Habe die Notfallnummer angerufen, Sperrung sei über die Notfallnummer zur Zeit nicht möglich. Mir wurde empfohlen 3 mal den falschen Pin einzugeben, dann erfolgt eine automatische Sperrung. Das habe ich gemacht. Das Konto ist jetzt vorläufig gesperrt.

ok dann den tdss killer ausführen, morgen bei der bank melden und dann erkläre ich dir auch noch wie man formatiert und die daten sichert etc

Scan results:


Infected: \device\Harddisk0\DR0 (Rootkit.Boot.SST.a)
Processing error: \device\Harddisk0\DR0


Der Report:



19:24:48.0972 4616 TDSS rootkit removing tool 2.7.7.0 Jan 24 2012 16:44:27
19:24:49.0003 4616 ============================================================
19:24:49.0003 4616 Current date / time: 2012/01/24 19:24:49.0003
19:24:49.0003 4616 SystemInfo:
19:24:49.0003 4616
19:24:49.0003 4616 OS Version: 6.1.7600 ServicePack: 0.0
19:24:49.0003 4616 Product type: Workstation
19:24:49.0018 4616 ComputerName: ***-HP
19:24:49.0018 4616 UserName: ***
19:24:49.0018 4616 Windows directory: C:\windows
19:24:49.0018 4616 System windows directory: C:\windows
19:24:49.0018 4616 Running under WOW64
19:24:49.0018 4616 Processor architecture: Intel x64
19:24:49.0018 4616 Number of processors: 2
19:24:49.0018 4616 Page size: 0x1000
19:24:49.0018 4616 Boot type: Normal boot
19:24:49.0018 4616 ============================================================
19:24:49.0767 4616 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
19:24:49.0767 4616 Drive \Device\Harddisk1\DR5 - Size: 0x79B00000 (1.90 Gb), SectorSize: 0x200, Cylinders: 0xF8, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
19:24:49.0845 4616 Initialize success
19:39:04.0056 2524 ============================================================
19:39:04.0056 2524 Scan started
19:39:04.0056 2524 Mode: Manual;
19:39:04.0056 2524 ============================================================
19:39:04.0586 2524 1394ohci (1b00662092f9f9568b995902f0cc40d5) C:\windows\system32\DRIVERS\1394ohci.sys
19:39:04.0602 2524 1394ohci - ok
19:39:04.0664 2524 ACPI (6f11e88748cdefd2f76aa215f97ddfe5) C:\windows\system32\DRIVERS\ACPI.sys
19:39:04.0664 2524 ACPI - ok
19:39:04.0758 2524 AcpiPmi (63b05a0420ce4bf0e4af6dcc7cada254) C:\windows\system32\DRIVERS\acpipmi.sys
19:39:04.0758 2524 AcpiPmi - ok
19:39:04.0820 2524 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\windows\system32\DRIVERS\adp94xx.sys
19:39:04.0836 2524 adp94xx - ok
19:39:04.0945 2524 adpahci (597f78224ee9224ea1a13d6350ced962) C:\windows\system32\DRIVERS\adpahci.sys
19:39:04.0961 2524 adpahci - ok
19:39:05.0007 2524 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\windows\system32\DRIVERS\adpu320.sys
19:39:05.0007 2524 adpu320 - ok
19:39:05.0148 2524 AFD (6ef20ddf3172e97d69f596fb90602f29) C:\windows\system32\drivers\afd.sys
19:39:05.0163 2524 AFD - ok
19:39:05.0288 2524 AgereSoftModem (a6ab6f0ace87da76b4c401813d18be95) C:\windows\system32\DRIVERS\agrsm64.sys
19:39:05.0304 2524 AgereSoftModem - ok
19:39:05.0397 2524 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\windows\system32\DRIVERS\agp440.sys
19:39:05.0413 2524 agp440 - ok
19:39:05.0475 2524 aliide (5812713a477a3ad7363c7438ca2ee038) C:\windows\system32\drivers\aliide.sys
19:39:05.0491 2524 aliide - ok
19:39:05.0507 2524 amdide (1ff8b4431c353ce385c875f194924c0c) C:\windows\system32\drivers\amdide.sys
19:39:05.0507 2524 amdide - ok
19:39:05.0600 2524 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\windows\system32\DRIVERS\amdk8.sys
19:39:05.0616 2524 AmdK8 - ok
19:39:05.0647 2524 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\windows\system32\DRIVERS\amdppm.sys
19:39:05.0647 2524 AmdPPM - ok
19:39:05.0741 2524 amdsata (ec7ebab00a4d8448bab68d1e49b4beb9) C:\windows\system32\drivers\amdsata.sys
19:39:05.0756 2524 amdsata - ok
19:39:05.0787 2524 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\windows\system32\DRIVERS\amdsbs.sys
19:39:05.0787 2524 amdsbs - ok
19:39:05.0834 2524 amdxata (db27766102c7bf7e95140a2aa81d042e) C:\windows\system32\drivers\amdxata.sys
19:39:05.0834 2524 amdxata - ok
19:39:05.0959 2524 AppID (42fd751b27fa0e9c69bb39f39e409594) C:\windows\system32\drivers\appid.sys
19:39:05.0959 2524 AppID - ok
19:39:06.0021 2524 arc (c484f8ceb1717c540242531db7845c4e) C:\windows\system32\DRIVERS\arc.sys
19:39:06.0037 2524 arc - ok
19:39:06.0115 2524 arcsas (019af6924aefe7839f61c830227fe79c) C:\windows\system32\DRIVERS\arcsas.sys
19:39:06.0115 2524 arcsas - ok
19:39:06.0162 2524 AsyncMac (769765ce2cc62867468cea93969b2242) C:\windows\system32\DRIVERS\asyncmac.sys
19:39:06.0162 2524 AsyncMac - ok
19:39:06.0287 2524 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\windows\system32\drivers\atapi.sys
19:39:06.0302 2524 atapi - ok
19:39:06.0365 2524 avgntflt (b1224e6b086cd6548315b04ab575a23e) C:\windows\system32\DRIVERS\avgntflt.sys
19:39:06.0365 2524 avgntflt - ok
19:39:06.0443 2524 avipbb (ed45f12cfa62b83765c9c1496758cc87) C:\windows\system32\DRIVERS\avipbb.sys
19:39:06.0458 2524 avipbb - ok
19:39:06.0521 2524 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\windows\system32\DRIVERS\bxvbda.sys
19:39:06.0536 2524 b06bdrv - ok
19:39:06.0630 2524 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\windows\system32\DRIVERS\b57nd60a.sys
19:39:06.0645 2524 b57nd60a - ok
19:39:06.0692 2524 Beep (16a47ce2decc9b099349a5f840654746) C:\windows\system32\drivers\Beep.sys
19:39:06.0692 2524 Beep - ok
19:39:06.0864 2524 BHDrvx64 (95da658498248d5832aa240850706150) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.1.0.37\Definitions\BASHDefs\20100810.004\BHDrvx64.sys
19:39:06.0879 2524 BHDrvx64 - ok
19:39:06.0989 2524 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\windows\system32\DRIVERS\blbdrive.sys
19:39:06.0989 2524 blbdrive - ok
19:39:07.0051 2524 bowser (19d20159708e152267e53b66677a4995) C:\windows\system32\DRIVERS\bowser.sys
19:39:07.0051 2524 bowser - ok
19:39:07.0145 2524 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\windows\system32\DRIVERS\BrFiltLo.sys
19:39:07.0160 2524 BrFiltLo - ok
19:39:07.0176 2524 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\windows\system32\DRIVERS\BrFiltUp.sys
19:39:07.0176 2524 BrFiltUp - ok
19:39:07.0223 2524 BridgeMP (5c2f352a4e961d72518261257aae204b) C:\windows\system32\DRIVERS\bridge.sys
19:39:07.0238 2524 BridgeMP - ok
19:39:07.0332 2524 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\windows\System32\Drivers\Brserid.sys
19:39:07.0347 2524 Brserid - ok
19:39:07.0363 2524 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\windows\System32\Drivers\BrSerWdm.sys
19:39:07.0363 2524 BrSerWdm - ok
19:39:07.0410 2524 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\windows\System32\Drivers\BrUsbMdm.sys
19:39:07.0410 2524 BrUsbMdm - ok
19:39:07.0503 2524 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\windows\System32\Drivers\BrUsbSer.sys
19:39:07.0503 2524 BrUsbSer - ok
19:39:07.0550 2524 BthEnum (cf98190a94f62e405c8cb255018b2315) C:\windows\system32\drivers\BthEnum.sys
19:39:07.0550 2524 BthEnum - ok
19:39:07.0659 2524 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\windows\system32\DRIVERS\bthmodem.sys
19:39:07.0659 2524 BTHMODEM - ok
19:39:07.0706 2524 BthPan (02dd601b708dd0667e1331fa8518e9ff) C:\windows\system32\DRIVERS\bthpan.sys
19:39:07.0706 2524 BthPan - ok
19:39:07.0815 2524 BTHPORT (538392664fee486620dfea146f2500bc) C:\windows\System32\Drivers\BTHport.sys
19:39:07.0831 2524 BTHPORT - ok
19:39:07.0925 2524 BTHUSB (6e71522e317b22257d8e37a1584b5829) C:\windows\System32\Drivers\BTHUSB.sys
19:39:07.0940 2524 BTHUSB - ok
19:39:07.0987 2524 BTMCOM (e588420b950dac5ac397f76660bce520) C:\windows\system32\Drivers\btmcom.sys
19:39:07.0987 2524 BTMCOM - ok
19:39:08.0174 2524 BTMUSB (d1bcd0e189378f81e3fe57783684b3da) C:\windows\system32\Drivers\btmusb.sys
19:39:08.0205 2524 BTMUSB - ok
19:39:08.0346 2524 catchme - ok
19:39:08.0439 2524 cdfs (b8bd2bb284668c84865658c77574381a) C:\windows\system32\DRIVERS\cdfs.sys
19:39:08.0439 2524 cdfs - ok
19:39:08.0502 2524 cdrom (83d2d75e1efb81b3450c18131443f7db) C:\windows\system32\DRIVERS\cdrom.sys
19:39:08.0517 2524 cdrom - ok
19:39:08.0627 2524 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\windows\system32\DRIVERS\circlass.sys
19:39:08.0627 2524 circlass - ok
19:39:08.0673 2524 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\windows\system32\CLFS.sys
19:39:08.0689 2524 CLFS - ok
19:39:08.0829 2524 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\windows\system32\DRIVERS\CmBatt.sys
19:39:08.0829 2524 CmBatt - ok
19:39:08.0892 2524 cmdide (e19d3f095812725d88f9001985b94edd) C:\windows\system32\drivers\cmdide.sys
19:39:08.0892 2524 cmdide - ok
19:39:08.0939 2524 CNG (f95fd4cb7da00ba2a63ce9f6b5c053e1) C:\windows\system32\Drivers\cng.sys
19:39:08.0970 2524 CNG - ok
19:39:09.0063 2524 Compbatt (102de219c3f61415f964c88e9085ad14) C:\windows\system32\DRIVERS\compbatt.sys
19:39:09.0063 2524 Compbatt - ok
19:39:09.0079 2524 CompositeBus (f26b3a86f6fa87ca360b879581ab4123) C:\windows\system32\DRIVERS\CompositeBus.sys
19:39:09.0095 2524 CompositeBus - ok
19:39:09.0110 2524 crcdisk (1c827878a998c18847245fe1f34ee597) C:\windows\system32\DRIVERS\crcdisk.sys
19:39:09.0126 2524 crcdisk - ok
19:39:09.0235 2524 DfsC (9c253ce7311ca60fc11c774692a13208) C:\windows\system32\Drivers\dfsc.sys
19:39:09.0235 2524 DfsC - ok
19:39:09.0282 2524 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\windows\system32\drivers\discache.sys
19:39:09.0282 2524 discache - ok
19:39:09.0422 2524 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\windows\system32\DRIVERS\disk.sys
19:39:09.0422 2524 Disk - ok
19:39:09.0500 2524 drmkaud (9b19f34400d24df84c858a421c205754) C:\windows\system32\drivers\drmkaud.sys
19:39:09.0500 2524 drmkaud - ok
19:39:09.0625 2524 DXGKrnl (1633b9abf52784a1331476397a48cbef) C:\windows\System32\drivers\dxgkrnl.sys
19:39:09.0641 2524 DXGKrnl - ok
19:39:09.0797 2524 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\windows\system32\DRIVERS\evbda.sys
19:39:09.0843 2524 ebdrv - ok
19:39:09.0937 2524 eeCtrl (066108ae4c35835081598827a1a7d08d) C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys
19:39:09.0968 2524 eeCtrl - ok
19:39:10.0077 2524 elxstor (0e5da5369a0fcaea12456dd852545184) C:\windows\system32\DRIVERS\elxstor.sys
19:39:10.0093 2524 elxstor - ok
19:39:10.0202 2524 EraserUtilRebootDrv (12866876e3851f1e5d462b2a83e25578) C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
19:39:10.0202 2524 EraserUtilRebootDrv - ok
19:39:10.0296 2524 ErrDev (34a3c54752046e79a126e15c51db409b) C:\windows\system32\DRIVERS\errdev.sys
19:39:10.0296 2524 ErrDev - ok
19:39:10.0358 2524 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\windows\system32\drivers\exfat.sys
19:39:10.0374 2524 exfat - ok
19:39:10.0452 2524 fastfat (0adc83218b66a6db380c330836f3e36d) C:\windows\system32\drivers\fastfat.sys
19:39:10.0467 2524 fastfat - ok
19:39:10.0514 2524 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\windows\system32\DRIVERS\fdc.sys
19:39:10.0514 2524 fdc - ok
19:39:10.0623 2524 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\windows\system32\drivers\fileinfo.sys
19:39:10.0639 2524 FileInfo - ok
19:39:10.0655 2524 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\windows\system32\drivers\filetrace.sys
19:39:10.0670 2524 Filetrace - ok
19:39:10.0701 2524 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\windows\system32\DRIVERS\flpydisk.sys
19:39:10.0701 2524 flpydisk - ok
19:39:10.0779 2524 FltMgr (f7866af72abbaf84b1fa5aa195378c59) C:\windows\system32\drivers\fltmgr.sys
19:39:10.0795 2524 FltMgr - ok
19:39:10.0826 2524 FsDepends (d43703496149971890703b4b1b723eac) C:\windows\system32\drivers\FsDepends.sys
19:39:10.0826 2524 FsDepends - ok
19:39:10.0842 2524 Fs_Rec (e95ef8547de20cf0603557c0cf7a9462) C:\windows\system32\drivers\Fs_Rec.sys
19:39:10.0857 2524 Fs_Rec - ok
19:39:10.0935 2524 fvevol (ae87ba80d0ec3b57126ed2cdc15b24ed) C:\windows\system32\DRIVERS\fvevol.sys
19:39:10.0951 2524 fvevol - ok
19:39:11.0029 2524 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\windows\system32\DRIVERS\gagp30kx.sys
19:39:11.0029 2524 gagp30kx - ok
19:39:11.0060 2524 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\windows\system32\drivers\hcw85cir.sys
19:39:11.0060 2524 hcw85cir - ok
19:39:11.0123 2524 HdAudAddService (6410f6f415b2a5a9037224c41da8bf12) C:\windows\system32\drivers\HdAudio.sys
19:39:11.0138 2524 HdAudAddService - ok
19:39:11.0216 2524 HDAudBus (0a49913402747a0b67de940fb42cbdbb) C:\windows\system32\DRIVERS\HDAudBus.sys
19:39:11.0232 2524 HDAudBus - ok
19:39:11.0263 2524 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\windows\system32\DRIVERS\HidBatt.sys
19:39:11.0279 2524 HidBatt - ok
19:39:11.0310 2524 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\windows\system32\DRIVERS\hidbth.sys
19:39:11.0310 2524 HidBth - ok
19:39:11.0341 2524 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\windows\system32\DRIVERS\hidir.sys
19:39:11.0341 2524 HidIr - ok
19:39:11.0435 2524 HidUsb (b3bf6b5b50006def50b66306d99fcf6f) C:\windows\system32\DRIVERS\hidusb.sys
19:39:11.0450 2524 HidUsb - ok
19:39:11.0637 2524 HpqKbFiltr (b98ee5d4535a685634b90f7e04de0df7) C:\windows\system32\DRIVERS\HpqKbFiltr.sys
19:39:11.0637 2524 HpqKbFiltr - ok
19:39:11.0778 2524 HpSAMD (0886d440058f203eba0e1825e4355914) C:\windows\system32\DRIVERS\HpSAMD.sys
19:39:11.0778 2524 HpSAMD - ok
19:39:11.0825 2524 HTTP (cee049cac4efa7f4e1e4ad014414a5d4) C:\windows\system32\drivers\HTTP.sys
19:39:11.0840 2524 HTTP - ok
19:39:11.0918 2524 hwpolicy (f17766a19145f111856378df337a5d79) C:\windows\system32\drivers\hwpolicy.sys
19:39:11.0934 2524 hwpolicy - ok
19:39:11.0981 2524 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\windows\system32\DRIVERS\i8042prt.sys
19:39:11.0996 2524 i8042prt - ok
19:39:12.0105 2524 iaStor (abbf174cb394f5c437410a788b7e404a) C:\windows\system32\DRIVERS\iaStor.sys
19:39:12.0105 2524 iaStor - ok
19:39:12.0246 2524 iaStorV (b75e45c564e944a2657167d197ab29da) C:\windows\system32\drivers\iaStorV.sys
19:39:12.0261 2524 iaStorV - ok
19:39:12.0371 2524 IDSVia64 (c3292140bf458b46cf8abbfd7e177bbe) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.1.0.37\Definitions\IPSDefs\20100706.002\IDSVia64.sys
19:39:12.0386 2524 IDSVia64 - ok
19:39:12.0651 2524 igfx (7467ae8f96ea983423148c62458669fa) C:\windows\system32\DRIVERS\igdkmd64.sys
19:39:12.0854 2524 igfx - ok
19:39:12.0948 2524 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\windows\system32\DRIVERS\iirsp.sys
19:39:12.0948 2524 iirsp - ok
19:39:13.0010 2524 IntcHdmiAddService (b014ce58f0a8048d3924ba8d5ccbc5f1) C:\windows\system32\drivers\IntcHdmi.sys
19:39:13.0010 2524 IntcHdmiAddService - ok
19:39:13.0119 2524 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\windows\system32\drivers\intelide.sys
19:39:13.0135 2524 intelide - ok
19:39:13.0182 2524 intelppm (ada036632c664caa754079041cf1f8c1) C:\windows\system32\DRIVERS\intelppm.sys
19:39:13.0197 2524 intelppm - ok
19:39:13.0229 2524 IpFilterDriver (722dd294df62483cecaae6e094b4d695) C:\windows\system32\DRIVERS\ipfltdrv.sys
19:39:13.0244 2524 IpFilterDriver - ok
19:39:13.0338 2524 IPMIDRV (e2b4a4494db7cb9b89b55ca268c337c5) C:\windows\system32\DRIVERS\IPMIDrv.sys
19:39:13.0353 2524 IPMIDRV - ok
19:39:13.0369 2524 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\windows\system32\drivers\ipnat.sys
19:39:13.0385 2524 IPNAT - ok
19:39:13.0416 2524 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\windows\system32\drivers\irenum.sys
19:39:13.0416 2524 IRENUM - ok
19:39:13.0494 2524 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\windows\system32\DRIVERS\isapnp.sys
19:39:13.0509 2524 isapnp - ok
19:39:13.0541 2524 iScsiPrt (fa4d2557de56d45b0a346f93564be6e1) C:\windows\system32\DRIVERS\msiscsi.sys
19:39:13.0556 2524 iScsiPrt - ok
19:39:13.0587 2524 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\windows\system32\DRIVERS\kbdclass.sys
19:39:13.0587 2524 kbdclass - ok
19:39:13.0681 2524 kbdhid (6def98f8541e1b5dceb2c822a11f7323) C:\windows\system32\DRIVERS\kbdhid.sys
19:39:13.0697 2524 kbdhid - ok
19:39:13.0728 2524 KSecDD (e8b6fcc9c83535c67f835d407620bd27) C:\windows\system32\Drivers\ksecdd.sys
19:39:13.0743 2524 KSecDD - ok
19:39:13.0775 2524 KSecPkg (a8c63880ef6f4d3fec7b616b9c060215) C:\windows\system32\Drivers\ksecpkg.sys
19:39:13.0790 2524 KSecPkg - ok
19:39:13.0868 2524 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\windows\system32\drivers\ksthunk.sys
19:39:13.0868 2524 ksthunk - ok
19:39:14.0024 2524 lltdio (1538831cf8ad2979a04c423779465827) C:\windows\system32\DRIVERS\lltdio.sys
19:39:14.0024 2524 lltdio - ok
19:39:14.0087 2524 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\windows\system32\DRIVERS\lsi_fc.sys
19:39:14.0087 2524 LSI_FC - ok
19:39:14.0165 2524 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\windows\system32\DRIVERS\lsi_sas.sys
19:39:14.0180 2524 LSI_SAS - ok
19:39:14.0211 2524 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\windows\system32\DRIVERS\lsi_sas2.sys
19:39:14.0227 2524 LSI_SAS2 - ok
19:39:14.0243 2524 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\windows\system32\DRIVERS\lsi_scsi.sys
19:39:14.0258 2524 LSI_SCSI - ok
19:39:14.0305 2524 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\windows\system32\drivers\luafv.sys
19:39:14.0321 2524 luafv - ok
19:39:14.0383 2524 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\windows\system32\DRIVERS\megasas.sys
19:39:14.0383 2524 megasas - ok
19:39:14.0414 2524 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\windows\system32\DRIVERS\MegaSR.sys
19:39:14.0430 2524 MegaSR - ok
19:39:14.0477 2524 Modem (800ba92f7010378b09f9ed9270f07137) C:\windows\system32\drivers\modem.sys
19:39:14.0477 2524 Modem - ok
19:39:14.0555 2524 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\windows\system32\DRIVERS\monitor.sys
19:39:14.0555 2524 monitor - ok
19:39:14.0601 2524 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\windows\system32\DRIVERS\mouclass.sys
19:39:14.0617 2524 mouclass - ok
19:39:14.0695 2524 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\windows\system32\DRIVERS\mouhid.sys
19:39:14.0711 2524 mouhid - ok
19:39:14.0757 2524 mountmgr (791af66c4d0e7c90a3646066386fb571) C:\windows\system32\drivers\mountmgr.sys
19:39:14.0773 2524 mountmgr - ok
19:39:14.0804 2524 mpio (609d1d87649ecc19796f4d76d4c15cea) C:\windows\system32\DRIVERS\mpio.sys
19:39:14.0804 2524 mpio - ok
19:39:14.0867 2524 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\windows\system32\drivers\mpsdrv.sys
19:39:14.0882 2524 mpsdrv - ok
19:39:14.0929 2524 MRxDAV (30524261bb51d96d6fcbac20c810183c) C:\windows\system32\drivers\mrxdav.sys
19:39:14.0929 2524 MRxDAV - ok
19:39:14.0960 2524 mrxsmb (040d62a9d8ad28922632137acdd984f2) C:\windows\system32\DRIVERS\mrxsmb.sys
19:39:14.0976 2524 mrxsmb - ok
19:39:15.0038 2524 mrxsmb10 (f0067552f8f9b33d7c59403ab808a3cb) C:\windows\system32\DRIVERS\mrxsmb10.sys
19:39:15.0054 2524 mrxsmb10 - ok
19:39:15.0101 2524 mrxsmb20 (3c142d31de9f2f193218a53fe2632051) C:\windows\system32\DRIVERS\mrxsmb20.sys
19:39:15.0116 2524 mrxsmb20 - ok
19:39:15.0163 2524 msahci (2ba4ff3d5eb68587dd662a896f649c7d) C:\windows\system32\drivers\msahci.sys
19:39:15.0179 2524 msahci - ok
19:39:15.0257 2524 msdsm (8d27b597229aed79430fb9db3bcbfbd0) C:\windows\system32\DRIVERS\msdsm.sys
19:39:15.0257 2524 msdsm - ok
19:39:15.0335 2524 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\windows\system32\drivers\Msfs.sys
19:39:15.0335 2524 Msfs - ok
19:39:15.0397 2524 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\windows\System32\drivers\mshidkmdf.sys
19:39:15.0397 2524 mshidkmdf - ok
19:39:15.0444 2524 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\windows\system32\DRIVERS\msisadrv.sys
19:39:15.0444 2524 msisadrv - ok
19:39:15.0522 2524 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\windows\system32\drivers\MSKSSRV.sys
19:39:15.0522 2524 MSKSSRV - ok
19:39:15.0584 2524 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\windows\system32\drivers\MSPCLOCK.sys
19:39:15.0584 2524 MSPCLOCK - ok
19:39:15.0615 2524 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\windows\system32\drivers\MSPQM.sys
19:39:15.0615 2524 MSPQM - ok
19:39:15.0662 2524 MsRPC (89cb141aa8616d8c6a4610fa26c60964) C:\windows\system32\drivers\MsRPC.sys
19:39:15.0678 2524 MsRPC - ok
19:39:15.0756 2524 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\windows\system32\DRIVERS\mssmbios.sys
19:39:15.0756 2524 mssmbios - ok
19:39:15.0803 2524 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\windows\system32\drivers\MSTEE.sys
19:39:15.0803 2524 MSTEE - ok
19:39:15.0818 2524 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\windows\system32\DRIVERS\MTConfig.sys
19:39:15.0834 2524 MTConfig - ok
19:39:15.0865 2524 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\windows\system32\Drivers\mup.sys
19:39:15.0865 2524 Mup - ok
19:39:15.0943 2524 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\windows\system32\DRIVERS\nwifi.sys
19:39:15.0959 2524 NativeWifiP - ok
19:39:16.0083 2524 NAVENG (a507b7d1c5f957a1aab98794eb377654) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.1.0.37\Definitions\VirusDefs\20100813.009\ENG64.SYS
19:39:16.0099 2524 NAVENG - ok
19:39:16.0146 2524 NAVEX15 (0d7d6c0fd46f12780c3bab6af891ede3) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.1.0.37\Definitions\VirusDefs\20100813.009\EX64.SYS
19:39:16.0177 2524 NAVEX15 - ok
19:39:16.0302 2524 NDIS (cad515dbd07d082bb317d9928ce8962c) C:\windows\system32\drivers\ndis.sys
19:39:16.0333 2524 NDIS - ok
19:39:16.0427 2524 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\windows\system32\DRIVERS\ndiscap.sys
19:39:16.0442 2524 NdisCap - ok
19:39:16.0473 2524 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\windows\system32\DRIVERS\ndistapi.sys
19:39:16.0473 2524 NdisTapi - ok
19:39:16.0583 2524 Ndisuio (f105ba1e22bf1f2ee8f005d4305e4bec) C:\windows\system32\DRIVERS\ndisuio.sys
19:39:16.0583 2524 Ndisuio - ok
19:39:16.0598 2524 NdisWan (557dfab9ca1fcb036ac77564c010dad3) C:\windows\system32\DRIVERS\ndiswan.sys
19:39:16.0614 2524 NdisWan - ok
19:39:16.0629 2524 NDProxy (659b74fb74b86228d6338d643cd3e3cf) C:\windows\system32\drivers\NDProxy.sys
19:39:16.0629 2524 NDProxy - ok
19:39:16.0739 2524 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\windows\system32\DRIVERS\netbios.sys
19:39:16.0739 2524 NetBIOS - ok
19:39:16.0770 2524 NetBT (9162b273a44ab9dce5b44362731d062a) C:\windows\system32\DRIVERS\netbt.sys
19:39:16.0770 2524 NetBT - ok
19:39:16.0926 2524 netr28x (b964d4c524a80aba22db16fc1eded0a9) C:\windows\system32\DRIVERS\netr28x.sys
19:39:16.0941 2524 netr28x - ok
19:39:17.0051 2524 nfrd960 (77889813be4d166cdab78ddba990da92) C:\windows\system32\DRIVERS\nfrd960.sys
19:39:17.0066 2524 nfrd960 - ok
19:39:17.0207 2524 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\windows\system32\drivers\Npfs.sys
19:39:17.0222 2524 Npfs - ok
19:39:17.0238 2524 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\windows\system32\drivers\nsiproxy.sys
19:39:17.0253 2524 nsiproxy - ok
19:39:17.0331 2524 Ntfs (378e0e0dfea67d98ae6ea53adbbd76bc) C:\windows\system32\drivers\Ntfs.sys
19:39:17.0363 2524 Ntfs - ok
19:39:17.0456 2524 Null (9899284589f75fa8724ff3d16aed75c1) C:\windows\system32\drivers\Null.sys
19:39:17.0456 2524 Null - ok
19:39:17.0519 2524 nvraid (a4d9c9a608a97f59307c2f2600edc6a4) C:\windows\system32\drivers\nvraid.sys
19:39:17.0519 2524 nvraid - ok
19:39:17.0597 2524 nvstor (6c1d5f70e7a6a3fd1c90d840edc048b9) C:\windows\system32\drivers\nvstor.sys
19:39:17.0612 2524 nvstor - ok
19:39:17.0659 2524 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\windows\system32\DRIVERS\nv_agp.sys
19:39:17.0659 2524 nv_agp - ok
19:39:17.0706 2524 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\windows\system32\DRIVERS\ohci1394.sys
19:39:17.0706 2524 ohci1394 - ok
19:39:17.0815 2524 Parport (0086431c29c35be1dbc43f52cc273887) C:\windows\system32\DRIVERS\parport.sys
19:39:17.0831 2524 Parport - ok
19:39:17.0862 2524 partmgr (7daa117143316c4a1537e074a5a9eaf0) C:\windows\system32\drivers\partmgr.sys
19:39:17.0877 2524 partmgr - ok
19:39:17.0893 2524 pci (f36f6504009f2fb0dfd1b17a116ad74b) C:\windows\system32\DRIVERS\pci.sys
19:39:17.0909 2524 pci - ok
19:39:18.0002 2524 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\windows\system32\drivers\pciide.sys
19:39:18.0018 2524 pciide - ok
19:39:18.0049 2524 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\windows\system32\DRIVERS\pcmcia.sys
19:39:18.0065 2524 pcmcia - ok
19:39:18.0096 2524 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\windows\system32\drivers\pcw.sys
19:39:18.0111 2524 pcw - ok
19:39:18.0205 2524 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\windows\system32\drivers\peauth.sys
19:39:18.0236 2524 PEAUTH - ok
19:39:18.0377 2524 PptpMiniport (27cc19e81ba5e3403c48302127bda717) C:\windows\system32\DRIVERS\raspptp.sys
19:39:18.0377 2524 PptpMiniport - ok
19:39:18.0423 2524 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\windows\system32\DRIVERS\processr.sys
19:39:18.0423 2524 Processor - ok
19:39:18.0470 2524 Psched (ee992183bd8eaefd9973f352e587a299) C:\windows\system32\DRIVERS\pacer.sys
19:39:18.0470 2524 Psched - ok
19:39:18.0564 2524 PxHlpa64 (87b04878a6d59d6c79251dc960c674c1) C:\windows\system32\Drivers\PxHlpa64.sys
19:39:18.0564 2524 PxHlpa64 - ok
19:39:18.0642 2524 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\windows\system32\DRIVERS\ql2300.sys
19:39:18.0657 2524 ql2300 - ok
19:39:18.0751 2524 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\windows\system32\DRIVERS\ql40xx.sys
19:39:18.0767 2524 ql40xx - ok
19:39:18.0798 2524 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\windows\system32\drivers\qwavedrv.sys
19:39:18.0798 2524 QWAVEdrv - ok
19:39:18.0813 2524 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\windows\system32\DRIVERS\rasacd.sys
19:39:18.0829 2524 RasAcd - ok
19:39:18.0907 2524 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\windows\system32\DRIVERS\AgileVpn.sys
19:39:18.0923 2524 RasAgileVpn - ok
19:39:18.0954 2524 Rasl2tp (87a6e852a22991580d6d39adc4790463) C:\windows\system32\DRIVERS\rasl2tp.sys
19:39:18.0969 2524 Rasl2tp - ok
19:39:19.0047 2524 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\windows\system32\DRIVERS\raspppoe.sys
19:39:19.0063 2524 RasPppoe - ok
19:39:19.0079 2524 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\windows\system32\DRIVERS\rassstp.sys
19:39:19.0094 2524 RasSstp - ok
19:39:19.0125 2524 rdbss (3bac8142102c15d59a87757c1d41dce5) C:\windows\system32\DRIVERS\rdbss.sys
19:39:19.0141 2524 rdbss - ok
19:39:19.0172 2524 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\windows\system32\DRIVERS\rdpbus.sys
19:39:19.0172 2524 rdpbus - ok
19:39:19.0250 2524 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\windows\system32\DRIVERS\RDPCDD.sys
19:39:19.0250 2524 RDPCDD - ok
19:39:19.0297 2524 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\windows\system32\drivers\rdpencdd.sys
19:39:19.0297 2524 RDPENCDD - ok
19:39:19.0313 2524 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\windows\system32\drivers\rdprefmp.sys
19:39:19.0328 2524 RDPREFMP - ok
19:39:19.0344 2524 RDPWD (8a3e6bea1c53ea6177fe2b6eba2c80d7) C:\windows\system32\drivers\RDPWD.sys
19:39:19.0359 2524 RDPWD - ok
19:39:19.0453 2524 rdyboost (634b9a2181d98f15941236886164ec8b) C:\windows\system32\drivers\rdyboost.sys
19:39:19.0469 2524 rdyboost - ok
19:39:19.0515 2524 RFCOMM (3dd798846e2c28102b922c56e71b7932) C:\windows\system32\DRIVERS\rfcomm.sys
19:39:19.0531 2524 RFCOMM - ok
19:39:19.0625 2524 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\windows\system32\DRIVERS\rspndr.sys
19:39:19.0640 2524 rspndr - ok
19:39:19.0687 2524 RTL8167 (ba3e57c89e6f63808d3f2b11e1a2ad3c) C:\windows\system32\DRIVERS\Rt64win7.sys
19:39:19.0703 2524 RTL8167 - ok
19:39:19.0812 2524 rtsuvc (73157d4a4f6da18c5148e47cb958af58) C:\windows\system32\DRIVERS\rtsuvc.sys
19:39:19.0812 2524 rtsuvc - ok
19:39:19.0843 2524 sbp2port (e3bbb89983daf5622c1d50cf49f28227) C:\windows\system32\DRIVERS\sbp2port.sys
19:39:19.0843 2524 sbp2port - ok
19:39:19.0890 2524 scfilter (c94da20c7e3ba1dca269bc8460d98387) C:\windows\system32\DRIVERS\scfilter.sys
19:39:19.0890 2524 scfilter - ok
19:39:19.0968 2524 sdbus (54e47ad086782d3ae9417c155cdceb9b) C:\windows\system32\DRIVERS\sdbus.sys
19:39:19.0983 2524 sdbus - ok
19:39:20.0046 2524 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\windows\system32\drivers\secdrv.sys
19:39:20.0061 2524 secdrv - ok
19:39:20.0108 2524 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\windows\system32\DRIVERS\serenum.sys
19:39:20.0108 2524 Serenum - ok
19:39:20.0186 2524 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\windows\system32\DRIVERS\serial.sys
19:39:20.0186 2524 Serial - ok
19:39:20.0217 2524 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\windows\system32\DRIVERS\sermouse.sys
19:39:20.0233 2524 sermouse - ok
19:39:20.0280 2524 sffdisk (a554811bcd09279536440c964ae35bbf) C:\windows\system32\DRIVERS\sffdisk.sys
19:39:20.0280 2524 sffdisk - ok
19:39:20.0358 2524 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\windows\system32\DRIVERS\sffp_mmc.sys
19:39:20.0373 2524 sffp_mmc - ok
19:39:20.0389 2524 sffp_sd (178298f767fe638c9fedcbdef58bb5e4) C:\windows\system32\DRIVERS\sffp_sd.sys
19:39:20.0389 2524 sffp_sd - ok
19:39:20.0405 2524 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\windows\system32\DRIVERS\sfloppy.sys
19:39:20.0405 2524 sfloppy - ok
19:39:20.0467 2524 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\windows\system32\DRIVERS\SiSRaid2.sys
19:39:20.0467 2524 SiSRaid2 - ok
19:39:20.0561 2524 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\windows\system32\DRIVERS\sisraid4.sys
19:39:20.0561 2524 SiSRaid4 - ok
19:39:20.0607 2524 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\windows\system32\DRIVERS\smb.sys
19:39:20.0623 2524 Smb - ok
19:39:20.0717 2524 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\windows\system32\drivers\spldr.sys
19:39:20.0717 2524 spldr - ok
19:39:20.0795 2524 SRTSP (90ef30c3867bcde4579c01a6d6e75a7a) C:\windows\System32\Drivers\NISx64\1206000.01D\SRTSP64.SYS
19:39:20.0826 2524 SRTSP - ok
19:39:20.0935 2524 SRTSPX (c513e8a5e7978da49077f5484344ee1b) C:\windows\system32\drivers\NISx64\1206000.01D\SRTSPX64.SYS
19:39:20.0951 2524 SRTSPX - ok
19:39:20.0982 2524 srv (2408c0366d96bcdf63e8f1c78e4a29c5) C:\windows\system32\DRIVERS\srv.sys
19:39:20.0997 2524 srv - ok
19:39:21.0075 2524 srv2 (76548f7b818881b47d8d1ae1be9c11f8) C:\windows\system32\DRIVERS\srv2.sys
19:39:21.0091 2524 srv2 - ok
19:39:21.0107 2524 srvnet (0af6e19d39c70844c5caa8fb0183c36e) C:\windows\system32\DRIVERS\srvnet.sys
19:39:21.0122 2524 srvnet - ok
19:39:21.0263 2524 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\windows\system32\DRIVERS\stexstor.sys
19:39:21.0278 2524 stexstor - ok
19:39:21.0325 2524 STHDA (96df19a03d37f8568141612d31f0d035) C:\windows\system32\DRIVERS\stwrt64.sys
19:39:21.0341 2524 STHDA - ok
19:39:21.0434 2524 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\windows\system32\DRIVERS\swenum.sys
19:39:21.0450 2524 swenum - ok
19:39:21.0528 2524 SymDS (6160145c7a87fc7672e8e3b886888176) C:\windows\system32\drivers\NISx64\1206000.01D\SYMDS64.SYS
19:39:21.0543 2524 SymDS - ok
19:39:21.0668 2524 SymEFA (96aeed40d4d3521568b42027687e69e0) C:\windows\system32\drivers\NISx64\1206000.01D\SYMEFA64.SYS
19:39:21.0699 2524 SymEFA - ok
19:39:21.0793 2524 SymEvent (21a1c2d694c3cf962d31f5e873ab3d6f) C:\windows\system32\Drivers\SYMEVENT64x86.SYS
19:39:21.0809 2524 SymEvent - ok
19:39:21.0871 2524 SymIRON (bd0d711d8cbfcaa19ca123306eaf53a5) C:\windows\system32\drivers\NISx64\1206000.01D\Ironx64.SYS
19:39:21.0887 2524 SymIRON - ok
19:39:21.0996 2524 SymNetS (a6adb3d83023f8daa0f7b6fda785d83b) C:\windows\System32\Drivers\NISx64\1206000.01D\SYMNETS.SYS
19:39:22.0011 2524 SymNetS - ok
19:39:22.0136 2524 SynTP (be2b928de9af2848289db7a54c7e2398) C:\windows\system32\DRIVERS\SynTP.sys
19:39:22.0152 2524 SynTP - ok
19:39:22.0230 2524 Tcpip (f18f56efc0bfb9c87ba01c37b27f4da5) C:\windows\system32\drivers\tcpip.sys
19:39:22.0261 2524 Tcpip - ok
19:39:22.0401 2524 TCPIP6 (f18f56efc0bfb9c87ba01c37b27f4da5) C:\windows\system32\DRIVERS\tcpip.sys
19:39:22.0417 2524 TCPIP6 - ok
19:39:22.0495 2524 tcpipreg (76d078af6f587b162d50210f761eb9ed) C:\windows\system32\drivers\tcpipreg.sys
19:39:22.0511 2524 tcpipreg - ok
19:39:22.0526 2524 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\windows\system32\drivers\tdpipe.sys
19:39:22.0542 2524 TDPIPE - ok
19:39:22.0557 2524 TDTCP (e4245bda3190a582d55ed09e137401a9) C:\windows\system32\drivers\tdtcp.sys
19:39:22.0557 2524 TDTCP - ok
19:39:22.0589 2524 tdx (079125c4b17b01fcaeebce0bcb290c0f) C:\windows\system32\DRIVERS\tdx.sys
19:39:22.0589 2524 tdx - ok
19:39:22.0667 2524 TermDD (c448651339196c0e869a355171875522) C:\windows\system32\DRIVERS\termdd.sys
19:39:22.0682 2524 TermDD - ok
19:39:22.0713 2524 TPM (dbcc20c02e8a3e43b03c304a4e40a84f) C:\windows\system32\drivers\tpm.sys
19:39:22.0713 2524 TPM - ok
19:39:22.0807 2524 tssecsrv (61b96c26131e37b24e93327a0bd1fb95) C:\windows\system32\DRIVERS\tssecsrv.sys
19:39:22.0807 2524 tssecsrv - ok
19:39:22.0854 2524 tunnel (3836171a2cdf3af8ef10856db9835a70) C:\windows\system32\DRIVERS\tunnel.sys
19:39:22.0869 2524 tunnel - ok
19:39:22.0963 2524 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\windows\system32\DRIVERS\uagp35.sys
19:39:22.0963 2524 uagp35 - ok
19:39:23.0025 2524 udfs (0e5e962b5649d544be54e8c90761ea2b) C:\windows\system32\DRIVERS\udfs.sys
19:39:23.0041 2524 udfs - ok
19:39:23.0088 2524 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\windows\system32\DRIVERS\uliagpkx.sys
19:39:23.0088 2524 uliagpkx - ok
19:39:23.0166 2524 umbus (eab6c35e62b1b0db0d1b48b671d3a117) C:\windows\system32\DRIVERS\umbus.sys
19:39:23.0181 2524 umbus - ok
19:39:23.0213 2524 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\windows\system32\DRIVERS\umpass.sys
19:39:23.0213 2524 UmPass - ok
19:39:23.0259 2524 usbaudio (77b01bc848298223a95d4ec23e1785a1) C:\windows\system32\drivers\usbaudio.sys
19:39:23.0259 2524 usbaudio - ok
19:39:23.0353 2524 usbccgp (537a4e03d7103c12d42dfd8ffdb5bdc9) C:\windows\system32\DRIVERS\usbccgp.sys
19:39:23.0369 2524 usbccgp - ok
19:39:23.0415 2524 usbcir (af0892a803fdda7492f595368e3b68e7) C:\windows\system32\DRIVERS\usbcir.sys
19:39:23.0431 2524 usbcir - ok
19:39:23.0509 2524 usbehci (fbb21ebe49f6d560db37ac25fbc68e66) C:\windows\system32\DRIVERS\usbehci.sys
19:39:23.0525 2524 usbehci - ok
19:39:23.0556 2524 usbhub (6b7a8a99c4a459e73c286a6763ea24cc) C:\windows\system32\DRIVERS\usbhub.sys
19:39:23.0571 2524 usbhub - ok
19:39:23.0603 2524 usbohci (8c88aa7617b4cbc2e4bed61d26b33a27) C:\windows\system32\drivers\usbohci.sys
19:39:23.0618 2524 usbohci - ok
19:39:23.0712 2524 usbprint (73188f58fb384e75c4063d29413cee3d) C:\windows\system32\DRIVERS\usbprint.sys
19:39:23.0712 2524 usbprint - ok
19:39:23.0759 2524 usbscan (aaa2513c8aed8b54b189fd0c6b1634c0) C:\windows\system32\DRIVERS\usbscan.sys
19:39:23.0759 2524 usbscan - ok
19:39:23.0790 2524 USBSTOR (f39983647bc1f3e6100778ddfe9dce29) C:\windows\system32\DRIVERS\USBSTOR.SYS
19:39:23.0790 2524 USBSTOR - ok
19:39:23.0883 2524 usbuhci (0b5b3b2df3fd1709618acfa50b8392b0) C:\windows\system32\DRIVERS\usbuhci.sys
19:39:23.0899 2524 usbuhci - ok
19:39:23.0946 2524 usbvideo (7cb8c573c6e4a2714402cc0a36eab4fe) C:\windows\System32\Drivers\usbvideo.sys
19:39:23.0946 2524 usbvideo - ok
19:39:24.0039 2524 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\windows\system32\DRIVERS\vdrvroot.sys
19:39:24.0055 2524 vdrvroot - ok
19:39:24.0117 2524 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\windows\system32\DRIVERS\vgapnp.sys
19:39:24.0117 2524 vga - ok
19:39:24.0195 2524 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\windows\System32\drivers\vga.sys
19:39:24.0195 2524 VgaSave - ok
19:39:24.0242 2524 vhdmp (c82e748660f62a242b2dfac1442f22a4) C:\windows\system32\DRIVERS\vhdmp.sys
19:39:24.0258 2524 vhdmp - ok
19:39:24.0336 2524 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\windows\system32\drivers\viaide.sys
19:39:24.0336 2524 viaide - ok
19:39:24.0414 2524 volmgr (2b1a3dae2b4e70dbba822b7a03fbd4a3) C:\windows\system32\DRIVERS\volmgr.sys
19:39:24.0429 2524 volmgr - ok
19:39:24.0476 2524 volmgrx (99b0cbb569ca79acaed8c91461d765fb) C:\windows\system32\drivers\volmgrx.sys
19:39:24.0492 2524 volmgrx - ok
19:39:24.0539 2524 volsnap (58f82eed8ca24b461441f9c3e4f0bf5c) C:\windows\system32\DRIVERS\volsnap.sys
19:39:24.0539 2524 volsnap - ok
19:39:24.0648 2524 vpnva (13e6d95e7ac67abb7a1196557ef8849f) C:\windows\system32\DRIVERS\vpnva64.sys
19:39:24.0663 2524 vpnva - ok
19:39:24.0726 2524 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\windows\system32\DRIVERS\vsmraid.sys
19:39:24.0741 2524 vsmraid - ok
19:39:24.0819 2524 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\windows\system32\DRIVERS\vwifibus.sys
19:39:24.0819 2524 vwifibus - ok
19:39:24.0866 2524 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\windows\system32\DRIVERS\vwififlt.sys
19:39:24.0882 2524 vwififlt - ok
19:39:24.0960 2524 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\windows\system32\DRIVERS\wacompen.sys
19:39:24.0975 2524 WacomPen - ok
19:39:25.0022 2524 WANARP (47ca49400643effd3f1c9a27e1d69324) C:\windows\system32\DRIVERS\wanarp.sys
19:39:25.0038 2524 WANARP - ok
19:39:25.0038 2524 Wanarpv6 (47ca49400643effd3f1c9a27e1d69324) C:\windows\system32\DRIVERS\wanarp.sys
19:39:25.0053 2524 Wanarpv6 - ok
19:39:25.0131 2524 Wd (72889e16ff12ba0f235467d6091b17dc) C:\windows\system32\DRIVERS\wd.sys
19:39:25.0147 2524 Wd - ok
19:39:25.0178 2524 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\windows\system32\drivers\Wdf01000.sys
19:39:25.0209 2524 Wdf01000 - ok
19:39:25.0319 2524 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\windows\system32\DRIVERS\wfplwf.sys
19:39:25.0334 2524 WfpLwf - ok
19:39:25.0350 2524 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\windows\system32\drivers\wimmount.sys
19:39:25.0365 2524 WIMMount - ok
19:39:25.0506 2524 WinUsb (4d52c872018af7e18d078978dcc3f6f2) C:\windows\system32\DRIVERS\WinUsb.sys
19:39:25.0521 2524 WinUsb - ok
19:39:25.0568 2524 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\windows\system32\DRIVERS\wmiacpi.sys
19:39:25.0568 2524 WmiAcpi - ok
19:39:25.0677 2524 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\windows\system32\drivers\ws2ifsl.sys
19:39:25.0677 2524 ws2ifsl - ok
19:39:25.0724 2524 WudfPf (7cadc74271dd6461c452c271b30bd378) C:\windows\system32\drivers\WudfPf.sys
19:39:25.0724 2524 WudfPf - ok
19:39:25.0755 2524 WUDFRd (3b197af0fff08aa66b6b2241ca538d64) C:\windows\system32\DRIVERS\WUDFRd.sys
19:39:25.0771 2524 WUDFRd - ok
19:39:25.0833 2524 MBR (0x1B8) (ab1119be9d817f19019e3b0913c8f91d) \Device\Harddisk0\DR0
19:39:25.0865 2524 \Device\Harddisk0\DR0 ( Rootkit.Boot.SST.a ) - infected
19:39:25.0865 2524 \Device\Harddisk0\DR0 - detected Rootkit.Boot.SST.a (0)
19:39:25.0880 2524 MBR (0x1B8) (5fb38429d5d77768867c76dcbdb35194) \Device\Harddisk1\DR5
19:39:25.0927 2524 \Device\Harddisk1\DR5 - ok
19:39:25.0958 2524 Boot (0x1200) (1ee21c7b77ed91c9058aeb55e9ecf476) \Device\Harddisk0\DR0\Partition0
19:39:25.0958 2524 \Device\Harddisk0\DR0\Partition0 - ok
19:39:25.0974 2524 Boot (0x1200) (8fe53148daf8727d76a884b26cd7fcc9) \Device\Harddisk0\DR0\Partition1
19:39:25.0974 2524 \Device\Harddisk0\DR0\Partition1 - ok
19:39:26.0005 2524 Boot (0x1200) (06d24fdd054d6596a2e2ce690049e3a2) \Device\Harddisk0\DR0\Partition2
19:39:26.0021 2524 \Device\Harddisk0\DR0\Partition2 - ok
19:39:26.0036 2524 Boot (0x1200) (2c3909372ade9ceed3dab637b90e161b) \Device\Harddisk0\DR0\Partition3
19:39:26.0036 2524 \Device\Harddisk0\DR0\Partition3 - ok
19:39:26.0036 2524 Boot (0x1200) (cef174383b2f3f951cce3374ec4f6547) \Device\Harddisk1\DR5\Partition0
19:39:26.0036 2524 \Device\Harddisk1\DR5\Partition0 - ok
19:39:26.0036 2524 ============================================================
19:39:26.0036 2524 Scan finished
19:39:26.0036 2524 ============================================================
19:39:26.0067 5108 Detected object count: 1
19:39:26.0067 5108 Actual detected object count: 1
19:40:56.0548 5108 \Device\Harddisk0\DR0 - processing error
19:41:27.0966 5108 \Device\Harddisk0\DR0 ( Rootkit.Boot.SST.a ) - User select action: Cure

Vielen Dank, find ich großartig, wie viel Zeit Ihr euch nehmt!

kannst du mal neustarten und nen neuen bericht vom tdss killer reinstellen?

Hier der neue Bericht, Scan Result ist das selbe, wie vor dem Restart:


00:22:48.0582 2368 TDSS rootkit removing tool 2.7.7.0 Jan 24 2012 16:44:27
00:22:48.0613 2368 ============================================================
00:22:48.0613 2368 Current date / time: 2012/01/25 00:22:48.0613
00:22:48.0613 2368 SystemInfo:
00:22:48.0613 2368
00:22:48.0613 2368 OS Version: 6.1.7600 ServicePack: 0.0
00:22:48.0613 2368 Product type: Workstation
00:22:48.0613 2368 ComputerName: ***-HP
00:22:48.0613 2368 UserName: ***
00:22:48.0613 2368 Windows directory: C:\windows
00:22:48.0613 2368 System windows directory: C:\windows
00:22:48.0613 2368 Running under WOW64
00:22:48.0613 2368 Processor architecture: Intel x64
00:22:48.0613 2368 Number of processors: 2
00:22:48.0613 2368 Page size: 0x1000
00:22:48.0613 2368 Boot type: Normal boot
00:22:48.0613 2368 ============================================================
00:22:50.0626 2368 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
00:22:50.0688 2368 Initialize success
00:22:53.0902 2920 ============================================================
00:22:53.0902 2920 Scan started
00:22:53.0902 2920 Mode: Manual;
00:22:53.0902 2920 ============================================================
00:22:54.0791 2920 1394ohci (1b00662092f9f9568b995902f0cc40d5) C:\windows\system32\DRIVERS\1394ohci.sys
00:22:54.0806 2920 1394ohci - ok
00:22:54.0869 2920 ACPI (6f11e88748cdefd2f76aa215f97ddfe5) C:\windows\system32\DRIVERS\ACPI.sys
00:22:54.0900 2920 ACPI - ok
00:22:54.0994 2920 AcpiPmi (63b05a0420ce4bf0e4af6dcc7cada254) C:\windows\system32\DRIVERS\acpipmi.sys
00:22:55.0009 2920 AcpiPmi - ok
00:22:55.0103 2920 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\windows\system32\DRIVERS\adp94xx.sys
00:22:55.0118 2920 adp94xx - ok
00:22:55.0228 2920 adpahci (597f78224ee9224ea1a13d6350ced962) C:\windows\system32\DRIVERS\adpahci.sys
00:22:55.0243 2920 adpahci - ok
00:22:55.0274 2920 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\windows\system32\DRIVERS\adpu320.sys
00:22:55.0274 2920 adpu320 - ok
00:22:55.0415 2920 AFD (6ef20ddf3172e97d69f596fb90602f29) C:\windows\system32\drivers\afd.sys
00:22:55.0446 2920 AFD - ok
00:22:55.0571 2920 AgereSoftModem (a6ab6f0ace87da76b4c401813d18be95) C:\windows\system32\DRIVERS\agrsm64.sys
00:22:55.0602 2920 AgereSoftModem - ok
00:22:55.0696 2920 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\windows\system32\DRIVERS\agp440.sys
00:22:55.0711 2920 agp440 - ok
00:22:55.0774 2920 aliide (5812713a477a3ad7363c7438ca2ee038) C:\windows\system32\drivers\aliide.sys
00:22:55.0774 2920 aliide - ok
00:22:55.0789 2920 amdide (1ff8b4431c353ce385c875f194924c0c) C:\windows\system32\drivers\amdide.sys
00:22:55.0789 2920 amdide - ok
00:22:55.0898 2920 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\windows\system32\DRIVERS\amdk8.sys
00:22:55.0914 2920 AmdK8 - ok
00:22:55.0945 2920 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\windows\system32\DRIVERS\amdppm.sys
00:22:55.0945 2920 AmdPPM - ok
00:22:56.0039 2920 amdsata (ec7ebab00a4d8448bab68d1e49b4beb9) C:\windows\system32\drivers\amdsata.sys
00:22:56.0054 2920 amdsata - ok
00:22:56.0086 2920 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\windows\system32\DRIVERS\amdsbs.sys
00:22:56.0101 2920 amdsbs - ok
00:22:56.0132 2920 amdxata (db27766102c7bf7e95140a2aa81d042e) C:\windows\system32\drivers\amdxata.sys
00:22:56.0132 2920 amdxata - ok
00:22:56.0257 2920 AppID (42fd751b27fa0e9c69bb39f39e409594) C:\windows\system32\drivers\appid.sys
00:22:56.0257 2920 AppID - ok
00:22:56.0320 2920 arc (c484f8ceb1717c540242531db7845c4e) C:\windows\system32\DRIVERS\arc.sys
00:22:56.0335 2920 arc - ok
00:22:56.0507 2920 arcsas (019af6924aefe7839f61c830227fe79c) C:\windows\system32\DRIVERS\arcsas.sys
00:22:56.0507 2920 arcsas - ok
00:22:56.0554 2920 AsyncMac (769765ce2cc62867468cea93969b2242) C:\windows\system32\DRIVERS\asyncmac.sys
00:22:56.0569 2920 AsyncMac - ok
00:22:56.0694 2920 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\windows\system32\drivers\atapi.sys
00:22:56.0710 2920 atapi - ok
00:22:56.0772 2920 avgntflt (b1224e6b086cd6548315b04ab575a23e) C:\windows\system32\DRIVERS\avgntflt.sys
00:22:56.0772 2920 avgntflt - ok
00:22:56.0850 2920 avipbb (ed45f12cfa62b83765c9c1496758cc87) C:\windows\system32\DRIVERS\avipbb.sys
00:22:56.0866 2920 avipbb - ok
00:22:56.0912 2920 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\windows\system32\DRIVERS\bxvbda.sys
00:22:56.0928 2920 b06bdrv - ok
00:22:57.0053 2920 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\windows\system32\DRIVERS\b57nd60a.sys
00:22:57.0068 2920 b57nd60a - ok
00:22:57.0100 2920 Beep (16a47ce2decc9b099349a5f840654746) C:\windows\system32\drivers\Beep.sys
00:22:57.0100 2920 Beep - ok
00:22:57.0271 2920 BHDrvx64 (95da658498248d5832aa240850706150) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.1.0.37\Definitions\BASHDefs\20100810.004\BHDrvx64.sys
00:22:57.0287 2920 BHDrvx64 - ok
00:22:57.0396 2920 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\windows\system32\DRIVERS\blbdrive.sys
00:22:57.0396 2920 blbdrive - ok
00:22:57.0458 2920 bowser (19d20159708e152267e53b66677a4995) C:\windows\system32\DRIVERS\bowser.sys
00:22:57.0474 2920 bowser - ok
00:22:57.0568 2920 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\windows\system32\DRIVERS\BrFiltLo.sys
00:22:57.0568 2920 BrFiltLo - ok
00:22:57.0583 2920 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\windows\system32\DRIVERS\BrFiltUp.sys
00:22:57.0599 2920 BrFiltUp - ok
00:22:57.0646 2920 BridgeMP (5c2f352a4e961d72518261257aae204b) C:\windows\system32\DRIVERS\bridge.sys
00:22:57.0646 2920 BridgeMP - ok
00:22:57.0739 2920 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\windows\System32\Drivers\Brserid.sys
00:22:57.0755 2920 Brserid - ok
00:22:57.0770 2920 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\windows\System32\Drivers\BrSerWdm.sys
00:22:57.0786 2920 BrSerWdm - ok
00:22:57.0817 2920 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\windows\System32\Drivers\BrUsbMdm.sys
00:22:57.0817 2920 BrUsbMdm - ok
00:22:57.0911 2920 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\windows\System32\Drivers\BrUsbSer.sys
00:22:57.0911 2920 BrUsbSer - ok
00:22:57.0958 2920 BthEnum (cf98190a94f62e405c8cb255018b2315) C:\windows\system32\drivers\BthEnum.sys
00:22:57.0973 2920 BthEnum - ok
00:22:58.0067 2920 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\windows\system32\DRIVERS\bthmodem.sys
00:22:58.0082 2920 BTHMODEM - ok
00:22:58.0114 2920 BthPan (02dd601b708dd0667e1331fa8518e9ff) C:\windows\system32\DRIVERS\bthpan.sys
00:22:58.0129 2920 BthPan - ok
00:22:58.0223 2920 BTHPORT (538392664fee486620dfea146f2500bc) C:\windows\System32\Drivers\BTHport.sys
00:22:58.0254 2920 BTHPORT - ok
00:22:58.0363 2920 BTHUSB (6e71522e317b22257d8e37a1584b5829) C:\windows\System32\Drivers\BTHUSB.sys
00:22:58.0363 2920 BTHUSB - ok
00:22:58.0410 2920 BTMCOM (e588420b950dac5ac397f76660bce520) C:\windows\system32\Drivers\btmcom.sys
00:22:58.0426 2920 BTMCOM - ok
00:22:58.0566 2920 BTMUSB (d1bcd0e189378f81e3fe57783684b3da) C:\windows\system32\Drivers\btmusb.sys
00:22:58.0628 2920 BTMUSB - ok
00:22:58.0769 2920 catchme - ok
00:22:58.0862 2920 cdfs (b8bd2bb284668c84865658c77574381a) C:\windows\system32\DRIVERS\cdfs.sys
00:22:58.0862 2920 cdfs - ok
00:22:58.0909 2920 cdrom (83d2d75e1efb81b3450c18131443f7db) C:\windows\system32\DRIVERS\cdrom.sys
00:22:58.0925 2920 cdrom - ok
00:22:59.0050 2920 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\windows\system32\DRIVERS\circlass.sys
00:22:59.0050 2920 circlass - ok
00:22:59.0081 2920 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\windows\system32\CLFS.sys
00:22:59.0096 2920 CLFS - ok
00:22:59.0237 2920 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\windows\system32\DRIVERS\CmBatt.sys
00:22:59.0237 2920 CmBatt - ok
00:22:59.0284 2920 cmdide (e19d3f095812725d88f9001985b94edd) C:\windows\system32\drivers\cmdide.sys
00:22:59.0299 2920 cmdide - ok
00:22:59.0346 2920 CNG (f95fd4cb7da00ba2a63ce9f6b5c053e1) C:\windows\system32\Drivers\cng.sys
00:22:59.0377 2920 CNG - ok
00:22:59.0471 2920 Compbatt (102de219c3f61415f964c88e9085ad14) C:\windows\system32\DRIVERS\compbatt.sys
00:22:59.0471 2920 Compbatt - ok
00:22:59.0502 2920 CompositeBus (f26b3a86f6fa87ca360b879581ab4123) C:\windows\system32\DRIVERS\CompositeBus.sys
00:22:59.0502 2920 CompositeBus - ok
00:22:59.0533 2920 crcdisk (1c827878a998c18847245fe1f34ee597) C:\windows\system32\DRIVERS\crcdisk.sys
00:22:59.0533 2920 crcdisk - ok
00:22:59.0658 2920 DfsC (9c253ce7311ca60fc11c774692a13208) C:\windows\system32\Drivers\dfsc.sys
00:22:59.0658 2920 DfsC - ok
00:22:59.0689 2920 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\windows\system32\drivers\discache.sys
00:22:59.0705 2920 discache - ok
00:22:59.0798 2920 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\windows\system32\DRIVERS\disk.sys
00:22:59.0814 2920 Disk - ok
00:22:59.0861 2920 drmkaud (9b19f34400d24df84c858a421c205754) C:\windows\system32\drivers\drmkaud.sys
00:22:59.0861 2920 drmkaud - ok
00:22:59.0986 2920 DXGKrnl (1633b9abf52784a1331476397a48cbef) C:\windows\System32\drivers\dxgkrnl.sys
00:23:00.0001 2920 DXGKrnl - ok
00:23:00.0173 2920 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\windows\system32\DRIVERS\evbda.sys
00:23:00.0235 2920 ebdrv - ok
00:23:00.0313 2920 eeCtrl (066108ae4c35835081598827a1a7d08d) C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys
00:23:00.0344 2920 eeCtrl - ok
00:23:00.0547 2920 elxstor (0e5da5369a0fcaea12456dd852545184) C:\windows\system32\DRIVERS\elxstor.sys
00:23:00.0547 2920 elxstor - ok
00:23:00.0906 2920 EraserUtilRebootDrv (12866876e3851f1e5d462b2a83e25578) C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
00:23:00.0922 2920 EraserUtilRebootDrv - ok
00:23:01.0046 2920 ErrDev (34a3c54752046e79a126e15c51db409b) C:\windows\system32\DRIVERS\errdev.sys
00:23:01.0046 2920 ErrDev - ok
00:23:01.0218 2920 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\windows\system32\drivers\exfat.sys
00:23:01.0265 2920 exfat - ok
00:23:01.0327 2920 fastfat (0adc83218b66a6db380c330836f3e36d) C:\windows\system32\drivers\fastfat.sys
00:23:01.0390 2920 fastfat - ok
00:23:01.0608 2920 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\windows\system32\DRIVERS\fdc.sys
00:23:01.0624 2920 fdc - ok
00:23:01.0717 2920 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\windows\system32\drivers\fileinfo.sys
00:23:01.0748 2920 FileInfo - ok
00:23:01.0936 2920 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\windows\system32\drivers\filetrace.sys
00:23:01.0951 2920 Filetrace - ok
00:23:02.0138 2920 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\windows\system32\DRIVERS\flpydisk.sys
00:23:02.0138 2920 flpydisk - ok
00:23:02.0263 2920 FltMgr (f7866af72abbaf84b1fa5aa195378c59) C:\windows\system32\drivers\fltmgr.sys
00:23:02.0326 2920 FltMgr - ok
00:23:02.0388 2920 FsDepends (d43703496149971890703b4b1b723eac) C:\windows\system32\drivers\FsDepends.sys
00:23:02.0388 2920 FsDepends - ok
00:23:02.0560 2920 Fs_Rec (e95ef8547de20cf0603557c0cf7a9462) C:\windows\system32\drivers\Fs_Rec.sys
00:23:02.0560 2920 Fs_Rec - ok
00:23:02.0794 2920 fvevol (ae87ba80d0ec3b57126ed2cdc15b24ed) C:\windows\system32\DRIVERS\fvevol.sys
00:23:02.0965 2920 fvevol - ok
00:23:03.0106 2920 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\windows\system32\DRIVERS\gagp30kx.sys
00:23:03.0106 2920 gagp30kx - ok
00:23:03.0184 2920 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\windows\system32\drivers\hcw85cir.sys
00:23:03.0215 2920 hcw85cir - ok
00:23:03.0355 2920 HdAudAddService (6410f6f415b2a5a9037224c41da8bf12) C:\windows\system32\drivers\HdAudio.sys
00:23:03.0433 2920 HdAudAddService - ok
00:23:03.0589 2920 HDAudBus (0a49913402747a0b67de940fb42cbdbb) C:\windows\system32\DRIVERS\HDAudBus.sys
00:23:03.0652 2920 HDAudBus - ok
00:23:03.0776 2920 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\windows\system32\DRIVERS\HidBatt.sys
00:23:03.0776 2920 HidBatt - ok
00:23:03.0854 2920 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\windows\system32\DRIVERS\hidbth.sys
00:23:03.0854 2920 HidBth - ok
00:23:04.0042 2920 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\windows\system32\DRIVERS\hidir.sys
00:23:04.0042 2920 HidIr - ok
00:23:04.0198 2920 HidUsb (b3bf6b5b50006def50b66306d99fcf6f) C:\windows\system32\DRIVERS\hidusb.sys
00:23:04.0213 2920 HidUsb - ok
00:23:04.0588 2920 HpqKbFiltr (b98ee5d4535a685634b90f7e04de0df7) C:\windows\system32\DRIVERS\HpqKbFiltr.sys
00:23:04.0588 2920 HpqKbFiltr - ok
00:23:04.0822 2920 HpSAMD (0886d440058f203eba0e1825e4355914) C:\windows\system32\DRIVERS\HpSAMD.sys
00:23:04.0837 2920 HpSAMD - ok
00:23:04.0962 2920 HTTP (cee049cac4efa7f4e1e4ad014414a5d4) C:\windows\system32\drivers\HTTP.sys
00:23:05.0040 2920 HTTP - ok
00:23:05.0180 2920 hwpolicy (f17766a19145f111856378df337a5d79) C:\windows\system32\drivers\hwpolicy.sys
00:23:05.0180 2920 hwpolicy - ok
00:23:05.0336 2920 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\windows\system32\DRIVERS\i8042prt.sys
00:23:05.0352 2920 i8042prt - ok
00:23:05.0508 2920 iaStor (abbf174cb394f5c437410a788b7e404a) C:\windows\system32\DRIVERS\iaStor.sys
00:23:05.0524 2920 iaStor - ok
00:23:05.0789 2920 iaStorV (b75e45c564e944a2657167d197ab29da) C:\windows\system32\drivers\iaStorV.sys
00:23:05.0851 2920 iaStorV - ok
00:23:06.0007 2920 IDSVia64 (c3292140bf458b46cf8abbfd7e177bbe) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.1.0.37\Definitions\IPSDefs\20100706.002\IDSVia64.sys
00:23:06.0023 2920 IDSVia64 - ok
00:23:06.0834 2920 igfx (7467ae8f96ea983423148c62458669fa) C:\windows\system32\DRIVERS\igdkmd64.sys
00:23:07.0146 2920 igfx - ok
00:23:07.0271 2920 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\windows\system32\DRIVERS\iirsp.sys
00:23:07.0286 2920 iirsp - ok
00:23:07.0474 2920 IntcHdmiAddService (b014ce58f0a8048d3924ba8d5ccbc5f1) C:\windows\system32\drivers\IntcHdmi.sys
00:23:07.0474 2920 IntcHdmiAddService - ok
00:23:07.0598 2920 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\windows\system32\drivers\intelide.sys
00:23:07.0630 2920 intelide - ok
00:23:07.0708 2920 intelppm (ada036632c664caa754079041cf1f8c1) C:\windows\system32\DRIVERS\intelppm.sys
00:23:07.0723 2920 intelppm - ok
00:23:07.0895 2920 IpFilterDriver (722dd294df62483cecaae6e094b4d695) C:\windows\system32\DRIVERS\ipfltdrv.sys
00:23:07.0926 2920 IpFilterDriver - ok
00:23:08.0285 2920 IPMIDRV (e2b4a4494db7cb9b89b55ca268c337c5) C:\windows\system32\DRIVERS\IPMIDrv.sys
00:23:08.0332 2920 IPMIDRV - ok
00:23:08.0722 2920 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\windows\system32\drivers\ipnat.sys
00:23:08.0753 2920 IPNAT - ok
00:23:09.0252 2920 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\windows\system32\drivers\irenum.sys
00:23:09.0299 2920 IRENUM - ok
00:23:09.0611 2920 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\windows\system32\DRIVERS\isapnp.sys
00:23:09.0626 2920 isapnp - ok
00:23:10.0469 2920 iScsiPrt (fa4d2557de56d45b0a346f93564be6e1) C:\windows\system32\DRIVERS\msiscsi.sys
00:23:10.0562 2920 iScsiPrt - ok
00:23:11.0124 2920 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\windows\system32\DRIVERS\kbdclass.sys
00:23:11.0140 2920 kbdclass - ok
00:23:11.0389 2920 kbdhid (6def98f8541e1b5dceb2c822a11f7323) C:\windows\system32\DRIVERS\kbdhid.sys
00:23:11.0405 2920 kbdhid - ok
00:23:11.0561 2920 KSecDD (e8b6fcc9c83535c67f835d407620bd27) C:\windows\system32\Drivers\ksecdd.sys
00:23:11.0576 2920 KSecDD - ok
00:23:11.0654 2920 KSecPkg (a8c63880ef6f4d3fec7b616b9c060215) C:\windows\system32\Drivers\ksecpkg.sys
00:23:11.0686 2920 KSecPkg - ok
00:23:11.0842 2920 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\windows\system32\drivers\ksthunk.sys
00:23:11.0873 2920 ksthunk - ok
00:23:12.0138 2920 lltdio (1538831cf8ad2979a04c423779465827) C:\windows\system32\DRIVERS\lltdio.sys
00:23:12.0154 2920 lltdio - ok
00:23:12.0341 2920 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\windows\system32\DRIVERS\lsi_fc.sys
00:23:12.0341 2920 LSI_FC - ok
00:23:12.0497 2920 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\windows\system32\DRIVERS\lsi_sas.sys
00:23:12.0528 2920 LSI_SAS - ok
00:23:12.0684 2920 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\windows\system32\DRIVERS\lsi_sas2.sys
00:23:12.0700 2920 LSI_SAS2 - ok
00:23:12.0840 2920 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\windows\system32\DRIVERS\lsi_scsi.sys
00:23:12.0856 2920 LSI_SCSI - ok
00:23:13.0012 2920 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\windows\system32\drivers\luafv.sys
00:23:13.0027 2920 luafv - ok
00:23:13.0136 2920 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\windows\system32\DRIVERS\megasas.sys
00:23:13.0152 2920 megasas - ok
00:23:13.0448 2920 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\windows\system32\DRIVERS\MegaSR.sys
00:23:13.0542 2920 MegaSR - ok
00:23:13.0838 2920 Modem (800ba92f7010378b09f9ed9270f07137) C:\windows\system32\drivers\modem.sys
00:23:13.0963 2920 Modem - ok
00:23:14.0197 2920 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\windows\system32\DRIVERS\monitor.sys
00:23:14.0275 2920 monitor - ok
00:23:14.0525 2920 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\windows\system32\DRIVERS\mouclass.sys
00:23:14.0743 2920 mouclass - ok
00:23:15.0040 2920 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\windows\system32\DRIVERS\mouhid.sys
00:23:15.0086 2920 mouhid - ok
00:23:15.0320 2920 mountmgr (791af66c4d0e7c90a3646066386fb571) C:\windows\system32\drivers\mountmgr.sys
00:23:15.0367 2920 mountmgr - ok
00:23:15.0617 2920 mpio (609d1d87649ecc19796f4d76d4c15cea) C:\windows\system32\DRIVERS\mpio.sys
00:23:15.0695 2920 mpio - ok
00:23:15.0898 2920 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\windows\system32\drivers\mpsdrv.sys
00:23:16.0038 2920 mpsdrv - ok
00:23:16.0350 2920 MRxDAV (30524261bb51d96d6fcbac20c810183c) C:\windows\system32\drivers\mrxdav.sys
00:23:16.0412 2920 MRxDAV - ok
00:23:16.0756 2920 mrxsmb (040d62a9d8ad28922632137acdd984f2) C:\windows\system32\DRIVERS\mrxsmb.sys
00:23:16.0787 2920 mrxsmb - ok
00:23:16.0990 2920 mrxsmb10 (f0067552f8f9b33d7c59403ab808a3cb) C:\windows\system32\DRIVERS\mrxsmb10.sys
00:23:17.0099 2920 mrxsmb10 - ok
00:23:17.0364 2920 mrxsmb20 (3c142d31de9f2f193218a53fe2632051) C:\windows\system32\DRIVERS\mrxsmb20.sys
00:23:17.0520 2920 mrxsmb20 - ok
00:23:17.0754 2920 msahci (2ba4ff3d5eb68587dd662a896f649c7d) C:\windows\system32\drivers\msahci.sys
00:23:17.0816 2920 msahci - ok
00:23:18.0206 2920 msdsm (8d27b597229aed79430fb9db3bcbfbd0) C:\windows\system32\DRIVERS\msdsm.sys
00:23:18.0284 2920 msdsm - ok
00:23:18.0565 2920 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\windows\system32\drivers\Msfs.sys
00:23:18.0581 2920 Msfs - ok
00:23:18.0893 2920 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\windows\System32\drivers\mshidkmdf.sys
00:23:18.0908 2920 mshidkmdf - ok
00:23:19.0220 2920 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\windows\system32\DRIVERS\msisadrv.sys
00:23:19.0236 2920 msisadrv - ok
00:23:19.0579 2920 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\windows\system32\drivers\MSKSSRV.sys
00:23:19.0595 2920 MSKSSRV - ok
00:23:19.0922 2920 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\windows\system32\drivers\MSPCLOCK.sys
00:23:19.0938 2920 MSPCLOCK - ok
00:23:20.0328 2920 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\windows\system32\drivers\MSPQM.sys
00:23:20.0344 2920 MSPQM - ok
00:23:20.0656 2920 MsRPC (89cb141aa8616d8c6a4610fa26c60964) C:\windows\system32\drivers\MsRPC.sys
00:23:20.0702 2920 MsRPC - ok
00:23:20.0936 2920 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\windows\system32\DRIVERS\mssmbios.sys
00:23:20.0952 2920 mssmbios - ok
00:23:21.0186 2920 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\windows\system32\drivers\MSTEE.sys
00:23:21.0186 2920 MSTEE - ok
00:23:21.0264 2920 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\windows\system32\DRIVERS\MTConfig.sys
00:23:21.0295 2920 MTConfig - ok
00:23:21.0888 2920 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\windows\system32\Drivers\mup.sys
00:23:21.0888 2920 Mup - ok
00:23:22.0028 2920 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\windows\system32\DRIVERS\nwifi.sys
00:23:22.0060 2920 NativeWifiP - ok
00:23:22.0247 2920 NAVENG (a507b7d1c5f957a1aab98794eb377654) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.1.0.37\Definitions\VirusDefs\20100813.009\ENG64.SYS
00:23:22.0262 2920 NAVENG - ok
00:23:22.0652 2920 NAVEX15 (0d7d6c0fd46f12780c3bab6af891ede3) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.1.0.37\Definitions\VirusDefs\20100813.009\EX64.SYS
00:23:22.0855 2920 NAVEX15 - ok
00:23:23.0105 2920 NDIS (cad515dbd07d082bb317d9928ce8962c) C:\windows\system32\drivers\ndis.sys
00:23:23.0120 2920 NDIS - ok
00:23:23.0354 2920 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\windows\system32\DRIVERS\ndiscap.sys
00:23:23.0417 2920 NdisCap - ok
00:23:23.0776 2920 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\windows\system32\DRIVERS\ndistapi.sys
00:23:23.0807 2920 NdisTapi - ok
00:23:24.0337 2920 Ndisuio (f105ba1e22bf1f2ee8f005d4305e4bec) C:\windows\system32\DRIVERS\ndisuio.sys
00:23:24.0368 2920 Ndisuio - ok
00:23:24.0634 2920 NdisWan (557dfab9ca1fcb036ac77564c010dad3) C:\windows\system32\DRIVERS\ndiswan.sys
00:23:24.0649 2920 NdisWan - ok
00:23:25.0039 2920 NDProxy (659b74fb74b86228d6338d643cd3e3cf) C:\windows\system32\drivers\NDProxy.sys
00:23:25.0055 2920 NDProxy - ok
00:23:25.0258 2920 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\windows\system32\DRIVERS\netbios.sys
00:23:25.0273 2920 NetBIOS - ok
00:23:25.0445 2920 NetBT (9162b273a44ab9dce5b44362731d062a) C:\windows\system32\DRIVERS\netbt.sys
00:23:25.0460 2920 NetBT - ok
00:23:25.0757 2920 netr28x (b964d4c524a80aba22db16fc1eded0a9) C:\windows\system32\DRIVERS\netr28x.sys
00:23:25.0788 2920 netr28x - ok
00:23:25.0960 2920 nfrd960 (77889813be4d166cdab78ddba990da92) C:\windows\system32\DRIVERS\nfrd960.sys
00:23:25.0960 2920 nfrd960 - ok
00:23:26.0646 2920 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\windows\system32\drivers\Npfs.sys
00:23:26.0755 2920 Npfs - ok
00:23:26.0880 2920 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\windows\system32\drivers\nsiproxy.sys
00:23:26.0880 2920 nsiproxy - ok
00:23:27.0020 2920 Ntfs (378e0e0dfea67d98ae6ea53adbbd76bc) C:\windows\system32\drivers\Ntfs.sys
00:23:27.0114 2920 Ntfs - ok
00:23:27.0254 2920 Null (9899284589f75fa8724ff3d16aed75c1) C:\windows\system32\drivers\Null.sys
00:23:27.0270 2920 Null - ok
00:23:27.0379 2920 nvraid (a4d9c9a608a97f59307c2f2600edc6a4) C:\windows\system32\drivers\nvraid.sys
00:23:27.0395 2920 nvraid - ok
00:23:27.0488 2920 nvstor (6c1d5f70e7a6a3fd1c90d840edc048b9) C:\windows\system32\drivers\nvstor.sys
00:23:27.0504 2920 nvstor - ok
00:23:27.0582 2920 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\windows\system32\DRIVERS\nv_agp.sys
00:23:27.0629 2920 nv_agp - ok
00:23:27.0707 2920 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\windows\system32\DRIVERS\ohci1394.sys
00:23:27.0722 2920 ohci1394 - ok
00:23:27.0785 2920 Parport (0086431c29c35be1dbc43f52cc273887) C:\windows\system32\DRIVERS\parport.sys
00:23:27.0816 2920 Parport - ok
00:23:27.0878 2920 partmgr (7daa117143316c4a1537e074a5a9eaf0) C:\windows\system32\drivers\partmgr.sys
00:23:27.0894 2920 partmgr - ok
00:23:27.0972 2920 pci (f36f6504009f2fb0dfd1b17a116ad74b) C:\windows\system32\DRIVERS\pci.sys
00:23:27.0972 2920 pci - ok
00:23:28.0050 2920 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\windows\system32\drivers\pciide.sys
00:23:28.0066 2920 pciide - ok
00:23:28.0237 2920 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\windows\system32\DRIVERS\pcmcia.sys
00:23:28.0253 2920 pcmcia - ok
00:23:28.0409 2920 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\windows\system32\drivers\pcw.sys
00:23:28.0409 2920 pcw - ok
00:23:28.0534 2920 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\windows\system32\drivers\peauth.sys
00:23:28.0565 2920 PEAUTH - ok
00:23:28.0814 2920 PptpMiniport (27cc19e81ba5e3403c48302127bda717) C:\windows\system32\DRIVERS\raspptp.sys
00:23:28.0830 2920 PptpMiniport - ok
00:23:28.0924 2920 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\windows\system32\DRIVERS\processr.sys
00:23:28.0939 2920 Processor - ok
00:23:28.0986 2920 Psched (ee992183bd8eaefd9973f352e587a299) C:\windows\system32\DRIVERS\pacer.sys
00:23:28.0986 2920 Psched - ok
00:23:29.0189 2920 PxHlpa64 (87b04878a6d59d6c79251dc960c674c1) C:\windows\system32\Drivers\PxHlpa64.sys
00:23:29.0189 2920 PxHlpa64 - ok
00:23:29.0532 2920 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\windows\system32\DRIVERS\ql2300.sys
00:23:29.0579 2920 ql2300 - ok
00:23:29.0828 2920 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\windows\system32\DRIVERS\ql40xx.sys
00:23:29.0860 2920 ql40xx - ok
00:23:30.0031 2920 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\windows\system32\drivers\qwavedrv.sys
00:23:30.0031 2920 QWAVEdrv - ok
00:23:30.0156 2920 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\windows\system32\DRIVERS\rasacd.sys
00:23:30.0172 2920 RasAcd - ok
00:23:30.0343 2920 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\windows\system32\DRIVERS\AgileVpn.sys
00:23:30.0359 2920 RasAgileVpn - ok
00:23:30.0484 2920 Rasl2tp (87a6e852a22991580d6d39adc4790463) C:\windows\system32\DRIVERS\rasl2tp.sys
00:23:30.0499 2920 Rasl2tp - ok
00:23:30.0546 2920 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\windows\system32\DRIVERS\raspppoe.sys
00:23:30.0562 2920 RasPppoe - ok
00:23:30.0718 2920 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\windows\system32\DRIVERS\rassstp.sys
00:23:30.0749 2920 RasSstp - ok
00:23:30.0967 2920 rdbss (3bac8142102c15d59a87757c1d41dce5) C:\windows\system32\DRIVERS\rdbss.sys
00:23:30.0998 2920 rdbss - ok
00:23:31.0108 2920 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\windows\system32\DRIVERS\rdpbus.sys
00:23:31.0123 2920 rdpbus - ok
00:23:31.0154 2920 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\windows\system32\DRIVERS\RDPCDD.sys
00:23:31.0170 2920 RDPCDD - ok
00:23:31.0295 2920 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\windows\system32\drivers\rdpencdd.sys
00:23:31.0326 2920 RDPENCDD - ok
00:23:31.0404 2920 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\windows\system32\drivers\rdprefmp.sys
00:23:31.0435 2920 RDPREFMP - ok
00:23:31.0513 2920 RDPWD (8a3e6bea1c53ea6177fe2b6eba2c80d7) C:\windows\system32\drivers\RDPWD.sys
00:23:31.0544 2920 RDPWD - ok
00:23:31.0638 2920 rdyboost (634b9a2181d98f15941236886164ec8b) C:\windows\system32\drivers\rdyboost.sys
00:23:31.0654 2920 rdyboost - ok
00:23:31.0872 2920 RFCOMM (3dd798846e2c28102b922c56e71b7932) C:\windows\system32\DRIVERS\rfcomm.sys
00:23:31.0888 2920 RFCOMM - ok
00:23:32.0012 2920 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\windows\system32\DRIVERS\rspndr.sys
00:23:32.0028 2920 rspndr - ok
00:23:32.0075 2920 RTL8167 (ba3e57c89e6f63808d3f2b11e1a2ad3c) C:\windows\system32\DRIVERS\Rt64win7.sys
00:23:32.0137 2920 RTL8167 - ok
00:23:32.0262 2920 rtsuvc (73157d4a4f6da18c5148e47cb958af58) C:\windows\system32\DRIVERS\rtsuvc.sys
00:23:32.0309 2920 rtsuvc - ok
00:23:32.0402 2920 sbp2port (e3bbb89983daf5622c1d50cf49f28227) C:\windows\system32\DRIVERS\sbp2port.sys
00:23:32.0449 2920 sbp2port - ok
00:23:32.0558 2920 scfilter (c94da20c7e3ba1dca269bc8460d98387) C:\windows\system32\DRIVERS\scfilter.sys
00:23:32.0590 2920 scfilter - ok
00:23:32.0714 2920 sdbus (54e47ad086782d3ae9417c155cdceb9b) C:\windows\system32\DRIVERS\sdbus.sys
00:23:32.0761 2920 sdbus - ok
00:23:32.0917 2920 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\windows\system32\drivers\secdrv.sys
00:23:32.0933 2920 secdrv - ok
00:23:33.0104 2920 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\windows\system32\DRIVERS\serenum.sys
00:23:33.0104 2920 Serenum - ok
00:23:33.0198 2920 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\windows\system32\DRIVERS\serial.sys
00:23:33.0229 2920 Serial - ok
00:23:33.0370 2920 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\windows\system32\DRIVERS\sermouse.sys
00:23:33.0385 2920 sermouse - ok
00:23:34.0134 2920 sffdisk (a554811bcd09279536440c964ae35bbf) C:\windows\system32\DRIVERS\sffdisk.sys
00:23:34.0134 2920 sffdisk - ok
00:23:34.0384 2920 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\windows\system32\DRIVERS\sffp_mmc.sys
00:23:34.0477 2920 sffp_mmc - ok
00:23:34.0633 2920 sffp_sd (178298f767fe638c9fedcbdef58bb5e4) C:\windows\system32\DRIVERS\sffp_sd.sys
00:23:34.0633 2920 sffp_sd - ok
00:23:34.0664 2920 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\windows\system32\DRIVERS\sfloppy.sys
00:23:34.0664 2920 sfloppy - ok
00:23:34.0867 2920 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\windows\system32\DRIVERS\SiSRaid2.sys
00:23:34.0867 2920 SiSRaid2 - ok
00:23:35.0101 2920 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\windows\system32\DRIVERS\sisraid4.sys
00:23:35.0148 2920 SiSRaid4 - ok
00:23:35.0335 2920 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\windows\system32\DRIVERS\smb.sys
00:23:35.0398 2920 Smb - ok
00:23:35.0850 2920 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\windows\system32\drivers\spldr.sys
00:23:35.0897 2920 spldr - ok
00:23:36.0287 2920 SRTSP (90ef30c3867bcde4579c01a6d6e75a7a) C:\windows\System32\Drivers\NISx64\1206000.01D\SRTSP64.SYS
00:23:36.0427 2920 SRTSP - ok
00:23:36.0630 2920 SRTSPX (c513e8a5e7978da49077f5484344ee1b) C:\windows\system32\drivers\NISx64\1206000.01D\SRTSPX64.SYS
00:23:36.0661 2920 SRTSPX - ok
00:23:36.0864 2920 srv (2408c0366d96bcdf63e8f1c78e4a29c5) C:\windows\system32\DRIVERS\srv.sys
00:23:36.0926 2920 srv - ok
00:23:37.0082 2920 srv2 (76548f7b818881b47d8d1ae1be9c11f8) C:\windows\system32\DRIVERS\srv2.sys
00:23:37.0129 2920 srv2 - ok
00:23:37.0332 2920 srvnet (0af6e19d39c70844c5caa8fb0183c36e) C:\windows\system32\DRIVERS\srvnet.sys
00:23:37.0363 2920 srvnet - ok
00:23:37.0613 2920 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\windows\system32\DRIVERS\stexstor.sys
00:23:37.0628 2920 stexstor - ok
00:23:37.0753 2920 STHDA (96df19a03d37f8568141612d31f0d035) C:\windows\system32\DRIVERS\stwrt64.sys
00:23:37.0784 2920 STHDA - ok
00:23:37.0972 2920 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\windows\system32\DRIVERS\swenum.sys
00:23:37.0987 2920 swenum - ok
00:23:38.0596 2920 SymDS (6160145c7a87fc7672e8e3b886888176) C:\windows\system32\drivers\NISx64\1206000.01D\SYMDS64.SYS
00:23:38.0658 2920 SymDS - ok
00:23:39.0064 2920 SymEFA (96aeed40d4d3521568b42027687e69e0) C:\windows\system32\drivers\NISx64\1206000.01D\SYMEFA64.SYS
00:23:39.0079 2920 SymEFA - ok
00:23:39.0266 2920 SymEvent (21a1c2d694c3cf962d31f5e873ab3d6f) C:\windows\system32\Drivers\SYMEVENT64x86.SYS
00:23:39.0266 2920 SymEvent - ok
00:23:39.0500 2920 SymIRON (bd0d711d8cbfcaa19ca123306eaf53a5) C:\windows\system32\drivers\NISx64\1206000.01D\Ironx64.SYS
00:23:39.0625 2920 SymIRON - ok
00:23:39.0750 2920 SymNetS (a6adb3d83023f8daa0f7b6fda785d83b) C:\windows\System32\Drivers\NISx64\1206000.01D\SYMNETS.SYS
00:23:39.0766 2920 SymNetS - ok
00:23:39.0906 2920 SynTP (be2b928de9af2848289db7a54c7e2398) C:\windows\system32\DRIVERS\SynTP.sys
00:23:39.0906 2920 SynTP - ok
00:23:40.0124 2920 Tcpip (f18f56efc0bfb9c87ba01c37b27f4da5) C:\windows\system32\drivers\tcpip.sys
00:23:40.0280 2920 Tcpip - ok
00:23:40.0483 2920 TCPIP6 (f18f56efc0bfb9c87ba01c37b27f4da5) C:\windows\system32\DRIVERS\tcpip.sys
00:23:40.0499 2920 TCPIP6 - ok
00:23:40.0733 2920 tcpipreg (76d078af6f587b162d50210f761eb9ed) C:\windows\system32\drivers\tcpipreg.sys
00:23:40.0748 2920 tcpipreg - ok
00:23:40.0904 2920 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\windows\system32\drivers\tdpipe.sys
00:23:40.0920 2920 TDPIPE - ok
00:23:41.0029 2920 TDTCP (e4245bda3190a582d55ed09e137401a9) C:\windows\system32\drivers\tdtcp.sys
00:23:41.0045 2920 TDTCP - ok
00:23:41.0154 2920 tdx (079125c4b17b01fcaeebce0bcb290c0f) C:\windows\system32\DRIVERS\tdx.sys
00:23:41.0170 2920 tdx - ok
00:23:41.0404 2920 TermDD (c448651339196c0e869a355171875522) C:\windows\system32\DRIVERS\termdd.sys
00:23:41.0404 2920 TermDD - ok
00:23:41.0731 2920 TPM (dbcc20c02e8a3e43b03c304a4e40a84f) C:\windows\system32\drivers\tpm.sys
00:23:41.0731 2920 TPM - ok
00:23:42.0137 2920 tssecsrv (61b96c26131e37b24e93327a0bd1fb95) C:\windows\system32\DRIVERS\tssecsrv.sys
00:23:42.0184 2920 tssecsrv - ok
00:23:42.0371 2920 tunnel (3836171a2cdf3af8ef10856db9835a70) C:\windows\system32\DRIVERS\tunnel.sys
00:23:42.0371 2920 tunnel - ok
00:23:42.0574 2920 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\windows\system32\DRIVERS\uagp35.sys
00:23:42.0589 2920 uagp35 - ok
00:23:42.0901 2920 udfs (0e5e962b5649d544be54e8c90761ea2b) C:\windows\system32\DRIVERS\udfs.sys
00:23:42.0995 2920 udfs - ok
00:23:43.0229 2920 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\windows\system32\DRIVERS\uliagpkx.sys
00:23:43.0229 2920 uliagpkx - ok
00:23:43.0322 2920 umbus (eab6c35e62b1b0db0d1b48b671d3a117) C:\windows\system32\DRIVERS\umbus.sys
00:23:43.0338 2920 umbus - ok
00:23:43.0432 2920 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\windows\system32\DRIVERS\umpass.sys
00:23:43.0447 2920 UmPass - ok
00:23:43.0728 2920 usbaudio (77b01bc848298223a95d4ec23e1785a1) C:\windows\system32\drivers\usbaudio.sys
00:23:43.0775 2920 usbaudio - ok
00:23:43.0868 2920 usbccgp (537a4e03d7103c12d42dfd8ffdb5bdc9) C:\windows\system32\DRIVERS\usbccgp.sys
00:23:43.0884 2920 usbccgp - ok
00:23:43.0946 2920 usbcir (af0892a803fdda7492f595368e3b68e7) C:\windows\system32\DRIVERS\usbcir.sys
00:23:43.0978 2920 usbcir - ok
00:23:44.0274 2920 usbehci (fbb21ebe49f6d560db37ac25fbc68e66) C:\windows\system32\DRIVERS\usbehci.sys
00:23:44.0321 2920 usbehci - ok
00:23:44.0555 2920 usbhub (6b7a8a99c4a459e73c286a6763ea24cc) C:\windows\system32\DRIVERS\usbhub.sys
00:23:44.0586 2920 usbhub - ok
00:23:44.0898 2920 usbohci (8c88aa7617b4cbc2e4bed61d26b33a27) C:\windows\system32\drivers\usbohci.sys
00:23:44.0929 2920 usbohci - ok
00:23:45.0023 2920 usbprint (73188f58fb384e75c4063d29413cee3d) C:\windows\system32\DRIVERS\usbprint.sys
00:23:45.0038 2920 usbprint - ok
00:23:45.0070 2920 usbscan (aaa2513c8aed8b54b189fd0c6b1634c0) C:\windows\system32\DRIVERS\usbscan.sys
00:23:45.0085 2920 usbscan - ok
00:23:45.0163 2920 USBSTOR (f39983647bc1f3e6100778ddfe9dce29) C:\windows\system32\DRIVERS\USBSTOR.SYS
00:23:45.0179 2920 USBSTOR - ok
00:23:45.0366 2920 usbuhci (0b5b3b2df3fd1709618acfa50b8392b0) C:\windows\system32\DRIVERS\usbuhci.sys
00:23:45.0366 2920 usbuhci - ok
00:23:45.0522 2920 usbvideo (7cb8c573c6e4a2714402cc0a36eab4fe) C:\windows\System32\Drivers\usbvideo.sys
00:23:45.0538 2920 usbvideo - ok
00:23:45.0709 2920 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\windows\system32\DRIVERS\vdrvroot.sys
00:23:45.0709 2920 vdrvroot - ok
00:23:45.0787 2920 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\windows\system32\DRIVERS\vgapnp.sys
00:23:45.0787 2920 vga - ok
00:23:45.0881 2920 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\windows\System32\drivers\vga.sys
00:23:45.0881 2920 VgaSave - ok
00:23:46.0006 2920 vhdmp (c82e748660f62a242b2dfac1442f22a4) C:\windows\system32\DRIVERS\vhdmp.sys
00:23:46.0021 2920 vhdmp - ok
00:23:46.0240 2920 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\windows\system32\drivers\viaide.sys
00:23:46.0255 2920 viaide - ok
00:23:46.0411 2920 volmgr (2b1a3dae2b4e70dbba822b7a03fbd4a3) C:\windows\system32\DRIVERS\volmgr.sys
00:23:46.0427 2920 volmgr - ok
00:23:46.0552 2920 volmgrx (99b0cbb569ca79acaed8c91461d765fb) C:\windows\system32\drivers\volmgrx.sys
00:23:46.0567 2920 volmgrx - ok
00:23:46.0614 2920 volsnap (58f82eed8ca24b461441f9c3e4f0bf5c) C:\windows\system32\DRIVERS\volsnap.sys
00:23:46.0645 2920 volsnap - ok
00:23:46.0739 2920 vpnva (13e6d95e7ac67abb7a1196557ef8849f) C:\windows\system32\DRIVERS\vpnva64.sys
00:23:46.0739 2920 vpnva - ok
00:23:46.0801 2920 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\windows\system32\DRIVERS\vsmraid.sys
00:23:46.0817 2920 vsmraid - ok
00:23:46.0864 2920 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\windows\system32\DRIVERS\vwifibus.sys
00:23:46.0879 2920 vwifibus - ok
00:23:47.0004 2920 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\windows\system32\DRIVERS\vwififlt.sys
00:23:47.0020 2920 vwififlt - ok
00:23:47.0066 2920 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\windows\system32\DRIVERS\wacompen.sys
00:23:47.0066 2920 WacomPen - ok
00:23:47.0176 2920 WANARP (47ca49400643effd3f1c9a27e1d69324) C:\windows\system32\DRIVERS\wanarp.sys
00:23:47.0191 2920 WANARP - ok
00:23:47.0191 2920 Wanarpv6 (47ca49400643effd3f1c9a27e1d69324) C:\windows\system32\DRIVERS\wanarp.sys
00:23:47.0207 2920 Wanarpv6 - ok
00:23:47.0285 2920 Wd (72889e16ff12ba0f235467d6091b17dc) C:\windows\system32\DRIVERS\wd.sys
00:23:47.0347 2920 Wd - ok
00:23:47.0441 2920 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\windows\system32\drivers\Wdf01000.sys
00:23:47.0488 2920 Wdf01000 - ok
00:23:47.0628 2920 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\windows\system32\DRIVERS\wfplwf.sys
00:23:47.0628 2920 WfpLwf - ok
00:23:47.0644 2920 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\windows\system32\drivers\wimmount.sys
00:23:47.0659 2920 WIMMount - ok
00:23:47.0815 2920 WinUsb (4d52c872018af7e18d078978dcc3f6f2) C:\windows\system32\DRIVERS\WinUsb.sys
00:23:47.0831 2920 WinUsb - ok
00:23:47.0893 2920 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\windows\system32\DRIVERS\wmiacpi.sys
00:23:47.0909 2920 WmiAcpi - ok
00:23:48.0018 2920 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\windows\system32\drivers\ws2ifsl.sys
00:23:48.0018 2920 ws2ifsl - ok
00:23:48.0080 2920 WudfPf (7cadc74271dd6461c452c271b30bd378) C:\windows\system32\drivers\WudfPf.sys
00:23:48.0096 2920 WudfPf - ok
00:23:48.0127 2920 WUDFRd (3b197af0fff08aa66b6b2241ca538d64) C:\windows\system32\DRIVERS\WUDFRd.sys
00:23:48.0127 2920 WUDFRd - ok
00:23:48.0190 2920 MBR (0x1B8) (ab1119be9d817f19019e3b0913c8f91d) \Device\Harddisk0\DR0
00:23:48.0205 2920 \Device\Harddisk0\DR0 ( Rootkit.Boot.SST.a ) - infected
00:23:48.0205 2920 \Device\Harddisk0\DR0 - detected Rootkit.Boot.SST.a (0)
00:23:48.0268 2920 Boot (0x1200) (1ee21c7b77ed91c9058aeb55e9ecf476) \Device\Harddisk0\DR0\Partition0
00:23:48.0268 2920 \Device\Harddisk0\DR0\Partition0 - ok
00:23:48.0299 2920 Boot (0x1200) (8fe53148daf8727d76a884b26cd7fcc9) \Device\Harddisk0\DR0\Partition1
00:23:48.0314 2920 \Device\Harddisk0\DR0\Partition1 - ok
00:23:48.0346 2920 Boot (0x1200) (06d24fdd054d6596a2e2ce690049e3a2) \Device\Harddisk0\DR0\Partition2
00:23:48.0377 2920 \Device\Harddisk0\DR0\Partition2 - ok
00:23:48.0424 2920 Boot (0x1200) (2c3909372ade9ceed3dab637b90e161b) \Device\Harddisk0\DR0\Partition3
00:23:48.0439 2920 \Device\Harddisk0\DR0\Partition3 - ok
00:23:48.0439 2920 ============================================================
00:23:48.0439 2920 Scan finished
00:23:48.0439 2920 ============================================================
00:23:48.0455 2220 Detected object count: 1
00:23:48.0455 2220 Actual detected object count: 1
00:24:01.0075 2220 \Device\Harddisk0\DR0 - processing error
00:24:13.0368 2220 \Device\Harddisk0\DR0 ( Rootkit.Boot.SST.a ) - User select action: Cure

hast du eine windows cd zur hand?

Nein, ich habe allerdings Windows 7 Professional (x86) auf einem anderen Rechner. Das ist eine Version, die ich als Student an der Uni herunterladen durfte. Ich könnte diese Version auf meiner externen Festplatte speichern und diese dann an das "verseuchte" Notebook (läuft aktuell mit Windows 7 Home) anschließen und von dort booten, wenn das möglich ist. Ansonsten müsste ich mich umhören, in den nächsten Tagen bekomme ich sicherlich von irgendwo eine CD her.

nein das ist nicht möglich.
1. muss dieses system neu aufgesetzt werden, du hast ein rootkit auf dem pc.
2. wenn du onlinebanking machst, lasse das umgehend sperren.
3. müssen wir den mbr trotzdem sauber bekommen.
lade mal hitmanpro:
http://www.trojaner-board.de/99424-c...o-scannen.html
doppelklicken, settings, license, testlicense.
bitte aktivieren.
dann scan, funde in quarantäne, log am ende als xml datei exportieren und hier anhängen als datei.

Folgende Meldung beim Ausführen von Hitman Pro:

64-bit Betriebssystem gefunden. Diese Version unterstützt lediglich eine 32-bit Version von Windows.

Ich habe über die Produkthomepage die 64 Bit Version geladen. Wollte unter Lizenz die kostenlose Lizez aktivieren, beim Aktivierungsprozess tritt aber ein Fehler mit der Meldung auf, dass eine Firewall-Software die Anwendung blockieren würde. Sie fordern auf, die Firewallregeln zu aktualisieren. Allerdings habe ich keine Firewall an, jedenfalls meines Wissens nach.

heute abend hätte ich evtl. eine gebrannte windows cd zur verfügung..

was heißt gebrannt, ist die original oder aus irgend ner tauschbörse.
solche versionen sollte man nicht verwenden, da
1. illegal.
2. du nicht weist ob da nicht noch was drinn versteckt ist.
deaktiviere mal die windows firewall:
http://windows.microsoft.com/de-DE/w...wall-on-or-off
starte neu und probiere hitmanpro erneut

Der Fehler tritt nach dem Ausschalten der Firewall immer noch auf.. (Fehlercode 20)

Nein, nichts illegales. Es wäre eine Kopie der original Windows 7 Professional DVD. Allerdings habe ich nur einen Key für Windows 7 Home. Ich werd weiter rumfragen..

muss es denn die Original CD sein?

es muss eine zu deiner version passende cd sein
wo ist denn deine windows version geblieben, irgendwie muss das betriebssystem ja auf den pc gekommen sein.
lade:
http://ad13.geekstogo.com/MBRCheck.exe
führe das programm durch doppelklick aus, dann lasse es durchlaufen, schließen, log sollte auf dem desktop liegen, poste es.

Windows 7 Home x64 war vorinstalliert, der Key befindet sich am Boden des Notebooks. Ich kann die entsprechende Windows Version soweit ich weiß als .iso downloaden und auf DVD brennen.


Hier die log:


MBRCheck, version 1.2.3
(c) 2010, AD

Command-line:
Windows Version: Windows 7 Home Premium Edition
Windows Information: (build 7600), 64-bit
Base Board Manufacturer: Hewlett-Packard
BIOS Manufacturer: Hewlett-Packard
System Manufacturer: Hewlett-Packard
System Product Name: HP 620
Logical Drives Mask: 0x0000006c

Kernel Drivers (total 201):
0x02C55000 \SystemRoot\system32\ntoskrnl.exe
0x02C0C000 \SystemRoot\system32\hal.dll
0x00B9D000 \SystemRoot\system32\kdcom.dll
0x00C54000 \SystemRoot\system32\mcupdate_GenuineIntel.dll
0x00C98000 \SystemRoot\system32\PSHED.dll
0x00CAC000 \SystemRoot\system32\CLFS.SYS
0x00D0A000 \SystemRoot\system32\CI.dll
0x00E46000 \SystemRoot\system32\drivers\Wdf01000.sys
0x00EEA000 \SystemRoot\system32\drivers\WDFLDR.SYS
0x00EF9000 \SystemRoot\system32\DRIVERS\ACPI.sys
0x00F50000 \SystemRoot\system32\DRIVERS\WMILIB.SYS
0x00F59000 \SystemRoot\system32\DRIVERS\msisadrv.sys
0x00F63000 \SystemRoot\system32\DRIVERS\pci.sys
0x00F96000 \SystemRoot\system32\DRIVERS\vdrvroot.sys
0x00FA3000 \SystemRoot\System32\drivers\partmgr.sys
0x00FB8000 \SystemRoot\system32\DRIVERS\compbatt.sys
0x00FC1000 \SystemRoot\system32\DRIVERS\BATTC.SYS
0x00FCD000 \SystemRoot\system32\DRIVERS\volmgr.sys
0x0102D000 \SystemRoot\System32\drivers\volmgrx.sys
0x01089000 \SystemRoot\System32\drivers\mountmgr.sys
0x01234000 \SystemRoot\system32\DRIVERS\iaStor.sys
0x0143E000 \SystemRoot\system32\drivers\amdxata.sys
0x01449000 \SystemRoot\system32\drivers\fltmgr.sys
0x01495000 \SystemRoot\system32\drivers\NISx64\1206000.01D\SYMDS64.SYS
0x01506000 \SystemRoot\system32\drivers\fileinfo.sys
0x0151A000 \SystemRoot\system32\drivers\NISx64\1206000.01D\SYMEFA64.SYS
0x01200000 \SystemRoot\System32\Drivers\PxHlpa64.sys
0x01658000 \SystemRoot\System32\Drivers\Ntfs.sys
0x010A3000 \SystemRoot\System32\Drivers\msrpc.sys
0x01600000 \SystemRoot\System32\Drivers\ksecdd.sys
0x01101000 \SystemRoot\System32\Drivers\cng.sys
0x0161A000 \SystemRoot\System32\drivers\pcw.sys
0x0162B000 \SystemRoot\System32\Drivers\Fs_Rec.sys
0x01825000 \SystemRoot\system32\drivers\ndis.sys
0x01917000 \SystemRoot\system32\drivers\NETIO.SYS
0x01977000 \SystemRoot\System32\Drivers\ksecpkg.sys
0x01A01000 \SystemRoot\System32\drivers\tcpip.sys
0x019A2000 \SystemRoot\System32\drivers\fwpkclnt.sys
0x01174000 \SystemRoot\system32\DRIVERS\volsnap.sys
0x019EC000 \SystemRoot\System32\Drivers\spldr.sys
0x011C0000 \SystemRoot\System32\drivers\rdyboost.sys
0x01800000 \SystemRoot\System32\Drivers\mup.sys
0x01812000 \SystemRoot\System32\drivers\hwpolicy.sys
0x00E00000 \SystemRoot\System32\DRIVERS\fvevol.sys
0x01635000 \SystemRoot\system32\DRIVERS\disk.sys
0x00DCA000 \SystemRoot\system32\DRIVERS\CLASSPNP.SYS
0x03E22000 \SystemRoot\system32\DRIVERS\cdrom.sys
0x03E4C000 \SystemRoot\System32\Drivers\Null.SYS
0x03E55000 \SystemRoot\System32\Drivers\Beep.SYS
0x03E5C000 \SystemRoot\System32\drivers\vga.sys
0x03E6A000 \SystemRoot\System32\drivers\VIDEOPRT.SYS
0x03E8F000 \SystemRoot\System32\drivers\watchdog.sys
0x03E9F000 \SystemRoot\System32\DRIVERS\RDPCDD.sys
0x03EA8000 \SystemRoot\system32\drivers\rdpencdd.sys
0x03EB1000 \SystemRoot\system32\drivers\rdprefmp.sys
0x03EBA000 \SystemRoot\System32\Drivers\Msfs.SYS
0x03EC5000 \SystemRoot\System32\Drivers\Npfs.SYS
0x03ED6000 \SystemRoot\system32\DRIVERS\tdx.sys
0x03EF4000 \SystemRoot\system32\DRIVERS\TDI.SYS
0x03F01000 \SystemRoot\system32\drivers\afd.sys
0x03F8A000 \SystemRoot\System32\DRIVERS\netbt.sys
0x03FCF000 \SystemRoot\system32\drivers\ws2ifsl.sys
0x03FDA000 \SystemRoot\system32\DRIVERS\wfplwf.sys
0x01000000 \SystemRoot\system32\DRIVERS\pacer.sys
0x03FE3000 \SystemRoot\system32\DRIVERS\vwififlt.sys
0x0121B000 \SystemRoot\system32\DRIVERS\netbios.sys
0x00FE2000 \SystemRoot\system32\DRIVERS\wanarp.sys
0x00C00000 \SystemRoot\system32\DRIVERS\termdd.sys
0x02E24000 \SystemRoot\System32\Drivers\NISx64\1206000.01D\SYMNETS.SYS
0x02E8B000 \??\C:\windows\system32\Drivers\SYMEVENT64x86.SYS
0x02EC1000 \SystemRoot\system32\drivers\NISx64\1206000.01D\Ironx64.SYS
0x02EEE000 \SystemRoot\system32\drivers\NISx64\1206000.01D\SRTSPX64.SYS
0x02F04000 \SystemRoot\system32\DRIVERS\rdbss.sys
0x02F55000 \SystemRoot\system32\drivers\nsiproxy.sys
0x02F61000 \SystemRoot\system32\DRIVERS\mssmbios.sys
0x02F6C000 \??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.1.0.37\Definitions\IPSDefs\20100706.002\IDSVia64.sys
0x040AE000 \??\C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys
0x04124000 \??\C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
0x04149000 \SystemRoot\System32\drivers\discache.sys
0x04158000 \SystemRoot\System32\Drivers\dfsc.sys
0x04176000 \SystemRoot\system32\DRIVERS\blbdrive.sys
0x04261000 \??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.1.0.37\Definitions\BASHDefs\20100810.004\BHDrvx64.sys
0x0434C000 \SystemRoot\system32\DRIVERS\avipbb.sys
0x04370000 \SystemRoot\system32\DRIVERS\tunnel.sys
0x04396000 \SystemRoot\system32\DRIVERS\intelppm.sys
0x04A3D000 \SystemRoot\system32\DRIVERS\igdkmd64.sys
0x051B8000 \SystemRoot\System32\Drivers\fastfat.SYS
0x0441D000 \SystemRoot\System32\drivers\dxgkrnl.sys
0x04511000 \SystemRoot\System32\drivers\dxgmms1.sys
0x04557000 \SystemRoot\system32\DRIVERS\usbuhci.sys
0x04564000 \SystemRoot\system32\DRIVERS\USBPORT.SYS
0x045BA000 \SystemRoot\system32\DRIVERS\usbehci.sys
0x045CB000 \SystemRoot\system32\DRIVERS\HDAudBus.sys
0x04628000 \SystemRoot\system32\DRIVERS\netr28x.sys
0x04712000 \SystemRoot\system32\DRIVERS\vwifibus.sys
0x0471F000 \SystemRoot\system32\DRIVERS\Rt64win7.sys
0x04772000 \SystemRoot\system32\DRIVERS\i8042prt.sys
0x04790000 \SystemRoot\system32\DRIVERS\HpqKbFiltr.sys
0x0479C000 \SystemRoot\system32\DRIVERS\kbdclass.sys
0x047AB000 \SystemRoot\system32\DRIVERS\SynTP.sys
0x047FB000 \SystemRoot\system32\DRIVERS\USBD.SYS
0x04600000 \SystemRoot\system32\DRIVERS\mouclass.sys
0x0460F000 \SystemRoot\system32\DRIVERS\CmBatt.sys
0x04614000 \SystemRoot\system32\DRIVERS\wmiacpi.sys
0x045EF000 \SystemRoot\system32\DRIVERS\CompositeBus.sys
0x04400000 \SystemRoot\system32\DRIVERS\AgileVpn.sys
0x04A00000 \SystemRoot\system32\DRIVERS\rasl2tp.sys
0x04A24000 \SystemRoot\system32\DRIVERS\ndistapi.sys
0x043AC000 \SystemRoot\system32\DRIVERS\ndiswan.sys
0x043DB000 \SystemRoot\system32\DRIVERS\raspppoe.sys
0x04200000 \SystemRoot\system32\DRIVERS\raspptp.sys
0x04221000 \SystemRoot\system32\DRIVERS\rassstp.sys
0x0461D000 \SystemRoot\system32\DRIVERS\swenum.sys
0x04187000 \SystemRoot\system32\DRIVERS\ks.sys
0x051EE000 \SystemRoot\system32\DRIVERS\umbus.sys
0x04000000 \SystemRoot\system32\DRIVERS\usbhub.sys
0x0423B000 \SystemRoot\System32\Drivers\NDProxy.SYS
0x0623B000 \SystemRoot\system32\DRIVERS\stwrt64.sys
0x062BD000 \SystemRoot\system32\DRIVERS\portcls.sys
0x062FA000 \SystemRoot\system32\DRIVERS\drmk.sys
0x0631C000 \SystemRoot\system32\drivers\ksthunk.sys
0x06634000 \SystemRoot\system32\DRIVERS\agrsm64.sys
0x06765000 \SystemRoot\system32\drivers\modem.sys
0x06774000 \SystemRoot\system32\drivers\IntcHdmi.sys
0x0679C000 \SystemRoot\System32\Drivers\crashdmp.sys
0x03C00000 \SystemRoot\System32\Drivers\dump_iaStor.sys
0x067AA000 \SystemRoot\System32\Drivers\dump_dumpfve.sys
0x00030000 \SystemRoot\System32\win32k.sys
0x067BD000 \SystemRoot\System32\drivers\Dxapi.sys
0x067C9000 \SystemRoot\system32\DRIVERS\monitor.sys
0x005F0000 \SystemRoot\System32\TSDDD.dll
0x00740000 \SystemRoot\System32\cdd.dll
0x067D7000 \SystemRoot\system32\DRIVERS\hidusb.sys
0x067E5000 \SystemRoot\system32\DRIVERS\HIDCLASS.SYS
0x06600000 \SystemRoot\system32\DRIVERS\HIDPARSE.SYS
0x06609000 \SystemRoot\system32\DRIVERS\mouhid.sys
0x06616000 \SystemRoot\system32\DRIVERS\USBSTOR.SYS
0x00930000 \SystemRoot\System32\ATMFD.DLL
0x06322000 \SystemRoot\system32\drivers\luafv.sys
0x06345000 \SystemRoot\system32\DRIVERS\avgntflt.sys
0x06364000 \SystemRoot\system32\drivers\WudfPf.sys
0x06385000 \SystemRoot\system32\DRIVERS\usbccgp.sys
0x063A2000 \SystemRoot\system32\DRIVERS\lltdio.sys
0x0405A000 \SystemRoot\system32\DRIVERS\nwifi.sys
0x063B7000 \SystemRoot\system32\DRIVERS\ndisuio.sys
0x063CA000 \SystemRoot\system32\DRIVERS\rspndr.sys
0x063E2000 \SystemRoot\system32\DRIVERS\rtsuvc.sys
0x04804000 \SystemRoot\system32\drivers\HTTP.sys
0x048CC000 \SystemRoot\system32\DRIVERS\bowser.sys
0x048EA000 \SystemRoot\System32\drivers\mpsdrv.sys
0x04902000 \SystemRoot\system32\DRIVERS\mrxsmb.sys
0x0492F000 \SystemRoot\system32\DRIVERS\mrxsmb10.sys
0x0497D000 \SystemRoot\system32\DRIVERS\mrxsmb20.sys
0x076B8000 \SystemRoot\system32\drivers\peauth.sys
0x0775E000 \SystemRoot\System32\Drivers\secdrv.SYS
0x07769000 \SystemRoot\System32\DRIVERS\srvnet.sys
0x07796000 \SystemRoot\System32\drivers\tcpipreg.sys
0x07600000 \SystemRoot\System32\DRIVERS\srv2.sys
0x07C0C000 \SystemRoot\System32\DRIVERS\srv.sys
0x07D43000 \SystemRoot\system32\drivers\spsys.sys
0x07DB4000 \SystemRoot\system32\DRIVERS\WUDFRd.sys
0x774C0000 \Windows\System32\ntdll.dll
0x48050000 \Windows\System32\smss.exe
0xFF7E0000 \Windows\System32\apisetschema.dll
0xFF660000 \Windows\System32\autochk.exe
0xFF7B0000 \Windows\System32\sechost.dll
0xFF7A0000 \Windows\System32\lpk.dll
0xFF750000 \Windows\System32\Wldap32.dll
0xFF620000 \Windows\System32\wininet.dll
0xFF4F0000 \Windows\System32\rpcrt4.dll
0x773C0000 \Windows\System32\user32.dll
0xFF450000 \Windows\System32\clbcatq.dll
0xFE6C0000 \Windows\System32\shell32.dll
0xFE690000 \Windows\System32\imm32.dll
0x77690000 \Windows\System32\normaliz.dll
0xFE5F0000 \Windows\System32\comdlg32.dll
0xFE510000 \Windows\System32\oleaut32.dll
0xFE300000 \Windows\System32\ole32.dll
0xFE2E0000 \Windows\System32\imagehlp.dll
0xFE240000 \Windows\System32\msvcrt.dll
0xFE170000 \Windows\System32\usp10.dll
0xFE120000 \Windows\System32\ws2_32.dll
0xFE040000 \Windows\System32\advapi32.dll
0xFDFD0000 \Windows\System32\gdi32.dll
0xFDD70000 \Windows\System32\iertutil.dll
0xFDC60000 \Windows\System32\msctf.dll
0xFDBE0000 \Windows\System32\difxapi.dll
0x772A0000 \Windows\System32\kernel32.dll
0xFDBD0000 \Windows\System32\nsi.dll
0xFDA50000 \Windows\System32\urlmon.dll
0xFD870000 \Windows\System32\setupapi.dll
0x77680000 \Windows\System32\psapi.dll
0xFD7F0000 \Windows\System32\shlwapi.dll
0xFD780000 \Windows\System32\KernelBase.dll
0xFD6E0000 \Windows\System32\comctl32.dll
0xFD6C0000 \Windows\System32\devobj.dll
0xFD680000 \Windows\System32\wintrust.dll
0xFD640000 \Windows\System32\cfgmgr32.dll
0xFD4D0000 \Windows\System32\crypt32.dll
0xFD4C0000 \Windows\System32\msasn1.dll
0x77670000 \Windows\SysWOW64\normaliz.dll

Processes (total 87):
0 System Idle Process
4 System
316 C:\Windows\System32\smss.exe
424 csrss.exe
484 C:\Windows\System32\wininit.exe
496 csrss.exe
540 C:\Windows\System32\services.exe
556 C:\Windows\System32\lsass.exe
568 C:\Windows\System32\lsm.exe
680 C:\Windows\System32\svchost.exe
752 C:\Windows\System32\svchost.exe
804 C:\Windows\System32\svchost.exe
856 C:\Windows\System32\svchost.exe
880 C:\Windows\System32\svchost.exe
944 C:\Windows\System32\winlogon.exe
968 C:\Program Files\IDT\WDM\stacsv64.exe
1044 C:\Windows\System32\svchost.exe
1132 C:\Program Files (x86)\Cisco\Cisco AnyConnect VPN Client\vpnagent.exe
1164 C:\Windows\System32\svchost.exe
1396 C:\Windows\System32\spoolsv.exe
1440 C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
1464 C:\Windows\System32\svchost.exe
1644 C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
1692 C:\Program Files\IDT\WDM\AESTSr64.exe
1716 C:\Program Files\LSI SoftModem\agr64svc.exe
1744 C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
1772 C:\Program Files\Motorola\Bluetooth\devmgrsrv.exe
1828 C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
1868 C:\Program Files (x86)\Hewlett-Packard\HP HotKey Support\hpHotkeyMonitor.exe
1888 C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
1900 C:\Windows\System32\conhost.exe
1944 C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
1988 C:\Program Files (x86)\Norton Internet Security\Engine\18.6.0.29\ccsvchst.exe
2028 C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe
912 C:\Program Files (x86)\PDF Complete\pdfsvc.exe
2088 C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
2176 C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
2284 C:\Windows\System32\svchost.exe
2416 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
2452 C:\Program Files\Motorola\Bluetooth\obexsrv.exe
2776 unsecapp.exe
2948 C:\Windows\System32\taskhost.exe
3020 C:\Program Files (x86)\Norton Internet Security\Engine\18.6.0.29\ccsvchst.exe
3036 C:\Windows\System32\dwm.exe
2084 WmiPrvSE.exe
2408 C:\Windows\explorer.exe
3268 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
3304 C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
3336 C:\Windows\System32\igfxtray.exe
3352 C:\Windows\System32\hkcmd.exe
3376 C:\Windows\System32\igfxpers.exe
3428 C:\Windows\System32\rundll32.exe
3512 C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
3528 C:\Program Files\IDT\WDM\sttray64.exe
3548 C:\Windows\System32\igfxsrvc.exe
3572 C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe
3692 C:\Program Files (x86)\Steam\Steam.exe
3760 C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
3768 C:\Users\***\AppData\Roaming\Dropbox\bin\Dropbox.exe
3804 C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
3900 C:\Windows\System32\SearchIndexer.exe
3132 C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
3244 C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe
708 C:\Program Files (x86)\ScanSoft\PaperPort\pptd40nt.exe
284 C:\Windows\System32\svchost.exe
4116 C:\Program Files (x86)\Brother\Brmfcmon\BrMfcWnd.exe
4208 C:\Program Files (x86)\Java\jre6\bin\jusched.exe
4216 C:\Windows\System32\svchost.exe
4264 C:\Program Files (x86)\Hewlett-Packard\HP HotKey Support\QLBController.exe
4360 C:\Program Files (x86)\Ask.com\Updater\Updater.exe
4408 C:\Program Files (x86)\PDF24\pdf24.exe
5024 C:\Program Files (x86)\Brother\ControlCenter3\BrccMCtl.exe
5052 C:\Program Files\Motorola\Bluetooth\audiosrv.exe
4012 C:\Program Files (x86)\Brother\Brmfcmon\BrMfcMon.exe
4908 C:\Program Files\Motorola\Bluetooth\btplayerctrl.exe
4740 C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe
3912 C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
3780 C:\Windows\System32\svchost.exe
4540 C:\Program Files\Windows Media Player\wmpnetwk.exe
5560 C:\Windows\System32\wuauclt.exe
4864 C:\Windows\System32\audiodg.exe
6060 C:\Windows\System32\sppsvc.exe
3776 WUDFHost.exe
3236 C:\Windows\System32\SearchProtocolHost.exe
4804 C:\Windows\System32\SearchFilterHost.exe
5692 C:\Users\***\Desktop\MBRCheck.exe
5780 C:\Windows\System32\conhost.exe

\\.\C: --> \\.\PhysicalDrive0 at offset 0x00000000`12d00000 (NTFS)
\\.\F: --> \\.\PhysicalDrive0 at offset 0x00000073`f0a00000 (FAT32)

PhysicalDrive0 Model Number: HitachiHTS545050B9A300, Rev: PB4OCA1G

Size Device Name MBR Status
--------------------------------------------
465 GB \\.\PhysicalDrive0 MBR Code Faked!
SHA1: 3C6D6087F5B8355C972741641140563E26F33E87


Found non-standard or infected MBR.
Enter 'Y' and hit ENTER for more options, or 'N' to exit:
Options:
[1] Dump the MBR of a physical disk to file.
[2] Restore the MBR of a physical disk with a standard boot code.
[3] Exit.

Enter your choice:

Done!