Virus trojan et hijack
Ma22rie
-
Utilisateur anonyme -
Utilisateur anonyme -
Bonjour,
En faisant une recherche avec "malwarebytes" j'ai découvert que mon ordi était infecté par pleins de virus! Malheureusement moi et l'informatique ...!
Il y a 8 trojan et 1 hijack en quarantaine mais est ce qu'on peut les supprimer ?
Merci d'avance pour votre aide précieuse.
En faisant une recherche avec "malwarebytes" j'ai découvert que mon ordi était infecté par pleins de virus! Malheureusement moi et l'informatique ...!
Il y a 8 trojan et 1 hijack en quarantaine mais est ce qu'on peut les supprimer ?
Merci d'avance pour votre aide précieuse.
A voir également:
- Virus trojan et hijack
- Virus mcafee - Accueil - Piratage
- Hijack this - Télécharger - Antivirus & Antimalwares
- Virus facebook demande d'amis - Accueil - Facebook
- Trojan remover - Télécharger - Antivirus & Antimalwares
- Faux message virus iphone ✓ - Forum Virus
36 réponses
Voici le 1er :
ComboFix 11-05-17.03 - Marie 18/05/2011 22:12:31.1.1 - x86
Microsoft® Windows Vista(TM) Édition Familiale Basique 6.0.6001.1.1252.33.1036.18.1978.1139 [GMT 2:00]
Lancé depuis: c:\users\Marie\Desktop\ComboFix.exe
AV: avast! Antivirus *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
SP: avast! Antivirus *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
(((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\tdsskiller\tdsskiller.exe
c:\users\Marie\AppData\Roaming\Adobe\plugs
.
.
((((((((((((((((((((((((((((((((((((((( Pilotes/Services )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Service_Boonty Games
.
.
((((((((((((((((((((((((((((( Fichiers créés du 2011-04-18 au 2011-05-18 ))))))))))))))))))))))))))))))))))))
.
.
2011-05-18 20:26 . 2011-05-18 20:26 0 ---ha-w- c:\users\Marie\AppData\Local\BITC767.tmp
2011-05-18 20:20 . 2011-05-18 20:20 -------- d-----w- c:\users\Default\AppData\Local\temp
2011-05-17 08:09 . 2011-04-11 07:04 7071056 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{02233873-C190-414D-8B98-24649F43D65D}\mpengine.dll
2011-05-16 21:23 . 2011-05-16 21:23 -------- d-----w- C:\_OTM
2011-05-16 16:20 . 2011-05-18 20:19 -------- d-----w- C:\tdsskiller
2011-05-16 15:31 . 2011-05-16 15:31 -------- d-----w- c:\program files\Ad-Remover
2011-05-15 20:42 . 2011-05-15 20:42 512 ----a-w- C:\PhysicalDisk0_MBR.bin
2011-05-15 20:25 . 2011-05-17 10:03 -------- d-----w- c:\program files\ZHPDiag
2011-05-11 18:45 . 2011-04-07 12:01 2409784 ----a-w- c:\program files\Windows Mail\OESpamFilter.dat
2011-05-01 20:19 . 2011-03-03 14:56 28672 ----a-w- c:\windows\system32\Apphlpdm.dll
2011-05-01 20:19 . 2011-03-03 13:01 4240384 ----a-w- c:\windows\system32\GameUXLegacyGDFs.dll
.
.
.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-03-10 16:12 . 2011-04-17 16:26 1161728 ----a-w- c:\windows\system32\mfc42u.dll
2011-03-10 16:12 . 2011-04-17 16:26 1136640 ----a-w- c:\windows\system32\mfc42.dll
2011-03-03 15:00 . 2011-04-17 16:26 738816 ----a-w- c:\windows\system32\inetcomm.dll
2011-03-03 14:56 . 2011-05-01 20:19 173056 ----a-w- c:\windows\apppatch\AcXtrnal.dll
2011-03-03 14:56 . 2011-05-01 20:19 459776 ----a-w- c:\windows\apppatch\AcSpecfc.dll
2011-03-03 14:56 . 2011-05-01 20:19 541696 ----a-w- c:\windows\apppatch\AcLayers.dll
2011-03-03 14:56 . 2011-05-01 20:19 2153984 ----a-w- c:\windows\apppatch\AcGenral.dll
2011-03-03 12:53 . 2011-04-17 16:26 2040832 ----a-w- c:\windows\system32\win32k.sys
2011-03-02 14:49 . 2011-04-17 16:26 86528 ----a-w- c:\windows\system32\dnsrslvr.dll
2011-02-23 15:04 . 2011-01-01 14:22 40648 ----a-w- c:\windows\avastSS.scr
2011-02-23 15:04 . 2009-10-18 11:04 190016 ----a-w- c:\windows\system32\aswBoot.exe
2011-02-23 14:56 . 2011-03-21 21:06 371544 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2011-02-23 14:56 . 2009-10-18 11:05 301528 ----a-w- c:\windows\system32\drivers\aswSP.sys
2011-02-23 14:55 . 2009-10-18 11:05 49240 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2011-02-23 14:55 . 2009-10-18 11:05 25432 ----a-w- c:\windows\system32\drivers\aswRdr.sys
2011-02-23 14:55 . 2009-10-18 11:04 53592 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2011-02-23 14:54 . 2009-10-18 11:05 19544 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2011-02-22 12:52 . 2011-04-17 16:26 213504 ----a-w- c:\windows\system32\drivers\mrxsmb10.sys
2011-02-22 12:52 . 2011-04-17 16:26 79360 ----a-w- c:\windows\system32\drivers\mrxsmb20.sys
2011-02-22 12:51 . 2011-04-17 16:26 105984 ----a-w- c:\windows\system32\drivers\mrxsmb.sys
2011-02-22 12:51 . 2011-04-17 16:26 69632 ----a-w- c:\windows\system32\drivers\bowser.sys
2011-02-22 06:21 . 2011-04-17 16:26 916480 ----a-w- c:\windows\system32\wininet.dll
2011-02-22 06:17 . 2011-04-17 16:26 43520 ----a-w- c:\windows\system32\licmgr10.dll
2011-02-22 06:16 . 2011-04-17 16:26 1469440 ----a-w- c:\windows\system32\inetcpl.cpl
2011-02-22 06:16 . 2011-04-17 16:26 71680 ----a-w- c:\windows\system32\iesetup.dll
2011-02-22 06:16 . 2011-04-17 16:26 109056 ----a-w- c:\windows\system32\iesysprep.dll
2011-02-22 05:20 . 2011-04-17 16:26 385024 ----a-w- c:\windows\system32\html.iec
2011-02-22 04:43 . 2011-04-17 16:26 133632 ----a-w- c:\windows\system32\ieUnatt.exe
2011-02-22 04:42 . 2011-04-17 16:26 1638912 ----a-w- c:\windows\system32\mshtml.tlb
2011-02-18 13:31 . 2011-04-17 16:26 304640 ----a-w- c:\windows\system32\drivers\srv.sys
2011-02-18 13:31 . 2011-04-17 16:26 146432 ----a-w- c:\windows\system32\drivers\srv2.sys
2011-02-18 13:31 . 2011-04-17 16:26 102400 ----a-w- c:\windows\system32\drivers\srvnet.sys
.
.
((((((((((((((((((((((((((((((((( Points de chargement Reg ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2011-02-23 15:04 122512 ----a-w- c:\program files\Alwil Software\Avast5\ashShell.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"LightScribe Control Panel"="c:\program files\Common Files\LightScribe\LightScribeControlPanel.exe" [2008-06-09 2363392]
"HPAdvisor"="c:\program files\Hewlett-Packard\HP Advisor\HPAdvisor.exe" [2008-11-18 966656]
"msnmsgr"="c:\program files\Windows Live\Messenger\msnmsgr.exe" [2010-04-16 3872080]
"swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2009-09-18 39408]
"SpybotSD TeaTimer"="c:\program files\Spybot - Search & Destroy\TeaTimer.exe" [2009-03-05 2260480]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2008-10-28 150040]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2008-10-28 178712]
"Persistence"="c:\windows\system32\igfxpers.exe" [2008-10-28 154136]
"SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2008-12-04 1410344]
"SysTrayApp"="c:\program files\IDT\WDM\sttray.exe" [2009-01-20 483420]
"QPService"="c:\program files\HP\QuickPlay\QPService.exe" [2008-09-23 468264]
"UpdateLBPShortCut"="c:\program files\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe" [2008-06-13 210216]
"UpdatePSTShortCut"="c:\program files\CyberLink\DVD Suite\MUITransfer\MUIStartMenu.exe" [2008-12-24 210216]
"UCam_Menu"="c:\program files\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe" [2008-12-03 218408]
"QlbCtrl.exe"="c:\program files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe" [2008-10-10 206128]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2008-06-12 34672]
"UpdateP2GoShortCut"="c:\program files\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe" [2008-10-30 210216]
"UpdatePDIRShortCut"="c:\program files\CyberLink\PowerDirector\MUITransfer\MUIStartMenu.exe" [2008-06-13 210216]
"HP Health Check Scheduler"="c:\program files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe" [2008-10-09 75008]
"HP Software Update"="c:\program files\HP\HP Software Update\HPWuSchd2.exe" [2008-03-25 49152]
"WirelessAssistant"="c:\program files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe" [2008-12-08 432432]
"hpqSRMon"="c:\program files\HP\Digital Imaging\bin\hpqSRMon.exe" [2008-03-13 81920]
"QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2009-11-10 417792]
"iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2009-11-12 141600]
"SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe" [2010-02-03 149280]
"TkBellExe"="c:\program files\Common Files\Real\Update_OB\realsched.exe" [2010-08-22 202256]
"avast5"="c:\program files\Alwil Software\Avast5\avastUI.exe" [2011-02-23 3451496]
"Malwarebytes' Anti-Malware (reboot)"="c:\program files\Malwarebytes' Anti-Malware\mbam.exe" [2010-12-20 963976]
.
c:\users\Marie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
OpenOffice.org 3.1.lnk - c:\program files\OpenOffice.org 3\program\quickstart.exe [2009-8-18 384000]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
HP Digital Imaging Monitor.lnk - c:\program files\HP\Digital Imaging\bin\hpqtra08.exe [2008-3-25 214360]
McAfee Security Scan Plus.lnk - c:\program files\McAfee Security Scan\2.0.181\SSScheduler.exe [2010-1-15 255536]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"
.
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R2 gupdate1ca9ec4367c60e0;Service Google Update (gupdate1ca9ec4367c60e0);c:\program files\Google\Update\GoogleUpdate.exe [2010-01-26 133104]
R3 Com4QLBEx;Com4QLBEx;c:\program files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe [2008-12-04 222512]
R3 gupdatem;Service Google Update (gupdatem);c:\program files\Google\Update\GoogleUpdate.exe [2010-01-26 133104]
R3 maconfservice;Ma-Config Service;c:\program files\ma-config.com\maconfservice.exe [2011-01-24 310640]
R3 massfilter;ZTE Mass Storage Filter Driver;c:\windows\system32\drivers\massfilter.sys [2008-09-15 7168]
R3 WPFFontCache_v0400;Cache de police de Windows Presentation Foundation 4.0.0.0;c:\windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2010-03-18 753504]
R3 ZTEusbnet;ZTE USB-NDIS miniport;c:\windows\system32\DRIVERS\ZTEusbnet.sys [2008-09-15 110080]
R3 ZTEusbvoice;ZTE VoUSB Port;c:\windows\system32\DRIVERS\ZTEusbvoice.sys [2008-09-15 104960]
S1 aswSnx;aswSnx; [x]
S1 aswSP;aswSP; [x]
S2 AESTFilters;Andrea ST Filters Service;c:\windows\System32\DriverStore\FileRepository\stwrt.inf_fa807195\aestsrv.exe [2009-01-20 81920]
S2 aswFsBlk;aswFsBlk; [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2011-02-23 53592]
S2 ezSharedSvc;Easybits Shared Services for Windows;c:\windows\system32\svchost.exe [2008-01-21 21504]
S2 Recovery Service for Windows;Recovery Service for Windows;c:\program files\SMINST\BLService.exe [2008-12-23 365952]
S2 SBSDWSCService;SBSD Security Center Service;c:\program files\Spybot - Search & Destroy\SDWinSec.exe [2009-01-26 1153368]
S3 IntcHdmiAddService;Intel(R) High Definition Audio HDMI;c:\windows\system32\drivers\IntcHdmi.sys [2008-09-22 112128]
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
LocalServiceNoNetwork REG_MULTI_SZ PLA DPS BFE mpssvc
HPZ12 REG_MULTI_SZ Pml Driver HPZ12 Net Driver HPZ12
hpdevmgmt REG_MULTI_SZ hpqcxs08 hpqddsvc
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
ezSharedSvc
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}]
2008-06-09 08:14 451872 ----a-w- c:\program files\Common Files\LightScribe\LSRunOnce.exe
.
Contenu du dossier 'Tâches planifiées'
.
2011-05-18 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-01-26 20:14]
.
2011-05-18 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-01-26 20:14]
.
.
------- Examen supplémentaire -------
.
uStart Page = hxxp://www.google.com/
uInternet Settings,ProxyOverride = *.local
IE: &Recherche AOL Toolbar - c:\programdata\AOL\ieToolbar\resources\fr-FR\local\search.html
IE: E&xporter vers Microsoft Excel - c:\progra~1\MICROS~3\Office12\EXCEL.EXE/3000
IE: Google Sidewiki... - c:\program files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_D183CA64F05FDD98.dll/cmsidewiki.html
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-05-18 22:24
Windows 6.0.6001 Service Pack 1 NTFS
.
Recherche de processus cachés ...
.
Recherche d'éléments en démarrage automatique cachés ...
.
Recherche de fichiers cachés ...
.
Scan terminé avec succès
Fichiers cachés: 0
.
**************************************************************************
.
--------------------- CLES DE REGISTRE BLOQUEES ---------------------
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil10l_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil10l_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
@Denied: (A 2) (Everyone)
@="IFlashBroker4"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
------------------------ Autres processus actifs ------------------------
.
c:\windows\System32\DriverStore\FileRepository\stwrt.inf_fa807195\STacSV.exe
c:\program files\Alwil Software\Avast5\AvastSvc.exe
c:\program files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
c:\program files\Bonjour\mDNSResponder.exe
c:\program files\Common Files\LightScribe\LSSrvc.exe
c:\program files\CyberLink\Shared files\RichVideo.exe
c:\program files\Yahoo!\SoftwareUpdate\YahooAUService.exe
c:\windows\system32\conime.exe
c:\windows\system32\wbem\unsecapp.exe
c:\program files\Hewlett-Packard\HP Health Check\hphc_service.exe
.
**************************************************************************
.
Heure de fin: 2011-05-18 22:33:17 - La machine a redémarré
ComboFix-quarantined-files.txt 2011-05-18 20:33
.
Avant-CF: 88 201 015 296 octets libres
Après-CF: 87 920 435 200 octets libres
.
Current=1 Default=1 Failed=0 LastKnownGood=11 Sets=1,2,3,4,5,6,7,8,9,11
- - End Of File - - 2CE2F238F10E434022EBA26DA3E3B112
ComboFix 11-05-17.03 - Marie 18/05/2011 22:12:31.1.1 - x86
Microsoft® Windows Vista(TM) Édition Familiale Basique 6.0.6001.1.1252.33.1036.18.1978.1139 [GMT 2:00]
Lancé depuis: c:\users\Marie\Desktop\ComboFix.exe
AV: avast! Antivirus *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
SP: avast! Antivirus *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
(((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\tdsskiller\tdsskiller.exe
c:\users\Marie\AppData\Roaming\Adobe\plugs
.
.
((((((((((((((((((((((((((((((((((((((( Pilotes/Services )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Service_Boonty Games
.
.
((((((((((((((((((((((((((((( Fichiers créés du 2011-04-18 au 2011-05-18 ))))))))))))))))))))))))))))))))))))
.
.
2011-05-18 20:26 . 2011-05-18 20:26 0 ---ha-w- c:\users\Marie\AppData\Local\BITC767.tmp
2011-05-18 20:20 . 2011-05-18 20:20 -------- d-----w- c:\users\Default\AppData\Local\temp
2011-05-17 08:09 . 2011-04-11 07:04 7071056 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{02233873-C190-414D-8B98-24649F43D65D}\mpengine.dll
2011-05-16 21:23 . 2011-05-16 21:23 -------- d-----w- C:\_OTM
2011-05-16 16:20 . 2011-05-18 20:19 -------- d-----w- C:\tdsskiller
2011-05-16 15:31 . 2011-05-16 15:31 -------- d-----w- c:\program files\Ad-Remover
2011-05-15 20:42 . 2011-05-15 20:42 512 ----a-w- C:\PhysicalDisk0_MBR.bin
2011-05-15 20:25 . 2011-05-17 10:03 -------- d-----w- c:\program files\ZHPDiag
2011-05-11 18:45 . 2011-04-07 12:01 2409784 ----a-w- c:\program files\Windows Mail\OESpamFilter.dat
2011-05-01 20:19 . 2011-03-03 14:56 28672 ----a-w- c:\windows\system32\Apphlpdm.dll
2011-05-01 20:19 . 2011-03-03 13:01 4240384 ----a-w- c:\windows\system32\GameUXLegacyGDFs.dll
.
.
.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-03-10 16:12 . 2011-04-17 16:26 1161728 ----a-w- c:\windows\system32\mfc42u.dll
2011-03-10 16:12 . 2011-04-17 16:26 1136640 ----a-w- c:\windows\system32\mfc42.dll
2011-03-03 15:00 . 2011-04-17 16:26 738816 ----a-w- c:\windows\system32\inetcomm.dll
2011-03-03 14:56 . 2011-05-01 20:19 173056 ----a-w- c:\windows\apppatch\AcXtrnal.dll
2011-03-03 14:56 . 2011-05-01 20:19 459776 ----a-w- c:\windows\apppatch\AcSpecfc.dll
2011-03-03 14:56 . 2011-05-01 20:19 541696 ----a-w- c:\windows\apppatch\AcLayers.dll
2011-03-03 14:56 . 2011-05-01 20:19 2153984 ----a-w- c:\windows\apppatch\AcGenral.dll
2011-03-03 12:53 . 2011-04-17 16:26 2040832 ----a-w- c:\windows\system32\win32k.sys
2011-03-02 14:49 . 2011-04-17 16:26 86528 ----a-w- c:\windows\system32\dnsrslvr.dll
2011-02-23 15:04 . 2011-01-01 14:22 40648 ----a-w- c:\windows\avastSS.scr
2011-02-23 15:04 . 2009-10-18 11:04 190016 ----a-w- c:\windows\system32\aswBoot.exe
2011-02-23 14:56 . 2011-03-21 21:06 371544 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2011-02-23 14:56 . 2009-10-18 11:05 301528 ----a-w- c:\windows\system32\drivers\aswSP.sys
2011-02-23 14:55 . 2009-10-18 11:05 49240 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2011-02-23 14:55 . 2009-10-18 11:05 25432 ----a-w- c:\windows\system32\drivers\aswRdr.sys
2011-02-23 14:55 . 2009-10-18 11:04 53592 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2011-02-23 14:54 . 2009-10-18 11:05 19544 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2011-02-22 12:52 . 2011-04-17 16:26 213504 ----a-w- c:\windows\system32\drivers\mrxsmb10.sys
2011-02-22 12:52 . 2011-04-17 16:26 79360 ----a-w- c:\windows\system32\drivers\mrxsmb20.sys
2011-02-22 12:51 . 2011-04-17 16:26 105984 ----a-w- c:\windows\system32\drivers\mrxsmb.sys
2011-02-22 12:51 . 2011-04-17 16:26 69632 ----a-w- c:\windows\system32\drivers\bowser.sys
2011-02-22 06:21 . 2011-04-17 16:26 916480 ----a-w- c:\windows\system32\wininet.dll
2011-02-22 06:17 . 2011-04-17 16:26 43520 ----a-w- c:\windows\system32\licmgr10.dll
2011-02-22 06:16 . 2011-04-17 16:26 1469440 ----a-w- c:\windows\system32\inetcpl.cpl
2011-02-22 06:16 . 2011-04-17 16:26 71680 ----a-w- c:\windows\system32\iesetup.dll
2011-02-22 06:16 . 2011-04-17 16:26 109056 ----a-w- c:\windows\system32\iesysprep.dll
2011-02-22 05:20 . 2011-04-17 16:26 385024 ----a-w- c:\windows\system32\html.iec
2011-02-22 04:43 . 2011-04-17 16:26 133632 ----a-w- c:\windows\system32\ieUnatt.exe
2011-02-22 04:42 . 2011-04-17 16:26 1638912 ----a-w- c:\windows\system32\mshtml.tlb
2011-02-18 13:31 . 2011-04-17 16:26 304640 ----a-w- c:\windows\system32\drivers\srv.sys
2011-02-18 13:31 . 2011-04-17 16:26 146432 ----a-w- c:\windows\system32\drivers\srv2.sys
2011-02-18 13:31 . 2011-04-17 16:26 102400 ----a-w- c:\windows\system32\drivers\srvnet.sys
.
.
((((((((((((((((((((((((((((((((( Points de chargement Reg ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2011-02-23 15:04 122512 ----a-w- c:\program files\Alwil Software\Avast5\ashShell.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"LightScribe Control Panel"="c:\program files\Common Files\LightScribe\LightScribeControlPanel.exe" [2008-06-09 2363392]
"HPAdvisor"="c:\program files\Hewlett-Packard\HP Advisor\HPAdvisor.exe" [2008-11-18 966656]
"msnmsgr"="c:\program files\Windows Live\Messenger\msnmsgr.exe" [2010-04-16 3872080]
"swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2009-09-18 39408]
"SpybotSD TeaTimer"="c:\program files\Spybot - Search & Destroy\TeaTimer.exe" [2009-03-05 2260480]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2008-10-28 150040]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2008-10-28 178712]
"Persistence"="c:\windows\system32\igfxpers.exe" [2008-10-28 154136]
"SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2008-12-04 1410344]
"SysTrayApp"="c:\program files\IDT\WDM\sttray.exe" [2009-01-20 483420]
"QPService"="c:\program files\HP\QuickPlay\QPService.exe" [2008-09-23 468264]
"UpdateLBPShortCut"="c:\program files\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe" [2008-06-13 210216]
"UpdatePSTShortCut"="c:\program files\CyberLink\DVD Suite\MUITransfer\MUIStartMenu.exe" [2008-12-24 210216]
"UCam_Menu"="c:\program files\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe" [2008-12-03 218408]
"QlbCtrl.exe"="c:\program files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe" [2008-10-10 206128]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2008-06-12 34672]
"UpdateP2GoShortCut"="c:\program files\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe" [2008-10-30 210216]
"UpdatePDIRShortCut"="c:\program files\CyberLink\PowerDirector\MUITransfer\MUIStartMenu.exe" [2008-06-13 210216]
"HP Health Check Scheduler"="c:\program files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe" [2008-10-09 75008]
"HP Software Update"="c:\program files\HP\HP Software Update\HPWuSchd2.exe" [2008-03-25 49152]
"WirelessAssistant"="c:\program files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe" [2008-12-08 432432]
"hpqSRMon"="c:\program files\HP\Digital Imaging\bin\hpqSRMon.exe" [2008-03-13 81920]
"QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2009-11-10 417792]
"iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2009-11-12 141600]
"SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe" [2010-02-03 149280]
"TkBellExe"="c:\program files\Common Files\Real\Update_OB\realsched.exe" [2010-08-22 202256]
"avast5"="c:\program files\Alwil Software\Avast5\avastUI.exe" [2011-02-23 3451496]
"Malwarebytes' Anti-Malware (reboot)"="c:\program files\Malwarebytes' Anti-Malware\mbam.exe" [2010-12-20 963976]
.
c:\users\Marie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
OpenOffice.org 3.1.lnk - c:\program files\OpenOffice.org 3\program\quickstart.exe [2009-8-18 384000]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
HP Digital Imaging Monitor.lnk - c:\program files\HP\Digital Imaging\bin\hpqtra08.exe [2008-3-25 214360]
McAfee Security Scan Plus.lnk - c:\program files\McAfee Security Scan\2.0.181\SSScheduler.exe [2010-1-15 255536]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"
.
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R2 gupdate1ca9ec4367c60e0;Service Google Update (gupdate1ca9ec4367c60e0);c:\program files\Google\Update\GoogleUpdate.exe [2010-01-26 133104]
R3 Com4QLBEx;Com4QLBEx;c:\program files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe [2008-12-04 222512]
R3 gupdatem;Service Google Update (gupdatem);c:\program files\Google\Update\GoogleUpdate.exe [2010-01-26 133104]
R3 maconfservice;Ma-Config Service;c:\program files\ma-config.com\maconfservice.exe [2011-01-24 310640]
R3 massfilter;ZTE Mass Storage Filter Driver;c:\windows\system32\drivers\massfilter.sys [2008-09-15 7168]
R3 WPFFontCache_v0400;Cache de police de Windows Presentation Foundation 4.0.0.0;c:\windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2010-03-18 753504]
R3 ZTEusbnet;ZTE USB-NDIS miniport;c:\windows\system32\DRIVERS\ZTEusbnet.sys [2008-09-15 110080]
R3 ZTEusbvoice;ZTE VoUSB Port;c:\windows\system32\DRIVERS\ZTEusbvoice.sys [2008-09-15 104960]
S1 aswSnx;aswSnx; [x]
S1 aswSP;aswSP; [x]
S2 AESTFilters;Andrea ST Filters Service;c:\windows\System32\DriverStore\FileRepository\stwrt.inf_fa807195\aestsrv.exe [2009-01-20 81920]
S2 aswFsBlk;aswFsBlk; [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2011-02-23 53592]
S2 ezSharedSvc;Easybits Shared Services for Windows;c:\windows\system32\svchost.exe [2008-01-21 21504]
S2 Recovery Service for Windows;Recovery Service for Windows;c:\program files\SMINST\BLService.exe [2008-12-23 365952]
S2 SBSDWSCService;SBSD Security Center Service;c:\program files\Spybot - Search & Destroy\SDWinSec.exe [2009-01-26 1153368]
S3 IntcHdmiAddService;Intel(R) High Definition Audio HDMI;c:\windows\system32\drivers\IntcHdmi.sys [2008-09-22 112128]
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
LocalServiceNoNetwork REG_MULTI_SZ PLA DPS BFE mpssvc
HPZ12 REG_MULTI_SZ Pml Driver HPZ12 Net Driver HPZ12
hpdevmgmt REG_MULTI_SZ hpqcxs08 hpqddsvc
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
ezSharedSvc
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}]
2008-06-09 08:14 451872 ----a-w- c:\program files\Common Files\LightScribe\LSRunOnce.exe
.
Contenu du dossier 'Tâches planifiées'
.
2011-05-18 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-01-26 20:14]
.
2011-05-18 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-01-26 20:14]
.
.
------- Examen supplémentaire -------
.
uStart Page = hxxp://www.google.com/
uInternet Settings,ProxyOverride = *.local
IE: &Recherche AOL Toolbar - c:\programdata\AOL\ieToolbar\resources\fr-FR\local\search.html
IE: E&xporter vers Microsoft Excel - c:\progra~1\MICROS~3\Office12\EXCEL.EXE/3000
IE: Google Sidewiki... - c:\program files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_D183CA64F05FDD98.dll/cmsidewiki.html
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-05-18 22:24
Windows 6.0.6001 Service Pack 1 NTFS
.
Recherche de processus cachés ...
.
Recherche d'éléments en démarrage automatique cachés ...
.
Recherche de fichiers cachés ...
.
Scan terminé avec succès
Fichiers cachés: 0
.
**************************************************************************
.
--------------------- CLES DE REGISTRE BLOQUEES ---------------------
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil10l_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil10l_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
@Denied: (A 2) (Everyone)
@="IFlashBroker4"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
------------------------ Autres processus actifs ------------------------
.
c:\windows\System32\DriverStore\FileRepository\stwrt.inf_fa807195\STacSV.exe
c:\program files\Alwil Software\Avast5\AvastSvc.exe
c:\program files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
c:\program files\Bonjour\mDNSResponder.exe
c:\program files\Common Files\LightScribe\LSSrvc.exe
c:\program files\CyberLink\Shared files\RichVideo.exe
c:\program files\Yahoo!\SoftwareUpdate\YahooAUService.exe
c:\windows\system32\conime.exe
c:\windows\system32\wbem\unsecapp.exe
c:\program files\Hewlett-Packard\HP Health Check\hphc_service.exe
.
**************************************************************************
.
Heure de fin: 2011-05-18 22:33:17 - La machine a redémarré
ComboFix-quarantined-files.txt 2011-05-18 20:33
.
Avant-CF: 88 201 015 296 octets libres
Après-CF: 87 920 435 200 octets libres
.
Current=1 Default=1 Failed=0 LastKnownGood=11 Sets=1,2,3,4,5,6,7,8,9,11
- - End Of File - - 2CE2F238F10E434022EBA26DA3E3B112
et le rapport roguekiller :
RogueKiller V4.0.1 by Tigzy
contact at http://www.sur-la-toile.com
mail: tigzyRK<at>gmail<dot>com
Feedback: http://www.sur-la-toile.com/discussion-193725-1-BRogueKillerD-Remontees.html
Operating System: Windows Vista (6.0.6001 Service Pack 1) 32 bits version
Started in : Normal mode
User: Marie [Admin rights]
Mode: Remove -- Time : 18/05/2011 22:48:11
Bad processes: 0
Registry Entries: 0
HOSTS File:
127.0.0.1 localhost
Finished
ça y est c'est fini :-) ???!!!
RogueKiller V4.0.1 by Tigzy
contact at http://www.sur-la-toile.com
mail: tigzyRK<at>gmail<dot>com
Feedback: http://www.sur-la-toile.com/discussion-193725-1-BRogueKillerD-Remontees.html
Operating System: Windows Vista (6.0.6001 Service Pack 1) 32 bits version
Started in : Normal mode
User: Marie [Admin rights]
Mode: Remove -- Time : 18/05/2011 22:48:11
Bad processes: 0
Registry Entries: 0
HOSTS File:
127.0.0.1 localhost
Finished
ça y est c'est fini :-) ???!!!
Re,
On a presque fini, juste on va passer Malwarebytes avant de finaliser :)
* Lance Malwarebytes
* Fais la mise a jour (en cliquant sur l'onglet mise à jour)
* Branche tes sources de données externes à ton PC, (clé USB, disque dur externe, etc...) sans les ouvrir
* Puis vas dans l'onglet "Recherche", coche >>Exécuter un examen complet
* puis "Rechercher"
* Sélectionnes tes disques durs" puis clique sur "Lancer l'examen"
* A la fin du scan, clique sur Afficher les résultats puis sur Enregistrer le rapport
*Si MalwareBytes' détecte des infections, clique sur ==>Afficher les résultats, puis sur ==>Supprimer la sélection
* S'il t' es demandé de redémarrer, clique sur "oui "
* aprés la suppression(s) de ou des infections trouvées --> poste le rapport ici
!!! Ne pas vider la quarantaine de MBAM sans avis !!!
@+
-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*
Membre, Contributeur
H.F. : Fish66
-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*
On a presque fini, juste on va passer Malwarebytes avant de finaliser :)
* Lance Malwarebytes
* Fais la mise a jour (en cliquant sur l'onglet mise à jour)
* Branche tes sources de données externes à ton PC, (clé USB, disque dur externe, etc...) sans les ouvrir
* Puis vas dans l'onglet "Recherche", coche >>Exécuter un examen complet
* puis "Rechercher"
* Sélectionnes tes disques durs" puis clique sur "Lancer l'examen"
* A la fin du scan, clique sur Afficher les résultats puis sur Enregistrer le rapport
*Si MalwareBytes' détecte des infections, clique sur ==>Afficher les résultats, puis sur ==>Supprimer la sélection
* S'il t' es demandé de redémarrer, clique sur "oui "
* aprés la suppression(s) de ou des infections trouvées --> poste le rapport ici
!!! Ne pas vider la quarantaine de MBAM sans avis !!!
@+
-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*
Membre, Contributeur
H.F. : Fish66
-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*
Salut
Juste pour signaler que RogueKiller n'est pas du tout à jour!
C'est une version qui date du 28/02/2011 !
Juste pour signaler que RogueKiller n'est pas du tout à jour!
C'est une version qui date du 28/02/2011 !
Vous n’avez pas trouvé la réponse que vous recherchez ?
Posez votre question
j'ai refait avec le lien le rapport roguekiller est donc le suivant :
RogueKiller V5.1.4 [18/05/2011] par Tigzy
contact sur http://www.sur-la-toile.com
mail: tigzyRK<at>gmail<dot>com
Remontees: http://www.sur-la-toile.com/discussion-193725-1-BRogueKillerD-Remontees.html
Systeme d'exploitation: Windows Vista (6.0.6001 Service Pack 1) 32 bits version
Demarrage : Mode normal
Utilisateur: Marie [Droits d'admin]
Mode: Suppression -- Date : 19/05/2011 17:58:07
Processus malicieux: 0
Entrees de registre: 0
Fichier HOSTS:
127.0.0.1 localhost
Termine : << RKreport[1].txt >>
RKreport[1].txt
est ce que je passe a malwarebytes?
RogueKiller V5.1.4 [18/05/2011] par Tigzy
contact sur http://www.sur-la-toile.com
mail: tigzyRK<at>gmail<dot>com
Remontees: http://www.sur-la-toile.com/discussion-193725-1-BRogueKillerD-Remontees.html
Systeme d'exploitation: Windows Vista (6.0.6001 Service Pack 1) 32 bits version
Demarrage : Mode normal
Utilisateur: Marie [Droits d'admin]
Mode: Suppression -- Date : 19/05/2011 17:58:07
Processus malicieux: 0
Entrees de registre: 0
Fichier HOSTS:
127.0.0.1 localhost
Termine : << RKreport[1].txt >>
RKreport[1].txt
est ce que je passe a malwarebytes?
Salut,
Donc stp passe à Malwarebytes comme demandée ICI
Ensuite
Un dernier rapport ZHPDiag
@+
-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*
Membre, Contributeur
H.F. : Fish66
-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*
Donc stp passe à Malwarebytes comme demandée ICI
Ensuite
Un dernier rapport ZHPDiag
@+
-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*
Membre, Contributeur
H.F. : Fish66
-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*
alors voici le rapport de malwarebytes, je ferai zhpdiag ce soir :
Malwarebytes' Anti-Malware 1.50.1.1100
www.malwarebytes.org
Version de la base de données: 6640
Windows 6.0.6001 Service Pack 1
Internet Explorer 8.0.6001.19048
22/05/2011 17:17:46
mbam-log-2011-05-22 (17-17-46).txt
Type d'examen: Examen complet (C:\|D:\|)
Elément(s) analysé(s): 335888
Temps écoulé: 58 minute(s), 28 seconde(s)
Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 0
Valeur(s) du Registre infectée(s): 0
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 0
Fichier(s) infecté(s): 0
Processus mémoire infecté(s):
(Aucun élément nuisible détecté)
Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)
Clé(s) du Registre infectée(s):
(Aucun élément nuisible détecté)
Valeur(s) du Registre infectée(s):
(Aucun élément nuisible détecté)
Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)
Dossier(s) infecté(s):
(Aucun élément nuisible détecté)
Fichier(s) infecté(s):
(Aucun élément nuisible détecté)
Malwarebytes' Anti-Malware 1.50.1.1100
www.malwarebytes.org
Version de la base de données: 6640
Windows 6.0.6001 Service Pack 1
Internet Explorer 8.0.6001.19048
22/05/2011 17:17:46
mbam-log-2011-05-22 (17-17-46).txt
Type d'examen: Examen complet (C:\|D:\|)
Elément(s) analysé(s): 335888
Temps écoulé: 58 minute(s), 28 seconde(s)
Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 0
Valeur(s) du Registre infectée(s): 0
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 0
Fichier(s) infecté(s): 0
Processus mémoire infecté(s):
(Aucun élément nuisible détecté)
Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)
Clé(s) du Registre infectée(s):
(Aucun élément nuisible détecté)
Valeur(s) du Registre infectée(s):
(Aucun élément nuisible détecté)
Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)
Dossier(s) infecté(s):
(Aucun élément nuisible détecté)
Fichier(s) infecté(s):
(Aucun élément nuisible détecté)
désolée, je n'avais pas internet hier pour poster le rapport zhp.
du coup voici le lien ;
Voici le lien à donner à vos correspondants afin que ces derniers puissent accéder au document partagé : http://pjjoint.malekal.com/files.php?id=cf72f12d6d796
Acceder au document : http://pjjoint.malekal.com/files.php?read=cf72f12d6d796
du coup voici le lien ;
Voici le lien à donner à vos correspondants afin que ces derniers puissent accéder au document partagé : http://pjjoint.malekal.com/files.php?id=cf72f12d6d796
Acceder au document : http://pjjoint.malekal.com/files.php?read=cf72f12d6d796
Re,
* Télécharge, sur le Bureau, MBRCheck (par a_d_13) en cliquant sur l'un de ces liens:
* http://www.geekstogo.com/forum/files/file/441-mbrcheck/
* https://download.bleepingcomputer.com/rootrepeal/MBRCheck.exe
* http://www.kernelmode.info/MBRCheck.exe
* Fermer tout et cliquer sur MBRCheck.exe
* S'il te demande de taper "Y or N", tapes Y puis valider en tapant sur la touche entrée de ton clavier,
* S'il te demande de taper sur la touche "entrée" seulement, fais le
* S'il te demande 1, 2 ou 3, Appuie sur 2
* Un rapport s'ouvre en fin de scan et sera automatiquement enregistré sur le Bureau. Il sera du type MBRCheck_AA.JJ.MM_hh.mm.ss.txt (i.e. MBRCheck_07.21.10_18.08.06.txt).
* Télécharge, sur le Bureau, MBRCheck (par a_d_13) en cliquant sur l'un de ces liens:
* http://www.geekstogo.com/forum/files/file/441-mbrcheck/
* https://download.bleepingcomputer.com/rootrepeal/MBRCheck.exe
* http://www.kernelmode.info/MBRCheck.exe
* Fermer tout et cliquer sur MBRCheck.exe
* S'il te demande de taper "Y or N", tapes Y puis valider en tapant sur la touche entrée de ton clavier,
* S'il te demande de taper sur la touche "entrée" seulement, fais le
* S'il te demande 1, 2 ou 3, Appuie sur 2
* Un rapport s'ouvre en fin de scan et sera automatiquement enregistré sur le Bureau. Il sera du type MBRCheck_AA.JJ.MM_hh.mm.ss.txt (i.e. MBRCheck_07.21.10_18.08.06.txt).
Voilà le rapport :
MBRCheck, version 1.2.3
(c) 2010, AD
Command-line:
Windows Version: Windows Vista Home Basic Edition
Windows Information: Service Pack 1 (build 6001), 32-bit
Base Board Manufacturer: Quanta
BIOS Manufacturer: Hewlett-Packard
System Manufacturer: Hewlett-Packard
System Product Name: Compaq Presario CQ71 Notebook PC
Logical Drives Mask: 0x0000001c
Kernel Drivers (total 198):
0x82A15000 \SystemRoot\system32\ntkrnlpa.exe
0x82DD0000 \SystemRoot\system32\hal.dll
0x80408000 \SystemRoot\system32\kdcom.dll
0x80410000 \SystemRoot\system32\mcupdate_GenuineIntel.dll
0x80470000 \SystemRoot\system32\PSHED.dll
0x80481000 \SystemRoot\system32\BOOTVID.dll
0x80489000 \SystemRoot\system32\CLFS.SYS
0x804CA000 \SystemRoot\system32\CI.dll
0x80607000 \SystemRoot\system32\drivers\Wdf01000.sys
0x80683000 \SystemRoot\system32\drivers\WDFLDR.SYS
0x80690000 \SystemRoot\system32\drivers\acpi.sys
0x806D6000 \SystemRoot\system32\drivers\WMILIB.SYS
0x806DF000 \SystemRoot\system32\drivers\msisadrv.sys
0x806E7000 \SystemRoot\system32\drivers\pci.sys
0x8070E000 \SystemRoot\system32\drivers\isapnp.sys
0x8071D000 \SystemRoot\system32\drivers\mpio.sys
0x80739000 \SystemRoot\System32\drivers\partmgr.sys
0x80748000 \SystemRoot\system32\DRIVERS\compbatt.sys
0x8074B000 \SystemRoot\system32\DRIVERS\BATTC.SYS
0x80755000 \SystemRoot\system32\drivers\volmgr.sys
0x80764000 \SystemRoot\System32\drivers\volmgrx.sys
0x807AE000 \SystemRoot\system32\drivers\intelide.sys
0x807B5000 \SystemRoot\system32\drivers\PCIIDEX.SYS
0x807C3000 \SystemRoot\system32\drivers\aliide.sys
0x807CA000 \SystemRoot\system32\drivers\amdide.sys
0x807D1000 \SystemRoot\system32\drivers\cmdide.sys
0x807D9000 \SystemRoot\System32\drivers\mountmgr.sys
0x805AA000 \SystemRoot\system32\drivers\msdsm.sys
0x805C4000 \SystemRoot\system32\drivers\nvraid.sys
0x805DF000 \SystemRoot\system32\drivers\CLASSPNP.SYS
0x807E9000 \SystemRoot\system32\drivers\pciide.sys
0x807F0000 \SystemRoot\system32\drivers\viaide.sys
0x8880A000 \SystemRoot\system32\drivers\iastorv.sys
0x888AB000 \SystemRoot\system32\drivers\atapi.sys
0x888B3000 \SystemRoot\system32\drivers\ataport.SYS
0x888D1000 \SystemRoot\system32\drivers\lsi_scsi.sys
0x888EB000 \SystemRoot\system32\drivers\storport.sys
0x8892C000 \SystemRoot\system32\drivers\msahci.sys
0x88936000 \SystemRoot\system32\drivers\hpcisss.sys
0x88941000 \SystemRoot\system32\drivers\adp94xx.sys
0x889AB000 \SystemRoot\system32\drivers\adpahci.sys
0x88A09000 \SystemRoot\system32\drivers\adpu160m.sys
0x88A24000 \SystemRoot\system32\drivers\SCSIPORT.SYS
0x88A4A000 \SystemRoot\system32\drivers\adpu320.sys
0x88A70000 \SystemRoot\system32\drivers\djsvs.sys
0x88A84000 \SystemRoot\system32\drivers\arc.sys
0x88A9A000 \SystemRoot\system32\drivers\arcsas.sys
0x88AB0000 \SystemRoot\system32\drivers\elxstor.sys
0x88B44000 \SystemRoot\system32\drivers\i2omp.sys
0x88B4E000 \SystemRoot\system32\drivers\iirsp.sys
0x88B5E000 \SystemRoot\system32\drivers\iteatapi.sys
0x88B6A000 \SystemRoot\system32\drivers\iteraid.sys
0x88B76000 \SystemRoot\system32\drivers\lsi_fc.sys
0x88B90000 \SystemRoot\system32\drivers\lsi_sas.sys
0x88BA8000 \SystemRoot\system32\drivers\megasas.sys
0x88C0F000 \SystemRoot\system32\drivers\megasr.sys
0x88CC6000 \SystemRoot\system32\drivers\mraid35x.sys
0x88CD1000 \SystemRoot\system32\drivers\nfrd960.sys
0x88CDF000 \SystemRoot\system32\drivers\nvstor.sys
0x88E0C000 \SystemRoot\system32\drivers\ql2300.sys
0x88F44000 \SystemRoot\system32\drivers\ql40xx.sys
0x88F99000 \SystemRoot\system32\drivers\sisraid2.sys
0x88FA6000 \SystemRoot\system32\drivers\sisraid4.sys
0x88FBB000 \SystemRoot\system32\drivers\symc8xx.sys
0x88FC7000 \SystemRoot\system32\drivers\sym_hi.sys
0x88FD2000 \SystemRoot\system32\drivers\sym_u3.sys
0x88CEC000 \SystemRoot\system32\drivers\uliahci.sys
0x88FDD000 \SystemRoot\system32\drivers\ulsata.sys
0x88D28000 \SystemRoot\system32\drivers\ulsata2.sys
0x88D54000 \SystemRoot\system32\drivers\vsmraid.sys
0x88D75000 \SystemRoot\system32\drivers\fltmgr.sys
0x88DA7000 \SystemRoot\system32\drivers\fileinfo.sys
0x8900C000 \SystemRoot\System32\Drivers\ksecdd.sys
0x8907D000 \SystemRoot\system32\drivers\ndis.sys
0x89188000 \SystemRoot\system32\drivers\msrpc.sys
0x891B3000 \SystemRoot\system32\drivers\NETIO.SYS
0x89201000 \SystemRoot\System32\drivers\tcpip.sys
0x892EA000 \SystemRoot\System32\drivers\fwpkclnt.sys
0x89305000 \SystemRoot\System32\Drivers\vbtenum.sys
0x8940F000 \SystemRoot\System32\Drivers\Ntfs.sys
0x8951E000 \SystemRoot\system32\drivers\wd.sys
0x89526000 \SystemRoot\system32\drivers\volsnap.sys
0x8955F000 \SystemRoot\System32\Drivers\spldr.sys
0x89567000 \SystemRoot\system32\drivers\sbp2port.sys
0x8957C000 \SystemRoot\System32\Drivers\mup.sys
0x8958B000 \SystemRoot\System32\drivers\ecache.sys
0x895B2000 \SystemRoot\system32\drivers\disk.sys
0x895C3000 \SystemRoot\system32\drivers\crcdisk.sys
0x895CC000 \SystemRoot\System32\Drivers\BTHidMgr.sys
0x895F5000 \SystemRoot\system32\DRIVERS\tunnel.sys
0x89400000 \SystemRoot\system32\DRIVERS\tunmp.sys
0x89309000 \SystemRoot\system32\DRIVERS\intelppm.sys
0x89409000 \SystemRoot\system32\DRIVERS\CmBatt.sys
0x8CE05000 \SystemRoot\system32\DRIVERS\igdkmd32.sys
0x8D500000 \SystemRoot\System32\drivers\dxgkrnl.sys
0x8D59F000 \SystemRoot\System32\drivers\watchdog.sys
0x8D5AC000 \SystemRoot\system32\DRIVERS\usbuhci.sys
0x8D5B7000 \SystemRoot\system32\DRIVERS\USBPORT.SYS
0x89318000 \SystemRoot\system32\DRIVERS\usbehci.sys
0x89327000 \SystemRoot\system32\DRIVERS\HDAudBus.sys
0x8D602000 \SystemRoot\system32\DRIVERS\athr.sys
0x8D710000 \SystemRoot\system32\DRIVERS\Rtlh86.sys
0x8D735000 \SystemRoot\system32\DRIVERS\i8042prt.sys
0x8D748000 \SystemRoot\system32\DRIVERS\HpqKbFiltr.sys
0x8D74D000 \SystemRoot\system32\DRIVERS\kbdclass.sys
0x8D758000 \SystemRoot\system32\DRIVERS\SynTP.sys
0x8D789000 \SystemRoot\system32\DRIVERS\USBD.SYS
0x8D78B000 \SystemRoot\system32\DRIVERS\mouclass.sys
0x8D796000 \SystemRoot\system32\DRIVERS\cdrom.sys
0x8D7AE000 \SystemRoot\system32\DRIVERS\GEARAspiWDM.sys
0x8D7B4000 \SystemRoot\system32\DRIVERS\wmiacpi.sys
0x8D7BD000 \SystemRoot\System32\Drivers\VcommMgr.sys
0x8D7C7000 \SystemRoot\system32\DRIVERS\msiscsi.sys
0x8D7F5000 \SystemRoot\system32\DRIVERS\TDI.SYS
0x8D5F5000 \SystemRoot\system32\DRIVERS\blueletaudio.sys
0x89339000 \SystemRoot\system32\DRIVERS\portcls.sys
0x89366000 \SystemRoot\system32\DRIVERS\drmk.sys
0x8938B000 \SystemRoot\system32\DRIVERS\ks.sys
0x893B5000 \SystemRoot\system32\DRIVERS\BlueletSCOAudio.sys
0x893BB000 \SystemRoot\System32\Drivers\RootMdm.sys
0x893C3000 \SystemRoot\system32\drivers\modem.sys
0x893D0000 \SystemRoot\system32\DRIVERS\rasl2tp.sys
0x893E7000 \SystemRoot\system32\DRIVERS\ndistapi.sys
0x88DB7000 \SystemRoot\system32\DRIVERS\ndiswan.sys
0x891ED000 \SystemRoot\system32\DRIVERS\raspppoe.sys
0x88DDA000 \SystemRoot\system32\DRIVERS\raspptp.sys
0x88BB2000 \SystemRoot\system32\DRIVERS\rassstp.sys
0x8D5FC000 \SystemRoot\system32\DRIVERS\btnetdrv.sys
0x893F2000 \SystemRoot\system32\DRIVERS\VComm.sys
0x89000000 \SystemRoot\system32\DRIVERS\serenum.sys
0x88DEE000 \SystemRoot\system32\DRIVERS\termdd.sys
0x8D600000 \SystemRoot\system32\DRIVERS\swenum.sys
0x88E00000 \SystemRoot\system32\DRIVERS\mssmbios.sys
0x88C00000 \SystemRoot\system32\DRIVERS\umbus.sys
0x88BC7000 \SystemRoot\system32\DRIVERS\usbhub.sys
0x8DC0F000 \SystemRoot\System32\Drivers\NDProxy.SYS
0x8DC20000 \SystemRoot\system32\DRIVERS\stwrt.sys
0x8DC84000 \SystemRoot\system32\drivers\IntcHdmi.sys
0x8DCA5000 \SystemRoot\System32\Drivers\aswSnx.SYS
0x8DD03000 \SystemRoot\System32\Drivers\Fs_Rec.SYS
0x8DD0C000 \SystemRoot\System32\Drivers\Null.SYS
0x8DD13000 \SystemRoot\System32\Drivers\Beep.SYS
0x8DD23000 \SystemRoot\system32\DRIVERS\HIDPARSE.SYS
0x8DD2A000 \SystemRoot\System32\drivers\vga.sys
0x8DD36000 \SystemRoot\System32\drivers\VIDEOPRT.SYS
0x8DD57000 \SystemRoot\System32\DRIVERS\RDPCDD.sys
0x8DD5F000 \SystemRoot\system32\drivers\rdpencdd.sys
0x8DD67000 \SystemRoot\System32\Drivers\Msfs.SYS
0x8DD72000 \SystemRoot\System32\Drivers\Npfs.SYS
0x8DD80000 \SystemRoot\System32\DRIVERS\rasacd.sys
0x8DD89000 \SystemRoot\system32\DRIVERS\tdx.sys
0x8DD9F000 \SystemRoot\System32\Drivers\aswTdi.SYS
0x8DDA9000 \SystemRoot\system32\DRIVERS\smb.sys
0x8E008000 \SystemRoot\system32\drivers\afd.sys
0x8E050000 \SystemRoot\System32\Drivers\aswRdr.SYS
0x8E055000 \SystemRoot\System32\DRIVERS\netbt.sys
0x8E087000 \SystemRoot\system32\DRIVERS\pacer.sys
0x8E09D000 \SystemRoot\system32\DRIVERS\netbios.sys
0x8E0AB000 \SystemRoot\system32\DRIVERS\wanarp.sys
0x8E0BE000 \SystemRoot\system32\DRIVERS\rdbss.sys
0x8E0FA000 \SystemRoot\system32\drivers\nsiproxy.sys
0x8E104000 \SystemRoot\System32\Drivers\dfsc.sys
0x8E11B000 \SystemRoot\System32\Drivers\aswSP.SYS
0x8E163000 \SystemRoot\system32\DRIVERS\usbccgp.sys
0x8E17A000 \SystemRoot\System32\Drivers\usbvideo.sys
0x8E19B000 \SystemRoot\System32\Drivers\crashdmp.sys
0x8E1A8000 \SystemRoot\System32\Drivers\dump_dumpata.sys
0x8E1B3000 \SystemRoot\System32\Drivers\dump_msahci.sys
0x97830000 \SystemRoot\System32\win32k.sys
0x8E1BD000 \SystemRoot\System32\drivers\Dxapi.sys
0x8E1C7000 \SystemRoot\system32\DRIVERS\monitor.sys
0x97A50000 \SystemRoot\System32\TSDDD.dll
0x97A70000 \SystemRoot\System32\cdd.dll
0x8E1D6000 \SystemRoot\system32\drivers\luafv.sys
0x8DDBD000 \??\C:\Windows\system32\drivers\aswMonFlt.sys
0x8E1F1000 \SystemRoot\System32\Drivers\aswFsBlk.SYS
0x895D3000 \SystemRoot\system32\DRIVERS\lltdio.sys
0xAA00B000 \SystemRoot\system32\DRIVERS\nwifi.sys
0xAA035000 \SystemRoot\system32\DRIVERS\ndisuio.sys
0xAA03F000 \SystemRoot\system32\DRIVERS\rspndr.sys
0xAA052000 \SystemRoot\system32\drivers\spsys.sys
0xAA101000 \SystemRoot\system32\drivers\HTTP.sys
0xAA16E000 \SystemRoot\System32\DRIVERS\srvnet.sys
0xAA18B000 \SystemRoot\system32\DRIVERS\bowser.sys
0xAA1A4000 \SystemRoot\System32\drivers\mpsdrv.sys
0xAA1B9000 \SystemRoot\system32\drivers\mrxdav.sys
0xAA1D9000 \SystemRoot\system32\DRIVERS\mrxsmb.sys
0xABA0F000 \SystemRoot\system32\DRIVERS\mrxsmb10.sys
0xABA48000 \SystemRoot\system32\DRIVERS\mrxsmb20.sys
0xABA60000 \SystemRoot\System32\DRIVERS\srv2.sys
0xABA88000 \SystemRoot\System32\DRIVERS\srv.sys
0xABAEF000 \SystemRoot\system32\drivers\peauth.sys
0xABBCD000 \SystemRoot\System32\Drivers\secdrv.SYS
0xABBD7000 \SystemRoot\System32\drivers\tcpipreg.sys
0xABBE3000 \SystemRoot\system32\DRIVERS\cdfs.sys
0xABA00000 \??\C:\Users\Marie\AppData\Local\Temp\mbr.sys
0xC1C02000 \SystemRoot\System32\Drivers\fastfat.SYS
0x77670000 \Windows\System32\ntdll.dll
Processes (total 87):
0 System Idle Process
4 System
460 C:\Windows\System32\smss.exe
532 csrss.exe
588 C:\Windows\System32\wininit.exe
596 csrss.exe
628 C:\Windows\System32\winlogon.exe
676 C:\Windows\System32\services.exe
688 C:\Windows\System32\lsass.exe
696 C:\Windows\System32\lsm.exe
864 C:\Windows\System32\svchost.exe
936 C:\Windows\System32\svchost.exe
968 C:\Windows\System32\svchost.exe
1056 C:\Windows\System32\svchost.exe
1128 C:\Windows\System32\svchost.exe
1140 C:\Windows\System32\svchost.exe
1164 C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_fa807195\stacsv.exe
1232 C:\Windows\System32\audiodg.exe
1284 C:\Windows\System32\svchost.exe
1300 C:\Windows\System32\SLsvc.exe
1336 C:\Windows\System32\svchost.exe
1560 C:\Windows\System32\svchost.exe
1708 C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
2004 C:\Windows\System32\spoolsv.exe
2028 C:\Windows\System32\svchost.exe
540 C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_fa807195\AEstSrv.exe
304 C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
280 C:\Program Files\Bonjour\mDNSResponder.exe
728 C:\Windows\System32\svchost.exe
856 C:\Program Files\Common Files\LightScribe\LSSrvc.exe
480 C:\Windows\System32\svchost.exe
512 C:\Program Files\SMINST\BLService.exe
2084 C:\Program Files\CyberLink\Shared files\RichVideo.exe
2148 C:\Windows\System32\svchost.exe
2188 C:\Windows\System32\svchost.exe
2212 C:\Windows\System32\SearchIndexer.exe
2272 C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe
2396 C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe
3296 C:\Windows\System32\taskeng.exe
3528 C:\Windows\System32\taskeng.exe
3576 C:\Windows\System32\dwm.exe
3640 C:\Windows\explorer.exe
3828 C:\Windows\System32\igfxtray.exe
3852 C:\Windows\System32\hkcmd.exe
3860 C:\Windows\System32\igfxpers.exe
3888 C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
3896 C:\Program Files\IDT\WDM\sttray.exe
3908 C:\Program Files\HP\QuickPlay\QPService.exe
3944 C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QLBCTRL.exe
4000 C:\Program Files\HP\HP Software Update\hpwuSchd2.exe
4052 C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
720 C:\Program Files\iTunes\iTunesHelper.exe
860 C:\Program Files\Java\jre6\bin\jusched.exe
2136 C:\Program Files\Common Files\Real\Update_OB\realsched.exe
2180 C:\Program Files\Alwil Software\Avast5\AvastUI.exe
2344 C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe
1028 C:\Program Files\Hewlett-Packard\HP Advisor\HPAdvisor.exe
2644 C:\Program Files\Windows Live\Messenger\msnmsgr.exe
1864 C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
1684 C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
1536 C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
1580 C:\Program Files\McAfee Security Scan\2.0.181\SSScheduler.exe
2636 C:\Windows\System32\wbem\unsecapp.exe
2540 WmiPrvSE.exe
1332 C:\Program Files\OpenOffice.org 3\program\soffice.exe
536 C:\Windows\System32\igfxsrvc.exe
2140 C:\Program Files\OpenOffice.org 3\program\soffice.bin
3152 C:\Program Files\Hewlett-Packard\Shared\hpqWmiEx.exe
3756 C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
3720 C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe
3584 C:\Program Files\HP\Digital Imaging\bin\hpqbam08.exe
152 C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe
3520 C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
4076 C:\Program Files\iPod\bin\iPodService.exe
2828 C:\Windows\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
2668 C:\Program Files\Hewlett-Packard\Shared\HpqToaster.exe
5112 C:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Service.exe
2316 C:\Windows\System32\wuauclt.exe
5700 C:\Program Files\Internet Explorer\iexplore.exe
5528 C:\Program Files\Internet Explorer\iexplore.exe
6088 C:\Program Files\Google\Google Toolbar\GoogleToolbarUser_32.exe
4112 C:\Windows\System32\Macromed\Flash\FlashUtil10l_ActiveX.exe
4248 C:\Windows\System32\conime.exe
4292 C:\Windows\System32\SearchProtocolHost.exe
4540 C:\Windows\System32\SearchFilterHost.exe
3772 C:\Users\Marie\Desktop\MBRCheck.exe
5844 C:\Program Files\Internet Explorer\iexplore.exe
\\.\C: --> \\.\PhysicalDrive0 at offset 0x00000000'00100000 (NTFS)
\\.\D: --> \\.\PhysicalDrive0 at offset 0x00000022'cc100000 (NTFS)
PhysicalDrive0 Model Number: WDCWD1600BEVT-60ZCT1, Rev: 13.01A13
Size Device Name MBR Status
--------------------------------------------
149 GB \\.\PhysicalDrive0 Unknown MBR code
SHA1: 6DF26AE7D6663DFFFF5602BEDE5BE4683120D56C
Found non-standard or infected MBR.
Enter 'Y' and hit ENTER for more options, or 'N' to exit:
Options:
[1] Dump the MBR of a physical disk to file.
[2] Restore the MBR of a physical disk with a standard boot code.
[3] Exit.
Enter your choice: Enter the physical disk number to fix (0-99, -1 to cancel):
MBRCheck, version 1.2.3
(c) 2010, AD
Command-line:
Windows Version: Windows Vista Home Basic Edition
Windows Information: Service Pack 1 (build 6001), 32-bit
Base Board Manufacturer: Quanta
BIOS Manufacturer: Hewlett-Packard
System Manufacturer: Hewlett-Packard
System Product Name: Compaq Presario CQ71 Notebook PC
Logical Drives Mask: 0x0000001c
Kernel Drivers (total 198):
0x82A15000 \SystemRoot\system32\ntkrnlpa.exe
0x82DD0000 \SystemRoot\system32\hal.dll
0x80408000 \SystemRoot\system32\kdcom.dll
0x80410000 \SystemRoot\system32\mcupdate_GenuineIntel.dll
0x80470000 \SystemRoot\system32\PSHED.dll
0x80481000 \SystemRoot\system32\BOOTVID.dll
0x80489000 \SystemRoot\system32\CLFS.SYS
0x804CA000 \SystemRoot\system32\CI.dll
0x80607000 \SystemRoot\system32\drivers\Wdf01000.sys
0x80683000 \SystemRoot\system32\drivers\WDFLDR.SYS
0x80690000 \SystemRoot\system32\drivers\acpi.sys
0x806D6000 \SystemRoot\system32\drivers\WMILIB.SYS
0x806DF000 \SystemRoot\system32\drivers\msisadrv.sys
0x806E7000 \SystemRoot\system32\drivers\pci.sys
0x8070E000 \SystemRoot\system32\drivers\isapnp.sys
0x8071D000 \SystemRoot\system32\drivers\mpio.sys
0x80739000 \SystemRoot\System32\drivers\partmgr.sys
0x80748000 \SystemRoot\system32\DRIVERS\compbatt.sys
0x8074B000 \SystemRoot\system32\DRIVERS\BATTC.SYS
0x80755000 \SystemRoot\system32\drivers\volmgr.sys
0x80764000 \SystemRoot\System32\drivers\volmgrx.sys
0x807AE000 \SystemRoot\system32\drivers\intelide.sys
0x807B5000 \SystemRoot\system32\drivers\PCIIDEX.SYS
0x807C3000 \SystemRoot\system32\drivers\aliide.sys
0x807CA000 \SystemRoot\system32\drivers\amdide.sys
0x807D1000 \SystemRoot\system32\drivers\cmdide.sys
0x807D9000 \SystemRoot\System32\drivers\mountmgr.sys
0x805AA000 \SystemRoot\system32\drivers\msdsm.sys
0x805C4000 \SystemRoot\system32\drivers\nvraid.sys
0x805DF000 \SystemRoot\system32\drivers\CLASSPNP.SYS
0x807E9000 \SystemRoot\system32\drivers\pciide.sys
0x807F0000 \SystemRoot\system32\drivers\viaide.sys
0x8880A000 \SystemRoot\system32\drivers\iastorv.sys
0x888AB000 \SystemRoot\system32\drivers\atapi.sys
0x888B3000 \SystemRoot\system32\drivers\ataport.SYS
0x888D1000 \SystemRoot\system32\drivers\lsi_scsi.sys
0x888EB000 \SystemRoot\system32\drivers\storport.sys
0x8892C000 \SystemRoot\system32\drivers\msahci.sys
0x88936000 \SystemRoot\system32\drivers\hpcisss.sys
0x88941000 \SystemRoot\system32\drivers\adp94xx.sys
0x889AB000 \SystemRoot\system32\drivers\adpahci.sys
0x88A09000 \SystemRoot\system32\drivers\adpu160m.sys
0x88A24000 \SystemRoot\system32\drivers\SCSIPORT.SYS
0x88A4A000 \SystemRoot\system32\drivers\adpu320.sys
0x88A70000 \SystemRoot\system32\drivers\djsvs.sys
0x88A84000 \SystemRoot\system32\drivers\arc.sys
0x88A9A000 \SystemRoot\system32\drivers\arcsas.sys
0x88AB0000 \SystemRoot\system32\drivers\elxstor.sys
0x88B44000 \SystemRoot\system32\drivers\i2omp.sys
0x88B4E000 \SystemRoot\system32\drivers\iirsp.sys
0x88B5E000 \SystemRoot\system32\drivers\iteatapi.sys
0x88B6A000 \SystemRoot\system32\drivers\iteraid.sys
0x88B76000 \SystemRoot\system32\drivers\lsi_fc.sys
0x88B90000 \SystemRoot\system32\drivers\lsi_sas.sys
0x88BA8000 \SystemRoot\system32\drivers\megasas.sys
0x88C0F000 \SystemRoot\system32\drivers\megasr.sys
0x88CC6000 \SystemRoot\system32\drivers\mraid35x.sys
0x88CD1000 \SystemRoot\system32\drivers\nfrd960.sys
0x88CDF000 \SystemRoot\system32\drivers\nvstor.sys
0x88E0C000 \SystemRoot\system32\drivers\ql2300.sys
0x88F44000 \SystemRoot\system32\drivers\ql40xx.sys
0x88F99000 \SystemRoot\system32\drivers\sisraid2.sys
0x88FA6000 \SystemRoot\system32\drivers\sisraid4.sys
0x88FBB000 \SystemRoot\system32\drivers\symc8xx.sys
0x88FC7000 \SystemRoot\system32\drivers\sym_hi.sys
0x88FD2000 \SystemRoot\system32\drivers\sym_u3.sys
0x88CEC000 \SystemRoot\system32\drivers\uliahci.sys
0x88FDD000 \SystemRoot\system32\drivers\ulsata.sys
0x88D28000 \SystemRoot\system32\drivers\ulsata2.sys
0x88D54000 \SystemRoot\system32\drivers\vsmraid.sys
0x88D75000 \SystemRoot\system32\drivers\fltmgr.sys
0x88DA7000 \SystemRoot\system32\drivers\fileinfo.sys
0x8900C000 \SystemRoot\System32\Drivers\ksecdd.sys
0x8907D000 \SystemRoot\system32\drivers\ndis.sys
0x89188000 \SystemRoot\system32\drivers\msrpc.sys
0x891B3000 \SystemRoot\system32\drivers\NETIO.SYS
0x89201000 \SystemRoot\System32\drivers\tcpip.sys
0x892EA000 \SystemRoot\System32\drivers\fwpkclnt.sys
0x89305000 \SystemRoot\System32\Drivers\vbtenum.sys
0x8940F000 \SystemRoot\System32\Drivers\Ntfs.sys
0x8951E000 \SystemRoot\system32\drivers\wd.sys
0x89526000 \SystemRoot\system32\drivers\volsnap.sys
0x8955F000 \SystemRoot\System32\Drivers\spldr.sys
0x89567000 \SystemRoot\system32\drivers\sbp2port.sys
0x8957C000 \SystemRoot\System32\Drivers\mup.sys
0x8958B000 \SystemRoot\System32\drivers\ecache.sys
0x895B2000 \SystemRoot\system32\drivers\disk.sys
0x895C3000 \SystemRoot\system32\drivers\crcdisk.sys
0x895CC000 \SystemRoot\System32\Drivers\BTHidMgr.sys
0x895F5000 \SystemRoot\system32\DRIVERS\tunnel.sys
0x89400000 \SystemRoot\system32\DRIVERS\tunmp.sys
0x89309000 \SystemRoot\system32\DRIVERS\intelppm.sys
0x89409000 \SystemRoot\system32\DRIVERS\CmBatt.sys
0x8CE05000 \SystemRoot\system32\DRIVERS\igdkmd32.sys
0x8D500000 \SystemRoot\System32\drivers\dxgkrnl.sys
0x8D59F000 \SystemRoot\System32\drivers\watchdog.sys
0x8D5AC000 \SystemRoot\system32\DRIVERS\usbuhci.sys
0x8D5B7000 \SystemRoot\system32\DRIVERS\USBPORT.SYS
0x89318000 \SystemRoot\system32\DRIVERS\usbehci.sys
0x89327000 \SystemRoot\system32\DRIVERS\HDAudBus.sys
0x8D602000 \SystemRoot\system32\DRIVERS\athr.sys
0x8D710000 \SystemRoot\system32\DRIVERS\Rtlh86.sys
0x8D735000 \SystemRoot\system32\DRIVERS\i8042prt.sys
0x8D748000 \SystemRoot\system32\DRIVERS\HpqKbFiltr.sys
0x8D74D000 \SystemRoot\system32\DRIVERS\kbdclass.sys
0x8D758000 \SystemRoot\system32\DRIVERS\SynTP.sys
0x8D789000 \SystemRoot\system32\DRIVERS\USBD.SYS
0x8D78B000 \SystemRoot\system32\DRIVERS\mouclass.sys
0x8D796000 \SystemRoot\system32\DRIVERS\cdrom.sys
0x8D7AE000 \SystemRoot\system32\DRIVERS\GEARAspiWDM.sys
0x8D7B4000 \SystemRoot\system32\DRIVERS\wmiacpi.sys
0x8D7BD000 \SystemRoot\System32\Drivers\VcommMgr.sys
0x8D7C7000 \SystemRoot\system32\DRIVERS\msiscsi.sys
0x8D7F5000 \SystemRoot\system32\DRIVERS\TDI.SYS
0x8D5F5000 \SystemRoot\system32\DRIVERS\blueletaudio.sys
0x89339000 \SystemRoot\system32\DRIVERS\portcls.sys
0x89366000 \SystemRoot\system32\DRIVERS\drmk.sys
0x8938B000 \SystemRoot\system32\DRIVERS\ks.sys
0x893B5000 \SystemRoot\system32\DRIVERS\BlueletSCOAudio.sys
0x893BB000 \SystemRoot\System32\Drivers\RootMdm.sys
0x893C3000 \SystemRoot\system32\drivers\modem.sys
0x893D0000 \SystemRoot\system32\DRIVERS\rasl2tp.sys
0x893E7000 \SystemRoot\system32\DRIVERS\ndistapi.sys
0x88DB7000 \SystemRoot\system32\DRIVERS\ndiswan.sys
0x891ED000 \SystemRoot\system32\DRIVERS\raspppoe.sys
0x88DDA000 \SystemRoot\system32\DRIVERS\raspptp.sys
0x88BB2000 \SystemRoot\system32\DRIVERS\rassstp.sys
0x8D5FC000 \SystemRoot\system32\DRIVERS\btnetdrv.sys
0x893F2000 \SystemRoot\system32\DRIVERS\VComm.sys
0x89000000 \SystemRoot\system32\DRIVERS\serenum.sys
0x88DEE000 \SystemRoot\system32\DRIVERS\termdd.sys
0x8D600000 \SystemRoot\system32\DRIVERS\swenum.sys
0x88E00000 \SystemRoot\system32\DRIVERS\mssmbios.sys
0x88C00000 \SystemRoot\system32\DRIVERS\umbus.sys
0x88BC7000 \SystemRoot\system32\DRIVERS\usbhub.sys
0x8DC0F000 \SystemRoot\System32\Drivers\NDProxy.SYS
0x8DC20000 \SystemRoot\system32\DRIVERS\stwrt.sys
0x8DC84000 \SystemRoot\system32\drivers\IntcHdmi.sys
0x8DCA5000 \SystemRoot\System32\Drivers\aswSnx.SYS
0x8DD03000 \SystemRoot\System32\Drivers\Fs_Rec.SYS
0x8DD0C000 \SystemRoot\System32\Drivers\Null.SYS
0x8DD13000 \SystemRoot\System32\Drivers\Beep.SYS
0x8DD23000 \SystemRoot\system32\DRIVERS\HIDPARSE.SYS
0x8DD2A000 \SystemRoot\System32\drivers\vga.sys
0x8DD36000 \SystemRoot\System32\drivers\VIDEOPRT.SYS
0x8DD57000 \SystemRoot\System32\DRIVERS\RDPCDD.sys
0x8DD5F000 \SystemRoot\system32\drivers\rdpencdd.sys
0x8DD67000 \SystemRoot\System32\Drivers\Msfs.SYS
0x8DD72000 \SystemRoot\System32\Drivers\Npfs.SYS
0x8DD80000 \SystemRoot\System32\DRIVERS\rasacd.sys
0x8DD89000 \SystemRoot\system32\DRIVERS\tdx.sys
0x8DD9F000 \SystemRoot\System32\Drivers\aswTdi.SYS
0x8DDA9000 \SystemRoot\system32\DRIVERS\smb.sys
0x8E008000 \SystemRoot\system32\drivers\afd.sys
0x8E050000 \SystemRoot\System32\Drivers\aswRdr.SYS
0x8E055000 \SystemRoot\System32\DRIVERS\netbt.sys
0x8E087000 \SystemRoot\system32\DRIVERS\pacer.sys
0x8E09D000 \SystemRoot\system32\DRIVERS\netbios.sys
0x8E0AB000 \SystemRoot\system32\DRIVERS\wanarp.sys
0x8E0BE000 \SystemRoot\system32\DRIVERS\rdbss.sys
0x8E0FA000 \SystemRoot\system32\drivers\nsiproxy.sys
0x8E104000 \SystemRoot\System32\Drivers\dfsc.sys
0x8E11B000 \SystemRoot\System32\Drivers\aswSP.SYS
0x8E163000 \SystemRoot\system32\DRIVERS\usbccgp.sys
0x8E17A000 \SystemRoot\System32\Drivers\usbvideo.sys
0x8E19B000 \SystemRoot\System32\Drivers\crashdmp.sys
0x8E1A8000 \SystemRoot\System32\Drivers\dump_dumpata.sys
0x8E1B3000 \SystemRoot\System32\Drivers\dump_msahci.sys
0x97830000 \SystemRoot\System32\win32k.sys
0x8E1BD000 \SystemRoot\System32\drivers\Dxapi.sys
0x8E1C7000 \SystemRoot\system32\DRIVERS\monitor.sys
0x97A50000 \SystemRoot\System32\TSDDD.dll
0x97A70000 \SystemRoot\System32\cdd.dll
0x8E1D6000 \SystemRoot\system32\drivers\luafv.sys
0x8DDBD000 \??\C:\Windows\system32\drivers\aswMonFlt.sys
0x8E1F1000 \SystemRoot\System32\Drivers\aswFsBlk.SYS
0x895D3000 \SystemRoot\system32\DRIVERS\lltdio.sys
0xAA00B000 \SystemRoot\system32\DRIVERS\nwifi.sys
0xAA035000 \SystemRoot\system32\DRIVERS\ndisuio.sys
0xAA03F000 \SystemRoot\system32\DRIVERS\rspndr.sys
0xAA052000 \SystemRoot\system32\drivers\spsys.sys
0xAA101000 \SystemRoot\system32\drivers\HTTP.sys
0xAA16E000 \SystemRoot\System32\DRIVERS\srvnet.sys
0xAA18B000 \SystemRoot\system32\DRIVERS\bowser.sys
0xAA1A4000 \SystemRoot\System32\drivers\mpsdrv.sys
0xAA1B9000 \SystemRoot\system32\drivers\mrxdav.sys
0xAA1D9000 \SystemRoot\system32\DRIVERS\mrxsmb.sys
0xABA0F000 \SystemRoot\system32\DRIVERS\mrxsmb10.sys
0xABA48000 \SystemRoot\system32\DRIVERS\mrxsmb20.sys
0xABA60000 \SystemRoot\System32\DRIVERS\srv2.sys
0xABA88000 \SystemRoot\System32\DRIVERS\srv.sys
0xABAEF000 \SystemRoot\system32\drivers\peauth.sys
0xABBCD000 \SystemRoot\System32\Drivers\secdrv.SYS
0xABBD7000 \SystemRoot\System32\drivers\tcpipreg.sys
0xABBE3000 \SystemRoot\system32\DRIVERS\cdfs.sys
0xABA00000 \??\C:\Users\Marie\AppData\Local\Temp\mbr.sys
0xC1C02000 \SystemRoot\System32\Drivers\fastfat.SYS
0x77670000 \Windows\System32\ntdll.dll
Processes (total 87):
0 System Idle Process
4 System
460 C:\Windows\System32\smss.exe
532 csrss.exe
588 C:\Windows\System32\wininit.exe
596 csrss.exe
628 C:\Windows\System32\winlogon.exe
676 C:\Windows\System32\services.exe
688 C:\Windows\System32\lsass.exe
696 C:\Windows\System32\lsm.exe
864 C:\Windows\System32\svchost.exe
936 C:\Windows\System32\svchost.exe
968 C:\Windows\System32\svchost.exe
1056 C:\Windows\System32\svchost.exe
1128 C:\Windows\System32\svchost.exe
1140 C:\Windows\System32\svchost.exe
1164 C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_fa807195\stacsv.exe
1232 C:\Windows\System32\audiodg.exe
1284 C:\Windows\System32\svchost.exe
1300 C:\Windows\System32\SLsvc.exe
1336 C:\Windows\System32\svchost.exe
1560 C:\Windows\System32\svchost.exe
1708 C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
2004 C:\Windows\System32\spoolsv.exe
2028 C:\Windows\System32\svchost.exe
540 C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_fa807195\AEstSrv.exe
304 C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
280 C:\Program Files\Bonjour\mDNSResponder.exe
728 C:\Windows\System32\svchost.exe
856 C:\Program Files\Common Files\LightScribe\LSSrvc.exe
480 C:\Windows\System32\svchost.exe
512 C:\Program Files\SMINST\BLService.exe
2084 C:\Program Files\CyberLink\Shared files\RichVideo.exe
2148 C:\Windows\System32\svchost.exe
2188 C:\Windows\System32\svchost.exe
2212 C:\Windows\System32\SearchIndexer.exe
2272 C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe
2396 C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe
3296 C:\Windows\System32\taskeng.exe
3528 C:\Windows\System32\taskeng.exe
3576 C:\Windows\System32\dwm.exe
3640 C:\Windows\explorer.exe
3828 C:\Windows\System32\igfxtray.exe
3852 C:\Windows\System32\hkcmd.exe
3860 C:\Windows\System32\igfxpers.exe
3888 C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
3896 C:\Program Files\IDT\WDM\sttray.exe
3908 C:\Program Files\HP\QuickPlay\QPService.exe
3944 C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QLBCTRL.exe
4000 C:\Program Files\HP\HP Software Update\hpwuSchd2.exe
4052 C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
720 C:\Program Files\iTunes\iTunesHelper.exe
860 C:\Program Files\Java\jre6\bin\jusched.exe
2136 C:\Program Files\Common Files\Real\Update_OB\realsched.exe
2180 C:\Program Files\Alwil Software\Avast5\AvastUI.exe
2344 C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe
1028 C:\Program Files\Hewlett-Packard\HP Advisor\HPAdvisor.exe
2644 C:\Program Files\Windows Live\Messenger\msnmsgr.exe
1864 C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
1684 C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
1536 C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
1580 C:\Program Files\McAfee Security Scan\2.0.181\SSScheduler.exe
2636 C:\Windows\System32\wbem\unsecapp.exe
2540 WmiPrvSE.exe
1332 C:\Program Files\OpenOffice.org 3\program\soffice.exe
536 C:\Windows\System32\igfxsrvc.exe
2140 C:\Program Files\OpenOffice.org 3\program\soffice.bin
3152 C:\Program Files\Hewlett-Packard\Shared\hpqWmiEx.exe
3756 C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
3720 C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe
3584 C:\Program Files\HP\Digital Imaging\bin\hpqbam08.exe
152 C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe
3520 C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
4076 C:\Program Files\iPod\bin\iPodService.exe
2828 C:\Windows\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
2668 C:\Program Files\Hewlett-Packard\Shared\HpqToaster.exe
5112 C:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Service.exe
2316 C:\Windows\System32\wuauclt.exe
5700 C:\Program Files\Internet Explorer\iexplore.exe
5528 C:\Program Files\Internet Explorer\iexplore.exe
6088 C:\Program Files\Google\Google Toolbar\GoogleToolbarUser_32.exe
4112 C:\Windows\System32\Macromed\Flash\FlashUtil10l_ActiveX.exe
4248 C:\Windows\System32\conime.exe
4292 C:\Windows\System32\SearchProtocolHost.exe
4540 C:\Windows\System32\SearchFilterHost.exe
3772 C:\Users\Marie\Desktop\MBRCheck.exe
5844 C:\Program Files\Internet Explorer\iexplore.exe
\\.\C: --> \\.\PhysicalDrive0 at offset 0x00000000'00100000 (NTFS)
\\.\D: --> \\.\PhysicalDrive0 at offset 0x00000022'cc100000 (NTFS)
PhysicalDrive0 Model Number: WDCWD1600BEVT-60ZCT1, Rev: 13.01A13
Size Device Name MBR Status
--------------------------------------------
149 GB \\.\PhysicalDrive0 Unknown MBR code
SHA1: 6DF26AE7D6663DFFFF5602BEDE5BE4683120D56C
Found non-standard or infected MBR.
Enter 'Y' and hit ENTER for more options, or 'N' to exit:
Options:
[1] Dump the MBR of a physical disk to file.
[2] Restore the MBR of a physical disk with a standard boot code.
[3] Exit.
Enter your choice: Enter the physical disk number to fix (0-99, -1 to cancel):
Re,
Tu relances Mbrcheck, refais les manipulations expliquées ICI
A la fin tu Appuies sur 2, ensuite tu tapes le numéro correspondant à ton système d'exploitation (vista 32)
Enfin poste le rapport comme maintenant
@+
Tu relances Mbrcheck, refais les manipulations expliquées ICI
A la fin tu Appuies sur 2, ensuite tu tapes le numéro correspondant à ton système d'exploitation (vista 32)
Enfin poste le rapport comme maintenant
@+
bonjour !
j'ai refait mais à la fin ça note un truc bizarre donc je ne sais pas si je me suis trompée ou pas ;
MBRCheck, version 1.2.3
(c) 2010, AD
Command-line:
Windows Version: Windows Vista Home Basic Edition
Windows Information: Service Pack 1 (build 6001), 32-bit
Base Board Manufacturer: Quanta
BIOS Manufacturer: Hewlett-Packard
System Manufacturer: Hewlett-Packard
System Product Name: Compaq Presario CQ71 Notebook PC
Logical Drives Mask: 0x0000001c
Kernel Drivers (total 196):
0x82A0A000 \SystemRoot\system32\ntkrnlpa.exe
0x82DC5000 \SystemRoot\system32\hal.dll
0x80408000 \SystemRoot\system32\kdcom.dll
0x80410000 \SystemRoot\system32\mcupdate_GenuineIntel.dll
0x80470000 \SystemRoot\system32\PSHED.dll
0x80481000 \SystemRoot\system32\BOOTVID.dll
0x80489000 \SystemRoot\system32\CLFS.SYS
0x804CA000 \SystemRoot\system32\CI.dll
0x8060C000 \SystemRoot\system32\drivers\Wdf01000.sys
0x80688000 \SystemRoot\system32\drivers\WDFLDR.SYS
0x80695000 \SystemRoot\system32\drivers\acpi.sys
0x806DB000 \SystemRoot\system32\drivers\WMILIB.SYS
0x806E4000 \SystemRoot\system32\drivers\msisadrv.sys
0x806EC000 \SystemRoot\system32\drivers\pci.sys
0x80713000 \SystemRoot\system32\drivers\isapnp.sys
0x80722000 \SystemRoot\system32\drivers\mpio.sys
0x8073E000 \SystemRoot\System32\drivers\partmgr.sys
0x8074D000 \SystemRoot\system32\DRIVERS\compbatt.sys
0x80750000 \SystemRoot\system32\DRIVERS\BATTC.SYS
0x8075A000 \SystemRoot\system32\drivers\volmgr.sys
0x80769000 \SystemRoot\System32\drivers\volmgrx.sys
0x807B3000 \SystemRoot\system32\drivers\intelide.sys
0x807BA000 \SystemRoot\system32\drivers\PCIIDEX.SYS
0x807C8000 \SystemRoot\system32\drivers\aliide.sys
0x807CF000 \SystemRoot\system32\drivers\amdide.sys
0x807D6000 \SystemRoot\system32\drivers\cmdide.sys
0x807DE000 \SystemRoot\System32\drivers\mountmgr.sys
0x805AA000 \SystemRoot\system32\drivers\msdsm.sys
0x805C4000 \SystemRoot\system32\drivers\nvraid.sys
0x805DF000 \SystemRoot\system32\drivers\CLASSPNP.SYS
0x807EE000 \SystemRoot\system32\drivers\pciide.sys
0x807F5000 \SystemRoot\system32\drivers\viaide.sys
0x8880F000 \SystemRoot\system32\drivers\iastorv.sys
0x888B0000 \SystemRoot\system32\drivers\atapi.sys
0x888B8000 \SystemRoot\system32\drivers\ataport.SYS
0x888D6000 \SystemRoot\system32\drivers\lsi_scsi.sys
0x888F0000 \SystemRoot\system32\drivers\storport.sys
0x88931000 \SystemRoot\system32\drivers\msahci.sys
0x8893B000 \SystemRoot\system32\drivers\hpcisss.sys
0x88946000 \SystemRoot\system32\drivers\adp94xx.sys
0x889B0000 \SystemRoot\system32\drivers\adpahci.sys
0x88A0B000 \SystemRoot\system32\drivers\adpu160m.sys
0x88A26000 \SystemRoot\system32\drivers\SCSIPORT.SYS
0x88A4C000 \SystemRoot\system32\drivers\adpu320.sys
0x88A72000 \SystemRoot\system32\drivers\djsvs.sys
0x88A86000 \SystemRoot\system32\drivers\arc.sys
0x88A9C000 \SystemRoot\system32\drivers\arcsas.sys
0x88AB2000 \SystemRoot\system32\drivers\elxstor.sys
0x88B46000 \SystemRoot\system32\drivers\i2omp.sys
0x88B50000 \SystemRoot\system32\drivers\iirsp.sys
0x88B60000 \SystemRoot\system32\drivers\iteatapi.sys
0x88B6C000 \SystemRoot\system32\drivers\iteraid.sys
0x88B78000 \SystemRoot\system32\drivers\lsi_fc.sys
0x88B92000 \SystemRoot\system32\drivers\lsi_sas.sys
0x88BAA000 \SystemRoot\system32\drivers\megasas.sys
0x88C0F000 \SystemRoot\system32\drivers\megasr.sys
0x88CC6000 \SystemRoot\system32\drivers\mraid35x.sys
0x88CD1000 \SystemRoot\system32\drivers\nfrd960.sys
0x88CDF000 \SystemRoot\system32\drivers\nvstor.sys
0x88E0E000 \SystemRoot\system32\drivers\ql2300.sys
0x88F46000 \SystemRoot\system32\drivers\ql40xx.sys
0x88F9B000 \SystemRoot\system32\drivers\sisraid2.sys
0x88FA8000 \SystemRoot\system32\drivers\sisraid4.sys
0x88FBD000 \SystemRoot\system32\drivers\symc8xx.sys
0x88FC9000 \SystemRoot\system32\drivers\sym_hi.sys
0x88FD4000 \SystemRoot\system32\drivers\sym_u3.sys
0x88CEC000 \SystemRoot\system32\drivers\uliahci.sys
0x88FDF000 \SystemRoot\system32\drivers\ulsata.sys
0x88D28000 \SystemRoot\system32\drivers\ulsata2.sys
0x88D54000 \SystemRoot\system32\drivers\vsmraid.sys
0x88D75000 \SystemRoot\system32\drivers\fltmgr.sys
0x88DA7000 \SystemRoot\system32\drivers\fileinfo.sys
0x89007000 \SystemRoot\System32\Drivers\ksecdd.sys
0x89078000 \SystemRoot\system32\drivers\ndis.sys
0x89183000 \SystemRoot\system32\drivers\msrpc.sys
0x891AE000 \SystemRoot\system32\drivers\NETIO.SYS
0x89206000 \SystemRoot\System32\drivers\tcpip.sys
0x892EF000 \SystemRoot\System32\drivers\fwpkclnt.sys
0x8930A000 \SystemRoot\System32\Drivers\vbtenum.sys
0x8940C000 \SystemRoot\System32\Drivers\Ntfs.sys
0x8951B000 \SystemRoot\system32\drivers\wd.sys
0x89523000 \SystemRoot\system32\drivers\volsnap.sys
0x8955C000 \SystemRoot\System32\Drivers\spldr.sys
0x89564000 \SystemRoot\system32\drivers\sbp2port.sys
0x89579000 \SystemRoot\System32\Drivers\mup.sys
0x89588000 \SystemRoot\System32\drivers\ecache.sys
0x895AF000 \SystemRoot\system32\drivers\disk.sys
0x895C0000 \SystemRoot\system32\drivers\crcdisk.sys
0x895C9000 \SystemRoot\System32\Drivers\BTHidMgr.sys
0x895F2000 \SystemRoot\system32\DRIVERS\tunnel.sys
0x89400000 \SystemRoot\system32\DRIVERS\tunmp.sys
0x8930E000 \SystemRoot\system32\DRIVERS\intelppm.sys
0x8931D000 \SystemRoot\system32\DRIVERS\CmBatt.sys
0x8CE06000 \SystemRoot\system32\DRIVERS\igdkmd32.sys
0x8D501000 \SystemRoot\System32\drivers\dxgkrnl.sys
0x8D5A0000 \SystemRoot\System32\drivers\watchdog.sys
0x8D5AD000 \SystemRoot\system32\DRIVERS\usbuhci.sys
0x8D5B8000 \SystemRoot\system32\DRIVERS\USBPORT.SYS
0x89321000 \SystemRoot\system32\DRIVERS\usbehci.sys
0x89330000 \SystemRoot\system32\DRIVERS\HDAudBus.sys
0x8D608000 \SystemRoot\system32\DRIVERS\athr.sys
0x8D716000 \SystemRoot\system32\DRIVERS\Rtlh86.sys
0x8D73B000 \SystemRoot\system32\DRIVERS\i8042prt.sys
0x8D74E000 \SystemRoot\system32\DRIVERS\HpqKbFiltr.sys
0x8D753000 \SystemRoot\system32\DRIVERS\kbdclass.sys
0x8D75E000 \SystemRoot\system32\DRIVERS\SynTP.sys
0x8D78F000 \SystemRoot\system32\DRIVERS\USBD.SYS
0x8D791000 \SystemRoot\system32\DRIVERS\mouclass.sys
0x8D79C000 \SystemRoot\system32\DRIVERS\cdrom.sys
0x8D7B4000 \SystemRoot\system32\DRIVERS\GEARAspiWDM.sys
0x8D7BA000 \SystemRoot\system32\DRIVERS\wmiacpi.sys
0x8D7C3000 \SystemRoot\System32\Drivers\VcommMgr.sys
0x8D7CD000 \SystemRoot\system32\DRIVERS\msiscsi.sys
0x89342000 \SystemRoot\system32\DRIVERS\TDI.SYS
0x8D600000 \SystemRoot\system32\DRIVERS\blueletaudio.sys
0x8934D000 \SystemRoot\system32\DRIVERS\portcls.sys
0x8937A000 \SystemRoot\system32\DRIVERS\drmk.sys
0x8939F000 \SystemRoot\system32\DRIVERS\ks.sys
0x8D5F6000 \SystemRoot\system32\DRIVERS\BlueletSCOAudio.sys
0x893C9000 \SystemRoot\System32\Drivers\RootMdm.sys
0x893D1000 \SystemRoot\system32\drivers\modem.sys
0x893DE000 \SystemRoot\system32\DRIVERS\rasl2tp.sys
0x893F5000 \SystemRoot\system32\DRIVERS\ndistapi.sys
0x88DB7000 \SystemRoot\system32\DRIVERS\ndiswan.sys
0x891E8000 \SystemRoot\system32\DRIVERS\raspppoe.sys
0x88DDA000 \SystemRoot\system32\DRIVERS\raspptp.sys
0x88BB4000 \SystemRoot\system32\DRIVERS\rassstp.sys
0x8D7FB000 \SystemRoot\system32\DRIVERS\btnetdrv.sys
0x891F7000 \SystemRoot\system32\DRIVERS\VComm.sys
0x88E00000 \SystemRoot\system32\DRIVERS\serenum.sys
0x88DEE000 \SystemRoot\system32\DRIVERS\termdd.sys
0x8D7FE000 \SystemRoot\system32\DRIVERS\swenum.sys
0x88C00000 \SystemRoot\system32\DRIVERS\mssmbios.sys
0x88BC9000 \SystemRoot\system32\DRIVERS\umbus.sys
0x8DA0B000 \SystemRoot\system32\DRIVERS\usbhub.sys
0x8DA3F000 \SystemRoot\System32\Drivers\NDProxy.SYS
0x8DA50000 \SystemRoot\system32\DRIVERS\stwrt.sys
0x8DAB4000 \SystemRoot\system32\drivers\IntcHdmi.sys
0x8DAD5000 \SystemRoot\System32\Drivers\aswSnx.SYS
0x8DB33000 \SystemRoot\System32\Drivers\Fs_Rec.SYS
0x8DB3C000 \SystemRoot\System32\Drivers\Null.SYS
0x8DB43000 \SystemRoot\System32\Drivers\Beep.SYS
0x8DB53000 \SystemRoot\system32\DRIVERS\HIDPARSE.SYS
0x8DB5A000 \SystemRoot\System32\drivers\vga.sys
0x8DB66000 \SystemRoot\System32\drivers\VIDEOPRT.SYS
0x8DB87000 \SystemRoot\System32\DRIVERS\RDPCDD.sys
0x8DB8F000 \SystemRoot\system32\drivers\rdpencdd.sys
0x8DB97000 \SystemRoot\System32\Drivers\Msfs.SYS
0x8DBA2000 \SystemRoot\System32\Drivers\Npfs.SYS
0x8DBB0000 \SystemRoot\System32\DRIVERS\rasacd.sys
0x8DBB9000 \SystemRoot\system32\DRIVERS\tdx.sys
0x8DBCF000 \SystemRoot\System32\Drivers\aswTdi.SYS
0x8DBD9000 \SystemRoot\system32\DRIVERS\smb.sys
0x8DE00000 \SystemRoot\system32\drivers\afd.sys
0x8DE48000 \SystemRoot\System32\Drivers\aswRdr.SYS
0x8DE4D000 \SystemRoot\System32\DRIVERS\netbt.sys
0x8DE7F000 \SystemRoot\system32\DRIVERS\pacer.sys
0x8DE95000 \SystemRoot\system32\DRIVERS\netbios.sys
0x8DEA3000 \SystemRoot\system32\DRIVERS\wanarp.sys
0x8DEB6000 \SystemRoot\system32\DRIVERS\rdbss.sys
0x8DEF2000 \SystemRoot\system32\drivers\nsiproxy.sys
0x8DEFC000 \SystemRoot\System32\Drivers\dfsc.sys
0x8DF13000 \SystemRoot\System32\Drivers\aswSP.SYS
0x8DF5B000 \SystemRoot\system32\DRIVERS\usbccgp.sys
0x8DF72000 \SystemRoot\System32\Drivers\usbvideo.sys
0x8DF93000 \SystemRoot\System32\Drivers\crashdmp.sys
0x8DFA0000 \SystemRoot\System32\Drivers\dump_dumpata.sys
0x8DFAB000 \SystemRoot\System32\Drivers\dump_msahci.sys
0x97220000 \SystemRoot\System32\win32k.sys
0x8DFB5000 \SystemRoot\System32\drivers\Dxapi.sys
0x8DFBF000 \SystemRoot\system32\DRIVERS\monitor.sys
0x97440000 \SystemRoot\System32\TSDDD.dll
0x97460000 \SystemRoot\System32\cdd.dll
0x8DFCE000 \SystemRoot\system32\drivers\luafv.sys
0xA8804000 \??\C:\Windows\system32\drivers\aswMonFlt.sys
0xA883C000 \SystemRoot\System32\Drivers\aswFsBlk.SYS
0xA883F000 \SystemRoot\system32\DRIVERS\lltdio.sys
0xA884F000 \SystemRoot\system32\DRIVERS\nwifi.sys
0xA8879000 \SystemRoot\system32\DRIVERS\ndisuio.sys
0xA8883000 \SystemRoot\system32\DRIVERS\rspndr.sys
0xA8896000 \SystemRoot\system32\drivers\spsys.sys
0xA8945000 \SystemRoot\system32\drivers\HTTP.sys
0xA89B2000 \SystemRoot\System32\DRIVERS\srvnet.sys
0xA89CF000 \SystemRoot\system32\DRIVERS\bowser.sys
0xA89E8000 \SystemRoot\System32\drivers\mpsdrv.sys
0x895D0000 \SystemRoot\system32\drivers\mrxdav.sys
0x88BD6000 \SystemRoot\system32\DRIVERS\mrxsmb.sys
0xAA801000 \SystemRoot\system32\DRIVERS\mrxsmb10.sys
0xAA83A000 \SystemRoot\system32\DRIVERS\mrxsmb20.sys
0xAA852000 \SystemRoot\System32\DRIVERS\srv2.sys
0xAA87A000 \SystemRoot\System32\DRIVERS\srv.sys
0xAA8E1000 \SystemRoot\system32\drivers\peauth.sys
0xAA9BF000 \SystemRoot\System32\Drivers\secdrv.SYS
0xAA9C9000 \SystemRoot\System32\drivers\tcpipreg.sys
0xAA9D5000 \SystemRoot\system32\DRIVERS\cdfs.sys
0x77690000 \Windows\System32\ntdll.dll
Processes (total 86):
0 System Idle Process
4 System
460 C:\Windows\System32\smss.exe
532 csrss.exe
576 C:\Windows\System32\wininit.exe
584 csrss.exe
616 C:\Windows\System32\winlogon.exe
664 C:\Windows\System32\services.exe
676 C:\Windows\System32\lsass.exe
684 C:\Windows\System32\lsm.exe
856 C:\Windows\System32\svchost.exe
924 C:\Windows\System32\svchost.exe
960 C:\Windows\System32\svchost.exe
1048 C:\Windows\System32\svchost.exe
1116 C:\Windows\System32\svchost.exe
1128 C:\Windows\System32\svchost.exe
1152 C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_fa807195\stacsv.exe
1208 C:\Windows\System32\audiodg.exe
1268 C:\Windows\System32\svchost.exe
1332 C:\Windows\System32\SLsvc.exe
1372 C:\Windows\System32\svchost.exe
1568 C:\Windows\System32\svchost.exe
1692 C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
2012 C:\Windows\System32\spoolsv.exe
2036 C:\Windows\System32\svchost.exe
304 C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_fa807195\AEstSrv.exe
288 C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
588 C:\Program Files\Bonjour\mDNSResponder.exe
844 C:\Windows\System32\svchost.exe
912 C:\Program Files\Common Files\LightScribe\LSSrvc.exe
276 C:\Windows\System32\svchost.exe
272 C:\Program Files\SMINST\BLService.exe
2068 C:\Program Files\CyberLink\Shared files\RichVideo.exe
2120 C:\Windows\System32\svchost.exe
2160 C:\Windows\System32\svchost.exe
2184 C:\Windows\System32\SearchIndexer.exe
2272 C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe
2360 C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe
3856 C:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Service.exe
2448 WmiPrvSE.exe
952 C:\Windows\System32\dwm.exe
356 C:\Windows\explorer.exe
152 C:\Windows\System32\taskeng.exe
3080 C:\Windows\System32\igfxtray.exe
2896 C:\Windows\System32\hkcmd.exe
3020 C:\Windows\System32\igfxpers.exe
1240 C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
3252 C:\Program Files\IDT\WDM\sttray.exe
3264 C:\Program Files\HP\QuickPlay\QPService.exe
3328 C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QLBCTRL.exe
3124 C:\Windows\System32\igfxsrvc.exe
3336 C:\Program Files\HP\HP Software Update\hpwuSchd2.exe
3396 C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
2996 C:\Program Files\iTunes\iTunesHelper.exe
312 C:\Program Files\Java\jre6\bin\jusched.exe
2200 C:\Program Files\Common Files\Real\Update_OB\realsched.exe
2028 C:\Program Files\Alwil Software\Avast5\AvastUI.exe
2764 C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe
3528 C:\Program Files\Hewlett-Packard\HP Advisor\HPAdvisor.exe
3484 C:\Program Files\Windows Live\Messenger\msnmsgr.exe
1248 C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
3248 C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
3232 C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
3460 C:\Program Files\McAfee Security Scan\2.0.181\SSScheduler.exe
3516 C:\Windows\System32\wbem\unsecapp.exe
3648 WmiPrvSE.exe
3848 C:\Program Files\OpenOffice.org 3\program\soffice.exe
3776 C:\Program Files\OpenOffice.org 3\program\soffice.bin
3068 C:\Program Files\Hewlett-Packard\Shared\hpqWmiEx.exe
2684 C:\Program Files\iPod\bin\iPodService.exe
1716 C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
3128 C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe
3332 C:\Windows\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
2600 C:\Program Files\HP\Digital Imaging\bin\hpqbam08.exe
2172 C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe
4128 C:\Program Files\Hewlett-Packard\Shared\HpqToaster.exe
5008 C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
5500 C:\Windows\System32\wuauclt.exe
4752 C:\Program Files\Windows Live\Contacts\wlcomm.exe
5700 C:\Program Files\Internet Explorer\iexplore.exe
4104 C:\Program Files\Internet Explorer\iexplore.exe
5664 C:\Program Files\Google\Google Toolbar\GoogleToolbarUser_32.exe
5804 C:\Windows\System32\Macromed\Flash\FlashUtil10l_ActiveX.exe
2548 C:\Program Files\Internet Explorer\iexplore.exe
4100 C:\Users\Marie\Desktop\MBRCheck.exe
1108 C:\Windows\System32\conime.exe
\\.\C: --> \\.\PhysicalDrive0 at offset 0x00000000'00100000 (NTFS)
\\.\D: --> \\.\PhysicalDrive0 at offset 0x00000022'cc100000 (NTFS)
PhysicalDrive0 Model Number: WDCWD1600BEVT-60ZCT1, Rev: 13.01A13
Size Device Name MBR Status
--------------------------------------------
149 GB \\.\PhysicalDrive0 Unknown MBR code
SHA1: 6DF26AE7D6663DFFFF5602BEDE5BE4683120D56C
Found non-standard or infected MBR.
Enter 'Y' and hit ENTER for more options, or 'N' to exit:
Options:
[1] Dump the MBR of a physical disk to file.
[2] Restore the MBR of a physical disk with a standard boot code.
[3] Exit.
Enter your choice: Enter the physical disk number to fix (0-99, -1 to cancel): 2Available MBR codes:
[ 0] Default (Windows Vista)
[ 1] Windows XP
[ 2] Windows Server 2003
[ 3] Windows Vista
[ 4] Windows 2008
[ 5] Windows 7
[-1] Cancel
Please select the MBR code to write to this drive: 3
Do you want to fix the MBR code? Type 'YES' and hit ENTER to continue: yes
Error opening disk (2)!
Done!
j'ai refait mais à la fin ça note un truc bizarre donc je ne sais pas si je me suis trompée ou pas ;
MBRCheck, version 1.2.3
(c) 2010, AD
Command-line:
Windows Version: Windows Vista Home Basic Edition
Windows Information: Service Pack 1 (build 6001), 32-bit
Base Board Manufacturer: Quanta
BIOS Manufacturer: Hewlett-Packard
System Manufacturer: Hewlett-Packard
System Product Name: Compaq Presario CQ71 Notebook PC
Logical Drives Mask: 0x0000001c
Kernel Drivers (total 196):
0x82A0A000 \SystemRoot\system32\ntkrnlpa.exe
0x82DC5000 \SystemRoot\system32\hal.dll
0x80408000 \SystemRoot\system32\kdcom.dll
0x80410000 \SystemRoot\system32\mcupdate_GenuineIntel.dll
0x80470000 \SystemRoot\system32\PSHED.dll
0x80481000 \SystemRoot\system32\BOOTVID.dll
0x80489000 \SystemRoot\system32\CLFS.SYS
0x804CA000 \SystemRoot\system32\CI.dll
0x8060C000 \SystemRoot\system32\drivers\Wdf01000.sys
0x80688000 \SystemRoot\system32\drivers\WDFLDR.SYS
0x80695000 \SystemRoot\system32\drivers\acpi.sys
0x806DB000 \SystemRoot\system32\drivers\WMILIB.SYS
0x806E4000 \SystemRoot\system32\drivers\msisadrv.sys
0x806EC000 \SystemRoot\system32\drivers\pci.sys
0x80713000 \SystemRoot\system32\drivers\isapnp.sys
0x80722000 \SystemRoot\system32\drivers\mpio.sys
0x8073E000 \SystemRoot\System32\drivers\partmgr.sys
0x8074D000 \SystemRoot\system32\DRIVERS\compbatt.sys
0x80750000 \SystemRoot\system32\DRIVERS\BATTC.SYS
0x8075A000 \SystemRoot\system32\drivers\volmgr.sys
0x80769000 \SystemRoot\System32\drivers\volmgrx.sys
0x807B3000 \SystemRoot\system32\drivers\intelide.sys
0x807BA000 \SystemRoot\system32\drivers\PCIIDEX.SYS
0x807C8000 \SystemRoot\system32\drivers\aliide.sys
0x807CF000 \SystemRoot\system32\drivers\amdide.sys
0x807D6000 \SystemRoot\system32\drivers\cmdide.sys
0x807DE000 \SystemRoot\System32\drivers\mountmgr.sys
0x805AA000 \SystemRoot\system32\drivers\msdsm.sys
0x805C4000 \SystemRoot\system32\drivers\nvraid.sys
0x805DF000 \SystemRoot\system32\drivers\CLASSPNP.SYS
0x807EE000 \SystemRoot\system32\drivers\pciide.sys
0x807F5000 \SystemRoot\system32\drivers\viaide.sys
0x8880F000 \SystemRoot\system32\drivers\iastorv.sys
0x888B0000 \SystemRoot\system32\drivers\atapi.sys
0x888B8000 \SystemRoot\system32\drivers\ataport.SYS
0x888D6000 \SystemRoot\system32\drivers\lsi_scsi.sys
0x888F0000 \SystemRoot\system32\drivers\storport.sys
0x88931000 \SystemRoot\system32\drivers\msahci.sys
0x8893B000 \SystemRoot\system32\drivers\hpcisss.sys
0x88946000 \SystemRoot\system32\drivers\adp94xx.sys
0x889B0000 \SystemRoot\system32\drivers\adpahci.sys
0x88A0B000 \SystemRoot\system32\drivers\adpu160m.sys
0x88A26000 \SystemRoot\system32\drivers\SCSIPORT.SYS
0x88A4C000 \SystemRoot\system32\drivers\adpu320.sys
0x88A72000 \SystemRoot\system32\drivers\djsvs.sys
0x88A86000 \SystemRoot\system32\drivers\arc.sys
0x88A9C000 \SystemRoot\system32\drivers\arcsas.sys
0x88AB2000 \SystemRoot\system32\drivers\elxstor.sys
0x88B46000 \SystemRoot\system32\drivers\i2omp.sys
0x88B50000 \SystemRoot\system32\drivers\iirsp.sys
0x88B60000 \SystemRoot\system32\drivers\iteatapi.sys
0x88B6C000 \SystemRoot\system32\drivers\iteraid.sys
0x88B78000 \SystemRoot\system32\drivers\lsi_fc.sys
0x88B92000 \SystemRoot\system32\drivers\lsi_sas.sys
0x88BAA000 \SystemRoot\system32\drivers\megasas.sys
0x88C0F000 \SystemRoot\system32\drivers\megasr.sys
0x88CC6000 \SystemRoot\system32\drivers\mraid35x.sys
0x88CD1000 \SystemRoot\system32\drivers\nfrd960.sys
0x88CDF000 \SystemRoot\system32\drivers\nvstor.sys
0x88E0E000 \SystemRoot\system32\drivers\ql2300.sys
0x88F46000 \SystemRoot\system32\drivers\ql40xx.sys
0x88F9B000 \SystemRoot\system32\drivers\sisraid2.sys
0x88FA8000 \SystemRoot\system32\drivers\sisraid4.sys
0x88FBD000 \SystemRoot\system32\drivers\symc8xx.sys
0x88FC9000 \SystemRoot\system32\drivers\sym_hi.sys
0x88FD4000 \SystemRoot\system32\drivers\sym_u3.sys
0x88CEC000 \SystemRoot\system32\drivers\uliahci.sys
0x88FDF000 \SystemRoot\system32\drivers\ulsata.sys
0x88D28000 \SystemRoot\system32\drivers\ulsata2.sys
0x88D54000 \SystemRoot\system32\drivers\vsmraid.sys
0x88D75000 \SystemRoot\system32\drivers\fltmgr.sys
0x88DA7000 \SystemRoot\system32\drivers\fileinfo.sys
0x89007000 \SystemRoot\System32\Drivers\ksecdd.sys
0x89078000 \SystemRoot\system32\drivers\ndis.sys
0x89183000 \SystemRoot\system32\drivers\msrpc.sys
0x891AE000 \SystemRoot\system32\drivers\NETIO.SYS
0x89206000 \SystemRoot\System32\drivers\tcpip.sys
0x892EF000 \SystemRoot\System32\drivers\fwpkclnt.sys
0x8930A000 \SystemRoot\System32\Drivers\vbtenum.sys
0x8940C000 \SystemRoot\System32\Drivers\Ntfs.sys
0x8951B000 \SystemRoot\system32\drivers\wd.sys
0x89523000 \SystemRoot\system32\drivers\volsnap.sys
0x8955C000 \SystemRoot\System32\Drivers\spldr.sys
0x89564000 \SystemRoot\system32\drivers\sbp2port.sys
0x89579000 \SystemRoot\System32\Drivers\mup.sys
0x89588000 \SystemRoot\System32\drivers\ecache.sys
0x895AF000 \SystemRoot\system32\drivers\disk.sys
0x895C0000 \SystemRoot\system32\drivers\crcdisk.sys
0x895C9000 \SystemRoot\System32\Drivers\BTHidMgr.sys
0x895F2000 \SystemRoot\system32\DRIVERS\tunnel.sys
0x89400000 \SystemRoot\system32\DRIVERS\tunmp.sys
0x8930E000 \SystemRoot\system32\DRIVERS\intelppm.sys
0x8931D000 \SystemRoot\system32\DRIVERS\CmBatt.sys
0x8CE06000 \SystemRoot\system32\DRIVERS\igdkmd32.sys
0x8D501000 \SystemRoot\System32\drivers\dxgkrnl.sys
0x8D5A0000 \SystemRoot\System32\drivers\watchdog.sys
0x8D5AD000 \SystemRoot\system32\DRIVERS\usbuhci.sys
0x8D5B8000 \SystemRoot\system32\DRIVERS\USBPORT.SYS
0x89321000 \SystemRoot\system32\DRIVERS\usbehci.sys
0x89330000 \SystemRoot\system32\DRIVERS\HDAudBus.sys
0x8D608000 \SystemRoot\system32\DRIVERS\athr.sys
0x8D716000 \SystemRoot\system32\DRIVERS\Rtlh86.sys
0x8D73B000 \SystemRoot\system32\DRIVERS\i8042prt.sys
0x8D74E000 \SystemRoot\system32\DRIVERS\HpqKbFiltr.sys
0x8D753000 \SystemRoot\system32\DRIVERS\kbdclass.sys
0x8D75E000 \SystemRoot\system32\DRIVERS\SynTP.sys
0x8D78F000 \SystemRoot\system32\DRIVERS\USBD.SYS
0x8D791000 \SystemRoot\system32\DRIVERS\mouclass.sys
0x8D79C000 \SystemRoot\system32\DRIVERS\cdrom.sys
0x8D7B4000 \SystemRoot\system32\DRIVERS\GEARAspiWDM.sys
0x8D7BA000 \SystemRoot\system32\DRIVERS\wmiacpi.sys
0x8D7C3000 \SystemRoot\System32\Drivers\VcommMgr.sys
0x8D7CD000 \SystemRoot\system32\DRIVERS\msiscsi.sys
0x89342000 \SystemRoot\system32\DRIVERS\TDI.SYS
0x8D600000 \SystemRoot\system32\DRIVERS\blueletaudio.sys
0x8934D000 \SystemRoot\system32\DRIVERS\portcls.sys
0x8937A000 \SystemRoot\system32\DRIVERS\drmk.sys
0x8939F000 \SystemRoot\system32\DRIVERS\ks.sys
0x8D5F6000 \SystemRoot\system32\DRIVERS\BlueletSCOAudio.sys
0x893C9000 \SystemRoot\System32\Drivers\RootMdm.sys
0x893D1000 \SystemRoot\system32\drivers\modem.sys
0x893DE000 \SystemRoot\system32\DRIVERS\rasl2tp.sys
0x893F5000 \SystemRoot\system32\DRIVERS\ndistapi.sys
0x88DB7000 \SystemRoot\system32\DRIVERS\ndiswan.sys
0x891E8000 \SystemRoot\system32\DRIVERS\raspppoe.sys
0x88DDA000 \SystemRoot\system32\DRIVERS\raspptp.sys
0x88BB4000 \SystemRoot\system32\DRIVERS\rassstp.sys
0x8D7FB000 \SystemRoot\system32\DRIVERS\btnetdrv.sys
0x891F7000 \SystemRoot\system32\DRIVERS\VComm.sys
0x88E00000 \SystemRoot\system32\DRIVERS\serenum.sys
0x88DEE000 \SystemRoot\system32\DRIVERS\termdd.sys
0x8D7FE000 \SystemRoot\system32\DRIVERS\swenum.sys
0x88C00000 \SystemRoot\system32\DRIVERS\mssmbios.sys
0x88BC9000 \SystemRoot\system32\DRIVERS\umbus.sys
0x8DA0B000 \SystemRoot\system32\DRIVERS\usbhub.sys
0x8DA3F000 \SystemRoot\System32\Drivers\NDProxy.SYS
0x8DA50000 \SystemRoot\system32\DRIVERS\stwrt.sys
0x8DAB4000 \SystemRoot\system32\drivers\IntcHdmi.sys
0x8DAD5000 \SystemRoot\System32\Drivers\aswSnx.SYS
0x8DB33000 \SystemRoot\System32\Drivers\Fs_Rec.SYS
0x8DB3C000 \SystemRoot\System32\Drivers\Null.SYS
0x8DB43000 \SystemRoot\System32\Drivers\Beep.SYS
0x8DB53000 \SystemRoot\system32\DRIVERS\HIDPARSE.SYS
0x8DB5A000 \SystemRoot\System32\drivers\vga.sys
0x8DB66000 \SystemRoot\System32\drivers\VIDEOPRT.SYS
0x8DB87000 \SystemRoot\System32\DRIVERS\RDPCDD.sys
0x8DB8F000 \SystemRoot\system32\drivers\rdpencdd.sys
0x8DB97000 \SystemRoot\System32\Drivers\Msfs.SYS
0x8DBA2000 \SystemRoot\System32\Drivers\Npfs.SYS
0x8DBB0000 \SystemRoot\System32\DRIVERS\rasacd.sys
0x8DBB9000 \SystemRoot\system32\DRIVERS\tdx.sys
0x8DBCF000 \SystemRoot\System32\Drivers\aswTdi.SYS
0x8DBD9000 \SystemRoot\system32\DRIVERS\smb.sys
0x8DE00000 \SystemRoot\system32\drivers\afd.sys
0x8DE48000 \SystemRoot\System32\Drivers\aswRdr.SYS
0x8DE4D000 \SystemRoot\System32\DRIVERS\netbt.sys
0x8DE7F000 \SystemRoot\system32\DRIVERS\pacer.sys
0x8DE95000 \SystemRoot\system32\DRIVERS\netbios.sys
0x8DEA3000 \SystemRoot\system32\DRIVERS\wanarp.sys
0x8DEB6000 \SystemRoot\system32\DRIVERS\rdbss.sys
0x8DEF2000 \SystemRoot\system32\drivers\nsiproxy.sys
0x8DEFC000 \SystemRoot\System32\Drivers\dfsc.sys
0x8DF13000 \SystemRoot\System32\Drivers\aswSP.SYS
0x8DF5B000 \SystemRoot\system32\DRIVERS\usbccgp.sys
0x8DF72000 \SystemRoot\System32\Drivers\usbvideo.sys
0x8DF93000 \SystemRoot\System32\Drivers\crashdmp.sys
0x8DFA0000 \SystemRoot\System32\Drivers\dump_dumpata.sys
0x8DFAB000 \SystemRoot\System32\Drivers\dump_msahci.sys
0x97220000 \SystemRoot\System32\win32k.sys
0x8DFB5000 \SystemRoot\System32\drivers\Dxapi.sys
0x8DFBF000 \SystemRoot\system32\DRIVERS\monitor.sys
0x97440000 \SystemRoot\System32\TSDDD.dll
0x97460000 \SystemRoot\System32\cdd.dll
0x8DFCE000 \SystemRoot\system32\drivers\luafv.sys
0xA8804000 \??\C:\Windows\system32\drivers\aswMonFlt.sys
0xA883C000 \SystemRoot\System32\Drivers\aswFsBlk.SYS
0xA883F000 \SystemRoot\system32\DRIVERS\lltdio.sys
0xA884F000 \SystemRoot\system32\DRIVERS\nwifi.sys
0xA8879000 \SystemRoot\system32\DRIVERS\ndisuio.sys
0xA8883000 \SystemRoot\system32\DRIVERS\rspndr.sys
0xA8896000 \SystemRoot\system32\drivers\spsys.sys
0xA8945000 \SystemRoot\system32\drivers\HTTP.sys
0xA89B2000 \SystemRoot\System32\DRIVERS\srvnet.sys
0xA89CF000 \SystemRoot\system32\DRIVERS\bowser.sys
0xA89E8000 \SystemRoot\System32\drivers\mpsdrv.sys
0x895D0000 \SystemRoot\system32\drivers\mrxdav.sys
0x88BD6000 \SystemRoot\system32\DRIVERS\mrxsmb.sys
0xAA801000 \SystemRoot\system32\DRIVERS\mrxsmb10.sys
0xAA83A000 \SystemRoot\system32\DRIVERS\mrxsmb20.sys
0xAA852000 \SystemRoot\System32\DRIVERS\srv2.sys
0xAA87A000 \SystemRoot\System32\DRIVERS\srv.sys
0xAA8E1000 \SystemRoot\system32\drivers\peauth.sys
0xAA9BF000 \SystemRoot\System32\Drivers\secdrv.SYS
0xAA9C9000 \SystemRoot\System32\drivers\tcpipreg.sys
0xAA9D5000 \SystemRoot\system32\DRIVERS\cdfs.sys
0x77690000 \Windows\System32\ntdll.dll
Processes (total 86):
0 System Idle Process
4 System
460 C:\Windows\System32\smss.exe
532 csrss.exe
576 C:\Windows\System32\wininit.exe
584 csrss.exe
616 C:\Windows\System32\winlogon.exe
664 C:\Windows\System32\services.exe
676 C:\Windows\System32\lsass.exe
684 C:\Windows\System32\lsm.exe
856 C:\Windows\System32\svchost.exe
924 C:\Windows\System32\svchost.exe
960 C:\Windows\System32\svchost.exe
1048 C:\Windows\System32\svchost.exe
1116 C:\Windows\System32\svchost.exe
1128 C:\Windows\System32\svchost.exe
1152 C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_fa807195\stacsv.exe
1208 C:\Windows\System32\audiodg.exe
1268 C:\Windows\System32\svchost.exe
1332 C:\Windows\System32\SLsvc.exe
1372 C:\Windows\System32\svchost.exe
1568 C:\Windows\System32\svchost.exe
1692 C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
2012 C:\Windows\System32\spoolsv.exe
2036 C:\Windows\System32\svchost.exe
304 C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_fa807195\AEstSrv.exe
288 C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
588 C:\Program Files\Bonjour\mDNSResponder.exe
844 C:\Windows\System32\svchost.exe
912 C:\Program Files\Common Files\LightScribe\LSSrvc.exe
276 C:\Windows\System32\svchost.exe
272 C:\Program Files\SMINST\BLService.exe
2068 C:\Program Files\CyberLink\Shared files\RichVideo.exe
2120 C:\Windows\System32\svchost.exe
2160 C:\Windows\System32\svchost.exe
2184 C:\Windows\System32\SearchIndexer.exe
2272 C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe
2360 C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe
3856 C:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Service.exe
2448 WmiPrvSE.exe
952 C:\Windows\System32\dwm.exe
356 C:\Windows\explorer.exe
152 C:\Windows\System32\taskeng.exe
3080 C:\Windows\System32\igfxtray.exe
2896 C:\Windows\System32\hkcmd.exe
3020 C:\Windows\System32\igfxpers.exe
1240 C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
3252 C:\Program Files\IDT\WDM\sttray.exe
3264 C:\Program Files\HP\QuickPlay\QPService.exe
3328 C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QLBCTRL.exe
3124 C:\Windows\System32\igfxsrvc.exe
3336 C:\Program Files\HP\HP Software Update\hpwuSchd2.exe
3396 C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
2996 C:\Program Files\iTunes\iTunesHelper.exe
312 C:\Program Files\Java\jre6\bin\jusched.exe
2200 C:\Program Files\Common Files\Real\Update_OB\realsched.exe
2028 C:\Program Files\Alwil Software\Avast5\AvastUI.exe
2764 C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe
3528 C:\Program Files\Hewlett-Packard\HP Advisor\HPAdvisor.exe
3484 C:\Program Files\Windows Live\Messenger\msnmsgr.exe
1248 C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
3248 C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
3232 C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
3460 C:\Program Files\McAfee Security Scan\2.0.181\SSScheduler.exe
3516 C:\Windows\System32\wbem\unsecapp.exe
3648 WmiPrvSE.exe
3848 C:\Program Files\OpenOffice.org 3\program\soffice.exe
3776 C:\Program Files\OpenOffice.org 3\program\soffice.bin
3068 C:\Program Files\Hewlett-Packard\Shared\hpqWmiEx.exe
2684 C:\Program Files\iPod\bin\iPodService.exe
1716 C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
3128 C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe
3332 C:\Windows\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
2600 C:\Program Files\HP\Digital Imaging\bin\hpqbam08.exe
2172 C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe
4128 C:\Program Files\Hewlett-Packard\Shared\HpqToaster.exe
5008 C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
5500 C:\Windows\System32\wuauclt.exe
4752 C:\Program Files\Windows Live\Contacts\wlcomm.exe
5700 C:\Program Files\Internet Explorer\iexplore.exe
4104 C:\Program Files\Internet Explorer\iexplore.exe
5664 C:\Program Files\Google\Google Toolbar\GoogleToolbarUser_32.exe
5804 C:\Windows\System32\Macromed\Flash\FlashUtil10l_ActiveX.exe
2548 C:\Program Files\Internet Explorer\iexplore.exe
4100 C:\Users\Marie\Desktop\MBRCheck.exe
1108 C:\Windows\System32\conime.exe
\\.\C: --> \\.\PhysicalDrive0 at offset 0x00000000'00100000 (NTFS)
\\.\D: --> \\.\PhysicalDrive0 at offset 0x00000022'cc100000 (NTFS)
PhysicalDrive0 Model Number: WDCWD1600BEVT-60ZCT1, Rev: 13.01A13
Size Device Name MBR Status
--------------------------------------------
149 GB \\.\PhysicalDrive0 Unknown MBR code
SHA1: 6DF26AE7D6663DFFFF5602BEDE5BE4683120D56C
Found non-standard or infected MBR.
Enter 'Y' and hit ENTER for more options, or 'N' to exit:
Options:
[1] Dump the MBR of a physical disk to file.
[2] Restore the MBR of a physical disk with a standard boot code.
[3] Exit.
Enter your choice: Enter the physical disk number to fix (0-99, -1 to cancel): 2Available MBR codes:
[ 0] Default (Windows Vista)
[ 1] Windows XP
[ 2] Windows Server 2003
[ 3] Windows Vista
[ 4] Windows 2008
[ 5] Windows 7
[-1] Cancel
Please select the MBR code to write to this drive: 3
Do you want to fix the MBR code? Type 'YES' and hit ENTER to continue: yes
Error opening disk (2)!
Done!
Salut,
Télécharge Defogger (de jpshortstuff) sur ton Bureau
* Lance le
* Une fenêtre apparait : clique sur "Disable"
* Fais redémarrer l'ordinateur si l'outil te le demande
* Quand nous aurons terminé la désinfection, tu pourras réactiver ces logiciels en relançant Defogger et en cliquant sur "Re-enable"
Ensuite
* Télécharge load_tdsskiller (de Loup Blanc) sur ton Bureau
http://fradesch.perso.cegetel.net/transf/Load_tdsskiller.exe
* Lance load_tdsskiller en faisant un double-clic dessus / Lance par un clic-droit dessus ? Exécuter en temps qu'administrateur
* L'outil va se connecter pour télécharger une copie à jour de TDSSKiller, puis va lancer une analyse
* Lorsque l'outil a terminé son travail d'inspection, si des nuisibles ("Malicious objects") ont été trouvés, vérifier que l'option (Cure) est sélectionnée,
* Si des objects suspects ("Suspicious objects") ont été détectés, sur l'écran de demande de confirmation, modifier l'action à entreprendre et indiquer Quarantine (au lieu de Skip),
* A la fin, il te sera demandé d'appuyer sur une touche, puis le rapport s'affichera automatiquement : copie-colle son contenu dans ta prochaine réponse (C:\tdsskiller\report.txt)
Télécharge Defogger (de jpshortstuff) sur ton Bureau
* Lance le
* Une fenêtre apparait : clique sur "Disable"
* Fais redémarrer l'ordinateur si l'outil te le demande
* Quand nous aurons terminé la désinfection, tu pourras réactiver ces logiciels en relançant Defogger et en cliquant sur "Re-enable"
Ensuite
* Télécharge load_tdsskiller (de Loup Blanc) sur ton Bureau
http://fradesch.perso.cegetel.net/transf/Load_tdsskiller.exe
* Lance load_tdsskiller en faisant un double-clic dessus / Lance par un clic-droit dessus ? Exécuter en temps qu'administrateur
* L'outil va se connecter pour télécharger une copie à jour de TDSSKiller, puis va lancer une analyse
* Lorsque l'outil a terminé son travail d'inspection, si des nuisibles ("Malicious objects") ont été trouvés, vérifier que l'option (Cure) est sélectionnée,
* Si des objects suspects ("Suspicious objects") ont été détectés, sur l'écran de demande de confirmation, modifier l'action à entreprendre et indiquer Quarantine (au lieu de Skip),
* A la fin, il te sera demandé d'appuyer sur une touche, puis le rapport s'affichera automatiquement : copie-colle son contenu dans ta prochaine réponse (C:\tdsskiller\report.txt)
Bonjour,
désolée pour le retard
je te transmets le rapport "defogger"
disable :
defogger_disable by jpshortstuff (23.02.10.1)
Log created at 13:04 on 05/06/2011 (Marie)
Checking for autostart values...
HKCU\~\Run values retrieved.
HKLM\~\Run values retrieved.
Checking for services/drivers...
-=E.O.F=-
enable :
defogger_enable by jpshortstuff (23.02.10.1)
Log created at 13:04 on 05/06/2011 (Marie)
Parsing file...
-=E.O.F=-
tdsskiller :
2011/06/05 13:09:57.0800 4900 TDSS rootkit removing tool 2.5.3.0 May 25 2011 07:09:24
2011/06/05 13:09:57.0956 4900 ================================================================================
2011/06/05 13:09:57.0956 4900 SystemInfo:
2011/06/05 13:09:57.0956 4900
2011/06/05 13:09:57.0956 4900 OS Version: 6.0.6001 ServicePack: 1.0
2011/06/05 13:09:57.0956 4900 Product type: Workstation
2011/06/05 13:09:57.0956 4900 ComputerName: PC-DE-MARIE
2011/06/05 13:09:57.0956 4900 UserName: Marie
2011/06/05 13:09:57.0956 4900 Windows directory: C:\Windows
2011/06/05 13:09:57.0956 4900 System windows directory: C:\Windows
2011/06/05 13:09:57.0956 4900 Processor architecture: Intel x86
2011/06/05 13:09:57.0956 4900 Number of processors: 1
2011/06/05 13:09:57.0956 4900 Page size: 0x1000
2011/06/05 13:09:57.0956 4900 Boot type: Normal boot
2011/06/05 13:09:57.0956 4900 ================================================================================
2011/06/05 13:09:59.0001 4900 Initialize success
2011/06/05 13:10:04.0368 0552 ================================================================================
2011/06/05 13:10:04.0368 0552 Scan started
2011/06/05 13:10:04.0368 0552 Mode: Manual;
2011/06/05 13:10:04.0368 0552 ================================================================================
2011/06/05 13:10:04.0960 0552 ACPI (fcb8c7210f0135e24c6580f7f649c73c) C:\Windows\system32\drivers\acpi.sys
2011/06/05 13:10:04.0976 0552 adp94xx (04f0fcac69c7c71a3ac4eb97fafc8303) C:\Windows\system32\drivers\adp94xx.sys
2011/06/05 13:10:05.0007 0552 adpahci (60505e0041f7751bdbb80f88bf45c2ce) C:\Windows\system32\drivers\adpahci.sys
2011/06/05 13:10:05.0038 0552 adpu160m (8a42779b02aec986eab64ecfc98f8bd7) C:\Windows\system32\drivers\adpu160m.sys
2011/06/05 13:10:05.0054 0552 adpu320 (241c9e37f8ce45ef51c3de27515ca4e5) C:\Windows\system32\drivers\adpu320.sys
2011/06/05 13:10:05.0132 0552 AFD (763e172a55177e478cb419f88fd0ba03) C:\Windows\system32\drivers\afd.sys
2011/06/05 13:10:05.0194 0552 agp440 (13f9e33747e6b41a3ff305c37db0d360) C:\Windows\system32\drivers\agp440.sys
2011/06/05 13:10:05.0226 0552 aic78xx (ae1fdf7bf7bb6c6a70f67699d880592a) C:\Windows\system32\drivers\djsvs.sys
2011/06/05 13:10:05.0257 0552 aliide (3d76fda1a10acc3dc84728f55c29b6d4) C:\Windows\system32\drivers\aliide.sys
2011/06/05 13:10:05.0288 0552 amdagp (c47344bc706e5f0b9dce369516661578) C:\Windows\system32\drivers\amdagp.sys
2011/06/05 13:10:05.0304 0552 amdide (5b92e7839f5a1fbc1b39de67758ad6f8) C:\Windows\system32\drivers\amdide.sys
2011/06/05 13:10:05.0335 0552 AmdK7 (18f29b49ad23ecee3d2a826c725c8d48) C:\Windows\system32\drivers\amdk7.sys
2011/06/05 13:10:05.0350 0552 AmdK8 (93ae7f7dd54ab986a6f1a1b37be7442d) C:\Windows\system32\drivers\amdk8.sys
2011/06/05 13:10:05.0444 0552 arc (5d2888182fb46632511acee92fdad522) C:\Windows\system32\drivers\arc.sys
2011/06/05 13:10:05.0475 0552 arcsas (5e2a321bd7c8b3624e41fdec3e244945) C:\Windows\system32\drivers\arcsas.sys
2011/06/05 13:10:05.0522 0552 aswFsBlk (1c2e6bb4fe8621b1b863855b02bc33eb) C:\Windows\system32\drivers\aswFsBlk.sys
2011/06/05 13:10:05.0600 0552 aswMonFlt (b0f137f664f10829cd2380b0e20e7c29) C:\Windows\system32\drivers\aswMonFlt.sys
2011/06/05 13:10:05.0647 0552 aswRdr (b6a9373619d851be80fb5f1b5eed0d4e) C:\Windows\system32\drivers\aswRdr.sys
2011/06/05 13:10:05.0740 0552 aswSnx (9be41c1ae8bc481eb662d85c98d979c2) C:\Windows\system32\drivers\aswSnx.sys
2011/06/05 13:10:05.0834 0552 aswSP (4b1a54ba2bc5873a774df6b70ab8b0b3) C:\Windows\system32\drivers\aswSP.sys
2011/06/05 13:10:05.0865 0552 aswTdi (c7f1cea32766184911293f4e1ee653f5) C:\Windows\system32\drivers\aswTdi.sys
2011/06/05 13:10:05.0928 0552 AsyncMac (53b202abee6455406254444303e87be1) C:\Windows\system32\DRIVERS\asyncmac.sys
2011/06/05 13:10:05.0943 0552 atapi (9c0e70031905adbf94edb9ea14af943b) C:\Windows\system32\drivers\atapi.sys
2011/06/05 13:10:06.0037 0552 athr (02d34ac487df3da4e3f01874e61eb619) C:\Windows\system32\DRIVERS\athr.sys
2011/06/05 13:10:06.0146 0552 Beep (67e506b75bd5326a3ec7b70bd014dfb6) C:\Windows\system32\drivers\Beep.sys
2011/06/05 13:10:06.0208 0552 blbdrive (d4df28447741fd3d953526e33a617397) C:\Windows\system32\drivers\blbdrive.sys
2011/06/05 13:10:06.0286 0552 BlueletAudio (852a1bd08e7dfeb9e30b5440881c0501) C:\Windows\system32\DRIVERS\blueletaudio.sys
2011/06/05 13:10:06.0318 0552 BlueletSCOAudio (8fc27b12a02b43947787f0ef1885df9b) C:\Windows\system32\DRIVERS\BlueletSCOAudio.sys
2011/06/05 13:10:06.0396 0552 bowser (8153396d5551276227fa146900f734e6) C:\Windows\system32\DRIVERS\bowser.sys
2011/06/05 13:10:06.0458 0552 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\drivers\brfiltlo.sys
2011/06/05 13:10:06.0489 0552 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\drivers\brfiltup.sys
2011/06/05 13:10:06.0536 0552 Brserid (b304e75cff293029eddf094246747113) C:\Windows\system32\drivers\brserid.sys
2011/06/05 13:10:06.0567 0552 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\system32\drivers\brserwdm.sys
2011/06/05 13:10:06.0614 0552 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\system32\drivers\brusbmdm.sys
2011/06/05 13:10:06.0645 0552 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\system32\drivers\brusbser.sys
2011/06/05 13:10:06.0708 0552 BT (c5cce2b26f73f8cf7f3c82159e79aa08) C:\Windows\system32\DRIVERS\btnetdrv.sys
2011/06/05 13:10:06.0739 0552 Btcsrusb (da473d279420234170da795f1cad4479) C:\Windows\system32\Drivers\btcusb.sys
2011/06/05 13:10:06.0786 0552 BTHidEnum (ce643d0918123d76a5caab008fca9663) C:\Windows\system32\Drivers\vbtenum.sys
2011/06/05 13:10:06.0832 0552 BTHidMgr (dfca4fe4c8aec786b4d0f432eb730f48) C:\Windows\system32\Drivers\BTHidMgr.sys
2011/06/05 13:10:06.0895 0552 BTHMODEM (ad07c1ec6665b8b35741ab91200c6b68) C:\Windows\system32\drivers\bthmodem.sys
2011/06/05 13:10:06.0973 0552 cdfs (7add03e75beb9e6dd102c3081d29840a) C:\Windows\system32\DRIVERS\cdfs.sys
2011/06/05 13:10:07.0035 0552 cdrom (1ec25cea0de6ac4718bf89f9e1778b57) C:\Windows\system32\DRIVERS\cdrom.sys
2011/06/05 13:10:07.0082 0552 circlass (e5d4133f37219dbcfe102bc61072589d) C:\Windows\system32\drivers\circlass.sys
2011/06/05 13:10:07.0129 0552 CLFS (0703b9dee7eec6d6370edebd43d0f5c2) C:\Windows\system32\CLFS.sys
2011/06/05 13:10:07.0238 0552 CmBatt (99afc3795b58cc478fbbbcdc658fcb56) C:\Windows\system32\DRIVERS\CmBatt.sys
2011/06/05 13:10:07.0269 0552 cmdide (d36372a6ea6805efbe8884d10772313f) C:\Windows\system32\drivers\cmdide.sys
2011/06/05 13:10:07.0332 0552 Compbatt (6afef0b60fa25de07c0968983ee4f60a) C:\Windows\system32\DRIVERS\compbatt.sys
2011/06/05 13:10:07.0378 0552 crcdisk (741e9dff4f42d2d8477d0fc1dc0df871) C:\Windows\system32\drivers\crcdisk.sys
2011/06/05 13:10:07.0410 0552 Crusoe (1f07becdca750766a96cda811ba86410) C:\Windows\system32\drivers\crusoe.sys
2011/06/05 13:10:07.0488 0552 DfsC (9e635ae5e8ad93e2b5989e2e23679f97) C:\Windows\system32\Drivers\dfsc.sys
2011/06/05 13:10:07.0581 0552 disk (64109e623abd6955c8fb110b592e68b7) C:\Windows\system32\drivers\disk.sys
2011/06/05 13:10:07.0675 0552 Dot4 (4f59c172c094e1a1d46463a8dc061cbd) C:\Windows\system32\DRIVERS\Dot4.sys
2011/06/05 13:10:07.0737 0552 Dot4Print (80bf3ba09f6f2523c8f6b7cc6dbf7bd5) C:\Windows\system32\DRIVERS\Dot4Prt.sys
2011/06/05 13:10:07.0800 0552 dot4usb (c55004ca6b419b6695970dfe849b122f) C:\Windows\system32\DRIVERS\dot4usb.sys
2011/06/05 13:10:07.0971 0552 driverhardwarev2 (a694d8db6d360a3bbb0bd1517f1c1aee) C:\Program Files\ma-config.com\Drivers\driverhardwarev2.sys
2011/06/05 13:10:08.0096 0552 drmkaud (a261867e0862be565bc1f86d387c0805) C:\Windows\system32\drivers\drmkaud.sys
2011/06/05 13:10:08.0158 0552 DXGKrnl (85f33880b8cfb554bd3d9ccdb486845a) C:\Windows\System32\drivers\dxgkrnl.sys
2011/06/05 13:10:08.0236 0552 E1G60 (5425f74ac0c1dbd96a1e04f17d63f94c) C:\Windows\system32\DRIVERS\E1G60I32.sys
2011/06/05 13:10:08.0299 0552 Ecache (dd2cd259d83d8b72c02c5f2331ff9d68) C:\Windows\system32\drivers\ecache.sys
2011/06/05 13:10:08.0361 0552 elxstor (23b62471681a124889978f6295b3f4c6) C:\Windows\system32\drivers\elxstor.sys
2011/06/05 13:10:08.0424 0552 ErrDev (3db974f3935483555d7148663f726c61) C:\Windows\system32\drivers\errdev.sys
2011/06/05 13:10:08.0502 0552 exfat (0d858eb20589a34efb25695acaa6aa2d) C:\Windows\system32\drivers\exfat.sys
2011/06/05 13:10:08.0564 0552 fastfat (3c489390c2e2064563727752af8eab9e) C:\Windows\system32\drivers\fastfat.sys
2011/06/05 13:10:08.0611 0552 fdc (afe1e8b9782a0dd7fb46bbd88e43f89a) C:\Windows\system32\DRIVERS\fdc.sys
2011/06/05 13:10:08.0673 0552 FileInfo (a8c0139a884861e3aae9cfe73b208a9f) C:\Windows\system32\drivers\fileinfo.sys
2011/06/05 13:10:08.0704 0552 Filetrace (0ae429a696aecbc5970e3cf2c62635ae) C:\Windows\system32\drivers\filetrace.sys
2011/06/05 13:10:08.0751 0552 flpydisk (85b7cf99d532820495d68d747fda9ebd) C:\Windows\system32\DRIVERS\flpydisk.sys
2011/06/05 13:10:08.0798 0552 FltMgr (05ea53afe985443011e36dab07343b46) C:\Windows\system32\drivers\fltmgr.sys
2011/06/05 13:10:08.0845 0552 Fs_Rec (65ea8b77b5851854f0c55c43fa51a198) C:\Windows\system32\drivers\Fs_Rec.sys
2011/06/05 13:10:08.0876 0552 gagp30kx (34582a6e6573d54a07ece5fe24a126b5) C:\Windows\system32\drivers\gagp30kx.sys
2011/06/05 13:10:08.0923 0552 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
2011/06/05 13:10:09.0032 0552 HdAudAddService (cb04c744be0a61b1d648faed182c3b59) C:\Windows\system32\drivers\HdAudio.sys
2011/06/05 13:10:09.0079 0552 HDAudBus (c87b1ee051c0464491c1a7b03fa0bc99) C:\Windows\system32\DRIVERS\HDAudBus.sys
2011/06/05 13:10:09.0110 0552 HidBth (1338520e78d90154ed6be8f84de5fceb) C:\Windows\system32\drivers\hidbth.sys
2011/06/05 13:10:09.0157 0552 HidIr (ff3160c3a2445128c5a6d9b076da519e) C:\Windows\system32\drivers\hidir.sys
2011/06/05 13:10:09.0219 0552 HidUsb (e2b5bd48afcc0f0974fb44641b223250) C:\Windows\system32\DRIVERS\hidusb.sys
2011/06/05 13:10:09.0266 0552 HpCISSs (16ee7b23a009e00d835cdb79574a91a6) C:\Windows\system32\drivers\hpcisss.sys
2011/06/05 13:10:09.0328 0552 HpqKbFiltr (35956140e686d53bf676cf0c778880fc) C:\Windows\system32\DRIVERS\HpqKbFiltr.sys
2011/06/05 13:10:09.0391 0552 HTTP (33b02459e86d0a2b86a6b9fe19139390) C:\Windows\system32\drivers\HTTP.sys
2011/06/05 13:10:09.0422 0552 i2omp (c6b032d69650985468160fc9937cf5b4) C:\Windows\system32\drivers\i2omp.sys
2011/06/05 13:10:09.0500 0552 i8042prt (22d56c8184586b7a1f6fa60be5f5a2bd) C:\Windows\system32\DRIVERS\i8042prt.sys
2011/06/05 13:10:09.0547 0552 iaStorV (54155ea1b0df185878e0fc9ec3ac3a14) C:\Windows\system32\drivers\iastorv.sys
2011/06/05 13:10:09.0672 0552 igfx (0391268713612372e4e0eceaadad41d5) C:\Windows\system32\DRIVERS\igdkmd32.sys
2011/06/05 13:10:09.0718 0552 iirsp (2d077bf86e843f901d8db709c95b49a5) C:\Windows\system32\drivers\iirsp.sys
2011/06/05 13:10:09.0859 0552 IntcHdmiAddService (092a78e9c6f71bf0e22379503b90e800) C:\Windows\system32\drivers\IntcHdmi.sys
2011/06/05 13:10:09.0921 0552 intelide (dd512a049bd7b4bce8a83554c5eff2c1) C:\Windows\system32\drivers\intelide.sys
2011/06/05 13:10:09.0952 0552 intelppm (224191001e78c89dfa78924c3ea595ff) C:\Windows\system32\DRIVERS\intelppm.sys
2011/06/05 13:10:09.0999 0552 IpFilterDriver (62c265c38769b864cb25b4bcf62df6c3) C:\Windows\system32\DRIVERS\ipfltdrv.sys
2011/06/05 13:10:10.0077 0552 IPMIDRV (b25aaf203552b7b3491139d582b39ad1) C:\Windows\system32\drivers\ipmidrv.sys
2011/06/05 13:10:10.0108 0552 IPNAT (8793643a67b42cec66490b2a0cf92d68) C:\Windows\system32\DRIVERS\ipnat.sys
2011/06/05 13:10:10.0186 0552 IRENUM (109c0dfb82c3632fbd11949b73aeeac9) C:\Windows\system32\drivers\irenum.sys
2011/06/05 13:10:10.0218 0552 isapnp (6c70698a3e5c4376c6ab5c7c17fb0614) C:\Windows\system32\drivers\isapnp.sys
2011/06/05 13:10:10.0264 0552 iScsiPrt (f247eec28317f6c739c16de420097301) C:\Windows\system32\DRIVERS\msiscsi.sys
2011/06/05 13:10:10.0311 0552 iteatapi (bced60d16156e428f8df8cf27b0df150) C:\Windows\system32\drivers\iteatapi.sys
2011/06/05 13:10:10.0327 0552 iteraid (06fa654504a498c30adca8bec4e87e7e) C:\Windows\system32\drivers\iteraid.sys
2011/06/05 13:10:10.0374 0552 kbdclass (37605e0a8cf00cbba538e753e4344c6e) C:\Windows\system32\DRIVERS\kbdclass.sys
2011/06/05 13:10:10.0420 0552 kbdhid (18247836959ba67e3511b62846b9c2e0) C:\Windows\system32\DRIVERS\kbdhid.sys
2011/06/05 13:10:10.0498 0552 KSecDD (7a0cf7908b6824d6a2a1d313e5ae3dca) C:\Windows\system32\Drivers\ksecdd.sys
2011/06/05 13:10:10.0592 0552 lltdio (d1c5883087a0c3f1344d9d55a44901f6) C:\Windows\system32\DRIVERS\lltdio.sys
2011/06/05 13:10:10.0654 0552 LSI_FC (c7e15e82879bf3235b559563d4185365) C:\Windows\system32\drivers\lsi_fc.sys
2011/06/05 13:10:10.0686 0552 LSI_SAS (ee01ebae8c9bf0fa072e0ff68718920a) C:\Windows\system32\drivers\lsi_sas.sys
2011/06/05 13:10:10.0732 0552 LSI_SCSI (912a04696e9ca30146a62afa1463dd5c) C:\Windows\system32\drivers\lsi_scsi.sys
2011/06/05 13:10:10.0779 0552 luafv (8f5c7426567798e62a3b3614965d62cc) C:\Windows\system32\drivers\luafv.sys
2011/06/05 13:10:10.0888 0552 massfilter (6490fe1b088c7199a9b6ce0e04a98a8b) C:\Windows\system32\drivers\massfilter.sys
2011/06/05 13:10:10.0920 0552 megasas (0001ce609d66632fa17b84705f658879) C:\Windows\system32\drivers\megasas.sys
2011/06/05 13:10:10.0951 0552 MegaSR (c252f32cd9a49dbfc25ecf26ebd51a99) C:\Windows\system32\drivers\megasr.sys
2011/06/05 13:10:10.0998 0552 Modem (e13b5ea0f51ba5b1512ec671393d09ba) C:\Windows\system32\drivers\modem.sys
2011/06/05 13:10:11.0060 0552 monitor (0a9bb33b56e294f686abb7c1e4e2d8a8) C:\Windows\system32\DRIVERS\monitor.sys
2011/06/05 13:10:11.0091 0552 mouclass (5bf6a1326a335c5298477754a506d263) C:\Windows\system32\DRIVERS\mouclass.sys
2011/06/05 13:10:11.0138 0552 mouhid (93b8d4869e12cfbe663915502900876f) C:\Windows\system32\DRIVERS\mouhid.sys
2011/06/05 13:10:11.0232 0552 MountMgr (bdafc88aa6b92f7842416ea6a48e1600) C:\Windows\system32\drivers\mountmgr.sys
2011/06/05 13:10:11.0294 0552 mpio (511d011289755dd9f9a7579fb0b064e6) C:\Windows\system32\drivers\mpio.sys
2011/06/05 13:10:11.0325 0552 mpsdrv (22241feba9b2defa669c8cb0a8dd7d2e) C:\Windows\system32\drivers\mpsdrv.sys
2011/06/05 13:10:11.0372 0552 Mraid35x (4fbbb70d30fd20ec51f80061703b001e) C:\Windows\system32\drivers\mraid35x.sys
2011/06/05 13:10:11.0403 0552 MRxDAV (ae3de84536b6799d2267443cec8edbb9) C:\Windows\system32\drivers\mrxdav.sys
2011/06/05 13:10:11.0466 0552 mrxsmb (cc752d233ef39875ca6885d9415ba869) C:\Windows\system32\DRIVERS\mrxsmb.sys
2011/06/05 13:10:11.0512 0552 mrxsmb10 (9049dddd4bd27d43d82f5968f1da76e4) C:\Windows\system32\DRIVERS\mrxsmb10.sys
2011/06/05 13:10:11.0544 0552 mrxsmb20 (91dc069b6831ef564e7d8c97eaf0343e) C:\Windows\system32\DRIVERS\mrxsmb20.sys
2011/06/05 13:10:11.0590 0552 msahci (aa305cff241da187bd5077de4a2a043d) C:\Windows\system32\drivers\msahci.sys
2011/06/05 13:10:11.0622 0552 msdsm (4468b0f385a86ecddaf8d3ca662ec0e7) C:\Windows\system32\drivers\msdsm.sys
2011/06/05 13:10:11.0684 0552 Msfs (a9927f4a46b816c92f461acb90cf8515) C:\Windows\system32\drivers\Msfs.sys
2011/06/05 13:10:11.0746 0552 msisadrv (0f400e306f385c56317357d6dea56f62) C:\Windows\system32\drivers\msisadrv.sys
2011/06/05 13:10:11.0809 0552 MSKSSRV (d8c63d34d9c9e56c059e24ec7185cc07) C:\Windows\system32\drivers\MSKSSRV.sys
2011/06/05 13:10:11.0840 0552 MSPCLOCK (1d373c90d62ddb641d50e55b9e78d65e) C:\Windows\system32\drivers\MSPCLOCK.sys
2011/06/05 13:10:11.0871 0552 MSPQM (b572da05bf4e098d4bba3a4734fb505b) C:\Windows\system32\drivers\MSPQM.sys
2011/06/05 13:10:11.0918 0552 MsRPC (b5614aecb05a9340aa0fb55bf561cc63) C:\Windows\system32\drivers\MsRPC.sys
2011/06/05 13:10:11.0965 0552 mssmbios (e384487cb84be41d09711c30ca79646c) C:\Windows\system32\DRIVERS\mssmbios.sys
2011/06/05 13:10:11.0996 0552 MSTEE (7199c1eec1e4993caf96b8c0a26bd58a) C:\Windows\system32\drivers\MSTEE.sys
2011/06/05 13:10:12.0027 0552 Mup (6dfd1d322de55b0b7db7d21b90bec49c) C:\Windows\system32\Drivers\mup.sys
2011/06/05 13:10:12.0105 0552 NativeWifiP (3c21ce48ff529bb73dadb98770b54025) C:\Windows\system32\DRIVERS\nwifi.sys
2011/06/05 13:10:12.0183 0552 NDIS (9bdc71790fa08f0a0b5f10462b1bd0b1) C:\Windows\system32\drivers\ndis.sys
2011/06/05 13:10:12.0246 0552 NdisTapi (0e186e90404980569fb449ba7519ae61) C:\Windows\system32\DRIVERS\ndistapi.sys
2011/06/05 13:10:12.0277 0552 Ndisuio (d6973aa34c4d5d76c0430b181c3cd389) C:\Windows\system32\DRIVERS\ndisuio.sys
2011/06/05 13:10:12.0324 0552 NdisWan (3d14c3b3496f88890d431e8aa022a411) C:\Windows\system32\DRIVERS\ndiswan.sys
2011/06/05 13:10:12.0370 0552 NDProxy (71dab552b41936358f3b541ae5997fb3) C:\Windows\system32\drivers\NDProxy.sys
2011/06/05 13:10:12.0448 0552 NetBIOS (bcd093a5a6777cf626434568dc7dba78) C:\Windows\system32\DRIVERS\netbios.sys
2011/06/05 13:10:12.0495 0552 netbt (7c5fee5b1c5728507cd96fb4a13e7a02) C:\Windows\system32\DRIVERS\netbt.sys
2011/06/05 13:10:12.0636 0552 NETw3v32 (35d5458d9a1b26b2005abffbf4c1c5e7) C:\Windows\system32\DRIVERS\NETw3v32.sys
2011/06/05 13:10:12.0682 0552 nfrd960 (2e7fb731d4790a1bc6270accefacb36e) C:\Windows\system32\drivers\nfrd960.sys
2011/06/05 13:10:12.0745 0552 Npfs (ecb5003f484f9ed6c608d6d6c7886cbb) C:\Windows\system32\drivers\Npfs.sys
2011/06/05 13:10:12.0776 0552 nsiproxy (609773e344a97410ce4ebf74a8914fcf) C:\Windows\system32\drivers\nsiproxy.sys
2011/06/05 13:10:12.0838 0552 Ntfs (b4effe29eb4f15538fd8a9681108492d) C:\Windows\system32\drivers\Ntfs.sys
2011/06/05 13:10:12.0885 0552 ntrigdigi (e875c093aec0c978a90f30c9e0dfbb72) C:\Windows\system32\drivers\ntrigdigi.sys
2011/06/05 13:10:12.0916 0552 Null (c5dbbcda07d780bda9b685df333bb41e) C:\Windows\system32\drivers\Null.sys
2011/06/05 13:10:12.0948 0552 nvraid (2edf9e7751554b42cbb60116de727101) C:\Windows\system32\drivers\nvraid.sys
2011/06/05 13:10:12.0994 0552 nvstor (abed0c09758d1d97db0042dbb2688177) C:\Windows\system32\drivers\nvstor.sys
2011/06/05 13:10:13.0041 0552 nv_agp (18bbdf913916b71bd54575bdb6eeac0b) C:\Windows\system32\drivers\nv_agp.sys
2011/06/05 13:10:13.0150 0552 ohci1394 (790e27c3db53410b40ff9ef2fd10a1d9) C:\Windows\system32\DRIVERS\ohci1394.sys
2011/06/05 13:10:13.0213 0552 Parport (0fa9b5055484649d63c303fe404e5f4d) C:\Windows\system32\drivers\parport.sys
2011/06/05 13:10:13.0260 0552 partmgr (3b38467e7c3daed009dfe359e17f139f) C:\Windows\system32\drivers\partmgr.sys
2011/06/05 13:10:13.0291 0552 Parvdm (4f9a6a8a31413180d0fcb279ad5d8112) C:\Windows\system32\drivers\parvdm.sys
2011/06/05 13:10:13.0353 0552 pci (01b94418deb235dff777cc80076354b4) C:\Windows\system32\drivers\pci.sys
2011/06/05 13:10:13.0384 0552 pciide (1d8b3d8df8eb7fcf2f0ac02f9f947802) C:\Windows\system32\drivers\pciide.sys
2011/06/05 13:10:13.0431 0552 pcmcia (e6f3fb1b86aa519e7698ad05e58b04e5) C:\Windows\system32\drivers\pcmcia.sys
2011/06/05 13:10:13.0509 0552 PEAUTH (6349f6ed9c623b44b52ea3c63c831a92) C:\Windows\system32\drivers\peauth.sys
2011/06/05 13:10:13.0728 0552 PptpMiniport (ecfffaec0c1ecd8dbc77f39070ea1db1) C:\Windows\system32\DRIVERS\raspptp.sys
2011/06/05 13:10:13.0759 0552 Processor (2027293619dd0f047c584cf2e7df4ffd) C:\Windows\system32\drivers\processr.sys
2011/06/05 13:10:13.0852 0552 PSched (bfef604508a0ed1eae2a73e872555ffb) C:\Windows\system32\DRIVERS\pacer.sys
2011/06/05 13:10:13.0930 0552 ql2300 (0a6db55afb7820c99aa1f3a1d270f4f6) C:\Windows\system32\drivers\ql2300.sys
2011/06/05 13:10:14.0008 0552 ql40xx (81a7e5c076e59995d54bc1ed3a16e60b) C:\Windows\system32\drivers\ql40xx.sys
2011/06/05 13:10:14.0071 0552 QWAVEdrv (9f5e0e1926014d17486901c88eca2db7) C:\Windows\system32\drivers\qwavedrv.sys
2011/06/05 13:10:14.0102 0552 RasAcd (147d7f9c556d259924351feb0de606c3) C:\Windows\system32\DRIVERS\rasacd.sys
2011/06/05 13:10:14.0149 0552 Rasl2tp (a214adbaf4cb47dd2728859ef31f26b0) C:\Windows\system32\DRIVERS\rasl2tp.sys
2011/06/05 13:10:14.0196 0552 RasPppoe (3e9d9b048107b40d87b97df2e48e0744) C:\Windows\system32\DRIVERS\raspppoe.sys
2011/06/05 13:10:14.0227 0552 RasSstp (a7d141684e9500ac928a772ed8e6b671) C:\Windows\system32\DRIVERS\rassstp.sys
2011/06/05 13:10:14.0289 0552 rdbss (6e1c5d0457622f9ee35f683110e93d14) C:\Windows\system32\DRIVERS\rdbss.sys
2011/06/05 13:10:14.0320 0552 RDPCDD (89e59be9a564262a3fb6c4f4f1cd9899) C:\Windows\system32\DRIVERS\RDPCDD.sys
2011/06/05 13:10:14.0383 0552 rdpdr (fbc0bacd9c3d7f6956853f64a66e252d) C:\Windows\system32\drivers\rdpdr.sys
2011/06/05 13:10:14.0414 0552 RDPENCDD (9d91fe5286f748862ecffa05f8a0710c) C:\Windows\system32\drivers\rdpencdd.sys
2011/06/05 13:10:14.0476 0552 RDPWD (e1c18f4097a5abcec941dc4b2f99db7e) C:\Windows\system32\drivers\RDPWD.sys
2011/06/05 13:10:14.0570 0552 ROOTMODEM (75e8a6bfa7374aba833ae92bf41ae4e6) C:\Windows\system32\Drivers\RootMdm.sys
2011/06/05 13:10:14.0632 0552 rspndr (9c508f4074a39e8b4b31d27198146fad) C:\Windows\system32\DRIVERS\rspndr.sys
2011/06/05 13:10:14.0710 0552 RTL8169 (5163f804256deb8cf1ef64b780a18caa) C:\Windows\system32\DRIVERS\Rtlh86.sys
2011/06/05 13:10:14.0757 0552 RTSTOR (2b7da5a2d2c4aae01098d910007edac5) C:\Windows\system32\drivers\RTSTOR.SYS
2011/06/05 13:10:14.0944 0552 sbp2port (3ce8f073a557e172b330109436984e30) C:\Windows\system32\drivers\sbp2port.sys
2011/06/05 13:10:15.0038 0552 sdbus (126ea89bcc413ee45e3004fb0764888f) C:\Windows\system32\DRIVERS\sdbus.sys
2011/06/05 13:10:15.0100 0552 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
2011/06/05 13:10:15.0163 0552 Serenum (68e44e331d46f0fb38f0863a84cd1a31) C:\Windows\system32\DRIVERS\serenum.sys
2011/06/05 13:10:15.0225 0552 Serial (c70d69a918b178d3c3b06339b40c2e1b) C:\Windows\system32\drivers\serial.sys
2011/06/05 13:10:15.0272 0552 sermouse (8af3d28a879bf75db53a0ee7a4289624) C:\Windows\system32\drivers\sermouse.sys
2011/06/05 13:10:15.0334 0552 sffdisk (3efa810bdca87f6ecc24f9832243fe86) C:\Windows\system32\drivers\sffdisk.sys
2011/06/05 13:10:15.0366 0552 sffp_mmc (e95d451f7ea3e583aec75f3b3ee42dc5) C:\Windows\system32\drivers\sffp_mmc.sys
2011/06/05 13:10:15.0412 0552 sffp_sd (3d0ea348784b7ac9ea9bd9f317980979) C:\Windows\system32\drivers\sffp_sd.sys
2011/06/05 13:10:15.0444 0552 sfloppy (46ed8e91793b2e6f848015445a0ac188) C:\Windows\system32\drivers\sfloppy.sys
2011/06/05 13:10:15.0506 0552 sisagp (1d76624a09a054f682d746b924e2dbc3) C:\Windows\system32\drivers\sisagp.sys
2011/06/05 13:10:15.0553 0552 SiSRaid2 (43cb7aa756c7db280d01da9b676cfde2) C:\Windows\system32\drivers\sisraid2.sys
2011/06/05 13:10:15.0600 0552 SiSRaid4 (a99c6c8b0baa970d8aa59ddc50b57f94) C:\Windows\system32\drivers\sisraid4.sys
2011/06/05 13:10:15.0646 0552 Smb (031e6bcd53c9b2b9ace111eafec347b6) C:\Windows\system32\DRIVERS\smb.sys
2011/06/05 13:10:15.0724 0552 spldr (7aebdeef071fe28b0eef2cdd69102bff) C:\Windows\system32\drivers\spldr.sys
2011/06/05 13:10:15.0802 0552 srv (2252aef839b1093d16761189f45af885) C:\Windows\system32\DRIVERS\srv.sys
2011/06/05 13:10:15.0849 0552 srv2 (96512f4a30b741e7d33a7936b9abbc20) C:\Windows\system32\DRIVERS\srv2.sys
2011/06/05 13:10:15.0912 0552 srvnet (1c69e33e0e23626da5a34ca5ba0dd990) C:\Windows\system32\DRIVERS\srvnet.sys
2011/06/05 13:10:16.0021 0552 STHDA (5d09e4934bc269c93ebe7c96e34aa8ee) C:\Windows\system32\DRIVERS\stwrt.sys
2011/06/05 13:10:16.0068 0552 swenum (7ba58ecf0c0a9a69d44b3dca62becf56) C:\Windows\system32\DRIVERS\swenum.sys
2011/06/05 13:10:16.0114 0552 Symc8xx (192aa3ac01df071b541094f251deed10) C:\Windows\system32\drivers\symc8xx.sys
2011/06/05 13:10:16.0161 0552 Sym_hi (8c8eb8c76736ebaf3b13b633b2e64125) C:\Windows\system32\drivers\sym_hi.sys
2011/06/05 13:10:16.0224 0552 Sym_u3 (8072af52b5fd103bbba387a1e49f62cb) C:\Windows\system32\drivers\sym_u3.sys
2011/06/05 13:10:16.0270 0552 SynTP (aee6e411a915f50101895ba8dc5c15d4) C:\Windows\system32\DRIVERS\SynTP.sys
2011/06/05 13:10:16.0380 0552 Tcpip (782568ab6a43160a159b6215b70bcce9) C:\Windows\system32\drivers\tcpip.sys
2011/06/05 13:10:16.0442 0552 Tcpip6 (782568ab6a43160a159b6215b70bcce9) C:\Windows\system32\DRIVERS\tcpip.sys
2011/06/05 13:10:16.0504 0552 tcpipreg (d4a2e4a4b011f3a883af77315a5ae76b) C:\Windows\system32\drivers\tcpipreg.sys
2011/06/05 13:10:16.0536 0552 TDPIPE (5dcf5e267be67a1ae926f2df77fbcc56) C:\Windows\system32\drivers\tdpipe.sys
2011/06/05 13:10:16.0582 0552 TDTCP (389c63e32b3cefed425b61ed92d3f021) C:\Windows\system32\drivers\tdtcp.sys
2011/06/05 13:10:16.0629 0552 tdx (d09276b1fab033ce1d40dcbdf303d10f) C:\Windows\system32\DRIVERS\tdx.sys
2011/06/05 13:10:16.0660 0552 TermDD (a048056f5e1a96a9bf3071b91741a5aa) C:\Windows\system32\DRIVERS\termdd.sys
2011/06/05 13:10:16.0754 0552 tssecsrv (dcf0f056a2e4f52287264f5ab29cf206) C:\Windows\system32\DRIVERS\tssecsrv.sys
2011/06/05 13:10:16.0816 0552 tunmp (caecc0120ac49e3d2f758b9169872d38) C:\Windows\system32\DRIVERS\tunmp.sys
2011/06/05 13:10:16.0863 0552 tunnel (6042505ff6fa9ac1ef7684d0e03b6940) C:\Windows\system32\DRIVERS\tunnel.sys
2011/06/05 13:10:16.0910 0552 uagp35 (7d33c4db2ce363c8518d2dfcf533941f) C:\Windows\system32\drivers\uagp35.sys
2011/06/05 13:10:16.0941 0552 udfs (8b5088058fa1d1cd897a2113ccff6c58) C:\Windows\system32\DRIVERS\udfs.sys
2011/06/05 13:10:17.0019 0552 uliagpkx (b0acfdc9e4af279e9116c03e014b2b27) C:\Windows\system32\drivers\uliagpkx.sys
2011/06/05 13:10:17.0050 0552 uliahci (9224bb254f591de4ca8d572a5f0d635c) C:\Windows\system32\drivers\uliahci.sys
2011/06/05 13:10:17.0097 0552 UlSata (8514d0e5cd0534467c5fc61be94a569f) C:\Windows\system32\drivers\ulsata.sys
2011/06/05 13:10:17.0128 0552 ulsata2 (38c3c6e62b157a6bc46594fada45c62b) C:\Windows\system32\drivers\ulsata2.sys
2011/06/05 13:10:17.0160 0552 umbus (32cff9f809ae9aed85464492bf3e32d2) C:\Windows\system32\DRIVERS\umbus.sys
2011/06/05 13:10:17.0269 0552 USBAAPL (1df89c499bf45d878b87ebd4421d462d) C:\Windows\system32\Drivers\usbaapl.sys
2011/06/05 13:10:17.0316 0552 usbccgp (caf811ae4c147ffcd5b51750c7f09142) C:\Windows\system32\DRIVERS\usbccgp.sys
2011/06/05 13:10:17.0362 0552 usbcir (e9476e6c486e76bc4898074768fb7131) C:\Windows\system32\drivers\usbcir.sys
2011/06/05 13:10:17.0425 0552 usbehci (cebe90821810e76320155beba722fcf9) C:\Windows\system32\DRIVERS\usbehci.sys
2011/06/05 13:10:17.0456 0552 usbhub (cc6b28e4ce39951357963119ce47b143) C:\Windows\system32\DRIVERS\usbhub.sys
2011/06/05 13:10:17.0503 0552 usbohci (38dbc7dd6cc5a72011f187425384388b) C:\Windows\system32\drivers\usbohci.sys
2011/06/05 13:10:17.0550 0552 usbprint (e75c4b5269091d15a2e7dc0b6d35f2f5) C:\Windows\system32\DRIVERS\usbprint.sys
2011/06/05 13:10:17.0612 0552 usbscan (a508c9bd8724980512136b039bba65e9) C:\Windows\system32\DRIVERS\usbscan.sys
2011/06/05 13:10:17.0690 0552 USBSTOR (87ba6b83c5d19b69160968d07d6e2982) C:\Windows\system32\DRIVERS\USBSTOR.SYS
2011/06/05 13:10:17.0737 0552 usbuhci (814d653efc4d48be3b04a307eceff56f) C:\Windows\system32\DRIVERS\usbuhci.sys
2011/06/05 13:10:17.0799 0552 usbvideo (e67998e8f14cb0627a769f6530bcb352) C:\Windows\system32\Drivers\usbvideo.sys
2011/06/05 13:10:17.0893 0552 VComm (51750b0539986186c6931fc40d171521) C:\Windows\system32\DRIVERS\VComm.sys
2011/06/05 13:10:17.0924 0552 VcommMgr (6d9c891c0a761afed1f3609c2e56f2b9) C:\Windows\system32\Drivers\VcommMgr.sys
2011/06/05 13:10:18.0002 0552 vga (87b06e1f30b749a114f74622d013f8d4) C:\Windows\system32\DRIVERS\vgapnp.sys
2011/06/05 13:10:18.0033 0552 VgaSave (2e93ac0a1d8c79d019db6c51f036636c) C:\Windows\System32\drivers\vga.sys
2011/06/05 13:10:18.0080 0552 viaagp (5d7159def58a800d5781ba3a879627bc) C:\Windows\system32\drivers\viaagp.sys
2011/06/05 13:10:18.0127 0552 ViaC7 (c4f3a691b5bad343e6249bd8c2d45dee) C:\Windows\system32\drivers\viac7.sys
2011/06/05 13:10:18.0158 0552 viaide (ea1aa6e3abb3c194feba12a46de8cf2c) C:\Windows\system32\drivers\viaide.sys
2011/06/05 13:10:18.0205 0552 volmgr (69503668ac66c77c6cd7af86fbdf8c43) C:\Windows\system32\drivers\volmgr.sys
2011/06/05 13:10:18.0283 0552 volmgrx (98f5ffe6316bd74e9e2c97206c190196) C:\Windows\system32\drivers\volmgrx.sys
2011/06/05 13:10:18.0314 0552 volsnap (d8b4a53dd2769f226b3eb374374987c9) C:\Windows\system32\drivers\volsnap.sys
2011/06/05 13:10:18.0361 0552 vsmraid (587253e09325e6bf226b299774b728a9) C:\Windows\system32\drivers\vsmraid.sys
2011/06/05 13:10:18.0408 0552 WacomPen (48dfee8f1af7c8235d4e626f0c4fe031) C:\Windows\system32\drivers\wacompen.sys
2011/06/05 13:10:18.0454 0552 Wanarp (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
2011/06/05 13:10:18.0470 0552 Wanarpv6 (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
2011/06/05 13:10:18.0517 0552 Wd (78fe9542363f297b18c027b2d7e7c07f) C:\Windows\system32\drivers\wd.sys
2011/06/05 13:10:18.0564 0552 Wdf01000 (b6f0a7ad6d4bd325fbcd8bac96cd8d96) C:\Windows\system32\drivers\Wdf01000.sys
2011/06/05 13:10:18.0720 0552 WmiAcpi (2e7255d172df0b8283cdfb7b433b864e) C:\Windows\system32\DRIVERS\wmiacpi.sys
2011/06/05 13:10:18.0829 0552 ws2ifsl (e3a3cb253c0ec2494d4a61f5e43a389c) C:\Windows\system32\drivers\ws2ifsl.sys
2011/06/05 13:10:18.0907 0552 WUDFRd (ac13cb789d93412106b0fb6c7eb2bcb6) C:\Windows\system32\DRIVERS\WUDFRd.sys
2011/06/05 13:10:18.0985 0552 yukonwlh (7d1f3b131d503ef43ee594b5a2b9b427) C:\Windows\system32\DRIVERS\yk60x86.sys
2011/06/05 13:10:19.0063 0552 ZTEusbmdm6k (4692a3e087cf018808f376a3cc2128fa) C:\Windows\system32\DRIVERS\ZTEusbmdm6k.sys
2011/06/05 13:10:19.0110 0552 ZTEusbnet (c7f13366969b1633e1ec21ebc40fea13) C:\Windows\system32\DRIVERS\ZTEusbnet.sys
2011/06/05 13:10:19.0203 0552 ZTEusbnmea (4692a3e087cf018808f376a3cc2128fa) C:\Windows\system32\DRIVERS\ZTEusbnmea.sys
2011/06/05 13:10:19.0266 0552 ZTEusbser6k (4692a3e087cf018808f376a3cc2128fa) C:\Windows\system32\DRIVERS\ZTEusbser6k.sys
2011/06/05 13:10:19.0312 0552 ZTEusbvoice (4c2c0375d60276f543a36c133a67e80d) C:\Windows\system32\DRIVERS\ZTEusbvoice.sys
2011/06/05 13:10:19.0375 0552 MBR (0x1B8) (5c86adec17b739c437e145e3b3fc2e6d) \Device\Harddisk0\DR0
2011/06/05 13:10:19.0390 0552 ================================================================================
2011/06/05 13:10:19.0390 0552 Scan finished
2011/06/05 13:10:19.0390 0552 ================================================================================
2011/06/05 13:10:19.0422 5116 Detected object count: 0
2011/06/05 13:10:19.0422 5116 Actual detected object count: 0
désolée pour le retard
je te transmets le rapport "defogger"
disable :
defogger_disable by jpshortstuff (23.02.10.1)
Log created at 13:04 on 05/06/2011 (Marie)
Checking for autostart values...
HKCU\~\Run values retrieved.
HKLM\~\Run values retrieved.
Checking for services/drivers...
-=E.O.F=-
enable :
defogger_enable by jpshortstuff (23.02.10.1)
Log created at 13:04 on 05/06/2011 (Marie)
Parsing file...
-=E.O.F=-
tdsskiller :
2011/06/05 13:09:57.0800 4900 TDSS rootkit removing tool 2.5.3.0 May 25 2011 07:09:24
2011/06/05 13:09:57.0956 4900 ================================================================================
2011/06/05 13:09:57.0956 4900 SystemInfo:
2011/06/05 13:09:57.0956 4900
2011/06/05 13:09:57.0956 4900 OS Version: 6.0.6001 ServicePack: 1.0
2011/06/05 13:09:57.0956 4900 Product type: Workstation
2011/06/05 13:09:57.0956 4900 ComputerName: PC-DE-MARIE
2011/06/05 13:09:57.0956 4900 UserName: Marie
2011/06/05 13:09:57.0956 4900 Windows directory: C:\Windows
2011/06/05 13:09:57.0956 4900 System windows directory: C:\Windows
2011/06/05 13:09:57.0956 4900 Processor architecture: Intel x86
2011/06/05 13:09:57.0956 4900 Number of processors: 1
2011/06/05 13:09:57.0956 4900 Page size: 0x1000
2011/06/05 13:09:57.0956 4900 Boot type: Normal boot
2011/06/05 13:09:57.0956 4900 ================================================================================
2011/06/05 13:09:59.0001 4900 Initialize success
2011/06/05 13:10:04.0368 0552 ================================================================================
2011/06/05 13:10:04.0368 0552 Scan started
2011/06/05 13:10:04.0368 0552 Mode: Manual;
2011/06/05 13:10:04.0368 0552 ================================================================================
2011/06/05 13:10:04.0960 0552 ACPI (fcb8c7210f0135e24c6580f7f649c73c) C:\Windows\system32\drivers\acpi.sys
2011/06/05 13:10:04.0976 0552 adp94xx (04f0fcac69c7c71a3ac4eb97fafc8303) C:\Windows\system32\drivers\adp94xx.sys
2011/06/05 13:10:05.0007 0552 adpahci (60505e0041f7751bdbb80f88bf45c2ce) C:\Windows\system32\drivers\adpahci.sys
2011/06/05 13:10:05.0038 0552 adpu160m (8a42779b02aec986eab64ecfc98f8bd7) C:\Windows\system32\drivers\adpu160m.sys
2011/06/05 13:10:05.0054 0552 adpu320 (241c9e37f8ce45ef51c3de27515ca4e5) C:\Windows\system32\drivers\adpu320.sys
2011/06/05 13:10:05.0132 0552 AFD (763e172a55177e478cb419f88fd0ba03) C:\Windows\system32\drivers\afd.sys
2011/06/05 13:10:05.0194 0552 agp440 (13f9e33747e6b41a3ff305c37db0d360) C:\Windows\system32\drivers\agp440.sys
2011/06/05 13:10:05.0226 0552 aic78xx (ae1fdf7bf7bb6c6a70f67699d880592a) C:\Windows\system32\drivers\djsvs.sys
2011/06/05 13:10:05.0257 0552 aliide (3d76fda1a10acc3dc84728f55c29b6d4) C:\Windows\system32\drivers\aliide.sys
2011/06/05 13:10:05.0288 0552 amdagp (c47344bc706e5f0b9dce369516661578) C:\Windows\system32\drivers\amdagp.sys
2011/06/05 13:10:05.0304 0552 amdide (5b92e7839f5a1fbc1b39de67758ad6f8) C:\Windows\system32\drivers\amdide.sys
2011/06/05 13:10:05.0335 0552 AmdK7 (18f29b49ad23ecee3d2a826c725c8d48) C:\Windows\system32\drivers\amdk7.sys
2011/06/05 13:10:05.0350 0552 AmdK8 (93ae7f7dd54ab986a6f1a1b37be7442d) C:\Windows\system32\drivers\amdk8.sys
2011/06/05 13:10:05.0444 0552 arc (5d2888182fb46632511acee92fdad522) C:\Windows\system32\drivers\arc.sys
2011/06/05 13:10:05.0475 0552 arcsas (5e2a321bd7c8b3624e41fdec3e244945) C:\Windows\system32\drivers\arcsas.sys
2011/06/05 13:10:05.0522 0552 aswFsBlk (1c2e6bb4fe8621b1b863855b02bc33eb) C:\Windows\system32\drivers\aswFsBlk.sys
2011/06/05 13:10:05.0600 0552 aswMonFlt (b0f137f664f10829cd2380b0e20e7c29) C:\Windows\system32\drivers\aswMonFlt.sys
2011/06/05 13:10:05.0647 0552 aswRdr (b6a9373619d851be80fb5f1b5eed0d4e) C:\Windows\system32\drivers\aswRdr.sys
2011/06/05 13:10:05.0740 0552 aswSnx (9be41c1ae8bc481eb662d85c98d979c2) C:\Windows\system32\drivers\aswSnx.sys
2011/06/05 13:10:05.0834 0552 aswSP (4b1a54ba2bc5873a774df6b70ab8b0b3) C:\Windows\system32\drivers\aswSP.sys
2011/06/05 13:10:05.0865 0552 aswTdi (c7f1cea32766184911293f4e1ee653f5) C:\Windows\system32\drivers\aswTdi.sys
2011/06/05 13:10:05.0928 0552 AsyncMac (53b202abee6455406254444303e87be1) C:\Windows\system32\DRIVERS\asyncmac.sys
2011/06/05 13:10:05.0943 0552 atapi (9c0e70031905adbf94edb9ea14af943b) C:\Windows\system32\drivers\atapi.sys
2011/06/05 13:10:06.0037 0552 athr (02d34ac487df3da4e3f01874e61eb619) C:\Windows\system32\DRIVERS\athr.sys
2011/06/05 13:10:06.0146 0552 Beep (67e506b75bd5326a3ec7b70bd014dfb6) C:\Windows\system32\drivers\Beep.sys
2011/06/05 13:10:06.0208 0552 blbdrive (d4df28447741fd3d953526e33a617397) C:\Windows\system32\drivers\blbdrive.sys
2011/06/05 13:10:06.0286 0552 BlueletAudio (852a1bd08e7dfeb9e30b5440881c0501) C:\Windows\system32\DRIVERS\blueletaudio.sys
2011/06/05 13:10:06.0318 0552 BlueletSCOAudio (8fc27b12a02b43947787f0ef1885df9b) C:\Windows\system32\DRIVERS\BlueletSCOAudio.sys
2011/06/05 13:10:06.0396 0552 bowser (8153396d5551276227fa146900f734e6) C:\Windows\system32\DRIVERS\bowser.sys
2011/06/05 13:10:06.0458 0552 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\drivers\brfiltlo.sys
2011/06/05 13:10:06.0489 0552 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\drivers\brfiltup.sys
2011/06/05 13:10:06.0536 0552 Brserid (b304e75cff293029eddf094246747113) C:\Windows\system32\drivers\brserid.sys
2011/06/05 13:10:06.0567 0552 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\system32\drivers\brserwdm.sys
2011/06/05 13:10:06.0614 0552 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\system32\drivers\brusbmdm.sys
2011/06/05 13:10:06.0645 0552 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\system32\drivers\brusbser.sys
2011/06/05 13:10:06.0708 0552 BT (c5cce2b26f73f8cf7f3c82159e79aa08) C:\Windows\system32\DRIVERS\btnetdrv.sys
2011/06/05 13:10:06.0739 0552 Btcsrusb (da473d279420234170da795f1cad4479) C:\Windows\system32\Drivers\btcusb.sys
2011/06/05 13:10:06.0786 0552 BTHidEnum (ce643d0918123d76a5caab008fca9663) C:\Windows\system32\Drivers\vbtenum.sys
2011/06/05 13:10:06.0832 0552 BTHidMgr (dfca4fe4c8aec786b4d0f432eb730f48) C:\Windows\system32\Drivers\BTHidMgr.sys
2011/06/05 13:10:06.0895 0552 BTHMODEM (ad07c1ec6665b8b35741ab91200c6b68) C:\Windows\system32\drivers\bthmodem.sys
2011/06/05 13:10:06.0973 0552 cdfs (7add03e75beb9e6dd102c3081d29840a) C:\Windows\system32\DRIVERS\cdfs.sys
2011/06/05 13:10:07.0035 0552 cdrom (1ec25cea0de6ac4718bf89f9e1778b57) C:\Windows\system32\DRIVERS\cdrom.sys
2011/06/05 13:10:07.0082 0552 circlass (e5d4133f37219dbcfe102bc61072589d) C:\Windows\system32\drivers\circlass.sys
2011/06/05 13:10:07.0129 0552 CLFS (0703b9dee7eec6d6370edebd43d0f5c2) C:\Windows\system32\CLFS.sys
2011/06/05 13:10:07.0238 0552 CmBatt (99afc3795b58cc478fbbbcdc658fcb56) C:\Windows\system32\DRIVERS\CmBatt.sys
2011/06/05 13:10:07.0269 0552 cmdide (d36372a6ea6805efbe8884d10772313f) C:\Windows\system32\drivers\cmdide.sys
2011/06/05 13:10:07.0332 0552 Compbatt (6afef0b60fa25de07c0968983ee4f60a) C:\Windows\system32\DRIVERS\compbatt.sys
2011/06/05 13:10:07.0378 0552 crcdisk (741e9dff4f42d2d8477d0fc1dc0df871) C:\Windows\system32\drivers\crcdisk.sys
2011/06/05 13:10:07.0410 0552 Crusoe (1f07becdca750766a96cda811ba86410) C:\Windows\system32\drivers\crusoe.sys
2011/06/05 13:10:07.0488 0552 DfsC (9e635ae5e8ad93e2b5989e2e23679f97) C:\Windows\system32\Drivers\dfsc.sys
2011/06/05 13:10:07.0581 0552 disk (64109e623abd6955c8fb110b592e68b7) C:\Windows\system32\drivers\disk.sys
2011/06/05 13:10:07.0675 0552 Dot4 (4f59c172c094e1a1d46463a8dc061cbd) C:\Windows\system32\DRIVERS\Dot4.sys
2011/06/05 13:10:07.0737 0552 Dot4Print (80bf3ba09f6f2523c8f6b7cc6dbf7bd5) C:\Windows\system32\DRIVERS\Dot4Prt.sys
2011/06/05 13:10:07.0800 0552 dot4usb (c55004ca6b419b6695970dfe849b122f) C:\Windows\system32\DRIVERS\dot4usb.sys
2011/06/05 13:10:07.0971 0552 driverhardwarev2 (a694d8db6d360a3bbb0bd1517f1c1aee) C:\Program Files\ma-config.com\Drivers\driverhardwarev2.sys
2011/06/05 13:10:08.0096 0552 drmkaud (a261867e0862be565bc1f86d387c0805) C:\Windows\system32\drivers\drmkaud.sys
2011/06/05 13:10:08.0158 0552 DXGKrnl (85f33880b8cfb554bd3d9ccdb486845a) C:\Windows\System32\drivers\dxgkrnl.sys
2011/06/05 13:10:08.0236 0552 E1G60 (5425f74ac0c1dbd96a1e04f17d63f94c) C:\Windows\system32\DRIVERS\E1G60I32.sys
2011/06/05 13:10:08.0299 0552 Ecache (dd2cd259d83d8b72c02c5f2331ff9d68) C:\Windows\system32\drivers\ecache.sys
2011/06/05 13:10:08.0361 0552 elxstor (23b62471681a124889978f6295b3f4c6) C:\Windows\system32\drivers\elxstor.sys
2011/06/05 13:10:08.0424 0552 ErrDev (3db974f3935483555d7148663f726c61) C:\Windows\system32\drivers\errdev.sys
2011/06/05 13:10:08.0502 0552 exfat (0d858eb20589a34efb25695acaa6aa2d) C:\Windows\system32\drivers\exfat.sys
2011/06/05 13:10:08.0564 0552 fastfat (3c489390c2e2064563727752af8eab9e) C:\Windows\system32\drivers\fastfat.sys
2011/06/05 13:10:08.0611 0552 fdc (afe1e8b9782a0dd7fb46bbd88e43f89a) C:\Windows\system32\DRIVERS\fdc.sys
2011/06/05 13:10:08.0673 0552 FileInfo (a8c0139a884861e3aae9cfe73b208a9f) C:\Windows\system32\drivers\fileinfo.sys
2011/06/05 13:10:08.0704 0552 Filetrace (0ae429a696aecbc5970e3cf2c62635ae) C:\Windows\system32\drivers\filetrace.sys
2011/06/05 13:10:08.0751 0552 flpydisk (85b7cf99d532820495d68d747fda9ebd) C:\Windows\system32\DRIVERS\flpydisk.sys
2011/06/05 13:10:08.0798 0552 FltMgr (05ea53afe985443011e36dab07343b46) C:\Windows\system32\drivers\fltmgr.sys
2011/06/05 13:10:08.0845 0552 Fs_Rec (65ea8b77b5851854f0c55c43fa51a198) C:\Windows\system32\drivers\Fs_Rec.sys
2011/06/05 13:10:08.0876 0552 gagp30kx (34582a6e6573d54a07ece5fe24a126b5) C:\Windows\system32\drivers\gagp30kx.sys
2011/06/05 13:10:08.0923 0552 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
2011/06/05 13:10:09.0032 0552 HdAudAddService (cb04c744be0a61b1d648faed182c3b59) C:\Windows\system32\drivers\HdAudio.sys
2011/06/05 13:10:09.0079 0552 HDAudBus (c87b1ee051c0464491c1a7b03fa0bc99) C:\Windows\system32\DRIVERS\HDAudBus.sys
2011/06/05 13:10:09.0110 0552 HidBth (1338520e78d90154ed6be8f84de5fceb) C:\Windows\system32\drivers\hidbth.sys
2011/06/05 13:10:09.0157 0552 HidIr (ff3160c3a2445128c5a6d9b076da519e) C:\Windows\system32\drivers\hidir.sys
2011/06/05 13:10:09.0219 0552 HidUsb (e2b5bd48afcc0f0974fb44641b223250) C:\Windows\system32\DRIVERS\hidusb.sys
2011/06/05 13:10:09.0266 0552 HpCISSs (16ee7b23a009e00d835cdb79574a91a6) C:\Windows\system32\drivers\hpcisss.sys
2011/06/05 13:10:09.0328 0552 HpqKbFiltr (35956140e686d53bf676cf0c778880fc) C:\Windows\system32\DRIVERS\HpqKbFiltr.sys
2011/06/05 13:10:09.0391 0552 HTTP (33b02459e86d0a2b86a6b9fe19139390) C:\Windows\system32\drivers\HTTP.sys
2011/06/05 13:10:09.0422 0552 i2omp (c6b032d69650985468160fc9937cf5b4) C:\Windows\system32\drivers\i2omp.sys
2011/06/05 13:10:09.0500 0552 i8042prt (22d56c8184586b7a1f6fa60be5f5a2bd) C:\Windows\system32\DRIVERS\i8042prt.sys
2011/06/05 13:10:09.0547 0552 iaStorV (54155ea1b0df185878e0fc9ec3ac3a14) C:\Windows\system32\drivers\iastorv.sys
2011/06/05 13:10:09.0672 0552 igfx (0391268713612372e4e0eceaadad41d5) C:\Windows\system32\DRIVERS\igdkmd32.sys
2011/06/05 13:10:09.0718 0552 iirsp (2d077bf86e843f901d8db709c95b49a5) C:\Windows\system32\drivers\iirsp.sys
2011/06/05 13:10:09.0859 0552 IntcHdmiAddService (092a78e9c6f71bf0e22379503b90e800) C:\Windows\system32\drivers\IntcHdmi.sys
2011/06/05 13:10:09.0921 0552 intelide (dd512a049bd7b4bce8a83554c5eff2c1) C:\Windows\system32\drivers\intelide.sys
2011/06/05 13:10:09.0952 0552 intelppm (224191001e78c89dfa78924c3ea595ff) C:\Windows\system32\DRIVERS\intelppm.sys
2011/06/05 13:10:09.0999 0552 IpFilterDriver (62c265c38769b864cb25b4bcf62df6c3) C:\Windows\system32\DRIVERS\ipfltdrv.sys
2011/06/05 13:10:10.0077 0552 IPMIDRV (b25aaf203552b7b3491139d582b39ad1) C:\Windows\system32\drivers\ipmidrv.sys
2011/06/05 13:10:10.0108 0552 IPNAT (8793643a67b42cec66490b2a0cf92d68) C:\Windows\system32\DRIVERS\ipnat.sys
2011/06/05 13:10:10.0186 0552 IRENUM (109c0dfb82c3632fbd11949b73aeeac9) C:\Windows\system32\drivers\irenum.sys
2011/06/05 13:10:10.0218 0552 isapnp (6c70698a3e5c4376c6ab5c7c17fb0614) C:\Windows\system32\drivers\isapnp.sys
2011/06/05 13:10:10.0264 0552 iScsiPrt (f247eec28317f6c739c16de420097301) C:\Windows\system32\DRIVERS\msiscsi.sys
2011/06/05 13:10:10.0311 0552 iteatapi (bced60d16156e428f8df8cf27b0df150) C:\Windows\system32\drivers\iteatapi.sys
2011/06/05 13:10:10.0327 0552 iteraid (06fa654504a498c30adca8bec4e87e7e) C:\Windows\system32\drivers\iteraid.sys
2011/06/05 13:10:10.0374 0552 kbdclass (37605e0a8cf00cbba538e753e4344c6e) C:\Windows\system32\DRIVERS\kbdclass.sys
2011/06/05 13:10:10.0420 0552 kbdhid (18247836959ba67e3511b62846b9c2e0) C:\Windows\system32\DRIVERS\kbdhid.sys
2011/06/05 13:10:10.0498 0552 KSecDD (7a0cf7908b6824d6a2a1d313e5ae3dca) C:\Windows\system32\Drivers\ksecdd.sys
2011/06/05 13:10:10.0592 0552 lltdio (d1c5883087a0c3f1344d9d55a44901f6) C:\Windows\system32\DRIVERS\lltdio.sys
2011/06/05 13:10:10.0654 0552 LSI_FC (c7e15e82879bf3235b559563d4185365) C:\Windows\system32\drivers\lsi_fc.sys
2011/06/05 13:10:10.0686 0552 LSI_SAS (ee01ebae8c9bf0fa072e0ff68718920a) C:\Windows\system32\drivers\lsi_sas.sys
2011/06/05 13:10:10.0732 0552 LSI_SCSI (912a04696e9ca30146a62afa1463dd5c) C:\Windows\system32\drivers\lsi_scsi.sys
2011/06/05 13:10:10.0779 0552 luafv (8f5c7426567798e62a3b3614965d62cc) C:\Windows\system32\drivers\luafv.sys
2011/06/05 13:10:10.0888 0552 massfilter (6490fe1b088c7199a9b6ce0e04a98a8b) C:\Windows\system32\drivers\massfilter.sys
2011/06/05 13:10:10.0920 0552 megasas (0001ce609d66632fa17b84705f658879) C:\Windows\system32\drivers\megasas.sys
2011/06/05 13:10:10.0951 0552 MegaSR (c252f32cd9a49dbfc25ecf26ebd51a99) C:\Windows\system32\drivers\megasr.sys
2011/06/05 13:10:10.0998 0552 Modem (e13b5ea0f51ba5b1512ec671393d09ba) C:\Windows\system32\drivers\modem.sys
2011/06/05 13:10:11.0060 0552 monitor (0a9bb33b56e294f686abb7c1e4e2d8a8) C:\Windows\system32\DRIVERS\monitor.sys
2011/06/05 13:10:11.0091 0552 mouclass (5bf6a1326a335c5298477754a506d263) C:\Windows\system32\DRIVERS\mouclass.sys
2011/06/05 13:10:11.0138 0552 mouhid (93b8d4869e12cfbe663915502900876f) C:\Windows\system32\DRIVERS\mouhid.sys
2011/06/05 13:10:11.0232 0552 MountMgr (bdafc88aa6b92f7842416ea6a48e1600) C:\Windows\system32\drivers\mountmgr.sys
2011/06/05 13:10:11.0294 0552 mpio (511d011289755dd9f9a7579fb0b064e6) C:\Windows\system32\drivers\mpio.sys
2011/06/05 13:10:11.0325 0552 mpsdrv (22241feba9b2defa669c8cb0a8dd7d2e) C:\Windows\system32\drivers\mpsdrv.sys
2011/06/05 13:10:11.0372 0552 Mraid35x (4fbbb70d30fd20ec51f80061703b001e) C:\Windows\system32\drivers\mraid35x.sys
2011/06/05 13:10:11.0403 0552 MRxDAV (ae3de84536b6799d2267443cec8edbb9) C:\Windows\system32\drivers\mrxdav.sys
2011/06/05 13:10:11.0466 0552 mrxsmb (cc752d233ef39875ca6885d9415ba869) C:\Windows\system32\DRIVERS\mrxsmb.sys
2011/06/05 13:10:11.0512 0552 mrxsmb10 (9049dddd4bd27d43d82f5968f1da76e4) C:\Windows\system32\DRIVERS\mrxsmb10.sys
2011/06/05 13:10:11.0544 0552 mrxsmb20 (91dc069b6831ef564e7d8c97eaf0343e) C:\Windows\system32\DRIVERS\mrxsmb20.sys
2011/06/05 13:10:11.0590 0552 msahci (aa305cff241da187bd5077de4a2a043d) C:\Windows\system32\drivers\msahci.sys
2011/06/05 13:10:11.0622 0552 msdsm (4468b0f385a86ecddaf8d3ca662ec0e7) C:\Windows\system32\drivers\msdsm.sys
2011/06/05 13:10:11.0684 0552 Msfs (a9927f4a46b816c92f461acb90cf8515) C:\Windows\system32\drivers\Msfs.sys
2011/06/05 13:10:11.0746 0552 msisadrv (0f400e306f385c56317357d6dea56f62) C:\Windows\system32\drivers\msisadrv.sys
2011/06/05 13:10:11.0809 0552 MSKSSRV (d8c63d34d9c9e56c059e24ec7185cc07) C:\Windows\system32\drivers\MSKSSRV.sys
2011/06/05 13:10:11.0840 0552 MSPCLOCK (1d373c90d62ddb641d50e55b9e78d65e) C:\Windows\system32\drivers\MSPCLOCK.sys
2011/06/05 13:10:11.0871 0552 MSPQM (b572da05bf4e098d4bba3a4734fb505b) C:\Windows\system32\drivers\MSPQM.sys
2011/06/05 13:10:11.0918 0552 MsRPC (b5614aecb05a9340aa0fb55bf561cc63) C:\Windows\system32\drivers\MsRPC.sys
2011/06/05 13:10:11.0965 0552 mssmbios (e384487cb84be41d09711c30ca79646c) C:\Windows\system32\DRIVERS\mssmbios.sys
2011/06/05 13:10:11.0996 0552 MSTEE (7199c1eec1e4993caf96b8c0a26bd58a) C:\Windows\system32\drivers\MSTEE.sys
2011/06/05 13:10:12.0027 0552 Mup (6dfd1d322de55b0b7db7d21b90bec49c) C:\Windows\system32\Drivers\mup.sys
2011/06/05 13:10:12.0105 0552 NativeWifiP (3c21ce48ff529bb73dadb98770b54025) C:\Windows\system32\DRIVERS\nwifi.sys
2011/06/05 13:10:12.0183 0552 NDIS (9bdc71790fa08f0a0b5f10462b1bd0b1) C:\Windows\system32\drivers\ndis.sys
2011/06/05 13:10:12.0246 0552 NdisTapi (0e186e90404980569fb449ba7519ae61) C:\Windows\system32\DRIVERS\ndistapi.sys
2011/06/05 13:10:12.0277 0552 Ndisuio (d6973aa34c4d5d76c0430b181c3cd389) C:\Windows\system32\DRIVERS\ndisuio.sys
2011/06/05 13:10:12.0324 0552 NdisWan (3d14c3b3496f88890d431e8aa022a411) C:\Windows\system32\DRIVERS\ndiswan.sys
2011/06/05 13:10:12.0370 0552 NDProxy (71dab552b41936358f3b541ae5997fb3) C:\Windows\system32\drivers\NDProxy.sys
2011/06/05 13:10:12.0448 0552 NetBIOS (bcd093a5a6777cf626434568dc7dba78) C:\Windows\system32\DRIVERS\netbios.sys
2011/06/05 13:10:12.0495 0552 netbt (7c5fee5b1c5728507cd96fb4a13e7a02) C:\Windows\system32\DRIVERS\netbt.sys
2011/06/05 13:10:12.0636 0552 NETw3v32 (35d5458d9a1b26b2005abffbf4c1c5e7) C:\Windows\system32\DRIVERS\NETw3v32.sys
2011/06/05 13:10:12.0682 0552 nfrd960 (2e7fb731d4790a1bc6270accefacb36e) C:\Windows\system32\drivers\nfrd960.sys
2011/06/05 13:10:12.0745 0552 Npfs (ecb5003f484f9ed6c608d6d6c7886cbb) C:\Windows\system32\drivers\Npfs.sys
2011/06/05 13:10:12.0776 0552 nsiproxy (609773e344a97410ce4ebf74a8914fcf) C:\Windows\system32\drivers\nsiproxy.sys
2011/06/05 13:10:12.0838 0552 Ntfs (b4effe29eb4f15538fd8a9681108492d) C:\Windows\system32\drivers\Ntfs.sys
2011/06/05 13:10:12.0885 0552 ntrigdigi (e875c093aec0c978a90f30c9e0dfbb72) C:\Windows\system32\drivers\ntrigdigi.sys
2011/06/05 13:10:12.0916 0552 Null (c5dbbcda07d780bda9b685df333bb41e) C:\Windows\system32\drivers\Null.sys
2011/06/05 13:10:12.0948 0552 nvraid (2edf9e7751554b42cbb60116de727101) C:\Windows\system32\drivers\nvraid.sys
2011/06/05 13:10:12.0994 0552 nvstor (abed0c09758d1d97db0042dbb2688177) C:\Windows\system32\drivers\nvstor.sys
2011/06/05 13:10:13.0041 0552 nv_agp (18bbdf913916b71bd54575bdb6eeac0b) C:\Windows\system32\drivers\nv_agp.sys
2011/06/05 13:10:13.0150 0552 ohci1394 (790e27c3db53410b40ff9ef2fd10a1d9) C:\Windows\system32\DRIVERS\ohci1394.sys
2011/06/05 13:10:13.0213 0552 Parport (0fa9b5055484649d63c303fe404e5f4d) C:\Windows\system32\drivers\parport.sys
2011/06/05 13:10:13.0260 0552 partmgr (3b38467e7c3daed009dfe359e17f139f) C:\Windows\system32\drivers\partmgr.sys
2011/06/05 13:10:13.0291 0552 Parvdm (4f9a6a8a31413180d0fcb279ad5d8112) C:\Windows\system32\drivers\parvdm.sys
2011/06/05 13:10:13.0353 0552 pci (01b94418deb235dff777cc80076354b4) C:\Windows\system32\drivers\pci.sys
2011/06/05 13:10:13.0384 0552 pciide (1d8b3d8df8eb7fcf2f0ac02f9f947802) C:\Windows\system32\drivers\pciide.sys
2011/06/05 13:10:13.0431 0552 pcmcia (e6f3fb1b86aa519e7698ad05e58b04e5) C:\Windows\system32\drivers\pcmcia.sys
2011/06/05 13:10:13.0509 0552 PEAUTH (6349f6ed9c623b44b52ea3c63c831a92) C:\Windows\system32\drivers\peauth.sys
2011/06/05 13:10:13.0728 0552 PptpMiniport (ecfffaec0c1ecd8dbc77f39070ea1db1) C:\Windows\system32\DRIVERS\raspptp.sys
2011/06/05 13:10:13.0759 0552 Processor (2027293619dd0f047c584cf2e7df4ffd) C:\Windows\system32\drivers\processr.sys
2011/06/05 13:10:13.0852 0552 PSched (bfef604508a0ed1eae2a73e872555ffb) C:\Windows\system32\DRIVERS\pacer.sys
2011/06/05 13:10:13.0930 0552 ql2300 (0a6db55afb7820c99aa1f3a1d270f4f6) C:\Windows\system32\drivers\ql2300.sys
2011/06/05 13:10:14.0008 0552 ql40xx (81a7e5c076e59995d54bc1ed3a16e60b) C:\Windows\system32\drivers\ql40xx.sys
2011/06/05 13:10:14.0071 0552 QWAVEdrv (9f5e0e1926014d17486901c88eca2db7) C:\Windows\system32\drivers\qwavedrv.sys
2011/06/05 13:10:14.0102 0552 RasAcd (147d7f9c556d259924351feb0de606c3) C:\Windows\system32\DRIVERS\rasacd.sys
2011/06/05 13:10:14.0149 0552 Rasl2tp (a214adbaf4cb47dd2728859ef31f26b0) C:\Windows\system32\DRIVERS\rasl2tp.sys
2011/06/05 13:10:14.0196 0552 RasPppoe (3e9d9b048107b40d87b97df2e48e0744) C:\Windows\system32\DRIVERS\raspppoe.sys
2011/06/05 13:10:14.0227 0552 RasSstp (a7d141684e9500ac928a772ed8e6b671) C:\Windows\system32\DRIVERS\rassstp.sys
2011/06/05 13:10:14.0289 0552 rdbss (6e1c5d0457622f9ee35f683110e93d14) C:\Windows\system32\DRIVERS\rdbss.sys
2011/06/05 13:10:14.0320 0552 RDPCDD (89e59be9a564262a3fb6c4f4f1cd9899) C:\Windows\system32\DRIVERS\RDPCDD.sys
2011/06/05 13:10:14.0383 0552 rdpdr (fbc0bacd9c3d7f6956853f64a66e252d) C:\Windows\system32\drivers\rdpdr.sys
2011/06/05 13:10:14.0414 0552 RDPENCDD (9d91fe5286f748862ecffa05f8a0710c) C:\Windows\system32\drivers\rdpencdd.sys
2011/06/05 13:10:14.0476 0552 RDPWD (e1c18f4097a5abcec941dc4b2f99db7e) C:\Windows\system32\drivers\RDPWD.sys
2011/06/05 13:10:14.0570 0552 ROOTMODEM (75e8a6bfa7374aba833ae92bf41ae4e6) C:\Windows\system32\Drivers\RootMdm.sys
2011/06/05 13:10:14.0632 0552 rspndr (9c508f4074a39e8b4b31d27198146fad) C:\Windows\system32\DRIVERS\rspndr.sys
2011/06/05 13:10:14.0710 0552 RTL8169 (5163f804256deb8cf1ef64b780a18caa) C:\Windows\system32\DRIVERS\Rtlh86.sys
2011/06/05 13:10:14.0757 0552 RTSTOR (2b7da5a2d2c4aae01098d910007edac5) C:\Windows\system32\drivers\RTSTOR.SYS
2011/06/05 13:10:14.0944 0552 sbp2port (3ce8f073a557e172b330109436984e30) C:\Windows\system32\drivers\sbp2port.sys
2011/06/05 13:10:15.0038 0552 sdbus (126ea89bcc413ee45e3004fb0764888f) C:\Windows\system32\DRIVERS\sdbus.sys
2011/06/05 13:10:15.0100 0552 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
2011/06/05 13:10:15.0163 0552 Serenum (68e44e331d46f0fb38f0863a84cd1a31) C:\Windows\system32\DRIVERS\serenum.sys
2011/06/05 13:10:15.0225 0552 Serial (c70d69a918b178d3c3b06339b40c2e1b) C:\Windows\system32\drivers\serial.sys
2011/06/05 13:10:15.0272 0552 sermouse (8af3d28a879bf75db53a0ee7a4289624) C:\Windows\system32\drivers\sermouse.sys
2011/06/05 13:10:15.0334 0552 sffdisk (3efa810bdca87f6ecc24f9832243fe86) C:\Windows\system32\drivers\sffdisk.sys
2011/06/05 13:10:15.0366 0552 sffp_mmc (e95d451f7ea3e583aec75f3b3ee42dc5) C:\Windows\system32\drivers\sffp_mmc.sys
2011/06/05 13:10:15.0412 0552 sffp_sd (3d0ea348784b7ac9ea9bd9f317980979) C:\Windows\system32\drivers\sffp_sd.sys
2011/06/05 13:10:15.0444 0552 sfloppy (46ed8e91793b2e6f848015445a0ac188) C:\Windows\system32\drivers\sfloppy.sys
2011/06/05 13:10:15.0506 0552 sisagp (1d76624a09a054f682d746b924e2dbc3) C:\Windows\system32\drivers\sisagp.sys
2011/06/05 13:10:15.0553 0552 SiSRaid2 (43cb7aa756c7db280d01da9b676cfde2) C:\Windows\system32\drivers\sisraid2.sys
2011/06/05 13:10:15.0600 0552 SiSRaid4 (a99c6c8b0baa970d8aa59ddc50b57f94) C:\Windows\system32\drivers\sisraid4.sys
2011/06/05 13:10:15.0646 0552 Smb (031e6bcd53c9b2b9ace111eafec347b6) C:\Windows\system32\DRIVERS\smb.sys
2011/06/05 13:10:15.0724 0552 spldr (7aebdeef071fe28b0eef2cdd69102bff) C:\Windows\system32\drivers\spldr.sys
2011/06/05 13:10:15.0802 0552 srv (2252aef839b1093d16761189f45af885) C:\Windows\system32\DRIVERS\srv.sys
2011/06/05 13:10:15.0849 0552 srv2 (96512f4a30b741e7d33a7936b9abbc20) C:\Windows\system32\DRIVERS\srv2.sys
2011/06/05 13:10:15.0912 0552 srvnet (1c69e33e0e23626da5a34ca5ba0dd990) C:\Windows\system32\DRIVERS\srvnet.sys
2011/06/05 13:10:16.0021 0552 STHDA (5d09e4934bc269c93ebe7c96e34aa8ee) C:\Windows\system32\DRIVERS\stwrt.sys
2011/06/05 13:10:16.0068 0552 swenum (7ba58ecf0c0a9a69d44b3dca62becf56) C:\Windows\system32\DRIVERS\swenum.sys
2011/06/05 13:10:16.0114 0552 Symc8xx (192aa3ac01df071b541094f251deed10) C:\Windows\system32\drivers\symc8xx.sys
2011/06/05 13:10:16.0161 0552 Sym_hi (8c8eb8c76736ebaf3b13b633b2e64125) C:\Windows\system32\drivers\sym_hi.sys
2011/06/05 13:10:16.0224 0552 Sym_u3 (8072af52b5fd103bbba387a1e49f62cb) C:\Windows\system32\drivers\sym_u3.sys
2011/06/05 13:10:16.0270 0552 SynTP (aee6e411a915f50101895ba8dc5c15d4) C:\Windows\system32\DRIVERS\SynTP.sys
2011/06/05 13:10:16.0380 0552 Tcpip (782568ab6a43160a159b6215b70bcce9) C:\Windows\system32\drivers\tcpip.sys
2011/06/05 13:10:16.0442 0552 Tcpip6 (782568ab6a43160a159b6215b70bcce9) C:\Windows\system32\DRIVERS\tcpip.sys
2011/06/05 13:10:16.0504 0552 tcpipreg (d4a2e4a4b011f3a883af77315a5ae76b) C:\Windows\system32\drivers\tcpipreg.sys
2011/06/05 13:10:16.0536 0552 TDPIPE (5dcf5e267be67a1ae926f2df77fbcc56) C:\Windows\system32\drivers\tdpipe.sys
2011/06/05 13:10:16.0582 0552 TDTCP (389c63e32b3cefed425b61ed92d3f021) C:\Windows\system32\drivers\tdtcp.sys
2011/06/05 13:10:16.0629 0552 tdx (d09276b1fab033ce1d40dcbdf303d10f) C:\Windows\system32\DRIVERS\tdx.sys
2011/06/05 13:10:16.0660 0552 TermDD (a048056f5e1a96a9bf3071b91741a5aa) C:\Windows\system32\DRIVERS\termdd.sys
2011/06/05 13:10:16.0754 0552 tssecsrv (dcf0f056a2e4f52287264f5ab29cf206) C:\Windows\system32\DRIVERS\tssecsrv.sys
2011/06/05 13:10:16.0816 0552 tunmp (caecc0120ac49e3d2f758b9169872d38) C:\Windows\system32\DRIVERS\tunmp.sys
2011/06/05 13:10:16.0863 0552 tunnel (6042505ff6fa9ac1ef7684d0e03b6940) C:\Windows\system32\DRIVERS\tunnel.sys
2011/06/05 13:10:16.0910 0552 uagp35 (7d33c4db2ce363c8518d2dfcf533941f) C:\Windows\system32\drivers\uagp35.sys
2011/06/05 13:10:16.0941 0552 udfs (8b5088058fa1d1cd897a2113ccff6c58) C:\Windows\system32\DRIVERS\udfs.sys
2011/06/05 13:10:17.0019 0552 uliagpkx (b0acfdc9e4af279e9116c03e014b2b27) C:\Windows\system32\drivers\uliagpkx.sys
2011/06/05 13:10:17.0050 0552 uliahci (9224bb254f591de4ca8d572a5f0d635c) C:\Windows\system32\drivers\uliahci.sys
2011/06/05 13:10:17.0097 0552 UlSata (8514d0e5cd0534467c5fc61be94a569f) C:\Windows\system32\drivers\ulsata.sys
2011/06/05 13:10:17.0128 0552 ulsata2 (38c3c6e62b157a6bc46594fada45c62b) C:\Windows\system32\drivers\ulsata2.sys
2011/06/05 13:10:17.0160 0552 umbus (32cff9f809ae9aed85464492bf3e32d2) C:\Windows\system32\DRIVERS\umbus.sys
2011/06/05 13:10:17.0269 0552 USBAAPL (1df89c499bf45d878b87ebd4421d462d) C:\Windows\system32\Drivers\usbaapl.sys
2011/06/05 13:10:17.0316 0552 usbccgp (caf811ae4c147ffcd5b51750c7f09142) C:\Windows\system32\DRIVERS\usbccgp.sys
2011/06/05 13:10:17.0362 0552 usbcir (e9476e6c486e76bc4898074768fb7131) C:\Windows\system32\drivers\usbcir.sys
2011/06/05 13:10:17.0425 0552 usbehci (cebe90821810e76320155beba722fcf9) C:\Windows\system32\DRIVERS\usbehci.sys
2011/06/05 13:10:17.0456 0552 usbhub (cc6b28e4ce39951357963119ce47b143) C:\Windows\system32\DRIVERS\usbhub.sys
2011/06/05 13:10:17.0503 0552 usbohci (38dbc7dd6cc5a72011f187425384388b) C:\Windows\system32\drivers\usbohci.sys
2011/06/05 13:10:17.0550 0552 usbprint (e75c4b5269091d15a2e7dc0b6d35f2f5) C:\Windows\system32\DRIVERS\usbprint.sys
2011/06/05 13:10:17.0612 0552 usbscan (a508c9bd8724980512136b039bba65e9) C:\Windows\system32\DRIVERS\usbscan.sys
2011/06/05 13:10:17.0690 0552 USBSTOR (87ba6b83c5d19b69160968d07d6e2982) C:\Windows\system32\DRIVERS\USBSTOR.SYS
2011/06/05 13:10:17.0737 0552 usbuhci (814d653efc4d48be3b04a307eceff56f) C:\Windows\system32\DRIVERS\usbuhci.sys
2011/06/05 13:10:17.0799 0552 usbvideo (e67998e8f14cb0627a769f6530bcb352) C:\Windows\system32\Drivers\usbvideo.sys
2011/06/05 13:10:17.0893 0552 VComm (51750b0539986186c6931fc40d171521) C:\Windows\system32\DRIVERS\VComm.sys
2011/06/05 13:10:17.0924 0552 VcommMgr (6d9c891c0a761afed1f3609c2e56f2b9) C:\Windows\system32\Drivers\VcommMgr.sys
2011/06/05 13:10:18.0002 0552 vga (87b06e1f30b749a114f74622d013f8d4) C:\Windows\system32\DRIVERS\vgapnp.sys
2011/06/05 13:10:18.0033 0552 VgaSave (2e93ac0a1d8c79d019db6c51f036636c) C:\Windows\System32\drivers\vga.sys
2011/06/05 13:10:18.0080 0552 viaagp (5d7159def58a800d5781ba3a879627bc) C:\Windows\system32\drivers\viaagp.sys
2011/06/05 13:10:18.0127 0552 ViaC7 (c4f3a691b5bad343e6249bd8c2d45dee) C:\Windows\system32\drivers\viac7.sys
2011/06/05 13:10:18.0158 0552 viaide (ea1aa6e3abb3c194feba12a46de8cf2c) C:\Windows\system32\drivers\viaide.sys
2011/06/05 13:10:18.0205 0552 volmgr (69503668ac66c77c6cd7af86fbdf8c43) C:\Windows\system32\drivers\volmgr.sys
2011/06/05 13:10:18.0283 0552 volmgrx (98f5ffe6316bd74e9e2c97206c190196) C:\Windows\system32\drivers\volmgrx.sys
2011/06/05 13:10:18.0314 0552 volsnap (d8b4a53dd2769f226b3eb374374987c9) C:\Windows\system32\drivers\volsnap.sys
2011/06/05 13:10:18.0361 0552 vsmraid (587253e09325e6bf226b299774b728a9) C:\Windows\system32\drivers\vsmraid.sys
2011/06/05 13:10:18.0408 0552 WacomPen (48dfee8f1af7c8235d4e626f0c4fe031) C:\Windows\system32\drivers\wacompen.sys
2011/06/05 13:10:18.0454 0552 Wanarp (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
2011/06/05 13:10:18.0470 0552 Wanarpv6 (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
2011/06/05 13:10:18.0517 0552 Wd (78fe9542363f297b18c027b2d7e7c07f) C:\Windows\system32\drivers\wd.sys
2011/06/05 13:10:18.0564 0552 Wdf01000 (b6f0a7ad6d4bd325fbcd8bac96cd8d96) C:\Windows\system32\drivers\Wdf01000.sys
2011/06/05 13:10:18.0720 0552 WmiAcpi (2e7255d172df0b8283cdfb7b433b864e) C:\Windows\system32\DRIVERS\wmiacpi.sys
2011/06/05 13:10:18.0829 0552 ws2ifsl (e3a3cb253c0ec2494d4a61f5e43a389c) C:\Windows\system32\drivers\ws2ifsl.sys
2011/06/05 13:10:18.0907 0552 WUDFRd (ac13cb789d93412106b0fb6c7eb2bcb6) C:\Windows\system32\DRIVERS\WUDFRd.sys
2011/06/05 13:10:18.0985 0552 yukonwlh (7d1f3b131d503ef43ee594b5a2b9b427) C:\Windows\system32\DRIVERS\yk60x86.sys
2011/06/05 13:10:19.0063 0552 ZTEusbmdm6k (4692a3e087cf018808f376a3cc2128fa) C:\Windows\system32\DRIVERS\ZTEusbmdm6k.sys
2011/06/05 13:10:19.0110 0552 ZTEusbnet (c7f13366969b1633e1ec21ebc40fea13) C:\Windows\system32\DRIVERS\ZTEusbnet.sys
2011/06/05 13:10:19.0203 0552 ZTEusbnmea (4692a3e087cf018808f376a3cc2128fa) C:\Windows\system32\DRIVERS\ZTEusbnmea.sys
2011/06/05 13:10:19.0266 0552 ZTEusbser6k (4692a3e087cf018808f376a3cc2128fa) C:\Windows\system32\DRIVERS\ZTEusbser6k.sys
2011/06/05 13:10:19.0312 0552 ZTEusbvoice (4c2c0375d60276f543a36c133a67e80d) C:\Windows\system32\DRIVERS\ZTEusbvoice.sys
2011/06/05 13:10:19.0375 0552 MBR (0x1B8) (5c86adec17b739c437e145e3b3fc2e6d) \Device\Harddisk0\DR0
2011/06/05 13:10:19.0390 0552 ================================================================================
2011/06/05 13:10:19.0390 0552 Scan finished
2011/06/05 13:10:19.0390 0552 ================================================================================
2011/06/05 13:10:19.0422 5116 Detected object count: 0
2011/06/05 13:10:19.0422 5116 Actual detected object count: 0
Salut,
Ton windows est encore pack1 (vista)!
Pour éviter les failles de sécurité, il est conseillé de passer au pack2.
Pour cela tu vas activer maintenant la mise à jour automatique :
Voir ceci :https://support.microsoft.com/en-us/windows?ui=en-US&rs=en-001&ad=US
Ensuite tu installes cette mise à jour...
@+
Ton windows est encore pack1 (vista)!
Pour éviter les failles de sécurité, il est conseillé de passer au pack2.
Pour cela tu vas activer maintenant la mise à jour automatique :
Voir ceci :https://support.microsoft.com/en-us/windows?ui=en-US&rs=en-001&ad=US
Ensuite tu installes cette mise à jour...
@+
