|
Plagegeister aller Art und deren Bekämpfung: UAC meldet nixWindows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
22.08.2010, 14:25 | #1 |
| UAC meldet nix Hallo, ich habe vor kurzem bemerkt, dass die UAC in Windows 7 nicht mehr aufgeht. Ich habe nachgeguckt und gemerkt, dass die UAC deaktiviert ist. Ich habe sie wieder aktiviert (höchste Stufe). Nun kommen aber immer noch keine Meldungen. Natürlich habe ich sofort an einen Virus gedacht, aber weder mein avast und mbam haben etwas gefunden. Ccleaner habe ich schon ausgeführt. Vielen Dank für Antworten! Hier ist mein OTL-Log:OTL Logfile: Code:
ATTFilter OTL logfile created on: 22.08.2010 15:17:45 - Run 2 OTL by OldTimer - Version 3.2.10.0 Folder = C:\Users\NAME\Desktop 64bit- Home Premium Edition (Version = 6.1.7600) - Type = NTWorkstation Internet Explorer (Version = 8.0.7600.16385) Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy 4,00 Gb Total Physical Memory | 2,00 Gb Available Physical Memory | 55,00% Memory free 8,00 Gb Paging File | 5,00 Gb Available in Paging File | 68,00% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86) Drive C: | 186,52 Gb Total Space | 48,62 Gb Free Space | 26,07% Space Free | Partition Type: NTFS Drive D: | 170,07 Gb Total Space | 131,92 Gb Free Space | 77,57% Space Free | Partition Type: NTFS E: Drive not present or media not loaded F: Drive not present or media not loaded Drive G: | 661,51 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS H: Drive not present or media not loaded I: Drive not present or media not loaded Computer Name: NAMELAPTOP Current User Name: NAME Logged in as Administrator. Current Boot Mode: Normal Scan Mode: Current user Include 64bit Scans Company Name Whitelist: Off Skip Microsoft Files: Off File Age = 30 Days Output = Minimal ========== Processes (SafeList) ========== PRC - C:\Users\NAME\Desktop\OTL.exe (OldTimer Tools) PRC - C:\Program Files (x86)\SlySoft\AnyDVD\AnyDVDtray.exe (SlySoft, Inc.) PRC - C:\Program Files (x86)\Opera\opera.exe (Opera Software) PRC - C:\Windows\SysWOW64\PnkBstrB.exe () PRC - C:\Windows\SysWOW64\PnkBstrA.exe () PRC - C:\Programme\Alwil Software\Avast5\AvastUI.exe (AVAST Software) PRC - C:\Programme\Alwil Software\Avast5\AvastSvc.exe (AVAST Software) PRC - D:\Tobit Radio.fx\Server\rfx-server.exe () PRC - C:\Program Files (x86)\TeamViewer\Version5\TeamViewer_Service.exe (TeamViewer GmbH) PRC - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (Apple Inc.) PRC - C:\Program Files (x86)\Secunia\PSI\psi.exe (Secunia) PRC - C:\Program Files (x86)\Java\jre6\bin\javaw.exe (Sun Microsystems, Inc.) PRC - C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd) PRC - C:\Program Files (x86)\CDBurnerXP\NMSAccessU.exe () PRC - D:\Tobit Radio.fx\Client\rfx-tray.exe (Tobit.Software) PRC - C:\Program Files (x86)\Common Files\Realtime Soft\RTSHookInterop\x32\RTSHookInterop.exe (Realtime Soft Ltd) PRC - C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\ItSecMng.exe (TOSHIBA CORPORATION) PRC - C:\Program Files (x86)\TOSHIBA\ConfigFree\CFProcSRVC.exe (TOSHIBA CORPORATION) PRC - C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSvcs.exe (TOSHIBA CORPORATION) ========== Modules (SafeList) ========== MOD - C:\Users\NAME\Desktop\OTL.exe (OldTimer Tools) MOD - C:\Programme\UltraMon\RTSUltraMonHookX32.dll (Realtime Soft Ltd) MOD - C:\Programme\UltraMon\UltraMonResButtons.dll (Realtime Soft Ltd) MOD - C:\Program Files (x86)\SlySoft\AnyDVD\ADvdDiscHlp.dll (SlySoft, Inc.) MOD - D:\Tobit Radio.fx\Client\rfx-helper.dll (Tobit.Software) MOD - C:\Windows\SysWOW64\WindowsCodecs.dll (Microsoft Corporation) MOD - C:\Windows\SysWOW64\msi.dll (Microsoft Corporation) MOD - C:\Windows\SysWOW64\msscript.ocx (Microsoft Corporation) MOD - C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_421189da2b7fabfc\comctl32.dll (Microsoft Corporation) MOD - C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7600.16385_none_72fc7cbf861225ca\GdiPlus.dll (Microsoft Corporation) ========== Win32 Services (SafeList) ========== SRV:64bit: - (PnkBstrB) -- C:\Windows\SysNative\PnkBstrB.exe File not found SRV:64bit: - (PnkBstrA) -- C:\Windows\SysNative\PnkBstrA.exe File not found SRV:64bit: - (avast! Web Scanner) -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe (AVAST Software) SRV:64bit: - (avast! Mail Scanner) -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe (AVAST Software) SRV:64bit: - (avast! Antivirus) -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe (AVAST Software) SRV:64bit: - (TOSHIBA eco Utility Service) -- C:\Program Files\TOSHIBA\TECO\TecoService.exe (TOSHIBA Corporation) SRV:64bit: - (TosCoSrv) -- C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe (TOSHIBA Corporation) SRV:64bit: - (TPCHSrv) -- C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe (TOSHIBA Corporation) SRV:64bit: - (TOSHIBA HDD SSD Alert Service) -- C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe (TOSHIBA Corporation) SRV:64bit: - (AMD External Events Utility) -- C:\Windows\SysNative\atiesrxx.exe (AMD) SRV:64bit: - (TODDSrv) -- C:\Windows\SysNative\TODDSrv.exe (TOSHIBA Corporation) SRV - (PnkBstrB) -- C:\Windows\SysWOW64\PnkBstrB.exe () SRV - (PnkBstrA) -- C:\Windows\SysWOW64\PnkBstrA.exe () SRV - (Radio.fx) -- D:\Tobit Radio.fx\Server\rfx-server.exe () SRV - (TeamViewer5) -- C:\Program Files (x86)\TeamViewer\Version5\TeamViewer_Service.exe (TeamViewer GmbH) SRV - (Apple Mobile Device) -- C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (Apple Inc.) SRV - (aspnet_state) -- C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe (Microsoft Corporation) SRV - (clr_optimization_v4.0.30319_64) -- C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe (Microsoft Corporation) SRV - (clr_optimization_v4.0.30319_32) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe (Microsoft Corporation) SRV - (NMSAccess) -- C:\Program Files (x86)\CDBurnerXP\NMSAccessU.exe () SRV - (BlackfishSQL) -- C:\Program Files (x86)\Embarcadero\RAD Studio\7.0\bin\BSQLServer.exe (CodeGear) SRV - (TMachInfo) -- C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe (TOSHIBA Corporation) SRV - (cfWiMAXService) -- C:\Program Files (x86)\TOSHIBA\ConfigFree\CFIWmxSvcs64.exe (TOSHIBA CORPORATION) SRV - (TemproMonitoringService) Notebook Performance Tuning Service (TEMPRO) -- C:\Program Files (x86)\Toshiba TEMPRO\TemproSvc.exe (Toshiba Europe GmbH) SRV - (TOSHIBA Bluetooth Service) -- C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe (TOSHIBA CORPORATION) SRV - (ConfigFree Gadget Service) -- C:\Program Files (x86)\TOSHIBA\ConfigFree\CFProcSRVC.exe (TOSHIBA CORPORATION) SRV - (WinHttpAutoProxySvc) -- winhttp.dll (Microsoft Corporation) SRV - (GameConsoleService) -- C:\Program Files (x86)\TOSHIBA Games\TOSHIBA Game Console\GameConsoleService.exe (WildTangent, Inc.) SRV - (ConfigFree Service) -- C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSvcs.exe (TOSHIBA CORPORATION) SRV - (Microsoft Office Groove Audit Service) -- C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe (Microsoft Corporation) SRV - (InterBaseServer) -- C:\Program Files (x86)\Borland\InterBase\bin\ibserver.exe (Borland Software Corporation) SRV - (InterBaseGuardian) -- C:\Program Files (x86)\Borland\InterBase\bin\ibguard.exe (Borland Software Corporation) ========== Driver Services (SafeList) ========== DRV:64bit: - (USBCCID) -- C:\Windows\SysNative\DRIVERS\RtsUCcid.sys File not found DRV:64bit: - (RtsUIR) -- C:\Windows\SysNative\DRIVERS\Rts516xIR.sys File not found DRV:64bit: - (RSUSBSTOR) -- C:\Windows\SysNative\Drivers\RtsUStor.sys File not found DRV:64bit: - (AnyDVD) -- C:\Windows\SysNative\drivers\AnyDVD.sys (SlySoft, Inc.) DRV:64bit: - (aswMonFlt) -- C:\Windows\SysNative\drivers\aswMonFlt.sys (ALWIL Software) DRV:64bit: - (rtl8192se) -- C:\Windows\SysNative\drivers\rtl8192se.sys (Realtek Semiconductor Corporation ) DRV:64bit: - (PSI) -- C:\Windows\SysNative\drivers\psi_mf.sys (Secunia) DRV:64bit: - (sptd) -- C:\Windows\SysNative\drivers\sptd.sys () DRV:64bit: - (USBAAPL64) -- C:\Windows\SysNative\drivers\usbaapl64.sys (Apple, Inc.) DRV:64bit: - (ElbyCDIO) -- C:\Windows\SysNative\drivers\ElbyCDIO.sys (Elaborate Bytes AG) DRV:64bit: - (LPCFilter) -- C:\Windows\SysNative\drivers\LPCFilter.sys (COMPAL ELECTRONIC INC.) DRV:64bit: - (tdcmdpst) -- C:\Windows\SysNative\drivers\tdcmdpst.sys (TOSHIBA Corporation.) DRV:64bit: - (atikmdag) -- C:\Windows\SysNative\drivers\atikmdag.sys (ATI Technologies Inc.) DRV:64bit: - (tos_sps64) -- C:\Windows\SysNative\drivers\tos_sps64.sys (TOSHIBA Corporation) DRV:64bit: - (SynTP) -- C:\Windows\SysNative\drivers\SynTP.sys (Synaptics Incorporated) DRV:64bit: - (TVALZ) -- C:\Windows\SysNative\drivers\TVALZ_O.SYS (TOSHIBA Corporation) DRV:64bit: - (amdsata) -- C:\Windows\SysNative\drivers\amdsata.sys (Advanced Micro Devices) DRV:64bit: - (amdxata) -- C:\Windows\SysNative\drivers\amdxata.sys (Advanced Micro Devices) DRV:64bit: - (amdsbs) -- C:\Windows\SysNative\drivers\amdsbs.sys (AMD Technologies Inc.) DRV:64bit: - (LSI_SAS2) -- C:\Windows\SysNative\drivers\lsi_sas2.sys (LSI Corporation) DRV:64bit: - (HpSAMD) -- C:\Windows\SysNative\drivers\HpSAMD.sys (Hewlett-Packard Company) DRV:64bit: - (stexstor) -- C:\Windows\SysNative\drivers\stexstor.sys (Promise Technology) DRV:64bit: - (tosrfec) -- C:\Windows\SysNative\drivers\tosrfec.sys (TOSHIBA Corporation) DRV:64bit: - (PGEffect) -- C:\Windows\SysNative\drivers\PGEffect.sys (TOSHIBA Corporation) DRV:64bit: - (athr) -- C:\Windows\SysNative\drivers\athrx.sys (Atheros Communications, Inc.) DRV:64bit: - (TVALZFL) -- C:\Windows\SysNative\drivers\TVALZFL.sys (TOSHIBA Corporation) DRV:64bit: - (Ntfs) -- C:\Windows\SysNative\wbem\ntfs.mof () DRV:64bit: - (igfx) -- C:\Windows\SysNative\drivers\igdkmd64.sys (Intel Corporation) DRV:64bit: - (ebdrv) -- C:\Windows\SysNative\drivers\evbda.sys (Broadcom Corporation) DRV:64bit: - (b06bdrv) -- C:\Windows\SysNative\drivers\bxvbda.sys (Broadcom Corporation) DRV:64bit: - (b57nd60a) -- C:\Windows\SysNative\drivers\b57nd60a.sys (Broadcom Corporation) DRV:64bit: - (hcw85cir) -- C:\Windows\SysNative\drivers\hcw85cir.sys (Hauppauge Computer Works, Inc.) DRV:64bit: - (iaStor) -- C:\Windows\SysNative\drivers\iaStor.sys (Intel Corporation) DRV:64bit: - (RTL8167) -- C:\Windows\SysNative\drivers\Rt64win7.sys (Realtek ) DRV:64bit: - (RTHDMIAzAudService) -- C:\Windows\SysNative\drivers\RtHDMIVX.sys (Realtek Semiconductor Corp.) DRV:64bit: - (GEARAspiWDM) -- C:\Windows\SysNative\drivers\GEARAspiWDM.sys (GEAR Software Inc.) DRV - (AnyDVD) -- C:\Windows\SysWOW64\drivers\AnyDVD.sys (SlySoft, Inc.) DRV - (StarOpen) -- C:\Windows\SysWow64\drivers\StarOpen.sys () DRV - (UltraMonUtility) -- C:\Program Files (x86)\Common Files\Realtime Soft\UltraMonMirrorDrv\x64\UltraMonUtility.sys (Realtime Soft Ltd) ========== Standard Registry (SafeList) ========== ========== Internet Explorer ========== IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com/ig/redirectdomain?brand=TSEH&bmod=TSEH IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.hiergehtslos.de IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local ========== FireFox ========== FF - prefs.js..browser.startup.homepage: "hxxp://www.hiergehtslos.de" FF - prefs.js..extensions.enabledItems: {73a6fe31-595d-460b-a920-fcc0f8843232}:2.0.1 FF - prefs.js..extensions.enabledItems: {e4a8a97b-f2ed-450b-b12d-ee082ba24781}:0.8.20100408.6 FF - prefs.js..extensions.enabledItems: {45d8ff86-d909-11db-9705-005056c00008}:1.0.2 FF - prefs.js..extensions.enabledItems: {AB2CE124-6272-4b12-94A9-7303C7397BD1}:4.2.0.5198 FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20 FF - prefs.js..extensions.enabledItems: {b9db16a4-6edc-47ec-a1f4-b86292ed211d}:4.8 FF - prefs.js..extensions.enabledItems: {888d99e7-e8b5-46a3-851e-1ec45da1e644}:4.0.0 FF - HKLM\software\mozilla\Mozilla Firefox 3.6.8\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2010.08.13 13:42:17 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 3.6.8\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2010.08.21 14:19:49 | 000,000,000 | ---D | M] [2010.05.23 13:20:03 | 000,000,000 | ---D | M] -- C:\Users\NAME\AppData\Roaming\mozilla\Extensions [2010.08.18 15:46:18 | 000,000,000 | ---D | M] -- C:\Users\NAME\AppData\Roaming\mozilla\Firefox\Profiles\7u1q6zgj.default\extensions [2010.06.30 21:20:07 | 000,000,000 | ---D | M] (Cookie Monster) -- C:\Users\NAME\AppData\Roaming\mozilla\Firefox\Profiles\7u1q6zgj.default\extensions\{45d8ff86-d909-11db-9705-005056c00008} [2010.08.10 23:43:09 | 000,000,000 | ---D | M] (NoScript) -- C:\Users\NAME\AppData\Roaming\mozilla\Firefox\Profiles\7u1q6zgj.default\extensions\{73a6fe31-595d-460b-a920-fcc0f8843232} [2010.08.11 15:32:17 | 000,000,000 | ---D | M] (ReloadEvery) -- C:\Users\NAME\AppData\Roaming\mozilla\Firefox\Profiles\7u1q6zgj.default\extensions\{888d99e7-e8b5-46a3-851e-1ec45da1e644} [2010.07.27 21:07:05 | 000,000,000 | ---D | M] (DownloadHelper) -- C:\Users\NAME\AppData\Roaming\mozilla\Firefox\Profiles\7u1q6zgj.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d} [2010.05.23 13:25:27 | 000,000,000 | ---D | M] (Greasemonkey) -- C:\Users\NAME\AppData\Roaming\mozilla\Firefox\Profiles\7u1q6zgj.default\extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781} [2010.06.04 13:47:11 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\mozilla firefox\extensions [2010.05.27 16:53:20 | 000,000,000 | ---D | M] (Skype extension for Firefox) -- C:\Program Files (x86)\mozilla firefox\extensions\{AB2CE124-6272-4b12-94A9-7303C7397BD1} [2010.06.04 13:47:12 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files (x86)\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} [2010.04.12 17:29:19 | 000,411,368 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files (x86)\mozilla firefox\plugins\npdeployJava1.dll [2010.04.01 18:54:38 | 000,001,392 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\amazondotcom-de.xml [2010.04.01 18:54:38 | 000,002,344 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\eBay-de.xml [2010.04.01 18:54:38 | 000,006,805 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\leo_ende_de.xml [2010.04.01 18:54:38 | 000,001,178 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\wikipedia-de.xml [2010.04.01 18:54:38 | 000,001,105 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\yahoo-de.xml O1 HOSTS File: ([2009.06.10 23:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts O2:64bit: - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Programme\Google\GoogleToolbarNotifier\5.2.4204.1700\swg64.dll (Google Inc.) O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found. O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation) O2 - BHO: (Skype add-on for Internet Explorer) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll (Google Inc.) O4:64bit: - HKLM..\Run: [RtHDVCpl] C:\Programme\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor) O4 - HKLM..\Run: [avast5] C:\Program Files\Alwil Software\Avast5\avastUI.exe (AVAST Software) O4 - HKLM..\Run: [ Malwarebytes Anti-Malware (reboot)] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe (Malwarebytes Corporation) O4 - HKLM..\Run: [StartCCC] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.) O4 - HKLM..\Run: [ToshibaServiceStation] C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\ToshibaServiceStation.exe (TOSHIBA Corporation) O4 - HKCU..\Run: [AnyDVD] C:\Program Files (x86)\SlySoft\AnyDVD\AnyDVDtray.exe (SlySoft, Inc.) O4 - HKCU..\Run: [DAEMON Tools Lite] C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd) O4 - HKCU..\Run: [RfxSrvTray] D:\Tobit Radio.fx\Client\rfx-tray.exe (Tobit.Software) O4 - HKLM..\RunOnce: [Malwarebytes' Anti-Malware] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation) O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0 O9 - Extra Button: In Blog veröffentlichen - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation) O9 - Extra 'Tools' menuitem : In Windows Live Writer in Blog veröffentliche&n - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation) O9 - Extra Button: An OneNote senden - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~2\Office12\ONBttnIE.dll (Microsoft Corporation) O9 - Extra 'Tools' menuitem : An OneNote s&enden - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~2\Office12\ONBttnIE.dll (Microsoft Corporation) O9 - Extra Button: ICQ7.2 - {72EFBFE4-C74F-4187-AEFD-73EA3BE968D6} - C:\Program Files (x86)\ICQ7.2\ICQ.exe (ICQ, LLC.) O9 - Extra 'Tools' menuitem : ICQ7.2 - {72EFBFE4-C74F-4187-AEFD-73EA3BE968D6} - C:\Program Files (x86)\ICQ7.2\ICQ.exe (ICQ, LLC.) O9 - Extra Button: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O9 - Extra 'Tools' menuitem : Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~2\Office12\REFIEBAR.DLL (Microsoft Corporation) O10:64bit: - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.) O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.) O13 - gopher Prefix: missing O13 - gopher Prefix: missing O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab (Java Plug-in 1.6.0_20) O16 - DPF: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab (Java Plug-in 1.6.0_20) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab (Java Plug-in 1.6.0_20) O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} https://fpdownload.macromedia.com/pub/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.192.10.100 O18:64bit: - Protocol\Handler\grooveLocalGWS {88FED34C-F0CA-4636-A375-3CB6248B04CD} - Reg Error: Key error. File not found O18:64bit: - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - Reg Error: Key error. File not found O18:64bit: - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - Reg Error: Key error. File not found O18:64bit: - Protocol\Handler\ms-itss {0A9007C0-4076-11D3-8789-0000F8105754} - Reg Error: Key error. File not found O18:64bit: - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - Reg Error: Key error. File not found O18:64bit: - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - Reg Error: Key error. File not found O18:64bit: - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - Reg Error: Key error. File not found O18:64bit: - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - Reg Error: Key error. File not found O18 - Protocol\Handler\grooveLocalGWS {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation) O18 - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~2\WIC4A1~1\MESSEN~1\MSGRAP~1.DLL (Microsoft Corporation) O18 - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~2\WIC4A1~1\MESSEN~1\MSGRAP~1.DLL (Microsoft Corporation) O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies) O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O18:64bit: - Protocol\Filter\application/octet-stream {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - mscoree.dll (Microsoft Corporation) O18:64bit: - Protocol\Filter\application/x-complus {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - mscoree.dll (Microsoft Corporation) O18:64bit: - Protocol\Filter\application/x-msdownload {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - mscoree.dll (Microsoft Corporation) O18:64bit: - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Programme\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation) O18 - Protocol\Filter\application/octet-stream {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - mscoree.dll (Microsoft Corporation) O18 - Protocol\Filter\application/x-complus {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - mscoree.dll (Microsoft Corporation) O18 - Protocol\Filter\application/x-msdownload {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - mscoree.dll (Microsoft Corporation) O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\PROGRA~2\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation) O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - explorer.exe (Microsoft Corporation) O20:64bit: - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - SystemPropertiesPerformance.exe (Microsoft Corporation) O20:64bit: - HKLM Winlogon: VMApplet - (/pagefile) - File not found O20 - HKLM Winlogon: Shell - (explorer.exe) - explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - SystemPropertiesPerformance.exe (Microsoft Corporation) O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found. O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found. O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation) O29:64bit: - HKLM SecurityProviders - (credssp.dll) - credssp.dll (Microsoft Corporation) O29 - HKLM SecurityProviders - (credssp.dll) - credssp.dll (Microsoft Corporation) O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2002.08.23 10:00:00 | 000,000,046 | R--- | M] () - G:\AUTORUN.INF -- [ CDFS ] O33 - MountPoints2\{1a3fec5f-665e-11df-840b-002622444611}\Shell - "" = AutoRun O33 - MountPoints2\{1a3fec5f-665e-11df-840b-002622444611}\Shell\AutoRun\command - "" = G:\Install.exe -- [2002.08.23 10:00:00 | 001,072,128 | R--- | M] (Borland Software Corp.) O34 - HKLM BootExecute: (autocheck autochk *) - File not found O35:64bit: - HKLM\..comfile [open] -- "%1" %* O35:64bit: - HKLM\..exefile [open] -- "%1" %* O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %* O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* ========== Files/Folders - Created Within 30 Days ========== [2010.08.22 15:11:41 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\CCleaner [2010.08.21 20:50:58 | 000,575,488 | ---- | C] (OldTimer Tools) -- C:\Users\NAME\Desktop\OTL.exe [2010.08.21 19:57:46 | 000,000,000 | ---D | C] -- C:\Users\NAME\Documents\rechner [2010.08.21 19:48:47 | 000,000,000 | ---D | C] -- C:\Users\NAME\.borland [2010.08.21 17:04:18 | 000,000,000 | ---D | C] -- C:\Users\NAME\AppData\Roaming\Malwarebytes [2010.08.21 17:04:13 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysWow64\drivers\mbamswissarmy.sys [2010.08.21 17:04:13 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes [2010.08.21 17:04:12 | 000,024,664 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mbam.sys [2010.08.21 17:04:12 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware [2010.08.21 16:53:42 | 000,000,000 | ---D | C] -- C:\Inprise [2010.08.21 16:53:33 | 000,327,168 | ---- | C] (InstallShield Software Corporation) -- C:\Windows\IsUninst.exe [2010.08.21 16:52:41 | 000,177,152 | ---- | C] (Borland Software Corporation) -- C:\Windows\SysWow64\ibinstall.dll [2010.08.21 16:52:38 | 000,376,832 | ---- | C] (Borland Software Corporation) -- C:\Windows\SysWow64\gds32.dll [2010.08.21 16:52:38 | 000,028,672 | ---- | C] (Borland Software Corporation) -- C:\Windows\SysWow64\ibxml.dll [2010.08.21 16:52:36 | 000,430,080 | ---- | C] (Borland Software Corporation.) -- C:\Windows\SysWow64\ibmgr.cpl [2010.08.21 16:50:33 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Borland [2010.08.19 12:31:19 | 000,000,000 | ---D | C] -- C:\Users\NAME\Documents\AnyDVDHD [2010.08.19 12:29:14 | 000,000,000 | ---D | C] -- C:\ProgramData\SlySoft [2010.08.19 12:23:10 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\SlySoft [2010.08.18 16:16:28 | 000,000,000 | ---D | C] -- C:\Embarcadero [2010.08.18 15:31:51 | 000,000,000 | ---D | C] -- C:\Users\NAME\Documents\RAD Studio [2010.08.18 15:30:50 | 000,000,000 | ---D | C] -- C:\Users\NAME\AppData\Roaming\CodeGear [2010.08.18 15:29:04 | 000,000,000 | ---D | C] -- C:\Users\NAME\Documents\DBPack_Rad_Studio_2010_UP5_Downloads [2010.08.18 15:28:58 | 000,000,000 | -H-D | C] -- C:\ProgramData\{2563F97A-045F-4E4C-9DB1-D5D26C269882} [2010.08.18 15:27:15 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\RAD Studio [2010.08.18 15:27:14 | 000,000,000 | ---D | C] -- C:\Users\NAME\AppData\Roaming\Embarcadero [2010.08.18 15:27:14 | 000,000,000 | ---D | C] -- C:\ProgramData\Embarcadero [2010.08.18 15:27:14 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Embarcadero [2010.08.18 15:27:14 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\CodeGear Shared [2010.08.18 15:26:55 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Borland Shared [2010.08.18 15:13:46 | 000,000,000 | ---D | C] -- C:\Users\NAME\Documents\Rad_Studio_2010_UP4_Downloads [2010.08.18 15:13:33 | 000,000,000 | -H-D | C] -- C:\ProgramData\{2D559015-4C05-4AE5-8C8B-7E13E1EAB09D} [2010.08.15 13:33:41 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft SQL Server [2010.08.15 13:33:36 | 000,000,000 | ---D | C] -- C:\Programme\Microsoft Synchronization Services [2010.08.15 13:33:36 | 000,000,000 | ---D | C] -- C:\Programme\Microsoft SQL Server Compact Edition [2010.08.15 13:33:32 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Synchronization Services [2010.08.15 13:33:15 | 000,000,000 | ---D | C] -- C:\Users\NAME\Documents\Visual Studio 2010 [2010.08.15 13:31:20 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Visual Studio 10.0 [2010.08.15 13:30:39 | 000,000,000 | ---D | C] -- C:\Windows\symbols [2010.08.15 13:30:39 | 000,000,000 | ---D | C] -- C:\Programme\Microsoft Visual Studio 10.0 [2010.08.15 13:30:39 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft SDKs [2010.08.15 13:30:39 | 000,000,000 | ---D | C] -- C:\Programme\Microsoft Help Viewer [2010.08.15 11:30:12 | 000,000,000 | ---D | C] -- C:\FreeBasicNEU [2010.08.14 18:46:48 | 000,000,000 | ---D | C] -- C:\FreeBasic1 [2010.08.14 18:44:21 | 000,000,000 | ---D | C] -- C:\FreeBASIC [2010.08.13 16:53:18 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\COMPUTER BILD [2010.08.13 16:52:50 | 000,000,000 | ---D | C] -- C:\Users\NAME\AppData\Local\Downloaded Installations [2010.08.13 16:37:34 | 000,000,000 | ---D | C] -- C:\Users\NAME\AppData\Local\Flash Video Downloader. Youtube Downloader [2010.08.13 16:31:41 | 000,000,000 | ---D | C] -- C:\Users\NAME\AppData\Roaming\Windows Live Writer [2010.08.13 16:31:41 | 000,000,000 | ---D | C] -- C:\Users\NAME\AppData\Local\Windows Live Writer [2010.08.13 16:31:41 | 000,000,000 | ---D | C] -- C:\Users\NAME\Documents\My Weblog Posts [2010.08.13 13:51:47 | 000,000,000 | ---D | C] -- C:\Users\NAME\AppData\Roaming\vlc [2010.08.13 13:51:09 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Sofware [2010.08.13 13:42:02 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\QuickTime [2010.08.13 13:40:52 | 000,000,000 | -HSD | C] -- C:\Config.Msi [2010.08.11 16:24:03 | 005,507,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntoskrnl.exe [2010.08.11 16:24:02 | 003,955,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntkrnlpa.exe [2010.08.11 16:24:01 | 003,899,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntoskrnl.exe [2010.08.11 16:23:53 | 000,256,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iepeers.dll [2010.08.11 16:23:53 | 000,185,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iepeers.dll [2010.08.11 16:23:52 | 000,247,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieui.dll [2010.08.11 16:23:52 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll [2010.08.11 16:23:52 | 000,012,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msfeedssync.exe [2010.08.11 16:23:52 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeedssync.exe [2010.08.11 16:23:49 | 000,082,944 | ---- | C] (Radius Inc.) -- C:\Windows\SysWow64\iccvid.dll [2010.08.11 16:23:49 | 000,052,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rtutils.dll [2010.08.11 16:23:49 | 000,037,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\rtutils.dll [2010.08.11 14:48:10 | 000,000,000 | ---D | C] -- C:\Users\NAME\AppData\Roaming\Realtime Soft [2010.08.11 14:48:05 | 000,000,000 | ---D | C] -- C:\Programme\UltraMon [2010.08.11 14:48:05 | 000,000,000 | ---D | C] -- C:\ProgramData\Realtime Soft [2010.08.11 14:48:05 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Realtime Soft [2010.08.10 05:15:58 | 000,094,208 | ---- | C] (Apple Inc.) -- C:\Windows\SysWow64\QuickTimeVR.qtx [2010.08.10 05:15:58 | 000,069,632 | ---- | C] (Apple Inc.) -- C:\Windows\SysWow64\QuickTime.qts [2010.08.09 15:24:08 | 000,000,000 | ---D | C] -- C:\Users\NAME\AppData\Roaming\Secunia CSI [2010.08.09 15:24:06 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Secunia [2010.08.08 21:15:46 | 000,000,000 | ---D | C] -- C:\Users\NAME\AppData\Local\Cranium_Consulting_and_Cu [2010.08.08 21:15:26 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\iPhoneBrowser [2010.08.08 21:07:07 | 000,000,000 | ---D | C] -- C:\totalcmd [2010.08.08 21:07:07 | 000,000,000 | ---D | C] -- C:\Users\NAME\AppData\Roaming\GHISLER [2010.07.30 14:09:24 | 000,000,000 | ---D | C] -- C:\Users\NAME\Documents\StarCraft II [2010.07.27 23:24:34 | 000,000,000 | ---D | C] -- C:\Users\NAME\Desktop\Warcraft III [2010.07.27 21:12:24 | 000,000,000 | ---D | C] -- C:\TeknoR6Vegas2_2.0 [2010.07.27 20:22:20 | 000,000,000 | ---D | C] -- C:\Musik [2010.07.27 16:02:39 | 000,000,000 | ---D | C] -- C:\Users\NAME\Documents\Battlefield 2 [2010.07.27 15:58:18 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\EA GAMES [2010.07.26 21:05:31 | 000,000,000 | ---D | C] -- C:\Users\NAME\AppData\Roaming\MP3Find [2010.07.26 21:04:52 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\MP3Find [2010.07.26 20:58:02 | 000,000,000 | ---D | C] -- C:\Users\NAME\AppData\Roaming\Mp3tag [2010.07.26 20:57:59 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mp3tag [2010.07.26 20:02:51 | 000,000,000 | ---D | C] -- C:\Users\NAME\Jaikoz [2010.07.26 20:02:37 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Jthink [2010.07.26 19:40:54 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\TuneUpMedia [2010.07.26 19:35:52 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Tunatic [2010.07.26 19:24:42 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\MusicBrainz Tagger [2010.07.26 16:51:27 | 000,000,000 | ---D | C] -- C:\Users\NAME\AppData\Roaming\Locktime [2010.07.26 16:51:06 | 000,000,000 | ---D | C] -- C:\ProgramData\Locktime [2010.07.26 14:43:21 | 000,000,000 | ---D | C] -- C:\Windows\uninstall [2010.07.26 14:36:51 | 000,000,000 | ---D | C] -- C:\Users\NAME\dwhelper [2010.07.26 12:51:16 | 000,000,000 | ---D | C] -- C:\Users\NAME\AppData\Roaming\Tobit [2010.07.26 12:51:01 | 001,844,488 | ---- | C] (Tobit.Software) -- C:\Windows\RXSUnins.exe [2010.07.26 12:51:01 | 001,844,488 | ---- | C] (Tobit.Software) -- C:\Windows\RXCUnins.exe [2010.07.26 12:51:01 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Tobit [2010.07.23 21:55:31 | 000,000,000 | ---D | C] -- C:\Users\NAME\AppData\Roaming\Warsow 0.5 [2010.07.23 21:55:31 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Warsow 0.5 [1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ] ========== Files - Modified Within 30 Days ========== [2010.08.22 15:20:00 | 005,767,168 | -HS- | M] () -- C:\Users\NAME\NTUSER.DAT [2010.08.22 15:11:54 | 000,001,018 | ---- | M] () -- C:\Users\NAME\Desktop\CCleaner.lnk [2010.08.22 15:09:46 | 000,001,102 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job [2010.08.22 15:03:02 | 000,007,635 | ---- | M] () -- C:\Users\NAME\AppData\Local\Resmon.ResmonCfg [2010.08.22 14:57:25 | 000,001,034 | ---- | M] () -- C:\Windows\tasks\Google Software Updater.job [2010.08.22 14:57:16 | 000,001,106 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job [2010.08.22 14:57:01 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat [2010.08.21 20:50:58 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Users\NAME\Desktop\OTL.exe [2010.08.21 17:04:16 | 000,001,020 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk [2010.08.21 16:52:37 | 000,017,508 | ---- | M] () -- C:\Windows\SysNative\drivers\etc\services [2010.08.21 14:19:51 | 000,002,021 | ---- | M] () -- C:\Users\Public\Desktop\Adobe Reader 9.lnk [2010.08.21 00:10:15 | 000,016,080 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 [2010.08.21 00:10:15 | 000,016,080 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 [2010.08.21 00:02:51 | 000,000,006 | -H-- | M] () -- C:\Windows\tasks\SA.DAT [2010.08.21 00:02:35 | 3193,597,952 | -HS- | M] () -- C:\hiberfil.sys [2010.08.21 00:01:19 | 003,072,093 | -H-- | M] () -- C:\Users\NAME\AppData\Local\IconCache.db [2010.08.19 12:29:47 | 000,000,056 | -H-- | M] () -- C:\Windows\SysWow64\ezsidmv.dat [2010.08.19 12:29:14 | 000,000,040 | -HS- | M] () -- C:\ProgramData\.zreglib [2010.08.19 12:27:59 | 000,426,512 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT [2010.08.19 12:23:14 | 000,001,112 | ---- | M] () -- C:\Users\Public\Desktop\AnyDVD.lnk [2010.08.19 11:37:22 | 000,853,504 | ---- | M] () -- C:\Users\NAME\Desktop\Taschenrechner.exe [2010.08.15 13:30:36 | 001,589,182 | ---- | M] () -- C:\Windows\SysWow64\PerfStringBackup.INI [2010.08.15 13:30:36 | 000,696,370 | ---- | M] () -- C:\Windows\SysNative\perfh007.dat [2010.08.15 13:30:36 | 000,651,648 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat [2010.08.15 13:30:36 | 000,147,634 | ---- | M] () -- C:\Windows\SysNative\perfc007.dat [2010.08.15 13:30:36 | 000,120,580 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat [2010.08.15 13:30:30 | 001,589,182 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI [2010.08.15 11:30:20 | 000,000,590 | ---- | M] () -- C:\Users\NAME\Desktop\FBIde.lnk [2010.08.13 13:51:41 | 000,001,077 | ---- | M] () -- C:\Users\Public\Desktop\VLC media player.lnk [2010.08.13 13:48:23 | 000,000,840 | ---- | M] () -- C:\Users\Public\Desktop\Opera.lnk [2010.08.13 13:42:10 | 000,001,852 | ---- | M] () -- C:\Users\Public\Desktop\QuickTime Player.lnk [2010.08.13 13:36:18 | 000,111,216 | ---- | M] () -- C:\Users\NAME\AppData\Local\GDIPFONTCACHEV1.DAT [2010.08.12 20:20:10 | 000,002,062 | ---- | M] () -- C:\Users\Public\Desktop\The Conquerors.lnk [2010.08.12 20:18:36 | 000,002,189 | ---- | M] () -- C:\Users\Public\Desktop\Age of Empires II.lnk [2010.08.11 14:48:06 | 000,002,585 | ---- | M] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\UltraMon.lnk [2010.08.10 05:15:58 | 000,094,208 | ---- | M] (Apple Inc.) -- C:\Windows\SysWow64\QuickTimeVR.qtx [2010.08.10 05:15:58 | 000,069,632 | ---- | M] (Apple Inc.) -- C:\Windows\SysWow64\QuickTime.qts [2010.08.08 21:07:09 | 000,000,639 | ---- | M] () -- C:\Users\NAME\Desktop\Total Commander.lnk [2010.07.30 14:31:50 | 000,000,624 | ---- | M] () -- C:\Users\Public\Desktop\StarCraft II.lnk [2010.07.29 08:30:34 | 000,082,944 | ---- | M] (Radius Inc.) -- C:\Windows\SysWow64\iccvid.dll [2010.07.27 21:03:08 | 000,107,832 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrB.exe [2010.07.27 21:02:48 | 002,337,865 | ---- | M] () -- C:\Windows\SysWow64\pbsvc.exe [2010.07.27 21:02:48 | 000,066,872 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrA.exe [2010.07.27 16:51:30 | 000,000,355 | ---- | M] () -- C:\Windows\SysNative\AIDefault.ai [2010.07.27 16:46:39 | 000,002,347 | ---- | M] () -- C:\Users\NAME\Desktop\BF2SF64 Botchanger.lnk [2010.07.27 16:46:39 | 000,002,129 | ---- | M] () -- C:\Users\NAME\Desktop\BF2SF64.lnk [2010.07.27 16:46:13 | 000,002,199 | ---- | M] () -- C:\Users\Public\Desktop\Battlefield 2 Special Forces.lnk [2010.07.26 21:04:56 | 000,001,926 | ---- | M] () -- C:\Users\Public\Desktop\MP3Find Aufräumfunktionen.lnk [2010.07.26 21:04:56 | 000,001,882 | ---- | M] () -- C:\Users\Public\Desktop\MP3Find.lnk [2010.07.26 20:58:00 | 000,000,990 | ---- | M] () -- C:\Users\Public\Desktop\Mp3tag.lnk [2010.07.26 19:35:52 | 000,001,814 | ---- | M] () -- C:\Users\NAME\Desktop\Tunatic.lnk [2010.07.26 19:24:43 | 000,001,848 | ---- | M] () -- C:\Users\Public\Desktop\MusicBrainz Tagger.lnk [2010.07.26 12:51:15 | 000,000,864 | ---- | M] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Radio.fx.LNK [2010.07.26 12:51:10 | 000,000,864 | ---- | M] () -- C:\Users\Public\Desktop\Radio.fx.LNK [2010.07.23 21:56:08 | 000,001,192 | ---- | M] () -- C:\Users\Public\Desktop\Warsow.lnk [1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ] ========== Files Created - No Company Name ========== [2010.08.22 15:11:54 | 000,001,018 | ---- | C] () -- C:\Users\NAME\Desktop\CCleaner.lnk [2010.08.21 17:04:16 | 000,001,020 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk [2010.08.19 12:29:47 | 000,000,056 | -H-- | C] () -- C:\Windows\SysWow64\ezsidmv.dat [2010.08.19 12:29:14 | 000,000,040 | -HS- | C] () -- C:\ProgramData\.zreglib [2010.08.19 12:23:14 | 000,001,112 | ---- | C] () -- C:\Users\Public\Desktop\AnyDVD.lnk [2010.08.19 11:39:04 | 000,853,504 | ---- | C] () -- C:\Users\NAME\Desktop\Taschenrechner.exe [2010.08.18 15:32:02 | 000,000,797 | ---- | C] () -- C:\Users\NAME\regwizard.log [2010.08.18 15:31:29 | 001,292,288 | ---- | C] () -- C:\Windows\SysWow64\Rave77VCL140.bpl [2010.08.18 15:28:59 | 000,006,743 | ---- | C] () -- C:\Users\NAME\sanct.log [2010.08.15 13:29:26 | 001,589,182 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI [2010.08.14 18:46:49 | 000,000,590 | ---- | C] () -- C:\Users\NAME\Desktop\FBIde.lnk [2010.08.13 13:51:41 | 000,001,077 | ---- | C] () -- C:\Users\Public\Desktop\VLC media player.lnk [2010.08.13 13:42:10 | 000,001,852 | ---- | C] () -- C:\Users\Public\Desktop\QuickTime Player.lnk [2010.08.12 20:20:10 | 000,002,062 | ---- | C] () -- C:\Users\Public\Desktop\The Conquerors.lnk [2010.08.12 20:18:36 | 000,002,189 | ---- | C] () -- C:\Users\Public\Desktop\Age of Empires II.lnk [2010.08.11 14:48:06 | 000,002,585 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\UltraMon.lnk [2010.08.08 21:07:09 | 000,000,639 | ---- | C] () -- C:\Users\NAME\Desktop\Total Commander.lnk [2010.08.08 21:07:07 | 000,000,545 | ---- | C] () -- C:\Windows\UC.PIF [2010.08.08 21:07:07 | 000,000,545 | ---- | C] () -- C:\Windows\RAR.PIF [2010.08.08 21:07:07 | 000,000,545 | ---- | C] () -- C:\Windows\PKZIP.PIF [2010.08.08 21:07:07 | 000,000,545 | ---- | C] () -- C:\Windows\PKUNZIP.PIF [2010.08.08 21:07:07 | 000,000,545 | ---- | C] () -- C:\Windows\NOCLOSE.PIF [2010.08.08 21:07:07 | 000,000,545 | ---- | C] () -- C:\Windows\LHA.PIF [2010.08.08 21:07:07 | 000,000,545 | ---- | C] () -- C:\Windows\ARJ.PIF [2010.08.08 16:47:49 | 000,007,635 | ---- | C] () -- C:\Users\NAME\AppData\Local\Resmon.ResmonCfg [2010.07.30 14:09:24 | 000,000,624 | ---- | C] () -- C:\Users\Public\Desktop\StarCraft II.lnk [2010.07.27 21:03:04 | 000,107,832 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrB.exe [2010.07.27 21:02:48 | 002,337,865 | ---- | C] () -- C:\Windows\SysWow64\pbsvc.exe [2010.07.27 21:02:48 | 000,066,872 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrA.exe [2010.07.27 16:48:47 | 000,000,355 | ---- | C] () -- C:\Windows\SysNative\AIDefault.ai [2010.07.27 16:46:39 | 000,002,347 | ---- | C] () -- C:\Users\NAME\Desktop\BF2SF64 Botchanger.lnk [2010.07.27 16:46:39 | 000,002,129 | ---- | C] () -- C:\Users\NAME\Desktop\BF2SF64.lnk [2010.07.27 16:46:13 | 000,002,199 | ---- | C] () -- C:\Users\Public\Desktop\Battlefield 2 Special Forces.lnk [2010.07.26 21:04:56 | 000,001,926 | ---- | C] () -- C:\Users\Public\Desktop\MP3Find Aufräumfunktionen.lnk [2010.07.26 21:04:56 | 000,001,882 | ---- | C] () -- C:\Users\Public\Desktop\MP3Find.lnk [2010.07.26 20:58:00 | 000,000,990 | ---- | C] () -- C:\Users\Public\Desktop\Mp3tag.lnk [2010.07.26 19:35:52 | 000,001,814 | ---- | C] () -- C:\Users\NAME\Desktop\Tunatic.lnk [2010.07.26 19:24:43 | 000,001,848 | ---- | C] () -- C:\Users\Public\Desktop\MusicBrainz Tagger.lnk [2010.07.26 12:51:15 | 000,000,864 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Radio.fx.LNK [2010.07.26 12:51:10 | 000,000,864 | ---- | C] () -- C:\Users\Public\Desktop\Radio.fx.LNK [2010.07.26 12:51:01 | 000,554,496 | ---- | C] () -- C:\Windows\SysWow64\dvmsg.dll [2010.07.23 21:56:08 | 000,001,192 | ---- | C] () -- C:\Users\Public\Desktop\Warsow.lnk [2010.07.03 13:53:37 | 000,007,168 | ---- | C] () -- C:\Windows\SysWow64\drivers\StarOpen.sys [2010.05.30 17:47:06 | 000,084,480 | ---- | C] () -- C:\Windows\SysWow64\ff_vfw.dll [2009.11.03 00:02:00 | 000,027,136 | ---- | C] () -- C:\Windows\SysWow64\BDSShellRes140.dll [2009.11.03 00:02:00 | 000,027,136 | ---- | C] () -- C:\Windows\SysWow64\BDSShellRes.dll [2009.07.14 01:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\SysWow64\BWContextHandler.dll [2009.07.13 23:03:59 | 000,364,544 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll [2009.04.28 04:37:00 | 000,028,672 | ---- | C] () -- C:\Windows\SysWow64\SPCtl.dll [2002.08.23 10:00:00 | 000,375,296 | ---- | C] () -- C:\Windows\SysWow64\WSIHK32.DLL [2002.08.23 10:00:00 | 000,132,096 | ---- | C] () -- C:\Windows\SysWow64\WSIWIN32.DLL [1997.06.14 10:56:08 | 000,056,832 | ---- | C] () -- C:\Windows\SysWow64\iyvu9_32.dll ========== Alternate Data Streams ========== @Alternate Data Stream - 164 bytes -> C:\Users\NAME\Desktop\erdkunde.tiff:3or4kl4x13tuuug3Byamue2s4b @Alternate Data Stream - 11 bytes -> C:\Users\NAME\harmlos1.txt:code.txt < End of report > EXTRAS:OTL EXTRAS Logfile: Code:
ATTFilter OTL Extras logfile created on: 22.08.2010 15:17:45 - Run 2 OTL by OldTimer - Version 3.2.10.0 Folder = C:\Users\NAME\Desktop 64bit- Home Premium Edition (Version = 6.1.7600) - Type = NTWorkstation Internet Explorer (Version = 8.0.7600.16385) Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy 4,00 Gb Total Physical Memory | 2,00 Gb Available Physical Memory | 55,00% Memory free 8,00 Gb Paging File | 5,00 Gb Available in Paging File | 68,00% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86) Drive C: | 186,52 Gb Total Space | 48,62 Gb Free Space | 26,07% Space Free | Partition Type: NTFS Drive D: | 170,07 Gb Total Space | 131,92 Gb Free Space | 77,57% Space Free | Partition Type: NTFS E: Drive not present or media not loaded F: Drive not present or media not loaded Drive G: | 661,51 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS H: Drive not present or media not loaded I: Drive not present or media not loaded Computer Name: NAMELAPTOP Current User Name: NAME Logged in as Administrator. Current Boot Mode: Normal Scan Mode: Current user Include 64bit Scans Company Name Whitelist: Off Skip Microsoft Files: Off File Age = 30 Days Output = Minimal ========== Extra Registry (SafeList) ========== ========== File Associations ========== 64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>] .cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation) [HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>] .html [@ = FirefoxHTML] -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation) ========== Shell Spawning ========== 64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command] batfile [open] -- "%1" %* File not found cmdfile [open] -- "%1" %* File not found comfile [open] -- "%1" %* File not found exefile [open] -- "%1" %* File not found helpfile [open] -- Reg Error: Key error. htmlfile [edit] -- "C:\Program Files (x86)\Microsoft Office\Office12\msohtmed.exe" %1 (Microsoft Corporation) htmlfile [print] -- "C:\Program Files (x86)\Microsoft Office\Office12\msohtmed.exe" /p %1 (Microsoft Corporation) inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation) InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation) piffile [open] -- "%1" %* File not found regfile [merge] -- Reg Error: Key error. scrfile [config] -- "%1" File not found scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation) scrfile [open] -- "%1" /S File not found txtfile [edit] -- Reg Error: Key error. Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 File not found Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" () Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation) Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Directory [OneNote.Open] -- C:\PROGRA~2\MICROS~2\Office12\ONENOTE.EXE "%L" File not found Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" () Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Folder [explore] -- Reg Error: Value error. Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command] batfile [open] -- "%1" %* cmdfile [open] -- "%1" %* comfile [open] -- "%1" %* cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation) exefile [open] -- "%1" %* helpfile [open] -- Reg Error: Key error. htmlfile [edit] -- "C:\Program Files (x86)\Microsoft Office\Office12\msohtmed.exe" %1 (Microsoft Corporation) htmlfile [print] -- "C:\Program Files (x86)\Microsoft Office\Office12\msohtmed.exe" /p %1 (Microsoft Corporation) inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation) InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation) piffile [open] -- "%1" %* regfile [merge] -- Reg Error: Key error. scrfile [config] -- "%1" scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation) scrfile [open] -- "%1" /S txtfile [edit] -- Reg Error: Key error. Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" () Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation) Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Directory [OneNote.Open] -- C:\PROGRA~2\MICROS~2\Office12\ONENOTE.EXE "%L" File not found Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" () Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Folder [explore] -- Reg Error: Value error. Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) ========== Security Center Settings ========== 64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center] "cval" = 1 64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring] 64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc] "VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data] "AntiVirusOverride" = 0 "AntiSpywareOverride" = 0 "FirewallOverride" = 0 64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile] "DisableNotifications" = 0 "EnableFirewall" = 1 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile] "DisableNotifications" = 0 "EnableFirewall" = 1 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile] "DisableNotifications" = 0 "EnableFirewall" = 1 ========== Authorized Applications List ========== ========== HKEY_LOCAL_MACHINE Uninstall List ========== 64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "{02382870-19C7-3ACD-BBAE-F6E3760947DC}" = Microsoft .NET Framework 4 Extended DEU Language Pack "{066CFFF8-12BF-4390-A673-75F95EFF188E}" = TOSHIBA Value Added Package "{071c9b48-7c32-4621-a0ac-3f809523288f}" = Microsoft Visual C++ 2005 Redistributable (x64) "{0E3DAF3D-FF69-345A-A99E-1FED304CA083}" = Microsoft .NET Framework 4 Client Profile DEU Language Pack "{0FB2E75A-1024-331F-77EF-D45F71505D58}" = ATI Catalyst Install Manager "{23170F69-40C1-2702-0465-000001000000}" = 7-Zip 4.65 (x64 edition) "{2DF4C5DD-7417-301D-935D-939D3B7B5997}" = Microsoft Help Viewer 1.0 Language Pack - DEU "{328CC232-CFDC-468B-A214-2E21300E4CB5}" = Apple Mobile Device Support "{3C983A67-DFB2-3D3D-AD9E-CA1A5A09FD18}" = Microsoft Visual Studio 2010 Express Prerequisites x64 - DEU "{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 "{5DA0E02F-970B-424B-BF41-513A5018E4C0}" = TOSHIBA Disc Creator "{617C36FD-0CBE-4600-84B2-441CEB12FADF}" = TOSHIBA Extended Tiles for Windows Mobility Center "{8220EEFE-38CD-377E-8595-13398D740ACE}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 "{8E34682C-8118-31F1-BC4C-98CD9675E1C2}" = Microsoft .NET Framework 4 Extended "{8F790958-2107-48F2-88E0-B352A0C225AB}" = iTunes "{90120000-002A-0000-1000-0000000FF1CE}" = Microsoft Office Office 64-bit Components 2007 "{90120000-002A-0407-1000-0000000FF1CE}" = Microsoft Office Shared 64-bit MUI (German) 2007 "{9068B2BE-D93A-4C0A-861C-5E35E2C0E09E}" = Intel® Matrix Storage Manager "{94D70749-4281-39AC-AD90-B56A0E0A402E}" = Microsoft Visual C++ 2010 x64 Runtime - 10.0.30319 "{95120000-00B9-0409-1000-0000000FF1CE}" = Microsoft Application Error Reporting "{9DECD0F9-D3E8-48B0-A390-1CF09F54E3A4}" = TOSHIBA PC Health Monitor "{9EE58CAC-21D5-1412-F0F2-CB9CD8834B59}" = ccc-utility64 "{B3FF1CD9-B2F0-4D71-BB55-5F580401C48E}" = TOSHIBA eco Utility "{B49673F8-7AB6-4A14-8213-C8A7BE370010}" = UltraMon "{B65BBB06-1F8E-48F5-8A54-B024A9E15FDF}" = TOSHIBA Recovery Media Creator "{B6E3757B-5E77-3915-866A-CCFC4B8D194C}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 "{B91110FB-33B4-468B-90C2-4D5E8AE3FAE1}" = Bonjour "{BCA9334F-B6C9-4F65-9A73-AC5A329A4D04}" = PlayReady PC Runtime amd64 "{C2DDF845-7107-40E8-8D2A-8719F1799570}" = TOSHIBA ReelTime "{C3EAE456-7E7A-451F-80EF-F34C7A13C558}" = Microsoft SQL Server Compact 3.5 SP2 x64 DEU "{CEBB6BFB-D708-4F99-A633-BC2600E01EF6}" = Bluetooth Stack for Windows by Toshiba "{D4322448-B6AF-4316-B859-D8A0E84DCB38}" = TOSHIBA HDD/SSD Alert "{E65C7D8E-186D-484B-BEA8-DEF0331CE600}" = TRORMCLauncher "{EBFF48F5-3CFA-436F-8FD5-94FB01D3A0A7}" = TOSHIBA SD Memory Utilities "{EE936C7A-EA40-31D5-9B65-8E3E089C3828}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x64 9.0.30729.4148 "{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}" = Microsoft .NET Framework 4 Client Profile "{F67FA545-D8E5-4209-86B1-AEE045D1003F}" = TOSHIBA Face Recognition "{FCADA26A-5672-31DD-BF0E-BA76ECF9B02D}" = Microsoft Help Viewer 1.0 "Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile "Microsoft .NET Framework 4 Client Profile DEU Language Pack" = Microsoft .NET Framework 4 Client Profile DEU Language Pack "Microsoft .NET Framework 4 Extended" = Microsoft .NET Framework 4 Extended "Microsoft .NET Framework 4 Extended DEU Language Pack" = Microsoft .NET Framework 4 Extended DEU Language Pack "Microsoft Help Viewer 1.0" = Microsoft Help Viewer 1.0 "Microsoft Help Viewer 1.0 Language Pack - DEU" = Microsoft Help Viewer 1.0 Language Pack - DEU "Redirection Port Monitor" = RedMon - Redirection Port Monitor "SynTPDeinstKey" = Synaptics Pointing Device Driver [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "{0125D081-30D0-4A97-82A8-C28D444B6256}" = Microsoft SQL Server Compact 3.5 SP2 DEU "{0163E195-D5EF-BF70-CBEE-73AA7CBBBEEE}" = CCC Help Thai "{03883959-80DA-6151-CEAE-46A058CF774F}" = CCC Help Danish "{04858915-9F49-4B2A-AED4-DC49A7DE6A7B}" = Battlefield 2(TM) "{066CFFF8-12BF-4390-A673-75F95EFF188E}" = TOSHIBA Value Added Package "{0823A2E3-69DD-A37A-7CD9-1CBEB037545C}" = Toshiba Photo Service - powered by myphotobook "{096D1CCF-0F1E-08FB-094F-C40A633D5AEB}" = ccc-core-static "{0FB630AB-7BD8-40AE-B223-60397D57C3C9}" = Realtek WLAN Driver "{12688FD7-CB92-4A5B-BEE4-5C8E0574434F}" = Utility Common Driver "{13D0EB07-FCA0-C005-A6C5-B1A4B7E5BB48}" = Catalyst Control Center Core Implementation "{1B87C40B-A60B-4EF3-9A68-706CF4B69978}" = Toshiba Assist "{1D4A3E7D-A580-5BB7-DED3-48508A53D2B2}" = CCC Help Chinese Standard "{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 "{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Windows Live-Uploadtool "{22354A21-BE84-0D40-191D-6E530B715CCF}" = CCC Help Polish "{2290A680-4083-410A-ADCC-7092C67FC052}" = Toshiba Online Product Information "{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT "{24508D50-EB8F-4FE6-B69D-B4935D8745EF}_is1" = Warsow 0.5 "{26A24AE4-039D-4CA4-87B4-2F83216014FF}" = Java(TM) 6 Update 20 "{26D8DF7E-DBF8-43A6-8D42-F37497CE603D}" = Skype(TM) Launcher "{2BA722D1-48D1-406E-9123-8AE5431D63EF}" = Windows Live Fotogalerie "{2F36BA32-7986-9E40-B3F6-908B214EC898}" = CCC Help Japanese "{2F4A39B2-5A2D-3E9F-E8EA-6F891A097ACF}" = CCC Help English "{39D0E034-1042-4905-BECB-5502909FCB7C}" = Microsoft Works "{3B4E636E-9D65-4D67-BA61-189800823F52}" = Windows Live Communications Platform "{3DBE8669-1F7D-E1C9-2BC8-CC4BAE0A5136}" = CCC Help Turkish "{3FF5FF03-DB97-2ACE-BAE7-61D6D4A39F9B}" = Catalyst Control Center Graphics Full Existing "{41E654A9-26D0-4EAC-854B-0FA824FFFABB}" = Windows Live Messenger "{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater "{4CEE0E9F-2116-BE92-CD54-8D1834935B54}" = Catalyst Control Center Localization All "{50D4CB89-AF34-4978-96DC-C3034062E901}" = Battlefield 2: Special Forces "{51B4E156-14A5-4904-9AE4-B1AA2A0E46BE}" = TOSHIBA Supervisor Password "{51C7AD07-C3F6-4635-8E8A-231306D810FE}" = Cisco LEAP Module "{5279374D-87FE-4879-9385-F17278EBB9D3}" = TOSHIBA Hardware Setup "{52B97218-98CB-4B8B-9283-D213C85E1AA4}" = Windows Live Anmelde-Assistent "{5A08C9D1-37AD-4A8D-90D3-33F92C578AA5}" = Microsoft SQL Server System CLR Types "{5C98D841-6392-41F1-A80E-B1A741F32A95}" = DSL-Speedtest "{5DD59391-FED6-576D-B6BD-71111EF96522}" = CCC Help Russian "{5E6F6CF3-BACC-4144-868C-E14622C658F3}" = TOSHIBA Web Camera Application "{5FC68772-6D56-41C6-9DF1-24E868198AE6}" = Windows Live Call "{6168260A-6D56-50BB-193C-BF6F471394AA}" = CCC Help Greek "{616C6F39-4CE1-3434-A665-2F6A04C09A7F}" = Microsoft Visual Studio 2010 ADO.NET Entity Framework Tools "{620BBA5E-F848-4D56-8BDA-584E44584C5E}" = TOSHIBA Flash Cards Support Utility "{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}" = Cisco EAP-FAST Module "{68A35043-C55A-4237-88C9-37EE1C63ED71}" = Microsoft Visual J# 2.0 Redistributable Package "{69FC0FD9-BA3D-45B0-88AF-C39B4121A070}" = MP3Find pro V5.02 "{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin "{6A150790-FC79-D323-92D4-E773E3A03789}" = CCC Help Portuguese "{6C5F3BDC-0A1B-4436-A696-5939629D5C31}" = TOSHIBA DVD PLAYER "{6CB88B54-4C1C-E6AB-49C6-476DE56327BC}" = CCC Help Spanish "{6DE880FE-F0C9-BC57-B7C5-2ABEAE1E501E}" = CCC Help German "{70858C67-8761-4444-895A-0A8B2E9E144E}" = Opera 10.61 "{72263053-50D1-4598-9502-51ED64E54C51}" = Borland Delphi 7 "{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable "{72EFBFE4-C74F-4187-AEFD-73EA3BE968D6}" = ICQ7.2 "{76618402-179D-4699-A66B-D351C59436BC}" = Windows Live Sync "{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 "{773970F1-5EBA-4474-ADEE-1EA3B0A59492}" = TOSHIBA Recovery Media Creator Reminder "{79660B73-3DD0-9C3D-3F29-0E266F3AE5EA}" = CCC Help Norwegian "{7E265513-8CDA-4631-B696-F40D983F3B07}_is1" = CDBurnerXP "{81E5E076-F2C1-AE09-A360-0CAC2967FD5F}" = CCC Help Swedish "{8570BEE8-0CA3-4977-9AB1-80ED93F0513C}" = Assassin's Creed II "{8833FFB6-5B0C-4764-81AA-06DFEED9A476}" = Realtek 8136 8168 8169 Ethernet Driver "{888F1505-C2B3-4FDE-835D-36353EBD4754}" = Ubisoft Game Launcher "{8944ED10-DBF2-4FA9-8B5D-D7E1B046C761}_is1" = ColdCut "{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight "{90120000-0015-0407-0000-0000000FF1CE}" = Microsoft Office Access MUI (German) 2007 "{90120000-0015-0407-0000-0000000FF1CE}_ENTERPRISE_{9BD40163-B95D-4B07-8991-0AB775B6D88B}" = 2007 Microsoft Office Suite Service Pack 2 (SP2) "{90120000-0016-0407-0000-0000000FF1CE}" = Microsoft Office Excel MUI (German) 2007 "{90120000-0016-0407-0000-0000000FF1CE}_ENTERPRISE_{9BD40163-B95D-4B07-8991-0AB775B6D88B}" = 2007 Microsoft Office Suite Service Pack 2 (SP2) "{90120000-0018-0407-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (German) 2007 "{90120000-0018-0407-0000-0000000FF1CE}_ENTERPRISE_{9BD40163-B95D-4B07-8991-0AB775B6D88B}" = 2007 Microsoft Office Suite Service Pack 2 (SP2) "{90120000-0019-0407-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (German) 2007 "{90120000-0019-0407-0000-0000000FF1CE}_ENTERPRISE_{9BD40163-B95D-4B07-8991-0AB775B6D88B}" = 2007 Microsoft Office Suite Service Pack 2 (SP2) "{90120000-001A-0407-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (German) 2007 "{90120000-001A-0407-0000-0000000FF1CE}_ENTERPRISE_{9BD40163-B95D-4B07-8991-0AB775B6D88B}" = 2007 Microsoft Office Suite Service Pack 2 (SP2) "{90120000-001B-0407-0000-0000000FF1CE}" = Microsoft Office Word MUI (German) 2007 "{90120000-001B-0407-0000-0000000FF1CE}_ENTERPRISE_{9BD40163-B95D-4B07-8991-0AB775B6D88B}" = 2007 Microsoft Office Suite Service Pack 2 (SP2) "{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007 "{90120000-001F-0407-0000-0000000FF1CE}_ENTERPRISE_{A0516415-ED61-419A-981D-93596DA74165}" = 2007 Microsoft Office Suite Service Pack 2 (SP2) "{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007 "{90120000-001F-0409-0000-0000000FF1CE}_ENTERPRISE_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045}" = 2007 Microsoft Office Suite Service Pack 2 (SP2) "{90120000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2007 "{90120000-001F-040C-0000-0000000FF1CE}_ENTERPRISE_{F580DDD5-8D37-4998-968E-EBB76BB86787}" = 2007 Microsoft Office Suite Service Pack 2 (SP2) "{90120000-001F-0410-0000-0000000FF1CE}" = Microsoft Office Proof (Italian) 2007 "{90120000-001F-0410-0000-0000000FF1CE}_ENTERPRISE_{322296D4-1EAE-4030-9FBC-D2787EB25FA2}" = 2007 Microsoft Office Suite Service Pack 2 (SP2) "{90120000-002A-0000-1000-0000000FF1CE}_ENTERPRISE_{E64BA721-2310-4B55-BE5A-2925F9706192}" = 2007 Microsoft Office Suite Service Pack 2 (SP2) "{90120000-002A-0407-1000-0000000FF1CE}_ENTERPRISE_{26454C26-D259-4543-AA60-3189E09C5F76}" = 2007 Microsoft Office Suite Service Pack 2 (SP2) "{90120000-002C-0407-0000-0000000FF1CE}" = Microsoft Office Proofing (German) 2007 "{90120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007 "{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}" = 2007 Microsoft Office Suite Service Pack 2 (SP2) "{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{3D019598-7B59-447A-80AE-815B703B84FF}" = Security Update for Microsoft Office system 2007 (972581) "{90120000-0044-0407-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (German) 2007 "{90120000-0044-0407-0000-0000000FF1CE}_ENTERPRISE_{9BD40163-B95D-4B07-8991-0AB775B6D88B}" = 2007 Microsoft Office Suite Service Pack 2 (SP2) "{90120000-006E-0407-0000-0000000FF1CE}" = Microsoft Office Shared MUI (German) 2007 "{90120000-006E-0407-0000-0000000FF1CE}_ENTERPRISE_{26454C26-D259-4543-AA60-3189E09C5F76}" = 2007 Microsoft Office Suite Service Pack 2 (SP2) "{90120000-00A1-0407-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (German) 2007 "{90120000-00A1-0407-0000-0000000FF1CE}_ENTERPRISE_{9BD40163-B95D-4B07-8991-0AB775B6D88B}" = 2007 Microsoft Office Suite Service Pack 2 (SP2) "{90120000-00BA-0407-0000-0000000FF1CE}" = Microsoft Office Groove MUI (German) 2007 "{90120000-00BA-0407-0000-0000000FF1CE}_ENTERPRISE_{9BD40163-B95D-4B07-8991-0AB775B6D88B}" = 2007 Microsoft Office Suite Service Pack 2 (SP2) "{90FF4432-21B7-4AF6-BA6E-FB8C1FED9173}" = Toshiba Manuals "{95120000-00AF-0407-0000-0000000FF1CE}" = Microsoft Office PowerPoint Viewer 2007 (German) "{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting "{96AE7E41-E34E-47D0-AC07-1091A8127911}" = Realtek USB 2.0 Card Reader "{981029E0-7FC9-4CF3-AB39-6F133621921A}" = Skype Toolbars "{986CAA52-3249-B34F-DC64-07347926CF57}" = CCC Help Korean "{9D3D8C60-A55F-4fed-B2B9-173F09590E16}" = REALTEK Wireless LAN Driver "{9E4FF410-471F-49E3-9358-74FF0D5E9901}" = Toshiba TEMPRO "{A106D33E-6B43-42C0-9BFC-D03303261FA7}" = Microsoft SQL Server 2008 R2 Management Objects "{A8CF5C37-8EC5-4C33-BB4A-87F468B77D45}" = Age of Empires III "{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper "{A93944F2-D2D4-4750-BFE7-9A288FEAF2CF}" = Apple Application Support "{AC6569FA-6919-442A-8552-073BE69E247A}" = TOSHIBA Service Station "{AC76BA86-7AD7-1031-7B44-A93000000001}" = Adobe Reader 9.3.4 - Deutsch "{AD58D257-F7A6-4AB5-B5E1-364EAC098B94}" = Embarcadero RAD Studio 2010 "{B194272D-1F92-46DF-99EB-8D5CE91CB4EC}" = Adobe AIR "{B3FF1CD9-B2F0-4D71-BB55-5F580401C48E}" = TOSHIBA eco Utility "{B5B8BA5D-55CA-9351-984B-048FEF97A544}" = Catalyst Control Center Graphics Previews Vista "{B6DECBD2-EC09-17C3-35AE-8C72B08062C9}" = CCC Help Czech "{B7E38540-E355-3503-AFD7-635B2F2F76E1}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4974 "{BF3AB290-563B-2F6F-9AF0-189B5CCF2C01}" = Catalyst Control Center Graphics Light "{C1FCDCA1-2759-4E5E-84EE-3A665BB2F513}" = iPhoneBrowser "{C41300B9-185D-475E-BFEC-39EF732F19B1}" = Apple Software Update "{C43C1415-3DFC-4089-9A32-0BECF28A6046}" = Age of Empires III - The Asian Dynasties "{C4D738F7-996A-4C81-B8FA-C4E26D767E41}" = Windows Live Mail "{C644BA4B-07D6-A67E-9EB4-157F6DEB68BE}" = CCC Help Chinese Traditional "{CD95F661-A5C4-44F5-A6AA-ECDD91C240BD}" = WinZip 14.5 "{CFCB8616-A5D1-4281-80E8-389F685BFAE2}" = Visual Studio 2010 Tools for SQL Server Compact 3.5 SP2 DEU "{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}" = Microsoft .NET Framework 4 Multi-Targeting Pack "{D0831990-FF97-1F08-668D-4743CC32EFBC}" = CCC Help Finnish "{D103C4BA-F905-437A-8049-DB24763BBE36}" = Skype™ 4.2 "{D4322448-B6AF-4316-B859-D8A0E84DCB38}" = TOSHIBA HDD/SSD Alert "{D81641E8-ABF1-3D07-803B-60E8FC619368}" = Microsoft Visual C# 2010 Express - DEU "{D9835CE0-E294-83FE-AF9F-BC113A0D2EA9}" = CCC Help Hungarian "{E0A4805D-280A-4DD7-9E74-3A5F85E302A1}" = Windows Live Writer "{E25FA4E1-678F-414F-9777-1E3FDBBDA4D1}" = Catalyst Control Center InstallProxy "{E2DFE069-083E-4631-9B6C-43C48E991DE5}" = Junk Mail filter update "{E3D63B95-4B21-414A-A2C7-D6D6A6AC6D79}" = Catalyst Control Center - Branding "{E50AE784-FABE-46DA-A1F8-7B6B56DCB22E}" = Microsoft Office Suite Activation Assistant "{E716CF3C-1F40-4373-9271-07DAA12EA0AD}" = Embarcadero Delphi and C++Builder 2010 Database Pack "{E83BA61A-5D77-4DD5-9C92-A3447F11E27D}" = eBay "{E8B28EF5-2A73-03A7-4F02-2DFF1D182940}" = Catalyst Control Center Graphics Full New "{E94F833D-6435-40A2-112C-4BC18100B91D}" = CCC Help Italian "{E966F0CC-76B3-11D3-945B-00C04FB1760A}" = BDE_ENT "{EB900AF8-CC61-4E15-871B-98D1EA3E8025}" = QuickTime "{ED5776D5-59B4-46B7-AF81-5F2D94D7C640}" = Cisco PEAP Module "{EEA02668-D5D9-AEFF-6FFB-1EB5BC765A52}" = CCC Help French "{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU] "{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}" = Microsoft Choice Guard "{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver "{F3529665-D75E-4D6D-98F0-745C78C68E9B}" = TOSHIBA ConfigFree "{F7B0939E-58DF-11DF-B3A6-005056806466}" = Google Earth "{F8FF18EE-264A-43FD-B2F6-5EAD40798C2F}" = Windows Live Essentials "{FCD674E3-F281-46D6-7717-6EAFDD16D8FC}" = CCC Help Dutch "{FD416706-875C-4B0B-A23A-9E740DAE029E}" = Tom Clancy's Rainbow Six Vegas 2 "Adobe AIR" = Adobe AIR "Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX "Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin "Age of Empires 2.0" = Microsoft Age of Empires II "Age of Empires II: The Conquerors Expansion 1.0" = Microsoft Age of Empires II: The Conquerors Expansion "Anotha ID3 Editor" = Anotha ID3 Editor 1.51 "AnyDVD" = AnyDVD "AutoHotkey" = AutoHotkey 1.0.48.05 "avast5" = avast! Free Antivirus "BF2SF64" = BF2SF64 "CCleaner" = CCleaner "DiskAid_is1" = DiskAid 3.24 "Embarcadero Delphi and C++Builder 2010 Database Pack" = Embarcadero Delphi and C++Builder 2010 Database Pack "Embarcadero RAD Studio 2010" = Embarcadero RAD Studio 2010 "ENTERPRISE" = Microsoft Office Enterprise 2007 "eu.myphotobook.001F9DF2D0BAABEB11F42CCEE43224607B61109C.1" = Toshiba Photo Service - powered by myphotobook "FBIde + FreeBASIC_is1" = FBIde 0.4.4 + FreeBASIC 0.15 "FBIde_is1" = FBIde 0.4.6 "ffdshow_is1" = ffdshow [rev 2946] [2009-05-15] "FreeBASIC" = FreeBASIC 0.21.1 "FreePDF_XP" = FreePDF (Remove only) "Google Updater" = Google Updater "GPL Ghostscript 8.71" = GPL Ghostscript 8.71 "InstallShield_{066CFFF8-12BF-4390-A673-75F95EFF188E}" = TOSHIBA Value Added Package "InstallShield_{51B4E156-14A5-4904-9AE4-B1AA2A0E46BE}" = TOSHIBA Supervisorkennwort "InstallShield_{5279374D-87FE-4879-9385-F17278EBB9D3}" = TOSHIBA Hardware Setup "InstallShield_{617C36FD-0CBE-4600-84B2-441CEB12FADF}" = TOSHIBA Extended Tiles for Windows Mobility Center "InstallShield_{620BBA5E-F848-4D56-8BDA-584E44584C5E}" = TOSHIBA Flash Cards Support Utility "InstallShield_{773970F1-5EBA-4474-ADEE-1EA3B0A59492}" = TOSHIBA Recovery Media Creator Reminder "InstallShield_{A8CF5C37-8EC5-4C33-BB4A-87F468B77D45}" = Age of Empires III "InstallShield_{B3FF1CD9-B2F0-4D71-BB55-5F580401C48E}" = TOSHIBA eco Utility "InstallShield_{C2DDF845-7107-40E8-8D2A-8719F1799570}" = TOSHIBA ReelTime "InstallShield_{C43C1415-3DFC-4089-9A32-0BECF28A6046}" = Age of Empires III - The Asian Dynasties "InstallShield_{D4322448-B6AF-4316-B859-D8A0E84DCB38}" = TOSHIBA HDD/SSD Alert "InstallShield_{E65C7D8E-186D-484B-BEA8-DEF0331CE600}" = TRORMCLauncher "InstallShield_{F67FA545-D8E5-4209-86B1-AEE045D1003F}" = TOSHIBA Face Recognition "InterBase" = InterBase 6.5 "JDownloader" = JDownloader "Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware "Microsoft Visual C# 2010 Express - DEU" = Microsoft Visual C# 2010 Express - DEU "Microsoft Visual J# 2.0 Redistributable Package" = Microsoft Visual J# 2.0 Redistributable Package "Mozilla Firefox (3.6.8)" = Mozilla Firefox (3.6.8) "Mp3tag" = Mp3tag v2.46a "MusicBrainz Tagger 0.10.5" = MusicBrainz Tagger 0.10.5 "PhonerLite_is1" = PhonerLite 1.76 "PunkBusterSvc" = PunkBuster Services "Rave Reports 7.7.0 BE_is1" = Rave Reports 7.7.0 BE "Secunia CSI" = Secunia CSI "Secunia PSI" = Secunia PSI "StarCraft II" = StarCraft II "TeamViewer 5" = TeamViewer 5 "Tobit Radio.fx Server" = Radio.fx "Totalcmd" = Total Commander (Remove or Repair) "Tunatic" = Tunatic "vbcpp40" = VisiBroker for Cpp 4.5 "VLC media player" = VLC media player 1.1.2 "WildTangent toshiba Master Uninstall" = WildTangent-Spiele "WinLiveSuite_Wave3" = Windows Live Essentials "World of Warcraft" = World of Warcraft "ZehbeSoft-Wecker" = ZehbeSoft-Wecker ========== HKEY_CURRENT_USER Uninstall List ========== [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "Flash Video Downloader. Youtube Downloader" = Flash Video Downloader. Youtube Downloader ========== Last 10 Event Log Errors ========== [ Application Events ] Error - 18.08.2010 13:18:02 | Computer Name = NAMELaptop | Source = Microsoft-Windows-CAPI2 | ID = 4107 Description = Fehler beim Extrahieren der Drittanbieterstammliste aus der automatischen Aktualisierungs-CAB-Datei bei <hxxp://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab>. Fehler: Ein erforderliches Zertifikat befindet sich nicht im Gültigkeitszeitraum gemessen an der aktuellen Systemzeit oder dem Zeitstempel in der signierten Datei. . Error - 18.08.2010 13:18:02 | Computer Name = NAMELaptop | Source = Microsoft-Windows-CAPI2 | ID = 4107 Description = Fehler beim Extrahieren der Drittanbieterstammliste aus der automatischen Aktualisierungs-CAB-Datei bei <hxxp://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab>. Fehler: Ein erforderliches Zertifikat befindet sich nicht im Gültigkeitszeitraum gemessen an der aktuellen Systemzeit oder dem Zeitstempel in der signierten Datei. . Error - 18.08.2010 13:18:07 | Computer Name = NAMELaptop | Source = Microsoft-Windows-CAPI2 | ID = 4107 Description = Fehler beim Extrahieren der Drittanbieterstammliste aus der automatischen Aktualisierungs-CAB-Datei bei <hxxp://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab>. Fehler: Ein erforderliches Zertifikat befindet sich nicht im Gültigkeitszeitraum gemessen an der aktuellen Systemzeit oder dem Zeitstempel in der signierten Datei. . Error - 18.08.2010 13:18:11 | Computer Name = NAMELaptop | Source = Microsoft-Windows-CAPI2 | ID = 4107 Description = Fehler beim Extrahieren der Drittanbieterstammliste aus der automatischen Aktualisierungs-CAB-Datei bei <hxxp://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab>. Fehler: Ein erforderliches Zertifikat befindet sich nicht im Gültigkeitszeitraum gemessen an der aktuellen Systemzeit oder dem Zeitstempel in der signierten Datei. . Error - 18.08.2010 13:18:15 | Computer Name = NAMELaptop | Source = Microsoft-Windows-CAPI2 | ID = 4107 Description = Fehler beim Extrahieren der Drittanbieterstammliste aus der automatischen Aktualisierungs-CAB-Datei bei <hxxp://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab>. Fehler: Ein erforderliches Zertifikat befindet sich nicht im Gültigkeitszeitraum gemessen an der aktuellen Systemzeit oder dem Zeitstempel in der signierten Datei. . Error - 18.08.2010 13:18:16 | Computer Name = NAMELaptop | Source = Microsoft-Windows-CAPI2 | ID = 4107 Description = Fehler beim Extrahieren der Drittanbieterstammliste aus der automatischen Aktualisierungs-CAB-Datei bei <hxxp://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab>. Fehler: Ein erforderliches Zertifikat befindet sich nicht im Gültigkeitszeitraum gemessen an der aktuellen Systemzeit oder dem Zeitstempel in der signierten Datei. . Error - 18.08.2010 13:18:16 | Computer Name = NAMELaptop | Source = Microsoft-Windows-CAPI2 | ID = 4107 Description = Fehler beim Extrahieren der Drittanbieterstammliste aus der automatischen Aktualisierungs-CAB-Datei bei <hxxp://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab>. Fehler: Ein erforderliches Zertifikat befindet sich nicht im Gültigkeitszeitraum gemessen an der aktuellen Systemzeit oder dem Zeitstempel in der signierten Datei. . Error - 18.08.2010 13:18:16 | Computer Name = NAMELaptop | Source = Microsoft-Windows-CAPI2 | ID = 4107 Description = Fehler beim Extrahieren der Drittanbieterstammliste aus der automatischen Aktualisierungs-CAB-Datei bei <hxxp://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab>. Fehler: Ein erforderliches Zertifikat befindet sich nicht im Gültigkeitszeitraum gemessen an der aktuellen Systemzeit oder dem Zeitstempel in der signierten Datei. . Error - 18.08.2010 13:18:22 | Computer Name = NAMELaptop | Source = Microsoft-Windows-CAPI2 | ID = 4107 Description = Fehler beim Extrahieren der Drittanbieterstammliste aus der automatischen Aktualisierungs-CAB-Datei bei <hxxp://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab>. Fehler: Ein erforderliches Zertifikat befindet sich nicht im Gültigkeitszeitraum gemessen an der aktuellen Systemzeit oder dem Zeitstempel in der signierten Datei. . Error - 18.08.2010 13:18:27 | Computer Name = NAMELaptop | Source = Microsoft-Windows-CAPI2 | ID = 4107 Description = Fehler beim Extrahieren der Drittanbieterstammliste aus der automatischen Aktualisierungs-CAB-Datei bei <hxxp://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab>. Fehler: Ein erforderliches Zertifikat befindet sich nicht im Gültigkeitszeitraum gemessen an der aktuellen Systemzeit oder dem Zeitstempel in der signierten Datei. . [ System Events ] Error - 09.08.2010 08:41:36 | Computer Name = NAMELaptop | Source = Service Control Manager | ID = 7011 Description = Das Zeitlimit (30000 ms) wurde beim Warten auf eine Transaktionsrückmeldung von Dienst sppsvc erreicht. Error - 09.08.2010 08:42:06 | Computer Name = NAMELaptop | Source = Service Control Manager | ID = 7011 Description = Das Zeitlimit (30000 ms) wurde beim Warten auf eine Transaktionsrückmeldung von Dienst sppsvc erreicht. Error - 09.08.2010 08:42:37 | Computer Name = NAMELaptop | Source = Service Control Manager | ID = 7011 Description = Das Zeitlimit (30000 ms) wurde beim Warten auf eine Transaktionsrückmeldung von Dienst defragsvc erreicht. Error - 09.08.2010 08:43:09 | Computer Name = NAMELaptop | Source = Service Control Manager | ID = 7011 Description = Das Zeitlimit (30000 ms) wurde beim Warten auf eine Transaktionsrückmeldung von Dienst sppsvc erreicht. Error - 09.08.2010 08:44:05 | Computer Name = NAMELaptop | Source = Service Control Manager | ID = 7011 Description = Das Zeitlimit (30000 ms) wurde beim Warten auf eine Transaktionsrückmeldung von Dienst sppsvc erreicht. Error - 09.08.2010 08:44:36 | Computer Name = NAMELaptop | Source = Service Control Manager | ID = 7011 Description = Das Zeitlimit (30000 ms) wurde beim Warten auf eine Transaktionsrückmeldung von Dienst defragsvc erreicht. Error - 09.08.2010 08:45:06 | Computer Name = NAMELaptop | Source = Service Control Manager | ID = 7011 Description = Das Zeitlimit (30000 ms) wurde beim Warten auf eine Transaktionsrückmeldung von Dienst sppsvc erreicht. Error - 09.08.2010 08:46:36 | Computer Name = NAMELaptop | Source = Service Control Manager | ID = 7011 Description = Das Zeitlimit (30000 ms) wurde beim Warten auf eine Transaktionsrückmeldung von Dienst defragsvc erreicht. Error - 09.08.2010 09:01:41 | Computer Name = NAMELaptop | Source = atikmdag | ID = 52236 Description = CPLIB :: General - Invalid Parameter Error - 09.08.2010 09:01:41 | Computer Name = NAMELaptop | Source = atikmdag | ID = 43029 Description = Display is not active < End of report > |
23.08.2010, 13:25 | #2 |
| UAC meldet nix Blödes Windows 7... Unten versteckt habe ich eben die Meldung gesehen, dass der PC neugestartet werden muss, um die Benutzerkontensteuerung zu aktivieren. Gesagt getan und es geht wieder alles -.-
__________________Danke^^ Geändert von Testor (23.08.2010 um 13:36 Uhr) |
Themen zu UAC meldet nix |
.dll, 64-bit, 7-zip, adobe, alert, alternate, antivirus, autorun, avast, avast!, bho, bonjour, c:\windows\system32\rundll32.exe, cdburnerxp, components, error, explorer, firefox, firefox.exe, format, home, home premium, iastor.sys, install.exe, jdownloader, location, logfile, microsoft office word, mozilla, object, oldtimer, opera, opera.exe, otl logfile, otl-log, otl.exe, performance, plug-in, programdata, realtek, registry, saver, searchplugins, secunia psi, security update, senden, server, shell32.dll, shortcut, software, sptd.sys, staropen, start menu, studio, syswow64, usb 2.0, usbaapl64, virus, visual studio, webcheck, windows, wireless lan |