|
Plagegeister aller Art und deren Bekämpfung: das programm kann die webseite nicht anzeigen win7,Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
29.07.2012, 17:10 | #1 |
| das programm kann die webseite nicht anzeigen win7, OTL Logfile: Code:
ATTFilter OTL logfile created on: 29.07.2012 17:59:11 - Run 3 OTL by OldTimer - Version 3.2.53.1 Folder = C:\Users\Cesar\Desktop 64bit- Professional Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation Internet Explorer (Version = 8.0.7601.17514) Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy 3,99 Gb Total Physical Memory | 2,83 Gb Available Physical Memory | 70,87% Memory free 7,98 Gb Paging File | 6,95 Gb Available in Paging File | 87,03% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86) Drive C: | 247,48 Gb Total Space | 66,37 Gb Free Space | 26,82% Space Free | Partition Type: NTFS Drive D: | 218,08 Gb Total Space | 19,26 Gb Free Space | 8,83% Space Free | Partition Type: NTFS Computer Name: CESAR1 | User Name: Cesar | Logged in as Administrator. Boot Mode: SafeMode with Networking | Scan Mode: Current user | Include 64bit Scans Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days ========== Processes (SafeList) ========== PRC - C:\Users\Cesar\Desktop\OTL.exe (OldTimer Tools) ========== Modules (No Company Name) ========== ========== Win32 Services (SafeList) ========== SRV:64bit: - (AppMgmt) -- C:\Windows\SysNative\appmgmts.dll (Microsoft Corporation) SRV - (Application Updater) -- C:\Program Files (x86)\Application Updater\ApplicationUpdater.exe (Spigot, Inc.) SRV - (AntiVirSchedulerService) -- C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe (Avira Operations GmbH & Co. KG) SRV - (AntiVirService) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe (Avira Operations GmbH & Co. KG) SRV - (MBAMService) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe (Malwarebytes Corporation) SRV - (Steam Client Service) -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe (Valve Corporation) SRV - (nvUpdatusService) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe (NVIDIA Corporation) SRV - (Stereo Service) -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe (NVIDIA Corporation) SRV - (PnkBstrA) -- C:\Windows\SysWOW64\PnkBstrA.exe () SRV - (NisSrv) -- c:\Programme\Microsoft Security Client\NisSrv.exe (Microsoft Corporation) SRV - (MsMpSvc) -- c:\Programme\Microsoft Security Client\MsMpEng.exe (Microsoft Corporation) SRV - (FLEXnet Licensing Service) -- C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe (Acresso Software Inc.) SRV - (UMVPFSrv) -- C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe (Logitech Inc.) SRV - (AdobeARMservice) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems Incorporated) SRV - (NAUpdate) @C:\Program Files (x86) -- C:\Program Files (x86)\Nero\Update\NASvc.exe (Nero AG) SRV - (wlidsvc) -- C:\Programme\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE (Microsoft Corp.) SRV - (DCService.exe) -- C:\ProgramData\DatacardService\DCService.exe () SRV - (clr_optimization_v4.0.30319_32) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe (Microsoft Corporation) SRV - (AsSysCtrlService) -- C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.02\AsSysCtrlService.exe (ASUSTeK Computer Inc.) SRV - (clr_optimization_v2.0.50727_32) -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe (Microsoft Corporation) SRV - (ABBYY.Licensing.FineReader.Sprint.9.0) -- C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe (ABBYY) SRV - (MDES) -- C:\ASUS.SYS\CONFIG\DVMExportService.exe (DeviceVM) ========== Driver Services (SafeList) ========== DRV:64bit: - (avipbb) -- C:\Windows\SysNative\drivers\avipbb.sys (Avira GmbH) DRV:64bit: - (avkmgr) -- C:\Windows\SysNative\drivers\avkmgr.sys (Avira GmbH) DRV:64bit: - (avgntflt) -- C:\Windows\SysNative\drivers\avgntflt.sys (Avira GmbH) DRV:64bit: - (MBAMProtector) -- C:\Windows\SysNative\drivers\mbam.sys (Malwarebytes Corporation) DRV:64bit: - (NVHDA) -- C:\Windows\SysNative\drivers\nvhda64v.sys (NVIDIA Corporation) DRV:64bit: - (NisDrv) -- C:\Windows\SysNative\drivers\NisDrvWFP.sys (Microsoft Corporation) DRV:64bit: - (sptd) -- C:\Windows\SysNative\drivers\sptd.sys (Duplex Secure Ltd.) DRV:64bit: - (Fs_Rec) -- C:\Windows\SysNative\drivers\fs_rec.sys (Microsoft Corporation) DRV:64bit: - (USBAAPL64) -- C:\Windows\SysNative\drivers\usbaapl64.sys (Apple, Inc.) DRV:64bit: - (LVUVC64) Logitech Webcam 250(UVC) -- C:\Windows\SysNative\drivers\LVUVC64.sys (Logitech Inc.) DRV:64bit: - (LVRS64) -- C:\Windows\SysNative\drivers\lvrs64.sys (Logitech Inc.) DRV:64bit: - (dtsoftbus01) -- C:\Windows\SysNative\drivers\dtsoftbus01.sys (DT Soft Ltd) DRV:64bit: - (Point64) -- C:\Windows\SysNative\drivers\point64.sys (Microsoft Corporation) DRV:64bit: - (dc3d) MS Hardware Device Detection Driver (USB) -- C:\Windows\SysNative\drivers\dc3d.sys (Microsoft Corporation) DRV:64bit: - (Netaapl) -- C:\Windows\SysNative\drivers\netaapl64.sys (Apple Inc.) DRV:64bit: - (amdsata) -- C:\Windows\SysNative\drivers\amdsata.sys (Advanced Micro Devices) DRV:64bit: - (amdxata) -- C:\Windows\SysNative\drivers\amdxata.sys (Advanced Micro Devices) DRV:64bit: - (yukonw7) -- C:\Windows\SysNative\drivers\yk62x64.sys (Marvell) DRV:64bit: - (HpSAMD) -- C:\Windows\SysNative\drivers\HpSAMD.sys (Hewlett-Packard Company) DRV:64bit: - (TsUsbFlt) -- C:\Windows\SysNative\drivers\TsUsbFlt.sys (Microsoft Corporation) DRV:64bit: - (huawei_enumerator) -- C:\Windows\SysNative\drivers\ew_jubusenum.sys (Huawei Technologies Co., Ltd.) DRV:64bit: - (hwdatacard) -- C:\Windows\SysNative\drivers\ewusbmdm.sys (Huawei Technologies Co., Ltd.) DRV:64bit: - (xusb21) -- C:\Windows\SysNative\drivers\xusb21.sys (Microsoft Corporation) DRV:64bit: - (MTsensor) -- C:\Windows\SysNative\drivers\ASACPI.sys () DRV:64bit: - (amdsbs) -- C:\Windows\SysNative\drivers\amdsbs.sys (AMD Technologies Inc.) DRV:64bit: - (LSI_SAS2) -- C:\Windows\SysNative\drivers\lsi_sas2.sys (LSI Corporation) DRV:64bit: - (stexstor) -- C:\Windows\SysNative\drivers\stexstor.sys (Promise Technology) DRV:64bit: - (ebdrv) -- C:\Windows\SysNative\drivers\evbda.sys (Broadcom Corporation) DRV:64bit: - (b06bdrv) -- C:\Windows\SysNative\drivers\bxvbda.sys (Broadcom Corporation) DRV:64bit: - (b57nd60a) -- C:\Windows\SysNative\drivers\b57nd60a.sys (Broadcom Corporation) DRV:64bit: - (hcw85cir) -- C:\Windows\SysNative\drivers\hcw85cir.sys (Hauppauge Computer Works, Inc.) DRV:64bit: - (GEARAspiWDM) -- C:\Windows\SysNative\drivers\GEARAspiWDM.sys (GEAR Software Inc.) DRV:64bit: - (mv61xx) -- C:\Windows\SysNative\drivers\mv61xx.sys (Marvell Semiconductor, Inc.) DRV:64bit: - (ElbyCDIO) -- C:\Windows\SysNative\drivers\ElbyCDIO.sys (Elaborate Bytes AG) DRV:64bit: - (MagicTune) -- C:\Windows\SysNative\drivers\MTiCtwl.sys (Samsung Electronics, Inc. ) DRV:64bit: - (arusb_lhx) -- C:\Windows\SysNative\drivers\arusb_lhx.sys (Atheros Communications, Inc.) DRV:64bit: - (ElbyCDFL) -- C:\Windows\SysNative\drivers\ElbyCDFL.sys (SlySoft, Inc.) DRV - (WIMMount) -- C:\Windows\SysWOW64\drivers\wimmount.sys (Microsoft Corporation) DRV - (ElbyCDFL) -- C:\Windows\SysWOW64\drivers\ElbyCDFL.sys (SlySoft, Inc.) ========== Standard Registry (SafeList) ========== ========== Internet Explorer ========== IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = hxxp://start.facemoods.com/?a=ddrnw&s={searchTerms}&f=4 IE - HKLM\..\URLSearchHook: {ba14329e-9550-4989-b3f2-9732e92d17cc} - C:\Program Files (x86)\Vuze_Remote\prxtbVuze.dll (Conduit Ltd.) IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC IE - HKLM\..\SearchScopes\{3D3E2F8D-288E-455B-8195-9B70336B3489}: "URL" = hxxp://startsear.ch/?aff=1&q={searchTerms} IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.de/ IE - HKCU\..\URLSearchHook: {ba14329e-9550-4989-b3f2-9732e92d17cc} - C:\Program Files (x86)\Vuze_Remote\prxtbVuze.dll (Conduit Ltd.) IE - HKCU\..\URLSearchHook: {F3FEE66E-E034-436a-86E4-9690573BEE8A} - C:\Program Files (x86)\YTD Toolbar\IE\6.2\ytdToolbarIE.dll (Spigot, Inc.) IE - HKCU\..\SearchScopes,DefaultScope = {724B6E02-72CA-491E-AC25-190142939646} IE - HKCU\..\SearchScopes\{724B6E02-72CA-491E-AC25-190142939646}: "URL" = hxxp://www.google.de/search?q={searchTerms} IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local ========== FireFox ========== FF - prefs.js..browser.search.defaultenginename: "" FF - prefs.js..browser.search.param.yahoo-fr: "chr-greentree_ff&type=937811&ilc=12" FF - prefs.js..browser.search.selectedEngine: "" FF - prefs.js..keyword.URL: "hxxp://search.yahoo.com/search?ei=utf-8&fr=greentree_ff1&type=937811&ilc=12&p=" FF - prefs.js..network.proxy.no_proxies_on: "*.local" FF - prefs.js..network.proxy.type: 0 FF:64bit: - HKLM\Software\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0: C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.) FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll () FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll () FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0: C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC) FF - HKLM\Software\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0: C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.) FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files (x86)\Java\jre6\bin\plugin2\npjp2.dll (Sun Microsystems, Inc.) FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files (x86)\Microsoft Silverlight\4.1.10329.0\npctrl.dll ( Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@Nero.com/KM: C:\PROGRA~2\COMMON~1\Nero\BROWSE~1\NPBROW~1.DLL (Nero AG) FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVision: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation) FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVisionStreaming: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation) FF - HKLM\Software\MozillaPlugins\@veetle.com/veetleCorePlugin,version=0.9.18: C:\Program Files (x86)\Veetle\plugins\npVeetle.dll (Veetle Inc) FF - HKLM\Software\MozillaPlugins\@veetle.com/veetlePlayerPlugin,version=0.9.18: C:\Program Files (x86)\Veetle\Player\npvlc.dll (Veetle Inc) FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF - HKCU\Software\MozillaPlugins\@Skype Limited.com/Facebook Video Calling Plugin: C:\Users\Cesar\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited) FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{23fcfd51-4958-4f00-80a3-ae97e717ed8b}: C:\Program Files (x86)\DivX\DivX Plus Web Player\firefox\DivXHTML5 [2012.01.19 02:58:31 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 9.0.1\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2012.07.22 13:35:58 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 9.0.1\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2012.07.22 13:35:58 | 000,000,000 | ---D | M] [2012.01.18 00:59:42 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Cesar\AppData\Roaming\mozilla\Extensions [2012.07.29 07:36:26 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Cesar\AppData\Roaming\mozilla\Firefox\Profiles\mu6giq3b.default\extensions [2012.04.29 00:09:35 | 000,000,000 | ---D | M] (IMinent Toolbar) -- C:\Users\Cesar\AppData\Roaming\mozilla\Firefox\Profiles\mu6giq3b.default\extensions\{C9B68337-E93A-44EA-94DC-CB300EC06444} [2012.04.29 00:08:17 | 000,000,000 | ---D | M] (Yontoo) -- C:\Users\Cesar\AppData\Roaming\mozilla\Firefox\Profiles\mu6giq3b.default\extensions\plugin@yontoo.com [2012.04.29 00:21:07 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\mozilla firefox\extensions [2012.03.19 22:34:57 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files (x86)\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA} [2012.07.28 06:53:58 | 000,000,000 | ---D | M] (Widgi Toolbar Platform) -- C:\PROGRAM FILES (X86)\COMMON FILES\SPIGOT\WTXPCOM [2012.07.28 06:53:59 | 000,000,000 | ---D | M] (YTD Toolbar) -- C:\PROGRAM FILES (X86)\YTD TOOLBAR\FF [2012.04.29 00:08:12 | 000,086,809 | ---- | M] () (No name found) -- C:\USERS\CESAR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MU6GIQ3B.DEFAULT\EXTENSIONS\ONECLICKDOWNLOADER@ONECLICKDOWNLOADER.COM.XPI [2011.12.21 09:42:29 | 000,121,816 | ---- | M] (Mozilla Foundation) -- C:\Program Files (x86)\mozilla firefox\components\browsercomps.dll [2012.03.19 22:34:50 | 000,476,904 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files (x86)\mozilla firefox\plugins\npdeployJava1.dll [2011.12.21 07:08:50 | 000,001,392 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\amazondotcom-de.xml [2011.12.21 07:02:40 | 000,002,252 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\bing.xml [2011.12.21 07:08:50 | 000,001,153 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\eBay-de.xml [2011.11.23 10:20:52 | 000,002,048 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\fcmdSrch.xml [2011.12.21 07:08:50 | 000,006,805 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\leo_ende_de.xml [2011.12.21 07:08:50 | 000,001,178 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\wikipedia-de.xml [2011.12.21 07:08:50 | 000,001,105 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\yahoo-de.xml O1 HOSTS File: ([2009.06.10 23:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts O2:64bit: - BHO: (Windows Live ID Sign-in Helper) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Programme\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.) O2:64bit: - BHO: (Easy Photo Print) - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll (SEIKO EPSON CORPORATION / CyCom Technology Corp.) O2:64bit: - BHO: (SplitButtonBHO Class) - {C0C86BBE-9509-4296-8459-FDBFDAF4B673} - C:\Programme\FRITZ!Box\AddOn (IE)\FBoxIESplitButton.dll (AVM Berlin) O2 - BHO: (TBSB01620 Class) - {58124A0B-DC32-4180-9BFF-E0E21AE34026} - C:\Program Files (x86)\IMinent Toolbar\tbcore3.dll File not found O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.) O2 - BHO: (Vuze Remote Toolbar) - {ba14329e-9550-4989-b3f2-9732e92d17cc} - C:\Program Files (x86)\Vuze_Remote\prxtbVuze.dll (Conduit Ltd.) O2 - BHO: (YTD Toolbar) - {F3FEE66E-E034-436a-86E4-9690573BEE8A} - C:\Program Files (x86)\YTD Toolbar\IE\6.2\ytdToolbarIE.dll (Spigot, Inc.) O2 - BHO: (Yontoo) - {FD72061E-9FDE-484D-A58A-0BAB4151CAD8} - C:\Program Files (x86)\Yontoo\YontooIEClient.dll (Yontoo LLC) O3:64bit: - HKLM\..\Toolbar: (Easy Photo Print) - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll (SEIKO EPSON CORPORATION / CyCom Technology Corp.) O3 - HKLM\..\Toolbar: (IMinent Toolbar) - {977AE9CC-AF83-45E8-9E03-E2798216E2D5} - C:\Program Files (x86)\IMinent Toolbar\tbcore3.dll File not found O3 - HKLM\..\Toolbar: (Vuze Remote Toolbar) - {ba14329e-9550-4989-b3f2-9732e92d17cc} - C:\Program Files (x86)\Vuze_Remote\prxtbVuze.dll (Conduit Ltd.) O3 - HKLM\..\Toolbar: (toolplugin) - {DFEFCDEE-CF1A-4FC8-89AF-189327213627} - C:\Users\Cesar\AppData\Roaming\toolplugin\toolbar.dll File not found O3 - HKLM\..\Toolbar: (YTD Toolbar) - {F3FEE66E-E034-436a-86E4-9690573BEE8A} - C:\Program Files (x86)\YTD Toolbar\IE\6.2\ytdToolbarIE.dll (Spigot, Inc.) O3 - HKCU\..\Toolbar\WebBrowser: (IMinent Toolbar) - {977AE9CC-AF83-45E8-9E03-E2798216E2D5} - C:\Program Files (x86)\IMinent Toolbar\tbcore3.dll File not found O3 - HKCU\..\Toolbar\WebBrowser: (Vuze Remote Toolbar) - {BA14329E-9550-4989-B3F2-9732E92D17CC} - C:\Program Files (x86)\Vuze_Remote\prxtbVuze.dll (Conduit Ltd.) O4:64bit: - HKLM..\Run: [IntelliPoint] c:\Program Files\Microsoft IntelliPoint\ipoint.exe (Microsoft Corporation) O4:64bit: - HKLM..\Run: [itype] c:\Program Files\Microsoft IntelliType Pro\itype.exe (Microsoft Corporation) O4:64bit: - HKLM..\Run: [MagicTuneEngine] C:\Programme\MagicTune Premium\MagicTuneLauncher.exe () O4:64bit: - HKLM..\Run: [MSC] c:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation) O4 - HKLM..\Run: [] File not found O4 - HKLM..\Run: [APSDaemon] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.) O4 - HKLM..\Run: [avgnt] C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe (Avira Operations GmbH & Co. KG) O4 - HKLM..\Run: [CloneCDTray] C:\Program Files (x86)\SlySoft\CloneCD\CloneCDTray.exe (SlySoft, Inc.) O4 - HKLM..\Run: [DivXUpdate] C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe () O4 - HKLM..\Run: [EEventManager] C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe (SEIKO EPSON CORPORATION) O4 - HKLM..\Run: [LWS] C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe (Logitech Inc.) O4 - HKLM..\Run: [Malwarebytes' Anti-Malware] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation) O4 - HKLM..\Run: [SearchSettings] C:\Program Files (x86)\Common Files\Spigot\Search Settings\SearchSettings.exe (Spigot, Inc.) O4 - HKCU..\Run: [DAEMON Tools Lite] C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd) O4 - HKCU..\Run: [EPSON SX130 Series] C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIHJE.EXE /FU "C:\Windows\TEMP\E_SEA54.tmp" /EF "HKCU" File not found O4 - HKCU..\Run: [Facebook Update] C:\Users\Cesar\AppData\Local\Facebook\Update\FacebookUpdate.exe (Facebook Inc.) O4 - HKCU..\Run: [tcskdflrnkvlvmo] C:\ProgramData\tcskdflr.exe () O4 - HKLM..\RunOnce: [B Register C:\Program Files (x86)\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll] C:\Program Files (x86)\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll (DivX, LLC) O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0 O8:64bit: - Extra context menu item: Free YouTube to MP3 Converter - C:\Users\Cesar\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm () O8:64bit: - Extra context menu item: FRITZ!Box Dial - C:\Programme\FRITZ!Box\AddOn (IE)\fb_addon_dial_ie.htm () O8 - Extra context menu item: Free YouTube to MP3 Converter - C:\Users\Cesar\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm () O8 - Extra context menu item: FRITZ!Box Dial - C:\Programme\FRITZ!Box\AddOn (IE)\fb_addon_dial_ie.htm () O9:64bit: - Extra Button: FRITZ!Box AddOn - {328ECD19-C167-40eb-A0C7-16FE7634105F} - C:\Programme\FRITZ!Box\AddOn (IE)\FBoxIESplitButton.dll (AVM Berlin) O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000007 [] - C:\Programme\Bonjour\mdnsNSP.dll (Apple Inc.) O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000008 [] - C:\Programme\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL (Microsoft Corp.) O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000009 [] - C:\Programme\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL (Microsoft Corp.) O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.) O1364bit: - gopher Prefix: missing O13 - gopher Prefix: missing O15 - HKCU\..Trusted Domains: fritz.box ([]* in Lokales Intranet) O15 - HKCU\..Trusted Ranges: Range1 ([*] in Lokales Intranet) O16 - DPF: {0D41B8C5-2599-4893-8183-00195EC8D5F9} hxxp://support.asus.de/common/asusTek_sys_ctrl.cab (asusTek_sysctrl Class) O16 - DPF: {1E54D648-B804-468d-BC78-4AFFED8E262F} hxxp://www.nvidia.com/content/DriverDownload/srl/3.0.0.4/srl_bin/sysreqlab_nvd.cab (System Requirements Lab Class) O16 - DPF: {4871A87A-BFDD-4106-8153-FFDE2BAC2967} hxxp://dlm.tools.akamai.com/dlmanager/versions/activex/dlm-activex-2.2.5.7.cab (DLM Control) O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} hxxp://download.divx.com/player/DivXBrowserPlugin.cab (DivXBrowserPlugin Object) O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab (Java Plug-in 1.6.0_31) O16 - DPF: {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab (Java Plug-in 1.6.0_31) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab (Java Plug-in 1.6.0_31) O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/pub/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object) O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{A9A5E907-7F29-426B-BB49-5E5A2188195F}: DhcpNameServer = 192.168.178.1 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{C83E0845-47B6-44D3-BA11-1AAD91769543}: NameServer = 192.168.178.1 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{F5EC332C-458A-4571-83AD-5CD40A632A51}: NameServer = 192.168.2.1 O18:64bit: - Protocol\Handler\livecall - No CLSID value found O18:64bit: - Protocol\Handler\msnim - No CLSID value found O18:64bit: - Protocol\Handler\wlmailhtml - No CLSID value found O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation) O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation) O20:64bit: - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation) O20:64bit: - HKLM Winlogon: VMApplet - (/pagefile) - File not found O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysWOW64\userinit.exe (Microsoft Corporation) O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found. O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found. O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2010.09.25 15:57:38 | 000,000,000 | ---- | M] () - D:\AUTOEXEC.BAT -- [ NTFS ] O33 - MountPoints2\{acbc3ac5-f1b2-11e0-84af-20cf302c659d}\Shell - "" = AutoRun O33 - MountPoints2\{acbc3ac5-f1b2-11e0-84af-20cf302c659d}\Shell\AutoRun\command - "" = F:\setup.exe O33 - MountPoints2\{acbc3acb-f1b2-11e0-84af-20cf302c659d}\Shell - "" = AutoRun O33 - MountPoints2\{acbc3acb-f1b2-11e0-84af-20cf302c659d}\Shell\AutoRun\command - "" = G:\Setup.exe O33 - MountPoints2\{b95c5009-9dca-11e0-8062-806e6f6e6963}\Shell - "" = AutoRun O33 - MountPoints2\{b95c5009-9dca-11e0-8062-806e6f6e6963}\Shell\AutoRun\command - "" = E:\autorun.exe O33 - MountPoints2\{c37eb54a-d30c-11e0-a5ac-20cf302c659d}\Shell - "" = AutoRun O33 - MountPoints2\{c37eb54a-d30c-11e0-a5ac-20cf302c659d}\Shell\AutoRun\command - "" = F:\AutoRun.exe O33 - MountPoints2\{c37eb567-d30c-11e0-a5ac-20cf302c659d}\Shell - "" = AutoRun O33 - MountPoints2\{c37eb567-d30c-11e0-a5ac-20cf302c659d}\Shell\AutoRun\command - "" = F:\AutoRun.exe O33 - MountPoints2\F\Shell - "" = AutoRun O33 - MountPoints2\F\Shell\AutoRun\command - "" = F:\AutoRun.exe O34 - HKLM BootExecute: (autocheck autochk *) O35:64bit: - HKLM\..comfile [open] -- "%1" %* O35:64bit: - HKLM\..exefile [open] -- "%1" %* O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %* O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3) O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2) O38 - SubSystems\\Windows: (ServerDll=sxssrv,4) ========== Files/Folders - Created Within 30 Days ========== [2012.07.29 17:48:01 | 000,595,968 | ---- | C] (OldTimer Tools) -- C:\Users\Cesar\Desktop\OTL.exe [2012.07.29 16:37:08 | 000,000,000 | ---D | C] -- C:\Users\Cesar\AppData\Roaming\Malwarebytes [2012.07.29 16:37:06 | 000,024,904 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mbam.sys [2012.07.29 16:37:06 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware [2012.07.29 16:37:06 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware [2012.07.29 16:37:06 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes [2012.07.29 15:12:20 | 000,000,000 | ---D | C] -- C:\Users\Cesar\AppData\Roaming\Avira [2012.07.29 15:09:46 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira [2012.07.29 15:08:13 | 000,132,832 | ---- | C] (Avira GmbH) -- C:\Windows\SysNative\drivers\avipbb.sys [2012.07.29 15:08:13 | 000,098,848 | ---- | C] (Avira GmbH) -- C:\Windows\SysNative\drivers\avgntflt.sys [2012.07.29 15:08:13 | 000,027,760 | ---- | C] (Avira GmbH) -- C:\Windows\SysNative\drivers\avkmgr.sys [2012.07.29 15:08:12 | 000,000,000 | ---D | C] -- C:\ProgramData\Avira [2012.07.29 15:08:12 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Avira [2012.07.29 07:57:21 | 000,000,000 | ---D | C] -- C:\Users\Cesar\AppData\Local\{E406B6A8-C824-42F1-B2B4-994071320E31} [2012.07.29 07:57:09 | 000,000,000 | ---D | C] -- C:\Users\Cesar\AppData\Local\{FECD7C3A-0255-4F9D-B75D-6EA8835B6F63} [2012.07.29 07:26:00 | 000,000,000 | ---D | C] -- C:\ProgramData\opmslstznfokcij [2012.07.28 18:52:33 | 000,000,000 | ---D | C] -- C:\Users\Cesar\AppData\Local\{591CAE08-8CE7-4887-A975-CC040752761A} [2012.07.28 18:52:21 | 000,000,000 | ---D | C] -- C:\Users\Cesar\AppData\Local\{A1D4B6D9-29F3-4D6D-8922-26211F17DF4F} [2012.07.28 06:53:54 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Application Updater [2012.07.28 06:53:53 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\YTD Toolbar [2012.07.28 06:53:53 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Spigot [2012.07.28 06:51:53 | 000,000,000 | ---D | C] -- C:\Users\Cesar\AppData\Local\{FBFE9B28-AB52-45CD-8228-64E80FC8FF3F} [2012.07.28 06:51:41 | 000,000,000 | ---D | C] -- C:\Users\Cesar\AppData\Local\{2E105060-BA15-41EC-A455-B6EF9AB3E5BA} [2012.07.27 06:54:18 | 000,000,000 | ---D | C] -- C:\Users\Cesar\AppData\Local\{7C7B4967-C4B1-4AF3-927B-77ADD7C97B45} [2012.07.27 06:54:07 | 000,000,000 | ---D | C] -- C:\Users\Cesar\AppData\Local\{5E384898-6861-45D6-AADE-4290DCED3A54} [2012.07.26 07:10:20 | 000,000,000 | ---D | C] -- C:\Users\Cesar\AppData\Local\{31101171-41A8-4925-9456-DC252D930854} [2012.07.26 07:10:08 | 000,000,000 | ---D | C] -- C:\Users\Cesar\AppData\Local\{80A24E0E-ACED-4C9A-880F-C284E2FB7ACD} [2012.07.25 17:09:22 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\KONAMI [2012.07.25 17:08:17 | 000,000,000 | ---D | C] -- C:\Users\Cesar\Desktop\PES2013_DEMO [2012.07.25 16:34:19 | 000,000,000 | ---D | C] -- C:\Users\Cesar\AppData\Local\{19B6D461-48E4-4345-A377-A1A17632D517} [2012.07.25 16:34:07 | 000,000,000 | ---D | C] -- C:\Users\Cesar\AppData\Local\{96567F1D-893F-4577-B3DB-3962CD0B5BF3} [2012.07.24 18:47:06 | 000,000,000 | ---D | C] -- C:\Users\Cesar\AppData\Local\{668B558B-93E8-4774-8F87-E094F4021F38} [2012.07.24 18:46:54 | 000,000,000 | ---D | C] -- C:\Users\Cesar\AppData\Local\{86430D1F-EF11-478A-B923-33C619FCAD83} [2012.07.24 06:46:28 | 000,000,000 | ---D | C] -- C:\Users\Cesar\AppData\Local\{A697C424-28D5-4009-930C-5FFC99442860} [2012.07.24 06:46:16 | 000,000,000 | ---D | C] -- C:\Users\Cesar\AppData\Local\{372B8CBA-234E-4A94-8CCB-4315CE5B855C} [2012.07.23 06:54:04 | 000,000,000 | ---D | C] -- C:\Users\Cesar\AppData\Local\{A89140DD-CC22-4243-80C5-49EC790BA77B} [2012.07.23 06:53:51 | 000,000,000 | ---D | C] -- C:\Users\Cesar\AppData\Local\{6E58E964-D5BB-480C-A337-B77D1D480575} [2012.07.22 13:38:56 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes [2012.07.22 13:38:37 | 000,000,000 | ---D | C] -- C:\Program Files\iPod [2012.07.22 13:38:36 | 000,000,000 | ---D | C] -- C:\Program Files\iTunes [2012.07.22 13:38:36 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\iTunes [2012.07.22 13:35:55 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime [2012.07.22 13:35:48 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\QuickTime [2012.07.22 13:09:58 | 000,000,000 | ---D | C] -- C:\Users\Cesar\Desktop\redsn0w_win_0.9.14b1 [2012.07.22 12:31:49 | 000,000,000 | ---D | C] -- C:\Users\Cesar\AppData\Local\{9A36EF21-C3B1-40E5-A5A2-D5E38A1D2EA6} [2012.07.22 12:31:36 | 000,000,000 | ---D | C] -- C:\Users\Cesar\AppData\Local\{FC7376A4-525B-48C9-A05A-BFEB4BAE6376} [2012.07.21 09:38:40 | 000,000,000 | ---D | C] -- C:\Users\Cesar\AppData\Local\{043AB550-9D24-4CB3-B715-287B9444FCE2} [2012.07.21 09:38:28 | 000,000,000 | ---D | C] -- C:\Users\Cesar\AppData\Local\{83B34C7C-CEFA-4235-97D4-D7CF247EDA63} [2012.07.20 04:10:28 | 000,000,000 | ---D | C] -- C:\Users\Cesar\AppData\Local\{96448D2E-34A4-4031-82C3-C4ECB0389C73} [2012.07.20 04:10:13 | 000,000,000 | ---D | C] -- C:\Users\Cesar\AppData\Local\{98B7E5C1-ED0A-45CB-A6C7-160984230816} [2012.07.19 15:07:51 | 000,000,000 | ---D | C] -- C:\Users\Cesar\AppData\Local\{36E83437-1EFE-4B96-BA12-F47D564B38E2} [2012.07.19 15:07:39 | 000,000,000 | ---D | C] -- C:\Users\Cesar\AppData\Local\{379ACA3A-FBFF-431B-A795-A693E405C992} [2012.07.18 17:21:57 | 000,000,000 | ---D | C] -- C:\Users\Cesar\AppData\Local\{0C3D4347-8FFA-44B8-A467-4C78F355E7BF} [2012.07.18 17:21:44 | 000,000,000 | ---D | C] -- C:\Users\Cesar\AppData\Local\{02B77F95-37A9-4FCF-ABD0-832B95C7235F} [2012.07.18 03:48:57 | 000,000,000 | ---D | C] -- C:\Users\Cesar\AppData\Local\{F23B7B5E-6713-48BF-9BD0-5E3508910A57} [2012.07.18 03:48:43 | 000,000,000 | ---D | C] -- C:\Users\Cesar\AppData\Local\{FEE0C5C0-0CF4-4359-9CE0-4EB4AFA40A70} [2012.07.17 15:13:39 | 000,000,000 | ---D | C] -- C:\Users\Cesar\AppData\Local\{29CE48BA-8025-4ADD-8DFA-741D3F334C80} [2012.07.17 15:13:27 | 000,000,000 | ---D | C] -- C:\Users\Cesar\AppData\Local\{D0BB2C2B-F2AE-4070-8940-352232935DE7} [2012.07.16 15:04:22 | 000,000,000 | ---D | C] -- C:\Users\Cesar\AppData\Local\{59606766-FBE3-4F76-83C8-3E1DF6BFE510} [2012.07.16 15:04:04 | 000,000,000 | ---D | C] -- C:\Users\Cesar\AppData\Local\{C9099AED-ACE9-46A3-9038-47459D28ED7B} [2012.07.15 15:30:56 | 000,000,000 | ---D | C] -- C:\Users\Cesar\AppData\Local\{16FE10DB-BADC-44AC-87D2-66A9B1276C45} [2012.07.15 15:30:42 | 000,000,000 | ---D | C] -- C:\Users\Cesar\AppData\Local\{E815C440-64CA-4360-A183-22352F2BB768} [2012.07.15 01:32:56 | 000,000,000 | ---D | C] -- C:\Users\Cesar\AppData\Local\{2A8E2EF3-8B1B-4E27-812F-DD6130A3AFB6} [2012.07.15 01:32:38 | 000,000,000 | ---D | C] -- C:\Users\Cesar\AppData\Local\{E897C201-F950-4487-992E-5CF1B891DA13} [2012.07.13 23:59:46 | 000,000,000 | ---D | C] -- C:\Users\Cesar\AppData\Local\{038587D6-A403-48DD-83C4-1D8D87BF5B9D} [2012.07.13 23:59:35 | 000,000,000 | ---D | C] -- C:\Users\Cesar\AppData\Local\{9C034DD4-792D-4AB2-9D5B-B5F203B109B1} [2012.07.13 11:59:07 | 000,000,000 | ---D | C] -- C:\Users\Cesar\AppData\Local\{4E8E8982-28DF-4F5B-862D-88704A4DAB5B} [2012.07.13 11:58:53 | 000,000,000 | ---D | C] -- C:\Users\Cesar\AppData\Local\{E0647CDE-358D-40F8-A0B3-B9B09B4B90CC} [2012.07.12 23:57:19 | 000,000,000 | ---D | C] -- C:\Users\Cesar\AppData\Local\{93B0AF70-CCB1-4739-899D-8CD18DBF1A45} [2012.07.12 23:57:06 | 000,000,000 | ---D | C] -- C:\Users\Cesar\AppData\Local\{DEDC7783-54CB-4012-9A17-2A094463770D} [2012.07.11 23:58:35 | 000,000,000 | ---D | C] -- C:\Users\Cesar\AppData\Local\{406B6D21-A62F-4AE5-B799-9365F25FD67A} [2012.07.11 23:58:23 | 000,000,000 | ---D | C] -- C:\Users\Cesar\AppData\Local\{1BB01463-FC58-4949-83F7-1508D737A4F1} [2012.07.11 11:04:17 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msxml3r.dll [2012.07.11 11:04:17 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msxml3r.dll [2012.07.11 11:04:12 | 000,307,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ncrypt.dll [2012.07.11 11:04:10 | 000,805,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\cdosys.dll [2012.07.11 11:04:09 | 001,133,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cdosys.dll [2012.07.11 11:02:41 | 000,000,000 | ---D | C] -- C:\Users\Cesar\AppData\Local\{6DBF2C85-B307-4DAE-B59D-F92053F6E33D} [2012.07.11 11:02:25 | 000,000,000 | ---D | C] -- C:\Users\Cesar\AppData\Local\{B6EEE403-F884-4226-9B9A-7FE0758002D3} [2012.07.10 11:51:59 | 000,000,000 | ---D | C] -- C:\Users\Cesar\AppData\Local\{5D14F621-3B49-4A84-8307-D92D098634AD} [2012.07.10 11:51:45 | 000,000,000 | ---D | C] -- C:\Users\Cesar\AppData\Local\{34F02EA2-5525-4644-9285-DC2C54F5D7FF} [2012.07.10 00:03:42 | 000,000,000 | ---D | C] -- C:\Users\Cesar\AppData\Local\{711F9E8C-BFF2-4F41-AB8B-E012613CA4AF} [2012.07.10 00:03:30 | 000,000,000 | ---D | C] -- C:\Users\Cesar\AppData\Local\{8FB139E3-D570-408D-B822-FE6008ABFAC4} [2012.07.09 02:02:13 | 000,000,000 | ---D | C] -- C:\Users\Cesar\AppData\Local\{FD3F709D-66F0-44E0-A963-46FAA2F1FCFF} [2012.07.08 14:01:48 | 000,000,000 | ---D | C] -- C:\Users\Cesar\AppData\Local\{10E28C73-4DEF-4034-A19D-D79D33CB42E1} [2012.07.08 14:01:36 | 000,000,000 | ---D | C] -- C:\Users\Cesar\AppData\Local\{A935F024-EBC6-4EA8-8E79-71157E18A518} [2012.07.07 21:26:07 | 000,000,000 | ---D | C] -- C:\Users\Cesar\AppData\Local\{D1358A0C-42BD-4982-B4E2-EDF32A65103F} [2012.07.07 21:25:55 | 000,000,000 | ---D | C] -- C:\Users\Cesar\AppData\Local\{77CBCFAD-93AB-4804-B23C-2FBCA5A17ED2} [2012.07.07 06:44:42 | 000,000,000 | ---D | C] -- C:\Users\Cesar\AppData\Local\{A4591266-BEF6-4CB5-AA46-A3FC4B25D976} [2012.07.07 06:44:29 | 000,000,000 | ---D | C] -- C:\Users\Cesar\AppData\Local\{7BBFC06D-33F3-45F8-9203-FDE14D7741B1} [2012.07.06 06:59:07 | 000,000,000 | ---D | C] -- C:\Users\Cesar\AppData\Local\{E7642E2E-B1B0-4998-BC1E-A334F03D9798} [2012.07.06 06:58:56 | 000,000,000 | ---D | C] -- C:\Users\Cesar\AppData\Local\{763AE17F-FA29-42D9-9337-FA5DCAFCE6A2} [2012.07.05 16:52:30 | 000,000,000 | ---D | C] -- C:\Users\Cesar\AppData\Local\{7F335AE7-52CB-444C-8154-F1434FB1DFE8} [2012.07.05 16:52:16 | 000,000,000 | ---D | C] -- C:\Users\Cesar\AppData\Local\{6091F7CD-9EBD-43D7-936B-E6F588489270} [2012.07.04 19:24:36 | 000,000,000 | ---D | C] -- C:\Users\Cesar\AppData\Local\{15880897-F285-4BFE-B59B-460BD2170D1A} [2012.07.04 19:24:21 | 000,000,000 | ---D | C] -- C:\Users\Cesar\AppData\Local\{3CA4333F-09CB-48F5-AC51-60C0F714F2FE} [2012.07.04 07:08:20 | 000,000,000 | ---D | C] -- C:\Users\Cesar\AppData\Local\{501F0B10-50D8-459D-A7EF-F4294DF8A978} [2012.07.04 07:08:07 | 000,000,000 | ---D | C] -- C:\Users\Cesar\AppData\Local\{9A359E5C-89ED-4C39-A5BF-A939F4F0FE75} [2012.07.03 19:07:32 | 000,000,000 | ---D | C] -- C:\Users\Cesar\AppData\Local\{3EE2C019-FCA4-4EED-8C35-7E00D72BB7A0} [2012.07.03 19:07:21 | 000,000,000 | ---D | C] -- C:\Users\Cesar\AppData\Local\{D71922D3-3FC1-4A23-BDB5-509023A47805} [2012.07.03 07:06:55 | 000,000,000 | ---D | C] -- C:\Users\Cesar\AppData\Local\{CB9CA044-4A39-4D5B-AEAC-835E2A5C9C71} [2012.07.03 07:06:43 | 000,000,000 | ---D | C] -- C:\Users\Cesar\AppData\Local\{50B3C13C-EB85-4501-B70F-E800D536071F} [2012.07.02 14:40:04 | 000,000,000 | ---D | C] -- C:\Users\Cesar\AppData\Local\{7EF615FC-72BC-4212-A7D4-33DC02AA666C} [2012.07.02 14:39:53 | 000,000,000 | ---D | C] -- C:\Users\Cesar\AppData\Local\{53099017-D3FA-4DE7-830D-3C74F43581D3} [2012.06.30 12:21:03 | 000,000,000 | ---D | C] -- C:\Users\Cesar\AppData\Local\{59C32679-D97C-413B-B3F0-BF0407DDF668} [2012.06.30 12:20:49 | 000,000,000 | ---D | C] -- C:\Users\Cesar\AppData\Local\{9C7B0764-75E3-4AD9-8278-2A4CDCF8A644} [2012.06.29 20:43:16 | 000,000,000 | ---D | C] -- C:\Users\Cesar\AppData\Local\{BAE0B887-DB9D-43B9-B94C-2712C15AC17D} [2012.06.29 20:43:02 | 000,000,000 | ---D | C] -- C:\Users\Cesar\AppData\Local\{C31D4F04-181F-4B9A-B7D6-BD8051830038} [1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ] ========== Files - Modified Within 30 Days ========== [2012.07.29 17:48:06 | 000,595,968 | ---- | M] (OldTimer Tools) -- C:\Users\Cesar\Desktop\OTL.exe [2012.07.29 17:33:22 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat [2012.07.29 17:33:16 | 3214,233,600 | -HS- | M] () -- C:\hiberfil.sys [2012.07.29 17:31:50 | 000,000,177 | -H-- | M] () -- C:\dvmexp.idx [2012.07.29 17:31:29 | 000,000,000 | ---- | M] () -- C:\Windows\SysNative\drivers\lvuvc.hs [2012.07.29 17:01:31 | 000,014,960 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 [2012.07.29 17:01:31 | 000,014,960 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 [2012.07.29 16:37:06 | 000,001,113 | ---- | M] () -- C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk [2012.07.29 15:09:46 | 000,002,070 | ---- | M] () -- C:\Users\Public\Desktop\Avira Control Center.lnk [2012.07.29 07:26:02 | 000,000,051 | ---- | M] () -- C:\ProgramData\rhijaxrejwxlbfr [2012.07.29 07:25:45 | 000,061,440 | ---- | M] () -- C:\ProgramData\tcskdflr.exe [2012.07.29 03:02:01 | 000,001,138 | ---- | M] () -- C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-3490085187-1277475629-2397104797-1000UA.job [2012.07.29 00:02:00 | 000,001,116 | ---- | M] () -- C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-3490085187-1277475629-2397104797-1000Core.job [2012.07.18 18:04:42 | 000,132,832 | ---- | M] (Avira GmbH) -- C:\Windows\SysNative\drivers\avipbb.sys [2012.07.18 18:04:42 | 000,027,760 | ---- | M] (Avira GmbH) -- C:\Windows\SysNative\drivers\avkmgr.sys [2012.07.18 18:04:41 | 000,098,848 | ---- | M] (Avira GmbH) -- C:\Windows\SysNative\drivers\avgntflt.sys [2012.07.11 11:17:50 | 000,294,360 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT [2012.07.03 13:46:44 | 000,024,904 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mbam.sys [1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ] ========== Files Created - No Company Name ========== [2012.07.29 16:37:06 | 000,001,113 | ---- | C] () -- C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk [2012.07.29 15:08:17 | 000,002,070 | ---- | C] () -- C:\Users\Public\Desktop\Avira Control Center.lnk [2012.07.29 07:26:01 | 000,061,440 | ---- | C] () -- C:\ProgramData\tcskdflr.exe [2012.07.29 07:25:46 | 000,000,051 | ---- | C] () -- C:\ProgramData\rhijaxrejwxlbfr [2012.06.29 20:51:16 | 000,001,138 | ---- | C] () -- C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-3490085187-1277475629-2397104797-1000UA.job [2012.06.29 20:51:16 | 000,001,116 | ---- | C] () -- C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-3490085187-1277475629-2397104797-1000Core.job [2012.05.15 02:21:50 | 000,423,744 | ---- | C] () -- C:\Windows\SysWow64\nvStreaming.exe [2012.04.29 14:09:49 | 000,189,248 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrB.exe [2012.04.29 14:09:48 | 000,075,136 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrA.exe [2012.04.28 23:37:28 | 000,110,080 | ---- | C] () -- C:\Windows\SysWow64\advd.dll [2012.04.28 23:37:28 | 000,023,040 | ---- | C] () -- C:\Windows\SysWow64\auth.dll [2012.04.28 23:37:26 | 000,511,488 | ---- | C] () -- C:\Windows\SysWow64\lame_enc.dll [2012.03.12 00:25:48 | 000,032,256 | ---- | C] () -- C:\Windows\SysWow64\AVSredirect.dll [2012.03.11 16:17:30 | 000,000,138 | ---- | C] () -- C:\Windows\trsubreader.INI [2012.01.18 08:44:00 | 010,920,984 | ---- | C] () -- C:\Windows\SysWow64\LogiDPP.dll [2012.01.18 08:44:00 | 000,336,408 | ---- | C] () -- C:\Windows\SysWow64\DevManagerCore.dll [2012.01.18 08:44:00 | 000,104,472 | ---- | C] () -- C:\Windows\SysWow64\LogiDPPApp.exe [2011.11.27 03:26:48 | 000,000,000 | ---- | C] () -- C:\Users\Cesar\netsh [2011.09.08 19:49:45 | 000,111,932 | ---- | C] () -- C:\Windows\SysWow64\EPPICPrinterDB.dat [2011.09.08 19:49:45 | 000,021,390 | ---- | C] () -- C:\Windows\SysWow64\EPPICPattern5.dat [2011.09.08 19:49:45 | 000,011,811 | ---- | C] () -- C:\Windows\SysWow64\EPPICPattern4.dat [2011.09.08 19:49:45 | 000,004,943 | ---- | C] () -- C:\Windows\SysWow64\EPPICPattern6.dat [2011.09.08 19:49:45 | 000,001,146 | ---- | C] () -- C:\Windows\SysWow64\EPPICPresetData_DU.dat [2011.09.08 19:49:45 | 000,001,139 | ---- | C] () -- C:\Windows\SysWow64\EPPICPresetData_PT.dat [2011.09.08 19:49:45 | 000,001,139 | ---- | C] () -- C:\Windows\SysWow64\EPPICPresetData_BP.dat [2011.09.08 19:49:45 | 000,001,136 | ---- | C] () -- C:\Windows\SysWow64\EPPICPresetData_ES.dat [2011.09.08 19:49:45 | 000,001,129 | ---- | C] () -- C:\Windows\SysWow64\EPPICPresetData_FR.dat [2011.09.08 19:49:45 | 000,001,129 | ---- | C] () -- C:\Windows\SysWow64\EPPICPresetData_CF.dat [2011.09.08 19:49:45 | 000,001,120 | ---- | C] () -- C:\Windows\SysWow64\EPPICPresetData_IT.dat [2011.09.08 19:49:45 | 000,001,107 | ---- | C] () -- C:\Windows\SysWow64\EPPICPresetData_GE.dat [2011.09.08 19:49:45 | 000,001,104 | ---- | C] () -- C:\Windows\SysWow64\EPPICPresetData_EN.dat [2011.09.08 19:49:45 | 000,000,097 | ---- | C] () -- C:\Windows\SysWow64\PICSDK.ini [2011.09.08 19:49:44 | 000,031,053 | ---- | C] () -- C:\Windows\SysWow64\EPPICPattern131.dat [2011.09.08 19:49:44 | 000,027,417 | ---- | C] () -- C:\Windows\SysWow64\EPPICPattern121.dat [2011.09.08 19:49:44 | 000,026,154 | ---- | C] () -- C:\Windows\SysWow64\EPPICPattern1.dat [2011.09.08 19:49:44 | 000,024,903 | ---- | C] () -- C:\Windows\SysWow64\EPPICPattern3.dat [2011.09.08 19:49:44 | 000,020,148 | ---- | C] () -- C:\Windows\SysWow64\EPPICPattern2.dat [2011.06.30 00:40:45 | 000,819,200 | ---- | C] () -- C:\Windows\SysWow64\xvidcore.dll [2011.06.30 00:40:44 | 000,180,224 | ---- | C] () -- C:\Windows\SysWow64\xvidvfw.dll [2011.06.30 00:40:07 | 000,893,130 | ---- | C] () -- C:\Windows\RON 2010 GERMAN Uninstaller.exe [2011.06.23 23:28:50 | 001,669,018 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI [2011.06.23 21:40:24 | 000,024,576 | R--- | C] () -- C:\Windows\SysWow64\AsIO.dll [2011.06.23 21:40:24 | 000,013,440 | R--- | C] () -- C:\Windows\SysWow64\drivers\AsIO.sys [2011.06.23 21:26:35 | 000,036,713 | ---- | C] () -- C:\Windows\Ascd_log.ini [2011.06.23 21:25:58 | 000,025,754 | ---- | C] () -- C:\Windows\Ascd_tmp.ini ========== LOP Check ========== [2012.06.28 23:56:10 | 000,000,000 | ---D | M] -- C:\Users\Cesar\AppData\Roaming\Azureus [2012.03.11 16:01:06 | 000,000,000 | ---D | M] -- C:\Users\Cesar\AppData\Roaming\Boilsoft [2012.04.29 00:05:29 | 000,000,000 | ---D | M] -- C:\Users\Cesar\AppData\Roaming\concept design [2011.10.09 19:09:05 | 000,000,000 | ---D | M] -- C:\Users\Cesar\AppData\Roaming\DAEMON Tools Lite [2011.12.08 12:34:25 | 000,000,000 | ---D | M] -- C:\Users\Cesar\AppData\Roaming\DVDVideoSoft [2011.12.08 12:34:18 | 000,000,000 | ---D | M] -- C:\Users\Cesar\AppData\Roaming\DVDVideoSoftIEHelpers [2012.05.13 21:31:59 | 000,000,000 | ---D | M] -- C:\Users\Cesar\AppData\Roaming\Epson [2011.06.24 22:13:50 | 000,000,000 | ---D | M] -- C:\Users\Cesar\AppData\Roaming\ImgBurn [2012.05.05 08:16:20 | 000,000,000 | ---D | M] -- C:\Users\Cesar\AppData\Roaming\Kalypso Media [2011.06.23 21:24:27 | 000,000,000 | ---D | M] -- C:\Users\Cesar\AppData\Roaming\Leadertech [2011.09.04 16:00:05 | 000,000,000 | ---D | M] -- C:\Users\Cesar\AppData\Roaming\OpenOffice.org [2012.07.29 16:20:29 | 000,000,000 | ---D | M] -- C:\Users\Cesar\AppData\Roaming\Osviriy [2012.04.29 14:09:46 | 000,000,000 | ---D | M] -- C:\Users\Cesar\AppData\Roaming\PunkBuster [2012.05.12 00:41:14 | 000,000,000 | ---D | M] -- C:\Users\Cesar\AppData\Roaming\redsn0w [2012.03.20 01:05:25 | 000,000,000 | ---D | M] -- C:\Users\Cesar\AppData\Roaming\Sierra [2012.03.18 21:53:47 | 000,000,000 | ---D | M] -- C:\Users\Cesar\AppData\Roaming\Sierra Entertainment [2012.07.29 16:20:29 | 000,000,000 | ---D | M] -- C:\Users\Cesar\AppData\Roaming\toolplugin [2012.04.30 16:16:11 | 000,000,000 | ---D | M] -- C:\Users\Cesar\AppData\Roaming\Ubisoft [2012.03.06 18:42:30 | 000,000,000 | ---D | M] -- C:\Users\Cesar\AppData\Roaming\Xive [2012.07.29 00:02:00 | 000,001,116 | ---- | M] () -- C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-3490085187-1277475629-2397104797-1000Core.job [2012.07.29 03:02:01 | 000,001,138 | ---- | M] () -- C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-3490085187-1277475629-2397104797-1000UA.job [2012.07.04 19:23:01 | 000,032,640 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT ========== Purity Check ========== < End of report > OTL EXTRAS Logfile: OTL Logfile: Code:
ATTFilter OTL Extras logfile created on: 29.07.2012 17:59:11 - Run 3 OTL by OldTimer - Version 3.2.53.1 Folder = C:\Users\Cesar\Desktop 64bit- Professional Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation Internet Explorer (Version = 8.0.7601.17514) Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy 3,99 Gb Total Physical Memory | 2,83 Gb Available Physical Memory | 70,87% Memory free 7,98 Gb Paging File | 6,95 Gb Available in Paging File | 87,03% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86) Drive C: | 247,48 Gb Total Space | 66,37 Gb Free Space | 26,82% Space Free | Partition Type: NTFS Drive D: | 218,08 Gb Total Space | 19,26 Gb Free Space | 8,83% Space Free | Partition Type: NTFS Computer Name: CESAR1 | User Name: Cesar | Logged in as Administrator. Boot Mode: SafeMode with Networking | Scan Mode: Current user | Include 64bit Scans Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days ========== Extra Registry (SafeList) ========== ========== File Associations ========== 64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>] .url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation) [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>] .cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation) [HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>] .html [@ = FirefoxHTML] -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation) ========== Shell Spawning ========== 64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command] batfile [open] -- "%1" %* cmdfile [open] -- "%1" %* comfile [open] -- "%1" %* exefile [open] -- "%1" %* helpfile [open] -- Reg Error: Key error. htmlfile [edit] -- Reg Error: Key error. htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1" inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation) InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation) InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation) piffile [open] -- "%1" %* regfile [merge] -- Reg Error: Key error. scrfile [config] -- "%1" scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l scrfile [open] -- "%1" /S txtfile [edit] -- Reg Error: Key error. Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" () Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation) Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" () Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Folder [explore] -- Reg Error: Value error. Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command] batfile [open] -- "%1" %* cmdfile [open] -- "%1" %* comfile [open] -- "%1" %* cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation) exefile [open] -- "%1" %* helpfile [open] -- Reg Error: Key error. htmlfile [edit] -- Reg Error: Key error. htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1" inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation) piffile [open] -- "%1" %* regfile [merge] -- Reg Error: Key error. scrfile [config] -- "%1" scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l scrfile [open] -- "%1" /S txtfile [edit] -- Reg Error: Key error. Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" () Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation) Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" () Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Folder [explore] -- Reg Error: Value error. Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) ========== Security Center Settings ========== 64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center] "cval" = 0 64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring] 64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc] "VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data] "AntiVirusOverride" = 0 "AntiSpywareOverride" = 0 "FirewallOverride" = 0 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc] ========== Firewall Settings ========== [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile] "DisableNotifications" = 0 "EnableFirewall" = 1 "DefaultOutboundAction" = 0 "DefaultInboundAction" = 1 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile] "DisableNotifications" = 1 "EnableFirewall" = 1 "DefaultOutboundAction" = 0 "DefaultInboundAction" = 1 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile] "DisableNotifications" = 0 "EnableFirewall" = 1 "DefaultOutboundAction" = 0 "DefaultInboundAction" = 0 ========== Authorized Applications List ========== ========== Vista Active Open Ports Exception List ========== [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules] "{019A4819-B335-4FE4-89B1-E2858217154B}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe | "{05C29627-79B0-4FDF-A41B-8E94FB2B8C99}" = rport=138 | protocol=17 | dir=out | app=system | "{0B4A4E72-2F91-4D4B-8CA8-C8228F1545A8}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe | "{18079F33-5980-4AAF-B017-B223E2A5CD7E}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 | "{189C475A-74BA-43A9-8AE7-5069697658E0}" = lport=137 | protocol=17 | dir=in | app=system | "{193E0874-50C2-4ECF-902D-CD46F4DC5306}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe | "{1B74BD1E-BFDA-412A-AADA-586396D17C81}" = rport=445 | protocol=6 | dir=out | app=system | "{265F8C39-C4AB-4B74-87C7-6BEAF814DCDD}" = lport=445 | protocol=6 | dir=in | app=system | "{2735CD38-0FC6-4647-91C9-6A20CBBE4485}" = rport=137 | protocol=17 | dir=out | app=system | "{2C4D1FA6-7780-4E9C-96C0-0C303C2C0083}" = rport=139 | protocol=6 | dir=out | app=system | "{3863E5D4-BE3E-4BE1-9FC2-045BB53939B1}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe | "{4CFAE455-CDAA-4A07-8FA2-8C73EB7078EB}" = lport=3702 | protocol=17 | dir=in | svc=fdphost | app=%systemroot%\system32\svchost.exe | "{4DEB8667-76E3-483C-B914-324302110DB1}" = lport=2869 | protocol=6 | dir=in | name=windows live communications platform (upnp) | "{572E06B1-0FDE-49D6-8F8B-CE433B98D4E1}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=svchost.exe | "{6915C127-3412-427C-8C74-306B0CD4B569}" = lport=5739 | protocol=17 | dir=in | name=pro 2012 | "{85DFBD17-16D0-4CCB-BAB8-E28BBF83F1B2}" = lport=80 | protocol=6 | dir=in | name=1 | "{87B254C7-DCAD-449B-BE2B-E3540665A127}" = lport=139 | protocol=6 | dir=in | app=system | "{8A9D734B-64AD-4CEC-97E7-33CF984EDB00}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe | "{8F5D9713-17A5-4668-87E7-87207E46E112}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe | "{9560CBA7-C006-4D34-9210-3FC912235654}" = lport=138 | protocol=17 | dir=in | app=system | "{AFC53935-0B76-4E21-8D5B-E0925442CAB7}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe | "{C41F6CA8-C3BD-4901-85D1-FCB5FCF4AC0F}" = lport=1900 | protocol=17 | dir=in | name=windows live communications platform (ssdp) | "{D54DD6AF-618F-4CED-90DA-0EC041635E59}" = rport=3702 | protocol=17 | dir=out | svc=fdphost | app=%systemroot%\system32\svchost.exe | "{E0FB0D84-F3C5-4C2B-8DB5-B5C22D1567C5}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe | "{E6BB3F32-9F31-4BF9-ABAE-8868D596C02D}" = lport=2869 | protocol=6 | dir=in | app=system | "{ED243643-F407-43EB-B160-B20074157B78}" = rport=3702 | protocol=17 | dir=out | svc=fdrespub | app=%systemroot%\system32\svchost.exe | "{F42917D8-116C-4BC7-8D7C-883CBE91D788}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe | "{F6457A8D-E23A-475A-8A23-47B49A0B3DFF}" = rport=53294 | protocol=17 | dir=out | name=pes | "{FEF7FCDB-0083-4156-9B82-CBF89DC2C24B}" = lport=3702 | protocol=17 | dir=in | svc=fdrespub | app=%systemroot%\system32\svchost.exe | ========== Vista Active Application Exception List ========== [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules] "{07235AF6-0D1E-4A58-9EAB-8761EAD0B0CB}" = protocol=6 | dir=in | app=d:\program files (x86)\ubisoft\assassin's creed revelations\assassinscreedrevelations.exe | "{074DE64F-10BE-4677-90E9-B58642F1AF8E}" = protocol=1 | dir=in | name=icmp allow incoming v4 echo request | "{0937300F-638B-4695-ABD1-C35953DFCB7F}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe | "{1409E785-7131-4D53-9552-478C18547E5B}" = protocol=17 | dir=in | app=c:\program files (x86)\bonjour\mdnsresponder.exe | "{14A16CF6-59D8-4693-8518-3B30EC23FE7A}" = protocol=6 | dir=in | app=c:\program files (x86)\raptr\raptr.exe | "{14C428F3-9495-4602-B7E1-70C6854450A6}" = protocol=17 | dir=in | app=c:\program files (x86)\ubisoft\ubisoft game launcher\ubisoftgamelauncher.exe | "{16B93BEB-FFC2-4E7A-BA78-6A4DB37D8750}" = protocol=17 | dir=in | app=c:\windows\syswow64\pnkbstrb.exe | "{18255C1D-2058-43C4-8D0A-6B0DD0EBF274}" = protocol=17 | dir=in | app=d:\program files (x86)\konami\pro evolution soccer 2012\pes2012.exe | "{1B41873A-DD6F-4BFA-AE99-2C73B2540B99}" = protocol=6 | dir=in | app=c:\windows\syswow64\pnkbstra.exe | "{1CB9E760-33E8-44ED-A2BD-2E25B146A683}" = protocol=6 | dir=in | app=c:\program files (x86)\vuze\azureus.exe | "{204DB850-A45A-4CF2-906C-356A0446AE26}" = protocol=17 | dir=in | app=c:\program files (x86)\raptr\raptr.exe | "{22950CB8-3B18-4FD2-8917-A010B15B37DB}" = protocol=6 | dir=in | app=d:\program files (x86)\ubisoft\related designs\anno 2070\anno5.exe | "{22E3B0AF-71D5-4217-AEF4-D48D831A6C28}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 | "{23307841-53B1-4D8C-93B3-5074EADA358E}" = dir=in | app=c:\program files (x86)\rosetta stone\rosetta stone version 3\support\bin\win\rosettastoneltdservices.exe | "{2E71352B-0359-4AA3-8399-1B0EB8AF15B0}" = protocol=17 | dir=in | app=d:\program files (x86)\ubisoft\related designs\anno 2070\initengine.exe | "{2E93C961-67FB-4052-9322-69E46FB9F7E3}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steam.exe | "{30C8169B-77B9-4D65-8AD3-456FA5EE3B9B}" = protocol=17 | dir=in | app=d:\program files (x86)\sierra entertainment\empire earth iii\ee3.exe | "{36694CF4-B248-4CE0-859D-7626665A0589}" = dir=in | app=c:\program files (x86)\itunes\itunes.exe | "{3C450CBA-22A3-4C63-9B64-F8D68B54CD9E}" = protocol=6 | dir=in | app=d:\program files (x86)\ubisoft\assassin's creed revelations\acrmp.exe | "{3ECA9D43-89F4-4711-AA28-C76082B5A948}" = protocol=17 | dir=in | app=d:\program files (x86)\ubisoft\related designs\anno 2070\anno5.exe | "{45B4C165-DF5C-4199-B200-4E8A719E548C}" = protocol=6 | dir=in | app=c:\program files (x86)\vuze\azureus.exe | "{468382B0-B340-48C0-AF6C-CCE955F4DA0F}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 | "{476628DF-CA48-4CBD-B515-35BFBE8C09B7}" = protocol=17 | dir=in | app=c:\windows\syswow64\pnkbstra.exe | "{4AD3E39D-2B82-4C17-936C-02A7D0392DBD}" = protocol=6 | dir=in | app=c:\program files (x86)\bonjour\mdnsresponder.exe | "{5014F578-84E1-42B4-9364-3E21996C135F}" = protocol=17 | dir=in | app=c:\program files (x86)\vuze\azureus.exe | "{5E5C2018-6E52-4565-A16E-33EA32C47AAE}" = protocol=17 | dir=in | app=d:\program files (x86)\ubisoft\assassin's creed revelations\assassinscreedrevelations.exe | "{5EB53E40-3C22-4270-ADF2-DC16A63278C6}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 | "{602CF9D1-87D4-4E71-9878-730075122909}" = protocol=17 | dir=in | app=c:\program files (x86)\bonjour\mdnsresponder.exe | "{69823581-EE27-4392-9A7B-D0F31FFAE9A4}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe | "{6D607147-E774-498B-8A06-4503D3AAF19D}" = dir=in | app=c:\users\cesar\appdata\local\facebook\video\skype\facebookvideocalling.exe | "{7417A58D-6B7F-4661-BF8F-BF64C74BDA74}" = protocol=6 | dir=in | app=c:\program files (x86)\bonjour\mdnsresponder.exe | "{7BF2D099-BE49-4343-8DE1-1A6708230F2A}" = dir=in | app=c:\program files (x86)\windows live\messenger\msnmsgr.exe | "{815A0CDF-CDB2-4832-A047-C97272C7A1E8}" = protocol=6 | dir=in | app=c:\program files (x86)\raptr\raptr_im.exe | "{8ED37D5F-0722-40B0-90ED-E08F82E857E1}" = dir=in | app=c:\program files (x86)\windows live\contacts\wlcomm.exe | "{94CB4C62-9BD6-48FC-8B94-2B8FBBCF5C52}" = dir=in | app=c:\program files (x86)\rosetta stone\rosetta stone version 3\rosettastoneversion3.exe | "{96FA90B4-7285-4B91-BF44-D1FC30998CB4}" = protocol=17 | dir=in | app=d:\program files (x86)\ubisoft\assassin's creed revelations\acrsp.exe | "{9BBB3149-5016-4912-9194-0F5594191D7A}" = protocol=17 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe | "{A441CBDB-6B1A-490C-BEC6-E9C6A46FE193}" = protocol=17 | dir=in | app=d:\program files (x86)\ubisoft\related designs\anno 2070\autopatcher.exe | "{A5B65B93-AC93-48AE-89E1-1FBEF202CAB8}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steam.exe | "{ADBBB681-F58F-4288-9786-F0B9B058724D}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 | "{B0B63CD8-2C22-4CF9-8BD0-A6A4F9226DBA}" = protocol=17 | dir=in | app=c:\program files (x86)\vuze\azureus.exe | "{B3E8F012-2891-48ED-B4A1-F872C2262FC9}" = protocol=17 | dir=in | app=%programfiles(x86)%\windows media player\wmplayer.exe | "{C1F967A0-13C9-4271-BB0F-4F29462CBD03}" = protocol=17 | dir=in | app=d:\program files (x86)\konami\pro evolution soccer 2012\pes2012.exe | "{C2BA31AD-EC55-434C-9317-E9C7C1532919}" = protocol=6 | dir=in | app=c:\program files (x86)\ubisoft\ubisoft game launcher\ubisoftgamelauncher.exe | "{C42FD78F-1E96-4B64-A0D7-822FC9BFB378}" = protocol=6 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe | "{C6CB966D-BDE0-4610-A8F2-7577DF69F9C6}" = protocol=17 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe | "{CA3157E7-BE83-4467-B7F7-BF12029EAA42}" = protocol=6 | dir=in | app=c:\windows\syswow64\pnkbstrb.exe | "{CFFF062E-F527-4761-9517-B743C670B40D}" = dir=in | app=d:\program files (x86)\kalypso media\port royale 3\portroyale3.exe | "{D8FA6A4C-5730-4EAD-9803-9F7C5D2E5515}" = protocol=6 | dir=in | app=d:\program files (x86)\ubisoft\assassin's creed revelations\acrsp.exe | "{DA313F35-6583-4F22-8D8E-68E56294A86D}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe | "{DD0D4996-3636-496D-94D3-FBA49391CD6C}" = protocol=6 | dir=in | app=c:\program files (x86)\veetle\player\veetlenet.exe | "{DEB8FC18-0AB3-4553-B055-8FE56C6B3F97}" = protocol=6 | dir=in | app=d:\program files (x86)\ubisoft\related designs\anno 2070\initengine.exe | "{E1D62C83-923D-4750-B161-54B6561E2FD2}" = protocol=17 | dir=in | app=c:\program files (x86)\raptr\raptr_im.exe | "{E5273E52-B7ED-45D1-B4B8-6D19A079BB6C}" = dir=in | app=c:\program files (x86)\common files\apple\apple application support\webkit2webprocess.exe | "{E67949FE-ACAC-4AD2-BAF0-80FE29F72DFB}" = protocol=6 | dir=in | app=d:\program files (x86)\ubisoft\related designs\anno 2070\autopatcher.exe | "{E6F44A7F-32BB-47FC-A20F-8EB4FB5D6ADA}" = protocol=6 | dir=in | app=d:\program files (x86)\konami\pro evolution soccer 2012\pes2012.exe | "{E864B8B8-F3EC-451E-9BAA-DA665A1B07F4}" = protocol=6 | dir=in | app=d:\program files (x86)\sierra entertainment\empire earth iii\ee3.exe | "{E8BB3EC4-F801-4ED5-AEFC-B832A121D935}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe | "{F38FFFA2-DED2-4A88-B000-B88CE595A33A}" = protocol=6 | dir=out | app=c:\program files (x86)\rosetta stone\rosetta stone version 3\rosettastoneversion3.exe | "{F7C7DD45-8D7F-4160-A5DA-E96256BA00D6}" = protocol=6 | dir=out | app=c:\program files (x86)\rosetta stone\rosetta stone version 3\support\bin\win\rosettastoneltdservices.exe | "{FC6C27AA-EB49-416E-996B-37D233553195}" = protocol=6 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe | "{FD54C17A-A7F5-4C4D-83C6-529691D06518}" = protocol=17 | dir=in | app=d:\program files (x86)\ubisoft\assassin's creed revelations\acrmp.exe | "TCP Query User{226D975A-0687-4CC4-BC9B-E61925210070}C:\program files (x86)\sopcast\adv\sopadver.exe" = protocol=6 | dir=in | app=c:\program files (x86)\sopcast\adv\sopadver.exe | "TCP Query User{346B26BA-C4D2-4E58-80F0-00EAEFF2627A}C:\program files (x86)\sopcast\sopcast.exe" = protocol=6 | dir=in | app=c:\program files (x86)\sopcast\sopcast.exe | "TCP Query User{DD821751-F2B5-4F38-8BE4-AD0203C16A96}D:\program files (x86)\konami\pro evolution soccer 2012\pes2012.exe" = protocol=6 | dir=in | app=d:\program files (x86)\konami\pro evolution soccer 2012\pes2012.exe | "TCP Query User{E37358CD-8C01-4263-818D-450A8659D199}C:\program files (x86)\politik simulator 2 - rulers of nations\_start.exe" = protocol=6 | dir=in | app=c:\program files (x86)\politik simulator 2 - rulers of nations\_start.exe | "TCP Query User{E738FBB4-B7F6-45E0-B700-13ACC0AB5E3D}C:\program files (x86)\internet explorer\iexplore.exe" = protocol=6 | dir=in | app=c:\program files (x86)\internet explorer\iexplore.exe | "TCP Query User{EAD9A666-1E55-4981-B8BB-0FE9D218AA2D}C:\program files (x86)\konami\pro evolution soccer 2011\pes2011.exe" = protocol=6 | dir=in | app=c:\program files (x86)\konami\pro evolution soccer 2011\pes2011.exe | "TCP Query User{F0C28135-A17C-4FC1-B896-283A6D1E7B00}C:\program files (x86)\epson software\event manager\eeventmanager.exe" = protocol=6 | dir=in | app=c:\program files (x86)\epson software\event manager\eeventmanager.exe | "UDP Query User{0D70B95A-72F7-4A3B-B892-E64DA2F81353}D:\program files (x86)\konami\pro evolution soccer 2012\pes2012.exe" = protocol=17 | dir=in | app=d:\program files (x86)\konami\pro evolution soccer 2012\pes2012.exe | "UDP Query User{4A4C0E99-09D1-414D-A179-F087B0B72CBA}C:\program files (x86)\sopcast\sopcast.exe" = protocol=17 | dir=in | app=c:\program files (x86)\sopcast\sopcast.exe | "UDP Query User{5A9AF05C-AA57-446B-8C6C-CBE3535A13C0}C:\program files (x86)\sopcast\adv\sopadver.exe" = protocol=17 | dir=in | app=c:\program files (x86)\sopcast\adv\sopadver.exe | "UDP Query User{99DD2EBD-C8E1-46C5-B3B8-84C97CAA30E0}C:\program files (x86)\epson software\event manager\eeventmanager.exe" = protocol=17 | dir=in | app=c:\program files (x86)\epson software\event manager\eeventmanager.exe | "UDP Query User{C1328E3B-A7A4-4B00-A35F-356CB0658B87}C:\program files (x86)\politik simulator 2 - rulers of nations\_start.exe" = protocol=17 | dir=in | app=c:\program files (x86)\politik simulator 2 - rulers of nations\_start.exe | "UDP Query User{CB3271E8-7351-4F4A-BE2F-9AB73459B9DB}C:\program files (x86)\internet explorer\iexplore.exe" = protocol=17 | dir=in | app=c:\program files (x86)\internet explorer\iexplore.exe | "UDP Query User{FD7C591D-429B-4B91-8633-F5AF078E2CCF}C:\program files (x86)\konami\pro evolution soccer 2011\pes2011.exe" = protocol=17 | dir=in | app=c:\program files (x86)\konami\pro evolution soccer 2011\pes2011.exe | ========== HKEY_LOCAL_MACHINE Uninstall List ========== 64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "{01EBCEA8-DB46-4C0C-B0CE-043FD7013903}" = AVM FRITZ!Box AddOn (IE) (x64) "{02382870-19C7-3ACD-BBAE-F6E3760947DC}" = Microsoft .NET Framework 4 Extended DEU Language Pack "{027E5FAB-1476-4C59-AAB4-32EF28520399}" = Windows Live Language Selector "{071c9b48-7c32-4621-a0ac-3f809523288f}" = Microsoft Visual C++ 2005 Redistributable (x64) "{0E3DAF3D-FF69-345A-A99E-1FED304CA083}" = Microsoft .NET Framework 4 Client Profile DEU Language Pack "{1280E900-35DA-4E08-A700-B79A5B2B8532}" = Microsoft Antimalware Service DE-DE Language Pack "{138A4072-9E64-46BD-B5F9-DB2BB395391F}" = LWS VideoEffects "{1ACC8FFB-9D84-4C05-A4DE-D28A9BC91698}" = Windows Live ID Sign-in Assistant "{1D8E6291-B0D5-35EC-8441-6616F567A0F7}" = Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 "{350AA351-21FA-3270-8B7A-835434E766AD}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 "{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 "{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 "{624C7F0A-89B2-4C49-9CAB-9D69613EC95A}" = Microsoft IntelliPoint 8.2 "{6A76BEAF-6D1F-4273-A79B-DA8410A2E56B}" = Apple Mobile Device Support "{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}" = Bonjour "{8219EDCB-CE5A-4348-B056-AAC0FE4E99D0}" = Microsoft IntelliType Pro 8.2 "{8220EEFE-38CD-377E-8595-13398D740ACE}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 "{840A3BAA-4C68-4581-9C7A-6F8D6CF531B9}" = iTunes "{889DF117-14D1-44EE-9F31-C5FB5D47F68B}" = Yontoo 1.10.02 "{8E34682C-8118-31F1-BC4C-98CD9675E1C2}" = Microsoft .NET Framework 4 Extended "{95120000-00B9-0409-1000-0000000FF1CE}" = Microsoft Application Error Reporting "{9D046B26-7978-47CD-91E6-AC3C1DFBC3D0}" = Microsoft Security Client "{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}" = Microsoft Visual C++ 2005 Redistributable (x64) "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision" = NVIDIA 3D Vision Treiber 301.42 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = NVIDIA Systemsteuerung 301.42 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Grafiktreiber 301.42 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB" = NVIDIA 3D Vision Controller-Treiber 301.42 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX" = NVIDIA PhysX-Systemsoftware 9.12.0213 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update" = NVIDIA Update 1.8.15 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver" = NVIDIA HD-Audiotreiber 1.3.16.0 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NVIDIA.Update" = NVIDIA Update Components "{B6E3757B-5E77-3915-866A-CCFC4B8D194C}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 "{DA54F80E-261C-41A2-A855-549A144F2F59}" = Windows Live MIME IFilter "{DC911ADF-7B60-40F2-A112-FB1EB6402D07}" = Microsoft Security Client DE-DE Language Pack "{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}" = Microsoft .NET Framework 4 Client Profile "EPSON SX125 Series" = Druckerdeinstallation für EPSON SX125 Series "EPSON SX130 Series" = Druckerdeinstallation für EPSON SX130 Series "Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile "Microsoft .NET Framework 4 Client Profile DEU Language Pack" = Microsoft .NET Framework 4 Client Profile DEU Language Pack "Microsoft .NET Framework 4 Extended" = Microsoft .NET Framework 4 Extended "Microsoft .NET Framework 4 Extended DEU Language Pack" = Microsoft .NET Framework 4 Extended DEU Language Pack "Microsoft IntelliPoint 8.2" = Microsoft IntelliPoint 8.2 "Microsoft IntelliType Pro 8.2" = Microsoft IntelliType Pro 8.2 "Microsoft Security Client" = Microsoft Security Essentials "WinRAR archiver" = WinRAR 4.01 (64-Bit) [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "{01E9B2FF-DAF4-4529-9CC9-2101625517C7}" = nero.prerequisites.msi "{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam "{08610298-29AE-445B-B37D-EFBE05802967}" = LWS Pictures And Video "{0B0F231F-CE6A-483D-AA23-77B364F75917}" = Windows Live Installer "{0E64B098-8018-4256-BA23-C316A43AD9B0}" = QuickTime "{122ADF8C-DDA1-480C-9936-C88F2825B265}" = Apple Application Support "{15634701-BACE-4449-8B25-1567DA8C9FD3}" = CameraHelperMsi "{1651216E-E7AD-4250-92A1-FB8ED61391C9}" = LWS Help_main "{174A3B31-4C43-43DD-866F-73C9DB887B48}" = LWS Twitter "{1a413f37-ed88-4fec-9666-5c48dc4b7bb7}" = YTD YouTube Downloader & Converter 3.6 "{1BA1DBDC-5431-46FD-A66F-A17EB1C439EE}" = Windows Live Messenger "{1DDB95A4-FD7B-4517-B3F1-2BCAA96879E6}" = Windows Live Writer Resources "{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 "{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}" = Junk Mail filter update "{200FEC62-3C34-4D60-9CE8-EC372E01C08F}" = Windows Live SOXE Definitions "{21DF0294-6B9D-4741-AB6F-B2ABFBD2387E}" = LWS YouTube Plugin "{26A24AE4-039D-4CA4-87B4-2F83216031FF}" = Java(TM) 6 Update 31 "{32394A59-A39C-4C90-A9A5-F16B0C7442E1}" = Express Gate Tools "{33A22B2D-55BA-4508-B767-BF2E9C21A73F}" = Assassin's Creed Revelations "{37B33B16-2535-49E7-8990-32668708A0A3}" = Windows Live UX Platform Language Pack "{3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}" = erLT "{4286716B-1287-48E7-9078-3DC8248DBA96}" = OpenOffice.org 3.3 "{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater "{4C19DC1B-6575-4D14-AD48-E2928F189619}" = Windows Live-Geräte-Manager "{56B83336-FBC1-4C46-8613-90A9E3B440D6}" = EPU-6 Engine "{5A212B2D-140D-46F4-B625-2D1CA5A00594}" = Nero 11 Kwik Themes Basic "{64BFBE7A-886C-4CA2-A9B4-0C2B5A5942BC}_is1" = «Battlefield 3» 1.0 "{65BB0407-4CC8-4DC7-952E-3EEFDF05602A}" = Nero Update "{65F8E0A6-A290-4D47-B391-D6353D756854}" = Pro Evolution Soccer 2013 DEMO "{682B3E4F-696A-42DE-A41C-4C07EA1678B4}" = Windows Live SOXE "{68DED384-1F74-4AEE-8B8E-95AF15572FE3}" = Port Royale 3 "{6F76EC3C-34B1-436E-97FB-48C58D7BEDCD}" = LWS Gallery "{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable "{71E66D3F-A009-44AB-8784-75E2819BA4BA}" = LWS Motion Detection "{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable "{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 "{79E9C7C5-4FCC-4DFF-B79E-17319E9522F3}" = MagicTunePremium "{7CAC6A44-C3DE-4153-ACA6-7524602C789E}" = Facebook Video Calling 1.2.0.159 "{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable "{83C292B7-38A5-440B-A731-07070E81A64F}" = Windows Live PIMT Platform "{83C8FA3C-F4EA-46C4-8392-D3CE353738D6}" = LWS Launcher "{888F1505-C2B3-4FDE-835D-36353EBD4754}" = Ubisoft Game Launcher "{8937D274-C281-42E4-8CDB-A0B2DF979189}" = LWS Webcam Software "{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight "{8A17C27D-0325-400C-8AA9-DAA6B16CBD74}" = Epson Event Manager "{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}" = MSVCRT "{9193490D-5229-4FC4-9BB9-A6D63C09574A}" = High-Definition Video Playback "{933B4015-4618-4716-A828-5289FC03165F}" = VC80CRTRedist - 8.0.50727.6195 "{96F26B8F-2BCA-4157-8F39-742790C361D8}" = Nero Kwik Media "{99011A6E-5200-11DE-BDB8-7ACD56D89593}" = Rosetta Stone Version 3 "{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 "{9A4D182C-35C7-4791-8484-4304EBC9101A}" = Windows 7 Upgrade Advisor "{9B88DD94-1AAE-41C4-BD95-2D8737D5E9E2}" = Watson "{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 "{9D56775A-93F3-44A3-8092-840E3826DE30}" = Windows Live Mail "{9DAEA76B-E50F-4272-A595-0124E826553D}" = LWS WLM Plugin "{A02D7029-C4EF-44C1-9FD4-C0D3CA518113}" = Epson Easy Photo Print 2 "{A76AA284-E52D-47E6-9E4F-B85DBF8E35C3}" = IMinent Toolbar "{A7A0BF2E-31CC-49E3-9913-52C503EB969D}" = Nero Audio Pack 1 "{A9BDCA6B-3653-467B-AC83-94367DA3BFE3}" = Windows Live Photo Common "{AAAFC670-569B-4A2F-82B4-42945E0DE3EF}" = Windows Live Writer "{AC76BA86-7AD7-1031-7B44-AA1000000001}" = Adobe Reader X (10.1.3) - Deutsch "{ACF60000-22B9-4CE9-98D6-2CCF359BAC07}" = ABBYY FineReader 6.0 Sprint "{B1239994-A850-44E2-BED8-E70A21124E16}" = Windows Live Mail "{B17E235C-7A3B-4482-B650-21FFDE1D452E}" = Empire Earth III "{B2D55EB8-32C5-4B43-9006-9E97DECBA178}" = Epson Easy Photo Print Plug-in for PMB(Picture Motion Browser) "{B48E264C-C8CD-4617-B0BE-46E977BAD694}" = ANNO 2070 "{B9A431FF-FDB1-40E5-B5F3-215290FD62DE}" = TP-LINK Drahtlos Tool "{B9B1BA7F-7E07-49DD-A713-5B397A5BB66B}" = Nero Kwik Media Help (CHM) "{BCC315E7-2E8F-4EFD-8A0B-F8F276FE73F2}" = YTD Toolbar v6.2 "{BE814218-3919-4EA3-868A-2F60BC135CB4}" = Nero Kwik Media "{BEBEE34D-84A2-4EDD-8BEA-96CC54371263}" = Nero Core Components 11 "{C2AB7DC4-489E-4BE9-887A-52262FBADBE0}" = Windows Live Photo Common "{C6579A65-9CAE-4B31-8B6B-3306E0630A66}" = Apple Software Update "{C779648B-410E-4BBA-B75B-5815BCEFE71D}" = Safari "{CD95F661-A5C4-44F5-A6AA-ECDD91C240C0}" = WinZip 15.0 "{CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}" = Windows Live UX Platform "{D0B44725-3666-492D-BEF6-587A14BD9BD9}" = MSVCRT_amd64 "{D40EB009-0499-459c-A8AF-C9C110766215}" = Logitech Webcam Software "{D45240D3-B6B3-4FF9-B243-54ECE3E10066}" = Windows Live Communications Platform "{D9FEF41B-AD90-403D-B0C7-59F938DCCAE4}" = TopGun - Hardlock "{DA909E62-3B45-4BA1-8B58-FCAEBA4BCEC9}" = NVIDIA PhysX "{E09C4DB7-630C-4F06-A631-8EA7239923AF}" = D3DX10 "{E3E71D07-CD27-46CB-8448-16D4FB29AA13}" = Microsoft WSE 3.0 Runtime "{E5B21F11-6933-4E0B-A25C-7963E3C07D11}" = Windows Live Messenger "{E737A098-F161-4B6F-AF22-86AAE34F6FBD}" = Pro Evolution Soccer 2012 "{E8CFA6A1-2FBE-4062-B40D-9E15E2443EC4}" = TL-WN821N Wireless Utility "{EED027B7-0DB6-404B-8F45-6DFEE34A0441}" = LWS Video Mask Maker "{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 "{F9000000-0018-0000-0000-074957833700}" = ABBYY FineReader 9.0 Sprint "{F95E4EE0-0C6E-4273-B6B9-91FD6F071D76}" = Windows Live Essentials "{FE0646A7-19D0-41B4-A2BB-2C35D644270D}" = Windows Live OneCare safety scanner "{FF167195-9EE4-46C0-8CD7-FBA3457E88AB}" = LWS Facebook "5513-1208-7298-9440" = JDownloader 0.9 "8461-7759-5462-8226" = Vuze "ABBYY FineReader 9.0 Sprint" = ABBYY FineReader 9.0 Sprint "Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX "Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin "Avira AntiVir Desktop" = Avira Free Antivirus "AVMFBox" = AVM FRITZ!Box Dokumentation "AVMFBoxPrinter" = AVM FRITZ!Box Druckeranschluss "BILDmobil" = BILDmobil "bwin Poker JPC_is1" = bwin Poker JPC 1.0.0 "CloneCD" = CloneCD "DAEMON Tools Lite" = DAEMON Tools Lite "DivX Setup" = DivX-Setup "EPSON Scanner" = EPSON Scan "Epson Stylus SX110_TX110 Benutzerhandbuch" = Epson Stylus SX110_TX110 Handbuch "EPSON SX130 Series Useg" = Benutzerhandbuch EPSON SX130 Series "Free YouTube to MP3 Converter_is1" = Free YouTube to MP3 Converter version 3.10.14.1206 "FUSSBALL MANAGER 12" = FUSSBALL MANAGER 12 "ImgBurn" = ImgBurn "Jagged Alliance - Back in Action_is1" = Jagged Alliance - Back in Action "Malwarebytes' Anti-Malware_is1" = Malwarebytes Anti-Malware Version 1.62.0.1300 "Marvell Miniport Driver" = Marvell Miniport Driver "Mozilla Firefox 9.0.1 (x86 de)" = Mozilla Firefox 9.0.1 (x86 de) "mv61xxDriver" = marvell 61xx "NAVIGON Fresh" = NAVIGON Fresh 3.4.1 "NVIDIAStereo" = NVIDIA Stereoscopic 3D Driver "PunkBusterSvc" = PunkBuster Services "RON 2010 GERMAN" = Politik Simulator 2 - Rulers of Nations "Sid Meier's Civilization V - Gods and Kings_is1" = Sid Meier's Civilization V - Gods and Kings "Sniper Elite V2_is1" = Sniper Elite V2 "SopCast" = SopCast 3.4.0 "Stronghold 3_is1" = Stronghold 3 "SystemRequirementsLab" = System Requirements Lab "Veetle TV" = Veetle TV "VLC media player" = VLC media player 1.1.11 "vShare.tv plugin" = vShare.tv plugin 1.3 "Vuze_Remote Toolbar" = Vuze Remote Toolbar "Windows Live OneCare safety scanner" = Windows Live OneCare safety scanner "WinLiveSuite" = Windows Live Essentials "Wolfenstein - Enemy Territory" = Wolfenstein - Enemy Territory "Xvid_is1" = Xvid 1.2.2 final uninstall ========== HKEY_CURRENT_USER Uninstall List ========== [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "Super Internet TV (Free Edition)_is1" = Super Internet TV v8.1 (Free Edition) "Super Internet TV (Premium Edition)_is1" = Super Internet TV v8.1 (Premium Edition) "Titan Poker" = Titan Poker ========== Last 20 Event Log Errors ========== [ Application Events ] Error - 29.06.2012 20:27:50 | Computer Name = Cesar1 | Source = Application Error | ID = 1000 Description = Name der fehlerhaften Anwendung: Manager12.exe, Version: 1.0.0.0, Zeitstempel: 0x4e7f82a5 Name des fehlerhaften Moduls: GfxCore.dll, Version: 0.0.0.0, Zeitstempel: 0x4e7f81ee Ausnahmecode: 0xc0000005 Fehleroffset: 0x00333598 ID des fehlerhaften Prozesses: 0x14d4 Startzeit der fehlerhaften Anwendung: 0x01cd5646dfdcf19a Pfad der fehlerhaften Anwendung: C:\Program Files (x86)\EA SPORTS\FUSSBALL MANAGER 12\Manager12.exe Pfad des fehlerhaften Moduls: C:\Program Files (x86)\EA SPORTS\FUSSBALL MANAGER 12\GfxCore.dll Berichtskennung: 6c68b9b9-c24a-11e1-9a7c-20cf302c659d Error - 30.06.2012 20:41:04 | Computer Name = Cesar1 | Source = Application Error | ID = 1000 Description = Name der fehlerhaften Anwendung: iexplore.exe, Version: 8.0.7601.17514, Zeitstempel: 0x4ce79912 Name des fehlerhaften Moduls: Flash32_11_3_300_257.ocx, Version: 11.3.300.257, Zeitstempel: 0x4fc82006 Ausnahmecode: 0xc0000005 Fehleroffset: 0x001cf797 ID des fehlerhaften Prozesses: 0x12dc Startzeit der fehlerhaften Anwendung: 0x01cd56f3e3e550a0 Pfad der fehlerhaften Anwendung: C:\Program Files (x86)\Internet Explorer\iexplore.exe Pfad des fehlerhaften Moduls: C:\Windows\SysWOW64\Macromed\Flash\Flash32_11_3_300_257.ocx Berichtskennung: 6fa606af-c315-11e1-b1a2-20cf302c659d Error - 01.07.2012 18:42:16 | Computer Name = Cesar1 | Source = Application Error | ID = 1000 Description = Name der fehlerhaften Anwendung: Manager12.exe, Version: 1.0.0.0, Zeitstempel: 0x4e7f82a5 Name des fehlerhaften Moduls: GfxCore.dll, Version: 0.0.0.0, Zeitstempel: 0x4e7f81ee Ausnahmecode: 0xc0000005 Fehleroffset: 0x002c3eba ID des fehlerhaften Prozesses: 0x13a4 Startzeit der fehlerhaften Anwendung: 0x01cd57a002953e0f Pfad der fehlerhaften Anwendung: C:\Program Files (x86)\EA SPORTS\FUSSBALL MANAGER 12\Manager12.exe Pfad des fehlerhaften Moduls: C:\Program Files (x86)\EA SPORTS\FUSSBALL MANAGER 12\GfxCore.dll Berichtskennung: 01765945-c3ce-11e1-8fcc-20cf302c659d Error - 01.07.2012 18:43:39 | Computer Name = Cesar1 | Source = Application Hang | ID = 1002 Description = Programm Manager12.exe, Version 1.0.0.0 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen. Prozess-ID: 13a4 Startzeit: 01cd57a002953e0f Endzeit: 107 Anwendungspfad: C:\Program Files (x86)\EA SPORTS\FUSSBALL MANAGER 12\Manager12.exe Berichts-ID: Error - 11.07.2012 20:12:10 | Computer Name = Cesar1 | Source = Application Error | ID = 1000 Description = Name der fehlerhaften Anwendung: iexplore.exe, Version: 8.0.7601.17514, Zeitstempel: 0x4ce79912 Name des fehlerhaften Moduls: Flash32_11_3_300_257.ocx, Version: 11.3.300.257, Zeitstempel: 0x4fc82006 Ausnahmecode: 0xc0000005 Fehleroffset: 0x001cf797 ID des fehlerhaften Prozesses: 0x5dc Startzeit der fehlerhaften Anwendung: 0x01cd5fc028f186c1 Pfad der fehlerhaften Anwendung: C:\Program Files (x86)\Internet Explorer\iexplore.exe Pfad des fehlerhaften Moduls: C:\Windows\SysWOW64\Macromed\Flash\Flash32_11_3_300_257.ocx Berichtskennung: 388013cf-cbb6-11e1-b899-20cf302c659d Error - 12.07.2012 21:00:30 | Computer Name = Cesar1 | Source = Application Error | ID = 1000 Description = Name der fehlerhaften Anwendung: iexplore.exe, Version: 8.0.7601.17514, Zeitstempel: 0x4ce79912 Name des fehlerhaften Moduls: ADVAPI32.dll, Version: 6.1.7601.17514, Zeitstempel: 0x4ce7b706 Ausnahmecode: 0xc0000005 Fehleroffset: 0x000114d8 ID des fehlerhaften Prozesses: 0xd48 Startzeit der fehlerhaften Anwendung: 0x01cd609134a491e5 Pfad der fehlerhaften Anwendung: C:\Program Files (x86)\Internet Explorer\iexplore.exe Pfad des fehlerhaften Moduls: C:\Windows\syswow64\ADVAPI32.dll Berichtskennung: 23a6f661-cc86-11e1-8fa7-20cf302c659d Error - 13.07.2012 19:36:31 | Computer Name = Cesar1 | Source = Application Error | ID = 1000 Description = Name der fehlerhaften Anwendung: iexplore.exe, Version: 8.0.7601.17514, Zeitstempel: 0x4ce79912 Name des fehlerhaften Moduls: Flash32_11_3_300_257.ocx, Version: 11.3.300.257, Zeitstempel: 0x4fc82006 Ausnahmecode: 0xc0000005 Fehleroffset: 0x001cf797 ID des fehlerhaften Prozesses: 0x14ac Startzeit der fehlerhaften Anwendung: 0x01cd614eebda8149 Pfad der fehlerhaften Anwendung: C:\Program Files (x86)\Internet Explorer\iexplore.exe Pfad des fehlerhaften Moduls: C:\Windows\SysWOW64\Macromed\Flash\Flash32_11_3_300_257.ocx Berichtskennung: 9294c7a2-cd43-11e1-a377-20cf302c659d Error - 14.07.2012 13:53:31 | Computer Name = Cesar1 | Source = Application Error | ID = 1000 Description = Name der fehlerhaften Anwendung: Manager12.exe, Version: 1.0.0.0, Zeitstempel: 0x4e7f82a5 Name des fehlerhaften Moduls: dxgi.dll_unloaded, Version: 0.0.0.0, Zeitstempel: 0x4ce7b819 Ausnahmecode: 0xc0000005 Fehleroffset: 0x73482889 ID des fehlerhaften Prozesses: 0x13b4 Startzeit der fehlerhaften Anwendung: 0x01cd61badc02e25c Pfad der fehlerhaften Anwendung: C:\Program Files (x86)\EA SPORTS\FUSSBALL MANAGER 12\Manager12.exe Pfad des fehlerhaften Moduls: dxgi.dll Berichtskennung: d22723a1-cddc-11e1-a515-20cf302c659d Error - 21.07.2012 18:30:42 | Computer Name = Cesar1 | Source = Application Error | ID = 1000 Description = Name der fehlerhaften Anwendung: Manager12.exe, Version: 1.0.0.0, Zeitstempel: 0x4e7f82a5 Name des fehlerhaften Moduls: GfxCore.dll, Version: 0.0.0.0, Zeitstempel: 0x4e7f81ee Ausnahmecode: 0xc0000005 Fehleroffset: 0x00333598 ID des fehlerhaften Prozesses: 0x324 Startzeit der fehlerhaften Anwendung: 0x01cd6771403da867 Pfad der fehlerhaften Anwendung: C:\Program Files (x86)\EA SPORTS\FUSSBALL MANAGER 12\Manager12.exe Pfad des fehlerhaften Moduls: C:\Program Files (x86)\EA SPORTS\FUSSBALL MANAGER 12\GfxCore.dll Berichtskennung: b427410a-d383-11e1-9b82-20cf302c659d Error - 28.07.2012 02:06:54 | Computer Name = Cesar1 | Source = Application Error | ID = 1000 Description = Name der fehlerhaften Anwendung: iexplore.exe, Version: 8.0.7601.17514, Zeitstempel: 0x4ce79912 Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000 Ausnahmecode: 0xc00000fd Fehleroffset: 0x74aae2d4 ID des fehlerhaften Prozesses: 0x10ac Startzeit der fehlerhaften Anwendung: 0x01cd6c872abd08c6 Pfad der fehlerhaften Anwendung: C:\Program Files (x86)\Internet Explorer\iexplore.exe Pfad des fehlerhaften Moduls: unknown Berichtskennung: 6d68921e-d87a-11e1-b603-20cf302c659d [ System Events ] Error - 29.07.2012 11:47:48 | Computer Name = Cesar1 | Source = Service Control Manager | ID = 7001 Description = Der Dienst "Computerbrowser" ist vom Dienst "Server" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde: %%1068 Error - 29.07.2012 11:49:54 | Computer Name = Cesar1 | Source = Service Control Manager | ID = 7001 Description = Der Dienst "Computerbrowser" ist vom Dienst "Server" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde: %%1068 Error - 29.07.2012 11:49:54 | Computer Name = Cesar1 | Source = Service Control Manager | ID = 7001 Description = Der Dienst "Computerbrowser" ist vom Dienst "Server" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde: %%1068 Error - 29.07.2012 11:49:54 | Computer Name = Cesar1 | Source = Service Control Manager | ID = 7001 Description = Der Dienst "Computerbrowser" ist vom Dienst "Server" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde: %%1068 Error - 29.07.2012 11:54:54 | Computer Name = Cesar1 | Source = Service Control Manager | ID = 7001 Description = Der Dienst "Computerbrowser" ist vom Dienst "Server" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde: %%1068 Error - 29.07.2012 11:54:54 | Computer Name = Cesar1 | Source = Service Control Manager | ID = 7001 Description = Der Dienst "Computerbrowser" ist vom Dienst "Server" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde: %%1068 Error - 29.07.2012 11:54:54 | Computer Name = Cesar1 | Source = Service Control Manager | ID = 7001 Description = Der Dienst "Computerbrowser" ist vom Dienst "Server" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde: %%1068 Error - 29.07.2012 11:57:02 | Computer Name = Cesar1 | Source = Service Control Manager | ID = 7001 Description = Der Dienst "Computerbrowser" ist vom Dienst "Server" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde: %%1068 Error - 29.07.2012 11:57:02 | Computer Name = Cesar1 | Source = Service Control Manager | ID = 7001 Description = Der Dienst "Computerbrowser" ist vom Dienst "Server" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde: %%1068 Error - 29.07.2012 11:57:02 | Computer Name = Cesar1 | Source = Service Control Manager | ID = 7001 Description = Der Dienst "Computerbrowser" ist vom Dienst "Server" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde: %%1068 < End of report > --- --- --- |
30.07.2012, 14:35 | #2 | |
/// Winkelfunktion /// TB-Süch-Tiger™ | das programm kann die webseite nicht anzeigen win7,Zitat:
__________________ |
Themen zu das programm kann die webseite nicht anzeigen win7, |
asus, autorun, avira, bho, bonjour, conduit, converter, drahtlos, explorer, firefox, format, helper, iminent, iminent toolbar, install.exe, intranet, jdownloader, limited.com/facebook, logfile, lws.exe, malwarebytes, microsoft, mp3, nvidia, nvidia update, object, oneclickdownloader, opera, plug-in, politik, programm, programme, registry, scan, searchscopes, security, software, super, temp, windows, yontoo, youtube downloader |