Trojaner-Board - Habe um meinen PC zu schützen VIELE Schutzprogramme incl. Viren runtergeladen :-(

HI, da bin ich wieder...

Also, der Speed ist jetzt deutlich besser geworden...

Hier das neueste OTL-Fixlog:

Code:

OTL logfile created on: 03.06.2013 13:39:46 - Run 9

OTL by OldTimer - Version 3.2.69.0     Folder = C:\Dokumente und Einstellungen\clk\Desktop

Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation

Internet Explorer (Version = 8.0.6001.18702)

Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy

 

1023,42 Mb Total Physical Memory | 453,37 Mb Available Physical Memory | 44,30% Memory free

2,41 Gb Paging File | 1,79 Gb Available in Paging File | 74,32% Paging File free

Paging file location(s): C:\pagefile.sys 1536 3072 [binary data]

 

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Programme

Drive C: | 74,33 Gb Total Space | 20,47 Gb Free Space | 27,54% Space Free | Partition Type: NTFS

 

Computer Name: CK | User Name: clk | Logged in as Administrator.

Boot Mode: Normal | Scan Mode: Current user | Quick Scan

Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

 
 ========== Processes (SafeList) ==========

 

PRC - [2013.05.29 10:28:12 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Dokumente und Einstellungen\clk\Desktop\OTL.exe

PRC - [2013.05.23 07:44:09 | 000,825,808 | ---- | M] (Google Inc.) -- C:\Dokumente und Einstellungen\clk\Lokale Einstellungen\Anwendungsdaten\Google\Chrome\Application\chrome.exe

PRC - [2013.05.09 10:58:30 | 004,858,968 | ---- | M] (AVAST Software) -- C:\Programme\AVAST Software\Avast\AvastUI.exe

PRC - [2013.05.09 10:58:30 | 000,046,808 | ---- | M] (AVAST Software) -- C:\Programme\AVAST Software\Avast\AvastSvc.exe

PRC - [2013.01.09 18:34:26 | 001,324,104 | ---- | M] (pdfforge GbR) -- C:\Programme\PDF Architect\HelperService.exe

PRC - [2012.10.02 13:13:44 | 003,064,000 | ---- | M] (Skype Technologies S.A.) -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Skype\Toolbars\Skype C2C Service\c2c_service.exe

PRC - [2010.01.15 12:53:35 | 000,308,688 | ---- | M] () -- C:\Programme\Verbindungsassistent\WTGService.exe

PRC - [2010.01.07 16:20:28 | 000,598,696 | ---- | M] ( ) -- C:\WINDOWS\system32\lxeecoms.exe

PRC - [2009.07.24 16:05:24 | 000,139,120 | ---- | M] (Microsoft Corporation) -- C:\Programme\Microsoft LifeCam\MSCamS32.exe

PRC - [2009.05.25 11:18:04 | 000,040,960 | ---- | M] () -- C:\Programme\Gemeinsame Dateien\DeviceHelper\DeviceManager.exe

PRC - [2008.08.29 18:56:58 | 000,081,920 | ---- | M] (Prolific Technology Inc.) -- C:\Programme\Nero\Nero BackItUp 4\IoctlSvc.exe

PRC - [2008.08.29 16:20:56 | 000,935,208 | ---- | M] (Nero AG) -- C:\Programme\Gemeinsame Dateien\Nero\Nero BackItUp 4\NBService.exe

PRC - [2008.04.14 04:22:45 | 001,036,800 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe

PRC - [2005.07.05 16:08:48 | 000,034,816 | ---- | M] (TOSHIBA Corp.) -- C:\Programme\Toshiba\TOSHIBA Applet\TAPPSRV.exe

PRC - [2005.01.18 01:38:38 | 000,040,960 | ---- | M] (TOSHIBA CORPORATION) -- C:\Programme\Toshiba\ConfigFree\CFSvcs.exe

PRC - [2002.09.20 15:50:10 | 000,045,056 | ---- | M] (Analog Devices, Inc.) -- C:\Programme\Analog Devices\SoundMAX\SMAgent.exe

 

 
 ========== Modules (No Company Name) ==========

 

MOD - [2013.06.03 10:55:25 | 002,087,424 | ---- | M] () -- C:\Programme\AVAST Software\Avast\defs\13060301\algo.dll

MOD - [2013.05.23 07:44:07 | 000,393,168 | ---- | M] () -- C:\Dokumente und Einstellungen\clk\Lokale Einstellungen\Anwendungsdaten\Google\Chrome\Application\27.0.1453.94\ppgooglenaclpluginchrome.dll

MOD - [2013.05.23 07:43:59 | 004,051,408 | ---- | M] () -- C:\Dokumente und Einstellungen\clk\Lokale Einstellungen\Anwendungsdaten\Google\Chrome\Application\27.0.1453.94\pdf.dll

MOD - [2013.05.23 07:43:03 | 001,597,392 | ---- | M] () -- C:\Dokumente und Einstellungen\clk\Lokale Einstellungen\Anwendungsdaten\Google\Chrome\Application\27.0.1453.94\ffmpegsumo.dll

MOD - [2011.10.05 04:52:30 | 000,756,048 | ---- | M] () -- C:\Programme\Gemeinsame Dateien\Microsoft Shared\OFFICE12\MSPTLS.DLL

MOD - [2011.06.22 12:46:12 | 000,434,016 | ---- | M] () -- C:\Programme\Microsoft Office\Office12\ADDINS\UmOutlookAddin.dll

MOD - [2010.01.15 12:53:35 | 000,308,688 | ---- | M] () -- C:\Programme\Verbindungsassistent\WTGService.exe

MOD - [2009.11.04 09:14:19 | 000,157,696 | ---- | M] () -- C:\WINDOWS\system32\spool\prtprocs\w32x86\lxeedrpp.dll

MOD - [2009.05.25 11:18:04 | 000,040,960 | ---- | M] () -- C:\Programme\Gemeinsame Dateien\DeviceHelper\DeviceManager.exe

MOD - [2009.02.26 14:46:56 | 000,064,344 | ---- | M] () -- C:\Programme\Microsoft Office\Office12\ADDINS\ColleagueImport.dll

MOD - [2008.04.14 04:22:16 | 000,014,336 | ---- | M] () -- C:\WINDOWS\system32\msdmo.dll

MOD - [2004.07.20 17:04:02 | 000,094,208 | ---- | M] () -- C:\WINDOWS\system32\TosBtHcrpAPI.dll

 

 
 ========== Services (SafeList) ==========

 

SRV - File not found [On_Demand | Stopped] -- %SystemRoot%\System32\appmgmts.dll -- (AppMgmt)

SRV - [2013.05.15 21:11:18 | 000,256,904 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)

SRV - [2013.05.09 10:58:30 | 000,046,808 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Programme\AVAST Software\Avast\AvastSvc.exe -- (avast! Antivirus)

SRV - [2013.01.09 18:36:06 | 000,795,208 | ---- | M] (pdfforge GbR) [Auto | Stopped] -- C:\Programme\PDF Architect\ConversionService.exe -- (PDF Architect Service)

SRV - [2013.01.09 18:34:26 | 001,324,104 | ---- | M] (pdfforge GbR) [Auto | Running] -- C:\Programme\PDF Architect\HelperService.exe -- (PDF Architect Helper Service)

SRV - [2012.10.02 13:13:44 | 003,064,000 | ---- | M] (Skype Technologies S.A.) [Auto | Running] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Skype\Toolbars\Skype C2C Service\c2c_service.exe -- (Skype C2C Service)

SRV - [2012.07.13 13:28:36 | 000,160,944 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Programme\Skype\Updater\Updater.exe -- (SkypeUpdate)

SRV - [2011.07.20 06:18:24 | 000,440,696 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Programme\Gemeinsame Dateien\Microsoft Shared\OFFICE12\ODSERV.EXE -- (odserv)

SRV - [2010.01.15 12:53:35 | 000,308,688 | ---- | M] () [Auto | Running] -- C:\Programme\Verbindungsassistent\WTGService.exe -- (WTGService)

SRV - [2010.01.07 16:20:28 | 000,598,696 | ---- | M] ( ) [Auto | Running] -- C:\WINDOWS\system32\lxeecoms.exe -- (lxee_device)

SRV - [2010.01.07 16:20:23 | 000,098,984 | ---- | M] () [Auto | Stopped] -- C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\\lxeeserv.exe -- (lxeeCATSCustConnectService)

SRV - [2009.10.20 20:19:48 | 000,117,264 | ---- | M] (CACE Technologies, Inc.) [On_Demand | Stopped] -- C:\Programme\WinPcap\rpcapd.exe -- (rpcapd)

SRV - [2009.07.24 16:05:24 | 000,139,120 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Programme\Microsoft LifeCam\MSCamS32.exe -- (MSCamSvc)

SRV - [2009.05.25 11:18:04 | 000,040,960 | ---- | M] () [Auto | Running] -- C:\Programme\Gemeinsame Dateien\DeviceHelper\DeviceManager.exe -- (DeviceManager)

SRV - [2008.08.29 18:56:58 | 000,081,920 | ---- | M] (Prolific Technology Inc.) [Auto | Running] -- C:\Programme\Nero\Nero BackItUp 4\IoctlSvc.exe -- (PLFlash DeviceIoControl Service)

SRV - [2008.08.29 16:20:56 | 000,935,208 | ---- | M] (Nero AG) [Auto | Running] -- C:\Programme\Gemeinsame Dateien\Nero\Nero BackItUp 4\NBService.exe -- (Nero BackItUp Scheduler 4.0)

SRV - [2006.10.26 15:03:08 | 000,145,184 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Programme\Gemeinsame Dateien\Microsoft Shared\Source Engine\OSE.EXE -- (ose)

SRV - [2005.07.05 16:08:48 | 000,034,816 | ---- | M] (TOSHIBA Corp.) [Auto | Running] -- C:\Programme\Toshiba\TOSHIBA Applet\TAPPSRV.exe -- (TAPPSRV)

SRV - [2005.01.18 01:38:38 | 000,040,960 | ---- | M] (TOSHIBA CORPORATION) [Auto | Running] -- C:\Programme\Toshiba\ConfigFree\CFSvcs.exe -- (CFSvcs)

SRV - [2004.10.22 02:24:18 | 000,073,728 | ---- | M] (Macrovision Corporation) [On_Demand | Stopped] -- C:\Programme\Gemeinsame Dateien\InstallShield\Driver\1050\Intel 32\IDriverT.exe -- (IDriverT)

SRV - [2002.09.20 15:50:10 | 000,045,056 | ---- | M] (Analog Devices, Inc.) [Auto | Running] -- C:\Programme\Analog Devices\SoundMAX\SMAgent.exe -- (SoundMAX Agent Service (default)

 

 
 ========== Driver Services (SafeList) ==========

 

DRV - File not found [Kernel | On_Demand | Stopped] --  -- (WDICA)

DRV - File not found [Kernel | On_Demand | Stopped] --  -- (PDRFRAME)

DRV - File not found [Kernel | On_Demand | Stopped] --  -- (PDRELI)

DRV - File not found [Kernel | On_Demand | Stopped] --  -- (PDFRAME)

DRV - File not found [Kernel | On_Demand | Stopped] --  -- (PDCOMP)

DRV - File not found [Kernel | System | Stopped] --  -- (PCIDump)

DRV - File not found [Kernel | System | Stopped] --  -- (lbrtfdc)

DRV - File not found [Kernel | System | Stopped] --  -- (i2omgmt)

DRV - File not found [Kernel | System | Stopped] --  -- (Changer)

DRV - File not found [Kernel | On_Demand | Stopped] -- C:\DOKUME~1\clk\LOKALE~1\Temp\catchme.sys -- (catchme)

DRV - [2013.05.09 10:59:10 | 000,765,736 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\WINDOWS\System32\drivers\aswSnx.sys -- (aswSnx)

DRV - [2013.05.09 10:59:10 | 000,368,944 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswSP.sys -- (aswSP)

DRV - [2013.05.09 10:59:10 | 000,174,664 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\aswVmm.sys -- (aswVmm)

DRV - [2013.05.09 10:59:10 | 000,056,080 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswTdi.sys -- (aswTdi)

DRV - [2013.05.09 10:59:10 | 000,049,376 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\aswRvrt.sys -- (aswRvrt)

DRV - [2013.05.09 10:59:09 | 000,066,336 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\aswMonFlt.sys -- (aswMonFlt)

DRV - [2013.05.09 10:59:09 | 000,049,760 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswRdr.sys -- (AswRdr)

DRV - [2013.05.09 10:59:08 | 000,029,816 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswFsBlk.sys -- (aswFsBlk)

DRV - [2012.09.20 06:35:36 | 000,181,344 | ---- | M] (DEVGURU Co., LTD.(www.devguru.co.kr)) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ssudmdm.sys -- (ssudmdm)

DRV - [2012.09.20 06:35:36 | 000,083,168 | ---- | M] (DEVGURU Co., LTD.(www.devguru.co.kr)) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ssudbus.sys -- (dg_ssudbus)

DRV - [2012.06.27 10:37:56 | 000,132,424 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\sscdmdm.sys -- (sscdmdm)

DRV - [2012.06.27 10:37:56 | 000,104,648 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\sscdbus.sys -- (sscdbus)

DRV - [2012.06.27 10:37:56 | 000,014,920 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\sscdmdfl.sys -- (sscdmdfl)

DRV - [2011.08.01 15:57:30 | 000,045,288 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\dc3d.sys -- (dc3d)

DRV - [2010.11.22 14:25:54 | 000,027,632 | ---- | M] (Sony Ericsson Mobile Communications) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\seehcri.sys -- (seehcri)

DRV - [2010.11.22 14:24:53 | 000,025,512 | ---- | M] (Sony Ericsson Mobile Communications) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ggsemc.sys -- (ggsemc)

DRV - [2010.11.22 14:24:53 | 000,013,224 | ---- | M] (Sony Ericsson Mobile Communications) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ggflt.sys -- (ggflt)

DRV - [2009.11.04 13:09:32 | 000,763,584 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\UDXTTM6010.sys -- (UDXTTM6010)

DRV - [2009.11.04 13:09:32 | 000,023,104 | ---- | M] (DTV-DVB) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Cinergy_Hybrid-Stick_HID.sys -- (TTHID)

DRV - [2009.10.20 20:19:44 | 000,050,704 | ---- | M] (CACE Technologies, Inc.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\npf.sys -- (NPF)

DRV - [2009.07.24 16:05:24 | 000,030,560 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nx6000.sys -- (MSHUSBVideo)

DRV - [2009.06.19 16:44:14 | 000,290,816 | ---- | M] (Texas Instruments) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\tifm21.sys -- (tifm21)

DRV - [2009.05.25 11:18:02 | 000,103,552 | ---- | M] (TCT International Mobile Ltd) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\qcusbser.sys -- (qcusbser)

DRV - [2008.07.24 12:03:56 | 000,101,760 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ewusbmdm.sys -- (hwdatacard)

DRV - [2008.04.13 20:56:06 | 000,088,320 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\nwlnkipx.sys -- (NwlnkIpx)

DRV - [2008.04.13 20:53:09 | 000,040,320 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nmnt.sys -- (nm)

DRV - [2008.04.13 20:46:22 | 000,015,232 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\MPE.sys -- (MPE)

DRV - [2006.07.24 17:05:00 | 000,005,632 | ---- | M] () [File_System | System | Running] -- C:\WINDOWS\System32\drivers\StarOpen.sys -- (StarOpen)

DRV - [2005.07.04 15:54:08 | 000,098,176 | ---- | M] (TOSHIBA CORPORATION) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\TosRfbd.sys -- (Tosrfbd)

DRV - [2005.06.27 18:48:08 | 000,053,504 | ---- | M] (TOSHIBA Corporation.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\TosRfhid.sys -- (Tosrfhid)

DRV - [2005.05.30 18:28:38 | 000,008,576 | ---- | M] (TOSHIBA Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Tosrfec.sys -- (tosrfec)

DRV - [2005.05.10 17:50:00 | 000,029,056 | ---- | M] (TOSHIBA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Tvs.sys -- (Tvs)

DRV - [2005.04.15 07:14:58 | 001,130,496 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag)

DRV - [2005.04.13 00:30:12 | 001,066,278 | ---- | M] (Agere Systems) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\AGRSM.sys -- (AgereSoftModem)

DRV - [2005.03.31 02:18:40 | 000,230,400 | ---- | M] (Marvell) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\yk51x86.sys -- (yukonwxp)

DRV - [2005.03.30 12:42:54 | 000,047,230 | ---- | M] (TOSHIBA Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Tosporte.sys -- (tosporte)

DRV - [2005.03.02 08:45:24 | 000,004,864 | ---- | M] (Toshiba Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\NBSMI.sys -- (TVALD)

DRV - [2004.12.21 11:38:12 | 000,034,816 | ---- | M] (TOSHIBA CORPORATION) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\tosrfusb.sys -- (Tosrfusb)

DRV - [2004.10.29 18:48:10 | 003,222,784 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\w29n51.sys -- (w29n51)

DRV - [2004.10.04 10:33:02 | 000,062,799 | ---- | M] (TOSHIBA Corporation) [Kernel | System | Stopped] -- C:\WINDOWS\system32\drivers\tosrfcom.sys -- (Tosrfcom)

DRV - [2004.08.04 14:00:00 | 000,063,232 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\nwlnknb.sys -- (NwlnkNb)

DRV - [2004.08.04 14:00:00 | 000,055,936 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\nwlnkspx.sys -- (NwlnkSpx)

DRV - [2003.01.29 23:35:00 | 000,012,032 | ---- | M] (TOSHIBA Corporation.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\Netdevio.sys -- (Netdevio)

 

 
 ========== Standard Registry (SafeList) ==========

 

 
 ========== Internet Explorer ==========

 

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com

IE - HKLM\..\SearchScopes,DefaultScope = 

IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://www.bing.com/search

IE - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = hxxp://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7

IE - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

 

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = hxxp://www.google.com/ie

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = hxxp://www.google.com/ie

IE - HKCU\..\SearchScopes,DefaultScope = 

IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC

IE - HKCU\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC

IE - HKCU\..\SearchScopes\{E649DC79-BD07-46CD-85E1-6D561DA45348}: "URL" = hxxp://www.google.de/search?q={searchTerms}&rlz=1I7ADFA_de

IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

 

 
 ========== FireFox ==========

 

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_7_700_202.dll ()

FF - HKLM\Software\MozillaPlugins\@google.com/npPicasa3,version=3.0.0: C:\Programme\Google\Picasa3\npPicasa3.dll (Google, Inc.)

FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.9.2: C:\WINDOWS\system32\npDeployJava1.dll (Oracle Corporation)

FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeLive,version=1.5: C:\Programme\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)

FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)

FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Programme\Google\Update\1.3.21.145\npGoogleUpdate3.dll (Google Inc.)

FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Programme\Google\Update\1.3.21.145\npGoogleUpdate3.dll (Google Inc.)

FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Programme\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)

FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Dokumente und Einstellungen\clk\Lokale Einstellungen\Anwendungsdaten\Google\Update\1.3.21.145\npGoogleUpdate3.dll (Google Inc.)

FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Dokumente und Einstellungen\clk\Lokale Einstellungen\Anwendungsdaten\Google\Update\1.3.21.145\npGoogleUpdate3.dll (Google Inc.)

 

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\FFPDFArchitectConverter@pdfarchitect.com: C:\Programme\PDF Architect\FFPDFArchitectExt [2013.02.05 01:26:21 | 000,000,000 | ---D | M]

FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\lrcfan@fansoft.br: C:\Programme\LyricsFan\FF\ [2013.05.24 01:02:06 | 000,000,000 | ---D | M]

 

[2012.05.28 21:11:58 | 000,000,000 | ---D | M] (No name found) -- C:\Dokumente und Einstellungen\clk\Anwendungsdaten\Mozilla\Extensions

[2012.05.28 21:11:58 | 000,000,000 | ---D | M] (No name found) -- C:\Dokumente und Einstellungen\clk\Anwendungsdaten\Mozilla\Extensions\ideskbrowser@haufe.de

[2011.03.09 18:58:21 | 000,000,000 | ---D | M] (No name found) -- C:\Programme\Mozilla Firefox\extensions

[2010.01.15 10:36:52 | 000,000,000 | ---D | M] (Skype extension for Firefox) -- C:\Programme\Mozilla Firefox\extensions\{AB2CE124-6272-4b12-94A9-7303C7397BD1}

[2010.10.14 20:03:10 | 000,000,000 | ---D | M] (Java Console) -- C:\Programme\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}

[2011.02.18 21:59:45 | 000,000,000 | ---D | M] (Kaspersky URL Advisor) -- C:\Programme\Mozilla Firefox\extensions\linkfilter@kaspersky.ru

[2010.10.14 20:01:57 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Programme\mozilla firefox\plugins\npdeployJava1.dll

[2010.07.12 18:33:56 | 000,012,800 | ---- | M] (Nullsoft, Inc.) -- C:\Programme\mozilla firefox\plugins\npwachk.dll

[2009.03.24 12:10:44 | 000,114,688 | ---- | M] (Zylom) -- C:\Programme\mozilla firefox\plugins\npzylomgamesplayer.dll

 
 ========== Chrome  ==========

 

CHR - default_search_provider: Google (Enabled)

CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}ie={inputEncoding}

CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&q={searchTerms}&{google:cursorPosition}sugkey={google:suggestAPIKeyParameter}

CHR - plugin: Shockwave Flash (Enabled) = C:\Dokumente und Einstellungen\clk\Lokale Einstellungen\Anwendungsdaten\Google\Chrome\Application\27.0.1453.94\PepperFlash\pepflashplayer.dll

CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer

CHR - plugin: Native Client (Enabled) = C:\Dokumente und Einstellungen\clk\Lokale Einstellungen\Anwendungsdaten\Google\Chrome\Application\27.0.1453.94\ppGoogleNaClPluginChrome.dll

CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Dokumente und Einstellungen\clk\Lokale Einstellungen\Anwendungsdaten\Google\Chrome\Application\27.0.1453.94\pdf.dll

CHR - plugin: Adobe Acrobat (Enabled) = C:\Programme\Adobe\Reader 11.0\Reader\Browser\nppdf32.dll

CHR - plugin: QuickTime Plug-in 7.7.1 (Enabled) = C:\Programme\QuickTime\plugins\npqtplugin.dll

CHR - plugin: QuickTime Plug-in 7.7.1 (Enabled) = C:\Programme\QuickTime\plugins\npqtplugin2.dll

CHR - plugin: QuickTime Plug-in 7.7.1 (Enabled) = C:\Programme\QuickTime\plugins\npqtplugin3.dll

CHR - plugin: QuickTime Plug-in 7.7.1 (Enabled) = C:\Programme\QuickTime\plugins\npqtplugin4.dll

CHR - plugin: QuickTime Plug-in 7.7.1 (Enabled) = C:\Programme\QuickTime\plugins\npqtplugin5.dll

CHR - plugin: QuickTime Plug-in 7.7.1 (Enabled) = C:\Programme\QuickTime\plugins\npqtplugin6.dll

CHR - plugin: QuickTime Plug-in 7.7.1 (Enabled) = C:\Programme\QuickTime\plugins\npqtplugin7.dll

CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Programme\Windows Media Player\npdrmv2.dll

CHR - plugin: Windows Media Player Plug-in Dynamic Link Library (Enabled) = C:\Programme\Windows Media Player\npdsplay.dll

CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Programme\Windows Media Player\npwmsdrm.dll

CHR - plugin: Google Update (Enabled) = C:\Dokumente und Einstellungen\clk\Lokale Einstellungen\Anwendungsdaten\Google\Update\1.3.21.145\npGoogleUpdate3.dll

CHR - plugin: Picasa (Enabled) = C:\Programme\Google\Picasa3\npPicasa3.dll

CHR - plugin: Microsoft Office Live Plug-in for Firefox (Enabled) = C:\Programme\Microsoft\Office Live\npOLW.dll

CHR - plugin: Shockwave Flash (Enabled) = C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_7_700_202.dll

CHR - plugin: Java Deployment Toolkit 7.0.90.5 (Enabled) = C:\WINDOWS\system32\npDeployJava1.dll

CHR - plugin: Windows Presentation Foundation (Enabled) = c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll

CHR - Extension: avast! Online Security = C:\Dokumente und Einstellungen\clk\Lokale Einstellungen\Anwendungsdaten\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\8.0.7_0\

CHR - Extension: avast! Online Security = C:\Dokumente und Einstellungen\clk\Lokale Einstellungen\Anwendungsdaten\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\8.0.7_0\

 

O1 HOSTS File: ([2013.05.29 23:58:22 | 000,000,027 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts

O1 - Hosts: 127.0.0.1       localhost

O2 - BHO: (Lexmark Symbolleiste) - {1017A80C-6F09-4548-A84D-EDD6AC9525F0} - C:\Programme\Lexmark Toolbar\toolband.dll ()

O2 - BHO: (PDF Architect Helper) - {3A2D5EBA-F86D-4BD3-A177-019765996711} - C:\Programme\PDF Architect\PDFIEHelper.dll (pdfforge GbR)

O2 - BHO: (avast! Online Security) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Programme\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)

O2 - BHO: (Lyrics Fan) - {A8720491-9558-4C0D-9E35-30EED15DFB2B} - C:\Programme\LyricsFan\lrcfan.dll (FAN Software)

O2 - BHO: (Skype Browser Helper) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Programme\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)

O2 - BHO: (Lexmark ) - {D2C5E510-BE6D-42CC-9F61-E4F939078474} - C:\Programme\Lexmark Printable Web\bho.dll ()

O3 - HKLM\..\Toolbar: (Lexmark Symbolleiste) - {1017A80C-6F09-4548-A84D-EDD6AC9525F0} - C:\Programme\Lexmark Toolbar\toolband.dll ()

O3 - HKLM\..\Toolbar: (avast! Online Security) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Programme\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)

O3 - HKLM\..\Toolbar: (&TerraTec Home Cinema) - {AD6E6555-FB2C-47D4-8339-3E2965509877} - C:\Programme\TerraTec\TerraTec Home Cinema\THCDeskBand.dll (TerraTec Electronic GmbH)

O3 - HKCU\..\Toolbar\ShellBrowser: (Lexmark Symbolleiste) - {1017A80C-6F09-4548-A84D-EDD6AC9525F0} - C:\Programme\Lexmark Toolbar\toolband.dll ()

O3 - HKCU\..\Toolbar\WebBrowser: (Lexmark Symbolleiste) - {1017A80C-6F09-4548-A84D-EDD6AC9525F0} - C:\Programme\Lexmark Toolbar\toolband.dll ()

O4 - HKLM..\Run: [avast] C:\Programme\AVAST Software\Avast\avastUI.exe (AVAST Software)

O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0

O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present

O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Restrictions present

O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323

O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863

O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0

O9 - Extra 'Tools' menuitem : Sun Java Konsole - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - Reg Error: Key error. File not found

O9 - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Programme\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)

O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\WINDOWS\system32\nwprovau.dll (Microsoft Corporation)

O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)

O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{EE8F664F-9C4B-483B-A8DB-622FC4AD8803}: DhcpNameServer = 192.168.1.1

O18 - Protocol\Handler\haufereader - No CLSID value found

O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)

O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)

O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)

O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Programme\Gemeinsame Dateien\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)

O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Programme\Gemeinsame Dateien\Skype\Skype4COM.dll (Skype Technologies)

O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Programme\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)

O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Programme\Gemeinsame Dateien\Microsoft Shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)

O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)

O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)

O20 - Winlogon\Notify\AtiExtEvent: DllName - (Ati2evxx.dll) - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.)

O24 - Desktop Components:0 (Die derzeitige Homepage) - About:Home

O24 - Desktop WallPaper: C:\Dokumente und Einstellungen\clk\Lokale Einstellungen\Anwendungsdaten\Microsoft\Wallpaper1.bmp

O24 - Desktop BackupWallPaper: C:\Dokumente und Einstellungen\clk\Lokale Einstellungen\Anwendungsdaten\Microsoft\Wallpaper1.bmp

O28 - HKLM ShellExecuteHooks: {56F9679E-7826-4C84-81F3-532071A8BCC5} - C:\Programme\Windows Desktop Search\MsnlNamespaceMgr.dll (Microsoft Corporation)

O32 - HKLM CDRom: AutoRun - 1

O32 - AutoRun File - [2005.08.17 14:44:24 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]

O34 - HKLM BootExecute: (autocheck autochk *)

O35 - HKLM\..comfile [open] -- "%1" %*

O35 - HKLM\..exefile [open] -- "%1" %*

O37 - HKLM\...com [@ = comfile] -- "%1" %*

O37 - HKLM\...exe [@ = exefile] -- "%1" %*

O37 - HKCU\...com [@ = ComFile] -- Reg Error: Key error. File not found

O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)

O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)

 
 ========== Files/Folders - Created Within 30 Days ==========

 

[2013.06.02 22:04:24 | 000,029,816 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswFsBlk.sys

[2013.06.02 22:04:24 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\avast! Free Antivirus

[2013.06.02 22:04:23 | 000,368,944 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswSP.sys

[2013.06.02 22:04:19 | 000,049,760 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswRdr.sys

[2013.06.02 22:04:18 | 000,056,080 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswTdi.sys

[2013.06.02 22:04:17 | 000,765,736 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswSnx.sys

[2013.06.02 22:04:10 | 000,066,336 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswMonFlt.sys

[2013.06.02 22:04:09 | 000,229,648 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\aswBoot.exe

[2013.06.02 22:00:54 | 000,041,664 | ---- | C] (AVAST Software) -- C:\WINDOWS\avastSS.scr

[2013.06.02 21:54:22 | 000,000,000 | ---D | C] -- C:\Programme\AVAST Software

[2013.06.02 21:53:17 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\AVAST Software

[2013.06.02 21:27:29 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\clk\Lokale Einstellungen\Anwendungsdaten\PCHealth

[2013.06.02 11:04:04 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\clk\Desktop\Habe um meinen PC zu schützen VIELE Schutzprogramme incl. Viren runtergeladen  -( - Trojaner-Board_files

[2013.06.01 22:14:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\pss

[2013.06.01 21:11:20 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\NetworkService\Lokale Einstellungen\Anwendungsdaten\Adobe

[2013.06.01 20:57:51 | 000,000,000 | ---D | C] -- C:\WINDOWS\SoftwareDistribution

[2013.06.01 20:31:36 | 000,204,496 | ---- | C] (Malwarebytes) -- C:\Dokumente und Einstellungen\clk\Desktop\startuplite-setup-1.07.exe

[2013.06.01 20:29:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot2

[2013.06.01 18:26:07 | 000,000,000 | ---D | C] -- C:\RegBackup

[2013.06.01 18:02:36 | 000,116,736 | ---- | C] (Xerox) -- C:\WINDOWS\System32\dllcache\xrxwiadr.dll

[2013.06.01 18:02:31 | 000,023,040 | ---- | C] (Xerox Corporation) -- C:\WINDOWS\System32\dllcache\xrxwbtmp.dll

[2013.06.01 18:02:05 | 000,099,865 | ---- | C] (Eicon Technology) -- C:\WINDOWS\System32\dllcache\xlog.exe

[2013.06.01 18:01:01 | 000,016,970 | ---- | C] (US Robotics MCD (Megahertz)) -- C:\WINDOWS\System32\dllcache\xem336n5.sys

[2013.06.01 17:59:19 | 000,154,624 | ---- | C] (Lucent Technologies) -- C:\WINDOWS\System32\dllcache\wlluc48.sys

[2013.06.01 17:59:14 | 000,035,402 | ---- | C] (Raytheon Corp.) -- C:\WINDOWS\System32\dllcache\wlandrv2.sys

[2013.06.01 17:58:53 | 000,771,581 | ---- | C] (Rockwell) -- C:\WINDOWS\System32\dllcache\winacisa.sys

[2013.06.01 17:58:18 | 000,035,871 | ---- | C] (Winbond Electronics Corp.) -- C:\WINDOWS\System32\dllcache\wbfirdma.sys

[2013.06.01 17:57:51 | 000,016,925 | ---- | C] (Winbond Electronics Corporation) -- C:\WINDOWS\System32\dllcache\w940nd.sys

[2013.06.01 17:57:45 | 000,019,016 | ---- | C] (Winbond Electronics Corporation) -- C:\WINDOWS\System32\dllcache\w926nd.sys

[2013.06.01 17:57:39 | 000,019,528 | ---- | C] (Winbond Electronics Corporation) -- C:\WINDOWS\System32\dllcache\w840nd.sys

[2013.06.01 17:57:31 | 000,064,605 | ---- | C] (PCtel, Inc.) -- C:\WINDOWS\System32\dllcache\vvoice.sys

[2013.06.01 17:57:24 | 000,397,502 | ---- | C] (PCtel, Inc.) -- C:\WINDOWS\System32\dllcache\vpctcom.sys

[2013.06.01 17:57:17 | 000,604,253 | ---- | C] (PCTEL, INC.) -- C:\WINDOWS\System32\dllcache\vmodem.sys

[2013.06.01 17:57:10 | 000,249,402 | ---- | C] (Xircom) -- C:\WINDOWS\System32\dllcache\vinwm.sys

[2013.06.01 17:56:43 | 000,765,884 | ---- | C] (U.S. Robotics, Inc.) -- C:\WINDOWS\System32\dllcache\usrti.sys

[2013.06.01 17:56:16 | 000,794,399 | ---- | C] (U.S. Robotics, Inc.) -- C:\WINDOWS\System32\dllcache\usr1806v.sys

[2013.06.01 17:56:10 | 000,793,598 | ---- | C] (U.S. Robotics, Inc.) -- C:\WINDOWS\System32\dllcache\usr1806.sys

[2013.06.01 17:56:05 | 000,794,654 | ---- | C] (U.S. Robotics, Inc.) -- C:\WINDOWS\System32\dllcache\usr1801.sys

[2013.06.01 17:55:50 | 000,032,384 | ---- | C] (KLSI USA, Inc.) -- C:\WINDOWS\System32\dllcache\usb101et.sys

[2013.06.01 17:55:14 | 000,050,688 | ---- | C] (UMAX DATA SYSTEMS INC.) -- C:\WINDOWS\System32\dllcache\umaxscan.dll

[2013.06.01 17:54:50 | 000,212,480 | ---- | C] (UMAX Data Systems Inc.) -- C:\WINDOWS\System32\dllcache\um54scan.dll

[2013.06.01 17:54:44 | 000,216,576 | ---- | C] (UMAX Data Systems Inc.) -- C:\WINDOWS\System32\dllcache\um34scan.dll

[2013.06.01 17:54:17 | 000,166,784 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS\System32\dllcache\tridxpm.sys

[2013.06.01 17:54:11 | 000,525,568 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS\System32\dllcache\tridxp.dll

[2013.06.01 17:54:05 | 000,159,232 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS\System32\dllcache\tridkbm.sys

[2013.06.01 17:53:59 | 000,440,576 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS\System32\dllcache\tridkb.dll

[2013.06.01 17:53:53 | 000,222,336 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS\System32\dllcache\trid3dm.sys

[2013.06.01 17:53:46 | 000,315,520 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS\System32\dllcache\trid3d.dll

[2013.06.01 17:52:44 | 000,123,995 | ---- | C] (Tiger Jet Network) -- C:\WINDOWS\System32\dllcache\tjisdn.sys

[2013.06.01 17:52:34 | 000,138,528 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS\System32\dllcache\tgiulnt5.sys

[2013.06.01 17:52:27 | 000,081,408 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS\System32\dllcache\tgiul50.dll

[2013.06.01 17:52:25 | 000,149,376 | ---- | C] (M-Systems) -- C:\WINDOWS\System32\dllcache\tffsport.sys

[2013.06.01 17:52:16 | 000,017,129 | ---- | C] (TDK Corporation) -- C:\WINDOWS\System32\dllcache\tdkcd31.sys

[2013.06.01 17:52:10 | 000,037,961 | ---- | C] (TDK Corporation) -- C:\WINDOWS\System32\dllcache\tdk100b.sys

[2013.06.01 17:51:50 | 000,036,640 | ---- | C] (Number Nine Visual Technology Corp.) -- C:\WINDOWS\System32\dllcache\t2r4mini.sys

[2013.06.01 17:51:44 | 000,172,768 | ---- | C] (Number Nine Visual Technology) -- C:\WINDOWS\System32\dllcache\t2r4disp.dll

[2013.06.01 17:50:27 | 000,159,744 | ---- | C] (Stallion Technologies) -- C:\WINDOWS\System32\dllcache\stlnprop.dll

[2013.06.01 17:50:21 | 000,053,248 | ---- | C] (Stallion Technologies) -- C:\WINDOWS\System32\dllcache\stlncoin.dll

[2013.06.01 17:50:16 | 000,287,232 | ---- | C] (Stallion Technologies) -- C:\WINDOWS\System32\dllcache\stlnata.sys

[2013.06.01 17:50:09 | 000,017,152 | ---- | C] (SCM Microsystems, Inc.) -- C:\WINDOWS\System32\dllcache\stcusb.sys

[2013.06.01 17:50:01 | 000,048,736 | ---- | C] (3Com) -- C:\WINDOWS\System32\dllcache\srwlnd5.sys

[2013.06.01 17:49:23 | 000,019,072 | ---- | C] (Adaptec, Inc.) -- C:\WINDOWS\System32\dllcache\sparrow.sys

[2013.06.01 17:48:25 | 000,058,368 | ---- | C] (Silicon Motion Inc.) -- C:\WINDOWS\System32\dllcache\smiminib.sys

[2013.06.01 17:48:19 | 000,147,200 | ---- | C] (Silicon Motion Inc.) -- C:\WINDOWS\System32\dllcache\smidispb.dll

[2013.06.01 17:48:11 | 000,025,034 | ---- | C] (SMC Networks, Inc.) -- C:\WINDOWS\System32\dllcache\smcpwr2n.sys

[2013.06.01 17:48:06 | 000,035,913 | ---- | C] (SMC) -- C:\WINDOWS\System32\dllcache\smcirda.sys

[2013.06.01 17:48:00 | 000,024,576 | ---- | C] (SMC Networks, Inc.) -- C:\WINDOWS\System32\dllcache\smc8000n.sys

[2013.06.01 17:47:16 | 000,063,547 | ---- | C] (Symbol Technologies) -- C:\WINDOWS\System32\dllcache\sla30nd5.sys

[2013.06.01 17:47:11 | 000,091,294 | ---- | C] (SysKonnect, a business unit of Schneider & Koch & Co. Datensysteme GmbH.) -- C:\WINDOWS\System32\dllcache\skfpwin.sys

[2013.06.01 17:47:05 | 000,095,178 | ---- | C] (SysKonnect GmbH.) -- C:\WINDOWS\System32\dllcache\sk98xwin.sys

[2013.06.01 17:46:53 | 000,032,768 | ---- | C] (SiS Corporation) -- C:\WINDOWS\System32\dllcache\sisnic.sys

[2013.06.01 17:45:38 | 000,161,888 | ---- | C] (Micro Systemation) -- C:\WINDOWS\System32\dllcache\sgsmusb.sys

[2013.06.01 17:45:32 | 000,018,400 | ---- | C] (Micro Systemation) -- C:\WINDOWS\System32\dllcache\sgsmld.sys

[2013.06.01 17:45:27 | 000,098,080 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS\System32\dllcache\sgiulnt5.sys

[2013.06.01 17:45:21 | 000,386,560 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS\System32\dllcache\sgiul50.dll

[2013.06.01 17:44:35 | 000,017,792 | ---- | C] (SCM Microsystems) -- C:\WINDOWS\System32\dllcache\scr111.sys

[2013.06.01 17:44:24 | 000,023,936 | ---- | C] (OMNIKEY AG) -- C:\WINDOWS\System32\dllcache\sccmusbm.sys

[2013.06.01 17:44:19 | 000,024,192 | ---- | C] (OMNIKEY AG) -- C:\WINDOWS\System32\dllcache\sccmn50m.sys

[2013.06.01 17:43:45 | 000,077,824 | ---- | C] (S3 Incorporated) -- C:\WINDOWS\System32\dllcache\s3sav4m.sys

[2013.06.01 17:43:40 | 000,198,400 | ---- | C] (S3 Incorporated) -- C:\WINDOWS\System32\dllcache\s3sav4.dll

[2013.06.01 17:43:35 | 000,061,504 | ---- | C] (S3 Incorporated) -- C:\WINDOWS\System32\dllcache\s3sav3dm.sys

[2013.06.01 17:43:30 | 000,179,264 | ---- | C] (S3 Incorporated) -- C:\WINDOWS\System32\dllcache\s3sav3d.dll

[2013.06.01 17:43:25 | 000,210,496 | ---- | C] (S3 Incorporated) -- C:\WINDOWS\System32\dllcache\s3mvirge.dll

[2013.06.01 17:43:21 | 000,062,496 | ---- | C] (S3 Incorporated) -- C:\WINDOWS\System32\dllcache\s3mtrio.dll

[2013.06.01 17:43:14 | 000,041,216 | ---- | C] (S3 Incorporated) -- C:\WINDOWS\System32\dllcache\s3mt3d.sys

[2013.06.01 17:43:10 | 000,182,272 | ---- | C] (S3 Incorporated) -- C:\WINDOWS\System32\dllcache\s3mt3d.dll

[2013.06.01 17:43:06 | 000,166,720 | ---- | C] (S3 Incorporated) -- C:\WINDOWS\System32\dllcache\s3m.sys

[2013.06.01 17:42:54 | 000,083,968 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia450.dll

[2013.06.01 17:42:50 | 000,081,408 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia430.dll

[2013.06.01 17:42:49 | 000,081,408 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia330.dll

[2013.06.01 17:42:49 | 000,081,408 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia001.dll

[2013.06.01 17:42:47 | 000,029,696 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rw450ext.dll

[2013.06.01 17:42:46 | 000,027,648 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rw430ext.dll

[2013.06.01 17:42:25 | 000,010,752 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS\System32\dllcache\rsmgrstr.dll

[2013.06.01 17:42:09 | 000,079,360 | ---- | C] (Comtrol Corporation) -- C:\WINDOWS\System32\dllcache\rocket.sys

[2013.06.01 17:42:03 | 000,037,563 | ---- | C] (RadioLAN) -- C:\WINDOWS\System32\dllcache\rlnet5.sys

[2013.06.01 17:41:23 | 000,715,242 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS\System32\dllcache\r2mdmkxx.sys

[2013.06.01 17:41:17 | 000,899,658 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS\System32\dllcache\r2mdkxga.sys

[2013.06.01 17:40:19 | 000,130,942 | ---- | C] (PCTEL, INC.) -- C:\WINDOWS\System32\dllcache\ptserlv.sys

[2013.06.01 17:40:14 | 000,112,574 | ---- | C] (PCTEL, INC.) -- C:\WINDOWS\System32\dllcache\ptserlp.sys

[2013.06.01 17:40:09 | 000,128,286 | ---- | C] (PCTEL, INC.) -- C:\WINDOWS\System32\dllcache\ptserli.sys

[2013.06.01 17:39:50 | 000,016,384 | ---- | C] (SCM Microsystems, Inc.) -- C:\WINDOWS\System32\dllcache\pscr.sys

[2013.06.01 17:38:24 | 000,086,016 | ---- | C] (PCtel, Inc.) -- C:\WINDOWS\System32\dllcache\pctspk.exe

[2013.06.01 17:38:06 | 000,026,153 | ---- | C] (Linksys) -- C:\WINDOWS\System32\dllcache\pcmlm56.sys

[2013.06.01 17:37:53 | 000,029,502 | ---- | C] (Marconi Communications, Inc.) -- C:\WINDOWS\System32\dllcache\pca200e.sys

[2013.06.01 17:37:48 | 000,030,495 | ---- | C] (Linksys) -- C:\WINDOWS\System32\dllcache\pc100nds.sys

[2013.06.01 17:36:46 | 000,054,730 | ---- | C] (Ositech Communications, Inc.) -- C:\WINDOWS\System32\dllcache\otcsercb.sys

[2013.06.01 17:36:37 | 000,027,209 | ---- | C] (Ositech Communications, Inc.) -- C:\WINDOWS\System32\dllcache\otc06x5.sys

[2013.06.01 17:36:32 | 000,054,528 | ---- | C] (Yamaha Corp.) -- C:\WINDOWS\System32\dllcache\opl3sax.sys

[2013.06.01 17:35:42 | 000,051,552 | ---- | C] (Kensington Technology Group) -- C:\WINDOWS\System32\dllcache\ntgrip.sys

[2013.06.01 17:35:18 | 000,087,040 | ---- | C] (NeoMagic Corporation) -- C:\WINDOWS\System32\dllcache\nm6wdm.sys

[2013.06.01 17:35:13 | 000,126,080 | ---- | C] (NeoMagic Corporation) -- C:\WINDOWS\System32\dllcache\nm5a2wdm.sys

[2013.06.01 17:34:54 | 000,132,695 | ---- | C] (802.11b) -- C:\WINDOWS\System32\dllcache\netwlan5.sys

[2013.06.01 17:34:36 | 000,039,264 | ---- | C] (NeoMagic Corporation) -- C:\WINDOWS\System32\dllcache\neo20xx.sys

[2013.06.01 17:34:32 | 000,060,480 | ---- | C] (NeoMagic Corporation) -- C:\WINDOWS\System32\dllcache\neo20xx.dll

[2013.06.01 17:34:17 | 000,091,488 | ---- | C] (Number Nine Visual Technology Corp.) -- C:\WINDOWS\System32\dllcache\n9i3disp.dll

[2013.06.01 17:34:12 | 000,027,936 | ---- | C] (Number Nine Visual Technology Corp.) -- C:\WINDOWS\System32\dllcache\n9i3d.sys

[2013.06.01 17:34:08 | 000,033,088 | ---- | C] (Number Nine Visual Technology Corp.) -- C:\WINDOWS\System32\dllcache\n9i128v2.sys

[2013.06.01 17:34:04 | 000,059,104 | ---- | C] (Number Nine Visual Technology Corp.) -- C:\WINDOWS\System32\dllcache\n9i128v2.dll

[2013.06.01 17:33:59 | 000,013,664 | ---- | C] (Number Nine Visual Technology Corp.) -- C:\WINDOWS\System32\dllcache\n9i128.sys

[2013.06.01 17:33:55 | 000,035,392 | ---- | C] (Number Nine Visual Technology Corp.) -- C:\WINDOWS\System32\dllcache\n9i128.dll

[2013.06.01 17:33:42 | 000,076,288 | ---- | C] (Moxa Technologies Co., Ltd.) -- C:\WINDOWS\System32\dllcache\mxport.sys

[2013.06.01 17:33:38 | 000,007,168 | ---- | C] (Moxa Technologies Co., Ltd) -- C:\WINDOWS\System32\dllcache\mxport.dll

[2013.06.01 17:33:35 | 000,019,968 | ---- | C] (Macronix International Co., Ltd.                                               ) -- C:\WINDOWS\System32\dllcache\mxnic.sys

[2013.06.01 17:33:31 | 000,020,480 | ---- | C] (Moxa Technologies Co., Ltd) -- C:\WINDOWS\System32\dllcache\mxicfg.dll

[2013.06.01 17:33:27 | 000,022,144 | ---- | C] (Moxa Technologies Co., Ltd.) -- C:\WINDOWS\System32\dllcache\mxcard.sys

[2013.06.01 17:30:36 | 000,017,280 | ---- | C] (American Megatrends Inc.) -- C:\WINDOWS\System32\dllcache\mraid35x.sys

[2013.06.01 17:29:32 | 000,164,970 | ---- | C] (Madge Networks Ltd) -- C:\WINDOWS\System32\dllcache\mdgndis5.sys

[2013.06.01 17:28:53 | 000,797,500 | ---- | C] (LT) -- C:\WINDOWS\System32\dllcache\ltsmt.sys

[2013.06.01 17:28:48 | 000,802,683 | ---- | C] (Lucent Technologies) -- C:\WINDOWS\System32\dllcache\ltsm.sys

[2013.06.01 17:28:47 | 000,422,016 | ---- | C] (LT) -- C:\WINDOWS\System32\dllcache\ltmdmntt.sys

[2013.06.01 17:28:42 | 000,577,226 | ---- | C] (LT) -- C:\WINDOWS\System32\dllcache\ltmdmntl.sys

[2013.06.01 17:28:41 | 000,607,196 | ---- | C] (LT) -- C:\WINDOWS\System32\dllcache\ltmdmnt.sys

[2013.06.01 17:28:37 | 000,728,298 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS\System32\dllcache\ltck000c.sys

[2013.06.01 17:28:25 | 000,070,730 | ---- | C] (Linksys Group, Inc.) -- C:\WINDOWS\System32\dllcache\lne100tx.sys

[2013.06.01 17:28:21 | 000,020,573 | ---- | C] (The Linksts Group ) -- C:\WINDOWS\System32\dllcache\lne100.sys

[2013.06.01 17:28:17 | 000,025,065 | ---- | C] (D-Link) -- C:\WINDOWS\System32\dllcache\lmndis3.sys

[2013.06.01 17:28:13 | 000,016,256 | ---- | C] (Litronic Industries) -- C:\WINDOWS\System32\dllcache\lit220p.sys

[2013.06.01 17:28:07 | 000,026,506 | ---- | C] (SMSC) -- C:\WINDOWS\System32\dllcache\lanepic5.sys

[2013.06.01 17:28:03 | 000,019,016 | ---- | C] (Kingston Technology Company                                                             ) -- C:\WINDOWS\System32\dllcache\ktc111.sys

[2013.06.01 17:27:00 | 000,023,552 | ---- | C] (MKNet Corporation) -- C:\WINDOWS\System32\dllcache\irmk7.sys

[2013.06.01 17:25:59 | 000,372,824 | ---- | C] (Xircom) -- C:\WINDOWS\System32\dllcache\iconf32.dll

[2013.06.01 17:22:47 | 000,068,608 | ---- | C] (Avisioin) -- C:\WINDOWS\System32\dllcache\hpgt53tk.dll

[2013.06.01 17:22:33 | 000,126,976 | ---- | C] (Hewlett Packard) -- C:\WINDOWS\System32\dllcache\hpgt34tk.dll

[2013.06.01 17:21:43 | 000,028,672 | ---- | C] (Gemplus) -- C:\WINDOWS\System32\dllcache\grserial.sys

[2013.06.01 17:21:39 | 000,082,560 | ---- | C] (Gemplus) -- C:\WINDOWS\System32\dllcache\grclass.sys

[2013.06.01 17:21:36 | 000,017,792 | ---- | C] (Gemplus) -- C:\WINDOWS\System32\dllcache\gpr400.sys

[2013.06.01 17:21:15 | 000,454,912 | ---- | C] (AVM GmbH) -- C:\WINDOWS\System32\dllcache\fxusbase.sys

[2013.06.01 17:21:00 | 000,455,296 | ---- | C] (AVM GmbH) -- C:\WINDOWS\System32\dllcache\fusbbase.sys

[2013.06.01 17:20:56 | 000,455,680 | ---- | C] (AVM GmbH) -- C:\WINDOWS\System32\dllcache\fus2base.sys

[2013.06.01 17:20:52 | 000,442,240 | ---- | C] (AVM GmbH) -- C:\WINDOWS\System32\dllcache\fpnpbase.sys

[2013.06.01 17:20:49 | 000,441,728 | ---- | C] (AVM GmbH) -- C:\WINDOWS\System32\dllcache\fpcmbase.sys

[2013.06.01 17:20:46 | 000,444,416 | ---- | C] (AVM GmbH) -- C:\WINDOWS\System32\dllcache\fpcibase.sys

[2013.06.01 17:20:44 | 000,034,173 | ---- | C] (Marconi Communications, Inc.) -- C:\WINDOWS\System32\dllcache\forehe.sys

[2013.06.01 17:20:22 | 000,024,618 | ---- | C] (NETGEAR) -- C:\WINDOWS\System32\dllcache\fa410nd5.sys

[2013.06.01 17:20:16 | 000,011,850 | ---- | C] (FUJITSU LIMITED) -- C:\WINDOWS\System32\dllcache\f3ab18xj.sys

[2013.06.01 17:20:14 | 000,012,362 | ---- | C] (FUJITSU LIMITED) -- C:\WINDOWS\System32\dllcache\f3ab18xi.sys

[2013.06.01 17:18:06 | 000,334,208 | ---- | C] (Yamaha Corp.) -- C:\WINDOWS\System32\dllcache\ds1wdm.sys

[2013.06.01 17:17:58 | 000,028,062 | ---- | C] (National Semiconductor Coproration) -- C:\WINDOWS\System32\dllcache\dp83820.sys

[2013.06.01 17:17:46 | 000,029,696 | ---- | C] (CNet Technology, Inc.                                                    ) -- C:\WINDOWS\System32\dllcache\dm9pci5.sys

[2013.06.01 17:17:44 | 000,026,698 | ---- | C] (D-Link Corporation) -- C:\WINDOWS\System32\dllcache\dlh5xnd5.sys

[2013.06.01 17:17:42 | 000,952,007 | ---- | C] (Eicon Technology) -- C:\WINDOWS\System32\dllcache\diwan.sys

[2013.06.01 17:17:36 | 000,236,060 | ---- | C] (Eicon Technology) -- C:\WINDOWS\System32\dllcache\ditrace.exe

[2013.06.01 17:17:34 | 000,038,985 | ---- | C] (Eicon Technology) -- C:\WINDOWS\System32\dllcache\disrvsu.dll

[2013.06.01 17:17:31 | 000,006,729 | ---- | C] (Eicon Technology) -- C:\WINDOWS\System32\dllcache\disrvci.dll

[2013.06.01 17:17:26 | 000,091,305 | ---- | C] (Eicon Technology) -- C:\WINDOWS\System32\dllcache\dimaint.sys

[2013.06.01 17:16:57 | 000,024,649 | ---- | C] (D-Link) -- C:\WINDOWS\System32\dllcache\dfe650d.sys

[2013.06.01 17:16:55 | 000,024,648 | ---- | C] (D-Link) -- C:\WINDOWS\System32\dllcache\dfe650.sys

[2013.06.01 17:16:50 | 000,020,928 | ---- | C] (Digital Networks, LLC) -- C:\WINDOWS\System32\dllcache\defpa.sys

[2013.06.01 17:16:16 | 000,048,640 | ---- | C] (Crystal Semiconductor Corp.) -- C:\WINDOWS\System32\dllcache\cwrwdm.sys

[2013.06.01 17:16:15 | 000,093,952 | ---- | C] (Crystal Semiconductor Corp.) -- C:\WINDOWS\System32\dllcache\cwcwdm.sys

[2013.06.01 17:16:14 | 000,111,872 | ---- | C] (Crystal Semiconductor Corp.) -- C:\WINDOWS\System32\dllcache\cwcspud.sys

[2013.06.01 17:16:12 | 000,003,584 | ---- | C] (Crystal Semiconductor Corp.) -- C:\WINDOWS\System32\dllcache\cwcosnt5.sys

[2013.06.01 17:16:11 | 000,072,832 | ---- | C] (Crystal Semiconductor Corp.) -- C:\WINDOWS\System32\dllcache\cwbwdm.sys

[2013.06.01 17:16:10 | 000,003,072 | ---- | C] (Crystal Semiconductor Corp.) -- C:\WINDOWS\System32\dllcache\cwbmidi.sys

[2013.06.01 17:16:08 | 000,003,072 | ---- | C] (Crystal Semiconductor Corp.) -- C:\WINDOWS\System32\dllcache\cwbase.sys

[2013.06.01 17:16:06 | 000,252,928 | ---- | C] (Comtrol® Corporation) -- C:\WINDOWS\System32\dllcache\ctmasetp.dll

[2013.06.01 17:15:55 | 000,216,576 | ---- | C] (COMPAQ Inc.) -- C:\WINDOWS\System32\dllcache\cpscan.dll

[2013.06.01 17:15:30 | 000,020,864 | ---- | C] (OMNIKEY AG) -- C:\WINDOWS\System32\dllcache\cmbp0wdm.sys

[2013.06.01 17:15:18 | 000,980,034 | ---- | C] (Xircom) -- C:\WINDOWS\System32\dllcache\cicap.sys

[2013.06.01 17:15:07 | 000,049,182 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS\System32\dllcache\cem56n5.sys

[2013.06.01 17:15:06 | 000,022,556 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS\System32\dllcache\cem33n5.sys

[2013.06.01 17:15:05 | 000,027,164 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS\System32\dllcache\ce3n5.sys

[2013.06.01 17:15:05 | 000,022,556 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS\System32\dllcache\cem28n5.sys

[2013.06.01 17:15:04 | 000,021,530 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS\System32\dllcache\ce2n5.sys

[2013.06.01 17:14:58 | 000,715,210 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS\System32\dllcache\cbmdmkxx.sys

[2013.06.01 17:14:57 | 000,046,108 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS\System32\dllcache\cben5.sys

[2013.06.01 17:14:56 | 000,039,680 | ---- | C] (Silicom Ltd.) -- C:\WINDOWS\System32\dllcache\cb325.sys

[2013.06.01 17:14:55 | 000,037,916 | ---- | C] (Fast Ethernet Controller Provider) -- C:\WINDOWS\System32\dllcache\cb102.sys

[2013.06.01 17:14:53 | 000,032,256 | ---- | C] (Eicon Technology Corporation) -- C:\WINDOWS\System32\dllcache\diapi2NT.dll

[2013.06.01 17:14:43 | 000,164,923 | ---- | C] (Eicon Technology) -- C:\WINDOWS\System32\dllcache\diapi2.sys

[2013.06.01 17:14:43 | 000,054,528 | ---- | C] (Philips Semiconductors GmbH) -- C:\WINDOWS\System32\dllcache\cap7146.sys

[2013.06.01 17:14:04 | 000,031,529 | ---- | C] (BreezeCOM) -- C:\WINDOWS\System32\dllcache\brzwlan.sys

[2013.06.01 17:14:04 | 000,010,368 | ---- | C] (Brother Industries Ltd.) -- C:\WINDOWS\System32\dllcache\brusbscn.sys

[2013.06.01 17:14:03 | 000,060,416 | ---- | C] (Brother Industries Ltd.) -- C:\WINDOWS\System32\dllcache\brserwdm.sys

[2013.06.01 17:14:03 | 000,011,008 | ---- | C] (Brother Industries Ltd.) -- C:\WINDOWS\System32\dllcache\brusbmdm.sys

[2013.06.01 17:14:02 | 000,009,728 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS\System32\dllcache\brserif.dll

[2013.06.01 17:14:01 | 000,005,120 | ---- | C] (Brother Industries,Ltd.) -- C:\WINDOWS\System32\dllcache\brscnrsm.dll

[2013.06.01 17:14:00 | 000,039,808 | ---- | C] (Brother Industries Ltd.) -- C:\WINDOWS\System32\dllcache\brparwdm.sys

[2013.06.01 17:13:59 | 000,003,168 | ---- | C] (Brother Industries Ltd.) -- C:\WINDOWS\System32\dllcache\brparimg.sys

[2013.06.01 17:13:57 | 000,041,472 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS\System32\dllcache\brmfusb.dll

[2013.06.01 17:13:56 | 000,032,256 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS\System32\dllcache\brmfrsmg.exe

[2013.06.01 17:13:56 | 000,029,696 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS\System32\dllcache\brmflpt.dll

[2013.06.01 17:13:54 | 000,015,360 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS\System32\dllcache\brmfbidi.dll

[2013.06.01 17:13:53 | 000,012,160 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS\System32\dllcache\brfiltlo.sys

[2013.06.01 17:13:53 | 000,003,968 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS\System32\dllcache\brfiltup.sys

[2013.06.01 17:13:52 | 000,002,944 | ---- | C] (Brother Industries Ltd.) -- C:\WINDOWS\System32\dllcache\brfilt.sys

[2013.06.01 17:13:51 | 000,012,800 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS\System32\dllcache\brevif.dll

[2013.06.01 17:13:50 | 000,009,728 | ---- | C] (Brother Industries Ltd.) -- C:\WINDOWS\System32\dllcache\brcoinst.dll

[2013.06.01 17:13:49 | 000,019,456 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS\System32\dllcache\brbidiif.dll

[2013.06.01 17:13:44 | 000,871,388 | ---- | C] (BCM) -- C:\WINDOWS\System32\dllcache\bcmdm.sys

[2013.06.01 17:13:40 | 000,036,128 | ---- | C] (3Dfx Interactive, Inc.) -- C:\WINDOWS\System32\dllcache\banshee.sys

[2013.06.01 17:13:39 | 000,342,336 | ---- | C] (3Dfx Interactive, Inc.) -- C:\WINDOWS\System32\dllcache\banshee.dll

[2013.06.01 17:13:38 | 000,089,952 | ---- | C] (AVM GmbH) -- C:\WINDOWS\System32\dllcache\b1cbase.sys

[2013.06.01 17:13:37 | 000,036,992 | ---- | C] (Aztech Systems Ltd) -- C:\WINDOWS\System32\dllcache\aztw2320.sys

[2013.06.01 17:13:36 | 000,144,384 | ---- | C] (AVM GmbH) -- C:\WINDOWS\System32\dllcache\avmenum.dll

[2013.06.01 17:13:36 | 000,037,568 | ---- | C] (AVM GmbH) -- C:\WINDOWS\System32\dllcache\avmwan.sys

[2013.06.01 17:13:35 | 000,087,552 | ---- | C] (AVM GmbH) -- C:\WINDOWS\System32\dllcache\avmcoxp.dll

[2013.06.01 17:13:02 | 000,097,354 | ---- | C] (Bay Networks, Inc.) -- C:\WINDOWS\System32\dllcache\aspndis3.sys

[2013.06.01 17:12:56 | 000,016,969 | ---- | C] (AmbiCom, Inc.) -- C:\WINDOWS\System32\dllcache\amb8002.sys

[2013.06.01 17:12:32 | 000,046,112 | ---- | C] (Adaptec, Inc ) -- C:\WINDOWS\System32\dllcache\adptsf50.sys

[2013.06.01 17:12:31 | 000,010,880 | ---- | C] (Aureal, Inc.) -- C:\WINDOWS\System32\dllcache\admjoy.sys

[2013.06.01 17:12:30 | 000,747,392 | ---- | C] (Aureal, Inc.) -- C:\WINDOWS\System32\dllcache\adm8830.sys

[2013.06.01 17:12:30 | 000,553,984 | ---- | C] (Aureal, Inc.) -- C:\WINDOWS\System32\dllcache\adm8820.sys

[2013.06.01 17:12:29 | 000,584,448 | ---- | C] (Aureal, Inc.) -- C:\WINDOWS\System32\dllcache\adm8810.sys

[2013.06.01 17:12:25 | 000,061,952 | ---- | C] (Farb-Flachbett-Scanner) -- C:\WINDOWS\System32\dllcache\acerscad.dll

[2013.06.01 17:12:21 | 000,462,848 | ---- | C] (Aureal Inc.) -- C:\WINDOWS\System32\dllcache\a3dapi.dll

[2013.06.01 17:12:21 | 000,098,304 | ---- | C] (Aureal Semiconductor) -- C:\WINDOWS\System32\dllcache\a3d.dll

[2013.06.01 17:12:18 | 000,689,216 | ---- | C] (3dfx Interactive, Inc.) -- C:\WINDOWS\System32\dllcache\3dfxvs.dll

[2013.06.01 17:12:18 | 000,148,352 | ---- | C] (3dfx Interactive, Inc.) -- C:\WINDOWS\System32\dllcache\3dfxvsm.sys

[2013.06.01 17:12:16 | 000,762,780 | ---- | C] (3Com, Inc.) -- C:\WINDOWS\System32\dllcache\3cwmcru.sys

[2013.06.01 10:50:40 | 000,181,064 | ---- | C] (Sysinternals) -- C:\WINDOWS\PSEXESVC.EXE

[2013.05.31 15:42:11 | 000,000,000 | ---D | C] -- C:\_OTL

[2013.05.30 19:07:41 | 002,347,384 | ---- | C] (ESET) -- C:\Dokumente und Einstellungen\clk\Desktop\esetsmartinstaller_enu.exe

[2013.05.30 15:58:36 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\clk\Desktop\gesendete Logfiles

[2013.05.30 15:47:50 | 000,000,000 | ---D | C] -- C:\FRST

[2013.05.30 15:47:06 | 001,355,491 | ---- | C] (Farbar) -- C:\Dokumente und Einstellungen\clk\Desktop\FRST.exe

[2013.05.30 01:12:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\ERUNT

[2013.05.30 01:12:24 | 000,000,000 | ---D | C] -- C:\JRT

[2013.05.30 01:11:57 | 000,545,954 | ---- | C] (Oleg N. Scherbakov) -- C:\Dokumente und Einstellungen\clk\Desktop\JRT.exe

[2013.05.30 00:16:11 | 000,000,000 | -HSD | C] -- C:\RECYCLER

[2013.05.30 00:12:54 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\clk\Desktop\RK_Quarantine

[2013.05.29 23:41:04 | 000,000,000 | RHSD | C] -- C:\cmdcons

[2013.05.29 23:37:27 | 000,518,144 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWREG.exe

[2013.05.29 23:37:27 | 000,406,528 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWSC.exe

[2013.05.29 23:37:27 | 000,212,480 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWXCACLS.exe

[2013.05.29 23:37:27 | 000,060,416 | ---- | C] (NirSoft) -- C:\WINDOWS\NIRCMD.exe

[2013.05.29 23:36:57 | 000,000,000 | ---D | C] -- C:\Qoobox

[2013.05.29 23:34:32 | 000,000,000 | ---D | C] -- C:\WINDOWS\erdnt

[2013.05.29 10:28:10 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Dokumente und Einstellungen\clk\Desktop\OTL.exe

[2013.05.27 23:54:40 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\StarApp

[2013.05.26 20:38:36 | 000,000,000 | ---D | C] -- C:\Programme\Uninstaller

[2013.05.26 20:34:28 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\clk\Anwendungsdaten\player

[2013.05.25 21:21:13 | 000,000,000 | R--D | C] -- C:\Dokumente und Einstellungen\clk\Recent

[2013.05.24 01:02:06 | 000,000,000 | ---D | C] -- C:\Programme\LyricsFan

[2013.05.24 01:01:31 | 000,000,000 | ---D | C] -- C:\Programme\FindLyrics

[2013.05.23 23:49:17 | 000,000,000 | ---D | C] -- C:\Programme\SystemRequirementsLab

[2013.05.13 23:10:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\Lhsp

[2013.05.13 23:09:33 | 000,000,000 | ---D | C] -- C:\WINDOWS\speech

[2013.05.13 23:09:24 | 000,000,000 | ---D | C] -- C:\Programme\MWS Reader 4

[2013.05.08 23:18:53 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\clk\AppData

[2012.06.15 22:11:23 | 000,894,448 | ---- | C] (Oracle Corporation) -- C:\Programme\chromeinstall-7u5.exe

 
 ========== Files - Modified Within 30 Days ==========

 

[2013.06.03 14:15:05 | 000,001,084 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job

[2013.06.03 14:09:03 | 000,000,884 | ---- | M] () -- C:\WINDOWS\tasks\Adobe Flash Player Updater.job

[2013.06.03 13:52:47 | 000,001,202 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-2044978897-1172690549-42215457-1007UA.job

[2013.06.03 13:27:05 | 000,000,350 | -H-- | M] () -- C:\WINDOWS\tasks\avast! Emergency Update.job

[2013.06.03 13:16:16 | 000,000,350 | ---- | M] () -- C:\WINDOWS\tasks\Lyrics Fan Update.job

[2013.06.03 13:16:04 | 000,001,080 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job

[2013.06.03 13:05:51 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat

[2013.06.03 13:05:48 | 1073,201,152 | -HS- | M] () -- C:\hiberfil.sys

[2013.06.02 23:40:19 | 000,284,971 | ---- | M] () -- C:\Dokumente und Einstellungen\clk\Desktop\Zwischenablage01.jpg

[2013.06.02 22:04:26 | 000,001,653 | ---- | M] () -- C:\Dokumente und Einstellungen\All Users\Desktop\avast! Free Antivirus.lnk

[2013.06.02 22:04:10 | 000,002,951 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT

[2013.06.02 21:47:43 | 117,478,104 | ---- | M] () -- C:\Dokumente und Einstellungen\clk\Desktop\avast_free_antivirus_setup.exe

[2013.06.02 11:04:04 | 000,327,497 | ---- | M] () -- C:\Dokumente und Einstellungen\clk\Desktop\Habe um meinen PC zu schützen VIELE Schutzprogramme incl. Viren runtergeladen  -( - Trojaner-Board.htm

[2013.06.01 22:25:09 | 000,000,327 | RHS- | M] () -- C:\boot.ini

[2013.06.01 21:00:00 | 003,622,528 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT

[2013.06.01 20:21:07 | 000,181,064 | ---- | M] (Sysinternals) -- C:\WINDOWS\PSEXESVC.EXE

[2013.06.01 20:19:18 | 000,023,392 | ---- | M] () -- C:\WINDOWS\System32\nscompat.tlb

[2013.06.01 20:19:18 | 000,016,832 | ---- | M] () -- C:\WINDOWS\System32\amcompat.tlb

[2013.06.01 20:13:12 | 000,556,544 | ---- | M] () -- C:\WINDOWS\System32\perfh007.dat

[2013.06.01 20:13:12 | 000,506,084 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat

[2013.06.01 20:13:12 | 000,089,548 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat

[2013.06.01 20:13:11 | 000,116,942 | ---- | M] () -- C:\WINDOWS\System32\perfc007.dat

[2013.06.01 20:04:14 | 000,204,496 | ---- | M] (Malwarebytes) -- C:\Dokumente und Einstellungen\clk\Desktop\startuplite-setup-1.07.exe

[2013.06.01 10:17:17 | 003,517,580 | ---- | M] () -- C:\Dokumente und Einstellungen\clk\Desktop\tweaking.com_windows_repair_aio.zip

[2013.06.01 09:51:24 | 000,001,150 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-2044978897-1172690549-42215457-1007Core.job

[2013.05.31 12:14:09 | 000,890,839 | ---- | M] () -- C:\Dokumente und Einstellungen\clk\Desktop\SecurityCheck.exe

[2013.05.31 02:00:05 | 000,000,342 | ---- | M] () -- C:\WINDOWS\tasks\AdobeAAMUpdater-1.0-CK-clk.job

[2013.05.30 19:07:36 | 002,347,384 | ---- | M] (ESET) -- C:\Dokumente und Einstellungen\clk\Desktop\esetsmartinstaller_enu.exe

[2013.05.30 15:47:02 | 001,355,491 | ---- | M] (Farbar) -- C:\Dokumente und Einstellungen\clk\Desktop\FRST.exe

[2013.05.30 14:32:15 | 000,000,444 | ---- | M] () -- C:\Dokumente und Einstellungen\clk\Desktop\Verknüpfung mit Downloads.lnk

[2013.05.30 01:11:53 | 000,545,954 | ---- | M] (Oleg N. Scherbakov) -- C:\Dokumente und Einstellungen\clk\Desktop\JRT.exe

[2013.05.30 00:20:34 | 000,632,031 | ---- | M] () -- C:\Dokumente und Einstellungen\clk\Desktop\adwcleaner.exe

[2013.05.30 00:12:37 | 000,816,128 | ---- | M] () -- C:\Dokumente und Einstellungen\clk\Desktop\RogueKiller_8.5.4.exe

[2013.05.29 23:58:22 | 000,000,027 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts

[2013.05.29 20:21:19 | 000,025,051 | ---- | M] () -- C:\Dokumente und Einstellungen\clk\Desktop\Thermomix Rezeptwelt - Roggenbrötchen  - 2012-02-22.pdf

[2013.05.29 10:28:12 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Dokumente und Einstellungen\clk\Desktop\OTL.exe

[2013.05.29 10:25:19 | 000,000,000 | ---- | M] () -- C:\Dokumente und Einstellungen\clk\defogger_reenable

[2013.05.20 20:45:49 | 000,001,158 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl

[2013.05.16 21:24:45 | 000,001,374 | ---- | M] () -- C:\WINDOWS\imsins.BAK

[2013.05.09 10:59:10 | 000,765,736 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswSnx.sys

[2013.05.09 10:59:10 | 000,368,944 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswSP.sys

[2013.05.09 10:59:10 | 000,174,664 | ---- | M] () -- C:\WINDOWS\System32\drivers\aswVmm.sys

[2013.05.09 10:59:10 | 000,056,080 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswTdi.sys

[2013.05.09 10:59:10 | 000,049,376 | ---- | M] () -- C:\WINDOWS\System32\drivers\aswRvrt.sys

[2013.05.09 10:59:09 | 000,066,336 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswMonFlt.sys

[2013.05.09 10:59:09 | 000,049,760 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswRdr.sys

[2013.05.09 10:59:08 | 000,029,816 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswFsBlk.sys

[2013.05.09 10:58:37 | 000,041,664 | ---- | M] (AVAST Software) -- C:\WINDOWS\avastSS.scr

[2013.05.09 10:58:28 | 000,229,648 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\aswBoot.exe

 
 ========== Files Created - No Company Name ==========

 

[2013.06.02 23:40:19 | 000,284,971 | ---- | C] () -- C:\Dokumente und Einstellungen\clk\Desktop\Zwischenablage01.jpg

[2013.06.02 22:05:06 | 000,001,084 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job

[2013.06.02 22:05:05 | 000,001,080 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job

[2013.06.02 22:04:26 | 000,001,653 | ---- | C] () -- C:\Dokumente und Einstellungen\All Users\Desktop\avast! Free Antivirus.lnk

[2013.06.02 22:04:15 | 000,174,664 | ---- | C] () -- C:\WINDOWS\System32\drivers\aswVmm.sys

[2013.06.02 22:04:15 | 000,000,350 | -H-- | C] () -- C:\WINDOWS\tasks\avast! Emergency Update.job

[2013.06.02 22:04:14 | 000,049,376 | ---- | C] () -- C:\WINDOWS\System32\drivers\aswRvrt.sys

[2013.06.02 21:49:27 | 117,478,104 | ---- | C] () -- C:\Dokumente und Einstellungen\clk\Desktop\avast_free_antivirus_setup.exe

[2013.06.02 11:04:02 | 000,327,497 | ---- | C] () -- C:\Dokumente und Einstellungen\clk\Desktop\Habe um meinen PC zu schützen VIELE Schutzprogramme incl. Viren runtergeladen  -( - Trojaner-Board.htm

[2013.06.01 18:02:28 | 000,019,456 | ---- | C] () -- C:\WINDOWS\System32\dllcache\xrxscnui.dll

[2013.06.01 18:02:23 | 000,027,648 | ---- | C] () -- C:\WINDOWS\System32\dllcache\xrxftplt.exe

[2013.06.01 17:41:57 | 000,086,097 | ---- | C] () -- C:\WINDOWS\System32\dllcache\reslog32.dll

[2013.06.01 17:36:42 | 000,044,105 | ---- | C] () -- C:\WINDOWS\System32\dllcache\otceth5.sys

[2013.06.01 17:27:54 | 001,158,818 | ---- | C] () -- C:\WINDOWS\System32\dllcache\korwbrkr.lex

[2013.06.01 17:26:14 | 000,134,339 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imekr.lex

[2013.06.01 17:22:44 | 000,165,888 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hpgt53.dll

[2013.06.01 17:22:37 | 000,093,696 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hpgt42.dll

[2013.06.01 17:22:30 | 000,101,376 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hpgt34.dll

[2013.06.01 17:22:24 | 000,089,088 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hpgt33.dll

[2013.06.01 17:22:13 | 000,083,968 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hpgt21.dll

[2013.06.01 17:21:45 | 000,108,827 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hanja.lex

[2013.06.01 17:17:40 | 000,029,768 | ---- | C] () -- C:\WINDOWS\System32\dllcache\divasu.dll

[2013.06.01 17:17:39 | 000,037,962 | ---- | C] () -- C:\WINDOWS\System32\dllcache\divaprop.dll

[2013.06.01 17:17:37 | 000,006,216 | ---- | C] () -- C:\WINDOWS\System32\dllcache\divaci.dll

[2013.06.01 17:17:32 | 000,031,817 | ---- | C] () -- C:\WINDOWS\System32\dllcache\disrvpp.dll

[2013.06.01 17:13:21 | 000,023,552 | ---- | C] () -- C:\WINDOWS\System32\dllcache\atixbar.sys

[2013.06.01 17:13:20 | 000,026,624 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ativxbar.sys

[2013.06.01 17:13:19 | 000,019,456 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ativttxx.sys

[2013.06.01 17:13:19 | 000,009,472 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ativmdcd.sys

[2013.06.01 17:13:18 | 000,017,152 | ---- | C] () -- C:\WINDOWS\System32\dllcache\atitvsnd.sys

[2013.06.01 17:13:18 | 000,017,152 | ---- | C] () -- C:\WINDOWS\System32\dllcache\atitunep.sys

[2013.06.01 17:13:17 | 000,026,880 | ---- | C] () -- C:\WINDOWS\System32\dllcache\atirtsnd.sys

[2013.06.01 17:13:16 | 000,049,920 | ---- | C] () -- C:\WINDOWS\System32\dllcache\atirtcap.sys

[2013.06.01 17:13:15 | 000,010,240 | ---- | C] () -- C:\WINDOWS\System32\dllcache\atipcxxx.sys

[2013.06.01 17:13:09 | 000,046,464 | ---- | C] () -- C:\WINDOWS\System32\dllcache\atibt829.sys

[2013.06.01 10:18:21 | 003,517,580 | ---- | C] () -- C:\Dokumente und Einstellungen\clk\Desktop\tweaking.com_windows_repair_aio.zip

[2013.05.31 12:14:48 | 000,890,839 | ---- | C] () -- C:\Dokumente und Einstellungen\clk\Desktop\SecurityCheck.exe

[2013.05.30 14:32:11 | 000,000,444 | ---- | C] () -- C:\Dokumente und Einstellungen\clk\Desktop\Verknüpfung mit Downloads.lnk

[2013.05.30 00:12:46 | 000,816,128 | ---- | C] () -- C:\Dokumente und Einstellungen\clk\Desktop\RogueKiller_8.5.4.exe

[2013.05.29 23:41:16 | 000,000,211 | ---- | C] () -- C:\Boot.bak

[2013.05.29 23:41:13 | 000,262,448 | RHS- | C] () -- C:\cmldr

[2013.05.29 23:37:27 | 000,256,000 | ---- | C] () -- C:\WINDOWS\PEV.exe

[2013.05.29 23:37:27 | 000,208,896 | ---- | C] () -- C:\WINDOWS\MBR.exe

[2013.05.29 23:37:27 | 000,098,816 | ---- | C] () -- C:\WINDOWS\sed.exe

[2013.05.29 23:37:27 | 000,080,412 | ---- | C] () -- C:\WINDOWS\grep.exe

[2013.05.29 23:37:27 | 000,068,096 | ---- | C] () -- C:\WINDOWS\zip.exe

[2013.05.29 20:21:13 | 000,025,051 | ---- | C] () -- C:\Dokumente und Einstellungen\clk\Desktop\Thermomix Rezeptwelt - Roggenbrötchen  - 2012-02-22.pdf

[2013.05.29 10:25:19 | 000,000,000 | ---- | C] () -- C:\Dokumente und Einstellungen\clk\defogger_reenable

[2013.05.28 10:05:22 | 000,632,031 | ---- | C] () -- C:\Dokumente und Einstellungen\clk\Desktop\adwcleaner.exe

[2013.05.24 01:02:08 | 000,000,350 | ---- | C] () -- C:\WINDOWS\tasks\Lyrics Fan Update.job

[2013.03.11 14:25:04 | 000,002,482 | ---- | C] () -- C:\WINDOWS\System32\ASOROSet.bin

[2012.11.27 22:49:46 | 000,774,826 | ---- | C] () -- C:\Dokumente und Einstellungen\LocalService\Lokale Einstellungen\Anwendungsdaten\WPFFontCache_v0400-S-1-5-21-2044978897-1172690549-42215457-1007-0.dat

[2012.11.27 22:49:31 | 000,275,386 | ---- | C] () -- C:\Dokumente und Einstellungen\LocalService\Lokale Einstellungen\Anwendungsdaten\WPFFontCache_v0400-System.dat

[2012.10.29 13:09:28 | 000,974,848 | ---- | C] () -- C:\WINDOWS\System32\cis-2.4.dll

[2012.10.29 13:09:28 | 000,081,920 | ---- | C] () -- C:\WINDOWS\System32\issacapi_bs-2.3.dll

[2012.10.29 13:09:28 | 000,065,536 | ---- | C] () -- C:\WINDOWS\System32\issacapi_pe-2.3.dll

[2012.10.29 13:09:28 | 000,057,344 | ---- | C] () -- C:\WINDOWS\System32\issacapi_se-2.3.dll

[2012.10.29 13:09:28 | 000,030,568 | ---- | C] () -- C:\WINDOWS\MusiccityDownload.exe

[2012.02.15 14:43:40 | 000,003,072 | ---- | C] () -- C:\WINDOWS\System32\iacenc.dll

[2011.08.28 22:05:55 | 000,001,474 | ---- | C] () -- C:\Dokumente und Einstellungen\clk\Anwendungsdaten\CountdownProPrefs.cdp

[2011.08.28 21:57:18 | 000,123,172 | ---- | C] () -- C:\Programme\countdown.sis

[2010.12.31 14:38:46 | 000,036,072 | ---- | C] () -- C:\Dokumente und Einstellungen\clk\Anwendungsdaten\mdbu.bin

[2010.01.16 15:55:23 | 000,000,000 | ---- | C] () -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\LauncherAccess.dt

[2010.01.14 14:04:33 | 000,007,168 | ---- | C] () -- C:\Dokumente und Einstellungen\clk\Lokale Einstellungen\Anwendungsdaten\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

[2010.01.14 14:04:33 | 000,000,136 | ---- | C] () -- C:\Dokumente und Einstellungen\clk\Lokale Einstellungen\Anwendungsdaten\fusioncache.dat

 
 ========== ZeroAccess Check ==========

 

[2005.08.17 14:51:55 | 000,000,227 | RHS- | M] () -- C:\WINDOWS\assembly\Desktop.ini

 

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

 

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

 

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

"" = %SystemRoot%\system32\shdocvw.dll -- [2008.04.14 04:22:25 | 001,499,136 | ---- | M] (Microsoft Corporation)

"ThreadingModel" = Apartment

 

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]

"" = C:\WINDOWS\system32\wbem\fastprox.dll -- [2009.02.09 12:51:44 | 000,473,600 | ---- | M] (Microsoft Corporation)

"ThreadingModel" = Free

 

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

"" = C:\WINDOWS\system32\wbem\wbemess.dll -- [2008.04.14 04:22:32 | 000,273,920 | ---- | M] (Microsoft Corporation)

"ThreadingModel" = Both

 
 ========== LOP Check ==========

 

[2013.06.02 21:54:23 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\AVAST Software

[2010.01.16 00:16:10 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\BTrieve

[2013.01.13 18:15:14 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\BVRP Software

[2013.05.28 10:06:47 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Datamngr

[2012.11.16 12:31:57 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\FMBackup2

[2012.05.28 18:27:48 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Haufe

[2011.02.24 12:29:24 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\IM

[2011.02.24 12:26:27 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\IncrediMail

[2010.12.22 19:32:28 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Kestrel

[2010.06.27 22:41:57 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Lexmark Pro700 Series

[2012.05.28 18:31:18 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Lexware

[2012.09.24 22:37:30 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\MAGIX

[2012.12.15 00:35:49 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\regid.1986-12.com.adobe

[2012.11.19 01:30:42 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Samsung

[2013.05.27 23:54:40 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\StarApp

[2013.05.28 09:22:07 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Systweak

[2010.01.15 15:13:04 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\TerraTec

[2013.04.15 20:51:05 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\TVgenial

[2013.05.29 23:56:57 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Wincert

[2010.02.14 18:21:59 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Zylom

[2011.02.18 19:33:01 | 000,000,000 | -HSD | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\{D3742F82-1C1A-4DCC-ABBD-0E7C3C0185CC}

[2012.12.14 22:21:52 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\clk\Anwendungsdaten\com.adobe.downloadassistant.AdobeDownloadAssistant

[2013.04.13 21:17:18 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\clk\Anwendungsdaten\DriverTurbo

[2013.02.16 23:08:43 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\clk\Anwendungsdaten\DVDVideoSoft

[2013.03.28 15:07:42 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\clk\Anwendungsdaten\GlarySoft

[2012.05.28 21:10:56 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\clk\Anwendungsdaten\Haufe Mediengruppe

[2010.07.25 19:27:13 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\clk\Anwendungsdaten\InterVideo

[2010.03.18 11:58:39 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\clk\Anwendungsdaten\IrfanView

[2010.12.22 19:46:31 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\clk\Anwendungsdaten\Kestrel

[2010.01.15 23:57:56 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\clk\Anwendungsdaten\Lexware

[2012.01.18 05:09:31 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\clk\Anwendungsdaten\MAGIX

[2010.01.16 00:45:25 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\clk\Anwendungsdaten\Marine Aquarium 3

[2012.12.15 00:48:20 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\clk\Anwendungsdaten\PDAppFlex

[2013.02.17 19:01:51 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\clk\Anwendungsdaten\PDF Architect

[2013.01.11 15:39:06 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\clk\Anwendungsdaten\PhotoScape

[2013.05.28 09:18:08 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\clk\Anwendungsdaten\player

[2013.01.23 22:15:49 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\clk\Anwendungsdaten\Samsung

[2012.10.14 18:41:42 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\clk\Anwendungsdaten\Smilebox

[2010.11.20 00:37:17 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\clk\Anwendungsdaten\Sony

[2010.01.15 15:12:49 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\clk\Anwendungsdaten\TerraTec

[2005.08.18 10:13:11 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\clk\Anwendungsdaten\toshiba

[2010.01.31 01:17:18 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\clk\Anwendungsdaten\Verbindungsassistent

[2010.01.16 01:44:01 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\clk\Anwendungsdaten\Windows Desktop Search

[2010.01.16 01:45:51 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\clk\Anwendungsdaten\Windows Search

 
 ========== Purity Check ==========

 

 

 
 ========== Custom Scans ==========

 
 < reg query "HKLM\HARDWARE\DEVICEMAP\Scsi\Scsi Port 0" /c >

! REG.EXE VERSION 3.0

HKEY_LOCAL_MACHINE\HARDWARE\DEVICEMAP\SCSI\SCSI PORT 0

    DMAEnabled        REG_DWORD        0x0

    Driver        REG_SZ        atapi

HKEY_LOCAL_MACHINE\HARDWARE\DEVICEMAP\SCSI\SCSI PORT 0\Scsi Bus 0

 
 < reg query "HKLM\SYSTEM\CurrentControlSet\Control\Class\{4D36E96A-E325-11CE-BFC1-08002BE10318}" /s /c >

! REG.EXE VERSION 3.0

HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\CONTROL\CLASS\{4D36E96A-E325-11CE-BFC1-08002BE10318}

    Class        REG_SZ        hdc

    <NO NAME>        REG_SZ        IDE ATA/ATAPI-Controller

    Icon        REG_SZ        -9

    Installer32        REG_SZ        SysSetup.Dll,HdcClassInstaller

    TroubleShooter-0        REG_SZ        hcp://help/tshoot/tsdrive.htm

HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\CONTROL\CLASS\{4D36E96A-E325-11CE-BFC1-08002BE10318}\0000

    MasterOnMask        REG_DWORD        0x80

    MasterOnConfigOffset        REG_DWORD        0x41

    SlaveOnMask        REG_DWORD        0x80

    SlaveOnConfigOffset        REG_DWORD        0x43

    InfPath        REG_SZ        oem142.inf

    InfSection        REG_SZ        intelide_Inst

    ProviderName        REG_SZ        Intel

    DriverDateData        REG_BINARY        0000D25C8CA2CD01

    DriverDate        REG_SZ        10-5-2012

    DriverVersion        REG_SZ        9.1.9.1002

    MatchingDeviceId        REG_SZ        pci\ven_8086&dev_2653&cc_0101

    DriverDesc        REG_SZ        Intel(R) 82801FBM Ultra ATA Storage Controllers - 2653 - 2653&CC_0101

HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\CONTROL\CLASS\{4D36E96A-E325-11CE-BFC1-08002BE10318}\0001

    EnumPropPages32        REG_SZ        storprop.dll,IdePropPageProvider

    InfPath        REG_SZ        mshdc.inf

    InfSection        REG_SZ        atapi_Inst_primary

    ProviderName        REG_SZ        Microsoft

    DriverDateData        REG_BINARY        008062C5C001C101

    DriverDate        REG_SZ        7-1-2001

    DriverVersion        REG_SZ        5.1.2600.2180

    MatchingDeviceId        REG_SZ        primary_ide_channel

    DriverDesc        REG_SZ        Primärer IDE-Kanal

    MasterDeviceType        REG_DWORD        0x1

    SlaveDeviceType        REG_DWORD        0x0

    SlaveDeviceDetectionTimeout        REG_DWORD        0x1

    MasterDeviceTimingMode        REG_DWORD        0x10

    MasterDeviceTimingModeAllowed        REG_DWORD        0x1f

    MasterIdDataCheckSum        REG_DWORD        0x272d3

    SlaveDeviceTimingMode        REG_DWORD        0x0

HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\CONTROL\CLASS\{4D36E96A-E325-11CE-BFC1-08002BE10318}\0002

    EnumPropPages32        REG_SZ        storprop.dll,IdePropPageProvider

    InfPath        REG_SZ        mshdc.inf

    InfSection        REG_SZ        atapi_Inst_secondary

    ProviderName        REG_SZ        Microsoft

    DriverDateData        REG_BINARY        008062C5C001C101

    DriverDate        REG_SZ        7-1-2001

    DriverVersion        REG_SZ        5.1.2600.2180

    MatchingDeviceId        REG_SZ        secondary_ide_channel

    DriverDesc        REG_SZ        Sekundärer IDE-Kanal

    MasterDeviceType        REG_DWORD        0x2

    SlaveDeviceType        REG_DWORD        0x0

    SlaveDeviceDetectionTimeout        REG_DWORD        0x1

    MasterDeviceTimingMode        REG_DWORD        0x2010

    MasterDeviceTimingModeAllowed        REG_DWORD        0xffffffff

    MasterIdDataCheckSum        REG_DWORD        0x1e785

    SlaveDeviceTimingMode        REG_DWORD        0x0

    UserMasterDeviceTimingModeAllowed        REG_DWORD        0xffffffff

HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\CONTROL\CLASS\{4D36E96A-E325-11CE-BFC1-08002BE10318}\Properties

    DeviceType        REG_DWORD        0x4

    DeviceCharacteristics        REG_DWORD        0x100

 
 <           >

[2005.08.17 14:30:02 | 000,000,065 | R--- | C] () -- C:\WINDOWS\Tasks\desktop.ini

[2005.08.17 14:47:56 | 000,000,006 | -H-- | C] () -- C:\WINDOWS\Tasks\SA.DAT

[2011.09.07 13:03:19 | 000,001,150 | ---- | C] () -- C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-2044978897-1172690549-42215457-1007Core.job

[2011.09.07 13:03:20 | 000,001,202 | ---- | C] () -- C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-2044978897-1172690549-42215457-1007UA.job

[2012.12.15 00:51:04 | 000,000,342 | ---- | C] () -- C:\WINDOWS\Tasks\AdobeAAMUpdater-1.0-CK-clk.job

[2013.02.05 22:32:12 | 000,000,884 | ---- | C] () -- C:\WINDOWS\Tasks\Adobe Flash Player Updater.job

[2013.04.13 22:50:54 | 000,000,270 | ---- | C] () -- C:\WINDOWS\Tasks\Microsoft_Hardware_Launch_IPoint_exe.job

[2013.05.24 01:02:08 | 000,000,350 | ---- | C] () -- C:\WINDOWS\Tasks\Lyrics Fan Update.job

[2013.06.02 22:04:15 | 000,000,350 | -H-- | C] () -- C:\WINDOWS\Tasks\avast! Emergency Update.job

[2013.06.02 22:05:05 | 000,001,080 | ---- | C] () -- C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job

[2013.06.02 22:05:06 | 000,001,084 | ---- | C] () -- C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job

 
 ========== Files - Unicode (All) ==========

(C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Microsoft ??) -- C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Microsoft 鼠标
 

< End of report >

Und hier das FSS-Log:

Code:

Farbar Service Scanner Version: 31-05-2013 01

Ran by clk (administrator) on 03-06-2013 at 21:18:01

Running from "C:\Dokumente und Einstellungen\clk\Desktop"

Microsoft Windows XP Service Pack 3 (X86)

Boot Mode: Normal

****************************************************************
 

Internet Services:

============
 

Connection Status:

==============

Localhost is accessible.

LAN connected.

Google IP is accessible.

Google.com is accessible.

Yahoo IP is accessible.

Yahoo.com is accessible.
 
 

Windows Firewall:

=============
 

Firewall Disabled Policy: 

==================
 
 

System Restore:

============
 

System Restore Disabled Policy: 

========================
 
 

Security Center:

============
 
 

Windows Update:

============
 

Windows Autoupdate Disabled Policy: 

============================
 
 

File Check:

========

C:\WINDOWS\system32\dhcpcsvc.dll

[2005-08-17 14:29] - [2008-04-14 04:22] - 0127488 ____A (Microsoft Corporation) C29A1C9B75BA38FA37F8C44405DEC360
 

C:\WINDOWS\system32\Drivers\afd.sys => MD5 is legit

C:\WINDOWS\system32\Drivers\netbt.sys => MD5 is legit

C:\WINDOWS\system32\Drivers\tcpip.sys => MD5 is legit

C:\WINDOWS\system32\Drivers\ipsec.sys => MD5 is legit

C:\WINDOWS\system32\dnsrslvr.dll

[2005-08-17 14:29] - [2009-04-20 19:17] - 0045568 ____A (Microsoft Corporation) 407F3227AC618FD1CA54B335B083DE07
 

C:\WINDOWS\system32\ipnathlp.dll

[2005-08-17 14:29] - [2008-04-14 04:22] - 0334336 ____A (Microsoft Corporation) CAD058D5F8B889A87CA3EB3CF624DCEF
 

C:\WINDOWS\system32\netman.dll

[2005-08-17 14:30] - [2008-04-14 04:22] - 0198144 ____A (Microsoft Corporation) E6D88F1F6745BF00B57E7855A2AB696C
 

C:\WINDOWS\system32\wbem\WMIsvc.dll

[2005-08-17 14:41] - [2008-04-14 04:22] - 0145408 ____A (Microsoft Corporation) 6F3F3973D97714CC5F906A19FE883729
 

C:\WINDOWS\system32\srsvc.dll

[2005-08-17 14:42] - [2008-04-14 04:22] - 0171520 ____A (Microsoft Corporation) FE77A85495065F3AD59C5C65B6C54182
 

C:\WINDOWS\system32\Drivers\sr.sys

[2005-08-17 14:42] - [2008-04-14 04:02] - 0073472 ____A (Microsoft Corporation) 50FA898F8C032796D3B1B9951BB5A90F
 

C:\WINDOWS\system32\wscsvc.dll

[2005-08-17 14:30] - [2008-04-14 04:22] - 0080896 ____A (Microsoft Corporation) 300B3E84FAF1A5C1F791C159BA28035D
 

C:\WINDOWS\system32\wbem\WMIsvc.dll

[2005-08-17 14:41] - [2008-04-14 04:22] - 0145408 ____A (Microsoft Corporation) 6F3F3973D97714CC5F906A19FE883729
 

C:\WINDOWS\system32\wuauserv.dll

[2005-08-17 14:42] - [2008-04-14 04:22] - 0006656 ____A (Microsoft Corporation) 7B4FE05202AA6BF9F4DFD0E6A0D8A085
 

C:\WINDOWS\system32\qmgr.dll

[2005-08-17 14:42] - [2008-04-14 04:22] - 0409088 ____A (Microsoft Corporation) D6F603772A789BB3228F310D650B8BD1
 

C:\WINDOWS\system32\es.dll

[2005-08-17 14:29] - [2008-07-07 22:26] - 0253952 ____A (Microsoft Corporation) AF4F6B5739D18CA7972AB53E091CBC74
 

C:\WINDOWS\system32\cryptsvc.dll

[2005-08-17 14:29] - [2008-04-14 04:22] - 0062464 ____A (Microsoft Corporation) 611F824E5C703A5A899F84C5F1699E4D
 

C:\WINDOWS\system32\svchost.exe

[2005-08-17 14:30] - [2008-04-14 04:23] - 0014336 ____A (Microsoft Corporation) 4FBC75B74479C7A6F829E0CA19DF3366
 

C:\WINDOWS\system32\rpcss.dll

[2005-08-17 14:30] - [2009-02-09 12:51] - 0401408 ____A (Microsoft Corporation) 3127AFBF2C1ED0AB14A1BBB7AAECB85B
 

C:\WINDOWS\system32\services.exe

[2005-08-17 14:30] - [2009-02-09 13:21] - 0111104 ____A (Microsoft Corporation) A3EDBE9053889FB24AB22492472B39DC
 
 

Extra List:

=======

aswTdi(8) Gpc(6) IPSec(4) NetBT(5) NwlnkIpx(9) NwlnkNb(10) PSched(7) Tcpip(3) 

0x0A0000000400000001000000020000000300000008000000050000000600000007000000090000000A000000

IpSec Tag value is correct.
 

**** End of log ****

Liebe Grüße

Claudia

Oh, hi!

Deine Meldung, die mit "OLA" angefangen hat, hab ich bisher gar nicht gesehen. Wie kommt DAS denn? Und wieso ist MEINE Nachricht doppelt gekommen? *kratzamKopf*

Wie dem auch sei, ich habe jetzt den Installer repariert. NetFrame 4 kann ich immer noch nicht deinstallieren. Jetzt habe ich diese Meldunghier bekommen:

Code:

Installation Log

Message Types:         Errors   Verbose   Messages           

Message Details:         Date Time                

© 2009 Microsoft Corporation. All rights reserved. Terms of Use.

[6/5/2013, 21:44:17] OS Version Information: ...

[6/5/2013, 21:44:17]OS Version = 5.1.2600, Platform 2, Service Pack 3

[6/5/2013, 21:44:18]OS Description = WinXP - x86 Home Edition Service Pack 3

[6/5/2013, 21:44:18] OS Version Information

[6/5/2013, 21:44:18] Environment details: ...

[6/5/2013, 21:44:18]CommandLine = C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SetupCache\Extended\Setup.exe /repair /x86 /parameterfolder Extended

[6/5/2013, 21:44:18]TimeZone = Westeuropäische Sommerzeit

[6/5/2013, 21:44:18]Initial LCID = 1031

[6/5/2013, 21:44:18] Environment details

[6/5/2013, 21:44:18]Loading localized engine data for language 1031 from C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SetupCache\Extended\1031\LocalizedData.xml

[6/5/2013, 21:44:18] Entering Function: LocalizedData::CreateLocalizedData...

[6/5/2013, 21:44:18] exiting function/method

[6/5/2013, 21:44:18] succeeded

[6/5/2013, 21:44:19] Entering Function: EngineData::CreateEngineData...

[6/5/2013, 21:44:19]Current SetupVersion = 1.0

[6/5/2013, 21:44:19]SetupVersion specified in ParameterInfo.xml is '1.0'

[6/5/2013, 21:44:19]Adding Item type "File", local path netfx_Extended.mzz

[6/5/2013, 21:44:19]Adding Item type "File", local path netfx_Extended.mzz

[6/5/2013, 21:44:19]Adding Item type "File", local path netfx_Extended.mzz

[6/5/2013, 21:44:19]Adding Item type "MSI", local path netfx_Extended_x86.msi

[6/5/2013, 21:44:19]Adding Item type "MSI", local path netfx_Extended_x86.msi

[6/5/2013, 21:44:19]Adding Item type "MSI", local path netfx_Extended_x64.msi

[6/5/2013, 21:44:20]Adding Item type "MSI", local path netfx_Extended_x64.msi

[6/5/2013, 21:44:20]Adding Item type "MSI", local path netfx_Extended_ia64.msi

[6/5/2013, 21:44:20]Adding Item type "MSI", local path netfx_Extended_ia64.msi

[6/5/2013, 21:44:20]For upgradecode {83E093B9-11C9-36E9-BFC6-9D6E9AAE3071}, [0] related products were found.

[6/5/2013, 21:44:20]RelatedProducts item Setup.exe has 0 related products.

[6/5/2013, 21:44:20]Adding Item type "RelatedProducts", local path (not applicable)

[6/5/2013, 21:44:20]Adding Item type "ServiceControl", local path (not applicable)

[6/5/2013, 21:44:20]No ProcessBlock element

[6/5/2013, 21:44:20]No ServiceBlock element

[6/5/2013, 21:44:20]Disabled CommandLineSwitch added: createlayout

[6/5/2013, 21:44:20]Using Simultaneous Download and Install mechanism

[6/5/2013, 21:44:20] exiting function/method

[6/5/2013, 21:44:20] succeeded

[6/5/2013, 21:44:20] Operation Type: ...

[6/5/2013, 21:44:20]Operation: Repairing

[6/5/2013, 21:44:20] Operation Type

[6/5/2013, 21:44:20] Package details: Microsoft .NET Framework 4 Extended Setup...

[6/5/2013, 21:44:20]Package Name = Microsoft .NET Framework 4 Extended Setup

[6/5/2013, 21:44:20]Package Version = 4.0.30319

[6/5/2013, 21:44:20] Package details

[6/5/2013, 21:44:20] User Experience Data Collection Policy: ...

[6/5/2013, 21:44:20]User Experience Data Collection Policy: UserControlled

[6/5/2013, 21:44:20] User Experience Data Collection Policy

[6/5/2013, 21:44:20] Entering Function: UiDataT::CreateUiDataT...

[6/5/2013, 21:44:20]Loading file - C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SetupCache\Extended\Extended\UiInfo.xml

[6/5/2013, 21:44:20]Add to schema collection schema file - C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SetupCache\Extended\SetupUi.xsd

[6/5/2013, 21:44:20]Successfuly found file C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SetupCache\Extended\1031\SetupResources.dll

[6/5/2013, 21:44:20]Successfuly found file C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SetupCache\Extended\Strings.xml

[6/5/2013, 21:44:20] exiting function/method

[6/5/2013, 21:44:20] succeeded

[6/5/2013, 21:44:21]OpenFileMapping fails with last error: 6

[6/5/2013, 21:44:21]The handle to the section is Null

[6/5/2013, 21:44:21]OpenFileMapping fails with last error: 6

[6/5/2013, 21:44:21]The handle to the section is Null

[6/5/2013, 21:44:24]WM_ACTIVATEAPP: Focus stealer's windows WAS visible, NOT taking back focus

[6/5/2013, 21:44:58] Operation Type: ...

[6/5/2013, 21:44:58]Operation updated to: Uninstalling

[6/5/2013, 21:44:59] Operation Type

[6/5/2013, 21:44:59] Global Block Checks: Checking for global blockers...

[6/5/2013, 21:44:59] BlockIf: Das Setup kann nicht im Kompatibilitätsmodus ausgeführt werden. Weitere Informationen finden Sie in der Infodatei....

[6/5/2013, 21:44:59]Das Setup kann nicht im Kompatibilitätsmodus ausgeführt werden. Weitere Informationen finden Sie in der Infodatei.

[6/5/2013, 21:44:59]evaluating BlockIf:

[6/5/2013, 21:44:59] Exists: evaluating...

[6/5/2013, 21:44:59]Not In OS Compatability Mode

[6/5/2013, 21:44:59] Exists evaluated to false

[6/5/2013, 21:44:59] BlockIf evaluated to false

[6/5/2013, 21:44:59] BlockIf: Sie besitzen keine ausreichenden Berechtigungen, um diesen Vorgang für alle Benutzer dieses Computers durchzuführen. Melden Sie sich als Administrator an, und führen Sie Setup erneut aus....

[6/5/2013, 21:44:59]Sie besitzen keine ausreichenden Berechtigungen, um diesen Vorgang für alle Benutzer dieses Computers durchzuführen. Melden Sie sich als Administrator an, und führen Sie Setup erneut aus.

[6/5/2013, 21:44:59]evaluating BlockIf:

[6/5/2013, 21:44:59] Not: evaluating...

[6/5/2013, 21:44:59] Exists: evaluating...

[6/5/2013, 21:44:59]IsAdministrator: IS a member of the Administrators group

[6/5/2013, 21:44:59] Exists evaluated to true

[6/5/2013, 21:44:59] Not evaluated to false

[6/5/2013, 21:44:59] BlockIf evaluated to false

[6/5/2013, 21:44:59] BlockIf: Sie müssen .NET Framework 4 Client Profile installieren, bevor Sie .NET Framework 4 Extended installieren. Weitere Informationen erhalten Sie in der Infodatei. Die niedrigere Versionsnummer von .NET Framework 4 Client Profile muss größer oder gleich der niedrigeren Versionsnummer von .NET Framework 4 Extended sein. Sie haben eine frühere Version von .NET Framework 4 Client Profile installiert. Weitere Informationen erhalten Sie in der Infodatei....

[6/5/2013, 21:44:59]Sie müssen .NET Framework 4 Client Profile installieren, bevor Sie .NET Framework 4 Extended installieren. Weitere Informationen erhalten Sie in der Infodatei. Die niedrigere Versionsnummer von .NET Framework 4 Client Profile muss größer oder gleich der niedrigeren Versionsnummer von .NET Framework 4 Extended sein. Sie haben eine frühere Version von .NET Framework 4 Client Profile installiert. Weitere Informationen erhalten Sie in der Infodatei.

[6/5/2013, 21:44:59]evaluating BlockIf:

[6/5/2013, 21:44:59] GreaterThan: evaluating...

[6/5/2013, 21:44:59]RegKeyValue: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\NET Framework Setup\NDP\v4\Client\Version contains '4.0.30319'

[6/5/2013, 21:44:59]all numeric characters - canonicalizing

[6/5/2013, 21:44:59] GreaterThan evaluated to false

[6/5/2013, 21:44:59] BlockIf evaluated to false

[6/5/2013, 21:44:59] BlockIf: .NET Framework 4 Extended kann nicht direkt installiert werden. Installieren Sie .NET Framework 4 aus dem Microsoft Download Center....

[6/5/2013, 21:44:59].NET Framework 4 Extended kann nicht direkt installiert werden. Installieren Sie .NET Framework 4 aus dem Microsoft Download Center.

[6/5/2013, 21:44:59]evaluating BlockIf:

[6/5/2013, 21:44:59] And: evaluating...

[6/5/2013, 21:44:59] Equals: evaluating...

[6/5/2013, 21:44:59]Current Operation value is Uninstalling

[6/5/2013, 21:44:59] Equals evaluated to false

[6/5/2013, 21:44:59] Not: evaluating...

[6/5/2013, 21:44:59] Exists: evaluating...

[6/5/2013, 21:44:59] Exists evaluated to false

[6/5/2013, 21:44:59] Not evaluated to true

[6/5/2013, 21:44:59] And evaluated to false

[6/5/2013, 21:44:59] BlockIf evaluated to false

[6/5/2013, 21:44:59] BlockIf: Sie können dieses Setupprogramm nicht verwenden, um .NET Framework zu installieren. Weitere Informationen erhalten Sie in der Infodatei....

[6/5/2013, 21:44:59]Sie können dieses Setupprogramm nicht verwenden, um .NET Framework zu installieren. Weitere Informationen erhalten Sie in der Infodatei.

[6/5/2013, 21:44:59]evaluating BlockIf:

[6/5/2013, 21:44:59] Not: evaluating...

[6/5/2013, 21:44:59] Or: evaluating...

[6/5/2013, 21:44:59] Or: evaluating...

[6/5/2013, 21:44:59] Exists: evaluating...

[6/5/2013, 21:44:59] Exists evaluated to true

[6/5/2013, 21:44:59] Exists: evaluating...

[6/5/2013, 21:44:59] Exists evaluated to false

[6/5/2013, 21:44:59] Or evaluated to true

[6/5/2013, 21:44:59] Exists: evaluating...

[6/5/2013, 21:44:59] Exists evaluated to false

[6/5/2013, 21:44:59] Or evaluated to true

[6/5/2013, 21:44:59] Not evaluated to false

[6/5/2013, 21:44:59] BlockIf evaluated to false

[6/5/2013, 21:44:59] BlockIf: Dieses Setupprogramm erfordert einen IA64- oder x86-Computer. Es kann nicht auf einem x64-Computer installiert werden. Weitere Informationen erhalten Sie in der Infodatei....

[6/5/2013, 21:44:59]Dieses Setupprogramm erfordert einen IA64- oder x86-Computer. Es kann nicht auf einem x64-Computer installiert werden. Weitere Informationen erhalten Sie in der Infodatei.

[6/5/2013, 21:44:59]evaluating BlockIf:

[6/5/2013, 21:44:59] And: evaluating...

[6/5/2013, 21:44:59] Or: evaluating...

[6/5/2013, 21:44:59] Or: evaluating...

[6/5/2013, 21:44:59] Exists: evaluating...

[6/5/2013, 21:44:59] Exists evaluated to true

[6/5/2013, 21:44:59] Exists: evaluating...

[6/5/2013, 21:44:59] Exists evaluated to false

[6/5/2013, 21:44:59] Or evaluated to true

[6/5/2013, 21:44:59] Exists: evaluating...

[6/5/2013, 21:44:59] Exists evaluated to false

[6/5/2013, 21:44:59] Or evaluated to true

[6/5/2013, 21:44:59] And: evaluating...

[6/5/2013, 21:44:59] And: evaluating...

[6/5/2013, 21:44:59] Exists: evaluating...

[6/5/2013, 21:44:59] Exists evaluated to false

[6/5/2013, 21:44:59] Not: evaluating...

[6/5/2013, 21:44:59] Exists: evaluating...

[6/5/2013, 21:44:59] Exists evaluated to false

[6/5/2013, 21:44:59] Not evaluated to true

[6/5/2013, 21:44:59] And evaluated to false

[6/5/2013, 21:44:59] Not: evaluating...

[6/5/2013, 21:44:59] Or: evaluating...

[6/5/2013, 21:44:59] Equals: evaluating...

[6/5/2013, 21:44:59]TargetArchitecture is x86

[6/5/2013, 21:44:59] Equals evaluated to false

[6/5/2013, 21:44:59] Equals: evaluating...

[6/5/2013, 21:44:59]TargetArchitecture is x86

[6/5/2013, 21:44:59] Equals evaluated to true

[6/5/2013, 21:44:59] Or evaluated to true

[6/5/2013, 21:44:59] Not evaluated to false

[6/5/2013, 21:44:59] And evaluated to false

[6/5/2013, 21:44:59] And evaluated to false

[6/5/2013, 21:44:59] BlockIf evaluated to false

[6/5/2013, 21:44:59] BlockIf: Dieses Setupprogramm erfordert einen x64- oder x86-Computer. Es kann nicht auf einem IA64-Computer verwendet werden. Weitere Informationen erhalten Sie in der Infodatei....

[6/5/2013, 21:44:59]Dieses Setupprogramm erfordert einen x64- oder x86-Computer. Es kann nicht auf einem IA64-Computer verwendet werden. Weitere Informationen erhalten Sie in der Infodatei.

[6/5/2013, 21:44:59]evaluating BlockIf:

[6/5/2013, 21:44:59] And: evaluating...

[6/5/2013, 21:44:59] Or: evaluating...

[6/5/2013, 21:44:59] Or: evaluating...

[6/5/2013, 21:44:59] Exists: evaluating...

[6/5/2013, 21:44:59] Exists evaluated to true

[6/5/2013, 21:44:59] Exists: evaluating...

[6/5/2013, 21:44:59] Exists evaluated to false

[6/5/2013, 21:44:59] Or evaluated to true

[6/5/2013, 21:44:59] Exists: evaluating...

[6/5/2013, 21:44:59] Exists evaluated to false

[6/5/2013, 21:44:59] Or evaluated to true

[6/5/2013, 21:44:59] And: evaluating...

[6/5/2013, 21:44:59] And: evaluating...

[6/5/2013, 21:44:59] Exists: evaluating...

[6/5/2013, 21:44:59] Exists evaluated to false

[6/5/2013, 21:44:59] Not: evaluating...

[6/5/2013, 21:44:59] Exists: evaluating...

[6/5/2013, 21:44:59] Exists evaluated to false

[6/5/2013, 21:44:59] Not evaluated to true

[6/5/2013, 21:44:59] And evaluated to false

[6/5/2013, 21:44:59] Not: evaluating...

[6/5/2013, 21:44:59] Or: evaluating...

[6/5/2013, 21:44:59] Equals: evaluating...

[6/5/2013, 21:44:59]TargetArchitecture is x86

[6/5/2013, 21:44:59] Equals evaluated to false

[6/5/2013, 21:44:59] Equals: evaluating...

[6/5/2013, 21:44:59]TargetArchitecture is x86

[6/5/2013, 21:44:59] Equals evaluated to true

[6/5/2013, 21:44:59] Or evaluated to true

[6/5/2013, 21:44:59] Not evaluated to false

[6/5/2013, 21:44:59] And evaluated to false

[6/5/2013, 21:44:59] And evaluated to false

[6/5/2013, 21:44:59] BlockIf evaluated to false

[6/5/2013, 21:44:59] BlockIf: Dieses Setupprogramm erfordert einen x86-Computer. Es kann nicht auf einem x64- oder IA64-Computer installiert werden. Weitere Informationen erhalten Sie in der Infodatei....

[6/5/2013, 21:44:59]Dieses Setupprogramm erfordert einen x86-Computer. Es kann nicht auf einem x64- oder IA64-Computer installiert werden. Weitere Informationen erhalten Sie in der Infodatei.

[6/5/2013, 21:44:59]evaluating BlockIf:

[6/5/2013, 21:44:59] And: evaluating...

[6/5/2013, 21:44:59] Or: evaluating...

[6/5/2013, 21:44:59] Or: evaluating...

[6/5/2013, 21:44:59] Exists: evaluating...

[6/5/2013, 21:44:59] Exists evaluated to true

[6/5/2013, 21:44:59] Exists: evaluating...

[6/5/2013, 21:44:59] Exists evaluated to false

[6/5/2013, 21:44:59] Or evaluated to true

[6/5/2013, 21:44:59] Exists: evaluating...

[6/5/2013, 21:44:59] Exists evaluated to false

[6/5/2013, 21:44:59] Or evaluated to true

[6/5/2013, 21:44:59] Not: evaluating...

[6/5/2013, 21:44:59] Or: evaluating...

[6/5/2013, 21:44:59] Or: evaluating...

[6/5/2013, 21:44:59] Exists: evaluating...

[6/5/2013, 21:44:59] Exists evaluated to false

[6/5/2013, 21:44:59] Exists: evaluating...

[6/5/2013, 21:44:59] Exists evaluated to false

[6/5/2013, 21:44:59] Or evaluated to false

[6/5/2013, 21:44:59] Equals: evaluating...

[6/5/2013, 21:44:59]TargetArchitecture is x86

[6/5/2013, 21:44:59] Equals evaluated to true

[6/5/2013, 21:44:59] Or evaluated to true

[6/5/2013, 21:44:59] Not evaluated to false

[6/5/2013, 21:44:59] And evaluated to false

[6/5/2013, 21:44:59] BlockIf evaluated to false

[6/5/2013, 21:44:59] BlockIf: Das .NET Framework 4 wird auf diesem Betriebssystem nicht unterstützt. Weitere Informationen erhalten Sie in der Infodatei....

[6/5/2013, 21:44:59]Das .NET Framework 4 wird auf diesem Betriebssystem nicht unterstützt. Weitere Informationen erhalten Sie in der Infodatei.

[6/5/2013, 21:44:59]evaluating BlockIf:

[6/5/2013, 21:44:59] And: evaluating...

[6/5/2013, 21:44:59] Equals: evaluating...

[6/5/2013, 21:44:59]Current Operation value is Uninstalling

[6/5/2013, 21:44:59] Equals evaluated to false

[6/5/2013, 21:44:59] GreaterThan: evaluating...

[6/5/2013, 21:44:59]TargetOS is 5.1.3

[6/5/2013, 21:44:59]all numeric characters - canonicalizing

[6/5/2013, 21:44:59] GreaterThan evaluated to false

[6/5/2013, 21:44:59] And evaluated to false

[6/5/2013, 21:44:59] BlockIf evaluated to false

[6/5/2013, 21:44:59] BlockIf: Das .NET Framework 4 wird auf diesem Betriebssystem nicht unterstützt. Weitere Informationen erhalten Sie in der Infodatei....

[6/5/2013, 21:44:59]Das .NET Framework 4 wird auf diesem Betriebssystem nicht unterstützt. Weitere Informationen erhalten Sie in der Infodatei.

[6/5/2013, 21:44:59]evaluating BlockIf:

[6/5/2013, 21:44:59] And: evaluating...

[6/5/2013, 21:44:59] Equals: evaluating...

[6/5/2013, 21:44:59]Current Operation value is Uninstalling

[6/5/2013, 21:44:59] Equals evaluated to false

[6/5/2013, 21:44:59] Equals: evaluating...

[6/5/2013, 21:44:59]RegKeyValue: HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\InstallationType does NOT exist.

[6/5/2013, 21:44:59]returning BoolWhenNonExistent's value: false

[6/5/2013, 21:44:59] Equals evaluated to false

[6/5/2013, 21:44:59] And evaluated to false

[6/5/2013, 21:44:59] BlockIf evaluated to false

[6/5/2013, 21:44:59] BlockIf: .NET Framework 4 Extended kann nicht deinstalliert werden. Andere Anwendungen auf dem Computer sind von diesem Programm abhängig. Weitere Informationen erhalten Sie in den Anmerkungen zu dieser Version....

[6/5/2013, 21:44:59].NET Framework 4 Extended kann nicht deinstalliert werden. Andere Anwendungen auf dem Computer sind von diesem Programm abhängig. Weitere Informationen erhalten Sie in den Anmerkungen zu dieser Version.

[6/5/2013, 21:44:59]evaluating BlockIf:

[6/5/2013, 21:44:59] And: evaluating...

[6/5/2013, 21:44:59] Equals: evaluating...

[6/5/2013, 21:44:59]Current Operation value is Uninstalling

[6/5/2013, 21:45:0] Equals evaluated to true

[6/5/2013, 21:45:0] Equals: evaluating...

[6/5/2013, 21:45:0]RegKeyValue: HKLM\SOFTWARE\Microsoft\.NETFramework\v4.0\Full\SBSDisabled\Uninstall does NOT exist.

[6/5/2013, 21:45:0]returning BoolWhenNonExistent's value: false

[6/5/2013, 21:45:0] Equals evaluated to false

[6/5/2013, 21:45:0] And evaluated to false

[6/5/2013, 21:45:0] BlockIf evaluated to false

[6/5/2013, 21:45:0] BlockIf: Wenn Sie Microsoft .NET Framework deinstallieren, können Sie einige Anwendungen möglicherweise nicht mehr ausführen....

[6/5/2013, 21:45:0]Wenn Sie Microsoft .NET Framework deinstallieren, können Sie einige Anwendungen möglicherweise nicht mehr ausführen.

[6/5/2013, 21:45:0]evaluating BlockIf:

[6/5/2013, 21:45:0] And: evaluating...

[6/5/2013, 21:45:0] Equals: evaluating...

[6/5/2013, 21:45:0]Current Operation value is Uninstalling

[6/5/2013, 21:45:0] Equals evaluated to true

[6/5/2013, 21:45:0] Not: evaluating...

[6/5/2013, 21:45:0] Equals: evaluating...

[6/5/2013, 21:45:0]RegKeyValue: HKLM\SOFTWARE\Microsoft\.NETFramework\v4.0\Full\SBSDisabled\Uninstall does NOT exist.

[6/5/2013, 21:45:0]returning BoolWhenNonExistent's value: false

[6/5/2013, 21:45:0] Equals evaluated to false

[6/5/2013, 21:45:0] Not evaluated to true

[6/5/2013, 21:45:0] And evaluated to true

[6/5/2013, 21:45:0] BlockIf evaluated to true

[6/5/2013, 21:45:0]

Logging all the global blocks
 

Pre-Installation Warnings:
 

   1. Wenn Sie Microsoft .NET Framework deinstallieren, können Sie einige Anwendungen möglicherweise nicht mehr ausführen.
 
 

[6/5/2013, 21:45:0]WM_ACTIVATEAPP: Focus stealer's windows was NOT visible, taking back focus

[6/5/2013, 21:45:2]WM_ACTIVATEAPP: Focus stealer's windows WAS visible, NOT taking back focus

[6/5/2013, 21:45:2] Global Block Checks no blocking conditions found

[6/5/2013, 21:45:2] Applicability for Uninstalling: evaluating each item...

[6/5/2013, 21:45:2] Determining state: of C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SetupCache\Extended\netfx_Extended.mzz...

[6/5/2013, 21:45:2]evaluating ApplicableIf:

[6/5/2013, 21:45:2] And: evaluating...

[6/5/2013, 21:45:2] And: evaluating...

[6/5/2013, 21:45:2] Equals: evaluating...

[6/5/2013, 21:45:2]TargetArchitecture is x86

[6/5/2013, 21:45:2] Equals evaluated to true

[6/5/2013, 21:45:2] GreaterThanOrEqualTo: evaluating...

[6/5/2013, 21:45:2]RegKeyValue: HKLM\SOFTWARE\Microsoft\NET Framework Setup\NDP\v4\Full\Version contains '4.0.30319'

[6/5/2013, 21:45:2]all numeric characters - canonicalizing

[6/5/2013, 21:45:2] GreaterThanOrEqualTo evaluated to true

[6/5/2013, 21:45:2] And evaluated to true

[6/5/2013, 21:45:2] Or: evaluating...

[6/5/2013, 21:45:2] Equals: evaluating...

[6/5/2013, 21:45:2]Current Operation value is Uninstalling

[6/5/2013, 21:45:2] Equals evaluated to false

[6/5/2013, 21:45:2] Not: evaluating...

[6/5/2013, 21:45:2] Exists: evaluating...

[6/5/2013, 21:45:2] Exists evaluated to false

[6/5/2013, 21:45:2] Not evaluated to true

[6/5/2013, 21:45:2] Or evaluated to true

[6/5/2013, 21:45:2] And evaluated to true

[6/5/2013, 21:45:2]evaluating IsPresent:

[6/5/2013, 21:45:2] Exists: evaluating...

[6/5/2013, 21:45:2]MsiGetProductInfo with product code {0A0CADCF-78DA-33C4-A350-CD51849B9702}, returned: 4.0.30319

[6/5/2013, 21:45:2] Exists evaluated to true

[6/5/2013, 21:45:2] Determining state of C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SetupCache\Extended\netfx_Extended.mzz - available but not verified yet

[6/5/2013, 21:45:2] Determining state: of C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SetupCache\Extended\netfx_Extended.mzz...

[6/5/2013, 21:45:2]evaluating ApplicableIf:

[6/5/2013, 21:45:2] And: evaluating...

[6/5/2013, 21:45:2] And: evaluating...

[6/5/2013, 21:45:2] Equals: evaluating...

[6/5/2013, 21:45:2]TargetArchitecture is x86

[6/5/2013, 21:45:2] Equals evaluated to false

[6/5/2013, 21:45:2] GreaterThanOrEqualTo: evaluating...

[6/5/2013, 21:45:2]RegKeyValue: HKLM\SOFTWARE\Microsoft\NET Framework Setup\NDP\v4\Full\Version contains '4.0.30319'

[6/5/2013, 21:45:2]all numeric characters - canonicalizing

[6/5/2013, 21:45:2] GreaterThanOrEqualTo evaluated to true

[6/5/2013, 21:45:2] And evaluated to false

[6/5/2013, 21:45:2] Or: evaluating...

[6/5/2013, 21:45:2] Equals: evaluating...

[6/5/2013, 21:45:2]Current Operation value is Uninstalling

[6/5/2013, 21:45:2] Equals evaluated to false

[6/5/2013, 21:45:2] Not: evaluating...

[6/5/2013, 21:45:2] Exists: evaluating...

[6/5/2013, 21:45:2] Exists evaluated to false

[6/5/2013, 21:45:2] Not evaluated to true

[6/5/2013, 21:45:2] Or evaluated to true

[6/5/2013, 21:45:2] And evaluated to false

[6/5/2013, 21:45:2] Determining state of C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SetupCache\Extended\netfx_Extended.mzz - not applicable

[6/5/2013, 21:45:2] Determining state: of C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SetupCache\Extended\netfx_Extended.mzz...

[6/5/2013, 21:45:2]evaluating ApplicableIf:

[6/5/2013, 21:45:2] And: evaluating...

[6/5/2013, 21:45:2] And: evaluating...

[6/5/2013, 21:45:2] Equals: evaluating...

[6/5/2013, 21:45:2]TargetArchitecture is x86

[6/5/2013, 21:45:2] Equals evaluated to false

[6/5/2013, 21:45:2] GreaterThanOrEqualTo: evaluating...

[6/5/2013, 21:45:2]RegKeyValue: HKLM\SOFTWARE\Microsoft\NET Framework Setup\NDP\v4\Full\Version contains '4.0.30319'

[6/5/2013, 21:45:2]all numeric characters - canonicalizing

[6/5/2013, 21:45:2] GreaterThanOrEqualTo evaluated to true

[6/5/2013, 21:45:2] And evaluated to false

[6/5/2013, 21:45:2] Or: evaluating...

[6/5/2013, 21:45:2] Equals: evaluating...

[6/5/2013, 21:45:2]Current Operation value is Uninstalling

[6/5/2013, 21:45:2] Equals evaluated to false

[6/5/2013, 21:45:2] Not: evaluating...

[6/5/2013, 21:45:2] Exists: evaluating...

[6/5/2013, 21:45:2] Exists evaluated to false

[6/5/2013, 21:45:2] Not evaluated to true

[6/5/2013, 21:45:2] Or evaluated to true

[6/5/2013, 21:45:2] And evaluated to false

[6/5/2013, 21:45:2] Determining state of C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SetupCache\Extended\netfx_Extended.mzz - not applicable

[6/5/2013, 21:45:2] Determining state: of C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SetupCache\Extended\netfx_Extended_x86.msi...

[6/5/2013, 21:45:2]evaluating ApplicableIf:

[6/5/2013, 21:45:2] And: evaluating...

[6/5/2013, 21:45:2] And: evaluating...

[6/5/2013, 21:45:2] Equals: evaluating...

[6/5/2013, 21:45:2]TargetArchitecture is x86

[6/5/2013, 21:45:2] Equals evaluated to true

[6/5/2013, 21:45:2] GreaterThanOrEqualTo: evaluating...

[6/5/2013, 21:45:2]RegKeyValue: HKLM\SOFTWARE\Microsoft\NET Framework Setup\NDP\v4\Full\Version contains '4.0.30319'

[6/5/2013, 21:45:2]all numeric characters - canonicalizing

[6/5/2013, 21:45:2] GreaterThanOrEqualTo evaluated to true

[6/5/2013, 21:45:2] And evaluated to true

[6/5/2013, 21:45:2] Or: evaluating...

[6/5/2013, 21:45:2] Or: evaluating...

[6/5/2013, 21:45:2] Not: evaluating...

[6/5/2013, 21:45:2] Equals: evaluating...

[6/5/2013, 21:45:2]Current Operation value is Uninstalling

[6/5/2013, 21:45:2] Equals evaluated to false

[6/5/2013, 21:45:2] Not evaluated to true

[6/5/2013, 21:45:2] Exists: evaluating...

[6/5/2013, 21:45:2] Exists evaluated to false

[6/5/2013, 21:45:2] Or evaluated to true

[6/5/2013, 21:45:2] And: evaluating...

[6/5/2013, 21:45:2] Equals: evaluating...

[6/5/2013, 21:45:2]Current Operation value is Uninstalling

[6/5/2013, 21:45:2] Equals evaluated to false

[6/5/2013, 21:45:2] Not: evaluating...

[6/5/2013, 21:45:2] Exists: evaluating...

[6/5/2013, 21:45:2]MsiGetProductInfo with product code {0A0CADCF-78DA-33C4-A350-CD51849B9702}, returned: 4.0.30319

[6/5/2013, 21:45:2] Exists evaluated to true

[6/5/2013, 21:45:2] Not evaluated to false

[6/5/2013, 21:45:2] And evaluated to false

[6/5/2013, 21:45:2] Or evaluated to true

[6/5/2013, 21:45:2] And evaluated to true

[6/5/2013, 21:45:2]evaluating IsPresent:

[6/5/2013, 21:45:2] Exists: evaluating...

[6/5/2013, 21:45:2]MsiGetProductInfo with product code {0A0CADCF-78DA-33C4-A350-CD51849B9702}, returned: 4.0.30319

[6/5/2013, 21:45:2] Exists evaluated to true

[6/5/2013, 21:45:2] Determining state of C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SetupCache\Extended\netfx_Extended_x86.msi - payload not required for this item to perform action.

[6/5/2013, 21:45:2] Determining state: of C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SetupCache\Extended\SetupUtility.exe...

[6/5/2013, 21:45:2]evaluating ApplicableIf:

[6/5/2013, 21:45:2] And: evaluating...

[6/5/2013, 21:45:2] And: evaluating...

[6/5/2013, 21:45:2] Equals: evaluating...

[6/5/2013, 21:45:2]TargetArchitecture is x86

[6/5/2013, 21:45:2] Equals evaluated to true

[6/5/2013, 21:45:2] GreaterThanOrEqualTo: evaluating...

[6/5/2013, 21:45:2]RegKeyValue: HKLM\SOFTWARE\Microsoft\NET Framework Setup\NDP\v4\Full\Version contains '4.0.30319'

[6/5/2013, 21:45:2]all numeric characters - canonicalizing

[6/5/2013, 21:45:2] GreaterThanOrEqualTo evaluated to true

[6/5/2013, 21:45:2] And evaluated to true

[6/5/2013, 21:45:2] Or: evaluating...

[6/5/2013, 21:45:2] Or: evaluating...

[6/5/2013, 21:45:2] Not: evaluating...

[6/5/2013, 21:45:2] Equals: evaluating...

[6/5/2013, 21:45:2]Current Operation value is Uninstalling

[6/5/2013, 21:45:2] Equals evaluated to false

[6/5/2013, 21:45:2] Not evaluated to true

[6/5/2013, 21:45:2] Exists: evaluating...

[6/5/2013, 21:45:2] Exists evaluated to false

[6/5/2013, 21:45:2] Or evaluated to true

[6/5/2013, 21:45:2] And: evaluating...

[6/5/2013, 21:45:2] Equals: evaluating...

[6/5/2013, 21:45:2]Current Operation value is Uninstalling

[6/5/2013, 21:45:2] Equals evaluated to false

[6/5/2013, 21:45:2] Not: evaluating...

[6/5/2013, 21:45:2] Exists: evaluating...

[6/5/2013, 21:45:2]MsiGetProductInfo with product code {0A0CADCF-78DA-33C4-A350-CD51849B9702}, returned: 4.0.30319

[6/5/2013, 21:45:2] Exists evaluated to true

[6/5/2013, 21:45:2] Not evaluated to false

[6/5/2013, 21:45:2] And evaluated to false

[6/5/2013, 21:45:2] Or evaluated to true

[6/5/2013, 21:45:2] And evaluated to true

[6/5/2013, 21:45:2]evaluating IsPresent:

[6/5/2013, 21:45:2] Exists: evaluating...

[6/5/2013, 21:45:2]MsiGetProductInfo with product code {0A0CADCF-78DA-33C4-A350-CD51849B9702}, returned: 4.0.30319

[6/5/2013, 21:45:2] Exists evaluated to true

[6/5/2013, 21:45:2] Determining state of C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SetupCache\Extended\SetupUtility.exe - available but not verified yet

[6/5/2013, 21:45:2] Determining state: of C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SetupCache\Extended\netfx_Extended_x86.msi...

[6/5/2013, 21:45:2]evaluating ApplicableIf:

[6/5/2013, 21:45:2] And: evaluating...

[6/5/2013, 21:45:2] And: evaluating...

[6/5/2013, 21:45:2] Equals: evaluating...

[6/5/2013, 21:45:2]TargetArchitecture is x86

[6/5/2013, 21:45:2] Equals evaluated to true

[6/5/2013, 21:45:2] GreaterThanOrEqualTo: evaluating...

[6/5/2013, 21:45:2]RegKeyValue: HKLM\SOFTWARE\Microsoft\NET Framework Setup\NDP\v4\Full\Version contains '4.0.30319'

[6/5/2013, 21:45:2]all numeric characters - canonicalizing

[6/5/2013, 21:45:2] GreaterThanOrEqualTo evaluated to true

[6/5/2013, 21:45:2] And evaluated to true

[6/5/2013, 21:45:2] Not: evaluating...

[6/5/2013, 21:45:2] Exists: evaluating...

[6/5/2013, 21:45:2] Exists evaluated to false

[6/5/2013, 21:45:2] Not evaluated to true

[6/5/2013, 21:45:2] And evaluated to true

[6/5/2013, 21:45:2]evaluating IsPresent:

[6/5/2013, 21:45:2] Exists: evaluating...

[6/5/2013, 21:45:2]MsiGetProductInfo with product code {0A0CADCF-78DA-33C4-A350-CD51849B9702}, returned: 4.0.30319

[6/5/2013, 21:45:2] Exists evaluated to true

[6/5/2013, 21:45:2] Determining state of C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SetupCache\Extended\netfx_Extended_x86.msi - authored action for this item is NoOp

[6/5/2013, 21:45:2] Determining state: of C:\DOKUME~1\clk\LOKALE~1\Temp\Microsoft .NET Framework 4 Extended Setup_4.0.30319\netfx_Extended_x64.msi...

[6/5/2013, 21:45:2]evaluating ApplicableIf:

[6/5/2013, 21:45:2] And: evaluating...

[6/5/2013, 21:45:2] And: evaluating...

[6/5/2013, 21:45:2] Equals: evaluating...

[6/5/2013, 21:45:2]TargetArchitecture is x86

[6/5/2013, 21:45:2] Equals evaluated to false

[6/5/2013, 21:45:2] GreaterThanOrEqualTo: evaluating...

[6/5/2013, 21:45:2]RegKeyValue: HKLM\SOFTWARE\Microsoft\NET Framework Setup\NDP\v4\Full\Version contains '4.0.30319'

[6/5/2013, 21:45:2]all numeric characters - canonicalizing

[6/5/2013, 21:45:2] GreaterThanOrEqualTo evaluated to true

[6/5/2013, 21:45:2] And evaluated to false

[6/5/2013, 21:45:2] Or: evaluating...

[6/5/2013, 21:45:2] Or: evaluating...

[6/5/2013, 21:45:2] Not: evaluating...

[6/5/2013, 21:45:2] Equals: evaluating...

[6/5/2013, 21:45:2]Current Operation value is Uninstalling

[6/5/2013, 21:45:2] Equals evaluated to false

[6/5/2013, 21:45:2] Not evaluated to true

[6/5/2013, 21:45:2] Exists: evaluating...

[6/5/2013, 21:45:2] Exists evaluated to false

[6/5/2013, 21:45:2] Or evaluated to true

[6/5/2013, 21:45:2] And: evaluating...

[6/5/2013, 21:45:2] Equals: evaluating...

[6/5/2013, 21:45:2]Current Operation value is Uninstalling

[6/5/2013, 21:45:2] Equals evaluated to false

[6/5/2013, 21:45:2] Not: evaluating...

[6/5/2013, 21:45:2] Exists: evaluating...

[6/5/2013, 21:45:2]MsiGetProductInfo with product code {8E34682C-8118-31F1-BC4C-98CD9675E1C2} found no matches

[6/5/2013, 21:45:2] Exists evaluated to false

[6/5/2013, 21:45:2] Not evaluated to true

[6/5/2013, 21:45:2] And evaluated to false

[6/5/2013, 21:45:2] Or evaluated to true

[6/5/2013, 21:45:2] And evaluated to false

[6/5/2013, 21:45:2] Determining state of C:\DOKUME~1\clk\LOKALE~1\Temp\Microsoft .NET Framework 4 Extended Setup_4.0.30319\netfx_Extended_x64.msi - not applicable

[6/5/2013, 21:45:2] Determining state: of C:\DOKUME~1\clk\LOKALE~1\Temp\Microsoft .NET Framework 4 Extended Setup_4.0.30319\netfx_Extended_x64.msi...

[6/5/2013, 21:45:2]evaluating ApplicableIf:

[6/5/2013, 21:45:2] And: evaluating...

[6/5/2013, 21:45:2] And: evaluating...

[6/5/2013, 21:45:2] Equals: evaluating...

[6/5/2013, 21:45:2]TargetArchitecture is x86

[6/5/2013, 21:45:2] Equals evaluated to false

[6/5/2013, 21:45:2] GreaterThanOrEqualTo: evaluating...

[6/5/2013, 21:45:2]RegKeyValue: HKLM\SOFTWARE\Microsoft\NET Framework Setup\NDP\v4\Full\Version contains '4.0.30319'

[6/5/2013, 21:45:2]all numeric characters - canonicalizing

[6/5/2013, 21:45:2] GreaterThanOrEqualTo evaluated to true

[6/5/2013, 21:45:2] And evaluated to false

[6/5/2013, 21:45:2] Not: evaluating...

[6/5/2013, 21:45:2] Exists: evaluating...

[6/5/2013, 21:45:2] Exists evaluated to false

[6/5/2013, 21:45:2] Not evaluated to true

[6/5/2013, 21:45:2] And evaluated to false

[6/5/2013, 21:45:2] Determining state of C:\DOKUME~1\clk\LOKALE~1\Temp\Microsoft .NET Framework 4 Extended Setup_4.0.30319\netfx_Extended_x64.msi - not applicable

[6/5/2013, 21:45:2] Determining state: of C:\DOKUME~1\clk\LOKALE~1\Temp\Microsoft .NET Framework 4 Extended Setup_4.0.30319\netfx_Extended_ia64.msi...

[6/5/2013, 21:45:2]evaluating ApplicableIf:

[6/5/2013, 21:45:2] And: evaluating...

[6/5/2013, 21:45:2] And: evaluating...

[6/5/2013, 21:45:2] Equals: evaluating...

[6/5/2013, 21:45:2]TargetArchitecture is x86

[6/5/2013, 21:45:2] Equals evaluated to false

[6/5/2013, 21:45:2] GreaterThanOrEqualTo: evaluating...

[6/5/2013, 21:45:2]RegKeyValue: HKLM\SOFTWARE\Microsoft\NET Framework Setup\NDP\v4\Full\Version contains '4.0.30319'

[6/5/2013, 21:45:2]all numeric characters - canonicalizing

[6/5/2013, 21:45:2] GreaterThanOrEqualTo evaluated to true

[6/5/2013, 21:45:2] And evaluated to false

[6/5/2013, 21:45:2] Or: evaluating...

[6/5/2013, 21:45:2] Or: evaluating...

[6/5/2013, 21:45:2] Not: evaluating...

[6/5/2013, 21:45:2] Equals: evaluating...

[6/5/2013, 21:45:2]Current Operation value is Uninstalling

[6/5/2013, 21:45:2] Equals evaluated to false

[6/5/2013, 21:45:2] Not evaluated to true

[6/5/2013, 21:45:2] Exists: evaluating...

[6/5/2013, 21:45:2] Exists evaluated to false

[6/5/2013, 21:45:2] Or evaluated to true

[6/5/2013, 21:45:2] And: evaluating...

[6/5/2013, 21:45:2] Equals: evaluating...

[6/5/2013, 21:45:2]Current Operation value is Uninstalling

[6/5/2013, 21:45:2] Equals evaluated to false

[6/5/2013, 21:45:2] Not: evaluating...

[6/5/2013, 21:45:2] Exists: evaluating...

[6/5/2013, 21:45:2]MsiGetProductInfo with product code {394244F5-63DB-3B52-A1AB-3FF407A07E9B} found no matches

[6/5/2013, 21:45:3] Exists evaluated to false

[6/5/2013, 21:45:3] Not evaluated to true

[6/5/2013, 21:45:3] And evaluated to false

[6/5/2013, 21:45:3] Or evaluated to true

[6/5/2013, 21:45:3] And evaluated to false

[6/5/2013, 21:45:3] Determining state of C:\DOKUME~1\clk\LOKALE~1\Temp\Microsoft .NET Framework 4 Extended Setup_4.0.30319\netfx_Extended_ia64.msi - not applicable

[6/5/2013, 21:45:3] Determining state: of C:\DOKUME~1\clk\LOKALE~1\Temp\Microsoft .NET Framework 4 Extended Setup_4.0.30319\netfx_Extended_ia64.msi...

[6/5/2013, 21:45:3]evaluating ApplicableIf:

[6/5/2013, 21:45:3] And: evaluating...

[6/5/2013, 21:45:3] And: evaluating...

[6/5/2013, 21:45:3] Equals: evaluating...

[6/5/2013, 21:45:3]TargetArchitecture is x86

[6/5/2013, 21:45:3] Equals evaluated to false

[6/5/2013, 21:45:3] GreaterThanOrEqualTo: evaluating...

[6/5/2013, 21:45:3]RegKeyValue: HKLM\SOFTWARE\Microsoft\NET Framework Setup\NDP\v4\Full\Version contains '4.0.30319'

[6/5/2013, 21:45:3]all numeric characters - canonicalizing

[6/5/2013, 21:45:3] GreaterThanOrEqualTo evaluated to true

[6/5/2013, 21:45:3] And evaluated to false

[6/5/2013, 21:45:3] Not: evaluating...

[6/5/2013, 21:45:3] Exists: evaluating...

[6/5/2013, 21:45:3] Exists evaluated to false

[6/5/2013, 21:45:3] Not evaluated to true

[6/5/2013, 21:45:3] And evaluated to false

[6/5/2013, 21:45:3] Determining state of C:\DOKUME~1\clk\LOKALE~1\Temp\Microsoft .NET Framework 4 Extended Setup_4.0.30319\netfx_Extended_ia64.msi - not applicable

[6/5/2013, 21:45:3] Determining state: of nameless item...

[6/5/2013, 21:45:3]evaluating ApplicableIf:

[6/5/2013, 21:45:3]returning true

[6/5/2013, 21:45:3]evaluating IsPresent:

[6/5/2013, 21:45:3]returning true

[6/5/2013, 21:45:3] Determining state of nameless item - no products affected by this item. Not Applicable.

[6/5/2013, 21:45:3] Determining state: of MSIServer...

[6/5/2013, 21:45:3]evaluating ApplicableIf:

[6/5/2013, 21:45:3]returning true

[6/5/2013, 21:45:3]evaluating IsPresent:

[6/5/2013, 21:45:3]returning false

[6/5/2013, 21:45:3] Determining state of MSIServer - payload not required for this item to perform action.

[6/5/2013, 21:45:3]evaluating ApplicableIf:

[6/5/2013, 21:45:3] And: evaluating...

[6/5/2013, 21:45:3] And: evaluating...

[6/5/2013, 21:45:3] Equals: evaluating...

[6/5/2013, 21:45:3]TargetArchitecture is x86

[6/5/2013, 21:45:3] Equals evaluated to true

[6/5/2013, 21:45:3] GreaterThanOrEqualTo: evaluating...

[6/5/2013, 21:45:3]RegKeyValue: HKLM\SOFTWARE\Microsoft\NET Framework Setup\NDP\v4\Full\Version contains '4.0.30319'

[6/5/2013, 21:45:3]all numeric characters - canonicalizing

[6/5/2013, 21:45:3] GreaterThanOrEqualTo evaluated to true

[6/5/2013, 21:45:3] And evaluated to true

[6/5/2013, 21:45:3] Or: evaluating...

[6/5/2013, 21:45:3] Equals: evaluating...

[6/5/2013, 21:45:3]Current Operation value is Uninstalling

[6/5/2013, 21:45:3] Equals evaluated to false

[6/5/2013, 21:45:3] Not: evaluating...

[6/5/2013, 21:45:3] Exists: evaluating...

[6/5/2013, 21:45:3] Exists evaluated to false

[6/5/2013, 21:45:3] Not evaluated to true

[6/5/2013, 21:45:3] Or evaluated to true

[6/5/2013, 21:45:3] And evaluated to true

[6/5/2013, 21:45:3]evaluating IsPresent:

[6/5/2013, 21:45:3] Exists: evaluating...

[6/5/2013, 21:45:3]MsiGetProductInfo with product code {0A0CADCF-78DA-33C4-A350-CD51849B9702}, returned: 4.0.30319

[6/5/2013, 21:45:3] Exists evaluated to true

[6/5/2013, 21:45:3]evaluating ApplicableIf:

[6/5/2013, 21:45:3] And: evaluating...

[6/5/2013, 21:45:3] And: evaluating...

[6/5/2013, 21:45:3] Equals: evaluating...

[6/5/2013, 21:45:3]TargetArchitecture is x86

[6/5/2013, 21:45:3] Equals evaluated to true

[6/5/2013, 21:45:3] GreaterThanOrEqualTo: evaluating...

[6/5/2013, 21:45:3]RegKeyValue: HKLM\SOFTWARE\Microsoft\NET Framework Setup\NDP\v4\Full\Version contains '4.0.30319'

[6/5/2013, 21:45:3]all numeric characters - canonicalizing

[6/5/2013, 21:45:3] GreaterThanOrEqualTo evaluated to true

[6/5/2013, 21:45:3] And evaluated to true

[6/5/2013, 21:45:3] Or: evaluating...

[6/5/2013, 21:45:3] Or: evaluating...

[6/5/2013, 21:45:3] Not: evaluating...

[6/5/2013, 21:45:3] Equals: evaluating...

[6/5/2013, 21:45:3]Current Operation value is Uninstalling

[6/5/2013, 21:45:3] Equals evaluated to false

[6/5/2013, 21:45:3] Not evaluated to true

[6/5/2013, 21:45:3] Exists: evaluating...

[6/5/2013, 21:45:3] Exists evaluated to false

[6/5/2013, 21:45:3] Or evaluated to true

[6/5/2013, 21:45:3] And: evaluating...

[6/5/2013, 21:45:3] Equals: evaluating...

[6/5/2013, 21:45:3]Current Operation value is Uninstalling

[6/5/2013, 21:45:3] Equals evaluated to false

[6/5/2013, 21:45:3] Not: evaluating...

[6/5/2013, 21:45:3] Exists: evaluating...

[6/5/2013, 21:45:3]MsiGetProductInfo with product code {0A0CADCF-78DA-33C4-A350-CD51849B9702}, returned: 4.0.30319

[6/5/2013, 21:45:3] Exists evaluated to true

[6/5/2013, 21:45:3] Not evaluated to false

[6/5/2013, 21:45:3] And evaluated to false

[6/5/2013, 21:45:3] Or evaluated to true

[6/5/2013, 21:45:3] And evaluated to true

[6/5/2013, 21:45:3]evaluating IsPresent:

[6/5/2013, 21:45:3] Exists: evaluating...

[6/5/2013, 21:45:3]MsiGetProductInfo with product code {0A0CADCF-78DA-33C4-A350-CD51849B9702}, returned: 4.0.30319

[6/5/2013, 21:45:3] Exists evaluated to true

[6/5/2013, 21:45:3]evaluating ApplicableIf:

[6/5/2013, 21:45:3] And: evaluating...

[6/5/2013, 21:45:3] And: evaluating...

[6/5/2013, 21:45:3] Equals: evaluating...

[6/5/2013, 21:45:3]TargetArchitecture is x86

[6/5/2013, 21:45:3] Equals evaluated to true

[6/5/2013, 21:45:3] GreaterThanOrEqualTo: evaluating...

[6/5/2013, 21:45:3]RegKeyValue: HKLM\SOFTWARE\Microsoft\NET Framework Setup\NDP\v4\Full\Version contains '4.0.30319'

[6/5/2013, 21:45:3]all numeric characters - canonicalizing

[6/5/2013, 21:45:3] GreaterThanOrEqualTo evaluated to true

[6/5/2013, 21:45:3] And evaluated to true

[6/5/2013, 21:45:3] Or: evaluating...

[6/5/2013, 21:45:3] Or: evaluating...

[6/5/2013, 21:45:3] Not: evaluating...

[6/5/2013, 21:45:3] Equals: evaluating...

[6/5/2013, 21:45:3]Current Operation value is Uninstalling

[6/5/2013, 21:45:3] Equals evaluated to false

[6/5/2013, 21:45:3] Not evaluated to true

[6/5/2013, 21:45:3] Exists: evaluating...

[6/5/2013, 21:45:3] Exists evaluated to false

[6/5/2013, 21:45:3] Or evaluated to true

[6/5/2013, 21:45:3] And: evaluating...

[6/5/2013, 21:45:3] Equals: evaluating...

[6/5/2013, 21:45:3]Current Operation value is Uninstalling

[6/5/2013, 21:45:3] Equals evaluated to false

[6/5/2013, 21:45:3] Not: evaluating...

[6/5/2013, 21:45:3] Exists: evaluating...

[6/5/2013, 21:45:3]MsiGetProductInfo with product code {0A0CADCF-78DA-33C4-A350-CD51849B9702}, returned: 4.0.30319

[6/5/2013, 21:45:3] Exists evaluated to true

[6/5/2013, 21:45:3] Not evaluated to false

[6/5/2013, 21:45:3] And evaluated to false

[6/5/2013, 21:45:3] Or evaluated to true

[6/5/2013, 21:45:3] And evaluated to true

[6/5/2013, 21:45:3]evaluating IsPresent:

[6/5/2013, 21:45:3] Exists: evaluating...

[6/5/2013, 21:45:3]MsiGetProductInfo with product code {0A0CADCF-78DA-33C4-A350-CD51849B9702}, returned: 4.0.30319

[6/5/2013, 21:45:4] Exists evaluated to true

[6/5/2013, 21:45:4] Applicability for Uninstalling determination is complete

[6/5/2013, 21:45:4] Applicability Result Count: ...

[6/5/2013, 21:45:4]Number of applicable items: 3

[6/5/2013, 21:45:4] Applicability Result Count

[6/5/2013, 21:45:4] Action: System Requirement Checks...

[6/5/2013, 21:45:4] Action: Disk space check for items being downloaded...

[6/5/2013, 21:45:4]Drive:[C:\] Bytes Needed:[0] Bytes Available:[28671070208]

[6/5/2013, 21:45:4] Action complete

[6/5/2013, 21:45:4] Action: Enumerating incompatible processes...

[6/5/2013, 21:45:4]No Blocking Processes

[6/5/2013, 21:45:4] Action complete

[6/5/2013, 21:45:4] Action: Enumerating incompatible services...

[6/5/2013, 21:45:4]No Blocking Services

[6/5/2013, 21:45:4] Action complete

[6/5/2013, 21:45:4] Action complete

[6/5/2013, 21:45:4]

[6/5/2013, 21:45:4] Action: Downloading and/or Verifying Items...

Launching Download and Install operations simultaneously.

[6/5/2013, 21:45:4]Verifying Digital Signatures: C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SetupCache\Extended\netfx_Extended.mzz

[6/5/2013, 21:45:4] C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SetupCache\Extended\netfx_Extended.mzz: Verifying signature for netfx_Extended.mzz...

[6/5/2013, 21:45:4]evaluating IsPresent:

[6/5/2013, 21:45:4]returning false

[6/5/2013, 21:45:11]C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SetupCache\Extended\netfx_Extended.mzz - Signature verified successfully for netfx_Extended.mzz

[6/5/2013, 21:45:11] C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SetupCache\Extended\netfx_Extended.mzz Signature verified successfully for netfx_Extended.mzz

[6/5/2013, 21:45:11]Signature verification succeeded for netfx_Extended.mzz

[6/5/2013, 21:45:11]File C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SetupCache\Extended\netfx_Extended.mzz, locked for install.

[6/5/2013, 21:45:11]Verifying Digital Signatures: C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SetupCache\Extended\netfx_Extended.mzz Success

[6/5/2013, 21:45:11]Verifying Digital Signatures: C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SetupCache\Extended\SetupUtility.exe

[6/5/2013, 21:45:11] C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SetupCache\Extended\SetupUtility.exe: Verifying signature for SetupUtility.exe...

[6/5/2013, 21:45:11]C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SetupCache\Extended\SetupUtility.exe - Signature verified successfully for SetupUtility.exe

[6/5/2013, 21:45:11] C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SetupCache\Extended\SetupUtility.exe Signature verified successfully for SetupUtility.exe

[6/5/2013, 21:45:11]Signature verification succeeded for SetupUtility.exe

[6/5/2013, 21:45:11]File lock postponed for C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SetupCache\Extended\SetupUtility.exe.

[6/5/2013, 21:45:11]Verifying Digital Signatures: C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SetupCache\Extended\SetupUtility.exe Success

[6/5/2013, 21:45:11] Action complete

[6/5/2013, 21:45:11]evaluating IsPresent:

[6/5/2013, 21:45:11] Exists: evaluating...

[6/5/2013, 21:45:11]MsiGetProductInfo with product code {0A0CADCF-78DA-33C4-A350-CD51849B9702}, returned: 4.0.30319

[6/5/2013, 21:45:11] Exists evaluated to true

[6/5/2013, 21:45:11]Starting install of item '.NET Framework 4 Extended' at tickCount = 7469560

[6/5/2013, 21:46:8]WM_ACTIVATEAPP: Focus stealer's windows WAS visible, NOT taking back focus

[6/5/2013, 21:45:4]calling PerformAction on an uninstalling performer

[6/5/2013, 21:45:4] Action: Performing actions on all Items...

[6/5/2013, 21:45:4]Wait for Item (MSIServer) to be available

[6/5/2013, 21:45:4]MSIServer is now available to install

[6/5/2013, 21:45:4]Creating new Performer for ServiceControl item

[6/5/2013, 21:45:4] Action: ServiceControl - Stop MSIServer...

[6/5/2013, 21:45:4]ControlService returned: Die Steuerungsanforderung ist für diesen Dienst nicht zulässig.

[6/5/2013, 21:45:4] Action complete

[6/5/2013, 21:45:4]Error 0x8007041c is mapped to Custom Error:

[6/5/2013, 21:45:4]Item Failed. OnFailureBehavior for this item is to Continue.

[6/5/2013, 21:45:4]Wait for Item (netfx_Extended_x86.msi) to be available

[6/5/2013, 21:45:11]netfx_Extended_x86.msi is now available to install

[6/5/2013, 21:45:11]Creating new Performer for MSI item

[6/5/2013, 21:45:11] Action: Performing Action on MSI at C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SetupCache\Extended\netfx_Extended_x86.msi...

[6/5/2013, 21:45:11]Log File C:\DOKUME~1\clk\LOKALE~1\Temp\Microsoft .NET Framework 4 Extended Setup_20130605_214420536-MSI_netfx_Extended_x86.msi.txt does not yet exist but may do at Watson upload time

[6/5/2013, 21:45:11]Calling MsiConfigureProductEx({0A0CADCF-78DA-33C4-A350-CD51849B9702}, INSTALLLEVEL_DEFAULT, INSTALLSTATE_ABSENT, REMOVE=ALL

[6/5/2013, 21:45:12]MSI (C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SetupCache\Extended\netfx_Extended_x86.msi) Uninstall failed. Msi Log: Microsoft .NET Framework 4 Extended Setup_20130605_214420536-MSI_netfx_Extended_x86.msi.txt

[6/5/2013, 21:45:12]PerformOperation returned 1601 (translates to HRESULT = 0x80070641)

[6/5/2013, 21:45:12] Action complete

[6/5/2013, 21:45:12]Error 1601 is mapped to Custom Error: Retry

[6/5/2013, 21:45:12] C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SetupCache\Extended\SetupUtility.exe: Verifying signature for SetupUtility.exe...

[6/5/2013, 21:45:12]C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SetupCache\Extended\SetupUtility.exe - Signature verified successfully for SetupUtility.exe

[6/5/2013, 21:45:12] C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SetupCache\Extended\SetupUtility.exe Signature verified successfully for SetupUtility.exe

[6/5/2013, 21:45:12]Signature verification succeeded for SetupUtility.exe

[6/5/2013, 21:45:12]File C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SetupCache\Extended\SetupUtility.exe, is verified successfully.

[6/5/2013, 21:45:12]Created new ExePerformer for Exe item

[6/5/2013, 21:45:12] Action: Performing Action on Exe at C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SetupCache\Extended\SetupUtility.exe...

[6/5/2013, 21:45:12]Launching CreateProcess with command line = SetupUtility.exe /wireregister

[6/5/2013, 21:47:13]Exe log file(s) :

[6/5/2013, 21:47:13]C:\DOKUME~1\clk\LOKALE~1\Temp\dd_SetupUtility.txt

[6/5/2013, 21:47:13]Log File C:\DOKUME~1\clk\LOKALE~1\Temp\dd_SetupUtility.txt exists and will be added to the Watson upload list

[6/5/2013, 21:47:13]Exe (C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SetupCache\Extended\SetupUtility.exe) succeeded.

[6/5/2013, 21:47:13]Exe Log File: dd_SetupUtility.txt

[6/5/2013, 21:47:13] Action complete

[6/5/2013, 21:47:13]Helper item execution succeed.

[6/5/2013, 21:47:13]Delaying for Starting to delay

[6/5/2013, 21:47:14] Action: Performing Action on MSI at C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SetupCache\Extended\netfx_Extended_x86.msi...

[6/5/2013, 21:47:14]Log File C:\DOKUME~1\clk\LOKALE~1\Temp\Microsoft .NET Framework 4 Extended Setup_20130605_214420536-MSI_netfx_Extended_x86.msi.txt exists and will be added to the Watson upload list

[6/5/2013, 21:47:14]Calling MsiConfigureProductEx({0A0CADCF-78DA-33C4-A350-CD51849B9702}, INSTALLLEVEL_DEFAULT, INSTALLSTATE_ABSENT, REMOVE=ALL

[6/5/2013, 21:47:14]MSI (C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SetupCache\Extended\netfx_Extended_x86.msi) Uninstall failed. Msi Log: Microsoft .NET Framework 4 Extended Setup_20130605_214420536-MSI_netfx_Extended_x86.msi.txt

[6/5/2013, 21:47:14]PerformOperation returned 1601 (translates to HRESULT = 0x80070641)

[6/5/2013, 21:47:14] Action complete

[6/5/2013, 21:47:14]Error 1601 is mapped to Custom Error: Retry

[6/5/2013, 21:47:14]Retry 1 of 1 of custom error handling

[6/5/2013, 21:47:14]Retry count over existing limit, not going to retry again.

[6/5/2013, 21:47:14]Item Failed. OnFailureBehavior for this item is not specified.

[6/5/2013, 21:47:14]Default behavior for Repair and Uninstall is to continue and report this failure.

[6/5/2013, 21:47:14]Wait for Item (netfx_Extended.mzz) to be available

[6/5/2013, 21:47:14]netfx_Extended.mzz is now available to install

[6/5/2013, 21:47:14]Created new DoNothingPerformer for File item

[6/5/2013, 21:47:14]No CustomError defined for this item.

[6/5/2013, 21:47:14] Action complete

[6/5/2013, 21:47:14]Final Result: Installation failed with error code: (0x80070641), "Auf den Windows-Installationsdienst konnte nicht zugegriffen werden. Die kann vorkommen, wenn Sie Windows im abgesicherten Modus ausführen oder der Windows-Installer nicht korrekt installiert ist. Wenden Sie sich an den Support, um Hilfe zu erhalten. " (Elapsed time: 0 00:02:54).

Liebe Grüße
Claudia

Ach ja und noch eine Frage:

Firefox gibt mir folgende Meldung:

Code:

Überprüfen Sie Ihre Plugins
 

Halten Sie Ihre Plugins von anderen Herstellern aktuell, damit Firefox sicherer und runder läuft.

Vermissen Sie FLASH?
 

Zu Ihrer Sicherheit hat Firefox Ihre veraltete Version von Flash deaktiviert. Bitte aktualisieren Sie auf die neueste Version.
 

    * Warnung, eine neuere Version Ihres Browsers ist verfügbar. Bitte aktualisieren Sie Ihren Browser.

    * Diese Seite funktioniert am besten mit den neuesten Browsern: Firefox 3.6+, Opera 10.5+, Safari 4+, Chrome 4+ oder IE 8+

    * Bei der Verwendung des Plugin-Tests besteht nur eine eingeschränkte Unterstützung für den Internet Explorer. Verwenden Sie auch Extras > Add-ons verwalten

    * Schritt 1: Klicken Sie auf Update, um ein Plugin zu aktualisieren.

    * Schritt 2: Führen Sie alle empfohlenen Updates durch, bevor Sie Ihren Browser neu starten.

Soll ich das wirklich machen, oder laufe ich dann wieder Gefahr mir Trojaner/Viren oder sonstiges Ungeziefer einzufangen???

LG
Claudia

Und plötzlich habe ich jetzt wieder immer diese Werbeanzeigen" Ihr PC ist langsam! Klicken Sie hier um die Fehler zu beheben!" etc... :-(

Was ich natürlich NICHT anklicke, aber es nervt eben...