Sujet Précédent Sujet Suivant

Zentom virus

Fermé
lorenzshakur Messages postés 7 Date d'inscription jeudi 22 septembre 2011 Statut Membre Dernière intervention 26 septembre 2011 - 25 sept. 2011 à 16:41
 Utilisateur anonyme - 27 sept. 2011 à 07:41
Bonjour,

cela fait maintenant qu'il y a un virus sur mon ordinateur nommé zentom.
j'ai deja lu les postes fait sur d autre forum mais pas moyen de le retirer.

merci de bien vouloir m'aider.

ps: j ai deja le rapport de roguekiller
A voir également:

9 réponses

Réponse 1 / 9
Utilisateur anonyme
25 sept. 2011 à 17:06
bonjour,

lance Roguekiller, clique sur les options 2, puis 4, poste ses rapports !



0
lorenzshakur Messages postés 7 Date d'inscription jeudi 22 septembre 2011 Statut Membre Dernière intervention 26 septembre 2011
25 sept. 2011 à 22:54
Merci pour votre réponse rapide
voici le rapport de roquekiller.

RogueKiller V6.0.0 [09/13/2011] by Tigzy
contact at https://www.luanagames.com/index.fr.html
mail: tigzyRK<at>gmail<dot>com
Feedback: https://www.luanagames.com/index.fr.html

Operating System: Windows XP (5.1.2600 Service Pack 2) 32 bits version
Started in : Normal mode
User: KOTK [Admin rights]
Mode: Remove -- Date : 09/22/2011 17:51:28

Bad processes: 3
[SUSP PATH] 3557900898:2646470187.exe -- c:\windows\3557900898:2646470187.exe -> KILLED [TermProc]
[SUSP PATH] kocinc700kk.exe -- c:\documents and settings\kotk\application data\983be785f9f451320516a2f48a048708\kocinc700kk.exe -> KILLED [TermProc]
[RESIDUE] 3557900898:2646470187.exe -- c:\windows\3557900898:2646470187.exe -> KILLED [TermProc]

Registry Entries: 3
[SUSP PATH] HKCU\[...]\Run : kocinc700kk.exe ("C:\Documents and Settings\KOTK\Application Data\983BE785F9F451320516A2F48A048708\kocinc700kk.exe") -> DELETED
[SUSP PATH] Zentom System Guard.lnk : C:\Documents and Settings\KOTK\Application Data\983BE785F9F451320516A2F48A048708\kocinc700kk.exe -> DELETED
[HJ] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> REPLACED (0)

Particular Files / Folders:
[FILE] KB949875.exe : c:\documents and settings\kotk\application data\adobe\plugs\KB949875.exe --> REMOVED
[FILE] KB949906.exe : c:\documents and settings\kotk\application data\adobe\plugs\KB949906.exe --> REMOVED
[FILE] KB949953.exe : c:\documents and settings\kotk\application data\adobe\plugs\KB949953.exe --> REMOVED
[FILE] KB950031.exe : c:\documents and settings\kotk\application data\adobe\plugs\KB950031.exe --> REMOVED
[FILE] KB950531.exe : c:\documents and settings\kotk\application data\adobe\plugs\KB950531.exe --> REMOVED
[FILE] KB950578.exe : c:\documents and settings\kotk\application data\adobe\plugs\KB950578.exe --> REMOVED
[FOLDER] plugs : c:\documents and settings\kotk\application data\adobe\plugs --> REMOVED
[FOLDER] shed : c:\documents and settings\kotk\application data\adobe\shed --> REMOVED

Driver: [LOADED]
SSDT[247] : NtSetValueKey -> HOOKED (\SystemRoot\System32\Drivers\aswSP.SYS @ 0x973978AE)
SSDT[204] : NtRestoreKey -> HOOKED (\SystemRoot\System32\Drivers\aswSP.SYS @ 0x9739772E)
SSDT[177] : NtQueryValueKey -> HOOKED (\SystemRoot\System32\Drivers\aswSP.SYS @ 0x9739776E)
SSDT[128] : NtOpenThread -> HOOKED (\SystemRoot\System32\Drivers\aswSP.SYS @ 0x973970F0)
SSDT[122] : NtOpenProcess -> HOOKED (\SystemRoot\System32\Drivers\aswSP.SYS @ 0x9739708C)
SSDT[119] : NtOpenKey -> HOOKED (\SystemRoot\System32\Drivers\aswSP.SYS @ 0x9739764E)
SSDT[68] : NtDuplicateObject -> HOOKED (\SystemRoot\System32\Drivers\aswSP.SYS @ 0x9739714C)
SSDT[65] : NtDeleteValueKey -> HOOKED (\SystemRoot\System32\Drivers\aswSP.SYS @ 0x97397A52)
SSDT[41] : NtCreateKey -> HOOKED (\SystemRoot\System32\Drivers\aswSP.SYS @ 0x97397574)
SSDT[25] : NtClose -> HOOKED (\SystemRoot\System32\Drivers\aswSP.SYS @ 0x973976B8)

HOSTS File:


Finished : << RKreport[1].txt >>
RKreport[1].txt
0
Réponse 2 / 9
lorenzshakur Messages postés 7 Date d'inscription jeudi 22 septembre 2011 Statut Membre Dernière intervention 26 septembre 2011
25 sept. 2011 à 22:55
Merci pour votre réponse rapide
Voici le rapport de roguekiller


RogueKiller V6.0.0 [09/13/2011] by Tigzy
contact at https://www.luanagames.com/index.fr.html
mail: tigzyRK<at>gmail<dot>com
Feedback: https://www.luanagames.com/index.fr.html

Operating System: Windows XP (5.1.2600 Service Pack 2) 32 bits version
Started in : Normal mode
User: KOTK [Admin rights]
Mode: Remove -- Date : 09/22/2011 17:51:28

Bad processes: 3
[SUSP PATH] 3557900898:2646470187.exe -- c:\windows\3557900898:2646470187.exe -> KILLED [TermProc]
[SUSP PATH] kocinc700kk.exe -- c:\documents and settings\kotk\application data\983be785f9f451320516a2f48a048708\kocinc700kk.exe -> KILLED [TermProc]
[RESIDUE] 3557900898:2646470187.exe -- c:\windows\3557900898:2646470187.exe -> KILLED [TermProc]

Registry Entries: 3
[SUSP PATH] HKCU\[...]\Run : kocinc700kk.exe ("C:\Documents and Settings\KOTK\Application Data\983BE785F9F451320516A2F48A048708\kocinc700kk.exe") -> DELETED
[SUSP PATH] Zentom System Guard.lnk : C:\Documents and Settings\KOTK\Application Data\983BE785F9F451320516A2F48A048708\kocinc700kk.exe -> DELETED
[HJ] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> REPLACED (0)

Particular Files / Folders:
[FILE] KB949875.exe : c:\documents and settings\kotk\application data\adobe\plugs\KB949875.exe --> REMOVED
[FILE] KB949906.exe : c:\documents and settings\kotk\application data\adobe\plugs\KB949906.exe --> REMOVED
[FILE] KB949953.exe : c:\documents and settings\kotk\application data\adobe\plugs\KB949953.exe --> REMOVED
[FILE] KB950031.exe : c:\documents and settings\kotk\application data\adobe\plugs\KB950031.exe --> REMOVED
[FILE] KB950531.exe : c:\documents and settings\kotk\application data\adobe\plugs\KB950531.exe --> REMOVED
[FILE] KB950578.exe : c:\documents and settings\kotk\application data\adobe\plugs\KB950578.exe --> REMOVED
[FOLDER] plugs : c:\documents and settings\kotk\application data\adobe\plugs --> REMOVED
[FOLDER] shed : c:\documents and settings\kotk\application data\adobe\shed --> REMOVED

Driver: [LOADED]
SSDT[247] : NtSetValueKey -> HOOKED (\SystemRoot\System32\Drivers\aswSP.SYS @ 0x973978AE)
SSDT[204] : NtRestoreKey -> HOOKED (\SystemRoot\System32\Drivers\aswSP.SYS @ 0x9739772E)
SSDT[177] : NtQueryValueKey -> HOOKED (\SystemRoot\System32\Drivers\aswSP.SYS @ 0x9739776E)
SSDT[128] : NtOpenThread -> HOOKED (\SystemRoot\System32\Drivers\aswSP.SYS @ 0x973970F0)
SSDT[122] : NtOpenProcess -> HOOKED (\SystemRoot\System32\Drivers\aswSP.SYS @ 0x9739708C)
SSDT[119] : NtOpenKey -> HOOKED (\SystemRoot\System32\Drivers\aswSP.SYS @ 0x9739764E)
SSDT[68] : NtDuplicateObject -> HOOKED (\SystemRoot\System32\Drivers\aswSP.SYS @ 0x9739714C)
SSDT[65] : NtDeleteValueKey -> HOOKED (\SystemRoot\System32\Drivers\aswSP.SYS @ 0x97397A52)
SSDT[41] : NtCreateKey -> HOOKED (\SystemRoot\System32\Drivers\aswSP.SYS @ 0x97397574)
SSDT[25] : NtClose -> HOOKED (\SystemRoot\System32\Drivers\aswSP.SYS @ 0x973976B8)

HOSTS File:


Finished : << RKreport[1].txt >>
RKreport[1].txt
0
Réponse 3 / 9
Utilisateur anonyme
26 sept. 2011 à 07:37
bonjour,
enregistre seulement tes données sur un autre support que ton disque dure, ceci n'est qu'une précaution !


si tu as étaint ton pc, il va falloir recommencer avec Roguekiller, options 2, puis 4 !



sans demarrer ton pc, suis ceci :


* Télécharge TDSSKiller sur ton bureau :

https://support.kaspersky.com/downloads/utils/tdsskiller.exe

* Lance le ( Utilisateurs de vista/Seven -> Clic droit puis " Exécuter en tant qu'administrateur " )

* Clique sur [Start Scan] pour démarrer l'analyse.

* Si des élements sont trouvés, cliques sur [Continue] puis sur [Reboot Now]

* Un rapport s'ouvrira au redémarrage du PC.

* Copie/Colle son contenu dans ta prochaine réponse.

Note : Le rapport se trouve également sous C:\TDSSKiller.N°deversion_Date_Heure_log.txt.







puis enchaine avec ça :


Télécharge Malwarebytes' Anti-Malware et enregistre le sur ton bureau:
https://www.malekal.com/tutoriel-malwarebyte-anti-malware/

ou ici :
https://www.commentcamarche.net/telecharger/securite/14361-malwarebytes-anti-malware/


. Double cliques sur le fichier téléchargé pour lancer le processus d'installation.
. Dans l'onglet "mise à jour", cliques sur le bouton Recherche de mise à jour
. si le pare-feu demande l'autorisation de se connecter pour malwarebytes, acceptes
. Une fois la mise à jour terminé
. rend-toi dans l'onglet, Recherche
. Sélectionnes Exécuter un examen complet
. Cliques sur Rechercher
. Le scan démarre.
. A la fin de l'analyse, un message s'affiche : L'examen s'est terminé normalement. Clique sur 'Afficher les résultats' pour afficher tous les objets trouvés.
. Cliques sur Ok pour poursuivre.
. Si des malwares ont été détectés, cliques sur Afficher les résultats
. Sélectionnes tout (ou laisses cochés) et cliques sur Supprimer la sélection Malwarebytes va détruire les fichiers et clés de registre et en mettre une copie dans la quarantaine.
. Malwarebytes va ouvrir le bloc-notes et y copier le rapport d'analyse.
. rends toi dans l'onglet rapport/log
. tu cliques dessus pour l'afficher une fois affiché
. tu cliques sur edition en haut du boc notes,et puis sur sélectionner tous
. tu recliques sur edition et puis sur copier et tu reviens sur le forum et dans ta réponse
. Tu cliques droit dans le cadre de la réponse et coller
. À la fin du scan, il se peut que MBAM ait besoin de redémarrer le pc pour finaliser la suppression, donc pas de panique, redémarre ton pc !!!

Si tu as besoin d'aide regarde ce tutoriel :
https://www.malekal.com/tutoriel-malwarebyte-anti-malware/





je file bosser, @ ++

0
Réponse 4 / 9
lorenzshakur Messages postés 7 Date d'inscription jeudi 22 septembre 2011 Statut Membre Dernière intervention 26 septembre 2011
26 sept. 2011 à 18:13
Bonsoir,
Encore merci pour ton aide.
voici le rapport de tdsskiller

18:07:07.0890 1480 TDSS rootkit removing tool 2.6.1.0 Sep 26 2011 09:21:32
18:07:08.0046 1480 ============================================================
18:07:08.0046 1480 Current date / time: 2011/09/26 18:07:08.0046
18:07:08.0046 1480 SystemInfo:
18:07:08.0046 1480
18:07:08.0046 1480 OS Version: 5.1.2600 ServicePack: 2.0
18:07:08.0046 1480 Product type: Workstation
18:07:08.0046 1480 ComputerName: KBC042
18:07:08.0046 1480 UserName: KOTK
18:07:08.0046 1480 Windows directory: C:\WINDOWS
18:07:08.0046 1480 System windows directory: C:\WINDOWS
18:07:08.0046 1480 Processor architecture: Intel x86
18:07:08.0046 1480 Number of processors: 2
18:07:08.0046 1480 Page size: 0x1000
18:07:08.0046 1480 Boot type: Normal boot
18:07:08.0046 1480 ============================================================
18:07:08.0421 1480 Initialize success
18:07:51.0562 3344 ============================================================
18:07:51.0562 3344 Scan started
18:07:51.0562 3344 Mode: Manual;
18:07:51.0562 3344 ============================================================
18:07:51.0718 3344 624211d4 (6227fc3609788dfc602cc68241c70604) C:\WINDOWS\3557900898:2646470187.exe
18:07:51.0718 3344 Suspicious file (Hidden): C:\WINDOWS\3557900898:2646470187.exe. md5: 6227fc3609788dfc602cc68241c70604
18:07:51.0718 3344 624211d4 ( HiddenFile.Multi.Generic ) - warning
18:07:51.0718 3344 624211d4 - detected HiddenFile.Multi.Generic (1)
18:07:51.0796 3344 Aavmker4 (2ccfa74242741ca22a4267cce9b586f4) C:\WINDOWS\system32\drivers\Aavmker4.sys
18:07:51.0796 3344 Aavmker4 - ok
18:07:51.0796 3344 Abiosdsk - ok
18:07:51.0812 3344 abp480n5 - ok
18:07:51.0843 3344 Accelerometer (a0c1821966de98dd7729e07fa31043ca) C:\WINDOWS\system32\DRIVERS\Accelerometer.sys
18:07:51.0843 3344 Accelerometer - ok
18:07:51.0906 3344 ACPI (a10c7534f7223f4a73a948967d00e69b) C:\WINDOWS\system32\DRIVERS\ACPI.sys
18:07:51.0921 3344 ACPI - ok
18:07:51.0937 3344 ACPIEC (9859c0f6936e723e4892d7141b1327d5) C:\WINDOWS\system32\DRIVERS\ACPIEC.sys
18:07:51.0937 3344 ACPIEC - ok
18:07:51.0984 3344 ADIHdAudAddService (ff60db2aca88543c025eacba25cee5c1) C:\WINDOWS\system32\drivers\ADIHdAud.sys
18:07:51.0984 3344 ADIHdAudAddService - ok
18:07:51.0984 3344 adpu160m - ok
18:07:52.0000 3344 AEAudio (fff87a9b1ab36ee4b7bec98a4cb01b79) C:\WINDOWS\system32\drivers\AEAudio.sys
18:07:52.0000 3344 AEAudio - ok
18:07:52.0046 3344 aec (841f385c6cfaf66b58fbd898722bb4f0) C:\WINDOWS\system32\drivers\aec.sys
18:07:52.0046 3344 aec - ok
18:07:52.0093 3344 AFD (55e6e1c51b6d30e54335750955453702) C:\WINDOWS\System32\drivers\afd.sys
18:07:52.0093 3344 AFD - ok
18:07:52.0093 3344 Aha154x - ok
18:07:52.0109 3344 aic78u2 - ok
18:07:52.0109 3344 aic78xx - ok
18:07:52.0125 3344 AliIde - ok
18:07:52.0125 3344 amsint - ok
18:07:52.0140 3344 Arp1394 (f0d692b0bffb46e30eb3cea168bbc49f) C:\WINDOWS\system32\DRIVERS\arp1394.sys
18:07:52.0140 3344 Arp1394 - ok
18:07:52.0140 3344 asc - ok
18:07:52.0156 3344 asc3350p - ok
18:07:52.0156 3344 asc3550 - ok
18:07:52.0171 3344 aswFsBlk (b4079a98f294a3e262872cb76f4849f0) C:\WINDOWS\system32\DRIVERS\aswFsBlk.sys
18:07:52.0171 3344 aswFsBlk - ok
18:07:52.0171 3344 aswMon2 (dbee7b5ecb50fc2cf9323f52cbf41141) C:\WINDOWS\system32\drivers\aswMon2.sys
18:07:52.0171 3344 aswMon2 - ok
18:07:52.0203 3344 aswRdr (8080d683489c99cbace813f6fa4069cc) C:\WINDOWS\system32\drivers\aswRdr.sys
18:07:52.0203 3344 aswRdr - ok
18:07:52.0203 3344 aswSP (2e5a2ad5004b55df39b7606130a88142) C:\WINDOWS\system32\drivers\aswSP.sys
18:07:52.0218 3344 aswSP - ok
18:07:52.0218 3344 aswTdi (d4c83a37efadfa2c398362e0776e3773) C:\WINDOWS\system32\drivers\aswTdi.sys
18:07:52.0218 3344 aswTdi - ok
18:07:52.0250 3344 AsyncMac (02000abf34af4c218c35d257024807d6) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
18:07:52.0250 3344 AsyncMac - ok
18:07:52.0265 3344 atapi (cdfe4411a69c224bd1d11b2da92dac51) C:\WINDOWS\system32\DRIVERS\atapi.sys
18:07:52.0265 3344 atapi - ok
18:07:52.0265 3344 Atdisk - ok
18:07:52.0281 3344 Atmarpc (ec88da854ab7d7752ec8be11a741bb7f) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
18:07:52.0281 3344 Atmarpc - ok
18:07:52.0343 3344 ATSwpWDF (a9f9d1d24441889beb1aa2b917457e23) C:\WINDOWS\system32\Drivers\ATSwpWDF.sys
18:07:52.0343 3344 ATSwpWDF - ok
18:07:52.0468 3344 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
18:07:52.0468 3344 audstub - ok
18:07:52.0515 3344 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
18:07:52.0515 3344 Beep - ok
18:07:52.0546 3344 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
18:07:52.0546 3344 cbidf2k - ok
18:07:52.0562 3344 cd20xrnt - ok
18:07:52.0562 3344 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
18:07:52.0562 3344 Cdaudio - ok
18:07:52.0578 3344 Cdfs (cd7d5152df32b47f4e36f710b35aae02) C:\WINDOWS\system32\drivers\Cdfs.sys
18:07:52.0578 3344 Cdfs - ok
18:07:52.0609 3344 Cdrom (af9c19b3100fe010496b1a27181fbf72) C:\WINDOWS\system32\DRIVERS\cdrom.sys
18:07:52.0609 3344 Cdrom - ok
18:07:52.0609 3344 Changer - ok
18:07:52.0625 3344 CmBatt (4266be808f85826aedf3c64c1e240203) C:\WINDOWS\system32\DRIVERS\CmBatt.sys
18:07:52.0625 3344 CmBatt - ok
18:07:52.0640 3344 CmdIde - ok
18:07:52.0656 3344 Compbatt (df1b1a24bf52d0ebc01ed4ece8979f50) C:\WINDOWS\system32\DRIVERS\compbatt.sys
18:07:52.0656 3344 Compbatt - ok
18:07:52.0671 3344 Cpqarray - ok
18:07:52.0687 3344 dac2w2k - ok
18:07:52.0687 3344 dac960nt - ok
18:07:52.0734 3344 Disk (00ca44e4534865f8a3b64f7c0984bff0) C:\WINDOWS\system32\DRIVERS\disk.sys
18:07:52.0734 3344 Disk - ok
18:07:52.0781 3344 dmboot (c0fbb516e06e243f0cf31f597e7ebf7d) C:\WINDOWS\system32\drivers\dmboot.sys
18:07:52.0796 3344 dmboot - ok
18:07:52.0812 3344 dmio (f5e7b358a732d09f4bcf2824b88b9e28) C:\WINDOWS\system32\drivers\dmio.sys
18:07:52.0812 3344 dmio - ok
18:07:52.0812 3344 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
18:07:52.0812 3344 dmload - ok
18:07:52.0859 3344 DMusic (a6f881284ac1150e37d9ae47ff601267) C:\WINDOWS\system32\drivers\DMusic.sys
18:07:52.0875 3344 DMusic - ok
18:07:52.0875 3344 dpti2o - ok
18:07:52.0890 3344 drmkaud (1ed4dbbae9f5d558dbba4cc450e3eb2e) C:\WINDOWS\system32\drivers\drmkaud.sys
18:07:52.0890 3344 drmkaud - ok
18:07:52.0937 3344 dtsoftbus01 (c0c7ceccb6c85994c2bc92d58e52d3f2) C:\WINDOWS\system32\DRIVERS\dtsoftbus01.sys
18:07:52.0937 3344 dtsoftbus01 - ok
18:07:52.0984 3344 e1yexpress (96967facc0307093b9098f817a4409e6) C:\WINDOWS\system32\DRIVERS\e1y5132.sys
18:07:52.0984 3344 e1yexpress - ok
18:07:53.0062 3344 Fastfat (3117f595e9615e04f05a54fc15a03b20) C:\WINDOWS\system32\drivers\Fastfat.sys
18:07:53.0062 3344 Fastfat - ok
18:07:53.0078 3344 Fdc (ced2e8396a8838e59d8fd529c680e02c) C:\WINDOWS\system32\drivers\Fdc.sys
18:07:53.0078 3344 Fdc - ok
18:07:53.0125 3344 Fips (e153ab8a11de5452bcf5ac7652dbf3ed) C:\WINDOWS\system32\drivers\Fips.sys
18:07:53.0125 3344 Fips - ok
18:07:53.0140 3344 Flpydisk (0dd1de43115b93f4d85e889d7a86f548) C:\WINDOWS\system32\drivers\Flpydisk.sys
18:07:53.0140 3344 Flpydisk - ok
18:07:53.0187 3344 FltMgr (157754f0df355a9e0a6f54721914f9c6) C:\WINDOWS\system32\DRIVERS\fltMgr.sys
18:07:53.0187 3344 FltMgr - ok
18:07:53.0203 3344 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
18:07:53.0203 3344 Fs_Rec - ok
18:07:53.0234 3344 FTDIBUS (a36e8beedb3aaca09bf55a1d17904bc8) C:\WINDOWS\system32\drivers\ftdibus.sys
18:07:53.0234 3344 FTDIBUS - ok
18:07:53.0265 3344 Ftdisk (6ac26732762483366c3969c9e4d2259d) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
18:07:53.0265 3344 Ftdisk - ok
18:07:53.0281 3344 FTSER2K (596d31583ce332b5514520d74837f434) C:\WINDOWS\system32\drivers\ftser2k.sys
18:07:53.0281 3344 FTSER2K - ok
18:07:53.0328 3344 Gpc (c0f1d4a21de5a415df8170616703debf) C:\WINDOWS\system32\DRIVERS\msgpc.sys
18:07:53.0328 3344 Gpc - ok
18:07:53.0375 3344 HBtnKey (407e41ddb2bfece109132aec296e0d98) C:\WINDOWS\system32\DRIVERS\cpqbttn.sys
18:07:53.0390 3344 HBtnKey - ok
18:07:53.0390 3344 HDAudBus (3fcc124b6e08ee0e9351f717dd136939) C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
18:07:53.0390 3344 HDAudBus - ok
18:07:53.0406 3344 HECI (2df64415a28ce036ac6acec7645a996f) C:\WINDOWS\system32\DRIVERS\HECI.sys
18:07:53.0406 3344 HECI - ok
18:07:53.0468 3344 HidUsb (1de6783b918f540149aa69943bdfeba8) C:\WINDOWS\system32\DRIVERS\hidusb.sys
18:07:53.0468 3344 HidUsb - ok
18:07:53.0500 3344 hpdskflt (54cda2171102db1199830d8de6786057) C:\WINDOWS\system32\DRIVERS\hpdskflt.sys
18:07:53.0500 3344 hpdskflt - ok
18:07:53.0500 3344 hpn - ok
18:07:53.0546 3344 HTTP (9f8b0f4276f618964fd118be4289b7cd) C:\WINDOWS\system32\Drivers\HTTP.sys
18:07:53.0546 3344 HTTP - ok
18:07:53.0562 3344 i2omgmt - ok
18:07:53.0562 3344 i2omp - ok
18:07:53.0609 3344 i8042prt (5502b58eef7486ee6f93f3f164dcb808) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
18:07:53.0609 3344 i8042prt - ok
18:07:53.0750 3344 ialm (f592a1b020723cfbd3d2722514066449) C:\WINDOWS\system32\DRIVERS\igxpmp32.sys
18:07:53.0859 3344 ialm - ok
18:07:53.0984 3344 iaStor (de7c12e59605ea7ea0cf6345afeb0f07) C:\WINDOWS\system32\DRIVERS\iaStor.sys
18:07:53.0984 3344 iaStor - ok
18:07:54.0015 3344 Imapi (f8aa320c6a0409c0380e5d8a99d76ec6) C:\WINDOWS\system32\DRIVERS\imapi.sys
18:07:54.0015 3344 Imapi - ok
18:07:54.0031 3344 ini910u - ok
18:07:54.0062 3344 INIDVD (b44f0278b080d73a22176d19a5beb409) C:\WINDOWS\system32\DRIVERS\inidvd.sys
18:07:54.0078 3344 INIDVD - ok
18:07:54.0078 3344 IntelIde - ok
18:07:54.0109 3344 intelppm (279fb78702454dff2bb445f238c048d2) C:\WINDOWS\system32\DRIVERS\intelppm.sys
18:07:54.0109 3344 intelppm - ok
18:07:54.0109 3344 Ip6Fw (4448006b6bc60e6c027932cfc38d6855) C:\WINDOWS\system32\DRIVERS\Ip6Fw.sys
18:07:54.0109 3344 Ip6Fw - ok
18:07:54.0171 3344 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
18:07:54.0171 3344 IpFilterDriver - ok
18:07:54.0171 3344 IpInIp (e1ec7f5da720b640cd8fb8424f1b14bb) C:\WINDOWS\system32\DRIVERS\ipinip.sys
18:07:54.0171 3344 IpInIp - ok
18:07:54.0218 3344 IpNat (b5a8e215ac29d24d60b4d1250ef05ace) C:\WINDOWS\system32\DRIVERS\ipnat.sys
18:07:54.0218 3344 IpNat - ok
18:07:54.0250 3344 IPSec (9b1ba2ae522ec442a57628dfa0769a59) C:\WINDOWS\system32\DRIVERS\ipsec.sys
18:07:54.0250 3344 Suspicious file (Forged): C:\WINDOWS\system32\DRIVERS\ipsec.sys. Real md5: 9b1ba2ae522ec442a57628dfa0769a59, Fake md5: 64537aa5c003a6afeee1df819062d0d1
18:07:54.0250 3344 IPSec ( ForgedFile.Multi.Generic ) - warning
18:07:54.0250 3344 IPSec - detected ForgedFile.Multi.Generic (1)
18:07:54.0296 3344 IRENUM (50708daa1b1cbb7d6ac1cf8f56a24410) C:\WINDOWS\system32\DRIVERS\irenum.sys
18:07:54.0296 3344 IRENUM - ok
18:07:54.0312 3344 isapnp (e504f706ccb699c2596e9a3da1596e87) C:\WINDOWS\system32\DRIVERS\isapnp.sys
18:07:54.0312 3344 isapnp - ok
18:07:54.0343 3344 Kbdclass (ebdee8a2ee5393890a1acee971c4c246) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
18:07:54.0343 3344 Kbdclass - ok
18:07:54.0390 3344 kbdhid (e182fa8e49e8ee41b4adc53093f3c7e6) C:\WINDOWS\system32\DRIVERS\kbdhid.sys
18:07:54.0390 3344 kbdhid - ok
18:07:54.0437 3344 kmixer (d93cad07c5683db066b0b2d2d3790ead) C:\WINDOWS\system32\drivers\kmixer.sys
18:07:54.0437 3344 kmixer - ok
18:07:54.0468 3344 KSecDD (674d3e5a593475915dc6643317192403) C:\WINDOWS\system32\drivers\KSecDD.sys
18:07:54.0468 3344 KSecDD - ok
18:07:54.0468 3344 lbrtfdc - ok
18:07:54.0500 3344 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
18:07:54.0500 3344 mnmdd - ok
18:07:54.0578 3344 Modem (6fc6f9d7acc36dca9b914565a3aeda05) C:\WINDOWS\system32\drivers\Modem.sys
18:07:54.0578 3344 Modem - ok
18:07:54.0593 3344 Mouclass (34e1f0031153e491910e12551400192c) C:\WINDOWS\system32\DRIVERS\mouclass.sys
18:07:54.0593 3344 Mouclass - ok
18:07:54.0609 3344 mouhid (b1c303e17fb9d46e87a98e4ba6769685) C:\WINDOWS\system32\DRIVERS\mouhid.sys
18:07:54.0609 3344 mouhid - ok
18:07:54.0640 3344 MountMgr (65653f3b4477f3c63e68a9659f85ee2e) C:\WINDOWS\system32\drivers\MountMgr.sys
18:07:54.0640 3344 MountMgr - ok
18:07:54.0656 3344 mraid35x - ok
18:07:54.0656 3344 MRxDAV (46edcc8f2db2f322c24f48785cb46366) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
18:07:54.0656 3344 MRxDAV - ok
18:07:54.0718 3344 MRxSmb (fb6c89bb3ce282b08bdb1e3c179e1c39) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
18:07:54.0718 3344 MRxSmb - ok
18:07:54.0734 3344 Msfs (561b3a4333ca2dbdba28b5b956822519) C:\WINDOWS\system32\drivers\Msfs.sys
18:07:54.0734 3344 Msfs - ok
18:07:54.0750 3344 MSKSSRV (ae431a8dd3c1d0d0610cdbac16057ad0) C:\WINDOWS\system32\drivers\MSKSSRV.sys
18:07:54.0765 3344 MSKSSRV - ok
18:07:54.0781 3344 MSPCLOCK (13e75fef9dfeb08eeded9d0246e1f448) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
18:07:54.0781 3344 MSPCLOCK - ok
18:07:54.0781 3344 MSPQM (1988a33ff19242576c3d0ef9ce785da7) C:\WINDOWS\system32\drivers\MSPQM.sys
18:07:54.0781 3344 MSPQM - ok
18:07:54.0828 3344 mssmbios (469541f8bfd2b32659d5d463a6714bce) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
18:07:54.0828 3344 mssmbios - ok
18:07:54.0843 3344 Mup (82035e0f41c2dd05ae41d27fe6cf7de1) C:\WINDOWS\system32\drivers\Mup.sys
18:07:54.0843 3344 Mup - ok
18:07:54.0843 3344 NDIS (558635d3af1c7546d26067d5d9b6959e) C:\WINDOWS\system32\drivers\NDIS.sys
18:07:54.0859 3344 NDIS - ok
18:07:54.0890 3344 NdisTapi (08d43bbdacdf23f34d79e44ed35c1b4c) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
18:07:54.0890 3344 NdisTapi - ok
18:07:54.0937 3344 Ndisuio (34d6cd56409da9a7ed573e1c90a308bf) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
18:07:54.0937 3344 Ndisuio - ok
18:07:54.0953 3344 NdisWan (0b90e255a9490166ab368cd55a529893) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
18:07:54.0953 3344 NdisWan - ok
18:07:54.0953 3344 NDProxy (59fc3fb44d2669bc144fd87826bb571f) C:\WINDOWS\system32\drivers\NDProxy.sys
18:07:54.0953 3344 NDProxy - ok
18:07:54.0968 3344 NetBIOS (3a2aca8fc1d7786902ca434998d7ceb4) C:\WINDOWS\system32\DRIVERS\netbios.sys
18:07:54.0968 3344 NetBIOS - ok
18:07:54.0984 3344 NetBT (0c80e410cd2f47134407ee7dd19cc86b) C:\WINDOWS\system32\DRIVERS\netbt.sys
18:07:54.0984 3344 NetBT - ok
18:07:55.0093 3344 NETw5x32 (0888844230083ce3b47395102bca8207) C:\WINDOWS\system32\DRIVERS\NETw5x32.sys
18:07:55.0156 3344 NETw5x32 - ok
18:07:55.0234 3344 NIC1394 (5c5c53db4fef16cf87b9911c7e8c6fbc) C:\WINDOWS\system32\DRIVERS\nic1394.sys
18:07:55.0234 3344 NIC1394 - ok
18:07:55.0281 3344 nmwcd (48fb907b069524f2dc7ba62a0762850c) C:\WINDOWS\system32\drivers\ccdcmb.sys
18:07:55.0281 3344 nmwcd - ok
18:07:55.0328 3344 nmwcdc (2914ceb789964141ac6e22c6bc980c42) C:\WINDOWS\system32\drivers\ccdcmbo.sys
18:07:55.0328 3344 nmwcdc - ok
18:07:55.0390 3344 Npfs (4f601bcb8f64ea3ac0994f98fed03f8e) C:\WINDOWS\system32\drivers\Npfs.sys
18:07:55.0390 3344 Npfs - ok
18:07:55.0437 3344 Ntfs (b78be402c3f63dd55521f73876951cdd) C:\WINDOWS\system32\drivers\Ntfs.sys
18:07:55.0453 3344 Ntfs - ok
18:07:55.0453 3344 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
18:07:55.0453 3344 Null - ok
18:07:55.0500 3344 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
18:07:55.0500 3344 NwlnkFlt - ok
18:07:55.0515 3344 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
18:07:55.0515 3344 NwlnkFwd - ok
18:07:55.0531 3344 ohci1394 (0951db8e5823ea366b0e408d71e1ba2a) C:\WINDOWS\system32\DRIVERS\ohci1394.sys
18:07:55.0531 3344 ohci1394 - ok
18:07:55.0546 3344 Parport (29744eb4ce659dfe3b4122deb45bc478) C:\WINDOWS\system32\DRIVERS\parport.sys
18:07:55.0546 3344 Parport - ok
18:07:55.0546 3344 PartMgr (3334430c29dc338092f79c38ef7b4cd0) C:\WINDOWS\system32\drivers\PartMgr.sys
18:07:55.0546 3344 PartMgr - ok
18:07:55.0578 3344 ParVdm (70e98b3fd8e963a6a46a2e6247e0bea1) C:\WINDOWS\system32\drivers\ParVdm.sys
18:07:55.0578 3344 ParVdm - ok
18:07:55.0593 3344 pccsmcfd (fd2041e9ba03db7764b2248f02475079) C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys
18:07:55.0593 3344 pccsmcfd - ok
18:07:55.0625 3344 PCI (8086d9979234b603ad5bc2f5d890b234) C:\WINDOWS\system32\DRIVERS\pci.sys
18:07:55.0625 3344 PCI - ok
18:07:55.0625 3344 PCIDump - ok
18:07:55.0640 3344 PCIIde (ccf5f451bb1a5a2a522a76e670000ff0) C:\WINDOWS\system32\DRIVERS\pciide.sys
18:07:55.0640 3344 PCIIde - ok
18:07:55.0640 3344 Pcmcia (82a087207decec8456fbe8537947d579) C:\WINDOWS\system32\DRIVERS\pcmcia.sys
18:07:55.0656 3344 Pcmcia - ok
18:07:55.0656 3344 PDCOMP - ok
18:07:55.0656 3344 PDFRAME - ok
18:07:55.0671 3344 PDRELI - ok
18:07:55.0671 3344 PDRFRAME - ok
18:07:55.0687 3344 perc2 - ok
18:07:55.0687 3344 perc2hib - ok
18:07:55.0718 3344 PptpMiniport (1c5cc65aac0783c344f16353e60b72ac) C:\WINDOWS\system32\DRIVERS\raspptp.sys
18:07:55.0718 3344 PptpMiniport - ok
18:07:55.0734 3344 PSched (48671f327553dcf1d27f6197f622a668) C:\WINDOWS\system32\DRIVERS\psched.sys
18:07:55.0734 3344 PSched - ok
18:07:55.0734 3344 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
18:07:55.0734 3344 Ptilink - ok
18:07:55.0765 3344 PxHelp20 (d86b4a68565e444d76457f14172c875a) C:\WINDOWS\system32\Drivers\PxHelp20.sys
18:07:55.0765 3344 PxHelp20 - ok
18:07:55.0828 3344 ql1080 - ok
18:07:55.0828 3344 Ql10wnt - ok
18:07:55.0843 3344 ql12160 - ok
18:07:55.0843 3344 ql1240 - ok
18:07:55.0859 3344 ql1280 - ok
18:07:55.0875 3344 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
18:07:55.0875 3344 RasAcd - ok
18:07:55.0890 3344 Rasl2tp (98faeb4a4dcf812ba1c6fca4aa3e115c) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
18:07:55.0890 3344 Rasl2tp - ok
18:07:55.0890 3344 RasPppoe (7306eeed8895454cbed4669be9f79faa) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
18:07:55.0890 3344 RasPppoe - ok
18:07:55.0906 3344 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
18:07:55.0906 3344 Raspti - ok
18:07:55.0921 3344 Rdbss (29d66245adba878fff574cd66abd2884) C:\WINDOWS\system32\DRIVERS\rdbss.sys
18:07:55.0921 3344 Rdbss - ok
18:07:55.0953 3344 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
18:07:55.0953 3344 RDPCDD - ok
18:07:55.0968 3344 rdpdr (a2cae2c60bc37e0751ef9dda7ceaf4ad) C:\WINDOWS\system32\DRIVERS\rdpdr.sys
18:07:55.0984 3344 rdpdr - ok
18:07:56.0000 3344 RDPWD (d4f5643d7714ef499ae9527fdcd50894) C:\WINDOWS\system32\drivers\RDPWD.sys
18:07:56.0000 3344 RDPWD - ok
18:07:56.0015 3344 redbook (b31b4588e4086d8d84adbf9845c2402b) C:\WINDOWS\system32\DRIVERS\redbook.sys
18:07:56.0015 3344 redbook - ok
18:07:56.0078 3344 rimmptsk (1ae404944293c90ad690c5a0c4e9c75e) C:\WINDOWS\system32\DRIVERS\rimmptsk.sys
18:07:56.0078 3344 rimmptsk - ok
18:07:56.0078 3344 rismc32 (7c21554942bef51cbd84fd7d4e62cb9a) C:\WINDOWS\system32\DRIVERS\rismc32.sys
18:07:56.0078 3344 rismc32 - ok
18:07:56.0109 3344 sdbus (02fc71b020ec8700ee8a46c58bc6f276) C:\WINDOWS\system32\DRIVERS\sdbus.sys
18:07:56.0109 3344 sdbus - ok
18:07:56.0140 3344 Secdrv (d26e26ea516450af9d072635c60387f4) C:\WINDOWS\system32\DRIVERS\secdrv.sys
18:07:56.0140 3344 Secdrv - ok
18:07:56.0187 3344 Serenum (a2d868aeeff612e70e213c451a70cafb) C:\WINDOWS\system32\DRIVERS\serenum.sys
18:07:56.0187 3344 Serenum - ok
18:07:56.0187 3344 Serial (cd9404d115a00d249f70a371b46d5a26) C:\WINDOWS\system32\DRIVERS\serial.sys
18:07:56.0203 3344 Serial - ok
18:07:56.0234 3344 SFAUDIO (b6401608579b6431994425ba7653f774) C:\WINDOWS\system32\drivers\sfaudio.sys
18:07:56.0234 3344 SFAUDIO - ok
18:07:56.0265 3344 Sfloppy (0d13b6df6e9e101013a7afb0ce629fe0) C:\WINDOWS\system32\DRIVERS\sfloppy.sys
18:07:56.0265 3344 Sfloppy - ok
18:07:56.0265 3344 Simbad - ok
18:07:56.0281 3344 Sparrow - ok
18:07:56.0328 3344 splitter (8e186b8f23295d1e42c573b82b80d548) C:\WINDOWS\system32\drivers\splitter.sys
18:07:56.0328 3344 splitter - ok
18:07:56.0359 3344 sr (e41b6d037d6cd08461470af04500dc24) C:\WINDOWS\system32\DRIVERS\sr.sys
18:07:56.0359 3344 sr - ok
18:07:56.0453 3344 Srv (7a4f147cc6b133f905f6e65e2f8669fb) C:\WINDOWS\system32\DRIVERS\srv.sys
18:07:56.0453 3344 Srv - ok
18:07:56.0468 3344 swenum (03c1bae4766e2450219d20b993d6e046) C:\WINDOWS\system32\DRIVERS\swenum.sys
18:07:56.0468 3344 swenum - ok
18:07:56.0484 3344 swmidi (94abc808fc4b6d7d2bbf42b85e25bb4d) C:\WINDOWS\system32\drivers\swmidi.sys
18:07:56.0484 3344 swmidi - ok
18:07:56.0500 3344 symc810 - ok
18:07:56.0500 3344 symc8xx - ok
18:07:56.0515 3344 sym_hi - ok
18:07:56.0515 3344 sym_u3 - ok
18:07:56.0546 3344 SynTP (926e0bb4cac05d9a0c3b59dc16fe2f1c) C:\WINDOWS\system32\DRIVERS\SynTP.sys
18:07:56.0546 3344 SynTP - ok
18:07:56.0546 3344 sysaudio (650ad082d46bac0e64c9c0e0928492fd) C:\WINDOWS\system32\drivers\sysaudio.sys
18:07:56.0562 3344 sysaudio - ok
18:07:56.0593 3344 Tcpip (2a5554fc5b1e04e131230e3ce035c3f9) C:\WINDOWS\system32\DRIVERS\tcpip.sys
18:07:56.0593 3344 Tcpip - ok
18:07:56.0625 3344 TDPIPE (38d437cf2d98965f239b0abcd66dcb0f) C:\WINDOWS\system32\drivers\TDPIPE.sys
18:07:56.0625 3344 TDPIPE - ok
18:07:56.0640 3344 TDTCP (ed0580af02502d00ad8c4c066b156be9) C:\WINDOWS\system32\drivers\TDTCP.sys
18:07:56.0640 3344 TDTCP - ok
18:07:56.0671 3344 TermDD (a540a99c281d933f3d69d55e48727f47) C:\WINDOWS\system32\DRIVERS\termdd.sys
18:07:56.0671 3344 TermDD - ok
18:07:56.0671 3344 TosIde - ok
18:07:56.0750 3344 TrueSight (2c92880cbc3c99b59ef1369f7f14b409) C:\Program Files\Mozilla Firefox\TrueSight.sys
18:07:56.0750 3344 TrueSight - ok
18:07:56.0765 3344 Udfs (12f70256f140cd7d52c58c7048fde657) C:\WINDOWS\system32\drivers\Udfs.sys
18:07:56.0765 3344 Udfs - ok
18:07:56.0781 3344 ultra - ok
18:07:56.0796 3344 Update (aff2e5045961bbc0a602bb6f95eb1345) C:\WINDOWS\system32\DRIVERS\update.sys
18:07:56.0796 3344 Update - ok
18:07:56.0812 3344 upperdev (e526a166e6acafd0a9b3841d3941669e) C:\WINDOWS\system32\DRIVERS\usbser_lowerflt.sys
18:07:56.0812 3344 upperdev - ok
18:07:56.0859 3344 usbccgp (bffd9f120cc63bcbaa3d840f3eef9f79) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
18:07:56.0859 3344 usbccgp - ok
18:07:56.0890 3344 usbehci (15e993ba2f6946b2bfbbfcd30398621e) C:\WINDOWS\system32\DRIVERS\usbehci.sys
18:07:56.0890 3344 usbehci - ok
18:07:56.0937 3344 usbhub (c72f40947f92cea56a8fb532edf025f1) C:\WINDOWS\system32\DRIVERS\usbhub.sys
18:07:56.0937 3344 usbhub - ok
18:07:57.0015 3344 usbser (49106ee29074e6a3d3ac9e24c6d791d8) C:\WINDOWS\system32\DRIVERS\usbser.sys
18:07:57.0015 3344 usbser - ok
18:07:57.0031 3344 UsbserFilt (6f3e3c6811b930d2414552a2e4a40f36) C:\WINDOWS\system32\DRIVERS\usbser_lowerfltj.sys
18:07:57.0031 3344 UsbserFilt - ok
18:07:57.0062 3344 USBSTOR (6cd7b22193718f1d17a47a1cd6d37e75) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
18:07:57.0062 3344 USBSTOR - ok
18:07:57.0078 3344 usbuhci (f8fd1400092e23c8f2f31406ef06167b) C:\WINDOWS\system32\DRIVERS\usbuhci.sys
18:07:57.0078 3344 usbuhci - ok
18:07:57.0125 3344 VgaSave (8a60edd72b4ea5aea8202daf0e427925) C:\WINDOWS\System32\drivers\vga.sys
18:07:57.0125 3344 VgaSave - ok
18:07:57.0125 3344 ViaIde - ok
18:07:57.0171 3344 VolSnap (ee4660083deba849ff6c485d944b379b) C:\WINDOWS\system32\drivers\VolSnap.sys
18:07:57.0171 3344 VolSnap - ok
18:07:57.0218 3344 Wanarp (984ef0b9788abf89974cfed4bfbaacbc) C:\WINDOWS\system32\DRIVERS\wanarp.sys
18:07:57.0218 3344 Wanarp - ok
18:07:57.0265 3344 Wdf01000 (d918617b46457b9ac28027722e30f647) C:\WINDOWS\system32\DRIVERS\Wdf01000.sys
18:07:57.0265 3344 Wdf01000 - ok
18:07:57.0281 3344 WDICA - ok
18:07:57.0296 3344 wdmaud (2797f33ebf50466020c430ee4f037933) C:\WINDOWS\system32\drivers\wdmaud.sys
18:07:57.0296 3344 wdmaud - ok
18:07:57.0343 3344 WmiAcpi (ae2c8544e747c20062db27456ea2d67a) C:\WINDOWS\system32\DRIVERS\wmiacpi.sys
18:07:57.0343 3344 WmiAcpi - ok
18:07:57.0390 3344 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk0\DR0
18:07:57.0515 3344 \Device\Harddisk0\DR0 - ok
18:07:57.0515 3344 Boot (0x1200) (9ae96a788d031e6a3e084469f292246e) \Device\Harddisk0\DR0\Partition0
18:07:57.0515 3344 \Device\Harddisk0\DR0\Partition0 - ok
18:07:57.0515 3344 ============================================================
18:07:57.0515 3344 Scan finished
18:07:57.0515 3344 ============================================================
18:07:57.0515 1596 Detected object count: 2
18:07:57.0515 1596 Actual detected object count: 2
18:08:22.0015 1596 624211d4 ( HiddenFile.Multi.Generic ) - skipped by user
18:08:22.0015 1596 624211d4 ( HiddenFile.Multi.Generic ) - User select action: Skip
18:08:22.0015 1596 IPSec ( ForgedFile.Multi.Generic ) - skipped by user
18:08:22.0015 1596 IPSec ( ForgedFile.Multi.Generic ) - User select action: Skip
18:08:31.0781 2264 ============================================================
18:08:31.0781 2264 Scan started
18:08:31.0781 2264 Mode: Manual;
18:08:31.0781 2264 ============================================================
18:08:32.0031 2264 624211d4 (6227fc3609788dfc602cc68241c70604) C:\WINDOWS\3557900898:2646470187.exe
18:08:32.0031 2264 Suspicious file (Hidden): C:\WINDOWS\3557900898:2646470187.exe. md5: 6227fc3609788dfc602cc68241c70604
18:08:32.0046 2264 624211d4 ( HiddenFile.Multi.Generic ) - warning
18:08:32.0046 2264 624211d4 - detected HiddenFile.Multi.Generic (1)
18:08:32.0218 2264 Aavmker4 (2ccfa74242741ca22a4267cce9b586f4) C:\WINDOWS\system32\drivers\Aavmker4.sys
18:08:32.0218 2264 Aavmker4 - ok
18:08:32.0234 2264 Abiosdsk - ok
18:08:32.0281 2264 abp480n5 - ok
18:08:32.0343 2264 Accelerometer (a0c1821966de98dd7729e07fa31043ca) C:\WINDOWS\system32\DRIVERS\Accelerometer.sys
18:08:32.0343 2264 Accelerometer - ok
18:08:32.0421 2264 ACPI (a10c7534f7223f4a73a948967d00e69b) C:\WINDOWS\system32\DRIVERS\ACPI.sys
18:08:32.0421 2264 ACPI - ok
18:08:32.0468 2264 ACPIEC (9859c0f6936e723e4892d7141b1327d5) C:\WINDOWS\system32\DRIVERS\ACPIEC.sys
18:08:32.0468 2264 ACPIEC - ok
18:08:32.0546 2264 ADIHdAudAddService (ff60db2aca88543c025eacba25cee5c1) C:\WINDOWS\system32\drivers\ADIHdAud.sys
18:08:32.0546 2264 ADIHdAudAddService - ok
18:08:32.0609 2264 adpu160m - ok
18:08:32.0687 2264 AEAudio (fff87a9b1ab36ee4b7bec98a4cb01b79) C:\WINDOWS\system32\drivers\AEAudio.sys
18:08:32.0687 2264 AEAudio - ok
18:08:32.0750 2264 aec (841f385c6cfaf66b58fbd898722bb4f0) C:\WINDOWS\system32\drivers\aec.sys
18:08:32.0750 2264 aec - ok
18:08:32.0812 2264 AFD (55e6e1c51b6d30e54335750955453702) C:\WINDOWS\System32\drivers\afd.sys
18:08:32.0812 2264 AFD - ok
18:08:32.0828 2264 Aha154x - ok
18:08:32.0859 2264 aic78u2 - ok
18:08:32.0890 2264 aic78xx - ok
18:08:32.0937 2264 AliIde - ok
18:08:32.0937 2264 amsint - ok
18:08:32.0968 2264 Arp1394 (f0d692b0bffb46e30eb3cea168bbc49f) C:\WINDOWS\system32\DRIVERS\arp1394.sys
18:08:32.0968 2264 Arp1394 - ok
18:08:32.0968 2264 asc - ok
18:08:32.0984 2264 asc3350p - ok
18:08:33.0000 2264 asc3550 - ok
18:08:33.0046 2264 aswFsBlk (b4079a98f294a3e262872cb76f4849f0) C:\WINDOWS\system32\DRIVERS\aswFsBlk.sys
18:08:33.0046 2264 aswFsBlk - ok
18:08:33.0062 2264 aswMon2 (dbee7b5ecb50fc2cf9323f52cbf41141) C:\WINDOWS\system32\drivers\aswMon2.sys
18:08:33.0062 2264 aswMon2 - ok
18:08:33.0093 2264 aswRdr (8080d683489c99cbace813f6fa4069cc) C:\WINDOWS\system32\drivers\aswRdr.sys
18:08:33.0093 2264 aswRdr - ok
18:08:33.0125 2264 aswSP (2e5a2ad5004b55df39b7606130a88142) C:\WINDOWS\system32\drivers\aswSP.sys
18:08:33.0125 2264 aswSP - ok
18:08:33.0171 2264 aswTdi (d4c83a37efadfa2c398362e0776e3773) C:\WINDOWS\system32\drivers\aswTdi.sys
18:08:33.0171 2264 aswTdi - ok
18:08:33.0234 2264 AsyncMac (02000abf34af4c218c35d257024807d6) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
18:08:33.0234 2264 AsyncMac - ok
18:08:33.0281 2264 atapi (cdfe4411a69c224bd1d11b2da92dac51) C:\WINDOWS\system32\DRIVERS\atapi.sys
18:08:33.0281 2264 atapi - ok
18:08:33.0328 2264 Atdisk - ok
18:08:33.0343 2264 Atmarpc (ec88da854ab7d7752ec8be11a741bb7f) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
18:08:33.0343 2264 Atmarpc - ok
18:08:33.0390 2264 ATSwpWDF (a9f9d1d24441889beb1aa2b917457e23) C:\WINDOWS\system32\Drivers\ATSwpWDF.sys
18:08:33.0390 2264 ATSwpWDF - ok
18:08:33.0437 2264 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
18:08:33.0437 2264 audstub - ok
18:08:33.0500 2264 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
18:08:33.0500 2264 Beep - ok
18:08:33.0546 2264 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
18:08:33.0546 2264 cbidf2k - ok
18:08:33.0562 2264 cd20xrnt - ok
18:08:33.0562 2264 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
18:08:33.0562 2264 Cdaudio - ok
18:08:33.0578 2264 Cdfs (cd7d5152df32b47f4e36f710b35aae02) C:\WINDOWS\system32\drivers\Cdfs.sys
18:08:33.0578 2264 Cdfs - ok
18:08:33.0609 2264 Cdrom (af9c19b3100fe010496b1a27181fbf72) C:\WINDOWS\system32\DRIVERS\cdrom.sys
18:08:33.0609 2264 Cdrom - ok
18:08:33.0609 2264 Changer - ok
18:08:33.0625 2264 CmBatt (4266be808f85826aedf3c64c1e240203) C:\WINDOWS\system32\DRIVERS\CmBatt.sys
18:08:33.0625 2264 CmBatt - ok
18:08:33.0640 2264 CmdIde - ok
18:08:33.0656 2264 Compbatt (df1b1a24bf52d0ebc01ed4ece8979f50) C:\WINDOWS\system32\DRIVERS\compbatt.sys
18:08:33.0656 2264 Compbatt - ok
18:08:33.0671 2264 Cpqarray - ok
18:08:33.0687 2264 dac2w2k - ok
18:08:33.0687 2264 dac960nt - ok
18:08:33.0718 2264 Disk (00ca44e4534865f8a3b64f7c0984bff0) C:\WINDOWS\system32\DRIVERS\disk.sys
18:08:33.0718 2264 Disk - ok
18:08:33.0750 2264 dmboot (c0fbb516e06e243f0cf31f597e7ebf7d) C:\WINDOWS\system32\drivers\dmboot.sys
18:08:33.0750 2264 dmboot - ok
18:08:33.0765 2264 dmio (f5e7b358a732d09f4bcf2824b88b9e28) C:\WINDOWS\system32\drivers\dmio.sys
18:08:33.0781 2264 dmio - ok
18:08:33.0781 2264 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
18:08:33.0781 2264 dmload - ok
18:08:33.0828 2264 DMusic (a6f881284ac1150e37d9ae47ff601267) C:\WINDOWS\system32\drivers\DMusic.sys
18:08:33.0828 2264 DMusic - ok
18:08:33.0843 2264 dpti2o - ok
18:08:33.0875 2264 drmkaud (1ed4dbbae9f5d558dbba4cc450e3eb2e) C:\WINDOWS\system32\drivers\drmkaud.sys
18:08:33.0875 2264 drmkaud - ok
18:08:33.0906 2264 dtsoftbus01 (c0c7ceccb6c85994c2bc92d58e52d3f2) C:\WINDOWS\system32\DRIVERS\dtsoftbus01.sys
18:08:33.0906 2264 dtsoftbus01 - ok
18:08:34.0000 2264 e1yexpress (96967facc0307093b9098f817a4409e6) C:\WINDOWS\system32\DRIVERS\e1y5132.sys
18:08:34.0015 2264 e1yexpress - ok
18:08:34.0062 2264 Fastfat (3117f595e9615e04f05a54fc15a03b20) C:\WINDOWS\system32\drivers\Fastfat.sys
18:08:34.0062 2264 Fastfat - ok
18:08:34.0109 2264 Fdc (ced2e8396a8838e59d8fd529c680e02c) C:\WINDOWS\system32\drivers\Fdc.sys
18:08:34.0109 2264 Fdc - ok
18:08:34.0156 2264 Fips (e153ab8a11de5452bcf5ac7652dbf3ed) C:\WINDOWS\system32\drivers\Fips.sys
18:08:34.0156 2264 Fips - ok
18:08:34.0156 2264 Flpydisk (0dd1de43115b93f4d85e889d7a86f548) C:\WINDOWS\system32\drivers\Flpydisk.sys
18:08:34.0156 2264 Flpydisk - ok
18:08:34.0203 2264 FltMgr (157754f0df355a9e0a6f54721914f9c6) C:\WINDOWS\system32\DRIVERS\fltMgr.sys
18:08:34.0203 2264 FltMgr - ok
18:08:34.0218 2264 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
18:08:34.0218 2264 Fs_Rec - ok
18:08:34.0265 2264 FTDIBUS (a36e8beedb3aaca09bf55a1d17904bc8) C:\WINDOWS\system32\drivers\ftdibus.sys
18:08:34.0265 2264 FTDIBUS - ok
18:08:34.0296 2264 Ftdisk (6ac26732762483366c3969c9e4d2259d) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
18:08:34.0296 2264 Ftdisk - ok
18:08:34.0328 2264 FTSER2K (596d31583ce332b5514520d74837f434) C:\WINDOWS\system32\drivers\ftser2k.sys
18:08:34.0328 2264 FTSER2K - ok
18:08:34.0359 2264 Gpc (c0f1d4a21de5a415df8170616703debf) C:\WINDOWS\system32\DRIVERS\msgpc.sys
18:08:34.0359 2264 Gpc - ok
18:08:34.0406 2264 HBtnKey (407e41ddb2bfece109132aec296e0d98) C:\WINDOWS\system32\DRIVERS\cpqbttn.sys
18:08:34.0406 2264 HBtnKey - ok
18:08:34.0421 2264 HDAudBus (3fcc124b6e08ee0e9351f717dd136939) C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
18:08:34.0421 2264 HDAudBus - ok
18:08:34.0437 2264 HECI (2df64415a28ce036ac6acec7645a996f) C:\WINDOWS\system32\DRIVERS\HECI.sys
18:08:34.0437 2264 HECI - ok
18:08:34.0593 2264 HidUsb (1de6783b918f540149aa69943bdfeba8) C:\WINDOWS\system32\DRIVERS\hidusb.sys
18:08:34.0593 2264 HidUsb - ok
18:08:34.0718 2264 hpdskflt (54cda2171102db1199830d8de6786057) C:\WINDOWS\system32\DRIVERS\hpdskflt.sys
18:08:34.0718 2264 hpdskflt - ok
18:08:34.0718 2264 hpn - ok
18:08:34.0765 2264 HTTP (9f8b0f4276f618964fd118be4289b7cd) C:\WINDOWS\system32\Drivers\HTTP.sys
18:08:34.0765 2264 HTTP - ok
18:08:34.0781 2264 i2omgmt - ok
18:08:34.0796 2264 i2omp - ok
18:08:34.0843 2264 i8042prt (5502b58eef7486ee6f93f3f164dcb808) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
18:08:34.0843 2264 i8042prt - ok
18:08:34.0984 2264 ialm (f592a1b020723cfbd3d2722514066449) C:\WINDOWS\system32\DRIVERS\igxpmp32.sys
18:08:35.0031 2264 ialm - ok
18:08:35.0156 2264 iaStor (de7c12e59605ea7ea0cf6345afeb0f07) C:\WINDOWS\system32\DRIVERS\iaStor.sys
18:08:35.0156 2264 iaStor - ok
18:08:35.0171 2264 Imapi (f8aa320c6a0409c0380e5d8a99d76ec6) C:\WINDOWS\system32\DRIVERS\imapi.sys
18:08:35.0171 2264 Imapi - ok
18:08:35.0187 2264 ini910u - ok
18:08:35.0234 2264 INIDVD (b44f0278b080d73a22176d19a5beb409) C:\WINDOWS\system32\DRIVERS\inidvd.sys
18:08:35.0234 2264 INIDVD - ok
18:08:35.0234 2264 IntelIde - ok
18:08:35.0265 2264 intelppm (279fb78702454dff2bb445f238c048d2) C:\WINDOWS\system32\DRIVERS\intelppm.sys
18:08:35.0265 2264 intelppm - ok
18:08:35.0281 2264 Ip6Fw (4448006b6bc60e6c027932cfc38d6855) C:\WINDOWS\system32\DRIVERS\Ip6Fw.sys
18:08:35.0281 2264 Ip6Fw - ok
18:08:35.0328 2264 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
18:08:35.0328 2264 IpFilterDriver - ok
18:08:35.0328 2264 IpInIp (e1ec7f5da720b640cd8fb8424f1b14bb) C:\WINDOWS\system32\DRIVERS\ipinip.sys
18:08:35.0328 2264 IpInIp - ok
18:08:35.0359 2264 IpNat (b5a8e215ac29d24d60b4d1250ef05ace) C:\WINDOWS\system32\DRIVERS\ipnat.sys
18:08:35.0359 2264 IpNat - ok
18:08:35.0390 2264 IPSec (9b1ba2ae522ec442a57628dfa0769a59) C:\WINDOWS\system32\DRIVERS\ipsec.sys
18:08:35.0390 2264 Suspicious file (Forged): C:\WINDOWS\system32\DRIVERS\ipsec.sys. Real md5: 9b1ba2ae522ec442a57628dfa0769a59, Fake md5: 64537aa5c003a6afeee1df819062d0d1
18:08:35.0390 2264 IPSec ( ForgedFile.Multi.Generic ) - warning
18:08:35.0390 2264 IPSec - detected ForgedFile.Multi.Generic (1)
18:08:35.0421 2264 IRENUM (50708daa1b1cbb7d6ac1cf8f56a24410) C:\WINDOWS\system32\DRIVERS\irenum.sys
18:08:35.0421 2264 IRENUM - ok
18:08:35.0453 2264 isapnp (e504f706ccb699c2596e9a3da1596e87) C:\WINDOWS\system32\DRIVERS\isapnp.sys
18:08:35.0453 2264 isapnp - ok
18:08:35.0484 2264 Kbdclass (ebdee8a2ee5393890a1acee971c4c246) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
18:08:35.0484 2264 Kbdclass - ok
18:08:35.0531 2264 kbdhid (e182fa8e49e8ee41b4adc53093f3c7e6) C:\WINDOWS\system32\DRIVERS\kbdhid.sys
18:08:35.0531 2264 kbdhid - ok
18:08:35.0578 2264 kmixer (d93cad07c5683db066b0b2d2d3790ead) C:\WINDOWS\system32\drivers\kmixer.sys
18:08:35.0593 2264 kmixer - ok
18:08:35.0687 2264 KSecDD (674d3e5a593475915dc6643317192403) C:\WINDOWS\system32\drivers\KSecDD.sys
18:08:35.0687 2264 KSecDD - ok
18:08:35.0703 2264 lbrtfdc - ok
18:08:35.0750 2264 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
18:08:35.0750 2264 mnmdd - ok
18:08:35.0781 2264 Modem (6fc6f9d7acc36dca9b914565a3aeda05) C:\WINDOWS\system32\drivers\Modem.sys
18:08:35.0796 2264 Modem - ok
18:08:35.0796 2264 Mouclass (34e1f0031153e491910e12551400192c) C:\WINDOWS\system32\DRIVERS\mouclass.sys
18:08:35.0796 2264 Mouclass - ok
18:08:35.0828 2264 mouhid (b1c303e17fb9d46e87a98e4ba6769685) C:\WINDOWS\system32\DRIVERS\mouhid.sys
18:08:35.0828 2264 mouhid - ok
18:08:35.0843 2264 MountMgr (65653f3b4477f3c63e68a9659f85ee2e) C:\WINDOWS\system32\drivers\MountMgr.sys
18:08:35.0843 2264 MountMgr - ok
18:08:35.0859 2264 mraid35x - ok
18:08:35.0875 2264 MRxDAV (46edcc8f2db2f322c24f48785cb46366) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
18:08:35.0875 2264 MRxDAV - ok
18:08:35.0921 2264 MRxSmb (fb6c89bb3ce282b08bdb1e3c179e1c39) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
18:08:35.0921 2264 MRxSmb - ok
18:08:35.0937 2264 Msfs (561b3a4333ca2dbdba28b5b956822519) C:\WINDOWS\system32\drivers\Msfs.sys
18:08:35.0937 2264 Msfs - ok
18:08:35.0968 2264 MSKSSRV (ae431a8dd3c1d0d0610cdbac16057ad0) C:\WINDOWS\system32\drivers\MSKSSRV.sys
18:08:35.0968 2264 MSKSSRV - ok
18:08:35.0968 2264 MSPCLOCK (13e75fef9dfeb08eeded9d0246e1f448) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
18:08:35.0984 2264 MSPCLOCK - ok
18:08:35.0984 2264 MSPQM (1988a33ff19242576c3d0ef9ce785da7) C:\WINDOWS\system32\drivers\MSPQM.sys
18:08:35.0984 2264 MSPQM - ok
18:08:36.0031 2264 mssmbios (469541f8bfd2b32659d5d463a6714bce) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
18:08:36.0031 2264 mssmbios - ok
18:08:36.0046 2264 Mup (82035e0f41c2dd05ae41d27fe6cf7de1) C:\WINDOWS\system32\drivers\Mup.sys
18:08:36.0046 2264 Mup - ok
18:08:36.0046 2264 NDIS (558635d3af1c7546d26067d5d9b6959e) C:\WINDOWS\system32\drivers\NDIS.sys
18:08:36.0062 2264 NDIS - ok
18:08:36.0062 2264 NdisTapi (08d43bbdacdf23f34d79e44ed35c1b4c) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
18:08:36.0062 2264 NdisTapi - ok
18:08:36.0078 2264 Ndisuio (34d6cd56409da9a7ed573e1c90a308bf) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
18:08:36.0078 2264 Ndisuio - ok
18:08:36.0093 2264 NdisWan (0b90e255a9490166ab368cd55a529893) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
18:08:36.0093 2264 NdisWan - ok
18:08:36.0109 2264 NDProxy (59fc3fb44d2669bc144fd87826bb571f) C:\WINDOWS\system32\drivers\NDProxy.sys
18:08:36.0109 2264 NDProxy - ok
18:08:36.0109 2264 NetBIOS (3a2aca8fc1d7786902ca434998d7ceb4) C:\WINDOWS\system32\DRIVERS\netbios.sys
18:08:36.0109 2264 NetBIOS - ok
18:08:36.0140 2264 NetBT (0c80e410cd2f47134407ee7dd19cc86b) C:\WINDOWS\system32\DRIVERS\netbt.sys
18:08:36.0140 2264 NetBT - ok
18:08:36.0265 2264 NETw5x32 (0888844230083ce3b47395102bca8207) C:\WINDOWS\system32\DRIVERS\NETw5x32.sys
18:08:36.0296 2264 NETw5x32 - ok
18:08:36.0406 2264 NIC1394 (5c5c53db4fef16cf87b9911c7e8c6fbc) C:\WINDOWS\system32\DRIVERS\nic1394.sys
18:08:36.0406 2264 NIC1394 - ok
18:08:36.0437 2264 nmwcd (48fb907b069524f2dc7ba62a0762850c) C:\WINDOWS\system32\drivers\ccdcmb.sys
18:08:36.0437 2264 nmwcd - ok
18:08:36.0484 2264 nmwcdc (2914ceb789964141ac6e22c6bc980c42) C:\WINDOWS\system32\drivers\ccdcmbo.sys
18:08:36.0484 2264 nmwcdc - ok
18:08:36.0531 2264 Npfs (4f601bcb8f64ea3ac0994f98fed03f8e) C:\WINDOWS\system32\drivers\Npfs.sys
18:08:36.0531 2264 Npfs - ok
18:08:36.0546 2264 Ntfs (b78be402c3f63dd55521f73876951cdd) C:\WINDOWS\system32\drivers\Ntfs.sys
18:08:36.0546 2264 Ntfs - ok
18:08:36.0609 2264 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
18:08:36.0609 2264 Null - ok
18:08:36.0656 2264 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
18:08:36.0656 2264 NwlnkFlt - ok
18:08:36.0656 2264 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
18:08:36.0656 2264 NwlnkFwd - ok
18:08:36.0687 2264 ohci1394 (0951db8e5823ea366b0e408d71e1ba2a) C:\WINDOWS\system32\DRIVERS\ohci1394.sys
18:08:36.0687 2264 ohci1394 - ok
18:08:36.0718 2264 Parport (29744eb4ce659dfe3b4122deb45bc478) C:\WINDOWS\system32\DRIVERS\parport.sys
18:08:36.0718 2264 Parport - ok
18:08:36.0718 2264 PartMgr (3334430c29dc338092f79c38ef7b4cd0) C:\WINDOWS\system32\drivers\PartMgr.sys
18:08:36.0718 2264 PartMgr - ok
18:08:36.0750 2264 ParVdm (70e98b3fd8e963a6a46a2e6247e0bea1) C:\WINDOWS\system32\drivers\ParVdm.sys
18:08:36.0750 2264 ParVdm - ok
18:08:36.0765 2264 pccsmcfd (fd2041e9ba03db7764b2248f02475079) C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys
18:08:36.0765 2264 pccsmcfd - ok
18:08:36.0812 2264 PCI (8086d9979234b603ad5bc2f5d890b234) C:\WINDOWS\system32\DRIVERS\pci.sys
18:08:36.0812 2264 PCI - ok
18:08:36.0828 2264 PCIDump - ok
18:08:36.0828 2264 PCIIde (ccf5f451bb1a5a2a522a76e670000ff0) C:\WINDOWS\system32\DRIVERS\pciide.sys
18:08:36.0828 2264 PCIIde - ok
18:08:36.0859 2264 Pcmcia (82a087207decec8456fbe8537947d579) C:\WINDOWS\system32\DRIVERS\pcmcia.sys
18:08:36.0859 2264 Pcmcia - ok
18:08:36.0859 2264 PDCOMP - ok
18:08:36.0875 2264 PDFRAME - ok
18:08:36.0890 2264 PDRELI - ok
18:08:36.0890 2264 PDRFRAME - ok
18:08:36.0890 2264 perc2 - ok
18:08:36.0906 2264 perc2hib - ok
18:08:36.0953 2264 PptpMiniport (1c5cc65aac0783c344f16353e60b72ac) C:\WINDOWS\system32\DRIVERS\raspptp.sys
18:08:36.0953 2264 PptpMiniport - ok
18:08:36.0953 2264 PSched (48671f327553dcf1d27f6197f622a668) C:\WINDOWS\system32\DRIVERS\psched.sys
18:08:36.0968 2264 PSched - ok
18:08:36.0984 2264 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
18:08:36.0984 2264 Ptilink - ok
18:08:37.0000 2264 PxHelp20 (d86b4a68565e444d76457f14172c875a) C:\WINDOWS\system32\Drivers\PxHelp20.sys
18:08:37.0000 2264 PxHelp20 - ok
18:08:37.0015 2264 ql1080 - ok
18:08:37.0015 2264 Ql10wnt - ok
18:08:37.0031 2264 ql12160 - ok
18:08:37.0031 2264 ql1240 - ok
18:08:37.0046 2264 ql1280 - ok
18:08:37.0062 2264 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
18:08:37.0062 2264 RasAcd - ok
18:08:37.0109 2264 Rasl2tp (98faeb4a4dcf812ba1c6fca4aa3e115c) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
18:08:37.0125 2264 Rasl2tp - ok
18:08:37.0125 2264 RasPppoe (7306eeed8895454cbed4669be9f79faa) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
18:08:37.0125 2264 RasPppoe - ok
18:08:37.0140 2264 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
18:08:37.0140 2264 Raspti - ok
18:08:37.0187 2264 Rdbss (29d66245adba878fff574cd66abd2884) C:\WINDOWS\system32\DRIVERS\rdbss.sys
18:08:37.0187 2264 Rdbss - ok
18:08:37.0203 2264 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
18:08:37.0203 2264 RDPCDD - ok
18:08:37.0234 2264 rdpdr (a2cae2c60bc37e0751ef9dda7ceaf4ad) C:\WINDOWS\system32\DRIVERS\rdpdr.sys
18:08:37.0234 2264 rdpdr - ok
18:08:37.0281 2264 RDPWD (d4f5643d7714ef499ae9527fdcd50894) C:\WINDOWS\system32\drivers\RDPWD.sys
18:08:37.0281 2264 RDPWD - ok
18:08:37.0296 2264 redbook (b31b4588e4086d8d84adbf9845c2402b) C:\WINDOWS\system32\DRIVERS\redbook.sys
18:08:37.0296 2264 redbook - ok
18:08:37.0328 2264 rimmptsk (1ae404944293c90ad690c5a0c4e9c75e) C:\WINDOWS\system32\DRIVERS\rimmptsk.sys
18:08:37.0328 2264 rimmptsk - ok
18:08:37.0328 2264 rismc32 (7c21554942bef51cbd84fd7d4e62cb9a) C:\WINDOWS\system32\DRIVERS\rismc32.sys
18:08:37.0328 2264 rismc32 - ok
18:08:37.0375 2264 sdbus (02fc71b020ec8700ee8a46c58bc6f276) C:\WINDOWS\system32\DRIVERS\sdbus.sys
18:08:37.0375 2264 sdbus - ok
18:08:37.0390 2264 Secdrv (d26e26ea516450af9d072635c60387f4) C:\WINDOWS\system32\DRIVERS\secdrv.sys
18:08:37.0390 2264 Secdrv - ok
18:08:37.0406 2264 Serenum (a2d868aeeff612e70e213c451a70cafb) C:\WINDOWS\system32\DRIVERS\serenum.sys
18:08:37.0406 2264 Serenum - ok
18:08:37.0421 2264 Serial (cd9404d115a00d249f70a371b46d5a26) C:\WINDOWS\system32\DRIVERS\serial.sys
18:08:37.0421 2264 Serial - ok
18:08:37.0437 2264 SFAUDIO (b6401608579b6431994425ba7653f774) C:\WINDOWS\system32\drivers\sfaudio.sys
18:08:37.0437 2264 SFAUDIO - ok
18:08:37.0484 2264 Sfloppy (0d13b6df6e9e101013a7afb0ce629fe0) C:\WINDOWS\system32\DRIVERS\sfloppy.sys
18:08:37.0484 2264 Sfloppy - ok
18:08:37.0500 2264 Simbad - ok
18:08:37.0515 2264 Sparrow - ok
18:08:37.0562 2264 splitter (8e186b8f23295d1e42c573b82b80d548) C:\WINDOWS\system32\drivers\splitter.sys
18:08:37.0562 2264 splitter - ok
18:08:37.0578 2264 sr (e41b6d037d6cd08461470af04500dc24) C:\WINDOWS\system32\DRIVERS\sr.sys
18:08:37.0578 2264 sr - ok
18:08:37.0625 2264 Srv (7a4f147cc6b133f905f6e65e2f8669fb) C:\WINDOWS\system32\DRIVERS\srv.sys
18:08:37.0625 2264 Srv - ok
18:08:37.0640 2264 swenum (03c1bae4766e2450219d20b993d6e046) C:\WINDOWS\system32\DRIVERS\swenum.sys
18:08:37.0640 2264 swenum - ok
18:08:37.0656 2264 swmidi (94abc808fc4b6d7d2bbf42b85e25bb4d) C:\WINDOWS\system32\drivers\swmidi.sys
18:08:37.0656 2264 swmidi - ok
18:08:37.0671 2264 symc810 - ok
18:08:37.0671 2264 symc8xx - ok
18:08:37.0687 2264 sym_hi - ok
18:08:37.0703 2264 sym_u3 - ok
18:08:37.0734 2264 SynTP (926e0bb4cac05d9a0c3b59dc16fe2f1c) C:\WINDOWS\system32\DRIVERS\SynTP.sys
18:08:37.0734 2264 SynTP - ok
18:08:37.0734 2264 sysaudio (650ad082d46bac0e64c9c0e0928492fd) C:\WINDOWS\system32\drivers\sysaudio.sys
18:08:37.0734 2264 sysaudio - ok
18:08:37.0781 2264 Tcpip (2a5554fc5b1e04e131230e3ce035c3f9) C:\WINDOWS\system32\DRIVERS\tcpip.sys
18:08:37.0781 2264 Tcpip - ok
18:08:37.0828 2264 TDPIPE (38d437cf2d98965f239b0abcd66dcb0f) C:\WINDOWS\system32\drivers\TDPIPE.sys
18:08:37.0828 2264 TDPIPE - ok
18:08:37.0828 2264 TDTCP (ed0580af02502d00ad8c4c066b156be9) C:\WINDOWS\system32\drivers\TDTCP.sys
18:08:37.0828 2264 TDTCP - ok
18:08:37.0843 2264 TermDD (a540a99c281d933f3d69d55e48727f47) C:\WINDOWS\system32\DRIVERS\termdd.sys
18:08:37.0843 2264 TermDD - ok
18:08:37.0859 2264 TosIde - ok
18:08:37.0937 2264 TrueSight (2c92880cbc3c99b59ef1369f7f14b409) C:\Program Files\Mozilla Firefox\TrueSight.sys
18:08:37.0937 2264 TrueSight - ok
18:08:37.0953 2264 Udfs (12f70256f140cd7d52c58c7048fde657) C:\WINDOWS\system32\drivers\Udfs.sys
18:08:37.0953 2264 Udfs - ok
18:08:37.0953 2264 ultra - ok
18:08:37.0968 2264 Update (aff2e5045961bbc0a602bb6f95eb1345) C:\WINDOWS\system32\DRIVERS\update.sys
18:08:37.0968 2264 Update - ok
18:08:38.0015 2264 upperdev (e526a166e6acafd0a9b3841d3941669e) C:\WINDOWS\system32\DRIVERS\usbser_lowerflt.sys
18:08:38.0015 2264 upperdev - ok
18:08:38.0062 2264 usbccgp (bffd9f120cc63bcbaa3d840f3eef9f79) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
18:08:38.0062 2264 usbccgp - ok
18:08:38.0109 2264 usbehci (15e993ba2f6946b2bfbbfcd30398621e) C:\WINDOWS\system32\DRIVERS\usbehci.sys
18:08:38.0109 2264 usbehci - ok
18:08:38.0125 2264 usbhub (c72f40947f92cea56a8fb532edf025f1) C:\WINDOWS\system32\DRIVERS\usbhub.sys
18:08:38.0125 2264 usbhub - ok
18:08:38.0156 2264 usbser (49106ee29074e6a3d3ac9e24c6d791d8) C:\WINDOWS\system32\DRIVERS\usbser.sys
18:08:38.0156 2264 usbser - ok
18:08:38.0171 2264 UsbserFilt (6f3e3c6811b930d2414552a2e4a40f36) C:\WINDOWS\system32\DRIVERS\usbser_lowerfltj.sys
18:08:38.0171 2264 UsbserFilt - ok
18:08:38.0203 2264 USBSTOR (6cd7b22193718f1d17a47a1cd6d37e75) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
18:08:38.0203 2264 USBSTOR - ok
18:08:38.0218 2264 usbuhci (f8fd1400092e23c8f2f31406ef06167b) C:\WINDOWS\system32\DRIVERS\usbuhci.sys
18:08:38.0218 2264 usbuhci - ok
18:08:38.0265 2264 VgaSave (8a60edd72b4ea5aea8202daf0e427925) C:\WINDOWS\System32\drivers\vga.sys
18:08:38.0265 2264 VgaSave - ok
18:08:38.0281 2264 ViaIde - ok
18:08:38.0328 2264 VolSnap (ee4660083deba849ff6c485d944b379b) C:\WINDOWS\system32\drivers\VolSnap.sys
18:08:38.0328 2264 VolSnap - ok
18:08:38.0359 2264 Wanarp (984ef0b9788abf89974cfed4bfbaacbc) C:\WINDOWS\system32\DRIVERS\wanarp.sys
18:08:38.0359 2264 Wanarp - ok
18:08:38.0406 2264 Wdf01000 (d918617b46457b9ac28027722e30f647) C:\WINDOWS\system32\DRIVERS\Wdf01000.sys
18:08:38.0406 2264 Wdf01000 - ok
18:08:38.0453 2264 WDICA - ok
18:08:38.0484 2264 wdmaud (2797f33ebf50466020c430ee4f037933) C:\WINDOWS\system32\drivers\wdmaud.sys
18:08:38.0484 2264 wdmaud - ok
18:08:38.0546 2264 WmiAcpi (ae2c8544e747c20062db27456ea2d67a) C:\WINDOWS\system32\DRIVERS\wmiacpi.sys
18:08:38.0546 2264 WmiAcpi - ok
18:08:38.0578 2264 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk0\DR0
18:08:38.0781 2264 \Device\Harddisk0\DR0 - ok
18:08:38.0796 2264 Boot (0x1200) (9ae96a788d031e6a3e084469f292246e) \Device\Harddisk0\DR0\Partition0
18:08:38.0796 2264 \Device\Harddisk0\DR0\Partition0 - ok
18:08:38.0796 2264 ============================================================
18:08:38.0796 2264 Scan finished
18:08:38.0796 2264 ============================================================
18:08:38.0796 2880 Detected object count: 2
18:08:38.0796 2880 Actual detected object count: 2
18:08:45.0968 2880 624211d4 ( HiddenFile.Multi.Generic ) - skipped by user
18:08:45.0968 2880 624211d4 ( HiddenFile.Multi.Generic ) - User select action: Skip
18:08:45.0968 2880 IPSec ( ForgedFile.Multi.Generic ) - skipped by user
18:08:45.0968 2880 IPSec ( ForgedFile.Multi.Generic ) - User select action: Skip
18:08:48.0031 0584 Deinitialize success
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 5 / 9
lorenzshakur Messages postés 7 Date d'inscription jeudi 22 septembre 2011 Statut Membre Dernière intervention 26 septembre 2011
26 sept. 2011 à 18:21
Alors quand je telecharge malware,
le programme se télécharge puis quand je clic pour instaler et la message d erreur de windows
"windows cannot access the specified device path or file.you may not have the appropriate permissions to access "

donc bloqué !
0
Réponse 6 / 9
lorenzshakur Messages postés 7 Date d'inscription jeudi 22 septembre 2011 Statut Membre Dernière intervention 26 septembre 2011
26 sept. 2011 à 18:32
J'ai quand meme réussi a installer malwares, mais quand je commence le scan le programme se ferme d'un coup.

voila voila
0
Réponse 7 / 9
Utilisateur anonyme
26 sept. 2011 à 20:09
relance Tdsskiller, s'il trouve des choses, choisis Cure, poste son rapport !


0
Réponse 8 / 9
lorenzshakur Messages postés 7 Date d'inscription jeudi 22 septembre 2011 Statut Membre Dernière intervention 26 septembre 2011
26 sept. 2011 à 22:33
Voila tdsskiller à trouvé 2 trucs et j'ai mits en quarantaine
pcq pas trouvé cure --> il y avait skip quarantaine ou delete

Merci bonne soirée.


22:28:58.0625 3912 ============================================================
22:28:58.0625 3912 Current date / time: 2011/09/26 22:28:58.0625
22:28:58.0625 3912 SystemInfo:
22:28:58.0625 3912
22:28:58.0625 3912 OS Version: 5.1.2600 ServicePack: 2.0
22:28:58.0625 3912 Product type: Workstation
22:28:58.0625 3912 ComputerName: KBC042
22:28:58.0625 3912 UserName: KOTK
22:28:58.0625 3912 Windows directory: C:\WINDOWS
22:28:58.0625 3912 System windows directory: C:\WINDOWS
22:28:58.0625 3912 Processor architecture: Intel x86
22:28:58.0625 3912 Number of processors: 2
22:28:58.0625 3912 Page size: 0x1000
22:28:58.0625 3912 Boot type: Normal boot
22:28:58.0625 3912 ============================================================
22:28:58.0921 3912 Initialize success
22:29:01.0296 2536 ============================================================
22:29:01.0296 2536 Scan started
22:29:01.0296 2536 Mode: Manual;
22:29:01.0296 2536 ============================================================
22:29:01.0562 2536 624211d4 (6227fc3609788dfc602cc68241c70604) C:\WINDOWS\3557900898:2646470187.exe
22:29:01.0906 2536 Suspicious file (Hidden): C:\WINDOWS\3557900898:2646470187.exe. md5: 6227fc3609788dfc602cc68241c70604
22:29:01.0906 2536 624211d4 ( HiddenFile.Multi.Generic ) - warning
22:29:01.0906 2536 624211d4 - detected HiddenFile.Multi.Generic (1)
22:29:02.0000 2536 Aavmker4 (2ccfa74242741ca22a4267cce9b586f4) C:\WINDOWS\system32\drivers\Aavmker4.sys
22:29:02.0000 2536 Aavmker4 - ok
22:29:02.0000 2536 Abiosdsk - ok
22:29:02.0015 2536 abp480n5 - ok
22:29:02.0062 2536 Accelerometer (a0c1821966de98dd7729e07fa31043ca) C:\WINDOWS\system32\DRIVERS\Accelerometer.sys
22:29:02.0062 2536 Accelerometer - ok
22:29:02.0125 2536 ACPI (a10c7534f7223f4a73a948967d00e69b) C:\WINDOWS\system32\DRIVERS\ACPI.sys
22:29:02.0125 2536 ACPI - ok
22:29:02.0156 2536 ACPIEC (9859c0f6936e723e4892d7141b1327d5) C:\WINDOWS\system32\DRIVERS\ACPIEC.sys
22:29:02.0156 2536 ACPIEC - ok
22:29:02.0218 2536 ADIHdAudAddService (ff60db2aca88543c025eacba25cee5c1) C:\WINDOWS\system32\drivers\ADIHdAud.sys
22:29:02.0218 2536 ADIHdAudAddService - ok
22:29:02.0234 2536 adpu160m - ok
22:29:02.0250 2536 AEAudio (fff87a9b1ab36ee4b7bec98a4cb01b79) C:\WINDOWS\system32\drivers\AEAudio.sys
22:29:02.0250 2536 AEAudio - ok
22:29:02.0281 2536 aec (841f385c6cfaf66b58fbd898722bb4f0) C:\WINDOWS\system32\drivers\aec.sys
22:29:02.0281 2536 aec - ok
22:29:02.0343 2536 AFD (55e6e1c51b6d30e54335750955453702) C:\WINDOWS\System32\drivers\afd.sys
22:29:02.0359 2536 AFD - ok
22:29:02.0359 2536 Aha154x - ok
22:29:02.0375 2536 aic78u2 - ok
22:29:02.0390 2536 aic78xx - ok
22:29:02.0421 2536 AliIde - ok
22:29:02.0421 2536 amsint - ok
22:29:02.0453 2536 Arp1394 (f0d692b0bffb46e30eb3cea168bbc49f) C:\WINDOWS\system32\DRIVERS\arp1394.sys
22:29:02.0453 2536 Arp1394 - ok
22:29:02.0468 2536 asc - ok
22:29:02.0484 2536 asc3350p - ok
22:29:02.0500 2536 asc3550 - ok
22:29:02.0515 2536 aswFsBlk (b4079a98f294a3e262872cb76f4849f0) C:\WINDOWS\system32\DRIVERS\aswFsBlk.sys
22:29:02.0515 2536 aswFsBlk - ok
22:29:02.0531 2536 aswMon2 (dbee7b5ecb50fc2cf9323f52cbf41141) C:\WINDOWS\system32\drivers\aswMon2.sys
22:29:02.0531 2536 aswMon2 - ok
22:29:02.0562 2536 aswRdr (8080d683489c99cbace813f6fa4069cc) C:\WINDOWS\system32\drivers\aswRdr.sys
22:29:02.0562 2536 aswRdr - ok
22:29:02.0562 2536 aswSP (2e5a2ad5004b55df39b7606130a88142) C:\WINDOWS\system32\drivers\aswSP.sys
22:29:02.0578 2536 aswSP - ok
22:29:02.0593 2536 aswTdi (d4c83a37efadfa2c398362e0776e3773) C:\WINDOWS\system32\drivers\aswTdi.sys
22:29:02.0593 2536 aswTdi - ok
22:29:02.0640 2536 AsyncMac (02000abf34af4c218c35d257024807d6) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
22:29:02.0640 2536 AsyncMac - ok
22:29:02.0656 2536 atapi (cdfe4411a69c224bd1d11b2da92dac51) C:\WINDOWS\system32\DRIVERS\atapi.sys
22:29:02.0656 2536 atapi - ok
22:29:02.0656 2536 Atdisk - ok
22:29:02.0671 2536 Atmarpc (ec88da854ab7d7752ec8be11a741bb7f) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
22:29:02.0671 2536 Atmarpc - ok
22:29:02.0718 2536 ATSwpWDF (a9f9d1d24441889beb1aa2b917457e23) C:\WINDOWS\system32\Drivers\ATSwpWDF.sys
22:29:02.0734 2536 ATSwpWDF - ok
22:29:02.0843 2536 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
22:29:02.0843 2536 audstub - ok
22:29:02.0875 2536 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
22:29:02.0875 2536 Beep - ok
22:29:02.0921 2536 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
22:29:02.0921 2536 cbidf2k - ok
22:29:02.0921 2536 cd20xrnt - ok
22:29:02.0937 2536 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
22:29:02.0937 2536 Cdaudio - ok
22:29:02.0953 2536 Cdfs (cd7d5152df32b47f4e36f710b35aae02) C:\WINDOWS\system32\drivers\Cdfs.sys
22:29:02.0953 2536 Cdfs - ok
22:29:02.0968 2536 Cdrom (af9c19b3100fe010496b1a27181fbf72) C:\WINDOWS\system32\DRIVERS\cdrom.sys
22:29:02.0968 2536 Cdrom - ok
22:29:02.0984 2536 Changer - ok
22:29:03.0000 2536 CmBatt (4266be808f85826aedf3c64c1e240203) C:\WINDOWS\system32\DRIVERS\CmBatt.sys
22:29:03.0000 2536 CmBatt - ok
22:29:03.0015 2536 CmdIde - ok
22:29:03.0015 2536 Compbatt (df1b1a24bf52d0ebc01ed4ece8979f50) C:\WINDOWS\system32\DRIVERS\compbatt.sys
22:29:03.0015 2536 Compbatt - ok
22:29:03.0031 2536 Cpqarray - ok
22:29:03.0046 2536 dac2w2k - ok
22:29:03.0062 2536 dac960nt - ok
22:29:03.0078 2536 Disk (00ca44e4534865f8a3b64f7c0984bff0) C:\WINDOWS\system32\DRIVERS\disk.sys
22:29:03.0078 2536 Disk - ok
22:29:03.0125 2536 dmboot (c0fbb516e06e243f0cf31f597e7ebf7d) C:\WINDOWS\system32\drivers\dmboot.sys
22:29:03.0125 2536 dmboot - ok
22:29:03.0156 2536 dmio (f5e7b358a732d09f4bcf2824b88b9e28) C:\WINDOWS\system32\drivers\dmio.sys
22:29:03.0156 2536 dmio - ok
22:29:03.0156 2536 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
22:29:03.0171 2536 dmload - ok
22:29:03.0203 2536 DMusic (a6f881284ac1150e37d9ae47ff601267) C:\WINDOWS\system32\drivers\DMusic.sys
22:29:03.0203 2536 DMusic - ok
22:29:03.0218 2536 dpti2o - ok
22:29:03.0234 2536 drmkaud (1ed4dbbae9f5d558dbba4cc450e3eb2e) C:\WINDOWS\system32\drivers\drmkaud.sys
22:29:03.0234 2536 drmkaud - ok
22:29:03.0281 2536 dtsoftbus01 (c0c7ceccb6c85994c2bc92d58e52d3f2) C:\WINDOWS\system32\DRIVERS\dtsoftbus01.sys
22:29:03.0281 2536 dtsoftbus01 - ok
22:29:03.0328 2536 e1yexpress (96967facc0307093b9098f817a4409e6) C:\WINDOWS\system32\DRIVERS\e1y5132.sys
22:29:03.0328 2536 e1yexpress - ok
22:29:03.0343 2536 Fastfat (3117f595e9615e04f05a54fc15a03b20) C:\WINDOWS\system32\drivers\Fastfat.sys
22:29:03.0359 2536 Fastfat - ok
22:29:03.0359 2536 Fdc (ced2e8396a8838e59d8fd529c680e02c) C:\WINDOWS\system32\drivers\Fdc.sys
22:29:03.0359 2536 Fdc - ok
22:29:03.0375 2536 Fips (e153ab8a11de5452bcf5ac7652dbf3ed) C:\WINDOWS\system32\drivers\Fips.sys
22:29:03.0375 2536 Fips - ok
22:29:03.0390 2536 Flpydisk (0dd1de43115b93f4d85e889d7a86f548) C:\WINDOWS\system32\drivers\Flpydisk.sys
22:29:03.0390 2536 Flpydisk - ok
22:29:03.0437 2536 FltMgr (157754f0df355a9e0a6f54721914f9c6) C:\WINDOWS\system32\DRIVERS\fltMgr.sys
22:29:03.0437 2536 FltMgr - ok
22:29:03.0531 2536 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
22:29:03.0531 2536 Fs_Rec - ok
22:29:03.0562 2536 FTDIBUS (a36e8beedb3aaca09bf55a1d17904bc8) C:\WINDOWS\system32\drivers\ftdibus.sys
22:29:03.0562 2536 FTDIBUS - ok
22:29:03.0578 2536 Ftdisk (6ac26732762483366c3969c9e4d2259d) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
22:29:03.0578 2536 Ftdisk - ok
22:29:03.0593 2536 FTSER2K (596d31583ce332b5514520d74837f434) C:\WINDOWS\system32\drivers\ftser2k.sys
22:29:03.0593 2536 FTSER2K - ok
22:29:03.0625 2536 Gpc (c0f1d4a21de5a415df8170616703debf) C:\WINDOWS\system32\DRIVERS\msgpc.sys
22:29:03.0625 2536 Gpc - ok
22:29:03.0671 2536 HBtnKey (407e41ddb2bfece109132aec296e0d98) C:\WINDOWS\system32\DRIVERS\cpqbttn.sys
22:29:03.0671 2536 HBtnKey - ok
22:29:03.0671 2536 HDAudBus (3fcc124b6e08ee0e9351f717dd136939) C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
22:29:03.0687 2536 HDAudBus - ok
22:29:03.0687 2536 HECI (2df64415a28ce036ac6acec7645a996f) C:\WINDOWS\system32\DRIVERS\HECI.sys
22:29:03.0687 2536 HECI - ok
22:29:03.0734 2536 HidUsb (1de6783b918f540149aa69943bdfeba8) C:\WINDOWS\system32\DRIVERS\hidusb.sys
22:29:03.0734 2536 HidUsb - ok
22:29:03.0765 2536 hpdskflt (54cda2171102db1199830d8de6786057) C:\WINDOWS\system32\DRIVERS\hpdskflt.sys
22:29:03.0765 2536 hpdskflt - ok
22:29:03.0765 2536 hpn - ok
22:29:03.0828 2536 HTTP (9f8b0f4276f618964fd118be4289b7cd) C:\WINDOWS\system32\Drivers\HTTP.sys
22:29:03.0828 2536 HTTP - ok
22:29:03.0843 2536 i2omgmt - ok
22:29:03.0859 2536 i2omp - ok
22:29:03.0906 2536 i8042prt (5502b58eef7486ee6f93f3f164dcb808) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
22:29:03.0906 2536 i8042prt - ok
22:29:04.0125 2536 ialm (f592a1b020723cfbd3d2722514066449) C:\WINDOWS\system32\DRIVERS\igxpmp32.sys
22:29:04.0234 2536 ialm - ok
22:29:04.0359 2536 iaStor (de7c12e59605ea7ea0cf6345afeb0f07) C:\WINDOWS\system32\DRIVERS\iaStor.sys
22:29:04.0359 2536 iaStor - ok
22:29:04.0390 2536 Imapi (f8aa320c6a0409c0380e5d8a99d76ec6) C:\WINDOWS\system32\DRIVERS\imapi.sys
22:29:04.0390 2536 Imapi - ok
22:29:04.0390 2536 ini910u - ok
22:29:04.0421 2536 INIDVD (b44f0278b080d73a22176d19a5beb409) C:\WINDOWS\system32\DRIVERS\inidvd.sys
22:29:04.0421 2536 INIDVD - ok
22:29:04.0437 2536 IntelIde - ok
22:29:04.0437 2536 intelppm (279fb78702454dff2bb445f238c048d2) C:\WINDOWS\system32\DRIVERS\intelppm.sys
22:29:04.0453 2536 intelppm - ok
22:29:04.0453 2536 Ip6Fw (4448006b6bc60e6c027932cfc38d6855) C:\WINDOWS\system32\DRIVERS\Ip6Fw.sys
22:29:04.0453 2536 Ip6Fw - ok
22:29:04.0500 2536 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
22:29:04.0500 2536 IpFilterDriver - ok
22:29:04.0500 2536 IpInIp (e1ec7f5da720b640cd8fb8424f1b14bb) C:\WINDOWS\system32\DRIVERS\ipinip.sys
22:29:04.0500 2536 IpInIp - ok
22:29:04.0531 2536 IpNat (b5a8e215ac29d24d60b4d1250ef05ace) C:\WINDOWS\system32\DRIVERS\ipnat.sys
22:29:04.0531 2536 IpNat - ok
22:29:04.0546 2536 IPSec (9b1ba2ae522ec442a57628dfa0769a59) C:\WINDOWS\system32\DRIVERS\ipsec.sys
22:29:04.0546 2536 Suspicious file (Forged): C:\WINDOWS\system32\DRIVERS\ipsec.sys. Real md5: 9b1ba2ae522ec442a57628dfa0769a59, Fake md5: 64537aa5c003a6afeee1df819062d0d1
22:29:04.0546 2536 IPSec ( ForgedFile.Multi.Generic ) - warning
22:29:04.0546 2536 IPSec - detected ForgedFile.Multi.Generic (1)
22:29:04.0578 2536 IRENUM (50708daa1b1cbb7d6ac1cf8f56a24410) C:\WINDOWS\system32\DRIVERS\irenum.sys
22:29:04.0578 2536 IRENUM - ok
22:29:04.0593 2536 isapnp (e504f706ccb699c2596e9a3da1596e87) C:\WINDOWS\system32\DRIVERS\isapnp.sys
22:29:04.0593 2536 isapnp - ok
22:29:04.0640 2536 Kbdclass (ebdee8a2ee5393890a1acee971c4c246) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
22:29:04.0640 2536 Kbdclass - ok
22:29:04.0687 2536 kbdhid (e182fa8e49e8ee41b4adc53093f3c7e6) C:\WINDOWS\system32\DRIVERS\kbdhid.sys
22:29:04.0687 2536 kbdhid - ok
22:29:04.0734 2536 kmixer (d93cad07c5683db066b0b2d2d3790ead) C:\WINDOWS\system32\drivers\kmixer.sys
22:29:04.0734 2536 kmixer - ok
22:29:04.0750 2536 KSecDD (674d3e5a593475915dc6643317192403) C:\WINDOWS\system32\drivers\KSecDD.sys
22:29:04.0750 2536 KSecDD - ok
22:29:04.0765 2536 lbrtfdc - ok
22:29:04.0796 2536 MBAMProtector (69a6268d7f81e53d568ab4e7e991caf3) C:\WINDOWS\system32\drivers\mbam.sys
22:29:04.0812 2536 MBAMProtector - ok
22:29:04.0906 2536 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
22:29:04.0906 2536 mnmdd - ok
22:29:04.0921 2536 Modem (6fc6f9d7acc36dca9b914565a3aeda05) C:\WINDOWS\system32\drivers\Modem.sys
22:29:04.0921 2536 Modem - ok
22:29:04.0937 2536 Mouclass (34e1f0031153e491910e12551400192c) C:\WINDOWS\system32\DRIVERS\mouclass.sys
22:29:04.0937 2536 Mouclass - ok
22:29:04.0953 2536 mouhid (b1c303e17fb9d46e87a98e4ba6769685) C:\WINDOWS\system32\DRIVERS\mouhid.sys
22:29:04.0953 2536 mouhid - ok
22:29:04.0984 2536 MountMgr (65653f3b4477f3c63e68a9659f85ee2e) C:\WINDOWS\system32\drivers\MountMgr.sys
22:29:04.0984 2536 MountMgr - ok
22:29:04.0984 2536 mraid35x - ok
22:29:05.0000 2536 MRxDAV (46edcc8f2db2f322c24f48785cb46366) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
22:29:05.0000 2536 MRxDAV - ok
22:29:05.0046 2536 MRxSmb (fb6c89bb3ce282b08bdb1e3c179e1c39) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
22:29:05.0046 2536 MRxSmb - ok
22:29:05.0062 2536 Msfs (561b3a4333ca2dbdba28b5b956822519) C:\WINDOWS\system32\drivers\Msfs.sys
22:29:05.0078 2536 Msfs - ok
22:29:05.0093 2536 MSKSSRV (ae431a8dd3c1d0d0610cdbac16057ad0) C:\WINDOWS\system32\drivers\MSKSSRV.sys
22:29:05.0093 2536 MSKSSRV - ok
22:29:05.0125 2536 MSPCLOCK (13e75fef9dfeb08eeded9d0246e1f448) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
22:29:05.0125 2536 MSPCLOCK - ok
22:29:05.0125 2536 MSPQM (1988a33ff19242576c3d0ef9ce785da7) C:\WINDOWS\system32\drivers\MSPQM.sys
22:29:05.0140 2536 MSPQM - ok
22:29:05.0187 2536 mssmbios (469541f8bfd2b32659d5d463a6714bce) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
22:29:05.0187 2536 mssmbios - ok
22:29:05.0187 2536 Mup (82035e0f41c2dd05ae41d27fe6cf7de1) C:\WINDOWS\system32\drivers\Mup.sys
22:29:05.0187 2536 Mup - ok
22:29:05.0203 2536 NDIS (558635d3af1c7546d26067d5d9b6959e) C:\WINDOWS\system32\drivers\NDIS.sys
22:29:05.0203 2536 NDIS - ok
22:29:05.0250 2536 NdisTapi (08d43bbdacdf23f34d79e44ed35c1b4c) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
22:29:05.0250 2536 NdisTapi - ok
22:29:05.0281 2536 Ndisuio (34d6cd56409da9a7ed573e1c90a308bf) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
22:29:05.0281 2536 Ndisuio - ok
22:29:05.0296 2536 NdisWan (0b90e255a9490166ab368cd55a529893) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
22:29:05.0296 2536 NdisWan - ok
22:29:05.0312 2536 NDProxy (59fc3fb44d2669bc144fd87826bb571f) C:\WINDOWS\system32\drivers\NDProxy.sys
22:29:05.0312 2536 NDProxy - ok
22:29:05.0312 2536 NetBIOS (3a2aca8fc1d7786902ca434998d7ceb4) C:\WINDOWS\system32\DRIVERS\netbios.sys
22:29:05.0312 2536 NetBIOS - ok
22:29:05.0343 2536 NetBT (0c80e410cd2f47134407ee7dd19cc86b) C:\WINDOWS\system32\DRIVERS\netbt.sys
22:29:05.0343 2536 NetBT - ok
22:29:05.0484 2536 NETw5x32 (0888844230083ce3b47395102bca8207) C:\WINDOWS\system32\DRIVERS\NETw5x32.sys
22:29:05.0500 2536 NETw5x32 - ok
22:29:05.0625 2536 NIC1394 (5c5c53db4fef16cf87b9911c7e8c6fbc) C:\WINDOWS\system32\DRIVERS\nic1394.sys
22:29:05.0625 2536 NIC1394 - ok
22:29:05.0671 2536 nmwcd (48fb907b069524f2dc7ba62a0762850c) C:\WINDOWS\system32\drivers\ccdcmb.sys
22:29:05.0687 2536 nmwcd - ok
22:29:05.0734 2536 nmwcdc (2914ceb789964141ac6e22c6bc980c42) C:\WINDOWS\system32\drivers\ccdcmbo.sys
22:29:05.0734 2536 nmwcdc - ok
22:29:05.0781 2536 Npfs (4f601bcb8f64ea3ac0994f98fed03f8e) C:\WINDOWS\system32\drivers\Npfs.sys
22:29:05.0781 2536 Npfs - ok
22:29:05.0812 2536 Ntfs (b78be402c3f63dd55521f73876951cdd) C:\WINDOWS\system32\drivers\Ntfs.sys
22:29:05.0812 2536 Ntfs - ok
22:29:05.0875 2536 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
22:29:05.0875 2536 Null - ok
22:29:05.0906 2536 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
22:29:05.0906 2536 NwlnkFlt - ok
22:29:05.0921 2536 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
22:29:05.0921 2536 NwlnkFwd - ok
22:29:05.0953 2536 ohci1394 (0951db8e5823ea366b0e408d71e1ba2a) C:\WINDOWS\system32\DRIVERS\ohci1394.sys
22:29:05.0953 2536 ohci1394 - ok
22:29:05.0968 2536 Parport (29744eb4ce659dfe3b4122deb45bc478) C:\WINDOWS\system32\DRIVERS\parport.sys
22:29:05.0968 2536 Parport - ok
22:29:05.0984 2536 PartMgr (3334430c29dc338092f79c38ef7b4cd0) C:\WINDOWS\system32\drivers\PartMgr.sys
22:29:05.0984 2536 PartMgr - ok
22:29:06.0000 2536 ParVdm (70e98b3fd8e963a6a46a2e6247e0bea1) C:\WINDOWS\system32\drivers\ParVdm.sys
22:29:06.0000 2536 ParVdm - ok
22:29:06.0125 2536 pccsmcfd (fd2041e9ba03db7764b2248f02475079) C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys
22:29:06.0125 2536 pccsmcfd - ok
22:29:06.0203 2536 PCI (8086d9979234b603ad5bc2f5d890b234) C:\WINDOWS\system32\DRIVERS\pci.sys
22:29:06.0203 2536 PCI - ok
22:29:06.0234 2536 PCIDump - ok
22:29:06.0281 2536 PCIIde (ccf5f451bb1a5a2a522a76e670000ff0) C:\WINDOWS\system32\DRIVERS\pciide.sys
22:29:06.0281 2536 PCIIde - ok
22:29:06.0312 2536 Pcmcia (82a087207decec8456fbe8537947d579) C:\WINDOWS\system32\DRIVERS\pcmcia.sys
22:29:06.0312 2536 Pcmcia - ok
22:29:06.0359 2536 PDCOMP - ok
22:29:06.0375 2536 PDFRAME - ok
22:29:06.0406 2536 PDRELI - ok
22:29:06.0421 2536 PDRFRAME - ok
22:29:06.0437 2536 perc2 - ok
22:29:06.0453 2536 perc2hib - ok
22:29:06.0531 2536 PptpMiniport (1c5cc65aac0783c344f16353e60b72ac) C:\WINDOWS\system32\DRIVERS\raspptp.sys
22:29:06.0531 2536 PptpMiniport - ok
22:29:06.0562 2536 PSched (48671f327553dcf1d27f6197f622a668) C:\WINDOWS\system32\DRIVERS\psched.sys
22:29:06.0578 2536 PSched - ok
22:29:06.0609 2536 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
22:29:06.0609 2536 Ptilink - ok
22:29:06.0656 2536 PxHelp20 (d86b4a68565e444d76457f14172c875a) C:\WINDOWS\system32\Drivers\PxHelp20.sys
22:29:06.0656 2536 PxHelp20 - ok
22:29:06.0656 2536 ql1080 - ok
22:29:06.0671 2536 Ql10wnt - ok
22:29:06.0687 2536 ql12160 - ok
22:29:06.0703 2536 ql1240 - ok
22:29:06.0718 2536 ql1280 - ok
22:29:06.0750 2536 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
22:29:06.0750 2536 RasAcd - ok
22:29:06.0781 2536 Rasl2tp (98faeb4a4dcf812ba1c6fca4aa3e115c) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
22:29:06.0781 2536 Rasl2tp - ok
22:29:06.0812 2536 RasPppoe (7306eeed8895454cbed4669be9f79faa) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
22:29:06.0812 2536 RasPppoe - ok
22:29:06.0828 2536 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
22:29:06.0828 2536 Raspti - ok
22:29:06.0875 2536 Rdbss (29d66245adba878fff574cd66abd2884) C:\WINDOWS\system32\DRIVERS\rdbss.sys
22:29:06.0875 2536 Rdbss - ok
22:29:06.0890 2536 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
22:29:06.0890 2536 RDPCDD - ok
22:29:06.0937 2536 rdpdr (a2cae2c60bc37e0751ef9dda7ceaf4ad) C:\WINDOWS\system32\DRIVERS\rdpdr.sys
22:29:06.0937 2536 rdpdr - ok
22:29:06.0968 2536 RDPWD (d4f5643d7714ef499ae9527fdcd50894) C:\WINDOWS\system32\drivers\RDPWD.sys
22:29:06.0968 2536 RDPWD - ok
22:29:07.0015 2536 redbook (b31b4588e4086d8d84adbf9845c2402b) C:\WINDOWS\system32\DRIVERS\redbook.sys
22:29:07.0015 2536 redbook - ok
22:29:07.0078 2536 rimmptsk (1ae404944293c90ad690c5a0c4e9c75e) C:\WINDOWS\system32\DRIVERS\rimmptsk.sys
22:29:07.0078 2536 rimmptsk - ok
22:29:07.0093 2536 rismc32 (7c21554942bef51cbd84fd7d4e62cb9a) C:\WINDOWS\system32\DRIVERS\rismc32.sys
22:29:07.0093 2536 rismc32 - ok
22:29:07.0140 2536 sdbus (02fc71b020ec8700ee8a46c58bc6f276) C:\WINDOWS\system32\DRIVERS\sdbus.sys
22:29:07.0140 2536 sdbus - ok
22:29:07.0187 2536 Secdrv (d26e26ea516450af9d072635c60387f4) C:\WINDOWS\system32\DRIVERS\secdrv.sys
22:29:07.0187 2536 Secdrv - ok
22:29:07.0250 2536 Serenum (a2d868aeeff612e70e213c451a70cafb) C:\WINDOWS\system32\DRIVERS\serenum.sys
22:29:07.0250 2536 Serenum - ok
22:29:07.0265 2536 Serial (cd9404d115a00d249f70a371b46d5a26) C:\WINDOWS\system32\DRIVERS\serial.sys
22:29:07.0265 2536 Serial - ok
22:29:07.0296 2536 SFAUDIO (b6401608579b6431994425ba7653f774) C:\WINDOWS\system32\drivers\sfaudio.sys
22:29:07.0296 2536 SFAUDIO - ok
22:29:07.0343 2536 Sfloppy (0d13b6df6e9e101013a7afb0ce629fe0) C:\WINDOWS\system32\DRIVERS\sfloppy.sys
22:29:07.0343 2536 Sfloppy - ok
22:29:07.0359 2536 Simbad - ok
22:29:07.0359 2536 Sparrow - ok
22:29:07.0421 2536 splitter (8e186b8f23295d1e42c573b82b80d548) C:\WINDOWS\system32\drivers\splitter.sys
22:29:07.0421 2536 splitter - ok
22:29:07.0453 2536 sr (e41b6d037d6cd08461470af04500dc24) C:\WINDOWS\system32\DRIVERS\sr.sys
22:29:07.0453 2536 sr - ok
22:29:07.0531 2536 Srv (7a4f147cc6b133f905f6e65e2f8669fb) C:\WINDOWS\system32\DRIVERS\srv.sys
22:29:07.0531 2536 Srv - ok
22:29:07.0562 2536 swenum (03c1bae4766e2450219d20b993d6e046) C:\WINDOWS\system32\DRIVERS\swenum.sys
22:29:07.0562 2536 swenum - ok
22:29:07.0593 2536 swmidi (94abc808fc4b6d7d2bbf42b85e25bb4d) C:\WINDOWS\system32\drivers\swmidi.sys
22:29:07.0593 2536 swmidi - ok
22:29:07.0609 2536 symc810 - ok
22:29:07.0609 2536 symc8xx - ok
22:29:07.0625 2536 sym_hi - ok
22:29:07.0640 2536 sym_u3 - ok
22:29:07.0656 2536 SynTP (926e0bb4cac05d9a0c3b59dc16fe2f1c) C:\WINDOWS\system32\DRIVERS\SynTP.sys
22:29:07.0656 2536 SynTP - ok
22:29:07.0671 2536 sysaudio (650ad082d46bac0e64c9c0e0928492fd) C:\WINDOWS\system32\drivers\sysaudio.sys
22:29:07.0671 2536 sysaudio - ok
22:29:07.0734 2536 Tcpip (2a5554fc5b1e04e131230e3ce035c3f9) C:\WINDOWS\system32\DRIVERS\tcpip.sys
22:29:07.0734 2536 Tcpip - ok
22:29:07.0781 2536 TDPIPE (38d437cf2d98965f239b0abcd66dcb0f) C:\WINDOWS\system32\drivers\TDPIPE.sys
22:29:07.0781 2536 TDPIPE - ok
22:29:07.0828 2536 TDTCP (ed0580af02502d00ad8c4c066b156be9) C:\WINDOWS\system32\drivers\TDTCP.sys
22:29:07.0828 2536 TDTCP - ok
22:29:07.0859 2536 TermDD (a540a99c281d933f3d69d55e48727f47) C:\WINDOWS\system32\DRIVERS\termdd.sys
22:29:07.0859 2536 TermDD - ok
22:29:07.0875 2536 TosIde - ok
22:29:07.0953 2536 TrueSight (2c92880cbc3c99b59ef1369f7f14b409) C:\Program Files\Mozilla Firefox\TrueSight.sys
22:29:07.0953 2536 TrueSight - ok
22:29:07.0984 2536 Udfs (12f70256f140cd7d52c58c7048fde657) C:\WINDOWS\system32\drivers\Udfs.sys
22:29:07.0984 2536 Udfs - ok
22:29:07.0984 2536 ultra - ok
22:29:08.0000 2536 Update (aff2e5045961bbc0a602bb6f95eb1345) C:\WINDOWS\system32\DRIVERS\update.sys
22:29:08.0000 2536 Update - ok
22:29:08.0031 2536 upperdev (e526a166e6acafd0a9b3841d3941669e) C:\WINDOWS\system32\DRIVERS\usbser_lowerflt.sys
22:29:08.0031 2536 upperdev - ok
22:29:08.0062 2536 usbccgp (bffd9f120cc63bcbaa3d840f3eef9f79) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
22:29:08.0062 2536 usbccgp - ok
22:29:08.0109 2536 usbehci (15e993ba2f6946b2bfbbfcd30398621e) C:\WINDOWS\system32\DRIVERS\usbehci.sys
22:29:08.0109 2536 usbehci - ok
22:29:08.0156 2536 usbhub (c72f40947f92cea56a8fb532edf025f1) C:\WINDOWS\system32\DRIVERS\usbhub.sys
22:29:08.0156 2536 usbhub - ok
22:29:08.0187 2536 usbser (49106ee29074e6a3d3ac9e24c6d791d8) C:\WINDOWS\system32\DRIVERS\usbser.sys
22:29:08.0187 2536 usbser - ok
22:29:08.0187 2536 UsbserFilt (6f3e3c6811b930d2414552a2e4a40f36) C:\WINDOWS\system32\DRIVERS\usbser_lowerfltj.sys
22:29:08.0187 2536 UsbserFilt - ok
22:29:08.0234 2536 USBSTOR (6cd7b22193718f1d17a47a1cd6d37e75) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
22:29:08.0234 2536 USBSTOR - ok
22:29:08.0250 2536 usbuhci (f8fd1400092e23c8f2f31406ef06167b) C:\WINDOWS\system32\DRIVERS\usbuhci.sys
22:29:08.0250 2536 usbuhci - ok
22:29:08.0296 2536 VgaSave (8a60edd72b4ea5aea8202daf0e427925) C:\WINDOWS\System32\drivers\vga.sys
22:29:08.0296 2536 VgaSave - ok
22:29:08.0328 2536 ViaIde - ok
22:29:08.0359 2536 VolSnap (ee4660083deba849ff6c485d944b379b) C:\WINDOWS\system32\drivers\VolSnap.sys
22:29:08.0359 2536 VolSnap - ok
22:29:08.0390 2536 Wanarp (984ef0b9788abf89974cfed4bfbaacbc) C:\WINDOWS\system32\DRIVERS\wanarp.sys
22:29:08.0390 2536 Wanarp - ok
22:29:08.0437 2536 Wdf01000 (d918617b46457b9ac28027722e30f647) C:\WINDOWS\system32\DRIVERS\Wdf01000.sys
22:29:08.0437 2536 Wdf01000 - ok
22:29:08.0468 2536 WDICA - ok
22:29:08.0500 2536 wdmaud (2797f33ebf50466020c430ee4f037933) C:\WINDOWS\system32\drivers\wdmaud.sys
22:29:08.0500 2536 wdmaud - ok
22:29:08.0562 2536 WmiAcpi (ae2c8544e747c20062db27456ea2d67a) C:\WINDOWS\system32\DRIVERS\wmiacpi.sys
22:29:08.0562 2536 WmiAcpi - ok
22:29:08.0609 2536 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk0\DR0
22:29:08.0843 2536 \Device\Harddisk0\DR0 - ok
22:29:08.0859 2536 Boot (0x1200) (9ae96a788d031e6a3e084469f292246e) \Device\Harddisk0\DR0\Partition0
22:29:08.0859 2536 \Device\Harddisk0\DR0\Partition0 - ok
22:29:08.0859 2536 ============================================================
22:29:08.0859 2536 Scan finished
22:29:08.0859 2536 ============================================================
22:29:08.0859 4128 Detected object count: 2
22:29:08.0859 4128 Actual detected object count: 2
22:29:42.0125 4128 C:\WINDOWS\3557900898:2646470187.exe - copied to quarantine
22:29:42.0125 4128 624211d4 ( HiddenFile.Multi.Generic ) - User select action: Quarantine
22:29:42.0218 4128 C:\WINDOWS\system32\DRIVERS\ipsec.sys - copied to quarantine
22:29:42.0250 4128 IPSec ( ForgedFile.Multi.Generic ) - User select action: Quarantine
22:29:48.0281 1452 Deinitialize success
0
Réponse 9 / 9
Utilisateur anonyme
27 sept. 2011 à 07:41
pas cool !

22:29:42.0125 4128 C:\WINDOWS\3557900898:2646470187.exe - copied to quarantine


tu as une infection nommée Zaccess sur ton pc !

mets tes données seulement à l'abrit sur un autre support que ton disque dure !


il se peut qu'on aurait besoin d'un CD de windows pour alncer la réparation, mais à voir plus tard :D


* /!\Avertissement :
Ce logiciel n'est à utiliser que prescrit par un helper qualifié.
Ne pas utiliser en dehors de ce cas de figure : dangereux!



► Télécharges ComboFix à partir de ce lien et enregistres le sur ton bureau :
https://forum.pcastuces.com/combofix_renomme_au_telechargement-f31s22.htm
ou ici :
http://download.bleepingcomputer.com/sUBs/ComboFix.exe
A lire
https://www.bleepingcomputer.com/combofix/fr/comment-utiliser-combofix

Avant d'utiliser ComboFix :

► ferme les fenêtres de tous les programmes en cours.

► Désactive provisoirement et seulement le temps de l'utilisation de ComboFix, la protection en temps réel de ton Antivirus et de tes Antispywares, qui peuvent gêner fortement la procédure de recherche et de nettoyage de l'outil.
Une fois fait, sur ton bureau double-clic sur Combofix.exe.

- Répond oui au message d'avertissement, pour que le programme commence à procéder à l'analyse du pc.

- il se peut que Combofix ait besoin de se connecter à internet pour trouver les mises à jour, donc il faut l'autoriser.

/!\ Pendant la durée de cette étape, ne te sert pas du pc et n'ouvre aucun programmes.

- En fin de scan il est possible que ComboFix ait besoin de redémarrer le pc pour finaliser la désinfection\recherche, laisses-le faire.
- Un rapport s'ouvrira ensuite dans le bloc notes, ce fichier rapport Combofix.txt, est automatiquement sauvegardé et rangé à C:\ComboFix\ComboFix.txt)
► Réactive la protection en temps réel de ton Antivirus et de tes Antispywares, avant de te reconnecter à internet.
► Reviens sur le forum, et copie et colle la totalité du contenu de C:\Combofix.txt dans ton prochain message.



0

Discussions similaires

Est ce que le site tlauncher est dangereux ?
caribou -
bazfile -

1 réponse
Softonic,est-ce un virus ?
techmel1 -
techmel1 -

6 réponses
4 virus en raison d’un porno ????
valou -
Bello040420 -

9 réponses
problême Opéra est ce un virus??
sand2504 -
sand2504 -

85 réponses
Virus MSN Tinyurl
djkifkif -
matt56430 -

8 réponses