Trojaner-Board

Trojaner-Board (https://www.trojaner-board.de/)
-   Plagegeister aller Art und deren Bekämpfung (https://www.trojaner-board.de/plagegeister-aller-art-deren-bekaempfung/)
-   -   extrem langsame Internetverbindung (https://www.trojaner-board.de/113600-extrem-langsame-internetverbindung.html)

iN sM0ke 13.04.2012 19:34
extrem langsame Internetverbindung
 
Hallo

seit gestern habe ich ein Problem mit dem Internet. Jedoch liegt das an meinem netbook, denn alle anderen Laptops und PCs im Haushalt laufen einwandfrei.

Die Internetverbindung ist größtenteils extrem langsam oder sie ist ganz weg.
Beim Hochfahren braucht er ca 30sec länger als normal.
Alle anderen Offline Programme laufen wie gewohnt. Das Problem liegt nur am Internet.
Ich habe ein Asus Netbook mit Win7 Starter

Ich sollte evtl noch erwähnen dass ich erst seit Heute avast habe. Vorher hatte ich noch avira

1. DDS

Code:
.
DDS (Ver_2011-08-26.01) - NTFSx86
Internet Explorer: 8.0.7601.17514  BrowserJavaVersion: 1.6.0_29
Run by Emi at 18:20:49 on 2012-04-13
Microsoft Windows 7 Starter  6.1.7601.1.1252.49.1031.18.2038.1241 [GMT 2:00]
.
AV: avast! Internet Security *Enabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
SP: avast! Internet Security *Enabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: avast! Internet Security *Enabled* {131692B0-0864-D491-4E21-3A3A1D8BBB47}
.
============== Running Processes ===============
.
C:\windows\system32\wininit.exe
C:\windows\system32\lsm.exe
C:\windows\system32\svchost.exe -k DcomLaunch
C:\windows\system32\svchost.exe -k RPCSS
C:\windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\windows\system32\svchost.exe -k netsvcs
C:\windows\system32\svchost.exe -k LocalService
C:\windows\system32\svchost.exe -k NetworkService
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\Program Files\AVAST Software\Avast\afwServ.exe
C:\windows\System32\spoolsv.exe
C:\windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\System32\AsusService.exe
C:\Program Files\Microsoft\BingBar\SeaPort.EXE
C:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\windows\System32\svchost.exe -k HPZ12
C:\windows\System32\svchost.exe -k HPZ12
C:\Program Files\Microsoft Application Virtualization Client\sftvsa.exe
C:\windows\system32\svchost.exe -k imgsvc
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
C:\Program Files\Microsoft Application Virtualization Client\sftlist.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\Program Files\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
C:\windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\windows\system32\taskhost.exe
C:\windows\system32\Dwm.exe
C:\windows\Explorer.EXE
C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
C:\Program Files\EeePC\HotkeyService\HotkeyService.exe
C:\Program Files\EeePC\HotkeyService\HotKeyMon.exe
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
C:\windows\system32\SearchIndexer.exe
C:\Program Files\EeePC\SHE\SuperHybridEngine.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\EeePC\CapsHook\CapsHook.exe
C:\Program Files\Asus\LiveUpdate\LiveUpdate.exe
C:\windows\system32\wbem\wmiprvse.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Program Files\Synaptics\SynTP\SynAsusAcpi.exe
C:\Windows\System32\igfxtray.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\windows\system32\igfxsrvc.exe
C:\Program Files\DivX\DivX Update\DivXUpdate.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
C:\windows\System32\svchost.exe -k secsvcs
C:\windows\system32\svchost.exe -k SDRSVC
C:\windows\system32\wbem\wmiprvse.exe
C:\windows\system32\DllHost.exe
C:\windows\system32\conhost.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://startsear.ch/?aff=2&cf=ca919d17-36ef-11e1-ad9a-bcaec526d49f
uDefault_Page_URL = hxxp://asus.msn.com
mStart Page = hxxp://startsear.ch/?aff=2&cf=ca919d17-36ef-11e1-ad9a-bcaec526d49f
uURLSearchHooks: InnoGames Toolbar: {c7478d43-2bd5-4844-98b8-c2a6aa9ed677} - c:\program files\innogames\prxtbInno.dll
mURLSearchHooks: InnoGames Toolbar: {c7478d43-2bd5-4844-98b8-c2a6aa9ed677} - c:\program files\innogames\prxtbInno.dll
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
BHO: Conduit Engine: {30f9b915-b755-4826-820b-08fba6bd249d} - c:\program files\conduitengine\prxConduitEngine.dll
BHO: DivX Plus Web Player HTML5 <video>: {326e768d-4182-46fd-9c16-1449a49795f4} - c:\program files\divx\divx plus web player\ie\divxhtml5\DivXHTML5.dll
BHO: IE5BarLauncherBHO Class: {78f3a323-798e-4aea-9a57-88f4b05fd5dd} - c:\program files\startsearch plugin\ssBarLcher.dll
BHO: avast! WebRep: {8e5e2654-ad2d-48bf-ac2d-d17f00898d06} - c:\program files\avast software\avast\aswWebRepIE.dll
BHO: Windows Live ID Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll
BHO: Windows Live Messenger Companion Helper: {9fdde16b-836f-4806-ab1f-1455cbeff289} - c:\program files\windows live\companion\companioncore.dll
BHO: Skype Browser Helper: {ae805869-2e5c-4ed4-8f7b-f1f7851a4497} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll
BHO: InnoGames Toolbar: {c7478d43-2bd5-4844-98b8-c2a6aa9ed677} - c:\program files\innogames\prxtbInno.dll
BHO: Bing Bar Helper: {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - "c:\program files\microsoft\bingbar\BingExt.dll"
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
TB: InnoGames Toolbar: {c7478d43-2bd5-4844-98b8-c2a6aa9ed677} - c:\program files\innogames\prxtbInno.dll
TB: Conduit Engine: {30f9b915-b755-4826-820b-08fba6bd249d} - c:\program files\conduitengine\prxConduitEngine.dll
TB: StartSearchToolBar: {7ac3e13b-3bca-4158-b330-f66dbb03c1b5} - c:\program files\startsearch plugin\ssBarLcher.dll
TB: Bing Bar: {8dcb7100-df86-4384-8842-8fa844297b3f} - "c:\program files\microsoft\bingbar\BingExt.dll"
TB: avast! WebRep: {8e5e2654-ad2d-48bf-ac2d-d17f00898d06} - c:\program files\avast software\avast\aswWebRepIE.dll
uRun: [Google Update] "c:\users\emi\appdata\local\google\update\GoogleUpdate.exe" /c
mRun: [IAAnotif] c:\program files\intel\intel matrix storage manager\iaanotif.exe
mRun: [EeeSplendidAgent] c:\program files\asus\epc\eeesplendid\AsAgent.exe
mRun: [Adobe Reader Speed Launcher] "c:\program files\adobe\reader 9.0\reader\Reader_sl.exe"
mRun: [HotkeyMon] AsusSender.exe c:\program files\eeepc\hotkeyservice\HotKeyMon.exe
mRun: [HotkeyService] AsusSender.exe c:\program files\eeepc\hotkeyservice\HotkeyService.exe
mRun: [SuperHybridEngine] AsusSender.exe c:\program files\eeepc\she\SuperHybridEngine.exe
mRun: [LiveUpdate] AsusSender.exe c:\program files\asus\liveupdate\LiveUpdate.exe auto
mRun: [CapsHook] AsusSender.exe c:\program files\eeepc\capshook\CapsHook.exe
mRun: [Eee Docking] c:\program files\asus\eee docking\Eee Docking.exe autorun
mRun: [RtHDVCpl] c:\program files\realtek\audio\hda\RtHDVCpl.exe -s
mRun: [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
mRun: [SynAsusAcpi] %ProgramFiles%\Synaptics\SynTP\SynAsusAcpi.exe
mRun: [Adobe ARM] "c:\program files\common files\adobe\arm\1.0\AdobeARM.exe"
mRun: [IgfxTray] c:\windows\system32\igfxtray.exe
mRun: [HotKeysCmds] c:\windows\system32\hkcmd.exe
mRun: [Persistence] c:\windows\system32\igfxpers.exe
mRun: [ASUSWebStorage] c:\program files\asus\asus webstorage\3.0.108.222\AsusWSPanel.exe /S
mRun: [DivXUpdate] "c:\program files\divx\divx update\DivXUpdate.exe" /CHECKNOW
mRun: [SunJavaUpdateSched] "c:\program files\common files\java\java update\jusched.exe"
mRun: [avast] "c:\program files\avast software\avast\avastUI.exe" /nogui
StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\asusvi~1.lnk - c:\program files\asus\asusvibe\AsusVibeLauncher.exe
mPolicies-system: ConsentPromptBehaviorAdmin = 0 (0x0)
mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3)
mPolicies-system: EnableLUA = 0 (0x0)
mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
mPolicies-system: PromptOnSecureDesktop = 0 (0x0)
IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
IE: Free YouTube to MP3 Converter - c:\users\emi\appdata\roaming\dvdvideosoftiehelpers\freeyoutubetomp3converter.htm
IE: {7578ADEA-D65F-4C89-A249-B1C88B6FFC20} - c:\program files\icq7.5\ICQ.exe
IE: {0000036B-C524-4050-81A0-243669A86B9F} - {B63DBA5F-523F-4B9C-A43D-65DF1977EAD3} - c:\program files\windows live\companion\companioncore.dll
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - c:\program files\windows live\writer\WriterBrowserExtension.dll
IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab
TCP: DhcpNameServer = 192.168.178.1
TCP: Interfaces\{CB87D788-F12D-447B-9D0A-589B40B40EB4} : DhcpNameServer = 192.168.178.1
TCP: Interfaces\{CB87D788-F12D-447B-9D0A-589B40B40EB4}\64259445A51224F6870235C40275C414E4 : DhcpNameServer = 192.168.178.1
TCP: Interfaces\{CB87D788-F12D-447B-9D0A-589B40B40EB4}\75C414E4D2432303731393 : DhcpNameServer = 192.168.2.1
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\progra~1\common~1\skype\SKYPE4~1.DLL
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - c:\program files\windows live\photo gallery\AlbumDownloadProtocolHandler.dll
Notify: igfxcui - igfxdev.dll
.
================= FIREFOX ===================
.
FF - ProfilePath - c:\users\emi\appdata\roaming\mozilla\firefox\profiles\cno0ar14.eminew\
FF - prefs.js: browser.startup.homepage - google.de
FF - plugin: c:\progra~1\mif5ba~1\office14\NPSPWRAP.DLL
FF - plugin: c:\program files\adobe\reader 9.0\reader\air\nppdf32.dll
FF - plugin: c:\program files\divx\divx ovs helper\npovshelper.dll
FF - plugin: c:\program files\divx\divx plus web player\npdivx32.dll
FF - plugin: c:\program files\google\google earth\plugin\npgeplugin.dll
FF - plugin: c:\program files\google\picasa3\npPicasa3.dll
FF - plugin: c:\program files\google\update\1.3.21.111\npGoogleUpdate3.dll
FF - plugin: c:\program files\java\jre6\bin\new_plugin\npdeployJava1.dll
FF - plugin: c:\program files\microsoft silverlight\4.1.10111.0\npctrlui.dll
FF - plugin: c:\program files\mozilla firefox\plugins\npdeployJava1.dll
FF - plugin: c:\program files\mozilla firefox\plugins\npvsharetvplg.dll
FF - plugin: c:\program files\windows live\photo gallery\NPWLPG.dll
FF - plugin: c:\users\emi\appdata\local\google\update\1.3.21.111\npGoogleUpdate3.dll
FF - plugin: c:\windows\system32\macromed\flash\NPSWF32_11_2_202_228.dll
.
============= SERVICES / DRIVERS ===============
.
R0 aswNdis;avast! Firewall NDIS Filter Service;c:\windows\system32\drivers\aswNdis.sys [2012-4-13 12112]
R0 aswNdis2;avast! Firewall Core Firewall Service;c:\windows\system32\drivers\aswNdis2.sys [2012-4-13 196440]
R1 AsUpIO;AsUpIO;c:\windows\system32\drivers\AsUpIO.sys [2010-11-2 11832]
R1 aswFW;avast! TDI Firewall driver;c:\windows\system32\drivers\aswFW.sys [2012-4-13 112984]
R1 aswKbd;aswKbd;c:\windows\system32\drivers\aswKbd.sys [2012-4-13 24408]
R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [2012-4-13 612184]
R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [2012-4-13 337880]
R1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\drivers\vwififlt.sys [2009-7-14 48128]
R2 AsusService;Asus Launcher Service;c:\windows\system32\AsusService.exe [2010-11-2 224680]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [2012-4-13 20696]
R2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2012-4-13 57688]
R2 avast! Antivirus;avast! Antivirus;c:\program files\avast software\avast\AvastSvc.exe [2012-4-13 44768]
R2 avast! Firewall;avast! Firewall;c:\program files\avast software\avast\afwServ.exe [2012-4-13 134920]
R2 BBUpdate;BBUpdate;c:\program files\microsoft\bingbar\SeaPort.EXE [2011-10-13 249648]
R2 cvhsvc;Client Virtualization Handler;c:\program files\common files\microsoft shared\virtualization handler\CVHSVC.EXE [2012-1-4 822624]
R2 sftlist;Application Virtualization Client;c:\program files\microsoft application virtualization client\sftlist.exe [2011-10-1 508776]
R3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller;c:\windows\system32\drivers\L1C62x86.sys [2010-11-2 68208]
R3 Sftfs;Sftfs;c:\windows\system32\drivers\Sftfslh.sys [2011-10-1 579944]
R3 Sftplay;Sftplay;c:\windows\system32\drivers\Sftplaylh.sys [2011-10-1 194408]
R3 Sftredir;Sftredir;c:\windows\system32\drivers\Sftredirlh.sys [2011-10-1 21864]
R3 Sftvol;Sftvol;c:\windows\system32\drivers\Sftvollh.sys [2011-10-1 19304]
R3 sftvsa;Application Virtualization Service Agent;c:\program files\microsoft application virtualization client\sftvsa.exe [2011-10-1 219496]
S2 BBSvc;Bing Bar Update Service;c:\program files\microsoft\bingbar\BBSvc.EXE [2011-10-21 196176]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 gupdate;Google Update-Dienst (gupdate);c:\program files\google\update\GoogleUpdate.exe [2011-10-26 136176]
S2 SkypeUpdate;Skype Updater;c:\program files\skype\updater\Updater.exe [2012-2-29 158856]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\system32\macromed\flash\FlashPlayerUpdateService.exe [2012-4-10 253600]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0;c:\windows\system32\drivers\b57nd60x.sys [2009-7-14 229888]
S3 fssfltr;fssfltr;c:\windows\system32\drivers\fssfltr.sys [2010-11-2 39272]
S3 fsssvc;Windows Live Family Safety Service;c:\program files\windows live\family safety\fsssvc.exe [2010-9-23 1493352]
S3 gupdatem;Google Update-Dienst (gupdatem);c:\program files\google\update\GoogleUpdate.exe [2011-10-26 136176]
S3 osppsvc;Office Software Protection Platform;c:\program files\common files\microsoft shared\officesoftwareprotectionplatform\OSPPSVC.EXE [2010-1-9 4640000]
S3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\TsUsbFlt.sys [2011-6-2 52224]
S4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\windows live\mesh\wlcrasvc.exe [2010-9-23 51040]
.
=============== Created Last 30 ================
.
.
==================== Find3M  ====================
.
2012-04-10 12:36:46        70304        ----a-w-        c:\windows\system32\FlashPlayerCPLApp.cpl
2012-04-10 12:36:46        418464        ----a-w-        c:\windows\system32\FlashPlayerApp.exe
2012-03-22 19:12:12        4435968        ----a-w-        c:\windows\system32\GPhotos.scr
2012-03-06 23:15:19        41184        ----a-w-        c:\windows\avastSS.scr
2012-03-06 23:04:25        112984        ----a-w-        c:\windows\system32\drivers\aswFW.sys
2012-03-06 23:03:51        612184        ----a-w-        c:\windows\system32\drivers\aswSnx.sys
2012-03-06 23:03:23        196440        ----a-w-        c:\windows\system32\drivers\aswNdis2.sys
2012-03-06 23:02:43        24408        ----a-w-        c:\windows\system32\drivers\aswKbd.sys
2012-03-06 23:02:14        44376        ----a-w-        c:\windows\system32\drivers\aswRdr2.sys
2012-03-06 23:01:48        57688        ----a-w-        c:\windows\system32\drivers\aswMonFlt.sys
2012-03-06 22:44:51        12112        ----a-w-        c:\windows\system32\drivers\aswNdis.sys
2012-03-06 05:59:47        3968368        ----a-w-        c:\windows\system32\ntkrnlpa.exe
2012-03-06 05:59:41        3913072        ----a-w-        c:\windows\system32\ntoskrnl.exe
2012-03-01 05:46:57        19824        ----a-w-        c:\windows\system32\drivers\fs_rec.sys
2012-03-01 05:37:41        172544        ----a-w-        c:\windows\system32\wintrust.dll
2012-03-01 05:33:23        159232        ----a-w-        c:\windows\system32\imagehlp.dll
2012-03-01 05:29:16        5120        ----a-w-        c:\windows\system32\wmi.dll
2012-02-28 05:38:52        981504        ----a-w-        c:\windows\system32\wininet.dll
2012-02-28 03:52:27        1638912        ----a-w-        c:\windows\system32\mshtml.tlb
2012-02-23 08:18:36        237072        ------w-        c:\windows\system32\MpSigStub.exe
2012-02-17 05:34:22        826880        ----a-w-        c:\windows\system32\rdpcore.dll
2012-02-17 04:14:08        183808        ----a-w-        c:\windows\system32\drivers\rdpwd.sys
2012-02-17 04:13:22        24576        ----a-w-        c:\windows\system32\drivers\tdtcp.sys
2012-02-10 05:38:43        1077248        ----a-w-        c:\windows\system32\DWrite.dll
2012-02-03 03:54:27        2343424        ----a-w-        c:\windows\system32\win32k.sys
2012-01-25 05:32:35        58880        ----a-w-        c:\windows\system32\rdpwsx.dll
2012-01-25 05:32:34        129536        ----a-w-        c:\windows\system32\rdpcorekmts.dll
2012-01-25 05:27:51        8192        ----a-w-        c:\windows\system32\rdrmemptylst.exe
.
============= FINISH: 18:22:40,05 ===============

Ich hoffe ihr könnt mir bei dem Problem helfen. Den CCleaner hab ich auch schon duchlaufen lassen.

markusg 14.04.2012 17:31
tritt das problem seit avast instalation auf?
bitte mal deinstalieren und testen.

iN sM0ke 14.04.2012 18:30
Ich habe avast nur installiert weil avira anscheinend nichts gebracht hat. Das Problem war also schon vor der avast installation da.
Als ich vorgestern über Opera auf einer Seite war hab ich eine Warnung von avira bekommen, dass mein pc gefährdet ist.. anschließend kam ein Fenster, wo ich etwas bezahlen sollte. ich kann mich leider nicht mehr so wirklich dran erinnnern weil ich mein netbook direkt ausgeschaltet hab weil ich die Seite nicht schließen konnte..
dachte es ist nur ne Werbung.. hab auf Opera keinen adblock.. deshalb hat mich das nicht gewundert..
bin sonst immer mit chrome unterwegs

aber ich vermute, dass es ein Schädling ist

Meine internetverbundung verschwinder alle 5min
Youtube Videos kann ich kaum noch gucken

Ansonsten ist alles normal
Mein Mitbewohner hat gar keine verbindungsprobleme

markusg 14.04.2012 20:21
aha, warum nicht gleich so ausführlich? ist das dein gerät oder meins, du arbeitest damit und nicht ich, also musst du mir die infos geben.
Falls noch nicht vorhanden, lade Dir bitte OTL von Oldtimer herunter und speichere es auf Deinem Desktop
Code:
activex
netsvcs
msconfig
%SYSTEMDRIVE%\*.
%PROGRAMFILES%\*.exe
%LOCALAPPDATA%\*.exe
%systemroot%\*. /mp /s
/md5start
userinit.exe
eventlog.dll
scecli.dll
netlogon.dll
cngaudit.dll
ws2ifsl.sys
sceclt.dll
ntelogon.dll
winlogon.exe
logevent.dll
user32.DLL
explorer.exe
iaStor.sys
nvstor.sys
atapi.sys
IdeChnDr.sys
viasraid.sys
AGP440.sys
vaxscsi.sys
nvatabus.sys
viamraid.sys
nvata.sys
nvgts.sys
iastorv.sys
ViPrt.sys
eNetHook.dll
ahcix86.sys
KR10N.sys
nvstor32.sys
ahcix86s.sys
/md5stop
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
%systemroot%\system32\*.dll /lockedfiles
%USERPROFILE%\*.*
%USERPROFILE%\Local Settings\Temp\*.exe
%USERPROFILE%\Local Settings\Temp\*.dll
%USERPROFILE%\Application Data\*.exe
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager\SubSystems|Windows /rs
CREATERESTOREPOINT
  • Schliesse bitte nun alle Programme. (Wichtig)
  • Klicke nun bitte auf den Quick Scan Button.
  • Kopiere
    nun den Inhalt aus OTL.txt und Extra.txt hier in Deinen Thread

iN sM0ke 14.04.2012 23:05
Hey,

danke erstmal dass du dich um das Problem kümmerst.

hier der code
Code:
OTL logfile created on: 14.04.2012 22:49:15 - Run 3
OTL by OldTimer - Version 3.2.39.2    Folder = C:\Users\Emi\Desktop
 Starter Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7601.17514)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
 
1,99 Gb Total Physical Memory | 0,93 Gb Available Physical Memory | 46,72% Memory free
3,98 Gb Paging File | 2,93 Gb Available in Paging File | 73,64% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\windows | %ProgramFiles% = C:\Program Files
Drive C: | 100,00 Gb Total Space | 61,39 Gb Free Space | 61,39% Space Free | Partition Type: NTFS
Drive D: | 117,87 Gb Total Space | 88,26 Gb Free Space | 74,88% Space Free | Partition Type: NTFS
 
Computer Name: EMI-PC | User Name: Emi | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days
 
========== Processes (SafeList) ==========
 
PRC - C:\Users\Emi\Desktop\OTL (1).exe (OldTimer Tools)
PRC - C:\Program Files\AVAST Software\Avast\AvastUI.exe (AVAST Software)
PRC - C:\Program Files\AVAST Software\Avast\AvastSvc.exe (AVAST Software)
PRC - C:\Program Files\AVAST Software\Avast\afwServ.exe (AVAST Software)
PRC - C:\Program Files\Microsoft\BingBar\SeaPort.EXE (Microsoft Corporation)
PRC - C:\Program Files\Microsoft Application Virtualization Client\sftvsa.exe (Microsoft Corporation)
PRC - C:\Program Files\Microsoft Application Virtualization Client\sftlist.exe (Microsoft Corporation)
PRC - C:\Program Files\DivX\DivX Update\DivXUpdate.exe ()
PRC - C:\Program Files\Asus\LiveUpdate\LiveUpdate.exe (AsusTek Computer Inc.)
PRC - C:\Program Files\Common Files\Java\Java Update\jucheck.exe (Sun Microsystems, Inc.)
PRC - C:\Windows\explorer.exe (Microsoft Corporation)
PRC - C:\Windows\System32\taskhost.exe (Microsoft Corporation)
PRC - C:\Windows\System32\AsusService.exe ()
PRC - C:\Program Files\EeePC\HotkeyService\HotkeyService.exe (ASUSTeK Computer Inc.)
PRC - C:\Program Files\EeePC\HotkeyService\HotKeyMon.exe (ASUSTeK Computer Inc.)
PRC - C:\Program Files\EeePC\SHE\SuperHybridEngine.exe (ASUSTeK Computer Inc.)
PRC - C:\Program Files\EeePC\CapsHook\CapsHook.exe (ASUS)
PRC - C:\Program Files\Synaptics\SynTP\SynAsusAcpi.exe (Synaptics Incorporated)
PRC - C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe (Intel Corporation)
PRC - C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe (Intel Corporation)
 
 
========== Modules (No Company Name) ==========
 
MOD - C:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualBas#\3ce70b84dbb9970e1893672c5d430c80\Microsoft.VisualBasic.ni.dll ()
MOD - C:\windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\262285b3d0afafc5059f3fe9be69bff5\System.Windows.Forms.ni.dll ()
MOD - C:\windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\8177623eac8f15cf95b587625439eac7\System.Drawing.ni.dll ()
MOD - C:\windows\assembly\NativeImages_v2.0.50727_32\System.Xml\9866d1f6178e1cde25642f1ac293ff8d\System.Xml.ni.dll ()
MOD - C:\windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\e620323cacb5b6bfd93fd28d263440e4\System.Configuration.ni.dll ()
MOD - C:\windows\assembly\NativeImages_v2.0.50727_32\System\faf4e8730ecbd07570111bb7c3b20565\System.ni.dll ()
MOD - C:\windows\assembly\NativeImages_v2.0.50727_32\mscorlib\a1a82db68b3badc7c27ea1f6579d22c5\mscorlib.ni.dll ()
MOD - C:\Program Files\DivX\DivX Update\DivXUpdateCheck.dll ()
MOD - C:\Program Files\DivX\DivX Update\DivXUpdate.exe ()
MOD - C:\Program Files\WinRAR\rarext.dll ()
MOD - C:\PROGRA~1\ASUS\ASUSWE~1\30108~1.222\ASUSWS~1.DLL ()
 
 
========== Win32 Services (SafeList) ==========
 
SRV - (AdobeFlashPlayerUpdateSvc) -- C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe (Adobe Systems Incorporated)
SRV - (avast! Antivirus) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe (AVAST Software)
SRV - (avast! Firewall) -- C:\Program Files\AVAST Software\Avast\afwServ.exe (AVAST Software)
SRV - (SkypeUpdate) -- C:\Program Files\Skype\Updater\Updater.exe (Skype Technologies)
SRV - (BBSvc) -- C:\Program Files\Microsoft\BingBar\BBSvc.EXE (Microsoft Corporation.)
SRV - (BBUpdate) -- C:\Program Files\Microsoft\BingBar\SeaPort.EXE (Microsoft Corporation)
SRV - (sftvsa) -- C:\Program Files\Microsoft Application Virtualization Client\sftvsa.exe (Microsoft Corporation)
SRV - (sftlist) -- C:\Program Files\Microsoft Application Virtualization Client\sftlist.exe (Microsoft Corporation)
SRV - (AsusService) -- C:\Windows\System32\AsusService.exe ()
SRV - (WinDefend) -- C:\Program Files\Windows Defender\mpsvc.dll (Microsoft Corporation)
SRV - (IAANTMON) Intel(R) -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe (Intel Corporation)
 
 
========== Driver Services (SafeList) ==========
 
DRV - (Lavasoft Kernexplorer) -- C:\Program Files\Lavasoft\Ad-Aware\KernExplorer.sys File not found
DRV - (btwrchid) -- C:\windows\system32\DRIVERS\btwrchid.sys File not found
DRV - (btwavdt) -- C:\windows\system32\DRIVERS\btwavdt.sys File not found
DRV - (aswFW) -- C:\windows\System32\drivers\aswFW.sys (AVAST Software)
DRV - (aswSnx) -- C:\windows\System32\drivers\aswSnx.sys (AVAST Software)
DRV - (aswSP) -- C:\windows\System32\drivers\aswSP.sys (AVAST Software)
DRV - (aswNdis2) -- C:\windows\System32\drivers\aswNdis2.sys (AVAST Software)
DRV - (aswKbd) -- C:\windows\System32\drivers\aswKbd.sys (AVAST Software)
DRV - (aswRdr) -- C:\Windows\System32\drivers\aswRdr2.sys (AVAST Software)
DRV - (aswTdi) -- C:\windows\System32\drivers\aswTdi.sys (AVAST Software)
DRV - (aswMonFlt) -- C:\Windows\System32\drivers\aswMonFlt.sys (AVAST Software)
DRV - (aswFsBlk) -- C:\windows\System32\drivers\aswFsBlk.sys (AVAST Software)
DRV - (aswNdis) -- C:\Windows\System32\drivers\aswNdis.sys (ALWIL Software)
DRV - (Sftvol) -- C:\Windows\System32\drivers\Sftvollh.sys (Microsoft Corporation)
DRV - (Sftredir) -- C:\Windows\System32\drivers\Sftredirlh.sys (Microsoft Corporation)
DRV - (Sftplay) -- C:\Windows\System32\drivers\Sftplaylh.sys (Microsoft Corporation)
DRV - (Sftfs) -- C:\Windows\System32\drivers\Sftfslh.sys (Microsoft Corporation)
DRV - (AsUpIO) -- C:\Windows\System32\drivers\AsUpIO.sys ()
DRV - (TsUsbFlt) -- C:\Windows\System32\drivers\TsUsbFlt.sys (Microsoft Corporation)
DRV - (L1C) -- C:\Windows\System32\drivers\L1C62x86.sys (Atheros Communications, Inc.)
DRV - (athr) -- C:\Windows\System32\drivers\athr.sys (Atheros Communications, Inc.)
DRV - (kbfiltr) -- C:\Windows\System32\drivers\kbfiltr.sys ( )
 
 
========== Standard Registry (SafeList) ==========
 
 
========== Internet Explorer ==========
 
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
IE - HKLM\..\URLSearchHook: {c7478d43-2bd5-4844-98b8-c2a6aa9ed677} - C:\Program Files\InnoGames\prxtbInno.dll (Conduit Ltd.)
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{4DFD378A-AB43-4A3C-AB3E-EE540164F279}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&form=ASUTDF&pc=MAAU&src=IE-SearchBox
 
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://asus.msn.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = hxxp://eeepc.asus.com [binary data]
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://eeepc.asus.com [binary data]
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
IE - HKCU\..\URLSearchHook: {c7478d43-2bd5-4844-98b8-c2a6aa9ed677} - C:\Program Files\InnoGames\prxtbInno.dll (Conduit Ltd.)
IE - HKCU\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://startsear.ch/?aff=2&src=sp&cf=ca919d17-36ef-11e1-ad9a-bcaec526d49f&q={searchTerms}
IE - HKCU\..\SearchScopes\{4DFD378A-AB43-4A3C-AB3E-EE540164F279}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&form=ASUTDF&pc=MAAU&src=IE-SearchBox
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
========== FireFox ==========
 
FF - prefs.js..browser.startup.homepage: "hxxp://startsear.ch/?aff=2&cf=ca919d17-36ef-11e1-ad9a-bcaec526d49f"
FF - prefs.js..browser.search.defaultenginename: "Web Search"
FF - prefs.js..browser.search.defaultengine: "Web Search"
FF - prefs.js..browser.search.order.1: "Web Search"
FF - prefs.js..browser.search.selectedEngine: "Web Search"
FF - prefs.js..keyword.URL: "hxxp://startsear.ch/?aff=2&src=sp&cf=ca919d17-36ef-11e1-ad9a-bcaec526d49f&q="
FF - user.js - File not found
 
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\windows\system32\Macromed\Flash\NPSWF32_11_2_202_228.dll ()
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0: C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0: C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@google.com/npPicasa3,version=3.0.0: C:\Program Files\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\4.1.10111.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~1\MIF5BA~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3508.1109: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.111\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.111\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Users\Emi\AppData\Local\Google\Update\1.3.21.111\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Users\Emi\AppData\Local\Google\Update\1.3.21.111\npGoogleUpdate3.dll (Google Inc.)
 
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{23fcfd51-4958-4f00-80a3-ae97e717ed8b}: C:\Program Files\DivX\DivX Plus Web Player\firefox\DivXHTML5 [2012.02.03 05:15:01 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\wrc@avast.com: C:\Program Files\AVAST Software\Avast\WebRep\FF [2012.04.13 14:23:24 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 11.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012.03.18 14:52:16 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 11.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2012.04.13 14:08:20 | 000,000,000 | ---D | M]
 
[2011.05.10 12:51:46 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Emi\AppData\Roaming\mozilla\Extensions
[2012.03.03 16:20:58 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Emi\AppData\Roaming\mozilla\Firefox\Profiles\cno0ar14.EmiNew\extensions
[2012.03.03 16:20:58 | 000,000,000 | ---D | M] ("Free YouTube Download (Free Studio) Menu") -- C:\Users\Emi\AppData\Roaming\mozilla\Firefox\Profiles\cno0ar14.EmiNew\extensions\{ACAA314B-EEBA-48e4-AD47-84E31C44796C}
[2012.03.03 16:20:58 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Emi\AppData\Roaming\mozilla\Firefox\Profiles\nrje4d9c.default\extensions
[2012.03.03 16:20:58 | 000,000,000 | ---D | M] ("Free YouTube Download (Free Studio) Menu") -- C:\Users\Emi\AppData\Roaming\mozilla\Firefox\Profiles\nrje4d9c.default\extensions\{ACAA314B-EEBA-48e4-AD47-84E31C44796C}
[2011.10.10 23:02:31 | 000,000,000 | ---D | M] (Greasemonkey) -- C:\Users\Emi\AppData\Roaming\mozilla\Firefox\Profiles\nrje4d9c.default\extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}
[2012.01.04 18:19:11 | 000,000,792 | ---- | M] () -- C:\Users\Emi\AppData\Roaming\Mozilla\Firefox\Profiles\nrje4d9c.default\searchplugins\startsear.xml
[2012.01.10 16:42:17 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\mozilla firefox\extensions
[2012.03.23 02:09:46 | 000,000,000 | ---D | M] (Skype Click to Call) -- C:\Program Files\mozilla firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
() (No name found) -- C:\USERS\EMI\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\NRJE4D9C.DEFAULT\EXTENSIONS\{D10D0BF8-F5B5-C8B4-A8B2-2B9879E08C5D}.XPI
[2012.03.18 14:52:16 | 000,097,208 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2011.10.03 06:06:04 | 000,476,904 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll
[2011.10.27 15:45:50 | 000,083,456 | ---- | M] (LiveVDO ) -- C:\Program Files\mozilla firefox\plugins\npvsharetvplg.dll
[2011.09.29 02:47:57 | 000,001,392 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\amazondotcom-de.xml
[2011.09.29 02:47:57 | 000,002,252 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\bing.xml
[2011.09.29 02:47:57 | 000,001,153 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\eBay-de.xml
[2011.09.29 02:47:57 | 000,006,805 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\leo_ende_de.xml
[2011.09.29 02:47:57 | 000,001,178 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-de.xml
[2011.09.29 02:47:57 | 000,001,105 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\yahoo-de.xml
 
========== Chrome  ==========
 
CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}sourceid=chrome&ie={inputEncoding}&q={searchTerms}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}client=chrome&hl={language}&q={searchTerms}
CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Users\Emi\AppData\Local\Google\Chrome\Application\18.0.1025.162\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Users\Emi\AppData\Local\Google\Chrome\Application\18.0.1025.162\pdf.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Users\Emi\AppData\Local\Google\Chrome\Application\18.0.1025.162\gcswf32.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\windows\system32\Macromed\Flash\NPSWF32.dll
CHR - plugin: LiveVDO plug-in (Enabled) = C:\Users\Emi\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbiamblgmkgbcgbcgejjgebalncpmhnp\1.3_0\chvsharetvplg.dll
CHR - plugin: LiveVDO plug-in (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npvsharetvplg.dll
CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll
CHR - plugin: Java Deployment Toolkit 6.0.290.11 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npdeployJava1.dll
CHR - plugin: Java(TM) Platform SE 6 U29 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll
CHR - plugin: Microsoft\u00AE Windows Media Player Firefox Plugin (Enabled) = C:\Program Files\Mozilla Firefox\plugins\np-mswmp.dll
CHR - plugin: Microsoft Office 2010 (Enabled) = C:\PROGRA~1\MIF5BA~1\Office14\NPSPWRAP.DLL
CHR - plugin: DivX VOD Helper Plug-in (Enabled) = C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll
CHR - plugin: DivX Plus Web Player (Enabled) = C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll
CHR - plugin: Google Earth Plugin (Enabled) = C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll
CHR - plugin: Picasa (Enabled) = C:\Program Files\Google\Picasa3\npPicasa3.dll
CHR - plugin: Google Update (Enabled) = C:\Program Files\Google\Update\1.3.21.111\npGoogleUpdate3.dll
CHR - plugin: Silverlight Plug-In (Enabled) = C:\Program Files\Microsoft Silverlight\4.1.10111.0\npctrl.dll
CHR - plugin: Windows Live\u0099 Photo Gallery (Enabled) = C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll
CHR - Extension: YouTube = C:\Users\Emi\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\
CHR - Extension: Google-Suche = C:\Users\Emi\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\
CHR - Extension: AdBlock = C:\Users\Emi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.29_0\
CHR - Extension: avast! WebRep = C:\Users\Emi\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\7.0.1426_0\
CHR - Extension: Mehr Leistung und Videoformate f\u00FCr dein HTML5 \u003Cvideo\u003E = C:\Users\Emi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nneajnkjbffgblleaoojgaacokifdkhm\2.1.2.145_0\
CHR - Extension: LiveVDO plugin = C:\Users\Emi\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbiamblgmkgbcgbcgejjgebalncpmhnp\1.3_0\
CHR - Extension: Google Mail = C:\Users\Emi\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\
 
O1 HOSTS File: ([2009.06.10 23:39:37 | 000,000,824 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O2 - BHO: (Conduit Engine) - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\prxConduitEngine.dll (Conduit Ltd.)
O2 - BHO: (DivX Plus Web Player HTML5 <video>) - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll (DivX, LLC)
O2 - BHO: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O2 - BHO: (Skype Browser Helper) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O2 - BHO: (InnoGames Toolbar) - {c7478d43-2bd5-4844-98b8-c2a6aa9ed677} - C:\Program Files\InnoGames\prxtbInno.dll (Conduit Ltd.)
O2 - BHO: (Bing Bar Helper) - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)
O3 - HKLM\..\Toolbar: (Conduit Engine) - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\prxConduitEngine.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (Bing Bar) - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)
O3 - HKLM\..\Toolbar: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O3 - HKLM\..\Toolbar: (InnoGames Toolbar) - {c7478d43-2bd5-4844-98b8-c2a6aa9ed677} - C:\Program Files\InnoGames\prxtbInno.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (InnoGames Toolbar) - {C7478D43-2BD5-4844-98B8-C2A6AA9ED677} - C:\Program Files\InnoGames\prxtbInno.dll (Conduit Ltd.)
O4 - HKLM..\Run: [ASUSWebStorage] C:\Program Files\ASUS\ASUS WebStorage\3.0.108.222\AsusWSPanel.exe (ecareme)
O4 - HKLM..\Run: [avast] C:\Program Files\AVAST Software\Avast\avastUI.exe (AVAST Software)
O4 - HKLM..\Run: [CapsHook] C:\windows\System32\AsusSender.exe (ASUSTek Computer Inc.)
O4 - HKLM..\Run: [DivXUpdate] C:\Program Files\DivX\DivX Update\DivXUpdate.exe ()
O4 - HKLM..\Run: [Eee Docking] C:\Program Files\ASUS\Eee Docking\Eee Docking.exe ()
O4 - HKLM..\Run: [EeeSplendidAgent] C:\Program Files\ASUS\EPC\EeeSplendid\AsAgent.exe File not found
O4 - HKLM..\Run: [HotkeyMon] C:\windows\System32\AsusSender.exe (ASUSTek Computer Inc.)
O4 - HKLM..\Run: [HotkeyService] C:\windows\System32\AsusSender.exe (ASUSTek Computer Inc.)
O4 - HKLM..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe (Intel Corporation)
O4 - HKLM..\Run: [LiveUpdate] C:\windows\System32\AsusSender.exe (ASUSTek Computer Inc.)
O4 - HKLM..\Run: [SuperHybridEngine] C:\windows\System32\AsusSender.exe (ASUSTek Computer Inc.)
O4 - HKLM..\Run: [SynAsusAcpi] C:\Program Files\Synaptics\SynTP\SynAsusAcpi.exe (Synaptics Incorporated)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\windows\System32\GPhotos.scr (Google Inc.)
O8 - Extra context menu item: Free YouTube to MP3 Converter - C:\Users\Emi\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm ()
O9 - Extra Button: ICQ7.5 - {7578ADEA-D65F-4C89-A249-B1C88B6FFC20} - C:\Program Files\ICQ7.5\ICQ.exe (ICQ, LLC.)
O9 - Extra 'Tools' menuitem : ICQ7.5 - {7578ADEA-D65F-4C89-A249-B1C88B6FFC20} - C:\Program Files\ICQ7.5\ICQ.exe (ICQ, LLC.)
O9 - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra 'Tools' menuitem : Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab (Java Plug-in 1.6.0_29)
O16 - DPF: {CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab (Java Plug-in 1.6.0_29)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab (Java Plug-in 1.6.0_29)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.178.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{CB87D788-F12D-447B-9D0A-589B40B40EB4}: DhcpNameServer = 192.168.178.1
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) -  File not found
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009.06.10 23:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
 
ActiveX: {08B0E5C0-4FCB-11CF-AAA5-00401C608500} - Java (Sun)
ActiveX: {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Microsoft Windows Media Player 12.0
ActiveX: {25FFAAD0-F4A3-4164-95FF-4461E9F35D51} - .NET Framework
ActiveX: {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - %SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll
ActiveX: {3af36230-a269-11d1-b5bf-0000f8051515} - Offline Browsing Pack
ActiveX: {3C3901C5-3455-3E0A-A214-0B093A5070A6} - .NET Framework
ActiveX: {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles%\Windows Mail\WinMail.exe" OCInstallUserConfigOE
ActiveX: {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx
ActiveX: {45ea75a0-a269-11d1-b5bf-0000f8051515} - Internet Explorer Help
ActiveX: {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.6
ActiveX: {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Internet Explorer Setup Tools
ActiveX: {630b1da0-b465-11d1-9948-00c04f98bbc9} - Browsing Enhancements
ActiveX: {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player
ActiveX: {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - MSN Site Access
ActiveX: {7790769C-0471-11d2-AF11-00C04FA35D02} - Address Book 7
ActiveX: {7C028AF8-F614-47B3-82DA-BA94E41B1089} - .NET Framework
ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4340} - regsvr32.exe /s /n /i:U shell32.dll
ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4383} - C:\Windows\System32\ie4uinit.exe -BaseSettings
ActiveX: {89B4C1CD-B018-4511-B0A1-5476DBF70820} - C:\Windows\system32\Rundll32.exe C:\Windows\system32\mscories.dll,Install
ActiveX: {9381D8F2-0288-11D0-9501-00AA00B911A5} - Dynamic HTML Data Binding
ActiveX: {C9E9A340-D1F1-11D0-821E-444553540600} - Internet Explorer Core Fonts
ActiveX: {D27CDB6E-AE6D-11CF-96B8-444553540000} - Adobe Flash Player
ActiveX: {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - HTML Help
ActiveX: {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface
ActiveX: >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - %SystemRoot%\system32\unregmp2.exe /ShowWMP
ActiveX: >{26923b43-4d38-484f-9b9e-de460746276c} - C:\Windows\System32\ie4uinit.exe -UserIconConfig
ActiveX: >{60B49E34-C7CC-11D0-8953-00A0C90347FF} - "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\iedkcs32.dll",BrandIEActiveSetup SIGNUP
 
NetSvcs: FastUserSwitchingCompatibility -  File not found
NetSvcs: Ias - C:\windows\System32\ias.dll (Microsoft Corporation)
NetSvcs: Nla -  File not found
NetSvcs: Ntmssvc -  File not found
NetSvcs: NWCWorkstation -  File not found
NetSvcs: Nwsapagent -  File not found
NetSvcs: SRService -  File not found
NetSvcs: WmdmPmSp -  File not found
NetSvcs: LogonHours -  File not found
NetSvcs: PCAudit -  File not found
NetSvcs: helpsvc -  File not found
NetSvcs: uploadmgr -  File not found
 
MsConfig - StartUpReg: ASUSWebStorage - hkey= - key= - C:\Program Files\ASUS\ASUS WebStorage\3.0.84.161\AsusWSPanel.exe (ecareme)
MsConfig - StartUpReg: Boingo Wi-Fi - hkey= - key= - C:\Program Files\Boingo\Boingo Wi-Fi\Boingo.lnk ()
MsConfig - StartUpReg: VizorHtmlDialog.exe - hkey= - key= -  File not found
MsConfig - State: "startup" - 2
 
CREATERESTOREPOINT
Restore point Set: OTL Restore Point
 
========== Files/Folders - Created Within 30 Days ==========
 
[2030.01.01 18:45:22 | 000,000,000 | -HSD | C] -- C:\Boot
[2012.04.14 22:47:34 | 000,593,920 | ---- | C] (OldTimer Tools) -- C:\Users\Emi\Desktop\OTL (1).exe
[2012.04.14 16:13:44 | 000,000,000 | ---D | C] -- C:\Users\Emi\AppData\Roaming\Malwarebytes
[2012.04.14 16:13:34 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware
[2012.04.14 16:13:33 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2012.04.14 16:13:32 | 000,022,344 | ---- | C] (Malwarebytes Corporation) -- C:\windows\System32\drivers\mbam.sys
[2012.04.14 16:13:32 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2012.04.13 23:19:54 | 010,063,000 | ---- | C] (Malwarebytes Corporation                                    ) -- C:\Users\Emi\Desktop\malwarebytes_antimalware_1.61.exe
[2012.04.13 20:32:56 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
[2012.04.13 20:32:55 | 000,000,000 | ---D | C] -- C:\Program Files\7-Zip
[2012.04.13 20:32:01 | 000,000,000 | ---D | C] -- C:\Users\Emi\Desktop\programme
[2012.04.13 17:14:39 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
[2012.04.13 17:14:35 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2012.04.13 14:24:32 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\avast! Internet Security
[2012.04.13 14:24:31 | 000,337,880 | ---- | C] (AVAST Software) -- C:\windows\System32\drivers\aswSP.sys
[2012.04.13 14:24:31 | 000,020,696 | ---- | C] (AVAST Software) -- C:\windows\System32\drivers\aswFsBlk.sys
[2012.04.13 14:24:28 | 000,112,984 | ---- | C] (AVAST Software) -- C:\windows\System32\drivers\aswFW.sys
[2012.04.13 14:24:01 | 000,196,440 | ---- | C] (AVAST Software) -- C:\windows\System32\drivers\aswNdis2.sys
[2012.04.13 14:24:01 | 000,053,848 | ---- | C] (AVAST Software) -- C:\windows\System32\drivers\aswTdi.sys
[2012.04.13 14:24:01 | 000,044,376 | ---- | C] (AVAST Software) -- C:\windows\System32\drivers\aswRdr2.sys
[2012.04.13 14:24:01 | 000,024,408 | ---- | C] (AVAST Software) -- C:\windows\System32\drivers\aswKbd.sys
[2012.04.13 14:24:00 | 000,612,184 | ---- | C] (AVAST Software) -- C:\windows\System32\drivers\aswSnx.sys
[2012.04.13 14:23:59 | 000,057,688 | ---- | C] (AVAST Software) -- C:\windows\System32\drivers\aswMonFlt.sys
[2012.04.13 14:22:48 | 000,012,112 | ---- | C] (ALWIL Software) -- C:\windows\System32\drivers\aswNdis.sys
[2012.04.13 14:22:43 | 000,041,184 | ---- | C] (AVAST Software) -- C:\windows\avastSS.scr
[2012.04.13 14:22:42 | 000,201,352 | ---- | C] (AVAST Software) -- C:\windows\System32\aswBoot.exe
[2012.04.13 14:22:00 | 000,000,000 | ---D | C] -- C:\ProgramData\AVAST Software
[2012.04.13 14:22:00 | 000,000,000 | ---D | C] -- C:\Program Files\AVAST Software
[2012.03.29 02:58:00 | 000,000,000 | ---D | C] -- C:\Users\Emi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome
[2012.03.23 02:09:14 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
[2012.03.23 02:09:13 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Skype
 
========== Files - Modified Within 30 Days ==========
 
[2012.04.14 22:53:01 | 000,001,112 | ---- | M] () -- C:\windows\tasks\GoogleUpdateTaskUserS-1-5-21-4277706689-3338729935-2179398354-1000UA.job
[2012.04.14 22:47:39 | 000,593,920 | ---- | M] (OldTimer Tools) -- C:\Users\Emi\Desktop\OTL (1).exe
[2012.04.14 22:46:01 | 000,001,092 | ---- | M] () -- C:\windows\tasks\GoogleUpdateTaskMachineUA.job
[2012.04.14 22:15:05 | 000,000,884 | ---- | M] () -- C:\windows\tasks\Adobe Flash Player Updater.job
[2012.04.14 18:42:08 | 000,009,696 | -H-- | M] () -- C:\windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2012.04.14 18:42:08 | 000,009,696 | -H-- | M] () -- C:\windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2012.04.14 18:34:31 | 000,001,088 | ---- | M] () -- C:\windows\tasks\GoogleUpdateTaskMachineCore.job
[2012.04.14 18:34:18 | 000,067,584 | --S- | M] () -- C:\windows\bootstat.dat
[2012.04.14 18:34:12 | 1602,887,680 | -HS- | M] () -- C:\hiberfil.sys
[2012.04.14 16:13:34 | 000,001,071 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2012.04.14 02:53:01 | 000,001,060 | ---- | M] () -- C:\windows\tasks\GoogleUpdateTaskUserS-1-5-21-4277706689-3338729935-2179398354-1000Core.job
[2012.04.14 02:39:38 | 000,082,476 | ---- | M] () -- C:\Users\Emi\Desktop\1077856906.pdf
[2012.04.13 23:58:07 | 000,002,389 | ---- | M] () -- C:\Users\Emi\Desktop\Google Chrome.lnk
[2012.04.13 23:21:30 | 010,063,000 | ---- | M] (Malwarebytes Corporation                                    ) -- C:\Users\Emi\Desktop\malwarebytes_antimalware_1.61.exe
[2012.04.13 20:33:30 | 000,008,716 | ---- | M] () -- C:\Users\Emi\Desktop\Desktop.zip
[2012.04.13 18:14:16 | 000,000,000 | ---- | M] () -- C:\Users\Emi\defogger_reenable
[2012.04.13 17:00:41 | 000,654,610 | ---- | M] () -- C:\windows\System32\perfh007.dat
[2012.04.13 17:00:41 | 000,616,452 | ---- | M] () -- C:\windows\System32\perfh009.dat
[2012.04.13 17:00:41 | 000,130,192 | ---- | M] () -- C:\windows\System32\perfc007.dat
[2012.04.13 17:00:41 | 000,106,574 | ---- | M] () -- C:\windows\System32\perfc009.dat
[2012.04.13 14:23:58 | 000,002,577 | ---- | M] () -- C:\windows\System32\config.nt
[2012.04.13 14:08:20 | 000,001,984 | ---- | M] () -- C:\Users\Public\Desktop\Adobe Reader 9.lnk
[2012.04.04 15:56:40 | 000,022,344 | ---- | M] (Malwarebytes Corporation) -- C:\windows\System32\drivers\mbam.sys
[2012.03.23 06:06:28 | 000,000,017 | ---- | M] () -- C:\windows\System32\shortcut_ex.dat
[2012.03.23 02:09:14 | 000,002,505 | ---- | M] () -- C:\Users\Public\Desktop\Skype.lnk
 
========== Files Created - No Company Name ==========
 
[2030.01.01 18:45:23 | 000,383,786 | RHS- | C] () -- C:\bootmgr
[2012.04.14 16:13:34 | 000,001,071 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2012.04.14 02:39:37 | 000,082,476 | ---- | C] () -- C:\Users\Emi\Desktop\1077856906.pdf
[2012.04.13 20:33:30 | 000,008,716 | ---- | C] () -- C:\Users\Emi\Desktop\Desktop.zip
[2012.04.13 18:14:16 | 000,000,000 | ---- | C] () -- C:\Users\Emi\defogger_reenable
[2012.04.13 14:08:20 | 000,001,984 | ---- | C] () -- C:\Users\Public\Desktop\Adobe Reader 9.lnk
[2012.04.10 14:36:50 | 000,000,884 | ---- | C] () -- C:\windows\tasks\Adobe Flash Player Updater.job
[2012.03.29 02:58:04 | 000,002,389 | ---- | C] () -- C:\Users\Emi\Desktop\Google Chrome.lnk
[2012.03.29 02:48:39 | 000,001,112 | ---- | C] () -- C:\windows\tasks\GoogleUpdateTaskUserS-1-5-21-4277706689-3338729935-2179398354-1000UA.job
[2012.03.29 02:48:38 | 000,001,060 | ---- | C] () -- C:\windows\tasks\GoogleUpdateTaskUserS-1-5-21-4277706689-3338729935-2179398354-1000Core.job
[2012.03.23 06:06:28 | 000,000,017 | ---- | C] () -- C:\windows\System32\shortcut_ex.dat
[2011.11.14 10:10:02 | 000,000,000 | ---- | C] () -- C:\Users\Emi\AppData\Local\{53014459-9FAE-4611-BBA5-1EFDE4B5DDBC}
[2011.05.31 12:44:45 | 000,000,064 | ---- | C] () -- C:\windows\System32\rp_stats.dat
[2011.05.31 12:44:45 | 000,000,044 | ---- | C] () -- C:\windows\System32\rp_rules.dat
[2011.05.13 18:00:22 | 000,000,056 | -H-- | C] () -- C:\windows\System32\ezsidmv.dat
[2011.05.10 11:54:15 | 000,006,144 | ---- | C] () -- C:\windows\System32\drivers\ASUSHWIO.SYS
[2011.05.10 11:53:49 | 000,005,576 | ---- | C] () -- C:\windows\Language.ini
[2011.05.10 11:47:52 | 000,004,692 | ---- | C] () -- C:\windows\System32\drivers\SamSfPa.dat
[2011.05.10 11:47:52 | 000,000,008 | ---- | C] () -- C:\windows\System32\drivers\rtkhdaud.dat
[2010.11.02 02:11:35 | 000,224,680 | ---- | C] () -- C:\windows\System32\AsusService.exe
[2010.11.02 02:11:35 | 000,025,616 | ---- | C] () -- C:\windows\AsAcpiSvrLang.ini
[2010.11.02 02:09:45 | 000,131,984 | ---- | C] () -- C:\ProgramData\FullRemove.exe
[2010.11.02 02:07:49 | 000,011,832 | ---- | C] () -- C:\windows\System32\drivers\AsUpIO.sys
[2010.11.02 02:04:59 | 000,000,530 | ---- | C] () -- C:\windows\Reboot.ini
[2010.11.02 01:59:44 | 000,451,072 | ---- | C] () -- C:\windows\System32\ISSRemoveSP.exe
[2010.11.02 01:59:13 | 000,014,051 | ---- | C] () -- C:\windows\System32\RaCoInst.dat
[2010.07.06 04:50:14 | 000,013,880 | ---- | C] ( ) -- C:\windows\System32\drivers\kbfiltr.sys
 
========== LOP Check ==========
 
[2010.11.02 03:11:57 | 000,000,000 | ---D | M] -- C:\Users\Emi\AppData\Roaming\ASUS WebStorage
[2012.03.03 16:21:25 | 000,000,000 | ---D | M] -- C:\Users\Emi\AppData\Roaming\DVDVideoSoft
[2012.03.03 16:20:57 | 000,000,000 | ---D | M] -- C:\Users\Emi\AppData\Roaming\DVDVideoSoftIEHelpers
[2011.05.10 11:51:53 | 000,000,000 | ---D | M] -- C:\Users\Emi\AppData\Roaming\E-Cam
[2012.04.09 04:48:04 | 000,000,000 | ---D | M] -- C:\Users\Emi\AppData\Roaming\ICQ
[2011.05.17 17:14:24 | 000,000,000 | ---D | M] -- C:\Users\Emi\AppData\Roaming\OpenOffice.org
[2011.05.10 12:52:22 | 000,000,000 | ---D | M] -- C:\Users\Emi\AppData\Roaming\Opera
[2012.04.06 16:08:10 | 000,000,000 | ---D | M] -- C:\Users\Emi\AppData\Roaming\SoftGrid Client
[2011.09.20 20:07:24 | 000,000,000 | ---D | M] -- C:\Users\Emi\AppData\Roaming\TP
[2012.02.20 16:44:55 | 000,032,632 | ---- | M] () -- C:\windows\Tasks\SCHEDLGU.TXT
 
========== Purity Check ==========
 
 
 
========== Custom Scans ==========
 
< %SYSTEMDRIVE%\*. >
[2011.05.10 11:53:41 | 000,000,000 | -HSD | M] -- C:\$Recycle.Bin
[2012.02.08 16:03:49 | 000,000,000 | ---D | M] -- C:\AsusVibeData
[2011.06.23 08:56:11 | 000,000,000 | -HSD | M] -- C:\Boot
[2009.07.14 06:53:55 | 000,000,000 | -HSD | M] -- C:\Documents and Settings
[2010.11.02 01:56:15 | 000,000,000 | ---D | M] -- C:\Intel
[2009.07.14 04:37:05 | 000,000,000 | ---D | M] -- C:\PerfLogs
[2012.04.14 16:13:32 | 000,000,000 | R--D | M] -- C:\Program Files
[2012.04.14 16:13:33 | 000,000,000 | -H-D | M] -- C:\ProgramData
[2011.05.10 11:44:23 | 000,000,000 | -HSD | M] -- C:\Recovery
[2012.04.14 22:53:22 | 000,000,000 | -HSD | M] -- C:\System Volume Information
[2011.05.10 11:45:31 | 000,000,000 | R--D | M] -- C:\Users
[2012.04.14 16:35:18 | 000,000,000 | ---D | M] -- C:\Windows
 
< %PROGRAMFILES%\*.exe >
 
< %LOCALAPPDATA%\*.exe >
 
< %systemroot%\*. /mp /s >
 
< MD5 for: AGP440.SYS  >
[2009.07.14 03:26:15 | 000,053,312 | ---- | M] (Microsoft Corporation) MD5=507812C3054C21CEF746B6EE3D04DD6E -- C:\Windows\System32\drivers\AGP440.sys
[2009.07.14 03:26:15 | 000,053,312 | ---- | M] (Microsoft Corporation) MD5=507812C3054C21CEF746B6EE3D04DD6E -- C:\Windows\System32\DriverStore\FileRepository\machine.inf_x86_neutral_a97a2a0d0fbc6696\AGP440.sys
[2009.07.14 03:26:15 | 000,053,312 | ---- | M] (Microsoft Corporation) MD5=507812C3054C21CEF746B6EE3D04DD6E -- C:\Windows\winsxs\x86_machine.inf_31bf3856ad364e35_6.1.7600.16385_none_b9e9435f20046eeb\AGP440.sys
[2009.07.14 03:26:15 | 000,053,312 | ---- | M] (Microsoft Corporation) MD5=507812C3054C21CEF746B6EE3D04DD6E -- C:\Windows\winsxs\x86_machine.inf_31bf3856ad364e35_6.1.7601.17514_none_bc1a57271cf2f285\AGP440.sys
 
< MD5 for: ATAPI.SYS  >
[2009.07.14 03:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\System32\drivers\atapi.sys
[2009.07.14 03:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_x86_neutral_fab873f3e8a3315c\atapi.sys
[2009.07.14 03:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.1.7600.16385_none_dd0e7e3d82dd640d\atapi.sys
[2009.07.14 03:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.1.7601.17514_none_df3f92057fcbe7a7\atapi.sys
 
< MD5 for: CNGAUDIT.DLL  >
[2009.07.14 03:15:06 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- C:\Windows\System32\cngaudit.dll
[2009.07.14 03:15:06 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- C:\Windows\winsxs\x86_microsoft-windows-cngaudit-dll_31bf3856ad364e35_6.1.7600.16385_none_e83a414890e8132b\cngaudit.dll
 
< MD5 for: EXPLORER.EXE  >
[2011.02.26 07:19:21 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=0FB9C74046656D1579A64660AD67B746 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.21669_none_54149f9ef14031fc\explorer.exe
[2009.07.14 03:14:20 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=15BC38A7492BEFE831966ADB477CF76F -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16385_none_518afd35db100430\explorer.exe
[2011.02.26 07:51:13 | 002,614,784 | ---- | M] (Microsoft Corporation) MD5=255CF508D7CFB10E0794D6AC93280BD8 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20910_none_525b5180f3f95373\explorer.exe
[2009.10.31 07:45:39 | 002,614,272 | ---- | M] (Microsoft Corporation) MD5=2626FC9755BE22F805D3CFA0CE3EE727 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16450_none_51a66d6ddafc2ed1\explorer.exe
[2011.02.26 07:33:07 | 002,614,784 | ---- | M] (Microsoft Corporation) MD5=2AF58D15EDC06EC6FDACCE1F19482BBF -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16768_none_51a3a583dafd0cef\explorer.exe
[2010.11.20 14:17:09 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=40D777B7A95E00593EB1568C68514493 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17514_none_53bc10fdd7fe87ca\explorer.exe
[2011.02.25 07:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=8B88EBBB05A0E56B7DCC708498C02B3E -- C:\Windows\explorer.exe
[2011.02.25 07:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=8B88EBBB05A0E56B7DCC708498C02B3E -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17567_none_5389023fd8245f84\explorer.exe
[2009.08.03 07:49:47 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=9FF6C4C91A3711C0A3B18F87B08B518D -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20500_none_526619d4f3f142e6\explorer.exe
[2009.08.03 07:35:50 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=B95EEB0F4E5EFBF1038A35B3351CF047 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16404_none_51e07e31dad00878\explorer.exe
[2009.10.31 08:00:51 | 002,614,272 | ---- | M] (Microsoft Corporation) MD5=C76153C7ECA00FA852BB0C193378F917 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20563_none_52283b2af41f3691\explorer.exe
 
< MD5 for: IASTOR.SYS  >
[2009.06.05 03:54:36 | 000,408,600 | ---- | M] (Intel Corporation) MD5=1D004CB1DA6323B1F55CAEF7F94B61D9 -- C:\Program Files\Intel\Intel Matrix Storage Manager\driver64\IaStor.sys
[2009.06.05 03:43:16 | 000,330,264 | ---- | M] (Intel Corporation) MD5=D483687EACE0C065EE772481A96E05F5 -- C:\Program Files\Intel\Intel Matrix Storage Manager\driver\IaStor.sys
[2009.06.05 03:43:16 | 000,330,264 | ---- | M] (Intel Corporation) MD5=D483687EACE0C065EE772481A96E05F5 -- C:\Windows\System32\drivers\iaStor.sys
[2009.06.05 03:43:16 | 000,330,264 | ---- | M] (Intel Corporation) MD5=D483687EACE0C065EE772481A96E05F5 -- C:\Windows\System32\DriverStore\FileRepository\iaahci.inf_x86_neutral_c1f15fc3e546800a\iaStor.sys
 
< MD5 for: IASTORV.SYS  >
[2011.03.11 07:38:51 | 000,332,160 | ---- | M] (Intel Corporation) MD5=5CD5F9A5444E6CDCB0AC89BD62D8B76E -- C:\Windows\System32\drivers\iaStorV.sys
[2011.03.11 07:38:51 | 000,332,160 | ---- | M] (Intel Corporation) MD5=5CD5F9A5444E6CDCB0AC89BD62D8B76E -- C:\Windows\System32\DriverStore\FileRepository\iastorv.inf_x86_neutral_0bcee2057afcc090\iaStorV.sys
[2011.03.11 07:38:51 | 000,332,160 | ---- | M] (Intel Corporation) MD5=5CD5F9A5444E6CDCB0AC89BD62D8B76E -- C:\Windows\winsxs\x86_iastorv.inf_31bf3856ad364e35_6.1.7601.17577_none_b0daddb9e6380745\iaStorV.sys
[2011.03.11 07:43:55 | 000,332,160 | ---- | M] (Intel Corporation) MD5=71F1A494FEDF4B33C02C4A6A28D6D9E9 -- C:\Windows\winsxs\x86_iastorv.inf_31bf3856ad364e35_6.1.7600.16778_none_aef580fde910b4b0\iaStorV.sys
[2011.03.11 07:28:00 | 000,332,160 | ---- | M] (Intel Corporation) MD5=778D0E6D7D9EBA0C403BADBAAD41DB20 -- C:\Windows\winsxs\x86_iastorv.inf_31bf3856ad364e35_6.1.7601.21680_none_b152a892ff64119f\iaStorV.sys
[2009.07.14 03:20:36 | 000,332,352 | ---- | M] (Intel Corporation) MD5=934AF4D7C5F457B9F0743F4299B77B67 -- C:\Windows\winsxs\x86_iastorv.inf_31bf3856ad364e35_6.1.7600.16385_none_aee7a89be91b9000\iaStorV.sys
[2010.11.20 14:29:54 | 000,332,160 | ---- | M] (Intel Corporation) MD5=A3CAE5D281DB4CFF7CFF8233507EE5AD -- C:\Windows\System32\DriverStore\FileRepository\iastorv.inf_x86_neutral_668286aa35d55928\iaStorV.sys
[2010.11.20 14:29:54 | 000,332,160 | ---- | M] (Intel Corporation) MD5=A3CAE5D281DB4CFF7CFF8233507EE5AD -- C:\Windows\winsxs\x86_iastorv.inf_31bf3856ad364e35_6.1.7601.17514_none_b118bc63e60a139a\iaStorV.sys
[2011.03.11 07:52:21 | 000,332,160 | ---- | M] (Intel Corporation) MD5=B9039A34C2F8769490DCC494E2402445 -- C:\Windows\winsxs\x86_iastorv.inf_31bf3856ad364e35_6.1.7600.20921_none_afae2d45020c148b\iaStorV.sys
 
< MD5 for: NETLOGON.DLL  >
[2010.11.20 14:20:28 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=C1809B9907ADEDAF16F50C894100883B -- C:\Windows\System32\netlogon.dll
[2010.11.20 14:20:28 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=C1809B9907ADEDAF16F50C894100883B -- C:\Windows\winsxs\x86_microsoft-windows-security-netlogon_31bf3856ad364e35_6.1.7601.17514_none_ffbf212e963c0162\netlogon.dll
[2009.07.14 03:16:02 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=EAA75D9000B71F10EEC04D2AE6C60E81 -- C:\Windows\winsxs\x86_microsoft-windows-security-netlogon_31bf3856ad364e35_6.1.7600.16385_none_fd8e0d66994d7dc8\netlogon.dll
 
< MD5 for: NVSTOR.SYS  >
[2011.03.11 07:39:00 | 000,143,744 | ---- | M] (NVIDIA Corporation) MD5=4380E59A170D88C4F1022EFF6719A8A4 -- C:\Windows\System32\drivers\nvstor.sys
[2011.03.11 07:39:00 | 000,143,744 | ---- | M] (NVIDIA Corporation) MD5=4380E59A170D88C4F1022EFF6719A8A4 -- C:\Windows\System32\DriverStore\FileRepository\nvraid.inf_x86_neutral_0276fc3b3ea60d41\nvstor.sys
[2011.03.11 07:39:00 | 000,143,744 | ---- | M] (NVIDIA Corporation) MD5=4380E59A170D88C4F1022EFF6719A8A4 -- C:\Windows\winsxs\x86_nvraid.inf_31bf3856ad364e35_6.1.7601.17577_none_3ba44e691d6eb11d\nvstor.sys
[2011.03.11 07:44:01 | 000,143,744 | ---- | M] (NVIDIA Corporation) MD5=4520B63899E867F354EE012D34E11536 -- C:\Windows\winsxs\x86_nvraid.inf_31bf3856ad364e35_6.1.7600.16778_none_39bef1ad20475e88\nvstor.sys
[2011.03.11 07:28:10 | 000,143,744 | ---- | M] (NVIDIA Corporation) MD5=66D468654A58594F5F3BA63D5AD5B1AF -- C:\Windows\winsxs\x86_nvraid.inf_31bf3856ad364e35_6.1.7601.21680_none_3c1c1942369abb77\nvstor.sys
[2011.03.11 07:52:25 | 000,143,744 | ---- | M] (NVIDIA Corporation) MD5=8A7583A3B58D3EEB28BB26626526BC91 -- C:\Windows\winsxs\x86_nvraid.inf_31bf3856ad364e35_6.1.7600.20921_none_3a779df43942be63\nvstor.sys
[2010.11.20 14:30:06 | 000,143,744 | ---- | M] (NVIDIA Corporation) MD5=9283C58EBAA2618F93482EB5DABCEC82 -- C:\Windows\System32\DriverStore\FileRepository\nvraid.inf_x86_neutral_dd659ed032d28a14\nvstor.sys
[2010.11.20 14:30:06 | 000,143,744 | ---- | M] (NVIDIA Corporation) MD5=9283C58EBAA2618F93482EB5DABCEC82 -- C:\Windows\winsxs\x86_nvraid.inf_31bf3856ad364e35_6.1.7601.17514_none_3be22d131d40bd72\nvstor.sys
[2009.07.14 03:20:44 | 000,142,416 | ---- | M] (NVIDIA Corporation) MD5=C99F251A5DE63C6F129CF71933ACED0F -- C:\Windows\winsxs\x86_nvraid.inf_31bf3856ad364e35_6.1.7600.16385_none_39b1194b205239d8\nvstor.sys
 
< MD5 for: SCECLI.DLL  >
[2009.07.14 03:16:13 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=26073302DAEA83CC5B944C546D6B47D2 -- C:\Windows\winsxs\x86_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7600.16385_none_37e4387f3a6f0483\scecli.dll
[2010.11.20 14:21:04 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=8124944EC89D6A1815E4E53F5B96AAF4 -- C:\Windows\System32\scecli.dll
[2010.11.20 14:21:04 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=8124944EC89D6A1815E4E53F5B96AAF4 -- C:\Windows\winsxs\x86_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7601.17514_none_3a154c47375d881d\scecli.dll
 
< MD5 for: USER32.DLL  >
[2009.07.14 03:16:17 | 000,811,520 | ---- | M] (Microsoft Corporation) MD5=34B7E222E81FAFA885F0C5F2CFA56861 -- C:\Windows\winsxs\x86_microsoft-windows-user32_31bf3856ad364e35_6.1.7600.16385_none_cd0ec264ceb014a3\user32.dll
[2010.11.20 14:21:33 | 000,811,520 | ---- | M] (Microsoft Corporation) MD5=F1DD3ACAEE5E6B4BBC69BC6DF75CEF66 -- C:\Windows\System32\user32.dll
[2010.11.20 14:21:33 | 000,811,520 | ---- | M] (Microsoft Corporation) MD5=F1DD3ACAEE5E6B4BBC69BC6DF75CEF66 -- C:\Windows\winsxs\x86_microsoft-windows-user32_31bf3856ad364e35_6.1.7601.17514_none_cf3fd62ccb9e983d\user32.dll
 
< MD5 for: USERINIT.EXE  >
[2010.11.20 14:17:48 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\System32\userinit.exe
[2010.11.20 14:17:48 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7601.17514_none_de3024012ff21116\userinit.exe
[2009.07.14 03:14:43 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=6DE80F60D7DE9CE6B8C2DDFDF79EF175 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7600.16385_none_dbff103933038d7c\userinit.exe
 
< MD5 for: WINLOGON.EXE  >
[2012.04.04 15:56:38 | 000,199,240 | ---- | M] () MD5=097D0E812D7A9A3101CE46CB2BE0474D -- C:\Program Files\Malwarebytes' Anti-Malware\Chameleon\winlogon.exe
[2009.10.28 08:17:59 | 000,285,696 | ---- | M] (Microsoft Corporation) MD5=37CDB7E72EB66BA85A87CBE37E7F03FD -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.16447_none_6fc699643622d177\winlogon.exe
[2009.10.28 07:52:08 | 000,285,696 | ---- | M] (Microsoft Corporation) MD5=3BABE6767C78FBF5FB8435FEED187F30 -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.20560_none_703394514f56f7c2\winlogon.exe
[2010.11.20 14:17:54 | 000,286,720 | ---- | M] (Microsoft Corporation) MD5=6D13E1406F50C66E2A95D97F22C47560 -- C:\Windows\System32\winlogon.exe
[2010.11.20 14:17:54 | 000,286,720 | ---- | M] (Microsoft Corporation) MD5=6D13E1406F50C66E2A95D97F22C47560 -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7601.17514_none_71ca6b0233339500\winlogon.exe
[2009.07.14 03:14:45 | 000,285,696 | ---- | M] (Microsoft Corporation) MD5=8EC6A4AB12B8F3759E21F8E3A388F2CF -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.16385_none_6f99573a36451166\winlogon.exe
 
< MD5 for: WS2IFSL.SYS  >
[2009.07.14 01:55:02 | 000,016,384 | ---- | M] (Microsoft Corporation) MD5=6DB3276587B853BF886B69528FDB048C -- C:\Windows\System32\drivers\ws2ifsl.sys
[2009.07.14 01:55:02 | 000,016,384 | ---- | M] (Microsoft Corporation) MD5=6DB3276587B853BF886B69528FDB048C -- C:\Windows\winsxs\x86_microsoft-windows-w..rastructure-ws2ifsl_31bf3856ad364e35_6.1.7600.16385_none_4f5cf6f829213bb2\ws2ifsl.sys
 
< %systemroot%\system32\drivers\*.sys /lockedfiles >
 
< %systemroot%\System32\config\*.sav >
 
< %systemroot%\system32\*.dll /lockedfiles >
 
< %USERPROFILE%\*.* >
[2012.04.13 18:14:16 | 000,000,000 | ---- | M] () -- C:\Users\Emi\defogger_reenable
[2012.04.14 22:53:06 | 001,572,864 | -HS- | M] () -- C:\Users\Emi\ntuser.dat
[2012.04.14 22:53:06 | 000,262,144 | -HS- | M] () -- C:\Users\Emi\ntuser.dat.LOG1
[2011.05.10 11:45:34 | 000,000,000 | -HS- | M] () -- C:\Users\Emi\ntuser.dat.LOG2
[2011.05.10 11:55:21 | 000,065,536 | -HS- | M] () -- C:\Users\Emi\NTUSER.DAT{6cced2f1-6e01-11de-8bed-001e0bcd1824}.TM.blf
[2011.05.10 11:55:21 | 000,524,288 | -HS- | M] () -- C:\Users\Emi\NTUSER.DAT{6cced2f1-6e01-11de-8bed-001e0bcd1824}.TMContainer00000000000000000001.regtrans-ms
[2011.05.10 11:55:21 | 000,524,288 | -HS- | M] () -- C:\Users\Emi\NTUSER.DAT{6cced2f1-6e01-11de-8bed-001e0bcd1824}.TMContainer00000000000000000002.regtrans-ms
[2012.04.13 03:27:02 | 000,065,536 | -HS- | M] () -- C:\Users\Emi\ntuser.dat{bb971469-8506-11e1-a3e8-bcaec526d49f}.TM.blf
[2012.04.13 03:27:02 | 000,524,288 | -HS- | M] () -- C:\Users\Emi\ntuser.dat{bb971469-8506-11e1-a3e8-bcaec526d49f}.TMContainer00000000000000000001.regtrans-ms
[2012.04.13 03:27:02 | 000,524,288 | -HS- | M] () -- C:\Users\Emi\ntuser.dat{bb971469-8506-11e1-a3e8-bcaec526d49f}.TMContainer00000000000000000002.regtrans-ms
[2012.01.17 04:35:46 | 000,065,536 | -HS- | M] () -- C:\Users\Emi\ntuser.dat{d118c488-4089-11e1-a73d-bcaec526d49f}.TM.blf
[2012.01.17 04:35:46 | 000,524,288 | -HS- | M] () -- C:\Users\Emi\ntuser.dat{d118c488-4089-11e1-a73d-bcaec526d49f}.TMContainer00000000000000000001.regtrans-ms
[2012.01.17 04:35:46 | 000,524,288 | -HS- | M] () -- C:\Users\Emi\ntuser.dat{d118c488-4089-11e1-a73d-bcaec526d49f}.TMContainer00000000000000000002.regtrans-ms
[2012.04.13 14:29:29 | 000,065,536 | -HS- | M] () -- C:\Users\Emi\ntuser.dat{f1b0b4b9-8557-11e1-a39c-bcaec526d49f}.TM.blf
[2012.04.13 14:29:29 | 000,524,288 | -HS- | M] () -- C:\Users\Emi\ntuser.dat{f1b0b4b9-8557-11e1-a39c-bcaec526d49f}.TMContainer00000000000000000001.regtrans-ms
[2012.04.13 14:29:29 | 000,524,288 | -HS- | M] () -- C:\Users\Emi\ntuser.dat{f1b0b4b9-8557-11e1-a39c-bcaec526d49f}.TMContainer00000000000000000002.regtrans-ms
[2009.07.14 06:53:59 | 000,000,020 | -HS- | M] () -- C:\Users\Emi\ntuser.ini
 
< %USERPROFILE%\Local Settings\Temp\*.exe >
 
< %USERPROFILE%\Local Settings\Temp\*.dll >
 
< %USERPROFILE%\Application Data\*.exe >
 
< HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager\SubSystems|Windows /rs >
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager\SubSystems\\Required: DebugWindows [binary data]
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager\SubSystems\\Windows: %SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,12288,512 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
 
<          >
 
========== Alternate Data Streams ==========
 
@Alternate Data Stream - 143 bytes -> C:\ProgramData\TEMP:AB689DEA

< End of report >
Ich bekomme jedoch keine Extra.txt.
Kannst du mir sagen was genau bei OTL angeklickt werden muss?

markusg 15.04.2012 19:53
Combofix darf ausschließlich ausgeführt werden, wenn dies von einem Team Mitglied angewiesen wurde!
Es sollte nie auf eigene Initiative hin ausgeführt werden! Eine falsche Benutzung kann ernsthafte Computerprobleme nach sich
ziehen und eine Bereinigung der Infektion noch erschweren.
Downloade dir bitte Combofix von einem dieser Downloadspiegel

Link 1
Link 2


WICHTIG - Speichere Combofix auf deinem Desktop
  • Deaktiviere bitte all deine Anti Viren sowie Anti Malware/Spyware Scanner. Diese können Combofix bei der Arbeit stören.
Starte die Combofix.exe und folge den Anweisungen auf dem Bildschirm.

Wenn Combofix fertig ist, wird es eine Logfile erstellen. Bitte poste die C:\Combofix.txt in deiner nächsten Antwort.


Hinweis: Solltest du nach dem Neustart folgende Fehlermeldung erhalten
Zitat:
Es wurde versucht, einen Registrierungsschlüssel einem ungültigen Vorgang zu unterziehen, der zum Löschen markiert wurde.
starte den Rechner einfach neu. Dies sollte das Problem beheben.

iN sM0ke 15.04.2012 21:10
Hier die Datei

Code:
ComboFix 12-04-15.02 - Emi 15.04.2012  21:40:52.1.2 - x86
Microsoft Windows 7 Starter  6.1.7601.1.1252.49.1031.18.2038.1350 [GMT 2:00]
ausgeführt von:: c:\users\Emi\Desktop\ComboFix.exe
AV: avast! Internet Security *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
FW: avast! Internet Security *Disabled* {131692B0-0864-D491-4E21-3A3A1D8BBB47}
SP: avast! Internet Security *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((  Weitere Löschungen  ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files\StartSearch plugin
c:\program files\StartSearch plugin\IEhelperActiveX.dll
c:\program files\StartSearch plugin\StartBar.dll
c:\program files\StartSearch plugin\uninst.exe
c:\program files\StartSearch plugin\vshareplg.crx
c:\programdata\FullRemove.exe
.
.
(((((((((((((((((((((((  Dateien erstellt von 2012-03-15 bis 2012-04-15  ))))))))))))))))))))))))))))))
.
.
2030-01-01 16:45 . 2011-06-23 06:56        --------        d-----w-        C:\Boot
2012-04-15 19:58 . 2012-04-15 19:58        --------        d-----w-        c:\users\Emi\AppData\Local\temp
2012-04-15 19:58 . 2012-04-15 19:58        --------        d-----w-        c:\users\Default\AppData\Local\temp
2012-04-14 14:13 . 2012-04-14 14:13        --------        d-----w-        c:\users\Emi\AppData\Roaming\Malwarebytes
2012-04-14 14:13 . 2012-04-14 14:13        --------        d-----w-        c:\programdata\Malwarebytes
2012-04-14 14:13 . 2012-04-14 14:13        --------        d-----w-        c:\program files\Malwarebytes' Anti-Malware
2012-04-14 14:13 . 2012-04-04 13:56        22344        ----a-w-        c:\windows\system32\drivers\mbam.sys
2012-04-13 18:32 . 2012-04-13 18:32        --------        d-----w-        c:\program files\7-Zip
2012-04-13 15:14 . 2012-04-13 15:14        --------        d-----w-        c:\program files\CCleaner
2012-04-13 14:56 . 2012-03-01 05:46        19824        ----a-w-        c:\windows\system32\drivers\fs_rec.sys
2012-04-13 14:56 . 2012-03-01 05:37        172544        ----a-w-        c:\windows\system32\wintrust.dll
2012-04-13 14:56 . 2012-03-01 05:29        5120        ----a-w-        c:\windows\system32\wmi.dll
2012-04-13 14:56 . 2012-03-01 05:33        159232        ----a-w-        c:\windows\system32\imagehlp.dll
2012-04-13 14:55 . 2012-03-06 05:59        3968368        ----a-w-        c:\windows\system32\ntkrnlpa.exe
2012-04-13 14:55 . 2012-03-06 05:59        3913072        ----a-w-        c:\windows\system32\ntoskrnl.exe
2012-04-13 12:24 . 2012-03-06 23:03        337880        ----a-w-        c:\windows\system32\drivers\aswSP.sys
2012-04-13 12:24 . 2012-03-06 23:01        20696        ----a-w-        c:\windows\system32\drivers\aswFsBlk.sys
2012-04-13 12:24 . 2012-03-06 23:04        112984        ----a-w-        c:\windows\system32\drivers\aswFW.sys
2012-04-13 12:24 . 2012-03-06 23:03        196440        ----a-w-        c:\windows\system32\drivers\aswNdis2.sys
2012-04-13 12:24 . 2012-03-06 23:02        24408        ----a-w-        c:\windows\system32\drivers\aswKbd.sys
2012-04-13 12:24 . 2012-03-06 23:02        44376        ----a-w-        c:\windows\system32\drivers\aswRdr2.sys
2012-04-13 12:24 . 2012-03-06 23:01        53848        ----a-w-        c:\windows\system32\drivers\aswTdi.sys
2012-04-13 12:24 . 2012-03-06 23:03        612184        ----a-w-        c:\windows\system32\drivers\aswSnx.sys
2012-04-13 12:23 . 2012-03-06 23:01        57688        ----a-w-        c:\windows\system32\drivers\aswMonFlt.sys
2012-04-13 12:22 . 2012-03-06 22:44        12112        ----a-w-        c:\windows\system32\drivers\aswNdis.sys
2012-04-13 12:22 . 2012-03-06 23:15        41184        ----a-w-        c:\windows\avastSS.scr
2012-04-13 12:22 . 2012-03-06 23:15        201352        ----a-w-        c:\windows\system32\aswBoot.exe
2012-04-13 12:22 . 2012-04-13 12:22        --------        d-----w-        c:\programdata\AVAST Software
2012-04-13 12:22 . 2012-04-13 12:22        --------        d-----w-        c:\program files\AVAST Software
2012-04-13 11:57 . 2012-03-20 01:53        6582328        ----a-w-        c:\programdata\Microsoft\Windows Defender\Definition Updates\{B9A29541-E1CF-42D2-8A27-D6906406C721}\mpengine.dll
2012-04-13 11:36 . 2012-02-28 05:34        860672        ----a-w-        c:\program files\Internet Explorer\iedvtool.dll
2012-04-13 11:36 . 2012-02-28 05:38        981504        ----a-w-        c:\windows\system32\wininet.dll
2012-04-13 11:36 . 2012-02-28 05:34        163328        ----a-w-        c:\program files\Internet Explorer\ieproxy.dll
2012-04-13 01:26 . 2012-02-28 03:52        1638912        ----a-w-        c:\windows\system32\mshtml.tlb
2012-04-10 12:36 . 2012-04-10 12:36        418464        ----a-w-        c:\windows\system32\FlashPlayerApp.exe
2012-03-26 15:41 . 2012-03-26 15:41        103864        ----a-w-        c:\program files\Mozilla Firefox\plugins\nppdf32.dll
2012-03-23 00:09 . 2012-03-23 00:09        --------        d-----w-        c:\program files\Common Files\Skype
2012-03-22 19:12 . 2012-03-22 19:12        4435968        ----a-w-        c:\windows\system32\GPhotos.scr
2012-03-18 12:52 . 2012-03-18 12:52        592824        ----a-w-        c:\program files\Mozilla Firefox\gkmedias.dll
2012-03-18 12:52 . 2012-03-18 12:52        44472        ----a-w-        c:\program files\Mozilla Firefox\mozglue.dll
.
.
.
((((((((((((((((((((((((((((((((((((  Find3M Bericht  ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-04-10 12:36 . 2011-05-31 16:08        70304        ----a-w-        c:\windows\system32\FlashPlayerCPLApp.cpl
2012-02-23 08:18 . 2011-05-10 11:00        237072        ------w-        c:\windows\system32\MpSigStub.exe
2012-02-17 05:34 . 2012-03-14 12:22        826880        ----a-w-        c:\windows\system32\rdpcore.dll
2012-02-17 04:14 . 2012-03-14 12:22        183808        ----a-w-        c:\windows\system32\drivers\rdpwd.sys
2012-02-17 04:13 . 2012-03-14 12:22        24576        ----a-w-        c:\windows\system32\drivers\tdtcp.sys
2012-02-10 05:38 . 2012-03-14 12:23        1077248        ----a-w-        c:\windows\system32\DWrite.dll
2012-02-03 03:54 . 2012-03-14 12:23        2343424        ----a-w-        c:\windows\system32\win32k.sys
2012-01-25 05:32 . 2012-03-14 12:22        58880        ----a-w-        c:\windows\system32\rdpwsx.dll
2012-01-25 05:32 . 2012-03-14 12:22        129536        ----a-w-        c:\windows\system32\rdpcorekmts.dll
2012-01-25 05:27 . 2012-03-14 12:22        8192        ----a-w-        c:\windows\system32\rdrmemptylst.exe
2012-03-18 12:52 . 2011-05-10 10:51        97208        ----a-w-        c:\program files\mozilla firefox\components\browsercomps.dll
.
.
((((((((((((((((((((((((((((  Autostartpunkte der Registrierung  ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt.
REGEDIT4
.
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks]
"{c7478d43-2bd5-4844-98b8-c2a6aa9ed677}"= "c:\program files\InnoGames\prxtbInno.dll" [2011-01-17 175912]
.
[HKEY_CLASSES_ROOT\clsid\{c7478d43-2bd5-4844-98b8-c2a6aa9ed677}]
.
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{30F9B915-B755-4826-820B-08FBA6BD249D}]
2011-01-17 14:54        175912        ----a-w-        c:\program files\ConduitEngine\prxConduitEngine.dll
.
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{c7478d43-2bd5-4844-98b8-c2a6aa9ed677}]
2011-01-17 14:54        175912        ----a-w-        c:\program files\InnoGames\prxtbInno.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{c7478d43-2bd5-4844-98b8-c2a6aa9ed677}"= "c:\program files\InnoGames\prxtbInno.dll" [2011-01-17 175912]
"{30F9B915-B755-4826-820B-08FBA6BD249D}"= "c:\program files\ConduitEngine\prxConduitEngine.dll" [2011-01-17 175912]
.
[HKEY_CLASSES_ROOT\clsid\{c7478d43-2bd5-4844-98b8-c2a6aa9ed677}]
.
[HKEY_CLASSES_ROOT\clsid\{30f9b915-b755-4826-820b-08fba6bd249d}]
.
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser]
"{C7478D43-2BD5-4844-98B8-C2A6AA9ED677}"= "c:\program files\InnoGames\prxtbInno.dll" [2011-01-17 175912]
.
[HKEY_CLASSES_ROOT\clsid\{c7478d43-2bd5-4844-98b8-c2a6aa9ed677}]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2012-03-06 23:15        123536        ----a-w-        c:\program files\AVAST Software\Avast\ashShell.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\AsusWSShellExt_B]
@="{CC5FC992-B0AA-47CD-9DC2-83445083CBB8}"
[HKEY_CLASSES_ROOT\CLSID\{CC5FC992-B0AA-47CD-9DC2-83445083CBB8}]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\AsusWSShellExt_O]
@="{618A47A2-528B-4D9A-AFC8-97D3233511E2}"
[HKEY_CLASSES_ROOT\CLSID\{618A47A2-528B-4D9A-AFC8-97D3233511E2}]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IAAnotif"="c:\program files\Intel\Intel Matrix Storage Manager\iaanotif.exe" [2009-06-05 186904]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2012-03-27 37296]
"HotkeyMon"="AsusSender.exe" [2011-07-13 34728]
"HotkeyService"="AsusSender.exe" [2011-07-13 34728]
"SuperHybridEngine"="AsusSender.exe" [2011-07-13 34728]
"LiveUpdate"="AsusSender.exe" [2011-07-13 34728]
"CapsHook"="AsusSender.exe" [2011-07-13 34728]
"Eee Docking"="c:\program files\ASUS\Eee Docking\Eee Docking.exe" [2010-06-10 414384]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RtHDVCpl.exe" [2010-04-27 9177632]
"SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2009-11-19 1594664]
"SynAsusAcpi"="c:\program files\Synaptics\SynTP\SynAsusAcpi.exe" [2009-11-19 83240]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-01-03 843712]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2011-04-19 142104]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2011-04-19 174360]
"Persistence"="c:\windows\system32\igfxpers.exe" [2011-04-19 150808]
"ASUSWebStorage"="c:\program files\ASUS\ASUS WebStorage\3.0.108.222\AsusWSPanel.exe" [2011-07-29 737104]
"DivXUpdate"="c:\program files\DivX\DivX Update\DivXUpdate.exe" [2011-07-28 1259376]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2011-06-09 254696]
"avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2012-03-06 4241512]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
AsusVibeLauncher.lnk - c:\program files\ASUS\AsusVibe\AsusVibeLauncher.exe [2012-2-8 549040]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"aux"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Security Packages        REG_MULTI_SZ          kerberos msv1_0 schannel wdigest tspkg pku2u livessp
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ASUSWebStorage]
2011-02-23 09:49        731472        ----a-w-        c:\program files\ASUS\ASUS WebStorage\3.0.84.161\AsusWSPanel.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Boingo Wi-Fi]
2011-05-10 09:52        2429        ----a-w-        c:\program files\Boingo\Boingo Wi-Fi\Boingo.lnk
.
R2 BBSvc;Bing Bar Update Service;c:\program files\Microsoft\BingBar\BBSvc.EXE [2011-10-21 196176]
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R2 gupdate;Google Update-Dienst (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [2011-10-26 136176]
R2 SkypeUpdate;Skype Updater;c:\program files\Skype\Updater\Updater.exe [2012-02-29 158856]
R3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-04-10 253600]
R3 gupdatem;Google Update-Dienst (gupdatem);c:\program files\Google\Update\GoogleUpdate.exe [2011-10-26 136176]
R3 Lavasoft Kernexplorer;Lavasoft helper driver;c:\program files\Lavasoft\Ad-Aware\KernExplorer.sys [x]
R3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4640000]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 52224]
R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe [2010-09-22 51040]
S0 aswNdis;avast! Firewall NDIS Filter Service;c:\windows\system32\DRIVERS\aswNdis.sys [2012-03-06 12112]
S0 aswNdis2;avast! Firewall Core Firewall Service; [x]
S1 AsUpIO;AsUpIO;c:\windows\system32\drivers\AsUpIO.sys [2011-02-09 11832]
S1 aswFW;avast! TDI Firewall driver; [x]
S1 aswKbd;aswKbd; [x]
S1 aswSnx;aswSnx; [x]
S1 aswSP;aswSP; [x]
S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [2009-07-13 48128]
S2 AsusService;Asus Launcher Service;c:\windows\System32\AsusService.exe [2010-09-08 224680]
S2 aswFsBlk;aswFsBlk; [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2012-03-06 57688]
S2 avast! Firewall;avast! Firewall;c:\program files\AVAST Software\Avast\afwServ.exe [2012-03-06 134920]
S2 BBUpdate;BBUpdate;c:\program files\Microsoft\BingBar\SeaPort.EXE [2011-10-13 249648]
S2 cvhsvc;Client Virtualization Handler;c:\program files\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE [2012-01-04 822624]
S2 sftlist;Application Virtualization Client;c:\program files\Microsoft Application Virtualization Client\sftlist.exe [2011-10-01 508776]
S3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller;c:\windows\system32\DRIVERS\L1C62x86.sys [2010-05-10 68208]
S3 Sftfs;Sftfs;c:\windows\system32\DRIVERS\Sftfslh.sys [2011-10-01 579944]
S3 Sftplay;Sftplay;c:\windows\system32\DRIVERS\Sftplaylh.sys [2011-10-01 194408]
S3 Sftredir;Sftredir;c:\windows\system32\DRIVERS\Sftredirlh.sys [2011-10-01 21864]
S3 Sftvol;Sftvol;c:\windows\system32\DRIVERS\Sftvollh.sys [2011-10-01 19304]
S3 sftvsa;Application Virtualization Service Agent;c:\program files\Microsoft Application Virtualization Client\sftvsa.exe [2011-10-01 219496]
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
LocalServiceAndNoImpersonation        REG_MULTI_SZ          SSDPSRV upnphost SCardSvr TBS FontCache fdrespub AppIDSvc QWAVE wcncsvc
HPZ12        REG_MULTI_SZ          Pml Driver HPZ12 Net Driver HPZ12
.
Inhalt des "geplante Tasks" Ordners
.
2012-04-15 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-04-10 12:36]
.
2012-04-15 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2011-10-26 12:30]
.
2012-04-15 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2011-10-26 12:30]
.
2012-04-15 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4277706689-3338729935-2179398354-1000Core.job
- c:\users\Emi\AppData\Local\Google\Update\GoogleUpdate.exe [2012-03-29 00:48]
.
2012-04-15 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4277706689-3338729935-2179398354-1000UA.job
- c:\users\Emi\AppData\Local\Google\Update\GoogleUpdate.exe [2012-03-29 00:48]
.
.
------- Zusätzlicher Suchlauf -------
.
uStart Page = hxxp://www.google.com
mStart Page = hxxp://www.google.com
IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
IE: Free YouTube to MP3 Converter - c:\users\Emi\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm
IE: {{7578ADEA-D65F-4C89-A249-B1C88B6FFC20} - c:\program files\ICQ7.5\ICQ.exe
TCP: DhcpNameServer = 192.168.178.1
FF - ProfilePath - c:\users\Emi\AppData\Roaming\Mozilla\Firefox\Profiles\cno0ar14.EmiNew\
FF - prefs.js: browser.startup.homepage - google.de
.
- - - - Entfernte verwaiste Registrierungseinträge - - - -
.
Toolbar-Locked - (no file)
HKLM-Run-EeeSplendidAgent - c:\program files\ASUS\EPC\EeeSplendid\AsAgent.exe
MSConfigStartUp-VizorHtmlDialog - c:\program files\Trend Micro\Titanium\VizorHtmlDialog.exe
AddRemove-LiveVDO plugin - c:\program files\StartSearch plugin\uninst.exe
.
.
.
--------------------- Gesperrte Registrierungsschluessel ---------------------
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Zeit der Fertigstellung: 2012-04-15  22:06:25
ComboFix-quarantined-files.txt  2012-04-15 20:06
.
Vor Suchlauf: 7 Verzeichnis(se), 65.663.524.864 Bytes frei
Nach Suchlauf: 11 Verzeichnis(se), 65.379.385.344 Bytes frei
.
- - End Of File - - F01D1C70BDCBB1A23646FD86E9EA39A8

iN sM0ke 16.04.2012 01:35
Liste der Anhänge anzeigen (Anzahl: 1)
Ich habe mal ein Bild von den laufenden Prozessen gemacht
Ist igfxtray.exe harmlos?

markusg 16.04.2012 10:29
öffne malwarebytes, berichte, poste alle logs

iN sM0ke 16.04.2012 17:24
vom 14.04
Code:
Malwarebytes Anti-Malware 1.61.0.1400
www.malwarebytes.org

Datenbank Version: v2012.04.14.04

Windows 7 Service Pack 1 x86 NTFS
Internet Explorer 8.0.7601.17514
Emi :: EMI-PC [Administrator]

14.04.2012 16:46:16
mbam-log-2012-04-14 (16-46-16).txt

Art des Suchlaufs: Vollständiger Suchlauf
Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM
Deaktivierte Suchlaufeinstellungen: P2P
Durchsuchte Objekte: 281850
Laufzeit: 1 Stunde(n), 23 Minute(n), 11 Sekunde(n)

Infizierte Speicherprozesse: 0
(Keine bösartigen Objekte gefunden)

Infizierte Speichermodule: 0
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungsschlüssel: 12
HKCR\CLSID\{78F3A323-798E-4AEA-9A57-88F4B05FD5DD} (PUP.VShareRedir) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKCR\TypeLib\{BB7256DD-EBA9-480B-8441-A00388C2BEC3} (PUP.VShareRedir) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKCR\Interface\{3D782BB2-F2A5-11D3-BF4C-000000000000} (PUP.VShareRedir) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKCR\MyNewsBarLauncher.IE5BarLauncherBHO.1 (PUP.VShareRedir) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKCR\MyNewsBarLauncher.IE5BarLauncherBHO (PUP.VShareRedir) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{78F3A323-798E-4AEA-9A57-88F4B05FD5DD} (PUP.VShareRedir) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{78F3A323-798E-4AEA-9A57-88F4B05FD5DD} (PUP.VShareRedir) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{78F3A323-798E-4AEA-9A57-88F4B05FD5DD} (PUP.VShareRedir) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKCR\CLSID\{7AC3E13B-3BCA-4158-B330-F66DBB03C1B5} (PUP.VShareRedir) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKCR\MyNewsBarLauncher.IE5BarLauncher.1 (PUP.VShareRedir) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKCR\MyNewsBarLauncher.IE5BarLauncher (PUP.VShareRedir) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{7AC3E13B-3BCA-4158-B330-F66DBB03C1B5} (PUP.VShareRedir) -> Erfolgreich gelöscht und in Quarantäne gestellt.

Infizierte Registrierungswerte: 2
HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar|{7AC3E13B-3BCA-4158-B330-F66DBB03C1B5} (PUP.VShareRedir) -> Daten: StartSearchTB -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\{7AC3E13B-3BCA-4158-B330-F66DBB03C1B5} (PUP.VShareRedir) -> Daten:  -> Erfolgreich gelöscht und in Quarantäne gestellt.

Infizierte Dateiobjekte der Registrierung: 0
(Keine bösartigen Objekte gefunden)

Infizierte Verzeichnisse: 0
(Keine bösartigen Objekte gefunden)

Infizierte Dateien: 2
C:\Program Files\StartSearch plugin\ssBarLcher.dll (PUP.VShareRedir) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\Emi\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\40\4ddb5e8-1fed6a40 (Trojan.Zbot.Gen) -> Erfolgreich gelöscht und in Quarantäne gestellt.

(Ende)
Der Scan von heute hat keine infizierten Dateien gefunden

markusg 16.04.2012 17:41
internet noch immer langsam?

iN sM0ke 16.04.2012 17:59
ja
die verbindung geht immer wieder für 20-30sec weg
außerdem dauert es immer 5sec bis der klick auf ein link überhaupt anfängt zu laden.. nach diesen 5sec läd der dann die seite ganz normal innerhalb einer sec

bei youtube videos läd er immer 5sec in fullspeed.. anschließen 20-30sec extrem langsam.. höhstens 2-3sec des videos

markusg 16.04.2012 18:06
starte mal router bzw modem neu, gucke ob es sich bessert

iN sM0ke 16.04.2012 18:10
habe es schon mehrere male gemacht.
Mein mitbewohner hat keinerlei probleme.. er benutzt die selbe leitung.. nur an meinem netbook läuft es seit ein paar tagen nicht mehr
genauer gesagt, seit dem Tag wo ich diesen Fullscreen bekommen hab, den ich nicht mehr schließen konnte und aufgefordert wurde was zu zahlen.

gestern abend liefs für ne stunde super.. anschließend kamen wieder die verbindungsstörungen

markusg 16.04.2012 18:12
download tdss killer:
http://www.trojaner-board.de/82358-t...entfernen.html
Klicke auf Change parameters
• Setze die Haken bei Verify driver digital signatures und Detect TDLFS file system
• Klick auf OK und anschließend auf Start scan
- bei funden erst mal immer skip wählen, log posten

iN sM0ke 16.04.2012 18:18
Code:
19:14:58.0203 6044        TDSS rootkit removing tool 2.7.28.0 Apr 10 2012 16:54:05
19:15:00.0207 6044        ============================================================
19:15:00.0207 6044        Current date / time: 2012/04/16 19:15:00.0207
19:15:00.0207 6044        SystemInfo:
19:15:00.0207 6044       
19:15:00.0207 6044        OS Version: 6.1.7601 ServicePack: 1.0
19:15:00.0207 6044        Product type: Workstation
19:15:00.0208 6044        ComputerName: EMI-PC
19:15:00.0223 6044        UserName: Emi
19:15:00.0223 6044        Windows directory: C:\windows
19:15:00.0223 6044        System windows directory: C:\windows
19:15:00.0223 6044        Processor architecture: Intel x86
19:15:00.0223 6044        Number of processors: 2
19:15:00.0224 6044        Page size: 0x1000
19:15:00.0224 6044        Boot type: Normal boot
19:15:00.0224 6044        ============================================================
19:15:01.0717 6044        Drive \Device\Harddisk0\DR0 - Size: 0x3A38B2E000 (232.89 Gb), SectorSize: 0x200, Cylinders: 0x76C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
19:15:01.0727 6044        \Device\Harddisk0\DR0:
19:15:01.0727 6044        MBR used
19:15:01.0727 6044        \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0xC800000
19:15:01.0727 6044        \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0xE600800, BlocksNum 0xEBBB000
19:15:01.0917 6044        Initialize success
19:15:01.0917 6044        ============================================================
19:15:26.0719 3168        ============================================================
19:15:26.0719 3168        Scan started
19:15:26.0719 3168        Mode: Manual; SigCheck; TDLFS;
19:15:26.0719 3168        ============================================================
19:15:27.0764 3168        1394ohci        (1b133875b8aa8ac48969bd3458afe9f5) C:\windows\system32\drivers\1394ohci.sys
19:15:28.0063 3168        1394ohci - ok
19:15:28.0181 3168        ACPI            (cea80c80bed809aa0da6febc04733349) C:\windows\system32\drivers\ACPI.sys
19:15:28.0252 3168        ACPI - ok
19:15:28.0472 3168        AcpiPmi        (1efbc664abff416d1d07db115dcb264f) C:\windows\system32\drivers\acpipmi.sys
19:15:28.0551 3168        AcpiPmi - ok
19:15:28.0674 3168        AdobeFlashPlayerUpdateSvc (0d4c486a24a711a45fd83acdf4d18506) C:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
19:15:28.0732 3168        AdobeFlashPlayerUpdateSvc - ok
19:15:28.0797 3168        adp94xx        (21e785ebd7dc90a06391141aac7892fb) C:\windows\system32\DRIVERS\adp94xx.sys
19:15:28.0877 3168        adp94xx - ok
19:15:28.0917 3168        adpahci        (0c676bc278d5b59ff5abd57bbe9123f2) C:\windows\system32\DRIVERS\adpahci.sys
19:15:28.0977 3168        adpahci - ok
19:15:29.0007 3168        adpu320        (7c7b5ee4b7b822ec85321fe23a27db33) C:\windows\system32\DRIVERS\adpu320.sys
19:15:29.0057 3168        adpu320 - ok
19:15:29.0107 3168        AeLookupSvc    (8b5eefeec1e6d1a72a06c526628ad161) C:\windows\System32\aelupsvc.dll
19:15:29.0177 3168        AeLookupSvc - ok
19:15:29.0297 3168        AFD            (9ebbba55060f786f0fcaa3893bfa2806) C:\windows\system32\drivers\afd.sys
19:15:29.0397 3168        AFD - ok
19:15:29.0477 3168        agp440          (507812c3054c21cef746b6ee3d04dd6e) C:\windows\system32\drivers\agp440.sys
19:15:29.0527 3168        agp440 - ok
19:15:29.0597 3168        aic78xx        (8b30250d573a8f6b4bd23195160d8707) C:\windows\system32\DRIVERS\djsvs.sys
19:15:29.0647 3168        aic78xx - ok
19:15:29.0717 3168        ALG            (18a54e132947cd98fea9accc57f98f13) C:\windows\System32\alg.exe
19:15:29.0797 3168        ALG - ok
19:15:29.0897 3168        aliide          (0d40bcf52ea90fc7df2aeab6503dea44) C:\windows\system32\drivers\aliide.sys
19:15:29.0947 3168        aliide - ok
19:15:29.0987 3168        amdagp          (3c6600a0696e90a463771c7422e23ab5) C:\windows\system32\drivers\amdagp.sys
19:15:30.0037 3168        amdagp - ok
19:15:30.0127 3168        amdide          (cd5914170297126b6266860198d1d4f0) C:\windows\system32\drivers\amdide.sys
19:15:30.0167 3168        amdide - ok
19:15:30.0217 3168        AmdK8          (00dda200d71bac534bf56a9db5dfd666) C:\windows\system32\DRIVERS\amdk8.sys
19:15:30.0287 3168        AmdK8 - ok
19:15:30.0347 3168        AmdPPM          (3cbf30f5370fda40dd3e87df38ea53b6) C:\windows\system32\DRIVERS\amdppm.sys
19:15:30.0427 3168        AmdPPM - ok
19:15:30.0507 3168        amdsata        (d320bf87125326f996d4904fe24300fc) C:\windows\system32\drivers\amdsata.sys
19:15:30.0557 3168        amdsata - ok
19:15:30.0607 3168        amdsbs          (ea43af0c423ff267355f74e7a53bdaba) C:\windows\system32\DRIVERS\amdsbs.sys
19:15:30.0667 3168        amdsbs - ok
19:15:30.0687 3168        amdxata        (46387fb17b086d16dea267d5be23a2f2) C:\windows\system32\drivers\amdxata.sys
19:15:30.0737 3168        amdxata - ok
19:15:30.0797 3168        AppID          (aea177f783e20150ace5383ee368da19) C:\windows\system32\drivers\appid.sys
19:15:30.0917 3168        AppID - ok
19:15:31.0007 3168        AppIDSvc        (62a9c86cb6085e20db4823e4e97826f5) C:\windows\System32\appidsvc.dll
19:15:31.0137 3168        AppIDSvc - ok
19:15:31.0257 3168        Appinfo        (fb1959012294d6ad43e5304df65e3c26) C:\windows\System32\appinfo.dll
19:15:31.0367 3168        Appinfo - ok
19:15:31.0507 3168        arc            (2932004f49677bd84dbc72edb754ffb3) C:\windows\system32\DRIVERS\arc.sys
19:15:31.0557 3168        arc - ok
19:15:31.0587 3168        arcsas          (5d6f36c46fd283ae1b57bd2e9feb0bc7) C:\windows\system32\DRIVERS\arcsas.sys
19:15:31.0647 3168        arcsas - ok
19:15:31.0747 3168        AsUpIO          (a9a565c669786c402752f609afdd0dd5) C:\windows\system32\drivers\AsUpIO.sys
19:15:32.0497 3168        AsUpIO - ok
19:15:32.0707 3168        AsusService    (fc88820cf404af740661ac2aba01f8d5) C:\Windows\System32\AsusService.exe
19:15:32.0757 3168        AsusService - ok
19:15:32.0837 3168        aswFsBlk        (0ae43c6c411254049279c2ee55630f95) C:\windows\system32\drivers\aswFsBlk.sys
19:15:32.0887 3168        aswFsBlk - ok
19:15:33.0027 3168        aswFW          (80beddcbb4a1417cec0c78a61cac0f66) C:\windows\system32\drivers\aswFW.sys
19:15:33.0077 3168        aswFW - ok
19:15:33.0147 3168        aswKbd          (81e695913fefd4e23360a69c0f151797) C:\windows\system32\drivers\aswKbd.sys
19:15:33.0187 3168        aswKbd - ok
19:15:33.0347 3168        aswMonFlt      (6693141560b1615d8dccf0d8eb00087e) C:\windows\system32\drivers\aswMonFlt.sys
19:15:33.0397 3168        aswMonFlt - ok
19:15:33.0567 3168        aswNdis        (7b948e3657bea62e437bc46ca6ef6012) C:\windows\system32\DRIVERS\aswNdis.sys
19:15:33.0617 3168        aswNdis - ok
19:15:33.0727 3168        aswNdis2        (72c8f79d72b4ff6e1627276ddf4b01c9) C:\windows\system32\drivers\aswNdis2.sys
19:15:33.0787 3168        aswNdis2 - ok
19:15:33.0907 3168        aswRdr          (225013c16fe096714d71649ad7a20e8b) C:\windows\System32\Drivers\aswrdr2.sys
19:15:33.0967 3168        aswRdr - ok
19:15:34.0057 3168        aswSnx          (dcb199b967375753b5019ec15f008f53) C:\windows\system32\drivers\aswSnx.sys
19:15:34.0147 3168        aswSnx - ok
19:15:34.0247 3168        aswSP          (b32873e5a1443c0a1e322266e203bf10) C:\windows\system32\drivers\aswSP.sys
19:15:34.0297 3168        aswSP - ok
19:15:34.0387 3168        aswTdi          (6ff544175a9180c5d88534d3d9c9a9f7) C:\windows\system32\drivers\aswTdi.sys
19:15:34.0427 3168        aswTdi - ok
19:15:34.0517 3168        AsyncMac        (add2ade1c2b285ab8378d2daaf991481) C:\windows\system32\DRIVERS\asyncmac.sys
19:15:34.0627 3168        AsyncMac - ok
19:15:34.0767 3168        atapi          (338c86357871c167a96ab976519bf59e) C:\windows\system32\drivers\atapi.sys
19:15:34.0818 3168        atapi - ok
19:15:35.0038 3168        athr            (b01751cc563aecac09bbe36aaa21fbef) C:\windows\system32\DRIVERS\athr.sys
19:15:35.0177 3168        athr - ok
19:15:35.0347 3168        AudioEndpointBuilder (ce3b4e731638d2ef62fcb419be0d39f0) C:\windows\System32\Audiosrv.dll
19:15:35.0467 3168        AudioEndpointBuilder - ok
19:15:35.0500 3168        Audiosrv        (ce3b4e731638d2ef62fcb419be0d39f0) C:\windows\System32\Audiosrv.dll
19:15:35.0611 3168        Audiosrv - ok
19:15:35.0734 3168        avast! Antivirus (4041d31508a2a084dfb42c595854090f) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
19:15:35.0775 3168        avast! Antivirus - ok
19:15:35.0905 3168        avast! Firewall (7d465549dfb0eca6601e9609c72cd20a) C:\Program Files\AVAST Software\Avast\afwServ.exe
19:15:35.0955 3168        avast! Firewall - ok
19:15:36.0075 3168        AxInstSV        (6e30d02aac9cac84f421622e3a2f6178) C:\windows\System32\AxInstSV.dll
19:15:36.0155 3168        AxInstSV - ok
19:15:36.0265 3168        b06bdrv        (1a231abec60fd316ec54c66715543cec) C:\windows\system32\DRIVERS\bxvbdx.sys
19:15:36.0345 3168        b06bdrv - ok
19:15:36.0425 3168        b57nd60x        (bd8869eb9cde6bbe4508d869929869ee) C:\windows\system32\DRIVERS\b57nd60x.sys
19:15:36.0515 3168        b57nd60x - ok
19:15:36.0655 3168        BBSvc          (01a24b415926bb5f772dbe12459d97de) C:\Program Files\Microsoft\BingBar\BBSvc.EXE
19:15:36.0705 3168        BBSvc - ok
19:15:36.0755 3168        BBUpdate        (785de7abda13309d6065305542829e76) C:\Program Files\Microsoft\BingBar\SeaPort.EXE
19:15:36.0815 3168        BBUpdate - ok
19:15:36.0890 3168        BDESVC          (ee1e9c3bb8228ae423dd38db69128e71) C:\windows\System32\bdesvc.dll
19:15:36.0958 3168        BDESVC - ok
19:15:37.0042 3168        Beep            (505506526a9d467307b3c393dedaf858) C:\windows\system32\drivers\Beep.sys
19:15:37.0149 3168        Beep - ok
19:15:37.0225 3168        BFE            (1e2bac209d184bb851e1a187d8a29136) C:\windows\System32\bfe.dll
19:15:37.0362 3168        BFE - ok
19:15:37.0468 3168        BITS            (e585445d5021971fae10393f0f1c3961) C:\windows\system32\qmgr.dll
19:15:37.0632 3168        BITS - ok
19:15:37.0689 3168        blbdrive        (2287078ed48fcfc477b05b20cf38f36f) C:\windows\system32\DRIVERS\blbdrive.sys
19:15:37.0763 3168        blbdrive - ok
19:15:37.0866 3168        bowser          (8f2da3028d5fcbd1a060a3de64cd6506) C:\windows\system32\DRIVERS\bowser.sys
19:15:37.0945 3168        bowser - ok
19:15:37.0996 3168        BrFiltLo        (9f9acc7f7ccde8a15c282d3f88b43309) C:\windows\system32\DRIVERS\BrFiltLo.sys
19:15:38.0079 3168        BrFiltLo - ok
19:15:38.0109 3168        BrFiltUp        (56801ad62213a41f6497f96dee83755a) C:\windows\system32\DRIVERS\BrFiltUp.sys
19:15:38.0180 3168        BrFiltUp - ok
19:15:38.0262 3168        BridgeMP        (77361d72a04f18809d0efb6cceb74d4b) C:\windows\system32\DRIVERS\bridge.sys
19:15:38.0417 3168        BridgeMP - ok
19:15:38.0593 3168        Browser        (6e11f33d14d020f58d5e02e4d67dfa19) C:\windows\System32\browser.dll
19:15:38.0712 3168        Browser - ok
19:15:38.0821 3168        Brserid        (845b8ce732e67f3b4133164868c666ea) C:\windows\System32\Drivers\Brserid.sys
19:15:38.0904 3168        Brserid - ok
19:15:38.0986 3168        BrSerWdm        (203f0b1e73adadbbb7b7b1fabd901f6b) C:\windows\System32\Drivers\BrSerWdm.sys
19:15:39.0047 3168        BrSerWdm - ok
19:15:39.0090 3168        BrUsbMdm        (bd456606156ba17e60a04e18016ae54b) C:\windows\System32\Drivers\BrUsbMdm.sys
19:15:39.0163 3168        BrUsbMdm - ok
19:15:39.0239 3168        BrUsbSer        (af72ed54503f717a43268b3cc5faec2e) C:\windows\System32\Drivers\BrUsbSer.sys
19:15:39.0322 3168        BrUsbSer - ok
19:15:39.0340 3168        BTHMODEM        (ed3df7c56ce0084eb2034432fc56565a) C:\windows\system32\DRIVERS\bthmodem.sys
19:15:39.0414 3168        BTHMODEM - ok
19:15:39.0500 3168        bthserv        (1df19c96eef6c29d1c3e1a8678e07190) C:\windows\system32\bthserv.dll
19:15:39.0616 3168        bthserv - ok
19:15:39.0635 3168        btwavdt - ok
19:15:39.0658 3168        btwrchid - ok
19:15:39.0811 3168        catchme - ok
19:15:39.0921 3168        cdfs            (77ea11b065e0a8ab902d78145ca51e10) C:\windows\system32\DRIVERS\cdfs.sys
19:15:40.0021 3168        cdfs - ok
19:15:40.0141 3168        cdrom          (be167ed0fdb9c1fa1133953c18d5a6c9) C:\windows\system32\drivers\cdrom.sys
19:15:40.0241 3168        cdrom - ok
19:15:40.0341 3168        CertPropSvc    (319c6b309773d063541d01df8ac6f55f) C:\windows\System32\certprop.dll
19:15:40.0441 3168        CertPropSvc - ok
19:15:40.0491 3168        circlass        (3fe3fe94a34df6fb06e6418d0f6a0060) C:\windows\system32\DRIVERS\circlass.sys
19:15:40.0541 3168        circlass - ok
19:15:40.0601 3168        CLFS            (635181e0e9bbf16871bf5380d71db02d) C:\windows\system32\CLFS.sys
19:15:40.0651 3168        CLFS - ok
19:15:40.0751 3168        clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
19:15:40.0813 3168        clr_optimization_v2.0.50727_32 - ok
19:15:40.0905 3168        clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
19:15:40.0951 3168        clr_optimization_v4.0.30319_32 - ok
19:15:41.0002 3168        CmBatt          (dea805815e587dad1dd2c502220b5616) C:\windows\system32\DRIVERS\CmBatt.sys
19:15:41.0059 3168        CmBatt - ok
19:15:41.0110 3168        cmdide          (c537b1db64d495b9b4717b4d6d9edbf2) C:\windows\system32\drivers\cmdide.sys
19:15:41.0146 3168        cmdide - ok
19:15:41.0210 3168        CNG            (6427525d76f61d0c519b008d3680e8e7) C:\windows\system32\Drivers\cng.sys
19:15:41.0278 3168        CNG - ok
19:15:41.0380 3168        Compbatt        (a6023d3823c37043986713f118a89bee) C:\windows\system32\DRIVERS\compbatt.sys
19:15:41.0421 3168        Compbatt - ok
19:15:41.0472 3168        CompositeBus    (cbe8c58a8579cfe5fccf809e6f114e89) C:\windows\system32\drivers\CompositeBus.sys
19:15:41.0537 3168        CompositeBus - ok
19:15:41.0641 3168        COMSysApp - ok
19:15:41.0702 3168        crcdisk        (2c4ebcfc84a9b44f209dff6c6e6c61d1) C:\windows\system32\DRIVERS\crcdisk.sys
19:15:41.0739 3168        crcdisk - ok
19:15:41.0856 3168        CryptSvc        (a585bebf7d054bd9618eda0922d5484a) C:\windows\system32\cryptsvc.dll
19:15:41.0996 3168        CryptSvc - ok
19:15:42.0146 3168        cvhsvc          (72794d112cbaff3bc0c29bf7350d4741) C:\Program Files\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
19:15:42.0246 3168        cvhsvc - ok
19:15:42.0346 3168        DcomLaunch      (7660f01d3b38aca1747e397d21d790af) C:\windows\system32\rpcss.dll
19:15:42.0496 3168        DcomLaunch - ok
19:15:42.0536 3168        defragsvc      (8d6e10a2d9a5eed59562d9b82cf804e1) C:\windows\System32\defragsvc.dll
19:15:42.0636 3168        defragsvc - ok
19:15:42.0756 3168        DfsC            (f024449c97ec1e464aaffda18593db88) C:\windows\system32\Drivers\dfsc.sys
19:15:42.0860 3168        DfsC - ok
19:15:42.0976 3168        Dhcp            (e9e01eb683c132f7fa27cd607b8a2b63) C:\windows\system32\dhcpcore.dll
19:15:43.0085 3168        Dhcp - ok
19:15:43.0137 3168        discache        (1a050b0274bfb3890703d490f330c0da) C:\windows\system32\drivers\discache.sys
19:15:43.0227 3168        discache - ok
19:15:43.0316 3168        Disk            (565003f326f99802e68ca78f2a68e9ff) C:\windows\system32\DRIVERS\disk.sys
19:15:43.0354 3168        Disk - ok
19:15:43.0428 3168        Dnscache        (33ef4861f19a0736b11314aad9ae28d0) C:\windows\System32\dnsrslvr.dll
19:15:43.0498 3168        Dnscache - ok
19:15:43.0558 3168        dot3svc        (366ba8fb4b7bb7435e3b9eacb3843f67) C:\windows\System32\dot3svc.dll
19:15:43.0662 3168        dot3svc - ok
19:15:43.0706 3168        DPS            (8ec04ca86f1d68da9e11952eb85973d6) C:\windows\system32\dps.dll
19:15:43.0799 3168        DPS - ok
19:15:43.0919 3168        drmkaud        (b918e7c5f9bf77202f89e1a9539f2eb4) C:\windows\system32\drivers\drmkaud.sys
19:15:43.0989 3168        drmkaud - ok
19:15:44.0079 3168        DXGKrnl        (23f5d28378a160352ba8f817bd8c71cb) C:\windows\System32\drivers\dxgkrnl.sys
19:15:44.0199 3168        DXGKrnl - ok
19:15:44.0279 3168        EapHost        (8600142fa91c1b96367d3300ad0f3f3a) C:\windows\System32\eapsvc.dll
19:15:44.0379 3168        EapHost - ok
19:15:44.0555 3168        ebdrv          (024e1b5cac09731e4d868e64dbfb4ab0) C:\windows\system32\DRIVERS\evbdx.sys
19:15:44.0733 3168        ebdrv - ok
19:15:44.0798 3168        EFS            (81951f51e318aecc2d68559e47485cc4) C:\windows\System32\lsass.exe
19:15:44.0876 3168        EFS - ok
19:15:45.0000 3168        elxstor        (0ed67910c8c326796faa00b2bf6d9d3c) C:\windows\system32\DRIVERS\elxstor.sys
19:15:45.0058 3168        elxstor - ok
19:15:45.0101 3168        ErrDev          (8fc3208352dd3912c94367a206ab3f11) C:\windows\system32\drivers\errdev.sys
19:15:45.0154 3168        ErrDev - ok
19:15:45.0284 3168        EventSystem    (f6916efc29d9953d5d0df06882ae8e16) C:\windows\system32\es.dll
19:15:45.0422 3168        EventSystem - ok
19:15:45.0475 3168        exfat          (2dc9108d74081149cc8b651d3a26207f) C:\windows\system32\drivers\exfat.sys
19:15:45.0561 3168        exfat - ok
19:15:45.0613 3168        fastfat        (7e0ab74553476622fb6ae36f73d97d35) C:\windows\system32\drivers\fastfat.sys
19:15:45.0705 3168        fastfat - ok
19:15:45.0830 3168        Fax            (967ea5b213e9984cbe270205df37755b) C:\windows\system32\fxssvc.exe
19:15:45.0908 3168        Fax - ok
19:15:45.0973 3168        fdc            (e817a017f82df2a1f8cfdbda29388b29) C:\windows\system32\DRIVERS\fdc.sys
19:15:46.0041 3168        fdc - ok
19:15:46.0101 3168        fdPHost        (f3222c893bd2f5821a0179e5c71e88fb) C:\windows\system32\fdPHost.dll
19:15:46.0201 3168        fdPHost - ok
19:15:46.0250 3168        FDResPub        (7dbe8cbfe79efbdeb98c9fb08d3a9a5b) C:\windows\system32\fdrespub.dll
19:15:46.0349 3168        FDResPub - ok
19:15:46.0379 3168        FileInfo        (6cf00369c97f3cf563be99be983d13d8) C:\windows\system32\drivers\fileinfo.sys
19:15:46.0416 3168        FileInfo - ok
19:15:46.0443 3168        Filetrace      (42c51dc94c91da21cb9196eb64c45db9) C:\windows\system32\drivers\filetrace.sys
19:15:46.0546 3168        Filetrace - ok
19:15:46.0584 3168        flpydisk        (87907aa70cb3c56600f1c2fb8841579b) C:\windows\system32\DRIVERS\flpydisk.sys
19:15:46.0684 3168        flpydisk - ok
19:15:46.0775 3168        FltMgr          (7520ec808e0c35e0ee6f841294316653) C:\windows\system32\drivers\fltmgr.sys
19:15:46.0837 3168        FltMgr - ok
19:15:46.0941 3168        FontCache      (b3a5ec6b6b6673db7e87c2bcdbddc074) C:\windows\system32\FntCache.dll
19:15:47.0084 3168        FontCache - ok
19:15:47.0179 3168        FontCache3.0.0.0 (e56f39f6b7fda0ac77a79b0fd3de1a2f) C:\windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
19:15:47.0221 3168        FontCache3.0.0.0 - ok
19:15:47.0287 3168        FsDepends      (1a16b57943853e598cff37fe2b8cbf1d) C:\windows\system32\drivers\FsDepends.sys
19:15:47.0339 3168        FsDepends - ok
19:15:47.0436 3168        fssfltr        (d909075fa72c090f27aa926c32cb4612) C:\windows\system32\DRIVERS\fssfltr.sys
19:15:47.0494 3168        fssfltr - ok
19:15:47.0623 3168        fsssvc          (4ce9dac1518ff7e77bd213e6394b9d77) C:\Program Files\Windows Live\Family Safety\fsssvc.exe
19:15:47.0738 3168        fsssvc - ok
19:15:47.0852 3168        Fs_Rec          (7dae5ebcc80e45d3253f4923dc424d05) C:\windows\system32\drivers\Fs_Rec.sys
19:15:47.0897 3168        Fs_Rec - ok
19:15:48.0011 3168        fvevol          (8a73e79089b282100b9393b644cb853b) C:\windows\system32\DRIVERS\fvevol.sys
19:15:48.0072 3168        fvevol - ok
19:15:48.0170 3168        gagp30kx        (65ee0c7a58b65e74ae05637418153938) C:\windows\system32\DRIVERS\gagp30kx.sys
19:15:48.0227 3168        gagp30kx - ok
19:15:48.0304 3168        gpsvc          (e897eaf5ed6ba41e081060c9b447a673) C:\windows\System32\gpsvc.dll
19:15:48.0474 3168        gpsvc - ok
19:15:48.0624 3168        gupdate        (f02a533f517eb38333cb12a9e8963773) C:\Program Files\Google\Update\GoogleUpdate.exe
19:15:48.0654 3168        gupdate - ok
19:15:48.0664 3168        gupdatem        (f02a533f517eb38333cb12a9e8963773) C:\Program Files\Google\Update\GoogleUpdate.exe
19:15:48.0704 3168        gupdatem - ok
19:15:48.0754 3168        gusvc          (c1b577b2169900f4cf7190c39f085794) C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
19:15:48.0804 3168        gusvc - ok
19:15:48.0904 3168        hcw85cir        (c44e3c2bab6837db337ddee7544736db) C:\windows\system32\drivers\hcw85cir.sys
19:15:48.0944 3168        hcw85cir - ok
19:15:49.0074 3168        HdAudAddService (a5ef29d5315111c80a5c1abad14c8972) C:\windows\system32\drivers\HdAudio.sys
19:15:49.0144 3168        HdAudAddService - ok
19:15:49.0254 3168        HDAudBus        (9036377b8a6c15dc2eec53e489d159b5) C:\windows\system32\drivers\HDAudBus.sys
19:15:49.0324 3168        HDAudBus - ok
19:15:49.0364 3168        HidBatt        (1d58a7f3e11a9731d0eaaaa8405acc36) C:\windows\system32\DRIVERS\HidBatt.sys
19:15:49.0404 3168        HidBatt - ok
19:15:49.0424 3168        HidBth          (89448f40e6df260c206a193a4683ba78) C:\windows\system32\DRIVERS\hidbth.sys
19:15:49.0484 3168        HidBth - ok
19:15:49.0504 3168        HidIr          (cf50b4cf4a4f229b9f3c08351f99ca5e) C:\windows\system32\DRIVERS\hidir.sys
19:15:49.0564 3168        HidIr - ok
19:15:49.0614 3168        hidserv        (2bc6f6a1992b3a77f5f41432ca6b3b6b) C:\windows\System32\hidserv.dll
19:15:49.0714 3168        hidserv - ok
19:15:49.0774 3168        HidUsb          (10c19f8290891af023eaec0832e1eb4d) C:\windows\system32\DRIVERS\hidusb.sys
19:15:49.0854 3168        HidUsb - ok
19:15:49.0944 3168        hkmsvc          (196b4e3f4cccc24af836ce58facbb699) C:\windows\system32\kmsvc.dll
19:15:50.0034 3168        hkmsvc - ok
19:15:50.0084 3168        HomeGroupListener (6658f4404de03d75fe3ba09f7aba6a30) C:\windows\system32\ListSvc.dll
19:15:50.0144 3168        HomeGroupListener - ok
19:15:50.0184 3168        HomeGroupProvider (dbc02d918fff1cad628acbe0c0eaa8e8) C:\windows\system32\provsvc.dll
19:15:50.0254 3168        HomeGroupProvider - ok
19:15:50.0344 3168        HpSAMD          (295fdc419039090eb8b49ffdbb374549) C:\windows\system32\drivers\HpSAMD.sys
19:15:50.0394 3168        HpSAMD - ok
19:15:50.0484 3168        HTTP            (871917b07a141bff43d76d8844d48106) C:\windows\system32\drivers\HTTP.sys
19:15:50.0584 3168        HTTP - ok
19:15:50.0644 3168        hwpolicy        (0c4e035c7f105f1299258c90886c64c5) C:\windows\system32\drivers\hwpolicy.sys
19:15:50.0684 3168        hwpolicy - ok
19:15:50.0774 3168        i8042prt        (f151f0bdc47f4a28b1b20a0818ea36d6) C:\windows\system32\drivers\i8042prt.sys
19:15:50.0834 3168        i8042prt - ok
19:15:50.0964 3168        IAANTMON        (7548066df68a8a1a56b043359f915f37) C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
19:15:51.0044 3168        IAANTMON - ok
19:15:51.0144 3168        iaStor          (d483687eace0c065ee772481a96e05f5) C:\windows\system32\DRIVERS\iaStor.sys
19:15:51.0204 3168        iaStor - ok
19:15:51.0294 3168        iaStorV        (5cd5f9a5444e6cdcb0ac89bd62d8b76e) C:\windows\system32\drivers\iaStorV.sys
19:15:51.0344 3168        iaStorV - ok
19:15:51.0414 3168        idsvc          (c521d7eb6497bb1af6afa89e322fb43c) C:\windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
19:15:51.0504 3168        idsvc - ok
19:15:51.0714 3168        igfx            (6a2a8e70c4ff9cd870869b025c6478e3) C:\windows\system32\DRIVERS\igdkmd32.sys
19:15:51.0964 3168        igfx - ok
19:15:52.0074 3168        iirsp          (4173ff5708f3236cf25195fecd742915) C:\windows\system32\DRIVERS\iirsp.sys
19:15:52.0124 3168        iirsp - ok
19:15:52.0244 3168        IKEEXT          (f95622f161474511b8d80d6b093aa610) C:\windows\System32\ikeext.dll
19:15:52.0394 3168        IKEEXT - ok
19:15:52.0594 3168        IntcAzAudAddService (bf9866875edf86aae24dd8bd9418deff) C:\windows\system32\drivers\RTKVHDA.sys
19:15:52.0784 3168        IntcAzAudAddService - ok
19:15:52.0854 3168        intelide        (a0f12f2c9ba6c72f3987ce780e77c130) C:\windows\system32\drivers\intelide.sys
19:15:52.0904 3168        intelide - ok
19:15:52.0984 3168        intelppm        (3b514d27bfc4accb4037bc6685f766e0) C:\windows\system32\DRIVERS\intelppm.sys
19:15:53.0044 3168        intelppm - ok
19:15:53.0124 3168        IPBusEnum      (acb364b9075a45c0736e5c47be5cae19) C:\windows\system32\ipbusenum.dll
19:15:53.0224 3168        IPBusEnum - ok
19:15:53.0274 3168        IpFilterDriver  (709d1761d3b19a932ff0238ea6d50200) C:\windows\system32\DRIVERS\ipfltdrv.sys
19:15:53.0404 3168        IpFilterDriver - ok
19:15:53.0504 3168        iphlpsvc        (4d65a07b795d6674312f879d09aa7663) C:\windows\System32\iphlpsvc.dll
19:15:53.0634 3168        iphlpsvc - ok
19:15:53.0674 3168        IPMIDRV        (4bd7134618c1d2a27466a099062547bf) C:\windows\system32\drivers\IPMIDrv.sys
19:15:53.0734 3168        IPMIDRV - ok
19:15:53.0784 3168        IPNAT          (a5fa468d67abcdaa36264e463a7bb0cd) C:\windows\system32\drivers\ipnat.sys
19:15:53.0889 3168        IPNAT - ok
19:15:53.0961 3168        IRENUM          (42996cff20a3084a56017b7902307e9f) C:\windows\system32\drivers\irenum.sys
19:15:54.0024 3168        IRENUM - ok
19:15:54.0068 3168        isapnp          (1f32bb6b38f62f7df1a7ab7292638a35) C:\windows\system32\drivers\isapnp.sys
19:15:54.0108 3168        isapnp - ok
19:15:54.0180 3168        iScsiPrt        (cb7a9abb12b8415bce5d74994c7ba3ae) C:\windows\system32\drivers\msiscsi.sys
19:15:54.0229 3168        iScsiPrt - ok
19:15:54.0312 3168        kbdclass        (adef52ca1aeae82b50df86b56413107e) C:\windows\system32\drivers\kbdclass.sys
19:15:54.0362 3168        kbdclass - ok
19:15:54.0431 3168        kbdhid          (9e3ced91863e6ee98c24794d05e27a71) C:\windows\system32\drivers\kbdhid.sys
19:15:54.0497 3168        kbdhid - ok
19:15:54.0613 3168        kbfiltr        (3eb803312987ff44265c87cb960df6ab) C:\windows\system32\DRIVERS\kbfiltr.sys
19:15:54.0657 3168        kbfiltr - ok
19:15:54.0693 3168        KeyIso          (81951f51e318aecc2d68559e47485cc4) C:\windows\system32\lsass.exe
19:15:54.0755 3168        KeyIso - ok
19:15:54.0807 3168        KSecDD          (f4647bb23db9038a7536cf6b68f4207f) C:\windows\system32\Drivers\ksecdd.sys
19:15:54.0849 3168        KSecDD - ok
19:15:54.0887 3168        KSecPkg        (e73cae53bbb72ba26918492c6b4c229d) C:\windows\system32\Drivers\ksecpkg.sys
19:15:54.0947 3168        KSecPkg - ok
19:15:55.0007 3168        KtmRm          (89a7b9cc98d0d80c6f31b91c0a310fcd) C:\windows\system32\msdtckrm.dll
19:15:55.0117 3168        KtmRm - ok
19:15:55.0167 3168        L1C            (d1f734d9a7aaf078d88ceb51900699a7) C:\windows\system32\DRIVERS\L1C62x86.sys
19:15:55.0207 3168        L1C - ok
19:15:55.0267 3168        LanmanServer    (d64af876d53eca3668bb97b51b4e70ab) C:\windows\System32\srvsvc.dll
19:15:55.0407 3168        LanmanServer - ok
19:15:55.0517 3168        LanmanWorkstation (58405e4f68ba8e4057c6e914f326aba2) C:\windows\System32\wkssvc.dll
19:15:55.0637 3168        LanmanWorkstation - ok
19:15:55.0717 3168        Lavasoft Kernexplorer - ok
19:15:55.0847 3168        lltdio          (f7611ec07349979da9b0ae1f18ccc7a6) C:\windows\system32\DRIVERS\lltdio.sys
19:15:55.0956 3168        lltdio - ok
19:15:56.0007 3168        lltdsvc        (5700673e13a2117fa3b9020c852c01e2) C:\windows\System32\lltdsvc.dll
19:15:56.0115 3168        lltdsvc - ok
19:15:56.0183 3168        lmhosts        (55ca01ba19d0006c8f2639b6c045e08b) C:\windows\System32\lmhsvc.dll
19:15:56.0295 3168        lmhosts - ok
19:15:56.0416 3168        LSI_FC          (eb119a53ccf2acc000ac71b065b78fef) C:\windows\system32\DRIVERS\lsi_fc.sys
19:15:56.0462 3168        LSI_FC - ok
19:15:56.0502 3168        LSI_SAS        (8ade1c877256a22e49b75d1cc9161f9c) C:\windows\system32\DRIVERS\lsi_sas.sys
19:15:56.0542 3168        LSI_SAS - ok
19:15:56.0632 3168        LSI_SAS2        (dc9dc3d3daa0e276fd2ec262e38b11e9) C:\windows\system32\DRIVERS\lsi_sas2.sys
19:15:56.0676 3168        LSI_SAS2 - ok
19:15:56.0706 3168        LSI_SCSI        (0a036c7d7cab643a7f07135ac47e0524) C:\windows\system32\DRIVERS\lsi_scsi.sys
19:15:56.0751 3168        LSI_SCSI - ok
19:15:56.0784 3168        luafv          (6703e366cc18d3b6e534f5cf7df39cee) C:\windows\system32\drivers\luafv.sys
19:15:56.0898 3168        luafv - ok
19:15:57.0018 3168        megasas        (0fff5b045293002ab38eb1fd1fc2fb74) C:\windows\system32\DRIVERS\megasas.sys
19:15:57.0068 3168        megasas - ok
19:15:57.0138 3168        MegaSR          (dcbab2920c75f390caf1d29f675d03d6) C:\windows\system32\DRIVERS\MegaSR.sys
19:15:57.0198 3168        MegaSR - ok
19:15:57.0268 3168        MMCSS          (146b6f43a673379a3c670e86d89be5ea) C:\windows\system32\mmcss.dll
19:15:57.0368 3168        MMCSS - ok
19:15:57.0428 3168        Modem          (f001861e5700ee84e2d4e52c712f4964) C:\windows\system32\drivers\modem.sys
19:15:57.0518 3168        Modem - ok
19:15:57.0588 3168        monitor        (79d10964de86b292320e9dfe02282a23) C:\windows\system32\DRIVERS\monitor.sys
19:15:57.0668 3168        monitor - ok
19:15:57.0778 3168        mouclass        (fb18cc1d4c2e716b6b903b0ac0cc0609) C:\windows\system32\DRIVERS\mouclass.sys
19:15:57.0818 3168        mouclass - ok
19:15:57.0888 3168        mouhid          (2c388d2cd01c9042596cf3c8f3c7b24d) C:\windows\system32\DRIVERS\mouhid.sys
19:15:57.0963 3168        mouhid - ok
19:15:58.0016 3168        mountmgr        (fc8771f45ecccfd89684e38842539b9b) C:\windows\system32\drivers\mountmgr.sys
19:15:58.0055 3168        mountmgr - ok
19:15:58.0088 3168        mpio            (2d699fb6e89ce0d8da14ecc03b3edfe0) C:\windows\system32\drivers\mpio.sys
19:15:58.0129 3168        mpio - ok
19:15:58.0165 3168        mpsdrv          (ad2723a7b53dd1aacae6ad8c0bfbf4d0) C:\windows\system32\drivers\mpsdrv.sys
19:15:58.0265 3168        mpsdrv - ok
19:15:58.0340 3168        MpsSvc          (9835584e999d25004e1ee8e5f3e3b881) C:\windows\system32\mpssvc.dll
19:15:58.0474 3168        MpsSvc - ok
19:15:58.0548 3168        MRxDAV          (ceb46ab7c01c9f825f8cc6babc18166a) C:\windows\system32\drivers\mrxdav.sys
19:15:58.0631 3168        MRxDAV - ok
19:15:58.0746 3168        mrxsmb          (5d16c921e3671636c0eba3bbaac5fd25) C:\windows\system32\DRIVERS\mrxsmb.sys
19:15:58.0831 3168        mrxsmb - ok
19:15:58.0880 3168        mrxsmb10        (6d17a4791aca19328c685d256349fefc) C:\windows\system32\DRIVERS\mrxsmb10.sys
19:15:58.0930 3168        mrxsmb10 - ok
19:15:58.0970 3168        mrxsmb20        (b81f204d146000be76651a50670a5e9e) C:\windows\system32\DRIVERS\mrxsmb20.sys
19:15:59.0010 3168        mrxsmb20 - ok
19:15:59.0050 3168        msahci          (012c5f4e9349e711e11e0f19a8589f0a) C:\windows\system32\drivers\msahci.sys
19:15:59.0080 3168        msahci - ok
19:15:59.0120 3168        msdsm          (55055f8ad8be27a64c831322a780a228) C:\windows\system32\drivers\msdsm.sys
19:15:59.0160 3168        msdsm - ok
19:15:59.0200 3168        MSDTC          (e1bce74a3bd9902b72599c0192a07e27) C:\windows\System32\msdtc.exe
19:15:59.0260 3168        MSDTC - ok
19:15:59.0360 3168        Msfs            (daefb28e3af5a76abcc2c3078c07327f) C:\windows\system32\drivers\Msfs.sys
19:15:59.0450 3168        Msfs - ok
19:15:59.0500 3168        mshidkmdf      (3e1e5767043c5af9367f0056295e9f84) C:\windows\System32\drivers\mshidkmdf.sys
19:15:59.0594 3168        mshidkmdf - ok
19:15:59.0645 3168        msisadrv        (0a4e5757ae09fa9622e3158cc1aef114) C:\windows\system32\drivers\msisadrv.sys
19:15:59.0680 3168        msisadrv - ok
19:15:59.0766 3168        MSiSCSI        (90f7d9e6b6f27e1a707d4a297f077828) C:\windows\system32\iscsiexe.dll
19:15:59.0876 3168        MSiSCSI - ok
19:15:59.0894 3168        msiserver - ok
19:15:59.0950 3168        MSKSSRV        (8c0860d6366aaffb6c5bb9df9448e631) C:\windows\system32\drivers\MSKSSRV.sys
19:16:00.0035 3168        MSKSSRV - ok
19:16:00.0092 3168        MSPCLOCK        (3ea8b949f963562cedbb549eac0c11ce) C:\windows\system32\drivers\MSPCLOCK.sys
19:16:00.0176 3168        MSPCLOCK - ok
19:16:00.0240 3168        MSPQM          (f456e973590d663b1073e9c463b40932) C:\windows\system32\drivers\MSPQM.sys
19:16:00.0339 3168        MSPQM - ok
19:16:00.0408 3168        MsRPC          (0e008fc4819d238c51d7c93e7b41e560) C:\windows\system32\drivers\MsRPC.sys
19:16:00.0452 3168        MsRPC - ok
19:16:00.0508 3168        mssmbios        (fc6b9ff600cc585ea38b12589bd4e246) C:\windows\system32\drivers\mssmbios.sys
19:16:00.0545 3168        mssmbios - ok
19:16:00.0626 3168        MSTEE          (b42c6b921f61a6e55159b8be6cd54a36) C:\windows\system32\drivers\MSTEE.sys
19:16:00.0703 3168        MSTEE - ok
19:16:00.0734 3168        MTConfig        (33599130f44e1f34631cea241de8ac84) C:\windows\system32\DRIVERS\MTConfig.sys
19:16:00.0789 3168        MTConfig - ok
19:16:00.0844 3168        Mup            (159fad02f64e6381758c990f753bcc80) C:\windows\system32\Drivers\mup.sys
19:16:00.0882 3168        Mup - ok
19:16:00.0946 3168        napagent        (61d57a5d7c6d9afe10e77dae6e1b445e) C:\windows\system32\qagentRT.dll
19:16:01.0037 3168        napagent - ok
19:16:01.0177 3168        NativeWifiP    (26384429fcd85d83746f63e798ab1480) C:\windows\system32\DRIVERS\nwifi.sys
19:16:01.0237 3168        NativeWifiP - ok
19:16:01.0347 3168        NDIS            (e7c54812a2aaf43316eb6930c1ffa108) C:\windows\system32\drivers\ndis.sys
19:16:01.0417 3168        NDIS - ok
19:16:01.0497 3168        NdisCap        (0e1787aa6c9191d3d319e8bafe86f80c) C:\windows\system32\DRIVERS\ndiscap.sys
19:16:01.0607 3168        NdisCap - ok
19:16:01.0707 3168        NdisTapi        (e4a8aec125a2e43a9e32afeea7c9c888) C:\windows\system32\DRIVERS\ndistapi.sys
19:16:01.0807 3168        NdisTapi - ok
19:16:01.0937 3168        Ndisuio        (d8a65dafb3eb41cbb622745676fcd072) C:\windows\system32\DRIVERS\ndisuio.sys
19:16:02.0029 3168        Ndisuio - ok
19:16:02.0109 3168        NdisWan        (38fbe267e7e6983311179230facb1017) C:\windows\system32\DRIVERS\ndiswan.sys
19:16:02.0194 3168        NdisWan - ok
19:16:02.0266 3168        NDProxy        (a4bdc541e69674fbff1a8ff00be913f2) C:\windows\system32\drivers\NDProxy.sys
19:16:02.0372 3168        NDProxy - ok
19:16:02.0490 3168        Net Driver HPZ12 (69c503c004f49aee8b8e3067cc047ba7) C:\windows\system32\HPZinw12.dll
19:16:02.0517 3168        Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning
19:16:02.0517 3168        Net Driver HPZ12 - detected UnsignedFile.Multi.Generic (1)
19:16:02.0589 3168        NetBIOS        (80b275b1ce3b0e79909db7b39af74d51) C:\windows\system32\DRIVERS\netbios.sys
19:16:02.0709 3168        NetBIOS - ok
19:16:02.0766 3168        NetBT          (280122ddcf04b378edd1ad54d71c1e54) C:\windows\system32\DRIVERS\netbt.sys
19:16:02.0854 3168        NetBT - ok
19:16:02.0910 3168        Netlogon        (81951f51e318aecc2d68559e47485cc4) C:\windows\system32\lsass.exe
19:16:02.0950 3168        Netlogon - ok
19:16:03.0040 3168        Netman          (7cccfca7510684768da22092d1fa4db2) C:\windows\System32\netman.dll
19:16:03.0150 3168        Netman - ok
19:16:03.0190 3168        netprofm        (8c338238c16777a802d6a9211eb2ba50) C:\windows\System32\netprofm.dll
19:16:03.0300 3168        netprofm - ok
19:16:03.0430 3168        NetTcpPortSharing (f476ec40033cdb91efbe73eb99b8362d) C:\windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
19:16:03.0470 3168        NetTcpPortSharing - ok
19:16:03.0600 3168        nfrd960        (1d85c4b390b0ee09c7a46b91efb2c097) C:\windows\system32\DRIVERS\nfrd960.sys
19:16:03.0650 3168        nfrd960 - ok
19:16:03.0700 3168        NlaSvc          (912084381d30d8b89ec4e293053f4710) C:\windows\System32\nlasvc.dll
19:16:03.0800 3168        NlaSvc - ok
19:16:03.0850 3168        Npfs            (1db262a9f8c087e8153d89bef3d2235f) C:\windows\system32\drivers\Npfs.sys
19:16:03.0930 3168        Npfs - ok
19:16:03.0980 3168        nsi            (ba387e955e890c8a88306d9b8d06bf17) C:\windows\system32\nsisvc.dll
19:16:04.0067 3168        nsi - ok
19:16:04.0117 3168        nsiproxy        (e9a0a4d07e53d8fea2bb8387a3293c58) C:\windows\system32\drivers\nsiproxy.sys
19:16:04.0209 3168        nsiproxy - ok
19:16:04.0311 3168        Ntfs            (81189c3d7763838e55c397759d49007a) C:\windows\system32\drivers\Ntfs.sys
19:16:04.0407 3168        Ntfs - ok
19:16:04.0454 3168        Null            (f9756a98d69098dca8945d62858a812c) C:\windows\system32\drivers\Null.sys
19:16:04.0532 3168        Null - ok
19:16:04.0615 3168        nvraid          (b3e25ee28883877076e0e1ff877d02e0) C:\windows\system32\drivers\nvraid.sys
19:16:04.0668 3168        nvraid - ok
19:16:04.0719 3168        nvstor          (4380e59a170d88c4f1022eff6719a8a4) C:\windows\system32\drivers\nvstor.sys
19:16:04.0760 3168        nvstor - ok
19:16:04.0808 3168        nv_agp          (5a0983915f02bae73267cc2a041f717d) C:\windows\system32\drivers\nv_agp.sys
19:16:04.0848 3168        nv_agp - ok
19:16:04.0890 3168        ohci1394        (08a70a1f2cdde9bb49b885cb817a66eb) C:\windows\system32\drivers\ohci1394.sys
19:16:04.0937 3168        ohci1394 - ok
19:16:05.0067 3168        ose            (9d10f99a6712e28f8acd5641e3a7ea6b) C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
19:16:05.0117 3168        ose - ok
19:16:05.0307 3168        osppsvc        (358a9cca612c68eb2f07ddad4ce1d8d7) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
19:16:05.0607 3168        osppsvc - ok
19:16:05.0707 3168        p2pimsvc        (82a8521ddc60710c3d3d3e7325209bec) C:\windows\system32\pnrpsvc.dll
19:16:05.0787 3168        p2pimsvc - ok
19:16:05.0887 3168        p2psvc          (59c3ddd501e39e006dac31bf55150d91) C:\windows\system32\p2psvc.dll
19:16:05.0969 3168        p2psvc - ok
19:16:06.0032 3168        Parport        (2ea877ed5dd9713c5ac74e8ea7348d14) C:\windows\system32\DRIVERS\parport.sys
19:16:06.0077 3168        Parport - ok
19:16:06.0116 3168        partmgr        (bf8f6af06da75b336f07e23aef97d93b) C:\windows\system32\drivers\partmgr.sys
19:16:06.0154 3168        partmgr - ok
19:16:06.0179 3168        Parvdm          (eb0a59f29c19b86479d36b35983daadc) C:\windows\system32\DRIVERS\parvdm.sys
19:16:06.0238 3168        Parvdm - ok
19:16:06.0279 3168        PcaSvc          (358ab7956d3160000726574083dfc8a6) C:\windows\System32\pcasvc.dll
19:16:06.0340 3168        PcaSvc - ok
19:16:06.0384 3168        pci            (673e55c3498eb970088e812ea820aa8f) C:\windows\system32\drivers\pci.sys
19:16:06.0435 3168        pci - ok
19:16:06.0472 3168        pciide          (afe86f419014db4e5593f69ffe26ce0a) C:\windows\system32\drivers\pciide.sys
19:16:06.0524 3168        pciide - ok
19:16:06.0575 3168        pcmcia          (f396431b31693e71e8a80687ef523506) C:\windows\system32\DRIVERS\pcmcia.sys
19:16:06.0637 3168        pcmcia - ok
19:16:06.0680 3168        pcw            (250f6b43d2b613172035c6747aeeb19f) C:\windows\system32\drivers\pcw.sys
19:16:06.0733 3168        pcw - ok
19:16:06.0815 3168        PEAUTH          (9e0104ba49f4e6973749a02bf41344ed) C:\windows\system32\drivers\peauth.sys
19:16:06.0941 3168        PEAUTH - ok
19:16:07.0091 3168        pla            (414bba67a3ded1d28437eb66aeb8a720) C:\windows\system32\pla.dll
19:16:07.0231 3168        pla - ok
19:16:07.0341 3168        PlugPlay        (ec7bc28d207da09e79b3e9faf8b232ca) C:\windows\system32\umpnpmgr.dll
19:16:07.0431 3168        PlugPlay - ok
19:16:07.0541 3168        Pml Driver HPZ12 (12b4549d515cb26bb8d375038017ca65) C:\windows\system32\HPZipm12.dll
19:16:07.0571 3168        Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning
19:16:07.0571 3168        Pml Driver HPZ12 - detected UnsignedFile.Multi.Generic (1)
19:16:07.0611 3168        PNRPAutoReg    (63ff8572611249931eb16bb8eed6afc8) C:\windows\system32\pnrpauto.dll
19:16:07.0661 3168        PNRPAutoReg - ok
19:16:07.0741 3168        PNRPsvc        (82a8521ddc60710c3d3d3e7325209bec) C:\windows\system32\pnrpsvc.dll
19:16:07.0801 3168        PNRPsvc - ok
19:16:07.0871 3168        PolicyAgent    (53946b69ba0836bd95b03759530c81ec) C:\windows\System32\ipsecsvc.dll
19:16:07.0994 3168        PolicyAgent - ok
19:16:08.0097 3168        Power          (f87d30e72e03d579a5199ccb3831d6ea) C:\windows\system32\umpo.dll
19:16:08.0223 3168        Power - ok
19:16:08.0323 3168        PptpMiniport    (631e3e205ad6d86f2aed6a4a8e69f2db) C:\windows\system32\DRIVERS\raspptp.sys
19:16:08.0404 3168        PptpMiniport - ok
19:16:08.0449 3168        Processor      (85b1e3a0c7585bc4aae6899ec6fcf011) C:\windows\system32\DRIVERS\processr.sys
19:16:08.0509 3168        Processor - ok
19:16:08.0592 3168        ProfSvc        (43ca4ccc22d52fb58e8988f0198851d0) C:\windows\system32\profsvc.dll
19:16:08.0694 3168        ProfSvc - ok
19:16:08.0734 3168        ProtectedStorage (81951f51e318aecc2d68559e47485cc4) C:\windows\system32\lsass.exe
19:16:08.0783 3168        ProtectedStorage - ok
19:16:08.0894 3168        Psched          (6270ccae2a86de6d146529fe55b3246a) C:\windows\system32\DRIVERS\pacer.sys
19:16:08.0984 3168        Psched - ok
19:16:09.0064 3168        ql2300          (ab95ecf1f6659a60ddc166d8315b0751) C:\windows\system32\DRIVERS\ql2300.sys
19:16:09.0164 3168        ql2300 - ok
19:16:09.0214 3168        ql40xx          (b4dd51dd25182244b86737dc51af2270) C:\windows\system32\DRIVERS\ql40xx.sys
19:16:09.0264 3168        ql40xx - ok
19:16:09.0314 3168        QWAVE          (31ac809e7707eb580b2bdb760390765a) C:\windows\system32\qwave.dll
19:16:09.0394 3168        QWAVE - ok
19:16:09.0444 3168        QWAVEdrv        (584078ca1b95ca72df2a27c336f9719d) C:\windows\system32\drivers\qwavedrv.sys
19:16:09.0494 3168        QWAVEdrv - ok
19:16:09.0554 3168        RasAcd          (30a81b53c766d0133bb86d234e5556ab) C:\windows\system32\DRIVERS\rasacd.sys
19:16:09.0634 3168        RasAcd - ok
19:16:09.0714 3168        RasAgileVpn    (57ec4aef73660166074d8f7f31c0d4fd) C:\windows\system32\DRIVERS\AgileVpn.sys
19:16:09.0794 3168        RasAgileVpn - ok
19:16:09.0854 3168        RasAuto        (a60f1839849c0c00739787fd5ec03f13) C:\windows\System32\rasauto.dll
19:16:09.0954 3168        RasAuto - ok
19:16:10.0002 3168        Rasl2tp        (d9f91eafec2815365cbe6d167e4e332a) C:\windows\system32\DRIVERS\rasl2tp.sys
19:16:10.0092 3168        Rasl2tp - ok
19:16:10.0212 3168        RasMan          (cb9e04dc05eacf5b9a36ca276d475006) C:\windows\System32\rasmans.dll
19:16:10.0359 3168        RasMan - ok
19:16:10.0477 3168        RasPppoe        (0fe8b15916307a6ac12bfb6a63e45507) C:\windows\system32\DRIVERS\raspppoe.sys
19:16:10.0581 3168        RasPppoe - ok
19:16:10.0632 3168        RasSstp        (44101f495a83ea6401d886e7fd70096b) C:\windows\system32\DRIVERS\rassstp.sys
19:16:10.0728 3168        RasSstp - ok
19:16:10.0816 3168        rdbss          (d528bc58a489409ba40334ebf96a311b) C:\windows\system32\DRIVERS\rdbss.sys
19:16:10.0916 3168        rdbss - ok
19:16:10.0966 3168        rdpbus          (0d8f05481cb76e70e1da06ee9f0da9df) C:\windows\system32\DRIVERS\rdpbus.sys
19:16:11.0016 3168        rdpbus - ok
19:16:11.0059 3168        RDPCDD          (23dae03f29d253ae74c44f99e515f9a1) C:\windows\system32\DRIVERS\RDPCDD.sys
19:16:11.0152 3168        RDPCDD - ok
19:16:11.0244 3168        RDPENCDD        (5a53ca1598dd4156d44196d200c94b8a) C:\windows\system32\drivers\rdpencdd.sys
19:16:11.0347 3168        RDPENCDD - ok
19:16:11.0407 3168        RDPREFMP        (44b0a53cd4f27d50ed461dae0c0b4e1f) C:\windows\system32\drivers\rdprefmp.sys
19:16:11.0486 3168        RDPREFMP - ok
19:16:11.0543 3168        RDPWD          (244c83332f44589ae98fc347f11b2693) C:\windows\system32\drivers\RDPWD.sys
19:16:11.0609 3168        RDPWD - ok
19:16:11.0735 3168        rdyboost        (518395321dc96fe2c9f0e96ac743b656) C:\windows\system32\drivers\rdyboost.sys
19:16:11.0782 3168        rdyboost - ok
19:16:11.0829 3168        RemoteAccess    (7b5e1419717fac363a31cc302895217a) C:\windows\System32\mprdim.dll
19:16:11.0936 3168        RemoteAccess - ok
19:16:12.0007 3168        RemoteRegistry  (cb9a8683f4ef2bf99e123d79950d7935) C:\windows\system32\regsvc.dll
19:16:12.0112 3168        RemoteRegistry - ok
19:16:12.0225 3168        RpcEptMapper    (78d072f35bc45d9e4e1b61895c152234) C:\windows\System32\RpcEpMap.dll
19:16:12.0338 3168        RpcEptMapper - ok
19:16:12.0400 3168        RpcLocator      (94d36c0e44677dd26981d2bfeef2a29d) C:\windows\system32\locator.exe
19:16:12.0475 3168        RpcLocator - ok
19:16:12.0574 3168        RpcSs          (7660f01d3b38aca1747e397d21d790af) C:\windows\system32\rpcss.dll
19:16:12.0681 3168        RpcSs - ok
19:16:12.0763 3168        rspndr          (032b0d36ad92b582d869879f5af5b928) C:\windows\system32\DRIVERS\rspndr.sys
19:16:12.0868 3168        rspndr - ok
19:16:12.0919 3168        SamSs          (81951f51e318aecc2d68559e47485cc4) C:\windows\system32\lsass.exe
19:16:12.0969 3168        SamSs - ok
19:16:13.0039 3168        sbp2port        (05d860da1040f111503ac416ccef2bca) C:\windows\system32\drivers\sbp2port.sys
19:16:13.0079 3168        sbp2port - ok
19:16:13.0139 3168        SCardSvr        (8fc518ffe9519c2631d37515a68009c4) C:\windows\System32\SCardSvr.dll
19:16:13.0229 3168        SCardSvr - ok
19:16:13.0279 3168        scfilter        (0693b5ec673e34dc147e195779a4dcf6) C:\windows\system32\DRIVERS\scfilter.sys
19:16:13.0359 3168        scfilter - ok
19:16:13.0419 3168        Schedule        (a04bb13f8a72f8b6e8b4071723e4e336) C:\windows\system32\schedsvc.dll
19:16:13.0549 3168        Schedule - ok
19:16:13.0592 3168        SCPolicySvc    (319c6b309773d063541d01df8ac6f55f) C:\windows\System32\certprop.dll
19:16:13.0673 3168        SCPolicySvc - ok
19:16:13.0712 3168        SDRSVC          (08236c4bce5edd0a0318a438af28e0f7) C:\windows\System32\SDRSVC.dll
19:16:13.0771 3168        SDRSVC - ok
19:16:13.0828 3168        secdrv          (90a3935d05b494a5a39d37e71f09a677) C:\windows\system32\drivers\secdrv.sys
19:16:13.0913 3168        secdrv - ok
19:16:13.0949 3168        seclogon        (a59b3a4442c52060cc7a85293aa3546f) C:\windows\system32\seclogon.dll
19:16:14.0053 3168        seclogon - ok
19:16:14.0150 3168        SENS            (dcb7fcdcc97f87360f75d77425b81737) C:\windows\system32\sens.dll
19:16:14.0278 3168        SENS - ok
19:16:14.0328 3168        Serenum        (9ad8b8b515e3df6acd4212ef465de2d1) C:\windows\system32\DRIVERS\serenum.sys
19:16:14.0448 3168        Serenum - ok
19:16:14.0515 3168        Serial          (5fb7fcea0490d821f26f39cc5ea3d1e2) C:\windows\system32\DRIVERS\serial.sys
19:16:14.0612 3168        Serial - ok
19:16:14.0716 3168        sermouse        (79bffb520327ff916a582dfea17aa813) C:\windows\system32\DRIVERS\sermouse.sys
19:16:14.0829 3168        sermouse - ok
19:16:14.0956 3168        SessionEnv      (4ae380f39a0032eab7dd953030b26d28) C:\windows\system32\sessenv.dll
19:16:15.0116 3168        SessionEnv - ok
19:16:15.0156 3168        sffdisk        (9f976e1eb233df46fce808d9dea3eb9c) C:\windows\system32\drivers\sffdisk.sys
19:16:15.0216 3168        sffdisk - ok
19:16:15.0286 3168        sffp_mmc        (932a68ee27833cfd57c1639d375f2731) C:\windows\system32\drivers\sffp_mmc.sys
19:16:15.0346 3168        sffp_mmc - ok
19:16:15.0406 3168        sffp_sd        (6d4ccaedc018f1cf52866bbbaa235982) C:\windows\system32\drivers\sffp_sd.sys
19:16:15.0476 3168        sffp_sd - ok
19:16:15.0506 3168        sfloppy        (db96666cc8312ebc45032f30b007a547) C:\windows\system32\DRIVERS\sfloppy.sys
19:16:15.0556 3168        sfloppy - ok
19:16:15.0646 3168        Sftfs          (d9b734638dd8dba9d59aad3189cd0fad) C:\windows\system32\DRIVERS\Sftfslh.sys
19:16:15.0726 3168        Sftfs - ok
19:16:15.0836 3168        sftlist        (cb73bc422c07fb611f194da18d1e7f36) C:\Program Files\Microsoft Application Virtualization Client\sftlist.exe
19:16:15.0916 3168        sftlist - ok
19:16:16.0059 3168        Sftplay        (2f61bd46c0bff4eb36e1e359ca17bfc5) C:\windows\system32\DRIVERS\Sftplaylh.sys
19:16:16.0099 3168        Sftplay - ok
19:16:16.0172 3168        Sftredir        (518bac0179f94304f422696b47c0ec12) C:\windows\system32\DRIVERS\Sftredirlh.sys
19:16:16.0223 3168        Sftredir - ok
19:16:16.0294 3168        Sftvol          (747325236d88b3f05ffd27ff9ec711c5) C:\windows\system32\DRIVERS\Sftvollh.sys
19:16:16.0335 3168        Sftvol - ok
19:16:16.0446 3168        sftvsa          (a5812f0281ca5081bf696626f9bf324d) C:\Program Files\Microsoft Application Virtualization Client\sftvsa.exe
19:16:16.0500 3168        sftvsa - ok
19:16:16.0615 3168        SharedAccess    (d1a079a0de2ea524513b6930c24527a2) C:\windows\System32\ipnathlp.dll
19:16:16.0746 3168        SharedAccess - ok
19:16:16.0801 3168        ShellHWDetection (414da952a35bf5d50192e28263b40577) C:\windows\System32\shsvcs.dll
19:16:16.0932 3168        ShellHWDetection - ok
19:16:17.0020 3168        sisagp          (2565cac0dc9fe0371bdce60832582b2e) C:\windows\system32\drivers\sisagp.sys
19:16:17.0060 3168        sisagp - ok
19:16:17.0140 3168        SiSRaid2        (a9f0486851becb6dda1d89d381e71055) C:\windows\system32\DRIVERS\SiSRaid2.sys
19:16:17.0180 3168        SiSRaid2 - ok
19:16:17.0230 3168        SiSRaid4        (3727097b55738e2f554972c3be5bc1aa) C:\windows\system32\DRIVERS\sisraid4.sys
19:16:17.0270 3168        SiSRaid4 - ok
19:16:17.0380 3168        SkypeUpdate    (6128e98eaaed364ed1a32708d2fd22cb) C:\Program Files\Skype\Updater\Updater.exe
19:16:17.0420 3168        SkypeUpdate - ok
19:16:17.0520 3168        Smb            (3e21c083b8a01cb70ba1f09303010fce) C:\windows\system32\DRIVERS\smb.sys
19:16:17.0610 3168        Smb - ok
19:16:17.0710 3168        SNMPTRAP        (6a984831644eca1a33ffeae4126f4f37) C:\windows\System32\snmptrap.exe
19:16:17.0790 3168        SNMPTRAP - ok
19:16:17.0830 3168        spldr          (95cf1ae7527fb70f7816563cbc09d942) C:\windows\system32\drivers\spldr.sys
19:16:17.0870 3168        spldr - ok
19:16:17.0940 3168        Spooler        (866a43013535dc8587c258e43579c764) C:\windows\System32\spoolsv.exe
19:16:18.0061 3168        Spooler - ok
19:16:18.0192 3168        sppsvc          (cf87a1de791347e75b98885214ced2b8) C:\windows\system32\sppsvc.exe
19:16:18.0403 3168        sppsvc - ok
19:16:18.0499 3168        sppuinotify    (b0180b20b065d89232a78a40fe56eaa6) C:\windows\system32\sppuinotify.dll
19:16:18.0589 3168        sppuinotify - ok
19:16:18.0649 3168        srv            (e4c2764065d66ea1d2d3ebc28fe99c46) C:\windows\system32\DRIVERS\srv.sys
19:16:18.0711 3168        srv - ok
19:16:18.0770 3168        srv2            (03f0545bd8d4c77fa0ae1ceedfcc71ab) C:\windows\system32\DRIVERS\srv2.sys
19:16:18.0820 3168        srv2 - ok
19:16:18.0865 3168        srvnet          (be6bd660caa6f291ae06a718a4fa8abc) C:\windows\system32\DRIVERS\srvnet.sys
19:16:18.0926 3168        srvnet - ok
19:16:18.0979 3168        SSDPSRV        (d887c9fd02ac9fa880f6e5027a43e118) C:\windows\System32\ssdpsrv.dll
19:16:19.0089 3168        SSDPSRV - ok
19:16:19.0119 3168        SstpSvc        (d318f23be45d5e3a107469eb64815b50) C:\windows\system32\sstpsvc.dll
19:16:19.0209 3168        SstpSvc - ok
19:16:19.0249 3168        stexstor        (db32d325c192b801df274bfd12a7e72b) C:\windows\system32\DRIVERS\stexstor.sys
19:16:19.0289 3168        stexstor - ok
19:16:19.0369 3168        StiSvc          (e1fb3706030fb4578a0d72c2fc3689e4) C:\windows\System32\wiaservc.dll
19:16:19.0459 3168        StiSvc - ok
19:16:19.0559 3168        swenum          (e58c78a848add9610a4db6d214af5224) C:\windows\system32\drivers\swenum.sys
19:16:19.0599 3168        swenum - ok
19:16:19.0649 3168        swprv          (a28bd92df340e57b024ba433165d34d7) C:\windows\System32\swprv.dll
19:16:19.0759 3168        swprv - ok
19:16:19.0859 3168        SynTP          (bd8e7f87de409a745a132a8812de5a96) C:\windows\system32\DRIVERS\SynTP.sys
19:16:19.0909 3168        SynTP - ok
19:16:19.0999 3168        SysMain        (36650d618ca34c9d357dfd3d89b2c56f) C:\windows\system32\sysmain.dll
19:16:20.0100 3168        SysMain - ok
19:16:20.0160 3168        TabletInputService (763fecdc3d30c815fe72dd57936c6cd1) C:\windows\System32\TabSvc.dll
19:16:20.0231 3168        TabletInputService - ok
19:16:20.0296 3168        TapiSrv        (613bf4820361543956909043a265c6ac) C:\windows\System32\tapisrv.dll
19:16:20.0402 3168        TapiSrv - ok
19:16:20.0472 3168        TBS            (b799d9fdb26111737f58288d8dc172d9) C:\windows\System32\tbssvc.dll
19:16:20.0586 3168        TBS - ok
19:16:20.0725 3168        Tcpip          (65d10b191c59c5501a1263fc33f6894b) C:\windows\system32\drivers\tcpip.sys
19:16:20.0817 3168        Tcpip - ok
19:16:20.0910 3168        TCPIP6          (65d10b191c59c5501a1263fc33f6894b) C:\windows\system32\DRIVERS\tcpip.sys
19:16:20.0992 3168        TCPIP6 - ok
19:16:21.0062 3168        tcpipreg        (cca24162e055c3714ce5a88b100c64ed) C:\windows\system32\drivers\tcpipreg.sys
19:16:21.0152 3168        tcpipreg - ok
19:16:21.0212 3168        TDPIPE          (1cb91b2bd8f6dd367dfc2ef26fd751b2) C:\windows\system32\drivers\tdpipe.sys
19:16:21.0262 3168        TDPIPE - ok
19:16:21.0292 3168        TDTCP          (2c2c5afe7ee4f620d69c23c0617651a8) C:\windows\system32\drivers\tdtcp.sys
19:16:21.0352 3168        TDTCP - ok
19:16:21.0422 3168        tdx            (b459575348c20e8121d6039da063c704) C:\windows\system32\DRIVERS\tdx.sys
19:16:21.0492 3168        tdx - ok
19:16:21.0542 3168        TermDD          (04dbf4b01ea4bf25a9a3e84affac9b20) C:\windows\system32\drivers\termdd.sys
19:16:21.0592 3168        TermDD - ok
19:16:21.0652 3168        TermService    (382c804c92811be57829d8e550a900e2) C:\windows\System32\termsrv.dll
19:16:21.0762 3168        TermService - ok
19:16:21.0832 3168        Themes          (42fb6afd6b79d9fe07381609172e7ca4) C:\windows\system32\themeservice.dll
19:16:21.0902 3168        Themes - ok
19:16:21.0959 3168        THREADORDER    (146b6f43a673379a3c670e86d89be5ea) C:\windows\system32\mmcss.dll
19:16:22.0046 3168        THREADORDER - ok
19:16:22.0161 3168        TrkWks          (4792c0378db99a9bc2ae2de6cfff0c3a) C:\windows\System32\trkwks.dll
19:16:22.0284 3168        TrkWks - ok
19:16:22.0335 3168        TrustedInstaller (2c49b175aee1d4364b91b531417fe583) C:\windows\servicing\TrustedInstaller.exe
19:16:22.0427 3168        TrustedInstaller - ok
19:16:22.0493 3168        tssecsrv        (254bb140eee3c59d6114c1a86b636877) C:\windows\system32\DRIVERS\tssecsrv.sys
19:16:22.0582 3168        tssecsrv - ok
19:16:22.0696 3168        TsUsbFlt        (fd1d6c73e6333be727cbcc6054247654) C:\windows\system32\drivers\tsusbflt.sys
19:16:22.0763 3168        TsUsbFlt - ok
19:16:22.0886 3168        tunnel          (b2fa25d9b17a68bb93d58b0556e8c90d) C:\windows\system32\DRIVERS\tunnel.sys
19:16:22.0979 3168        tunnel - ok
19:16:23.0045 3168        uagp35          (750fbcb269f4d7dd2e420c56b795db6d) C:\windows\system32\DRIVERS\uagp35.sys
19:16:23.0093 3168        uagp35 - ok
19:16:23.0155 3168        udfs            (ee43346c7e4b5e63e54f927babbb32ff) C:\windows\system32\DRIVERS\udfs.sys
19:16:23.0245 3168        udfs - ok
19:16:23.0346 3168        UI0Detect      (8344fd4fce927880aa1aa7681d4927e5) C:\windows\system32\UI0Detect.exe
19:16:23.0415 3168        UI0Detect - ok
19:16:23.0465 3168        uliagpkx        (44e8048ace47befbfdc2e9be4cbc8880) C:\windows\system32\drivers\uliagpkx.sys
19:16:23.0511 3168        uliagpkx - ok
19:16:23.0588 3168        umbus          (d295bed4b898f0fd999fcfa9b32b071b) C:\windows\system32\drivers\umbus.sys
19:16:23.0655 3168        umbus - ok
19:16:23.0692 3168        UmPass          (7550ad0c6998ba1cb4843e920ee0feac) C:\windows\system32\DRIVERS\umpass.sys
19:16:23.0733 3168        UmPass - ok
19:16:23.0779 3168        upnphost        (833fbb672460efce8011d262175fad33) C:\windows\System32\upnphost.dll
19:16:23.0890 3168        upnphost - ok
19:16:23.0982 3168        usbccgp        (bd9c55d7023c5de374507acc7a14e2ac) C:\windows\system32\DRIVERS\usbccgp.sys
19:16:24.0044 3168        usbccgp - ok
19:16:24.0119 3168        usbcir          (04ec7cec62ec3b6d9354eee93327fc82) C:\windows\system32\drivers\usbcir.sys
19:16:24.0185 3168        usbcir - ok
19:16:24.0239 3168        usbehci        (f92de757e4b7ce9c07c5e65423f3ae3b) C:\windows\system32\drivers\usbehci.sys
19:16:24.0282 3168        usbehci - ok
19:16:24.0377 3168        usbhub          (8dc94aec6a7e644a06135ae7506dc2e9) C:\windows\system32\DRIVERS\usbhub.sys
19:16:24.0435 3168        usbhub - ok
19:16:24.0498 3168        usbohci        (e185d44fac515a18d9deddc23c2cdf44) C:\windows\system32\drivers\usbohci.sys
19:16:24.0555 3168        usbohci - ok
19:16:24.0630 3168        usbprint        (797d862fe0875e75c7cc4c1ad7b30252) C:\windows\system32\DRIVERS\usbprint.sys
19:16:24.0677 3168        usbprint - ok
19:16:24.0721 3168        usbscan        (576096ccbc07e7c4ea4f5e6686d6888f) C:\windows\system32\DRIVERS\usbscan.sys
19:16:24.0769 3168        usbscan - ok
19:16:24.0810 3168        USBSTOR        (f991ab9cc6b908db552166768176896a) C:\windows\system32\DRIVERS\USBSTOR.SYS
19:16:24.0867 3168        USBSTOR - ok
19:16:24.0929 3168        usbuhci        (68df884cf41cdada664beb01daf67e3d) C:\windows\system32\drivers\usbuhci.sys
19:16:24.0967 3168        usbuhci - ok
19:16:25.0047 3168        usbvideo        (45f4e7bf43db40a6c6b4d92c76cbc3f2) C:\windows\system32\Drivers\usbvideo.sys
19:16:25.0117 3168        usbvideo - ok
19:16:25.0177 3168        UxSms          (081e6e1c91aec36758902a9f727cd23c) C:\windows\System32\uxsms.dll
19:16:25.0277 3168        UxSms - ok
19:16:25.0317 3168        VaultSvc        (81951f51e318aecc2d68559e47485cc4) C:\windows\system32\lsass.exe
19:16:25.0357 3168        VaultSvc - ok
19:16:25.0437 3168        vdrvroot        (a059c4c3edb09e07d21a8e5c0aabd3cb) C:\windows\system32\drivers\vdrvroot.sys
19:16:25.0487 3168        vdrvroot - ok
19:16:25.0537 3168        vds            (c3cd30495687c2a2f66a65ca6fd89be9) C:\windows\System32\vds.exe
19:16:25.0657 3168        vds - ok
19:16:25.0767 3168        vga            (17c408214ea61696cec9c66e388b14f3) C:\windows\system32\DRIVERS\vgapnp.sys
19:16:25.0827 3168        vga - ok
19:16:25.0867 3168        VgaSave        (8e38096ad5c8570a6f1570a61e251561) C:\windows\System32\drivers\vga.sys
19:16:25.0957 3168        VgaSave - ok
19:16:26.0029 3168        vhdmp          (5461686cca2fda57b024547733ab42e3) C:\windows\system32\drivers\vhdmp.sys
19:16:26.0079 3168        vhdmp - ok
19:16:26.0153 3168        viaagp          (c829317a37b4bea8f39735d4b076e923) C:\windows\system32\drivers\viaagp.sys
19:16:26.0192 3168        viaagp - ok
19:16:26.0255 3168        ViaC7          (e02f079a6aa107f06b16549c6e5c7b74) C:\windows\system32\DRIVERS\viac7.sys
19:16:26.0321 3168        ViaC7 - ok
19:16:26.0418 3168        viaide          (e43574f6a56a0ee11809b48c09e4fd3c) C:\windows\system32\drivers\viaide.sys
19:16:26.0462 3168        viaide - ok
19:16:26.0510 3168        volmgr          (4c63e00f2f4b5f86ab48a58cd990f212) C:\windows\system32\drivers\volmgr.sys
19:16:26.0548 3168        volmgr - ok
19:16:26.0606 3168        volmgrx        (b5bb72067ddddbbfb04b2f89ff8c3c87) C:\windows\system32\drivers\volmgrx.sys
19:16:26.0657 3168        volmgrx - ok
19:16:26.0712 3168        volsnap        (f497f67932c6fa693d7de2780631cfe7) C:\windows\system32\drivers\volsnap.sys
19:16:26.0758 3168        volsnap - ok
19:16:26.0844 3168        vsmraid        (9dfa0cc2f8855a04816729651175b631) C:\windows\system32\DRIVERS\vsmraid.sys
19:16:26.0901 3168        vsmraid - ok
19:16:26.0984 3168        VSS            (209a3b1901b83aeb8527ed211cce9e4c) C:\windows\system32\vssvc.exe
19:16:27.0109 3168        VSS - ok
19:16:27.0206 3168        vwifibus        (90567b1e658001e79d7c8bbd3dde5aa6) C:\windows\system32\DRIVERS\vwifibus.sys
19:16:27.0268 3168        vwifibus - ok
19:16:27.0329 3168        vwififlt        (7090d3436eeb4e7da3373090a23448f7) C:\windows\system32\DRIVERS\vwififlt.sys
19:16:27.0390 3168        vwififlt - ok
19:16:27.0445 3168        W32Time        (55187fd710e27d5095d10a472c8baf1c) C:\windows\system32\w32time.dll
19:16:27.0562 3168        W32Time - ok
19:16:27.0665 3168        WacomPen        (de3721e89c653aa281428c8a69745d90) C:\windows\system32\DRIVERS\wacompen.sys
19:16:27.0723 3168        WacomPen - ok
19:16:27.0818 3168        WANARP          (3c3c78515f5ab448b022bdf5b8ffdd2e) C:\windows\system32\DRIVERS\wanarp.sys
19:16:27.0900 3168        WANARP - ok
19:16:27.0913 3168        Wanarpv6        (3c3c78515f5ab448b022bdf5b8ffdd2e) C:\windows\system32\DRIVERS\wanarp.sys
19:16:27.0993 3168        Wanarpv6 - ok
19:16:28.0074 3168        wbengine        (691e3285e53dca558e1a84667f13e15a) C:\windows\system32\wbengine.exe
19:16:28.0156 3168        wbengine - ok
19:16:28.0214 3168        WbioSrvc        (9614b5d29dc76ac3c29f6d2d3aa70e67) C:\windows\System32\wbiosrvc.dll
19:16:28.0306 3168        WbioSrvc - ok
19:16:28.0393 3168        wcncsvc        (34eee0dfaadb4f691d6d5308a51315dc) C:\windows\System32\wcncsvc.dll
19:16:28.0485 3168        wcncsvc - ok
19:16:28.0538 3168        WcsPlugInService (5d930b6357a6d2af4d7653bdabbf352f) C:\windows\System32\WcsPlugInService.dll
19:16:28.0599 3168        WcsPlugInService - ok
19:16:28.0644 3168        Wd              (1112a9badacb47b7c0bb0392e3158dff) C:\windows\system32\DRIVERS\wd.sys
19:16:28.0686 3168        Wd - ok
19:16:28.0744 3168        Wdf01000        (9950e3d0f08141c7e89e64456ae7dc73) C:\windows\system32\drivers\Wdf01000.sys
19:16:28.0798 3168        Wdf01000 - ok
19:16:28.0852 3168        WdiServiceHost  (46ef9dc96265fd0b423db72e7c38c2a5) C:\windows\system32\wdi.dll
19:16:28.0914 3168        WdiServiceHost - ok
19:16:28.0940 3168        WdiSystemHost  (46ef9dc96265fd0b423db72e7c38c2a5) C:\windows\system32\wdi.dll
19:16:29.0002 3168        WdiSystemHost - ok
19:16:29.0051 3168        WebClient      (a9d880f97530d5b8fee278923349929d) C:\windows\System32\webclnt.dll
19:16:29.0131 3168        WebClient - ok
19:16:29.0191 3168        Wecsvc          (760f0afe937a77cff27153206534f275) C:\windows\system32\wecsvc.dll
19:16:29.0309 3168        Wecsvc - ok
19:16:29.0369 3168        wercplsupport  (ac804569bb2364fb6017370258a4091b) C:\windows\System32\wercplsupport.dll
19:16:29.0457 3168        wercplsupport - ok
19:16:29.0532 3168        WerSvc          (08e420d873e4fd85241ee2421b02c4a4) C:\windows\System32\WerSvc.dll
19:16:29.0623 3168        WerSvc - ok
19:16:29.0732 3168        WfpLwf          (8b9a943f3b53861f2bfaf6c186168f79) C:\windows\system32\DRIVERS\wfplwf.sys
19:16:29.0833 3168        WfpLwf - ok
19:16:29.0897 3168        WIMMount        (5cf95b35e59e2a38023836fff31be64c) C:\windows\system32\drivers\wimmount.sys
19:16:29.0942 3168        WIMMount - ok
19:16:30.0037 3168        WinDefend      (3fae8f94296001c32eab62cd7d82e0fd) C:\Program Files\Windows Defender\mpsvc.dll
19:16:30.0137 3168        WinDefend - ok
19:16:30.0157 3168        WinHttpAutoProxySvc - ok
19:16:30.0277 3168        Winmgmt        (f62e510b6ad4c21eb9fe8668ed251826) C:\windows\system32\wbem\WMIsvc.dll
19:16:30.0367 3168        Winmgmt - ok
19:16:30.0497 3168        WinRM          (1b91cd34ea3a90ab6a4ef0550174f4cc) C:\windows\system32\WsmSvc.dll
19:16:30.0617 3168        WinRM - ok
19:16:30.0727 3168        Wlansvc        (16935c98ff639d185086a3529b1f2067) C:\windows\System32\wlansvc.dll
19:16:30.0857 3168        Wlansvc - ok
19:16:30.0983 3168        wlcrasvc        (6067acef367e79914af628fa1e9b5330) C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
19:16:31.0021 3168        wlcrasvc - ok
19:16:31.0157 3168        wlidsvc        (0a70f4022ec2e14c159efc4f69aa2477) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
19:16:31.0303 3168        wlidsvc - ok
19:16:31.0407 3168        WmiAcpi        (0217679b8fca58714c3bf2726d2ca84e) C:\windows\system32\drivers\wmiacpi.sys
19:16:31.0476 3168        WmiAcpi - ok
19:16:31.0554 3168        wmiApSrv        (6eb6b66517b048d87dc1856ddf1f4c3f) C:\windows\system32\wbem\WmiApSrv.exe
19:16:31.0608 3168        wmiApSrv - ok
19:16:31.0728 3168        WMPNetworkSvc  (3b40d3a61aa8c21b88ae57c58ab3122e) C:\Program Files\Windows Media Player\wmpnetwk.exe
19:16:31.0844 3168        WMPNetworkSvc - ok
19:16:31.0929 3168        WPCSvc          (a2f0ec770a92f2b3f9de6d518e11409c) C:\windows\System32\wpcsvc.dll
19:16:31.0992 3168        WPCSvc - ok
19:16:32.0042 3168        WPDBusEnum      (aa53356d60af47eacc85bc617a4f3f66) C:\windows\system32\wpdbusenum.dll
19:16:32.0092 3168        WPDBusEnum - ok
19:16:32.0132 3168        ws2ifsl        (6db3276587b853bf886b69528fdb048c) C:\windows\system32\drivers\ws2ifsl.sys
19:16:32.0232 3168        ws2ifsl - ok
19:16:32.0312 3168        wscsvc          (6f5d49efe0e7164e03ae773a3fe25340) C:\windows\system32\wscsvc.dll
19:16:32.0382 3168        wscsvc - ok
19:16:32.0402 3168        WSearch - ok
19:16:32.0512 3168        wuauserv        (3026418a50c5b4761befa632cedb7406) C:\windows\system32\wuaueng.dll
19:16:32.0702 3168        wuauserv - ok
19:16:32.0802 3168        WudfPf          (e714a1c0354636837e20ccbf00888ee7) C:\windows\system32\drivers\WudfPf.sys
19:16:32.0892 3168        WudfPf - ok
19:16:33.0015 3168        WUDFRd          (1023ee888c9b47178c5293ed5336ab69) C:\windows\system32\DRIVERS\WUDFRd.sys
19:16:33.0098 3168        WUDFRd - ok
19:16:33.0166 3168        wudfsvc        (8d1e1e529a2c9e9b6a85b55a345f7629) C:\windows\System32\WUDFSvc.dll
19:16:33.0264 3168        wudfsvc - ok
19:16:33.0309 3168        WwanSvc        (ff2d745b560f7c71b31f30f4d49f73d2) C:\windows\System32\wwansvc.dll
19:16:33.0402 3168        WwanSvc - ok
19:16:33.0479 3168        MBR (0x1B8)    (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
19:16:33.0644 3168        \Device\Harddisk0\DR0 - ok
19:16:33.0657 3168        Boot (0x1200)  (c7cff5df53c1c8b72f9bfe508c98ce21) \Device\Harddisk0\DR0\Partition0
19:16:33.0661 3168        \Device\Harddisk0\DR0\Partition0 - ok
19:16:33.0736 3168        Boot (0x1200)  (e561d3855e7409f40c075f86402524ce) \Device\Harddisk0\DR0\Partition1
19:16:33.0741 3168        \Device\Harddisk0\DR0\Partition1 - ok
19:16:33.0742 3168        ============================================================
19:16:33.0742 3168        Scan finished
19:16:33.0742 3168        ============================================================
19:16:33.0784 5976        Detected object count: 2
19:16:33.0784 5976        Actual detected object count: 2
19:16:48.0868 5976        Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - skipped by user
19:16:48.0868 5976        Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:16:48.0868 5976        Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - skipped by user
19:16:48.0868 5976        Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - User select action: Skip

markusg 16.04.2012 18:19
also ich sehe nichts malware technisches, machen wir also am besten kurzen prozess und setzen neu auf und sichern ab.

der pc muss neu aufgesetzt und dann abgesichert werden
1. Datenrettung:2. Formatieren, Windows neu instalieren:3. PC absichern: http://www.trojaner-board.de/96344-a...-rechners.html
ich werde außerdem noch weitere punkte dazu posten.
4. alle Passwörter ändern!
5. nach PC Absicherung, die gesicherten Daten prüfen und falls sauber: zurückspielen.
6. werde ich dann noch was zum absichern von Onlinebanking mit Chip Card Reader + Star Money sagen.

iN sM0ke 16.04.2012 18:27
alles klar, das kann ich jedoch erst nächste Woche machen.

Da mein Netbook kein Laufwerk hat, habe ich überlegt es mit nem USB-Stick zu machen. Habt ihr eine tolle Anleitung dafür in diesem Forum?

Ich werde mich anschließend wieder melden


Vielen Dank schonmal für deine Mühen


EDIT:
-Außerdem habe ich Win7 - Starter (der Key unter meinem Netbook ist wohl dann für win7-starter nehme ich an?!) Gibt es dafür einen Download-Link für die ISO-Datei?

- Ich könnte mir aber auch die Windows 7 Ultimate CD mit Key besorgen. Wird es probleme geben wenn ich auf meinem Netbook Ultimate installiere? Hab ja nicht so viel Leistung mit dem Netbook

markusg 16.04.2012 19:20
dein netbook müsste ja eig ne recovery partition haben.
aber sichere erst mal deine daten, dann machen wir weiter.


Alle Zeitangaben in WEZ +1. Es ist jetzt 17:20 Uhr.

Copyright ©2000-2025, Trojaner-Board


Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131