Trojaner-Board - Windows Security Center Virus

Trojaner-Board (https://www.trojaner-board.de/)

- Log-Analyse und Auswertung (https://www.trojaner-board.de/log-analyse-auswertung/)

- - Windows Security Center Virus (https://www.trojaner-board.de/110203-windows-security-center-virus.html)

Windows Security Center Virus

Hallo,

ich habe mir irgendwo den Windows Security Center Virus eingefangen. Ich soll aufgrund fehlender Lizenzen 100€ bezahlen ansonsten werden alle Daten innerhalb von 24h gelöscht... das ist natürlich nicht eingetreten, arbeite nun schon seit gut einer Woche im abgesicherten Modus. Das muss sich jetzt aber mal ändern!! ;)

Ich hoffe jemand kann mir helfen. Ich kenne mich leider so gut wie gar nicht aus...

Viele Grüße!

Zitat:

schon seit gut einer Woche im abgesicherten Modus.

na wenn der Modus geht wirst du erstmal MBAM/ESET probieren können:

Bitte nun routinemäßig einen Vollscan mit malwarebytes machen und Log posten.
Denk daran, dass Malwarebytes vor jedem Scan manuell aktualisiert werden muss! Außerdem müssen alle Funde entfernt werden.

Falls Logs aus älteren Scans mit Malwarebytes vorhanden sind, bitte auch davon alle posten!

ESET Online Scanner

Hier findest du eine bebilderte Anleitung zu ESET Online Scanner
Lade und starte Eset Online Scanner
Setze einen Haken bei Ja, ich bin mit den Nutzungsbedingungen einverstanden und klicke auf Starten.
Aktiviere die "Erkennung von eventuell unerwünschten Anwendungen" und wähle folgende Einstellungen.
Klicke auf Starten.
Die Signaturen werden heruntergeladen, der Scan beginnt automatisch.
Klicke am Ende des Suchlaufs auf Fertig stellen.
Schließe das Fenster von ESET.
Explorer öffnen.
C:\Programme\Eset\EsetOnlineScanner\log.txt (bei 64 Bit auch C:\Programme (x86)\Eset\EsetOnlineScanner\log.txt) suchen und mit Deinem Editor öffnen (bebildert).
Logfile hier posten.
Deinstallation: Systemsteuerung => Software / Programme deinstallieren => Eset Online Scanner V3 entfernen.
Manuell folgenden Ordner löschen und Papierkorb leeren => C:\Programme\Eset

Bitte alles nach Möglichkeit hier in CODE-Tags posten.

Wird so gemacht:

[code] hier steht das Log [/code]

Und das ganze sieht dann so aus:

Code:

hier steht das Log

Vielen Dank schon mal!

Hier sind die Ergebnisse von Malwarebytes:

Code:

 Malwarebytes Anti-Malware 1.60.1.1000

www.malwarebytes.org
 

Datenbank Version: v2012.02.20.02
 

Windows Vista Service Pack 2 x86 NTFS (Abgesichertenmodus/Netzwerkfähig)

Internet Explorer 8.0.6001.19170

Madlen :: MADLEN-PC [Administrator]
 

20.02.2012 14:11:41

mbam-log-2012-02-20 (15-14-16).txt
 

Art des Suchlaufs: Vollständiger Suchlauf

Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM

Deaktivierte Suchlaufeinstellungen: P2P

Durchsuchte Objekte: 313430

Laufzeit: 58 Minute(n), 4 Sekunde(n)
 

Infizierte Speicherprozesse: 0

(Keine bösartigen Objekte gefunden)
 

Infizierte Speichermodule: 0

(Keine bösartigen Objekte gefunden)
 

Infizierte Registrierungsschlüssel: 0

(Keine bösartigen Objekte gefunden)
 

Infizierte Registrierungswerte: 1

HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run|vasja (Trojan.VUPX.ON1) -> Daten: C:\Users\Madlen\AppData\Local\Temp\0.02699623926359873.exe -> Keine Aktion durchgeführt.
 

Infizierte Dateiobjekte der Registrierung: 0

(Keine bösartigen Objekte gefunden)
 

Infizierte Verzeichnisse: 1

C:\ProgramData\71020111 (Rogue.Multiple) -> Keine Aktion durchgeführt.
 

Infizierte Dateien: 4

C:\Users\Madlen\AppData\Local\Temp\0.02699623926359873.exe (Trojan.VUPX.ON1) -> Keine Aktion durchgeführt.

C:\Users\Madlen\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\8\426f4488-7c7c1416 (Trojan.VUPX.ON1) -> Keine Aktion durchgeführt.

C:\Users\Madlen\Downloads\SoftonicDownloader_fuer_photoscape.exe (PUP.BundleOffer.Downloader.S) -> Keine Aktion durchgeführt.

C:\Users\Madlen\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Security Tool.lnk (Rogue.SecurityTool) -> Keine Aktion durchgeführt.
 

(Ende)

Jetzt ist ESET dran!

Zitat:

Keine Aktion durchgeführt.
-> No action taken.

Die Funde müssen mit Malwarebytes entfernt waren! Bitte nachholen falls noch nicht getan!

Ja, das habe ich mittlerweile erledigt.

Hier jetzt die Ergebnisse von ESET:

Code:

 ESETSmartInstaller@High as downloader log:

all ok

# version=7

# OnlineScannerApp.exe=1.0.0.1

# OnlineScanner.ocx=1.0.0.6583

# api_version=3.0.2

# EOSSerial=a951e0b48bd03b468e03a5bb103cd4a2

# end=finished

# remove_checked=false

# archives_checked=true

# unwanted_checked=true

# unsafe_checked=false

# antistealth_checked=true

# utc_time=2012-02-20 04:48:16

# local_time=2012-02-20 05:48:16 (+0100, Mitteleuropäische Zeit)

# country="Germany"

# lang=1033

# osver=6.0.6002 NT Service Pack 2

# compatibility_mode=5892 16776574 100 100 25908765 167281324 0 0

# compatibility_mode=8192 67108863 100 0 3787 3787 0 0

# scanned=324786

# found=17

# cleaned=0

# scan_time=7900

C:\Users\Madlen\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\17\74231951-2cdc4974        a variant of Java/Exploit.CVE-2011-3544.AM trojan (unable to clean)        00000000000000000000000000000000        I

C:\Users\Madlen\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\32\3a835d60-1b901e30        a variant of Java/Exploit.CVE-2010-4452.B trojan (unable to clean)        00000000000000000000000000000000        I

C:\Users\Madlen\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\32\3a835d60-1c594800        a variant of Java/Exploit.CVE-2010-4452.B trojan (unable to clean)        00000000000000000000000000000000        I

C:\Users\Madlen\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\32\3a835d60-3ca990e0        a variant of Java/Exploit.CVE-2010-4452.B trojan (unable to clean)        00000000000000000000000000000000        I

C:\Users\Madlen\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\32\3a835d60-3e657f5a        a variant of Java/Exploit.CVE-2010-4452.B trojan (unable to clean)        00000000000000000000000000000000        I

C:\Users\Madlen\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\32\3a835d60-6c9c995d        a variant of Java/Exploit.CVE-2010-4452.B trojan (unable to clean)        00000000000000000000000000000000        I

C:\Users\Madlen\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\32\3a835d60-7606f4e4        a variant of Java/Exploit.CVE-2010-4452.B trojan (unable to clean)        00000000000000000000000000000000        I

F:\System\Users\Madlen\AppData\Local\Temp\0.02699623926359873.exe        Win32/LockScreen.AHO trojan (unable to clean)        00000000000000000000000000000000        I

F:\System\Users\Madlen\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\17\74231951-2cdc4974        a variant of Java/Exploit.CVE-2011-3544.AM trojan (unable to clean)        00000000000000000000000000000000        I

F:\System\Users\Madlen\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\32\3a835d60-1b901e30        a variant of Java/Exploit.CVE-2010-4452.B trojan (unable to clean)        00000000000000000000000000000000        I

F:\System\Users\Madlen\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\32\3a835d60-1c594800        a variant of Java/Exploit.CVE-2010-4452.B trojan (unable to clean)        00000000000000000000000000000000        I

F:\System\Users\Madlen\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\32\3a835d60-3ca990e0        a variant of Java/Exploit.CVE-2010-4452.B trojan (unable to clean)        00000000000000000000000000000000        I

F:\System\Users\Madlen\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\32\3a835d60-3e657f5a        a variant of Java/Exploit.CVE-2010-4452.B trojan (unable to clean)        00000000000000000000000000000000        I

F:\System\Users\Madlen\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\32\3a835d60-6c9c995d        a variant of Java/Exploit.CVE-2010-4452.B trojan (unable to clean)        00000000000000000000000000000000        I

F:\System\Users\Madlen\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\32\3a835d60-7606f4e4        a variant of Java/Exploit.CVE-2010-4452.B trojan (unable to clean)        00000000000000000000000000000000        I

F:\System\Users\Madlen\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\8\426f4488-7c7c1416        Win32/LockScreen.AHO trojan (unable to clean)        00000000000000000000000000000000        I

F:\System\Users\Madlen\Downloads\SoftonicDownloader_fuer_photoscape.exe        Win32/SoftonicDownloader application (unable to clean)        00000000000000000000000000000000        I

Und nun??

Du hast offensichtlich die Funde mit Malwarebytes immer noch nicht entfernt.

Die die Malwarebytes gefunden hat, wurden entfernt. ESET hat nur viel mehr gefunden und nichts automatisch gemacht. Wie mach ich denn das?

So ich habe die Pfade jetzt manuell gelöscht. Alles ist wieder gut! Vielen, vielen Dank für die Hilfe!!! :)

Schön wir sind aber noch nicht fertig. Mach wieder alles im normalen Modus.

Mach bitte ein neues OTL-Log. Bitte alles nach Möglichkeit hier in CODE-Tags posten.

Wird so gemacht:

[code] hier steht das Log [/code]

Und das ganze sieht dann so aus:

Code:

hier steht das Log

CustomScan mit OTL

Falls noch nicht vorhanden, lade Dir bitte OTL von Oldtimer herunter und speichere es auf Deinem Desktop

Starte bitte die OTL.exe.
Vista und Win7 User mit Rechtsklick "als Administrator starten"
Setze oben mittig den Haken bei Scanne alle Benutzer
Kopiere nun den kompletten Inhalt aus der untenstehenden Codebox in die http://billy-oneal.com/Canned%20Spee.../customFix.png Textbox von OTL - wenn OTL auf deutsch ist wird sie mit http://larusso.trojaner-board.de/Images/otlfix.jpg beschriftet

Code:

netsvcs

msconfig

safebootminimal

safebootnetwork

activex

drivers32

%ALLUSERSPROFILE%\Application Data\*.

%ALLUSERSPROFILE%\Application Data\*.exe /s

%APPDATA%\*.

%APPDATA%\*.exe /s

%SYSTEMDRIVE%\*.exe

/md5start

wininit.exe

userinit.exe

eventlog.dll

scecli.dll

netlogon.dll

cngaudit.dll

ws2ifsl.sys

sceclt.dll

ntelogon.dll

winlogon.exe

logevent.dll

user32.DLL

iaStor.sys

nvstor.sys

atapi.sys

IdeChnDr.sys

viasraid.sys

AGP440.sys

vaxscsi.sys

nvatabus.sys

viamraid.sys

nvata.sys

nvgts.sys

iastorv.sys

ViPrt.sys

eNetHook.dll

ahcix86.sys

KR10N.sys

nvstor32.sys

ahcix86s.sys

/md5stop

%systemroot%\system32\drivers\*.sys /lockedfiles

%systemroot%\System32\config\*.sav

%systemroot%\*. /mp /s

%systemroot%\system32\*.dll /lockedfiles

CREATERESTOREPOINT

Schliesse bitte nun alle Programme. (Wichtig)
Klicke nun bitte auf den Quick Scan Button.
Klick auf http://billy-oneal.com/Canned%20Spee.../OTL/btnOK.png.
Kopiere nun den Inhalt aus OTL.txt hier in Deinen Thread

Oh, ja gut.

Also hier sind die Ergebnisse:

OTL Logfile:

Code:

OTL logfile created on: 21.02.2012 14:49:22 - Run 1

OTL by OldTimer - Version 3.2.33.1     Folder = C:\Users\Madlen\Downloads

Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation

Internet Explorer (Version = 8.0.6001.19170)

Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy

 

2,96 Gb Total Physical Memory | 1,70 Gb Available Physical Memory | 57,45% Memory free

6,12 Gb Paging File | 4,46 Gb Available in Paging File | 72,85% Paging File free

Paging file location(s): ?:\pagefile.sys [binary data]

 

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files

Drive C: | 192,06 Gb Total Space | 71,31 Gb Free Space | 37,13% Space Free | Partition Type: NTFS

Drive D: | 97,24 Gb Total Space | 97,09 Gb Free Space | 99,85% Space Free | Partition Type: NTFS

Drive G: | 1,92 Gb Total Space | 0,76 Gb Free Space | 39,76% Space Free | Partition Type: FAT

 

Computer Name: MADLEN-PC | User Name: Madlen | Logged in as Administrator.

Boot Mode: Normal | Scan Mode: All users | Quick Scan

Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

 
 ========== Processes (SafeList) ==========

 

PRC - [2012.02.21 14:48:08 | 000,583,168 | ---- | M] (OldTimer Tools) -- C:\Users\Madlen\Downloads\OTL (2).exe

PRC - [2011.12.23 08:41:15 | 001,451,928 | ---- | M] (BitDefender S.R.L.) -- C:\Programme\BitDefender\BitDefender 2011\bdagent.exe

PRC - [2011.07.11 15:56:37 | 002,090,016 | ---- | M] (BitDefender S.R.L.) -- C:\Programme\BitDefender\BitDefender 2011\vsserv.exe

PRC - [2011.06.03 07:24:42 | 000,064,048 | ---- | M] (BitDefender S.R.L.) -- C:\Programme\BitDefender\BitDefender 2011\pchooklaunch32.exe

PRC - [2011.06.03 07:23:47 | 000,043,936 | ---- | M] (BitDefender S.R.L.) -- C:\Programme\BitDefender\BitDefender 2011\updatesrv.exe

PRC - [2010.05.14 10:44:46 | 000,501,480 | ---- | M] (Sun Microsystems, Inc.) -- C:\Programme\Common Files\Java\Java Update\jucheck.exe

PRC - [2009.07.26 16:44:14 | 003,883,840 | ---- | M] (Microsoft Corporation) -- C:\Programme\Windows Live\Messenger\msnmsgr.exe

PRC - [2009.04.11 07:28:03 | 001,233,920 | ---- | M] (Microsoft Corporation) -- C:\Programme\Windows Sidebar\sidebar.exe

PRC - [2009.04.11 07:27:36 | 002,926,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe

PRC - [2009.02.26 14:24:50 | 000,097,680 | ---- | M] (Microsoft Corporation) -- C:\Programme\Microsoft Office\Office12\ONENOTEM.EXE

PRC - [2008.07.01 16:15:28 | 000,371,208 | ---- | M] (Dritek System Inc.) -- C:\Programme\ECDeject\CDeject.exe

PRC - [2008.07.01 15:24:08 | 000,236,040 | ---- | M] (Dritek System Inc.) -- C:\Programme\ECDeject\Mngrecd.exe

PRC - [2008.06.18 12:19:44 | 000,376,832 | ---- | M] (ODM) -- C:\Programme\OEM\OSD_1.16\osd.exe

PRC - [2008.06.02 07:44:52 | 002,184,464 | ---- | M] () -- C:\Programme\Logitech\QuickCam\Quickcam.exe

PRC - [2008.06.02 07:41:04 | 000,563,984 | ---- | M] () -- C:\Programme\Common Files\LogiShrd\LComMgr\Communications_Helper.exe

PRC - [2008.06.02 07:40:40 | 000,407,824 | ---- | M] (Logitech Inc.) -- C:\Programme\Common Files\LogiShrd\LQCVFX\COCIManager.exe

PRC - [2008.06.01 19:45:40 | 000,141,848 | ---- | M] (Logitech Inc.) -- C:\Programme\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe

PRC - [2008.06.01 19:43:58 | 000,186,904 | ---- | M] (Logitech Inc.) -- C:\Programme\Common Files\LogiShrd\LVCOMSER\LVComSer.exe

PRC - [2008.04.25 13:23:36 | 000,303,104 | ---- | M] (Fujitsu Siemens Computers) -- C:\Programme\Fujitsu Siemens Computers\SystemDiagnostics\OnlineDiagnostic\TestManager\TestHandler.exe

PRC - [2008.02.26 02:23:34 | 000,443,968 | ---- | M] (Google Inc.) -- C:\Programme\Picasa2\PicasaMediaDetector.exe

PRC - [2008.02.22 08:24:28 | 000,094,208 | ---- | M] (TODO: <公司名稱>) -- C:\Programme\OEM\OSD_1.16\OsdService.exe

 

 
 ========== Modules (No Company Name) ==========

 

MOD - [2011.07.11 15:56:36 | 000,185,040 | ---- | M] () -- C:\Programme\BitDefender\BitDefender 2011\framework.dll

MOD - [2011.06.03 07:24:18 | 000,189,184 | ---- | M] () -- C:\Programme\BitDefender\BitDefender 2011\txmlutil.dll

MOD - [2011.06.03 07:24:18 | 000,109,344 | ---- | M] () -- C:\Programme\BitDefender\BitDefender 2011\connector.dll

MOD - [2010.08.09 23:01:06 | 000,067,872 | ---- | M] () -- C:\Programme\Common Files\Apple\Apple Application Support\zlib1.dll

MOD - [2008.06.02 07:51:06 | 000,107,280 | ---- | M] () -- C:\Programme\Logitech\QuickCam\LAppRes.DLL

MOD - [2008.06.02 07:44:52 | 002,184,464 | ---- | M] () -- C:\Programme\Logitech\QuickCam\Quickcam.exe

MOD - [2008.06.02 07:42:46 | 000,149,264 | ---- | M] () -- C:\Programme\Common Files\LogiShrd\LComMgr\LogiVOIPDevicePlugin.dll

MOD - [2008.06.02 07:42:24 | 000,165,136 | ---- | M] () -- C:\Programme\Common Files\LogiShrd\LComMgr\LogiCordless4001.dll

MOD - [2008.06.02 07:42:12 | 000,138,000 | ---- | M] () -- C:\Programme\Common Files\LogiShrd\LComMgr\LogiCordless.dll

MOD - [2008.06.02 07:41:26 | 000,167,184 | ---- | M] () -- C:\Programme\Logitech\QuickCam\EFVal.dll

MOD - [2008.06.02 07:41:14 | 000,344,336 | ---- | M] () -- C:\Programme\Common Files\LogiShrd\LComMgr\DevMngr.dll

MOD - [2008.06.02 07:41:04 | 000,563,984 | ---- | M] () -- C:\Programme\Common Files\LogiShrd\LComMgr\Communications_Helper.exe

MOD - [2008.06.01 19:44:20 | 000,068,120 | ---- | M] () -- C:\Programme\Common Files\LogiShrd\LVCOMSER\LVCSPS.dll

 

 
 ========== Win32 Services (SafeList) ==========

 

SRV - [2011.07.11 15:56:37 | 002,090,016 | ---- | M] (BitDefender S.R.L.) [Auto | Running] -- C:\Program Files\BitDefender\BitDefender 2011\vsserv.exe -- (VSSERV)

SRV - [2011.06.03 07:23:47 | 000,043,936 | ---- | M] (BitDefender S.R.L.) [Auto | Running] -- C:\Program Files\BitDefender\BitDefender 2011\updatesrv.exe -- (Updatesrv)

SRV - [2010.11.30 06:19:06 | 000,307,544 | ---- | M] (BitDefender) [On_Demand | Stopped] -- C:\Programme\Common Files\BitDefender\BitDefender Arrakis Server\bin\arrakis3.exe -- (Update Server)

SRV - [2008.06.01 19:47:22 | 000,141,848 | ---- | M] (Logitech Inc.) [Auto | Stopped] -- C:\Programme\Common Files\LogiShrd\SrvLnch\SrvLnch.exe -- (LVSrvLauncher)

SRV - [2008.06.01 19:45:40 | 000,141,848 | ---- | M] (Logitech Inc.) [Auto | Running] -- C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe -- (LVPrcSrv)

SRV - [2008.06.01 19:43:58 | 000,186,904 | ---- | M] (Logitech Inc.) [Auto | Running] -- C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe -- (LVCOMSer)

SRV - [2008.04.25 13:23:36 | 000,303,104 | ---- | M] (Fujitsu Siemens Computers) [Auto | Running] -- C:\Program Files\Fujitsu Siemens Computers\SystemDiagnostics\OnlineDiagnostic\TestManager\TestHandler.exe -- (TestHandler)

SRV - [2008.02.22 08:24:28 | 000,094,208 | ---- | M] (TODO: <公司名稱>) [Auto | Running] -- C:\Programme\OEM\OSD_1.16\OsdService.exe -- (OsdService)

SRV - [2008.01.21 03:23:32 | 000,272,952 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Programme\Windows Defender\MpSvc.dll -- (WinDefend)

SRV - [2005.07.12 22:33:02 | 000,491,520 | ---- | M] () [On_Demand | Stopped] -- C:\Windows\System32\lxcjcoms.exe -- (lxcj_device)

 

 
 ========== Driver Services (SafeList) ==========

 

DRV - [2011.06.30 19:18:42 | 000,122,552 | ---- | M] (BitDefender LLC) [Kernel | On_Demand | Running] -- C:\Programme\BitDefender\BitDefender 2011\bdselfpr.sys -- (bdselfpr)

DRV - [2011.06.03 07:23:47 | 000,306,320 | ---- | M] (BitDefender S.R.L.) [File_System | Auto | Running] -- C:\Windows\System32\drivers\trufos.sys -- (Trufos)

DRV - [2011.03.24 14:36:18 | 000,353,096 | ---- | M] (BitDefender) [File_System | Boot | Running] -- C:\Windows\system32\DRIVERS\bdfsfltr.sys -- (bdfsfltr)

DRV - [2010.11.29 13:12:20 | 001,066,232 | ---- | M] (BitDefender) [File_System | On_Demand | Stopped] -- C:\Windows\System32\drivers\avckf.sys -- (avckf)

DRV - [2010.11.29 13:12:14 | 000,535,824 | ---- | M] (BitDefender) [File_System | On_Demand | Stopped] -- C:\Windows\System32\drivers\avc3.sys -- (avc3)

DRV - [2010.08.20 17:41:52 | 000,126,800 | ---- | M] (BitDefender LLC) [Kernel | System | Running] -- C:\Programme\Common Files\BitDefender\BitDefender Firewall\bdftdif.sys -- (Bdftdif)

DRV - [2010.08.20 14:41:58 | 000,072,784 | ---- | M] (BitDefender) [Kernel | System | Running] -- c:\Programme\Common Files\BitDefender\BitDefender Firewall\bdfndisf6.sys -- (Bdfndisf)

DRV - [2010.05.13 15:52:04 | 000,152,528 | ---- | M] (BitDefender S.R.L. Bucharest, ROMANIA) [File_System | On_Demand | Running] -- C:\Windows\System32\drivers\bdfm.sys -- (bdfm)

DRV - [2008.06.30 18:17:58 | 000,020,104 | ---- | M] (Dritek System Inc.) [Kernel | System | Running] -- C:\Programme\ECDeject\ECDejectIo.sys -- (ECDejectPortIO)

DRV - [2008.06.17 20:27:28 | 000,007,168 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\System32\directport.sys -- (GpdDevDPort)

DRV - [2008.06.02 04:46:34 | 003,644,568 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\lvuvc.sys -- (LVUVC) 1.3 MP Webcam(UVC)

DRV - [2008.06.01 19:45:06 | 000,025,624 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\LVPr2Mon.sys -- (LVPr2Mon)

DRV - [2008.06.01 19:44:54 | 002,142,488 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\LVMVdrv.sys -- (LVMVDrv)

DRV - [2008.06.01 19:43:24 | 002,109,976 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\Lvckap.sys -- (LVcKap)

DRV - [2008.05.07 17:47:36 | 000,085,136 | ---- | M] (JMicron Technology Corp.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\jmcr.sys -- (JMCR)

DRV - [2008.05.01 07:35:54 | 003,660,800 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\NETw5v32.sys -- (NETw5v32) Intel(R)

DRV - [2008.04.15 16:17:18 | 000,224,384 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\e1y6032.sys -- (e1yexpress) Intel(R)

DRV - [2008.04.03 13:58:46 | 000,076,688 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\jraid.sys -- (JRAID)

DRV - [2008.03.31 11:02:34 | 000,008,192 | ---- | M] (Windows (R) Codename Longhorn DDK provider) [Kernel | On_Demand | Running] -- C:\Windows\System32\kbfiltr.sys -- (GpdKbFilter)

DRV - [2008.01.21 03:23:26 | 000,035,328 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\circlass.sys -- (circlass)

DRV - [2008.01.21 03:23:24 | 000,022,072 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\wd.sys -- (Wd)

DRV - [2008.01.21 03:23:23 | 000,015,872 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\kbdhid.sys -- (kbdhid)

DRV - [2008.01.21 03:23:23 | 000,013,312 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\sffdisk.sys -- (sffdisk)

DRV - [2008.01.21 03:23:23 | 000,012,288 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\sffp_mmc.sys -- (sffp_mmc)

DRV - [2008.01.21 03:23:23 | 000,011,776 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\sffp_sd.sys -- (sffp_sd)

DRV - [2008.01.21 03:23:22 | 000,064,512 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\ipmidrv.sys -- (IPMIDRV)

DRV - [2008.01.21 03:23:22 | 000,061,496 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\gagp30kx.sys -- (gagp30kx)

DRV - [2008.01.21 03:23:22 | 000,059,448 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\uagp35.sys -- (uagp35)

DRV - [2008.01.21 03:23:21 | 000,094,776 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\msdsm.sys -- (msdsm)

DRV - [2008.01.21 03:23:20 | 000,105,016 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\mpio.sys -- (mpio)

DRV - [2008.01.21 03:23:20 | 000,019,968 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\sermouse.sys -- (sermouse)

DRV - [2008.01.21 03:23:02 | 000,030,264 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\i2omp.sys -- (i2omp)

DRV - [2008.01.21 03:23:01 | 000,248,832 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\rdpdr.sys -- (rdpdr)

DRV - [2008.01.21 03:23:01 | 000,109,112 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\nv_agp.sys -- (nv_agp)

DRV - [2008.01.21 03:23:01 | 000,060,984 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\uliagpkx.sys -- (uliagpkx)

DRV - [2008.01.21 03:23:01 | 000,056,888 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\viaagp.sys -- (viaagp)

DRV - [2008.01.21 03:23:01 | 000,056,376 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\agp440.sys -- (agp440)

DRV - [2008.01.21 03:23:01 | 000,049,720 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\isapnp.sys -- (isapnp)

DRV - [2008.01.21 03:23:01 | 000,045,568 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\blbdrive.sys -- (blbdrive)

DRV - [2008.01.21 03:23:00 | 000,044,032 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\amdk8.sys -- (AmdK8)

DRV - [2008.01.21 03:23:00 | 000,041,472 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\viac7.sys -- (ViaC7)

DRV - [2008.01.21 03:23:00 | 000,041,472 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\amdk7.sys -- (AmdK7)

DRV - [2008.01.21 03:23:00 | 000,040,960 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\processr.sys -- (Processor)

DRV - [2008.01.21 03:23:00 | 000,040,960 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\crusoe.sys -- (Crusoe)

DRV - [2008.01.21 03:23:00 | 000,017,976 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\intelide.sys -- (intelide)

DRV - [2008.01.21 03:23:00 | 000,017,976 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\amdide.sys -- (amdide)

DRV - [2008.01.21 03:23:00 | 000,016,440 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\pciide.sys -- (pciide)

DRV - [2008.01.21 03:23:00 | 000,011,264 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\wmiacpi.sys -- (WmiAcpi)

DRV - [2008.01.21 03:23:00 | 000,006,656 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\errdev.sys -- (ErrDev)

DRV - [2007.12.19 18:45:00 | 000,170,000 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\ahcix86s.sys -- (ahcix86s)

DRV - [2006.11.02 10:51:12 | 000,167,528 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\pcmcia.sys -- (pcmcia)

DRV - [2006.11.02 10:50:16 | 000,076,392 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\sbp2port.sys -- (sbp2port)

DRV - [2006.11.02 09:55:23 | 000,039,936 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\bthmodem.sys -- (BTHMODEM)

DRV - [2006.11.02 09:55:22 | 000,029,184 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\hidbth.sys -- (HidBth)

DRV - [2006.11.02 09:55:09 | 000,068,608 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\usbcir.sys -- (usbcir) eHome Infrared Receiver (USBCIR)

DRV - [2006.11.02 09:55:05 | 000,019,456 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\usbohci.sys -- (usbohci)

DRV - [2006.11.02 09:55:01 | 000,021,504 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\hidir.sys -- (HidIr)

DRV - [2006.11.02 09:52:52 | 000,020,608 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\wacompen.sys -- (WacomPen)

DRV - [2006.11.02 09:51:40 | 000,013,312 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\sfloppy.sys -- (sfloppy)

DRV - [2006.11.02 09:51:30 | 000,083,456 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\serial.sys -- (Serial)

DRV - [2006.11.02 09:51:30 | 000,079,360 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\parport.sys -- (Parport)

DRV - [2006.11.02 09:51:25 | 000,017,920 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\serenum.sys -- (Serenum)

DRV - [2006.11.02 09:51:23 | 000,008,704 | ---- | M] () [Kernel | Auto | Stopped] -- C:\Windows\system32\drivers\parvdm.sys -- (Parvdm)

 

 
 ========== Standard Registry (SafeList) ==========

 

 
 ========== Internet Explorer ==========

 

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank

 

 

IE - HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = hxxp://www.google.com/ie

IE - HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com

IE - HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com/ig/redirectdomain?brand=FUJD&bmod=FUJD

IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

 

IE - HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = hxxp://www.google.com/ie

IE - HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com

IE - HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com/ig/redirectdomain?brand=FUJD&bmod=FUJD

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

 

 

 

IE - HKU\S-1-5-21-497006800-118623431-4100490227-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank

IE - HKU\S-1-5-21-497006800-118623431-4100490227-1000\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1

IE - HKU\S-1-5-21-497006800-118623431-4100490227-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-21-497006800-118623431-4100490227-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

 
 ========== FireFox ==========

 

FF - prefs.js..browser.search.selectedEngine: "Bing"

FF - prefs.js..extensions.enabledItems: FFToolbar@bitdefender.com:7.0

FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}:6.0.21

 

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32.dll ()

FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=:  File not found

FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()

FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)

FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)

FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.99\npGoogleUpdate3.dll (Google Inc.)

FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.99\npGoogleUpdate3.dll (Google Inc.)

 

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\FFToolbar@bitdefender.com: C:\Program Files\BitDefender\BitDefender 2011\bdaphffext\ [2011.12.23 23:18:54 | 000,000,000 | ---D | M]

FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 9.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012.01.07 09:42:40 | 000,000,000 | ---D | M]

FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 9.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011.10.30 20:32:59 | 000,000,000 | ---D | M]

FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\bdThunderbird@bitdefender.com: C:\Program Files\BitDefender\BitDefender 2011\bdtbext\ [2011.12.23 23:18:54 | 000,000,000 | ---D | M]

 

[2009.07.11 09:27:08 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Madlen\AppData\Roaming\mozilla\Extensions

[2011.10.30 09:57:38 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Madlen\AppData\Roaming\mozilla\Firefox\Profiles\a7v4426e.default\extensions

[2011.06.16 19:37:42 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Users\Madlen\AppData\Roaming\mozilla\Firefox\Profiles\a7v4426e.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}

[2011.11.09 15:06:40 | 000,000,000 | ---D | M] (No name found) -- C:\Programme\Mozilla Firefox\extensions

[2011.10.31 15:54:34 | 000,000,000 | ---D | M] (Skype Click to Call) -- C:\Programme\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}

[2012.01.07 09:42:40 | 000,121,816 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll

[2010.09.30 14:47:30 | 000,423,656 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll

[2011.09.29 02:24:37 | 000,001,392 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\amazondotcom-de.xml

[2011.09.29 02:16:42 | 000,002,252 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\bing.xml

[2011.09.29 02:24:37 | 000,001,153 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\eBay-de.xml

[2011.09.29 02:24:37 | 000,006,805 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\leo_ende_de.xml

[2011.09.29 02:24:37 | 000,001,178 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-de.xml

[2011.09.29 02:24:37 | 000,001,105 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\yahoo-de.xml

 
 ========== Chrome  ==========

 

CHR - default_search_provider: Google (Enabled)

CHR - default_search_provider: search_url = {google:baseURL}search?{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}sourceid=chrome&ie={inputEncoding}&q={searchTerms}

CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}client=chrome&hl={language}&q={searchTerms}

CHR - plugin: Shockwave Flash (Disabled) = C:\Users\Madlen\AppData\Local\Google\Chrome\User Data\PepperFlash\11.1.31.203\pepflashplayer.dll

CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files\Google\Chrome\Application\17.0.963.56\gcswf32.dll

CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\system32\Macromed\Flash\NPSWF32.dll

CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer

CHR - plugin: Native Client (Enabled) = C:\Program Files\Google\Chrome\Application\17.0.963.56\ppGoogleNaClPluginChrome.dll

CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files\Google\Chrome\Application\17.0.963.56\pdf.dll

CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll

CHR - plugin: Java Deployment Toolkit 6.0.210.7 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npdeployJava1.dll

CHR - plugin: Java(TM) Platform SE 6 U21 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll

CHR - plugin: QuickTime Plug-in 7.6.7 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin.dll

CHR - plugin: QuickTime Plug-in 7.6.7 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin2.dll

CHR - plugin: QuickTime Plug-in 7.6.7 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin3.dll

CHR - plugin: QuickTime Plug-in 7.6.7 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin4.dll

CHR - plugin: QuickTime Plug-in 7.6.7 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin5.dll

CHR - plugin: QuickTime Plug-in 7.6.7 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin6.dll

CHR - plugin: QuickTime Plug-in 7.6.7 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin7.dll

CHR - plugin: Google Update (Enabled) = C:\Program Files\Google\Update\1.3.21.99\npGoogleUpdate3.dll

CHR - plugin: iTunes Application Detector (Enabled) = C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll

CHR - plugin: Windows Presentation Foundation (Enabled) = C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll

CHR - plugin: Default Plug-in (Enabled) = default_plugin

CHR - Extension: YouTube = C:\Users\Madlen\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\

CHR - Extension: Google-Suche = C:\Users\Madlen\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.17_0\

CHR - Extension: Google Mail = C:\Users\Madlen\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\

 

O1 HOSTS File: ([2006.09.18 22:41:30 | 000,000,761 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts

O1 - Hosts: 127.0.0.1       localhost

O1 - Hosts: ::1             localhost

O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.

O2 - BHO: (Windows Live Anmelde-Hilfsprogramm) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Programme\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)

O2 - BHO: (Skype Browser Helper) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Programme\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)

O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Programme\Google\GoogleToolbarNotifier\5.7.7227.1100\swg.dll (Google Inc.)

O3 - HKLM\..\Toolbar: (Bitdefender Toolbar) - {381FFDE8-2394-4F90-B10D-FC6124A40F8C} - C:\Programme\BitDefender\BitDefender 2011\ietoolbar.dll (BitDefender S.R.L.)

O4 - HKLM..\Run: [BDAgent] C:\Program Files\BitDefender\BitDefender 2011\bdagent.exe (BitDefender S.R.L.)

O4 - HKLM..\Run: [BitDefender Antiphishing Helper] C:\Program Files\BitDefender\BitDefender 2011\ieshow.exe (BitDefender S.R.L.)

O4 - HKLM..\Run: [ECDeject] C:\Programme\ECDeject\CDeject.exe (Dritek System Inc.)

O4 - HKLM..\Run: [FSCRecovery] c:\Programme\Fujitsu Siemens Computers\Fujitsu Siemens Computers Recovery\FSCRecoveryReminder.exe (Fujitsu Siemens Computers GmbH)

O4 - HKLM..\Run: [Google EULA Launcher] c:\Program Files\Google\Google EULA\GoogleEULALauncher.exe ( )

O4 - HKLM..\Run: [LogitechCommunicationsManager] C:\Program Files\Common Files\LogiShrd\LComMgr\Communications_Helper.exe ()

O4 - HKLM..\Run: [LogitechQuickCamRibbon] C:\Program Files\Logitech\QuickCam\Quickcam.exe ()

O4 - HKLM..\Run: [OSD] C:\Programme\OEM\OSD_1.16\osd.exe (ODM)

O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)

O4 - HKU\.DEFAULT..\Run: [fsc-reg] c:\fsc-reg\fscreg.exe (Fujitsu Siemens)

O4 - HKU\.DEFAULT..\Run: [Picasa Media Detector] C:\Programme\Picasa2\PicasaMediaDetector.exe (Google Inc.)

O4 - HKU\S-1-5-18..\Run: [fsc-reg] c:\fsc-reg\fscreg.exe (Fujitsu Siemens)

O4 - HKU\S-1-5-18..\Run: [Picasa Media Detector] C:\Programme\Picasa2\PicasaMediaDetector.exe (Google Inc.)

O4 - HKU\S-1-5-19..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.dll (Microsoft Corporation)

O4 - HKU\S-1-5-20..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.dll (Microsoft Corporation)

O4 - HKU\S-1-5-21-497006800-118623431-4100490227-1000..\Run: [fsc-reg] C:\fsc-reg\fscreg.exe (Fujitsu Siemens)

O4 - HKU\S-1-5-21-497006800-118623431-4100490227-1000..\Run: [Picasa Media Detector] C:\Programme\Picasa2\PicasaMediaDetector.exe (Google Inc.)

O4 - HKU\S-1-5-21-497006800-118623431-4100490227-1000..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.dll (Microsoft Corporation)

O4 - Startup: C:\Users\Madlen\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2007 Bildschirmausschnitt- und Startprogramm.lnk = C:\Programme\Microsoft Office\Office12\ONENOTEM.EXE (Microsoft Corporation)

O7 - HKU\S-1-5-21-497006800-118623431-4100490227-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145

O8 - Extra context menu item: Nach Microsoft E&xel exportieren - C:\Programme\Microsoft Office\Office12\EXCEL.EXE (Microsoft Corporation)

O9 - Extra Button: An OneNote senden - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Programme\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)

O9 - Extra 'Tools' menuitem : An OneNote s&enden - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Programme\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)

O9 - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Programme\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)

O9 - Extra 'Tools' menuitem : Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Programme\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)

O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Programme\Microsoft Office\Office12\REFIEBAR.DLL (Microsoft Corporation)

O10 - NameSpace_Catalog5\Catalog_Entries\000000000005 [] - C:\Programme\Bonjour\mdnsNSP.dll (Apple Inc.)

O13 - gopher Prefix: missing

O15 - HKU\S-1-5-21-497006800-118623431-4100490227-1000\..Trusted Ranges: GD ([http] in Lokales Intranet)

O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab (Java Plug-in 1.6.0_21)

O16 - DPF: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab (Java Plug-in 1.6.0_21)

O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab (Java Plug-in 1.6.0_21)

O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)

O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.2.1

O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{10CF6337-E418-4DC0-BD3B-CAE6A5BA446B}: DhcpNameServer = 192.168.2.1

O18 - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - C:\Programme\Windows Live\Messenger\msgrapp.14.0.8089.0726.dll (Microsoft Corporation)

O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Programme\Common Files\microsoft shared\Help\hxds.dll (Microsoft Corporation)

O18 - Protocol\Handler\ms-itss {0A9007C0-4076-11D3-8789-0000F8105754} - c:\Programme\Common Files\microsoft shared\Information Retrieval\msitss.dll (Microsoft Corporation)

O18 - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - C:\Programme\Windows Live\Messenger\msgrapp.14.0.8089.0726.dll (Microsoft Corporation)

O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Programme\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)

O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Programme\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)

O20 - AppInit_DLLs: (C:\PROGRA~1\Google\GOOGLE~2\GOEC62~1.DLL) - C:\Programme\Google\Google Desktop Search\GoogleDesktopNetwork3.dll (Google)

O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)

O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)

O24 - Desktop WallPaper: C:\Users\Madlen\AppData\Roaming\Microsoft\Windows Photo Gallery\Hintergrundbild der Windows-Fotogalerie.jpg

O24 - Desktop BackupWallPaper: C:\Users\Madlen\AppData\Roaming\Microsoft\Windows Photo Gallery\Hintergrundbild der Windows-Fotogalerie.jpg

O32 - HKLM CDRom: AutoRun - 1

O32 - AutoRun File - [2006.09.18 22:43:36 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]

O34 - HKLM BootExecute: (autocheck autochk *)

O35 - HKLM\..comfile [open] -- "%1" %*

O35 - HKLM\..exefile [open] -- "%1" %*

O37 - HKLM\...com [@ = comfile] -- "%1" %*

O37 - HKLM\...exe [@ = exefile] -- "%1" %*

 

NetSvcs: FastUserSwitchingCompatibility -  File not found

NetSvcs: Ias - C:\Windows\System32\ias.dll (Microsoft Corporation)

NetSvcs: Nla -  File not found

NetSvcs: Ntmssvc -  File not found

NetSvcs: NWCWorkstation -  File not found

NetSvcs: Nwsapagent -  File not found

NetSvcs: SRService -  File not found

NetSvcs: WmdmPmSp -  File not found

NetSvcs: LogonHours -  File not found

NetSvcs: PCAudit -  File not found

NetSvcs: helpsvc -  File not found

NetSvcs: uploadmgr -  File not found

 

 

SafeBootMin: AppMgmt - Service

SafeBootMin: Base - Driver Group

SafeBootMin: Boot Bus Extender - Driver Group

SafeBootMin: Boot file system - Driver Group

SafeBootMin: File system - Driver Group

SafeBootMin: Filter - Driver Group

SafeBootMin: HelpSvc - Service

SafeBootMin: NTDS -  File not found

SafeBootMin: PCI Configuration - Driver Group

SafeBootMin: PNP Filter - Driver Group

SafeBootMin: Primary disk - Driver Group

SafeBootMin: sacsvr - Service

SafeBootMin: SCSI Class - Driver Group

SafeBootMin: sermouse.sys - C:\Windows\system32\drivers\sermouse.sys ()

SafeBootMin: System Bus Extender - Driver Group

SafeBootMin: WinDefend - C:\Programme\Windows Defender\MpSvc.dll (Microsoft Corporation)

SafeBootMin: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers

SafeBootMin: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive

SafeBootMin: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive

SafeBootMin: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller

SafeBootMin: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc

SafeBootMin: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard

SafeBootMin: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse

SafeBootMin: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters

SafeBootMin: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter

SafeBootMin: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System

SafeBootMin: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive

SafeBootMin: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy

SafeBootMin: {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers

SafeBootMin: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume

SafeBootMin: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices

SafeBootMin: {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices

SafeBootMin: {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices

 

SafeBootNet: AppMgmt - Service

SafeBootNet: Base - Driver Group

SafeBootNet: Boot Bus Extender - Driver Group

SafeBootNet: Boot file system - Driver Group

SafeBootNet: File system - Driver Group

SafeBootNet: Filter - Driver Group

SafeBootNet: HelpSvc - Service

SafeBootNet: Messenger - Service

SafeBootNet: NDIS Wrapper - Driver Group

SafeBootNet: NetBIOSGroup - Driver Group

SafeBootNet: NetDDEGroup - Driver Group

SafeBootNet: Network - Driver Group

SafeBootNet: NetworkProvider - Driver Group

SafeBootNet: NTDS -  File not found

SafeBootNet: PCI Configuration - Driver Group

SafeBootNet: PNP Filter - Driver Group

SafeBootNet: PNP_TDI - Driver Group

SafeBootNet: Primary disk - Driver Group

SafeBootNet: rdsessmgr - Service

SafeBootNet: sacsvr - Service

SafeBootNet: SCSI Class - Driver Group

SafeBootNet: sermouse.sys - C:\Windows\system32\drivers\sermouse.sys ()

SafeBootNet: Streams Drivers - Driver Group

SafeBootNet: System Bus Extender - Driver Group

SafeBootNet: TDI - Driver Group

SafeBootNet: WinDefend - C:\Programme\Windows Defender\MpSvc.dll (Microsoft Corporation)

SafeBootNet: WudfPf - Driver

SafeBootNet: WudfUsbccidDriver - Driver

SafeBootNet: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers

SafeBootNet: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive

SafeBootNet: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive

SafeBootNet: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller

SafeBootNet: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc

SafeBootNet: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard

SafeBootNet: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse

SafeBootNet: {4D36E972-E325-11CE-BFC1-08002BE10318} - Net

SafeBootNet: {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient

SafeBootNet: {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService

SafeBootNet: {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans

SafeBootNet: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters

SafeBootNet: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter

SafeBootNet: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System

SafeBootNet: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive

SafeBootNet: {50DD5230-BA8A-11D1-BF5D-0000F805F530} - Smart card readers

SafeBootNet: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy

SafeBootNet: {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers

SafeBootNet: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume

SafeBootNet: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices

SafeBootNet: {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices

SafeBootNet: {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices

 

ActiveX: {08B0E5C0-4FCB-11CF-AAA5-00401C608500} - Java (Sun)

ActiveX: {2179C5D3-EBFF-11CF-B6FD-00AA00B4E220} - 

ActiveX: {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Microsoft Windows Media Player 11.0

ActiveX: {25FFAAD0-F4A3-4164-95FF-4461E9F35D51} - .NET Framework

ActiveX: {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - %SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll

ActiveX: {3af36230-a269-11d1-b5bf-0000f8051515} - Offline Browsing Pack

ActiveX: {3C3901C5-3455-3E0A-A214-0B093A5070A6} - .NET Framework

ActiveX: {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles%\Windows Mail\WinMail.exe" OCInstallUserConfigOE

ActiveX: {44BBA848-CC51-11CF-AAFA-00AA00B6015C} - 

ActiveX: {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx

ActiveX: {45ea75a0-a269-11d1-b5bf-0000f8051515} - Internet Explorer Help

ActiveX: {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.6

ActiveX: {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Internet Explorer Setup Tools

ActiveX: {630b1da0-b465-11d1-9948-00c04f98bbc9} - Browsing Enhancements

ActiveX: {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player

ActiveX: {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - MSN Site Access

ActiveX: {7790769C-0471-11d2-AF11-00C04FA35D02} - Address Book 7

ActiveX: {7C028AF8-F614-47B3-82DA-BA94E41B1089} - .NET Framework

ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4340} - regsvr32.exe /s /n /i:U shell32.dll

ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4383} - C:\Windows\system32\ie4uinit.exe -BaseSettings

ActiveX: {89B4C1CD-B018-4511-B0A1-5476DBF70820} - C:\Windows\system32\Rundll32.exe C:\Windows\system32\mscories.dll,Install

ActiveX: {9381D8F2-0288-11D0-9501-00AA00B911A5} - Dynamic HTML Data Binding

ActiveX: {C9E9A340-D1F1-11D0-821E-444553540600} - Internet Explorer Core Fonts

ActiveX: {CDD7975E-60F8-41d5-8149-19E51D6F71D0} - Windows Movie Maker v2.1

ActiveX: {D27CDB6E-AE6D-11CF-96B8-444553540000} - Adobe Flash Player

ActiveX: {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - HTML Help

ActiveX: {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface

ActiveX: >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - C:\Windows\system32\unregmp2.exe /ShowWMP

ActiveX: >{26923b43-4d38-484f-9b9e-de460746276c} - C:\Windows\system32\ie4uinit.exe -UserIconConfig

ActiveX: >{60B49E34-C7CC-11D0-8953-00A0C90347FF} - "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\iedkcs32.dll",BrandIEActiveSetup SIGNUP

 

Drivers32: msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)

Drivers32: MSVideo - C:\Windows\System32\vfwwdm32.dll (Microsoft Corporation)

Drivers32: MSVideo8 - C:\Windows\System32\vfwwdm32.dll (Microsoft Corporation)

Drivers32: vidc.cvid - C:\Windows\System32\iccvid.dll (Radius Inc.)

Drivers32: vidc.i420 - C:\Windows\System32\lvcodec2.dll (Logitech Inc.)

Drivers32: vidc.VP60 - C:\Windows\System32\vp6vfw.dll (On2.com)

Drivers32: vidc.VP61 - C:\Windows\System32\vp6vfw.dll (On2.com)

 

CREATERESTOREPOINT

Restore point Set: OTL Restore Point

 
 ========== Files/Folders - Created Within 30 Days ==========

 

[2012.02.20 15:33:29 | 000,000,000 | ---D | C] -- C:\Program Files\ESET

[2012.02.20 14:10:29 | 000,000,000 | ---D | C] -- C:\Users\Madlen\AppData\Roaming\Malwarebytes

[2012.02.20 14:10:25 | 000,020,464 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys

[2012.02.20 14:10:25 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware

[2012.02.20 14:10:25 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware

[2012.02.20 14:10:25 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes

[2012.02.14 13:18:31 | 000,000,000 | ---D | C] -- C:\output

[2010.08.25 18:59:08 | 000,004,096 | ---- | C] ( ) -- C:\Windows\System32\IGFXDEVLib.dll

[2009.09.11 17:50:59 | 000,001,356 | ---- | C] () -- C:\Users\Madlen\AppData\Local\d3d9caps.dat

[2009.07.26 19:28:57 | 000,000,056 | -H-- | C] () -- C:\ProgramData\ezsidmv.dat

[2009.07.11 13:57:05 | 000,181,248 | ---- | C] () -- C:\Users\Madlen\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

[2009.07.10 23:50:15 | 000,070,744 | ---- | C] () -- C:\Users\Madlen\AppData\Local\GDIPFONTCACHEV1.DAT

[3 C:\Users\Madlen\Documents\*.tmp files -> C:\Users\Madlen\Documents\*.tmp -> ]

[1 C:\Windows\System32\*.tmp files -> C:\Windows\System32\*.tmp -> ]

 
 ========== Files - Modified Within 30 Days ==========

 

[2012.02.21 15:00:00 | 000,000,420 | -H-- | M] () -- C:\Windows\tasks\User_Feed_Synchronization-{1FDACA76-F81F-45DF-B571-75107371B616}.job

[2012.02.21 14:32:03 | 000,001,098 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job

[2012.02.21 13:18:10 | 000,003,216 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0

[2012.02.21 13:18:10 | 000,003,216 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0

[2012.02.21 13:11:22 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat

[2012.02.21 11:59:44 | 000,628,742 | ---- | M] () -- C:\Windows\System32\perfh007.dat

[2012.02.21 11:59:44 | 000,595,996 | ---- | M] () -- C:\Windows\System32\perfh009.dat

[2012.02.21 11:59:44 | 000,126,454 | ---- | M] () -- C:\Windows\System32\perfc007.dat

[2012.02.21 11:59:44 | 000,104,070 | ---- | M] () -- C:\Windows\System32\perfc009.dat

[2012.02.21 09:19:44 | 000,001,799 | ---- | M] () -- C:\Users\Madlen\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Tintenwarnungen überwachen - HP Deskjet 3070 B611 series.lnk

[2012.02.21 09:18:20 | 000,001,094 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job

[2012.02.21 09:17:30 | 3180,212,224 | -HS- | M] () -- C:\hiberfil.sys

[2012.02.20 23:37:08 | 000,000,012 | ---- | M] () -- C:\Windows\bthservsdp.dat

[2012.02.20 23:33:33 | 000,001,977 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk

[2012.02.20 14:10:26 | 000,000,912 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk

[2012.02.19 19:59:16 | 000,001,356 | ---- | M] () -- C:\Users\Madlen\AppData\Local\d3d9caps.dat

[2012.02.19 07:00:03 | 000,002,231 | ---- | M] () -- C:\Users\Public\Desktop\iTunes.lnk

[2012.02.14 14:17:59 | 000,050,871 | ---- | M] () -- C:\Users\Madlen\Desktop\Love-heart-cookie-italiancookie.jpg

[2012.02.14 13:18:53 | 000,000,069 | ---- | M] () -- C:\Windows\NeroDigital.ini

[2012.02.09 21:25:11 | 000,181,248 | ---- | M] () -- C:\Users\Madlen\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

[2012.02.06 21:51:19 | 000,002,377 | ---- | M] () -- C:\Users\Public\Desktop\Skype.lnk

[2012.02.01 07:23:41 | 235,960,745 | ---- | M] () -- C:\Windows\MEMORY.DMP

[2012.01.30 15:09:24 | 001,116,198 | ---- | M] () -- C:\Users\Madlen\Desktop\CIMG7252.JPG

[2012.01.29 19:39:15 | 000,035,360 | ---- | M] () -- C:\Users\Madlen\Desktop\395005_10151073009205714_848475713_22401534_1440424499_n.jpg

[2012.01.27 16:14:46 | 000,015,010 | ---- | M] () -- C:\Users\Madlen\Desktop\motivation_fuenf.jpg

[3 C:\Users\Madlen\Documents\*.tmp files -> C:\Users\Madlen\Documents\*.tmp -> ]

[1 C:\Windows\System32\*.tmp files -> C:\Windows\System32\*.tmp -> ]

 
 ========== Files Created - No Company Name ==========

 

[2012.02.20 23:04:13 | 3180,212,224 | -HS- | C] () -- C:\hiberfil.sys

[2012.02.20 14:10:26 | 000,000,912 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk

[2012.02.14 14:18:01 | 000,050,871 | ---- | C] () -- C:\Users\Madlen\Desktop\Love-heart-cookie-italiancookie.jpg

[2012.02.05 10:35:54 | 000,000,069 | ---- | C] () -- C:\Windows\NeroDigital.ini

[2012.01.30 15:08:56 | 001,116,198 | ---- | C] () -- C:\Users\Madlen\Desktop\CIMG7252.JPG

[2012.01.29 19:39:14 | 000,035,360 | ---- | C] () -- C:\Users\Madlen\Desktop\395005_10151073009205714_848475713_22401534_1440424499_n.jpg

[2012.01.27 16:14:45 | 000,015,010 | ---- | C] () -- C:\Users\Madlen\Desktop\motivation_fuenf.jpg

[2011.10.07 12:59:15 | 000,000,057 | ---- | C] () -- C:\ProgramData\Ament.ini

[2011.04.26 19:03:52 | 000,000,016 | ---- | C] () -- C:\Windows\System32\asdict.dat

[2011.04.26 18:11:45 | 000,562,893 | ---- | C] () -- C:\ProgramData\bdinstall.bin

[2011.03.30 22:13:26 | 001,841,000 | ---- | C] () -- C:\Windows\System32\HPScanTRDrv_DJ3070_B611.dll

[2010.08.25 19:30:02 | 000,439,308 | ---- | C] () -- C:\Windows\System32\igcompkrng500.bin

[2010.08.25 19:30:00 | 000,982,240 | ---- | C] () -- C:\Windows\System32\igkrng500.bin

[2010.08.25 19:30:00 | 000,092,356 | ---- | C] () -- C:\Windows\System32\igfcg500m.bin

[2010.08.25 18:57:00 | 000,000,151 | ---- | C] () -- C:\Windows\System32\GfxUI.exe.config

[2010.08.25 18:52:00 | 000,208,896 | ---- | C] () -- C:\Windows\System32\iglhsip32.dll

[2010.08.25 18:52:00 | 000,143,360 | ---- | C] () -- C:\Windows\System32\iglhcp32.dll

[2010.07.08 09:37:14 | 000,101,544 | ---- | C] () -- C:\Program Files\Common Files\LinkInstaller.exe

[2010.07.04 22:06:11 | 000,000,072 | ---- | C] () -- C:\Users\Madlen\AppData\Roaming\wklnhst.dat

[2010.06.24 00:44:43 | 000,024,064 | ---- | C] () -- C:\Users\Madlen\AppData\Roaming\UserTile.png

 
 ========== LOP Check ==========

 

[2011.04.26 18:59:15 | 000,000,000 | ---D | M] -- C:\Users\Madlen\AppData\Roaming\BitDefender

[2011.10.12 15:19:28 | 000,000,000 | ---D | M] -- C:\Users\Madlen\AppData\Roaming\Phase6

[2012.02.14 13:19:56 | 000,000,000 | ---D | M] -- C:\Users\Madlen\AppData\Roaming\PhotoScape

[2011.04.26 18:52:37 | 000,000,000 | ---D | M] -- C:\Users\Madlen\AppData\Roaming\QuickScan

[2010.07.04 22:06:12 | 000,000,000 | ---D | M] -- C:\Users\Madlen\AppData\Roaming\Template

[2012.02.20 23:37:09 | 000,032,536 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT

[2012.02.21 15:00:00 | 000,000,420 | -H-- | M] () -- C:\Windows\Tasks\User_Feed_Synchronization-{1FDACA76-F81F-45DF-B571-75107371B616}.job

 
 ========== Purity Check ==========

 

 

 
 ========== Custom Scans ==========

 

 
 < %ALLUSERSPROFILE%\Application Data\*. >

 
 < %ALLUSERSPROFILE%\Application Data\*.exe /s >

 
 < %APPDATA%\*. >

[2009.07.11 14:06:20 | 000,000,000 | ---D | M] -- C:\Users\Madlen\AppData\Roaming\Adobe

[2010.09.03 12:01:39 | 000,000,000 | ---D | M] -- C:\Users\Madlen\AppData\Roaming\Apple Computer

[2011.04.26 18:59:15 | 000,000,000 | ---D | M] -- C:\Users\Madlen\AppData\Roaming\BitDefender

[2011.05.05 19:41:46 | 000,000,000 | ---D | M] -- C:\Users\Madlen\AppData\Roaming\DivX

[2011.05.24 19:55:42 | 000,000,000 | ---D | M] -- C:\Users\Madlen\AppData\Roaming\dvdcss

[2009.07.11 09:25:24 | 000,000,000 | ---D | M] -- C:\Users\Madlen\AppData\Roaming\Google

[2009.07.10 23:50:01 | 000,000,000 | ---D | M] -- C:\Users\Madlen\AppData\Roaming\Identities

[2010.01.04 17:38:40 | 000,000,000 | ---D | M] -- C:\Users\Madlen\AppData\Roaming\Macromedia

[2012.02.20 14:10:29 | 000,000,000 | ---D | M] -- C:\Users\Madlen\AppData\Roaming\Malwarebytes

[2006.11.02 13:37:34 | 000,000,000 | ---D | M] -- C:\Users\Madlen\AppData\Roaming\Media Center Programs

[2011.03.11 23:45:23 | 000,000,000 | --SD | M] -- C:\Users\Madlen\AppData\Roaming\Microsoft

[2011.10.12 15:19:35 | 000,000,000 | ---D | M] -- C:\Users\Madlen\AppData\Roaming\Mozilla

[2009.11.11 20:21:09 | 000,000,000 | ---D | M] -- C:\Users\Madlen\AppData\Roaming\Nero

[2011.10.12 15:19:28 | 000,000,000 | ---D | M] -- C:\Users\Madlen\AppData\Roaming\Phase6

[2012.02.14 13:19:56 | 000,000,000 | ---D | M] -- C:\Users\Madlen\AppData\Roaming\PhotoScape

[2011.04.26 18:52:37 | 000,000,000 | ---D | M] -- C:\Users\Madlen\AppData\Roaming\QuickScan

[2012.02.21 14:48:57 | 000,000,000 | ---D | M] -- C:\Users\Madlen\AppData\Roaming\Skype

[2011.10.30 19:12:23 | 000,000,000 | ---D | M] -- C:\Users\Madlen\AppData\Roaming\skypePM

[2010.07.04 22:06:12 | 000,000,000 | ---D | M] -- C:\Users\Madlen\AppData\Roaming\Template

[2011.11.19 16:29:54 | 000,000,000 | ---D | M] -- C:\Users\Madlen\AppData\Roaming\vlc

 
 < %APPDATA%\*.exe /s >

[2009.07.10 23:49:24 | 000,008,704 | R--- | M] () -- C:\Users\Madlen\AppData\Roaming\Microsoft\Installer\{9A3BC157-B94F-4EFD-ABA9-1E56DEB00655}\Icon9A3BC1573.exe

 
 < %SYSTEMDRIVE%\*.exe >

 

 
 < MD5 for: AGP440.SYS  >

[2008.01.21 03:23:01 | 000,056,376 | ---- | M] (Microsoft Corporation) MD5=13F9E33747E6B41A3FF305C37DB0D360 -- C:\Windows\System32\DriverStore\FileRepository\machine.inf_51b95d75\AGP440.sys

[2008.01.21 03:23:01 | 000,056,376 | ---- | M] (Microsoft Corporation) MD5=13F9E33747E6B41A3FF305C37DB0D360 -- C:\Windows\System32\DriverStore\FileRepository\machine.inf_f750e484\AGP440.sys

[2008.01.21 03:23:01 | 000,056,376 | ---- | M] (Microsoft Corporation) MD5=13F9E33747E6B41A3FF305C37DB0D360 -- C:\Windows\winsxs\x86_machine.inf_31bf3856ad364e35_6.0.6001.18000_none_ba12ed3bbeb0d97a\AGP440.sys

[2008.01.21 03:23:01 | 000,056,376 | ---- | M] (Microsoft Corporation) MD5=13F9E33747E6B41A3FF305C37DB0D360 -- C:\Windows\winsxs\x86_machine.inf_31bf3856ad364e35_6.0.6002.18005_none_bbfe6647bbd2a4c6\AGP440.sys

[2006.11.02 10:49:52 | 000,053,864 | ---- | M] (Microsoft Corporation) MD5=EF23439CDD587F64C2C1B8825CEAD7D8 -- C:\Windows\System32\DriverStore\FileRepository\machine.inf_920a2c1f\AGP440.sys

[2008.01.21 03:23:01 | 000,056,376 | ---- | M] () Unable to obtain MD5 -- C:\Windows\System32\drivers\AGP440.sys

 
 < MD5 for: AHCIX86S.SYS  >

[2007.12.19 18:45:00 | 000,170,000 | ---- | M] (AMD Technologies Inc.) MD5=0DEE2B628D4C6E23285BB91EFFDABFDE -- C:\Windows\System32\DriverStore\FileRepository\ahcix86s.inf_71554ba4\ahcix86s.sys

[2007.12.19 18:45:00 | 000,170,000 | ---- | M] () Unable to obtain MD5 -- C:\Windows\System32\drivers\ahcix86s.sys

 
 < MD5 for: ATAPI.SYS  >

[2009.04.11 07:32:26 | 000,019,944 | ---- | M] (Microsoft Corporation) MD5=1F05B78AB91C9075565A9D8A4B880BC4 -- C:\Windows\System32\drivers\atapi.sys

[2009.04.11 07:32:26 | 000,019,944 | ---- | M] (Microsoft Corporation) MD5=1F05B78AB91C9075565A9D8A4B880BC4 -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_b12d8e84\atapi.sys

[2009.04.11 07:32:26 | 000,019,944 | ---- | M] (Microsoft Corporation) MD5=1F05B78AB91C9075565A9D8A4B880BC4 -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.0.6002.18005_none_df23a1261eab99e8\atapi.sys

[2008.01.21 03:23:00 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=2D9C903DC76A66813D350A562DE40ED9 -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_cc18792d\atapi.sys

[2008.01.21 03:23:00 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=2D9C903DC76A66813D350A562DE40ED9 -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.0.6001.18000_none_dd38281a2189ce9c\atapi.sys

[2006.11.02 10:49:36 | 000,019,048 | ---- | M] (Microsoft Corporation) MD5=4F4FCB8B6EA06784FB6D475B7EC7300F -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_c6c2e699\atapi.sys

[2008.06.03 04:29:54 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=9C0E70031905ADBF94EDB9EA14AF943B -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_7f3e4ed9\atapi.sys

[2008.06.03 04:29:54 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=9C0E70031905ADBF94EDB9EA14AF943B -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.0.6001.22193_none_dd6376773aedb5e4\atapi.sys

[2008.06.03 04:27:21 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=E26DDFE464B464DAF1C739122978D1D6 -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_b7393fc6\atapi.sys

[2008.06.03 04:27:21 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=E26DDFE464B464DAF1C739122978D1D6 -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.0.6000.20847_none_dbb74a7b3d9afbc1\atapi.sys

 
 < MD5 for: CNGAUDIT.DLL  >

[2006.11.02 10:46:03 | 000,011,776 | ---- | M] (Microsoft Corporation) MD5=7F15B4953378C8B5161D65C26D5FED4D -- C:\Windows\System32\cngaudit.dll

[2006.11.02 10:46:03 | 000,011,776 | ---- | M] (Microsoft Corporation) MD5=7F15B4953378C8B5161D65C26D5FED4D -- C:\Windows\winsxs\x86_microsoft-windows-cngaudit-dll_31bf3856ad364e35_6.0.6000.16386_none_e62d292932a96ce6\cngaudit.dll

 
 < MD5 for: EVENTLOG.DLL  >

[2010.11.30 06:19:06 | 000,008,376 | ---- | M] () MD5=68F9AD291B0C16F6B4AAEBFC26960EFA -- C:\Program Files\Common Files\BitDefender\BitDefender Arrakis Server\lib\eventlog.dll

 
 < MD5 for: IASTOR.SYS  >

[2007.09.29 23:03:12 | 000,308,248 | ---- | M] (Intel Corporation) MD5=E5A0034847537EAEE3C00349D5C34C5F -- C:\Windows\System32\DriverStore\FileRepository\iaahci.inf_7baf6192\iaStor.sys

[2007.09.29 23:03:12 | 000,308,248 | ---- | M] (Intel Corporation) MD5=E5A0034847537EAEE3C00349D5C34C5F -- C:\Windows\System32\DriverStore\FileRepository\iastor.inf_41af7b1f\iaStor.sys

[2007.09.29 23:03:12 | 000,308,248 | ---- | M] () Unable to obtain MD5 -- C:\Windows\System32\drivers\iaStor.sys

 
 < MD5 for: IASTORV.SYS  >

[2008.01.21 03:23:23 | 000,235,064 | ---- | M] (Intel Corporation) MD5=54155EA1B0DF185878E0FC9EC3AC3A14 -- C:\Windows\System32\DriverStore\FileRepository\iastorv.inf_c9df7691\iaStorV.sys

[2008.01.21 03:23:23 | 000,235,064 | ---- | M] (Intel Corporation) MD5=54155EA1B0DF185878E0FC9EC3AC3A14 -- C:\Windows\winsxs\x86_iastorv.inf_31bf3856ad364e35_6.0.6001.18000_none_af11527887c7fa8f\iaStorV.sys

[2006.11.02 10:51:25 | 000,232,040 | ---- | M] (Intel Corporation) MD5=C957BF4B5D80B46C5017BF0101E6C906 -- C:\Windows\System32\DriverStore\FileRepository\iastorv.inf_37cdafa4\iaStorV.sys

[2008.01.21 03:23:23 | 000,235,064 | ---- | M] () Unable to obtain MD5 -- C:\Windows\System32\drivers\iaStorV.sys

 
 < MD5 for: NETLOGON.DLL  >

[2009.04.11 07:28:23 | 000,592,896 | ---- | M] (Microsoft Corporation) MD5=95DAECF0FB120A7B5DA679CC54E37DDE -- C:\Windows\System32\netlogon.dll

[2009.04.11 07:28:23 | 000,592,896 | ---- | M] (Microsoft Corporation) MD5=95DAECF0FB120A7B5DA679CC54E37DDE -- C:\Windows\winsxs\x86_microsoft-windows-security-netlogon_31bf3856ad364e35_6.0.6002.18005_none_ffa3304f351bb3a3\netlogon.dll

[2008.01.21 03:24:05 | 000,592,384 | ---- | M] (Microsoft Corporation) MD5=A8EFC0B6E75B789F7FD3BA5025D4E37F -- C:\Windows\winsxs\x86_microsoft-windows-security-netlogon_31bf3856ad364e35_6.0.6001.18000_none_fdb7b74337f9e857\netlogon.dll

 
 < MD5 for: NVSTOR.SYS  >

[2006.11.02 10:50:13 | 000,040,040 | ---- | M] (NVIDIA Corporation) MD5=9E0BA19A28C498A6D323D065DB76DFFC -- C:\Windows\System32\DriverStore\FileRepository\nvraid.inf_733654ff\nvstor.sys

[2008.01.21 03:23:21 | 000,045,112 | ---- | M] (NVIDIA Corporation) MD5=ABED0C09758D1D97DB0042DBB2688177 -- C:\Windows\System32\DriverStore\FileRepository\nvraid.inf_31c3d71d\nvstor.sys

[2008.01.21 03:23:21 | 000,045,112 | ---- | M] (NVIDIA Corporation) MD5=ABED0C09758D1D97DB0042DBB2688177 -- C:\Windows\winsxs\x86_nvraid.inf_31bf3856ad364e35_6.0.6001.18000_none_39dac327befea467\nvstor.sys

[2008.01.21 03:23:21 | 000,045,112 | ---- | M] () Unable to obtain MD5 -- C:\Windows\System32\drivers\nvstor.sys

 
 < MD5 for: SCECLI.DLL  >

[2008.01.21 03:24:50 | 000,177,152 | ---- | M] (Microsoft Corporation) MD5=28B84EB538F7E8A0FE8B9299D591E0B9 -- C:\Windows\winsxs\x86_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.0.6001.18000_none_380de25bd91b6f12\scecli.dll

[2009.04.11 07:28:24 | 000,177,152 | ---- | M] (Microsoft Corporation) MD5=8FC182167381E9915651267044105EE1 -- C:\Windows\System32\scecli.dll

[2009.04.11 07:28:24 | 000,177,152 | ---- | M] (Microsoft Corporation) MD5=8FC182167381E9915651267044105EE1 -- C:\Windows\winsxs\x86_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.0.6002.18005_none_39f95b67d63d3a5e\scecli.dll

 
 < MD5 for: USER32.DLL  >

[2008.01.21 03:24:21 | 000,627,200 | ---- | M] (Microsoft Corporation) MD5=B974D9F06DC7D1908E825DC201681269 -- C:\Windows\winsxs\x86_microsoft-windows-user32_31bf3856ad364e35_6.0.6001.18000_none_cd386c416d5c7f32\user32.dll

[2009.04.11 07:28:25 | 000,627,712 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\System32\user32.dll

[2009.04.11 07:28:25 | 000,627,712 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\winsxs\x86_microsoft-windows-user32_31bf3856ad364e35_6.0.6002.18005_none_cf23e54d6a7e4a7e\user32.dll

 
 < MD5 for: USERINIT.EXE  >

[2008.01.21 03:24:49 | 000,025,088 | ---- | M] (Microsoft Corporation) MD5=0E135526E9785D085BCD9AEDE6FBCBF9 -- C:\Windows\System32\userinit.exe

[2008.01.21 03:24:49 | 000,025,088 | ---- | M] (Microsoft Corporation) MD5=0E135526E9785D085BCD9AEDE6FBCBF9 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.0.6001.18000_none_dc28ba15d1aff80b\userinit.exe

 
 < MD5 for: WININIT.EXE  >

[2008.01.21 03:23:42 | 000,096,768 | ---- | M] (Microsoft Corporation) MD5=101BA3EA053480BB5D957EF37C06B5ED -- C:\Windows\System32\wininit.exe

[2008.01.21 03:23:42 | 000,096,768 | ---- | M] (Microsoft Corporation) MD5=101BA3EA053480BB5D957EF37C06B5ED -- C:\Windows\winsxs\x86_microsoft-windows-wininit_31bf3856ad364e35_6.0.6001.18000_none_30f2b8cf0450a6a2\wininit.exe

 
 < MD5 for: WINLOGON.EXE  >

[2012.01.13 14:53:20 | 000,182,856 | ---- | M] () MD5=63EEC8A8B221AB79045E776E5F592868 -- C:\Program Files\Malwarebytes' Anti-Malware\Chameleon\winlogon.exe

[2009.04.11 07:28:13 | 000,314,368 | ---- | M] (Microsoft Corporation) MD5=898E7C06A350D4A1A64A9EA264D55452 -- C:\Windows\System32\winlogon.exe

[2009.04.11 07:28:13 | 000,314,368 | ---- | M] (Microsoft Corporation) MD5=898E7C06A350D4A1A64A9EA264D55452 -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.0.6002.18005_none_71ae7a22d2134741\winlogon.exe

[2008.01.21 03:24:49 | 000,314,880 | ---- | M] (Microsoft Corporation) MD5=C2610B6BDBEFC053BBDAB4F1B965CB24 -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.0.6001.18000_none_6fc30116d4f17bf5\winlogon.exe

 
 < MD5 for: WS2IFSL.SYS  >

[2008.01.21 03:24:47 | 000,015,872 | ---- | M] (Microsoft Corporation) MD5=E3A3CB253C0EC2494D4A61F5E43A389C -- C:\Windows\System32\drivers\ws2ifsl.sys

[2008.01.21 03:24:47 | 000,015,872 | ---- | M] (Microsoft Corporation) MD5=E3A3CB253C0EC2494D4A61F5E43A389C -- C:\Windows\winsxs\x86_microsoft-windows-w..rastructure-ws2ifsl_31bf3856ad364e35_6.0.6001.18000_none_4f86a0d4c7cda641\ws2ifsl.sys

 
 < %systemroot%\system32\drivers\*.sys /lockedfiles >

[2008.01.21 03:23:21 | 000,422,968 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\adp94xx.sys

[2008.01.21 03:23:25 | 000,300,600 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\adpahci.sys

[2008.01.21 03:23:26 | 000,101,432 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\adpu160m.sys

[2008.01.21 03:23:27 | 000,149,560 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\adpu320.sys

[2008.01.21 03:23:01 | 000,056,376 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\AGP440.sys

[2007.12.19 18:45:00 | 000,170,000 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\ahcix86s.sys

[2008.01.21 03:23:00 | 000,017,464 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\aliide.sys

[2008.01.21 03:23:01 | 000,057,400 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\AMDAGP.SYS

[2008.01.21 03:23:00 | 000,017,976 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\amdide.sys

[2008.01.21 03:23:00 | 000,041,472 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\amdk7.sys

[2008.01.21 03:23:00 | 000,044,032 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\amdk8.sys

[2008.01.21 03:23:23 | 000,079,416 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\arc.sys

[2008.01.21 03:23:24 | 000,079,928 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\arcsas.sys

[2010.11.29 13:12:14 | 000,535,824 | ---- | M] (BitDefender) Unable to obtain MD5 -- C:\Windows\system32\drivers\avc3.sys

[2010.11.29 13:12:20 | 001,066,232 | ---- | M] (BitDefender) Unable to obtain MD5 -- C:\Windows\system32\drivers\avckf.sys

[2010.05.13 15:52:04 | 000,152,528 | ---- | M] (BitDefender S.R.L. Bucharest, ROMANIA) Unable to obtain MD5 -- C:\Windows\system32\drivers\bdfm.sys

[2011.03.24 14:36:18 | 000,353,096 | ---- | M] (BitDefender) Unable to obtain MD5 -- C:\Windows\system32\drivers\bdfsfltr.sys

[2010.05.13 15:52:30 | 000,105,808 | ---- | M] (BitDefender S.R.L. Bucharest, ROMANIA) Unable to obtain MD5 -- C:\Windows\system32\drivers\bdhv.sys

[2008.01.21 03:23:01 | 000,045,568 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\blbdrive.sys

[2006.11.02 09:24:45 | 000,013,568 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\BrFiltLo.sys

[2006.11.02 09:24:46 | 000,005,248 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\BrFiltUp.sys

[2006.11.02 09:25:24 | 000,071,808 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\BrSerId.sys

[2006.11.02 09:24:44 | 000,062,336 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\BrSerWdm.sys

[2006.11.02 09:24:44 | 000,012,160 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\BrUsbMdm.sys

[2006.11.02 09:24:47 | 000,011,904 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\BrUsbSer.sys

[2006.11.02 09:55:23 | 000,039,936 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\bthmodem.sys

[2008.01.21 03:23:26 | 000,035,328 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\circlass.sys

[2008.01.21 03:23:00 | 000,019,000 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\cmdide.sys

[2008.01.21 03:23:00 | 000,040,960 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\crusoe.sys

[2006.11.02 10:50:11 | 000,071,272 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\djsvs.sys

[2008.01.21 03:23:22 | 000,342,584 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\elxstor.sys

[2008.01.21 03:23:00 | 000,006,656 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\errdev.sys

[2008.01.21 03:23:22 | 000,061,496 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\GAGP30KX.SYS

[2006.11.02 09:55:22 | 000,029,184 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\hidbth.sys

[2006.11.02 09:55:01 | 000,021,504 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\hidir.sys

[2008.01.21 03:23:26 | 000,040,504 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\HpCISSs.sys

[2008.01.21 03:23:02 | 000,030,264 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\i2omp.sys

[2007.09.29 23:03:12 | 000,308,248 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\iaStor.sys

[2008.01.21 03:23:23 | 000,235,064 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\iaStorV.sys

[2006.11.02 10:50:17 | 000,041,576 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\iirsp.sys

[2008.01.21 03:23:00 | 000,017,976 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\intelide.sys

[2008.01.21 03:23:22 | 000,064,512 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\IPMIDrv.sys

[2008.01.21 03:23:01 | 000,049,720 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\isapnp.sys

[2006.11.02 10:50:07 | 000,035,944 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\iteatapi.sys

[2006.11.02 10:50:09 | 000,035,944 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\iteraid.sys

[2008.04.03 13:58:46 | 000,076,688 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\jraid.sys

[2008.01.21 03:23:23 | 000,015,872 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\kbdhid.sys

[2008.01.21 03:23:23 | 000,096,312 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\lsi_fc.sys

[2008.01.21 03:23:25 | 000,089,656 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\lsi_sas.sys

[2008.01.21 03:23:23 | 000,096,312 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\lsi_scsi.sys

[2008.01.21 03:23:27 | 000,031,288 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\megasas.sys

[2008.01.21 03:23:27 | 000,386,616 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\MegaSR.sys

[2008.01.21 03:23:20 | 000,105,016 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\mpio.sys

[2006.11.02 10:49:59 | 000,033,384 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\Mraid35x.sys

[2008.01.21 03:23:21 | 000,094,776 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\msdsm.sys

[2006.11.02 10:50:19 | 000,045,160 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\nfrd960.sys

[2006.11.02 08:36:50 | 000,020,608 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\ntrigdigi.sys

[2008.01.21 03:23:21 | 000,102,968 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\nvraid.sys

[2008.01.21 03:23:21 | 000,045,112 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\nvstor.sys

[2008.01.21 03:23:01 | 000,109,112 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\NV_AGP.SYS

[2006.11.02 09:51:30 | 000,079,360 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\parport.sys

[2006.11.02 09:51:23 | 000,008,704 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\parvdm.sys

[2008.01.21 03:23:00 | 000,016,440 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\pciide.sys

[2006.11.02 10:51:12 | 000,167,528 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\pcmcia.sys

[2008.01.21 03:23:00 | 000,040,960 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\processr.sys

[2008.01.21 03:23:24 | 001,122,360 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\ql2300.sys

[2006.11.02 10:50:35 | 000,106,088 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\ql40xx.sys

[2008.01.21 03:23:01 | 000,248,832 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\rdpdr.sys

[2006.11.02 10:50:16 | 000,076,392 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\sbp2port.sys

[2006.11.02 09:51:25 | 000,017,920 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\serenum.sys

[2006.11.02 09:51:30 | 000,083,456 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\serial.sys

[2008.01.21 03:23:20 | 000,019,968 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\sermouse.sys

[2008.01.21 03:23:23 | 000,013,312 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\sffdisk.sys

[2008.01.21 03:23:23 | 000,012,288 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\sffp_mmc.sys

[2008.01.21 03:23:23 | 000,011,776 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\sffp_sd.sys

[2006.11.02 09:51:40 | 000,013,312 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\sfloppy.sys

[2008.01.21 03:23:01 | 000,055,864 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\SISAGP.SYS

[2008.01.21 03:23:26 | 000,041,016 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\sisraid2.sys

[2008.01.21 03:23:26 | 000,074,808 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\sisraid4.sys

[2006.11.02 10:50:05 | 000,035,944 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\symc8xx.sys

[2006.11.02 10:49:56 | 000,031,848 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\sym_hi.sys

[2006.11.02 10:50:03 | 000,034,920 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\sym_u3.sys

[2011.06.03 07:23:47 | 000,306,320 | ---- | M] (BitDefender S.R.L.) Unable to obtain MD5 -- C:\Windows\system32\drivers\trufos.sys

[2008.01.21 03:23:22 | 000,059,448 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\UAGP35.SYS

[2008.01.21 03:23:01 | 000,060,984 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\ULIAGPKX.SYS

[2008.01.21 03:23:20 | 000,238,648 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\uliahci.sys

[2006.11.02 10:50:35 | 000,098,408 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\ulsata.sys

[2008.01.21 03:23:23 | 000,115,816 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\ulsata2.sys

[2006.11.02 09:55:09 | 000,068,608 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\usbcir.sys

[2006.11.02 09:55:05 | 000,019,456 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\usbohci.sys

[2008.01.21 03:23:01 | 000,056,888 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\VIAAGP.SYS

[2008.01.21 03:23:00 | 000,041,472 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\viac7.sys

[2008.01.21 03:23:00 | 000,020,024 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\viaide.sys

[2008.01.21 03:23:23 | 000,130,616 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\vsmraid.sys

[2006.11.02 09:52:52 | 000,020,608 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\wacompen.sys

[2008.01.21 03:23:24 | 000,022,072 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\wd.sys

[2008.01.21 03:23:00 | 000,011,264 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\wmiacpi.sys

 
 < %systemroot%\System32\config\*.sav >

[2008.07.30 15:01:10 | 013,115,392 | ---- | M] () -- C:\Windows\System32\config\COMPONENTS.SAV

[2008.07.30 15:01:01 | 000,106,496 | ---- | M] () -- C:\Windows\System32\config\DEFAULT.SAV

[2008.07.30 15:01:10 | 000,020,480 | ---- | M] () -- C:\Windows\System32\config\SECURITY.SAV

[2008.07.30 15:01:18 | 017,633,280 | ---- | M] () -- C:\Windows\System32\config\SOFTWARE.SAV

[2008.07.30 15:01:21 | 006,684,672 | ---- | M] () -- C:\Windows\System32\config\SYSTEM.SAV

 
 < %systemroot%\*. /mp /s >

 
 < %systemroot%\system32\*.dll /lockedfiles >

[2009.03.08 12:31:42 | 000,348,160 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\dxtmsft.dll

[2009.03.08 12:31:37 | 000,216,064 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\dxtrans.dll

[2011.11.03 07:17:07 | 000,184,320 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\iepeers.dll

[1 C:\Windows\system32\*.tmp files -> C:\Windows\system32\*.tmp -> ]

 
 <           >
 

< End of report >

--- --- ---

Oh, ja gut.

Also hier sind die Ergebnisse:

OTL Logfile:

Code:

OTL logfile created on: 21.02.2012 14:49:22 - Run 1

OTL by OldTimer - Version 3.2.33.1     Folder = C:\Users\Madlen\Downloads

Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation

Internet Explorer (Version = 8.0.6001.19170)

Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy

 

2,96 Gb Total Physical Memory | 1,70 Gb Available Physical Memory | 57,45% Memory free

6,12 Gb Paging File | 4,46 Gb Available in Paging File | 72,85% Paging File free

Paging file location(s): ?:\pagefile.sys [binary data]

 

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files

Drive C: | 192,06 Gb Total Space | 71,31 Gb Free Space | 37,13% Space Free | Partition Type: NTFS

Drive D: | 97,24 Gb Total Space | 97,09 Gb Free Space | 99,85% Space Free | Partition Type: NTFS

Drive G: | 1,92 Gb Total Space | 0,76 Gb Free Space | 39,76% Space Free | Partition Type: FAT

 

Computer Name: MADLEN-PC | User Name: Madlen | Logged in as Administrator.

Boot Mode: Normal | Scan Mode: All users | Quick Scan

Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

 
 ========== Processes (SafeList) ==========

 

PRC - [2012.02.21 14:48:08 | 000,583,168 | ---- | M] (OldTimer Tools) -- C:\Users\Madlen\Downloads\OTL (2).exe

PRC - [2011.12.23 08:41:15 | 001,451,928 | ---- | M] (BitDefender S.R.L.) -- C:\Programme\BitDefender\BitDefender 2011\bdagent.exe

PRC - [2011.07.11 15:56:37 | 002,090,016 | ---- | M] (BitDefender S.R.L.) -- C:\Programme\BitDefender\BitDefender 2011\vsserv.exe

PRC - [2011.06.03 07:24:42 | 000,064,048 | ---- | M] (BitDefender S.R.L.) -- C:\Programme\BitDefender\BitDefender 2011\pchooklaunch32.exe

PRC - [2011.06.03 07:23:47 | 000,043,936 | ---- | M] (BitDefender S.R.L.) -- C:\Programme\BitDefender\BitDefender 2011\updatesrv.exe

PRC - [2010.05.14 10:44:46 | 000,501,480 | ---- | M] (Sun Microsystems, Inc.) -- C:\Programme\Common Files\Java\Java Update\jucheck.exe

PRC - [2009.07.26 16:44:14 | 003,883,840 | ---- | M] (Microsoft Corporation) -- C:\Programme\Windows Live\Messenger\msnmsgr.exe

PRC - [2009.04.11 07:28:03 | 001,233,920 | ---- | M] (Microsoft Corporation) -- C:\Programme\Windows Sidebar\sidebar.exe

PRC - [2009.04.11 07:27:36 | 002,926,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe

PRC - [2009.02.26 14:24:50 | 000,097,680 | ---- | M] (Microsoft Corporation) -- C:\Programme\Microsoft Office\Office12\ONENOTEM.EXE

PRC - [2008.07.01 16:15:28 | 000,371,208 | ---- | M] (Dritek System Inc.) -- C:\Programme\ECDeject\CDeject.exe

PRC - [2008.07.01 15:24:08 | 000,236,040 | ---- | M] (Dritek System Inc.) -- C:\Programme\ECDeject\Mngrecd.exe

PRC - [2008.06.18 12:19:44 | 000,376,832 | ---- | M] (ODM) -- C:\Programme\OEM\OSD_1.16\osd.exe

PRC - [2008.06.02 07:44:52 | 002,184,464 | ---- | M] () -- C:\Programme\Logitech\QuickCam\Quickcam.exe

PRC - [2008.06.02 07:41:04 | 000,563,984 | ---- | M] () -- C:\Programme\Common Files\LogiShrd\LComMgr\Communications_Helper.exe

PRC - [2008.06.02 07:40:40 | 000,407,824 | ---- | M] (Logitech Inc.) -- C:\Programme\Common Files\LogiShrd\LQCVFX\COCIManager.exe

PRC - [2008.06.01 19:45:40 | 000,141,848 | ---- | M] (Logitech Inc.) -- C:\Programme\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe

PRC - [2008.06.01 19:43:58 | 000,186,904 | ---- | M] (Logitech Inc.) -- C:\Programme\Common Files\LogiShrd\LVCOMSER\LVComSer.exe

PRC - [2008.04.25 13:23:36 | 000,303,104 | ---- | M] (Fujitsu Siemens Computers) -- C:\Programme\Fujitsu Siemens Computers\SystemDiagnostics\OnlineDiagnostic\TestManager\TestHandler.exe

PRC - [2008.02.26 02:23:34 | 000,443,968 | ---- | M] (Google Inc.) -- C:\Programme\Picasa2\PicasaMediaDetector.exe

PRC - [2008.02.22 08:24:28 | 000,094,208 | ---- | M] (TODO: <公司名稱>) -- C:\Programme\OEM\OSD_1.16\OsdService.exe

 

 
 ========== Modules (No Company Name) ==========

 

MOD - [2011.07.11 15:56:36 | 000,185,040 | ---- | M] () -- C:\Programme\BitDefender\BitDefender 2011\framework.dll

MOD - [2011.06.03 07:24:18 | 000,189,184 | ---- | M] () -- C:\Programme\BitDefender\BitDefender 2011\txmlutil.dll

MOD - [2011.06.03 07:24:18 | 000,109,344 | ---- | M] () -- C:\Programme\BitDefender\BitDefender 2011\connector.dll

MOD - [2010.08.09 23:01:06 | 000,067,872 | ---- | M] () -- C:\Programme\Common Files\Apple\Apple Application Support\zlib1.dll

MOD - [2008.06.02 07:51:06 | 000,107,280 | ---- | M] () -- C:\Programme\Logitech\QuickCam\LAppRes.DLL

MOD - [2008.06.02 07:44:52 | 002,184,464 | ---- | M] () -- C:\Programme\Logitech\QuickCam\Quickcam.exe

MOD - [2008.06.02 07:42:46 | 000,149,264 | ---- | M] () -- C:\Programme\Common Files\LogiShrd\LComMgr\LogiVOIPDevicePlugin.dll

MOD - [2008.06.02 07:42:24 | 000,165,136 | ---- | M] () -- C:\Programme\Common Files\LogiShrd\LComMgr\LogiCordless4001.dll

MOD - [2008.06.02 07:42:12 | 000,138,000 | ---- | M] () -- C:\Programme\Common Files\LogiShrd\LComMgr\LogiCordless.dll

MOD - [2008.06.02 07:41:26 | 000,167,184 | ---- | M] () -- C:\Programme\Logitech\QuickCam\EFVal.dll

MOD - [2008.06.02 07:41:14 | 000,344,336 | ---- | M] () -- C:\Programme\Common Files\LogiShrd\LComMgr\DevMngr.dll

MOD - [2008.06.02 07:41:04 | 000,563,984 | ---- | M] () -- C:\Programme\Common Files\LogiShrd\LComMgr\Communications_Helper.exe

MOD - [2008.06.01 19:44:20 | 000,068,120 | ---- | M] () -- C:\Programme\Common Files\LogiShrd\LVCOMSER\LVCSPS.dll

 

 
 ========== Win32 Services (SafeList) ==========

 

SRV - [2011.07.11 15:56:37 | 002,090,016 | ---- | M] (BitDefender S.R.L.) [Auto | Running] -- C:\Program Files\BitDefender\BitDefender 2011\vsserv.exe -- (VSSERV)

SRV - [2011.06.03 07:23:47 | 000,043,936 | ---- | M] (BitDefender S.R.L.) [Auto | Running] -- C:\Program Files\BitDefender\BitDefender 2011\updatesrv.exe -- (Updatesrv)

SRV - [2010.11.30 06:19:06 | 000,307,544 | ---- | M] (BitDefender) [On_Demand | Stopped] -- C:\Programme\Common Files\BitDefender\BitDefender Arrakis Server\bin\arrakis3.exe -- (Update Server)

SRV - [2008.06.01 19:47:22 | 000,141,848 | ---- | M] (Logitech Inc.) [Auto | Stopped] -- C:\Programme\Common Files\LogiShrd\SrvLnch\SrvLnch.exe -- (LVSrvLauncher)

SRV - [2008.06.01 19:45:40 | 000,141,848 | ---- | M] (Logitech Inc.) [Auto | Running] -- C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe -- (LVPrcSrv)

SRV - [2008.06.01 19:43:58 | 000,186,904 | ---- | M] (Logitech Inc.) [Auto | Running] -- C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe -- (LVCOMSer)

SRV - [2008.04.25 13:23:36 | 000,303,104 | ---- | M] (Fujitsu Siemens Computers) [Auto | Running] -- C:\Program Files\Fujitsu Siemens Computers\SystemDiagnostics\OnlineDiagnostic\TestManager\TestHandler.exe -- (TestHandler)

SRV - [2008.02.22 08:24:28 | 000,094,208 | ---- | M] (TODO: <公司名稱>) [Auto | Running] -- C:\Programme\OEM\OSD_1.16\OsdService.exe -- (OsdService)

SRV - [2008.01.21 03:23:32 | 000,272,952 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Programme\Windows Defender\MpSvc.dll -- (WinDefend)

SRV - [2005.07.12 22:33:02 | 000,491,520 | ---- | M] () [On_Demand | Stopped] -- C:\Windows\System32\lxcjcoms.exe -- (lxcj_device)

 

 
 ========== Driver Services (SafeList) ==========

 

DRV - [2011.06.30 19:18:42 | 000,122,552 | ---- | M] (BitDefender LLC) [Kernel | On_Demand | Running] -- C:\Programme\BitDefender\BitDefender 2011\bdselfpr.sys -- (bdselfpr)

DRV - [2011.06.03 07:23:47 | 000,306,320 | ---- | M] (BitDefender S.R.L.) [File_System | Auto | Running] -- C:\Windows\System32\drivers\trufos.sys -- (Trufos)

DRV - [2011.03.24 14:36:18 | 000,353,096 | ---- | M] (BitDefender) [File_System | Boot | Running] -- C:\Windows\system32\DRIVERS\bdfsfltr.sys -- (bdfsfltr)

DRV - [2010.11.29 13:12:20 | 001,066,232 | ---- | M] (BitDefender) [File_System | On_Demand | Stopped] -- C:\Windows\System32\drivers\avckf.sys -- (avckf)

DRV - [2010.11.29 13:12:14 | 000,535,824 | ---- | M] (BitDefender) [File_System | On_Demand | Stopped] -- C:\Windows\System32\drivers\avc3.sys -- (avc3)

DRV - [2010.08.20 17:41:52 | 000,126,800 | ---- | M] (BitDefender LLC) [Kernel | System | Running] -- C:\Programme\Common Files\BitDefender\BitDefender Firewall\bdftdif.sys -- (Bdftdif)

DRV - [2010.08.20 14:41:58 | 000,072,784 | ---- | M] (BitDefender) [Kernel | System | Running] -- c:\Programme\Common Files\BitDefender\BitDefender Firewall\bdfndisf6.sys -- (Bdfndisf)

DRV - [2010.05.13 15:52:04 | 000,152,528 | ---- | M] (BitDefender S.R.L. Bucharest, ROMANIA) [File_System | On_Demand | Running] -- C:\Windows\System32\drivers\bdfm.sys -- (bdfm)

DRV - [2008.06.30 18:17:58 | 000,020,104 | ---- | M] (Dritek System Inc.) [Kernel | System | Running] -- C:\Programme\ECDeject\ECDejectIo.sys -- (ECDejectPortIO)

DRV - [2008.06.17 20:27:28 | 000,007,168 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\System32\directport.sys -- (GpdDevDPort)

DRV - [2008.06.02 04:46:34 | 003,644,568 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\lvuvc.sys -- (LVUVC) 1.3 MP Webcam(UVC)

DRV - [2008.06.01 19:45:06 | 000,025,624 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\LVPr2Mon.sys -- (LVPr2Mon)

DRV - [2008.06.01 19:44:54 | 002,142,488 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\LVMVdrv.sys -- (LVMVDrv)

DRV - [2008.06.01 19:43:24 | 002,109,976 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\Lvckap.sys -- (LVcKap)

DRV - [2008.05.07 17:47:36 | 000,085,136 | ---- | M] (JMicron Technology Corp.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\jmcr.sys -- (JMCR)

DRV - [2008.05.01 07:35:54 | 003,660,800 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\NETw5v32.sys -- (NETw5v32) Intel(R)

DRV - [2008.04.15 16:17:18 | 000,224,384 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\e1y6032.sys -- (e1yexpress) Intel(R)

DRV - [2008.04.03 13:58:46 | 000,076,688 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\jraid.sys -- (JRAID)

DRV - [2008.03.31 11:02:34 | 000,008,192 | ---- | M] (Windows (R) Codename Longhorn DDK provider) [Kernel | On_Demand | Running] -- C:\Windows\System32\kbfiltr.sys -- (GpdKbFilter)

DRV - [2008.01.21 03:23:26 | 000,035,328 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\circlass.sys -- (circlass)

DRV - [2008.01.21 03:23:24 | 000,022,072 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\wd.sys -- (Wd)

DRV - [2008.01.21 03:23:23 | 000,015,872 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\kbdhid.sys -- (kbdhid)

DRV - [2008.01.21 03:23:23 | 000,013,312 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\sffdisk.sys -- (sffdisk)

DRV - [2008.01.21 03:23:23 | 000,012,288 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\sffp_mmc.sys -- (sffp_mmc)

DRV - [2008.01.21 03:23:23 | 000,011,776 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\sffp_sd.sys -- (sffp_sd)

DRV - [2008.01.21 03:23:22 | 000,064,512 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\ipmidrv.sys -- (IPMIDRV)

DRV - [2008.01.21 03:23:22 | 000,061,496 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\gagp30kx.sys -- (gagp30kx)

DRV - [2008.01.21 03:23:22 | 000,059,448 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\uagp35.sys -- (uagp35)

DRV - [2008.01.21 03:23:21 | 000,094,776 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\msdsm.sys -- (msdsm)

DRV - [2008.01.21 03:23:20 | 000,105,016 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\mpio.sys -- (mpio)

DRV - [2008.01.21 03:23:20 | 000,019,968 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\sermouse.sys -- (sermouse)

DRV - [2008.01.21 03:23:02 | 000,030,264 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\i2omp.sys -- (i2omp)

DRV - [2008.01.21 03:23:01 | 000,248,832 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\rdpdr.sys -- (rdpdr)

DRV - [2008.01.21 03:23:01 | 000,109,112 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\nv_agp.sys -- (nv_agp)

DRV - [2008.01.21 03:23:01 | 000,060,984 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\uliagpkx.sys -- (uliagpkx)

DRV - [2008.01.21 03:23:01 | 000,056,888 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\viaagp.sys -- (viaagp)

DRV - [2008.01.21 03:23:01 | 000,056,376 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\agp440.sys -- (agp440)

DRV - [2008.01.21 03:23:01 | 000,049,720 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\isapnp.sys -- (isapnp)

DRV - [2008.01.21 03:23:01 | 000,045,568 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\blbdrive.sys -- (blbdrive)

DRV - [2008.01.21 03:23:00 | 000,044,032 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\amdk8.sys -- (AmdK8)

DRV - [2008.01.21 03:23:00 | 000,041,472 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\viac7.sys -- (ViaC7)

DRV - [2008.01.21 03:23:00 | 000,041,472 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\amdk7.sys -- (AmdK7)

DRV - [2008.01.21 03:23:00 | 000,040,960 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\processr.sys -- (Processor)

DRV - [2008.01.21 03:23:00 | 000,040,960 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\crusoe.sys -- (Crusoe)

DRV - [2008.01.21 03:23:00 | 000,017,976 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\intelide.sys -- (intelide)

DRV - [2008.01.21 03:23:00 | 000,017,976 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\amdide.sys -- (amdide)

DRV - [2008.01.21 03:23:00 | 000,016,440 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\pciide.sys -- (pciide)

DRV - [2008.01.21 03:23:00 | 000,011,264 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\wmiacpi.sys -- (WmiAcpi)

DRV - [2008.01.21 03:23:00 | 000,006,656 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\errdev.sys -- (ErrDev)

DRV - [2007.12.19 18:45:00 | 000,170,000 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\ahcix86s.sys -- (ahcix86s)

DRV - [2006.11.02 10:51:12 | 000,167,528 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\pcmcia.sys -- (pcmcia)

DRV - [2006.11.02 10:50:16 | 000,076,392 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\sbp2port.sys -- (sbp2port)

DRV - [2006.11.02 09:55:23 | 000,039,936 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\bthmodem.sys -- (BTHMODEM)

DRV - [2006.11.02 09:55:22 | 000,029,184 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\hidbth.sys -- (HidBth)

DRV - [2006.11.02 09:55:09 | 000,068,608 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\usbcir.sys -- (usbcir) eHome Infrared Receiver (USBCIR)

DRV - [2006.11.02 09:55:05 | 000,019,456 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\usbohci.sys -- (usbohci)

DRV - [2006.11.02 09:55:01 | 000,021,504 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\hidir.sys -- (HidIr)

DRV - [2006.11.02 09:52:52 | 000,020,608 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\wacompen.sys -- (WacomPen)

DRV - [2006.11.02 09:51:40 | 000,013,312 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\sfloppy.sys -- (sfloppy)

DRV - [2006.11.02 09:51:30 | 000,083,456 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\serial.sys -- (Serial)

DRV - [2006.11.02 09:51:30 | 000,079,360 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\parport.sys -- (Parport)

DRV - [2006.11.02 09:51:25 | 000,017,920 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\serenum.sys -- (Serenum)

DRV - [2006.11.02 09:51:23 | 000,008,704 | ---- | M] () [Kernel | Auto | Stopped] -- C:\Windows\system32\drivers\parvdm.sys -- (Parvdm)

 

 
 ========== Standard Registry (SafeList) ==========

 

 
 ========== Internet Explorer ==========

 

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank

 

 

IE - HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = hxxp://www.google.com/ie

IE - HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com

IE - HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com/ig/redirectdomain?brand=FUJD&bmod=FUJD

IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

 

IE - HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = hxxp://www.google.com/ie

IE - HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com

IE - HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com/ig/redirectdomain?brand=FUJD&bmod=FUJD

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

 

 

 

IE - HKU\S-1-5-21-497006800-118623431-4100490227-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank

IE - HKU\S-1-5-21-497006800-118623431-4100490227-1000\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1

IE - HKU\S-1-5-21-497006800-118623431-4100490227-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-21-497006800-118623431-4100490227-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

 
 ========== FireFox ==========

 

FF - prefs.js..browser.search.selectedEngine: "Bing"

FF - prefs.js..extensions.enabledItems: FFToolbar@bitdefender.com:7.0

FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}:6.0.21

 

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32.dll ()

FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=:  File not found

FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()

FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)

FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)

FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.99\npGoogleUpdate3.dll (Google Inc.)

FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.99\npGoogleUpdate3.dll (Google Inc.)

 

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\FFToolbar@bitdefender.com: C:\Program Files\BitDefender\BitDefender 2011\bdaphffext\ [2011.12.23 23:18:54 | 000,000,000 | ---D | M]

FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 9.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012.01.07 09:42:40 | 000,000,000 | ---D | M]

FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 9.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011.10.30 20:32:59 | 000,000,000 | ---D | M]

FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\bdThunderbird@bitdefender.com: C:\Program Files\BitDefender\BitDefender 2011\bdtbext\ [2011.12.23 23:18:54 | 000,000,000 | ---D | M]

 

[2009.07.11 09:27:08 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Madlen\AppData\Roaming\mozilla\Extensions

[2011.10.30 09:57:38 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Madlen\AppData\Roaming\mozilla\Firefox\Profiles\a7v4426e.default\extensions

[2011.06.16 19:37:42 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Users\Madlen\AppData\Roaming\mozilla\Firefox\Profiles\a7v4426e.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}

[2011.11.09 15:06:40 | 000,000,000 | ---D | M] (No name found) -- C:\Programme\Mozilla Firefox\extensions

[2011.10.31 15:54:34 | 000,000,000 | ---D | M] (Skype Click to Call) -- C:\Programme\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}

[2012.01.07 09:42:40 | 000,121,816 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll

[2010.09.30 14:47:30 | 000,423,656 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll

[2011.09.29 02:24:37 | 000,001,392 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\amazondotcom-de.xml

[2011.09.29 02:16:42 | 000,002,252 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\bing.xml

[2011.09.29 02:24:37 | 000,001,153 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\eBay-de.xml

[2011.09.29 02:24:37 | 000,006,805 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\leo_ende_de.xml

[2011.09.29 02:24:37 | 000,001,178 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-de.xml

[2011.09.29 02:24:37 | 000,001,105 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\yahoo-de.xml

 
 ========== Chrome  ==========

 

CHR - default_search_provider: Google (Enabled)

CHR - default_search_provider: search_url = {google:baseURL}search?{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}sourceid=chrome&ie={inputEncoding}&q={searchTerms}

CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}client=chrome&hl={language}&q={searchTerms}

CHR - plugin: Shockwave Flash (Disabled) = C:\Users\Madlen\AppData\Local\Google\Chrome\User Data\PepperFlash\11.1.31.203\pepflashplayer.dll

CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files\Google\Chrome\Application\17.0.963.56\gcswf32.dll

CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\system32\Macromed\Flash\NPSWF32.dll

CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer

CHR - plugin: Native Client (Enabled) = C:\Program Files\Google\Chrome\Application\17.0.963.56\ppGoogleNaClPluginChrome.dll

CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files\Google\Chrome\Application\17.0.963.56\pdf.dll

CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll

CHR - plugin: Java Deployment Toolkit 6.0.210.7 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npdeployJava1.dll

CHR - plugin: Java(TM) Platform SE 6 U21 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll

CHR - plugin: QuickTime Plug-in 7.6.7 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin.dll

CHR - plugin: QuickTime Plug-in 7.6.7 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin2.dll

CHR - plugin: QuickTime Plug-in 7.6.7 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin3.dll

CHR - plugin: QuickTime Plug-in 7.6.7 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin4.dll

CHR - plugin: QuickTime Plug-in 7.6.7 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin5.dll

CHR - plugin: QuickTime Plug-in 7.6.7 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin6.dll

CHR - plugin: QuickTime Plug-in 7.6.7 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin7.dll

CHR - plugin: Google Update (Enabled) = C:\Program Files\Google\Update\1.3.21.99\npGoogleUpdate3.dll

CHR - plugin: iTunes Application Detector (Enabled) = C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll

CHR - plugin: Windows Presentation Foundation (Enabled) = C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll

CHR - plugin: Default Plug-in (Enabled) = default_plugin

CHR - Extension: YouTube = C:\Users\Madlen\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\

CHR - Extension: Google-Suche = C:\Users\Madlen\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.17_0\

CHR - Extension: Google Mail = C:\Users\Madlen\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\

 

O1 HOSTS File: ([2006.09.18 22:41:30 | 000,000,761 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts

O1 - Hosts: 127.0.0.1       localhost

O1 - Hosts: ::1             localhost

O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.

O2 - BHO: (Windows Live Anmelde-Hilfsprogramm) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Programme\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)

O2 - BHO: (Skype Browser Helper) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Programme\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)

O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Programme\Google\GoogleToolbarNotifier\5.7.7227.1100\swg.dll (Google Inc.)

O3 - HKLM\..\Toolbar: (Bitdefender Toolbar) - {381FFDE8-2394-4F90-B10D-FC6124A40F8C} - C:\Programme\BitDefender\BitDefender 2011\ietoolbar.dll (BitDefender S.R.L.)

O4 - HKLM..\Run: [BDAgent] C:\Program Files\BitDefender\BitDefender 2011\bdagent.exe (BitDefender S.R.L.)

O4 - HKLM..\Run: [BitDefender Antiphishing Helper] C:\Program Files\BitDefender\BitDefender 2011\ieshow.exe (BitDefender S.R.L.)

O4 - HKLM..\Run: [ECDeject] C:\Programme\ECDeject\CDeject.exe (Dritek System Inc.)

O4 - HKLM..\Run: [FSCRecovery] c:\Programme\Fujitsu Siemens Computers\Fujitsu Siemens Computers Recovery\FSCRecoveryReminder.exe (Fujitsu Siemens Computers GmbH)

O4 - HKLM..\Run: [Google EULA Launcher] c:\Program Files\Google\Google EULA\GoogleEULALauncher.exe ( )

O4 - HKLM..\Run: [LogitechCommunicationsManager] C:\Program Files\Common Files\LogiShrd\LComMgr\Communications_Helper.exe ()

O4 - HKLM..\Run: [LogitechQuickCamRibbon] C:\Program Files\Logitech\QuickCam\Quickcam.exe ()

O4 - HKLM..\Run: [OSD] C:\Programme\OEM\OSD_1.16\osd.exe (ODM)

O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)

O4 - HKU\.DEFAULT..\Run: [fsc-reg] c:\fsc-reg\fscreg.exe (Fujitsu Siemens)

O4 - HKU\.DEFAULT..\Run: [Picasa Media Detector] C:\Programme\Picasa2\PicasaMediaDetector.exe (Google Inc.)

O4 - HKU\S-1-5-18..\Run: [fsc-reg] c:\fsc-reg\fscreg.exe (Fujitsu Siemens)

O4 - HKU\S-1-5-18..\Run: [Picasa Media Detector] C:\Programme\Picasa2\PicasaMediaDetector.exe (Google Inc.)

O4 - HKU\S-1-5-19..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.dll (Microsoft Corporation)

O4 - HKU\S-1-5-20..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.dll (Microsoft Corporation)

O4 - HKU\S-1-5-21-497006800-118623431-4100490227-1000..\Run: [fsc-reg] C:\fsc-reg\fscreg.exe (Fujitsu Siemens)

O4 - HKU\S-1-5-21-497006800-118623431-4100490227-1000..\Run: [Picasa Media Detector] C:\Programme\Picasa2\PicasaMediaDetector.exe (Google Inc.)

O4 - HKU\S-1-5-21-497006800-118623431-4100490227-1000..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.dll (Microsoft Corporation)

O4 - Startup: C:\Users\Madlen\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2007 Bildschirmausschnitt- und Startprogramm.lnk = C:\Programme\Microsoft Office\Office12\ONENOTEM.EXE (Microsoft Corporation)

O7 - HKU\S-1-5-21-497006800-118623431-4100490227-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145

O8 - Extra context menu item: Nach Microsoft E&xel exportieren - C:\Programme\Microsoft Office\Office12\EXCEL.EXE (Microsoft Corporation)

O9 - Extra Button: An OneNote senden - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Programme\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)

O9 - Extra 'Tools' menuitem : An OneNote s&enden - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Programme\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)

O9 - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Programme\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)

O9 - Extra 'Tools' menuitem : Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Programme\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)

O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Programme\Microsoft Office\Office12\REFIEBAR.DLL (Microsoft Corporation)

O10 - NameSpace_Catalog5\Catalog_Entries\000000000005 [] - C:\Programme\Bonjour\mdnsNSP.dll (Apple Inc.)

O13 - gopher Prefix: missing

O15 - HKU\S-1-5-21-497006800-118623431-4100490227-1000\..Trusted Ranges: GD ([http] in Lokales Intranet)

O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab (Java Plug-in 1.6.0_21)

O16 - DPF: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab (Java Plug-in 1.6.0_21)

O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab (Java Plug-in 1.6.0_21)

O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)

O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.2.1

O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{10CF6337-E418-4DC0-BD3B-CAE6A5BA446B}: DhcpNameServer = 192.168.2.1

O18 - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - C:\Programme\Windows Live\Messenger\msgrapp.14.0.8089.0726.dll (Microsoft Corporation)

O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Programme\Common Files\microsoft shared\Help\hxds.dll (Microsoft Corporation)

O18 - Protocol\Handler\ms-itss {0A9007C0-4076-11D3-8789-0000F8105754} - c:\Programme\Common Files\microsoft shared\Information Retrieval\msitss.dll (Microsoft Corporation)

O18 - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - C:\Programme\Windows Live\Messenger\msgrapp.14.0.8089.0726.dll (Microsoft Corporation)

O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Programme\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)

O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Programme\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)

O20 - AppInit_DLLs: (C:\PROGRA~1\Google\GOOGLE~2\GOEC62~1.DLL) - C:\Programme\Google\Google Desktop Search\GoogleDesktopNetwork3.dll (Google)

O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)

O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)

O24 - Desktop WallPaper: C:\Users\Madlen\AppData\Roaming\Microsoft\Windows Photo Gallery\Hintergrundbild der Windows-Fotogalerie.jpg

O24 - Desktop BackupWallPaper: C:\Users\Madlen\AppData\Roaming\Microsoft\Windows Photo Gallery\Hintergrundbild der Windows-Fotogalerie.jpg

O32 - HKLM CDRom: AutoRun - 1

O32 - AutoRun File - [2006.09.18 22:43:36 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]

O34 - HKLM BootExecute: (autocheck autochk *)

O35 - HKLM\..comfile [open] -- "%1" %*

O35 - HKLM\..exefile [open] -- "%1" %*

O37 - HKLM\...com [@ = comfile] -- "%1" %*

O37 - HKLM\...exe [@ = exefile] -- "%1" %*

 

NetSvcs: FastUserSwitchingCompatibility -  File not found

NetSvcs: Ias - C:\Windows\System32\ias.dll (Microsoft Corporation)

NetSvcs: Nla -  File not found

NetSvcs: Ntmssvc -  File not found

NetSvcs: NWCWorkstation -  File not found

NetSvcs: Nwsapagent -  File not found

NetSvcs: SRService -  File not found

NetSvcs: WmdmPmSp -  File not found

NetSvcs: LogonHours -  File not found

NetSvcs: PCAudit -  File not found

NetSvcs: helpsvc -  File not found

NetSvcs: uploadmgr -  File not found

 

 

SafeBootMin: AppMgmt - Service

SafeBootMin: Base - Driver Group

SafeBootMin: Boot Bus Extender - Driver Group

SafeBootMin: Boot file system - Driver Group

SafeBootMin: File system - Driver Group

SafeBootMin: Filter - Driver Group

SafeBootMin: HelpSvc - Service

SafeBootMin: NTDS -  File not found

SafeBootMin: PCI Configuration - Driver Group

SafeBootMin: PNP Filter - Driver Group

SafeBootMin: Primary disk - Driver Group

SafeBootMin: sacsvr - Service

SafeBootMin: SCSI Class - Driver Group

SafeBootMin: sermouse.sys - C:\Windows\system32\drivers\sermouse.sys ()

SafeBootMin: System Bus Extender - Driver Group

SafeBootMin: WinDefend - C:\Programme\Windows Defender\MpSvc.dll (Microsoft Corporation)

SafeBootMin: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers

SafeBootMin: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive

SafeBootMin: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive

SafeBootMin: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller

SafeBootMin: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc

SafeBootMin: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard

SafeBootMin: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse

SafeBootMin: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters

SafeBootMin: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter

SafeBootMin: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System

SafeBootMin: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive

SafeBootMin: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy

SafeBootMin: {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers

SafeBootMin: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume

SafeBootMin: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices

SafeBootMin: {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices

SafeBootMin: {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices

 

SafeBootNet: AppMgmt - Service

SafeBootNet: Base - Driver Group

SafeBootNet: Boot Bus Extender - Driver Group

SafeBootNet: Boot file system - Driver Group

SafeBootNet: File system - Driver Group

SafeBootNet: Filter - Driver Group

SafeBootNet: HelpSvc - Service

SafeBootNet: Messenger - Service

SafeBootNet: NDIS Wrapper - Driver Group

SafeBootNet: NetBIOSGroup - Driver Group

SafeBootNet: NetDDEGroup - Driver Group

SafeBootNet: Network - Driver Group

SafeBootNet: NetworkProvider - Driver Group

SafeBootNet: NTDS -  File not found

SafeBootNet: PCI Configuration - Driver Group

SafeBootNet: PNP Filter - Driver Group

SafeBootNet: PNP_TDI - Driver Group

SafeBootNet: Primary disk - Driver Group

SafeBootNet: rdsessmgr - Service

SafeBootNet: sacsvr - Service

SafeBootNet: SCSI Class - Driver Group

SafeBootNet: sermouse.sys - C:\Windows\system32\drivers\sermouse.sys ()

SafeBootNet: Streams Drivers - Driver Group

SafeBootNet: System Bus Extender - Driver Group

SafeBootNet: TDI - Driver Group

SafeBootNet: WinDefend - C:\Programme\Windows Defender\MpSvc.dll (Microsoft Corporation)

SafeBootNet: WudfPf - Driver

SafeBootNet: WudfUsbccidDriver - Driver

SafeBootNet: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers

SafeBootNet: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive

SafeBootNet: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive

SafeBootNet: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller

SafeBootNet: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc

SafeBootNet: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard

SafeBootNet: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse

SafeBootNet: {4D36E972-E325-11CE-BFC1-08002BE10318} - Net

SafeBootNet: {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient

SafeBootNet: {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService

SafeBootNet: {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans

SafeBootNet: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters

SafeBootNet: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter

SafeBootNet: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System

SafeBootNet: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive

SafeBootNet: {50DD5230-BA8A-11D1-BF5D-0000F805F530} - Smart card readers

SafeBootNet: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy

SafeBootNet: {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers

SafeBootNet: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume

SafeBootNet: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices

SafeBootNet: {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices

SafeBootNet: {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices

 

ActiveX: {08B0E5C0-4FCB-11CF-AAA5-00401C608500} - Java (Sun)

ActiveX: {2179C5D3-EBFF-11CF-B6FD-00AA00B4E220} - 

ActiveX: {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Microsoft Windows Media Player 11.0

ActiveX: {25FFAAD0-F4A3-4164-95FF-4461E9F35D51} - .NET Framework

ActiveX: {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - %SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll

ActiveX: {3af36230-a269-11d1-b5bf-0000f8051515} - Offline Browsing Pack

ActiveX: {3C3901C5-3455-3E0A-A214-0B093A5070A6} - .NET Framework

ActiveX: {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles%\Windows Mail\WinMail.exe" OCInstallUserConfigOE

ActiveX: {44BBA848-CC51-11CF-AAFA-00AA00B6015C} - 

ActiveX: {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx

ActiveX: {45ea75a0-a269-11d1-b5bf-0000f8051515} - Internet Explorer Help

ActiveX: {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.6

ActiveX: {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Internet Explorer Setup Tools

ActiveX: {630b1da0-b465-11d1-9948-00c04f98bbc9} - Browsing Enhancements

ActiveX: {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player

ActiveX: {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - MSN Site Access

ActiveX: {7790769C-0471-11d2-AF11-00C04FA35D02} - Address Book 7

ActiveX: {7C028AF8-F614-47B3-82DA-BA94E41B1089} - .NET Framework

ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4340} - regsvr32.exe /s /n /i:U shell32.dll

ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4383} - C:\Windows\system32\ie4uinit.exe -BaseSettings

ActiveX: {89B4C1CD-B018-4511-B0A1-5476DBF70820} - C:\Windows\system32\Rundll32.exe C:\Windows\system32\mscories.dll,Install

ActiveX: {9381D8F2-0288-11D0-9501-00AA00B911A5} - Dynamic HTML Data Binding

ActiveX: {C9E9A340-D1F1-11D0-821E-444553540600} - Internet Explorer Core Fonts

ActiveX: {CDD7975E-60F8-41d5-8149-19E51D6F71D0} - Windows Movie Maker v2.1

ActiveX: {D27CDB6E-AE6D-11CF-96B8-444553540000} - Adobe Flash Player

ActiveX: {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - HTML Help

ActiveX: {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface

ActiveX: >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - C:\Windows\system32\unregmp2.exe /ShowWMP

ActiveX: >{26923b43-4d38-484f-9b9e-de460746276c} - C:\Windows\system32\ie4uinit.exe -UserIconConfig

ActiveX: >{60B49E34-C7CC-11D0-8953-00A0C90347FF} - "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\iedkcs32.dll",BrandIEActiveSetup SIGNUP

 

Drivers32: msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)

Drivers32: MSVideo - C:\Windows\System32\vfwwdm32.dll (Microsoft Corporation)

Drivers32: MSVideo8 - C:\Windows\System32\vfwwdm32.dll (Microsoft Corporation)

Drivers32: vidc.cvid - C:\Windows\System32\iccvid.dll (Radius Inc.)

Drivers32: vidc.i420 - C:\Windows\System32\lvcodec2.dll (Logitech Inc.)

Drivers32: vidc.VP60 - C:\Windows\System32\vp6vfw.dll (On2.com)

Drivers32: vidc.VP61 - C:\Windows\System32\vp6vfw.dll (On2.com)

 

CREATERESTOREPOINT

Restore point Set: OTL Restore Point

 
 ========== Files/Folders - Created Within 30 Days ==========

 

[2012.02.20 15:33:29 | 000,000,000 | ---D | C] -- C:\Program Files\ESET

[2012.02.20 14:10:29 | 000,000,000 | ---D | C] -- C:\Users\Madlen\AppData\Roaming\Malwarebytes

[2012.02.20 14:10:25 | 000,020,464 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys

[2012.02.20 14:10:25 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware

[2012.02.20 14:10:25 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware

[2012.02.20 14:10:25 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes

[2012.02.14 13:18:31 | 000,000,000 | ---D | C] -- C:\output

[2010.08.25 18:59:08 | 000,004,096 | ---- | C] ( ) -- C:\Windows\System32\IGFXDEVLib.dll

[2009.09.11 17:50:59 | 000,001,356 | ---- | C] () -- C:\Users\Madlen\AppData\Local\d3d9caps.dat

[2009.07.26 19:28:57 | 000,000,056 | -H-- | C] () -- C:\ProgramData\ezsidmv.dat

[2009.07.11 13:57:05 | 000,181,248 | ---- | C] () -- C:\Users\Madlen\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

[2009.07.10 23:50:15 | 000,070,744 | ---- | C] () -- C:\Users\Madlen\AppData\Local\GDIPFONTCACHEV1.DAT

[3 C:\Users\Madlen\Documents\*.tmp files -> C:\Users\Madlen\Documents\*.tmp -> ]

[1 C:\Windows\System32\*.tmp files -> C:\Windows\System32\*.tmp -> ]

 
 ========== Files - Modified Within 30 Days ==========

 

[2012.02.21 15:00:00 | 000,000,420 | -H-- | M] () -- C:\Windows\tasks\User_Feed_Synchronization-{1FDACA76-F81F-45DF-B571-75107371B616}.job

[2012.02.21 14:32:03 | 000,001,098 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job

[2012.02.21 13:18:10 | 000,003,216 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0

[2012.02.21 13:18:10 | 000,003,216 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0

[2012.02.21 13:11:22 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat

[2012.02.21 11:59:44 | 000,628,742 | ---- | M] () -- C:\Windows\System32\perfh007.dat

[2012.02.21 11:59:44 | 000,595,996 | ---- | M] () -- C:\Windows\System32\perfh009.dat

[2012.02.21 11:59:44 | 000,126,454 | ---- | M] () -- C:\Windows\System32\perfc007.dat

[2012.02.21 11:59:44 | 000,104,070 | ---- | M] () -- C:\Windows\System32\perfc009.dat

[2012.02.21 09:19:44 | 000,001,799 | ---- | M] () -- C:\Users\Madlen\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Tintenwarnungen überwachen - HP Deskjet 3070 B611 series.lnk

[2012.02.21 09:18:20 | 000,001,094 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job

[2012.02.21 09:17:30 | 3180,212,224 | -HS- | M] () -- C:\hiberfil.sys

[2012.02.20 23:37:08 | 000,000,012 | ---- | M] () -- C:\Windows\bthservsdp.dat

[2012.02.20 23:33:33 | 000,001,977 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk

[2012.02.20 14:10:26 | 000,000,912 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk

[2012.02.19 19:59:16 | 000,001,356 | ---- | M] () -- C:\Users\Madlen\AppData\Local\d3d9caps.dat

[2012.02.19 07:00:03 | 000,002,231 | ---- | M] () -- C:\Users\Public\Desktop\iTunes.lnk

[2012.02.14 14:17:59 | 000,050,871 | ---- | M] () -- C:\Users\Madlen\Desktop\Love-heart-cookie-italiancookie.jpg

[2012.02.14 13:18:53 | 000,000,069 | ---- | M] () -- C:\Windows\NeroDigital.ini

[2012.02.09 21:25:11 | 000,181,248 | ---- | M] () -- C:\Users\Madlen\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

[2012.02.06 21:51:19 | 000,002,377 | ---- | M] () -- C:\Users\Public\Desktop\Skype.lnk

[2012.02.01 07:23:41 | 235,960,745 | ---- | M] () -- C:\Windows\MEMORY.DMP

[2012.01.30 15:09:24 | 001,116,198 | ---- | M] () -- C:\Users\Madlen\Desktop\CIMG7252.JPG

[2012.01.29 19:39:15 | 000,035,360 | ---- | M] () -- C:\Users\Madlen\Desktop\395005_10151073009205714_848475713_22401534_1440424499_n.jpg

[2012.01.27 16:14:46 | 000,015,010 | ---- | M] () -- C:\Users\Madlen\Desktop\motivation_fuenf.jpg

[3 C:\Users\Madlen\Documents\*.tmp files -> C:\Users\Madlen\Documents\*.tmp -> ]

[1 C:\Windows\System32\*.tmp files -> C:\Windows\System32\*.tmp -> ]

 
 ========== Files Created - No Company Name ==========

 

[2012.02.20 23:04:13 | 3180,212,224 | -HS- | C] () -- C:\hiberfil.sys

[2012.02.20 14:10:26 | 000,000,912 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk

[2012.02.14 14:18:01 | 000,050,871 | ---- | C] () -- C:\Users\Madlen\Desktop\Love-heart-cookie-italiancookie.jpg

[2012.02.05 10:35:54 | 000,000,069 | ---- | C] () -- C:\Windows\NeroDigital.ini

[2012.01.30 15:08:56 | 001,116,198 | ---- | C] () -- C:\Users\Madlen\Desktop\CIMG7252.JPG

[2012.01.29 19:39:14 | 000,035,360 | ---- | C] () -- C:\Users\Madlen\Desktop\395005_10151073009205714_848475713_22401534_1440424499_n.jpg

[2012.01.27 16:14:45 | 000,015,010 | ---- | C] () -- C:\Users\Madlen\Desktop\motivation_fuenf.jpg

[2011.10.07 12:59:15 | 000,000,057 | ---- | C] () -- C:\ProgramData\Ament.ini

[2011.04.26 19:03:52 | 000,000,016 | ---- | C] () -- C:\Windows\System32\asdict.dat

[2011.04.26 18:11:45 | 000,562,893 | ---- | C] () -- C:\ProgramData\bdinstall.bin

[2011.03.30 22:13:26 | 001,841,000 | ---- | C] () -- C:\Windows\System32\HPScanTRDrv_DJ3070_B611.dll

[2010.08.25 19:30:02 | 000,439,308 | ---- | C] () -- C:\Windows\System32\igcompkrng500.bin

[2010.08.25 19:30:00 | 000,982,240 | ---- | C] () -- C:\Windows\System32\igkrng500.bin

[2010.08.25 19:30:00 | 000,092,356 | ---- | C] () -- C:\Windows\System32\igfcg500m.bin

[2010.08.25 18:57:00 | 000,000,151 | ---- | C] () -- C:\Windows\System32\GfxUI.exe.config

[2010.08.25 18:52:00 | 000,208,896 | ---- | C] () -- C:\Windows\System32\iglhsip32.dll

[2010.08.25 18:52:00 | 000,143,360 | ---- | C] () -- C:\Windows\System32\iglhcp32.dll

[2010.07.08 09:37:14 | 000,101,544 | ---- | C] () -- C:\Program Files\Common Files\LinkInstaller.exe

[2010.07.04 22:06:11 | 000,000,072 | ---- | C] () -- C:\Users\Madlen\AppData\Roaming\wklnhst.dat

[2010.06.24 00:44:43 | 000,024,064 | ---- | C] () -- C:\Users\Madlen\AppData\Roaming\UserTile.png

 
 ========== LOP Check ==========

 

[2011.04.26 18:59:15 | 000,000,000 | ---D | M] -- C:\Users\Madlen\AppData\Roaming\BitDefender

[2011.10.12 15:19:28 | 000,000,000 | ---D | M] -- C:\Users\Madlen\AppData\Roaming\Phase6

[2012.02.14 13:19:56 | 000,000,000 | ---D | M] -- C:\Users\Madlen\AppData\Roaming\PhotoScape

[2011.04.26 18:52:37 | 000,000,000 | ---D | M] -- C:\Users\Madlen\AppData\Roaming\QuickScan

[2010.07.04 22:06:12 | 000,000,000 | ---D | M] -- C:\Users\Madlen\AppData\Roaming\Template

[2012.02.20 23:37:09 | 000,032,536 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT

[2012.02.21 15:00:00 | 000,000,420 | -H-- | M] () -- C:\Windows\Tasks\User_Feed_Synchronization-{1FDACA76-F81F-45DF-B571-75107371B616}.job

 
 ========== Purity Check ==========

 

 

 
 ========== Custom Scans ==========

 

 
 < %ALLUSERSPROFILE%\Application Data\*. >

 
 < %ALLUSERSPROFILE%\Application Data\*.exe /s >

 
 < %APPDATA%\*. >

[2009.07.11 14:06:20 | 000,000,000 | ---D | M] -- C:\Users\Madlen\AppData\Roaming\Adobe

[2010.09.03 12:01:39 | 000,000,000 | ---D | M] -- C:\Users\Madlen\AppData\Roaming\Apple Computer

[2011.04.26 18:59:15 | 000,000,000 | ---D | M] -- C:\Users\Madlen\AppData\Roaming\BitDefender

[2011.05.05 19:41:46 | 000,000,000 | ---D | M] -- C:\Users\Madlen\AppData\Roaming\DivX

[2011.05.24 19:55:42 | 000,000,000 | ---D | M] -- C:\Users\Madlen\AppData\Roaming\dvdcss

[2009.07.11 09:25:24 | 000,000,000 | ---D | M] -- C:\Users\Madlen\AppData\Roaming\Google

[2009.07.10 23:50:01 | 000,000,000 | ---D | M] -- C:\Users\Madlen\AppData\Roaming\Identities

[2010.01.04 17:38:40 | 000,000,000 | ---D | M] -- C:\Users\Madlen\AppData\Roaming\Macromedia

[2012.02.20 14:10:29 | 000,000,000 | ---D | M] -- C:\Users\Madlen\AppData\Roaming\Malwarebytes

[2006.11.02 13:37:34 | 000,000,000 | ---D | M] -- C:\Users\Madlen\AppData\Roaming\Media Center Programs

[2011.03.11 23:45:23 | 000,000,000 | --SD | M] -- C:\Users\Madlen\AppData\Roaming\Microsoft

[2011.10.12 15:19:35 | 000,000,000 | ---D | M] -- C:\Users\Madlen\AppData\Roaming\Mozilla

[2009.11.11 20:21:09 | 000,000,000 | ---D | M] -- C:\Users\Madlen\AppData\Roaming\Nero

[2011.10.12 15:19:28 | 000,000,000 | ---D | M] -- C:\Users\Madlen\AppData\Roaming\Phase6

[2012.02.14 13:19:56 | 000,000,000 | ---D | M] -- C:\Users\Madlen\AppData\Roaming\PhotoScape

[2011.04.26 18:52:37 | 000,000,000 | ---D | M] -- C:\Users\Madlen\AppData\Roaming\QuickScan

[2012.02.21 14:48:57 | 000,000,000 | ---D | M] -- C:\Users\Madlen\AppData\Roaming\Skype

[2011.10.30 19:12:23 | 000,000,000 | ---D | M] -- C:\Users\Madlen\AppData\Roaming\skypePM

[2010.07.04 22:06:12 | 000,000,000 | ---D | M] -- C:\Users\Madlen\AppData\Roaming\Template

[2011.11.19 16:29:54 | 000,000,000 | ---D | M] -- C:\Users\Madlen\AppData\Roaming\vlc

 
 < %APPDATA%\*.exe /s >

[2009.07.10 23:49:24 | 000,008,704 | R--- | M] () -- C:\Users\Madlen\AppData\Roaming\Microsoft\Installer\{9A3BC157-B94F-4EFD-ABA9-1E56DEB00655}\Icon9A3BC1573.exe

 
 < %SYSTEMDRIVE%\*.exe >

 

 
 < MD5 for: AGP440.SYS  >

[2008.01.21 03:23:01 | 000,056,376 | ---- | M] (Microsoft Corporation) MD5=13F9E33747E6B41A3FF305C37DB0D360 -- C:\Windows\System32\DriverStore\FileRepository\machine.inf_51b95d75\AGP440.sys

[2008.01.21 03:23:01 | 000,056,376 | ---- | M] (Microsoft Corporation) MD5=13F9E33747E6B41A3FF305C37DB0D360 -- C:\Windows\System32\DriverStore\FileRepository\machine.inf_f750e484\AGP440.sys

[2008.01.21 03:23:01 | 000,056,376 | ---- | M] (Microsoft Corporation) MD5=13F9E33747E6B41A3FF305C37DB0D360 -- C:\Windows\winsxs\x86_machine.inf_31bf3856ad364e35_6.0.6001.18000_none_ba12ed3bbeb0d97a\AGP440.sys

[2008.01.21 03:23:01 | 000,056,376 | ---- | M] (Microsoft Corporation) MD5=13F9E33747E6B41A3FF305C37DB0D360 -- C:\Windows\winsxs\x86_machine.inf_31bf3856ad364e35_6.0.6002.18005_none_bbfe6647bbd2a4c6\AGP440.sys

[2006.11.02 10:49:52 | 000,053,864 | ---- | M] (Microsoft Corporation) MD5=EF23439CDD587F64C2C1B8825CEAD7D8 -- C:\Windows\System32\DriverStore\FileRepository\machine.inf_920a2c1f\AGP440.sys

[2008.01.21 03:23:01 | 000,056,376 | ---- | M] () Unable to obtain MD5 -- C:\Windows\System32\drivers\AGP440.sys

 
 < MD5 for: AHCIX86S.SYS  >

[2007.12.19 18:45:00 | 000,170,000 | ---- | M] (AMD Technologies Inc.) MD5=0DEE2B628D4C6E23285BB91EFFDABFDE -- C:\Windows\System32\DriverStore\FileRepository\ahcix86s.inf_71554ba4\ahcix86s.sys

[2007.12.19 18:45:00 | 000,170,000 | ---- | M] () Unable to obtain MD5 -- C:\Windows\System32\drivers\ahcix86s.sys

 
 < MD5 for: ATAPI.SYS  >

[2009.04.11 07:32:26 | 000,019,944 | ---- | M] (Microsoft Corporation) MD5=1F05B78AB91C9075565A9D8A4B880BC4 -- C:\Windows\System32\drivers\atapi.sys

[2009.04.11 07:32:26 | 000,019,944 | ---- | M] (Microsoft Corporation) MD5=1F05B78AB91C9075565A9D8A4B880BC4 -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_b12d8e84\atapi.sys

[2009.04.11 07:32:26 | 000,019,944 | ---- | M] (Microsoft Corporation) MD5=1F05B78AB91C9075565A9D8A4B880BC4 -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.0.6002.18005_none_df23a1261eab99e8\atapi.sys

[2008.01.21 03:23:00 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=2D9C903DC76A66813D350A562DE40ED9 -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_cc18792d\atapi.sys

[2008.01.21 03:23:00 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=2D9C903DC76A66813D350A562DE40ED9 -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.0.6001.18000_none_dd38281a2189ce9c\atapi.sys

[2006.11.02 10:49:36 | 000,019,048 | ---- | M] (Microsoft Corporation) MD5=4F4FCB8B6EA06784FB6D475B7EC7300F -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_c6c2e699\atapi.sys

[2008.06.03 04:29:54 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=9C0E70031905ADBF94EDB9EA14AF943B -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_7f3e4ed9\atapi.sys

[2008.06.03 04:29:54 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=9C0E70031905ADBF94EDB9EA14AF943B -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.0.6001.22193_none_dd6376773aedb5e4\atapi.sys

[2008.06.03 04:27:21 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=E26DDFE464B464DAF1C739122978D1D6 -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_b7393fc6\atapi.sys

[2008.06.03 04:27:21 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=E26DDFE464B464DAF1C739122978D1D6 -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.0.6000.20847_none_dbb74a7b3d9afbc1\atapi.sys

 
 < MD5 for: CNGAUDIT.DLL  >

[2006.11.02 10:46:03 | 000,011,776 | ---- | M] (Microsoft Corporation) MD5=7F15B4953378C8B5161D65C26D5FED4D -- C:\Windows\System32\cngaudit.dll

[2006.11.02 10:46:03 | 000,011,776 | ---- | M] (Microsoft Corporation) MD5=7F15B4953378C8B5161D65C26D5FED4D -- C:\Windows\winsxs\x86_microsoft-windows-cngaudit-dll_31bf3856ad364e35_6.0.6000.16386_none_e62d292932a96ce6\cngaudit.dll

 
 < MD5 for: EVENTLOG.DLL  >

[2010.11.30 06:19:06 | 000,008,376 | ---- | M] () MD5=68F9AD291B0C16F6B4AAEBFC26960EFA -- C:\Program Files\Common Files\BitDefender\BitDefender Arrakis Server\lib\eventlog.dll

 
 < MD5 for: IASTOR.SYS  >

[2007.09.29 23:03:12 | 000,308,248 | ---- | M] (Intel Corporation) MD5=E5A0034847537EAEE3C00349D5C34C5F -- C:\Windows\System32\DriverStore\FileRepository\iaahci.inf_7baf6192\iaStor.sys

[2007.09.29 23:03:12 | 000,308,248 | ---- | M] (Intel Corporation) MD5=E5A0034847537EAEE3C00349D5C34C5F -- C:\Windows\System32\DriverStore\FileRepository\iastor.inf_41af7b1f\iaStor.sys

[2007.09.29 23:03:12 | 000,308,248 | ---- | M] () Unable to obtain MD5 -- C:\Windows\System32\drivers\iaStor.sys

 
 < MD5 for: IASTORV.SYS  >

[2008.01.21 03:23:23 | 000,235,064 | ---- | M] (Intel Corporation) MD5=54155EA1B0DF185878E0FC9EC3AC3A14 -- C:\Windows\System32\DriverStore\FileRepository\iastorv.inf_c9df7691\iaStorV.sys

[2008.01.21 03:23:23 | 000,235,064 | ---- | M] (Intel Corporation) MD5=54155EA1B0DF185878E0FC9EC3AC3A14 -- C:\Windows\winsxs\x86_iastorv.inf_31bf3856ad364e35_6.0.6001.18000_none_af11527887c7fa8f\iaStorV.sys

[2006.11.02 10:51:25 | 000,232,040 | ---- | M] (Intel Corporation) MD5=C957BF4B5D80B46C5017BF0101E6C906 -- C:\Windows\System32\DriverStore\FileRepository\iastorv.inf_37cdafa4\iaStorV.sys

[2008.01.21 03:23:23 | 000,235,064 | ---- | M] () Unable to obtain MD5 -- C:\Windows\System32\drivers\iaStorV.sys

 
 < MD5 for: NETLOGON.DLL  >

[2009.04.11 07:28:23 | 000,592,896 | ---- | M] (Microsoft Corporation) MD5=95DAECF0FB120A7B5DA679CC54E37DDE -- C:\Windows\System32\netlogon.dll

[2009.04.11 07:28:23 | 000,592,896 | ---- | M] (Microsoft Corporation) MD5=95DAECF0FB120A7B5DA679CC54E37DDE -- C:\Windows\winsxs\x86_microsoft-windows-security-netlogon_31bf3856ad364e35_6.0.6002.18005_none_ffa3304f351bb3a3\netlogon.dll

[2008.01.21 03:24:05 | 000,592,384 | ---- | M] (Microsoft Corporation) MD5=A8EFC0B6E75B789F7FD3BA5025D4E37F -- C:\Windows\winsxs\x86_microsoft-windows-security-netlogon_31bf3856ad364e35_6.0.6001.18000_none_fdb7b74337f9e857\netlogon.dll

 
 < MD5 for: NVSTOR.SYS  >

[2006.11.02 10:50:13 | 000,040,040 | ---- | M] (NVIDIA Corporation) MD5=9E0BA19A28C498A6D323D065DB76DFFC -- C:\Windows\System32\DriverStore\FileRepository\nvraid.inf_733654ff\nvstor.sys

[2008.01.21 03:23:21 | 000,045,112 | ---- | M] (NVIDIA Corporation) MD5=ABED0C09758D1D97DB0042DBB2688177 -- C:\Windows\System32\DriverStore\FileRepository\nvraid.inf_31c3d71d\nvstor.sys

[2008.01.21 03:23:21 | 000,045,112 | ---- | M] (NVIDIA Corporation) MD5=ABED0C09758D1D97DB0042DBB2688177 -- C:\Windows\winsxs\x86_nvraid.inf_31bf3856ad364e35_6.0.6001.18000_none_39dac327befea467\nvstor.sys

[2008.01.21 03:23:21 | 000,045,112 | ---- | M] () Unable to obtain MD5 -- C:\Windows\System32\drivers\nvstor.sys

 
 < MD5 for: SCECLI.DLL  >

[2008.01.21 03:24:50 | 000,177,152 | ---- | M] (Microsoft Corporation) MD5=28B84EB538F7E8A0FE8B9299D591E0B9 -- C:\Windows\winsxs\x86_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.0.6001.18000_none_380de25bd91b6f12\scecli.dll

[2009.04.11 07:28:24 | 000,177,152 | ---- | M] (Microsoft Corporation) MD5=8FC182167381E9915651267044105EE1 -- C:\Windows\System32\scecli.dll

[2009.04.11 07:28:24 | 000,177,152 | ---- | M] (Microsoft Corporation) MD5=8FC182167381E9915651267044105EE1 -- C:\Windows\winsxs\x86_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.0.6002.18005_none_39f95b67d63d3a5e\scecli.dll

 
 < MD5 for: USER32.DLL  >

[2008.01.21 03:24:21 | 000,627,200 | ---- | M] (Microsoft Corporation) MD5=B974D9F06DC7D1908E825DC201681269 -- C:\Windows\winsxs\x86_microsoft-windows-user32_31bf3856ad364e35_6.0.6001.18000_none_cd386c416d5c7f32\user32.dll

[2009.04.11 07:28:25 | 000,627,712 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\System32\user32.dll

[2009.04.11 07:28:25 | 000,627,712 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\winsxs\x86_microsoft-windows-user32_31bf3856ad364e35_6.0.6002.18005_none_cf23e54d6a7e4a7e\user32.dll

 
 < MD5 for: USERINIT.EXE  >

[2008.01.21 03:24:49 | 000,025,088 | ---- | M] (Microsoft Corporation) MD5=0E135526E9785D085BCD9AEDE6FBCBF9 -- C:\Windows\System32\userinit.exe

[2008.01.21 03:24:49 | 000,025,088 | ---- | M] (Microsoft Corporation) MD5=0E135526E9785D085BCD9AEDE6FBCBF9 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.0.6001.18000_none_dc28ba15d1aff80b\userinit.exe

 
 < MD5 for: WININIT.EXE  >

[2008.01.21 03:23:42 | 000,096,768 | ---- | M] (Microsoft Corporation) MD5=101BA3EA053480BB5D957EF37C06B5ED -- C:\Windows\System32\wininit.exe

[2008.01.21 03:23:42 | 000,096,768 | ---- | M] (Microsoft Corporation) MD5=101BA3EA053480BB5D957EF37C06B5ED -- C:\Windows\winsxs\x86_microsoft-windows-wininit_31bf3856ad364e35_6.0.6001.18000_none_30f2b8cf0450a6a2\wininit.exe

 
 < MD5 for: WINLOGON.EXE  >

[2012.01.13 14:53:20 | 000,182,856 | ---- | M] () MD5=63EEC8A8B221AB79045E776E5F592868 -- C:\Program Files\Malwarebytes' Anti-Malware\Chameleon\winlogon.exe

[2009.04.11 07:28:13 | 000,314,368 | ---- | M] (Microsoft Corporation) MD5=898E7C06A350D4A1A64A9EA264D55452 -- C:\Windows\System32\winlogon.exe

[2009.04.11 07:28:13 | 000,314,368 | ---- | M] (Microsoft Corporation) MD5=898E7C06A350D4A1A64A9EA264D55452 -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.0.6002.18005_none_71ae7a22d2134741\winlogon.exe

[2008.01.21 03:24:49 | 000,314,880 | ---- | M] (Microsoft Corporation) MD5=C2610B6BDBEFC053BBDAB4F1B965CB24 -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.0.6001.18000_none_6fc30116d4f17bf5\winlogon.exe

 
 < MD5 for: WS2IFSL.SYS  >

[2008.01.21 03:24:47 | 000,015,872 | ---- | M] (Microsoft Corporation) MD5=E3A3CB253C0EC2494D4A61F5E43A389C -- C:\Windows\System32\drivers\ws2ifsl.sys

[2008.01.21 03:24:47 | 000,015,872 | ---- | M] (Microsoft Corporation) MD5=E3A3CB253C0EC2494D4A61F5E43A389C -- C:\Windows\winsxs\x86_microsoft-windows-w..rastructure-ws2ifsl_31bf3856ad364e35_6.0.6001.18000_none_4f86a0d4c7cda641\ws2ifsl.sys

 
 < %systemroot%\system32\drivers\*.sys /lockedfiles >

[2008.01.21 03:23:21 | 000,422,968 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\adp94xx.sys

[2008.01.21 03:23:25 | 000,300,600 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\adpahci.sys

[2008.01.21 03:23:26 | 000,101,432 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\adpu160m.sys

[2008.01.21 03:23:27 | 000,149,560 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\adpu320.sys

[2008.01.21 03:23:01 | 000,056,376 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\AGP440.sys

[2007.12.19 18:45:00 | 000,170,000 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\ahcix86s.sys

[2008.01.21 03:23:00 | 000,017,464 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\aliide.sys

[2008.01.21 03:23:01 | 000,057,400 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\AMDAGP.SYS

[2008.01.21 03:23:00 | 000,017,976 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\amdide.sys

[2008.01.21 03:23:00 | 000,041,472 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\amdk7.sys

[2008.01.21 03:23:00 | 000,044,032 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\amdk8.sys

[2008.01.21 03:23:23 | 000,079,416 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\arc.sys

[2008.01.21 03:23:24 | 000,079,928 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\arcsas.sys

[2010.11.29 13:12:14 | 000,535,824 | ---- | M] (BitDefender) Unable to obtain MD5 -- C:\Windows\system32\drivers\avc3.sys

[2010.11.29 13:12:20 | 001,066,232 | ---- | M] (BitDefender) Unable to obtain MD5 -- C:\Windows\system32\drivers\avckf.sys

[2010.05.13 15:52:04 | 000,152,528 | ---- | M] (BitDefender S.R.L. Bucharest, ROMANIA) Unable to obtain MD5 -- C:\Windows\system32\drivers\bdfm.sys

[2011.03.24 14:36:18 | 000,353,096 | ---- | M] (BitDefender) Unable to obtain MD5 -- C:\Windows\system32\drivers\bdfsfltr.sys

[2010.05.13 15:52:30 | 000,105,808 | ---- | M] (BitDefender S.R.L. Bucharest, ROMANIA) Unable to obtain MD5 -- C:\Windows\system32\drivers\bdhv.sys

[2008.01.21 03:23:01 | 000,045,568 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\blbdrive.sys

[2006.11.02 09:24:45 | 000,013,568 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\BrFiltLo.sys

[2006.11.02 09:24:46 | 000,005,248 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\BrFiltUp.sys

[2006.11.02 09:25:24 | 000,071,808 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\BrSerId.sys

[2006.11.02 09:24:44 | 000,062,336 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\BrSerWdm.sys

[2006.11.02 09:24:44 | 000,012,160 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\BrUsbMdm.sys

[2006.11.02 09:24:47 | 000,011,904 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\BrUsbSer.sys

[2006.11.02 09:55:23 | 000,039,936 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\bthmodem.sys

[2008.01.21 03:23:26 | 000,035,328 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\circlass.sys

[2008.01.21 03:23:00 | 000,019,000 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\cmdide.sys

[2008.01.21 03:23:00 | 000,040,960 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\crusoe.sys

[2006.11.02 10:50:11 | 000,071,272 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\djsvs.sys

[2008.01.21 03:23:22 | 000,342,584 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\elxstor.sys

[2008.01.21 03:23:00 | 000,006,656 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\errdev.sys

[2008.01.21 03:23:22 | 000,061,496 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\GAGP30KX.SYS

[2006.11.02 09:55:22 | 000,029,184 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\hidbth.sys

[2006.11.02 09:55:01 | 000,021,504 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\hidir.sys

[2008.01.21 03:23:26 | 000,040,504 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\HpCISSs.sys

[2008.01.21 03:23:02 | 000,030,264 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\i2omp.sys

[2007.09.29 23:03:12 | 000,308,248 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\iaStor.sys

[2008.01.21 03:23:23 | 000,235,064 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\iaStorV.sys

[2006.11.02 10:50:17 | 000,041,576 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\iirsp.sys

[2008.01.21 03:23:00 | 000,017,976 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\intelide.sys

[2008.01.21 03:23:22 | 000,064,512 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\IPMIDrv.sys

[2008.01.21 03:23:01 | 000,049,720 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\isapnp.sys

[2006.11.02 10:50:07 | 000,035,944 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\iteatapi.sys

[2006.11.02 10:50:09 | 000,035,944 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\iteraid.sys

[2008.04.03 13:58:46 | 000,076,688 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\jraid.sys

[2008.01.21 03:23:23 | 000,015,872 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\kbdhid.sys

[2008.01.21 03:23:23 | 000,096,312 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\lsi_fc.sys

[2008.01.21 03:23:25 | 000,089,656 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\lsi_sas.sys

[2008.01.21 03:23:23 | 000,096,312 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\lsi_scsi.sys

[2008.01.21 03:23:27 | 000,031,288 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\megasas.sys

[2008.01.21 03:23:27 | 000,386,616 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\MegaSR.sys

[2008.01.21 03:23:20 | 000,105,016 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\mpio.sys

[2006.11.02 10:49:59 | 000,033,384 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\Mraid35x.sys

[2008.01.21 03:23:21 | 000,094,776 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\msdsm.sys

[2006.11.02 10:50:19 | 000,045,160 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\nfrd960.sys

[2006.11.02 08:36:50 | 000,020,608 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\ntrigdigi.sys

[2008.01.21 03:23:21 | 000,102,968 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\nvraid.sys

[2008.01.21 03:23:21 | 000,045,112 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\nvstor.sys

[2008.01.21 03:23:01 | 000,109,112 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\NV_AGP.SYS

[2006.11.02 09:51:30 | 000,079,360 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\parport.sys

[2006.11.02 09:51:23 | 000,008,704 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\parvdm.sys

[2008.01.21 03:23:00 | 000,016,440 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\pciide.sys

[2006.11.02 10:51:12 | 000,167,528 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\pcmcia.sys

[2008.01.21 03:23:00 | 000,040,960 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\processr.sys

[2008.01.21 03:23:24 | 001,122,360 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\ql2300.sys

[2006.11.02 10:50:35 | 000,106,088 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\ql40xx.sys

[2008.01.21 03:23:01 | 000,248,832 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\rdpdr.sys

[2006.11.02 10:50:16 | 000,076,392 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\sbp2port.sys

[2006.11.02 09:51:25 | 000,017,920 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\serenum.sys

[2006.11.02 09:51:30 | 000,083,456 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\serial.sys

[2008.01.21 03:23:20 | 000,019,968 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\sermouse.sys

[2008.01.21 03:23:23 | 000,013,312 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\sffdisk.sys

[2008.01.21 03:23:23 | 000,012,288 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\sffp_mmc.sys

[2008.01.21 03:23:23 | 000,011,776 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\sffp_sd.sys

[2006.11.02 09:51:40 | 000,013,312 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\sfloppy.sys

[2008.01.21 03:23:01 | 000,055,864 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\SISAGP.SYS

[2008.01.21 03:23:26 | 000,041,016 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\sisraid2.sys

[2008.01.21 03:23:26 | 000,074,808 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\sisraid4.sys

[2006.11.02 10:50:05 | 000,035,944 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\symc8xx.sys

[2006.11.02 10:49:56 | 000,031,848 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\sym_hi.sys

[2006.11.02 10:50:03 | 000,034,920 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\sym_u3.sys

[2011.06.03 07:23:47 | 000,306,320 | ---- | M] (BitDefender S.R.L.) Unable to obtain MD5 -- C:\Windows\system32\drivers\trufos.sys

[2008.01.21 03:23:22 | 000,059,448 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\UAGP35.SYS

[2008.01.21 03:23:01 | 000,060,984 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\ULIAGPKX.SYS

[2008.01.21 03:23:20 | 000,238,648 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\uliahci.sys

[2006.11.02 10:50:35 | 000,098,408 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\ulsata.sys

[2008.01.21 03:23:23 | 000,115,816 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\ulsata2.sys

[2006.11.02 09:55:09 | 000,068,608 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\usbcir.sys

[2006.11.02 09:55:05 | 000,019,456 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\usbohci.sys

[2008.01.21 03:23:01 | 000,056,888 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\VIAAGP.SYS

[2008.01.21 03:23:00 | 000,041,472 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\viac7.sys

[2008.01.21 03:23:00 | 000,020,024 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\viaide.sys

[2008.01.21 03:23:23 | 000,130,616 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\vsmraid.sys

[2006.11.02 09:52:52 | 000,020,608 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\wacompen.sys

[2008.01.21 03:23:24 | 000,022,072 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\wd.sys

[2008.01.21 03:23:00 | 000,011,264 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\wmiacpi.sys

 
 < %systemroot%\System32\config\*.sav >

[2008.07.30 15:01:10 | 013,115,392 | ---- | M] () -- C:\Windows\System32\config\COMPONENTS.SAV

[2008.07.30 15:01:01 | 000,106,496 | ---- | M] () -- C:\Windows\System32\config\DEFAULT.SAV

[2008.07.30 15:01:10 | 000,020,480 | ---- | M] () -- C:\Windows\System32\config\SECURITY.SAV

[2008.07.30 15:01:18 | 017,633,280 | ---- | M] () -- C:\Windows\System32\config\SOFTWARE.SAV

[2008.07.30 15:01:21 | 006,684,672 | ---- | M] () -- C:\Windows\System32\config\SYSTEM.SAV

 
 < %systemroot%\*. /mp /s >

 
 < %systemroot%\system32\*.dll /lockedfiles >

[2009.03.08 12:31:42 | 000,348,160 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\dxtmsft.dll

[2009.03.08 12:31:37 | 000,216,064 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\dxtrans.dll

[2011.11.03 07:17:07 | 000,184,320 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\iepeers.dll

[1 C:\Windows\system32\*.tmp files -> C:\Windows\system32\*.tmp -> ]

 
 <           >
 

< End of report >

--- --- ---
[/code]

Das sieht schon besser aus :)

Bitte nun (im normalen Windows-Modus) dieses Tool von Kaspersky (TDSS-Killer) ausführen und das Log posten => http://www.trojaner-board.de/82358-t...entfernen.html

Hinweis: Bitte den Virenscanner abstellen bevor du den TDSS-Killer ausführst, denn v.a. Avira meldet im TDSS-Tool oft einen Fehlalarm!

Das Tool so einstellen wie unten im Bild angegeben - klick auf change parameters und setze die Haken wie im folgenden Screenshot abgebildet,
Dann auf Start Scan klicken und wenn es durch ist auf den Button Report klicken um das Log anzuzeigen. Dieses bitte komplett posten.
Wenn du das Log nicht findest oder den Inhalt kopieren und in dein Posting übertragen kannst, dann schau bitte direkt auf deiner Windows-Systempartition (meistens Laufwerk C:) nach, da speichert der TDSS-Killer seine Logs.

Hinweis: Bitte nichts voreilig mit dem TDSS-Killer löschen! Falls Objekte vom TDSS-Killer bemängelt werden, alle mit der Aktion "skip" behandeln und hier nur das Log posten!

http://saved.im/mtkwmtcxexhp/setting...8_16-25-18.jpg

Falls du durch die Infektion auf deine Dokumente/Eigenen Dateien nicht zugreifen kannst, Verknüpfungen auf dem Desktop oder im Startmenü unter "alle Programme" fehlen, bitte unhide ausführen:
Downloade dir bitte unhide.exe und speichere diese Datei auf deinem Desktop.
Starte das Tool und es sollten alle Dateien und Ordner wieder sichtbar sein. ( Könnte eine Weile dauern )
http://www.trojaner-board.de/images/icons/icon4.gif Windows-Vista und Windows-7-User müssen das Tool per Rechtsklick als Administrator ausführen! http://www.trojaner-board.de/images/icons/icon4.gif

Hier das Log:

Code:

 19:00:41.0728 9948        TDSS rootkit removing tool 2.7.13.0 Feb 15 2012 19:33:14

19:00:41.0960 9948        ============================================================

19:00:41.0960 9948        Current date / time: 2012/02/21 19:00:41.0960

19:00:41.0960 9948        SystemInfo:

19:00:41.0960 9948        

19:00:41.0960 9948        OS Version: 6.0.6002 ServicePack: 2.0

19:00:41.0960 9948        Product type: Workstation

19:00:41.0960 9948        ComputerName: MADLEN-PC

19:00:41.0960 9948        UserName: Madlen

19:00:41.0960 9948        Windows directory: C:\Windows

19:00:41.0960 9948        System windows directory: C:\Windows

19:00:41.0960 9948        Processor architecture: Intel x86

19:00:41.0960 9948        Number of processors: 2

19:00:41.0961 9948        Page size: 0x1000

19:00:41.0961 9948        Boot type: Normal boot

19:00:41.0961 9948        ============================================================

19:00:43.0546 9948        Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050

19:00:43.0548 9948        \Device\Harddisk0\DR0:

19:00:43.0548 9948        MBR used

19:00:43.0548 9948        \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x1194800, BlocksNum 0x1801E000

19:00:43.0548 9948        \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x191B2800, BlocksNum 0xC27B800

19:00:43.0641 9948        Initialize success

19:00:43.0641 9948        ============================================================

19:01:39.0862 13864        ============================================================

19:01:39.0862 13864        Scan started

19:01:39.0863 13864        Mode: Manual; SigCheck; TDLFS; 

19:01:39.0863 13864        ============================================================

19:01:41.0707 13864        ACPI            (82b296ae1892fe3dbee00c9cf92f8ac7) C:\Windows\system32\drivers\acpi.sys

19:01:41.0821 13864        ACPI - ok

19:01:41.0902 13864        adp94xx         (04f0fcac69c7c71a3ac4eb97fafc8303) C:\Windows\system32\drivers\adp94xx.sys

19:01:41.0929 13864        adp94xx - ok

19:01:42.0006 13864        adpahci         (60505e0041f7751bdbb80f88bf45c2ce) C:\Windows\system32\drivers\adpahci.sys

19:01:42.0032 13864        adpahci - ok

19:01:42.0052 13864        adpu160m        (8a42779b02aec986eab64ecfc98f8bd7) C:\Windows\system32\drivers\adpu160m.sys

19:01:42.0074 13864        adpu160m - ok

19:01:42.0104 13864        adpu320         (241c9e37f8ce45ef51c3de27515ca4e5) C:\Windows\system32\drivers\adpu320.sys

19:01:42.0128 13864        adpu320 - ok

19:01:42.0215 13864        AFD             (3911b972b55fea0478476b2e777b29fa) C:\Windows\system32\drivers\afd.sys

19:01:42.0336 13864        AFD - ok

19:01:42.0379 13864        agp440          (13f9e33747e6b41a3ff305c37db0d360) C:\Windows\system32\drivers\agp440.sys

19:01:42.0399 13864        agp440 - ok

19:01:42.0457 13864        ahcix86s        (0dee2b628d4c6e23285bb91effdabfde) C:\Windows\system32\drivers\ahcix86s.sys

19:01:42.0515 13864        ahcix86s - ok

19:01:42.0554 13864        aic78xx         (ae1fdf7bf7bb6c6a70f67699d880592a) C:\Windows\system32\drivers\djsvs.sys

19:01:42.0576 13864        aic78xx - ok

19:01:42.0603 13864        aliide          (9eaef5fc9b8e351afa7e78a6fae91f91) C:\Windows\system32\drivers\aliide.sys

19:01:42.0623 13864        aliide - ok

19:01:42.0655 13864        amdagp          (c47344bc706e5f0b9dce369516661578) C:\Windows\system32\drivers\amdagp.sys

19:01:42.0674 13864        amdagp - ok

19:01:42.0708 13864        amdide          (9b78a39a4c173fdbc1321e0dd659b34c) C:\Windows\system32\drivers\amdide.sys

19:01:42.0727 13864        amdide - ok

19:01:42.0755 13864        AmdK7           (18f29b49ad23ecee3d2a826c725c8d48) C:\Windows\system32\drivers\amdk7.sys

19:01:42.0942 13864        AmdK7 - ok

19:01:42.0975 13864        AmdK8           (93ae7f7dd54ab986a6f1a1b37be7442d) C:\Windows\system32\drivers\amdk8.sys

19:01:43.0065 13864        AmdK8 - ok

19:01:43.0150 13864        arc             (5d2888182fb46632511acee92fdad522) C:\Windows\system32\drivers\arc.sys

19:01:43.0165 13864        arc - ok

19:01:43.0213 13864        arcsas          (5e2a321bd7c8b3624e41fdec3e244945) C:\Windows\system32\drivers\arcsas.sys

19:01:43.0228 13864        arcsas - ok

19:01:43.0270 13864        AsyncMac        (53b202abee6455406254444303e87be1) C:\Windows\system32\DRIVERS\asyncmac.sys

19:01:43.0317 13864        AsyncMac - ok

19:01:43.0365 13864        atapi           (1f05b78ab91c9075565a9d8a4b880bc4) C:\Windows\system32\drivers\atapi.sys

19:01:43.0380 13864        atapi - ok

19:01:43.0543 13864        avc3            (d5fb1ab93fd6c42b0ea1929995e9de51) C:\Windows\system32\DRIVERS\avc3.sys

19:01:43.0571 13864        avc3 - ok

19:01:43.0658 13864        avckf           (04fe75e4ecbe2c964735f7f4503f40d2) C:\Windows\system32\DRIVERS\avckf.sys

19:01:43.0757 13864        avckf - ok

19:01:43.0806 13864        bdfm            (8d4efc5c378bffe34c298c92f37d3b14) C:\Windows\system32\DRIVERS\bdfm.sys

19:01:43.0824 13864        bdfm - ok

19:01:43.0934 13864        Bdfndisf        (817fc12bc93a70b0449ebefaa4d6f4d2) c:\program files\common files\bitdefender\bitdefender firewall\bdfndisf6.sys

19:01:43.0950 13864        Bdfndisf - ok

19:01:44.0034 13864        bdfsfltr        (c3e025d46368e3d18085eef26ef6f6a1) C:\Windows\system32\DRIVERS\bdfsfltr.sys

19:01:44.0058 13864        bdfsfltr - ok

19:01:44.0095 13864        Bdftdif         (c23a8547d5ea6d0c3589961bfb7ff6d3) C:\Program Files\Common Files\BitDefender\BitDefender Firewall\bdftdif.sys

19:01:44.0113 13864        Bdftdif - ok

19:01:44.0253 13864        bdselfpr        (2daa9e807c11b4677cafc1e43a98f8ce) C:\Program Files\BitDefender\BitDefender 2011\bdselfpr.sys

19:01:44.0270 13864        bdselfpr - ok

19:01:44.0387 13864        Beep            (67e506b75bd5326a3ec7b70bd014dfb6) C:\Windows\system32\drivers\Beep.sys

19:01:44.0470 13864        Beep - ok

19:01:44.0534 13864        blbdrive        (d4df28447741fd3d953526e33a617397) C:\Windows\system32\drivers\blbdrive.sys

19:01:44.0591 13864        blbdrive - ok

19:01:44.0655 13864        bowser          (35f376253f687bde63976ccb3f2108ca) C:\Windows\system32\DRIVERS\bowser.sys

19:01:44.0715 13864        bowser - ok

19:01:44.0757 13864        BrFiltLo        (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\drivers\brfiltlo.sys

19:01:44.0868 13864        BrFiltLo - ok

19:01:44.0891 13864        BrFiltUp        (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\drivers\brfiltup.sys

19:01:44.0976 13864        BrFiltUp - ok

19:01:45.0041 13864        Brserid         (b304e75cff293029eddf094246747113) C:\Windows\system32\drivers\brserid.sys

19:01:45.0283 13864        Brserid - ok

19:01:45.0317 13864        BrSerWdm        (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\system32\drivers\brserwdm.sys

19:01:45.0401 13864        BrSerWdm - ok

19:01:45.0443 13864        BrUsbMdm        (bd456606156ba17e60a04e18016ae54b) C:\Windows\system32\drivers\brusbmdm.sys

19:01:45.0530 13864        BrUsbMdm - ok

19:01:45.0551 13864        BrUsbSer        (af72ed54503f717a43268b3cc5faec2e) C:\Windows\system32\drivers\brusbser.sys

19:01:45.0637 13864        BrUsbSer - ok

19:01:45.0691 13864        BthEnum         (6d39c954799b63ba866910234cf7d726) C:\Windows\system32\DRIVERS\BthEnum.sys

19:01:45.0750 13864        BthEnum - ok

19:01:45.0792 13864        BTHMODEM        (ad07c1ec6665b8b35741ab91200c6b68) C:\Windows\system32\drivers\bthmodem.sys

19:01:45.0869 13864        BTHMODEM - ok

19:01:45.0903 13864        BthPan          (5904efa25f829bf84ea6fb045134a1d8) C:\Windows\system32\DRIVERS\bthpan.sys

19:01:45.0972 13864        BthPan - ok

19:01:46.0051 13864        BTHPORT         (611ff3f2f095c8d4a6d4cfd9dcc09793) C:\Windows\system32\Drivers\BTHport.sys

19:01:46.0123 13864        BTHPORT - ok

19:01:46.0159 13864        BTHUSB          (d330803eab2a15caec7f011f1d4cb30e) C:\Windows\system32\Drivers\BTHUSB.sys

19:01:46.0187 13864        BTHUSB - ok

19:01:46.0239 13864        cdfs            (7add03e75beb9e6dd102c3081d29840a) C:\Windows\system32\DRIVERS\cdfs.sys

19:01:46.0299 13864        cdfs - ok

19:01:46.0360 13864        cdrom           (6b4bffb9becd728097024276430db314) C:\Windows\system32\DRIVERS\cdrom.sys

19:01:46.0385 13864        cdrom - ok

19:01:46.0419 13864        circlass        (e5d4133f37219dbcfe102bc61072589d) C:\Windows\system32\drivers\circlass.sys

19:01:46.0467 13864        circlass - ok

19:01:46.0516 13864        CLFS            (d7659d3b5b92c31e84e53c1431f35132) C:\Windows\system32\CLFS.sys

19:01:46.0536 13864        CLFS - ok

19:01:46.0605 13864        CmBatt          (99afc3795b58cc478fbbbcdc658fcb56) C:\Windows\system32\DRIVERS\CmBatt.sys

19:01:46.0664 13864        CmBatt - ok

19:01:46.0708 13864        cmdide          (0ca25e686a4928484e9fdabd168ab629) C:\Windows\system32\drivers\cmdide.sys

19:01:46.0727 13864        cmdide - ok

19:01:46.0745 13864        Compbatt        (6afef0b60fa25de07c0968983ee4f60a) C:\Windows\system32\DRIVERS\compbatt.sys

19:01:46.0764 13864        Compbatt - ok

19:01:46.0779 13864        crcdisk         (741e9dff4f42d2d8477d0fc1dc0df871) C:\Windows\system32\drivers\crcdisk.sys

19:01:46.0799 13864        crcdisk - ok

19:01:46.0830 13864        Crusoe          (1f07becdca750766a96cda811ba86410) C:\Windows\system32\drivers\crusoe.sys

19:01:46.0887 13864        Crusoe - ok

19:01:46.0964 13864        DfsC            (622c41a07ca7e6dd91770f50d532cb6c) C:\Windows\system32\Drivers\dfsc.sys

19:01:47.0024 13864        DfsC - ok

19:01:47.0119 13864        disk            (5d4aefc3386920236a548271f8f1af6a) C:\Windows\system32\drivers\disk.sys

19:01:47.0140 13864        disk - ok

19:01:47.0226 13864        drmkaud         (97fef831ab90bee128c9af390e243f80) C:\Windows\system32\drivers\drmkaud.sys

19:01:47.0328 13864        drmkaud - ok

19:01:47.0399 13864        DXGKrnl         (c68ac676b0ef30cfbb1080adce49eb1f) C:\Windows\System32\drivers\dxgkrnl.sys

19:01:47.0451 13864        DXGKrnl - ok

19:01:47.0521 13864        E1G60           (5425f74ac0c1dbd96a1e04f17d63f94c) C:\Windows\system32\DRIVERS\E1G60I32.sys

19:01:47.0583 13864        E1G60 - ok

19:01:47.0649 13864        e1yexpress      (039c592148ffe479f26c418971fb8022) C:\Windows\system32\DRIVERS\e1y6032.sys

19:01:47.0672 13864        e1yexpress - ok

19:01:47.0761 13864        Ecache          (7f64ea048dcfac7acf8b4d7b4e6fe371) C:\Windows\system32\drivers\ecache.sys

19:01:47.0785 13864        Ecache - ok

19:01:47.0855 13864        ECDejectPortIO  (e60b7778d9b1e9ea1ad3a1b15b0d0e64) C:\PROGRA~1\ECDeject\ECDejectIO.sys

19:01:47.0873 13864        ECDejectPortIO - ok

19:01:47.0958 13864        elxstor         (23b62471681a124889978f6295b3f4c6) C:\Windows\system32\drivers\elxstor.sys

19:01:47.0989 13864        elxstor - ok

19:01:48.0016 13864        ErrDev          (3db974f3935483555d7148663f726c61) C:\Windows\system32\drivers\errdev.sys

19:01:48.0066 13864        ErrDev - ok

19:01:48.0144 13864        exfat           (22b408651f9123527bcee54b4f6c5cae) C:\Windows\system32\drivers\exfat.sys

19:01:48.0231 13864        exfat - ok

19:01:48.0301 13864        fastfat         (1e9b9a70d332103c52995e957dc09ef8) C:\Windows\system32\drivers\fastfat.sys

19:01:48.0352 13864        fastfat - ok

19:01:48.0420 13864        fdc             (afe1e8b9782a0dd7fb46bbd88e43f89a) C:\Windows\system32\DRIVERS\fdc.sys

19:01:48.0475 13864        fdc - ok

19:01:48.0493 13864        FileInfo        (a8c0139a884861e3aae9cfe73b208a9f) C:\Windows\system32\drivers\fileinfo.sys

19:01:48.0513 13864        FileInfo - ok

19:01:48.0540 13864        Filetrace       (0ae429a696aecbc5970e3cf2c62635ae) C:\Windows\system32\drivers\filetrace.sys

19:01:48.0598 13864        Filetrace - ok

19:01:48.0624 13864        flpydisk        (85b7cf99d532820495d68d747fda9ebd) C:\Windows\system32\DRIVERS\flpydisk.sys

19:01:48.0694 13864        flpydisk - ok

19:01:48.0745 13864        FltMgr          (01334f9ea68e6877c4ef05d3ea8abb05) C:\Windows\system32\drivers\fltmgr.sys

19:01:48.0770 13864        FltMgr - ok

19:01:48.0835 13864        Fs_Rec          (65ea8b77b5851854f0c55c43fa51a198) C:\Windows\system32\drivers\Fs_Rec.sys

19:01:48.0886 13864        Fs_Rec - ok

19:01:48.0927 13864        gagp30kx        (34582a6e6573d54a07ece5fe24a126b5) C:\Windows\system32\drivers\gagp30kx.sys

19:01:48.0948 13864        gagp30kx - ok

19:01:49.0005 13864        GEARAspiWDM     (8182ff89c65e4d38b2de4bb0fb18564e) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys

19:01:49.0021 13864        GEARAspiWDM - ok

19:01:49.0109 13864        GpdDevDPort     (f1785fb4b89442aac648492b35ebcdc9) C:\Windows\system32\directport.sys

19:01:49.0133 13864        GpdDevDPort ( UnsignedFile.Multi.Generic ) - warning

19:01:49.0133 13864        GpdDevDPort - detected UnsignedFile.Multi.Generic (1)

19:01:49.0152 13864        GpdKbFilter     (e48c4e69e2126aac01888c60cc6ed966) C:\Windows\system32\kbfiltr.sys

19:01:49.0176 13864        GpdKbFilter ( UnsignedFile.Multi.Generic ) - warning

19:01:49.0176 13864        GpdKbFilter - detected UnsignedFile.Multi.Generic (1)

19:01:49.0275 13864        HdAudAddService (cb04c744be0a61b1d648faed182c3b59) C:\Windows\system32\drivers\HdAudio.sys

19:01:49.0374 13864        HdAudAddService - ok

19:01:49.0436 13864        HDAudBus        (062452b7ffd68c8c042a6261fe8dff4a) C:\Windows\system32\DRIVERS\HDAudBus.sys

19:01:49.0526 13864        HDAudBus - ok

19:01:49.0557 13864        HidBth          (1338520e78d90154ed6be8f84de5fceb) C:\Windows\system32\drivers\hidbth.sys

19:01:49.0646 13864        HidBth - ok

19:01:49.0671 13864        HidIr           (ff3160c3a2445128c5a6d9b076da519e) C:\Windows\system32\drivers\hidir.sys

19:01:49.0732 13864        HidIr - ok

19:01:49.0791 13864        HidUsb          (cca4b519b17e23a00b826c55716809cc) C:\Windows\system32\DRIVERS\hidusb.sys

19:01:49.0845 13864        HidUsb - ok

19:01:49.0878 13864        HpCISSs         (16ee7b23a009e00d835cdb79574a91a6) C:\Windows\system32\drivers\hpcisss.sys

19:01:49.0892 13864        HpCISSs - ok

19:01:49.0948 13864        HTTP            (f870aa3e254628ebeafe754108d664de) C:\Windows\system32\drivers\HTTP.sys

19:01:50.0017 13864        HTTP - ok

19:01:50.0029 13864        i2omp           (c6b032d69650985468160fc9937cf5b4) C:\Windows\system32\drivers\i2omp.sys

19:01:50.0043 13864        i2omp - ok

19:01:50.0094 13864        i8042prt        (22d56c8184586b7a1f6fa60be5f5a2bd) C:\Windows\system32\DRIVERS\i8042prt.sys

19:01:50.0135 13864        i8042prt - ok

19:01:50.0258 13864        iaStor          (e5a0034847537eaee3c00349d5c34c5f) C:\Windows\system32\drivers\iastor.sys

19:01:50.0283 13864        iaStor - ok

19:01:50.0303 13864        iaStorV         (54155ea1b0df185878e0fc9ec3ac3a14) C:\Windows\system32\drivers\iastorv.sys

19:01:50.0328 13864        iaStorV - ok

19:01:50.0663 13864        igfx            (8266ae06df974e5ba047b3e9e9e70b3f) C:\Windows\system32\DRIVERS\igdkmd32.sys

19:01:51.0124 13864        igfx - ok

19:01:51.0211 13864        iirsp           (2d077bf86e843f901d8db709c95b49a5) C:\Windows\system32\drivers\iirsp.sys

19:01:51.0224 13864        iirsp - ok

19:01:51.0334 13864        IntcAzAudAddService (fbbe3f1697d393be685cd6192b1ec95a) C:\Windows\system32\drivers\RTKVHDA.sys

19:01:51.0467 13864        IntcAzAudAddService - ok

19:01:51.0497 13864        intelide        (83aa759f3189e6370c30de5dc5590718) C:\Windows\system32\drivers\intelide.sys

19:01:51.0516 13864        intelide - ok

19:01:51.0548 13864        intelppm        (224191001e78c89dfa78924c3ea595ff) C:\Windows\system32\DRIVERS\intelppm.sys

19:01:51.0598 13864        intelppm - ok

19:01:51.0655 13864        IpFilterDriver  (62c265c38769b864cb25b4bcf62df6c3) C:\Windows\system32\DRIVERS\ipfltdrv.sys

19:01:51.0708 13864        IpFilterDriver - ok

19:01:51.0721 13864        IpInIp - ok

19:01:51.0751 13864        IPMIDRV         (b25aaf203552b7b3491139d582b39ad1) C:\Windows\system32\drivers\ipmidrv.sys

19:01:51.0807 13864        IPMIDRV - ok

19:01:51.0844 13864        IPNAT           (8793643a67b42cec66490b2a0cf92d68) C:\Windows\system32\DRIVERS\ipnat.sys

19:01:51.0890 13864        IPNAT - ok

19:01:51.0917 13864        IRENUM          (109c0dfb82c3632fbd11949b73aeeac9) C:\Windows\system32\drivers\irenum.sys

19:01:51.0968 13864        IRENUM - ok

19:01:51.0995 13864        isapnp          (6c70698a3e5c4376c6ab5c7c17fb0614) C:\Windows\system32\drivers\isapnp.sys

19:01:52.0014 13864        isapnp - ok

19:01:52.0058 13864        iScsiPrt        (232fa340531d940aac623b121a595034) C:\Windows\system32\DRIVERS\msiscsi.sys

19:01:52.0087 13864        iScsiPrt - ok

19:01:52.0121 13864        iteatapi        (bced60d16156e428f8df8cf27b0df150) C:\Windows\system32\drivers\iteatapi.sys

19:01:52.0140 13864        iteatapi - ok

19:01:52.0166 13864        iteraid         (06fa654504a498c30adca8bec4e87e7e) C:\Windows\system32\drivers\iteraid.sys

19:01:52.0184 13864        iteraid - ok

19:01:52.0244 13864        JMCR            (7e6a3e1cd74e8c97eed06670d2a691da) C:\Windows\system32\DRIVERS\jmcr.sys

19:01:52.0641 13864        JMCR - ok

19:01:52.0724 13864        JRAID           (c36f3a1a4e8416ef43f30deab7701730) C:\Windows\system32\drivers\jraid.sys

19:01:52.0784 13864        JRAID - ok

19:01:52.0806 13864        kbdclass        (37605e0a8cf00cbba538e753e4344c6e) C:\Windows\system32\DRIVERS\kbdclass.sys

19:01:52.0828 13864        kbdclass - ok

19:01:52.0848 13864        kbdhid          (18247836959ba67e3511b62846b9c2e0) C:\Windows\system32\drivers\kbdhid.sys

19:01:52.0886 13864        kbdhid - ok

19:01:52.0938 13864        KSecDD          (2b2f1638466e8cb091400c9019cc730e) C:\Windows\system32\Drivers\ksecdd.sys

19:01:52.0975 13864        KSecDD - ok

19:01:53.0042 13864        lltdio          (d1c5883087a0c3f1344d9d55a44901f6) C:\Windows\system32\DRIVERS\lltdio.sys

19:01:53.0100 13864        lltdio - ok

19:01:53.0130 13864        LSI_FC          (c7e15e82879bf3235b559563d4185365) C:\Windows\system32\drivers\lsi_fc.sys

19:01:53.0152 13864        LSI_FC - ok

19:01:53.0186 13864        LSI_SAS         (ee01ebae8c9bf0fa072e0ff68718920a) C:\Windows\system32\drivers\lsi_sas.sys

19:01:53.0201 13864        LSI_SAS - ok

19:01:53.0253 13864        LSI_SCSI        (912a04696e9ca30146a62afa1463dd5c) C:\Windows\system32\drivers\lsi_scsi.sys

19:01:53.0269 13864        LSI_SCSI - ok

19:01:53.0301 13864        luafv           (8f5c7426567798e62a3b3614965d62cc) C:\Windows\system32\drivers\luafv.sys

19:01:53.0344 13864        luafv - ok

19:01:53.0439 13864        LVcKap          (edd5bda3483a981c704e7413b69bee89) C:\Windows\system32\DRIVERS\LVcKap.sys

19:01:53.0623 13864        LVcKap - ok

19:01:53.0703 13864        LVMVDrv         (97f5d626cff8186c8f753ac2a5012798) C:\Windows\system32\DRIVERS\LVMVDrv.sys

19:01:53.0837 13864        LVMVDrv - ok

19:01:53.0859 13864        LVPr2Mon        (c3c347951ed7c3600b5120da740c2b93) C:\Windows\system32\DRIVERS\LVPr2Mon.sys

19:01:53.0871 13864        LVPr2Mon - ok

19:01:54.0010 13864        LVUVC           (d19fd251d383bc203e34cfb63b8c10ac) C:\Windows\system32\DRIVERS\lvuvc.sys

19:01:54.0234 13864        LVUVC - ok

19:01:54.0313 13864        megasas         (0001ce609d66632fa17b84705f658879) C:\Windows\system32\drivers\megasas.sys

19:01:54.0332 13864        megasas - ok

19:01:54.0374 13864        MegaSR          (c252f32cd9a49dbfc25ecf26ebd51a99) C:\Windows\system32\drivers\megasr.sys

19:01:54.0406 13864        MegaSR - ok

19:01:54.0447 13864        Modem           (e13b5ea0f51ba5b1512ec671393d09ba) C:\Windows\system32\drivers\modem.sys

19:01:54.0500 13864        Modem - ok

19:01:54.0554 13864        monitor         (0a9bb33b56e294f686abb7c1e4e2d8a8) C:\Windows\system32\DRIVERS\monitor.sys

19:01:54.0612 13864        monitor - ok

19:01:54.0637 13864        mouclass        (5bf6a1326a335c5298477754a506d263) C:\Windows\system32\DRIVERS\mouclass.sys

19:01:54.0657 13864        mouclass - ok

19:01:54.0672 13864        mouhid          (93b8d4869e12cfbe663915502900876f) C:\Windows\system32\DRIVERS\mouhid.sys

19:01:54.0734 13864        mouhid - ok

19:01:54.0760 13864        MountMgr        (bdafc88aa6b92f7842416ea6a48e1600) C:\Windows\system32\drivers\mountmgr.sys

19:01:54.0779 13864        MountMgr - ok

19:01:54.0800 13864        mpio            (511d011289755dd9f9a7579fb0b064e6) C:\Windows\system32\drivers\mpio.sys

19:01:54.0821 13864        mpio - ok

19:01:54.0840 13864        mpsdrv          (22241feba9b2defa669c8cb0a8dd7d2e) C:\Windows\system32\drivers\mpsdrv.sys

19:01:54.0883 13864        mpsdrv - ok

19:01:54.0989 13864        Mraid35x        (4fbbb70d30fd20ec51f80061703b001e) C:\Windows\system32\drivers\mraid35x.sys

19:01:55.0052 13864        Mraid35x - ok

19:01:55.0093 13864        MRxDAV          (82cea0395524aacfeb58ba1448e8325c) C:\Windows\system32\drivers\mrxdav.sys

19:01:55.0139 13864        MRxDAV - ok

19:01:55.0176 13864        mrxsmb          (1e94971c4b446ab2290deb71d01cf0c2) C:\Windows\system32\DRIVERS\mrxsmb.sys

19:01:55.0230 13864        mrxsmb - ok

19:01:55.0275 13864        mrxsmb10        (4fccb34d793b116423209c0f8b7a3b03) C:\Windows\system32\DRIVERS\mrxsmb10.sys

19:01:55.0320 13864        mrxsmb10 - ok

19:01:55.0363 13864        mrxsmb20        (c3cb1b40ad4a0124d617a1199b0b9d7c) C:\Windows\system32\DRIVERS\mrxsmb20.sys

19:01:55.0408 13864        mrxsmb20 - ok

19:01:55.0466 13864        msahci          (5457dcfa7c0da43522f4d9d4049c1472) C:\Windows\system32\drivers\msahci.sys

19:01:55.0487 13864        msahci - ok

19:01:55.0523 13864        msdsm           (4468b0f385a86ecddaf8d3ca662ec0e7) C:\Windows\system32\drivers\msdsm.sys

19:01:55.0545 13864        msdsm - ok

19:01:55.0565 13864        Msfs            (a9927f4a46b816c92f461acb90cf8515) C:\Windows\system32\drivers\Msfs.sys

19:01:55.0625 13864        Msfs - ok

19:01:55.0677 13864        msisadrv        (0f400e306f385c56317357d6dea56f62) C:\Windows\system32\drivers\msisadrv.sys

19:01:55.0695 13864        msisadrv - ok

19:01:55.0747 13864        MSKSSRV         (d8c63d34d9c9e56c059e24ec7185cc07) C:\Windows\system32\drivers\MSKSSRV.sys

19:01:55.0786 13864        MSKSSRV - ok

19:01:55.0804 13864        MSPCLOCK        (1d373c90d62ddb641d50e55b9e78d65e) C:\Windows\system32\drivers\MSPCLOCK.sys

19:01:55.0843 13864        MSPCLOCK - ok

19:01:55.0890 13864        MSPQM           (b572da05bf4e098d4bba3a4734fb505b) C:\Windows\system32\drivers\MSPQM.sys

19:01:55.0949 13864        MSPQM - ok

19:01:55.0994 13864        MsRPC           (b49456d70555de905c311bcda6ec6adb) C:\Windows\system32\drivers\MsRPC.sys

19:01:56.0018 13864        MsRPC - ok

19:01:56.0032 13864        mssmbios        (e384487cb84be41d09711c30ca79646c) C:\Windows\system32\DRIVERS\mssmbios.sys

19:01:56.0052 13864        mssmbios - ok

19:01:56.0084 13864        MSTEE           (7199c1eec1e4993caf96b8c0a26bd58a) C:\Windows\system32\drivers\MSTEE.sys

19:01:56.0143 13864        MSTEE - ok

19:01:56.0166 13864        Mup             (6a57b5733d4cb702c8ea4542e836b96c) C:\Windows\system32\Drivers\mup.sys

19:01:56.0187 13864        Mup - ok

19:01:56.0259 13864        NativeWifiP     (85c44fdff9cf7e72a40dcb7ec06a4416) C:\Windows\system32\DRIVERS\nwifi.sys

19:01:56.0321 13864        NativeWifiP - ok

19:01:56.0405 13864        NDIS            (1357274d1883f68300aeadd15d7bbb42) C:\Windows\system32\drivers\ndis.sys

19:01:56.0442 13864        NDIS - ok

19:01:56.0475 13864        NdisTapi        (0e186e90404980569fb449ba7519ae61) C:\Windows\system32\DRIVERS\ndistapi.sys

19:01:56.0525 13864        NdisTapi - ok

19:01:56.0549 13864        Ndisuio         (d6973aa34c4d5d76c0430b181c3cd389) C:\Windows\system32\DRIVERS\ndisuio.sys

19:01:56.0601 13864        Ndisuio - ok

19:01:56.0635 13864        NdisWan         (818f648618ae34f729fdb47ec68345c3) C:\Windows\system32\DRIVERS\ndiswan.sys

19:01:56.0684 13864        NdisWan - ok

19:01:56.0696 13864        NDProxy         (71dab552b41936358f3b541ae5997fb3) C:\Windows\system32\drivers\NDProxy.sys

19:01:56.0752 13864        NDProxy - ok

19:01:56.0788 13864        NetBIOS         (bcd093a5a6777cf626434568dc7dba78) C:\Windows\system32\DRIVERS\netbios.sys

19:01:56.0827 13864        NetBIOS - ok

19:01:56.0881 13864        netbt           (ecd64230a59cbd93c85f1cd1cab9f3f6) C:\Windows\system32\DRIVERS\netbt.sys

19:01:56.0918 13864        netbt - ok

19:01:57.0096 13864        NETw5v32        (840d89327c45b0cb9e1ab130249046e2) C:\Windows\system32\DRIVERS\NETw5v32.sys

19:01:57.0485 13864        NETw5v32 - ok

19:01:57.0583 13864        nfrd960         (2e7fb731d4790a1bc6270accefacb36e) C:\Windows\system32\drivers\nfrd960.sys

19:01:57.0598 13864        nfrd960 - ok

19:01:57.0642 13864        Npfs            (d36f239d7cce1931598e8fb90a0dbc26) C:\Windows\system32\drivers\Npfs.sys

19:01:57.0693 13864        Npfs - ok

19:01:57.0741 13864        nsiproxy        (609773e344a97410ce4ebf74a8914fcf) C:\Windows\system32\drivers\nsiproxy.sys

19:01:57.0787 13864        nsiproxy - ok

19:01:57.0854 13864        Ntfs            (6a4a98cee84cf9e99564510dda4baa47) C:\Windows\system32\drivers\Ntfs.sys

19:01:57.0949 13864        Ntfs - ok

19:01:57.0980 13864        ntrigdigi       (e875c093aec0c978a90f30c9e0dfbb72) C:\Windows\system32\drivers\ntrigdigi.sys

19:01:58.0046 13864        ntrigdigi - ok

19:01:58.0083 13864        Null            (c5dbbcda07d780bda9b685df333bb41e) C:\Windows\system32\drivers\Null.sys

19:01:58.0128 13864        Null - ok

19:01:58.0157 13864        nvraid          (2edf9e7751554b42cbb60116de727101) C:\Windows\system32\drivers\nvraid.sys

19:01:58.0173 13864        nvraid - ok

19:01:58.0198 13864        nvstor          (abed0c09758d1d97db0042dbb2688177) C:\Windows\system32\drivers\nvstor.sys

19:01:58.0212 13864        nvstor - ok

19:01:58.0243 13864        nv_agp          (18bbdf913916b71bd54575bdb6eeac0b) C:\Windows\system32\drivers\nv_agp.sys

19:01:58.0259 13864        nv_agp - ok

19:01:58.0269 13864        NwlnkFlt - ok

19:01:58.0280 13864        NwlnkFwd - ok

19:01:58.0348 13864        ohci1394        (6f310e890d46e246e0e261a63d9b36b4) C:\Windows\system32\DRIVERS\ohci1394.sys

19:01:58.0372 13864        ohci1394 - ok

19:01:58.0408 13864        Parport         (0fa9b5055484649d63c303fe404e5f4d) C:\Windows\system32\drivers\parport.sys

19:01:58.0465 13864        Parport - ok

19:01:58.0569 13864        partmgr         (57389fa59a36d96b3eb09d0cb91e9cdc) C:\Windows\system32\drivers\partmgr.sys

19:01:58.0590 13864        partmgr - ok

19:01:58.0609 13864        Parvdm          (4f9a6a8a31413180d0fcb279ad5d8112) C:\Windows\system32\drivers\parvdm.sys

19:01:58.0687 13864        Parvdm - ok

19:01:58.0748 13864        pci             (941dc1d19e7e8620f40bbc206981efdb) C:\Windows\system32\drivers\pci.sys

19:01:58.0766 13864        pci - ok

19:01:58.0800 13864        pciide          (fc175f5ddab666d7f4d17449a547626f) C:\Windows\system32\drivers\pciide.sys

19:01:58.0814 13864        pciide - ok

19:01:58.0844 13864        pcmcia          (e6f3fb1b86aa519e7698ad05e58b04e5) C:\Windows\system32\drivers\pcmcia.sys

19:01:58.0861 13864        pcmcia - ok

19:01:58.0953 13864        PEAUTH          (6349f6ed9c623b44b52ea3c63c831a92) C:\Windows\system32\drivers\peauth.sys

19:01:59.0086 13864        PEAUTH - ok

19:01:59.0153 13864        PptpMiniport    (ecfffaec0c1ecd8dbc77f39070ea1db1) C:\Windows\system32\DRIVERS\raspptp.sys

19:01:59.0203 13864        PptpMiniport - ok

19:01:59.0224 13864        Processor       (2027293619dd0f047c584cf2e7df4ffd) C:\Windows\system32\drivers\processr.sys

19:01:59.0279 13864        Processor - ok

19:01:59.0354 13864        PSched          (99514faa8df93d34b5589187db3aa0ba) C:\Windows\system32\DRIVERS\pacer.sys

19:01:59.0387 13864        PSched - ok

19:01:59.0425 13864        PxHelp20        (49452bfcec22f36a7a9b9c2181bc3042) C:\Windows\system32\Drivers\PxHelp20.sys

19:01:59.0442 13864        PxHelp20 - ok

19:01:59.0490 13864        qextnysm - ok

19:01:59.0603 13864        ql2300          (0a6db55afb7820c99aa1f3a1d270f4f6) C:\Windows\system32\drivers\ql2300.sys

19:01:59.0769 13864        ql2300 - ok

19:01:59.0795 13864        ql40xx          (81a7e5c076e59995d54bc1ed3a16e60b) C:\Windows\system32\drivers\ql40xx.sys

19:01:59.0835 13864        ql40xx - ok

19:01:59.0878 13864        QWAVEdrv        (9f5e0e1926014d17486901c88eca2db7) C:\Windows\system32\drivers\qwavedrv.sys

19:01:59.0950 13864        QWAVEdrv - ok

19:01:59.0969 13864        RasAcd          (147d7f9c556d259924351feb0de606c3) C:\Windows\system32\DRIVERS\rasacd.sys

19:02:00.0023 13864        RasAcd - ok

19:02:00.0086 13864        Rasl2tp         (a214adbaf4cb47dd2728859ef31f26b0) C:\Windows\system32\DRIVERS\rasl2tp.sys

19:02:00.0135 13864        Rasl2tp - ok

19:02:00.0190 13864        RasPppoe        (509a98dd18af4375e1fc40bc175f1def) C:\Windows\system32\DRIVERS\raspppoe.sys

19:02:00.0257 13864        RasPppoe - ok

19:02:00.0293 13864        RasSstp         (2005f4a1e05fa09389ac85840f0a9e4d) C:\Windows\system32\DRIVERS\rassstp.sys

19:02:00.0343 13864        RasSstp - ok

19:02:00.0405 13864        rdbss           (b14c9d5b9add2f84f70570bbbfaa7935) C:\Windows\system32\DRIVERS\rdbss.sys

19:02:00.0488 13864        rdbss - ok

19:02:00.0519 13864        RDPCDD          (89e59be9a564262a3fb6c4f4f1cd9899) C:\Windows\system32\DRIVERS\RDPCDD.sys

19:02:00.0580 13864        RDPCDD - ok

19:02:00.0630 13864        rdpdr           (fbc0bacd9c3d7f6956853f64a66e252d) C:\Windows\system32\drivers\rdpdr.sys

19:02:00.0675 13864        rdpdr - ok

19:02:00.0687 13864        RDPENCDD        (9d91fe5286f748862ecffa05f8a0710c) C:\Windows\system32\drivers\rdpencdd.sys

19:02:00.0740 13864        RDPENCDD - ok

19:02:00.0805 13864        RDPWD           (30bfbdfb7f95559ede971f9ddb9a00ba) C:\Windows\system32\drivers\RDPWD.sys

19:02:00.0868 13864        RDPWD - ok

19:02:00.0949 13864        RFCOMM          (6482707f9f4da0ecbab43b2e0398a101) C:\Windows\system32\DRIVERS\rfcomm.sys

19:02:00.0998 13864        RFCOMM - ok

19:02:01.0035 13864        rspndr          (9c508f4074a39e8b4b31d27198146fad) C:\Windows\system32\DRIVERS\rspndr.sys

19:02:01.0119 13864        rspndr - ok

19:02:01.0146 13864        sbp2port        (3ce8f073a557e172b330109436984e30) C:\Windows\system32\drivers\sbp2port.sys

19:02:01.0166 13864        sbp2port - ok

19:02:01.0233 13864        sdbus           (8f36b54688c31eed4580129040c6a3d3) C:\Windows\system32\DRIVERS\sdbus.sys

19:02:01.0268 13864        sdbus - ok

19:02:01.0291 13864        secdrv          (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys

19:02:01.0368 13864        secdrv - ok

19:02:01.0411 13864        Serenum         (68e44e331d46f0fb38f0863a84cd1a31) C:\Windows\system32\drivers\serenum.sys

19:02:01.0491 13864        Serenum - ok

19:02:01.0520 13864        Serial          (c70d69a918b178d3c3b06339b40c2e1b) C:\Windows\system32\drivers\serial.sys

19:02:01.0583 13864        Serial - ok

19:02:01.0610 13864        sermouse        (8af3d28a879bf75db53a0ee7a4289624) C:\Windows\system32\drivers\sermouse.sys

19:02:01.0667 13864        sermouse - ok

19:02:01.0714 13864        sffdisk         (3efa810bdca87f6ecc24f9832243fe86) C:\Windows\system32\drivers\sffdisk.sys

19:02:01.0782 13864        sffdisk - ok

19:02:01.0810 13864        sffp_mmc        (e95d451f7ea3e583aec75f3b3ee42dc5) C:\Windows\system32\drivers\sffp_mmc.sys

19:02:01.0849 13864        sffp_mmc - ok

19:02:01.0865 13864        sffp_sd         (3d0ea348784b7ac9ea9bd9f317980979) C:\Windows\system32\drivers\sffp_sd.sys

19:02:01.0904 13864        sffp_sd - ok

19:02:01.0934 13864        sfloppy         (46ed8e91793b2e6f848015445a0ac188) C:\Windows\system32\drivers\sfloppy.sys

19:02:01.0996 13864        sfloppy - ok

19:02:02.0039 13864        sisagp          (1d76624a09a054f682d746b924e2dbc3) C:\Windows\system32\drivers\sisagp.sys

19:02:02.0058 13864        sisagp - ok

19:02:02.0091 13864        SiSRaid2        (43cb7aa756c7db280d01da9b676cfde2) C:\Windows\system32\drivers\sisraid2.sys

19:02:02.0111 13864        SiSRaid2 - ok

19:02:02.0143 13864        SiSRaid4        (a99c6c8b0baa970d8aa59ddc50b57f94) C:\Windows\system32\drivers\sisraid4.sys

19:02:02.0164 13864        SiSRaid4 - ok

19:02:02.0244 13864        Smb             (7b75299a4d201d6a6533603d6914ab04) C:\Windows\system32\DRIVERS\smb.sys

19:02:02.0294 13864        Smb - ok

19:02:02.0366 13864        spldr           (7aebdeef071fe28b0eef2cdd69102bff) C:\Windows\system32\drivers\spldr.sys

19:02:02.0384 13864        spldr - ok

19:02:02.0443 13864        srv             (41987f9fc0e61adf54f581e15029ad91) C:\Windows\system32\DRIVERS\srv.sys

19:02:02.0512 13864        srv - ok

19:02:02.0627 13864        srv2            (ff33aff99564b1aa534f58868cbe41ef) C:\Windows\system32\DRIVERS\srv2.sys

19:02:02.0720 13864        srv2 - ok

19:02:02.0844 13864        srvnet          (7605c0e1d01a08f3ecd743f38b834a44) C:\Windows\system32\DRIVERS\srvnet.sys

19:02:02.0925 13864        srvnet - ok

19:02:02.0998 13864        swenum          (7ba58ecf0c0a9a69d44b3dca62becf56) C:\Windows\system32\DRIVERS\swenum.sys

19:02:03.0018 13864        swenum - ok

19:02:03.0052 13864        Symc8xx         (192aa3ac01df071b541094f251deed10) C:\Windows\system32\drivers\symc8xx.sys

19:02:03.0071 13864        Symc8xx - ok

19:02:03.0096 13864        Sym_hi          (8c8eb8c76736ebaf3b13b633b2e64125) C:\Windows\system32\drivers\sym_hi.sys

19:02:03.0114 13864        Sym_hi - ok

19:02:03.0136 13864        Sym_u3          (8072af52b5fd103bbba387a1e49f62cb) C:\Windows\system32\drivers\sym_u3.sys

19:02:03.0156 13864        Sym_u3 - ok

19:02:03.0362 13864        Tcpip           (814a1c66fbd4e1b310a517221f1456bf) C:\Windows\system32\drivers\tcpip.sys

19:02:03.0498 13864        Tcpip - ok

19:02:03.0807 13864        Tcpip6          (814a1c66fbd4e1b310a517221f1456bf) C:\Windows\system32\DRIVERS\tcpip.sys

19:02:03.0916 13864        Tcpip6 - ok

19:02:04.0063 13864        tcpipreg        (608c345a255d82a6289c2d468eb41fd7) C:\Windows\system32\drivers\tcpipreg.sys

19:02:04.0161 13864        tcpipreg - ok

19:02:04.0217 13864        TDPIPE          (5dcf5e267be67a1ae926f2df77fbcc56) C:\Windows\system32\drivers\tdpipe.sys

19:02:04.0331 13864        TDPIPE - ok

19:02:04.0360 13864        TDTCP           (389c63e32b3cefed425b61ed92d3f021) C:\Windows\system32\drivers\tdtcp.sys

19:02:04.0408 13864        TDTCP - ok

19:02:04.0780 13864        tdx             (76b06eb8a01fc8624d699e7045303e54) C:\Windows\system32\DRIVERS\tdx.sys

19:02:04.0832 13864        tdx - ok

19:02:05.0055 13864        TermDD          (3cad38910468eab9a6479e2f01db43c7) C:\Windows\system32\DRIVERS\termdd.sys

19:02:05.0073 13864        TermDD - ok

19:02:05.0273 13864        Trufos          (a919775c03303d0e0690b315d26a5e1d) C:\Windows\system32\DRIVERS\Trufos.sys

19:02:05.0287 13864        Trufos ( UnsignedFile.Multi.Generic ) - warning

19:02:05.0287 13864        Trufos - detected UnsignedFile.Multi.Generic (1)

19:02:05.0340 13864        tssecsrv        (dcf0f056a2e4f52287264f5ab29cf206) C:\Windows\system32\DRIVERS\tssecsrv.sys

19:02:05.0392 13864        tssecsrv - ok

19:02:05.0461 13864        tunmp           (caecc0120ac49e3d2f758b9169872d38) C:\Windows\system32\DRIVERS\tunmp.sys

19:02:05.0515 13864        tunmp - ok

19:02:05.0594 13864        tunnel          (300db877ac094feab0be7688c3454a9c) C:\Windows\system32\DRIVERS\tunnel.sys

19:02:05.0629 13864        tunnel - ok

19:02:05.0656 13864        uagp35          (7d33c4db2ce363c8518d2dfcf533941f) C:\Windows\system32\drivers\uagp35.sys

19:02:05.0671 13864        uagp35 - ok

19:02:05.0720 13864        udfs            (d9728af68c4c7693cb100b8441cbdec6) C:\Windows\system32\DRIVERS\udfs.sys

19:02:05.0763 13864        udfs - ok

19:02:05.0786 13864        uliagpkx        (b0acfdc9e4af279e9116c03e014b2b27) C:\Windows\system32\drivers\uliagpkx.sys

19:02:05.0801 13864        uliagpkx - ok

19:02:05.0834 13864        uliahci         (9224bb254f591de4ca8d572a5f0d635c) C:\Windows\system32\drivers\uliahci.sys

19:02:05.0854 13864        uliahci - ok

19:02:05.0876 13864        UlSata          (8514d0e5cd0534467c5fc61be94a569f) C:\Windows\system32\drivers\ulsata.sys

19:02:05.0892 13864        UlSata - ok

19:02:05.0915 13864        ulsata2         (38c3c6e62b157a6bc46594fada45c62b) C:\Windows\system32\drivers\ulsata2.sys

19:02:05.0931 13864        ulsata2 - ok

19:02:05.0959 13864        umbus           (32cff9f809ae9aed85464492bf3e32d2) C:\Windows\system32\DRIVERS\umbus.sys

19:02:05.0987 13864        umbus - ok

19:02:06.0087 13864        USBAAPL         (4b8a9c16b6d9258ed99c512aecb8c555) C:\Windows\system32\Drivers\usbaapl.sys

19:02:06.0154 13864        USBAAPL - ok

19:02:06.0184 13864        usbccgp         (caf811ae4c147ffcd5b51750c7f09142) C:\Windows\system32\DRIVERS\usbccgp.sys

19:02:06.0220 13864        usbccgp - ok

19:02:06.0263 13864        usbcir          (e9476e6c486e76bc4898074768fb7131) C:\Windows\system32\drivers\usbcir.sys

19:02:06.0330 13864        usbcir - ok

19:02:06.0405 13864        usbehci         (79e96c23a97ce7b8f14d310da2db0c9b) C:\Windows\system32\DRIVERS\usbehci.sys

19:02:06.0439 13864        usbehci - ok

19:02:06.0518 13864        usbhub          (4673bbcb006af60e7abddbe7a130ba42) C:\Windows\system32\DRIVERS\usbhub.sys

19:02:06.0555 13864        usbhub - ok

19:02:06.0591 13864        usbohci         (38dbc7dd6cc5a72011f187425384388b) C:\Windows\system32\drivers\usbohci.sys

19:02:06.0654 13864        usbohci - ok

19:02:06.0695 13864        usbprint        (e75c4b5269091d15a2e7dc0b6d35f2f5) C:\Windows\system32\DRIVERS\usbprint.sys

19:02:06.0739 13864        usbprint - ok

19:02:06.0767 13864        usbscan         (a508c9bd8724980512136b039bba65e9) C:\Windows\system32\DRIVERS\usbscan.sys

19:02:06.0835 13864        usbscan - ok

19:02:06.0893 13864        USBSTOR         (be3da31c191bc222d9ad503c5224f2ad) C:\Windows\system32\DRIVERS\USBSTOR.SYS

19:02:06.0941 13864        USBSTOR - ok

19:02:07.0000 13864        usbuhci         (814d653efc4d48be3b04a307eceff56f) C:\Windows\system32\DRIVERS\usbuhci.sys

19:02:07.0033 13864        usbuhci - ok

19:02:07.0087 13864        usbvideo        (e67998e8f14cb0627a769f6530bcb352) C:\Windows\system32\Drivers\usbvideo.sys

19:02:07.0150 13864        usbvideo - ok

19:02:07.0189 13864        vga             (87b06e1f30b749a114f74622d013f8d4) C:\Windows\system32\DRIVERS\vgapnp.sys

19:02:07.0250 13864        vga - ok

19:02:07.0287 13864        VgaSave         (2e93ac0a1d8c79d019db6c51f036636c) C:\Windows\System32\drivers\vga.sys

19:02:07.0363 13864        VgaSave - ok

19:02:07.0409 13864        viaagp          (5d7159def58a800d5781ba3a879627bc) C:\Windows\system32\drivers\viaagp.sys

19:02:07.0429 13864        viaagp - ok

19:02:07.0455 13864        ViaC7           (c4f3a691b5bad343e6249bd8c2d45dee) C:\Windows\system32\drivers\viac7.sys

19:02:07.0502 13864        ViaC7 - ok

19:02:07.0545 13864        viaide          (aadf5587a4063f52c2c3fed7887426fc) C:\Windows\system32\drivers\viaide.sys

19:02:07.0564 13864        viaide - ok

19:02:07.0601 13864        volmgr          (69503668ac66c77c6cd7af86fbdf8c43) C:\Windows\system32\drivers\volmgr.sys

19:02:07.0620 13864        volmgr - ok

19:02:07.0783 13864        volmgrx         (23e41b834759917bfd6b9a0d625d0c28) C:\Windows\system32\drivers\volmgrx.sys

19:02:07.0836 13864        volmgrx - ok

19:02:07.0881 13864        volsnap         (147281c01fcb1df9252de2a10d5e7093) C:\Windows\system32\drivers\volsnap.sys

19:02:07.0910 13864        volsnap - ok

19:02:08.0149 13864        vsmraid         (587253e09325e6bf226b299774b728a9) C:\Windows\system32\drivers\vsmraid.sys

19:02:08.0177 13864        vsmraid - ok

19:02:08.0384 13864        WacomPen        (48dfee8f1af7c8235d4e626f0c4fe031) C:\Windows\system32\drivers\wacompen.sys

19:02:08.0451 13864        WacomPen - ok

19:02:08.0478 13864        Wanarp          (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys

19:02:08.0503 13864        Wanarp - ok

19:02:08.0509 13864        Wanarpv6        (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys

19:02:08.0533 13864        Wanarpv6 - ok

19:02:08.0761 13864        Wd              (78fe9542363f297b18c027b2d7e7c07f) C:\Windows\system32\drivers\wd.sys

19:02:08.0775 13864        Wd - ok

19:02:08.0807 13864        Wdf01000        (b6f0a7ad6d4bd325fbcd8bac96cd8d96) C:\Windows\system32\drivers\Wdf01000.sys

19:02:08.0845 13864        Wdf01000 - ok

19:02:08.0950 13864        WmiAcpi         (2e7255d172df0b8283cdfb7b433b864e) C:\Windows\system32\drivers\wmiacpi.sys

19:02:08.0977 13864        WmiAcpi - ok

19:02:09.0035 13864        ws2ifsl         (e3a3cb253c0ec2494d4a61f5e43a389c) C:\Windows\system32\drivers\ws2ifsl.sys

19:02:09.0063 13864        ws2ifsl - ok

19:02:09.0128 13864        WUDFRd          (ac13cb789d93412106b0fb6c7eb2bcb6) C:\Windows\system32\DRIVERS\WUDFRd.sys

19:02:09.0173 13864        WUDFRd - ok

19:02:09.0256 13864        MBR (0x1B8)     (5c616939100b85e558da92b899a0fc36) \Device\Harddisk0\DR0

19:02:10.0019 13864        \Device\Harddisk0\DR0 - ok

19:02:10.0056 13864        Boot (0x1200)   (b25993fbacdb71434bdb7180cab2d1a4) \Device\Harddisk0\DR0\Partition0

19:02:10.0058 13864        \Device\Harddisk0\DR0\Partition0 - ok

19:02:10.0136 13864        Boot (0x1200)   (44c6ae61411025e30c7bb88a60b41cb6) \Device\Harddisk0\DR0\Partition1

19:02:10.0138 13864        \Device\Harddisk0\DR0\Partition1 - ok

19:02:10.0139 13864        ============================================================

19:02:10.0139 13864        Scan finished

19:02:10.0139 13864        ============================================================

19:02:10.0170 14240        Detected object count: 3

19:02:10.0170 14240        Actual detected object count: 3

19:02:57.0345 14240        GpdDevDPort ( UnsignedFile.Multi.Generic ) - skipped by user

19:02:57.0345 14240        GpdDevDPort ( UnsignedFile.Multi.Generic ) - User select action: Skip 

19:02:57.0346 14240        GpdKbFilter ( UnsignedFile.Multi.Generic ) - skipped by user

19:02:57.0346 14240        GpdKbFilter ( UnsignedFile.Multi.Generic ) - User select action: Skip 

19:02:57.0347 14240        Trufos ( UnsignedFile.Multi.Generic ) - skipped by user

19:02:57.0348 14240        Trufos ( UnsignedFile.Multi.Generic ) - User select action: Skip 

19:03:04.0536 13704        ============================================================

19:03:04.0536 13704        Scan started

19:03:04.0536 13704        Mode: Manual; SigCheck; TDLFS; 

19:03:04.0536 13704        ============================================================

19:03:05.0071 13704        ACPI            (82b296ae1892fe3dbee00c9cf92f8ac7) C:\Windows\system32\drivers\acpi.sys

19:03:05.0101 13704        ACPI - ok

19:03:05.0155 13704        adp94xx         (04f0fcac69c7c71a3ac4eb97fafc8303) C:\Windows\system32\drivers\adp94xx.sys

19:03:05.0176 13704        adp94xx - ok

19:03:05.0214 13704        adpahci         (60505e0041f7751bdbb80f88bf45c2ce) C:\Windows\system32\drivers\adpahci.sys

19:03:05.0230 13704        adpahci - ok

19:03:05.0249 13704        adpu160m        (8a42779b02aec986eab64ecfc98f8bd7) C:\Windows\system32\drivers\adpu160m.sys

19:03:05.0264 13704        adpu160m - ok

19:03:05.0290 13704        adpu320         (241c9e37f8ce45ef51c3de27515ca4e5) C:\Windows\system32\drivers\adpu320.sys

19:03:05.0306 13704        adpu320 - ok

19:03:05.0367 13704        AFD             (3911b972b55fea0478476b2e777b29fa) C:\Windows\system32\drivers\afd.sys

19:03:05.0388 13704        AFD - ok

19:03:05.0409 13704        agp440          (13f9e33747e6b41a3ff305c37db0d360) C:\Windows\system32\drivers\agp440.sys

19:03:05.0423 13704        agp440 - ok

19:03:05.0443 13704        ahcix86s        (0dee2b628d4c6e23285bb91effdabfde) C:\Windows\system32\drivers\ahcix86s.sys

19:03:05.0458 13704        ahcix86s - ok

19:03:05.0507 13704        aic78xx         (ae1fdf7bf7bb6c6a70f67699d880592a) C:\Windows\system32\drivers\djsvs.sys

19:03:05.0523 13704        aic78xx - ok

19:03:05.0545 13704        aliide          (9eaef5fc9b8e351afa7e78a6fae91f91) C:\Windows\system32\drivers\aliide.sys

19:03:05.0558 13704        aliide - ok

19:03:05.0585 13704        amdagp          (c47344bc706e5f0b9dce369516661578) C:\Windows\system32\drivers\amdagp.sys

19:03:05.0604 13704        amdagp - ok

19:03:05.0639 13704        amdide          (9b78a39a4c173fdbc1321e0dd659b34c) C:\Windows\system32\drivers\amdide.sys

19:03:05.0657 13704        amdide - ok

19:03:05.0686 13704        AmdK7           (18f29b49ad23ecee3d2a826c725c8d48) C:\Windows\system32\drivers\amdk7.sys

19:03:05.0725 13704        AmdK7 - ok

19:03:05.0749 13704        AmdK8           (93ae7f7dd54ab986a6f1a1b37be7442d) C:\Windows\system32\drivers\amdk8.sys

19:03:05.0789 13704        AmdK8 - ok

19:03:05.0836 13704        arc             (5d2888182fb46632511acee92fdad522) C:\Windows\system32\drivers\arc.sys

19:03:05.0857 13704        arc - ok

19:03:05.0887 13704        arcsas          (5e2a321bd7c8b3624e41fdec3e244945) C:\Windows\system32\drivers\arcsas.sys

19:03:05.0906 13704        arcsas - ok

19:03:05.0934 13704        AsyncMac        (53b202abee6455406254444303e87be1) C:\Windows\system32\DRIVERS\asyncmac.sys

19:03:05.0972 13704        AsyncMac - ok

19:03:06.0018 13704        atapi           (1f05b78ab91c9075565a9d8a4b880bc4) C:\Windows\system32\drivers\atapi.sys

19:03:06.0037 13704        atapi - ok

19:03:06.0107 13704        avc3            (d5fb1ab93fd6c42b0ea1929995e9de51) C:\Windows\system32\DRIVERS\avc3.sys

19:03:06.0136 13704        avc3 - ok

19:03:06.0190 13704        avckf           (04fe75e4ecbe2c964735f7f4503f40d2) C:\Windows\system32\DRIVERS\avckf.sys

19:03:06.0250 13704        avckf - ok

19:03:06.0291 13704        bdfm            (8d4efc5c378bffe34c298c92f37d3b14) C:\Windows\system32\DRIVERS\bdfm.sys

19:03:06.0310 13704        bdfm - ok

19:03:06.0420 13704        Bdfndisf        (817fc12bc93a70b0449ebefaa4d6f4d2) c:\program files\common files\bitdefender\bitdefender firewall\bdfndisf6.sys

19:03:06.0437 13704        Bdfndisf - ok

19:03:06.0477 13704        bdfsfltr        (c3e025d46368e3d18085eef26ef6f6a1) C:\Windows\system32\DRIVERS\bdfsfltr.sys

19:03:06.0528 13704        bdfsfltr - ok

19:03:06.0580 13704        Bdftdif         (c23a8547d5ea6d0c3589961bfb7ff6d3) C:\Program Files\Common Files\BitDefender\BitDefender Firewall\bdftdif.sys

19:03:06.0599 13704        Bdftdif - ok

19:03:06.0694 13704        bdselfpr        (2daa9e807c11b4677cafc1e43a98f8ce) C:\Program Files\BitDefender\BitDefender 2011\bdselfpr.sys

19:03:06.0711 13704        bdselfpr - ok

19:03:06.0772 13704        Beep            (67e506b75bd5326a3ec7b70bd014dfb6) C:\Windows\system32\drivers\Beep.sys

19:03:06.0811 13704        Beep - ok

19:03:06.0842 13704        blbdrive        (d4df28447741fd3d953526e33a617397) C:\Windows\system32\drivers\blbdrive.sys

19:03:06.0881 13704        blbdrive - ok

19:03:06.0930 13704        bowser          (35f376253f687bde63976ccb3f2108ca) C:\Windows\system32\DRIVERS\bowser.sys

19:03:06.0979 13704        bowser - ok

19:03:06.0998 13704        BrFiltLo        (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\drivers\brfiltlo.sys

19:03:07.0031 13704        BrFiltLo - ok

19:03:07.0065 13704        BrFiltUp        (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\drivers\brfiltup.sys

19:03:07.0098 13704        BrFiltUp - ok

19:03:07.0126 13704        Brserid         (b304e75cff293029eddf094246747113) C:\Windows\system32\drivers\brserid.sys

19:03:07.0189 13704        Brserid - ok

19:03:07.0213 13704        BrSerWdm        (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\system32\drivers\brserwdm.sys

19:03:07.0272 13704        BrSerWdm - ok

19:03:07.0295 13704        BrUsbMdm        (bd456606156ba17e60a04e18016ae54b) C:\Windows\system32\drivers\brusbmdm.sys

19:03:07.0340 13704        BrUsbMdm - ok

19:03:07.0359 13704        BrUsbSer        (af72ed54503f717a43268b3cc5faec2e) C:\Windows\system32\drivers\brusbser.sys

19:03:07.0402 13704        BrUsbSer - ok

19:03:07.0434 13704        BthEnum         (6d39c954799b63ba866910234cf7d726) C:\Windows\system32\DRIVERS\BthEnum.sys

19:03:07.0463 13704        BthEnum - ok

19:03:07.0488 13704        BTHMODEM        (ad07c1ec6665b8b35741ab91200c6b68) C:\Windows\system32\drivers\bthmodem.sys

19:03:07.0535 13704        BTHMODEM - ok

19:03:07.0565 13704        BthPan          (5904efa25f829bf84ea6fb045134a1d8) C:\Windows\system32\DRIVERS\bthpan.sys

19:03:07.0597 13704        BthPan - ok

19:03:07.0647 13704        BTHPORT         (611ff3f2f095c8d4a6d4cfd9dcc09793) C:\Windows\system32\Drivers\BTHport.sys

19:03:07.0677 13704        BTHPORT - ok

19:03:07.0722 13704        BTHUSB          (d330803eab2a15caec7f011f1d4cb30e) C:\Windows\system32\Drivers\BTHUSB.sys

19:03:07.0742 13704        BTHUSB - ok

19:03:07.0769 13704        cdfs            (7add03e75beb9e6dd102c3081d29840a) C:\Windows\system32\DRIVERS\cdfs.sys

19:03:07.0801 13704        cdfs - ok

19:03:07.0856 13704        cdrom           (6b4bffb9becd728097024276430db314) C:\Windows\system32\DRIVERS\cdrom.sys

19:03:07.0880 13704        cdrom - ok

19:03:07.0915 13704        circlass        (e5d4133f37219dbcfe102bc61072589d) C:\Windows\system32\drivers\circlass.sys

19:03:07.0943 13704        circlass - ok

19:03:07.0990 13704        CLFS            (d7659d3b5b92c31e84e53c1431f35132) C:\Windows\system32\CLFS.sys

19:03:08.0011 13704        CLFS - ok

19:03:08.0034 13704        CmBatt          (99afc3795b58cc478fbbbcdc658fcb56) C:\Windows\system32\DRIVERS\CmBatt.sys

19:03:08.0063 13704        CmBatt - ok

19:03:08.0093 13704        cmdide          (0ca25e686a4928484e9fdabd168ab629) C:\Windows\system32\drivers\cmdide.sys

19:03:08.0107 13704        cmdide - ok

19:03:08.0117 13704        Compbatt        (6afef0b60fa25de07c0968983ee4f60a) C:\Windows\system32\DRIVERS\compbatt.sys

19:03:08.0131 13704        Compbatt - ok

19:03:08.0144 13704        crcdisk         (741e9dff4f42d2d8477d0fc1dc0df871) C:\Windows\system32\drivers\crcdisk.sys

19:03:08.0159 13704        crcdisk - ok

19:03:08.0181 13704        Crusoe          (1f07becdca750766a96cda811ba86410) C:\Windows\system32\drivers\crusoe.sys

19:03:08.0209 13704        Crusoe - ok

19:03:08.0260 13704        DfsC            (622c41a07ca7e6dd91770f50d532cb6c) C:\Windows\system32\Drivers\dfsc.sys

19:03:08.0294 13704        DfsC - ok

19:03:08.0337 13704        disk            (5d4aefc3386920236a548271f8f1af6a) C:\Windows\system32\drivers\disk.sys

19:03:08.0352 13704        disk - ok

19:03:08.0378 13704        drmkaud         (97fef831ab90bee128c9af390e243f80) C:\Windows\system32\drivers\drmkaud.sys

19:03:08.0401 13704        drmkaud - ok

19:03:08.0461 13704        DXGKrnl         (c68ac676b0ef30cfbb1080adce49eb1f) C:\Windows\System32\drivers\dxgkrnl.sys

19:03:08.0502 13704        DXGKrnl - ok

19:03:08.0528 13704        E1G60           (5425f74ac0c1dbd96a1e04f17d63f94c) C:\Windows\system32\DRIVERS\E1G60I32.sys

19:03:08.0558 13704        E1G60 - ok

19:03:08.0600 13704        e1yexpress      (039c592148ffe479f26c418971fb8022) C:\Windows\system32\DRIVERS\e1y6032.sys

19:03:08.0622 13704        e1yexpress - ok

19:03:08.0668 13704        Ecache          (7f64ea048dcfac7acf8b4d7b4e6fe371) C:\Windows\system32\drivers\ecache.sys

19:03:08.0692 13704        Ecache - ok

19:03:08.0739 13704        ECDejectPortIO  (e60b7778d9b1e9ea1ad3a1b15b0d0e64) C:\PROGRA~1\ECDeject\ECDejectIO.sys

19:03:08.0756 13704        ECDejectPortIO - ok

19:03:08.0798 13704        elxstor         (23b62471681a124889978f6295b3f4c6) C:\Windows\system32\drivers\elxstor.sys

19:03:08.0828 13704        elxstor - ok

19:03:08.0878 13704        ErrDev          (3db974f3935483555d7148663f726c61) C:\Windows\system32\drivers\errdev.sys

19:03:08.0917 13704        ErrDev - ok

19:03:08.0973 13704        exfat           (22b408651f9123527bcee54b4f6c5cae) C:\Windows\system32\drivers\exfat.sys

19:03:09.0000 13704        exfat - ok

19:03:09.0041 13704        fastfat         (1e9b9a70d332103c52995e957dc09ef8) C:\Windows\system32\drivers\fastfat.sys

19:03:09.0076 13704        fastfat - ok

19:03:09.0104 13704        fdc             (afe1e8b9782a0dd7fb46bbd88e43f89a) C:\Windows\system32\DRIVERS\fdc.sys

19:03:09.0143 13704        fdc - ok

19:03:09.0160 13704        FileInfo        (a8c0139a884861e3aae9cfe73b208a9f) C:\Windows\system32\drivers\fileinfo.sys

19:03:09.0179 13704        FileInfo - ok

19:03:09.0202 13704        Filetrace       (0ae429a696aecbc5970e3cf2c62635ae) C:\Windows\system32\drivers\filetrace.sys

19:03:09.0240 13704        Filetrace - ok

19:03:09.0275 13704        flpydisk        (85b7cf99d532820495d68d747fda9ebd) C:\Windows\system32\DRIVERS\flpydisk.sys

19:03:09.0315 13704        flpydisk - ok

19:03:09.0362 13704        FltMgr          (01334f9ea68e6877c4ef05d3ea8abb05) C:\Windows\system32\drivers\fltmgr.sys

19:03:09.0388 13704        FltMgr - ok

19:03:09.0408 13704        Fs_Rec          (65ea8b77b5851854f0c55c43fa51a198) C:\Windows\system32\drivers\Fs_Rec.sys

19:03:09.0440 13704        Fs_Rec - ok

19:03:09.0467 13704        gagp30kx        (34582a6e6573d54a07ece5fe24a126b5) C:\Windows\system32\drivers\gagp30kx.sys

19:03:09.0493 13704        gagp30kx - ok

19:03:09.0524 13704        GEARAspiWDM     (8182ff89c65e4d38b2de4bb0fb18564e) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys

19:03:09.0541 13704        GEARAspiWDM - ok

19:03:09.0582 13704        GpdDevDPort     (f1785fb4b89442aac648492b35ebcdc9) C:\Windows\system32\directport.sys

19:03:09.0591 13704        GpdDevDPort ( UnsignedFile.Multi.Generic ) - warning

19:03:09.0591 13704        GpdDevDPort - detected UnsignedFile.Multi.Generic (1)

19:03:09.0613 13704        GpdKbFilter     (e48c4e69e2126aac01888c60cc6ed966) C:\Windows\system32\kbfiltr.sys

19:03:09.0623 13704        GpdKbFilter ( UnsignedFile.Multi.Generic ) - warning

19:03:09.0623 13704        GpdKbFilter - detected UnsignedFile.Multi.Generic (1)

19:03:09.0671 13704        HdAudAddService (cb04c744be0a61b1d648faed182c3b59) C:\Windows\system32\drivers\HdAudio.sys

19:03:09.0719 13704        HdAudAddService - ok

19:03:09.0786 13704        HDAudBus        (062452b7ffd68c8c042a6261fe8dff4a) C:\Windows\system32\DRIVERS\HDAudBus.sys

19:03:09.0822 13704        HDAudBus - ok

19:03:09.0852 13704        HidBth          (1338520e78d90154ed6be8f84de5fceb) C:\Windows\system32\drivers\hidbth.sys

19:03:09.0896 13704        HidBth - ok

19:03:09.0922 13704        HidIr           (ff3160c3a2445128c5a6d9b076da519e) C:\Windows\system32\drivers\hidir.sys

19:03:09.0966 13704        HidIr - ok

19:03:10.0019 13704        HidUsb          (cca4b519b17e23a00b826c55716809cc) C:\Windows\system32\DRIVERS\hidusb.sys

19:03:10.0042 13704        HidUsb - ok

19:03:10.0062 13704        HpCISSs         (16ee7b23a009e00d835cdb79574a91a6) C:\Windows\system32\drivers\hpcisss.sys

19:03:10.0077 13704        HpCISSs - ok

19:03:10.0154 13704        HTTP            (f870aa3e254628ebeafe754108d664de) C:\Windows\system32\drivers\HTTP.sys

19:03:10.0257 13704        HTTP - ok

19:03:10.0268 13704        i2omp           (c6b032d69650985468160fc9937cf5b4) C:\Windows\system32\drivers\i2omp.sys

19:03:10.0282 13704        i2omp - ok

19:03:10.0323 13704        i8042prt        (22d56c8184586b7a1f6fa60be5f5a2bd) C:\Windows\system32\DRIVERS\i8042prt.sys

19:03:10.0346 13704        i8042prt - ok

19:03:10.0375 13704        iaStor          (e5a0034847537eaee3c00349d5c34c5f) C:\Windows\system32\drivers\iastor.sys

19:03:10.0394 13704        iaStor - ok

19:03:10.0420 13704        iaStorV         (54155ea1b0df185878e0fc9ec3ac3a14) C:\Windows\system32\drivers\iastorv.sys

19:03:10.0439 13704        iaStorV - ok

19:03:10.0741 13704        igfx            (8266ae06df974e5ba047b3e9e9e70b3f) C:\Windows\system32\DRIVERS\igdkmd32.sys

19:03:11.0249 13704        igfx - ok

19:03:11.0361 13704        iirsp           (2d077bf86e843f901d8db709c95b49a5) C:\Windows\system32\drivers\iirsp.sys

19:03:11.0376 13704        iirsp - ok

19:03:11.0459 13704        IntcAzAudAddService (fbbe3f1697d393be685cd6192b1ec95a) C:\Windows\system32\drivers\RTKVHDA.sys

19:03:11.0589 13704        IntcAzAudAddService - ok

19:03:11.0614 13704        intelide        (83aa759f3189e6370c30de5dc5590718) C:\Windows\system32\drivers\intelide.sys

19:03:11.0627 13704        intelide - ok

19:03:11.0655 13704        intelppm        (224191001e78c89dfa78924c3ea595ff) C:\Windows\system32\DRIVERS\intelppm.sys

19:03:11.0683 13704        intelppm - ok

19:03:11.0706 13704        IpFilterDriver  (62c265c38769b864cb25b4bcf62df6c3) C:\Windows\system32\DRIVERS\ipfltdrv.sys

19:03:11.0737 13704        IpFilterDriver - ok

19:03:11.0750 13704        IpInIp - ok

19:03:11.0768 13704        IPMIDRV         (b25aaf203552b7b3491139d582b39ad1) C:\Windows\system32\drivers\ipmidrv.sys

19:03:11.0798 13704        IPMIDRV - ok

19:03:11.0827 13704        IPNAT           (8793643a67b42cec66490b2a0cf92d68) C:\Windows\system32\DRIVERS\ipnat.sys

19:03:11.0857 13704        IPNAT - ok

19:03:11.0890 13704        IRENUM          (109c0dfb82c3632fbd11949b73aeeac9) C:\Windows\system32\drivers\irenum.sys

19:03:11.0918 13704        IRENUM - ok

19:03:11.0945 13704        isapnp          (6c70698a3e5c4376c6ab5c7c17fb0614) C:\Windows\system32\drivers\isapnp.sys

19:03:11.0959 13704        isapnp - ok

19:03:12.0009 13704        iScsiPrt        (232fa340531d940aac623b121a595034) C:\Windows\system32\DRIVERS\msiscsi.sys

19:03:12.0027 13704        iScsiPrt - ok

19:03:12.0049 13704        iteatapi        (bced60d16156e428f8df8cf27b0df150) C:\Windows\system32\drivers\iteatapi.sys

19:03:12.0064 13704        iteatapi - ok

19:03:12.0094 13704        iteraid         (06fa654504a498c30adca8bec4e87e7e) C:\Windows\system32\drivers\iteraid.sys

19:03:12.0108 13704        iteraid - ok

19:03:12.0139 13704        JMCR            (7e6a3e1cd74e8c97eed06670d2a691da) C:\Windows\system32\DRIVERS\jmcr.sys

19:03:12.0172 13704        JMCR - ok

19:03:12.0197 13704        JRAID           (c36f3a1a4e8416ef43f30deab7701730) C:\Windows\system32\drivers\jraid.sys

19:03:12.0229 13704        JRAID - ok

19:03:12.0245 13704        kbdclass        (37605e0a8cf00cbba538e753e4344c6e) C:\Windows\system32\DRIVERS\kbdclass.sys

19:03:12.0259 13704        kbdclass - ok

19:03:12.0276 13704        kbdhid          (18247836959ba67e3511b62846b9c2e0) C:\Windows\system32\drivers\kbdhid.sys

19:03:12.0306 13704        kbdhid - ok

19:03:12.0354 13704        KSecDD          (2b2f1638466e8cb091400c9019cc730e) C:\Windows\system32\Drivers\ksecdd.sys

19:03:12.0383 13704        KSecDD - ok

19:03:12.0414 13704        lltdio          (d1c5883087a0c3f1344d9d55a44901f6) C:\Windows\system32\DRIVERS\lltdio.sys

19:03:12.0443 13704        lltdio - ok

19:03:12.0480 13704        LSI_FC          (c7e15e82879bf3235b559563d4185365) C:\Windows\system32\drivers\lsi_fc.sys

19:03:12.0496 13704        LSI_FC - ok

19:03:12.0526 13704        LSI_SAS         (ee01ebae8c9bf0fa072e0ff68718920a) C:\Windows\system32\drivers\lsi_sas.sys

19:03:12.0541 13704        LSI_SAS - ok

19:03:12.0570 13704        LSI_SCSI        (912a04696e9ca30146a62afa1463dd5c) C:\Windows\system32\drivers\lsi_scsi.sys

19:03:12.0586 13704        LSI_SCSI - ok

19:03:12.0618 13704        luafv           (8f5c7426567798e62a3b3614965d62cc) C:\Windows\system32\drivers\luafv.sys

19:03:12.0647 13704        luafv - ok

19:03:12.0745 13704        LVcKap          (edd5bda3483a981c704e7413b69bee89) C:\Windows\system32\DRIVERS\LVcKap.sys

19:03:12.0872 13704        LVcKap - ok

19:03:12.0942 13704        LVMVDrv         (97f5d626cff8186c8f753ac2a5012798) C:\Windows\system32\DRIVERS\LVMVDrv.sys

19:03:13.0079 13704        LVMVDrv - ok

19:03:13.0098 13704        LVPr2Mon        (c3c347951ed7c3600b5120da740c2b93) C:\Windows\system32\DRIVERS\LVPr2Mon.sys

19:03:13.0115 13704        LVPr2Mon - ok

19:03:13.0244 13704        LVUVC           (d19fd251d383bc203e34cfb63b8c10ac) C:\Windows\system32\DRIVERS\lvuvc.sys

19:03:13.0498 13704        LVUVC - ok

19:03:13.0563 13704        megasas         (0001ce609d66632fa17b84705f658879) C:\Windows\system32\drivers\megasas.sys

19:03:13.0583 13704        megasas - ok

19:03:13.0635 13704        MegaSR          (c252f32cd9a49dbfc25ecf26ebd51a99) C:\Windows\system32\drivers\megasr.sys

19:03:13.0672 13704        MegaSR - ok

19:03:13.0709 13704        Modem           (e13b5ea0f51ba5b1512ec671393d09ba) C:\Windows\system32\drivers\modem.sys

19:03:13.0748 13704        Modem - ok

19:03:13.0782 13704        monitor         (0a9bb33b56e294f686abb7c1e4e2d8a8) C:\Windows\system32\DRIVERS\monitor.sys

19:03:13.0831 13704        monitor - ok

19:03:13.0865 13704        mouclass        (5bf6a1326a335c5298477754a506d263) C:\Windows\system32\DRIVERS\mouclass.sys

19:03:13.0884 13704        mouclass - ok

19:03:13.0900 13704        mouhid          (93b8d4869e12cfbe663915502900876f) C:\Windows\system32\DRIVERS\mouhid.sys

19:03:13.0940 13704        mouhid - ok

19:03:13.0955 13704        MountMgr        (bdafc88aa6b92f7842416ea6a48e1600) C:\Windows\system32\drivers\mountmgr.sys

19:03:13.0975 13704        MountMgr - ok

19:03:13.0995 13704        mpio            (511d011289755dd9f9a7579fb0b064e6) C:\Windows\system32\drivers\mpio.sys

19:03:14.0016 13704        mpio - ok

19:03:14.0035 13704        mpsdrv          (22241feba9b2defa669c8cb0a8dd7d2e) C:\Windows\system32\drivers\mpsdrv.sys

19:03:14.0070 13704        mpsdrv - ok

19:03:14.0106 13704        Mraid35x        (4fbbb70d30fd20ec51f80061703b001e) C:\Windows\system32\drivers\mraid35x.sys

19:03:14.0125 13704        Mraid35x - ok

19:03:14.0166 13704        MRxDAV          (82cea0395524aacfeb58ba1448e8325c) C:\Windows\system32\drivers\mrxdav.sys

19:03:14.0193 13704        MRxDAV - ok

19:03:14.0238 13704        mrxsmb          (1e94971c4b446ab2290deb71d01cf0c2) C:\Windows\system32\DRIVERS\mrxsmb.sys

19:03:14.0325 13704        mrxsmb - ok

19:03:14.0369 13704        mrxsmb10        (4fccb34d793b116423209c0f8b7a3b03) C:\Windows\system32\DRIVERS\mrxsmb10.sys

19:03:14.0398 13704        mrxsmb10 - ok

19:03:14.0425 13704        mrxsmb20        (c3cb1b40ad4a0124d617a1199b0b9d7c) C:\Windows\system32\DRIVERS\mrxsmb20.sys

19:03:14.0450 13704        mrxsmb20 - ok

19:03:14.0506 13704        msahci          (5457dcfa7c0da43522f4d9d4049c1472) C:\Windows\system32\drivers\msahci.sys

19:03:14.0529 13704        msahci - ok

19:03:14.0562 13704        msdsm           (4468b0f385a86ecddaf8d3ca662ec0e7) C:\Windows\system32\drivers\msdsm.sys

19:03:14.0584 13704        msdsm - ok

19:03:14.0605 13704        Msfs            (a9927f4a46b816c92f461acb90cf8515) C:\Windows\system32\drivers\Msfs.sys

19:03:14.0645 13704        Msfs - ok

19:03:14.0671 13704        msisadrv        (0f400e306f385c56317357d6dea56f62) C:\Windows\system32\drivers\msisadrv.sys

19:03:14.0690 13704        msisadrv - ok

19:03:14.0731 13704        MSKSSRV         (d8c63d34d9c9e56c059e24ec7185cc07) C:\Windows\system32\drivers\MSKSSRV.sys

19:03:14.0770 13704        MSKSSRV - ok

19:03:14.0788 13704        MSPCLOCK        (1d373c90d62ddb641d50e55b9e78d65e) C:\Windows\system32\drivers\MSPCLOCK.sys

19:03:14.0828 13704        MSPCLOCK - ok

19:03:14.0851 13704        MSPQM           (b572da05bf4e098d4bba3a4734fb505b) C:\Windows\system32\drivers\MSPQM.sys

19:03:14.0882 13704        MSPQM - ok

19:03:14.0933 13704        MsRPC           (b49456d70555de905c311bcda6ec6adb) C:\Windows\system32\drivers\MsRPC.sys

19:03:14.0951 13704        MsRPC - ok

19:03:14.0964 13704        mssmbios        (e384487cb84be41d09711c30ca79646c) C:\Windows\system32\DRIVERS\mssmbios.sys

19:03:14.0979 13704        mssmbios - ok

19:03:14.0989 13704        MSTEE           (7199c1eec1e4993caf96b8c0a26bd58a) C:\Windows\system32\drivers\MSTEE.sys

19:03:15.0018 13704        MSTEE - ok

19:03:15.0038 13704        Mup             (6a57b5733d4cb702c8ea4542e836b96c) C:\Windows\system32\Drivers\mup.sys

19:03:15.0054 13704        Mup - ok

19:03:15.0098 13704        NativeWifiP     (85c44fdff9cf7e72a40dcb7ec06a4416) C:\Windows\system32\DRIVERS\nwifi.sys

19:03:15.0119 13704        NativeWifiP - ok

19:03:15.0187 13704        NDIS            (1357274d1883f68300aeadd15d7bbb42) C:\Windows\system32\drivers\ndis.sys

19:03:15.0217 13704        NDIS - ok

19:03:15.0236 13704        NdisTapi        (0e186e90404980569fb449ba7519ae61) C:\Windows\system32\DRIVERS\ndistapi.sys

19:03:15.0260 13704        NdisTapi - ok

19:03:15.0277 13704        Ndisuio         (d6973aa34c4d5d76c0430b181c3cd389) C:\Windows\system32\DRIVERS\ndisuio.sys

19:03:15.0305 13704        Ndisuio - ok

19:03:15.0362 13704        NdisWan         (818f648618ae34f729fdb47ec68345c3) C:\Windows\system32\DRIVERS\ndiswan.sys

19:03:15.0388 13704        NdisWan - ok

19:03:15.0399 13704        NDProxy         (71dab552b41936358f3b541ae5997fb3) C:\Windows\system32\drivers\NDProxy.sys

19:03:15.0424 13704        NDProxy - ok

19:03:15.0438 13704        NetBIOS         (bcd093a5a6777cf626434568dc7dba78) C:\Windows\system32\DRIVERS\netbios.sys

19:03:15.0467 13704        NetBIOS - ok

19:03:15.0519 13704        netbt           (ecd64230a59cbd93c85f1cd1cab9f3f6) C:\Windows\system32\DRIVERS\netbt.sys

19:03:15.0546 13704        netbt - ok

19:03:15.0673 13704        NETw5v32        (840d89327c45b0cb9e1ab130249046e2) C:\Windows\system32\DRIVERS\NETw5v32.sys

19:03:15.0871 13704        NETw5v32 - ok

19:03:15.0899 13704        nfrd960         (2e7fb731d4790a1bc6270accefacb36e) C:\Windows\system32\drivers\nfrd960.sys

19:03:15.0913 13704        nfrd960 - ok

19:03:15.0958 13704        Npfs            (d36f239d7cce1931598e8fb90a0dbc26) C:\Windows\system32\drivers\Npfs.sys

19:03:15.0981 13704        Npfs - ok

19:03:16.0001 13704        nsiproxy        (609773e344a97410ce4ebf74a8914fcf) C:\Windows\system32\drivers\nsiproxy.sys

19:03:16.0030 13704        nsiproxy - ok

19:03:16.0092 13704        Ntfs            (6a4a98cee84cf9e99564510dda4baa47) C:\Windows\system32\drivers\Ntfs.sys

19:03:16.0175 13704        Ntfs - ok

19:03:16.0196 13704        ntrigdigi       (e875c093aec0c978a90f30c9e0dfbb72) C:\Windows\system32\drivers\ntrigdigi.sys

19:03:16.0240 13704        ntrigdigi - ok

19:03:16.0266 13704        Null            (c5dbbcda07d780bda9b685df333bb41e) C:\Windows\system32\drivers\Null.sys

19:03:16.0293 13704        Null - ok

19:03:16.0318 13704        nvraid          (2edf9e7751554b42cbb60116de727101) C:\Windows\system32\drivers\nvraid.sys

19:03:16.0334 13704        nvraid - ok

19:03:16.0358 13704        nvstor          (abed0c09758d1d97db0042dbb2688177) C:\Windows\system32\drivers\nvstor.sys

19:03:16.0373 13704        nvstor - ok

19:03:16.0404 13704        nv_agp          (18bbdf913916b71bd54575bdb6eeac0b) C:\Windows\system32\drivers\nv_agp.sys

19:03:16.0419 13704        nv_agp - ok

19:03:16.0429 13704        NwlnkFlt - ok

19:03:16.0440 13704        NwlnkFwd - ok

19:03:16.0498 13704        ohci1394        (6f310e890d46e246e0e261a63d9b36b4) C:\Windows\system32\DRIVERS\ohci1394.sys

19:03:16.0523 13704        ohci1394 - ok

19:03:16.0558 13704        Parport         (0fa9b5055484649d63c303fe404e5f4d) C:\Windows\system32\drivers\parport.sys

19:03:16.0603 13704        Parport - ok

19:03:16.0652 13704        partmgr         (57389fa59a36d96b3eb09d0cb91e9cdc) C:\Windows\system32\drivers\partmgr.sys

19:03:16.0667 13704        partmgr - ok

19:03:16.0691 13704        Parvdm          (4f9a6a8a31413180d0fcb279ad5d8112) C:\Windows\system32\drivers\parvdm.sys

19:03:16.0753 13704        Parvdm - ok

19:03:16.0808 13704        pci             (941dc1d19e7e8620f40bbc206981efdb) C:\Windows\system32\drivers\pci.sys

19:03:16.0826 13704        pci - ok

19:03:16.0861 13704        pciide          (fc175f5ddab666d7f4d17449a547626f) C:\Windows\system32\drivers\pciide.sys

19:03:16.0874 13704        pciide - ok

19:03:16.0905 13704        pcmcia          (e6f3fb1b86aa519e7698ad05e58b04e5) C:\Windows\system32\drivers\pcmcia.sys

19:03:16.0922 13704        pcmcia - ok

19:03:16.0969 13704        PEAUTH          (6349f6ed9c623b44b52ea3c63c831a92) C:\Windows\system32\drivers\peauth.sys

19:03:17.0052 13704        PEAUTH - ok

19:03:17.0102 13704        PptpMiniport    (ecfffaec0c1ecd8dbc77f39070ea1db1) C:\Windows\system32\DRIVERS\raspptp.sys

19:03:17.0131 13704        PptpMiniport - ok

19:03:17.0163 13704        Processor       (2027293619dd0f047c584cf2e7df4ffd) C:\Windows\system32\drivers\processr.sys

19:03:17.0191 13704        Processor - ok

19:03:17.0236 13704        PSched          (99514faa8df93d34b5589187db3aa0ba) C:\Windows\system32\DRIVERS\pacer.sys

19:03:17.0259 13704        PSched - ok

19:03:17.0285 13704        PxHelp20        (49452bfcec22f36a7a9b9c2181bc3042) C:\Windows\system32\Drivers\PxHelp20.sys

19:03:17.0298 13704        PxHelp20 - ok

19:03:17.0308 13704        qextnysm - ok

19:03:17.0379 13704        ql2300          (0a6db55afb7820c99aa1f3a1d270f4f6) C:\Windows\system32\drivers\ql2300.sys

19:03:17.0469 13704        ql2300 - ok

19:03:17.0499 13704        ql40xx          (81a7e5c076e59995d54bc1ed3a16e60b) C:\Windows\system32\drivers\ql40xx.sys

19:03:17.0521 13704        ql40xx - ok

19:03:17.0549 13704        QWAVEdrv        (9f5e0e1926014d17486901c88eca2db7) C:\Windows\system32\drivers\qwavedrv.sys

19:03:17.0573 13704        QWAVEdrv - ok

19:03:17.0596 13704        RasAcd          (147d7f9c556d259924351feb0de606c3) C:\Windows\system32\DRIVERS\rasacd.sys

19:03:17.0635 13704        RasAcd - ok

19:03:17.0658 13704        Rasl2tp         (a214adbaf4cb47dd2728859ef31f26b0) C:\Windows\system32\DRIVERS\rasl2tp.sys

19:03:17.0688 13704        Rasl2tp - ok

19:03:17.0739 13704        RasPppoe        (509a98dd18af4375e1fc40bc175f1def) C:\Windows\system32\DRIVERS\raspppoe.sys

19:03:17.0763 13704        RasPppoe - ok

19:03:17.0809 13704        RasSstp         (2005f4a1e05fa09389ac85840f0a9e4d) C:\Windows\system32\DRIVERS\rassstp.sys

19:03:17.0828 13704        RasSstp - ok

19:03:17.0876 13704        rdbss           (b14c9d5b9add2f84f70570bbbfaa7935) C:\Windows\system32\DRIVERS\rdbss.sys

19:03:17.0903 13704        rdbss - ok

19:03:17.0924 13704        RDPCDD          (89e59be9a564262a3fb6c4f4f1cd9899) C:\Windows\system32\DRIVERS\RDPCDD.sys

19:03:17.0952 13704        RDPCDD - ok

19:03:17.0979 13704        rdpdr           (fbc0bacd9c3d7f6956853f64a66e252d) C:\Windows\system32\drivers\rdpdr.sys

19:03:18.0011 13704        rdpdr - ok

19:03:18.0022 13704        RDPENCDD        (9d91fe5286f748862ecffa05f8a0710c) C:\Windows\system32\drivers\rdpencdd.sys

19:03:18.0050 13704        RDPENCDD - ok

19:03:18.0076 13704        RDPWD           (30bfbdfb7f95559ede971f9ddb9a00ba) C:\Windows\system32\drivers\RDPWD.sys

19:03:18.0102 13704        RDPWD - ok

19:03:18.0165 13704        RFCOMM          (6482707f9f4da0ecbab43b2e0398a101) C:\Windows\system32\DRIVERS\rfcomm.sys

19:03:18.0191 13704        RFCOMM - ok

19:03:18.0217 13704        rspndr          (9c508f4074a39e8b4b31d27198146fad) C:\Windows\system32\DRIVERS\rspndr.sys

19:03:18.0246 13704        rspndr - ok

19:03:18.0272 13704        sbp2port        (3ce8f073a557e172b330109436984e30) C:\Windows\system32\drivers\sbp2port.sys

19:03:18.0287 13704        sbp2port - ok

19:03:18.0338 13704        sdbus           (8f36b54688c31eed4580129040c6a3d3) C:\Windows\system32\DRIVERS\sdbus.sys

19:03:18.0362 13704        sdbus - ok

19:03:18.0384 13704        secdrv          (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys

19:03:18.0429 13704        secdrv - ok

19:03:18.0460 13704        Serenum         (68e44e331d46f0fb38f0863a84cd1a31) C:\Windows\system32\drivers\serenum.sys

19:03:18.0505 13704        Serenum - ok

19:03:18.0535 13704        Serial          (c70d69a918b178d3c3b06339b40c2e1b) C:\Windows\system32\drivers\serial.sys

19:03:18.0581 13704        Serial - ok

19:03:18.0603 13704        sermouse        (8af3d28a879bf75db53a0ee7a4289624) C:\Windows\system32\drivers\sermouse.sys

19:03:18.0631 13704        sermouse - ok

19:03:18.0662 13704        sffdisk         (3efa810bdca87f6ecc24f9832243fe86) C:\Windows\system32\drivers\sffdisk.sys

19:03:18.0685 13704        sffdisk - ok

19:03:18.0726 13704        sffp_mmc        (e95d451f7ea3e583aec75f3b3ee42dc5) C:\Windows\system32\drivers\sffp_mmc.sys

19:03:18.0753 13704        sffp_mmc - ok

19:03:18.0769 13704        sffp_sd         (3d0ea348784b7ac9ea9bd9f317980979) C:\Windows\system32\drivers\sffp_sd.sys

19:03:18.0797 13704        sffp_sd - ok

19:03:18.0827 13704        sfloppy         (46ed8e91793b2e6f848015445a0ac188) C:\Windows\system32\drivers\sfloppy.sys

19:03:18.0872 13704        sfloppy - ok

19:03:18.0921 13704        sisagp          (1d76624a09a054f682d746b924e2dbc3) C:\Windows\system32\drivers\sisagp.sys

19:03:18.0935 13704        sisagp - ok

19:03:18.0962 13704        SiSRaid2        (43cb7aa756c7db280d01da9b676cfde2) C:\Windows\system32\drivers\sisraid2.sys

19:03:18.0977 13704        SiSRaid2 - ok

19:03:19.0002 13704        SiSRaid4        (a99c6c8b0baa970d8aa59ddc50b57f94) C:\Windows\system32\drivers\sisraid4.sys

19:03:19.0018 13704        SiSRaid4 - ok

19:03:19.0071 13704        Smb             (7b75299a4d201d6a6533603d6914ab04) C:\Windows\system32\DRIVERS\smb.sys

19:03:19.0096 13704        Smb - ok

19:03:19.0115 13704        spldr           (7aebdeef071fe28b0eef2cdd69102bff) C:\Windows\system32\drivers\spldr.sys

19:03:19.0129 13704        spldr - ok

19:03:19.0180 13704        srv             (41987f9fc0e61adf54f581e15029ad91) C:\Windows\system32\DRIVERS\srv.sys

19:03:19.0221 13704        srv - ok

19:03:19.0265 13704        srv2            (ff33aff99564b1aa534f58868cbe41ef) C:\Windows\system32\DRIVERS\srv2.sys

19:03:19.0302 13704        srv2 - ok

19:03:19.0347 13704        srvnet          (7605c0e1d01a08f3ecd743f38b834a44) C:\Windows\system32\DRIVERS\srvnet.sys

19:03:19.0367 13704        srvnet - ok

19:03:19.0391 13704        swenum          (7ba58ecf0c0a9a69d44b3dca62becf56) C:\Windows\system32\DRIVERS\swenum.sys

19:03:19.0406 13704        swenum - ok

19:03:19.0434 13704        Symc8xx         (192aa3ac01df071b541094f251deed10) C:\Windows\system32\drivers\symc8xx.sys

19:03:19.0455 13704        Symc8xx - ok

19:03:19.0477 13704        Sym_hi          (8c8eb8c76736ebaf3b13b633b2e64125) C:\Windows\system32\drivers\sym_hi.sys

19:03:19.0492 13704        Sym_hi - ok

19:03:19.0518 13704        Sym_u3          (8072af52b5fd103bbba387a1e49f62cb) C:\Windows\system32\drivers\sym_u3.sys

19:03:19.0532 13704        Sym_u3 - ok

19:03:19.0609 13704        Tcpip           (814a1c66fbd4e1b310a517221f1456bf) C:\Windows\system32\drivers\tcpip.sys

19:03:19.0665 13704        Tcpip - ok

19:03:19.0686 13704        Tcpip6          (814a1c66fbd4e1b310a517221f1456bf) C:\Windows\system32\DRIVERS\tcpip.sys

19:03:19.0743 13704        Tcpip6 - ok

19:03:19.0789 13704        tcpipreg        (608c345a255d82a6289c2d468eb41fd7) C:\Windows\system32\drivers\tcpipreg.sys

19:03:19.0822 13704        tcpipreg - ok

19:03:19.0864 13704        TDPIPE          (5dcf5e267be67a1ae926f2df77fbcc56) C:\Windows\system32\drivers\tdpipe.sys

19:03:19.0892 13704        TDPIPE - ok

19:03:19.0919 13704        TDTCP           (389c63e32b3cefed425b61ed92d3f021) C:\Windows\system32\drivers\tdtcp.sys

19:03:19.0947 13704        TDTCP - ok

19:03:19.0984 13704        tdx             (76b06eb8a01fc8624d699e7045303e54) C:\Windows\system32\DRIVERS\tdx.sys

19:03:20.0008 13704        tdx - ok

19:03:20.0058 13704        TermDD          (3cad38910468eab9a6479e2f01db43c7) C:\Windows\system32\DRIVERS\termdd.sys

19:03:20.0077 13704        TermDD - ok

19:03:20.0143 13704        Trufos          (a919775c03303d0e0690b315d26a5e1d) C:\Windows\system32\DRIVERS\Trufos.sys

19:03:20.0163 13704        Trufos ( UnsignedFile.Multi.Generic ) - warning

19:03:20.0163 13704        Trufos - detected UnsignedFile.Multi.Generic (1)

19:03:20.0199 13704        tssecsrv        (dcf0f056a2e4f52287264f5ab29cf206) C:\Windows\system32\DRIVERS\tssecsrv.sys

19:03:20.0228 13704        tssecsrv - ok

19:03:20.0253 13704        tunmp           (caecc0120ac49e3d2f758b9169872d38) C:\Windows\system32\DRIVERS\tunmp.sys

19:03:20.0284 13704        tunmp - ok

19:03:20.0331 13704        tunnel          (300db877ac094feab0be7688c3454a9c) C:\Windows\system32\DRIVERS\tunnel.sys

19:03:20.0349 13704        tunnel - ok

19:03:20.0370 13704        uagp35          (7d33c4db2ce363c8518d2dfcf533941f) C:\Windows\system32\drivers\uagp35.sys

19:03:20.0384 13704        uagp35 - ok

19:03:20.0423 13704        udfs            (d9728af68c4c7693cb100b8441cbdec6) C:\Windows\system32\DRIVERS\udfs.sys

19:03:20.0450 13704        udfs - ok

19:03:20.0467 13704        uliagpkx        (b0acfdc9e4af279e9116c03e014b2b27) C:\Windows\system32\drivers\uliagpkx.sys

19:03:20.0482 13704        uliagpkx - ok

19:03:20.0503 13704        uliahci         (9224bb254f591de4ca8d572a5f0d635c) C:\Windows\system32\drivers\uliahci.sys

19:03:20.0523 13704        uliahci - ok

19:03:20.0545 13704        UlSata          (8514d0e5cd0534467c5fc61be94a569f) C:\Windows\system32\drivers\ulsata.sys

19:03:20.0560 13704        UlSata - ok

19:03:20.0585 13704        ulsata2         (38c3c6e62b157a6bc46594fada45c62b) C:\Windows\system32\drivers\ulsata2.sys

19:03:20.0601 13704        ulsata2 - ok

19:03:20.0617 13704        umbus           (32cff9f809ae9aed85464492bf3e32d2) C:\Windows\system32\DRIVERS\umbus.sys

19:03:20.0645 13704        umbus - ok

19:03:20.0701 13704        USBAAPL         (4b8a9c16b6d9258ed99c512aecb8c555) C:\Windows\system32\Drivers\usbaapl.sys

19:03:20.0734 13704        USBAAPL - ok

19:03:20.0765 13704        usbccgp         (caf811ae4c147ffcd5b51750c7f09142) C:\Windows\system32\DRIVERS\usbccgp.sys

19:03:20.0789 13704        usbccgp - ok

19:03:20.0833 13704        usbcir          (e9476e6c486e76bc4898074768fb7131) C:\Windows\system32\drivers\usbcir.sys

19:03:20.0879 13704        usbcir - ok

19:03:20.0907 13704        usbehci         (79e96c23a97ce7b8f14d310da2db0c9b) C:\Windows\system32\DRIVERS\usbehci.sys

19:03:20.0931 13704        usbehci - ok

19:03:20.0987 13704        usbhub          (4673bbcb006af60e7abddbe7a130ba42) C:\Windows\system32\DRIVERS\usbhub.sys

19:03:21.0014 13704        usbhub - ok

19:03:21.0049 13704        usbohci         (38dbc7dd6cc5a72011f187425384388b) C:\Windows\system32\drivers\usbohci.sys

19:03:21.0105 13704        usbohci - ok

19:03:21.0143 13704        usbprint        (e75c4b5269091d15a2e7dc0b6d35f2f5) C:\Windows\system32\DRIVERS\usbprint.sys

19:03:21.0176 13704        usbprint - ok

19:03:21.0203 13704        usbscan         (a508c9bd8724980512136b039bba65e9) C:\Windows\system32\DRIVERS\usbscan.sys

19:03:21.0227 13704        usbscan - ok

19:03:21.0251 13704        USBSTOR         (be3da31c191bc222d9ad503c5224f2ad) C:\Windows\system32\DRIVERS\USBSTOR.SYS

19:03:21.0275 13704        USBSTOR - ok

19:03:21.0292 13704        usbuhci         (814d653efc4d48be3b04a307eceff56f) C:\Windows\system32\DRIVERS\usbuhci.sys

19:03:21.0315 13704        usbuhci - ok

19:03:21.0356 13704        usbvideo        (e67998e8f14cb0627a769f6530bcb352) C:\Windows\system32\Drivers\usbvideo.sys

19:03:21.0403 13704        usbvideo - ok

19:03:21.0447 13704        vga             (87b06e1f30b749a114f74622d013f8d4) C:\Windows\system32\DRIVERS\vgapnp.sys

19:03:21.0476 13704        vga - ok

19:03:21.0488 13704        VgaSave         (2e93ac0a1d8c79d019db6c51f036636c) C:\Windows\System32\drivers\vga.sys

19:03:21.0519 13704        VgaSave - ok

19:03:21.0556 13704        viaagp          (5d7159def58a800d5781ba3a879627bc) C:\Windows\system32\drivers\viaagp.sys

19:03:21.0570 13704        viaagp - ok

19:03:21.0591 13704        ViaC7           (c4f3a691b5bad343e6249bd8c2d45dee) C:\Windows\system32\drivers\viac7.sys

19:03:21.0619 13704        ViaC7 - ok

19:03:21.0647 13704        viaide          (aadf5587a4063f52c2c3fed7887426fc) C:\Windows\system32\drivers\viaide.sys

19:03:21.0661 13704        viaide - ok

19:03:21.0693 13704        volmgr          (69503668ac66c77c6cd7af86fbdf8c43) C:\Windows\system32\drivers\volmgr.sys

19:03:21.0707 13704        volmgr - ok

19:03:21.0777 13704        volmgrx         (23e41b834759917bfd6b9a0d625d0c28) C:\Windows\system32\drivers\volmgrx.sys

19:03:21.0866 13704        volmgrx - ok

19:03:21.0904 13704        volsnap         (147281c01fcb1df9252de2a10d5e7093) C:\Windows\system32\drivers\volsnap.sys

19:03:21.0924 13704        volsnap - ok

19:03:21.0962 13704        vsmraid         (587253e09325e6bf226b299774b728a9) C:\Windows\system32\drivers\vsmraid.sys

19:03:21.0978 13704        vsmraid - ok

19:03:22.0009 13704        WacomPen        (48dfee8f1af7c8235d4e626f0c4fe031) C:\Windows\system32\drivers\wacompen.sys

19:03:22.0053 13704        WacomPen - ok

19:03:22.0080 13704        Wanarp          (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys

19:03:22.0106 13704        Wanarp - ok

19:03:22.0110 13704        Wanarpv6        (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys

19:03:22.0133 13704        Wanarpv6 - ok

19:03:22.0163 13704        Wd              (78fe9542363f297b18c027b2d7e7c07f) C:\Windows\system32\drivers\wd.sys

19:03:22.0177 13704        Wd - ok

19:03:22.0209 13704        Wdf01000        (b6f0a7ad6d4bd325fbcd8bac96cd8d96) C:\Windows\system32\drivers\Wdf01000.sys

19:03:22.0236 13704        Wdf01000 - ok

19:03:22.0296 13704        WmiAcpi         (2e7255d172df0b8283cdfb7b433b864e) C:\Windows\system32\drivers\wmiacpi.sys

19:03:22.0319 13704        WmiAcpi - ok

19:03:22.0370 13704        ws2ifsl         (e3a3cb253c0ec2494d4a61f5e43a389c) C:\Windows\system32\drivers\ws2ifsl.sys

19:03:22.0398 13704        ws2ifsl - ok

19:03:22.0441 13704        WUDFRd          (ac13cb789d93412106b0fb6c7eb2bcb6) C:\Windows\system32\DRIVERS\WUDFRd.sys

19:03:22.0471 13704        WUDFRd - ok

19:03:22.0492 13704        MBR (0x1B8)     (5c616939100b85e558da92b899a0fc36) \Device\Harddisk0\DR0

19:03:22.0665 13704        \Device\Harddisk0\DR0 - ok

19:03:22.0669 13704        Boot (0x1200)   (b25993fbacdb71434bdb7180cab2d1a4) \Device\Harddisk0\DR0\Partition0

19:03:22.0670 13704        \Device\Harddisk0\DR0\Partition0 - ok

19:03:22.0693 13704        Boot (0x1200)   (44c6ae61411025e30c7bb88a60b41cb6) \Device\Harddisk0\DR0\Partition1

19:03:22.0694 13704        \Device\Harddisk0\DR0\Partition1 - ok

19:03:22.0695 13704        ============================================================

19:03:22.0695 13704        Scan finished

19:03:22.0695 13704        ============================================================

19:03:22.0706 13892        Detected object count: 3

19:03:22.0706 13892        Actual detected object count: 3

Das Log sieht nicht ganz vollständig aus, der untere Teil fehlt. Bitte prüfen

Ich habe alles aus dem log kopiert und hier reingestellt...

Hm, das was ich schute war ungewöhnlicherweise nicht ganz am Ende :wtf: egal

Dann bitte jetzt CF ausführen:

ComboFix

Ein Leitfaden und Tutorium zur Nutzung von ComboFix

Lade dir ComboFix hier herunter auf deinen Desktop.

Schliesse alle Programme, vor allem dein Antivirenprogramm und andere Hintergrundwächter sowie deinen Internetbrowser.

Starte combofix.exe von deinem Desktop aus, bestätige die Warnmeldungen, führe die Updates durch (falls vorgeschlagen), installiere die Wiederherstellungskonsole (falls vorgeschlagen) und lass dein System durchsuchen.
Vermeide es auch während Combofix läuft die Maus und Tastatur zu benutzen.

Im Anschluss öffnet sich automatisch eine combofix.txt, diesen Inhalt bitte kopieren ([Strg]a, [Strg]c) und in deinen Beitrag einfügen ([Strg]v). Die Datei findest du außerdem unter: C:\ComboFix.txt.

Wichtiger Hinweis:

Combofix darf ausschließlich ausgeführt werden, wenn ein Kompetenzler dies ausdrücklich empfohlen hat!

Es sollte nie auf eigene Initiative hin ausgeführt werden! Eine falsche Benutzung kann ernsthafte Computerprobleme nach sich ziehen und eine Bereinigung der Infektion noch erschweren.

Solltest du nach der Ausführung von Combofix Probleme beim Starten von Anwendungen haben und Meldungen erhalten wie

Zitat:

Es wurde versucht, einen Registrierungsschlüssel einem ungültigen Vorgang zu unterziehen, der zum Löschen markiert wurde.

startest du Windows dann manuell neu und die Fehlermeldungen sollten nicht mehr auftauchen.

Das funktioniert nicht! Mein Antivirus Programm stoppt den Vorgang immer, obwohl es egtl ausgeschaltet ist...

Dann muss es vorübergehend deinstalliert werden wenn es sich so anstellt