NU.nl Sinowal gevonden door Avast BDS/Sinowal

Gesloten onderwerpen. Stuur een privé bericht naar een Moderator of de Administrator om het topic weer te laten openen.
Gesloten
Gebruikersavatar
Kemi
PC Web Plus - Member
PC Web Plus - Member
Berichten: 31
Lid geworden op: 26 aug 2010 17:03

#1

15 mar 2012 15:40

Ik heb dus volgens Avast dat sinowal virus op mijn PC gekregen door NU.nl.
Wat moet ik nu doen?
Alavst bedankt in ieder geval.
Gebruikersavatar
Maxstar
Administrator
Administrator
Berichten: 41942
Lid geworden op: 27 sep 2008 10:18
Kennisniveau: (3) Expert
OS: Windows 10
AV: Emsisoft Anti-Malware
Gegeven likes: 4
Ontvangen likes: 6
Contacteer:

#2

15 mar 2012 15:49

Hoi,

1. Download TDSSKiller en plaats het op je bureaublad.
  • Pak de bestanden in tdsskiller.zip uit.
  • Open de map tdsskiller en dubbelklik op TDSSKiller.exe om de tool te starten.
  • Let op!!! Windows Vista & 7 gebruikers dienen TDSSkiller als administrator uit te voeren "Rechtermuisknop uitvoeren als",
  • Als er door TDSSkiller een update wordt gevonden klikt u op de knop "Load update"
    Afbeelding
  • Een nieuwe versie van TDSSkiller zal nu gedownload worden en sla deze op het bureaublad op.
  • Start nu TDSSkiller opnieuw.
  • Klik op "Change parameters" en zorg dat de onderstaande opties allemaal aangevinkt zijn.
    Afbeelding
  • Klik op de knop "Start Scan" en volg de instructies.
    • Gebruik nooit de "Delete" optie bij een "Fail signature" melding.
  • Wanneer de scan klaar is klik je op de knop "Report".
  • Selecteer de inhoud (log) en plaats deze in uw volgende bericht.
Wanneer er een herstart nodig was, vind je de logfile in C:\TDSSKiller.[Version]_[Date]_[Time]_log.txt


2. Download aswMBR.exe naar het bureaublad.
  • Dubbelklik op "aswMBR.exe" om de tool te starten.
  • Klik bij het volgende venster op "Nee"
    Afbeelding
  • Klik op de knop "scan"
  • Afbeelding
  • Als de scan gereed is klikt u op de knop "save log"
  • Afbeelding
  • Plaats dit log bestand in het volgende bericht.
Plaats het logje van TDSSKiller en aswMBR in het volgende bericht.
Gebruikersavatar
Maxstar
Administrator
Administrator
Berichten: 41942
Lid geworden op: 27 sep 2008 10:18
Kennisniveau: (3) Expert
OS: Windows 10
AV: Emsisoft Anti-Malware
Gegeven likes: 4
Ontvangen likes: 6
Contacteer:

#3

18 mar 2012 10:34

Hoi,

Wil het lukken met de bovenstaande instructies?
Gebruikersavatar
Kemi
PC Web Plus - Member
PC Web Plus - Member
Berichten: 31
Lid geworden op: 26 aug 2010 17:03

#4

18 mar 2012 11:22

Sorry voor de late reactie maar ik had hier nog geen tijd voor gehad.
Hierbij de logjes en alvast bedankt voor uw tijd en moeite.

11:17:31.0266 3396 TDSS rootkit removing tool 2.7.20.0 Mar 9 2012 17:10:43
11:17:31.0335 3396 ============================================================
11:17:31.0335 3396 Current date / time: 2012/03/18 11:17:31.0335
11:17:31.0335 3396 SystemInfo:
11:17:31.0335 3396
11:17:31.0335 3396 OS Version: 6.1.7601 ServicePack: 1.0
11:17:31.0335 3396 Product type: Workstation
11:17:31.0335 3396 ComputerName: KEMI-PC
11:17:31.0335 3396 UserName: Kemi
11:17:31.0335 3396 Windows directory: C:\Windows
11:17:31.0335 3396 System windows directory: C:\Windows
11:17:31.0335 3396 Processor architecture: Intel x86
11:17:31.0335 3396 Number of processors: 2
11:17:31.0335 3396 Page size: 0x1000
11:17:31.0335 3396 Boot type: Normal boot
11:17:31.0335 3396 ============================================================
11:17:33.0582 3396 Drive \Device\Harddisk0\DR0 - Size: 0x1315740000 (76.34 Gb), SectorSize: 0x200, Cylinders: 0x26EC, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
11:17:33.0583 3396 \Device\Harddisk0\DR0:
11:17:33.0583 3396 MBR used
11:17:33.0583 3396 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
11:17:33.0583 3396 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x9878800
11:17:33.0639 3396 Initialize success
11:17:33.0639 3396 ============================================================
11:17:37.0673 3460 ============================================================
11:17:37.0673 3460 Scan started
11:17:37.0673 3460 Mode: Manual; SigCheck; TDLFS;
11:17:37.0673 3460 ============================================================
11:17:39.0400 3460 1394ohci (1b133875b8aa8ac48969bd3458afe9f5) C:\Windows\system32\drivers\1394ohci.sys
11:17:39.0527 3460 1394ohci - ok
11:17:40.0330 3460 ACPI (cea80c80bed809aa0da6febc04733349) C:\Windows\system32\drivers\ACPI.sys
11:17:40.0355 3460 ACPI - ok
11:17:41.0283 3460 AcpiPmi (1efbc664abff416d1d07db115dcb264f) C:\Windows\system32\drivers\acpipmi.sys
11:17:41.0346 3460 AcpiPmi - ok
11:17:42.0443 3460 adp94xx (21e785ebd7dc90a06391141aac7892fb) C:\Windows\system32\DRIVERS\adp94xx.sys
11:17:42.0484 3460 adp94xx - ok
11:17:43.0343 3460 adpahci (0c676bc278d5b59ff5abd57bbe9123f2) C:\Windows\system32\DRIVERS\adpahci.sys
11:17:43.0480 3460 adpahci - ok
11:17:44.0430 3460 adpu320 (7c7b5ee4b7b822ec85321fe23a27db33) C:\Windows\system32\DRIVERS\adpu320.sys
11:17:44.0443 3460 adpu320 - ok
11:17:45.0432 3460 AFD (9ebbba55060f786f0fcaa3893bfa2806) C:\Windows\system32\drivers\afd.sys
11:17:45.0484 3460 AFD - ok
11:17:46.0155 3460 agp440 (507812c3054c21cef746b6ee3d04dd6e) C:\Windows\system32\drivers\agp440.sys
11:17:46.0171 3460 agp440 - ok
11:17:46.0692 3460 aic78xx (8b30250d573a8f6b4bd23195160d8707) C:\Windows\system32\DRIVERS\djsvs.sys
11:17:46.0707 3460 aic78xx - ok
11:17:47.0372 3460 aliide (0d40bcf52ea90fc7df2aeab6503dea44) C:\Windows\system32\drivers\aliide.sys
11:17:47.0386 3460 aliide - ok
11:17:47.0931 3460 amdagp (3c6600a0696e90a463771c7422e23ab5) C:\Windows\system32\drivers\amdagp.sys
11:17:47.0942 3460 amdagp - ok
11:17:48.0510 3460 amdide (cd5914170297126b6266860198d1d4f0) C:\Windows\system32\drivers\amdide.sys
11:17:48.0530 3460 amdide - ok
11:17:49.0216 3460 AmdK8 (00dda200d71bac534bf56a9db5dfd666) C:\Windows\system32\DRIVERS\amdk8.sys
11:17:49.0281 3460 AmdK8 - ok
11:17:49.0826 3460 AmdPPM (3cbf30f5370fda40dd3e87df38ea53b6) C:\Windows\system32\DRIVERS\amdppm.sys
11:17:49.0860 3460 AmdPPM - ok
11:17:50.0446 3460 amdsata (e7f4d42d8076ec60e21715cd11743a0d) C:\Windows\system32\drivers\amdsata.sys
11:17:50.0457 3460 amdsata - ok
11:17:51.0042 3460 amdsbs (ea43af0c423ff267355f74e7a53bdaba) C:\Windows\system32\DRIVERS\amdsbs.sys
11:17:51.0076 3460 amdsbs - ok
11:17:51.0459 3460 amdxata (146459d2b08bfdcbfa856d9947043c81) C:\Windows\system32\drivers\amdxata.sys
11:17:51.0468 3460 amdxata - ok
11:17:52.0011 3460 AppID (aea177f783e20150ace5383ee368da19) C:\Windows\system32\drivers\appid.sys
11:17:52.0164 3460 AppID - ok
11:17:52.0631 3460 arc (2932004f49677bd84dbc72edb754ffb3) C:\Windows\system32\DRIVERS\arc.sys
11:17:52.0652 3460 arc - ok
11:17:53.0092 3460 arcsas (5d6f36c46fd283ae1b57bd2e9feb0bc7) C:\Windows\system32\DRIVERS\arcsas.sys
11:17:53.0103 3460 arcsas - ok
11:17:53.0517 3460 AsyncMac (add2ade1c2b285ab8378d2daaf991481) C:\Windows\system32\DRIVERS\asyncmac.sys
11:17:53.0596 3460 AsyncMac - ok
11:17:54.0062 3460 atapi (338c86357871c167a96ab976519bf59e) C:\Windows\system32\drivers\atapi.sys
11:17:54.0071 3460 atapi - ok
11:17:54.0660 3460 b06bdrv (1a231abec60fd316ec54c66715543cec) C:\Windows\system32\DRIVERS\bxvbdx.sys
11:17:54.0708 3460 b06bdrv - ok
11:17:55.0298 3460 b57nd60x (bd8869eb9cde6bbe4508d869929869ee) C:\Windows\system32\DRIVERS\b57nd60x.sys
11:17:55.0338 3460 b57nd60x - ok
11:17:55.0857 3460 Beep (505506526a9d467307b3c393dedaf858) C:\Windows\system32\drivers\Beep.sys
11:17:55.0918 3460 Beep - ok
11:17:56.0476 3460 blbdrive (2287078ed48fcfc477b05b20cf38f36f) C:\Windows\system32\DRIVERS\blbdrive.sys
11:17:56.0507 3460 blbdrive - ok
11:17:57.0117 3460 bowser (8f2da3028d5fcbd1a060a3de64cd6506) C:\Windows\system32\DRIVERS\bowser.sys
11:17:57.0152 3460 bowser - ok
11:17:57.0802 3460 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\DRIVERS\BrFiltLo.sys
11:17:57.0883 3460 BrFiltLo - ok
11:17:58.0418 3460 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\DRIVERS\BrFiltUp.sys
11:17:58.0457 3460 BrFiltUp - ok
11:17:59.0045 3460 Brserid (845b8ce732e67f3b4133164868c666ea) C:\Windows\System32\Drivers\Brserid.sys
11:17:59.0098 3460 Brserid - ok
11:17:59.0625 3460 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\System32\Drivers\BrSerWdm.sys
11:17:59.0673 3460 BrSerWdm - ok
11:18:00.0299 3460 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\System32\Drivers\BrUsbMdm.sys
11:18:00.0350 3460 BrUsbMdm - ok
11:18:00.0841 3460 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\System32\Drivers\BrUsbSer.sys
11:18:00.0895 3460 BrUsbSer - ok
11:18:01.0443 3460 BTHMODEM (ed3df7c56ce0084eb2034432fc56565a) C:\Windows\system32\DRIVERS\bthmodem.sys
11:18:01.0484 3460 BTHMODEM - ok
11:18:02.0126 3460 cdfs (77ea11b065e0a8ab902d78145ca51e10) C:\Windows\system32\DRIVERS\cdfs.sys
11:18:02.0188 3460 cdfs - ok
11:18:02.0709 3460 cdrom (be167ed0fdb9c1fa1133953c18d5a6c9) C:\Windows\system32\drivers\cdrom.sys
11:18:02.0750 3460 cdrom - ok
11:18:03.0250 3460 circlass (3fe3fe94a34df6fb06e6418d0f6a0060) C:\Windows\system32\DRIVERS\circlass.sys
11:18:03.0294 3460 circlass - ok
11:18:03.0626 3460 CLFS (635181e0e9bbf16871bf5380d71db02d) C:\Windows\system32\CLFS.sys
11:18:03.0661 3460 CLFS - ok
11:18:04.0235 3460 CmBatt (dea805815e587dad1dd2c502220b5616) C:\Windows\system32\DRIVERS\CmBatt.sys
11:18:04.0267 3460 CmBatt - ok
11:18:04.0725 3460 cmdide (c537b1db64d495b9b4717b4d6d9edbf2) C:\Windows\system32\drivers\cmdide.sys
11:18:04.0809 3460 cmdide - ok
11:18:05.0422 3460 CNG (6427525d76f61d0c519b008d3680e8e7) C:\Windows\system32\Drivers\cng.sys
11:18:05.0483 3460 CNG - ok
11:18:06.0006 3460 Compbatt (a6023d3823c37043986713f118a89bee) C:\Windows\system32\DRIVERS\compbatt.sys
11:18:06.0038 3460 Compbatt - ok
11:18:06.0660 3460 CompositeBus (cbe8c58a8579cfe5fccf809e6f114e89) C:\Windows\system32\drivers\CompositeBus.sys
11:18:06.0708 3460 CompositeBus - ok
11:18:07.0376 3460 crcdisk (2c4ebcfc84a9b44f209dff6c6e6c61d1) C:\Windows\system32\DRIVERS\crcdisk.sys
11:18:07.0405 3460 crcdisk - ok
11:18:07.0981 3460 CSC (3c2177a897b4ca2788c6fb0c3fd81d4b) C:\Windows\system32\drivers\csc.sys
11:18:08.0041 3460 CSC - ok
11:18:08.0470 3460 DfsC (f024449c97ec1e464aaffda18593db88) C:\Windows\system32\Drivers\dfsc.sys
11:18:08.0542 3460 DfsC - ok
11:18:09.0092 3460 discache (1a050b0274bfb3890703d490f330c0da) C:\Windows\system32\drivers\discache.sys
11:18:09.0148 3460 discache - ok
11:18:09.0563 3460 Disk (565003f326f99802e68ca78f2a68e9ff) C:\Windows\system32\DRIVERS\disk.sys
11:18:09.0581 3460 Disk - ok
11:18:09.0983 3460 drmkaud (b918e7c5f9bf77202f89e1a9539f2eb4) C:\Windows\system32\drivers\drmkaud.sys
11:18:10.0022 3460 drmkaud - ok
11:18:10.0671 3460 DXGKrnl (23f5d28378a160352ba8f817bd8c71cb) C:\Windows\System32\drivers\dxgkrnl.sys
11:18:10.0704 3460 DXGKrnl - ok
11:18:11.0428 3460 ebdrv (024e1b5cac09731e4d868e64dbfb4ab0) C:\Windows\system32\DRIVERS\evbdx.sys
11:18:11.0585 3460 ebdrv - ok
11:18:12.0118 3460 elxstor (0ed67910c8c326796faa00b2bf6d9d3c) C:\Windows\system32\DRIVERS\elxstor.sys
11:18:12.0172 3460 elxstor - ok
11:18:12.0870 3460 ErrDev (8fc3208352dd3912c94367a206ab3f11) C:\Windows\system32\drivers\errdev.sys
11:18:12.0943 3460 ErrDev - ok
11:18:14.0029 3460 exfat (2dc9108d74081149cc8b651d3a26207f) C:\Windows\system32\drivers\exfat.sys
11:18:14.0098 3460 exfat - ok
11:18:14.0667 3460 fastfat (7e0ab74553476622fb6ae36f73d97d35) C:\Windows\system32\drivers\fastfat.sys
11:18:14.0739 3460 fastfat - ok
11:18:15.0352 3460 fdc (e817a017f82df2a1f8cfdbda29388b29) C:\Windows\system32\DRIVERS\fdc.sys
11:18:15.0391 3460 fdc - ok
11:18:15.0946 3460 FileInfo (6cf00369c97f3cf563be99be983d13d8) C:\Windows\system32\drivers\fileinfo.sys
11:18:15.0964 3460 FileInfo - ok
11:18:16.0430 3460 Filetrace (42c51dc94c91da21cb9196eb64c45db9) C:\Windows\system32\drivers\filetrace.sys
11:18:16.0485 3460 Filetrace - ok
11:18:17.0347 3460 flpydisk (87907aa70cb3c56600f1c2fb8841579b) C:\Windows\system32\DRIVERS\flpydisk.sys
11:18:17.0373 3460 flpydisk - ok
11:18:17.0677 3460 FltMgr (7520ec808e0c35e0ee6f841294316653) C:\Windows\system32\drivers\fltmgr.sys
11:18:17.0700 3460 FltMgr - ok
11:18:18.0031 3460 FsDepends (1a16b57943853e598cff37fe2b8cbf1d) C:\Windows\system32\drivers\FsDepends.sys
11:18:18.0048 3460 FsDepends - ok
11:18:18.0481 3460 Fs_Rec (a574b4360e438977038aae4bf60d79a2) C:\Windows\system32\drivers\Fs_Rec.sys
11:18:18.0490 3460 Fs_Rec - ok
11:18:19.0122 3460 fvevol (8a73e79089b282100b9393b644cb853b) C:\Windows\system32\DRIVERS\fvevol.sys
11:18:19.0148 3460 fvevol - ok
11:18:19.0435 3460 gagp30kx (65ee0c7a58b65e74ae05637418153938) C:\Windows\system32\DRIVERS\gagp30kx.sys
11:18:19.0454 3460 gagp30kx - ok
11:18:19.0727 3460 hcw85cir (c44e3c2bab6837db337ddee7544736db) C:\Windows\system32\drivers\hcw85cir.sys
11:18:19.0768 3460 hcw85cir - ok
11:18:20.0078 3460 HdAudAddService (a5ef29d5315111c80a5c1abad14c8972) C:\Windows\system32\drivers\HdAudio.sys
11:18:20.0123 3460 HdAudAddService - ok
11:18:20.0412 3460 HDAudBus (9036377b8a6c15dc2eec53e489d159b5) C:\Windows\system32\drivers\HDAudBus.sys
11:18:20.0457 3460 HDAudBus - ok
11:18:21.0281 3460 HidBatt (1d58a7f3e11a9731d0eaaaa8405acc36) C:\Windows\system32\DRIVERS\HidBatt.sys
11:18:21.0324 3460 HidBatt - ok
11:18:22.0019 3460 HidBth (89448f40e6df260c206a193a4683ba78) C:\Windows\system32\DRIVERS\hidbth.sys
11:18:22.0067 3460 HidBth - ok
11:18:22.0346 3460 HidIr (cf50b4cf4a4f229b9f3c08351f99ca5e) C:\Windows\system32\DRIVERS\hidir.sys
11:18:22.0380 3460 HidIr - ok
11:18:22.0692 3460 HidUsb (10c19f8290891af023eaec0832e1eb4d) C:\Windows\system32\drivers\hidusb.sys
11:18:22.0721 3460 HidUsb - ok
11:18:23.0017 3460 HpSAMD (295fdc419039090eb8b49ffdbb374549) C:\Windows\system32\drivers\HpSAMD.sys
11:18:23.0035 3460 HpSAMD - ok
11:18:23.0336 3460 HTTP (871917b07a141bff43d76d8844d48106) C:\Windows\system32\drivers\HTTP.sys
11:18:23.0410 3460 HTTP - ok
11:18:23.0692 3460 hwpolicy (0c4e035c7f105f1299258c90886c64c5) C:\Windows\system32\drivers\hwpolicy.sys
11:18:23.0708 3460 hwpolicy - ok
11:18:24.0008 3460 i8042prt (f151f0bdc47f4a28b1b20a0818ea36d6) C:\Windows\system32\drivers\i8042prt.sys
11:18:24.0057 3460 i8042prt - ok
11:18:24.0362 3460 iaStorV (a3cae5d281db4cff7cff8233507ee5ad) C:\Windows\system32\drivers\iaStorV.sys
11:18:24.0416 3460 iaStorV - ok
11:18:24.0834 3460 igfx (9467514ea189475a6e7fdc5d7bde9d3f) C:\Windows\system32\DRIVERS\igdkmd32.sys
11:18:25.0020 3460 igfx - ok
11:18:25.0291 3460 iirsp (4173ff5708f3236cf25195fecd742915) C:\Windows\system32\DRIVERS\iirsp.sys
11:18:25.0309 3460 iirsp - ok
11:18:25.0610 3460 intelide (a0f12f2c9ba6c72f3987ce780e77c130) C:\Windows\system32\drivers\intelide.sys
11:18:25.0626 3460 intelide - ok
11:18:25.0911 3460 intelppm (3b514d27bfc4accb4037bc6685f766e0) C:\Windows\system32\DRIVERS\intelppm.sys
11:18:25.0947 3460 intelppm - ok
11:18:26.0228 3460 IpFilterDriver (709d1761d3b19a932ff0238ea6d50200) C:\Windows\system32\DRIVERS\ipfltdrv.sys
11:18:26.0282 3460 IpFilterDriver - ok
11:18:26.0558 3460 IPMIDRV (4bd7134618c1d2a27466a099062547bf) C:\Windows\system32\drivers\IPMIDrv.sys
11:18:26.0585 3460 IPMIDRV - ok
11:18:26.0850 3460 IPNAT (a5fa468d67abcdaa36264e463a7bb0cd) C:\Windows\system32\drivers\ipnat.sys
11:18:26.0906 3460 IPNAT - ok
11:18:27.0184 3460 IRENUM (42996cff20a3084a56017b7902307e9f) C:\Windows\system32\drivers\irenum.sys
11:18:27.0222 3460 IRENUM - ok
11:18:27.0500 3460 isapnp (1f32bb6b38f62f7df1a7ab7292638a35) C:\Windows\system32\drivers\isapnp.sys
11:18:27.0519 3460 isapnp - ok
11:18:27.0791 3460 iScsiPrt (cb7a9abb12b8415bce5d74994c7ba3ae) C:\Windows\system32\drivers\msiscsi.sys
11:18:27.0815 3460 iScsiPrt - ok
11:18:28.0108 3460 kbdclass (adef52ca1aeae82b50df86b56413107e) C:\Windows\system32\drivers\kbdclass.sys
11:18:28.0125 3460 kbdclass - ok
11:18:28.0403 3460 kbdhid (9e3ced91863e6ee98c24794d05e27a71) C:\Windows\system32\drivers\kbdhid.sys
11:18:28.0437 3460 kbdhid - ok
11:18:28.0710 3460 KSecDD (f4647bb23db9038a7536cf6b68f4207f) C:\Windows\system32\Drivers\ksecdd.sys
11:18:28.0728 3460 KSecDD - ok
11:18:29.0005 3460 KSecPkg (e73cae53bbb72ba26918492c6b4c229d) C:\Windows\system32\Drivers\ksecpkg.sys
11:18:29.0016 3460 KSecPkg - ok
11:18:29.0329 3460 lltdio (f7611ec07349979da9b0ae1f18ccc7a6) C:\Windows\system32\DRIVERS\lltdio.sys
11:18:29.0396 3460 lltdio - ok
11:18:29.0699 3460 LSI_FC (eb119a53ccf2acc000ac71b065b78fef) C:\Windows\system32\DRIVERS\lsi_fc.sys
11:18:29.0718 3460 LSI_FC - ok
11:18:29.0993 3460 LSI_SAS (8ade1c877256a22e49b75d1cc9161f9c) C:\Windows\system32\DRIVERS\lsi_sas.sys
11:18:30.0012 3460 LSI_SAS - ok
11:18:30.0304 3460 LSI_SAS2 (dc9dc3d3daa0e276fd2ec262e38b11e9) C:\Windows\system32\DRIVERS\lsi_sas2.sys
11:18:30.0322 3460 LSI_SAS2 - ok
11:18:30.0590 3460 LSI_SCSI (0a036c7d7cab643a7f07135ac47e0524) C:\Windows\system32\DRIVERS\lsi_scsi.sys
11:18:30.0609 3460 LSI_SCSI - ok
11:18:30.0891 3460 luafv (6703e366cc18d3b6e534f5cf7df39cee) C:\Windows\system32\drivers\luafv.sys
11:18:30.0949 3460 luafv - ok
11:18:31.0226 3460 megasas (0fff5b045293002ab38eb1fd1fc2fb74) C:\Windows\system32\DRIVERS\megasas.sys
11:18:31.0245 3460 megasas - ok
11:18:31.0520 3460 MegaSR (dcbab2920c75f390caf1d29f675d03d6) C:\Windows\system32\DRIVERS\MegaSR.sys
11:18:31.0543 3460 MegaSR - ok
11:18:31.0819 3460 Modem (f001861e5700ee84e2d4e52c712f4964) C:\Windows\system32\drivers\modem.sys
11:18:31.0883 3460 Modem - ok
11:18:32.0162 3460 monitor (79d10964de86b292320e9dfe02282a23) C:\Windows\system32\DRIVERS\monitor.sys
11:18:32.0194 3460 monitor - ok
11:18:32.0468 3460 mouclass (fb18cc1d4c2e716b6b903b0ac0cc0609) C:\Windows\system32\drivers\mouclass.sys
11:18:32.0485 3460 mouclass - ok
11:18:32.0782 3460 mouhid (2c388d2cd01c9042596cf3c8f3c7b24d) C:\Windows\system32\DRIVERS\mouhid.sys
11:18:32.0811 3460 mouhid - ok
11:18:33.0093 3460 mountmgr (fc8771f45ecccfd89684e38842539b9b) C:\Windows\system32\drivers\mountmgr.sys
11:18:33.0112 3460 mountmgr - ok
11:18:33.0382 3460 mpio (2d699fb6e89ce0d8da14ecc03b3edfe0) C:\Windows\system32\drivers\mpio.sys
11:18:33.0403 3460 mpio - ok
11:18:33.0667 3460 mpsdrv (ad2723a7b53dd1aacae6ad8c0bfbf4d0) C:\Windows\system32\drivers\mpsdrv.sys
11:18:33.0714 3460 mpsdrv - ok
11:18:33.0996 3460 MRxDAV (ceb46ab7c01c9f825f8cc6babc18166a) C:\Windows\system32\drivers\mrxdav.sys
11:18:34.0035 3460 MRxDAV - ok
11:18:34.0342 3460 mrxsmb (5d16c921e3671636c0eba3bbaac5fd25) C:\Windows\system32\DRIVERS\mrxsmb.sys
11:18:34.0402 3460 mrxsmb - ok
11:18:34.0688 3460 mrxsmb10 (6d17a4791aca19328c685d256349fefc) C:\Windows\system32\DRIVERS\mrxsmb10.sys
11:18:34.0712 3460 mrxsmb10 - ok
11:18:34.0988 3460 mrxsmb20 (b81f204d146000be76651a50670a5e9e) C:\Windows\system32\DRIVERS\mrxsmb20.sys
11:18:35.0018 3460 mrxsmb20 - ok
11:18:35.0300 3460 msahci (012c5f4e9349e711e11e0f19a8589f0a) C:\Windows\system32\drivers\msahci.sys
11:18:35.0318 3460 msahci - ok
11:18:35.0606 3460 msdsm (55055f8ad8be27a64c831322a780a228) C:\Windows\system32\drivers\msdsm.sys
11:18:35.0626 3460 msdsm - ok
11:18:35.0927 3460 Msfs (daefb28e3af5a76abcc2c3078c07327f) C:\Windows\system32\drivers\Msfs.sys
11:18:35.0985 3460 Msfs - ok
11:18:36.0260 3460 mshidkmdf (3e1e5767043c5af9367f0056295e9f84) C:\Windows\System32\drivers\mshidkmdf.sys
11:18:36.0297 3460 mshidkmdf - ok
11:18:36.0557 3460 msisadrv (0a4e5757ae09fa9622e3158cc1aef114) C:\Windows\system32\drivers\msisadrv.sys
11:18:36.0573 3460 msisadrv - ok
11:18:36.0867 3460 MSKSSRV (8c0860d6366aaffb6c5bb9df9448e631) C:\Windows\system32\drivers\MSKSSRV.sys
11:18:36.0916 3460 MSKSSRV - ok
11:18:37.0200 3460 MSPCLOCK (3ea8b949f963562cedbb549eac0c11ce) C:\Windows\system32\drivers\MSPCLOCK.sys
11:18:37.0250 3460 MSPCLOCK - ok
11:18:37.0534 3460 MSPQM (f456e973590d663b1073e9c463b40932) C:\Windows\system32\drivers\MSPQM.sys
11:18:37.0571 3460 MSPQM - ok
11:18:37.0847 3460 MsRPC (0e008fc4819d238c51d7c93e7b41e560) C:\Windows\system32\drivers\MsRPC.sys
11:18:37.0868 3460 MsRPC - ok
11:18:38.0141 3460 mssmbios (fc6b9ff600cc585ea38b12589bd4e246) C:\Windows\system32\drivers\mssmbios.sys
11:18:38.0159 3460 mssmbios - ok
11:18:38.0441 3460 MSTEE (b42c6b921f61a6e55159b8be6cd54a36) C:\Windows\system32\drivers\MSTEE.sys
11:18:38.0493 3460 MSTEE - ok
11:18:38.0767 3460 MTConfig (33599130f44e1f34631cea241de8ac84) C:\Windows\system32\DRIVERS\MTConfig.sys
11:18:38.0794 3460 MTConfig - ok
11:18:39.0068 3460 Mup (159fad02f64e6381758c990f753bcc80) C:\Windows\system32\Drivers\mup.sys
11:18:39.0084 3460 Mup - ok
11:18:39.0371 3460 NativeWifiP (26384429fcd85d83746f63e798ab1480) C:\Windows\system32\DRIVERS\nwifi.sys
11:18:39.0417 3460 NativeWifiP - ok
11:18:39.0723 3460 NDIS (e7c54812a2aaf43316eb6930c1ffa108) C:\Windows\system32\drivers\ndis.sys
11:18:39.0773 3460 NDIS - ok
11:18:40.0060 3460 NdisCap (0e1787aa6c9191d3d319e8bafe86f80c) C:\Windows\system32\DRIVERS\ndiscap.sys
11:18:40.0112 3460 NdisCap - ok
11:18:40.0393 3460 NdisTapi (e4a8aec125a2e43a9e32afeea7c9c888) C:\Windows\system32\DRIVERS\ndistapi.sys
11:18:40.0435 3460 NdisTapi - ok
11:18:40.0713 3460 Ndisuio (d8a65dafb3eb41cbb622745676fcd072) C:\Windows\system32\DRIVERS\ndisuio.sys
11:18:40.0762 3460 Ndisuio - ok
11:18:41.0041 3460 NdisWan (38fbe267e7e6983311179230facb1017) C:\Windows\system32\DRIVERS\ndiswan.sys
11:18:41.0095 3460 NdisWan - ok
11:18:41.0374 3460 NDProxy (a4bdc541e69674fbff1a8ff00be913f2) C:\Windows\system32\drivers\NDProxy.sys
11:18:41.0425 3460 NDProxy - ok
11:18:41.0702 3460 NetBIOS (80b275b1ce3b0e79909db7b39af74d51) C:\Windows\system32\DRIVERS\netbios.sys
11:18:41.0746 3460 NetBIOS - ok
11:18:42.0029 3460 NetBT (280122ddcf04b378edd1ad54d71c1e54) C:\Windows\system32\DRIVERS\netbt.sys
11:18:42.0074 3460 NetBT - ok
11:18:42.0367 3460 nfrd960 (1d85c4b390b0ee09c7a46b91efb2c097) C:\Windows\system32\DRIVERS\nfrd960.sys
11:18:42.0385 3460 nfrd960 - ok
11:18:42.0660 3460 Npfs (1db262a9f8c087e8153d89bef3d2235f) C:\Windows\system32\drivers\Npfs.sys
11:18:42.0709 3460 Npfs - ok
11:18:42.0985 3460 nsiproxy (e9a0a4d07e53d8fea2bb8387a3293c58) C:\Windows\system32\drivers\nsiproxy.sys
11:18:43.0041 3460 nsiproxy - ok
11:18:43.0351 3460 Ntfs (33c3093d09017cfe2e219f2472bff6eb) C:\Windows\system32\drivers\Ntfs.sys
11:18:43.0419 3460 Ntfs - ok
11:18:43.0710 3460 Null (f9756a98d69098dca8945d62858a812c) C:\Windows\system32\drivers\Null.sys
11:18:43.0765 3460 Null - ok
11:18:44.0372 3460 nvraid (af2eec9580c1d32fb7eaf105d9784061) C:\Windows\system32\drivers\nvraid.sys
11:18:44.0419 3460 nvraid - ok
11:18:45.0025 3460 nvstor (9283c58ebaa2618f93482eb5dabcec82) C:\Windows\system32\drivers\nvstor.sys
11:18:45.0047 3460 nvstor - ok
11:18:45.0646 3460 nv_agp (5a0983915f02bae73267cc2a041f717d) C:\Windows\system32\drivers\nv_agp.sys
11:18:45.0666 3460 nv_agp - ok
11:18:46.0103 3460 ohci1394 (08a70a1f2cdde9bb49b885cb817a66eb) C:\Windows\system32\drivers\ohci1394.sys
11:18:46.0151 3460 ohci1394 - ok
11:18:46.0778 3460 Parport (2ea877ed5dd9713c5ac74e8ea7348d14) C:\Windows\system32\DRIVERS\parport.sys
11:18:46.0795 3460 Parport - ok
11:18:47.0373 3460 partmgr (bf8f6af06da75b336f07e23aef97d93b) C:\Windows\system32\drivers\partmgr.sys
11:18:47.0389 3460 partmgr - ok
11:18:48.0014 3460 Parvdm (eb0a59f29c19b86479d36b35983daadc) C:\Windows\system32\DRIVERS\parvdm.sys
11:18:48.0053 3460 Parvdm - ok
11:18:48.0759 3460 pci (673e55c3498eb970088e812ea820aa8f) C:\Windows\system32\drivers\pci.sys
11:18:48.0800 3460 pci - ok
11:18:49.0420 3460 pciide (afe86f419014db4e5593f69ffe26ce0a) C:\Windows\system32\drivers\pciide.sys
11:18:49.0437 3460 pciide - ok
11:18:50.0210 3460 pcmcia (f396431b31693e71e8a80687ef523506) C:\Windows\system32\DRIVERS\pcmcia.sys
11:18:50.0234 3460 pcmcia - ok
11:18:51.0177 3460 pcw (250f6b43d2b613172035c6747aeeb19f) C:\Windows\system32\drivers\pcw.sys
11:18:51.0194 3460 pcw - ok
11:18:52.0142 3460 PEAUTH (9e0104ba49f4e6973749a02bf41344ed) C:\Windows\system32\drivers\peauth.sys
11:18:52.0239 3460 PEAUTH - ok
11:18:52.0773 3460 PptpMiniport (631e3e205ad6d86f2aed6a4a8e69f2db) C:\Windows\system32\DRIVERS\raspptp.sys
11:18:52.0819 3460 PptpMiniport - ok
11:18:53.0681 3460 Processor (85b1e3a0c7585bc4aae6899ec6fcf011) C:\Windows\system32\DRIVERS\processr.sys
11:18:53.0726 3460 Processor - ok
11:18:54.0423 3460 Psched (6270ccae2a86de6d146529fe55b3246a) C:\Windows\system32\DRIVERS\pacer.sys
11:18:54.0495 3460 Psched - ok
11:18:55.0338 3460 ql2300 (ab95ecf1f6659a60ddc166d8315b0751) C:\Windows\system32\DRIVERS\ql2300.sys
11:18:55.0414 3460 ql2300 - ok
11:18:56.0082 3460 ql40xx (b4dd51dd25182244b86737dc51af2270) C:\Windows\system32\DRIVERS\ql40xx.sys
11:18:56.0108 3460 ql40xx - ok
11:18:56.0732 3460 QWAVEdrv (584078ca1b95ca72df2a27c336f9719d) C:\Windows\system32\drivers\qwavedrv.sys
11:18:56.0764 3460 QWAVEdrv - ok
11:18:57.0431 3460 RasAcd (30a81b53c766d0133bb86d234e5556ab) C:\Windows\system32\DRIVERS\rasacd.sys
11:18:57.0478 3460 RasAcd - ok
11:18:58.0213 3460 RasAgileVpn (57ec4aef73660166074d8f7f31c0d4fd) C:\Windows\system32\DRIVERS\AgileVpn.sys
11:18:58.0273 3460 RasAgileVpn - ok
11:18:58.0810 3460 Rasl2tp (d9f91eafec2815365cbe6d167e4e332a) C:\Windows\system32\DRIVERS\rasl2tp.sys
11:18:58.0887 3460 Rasl2tp - ok
11:18:59.0454 3460 RasPppoe (0fe8b15916307a6ac12bfb6a63e45507) C:\Windows\system32\DRIVERS\raspppoe.sys
11:18:59.0540 3460 RasPppoe - ok
11:19:00.0058 3460 RasSstp (44101f495a83ea6401d886e7fd70096b) C:\Windows\system32\DRIVERS\rassstp.sys
11:19:00.0118 3460 RasSstp - ok
11:19:00.0771 3460 rdbss (d528bc58a489409ba40334ebf96a311b) C:\Windows\system32\DRIVERS\rdbss.sys
11:19:00.0852 3460 rdbss - ok
11:19:01.0525 3460 rdpbus (0d8f05481cb76e70e1da06ee9f0da9df) C:\Windows\system32\DRIVERS\rdpbus.sys
11:19:01.0548 3460 rdpbus - ok
11:19:02.0291 3460 RDPCDD (23dae03f29d253ae74c44f99e515f9a1) C:\Windows\system32\DRIVERS\RDPCDD.sys
11:19:02.0352 3460 RDPCDD - ok
11:19:03.0046 3460 RDPDR (b973fcfc50dc1434e1970a146f7e3885) C:\Windows\system32\drivers\rdpdr.sys
11:19:03.0096 3460 RDPDR - ok
11:19:03.0803 3460 RDPENCDD (5a53ca1598dd4156d44196d200c94b8a) C:\Windows\system32\drivers\rdpencdd.sys
11:19:03.0863 3460 RDPENCDD - ok
11:19:04.0620 3460 RDPREFMP (44b0a53cd4f27d50ed461dae0c0b4e1f) C:\Windows\system32\drivers\rdprefmp.sys
11:19:04.0673 3460 RDPREFMP - ok
11:19:05.0300 3460 RdpVideoMiniport (68a0387f58e226deee23d9715955572a) C:\Windows\system32\drivers\rdpvideominiport.sys
11:19:05.0333 3460 RdpVideoMiniport - ok
11:19:05.0996 3460 RDPWD (288b06960d78428ff89e811632684e20) C:\Windows\system32\drivers\RDPWD.sys
11:19:06.0076 3460 RDPWD - ok
11:19:06.0729 3460 rdyboost (518395321dc96fe2c9f0e96ac743b656) C:\Windows\system32\drivers\rdyboost.sys
11:19:06.0742 3460 rdyboost - ok
11:19:07.0048 3460 rspndr (032b0d36ad92b582d869879f5af5b928) C:\Windows\system32\DRIVERS\rspndr.sys
11:19:07.0085 3460 rspndr - ok
11:19:07.0370 3460 RTL8167 (7dfd48e24479b68b258d8770121155a0) C:\Windows\system32\DRIVERS\Rt86win7.sys
11:19:07.0393 3460 RTL8167 - ok
11:19:07.0826 3460 s3cap (7fa7f2e249a5dcbb7970630e15e1f482) C:\Windows\system32\drivers\vms3cap.sys
11:19:07.0898 3460 s3cap - ok
11:19:08.0177 3460 sbp2port (05d860da1040f111503ac416ccef2bca) C:\Windows\system32\drivers\sbp2port.sys
11:19:08.0197 3460 sbp2port - ok
11:19:08.0474 3460 scfilter (0693b5ec673e34dc147e195779a4dcf6) C:\Windows\system32\DRIVERS\scfilter.sys
11:19:08.0513 3460 scfilter - ok
11:19:08.0807 3460 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
11:19:08.0853 3460 secdrv - ok
11:19:09.0158 3460 Serenum (9ad8b8b515e3df6acd4212ef465de2d1) C:\Windows\system32\DRIVERS\serenum.sys
11:19:09.0176 3460 Serenum - ok
11:19:09.0471 3460 Serial (5fb7fcea0490d821f26f39cc5ea3d1e2) C:\Windows\system32\DRIVERS\serial.sys
11:19:09.0500 3460 Serial - ok
11:19:09.0788 3460 sermouse (79bffb520327ff916a582dfea17aa813) C:\Windows\system32\DRIVERS\sermouse.sys
11:19:09.0834 3460 sermouse - ok
11:19:10.0191 3460 sffdisk (9f976e1eb233df46fce808d9dea3eb9c) C:\Windows\system32\drivers\sffdisk.sys
11:19:10.0233 3460 sffdisk - ok
11:19:10.0934 3460 sffp_mmc (932a68ee27833cfd57c1639d375f2731) C:\Windows\system32\drivers\sffp_mmc.sys
11:19:11.0052 3460 sffp_mmc - ok
11:19:11.0408 3460 sffp_sd (6d4ccaedc018f1cf52866bbbaa235982) C:\Windows\system32\drivers\sffp_sd.sys
11:19:11.0454 3460 sffp_sd - ok
11:19:11.0724 3460 sfloppy (db96666cc8312ebc45032f30b007a547) C:\Windows\system32\DRIVERS\sfloppy.sys
11:19:11.0758 3460 sfloppy - ok
11:19:12.0046 3460 sisagp (2565cac0dc9fe0371bdce60832582b2e) C:\Windows\system32\drivers\sisagp.sys
11:19:12.0064 3460 sisagp - ok
11:19:12.0342 3460 SiSRaid2 (a9f0486851becb6dda1d89d381e71055) C:\Windows\system32\DRIVERS\SiSRaid2.sys
11:19:12.0356 3460 SiSRaid2 - ok
11:19:12.0627 3460 SiSRaid4 (3727097b55738e2f554972c3be5bc1aa) C:\Windows\system32\DRIVERS\sisraid4.sys
11:19:12.0647 3460 SiSRaid4 - ok
11:19:12.0954 3460 Smb (3e21c083b8a01cb70ba1f09303010fce) C:\Windows\system32\DRIVERS\smb.sys
11:19:12.0991 3460 Smb - ok
11:19:13.0296 3460 spldr (95cf1ae7527fb70f7816563cbc09d942) C:\Windows\system32\drivers\spldr.sys
11:19:13.0312 3460 spldr - ok
11:19:13.0609 3460 srv (e4c2764065d66ea1d2d3ebc28fe99c46) C:\Windows\system32\DRIVERS\srv.sys
11:19:13.0657 3460 srv - ok
11:19:13.0936 3460 srv2 (03f0545bd8d4c77fa0ae1ceedfcc71ab) C:\Windows\system32\DRIVERS\srv2.sys
11:19:13.0979 3460 srv2 - ok
11:19:14.0253 3460 srvnet (be6bd660caa6f291ae06a718a4fa8abc) C:\Windows\system32\DRIVERS\srvnet.sys
11:19:14.0284 3460 srvnet - ok
11:19:14.0599 3460 stexstor (db32d325c192b801df274bfd12a7e72b) C:\Windows\system32\DRIVERS\stexstor.sys
11:19:14.0617 3460 stexstor - ok
11:19:14.0906 3460 storflt (472af0311073dceceaa8fa18ba2bdf89) C:\Windows\system32\drivers\vmstorfl.sys
11:19:14.0922 3460 storflt - ok
11:19:15.0211 3460 storvsc (dcaffd62259e0bdb433dd67b5bb37619) C:\Windows\system32\drivers\storvsc.sys
11:19:15.0229 3460 storvsc - ok
11:19:15.0508 3460 swenum (e58c78a848add9610a4db6d214af5224) C:\Windows\system32\drivers\swenum.sys
11:19:15.0524 3460 swenum - ok
11:19:15.0812 3460 Synth3dVsc - ok
11:19:16.0143 3460 Tcpip (65d10b191c59c5501a1263fc33f6894b) C:\Windows\system32\drivers\tcpip.sys
11:19:16.0220 3460 Tcpip - ok
11:19:16.0535 3460 TCPIP6 (65d10b191c59c5501a1263fc33f6894b) C:\Windows\system32\DRIVERS\tcpip.sys
11:19:16.0567 3460 TCPIP6 - ok
11:19:16.0858 3460 tcpipreg (cca24162e055c3714ce5a88b100c64ed) C:\Windows\system32\drivers\tcpipreg.sys
11:19:16.0912 3460 tcpipreg - ok
11:19:17.0180 3460 TDPIPE (1cb91b2bd8f6dd367dfc2ef26fd751b2) C:\Windows\system32\drivers\tdpipe.sys
11:19:17.0231 3460 TDPIPE - ok
11:19:17.0498 3460 TDTCP (2c10395baa4847f83042813c515cc289) C:\Windows\system32\drivers\tdtcp.sys
11:19:17.0543 3460 TDTCP - ok
11:19:17.0825 3460 tdx (b459575348c20e8121d6039da063c704) C:\Windows\system32\DRIVERS\tdx.sys
11:19:17.0870 3460 tdx - ok
11:19:18.0150 3460 TermDD (04dbf4b01ea4bf25a9a3e84affac9b20) C:\Windows\system32\drivers\termdd.sys
11:19:18.0167 3460 TermDD - ok
11:19:18.0472 3460 tssecsrv (254bb140eee3c59d6114c1a86b636877) C:\Windows\system32\DRIVERS\tssecsrv.sys
11:19:18.0507 3460 tssecsrv - ok
11:19:18.0824 3460 TsUsbFlt (fd1d6c73e6333be727cbcc6054247654) C:\Windows\system32\drivers\tsusbflt.sys
11:19:18.0859 3460 TsUsbFlt - ok
11:19:19.0145 3460 tsusbhub - ok
11:19:19.0444 3460 tunnel (b2fa25d9b17a68bb93d58b0556e8c90d) C:\Windows\system32\DRIVERS\tunnel.sys
11:19:19.0498 3460 tunnel - ok
11:19:19.0770 3460 uagp35 (750fbcb269f4d7dd2e420c56b795db6d) C:\Windows\system32\DRIVERS\uagp35.sys
11:19:19.0788 3460 uagp35 - ok
11:19:20.0067 3460 udfs (ee43346c7e4b5e63e54f927babbb32ff) C:\Windows\system32\DRIVERS\udfs.sys
11:19:20.0125 3460 udfs - ok
11:19:20.0414 3460 uliagpkx (44e8048ace47befbfdc2e9be4cbc8880) C:\Windows\system32\drivers\uliagpkx.sys
11:19:20.0431 3460 uliagpkx - ok
11:19:20.0721 3460 umbus (d295bed4b898f0fd999fcfa9b32b071b) C:\Windows\system32\DRIVERS\umbus.sys
11:19:20.0755 3460 umbus - ok
11:19:21.0041 3460 UmPass (7550ad0c6998ba1cb4843e920ee0feac) C:\Windows\system32\DRIVERS\umpass.sys
11:19:21.0078 3460 UmPass - ok
11:19:21.0394 3460 usbccgp (7e72e7d7e0757d59481d530fd2b0bfae) C:\Windows\system32\drivers\usbccgp.sys
11:19:21.0431 3460 usbccgp - ok
11:19:21.0732 3460 usbcir (04ec7cec62ec3b6d9354eee93327fc82) C:\Windows\system32\drivers\usbcir.sys
11:19:21.0757 3460 usbcir - ok
11:19:22.0034 3460 usbehci (cfbce999c057d78979a181c9c60f208e) C:\Windows\system32\drivers\usbehci.sys
11:19:22.0068 3460 usbehci - ok
11:19:22.0346 3460 usbhub (9d22aad9ac6a07c691a1113e5f860868) C:\Windows\system32\drivers\usbhub.sys
11:19:22.0382 3460 usbhub - ok
11:19:22.0660 3460 usbohci (a6fb7957ea7afb1165991e54ce934b74) C:\Windows\system32\drivers\usbohci.sys
11:19:22.0704 3460 usbohci - ok
11:19:22.0978 3460 usbprint (797d862fe0875e75c7cc4c1ad7b30252) C:\Windows\system32\DRIVERS\usbprint.sys
11:19:23.0000 3460 usbprint - ok
11:19:23.0285 3460 USBSTOR (bf63ebfc6979fefb2bc03df7989a0c1a) C:\Windows\system32\drivers\USBSTOR.SYS
11:19:23.0308 3460 USBSTOR - ok
11:19:23.0586 3460 usbuhci (78780c3ebce17405b1ccd07a3a8a7d72) C:\Windows\system32\drivers\usbuhci.sys
11:19:23.0608 3460 usbuhci - ok
11:19:23.0908 3460 vdrvroot (a059c4c3edb09e07d21a8e5c0aabd3cb) C:\Windows\system32\drivers\vdrvroot.sys
11:19:23.0924 3460 vdrvroot - ok
11:19:24.0209 3460 vga (17c408214ea61696cec9c66e388b14f3) C:\Windows\system32\DRIVERS\vgapnp.sys
11:19:24.0239 3460 vga - ok
11:19:24.0516 3460 VgaSave (8e38096ad5c8570a6f1570a61e251561) C:\Windows\System32\drivers\vga.sys
11:19:24.0560 3460 VgaSave - ok
11:19:24.0812 3460 VGPU - ok
11:19:25.0090 3460 vhdmp (5461686cca2fda57b024547733ab42e3) C:\Windows\system32\drivers\vhdmp.sys
11:19:25.0110 3460 vhdmp - ok
11:19:25.0391 3460 viaagp (c829317a37b4bea8f39735d4b076e923) C:\Windows\system32\drivers\viaagp.sys
11:19:25.0410 3460 viaagp - ok
11:19:25.0718 3460 ViaC7 (e02f079a6aa107f06b16549c6e5c7b74) C:\Windows\system32\DRIVERS\viac7.sys
11:19:25.0750 3460 ViaC7 - ok
11:19:26.0021 3460 viaide (e43574f6a56a0ee11809b48c09e4fd3c) C:\Windows\system32\drivers\viaide.sys
11:19:26.0036 3460 viaide - ok
11:19:26.0314 3460 vmbus (c2f2911156fdc7817c52829c86da494e) C:\Windows\system32\drivers\vmbus.sys
11:19:26.0334 3460 vmbus - ok
11:19:26.0631 3460 VMBusHID (d4d77455211e204f370d08f4963063ce) C:\Windows\system32\drivers\VMBusHID.sys
11:19:26.0663 3460 VMBusHID - ok
11:19:26.0945 3460 volmgr (4c63e00f2f4b5f86ab48a58cd990f212) C:\Windows\system32\drivers\volmgr.sys
11:19:26.0961 3460 volmgr - ok
11:19:27.0261 3460 volmgrx (b5bb72067ddddbbfb04b2f89ff8c3c87) C:\Windows\system32\drivers\volmgrx.sys
11:19:27.0287 3460 volmgrx - ok
11:19:27.0565 3460 volsnap (f497f67932c6fa693d7de2780631cfe7) C:\Windows\system32\drivers\volsnap.sys
11:19:27.0588 3460 volsnap - ok
11:19:27.0885 3460 vsmraid (9dfa0cc2f8855a04816729651175b631) C:\Windows\system32\DRIVERS\vsmraid.sys
11:19:27.0907 3460 vsmraid - ok
11:19:28.0186 3460 vwifibus (90567b1e658001e79d7c8bbd3dde5aa6) C:\Windows\System32\drivers\vwifibus.sys
11:19:28.0224 3460 vwifibus - ok
11:19:28.0530 3460 WacomPen (de3721e89c653aa281428c8a69745d90) C:\Windows\system32\DRIVERS\wacompen.sys
11:19:28.0577 3460 WacomPen - ok
11:19:28.0859 3460 WANARP (3c3c78515f5ab448b022bdf5b8ffdd2e) C:\Windows\system32\DRIVERS\wanarp.sys
11:19:28.0909 3460 WANARP - ok
11:19:28.0915 3460 Wanarpv6 (3c3c78515f5ab448b022bdf5b8ffdd2e) C:\Windows\system32\DRIVERS\wanarp.sys
11:19:28.0941 3460 Wanarpv6 - ok
11:19:29.0242 3460 Wd (1112a9badacb47b7c0bb0392e3158dff) C:\Windows\system32\DRIVERS\wd.sys
11:19:29.0258 3460 Wd - ok
11:19:29.0569 3460 Wdf01000 (9950e3d0f08141c7e89e64456ae7dc73) C:\Windows\system32\drivers\Wdf01000.sys
11:19:29.0605 3460 Wdf01000 - ok
11:19:29.0909 3460 WfpLwf (8b9a943f3b53861f2bfaf6c186168f79) C:\Windows\system32\DRIVERS\wfplwf.sys
11:19:29.0941 3460 WfpLwf - ok
11:19:30.0217 3460 WIMMount (5cf95b35e59e2a38023836fff31be64c) C:\Windows\system32\drivers\wimmount.sys
11:19:30.0234 3460 WIMMount - ok
11:19:30.0546 3460 WmiAcpi (0217679b8fca58714c3bf2726d2ca84e) C:\Windows\system32\drivers\wmiacpi.sys
11:19:30.0575 3460 WmiAcpi - ok
11:19:30.0886 3460 ws2ifsl (6db3276587b853bf886b69528fdb048c) C:\Windows\system32\drivers\ws2ifsl.sys
11:19:30.0928 3460 ws2ifsl - ok
11:19:31.0219 3460 WudfPf (e714a1c0354636837e20ccbf00888ee7) C:\Windows\system32\drivers\WudfPf.sys
11:19:31.0272 3460 WudfPf - ok
11:19:31.0317 3460 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
11:19:31.0392 3460 \Device\Harddisk0\DR0 ( TDSS File System ) - warning
11:19:31.0392 3460 \Device\Harddisk0\DR0 - detected TDSS File System (1)
11:19:31.0399 3460 Boot (0x1200) (a87013f3e74f6f0993c4fb470751473d) \Device\Harddisk0\DR0\Partition0
11:19:31.0401 3460 \Device\Harddisk0\DR0\Partition0 - ok
11:19:31.0438 3460 Boot (0x1200) (3899a5db9723c88e18c67a69e21f4b71) \Device\Harddisk0\DR0\Partition1
11:19:31.0439 3460 \Device\Harddisk0\DR0\Partition1 - ok
11:19:31.0440 3460 ============================================================
11:19:31.0440 3460 Scan finished
11:19:31.0440 3460 ============================================================
11:19:31.0460 3452 Detected object count: 1
11:19:31.0460 3452 Actual detected object count: 1
11:19:36.0473 3452 \Device\Harddisk0\DR0 ( TDSS File System ) - skipped by user
11:19:36.0473 3452 \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Skip


aswMBR version 0.9.9.1665 Copyright(c) 2011 AVAST Software
Run date: 2012-03-18 11:20:16
-----------------------------
11:20:16.784 OS Version: Windows 6.1.7601 Service Pack 1
11:20:16.784 Number of processors: 2 586 0xF0D
11:20:16.785 ComputerName: KEMI-PC UserName: Kemi
11:20:17.336 Initialize success
11:20:19.061 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0
11:20:19.066 Disk 0 Vendor: Maxtor_6Y080L0 YBR45BW0 Size: 78167MB BusType: 3
11:20:19.087 Disk 0 MBR read successfully
11:20:19.093 Disk 0 MBR scan
11:20:19.101 Disk 0 Windows 7 default MBR code
11:20:19.112 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 100 MB offset 2048
11:20:19.126 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 78065 MB offset 206848
11:20:19.134 Disk 0 scanning sectors +160083968
11:20:19.186 Disk 0 scanning C:\Windows\system32\drivers
11:20:25.641 Service scanning
11:20:55.050 Modules scanning
11:21:08.390 Disk 0 trace - called modules:
11:21:08.434 ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys halmacpi.dll ataport.SYS intelide.sys PCIIDEX.SYS atapi.sys
11:21:08.446 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x85df2030]
11:21:08.471 3 CLASSPNP.SYS[8c65d59e] -> nt!IofCallDriver -> [0x85927368]
11:21:08.491 5 ACPI.sys[8be203d4] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T0L0-0[0x8502f908]
11:21:08.506 Scan finished successfully
11:21:12.780 Disk 0 MBR has been saved successfully to "C:\Users\Gebruiker\Desktop\MBR.dat"
11:21:12.793 The log file has been saved successfully to "C:\Users\Gebruiker\Desktop\aswMBR.txt"
Gebruikersavatar
Maxstar
Administrator
Administrator
Berichten: 41942
Lid geworden op: 27 sep 2008 10:18
Kennisniveau: (3) Expert
OS: Windows 10
AV: Emsisoft Anti-Malware
Gegeven likes: 4
Ontvangen likes: 6
Contacteer:

#5

18 mar 2012 11:41

Hoi,

Laat TDSSKiller nogmaals scannen en kies bij ( TDSS File System ) voor de optie delete en plaats dit logje in het volgende bericht.
Gebruikersavatar
Kemi
PC Web Plus - Member
PC Web Plus - Member
Berichten: 31
Lid geworden op: 26 aug 2010 17:03

#6

18 mar 2012 12:06

Nieuw logje met delete.


12:04:11.0851 4008 TDSS rootkit removing tool 2.7.20.0 Mar 9 2012 17:10:43
12:04:11.0929 4008 ============================================================
12:04:11.0929 4008 Current date / time: 2012/03/18 12:04:11.0929
12:04:11.0929 4008 SystemInfo:
12:04:11.0929 4008
12:04:11.0929 4008 OS Version: 6.1.7601 ServicePack: 1.0
12:04:11.0929 4008 Product type: Workstation
12:04:11.0945 4008 ComputerName: KEMI-PC
12:04:11.0945 4008 UserName: Kemi
12:04:11.0945 4008 Windows directory: C:\Windows
12:04:11.0945 4008 System windows directory: C:\Windows
12:04:11.0945 4008 Processor architecture: Intel x86
12:04:11.0945 4008 Number of processors: 2
12:04:11.0945 4008 Page size: 0x1000
12:04:11.0945 4008 Boot type: Normal boot
12:04:11.0945 4008 ============================================================
12:04:12.0913 4008 Drive \Device\Harddisk0\DR0 - Size: 0x1315740000 (76.34 Gb), SectorSize: 0x200, Cylinders: 0x26EC, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
12:04:12.0913 4008 \Device\Harddisk0\DR0:
12:04:12.0913 4008 MBR used
12:04:12.0913 4008 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
12:04:12.0913 4008 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x9878800
12:04:12.0960 4008 Initialize success
12:04:12.0960 4008 ============================================================
12:04:16.0804 3848 ============================================================
12:04:16.0804 3848 Scan started
12:04:16.0804 3848 Mode: Manual; SigCheck; TDLFS;
12:04:16.0804 3848 ============================================================
12:04:17.0476 3848 1394ohci (1b133875b8aa8ac48969bd3458afe9f5) C:\Windows\system32\drivers\1394ohci.sys
12:04:17.0523 3848 1394ohci - ok
12:04:17.0804 3848 ACPI (cea80c80bed809aa0da6febc04733349) C:\Windows\system32\drivers\ACPI.sys
12:04:17.0820 3848 ACPI - ok
12:04:18.0117 3848 AcpiPmi (1efbc664abff416d1d07db115dcb264f) C:\Windows\system32\drivers\acpipmi.sys
12:04:18.0132 3848 AcpiPmi - ok
12:04:18.0476 3848 adp94xx (21e785ebd7dc90a06391141aac7892fb) C:\Windows\system32\DRIVERS\adp94xx.sys
12:04:18.0492 3848 adp94xx - ok
12:04:18.0773 3848 adpahci (0c676bc278d5b59ff5abd57bbe9123f2) C:\Windows\system32\DRIVERS\adpahci.sys
12:04:18.0788 3848 adpahci - ok
12:04:19.0085 3848 adpu320 (7c7b5ee4b7b822ec85321fe23a27db33) C:\Windows\system32\DRIVERS\adpu320.sys
12:04:19.0101 3848 adpu320 - ok
12:04:19.0413 3848 AFD (9ebbba55060f786f0fcaa3893bfa2806) C:\Windows\system32\drivers\afd.sys
12:04:19.0445 3848 AFD - ok
12:04:19.0710 3848 agp440 (507812c3054c21cef746b6ee3d04dd6e) C:\Windows\system32\drivers\agp440.sys
12:04:19.0726 3848 agp440 - ok
12:04:20.0007 3848 aic78xx (8b30250d573a8f6b4bd23195160d8707) C:\Windows\system32\DRIVERS\djsvs.sys
12:04:20.0023 3848 aic78xx - ok
12:04:20.0304 3848 aliide (0d40bcf52ea90fc7df2aeab6503dea44) C:\Windows\system32\drivers\aliide.sys
12:04:20.0320 3848 aliide - ok
12:04:20.0585 3848 amdagp (3c6600a0696e90a463771c7422e23ab5) C:\Windows\system32\drivers\amdagp.sys
12:04:20.0601 3848 amdagp - ok
12:04:20.0882 3848 amdide (cd5914170297126b6266860198d1d4f0) C:\Windows\system32\drivers\amdide.sys
12:04:20.0898 3848 amdide - ok
12:04:21.0179 3848 AmdK8 (00dda200d71bac534bf56a9db5dfd666) C:\Windows\system32\DRIVERS\amdk8.sys
12:04:21.0195 3848 AmdK8 - ok
12:04:21.0460 3848 AmdPPM (3cbf30f5370fda40dd3e87df38ea53b6) C:\Windows\system32\DRIVERS\amdppm.sys
12:04:21.0492 3848 AmdPPM - ok
12:04:21.0757 3848 amdsata (e7f4d42d8076ec60e21715cd11743a0d) C:\Windows\system32\drivers\amdsata.sys
12:04:21.0773 3848 amdsata - ok
12:04:22.0273 3848 amdsbs (ea43af0c423ff267355f74e7a53bdaba) C:\Windows\system32\DRIVERS\amdsbs.sys
12:04:22.0288 3848 amdsbs - ok
12:04:22.0570 3848 amdxata (146459d2b08bfdcbfa856d9947043c81) C:\Windows\system32\drivers\amdxata.sys
12:04:22.0585 3848 amdxata - ok
12:04:22.0867 3848 AppID (aea177f783e20150ace5383ee368da19) C:\Windows\system32\drivers\appid.sys
12:04:22.0913 3848 AppID - ok
12:04:23.0210 3848 arc (2932004f49677bd84dbc72edb754ffb3) C:\Windows\system32\DRIVERS\arc.sys
12:04:23.0226 3848 arc - ok
12:04:23.0507 3848 arcsas (5d6f36c46fd283ae1b57bd2e9feb0bc7) C:\Windows\system32\DRIVERS\arcsas.sys
12:04:23.0523 3848 arcsas - ok
12:04:23.0788 3848 AsyncMac (add2ade1c2b285ab8378d2daaf991481) C:\Windows\system32\DRIVERS\asyncmac.sys
12:04:23.0835 3848 AsyncMac - ok
12:04:24.0101 3848 atapi (338c86357871c167a96ab976519bf59e) C:\Windows\system32\drivers\atapi.sys
12:04:24.0117 3848 atapi - ok
12:04:24.0429 3848 b06bdrv (1a231abec60fd316ec54c66715543cec) C:\Windows\system32\DRIVERS\bxvbdx.sys
12:04:24.0460 3848 b06bdrv - ok
12:04:24.0726 3848 b57nd60x (bd8869eb9cde6bbe4508d869929869ee) C:\Windows\system32\DRIVERS\b57nd60x.sys
12:04:24.0757 3848 b57nd60x - ok
12:04:25.0038 3848 Beep (505506526a9d467307b3c393dedaf858) C:\Windows\system32\drivers\Beep.sys
12:04:25.0070 3848 Beep - ok
12:04:25.0351 3848 blbdrive (2287078ed48fcfc477b05b20cf38f36f) C:\Windows\system32\DRIVERS\blbdrive.sys
12:04:25.0367 3848 blbdrive - ok
12:04:25.0648 3848 bowser (8f2da3028d5fcbd1a060a3de64cd6506) C:\Windows\system32\DRIVERS\bowser.sys
12:04:25.0663 3848 bowser - ok
12:04:25.0929 3848 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\DRIVERS\BrFiltLo.sys
12:04:25.0945 3848 BrFiltLo - ok
12:04:26.0226 3848 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\DRIVERS\BrFiltUp.sys
12:04:26.0242 3848 BrFiltUp - ok
12:04:26.0538 3848 Brserid (845b8ce732e67f3b4133164868c666ea) C:\Windows\System32\Drivers\Brserid.sys
12:04:26.0570 3848 Brserid - ok
12:04:26.0835 3848 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\System32\Drivers\BrSerWdm.sys
12:04:26.0851 3848 BrSerWdm - ok
12:04:27.0148 3848 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\System32\Drivers\BrUsbMdm.sys
12:04:27.0163 3848 BrUsbMdm - ok
12:04:27.0429 3848 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\System32\Drivers\BrUsbSer.sys
12:04:27.0460 3848 BrUsbSer - ok
12:04:27.0726 3848 BTHMODEM (ed3df7c56ce0084eb2034432fc56565a) C:\Windows\system32\DRIVERS\bthmodem.sys
12:04:27.0757 3848 BTHMODEM - ok
12:04:28.0038 3848 cdfs (77ea11b065e0a8ab902d78145ca51e10) C:\Windows\system32\DRIVERS\cdfs.sys
12:04:28.0070 3848 cdfs - ok
12:04:28.0367 3848 cdrom (be167ed0fdb9c1fa1133953c18d5a6c9) C:\Windows\system32\drivers\cdrom.sys
12:04:28.0382 3848 cdrom - ok
12:04:28.0679 3848 circlass (3fe3fe94a34df6fb06e6418d0f6a0060) C:\Windows\system32\DRIVERS\circlass.sys
12:04:28.0695 3848 circlass - ok
12:04:28.0898 3848 CLFS (635181e0e9bbf16871bf5380d71db02d) C:\Windows\system32\CLFS.sys
12:04:28.0913 3848 CLFS - ok
12:04:29.0273 3848 CmBatt (dea805815e587dad1dd2c502220b5616) C:\Windows\system32\DRIVERS\CmBatt.sys
12:04:29.0304 3848 CmBatt - ok
12:04:29.0570 3848 cmdide (c537b1db64d495b9b4717b4d6d9edbf2) C:\Windows\system32\drivers\cmdide.sys
12:04:29.0585 3848 cmdide - ok
12:04:29.0867 3848 CNG (6427525d76f61d0c519b008d3680e8e7) C:\Windows\system32\Drivers\cng.sys
12:04:29.0898 3848 CNG - ok
12:04:30.0163 3848 Compbatt (a6023d3823c37043986713f118a89bee) C:\Windows\system32\DRIVERS\compbatt.sys
12:04:30.0179 3848 Compbatt - ok
12:04:30.0445 3848 CompositeBus (cbe8c58a8579cfe5fccf809e6f114e89) C:\Windows\system32\drivers\CompositeBus.sys
12:04:30.0460 3848 CompositeBus - ok
12:04:30.0757 3848 crcdisk (2c4ebcfc84a9b44f209dff6c6e6c61d1) C:\Windows\system32\DRIVERS\crcdisk.sys
12:04:30.0773 3848 crcdisk - ok
12:04:31.0070 3848 CSC (3c2177a897b4ca2788c6fb0c3fd81d4b) C:\Windows\system32\drivers\csc.sys
12:04:31.0101 3848 CSC - ok
12:04:31.0398 3848 DfsC (f024449c97ec1e464aaffda18593db88) C:\Windows\system32\Drivers\dfsc.sys
12:04:31.0429 3848 DfsC - ok
12:04:31.0695 3848 discache (1a050b0274bfb3890703d490f330c0da) C:\Windows\system32\drivers\discache.sys
12:04:31.0742 3848 discache - ok
12:04:32.0038 3848 Disk (565003f326f99802e68ca78f2a68e9ff) C:\Windows\system32\DRIVERS\disk.sys
12:04:32.0054 3848 Disk - ok
12:04:32.0351 3848 drmkaud (b918e7c5f9bf77202f89e1a9539f2eb4) C:\Windows\system32\drivers\drmkaud.sys
12:04:32.0382 3848 drmkaud - ok
12:04:32.0679 3848 DXGKrnl (23f5d28378a160352ba8f817bd8c71cb) C:\Windows\System32\drivers\dxgkrnl.sys
12:04:32.0695 3848 DXGKrnl - ok
12:04:33.0070 3848 ebdrv (024e1b5cac09731e4d868e64dbfb4ab0) C:\Windows\system32\DRIVERS\evbdx.sys
12:04:33.0117 3848 ebdrv - ok
12:04:33.0398 3848 elxstor (0ed67910c8c326796faa00b2bf6d9d3c) C:\Windows\system32\DRIVERS\elxstor.sys
12:04:33.0429 3848 elxstor - ok
12:04:33.0695 3848 ErrDev (8fc3208352dd3912c94367a206ab3f11) C:\Windows\system32\drivers\errdev.sys
12:04:33.0710 3848 ErrDev - ok
12:04:34.0023 3848 exfat (2dc9108d74081149cc8b651d3a26207f) C:\Windows\system32\drivers\exfat.sys
12:04:34.0054 3848 exfat - ok
12:04:34.0320 3848 fastfat (7e0ab74553476622fb6ae36f73d97d35) C:\Windows\system32\drivers\fastfat.sys
12:04:34.0367 3848 fastfat - ok
12:04:34.0648 3848 fdc (e817a017f82df2a1f8cfdbda29388b29) C:\Windows\system32\DRIVERS\fdc.sys
12:04:34.0663 3848 fdc - ok
12:04:34.0945 3848 FileInfo (6cf00369c97f3cf563be99be983d13d8) C:\Windows\system32\drivers\fileinfo.sys
12:04:34.0960 3848 FileInfo - ok
12:04:35.0226 3848 Filetrace (42c51dc94c91da21cb9196eb64c45db9) C:\Windows\system32\drivers\filetrace.sys
12:04:35.0273 3848 Filetrace - ok
12:04:35.0538 3848 flpydisk (87907aa70cb3c56600f1c2fb8841579b) C:\Windows\system32\DRIVERS\flpydisk.sys
12:04:35.0554 3848 flpydisk - ok
12:04:35.0820 3848 FltMgr (7520ec808e0c35e0ee6f841294316653) C:\Windows\system32\drivers\fltmgr.sys
12:04:35.0851 3848 FltMgr - ok
12:04:36.0132 3848 FsDepends (1a16b57943853e598cff37fe2b8cbf1d) C:\Windows\system32\drivers\FsDepends.sys
12:04:36.0148 3848 FsDepends - ok
12:04:36.0413 3848 Fs_Rec (a574b4360e438977038aae4bf60d79a2) C:\Windows\system32\drivers\Fs_Rec.sys
12:04:36.0429 3848 Fs_Rec - ok
12:04:36.0710 3848 fvevol (8a73e79089b282100b9393b644cb853b) C:\Windows\system32\DRIVERS\fvevol.sys
12:04:36.0742 3848 fvevol - ok
12:04:37.0007 3848 gagp30kx (65ee0c7a58b65e74ae05637418153938) C:\Windows\system32\DRIVERS\gagp30kx.sys
12:04:37.0023 3848 gagp30kx - ok
12:04:37.0304 3848 hcw85cir (c44e3c2bab6837db337ddee7544736db) C:\Windows\system32\drivers\hcw85cir.sys
12:04:37.0320 3848 hcw85cir - ok
12:04:37.0617 3848 HdAudAddService (a5ef29d5315111c80a5c1abad14c8972) C:\Windows\system32\drivers\HdAudio.sys
12:04:37.0648 3848 HdAudAddService - ok
12:04:37.0929 3848 HDAudBus (9036377b8a6c15dc2eec53e489d159b5) C:\Windows\system32\drivers\HDAudBus.sys
12:04:37.0960 3848 HDAudBus - ok
12:04:38.0210 3848 HidBatt (1d58a7f3e11a9731d0eaaaa8405acc36) C:\Windows\system32\DRIVERS\HidBatt.sys
12:04:38.0242 3848 HidBatt - ok
12:04:38.0507 3848 HidBth (89448f40e6df260c206a193a4683ba78) C:\Windows\system32\DRIVERS\hidbth.sys
12:04:38.0523 3848 HidBth - ok
12:04:38.0804 3848 HidIr (cf50b4cf4a4f229b9f3c08351f99ca5e) C:\Windows\system32\DRIVERS\hidir.sys
12:04:38.0835 3848 HidIr - ok
12:04:39.0132 3848 HidUsb (10c19f8290891af023eaec0832e1eb4d) C:\Windows\system32\drivers\hidusb.sys
12:04:39.0148 3848 HidUsb - ok
12:04:39.0460 3848 HpSAMD (295fdc419039090eb8b49ffdbb374549) C:\Windows\system32\drivers\HpSAMD.sys
12:04:39.0492 3848 HpSAMD - ok
12:04:39.0788 3848 HTTP (871917b07a141bff43d76d8844d48106) C:\Windows\system32\drivers\HTTP.sys
12:04:39.0835 3848 HTTP - ok
12:04:40.0101 3848 hwpolicy (0c4e035c7f105f1299258c90886c64c5) C:\Windows\system32\drivers\hwpolicy.sys
12:04:40.0117 3848 hwpolicy - ok
12:04:40.0398 3848 i8042prt (f151f0bdc47f4a28b1b20a0818ea36d6) C:\Windows\system32\drivers\i8042prt.sys
12:04:40.0413 3848 i8042prt - ok
12:04:40.0726 3848 iaStorV (a3cae5d281db4cff7cff8233507ee5ad) C:\Windows\system32\drivers\iaStorV.sys
12:04:40.0742 3848 iaStorV - ok
12:04:41.0163 3848 igfx (9467514ea189475a6e7fdc5d7bde9d3f) C:\Windows\system32\DRIVERS\igdkmd32.sys
12:04:41.0226 3848 igfx - ok
12:04:41.0507 3848 iirsp (4173ff5708f3236cf25195fecd742915) C:\Windows\system32\DRIVERS\iirsp.sys
12:04:41.0523 3848 iirsp - ok
12:04:41.0788 3848 intelide (a0f12f2c9ba6c72f3987ce780e77c130) C:\Windows\system32\drivers\intelide.sys
12:04:41.0804 3848 intelide - ok
12:04:42.0101 3848 intelppm (3b514d27bfc4accb4037bc6685f766e0) C:\Windows\system32\DRIVERS\intelppm.sys
12:04:42.0117 3848 intelppm - ok
12:04:42.0382 3848 IpFilterDriver (709d1761d3b19a932ff0238ea6d50200) C:\Windows\system32\DRIVERS\ipfltdrv.sys
12:04:42.0429 3848 IpFilterDriver - ok
12:04:42.0695 3848 IPMIDRV (4bd7134618c1d2a27466a099062547bf) C:\Windows\system32\drivers\IPMIDrv.sys
12:04:42.0726 3848 IPMIDRV - ok
12:04:42.0992 3848 IPNAT (a5fa468d67abcdaa36264e463a7bb0cd) C:\Windows\system32\drivers\ipnat.sys
12:04:43.0038 3848 IPNAT - ok
12:04:43.0304 3848 IRENUM (42996cff20a3084a56017b7902307e9f) C:\Windows\system32\drivers\irenum.sys
12:04:43.0320 3848 IRENUM - ok
12:04:43.0601 3848 isapnp (1f32bb6b38f62f7df1a7ab7292638a35) C:\Windows\system32\drivers\isapnp.sys
12:04:43.0617 3848 isapnp - ok
12:04:43.0898 3848 iScsiPrt (cb7a9abb12b8415bce5d74994c7ba3ae) C:\Windows\system32\drivers\msiscsi.sys
12:04:43.0913 3848 iScsiPrt - ok
12:04:44.0195 3848 kbdclass (adef52ca1aeae82b50df86b56413107e) C:\Windows\system32\drivers\kbdclass.sys
12:04:44.0210 3848 kbdclass - ok
12:04:44.0492 3848 kbdhid (9e3ced91863e6ee98c24794d05e27a71) C:\Windows\system32\drivers\kbdhid.sys
12:04:44.0507 3848 kbdhid - ok
12:04:44.0788 3848 KSecDD (f4647bb23db9038a7536cf6b68f4207f) C:\Windows\system32\Drivers\ksecdd.sys
12:04:44.0820 3848 KSecDD - ok
12:04:45.0085 3848 KSecPkg (e73cae53bbb72ba26918492c6b4c229d) C:\Windows\system32\Drivers\ksecpkg.sys
12:04:45.0101 3848 KSecPkg - ok
12:04:45.0413 3848 lltdio (f7611ec07349979da9b0ae1f18ccc7a6) C:\Windows\system32\DRIVERS\lltdio.sys
12:04:45.0445 3848 lltdio - ok
12:04:45.0726 3848 LSI_FC (eb119a53ccf2acc000ac71b065b78fef) C:\Windows\system32\DRIVERS\lsi_fc.sys
12:04:45.0757 3848 LSI_FC - ok
12:04:46.0023 3848 LSI_SAS (8ade1c877256a22e49b75d1cc9161f9c) C:\Windows\system32\DRIVERS\lsi_sas.sys
12:04:46.0038 3848 LSI_SAS - ok
12:04:46.0320 3848 LSI_SAS2 (dc9dc3d3daa0e276fd2ec262e38b11e9) C:\Windows\system32\DRIVERS\lsi_sas2.sys
12:04:46.0335 3848 LSI_SAS2 - ok
12:04:46.0601 3848 LSI_SCSI (0a036c7d7cab643a7f07135ac47e0524) C:\Windows\system32\DRIVERS\lsi_scsi.sys
12:04:46.0632 3848 LSI_SCSI - ok
12:04:46.0898 3848 luafv (6703e366cc18d3b6e534f5cf7df39cee) C:\Windows\system32\drivers\luafv.sys
12:04:46.0945 3848 luafv - ok
12:04:47.0210 3848 megasas (0fff5b045293002ab38eb1fd1fc2fb74) C:\Windows\system32\DRIVERS\megasas.sys
12:04:47.0226 3848 megasas - ok
12:04:47.0507 3848 MegaSR (dcbab2920c75f390caf1d29f675d03d6) C:\Windows\system32\DRIVERS\MegaSR.sys
12:04:47.0523 3848 MegaSR - ok
12:04:47.0804 3848 Modem (f001861e5700ee84e2d4e52c712f4964) C:\Windows\system32\drivers\modem.sys
12:04:47.0835 3848 Modem - ok
12:04:48.0117 3848 monitor (79d10964de86b292320e9dfe02282a23) C:\Windows\system32\DRIVERS\monitor.sys
12:04:48.0132 3848 monitor - ok
12:04:48.0413 3848 mouclass (fb18cc1d4c2e716b6b903b0ac0cc0609) C:\Windows\system32\drivers\mouclass.sys
12:04:48.0429 3848 mouclass - ok
12:04:48.0726 3848 mouhid (2c388d2cd01c9042596cf3c8f3c7b24d) C:\Windows\system32\DRIVERS\mouhid.sys
12:04:48.0742 3848 mouhid - ok
12:04:49.0023 3848 mountmgr (fc8771f45ecccfd89684e38842539b9b) C:\Windows\system32\drivers\mountmgr.sys
12:04:49.0038 3848 mountmgr - ok
12:04:49.0304 3848 mpio (2d699fb6e89ce0d8da14ecc03b3edfe0) C:\Windows\system32\drivers\mpio.sys
12:04:49.0320 3848 mpio - ok
12:04:49.0601 3848 mpsdrv (ad2723a7b53dd1aacae6ad8c0bfbf4d0) C:\Windows\system32\drivers\mpsdrv.sys
12:04:49.0632 3848 mpsdrv - ok
12:04:49.0913 3848 MRxDAV (ceb46ab7c01c9f825f8cc6babc18166a) C:\Windows\system32\drivers\mrxdav.sys
12:04:49.0945 3848 MRxDAV - ok
12:04:50.0226 3848 mrxsmb (5d16c921e3671636c0eba3bbaac5fd25) C:\Windows\system32\DRIVERS\mrxsmb.sys
12:04:50.0242 3848 mrxsmb - ok
12:04:50.0538 3848 mrxsmb10 (6d17a4791aca19328c685d256349fefc) C:\Windows\system32\DRIVERS\mrxsmb10.sys
12:04:50.0554 3848 mrxsmb10 - ok
12:04:50.0835 3848 mrxsmb20 (b81f204d146000be76651a50670a5e9e) C:\Windows\system32\DRIVERS\mrxsmb20.sys
12:04:50.0851 3848 mrxsmb20 - ok
12:04:51.0132 3848 msahci (012c5f4e9349e711e11e0f19a8589f0a) C:\Windows\system32\drivers\msahci.sys
12:04:51.0148 3848 msahci - ok
12:04:51.0429 3848 msdsm (55055f8ad8be27a64c831322a780a228) C:\Windows\system32\drivers\msdsm.sys
12:04:51.0445 3848 msdsm - ok
12:04:51.0742 3848 Msfs (daefb28e3af5a76abcc2c3078c07327f) C:\Windows\system32\drivers\Msfs.sys
12:04:51.0773 3848 Msfs - ok
12:04:52.0038 3848 mshidkmdf (3e1e5767043c5af9367f0056295e9f84) C:\Windows\System32\drivers\mshidkmdf.sys
12:04:52.0085 3848 mshidkmdf - ok
12:04:52.0351 3848 msisadrv (0a4e5757ae09fa9622e3158cc1aef114) C:\Windows\system32\drivers\msisadrv.sys
12:04:52.0367 3848 msisadrv - ok
12:04:52.0663 3848 MSKSSRV (8c0860d6366aaffb6c5bb9df9448e631) C:\Windows\system32\drivers\MSKSSRV.sys
12:04:52.0695 3848 MSKSSRV - ok
12:04:52.0992 3848 MSPCLOCK (3ea8b949f963562cedbb549eac0c11ce) C:\Windows\system32\drivers\MSPCLOCK.sys
12:04:53.0023 3848 MSPCLOCK - ok
12:04:53.0304 3848 MSPQM (f456e973590d663b1073e9c463b40932) C:\Windows\system32\drivers\MSPQM.sys
12:04:53.0335 3848 MSPQM - ok
12:04:53.0601 3848 MsRPC (0e008fc4819d238c51d7c93e7b41e560) C:\Windows\system32\drivers\MsRPC.sys
12:04:53.0632 3848 MsRPC - ok
12:04:53.0898 3848 mssmbios (fc6b9ff600cc585ea38b12589bd4e246) C:\Windows\system32\drivers\mssmbios.sys
12:04:53.0913 3848 mssmbios - ok
12:04:54.0195 3848 MSTEE (b42c6b921f61a6e55159b8be6cd54a36) C:\Windows\system32\drivers\MSTEE.sys
12:04:54.0242 3848 MSTEE - ok
12:04:54.0507 3848 MTConfig (33599130f44e1f34631cea241de8ac84) C:\Windows\system32\DRIVERS\MTConfig.sys
12:04:54.0523 3848 MTConfig - ok
12:04:54.0804 3848 Mup (159fad02f64e6381758c990f753bcc80) C:\Windows\system32\Drivers\mup.sys
12:04:54.0820 3848 Mup - ok
12:04:55.0117 3848 NativeWifiP (26384429fcd85d83746f63e798ab1480) C:\Windows\system32\DRIVERS\nwifi.sys
12:04:55.0148 3848 NativeWifiP - ok
12:04:55.0445 3848 NDIS (e7c54812a2aaf43316eb6930c1ffa108) C:\Windows\system32\drivers\ndis.sys
12:04:55.0476 3848 NDIS - ok
12:04:55.0757 3848 NdisCap (0e1787aa6c9191d3d319e8bafe86f80c) C:\Windows\system32\DRIVERS\ndiscap.sys
12:04:55.0788 3848 NdisCap - ok
12:04:56.0070 3848 NdisTapi (e4a8aec125a2e43a9e32afeea7c9c888) C:\Windows\system32\DRIVERS\ndistapi.sys
12:04:56.0117 3848 NdisTapi - ok
12:04:56.0382 3848 Ndisuio (d8a65dafb3eb41cbb622745676fcd072) C:\Windows\system32\DRIVERS\ndisuio.sys
12:04:56.0429 3848 Ndisuio - ok
12:04:56.0710 3848 NdisWan (38fbe267e7e6983311179230facb1017) C:\Windows\system32\DRIVERS\ndiswan.sys
12:04:56.0742 3848 NdisWan - ok
12:04:57.0023 3848 NDProxy (a4bdc541e69674fbff1a8ff00be913f2) C:\Windows\system32\drivers\NDProxy.sys
12:04:57.0054 3848 NDProxy - ok
12:04:57.0320 3848 NetBIOS (80b275b1ce3b0e79909db7b39af74d51) C:\Windows\system32\DRIVERS\netbios.sys
12:04:57.0367 3848 NetBIOS - ok
12:04:57.0648 3848 NetBT (280122ddcf04b378edd1ad54d71c1e54) C:\Windows\system32\DRIVERS\netbt.sys
12:04:57.0695 3848 NetBT - ok
12:04:57.0992 3848 nfrd960 (1d85c4b390b0ee09c7a46b91efb2c097) C:\Windows\system32\DRIVERS\nfrd960.sys
12:04:58.0007 3848 nfrd960 - ok
12:04:58.0288 3848 Npfs (1db262a9f8c087e8153d89bef3d2235f) C:\Windows\system32\drivers\Npfs.sys
12:04:58.0335 3848 Npfs - ok
12:04:58.0601 3848 nsiproxy (e9a0a4d07e53d8fea2bb8387a3293c58) C:\Windows\system32\drivers\nsiproxy.sys
12:04:58.0632 3848 nsiproxy - ok
12:04:58.0945 3848 Ntfs (33c3093d09017cfe2e219f2472bff6eb) C:\Windows\system32\drivers\Ntfs.sys
12:04:58.0976 3848 Ntfs - ok
12:04:59.0242 3848 Null (f9756a98d69098dca8945d62858a812c) C:\Windows\system32\drivers\Null.sys
12:04:59.0273 3848 Null - ok
12:04:59.0570 3848 nvraid (af2eec9580c1d32fb7eaf105d9784061) C:\Windows\system32\drivers\nvraid.sys
12:04:59.0585 3848 nvraid - ok
12:04:59.0851 3848 nvstor (9283c58ebaa2618f93482eb5dabcec82) C:\Windows\system32\drivers\nvstor.sys
12:04:59.0882 3848 nvstor - ok
12:05:00.0148 3848 nv_agp (5a0983915f02bae73267cc2a041f717d) C:\Windows\system32\drivers\nv_agp.sys
12:05:00.0179 3848 nv_agp - ok
12:05:00.0445 3848 ohci1394 (08a70a1f2cdde9bb49b885cb817a66eb) C:\Windows\system32\drivers\ohci1394.sys
12:05:00.0460 3848 ohci1394 - ok
12:05:00.0757 3848 Parport (2ea877ed5dd9713c5ac74e8ea7348d14) C:\Windows\system32\DRIVERS\parport.sys
12:05:00.0773 3848 Parport - ok
12:05:01.0054 3848 partmgr (bf8f6af06da75b336f07e23aef97d93b) C:\Windows\system32\drivers\partmgr.sys
12:05:01.0070 3848 partmgr - ok
12:05:01.0335 3848 Parvdm (eb0a59f29c19b86479d36b35983daadc) C:\Windows\system32\DRIVERS\parvdm.sys
12:05:01.0351 3848 Parvdm - ok
12:05:01.0632 3848 pci (673e55c3498eb970088e812ea820aa8f) C:\Windows\system32\drivers\pci.sys
12:05:01.0648 3848 pci - ok
12:05:01.0929 3848 pciide (afe86f419014db4e5593f69ffe26ce0a) C:\Windows\system32\drivers\pciide.sys
12:05:01.0945 3848 pciide - ok
12:05:02.0226 3848 pcmcia (f396431b31693e71e8a80687ef523506) C:\Windows\system32\DRIVERS\pcmcia.sys
12:05:02.0242 3848 pcmcia - ok
12:05:02.0507 3848 pcw (250f6b43d2b613172035c6747aeeb19f) C:\Windows\system32\drivers\pcw.sys
12:05:02.0523 3848 pcw - ok
12:05:02.0820 3848 PEAUTH (9e0104ba49f4e6973749a02bf41344ed) C:\Windows\system32\drivers\peauth.sys
12:05:02.0867 3848 PEAUTH - ok
12:05:03.0179 3848 PptpMiniport (631e3e205ad6d86f2aed6a4a8e69f2db) C:\Windows\system32\DRIVERS\raspptp.sys
12:05:03.0226 3848 PptpMiniport - ok
12:05:03.0492 3848 Processor (85b1e3a0c7585bc4aae6899ec6fcf011) C:\Windows\system32\DRIVERS\processr.sys
12:05:03.0523 3848 Processor - ok
12:05:03.0820 3848 Psched (6270ccae2a86de6d146529fe55b3246a) C:\Windows\system32\DRIVERS\pacer.sys
12:05:03.0851 3848 Psched - ok
12:05:04.0163 3848 ql2300 (ab95ecf1f6659a60ddc166d8315b0751) C:\Windows\system32\DRIVERS\ql2300.sys
12:05:04.0195 3848 ql2300 - ok
12:05:04.0476 3848 ql40xx (b4dd51dd25182244b86737dc51af2270) C:\Windows\system32\DRIVERS\ql40xx.sys
12:05:04.0492 3848 ql40xx - ok
12:05:04.0773 3848 QWAVEdrv (584078ca1b95ca72df2a27c336f9719d) C:\Windows\system32\drivers\qwavedrv.sys
12:05:04.0788 3848 QWAVEdrv - ok
12:05:05.0070 3848 RasAcd (30a81b53c766d0133bb86d234e5556ab) C:\Windows\system32\DRIVERS\rasacd.sys
12:05:05.0101 3848 RasAcd - ok
12:05:05.0367 3848 RasAgileVpn (57ec4aef73660166074d8f7f31c0d4fd) C:\Windows\system32\DRIVERS\AgileVpn.sys
12:05:05.0413 3848 RasAgileVpn - ok
12:05:05.0679 3848 Rasl2tp (d9f91eafec2815365cbe6d167e4e332a) C:\Windows\system32\DRIVERS\rasl2tp.sys
12:05:05.0710 3848 Rasl2tp - ok
12:05:06.0007 3848 RasPppoe (0fe8b15916307a6ac12bfb6a63e45507) C:\Windows\system32\DRIVERS\raspppoe.sys
12:05:06.0054 3848 RasPppoe - ok
12:05:06.0320 3848 RasSstp (44101f495a83ea6401d886e7fd70096b) C:\Windows\system32\DRIVERS\rassstp.sys
12:05:06.0367 3848 RasSstp - ok
12:05:06.0648 3848 rdbss (d528bc58a489409ba40334ebf96a311b) C:\Windows\system32\DRIVERS\rdbss.sys
12:05:06.0679 3848 rdbss - ok
12:05:06.0945 3848 rdpbus (0d8f05481cb76e70e1da06ee9f0da9df) C:\Windows\system32\DRIVERS\rdpbus.sys
12:05:06.0976 3848 rdpbus - ok
12:05:07.0242 3848 RDPCDD (23dae03f29d253ae74c44f99e515f9a1) C:\Windows\system32\DRIVERS\RDPCDD.sys
12:05:07.0273 3848 RDPCDD - ok
12:05:07.0554 3848 RDPDR (b973fcfc50dc1434e1970a146f7e3885) C:\Windows\system32\drivers\rdpdr.sys
12:05:07.0570 3848 RDPDR - ok
12:05:07.0867 3848 RDPENCDD (5a53ca1598dd4156d44196d200c94b8a) C:\Windows\system32\drivers\rdpencdd.sys
12:05:07.0898 3848 RDPENCDD - ok
12:05:08.0179 3848 RDPREFMP (44b0a53cd4f27d50ed461dae0c0b4e1f) C:\Windows\system32\drivers\rdprefmp.sys
12:05:08.0210 3848 RDPREFMP - ok
12:05:08.0507 3848 RdpVideoMiniport (68a0387f58e226deee23d9715955572a) C:\Windows\system32\drivers\rdpvideominiport.sys
12:05:08.0523 3848 RdpVideoMiniport - ok
12:05:08.0804 3848 RDPWD (288b06960d78428ff89e811632684e20) C:\Windows\system32\drivers\RDPWD.sys
12:05:08.0835 3848 RDPWD - ok
12:05:09.0132 3848 rdyboost (518395321dc96fe2c9f0e96ac743b656) C:\Windows\system32\drivers\rdyboost.sys
12:05:09.0148 3848 rdyboost - ok
12:05:09.0460 3848 rspndr (032b0d36ad92b582d869879f5af5b928) C:\Windows\system32\DRIVERS\rspndr.sys
12:05:09.0492 3848 rspndr - ok
12:05:09.0773 3848 RTL8167 (7dfd48e24479b68b258d8770121155a0) C:\Windows\system32\DRIVERS\Rt86win7.sys
12:05:09.0804 3848 RTL8167 - ok
12:05:10.0070 3848 s3cap (7fa7f2e249a5dcbb7970630e15e1f482) C:\Windows\system32\drivers\vms3cap.sys
12:05:10.0101 3848 s3cap - ok
12:05:10.0382 3848 sbp2port (05d860da1040f111503ac416ccef2bca) C:\Windows\system32\drivers\sbp2port.sys
12:05:10.0398 3848 sbp2port - ok
12:05:10.0679 3848 scfilter (0693b5ec673e34dc147e195779a4dcf6) C:\Windows\system32\DRIVERS\scfilter.sys
12:05:10.0710 3848 scfilter - ok
12:05:11.0007 3848 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
12:05:11.0054 3848 secdrv - ok
12:05:11.0351 3848 Serenum (9ad8b8b515e3df6acd4212ef465de2d1) C:\Windows\system32\DRIVERS\serenum.sys
12:05:11.0367 3848 Serenum - ok
12:05:11.0632 3848 Serial (5fb7fcea0490d821f26f39cc5ea3d1e2) C:\Windows\system32\DRIVERS\serial.sys
12:05:11.0663 3848 Serial - ok
12:05:11.0929 3848 sermouse (79bffb520327ff916a582dfea17aa813) C:\Windows\system32\DRIVERS\sermouse.sys
12:05:11.0945 3848 sermouse - ok
12:05:12.0242 3848 sffdisk (9f976e1eb233df46fce808d9dea3eb9c) C:\Windows\system32\drivers\sffdisk.sys
12:05:12.0257 3848 sffdisk - ok
12:05:12.0538 3848 sffp_mmc (932a68ee27833cfd57c1639d375f2731) C:\Windows\system32\drivers\sffp_mmc.sys
12:05:12.0570 3848 sffp_mmc - ok
12:05:12.0835 3848 sffp_sd (6d4ccaedc018f1cf52866bbbaa235982) C:\Windows\system32\drivers\sffp_sd.sys
12:05:12.0867 3848 sffp_sd - ok
12:05:13.0132 3848 sfloppy (db96666cc8312ebc45032f30b007a547) C:\Windows\system32\DRIVERS\sfloppy.sys
12:05:13.0148 3848 sfloppy - ok
12:05:13.0445 3848 sisagp (2565cac0dc9fe0371bdce60832582b2e) C:\Windows\system32\drivers\sisagp.sys
12:05:13.0460 3848 sisagp - ok
12:05:13.0742 3848 SiSRaid2 (a9f0486851becb6dda1d89d381e71055) C:\Windows\system32\DRIVERS\SiSRaid2.sys
12:05:13.0757 3848 SiSRaid2 - ok
12:05:14.0023 3848 SiSRaid4 (3727097b55738e2f554972c3be5bc1aa) C:\Windows\system32\DRIVERS\sisraid4.sys
12:05:14.0054 3848 SiSRaid4 - ok
12:05:14.0335 3848 Smb (3e21c083b8a01cb70ba1f09303010fce) C:\Windows\system32\DRIVERS\smb.sys
12:05:14.0382 3848 Smb - ok
12:05:14.0679 3848 spldr (95cf1ae7527fb70f7816563cbc09d942) C:\Windows\system32\drivers\spldr.sys
12:05:14.0695 3848 spldr - ok
12:05:14.0992 3848 srv (e4c2764065d66ea1d2d3ebc28fe99c46) C:\Windows\system32\DRIVERS\srv.sys
12:05:15.0023 3848 srv - ok
12:05:15.0288 3848 srv2 (03f0545bd8d4c77fa0ae1ceedfcc71ab) C:\Windows\system32\DRIVERS\srv2.sys
12:05:15.0320 3848 srv2 - ok
12:05:15.0601 3848 srvnet (be6bd660caa6f291ae06a718a4fa8abc) C:\Windows\system32\DRIVERS\srvnet.sys
12:05:15.0617 3848 srvnet - ok
12:05:15.0913 3848 stexstor (db32d325c192b801df274bfd12a7e72b) C:\Windows\system32\DRIVERS\stexstor.sys
12:05:15.0929 3848 stexstor - ok
12:05:16.0210 3848 storflt (472af0311073dceceaa8fa18ba2bdf89) C:\Windows\system32\drivers\vmstorfl.sys
12:05:16.0226 3848 storflt - ok
12:05:16.0523 3848 storvsc (dcaffd62259e0bdb433dd67b5bb37619) C:\Windows\system32\drivers\storvsc.sys
12:05:16.0538 3848 storvsc - ok
12:05:16.0804 3848 swenum (e58c78a848add9610a4db6d214af5224) C:\Windows\system32\drivers\swenum.sys
12:05:16.0820 3848 swenum - ok
12:05:17.0101 3848 Synth3dVsc - ok
12:05:17.0429 3848 Tcpip (65d10b191c59c5501a1263fc33f6894b) C:\Windows\system32\drivers\tcpip.sys
12:05:17.0476 3848 Tcpip - ok
12:05:17.0788 3848 TCPIP6 (65d10b191c59c5501a1263fc33f6894b) C:\Windows\system32\DRIVERS\tcpip.sys
12:05:17.0835 3848 TCPIP6 - ok
12:05:18.0117 3848 tcpipreg (cca24162e055c3714ce5a88b100c64ed) C:\Windows\system32\drivers\tcpipreg.sys
12:05:18.0163 3848 tcpipreg - ok
12:05:18.0429 3848 TDPIPE (1cb91b2bd8f6dd367dfc2ef26fd751b2) C:\Windows\system32\drivers\tdpipe.sys
12:05:18.0460 3848 TDPIPE - ok
12:05:18.0726 3848 TDTCP (2c10395baa4847f83042813c515cc289) C:\Windows\system32\drivers\tdtcp.sys
12:05:18.0773 3848 TDTCP - ok
12:05:19.0038 3848 tdx (b459575348c20e8121d6039da063c704) C:\Windows\system32\DRIVERS\tdx.sys
12:05:19.0070 3848 tdx - ok
12:05:19.0367 3848 TermDD (04dbf4b01ea4bf25a9a3e84affac9b20) C:\Windows\system32\drivers\termdd.sys
12:05:19.0382 3848 TermDD - ok
12:05:19.0679 3848 tssecsrv (254bb140eee3c59d6114c1a86b636877) C:\Windows\system32\DRIVERS\tssecsrv.sys
12:05:19.0710 3848 tssecsrv - ok
12:05:20.0007 3848 TsUsbFlt (fd1d6c73e6333be727cbcc6054247654) C:\Windows\system32\drivers\tsusbflt.sys
12:05:20.0023 3848 TsUsbFlt - ok
12:05:20.0288 3848 tsusbhub - ok
12:05:20.0585 3848 tunnel (b2fa25d9b17a68bb93d58b0556e8c90d) C:\Windows\system32\DRIVERS\tunnel.sys
12:05:20.0617 3848 tunnel - ok
12:05:20.0898 3848 uagp35 (750fbcb269f4d7dd2e420c56b795db6d) C:\Windows\system32\DRIVERS\uagp35.sys
12:05:20.0913 3848 uagp35 - ok
12:05:21.0195 3848 udfs (ee43346c7e4b5e63e54f927babbb32ff) C:\Windows\system32\DRIVERS\udfs.sys
12:05:21.0226 3848 udfs - ok
12:05:21.0523 3848 uliagpkx (44e8048ace47befbfdc2e9be4cbc8880) C:\Windows\system32\drivers\uliagpkx.sys
12:05:21.0538 3848 uliagpkx - ok
12:05:21.0820 3848 umbus (d295bed4b898f0fd999fcfa9b32b071b) C:\Windows\system32\DRIVERS\umbus.sys
12:05:21.0835 3848 umbus - ok
12:05:22.0117 3848 UmPass (7550ad0c6998ba1cb4843e920ee0feac) C:\Windows\system32\DRIVERS\umpass.sys
12:05:22.0132 3848 UmPass - ok
12:05:22.0413 3848 usbccgp (7e72e7d7e0757d59481d530fd2b0bfae) C:\Windows\system32\drivers\usbccgp.sys
12:05:22.0429 3848 usbccgp - ok
12:05:22.0710 3848 usbcir (04ec7cec62ec3b6d9354eee93327fc82) C:\Windows\system32\drivers\usbcir.sys
12:05:22.0742 3848 usbcir - ok
12:05:23.0007 3848 usbehci (cfbce999c057d78979a181c9c60f208e) C:\Windows\system32\drivers\usbehci.sys
12:05:23.0023 3848 usbehci - ok
12:05:23.0320 3848 usbhub (9d22aad9ac6a07c691a1113e5f860868) C:\Windows\system32\drivers\usbhub.sys
12:05:23.0351 3848 usbhub - ok
12:05:23.0617 3848 usbohci (a6fb7957ea7afb1165991e54ce934b74) C:\Windows\system32\drivers\usbohci.sys
12:05:23.0632 3848 usbohci - ok
12:05:23.0913 3848 usbprint (797d862fe0875e75c7cc4c1ad7b30252) C:\Windows\system32\DRIVERS\usbprint.sys
12:05:23.0929 3848 usbprint - ok
12:05:24.0210 3848 USBSTOR (bf63ebfc6979fefb2bc03df7989a0c1a) C:\Windows\system32\drivers\USBSTOR.SYS
12:05:24.0226 3848 USBSTOR - ok
12:05:24.0507 3848 usbuhci (78780c3ebce17405b1ccd07a3a8a7d72) C:\Windows\system32\drivers\usbuhci.sys
12:05:24.0523 3848 usbuhci - ok
12:05:24.0820 3848 vdrvroot (a059c4c3edb09e07d21a8e5c0aabd3cb) C:\Windows\system32\drivers\vdrvroot.sys
12:05:24.0835 3848 vdrvroot - ok
12:05:25.0117 3848 vga (17c408214ea61696cec9c66e388b14f3) C:\Windows\system32\DRIVERS\vgapnp.sys
12:05:25.0148 3848 vga - ok
12:05:25.0413 3848 VgaSave (8e38096ad5c8570a6f1570a61e251561) C:\Windows\System32\drivers\vga.sys
12:05:25.0445 3848 VgaSave - ok
12:05:25.0710 3848 VGPU - ok
12:05:25.0976 3848 vhdmp (5461686cca2fda57b024547733ab42e3) C:\Windows\system32\drivers\vhdmp.sys
12:05:26.0007 3848 vhdmp - ok
12:05:26.0288 3848 viaagp (c829317a37b4bea8f39735d4b076e923) C:\Windows\system32\drivers\viaagp.sys
12:05:26.0304 3848 viaagp - ok
12:05:26.0585 3848 ViaC7 (e02f079a6aa107f06b16549c6e5c7b74) C:\Windows\system32\DRIVERS\viac7.sys
12:05:26.0601 3848 ViaC7 - ok
12:05:26.0867 3848 viaide (e43574f6a56a0ee11809b48c09e4fd3c) C:\Windows\system32\drivers\viaide.sys
12:05:26.0882 3848 viaide - ok
12:05:27.0163 3848 vmbus (c2f2911156fdc7817c52829c86da494e) C:\Windows\system32\drivers\vmbus.sys
12:05:27.0179 3848 vmbus - ok
12:05:27.0445 3848 VMBusHID (d4d77455211e204f370d08f4963063ce) C:\Windows\system32\drivers\VMBusHID.sys
12:05:27.0476 3848 VMBusHID - ok
12:05:27.0742 3848 volmgr (4c63e00f2f4b5f86ab48a58cd990f212) C:\Windows\system32\drivers\volmgr.sys
12:05:27.0757 3848 volmgr - ok
12:05:28.0038 3848 volmgrx (b5bb72067ddddbbfb04b2f89ff8c3c87) C:\Windows\system32\drivers\volmgrx.sys
12:05:28.0070 3848 volmgrx - ok
12:05:28.0351 3848 volsnap (f497f67932c6fa693d7de2780631cfe7) C:\Windows\system32\drivers\volsnap.sys
12:05:28.0367 3848 volsnap - ok
12:05:28.0648 3848 vsmraid (9dfa0cc2f8855a04816729651175b631) C:\Windows\system32\DRIVERS\vsmraid.sys
12:05:28.0679 3848 vsmraid - ok
12:05:28.0960 3848 vwifibus (90567b1e658001e79d7c8bbd3dde5aa6) C:\Windows\System32\drivers\vwifibus.sys
12:05:28.0976 3848 vwifibus - ok
12:05:29.0257 3848 WacomPen (de3721e89c653aa281428c8a69745d90) C:\Windows\system32\DRIVERS\wacompen.sys
12:05:29.0288 3848 WacomPen - ok
12:05:29.0570 3848 WANARP (3c3c78515f5ab448b022bdf5b8ffdd2e) C:\Windows\system32\DRIVERS\wanarp.sys
12:05:29.0601 3848 WANARP - ok
12:05:29.0601 3848 Wanarpv6 (3c3c78515f5ab448b022bdf5b8ffdd2e) C:\Windows\system32\DRIVERS\wanarp.sys
12:05:29.0632 3848 Wanarpv6 - ok
12:05:29.0929 3848 Wd (1112a9badacb47b7c0bb0392e3158dff) C:\Windows\system32\DRIVERS\wd.sys
12:05:29.0945 3848 Wd - ok
12:05:30.0226 3848 Wdf01000 (9950e3d0f08141c7e89e64456ae7dc73) C:\Windows\system32\drivers\Wdf01000.sys
12:05:30.0257 3848 Wdf01000 - ok
12:05:30.0554 3848 WfpLwf (8b9a943f3b53861f2bfaf6c186168f79) C:\Windows\system32\DRIVERS\wfplwf.sys
12:05:30.0585 3848 WfpLwf - ok
12:05:30.0867 3848 WIMMount (5cf95b35e59e2a38023836fff31be64c) C:\Windows\system32\drivers\wimmount.sys
12:05:30.0882 3848 WIMMount - ok
12:05:31.0179 3848 WmiAcpi (0217679b8fca58714c3bf2726d2ca84e) C:\Windows\system32\drivers\wmiacpi.sys
12:05:31.0195 3848 WmiAcpi - ok
12:05:31.0492 3848 ws2ifsl (6db3276587b853bf886b69528fdb048c) C:\Windows\system32\drivers\ws2ifsl.sys
12:05:31.0538 3848 ws2ifsl - ok
12:05:31.0835 3848 WudfPf (e714a1c0354636837e20ccbf00888ee7) C:\Windows\system32\drivers\WudfPf.sys
12:05:31.0867 3848 WudfPf - ok
12:05:31.0913 3848 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
12:05:31.0992 3848 \Device\Harddisk0\DR0 ( TDSS File System ) - warning
12:05:31.0992 3848 \Device\Harddisk0\DR0 - detected TDSS File System (1)
12:05:31.0992 3848 Boot (0x1200) (a87013f3e74f6f0993c4fb470751473d) \Device\Harddisk0\DR0\Partition0
12:05:31.0992 3848 \Device\Harddisk0\DR0\Partition0 - ok
12:05:32.0023 3848 Boot (0x1200) (3899a5db9723c88e18c67a69e21f4b71) \Device\Harddisk0\DR0\Partition1
12:05:32.0023 3848 \Device\Harddisk0\DR0\Partition1 - ok
12:05:32.0023 3848 ============================================================
12:05:32.0023 3848 Scan finished
12:05:32.0023 3848 ============================================================
12:05:32.0038 2116 Detected object count: 1
12:05:32.0038 2116 Actual detected object count: 1
12:05:47.0429 2116 \Device\Harddisk0\DR0\TDLFS\cfg.ini - copied to quarantine
12:05:47.0429 2116 \Device\Harddisk0\DR0\TDLFS\mbr - copied to quarantine
12:05:47.0460 2116 \Device\Harddisk0\DR0\TDLFS\ldr16 - copied to quarantine
12:05:47.0460 2116 \Device\Harddisk0\DR0\TDLFS\ldr32 - copied to quarantine
12:05:47.0460 2116 \Device\Harddisk0\DR0\TDLFS\ldr64 - copied to quarantine
12:05:47.0476 2116 \Device\Harddisk0\DR0\TDLFS\drv32 - copied to quarantine
12:05:47.0507 2116 \Device\Harddisk0\DR0\TDLFS\drv64 - copied to quarantine
12:05:47.0523 2116 \Device\Harddisk0\DR0\TDLFS\cmd.dll - copied to quarantine
12:05:47.0523 2116 \Device\Harddisk0\DR0\TDLFS\cmd64.dll - copied to quarantine
12:05:47.0523 2116 \Device\Harddisk0\DR0\TDLFS\bckfg.tmp - copied to quarantine
12:05:47.0523 2116 \Device\Harddisk0\DR0\TDLFS - deleted
12:05:47.0523 2116 \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Delete
Gebruikersavatar
Maxstar
Administrator
Administrator
Berichten: 41942
Lid geworden op: 27 sep 2008 10:18
Kennisniveau: (3) Expert
OS: Windows 10
AV: Emsisoft Anti-Malware
Gegeven likes: 4
Ontvangen likes: 6
Contacteer:

#7

18 mar 2012 12:22

Hoi,

Download MalwareBytes' Anti-Malware en sla het op je bureaublad op.
Dubbelklik op mbam-setup.exe om het programma te installeren.

Zorg dat er na de installatie een vinkje is geplaatst bij:
  • Update MalwareBytes' Anti-Malware
  • Start MalwareBytes' Anti-Malware
Klik daarna op "Voltooien".
Indien een update gevonden wordt, zal die gedownload en geïnstalleerd worden.

Bij problemen!!! (Lees de onderstaande instructies)
  • Het venster met de vraag of je de "Evaluatie wil starten" mag je in principe weigeren, deze kan je later ook nog inschakelen.
  • Zodra het programma gestart is, ga dan naar het tabblad "Instellingen".
  • Vink hier aan: "Sluit Internet Explorer tijdens verwijdering van malware".
  • Ga daarna naar het tabblad "Scanner", kies hier voor "Snelle Scan".
  • Druk vervolgens op "Scannen" om de scan te starten.
  • Het scannen kan een tijdje duren, dus wees geduldig.
  • Wanneer de scan voltooid is, klik op OK, daarna "Bekijk Resultaten" om de resultaten te zien.
  • Zorg ervoor dat daar alles aangevinkt is, daarna klik op: "Verwijder geselecteerde".
  • Na het verwijderen zal een log openen en zal er gevraagd worden om de computer opnieuw op te starten.
Het log wordt automatisch bewaard door MalwareBytes' Anti-Malware en kan je terugvinden door op de "Logs" tab te klikken in het programma.

Plaats het logje van MBAM in het volgende bericht.
Gebruikersavatar
Kemi
PC Web Plus - Member
PC Web Plus - Member
Berichten: 31
Lid geworden op: 26 aug 2010 17:03

#8

18 mar 2012 12:43

Malwarebytes Anti-Malware 1.60.1.1000
http://www.malwarebytes.org" onclick="window.open(this.href);return false;

Databaseversie: v2012.03.18.02

Windows 7 Service Pack 1 x86 NTFS
Internet Explorer 9.0.8112.16421
Gebruiker :: KEMI-PC [Kemi]

3/18/2012 12:41:14 PM
mbam-log-2012-03-18 (12-41-14).txt

Scantype: Snelle scan
Ingeschakelde scanopties: Geheugen | Opstartitems | Register | Bestanden en mappen | Heuristiek/Extra | Heuristiek/Shuriken | PUP | PUM
Uitgeschakelde scanopties: P2P
Objecten gescand: 165129
Verstreken tijd: 1 minuut/minuten, 54 seconde(n)

Geheugenprocessen gedetecteerd: 0
(Geen kwaadaardige objecten gedetecteerd)

Geheugenmodulen gedetecteerd: 0
(Geen kwaadaardige objecten gedetecteerd)

Registersleutels gedetecteerd: 0
(Geen kwaadaardige objecten gedetecteerd)

Registerwaarden gedetecteerd: 1
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run|AppDataLow (Trojan.Agent) -> Data: C:\Users\Gebruiker\AppData\Roaming\A401AC.exe -> Succesvol in quarantaine geplaatst en verwijderd.

Registerdata gedetecteerd: 0
(Geen kwaadaardige objecten gedetecteerd)

Mappen gedetecteerd: 0
(Geen kwaadaardige objecten gedetecteerd)

Bestanden gedetecteerd: 1
C:\Users\Kemi\AppData\Roaming\A401AC.exe (Trojan.Agent) -> Zal worden verwijderd tijdens het herstarten.

(einde)
Gebruikersavatar
Maxstar
Administrator
Administrator
Berichten: 41942
Lid geworden op: 27 sep 2008 10:18
Kennisniveau: (3) Expert
OS: Windows 10
AV: Emsisoft Anti-Malware
Gegeven likes: 4
Ontvangen likes: 6
Contacteer:

#9

18 mar 2012 17:14

Hoi,

Zijn er nu nog problemen merkbaar?
Gebruikersavatar
Kemi
PC Web Plus - Member
PC Web Plus - Member
Berichten: 31
Lid geworden op: 26 aug 2010 17:03

#10

18 mar 2012 18:52

Problemen heb ik niet en eigenlijk ook helemaal niet gehad.
Het is dat Avast het sinowal virus vond en die melding was ook na een paar seconden weg.
Het is allemaal erg vreemd maar ik had toch ergens dit virus.
Hoe kan dit en weet jij dit ook?
Gebruikersavatar
Maxstar
Administrator
Administrator
Berichten: 41942
Lid geworden op: 27 sep 2008 10:18
Kennisniveau: (3) Expert
OS: Windows 10
AV: Emsisoft Anti-Malware
Gegeven likes: 4
Ontvangen likes: 6
Contacteer:

#11

19 mar 2012 09:53

Hoi,
Kemi schreef:Het is dat Avast het sinowal virus vond en die melding was ook na een paar seconden weg.
Voor zover bekend is infecteerde deze variant bij Windows Vista en Windows niet de MBR maar plaatste alleen een "userland onderdeel".
Maar sowieso is de PC eens eerder geïnfecteerd geweest want ik zag nog resten van een andere 'rootkit' in het logje van TDSSKiller.
Kemi schreef:Het is allemaal erg vreemd maar ik had toch ergens dit virus.
Hoe kan dit en weet jij dit ook?
De meeste van dit soort problemen komen door software dat niet up-to-date is, het klikken op een verkeerde link, installeren van een vreemde codec of browser plugin etc.
Gebruikersavatar
Kemi
PC Web Plus - Member
PC Web Plus - Member
Berichten: 31
Lid geworden op: 26 aug 2010 17:03

#12

22 mar 2012 18:34

Bedankt Maxstar. :pray:

De computer was eerder deze maand al traag en heb ik deze voor reparatie bij een computer winkel gebracht en daarna ging het even goed en toen kreeg ik dit probleem.
Ik durfde niet zo goed meer terug en ging daarom weer naar hier omdat ik al eerder zo goed geholpen was.

Updates doe ik altijd dus weet ook niet of het daardoor is gekomen en of het een foute update kan zijn geweest. :oops:

En wederom ben ik goed geholpen en dat ook nog eens helemaal gratis en voor niks. :bow: :bow: :dank:

Ik weet niet hoe je ik kan bedanken maar deze website staat opnieuw weer in mijn favorieten.
Gebruikersavatar
Maxstar
Administrator
Administrator
Berichten: 41942
Lid geworden op: 27 sep 2008 10:18
Kennisniveau: (3) Expert
OS: Windows 10
AV: Emsisoft Anti-Malware
Gegeven likes: 4
Ontvangen likes: 6
Contacteer:

#13

23 mar 2012 09:22

Hoi,

Graag gedaan... :good:

De volgende programma's en bijbehorende log bestanden mag je verwijderen.
  • TDSSKiller
  • aswMBR
Aangezien de problemen zijn verholpen adviseer ik u nog wel even het onderstaande uit te voeren.

1.) Systeemherstelpunten verwijderen
Als de computer geïnfecteerd is geweest met een malware infectie is het raadzaam om alle aanwezige systeemherstelpunten te verwijderen, want hier kunnen namelijk besmette herstelpunten tussen zitten.
  • Hoe u de herstelpunten verwijderd leest u hier
  • Hoe u zelf snel een nieuw systeemherstelpunt aan kunt maken leest u hier
2.) Installeren van essentiële updates.
Hoe u uw besturingssysteem en overige software up to date houdt kunt u hier lezen.
Door middel van het programma Secunia PSI wordt u automatisch gewaarschuwd indien er updates voor de geïnstalleerde software beschikbaar is, meer informatie leest u hier

3.) Pas op voor 'Phishing' berichten.
Phishing is een vorm van internet oplichting (fraude), met valse e-mailberichten en websites die er vertrouwd uitzien wordt er getracht 'logingegevens' en andere persoonlijke informatie te achterhalen.
Dit gebeurt vaak op hele slinkse manieren, zoals bijvoorbeeld e-mailberichten waarin u gevraagd wordt uw inloggegevens te verifiëren, in deze gevallen wordt u vaak naar een valse (clone) website gestuurd, zodra u uw gegevens hier hebt ingevoerd zijn deze in de handen van de kwaadwillende met alle gevolgen van dien.
Meer informatie leest u hier

4.) Gebruikersaccounts
Met dit account heeft u dus het volledige beheer van de computer in handen, het is dan ook niet aan te raden om dit account als primair account voor het dagelijkse gebruik in te stellen.
Meer informatie hierover leest u hier

5.) Risico's bij het downloaden
Peer to Peer (P2P) netwerken en ook Usenet (nieuwsgroepen) zijn een grote bron op het internet wat betreft het verspreiden van malware, het aanbieden van 'gevaarlijke' software (malware) gebeurt vrijwel anoniem waardoor dit een veel gebruikte methode is voor het verspreiden van malware.
Meer informatie hierover leest u hier

6.) Preventie informatie & het gebruik van beveiligings software.
Hier en hier staat informatie hoe u een infectie kunt voorkomen, lees dit eens op uw gemak door.

Meer informatie over het gebruik van "beveiligings software" en "valse (nep) software" (rogueware) leest u hier
Gebruikersavatar
Maxstar
Administrator
Administrator
Berichten: 41942
Lid geworden op: 27 sep 2008 10:18
Kennisniveau: (3) Expert
OS: Windows 10
AV: Emsisoft Anti-Malware
Gegeven likes: 4
Ontvangen likes: 6
Contacteer:

#14

24 mar 2012 10:30

Omdat het probleem is verholpen wordt dit topic gesloten en verplaatst naar de sectie opgeloste problemen / logs.

Als u dit topic heropent wilt hebben, dan kunt u mij of één van moderators een (PB) privébericht sturen met een link naar dit betreffende topic.

Indien het topic al langere tijd is gesloten kunt u het beste hier een nieuw topic aanmaken, en eventueel verwijzen naar dit topic.


Voor alle andere vragen kunt u in het juiste forum een nieuw onderwerp starten.
Gesloten

Terug naar “Opgeloste problemen / logs”