Byavubohido rundll32.exe<-- internet abbruch, und keine updates mehr, fenster fehler

Black-Night · 08.10.2010, 12:51

und hier das GMER log

GMER Logfile:

Code:

ATTFilter

GMER 1.0.15.14966 - hxxp://www.gmer.net
Rootkit scan 2010-10-08 13:45:44
Windows 6.0.6001 Service Pack 1


---- System - GMER 1.0.15 ----

SSDT            AAD22C3C                                                                                               ZwCreateThread
SSDT            AAD22C28                                                                                               ZwOpenProcess
SSDT            AAD22C2D                                                                                               ZwOpenThread
SSDT            AAD22C37                                                                                               ZwTerminateProcess

---- Kernel code sections - GMER 1.0.15 ----

.text           ntkrnlpa.exe!KeSetTimerEx + 454                                                                        82AB9B18 4 Bytes  [3C, 2C, D2, AA]
.text           ntkrnlpa.exe!KeSetTimerEx + 624                                                                        82AB9CE8 4 Bytes  [28, 2C, D2, AA] {SUB [EDX+EDX*8], CH; STOSB }
.text           ntkrnlpa.exe!KeSetTimerEx + 640                                                                        82AB9D04 4 Bytes  [2D, 2C, D2, AA]
.text           ntkrnlpa.exe!KeSetTimerEx + 854                                                                        82AB9F18 4 Bytes  [37, 2C, D2, AA] {AAA ; SUB AL, 0xd2; STOSB }

---- User IAT/EAT - GMER 1.0.15 ----

IAT             C:\Windows\Explorer.EXE[1716] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdiplusShutdown]                  [74C488B4] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18175_none_9e7bbe54c9c04bca\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT             C:\Windows\Explorer.EXE[1716] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipCloneImage]                   [74C898A5] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18175_none_9e7bbe54c9c04bca\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT             C:\Windows\Explorer.EXE[1716] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipDrawImageRectI]               [74C4B9D4] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18175_none_9e7bbe54c9c04bca\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT             C:\Windows\Explorer.EXE[1716] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipSetInterpolationMode]         [74C3FB47] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18175_none_9e7bbe54c9c04bca\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT             C:\Windows\Explorer.EXE[1716] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdiplusStartup]                   [74C47A79] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18175_none_9e7bbe54c9c04bca\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT             C:\Windows\Explorer.EXE[1716] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipCreateFromHDC]                [74C3EA65] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18175_none_9e7bbe54c9c04bca\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT             C:\Windows\Explorer.EXE[1716] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipCreateBitmapFromStreamICM]    [74C7B17D] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18175_none_9e7bbe54c9c04bca\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT             C:\Windows\Explorer.EXE[1716] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipCreateBitmapFromStream]       [74C4BC9A] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18175_none_9e7bbe54c9c04bca\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT             C:\Windows\Explorer.EXE[1716] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipGetImageHeight]               [74C4074E] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18175_none_9e7bbe54c9c04bca\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT             C:\Windows\Explorer.EXE[1716] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipGetImageWidth]                [74C406B5] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18175_none_9e7bbe54c9c04bca\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT             C:\Windows\Explorer.EXE[1716] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipDisposeImage]                 [74C371B3] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18175_none_9e7bbe54c9c04bca\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT             C:\Windows\Explorer.EXE[1716] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipLoadImageFromFileICM]         [74CCD848] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18175_none_9e7bbe54c9c04bca\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT             C:\Windows\Explorer.EXE[1716] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipLoadImageFromFile]            [74C67379] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18175_none_9e7bbe54c9c04bca\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT             C:\Windows\Explorer.EXE[1716] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipDeleteGraphics]               [74C3E109] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18175_none_9e7bbe54c9c04bca\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT             C:\Windows\Explorer.EXE[1716] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipFree]                         [74C3697E] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18175_none_9e7bbe54c9c04bca\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT             C:\Windows\Explorer.EXE[1716] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipAlloc]                        [74C369A9] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18175_none_9e7bbe54c9c04bca\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT             C:\Windows\Explorer.EXE[1716] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipSetCompositingMode]           [74C42465] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18175_none_9e7bbe54c9c04bca\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)

---- Devices - GMER 1.0.15 ----

AttachedDevice  \Driver\kbdclass \Device\KeyboardClass0                                                                Wdf01000.sys (WDF Dynamic/Microsoft Corporation)
AttachedDevice  \Driver\kbdclass \Device\KeyboardClass1                                                                Wdf01000.sys (WDF Dynamic/Microsoft Corporation)
AttachedDevice  \Driver\tdx \Device\Tcp                                                                                Lbd.sys (Boot Driver/Lavasoft AB)

Device          \Driver\atapi \Device\Ide\IdeDeviceP0T0L0-0                                                            84D3D718
Device          \Driver\atapi \Device\Ide\IdePort0                                                                     84D3D718
Device          \Driver\atapi \Device\Ide\IdePort1                                                                     84D3D718
Device          \Driver\atapi \Device\Ide\IdeDeviceP1T0L0-2                                                            84D3D718
Device          \Driver\VClone \Device\Scsi\VClone1                                                                    8606C2C0
Device          \Driver\VClone \Device\Scsi\VClone1Port3Path0Target0Lun0                                               8606C2C0

AttachedDevice  \FileSystem\fastfat \Fat                                                                               fltmgr.sys (Microsoft Dateisystem-Filter-Manager/Microsoft Corporation)

---- Registry - GMER 1.0.15 ----

Reg             HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4                       
Reg             HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4@p0                    C:\Program Files\DAEMON Tools Lite\
Reg             HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4@h0                    0
Reg             HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4@khjeh                 0x87 0x8A 0xFE 0x35 ...
Reg             HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001              
Reg             HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001@a0           0x20 0x01 0x00 0x00 ...
Reg             HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001@khjeh        0x2F 0x12 0x68 0x72 ...
Reg             HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40        
Reg             HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40@khjeh  0xE0 0xDA 0xE2 0x6D ...
Reg             HKLM\SYSTEM\ControlSet004\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4                           
Reg             HKLM\SYSTEM\ControlSet004\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4@p0                        C:\Program Files\DAEMON Tools Lite\
Reg             HKLM\SYSTEM\ControlSet004\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4@h0                        0
Reg             HKLM\SYSTEM\ControlSet004\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4@khjeh                     0x87 0x8A 0xFE 0x35 ...
Reg             HKLM\SYSTEM\ControlSet004\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001                  
Reg             HKLM\SYSTEM\ControlSet004\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001@a0               0x20 0x01 0x00 0x00 ...
Reg             HKLM\SYSTEM\ControlSet004\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001@khjeh            0x2F 0x12 0x68 0x72 ...
Reg             HKLM\SYSTEM\ControlSet004\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40            
Reg             HKLM\SYSTEM\ControlSet004\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40@khjeh      0xE0 0xDA 0xE2 0x6D ...
Reg             HKLM\SYSTEM\ControlSet009\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4                           
Reg             HKLM\SYSTEM\ControlSet009\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4@p0                        C:\Program Files\DAEMON Tools Lite\
Reg             HKLM\SYSTEM\ControlSet009\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4@h0                        0
Reg             HKLM\SYSTEM\ControlSet009\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4@khjeh                     0x5C 0x1D 0xF4 0x8A ...
Reg             HKLM\SYSTEM\ControlSet009\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001                  
Reg             HKLM\SYSTEM\ControlSet009\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001@a0               0x20 0x01 0x00 0x00 ...
Reg             HKLM\SYSTEM\ControlSet009\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001@khjeh            0x2F 0x12 0x68 0x72 ...
Reg             HKLM\SYSTEM\ControlSet009\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40            
Reg             HKLM\SYSTEM\ControlSet009\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40@khjeh      0x91 0x05 0xED 0xE0 ...
Reg             HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\System                                                  
Reg             HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\System@OODEFRAG08.00.00.01WORKSTATION                   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
Reg             HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\System@OODEFRAG11.00.00.01WORKSTATION                   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

---- Files - GMER 1.0.15 ----

File            C:\Windows\System32\LogFiles\Scm\SCM.EVM                                                               (size mismatch) 393216/360448 bytes
File            C:\Windows\System32\WDI\LogFiles\WdiContextLog.etl.001                                                 (size mismatch) 311296/278528 bytes

---- EOF - GMER 1.0.15 ----

--- --- ---

markusg · 08.10.2010, 13:48

update mal malwarebytes, und starte dann nen komplett scan
es werden wohl 2 updates nötig sein, 1x versionsupdate und dann noch mal für die datenbank

Black-Night · 08.10.2010, 13:58

ok das werd ich dann machen aber sorry ich werd vermutlich erst ab sonntag abend dafür zeit haben.
also meinen tread nicht gleich schließen wenn ich jetzt am we nicht antworte

ich wünsch dir auf jeden fall einen schönes wochenende und vielen dank bis hierhier für deine mühe............

bis sonntag bzw montag

Black Night

markusg · 08.10.2010, 13:59

keinen stress :-)
und n schönes we

Black-Night · 11.10.2010, 15:45

hallöchen da bin ich wieder

ich hoffe dein we war schön und du hattest nicht so viel arbeit hier im board....

hier die log von mbam

Malwarebytes' Anti-Malware 1.46
www.malwarebytes.org

Datenbank Version: 4052

Windows 6.0.6001 Service Pack 1
Internet Explorer 8.0.6001.18943

11.10.2010 16:44:01
mbam-log-2010-10-11 (16-44-01).txt

Art des Suchlaufs: Vollständiger Suchlauf (C:\|)
Durchsuchte Objekte: 300771
Laufzeit: 1 Stunde(n), 26 Minute(n), 32 Sekunde(n)

Infizierte Speicherprozesse: 0
Infizierte Speichermodule: 0
Infizierte Registrierungsschlüssel: 0
Infizierte Registrierungswerte: 1
Infizierte Dateiobjekte der Registrierung: 0
Infizierte Verzeichnisse: 0
Infizierte Dateien: 0

Infizierte Speicherprozesse:
(Keine bösartigen Objekte gefunden)

Infizierte Speichermodule:
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungsschlüssel:
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungswerte:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\byavubohido (Trojan.Agent.U) -> Quarantined and deleted successfully.

Infizierte Dateiobjekte der Registrierung:
(Keine bösartigen Objekte gefunden)

Infizierte Verzeichnisse:
(Keine bösartigen Objekte gefunden)

Infizierte Dateien:
(Keine bösartigen Objekte gefunden)

markusg · 11.10.2010, 15:47

kannst du Malwarebytes updaten und erneut scannen?
doch war schon was zu tun hier :d

Black-Night · 11.10.2010, 17:07

ok sorry war dann doch noch nicht die neue version......

ich hoffe du hattest dann wenigens keinen ärger ;

bis gleich dann

markusg · 11.10.2010, 17:12

och nö, ärgern lass ich mich nicht, die user wollen ja was von uns und nicht umgekehrt

Black-Night · 11.10.2010, 18:57

das ist vermutlich die beste einstellung

dir das neue

mbam log

Malwarebytes' Anti-Malware 1.46
www.malwarebytes.org

Datenbank Version: 4794

Windows 6.0.6001 Service Pack 1
Internet Explorer 8.0.6001.18943

11.10.2010 19:51:46
mbam-log-2010-10-11 (19-51-46).txt

Art des Suchlaufs: Vollständiger Suchlauf (C:\|)
Durchsuchte Objekte: 319163
Laufzeit: 1 Stunde(n), 44 Minute(n), 1 Sekunde(n)

Infizierte Speicherprozesse: 0
Infizierte Speichermodule: 0
Infizierte Registrierungsschlüssel: 0
Infizierte Registrierungswerte: 0
Infizierte Dateiobjekte der Registrierung: 0
Infizierte Verzeichnisse: 0
Infizierte Dateien: 1

Infizierte Speicherprozesse:
(Keine bösartigen Objekte gefunden)

Infizierte Speichermodule:
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungsschlüssel:
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungswerte:
(Keine bösartigen Objekte gefunden)

Infizierte Dateiobjekte der Registrierung:
(Keine bösartigen Objekte gefunden)

Infizierte Verzeichnisse:
(Keine bösartigen Objekte gefunden)

Infizierte Dateien:
C:\Qoobox\Quarantine\C\cleanup.exe.vir (Trojan.Zapchast) -> Quarantined and deleted successfully.

markusg · 11.10.2010, 19:00

hohl dir das sp2
Downloaddetails: Windows Server 2008 Service Pack 2 und Windows Vista Service Pack 2 - Five Language Standalone (KB948465)
danach, also nach der instalation, besuche die windows update seite, spiele alle wichtigen updates auf.

Black-Night · 11.10.2010, 21:45

hab ich versucht ich kann das update nicht installieren die automatischen gehen auch nicht und ich bekomm auch wieder nach dem neustart die fehlermeldung

markusg · 12.10.2010, 10:22

poste neue otl logs und poste die fehlermeldung im klartext nicht als image

Black-Night · 12.10.2010, 12:04

hallöchen

hier die fehlermeldung

RunDLL
Fehler beim Laden von
C:\Users\Stuffi\AppData\uvoxesakorilowad.dll
Das angegebene Modul wurde nicht gefunden.

und hier das logOTL EXTRAS Logfile:

Code:

ATTFilter

OTL Extras logfile created on: 12.10.2010 11:46:35 - Run 2
OTL by OldTimer - Version 3.2.1.2     Folder = C:\Users\Stuffi\Downloads
Windows Vista Home Premium Edition Service Pack 1 (Version = 6.0.6001) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18943)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
 
1.015,00 Mb Total Physical Memory | 388,00 Mb Available Physical Memory | 38,00% Memory free
2,00 Gb Paging File | 1,00 Gb Available in Paging File | 58,00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 55,66 Gb Total Space | 12,62 Gb Free Space | 22,67% Space Free | Partition Type: NTFS
D: Drive not present or media not loaded
Drive E: | 54,66 Gb Total Space | 18,99 Gb Free Space | 34,74% Space Free | Partition Type: NTFS
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded
 
Computer Name: STUFFIS-LAPPI
Current User Name: Stuffi
Logged in as Administrator.
 
Current Boot Mode: Normal
Scan Mode: All users
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Minimal
 
========== Extra Registry (SafeList) ==========
 
 
========== File Associations ==========
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)
 
[HKEY_USERS\.DEFAULT\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
 
[HKEY_USERS\S-1-5-18\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
 
[HKEY_USERS\S-1-5-21-2422499485-3765178413-3129067992-1000\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
 
========== Shell Spawning ==========
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
htmlfile [edit] -- "C:\Program Files\Microsoft Office\Office10\msohtmed.exe" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Mozilla Firefox\firefox.exe" -requestPending -osint -url "%1" (Mozilla Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [Browse with &IrfanView] -- "C:\Program Files\IrfanView\i_view32.exe" "%1 /thumbs" (Irfan Skiljan)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Directory [Winamp.Bookmark] -- "C:\Program Files\Winamp\winamp.exe" /BOOKMARK "%1" (Nullsoft, Inc.)
Directory [Winamp.Enqueue] -- "C:\Program Files\Winamp\winamp.exe" /ADD "%1" (Nullsoft, Inc.)
Directory [Winamp.Play] -- "C:\Program Files\Winamp\winamp.exe" "%1" (Nullsoft, Inc.)
Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
 
========== Security Center Settings ==========
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
"FirewallDisableNotify" = 0
"AntiVirusDisableNotify" = 0
"UpdatesDisableNotify" = 0
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
"DisableMonitoring" = 1
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]
"DisableMonitoring" = 1
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]
"DisableMonitoring" = 1
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"VistaSp2" = Reg Error: Unknown registry data type -- File not found
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\S-1-5-21-2422499485-3765178413-3129067992-1000]
"EnableNotificationsRef" = 2
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
 
========== Authorized Applications List ==========
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"e:\BitTorrent\bittorrent.exe" = e:\BitTorrent\bittorrent.exe:*:Enabled:BitTorrent -- File not found
 
 
========== Vista Active Open Ports Exception List ==========
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{0E9D18E7-B925-4C6F-91C3-7C0B64EFFF6D}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe | 
"{1E2A3132-8B3D-45AF-A01F-A30B7C8ED3AB}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe | 
"{685DEF0F-24F3-41B4-9D57-CFB107819AF3}" = lport=10243 | protocol=6 | dir=in | app=system | 
"{6D3FADFA-864C-444C-9FD5-17771240DB58}" = lport=2869 | protocol=6 | dir=in | app=system | 
"{82EDADAE-7E38-484C-BC51-B4E2D00F184C}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe | 
"{90B2E876-A7E7-4B4A-B597-0BAB129FADEB}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe | 
"{9ADD1ED2-5CAC-4808-A808-93444ED8C884}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe | 
"{BF8C857A-FA7D-444D-B59C-76961F11C39D}" = lport=2869 | protocol=6 | dir=in | app=system | 
"{CD6FC623-6ED8-4669-B633-F4A49881B554}" = rport=10243 | protocol=6 | dir=out | app=system | 
"{D5358CD4-D99D-4E91-9255-A16F6074CACD}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=svchost.exe | 
"{DFAF975A-03B4-4BAF-9710-826CEF640A07}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe | 
"{EE7BAD41-17CC-4A48-8388-BB93C546943A}" = lport=2869 | protocol=6 | dir=in | app=system | 
"{EEB71833-0DA1-40D6-ADF8-2BB21876D4F9}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=svchost.exe | 
 
========== Vista Active Application Exception List ==========
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{0626D6AD-F5E7-4C2B-BD4B-3CE67C7427E1}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe | 
"{14DB5A6F-BA11-44D5-AF7F-A936B2465BA2}" = protocol=17 | dir=in | app=c:\program files\utorrent\utorrent.exe | 
"{15D40B67-4072-4424-B82F-031C46BD3194}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe | 
"{2E3D7702-379F-40A5-83D6-9DFD5270FE06}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe | 
"{2E709F5E-3582-4330-B8F5-AE8C35EB8A88}" = protocol=17 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe | 
"{3AA095F3-C786-461C-818F-73F9EB00A5FA}" = dir=in | app=c:\program files\windows live\messenger\wlcsdk.exe | 
"{3B4F1764-D80E-41A3-A5CB-52D17FC17F8C}" = dir=in | app=c:\program files\windows live\messenger\livecall.exe | 
"{472A8205-FB37-41BF-AB1D-7299C68E4160}" = protocol=6 | dir=in | app=c:\program files\aol 9.0\waol.exe | 
"{473F1322-6D76-43BA-A74C-898CFC3A8C40}" = protocol=17 | dir=in | app=c:\program files\common files\aol\acs\aoldial.exe | 
"{581F2433-1B93-419F-A00A-E7CB2EBA0358}" = protocol=17 | dir=in | app=c:\program files\common files\aol\acs\aolacsd.exe | 
"{5A23E06D-15DC-4B0D-90FE-9B3BB5113010}" = protocol=17 | dir=in | app=c:\windows\system32\lxbccoms.exe | 
"{65F97C73-06E5-4E78-A5D5-2D277328B0D8}" = protocol=17 | dir=in | app=c:\program files\aol 9.0\waol.exe | 
"{69BC56DC-E2B8-4E47-99F6-E9DEBDDF1805}" = protocol=17 | dir=in | app=c:\program files\yahoo!\messenger\yahoomessenger.exe | 
"{6E9382BD-0565-48E7-A0AD-960ABDB3556B}" = protocol=6 | dir=in | app=c:\windows\system32\lxbccoms.exe | 
"{719419BD-A57B-4DEF-B140-58DDBE98C799}" = protocol=6 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe | 
"{76F4639E-61ED-4D67-8DA1-102BB00773CF}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe | 
"{7AF1A6D5-9992-45CD-98A5-B01ACBBC9ECC}" = protocol=17 | dir=in | app=c:\program files\opera\opera.exe | 
"{7C61713A-BB76-4518-A8DE-6746CCBE1F83}" = protocol=6 | dir=in | app=c:\windows\system32\spool\drivers\w32x86\3\lxbcpswx.exe | 
"{85244A3F-97B9-4A2D-8F01-41AE1230EB6F}" = dir=in | app=c:\program files\windows live\sync\windowslivesync.exe | 
"{894D1B9C-AD33-48F0-896C-15416E31ED8C}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe | 
"{8BDDBC61-9900-428A-B1A3-0338C304854C}" = protocol=6 | dir=in | app=c:\program files\utorrent\utorrent.exe | 
"{8F63B0A1-5975-4E75-9E17-B8FF469D3CFC}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe | 
"{907F3DB5-839D-4E3C-A54F-7106BBB50BAB}" = dir=in | app=c:\program files\windows live\messenger\msnmsgr.exe | 
"{9216C105-D834-4C6D-B493-D25341F40617}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe | 
"{92BBD3E0-A2BE-4D54-9A43-F342BDA8C1A1}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe | 
"{92D44584-9735-44B6-82C0-C7C3428698DA}" = protocol=6 | dir=in | app=c:\program files\yahoo!\messenger\yserver.exe | 
"{A027DFAB-CF48-41B4-B178-D4CC1110AF98}" = protocol=6 | dir=in | app=c:\program files\common files\aol\acs\aolacsd.exe | 
"{A1F65FCB-9772-4EC4-80C8-BE20D3CB5D95}" = protocol=6 | dir=in | app=c:\program files\aol 9.0\waol.exe | 
"{A31B925C-851D-448F-AB06-432019BF41C2}" = protocol=6 | dir=in | app=c:\program files\opera\opera.exe | 
"{ABC3200E-8C86-4978-BFCA-F5BE09D7B1F9}" = dir=in | app=c:\program files\windows live\messenger\livecall.exe | 
"{C5C3A2F3-BB30-45C3-A714-5E8A3B11E718}" = protocol=17 | dir=in | app=c:\program files\aol 9.0\waol.exe | 
"{C6B4E386-2DC7-493A-8807-72D12040E5DA}" = dir=in | app=c:\program files\skype\phone\skype.exe | 
"{C8FC58C3-FA0E-4BEA-9105-54D0D8F1D524}" = dir=in | app=c:\program files\windows live\messenger\msnmsgr.exe | 
"{D6D8232A-6F71-4948-8E29-FEC2843A6295}" = protocol=17 | dir=in | app=c:\program files\common files\aol\acs\aolacsd.exe | 
"{DAEE7719-6152-400D-8290-54CC053E4638}" = protocol=6 | dir=in | app=c:\program files\common files\aol\acs\aoldial.exe | 
"{DB010718-98A4-4E29-AA68-5D5920869B2E}" = protocol=6 | dir=in | app=c:\program files\common files\aol\acs\aoldial.exe | 
"{DD357CCD-95AF-4960-9A47-7E070FF10778}" = protocol=6 | dir=in | app=c:\program files\common files\aol\acs\aolacsd.exe | 
"{DD7F2B09-D0C7-4D30-B137-4DE7376935AF}" = protocol=17 | dir=in | app=c:\windows\system32\spool\drivers\w32x86\3\lxbcpswx.exe | 
"{E0BD55FF-2919-4F25-B688-46D86EA67BD2}" = dir=in | app=c:\program files\skype\phone\skype.exe | 
"{E3B17765-B48A-4780-A5FD-1F7FEE1756E7}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe | 
"{F2B51D56-7A7E-491B-8D10-5E172C8C4957}" = protocol=17 | dir=in | app=c:\program files\yahoo!\messenger\yserver.exe | 
"{F4734E4E-AB78-469C-BDA2-437626AA0A51}" = protocol=6 | dir=in | app=c:\program files\yahoo!\messenger\yahoomessenger.exe | 
"{F5658BBD-C245-499A-AA48-C85233264DED}" = protocol=17 | dir=in | app=c:\program files\common files\aol\acs\aoldial.exe | 
"{F8BDD760-C0C4-436A-9FD3-F075B2E4F3BF}" = protocol=6 | dir=out | app=system | 
"{FEF824D4-84D7-4B27-A53E-04F2FD39DE91}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe | 
"{FF6FE1CA-D2DD-4D19-B3EF-CEB541775922}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe | 
"TCP Query User{27D3331A-6369-431F-8931-CB3EEB4EF4EB}C:\program files\participatory culture foundation\miro\miro_downloader.exe" = protocol=6 | dir=in | app=c:\program files\participatory culture foundation\miro\miro_downloader.exe | 
"TCP Query User{2CCAA17B-1974-46D0-A4EA-00930ED4751C}C:\programdata\kaspersky lab setup files\kaspersky internet security 2009\german\setup.exe" = protocol=6 | dir=in | app=c:\programdata\kaspersky lab setup files\kaspersky internet security 2009\german\setup.exe | 
"TCP Query User{5587CE61-AB78-494D-A718-94DF7EABB1CE}C:\windows\system32\spool\drivers\w32x86\3\lexpps.exe" = protocol=6 | dir=in | app=c:\windows\system32\spool\drivers\w32x86\3\lexpps.exe | 
"TCP Query User{573E8A76-07A9-419B-940A-E85C17C6D3DA}C:\program files\icq6\icq.exe" = protocol=6 | dir=in | app=c:\program files\icq6\icq.exe | 
"TCP Query User{625F0FE9-E4E2-43BB-857B-D56FBE5E2D3C}C:\program files\gmx\gmx multimessenger\messengr.exe" = protocol=6 | dir=in | app=c:\program files\gmx\gmx multimessenger\messengr.exe | 
"TCP Query User{79CCDC59-8BE7-42B9-AE15-16ED449AC7CD}C:\program files\java\jre6\bin\java.exe" = protocol=6 | dir=in | app=c:\program files\java\jre6\bin\java.exe | 
"TCP Query User{8DCE95A8-03D8-48CC-9B84-A89DCDD41D9E}C:\windows\explorer.exe" = protocol=6 | dir=in | app=c:\windows\explorer.exe | 
"TCP Query User{94BADB22-6412-4693-B3A3-EC67477A346F}C:\program files\screamer radio\screamer.exe" = protocol=6 | dir=in | app=c:\program files\screamer radio\screamer.exe | 
"TCP Query User{9AA22273-F714-4ABC-82AD-18DC2B098929}C:\program files\mozilla firefox\firefox.exe" = protocol=6 | dir=in | app=c:\program files\mozilla firefox\firefox.exe | 
"TCP Query User{CB378532-4935-40A5-A41C-A28C3DF0AC53}C:\emule\emule.exe" = protocol=6 | dir=in | app=c:\emule\emule.exe | 
"TCP Query User{D5C851C9-E47F-471D-B4F9-B88619EE8126}C:\windows\system32\taskeng.exe" = protocol=6 | dir=in | app=c:\windows\system32\taskeng.exe | 
"TCP Query User{D7558B54-64CF-42FE-B605-542567AB0C46}C:\program files\videolan\vlc\vlc.exe" = protocol=6 | dir=in | app=c:\program files\videolan\vlc\vlc.exe | 
"UDP Query User{02029B0D-97AB-4B5E-A4FF-E59BCE0DD91A}C:\program files\screamer radio\screamer.exe" = protocol=17 | dir=in | app=c:\program files\screamer radio\screamer.exe | 
"UDP Query User{053FFE9B-929A-4B2F-8AE6-0E7EB0300873}C:\programdata\kaspersky lab setup files\kaspersky internet security 2009\german\setup.exe" = protocol=17 | dir=in | app=c:\programdata\kaspersky lab setup files\kaspersky internet security 2009\german\setup.exe | 
"UDP Query User{211FCB84-A86B-45C0-88D1-CC00B0D1D180}C:\program files\java\jre6\bin\java.exe" = protocol=17 | dir=in | app=c:\program files\java\jre6\bin\java.exe | 
"UDP Query User{4BB3720F-FD86-46A7-B0BD-9271B9156222}C:\windows\explorer.exe" = protocol=17 | dir=in | app=c:\windows\explorer.exe | 
"UDP Query User{59613937-8795-42F8-99BD-4B77BF51C02D}C:\program files\participatory culture foundation\miro\miro_downloader.exe" = protocol=17 | dir=in | app=c:\program files\participatory culture foundation\miro\miro_downloader.exe | 
"UDP Query User{746A8C63-7C86-4ECF-AE18-34B2665AC96F}C:\emule\emule.exe" = protocol=17 | dir=in | app=c:\emule\emule.exe | 
"UDP Query User{776B4B27-32FE-4BBF-8DA7-31E72CBCEA89}C:\program files\mozilla firefox\firefox.exe" = protocol=17 | dir=in | app=c:\program files\mozilla firefox\firefox.exe | 
"UDP Query User{88200C5F-0F64-4BC9-B57D-B27B088B6766}C:\windows\system32\spool\drivers\w32x86\3\lexpps.exe" = protocol=17 | dir=in | app=c:\windows\system32\spool\drivers\w32x86\3\lexpps.exe | 
"UDP Query User{C1607F1E-77E5-4943-A23A-7D2D5FF1549E}C:\program files\icq6\icq.exe" = protocol=17 | dir=in | app=c:\program files\icq6\icq.exe | 
"UDP Query User{E174DBA6-2F31-4BA9-ADA0-42B89A49C94A}C:\windows\system32\taskeng.exe" = protocol=17 | dir=in | app=c:\windows\system32\taskeng.exe | 
"UDP Query User{EDB2F70E-1E36-4B75-BE58-5DE0E56BB632}C:\program files\gmx\gmx multimessenger\messengr.exe" = protocol=17 | dir=in | app=c:\program files\gmx\gmx multimessenger\messengr.exe | 
"UDP Query User{F94C2D66-0A70-4D3C-93B8-EEC7B18537C2}C:\program files\videolan\vlc\vlc.exe" = protocol=17 | dir=in | app=c:\program files\videolan\vlc\vlc.exe | 
 
========== HKEY_LOCAL_MACHINE Uninstall List ==========
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
"{00D0200F-3B4D-4A2F-869E-533ED835A943}" = Hervorhebe-Funktion (Windows Live Toolbar)
"{04B45310-A5FE-4425-BFCA-1A6D8920DE74}" = OpenOffice.org 3.0
"{052FDD78-A6EA-3187-8386-C82F4CA3A929}" = Microsoft .NET Framework 3.5 Language Pack SP1 - deu
"{07287123-B8AC-41CE-8346-3D777245C35B}" = Bonjour
"{0840B4D6-7DD1-4187-8523-E6FC0007EFB7}" = Windows Live ID-Anmelde-Assistent
"{086a7d8c-0a38-4c7f-819a-620275550d5c}" = Nero Burning ROM Help
"{0D2E9DCB-9938-475E-B4DD-8851738852FF}" = AIO_Scan
"{0F6A7971-0F11-4A79-A0E9-133D0963A570}" = ISO Recorder
"{1746EA69-DCB6-4408-B5A5-E75F55439CDF}" = Scan
"{179C56A4-F57F-4561-8BBF-F911D26EB435}" = WebReg
"{1a413f37-ed88-4fec-9666-5c48dc4b7bb7}" = YouTube Downloader 2.5.4
"{1A524CFE-DF85-4555-8BC2-0C89DBD8BC2C}" = PC Connectivity Solution
"{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Windows Live-Uploadtool
"{212748BB-0DA5-46DE-82A1-403736DC9F27}" = MSVC80_x86
"{218761F6-CBF6-4973-B910-A33E6563A1EA}" = Windows Live Toolbar-Erweiterung (Windows Live Toolbar)
"{2290A680-4083-410A-ADCC-7092C67FC052}" = Toshiba Online Product Information
"{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT
"{23BB7035-B5A4-47B1-81E4-51E88A31F3DD}" = CK Visitenkarten Designer
"{23DD6DAA-DDEF-41F5-A527-CECF07FA2CAF}" = 1500
"{24D753CA-6AE9-4E30-8F5F-EFC93E08BF3D}" = Skype™ 4.0
"{26A24AE4-039D-4CA4-87B4-2F83216012FF}" = Java(TM) 6 Update 20
"{28006915-2739-4EBE-B5E8-49B25D32EB33}" = Atheros Driver Installation Program
"{284CF4B8-4055-4D2E-BC04-5ADD7AA10E3D}" = The Movies(TM) 1.1 Patch
"{2BA722D1-48D1-406E-9123-8AE5431D63EF}" = Windows Live Fotogalerie
"{2BDBD1DE-2959-407F-BBC2-C9B2828CEDF2}" = HPSSupply
"{2C544254-39F2-4ACA-B779-ABF7297C96CF}" = Accessibility
"{2DD6C198-FA9A-40B4-8DE5-CE5206E3EB34}" = Smart Menus (Windows Live Toolbar)
"{2EEEC858-21F8-419B-8FE2-820621BFFCD7}" = GetDataBack for FAT
"{36FDBE6E-6684-462B-AE98-9A39A1B200CC}" = HP Product Assistant
"{3912D529-02BC-4CA8-B5ED-0D0C20EB6003}" = ATK Hotkey
"{3B4E636E-9D65-4D67-BA61-189800823F52}" = Windows Live Communications Platform
"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
"{44B3522B-195C-488D-84AC-9526FA99CB73}" = Motorola Handset USB Driver
"{49C09E32-B9FD-4EDC-9152-9BC0CC618A13}" = GetDataBack for FAT and GetDataBack for NTFS
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4CBA3D4C-8F51-4D60-B27E-F6B641C571E7}" = Microsoft Search Enhancement Pack
"{4EA2F95F-A537-4d17-9E7F-6B3FF8D9BBE3}" = Microsoft Works
"{52D02A2B-03D2-4E34-A358-DC5D951FD296}" = Nokia Connectivity Cable Driver
"{542068F1-9AAE-4E1B-8ACA-094FE03728BE}" = Carambis Driver Updater
"{55923A85-EB57-4547-A278-20741E8EEB93}" = MSN Star Check
"{56995235-B76E-44A6-BA17-8FF13D3F907A}" = TOSHIBA Benutzerhandbücher
"{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
"{5980B928-1C95-4B3E-957B-B02D8147FF9E}" = Desktop SMS
"{59F6A514-9813-47A3-948C-8A155460CC2A}" = RICOH R5C83x/84x Flash Media Controller Driver Ver.3.51.01
"{5d9be3c1-8ba4-4e7e-82fd-9f74fa6815d1}" = Nero Vision
"{5DA0E02F-970B-424B-BF41-513A5018E4C0}" = TOSHIBA Disc Creator
"{5EE7D259-D137-4438-9A5F-42F432EC0421}" = VC80CRTRedist - 8.0.50727.4053
"{5FC68772-6D56-41C6-9DF1-24E868198AE6}" = Windows Live Call
"{60DE4033-9503-48D1-A483-7846BD217CA9}" = ICQ6
"{617C36FD-0CBE-4600-84B2-441CEB12FADF}" = TOSHIBA Extended Tiles for Windows Mobility Center
"{64963F0E-03F2-4B59-8D1B-1806545E7092}" = NVIDIA DDS Utilities
"{66E6CE0C-5A1E-430C-B40A-0C90FF1804A8}" = eSupportQFolder
"{67D3F1A0-A1F2-49b7-B9EE-011277B170CD}" = HPProductAssistant
"{6956856F-B6B3-4BE0-BA0B-8F495BE32033}" = Apple Software Update
"{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin
"{6C5F3BDC-0A1B-4436-A696-5939629D5C31}" = TOSHIBA DVD PLAYER
"{6D482078-8D15-4FD3-B838-C7B49174650F}" = Opera 10.61
"{70B7A167-0B88-445D-A3EA-97C73AA88CAC}" = Windows Live Toolbar
"{72D25670-523F-43D0-A1CB-BC239F15245F}" = PC SpeedScan Pro
"{74224F8D-4A17-4816-9EDB-7BB854DE532C}" = NVIDIA PhysX v8.04.25
"{744E32F8-7678-4124-9FD5-431ADC0B4509}" = Du und Dein Heim für Tiere
"{76618402-179D-4699-A66B-D351C59436BC}" = Windows Live Sync
"{76E41F43-59D2-4F30-BA42-9A762EE1E8DE}" = Avanquest update
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{7748AC8C-18E3-43BB-959B-088FAEA16FB2}" = Nero StartSmart
"{786C4AD1-DCBA-49A6-B0EF-B317A344BD66}" = Windows Live Favorites für Windows Live Toolbar
"{78C6A78A-8B03-48C8-A47C-78BA1FCA2307}" = TOSHIBA ConfigFree
"{7A7DC702-DEDE-42A8-8722-B3BA724D546F}" = Fax
"{7B3F0113-E63C-4D6D-AF19-111A3165CCA2}" = Text-To-Speech-Runtime
"{7B63B2922B174135AFC0E1377DD81EC2}" = DivX Codec
"{7E265513-8CDA-4631-B696-F40D983F3B07}_is1" = CDBurnerXP
"{7EE873AF-46BB-4B5D-BA6F-CFE4B0566E22}" = TuneUp Utilities Language Pack (de-DE)
"{80F24F31-F641-4349-83F3-59E335976D16}" = PC SpeedScan Pro
"{81B3BEF9-5D97-4096-86E9-5B48A5BC32D0}" = Motorola Driver Installation 3.4.0
"{81BEDFC2-CD4B-4D3B-AF88-2EE7EAEC812F}" = Orphalese Tarot
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{84F7CAD9-2316-4701-B5CA-E90FD60029E9}" = ANNO 1602
"{86D4B82A-ABED-442A-BE86-96357B70F4FE}" = Ask Toolbar
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8A74E887-8F0F-4017-AF53-CBA42211AAA5}" = Microsoft Sync Framework Runtime Native v1.0 (x86)
"{8ADFC4160D694100B5B8A22DE9DCABD9}" = DivX Player
"{8F3C31C5-9C3A-4AA8-8EFA-71290A7AD533}" = TomTom HOME Visual Studio Merge Modules
"{90280407-6000-11D3-8CFE-0050048383C9}" = Microsoft Office XP Professional mit FrontPage
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{9559F7CA-5E34-4237-A2D9-D856464AD727}" = Project64 1.6
"{95E0E6DC-C308-4C96-BEDB-68C75A32FAF8}_is1" = Tetris
"{98613C99-1399-416C-A07C-1EE1C585D872}" = SeaTools for Windows
"{994223F3-A99B-4DDD-9E1D-0190A17C6860}" = Windows Live Family Safety
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9ED38F62-7A50-4145-8C5D-0FCFFBF10A7B}" = Visual C++ CRT 9.0
"{9FE35071-CAB2-4E79-93E7-BFC6A2DC5C5D}" = CD/DVD Drive Acoustic Silencer
"{A2101ACC-DC36-42AA-A576-6FD6A8D466DA}" = 1500_Help
"{A36CD345-625C-4d6c-B3E2-76E1248CB451}" = SolutionCenter
"{A429C2AE-EBF1-4F81-A221-1C115CAADDAD}" = QuickTime
"{A4C6B32D-5088-40AF-B74D-CDABEF144F04}" = 1500Trb
"{A654A805-41D9-40C7-AA46-4AF04F044D61}" = Adobe® Photoshop® Album Starter Edition 3.2
"{A8EC49E4-5EB8-444C-8CE0-446904D5E629}" = Easy Poster Printer
"{A8F2089B-1F79-4BF6-B385-A2C2B0B9A74D}" = ImagXpress
"{A918DE8A-98C8-0950-0000-000005380008}" = Motorola RAZR V3 - PEBL U6 MA730G - Handset Manager lite V9.5
"{AC76BA86-7AD7-1031-7B44-A81300000003}" = Adobe Reader 8.1.4 - Deutsch
"{AC76BA86-7AD7-5464-3428-800000000003}" = Spelling Dictionaries Support For Adobe Reader 8
"{AE46ABD3-D625-467F-B5A7-8D3FFF077F0D}" = Realtek 8139 and 8139C+ Ethernet Network Card Driver for Windows Vista
"{AFC4FEEE-6E08-4CC9-815E-5CEDF2C15E2E}_is1" = Terminplaner .Net
"{B13A7C41581B411290FBC0395694E2A9}" = DivX Converter
"{B2544A03-10D0-4E5E-BA69-0362FFC20D18}" = OGA Notifier 2.0.0048.0
"{B2EC4A38-B545-4A00-8214-13FE0E915E6D}" = Advertising Center
"{B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1" = Spybot - Search & Destroy
"{B5FDA445-CAC4-4BA6-A8FB-A7212BD439DE}" = Microsoft XML Parser
"{B7050CBDB2504B34BC2A9CA0A692CC29}" = DivX Plus Web Player
"{BAD8CA9C-77C0-4663-B00B-A8D3B13C341B}" = Motorola Phone Tools
"{BD5CA0DA-71AD-43DA-B19E-6EEE0C9ADC9A}" = Nero ControlCenter
"{BD64AF4A-8C80-4152-AD77-FCDDF05208AB}" = Microsoft Sync Framework Services Native v1.0 (x86)
"{BE77A81F-B315-4666-9BF3-AE70C0ADB057}" = BufferChm
"{C4D738F7-996A-4C81-B8FA-C4E26D767E41}" = Windows Live Mail
"{C716522C-3731-4667-8579-40B098294500}" = Toolbox
"{C7340571-7773-4A8C-9EBC-4E4243B38C76}" = Microsoft XML Parser
"{C81A2FE0-3574-00A9-CED4-BDAA334CBE8E}" = Nero Online Upgrade
"{C916D86C-AB76-49c7-B0E4-A946E0FD9BC2}" = HP Photosmart, Officejet, PSC and Deskjet All-In-One Driver Software 8.0.B
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{D1A74FBB-CA8D-4CCA-9B89-BAAA436DB178}" = iTunes
"{D3742F82-1C1A-4DCC-ABBD-0E7C3C0185CC}" = TuneUp Utilities
"{D5577624-0626-4C4B-87AA-D966DA1739D6}" = Nokia PC Suite
"{DB833EF9-A198-49BE-970A-BD46F30BFBB4}" = ANNO 1503 Königs- Edition
"{DED53B0B-B67C-4244-AE6A-D6FD3C28D1EF}" = Ad-Aware
"{E06F04B9-45E6-4AC0-8083-85F7515F40F7}" = UnloadSupport
"{E09575B2-498D-4C8B-A9D2-623F78574F29}" = AIO_CDB_Software
"{E0A4805D-280A-4DD7-9E74-3A5F85E302A1}" = Windows Live Writer
"{E2DFE069-083E-4631-9B6C-43C48E991DE5}" = Junk Mail filter update
"{E38C00D0-A68B-4318-A8A6-F7D4B5B1DF0E}" = Windows Media Encoder 9-Reihe
"{e4b49e64-036a-4448-8a0f-7ab109abd20c}" = Nero 9 Lite
"{E7112940-5F8E-4918-B9FE-251F2F8DC81F}" = AIO_CDB_ProductContext
"{E8A80433-302B-4FF1-815D-FCC8EAC482FF}" = Nero Installer
"{EB7A2041-6A16-4BAC-8079-43B985673C2C}" = Avery Zweckform Assistent 3.1
"{EBFF48F5-3CFA-436F-8FD5-94FB01D3A0A7}" = TOSHIBA SD Memory Utilities
"{ECC3713C-08A4-40E3-95F1-7D0704F1CE5E}" = PL-2303 USB-to-Serial
"{F0A37341-D692-11D4-A984-009027EC0A9C}" = SoundMAX
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}" = Microsoft Choice Guard
"{F1E63043-54FC-429B-AB2C-31AF9FBA4BC7}" = 32 Bit HP CIO Components Installer
"{F214EAA4-A069-4BAF-9DA4-4DB8BEEDE485}" = DVD MovieFactory for TOSHIBA
"{F333A33D-125C-32A2-8DCE-5C5D14231E27}" = Visual C++ 2008 x86 Runtime - (v9.0.30729)
"{F333A33D-125C-32A2-8DCE-5C5D14231E27}.vc_x86runtime_30729_01" = Visual C++ 2008 x86 Runtime - v9.0.30729.01
"{f4041dce-3fe1-4e18-8a9e-9de65231ee36}" = Nero ControlCenter
"{F40BBEC7-C2A4-4A00-9B24-7A055A2C5262}" = Microsoft Office Live Add-in 1.5
"{F750C986-5310-3A5A-95F8-4EC71C8AC01C}" = Microsoft .NET Framework 4 Client Profile DEU Language Pack
"{F8FF18EE-264A-43FD-B2F6-5EAD40798C2F}" = Windows Live Essentials
"{FE57DE70-95DE-4B64-9266-84DA811053DB}" = HP Update
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"3A5DEFA413DDE699DBA6EBE0A63534ACA524D30F" = Windows-Treiberpaket - Nokia pccsmcfd  (10/12/2007 6.85.4.0)
"7-Zip" = 7-Zip 4.65
"Ad-Aware" = Ad-Aware
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Adobe® Photoshop® Album Starter Edition 3.2" = Adobe® Photoshop® Album Starter Edition 3.2
"Alex Kidd in the Enchanted Castle_is1" = Alex Kidd in the Enchanted Castle
"Art Dabbler 2.1" = Art Dabbler 2.1
"Ashampoo Burning Studio 10_is1" = Ashampoo Burning Studio 10.0.4
"Ashampoo Burning Studio 6 FREE_is1" = Ashampoo Burning Studio 6 FREE
"Aspell German Dictionary_is1" = Aspell German Dictionary-0.50-2
"Autorun Eater_is1" = Autorun Eater v2.3
"Avira AntiVir Desktop" = Avira AntiVir Personal - Free Antivirus
"Bejeweled Twist 1.0" = Bejeweled Twist 1.0
"BUST-A-MOVE 4" = BUST-A-MOVE 4
"CCleaner" = CCleaner (remove only)
"CEP - Colour Enable Packages_is1" = CEP - Color Enable Package
"Chakrasaver" = Chakrasaver
"CloneDVD2" = CloneDVD2
"DivX Plus DirectShow Filters" = DivX Plus DirectShow Filters
"eMule" = eMule
"ETKA" = ETKA
"FinePrint" = FinePrint
"Flash File Recovery_is1" = Flash File Recovery v3.7
"FLV Player" = FLV Player 2.0 (build 25)
"Free 3GP Video Converter_is1" = Free 3GP Video Converter version 3.1
"Free Audio CD Burner_is1" = Free Audio CD Burner version 1.2
"Free Video to Mp3 Converter_is1" = Free Video to Mp3 Converter version 3.1
"Free YouTube to MP3 Converter_is1" = Free YouTube to MP3 Converter version 3.3
"GMX MultiMessenger" = GMX MultiMessenger
"GNU Aspell_is1" = GNU Aspell 0.50-3
"GTK 2.0" = GTK+ Runtime 2.12.8 rev a (nur entfernen)
"HDD Health_is1" = HDD Health v3.3 Beta
"HDMI" = Intel(R) Graphics Media Accelerator Driver
"HijackThis" = HijackThis 2.0.2
"HP Solution Center & Imaging Support Tools" = HP Solution Center 8.0
"InstallShield_{617C36FD-0CBE-4600-84B2-441CEB12FADF}" = TOSHIBA Extended Tiles for Windows Mobility Center
"InstallShield_{EB7A2041-6A16-4BAC-8079-43B985673C2C}" = Avery Zweckform Assistent 3.1
"IrfanView" = IrfanView (remove only)
"Juicy Business Cards_is1" = Juicy Business Cards 1.40
"Lexmark 510 Series" = Lexmark 510 Series
"Lexmark Z500-Z600 Series" = Lexmark Z500-Z600 Series
"Loki Browser Plugin" = Loki Browser Plugin
"Lycos WLAN Manager, Spotigo GmbH" = Lycos WLAN Manager
"MAGIX Digital Foto Maker SE D" = MAGIX Digital Foto Maker SE 4.1.0.835 (D)
"MAGIX Foto Suite D" = MAGIX Foto Suite 1.12.0.89 (D)
"MAGIX Online Druck Service D" = MAGIX Online Druck Service 2.3.2.0 (D)
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"Mandala Painter 3 Demo_is1" = Mandala Painter 3.0 Demo
"MBRtool" = DIY DataRecovery MBRtool 2
"memoCARD" = memoCARD 4.4.29 
"Microsoft .NET Framework 1.1  (1033)" = Microsoft .NET Framework 1.1
"Microsoft .NET Framework 3.5 Language Pack SP1 - deu" = Microsoft .NET Framework 3.5 Language Pack SP1 - DEU
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Client Profile DEU Language Pack" = Microsoft .NET Framework 4 Client Profile DEU Language Pack
"MIKSOFT Mobile AMR converter_is1" = MIKSOFT Mobile AMR converter
"Miro" = Miro
"Mozilla Firefox (3.6.10)" = Mozilla Firefox (3.6.10)
"MSNIACC" = MSN Connection Center
"myphotobook" = myphotobook 3.1
"Nokia PC Suite" = Nokia PC Suite
"ODEUNST #1" = Lernkartei
"p.i.c.s. Rätsel-Generator" = p.i.c.s. Rätsel-Generator
"Picasa 3" = Picasa 3
"POSTERIZA" = POSTERIZA 1.1.1
"ProtectDisc Driver 10" = ProtectDisc Helper Driver 10
"ratDVD" = ratDVD 0.78.1444
"Scribus 1.3.8" = Scribus 1.3.8
"SharkMate" = SharkMate 1.30
"Shockwave" = Shockwave
"Shop for HP Supplies" = Shop for HP Supplies
"SHOUTcast Radio Toolbar" = SHOUTcast Radio Toolbar
"Sim AQUARIUM 2_is1" = Sim AQUARIUM 2
"Sim File Maid 2" = Sim File Maid 2 1.0.2
"SimPE_is1" = SimPE 0.72 (alpha)
"Sims2Pack Clean Installer " = Sims2Pack Clean Installer 
"SimsFileMover_is1" = SimsFileMover
"Sonic 3D Blast_is1" = Sonic 3D Blast
"Sonic the Hedgehog_is1" = Sonic the Hedgehog
"SpeedFan" = SpeedFan (remove only)
"ST5UNST #1" = Yoga&Meditation
"SynTPDeinstKey" = Synaptics Pointing Device Driver
"System Tool_is1" = System Tool
"TomTom HOME" = TomTom HOME 2.7.3.1894
"TOSHIBA Software Modem" = TOSHIBA Software Modem
"Total Video Converter 3.0 beta_is1" = Total Video Converter 3.0 beta
"TuneUp Utilities" = TuneUp Utilities
"TVgenial_is1" = TVgenial 3.40
"UltimateZip_is1" = UltimateZip
"Uninstall_is1" = Uninstall 1.0.0.1
"Unlocker" = Unlocker 1.8.7
"VirtualCloneDrive" = VirtualCloneDrive
"Visitenkarten in 2 Minuten" = Visitenkarten in 2 Minuten
"VLC media player" = VLC media player 1.0.5
"Winamp" = Winamp
"Windows Media Encoder 9" = Windows Media Encoder 9-Reihe
"WinGimp-2.0_is1" = GIMP 2.6.6
"WinGTK-2_is1" = GTK+ 2.6.7-2 runtime environment
"WinISO_is1" = WinISO 5.3
"WinLiveSuite_Wave3" = Windows Live Essentials
"WinRAR archiver" = WinRAR archiver
"Wisterer HX_is1" = Wisterer HX 4.2.32
"Yahoo! Customizations" = Yahoo! Extras
"ZC2.10w" = Zelda Classic 2.10w
 
========== HKEY_USERS Uninstall List ==========
 
[HKEY_USERS\S-1-5-21-2422499485-3765178413-3129067992-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Freewar Profil Editor" = Freewar Profil Editor
"TwistedBrush Pro Studio" = TwistedBrush Pro Studio
"Vista Pack" = Vista Pack
"Winamp Detect" = Winamp Anwendungserkennung
 
========== Last 10 Event Log Errors ==========
 
[ Application Events ]
Error - 17.04.2009 16:55:38 | Computer Name = Stuffis-Lappi | Source = Windows Search Service | ID = 3013
Description = 
 
Error - 17.04.2009 16:55:38 | Computer Name = Stuffis-Lappi | Source = Windows Search Service | ID = 3013
Description = 
 
Error - 17.04.2009 16:55:38 | Computer Name = Stuffis-Lappi | Source = Windows Search Service | ID = 3013
Description = 
 
Error - 17.04.2009 16:55:38 | Computer Name = Stuffis-Lappi | Source = Windows Search Service | ID = 3013
Description = 
 
Error - 17.04.2009 16:55:38 | Computer Name = Stuffis-Lappi | Source = Windows Search Service | ID = 3013
Description = 
 
Error - 17.04.2009 16:55:38 | Computer Name = Stuffis-Lappi | Source = Windows Search Service | ID = 3013
Description = 
 
Error - 22.04.2009 14:14:26 | Computer Name = Stuffis-Lappi | Source = Application Error | ID = 1000
Description = Fehlerhafte Anwendung vlc.exe, Version 0.9.8.0, Zeitstempel 0x4937ebcd,
 fehlerhaftes Modul unknown, Version 0.0.0.0, Zeitstempel 0x00000000, Ausnahmecode
 0xc0000005, Fehleroffset 0x69496ea2,  Prozess-ID 0x144c, Anwendungsstartzeit 01c9c361cf326440.
 
Error - 23.04.2009 07:32:39 | Computer Name = Stuffis-Lappi | Source = Application Hang | ID = 1002
Description = Programm MESSENGR.EXE, Version 3.70.2794.0 arbeitet nicht mehr mit
 Windows zusammen und wurde beendet. Überprüfen Sie den Problemverlauf im Applet
 "Lösungen für Probleme" in der Systemsteuerung, um nach weiteren Informationen 
über das Problem zu suchen.  Prozess-ID: 12a8  Anfangszeit: 01c9c406a39a3510  Zeitpunkt
 der Beendigung: 17
 
Error - 23.04.2009 07:34:42 | Computer Name = Stuffis-Lappi | Source = Application Hang | ID = 1002
Description = Programm MESSENGR.EXE, Version 3.70.2794.0 arbeitet nicht mehr mit
 Windows zusammen und wurde beendet. Überprüfen Sie den Problemverlauf im Applet
 "Lösungen für Probleme" in der Systemsteuerung, um nach weiteren Informationen 
über das Problem zu suchen.  Prozess-ID: 13c0  Anfangszeit: 01c9c40738fe39d0  Zeitpunkt
 der Beendigung: 38
 
Error - 23.04.2009 07:37:03 | Computer Name = Stuffis-Lappi | Source = Application Hang | ID = 1002
Description = Programm MESSENGR.EXE, Version 3.70.2794.0 arbeitet nicht mehr mit
 Windows zusammen und wurde beendet. Überprüfen Sie den Problemverlauf im Applet
 "Lösungen für Probleme" in der Systemsteuerung, um nach weiteren Informationen 
über das Problem zu suchen.  Prozess-ID: 14f8  Anfangszeit: 01c9c407a0bdac90  Zeitpunkt
 der Beendigung: 48
 
[ Media Center Events ]
Error - 04.03.2008 06:49:48 | Computer Name = Stuffis-Lappi | Source = Media Center Guide | ID = 0
Description = Ereignisinformationen: ERROR: SqmApiWrapper.SqmFlushSession failed;
 Win32 GetLastError returned 0D  Prozess: DefaultDomain Objektname: Media Center Guide

 
Error - 04.03.2008 07:05:29 | Computer Name = Stuffis-Lappi | Source = Media Center Guide | ID = 0
Description = Ereignisinformationen: ERROR: SqmApiWrapper.TimerAccumulate failed;
 Win32 GetLastError returned 10000105  Prozess: DefaultDomain Objektname: Media Center
 Guide 
 
Error - 28.08.2010 10:36:55 | Computer Name = Stuffis-Lappi | Source = Media Center Guide | ID = 0
Description = Ereignisinformationen: ERROR: SqmApiWrapper.TimerRecord failed; Win32
 GetLastError returned 10000105  Prozess: DefaultDomain Objektname: Media Center Guide

 
[ System Events ]
Error - 11.10.2010 17:08:37 | Computer Name = Stuffis-Lappi | Source = Microsoft-Windows-WindowsUpdateClient | ID = 20
Description = 
 
Error - 11.10.2010 17:08:37 | Computer Name = Stuffis-Lappi | Source = Microsoft-Windows-WindowsUpdateClient | ID = 20
Description = 
 
Error - 11.10.2010 17:17:18 | Computer Name = Stuffis-Lappi | Source = disk | ID = 262151
Description = Fehlerhafter Block bei Gerät \Device\Harddisk0\DR0.
 
Error - 11.10.2010 17:17:22 | Computer Name = Stuffis-Lappi | Source = disk | ID = 262151
Description = Fehlerhafter Block bei Gerät \Device\Harddisk0\DR0.
 
Error - 11.10.2010 21:02:11 | Computer Name = Stuffis-Lappi | Source = Microsoft-Windows-WindowsUpdateClient | ID = 20
Description = 
 
Error - 11.10.2010 21:02:19 | Computer Name = Stuffis-Lappi | Source = Microsoft-Windows-WindowsUpdateClient | ID = 20
Description = 
 
Error - 11.10.2010 21:02:28 | Computer Name = Stuffis-Lappi | Source = Microsoft-Windows-WindowsUpdateClient | ID = 20
Description = 
 
Error - 11.10.2010 21:05:13 | Computer Name = Stuffis-Lappi | Source = Microsoft-Windows-WindowsUpdateClient | ID = 20
Description = 
 
Error - 11.10.2010 21:08:07 | Computer Name = Stuffis-Lappi | Source = disk | ID = 262151
Description = Fehlerhafter Block bei Gerät \Device\Harddisk0\DR0.
 
Error - 11.10.2010 21:08:14 | Computer Name = Stuffis-Lappi | Source = disk | ID = 262151
Description = Fehlerhafter Block bei Gerät \Device\Harddisk0\DR0.
 
 
< End of report >

--- --- ---

markusg · 12.10.2010, 13:55

o da sehe ich grad was unschönes.
mach mal flink ne datensicherung deiner wichtigen persönlichen daten!
und dann ne datenträger überprüfung
Überprüfen der Festplatte auf Fehler
bitte alle beide haken setzen

Black-Night · 12.10.2010, 13:59

ok ich meld mich dann wieder

08.10.2010, 13:48	#17
markusg /// Malware-holic	Byavubohido rundll32.exe<-- internet abbruch, und keine updates mehr, fenster fehler update mal malwarebytes, und starte dann nen komplett scan es werden wohl 2 updates nötig sein, 1x versionsupdate und dann noch mal für die datenbank __________________

08.10.2010, 13:59	#19
markusg /// Malware-holic	Byavubohido rundll32.exe<-- internet abbruch, und keine updates mehr, fenster fehler keinen stress :-) und n schönes we

11.10.2010, 15:47	#21
markusg /// Malware-holic	Byavubohido rundll32.exe<-- internet abbruch, und keine updates mehr, fenster fehler kannst du Malwarebytes updaten und erneut scannen? doch war schon was zu tun hier :d

11.10.2010, 17:12	#23
markusg /// Malware-holic	Byavubohido rundll32.exe<-- internet abbruch, und keine updates mehr, fenster fehler och nö, ärgern lass ich mich nicht, die user wollen ja was von uns und nicht umgekehrt

11.10.2010, 19:00	#25
markusg /// Malware-holic	Byavubohido rundll32.exe<-- internet abbruch, und keine updates mehr, fenster fehler hohl dir das sp2 Downloaddetails: Windows Server 2008 Service Pack 2 und Windows Vista Service Pack 2 - Five Language Standalone (KB948465) danach, also nach der instalation, besuche die windows update seite, spiele alle wichtigen updates auf.

Byavubohido rundll32.exe<-- internet abbruch, und keine updates mehr, fenster fehler

Plagegeister aller Art und deren Bekämpfung: Byavubohido rundll32.exe<-- internet abbruch, und keine updates mehr, fenster fehler