Inactive Malware check please

[aldimeola1122]

i have Zapaxker.sys error

Can you please test?


1.te :

Malwarebytes' Anti-Malware 1.50.1.1100
www.malwarebytes.org

Datenbank Version: 5532

Windows 6.1.7600
Internet Explorer 8.0.7600.16385

16.01.2011 18:51:16
mbam-log-2011-01-16 (18-51-16).txt

Art des Suchlaufs: Quick-Scan
Durchsuchte Objekte: 167165
Laufzeit: 4 Minute(n), 22 Sekunde(n)

Infizierte Speicherprozesse: 0
Infizierte Speichermodule: 0
Infizierte Registrierungsschlüssel: 0
Infizierte Registrierungswerte: 0
Infizierte Dateiobjekte der Registrierung: 0
Infizierte Verzeichnisse: 0
Infizierte Dateien: 0

Infizierte Speicherprozesse:
(Keine bösartigen Objekte gefunden)

Infizierte Speichermodule:
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungsschlüssel:
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungswerte:
(Keine bösartigen Objekte gefunden)

Infizierte Dateiobjekte der Registrierung:
(Keine bösartigen Objekte gefunden)

Infizierte Verzeichnisse:
(Keine bösartigen Objekte gefunden)

Infizierte Dateien:
(Keine bösartigen Objekte gefunden)


----------------------------
DDS


DDS (Ver_10-12-12.02) - NTFS_AMD64
Run by BABACAN at 19:59:01,05 on 16.01.2011
Internet Explorer: 8.0.7600.16385
Microsoft Windows 7 Professional 6.1.7600.0.1252.49.1031.18.1908.715 [GMT 1:00]

AV: McAfee Anti-Virus und Anti-Spyware *Enabled/Updated* {86355677-4064-3EA7-ABB3-1B136EB04637}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: McAfee Anti-Virus und Anti-Spyware *Enabled/Updated* {3D54B793-665E-3129-9103-206115370C8A}
FW: McAfee Firewall *Enabled* {BE0ED752-0A0B-3FFF-80EC-B2269063014C}

============== Running Processes ===============

C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\ibmpmsvc.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\WUDFHost.exe
C:\Windows\system32\svchost.exe -k NetworkService
C:\Program Files\ThinkVantage Fingerprint Software\upeksvr.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\WLANExt.exe
C:\Windows\system32\conhost.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k WbioSvcGroup
C:\Program Files\LENOVO\HOTKEY\TPHKLOAD.exe
C:\Program Files\LENOVO\HOTKEY\TPHKSVC.exe
C:\Program Files (x86)\Lenovo\Access Connections\AcPrfMgrSvc.exe
C:\Program Files\ThinkPad\Bluetooth Software\btwdins.exe
C:\Program Files (x86)\Common Files\InterVideo\DeviceService\DevSvc.exe
C:\ProgramData\DatacardService\DCService.exe
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\Program Files\Lenovo\Communications Utility\CAMMUTE.exe
C:\Program Files\LENOVO\HOTKEY\MICMUTE.exe
C:\Program Files\Lenovo\Communications Utility\TPKNRSVC.exe
C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe
C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
C:\Windows\system32\mfevtps.exe
C:\Program Files (x86)\Nero\Nero8\Nero BackItUp\NBService.exe
C:\Windows\system32\rundll32.exe
C:\Windows\SysWOW64\rundll32.exe
C:\Windows\SysWOW64\IoctlSvc.exe
C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
C:\Windows\system32\svchost.exe -k imgsvc
C:\Program Files\Common Files\McAfee\SystemCore\mcshield.exe
C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe
C:\Program Files (x86)\Lenovo\Access Connections\AcSvc.exe
C:\Program Files\Intel\WiFi\bin\EvtEng.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\taskhost.exe
C:\PROGRA~1\LENOVO\VIRTSCRL\virtscrl.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\LENOVO\HOTKEY\tposdsvc.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Lenovo\HOTKEY\TPONSCR.exe
C:\PROGRA~1\Lenovo\HOTKEY\tpnumlkd.exe
C:\Program Files\Lenovo\Zoom\TpScrex.exe
C:\Program Files (x86)\RegCure\RegCure.exe
C:\ProgramData\DatacardService\DCSHelper.exe
C:\Windows\System32\TpShocks.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Lenovo\Communications Utility\TPKNRRES.exe
C:\Program Files\Logitech\SetPointP\SetPoint.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Windows\System32\igfxtray.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\ThinkPad\Bluetooth Software\BTTray.exe
C:\Program Files\Common Files\LogiShrd\KHAL3\KHALMNPR.EXE
C:\Windows\SysWOW64\rundll32.exe
C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
C:\Windows\system32\rundll32.exe
C:\Program Files\McAfee.com\Agent\mcagent.exe
C:\Users\BABACAN\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Windows\system32\SearchIndexer.exe
C:\Users\BABACAN\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Windows\system32\igfxext.exe
C:\Windows\system32\igfxsrvc.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Users\BABACAN\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\BABACAN\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Users\BABACAN\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Lenovo\Access Connections\SvcGuiHlpr.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PrivacyIconClient.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
C:\Program Files (x86)\McAfee Online Backup\MOBKbackup.exe
C:\Program Files (x86)\McAfee Online Backup\MOBKbackup.exe
C:\Program Files (x86)\Lenovo\System Update\SUService.exe
C:\Program Files (x86)\Foxit Software\Foxit Reader\Foxit Reader.exe
C:\Users\BABACAN\Desktop\gel\jle1hmgg.exe
C:\Users\BABACAN\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Users\BABACAN\Desktop\gel\dds.scr
C:\Windows\system32\conhost.exe
C:\Windows\system32\wbem\wmiprvse.exe

============== Pseudo HJT Report ===============

uStart Page = about:blank
uURLSearchHooks: McAfee SiteAdvisor Toolbar: {0ebbbe48-bad4-4b4c-8e5a-516abecae064} - c:\progra~2\mcafee\sitead~1\mcieplg.dll
mWinlogon: Userinit=userinit.exe
BHO: McAfee Phishing Filter: {27b4851a-3207-45a2-b947-be8afe6163ab} - c:\progra~1\mcafee\msk\mskapbho.dll
BHO: scriptproxy: {7db2d5a0-7241-4e79-b68d-6309f01c5231} - C:\Program Files (x86)\Common Files\McAfee\SystemCore\ScriptSn.20110114145847.dll
BHO: Skype Plug-In: {ae805869-2e5c-4ed4-8f7b-f1f7851a4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
BHO: McAfee SiteAdvisor BHO: {b164e929-a1b6-4a06-b104-2cd0e90a88ff} - c:\progra~2\mcafee\sitead~1\mcieplg.dll
BHO: Office Document Cache Handler: {b4f3a835-0e21-4959-ba22-42b3008e02ff} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
TB: McAfee SiteAdvisor Toolbar: {0ebbbe48-bad4-4b4c-8e5a-516abecae064} - c:\progra~2\mcafee\sitead~1\mcieplg.dll
mRun: [IMSS] "C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe"
mRun: [PWMTRV] rundll32 C:\PROGRA~2\ThinkPad\UTILIT~1\PWMTR64V.DLL,PwrMgrBkGndMonitor
mRun: [mcui_exe] "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\BLUETO~1.LNK - C:\Program Files\ThinkPad\Bluetooth Software\BTTray.exe
mPolicies-explorer: NoActiveDesktop = 1 (0x1)
mPolicies-explorer: NoActiveDesktopChanges = 1 (0x1)
mPolicies-system: ConsentPromptBehaviorAdmin = 0 (0x0)
mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3)
mPolicies-system: EnableLUA = 0 (0x0)
mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
mPolicies-system: PromptOnSecureDesktop = 0 (0x0)
mPolicies-system: DisableCAD = 1 (0x1)
IE: Bild an &Bluetooth-Gerät senden... - C:\Program Files\ThinkPad\Bluetooth Software\btsendto_ie_ctx.htm
IE: Nach Microsoft E&xcel exportieren - C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
IE: Seite an &Bluetooth-Gerät senden... - C:\Program Files\ThinkPad\Bluetooth Software\btsendto_ie.htm
IE: {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\ThinkPad\Bluetooth Software\btsendto_ie.htm
IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload2.macromedia.com/pub/shockwave/cabs/flash/swflash.cab
TCP: {571F8609-AA0C-46FB-B289-97B71F7496F6} = 193.189.244.225 193.189.244.206
TCP: {5A799C89-5444-41FB-A894-4561389CE70E} = 193.189.244.225 193.189.244.206
Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL
Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~2\McAfee\SITEAD~1\McIEPlg.dll
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~2\McAfee\SITEAD~1\McIEPlg.dll
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
LSA: Notification Packages = scecli C:\Program Files\ThinkVantage Fingerprint Software\psqlpwd.dll ACGina
{27B4851A-3207-45A2-B947-BE8AFE6163AB}
{7DB2D5A0-7241-4E79-B68D-6309F01C5231}
{B164E929-A1B6-4A06-B104-2CD0E90A88FF}
{B4F3A835-0E21-4959-BA22-42B3008E02FF}
{0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064}
mRun-x64: [SmartAudio] C:\Program Files\CONEXANT\SAII\SAIICpl.exe /t
mRun-x64: [TpShocks] TpShocks.exe
mRun-x64: [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
mRun-x64: [LENOVO.TPKNRRES] C:\Program Files\Lenovo\Communications Utility\TPKNRRES.exe
mRun-x64: [EvtMgr6] C:\Program Files\Logitech\SetPointP\SetPoint.exe /launchGaming
mRun-x64: [AcWin7Hlpr] C:\Program Files (x86)\Lenovo\Access Connections\AcTBenabler.exe
mRun-x64: [IgfxTray] C:\Windows\system32\igfxtray.exe
mRun-x64: [HotKeysCmds] C:\Windows\system32\hkcmd.exe
mRun-x64: [Persistence] C:\Windows\system32\igfxpers.exe
IE-X64: {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\ThinkPad\Bluetooth Software\btsendto_ie.htm

============= SERVICES / DRIVERS ===============

R0 DzHDD64;DzHDD64;C:\Windows\System32\drivers\DZHDD64.SYS [2010-12-18 30320]
R0 mfehidk;McAfee Inc. mfehidk;C:\Windows\System32\drivers\mfehidk.sys [2010-10-13 529128]
R0 mfewfpk;McAfee Inc. mfewfpk;C:\Windows\System32\drivers\mfewfpk.sys [2011-1-14 283360]
R0 TPDIGIMN;TPDIGIMN;C:\Windows\System32\drivers\ApsHM64.sys [2010-6-16 23664]
R0 zapaxker;zapaxker;C:\Windows\System32\drivers\zapaxker.sys [2009-7-14 59920]
R1 lenovo.smi;Lenovo System Interface Driver;C:\Windows\System32\drivers\smiifx64.sys [2010-12-29 15472]
R1 mfenlfk;McAfee NDIS Light Filter;C:\Windows\System32\drivers\mfenlfk.sys [2011-1-14 75032]
R1 MOBKFilter;MOBKFilter;C:\Windows\System32\drivers\MOBK.sys [2011-1-14 66040]
R1 vwififlt;Virtual WiFi Filter Driver;C:\Windows\System32\drivers\vwififlt.sys [2009-7-14 59904]
R2 cpuz135;cpuz135;C:\Windows\System32\drivers\cpuz135_x64.sys [2010-12-27 21992]
R2 DCService.exe;DCService.exe;C:\ProgramData\DatacardService\DCService.exe [2010-8-19 229376]
R2 LENOVO.CAMMUTE;Lenovo Camera Mute;C:\Program Files\Lenovo\Communications Utility\CamMute.exe [2010-12-18 50536]
R2 LENOVO.MICMUTE;Lenovo Microphone Mute;C:\Program Files\Lenovo\HOTKEY\micmute.exe [2010-12-29 45496]
R2 LENOVO.TPKNRSVC;Lenovo Keyboard Noise Reduction;C:\Program Files\Lenovo\Communications Utility\TPKNRSVC.exe [2010-12-18 74088]
R2 Lenovo.VIRTSCRLSVC;Lenovo Auto Scroll;C:\Program Files\Lenovo\VIRTSCRL\lvvsst.exe [2010-12-18 93032]
R2 McAfee SiteAdvisor Service;McAfee SiteAdvisor Service;"C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe" /McCoreSvc [2011-1-14 355440]
R2 McMPFSvc;McAfee Personal Firewall-Dienst;"C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe" /McCoreSvc [2011-1-14 355440]
R2 McNaiAnn;McAfee VirusScan Announcer;"C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe" /McCoreSvc [2011-1-14 355440]
R2 McShield;McShield;C:\Program Files\Common Files\McAfee\SystemCore\mcshield.exe [2011-1-14 200056]
R2 mfefire;McAfee Firewall Core Service;C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe [2011-1-14 245352]
R2 mfevtp;McAfee Validation Trust Protection Service;C:\Windows\System32\mfevtps.exe [2011-1-14 149032]
R2 MOBKbackup;1%;C:\Program Files (x86)\McAfee Online Backup\MOBKbackup.exe [2010-4-13 231224]
R2 smihlp;SMI Helper Driver (smihlp);C:\Program Files\ThinkVantage Fingerprint Software\smihlp.sys [2009-3-13 13840]
R2 SSPORT;SSPORT;C:\Windows\System32\drivers\SSPORT.sys [2009-8-14 11576]
R2 TPHKLOAD;Lenovo Hotkey Client Loader;C:\Program Files\Lenovo\HOTKEY\tphkload.exe [2010-12-29 114024]
R2 TPHKSVC;Anzeige am Bildschirm;C:\Program Files\Lenovo\HOTKEY\TPHKSVC.exe [2010-12-29 64440]
R2 UNS;Intel(R) Management & Security Application User Notification Service;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2010-12-18 2533400]
R3 cfwids;McAfee Inc. cfwids;C:\Windows\System32\drivers\cfwids.sys [2011-1-14 62800]
R3 e1kexpress;Intel(R) PRO/1000 PCI Express Network Connection Driver K;C:\Windows\System32\drivers\e1k62x64.sys [2010-12-18 295600]
R3 HECIx64;Intel(R) Management Engine Interface;C:\Windows\System32\drivers\HECIx64.sys [2010-12-18 56344]
R3 huawei_enumerator;huawei_enumerator;C:\Windows\System32\drivers\ew_jubusenum.sys [2010-12-30 86016]
R3 Impcd;Impcd;C:\Windows\System32\drivers\Impcd.sys [2010-12-18 151936]
R3 IntcDAud;Intel(R) Display-Audio;C:\Windows\System32\drivers\IntcDAud.sys [2011-1-8 317440]
R3 mfeavfk;McAfee Inc. mfeavfk;C:\Windows\System32\drivers\mfeavfk.sys [2011-1-14 190136]
R3 mfefirek;McAfee Inc. mfefirek;C:\Windows\System32\drivers\mfefirek.sys [2011-1-14 441328]
R3 NETwNs64;___ Intel(R) Wireless WiFi Link der Serie 5000 Adaptertreiber für Windows 7 64-Bit;C:\Windows\System32\drivers\NETwNs64.sys [2010-10-18 8153088]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]
S2 McProxy;McAfee Proxy Service;"C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe" /McCoreSvc [2011-1-14 355440]
S3 btusbflt;Bluetooth USB Filter;C:\Windows\System32\drivers\btusbflt.sys [2010-12-27 54824]
S3 btwl2cap;Bluetooth L2CAP Service;C:\Windows\System32\drivers\btwl2cap.sys [2010-12-27 35104]
S3 DozeSvc;Lenovo Doze Mode Service;C:\Program Files (x86)\ThinkPad\Utilities\DZSVC64.EXE [2010-12-18 164200]
S3 ew_hwusbdev;Huawei MobileBroadband USB PNP Device;C:\Windows\System32\drivers\ew_hwusbdev.sys [2010-12-30 117248]
S3 ewusbnet;HUAWEI USB-NDIS miniport;C:\Windows\System32\drivers\ewusbnet.sys [2010-12-30 256000]
S3 mferkdet;McAfee Inc. mferkdet;C:\Windows\System32\drivers\mferkdet.sys [2011-1-14 94864]
S3 NETw5s64;Intel(R) Wireless WiFi Link Adaptertreiber für Windows 7 64-Bit;C:\Windows\System32\drivers\NETw5s64.sys [2009-9-15 6952960]
S3 osppsvc;Office Software Protection Platform;C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-1-9 4925184]
S3 PCDSRVC{127174DC-C366ED8B-06020101}_0;PCDSRVC{127174DC-C366ED8B-06020101}_0 - PCDR Kernel Mode Service Helper Driver;C:\Program Files\PC-Doctor\pcdsrvc_x64.pkms [2010-12-13 25072]
S3 Power Manager DBC Service;Power Manager DBC Service;C:\Program Files (x86)\ThinkPad\Utilities\PWMDBSVC.exe [2010-12-18 75112]
S3 StorSvc;Speicherdienst;C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted [2009-7-14 27136]
S3 SwitchBoard;SwitchBoard;C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-2-19 517096]

=============== Created Last 30 ================

2011-01-16 17:02:23 -------- d-----w- C:\Users\BABACAN\AppData\Roaming\Malwarebytes
2011-01-16 17:02:16 38224 ----a-w- C:\Windows\SysWow64\drivers\mbamswissarmy.sys
2011-01-16 17:02:15 -------- d-----w- C:\PROGRA~3\Malwarebytes
2011-01-16 17:02:08 24152 ----a-w- C:\Windows\System32\drivers\mbam.sys
2011-01-16 17:02:08 -------- d-----w- C:\Program Files (x86)\Malwarebytes' Anti-Malware
2011-01-16 13:26:38 -------- d-----w- C:\PROGRA~3\RegCure
2011-01-14 19:52:36 81920 ----a-w- C:\Windows\eSellerateControl350.dll
2011-01-14 19:52:36 356352 ----a-w- C:\Windows\eSellerateEngine.dll
2011-01-14 19:52:30 -------- d-----w- C:\Program Files (x86)\Family Cyber Alert Removal Tool
2011-01-14 19:46:18 -------- d-----w- C:\Users\BABACAN\AppData\Roaming\QuuSoft
2011-01-14 19:41:13 -------- d-----w- C:\Windows\SysWow64\FCA
2011-01-14 14:01:49 -------- d-----w- C:\Program Files (x86)\McAfeeMOBK
2011-01-14 14:00:33 66040 ----a-w- C:\Windows\System32\drivers\MOBK.sys
2011-01-14 14:00:31 -------- d-----w- C:\Program Files (x86)\McAfee Online Backup
2011-01-14 13:58:59 -------- d-----w- C:\Program Files (x86)\McAfee.com
2011-01-14 13:58:47 -------- d-----w- C:\Program Files (x86)\Common Files\McAfee
2011-01-14 13:58:45 9984 ----a-w- C:\Windows\System32\drivers\mfeclnk.sys
2011-01-14 13:58:30 94864 ----a-w- C:\Windows\System32\drivers\mferkdet.sys
2011-01-14 13:58:30 75032 ----a-w- C:\Windows\System32\drivers\mfenlfk.sys
2011-01-14 13:58:30 441328 ----a-w- C:\Windows\System32\drivers\mfefirek.sys
2011-01-14 13:58:30 283360 ----a-w- C:\Windows\System32\drivers\mfewfpk.sys
2011-01-14 13:58:30 190136 ----a-w- C:\Windows\System32\drivers\mfeavfk.sys
2011-01-14 13:58:29 62800 ----a-w- C:\Windows\System32\drivers\cfwids.sys
2011-01-14 13:57:09 -------- d-----w- C:\Program Files\Common Files\McAfee
2011-01-14 13:57:08 -------- d-----w- C:\Program Files\McAfee.com
2011-01-14 13:57:08 -------- d-----w- C:\Program Files\McAfee
2011-01-14 13:57:03 -------- d-----w- C:\Program Files (x86)\McAfee
2011-01-14 13:46:53 149032 ----a-w- C:\Windows\System32\mfevtps.exe
2011-01-14 06:42:28 8199504 ----a-w- C:\PROGRA~3\Microsoft\Windows Defender\Definition Updates\{9E5D26F3-2BC2-4874-8435-7A745F98C14F}\mpengine.dll
2011-01-12 13:07:59 258048 ----a-w- C:\Windows\System32\drivers\dxgmms1.sys
2011-01-08 06:11:11 317440 ----a-w- C:\Windows\System32\drivers\IntcDAud.sys
2011-01-08 06:10:59 19570688 ----a-w- C:\Windows\System32\ig4icd64.dll
2011-01-08 06:10:57 14275072 ----a-w- C:\Windows\SysWow64\ig4icd32.dll
2011-01-08 06:10:56 94208 ----a-w- C:\Windows\System32\IccLibDll_x64.dll
2011-01-08 06:10:56 391704 ----a-w- C:\Windows\System32\hkcmd.exe
2011-01-08 06:10:55 4367384 ----a-w- C:\Windows\System32\GfxUI.exe
2011-01-08 06:10:55 179736 ----a-w- C:\Windows\System32\difx64.exe
2011-01-08 06:10:55 144896 ----a-w- C:\Windows\System32\gfxSrvc.dll
2011-01-08 06:10:26 -------- d-----w- C:\Program Files\ThinkVantage
2011-01-08 06:08:43 -------- d-----w- C:\SWTOOLS
2011-01-08 06:08:42 -------- d-----w- C:\PROGRA~3\Lenovo
2011-01-05 11:42:20 -------- d-----w- C:\Temp
2011-01-01 16:36:35 -------- d-----r- C:\Program Files (x86)\Skype
2010-12-30 15:14:40 -------- d-----w- C:\Program Files (x86)\Mobile Partner
2010-12-30 15:14:31 -------- d-----w- C:\PROGRA~3\DatacardService
2010-12-30 05:45:58 662288 ----a-w- C:\Windows\SysWow64\MSCOMCT2.OCX
2010-12-30 05:45:58 331784 ----a-w- C:\Windows\SysWow64\AResize.ocx
2010-12-30 05:45:58 224016 ----a-w- C:\Windows\SysWow64\TABCTL32.OCX
2010-12-30 05:45:58 22016 ----a-w- C:\Windows\SysWow64\AResize.oca
2010-12-30 05:45:58 212240 ----a-w- C:\Windows\SysWow64\RICHTX32.OCX
2010-12-30 05:45:58 147456 ----a-w- C:\Windows\SysWow64\AbsoluteHttp.dll
2010-12-30 05:45:58 -------- d-----w- C:\Windows\SysWow64\FCyberAlert
2010-12-29 17:56:20 -------- d-----w- C:\SAVE
2010-12-29 14:02:26 -------- d-----w- C:\Program Files (x86)\GRETECH
2010-12-29 06:51:46 -------- d-----w- C:\Users\BABACAN\AppData\Roaming\Xilisoft
2010-12-29 06:49:26 -------- d-----w- C:\Program Files (x86)\Xilisoft
2010-12-29 06:44:20 15472 ----a-w- C:\Windows\System32\drivers\smiifx64.sys
2010-12-28 22:06:16 -------- d-----w- C:\Program Files (x86)\AP Tuner
2010-12-28 22:01:54 8 ----a-w- C:\PROGRA~3\VGANGMJYMWPP.SYS
2010-12-28 22:01:41 -------- d-----w- C:\Program Files (x86)\D'Accord Guitar Chord Dictionary 3.0
2010-12-28 20:46:48 -------- d-----w- C:\Program Files\CCleaner
2010-12-28 15:04:48 -------- d-----w- C:\Program Files (x86)\SpeedFan
2010-12-27 16:35:35 -------- d-----w- C:\Users\BABACAN\AppData\Local\Broadcom
2010-12-27 16:33:21 98344 ----a-w- C:\Windows\System32\drivers\btwaudio.sys
2010-12-27 16:33:21 35104 ----a-w- C:\Windows\System32\drivers\btwl2cap.sys
2010-12-27 16:33:21 21288 ----a-w- C:\Windows\System32\drivers\btwrchid.sys
2010-12-27 16:33:21 132648 ----a-w- C:\Windows\System32\drivers\btwavdt.sys
2010-12-27 16:31:51 54824 ----a-w- C:\Windows\System32\drivers\btusbflt.sys
2010-12-27 13:19:25 21992 ----a-w- C:\Windows\System32\drivers\cpuz135_x64.sys
2010-12-27 12:17:19 71552 ----a-w- C:\Windows\System32\drivers\nhcDriver.sys
2010-12-27 12:17:19 -------- d-----w- C:\Users\BABACAN\AppData\Roaming\Notebook Hardware Control
2010-12-26 14:09:11 307200 ----a-w- C:\Windows\SysWow64\TubeFinder.exe
2010-12-26 14:09:10 119568 ----a-w- C:\Windows\SysWow64\VB6FR.DLL
2010-12-26 14:09:10 101888 ----a-w- C:\Windows\SysWow64\VB6STKIT.DLL
2010-12-26 14:09:09 9728 ----a-w- C:\Windows\SysWow64\PCCLPFR.DLL
2010-12-26 14:09:09 84512 ----a-w- C:\Windows\SysWow64\PICCLP32.OCX
2010-12-26 14:09:09 364544 ----a-w- C:\Windows\SysWow64\PropertyGrid.ocx
2010-12-26 14:09:09 32768 ----a-w- C:\Windows\SysWow64\CMDLGFR.DLL
2010-12-26 14:09:09 24576 ----a-w- C:\Windows\SysWow64\ControlSubX.ocx
2010-12-26 14:09:09 152848 ----a-w- C:\Windows\SysWow64\COMDLG32.OCX
2010-12-26 14:09:09 141312 ----a-w- C:\Windows\SysWow64\MSCMCFR.DLL
2010-12-26 14:09:09 -------- d-----w- C:\Users\BABACAN\AppData\Roaming\FreeFLVConverter
2010-12-25 16:02:11 33792 ----a-w- C:\Windows\System32\Spool\prtprocs\x64\sse1mpc.dll
2010-12-24 16:46:04 -------- d-----w- C:\Program Files (x86)\VideoLAN
2010-12-23 14:07:26 -------- d-----w- C:\Users\BABACAN\AppData\Local\CrashDumps
2010-12-23 11:45:03 -------- d-----w- C:\Program Files (x86)\Common Files\Symantec Shared
2010-12-23 11:38:29 -------- d-----w- C:\Users\BABACAN\AppData\Roaming\PROMT
2010-12-23 11:29:08 -------- d-----w- C:\Program Files (x86)\PRMT9
2010-12-23 10:41:39 -------- d-----w- C:\PROGRA~3\Norton
2010-12-23 10:41:09 -------- d-----w- C:\PROGRA~3\NortonInstaller
2010-12-23 09:26:47 -------- d-----w- C:\Users\BABACAN\AppData\Roaming\Update
2010-12-23 07:57:50 -------- d-----w- C:\Users\BABACAN\AppData\Local\Sony
2010-12-23 07:54:48 -------- d-----w- C:\Program Files (x86)\Sony
2010-12-23 07:54:46 -------- d-----w- C:\Program Files\Sony
2010-12-22 21:47:23 -------- d-----w- C:\set_up
2010-12-22 21:16:04 -------- d-----w- C:\Windows\System32\appmgmt
2010-12-22 20:40:27 -------- d-----w- C:\Users\BABACAN\AppData\Roaming\HamsterSoft
2010-12-22 20:02:51 -------- d-----w- C:\Program Files (x86)\Common Files\InterVideo
2010-12-22 20:02:01 -------- d-----w- C:\Program Files (x86)\Windows Media Components
2010-12-22 19:29:06 -------- d-----w- C:\Users\BABACAN\AppData\Local\TechSmith
2010-12-22 19:27:24 -------- d-----w- C:\Windows\SysWow64\QuickTime
2010-12-22 18:25:18 -------- d-----w- C:\Program Files (x86)\FinalWire
2010-12-22 10:01:05 -------- d-----w- C:\Users\BABACAN\AppData\Local\Microsoft_Corporation
2010-12-22 10:00:26 -------- d-----w- C:\Users\BABACAN\AppData\Local\assembly
2010-12-22 08:24:15 57344 ----a-w- C:\PROGRA~3\VistaLib32.dll
2010-12-22 08:24:14 -------- d-----w- C:\Users\BABACAN\AppData\Roaming\Yandex
2010-12-22 08:24:14 -------- d-----w- C:\Users\BABACAN\AppData\Local\Yandex
2010-12-22 08:24:14 -------- d-----w- C:\Program Files (x86)\Yandex
2010-12-22 08:24:08 176488 ----a-w- C:\PROGRA~3\Microsoft\Windows\Sqm\Manifest\Sqm10136.bin
2010-12-22 08:23:24 -------- d-----w- C:\Windows\msagent
2010-12-22 08:19:07 -------- d-----w- C:\Windows\Lhsp
2010-12-21 18:18:00 -------- d-----w- C:\Windows\SysWow64\minegpop
2010-12-21 18:14:15 927 ----a-w- C:\Windows\System32\olehajob.dll
2010-12-21 18:10:19 149 ----a-w- C:\Windows\System32\monicdec.dll
2010-12-21 17:32:19 8199504 ----a-w- C:\PROGRA~3\Microsoft\Windows Defender\Definition Updates\Backup\mpengine.dll
2010-12-21 09:36:55 -------- d-----w- C:\Users\BABACAN\AppData\Local\ElevatedDiagnostics
2010-12-20 20:56:39 -------- d-----w- C:\Users\BABACAN\apache
2010-12-20 18:29:28 -------- d-----w- C:\Users\BABACAN\AppData\Local\Eclipse
2010-12-20 18:19:49 -------- d-----w- C:\Users\BABACAN\workspace
2010-12-20 17:31:40 472808 ----a-w- C:\Windows\SysWow64\deployJava1.dll
2010-12-19 20:53:51 -------- d-----w- C:\Program Files\CPUID
2010-12-19 18:55:34 -------- d-----w- C:\Users\BABACAN\AppData\Roaming\Foxit Software
2010-12-19 18:52:32 -------- d-----w- C:\Program Files (x86)\Foxit Software
2010-12-19 10:46:30 -------- d-----w- C:\Program Files (x86)\MSXML 4.0
2010-12-18 15:24:20 53248 ----a-r- C:\Users\BABACAN\AppData\Roaming\Microsoft\Installer\{3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}\ARPPRODUCTICON.exe
2010-12-18 15:23:39 18960 ----a-w- C:\Windows\System32\drivers\LNonPnP.sys
2010-12-18 15:22:02 -------- d-----w- C:\Users\BABACAN\AppData\Roaming\Logishrd
2010-12-18 14:45:59 -------- d-----w- C:\Users\BABACAN\AppData\Local\Ahead
2010-12-18 14:45:56 -------- d-----w- C:\Program Files (x86)\NeroInstall.bak
2010-12-18 14:45:21 -------- d-----w- C:\Users\BABACAN\AppData\Roaming\DMCache
2010-12-18 14:41:58 -------- d-----w- C:\Program Files (x86)\Nero
2010-12-18 14:41:58 -------- d-----w- C:\PROGRA~3\Nero
2010-12-18 14:33:08 -------- d-----w- C:\Windows\pss
2010-12-18 14:31:34 36864 ----a-w- C:\Windows\SysWow64\Hooks.dll
2010-12-18 14:31:27 -------- d-----w- C:\Program Files (x86)\Langenscheidt
2010-12-18 14:31:08 212992 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Engine\6\Intel 32\ILog.dll
2010-12-18 14:30:22 -------- d-----w- C:\Program Files (x86)\Paragon Software
2010-12-18 14:06:05 -------- d-----w- C:\PROGRA~3\regid.1986-12.com.adobe
2010-12-18 13:51:09 -------- d-----w- C:\Users\BABACAN\AppData\Local\Adobe
2010-12-18 12:27:35 -------- d-----w- C:\Windows\PCHEALTH
2010-12-18 12:25:51 -------- d-----w- C:\Program Files (x86)\Microsoft Analysis Services
2010-12-18 12:25:18 -------- d-----w- C:\Users\BABACAN\AppData\Local\Microsoft Help
2010-12-18 11:55:39 -------- d-----w- C:\Users\BABACAN\AppData\Local\Google
2010-12-18 11:55:21 -------- d-----w- C:\Users\BABACAN\AppData\Local\Deployment
2010-12-18 11:55:21 -------- d-----w- C:\Users\BABACAN\AppData\Local\Apps
2010-12-18 11:50:16 334424 ----a-w- C:\Windows\System32\drivers\acpi.sys
2010-12-18 11:49:16 -------- d-----w- C:\Program Files\Lenovo
2010-12-18 11:48:17 848744 ----a-w- C:\Windows\System32\PWMCP64V.cpl
2010-12-18 11:48:17 394600 ------w- C:\Windows\PWMBTHLV.EXE
2010-12-18 11:48:17 30320 ----a-w- C:\Windows\System32\drivers\DZHDD64.SYS
2010-12-18 11:48:17 13104 ----a-w- C:\Windows\System32\drivers\TPPWR64V.SYS
2010-12-18 11:46:48 -------- d-----w- C:\Users\BABACAN\AppData\Roaming\Intel
2010-12-18 11:45:49 -------- d-----w- C:\Program Files (x86)\Cisco
2010-12-18 11:45:07 151936 ----a-w- C:\Windows\System32\drivers\Impcd.sys
2010-12-18 11:44:58 1525248 ----a-w- C:\Program Files\Windows Media Player\wmpnetwk.exe
2010-12-18 11:44:31 -------- d-----w- C:\Program Files\ThinkPad
2010-12-18 11:44:31 -------- d-----w- C:\Program Files (x86)\ThinkPad
2010-12-18 11:44:12 222720 ----a-w- C:\Windows\System32\wwanconn.dll
2010-12-18 11:43:35 53248 ----a-w- C:\Windows\SysWow64\CSVer.dll
2010-12-18 11:43:07 -------- d-----w- C:\Program Files (x86)\Common Files\postureAgent
2010-12-18 11:43:02 56344 ----a-w- C:\Windows\System32\drivers\HECIx64.sys
2010-12-18 11:42:58 -------- d-----w- C:\Windows\Downloaded Installations
2010-12-18 11:42:45 -------- d-----w- C:\Program Files\Common Files\SPBA
2010-12-18 11:42:45 -------- d-----w- C:\Program Files (x86)\Common Files\SPBA
2010-12-18 11:42:44 -------- d-----w- C:\Program Files\ThinkVantage Fingerprint Software
2010-12-18 11:42:10 -------- d-----w- C:\Program Files\CONEXANT
2010-12-18 11:41:55 426040 ----a-w- C:\Windows\System32\UCI64A52.dll
2010-12-18 11:41:55 1830016 ----a-w- C:\Windows\System32\CX64AQ17.dll
2010-12-18 11:41:54 682624 ----a-w- C:\Windows\System32\drivers\CHDRT64.sys
2010-12-18 11:41:47 -------- d-----w- C:\Program Files\Common Files\Intel
2010-12-18 11:41:47 -------- d-----w- C:\Program Files (x86)\Common Files\Intel
2010-12-18 11:00:40 -------- d-----w- C:\Intel
2010-12-18 10:55:52 311808 ----a-w- C:\Windows\System32\msv1_0.dll
2010-12-18 10:55:52 257024 ----a-w- C:\Windows\SysWow64\msv1_0.dll
2010-12-18 10:51:31 99176 ----a-w- C:\Windows\SysWow64\PresentationHostProxy.dll
2010-12-18 10:51:31 49472 ----a-w- C:\Windows\SysWow64\netfxperf.dll
2010-12-18 10:51:31 48960 ----a-w- C:\Windows\System32\netfxperf.dll
2010-12-18 10:51:31 444752 ----a-w- C:\Windows\System32\mscoree.dll
2010-12-18 10:51:31 320352 ----a-w- C:\Windows\System32\PresentationHost.exe
2010-12-18 10:51:31 297808 ----a-w- C:\Windows\SysWow64\mscoree.dll
2010-12-18 10:51:31 295264 ----a-w- C:\Windows\SysWow64\PresentationHost.exe
2010-12-18 10:51:31 1942856 ----a-w- C:\Windows\System32\dfshim.dll
2010-12-18 10:51:31 1130824 ----a-w- C:\Windows\SysWow64\dfshim.dll
2010-12-18 10:51:31 109912 ----a-w- C:\Windows\System32\PresentationHostProxy.dll
2010-12-18 10:51:15 294912 ----a-w- C:\Windows\System32\browserchoice.exe
2010-12-18 10:48:27 -------- d-----w- C:\Program Files\Protector Suite
2010-12-18 10:48:09 -------- d-----w- C:\Program Files (x86)\Lenovo
2010-12-18 10:48:03 27136 ----a-w- C:\Windows\System32\drivers\psadd.sys
2010-12-18 10:46:24 243712 ----a-w- C:\Windows\System32\drivers\ks.sys
2010-12-18 10:14:52 558592 ----a-w- C:\Windows\System32\spoolsv.exe
2010-12-18 10:14:51 395776 ----a-w- C:\Windows\System32\webio.dll
2010-12-18 10:14:51 314368 ----a-w- C:\Windows\SysWow64\webio.dll
2010-12-18 10:14:51 286720 ----a-w- C:\Windows\System32\drivers\mrxsmb10.sys
2010-12-18 10:14:51 157696 ----a-w- C:\Windows\System32\drivers\mrxsmb.sys
2010-12-18 10:14:51 125952 ----a-w- C:\Windows\System32\drivers\mrxsmb20.sys
2010-12-18 10:14:50 82944 ----a-w- C:\Windows\SysWow64\iccvid.dll
2010-12-18 10:13:19 223448 ----a-w- C:\Windows\System32\drivers\fvevol.sys
2010-12-18 10:10:48 1877504 ----a-w- C:\Windows\System32\msxml3.dll
2010-12-18 10:10:48 1233920 ----a-w- C:\Windows\SysWow64\msxml3.dll
2010-12-18 10:10:45 27008 ----a-w- C:\Windows\System32\drivers\Diskdump.sys
2010-12-18 10:03:57 -------- d-----w- C:\PROGRA~3\PCDr
2010-12-18 10:03:57 -------- d-----w- C:\PROGRA~3\PC-Doctor for Windows
2010-12-18 10:03:50 -------- d-----w- C:\Program Files\PC-Doctor
2010-12-18 09:56:03 270720 ------w- C:\Windows\System32\MpSigStub.exe
2010-12-18 09:51:00 220672 ----a-w- C:\Windows\System32\wintrust.dll
2010-12-18 09:51:00 172032 ----a-w- C:\Windows\SysWow64\wintrust.dll
2010-12-18 09:50:59 139264 ----a-w- C:\Windows\System32\cabview.dll
2010-12-18 09:50:59 132608 ----a-w- C:\Windows\SysWow64\cabview.dll
2010-12-18 09:49:50 -------- d-----w- C:\Program Files (x86)\HUAWEI Modem Driver
2010-12-18 09:49:33 345800 ----a-w- C:\Windows\System32\PROUnstl.exe
2010-12-18 09:49:19 78016 ----a-w- C:\Windows\System32\NicInstK.dll
2010-12-18 09:49:19 72288 ----a-w- C:\Windows\System32\e1kmsg.dll
2010-12-18 09:49:19 36472 ----a-w- C:\Windows\System32\NicCo36.dll
2010-12-18 09:49:19 295600 ----a-w- C:\Windows\System32\drivers\e1k62x64.sys
2010-12-18 09:49:15 -------- d-----w- C:\DRIVERS
2010-12-17 23:11:09 -------- d-sh--w- C:\Windows\Installer
2010-12-17 22:55:00 -------- d-----w- C:\Users\BABACAN\AppData\Local\VirtualStore
2010-12-17 22:50:59 -------- d-----w- C:\Windows\Panther

==================== Find3M ====================

2010-12-22 18:15:21 6656 ----a-w- C:\Windows\System32\lpcio.dll
2010-12-16 08:57:24 167960 ----a-w- C:\Windows\System32\igfxtray.exe
2010-12-16 08:57:20 509976 ----a-w- C:\Windows\System32\igfxsrvc.exe
2010-12-16 08:57:16 417304 ----a-w- C:\Windows\System32\igfxpers.exe
2010-12-16 08:57:14 237080 ----a-w- C:\Windows\System32\igfxext.exe
2010-11-28 20:29:26 90112 ----a-w- C:\Windows\System32\igfxCoIn_v2253.dll
2010-11-28 20:23:16 12252192 ----a-w- C:\Windows\System32\drivers\igdkmd64.sys
2010-11-28 20:23:14 7428608 ----a-w- C:\Windows\System32\igdumd64.dll
2010-11-28 20:21:30 128204 ----a-w- C:\Windows\SysWow64\igcompkrng575.bin
2010-11-28 20:21:30 128204 ----a-w- C:\Windows\System32\igcompkrng575.bin
2010-11-28 20:21:28 867020 ----a-w- C:\Windows\SysWow64\igkrng575.bin
2010-11-28 20:21:28 867020 ----a-w- C:\Windows\System32\igkrng575.bin
2010-11-28 20:21:28 105408 ----a-w- C:\Windows\SysWow64\igfcg575m.bin
2010-11-28 20:21:28 105408 ----a-w- C:\Windows\System32\igfcg575m.bin
2010-11-28 20:17:32 5657088 ----a-w- C:\Windows\SysWow64\igdumd32.dll
2010-11-28 20:14:02 574976 ----a-w- C:\Windows\SysWow64\igdumdx32.dll
2010-11-28 20:11:10 7365632 ----a-w- C:\Windows\System32\igd10umd64.dll
2010-11-28 20:06:52 6050304 ----a-w- C:\Windows\SysWow64\igd10umd32.dll
2010-11-28 19:47:06 286720 ----a-w- C:\Windows\System32\igfxrrom.lrc
2010-11-28 19:47:04 286720 ----a-w- C:\Windows\System32\igfxrsky.lrc
2010-11-28 19:47:04 286720 ----a-w- C:\Windows\System32\igfxrhrv.lrc
2010-11-28 19:47:04 286208 ----a-w- C:\Windows\System32\igfxrslv.lrc
2010-11-28 19:47:02 287232 ----a-w- C:\Windows\System32\igfxresn.lrc
2010-11-28 19:47:02 286208 ----a-w- C:\Windows\System32\igfxrtrk.lrc
2010-11-28 19:47:02 286208 ----a-w- C:\Windows\System32\igfxrsve.lrc
2010-11-28 19:47:02 285696 ----a-w- C:\Windows\System32\igfxrtha.lrc
2010-11-28 19:47:00 286720 ----a-w- C:\Windows\System32\igfxrrus.lrc
2010-11-28 19:47:00 286720 ----a-w- C:\Windows\System32\igfxrptg.lrc
2010-11-28 19:45:56 62464 ----a-w- C:\Windows\System32\igfxsrvc.dll
2010-11-28 19:45:24 109056 ----a-w- C:\Windows\System32\hccutils.dll
2010-11-28 19:45:16 4096 ----a-w- C:\Windows\System32\IGFXDEVLib.dll
2010-11-28 19:45:14 384000 ----a-w- C:\Windows\System32\igfxdev.dll
2010-11-28 19:44:38 285696 ----a-w- C:\Windows\System32\igfxrenu.lrc
2010-11-28 19:44:32 9014784 ----a-w- C:\Windows\System32\igfxress.dll
2010-11-28 19:44:32 142336 ----a-w- C:\Windows\System32\igfxdo.dll
2010-11-28 19:40:20 24576 ----a-w- C:\Windows\SysWow64\igfxexps32.dll
2010-11-28 19:39:30 288256 ----a-w- C:\Windows\SysWow64\igfxdv32.dll
2010-11-28 19:34:16 95744 ----a-w- C:\Windows\System32\iglhcp64.dll
2010-11-28 19:34:16 86528 ----a-w- C:\Windows\SysWow64\iglhcp32.dll
2010-11-28 19:34:16 368640 ----a-w- C:\Windows\SysWow64\iglhsip32.dll
2010-11-28 19:34:16 364032 ----a-w- C:\Windows\System32\iglhsip64.dll
2010-11-28 19:34:16 132096 ----a-w- C:\Windows\SysWow64\igfxcmrt32.dll
2010-11-28 19:34:16 106496 ----a-w- C:\Windows\System32\igfxcmrt64.dll
2010-11-04 06:35:53 1194496 ----a-w- C:\Windows\System32\wininet.dll
2010-11-04 06:31:34 57856 ----a-w- C:\Windows\System32\licmgr10.dll
2010-11-04 05:52:17 978944 ----a-w- C:\Windows\SysWow64\wininet.dll
2010-11-04 05:48:36 44544 ----a-w- C:\Windows\SysWow64\licmgr10.dll
2010-11-04 05:16:14 482816 ----a-w- C:\Windows\System32\html.iec
2010-11-04 04:41:26 386048 ----a-w- C:\Windows\SysWow64\html.iec
2010-11-04 04:35:37 1638912 ----a-w- C:\Windows\System32\mshtml.tlb
2010-11-04 04:08:54 1638912 ----a-w- C:\Windows\SysWow64\mshtml.tlb
2010-11-02 05:21:51 982912 ----a-w- C:\Windows\System32\drivers\dxgkrnl.sys
2010-11-02 05:18:59 662528 ----a-w- C:\Windows\System32\XpsPrint.dll
2010-11-02 05:18:59 229888 ----a-w- C:\Windows\System32\XpsRasterService.dll
2010-11-02 05:18:58 470016 ----a-w- C:\Windows\System32\XpsGdiConverter.dll
2010-11-02 05:18:17 524288 ----a-w- C:\Windows\System32\wmicmiplugin.dll
2010-11-02 05:17:38 473600 ----a-w- C:\Windows\System32\taskcomp.dll
2010-11-02 05:17:38 1169408 ----a-w- C:\Windows\System32\taskschd.dll
2010-11-02 05:16:53 1114624 ----a-w- C:\Windows\System32\schedsvc.dll
2010-11-02 05:12:53 1133568 ----a-w- C:\Windows\System32\FntCache.dll
2010-11-02 05:12:25 1540608 ----a-w- C:\Windows\System32\DWrite.dll
2010-11-02 05:12:08 1837568 ----a-w- C:\Windows\System32\d3d10warp.dll
2010-11-02 05:12:07 320512 ----a-w- C:\Windows\System32\d3d10_1core.dll
2010-11-02 05:12:06 902656 ----a-w- C:\Windows\System32\d2d1.dll
2010-11-02 05:12:06 197120 ----a-w- C:\Windows\System32\d3d10_1.dll
2010-11-02 05:10:47 464384 ----a-w- C:\Windows\System32\taskeng.exe
2010-11-02 05:10:32 285696 ----a-w- C:\Windows\System32\schtasks.exe
2010-11-02 04:59:08 144384 ----a-w- C:\Windows\System32\cdd.dll
2010-11-02 04:41:36 442880 ----a-w- C:\Windows\SysWow64\XpsPrint.dll
2010-11-02 04:41:36 283648 ----a-w- C:\Windows\SysWow64\XpsGdiConverter.dll
2010-11-02 04:41:36 135168 ----a-w- C:\Windows\SysWow64\XpsRasterService.dll
2010-11-02 04:40:36 496128 ----a-w- C:\Windows\SysWow64\taskschd.dll
2010-11-02 04:40:36 305152 ----a-w- C:\Windows\SysWow64\taskcomp.dll
2010-11-02 04:35:51 1074176 ----a-w- C:\Windows\SysWow64\DWrite.dll
2010-11-02 04:35:35 1170944 ----a-w- C:\Windows\SysWow64\d3d10warp.dll
2010-11-02 04:35:34 739840 ----a-w- C:\Windows\SysWow64\d2d1.dll
2010-11-02 04:35:34 218624 ----a-w- C:\Windows\SysWow64\d3d10_1core.dll
2010-11-02 04:35:34 161792 ----a-w- C:\Windows\SysWow64\d3d10_1.dll
2010-11-02 04:34:44 192000 ----a-w- C:\Windows\SysWow64\taskeng.exe
2010-11-02 04:34:33 179712 ----a-w- C:\Windows\SysWow64\schtasks.exe
2010-10-27 05:06:22 2048 ----a-w- C:\Windows\System32\tzres.dll
2010-10-27 04:32:36 2048 ----a-w- C:\Windows\SysWow64\tzres.dll
2010-10-20 05:20:01 46080 ----a-w- C:\Windows\System32\atmlib.dll
2010-10-20 04:54:18 34304 ----a-w- C:\Windows\SysWow64\atmlib.dll
2010-10-20 03:09:15 3124224 ----a-w- C:\Windows\System32\win32k.sys
2010-10-20 03:05:46 367104 ----a-w- C:\Windows\System32\atmfd.dll
2010-10-20 02:58:41 294400 ----a-w- C:\Windows\SysWow64\atmfd.dll
2010-10-19 13:49:48 1320960 ----a-w- C:\Windows\System32\wlihvui.dll
2010-10-19 13:42:58 1772544 ----a-w- C:\Windows\System32\iwmssvc.dll

============= FINISH: 20:00:08,07 ===============

---------------------------------
Attach


UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT

DDS (Ver_10-12-12.02)

Microsoft Windows 7 Professional
Boot Device: \Device\HarddiskVolume1
Install Date: 17.12.2010 23:54:53
System Uptime: 16.01.2011 18:52:50 (2 hours ago)

Motherboard: LENOVO | | 291225U
Processor: Intel(R) Core(TM) i5 CPU M 520 @ 2.40GHz | None | 1176/133mhz

==== Disk Partitions =========================

C: is FIXED (NTFS) - 60 GiB total, 20,442 GiB free.
D: is CDROM ()

==== Disabled Device Manager Items =============

==== System Restore Points ===================

RP46: 16.01.2011 13:35:17 - Geplanter Prüfpunkt

==== Installed Programs ======================

Access Help
Adobe AIR
Adobe Community Help
Adobe Creative Suite 5 Design Premium
Adobe Flash Player 10 ActiveX
Adobe Media Player
AIDA64 Extreme Edition v1.00
AP Tuner 3.08
D'Accord Guitar Chord Dictionary 3.0
Definition update for Microsoft Office 2010 (KB982726)
Dienstprogramm "ThinkPad UltraNav"
e-Wörterbücher
eReg
Family Cyber Alert Removal Tool
FileZilla Client 3.2.7.1
Foxit Reader
GOM Player
Google Chrome
HUAWEI DataCard Driver 3.10.00.00
Intel(R) Control Center
Intel(R) Management Engine Components
Intel(R) Processor Graphics
InterVideo DeviceService
Java Auto Updater
Java(TM) 6 Update 23
L&H TTS3000 Deutsch
L&H TTS3000 Español
L&H TTS3000 Français
L&H TTS3000 Italiano
L&H TTS3000 Português (Brasil)
L&H TTS3000 Russian
Lernout & Hauspie TruVoice American English TTS Engine
Malwarebytes' Anti-Malware
McAfee Internet Security
McAfee Online Backup
Microsoft Office Access MUI (German) 2010
Microsoft Office Excel MUI (German) 2010
Microsoft Office Groove MUI (German) 2010
Microsoft Office InfoPath MUI (German) 2010
Microsoft Office OneNote MUI (German) 2010
Microsoft Office Outlook MUI (German) 2010
Microsoft Office PowerPoint MUI (German) 2010
Microsoft Office Professional Plus 2010
Microsoft Office Proof (English) 2010
Microsoft Office Proof (French) 2010
Microsoft Office Proof (German) 2010
Microsoft Office Proof (Italian) 2010
Microsoft Office Proofing (German) 2010
Microsoft Office Publisher MUI (German) 2010
Microsoft Office Shared MUI (German) 2010
Microsoft Office Visio 2010
Microsoft Office Visio MUI (German) 2010
Microsoft Office Word MUI (German) 2010
Microsoft Silverlight
Microsoft Visio Professional 2010
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
Microsoft Visual Studio 2005 Tools for Office Runtime
Microsoft_VC80_ATL_x86
Microsoft_VC80_CRT_x86
Microsoft_VC80_MFC_x86
Microsoft_VC80_MFCLOC_x86
Microsoft_VC90_ATL_x86
Microsoft_VC90_CRT_x86
Microsoft_VC90_MFC_x86
Mobile Partner
MSXML 4.0 SP2 (KB954430)
MSXML 4.0 SP2 (KB973688)
Nero 8
neroxml
Paragon Software SlovoEd 7
PDF Settings CS5
RegCure 2.0.0.0
Security Update for Microsoft .NET Framework 4 Client Profile (KB2160841)
Security Update for Microsoft Office 2010 (KB2289078)
Security Update for Microsoft Office 2010 (KB2289161)
Security Update for Microsoft Publisher 2010 (KB2409055)
Security Update for Microsoft Word 2010 (KB2345000)
Skype Toolbars
Skype™ 5.0
SpeedFan (remove only)
System Update
ThinkPad Energie-Manager
ThinkVantage Access Connections
Update für Microsoft Outlook Social Connector (KB2289116)
Update for Microsoft .NET Framework 4 Client Profile (KB2473228)
Update for Microsoft Office 2010 (KB2202188)
Update for Microsoft Office 2010 (KB2413186)
Update for Microsoft OneNote 2010 (KB2433299)
Update for Microsoft Outlook Social Connector (KB2289116)
VCRedistSetup
Vegas Movie Studio HD Platinum 10.0
Visual Studio 2005 Tools for Office Second Edition Runtime
VLC media player 1.1.5
Xilisoft Video Converter Ultimate 6

==== End Of File ===========================

 

[Broni]

Welcome aboard

Please, observe following rules:

• Read all of my instructions very carefully. Your mistakes during cleaning process may have very serious consequences, like unbootable computer.
• If you're stuck, or you're not sure about certain step, always ask before doing anything else.
• Please refrain from running tools or applying updates other than those I suggest.
• Never run more than one scan at a time.
• Keep updating me regarding your computer behavior, good, or bad.
• The cleaning process, once started, has to be completed. Even if your computer appears to act better, it may still be infected. Once the computer is totally clean, I'll certainly let you know.
• If you leave the topic without explanation in the middle of a cleaning process, you may not be eligible to receive any more help in malware removal forum.
• I close my topics if you have not replied in 5 days. If you need more time, simply let me know. If I closed your topic and you need it to be reopened, simply PM me.

====================================================================

GMER log is missing.