLauncher [2011.03.19 18:23:42 | 000,000,000 | ---D | M] -- C:\Users\***\AppData\Roaming\Leadertech [2011.03.28 16:22:36 | 000,000,000 | ---D | M] -- C:\Users\***\AppData\Roaming\LibreOffice [2011.02.06 01:37:43 | 000,000,000 | ---D | M] -- C:\Users\***\AppData\Roaming\Local [2012.01.29 17:24:09 | 000,000,000 | ---D | M] -- C:\Users\***\AppData\Roaming\Mumble [2011.03.05 16:37:09 | 000,000,000 | ---D | M] -- C:\Users\***\AppData\Roaming\Mumble(PR Edition) [2010.07.20 14:39:03 | 000,000,000 | ---D | M] -- C:\Users\***\AppData\Roaming\OpenOffice.org [2010.09.12 00:21:18 | 000,000,000 | ---D | M] -- C:\Users\***\AppData\Roaming\Orbit [2011.07.20 15:01:50 | 000,000,000 | ---D | M] -- C:\Users\***\AppData\Roaming\phonostar GmbH [2010.09.12 00:17:52 | 000,000,000 | ---D | M] -- C:\Users\***\AppData\Roaming\ProgSense [2011.05.12 20:11:02 | 000,000,000 | ---D | M] -- C:\Users\***\AppData\Roaming\TeamViewer [2011.12.10 00:43:13 | 000,000,000 | ---D | M] -- C:\Users\***\AppData\Roaming\TS3Client [2010.12.19 18:03:43 | 000,000,000 | ---D | M] -- C:\Users\***\AppData\Roaming\uTorrent [2011.05.12 20:13:06 | 000,000,000 | ---D | M] -- C:\Users\***\AppData\Roaming\Windows Live Writer [2010.09.14 20:41:43 | 000,000,000 | ---D | M] -- C:\Users\***\AppData\Roaming\WindSolutions [2010.07.02 16:09:31 | 000,000,000 | ---D | M] -- C:\Users\***\AppData\Roaming\XnView [2011.09.05 14:40:33 | 000,000,000 | ---D | M] -- C:\Users\***\AppData\Roaming\Youtube Downloader HD [2011.12.16 13:32:48 | 000,032,640 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT ========== Purity Check ========== < End of report > Code:
ATTFilter OTL Extras logfile created on: 04.02.2012 20:34:52 - Run 1
OTL by OldTimer - Version 3.2.31.0 Folder = C:\Users\***\Downloads
64bit- Home Premium Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
4,00 Gb Total Physical Memory | 2,50 Gb Available Physical Memory | 62,52% Memory free
8,00 Gb Paging File | 6,35 Gb Available in Paging File | 79,41% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 100,01 Gb Total Space | 26,41 Gb Free Space | 26,41% Space Free | Partition Type: NTFS
Drive D: | 365,75 Gb Total Space | 176,12 Gb Free Space | 48,15% Space Free | Partition Type: NTFS
Unable to calculate disk information.
Computer Name: ***-PC | User Name: *** | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation)
========== Shell Spawning ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1"
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1"
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
========== System Restore Settings ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows NT\SystemRestore]
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows NT\SystemRestore]
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 0
========== Authorized Applications List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
========== HKEY_LOCAL_MACHINE Uninstall List ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{071c9b48-7c32-4621-a0ac-3f809523288f}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{0E3DAF3D-FF69-345A-A99E-1FED304CA083}" = Microsoft .NET Framework 4 Client Profile DEU Language Pack
"{1444D2EE-C7AD-44A8-844F-2634B49353D1}" = Logitech Gaming Software 5.10
"{1B8ABA62-74F0-47ED-B18C-A43128E591B8}" = Windows Live ID Sign-in Assistant
"{1D8E6291-B0D5-35EC-8441-6616F567A0F7}" = Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219
"{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148
"{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
"{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{723C8298-C7B0-0407-A1B6-C3BA6F3FFAB1}" = Autodesk 3ds Max 2012 64-bit - German
"{8220EEFE-38CD-377E-8595-13398D740ACE}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
"{8338783A-0968-3B85-AFC7-BAAE0A63DC50}" = Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570
"{8E34682C-8118-31F1-BC4C-98CD9675E1C2}" = Microsoft .NET Framework 4 Extended
"{95120000-00B9-0409-1000-0000000FF1CE}" = Microsoft Application Error Reporting
"{aac9fcc4-dd9e-4add-901c-b5496a07ab2e}" = Microsoft Visual C++ 2005 Redistributable (x64) - KB2467175
"{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision" = NVIDIA 3D Vision Treiber 285.38
"{B2FE1952-0186-46c3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = NVIDIA Systemsteuerung 285.38
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Grafiktreiber 285.38
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB" = NVIDIA 3D Vision Controller-Treiber 285.38
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX" = NVIDIA PhysX-Systemsoftware 9.11.0621
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update" = NVIDIA Update 1.5.20
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NVIDIA.Update" = NVIDIA Update Components
"{B48E1FFD-A85D-45DB-9070-C06CDF6BD427}" = User's Guides
"{B6E3757B-5E77-3915-866A-CCFC4B8D194C}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053
"{D07A61E5-A59C-433C-BCBD-22025FA2287B}" = Windows Live Language Selector
"{D3120436-1358-4253-9EB2-257FFE8CE1D9}" = Logitech SetPoint 5.20
"{D5876F0A-B2E9-4376-B9F5-CD47B7B8D820}" = Windows Live Remote Client Resources
"{D930AF5C-5193-4616-887D-B974CEFC4970}" = Windows Live Remote Service Resources
"{D9C50188-12D5-4D3E-8F00-682346C2AA5F}" = Microsoft Xbox 360 Accessories 1.2
"{DA54F80E-261C-41A2-A855-549A144F2F59}" = Windows Live MIME IFilter
"{DF6D988A-EEA0-4277-AAB8-158E086E439B}" = Windows Live Remote Client
"{E02A6548-6FDE-40E2-8ED9-119D7D7E641F}" = Windows Live Remote Service
"{EA234BC3-39FE-4734-B72F-076086889F6D}" = Composite 2012 64-bit
"{EE936C7A-EA40-31D5-9B65-8E3E089C3828}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x64 9.0.30729.4148
"{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}" = Microsoft .NET Framework 4 Client Profile
"Autodesk 3ds Max 2012 64-bit - German" = Autodesk 3ds Max 2012 64-bit - German
"Autodesk FBX Plug-in 2012.0 - 3ds Max 2012 64-bit" = Autodesk FBX Plug-in 2012.0 - 3ds Max 2012 64-bit
"CCleaner" = CCleaner
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Client Profile DEU Language Pack" = Microsoft .NET Framework 4 Client Profile DEU Language Pack
"Microsoft .NET Framework 4 Extended" = Microsoft .NET Framework 4 Extended
"WinRAR archiver" = WinRAR
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
"{0138F525-6C8A-333F-A105-14AE030B9A54}" = Visual C++ 9.0 CRT (x86) WinSXS MSM
"{0481A2EA-DA1D-4D10-A7C3-F8237948F6B5}" = Messenger Companion
"{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam
"{04858915-9F49-4B2A-AED4-DC49A7DE6A7B}" = Battlefield 2(TM)
"{051E7B99-6D35-4905-BAF3-740893EF657A}" = Total Overdose
"{086BADF8-9B1F-4E89-B207-2EDA520972D6}" = Grand Theft Auto San Andreas
"{0B0F231F-CE6A-483D-AA23-77B364F75917}" = Windows Live Installer
"{1CA7ACD6-B21B-4240-AA05-4FC55F6E1031}" = Nero 8 Essentials
"{1DDB95A4-FD7B-4517-B3F1-2BCAA96879E6}" = Windows Live Writer Resources
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}" = Junk Mail filter update
"{200FEC62-3C34-4D60-9CE8-EC372E01C08F}" = Windows Live SOXE Definitions
"{20D4A895-748C-4D88-871C-FDB1695B0169}" = Platform
"{26A24AE4-039D-4CA4-87B4-2F83216022F0}" = Java(TM) 6 Update 22
"{26A24AE4-039D-4CA4-87B4-2F83216022FF}" = Java(TM) 6 Update 26
"{29042B1C-0713-4575-B7CA-5C8E7B0899D4}" = MySQL Connector/ODBC 5.1
"{2FDBBCEA-62DB-45F4-B6E5-0E1FB2A1F29D}" = Visual C++ 8.0 Runtime Setup Package (x64)
"{3336F667-9049-4D46-98B6-4C743EEBC5B1}" = Windows Live Photo Gallery
"{37B33B16-2535-49E7-8990-32668708A0A3}" = Windows Live UX Platform Language Pack
"{3AC8457C-0385-4BEA-A959-E095F05D6D67}" = Battlefield: Bad Company™ 2
"{3D347E6D-5A03-4342-B5BA-6A771885F379}" = Autodesk Backburner 2012.0.0
"{3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}" = eReg
"{41785C66-90F2-40CE-8CB5-1C94BFC97280}" = Microsoft Chart Controls for Microsoft .NET Framework 3.5
"{4286716B-1287-48E7-9078-3DC8248DBA96}" = OpenOffice.org 3.3
"{47B03C3E-D0C9-43BD-9AC5-0DDAC32783FC}_is1" = Xtreme-G 260.89 Win7-Vista 64bit
"{4999B2F1-3E74-409A-B8B5-E94448AA9EA6}" = SPEEDLINK Strike 2 Gamepad
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{50D4CB89-AF34-4978-96DC-C3034062E901}" = Battlefield 2: Special Forces
"{5454083B-1308-4485-BF17-1110000D8301}" = Grand Theft Auto IV
"{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
"{586509F0-350D-48B5-B763-9CC2F8D96C4C}" = Windows Live Sync
"{59E4543A-D49D-4489-B445-473D763C79AF}" = Microsoft Games for Windows - LIVE Redistributable
"{5EE7D259-D137-4438-9A5F-42F432EC0421}" = VC80CRTRedist - 8.0.50727.4053
"{65420DC9-306E-4371-905F-F4DC3B418E52}" = Autodesk Material Library Base Resolution Image Library 2012
"{682B3E4F-696A-42DE-A41C-4C07EA1678B4}" = Windows Live SOXE
"{6AFCA4E1-9B78-3640-8F72-A7BF33448200}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729
"{6D8DDB4A-C263-40DE-BA16-AFDAD159D59A}" = Tom Clancy's Splinter Cell Conviction
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{7578ADEA-D65F-4C89-A249-B1C88B6FFC20}" = ICQ7.5
"{789289CA-F73A-4A16-A331-54D498CE069F}" = Ventrilo Client
"{78A96B4C-A643-4D0F-98C2-A8E16A6669F9}" = Windows Live Messenger Companion Core
"{7F6D7FD9-648D-4DD9-BB6E-3990C675ECA4}" = NVIDIA PhysX
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{83C292B7-38A5-440B-A731-07070E81A64F}" = Windows Live PIMT Platform
"{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}" = Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570
"{873E4648-6F6E-47F6-A7B2-A6F8DFABDCE6}" = Windows Live Messenger
"{8833FFB6-5B0C-4764-81AA-06DFEED9A476}" = Realtek 8136 8168 8169 Ethernet Driver
"{888F1505-C2B3-4FDE-835D-36353EBD4754}" = Ubisoft Game Launcher
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8C6D6116-B724-4810-8F2D-D047E6B7D68E}" = Mesh Runtime
"{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}" = MSVCRT
"{8F0837C2-EE09-4903-88F3-1976FE7FFF4E}" = Autodesk Material Library 2012
"{92B94569-6683-4617-8C54-EB27A1B51B30}" = GTAIII
"{92EA4134-10D1-418A-91E1-5A0453131A38}" = Windows Live Movie Maker
"{9580813D-94B1-4C28-9426-A441E2BB29A5}" = Counter-Strike: Source
"{980A182F-E0A2-4A40-94C1-AE0C1235902E}" = Pando Media Booster
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{9D56775A-93F3-44A3-8092-840E3826DE30}" = Windows Live Mail
"{A498D9EB-927B-459B-85D6-DD6EF8C2C564}" = erLT
"{A9BDCA6B-3653-467B-AC83-94367DA3BFE3}" = Windows Live Photo Common
"{AAAFC670-569B-4A2F-82B4-42945E0DE3EF}" = Windows Live Writer
"{AC76BA86-7AD7-1031-7B44-A94000000001}" = Adobe Reader 9.4.4 - Deutsch
"{ACFBE99B-6981-4513-B17E-A2683CEB9EE5}" = Windows Live Mesh
"{AF8EEB05-8E9B-438B-B73B-DF9191DF29DD}" = PR Mumble 1.0.0
"{B113D18C-67B0-4FB7-B329-E89B66194AE6}" = Windows Live Fotogalerie
"{B1239994-A850-44E2-BED8-E70A21124E16}" = Windows Live Mail
"{B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1" = Spybot - Search & Destroy
"{B5751715-EC10-43D9-8C95-62E1368433EF}" = Autodesk Material Library Medium Resolution Image Library 2012
"{C05D8CDB-417D-4335-A38C-A0659EDFD6B8}" = The Sims™ 3
"{C2AB7DC4-489E-4BE9-887A-52262FBADBE0}" = Windows Live Photo Common
"{C5398A89-516C-4DAF-BA07-EE7949090E56}" = Windows Live Mesh ActiveX control for remote connections
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{CD95D125-2992-4858-B3EF-5F6FB52FBAD6}" = Skype Toolbars
"{CE4A3D0F-D1B0-47D1-BF99-3E957C548D12}" = LogMeIn Hamachi
"{CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}" = Windows Live UX Platform
"{D0B44725-3666-492D-BEF6-587A14BD9BD9}" = MSVCRT_amd64
"{D45240D3-B6B3-4FF9-B243-54ECE3E10066}" = Windows Live Communications Platform
"{DECDCB7C-58CC-4865-91AF-627F9798FE48}" = Windows Live Mesh
"{E09C4DB7-630C-4F06-A631-8EA7239923AF}" = D3DX10
"{E3E71D07-CD27-46CB-8448-16D4FB29AA13}" = Microsoft WSE 3.0 Runtime
"{E4E88B54-4777-4659-967A-2EED1E6AFD83}" = Windows Live Movie Maker
"{E633D396-5188-4E9D-8F6B-BFB8BF3467E8}" = Skype™ 5.0
"{E6DA58C0-4EC5-4F5E-B73E-2F22ED30ACFC}" = Razer Krait
"{EB4DF488-AAEF-406F-A341-CB2AAA315B90}" = Windows Live Messenger
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F95E4EE0-0C6E-4273-B6B9-91FD6F071D76}" = Windows Live Essentials
"1489-3350-5074-6281" = JDownloader 0.9
"7-Zip" = 7-Zip 4.65
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Age of Empires 2.0" = Microsoft Age of Empires II
"Age of Empires II: The Conquerors Expansion 1.0" = Microsoft Age of Empires II: The Conquerors Expansion
"APB Reloaded" = APB Reloaded
"ASIO4ALL" = ASIO4ALL
"Avira AntiVir Desktop" = Avira AntiVir Personal - Free Antivirus
"AVMWLANCLI" = AVM FRITZ!WLAN
"DivX Setup.divx.com" = DivX-Setup
"EXPERTool_is1" = EXPERTool 7.6
"FL Studio 10" = FL Studio 10
"Fraps" = Fraps (remove only)
"Free Audio CD Burner_is1" = Free Audio CD Burner version 1.4.7
"Free Audio Converter_is1" = Free Audio Converter version 2.2.10
"Free YouTube Download_is1" = Free YouTube Download version 3.0.13.815
"Free YouTube to MP3 Converter_is1" = Free YouTube to MP3 Converter version 3.10.6.727
"FreeHideIP" = Free Hide IP
"GamersFirst LIVE!" = GamersFirst LIVE!
"IL Download Manager" = IL Download Manager
"InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}" = VIA Plattform-Geräte-Manager
"InstallShield_{8A15B7D9-908A-4EF9-BA84-5AEDE61743EE}" = Call of Duty(R) 4 - Modern Warfare(TM) 1.6 Patch
"InstallShield_{931C37FC-594D-43A9-B10F-A2F2B1F03498}" = Call of Duty(R) 4 - Modern Warfare(TM) 1.7 Patch
"KLiteCodecPack_is1" = K-Lite Codec Pack 5.7.0 (Full)
"LogMeIn Hamachi" = LogMeIn Hamachi
"Mozilla Firefox 10.0 (x86 de)" = Mozilla Firefox 10.0 (x86 de)
"NVIDIA StereoUSB Driver" = NVIDIA 3D Vision Controller Driver
"NVIDIAStereo" = NVIDIA Stereoscopic 3D Driver
"phonostar3RadioPlayer_is1" = phonostar-Player Version 3.02.2
"Project Reality: BF2 (pr 0973mappack)_is1" = Project Reality: BF2 v0.973 Map Pack
"Project Reality: BF2 (pr)_is1" = Project Reality: BF2
"PunkBusterSvc" = PunkBuster Services
"Rockstar Games Social Club" = Rockstar Games Social Club
"San Andreas Mod Installer1.1" = San Andreas Mod Installer
"Steam App 104320" = Red Orchestra 2: Heroes of Stalingrad Beta
"Steam App 110800" = L.A. Noire: The Complete Edition
"Steam App 1200" = Red Orchestra: Ostfront 41-45
"Steam App 218" = Source SDK Base 2007
"Steam App 22370" = Fallout 3 - Game of the Year Edition
"Steam App 4000" = Garry's Mod
"Steam App 42700" = Call of Duty: Black Ops
"Steam App 42710" = Call of Duty: Black Ops - Multiplayer
"Steam App 72850" = The Elder Scrolls V: Skyrim
"SystemRequirementsLab" = System Requirements Lab
"Teamspeak 2 RC2_is1" = TeamSpeak 2 RC2
"Treiber-Studio 2011" = Treiber-Studio 2011 7.0.6.116
"Uninstall_is1" = Uninstall 1.0.0.1
"VLC media player" = VLC media player 1.0.5
"WinGimp-2.0_is1" = GIMP 2.6.10
"WinLiveSuite" = Windows Live Essentials
"WinPcapInst" = WinPcap 4.1.2
"Youtube Downloader HD_is1" = Youtube Downloader HD v. 2.6
========== HKEY_CURRENT_USER Uninstall List ==========
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"CopyTrans Suite" = Nur Deinstallierung der CopyTrans Suite möglich.
"mIRC" = mIRC
"TeamSpeak 3 Client" = TeamSpeak 3 Client
========== Last 10 Event Log Errors ==========
[ Application Events ]
Error - 04.02.2012 15:08:14 | Computer Name = ***-PC | Source = ESENT | ID = 455
Description = Windows (3628) Windows: Fehler -1811 beim Öffnen von Protokolldatei
C:\ProgramData\Microsoft\Search\Data\Applications\Windows\MSS00AE9.log.
Error - 04.02.2012 15:08:16 | Computer Name = ***-PC | Source = Windows Search Service | ID = 9000
Description =
Error - 04.02.2012 15:08:16 | Computer Name = ***-PC | Source = Windows Search Service | ID = 7040
Description =
Error - 04.02.2012 15:08:17 | Computer Name = ***-PC | Source = Windows Search Service | ID = 7042
Description =
Error - 04.02.2012 15:08:17 | Computer Name = ***-PC | Source = Windows Search Service | ID = 9002
Description =
Error - 04.02.2012 15:08:17 | Computer Name = ***-PC | Source = Windows Search Service | ID = 3029
Description =
Error - 04.02.2012 15:08:20 | Computer Name = ***-PC | Source = Windows Search Service | ID = 3029
Description =
Error - 04.02.2012 15:08:20 | Computer Name = ***-PC | Source = Windows Search Service | ID = 3028
Description =
Error - 04.02.2012 15:08:21 | Computer Name = ***-PC | Source = Windows Search Service | ID = 3058
Description =
Error - 04.02.2012 15:08:21 | Computer Name = ***-PC | Source = Windows Search Service | ID = 7010
Description =
[ System Events ]
Error - 04.02.2012 12:33:45 | Computer Name = ***-PC | Source = Service Control Manager | ID = 7000
Description = Der Dienst "TBPanel" wurde aufgrund folgenden Fehlers nicht gestartet:
%%2
Error - 04.02.2012 14:05:27 | Computer Name = ***-PC | Source = DCOM | ID = 10016
Description =
Error - 04.02.2012 15:07:13 | Computer Name = ***-PC | Source = Service Control Manager | ID = 7000
Description = Der Dienst "TBPanel" wurde aufgrund folgenden Fehlers nicht gestartet:
%%2
Error - 04.02.2012 15:08:21 | Computer Name = ***-PC | Source = Service Control Manager | ID = 7024
Description = Der Dienst "Windows Search" wurde mit folgendem dienstspezifischem
Fehler beendet: %%-1073473535.
Error - 04.02.2012 15:08:21 | Computer Name = ***-PC | Source = Service Control Manager | ID = 7031
Description = Der Dienst "Windows Search" wurde unerwartet beendet. Dies ist bereits
1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 30000 Millisekunden durchgeführt:
Neustart des Diensts.
Error - 04.02.2012 15:09:04 | Computer Name = ***-PC | Source = WMPNetworkSvc | ID = 866300
Description =
Error - 04.02.2012 15:09:04 | Computer Name = ***-PC | Source = Service Control Manager | ID = 7032
Description = Der Versuch des Dienststeuerungs-Managers, nach dem unerwarteten Beenden
des Dienstes "Windows Search" Korrekturmaßnahmen (Neustart des Diensts) durchzuführen,
ist fehlgeschlagen. Fehler: %%1056
Error - 04.02.2012 15:26:03 | Computer Name = ***-PC | Source = Service Control Manager | ID = 7000
Description = Der Dienst "TBPanel" wurde aufgrund folgenden Fehlers nicht gestartet:
%%2
Error - 04.02.2012 15:26:44 | Computer Name = ***-PC | Source = FWLANUSB | ID = 5002
Description = AVM FRITZ!WLAN USB Stick v1.1 : Fehlfunktion des Netzwerkadapters
wurde ermittelt.
Error - 04.02.2012 15:28:32 | Computer Name = ***-PC | Source = Service Control Manager | ID = 7000
Description = Der Dienst "TBPanel" wurde aufgrund folgenden Fehlers nicht gestartet:
%%2
< End of report >
|
| Themen zu "Aus Sicherheitsgründen wurde ihr Windowssystem blockiert." |
| 64-bit, 7-zip, antivir, avira, bho, bildschirm, black, blinkt, browser, call of duty, converter, desktop, downloader, error, firefox, flash player, grand theft auto, helper, home, install.exe, jdownloader, logfile, monitor.exe, mp3, nvidia update, plug-in, problem, realtek, registry, safer networking, scan, secur, security, software, studio, teamspeak, temporär, vdeck.exe, webcheck, windows, wurde ihr, youtube downloader |
Baum-Darstellung