Google: unerwünschte Weiterleitung

DarkAlb · 08.12.2011, 18:30

Hab ich ja! Kommt wieder die selbe Meldng, ich hätte den Norton noch installiert

markusg · 08.12.2011, 18:33

malwarebytes:
Downloade Dir bitte Malwarebytes

Installiere
das Programm in den vorgegebenen Pfad.
Vista und Win7 User mit Rechtsklick "als Administrator starten"
Starte Malwarebytes, klicke auf Aktualisierung --> Suche
nach Aktualisierung
Wenn das Update beendet wurde, aktiviere vollständiger Scan durchführen und drücke auf Scannen.
Wenn der Scan beendet
ist, klicke auf Ergebnisse anzeigen.
Versichere Dich, dass alle Funde markiert sind und drücke Entferne Auswahl.
Poste
das Logfile, welches sich in Notepad öffnet, hier in den Thread.
Nachträglich kannst du den Bericht unter "Log Dateien" finden.

DarkAlb · 08.12.2011, 19:19

Danke für die schnelle Hilfe! Malwarebytes hat nichts gefunden! Aber das Problem mit der unerwünschten Weiterleitung besteht immer noch. Hier das log.

Malwarebytes' Anti-Malware 1.51.2.1300
Malwarebytes : Free anti-malware, anti-virus and spyware removal download

Datenbank Version: 8334

Windows 6.1.7601 Service Pack 1
Internet Explorer 9.0.8112.16421

08.12.2011 19:13:39
mbam-log-2011-12-08 (19-13-39).txt

Art des Suchlaufs: Vollständiger Suchlauf (C:\|D:\|E:\|F:\|)
Durchsuchte Objekte: 318531
Laufzeit: 25 Minute(n), 16 Sekunde(n)

Infizierte Speicherprozesse: 0
Infizierte Speichermodule: 0
Infizierte Registrierungsschlüssel: 0
Infizierte Registrierungswerte: 0
Infizierte Dateiobjekte der Registrierung: 0
Infizierte Verzeichnisse: 0
Infizierte Dateien: 0

Infizierte Speicherprozesse:
(Keine bösartigen Objekte gefunden)

Infizierte Speichermodule:
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungsschlüssel:
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungswerte:
(Keine bösartigen Objekte gefunden)

Infizierte Dateiobjekte der Registrierung:
(Keine bösartigen Objekte gefunden)

Infizierte Verzeichnisse:
(Keine bösartigen Objekte gefunden)

Infizierte Dateien:
(Keine bösartigen Objekte gefunden)

markusg · 08.12.2011, 19:32

hi
download tdss killer:
http://www.trojaner-board.de/82358-t...entfernen.html
Klicke auf Change parameters
• Setze die Haken bei Verify driver digital signatures und Detect TDLFS file system
• Klick auf OK und anschließend auf Start scan
lösche niths, nur log posten

DarkAlb · 08.12.2011, 19:42

19:41:23.0629 1944 TDSS rootkit removing tool 2.6.22.0 Dec 7 2011 13:21:06
19:41:23.0876 1944 ============================================================
19:41:23.0876 1944 Current date / time: 2011/12/08 19:41:23.0876
19:41:23.0876 1944 SystemInfo:
19:41:23.0876 1944
19:41:23.0876 1944 OS Version: 6.1.7601 ServicePack: 1.0
19:41:23.0876 1944 Product type: Workstation
19:41:23.0876 1944 ComputerName: ANDI-HP
19:41:23.0876 1944 UserName: Andi
19:41:23.0876 1944 Windows directory: C:\Windows
19:41:23.0876 1944 System windows directory: C:\Windows
19:41:23.0876 1944 Running under WOW64
19:41:23.0876 1944 Processor architecture: Intel x64
19:41:23.0876 1944 Number of processors: 8
19:41:23.0876 1944 Page size: 0x1000
19:41:23.0876 1944 Boot type: Normal boot
19:41:23.0876 1944 ============================================================
19:41:24.0442 1944 Initialize success
19:41:39.0412 6588 ============================================================
19:41:39.0412 6588 Scan started
19:41:39.0412 6588 Mode: Manual; SigCheck; TDLFS;
19:41:39.0412 6588 ============================================================
19:41:40.0390 6588 1394ohci (a87d604aea360176311474c87a63bb88) C:\Windows\system32\drivers\1394ohci.sys
19:41:40.0493 6588 1394ohci - ok
19:41:40.0578 6588 Accelerometer (7a330a42870eb1fa81f88be514d2d566) C:\Windows\system32\DRIVERS\Accelerometer.sys
19:41:40.0612 6588 Accelerometer - ok
19:41:40.0697 6588 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys
19:41:40.0711 6588 ACPI - ok
19:41:40.0787 6588 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys
19:41:40.0859 6588 AcpiPmi - ok
19:41:40.0950 6588 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\drivers\adp94xx.sys
19:41:40.0972 6588 adp94xx - ok
19:41:41.0049 6588 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\drivers\adpahci.sys
19:41:41.0068 6588 adpahci - ok
19:41:41.0144 6588 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\drivers\adpu320.sys
19:41:41.0158 6588 adpu320 - ok
19:41:41.0263 6588 AFD (d5b031c308a409a0a576bff4cf083d30) C:\Windows\system32\drivers\afd.sys
19:41:41.0328 6588 AFD - ok
19:41:41.0405 6588 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys
19:41:41.0416 6588 agp440 - ok
19:41:41.0503 6588 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys
19:41:41.0511 6588 aliide - ok
19:41:41.0586 6588 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys
19:41:41.0595 6588 amdide - ok
19:41:41.0673 6588 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\drivers\amdk8.sys
19:41:41.0711 6588 AmdK8 - ok
19:41:42.0023 6588 amdkmdag (446a1aad34191665a8df6092bd8eb5a8) C:\Windows\system32\DRIVERS\atikmdag.sys
19:41:42.0324 6588 amdkmdag - ok
19:41:42.0397 6588 amdkmdap (f8f8a908fdb005a65ddf7238c814eea5) C:\Windows\system32\DRIVERS\atikmpag.sys
19:41:42.0435 6588 amdkmdap - ok
19:41:42.0522 6588 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\drivers\amdppm.sys
19:41:42.0579 6588 AmdPPM - ok
19:41:42.0652 6588 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\Windows\system32\drivers\amdsata.sys
19:41:42.0673 6588 amdsata - ok
19:41:42.0742 6588 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\drivers\amdsbs.sys
19:41:42.0756 6588 amdsbs - ok
19:41:42.0838 6588 amdxata (540daf1cea6094886d72126fd7c33048) C:\Windows\system32\drivers\amdxata.sys
19:41:42.0846 6588 amdxata - ok
19:41:42.0920 6588 AppID (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys
19:41:43.0081 6588 AppID - ok
19:41:43.0150 6588 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\drivers\arc.sys
19:41:43.0160 6588 arc - ok
19:41:43.0235 6588 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\drivers\arcsas.sys
19:41:43.0247 6588 arcsas - ok
19:41:43.0321 6588 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
19:41:43.0435 6588 AsyncMac - ok
19:41:43.0515 6588 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys
19:41:43.0524 6588 atapi - ok
19:41:43.0625 6588 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\drivers\bxvbda.sys
19:41:43.0686 6588 b06bdrv - ok
19:41:43.0757 6588 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
19:41:43.0790 6588 b57nd60a - ok
19:41:43.0908 6588 BCM43XX (9e84a931dbee0292e38ed672f6293a99) C:\Windows\system32\DRIVERS\bcmwl664.sys
19:41:43.0962 6588 BCM43XX - ok
19:41:44.0038 6588 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
19:41:44.0087 6588 Beep - ok
19:41:44.0292 6588 BHDrvx64 (41da5845e1f8af445bd626cf085c4541) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.1.3\Definitions\BASHDefs\20110901.001\BHDrvx64.sys
19:41:44.0338 6588 BHDrvx64 - ok
19:41:44.0413 6588 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\drivers\blbdrive.sys
19:41:44.0438 6588 blbdrive - ok
19:41:44.0519 6588 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys
19:41:44.0583 6588 bowser - ok
19:41:44.0647 6588 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\drivers\BrFiltLo.sys
19:41:44.0706 6588 BrFiltLo - ok
19:41:44.0778 6588 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\drivers\BrFiltUp.sys
19:41:44.0790 6588 BrFiltUp - ok
19:41:44.0865 6588 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
19:41:44.0925 6588 Brserid - ok
19:41:44.0997 6588 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
19:41:45.0024 6588 BrSerWdm - ok
19:41:45.0093 6588 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
19:41:45.0128 6588 BrUsbMdm - ok
19:41:45.0212 6588 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
19:41:45.0238 6588 BrUsbSer - ok
19:41:45.0329 6588 BthEnum (cf98190a94f62e405c8cb255018b2315) C:\Windows\system32\drivers\BthEnum.sys
19:41:45.0371 6588 BthEnum - ok
19:41:45.0441 6588 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\drivers\bthmodem.sys
19:41:45.0475 6588 BTHMODEM - ok
19:41:45.0548 6588 BthPan (02dd601b708dd0667e1331fa8518e9ff) C:\Windows\system32\DRIVERS\bthpan.sys
19:41:45.0596 6588 BthPan - ok
19:41:45.0683 6588 BTHPORT (64c198198501f7560ee41d8d1efa7952) C:\Windows\System32\Drivers\BTHport.sys
19:41:45.0724 6588 BTHPORT - ok
19:41:45.0817 6588 BTHUSB (f188b7394d81010767b6df3178519a37) C:\Windows\System32\Drivers\BTHUSB.sys
19:41:45.0861 6588 BTHUSB - ok
19:41:45.0945 6588 BTMCOM (6d3ff2b480f7ab8da103cbc7fbeacd48) C:\Windows\system32\Drivers\btmcom.sys
19:41:46.0005 6588 BTMCOM - ok
19:41:46.0083 6588 BTMUSB (b64cfabe65e241c784bb9f301795449b) C:\Windows\system32\Drivers\btmusb.sys
19:41:46.0160 6588 BTMUSB - ok
19:41:46.0280 6588 ccSet_NIS (a8ad33c9dd88c810cac00acc7f4329fb) C:\Windows\system32\drivers\NISx64\1301010.003\ccSetx64.sys
19:41:46.0289 6588 ccSet_NIS - ok
19:41:46.0369 6588 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
19:41:46.0419 6588 cdfs - ok
19:41:46.0492 6588 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\DRIVERS\cdrom.sys
19:41:46.0529 6588 cdrom - ok
19:41:46.0607 6588 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\drivers\circlass.sys
19:41:46.0644 6588 circlass - ok
19:41:46.0739 6588 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
19:41:46.0754 6588 CLFS - ok
19:41:46.0824 6588 clwvd (50f92c943f18b070f166d019dfab3d9a) C:\Windows\system32\DRIVERS\clwvd.sys
19:41:46.0832 6588 clwvd - ok
19:41:46.0896 6588 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\drivers\CmBatt.sys
19:41:46.0923 6588 CmBatt - ok
19:41:46.0993 6588 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys
19:41:47.0002 6588 cmdide - ok
19:41:47.0084 6588 CNG (d5fea92400f12412b3922087c09da6a5) C:\Windows\system32\Drivers\cng.sys
19:41:47.0113 6588 CNG - ok
19:41:47.0185 6588 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\drivers\compbatt.sys
19:41:47.0193 6588 Compbatt - ok
19:41:47.0261 6588 CompositeBus (03edb043586cceba243d689bdda370a8) C:\Windows\system32\drivers\CompositeBus.sys
19:41:47.0289 6588 CompositeBus - ok
19:41:47.0366 6588 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\drivers\crcdisk.sys
19:41:47.0375 6588 crcdisk - ok
19:41:47.0493 6588 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys
19:41:47.0542 6588 DfsC - ok
19:41:47.0623 6588 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
19:41:47.0664 6588 discache - ok
19:41:47.0779 6588 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\drivers\disk.sys
19:41:47.0787 6588 Disk - ok
19:41:47.0857 6588 Dot4 (b42ed0320c6e41102fde0005154849bb) C:\Windows\system32\DRIVERS\Dot4.sys
19:41:47.0895 6588 Dot4 - ok
19:41:47.0975 6588 Dot4Print (e9f5969233c5d89f3c35e3a66a52a361) C:\Windows\system32\DRIVERS\Dot4Prt.sys
19:41:48.0003 6588 Dot4Print - ok
19:41:48.0079 6588 dot4usb (fd05a02b0370bc3000f402e543ca5814) C:\Windows\system32\DRIVERS\dot4usb.sys
19:41:48.0110 6588 dot4usb - ok
19:41:48.0185 6588 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
19:41:48.0211 6588 drmkaud - ok
19:41:48.0302 6588 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys
19:41:48.0325 6588 DXGKrnl - ok
19:41:48.0460 6588 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\drivers\evbda.sys
19:41:48.0628 6588 ebdrv - ok
19:41:48.0718 6588 eeCtrl (5ccf1be80930aeb1cdebf561666325e8) C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys
19:41:48.0732 6588 eeCtrl - ok
19:41:48.0815 6588 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\drivers\elxstor.sys
19:41:48.0837 6588 elxstor - ok
19:41:48.0925 6588 EraserUtilRebootDrv (7a898e4a744621711be7e7b796c69876) C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
19:41:48.0934 6588 EraserUtilRebootDrv - ok
19:41:49.0007 6588 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys
19:41:49.0036 6588 ErrDev - ok
19:41:49.0119 6588 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
19:41:49.0172 6588 exfat - ok
19:41:49.0260 6588 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
19:41:49.0290 6588 fastfat - ok
19:41:49.0363 6588 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\drivers\fdc.sys
19:41:49.0400 6588 fdc - ok
19:41:49.0483 6588 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
19:41:49.0491 6588 FileInfo - ok
19:41:49.0570 6588 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
19:41:49.0639 6588 Filetrace - ok
19:41:49.0720 6588 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\drivers\flpydisk.sys
19:41:49.0731 6588 flpydisk - ok
19:41:49.0810 6588 FltMgr (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys
19:41:49.0822 6588 FltMgr - ok
19:41:49.0896 6588 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
19:41:49.0904 6588 FsDepends - ok
19:41:49.0980 6588 Fs_Rec (e95ef8547de20cf0603557c0cf7a9462) C:\Windows\system32\drivers\Fs_Rec.sys
19:41:49.0988 6588 Fs_Rec - ok
19:41:50.0063 6588 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys
19:41:50.0076 6588 fvevol - ok
19:41:50.0146 6588 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\drivers\gagp30kx.sys
19:41:50.0157 6588 gagp30kx - ok
19:41:50.0226 6588 GEARAspiWDM (e403aacf8c7bb11375122d2464560311) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
19:41:50.0233 6588 GEARAspiWDM - ok
19:41:50.0311 6588 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
19:41:50.0356 6588 hcw85cir - ok
19:41:50.0441 6588 HdAudAddService (975761c778e33cd22498059b91e7373a) C:\Windows\system32\drivers\HdAudio.sys
19:41:50.0483 6588 HdAudAddService - ok
19:41:50.0563 6588 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\DRIVERS\HDAudBus.sys
19:41:50.0600 6588 HDAudBus - ok
19:41:50.0696 6588 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\drivers\HidBatt.sys
19:41:50.0722 6588 HidBatt - ok
19:41:50.0797 6588 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\drivers\hidbth.sys
19:41:50.0841 6588 HidBth - ok
19:41:50.0920 6588 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\drivers\hidir.sys
19:41:50.0934 6588 HidIr - ok
19:41:51.0013 6588 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\DRIVERS\hidusb.sys
19:41:51.0046 6588 HidUsb - ok
19:41:51.0145 6588 hpdskflt (a4be23c451adeb252cd17a0532cae220) C:\Windows\system32\DRIVERS\hpdskflt.sys
19:41:51.0152 6588 hpdskflt - ok
19:41:51.0239 6588 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys
19:41:51.0249 6588 HpSAMD - ok
19:41:51.0337 6588 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys
19:41:51.0392 6588 HTTP - ok
19:41:51.0473 6588 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys
19:41:51.0482 6588 hwpolicy - ok
19:41:51.0589 6588 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\DRIVERS\i8042prt.sys
19:41:51.0601 6588 i8042prt - ok
19:41:51.0676 6588 iaStor (d469b77687e12fe43e344806740b624d) C:\Windows\system32\DRIVERS\iaStor.sys
19:41:51.0687 6588 iaStor - ok
19:41:51.0773 6588 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\Windows\system32\drivers\iaStorV.sys
19:41:51.0804 6588 iaStorV - ok
19:41:52.0013 6588 IDSVia64 (0b97f1a640ad3d159a7b5d2164c42e50) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.1.3\Definitions\IPSDefs\20110726.001\IDSVia64.sys
19:41:52.0027 6588 IDSVia64 - ok
19:41:52.0090 6588 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\drivers\iirsp.sys
19:41:52.0099 6588 iirsp - ok
19:41:52.0175 6588 IntcDAud (fc727061c0f47c8059e88e05d5c8e381) C:\Windows\system32\DRIVERS\IntcDAud.sys
19:41:52.0222 6588 IntcDAud - ok
19:41:52.0298 6588 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys
19:41:52.0306 6588 intelide - ok
19:41:52.0557 6588 intelkmd (efe5a0af39a8e179624117c521f1e012) C:\Windows\system32\DRIVERS\igdpmd64.sys
19:41:52.0867 6588 intelkmd - ok
19:41:52.0940 6588 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
19:41:52.0967 6588 intelppm - ok
19:41:53.0058 6588 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys
19:41:53.0084 6588 IpFilterDriver - ok
19:41:53.0147 6588 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys
19:41:53.0178 6588 IPMIDRV - ok
19:41:53.0259 6588 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
19:41:53.0306 6588 IPNAT - ok
19:41:53.0391 6588 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
19:41:53.0433 6588 IRENUM - ok
19:41:53.0507 6588 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys
19:41:53.0515 6588 isapnp - ok
19:41:53.0605 6588 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys
19:41:53.0621 6588 iScsiPrt - ok
19:41:53.0688 6588 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\DRIVERS\kbdclass.sys
19:41:53.0697 6588 kbdclass - ok
19:41:53.0766 6588 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\drivers\kbdhid.sys
19:41:53.0789 6588 kbdhid - ok
19:41:53.0865 6588 KSecDD (ccd53b5bd33ce0c889e830d839c8b66e) C:\Windows\system32\Drivers\ksecdd.sys
19:41:53.0874 6588 KSecDD - ok
19:41:53.0943 6588 KSecPkg (9ff918a261752c12639e8ad4208d2c2f) C:\Windows\system32\Drivers\ksecpkg.sys
19:41:53.0954 6588 KSecPkg - ok
19:41:54.0025 6588 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
19:41:54.0072 6588 ksthunk - ok
19:41:54.0155 6588 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
19:41:54.0200 6588 lltdio - ok
19:41:54.0301 6588 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\drivers\lsi_fc.sys
19:41:54.0313 6588 LSI_FC - ok
19:41:54.0383 6588 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\drivers\lsi_sas.sys
19:41:54.0394 6588 LSI_SAS - ok
19:41:54.0462 6588 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\drivers\lsi_sas2.sys
19:41:54.0472 6588 LSI_SAS2 - ok
19:41:54.0547 6588 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\drivers\lsi_scsi.sys
19:41:54.0558 6588 LSI_SCSI - ok
19:41:54.0654 6588 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
19:41:54.0698 6588 luafv - ok
19:41:54.0809 6588 MBAMProtector (23a854450dab5c9b7a42ab9be6f2e4bd) C:\Windows\system32\drivers\mbam.sys
19:41:54.0826 6588 MBAMProtector - ok
19:41:55.0065 6588 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\drivers\megasas.sys
19:41:55.0077 6588 megasas - ok
19:41:55.0307 6588 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\drivers\MegaSR.sys
19:41:55.0323 6588 MegaSR - ok
19:41:55.0396 6588 MEIx64 (a6518dcc42f7a6e999bb3bea8fd87567) C:\Windows\system32\DRIVERS\HECIx64.sys
19:41:55.0405 6588 MEIx64 - ok
19:41:55.0480 6588 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
19:41:55.0525 6588 Modem - ok
19:41:55.0616 6588 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
19:41:55.0650 6588 monitor - ok
19:41:55.0755 6588 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
19:41:55.0764 6588 mouclass - ok
19:41:55.0825 6588 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
19:41:55.0858 6588 mouhid - ok
19:41:55.0935 6588 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys
19:41:55.0945 6588 mountmgr - ok
19:41:56.0021 6588 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys
19:41:56.0035 6588 mpio - ok
19:41:56.0109 6588 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
19:41:56.0150 6588 mpsdrv - ok
19:41:56.0235 6588 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys
19:41:56.0278 6588 MRxDAV - ok
19:41:56.0396 6588 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys
19:41:56.0463 6588 mrxsmb - ok
19:41:56.0537 6588 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\Windows\system32\DRIVERS\mrxsmb10.sys
19:41:56.0550 6588 mrxsmb10 - ok
19:41:56.0652 6588 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
19:41:56.0662 6588 mrxsmb20 - ok
19:41:56.0743 6588 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys
19:41:56.0751 6588 msahci - ok
19:41:56.0826 6588 msdsm (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys
19:41:56.0838 6588 msdsm - ok
19:41:56.0909 6588 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
19:41:56.0952 6588 Msfs - ok
19:41:57.0030 6588 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
19:41:57.0081 6588 mshidkmdf - ok
19:41:57.0157 6588 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys
19:41:57.0165 6588 msisadrv - ok
19:41:57.0252 6588 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
19:41:57.0293 6588 MSKSSRV - ok
19:41:57.0386 6588 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
19:41:57.0432 6588 MSPCLOCK - ok
19:41:57.0517 6588 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
19:41:57.0560 6588 MSPQM - ok
19:41:57.0663 6588 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys
19:41:57.0676 6588 MsRPC - ok
19:41:57.0754 6588 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\drivers\mssmbios.sys
19:41:57.0763 6588 mssmbios - ok
19:41:57.0870 6588 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
19:41:57.0923 6588 MSTEE - ok
19:41:57.0995 6588 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\drivers\MTConfig.sys
19:41:58.0023 6588 MTConfig - ok
19:41:58.0130 6588 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
19:41:58.0139 6588 Mup - ok
19:41:58.0229 6588 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
19:41:58.0266 6588 NativeWifiP - ok
19:41:58.0527 6588 NAVENG (2dbe90210de76be6e1653bb20ec70ec2) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.1.3\Definitions\VirusDefs\20111207.036\ENG64.SYS
19:41:58.0540 6588 NAVENG - ok
19:41:58.0955 6588 NAVEX15 (346da70e203b8e2c850277713de8f71b) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.1.3\Definitions\VirusDefs\20111207.036\EX64.SYS
19:41:59.0019 6588 NAVEX15 - ok
19:41:59.0103 6588 NDIS (c38b8ae57f78915905064a9a24dc1586) C:\Windows\system32\drivers\ndis.sys
19:41:59.0125 6588 NDIS - ok
19:41:59.0205 6588 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
19:41:59.0249 6588 NdisCap - ok
19:41:59.0333 6588 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
19:41:59.0384 6588 NdisTapi - ok
19:41:59.0465 6588 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys
19:41:59.0514 6588 Ndisuio - ok
19:41:59.0609 6588 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys
19:41:59.0658 6588 NdisWan - ok
19:41:59.0759 6588 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys
19:41:59.0786 6588 NDProxy - ok
19:41:59.0856 6588 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
19:41:59.0897 6588 NetBIOS - ok
19:41:59.0992 6588 NetBT (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys
19:42:00.0021 6588 NetBT - ok
19:42:00.0141 6588 netr28x (813b7c722ba97e703d375aba170e16cc) C:\Windows\system32\DRIVERS\netr28x.sys
19:42:00.0181 6588 netr28x - ok
19:42:00.0262 6588 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\drivers\nfrd960.sys
19:42:00.0272 6588 nfrd960 - ok
19:42:00.0373 6588 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
19:42:00.0415 6588 Npfs - ok
19:42:00.0498 6588 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
19:42:00.0542 6588 nsiproxy - ok
19:42:00.0663 6588 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\Windows\system32\drivers\Ntfs.sys
19:42:00.0698 6588 Ntfs - ok
19:42:00.0774 6588 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
19:42:00.0821 6588 Null - ok
19:42:00.0898 6588 nusb3hub (158ad24745bd85ba9be3c51c38f48c32) C:\Windows\system32\DRIVERS\nusb3hub.sys
19:42:00.0921 6588 nusb3hub - ok
19:42:00.0999 6588 nusb3xhc (d40a13b2c0891e218f9523b376955db6) C:\Windows\system32\DRIVERS\nusb3xhc.sys
19:42:01.0047 6588 nusb3xhc - ok
19:42:01.0132 6588 NVENETFD (a85b4f2ef3a7304a5399ef0526423040) C:\Windows\system32\DRIVERS\nvm62x64.sys
19:42:01.0172 6588 NVENETFD - ok
19:42:01.0265 6588 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\Windows\system32\drivers\nvraid.sys
19:42:01.0286 6588 nvraid - ok
19:42:01.0378 6588 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\Windows\system32\drivers\nvstor.sys
19:42:01.0402 6588 nvstor - ok
19:42:01.0504 6588 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys
19:42:01.0516 6588 nv_agp - ok
19:42:01.0615 6588 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys
19:42:01.0663 6588 ohci1394 - ok
19:42:01.0759 6588 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\drivers\parport.sys
19:42:01.0790 6588 Parport - ok
19:42:01.0866 6588 partmgr (871eadac56b0a4c6512bbe32753ccf79) C:\Windows\system32\drivers\partmgr.sys
19:42:01.0875 6588 partmgr - ok
19:42:01.0965 6588 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys
19:42:01.0976 6588 pci - ok
19:42:02.0043 6588 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys
19:42:02.0051 6588 pciide - ok
19:42:02.0132 6588 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\drivers\pcmcia.sys
19:42:02.0147 6588 pcmcia - ok
19:42:02.0232 6588 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
19:42:02.0241 6588 pcw - ok
19:42:02.0323 6588 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
19:42:02.0377 6588 PEAUTH - ok
19:42:02.0494 6588 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys
19:42:02.0536 6588 PptpMiniport - ok
19:42:02.0631 6588 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\drivers\processr.sys
19:42:02.0659 6588 Processor - ok
19:42:02.0749 6588 Psched (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys
19:42:02.0798 6588 Psched - ok
19:42:02.0914 6588 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\drivers\ql2300.sys
19:42:02.0960 6588 ql2300 - ok
19:42:03.0046 6588 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\drivers\ql40xx.sys
19:42:03.0058 6588 ql40xx - ok
19:42:03.0133 6588 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
19:42:03.0160 6588 QWAVEdrv - ok
19:42:03.0258 6588 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
19:42:03.0308 6588 RasAcd - ok
19:42:03.0386 6588 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
19:42:03.0416 6588 RasAgileVpn - ok
19:42:03.0495 6588 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys
19:42:03.0539 6588 Rasl2tp - ok
19:42:03.0642 6588 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
19:42:03.0693 6588 RasPppoe - ok
19:42:03.0779 6588 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
19:42:03.0837 6588 RasSstp - ok
19:42:03.0923 6588 rdbss (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys
19:42:03.0970 6588 rdbss - ok
19:42:04.0057 6588 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\drivers\rdpbus.sys
19:42:04.0090 6588 rdpbus - ok
19:42:04.0174 6588 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
19:42:04.0201 6588 RDPCDD - ok
19:42:04.0281 6588 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
19:42:04.0332 6588 RDPENCDD - ok
19:42:04.0413 6588 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
19:42:04.0442 6588 RDPREFMP - ok
19:42:04.0515 6588 RDPWD (15b66c206b5cb095bab980553f38ed23) C:\Windows\system32\drivers\RDPWD.sys
19:42:04.0546 6588 RDPWD - ok
19:42:04.0631 6588 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys
19:42:04.0642 6588 rdyboost - ok
19:42:04.0730 6588 RFCOMM (3dd798846e2c28102b922c56e71b7932) C:\Windows\system32\DRIVERS\rfcomm.sys
19:42:04.0764 6588 RFCOMM - ok
19:42:04.0855 6588 RSPCIESTOR (d5c3e1629a3f7f0857d27949252b94ce) C:\Windows\system32\DRIVERS\RtsPStor.sys
19:42:04.0868 6588 RSPCIESTOR - ok
19:42:04.0953 6588 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
19:42:04.0996 6588 rspndr - ok
19:42:05.0082 6588 RTL8167 (ed5873f7dfb2f96d37f13322211b6bdc) C:\Windows\system32\DRIVERS\Rt64win7.sys
19:42:05.0096 6588 RTL8167 - ok
19:42:05.0164 6588 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys
19:42:05.0176 6588 sbp2port - ok
19:42:05.0254 6588 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys
19:42:05.0302 6588 scfilter - ok
19:42:05.0396 6588 sdbus (111e0ebc0ad79cb0fa014b907b231cf0) C:\Windows\system32\DRIVERS\sdbus.sys
19:42:05.0428 6588 sdbus - ok
19:42:05.0510 6588 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
19:42:05.0559 6588 secdrv - ok
19:42:05.0657 6588 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\drivers\serenum.sys
19:42:05.0683 6588 Serenum - ok
19:42:05.0772 6588 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\drivers\serial.sys
19:42:05.0804 6588 Serial - ok
19:42:05.0898 6588 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\drivers\sermouse.sys
19:42:05.0926 6588 sermouse - ok
19:42:06.0034 6588 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys
19:42:06.0063 6588 sffdisk - ok
19:42:06.0139 6588 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys
19:42:06.0163 6588 sffp_mmc - ok
19:42:06.0250 6588 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\drivers\sffp_sd.sys
19:42:06.0282 6588 sffp_sd - ok
19:42:06.0368 6588 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\drivers\sfloppy.sys
19:42:06.0401 6588 sfloppy - ok
19:42:06.0527 6588 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\drivers\SiSRaid2.sys
19:42:06.0541 6588 SiSRaid2 - ok
19:42:06.0633 6588 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\drivers\sisraid4.sys
19:42:06.0644 6588 SiSRaid4 - ok
19:42:06.0732 6588 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
19:42:06.0760 6588 Smb - ok
19:42:06.0865 6588 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
19:42:06.0874 6588 spldr - ok
19:42:07.0032 6588 SRTSP (1321a6c3c92bbd3f3bbe1292cff8e91a) C:\Windows\system32\drivers\NISx64\1301010.003\SRTSP64.SYS
19:42:07.0050 6588 SRTSP - ok
19:42:07.0151 6588 SRTSPX (bd129c22c3b8c2e584227269dfa77b09) C:\Windows\system32\drivers\NISx64\1301010.003\SRTSPX64.SYS
19:42:07.0158 6588 SRTSPX - ok
19:42:07.0233 6588 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\Windows\system32\DRIVERS\srv.sys
19:42:07.0281 6588 srv - ok
19:42:07.0358 6588 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\Windows\system32\DRIVERS\srv2.sys
19:42:07.0389 6588 srv2 - ok
19:42:07.0484 6588 SrvHsfHDA (0c4540311e11664b245a263e1154cef8) C:\Windows\system32\DRIVERS\VSTAZL6.SYS
19:42:07.0503 6588 SrvHsfHDA - ok
19:42:07.0645 6588 SrvHsfV92 (02071d207a9858fbe3a48cbfd59c4a04) C:\Windows\system32\DRIVERS\VSTDPV6.SYS
19:42:07.0704 6588 SrvHsfV92 - ok
19:42:07.0809 6588 SrvHsfWinac (18e40c245dbfaf36fd0134a7ef2df396) C:\Windows\system32\DRIVERS\VSTCNXT6.SYS
19:42:07.0835 6588 SrvHsfWinac - ok
19:42:07.0904 6588 srvnet (27e461f0be5bff5fc737328f749538c3) C:\Windows\system32\DRIVERS\srvnet.sys
19:42:07.0935 6588 srvnet - ok
19:42:08.0024 6588 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\drivers\stexstor.sys
19:42:08.0033 6588 stexstor - ok
19:42:08.0127 6588 STHDA (74387b34b43f94e380608888c56a5ccd) C:\Windows\system32\DRIVERS\stwrt64.sys
19:42:08.0186 6588 STHDA - ok
19:42:08.0263 6588 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\drivers\swenum.sys
19:42:08.0271 6588 swenum - ok
19:42:08.0395 6588 SymDS (8b2430762099598da40686f754632efd) C:\Windows\system32\drivers\NISx64\1301010.003\SYMDS64.SYS
19:42:08.0408 6588 SymDS - ok
19:42:08.0563 6588 SymEFA (fe29b18bf86ffcd55d8733c9b01e5042) C:\Windows\system32\drivers\NISx64\1301010.003\SYMEFA64.SYS
19:42:08.0621 6588 SymEFA - ok
19:42:08.0715 6588 SymEvent (36b77f5c9e21f88a8c8ec67ad5415819) C:\Windows\system32\Drivers\SYMEVENT64x86.SYS
19:42:08.0724 6588 SymEvent - ok
19:42:08.0839 6588 SymIRON (dd70da422460fded831d211df151d560) C:\Windows\system32\drivers\NISx64\1301010.003\Ironx64.SYS
19:42:08.0848 6588 SymIRON - ok
19:42:08.0980 6588 SymNetS (bce4eb2eef05e388959b46fd21388c2d) C:\Windows\system32\drivers\NISx64\1301010.003\SYMNETS.SYS
19:42:08.0993 6588 SymNetS - ok
19:42:09.0088 6588 SynTP (33e6a285daa5134d8ea2247914c86c09) C:\Windows\system32\DRIVERS\SynTP.sys
19:42:09.0117 6588 SynTP - ok
19:42:09.0225 6588 Tcpip (fc62769e7bff2896035aeed399108162) C:\Windows\system32\drivers\tcpip.sys
19:42:09.0263 6588 Tcpip - ok
19:42:09.0358 6588 TCPIP6 (fc62769e7bff2896035aeed399108162) C:\Windows\system32\DRIVERS\tcpip.sys
19:42:09.0387 6588 TCPIP6 - ok
19:42:09.0456 6588 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys
19:42:09.0501 6588 tcpipreg - ok
19:42:09.0596 6588 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
19:42:09.0641 6588 TDPIPE - ok
19:42:09.0722 6588 TDTCP (e4245bda3190a582d55ed09e137401a9) C:\Windows\system32\drivers\tdtcp.sys
19:42:09.0765 6588 TDTCP - ok
19:42:09.0846 6588 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys
19:42:09.0886 6588 tdx - ok
19:42:09.0965 6588 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\drivers\termdd.sys
19:42:09.0974 6588 TermDD - ok
19:42:10.0065 6588 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys
19:42:10.0110 6588 tssecsrv - ok
19:42:10.0204 6588 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys
19:42:10.0226 6588 TsUsbFlt - ok
19:42:10.0300 6588 TsUsbGD (9cc2ccae8a84820eaecb886d477cbcb8) C:\Windows\system32\drivers\TsUsbGD.sys
19:42:10.0336 6588 TsUsbGD - ok
19:42:10.0412 6588 tunnel (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys
19:42:10.0465 6588 tunnel - ok
19:42:10.0551 6588 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\drivers\uagp35.sys
19:42:10.0561 6588 uagp35 - ok
19:42:10.0642 6588 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys
19:42:10.0713 6588 udfs - ok
19:42:10.0834 6588 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys
19:42:10.0845 6588 uliagpkx - ok
19:42:10.0920 6588 umbus (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\DRIVERS\umbus.sys
19:42:10.0947 6588 umbus - ok
19:42:11.0014 6588 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\drivers\umpass.sys
19:42:11.0058 6588 UmPass - ok
19:42:11.0157 6588 USBAAPL64 (aa33fc47ed58c34e6e9261e4f850b7eb) C:\Windows\system32\Drivers\usbaapl64.sys
19:42:11.0212 6588 USBAAPL64 - ok
19:42:11.0291 6588 usbccgp (6f1a3157a1c89435352ceb543cdb359c) C:\Windows\system32\DRIVERS\usbccgp.sys
19:42:11.0317 6588 usbccgp - ok
19:42:11.0391 6588 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys
19:42:11.0428 6588 usbcir - ok
19:42:11.0516 6588 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\Windows\system32\drivers\usbehci.sys
19:42:11.0540 6588 usbehci - ok
19:42:11.0630 6588 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\Windows\system32\DRIVERS\usbhub.sys
19:42:11.0678 6588 usbhub - ok
19:42:11.0772 6588 usbohci (9840fc418b4cbd632d3d0a667a725c31) C:\Windows\system32\drivers\usbohci.sys
19:42:11.0824 6588 usbohci - ok
19:42:11.0896 6588 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
19:42:11.0933 6588 usbprint - ok
19:42:12.0005 6588 usbscan (aaa2513c8aed8b54b189fd0c6b1634c0) C:\Windows\system32\DRIVERS\usbscan.sys
19:42:12.0052 6588 usbscan - ok
19:42:12.0144 6588 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\Windows\system32\drivers\USBSTOR.SYS
19:42:12.0210 6588 USBSTOR - ok
19:42:12.0298 6588 usbuhci (62069a34518bcf9c1fd9e74b3f6db7cd) C:\Windows\system32\drivers\usbuhci.sys
19:42:12.0345 6588 usbuhci - ok
19:42:12.0423 6588 usbvideo (454800c2bc7f3927ce030141ee4f4c50) C:\Windows\system32\Drivers\usbvideo.sys
19:42:12.0462 6588 usbvideo - ok
19:42:12.0536 6588 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys
19:42:12.0545 6588 vdrvroot - ok
19:42:12.0618 6588 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
19:42:12.0631 6588 vga - ok
19:42:12.0711 6588 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
19:42:12.0776 6588 VgaSave - ok
19:42:12.0872 6588 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys
19:42:12.0886 6588 vhdmp - ok
19:42:12.0959 6588 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys
19:42:12.0968 6588 viaide - ok
19:42:13.0044 6588 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys
19:42:13.0053 6588 volmgr - ok
19:42:13.0122 6588 volmgrx (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys
19:42:13.0136 6588 volmgrx - ok
19:42:13.0209 6588 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys
19:42:13.0222 6588 volsnap - ok
19:42:13.0299 6588 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\drivers\vsmraid.sys
19:42:13.0312 6588 vsmraid - ok
19:42:13.0387 6588 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\system32\DRIVERS\vwifibus.sys
19:42:13.0419 6588 vwifibus - ok
19:42:13.0501 6588 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\Windows\system32\DRIVERS\vwififlt.sys
19:42:13.0534 6588 vwififlt - ok
19:42:13.0628 6588 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\drivers\wacompen.sys
19:42:13.0656 6588 WacomPen - ok
19:42:13.0745 6588 WANARP (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
19:42:13.0792 6588 WANARP - ok
19:42:13.0796 6588 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
19:42:13.0823 6588 Wanarpv6 - ok
19:42:13.0940 6588 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\drivers\wd.sys
19:42:13.0949 6588 Wd - ok
19:42:14.0037 6588 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
19:42:14.0055 6588 Wdf01000 - ok
19:42:14.0169 6588 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
19:42:14.0197 6588 WfpLwf - ok
19:42:14.0286 6588 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
19:42:14.0293 6588 WIMMount - ok
19:42:14.0406 6588 WinUsb (fe88b288356e7b47b74b13372add906d) C:\Windows\system32\DRIVERS\WinUSB.sys
19:42:14.0436 6588 WinUsb - ok
19:42:14.0524 6588 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\drivers\wmiacpi.sys
19:42:14.0562 6588 WmiAcpi - ok
19:42:14.0658 6588 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
19:42:14.0685 6588 ws2ifsl - ok
19:42:14.0783 6588 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys
19:42:14.0827 6588 WudfPf - ok
19:42:14.0905 6588 WUDFRd (cf8d590be3373029d57af80914190682) C:\Windows\system32\DRIVERS\WUDFRd.sys
19:42:14.0949 6588 WUDFRd - ok
19:42:14.0983 6588 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
19:42:15.0750 6588 \Device\Harddisk0\DR0 - ok
19:42:15.0759 6588 Boot (0x1200) (1f18729df2f895e83ce032169a504bba) \Device\Harddisk0\DR0\Partition0
19:42:15.0760 6588 \Device\Harddisk0\DR0\Partition0 - ok
19:42:15.0771 6588 Boot (0x1200) (48ec0a8c0e218fc928b2558e9175863e) \Device\Harddisk0\DR0\Partition1
19:42:15.0772 6588 \Device\Harddisk0\DR0\Partition1 - ok
19:42:15.0805 6588 Boot (0x1200) (40a6203b21a9eb6c207d35ce32be357c) \Device\Harddisk0\DR0\Partition2
19:42:15.0805 6588 \Device\Harddisk0\DR0\Partition2 - ok
19:42:15.0824 6588 Boot (0x1200) (b47fb38cc2921fb20648806b4b814265) \Device\Harddisk0\DR0\Partition3
19:42:15.0824 6588 \Device\Harddisk0\DR0\Partition3 - ok
19:42:15.0824 6588 ============================================================
19:42:15.0824 6588 Scan finished
19:42:15.0824 6588 ============================================================
19:42:15.0830 4484 Detected object count: 0
19:42:15.0830 4484 Actual detected object count: 0

markusg · 08.12.2011, 19:47

ok.
hitman laden:
http://dl.surfright.nl/HitmanPro36beta.exe
http://dl.surfright.nl/HitmanPro36beta_x64.exe
bitte wähle 32 oder 64 bit, je nach deinem system.
doppelklick, settings license, activate test lizense wählen.
dann scan, funde in quarantäne und am ende log als xml speichern und anhängen

DarkAlb · 08.12.2011, 20:03

.xml wird als ungültige datei angegeben! Welches Format soll ich nun?

markusg · 08.12.2011, 20:07

hi, kannst du es mit winra packen und anhängen?

DarkAlb · 08.12.2011, 20:09

hab ich schon versucht! .rar is auch ungültig

DarkAlb · 08.12.2011, 20:11

sooo, etze!

markusg · 08.12.2011, 21:03

gibt es noch umleitungen?

DarkAlb · 08.12.2011, 21:05

ja, leider

markusg · 08.12.2011, 21:38

hmm
erst mal folgendes:
lade den CCleaner standard:
CCleaner Download - CCleaner 3.13.1600
falls der CCleaner
bereits instaliert, überspringen.
instalieren, öffnen, extras, liste der instalierten programme, als txt speichern. öffnen.
hinter, jedes von dir benötigte programm, schreibe notwendig.
hinter, jedes, von dir nicht benötigte, unnötig.
hinter, dir unbekannte, unbekannt.
liste posten.

DarkAlb · 08.12.2011, 21:55

Fertig damit

markusg · 08.12.2011, 22:03

deinstaliere:
Bing Bar
Bonjour
Call of Duty alle
CyberLink beide
Energy Star
Evernote
Java(TM) 6 Update 24
Magic Desktop
Norton Internet Security
Shop for HP
Steam
The Witcher
Windows Live falls kein dienst davon genutzt wird, ebenfalls weg
Wise Registry Cleaner
X3 alle

falls eine der deinstalationen nicht klappt mit rewo versuchen:
http://www.hijackthis-forum.de/tipps...installer.html

08.12.2011, 19:47	#21
markusg /// Malware-holic	Google: unerwünschte Weiterleitung ok. hitman laden: http://dl.surfright.nl/HitmanPro36beta.exe http://dl.surfright.nl/HitmanPro36beta_x64.exe bitte wähle 32 oder 64 bit, je nach deinem system. doppelklick, settings license, activate test lizense wählen. dann scan, funde in quarantäne und am ende log als xml speichern und anhängen __________________ --> Google: unerwünschte Weiterleitung

08.12.2011, 20:07	#23
markusg /// Malware-holic	Google: unerwünschte Weiterleitung hi, kannst du es mit winra packen und anhängen? __________________ -Verdächtige mails bitte an uns zur Analyse weiterleiten: markusg.trojaner-board@web.de Weiterleiten Anleitung: http://markusg.trojaner-board.de Mails bitte vorerst nach obiger Anleitung an markusg.trojaner-board@web.de Weiterleiten Wenn Ihr uns unterstützen möchtet

08.12.2011, 21:03	#26
markusg /// Malware-holic	Google: unerwünschte Weiterleitung gibt es noch umleitungen? __________________ -Verdächtige mails bitte an uns zur Analyse weiterleiten: markusg.trojaner-board@web.de Weiterleiten Anleitung: http://markusg.trojaner-board.de Mails bitte vorerst nach obiger Anleitung an markusg.trojaner-board@web.de Weiterleiten Wenn Ihr uns unterstützen möchtet

Google: unerwünschte Weiterleitung

Log-Analyse und Auswertung: Google: unerwünschte Weiterleitung