| |
| |||||||
Log-Analyse und Auswertung: Data Recovery - Bin ich jetzt clean?Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
 |
| |
15.12.2011, 11:29
| #1 |
| /// Winkelfunktion /// TB-Süch-Tiger™   |  Data Recovery - Bin ich jetzt clean? Bitte nun (im normalen Modus!) dieses Tool von Kaspersky (TDSS-Killer) ausführen und das Log posten => http://www.trojaner-board.de/82358-t...entfernen.html Das Tool so einstellen wie unten im Bild angegeben - klick auf change parameters und setze die Haken wie im folgenden Screenshot abgebildet, Dann auf Start Scan klicken und wenn es durch ist auf den Button Report klicken um das Log anzuzeigen. Dieses bitte komplett posten. Wenn du das Log nicht findest oder den Inhalt kopieren und in dein Posting übertragen kannst, dann schau bitte direkt auf deiner Windows-Systempartition nach, da speichert der TDSS-Killer seine Logs. Hinweis: Bitte nichts voreilig mit dem TDSS-Killer löschen! Falls Objekte vom TDSS-Killer bemängelt werden, alle mit der Aktion "skip" behandeln und hier nur das Log posten!  Falls du durch die Infektion auf deine Dokumente/Eigenen Dateien nicht zugreifen kannst, Verknüpfungen auf dem Desktop oder im Startmenü unter "alle Programme" fehlen, bitte unhide ausführen: Downloade dir bitte unhide.exe und speichere diese Datei auf deinem Desktop. Starte das Tool und es sollten alle Dateien und Ordner wieder sichtbar sein. ( Könnte eine Weile dauern )  Windows-Vista und Windows-7-User müssen das Tool per Rechtsklick als Administrator ausführen!
__________________ Logfiles bitte immer in CODE-Tags posten  |
|
15.12.2011, 11:36
| #2 |
 | Data Recovery - Bin ich jetzt clean?Code:
ATTFilter 11:33:32.0643 1080 TDSS rootkit removing tool 2.6.23.0 Dec 13 2011 10:39:31
11:33:32.0802 1080 ============================================================
11:33:32.0802 1080 Current date / time: 2011/12/15 11:33:32.0802
11:33:32.0802 1080 SystemInfo:
11:33:32.0802 1080
11:33:32.0802 1080 OS Version: 6.1.7601 ServicePack: 1.0
11:33:32.0802 1080 Product type: Workstation
11:33:32.0802 1080 ComputerName: GÖKHAN-PC
11:33:32.0802 1080 UserName: Gökhan
11:33:32.0802 1080 Windows directory: C:\Windows
11:33:32.0802 1080 System windows directory: C:\Windows
11:33:32.0802 1080 Running under WOW64
11:33:32.0802 1080 Processor architecture: Intel x64
11:33:32.0802 1080 Number of processors: 8
11:33:32.0802 1080 Page size: 0x1000
11:33:32.0802 1080 Boot type: Normal boot
11:33:32.0802 1080 ============================================================
11:33:33.0359 1080 Initialize success
11:34:26.0017 8004 ============================================================
11:34:26.0017 8004 Scan started
11:34:26.0017 8004 Mode: Manual; SigCheck; TDLFS;
11:34:26.0017 8004 ============================================================
11:34:27.0365 8004 1394ohci (a87d604aea360176311474c87a63bb88) C:\Windows\system32\drivers\1394ohci.sys
11:34:27.0532 8004 1394ohci - ok
11:34:27.0571 8004 Acceler (aedb94a49236f5ff060c90e09e70281f) C:\Windows\system32\DRIVERS\Accelern.sys
11:34:27.0627 8004 Acceler - ok
11:34:27.0676 8004 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys
11:34:27.0695 8004 ACPI - ok
11:34:27.0733 8004 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys
11:34:27.0825 8004 AcpiPmi - ok
11:34:27.0858 8004 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
11:34:27.0878 8004 adp94xx - ok
11:34:27.0899 8004 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
11:34:27.0917 8004 adpahci - ok
11:34:27.0935 8004 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
11:34:27.0949 8004 adpu320 - ok
11:34:28.0016 8004 AFD (d5b031c308a409a0a576bff4cf083d30) C:\Windows\system32\drivers\afd.sys
11:34:28.0075 8004 AFD - ok
11:34:28.0116 8004 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys
11:34:28.0132 8004 agp440 - ok
11:34:28.0174 8004 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys
11:34:28.0186 8004 aliide - ok
11:34:28.0199 8004 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys
11:34:28.0210 8004 amdide - ok
11:34:28.0243 8004 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
11:34:28.0301 8004 AmdK8 - ok
11:34:28.0332 8004 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
11:34:28.0361 8004 AmdPPM - ok
11:34:28.0380 8004 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\Windows\system32\drivers\amdsata.sys
11:34:28.0393 8004 amdsata - ok
11:34:28.0418 8004 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
11:34:28.0432 8004 amdsbs - ok
11:34:28.0451 8004 amdxata (540daf1cea6094886d72126fd7c33048) C:\Windows\system32\drivers\amdxata.sys
11:34:28.0462 8004 amdxata - ok
11:34:28.0532 8004 ApfiltrService (6690e42ced5d067233abad42da141213) C:\Windows\system32\DRIVERS\Apfiltr.sys
11:34:28.0547 8004 ApfiltrService - ok
11:34:28.0603 8004 AppID (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys
11:34:28.0742 8004 AppID - ok
11:34:28.0790 8004 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
11:34:28.0803 8004 arc - ok
11:34:28.0814 8004 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
11:34:28.0826 8004 arcsas - ok
11:34:28.0870 8004 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
11:34:29.0021 8004 AsyncMac - ok
11:34:29.0114 8004 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys
11:34:29.0125 8004 atapi - ok
11:34:29.0202 8004 avgntflt (b1224e6b086cd6548315b04ab575a23e) C:\Windows\system32\DRIVERS\avgntflt.sys
11:34:29.0216 8004 avgntflt - ok
11:34:29.0237 8004 avipbb (ed45f12cfa62b83765c9c1496758cc87) C:\Windows\system32\DRIVERS\avipbb.sys
11:34:29.0248 8004 avipbb - ok
11:34:29.0307 8004 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys
11:34:29.0360 8004 b06bdrv - ok
11:34:29.0408 8004 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
11:34:29.0446 8004 b57nd60a - ok
11:34:29.0484 8004 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
11:34:29.0533 8004 Beep - ok
11:34:29.0712 8004 BHDrvx64 (95da658498248d5832aa240850706150) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.1.0.37\Definitions\BASHDefs\20100810.004\BHDrvx64.sys
11:34:29.0739 8004 BHDrvx64 - ok
11:34:29.0806 8004 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
11:34:29.0837 8004 blbdrive - ok
11:34:29.0901 8004 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys
11:34:29.0935 8004 bowser - ok
11:34:29.0954 8004 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys
11:34:30.0027 8004 BrFiltLo - ok
11:34:30.0044 8004 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys
11:34:30.0087 8004 BrFiltUp - ok
11:34:30.0136 8004 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
11:34:30.0168 8004 Brserid - ok
11:34:30.0198 8004 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
11:34:30.0233 8004 BrSerWdm - ok
11:34:30.0258 8004 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
11:34:30.0286 8004 BrUsbMdm - ok
11:34:30.0303 8004 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
11:34:30.0328 8004 BrUsbSer - ok
11:34:30.0378 8004 BthEnum (cf98190a94f62e405c8cb255018b2315) C:\Windows\system32\drivers\BthEnum.sys
11:34:30.0433 8004 BthEnum - ok
11:34:30.0468 8004 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
11:34:30.0491 8004 BTHMODEM - ok
11:34:30.0540 8004 BthPan (02dd601b708dd0667e1331fa8518e9ff) C:\Windows\system32\DRIVERS\bthpan.sys
11:34:30.0579 8004 BthPan - ok
11:34:30.0626 8004 BTHPORT (64c198198501f7560ee41d8d1efa7952) C:\Windows\System32\Drivers\BTHport.sys
11:34:30.0650 8004 BTHPORT - ok
11:34:30.0677 8004 BTHUSB (f188b7394d81010767b6df3178519a37) C:\Windows\System32\Drivers\BTHUSB.sys
11:34:30.0711 8004 BTHUSB - ok
11:34:30.0745 8004 btmaux (962bd3689e2c85f0ba97f3d7e7ba540b) C:\Windows\system32\DRIVERS\btmaux.sys
11:34:30.0756 8004 btmaux - ok
11:34:30.0803 8004 btmhsf (ec1220b647f0d995da5cad4153454779) C:\Windows\system32\DRIVERS\btmhsf.sys
11:34:30.0844 8004 btmhsf - ok
11:34:30.0902 8004 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
11:34:30.0944 8004 cdfs - ok
11:34:30.0994 8004 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\DRIVERS\cdrom.sys
11:34:31.0025 8004 cdrom - ok
11:34:31.0053 8004 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys
11:34:31.0100 8004 circlass - ok
11:34:31.0134 8004 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
11:34:31.0152 8004 CLFS - ok
11:34:31.0211 8004 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
11:34:31.0237 8004 CmBatt - ok
11:34:31.0264 8004 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys
11:34:31.0275 8004 cmdide - ok
11:34:31.0321 8004 CNG (d5fea92400f12412b3922087c09da6a5) C:\Windows\system32\Drivers\cng.sys
11:34:31.0352 8004 CNG - ok
11:34:31.0388 8004 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
11:34:31.0402 8004 Compbatt - ok
11:34:31.0436 8004 CompositeBus (03edb043586cceba243d689bdda370a8) C:\Windows\system32\drivers\CompositeBus.sys
11:34:31.0462 8004 CompositeBus - ok
11:34:31.0504 8004 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys
11:34:31.0515 8004 crcdisk - ok
11:34:31.0565 8004 CSC (54da3dfd29ed9f1619b6f53f3ce55e49) C:\Windows\system32\drivers\csc.sys
11:34:31.0601 8004 CSC - ok
11:34:31.0654 8004 CtClsFlt (fbe228abeab2be13b9c3a3a112d4d8dc) C:\Windows\system32\DRIVERS\CtClsFlt.sys
11:34:31.0701 8004 CtClsFlt - ok
11:34:31.0750 8004 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys
11:34:31.0797 8004 DfsC - ok
11:34:31.0821 8004 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
11:34:31.0867 8004 discache - ok
11:34:31.0904 8004 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys
11:34:31.0919 8004 Disk - ok
11:34:31.0974 8004 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
11:34:31.0994 8004 drmkaud - ok
11:34:32.0049 8004 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys
11:34:32.0078 8004 DXGKrnl - ok
11:34:32.0152 8004 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys
11:34:32.0243 8004 ebdrv - ok
11:34:32.0340 8004 eeCtrl (066108ae4c35835081598827a1a7d08d) C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys
11:34:32.0358 8004 eeCtrl - ok
11:34:32.0402 8004 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys
11:34:32.0425 8004 elxstor - ok
11:34:32.0474 8004 EraserUtilRebootDrv (12866876e3851f1e5d462b2a83e25578) C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
11:34:32.0488 8004 EraserUtilRebootDrv - ok
11:34:32.0519 8004 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys
11:34:32.0553 8004 ErrDev - ok
11:34:32.0617 8004 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
11:34:32.0657 8004 exfat - ok
11:34:32.0684 8004 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
11:34:32.0734 8004 fastfat - ok
11:34:32.0770 8004 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
11:34:32.0802 8004 fdc - ok
11:34:32.0846 8004 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
11:34:32.0860 8004 FileInfo - ok
11:34:32.0880 8004 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
11:34:32.0935 8004 Filetrace - ok
11:34:32.0955 8004 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys
11:34:32.0969 8004 flpydisk - ok
11:34:33.0002 8004 FltMgr (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys
11:34:33.0019 8004 FltMgr - ok
11:34:33.0037 8004 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
11:34:33.0049 8004 FsDepends - ok
11:34:33.0067 8004 Fs_Rec (e95ef8547de20cf0603557c0cf7a9462) C:\Windows\system32\drivers\Fs_Rec.sys
11:34:33.0079 8004 Fs_Rec - ok
11:34:33.0117 8004 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys
11:34:33.0134 8004 fvevol - ok
11:34:33.0165 8004 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys
11:34:33.0176 8004 gagp30kx - ok
11:34:33.0197 8004 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
11:34:33.0262 8004 hcw85cir - ok
11:34:33.0312 8004 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\drivers\HDAudBus.sys
11:34:33.0345 8004 HDAudBus - ok
11:34:33.0362 8004 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys
11:34:33.0383 8004 HidBatt - ok
11:34:33.0399 8004 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys
11:34:33.0434 8004 HidBth - ok
11:34:33.0460 8004 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys
11:34:33.0488 8004 HidIr - ok
11:34:33.0538 8004 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\drivers\hidusb.sys
11:34:33.0562 8004 HidUsb - ok
11:34:33.0615 8004 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys
11:34:33.0628 8004 HpSAMD - ok
11:34:33.0683 8004 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys
11:34:33.0727 8004 HTTP - ok
11:34:33.0770 8004 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys
11:34:33.0781 8004 hwpolicy - ok
11:34:33.0818 8004 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\drivers\i8042prt.sys
11:34:33.0832 8004 i8042prt - ok
11:34:33.0882 8004 iaStor (d469b77687e12fe43e344806740b624d) C:\Windows\system32\DRIVERS\iaStor.sys
11:34:33.0898 8004 iaStor - ok
11:34:33.0936 8004 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\Windows\system32\drivers\iaStorV.sys
11:34:33.0955 8004 iaStorV - ok
11:34:33.0983 8004 iBtFltCoex (e44f0b4dc753c14930b8dc48bb7a1644) C:\Windows\system32\DRIVERS\iBtFltCoex.sys
11:34:34.0002 8004 iBtFltCoex - ok
11:34:34.0164 8004 IDSVia64 (c3292140bf458b46cf8abbfd7e177bbe) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.1.0.37\Definitions\IPSDefs\20100706.002\IDSVia64.sys
11:34:34.0185 8004 IDSVia64 - ok
11:34:34.0433 8004 igfx (795c99dc4f574c97c03d0bb39cf099ee) C:\Windows\system32\DRIVERS\igdkmd64.sys
11:34:34.0734 8004 igfx - ok
11:34:34.0767 8004 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys
11:34:34.0779 8004 iirsp - ok
11:34:34.0814 8004 Impcd (dd587a55390ed2295bce6d36ad567da9) C:\Windows\system32\DRIVERS\Impcd.sys
11:34:34.0853 8004 Impcd - ok
11:34:34.0919 8004 IntcAzAudAddService (a9853214cc97796579d75b1f59c51dcd) C:\Windows\system32\drivers\RTKVHD64.sys
11:34:34.0992 8004 IntcAzAudAddService - ok
11:34:35.0040 8004 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys
11:34:35.0052 8004 intelide - ok
11:34:35.0082 8004 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
11:34:35.0105 8004 intelppm - ok
11:34:35.0152 8004 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys
11:34:35.0194 8004 IpFilterDriver - ok
11:34:35.0224 8004 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys
11:34:35.0239 8004 IPMIDRV - ok
11:34:35.0259 8004 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
11:34:35.0311 8004 IPNAT - ok
11:34:35.0333 8004 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
11:34:35.0407 8004 IRENUM - ok
11:34:35.0444 8004 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys
11:34:35.0457 8004 isapnp - ok
11:34:35.0488 8004 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys
11:34:35.0503 8004 iScsiPrt - ok
11:34:35.0533 8004 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\drivers\kbdclass.sys
11:34:35.0545 8004 kbdclass - ok
11:34:35.0565 8004 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\drivers\kbdhid.sys
11:34:35.0589 8004 kbdhid - ok
11:34:35.0632 8004 KSecDD (ccd53b5bd33ce0c889e830d839c8b66e) C:\Windows\system32\Drivers\ksecdd.sys
11:34:35.0644 8004 KSecDD - ok
11:34:35.0679 8004 KSecPkg (9ff918a261752c12639e8ad4208d2c2f) C:\Windows\system32\Drivers\ksecpkg.sys
11:34:35.0693 8004 KSecPkg - ok
11:34:35.0718 8004 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
11:34:35.0758 8004 ksthunk - ok
11:34:35.0832 8004 LEqdUsb (becbd7cd46776b8739ee18061f45a581) C:\Windows\system32\DRIVERS\LEqdUsb.Sys
11:34:35.0844 8004 LEqdUsb - ok
11:34:35.0884 8004 LHidEqd (21d6bd7d62c270059eb8e2b1d4095880) C:\Windows\system32\DRIVERS\LHidEqd.Sys
11:34:35.0896 8004 LHidEqd - ok
11:34:35.0915 8004 LHidFilt (b6552d382ff070b4ed34cbd6737277c0) C:\Windows\system32\DRIVERS\LHidFilt.Sys
11:34:35.0926 8004 LHidFilt - ok
11:34:35.0964 8004 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
11:34:36.0008 8004 lltdio - ok
11:34:36.0044 8004 LMouFilt (73c1f563ab73d459dffe682d66476558) C:\Windows\system32\DRIVERS\LMouFilt.Sys
11:34:36.0055 8004 LMouFilt - ok
11:34:36.0099 8004 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys
11:34:36.0112 8004 LSI_FC - ok
11:34:36.0137 8004 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys
11:34:36.0150 8004 LSI_SAS - ok
11:34:36.0168 8004 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys
11:34:36.0179 8004 LSI_SAS2 - ok
11:34:36.0197 8004 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys
11:34:36.0210 8004 LSI_SCSI - ok
11:34:36.0237 8004 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
11:34:36.0282 8004 luafv - ok
11:34:36.0325 8004 MBAMProtector (23a854450dab5c9b7a42ab9be6f2e4bd) C:\Windows\system32\drivers\mbam.sys
11:34:36.0337 8004 MBAMProtector - ok
11:34:36.0358 8004 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys
11:34:36.0370 8004 megasas - ok
11:34:36.0392 8004 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys
11:34:36.0409 8004 MegaSR - ok
11:34:36.0452 8004 MEIx64 (a6518dcc42f7a6e999bb3bea8fd87567) C:\Windows\system32\DRIVERS\HECIx64.sys
11:34:36.0463 8004 MEIx64 - ok
11:34:36.0486 8004 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
11:34:36.0527 8004 Modem - ok
11:34:36.0555 8004 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
11:34:36.0582 8004 monitor - ok
11:34:36.0636 8004 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\drivers\mouclass.sys
11:34:36.0651 8004 mouclass - ok
11:34:36.0667 8004 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
11:34:36.0689 8004 mouhid - ok
11:34:36.0735 8004 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys
11:34:36.0747 8004 mountmgr - ok
11:34:36.0789 8004 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys
11:34:36.0805 8004 mpio - ok
11:34:36.0825 8004 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
11:34:36.0863 8004 mpsdrv - ok
11:34:36.0906 8004 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys
11:34:36.0969 8004 MRxDAV - ok
11:34:36.0999 8004 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys
11:34:37.0022 8004 mrxsmb - ok
11:34:37.0045 8004 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\Windows\system32\DRIVERS\mrxsmb10.sys
11:34:37.0072 8004 mrxsmb10 - ok
11:34:37.0097 8004 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
11:34:37.0126 8004 mrxsmb20 - ok
11:34:37.0163 8004 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys
11:34:37.0178 8004 msahci - ok
11:34:37.0209 8004 msdsm (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys
11:34:37.0224 8004 msdsm - ok
11:34:37.0263 8004 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
11:34:37.0316 8004 Msfs - ok
11:34:37.0340 8004 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
11:34:37.0379 8004 mshidkmdf - ok
11:34:37.0404 8004 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys
11:34:37.0416 8004 msisadrv - ok
11:34:37.0442 8004 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
11:34:37.0487 8004 MSKSSRV - ok
11:34:37.0506 8004 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
11:34:37.0549 8004 MSPCLOCK - ok
11:34:37.0573 8004 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
11:34:37.0614 8004 MSPQM - ok
11:34:37.0653 8004 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys
11:34:37.0671 8004 MsRPC - ok
11:34:37.0717 8004 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\drivers\mssmbios.sys
11:34:37.0728 8004 mssmbios - ok
11:34:37.0759 8004 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
11:34:37.0799 8004 MSTEE - ok
11:34:37.0814 8004 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys
11:34:37.0828 8004 MTConfig - ok
11:34:37.0848 8004 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
11:34:37.0860 8004 Mup - ok
11:34:37.0903 8004 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
11:34:37.0947 8004 NativeWifiP - ok
11:34:38.0053 8004 NAVENG (7be93dbb02b66e72872ff76d8a92e662) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.1.0.37\Definitions\VirusDefs\20110103.001\ENG64.SYS
11:34:38.0065 8004 NAVENG - ok
11:34:38.0101 8004 NAVEX15 (be99edbba322ca59b3f2fe17b9bf987a) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.1.0.37\Definitions\VirusDefs\20110103.001\EX64.SYS
11:34:38.0159 8004 NAVEX15 - ok
11:34:38.0252 8004 NDIS (c38b8ae57f78915905064a9a24dc1586) C:\Windows\system32\drivers\ndis.sys
11:34:38.0281 8004 NDIS - ok
11:34:38.0317 8004 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
11:34:38.0361 8004 NdisCap - ok
11:34:38.0393 8004 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
11:34:38.0441 8004 NdisTapi - ok
11:34:38.0491 8004 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys
11:34:38.0534 8004 Ndisuio - ok
11:34:38.0570 8004 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys
11:34:38.0620 8004 NdisWan - ok
11:34:38.0672 8004 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys
11:34:38.0709 8004 NDProxy - ok
11:34:38.0740 8004 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
11:34:38.0788 8004 NetBIOS - ok
11:34:38.0818 8004 NetBT (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys
11:34:38.0859 8004 NetBT - ok
11:34:39.0035 8004 NETwNs64 (5d262402b0634c998f8cbcead7dd8676) C:\Windows\system32\DRIVERS\NETwNs64.sys
11:34:39.0269 8004 NETwNs64 - ok
11:34:39.0300 8004 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys
11:34:39.0311 8004 nfrd960 - ok
11:34:39.0342 8004 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
11:34:39.0383 8004 Npfs - ok
11:34:39.0407 8004 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
11:34:39.0439 8004 nsiproxy - ok
11:34:39.0492 8004 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\Windows\system32\drivers\Ntfs.sys
11:34:39.0546 8004 Ntfs - ok
11:34:39.0564 8004 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
11:34:39.0607 8004 Null - ok
11:34:39.0650 8004 nusb3hub (0ebc9d13cd96c15b1b18d8678a609e4b) C:\Windows\system32\DRIVERS\nusb3hub.sys
11:34:39.0686 8004 nusb3hub - ok
11:34:39.0713 8004 nusb3xhc (7bdec000d56d485021d9c1e63c2f81ca) C:\Windows\system32\DRIVERS\nusb3xhc.sys
11:34:39.0752 8004 nusb3xhc - ok
11:34:39.0796 8004 nvkflt (7b13d007927920075db9eaabd7abb6fe) C:\Windows\system32\DRIVERS\nvkflt.sys
11:34:39.0810 8004 nvkflt - ok
11:34:40.0032 8004 nvlddmkm (cc1efea1f0ab17e59bd4b5baff3e5cb0) C:\Windows\system32\DRIVERS\nvlddmkm.sys
11:34:40.0353 8004 nvlddmkm - ok
11:34:40.0396 8004 nvpciflt (2e5de4423bf6d1c44609febed7b1ff0f) C:\Windows\system32\DRIVERS\nvpciflt.sys
11:34:40.0408 8004 nvpciflt - ok
11:34:40.0453 8004 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\Windows\system32\drivers\nvraid.sys
11:34:40.0469 8004 nvraid - ok
11:34:40.0510 8004 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\Windows\system32\drivers\nvstor.sys
11:34:40.0526 8004 nvstor - ok
11:34:40.0598 8004 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys
11:34:40.0611 8004 nv_agp - ok
11:34:40.0632 8004 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys
11:34:40.0655 8004 ohci1394 - ok
11:34:40.0685 8004 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys
11:34:40.0711 8004 Parport - ok
11:34:40.0747 8004 partmgr (871eadac56b0a4c6512bbe32753ccf79) C:\Windows\system32\drivers\partmgr.sys
11:34:40.0763 8004 partmgr - ok
11:34:40.0788 8004 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys
11:34:40.0803 8004 pci - ok
11:34:40.0838 8004 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys
11:34:40.0852 8004 pciide - ok
11:34:40.0875 8004 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys
11:34:40.0890 8004 pcmcia - ok
11:34:40.0913 8004 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
11:34:40.0925 8004 pcw - ok
11:34:40.0953 8004 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
11:34:40.0994 8004 PEAUTH - ok
11:34:41.0085 8004 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys
11:34:41.0129 8004 PptpMiniport - ok
11:34:41.0147 8004 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys
11:34:41.0171 8004 Processor - ok
11:34:41.0217 8004 Psched (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys
11:34:41.0257 8004 Psched - ok
11:34:41.0292 8004 PxHlpa64 (87b04878a6d59d6c79251dc960c674c1) C:\Windows\system32\Drivers\PxHlpa64.sys
11:34:41.0302 8004 PxHlpa64 - ok
11:34:41.0363 8004 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys
11:34:41.0410 8004 ql2300 - ok
11:34:41.0430 8004 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys
11:34:41.0443 8004 ql40xx - ok
11:34:41.0465 8004 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
11:34:41.0493 8004 QWAVEdrv - ok
11:34:41.0527 8004 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
11:34:41.0566 8004 RasAcd - ok
11:34:41.0602 8004 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
11:34:41.0640 8004 RasAgileVpn - ok
11:34:41.0696 8004 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys
11:34:41.0733 8004 Rasl2tp - ok
11:34:41.0782 8004 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
11:34:41.0830 8004 RasPppoe - ok
11:34:41.0852 8004 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
11:34:41.0892 8004 RasSstp - ok
11:34:41.0928 8004 rdbss (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys
11:34:41.0972 8004 rdbss - ok
11:34:41.0996 8004 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
11:34:42.0026 8004 rdpbus - ok
11:34:42.0056 8004 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
11:34:42.0088 8004 RDPCDD - ok
11:34:42.0130 8004 RDPDR (1b6163c503398b23ff8b939c67747683) C:\Windows\system32\drivers\rdpdr.sys
11:34:42.0164 8004 RDPDR - ok
11:34:42.0185 8004 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
11:34:42.0233 8004 RDPENCDD - ok
11:34:42.0254 8004 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
11:34:42.0299 8004 RDPREFMP - ok
11:34:42.0338 8004 RDPWD (15b66c206b5cb095bab980553f38ed23) C:\Windows\system32\drivers\RDPWD.sys
11:34:42.0373 8004 RDPWD - ok
11:34:42.0419 8004 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys
11:34:42.0434 8004 rdyboost - ok
11:34:42.0502 8004 RFCOMM (3dd798846e2c28102b922c56e71b7932) C:\Windows\system32\DRIVERS\rfcomm.sys
11:34:42.0530 8004 RFCOMM - ok
11:34:42.0580 8004 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
11:34:42.0623 8004 rspndr - ok
11:34:42.0658 8004 RSUSBSTOR (135a64530d7699ad48f29d73a658dd11) C:\Windows\system32\Drivers\RtsUStor.sys
11:34:42.0672 8004 RSUSBSTOR - ok
11:34:42.0704 8004 RTL8167 (a73ed14670220307874ad6bc2f279349) C:\Windows\system32\DRIVERS\Rt64win7.sys
11:34:42.0723 8004 RTL8167 - ok
11:34:42.0760 8004 s3cap (e60c0a09f997826c7627b244195ab581) C:\Windows\system32\drivers\vms3cap.sys
11:34:42.0802 8004 s3cap - ok
11:34:42.0838 8004 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys
11:34:42.0851 8004 sbp2port - ok
11:34:42.0880 8004 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys
11:34:42.0922 8004 scfilter - ok
11:34:42.0966 8004 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
11:34:43.0012 8004 secdrv - ok
11:34:43.0050 8004 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
11:34:43.0077 8004 Serenum - ok
11:34:43.0104 8004 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
11:34:43.0126 8004 Serial - ok
11:34:43.0176 8004 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys
11:34:43.0203 8004 sermouse - ok
11:34:43.0230 8004 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys
11:34:43.0249 8004 sffdisk - ok
11:34:43.0267 8004 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys
11:34:43.0289 8004 sffp_mmc - ok
11:34:43.0312 8004 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\drivers\sffp_sd.sys
11:34:43.0345 8004 sffp_sd - ok
11:34:43.0386 8004 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys
11:34:43.0401 8004 sfloppy - ok
11:34:43.0453 8004 Sftfs (a40abfdcb75f835fdf3ce0cc64e4250d) C:\Windows\system32\DRIVERS\Sftfslh.sys
11:34:43.0478 8004 Sftfs - ok
11:34:43.0519 8004 Sftplay (411769ed1cb12d2b44217734347bdb7a) C:\Windows\system32\DRIVERS\Sftplaylh.sys
11:34:43.0533 8004 Sftplay - ok
11:34:43.0553 8004 Sftredir (a14d0df34bbb00ea94da16193d0c7957) C:\Windows\system32\DRIVERS\Sftredirlh.sys
11:34:43.0565 8004 Sftredir - ok
11:34:43.0585 8004 Sftvol (393b22addd89979eb1c60898f51c3648) C:\Windows\system32\DRIVERS\Sftvollh.sys
11:34:43.0595 8004 Sftvol - ok
11:34:43.0636 8004 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys
11:34:43.0649 8004 SiSRaid2 - ok
11:34:43.0669 8004 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys
11:34:43.0680 8004 SiSRaid4 - ok
11:34:43.0701 8004 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
11:34:43.0742 8004 Smb - ok
11:34:43.0782 8004 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
11:34:43.0793 8004 spldr - ok
11:34:43.0857 8004 SRTSP (90ef30c3867bcde4579c01a6d6e75a7a) C:\Windows\System32\Drivers\NISx64\1206000.01D\SRTSP64.SYS
11:34:43.0883 8004 SRTSP - ok
11:34:43.0904 8004 SRTSPX (c513e8a5e7978da49077f5484344ee1b) C:\Windows\system32\drivers\NISx64\1206000.01D\SRTSPX64.SYS
11:34:43.0915 8004 SRTSPX - ok
11:34:43.0951 8004 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\Windows\system32\DRIVERS\srv.sys
11:34:43.0994 8004 srv - ok
11:34:44.0016 8004 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\Windows\system32\DRIVERS\srv2.sys
11:34:44.0044 8004 srv2 - ok
11:34:44.0069 8004 srvnet (27e461f0be5bff5fc737328f749538c3) C:\Windows\system32\DRIVERS\srvnet.sys
11:34:44.0098 8004 srvnet - ok
11:34:44.0159 8004 stdcfltn (92e7f6666633d2dd91d527503daa7be0) C:\Windows\system32\DRIVERS\stdcfltn.sys
11:34:44.0169 8004 stdcfltn - ok
11:34:44.0208 8004 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys
11:34:44.0221 8004 stexstor - ok
11:34:44.0261 8004 StillCam (decacb6921ded1a38642642685d77dac) C:\Windows\system32\DRIVERS\serscan.sys
11:34:44.0283 8004 StillCam - ok
11:34:44.0327 8004 storflt (7785dc213270d2fc066538daf94087e7) C:\Windows\system32\drivers\vmstorfl.sys
11:34:44.0339 8004 storflt - ok
11:34:44.0371 8004 storvsc (d34e4943d5ac096c8edeebfd80d76e23) C:\Windows\system32\drivers\storvsc.sys
11:34:44.0383 8004 storvsc - ok
11:34:44.0423 8004 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\drivers\swenum.sys
11:34:44.0435 8004 swenum - ok
11:34:44.0516 8004 SymDS (6160145c7a87fc7672e8e3b886888176) C:\Windows\system32\drivers\NISx64\1206000.01D\SYMDS64.SYS
11:34:44.0534 8004 SymDS - ok
11:34:44.0568 8004 SymEFA (96aeed40d4d3521568b42027687e69e0) C:\Windows\system32\drivers\NISx64\1206000.01D\SYMEFA64.SYS
11:34:44.0594 8004 SymEFA - ok
11:34:44.0622 8004 SymEvent (21a1c2d694c3cf962d31f5e873ab3d6f) C:\Windows\system32\Drivers\SYMEVENT64x86.SYS
11:34:44.0635 8004 SymEvent - ok
11:34:44.0655 8004 SymIRON (bd0d711d8cbfcaa19ca123306eaf53a5) C:\Windows\system32\drivers\NISx64\1206000.01D\Ironx64.SYS
11:34:44.0667 8004 SymIRON - ok
11:34:44.0688 8004 SymNetS (a6adb3d83023f8daa0f7b6fda785d83b) C:\Windows\System32\Drivers\NISx64\1206000.01D\SYMNETS.SYS
11:34:44.0704 8004 SymNetS - ok
11:34:44.0780 8004 Tcpip (fc62769e7bff2896035aeed399108162) C:\Windows\system32\drivers\tcpip.sys
11:34:44.0837 8004 Tcpip - ok
11:34:44.0886 8004 TCPIP6 (fc62769e7bff2896035aeed399108162) C:\Windows\system32\DRIVERS\tcpip.sys
11:34:44.0921 8004 TCPIP6 - ok
11:34:44.0966 8004 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys
11:34:45.0007 8004 tcpipreg - ok
11:34:45.0039 8004 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
11:34:45.0072 8004 TDPIPE - ok
11:34:45.0099 8004 TDTCP (e4245bda3190a582d55ed09e137401a9) C:\Windows\system32\drivers\tdtcp.sys
11:34:45.0133 8004 TDTCP - ok
11:34:45.0170 8004 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys
11:34:45.0210 8004 tdx - ok
11:34:45.0240 8004 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\drivers\termdd.sys
11:34:45.0251 8004 TermDD - ok
11:34:45.0303 8004 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys
11:34:45.0347 8004 tssecsrv - ok
11:34:45.0411 8004 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys
11:34:45.0440 8004 TsUsbFlt - ok
11:34:45.0502 8004 tunnel (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys
11:34:45.0547 8004 tunnel - ok
11:34:45.0581 8004 TurboB (fd24f98d2898be093fe926604be7db99) C:\Windows\system32\DRIVERS\TurboB.sys
11:34:45.0594 8004 TurboB - ok
11:34:45.0619 8004 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys
11:34:45.0631 8004 uagp35 - ok
11:34:45.0673 8004 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys
11:34:45.0725 8004 udfs - ok
11:34:45.0772 8004 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys
11:34:45.0788 8004 uliagpkx - ok
11:34:45.0845 8004 umbus (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\drivers\umbus.sys
11:34:45.0858 8004 umbus - ok
11:34:45.0885 8004 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys
11:34:45.0898 8004 UmPass - ok
11:34:45.0951 8004 usbccgp (6f1a3157a1c89435352ceb543cdb359c) C:\Windows\system32\DRIVERS\usbccgp.sys
11:34:46.0000 8004 usbccgp - ok
11:34:46.0041 8004 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys
11:34:46.0064 8004 usbcir - ok
11:34:46.0126 8004 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\Windows\system32\drivers\usbehci.sys
11:34:46.0139 8004 usbehci - ok
11:34:46.0166 8004 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\Windows\system32\DRIVERS\usbhub.sys
11:34:46.0197 8004 usbhub - ok
11:34:46.0217 8004 usbohci (9840fc418b4cbd632d3d0a667a725c31) C:\Windows\system32\drivers\usbohci.sys
11:34:46.0239 8004 usbohci - ok
11:34:46.0268 8004 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
11:34:46.0285 8004 usbprint - ok
11:34:46.0307 8004 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\Windows\system32\DRIVERS\USBSTOR.SYS
11:34:46.0362 8004 USBSTOR - ok
11:34:46.0389 8004 usbuhci (62069a34518bcf9c1fd9e74b3f6db7cd) C:\Windows\system32\drivers\usbuhci.sys
11:34:46.0408 8004 usbuhci - ok
11:34:46.0439 8004 usbvideo (454800c2bc7f3927ce030141ee4f4c50) C:\Windows\System32\Drivers\usbvideo.sys
11:34:46.0467 8004 usbvideo - ok
11:34:46.0493 8004 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys
11:34:46.0505 8004 vdrvroot - ok
11:34:46.0549 8004 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
11:34:46.0565 8004 vga - ok
11:34:46.0582 8004 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
11:34:46.0628 8004 VgaSave - ok
11:34:46.0663 8004 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys
11:34:46.0680 8004 vhdmp - ok
11:34:46.0729 8004 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys
11:34:46.0740 8004 viaide - ok
11:34:46.0768 8004 vmbus (86ea3e79ae350fea5331a1303054005f) C:\Windows\system32\drivers\vmbus.sys
11:34:46.0783 8004 vmbus - ok
11:34:46.0804 8004 VMBusHID (7de90b48f210d29649380545db45a187) C:\Windows\system32\drivers\VMBusHID.sys
11:34:46.0826 8004 VMBusHID - ok
11:34:46.0849 8004 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys
11:34:46.0861 8004 volmgr - ok
11:34:46.0893 8004 volmgrx (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys
11:34:46.0912 8004 volmgrx - ok
11:34:46.0936 8004 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys
11:34:46.0952 8004 volsnap - ok
11:34:46.0981 8004 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys
11:34:46.0995 8004 vsmraid - ok
11:34:47.0018 8004 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\system32\DRIVERS\vwifibus.sys
11:34:47.0043 8004 vwifibus - ok
11:34:47.0063 8004 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\Windows\system32\DRIVERS\vwififlt.sys
11:34:47.0091 8004 vwififlt - ok
11:34:47.0122 8004 vwifimp (6a638fc4bfddc4d9b186c28c91bd1a01) C:\Windows\system32\DRIVERS\vwifimp.sys
11:34:47.0148 8004 vwifimp - ok
11:34:47.0183 8004 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys
11:34:47.0203 8004 WacomPen - ok
11:34:47.0259 8004 WANARP (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
11:34:47.0299 8004 WANARP - ok
11:34:47.0315 8004 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
11:34:47.0345 8004 Wanarpv6 - ok
11:34:47.0399 8004 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys
11:34:47.0411 8004 Wd - ok
11:34:47.0438 8004 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
11:34:47.0461 8004 Wdf01000 - ok
11:34:47.0495 8004 wdkmd (94dc2bf6cbaaa95e369c3756d3115a76) C:\Windows\system32\DRIVERS\WDKMD.sys
11:34:47.0506 8004 wdkmd - ok
11:34:47.0542 8004 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
11:34:47.0573 8004 WfpLwf - ok
11:34:47.0589 8004 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
11:34:47.0600 8004 WIMMount - ok
11:34:47.0645 8004 WinUSB (fe88b288356e7b47b74b13372add906d) C:\Windows\system32\DRIVERS\WinUSB.sys
11:34:47.0664 8004 WinUSB - ok
11:34:47.0713 8004 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\drivers\wmiacpi.sys
11:34:47.0740 8004 WmiAcpi - ok
11:34:47.0790 8004 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
11:34:47.0831 8004 ws2ifsl - ok
11:34:47.0880 8004 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys
11:34:47.0915 8004 WudfPf - ok
11:34:48.0366 8004 WUDFRd (cf8d590be3373029d57af80914190682) C:\Windows\system32\DRIVERS\WUDFRd.sys
11:34:48.0410 8004 WUDFRd - ok
11:34:48.0438 8004 MBR (0x1B8) (5c616939100b85e558da92b899a0fc36) \Device\Harddisk0\DR0
11:34:48.0617 8004 \Device\Harddisk0\DR0 - ok
11:34:48.0620 8004 Boot (0x1200) (8c1799444eec51129c5d7d54d4977a78) \Device\Harddisk0\DR0\Partition0
11:34:48.0621 8004 \Device\Harddisk0\DR0\Partition0 - ok
11:34:48.0652 8004 Boot (0x1200) (5db2db772b77d467c139b1c44fe1e23c) \Device\Harddisk0\DR0\Partition1
11:34:48.0654 8004 \Device\Harddisk0\DR0\Partition1 - ok
11:34:48.0655 8004 ============================================================
11:34:48.0655 8004 Scan finished
11:34:48.0655 8004 ============================================================
11:34:48.0664 7672 Detected object count: 0
11:34:48.0664 7672 Actual detected object count: 0
|
|
15.12.2011, 11:50
| #3 | |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Data Recovery - Bin ich jetzt clean? Dann bitte jetzt CF ausführen:
__________________ComboFix Ein Leitfaden und Tutorium zur Nutzung von ComboFix
Combofix darf ausschließlich ausgeführt werden, wenn ein Kompetenzler dies ausdrücklich empfohlen hat! Solltest du nach der Ausführung von Combofix Probleme beim Starten von Anwendungen haben und Meldungen erhalten wie Zitat:
__________________ |
|
15.12.2011, 15:03
| #4 |
| | Data Recovery - Bin ich jetzt clean? Nachdem ich combofix ausgeführt habe, und das Programm dann eine gefühlte Ewigkeit bei "Bereite Logdatei vor" stand, habe ich (nach Betrachtung einiger Threads mit ähnlichen Fällen) mutig-oder dumm- wie ich bin, das ComboFix beendet und den Rechner neugestartet. Mein Startmenü sieht zumindest schon wieder besser aus. Unter C:/ Combofix/ fand ich dann auch die combofix.txt . Unter C:/ direkt nicht. Ist das die richtige? Code:
ATTFilter ComboFix 11-12-15.02 - Gökhan 15.12.2011 14:08:11.1.8 - x64
Microsoft Windows 7 Professional 6.1.7601.1.1252.49.1031.18.4010.2183 [GMT 1:00]
ausgeführt von:: C:\Users\G÷khan\Desktop\ComboFix.exe
AV: AntiVir Desktop *Disabled/Updated* {090F9C29-64CE-6C6F-379C-5901B49A85B7}
AV: Norton Internet Security *Disabled/Outdated* {63DF5164-9100-186D-2187-8DC619EFD8BF}
FW: Norton Internet Security *Disabled* {5BE4D041-DB6F-1935-0AD8-24F3E73C9FC4}
SP: AntiVir Desktop *Disabled/Updated* {B26E7DCD-42F4-63E1-0D2C-6273CF1DCF0A}
SP: Norton Internet Security *Disabled/Outdated* {D8BEB080-B73A-17E3-1B37-B6B462689202}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
(((((((((((((((((((((((((((((((((((( Weitere Löschungen ))))))))))))))))))))))))))))))))))))))))))))))))
C:\ProgramData\Roaming
((((((((((((((((((((((( Dateien erstellt von 2011-11-15 bis 2011-12-15 ))))))))))))))))))))))))))))))
2011-12-15 13:29:16 . 2011-12-15 13:29:16 -------- d-----w- C:\Users\UpdatusUser\AppData\Local\temp
2011-12-15 13:29:16 . 2011-12-15 13:29:16 -------- d-----w- C:\Users\Default\AppData\Local\temp
2011-12-15 06:37:50 . 2011-12-15 06:37:50 69000 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{7444646F-4F7B-4C79-9854-C5A7B7B77F2B}\offreg.dll
2011-12-15 06:31:37 . 2011-12-15 06:31:37 -------- d-----w- C:\_OTL
2011-12-14 09:14:26 . 2011-11-24 04:52:09 3145216 ----a-w- C:\Windows\system32\win32k.sys
2011-12-14 09:14:23 . 2011-10-15 06:31:56 723456 ----a-w- C:\Windows\system32\EncDec.dll
2011-12-14 09:14:22 . 2011-10-15 05:38:59 534528 ----a-w- C:\Windows\SysWow64\EncDec.dll
2011-12-14 09:14:18 . 2011-11-05 05:32:50 2048 ----a-w- C:\Windows\system32\tzres.dll
2011-12-14 09:14:18 . 2011-11-05 04:26:03 2048 ----a-w- C:\Windows\SysWow64\tzres.dll
2011-12-13 17:14:59 . 2011-11-21 11:40:38 8822856 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{7444646F-4F7B-4C79-9854-C5A7B7B77F2B}\mpengine.dll
2011-12-13 10:36:18 . 2011-12-13 10:36:18 -------- d-----w- C:\Program Files (x86)\ESET
2011-12-13 09:01:10 . 2011-12-13 09:01:10 -------- d-----w- C:\Program Files (x86)\Common Files\Java
2011-12-13 09:00:53 . 2011-11-10 04:54:13 476904 ----a-w- C:\Program Files (x86)\Mozilla Firefox\Plugins\npdeployJava1.dll
2011-12-12 19:49:42 . 2011-12-12 19:49:42 -------- d-----w- C:\Users\Gökhan\AppData\Roaming\Malwarebytes
2011-12-12 19:49:32 . 2011-12-12 19:49:32 -------- d-----w- C:\ProgramData\Malwarebytes
2011-12-12 19:49:29 . 2011-12-12 20:54:37 -------- d-----w- C:\Program Files (x86)\Malwarebytes' Anti-Malware
2011-12-12 19:49:29 . 2011-08-31 16:00:50 25416 ----a-w- C:\Windows\system32\drivers\mbam.sys
2011-12-12 17:08:54 . 2011-12-12 20:53:48 -------- d-----w- C:\Users\Malte
2011-12-12 16:32:26 . 2011-12-12 16:32:26 -------- d-----w- C:\ProgramData\Kaspersky Lab
2011-12-12 16:27:05 . 2011-12-12 16:27:05 -------- d-----w- C:\Users\Gökhan\AppData\Roaming\Avira
2011-12-12 16:17:53 . 2011-12-12 16:17:53 -------- d-----w- C:\Logs
2011-12-07 16:20:05 . 2011-12-07 16:20:05 -------- d-----w- C:\Users\Gökhan\temp
2011-12-07 16:08:43 . 2011-12-07 16:08:43 158056 ----a-w- C:\ProgramData\Microsoft\Windows\Sqm\Manifest\Sqm10139.bin
2011-11-30 09:49:16 . 2011-12-08 11:54:34 -------- d-----w- C:\Users\Gökhan\AppData\Roaming\TeamViewer
.
(((((((((((((((((((((((((((((((((((( Find3M Bericht ))))))))))))))))))))))))))))))))))))))))))))))))))))))
|
|
15.12.2011, 15:53
| #5 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Data Recovery - Bin ich jetzt clean? Log ist unvollständig
__________________ Logfiles bitte immer in CODE-Tags posten |
|
16.12.2011, 08:53
| #6 |
| | Data Recovery - Bin ich jetzt clean? Leider bleibt es bei Stufe_4 eine gefühlte Ewigkeit stehen. Woran kann das liegen? |
|
20.12.2011, 09:39
| #7 |
| | Data Recovery - Bin ich jetzt clean? Hat irgendwer ne Idee? Ich komm nicht über Stufe 4 hinweg.... |
|
20.12.2011, 10:12
| #8 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Data Recovery - Bin ich jetzt clean? Starte Windows neu, lösch die alte combofix.exe, lade CF neu runter und probier es bitte nochmal.
__________________ Logfiles bitte immer in CODE-Tags posten |
|
| Themen zu Data Recovery - Bin ich jetzt clean? |
| antivir, appdata, browser, cache, clean, data, eset, fehlermeldungen, found, gen, java, klicke, malwarebytes, meldung, neu, nicht mehr, online, parallel, plötzlich, recovery, scan, surfen, variant, virus, win |
Hybrid-Darstellung
