‹‹ Mistanke om snavs på computer     problem med helt ny computer ››
 
 
 
sirefef på besøg.
    [ Ignorer ]   
  cljeppe
05.01.2012 17:40:10
Antal indlæg: 49

Hej Spywarefri,

Microsoft Security Ess. meddeler mig flere gange i timen (rødt skilt) om et antal sirefef. - efterfulgt af eet bogstav (3 - 4 forskellige). Lidt efter viser den grønt skilt, at PC nu er renset.

Men kun for en stund, så gentager seancen sig.

Inden jeg fulgte jeres anvisning kørte jeg en scan (ren) med Kaspersky.

Er det rigtigt, at I kun skal bruge logfilerne fra DDS? - Jeg har jo også logs liggende fra Superspyware, Malwarebyte og ESET.

Secunia PCI forstod jeg ikke helt. Eneste insecure fund var HP Photo Editor, der sikkert stammer fra enten All-in-one-printer eller et kamera.

Jeg kan vel næppe bare overhøre Microsoft Security’s advarsler, så jeg håber virkelig, at I kan give opskriften på, at jage disse “sirefef” væk.

Mange hilsener,
Carsten

Her er log fra DDS:

.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2011-08-26.01)
.
Microsoft Windows 7 Home Premium
Boot Device: \Device\HarddiskVolume1
Install Date: 25-12-2011 14:51:31
System Uptime: 05-01-2012 15:29:15 (1 hours ago)
.
Motherboard: ASUSTeK Computer INC. |  | P8P67 EVO
Processor: Intel(R) Core(TM) i7-2600 CPU @ 3.40GHz | LGA1155 | 3401/100mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 112 GiB total, 68,214 GiB free.
D: is FIXED (NTFS) - 1397 GiB total, 1116,863 GiB free.
E: is CDROM ()
F: is Removable
G: is Removable
H: is Removable
I: is Removable
.
==== Disabled Device Manager Items =============
.
Class GUID: {e0cbf06c-cd8b-4647-bb8a-263b43f0f974}
Description: ASUS Bluetooth
Device ID: USB\VID_0B05&PID;_179C\6&DF2EE03;&0&7
Manufacturer: Atheros Communications
Name: ASUS Bluetooth
PNP Device ID: USB\VID_0B05&PID;_179C\6&DF2EE03;&0&7
Service: BTHUSB
.
Class GUID: {745a17a0-74d3-11d0-b6fe-00a0c90f57da}
Description: HID Non-User Input Data Filter
Device ID: HID\VID_045E&PID;_009D&MI;_01&COL03;\8&34C3AE78;&0&0002;
Manufacturer: Microsoft
Name: HID Non-User Input Data Filter
PNP Device ID: HID\VID_045E&PID;_009D&MI;_01&COL03;\8&34C3AE78;&0&0002;
Service:
.
Class GUID: {745a17a0-74d3-11d0-b6fe-00a0c90f57da}
Description: HID Non-User Input Data Filter
Device ID: HID\VID_045E&PID;_009D&MI;_01&COL01;\8&34C3AE78;&0&0000;
Manufacturer: Microsoft
Name: HID Non-User Input Data Filter
PNP Device ID: HID\VID_045E&PID;_009D&MI;_01&COL01;\8&34C3AE78;&0&0000;
Service:
.
==== System Restore Points ===================
.
RP56: 03-01-2012 18:49:34 - Installed DirectX
RP57: 03-01-2012 21:30:25 - Revo Uninstaller’s restore point - Registry Reviver
RP58: 03-01-2012 21:31:23 - Revo Uninstaller’s restore point - Advanced Spyware Remover
RP59: 03-01-2012 21:37:00 - Installed 7-Zip 9.20 (x64 edition)
RP60: 03-01-2012 22:04:46 - Installed PowerDirector
RP61: 04-01-2012 09:54:22 - Installed SUPERAntiSpyware Professional
RP62: 04-01-2012 11:17:52 - Revo Uninstaller’s restore point - Exterminate It!
RP63: 04-01-2012 23:10:52 - Revo Uninstaller’s restore point - Google Chrome
RP64: 04-01-2012 23:47:49 - Windows Update
RP65: 05-01-2012 11:01:43 - Windows Update
RP66: 05-01-2012 11:03:54 - Windows Update
RP67: 05-01-2012 15:56:16 - Revo Uninstaller’s restore point - Corel PaintShop Pro X4
RP68: 05-01-2012 15:58:45 - Revo Uninstaller’s restore point - CyberLink PowerDirector 10
RP69: 05-01-2012 15:58:52 - Configured PowerDirector
RP70: 05-01-2012 16:01:06 - Revo Uninstaller’s restore point - CyberLink Holiday Pack Vol. 3
RP71: 05-01-2012 16:02:01 - Revo Uninstaller’s restore point - CyberLink PowerDirector 10 Content Pack II
RP72: 05-01-2012 16:02:07 - Configured PowerDirector 10 Content Pack II
RP73: 05-01-2012 16:06:35 - Revo Uninstaller’s restore point - CyberLink WaveEditor
RP74: 05-01-2012 16:06:42 - Configured WaveEditor
.
==== Installed Programs ======================
.
Acoustica CD/DVD Label Maker
Apple-programunderstøttelse
Apple Software Update
BitTorrent
BurnAware Free 4.1.1
Cobian Backup 10
Collection Maerklin H0
Compatibility Pack for the 2007 Office system
Compro VideoMate C200 Plus (V2.0) Driver
ConvertXtoDVD 4.0.12.327
CyberLink PhotoNow
CyberLink PowerDirector
D3DX10
DVD Audio Extractor 6.2.0
DVDFab 8.1.1.2 (08/08/2011) Qt
ESET Online Scanner v3
HP Deskjet 2050 J510 series Hjælp
HP Photo Creations
HP Update
Intel(R) Management Engine Components
Java Auto Updater
Java(TM) 6 Update 30
JMicron JMB36X Driver
Junk Mail filter update
MailWasherPro
Malwarebytes Anti-Malware version 1.60.0.1800
marvell 91xx driver
Mesh Runtime
Microsoft Office 2000 Premium
Microsoft Office PowerPoint Viewer 2007 (English)
Microsoft Silverlight
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
Microsoft Works
Mozilla Firefox 9.0.1 (x86 da)
MSVCRT
MSVCRT_amd64
MSXML 4.0 SP2 (KB954430)
MSXML 4.0 SP2 (KB973688)
MSXML 4.0 SP2 Parser and SDK
Nero 8 Essentials
neroxml
Nikon FotoShare
Nikon Message Center
NVIDIA PhysX
NVIDIA Stereoscopic 3D Driver
PictureProject
Pinnacle Studio 14
Politikens Tysk-Dansk Dansk-Tysk Ordbog
QuickTime
Realtek Ethernet Controller Driver For Windows 7
Realtek High Definition Audio Driver
Renesas Electronics USB 3.0 Host Controller Driver
Revo Uninstaller 1.88
Secunia PSI (2.0.0.4003)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351)
Security Update for Microsoft .NET Framework 4 Client Profile DAN sprogpakke (KB2518870)
SmartSound Quicktracks 5
StreamTransport version: 1.0.2.2171
SUPERAntiSpyware Professional
SureThing Express Labeler
Update for Microsoft .NET Framework 4 Client Profile (KB2468871)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523)
VideoMate T, M, S Series Driver
Winamp
Winamp Detector Plug-in
Windows Live Communications Platform
Windows Live Essentials
Windows Live Installer
Windows Live Mail
Windows Live Mesh
Windows Live Mesh ActiveX-objekt til fjernforbindelser
Windows Live Messenger
Windows Live Photo Common
Windows Live Photo Gallery
Windows Live PIMT Platform
Windows Live SOXE
Windows Live SOXE Definitions
Windows Live UX Platform
Windows Live UX Platform Language Pack
Windows Live Writer
Windows Live Writer Resources
Windows Media Encoder 9 Series
WinRAR archiver
XnView 1.98.5
.
==== End Of File ===========================

Næste log

.
DDS (Ver_2011-08-26.01) - NTFSAMD64
Internet Explorer: 9.0.8112.16421 BrowserJavaVersion: 1.6.0_30
Run by Carsten at 16:11:10 on 2012-01-05
Microsoft Windows 7 Home Premium   6.1.7601.1.1252.45.1030.18.8169.6254 [GMT 1:00]
.
AV: Microsoft Security Essentials *Enabled/Updated* {108DAC43-C256-20B7-BB05-914135DA5160}
SP: Microsoft Security Essentials *Enabled/Updated* {ABEC4DA7-E46C-2F39-81B5-AA334E5D1BDD}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
============== Running Processes ===============
.
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\nvvsvc.exe
C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
C:\Windows\system32\nvvsvc.exe
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\explorer.exe
C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
C:\Program Files (x86)\Cobian Backup 10\cbVSCService.exe
C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
C:\Program Files\Microsoft Security Client\msseces.exe
C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
C:\Program Files (x86)\FireTrust\MailWasher\MailWasherPro.exe
C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
C:\Program Files (x86)\Cobian Backup 10\cbService.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Windows\System32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\IProsetMonitor.exe
C:\Program Files\Common Files\Nitro PDF\Reader\2.0\NitroPDFReaderDriverService2x64.exe
C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
C:\Program Files (x86)\Cobian Backup 10\cbInterface.exe
C:\Program Files (x86)\Secunia\PSI\PSIA.exe
C:\Windows\system32\svchost.exe -k imgsvc
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Program Files\Microsoft Security Client\Antimalware\NisSrv.exe
C:\Windows\system32\WUDFHost.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
C:\Windows\system32\SearchIndexer.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Program Files (x86)\Secunia\PSI\sua.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
C:\Program Files (x86)\Secunia\PSI\psi.exe
C:\Program Files (x86)\Secunia\PSI\psi_tray.exe
C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
C:\Program Files (x86)\Windows Live\Mail\wlmail.exe
C:\Windows\System32\svchost.exe -k swprv
C:\Windows\system32\msiexec.exe
C:\Windows\system32\DllHost.exe
C:\Windows\system32\DllHost.exe
C:\Windows\SysWOW64\cmd.exe
C:\Windows\system32\conhost.exe
C:\Windows\SysWOW64\cscript.exe
C:\Windows\system32\wbem\wmiprvse.exe
.
============== Pseudo HJT Report ===============
.
mWinlogon: Userinit=userinit.exe,
uWinlogon: SHELL=C:\Users\Carsten\AppData\Local\2c137dec\X
BHO: Java(tm) Plug-In SSV Helper: {761497bb-d6f0-462c-b6eb-d4daf1d92d43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll
BHO: CIESpeechBHO Class: {8d10f6c4-0e01-4bd4-8601-11ac1fdf8126} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
BHO: Hjælp til logon til Windows Live ID: {9030d464-4c02-4abf-8ecc-5164760863c6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
uRun: [msnmsgr] “C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe” /background
mRun: [NUSB3MON] “C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe”
mRun: [JMB36X IDE Setup] C:\Windows\RaidTool\xInsIDE.exe
mRun: [SunJavaUpdateSched] “C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe”
mRun: [HP Software Update] C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe
mRun: [<NO NAME>]
mRun: [Cobian Backup 10 Interface] “C:\Program Files (x86)\Cobian Backup 10\cbInterface.exe” -service
mRun: [QuickTime Task] “C:\Program Files (x86)\QuickTime\QTTask.exe” -atboottime
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\MAILWA~1.LNK - C:\Program Files (x86)\FireTrust\MailWasher\MailWasherPro.exe
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\SECUNI~1.LNK - C:\Program Files (x86)\Secunia\PSI\psi_tray.exe
mPolicies-explorer: NoActiveDesktop = 1 (0x1)
mPolicies-explorer: NoActiveDesktopChanges = 1 (0x1)
mPolicies-system: ConsentPromptBehaviorAdmin = 5 (0x5)
mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3)
mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
IE: Download with &Media; Finder - C:\Program Files (x86)\Media Finder\hook.html
IE: {7815BE26-237D-41A8-A98F-F7BD75F71086} - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_30-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0030-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_30-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_30-windows-i586.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload2.macromedia.com/get/flashplayer/current/swflash.cab
TCP: DhcpNameServer = 192.168.15.1
TCP: Interfaces\{072B7BC7-2DCD-411A-8CCC-6B03DCC1903C} : DhcpNameServer = 192.168.15.1
TCP: Interfaces\{F7191D76-212A-4ADD-B9AA-31331D303F4D} : DhcpNameServer = 192.168.15.1
Notify: !SASWinLogon - C:\Program Files (x86)\SUPERAntiSpyware\SASWINLO.DLL
SEH: SABShellExecuteHook Class: {5ae067d3-9afb-48e0-853a-ebb7f4a000da} - C:\Program Files (x86)\SUPERAntiSpyware\SASSEH.DLL
{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}
{8D10F6C4-0E01-4BD4-8601-11AC1FDF8126}
{9030D464-4C02-4ABF-8ECC-5164760863C6}
{DBC80044-A445-435b-BC74-9C25C1C588A9}
mRun-x64: [NUSB3MON] “C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe”
mRun-x64: [JMB36X IDE Setup] C:\Windows\RaidTool\xInsIDE.exe
mRun-x64: [SunJavaUpdateSched] “C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe”
mRun-x64: [HP Software Update] C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe
mRun-x64: [(Standard)]
mRun-x64: [Cobian Backup 10 Interface] “C:\Program Files (x86)\Cobian Backup 10\cbInterface.exe” -service
mRun-x64: [QuickTime Task] “C:\Program Files (x86)\QuickTime\QTTask.exe” -atboottime
{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}
.
================= FIREFOX ===================
.
FF - ProfilePath - C:\Users\Carsten\AppData\Roaming\Mozilla\Firefox\Profiles\8gs7c582.default\
FF - prefs.js: browser.startup.homepage - hxxp://en.wikipedia.org/wiki/Main_Page
FF - plugin: C:\Program Files (x86)\Java\jre6\bin\new_plugin\npdeployJava1.dll
FF - plugin: C:\Program Files (x86)\Microsoft Silverlight\4.0.60831.0\npctrlui.dll
FF - plugin: C:\Program Files (x86)\Mozilla Firefox\plugins\npdeployJava1.dll
FF - plugin: C:\Program Files (x86)\Mozilla Firefox\plugins\npwachk.dll
FF - plugin: C:\Program Files (x86)\Nitro PDF\Reader 2\npdf.dll
FF - plugin: C:\Program Files (x86)\Nitro PDF\Reader 2\npnitromozilla.dll
FF - plugin: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll
FF - plugin: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll
FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll
.
============= SERVICES / DRIVERS ===============
.
R0 mv91xx;mv91xx;C:\Windows\system32\DRIVERS\mv91xx.sys—> C:\Windows\system32\DRIVERS\mv91xx.sys [?]
R1 MpFilter;Microsoft Malware Protection Driver;C:\Windows\system32\DRIVERS\MpFilter.sys—> C:\Windows\system32\DRIVERS\MpFilter.sys [?]
R2 AtherosSvc;AtherosSvc;C:\Program Files (x86)\Bluetooth Suite\AdminService.exe [2010-10-27 52896]
R2 cbVSCService;Cobian Backup 10 Volume Shadow Copy service;C:\Program Files (x86)\Cobian Backup 10\cbVSCService.exe [2012-1-3 67584]
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]
R2 CobianBackup10;Cobian Backup 10;C:\Program Files (x86)\Cobian Backup 10\cbService.exe [2012-1-3 1125376]
R2 Intel® PROSet Monitoring Service;Intel® PROSet Monitoring Service;C:\Windows\system32\IProsetMonitor.exe—> C:\Windows\system32\IProsetMonitor.exe [?]
R2 NitroReaderDriverReadSpool2;NitroPDFReaderDriverCreatorReadSpool2;C:\Program Files\Common Files\Nitro PDF\Reader\2.0\NitroPDFReaderDriverService2x64.exe [2011-12-20 341800]
R2 nvUpdatusService;NVIDIA Update Service Daemon;C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe [2011-12-23 2253120]
R2 Secunia PSI Agent;Secunia PSI Agent;C:\Program Files (x86)\Secunia\PSI\psia.exe [2011-10-14 994360]
R2 Secunia Update Agent;Secunia Update Agent;C:\Program Files (x86)\Secunia\PSI\sua.exe [2011-10-14 399416]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2011-10-15 381248]
R3 BTATH_BUS;Atheros Bluetooth Bus;C:\Windows\system32\DRIVERS\btath_bus.sys—> C:\Windows\system32\DRIVERS\btath_bus.sys [?]
R3 e1cexpress;Intel(R) PRO/1000 PCI Express Network Connection Driver C;C:\Windows\system32\DRIVERS\e1c62x64.sys—> C:\Windows\system32\DRIVERS\e1c62x64.sys [?]
R3 MEIx64;Intel(R) Management Engine Interface;C:\Windows\system32\DRIVERS\HECIx64.sys—> C:\Windows\system32\DRIVERS\HECIx64.sys [?]
R3 NisDrv;Microsoft Network Inspection System;C:\Windows\system32\DRIVERS\NisDrvWFP.sys—> C:\Windows\system32\DRIVERS\NisDrvWFP.sys [?]
R3 NisSrv;Microsoft Network Inspection;C:\Program Files\Microsoft Security Client\Antimalware\NisSrv.exe [2011-4-27 288272]
R3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver;C:\Windows\system32\DRIVERS\nusb3hub.sys—> C:\Windows\system32\DRIVERS\nusb3hub.sys [?]
R3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver;C:\Windows\system32\DRIVERS\nusb3xhc.sys—> C:\Windows\system32\DRIVERS\nusb3xhc.sys [?]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver;C:\Windows\system32\drivers\nvhda64v.sys—> C:\Windows\system32\drivers\nvhda64v.sys [?]
R3 PSI;PSI;C:\Windows\system32\DRIVERS\psi_mf.sys—> C:\Windows\system32\DRIVERS\psi_mf.sys [?]
R3 RTL8167;Realtek 8167 NT Driver;C:\Windows\system32\DRIVERS\Rt64win7.sys—> C:\Windows\system32\DRIVERS\Rt64win7.sys [?]
S1 SASDIFSV;SASDIFSV;C:\Program Files (x86)\SUPERAntiSpyware\SASDIFSV.SYS [2008-2-29 12872]
S1 SASKUTIL;SASKUTIL;C:\Program Files (x86)\SUPERAntiSpyware\SASKUTIL.SYS [2008-2-29 67656]
S3 AF9035HB;AF9035 Hybrid Device;C:\Windows\system32\Drivers\AF9035HB.sys—> C:\Windows\system32\Drivers\AF9035HB.sys [?]
S3 AthBTPort;Atheros Virtual Bluetooth Class;C:\Windows\system32\DRIVERS\btath_flt.sys—> C:\Windows\system32\DRIVERS\btath_flt.sys [?]
S3 ATHDFU;Atheros Valkyrie USB BootROM;C:\Windows\system32\Drivers\AthDfu.sys—> C:\Windows\system32\Drivers\AthDfu.sys [?]
S3 BTATH_A2DP;Bluetooth A2DP Audio Driver;C:\Windows\system32\drivers\btath_a2dp.sys—> C:\Windows\system32\drivers\btath_a2dp.sys [?]
S3 BTATH_HCRP;Bluetooth HCRP Server driver;C:\Windows\system32\DRIVERS\btath_hcrp.sys—> C:\Windows\system32\DRIVERS\btath_hcrp.sys [?]
S3 BTATH_LWFLT;Bluetooth LWFLT Device;C:\Windows\system32\DRIVERS\btath_lwflt.sys—> C:\Windows\system32\DRIVERS\btath_lwflt.sys [?]
S3 BTATH_RCP;Bluetooth AVRCP Device;C:\Windows\system32\DRIVERS\btath_rcp.sys—> C:\Windows\system32\DRIVERS\btath_rcp.sys [?]
S3 BtFilter;BtFilter;C:\Windows\system32\DRIVERS\btfilter.sys—> C:\Windows\system32\DRIVERS\btfilter.sys [?]
S3 MpNWMon;Microsoft Malware Protection Network Driver;C:\Windows\system32\DRIVERS\MpNWMon.sys—> C:\Windows\system32\DRIVERS\MpNWMon.sys [?]
S3 SASENUM;SASENUM;C:\Program Files (x86)\SUPERAntiSpyware\SASENUM.SYS [2006-2-16 12872]
S3 TsUsbFlt;TsUsbFlt;C:\Windows\system32\drivers\tsusbflt.sys—> C:\Windows\system32\drivers\tsusbflt.sys [?]
S3 TsUsbGD;Remote Desktop Generic USB Device;C:\Windows\system32\drivers\TsUsbGD.sys—> C:\Windows\system32\drivers\TsUsbGD.sys [?]
S3 WatAdminSvc;Tjenesten Windows Aktivering;C:\Windows\system32\Wat\WatAdminSvc.exe—> C:\Windows\system32\Wat\WatAdminSvc.exe [?]
S4 wlcrasvc;Windows Live Mesh remote connections service;C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-9-22 57184]
.
=============== Created Last 30 ================
.
2012-01-05 10:17:00   69000   ——a-w-  C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{D797C3DA-8B88-41A8-A829-4E81F4C8ABF2}\offreg.dll
2012-01-05 10:08:07   ————  d——-w-  C:\Users\Carsten\AppData\Local\Secunia PSI
2012-01-05 10:07:45   ————  d——-w-  C:\Users\Carsten\AppData\Local\{44FD56B1-2433-4855-BB00-78181D10F4F2}
2012-01-05 10:07:40   ————  d——-w-  C:\Program Files (x86)\Secunia
2012-01-05 10:07:36   ————  d——-w-  C:\Users\Carsten\AppData\Local\{98ED00D4-58CF-45D5-A404-BF72EC2F57ED}
2012-01-05 10:07:26   ————  d——-w-  C:\Users\Carsten\AppData\Local\{100F4FA7-265D-41D5-95A5-6D53364EEB12}
2012-01-05 10:07:17   ————  d——-w-  C:\Users\Carsten\AppData\Local\{842015EA-6968-4FE0-B801-B1A359E7AFC4}
2012-01-05 09:48:02   8822856   ——a-w-  C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{D797C3DA-8B88-41A8-A829-4E81F4C8ABF2}\mpengine.dll
2012-01-04 22:06:54   ————  d——-w-  C:\Users\Carsten\AppData\Local\{364900C8-72A6-4A12-995D-A7EF06C33654}
2012-01-04 22:06:44   ————  d——-w-  C:\Users\Carsten\AppData\Local\{DA69EDA5-E03C-43EA-AA65-D4C1F4875767}
2012-01-04 20:15:05   ————  d——-w-  C:\Program Files (x86)\ESET
2012-01-04 18:30:11   ————  d——-w-  C:\Program Files\CCleaner
2012-01-04 18:29:45   ————  d——-w-  C:\Users\Carsten\AppData\Local\Google
2012-01-04 17:31:10   ————  d——-w-  C:\Windows\pss
2012-01-04 12:26:53   ————  d——-w-  C:\ProgramData\Kaspersky Lab
2012-01-04 10:06:21   ————  d——-w-  C:\Users\Carsten\AppData\Local\{1F6E089E-E1C1-4BE6-AB81-E086EE2BA763}
2012-01-04 10:06:12   ————  d——-w-  C:\Users\Carsten\AppData\Local\{C81546A0-8D30-4A07-8AAD-56154D87FB02}
2012-01-04 10:06:02   ————  d——-w-  C:\Users\Carsten\AppData\Local\{88FCD9DD-A2B7-47F5-AAD4-7DBA8F1AEF82}
2012-01-04 10:05:53   ————  d——-w-  C:\Users\Carsten\AppData\Local\{61004F35-32B0-4459-B356-62968B25A3A5}
2012-01-04 09:56:37   ————  d——-w-  C:\Users\Carsten\AppData\Roaming\Curiolab
2012-01-04 09:46:31   ————  d——-w-  C:\Users\Carsten\AppData\Roaming\GetRightToGo
2012-01-04 08:54:30   ————  d——-w-  C:\ProgramData\SUPERAntiSpyware.com
2012-01-04 08:54:26   ————  d——-w-  C:\Users\Carsten\AppData\Roaming\SUPERAntiSpyware.com
2012-01-04 08:54:26   ————  d——-w-  C:\Program Files (x86)\SUPERAntiSpyware
2012-01-04 08:54:04   ————  d——-w-  C:\Program Files (x86)\Common Files\Wise Installation Wizard
2012-01-04 08:02:57   ————  d——-w-  C:\Users\Carsten\AppData\Roaming\Malwarebytes
2012-01-04 08:02:49   ————  d——-w-  C:\ProgramData\Malwarebytes
2012-01-04 08:02:48   23152   ——a-w-  C:\Windows\System32\drivers\mbam.sys
2012-01-04 08:02:48   ————  d——-w-  C:\Program Files (x86)\Malwarebytes’ Anti-Malware
2012-01-03 22:23:52   ————  d——-w-  C:\Users\Carsten\AppData\Local\Safe mirror
2012-01-03 22:19:33   ————  d——-w-  C:\Program Files (x86)\Cobian Backup 10
2012-01-03 22:05:30   ————  d——-w-  C:\Users\Carsten\AppData\Local\{558050FC-B71D-42CA-AB46-39026CD7A3D2}
2012-01-03 22:05:19   ————  d——-w-  C:\Users\Carsten\AppData\Local\{6E9811EC-4B1D-48BF-AC6D-8153CF22574A}
2012-01-03 22:05:10   ————  d——-w-  C:\Users\Carsten\AppData\Local\{F294EC3E-8F9B-48F4-AA6F-21B959C8A311}
2012-01-03 22:05:00   ————  d——-w-  C:\Users\Carsten\AppData\Local\{4464F005-169A-4B1B-AF14-AA468783A88E}
2012-01-03 21:57:20   ————  d——-w-  C:\Users\Carsten\AppData\Roaming\Media Finder
2012-01-03 21:51:47   ————  d-sh—w-  C:\Users\Carsten\AppData\Local\2c137dec
2012-01-03 21:19:38   ————  d——-w-  C:\ProgramData\install_clap
2012-01-03 21:10:03   ————  d——-w-  C:\Program Files (x86)\Shared files
2012-01-03 21:09:56   ————  d——-w-  C:\ProgramData\SmartSound Software Inc
2012-01-03 21:09:55   ————  d——-w-  C:\ProgramData\eSellerate
2012-01-03 21:09:55   ————  d——-w-  C:\Program Files (x86)\SmartSound Software
2012-01-03 21:08:24   ————  d——-w-  C:\Users\Carsten\AppData\Local\Apple
2012-01-03 21:05:04   ————  d——-w-  C:\ProgramData\CLSK
2012-01-03 20:37:08   ————  d——-w-  C:\Program Files (x86)\Lang
2012-01-03 17:51:10   ————  d——-w-  C:\ProgramData\Protexis
2012-01-03 15:39:20   ————  d——-w-  C:\ProgramData\vsosdk
2012-01-03 10:04:37   ————  d——-w-  C:\Users\Carsten\AppData\Local\{7B9D09B0-4B21-4BA6-912C-C63964892CA8}
2012-01-03 10:04:28   ————  d——-w-  C:\Users\Carsten\AppData\Local\{48AE8A08-78A5-4EB1-9E0B-BC587284E986}
2012-01-03 10:04:19   ————  d——-w-  C:\Users\Carsten\AppData\Local\{4F71C8CD-5E56-492F-8C7D-6F108786B951}
2012-01-03 10:04:09   ————  d——-w-  C:\Users\Carsten\AppData\Local\{284B1181-DD89-4DE8-ACFC-CA75E52D3641}
2012-01-02 22:03:46   ————  d——-w-  C:\Users\Carsten\AppData\Local\{C31C68DB-02A3-491D-B7B2-81842E50FFF9}
2012-01-02 22:03:37   ————  d——-w-  C:\Users\Carsten\AppData\Local\{4B34CDE1-67CE-43FB-8C1F-A17784EBD69D}
2012-01-02 22:03:28   ————  d——-w-  C:\Users\Carsten\AppData\Local\{939E166B-D945-4810-AB7B-54358D5FECEA}
2012-01-02 22:03:18   ————  d——-w-  C:\Users\Carsten\AppData\Local\{E3D9252B-7826-416B-80E4-FA7941CC9D3A}
2012-01-02 15:16:54   88   —sh—r-  C:\ProgramData\F36544AF45.sys
2012-01-02 15:16:54   3140   —sha-w-  C:\ProgramData\KGyGaAvL.sys
2012-01-02 15:15:44   ————  d—h—w-  C:\Windows\msdownld.tmp
2012-01-02 15:15:44   ————  d——-w-  C:\Windows\RegisteredPackages
2012-01-02 15:15:40   212992   ——a-w-  C:\Program Files (x86)\Common Files\InstallShield\engine\6\Intel 32\ILog.dll
2012-01-02 15:07:05   ————  d—-a-w-  C:\Program Files (x86)_
2012-01-02 14:19:48   ————  d——-w-  C:\Users\Carsten\AppData\Roaming\dvdae
2012-01-02 14:19:35   ————  d——-w-  C:\Program Files (x86)\DVD Audio Extractor
2012-01-02 13:52:42   ————  d——-w-  C:\ProgramData\IObit
2012-01-02 13:52:40   ————  d——-w-  C:\Program Files (x86)\IObit
2012-01-02 11:34:24   1410048   ——a-w-  C:\Windows\SysWow64\drivers\VMHybr64.sys
2012-01-02 11:34:24   1105408   ——a-w-  C:\Windows\SysWow64\drivers\VMHybrid.sys
2012-01-02 10:57:46   ————  d——-w-  C:\Program Files (x86)\Easy_CD-DA_Extractor_v15.2.1.1.Portable
2012-01-02 09:45:49   3982240   ——a-w-  C:\Windows\SysWow64\Flash10d.ocx
2012-01-02 09:43:10   ————  d——-w-  C:\Program Files (x86)\StreamTransport
2012-01-02 09:34:57   ————  d——-w-  C:\Users\Carsten\AppData\Roaming\Acoustica
2012-01-02 09:34:46   ————  d——-w-  C:\Program Files (x86)\Acoustica CD Label Maker
2012-01-02 09:07:34   ————  d——-w-  C:\Users\Carsten\AppData\Local\{8790E8A5-D7DB-4762-8920-5843F4DBB733}
2012-01-02 09:07:25   ————  d——-w-  C:\Users\Carsten\AppData\Local\{64701E3B-C8D7-4ABF-9B7E-9E3146819876}
2012-01-02 08:24:43   ————  d——-w-  C:\Program Files (x86)\VS Revo Group
2012-01-02 08:10:09   ————  d——-w-  C:\Users\Carsten\AppData\Local\Easy CD-DA Extractor
2012-01-01 21:06:47   ————  d——-w-  C:\Users\Carsten\AppData\Local\{1C5DDC49-CDE7-4D91-B0C7-3B5422332A07}
2012-01-01 21:06:38   ————  d——-w-  C:\Users\Carsten\AppData\Local\{F1D897BE-74C8-4D17-B0AE-6DC6DB67D102}
2012-01-01 21:06:28   ————  d——-w-  C:\Users\Carsten\AppData\Local\{6EB5C26F-59B2-4647-86A4-AABF4253F61A}
2012-01-01 21:06:19   ————  d——-w-  C:\Users\Carsten\AppData\Local\{65CDB947-4557-4621-B4F8-43EEBD61C072}
2012-01-01 09:30:45   ————  d——-w-  C:\Users\Carsten\AppData\Local\Ahead
2012-01-01 09:27:04   ————  d——-w-  C:\Program Files (x86)\Nero
2012-01-01 09:05:56   ————  d——-w-  C:\Users\Carsten\AppData\Local\{A05861B2-95D9-4DEF-836D-2327FFA932AE}
2012-01-01 09:05:47   ————  d——-w-  C:\Users\Carsten\AppData\Local\{D791F697-9F83-4140-83A8-0F297F5398F9}
2011-12-31 14:18:14   ————  d——-w-  C:\Users\Carsten\AppData\Local\{3F588F3A-55CF-4422-92E6-1738275B7E90}
2011-12-31 14:18:05   ————  d——-w-  C:\Users\Carsten\AppData\Local\{3DFA0B06-64EF-4337-B15B-55D4B34E707E}
2011-12-30 14:13:17   ————  d——-w-  C:\Users\Carsten\AppData\Local\{EDB6513C-12D9-4E5E-9C1B-3661680959A3}
2011-12-30 14:13:08   ————  d——-w-  C:\Users\Carsten\AppData\Local\{E7CF610D-3599-4BA0-B162-AA93F808D4E9}
2011-12-29 22:50:48   ————  d——-w-  C:\Users\Carsten\AppData\Local\{33F87462-2AC5-4AF0-8B45-DE196E877E56}
2011-12-29 22:50:39   ————  d——-w-  C:\Users\Carsten\AppData\Local\{CE31FCAB-8255-48AA-AF55-C244E97DAD1F}
2011-12-29 10:45:08   ————  d——-w-  C:\Gads Bogskab
2011-12-29 10:28:13   ————  d——-w-  C:\Program Files (x86)\Windoctor
2011-12-29 10:23:41   ————  d——-w-  C:\Free Rapiddownloader
2011-12-29 09:57:20   ————  d——-w-  C:\Users\Carsten\AppData\Roaming\VitySoft
2011-12-29 09:44:06   ————  d——-w-  C:\Users\Carsten\AppData\Local\{C4B40AD2-1E19-4B53-9286-E28525701C44}
2011-12-29 09:43:56   ————  d——-w-  C:\Users\Carsten\AppData\Local\{ECF546FA-AB37-4BA5-AAD0-2BD10F592209}
2011-12-29 09:43:47   ————  d——-w-  C:\Users\Carsten\AppData\Local\{B22412D4-3D5B-4538-BE8F-3B08CE009ED2}
2011-12-29 09:43:37   ————  d——-w-  C:\Users\Carsten\AppData\Local\{E2DC1E7D-CA28-4332-8C49-AF2B79C9AB23}
2011-12-29 09:43:37   ————  d——-w-  C:\Users\Carsten\AppData\Local\{101B96E7-A699-41DB-8BA5-3CC4AAF9DB68}
2011-12-28 22:40:10   ————  d——-w-  C:\Users\Carsten\AppData\Local\CrashDumps
2011-12-28 21:43:14   ————  d——-w-  C:\Users\Carsten\AppData\Local\{34D40049-78D2-4465-9A81-DA067A128220}
2011-12-28 21:43:05   ————  d——-w-  C:\Users\Carsten\AppData\Local\{154EAFEE-F6B1-4516-B0BB-C3ADD234E952}
2011-12-28 21:42:55   ————  d——-w-  C:\Users\Carsten\AppData\Local\{C60AE485-2244-4E96-89AF-0E812B958B35}
2011-12-28 21:42:45   ————  d——-w-  C:\Users\Carsten\AppData\Local\{43092E80-66B0-4D10-9957-1D9A5FFFE639}
2011-12-28 21:25:46   900096   ——a-w-  C:\Windows\System32\drivers\AF9035HB.sys
2011-12-28 20:29:27   ————  d——-w-  C:\Users\Carsten\AppData\Local\MicroVision Applications
2011-12-28 20:29:24   ————  d——-w-  C:\Program Files (x86)\Common Files\SureThing Shared
2011-12-28 20:29:23   ————  d——-w-  C:\Program Files (x86)\SureThing Express Labeler
2011-12-28 20:22:12   ————  d——-w-  C:\Program Files (x86)\Common Files\Pinnacle
2011-12-28 20:22:08   ————  d——-w-  C:\Users\Carsten\AppData\Local\Downloaded Installations
2011-12-28 20:21:58   ————  d——-w-  C:\Users\Carsten\AppData\Local\Pinnacle
2011-12-28 20:21:44   ————  d——-w-  C:\ProgramData\Pinnacle Studio HD
2011-12-28 20:18:57   ————  d——-w-  C:\Program Files (x86)\Common Files\Pegasus Imaging
2011-12-28 20:18:55   ————  d——-w-  C:\ProgramData\Studio 14
2011-12-28 20:18:55   ————  d——-w-  C:\ProgramData\Pinnacle Studio Plus
2011-12-28 20:18:55   ————  d——-w-  C:\Program Files (x86)\Pinnacle
2011-12-28 20:18:55   ————  d——-w-  C:\Program Files (x86)\Common Files\Yahoo!
2011-12-28 20:07:38   ————  d——-w-  C:\Users\Carsten\AppData\Roaming\Politiken
2011-12-28 20:06:58   ————  d——-w-  C:\Program Files (x86)\Polob32
2011-12-28 18:11:32   ————  d——-w-  C:\Program Files (x86)\BitTorrent
2011-12-28 18:11:25   ————  d——-w-  C:\Users\Carsten\AppData\Roaming\BitTorrent
2011-12-28 18:10:48   ————  d——-w-  C:\Users\Carsten\AppData\Local\BitTorrent
2011-12-28 09:42:22   ————  d——-w-  C:\Users\Carsten\AppData\Local\{8AF2D470-2D24-49FB-99B6-EE732F9A8EB7}
2011-12-28 09:42:13   ————  d——-w-  C:\Users\Carsten\AppData\Local\{1FAF73B0-56EC-43E2-8AE5-D26DEE723EA6}
2011-12-28 09:40:47   ————  d——-w-  C:\Users\Carsten\AppData\Roaming\NVIDIA
2011-12-28 09:40:40   ————  d——-w-  C:\Program Files (x86)\DVDFab 8 Qt
2011-12-28 08:23:36   ————  d——-w-  C:\Program Files (x86)\Common Files\muvee Technologies
2011-12-28 08:23:19   ————  d——-w-  C:\ProgramData\Limiter
2011-12-28 08:17:20   ————  d——-w-  C:\Users\Carsten\AppData\Roaming\XnView
2011-12-28 08:16:53   ————  d——-w-  C:\Program Files (x86)\XnView
2011-12-27 21:47:39   696320   ——a-w-  C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\0701\Intel32\iKernel.dll
2011-12-27 21:41:21   ————  d——-w-  C:\Users\Carsten\AppData\Local\{ABD874E4-D057-46CE-B308-AD6463D2242A}
2011-12-27 21:41:11   ————  d——-w-  C:\Users\Carsten\AppData\Local\{994235B9-2212-4567-AEEF-0D4E41F91767}
2011-12-27 21:41:02   ————  d——-w-  C:\Users\Carsten\AppData\Local\{3AAD6A42-E59F-4E12-8DC3-9F809B42EF81}
2011-12-27 21:40:52   ————  d——-w-  C:\Users\Carsten\AppData\Local\{C81A202A-BD27-4A40-A59A-BF431C5226E6}
2011-12-27 18:08:37   ————  dc——w-  C:\Users\Carsten\AppData\Local\MigWiz
2011-12-27 18:05:12   ————  d——-w-  C:\Windows\Msagent
2011-12-27 17:57:30   ————  d——-w-  C:\Program Files (x86)\BurnAware Free
2011-12-27 08:39:16   ————  d——-w-  C:\Users\Carsten\AppData\Local\Nero_AG
2011-12-27 08:39:13   ————  d——-w-  C:\Users\Carsten\AppData\Local\Nero
2011-12-27 08:38:04   ————  d——-w-  C:\ProgramData\Nero
2011-12-27 08:37:25   248672   ——a-w-  C:\Windows\SysWow64\d3dx11_43.dll
2011-12-27 08:37:25   2106216   ——a-w-  C:\Windows\SysWow64\D3DCompiler_43.dll
2011-12-27 08:37:25   1868128   ——a-w-  C:\Windows\SysWow64\d3dcsx_43.dll
2011-12-27 08:37:24   470880   ——a-w-  C:\Windows\SysWow64\d3dx10_43.dll
2011-12-27 08:37:24   1998168   ——a-w-  C:\Windows\SysWow64\D3DX9_43.dll
2011-12-27 08:37:17   1974616   ——a-w-  C:\Windows\SysWow64\D3DCompiler_42.dll
2011-12-27 08:37:10   4379984   ——a-w-  C:\Windows\SysWow64\D3DX9_40.dll
2011-12-27 08:37:03   3727720   ——a-w-  C:\Windows\SysWow64\d3dx9_35.dll
2011-12-27 08:36:57   3497832   ——a-w-  C:\Windows\SysWow64\d3dx9_34.dll
2011-12-27 07:05:58   ————  d——-w-  C:\Users\Carsten\.oces2
2011-12-27 06:59:24   28968   ——a-w-  C:\Windows\System32\nitrolocalmon2.dll
2011-12-27 06:59:24   17192   ——a-w-  C:\Windows\System32\nitrolocalui2.dll
2011-12-27 06:59:20   ————  d——-w-  C:\Program Files\Common Files\Nitro PDF
2011-12-27 06:59:19   ————  d——-w-  C:\Program Files (x86)\Nitro PDF
2011-12-27 06:59:19   ————  d——-w-  C:\Program Files (x86)\Common Files\Nitro PDF
2011-12-27 06:58:51   ————  d——-w-  C:\Users\Carsten\AppData\Roaming\Downloaded Installations
2011-12-27 06:52:25   ————  d——-w-  C:\Users\Carsten\AppData\Local\{5F7A680C-D892-4804-9886-EFABA072F38D}
2011-12-27 06:52:15   ————  d——-w-  C:\Users\Carsten\AppData\Local\{4DE16FD4-ECDD-461F-88DC-A3538BE6EFC0}
2011-12-26 18:19:03   8822856   ——a-w-  C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll
2011-12-26 17:57:19   ————  d——-w-  C:\ProgramData\HP Photo Creations
2011-12-26 17:57:19   ————  d——-w-  C:\Program Files (x86)\HP Photo Creations
2011-12-26 17:57:17   ————  d——-w-  C:\Users\Carsten\AppData\Roaming\HpUpdate
2011-12-26 17:56:54   ————  d——-w-  C:\Program Files (x86)\HP
2011-12-26 17:56:33   ————  d——-w-  C:\Program Files\HP
2011-12-26 17:56:05   ————  d——-w-  C:\Users\Carsten\AppData\Local\HP
2011-12-26 17:30:07   ————  d——-w-  C:\Users\Carsten\AppData\Local\{4AC56AF8-54F9-489D-8C9B-51C5299242B9}
2011-12-26 17:29:57   ————  d——-w-  C:\Users\Carsten\AppData\Local\{37850AEB-0205-4E61-AC9A-04B393DE7012}
2011-12-26 17:29:45   ————  d——-w-  C:\Users\Carsten\Tracing
2011-12-26 17:25:00   7450888   ——a-w-  C:\Program Files (x86)\Common Files\Windows Live\.cache\4b20a26b1ccc3f315\bingbarsetup.exe
2011-12-26 17:23:23   94040   ——a-w-  C:\Program Files (x86)\Common Files\Windows Live\.cache\123507de1ccc3f306\DSETUP.dll
2011-12-26 17:23:23   525656   ——a-w-  C:\Program Files (x86)\Common Files\Windows Live\.cache\123507de1ccc3f306\DXSETUP.exe
2011-12-26 17:23:23   1691480   ——a-w-  C:\Program Files (x86)\Common Files\Windows Live\.cache\123507de1ccc3f306\dsetup32.dll
2011-12-26 17:23:19   525656   ——a-w-  C:\Program Files (x86)\Common Files\Windows Live\.cache\f25c0961ccc3f305\DXSETUP.exe
2011-12-26 17:23:19   1691480   ——a-w-  C:\Program Files (x86)\Common Files\Windows Live\.cache\f25c0961ccc3f305\dsetup32.dll
2011-12-26 17:23:18   94040   ——a-w-  C:\Program Files (x86)\Common Files\Windows Live\.cache\f25c0961ccc3f305\DSETUP.dll
2011-12-26 17:22:50   6260088   ——a-w-  C:\Program Files (x86)\Common Files\Windows Live\.cache\fe2982fb1ccc3f201\Silverlight.4.0.exe
2011-12-26 15:45:48   476904   ——a-w-  C:\Program Files (x86)\Mozilla Firefox\plugins\npdeployJava1.dll
2011-12-26 15:45:48   472808   ——a-w-  C:\Windows\SysWow64\deployJava1.dll
2011-12-26 09:13:46   ————  d——-w-  C:\Users\Carsten\AppData\Local\{17229931-6FFE-4254-8388-B12C71407B09}
2011-12-26 09:13:37   ————  d——-w-  C:\Users\Carsten\AppData\Local\{B7CC39DC-2306-4947-AAA0-82AE385303AA}
2011-12-26 09:02:54   ————  d——-w-  C:\Users\Carsten\AppData\Roaming\Firetrust
2011-12-26 09:02:22   ————  d——-w-  C:\ProgramData\Firetrust
2011-12-26 08:40:29   ————  d——-w-  C:\Users\Carsten\AppData\Local\GHISLER
2011-12-26 08:35:48   ————  d——-w-  C:\Users\Carsten\AppData\Roaming\GHISLER
2011-12-26 08:35:48   ————  d——-w-  C:\totalcmd
2011-12-25 19:26:23   ————  d——-w-  C:\Users\Carsten\AppData\Roaming\MailWasherPro
2011-12-25 19:26:19   ————  d——-w-  C:\Program Files (x86)\FireTrust
2011-12-25 15:45:17   1892184   ——a-w-  C:\Windows\SysWow64\D3DX9_42.dll
2011-12-25 15:45:16   2414360   ——a-w-  C:\Windows\SysWow64\d3dx9_31.dll
2011-12-25 15:45:07   ————  d——-w-  C:\Program Files (x86)\Winamp Detect
2011-12-25 14:24:37   ————  d——-w-  C:\Users\Carsten\AppData\Local\{E770937B-6A7F-49CE-8D33-58D3E816C830}
2011-12-25 14:24:27   ————  d——-w-  C:\Users\Carsten\AppData\Local\{D6E91537-AC91-47E8-95E1-3BC53E9A7BAC}
2011-12-25 14:24:15   ————  d——-w-  C:\Users\Carsten\AppData\Roaming\Windows Live Writer
2011-12-25 14:24:15   ————  d——-w-  C:\Users\Carsten\AppData\Local\Windows Live Writer
2011-12-25 14:17:18   ————  d——-w-  C:\Windows\PCHEALTH
2011-12-25 14:16:59   15712   ——a-w-  C:\Program Files (x86)\Common Files\Windows Live\.cache\dd98d8351ccc30f06\MeshBetaRemover.exe
2011-12-25 14:16:17   ————  d——-w-  C:\Users\Carsten\AppData\Local\Windows Live
2011-12-25 14:16:17   ————  d——-w-  C:\Program Files (x86)\Common Files\Windows Live
2011-12-25 13:56:03   917840   ———w-  C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{02268888-A782-4B36-8843-CFBF8733226F}\gapaengine.dll
2011-12-25 13:54:48   ————  d——-w-  C:\Program Files (x86)\Microsoft Security Client
2011-12-25 13:54:38   ————  d——-w-  C:\Program Files\Microsoft Security Client
2011-12-25 13:44:02   98816   ——a-w-  C:\Windows\System32\drivers\usbccgp.sys
2011-12-25 13:44:02   7936   ——a-w-  C:\Windows\System32\drivers\usbd.sys
2011-12-25 13:44:02   52736   ——a-w-  C:\Windows\System32\drivers\usbehci.sys
2011-12-25 13:44:02   343040   ——a-w-  C:\Windows\System32\drivers\usbhub.sys
2011-12-25 13:44:02   325120   ——a-w-  C:\Windows\System32\drivers\usbport.sys
2011-12-25 13:44:02   30720   ——a-w-  C:\Windows\System32\drivers\usbuhci.sys
2011-12-25 13:44:02   25600   ——a-w-  C:\Windows\System32\drivers\usbohci.sys
2011-12-25 13:44:01   80384   ——a-w-  C:\Windows\System32\drivers\BTHUSB.SYS
2011-12-25 13:44:01   552960   ——a-w-  C:\Windows\System32\drivers\bthport.sys
2011-12-23 11:25:09   ————  d——-w-  C:\Windows\SysWow64\Wat
2011-12-23 11:25:09   ————  d——-w-  C:\Windows\System32\Wat
2011-12-23 11:17:14   8199504   ——a-w-  C:\ProgramData\Microsoft\Windows Defender\Definition Updates\Backup\mpengine.dll
2011-12-23 11:17:13   8822856   ——a-w-  C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{FBE790ED-BBE3-41D0-85EB-228C463DEDD9}\mpengine.dll
2011-12-23 11:13:56   2048   ——a-w-  C:\Windows\SysWow64\tzres.dll
2011-12-23 11:08:04   ————  d——-w-  C:\Program Files (x86)\NVIDIA Corporation
2011-12-23 11:08:01   837952   ——a-w-  C:\Windows\System32\easyupdatusapiu64.dll
2011-12-23 11:08:01   5067584   ——a-w-  C:\Windows\System32\nvsvc64.dll
2011-12-23 11:08:01   3074368   ——a-w-  C:\Windows\System32\nvsvcr.dll
2011-12-23 11:08:01   222528   ——a-w-  C:\Windows\System32\nvmctray.dll
2011-12-23 11:08:01   1640768   ——a-w-  C:\Windows\System32\nvvsvc.exe
2011-12-23 11:08:01   137536   ——a-w-  C:\Windows\System32\nvshext.dll
2011-12-23 11:08:01   10406208   ——a-w-  C:\Windows\System32\nvcpl.dll
2011-12-23 11:06:57   414368   ——a-w-  C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
2011-12-23 10:27:28   ————  d——-w-  C:\Program Files (x86)\Common Files\Atheros
2011-12-23 10:27:25   ————  d——-w-  C:\Program Files (x86)\Bluetooth Suite
2011-12-23 10:27:05   315904   ——a-w-  C:\Windows\SysWow64\Difx862f.rra
2011-12-23 10:27:05   ————  d——-w-  C:\RaidTool
2011-12-23 10:27:03   120920   ——a-w-  C:\Windows\System32\drivers\jraid.sys
2011-12-23 10:25:42   ————  d——-w-  C:\Program Files (x86)\Marvell
2011-12-23 10:25:31   ————  d——-w-  C:\Program Files (x86)\Renesas Electronics
2011-12-23 10:25:27   ————  d-sh—w-  C:\Windows\Installer
2011-12-23 10:24:57   107552   ——a-w-  C:\Windows\System32\RTNUninst64.dll
2011-12-23 10:22:43   53248   ——a-r-  C:\Windows\SysWow64\CSVer.dll
2011-12-23 10:22:35   ————  d——-w-  C:\Intel
2011-12-23 09:42:48   ————  d——-w-  C:\Windows\Panther
.
==================== Find3M ====================
.
2012-01-02 09:50:25   99384   ——a-w-  C:\Users\Carsten\AppData\Roaming\inst.exe
2012-01-02 09:50:25   82816   ——a-w-  C:\Windows\System32\drivers\pcouffin.sys
2012-01-02 09:50:25   82816   ——a-w-  C:\Users\Carsten\AppData\Roaming\pcouffin.sys
2011-11-24 04:52:09   3145216   ——a-w-  C:\Windows\System32\win32k.sys
2011-11-05 05:32:50   2048   ——a-w-  C:\Windows\System32\tzres.dll
2011-10-26 05:21:20   43520   ——a-w-  C:\Windows\System32\csrsrv.dll
2011-10-24 13:29:02   94208   ——a-w-  C:\Windows\SysWow64\QuickTimeVR.qtx
2011-10-24 13:29:02   69632   ——a-w-  C:\Windows\SysWow64\QuickTime.qts
2011-10-15 06:31:56   723456   ——a-w-  C:\Windows\System32\EncDec.dll
2011-10-15 05:38:59   534528   ——a-w-  C:\Windows\SysWow64\EncDec.dll
2011-10-14 23:54:52   321856   ——a-w-  C:\Windows\SysWow64\nvStreaming.exe
2010-11-18 20:27:34   162816   ——a-w-  C:\Program Files (x86)\7z.sfx
2010-11-18 20:27:34   152064   ——a-w-  C:\Program Files (x86)\7zCon.sfx
2010-11-18 20:24:20   1422336   ——a-w-  C:\Program Files (x86)\7z.dll
2010-11-18 20:11:38   387072   ——a-w-  C:\Program Files (x86)\7zG.exe
2010-11-18 20:10:48   740352   ——a-w-  C:\Program Files (x86)\7zFM.exe
2010-11-18 20:08:50   86016   ——a-w-  C:\Program Files (x86)\7-zip.dll
2010-11-18 20:08:30   284160   ——a-w-  C:\Program Files (x86)\7z.exe
.
============= FINISH: 16:11:22,44 ===============

    [ Ignorer ]   [ # 1 ]   
  f-arn TeamSpywarefri
05.01.2012 20:32:40
Administrator
Team Spywarefri
Antal indlæg: 4202

Hej smile

Drop fildeling ->
http://www.spywarefri.dk/artikel/farerne-ved-fildeling/
http://www.spywarefri.dk/forum/viewthread/40284/

Afinstaller BitTorrent!

———

Download OTL af OldTimer og gem den på dit skrivebord.

Start OTL

Vista og Windows 7 - højreklik på filen - Kør som Administrator.

Øverst sætter du flueben i “Scan All Users

I nederste højre hjørne af det øverste panel, sæt fluben ved “LOP Check” og “Purity Check”.

Luk alle åbne vinduer og klik på “Run Scan” øverst til venstre og lad programmet køre. Scanningen kan tage 5-10 minutter.

Det vil give to logfiler på skrivebordet, OTL.txt og Extras.txt.

Så kopier følgende ind i dit næste indlæg (i rækkefølge):

indholdet af OTL.txt
indholdet af Extras.txt

Da de er forholdsvis lange, kan du blive nødt til at sende dem i flere indlæg.

Signatur

Undlad venligst at vedhæfte logs, medmindre du bliver bedt om det !

    [ Ignorer ]   [ # 2 ]   
  cljeppe
05.01.2012 22:16:48
Antal indlæg: 49

Hermed gjort - starter med 1. del af 1. logfil:

OTL logfile created on: 05-01-2012 19:56:59 - Run 1
OTL by OldTimer - Version 3.2.31.0   Folder = C:\Users\Carsten\Desktop
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000406 | Country: Danmark | Language: DAN | Date Format: dd-MM-yyyy

7,98 Gb Total Physical Memory | 6,52 Gb Available Physical Memory | 81,67% Memory free
15,95 Gb Paging File | 14,39 Gb Available in Paging File | 90,23% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 111,69 Gb Total Space | 67,45 Gb Free Space | 60,39% Space Free | Partition Type: NTFS
Drive D: | 1397,26 Gb Total Space | 1116,78 Gb Free Space | 79,93% Space Free | Partition Type: NTFS

Computer Name: CARSTEN-PC | User Name: Carsten | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2012-01-05 19:53:44 | 000,584,192 |——| M] (OldTimer Tools)—C:\Users\Carsten\Desktop\OTL.exe
PRC - [2011-10-15 09:53:00 | 002,253,120 |——| M] (NVIDIA Corporation)—C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
PRC - [2011-10-15 00:54:40 | 000,381,248 |——| M] (NVIDIA Corporation)—C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
PRC - [2011-10-14 07:01:50 | 000,994,360 |——| M] (Secunia)—C:\Program Files (x86)\Secunia\PSI\PSIA.exe
PRC - [2011-10-14 07:01:48 | 000,399,416 |——| M] (Secunia)—C:\Program Files (x86)\Secunia\PSI\sua.exe
PRC - [2011-10-14 07:01:46 | 000,291,896 |——| M] (Secunia)—C:\Program Files (x86)\Secunia\PSI\psi_tray.exe
PRC - [2011-10-05 17:01:30 | 005,385,552 |——| M] (Firetrust)—C:\Program Files (x86)\FireTrust\MailWasher\MailWasherPro.exe
PRC - [2010-11-17 02:53:16 | 000,113,288 |——| M] (Renesas Electronics Corporation)—C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
PRC - [2010-09-23 16:46:16 | 003,154,432 |——| M] (Luis Cobian, CobianSoft)—C:\Program Files (x86)\Cobian Backup 10\cbInterface.exe
PRC - [2010-09-23 16:46:14 | 001,125,376 |——| M] (Luis Cobian, CobianSoft)—C:\Program Files (x86)\Cobian Backup 10\cbService.exe


========== Modules (No Company Name) ==========

MOD - [2012-01-05 17:12:58 | 000,253,952 |——| M] ()—C:\Windows\assembly\NativeImages_v4.0.30319_32\WindowsFormsIntegra#\962b04386ebf18f5871d5ceefa83ba4b\WindowsFormsIntegration.ni.dll
MOD - [2012-01-05 17:12:36 | 013,346,816 |——| M] ()—C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Data.Entity\78afce4e1bd3d345ef1fff004659191c\System.Data.Entity.ni.dll
MOD - [2012-01-05 17:12:04 | 000,134,656 |——| M] ()—C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Data.DataSet#\282487a15f595c199b6cc640ea8995e8\System.Data.DataSetExtensions.ni.dll
MOD - [2012-01-05 17:11:55 | 000,196,096 |——| M] ()—C:\Windows\assembly\NativeImages_v4.0.30319_32\UIAutomationTypes\5b96ee4992d9559ba5483c769bc5c889\UIAutomationTypes.ni.dll
MOD - [2012-01-05 17:11:55 | 000,096,768 |——| M] ()—C:\Windows\assembly\NativeImages_v4.0.30319_32\UIAutomationProvider\1c177e9aa7a1661ddec16c2f9f30947c\UIAutomationProvider.ni.dll
MOD - [2012-01-05 17:11:51 | 001,782,272 |——| M] ()—C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xaml\a3ffdc1316821b5ceb32c9a788334329\System.Xaml.ni.dll
MOD - [2012-01-05 17:11:44 | 000,044,544 |——| M] ()—C:\Windows\assembly\NativeImages_v4.0.30319_32\Accessibility\06ac8d640d2dfa7d4bb23c03584304ef\Accessibility.ni.dll
MOD - [2011-12-25 16:03:13 | 018,000,384 |——| M] ()—C:\Windows\assembly\NativeImages_v4.0.30319_32\PresentationFramewo#\813a0913bea1269e48613509609e72b4\PresentationFramework.ni.dll
MOD - [2011-12-25 16:03:06 | 011,450,880 |——| M] ()—C:\Windows\assembly\NativeImages_v4.0.30319_32\PresentationCore\8244412387a82c0acd3d63622e22cef5\PresentationCore.ni.dll
MOD - [2011-12-25 16:03:05 | 006,815,232 |——| M] ()—C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Data\14d8a7579839b11151cd901b846d0afb\System.Data.ni.dll
MOD - [2011-12-25 16:03:04 | 013,138,432 |——| M] ()—C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Windows.Forms\2de8b7360d6a58fa7fd1b451fa88dde6\System.Windows.Forms.ni.dll
MOD - [2011-12-25 16:03:02 | 007,069,696 |——| M] ()—C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Core\44a7d2597981a82da8b9e3e2298602de\System.Core.ni.dll
MOD - [2011-12-25 16:03:01 | 005,617,664 |——| M] ()—C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xml\419103071a5a5d17738afbe9dd03d58a\System.Xml.ni.dll
MOD - [2011-12-25 16:03:00 | 003,857,920 |——| M] ()—C:\Windows\assembly\NativeImages_v4.0.30319_32\WindowsBase\9dacf8a5033dfbcb435be166d2f42cdf\WindowsBase.ni.dll
MOD - [2011-12-25 16:02:59 | 001,652,736 |——| M] ()—C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Drawing\17bfc7131aca3a393f430121f79307bd\System.Drawing.ni.dll
MOD - [2011-12-25 16:02:58 | 009,086,464 |——| M] ()—C:\Windows\assembly\NativeImages_v4.0.30319_32\System\5286fe2d0167eb835a9f11025f1cb756\System.ni.dll
MOD - [2011-12-25 16:02:58 | 000,595,968 |——| M] ()—C:\Windows\assembly\NativeImages_v4.0.30319_32\PresentationFramewo#\9211f2faac02f0082b201a95731736c4\PresentationFramework.Aero.ni.dll
MOD - [2011-12-25 16:02:55 | 000,145,408 |——| M] ()—C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Numerics\97126244f88693adb36f94116d8d0dda\System.Numerics.ni.dll
MOD - [2011-12-25 16:01:56 | 014,407,680 |——| M] ()—C:\Windows\assembly\NativeImages_v4.0.30319_32\mscorlib\a774bd593b8420bae4a8cf1d46af3ba2\mscorlib.ni.dll
MOD - [2011-09-22 20:44:22 | 004,628,480 |——| M] ()—C:\Program Files (x86)\FireTrust\MailWasher\MWPappDLL.dll
MOD - [2011-09-22 20:44:20 | 000,061,952 |——| M] ()—C:\Program Files (x86)\FireTrust\MailWasher\MWPBridgeDLL.dll
MOD - [2011-09-20 17:14:16 | 000,144,896 |——| M] ()—C:\Program Files (x86)\FireTrust\MailWasher\MailPrefs.dll
MOD - [2011-08-22 12:11:14 | 000,272,384 |——| M] ()—C:\Program Files (x86)\FireTrust\MailWasher\FTClientNode.dll
MOD - [2011-08-22 12:11:12 | 000,061,952 |——| M] ()—C:\Program Files (x86)\FireTrust\MailWasher\FTBridge.dll


========== Win32 Services (SafeList) ==========

SRV:64bit: - [2011-12-20 10:11:48 | 000,341,800 |——| M] (Nitro PDF Software) [Auto | Running]—C:\Program Files\Common Files\Nitro PDF\Reader\2.0\NitroPDFReaderDriverService2x64.exe—(NitroReaderDriverReadSpool2)
SRV:64bit: - [2011-04-27 17:21:18 | 000,288,272 |——| M] (Microsoft Corporation) [On_Demand | Running]—C:\Program Files\Microsoft Security Client\Antimalware\NisSrv.exe—(NisSrv)
SRV:64bit: - [2011-04-27 17:21:18 | 000,012,784 |——| M] (Microsoft Corporation) [Auto | Running]—C:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe—(MsMpSvc)
SRV:64bit: - [2010-09-22 18:10:10 | 000,057,184 |——| M] (Microsoft Corporation) [Disabled | Stopped]—C:\Program Files\Windows Live\Mesh\wlcrasvc.exe—(wlcrasvc)
SRV:64bit: - [2010-08-12 15:00:20 | 000,133,800 |——| M] (Intel Corporation) [Auto | Running]—C:\Windows\SysNative\IPROSetMonitor.exe—(Intel® PROSet Monitoring Service)
SRV - [2011-10-15 09:53:00 | 002,253,120 |——| M] (NVIDIA Corporation) [Auto | Running]—C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe—(nvUpdatusService)
SRV - [2011-10-15 00:54:40 | 000,381,248 |——| M] (NVIDIA Corporation) [Auto | Running]—C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe—(Stereo Service)
SRV - [2011-10-14 07:01:50 | 000,994,360 |——| M] (Secunia) [Auto | Running]—C:\Program Files (x86)\Secunia\PSI\PSIA.exe—(Secunia PSI Agent)
SRV - [2011-10-14 07:01:48 | 000,399,416 |——| M] (Secunia) [Auto | Running]—C:\Program Files (x86)\Secunia\PSI\sua.exe—(Secunia Update Agent)
SRV - [2010-10-27 16:18:52 | 000,052,896 |——| M] (Atheros Commnucations) [Auto | Running]—C:\Program Files (x86)\Bluetooth Suite\adminservice.exe—(AtherosSvc)
SRV - [2010-09-23 16:46:14 | 001,125,376 |——| M] (Luis Cobian, CobianSoft) [Auto | Running]—C:\Program Files (x86)\Cobian Backup 10\cbService.exe—(CobianBackup10)
SRV - [2010-09-23 09:49:08 | 000,067,584 |——| M] (CobianSoft, Luis Cobian) [Auto | Running]—C:\Program Files (x86)\Cobian Backup 10\cbVSCService.exe—(cbVSCService)
SRV - [2010-03-18 13:16:28 | 000,130,384 |——| M] (Microsoft Corporation) [Auto | Stopped]—C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe—(clr_optimization_v4.0.30319_32)
SRV - [2009-06-10 22:23:09 | 000,066,384 |——| M] (Microsoft Corporation) [Disabled | Stopped]—C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe—(clr_optimization_v2.0.50727_32)


========== Driver Services (SafeList) ==========

DRV:64bit: - [2012-01-02 11:20:16 | 000,900,096 |——| M] (AfaTech             ) [Kernel | On_Demand | Stopped]—C:\Windows\SysNative\drivers\AF9035HB.sys—(AF9035HB)
DRV:64bit: - [2012-01-02 10:50:25 | 000,082,816 |——| M] (VSO Software) [Kernel | On_Demand | Running]—C:\Windows\SysNative\drivers\pcouffin.sys—(pcouffin)
DRV:64bit: - [2011-07-08 00:21:28 | 000,174,184 |——| M] (NVIDIA Corporation) [Kernel | On_Demand | Running]—C:\Windows\SysNative\drivers\nvhda64v.sys—(NVHDA)
DRV:64bit: - [2011-06-10 06:34:52 | 000,539,240 |——| M] (Realtek                             ) [Kernel | On_Demand | Running]—C:\Windows\SysNative\drivers\Rt64win7.sys—(RTL8167)
DRV:64bit: - [2011-04-27 15:25:24 | 000,084,864 |——| M] (Microsoft Corporation) [Kernel | On_Demand | Running]—C:\Windows\SysNative\drivers\NisDrvWFP.sys—(NisDrv)
DRV:64bit: - [2011-03-11 07:41:12 | 000,107,904 |——| M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped]—C:\Windows\SysNative\drivers\amdsata.sys—(amdsata)
DRV:64bit: - [2011-03-11 07:41:12 | 000,027,008 |——| M] (Advanced Micro Devices) [Kernel | Boot | Running]—C:\Windows\SysNative\drivers\amdxata.sys—(amdxata)
DRV:64bit: - [2010-12-10 06:50:36 | 000,181,248 |——| M] (Renesas Electronics Corporation) [Kernel | On_Demand | Running]—C:\Windows\SysNative\drivers\nusb3xhc.sys—(nusb3xhc)
DRV:64bit: - [2010-12-10 06:50:36 | 000,080,384 |——| M] (Renesas Electronics Corporation) [Kernel | On_Demand | Running]—C:\Windows\SysNative\drivers\nusb3hub.sys—(nusb3hub)
DRV:64bit: - [2010-11-22 08:09:06 | 000,303,408 |——| M] (Marvell Semiconductor, Inc.) [Kernel | Boot | Running]—C:\Windows\SysNative\drivers\mv91xx.sys—(mv91xx)
DRV:64bit: - [2010-11-21 04:24:33 | 000,059,392 |——| M] (Microsoft Corporation) [Kernel | On_Demand | Stopped]—C:\Windows\SysNative\drivers\TsUsbFlt.sys—(TsUsbFlt)
DRV:64bit: - [2010-11-21 04:23:47 | 000,078,720 |——| M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped]—C:\Windows\SysNative\drivers\HpSAMD.sys—(HpSAMD)
DRV:64bit: - [2010-11-21 04:23:47 | 000,031,232 |——| M] (Microsoft Corporation) [Kernel | On_Demand | Stopped]—C:\Windows\SysNative\drivers\TsUsbGD.sys—(TsUsbGD)
DRV:64bit: - [2010-10-27 15:50:28 | 000,301,680 |——| M] (Atheros) [Kernel | On_Demand | Stopped]—C:\Windows\SysNative\drivers\btath_a2dp.sys—(BTATH_A2DP)
DRV:64bit: - [2010-10-27 15:50:28 | 000,279,152 |——| M] (Atheros) [Kernel | On_Demand | Stopped]—C:\Windows\SysNative\drivers\btfilter.sys—(BtFilter)
DRV:64bit: - [2010-10-27 15:50:28 | 000,203,624 |——| M] (Atheros) [Kernel | On_Demand | Stopped]—C:\Windows\SysNative\drivers\btath_hcrp.sys—(BTATH_HCRP)
DRV:64bit: - [2010-10-27 15:50:28 | 000,156,520 |——| M] (Atheros) [Kernel | On_Demand | Stopped]—C:\Windows\SysNative\drivers\btath_rcp.sys—(BTATH_RCP)
DRV:64bit: - [2010-10-27 15:50:28 | 000,058,992 |——| M] (Atheros) [Kernel | On_Demand | Stopped]—C:\Windows\SysNative\drivers\btath_lwflt.sys—(BTATH_LWFLT)
DRV:64bit: - [2010-10-27 15:50:28 | 000,055,336 |——| M] (Windows (R) Win 7 DDK provider) [Kernel | On_Demand | Stopped]—C:\Windows\SysNative\drivers\AthDfu.sys—(ATHDFU)
DRV:64bit: - [2010-10-27 15:50:28 | 000,038,248 |——| M] (Atheros) [Kernel | On_Demand | Stopped]—C:\Windows\SysNative\drivers\btath_flt.sys—(AthBTPort)
DRV:64bit: - [2010-10-27 15:50:28 | 000,031,080 |——| M] (Atheros) [Kernel | On_Demand | Running]—C:\Windows\SysNative\drivers\btath_bus.sys—(BTATH_BUS)
DRV:64bit: - [2010-10-19 16:34:26 | 000,056,344 |——| M] (Intel Corporation) [Kernel | On_Demand | Running]—C:\Windows\SysNative\drivers\HECIx64.sys—(MEIx64) Intel(R)
DRV:64bit: - [2010-09-21 07:34:18 | 000,313,520 |——| M] (Intel Corporation) [Kernel | On_Demand | Running]—C:\Windows\SysNative\drivers\e1c62x64.sys—(e1cexpress) Intel(R)
DRV:64bit: - [2010-09-01 09:30:58 | 000,017,976 |——| M] (Secunia) [File_System | On_Demand | Running]—C:\Windows\SysNative\drivers\psi_mf.sys—(PSI)
DRV:64bit: - [2010-08-10 10:29:16 | 000,120,920 |——| M] (JMicron Technology Corp.) [Kernel | Boot | Running]—C:\Windows\SysNative\drivers\jraid.sys—(JRAID)
DRV:64bit: - [2009-07-14 02:52:20 | 000,194,128 |——| M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped]—C:\Windows\SysNative\drivers\amdsbs.sys—(amdsbs)
DRV:64bit: - [2009-07-14 02:48:04 | 000,065,600 |——| M] (LSI Corporation) [Kernel | On_Demand | Stopped]—C:\Windows\SysNative\drivers\lsi_sas2.sys—(LSI_SAS2)
DRV:64bit: - [2009-07-14 02:45:55 | 000,024,656 |——| M] (Promise Technology) [Kernel | On_Demand | Stopped]—C:\Windows\SysNative\drivers\stexstor.sys—(stexstor)
DRV:64bit: - [2009-06-10 21:34:33 | 003,286,016 |——| M] (Broadcom Corporation) [Kernel | On_Demand | Stopped]—C:\Windows\SysNative\drivers\evbda.sys—(ebdrv)
DRV:64bit: - [2009-06-10 21:34:28 | 000,468,480 |——| M] (Broadcom Corporation) [Kernel | On_Demand | Stopped]—C:\Windows\SysNative\drivers\bxvbda.sys—(b06bdrv)
DRV:64bit: - [2009-06-10 21:34:23 | 000,270,848 |——| M] (Broadcom Corporation) [Kernel | On_Demand | Stopped]—C:\Windows\SysNative\drivers\b57nd60a.sys—(b57nd60a)
DRV:64bit: - [2009-06-10 21:31:59 | 000,031,232 |——| M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped]—C:\Windows\SysNative\drivers\hcw85cir.sys—(hcw85cir)
DRV:64bit: - [2009-05-08 11:08:00 | 000,020,520 |——| M] (GARMIN Corp.) [Kernel | On_Demand | Stopped]—C:\Windows\SysNative\drivers\grmnusb.sys—(grmnusb)
DRV:64bit: - [2007-08-31 18:58:18 | 000,020,392 |——| M] (Microsoft Corporation) [Kernel | On_Demand | Stopped]—C:\Windows\SysNative\drivers\nuidfltr.sys—(NuidFltr)
DRV:64bit: - [2005-09-23 22:18:34 | 000,261,120 |——| M] (Pinnacle Systems GmbH) [Kernel | On_Demand | Running]—C:\Windows\SysNative\drivers\MarvinBus64.sys—(MarvinBus)
DRV - [2012-01-04 12:10:28 | 000,012,872 |——| M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Stopped]—C:\Program Files (x86)\SUPERAntiSpyware\SASDIFSV.SYS—(SASDIFSV)
DRV - [2012-01-04 12:10:27 | 000,067,656 |——| M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Stopped]—C:\Program Files (x86)\SUPERAntiSpyware\SASKUTIL.sys—(SASKUTIL)
DRV - [2012-01-04 12:10:27 | 000,012,872 |——| M] ( SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | On_Demand | Stopped]—C:\Program Files (x86)\SUPERAntiSpyware\SASENUM.SYS—(SASENUM)
DRV - [2009-07-14 02:19:10 | 000,019,008 |——| M] (Microsoft Corporation) [File_System | On_Demand | Stopped]—C:\Windows\SysWOW64\drivers\wimmount.sys—(WIMMount)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm


IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: “ProxyEnable” = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: “ProxyEnable” = 0



IE - HKU\S-1-5-21-3405606277-1647924529-2829051646-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://dk.msn.com/?ocid=iehp
IE - HKU\S-1-5-21-3405606277-1647924529-2829051646-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = da-DK
IE - HKU\S-1-5-21-3405606277-1647924529-2829051646-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 1D CE BA 3F 0D C3 CC 01 [binary data]
IE - HKU\S-1-5-21-3405606277-1647924529-2829051646-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: “ProxyEnable” = 0

IE - HKU\S-1-5-21-3405606277-1647924529-2829051646-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://dk.msn.com/?ocid=iehp
IE - HKU\S-1-5-21-3405606277-1647924529-2829051646-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = da-DK
IE - HKU\S-1-5-21-3405606277-1647924529-2829051646-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 1D CE BA 3F 0D C3 CC 01 [binary data]
IE - HKU\S-1-5-21-3405606277-1647924529-2829051646-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings: “ProxyEnable” = 0

========== FireFox ==========

FF - prefs.js..browser.startup.homepage: “http://en.wikipedia.org/wiki/Main_Page”

FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_1_102.dll File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files (x86)\Microsoft Silverlight\4.0.60831.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@nitropdf.com/NitroPDF: C:\Program Files (x86)\Nitro PDF\Reader 2\npnitromozilla.dll ( )
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVision: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVisionStreaming: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 9.0.1\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2012-01-05 11:10:03 | 000,000,000 |—-D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 9.0.1\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2012-01-05 11:10:03 | 000,000,000 |—-D | M]

[2012-01-03 22:57:20 | 000,000,000 |—-D | M] (No name found)—C:\Users\Carsten\AppData\Roaming\mozilla\Extensions
[2012-01-05 18:19:02 | 000,000,000 |—-D | M] (No name found)—C:\Users\Carsten\AppData\Roaming\mozilla\Firefox\Profiles\8gs7c582.default\extensions
[2012-01-05 18:19:02 | 000,000,000 |—-D | M] (Garmin Communicator)—C:\Users\Carsten\AppData\Roaming\mozilla\Firefox\Profiles\8gs7c582.default\extensions\{195A3098-0BD5-4e90-AE22-BA1C540AFD1E}
[2011-12-26 16:45:48 | 000,000,000 |—-D | M] (No name found)—C:\Program Files (x86)\mozilla firefox\extensions
[2011-12-26 16:45:48 | 000,000,000 |—-D | M] (Java Console)—C:\Program Files (x86)\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0030-ABCDEFFEDCBA}
[2011-12-21 08:40:01 | 000,121,816 |——| M] (Mozilla Foundation)—C:\Program Files (x86)\mozilla firefox\components\browsercomps.dll
[2011-12-26 16:45:45 | 000,476,904 |——| M] (Sun Microsystems, Inc.)—C:\Program Files (x86)\mozilla firefox\plugins\npdeployJava1.dll
[2011-10-26 19:49:56 | 000,012,800 |——| M] (Nullsoft, Inc.)—C:\Program Files (x86)\mozilla firefox\plugins\npwachk.dll
[2011-12-21 07:27:28 | 000,001,525 |——| M] ()—C:\Program Files (x86)\mozilla firefox\searchplugins\amazon-co-uk.xml
[2011-12-21 06:38:17 | 000,002,252 |——| M] ()—C:\Program Files (x86)\mozilla firefox\searchplugins\bing.xml
[2011-12-21 07:27:28 | 000,001,178 |——| M] ()—C:\Program Files (x86)\mozilla firefox\searchplugins\wikipedia-da.xml

O1 HOSTS File: ([2009-06-10 22:00:26 | 000,000,824 |——| M]) - C:\Windows\SysNative\drivers\etc\hosts
O2:64bit: - BHO: (Windows Live ID Sign-in Helper) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Programmer\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (CIESpeechBHO Class) - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll (Atheros Commnucations)
O4:64bit: - HKLM..\Run: [Logitech Download Assistant] C:\Windows\SysNative\LogiLDA.dll (Logitech, Inc.)
O4:64bit: - HKLM..\Run: [MSC] C:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation)
O4:64bit: - HKLM..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor)
O4 - HKLM..\Run: []  File not found
O4 - HKLM..\Run: [Cobian Backup 10 Interface] C:\Program Files (x86)\Cobian Backup 10\cbInterface.exe (Luis Cobian, CobianSoft)
O4 - HKLM..\Run: [JMB36X IDE Setup] C:\Windows\RaidTool\xInsIDE.exe ()
O4 - HKLM..\Run: [NUSB3MON] C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe (Renesas Electronics Corporation)
O4 - HKU\S-1-5-19..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-3405606277-1647924529-2829051646-1000..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O4 - HKU\S-1-5-21-3405606277-1647924529-2829051646-1000..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O8:64bit: - Extra context menu item: Download with &Media; Finder - C:\Program Files (x86)\Media Finder\hook.html File not found
O8 - Extra context menu item: Download with &Media; Finder - C:\Program Files (x86)\Media Finder\hook.html File not found
O9:64bit: - Extra ‘Tools’ menuitem : Send by Bluetooth to - {7815BE26-237D-41A8-A98F-F7BD75F71086} - Reg Error: Value error. File not found
O9 - Extra ‘Tools’ menuitem : Send by Bluetooth to - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll (Atheros Commnucations)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000008 [] - C:\Programmer\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL (Microsoft Corp.)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000009 [] - C:\Programmer\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL (Microsoft Corp.)
O1364bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_30-windows-i586.cab (Java Plug-in 1.6.0_30)
O16 - DPF: {CAFEEFAC-0016-0000-0030-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_30-windows-i586.cab (Java Plug-in 1.6.0_30)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_30-windows-i586.cab (Java Plug-in 1.6.0_30)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/flashplayer/current/swflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.15.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{072B7BC7-2DCD-411A-8CCC-6B03DCC1903C}: DhcpNameServer = 192.168.15.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{F7191D76-212A-4ADD-B9AA-31331D303F4D}: DhcpNameServer = 192.168.15.1
O18:64bit: - Protocol\Handler\ipp - No CLSID value found
O18:64bit: - Protocol\Handler\ipp\0x00000001 - No CLSID value found
O18:64bit: - Protocol\Handler\livecall - No CLSID value found
O18:64bit: - Protocol\Handler\msdaipp - No CLSID value found
O18:64bit: - Protocol\Handler\msdaipp\0x00000001 - No CLSID value found
O18:64bit: - Protocol\Handler\msdaipp\oledb - No CLSID value found
O18:64bit: - Protocol\Handler\ms-itss - No CLSID value found
O18:64bit: - Protocol\Handler\msnim - No CLSID value found
O18:64bit: - Protocol\Handler\wlmailhtml - No CLSID value found
O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11D1-9C6B-0000F875AC61} - C:\PROGRA~2\COMMON~1\System\OLEDB~1\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11D1-9C6B-0000F875AC61} - C:\PROGRA~2\COMMON~1\System\OLEDB~1\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11D1-9C6B-0000F875AC61} - C:\PROGRA~2\COMMON~1\System\OLEDB~1\MSDAIPP.DLL (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (/pagefile) -  File not found
O20 - HKLM Winlogon: Shell - (explorer.exe) -C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) -C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20 - HKU\S-1-5-21-3405606277-1647924529-2829051646-1001 Winlogon: Shell - (C:\Users\Carsten\AppData\Local\2c137dec\X) -C:\Users\Carsten\AppData\Local\2c137dec\X ()
O20 - Winlogon\Notify\!SASWinLogon: DllName - (C:\Program Files (x86)\SUPERAntiSpyware\SASWINLO.DLL) - C:\Program Files (x86)\SUPERAntiSpyware\SASWINLO.DLL (SUPERAntiSpyware.com)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O28 - HKLM ShellExecuteHooks: {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - C:\Program Files (x86)\SUPERAntiSpyware\SASSEH.DLL (SuperAdBlocker.com)
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open]—“%1” %*
O35:64bit: - HKLM\..exefile [open]—“%1” %*
O35 - HKLM\..comfile [open]—“%1” %*
O35 - HKLM\..exefile [open]—“%1” %*
O37:64bit: - HKLM\...com [@ = comfile]—“%1” %*
O37:64bit: - HKLM\...exe [@ = exefile]—“%1” %*
O37 - HKLM\...com [@ = comfile]—“%1” %*
O37 - HKLM\...exe [@ = exefile]—“%1” %*

========== Files/Folders - Created Within 30 Days ==========

[2012-01-05 19:53:43 | 000,584,192 |——| C] (OldTimer Tools)—C:\Users\Carsten\Desktop\OTL.exe
[2012-01-05 18:30:59 | 000,000,000 |—-D | C]—C:\Users\Carsten\AppData\Roaming\WinRAR
[2012-01-05 18:21:24 | 000,000,000 |—-D | C]—C:\Program Files (x86)\Garmin
[2012-01-05 18:21:24 | 000,000,000 |—-D | C]—C:\Program Files\DIFX
[2012-01-05 18:19:03 | 000,000,000 |—-D | C]—C:\Users\Carsten\AppData\Roaming\Garmin
[2012-01-05 18:16:51 | 000,000,000 |—-D | C]—C:\Windows\Minidump
[2012-01-05 16:42:26 | 000,000,000 |—-D | C]—C:\Users\Carsten\Desktop\Korrespondancer
[2012-01-05 11:10:01 | 000,000,000 |—-D | C]—C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
[2012-01-05 11:09:56 | 000,000,000 |—-D | C]—C:\Program Files (x86)\QuickTime
[2012-01-05 11:09:56 | 000,000,000 |—-D | C]—C:\ProgramData\Apple Computer
[2012-01-05 11:08:07 | 000,000,000 |—-D | C]—C:\Users\Carsten\AppData\Local\Secunia PSI
[2012-01-05 11:07:45 | 000,000,000 |—-D | C]—C:\Users\Carsten\AppData\Local\{44FD56B1-2433-4855-BB00-78181D10F4F2}
[2012-01-05 11:07:40 | 000,000,000 |—-D | C]—C:\Program Files (x86)\Secunia
[2012-01-05 11:07:36 | 000,000,000 |—-D | C]—C:\Users\Carsten\AppData\Local\{98ED00D4-58CF-45D5-A404-BF72EC2F57ED}
[2012-01-05 11:07:26 | 000,000,000 |—-D | C]—C:\Users\Carsten\AppData\Local\{100F4FA7-265D-41D5-95A5-6D53364EEB12}
[2012-01-05 11:07:17 | 000,000,000 |—-D | C]—C:\Users\Carsten\AppData\Local\{842015EA-6968-4FE0-B801-B1A359E7AFC4}
[2012-01-04 23:06:54 | 000,000,000 |—-D | C]—C:\Users\Carsten\AppData\Local\{364900C8-72A6-4A12-995D-A7EF06C33654}
[2012-01-04 23:06:44 | 000,000,000 |—-D | C]—C:\Users\Carsten\AppData\Local\{DA69EDA5-E03C-43EA-AA65-D4C1F4875767}
[2012-01-04 21:15:05 | 000,000,000 |—-D | C]—C:\Program Files (x86)\ESET
[2012-01-04 19:30:11 | 000,000,000 |—-D | C]—C:\Program Files\CCleaner
[2012-01-04 19:29:45 | 000,000,000 |—-D | C]—C:\Users\Carsten\AppData\Local\Google
[2012-01-04 19:29:45 | 000,000,000 |—-D | C]—C:\Program Files (x86)\Google
[2012-01-04 18:31:10 | 000,000,000 |—-D | C]—C:\Windows\pss
[2012-01-04 13:45:39 | 000,000,000 |—-D | C]—C:\Users\Carsten\Desktop\SWF
[2012-01-04 13:26:53 | 000,000,000 |—-D | C]—C:\ProgramData\Kaspersky Lab
[2012-01-04 11:06:21 | 000,000,000 |—-D | C]—C:\Users\Carsten\AppData\Local\{1F6E089E-E1C1-4BE6-AB81-E086EE2BA763}
[2012-01-04 11:06:12 | 000,000,000 |—-D | C]—C:\Users\Carsten\AppData\Local\{C81546A0-8D30-4A07-8AAD-56154D87FB02}
[2012-01-04 11:06:02 | 000,000,000 |—-D | C]—C:\Users\Carsten\AppData\Local\{88FCD9DD-A2B7-47F5-AAD4-7DBA8F1AEF82}
[2012-01-04 11:05:53 | 000,000,000 |—-D | C]—C:\Users\Carsten\AppData\Local\{61004F35-32B0-4459-B356-62968B25A3A5}
[2012-01-04 10:56:37 | 000,000,000 |—-D | C]—C:\Users\Carsten\AppData\Roaming\Curiolab
[2012-01-04 10:46:31 | 000,000,000 |—-D | C]—C:\Users\Carsten\AppData\Roaming\GetRightToGo
[2012-01-04 09:54:30 | 000,000,000 |—-D | C]—C:\ProgramData\SUPERAntiSpyware.com
[2012-01-04 09:54:26 | 000,000,000 |—-D | C]—C:\Users\Carsten\AppData\Roaming\SUPERAntiSpyware.com
[2012-01-04 09:54:26 | 000,000,000 |—-D | C]—C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SUPERAntiSpyware
[2012-01-04 09:54:26 | 000,000,000 |—-D | C]—C:\Program Files (x86)\SUPERAntiSpyware
[2012-01-04 09:54:04 | 000,000,000 |—-D | C]—C:\Program Files (x86)\Common Files\Wise Installation Wizard
[2012-01-04 09:02:57 | 000,000,000 |—-D | C]—C:\Users\Carsten\AppData\Roaming\Malwarebytes
[2012-01-04 09:02:50 | 000,000,000 |—-D | C]—C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes’ Anti-Malware
[2012-01-04 09:02:49 | 000,000,000 |—-D | C]—C:\ProgramData\Malwarebytes
[2012-01-04 09:02:48 | 000,023,152 |——| C] (Malwarebytes Corporation)—C:\Windows\SysNative\drivers\mbam.sys
[2012-01-04 09:02:48 | 000,000,000 |—-D | C]—C:\Program Files (x86)\Malwarebytes’ Anti-Malware
[2012-01-03 23:27:53 | 000,000,000 |—-D | C]—C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cobian Backup 10
[2012-01-03 23:23:52 | 000,000,000 |—-D | C]—C:\Users\Carsten\AppData\Local\Safe mirror
[2012-01-03 23:19:33 | 000,000,000 |—-D | C]—C:\Program Files (x86)\Cobian Backup 10
[2012-01-03 23:05:30 | 000,000,000 |—-D | C]—C:\Users\Carsten\AppData\Local\{558050FC-B71D-42CA-AB46-39026CD7A3D2}
[2012-01-03 23:05:19 | 000,000,000 |—-D | C]—C:\Users\Carsten\AppData\Local\{6E9811EC-4B1D-48BF-AC6D-8153CF22574A}
[2012-01-03 23:05:10 | 000,000,000 |—-D | C]—C:\Users\Carsten\AppData\Local\{F294EC3E-8F9B-48F4-AA6F-21B959C8A311}
[2012-01-03 23:05:00 | 000,000,000 |—-D | C]—C:\Users\Carsten\AppData\Local\{4464F005-169A-4B1B-AF14-AA468783A88E}
[2012-01-03 22:57:20 | 000,000,000 |—-D | C]—C:\Users\Carsten\AppData\Roaming\Media Finder
[2012-01-03 22:51:47 | 000,000,000 | -HSD | C]—C:\Users\Carsten\AppData\Local\2c137dec
[2012-01-03 22:19:38 | 000,000,000 |—-D | C]—C:\ProgramData\install_clap
[2012-01-03 22:10:03 | 000,000,000 |—-D | C]—C:\Program Files (x86)\Shared files
[2012-01-03 22:10:03 | 000,000,000 |—-D | C]—C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NewBlue
[2012-01-03 22:09:56 | 000,000,000 |—-D | C]—C:\ProgramData\SmartSound Software Inc
[2012-01-03 22:09:55 | 000,000,000 |—-D | C]—C:\Program Files (x86)\SmartSound Software
[2012-01-03 22:09:55 | 000,000,000 |—-D | C]—C:\ProgramData\eSellerate
[2012-01-03 22:08:24 | 000,000,000 |—-D | C]—C:\Users\Carsten\AppData\Local\Apple
[2012-01-03 22:08:23 | 000,000,000 |—-D | C]—C:\Program Files (x86)\Apple Software Update
[2012-01-03 22:08:23 | 000,000,000 |—-D | C]—C:\ProgramData\Apple
[2012-01-03 22:07:37 | 000,000,000 |—-D | C]—C:\Program Files\Cyberlink
[2012-01-03 22:05:04 | 000,000,000 |—-D | C]—C:\ProgramData\CLSK
[2012-01-03 21:37:08 | 000,000,000 |—-D | C]—C:\Program Files (x86)\Lang
[2012-01-03 21:37:08 | 000,000,000 |—-D | C]—C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
[2012-01-03 18:51:10 | 000,000,000 |—-D | C]—C:\ProgramData\Protexis
[2012-01-03 16:39:20 | 000,000,000 |—-D | C]—C:\ProgramData\vsosdk
[2012-01-03 11:04:37 | 000,000,000 |—-D | C]—C:\Users\Carsten\AppData\Local\{7B9D09B0-4B21-4BA6-912C-C63964892CA8}
[2012-01-03 11:04:28 | 000,000,000 |—-D | C]—C:\Users\Carsten\AppData\Local\{48AE8A08-78A5-4EB1-9E0B-BC587284E986}
[2012-01-03 11:04:19 | 000,000,000 |—-D | C]—C:\Users\Carsten\AppData\Local\{4F71C8CD-5E56-492F-8C7D-6F108786B951}
[2012-01-03 11:04:09 | 000,000,000 |—-D | C]—C:\Users\Carsten\AppData\Local\{284B1181-DD89-4DE8-ACFC-CA75E52D3641}
[2012-01-02 23:03:46 | 000,000,000 |—-D | C]—C:\Users\Carsten\AppData\Local\{C31C68DB-02A3-491D-B7B2-81842E50FFF9}
[2012-01-02 23:03:37 | 000,000,000 |—-D | C]—C:\Users\Carsten\AppData\Local\{4B34CDE1-67CE-43FB-8C1F-A17784EBD69D}
[2012-01-02 23:03:28 | 000,000,000 |—-D | C]—C:\Users\Carsten\AppData\Local\{939E166B-D945-4810-AB7B-54358D5FECEA}
[2012-01-02 23:03:18 | 000,000,000 |—-D | C]—C:\Users\Carsten\AppData\Local\{E3D9252B-7826-416B-80E4-FA7941CC9D3A}
[2012-01-02 16:15:50 | 000,000,000 |—-D | C]—C:\Program Files (x86)\Common Files\Apple
[2012-01-02 16:15:44 | 000,000,000 |—-D | C]—C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media
[2012-01-02 16:15:44 | 000,000,000 |—-D | C]—C:\Windows\RegisteredPackages
[2012-01-02 16:14:19 | 000,000,000 |—-D | C]—C:\Users\Carsten\AppData\Roaming\Corel
[2012-01-02 16:13:42 | 000,000,000 |—-D | C]—C:\Program Files (x86)\Windows Media Components
[2012-01-02 16:13:30 | 000,411,656 |——| C] (Microsoft Corporation)—C:\Windows\SysNative\xactengine2_10.dll
[2012-01-02 16:13:30 | 000,267,272 |——| C] (Microsoft Corporation)—C:\Windows\SysWow64\xactengine2_10.dll
[2012-01-02 16:13:29 | 005,081,608 |——| C] (Microsoft Corporation)—C:\Windows\SysNative\d3dx9_36.dll
[2012-01-02 16:13:29 | 003,734,536 |——| C] (Microsoft Corporation)—C:\Windows\SysWow64\d3dx9_36.dll
[2012-01-02 16:13:29 | 002,006,552 |——| C] (Microsoft Corporation)—C:\Windows\SysNative\D3DCompiler_36.dll
[2012-01-02 16:13:29 | 001,985,904 |——| C] (Microsoft Corporation)—C:\Windows\SysNative\D3DCompiler_35.dll
[2012-01-02 16:13:29 | 001,374,232 |——| C] (Microsoft Corporation)—C:\Windows\SysWow64\D3DCompiler_36.dll
[2012-01-02 16:13:29 | 001,358,192 |——| C] (Microsoft Corporation)—C:\Windows\SysWow64\D3DCompiler_35.dll
[2012-01-02 16:13:29 | 000,508,264 |——| C] (Microsoft Corporation)—C:\Windows\SysNative\d3dx10_36.dll
[2012-01-02 16:13:29 | 000,508,264 |——| C] (Microsoft Corporation)—C:\Windows\SysNative\d3dx10_35.dll
[2012-01-02 16:13:29 | 000,444,776 |——| C] (Microsoft Corporation)—C:\Windows\SysWow64\d3dx10_36.dll
[2012-01-02 16:13:29 | 000,444,776 |——| C] (Microsoft Corporation)—C:\Windows\SysWow64\d3dx10_35.dll
[2012-01-02 16:13:29 | 000,411,496 |——| C] (Microsoft Corporation)—C:\Windows\SysNative\xactengine2_9.dll
[2012-01-02 16:13:29 | 000,267,112 |——| C] (Microsoft Corporation)—C:\Windows\SysWow64\xactengine2_9.dll
[2012-01-02 16:13:28 | 005,073,256 |——| C] (Microsoft Corporation)—C:\Windows\SysNative\d3dx9_35.dll
[2012-01-02 16:13:28 | 001,401,200 |——| C] (Microsoft Corporation)—C:\Windows\SysNative\D3DCompiler_34.dll
[2012-01-02 16:13:28 | 001,124,720 |——| C] (Microsoft Corporation)—C:\Windows\SysWow64\D3DCompiler_34.dll
[2012-01-02 16:13:28 | 000,506,728 |——| C] (Microsoft Corporation)—C:\Windows\SysNative\d3dx10_34.dll
[2012-01-02 16:13:28 | 000,443,752 |——| C] (Microsoft Corporation)—C:\Windows\SysWow64\d3dx10_34.dll
[2012-01-02 16:13:28 | 000,409,960 |——| C] (Microsoft Corporation)—C:\Windows\SysNative\xactengine2_8.dll
[2012-01-02 16:13:28 | 000,266,088 |——| C] (Microsoft Corporation)—C:\Windows\SysWow64\xactengine2_8.dll
[2012-01-02 16:13:28 | 000,021,000 |——| C] (Microsoft Corporation)—C:\Windows\SysNative\X3DAudio1_2.dll
[2012-01-02 16:13:28 | 000,017,928 |——| C] (Microsoft Corporation)—C:\Windows\SysWow64\X3DAudio1_2.dll
[2012-01-02 16:13:27 | 004,496,232 |——| C] (Microsoft Corporation)—C:\Windows\SysNative\d3dx9_34.dll
[2012-01-02 16:13:27 | 001,400,176 |——| C] (Microsoft Corporation)—C:\Windows\SysNative\D3DCompiler_33.dll
[2012-01-02 16:13:27 | 001,123,696 |——| C] (Microsoft Corporation)—C:\Windows\SysWow64\D3DCompiler_33.dll
[2012-01-02 16:13:27 | 000,506,728 |——| C] (Microsoft Corporation)—C:\Windows\SysNative\d3dx10_33.dll
[2012-01-02 16:13:27 | 000,443,752 |——| C] (Microsoft Corporation)—C:\Windows\SysWow64\d3dx10_33.dll
[2012-01-02 16:13:27 | 000,403,304 |——| C] (Microsoft Corporation)—C:\Windows\SysNative\xactengine2_7.dll
[2012-01-02 16:13:27 | 000,261,480 |——| C] (Microsoft Corporation)—C:\Windows\SysWow64\xactengine2_7.dll
[2012-01-02 16:13:27 | 000,107,368 |——| C] (Microsoft Corporation)—C:\Windows\SysNative\xinput1_3.dll
[2012-01-02 16:13:27 | 000,081,768 |——| C] (Microsoft Corporation)—C:\Windows\SysWow64\xinput1_3.dll
[2012-01-02 16:13:26 | 004,494,184 |——| C] (Microsoft Corporation)—C:\Windows\SysNative\d3dx9_33.dll
[2012-01-02 16:13:26 | 004,398,360 |——| C] (Microsoft Corporation)—C:\Windows\SysNative\d3dx9_32.dll
[2012-01-02 16:13:26 | 003,495,784 |——| C] (Microsoft Corporation)—C:\Windows\SysWow64\d3dx9_33.dll
[2012-01-02 16:13:26 | 003,426,072 |——| C] (Microsoft Corporation)—C:\Windows\SysWow64\d3dx9_32.dll
[2012-01-02 16:13:26 | 000,469,264 |——| C] (Microsoft Corporation)—C:\Windows\SysNative\d3dx10.dll
[2012-01-02 16:13:26 | 000,440,080 |——| C] (Microsoft Corporation)—C:\Windows\SysWow64\d3dx10.dll
[2012-01-02 16:13:26 | 000,393,576 |——| C] (Microsoft Corporation)—C:\Windows\SysNative\xactengine2_6.dll
[2012-01-02 16:13:26 | 000,390,424 |——| C] (Microsoft Corporation)—C:\Windows\SysNative\xactengine2_5.dll
[2012-01-02 16:13:26 | 000,255,848 |——| C] (Microsoft Corporation)—C:\Windows\SysWow64\xactengine2_6.dll
[2012-01-02 16:13:26 | 000,251,672 |——| C] (Microsoft Corporation)—C:\Windows\SysWow64\xactengine2_5.dll
[2012-01-02 16:13:25 | 003,977,496 |——| C] (Microsoft Corporation)—C:\Windows\SysNative\d3dx9_31.dll
[2012-01-02 16:13:25 | 000,364,824 |——| C] (Microsoft Corporation)—C:\Windows\SysNative\xactengine2_4.dll
[2012-01-02 16:13:25 | 000,363,288 |——| C] (Microsoft Corporation)—C:\Windows\SysNative\xactengine2_3.dll
[2012-01-02 16:13:25 | 000,237,848 |——| C] (Microsoft Corporation)—C:\Windows\SysWow64\xactengine2_4.dll
[2012-01-02 16:13:25 | 000,236,824 |——| C] (Microsoft Corporation)—C:\Windows\SysWow64\xactengine2_3.dll
[2012-01-02 16:13:25 | 000,083,736 |——| C] (Microsoft Corporation)—C:\Windows\SysNative\xinput1_2.dll
[2012-01-02 16:13:25 | 000,062,744 |——| C] (Microsoft Corporation)—C:\Windows\SysWow64\xinput1_2.dll
[2012-01-02 16:13:25 | 000,017,688 |——| C] (Microsoft Corporation)—C:\Windows\SysNative\x3daudio1_1.dll
[2012-01-02 16:13:25 | 000,015,128 |——| C] (Microsoft Corporation)—C:\Windows\SysWow64\x3daudio1_1.dll
[2012-01-02 16:13:24 | 000,354,072 |——| C] (Microsoft Corporation)—C:\Windows\SysNative\xactengine2_2.dll
[2012-01-02 16:13:24 | 000,352,464 |——| C] (Microsoft Corporation)—C:\Windows\SysNative\xactengine2_1.dll
[2012-01-02 16:13:24 | 000,230,168 |——| C] (Microsoft Corporation)—C:\Windows\SysWow64\xactengine2_2.dll
[2012-01-02 16:13:24 | 000,229,584 |——| C] (Microsoft Corporation)—C:\Windows\SysWow64\xactengine2_1.dll
[2012-01-02 16:13:24 | 000,083,664 |——| C] (Microsoft Corporation)—C:\Windows\SysNative\xinput1_1.dll
[2012-01-02 16:13:24 | 000,062,672 |——| C] (Microsoft Corporation)—C:\Windows\SysWow64\xinput1_1.dll
[2012-01-02 16:13:22 | 003,927,248 |——| C] (Microsoft Corporation)—C:\Windows\SysNative\d3dx9_30.dll
[2012-01-02 16:13:22 | 003,830,992 |——| C] (Microsoft Corporation)—C:\Windows\SysNative\d3dx9_29.dll
[2012-01-02 16:13:22 | 003,815,120 |——| C] (Microsoft Corporation)—C:\Windows\SysNative\d3dx9_28.dll
[2012-01-02 16:13:22 | 002,332,368 |——| C] (Microsoft Corporation)—C:\Windows\SysWow64\d3dx9_29.dll
[2012-01-02 16:13:22 | 000,355,536 |——| C] (Microsoft Corporation)—C:\Windows\SysNative\xactengine2_0.dll
[2012-01-02 16:13:22 | 000,230,096 |——| C] (Microsoft Corporation)—C:\Windows\SysWow64\xactengine2_0.dll
[2012-01-02 16:13:22 | 000,016,592 |——| C] (Microsoft Corporation)—C:\Windows\SysNative\x3daudio1_0.dll
[2012-01-02 16:13:22 | 000,014,032 |——| C] (Microsoft Corporation)—C:\Windows\SysWow64\x3daudio1_0.dll
[2012-01-02 16:13:21 | 003,823,312 |——| C] (Microsoft Corporation)—C:\Windows\SysNative\d3dx9_25.dll
[2012-01-02 16:13:21 | 003,807,440 |——| C] (Microsoft Corporation)—C:\Windows\SysNative\d3dx9_27.dll
[2012-01-02 16:13:21 | 003,767,504 |——| C] (Microsoft Corporation)—C:\Windows\SysNative\d3dx9_26.dll
[2012-01-02 16:13:21 | 003,544,272 |——| C] (Microsoft Corporation)—C:\Windows\SysNative\d3dx9_24.dll
[2012-01-02 16:13:21 | 002,337,488 |——| C] (Microsoft Corporation)—C:\Windows\SysWow64\d3dx9_25.dll
[2012-01-02 16:13:21 | 002,319,568 |——| C] (Microsoft Corporation)—C:\Windows\SysWow64\d3dx9_27.dll
[2012-01-02 16:13:21 | 002,297,552 |——| C] (Microsoft Corporation)—C:\Windows\SysWow64\d3dx9_26.dll
[2012-01-02 16:13:21 | 002,222,800 |——| C] (Microsoft Corporation)—C:\Windows\SysWow64\d3dx9_24.dll
[2012-01-02 16:07:05 | 000,000,000 |—-D | C]—C:\Program Files (x86)_
[2012-01-02 15:19:48 | 000,000,000 |—-D | C]—C:\Users\Carsten\AppData\Roaming\dvdae
[2012-01-02 15:19:37 | 000,000,000 |—-D | C]—C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVD Audio Extractor
[2012-01-02 15:19:35 | 000,000,000 |—-D | C]—C:\Program Files (x86)\DVD Audio Extractor
[2012-01-02 14:52:42 | 000,000,000 |—-D | C]—C:\ProgramData\IObit
[2012-01-02 14:52:40 | 000,000,000 |—-D | C]—C:\Program Files (x86)\IObit
[2012-01-02 12:34:24 | 001,410,048 |——| C] (Compro Technology, Inc.)—C:\Windows\SysWow64\drivers\VMHybr64.sys
[2012-01-02 12:34:24 | 001,105,408 |——| C] (Compro Technology, Inc.)—C:\Windows\SysWow64\drivers\VMHybrid.sys
[2012-01-02 11:57:46 | 000,000,000 |—-D | C]—C:\Program Files (x86)\Easy_CD-DA_Extractor_v15.2.1.1.Portable
[2012-01-02 11:03:46 | 000,000,000 |—-D | C]—C:\Users\Carsten\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CyberLink PowerDirector
[2012-01-02 10:50:25 | 000,082,816 |——| C] (VSO Software)—C:\Windows\SysNative\drivers\pcouffin.sys
[2012-01-02 10:50:25 | 000,082,816 |——| C] (VSO Software)—C:\Users\Carsten\AppData\Roaming\pcouffin.sys
[2012-01-02 10:50:25 | 000,000,000 |—-D | C]—C:\Users\Carsten\AppData\Roaming\Vso
[2012-01-02 10:50:25 | 000,000,000 |—-D | C]—C:\Users\Carsten\Documents\PcSetup
[2012-01-02 10:50:24 | 000,000,000 |—-D | C]—C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VSO
[2012-01-02 10:50:21 | 001,184,984 |——| C] (Microsoft Corporation)—C:\Windows\SysWow64\wvc1dmod.dll
[2012-01-02 10:50:21 | 000,626,688 |——| C] (On2.com)—C:\Windows\SysWow64\vp7vfw.dll
[2012-01-02 10:50:21 | 000,273,408 |——| C] (RealNetworks, Inc.)—C:\Windows\SysWow64\Pncrt.dll
[2012-01-02 10:50:21 | 000,217,127 |——| C] (RealNetworks, Inc.)—C:\Windows\SysWow64\drv43260.dll
[2012-01-02 10:50:21 | 000,208,935 |——| C] (RealNetworks, Inc.)—C:\Windows\SysWow64\drv33260.dll
[2012-01-02 10:50:21 | 000,176,165 |——| C] (RealNetworks, Inc.)—C:\Windows\SysWow64\drv23260.dll
[2012-01-02 10:50:21 | 000,102,439 |——| C] (RealNetworks, Inc.)—C:\Windows\SysWow64\sipr3260.dll
[2012-01-02 10:50:21 | 000,065,602 |——| C] (RealNetworks, Inc.)—C:\Windows\SysWow64\cook3260.dll
[2012-01-02 10:50:20 | 000,000,000 |—-D | C]—C:\Program Files (x86)\VSO
[2012-01-02 10:45:50 | 000,000,000 |—-D | C]—C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StreamTransport
[2012-01-02 10:45:49 | 003,982,240 |——| C] (Adobe Systems, Inc.)—C:\Windows\SysWow64\Flash10d.ocx
[2012-01-02 10:44:53 | 000,000,000 |—-D | C]—C:\Users\Carsten\Documents\StreamTransport
[2012-01-02 10:43:10 | 000,000,000 |—-D | C]—C:\Program Files (x86)\StreamTransport
[2012-01-02 10:34:58 | 000,000,000 |—-D | C]—C:\Users\Carsten\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Acoustica CD Label Maker
[2012-01-02 10:34:57 | 000,000,000 |—-D | C]—C:\Users\Carsten\Documents\Acoustica
[2012-01-02 10:34:57 | 000,000,000 |—-D | C]—C:\Users\Carsten\AppData\Roaming\Acoustica
[2012-01-02 10:34:46 | 000,000,000 |—-D | C]—C:\Program Files (x86)\Acoustica CD Label Maker
[2012-01-02 10:07:34 | 000,000,000 |—-D | C]—C:\Users\Carsten\AppData\Local\{8790E8A5-D7DB-4762-8920-5843F4DBB733}
[2012-01-02 10:07:25 | 000,000,000 |—-D | C]—C:\Users\Carsten\AppData\Local\{64701E3B-C8D7-4ABF-9B7E-9E3146819876}
[2012-01-02 09:24:43 | 000,000,000 |—-D | C]—C:\Program Files (x86)\VS Revo Group
[2012-01-02 09:24:43 | 000,000,000 |—-D | C]—C:\Users\Carsten\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller
[2012-01-02 09:10:09 | 000,000,000 |—-D | C]—C:\Users\Carsten\AppData\Local\Easy CD-DA Extractor
[2012-01-01 22:06:47 | 000,000,000 |—-D | C]—C:\Users\Carsten\AppData\Local\{1C5DDC49-CDE7-4D91-B0C7-3B5422332A07}
[2012-01-01 22:06:38 | 000,000,000 |—-D | C]—C:\Users\Carsten\AppData\Local\{F1D897BE-74C8-4D17-B0AE-6DC6DB67D102}
[2012-01-01 22:06:28 | 000,000,000 |—-D | C]—C:\Users\Carsten\AppData\Local\{6EB5C26F-59B2-4647-86A4-AABF4253F61A}
[2012-01-01 22:06:19 | 000,000,000 |—-D | C]—C:\Users\Carsten\AppData\Local\{65CDB947-4557-4621-B4F8-43EEBD61C072}
[2012-01-01 12:03:37 | 000,000,000 |—-D | C]—C:\Users\Carsten\AppData\Roaming\Template
[2012-01-01 11:57:46 | 000,000,000 |—-D | C]—C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Works
[2012-01-01 11:55:42 | 000,000,000 |—-D | C]—C:\Program Files (x86)\Microsoft Works
[2012-01-01 10:34:01 | 000,000,000 |—-D | C]—C:\Users\Carsten\Documents\Nero Home
[2012-01-01 10:30:45 | 000,000,000 |—-D | C]—C:\Users\Carsten\AppData\Local\Ahead
[2012-01-01 10:30:33 | 000,000,000 |—-D | C]—C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero 8
[2012-01-01 10:27:04 | 000,000,000 |—-D | C]—C:\Program Files (x86)\Nero
[2012-01-01 10:27:04 | 000,000,000 |—-D | C]—C:\Program Files (x86)\Common Files\Nero
[2012-01-01 10:26:23 | 002,323,664 |——| C] (Microsoft Corporation)—C:\Windows\SysWow64\d3dx9_28.dll
[2012-01-01 10:05:56 | 000,000,000 |—-D | C]—C:\Users\Carsten\AppData\Local\{A05861B2-95D9-4DEF-836D-2327FFA932AE}
[2012-01-01 10:05:47 | 000,000,000 |—-D | C]—C:\Users\Carsten\AppData\Local\{D791F697-9F83-4140-83A8-0F297F5398F9}
[2011-12-31 15:18:14 | 000,000,000 |—-D | C]—C:\Users\Carsten\AppData\Local\{3F588F3A-55CF-4422-92E6-1738275B7E90}
[2011-12-31 15:18:05 | 000,000,000 |—-D | C]—C:\Users\Carsten\AppData\Local\{3DFA0B06-64EF-4337-B15B-55D4B34E707E}
[2011-12-30 15:13:17 | 000,000,000 |—-D | C]—C:\Users\Carsten\AppData\Local\{EDB6513C-12D9-4E5E-9C1B-3661680959A3}
[2011-12-30 15:13:08 | 000,000,000 |—-D | C]—C:\Users\Carsten\AppData\Local\{E7CF610D-3599-4BA0-B162-AA93F808D4E9}
[2011-12-29 23:50:48 | 000,000,000 |—-D | C]—C:\Users\Carsten\AppData\Local\{33F87462-2AC5-4AF0-8B45-DE196E877E56}
[2011-12-29 23:50:39 | 000,000,000 |—-D | C]—C:\Users\Carsten\AppData\Local\{CE31FCAB-8255-48AA-AF55-C244E97DAD1F}
[2011-12-29 11:46:01 | 000,000,000 |—-D | C]—C:\Users\Carsten\Documents\Gads Bogskab
[2011-12-29 11:45:08 | 000,000,000 |—-D | C]—C:\Gads Bogskab
[2011-12-29 11:38:27 | 000,000,000 |—-D | C]—C:\Users\Carsten\Desktop\Vedligeholdelse
[2011-12-29 11:28:13 | 000,000,000 |—-D | C]—C:\Program Files (x86)\Windoctor
[2011-12-29 11:23:41 | 000,000,000 |—-D | C]—C:\Free Rapiddownloader
[2011-12-29 10:57:20 | 000,000,000 |—-D | C]—C:\Users\Carsten\AppData\Roaming\VitySoft
[2011-12-29 10:44:06 | 000,000,000 |—-D | C]—C:\Users\Carsten\AppData\Local\{C4B40AD2-1E19-4B53-9286-E28525701C44}
[2011-12-29 10:43:56 | 000,000,000 |—-D | C]—C:\Users\Carsten\AppData\Local\{ECF546FA-AB37-4BA5-AAD0-2BD10F592209}
[2011-12-29 10:43:47 | 000,000,000 |—-D | C]—C:\Users\Carsten\AppData\Local\{B22412D4-3D5B-4538-BE8F-3B08CE009ED2}
[2011-12-29 10:43:37 | 000,000,000 |—-D | C]—C:\Users\Carsten\AppData\Local\{E2DC1E7D-CA28-4332-8C49-AF2B79C9AB23}
[2011-12-29 10:43:37 | 000,000,000 |—-D | C]—C:\Users\Carsten\AppData\Local\{101B96E7-A699-41DB-8BA5-3CC4AAF9DB68}
[2011-12-28 23:40:10 | 000,000,000 |—-D | C]—C:\Users\Carsten\AppData\Local\CrashDumps
[2011-12-28 23:39:24 | 000,000,000 |—-D | C]—C:\Users\Carsten\Documents\Mine Web-steder
[2011-12-28 22:43:14 | 000,000,000 |—-D | C]—C:\Users\Carsten\AppData\Local\{34D40049-78D2-4465-9A81-DA067A128220}
[2011-12-28 22:43:05 | 000,000,000 |—-D | C]—C:\Users\Carsten\AppData\Local\{154EAFEE-F6B1-4516-B0BB-C3ADD234E952}
[2011-12-28 22:42:55 | 000,000,000 |—-D | C]—C:\Users\Carsten\AppData\Local\{C60AE485-2244-4E96-89AF-0E812B958B35}
[2011-12-28 22:42:45 | 000,000,000 |—-D | C]—C:\Users\Carsten\AppData\Local\{43092E80-66B0-4D10-9957-1D9A5FFFE639}
[2011-12-28 22:42:27 | 000,000,000 |—-D | C]—C:\ProgramData\CyberLink
[2011-12-28 22:42:24 | 000,000,000 |—-D | C]—C:\Users\Carsten\Documents\CyberLink
[2011-12-28 22:42:23 | 000,000,000 | -H-D | C]—C:\Users\Carsten\Documents\ShadowEditFiles
[2011-12-28 22:42:11 | 000,000,000 |—-D | C]—C:\Users\Carsten\AppData\Roaming\CyberLink
[2011-12-28 22:28:40 | 000,000,000 |—-D | C]—C:\Program Files (x86)\CyberLink
[2011-12-28 22:27:51 | 000,000,000 |—-D | C]—C:\ProgramData\Temp
[2011-12-28 22:25:46 | 000,900,096 |——| C] (AfaTech             )—C:\Windows\SysNative\drivers\AF9035HB.sys
[2011-12-28 21:33:18 | 000,000,000 |—-D | C]—C:\Users\Carsten\Documents\Pinnacle Studio
[2011-12-28 21:29:27 | 000,000,000 |—-D | C]—C:\Users\Carsten\AppData\Local\MicroVision Applications
[2011-12-28 21:29:24 | 000,000,000 |—-D | C]—C:\Program Files (x86)\Common Files\SureThing Shared
[2011-12-28 21:29:24 | 000,000,000 |—-D | C]—C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SureThing Express Labeler
[2011-12-28 21:29:23 | 000,000,000 |—-D | C]—C:\Program Files (x86)\SureThing Express Labeler
[2011-12-28 21:22:12 | 000,000,000 |—-D | C]—C:\Program Files (x86)\Common Files\Pinnacle
[2011-12-28 21:22:08 | 000,000,000 |—-D | C]—C:\Users\Carsten\AppData\Local\Downloaded Installations
[2011-12-28 21:21:58 | 000,000,000 |—-D | C]—C:\Users\Carsten\AppData\Local\Pinnacle
[2011-12-28 21:21:44 | 000,000,000 |—-D | C]—C:\ProgramData\Pinnacle Studio HD
[2011-12-28 21:21:22 | 000,000,000 |—-D | C]—C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pinnacle Studio 14
[2011-12-28 21:21:17 | 000,000,000 |—-D | C]—C:\Users\Public\Documents\My Projects
[2011-12-28 21:18:57 | 000,000,000 |—-D | C]—C:\Program Files (x86)\Common Files\Pegasus Imaging
[2011-12-28 21:18:55 | 000,000,000 |—-D | C]—C:\Program Files (x86)\Common Files\Yahoo!
[2011-12-28 21:18:55 | 000,000,000 |—-D | C]—C:\ProgramData\Studio 14
[2011-12-28 21:18:55 | 000,000,000 |—-D | C]—C:\ProgramData\Pinnacle Studio Plus
[2011-12-28 21:18:55 | 000,000,000 |—-D | C]—C:\Users\Public\Documents\Pinnacle
[2011-12-28 21:18:55 | 000,000,000 |—-D | C]—C:\Program Files (x86)\Pinnacle
[2011-12-28 21:15:11 | 000,000,000 |—-D | C]—C:\ProgramData\Pinnacle
[2011-12-28 21:07:38 | 000,000,000 |—-D | C]—C:\Users\Carsten\AppData\Roaming\Politiken
[2011-12-28 21:07:22 | 000,000,000 |—-D | C]—C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Politikens Ordbøger
[2011-12-28 21:06:58 | 000,000,000 |—-D | C]—C:\Program Files (x86)\Polob32
[2011-12-28 15:29:57 | 000,000,000 |—-D | C]—C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Collection
[2011-12-28 15:29:50 | 000,000,000 |—-D | C]—C:\Program Files (x86)\SEAGATE SOFTWARE
[2011-12-28 15:29:50 | 000,000,000 |—-D | C]—C:\Windows\Crystal
[2011-12-28 15:29:49 | 001,388,544 |——| C] (Microsoft Corporation)—C:\Windows\SysWow64\temp.011
[2011-12-28 15:29:49 | 000,995,383 |——| C] (Microsoft Corporation)—C:\Windows\SysWow64\temp.012
[2011-12-28 15:29:49 | 000,933,888 |——| C] (Microsoft Corporation)—C:\Windows\SysWow64\temp.013
[2011-12-28 15:29:49 | 000,640,512 |——| C] (Microsoft Corporation)—C:\Windows\SysWow64\oc30.dll
[2011-12-28 15:29:49 | 000,614,672 |——| C] (Microsoft Corporation)—C:\Windows\SysWow64\temp.010
[2011-12-28 15:29:49 | 000,570,128 |——| C] (Microsoft Corporation)—C:\Windows\SysWow64\Dao350.dll
[2011-12-28 15:29:49 | 000,557,328 |——| C] (Microsoft Corporation)—C:\Windows\SysWow64\Dao360.dll
[2011-12-28 15:29:49 | 000,447,760 |——| C] (Microsoft Corporation)—C:\Windows\SysWow64\dao3032.dll
[2011-12-28 15:29:49 | 000,393,216 |——| C] (Crescent Division of Progress Software Corporation.)—C:\Windows\SysWow64\Cstext32.ocx
[2011-12-28 15:29:49 | 000,262,152 |——| C] (Microsoft Corporation)—C:\Windows\SysWow64\Msdatgrd.ocx
[2011-12-28 15:29:49 | 000,166,408 |——| C] (Microsoft Corporation)—C:\Windows\SysWow64\Msmask32.ocx
[2011-12-28 15:29:49 | 000,083,968 |——| C] (Crescent Division of Progress Software Corporation.)—C:\Windows\SysWow64\Csspin32.ocx
[2011-12-28 15:29:48 | 000,752,176 |——| C] (Sheridan Software Systems, Inc.)—C:\Windows\SysWow64\ssdatb32.ocx
[2011-12-28 15:29:48 | 000,618,496 |——| C] (Seagate Software)—C:\Windows\SysWow64\Crpaig80.dll
[2011-12-28 15:29:48 | 000,484,128 |——| C] (Sheridan Software Systems, Inc.)—C:\Windows\SysWow64\Sscala32.ocx
[2011-12-28 15:29:48 | 000,164,112 |——| C] (Microsoft Corporation)—C:\Windows\SysWow64\temp.00F
[2011-12-28 15:29:48 | 000,143,632 |——| C] (Microsoft Corporation)—C:\Windows\SysWow64\temp.00E
[2011-12-28 15:29:46 | 004,587,577 |——| C] (Seagate Software, Inc.)—C:\Windows\SysWow64\crpe32.dll
[2011-12-28 15:29:46 | 000,973,584 |——| C] (Microsoft Corporation)—C:\Windows\SysWow64\msjt3032.dll
[2011-12-28 15:29:46 | 000,761,856 |——| C] (Seagate Software, Inc.)—C:\Windows\SysWow64\crpe32_res_de.dll
[2011-12-28 15:29:46 | 000,721,168 |——| C] (Microsoft Corporation)—C:\Windows\SysWow64\vb40032.dll
[2011-12-28 15:29:46 | 000,379,152 |——| C] (Microsoft Corporation)—C:\Windows\SysWow64\temp.00D
[2011-12-28 15:29:46 | 000,286,720 |——| C] (Seagate Software Information Management Group, Inc.)—C:\Windows\SysWow64\p2sodbc.dll
[2011-12-28 15:29:46 | 000,274,432 |——| C] (Microsoft Corporation)—C:\Windows\SysWow64\temp.00C
[2011-12-28 15:29:46 | 000,159,744 |——| C] (Microsoft Corporation)—C:\Windows\SysWow64\Mfcans32.dll
[2011-12-28 15:29:46 | 000,118,272 |——| C] (Crescent Division of Progress Software Corporation)—C:\Windows\SysWow64\Qpro32.dll
[2011-12-28 15:29:46 | 000,099,866 |——| C] (Microsoft Corporation)—C:\Windows\SysWow64\Vb5de.dll
[2011-12-28 15:29:46 | 000,098,356 |——| C] (Microsoft Corporation)—C:\Windows\SysWow64\msjter32.dll
[2011-12-28 15:29:46 | 000,072,704 |——| C] (Microsoft Corporation)—C:\Windows\SysWow64\Odbctl32.dll
[2011-12-28 15:29:46 | 000,066,560 |——| C] (Seagate Software, Inc.)—C:\Windows\SysWow64\crwrap32.dll
[2011-12-28 15:29:46 | 000,037,136 |——| C] (Microsoft Corporation)—C:\Windows\SysWow64\temp.00B
[2011-12-28 15:29:46 | 000,033,552 |——| C] (Microsoft Corporation)—C:\Windows\SysWow64\msjint32.dll
[2011-12-28 15:29:46 | 000,016,896 |——| C] (Microsoft Corporation)—C:\Windows\SysWow64\temp.00A
[2011-12-28 15:29:45 | 005,206,016 |——| C] (Seagate Software, Inc.)—C:\Windows\SysWow64\craxdrt.dll
[2011-12-28 15:29:45 | 000,278,581 |——| C] (Microsoft Corporation)—C:\Windows\SysWow64\temp.006
[2011-12-28 15:29:45 | 000,200,704 |——| C] (Sheridan Software Systems, Inc.)—C:\Windows\SysWow64\threed32.ocx
[2011-12-28 15:29:45 | 000,077,878 |——| C] (Microsoft Corporation)—C:\Windows\SysWow64\temp.007
[2011-12-28 15:29:45 | 000,065,024 |——| C] (Microsoft Corporation)—C:\Windows\SysWow64\temp.008
[2011-12-28 15:29:45 | 000,058,938 |——| C] (Microsoft Corporation)—C:\Windows\SysWow64\temp.005
[2011-12-28 15:29:45 | 000,030,992 |——| C] (Microsoft Corporation)—C:\Windows\SysWow64\temp.009
[2011-12-28 15:29:45 | 000,024,576 |——| C] (Seagate Software Information Management Group, Inc.)—C:\Windows\SysWow64\crxf_rtf_res_de.dll
[2011-12-28 15:29:45 | 000,020,480 |——| C] (Crystal Decisions, Inc.)—C:\Windows\SysWow64\crxf_pdf_res_de.dll
[2011-12-28 15:29:44 | 000,664,512 |——| C] (Crystal Decisions)—C:\Windows\SysWow64\crviewer.dll
[2011-12-28 15:29:43 | 000,000,000 |—-D | C]—C:\Windows\ImageMan ActiveX
[2011-12-28 15:29:43 | 000,000,000 |—-D | C]—C:\Collection
[2011-12-28 15:29:21 | 001,064,960 |——| C] (Microsoft Corporation)—C:\Windows\SysWow64\msjet35.dll
[2011-12-28 15:29:21 | 000,430,080 |——| C] (Microsoft Corporation)—C:\Windows\SysWow64\msrepl35.dll
[2011-12-28 15:29:21 | 000,368,912 |——| C] (Microsoft Corporation)—C:\Windows\SysWow64\vbar332.dll
[2011-12-28 15:29:21 | 000,278,581 |——| C] (Microsoft Corporation)—C:\Windows\SysWow64\temp.004
[2011-12-28 15:29:21 | 000,252,176 |——| C] (Microsoft Corporation)—C:\Windows\SysWow64\Msrd2x35.dll
[2011-12-28 15:29:21 | 000,140,288 |——| C] (Microsoft Corporation)—C:\Windows\SysWow64\COMDLG32.OCX
[2011-12-28 15:29:21 | 000,089,360 |——| C] (Microsoft Corporation)—C:\Windows\SysWow64\Vb5db.dll
[2011-12-28 15:29:21 | 000,061,440 |——| C] (Microsoft Corporation)—C:\Windows\SysWow64\temp.003
[2011-12-28 15:29:20 | 000,123,664 |——| C] (Microsoft Corporation)—C:\Windows\SysWow64\MSJINT35.DLL
[2011-12-28 15:29:20 | 000,024,848 |——| C] (Microsoft Corporation)—C:\Windows\SysWow64\MSJTER35.DLL
[2011-12-28 10:42:22 | 000,000,000 |—-D | C]—C:\Users\Carsten\AppData\Local\{8AF2D470-2D24-49FB-99B6-EE732F9A8EB7}
[2011-12-28 10:42:13 | 000,000,000 |—-D | C]—C:\Users\Carsten\AppData\Local\{1FAF73B0-56EC-43E2-8AE5-D26DEE723EA6}
[2011-12-28 10:40:47 | 000,000,000 |—-D | C]—C:\Users\Carsten\AppData\Roaming\NVIDIA
[2011-12-28 10:40:47 | 000,000,000 |—-D | C]—C:\Users\Carsten\Documents\DVDFab
[2011-12-28 10:40:44 | 000,000,000 |—-D | C]—C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDFab 8 Qt
[2011-12-28 10:40:40 | 000,000,000 |—-D | C]—C:\Program Files (x86)\DVDFab 8 Qt
[2011-12-28 09:23:44 | 000,000,000 |—-D | C]—C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PictureProject
[2011-12-28 09:23:39 | 000,000,000 |—-D | C]—C:\ProgramData\Nikon
[2011-12-28 09:23:36 | 000,000,000 |—-D | C]—C:\Program Files (x86)\Common Files\muvee Technologies
[2011-12-28 09:23:19 | 000,000,000 |—-D | C]—C:\ProgramData\Limiter
[2011-12-28 09:17:20 | 000,000,000 |—-D | C]—C:\Users\Carsten\AppData\Roaming\XnView
[2011-12-28 09:16:55 | 000,000,000 |—-D | C]—C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XnView
[2011-12-28 09:16:53 | 000,000,000 |—-D | C]—C:\Program Files (x86)\XnView
[2011-12-27 23:12:22 | 000,000,000 |—-D | C]—C:\ProgramData\Ultima_T15
[2011-12-27 23:12:22 | 000,000,000 |—-D | C]—C:\ProgramData\EnterNHelp
[2011-12-27 22:48:56 | 000,000,000 |—-D | C]—C:\Program Files (x86)\MSXML 4.0
[2011-12-27 22:48:47 | 002,179,072 |——| C] (Microsoft Corporation)—C:\Windows\SysWow64\mfc71d.dll
[2011-12-27 22:48:47 | 001,060,864 |——| C] (Microsoft Corporation)—C:\Windows\SysWow64\MFC71.dll
[2011-12-27 22:48:47 | 000,765,952 |——| C] (Microsoft Corporation)—C:\Windows\SysWow64\msvcp71d.dll
[2011-12-27 22:48:47 | 000,544,768 |——| C] (Microsoft Corporation)—C:\Windows\SysWow64\msvcr71d.dll
[2011-12-27 22:48:47 | 000,487,424 |——| C] (Microsoft Corporation)—C:\Windows\SysWow64\msvcp70.dll
[2011-12-27 22:48:47 | 000,344,064 |——| C] (Microsoft Corporation)—C:\Windows\SysWow64\msvcr70.dll
[2011-12-27 22:48:47 | 000,000,000 |—-D | C]—C:\Users\Carsten\AppData\Roaming\Nikon
[2011-12-27 22:48:46 | 005,709,824 | R—- | C] (Nikon Corporation)—C:\Windows\SysWow64\NkNEFPlugin.dll
[2011-12-27 22:48:46 | 000,974,848 |——| C] (Microsoft Corporation)—C:\Windows\SysWow64\mfc70.dll
[2011-12-27 22:48:46 | 000,106,496 |——| C] (Microsoft Corporation)—C:\Windows\SysWow64\ATL71.DLL
[2011-12-27 22:48:34 | 000,180,224 | R—- | C] (Pegasus Imaging Corp.)—C:\Windows\SysWow64\picn1120.dll
[2011-12-27 22:48:34 | 000,180,224 | R—- | C] (Nikon Corporation)—C:\Windows\SysWow64\Strato4.dll
[2011-12-27 22:48:34 | 000,155,648 | R—- | C] (Pegasus Imaging Corp.)—C:\Windows\SysWow64\picn1020.dll
[2011-12-27 22:48:34 | 000,110,592 | R—- | C] (Nikon Corporation)—C:\Windows\SysWow64\RCSigProc.dll
[2011-12-27 22:48:34 | 000,076,800 | R—- | C] (FotoNation Inc.)—C:\Windows\SysWow64\RedEye.dll
[2011-12-27 22:48:34 | 000,048,128 | R—- | C] (Pegasus Imaging Corp.)—C:\Windows\SysWow64\picn20.dll
[2011-12-27 22:48:33 | 000,000,000 |—-D | C]—C:\Program Files (x86)\Common Files\Nikon
[2011-12-27 22:48:31 | 000,495,616 | R—- | C] (Applied Science Fiction, Inc.)—C:\Windows\SysWow64\DRAGNKL1.dll
[2011-12-27 22:48:31 | 000,074,000 |——| C] (Microsoft Corporation)—C:\Windows\SysWow64\msrclr40.dll
[2011-12-27 22:48:29 | 000,028,944 |——| C] (Microsoft Corporation)—C:\Windows\SysWow64\msrecr40.dll
[2011-12-27 22:47:30 | 000,434,176 |——| C] (Eastman Kodak Japan)—C:\Windows\SysWow64\DC120V15_32.DLL
[2011-12-27 22:47:30 | 000,406,016 |——| C] (LEAD Technologies, Inc.)—C:\Windows\SysWow64\LTKRN12N.DLL
[2011-12-27 22:47:30 | 000,358,912 |——| C] (LEAD Technologies, Inc.)—C:\Windows\SysWow64\LFCMP12N.DLL
[2011-12-27 22:47:30 | 000,259,072 |——| C] (LEAD Technologies, Inc.)—C:\Windows\SysWow64\LTDIS12N.DLL
[2011-12-27 22:47:30 | 000,230,400 |——| C] (Eastman Kodak Company)—C:\Windows\SysWow64\DC265.DLL
[2011-12-27 22:47:30 | 000,207,872 |——| C] (LEAD Technologies, Inc.)—C:\Windows\SysWow64\LTEFX12N.DLL
[2011-12-27 22:47:30 | 000,181,248 |——| C] (LEAD Technologies, Inc.)—C:\Windows\SysWow64\LFPNG12N.DLL
[2011-12-27 22:47:30 | 000,164,864 |——| C] (LEAD Technologies, Inc.)—C:\Windows\SysWow64\LTIMG12N.DLL
[2011-12-27 22:47:30 | 000,141,312 |——| C] (LEAD Technologies, Inc.)—C:\Windows\SysWow64\LFTIF12N.DLL
[2011-12-27 22:47:30 | 000,131,072 |——| C] (LEAD Technologies, Inc.)—C:\Win

    [ Ignorer ]   [ # 3 ]   
  cljeppe
05.01.2012 22:19:35
Antal indlæg: 49

Fortsætter med 2. del af 1. logfil (OTL):

[2011-12-23 12:14:37 | 000,613,888 |——| C] (Microsoft Corporation)—C:\Windows\SysNative\psisdecd.dll
[2011-12-23 12:14:37 | 000,465,408 |——| C] (Microsoft Corporation)—C:\Windows\SysWow64\psisdecd.dll
[2011-12-23 12:14:37 | 000,367,616 |——| C] (Adobe Systems Incorporated)—C:\Windows\SysNative\atmfd.dll
[2011-12-23 12:14:37 | 000,294,912 |——| C] (Adobe Systems Incorporated)—C:\Windows\SysWow64\atmfd.dll
[2011-12-23 12:14:37 | 000,108,032 |——| C] (Microsoft Corporation)—C:\Windows\SysNative\psisrndr.ax
[2011-12-23 12:14:37 | 000,100,864 |——| C] (Microsoft Corporation)—C:\Windows\SysNative\fontsub.dll
[2011-12-23 12:14:37 | 000,075,776 |——| C] (Microsoft Corporation)—C:\Windows\SysWow64\psisrndr.ax
[2011-12-23 12:14:37 | 000,070,656 |——| C] (Microsoft Corporation)—C:\Windows\SysWow64\fontsub.dll
[2011-12-23 12:14:37 | 000,046,080 |——| C] (Adobe Systems)—C:\Windows\SysNative\atmlib.dll
[2011-12-23 12:14:37 | 000,034,304 |——| C] (Adobe Systems)—C:\Windows\SysWow64\atmlib.dll
[2011-12-23 12:14:37 | 000,027,520 |——| C] (Microsoft Corporation)—C:\Windows\SysNative\drivers\Diskdump.sys
[2011-12-23 12:14:35 | 000,197,120 |——| C] (Microsoft Corporation)—C:\Windows\SysNative\d3d10_1.dll
[2011-12-23 12:14:33 | 001,162,752 |——| C] (Microsoft Corporation)—C:\Windows\SysNative\kernel32.dll
[2011-12-23 12:14:33 | 000,421,888 |——| C] (Microsoft Corporation)—C:\Windows\SysNative\KernelBase.dll
[2011-12-23 12:14:33 | 000,362,496 |——| C] (Microsoft Corporation)—C:\Windows\SysNative\wow64win.dll
[2011-12-23 12:14:33 | 000,338,432 |——| C] (Microsoft Corporation)—C:\Windows\SysNative\conhost.exe
[2011-12-23 12:14:33 | 000,243,200 |——| C] (Microsoft Corporation)—C:\Windows\SysNative\wow64.dll
[2011-12-23 12:14:33 | 000,214,528 |——| C] (Microsoft Corporation)—C:\Windows\SysNative\winsrv.dll
[2011-12-23 12:14:33 | 000,025,600 |——| C] (Microsoft Corporation)—C:\Windows\SysWow64\setup16.exe
[2011-12-23 12:14:33 | 000,016,384 |——| C] (Microsoft Corporation)—C:\Windows\SysNative\ntvdm64.dll
[2011-12-23 12:14:33 | 000,014,336 |——| C] (Microsoft Corporation)—C:\Windows\SysWow64\ntvdm64.dll
[2011-12-23 12:14:33 | 000,013,312 |——| C] (Microsoft Corporation)—C:\Windows\SysNative\wow64cpu.dll
[2011-12-23 12:14:33 | 000,007,680 |——| C] (Microsoft Corporation)—C:\Windows\SysWow64\instnm.exe
[2011-12-23 12:14:33 | 000,006,144 | -H—| C] (Microsoft Corporation)—C:\Windows\SysWow64\api-ms-win-security-base-l1-1-0.dll
[2011-12-23 12:14:33 | 000,006,144 | -H—| C] (Microsoft Corporation)—C:\Windows\SysNative\api-ms-win-security-base-l1-1-0.dll
[2011-12-23 12:14:33 | 000,005,120 | -H—| C] (Microsoft Corporation)—C:\Windows\SysWow64\api-ms-win-core-file-l1-1-0.dll
[2011-12-23 12:14:33 | 000,005,120 | -H—| C] (Microsoft Corporation)—C:\Windows\SysNative\api-ms-win-core-file-l1-1-0.dll
[2011-12-23 12:14:33 | 000,005,120 |——| C] (Microsoft Corporation)—C:\Windows\SysWow64\wow32.dll
[2011-12-23 12:14:33 | 000,004,608 | -H—| C] (Microsoft Corporation)—C:\Windows\SysWow64\api-ms-win-core-threadpool-l1-1-0.dll
[2011-12-23 12:14:33 | 000,004,608 | -H—| C] (Microsoft Corporation)—C:\Windows\SysNative\api-ms-win-core-threadpool-l1-1-0.dll
[2011-12-23 12:14:33 | 000,004,608 | -H—| C] (Microsoft Corporation)—C:\Windows\SysWow64\api-ms-win-core-processthreads-l1-1-0.dll
[2011-12-23 12:14:33 | 000,004,608 | -H—| C] (Microsoft Corporation)—C:\Windows\SysNative\api-ms-win-core-processthreads-l1-1-0.dll
[2011-12-23 12:14:33 | 000,004,096 | -H—| C] (Microsoft Corporation)—C:\Windows\SysWow64\api-ms-win-core-sysinfo-l1-1-0.dll
[2011-12-23 12:14:33 | 000,004,096 | -H—| C] (Microsoft Corporation)—C:\Windows\SysNative\api-ms-win-core-sysinfo-l1-1-0.dll
[2011-12-23 12:14:33 | 000,004,096 | -H—| C] (Microsoft Corporation)—C:\Windows\SysWow64\api-ms-win-core-synch-l1-1-0.dll
[2011-12-23 12:14:33 | 000,004,096 | -H—| C] (Microsoft Corporation)—C:\Windows\SysNative\api-ms-win-core-synch-l1-1-0.dll
[2011-12-23 12:14:33 | 000,004,096 | -H—| C] (Microsoft Corporation)—C:\Windows\SysWow64\api-ms-win-core-misc-l1-1-0.dll
[2011-12-23 12:14:33 | 000,004,096 | -H—| C] (Microsoft Corporation)—C:\Windows\SysWow64\api-ms-win-core-localregistry-l1-1-0.dll
[2011-12-23 12:14:33 | 000,004,096 | -H—| C] (Microsoft Corporation)—C:\Windows\SysNative\api-ms-win-core-localregistry-l1-1-0.dll
[2011-12-23 12:14:33 | 000,004,096 | -H—| C] (Microsoft Corporation)—C:\Windows\SysWow64\api-ms-win-core-localization-l1-1-0.dll
[2011-12-23 12:14:33 | 000,004,096 | -H—| C] (Microsoft Corporation)—C:\Windows\SysNative\api-ms-win-core-localization-l1-1-0.dll
[2011-12-23 12:14:33 | 000,003,584 | -H—| C] (Microsoft Corporation)—C:\Windows\SysWow64\api-ms-win-core-xstate-l1-1-0.dll
[2011-12-23 12:14:33 | 000,003,584 | -H—| C] (Microsoft Corporation)—C:\Windows\SysNative\api-ms-win-core-rtlsupport-l1-1-0.dll
[2011-12-23 12:14:33 | 000,003,584 | -H—| C] (Microsoft Corporation)—C:\Windows\SysWow64\api-ms-win-core-processenvironment-l1-1-0.dll
[2011-12-23 12:14:33 | 000,003,584 | -H—| C] (Microsoft Corporation)—C:\Windows\SysNative\api-ms-win-core-processenvironment-l1-1-0.dll
[2011-12-23 12:14:33 | 000,003,584 | -H—| C] (Microsoft Corporation)—C:\Windows\SysWow64\api-ms-win-core-namedpipe-l1-1-0.dll
[2011-12-23 12:14:33 | 000,003,584 | -H—| C] (Microsoft Corporation)—C:\Windows\SysNative\api-ms-win-core-namedpipe-l1-1-0.dll
[2011-12-23 12:14:33 | 000,003,584 | -H—| C] (Microsoft Corporation)—C:\Windows\SysNative\api-ms-win-core-misc-l1-1-0.dll
[2011-12-23 12:14:33 | 000,003,584 | -H—| C] (Microsoft Corporation)—C:\Windows\SysWow64\api-ms-win-core-memory-l1-1-0.dll
[2011-12-23 12:14:33 | 000,003,584 | -H—| C] (Microsoft Corporation)—C:\Windows\SysNative\api-ms-win-core-memory-l1-1-0.dll
[2011-12-23 12:14:33 | 000,003,584 | -H—| C] (Microsoft Corporation)—C:\Windows\SysWow64\api-ms-win-core-libraryloader-l1-1-0.dll
[2011-12-23 12:14:33 | 000,003,584 | -H—| C] (Microsoft Corporation)—C:\Windows\SysNative\api-ms-win-core-libraryloader-l1-1-0.dll
[2011-12-23 12:14:33 | 000,003,584 | -H—| C] (Microsoft Corporation)—C:\Windows\SysWow64\api-ms-win-core-interlocked-l1-1-0.dll
[2011-12-23 12:14:33 | 000,003,584 | -H—| C] (Microsoft Corporation)—C:\Windows\SysWow64\api-ms-win-core-heap-l1-1-0.dll
[2011-12-23 12:14:33 | 000,003,584 | -H—| C] (Microsoft Corporation)—C:\Windows\SysNative\api-ms-win-core-heap-l1-1-0.dll
[2011-12-23 12:14:33 | 000,003,072 | -H—| C] (Microsoft Corporation)—C:\Windows\SysNative\api-ms-win-core-xstate-l1-1-0.dll
[2011-12-23 12:14:33 | 000,003,072 | -H—| C] (Microsoft Corporation)—C:\Windows\SysWow64\api-ms-win-core-util-l1-1-0.dll
[2011-12-23 12:14:33 | 000,003,072 | -H—| C] (Microsoft Corporation)—C:\Windows\SysNative\api-ms-win-core-util-l1-1-0.dll
[2011-12-23 12:14:33 | 000,003,072 | -H—| C] (Microsoft Corporation)—C:\Windows\SysWow64\api-ms-win-core-string-l1-1-0.dll
[2011-12-23 12:14:33 | 000,003,072 | -H—| C] (Microsoft Corporation)—C:\Windows\SysNative\api-ms-win-core-string-l1-1-0.dll
[2011-12-23 12:14:33 | 000,003,072 | -H—| C] (Microsoft Corporation)—C:\Windows\SysWow64\api-ms-win-core-rtlsupport-l1-1-0.dll
[2011-12-23 12:14:33 | 000,003,072 | -H—| C] (Microsoft Corporation)—C:\Windows\SysWow64\api-ms-win-core-profile-l1-1-0.dll
[2011-12-23 12:14:33 | 000,003,072 | -H—| C] (Microsoft Corporation)—C:\Windows\SysNative\api-ms-win-core-profile-l1-1-0.dll
[2011-12-23 12:14:33 | 000,003,072 | -H—| C] (Microsoft Corporation)—C:\Windows\SysWow64\api-ms-win-core-io-l1-1-0.dll
[2011-12-23 12:14:33 | 000,003,072 | -H—| C] (Microsoft Corporation)—C:\Windows\SysNative\api-ms-win-core-io-l1-1-0.dll
[2011-12-23 12:14:33 | 000,003,072 | -H—| C] (Microsoft Corporation)—C:\Windows\SysNative\api-ms-win-core-interlocked-l1-1-0.dll
[2011-12-23 12:14:33 | 000,003,072 | -H—| C] (Microsoft Corporation)—C:\Windows\SysWow64\api-ms-win-core-handle-l1-1-0.dll
[2011-12-23 12:14:33 | 000,003,072 | -H—| C] (Microsoft Corporation)—C:\Windows\SysNative\api-ms-win-core-handle-l1-1-0.dll
[2011-12-23 12:14:33 | 000,003,072 | -H—| C] (Microsoft Corporation)—C:\Windows\SysWow64\api-ms-win-core-fibers-l1-1-0.dll
[2011-12-23 12:14:33 | 000,003,072 | -H—| C] (Microsoft Corporation)—C:\Windows\SysNative\api-ms-win-core-fibers-l1-1-0.dll
[2011-12-23 12:14:33 | 000,003,072 | -H—| C] (Microsoft Corporation)—C:\Windows\SysWow64\api-ms-win-core-errorhandling-l1-1-0.dll
[2011-12-23 12:14:33 | 000,003,072 | -H—| C] (Microsoft Corporation)—C:\Windows\SysNative\api-ms-win-core-errorhandling-l1-1-0.dll
[2011-12-23 12:14:33 | 000,003,072 | -H—| C] (Microsoft Corporation)—C:\Windows\SysWow64\api-ms-win-core-delayload-l1-1-0.dll
[2011-12-23 12:14:33 | 000,003,072 | -H—| C] (Microsoft Corporation)—C:\Windows\SysNative\api-ms-win-core-delayload-l1-1-0.dll
[2011-12-23 12:14:33 | 000,003,072 | -H—| C] (Microsoft Corporation)—C:\Windows\SysWow64\api-ms-win-core-debug-l1-1-0.dll
[2011-12-23 12:14:33 | 000,003,072 | -H—| C] (Microsoft Corporation)—C:\Windows\SysNative\api-ms-win-core-debug-l1-1-0.dll
[2011-12-23 12:14:33 | 000,003,072 | -H—| C] (Microsoft Corporation)—C:\Windows\SysWow64\api-ms-win-core-datetime-l1-1-0.dll
[2011-12-23 12:14:33 | 000,003,072 | -H—| C] (Microsoft Corporation)—C:\Windows\SysNative\api-ms-win-core-datetime-l1-1-0.dll
[2011-12-23 12:14:33 | 000,003,072 | -H—| C] (Microsoft Corporation)—C:\Windows\SysWow64\api-ms-win-core-console-l1-1-0.dll
[2011-12-23 12:14:33 | 000,003,072 | -H—| C] (Microsoft Corporation)—C:\Windows\SysNative\api-ms-win-core-console-l1-1-0.dll
[2011-12-23 12:14:33 | 000,002,048 |——| C] (Microsoft Corporation)—C:\Windows\SysWow64\user.exe
[2011-12-23 12:13:53 | 005,561,216 |——| C] (Microsoft Corporation)—C:\Windows\SysNative\ntoskrnl.exe
[2011-12-23 12:13:53 | 003,967,872 |——| C] (Microsoft Corporation)—C:\Windows\SysWow64\ntkrnlpa.exe
[2011-12-23 12:13:53 | 003,912,576 |——| C] (Microsoft Corporation)—C:\Windows\SysWow64\ntoskrnl.exe
[2011-12-23 12:13:52 | 000,723,456 |——| C] (Microsoft Corporation)—C:\Windows\SysNative\EncDec.dll
[2011-12-23 12:13:52 | 000,534,528 |——| C] (Microsoft Corporation)—C:\Windows\SysWow64\EncDec.dll
[2011-12-23 12:13:51 | 000,861,696 |——| C] (Microsoft Corporation)—C:\Windows\SysNative\oleaut32.dll
[2011-12-23 12:13:51 | 000,331,776 |——| C] (Microsoft Corporation)—C:\Windows\SysNative\oleacc.dll
[2011-12-23 12:13:51 | 000,267,776 |——| C] (Microsoft Corporation)—C:\Windows\SysNative\FXSCOVER.exe
[2011-12-23 12:13:51 | 000,252,928 |——| C] (Microsoft Corporation)—C:\Windows\SysWow64\drvinst.exe
[2011-12-23 12:13:51 | 000,044,544 |——| C] (Microsoft Corporation)—C:\Windows\SysWow64\devrtl.dll
[2011-12-23 12:13:51 | 000,031,232 |——| C] (Microsoft Corporation)—C:\Windows\SysWow64\prevhost.exe
[2011-12-23 12:13:51 | 000,031,232 |——| C] (Microsoft Corporation)—C:\Windows\SysNative\prevhost.exe
[2011-12-23 12:09:53 | 000,000,000 |—-D | C]—C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
[2011-12-23 12:08:13 | 000,000,000 |—-D | C]—C:\ProgramData\NVIDIA
[2011-12-23 12:08:04 | 000,000,000 |—-D | C]—C:\Program Files (x86)\NVIDIA Corporation
[2011-12-23 12:08:01 | 010,406,208 |——| C] (NVIDIA Corporation)—C:\Windows\SysNative\nvcpl.dll
[2011-12-23 12:08:01 | 005,067,584 |——| C] (NVIDIA Corporation)—C:\Windows\SysNative\nvsvc64.dll
[2011-12-23 12:08:01 | 003,074,368 |——| C] (NVIDIA Corporation)—C:\Windows\SysNative\nvsvcr.dll
[2011-12-23 12:08:01 | 000,837,952 |——| C] (NVIDIA Corporation)—C:\Windows\SysNative\easyupdatusapiu64.dll
[2011-12-23 12:08:01 | 000,222,528 |——| C] (NVIDIA Corporation)—C:\Windows\SysNative\nvmctray.dll
[2011-12-23 12:08:01 | 000,137,536 |——| C] (NVIDIA Corporation)—C:\Windows\SysNative\nvshext.dll
[2011-12-23 12:07:59 | 000,000,000 |—-D | C]—C:\ProgramData\NVIDIA Corporation
[2011-12-23 12:07:52 | 024,796,992 |——| C] (NVIDIA Corporation)—C:\Windows\SysNative\nvcompiler.dll
[2011-12-23 12:07:52 | 024,742,720 |——| C] (NVIDIA Corporation)—C:\Windows\SysNative\nvoglv64.dll
[2011-12-23 12:07:52 | 018,871,616 |——| C] (NVIDIA Corporation)—C:\Windows\SysWow64\nvoglv32.dll
[2011-12-23 12:07:52 | 017,248,576 |——| C] (NVIDIA Corporation)—C:\Windows\SysWow64\nvcompiler.dll
[2011-12-23 12:07:52 | 015,693,120 |——| C] (NVIDIA Corporation)—C:\Windows\SysNative\nvd3dumx.dll
[2011-12-23 12:07:52 | 013,205,312 |——| C] (NVIDIA Corporation)—C:\Windows\SysWow64\nvd3dum.dll
[2011-12-23 12:07:52 | 008,791,360 |——| C] (NVIDIA Corporation)—C:\Windows\SysNative\nvwgf2umx.dll
[2011-12-23 12:07:52 | 007,581,504 |——| C] (NVIDIA Corporation)—C:\Windows\SysNative\nvcuda.dll
[2011-12-23 12:07:52 | 007,041,856 |——| C] (NVIDIA Corporation)—C:\Windows\SysWow64\nvwgf2um.dll
[2011-12-23 12:07:52 | 005,578,560 |——| C] (NVIDIA Corporation)—C:\Windows\SysWow64\nvcuda.dll
[2011-12-23 12:07:52 | 002,808,128 |——| C] (NVIDIA Corporation)—C:\Windows\SysNative\nvapi64.dll
[2011-12-23 12:07:52 | 002,542,912 |——| C] (NVIDIA Corporation)—C:\Windows\SysNative\nvcuvid.dll
[2011-12-23 12:07:52 | 002,458,432 |——| C] (NVIDIA Corporation)—C:\Windows\SysWow64\nvapi.dll
[2011-12-23 12:07:52 | 002,401,088 |——| C] (NVIDIA Corporation)—C:\Windows\SysWow64\nvcuvid.dll
[2011-12-23 12:07:52 | 002,232,128 |——| C] (NVIDIA Corporation)—C:\Windows\SysNative\nvcuvenc.dll
[2011-12-23 12:07:52 | 002,099,520 |——| C] (NVIDIA Corporation)—C:\Windows\SysWow64\nvcuvenc.dll
[2011-12-23 12:07:52 | 001,533,248 |——| C] (NVIDIA Corporation)—C:\Windows\SysNative\nvdispco64.dll
[2011-12-23 12:07:52 | 001,454,400 |——| C] (NVIDIA Corporation)—C:\Windows\SysNative\nvgenco64.dll
[2011-12-23 12:07:52 | 001,452,648 |——| C] (NVIDIA Corporation)—C:\Windows\SysNative\nvhdagenco6420102.dll
[2011-12-23 12:07:52 | 000,174,184 |——| C] (NVIDIA Corporation)—C:\Windows\SysNative\drivers\nvhda64v.sys
[2011-12-23 12:07:52 | 000,068,928 |——| C] (Khronos Group)—C:\Windows\SysNative\OpenCL.dll
[2011-12-23 12:07:52 | 000,061,248 |——| C] (Khronos Group)—C:\Windows\SysWow64\OpenCL.dll
[2011-12-23 12:07:52 | 000,029,288 |——| C] (NVIDIA Corporation)—C:\Windows\SysNative\nvhdap64.dll
[2011-12-23 12:07:43 | 000,000,000 |—-D | C]—C:\Program Files\NVIDIA Corporation
[2011-12-23 12:07:27 | 000,000,000 |—-D | C]—C:\NVIDIA
[2011-12-23 12:06:57 | 000,414,368 |——| C] (Adobe Systems Incorporated)—C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
[2011-12-23 12:06:57 | 000,000,000 |—-D | C]—C:\Windows\SysWow64\Macromed
[2011-12-23 12:06:56 | 000,000,000 |—-D | C]—C:\Windows\SysNative\Macromed
[2011-12-23 11:29:10 | 000,000,000 |—-D | C]—C:\Users\Public\Documents\Atheros
[2011-12-23 11:27:28 | 000,000,000 |—-D | C]—C:\Program Files (x86)\Common Files\Atheros
[2011-12-23 11:27:26 | 000,000,000 | R—D | C]—C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BT Program
[2011-12-23 11:27:25 | 000,000,000 |—-D | C]—C:\Program Files (x86)\Bluetooth Suite
[2011-12-23 11:27:05 | 000,315,904 |——| C] (Microsoft Corporation)—C:\Windows\SysWow64\Difx862f.rra
[2011-12-23 11:27:05 | 000,000,000 |—-D | C]—C:\RaidTool
[2011-12-23 11:27:03 | 000,120,920 |——| C] (JMicron Technology Corp.)—C:\Windows\SysNative\drivers\jraid.sys
[2011-12-23 11:26:59 | 000,000,000 |—-D | C]—C:\Windows\RaidTool
[2011-12-23 11:26:42 | 000,133,800 |——| C] (Intel Corporation)—C:\Windows\SysNative\IPROSetMonitor.exe
[2011-12-23 11:26:38 | 000,000,000 |—-D | C]—C:\Program Files\Intel
[2011-12-23 11:26:34 | 000,314,568 | R—- | C] (Intel Corporation)—C:\Windows\SysNative\PROUnstl.exe
[2011-12-23 11:26:01 | 000,313,520 |——| C] (Intel Corporation)—C:\Windows\SysNative\drivers\e1c62x64.sys
[2011-12-23 11:26:01 | 000,068,264 |——| C] (Intel Corporation)—C:\Windows\SysNative\e1cmsg.dll
[2011-12-23 11:26:01 | 000,036,472 |——| C] (Intel Corporation)—C:\Windows\SysNative\NicCo36.dll
[2011-12-23 11:26:00 | 000,091,840 |——| C] (Intel Corporation)—C:\Windows\SysNative\NicInstC.dll
[2011-12-23 11:25:42 | 000,000,000 |—-D | C]—C:\Program Files (x86)\Marvell
[2011-12-23 11:25:32 | 000,000,000 |—-D | C]—C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Renesas Electronics
[2011-12-23 11:25:31 | 000,000,000 |—-D | C]—C:\Program Files (x86)\Renesas Electronics
[2011-12-23 11:25:27 | 000,000,000 | -HSD | C]—C:\Windows\Installer
[2011-12-23 11:24:57 | 000,107,552 |——| C] (Realtek Semiconductor Corporation)—C:\Windows\SysNative\RTNUninst64.dll
[2011-12-23 11:23:35 | 000,000,000 |—-D | C]—C:\Windows\AsusInstAll
[2011-12-23 11:23:28 | 000,000,000 |—-D | C]—C:\Windows\SysWow64\RTCOM
[2011-12-23 11:23:28 | 000,000,000 |—-D | C]—C:\Program Files\Realtek
[2011-12-23 11:23:21 | 002,580,824 |——| C] (Waves Audio Ltd.)—C:\Windows\SysNative\WavesGUILib.dll
[2011-12-23 11:23:21 | 000,518,896 |——| C] (SRS Labs, Inc.)—C:\Windows\SysNative\SRSTSX64.dll
[2011-12-23 11:23:21 | 000,220,496 |——| C] (Virage Logic Corporation / Sonic Focus)—C:\Windows\SysNative\SFNHK64.dll
[2011-12-23 11:23:21 | 000,211,184 |——| C] (SRS Labs, Inc.)—C:\Windows\SysNative\SRSTSH64.dll
[2011-12-23 11:23:21 | 000,198,896 |——| C] (SRS Labs, Inc.)—C:\Windows\SysNative\SRSHP64.dll
[2011-12-23 11:23:21 | 000,155,888 |——| C] (SRS Labs, Inc.)—C:\Windows\SysNative\SRSWOW64.dll
[2011-12-23 11:23:21 | 000,118,464 |——| C] (Sony Corporation)—C:\Windows\SysNative\SFSS_APO.dll
[2011-12-23 11:23:21 | 000,081,232 |——| C] (Virage Logic Corporation / Sonic Focus)—C:\Windows\SysNative\SFCOM64.dll
[2011-12-23 11:23:21 | 000,074,064 |——| C] (Virage Logic Corporation / Sonic Focus)—C:\Windows\SysWow64\SFCOM.dll
[2011-12-23 11:23:20 | 000,332,392 |——| C] (Realtek Semiconductor Corp.)—C:\Windows\SysNative\RtlCPAPI64.dll
[2011-12-23 11:23:20 | 000,078,160 |——| C] (Virage Logic Corporation / Sonic Focus)—C:\Windows\SysNative\SFAPO64.dll
[2011-12-23 11:23:19 | 002,654,824 |——| C] (Realtek Semiconductor Corp.)—C:\Windows\SysNative\RtkAPO64.dll
[2011-12-23 11:23:19 | 000,618,600 |——| C] (Realtek Semiconductor Corp.)—C:\Windows\SysNative\RtkApi64.dll
[2011-12-23 11:23:19 | 000,149,608 |——| C] (Realtek Semiconductor Corp.)—C:\Windows\SysNative\RtkCfg64.dll
[2011-12-23 11:23:18 | 002,096,232 |——| C] (Realtek Semiconductor Corp.)—C:\Windows\SysNative\RtPgEx64.dll
[2011-12-23 11:23:18 | 001,242,728 |——| C] (Realtek Semiconductor Corp.)—C:\Windows\SysNative\RTCOM64.dll
[2011-12-23 11:23:18 | 001,146,984 |——| C] (Realtek Semiconductor Corp.)—C:\Windows\SysNative\RTSnMg64.cpl
[2011-12-23 11:23:18 | 000,372,936 |——| C] (Dolby Laboratories, Inc.)—C:\Windows\SysNative\RTEEP64A.dll
[2011-12-23 11:23:18 | 000,201,928 |——| C] (Dolby Laboratories, Inc.)—C:\Windows\SysNative\RTEED64A.dll
[2011-12-23 11:23:18 | 000,099,016 |——| C] (Dolby Laboratories, Inc.)—C:\Windows\SysNative\RTEEL64A.dll
[2011-12-23 11:23:18 | 000,076,488 |——| C] (Dolby Laboratories, Inc.)—C:\Windows\SysNative\RTEEG64A.dll
[2011-12-23 11:23:17 | 000,561,256 |——| C] (Realtek Semiconductor Corp.)—C:\Windows\SysNative\RCoRes64.dat
[2011-12-23 11:23:17 | 000,307,920 |——| C] (Dolby Laboratories, Inc.)—C:\Windows\SysNative\RP3DAA64.dll
[2011-12-23 11:23:17 | 000,307,920 |——| C] (Dolby Laboratories, Inc.)—C:\Windows\SysNative\RP3DHT64.dll
[2011-12-23 11:23:17 | 000,082,024 |——| C] (Realtek Semiconductor Corp.)—C:\Windows\SysNative\RCoInst64.dll
[2011-12-23 11:23:15 | 001,770,328 |——| C] (Waves Audio Ltd.)—C:\Windows\SysNative\MaxxAudioRealtek.dll
[2011-12-23 11:23:15 | 001,716,368 |——| C] (Dolby Laboratories)—C:\Windows\SysNative\R4EEP64A.dll
[2011-12-23 11:23:15 | 000,419,472 |——| C] (Dolby Laboratories)—C:\Windows\SysNative\R4EED64A.dll
[2011-12-23 11:23:15 | 000,334,680 |——| C] (Waves Audio Ltd.)—C:\Windows\SysNative\MaxxVolumeSDAPO.dll
[2011-12-23 11:23:15 | 000,125,584 |——| C] (Dolby Laboratories)—C:\Windows\SysNative\R4EEL64A.dll
[2011-12-23 11:23:15 | 000,106,640 |——| C] (Dolby Laboratories)—C:\Windows\SysNative\R4EEA64A.dll
[2011-12-23 11:23:15 | 000,072,336 |——| C] (Dolby Laboratories)—C:\Windows\SysNative\R4EEG64A.dll
[2011-12-23 11:23:14 | 002,197,264 |——| C] (Waves Audio Ltd.)—C:\Windows\SysNative\MaxxAudioEQ.dll
[2011-12-23 11:23:14 | 000,341,336 |——| C] (Waves Audio Ltd.)—C:\Windows\SysNative\MaxxAudioAPO30.dll
[2011-12-23 11:23:14 | 000,318,808 |——| C] (Waves Audio Ltd.)—C:\Windows\SysNative\MaxxAudioAPO20.dll
[2011-12-23 11:23:11 | 001,937,312 |——| C] (Fortemedia Corporation)—C:\Windows\SysNative\FMAPO64.dll
[2011-12-23 11:23:11 | 000,491,112 |——| C] (DTS)—C:\Windows\SysNative\DTSSymmetryDLL64.dll
[2011-12-23 11:23:11 | 000,475,752 |——| C] (DTS)—C:\Windows\SysNative\DTSVoiceClarityDLL64.dll
[2011-12-23 11:23:10 | 001,327,208 |——| C] (DTS)—C:\Windows\SysNative\DTSS2SpeakerDLL64.dll
[2011-12-23 11:23:10 | 001,179,752 |——| C] (DTS)—C:\Windows\SysNative\DTSS2HeadphoneDLL64.dll
[2011-12-23 11:23:10 | 001,111,656 |——| C] (DTS)—C:\Windows\SysNative\DTSBoostDLL64.dll
[2011-12-23 11:23:10 | 000,504,936 |——| C] (DTS)—C:\Windows\SysNative\DTSBassEnhancementDLL64.dll
[2011-12-23 11:23:10 | 000,317,032 |——| C] (DTS)—C:\Windows\SysNative\DTSNeoPCDLL64.dll
[2011-12-23 11:23:10 | 000,269,928 |——| C] (DTS)—C:\Windows\SysNative\DTSLimiterDLL64.dll
[2011-12-23 11:23:10 | 000,266,856 |——| C] (DTS)—C:\Windows\SysNative\DTSGainCompensatorDLL64.dll
[2011-12-23 11:23:10 | 000,126,056 |——| C] (DTS)—C:\Windows\SysNative\DTSLFXAPO64.dll
[2011-12-23 11:23:10 | 000,125,544 |——| C] (DTS)—C:\Windows\SysNative\DTSGFXAPO64.dll
[2011-12-23 11:23:10 | 000,125,032 |——| C] (DTS)—C:\Windows\SysNative\DTSGFXAPONS64.dll
[2011-12-23 11:23:09 | 000,200,800 |——| C] (Andrea Electronics Corporation)—C:\Windows\SysNative\AERTAC64.dll
[2011-12-23 11:23:09 | 000,108,960 |——| C] (Andrea Electronics Corporation)—C:\Windows\SysNative\AERTAR64.dll
[2011-12-23 11:23:09 | 000,000,000 | -H-D | C]—C:\Program Files (x86)\Temp
[2011-12-23 11:23:09 | 000,000,000 |—-D | C]—C:\Program Files (x86)\Realtek
[2011-12-23 11:23:08 | 001,251,944 | R—- | C] (Realtek Semiconductor Corp.)—C:\Windows\RtlExUpd.dll
[2011-12-23 11:23:06 | 000,000,000 |—-D | C]—C:\Program Files (x86)\Common Files\InstallShield
[2011-12-23 11:23:03 | 000,056,344 |——| C] (Intel Corporation)—C:\Windows\SysNative\drivers\HECIx64.sys
[2011-12-23 11:23:02 | 000,000,000 | -H-D | C]—C:\Program Files (x86)\InstallShield Installation Information
[2011-12-23 11:22:43 | 000,053,248 | R—- | C] (Windows XP Bundled build C-Centric Single User)—C:\Windows\SysWow64\CSVer.dll
[2011-12-23 11:22:43 | 000,000,000 |—-D | C]—C:\Program Files (x86)\Intel
[2011-12-23 11:22:35 | 000,000,000 |—-D | C]—C:\Intel
[2011-12-23 10:51:13 | 000,000,000 |—-D | C]—C:\Windows\SoftwareDistribution
[2011-12-23 10:43:53 | 000,000,000 |—-D | C]—C:\Windows\Prefetch
[2011-12-23 10:43:44 | 000,000,000 | -HSD | C]—C:\System Volume Information
[2011-12-23 10:42:48 | 000,000,000 |—-D | C]—C:\Windows\Panther
[2010-11-18 21:27:34 | 000,162,816 |——| C] (Igor Pavlov)—C:\Program Files (x86)\7z.sfx
[2010-11-18 21:27:34 | 000,152,064 |——| C] (Igor Pavlov)—C:\Program Files (x86)\7zCon.sfx
[2010-11-18 21:24:20 | 001,422,336 |——| C] (Igor Pavlov)—C:\Program Files (x86)\7z.dll
[2010-11-18 21:11:38 | 000,387,072 |——| C] (Igor Pavlov)—C:\Program Files (x86)\7zG.exe
[2010-11-18 21:10:48 | 000,740,352 |——| C] (Igor Pavlov)—C:\Program Files (x86)\7zFM.exe
[2010-11-18 21:08:50 | 000,086,016 |——| C] (Igor Pavlov)—C:\Program Files (x86)\7-zip.dll
[2010-11-18 21:08:30 | 000,284,160 |——| C] (Igor Pavlov)—C:\Program Files (x86)\7z.exe
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2012-01-05 19:53:44 | 000,584,192 |——| M] (OldTimer Tools)—C:\Users\Carsten\Desktop\OTL.exe
[2012-01-05 18:30:58 | 000,021,888 | -H—| M] ()—C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2012-01-05 18:30:58 | 000,021,888 | -H—| M] ()—C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2012-01-05 18:29:53 | 000,621,994 |——| M] ()—C:\Windows\SysNative\perfh009.dat
[2012-01-05 18:29:53 | 000,484,382 |——| M] ()—C:\Windows\SysNative\perfh006.dat
[2012-01-05 18:29:53 | 000,111,082 |——| M] ()—C:\Windows\SysNative\perfc009.dat
[2012-01-05 18:29:53 | 000,088,828 |——| M] ()—C:\Windows\SysNative\PerfStringBackup.INI
[2012-01-05 18:29:53 | 000,084,726 |——| M] ()—C:\Windows\SysNative\perfc006.dat
[2012-01-05 18:23:53 | 000,067,584 |—S- | M] ()—C:\Windows\bootstat.dat
[2012-01-05 18:23:52 | 464,097,606 |——| M] ()—C:\Windows\MEMORY.DMP
[2012-01-05 18:23:47 | 2129,334,271 | -HS- | M] ()—C:\hiberfil.sys
[2012-01-05 11:07:41 | 000,001,116 |——| M] ()—C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Secunia PSI Tray.lnk
[2012-01-05 11:03:59 | 000,000,000 | -H—| M] ()—C:\Windows\SysNative\drivers\Msft_Kernel_NuidFltr_01005.Wdf
[2012-01-04 22:54:01 | 000,001,143 |——| M] ()—C:\Users\Carsten\Application Data\Microsoft\Internet Explorer\Quick Launch\Malwarebytes Anti-Malware.lnk
[2012-01-04 21:39:46 | 000,000,266 |——| M] ()—C:\Users\Carsten\AppData\Roaming\wklnhst.dat
[2012-01-04 19:30:12 | 000,000,828 |——| M] ()—C:\Users\Public\Desktop\CCleaner.lnk
[2012-01-04 12:04:29 | 000,000,035 |——| M] ()—C:\Users\Public\Documents\AtherosServiceConfig.ini
[2012-01-03 23:13:23 | 000,000,815 |——| M] ()—C:\Users\Carsten\AppData\Roaming\burnaware.ini
[2012-01-03 22:46:37 | 000,000,349 |——| M] ()—C:\Users\Public\Documents\PCLECHAL.INI
[2012-01-03 16:53:06 | 000,001,057 |——| M] ()—C:\Users\Carsten\AppData\Roaming\vso_ts_preview.xml
[2012-01-03 11:12:24 | 004,310,837 |——| M] ()—C:\Users\Carsten\Documents\BW040_RhB-Winterdampf.mp4
[2012-01-03 10:18:15 | 000,419,856 |——| M] ()—C:\Windows\SysNative\FNTCACHE.DAT
[2012-01-02 23:19:02 | 000,001,141 |——| M] ()—C:\Users\Public\Desktop\Microsoft Works.lnk
[2012-01-02 16:22:06 | 000,003,140 | -HS- | M] ()—C:\ProgramData\KGyGaAvL.sys
[2012-01-02 16:21:15 | 000,000,088 | RHS- | M] ()—C:\ProgramData\F36544AF45.sys
[2012-01-02 16:19:10 | 000,004,608 |——| M] ()—C:\Users\Carsten\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012-01-02 11:20:16 | 000,900,096 |——| M] (AfaTech             )—C:\Windows\SysNative\drivers\AF9035HB.sys
[2012-01-02 10:50:25 | 000,099,384 |——| M] ()—C:\Users\Carsten\AppData\Roaming\inst.exe
[2012-01-02 10:50:25 | 000,082,816 |——| M] (VSO Software)—C:\Windows\SysNative\drivers\pcouffin.sys
[2012-01-02 10:50:25 | 000,082,816 |——| M] (VSO Software)—C:\Users\Carsten\AppData\Roaming\pcouffin.sys
[2012-01-02 10:50:25 | 000,007,859 |——| M] ()—C:\Users\Carsten\AppData\Roaming\pcouffin.cat
[2012-01-02 10:50:25 | 000,001,167 |——| M] ()—C:\Users\Carsten\AppData\Roaming\pcouffin.inf
[2012-01-02 10:50:24 | 000,001,230 |——| M] ()—C:\Users\Carsten\Application Data\Microsoft\Internet Explorer\Quick Launch\ConvertXtoDVD 4.lnk
[2012-01-02 10:45:51 | 000,001,047 |——| M] ()—C:\Users\Carsten\Application Data\Microsoft\Internet Explorer\Quick Launch\ StreamTransport.lnk
[2012-01-02 09:24:43 | 000,001,274 |——| M] ()—C:\Users\Carsten\Desktop\Revo Uninstaller.lnk
[2012-01-01 10:33:10 | 000,001,024 |——| M] ()—C:\Users\Carsten\.rnd
[2012-01-01 10:30:32 | 000,002,765 |——| M] ()—C:\Users\Carsten\Application Data\Microsoft\Internet Explorer\Quick Launch\Nero StartSmart Essentials.lnk
[2012-01-01 10:30:32 | 000,002,741 |——| M] ()—C:\Users\Carsten\Desktop\Nero StartSmart Essentials.lnk
[2012-01-01 10:30:32 | 000,002,677 |——| M] ()—C:\Users\Carsten\Application Data\Microsoft\Internet Explorer\Quick Launch\Nero Home Essentials SE.lnk
[2012-01-01 10:29:14 | 000,000,026 |——| M] ()—C:\Windows\Irremote.ini
[2011-12-29 11:45:54 | 000,000,620 |——| M] ()—C:\Users\Carsten\Desktop\Gads Bogskab - Genvej.lnk
[2011-12-29 11:26:32 | 000,001,263 |——| M] ()—C:\Users\Carsten\Desktop\frd - Genvej.lnk
[2011-12-28 21:29:24 | 000,001,136 |——| M] ()—C:\Users\Carsten\Application Data\Microsoft\Internet Explorer\Quick Launch\SureThing Express Labeler.lnk
[2011-12-28 21:21:22 | 000,001,224 |——| M] ()—C:\Users\Carsten\Application Data\Microsoft\Internet Explorer\Quick Launch\Pinnacle Studio 14.lnk
[2011-12-28 21:07:22 | 000,002,599 |——| M] ()—C:\Users\Public\Desktop\Tysk-Dansk Dansk-Tysk.lnk
[2011-12-28 15:29:58 | 000,001,188 |——| M] ()—C:\Windows\ODBC.INI
[2011-12-28 15:29:57 | 000,001,641 |——| M] ()—C:\Users\Public\Desktop\Collection Märklin H0.lnk
[2011-12-28 10:40:45 | 000,001,050 |——| M] ()—C:\Users\Carsten\Application Data\Microsoft\Internet Explorer\Quick Launch\DVDFab 8 Qt.lnk
[2011-12-28 09:25:11 | 000,000,020 | -H—| M] ()—C:\ProgramData\PKP_DLds.DAT
[2011-12-28 09:25:09 | 000,000,020 | -H—| M] ()—C:\ProgramData\PKP_DLec.DAT
[2011-12-28 09:23:19 | 000,000,268 | RH—| M] ()—C:\ProgramData\Help
[2011-12-28 09:23:19 | 000,000,268 | RH—| M] ()—C:\Users\Carsten\AppData\Roaming\Guitar
[2011-12-28 09:16:55 | 000,000,953 |——| M] ()—C:\Users\Carsten\Application Data\Microsoft\Internet Explorer\Quick Launch\XnView.lnk
[2011-12-27 19:08:08 | 000,002,645 |——| M] ()—C:\Users\Carsten\Desktop\Microsoft Word.lnk
[2011-12-27 19:07:34 | 000,002,661 |——| M] ()—C:\Users\Carsten\Desktop\Microsoft Excel.lnk
[2011-12-27 07:59:23 | 000,002,041 |——| M] ()—C:\Users\Public\Desktop\Nitro Reader.lnk
[2011-12-26 18:57:08 | 000,002,242 |——| M] ()—C:\Users\Public\Desktop\HP Deskjet 2050 J510 series.lnk
[2011-12-26 18:57:08 | 000,001,237 |——| M] ()—C:\Users\Public\Desktop\HP Deskjet 2050 J510 series Scan.lnk
[2011-12-26 16:45:44 | 000,472,808 |——| M] (Sun Microsystems, Inc.)—C:\Windows\SysWow64\deployJava1.dll
[2011-12-26 16:45:44 | 000,157,472 |——| M] (Sun Microsystems, Inc.)—C:\Windows\SysWow64\javaws.exe
[2011-12-26 16:45:44 | 000,149,280 |——| M] (Sun Microsystems, Inc.)—C:\Windows\SysWow64\javaw.exe
[2011-12-26 16:45:44 | 000,149,280 |——| M] (Sun Microsystems, Inc.)—C:\Windows\SysWow64\java.exe
[2011-12-26 10:15:04 | 000,001,158 |——| M] ()—C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\MailWasherPro.lnk
[2011-12-26 09:35:50 | 000,000,652 |——| M] ()—C:\Users\Public\Desktop\Total Commander 64 bit.lnk
[2011-12-25 16:45:17 | 000,001,013 |——| M] ()—C:\Users\Carsten\Application Data\Microsoft\Internet Explorer\Quick Launch\Winamp.lnk
[2011-12-25 16:42:13 | 000,414,368 |——| M] (Adobe Systems Incorporated)—C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
[2011-12-25 15:00:26 | 000,001,148 |——| M] ()—C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2011-12-25 14:57:18 | 000,001,451 |——| M] ()—C:\Users\Carsten\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2011-12-25 14:55:13 | 000,001,912 |——| M] ()—C:\Windows\epplauncher.mif
[2011-12-25 14:54:49 | 001,289,942 |——| M] ()—C:\Windows\SysWow64\PerfStringBackup.INI
[2011-12-25 14:42:51 | 000,180,233 |——| M] ()—C:\Windows\SysWow64\license.rtf
[2011-12-25 14:42:51 | 000,180,233 |——| M] ()—C:\Windows\SysNative\license.rtf
[2011-12-23 12:20:14 | 003,695,416 |——| M] (Microsoft Corporation)—C:\Windows\SysWow64\ieapfltr.dat
[2011-12-23 12:20:14 | 003,695,416 |——| M] (Microsoft Corporation)—C:\Windows\SysNative\ieapfltr.dat
[2011-12-23 12:20:14 | 002,309,120 |——| M] (Microsoft Corporation)—C:\Windows\SysNative\jscript9.dll
[2011-12-23 12:20:14 | 001,493,504 |——| M] (Microsoft Corporation)—C:\Windows\SysNative\inetcpl.cpl
[2011-12-23 12:20:14 | 001,427,456 |——| M] (Microsoft Corporation)—C:\Windows\SysWow64\inetcpl.cpl
[2011-12-23 12:20:14 | 000,818,688 |——| M] (Microsoft Corporation)—C:\Windows\SysNative\jscript.dll
[2011-12-23 12:20:14 | 000,716,800 |——| M] (Microsoft Corporation)—C:\Windows\SysWow64\jscript.dll
[2011-12-23 12:20:14 | 000,697,344 |——| M] (Microsoft Corporation)—C:\Windows\SysNative\msfeeds.dll
[2011-12-23 12:20:14 | 000,603,648 |——| M] (Microsoft Corporation)—C:\Windows\SysNative\vbscript.dll
[2011-12-23 12:20:14 | 000,534,528 |——| M] (Microsoft Corporation)—C:\Windows\SysNative\ieapfltr.dll
[2011-12-23 12:20:14 | 000,452,608 |——| M] (Microsoft Corporation)—C:\Windows\SysNative\dxtmsft.dll
[2011-12-23 12:20:14 | 000,448,512 |——| M] (Microsoft Corporation)—C:\Windows\SysNative\html.iec
[2011-12-23 12:20:14 | 000,434,176 |——| M] (Microsoft Corporation)—C:\Windows\SysWow64\ieapfltr.dll
[2011-12-23 12:20:14 | 000,367,104 |——| M] (Microsoft Corporation)—C:\Windows\SysWow64\html.iec
[2011-12-23 12:20:14 | 000,282,112 |——| M] (Microsoft Corporation)—C:\Windows\SysNative\dxtrans.dll
[2011-12-23 12:20:14 | 000,267,776 |——| M] (Microsoft Corporation)—C:\Windows\SysNative\ieaksie.dll
[2011-12-23 12:20:14 | 000,248,320 |——| M] (Microsoft Corporation)—C:\Windows\SysNative\ieui.dll
[2011-12-23 12:20:14 | 000,237,056 |——| M] (Microsoft Corporation)—C:\Windows\SysNative\url.dll
[2011-12-23 12:20:14 | 000,231,936 |——| M] (Microsoft Corporation)—C:\Windows\SysWow64\url.dll
[2011-12-23 12:20:14 | 000,227,840 |——| M] (Microsoft Corporation)—C:\Windows\SysWow64\ieaksie.dll
[2011-12-23 12:20:14 | 000,222,208 |——| M] (Microsoft Corporation)—C:\Windows\SysNative\msls31.dll
[2011-12-23 12:20:14 | 000,197,120 |——| M] (Microsoft Corporation)—C:\Windows\SysNative\msrating.dll
[2011-12-23 12:20:14 | 000,176,640 |——| M] (Microsoft Corporation)—C:\Windows\SysWow64\ieui.dll
[2011-12-23 12:20:14 | 000,173,056 |——| M] (Microsoft Corporation)—C:\Windows\SysNative\ieUnatt.exe
[2011-12-23 12:20:14 | 000,165,888 |——| M] (Microsoft Corporation)—C:\Windows\SysNative\iexpress.exe
[2011-12-23 12:20:14 | 000,163,840 |——| M] (Microsoft Corporation)—C:\Windows\SysWow64\ieakui.dll
[2011-12-23 12:20:14 | 000,163,840 |——| M] (Microsoft Corporation)—C:\Windows\SysNative\ieakui.dll
[2011-12-23 12:20:14 | 000,162,304 |——| M] (Microsoft Corporation)—C:\Windows\SysWow64\msrating.dll
[2011-12-23 12:20:14 | 000,160,256 |——| M] (Microsoft Corporation)—C:\Windows\SysNative\wextract.exe
[2011-12-23 12:20:14 | 000,160,256 |——| M] (Microsoft Corporation)—C:\Windows\SysNative\ieakeng.dll
[2011-12-23 12:20:14 | 000,152,064 |——| M] (Microsoft Corporation)—C:\Windows\SysWow64\wextract.exe
[2011-12-23 12:20:14 | 000,150,528 |——| M] (Microsoft Corporation)—C:\Windows\SysWow64\iexpress.exe
[2011-12-23 12:20:14 | 000,149,504 |——| M] (Microsoft Corporation)—C:\Windows\SysNative\occache.dll
[2011-12-23 12:20:14 | 000,145,920 |——| M] (Microsoft Corporation)—C:\Windows\SysNative\iepeers.dll
[2011-12-23 12:20:14 | 000,142,848 |——| M] (Microsoft Corporation)—C:\Windows\SysWow64\ieUnatt.exe
[2011-12-23 12:20:14 | 000,135,168 |——| M] (Microsoft Corporation)—C:\Windows\SysNative\IEAdvpack.dll
[2011-12-23 12:20:14 | 000,130,560 |——| M] (Microsoft Corporation)—C:\Windows\SysWow64\ieakeng.dll
[2011-12-23 12:20:14 | 000,123,392 |——| M] (Microsoft Corporation)—C:\Windows\SysWow64\occache.dll
[2011-12-23 12:20:14 | 000,118,784 |——| M] (Microsoft Corporation)—C:\Windows\SysWow64\iepeers.dll
[2011-12-23 12:20:14 | 000,114,176 |——| M] (Microsoft Corporation)—C:\Windows\SysNative\admparse.dll
[2011-12-23 12:20:14 | 000,111,616 |——| M] (Microsoft Corporation)—C:\Windows\SysNative\iesysprep.dll
[2011-12-23 12:20:14 | 000,110,592 |——| M] (Microsoft Corporation)—C:\Windows\SysWow64\IEAdvpack.dll
[2011-12-23 12:20:14 | 000,103,936 |——| M] (Microsoft Corporation)—C:\Windows\SysNative\inseng.dll
[2011-12-23 12:20:14 | 000,101,888 |——| M] (Microsoft Corporation)—C:\Windows\SysWow64\admparse.dll
[2011-12-23 12:20:14 | 000,096,256 |——| M] (Microsoft Corporation)—C:\Windows\SysNative\mshtmled.dll
[2011-12-23 12:20:14 | 000,091,648 |——| M] (Microsoft Corporation)—C:\Windows\SysNative\SetIEInstalledDate.exe
[2011-12-23 12:20:14 | 000,089,088 |——| M] (Microsoft Corporation)—C:\Windows\SysNative\RegisterIEPKEYs.exe
[2011-12-23 12:20:14 | 000,089,088 |——| M] (Microsoft Corporation)—C:\Windows\SysNative\ie4uinit.exe
[2011-12-23 12:20:14 | 000,086,528 |——| M] (Microsoft Corporation)—C:\Windows\SysWow64\iesysprep.dll
[2011-12-23 12:20:14 | 000,085,504 |——| M] (Microsoft Corporation)—C:\Windows\SysNative\iesetup.dll
[2011-12-23 12:20:14 | 000,082,432 |——| M] (Microsoft Corporation)—C:\Windows\SysNative\icardie.dll
[2011-12-23 12:20:14 | 000,078,848 |——| M] (Microsoft Corporation)—C:\Windows\SysWow64\inseng.dll
[2011-12-23 12:20:14 | 000,076,800 |——| M] (Microsoft Corporation)—C:\Windows\SysNative\tdc.ocx
[2011-12-23 12:20:14 | 000,076,800 |——| M] (Microsoft Corporation)—C:\Windows\SysWow64\SetIEInstalledDate.exe
[2011-12-23 12:20:14 | 000,074,752 |——| M] (Microsoft Corporation)—C:\Windows\SysWow64\RegisterIEPKEYs.exe
[2011-12-23 12:20:14 | 000,074,752 |——| M] (Microsoft Corporation)—C:\Windows\SysWow64\iesetup.dll
[2011-12-23 12:20:14 | 000,074,240 |——| M] (Microsoft Corporation)—C:\Windows\SysWow64\ie4uinit.exe
[2011-12-23 12:20:14 | 000,072,822 |——| M] ()—C:\Windows\SysWow64\ieuinit.inf
[2011-12-23 12:20:14 | 000,072,822 |——| M] ()—C:\Windows\SysNative\ieuinit.inf
[2011-12-23 12:20:14 | 000,072,704 |——| M] (Microsoft Corporation)—C:\Windows\SysWow64\mshtmled.dll
[2011-12-23 12:20:14 | 000,066,048 |——| M] (Microsoft Corporation)—C:\Windows\SysWow64\icardie.dll
[2011-12-23 12:20:14 | 000,065,024 |——| M] (Microsoft Corporation)—C:\Windows\SysNative\pngfilt.dll
[2011-12-23 12:20:14 | 000,063,488 |——| M] (Microsoft Corporation)—C:\Windows\SysWow64\tdc.ocx
[2011-12-23 12:20:14 | 000,054,272 |——| M] (Microsoft Corporation)—C:\Windows\SysWow64\pngfilt.dll
[2011-12-23 12:20:14 | 000,049,664 |——| M] (Microsoft Corporation)—C:\Windows\SysNative\imgutil.dll
[2011-12-23 12:20:14 | 000,048,640 |——| M] (Microsoft Corporation)—C:\Windows\SysWow64\mshtmler.dll
[2011-12-23 12:20:14 | 000,048,640 |——| M] (Microsoft Corporation)—C:\Windows\SysNative\mshtmler.dll
[2011-12-23 12:20:14 | 000,039,936 |——| M] (Microsoft Corporation)—C:\Windows\SysNative\iernonce.dll
[2011-12-23 12:20:14 | 000,031,744 |——| M] (Microsoft Corporation)—C:\Windows\SysWow64\iernonce.dll
[2011-12-23 12:20:14 | 000,030,720 |——| M] (Microsoft Corporation)—C:\Windows\SysNative\licmgr10.dll
[2011-12-23 12:20:14 | 000,023,552 |——| M] (Microsoft Corporation)—C:\Windows\SysWow64\licmgr10.dll
[2011-12-23 12:20:14 | 000,012,288 |——| M] (Microsoft Corporation)—C:\Windows\SysNative\mshta.exe
[2011-12-23 12:20:14 | 000,010,752 |——| M] (Microsoft Corporation)—C:\Windows\SysWow64\msfeedssync.exe
[2011-12-23 12:20:14 | 000,010,752 |——| M] (Microsoft Corporation)—C:\Windows\SysNative\msfeedssync.exe
[2011-12-23 11:29:10 | 000,045,247 |——| M] ()—C:\Windows\Ascd_log.ini
[2011-12-23 11:28:10 | 000,000,000 | -H—| M] ()—C:\Windows\SysNative\drivers\Msft_Kernel_btath_hcrp_01009.Wdf
[2011-12-23 11:27:28 | 000,246,804 |——| M] ()—C:\Windows\SysNative\drivers\AtherosBt.bin
[2011-12-23 11:22:04 | 000,030,483 |——| M] ()—C:\Windows\Ascd_tmp.ini
[2011-12-23 11:21:52 | 000,001,769 |——| M] ()—C:\Windows\Language_trs.ini
[2011-12-23 10:44:28 | 000,000,000 | -H—| M] ()—C:\Windows\SysNative\drivers\Msft_User_WpdFs_01_09_00.Wdf
[2011-12-20 10:10:48 | 000,017,192 |——| M] (Nitro PDF Software)—C:\Windows\SysNative\nitrolocalui2.dll
[2011-12-20 10:10:46 | 000,028,968 |——| M] (Nitro PDF Software)—C:\Windows\SysNative\nitrolocalmon2.dll
[2011-12-10 15:24:08 | 000,023,152 |——| M] (Malwarebytes Corporation)—C:\Windows\SysNative\drivers\mbam.sys
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files Created - No Company Name ==========

[2012-01-05 18:16:50 | 464,097,606 |——| C] ()—C:\Windows\MEMORY.DMP
[2012-01-05 11:07:41 | 000,001,116 |——| C] ()—C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Secunia PSI Tray.lnk
[2012-01-05 11:07:41 | 000,001,079 |——| C] ()—C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Secunia PSI.lnk
[2012-01-05 11:03:59 | 000,000,000 | -H—| C] ()—C:\Windows\SysNative\drivers\Msft_Kernel_NuidFltr_01005.Wdf
[2012-01-04 19:30:12 | 000,000,828 |——| C] ()—C:\Users\Public\Desktop\CCleaner.lnk
[2012-01-04 09:02:50 | 000,001,143 |——| C] ()—C:\Users\Carsten\Application Data\Microsoft\Internet Explorer\Quick Launch\Malwarebytes Anti-Malware.lnk
[2012-01-03 22:08:24 | 000,002,519 |——| C] ()—C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk
[2012-01-03 11:12:18 | 004,310,837 |——| C] ()—C:\Users\Carsten\Documents\BW040_RhB-Winterdampf.mp4
[2012-01-02 16:19:09 | 000,004,608 |——| C] ()—C:\Users\Carsten\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012-01-02 16:16:54 | 000,003,140 | -HS- | C] ()—C:\ProgramData\KGyGaAvL.sys
[2012-01-02 16:16:54 | 000,000,088 | RHS- | C] ()—C:\ProgramData\F36544AF45.sys
[2012-01-02 10:50:48 | 000,001,057 |——| C] ()—C:\Users\Carsten\AppData\Roaming\vso_ts_preview.xml
[2012-01-02 10:50:25 | 000,099,384 |——| C] ()—C:\Users\Carsten\AppData\Roaming\inst.exe
[2012-01-02 10:50:25 | 000,007,859 |——| C] ()—C:\Users\Carsten\AppData\Roaming\pcouffin.cat
[2012-01-02 10:50:25 | 000,001,167 |——| C] ()—C:\Users\Carsten\AppData\Roaming\pcouffin.inf
[2012-01-02 10:50:24 | 000,001,230 |——| C] ()—C:\Users\Carsten\Application Data\Microsoft\Internet Explorer\Quick Launch\ConvertXtoDVD 4.lnk
[2012-01-02 10:45:51 | 000,001,047 |——| C] ()—C:\Users\Carsten\Application Data\Microsoft\Internet Explorer\Quick Launch\ StreamTransport.lnk
[2012-01-02 10:35:28 | 000,299,552 |——| C] ()—C:\Windows\wmsysprx.prx
[2012-01-02 09:55:13 | 000,000,413 |——| C] ()—C:\Program Files (x86)\file_id.diz
[2012-01-02 09:24:43 | 000,001,274 |——| C] ()—C:\Users\Carsten\Desktop\Revo Uninstaller.lnk
[2012-01-01 12:03:25 | 000,000,266 |——| C] ()—C:\Users\Carsten\AppData\Roaming\wklnhst.dat
[2012-01-01 11:58:10 | 000,002,557 |——| C] ()—C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office PowerPoint Viewer 2007.lnk
[2012-01-01 11:57:46 | 000,001,153 |——| C] ()—C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Works Task Launcher.lnk
[2012-01-01 11:57:46 | 000,001,141 |——| C] ()—C:\Users\Public\Desktop\Microsoft Works.lnk
[2012-01-01 10:36:42 | 000,002,741 |——| C] ()—C:\Users\Carsten\Desktop\Nero StartSmart Essentials.lnk
[2012-01-01 10:30:32 | 000,002,765 |——| C] ()—C:\Users\Carsten\Application Data\Microsoft\Internet Explorer\Quick Launch\Nero StartSmart Essentials.lnk
[2012-01-01 10:30:32 | 000,002,677 |——| C] ()—C:\Users\Carsten\Application Data\Microsoft\Internet Explorer\Quick Launch\Nero Home Essentials SE.lnk
[2012-01-01 10:29:14 | 000,000,026 |——| C] ()—C:\Windows\Irremote.ini
[2012-01-01 10:29:10 | 000,001,024 |——| C] ()—C:\Users\Carsten\.rnd
[2011-12-29 11:45:54 | 000,000,620 |——| C] ()—C:\Users\Carsten\Desktop\Gads Bogskab - Genvej.lnk
[2011-12-29 11:26:32 | 000,001,263 |——| C] ()—C:\Users\Carsten\Desktop\frd - Genvej.lnk
[2011-12-28 21:29:24 | 000,001,136 |——| C] ()—C:\Users\Carsten\Application Data\Microsoft\Internet Explorer\Quick Launch\SureThing Express Labeler.lnk
[2011-12-28 21:21:22 | 000,001,224 |——| C] ()—C:\Users\Carsten\Application Data\Microsoft\Internet Explorer\Quick Launch\Pinnacle Studio 14.lnk
[2011-12-28 21:17:39 | 000,000,349 |——| C] ()—C:\Users\Public\Documents\PCLECHAL.INI
[2011-12-28 21:07:22 | 000,002,599 |——| C] ()—C:\Users\Public\Desktop\Tysk-Dansk Dansk-Tysk.lnk
[2011-12-28 15:29:57 | 000,001,641 |——| C] ()—C:\Users\Public\Desktop\Collection Märklin H0.lnk
[2011-12-28 15:29:45 | 000,294,912 |——| C] ()—C:\Windows\SysWow64\ExportModeller.dll
[2011-12-28 15:29:45 | 000,049,223 |——| C] ()—C:\Windows\SysWow64\Crtslv.Dll
[2011-12-28 10:40:45 | 000,001,050 |——| C] ()—C:\Users\Carsten\Application Data\Microsoft\Internet Explorer\Quick Launch\DVDFab 8 Qt.lnk
[2011-12-28 09:23:19 | 000,000,268 | RH—| C] ()—C:\ProgramData\Help
[2011-12-28 09:23:19 | 000,000,268 | RH—| C] ()—C:\Users\Carsten\AppData\Roaming\Guitar
[2011-12-28 09:23:19 | 000,000,020 | -H—| C] ()—C:\ProgramData\PKP_DLds.DAT
[2011-12-28 09:16:55 | 000,000,953 |——| C] ()—C:\Users\Carsten\Application Data\Microsoft\Internet Explorer\Quick Launch\XnView.lnk
[2011-12-27 23:12:22 | 000,000,020 | -H—| C] ()—C:\ProgramData\PKP_DLec.DAT
[2011-12-27 19:08:08 | 000,002,645 |——| C] ()—C:\Users\Carsten\Desktop\Microsoft Word.lnk
[2011-12-27 19:07:34 | 000,002,661 |——| C] ()—C:\Users\Carsten\Desktop\Microsoft Excel.lnk
[2011-12-27 19:06:35 | 000,001,188 |——| C] ()—C:\Windows\ODBC.INI
[2011-12-27 19:06:25 | 000,002,695 |——| C] ()—C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Outlook.lnk
[2011-12-27 19:06:25 | 000,002,661 |——| C] ()—C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Excel.lnk
[2011-12-27 19:06:25 | 000,002,645 |——| C] ()—C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Word.lnk
[2011-12-27 19:06:25 | 000,002,629 |——| C] ()—C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Access.lnk
[2011-12-27 19:06:25 | 000,002,623 |——| C] ()—C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft FrontPage.lnk
[2011-12-27 19:06:25 | 000,002,621 |——| C] ()—C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft PowerPoint.lnk
[2011-12-27 19:01:09 | 000,000,815 |——| C] ()—C:\Users\Carsten\AppData\Roaming\burnaware.ini
[2011-12-27 07:59:23 | 000,002,507 |——| C] ()—C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nitro Reader 2.lnk
[2011-12-27 07:59:23 | 000,002,041 |——| C] ()—C:\Users\Public\Desktop\Nitro Reader.lnk
[2011-12-26 23:16:42 | 000,000,565 |——| C] ()—C:\Users\Carsten\Desktop\Odense Weather Forecasts on Yahoo! Weather.url
[2011-12-26 23:16:42 | 000,000,258 |——| C] ()—C:\Users\Carsten\Desktop\brawa 40133 - Google-søgning.url
[2011-12-26 23:16:42 | 000,000,168 |——| C] ()—C:\Users\Carsten\Desktop\Marianne Faithfull Video.url
[2011-12-26 23:16:42 | 000,000,168 |——| C] ()—C:\Users\Carsten\Desktop\Brawa Modelleisenbahn Dampf-Loks.url
[2011-12-26 23:16:42 | 000,000,166 |——| C] ()—C:\Users\Carsten\Desktop\Directory of Record shops in the UK.url
[2011-12-26 23:16:42 | 000,000,156 |——| C] ()—C:\Users\Carsten\Desktop\weltrestaurant markthalle.url
[2011-12-26 18:57:08 | 000,002,242 |——| C] ()—C:\Users\Public\Desktop\HP Deskjet 2050 J510 series.lnk
[2011-12-26 18:57:08 | 000,001,237 |——| C] ()—C:\Users\Public\Desktop\HP Deskjet 2050 J510 series Scan.lnk
[2011-12-26 18:25:52 | 000,002,492 |——| C] ()—C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Messenger.lnk
[2011-12-26 10:02:47 | 000,001,158 |——| C] ()—C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\MailWasherPro.lnk
[2011-12-26 09:35:50 | 000,000,652 |——| C] ()—C:\Users\Public\Desktop\Total Commander 64 bit.lnk
[2011-12-25 16:45:17 | 000,001,013 |——| C] ()—C:\Users\Carsten\Application Data\Microsoft\Internet Explorer\Quick Launch\Winamp.lnk
[2011-12-25 15:00:26 | 000,001,160 |——| C] ()—C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
[2011-12-25 15:00:26 | 000,001,148 |——| C] ()—C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2011-12-25 14:57:18 | 000,001,451 |——| C] ()—C:\Users\Carsten\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2011-12-25 14:55:13 | 000,001,912 |——| C] ()—C:\Windows\epplauncher.mif
[2011-12-25 14:54:49 | 001,289,942 |——| C] ()—C:\Windows\SysWow64\PerfStringBackup.INI
[2011-12-25 14:54:48 | 000,001,903 |——| C] ()—C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Security Essentials.lnk
[2011-12-25 14:51:46 | 000,001,423 |——| C] ()—C:\Users\Carsten\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk
[2011-12-25 14:51:45 | 000,001,457 |——| C] ()—C:\Users\Carsten\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
[2011-12-25 14:51:37 | 000,000,290 |——| C] ()—C:\Users\Carsten\Application Data\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk
[2011-12-25 14:51:37 | 000,000,272 |——| C] ()—C:\Users\Carsten\Application Data\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk
[2011-12-23 12:34:08 | 000,027,702 |——| C] ()—C:\Windows\SysNative\oemlogo.bmp
[2011-12-23 12:20:14 | 000,072,822 |——| C] ()—C:\Windows\SysWow64\ieuinit.inf
[2011-12-23 12:20:14 | 000,072,822 |——| C] ()—C:\Windows\SysNative\ieuinit.inf
[2011-12-23 12:07:52 | 000,007,384 |——| C] ()—C:\Windows\SysNative\nvinfo.pb
[2011-12-23 11:29:09 | 000,000,035 |——| C] ()—C:\Users\Public\Documents\AtherosServiceConfig.ini
[2011-12-23 11:28:10 | 000,000,000 | -H—| C] ()—C:\Windows\SysNative\drivers\Msft_Kernel_btath_hcrp_01009.Wdf
[2011-12-23 11:26:34 | 000,001,904 |——| C] ()—C:\Windows\SysNative\SetupBD.din
[2011-12-23 11:26:01 | 000,003,114 |——| C] ()—C:\Windows\SysNative\e1c62x64.din
[2011-12-23 11:23:04 | 000,008,192 |——| C] ()—C:\Windows\SysNative\drivers\IntelMEFWVer.dll
[2011-12-23 11:22:22 | 000,045,247 |——| C] ()—C:\Windows\Ascd_log.ini
[2011-12-23 11:21:43 | 000,001,769 |——| C] ()—C:\Windows\Language_trs.ini
[2011-12-23 11:21:37 | 000,030,483 |——| C] ()—C:\Windows\Ascd_tmp.ini
[2011-12-23 10:45:35 | 000,001,345 |——| C] ()—C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk
[2011-12-23 10:45:34 | 000,001,326 |——| C] ()—C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk
[2011-12-23 10:44:28 | 000,000,000 | -H—| C] ()—C:\Windows\SysNative\drivers\Msft_User_WpdFs_01_09_00.Wdf
[2011-12-23 10:43:44 | 2129,334,271 | -HS- | C] ()—C:\hiberfil.sys
[2011-10-15 00:54:52 | 000,321,856 |——| C] ()—C:\Windows\SysWow64\nvStreaming.exe
[2010-11-18 21:08:04 | 000,091,020 |——| C] ()—C:\Program Files (x86)\7-zip.chm
[2010-09-10 11:41:54 | 000,000,333 |——| C] ()—C:\Program Files (x86)\descript.ion
[2009-07-14 06:38:36 | 000,067,584 |—S- | C] ()—C:\Windows\bootstat.dat
[2009-07-14 03:35:51 | 000,000,741 |——| C] ()—C:\Windows\SysWow64\NOISE.DAT
[2009-07-14 03:34:42 | 000,215,943 |——| C] ()—C:\Windows\SysWow64\dssec.dat
[2009-07-14 01:10:29 | 000,043,131 |——| C] ()—C:\Windows\mib.bin
[2009-07-14 00:42:10 | 000,064,000 |——| C] ()—C:\Windows\SysWow64\BWContextHandler.dll
[2009-07-13 22:03:59 | 000,364,544 |——| C] ()—C:\Windows\SysWow64\msjetoledb40.dll
[2009-06-10 22:26:10 | 000,673,088 |——| C] ()—C:\Windows\SysWow64\mlang.dat
[2009-04-02 13:30:14 | 000,010,296 |——| C] ()—C:\Windows\SysWow64\drivers\ASUSHWIO.SYS
[1999-01-22 16:46:58 | 000,065,536 |——| C] ()—C:\Windows\SysWow64\MSRTEDIT.DLL

========== LOP Check ==========

[2012-01-02 10:34:57 | 000,000,000 |—-D | M]—C:\Users\Carsten\AppData\Roaming\Acoustica
[2012-01-04 10:56:37 | 000,000,000 |—-D | M]—C:\Users\Carsten\AppData\Roaming\Curiolab
[2011-12-27 07:58:51 | 000,000,000 |—-D | M]—C:\Users\Carsten\AppData\Roaming\Downloaded Installations
[2012-01-02 15:19:55 | 000,000,000 |—-D | M]—C:\Users\Carsten\AppData\Roaming\dvdae
[2011-12-26 10:02:54 | 000,000,000 |—-D | M]—C:\Users\Carsten\AppData\Roaming\Firetrust
[2012-01-05 18:19:03 | 000,000,000 |—-D | M]—C:\Users\Carsten\AppData\Roaming\Garmin
[2012-01-04 10:47:25 | 000,000,000 |—-D | M]—C:\Users\Carsten\AppData\Roaming\GetRightToGo
[2011-12-28 11:29:27 | 000,000,000 |—-D | M]—C:\Users\Carsten\AppData\Roaming\GHISLER
[2011-12-26 10:26:06 | 000,000,000 |—-D | M]—C:\Users\Carsten\AppData\Roaming\MailWasherPro
[2012-01-03 23:02:27 | 000,000,000 |—-D | M]—C:\Users\Carsten\AppData\Roaming\Media Finder
[2011-12-27 22:48:47 | 000,000,000 |—-D | M]—C:\Users\Carsten\AppData\Roaming\Nikon
[2011-12-27 07:59:30 | 000,000,000 |—-D | M]—C:\Users\Carsten\AppData\Roaming\Nitro PDF
[2011-12-28 21:07:38 | 000,000,000 |—-D | M]—C:\Users\Carsten\AppData\Roaming\Politiken
[2012-01-01 12:03:37 | 000,000,000 |—-D | M]—C:\Users\Carsten\AppData\Roaming\Template
[2011-12-29 10:57:20 | 000,000,000 |—-D | M]—C:\Users\Carsten\AppData\Roaming\VitySoft
[2012-01-03 16:53:06 | 000,000,000 |—-D | M]—C:\Users\Carsten\AppData\Roaming\Vso
[2011-12-25 15:36:38 | 000,000,000 |—-D | M]—C:\Users\Carsten\AppData\Roaming\Windows Live Writer
[2012-01-04 21:07:58 | 000,000,000 |—-D | M]—C:\Users\Carsten\AppData\Roaming\XnView
[2009-07-14 06:08:49 | 000,013,616 |——| M] ()—C:\Windows\Tasks\SCHEDLGU.TXT

========== Purity Check ==========



========== Alternate Data Streams ==========

@Alternate Data Stream - 137 bytes -> C:\ProgramData\Temp:DE406C3E
@Alternate Data Stream - 126 bytes -> C:\ProgramData\Temp:4769CB2A

< End of report >

    [ Ignorer ]   [ # 4 ]   
  cljeppe
05.01.2012 22:23:30
Antal indlæg: 49

her er så endelig aftrykket af extras logfilen:

OTL Extras logfile created on: 05-01-2012 19:56:59 - Run 1
OTL by OldTimer - Version 3.2.31.0   Folder = C:\Users\Carsten\Desktop
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000406 | Country: Danmark | Language: DAN | Date Format: dd-MM-yyyy

7,98 Gb Total Physical Memory | 6,52 Gb Available Physical Memory | 81,67% Memory free
15,95 Gb Paging File | 14,39 Gb Available in Paging File | 90,23% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 111,69 Gb Total Space | 67,45 Gb Free Space | 60,39% Space Free | Partition Type: NTFS
Drive D: | 1397,26 Gb Total Space | 1116,78 Gb Free Space | 79,93% Space Free | Partition Type: NTFS

Computer Name: CARSTEN-PC | User Name: Carsten | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========


========== File Associations ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html[@ = ChromeHTML]—Reg Error: Key error. File not found
.url[@ = InternetShortcut]—C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile]—C:\Windows\SysWow64\control.exe (Microsoft Corporation)
.html [@ = ChromeHTML]—Reg Error: Key error. File not found

[HKEY_USERS\S-1-5-21-3405606277-1647924529-2829051646-1001\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML]—C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation)

========== Shell Spawning ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open]—“%1” %*
cmdfile [open]—“%1” %*
comfile [open]—“%1” %*
exefile [open]—“%1” %*
helpfile [open]—Reg Error: Key error.
htmlfile [edit]—Reg Error: Key error.
htmlfile [print]—rundll32.exe %windir%\system32\mshtml.dll,PrintHTML “%1”
http [open]—Reg Error: Key error.
https [open]—Reg Error: Key error.
inffile [install]—%SystemRoot%\System32\InfDefaultInstall.exe “%1” (Microsoft Corporation)
InternetShortcut [open]—“C:\Windows\System32\rundll32.exe” “C:\Windows\System32\ieframe.dll”,OpenURL %l (Microsoft Corporation)
InternetShortcut [print]—“C:\Windows\System32\rundll32.exe” “C:\Windows\System32\mshtml.dll”,PrintHTML “%1” (Microsoft Corporation)
piffile [open]—“%1” %*
regfile [merge]—Reg Error: Key error.
scrfile [config]—“%1”
scrfile [install]—rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open]—“%1” /S
txtfile [edit]—Reg Error: Key error.
Unknown [openas]—%SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd]—cmd.exe /s /k pushd “%V” (Microsoft Corporation)
Directory [find]—%SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [Winamp.Bookmark]—“C:\Program Files (x86)\Winamp\winamp.exe” /BOOKMARK “%1” (Nullsoft, Inc.)
Directory [Winamp.Enqueue]—“C:\Program Files (x86)\Winamp\winamp.exe” /ADD “%1” (Nullsoft, Inc.)
Directory [Winamp.Play]—“C:\Program Files (x86)\Winamp\winamp.exe” “%1” (Nullsoft, Inc.)
Folder [open]—%SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore]—Reg Error: Value error.
Drive [find]—%SystemRoot%\Explorer.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open]—“%1” %*
cmdfile [open]—“%1” %*
comfile [open]—“%1” %*
cplfile [cplopen]—%SystemRoot%\System32\control.exe “%1”,%* (Microsoft Corporation)
exefile [open]—“%1” %*
helpfile [open]—Reg Error: Key error.
htmlfile [edit]—Reg Error: Key error.
htmlfile [print]—rundll32.exe %windir%\system32\mshtml.dll,PrintHTML “%1”
http [open]—Reg Error: Key error.
https [open]—Reg Error: Key error.
inffile [install]—%SystemRoot%\System32\InfDefaultInstall.exe “%1” (Microsoft Corporation)
piffile [open]—“%1” %*
regfile [merge]—Reg Error: Key error.
scrfile [config]—“%1”
scrfile [install]—rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open]—“%1” /S
txtfile [edit]—Reg Error: Key error.
Unknown [openas]—%SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd]—cmd.exe /s /k pushd “%V” (Microsoft Corporation)
Directory [find]—%SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [Winamp.Bookmark]—“C:\Program Files (x86)\Winamp\winamp.exe” /BOOKMARK “%1” (Nullsoft, Inc.)
Directory [Winamp.Enqueue]—“C:\Program Files (x86)\Winamp\winamp.exe” /ADD “%1” (Nullsoft, Inc.)
Directory [Winamp.Play]—“C:\Program Files (x86)\Winamp\winamp.exe” “%1” (Nullsoft, Inc.)
Folder [open]—%SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore]—Reg Error: Value error.
Drive [find]—%SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
“cval” = 0

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
“VistaSp1” = 28 4D B2 76 41 04 CA 01 [binary data]
“AntiVirusOverride” = 0
“AntiSpywareOverride” = 0
“FirewallOverride” = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
“EnableFirewall” = 1
“DisableNotifications” = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
“EnableFirewall” = 1
“DisableNotifications” = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
“EnableFirewall” = 1
“DisableNotifications” = 0

========== Authorized Applications List ==========


========== HKEY_LOCAL_MACHINE Uninstall List ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
“{05BFB060-4F22-4710-B0A2-2801A1B606C5}” = Microsoft Antimalware
“{180C8888-50F1-426B-A9DC-AB83A1989C65}” = Windows Live Language Selector
“{1ACC8FFB-9D84-4C05-A4DE-D28A9BC91698}” = Windows Live ID Sign-in Assistant
“{230D1595-57DA-4933-8C4E-375797EBB7E1}” = Bluetooth Win7 Suite (64)
“{23170F69-40C1-2702-0920-000001000000}” = 7-Zip 9.20 (x64 edition)
“{42738DB0-FC3E-4672-A99B-9372F5696E30}” = Microsoft Security Client
“{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}” = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
“{6DE721A5-5E89-4D74-994C-652BB3C0672E}” = Pinnacle Video-driver
“{8220EEFE-38CD-377E-8595-13398D740ACE}” = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
“{850B8072-2EA7-4EDC-B930-7FE569495E76}” = Windows Live Remote Client Resources
“{94A07A8C-37A2-45FB-BDA0-31496EDEA9E6}” = HP Deskjet 2050 J510 series produktforbedringsundersøgelse
“{95120000-00B9-0409-1000-0000000FF1CE}” = Microsoft Application Error Reporting
“{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision” = NVIDIA 3D Vision-driver 285.62
“{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel” = NVIDIA Kontrolpanel 285.62
“{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver” = NVIDIA Grafikdriver 285.62
“{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB” = NVIDIA 3D Vision Controllerdriver 285.62
“{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX” = NVIDIA PhysX-systemsoftware 9.11.0621
“{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update” = NVIDIA Opdateringer 1.5.20
“{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver” = NVIDIA HD-lyddriver 1.2.24.0
“{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer” = NVIDIA Install Application
“{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NVIDIA.Update” = NVIDIA Update Components
“{B9DC9B9C-F284-4A2E-A0A7-568DD95DB2E0}” = HP Deskjet 2050 J510 series grundlæggende enhedssoftware
“{BCCC97EE-E162-448C-8847-59718FF29B04}” = Intel(R) Network Connections 15.6.25.0
“{DA54F80E-261C-41A2-A855-549A144F2F59}” = Windows Live MIME IFilter
“{DC911ADF-7B60-40F2-A112-FB1EB6402D07}” = Microsoft Security Client DA-DK Language Pack
“{DE6C496B-D0E2-4906-83F2-7C7493B7DD04}” = Nitro Reader 2
“{DF6D988A-EEA0-4277-AAB8-158E086E439B}” = Windows Live Remote Client
“{E02A6548-6FDE-40E2-8ED9-119D7D7E641F}” = Windows Live Remote Service
“{E8C64028-08E5-4BF0-B1C0-DBAAC6A77DF1}” = PowerDirector
“{F27D5AAD-758E-460F-964D-6F2E65964C08}” = Microsoft Antimalware Service DA-DK Language Pack
“{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}” = Microsoft .NET Framework 4 Client Profile
“{F6CB2C5F-B2C1-4DF1-BF44-39D0DC06FE6F}” = Windows Live Remote Service Resources
“{F83E9BF0-B8D8-3D68-9E07-7505290C2202}” = Microsoft .NET Framework 4 Client Profile DAN Language Pack
“49CF605F02C7954F4E139D18828DE298CD59217C” = Windows Driver Package - Garmin (grmnusb) GARMIN Devices (06/03/2009 2.3.0.0)
“Adobe Flash Player ActiveX” = Adobe Flash Player 11 ActiveX 64-bit
“Adobe Flash Player Plugin” = Adobe Flash Player 11 Plugin 64-bit
“CCleaner” = CCleaner
“Microsoft .NET Framework 4 Client Profile” = Microsoft .NET Framework 4 Client Profile
“Microsoft .NET Framework 4 Client Profile DAN Language Pack” = Microsoft .NET Framework 4 Client Profile DAN sprogpakke
“Microsoft Security Client” = Microsoft Security Essentials
“NewBlue Art Effects for PDR10” = Art Effects for PDR10
“PROSetDX” = Intel(R) Network Connections 15.6.25.0
“Totalcmd64” = Total Commander 64-bit (Remove or Repair)

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
“{00000406-78E1-11D2-B60F-006097C998E7}” = Microsoft Office 2000 Premium
“{00884F14-05BD-4D8E-90E5-1ABF78948CA4}” = Windows Live Mesh
“{0B0F231F-CE6A-483D-AA23-77B364F75917}” = Windows Live Installer
“{10186F1A-6A14-43DF-A404-F0105D09BB07}” = Windows Live Mail
“{15BC8CD0-A65B-47D0-A2DD-90A824590FA8}” = Microsoft Works
“{1E0C468A-2860-4FBB-8598-300F25D1E6FA}” = Politikens Tysk-Dansk Dansk-Tysk Ordbog
“{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}” = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
“{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}” = Junk Mail filter update
“{200FEC62-3C34-4D60-9CE8-EC372E01C08F}” = Windows Live SOXE Definitions
“{26A24AE4-039D-4CA4-87B4-2F83216030FF}” = Java(TM) 6 Update 30
“{2F8BA3FD-1FA9-4279-B696-712ABB12F09F}” = SmartSound Quicktracks 5
“{3A1B5D40-41E9-43FA-8C7B-A8667F5586EF}” = JMicron JMB36X Driver
“{3DC2E407-08C7-43D4-BCF2-D78C9929A9BF}” = MailWasherPro
“{41E340F0-0BD6-4A87-AF29-E9E584471756}” = VideoMate T, M, S Series Driver
“{4A03706F-666A-4037-7777-5F2748764D10}” = Java Auto Updater
“{4B744C85-DBB1-4038-B989-4721EB22C582}” = Windows Live Messenger
“{510D2239-6C2E-457B-9590-485EC552D94D}” = Garmin USB Drivers
“{5442DAB8-7177-49E1-8B22-09A049EA5996}” = Renesas Electronics USB 3.0 Host Controller Driver
“{56C049BE-79E9-4502-BEA7-9754A3E60F9B}” = neroxml
“{57220148-3B2B-412A-A2E0-82B9DF423696}” = Windows Live Mesh ActiveX-objekt til fjernforbindelser
“{65153EA5-8B6E-43B6-857B-C6E4FC25798A}” = Intel(R) Management Engine Components
“{682B3E4F-696A-42DE-A41C-4C07EA1678B4}” = Windows Live SOXE
“{6A3F9D74-BB80-4451-8CA1-4B3A857F1359}” = Apple-programunderstøttelse
“{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}” = Microsoft Visual C++ 2005 Redistributable
“{716E0306-8318-4364-8B8F-0CC4E9376BAC}” = MSXML 4.0 SP2 Parser and SDK
“{7299052b-02a4-4627-81f2-1818da5d550d}” = Microsoft Visual C++ 2005 Redistributable
“{787D1A33-A97B-4245-87C0-7174609A540C}” = HP Update
“{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}” = Apple Software Update
“{7A3DF2E2-CF13-44FB-A93E-F71D5381DB3F}” = HP Deskjet 2050 J510 series Hjælp
“{7BE15435-2D3E-4B58-867F-9C75BED0208C}” = QuickTime
“{7F6D7FD9-648D-4DD9-BB6E-3990C675ECA4}” = NVIDIA PhysX
“{827D3E4A-0186-48B7-9801-7D1E9DD40C07}” = Windows Live Essentials
“{83C292B7-38A5-440B-A731-07070E81A64F}” = Windows Live PIMT Platform
“{8833FFB6-5B0C-4764-81AA-06DFEED9A476}” = Realtek Ethernet Controller Driver For Windows 7
“{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}” = Microsoft Silverlight
“{8C6D6116-B724-4810-8F2D-D047E6B7D68E}” = Mesh Runtime
“{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}” = MSVCRT
“{90120000-0020-0409-0000-0000000FF1CE}” = Compatibility Pack for the 2007 Office system
“{95120000-00AF-0409-0000-0000000FF1CE}” = Microsoft Office PowerPoint Viewer 2007 (English)
“{9A25302D-30C0-39D9-BD6F-21E6EC160475}” = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
“{9BE518E6-ECC6-35A9-88E4-87755C07200F}” = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
“{9D56775A-93F3-44A3-8092-840E3826DE30}” = Windows Live Mail
“{A9BDCA6B-3653-467B-AC83-94367DA3BFE3}” = Windows Live Photo Common
“{AC0232B4-2B5B-4C2A-8ED4-E66064161030}” = Nero 8 Essentials
“{CB099890-1D5F-11D5-9EA9-0050BAE317E1}” = CyberLink PowerDirector
“{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}” = SUPERAntiSpyware Professional
“{CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}” = Windows Live UX Platform
“{CF671BFE-6BA3-44E7-98C1-500D9C51D947}” = Windows Live Photo Gallery
“{D0B44725-3666-492D-BEF6-587A14BD9BD9}” = MSVCRT_amd64
“{D2FCC1AE-6311-47C5-8130-C6C66D77DD71}” = Nikon Message Center
“{D36DD326-7280-11D8-97C8-000129760CBE}” = CyberLink PhotoNow
“{D45240D3-B6B3-4FF9-B243-54ECE3E10066}” = Windows Live Communications Platform
“{DB6AB705-C9BD-40E3-8929-2EA57F36A4FF}_is1” = ConvertXtoDVD 4.0.12.327
“{DECDCB7C-58CC-4865-91AF-627F9798FE48}” = Windows Live Mesh
“{E09C4DB7-630C-4F06-A631-8EA7239923AF}” = D3DX10
“{E38C00D0-A68B-4318-A8A6-F7D4B5B1DF0E}” = Windows Media Encoder 9 Series
“{E5B21F11-6933-4E0B-A25C-7963E3C07D11}” = Windows Live Messenger
“{E5DD4723-FE0B-436E-A815-DC23CF902A0B}” = Windows Live UX Platform Language Pack
“{E9D98402-21AB-4E9F-BF6B-47AF36EF7E97}” = Windows Live Writer Resources
“{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}” = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
“{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}” = Realtek High Definition Audio Driver
“{FA0BBB87-91A1-4BFD-9005-EB058BBA0E14}_is1” = StreamTransport version: 1.0.2.2171
“{FF3999BE-1A7B-4738-88AA-97BF14094A4A}” = PictureProject
“{AAAFC670-569B-4A2F-82B4-42945E0DE3EF}” = Windows Live Writer
“{AADD1C8F-D59F-4D55-A726-768C71A205A8}” = Pinnacle Studio 14
“Acoustica CD/DVD Label Maker” = Acoustica CD/DVD Label Maker
“AF9035HB DriverInstaller_10.3.11.2” = Compro VideoMate C200 Plus (V2.0) Driver
“BurnAware Free_is1” = BurnAware Free 4.1.1
“CobBackup10” = Cobian Backup 10
“Collection Maerklin H0” = Collection Maerklin H0
“DVD Audio Extractor_is1” = DVD Audio Extractor 6.2.0
“DVDFab 8 Qt_is1” = DVDFab 8.1.1.2 (08/08/2011) Qt
“ESET Online Scanner” = ESET Online Scanner v3
“HP Photo Creations” = HP Photo Creations
“InstallShield_{2F8BA3FD-1FA9-4279-B696-712ABB12F09F}” = SmartSound Quicktracks 5
“InstallShield_{5442DAB8-7177-49E1-8B22-09A049EA5996}” = Renesas Electronics USB 3.0 Host Controller Driver
“InstallShield_{CB099890-1D5F-11D5-9EA9-0050BAE317E1}” = CyberLink PowerDirector
“InstallShield_{D36DD326-7280-11D8-97C8-000129760CBE}” = CyberLink PhotoNow
“MagniDriver” = marvell 91xx driver
“Malwarebytes’ Anti-Malware_is1” = Malwarebytes Anti-Malware version 1.60.0.1800
“Mozilla Firefox 9.0.1 (x86 da)” = Mozilla Firefox 9.0.1 (x86 da)
“Nikon FotoShare” = Nikon FotoShare
“NVIDIAStereo” = NVIDIA Stereoscopic 3D Driver
“Revo Uninstaller” = Revo Uninstaller 1.88
“Secunia PSI” = Secunia PSI (2.0.0.4003)
“stax-Pinnacle_is1” = SureThing Express Labeler
“Winamp” = Winamp
“Windows Media Encoder 9” = Windows Media Encoder 9 Series
“WinLiveSuite” = Windows Live Essentials
“WinRAR archiver” = WinRAR archiver
“XnView_is1” = XnView 1.98.5

========== HKEY_USERS Uninstall List ==========

[HKEY_USERS\S-1-5-21-3405606277-1647924529-2829051646-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
“Winamp Detect” = Winamp Detector Plug-in

========== HKEY_USERS Uninstall List ==========

[HKEY_USERS\S-1-5-21-3405606277-1647924529-2829051646-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
“Winamp Detect” = Winamp Detector Plug-in

========== Last 10 Event Log Errors ==========

[ Application Events ]
Error - 04-01-2012 17:58:42 | Computer Name = Carsten-Pc | Source = Microsoft-Windows-CAPI2 | ID = 4107
Description = Udpakning af tredjepartsrodliste fra CAB-fil til automatisk opdatering
på <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab>
mislykkedes. Fejl: Et krævet certifikat er ikke inden for gyldighedsperioden, når
der godkendes med det aktuelle systemklokkeslæt eller tidsstemplet i den signerede
fil.  .

Error - 04-01-2012 17:58:43 | Computer Name = Carsten-Pc | Source = Microsoft-Windows-CAPI2 | ID = 4107
Description = Udpakning af tredjepartsrodliste fra CAB-fil til automatisk opdatering
på <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab>
mislykkedes. Fejl: Et krævet certifikat er ikke inden for gyldighedsperioden, når
der godkendes med det aktuelle systemklokkeslæt eller tidsstemplet i den signerede
fil.  .

Error - 04-01-2012 17:58:46 | Computer Name = Carsten-Pc | Source = Microsoft-Windows-CAPI2 | ID = 4107
Description = Udpakning af tredjepartsrodliste fra CAB-fil til automatisk opdatering
på <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab>
mislykkedes. Fejl: Et krævet certifikat er ikke inden for gyldighedsperioden, når
der godkendes med det aktuelle systemklokkeslæt eller tidsstemplet i den signerede
fil.  .

Error - 04-01-2012 17:58:48 | Computer Name = Carsten-Pc | Source = Microsoft-Windows-CAPI2 | ID = 4107
Description = Udpakning af tredjepartsrodliste fra CAB-fil til automatisk opdatering
på <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab>
mislykkedes. Fejl: Et krævet certifikat er ikke inden for gyldighedsperioden, når
der godkendes med det aktuelle systemklokkeslæt eller tidsstemplet i den signerede
fil.  .

Error - 04-01-2012 17:58:52 | Computer Name = Carsten-Pc | Source = Microsoft-Windows-CAPI2 | ID = 4107
Description = Udpakning af tredjepartsrodliste fra CAB-fil til automatisk opdatering
på <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab>
mislykkedes. Fejl: Et krævet certifikat er ikke inden for gyldighedsperioden, når
der godkendes med det aktuelle systemklokkeslæt eller tidsstemplet i den signerede
fil.  .

Error - 04-01-2012 17:58:54 | Computer Name = Carsten-Pc | Source = Microsoft-Windows-CAPI2 | ID = 4107
Description = Udpakning af tredjepartsrodliste fra CAB-fil til automatisk opdatering
på <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab>
mislykkedes. Fejl: Et krævet certifikat er ikke inden for gyldighedsperioden, når
der godkendes med det aktuelle systemklokkeslæt eller tidsstemplet i den signerede
fil.  .

Error - 04-01-2012 17:59:22 | Computer Name = Carsten-Pc | Source = Microsoft-Windows-CAPI2 | ID = 4107
Description = Udpakning af tredjepartsrodliste fra CAB-fil til automatisk opdatering
på <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab>
mislykkedes. Fejl: Et krævet certifikat er ikke inden for gyldighedsperioden, når
der godkendes med det aktuelle systemklokkeslæt eller tidsstemplet i den signerede
fil.  .

Error - 04-01-2012 17:59:22 | Computer Name = Carsten-Pc | Source = Microsoft-Windows-CAPI2 | ID = 4107
Description = Udpakning af tredjepartsrodliste fra CAB-fil til automatisk opdatering
på <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab>
mislykkedes. Fejl: Et krævet certifikat er ikke inden for gyldighedsperioden, når
der godkendes med det aktuelle systemklokkeslæt eller tidsstemplet i den signerede
fil.  .

Error - 04-01-2012 17:59:22 | Computer Name = Carsten-Pc | Source = Microsoft-Windows-CAPI2 | ID = 4107
Description = Udpakning af tredjepartsrodliste fra CAB-fil til automatisk opdatering
på <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab>
mislykkedes. Fejl: Et krævet certifikat er ikke inden for gyldighedsperioden, når
der godkendes med det aktuelle systemklokkeslæt eller tidsstemplet i den signerede
fil.  .

Error - 04-01-2012 17:59:55 | Computer Name = Carsten-Pc | Source = Microsoft-Windows-CAPI2 | ID = 4107
Description = Udpakning af tredjepartsrodliste fra CAB-fil til automatisk opdatering
på <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab>
mislykkedes. Fejl: Et krævet certifikat er ikke inden for gyldighedsperioden, når
der godkendes med det aktuelle systemklokkeslæt eller tidsstemplet i den signerede
fil.  .

[ System Events ]
Error - 04-01-2012 13:29:27 | Computer Name = Carsten-Pc | Source = Application Popup | ID = 1060
Description = Indlæsning af \??\C:\Program Files (x86)\SUPERAntiSpyware\SASDIFSV.SYS
er blevet blokeret på grund af inkompatibilitet med dette system. Kontakt softwareleverandøren
for at få en kompatibel version af driveren.

Error - 04-01-2012 13:29:27 | Computer Name = Carsten-Pc | Source = Service Control Manager | ID = 7000
Description = Tjenesten SASDIFSV kunne ikke starte pga. følgende fejl:  u

Error - 04-01-2012 13:29:43 | Computer Name = Carsten-Pc | Source = Application Popup | ID = 1060
Description = Indlæsning af \??\C:\Program Files (x86)\SUPERAntiSpyware\SASKUTIL.sys
er blevet blokeret på grund af inkompatibilitet med dette system. Kontakt softwareleverandøren
for at få en kompatibel version af driveren.

Error - 04-01-2012 13:29:43 | Computer Name = Carsten-Pc | Source = Service Control Manager | ID = 7000
Description = Tjenesten SASKUTIL kunne ikke starte pga. følgende fejl:  u

Error - 04-01-2012 13:29:43 | Computer Name = Carsten-Pc | Source = Application Popup | ID = 1060
Description = Indlæsning af \??\C:\Program Files (x86)\SUPERAntiSpyware\SASDIFSV.SYS
er blevet blokeret på grund af inkompatibilitet med dette system. Kontakt softwareleverandøren
for at få en kompatibel version af driveren.

Error - 04-01-2012 13:29:43 | Computer Name = Carsten-Pc | Source = Service Control Manager | ID = 7000
Description = Tjenesten SASDIFSV kunne ikke starte pga. følgende fejl:  u

Error - 04-01-2012 13:29:46 | Computer Name = Carsten-Pc | Source = Application Popup | ID = 1060
Description = Indlæsning af \??\C:\Program Files (x86)\SUPERAntiSpyware\SASKUTIL.sys
er blevet blokeret på grund af inkompatibilitet med dette system. Kontakt softwareleverandøren
for at få en kompatibel version af driveren.

Error - 04-01-2012 13:29:46 | Computer Name = Carsten-Pc | Source = Service Control Manager | ID = 7000
Description = Tjenesten SASKUTIL kunne ikke starte pga. følgende fejl:  u

Error - 04-01-2012 17:50:44 | Computer Name = Carsten-Pc | Source = Application Popup | ID = 1060
Description = Indlæsning af \??\C:\Program Files (x86)\SUPERAntiSpyware\SASKUTIL.sys
er blevet blokeret på grund af inkompatibilitet med dette system. Kontakt softwareleverandøren
for at få en kompatibel version af driveren.

Error - 04-01-2012 17:50:44 | Computer Name = Carsten-Pc | Source = Application Popup | ID = 1060
Description = Indlæsning af \??\C:\Program Files (x86)\SUPERAntiSpyware\SASDIFSV.SYS
er blevet blokeret på grund af inkompatibilitet med dette system. Kontakt softwareleverandøren
for at få en kompatibel version af driveren.


< End of report >

    [ Ignorer ]   [ # 5 ]   
  f-arn TeamSpywarefri
06.01.2012 09:48:07
Administrator
Team Spywarefri
Antal indlæg: 4202

Start OTL

Vista og Windows 7 - højreklik på filen - Kør som Administrator.

Kopier nedenstånde med fed skrift ind i feltet “Custom Scans/Fixes


:processes

:files
C:\Program Files (x86)\BitTorrent
C:\Users\Carsten\AppData\Roaming\BitTorrent
C:\Users\Carsten\AppData\Local\BitTorrent
ipconfig /flushdns /c

:Commands
[purity]
[resethosts]
[CREATERESTOREPOINT]
[EMPTYFLASH]
[Reboot]

Luk alle andre åbne vinduer og klik på “Run Fix

Efter genstart åbnes en logfil, kopier den tekst herind i denne tråd.

Ellers ligger den her: C:\_OTL\MovedFiles\mmddyyyy_hhmmss.log

PS Deaktiver dine Sikkerheds programmer, mens “Fixet” kører.

———

Download Tdsskiller.zip på dit skrivebord og pak den ud i en mappe.

Kør TDSSKiller.exe -> Klik på “Start Scan”

Mht.: Vista og Windows 7 - Højreklik på filen - Kør som Administrator.

Hvis en inficeret fil bliver fundet, vil ”Default action” være Cure, klik på Continue
Hvis en mistænkelig fil opdages, vil ”Default action” være Skip, klik på Continue
Hvis den ikke spørger om ”Reboot” (genstart) så klik på ”Report”, kopier den tekst herind i tråden.

Genstart hvis den kræver det.

Hvis den genstarter kan du finde logfilen her :
C:\TDSSKiller.[Version]_[Dato]_[Tidspunkt]_log.txt.

Kopier den tekst herind I denne tråd.

Signatur

Undlad venligst at vedhæfte logs, medmindre du bliver bedt om det !

    [ Ignorer ]   [ # 6 ]   
  cljeppe
06.01.2012 15:35:13
Antal indlæg: 49

2 seneste logfiler:

========== PROCESSES ==========
========== FILES ==========
File\Folder C:\Program Files (x86)\BitTorrent not found.
File\Folder C:\Users\Carsten\AppData\Roaming\BitTorrent not found.
File\Folder C:\Users\Carsten\AppData\Local\BitTorrent not found.
< ipconfig /flushdns /c >
Windows IP-konfiguration
DNS Resolver Cache blev t›mt.
C:\Users\Carsten\Desktop\SWF\cmd.bat deleted successfully.
C:\Users\Carsten\Desktop\SWF\cmd.txt deleted successfully.
========== COMMANDS ==========
C:\Windows\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully
Restore point Set: OTL Restore Point

[EMPTYFLASH]

User: All Users

User: Carsten
->Flash cache emptied: 3675 bytes

User: Default

User: Default User

User: Public

User: UpdatusUser

Total Flash Files Cleaned = 0,00 mb


OTL by OldTimer - Version 3.2.31.0 log created on 01062012_141816


14:28:17.0981 4132   TDSS rootkit removing tool 2.6.25.0 Dec 23 2011 14:51:16
14:28:18.0189 4132   ============================================================
14:28:18.0189 4132   Current date / time: 2012/01/06 14:28:18.0189
14:28:18.0189 4132   SystemInfo:
14:28:18.0189 4132  
14:28:18.0190 4132   OS Version: 6.1.7601 ServicePack: 1.0
14:28:18.0190 4132   Product type: Workstation
14:28:18.0190 4132   ComputerName: CARSTEN-PC
14:28:18.0190 4132   UserName: Carsten
14:28:18.0190 4132   Windows directory: C:\Windows
14:28:18.0190 4132   System windows directory: C:\Windows
14:28:18.0190 4132   Running under WOW64
14:28:18.0190 4132   Processor architecture: Intel x64
14:28:18.0190 4132   Number of processors: 8
14:28:18.0190 4132   Page size: 0x1000
14:28:18.0190 4132   Boot type: Normal boot
14:28:18.0190 4132   ============================================================
14:28:18.0317 4132   Initialize success
14:28:22.0839 3220   ============================================================
14:28:22.0839 3220   Scan started
14:28:22.0839 3220   Mode: Manual;
14:28:22.0839 3220   ============================================================
14:28:22.0961 3220   1394ohci     (a87d604aea360176311474c87a63bb88) C:\Windows\system32\DRIVERS\1394ohci.sys
14:28:22.0964 3220   1394ohci - ok
14:28:22.0985 3220   ACPI         (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys
14:28:22.0990 3220   ACPI - ok
14:28:23.0007 3220   AcpiPmi       (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys
14:28:23.0008 3220   AcpiPmi - ok
14:28:23.0033 3220   adp94xx       (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\drivers\adp94xx.sys
14:28:23.0040 3220   adp94xx - ok
14:28:23.0063 3220   adpahci       (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\drivers\adpahci.sys
14:28:23.0068 3220   adpahci - ok
14:28:23.0090 3220   adpu320       (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\drivers\adpu320.sys
14:28:23.0093 3220   adpu320 - ok
14:28:23.0127 3220   AF9035HB     (e66da823f0d9332d5b9e767b0bba2c36) C:\Windows\system32\Drivers\AF9035HB.sys
14:28:23.0139 3220   AF9035HB - ok
14:28:23.0164 3220   AFD         (d5b031c308a409a0a576bff4cf083d30) C:\Windows\system32\drivers\afd.sys
14:28:23.0172 3220   AFD - ok
14:28:23.0189 3220   agp440       (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys
14:28:23.0191 3220   agp440 - ok
14:28:23.0209 3220   aliide       (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys
14:28:23.0211 3220   aliide - ok
14:28:23.0227 3220   amdide       (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys
14:28:23.0228 3220   amdide - ok
14:28:23.0247 3220   AmdK8       (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\drivers\amdk8.sys
14:28:23.0248 3220   AmdK8 - ok
14:28:23.0266 3220   AmdPPM       (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\drivers\amdppm.sys
14:28:23.0268 3220   AmdPPM - ok
14:28:23.0286 3220   amdsata       (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\Windows\system32\drivers\amdsata.sys
14:28:23.0288 3220   amdsata - ok
14:28:23.0309 3220   amdsbs       (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\drivers\amdsbs.sys
14:28:23.0312 3220   amdsbs - ok
14:28:23.0330 3220   amdxata       (540daf1cea6094886d72126fd7c33048) C:\Windows\system32\drivers\amdxata.sys
14:28:23.0331 3220   amdxata - ok
14:28:23.0349 3220   AppID       (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys
14:28:23.0351 3220   AppID - ok
14:28:23.0372 3220   arc         (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\drivers\arc.sys
14:28:23.0374 3220   arc - ok
14:28:23.0392 3220   arcsas       (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\drivers\arcsas.sys
14:28:23.0394 3220   arcsas - ok
14:28:23.0411 3220   AsyncMac     (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
14:28:23.0411 3220   AsyncMac - ok
14:28:23.0429 3220   atapi       (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys
14:28:23.0429 3220   atapi - ok
14:28:23.0447 3220   AthBTPort     (aaae03f8eda817ec28c5445193ea8bf3) C:\Windows\system32\DRIVERS\btath_flt.sys
14:28:23.0449 3220   AthBTPort - ok
14:28:23.0467 3220   ATHDFU       (4ecc791539f23982411864037d1ac8fc) C:\Windows\system32\Drivers\AthDfu.sys
14:28:23.0469 3220   ATHDFU - ok
14:28:23.0502 3220   b06bdrv       (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\drivers\bxvbda.sys
14:28:23.0509 3220   b06bdrv - ok
14:28:23.0530 3220   b57nd60a     (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
14:28:23.0535 3220   b57nd60a - ok
14:28:23.0557 3220   Beep         (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
14:28:23.0557 3220   Beep - ok
14:28:23.0578 3220   blbdrive     (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
14:28:23.0580 3220   blbdrive - ok
14:28:23.0599 3220   bowser       (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys
14:28:23.0601 3220   bowser - ok
14:28:23.0618 3220   BrFiltLo     (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\drivers\BrFiltLo.sys
14:28:23.0619 3220   BrFiltLo - ok
14:28:23.0637 3220   BrFiltUp     (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\drivers\BrFiltUp.sys
14:28:23.0637 3220   BrFiltUp - ok
14:28:23.0660 3220   Brserid       (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
14:28:23.0664 3220   Brserid - ok
14:28:23.0681 3220   BrSerWdm     (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
14:28:23.0683 3220   BrSerWdm - ok
14:28:23.0701 3220   BrUsbMdm     (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
14:28:23.0702 3220   BrUsbMdm - ok
14:28:23.0720 3220   BrUsbSer     (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
14:28:23.0721 3220   BrUsbSer - ok
14:28:23.0743 3220   BTATH_A2DP     (3b1b573371b206d1d5f25e0ef5fcd6d6) C:\Windows\system32\drivers\btath_a2dp.sys
14:28:23.0747 3220   BTATH_A2DP - ok
14:28:23.0765 3220   BTATH_BUS     (2d0446336d9db55a742b999ec16adf15) C:\Windows\system32\DRIVERS\btath_bus.sys
14:28:23.0766 3220   BTATH_BUS - ok
14:28:23.0787 3220   BTATH_HCRP     (9a9694bbeb2849eaf95dffcae5df02ad) C:\Windows\system32\DRIVERS\btath_hcrp.sys
14:28:23.0790 3220   BTATH_HCRP - ok
14:28:23.0807 3220   BTATH_LWFLT   (fc0a8075ddf2e9c66267aec91e0676f9) C:\Windows\system32\DRIVERS\btath_lwflt.sys
14:28:23.0809 3220   BTATH_LWFLT - ok
14:28:23.0828 3220   BTATH_RCP     (5eb4815cbddba4541f2380dae6e269ab) C:\Windows\system32\DRIVERS\btath_rcp.sys
14:28:23.0830 3220   BTATH_RCP - ok
14:28:23.0853 3220   BtFilter     (0ecede7b33cfd9a52a61220abbd09a50) C:\Windows\system32\DRIVERS\btfilter.sys
14:28:23.0858 3220   BtFilter - ok
14:28:23.0876 3220   BthEnum       (cf98190a94f62e405c8cb255018b2315) C:\Windows\system32\drivers\BthEnum.sys
14:28:23.0877 3220   BthEnum - ok
14:28:23.0896 3220   BTHMODEM     (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\drivers\bthmodem.sys
14:28:23.0898 3220   BTHMODEM - ok
14:28:23.0916 3220   BthPan       (02dd601b708dd0667e1331fa8518e9ff) C:\Windows\system32\DRIVERS\bthpan.sys
14:28:23.0919 3220   BthPan - ok
14:28:23.0944 3220   BTHPORT       (64c198198501f7560ee41d8d1efa7952) C:\Windows\System32\Drivers\BTHport.sys
14:28:23.0951 3220   BTHPORT - ok
14:28:23.0972 3220   BTHUSB       (f188b7394d81010767b6df3178519a37) C:\Windows\System32\Drivers\BTHUSB.sys
14:28:23.0974 3220   BTHUSB - ok
14:28:23.0994 3220   cdfs         (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
14:28:23.0996 3220   cdfs - ok
14:28:24.0016 3220   cdrom       (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\DRIVERS\cdrom.sys
14:28:24.0018 3220   cdrom - ok
14:28:24.0038 3220   circlass     (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\drivers\circlass.sys
14:28:24.0040 3220   circlass - ok
14:28:24.0059 3220   CLFS         (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
14:28:24.0064 3220   CLFS - ok
14:28:24.0090 3220   CmBatt       (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\drivers\CmBatt.sys
14:28:24.0092 3220   CmBatt - ok
14:28:24.0109 3220   cmdide       (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys
14:28:24.0110 3220   cmdide - ok
14:28:24.0134 3220   CNG         (d5fea92400f12412b3922087c09da6a5) C:\Windows\system32\Drivers\cng.sys
14:28:24.0140 3220   CNG - ok
14:28:24.0160 3220   Compbatt     (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\drivers\compbatt.sys
14:28:24.0161 3220   Compbatt - ok
14:28:24.0178 3220   CompositeBus   (03edb043586cceba243d689bdda370a8) C:\Windows\system32\DRIVERS\CompositeBus.sys
14:28:24.0180 3220   CompositeBus - ok
14:28:24.0199 3220   crcdisk       (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\drivers\crcdisk.sys
14:28:24.0201 3220   crcdisk - ok
14:28:24.0231 3220   DfsC         (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys
14:28:24.0233 3220   DfsC - ok
14:28:24.0252 3220   discache     (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
14:28:24.0253 3220   discache - ok
14:28:24.0272 3220   Disk         (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\drivers\disk.sys
14:28:24.0273 3220   Disk - ok
14:28:24.0298 3220   drmkaud       (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
14:28:24.0299 3220   drmkaud - ok
14:28:24.0329 3220   DXGKrnl       (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys
14:28:24.0336 3220   DXGKrnl - ok
14:28:24.0359 3220   e1cexpress     (6bafd9819d9fec2edbaebc8493c711a4) C:\Windows\system32\DRIVERS\e1c62x64.sys
14:28:24.0361 3220   e1cexpress - ok
14:28:24.0420 3220   ebdrv       (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\drivers\evbda.sys
14:28:24.0458 3220   ebdrv - ok
14:28:24.0492 3220   elxstor       (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\drivers\elxstor.sys
14:28:24.0500 3220   elxstor - ok
14:28:24.0518 3220   ErrDev       (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys
14:28:24.0519 3220   ErrDev - ok
14:28:24.0546 3220   exfat       (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
14:28:24.0550 3220   exfat - ok
14:28:24.0569 3220   fastfat       (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
14:28:24.0572 3220   fastfat - ok
14:28:24.0592 3220   fdc         (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\drivers\fdc.sys
14:28:24.0593 3220   fdc - ok
14:28:24.0616 3220   FileInfo     (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
14:28:24.0617 3220   FileInfo - ok
14:28:24.0634 3220   Filetrace     (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
14:28:24.0636 3220   Filetrace - ok
14:28:24.0653 3220   flpydisk     (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\drivers\flpydisk.sys
14:28:24.0654 3220   flpydisk - ok
14:28:24.0676 3220   FltMgr       (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys
14:28:24.0680 3220   FltMgr - ok
14:28:24.0702 3220   FsDepends     (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
14:28:24.0703 3220   FsDepends - ok
14:28:24.0721 3220   Fs_Rec       (e95ef8547de20cf0603557c0cf7a9462) C:\Windows\system32\drivers\Fs_Rec.sys
14:28:24.0722 3220   Fs_Rec - ok
14:28:24.0743 3220   fvevol       (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys
14:28:24.0746 3220   fvevol - ok
14:28:24.0764 3220   gagp30kx     (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\drivers\gagp30kx.sys
14:28:24.0766 3220   gagp30kx - ok
14:28:24.0787 3220   grmnusb       (2ed7ff3e1ada4092632393781518b3a7) C:\Windows\system32\drivers\grmnusb.sys
14:28:24.0796 3220   grmnusb - ok
14:28:24.0813 3220   hcw85cir     (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
14:28:24.0814 3220   hcw85cir - ok
14:28:24.0836 3220   HdAudAddService (975761c778e33cd22498059b91e7373a) C:\Windows\system32\drivers\HdAudio.sys
14:28:24.0841 3220   HdAudAddService - ok
14:28:24.0859 3220   HDAudBus     (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\DRIVERS\HDAudBus.sys
14:28:24.0861 3220   HDAudBus - ok
14:28:24.0878 3220   HidBatt       (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\drivers\HidBatt.sys
14:28:24.0879 3220   HidBatt - ok
14:28:24.0898 3220   HidBth       (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\drivers\hidbth.sys
14:28:24.0900 3220   HidBth - ok
14:28:24.0918 3220   HidIr       (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\drivers\hidir.sys
14:28:24.0920 3220   HidIr - ok
14:28:24.0940 3220   HidUsb       (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\DRIVERS\hidusb.sys
14:28:24.0941 3220   HidUsb - ok
14:28:24.0966 3220   HpSAMD       (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys
14:28:24.0968 3220   HpSAMD - ok
14:28:24.0997 3220   HTTP         (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys
14:28:25.0007 3220   HTTP - ok
14:28:25.0025 3220   hwpolicy     (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys
14:28:25.0025 3220   hwpolicy - ok
14:28:25.0046 3220   i8042prt     (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\DRIVERS\i8042prt.sys
14:28:25.0049 3220   i8042prt - ok
14:28:25.0072 3220   iaStorV       (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\Windows\system32\drivers\iaStorV.sys
14:28:25.0078 3220   iaStorV - ok
14:28:25.0098 3220   iirsp       (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\drivers\iirsp.sys
14:28:25.0100 3220   iirsp - ok
14:28:25.0154 3220   IntcAzAudAddService (dab7318ccfa8081200d5b7b486793f74) C:\Windows\system32\drivers\RTKVHD64.sys
14:28:25.0170 3220   IntcAzAudAddService - ok
14:28:25.0188 3220   intelide     (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys
14:28:25.0189 3220   intelide - ok
14:28:25.0208 3220   intelppm     (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
14:28:25.0208 3220   intelppm - ok
14:28:25.0229 3220   IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys
14:28:25.0231 3220   IpFilterDriver - ok
14:28:25.0250 3220   IPMIDRV       (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys
14:28:25.0251 3220   IPMIDRV - ok
14:28:25.0270 3220   IPNAT       (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
14:28:25.0272 3220   IPNAT - ok
14:28:25.0289 3220   IRENUM       (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
14:28:25.0291 3220   IRENUM - ok
14:28:25.0308 3220   isapnp       (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys
14:28:25.0309 3220   isapnp - ok
14:28:25.0330 3220   iScsiPrt     (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys
14:28:25.0334 3220   iScsiPrt - ok
14:28:25.0354 3220   JRAID       (a577f5db30f70eca9708c07c2eacbd9d) C:\Windows\system32\DRIVERS\jraid.sys
14:28:25.0356 3220   JRAID - ok
14:28:25.0374 3220   kbdclass     (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\DRIVERS\kbdclass.sys
14:28:25.0375 3220   kbdclass - ok
14:28:25.0392 3220   kbdhid       (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\DRIVERS\kbdhid.sys
14:28:25.0393 3220   kbdhid - ok
14:28:25.0412 3220   KSecDD       (ccd53b5bd33ce0c889e830d839c8b66e) C:\Windows\system32\Drivers\ksecdd.sys
14:28:25.0413 3220   KSecDD - ok
14:28:25.0431 3220   KSecPkg       (9ff918a261752c12639e8ad4208d2c2f) C:\Windows\system32\Drivers\ksecpkg.sys
14:28:25.0433 3220   KSecPkg - ok
14:28:25.0451 3220   ksthunk       (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
14:28:25.0452 3220   ksthunk - ok
14:28:25.0475 3220   lltdio       (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
14:28:25.0476 3220   lltdio - ok
14:28:25.0499 3220   LSI_FC       (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\drivers\lsi_fc.sys
14:28:25.0501 3220   LSI_FC - ok
14:28:25.0518 3220   LSI_SAS       (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\drivers\lsi_sas.sys
14:28:25.0520 3220   LSI_SAS - ok
14:28:25.0541 3220   LSI_SAS2     (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\drivers\lsi_sas2.sys
14:28:25.0543 3220   LSI_SAS2 - ok
14:28:25.0562 3220   LSI_SCSI     (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\drivers\lsi_scsi.sys
14:28:25.0564 3220   LSI_SCSI - ok
14:28:25.0583 3220   luafv       (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
14:28:25.0585 3220   luafv - ok
14:28:25.0607 3220   MarvinBus     (024da28053d57e9e32bee52600576bbb) C:\Windows\system32\DRIVERS\MarvinBus64.sys
14:28:25.0609 3220   MarvinBus - ok
14:28:25.0629 3220   megasas       (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\drivers\megasas.sys
14:28:25.0631 3220   megasas - ok
14:28:25.0652 3220   MegaSR       (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\drivers\MegaSR.sys
14:28:25.0657 3220   MegaSR - ok
14:28:25.0675 3220   MEIx64       (a6518dcc42f7a6e999bb3bea8fd87567) C:\Windows\system32\DRIVERS\HECIx64.sys
14:28:25.0676 3220   MEIx64 - ok
14:28:25.0696 3220   Modem       (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
14:28:25.0698 3220   Modem - ok
14:28:25.0716 3220   monitor       (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
14:28:25.0717 3220   monitor - ok
14:28:25.0736 3220   mouclass     (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
14:28:25.0736 3220   mouclass - ok
14:28:25.0754 3220   mouhid       (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
14:28:25.0755 3220   mouhid - ok
14:28:25.0774 3220   mountmgr     (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys
14:28:25.0776 3220   mountmgr - ok
14:28:25.0795 3220   MpFilter     (c177a7ebf5e8a0b596f618870516cab8) C:\Windows\system32\DRIVERS\MpFilter.sys
14:28:25.0796 3220   MpFilter - ok
14:28:25.0816 3220   mpio         (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys
14:28:25.0818 3220   mpio - ok
14:28:25.0836 3220   MpNWMon       (8fbf6b31fe8af1833d93c5913d5b4d55) C:\Windows\system32\DRIVERS\MpNWMon.sys
14:28:25.0838 3220   MpNWMon - ok
14:28:25.0856 3220   mpsdrv       (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
14:28:25.0858 3220   mpsdrv - ok
14:28:25.0876 3220   MRxDAV       (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys
14:28:25.0879 3220   MRxDAV - ok
14:28:25.0899 3220   mrxsmb       (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys
14:28:25.0902 3220   mrxsmb - ok
14:28:25.0923 3220   mrxsmb10     (d711b3c1d5f42c0c2415687be09fc163) C:\Windows\system32\DRIVERS\mrxsmb10.sys
14:28:25.0928 3220   mrxsmb10 - ok
14:28:25.0946 3220   mrxsmb20     (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
14:28:25.0948 3220   mrxsmb20 - ok
14:28:25.0966 3220   msahci       (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys
14:28:25.0967 3220   msahci - ok
14:28:25.0986 3220   msdsm       (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys
14:28:25.0988 3220   msdsm - ok
14:28:26.0009 3220   Msfs         (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
14:28:26.0010 3220   Msfs - ok
14:28:26.0027 3220   mshidkmdf     (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
14:28:26.0028 3220   mshidkmdf - ok
14:28:26.0045 3220   msisadrv     (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys
14:28:26.0045 3220   msisadrv - ok
14:28:26.0066 3220   MSKSSRV       (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
14:28:26.0068 3220   MSKSSRV - ok
14:28:26.0088 3220   MSPCLOCK     (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
14:28:26.0089 3220   MSPCLOCK - ok
14:28:26.0107 3220   MSPQM       (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
14:28:26.0108 3220   MSPQM - ok
14:28:26.0131 3220   MsRPC       (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys
14:28:26.0136 3220   MsRPC - ok
14:28:26.0156 3220   mssmbios     (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\DRIVERS\mssmbios.sys
14:28:26.0157 3220   mssmbios - ok
14:28:26.0175 3220   MSTEE       (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
14:28:26.0176 3220   MSTEE - ok
14:28:26.0193 3220   MTConfig     (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\drivers\MTConfig.sys
14:28:26.0195 3220   MTConfig - ok
14:28:26.0213 3220   Mup         (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
14:28:26.0214 3220   Mup - ok
14:28:26.0237 3220   mv91xx       (38b4c95e821528fb91df16a78e04450f) C:\Windows\system32\DRIVERS\mv91xx.sys
14:28:26.0241 3220   mv91xx - ok
14:28:26.0266 3220   NativeWifiP   (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
14:28:26.0270 3220   NativeWifiP - ok
14:28:26.0302 3220   NDIS         (79b47fd40d9a817e932f9d26fac0a81c) C:\Windows\system32\drivers\ndis.sys
14:28:26.0315 3220   NDIS - ok
14:28:26.0333 3220   NdisCap       (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
14:28:26.0334 3220   NdisCap - ok
14:28:26.0352 3220   NdisTapi     (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
14:28:26.0353 3220   NdisTapi - ok
14:28:26.0371 3220   Ndisuio       (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys
14:28:26.0373 3220   Ndisuio - ok
14:28:26.0393 3220   NdisWan       (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys
14:28:26.0395 3220   NdisWan - ok
14:28:26.0413 3220   NDProxy       (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys
14:28:26.0415 3220   NDProxy - ok
14:28:26.0433 3220   NetBIOS       (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
14:28:26.0434 3220   NetBIOS - ok
14:28:26.0455 3220   NetBT       (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys
14:28:26.0459 3220   NetBT - ok
14:28:26.0488 3220   nfrd960       (77889813be4d166cdab78ddba990da92) C:\Windows\system32\drivers\nfrd960.sys
14:28:26.0490 3220   nfrd960 - ok
14:28:26.0508 3220   NisDrv       (5f7d72cbcdd025af1f38fdeee5646968) C:\Windows\system32\DRIVERS\NisDrvWFP.sys
14:28:26.0509 3220   NisDrv - ok
14:28:26.0535 3220   Npfs         (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
14:28:26.0536 3220   Npfs - ok
14:28:26.0555 3220   nsiproxy     (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
14:28:26.0556 3220   nsiproxy - ok
14:28:26.0596 3220   Ntfs         (a2f74975097f52a00745f9637451fdd8) C:\Windows\system32\drivers\Ntfs.sys
14:28:26.0616 3220   Ntfs - ok
14:28:26.0634 3220   NuidFltr     (d1a29d9a01bb90091847a802793576d6) C:\Windows\system32\DRIVERS\NuidFltr.sys
14:28:26.0635 3220   NuidFltr - ok
14:28:26.0653 3220   Null         (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
14:28:26.0654 3220   Null - ok
14:28:26.0673 3220   nusb3hub     (158ad24745bd85ba9be3c51c38f48c32) C:\Windows\system32\DRIVERS\nusb3hub.sys
14:28:26.0675 3220   nusb3hub - ok
14:28:26.0695 3220   nusb3xhc     (d40a13b2c0891e218f9523b376955db6) C:\Windows\system32\DRIVERS\nusb3xhc.sys
14:28:26.0698 3220   nusb3xhc - ok
14:28:26.0718 3220   NVHDA       (10204955027011e08a9dc27737a48a54) C:\Windows\system32\drivers\nvhda64v.sys
14:28:26.0720 3220   NVHDA - ok
14:28:26.0865 3220   nvlddmkm     (b15258b1f45f9571758ac6bb2f043b01) C:\Windows\system32\DRIVERS\nvlddmkm.sys
14:28:26.0908 3220   nvlddmkm - ok
14:28:26.0928 3220   nvraid       (0a92cb65770442ed0dc44834632f66ad) C:\Windows\system32\drivers\nvraid.sys
14:28:26.0930 3220   nvraid - ok
14:28:26.0949 3220   nvstor       (dab0e87525c10052bf65f06152f37e4a) C:\Windows\system32\drivers\nvstor.sys
14:28:26.0951 3220   nvstor - ok
14:28:26.0973 3220   nv_agp       (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys
14:28:26.0975 3220   nv_agp - ok
14:28:26.0992 3220   ohci1394     (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys
14:28:26.0994 3220   ohci1394 - ok
14:28:27.0014 3220   Parport       (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\drivers\parport.sys
14:28:27.0016 3220   Parport - ok
14:28:27.0034 3220   partmgr       (871eadac56b0a4c6512bbe32753ccf79) C:\Windows\system32\drivers\partmgr.sys
14:28:27.0035 3220   partmgr - ok
14:28:27.0055 3220   pci         (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys
14:28:27.0057 3220   pci - ok
14:28:27.0075 3220   pciide       (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys
14:28:27.0075 3220   pciide - ok
14:28:27.0096 3220   pcmcia       (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\drivers\pcmcia.sys
14:28:27.0100 3220   pcmcia - ok
14:28:27.0119 3220   pcouffin     (af7ce12c4f3dc8cb2b07685c916bbcfe) C:\Windows\system32\Drivers\pcouffin.sys
14:28:27.0121 3220   pcouffin - ok
14:28:27.0139 3220   pcw         (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
14:28:27.0139 3220   pcw - ok
14:28:27.0164 3220   PEAUTH       (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
14:28:27.0171 3220   PEAUTH - ok
14:28:27.0203 3220   PptpMiniport   (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys
14:28:27.0205 3220   PptpMiniport - ok
14:28:27.0224 3220   Processor     (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\drivers\processr.sys
14:28:27.0225 3220   Processor - ok
14:28:27.0252 3220   Psched       (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys
14:28:27.0255 3220   Psched - ok
14:28:27.0274 3220   PSI         (fb46e9a827a8799ebd7bfa9128c91f37) C:\Windows\system32\DRIVERS\psi_mf.sys
14:28:27.0283 3220   PSI - ok
14:28:27.0321 3220   ql2300       (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\drivers\ql2300.sys
14:28:27.0340 3220   ql2300 - ok
14:28:27.0360 3220   ql40xx       (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\drivers\ql40xx.sys
14:28:27.0362 3220   ql40xx - ok
14:28:27.0382 3220   QWAVEdrv     (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
14:28:27.0384 3220   QWAVEdrv - ok
14:28:27.0401 3220   RasAcd       (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
14:28:27.0402 3220   RasAcd - ok
14:28:27.0420 3220   RasAgileVpn   (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
14:28:27.0421 3220   RasAgileVpn - ok
14:28:27.0442 3220   Rasl2tp       (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys
14:28:27.0444 3220   Rasl2tp - ok
14:28:27.0464 3220   RasPppoe     (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
14:28:27.0465 3220   RasPppoe - ok
14:28:27.0484 3220   RasSstp       (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
14:28:27.0485 3220   RasSstp - ok
14:28:27.0508 3220   rdbss       (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys
14:28:27.0512 3220   rdbss - ok
14:28:27.0530 3220   rdpbus       (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\drivers\rdpbus.sys
14:28:27.0531 3220   rdpbus - ok
14:28:27.0549 3220   RDPCDD       (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
14:28:27.0550 3220   RDPCDD - ok
14:28:27.0571 3220   RDPENCDD     (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
14:28:27.0572 3220   RDPENCDD - ok
14:28:27.0592 3220   RDPREFMP     (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
14:28:27.0593 3220   RDPREFMP - ok
14:28:27.0614 3220   RDPWD       (15b66c206b5cb095bab980553f38ed23) C:\Windows\system32\drivers\RDPWD.sys
14:28:27.0617 3220   RDPWD - ok
14:28:27.0637 3220   rdyboost     (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys
14:28:27.0640 3220   rdyboost - ok
14:28:27.0661 3220   RFCOMM       (3dd798846e2c28102b922c56e71b7932) C:\Windows\system32\DRIVERS\rfcomm.sys
14:28:27.0664 3220   RFCOMM - ok
14:28:27.0688 3220   rspndr       (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
14:28:27.0689 3220   rspndr - ok
14:28:27.0714 3220   RTL8167       (ee082e06a82ff630351d1e0ebbd3d8d0) C:\Windows\system32\DRIVERS\Rt64win7.sys
14:28:27.0717 3220   RTL8167 - ok
14:28:27.0724 3220   SASDIFSV     (a3281aec37e0720a2bc28034c2df2a56) C:\Program Files (x86)\SUPERAntiSpyware\SASDIFSV.SYS
14:28:27.0725 3220   SASDIFSV - ok
14:28:27.0730 3220   SASENUM       (7ce61c25c159f50f9eaf6d77fc83fa35) C:\Program Files (x86)\SUPERAntiSpyware\SASENUM.SYS
14:28:27.0731 3220   SASENUM - ok
14:28:27.0736 3220   SASKUTIL     (61db0d0756a99506207fd724e3692b25) C:\Program Files (x86)\SUPERAntiSpyware\SASKUTIL.sys
14:28:27.0737 3220   SASKUTIL - ok
14:28:27.0755 3220   sbp2port     (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys
14:28:27.0757 3220   sbp2port - ok
14:28:27.0776 3220   scfilter     (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys
14:28:27.0777 3220   scfilter - ok
14:28:27.0799 3220   secdrv       (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
14:28:27.0800 3220   secdrv - ok
14:28:27.0826 3220   Serenum       (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
14:28:27.0827 3220   Serenum - ok
14:28:27.0845 3220   Serial       (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
14:28:27.0847 3220   Serial - ok
14:28:27.0865 3220   sermouse     (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\drivers\sermouse.sys
14:28:27.0866 3220   sermouse - ok
14:28:27.0888 3220   sffdisk       (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys
14:28:27.0889 3220   sffdisk - ok
14:28:27.0906 3220   sffp_mmc     (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys
14:28:27.0907 3220   sffp_mmc - ok
14:28:27.0923 3220   sffp_sd       (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\drivers\sffp_sd.sys
14:28:27.0924 3220   sffp_sd - ok
14:28:27.0941 3220   sfloppy       (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\drivers\sfloppy.sys
14:28:27.0942 3220   sfloppy - ok
14:28:27.0963 3220   SiSRaid2     (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\drivers\SiSRaid2.sys
14:28:27.0964 3220   SiSRaid2 - ok
14:28:27.0983 3220   SiSRaid4     (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\drivers\sisraid4.sys
14:28:27.0984 3220   SiSRaid4 - ok
14:28:28.0004 3220   Smb         (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
14:28:28.0006 3220   Smb - ok
14:28:28.0027 3220   spldr       (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
14:28:28.0027 3220   spldr - ok
14:28:28.0054 3220   srv         (441fba48bff01fdb9d5969ebc1838f0b) C:\Windows\system32\DRIVERS\srv.sys
14:28:28.0059 3220   srv - ok
14:28:28.0082 3220   srv2         (b4adebbf5e3677cce9651e0f01f7cc28) C:\Windows\system32\DRIVERS\srv2.sys
14:28:28.0086 3220   srv2 - ok
14:28:28.0105 3220   srvnet       (27e461f0be5bff5fc737328f749538c3) C:\Windows\system32\DRIVERS\srvnet.sys
14:28:28.0107 3220   srvnet - ok
14:28:28.0129 3220   stexstor     (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\drivers\stexstor.sys
14:28:28.0131 3220   stexstor - ok
14:28:28.0149 3220   swenum       (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\DRIVERS\swenum.sys
14:28:28.0149 3220   swenum - ok
14:28:28.0192 3220   Tcpip       (fc62769e7bff2896035aeed399108162) C:\Windows\system32\drivers\tcpip.sys
14:28:28.0209 3220   Tcpip - ok
14:28:28.0246 3220   TCPIP6       (fc62769e7bff2896035aeed399108162) C:\Windows\system32\DRIVERS\tcpip.sys
14:28:28.0253 3220   TCPIP6 - ok
14:28:28.0274 3220   tcpipreg     (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys
14:28:28.0275 3220   tcpipreg - ok
14:28:28.0294 3220   TDPIPE       (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
14:28:28.0296 3220   TDPIPE - ok
14:28:28.0313 3220   TDTCP       (e4245bda3190a582d55ed09e137401a9) C:\Windows\system32\drivers\tdtcp.sys
14:28:28.0315 3220   TDTCP - ok
14:28:28.0333 3220   tdx         (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys
14:28:28.0335 3220   tdx - ok
14:28:28.0354 3220   TermDD       (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\DRIVERS\termdd.sys
14:28:28.0355 3220   TermDD - ok
14:28:28.0386 3220   tssecsrv     (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys
14:28:28.0387 3220   tssecsrv - ok
14:28:28.0404 3220   TsUsbFlt     (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys
14:28:28.0406 3220   TsUsbFlt - ok
14:28:28.0424 3220   TsUsbGD       (9cc2ccae8a84820eaecb886d477cbcb8) C:\Windows\system32\drivers\TsUsbGD.sys
14:28:28.0426 3220   TsUsbGD - ok
14:28:28.0445 3220   tunnel       (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys
14:28:28.0448 3220   tunnel - ok
14:28:28.0466 3220   uagp35       (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\drivers\uagp35.sys
14:28:28.0468 3220   uagp35 - ok
14:28:28.0490 3220   udfs         (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys
14:28:28.0495 3220   udfs - ok
14:28:28.0520 3220   uliagpkx     (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys
14:28:28.0522 3220   uliagpkx - ok
14:28:28.0540 3220   umbus       (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\DRIVERS\umbus.sys
14:28:28.0542 3220   umbus - ok
14:28:28.0559 3220   UmPass       (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\drivers\umpass.sys
14:28:28.0561 3220   UmPass - ok
14:28:28.0582 3220   usbaudio     (82e8f44688e6fac57b5b7c6fc7adbc2a) C:\Windows\system32\drivers\usbaudio.sys
14:28:28.0584 3220   usbaudio - ok
14:28:28.0603 3220   usbccgp       (6f1a3157a1c89435352ceb543cdb359c) C:\Windows\system32\DRIVERS\usbccgp.sys
14:28:28.0605 3220   usbccgp - ok
14:28:28.0625 3220   usbcir       (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys
14:28:28.0628 3220   usbcir - ok
14:28:28.0645 3220   usbehci       (c025055fe7b87701eb042095df1a2d7b) C:\Windows\system32\drivers\usbehci.sys
14:28:28.0647 3220   usbehci - ok
14:28:28.0669 3220   usbhub       (287c6c9410b111b68b52ca298f7b8c24) C:\Windows\system32\DRIVERS\usbhub.sys
14:28:28.0674 3220   usbhub - ok
14:28:28.0693 3220   usbohci       (9840fc418b4cbd632d3d0a667a725c31) C:\Windows\system32\drivers\usbohci.sys
14:28:28.0694 3220   usbohci - ok
14:28:28.0714 3220   usbprint     (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
14:28:28.0715 3220   usbprint - ok
14:28:28.0733 3220   usbscan       (aaa2513c8aed8b54b189fd0c6b1634c0) C:\Windows\system32\DRIVERS\usbscan.sys
14:28:28.0735 3220   usbscan - ok
14:28:28.0753 3220   USBSTOR       (fed648b01349a3c8395a5169db5fb7d6) C:\Windows\system32\DRIVERS\USBSTOR.SYS
14:28:28.0754 3220   USBSTOR - ok
14:28:28.0772 3220   usbuhci       (62069a34518bcf9c1fd9e74b3f6db7cd) C:\Windows\system32\drivers\usbuhci.sys
14:28:28.0774 3220   usbuhci - ok
14:28:28.0796 3220   vdrvroot     (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys
14:28:28.0797 3220   vdrvroot - ok
14:28:28.0818 3220   vga         (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
14:28:28.0819 3220   vga - ok
14:28:28.0838 3220   VgaSave       (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
14:28:28.0840 3220   VgaSave - ok
14:28:28.0860 3220   vhdmp       (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys
14:28:28.0864 3220   vhdmp - ok
14:28:28.0882 3220   viaide       (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys
14:28:28.0884 3220   viaide - ok
14:28:28.0902 3220   volmgr       (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys
14:28:28.0904 3220   volmgr - ok
14:28:28.0926 3220   volmgrx       (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys
14:28:28.0931 3220   volmgrx - ok
14:28:28.0952 3220   volsnap       (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys
14:28:28.0956 3220   volsnap - ok
14:28:28.0977 3220   vsmraid       (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\drivers\vsmraid.sys
14:28:28.0979 3220   vsmraid - ok
14:28:28.0999 3220   vwifibus     (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\System32\drivers\vwifibus.sys
14:28:29.0001 3220   vwifibus - ok
14:28:29.0023 3220   WacomPen     (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\drivers\wacompen.sys
14:28:29.0025 3220   WacomPen - ok
14:28:29.0044 3220   WANARP       (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
14:28:29.0046 3220   WANARP - ok
14:28:29.0051 3220   Wanarpv6     (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
14:28:29.0052 3220   Wanarpv6 - ok
14:28:29.0081 3220   Wd         (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\drivers\wd.sys
14:28:29.0082 3220   Wd - ok
14:28:29.0110 3220   Wdf01000     (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
14:28:29.0118 3220   Wdf01000 - ok
14:28:29.0148 3220   WfpLwf       (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
14:28:29.0149 3220   WfpLwf - ok
14:28:29.0167 3220   WIMMount     (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
14:28:29.0168 3220   WIMMount - ok
14:28:29.0200 3220   WmiAcpi       (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\DRIVERS\wmiacpi.sys
14:28:29.0200 3220   WmiAcpi - ok
14:28:29.0225 3220   ws2ifsl       (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
14:28:29.0227 3220   ws2ifsl - ok
14:28:29.0250 3220   WudfPf       (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys
14:28:29.0252 3220   WudfPf - ok
14:28:29.0271 3220   WUDFRd       (cf8d590be3373029d57af80914190682) C:\Windows\system32\DRIVERS\WUDFRd.sys
14:28:29.0273 3220   WUDFRd - ok
14:28:29.0283 3220   MBR (0x1B8)    (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
14:28:29.0286 3220   \Device\Harddisk0\DR0 - ok
14:28:29.0287 3220   MBR (0x1B8)    (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk1\DR1
14:28:29.0290 3220   \Device\Harddisk1\DR1 - ok
14:28:29.0292 3220   Boot (0x1200)  (37122800d238782e2a545186655f18c7) \Device\Harddisk0\DR0\Partition0
14:28:29.0293 3220   \Device\Harddisk0\DR0\Partition0 - ok
14:28:29.0295 3220   Boot (0x1200)  (9fe2221e5da22a906f591cfd3df79390) \Device\Harddisk0\DR0\Partition1
14:28:29.0296 3220   \Device\Harddisk0\DR0\Partition1 - ok
14:28:29.0298 3220   Boot (0x1200)  (f900b7ef93d297fa3325e2f6664f6250) \Device\Harddisk1\DR1\Partition0
14:28:29.0298 3220   \Device\Harddisk1\DR1\Partition0 - ok
14:28:29.0299 3220   ============================================================
14:28:29.0299 3220   Scan finished
14:28:29.0299 3220   ============================================================
14:28:29.0306 4164   Detected object count: 0
14:28:29.0306 4164   Actual detected object count: 0

    [ Ignorer ]   [ # 7 ]   
  f-arn TeamSpywarefri
06.01.2012 16:03:02
Administrator
Team Spywarefri
Antal indlæg: 4202

Hent og gem ComboFix på dit skrivebord. <- Vigtigt

Kør så ComboFix og følg anvisningerne.

Da ComboFix kan konflikte med dine sikkerhedsprogrammer, er det vigtigt at du deaktiverer dem. <- Vigtigt

Du bør ikke klikke på vinduet imens værktøjet kører, idet det kan få din computer til at fryse.
Når ComboFix er færdig, og efter det (muligvis) har genstartet, skulle der gerne åbnes en logfil: ComboFix.txt
Indholdet af denne fil må du gerne lægge herind.

Den kan findes her: C:\ComboFix.txt

Signatur

Undlad venligst at vedhæfte logs, medmindre du bliver bedt om det !

    [ Ignorer ]   [ # 8 ]   
  cljeppe
06.01.2012 16:57:59
Antal indlæg: 49

ComboFix log filen her:

ComboFix 12-01-05.04 - Carsten 06-01-2012 15:47:57.1.8 - x64
Microsoft Windows 7 Home Premium   6.1.7601.1.1252.45.1030.18.8169.6880 [GMT 1:00]
Kører fra: d:\unzipped\Til installation\ComboFix.exe
AV: Microsoft Security Essentials *Enabled/Updated* {108DAC43-C256-20B7-BB05-914135DA5160}
SP: Microsoft Security Essentials *Enabled/Updated* {ABEC4DA7-E46C-2F39-81B5-AA334E5D1BDD}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
(((((((((((((((((((((((((((((((((((((((  Andet, der er slettet   )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files (x86)\7z.exe
c:\users\Carsten\AppData\Roaming\dvdae
c:\users\Carsten\AppData\Roaming\dvdae\dvdae.config
c:\users\Carsten\AppData\Roaming\dvdae\dvdae.lic
c:\users\Carsten\AppData\Roaming\inst.exe
c:\users\Carsten\AppData\Roaming\vso_ts_preview.xml
c:\windows\assembly\tmp\U
.
.
(((((((((((((((((((((((((((((  Filer skabt fra 2011-12-06 til 2012-01-06 )))))))))))))))))))))))))))))))))))
.
.
2012-01-06 14:50 . 2012-01-06 14:50   69000   ——a-w-  c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{79DE41A8-3F9D-472F-BD83-282809CF2B55}\offreg.dll
2012-01-06 14:50 . 2012-01-06 14:50   ————  d——-w-  c:\users\Default\AppData\Local\temp
2012-01-06 13:18 . 2012-01-06 13:18   ————  d——-w-  C:\_OTL
2012-01-06 13:12 . 2011-11-21 02:40   8822856   ——a-w-  c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{79DE41A8-3F9D-472F-BD83-282809CF2B55}\mpengine.dll
2012-01-05 22:30 . 2012-01-05 22:30   ————  d——-w-  c:\program files (x86)\Phone
2012-01-05 22:30 . 2012-01-05 22:30   ————  d——-w-  c:\programdata\Skype
2012-01-05 21:37 . 2012-01-05 21:37   ————  d——-w-  c:\program files (x86)\PixBuilder Studio
2012-01-05 21:05 . 2012-01-05 21:08   ————  d——-w-  c:\program files (x86)\GreatNews
2012-01-05 17:21 . 2012-01-05 17:21   ————  d——-w-  c:\program files\DIFX
2012-01-05 17:21 . 2012-01-05 17:21   ————  d——-w-  c:\program files (x86)\Garmin
2012-01-05 10:10 . 2012-01-05 10:10   159744   ——a-w-  c:\program files (x86)\Internet Explorer\Plugins\npqtplugin7.dll
2012-01-05 10:10 . 2012-01-05 10:10   159744   ——a-w-  c:\program files (x86)\Internet Explorer\Plugins\npqtplugin6.dll
2012-01-05 10:10 . 2012-01-05 10:10   159744   ——a-w-  c:\program files (x86)\Internet Explorer\Plugins\npqtplugin5.dll
2012-01-05 10:10 . 2012-01-05 10:10   159744   ——a-w-  c:\program files (x86)\Internet Explorer\Plugins\npqtplugin4.dll
2012-01-05 10:10 . 2012-01-05 10:10   159744   ——a-w-  c:\program files (x86)\Internet Explorer\Plugins\npqtplugin3.dll
2012-01-05 10:10 . 2012-01-05 10:10   159744   ——a-w-  c:\program files (x86)\Internet Explorer\Plugins\npqtplugin2.dll
2012-01-05 10:10 . 2012-01-05 10:10   159744   ——a-w-  c:\program files (x86)\Internet Explorer\Plugins\npqtplugin.dll
2012-01-05 10:09 . 2012-01-05 10:10   ————  d——-w-  c:\program files (x86)\QuickTime
2012-01-05 10:09 . 2012-01-05 10:09   ————  d——-w-  c:\programdata\Apple Computer
2012-01-05 10:07 . 2012-01-05 10:07   ————  d——-w-  c:\program files (x86)\Secunia
2012-01-04 20:15 . 2012-01-04 20:15   ————  d——-w-  c:\program files (x86)\ESET
2012-01-04 18:30 . 2012-01-04 18:30   ————  d——-w-  c:\program files\CCleaner
2012-01-04 18:29 . 2012-01-04 22:39   ————  d——-w-  c:\program files (x86)\Google
2012-01-04 12:26 . 2012-01-04 12:26   ————  d——-w-  c:\programdata\Kaspersky Lab
2012-01-04 08:54 . 2012-01-04 08:54   ————  d——-w-  c:\programdata\SUPERAntiSpyware.com
2012-01-04 08:54 . 2012-01-04 17:29   ————  d——-w-  c:\program files (x86)\SUPERAntiSpyware
2012-01-04 08:54 . 2012-01-04 08:54   ————  d——-w-  c:\program files (x86)\Common Files\Wise Installation Wizard
2012-01-04 08:02 . 2012-01-04 08:02   ————  d——-w-  c:\programdata\Malwarebytes
2012-01-04 08:02 . 2012-01-04 21:54   ————  d——-w-  c:\program files (x86)\Malwarebytes’ Anti-Malware
2012-01-04 08:02 . 2011-12-10 14:24   23152   ——a-w-  c:\windows\system32\drivers\mbam.sys
2012-01-03 22:19 . 2012-01-03 22:27   ————  d——-w-  c:\program files (x86)\Cobian Backup 10
2012-01-03 21:19 . 2012-01-03 21:19   ————  d——-w-  c:\programdata\install_clap
2012-01-03 21:10 . 2012-01-03 21:10   ————  d——-w-  c:\program files (x86)\Shared files
2012-01-02 15:15 . 2012-01-02 15:15   ————  d—h—w-  c:\windows\msdownld.tmp
2012-01-02 15:07 . 2012-01-02 15:11   ————  d—-a-w-  C:\Program Files (x86)_
2012-01-02 14:19 . 2012-01-02 14:19   ————  d——-w-  c:\program files (x86)\DVD Audio Extractor
2012-01-02 13:52 . 2012-01-02 13:52   ————  d——-w-  c:\programdata\IObit
2012-01-02 13:52 . 2012-01-03 20:32   ————  d——-w-  c:\program files (x86)\IObit
2012-01-02 11:34 . 2011-03-14 10:05   1410048   ——a-w-  c:\windows\SysWow64\drivers\VMHybr64.sys
2012-01-02 11:34 . 2011-03-14 10:02   1105408   ——a-w-  c:\windows\SysWow64\drivers\VMHybrid.sys
2012-01-02 10:57 . 2012-01-02 10:57   ————  d——-w-  c:\program files (x86)\Easy_CD-DA_Extractor_v15.2.1.1.Portable
2012-01-02 09:50 . 2012-01-02 09:50   82816   ——a-w-  c:\windows\system32\drivers\pcouffin.sys
2012-01-02 09:50 . 2010-02-09 15:37   65602   ——a-w-  c:\windows\SysWow64\cook3260.dll
2012-01-02 09:50 . 2010-02-09 15:37   626688   ——a-w-  c:\windows\SysWow64\vp7vfw.dll
2012-01-02 09:50 . 2010-02-09 15:37   217127   ——a-w-  c:\windows\SysWow64\drv43260.dll
2012-01-02 09:50 . 2010-02-09 15:37   208935   ——a-w-  c:\windows\SysWow64\drv33260.dll
2012-01-02 09:50 . 2010-02-09 15:37   176165   ——a-w-  c:\windows\SysWow64\drv23260.dll
2012-01-02 09:50 . 2010-02-09 15:37   1184984   ——a-w-  c:\windows\SysWow64\wvc1dmod.dll
2012-01-02 09:50 . 2010-02-09 15:37   102439   ——a-w-  c:\windows\SysWow64\sipr3260.dll
2012-01-02 09:50 . 2012-01-02 09:50   ————  d——-w-  c:\program files (x86)\VSO
2012-01-02 09:45 . 2009-10-27 18:31   3982240   ——a-w-  c:\windows\SysWow64\Flash10d.ocx
2012-01-02 09:43 . 2012-01-02 09:45   ————  d——-w-  c:\program files (x86)\StreamTransport
2012-01-02 09:34 . 2012-01-02 09:35   ————  d——-w-  c:\program files (x86)\Acoustica CD Label Maker
2012-01-02 08:24 . 2012-01-02 08:24   ————  d——-w-  c:\program files (x86)\VS Revo Group
2012-01-01 10:55 . 2012-01-02 22:19   ————  d——-w-  c:\program files (x86)\Microsoft Works
2012-01-01 09:27 . 2012-01-01 09:29   ————  d——-w-  c:\program files (x86)\Common Files\Nero
2012-01-01 09:27 . 2012-01-01 09:27   ————  d——-w-  c:\program files (x86)\Nero
2011-12-29 10:45 . 2011-12-29 10:45   ————  d——-w-  C:\Gads Bogskab
2011-12-29 10:28 . 2011-12-29 10:37   ————  d——-w-  c:\program files (x86)\Windoctor
2011-12-29 10:23 . 2011-12-29 10:24   ————  d——-w-  C:\Free Rapiddownloader
2011-12-28 21:42 . 2011-12-28 21:42   ————  d——-w-  c:\programdata\CyberLink
2011-12-28 21:42 . 2012-01-03 21:32   ————  d——-w-  c:\users\Public\CyberLink
2011-12-28 21:28 . 2012-01-05 15:06   ————  d——-w-  c:\program files (x86)\CyberLink
2011-12-28 21:25 . 2012-01-02 10:20   900096   ——a-w-  c:\windows\system32\drivers\AF9035HB.sys
2011-12-28 20:29 . 2011-12-28 20:29   ————  d——-w-  c:\program files (x86)\Common Files\SureThing Shared
2011-12-28 20:29 . 2011-12-28 20:29   ————  d——-w-  c:\program files (x86)\SureThing Express Labeler
2011-12-28 20:22 . 2011-12-28 20:22   ————  d——-w-  c:\program files (x86)\Common Files\Pinnacle
2011-12-28 20:21 . 2011-12-28 20:21   ————  d——-w-  c:\programdata\Pinnacle Studio HD
2011-12-28 20:18 . 2011-12-28 20:18   ————  d——-w-  c:\program files (x86)\Common Files\Pegasus Imaging
2011-12-28 20:18 . 2011-12-28 20:18   ————  d——-w-  c:\programdata\Studio 14
2011-12-28 20:18 . 2011-12-28 20:18   ————  d——-w-  c:\programdata\Pinnacle Studio Plus
2011-12-28 20:18 . 2011-12-28 20:18   ————  d——-w-  c:\program files (x86)\Pinnacle
2011-12-28 20:18 . 2011-12-28 20:18   ————  d——-w-  c:\program files (x86)\Common Files\Yahoo!
2011-12-28 20:15 . 2011-12-28 20:21   ————  d——-w-  c:\programdata\Pinnacle
2011-12-28 20:06 . 2011-12-28 20:06   ————  d——-w-  c:\program files (x86)\Polob32
2011-12-28 09:40 . 2011-12-28 09:40   ————  d——-w-  c:\program files (x86)\DVDFab 8 Qt
2011-12-28 08:23 . 2011-12-28 08:23   ————  d——-w-  c:\programdata\Nikon
2011-12-28 08:23 . 2011-12-28 08:23   ————  d——-w-  c:\program files (x86)\Common Files\muvee Technologies
2011-12-28 08:23 . 2011-12-28 08:23   ————  d——-w-  c:\programdata\Limiter
2011-12-28 08:16 . 2011-12-28 08:16   ————  d——-w-  c:\program files (x86)\XnView
2011-12-27 22:12 . 2011-12-28 08:23   ————  d——-w-  c:\programdata\Ultima_T15
2011-12-27 22:12 . 2011-12-28 08:23   ————  d——-w-  c:\programdata\EnterNHelp
2011-12-27 21:47 . 2002-09-11 10:00   181248   ——a-w-  c:\windows\SysWow64\LFPNG12N.DLL
2011-12-27 18:05 . 2011-12-27 18:05   ————  d——-w-  c:\program files (x86)\Microsoft FrontPage
2011-12-27 18:05 . 2011-12-27 18:05   ————  d——-w-  c:\windows\Msagent
2011-12-27 17:57 . 2012-01-01 12:24   ————  d——-w-  c:\program files (x86)\BurnAware Free
2011-12-27 08:38 . 2012-01-01 09:27   ————  d——-w-  c:\programdata\Nero
2011-12-27 08:37 . 2010-05-26 10:41   248672   ——a-w-  c:\windows\SysWow64\d3dx11_43.dll
2011-12-27 08:37 . 2010-05-26 10:41   2106216   ——a-w-  c:\windows\SysWow64\D3DCompiler_43.dll
2011-12-27 08:37 . 2010-05-26 10:41   1868128   ——a-w-  c:\windows\SysWow64\d3dcsx_43.dll
2011-12-27 08:37 . 2010-05-26 10:41   470880   ——a-w-  c:\windows\SysWow64\d3dx10_43.dll
2011-12-27 08:37 . 2010-05-26 10:41   1998168   ——a-w-  c:\windows\SysWow64\D3DX9_43.dll
2011-12-27 08:37 . 2009-09-04 16:29   1974616   ——a-w-  c:\windows\SysWow64\D3DCompiler_42.dll
2011-12-27 08:37 . 2008-10-15 05:22   4379984   ——a-w-  c:\windows\SysWow64\D3DX9_40.dll
2011-12-27 08:37 . 2007-07-19 17:14   3727720   ——a-w-  c:\windows\SysWow64\d3dx9_35.dll
2011-12-27 08:36 . 2007-05-16 15:45   3497832   ——a-w-  c:\windows\SysWow64\d3dx9_34.dll
2011-12-27 06:59 . 2011-12-20 09:10   17192   ——a-w-  c:\windows\system32\nitrolocalui2.dll
2011-12-27 06:59 . 2011-12-20 09:10   28968   ——a-w-  c:\windows\system32\nitrolocalmon2.dll
2011-12-27 06:59 . 2011-12-27 06:59   ————  d——-w-  c:\programdata\Nitro PDF
2011-12-27 06:59 . 2011-12-27 06:59   ————  d——-w-  c:\program files\Common Files\Nitro PDF
2011-12-27 06:59 . 2011-12-27 06:59   ————  d——-w-  c:\program files (x86)\Nitro PDF
2011-12-27 06:59 . 2011-12-27 06:59   ————  d——-w-  c:\program files (x86)\Common Files\Nitro PDF
2011-12-26 18:19 . 2011-11-21 02:40   8822856   ——a-w-  c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll
2011-12-26 17:57 . 2011-12-26 18:04   ————  d——-w-  c:\programdata\HP Photo Creations
2011-12-26 17:57 . 2011-12-26 17:57   ————  d——-w-  c:\program files (x86)\HP Photo Creations
2011-12-26 17:57 . 2011-12-26 18:04   ————  d——-w-  c:\programdata\HP
2011-12-26 17:56 . 2011-12-26 17:57   ————  d——-w-  c:\program files (x86)\HP
2011-12-26 17:56 . 2011-12-26 17:56   ————  d——-w-  c:\program files\HP
2011-12-26 17:25 . 2011-12-27 10:57   ————  d——-w-  c:\program files (x86)\Microsoft Silverlight
2011-12-26 15:45 . 2011-12-26 15:45   ————  d——-w-  c:\program files (x86)\Common Files\Java
2011-12-26 15:45 . 2011-12-26 15:45   472808   ——a-w-  c:\windows\SysWow64\deployJava1.dll
2011-12-26 15:45 . 2011-12-26 15:45   ————  d——-w-  c:\program files (x86)\Java
2011-12-26 09:02 . 2011-12-26 09:02   ————  d——-w-  c:\programdata\Firetrust
2011-12-26 08:35 . 2011-12-26 08:39   ————  d——-w-  C:\totalcmd
2011-12-25 19:26 . 2011-12-26 09:02   ————  d——-w-  c:\program files (x86)\FireTrust
2011-12-25 15:45 . 2009-09-04 16:29   1892184   ——a-w-  c:\windows\SysWow64\D3DX9_42.dll
2011-12-25 15:45 . 2006-09-28 15:05   2414360   ——a-w-  c:\windows\SysWow64\d3dx9_31.dll
2011-12-25 15:45 . 2011-12-25 15:45   ————  d——-w-  c:\program files (x86)\Winamp Detect
2011-12-25 15:45 . 2011-12-25 15:46   ————  d——-w-  c:\program files (x86)\Winamp
2011-12-25 14:17 . 2011-12-26 17:25   ————  d——-w-  c:\program files (x86)\Windows Live
2011-12-25 14:17 . 2011-12-25 14:17   ————  d——-w-  c:\windows\PCHEALTH
2011-12-25 14:17 . 2011-12-25 14:17   ————  d——-w-  c:\program files\Windows Live
2011-12-25 14:16 . 2011-12-25 14:16   ————  d——-w-  c:\program files (x86)\Common Files\Windows Live
2011-12-25 13:56 . 2011-12-25 13:56   917840   ———w-  c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{02268888-A782-4B36-8843-CFBF8733226F}\gapaengine.dll
2011-12-25 13:54 . 2011-12-25 13:54   ————  d——-w-  c:\program files (x86)\Microsoft Security Client
.
.
((((((((((((((((((((((((((((((((((((((((  Find3M Rapport   ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-12-25 14:17 . 2011-03-28 17:36   18328   ——a-w-  c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
2011-10-24 13:29 . 2011-10-24 13:29   94208   ——a-w-  c:\windows\SysWow64\QuickTimeVR.qtx
2011-10-24 13:29 . 2011-10-24 13:29   69632   ——a-w-  c:\windows\SysWow64\QuickTime.qts
2011-10-14 23:54 . 2011-10-14 23:54   321856   ——a-w-  c:\windows\SysWow64\nvStreaming.exe
2010-11-18 20:27 . 2010-11-18 20:27   162816   ——a-w-  c:\program files (x86)\7z.sfx
2010-11-18 20:27 . 2010-11-18 20:27   152064   ——a-w-  c:\program files (x86)\7zCon.sfx
2010-11-18 20:24 . 2010-11-18 20:24   1422336   ——a-w-  c:\program files (x86)\7z.dll
2010-11-18 20:11 . 2010-11-18 20:11   387072   ——a-w-  c:\program files (x86)\7zG.exe
2010-11-18 20:10 . 2010-11-18 20:10   740352   ——a-w-  c:\program files (x86)\7zFM.exe
2010-11-18 20:08 . 2010-11-18 20:08   86016   ——a-w-  c:\program files (x86)\7-zip.dll
.
.
(((((((((((((((((((((((((((((((((((  Start steder i reg.basen   ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Bemærk* tomme linier & lovlige standard linier vises ikke
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
“NUSB3MON”=“c:\program files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe” [2010-11-17 113288]
“JMB36X IDE Setup”=“c:\windows\RaidTool\xInsIDE.exe” [2010-01-19 43632]
“SunJavaUpdateSched”=“c:\program files (x86)\Common Files\Java\Java Update\jusched.exe” [2011-06-09 254696]
“HP Software Update”=“c:\program files (x86)\Hp\HP Software Update\HPWuSchd2.exe” [2010-03-12 49208]
“Cobian Backup 10 Interface”=“c:\program files (x86)\Cobian Backup 10\cbInterface.exe” [2010-09-23 3154432]
“QuickTime Task”=“c:\program files (x86)\QuickTime\QTTask.exe” [2011-10-24 421888]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
MailWasherPro.lnk - c:\program files (x86)\FireTrust\MailWasher\MailWasherPro.exe [2011-10-5 5385552]
Secunia PSI Tray.lnk - c:\program files (x86)\Secunia\PSI\psi_tray.exe [2011-10-14 291896]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
“ConsentPromptBehaviorAdmin”= 5 (0x5)
“ConsentPromptBehaviorUser”= 3 (0x3)
“EnableUIADesktopToggle”= 0 (0x0)
.
[hkey_local_machine\software\Wow6432Node\microsoft\windows\currentversion\explorer\ShellExecuteHooks]
“{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}”= “c:\program files (x86)\SUPERAntiSpyware\SASSEH.DLL” [2012-01-04 77824]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\!SASWinLogon]
2012-01-04 11:10   548352   ——a-w-  c:\program files (x86)\SUPERAntiSpyware\SASWINLO.DLL
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
“aux”=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Security Packages   REG_MULTI_SZ     kerberos msv1_0 schannel wdigest tspkg pku2u livessp
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
@=“Service”
.
R1 SASDIFSV;SASDIFSV;c:\program files (x86)\SUPERAntiSpyware\SASDIFSV.SYS [2012-01-04 12872]
R1 SASKUTIL;SASKUTIL;c:\program files (x86)\SUPERAntiSpyware\SASKUTIL.sys [2012-01-04 67656]
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R2 nvUpdatusService;NVIDIA Update Service Daemon;c:\program files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe [2011-10-15 2253120]
R3 AF9035HB;AF9035 Hybrid Device;c:\windows\system32\Drivers\AF9035HB.sys [x]
R3 AthBTPort;Atheros Virtual Bluetooth Class;c:\windows\system32\DRIVERS\btath_flt.sys [x]
R3 ATHDFU;Atheros Valkyrie USB BootROM;c:\windows\system32\Drivers\AthDfu.sys [x]
R3 BTATH_A2DP;Bluetooth A2DP Audio Driver;c:\windows\system32\drivers\btath_a2dp.sys [x]
R3 BTATH_HCRP;Bluetooth HCRP Server driver;c:\windows\system32\DRIVERS\btath_hcrp.sys [x]
R3 BTATH_LWFLT;Bluetooth LWFLT Device;c:\windows\system32\DRIVERS\btath_lwflt.sys [x]
R3 BTATH_RCP;Bluetooth AVRCP Device;c:\windows\system32\DRIVERS\btath_rcp.sys [x]
R3 BtFilter;BtFilter;c:\windows\system32\DRIVERS\btfilter.sys [x]
R3 SASENUM;SASENUM;c:\program files (x86)\SUPERAntiSpyware\SASENUM.SYS [2012-01-04 12872]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [x]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys [x]
R3 WatAdminSvc;Tjenesten Windows Aktivering;c:\windows\system32\Wat\WatAdminSvc.exe [x]
R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe [2010-09-22 57184]
S0 mv91xx;mv91xx;c:\windows\system32\DRIVERS\mv91xx.sys [x]
S2 AtherosSvc;AtherosSvc;c:\program files (x86)\Bluetooth Suite\adminservice.exe [2010-10-27 52896]
S2 cbVSCService;Cobian Backup 10 Volume Shadow Copy service;c:\program files (x86)\Cobian Backup 10\cbVSCService.exe [2010-09-23 67584]
S2 CobianBackup10;Cobian Backup 10;c:\program files (x86)\Cobian Backup 10\cbService.exe [2010-09-23 1125376]
S2 Intel® PROSet Monitoring Service;Intel® PROSet Monitoring Service;c:\windows\system32\IProsetMonitor.exe [x]
S2 NitroReaderDriverReadSpool2;NitroPDFReaderDriverCreatorReadSpool2;c:\program files\Common Files\Nitro PDF\Reader\2.0\NitroPDFReaderDriverService2x64.exe [2011-12-20 341800]
S2 Secunia PSI Agent;Secunia PSI Agent;c:\program files (x86)\Secunia\PSI\PSIA.exe [2011-10-14 994360]
S2 Secunia Update Agent;Secunia Update Agent;c:\program files (x86)\Secunia\PSI\sua.exe [2011-10-14 399416]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2011-10-14 381248]
S3 BTATH_BUS;Atheros Bluetooth Bus;c:\windows\system32\DRIVERS\btath_bus.sys [x]
S3 e1cexpress;Intel(R) PRO/1000 PCI Express Network Connection Driver C;c:\windows\system32\DRIVERS\e1c62x64.sys [x]
S3 MEIx64;Intel(R) Management Engine Interface;c:\windows\system32\DRIVERS\HECIx64.sys [x]
S3 MpNWMon;Microsoft Malware Protection Network Driver;c:\windows\system32\DRIVERS\MpNWMon.sys [x]
S3 NisDrv;Microsoft Network Inspection System;c:\windows\system32\DRIVERS\NisDrvWFP.sys [x]
S3 NisSrv;Microsoft Network Inspection;c:\program files\Microsoft Security Client\Antimalware\NisSrv.exe [2011-04-27 288272]
S3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver;c:\windows\system32\DRIVERS\nusb3hub.sys [x]
S3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver;c:\windows\system32\DRIVERS\nusb3xhc.sys [x]
S3 NVHDA;Service for NVIDIA High Definition Audio Driver;c:\windows\system32\drivers\nvhda64v.sys [x]
S3 pcouffin;VSO Software pcouffin;c:\windows\system32\Drivers\pcouffin.sys [x]
S3 PSI;PSI;c:\windows\system32\DRIVERS\psi_mf.sys [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys [x]
.
.
—- Andre Services/Drivers i Hukommelsen—-
.
*NewlyCreated* - WS2IFSL
.
.
————- x86-64—————-
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
“RtHDVCpl”=“c:\program files\Realtek\Audio\HDA\RAVCpl64.exe” [2010-11-02 11545192]
“MSC”=“c:\program files\Microsoft Security Client\msseces.exe” [2011-06-15 1436736]
“Logitech Download Assistant”=“c:\windows\system32\rundll32.exe” [2009-07-14 45568]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
“LoadAppInit_DLLs”=0x0
.
———- Yderligere scanning———-
.
uLocal Page = c:\windows\system32\blank.htm
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: Download with &Media; Finder - c:\program files (x86)\Media Finder\hook.html
TCP: DhcpNameServer = 192.168.15.1
FF - ProfilePath - c:\users\Carsten\AppData\Roaming\Mozilla\Firefox\Profiles\8gs7c582.default\
FF - prefs.js: browser.startup.homepage - hxxp://en.wikipedia.org/wiki/Main_Page
.
- - - - TOMME GENVEJE FJERNET - - - -
.
AddRemove-AF9035HB DriverInstaller_10.3.11.2 - c:\users\Carsten\AppData\Local\Temp\DriverInstall64.exe
.
.
.
——————————- LÅSTE REGISTRERINGS NØGLER——————————-
.
[HKEY_USERS\S-1-5-21-3405606277-1647924529-2829051646-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.eml\UserChoice]
@Denied: (2) (LocalSystem)
“Progid”=“WindowsLiveMail.Email.1”
.
[HKEY_USERS\S-1-5-21-3405606277-1647924529-2829051646-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.vcf\UserChoice]
@Denied: (2) (LocalSystem)
“Progid”=“WindowsLiveMail.VCard.1”
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
@Denied: (A 2) (Everyone)
@=“FlashBroker”
“LocalizedString”=”@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil11e_ActiveX.exe,-101”
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
“Enabled”=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
@=“c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil11e_ActiveX.exe”
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
@=”{FAB3E735-69C7-453B-A446-B6823C6DF1C9}”
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@=“Shockwave Flash Object”
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@=“c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11e.ocx”
“ThreadingModel”=“Apartment”
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@=“0”
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@=“ShockwaveFlash.ShockwaveFlash.10”
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@=“c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11e.ocx, 1”
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@=”{D27CDB6B-AE6D-11cf-96B8-444553540000}”
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@=“1.0”
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@=“ShockwaveFlash.ShockwaveFlash”
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@=“Macromedia Flash Factory Object”
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@=“c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11e.ocx”
“ThreadingModel”=“Apartment”
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@=“FlashFactory.FlashFactory.1”
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@=“c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11e.ocx, 1”
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@=”{D27CDB6B-AE6D-11cf-96B8-444553540000}”
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@=“1.0”
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@=“FlashFactory.FlashFactory”
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
@Denied: (A 2) (Everyone)
@=“IFlashBroker4”
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
@=”{00020424-0000-0000-C000-000000000046}”
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
@=”{FAB3E735-69C7-453B-A446-B6823C6DF1C9}”
“Version”=“1.0”
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
————————————Andre kørende processer————————————
.
c:\program files (x86)\CyberLink\Shared files\RichVideo.exe
.
**************************************************************************
.
Gennemført tid: 2012-01-06 15:52:15 - maskinen blev genstartet
ComboFix-quarantined-files.txt 2012-01-06 14:52
.
Pre-Kørsel: 72.540.188.672 byte ledig
Post-Kørsel: 72.106.205.184 byte ledig
.
- - End Of File - - C0952D6CE4ED41C3B4F845502D9A8EA8

    [ Ignorer ]   [ # 9 ]   
  f-arn TeamSpywarefri
06.01.2012 22:36:07
Administrator
Team Spywarefri
Antal indlæg: 4202

Kommer der stadig med sirifef beskeden question

Start TDSSkiller igen.

Under “Change parameters”.

Sæt flueben ved ” Verify Driver Digital Signature” og “Detect TDLFS file system”

Prøv så igen.

Du må absolut IKKE fjerne noget her, da der er større risiko for falske positiver.

Send loggen herind.

Signatur

Undlad venligst at vedhæfte logs, medmindre du bliver bedt om det !

    [ Ignorer ]   [ # 10 ]   
  cljeppe
07.01.2012 10:40:12
Antal indlæg: 49

Hej igen, igen, igen ...

Advarslerne fra Microsoft Security Ess. er ophørt grin

Her er nyeste logfil:

09:35:48.0443 3784   TDSS rootkit removing tool 2.6.25.0 Dec 23 2011 14:51:16
09:35:48.0650 3784   ============================================================
09:35:48.0650 3784   Current date / time: 2012/01/07 09:35:48.0650
09:35:48.0650 3784   SystemInfo:
09:35:48.0650 3784  
09:35:48.0650 3784   OS Version: 6.1.7601 ServicePack: 1.0
09:35:48.0650 3784   Product type: Workstation
09:35:48.0650 3784   ComputerName: CARSTEN-PC
09:35:48.0651 3784   UserName: Carsten
09:35:48.0651 3784   Windows directory: C:\Windows
09:35:48.0651 3784   System windows directory: C:\Windows
09:35:48.0651 3784   Running under WOW64
09:35:48.0651 3784   Processor architecture: Intel x64
09:35:48.0651 3784   Number of processors: 8
09:35:48.0651 3784   Page size: 0x1000
09:35:48.0651 3784   Boot type: Normal boot
09:35:48.0651 3784   ============================================================
09:35:48.0998 3784   Initialize success
09:36:28.0553 4716   ============================================================
09:36:28.0553 4716   Scan started
09:36:28.0553 4716   Mode: Manual; SigCheck; TDLFS;
09:36:28.0553 4716   ============================================================
09:36:28.0657 4716   1394ohci     (a87d604aea360176311474c87a63bb88) C:\Windows\system32\DRIVERS\1394ohci.sys
09:36:28.0694 4716   1394ohci - ok
09:36:28.0714 4716   ACPI         (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys
09:36:28.0730 4716   ACPI - ok
09:36:28.0748 4716   AcpiPmi       (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys
09:36:28.0774 4716   AcpiPmi - ok
09:36:28.0797 4716   adp94xx       (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\drivers\adp94xx.sys
09:36:28.0814 4716   adp94xx - ok
09:36:28.0837 4716   adpahci       (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\drivers\adpahci.sys
09:36:28.0850 4716   adpahci - ok
09:36:28.0872 4716   adpu320       (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\drivers\adpu320.sys
09:36:28.0883 4716   adpu320 - ok
09:36:28.0914 4716   AF9035HB     (e66da823f0d9332d5b9e767b0bba2c36) C:\Windows\system32\Drivers\AF9035HB.sys
09:36:28.0937 4716   AF9035HB - ok
09:36:28.0961 4716   AFD         (d5b031c308a409a0a576bff4cf083d30) C:\Windows\system32\drivers\afd.sys
09:36:28.0979 4716   AFD - ok
09:36:28.0998 4716   agp440       (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys
09:36:29.0008 4716   agp440 - ok
09:36:29.0029 4716   aliide       (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys
09:36:29.0037 4716   aliide - ok
09:36:29.0056 4716   amdide       (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys
09:36:29.0065 4716   amdide - ok
09:36:29.0085 4716   AmdK8       (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\drivers\amdk8.sys
09:36:29.0098 4716   AmdK8 - ok
09:36:29.0116 4716   AmdPPM       (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\drivers\amdppm.sys
09:36:29.0128 4716   AmdPPM - ok
09:36:29.0147 4716   amdsata       (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\Windows\system32\drivers\amdsata.sys
09:36:29.0158 4716   amdsata - ok
09:36:29.0178 4716   amdsbs       (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\drivers\amdsbs.sys
09:36:29.0191 4716   amdsbs - ok
09:36:29.0208 4716   amdxata       (540daf1cea6094886d72126fd7c33048) C:\Windows\system32\drivers\amdxata.sys
09:36:29.0217 4716   amdxata - ok
09:36:29.0237 4716   AppID       (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys
09:36:29.0302 4716   AppID - ok
09:36:29.0324 4716   arc         (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\drivers\arc.sys
09:36:29.0334 4716   arc - ok
09:36:29.0353 4716   arcsas       (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\drivers\arcsas.sys
09:36:29.0364 4716   arcsas - ok
09:36:29.0383 4716   AsyncMac     (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
09:36:29.0451 4716   AsyncMac - ok
09:36:29.0471 4716   atapi       (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys
09:36:29.0479 4716   atapi - ok
09:36:29.0499 4716   AthBTPort     (aaae03f8eda817ec28c5445193ea8bf3) C:\Windows\system32\DRIVERS\btath_flt.sys
09:36:29.0509 4716   AthBTPort - ok
09:36:29.0528 4716   ATHDFU       (4ecc791539f23982411864037d1ac8fc) C:\Windows\system32\Drivers\AthDfu.sys
09:36:29.0546 4716   ATHDFU - ok
09:36:29.0574 4716   b06bdrv       (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\drivers\bxvbda.sys
09:36:29.0592 4716   b06bdrv - ok
09:36:29.0615 4716   b57nd60a     (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
09:36:29.0635 4716   b57nd60a - ok
09:36:29.0659 4716   Beep         (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
09:36:29.0696 4716   Beep - ok
09:36:29.0717 4716   blbdrive     (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
09:36:29.0728 4716   blbdrive - ok
09:36:29.0747 4716   bowser       (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys
09:36:29.0760 4716   bowser - ok
09:36:29.0779 4716   BrFiltLo     (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\drivers\BrFiltLo.sys
09:36:29.0792 4716   BrFiltLo - ok
09:36:29.0809 4716   BrFiltUp     (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\drivers\BrFiltUp.sys
09:36:29.0821 4716   BrFiltUp - ok
09:36:29.0840 4716   BridgeMP     (5c2f352a4e961d72518261257aae204b) C:\Windows\system32\DRIVERS\bridge.sys
09:36:29.0867 4716   BridgeMP - ok
09:36:29.0890 4716   Brserid       (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
09:36:29.0916 4716   Brserid - ok
09:36:29.0934 4716   BrSerWdm     (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
09:36:29.0960 4716   BrSerWdm - ok
09:36:29.0977 4716   BrUsbMdm     (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
09:36:29.0996 4716   BrUsbMdm - ok
09:36:30.0014 4716   BrUsbSer     (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
09:36:30.0027 4716   BrUsbSer - ok
09:36:30.0049 4716   BTATH_A2DP     (3b1b573371b206d1d5f25e0ef5fcd6d6) C:\Windows\system32\drivers\btath_a2dp.sys
09:36:30.0063 4716   BTATH_A2DP - ok
09:36:30.0081 4716   BTATH_BUS     (2d0446336d9db55a742b999ec16adf15) C:\Windows\system32\DRIVERS\btath_bus.sys
09:36:30.0089 4716   BTATH_BUS - ok
09:36:30.0109 4716   BTATH_HCRP     (9a9694bbeb2849eaf95dffcae5df02ad) C:\Windows\system32\DRIVERS\btath_hcrp.sys
09:36:30.0122 4716   BTATH_HCRP - ok
09:36:30.0140 4716   BTATH_LWFLT   (fc0a8075ddf2e9c66267aec91e0676f9) C:\Windows\system32\DRIVERS\btath_lwflt.sys
09:36:30.0150 4716   BTATH_LWFLT - ok
09:36:30.0170 4716   BTATH_RCP     (5eb4815cbddba4541f2380dae6e269ab) C:\Windows\system32\DRIVERS\btath_rcp.sys
09:36:30.0183 4716   BTATH_RCP - ok
09:36:30.0205 4716   BtFilter     (0ecede7b33cfd9a52a61220abbd09a50) C:\Windows\system32\DRIVERS\btfilter.sys
09:36:30.0218 4716   BtFilter - ok
09:36:30.0238 4716   BthEnum       (cf98190a94f62e405c8cb255018b2315) C:\Windows\system32\drivers\BthEnum.sys
09:36:30.0251 4716   BthEnum - ok
09:36:30.0269 4716   BTHMODEM     (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\drivers\bthmodem.sys
09:36:30.0283 4716   BTHMODEM - ok
09:36:30.0302 4716   BthPan       (02dd601b708dd0667e1331fa8518e9ff) C:\Windows\system32\DRIVERS\bthpan.sys
09:36:30.0318 4716   BthPan - ok
09:36:30.0341 4716   BTHPORT       (64c198198501f7560ee41d8d1efa7952) C:\Windows\System32\Drivers\BTHport.sys
09:36:30.0359 4716   BTHPORT - ok
09:36:30.0379 4716   BTHUSB       (f188b7394d81010767b6df3178519a37) C:\Windows\System32\Drivers\BTHUSB.sys
09:36:30.0391 4716   BTHUSB - ok
09:36:30.0393 4716   catchme - ok
09:36:30.0414 4716   cdfs         (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
09:36:30.0440 4716   cdfs - ok
09:36:30.0461 4716   cdrom       (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\DRIVERS\cdrom.sys
09:36:30.0476 4716   cdrom - ok
09:36:30.0496 4716   circlass     (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\drivers\circlass.sys
09:36:30.0509 4716   circlass - ok
09:36:30.0529 4716   CLFS         (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
09:36:30.0544 4716   CLFS - ok
09:36:30.0567 4716   CmBatt       (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\drivers\CmBatt.sys
09:36:30.0579 4716   CmBatt - ok
09:36:30.0597 4716   cmdide       (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys
09:36:30.0615 4716   cmdide - ok
09:36:30.0641 4716   CNG         (d5fea92400f12412b3922087c09da6a5) C:\Windows\system32\Drivers\cng.sys
09:36:30.0677 4716   CNG - ok
09:36:30.0697 4716   Compbatt     (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\drivers\compbatt.sys
09:36:30.0712 4716   Compbatt - ok
09:36:30.0731 4716   CompositeBus   (03edb043586cceba243d689bdda370a8) C:\Windows\system32\DRIVERS\CompositeBus.sys
09:36:30.0749 4716   CompositeBus - ok
09:36:30.0768 4716   crcdisk       (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\drivers\crcdisk.sys
09:36:30.0781 4716   crcdisk - ok
09:36:30.0807 4716   DfsC         (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys
09:36:30.0838 4716   DfsC - ok
09:36:30.0857 4716   discache     (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
09:36:30.0884 4716   discache - ok
09:36:30.0905 4716   Disk         (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\drivers\disk.sys
09:36:30.0915 4716   Disk - ok
09:36:30.0937 4716   drmkaud       (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
09:36:30.0950 4716   drmkaud - ok
09:36:30.0981 4716   DXGKrnl       (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys
09:36:31.0013 4716   DXGKrnl - ok
09:36:31.0035 4716   e1cexpress     (6bafd9819d9fec2edbaebc8493c711a4) C:\Windows\system32\DRIVERS\e1c62x64.sys
09:36:31.0046 4716   e1cexpress - ok
09:36:31.0095 4716   ebdrv       (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\drivers\evbda.sys
09:36:31.0141 4716   ebdrv - ok
09:36:31.0169 4716   elxstor       (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\drivers\elxstor.sys
09:36:31.0187 4716   elxstor - ok
09:36:31.0206 4716   ErrDev       (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys
09:36:31.0218 4716   ErrDev - ok
09:36:31.0242 4716   exfat       (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
09:36:31.0271 4716   exfat - ok
09:36:31.0292 4716   fastfat       (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
09:36:31.0320 4716   fastfat - ok
09:36:31.0338 4716   fdc         (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\drivers\fdc.sys
09:36:31.0351 4716   fdc - ok
09:36:31.0371 4716   FileInfo     (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
09:36:31.0382 4716   FileInfo - ok
09:36:31.0401 4716   Filetrace     (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
09:36:31.0427 4716   Filetrace - ok
09:36:31.0445 4716   flpydisk     (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\drivers\flpydisk.sys
09:36:31.0456 4716   flpydisk - ok
09:36:31.0477 4716   FltMgr       (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys
09:36:31.0491 4716   FltMgr - ok
09:36:31.0510 4716   FsDepends     (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
09:36:31.0520 4716   FsDepends - ok
09:36:31.0539 4716   Fs_Rec       (e95ef8547de20cf0603557c0cf7a9462) C:\Windows\system32\drivers\Fs_Rec.sys
09:36:31.0548 4716   Fs_Rec - ok
09:36:31.0568 4716   fvevol       (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys
09:36:31.0582 4716   fvevol - ok
09:36:31.0600 4716   gagp30kx     (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\drivers\gagp30kx.sys
09:36:31.0615 4716   gagp30kx - ok
09:36:31.0637 4716   grmnusb       (2ed7ff3e1ada4092632393781518b3a7) C:\Windows\system32\drivers\grmnusb.sys
09:36:31.0648 4716   grmnusb - ok
09:36:31.0666 4716   hcw85cir     (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
09:36:31.0680 4716   hcw85cir - ok
09:36:31.0703 4716   HdAudAddService (975761c778e33cd22498059b91e7373a) C:\Windows\system32\drivers\HdAudio.sys
09:36:31.0721 4716   HdAudAddService - ok
09:36:31.0740 4716   HDAudBus     (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\DRIVERS\HDAudBus.sys
09:36:31.0754 4716   HDAudBus - ok
09:36:31.0773 4716   HidBatt       (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\drivers\HidBatt.sys
09:36:31.0785 4716   HidBatt - ok
09:36:31.0805 4716   HidBth       (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\drivers\hidbth.sys
09:36:31.0819 4716   HidBth - ok
09:36:31.0839 4716   HidIr       (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\drivers\hidir.sys
09:36:31.0857 4716   HidIr - ok
09:36:31.0880 4716   HidUsb       (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\DRIVERS\hidusb.sys
09:36:31.0894 4716   HidUsb - ok
09:36:31.0917 4716   HpSAMD       (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys
09:36:31.0928 4716   HpSAMD - ok
09:36:31.0955 4716   HTTP         (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys
09:36:31.0995 4716   HTTP - ok
09:36:32.0014 4716   hwpolicy     (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys
09:36:32.0022 4716   hwpolicy - ok
09:36:32.0043 4716   i8042prt     (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\DRIVERS\i8042prt.sys
09:36:32.0056 4716   i8042prt - ok
09:36:32.0080 4716   iaStorV       (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\Windows\system32\drivers\iaStorV.sys
09:36:32.0106 4716   iaStorV - ok
09:36:32.0127 4716   iirsp       (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\drivers\iirsp.sys
09:36:32.0145 4716   iirsp - ok
09:36:32.0193 4716   IntcAzAudAddService (dab7318ccfa8081200d5b7b486793f74) C:\Windows\system32\drivers\RTKVHD64.sys
09:36:32.0229 4716   IntcAzAudAddService - ok
09:36:32.0248 4716   intelide     (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys
09:36:32.0257 4716   intelide - ok
09:36:32.0276 4716   intelppm     (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
09:36:32.0288 4716   intelppm - ok
09:36:32.0310 4716   IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys
09:36:32.0335 4716   IpFilterDriver - ok
09:36:32.0355 4716   IPMIDRV       (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys
09:36:32.0368 4716   IPMIDRV - ok
09:36:32.0388 4716   IPNAT       (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
09:36:32.0415 4716   IPNAT - ok
09:36:32.0433 4716   IRENUM       (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
09:36:32.0467 4716   IRENUM - ok
09:36:32.0485 4716   isapnp       (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys
09:36:32.0498 4716   isapnp - ok
09:36:32.0519 4716   iScsiPrt     (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys
09:36:32.0536 4716   iScsiPrt - ok
09:36:32.0555 4716   JRAID       (a577f5db30f70eca9708c07c2eacbd9d) C:\Windows\system32\DRIVERS\jraid.sys
09:36:32.0567 4716   JRAID - ok
09:36:32.0586 4716   kbdclass     (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\DRIVERS\kbdclass.sys
09:36:32.0595 4716   kbdclass - ok
09:36:32.0614 4716   kbdhid       (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\DRIVERS\kbdhid.sys
09:36:32.0627 4716   kbdhid - ok
09:36:32.0646 4716   KSecDD       (ccd53b5bd33ce0c889e830d839c8b66e) C:\Windows\system32\Drivers\ksecdd.sys
09:36:32.0657 4716   KSecDD - ok
09:36:32.0675 4716   KSecPkg       (9ff918a261752c12639e8ad4208d2c2f) C:\Windows\system32\Drivers\ksecpkg.sys
09:36:32.0687 4716   KSecPkg - ok
09:36:32.0706 4716   ksthunk       (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
09:36:32.0732 4716   ksthunk - ok
09:36:32.0756 4716   lltdio       (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
09:36:32.0782 4716   lltdio - ok
09:36:32.0804 4716   LSI_FC       (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\drivers\lsi_fc.sys
09:36:32.0814 4716   LSI_FC - ok
09:36:32.0834 4716   LSI_SAS       (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\drivers\lsi_sas.sys
09:36:32.0845 4716   LSI_SAS - ok
09:36:32.0865 4716   LSI_SAS2     (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\drivers\lsi_sas2.sys
09:36:32.0874 4716   LSI_SAS2 - ok
09:36:32.0895 4716   LSI_SCSI     (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\drivers\lsi_scsi.sys
09:36:32.0906 4716   LSI_SCSI - ok
09:36:32.0925 4716   luafv       (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
09:36:32.0952 4716   luafv - ok
09:36:32.0974 4716   MarvinBus     (024da28053d57e9e32bee52600576bbb) C:\Windows\system32\DRIVERS\MarvinBus64.sys
09:36:32.0989 4716   MarvinBus - ok
09:36:33.0007 4716   megasas       (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\drivers\megasas.sys
09:36:33.0017 4716   megasas - ok
09:36:33.0038 4716   MegaSR       (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\drivers\MegaSR.sys
09:36:33.0052 4716   MegaSR - ok
09:36:33.0069 4716   MEIx64       (a6518dcc42f7a6e999bb3bea8fd87567) C:\Windows\system32\DRIVERS\HECIx64.sys
09:36:33.0079 4716   MEIx64 - ok
09:36:33.0100 4716   Modem       (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
09:36:33.0125 4716   Modem - ok
09:36:33.0144 4716   monitor       (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
09:36:33.0157 4716   monitor - ok
09:36:33.0178 4716   mouclass     (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
09:36:33.0187 4716   mouclass - ok
09:36:33.0206 4716   mouhid       (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
09:36:33.0218 4716   mouhid - ok
09:36:33.0238 4716   mountmgr     (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys
09:36:33.0249 4716   mountmgr - ok
09:36:33.0270 4716   MpFilter     (c177a7ebf5e8a0b596f618870516cab8) C:\Windows\system32\DRIVERS\MpFilter.sys
09:36:33.0282 4716   MpFilter - ok
09:36:33.0303 4716   mpio         (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys
09:36:33.0315 4716   mpio - ok
09:36:33.0335 4716   MpNWMon       (8fbf6b31fe8af1833d93c5913d5b4d55) C:\Windows\system32\DRIVERS\MpNWMon.sys
09:36:33.0344 4716   MpNWMon - ok
09:36:33.0364 4716   mpsdrv       (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
09:36:33.0390 4716   mpsdrv - ok
09:36:33.0410 4716   MRxDAV       (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys
09:36:33.0426 4716   MRxDAV - ok
09:36:33.0448 4716   mrxsmb       (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys
09:36:33.0462 4716   mrxsmb - ok
09:36:33.0482 4716   mrxsmb10     (d711b3c1d5f42c0c2415687be09fc163) C:\Windows\system32\DRIVERS\mrxsmb10.sys
09:36:33.0496 4716   mrxsmb10 - ok
09:36:33.0514 4716   mrxsmb20     (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
09:36:33.0526 4716   mrxsmb20 - ok
09:36:33.0545 4716   msahci       (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys
09:36:33.0554 4716   msahci - ok
09:36:33.0574 4716   msdsm       (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys
09:36:33.0585 4716   msdsm - ok
09:36:33.0607 4716   Msfs         (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
09:36:33.0632 4716   Msfs - ok
09:36:33.0651 4716   mshidkmdf     (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
09:36:33.0675 4716   mshidkmdf - ok
09:36:33.0694 4716   msisadrv     (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys
09:36:33.0703 4716   msisadrv - ok
09:36:33.0724 4716   MSKSSRV       (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
09:36:33.0750 4716   MSKSSRV - ok
09:36:33.0770 4716   MSPCLOCK     (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
09:36:33.0795 4716   MSPCLOCK - ok
09:36:33.0813 4716   MSPQM       (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
09:36:33.0838 4716   MSPQM - ok
09:36:33.0859 4716   MsRPC       (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys
09:36:33.0873 4716   MsRPC - ok
09:36:33.0894 4716   mssmbios     (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\DRIVERS\mssmbios.sys
09:36:33.0902 4716   mssmbios - ok
09:36:33.0923 4716   MSTEE       (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
09:36:33.0947 4716   MSTEE - ok
09:36:33.0966 4716   MTConfig     (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\drivers\MTConfig.sys
09:36:33.0977 4716   MTConfig - ok
09:36:33.0997 4716   Mup         (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
09:36:34.0006 4716   Mup - ok
09:36:34.0029 4716   mv91xx       (38b4c95e821528fb91df16a78e04450f) C:\Windows\system32\DRIVERS\mv91xx.sys
09:36:34.0042 4716   mv91xx - ok
09:36:34.0064 4716   NativeWifiP   (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
09:36:34.0083 4716   NativeWifiP - ok
09:36:34.0113 4716   NDIS         (79b47fd40d9a817e932f9d26fac0a81c) C:\Windows\system32\drivers\ndis.sys
09:36:34.0140 4716   NDIS - ok
09:36:34.0160 4716   NdisCap       (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
09:36:34.0184 4716   NdisCap - ok
09:36:34.0204 4716   NdisTapi     (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
09:36:34.0229 4716   NdisTapi - ok
09:36:34.0247 4716   Ndisuio       (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys
09:36:34.0271 4716   Ndisuio - ok
09:36:34.0292 4716   NdisWan       (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys
09:36:34.0319 4716   NdisWan - ok
09:36:34.0339 4716   NDProxy       (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys
09:36:34.0364 4716   NDProxy - ok
09:36:34.0383 4716   NetBIOS       (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
09:36:34.0409 4716   NetBIOS - ok
09:36:34.0430 4716   NetBT       (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys
09:36:34.0458 4716   NetBT - ok
09:36:34.0482 4716   nfrd960       (77889813be4d166cdab78ddba990da92) C:\Windows\system32\drivers\nfrd960.sys
09:36:34.0492 4716   nfrd960 - ok
09:36:34.0511 4716   NisDrv       (5f7d72cbcdd025af1f38fdeee5646968) C:\Windows\system32\DRIVERS\NisDrvWFP.sys
09:36:34.0520 4716   NisDrv - ok
09:36:34.0544 4716   Npfs         (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
09:36:34.0569 4716   Npfs - ok
09:36:34.0589 4716   nsiproxy     (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
09:36:34.0613 4716   nsiproxy - ok
09:36:34.0654 4716   Ntfs         (a2f74975097f52a00745f9637451fdd8) C:\Windows\system32\drivers\Ntfs.sys
09:36:34.0694 4716   Ntfs - ok
09:36:34.0713 4716   NuidFltr     (d1a29d9a01bb90091847a802793576d6) C:\Windows\system32\DRIVERS\NuidFltr.sys
09:36:34.0721 4716   NuidFltr - ok
09:36:34.0749 4716   Null         (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
09:36:34.0790 4716   Null - ok
09:36:34.0810 4716   nusb3hub     (158ad24745bd85ba9be3c51c38f48c32) C:\Windows\system32\DRIVERS\nusb3hub.sys
09:36:34.0821 4716   nusb3hub - ok
09:36:34.0842 4716   nusb3xhc     (d40a13b2c0891e218f9523b376955db6) C:\Windows\system32\DRIVERS\nusb3xhc.sys
09:36:34.0863 4716   nusb3xhc - ok
09:36:34.0885 4716   NVHDA       (10204955027011e08a9dc27737a48a54) C:\Windows\system32\drivers\nvhda64v.sys
09:36:34.0906 4716   NVHDA - ok
09:36:35.0048 4716   nvlddmkm     (b15258b1f45f9571758ac6bb2f043b01) C:\Windows\system32\DRIVERS\nvlddmkm.sys
09:36:35.0610 4716   nvlddmkm - ok
09:36:35.0629 4716   nvraid       (0a92cb65770442ed0dc44834632f66ad) C:\Windows\system32\drivers\nvraid.sys
09:36:35.0640 4716   nvraid - ok
09:36:35.0662 4716   nvstor       (dab0e87525c10052bf65f06152f37e4a) C:\Windows\system32\drivers\nvstor.sys
09:36:35.0674 4716   nvstor - ok
09:36:35.0697 4716   nv_agp       (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys
09:36:35.0709 4716   nv_agp - ok
09:36:35.0729 4716   ohci1394     (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys
09:36:35.0742 4716   ohci1394 - ok
09:36:35.0765 4716   Parport       (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\drivers\parport.sys
09:36:35.0777 4716   Parport - ok
09:36:35.0796 4716   partmgr       (871eadac56b0a4c6512bbe32753ccf79) C:\Windows\system32\drivers\partmgr.sys
09:36:35.0807 4716   partmgr - ok
09:36:35.0829 4716   pci         (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys
09:36:35.0841 4716   pci - ok
09:36:35.0860 4716   pciide       (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys
09:36:35.0868 4716   pciide - ok
09:36:35.0887 4716   pcmcia       (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\drivers\pcmcia.sys
09:36:35.0900 4716   pcmcia - ok
09:36:35.0920 4716   pcouffin     (af7ce12c4f3dc8cb2b07685c916bbcfe) C:\Windows\system32\Drivers\pcouffin.sys
09:36:35.0934 4716   pcouffin - ok
09:36:35.0953 4716   pcw         (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
09:36:35.0963 4716   pcw - ok
09:36:35.0992 4716   PEAUTH       (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
09:36:36.0038 4716   PEAUTH - ok
09:36:36.0072 4716   PptpMiniport   (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys
09:36:36.0098 4716   PptpMiniport - ok
09:36:36.0118 4716   Processor     (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\drivers\processr.sys
09:36:36.0131 4716   Processor - ok
09:36:36.0155 4716   Psched       (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys
09:36:36.0180 4716   Psched - ok
09:36:36.0204 4716   PSI         (fb46e9a827a8799ebd7bfa9128c91f37) C:\Windows\system32\DRIVERS\psi_mf.sys
09:36:36.0213 4716   PSI - ok
09:36:36.0247 4716   ql2300       (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\drivers\ql2300.sys
09:36:36.0276 4716   ql2300 - ok
09:36:36.0296 4716   ql40xx       (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\drivers\ql40xx.sys
09:36:36.0307 4716   ql40xx - ok
09:36:36.0327 4716   QWAVEdrv     (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
09:36:36.0342 4716   QWAVEdrv - ok
09:36:36.0361 4716   RasAcd       (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
09:36:36.0386 4716   RasAcd - ok
09:36:36.0406 4716   RasAgileVpn   (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
09:36:36.0431 4716   RasAgileVpn - ok
09:36:36.0452 4716   Rasl2tp       (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys
09:36:36.0478 4716   Rasl2tp - ok
09:36:36.0500 4716   RasPppoe     (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
09:36:36.0526 4716   RasPppoe - ok
09:36:36.0545 4716   RasSstp       (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
09:36:36.0570 4716   RasSstp - ok
09:36:36.0592 4716   rdbss       (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys
09:36:36.0620 4716   rdbss - ok
09:36:36.0639 4716   rdpbus       (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\drivers\rdpbus.sys
09:36:36.0653 4716   rdpbus - ok
09:36:36.0670 4716   RDPCDD       (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
09:36:36.0694 4716   RDPCDD - ok
09:36:36.0713 4716   RDPENCDD     (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
09:36:36.0737 4716   RDPENCDD - ok
09:36:36.0757 4716   RDPREFMP     (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
09:36:36.0780 4716   RDPREFMP - ok
09:36:36.0801 4716   RDPWD       (15b66c206b5cb095bab980553f38ed23) C:\Windows\system32\drivers\RDPWD.sys
09:36:36.0828 4716   RDPWD - ok
09:36:36.0849 4716   rdyboost     (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys
09:36:36.0862 4716   rdyboost - ok
09:36:36.0885 4716   RFCOMM       (3dd798846e2c28102b922c56e71b7932) C:\Windows\system32\DRIVERS\rfcomm.sys
09:36:36.0900 4716   RFCOMM - ok
09:36:36.0923 4716   rspndr       (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
09:36:36.0949 4716   rspndr - ok
09:36:36.0973 4716   RTL8167       (ee082e06a82ff630351d1e0ebbd3d8d0) C:\Windows\system32\DRIVERS\Rt64win7.sys
09:36:36.0987 4716   RTL8167 - ok
09:36:36.0995 4716   SASDIFSV     (a3281aec37e0720a2bc28034c2df2a56) C:\Program Files (x86)\SUPERAntiSpyware\SASDIFSV.SYS
09:36:37.0014 4716   SASDIFSV - ok
09:36:37.0020 4716   SASENUM       (7ce61c25c159f50f9eaf6d77fc83fa35) C:\Program Files (x86)\SUPERAntiSpyware\SASENUM.SYS
09:36:37.0029 4716   SASENUM - ok
09:36:37.0035 4716   SASKUTIL     (61db0d0756a99506207fd724e3692b25) C:\Program Files (x86)\SUPERAntiSpyware\SASKUTIL.sys
09:36:37.0048 4716   SASKUTIL - ok
09:36:37.0068 4716   sbp2port     (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys
09:36:37.0079 4716   sbp2port - ok
09:36:37.0100 4716   scfilter     (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys
09:36:37.0124 4716   scfilter - ok
09:36:37.0145 4716   secdrv       (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
09:36:37.0170 4716   secdrv - ok
09:36:37.0195 4716   Serenum       (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
09:36:37.0206 4716   Serenum - ok
09:36:37.0226 4716   Serial       (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
09:36:37.0238 4716   Serial - ok
09:36:37.0255 4716   sermouse     (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\drivers\sermouse.sys
09:36:37.0266 4716   sermouse - ok
09:36:37.0288 4716   sffdisk       (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys
09:36:37.0301 4716   sffdisk - ok
09:36:37.0320 4716   sffp_mmc     (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys
09:36:37.0333 4716   sffp_mmc - ok
09:36:37.0351 4716   sffp_sd       (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\drivers\sffp_sd.sys
09:36:37.0365 4716   sffp_sd - ok
09:36:37.0384 4716   sfloppy       (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\drivers\sfloppy.sys
09:36:37.0395 4716   sfloppy - ok
09:36:37.0417 4716   SiSRaid2     (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\drivers\SiSRaid2.sys
09:36:37.0427 4716   SiSRaid2 - ok
09:36:37.0446 4716   SiSRaid4     (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\drivers\sisraid4.sys
09:36:37.0456 4716   SiSRaid4 - ok
09:36:37.0477 4716   Smb         (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
09:36:37.0503 4716   Smb - ok
09:36:37.0525 4716   spldr       (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
09:36:37.0534 4716   spldr - ok
09:36:37.0562 4716   srv         (441fba48bff01fdb9d5969ebc1838f0b) C:\Windows\system32\DRIVERS\srv.sys
09:36:37.0581 4716   srv - ok
09:36:37.0605 4716   srv2         (b4adebbf5e3677cce9651e0f01f7cc28) C:\Windows\system32\DRIVERS\srv2.sys
09:36:37.0622 4716   srv2 - ok
09:36:37.0643 4716   srvnet       (27e461f0be5bff5fc737328f749538c3) C:\Windows\system32\DRIVERS\srvnet.sys
09:36:37.0657 4716   srvnet - ok
09:36:37.0680 4716   stexstor     (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\drivers\stexstor.sys
09:36:37.0689 4716   stexstor - ok
09:36:37.0708 4716   swenum       (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\DRIVERS\swenum.sys
09:36:37.0717 4716   swenum - ok
09:36:37.0764 4716   Tcpip       (fc62769e7bff2896035aeed399108162) C:\Windows\system32\drivers\tcpip.sys
09:36:37.0809 4716   Tcpip - ok
09:36:37.0857 4716   TCPIP6       (fc62769e7bff2896035aeed399108162) C:\Windows\system32\DRIVERS\tcpip.sys
09:36:37.0894 4716   TCPIP6 - ok
09:36:37.0913 4716   tcpipreg     (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys
09:36:37.0938 4716   tcpipreg - ok
09:36:37.0958 4716   TDPIPE       (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
09:36:37.0983 4716   TDPIPE - ok
09:36:38.0002 4716   TDTCP       (e4245bda3190a582d55ed09e137401a9) C:\Windows\system32\drivers\tdtcp.sys
09:36:38.0027 4716   TDTCP - ok
09:36:38.0047 4716   tdx         (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys
09:36:38.0072 4716   tdx - ok
09:36:38.0092 4716   TermDD       (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\DRIVERS\termdd.sys
09:36:38.0102 4716   TermDD - ok
09:36:38.0126 4716   tssecsrv     (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys
09:36:38.0150 4716   tssecsrv - ok
09:36:38.0171 4716   TsUsbFlt     (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys
09:36:38.0184 4716   TsUsbFlt - ok
09:36:38.0201 4716   TsUsbGD       (9cc2ccae8a84820eaecb886d477cbcb8) C:\Windows\system32\drivers\TsUsbGD.sys
09:36:38.0212 4716   TsUsbGD - ok
09:36:38.0233 4716   tunnel       (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys
09:36:38.0260 4716   tunnel - ok
09:36:38.0280 4716   uagp35       (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\drivers\uagp35.sys
09:36:38.0291 4716   uagp35 - ok
09:36:38.0313 4716   udfs         (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys
09:36:38.0342 4716   udfs - ok
09:36:38.0365 4716   uliagpkx     (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys
09:36:38.0375 4716   uliagpkx - ok
09:36:38.0393 4716   umbus       (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\DRIVERS\umbus.sys
09:36:38.0405 4716   umbus - ok
09:36:38.0424 4716   UmPass       (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\drivers\umpass.sys
09:36:38.0435 4716   UmPass - ok
09:36:38.0456 4716   usbaudio     (82e8f44688e6fac57b5b7c6fc7adbc2a) C:\Windows\system32\drivers\usbaudio.sys
09:36:38.0472 4716   usbaudio - ok
09:36:38.0492 4716   usbccgp       (6f1a3157a1c89435352ceb543cdb359c) C:\Windows\system32\DRIVERS\usbccgp.sys
09:36:38.0506 4716   usbccgp - ok
09:36:38.0525 4716   usbcir       (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys
09:36:38.0541 4716   usbcir - ok
09:36:38.0561 4716   usbehci       (c025055fe7b87701eb042095df1a2d7b) C:\Windows\system32\drivers\usbehci.sys
09:36:38.0572 4716   usbehci - ok
09:36:38.0595 4716   usbhub       (287c6c9410b111b68b52ca298f7b8c24) C:\Windows\system32\DRIVERS\usbhub.sys
09:36:38.0611 4716   usbhub - ok
09:36:38.0630 4716   usbohci       (9840fc418b4cbd632d3d0a667a725c31) C:\Windows\system32\drivers\usbohci.sys
09:36:38.0642 4716   usbohci - ok
09:36:38.0660 4716   usbprint     (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
09:36:38.0673 4716   usbprint - ok
09:36:38.0693 4716   usbscan       (aaa2513c8aed8b54b189fd0c6b1634c0) C:\Windows\system32\DRIVERS\usbscan.sys
09:36:38.0706 4716   usbscan - ok
09:36:38.0724 4716   USBSTOR       (fed648b01349a3c8395a5169db5fb7d6) C:\Windows\system32\DRIVERS\USBSTOR.SYS
09:36:38.0736 4716   USBSTOR - ok
09:36:38.0756 4716   usbuhci       (62069a34518bcf9c1fd9e74b3f6db7cd) C:\Windows\system32\drivers\usbuhci.sys
09:36:38.0767 4716   usbuhci - ok
09:36:38.0789 4716   vdrvroot     (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys
09:36:38.0798 4716   vdrvroot - ok
09:36:38.0818 4716   vga         (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
09:36:38.0830 4716   vga - ok
09:36:38.0849 4716   VgaSave       (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
09:36:38.0874 4716   VgaSave - ok
09:36:38.0895 4716   vhdmp       (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys
09:36:38.0908 4716   vhdmp - ok
09:36:38.0926 4716   viaide       (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys
09:36:38.0936 4716   viaide - ok
09:36:38.0955 4716   volmgr       (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys
09:36:38.0966 4716   volmgr - ok
09:36:38.0987 4716   volmgrx       (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys
09:36:39.0002 4716   volmgrx - ok
09:36:39.0023 4716   volsnap       (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys
09:36:39.0037 4716   volsnap - ok
09:36:39.0056 4716   vsmraid       (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\drivers\vsmraid.sys
09:36:39.0067 4716   vsmraid - ok
09:36:39.0088 4716   vwifibus     (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\System32\drivers\vwifibus.sys
09:36:39.0101 4716   vwifibus - ok
09:36:39.0122 4716   WacomPen     (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\drivers\wacompen.sys
09:36:39.0135 4716   WacomPen - ok
09:36:39.0155 4716   WANARP       (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
09:36:39.0181 4716   WANARP - ok
09:36:39.0183 4716   Wanarpv6     (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
09:36:39.0208 4716   Wanarpv6 - ok
09:36:39.0233 4716   Wd         (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\drivers\wd.sys
09:36:39.0242 4716   Wd - ok
09:36:39.0270 4716   Wdf01000     (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
09:36:39.0288 4716   Wdf01000 - ok
09:36:39.0312 4716   WfpLwf       (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
09:36:39.0337 4716   WfpLwf - ok
09:36:39.0357 4716   WIMMount     (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
09:36:39.0367 4716   WIMMount - ok
09:36:39.0395 4716   WmiAcpi       (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\DRIVERS\wmiacpi.sys
09:36:39.0406 4716   WmiAcpi - ok
09:36:39.0431 4716   ws2ifsl       (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
09:36:39.0454 4716   ws2ifsl - ok
09:36:39.0479 4716   WudfPf       (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys
09:36:39.0505 4716   WudfPf - ok
09:36:39.0526 4716   WUDFRd       (cf8d590be3373029d57af80914190682) C:\Windows\system32\DRIVERS\WUDFRd.sys
09:36:39.0553 4716   WUDFRd - ok
09:36:39.0560 4716   MBR (0x1B8)    (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
09:36:39.0574 4716   \Device\Harddisk0\DR0 - ok
09:36:39.0575 4716   MBR (0x1B8)    (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk1\DR1
09:36:39.0623 4716   \Device\Harddisk1\DR1 - ok
09:36:39.0626 4716   Boot (0x1200)  (37122800d238782e2a545186655f18c7) \Device\Harddisk0\DR0\Partition0
09:36:39.0627 4716   \Device\Harddisk0\DR0\Partition0 - ok
09:36:39.0631 4716   Boot (0x1200)  (9fe2221e5da22a906f591cfd3df79390) \Device\Harddisk0\DR0\Partition1
09:36:39.0632 4716   \Device\Harddisk0\DR0\Partition1 - ok
09:36:39.0636 4716   Boot (0x1200)  (f900b7ef93d297fa3325e2f6664f6250) \Device\Harddisk1\DR1\Partition0
09:36:39.0636 4716   \Device\Harddisk1\DR1\Partition0 - ok
09:36:39.0638 4716   ============================================================
09:36:39.0638 4716   Scan finished
09:36:39.0638 4716   ============================================================
09:36:39.0652 4116   Detected object count: 0
09:36:39.0652 4116   Actual detected object count: 0

    [ Ignorer ]   [ # 11 ]   
  f-arn TeamSpywarefri
07.01.2012 12:44:46
Administrator
Team Spywarefri
Antal indlæg: 4202

Fint grin

Vil du godt opdatere Malwarebytes, køre en hurtig scanning med den, og kopiere loggen herind.

———

Hent Security Check af screen317
Start den og følg instruktionerne.
Kopier loggen herind.

Signatur

Undlad venligst at vedhæfte logs, medmindre du bliver bedt om det !

    [ Ignorer ]   [ # 12 ]   
  cljeppe
07.01.2012 13:17:32
Antal indlæg: 49

2 nye logs at læse i,

Malwarebytes Anti-Malware 1.60.0.1800
http://www.malwarebytes.org

Database version: v2012.01.07.01

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
Carsten :: CARSTEN-PC [administrator]

07-01-2012 12:06:09
mbam-log-2012-01-07 (12-06-09).txt

Skanningstype: Hurtig skanning
Skanningsmuligheder valgt: Hukommelse | Opstart | Registreringsdatabasen | Filsystem | Heuristics/Ekstra | Heuristics/Shuriken | PUP | PUM
Skanningsmuligheder som er deaktiverede: P2P
Objekter skannet: 194295
Tid gået: 1 minut(ter), 7 sekund(er)

Hukommelses Processorer Inficeret: 0
(Ingen skadelige objekter blev fundet)

Hukommelses Moduler Inficeret: 0
(Ingen skadelige objekter blev fundet)

Registreringsdatabasenøgler Inficeret: 0
(Ingen skadelige objekter blev fundet)

Registreringsdatabaseværdier Inficeret: 0
(Ingen skadelige objekter blev fundet)

Registreringsdatabasedata Objekter Inficeret: 0
(Ingen skadelige objekter blev fundet)

Inficerede Mapper: 0
(Ingen skadelige objekter blev fundet)

Inficerede Filer: 0
(Ingen skadelige objekter blev fundet)

(færdig)


Results of screen317’s Security Check version 0.99.30
Windows 7 x64 (UAC is enabled) 
Internet Explorer 9
``````````````````````````````
Antivirus/Firewall Check:
ESET Online Scanner v3  
WMI entry may not exist for antivirus; attempting automatic update.
```````````````````````````````
Anti-malware/Other Utilities Check:
SUPERAntiSpyware Professional  
Secunia PSI (2.0.0.4003) 
Java(TM) 6 Update 30
Mozilla Firefox (9.0.1)
````````````````````````````````
Process Check: 
objlist.exe by Laurent
Windows Defender MSMpEng.exe
Microsoft Security Client Antimalware MsMpEng.exe
Microsoft Security Client Antimalware NisSrv.exe
Microsoft Security Client Antimalware MpCmdRun.exe
FireTrust MailWasher MailWasherPro.exe
``````````End of Log````````````

    [ Ignorer ]   [ # 13 ]   
  f-arn TeamSpywarefri
07.01.2012 14:31:06
Administrator
Team Spywarefri
Antal indlæg: 4202

Det ser fint ud, men hvordan kører PCen question

Signatur

Undlad venligst at vedhæfte logs, medmindre du bliver bedt om det !

    [ Ignorer ]   [ # 14 ]   
  cljeppe
07.01.2012 15:18:47
Antal indlæg: 49

Den virker OK nu, som da den ankom kort før jul, - ingen advarselsskilte.

Er der nogle af de nedtagne rense programmer, der med fordel kan bibeholdes.

Kom også til at tænke på, om der er noget med gendannelsespunkter, der bør slettes el. lign.?

En efterhånden både taknemmelig og imponeret

Carsten.

    [ Ignorer ]   [ # 15 ]   
  f-arn TeamSpywarefri
07.01.2012 15:39:31
Administrator
Team Spywarefri
Antal indlæg: 4202

Er der nogle af de nedtagne rense programmer, der med fordel kan bibeholdes.

Du kan beholde Malwarebytes Free, men husk at opdatere før du scanner!

———

Tast <Windows> + <R> samtidig og kopier dette ind: combofix /uninstall
Tryk enter
Det vil fjerne Combofix og nulstille urets indstillinger.
Nulstille systemgendannelsen.
Skjule filtypenavne hvis det kræves.
Skjule System/skjulte filer hvis det kræves.

———

Start OTL og klik på CleanUp

Det vil fjerne OTL, og andre værktøjer vi har brugt.

Vil du godt melde tilbage, når det er gjort, så vi kan lukke tråden ordentligt.

Signatur

Undlad venligst at vedhæfte logs, medmindre du bliver bedt om det !

 
‹‹ Mistanke om snavs på computer     problem med helt ny computer ››
 
Om os | Kontakt os
Copyright © 2003-2010 Spywarefri - Alle rettigheder haves