A voir également:
- BOO/Alureon.C
- Dual boo - Guide
- Tirexo boo - Accueil - Outils
- Téléchargement et streaming illégal : voici les adresses des sites pirates que les FAI vont bloquer - Accueil - Services en ligne
- Torrent9.boo - Télécharger - Téléchargement & Transfert
- Darkino : le grand site pirate change d'adresse et d'interface - Accueil - Services en ligne
12 réponses
Utilisateur anonyme
Modifié par nanard4700 le 26/09/2011 à 12:11
Modifié par nanard4700 le 26/09/2011 à 12:11
Bonjour
Tu peux me poster le rapport combofix.
-Télécharge l'utilitaire TDSSKiller (de Kaspersky) sur ton Bureau.
http://fradesch.perso.cegetel.net/transf/Load_tdsskiller.exe
* Lance TDSSKiller.exe
-Sous XP double-clic sur l'icône pour lancer l'outil.
- Sous Vista/Seven clic-droit sur l'icône et choisir "Exécuter en tant qu'administrateur" dans le menu contextuel.
* Clique sur Start scan.
* Laisse l'outil balayer ton système sans l'interrompre et sans utiliser le PC.
* Conserve l'action proposée par défaut par l'outil
- Si TDSS.tdl2 : l'option Delete sera cochée.
- Si TDSS.tdl3 ou TDSS.tdl4 : assure toi que Cure soit bien cochée.
- Si "Suspicious object" laisse l'option cochée sur Skip
- Si Rootkit.Win32.ZAccess.* est détecté règle sur cure en haut , et delete en bas
* Clique sur Continue puis sur Reboot now si le redémarrage est proposé.
* Le rapport se trouve à la racine du disque principal : C:\TDSSKiller.n° de version_date_heure_log.txt
Le cerveau a des capacités tellement étonnantes qu'aujourd'hui pratiquement tout le monde en a un.
Tu peux me poster le rapport combofix.
-Télécharge l'utilitaire TDSSKiller (de Kaspersky) sur ton Bureau.
http://fradesch.perso.cegetel.net/transf/Load_tdsskiller.exe
* Lance TDSSKiller.exe
-Sous XP double-clic sur l'icône pour lancer l'outil.
- Sous Vista/Seven clic-droit sur l'icône et choisir "Exécuter en tant qu'administrateur" dans le menu contextuel.
* Clique sur Start scan.
* Laisse l'outil balayer ton système sans l'interrompre et sans utiliser le PC.
* Conserve l'action proposée par défaut par l'outil
- Si TDSS.tdl2 : l'option Delete sera cochée.
- Si TDSS.tdl3 ou TDSS.tdl4 : assure toi que Cure soit bien cochée.
- Si "Suspicious object" laisse l'option cochée sur Skip
- Si Rootkit.Win32.ZAccess.* est détecté règle sur cure en haut , et delete en bas
* Clique sur Continue puis sur Reboot now si le redémarrage est proposé.
* Le rapport se trouve à la racine du disque principal : C:\TDSSKiller.n° de version_date_heure_log.txt
Le cerveau a des capacités tellement étonnantes qu'aujourd'hui pratiquement tout le monde en a un.
cabaretsy
Messages postés
105
Date d'inscription
jeudi 20 janvier 2005
Statut
Membre
Dernière intervention
29 novembre 2014
9
6 oct. 2011 à 07:41
6 oct. 2011 à 07:41
bonjour, je viens de passer 48h à tenter de supprimer DOS/ Aluréon.A et j'ai trouvé un post qui m'a bien aidé puisque le virus est enfin anéanti !! il est à noter qu'avant de trouver j'ai passé ccleaner et j'ai tout nettoyé en cliquant sur "Nettoyeur" sur la gauche + "Registre" juste en dessous. Puis j'ai fait traduire par google le site :
https://www.computing.net/answers/security/how-to-remove-trojandosalureona/35455.html
puis j'ai téléchargé TDSSKILLER.EXE et j'ai suivi la procédure et j'ai passé Microsoft Security Essentials (mon antivirus habituel) : plus rien ! j'ai fait une analyse complète n'y croyant pas et TOUT EST OK !!
bon courage à tous car j'y ai passé un bon moment !
https://www.computing.net/answers/security/how-to-remove-trojandosalureona/35455.html
puis j'ai téléchargé TDSSKILLER.EXE et j'ai suivi la procédure et j'ai passé Microsoft Security Essentials (mon antivirus habituel) : plus rien ! j'ai fait une analyse complète n'y croyant pas et TOUT EST OK !!
bon courage à tous car j'y ai passé un bon moment !
cabaretsy
Messages postés
105
Date d'inscription
jeudi 20 janvier 2005
Statut
Membre
Dernière intervention
29 novembre 2014
9
6 oct. 2011 à 14:50
6 oct. 2011 à 14:50
HEU bah non ????? l'antivirus ne se met plus en rouge et ne me dit pas qu'il n'a pas pu supprimer le virus
cabaretsy
Messages postés
105
Date d'inscription
jeudi 20 janvier 2005
Statut
Membre
Dernière intervention
29 novembre 2014
9
6 oct. 2011 à 16:57
6 oct. 2011 à 16:57
ne me dis pas que j'ai encore le virus !!! ??? bizare car avant je n'arrivais plus a mettre l'antivirus à jour et depuis ça fonctionne bien ?
21:49:18.0316 3516 TDSS rootkit removing tool 2.6.4.0 Oct 3 2011 17:37:01
21:49:18.0416 3516 ============================================================
21:49:18.0416 3516 Current date / time: 2011/10/05 21:49:18.0416
21:49:18.0416 3516 SystemInfo:
21:49:18.0416 3516
21:49:18.0416 3516 OS Version: 5.1.2600 ServicePack: 3.0
21:49:18.0416 3516 Product type: Workstation
21:49:18.0416 3516 ComputerName: IBM-A0CE84FE5BA
21:49:18.0416 3516 UserName: ROLAND
21:49:18.0416 3516 Windows directory: C:\WINDOWS
21:49:18.0416 3516 System windows directory: C:\WINDOWS
21:49:18.0416 3516 Processor architecture: Intel x86
21:49:18.0416 3516 Number of processors: 1
21:49:18.0416 3516 Page size: 0x1000
21:49:18.0416 3516 Boot type: Normal boot
21:49:18.0416 3516 ============================================================
21:49:22.0262 3516 Initialize success
21:49:32.0216 2080 ============================================================
21:49:32.0216 2080 Scan started
21:49:32.0216 2080 Mode: Manual;
21:49:32.0216 2080 ============================================================
21:49:33.0428 2080 Abiosdsk - ok
21:49:33.0498 2080 abp480n5 (6abb91494fe6c59089b9336452ab2ea3) C:\WINDOWS\system32\DRIVERS\ABP480N5.SYS
21:49:33.0498 2080 abp480n5 - ok
21:49:33.0578 2080 ac97intc (0f2d66d5f08ebe2f77bb904288dcf6f0) C:\WINDOWS\system32\drivers\ac97intc.sys
21:49:33.0578 2080 ac97intc - ok
21:49:33.0678 2080 ACPI (e5e6dbfc41ea8aad005cb9a57a96b43b) C:\WINDOWS\system32\DRIVERS\ACPI.sys
21:49:33.0678 2080 ACPI - ok
21:49:33.0828 2080 ACPIEC (e4abc1212b70bb03d35e60681c447210) C:\WINDOWS\system32\DRIVERS\ACPIEC.sys
21:49:33.0828 2080 ACPIEC - ok
21:49:33.0918 2080 adpu160m (9a11864873da202c996558b2106b0bbc) C:\WINDOWS\system32\DRIVERS\adpu160m.sys
21:49:33.0928 2080 adpu160m - ok
21:49:33.0989 2080 aeaudio (b2886807ac2543da273765cef4d82d68) C:\WINDOWS\system32\drivers\aeaudio.sys
21:49:33.0999 2080 aeaudio - ok
21:49:34.0049 2080 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
21:49:34.0049 2080 aec - ok
21:49:34.0119 2080 AFD (355556d9e580915118cd7ef736653a89) C:\WINDOWS\System32\drivers\afd.sys
21:49:34.0129 2080 AFD - ok
21:49:34.0209 2080 AgereSoftModem (ed5c8b22de2021339a7c7fccfe5c5d7e) C:\WINDOWS\system32\DRIVERS\AGRSM.sys
21:49:34.0269 2080 AgereSoftModem - ok
21:49:34.0299 2080 agp440 (08fd04aa961bdc77fb983f328334e3d7) C:\WINDOWS\system32\DRIVERS\agp440.sys
21:49:34.0299 2080 agp440 - ok
21:49:34.0319 2080 agpCPQ (03a7e0922acfe1b07d5db2eeb0773063) C:\WINDOWS\system32\DRIVERS\agpCPQ.sys
21:49:34.0329 2080 agpCPQ - ok
21:49:34.0359 2080 Aha154x (c23ea9b5f46c7f7910db3eab648ff013) C:\WINDOWS\system32\DRIVERS\aha154x.sys
21:49:34.0369 2080 Aha154x - ok
21:49:34.0389 2080 aic78u2 (19dd0fb48b0c18892f70e2e7d61a1529) C:\WINDOWS\system32\DRIVERS\aic78u2.sys
21:49:34.0399 2080 aic78u2 - ok
21:49:34.0449 2080 aic78xx (b7fe594a7468aa0132deb03fb8e34326) C:\WINDOWS\system32\DRIVERS\aic78xx.sys
21:49:34.0459 2080 aic78xx - ok
21:49:34.0499 2080 AliIde (1140ab9938809700b46bb88e46d72a96) C:\WINDOWS\system32\DRIVERS\aliide.sys
21:49:34.0509 2080 AliIde - ok
21:49:34.0529 2080 alim1541 (cb08aed0de2dd889a8a820cd8082d83c) C:\WINDOWS\system32\DRIVERS\alim1541.sys
21:49:34.0539 2080 alim1541 - ok
21:49:34.0569 2080 amdagp (95b4fb835e28aa1336ceeb07fd5b9398) C:\WINDOWS\system32\DRIVERS\amdagp.sys
21:49:34.0579 2080 amdagp - ok
21:49:34.0629 2080 amsint (79f5add8d24bd6893f2903a3e2f3fad6) C:\WINDOWS\system32\DRIVERS\amsint.sys
21:49:34.0629 2080 amsint - ok
21:49:34.0680 2080 asc (62d318e9a0c8fc9b780008e724283707) C:\WINDOWS\system32\DRIVERS\asc.sys
21:49:34.0680 2080 asc - ok
21:49:34.0710 2080 asc3350p (69eb0cc7714b32896ccbfd5edcbea447) C:\WINDOWS\system32\DRIVERS\asc3350p.sys
21:49:34.0710 2080 asc3350p - ok
21:49:34.0740 2080 asc3550 (5d8de112aa0254b907861e9e9c31d597) C:\WINDOWS\system32\DRIVERS\asc3550.sys
21:49:34.0740 2080 asc3550 - ok
21:49:34.0780 2080 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
21:49:34.0780 2080 AsyncMac - ok
21:49:34.0850 2080 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys
21:49:34.0860 2080 atapi - ok
21:49:34.0910 2080 Atdisk - ok
21:49:35.0070 2080 ati2mtag (96854f30878b41bfae5ad5c6d83042ef) C:\WINDOWS\system32\DRIVERS\ati2mtag.sys
21:49:35.0100 2080 ati2mtag - ok
21:49:35.0190 2080 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
21:49:35.0190 2080 Atmarpc - ok
21:49:35.0260 2080 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
21:49:35.0260 2080 audstub - ok
21:49:35.0320 2080 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
21:49:35.0320 2080 Beep - ok
21:49:35.0391 2080 cbidf (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\DRIVERS\cbidf2k.sys
21:49:35.0401 2080 cbidf - ok
21:49:35.0451 2080 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
21:49:35.0451 2080 cbidf2k - ok
21:49:35.0541 2080 CCDECODE (0be5aef125be881c4f854c554f2b025c) C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
21:49:35.0541 2080 CCDECODE - ok
21:49:35.0601 2080 cd20xrnt (f3ec03299634490e97bbce94cd2954c7) C:\WINDOWS\system32\DRIVERS\cd20xrnt.sys
21:49:35.0601 2080 cd20xrnt - ok
21:49:35.0741 2080 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
21:49:35.0741 2080 Cdaudio - ok
21:49:35.0811 2080 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
21:49:35.0811 2080 Cdfs - ok
21:49:35.0931 2080 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys
21:49:35.0931 2080 Cdrom - ok
21:49:35.0961 2080 Changer - ok
21:49:36.0052 2080 CmBatt (0f6c187d38d98f8df904589a5f94d411) C:\WINDOWS\system32\DRIVERS\CmBatt.sys
21:49:36.0052 2080 CmBatt - ok
21:49:36.0082 2080 CmdIde (e3726ad522d0bdae090671048c991ab3) C:\WINDOWS\system32\DRIVERS\cmdide.sys
21:49:36.0092 2080 CmdIde - ok
21:49:36.0112 2080 Compbatt (6e4c9f21f0fae8940661144f41b13203) C:\WINDOWS\system32\DRIVERS\compbatt.sys
21:49:36.0122 2080 Compbatt - ok
21:49:36.0182 2080 Cpqarray (3ee529119eed34cd212a215e8c40d4b6) C:\WINDOWS\system32\DRIVERS\cpqarray.sys
21:49:36.0182 2080 Cpqarray - ok
21:49:36.0242 2080 dac2w2k (e550e7418984b65a78299d248f0a7f36) C:\WINDOWS\system32\DRIVERS\dac2w2k.sys
21:49:36.0252 2080 dac2w2k - ok
21:49:36.0282 2080 dac960nt (683789caa3864eb46125ae86ff677d34) C:\WINDOWS\system32\DRIVERS\dac960nt.sys
21:49:36.0292 2080 dac960nt - ok
21:49:36.0342 2080 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
21:49:36.0352 2080 Disk - ok
21:49:36.0452 2080 dmboot (f5deadd42335fb33edca74ecb2f36cba) C:\WINDOWS\system32\drivers\dmboot.sys
21:49:36.0492 2080 dmboot - ok
21:49:36.0552 2080 dmio (5a7c47c9b3f9fb92a66410a7509f0c71) C:\WINDOWS\system32\drivers\dmio.sys
21:49:36.0552 2080 dmio - ok
21:49:36.0602 2080 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
21:49:36.0602 2080 dmload - ok
21:49:36.0662 2080 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
21:49:36.0662 2080 DMusic - ok
21:49:36.0793 2080 dpti2o (40f3b93b4e5b0126f2f5c0a7a5e22660) C:\WINDOWS\system32\DRIVERS\dpti2o.sys
21:49:36.0793 2080 dpti2o - ok
21:49:36.0853 2080 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
21:49:36.0853 2080 drmkaud - ok
21:49:36.0923 2080 E1000 (91b083bdc901e4f356c021e5aaaa21f9) C:\WINDOWS\system32\DRIVERS\e1000325.sys
21:49:36.0943 2080 E1000 - ok
21:49:37.0053 2080 E100B (1961f8b618e3c20df54c146b294efd2a) C:\WINDOWS\system32\DRIVERS\e100b325.sys
21:49:37.0063 2080 E100B - ok
21:49:37.0193 2080 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
21:49:37.0203 2080 Fastfat - ok
21:49:37.0273 2080 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\DRIVERS\fdc.sys
21:49:37.0273 2080 Fdc - ok
21:49:37.0373 2080 FilterService (b73ec688c29f81f9da0fcf63682b3ecb) C:\WINDOWS\system32\DRIVERS\lvuvcflt.sys
21:49:37.0393 2080 FilterService - ok
21:49:37.0524 2080 Fips (31f923eb2170fc172c81abda0045d18c) C:\WINDOWS\system32\drivers\Fips.sys
21:49:37.0524 2080 Fips - ok
21:49:37.0594 2080 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\drivers\Flpydisk.sys
21:49:37.0594 2080 Flpydisk - ok
21:49:37.0704 2080 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\drivers\fltmgr.sys
21:49:37.0704 2080 FltMgr - ok
21:49:37.0764 2080 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
21:49:37.0774 2080 Fs_Rec - ok
21:49:37.0824 2080 Ftdisk (a86859b77b908c18c2657f284aa29fe3) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
21:49:37.0834 2080 Ftdisk - ok
21:49:37.0924 2080 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
21:49:37.0924 2080 Gpc - ok
21:49:37.0994 2080 gv3 (fe4b084bfef6f17037a6ec0dab7ce68e) C:\WINDOWS\system32\DRIVERS\gv3.sys
21:49:38.0004 2080 gv3 - ok
21:49:38.0064 2080 HidUsb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys
21:49:38.0074 2080 HidUsb - ok
21:49:38.0195 2080 hpn (b028377dea0546a5fcfba928a8aefae0) C:\WINDOWS\system32\DRIVERS\hpn.sys
21:49:38.0195 2080 hpn - ok
21:49:38.0345 2080 HTTP (f80a415ef82cd06ffaf0d971528ead38) C:\WINDOWS\system32\Drivers\HTTP.sys
21:49:38.0365 2080 HTTP - ok
21:49:38.0485 2080 i2omgmt (9368670bd426ebea5e8b18a62416ec28) C:\WINDOWS\system32\drivers\i2omgmt.sys
21:49:38.0485 2080 i2omgmt - ok
21:49:38.0545 2080 i2omp (f10863bf1ccc290babd1a09188ae49e0) C:\WINDOWS\system32\DRIVERS\i2omp.sys
21:49:38.0605 2080 i2omp - ok
21:49:38.0685 2080 i8042prt (a09bdc4ed10e3b2e0ec27bb94af32516) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
21:49:38.0695 2080 i8042prt - ok
21:49:39.0456 2080 IBMPMDRV (293131c1da5f53cb05f75d637739d79c) C:\WINDOWS\system32\DRIVERS\ibmpmdrv.sys
21:49:39.0456 2080 IBMPMDRV - ok
21:49:39.0577 2080 IBMTPCHK (28deeba2e29cb0e91b641ca95f7740fd) C:\WINDOWS\system32\drivers\IBMBLDID.SYS
21:49:39.0587 2080 IBMTPCHK - ok
21:49:39.0677 2080 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys
21:49:39.0677 2080 Imapi - ok
21:49:39.0757 2080 ini910u (4a40e045faee58631fd8d91afc620719) C:\WINDOWS\system32\DRIVERS\ini910u.sys
21:49:39.0767 2080 ini910u - ok
21:49:40.0468 2080 IntelIde (4b6da2f0a4095857a9e3f3697399d575) C:\WINDOWS\system32\DRIVERS\intelide.sys
21:49:40.0468 2080 IntelIde - ok
21:49:40.0638 2080 intelppm (ad340800c35a42d4de1641a37feea34c) C:\WINDOWS\system32\DRIVERS\intelppm.sys
21:49:40.0688 2080 intelppm - ok
21:49:40.0788 2080 ip6fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\drivers\ip6fw.sys
21:49:40.0788 2080 ip6fw - ok
21:49:40.0868 2080 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
21:49:40.0868 2080 IpFilterDriver - ok
21:49:40.0959 2080 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
21:49:40.0959 2080 IpInIp - ok
21:49:41.0029 2080 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
21:49:41.0039 2080 IpNat - ok
21:49:41.0169 2080 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
21:49:41.0179 2080 IPSec - ok
21:49:41.0279 2080 irda (aca5e7b54409f9cb5eed97ed0c81120e) C:\WINDOWS\system32\DRIVERS\irda.sys
21:49:41.0279 2080 irda - ok
21:49:41.0389 2080 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
21:49:41.0389 2080 IRENUM - ok
21:49:41.0439 2080 isapnp (355836975a67b6554bca60328cd6cb74) C:\WINDOWS\system32\DRIVERS\isapnp.sys
21:49:41.0449 2080 isapnp - ok
21:49:41.0509 2080 Kbdclass (16813155807c6881f4bfbf6657424659) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
21:49:41.0509 2080 Kbdclass - ok
21:49:41.0599 2080 kbdhid (94c59cb884ba010c063687c3a50dce8e) C:\WINDOWS\system32\DRIVERS\kbdhid.sys
21:49:41.0599 2080 kbdhid - ok
21:49:41.0730 2080 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys
21:49:41.0730 2080 kmixer - ok
21:49:41.0860 2080 KSecDD (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys
21:49:41.0880 2080 KSecDD - ok
21:49:41.0950 2080 lbrtfdc - ok
21:49:42.0080 2080 ltmodem5 (919de7d76d2c0c0139e08b3e7592d62e) C:\WINDOWS\system32\DRIVERS\ltmdmnt.sys
21:49:42.0120 2080 ltmodem5 - ok
21:49:42.0280 2080 lvpopflt (9fb982de1c8dd769f8ed681dd878b12f) C:\WINDOWS\system32\DRIVERS\lvpopflt.sys
21:49:42.0290 2080 lvpopflt - ok
21:49:42.0391 2080 LVRS (37072ec9299e825f4335cc554b6fac6a) C:\WINDOWS\system32\DRIVERS\lvrs.sys
21:49:42.0411 2080 LVRS - ok
21:49:43.0001 2080 LVUVC (a240e42a7402e927a71b6e8aa4629b13) C:\WINDOWS\system32\DRIVERS\lvuvc.sys
21:49:43.0342 2080 LVUVC - ok
21:49:43.0472 2080 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
21:49:43.0472 2080 mnmdd - ok
21:49:43.0572 2080 Modem (510ade9327fe84c10254e1902697e25f) C:\WINDOWS\system32\drivers\Modem.sys
21:49:43.0572 2080 Modem - ok
21:49:43.0903 2080 Mouclass (027c01bd7ef3349aaebc883d8a799efb) C:\WINDOWS\system32\DRIVERS\mouclass.sys
21:49:43.0923 2080 Mouclass - ok
21:49:44.0323 2080 mouhid (124d6846040c79b9c997f78ef4b2a4e5) C:\WINDOWS\system32\DRIVERS\mouhid.sys
21:49:44.0343 2080 mouhid - ok
21:49:44.0554 2080 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys
21:49:44.0554 2080 MountMgr - ok
21:49:44.0604 2080 MpFilter (fee0baded54222e9f1dae9541212aab1) C:\WINDOWS\system32\DRIVERS\MpFilter.sys
21:49:44.0614 2080 MpFilter - ok
21:49:44.0694 2080 MpKsl332f2318 - ok
21:49:44.0714 2080 MpKsl3baadb25 - ok
21:49:44.0784 2080 MpKsl43eb9f86 (5f53edfead46fa7adb78eee9ecce8fdf) c:\Documents and Settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{6C33DFE5-CF4F-4378-B3F6-D2E6B0823BD2}\MpKsl43eb9f86.sys
21:49:44.0784 2080 MpKsl43eb9f86 - ok
21:49:44.0804 2080 MpKsl49500d81 - ok
21:49:44.0814 2080 MpKsl4dc237a7 - ok
21:49:44.0834 2080 MpKsl4e1fbcff - ok
21:49:44.0844 2080 MpKsl52d9092a - ok
21:49:44.0884 2080 MpKsl73ece351 - ok
21:49:44.0894 2080 MpKsl7e2312d1 - ok
21:49:44.0914 2080 MpKsl85956010 - ok
21:49:44.0964 2080 MpKsl8b1208a6 (5f53edfead46fa7adb78eee9ecce8fdf) c:\Documents and Settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{6C33DFE5-CF4F-4378-B3F6-D2E6B0823BD2}\MpKsl8b1208a6.sys
21:49:44.0974 2080 MpKsl8b1208a6 - ok
21:49:44.0994 2080 MpKslbfa9304f - ok
21:49:45.0004 2080 MpKslc2aa9627 - ok
21:49:45.0014 2080 MpKslc65110d2 - ok
21:49:45.0034 2080 MpKslf62d9ff0 - ok
21:49:45.0185 2080 mraid35x (3f4bb95e5a44f3be34824e8e7caf0737) C:\WINDOWS\system32\DRIVERS\mraid35x.sys
21:49:45.0185 2080 mraid35x - ok
21:49:45.0295 2080 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
21:49:45.0295 2080 MRxDAV - ok
21:49:45.0415 2080 MRxSmb (7d304a5eb4344ebeeab53a2fe3ffb9f0) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
21:49:45.0455 2080 MRxSmb - ok
21:49:45.0505 2080 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
21:49:45.0505 2080 Msfs - ok
21:49:45.0575 2080 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys
21:49:45.0575 2080 MSKSSRV - ok
21:49:45.0645 2080 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
21:49:45.0645 2080 MSPCLOCK - ok
21:49:45.0745 2080 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys
21:49:45.0745 2080 MSPQM - ok
21:49:45.0816 2080 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
21:49:45.0816 2080 mssmbios - ok
21:49:45.0916 2080 MSTEE (e53736a9e30c45fa9e7b5eac55056d1d) C:\WINDOWS\system32\drivers\MSTEE.sys
21:49:45.0916 2080 MSTEE - ok
21:49:46.0026 2080 Mup (de6a75f5c270e756c5508d94b6cf68f5) C:\WINDOWS\system32\drivers\Mup.sys
21:49:46.0036 2080 Mup - ok
21:49:46.0106 2080 NABTSFEC (5b50f1b2a2ed47d560577b221da734db) C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
21:49:46.0106 2080 NABTSFEC - ok
21:49:46.0196 2080 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys
21:49:46.0206 2080 NDIS - ok
21:49:46.0306 2080 NdisIP (7ff1f1fd8609c149aa432f95a8163d97) C:\WINDOWS\system32\DRIVERS\NdisIP.sys
21:49:46.0306 2080 NdisIP - ok
21:49:46.0406 2080 NdisTapi (0109c4f3850dfbab279542515386ae22) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
21:49:46.0406 2080 NdisTapi - ok
21:49:46.0557 2080 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
21:49:46.0557 2080 Ndisuio - ok
21:49:46.0647 2080 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
21:49:46.0657 2080 NdisWan - ok
21:49:46.0807 2080 NDProxy (9282bd12dfb069d3889eb3fcc1000a9b) C:\WINDOWS\system32\drivers\NDProxy.sys
21:49:46.0807 2080 NDProxy - ok
21:49:46.0947 2080 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys
21:49:46.0947 2080 NetBIOS - ok
21:49:47.0107 2080 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys
21:49:47.0117 2080 NetBT - ok
21:49:47.0167 2080 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
21:49:47.0167 2080 Npfs - ok
21:49:47.0228 2080 NSCIRDA (2adc0ca9945c65284b3d19bc18765974) C:\WINDOWS\system32\DRIVERS\nscirda.sys
21:49:47.0228 2080 NSCIRDA - ok
21:49:47.0298 2080 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys
21:49:47.0328 2080 Ntfs - ok
21:49:47.0378 2080 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
21:49:47.0378 2080 Null - ok
21:49:47.0438 2080 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
21:49:47.0448 2080 NwlnkFlt - ok
21:49:47.0488 2080 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
21:49:47.0498 2080 NwlnkFwd - ok
21:49:47.0538 2080 P3 (cecb679633523ac5eb7eb85f92dcd806) C:\WINDOWS\system32\DRIVERS\p3.sys
21:49:47.0538 2080 P3 - ok
21:49:47.0628 2080 Parport (8fd0bdbea875d06ccf6c945ca9abaf75) C:\WINDOWS\system32\DRIVERS\parport.sys
21:49:47.0628 2080 Parport - ok
21:49:47.0778 2080 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
21:49:47.0778 2080 PartMgr - ok
21:49:47.0828 2080 ParVdm (9575c5630db8fb804649a6959737154c) C:\WINDOWS\system32\drivers\ParVdm.sys
21:49:47.0828 2080 ParVdm - ok
21:49:47.0959 2080 PCDRDRV - ok
21:49:48.0059 2080 PcdrNt (231f133b4a5a04307abd95cac80fd063) C:\WINDOWS\System32\drivers\PcdrNt.sys
21:49:48.0099 2080 PcdrNt - ok
21:49:48.0189 2080 PCI (043410877bda580c528f45165f7125bc) C:\WINDOWS\system32\DRIVERS\pci.sys
21:49:48.0199 2080 PCI - ok
21:49:48.0249 2080 PCIDump - ok
21:49:48.0319 2080 PCIIde (f4bfde7209c14a07aaa61e4d6ae69eac) C:\WINDOWS\system32\DRIVERS\pciide.sys
21:49:48.0319 2080 PCIIde - ok
21:49:48.0389 2080 Pcmcia (f0406cbc60bdb0394a0e17ffb04cdd3d) C:\WINDOWS\system32\DRIVERS\pcmcia.sys
21:49:48.0399 2080 Pcmcia - ok
21:49:48.0479 2080 PDCOMP - ok
21:49:48.0519 2080 PDFRAME - ok
21:49:48.0549 2080 PDRELI - ok
21:49:48.0640 2080 PDRFRAME - ok
21:49:48.0700 2080 perc2 (6c14b9c19ba84f73d3a86dba11133101) C:\WINDOWS\system32\DRIVERS\perc2.sys
21:49:48.0700 2080 perc2 - ok
21:49:48.0750 2080 perc2hib (f50f7c27f131afe7beba13e14a3b9416) C:\WINDOWS\system32\DRIVERS\perc2hib.sys
21:49:48.0750 2080 perc2hib - ok
21:49:48.0830 2080 PMEM (fa292805788528c083f416e151b60ab6) C:\WINDOWS\system32\drivers\PMEMNT.SYS
21:49:48.0830 2080 PMEM - ok
21:49:48.0930 2080 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
21:49:48.0930 2080 PptpMiniport - ok
21:49:49.0020 2080 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys
21:49:49.0020 2080 PSched - ok
21:49:49.0090 2080 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
21:49:49.0100 2080 Ptilink - ok
21:49:49.0130 2080 ql1080 (0a63fb54039eb5662433caba3b26dba7) C:\WINDOWS\system32\DRIVERS\ql1080.sys
21:49:49.0140 2080 ql1080 - ok
21:49:49.0170 2080 Ql10wnt (6503449e1d43a0ff0201ad5cb1b8c706) C:\WINDOWS\system32\DRIVERS\ql10wnt.sys
21:49:49.0170 2080 Ql10wnt - ok
21:49:49.0200 2080 ql12160 (156ed0ef20c15114ca097a34a30d8a01) C:\WINDOWS\system32\DRIVERS\ql12160.sys
21:49:49.0210 2080 ql12160 - ok
21:49:49.0240 2080 ql1240 (70f016bebde6d29e864c1230a07cc5e6) C:\WINDOWS\system32\DRIVERS\ql1240.sys
21:49:49.0240 2080 ql1240 - ok
21:49:49.0271 2080 ql1280 (907f0aeea6bc451011611e732bd31fcf) C:\WINDOWS\system32\DRIVERS\ql1280.sys
21:49:49.0281 2080 ql1280 - ok
21:49:49.0331 2080 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
21:49:49.0331 2080 RasAcd - ok
21:49:49.0401 2080 Rasirda (0207d26ddf796a193ccd9f83047bb5fc) C:\WINDOWS\system32\DRIVERS\rasirda.sys
21:49:49.0401 2080 Rasirda - ok
21:49:49.0451 2080 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
21:49:49.0451 2080 Rasl2tp - ok
21:49:49.0481 2080 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
21:49:49.0491 2080 RasPppoe - ok
21:49:49.0511 2080 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
21:49:49.0511 2080 Raspti - ok
21:49:49.0581 2080 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys
21:49:49.0581 2080 Rdbss - ok
21:49:49.0611 2080 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
21:49:49.0611 2080 RDPCDD - ok
21:49:49.0691 2080 rdpdr (15cabd0f7c00c47c70124907916af3f1) C:\WINDOWS\system32\DRIVERS\rdpdr.sys
21:49:49.0711 2080 rdpdr - ok
21:49:49.0771 2080 RDPWD (fc105dd312ed64eb66bff111e8ec6eac) C:\WINDOWS\system32\drivers\RDPWD.sys
21:49:49.0781 2080 RDPWD - ok
21:49:49.0831 2080 redbook (d8eb2a7904db6c916eb5361878ddcbae) C:\WINDOWS\system32\DRIVERS\redbook.sys
21:49:49.0831 2080 redbook - ok
21:49:49.0921 2080 s24trans (3d99ba73cee82e665948415ae1c6104b) C:\WINDOWS\system32\DRIVERS\s24trans.sys
21:49:49.0941 2080 s24trans - ok
21:49:50.0012 2080 S3SSavage (a94aa8161dd4711bc6f732f21d6407d6) C:\WINDOWS\system32\DRIVERS\s3ssavm.sys
21:49:50.0012 2080 S3SSavage - ok
21:49:50.0182 2080 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
21:49:50.0182 2080 Secdrv - ok
21:49:50.0262 2080 serenum (0f29512ccd6bead730039fb4bd2c85ce) C:\WINDOWS\system32\DRIVERS\serenum.sys
21:49:50.0262 2080 serenum - ok
21:49:50.0352 2080 Serial (93d313c31f7ad9ea2b75f26075413c7c) C:\WINDOWS\system32\DRIVERS\serial.sys
21:49:50.0352 2080 Serial - ok
21:49:50.0402 2080 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys
21:49:50.0402 2080 Sfloppy - ok
21:49:50.0462 2080 Simbad - ok
21:49:50.0502 2080 sisagp (6b33d0ebd30db32e27d1d78fe946a754) C:\WINDOWS\system32\DRIVERS\sisagp.sys
21:49:50.0512 2080 sisagp - ok
21:49:50.0582 2080 SLIP (866d538ebe33709a5c9f5c62b73b7d14) C:\WINDOWS\system32\DRIVERS\SLIP.sys
21:49:50.0582 2080 SLIP - ok
21:49:50.0683 2080 Smapint (26341d0dd225d19fd50e0ee3c3c77502) C:\WINDOWS\system32\drivers\Smapint.sys
21:49:50.0703 2080 Smapint - ok
21:49:50.0853 2080 smwdm (66aaa895b7f2337b5c52611241455614) C:\WINDOWS\system32\drivers\smwdm.sys
21:49:50.0923 2080 smwdm - ok
21:49:51.0003 2080 Sparrow (83c0f71f86d3bdaf915685f3d568b20e) C:\WINDOWS\system32\DRIVERS\sparrow.sys
21:49:51.0003 2080 Sparrow - ok
21:49:51.0083 2080 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
21:49:51.0083 2080 splitter - ok
21:49:51.0143 2080 sr (39626e6dc1fb39434ec40c42722b660a) C:\WINDOWS\system32\DRIVERS\sr.sys
21:49:51.0143 2080 sr - ok
21:49:51.0233 2080 Srv (47ddfc2f003f7f9f0592c6874962a2e7) C:\WINDOWS\system32\DRIVERS\srv.sys
21:49:51.0253 2080 Srv - ok
21:49:51.0374 2080 streamip (77813007ba6265c4b6098187e6ed79d2) C:\WINDOWS\system32\DRIVERS\StreamIP.sys
21:49:51.0374 2080 streamip - ok
21:49:51.0474 2080 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys
21:49:51.0474 2080 swenum - ok
21:49:51.0534 2080 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys
21:49:51.0534 2080 swmidi - ok
21:49:51.0634 2080 symc810 (1ff3217614018630d0a6758630fc698c) C:\WINDOWS\system32\DRIVERS\symc810.sys
21:49:51.0634 2080 symc810 - ok
21:49:51.0704 2080 symc8xx (070e001d95cf725186ef8b20335f933c) C:\WINDOWS\system32\DRIVERS\symc8xx.sys
21:49:51.0704 2080 symc8xx - ok
21:49:51.0774 2080 sym_hi (80ac1c4abbe2df3b738bf15517a51f2c) C:\WINDOWS\system32\DRIVERS\sym_hi.sys
21:49:51.0774 2080 sym_hi - ok
21:49:51.0904 2080 sym_u3 (bf4fab949a382a8e105f46ebb4937058) C:\WINDOWS\system32\DRIVERS\sym_u3.sys
21:49:51.0904 2080 sym_u3 - ok
21:49:52.0034 2080 SynTP (44461da5e3df02d046d74fdeb90e8048) C:\WINDOWS\system32\DRIVERS\SynTP.sys
21:49:52.0045 2080 SynTP - ok
21:49:52.0185 2080 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys
21:49:52.0185 2080 sysaudio - ok
21:49:52.0325 2080 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys
21:49:52.0355 2080 Tcpip - ok
21:49:52.0445 2080 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys
21:49:52.0455 2080 TDPIPE - ok
21:49:52.0535 2080 TDSMAPI (e64da7318acaddf0a4400baa921e8ac1) C:\WINDOWS\system32\drivers\TDSMAPI.SYS
21:49:52.0555 2080 TDSMAPI - ok
21:49:52.0625 2080 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys
21:49:52.0625 2080 TDTCP - ok
21:49:52.0715 2080 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys
21:49:52.0725 2080 TermDD - ok
21:49:52.0806 2080 TosIde (b411668322c3bf4e690888706b999679) C:\WINDOWS\system32\DRIVERS\toside.sys
21:49:52.0816 2080 TosIde - ok
21:49:52.0966 2080 TPHKDRV (9328933b47b9b52b673b8aed8489bd0a) C:\WINDOWS\system32\drivers\TPHKDRV.sys
21:49:52.0996 2080 TPHKDRV - ok
21:49:53.0046 2080 TPPWR (970ab1aef38db6f5e1aae277a6843d54) C:\WINDOWS\system32\drivers\Tppwr.sys
21:49:53.0066 2080 TPPWR - ok
21:49:53.0136 2080 TSMAPIP (f2aba3066d7921d7fcdbd66dea88be11) C:\WINDOWS\system32\drivers\TSMAPIP.SYS
21:49:53.0156 2080 TSMAPIP - ok
21:49:53.0216 2080 TwoTrack (17687545f77a648af7f9f1064eb61191) C:\WINDOWS\system32\DRIVERS\TwoTrack.sys
21:49:53.0216 2080 TwoTrack - ok
21:49:53.0296 2080 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys
21:49:53.0296 2080 Udfs - ok
21:49:53.0336 2080 ultra (1b698a51cd528d8da4ffaed66dfc51b9) C:\WINDOWS\system32\DRIVERS\ultra.sys
21:49:53.0336 2080 ultra - ok
21:49:53.0437 2080 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys
21:49:53.0457 2080 Update - ok
21:49:53.0577 2080 usbaudio (e919708db44ed8543a7c017953148330) C:\WINDOWS\system32\drivers\usbaudio.sys
21:49:53.0577 2080 usbaudio - ok
21:49:53.0727 2080 usbccgp (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
21:49:53.0737 2080 usbccgp - ok
21:49:53.0827 2080 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys
21:49:53.0827 2080 usbehci - ok
21:49:53.0897 2080 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys
21:49:53.0897 2080 usbhub - ok
21:49:53.0947 2080 USBSTOR (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
21:49:53.0957 2080 USBSTOR - ok
21:49:53.0997 2080 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys
21:49:53.0997 2080 usbuhci - ok
21:49:54.0057 2080 usbvideo (63bbfca7f390f4c49ed4b96bfb1633e0) C:\WINDOWS\system32\Drivers\usbvideo.sys
21:49:54.0057 2080 usbvideo - ok
21:49:54.0107 2080 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys
21:49:54.0107 2080 VgaSave - ok
21:49:54.0158 2080 viaagp (754292ce5848b3738281b4f3607eaef4) C:\WINDOWS\system32\DRIVERS\viaagp.sys
21:49:54.0158 2080 viaagp - ok
21:49:54.0198 2080 ViaIde (3b3efcda263b8ac14fdf9cbdd0791b2e) C:\WINDOWS\system32\DRIVERS\viaide.sys
21:49:54.0208 2080 ViaIde - ok
21:49:54.0278 2080 VolSnap (46de1126684369bace4849e4fc8c43ca) C:\WINDOWS\system32\drivers\VolSnap.sys
21:49:54.0278 2080 VolSnap - ok
21:49:54.0478 2080 w70n51 (7eb4838a24bf8eb142377dfa87e4cc1f) C:\WINDOWS\system32\DRIVERS\w70n51.sys
21:49:54.0598 2080 w70n51 - ok
21:49:54.0678 2080 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys
21:49:54.0688 2080 Wanarp - ok
21:49:54.0748 2080 WDICA - ok
21:49:54.0818 2080 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys
21:49:54.0829 2080 wdmaud - ok
21:49:54.0969 2080 WSTCODEC (c98b39829c2bbd34e454150633c62c78) C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
21:49:54.0969 2080 WSTCODEC - ok
21:49:55.0059 2080 WudfPf (f15feafffbb3644ccc80c5da584e6311) C:\WINDOWS\system32\DRIVERS\WudfPf.sys
21:49:55.0059 2080 WudfPf - ok
21:49:55.0179 2080 WudfRd (28b524262bce6de1f7ef9f510ba3985b) C:\WINDOWS\system32\DRIVERS\wudfrd.sys
21:49:55.0199 2080 WudfRd - ok
21:49:55.0259 2080 MBR (0x1B8) (6db645fc10c40bb05cc99e3e11c263fb) \Device\Harddisk0\DR0
21:49:55.0259 2080 \Device\Harddisk0\DR0 ( Rootkit.Win32.TDSS.tdl4 ) - infected
21:49:55.0259 2080 \Device\Harddisk0\DR0 - detected Rootkit.Win32.TDSS.tdl4 (0)
21:49:55.0269 2080 Boot (0x1200) (644d6644c1763adf8a71fe28d334b249) \Device\Harddisk0\DR0\Partition0
21:49:55.0269 2080 \Device\Harddisk0\DR0\Partition0 - ok
21:49:55.0269 2080 ============================================================
21:49:55.0269 2080 Scan finished
21:49:55.0269 2080 ============================================================
21:49:55.0289 2340 Detected object count: 1
21:49:55.0289 2340 Actual detected object count: 1
21:50:18.0402 2340 \Device\Harddisk0\DR0 ( Rootkit.Win32.TDSS.tdl4 ) - will be cured on reboot
21:50:18.0402 2340 \Device\Harddisk0\DR0 - ok
21:50:18.0402 2340 \Device\Harddisk0\DR0 ( Rootkit.Win32.TDSS.tdl4 ) - User select action: Cure
21:50:22.0258 3040 Deinitialize success
MERCI
21:49:18.0316 3516 TDSS rootkit removing tool 2.6.4.0 Oct 3 2011 17:37:01
21:49:18.0416 3516 ============================================================
21:49:18.0416 3516 Current date / time: 2011/10/05 21:49:18.0416
21:49:18.0416 3516 SystemInfo:
21:49:18.0416 3516
21:49:18.0416 3516 OS Version: 5.1.2600 ServicePack: 3.0
21:49:18.0416 3516 Product type: Workstation
21:49:18.0416 3516 ComputerName: IBM-A0CE84FE5BA
21:49:18.0416 3516 UserName: ROLAND
21:49:18.0416 3516 Windows directory: C:\WINDOWS
21:49:18.0416 3516 System windows directory: C:\WINDOWS
21:49:18.0416 3516 Processor architecture: Intel x86
21:49:18.0416 3516 Number of processors: 1
21:49:18.0416 3516 Page size: 0x1000
21:49:18.0416 3516 Boot type: Normal boot
21:49:18.0416 3516 ============================================================
21:49:22.0262 3516 Initialize success
21:49:32.0216 2080 ============================================================
21:49:32.0216 2080 Scan started
21:49:32.0216 2080 Mode: Manual;
21:49:32.0216 2080 ============================================================
21:49:33.0428 2080 Abiosdsk - ok
21:49:33.0498 2080 abp480n5 (6abb91494fe6c59089b9336452ab2ea3) C:\WINDOWS\system32\DRIVERS\ABP480N5.SYS
21:49:33.0498 2080 abp480n5 - ok
21:49:33.0578 2080 ac97intc (0f2d66d5f08ebe2f77bb904288dcf6f0) C:\WINDOWS\system32\drivers\ac97intc.sys
21:49:33.0578 2080 ac97intc - ok
21:49:33.0678 2080 ACPI (e5e6dbfc41ea8aad005cb9a57a96b43b) C:\WINDOWS\system32\DRIVERS\ACPI.sys
21:49:33.0678 2080 ACPI - ok
21:49:33.0828 2080 ACPIEC (e4abc1212b70bb03d35e60681c447210) C:\WINDOWS\system32\DRIVERS\ACPIEC.sys
21:49:33.0828 2080 ACPIEC - ok
21:49:33.0918 2080 adpu160m (9a11864873da202c996558b2106b0bbc) C:\WINDOWS\system32\DRIVERS\adpu160m.sys
21:49:33.0928 2080 adpu160m - ok
21:49:33.0989 2080 aeaudio (b2886807ac2543da273765cef4d82d68) C:\WINDOWS\system32\drivers\aeaudio.sys
21:49:33.0999 2080 aeaudio - ok
21:49:34.0049 2080 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
21:49:34.0049 2080 aec - ok
21:49:34.0119 2080 AFD (355556d9e580915118cd7ef736653a89) C:\WINDOWS\System32\drivers\afd.sys
21:49:34.0129 2080 AFD - ok
21:49:34.0209 2080 AgereSoftModem (ed5c8b22de2021339a7c7fccfe5c5d7e) C:\WINDOWS\system32\DRIVERS\AGRSM.sys
21:49:34.0269 2080 AgereSoftModem - ok
21:49:34.0299 2080 agp440 (08fd04aa961bdc77fb983f328334e3d7) C:\WINDOWS\system32\DRIVERS\agp440.sys
21:49:34.0299 2080 agp440 - ok
21:49:34.0319 2080 agpCPQ (03a7e0922acfe1b07d5db2eeb0773063) C:\WINDOWS\system32\DRIVERS\agpCPQ.sys
21:49:34.0329 2080 agpCPQ - ok
21:49:34.0359 2080 Aha154x (c23ea9b5f46c7f7910db3eab648ff013) C:\WINDOWS\system32\DRIVERS\aha154x.sys
21:49:34.0369 2080 Aha154x - ok
21:49:34.0389 2080 aic78u2 (19dd0fb48b0c18892f70e2e7d61a1529) C:\WINDOWS\system32\DRIVERS\aic78u2.sys
21:49:34.0399 2080 aic78u2 - ok
21:49:34.0449 2080 aic78xx (b7fe594a7468aa0132deb03fb8e34326) C:\WINDOWS\system32\DRIVERS\aic78xx.sys
21:49:34.0459 2080 aic78xx - ok
21:49:34.0499 2080 AliIde (1140ab9938809700b46bb88e46d72a96) C:\WINDOWS\system32\DRIVERS\aliide.sys
21:49:34.0509 2080 AliIde - ok
21:49:34.0529 2080 alim1541 (cb08aed0de2dd889a8a820cd8082d83c) C:\WINDOWS\system32\DRIVERS\alim1541.sys
21:49:34.0539 2080 alim1541 - ok
21:49:34.0569 2080 amdagp (95b4fb835e28aa1336ceeb07fd5b9398) C:\WINDOWS\system32\DRIVERS\amdagp.sys
21:49:34.0579 2080 amdagp - ok
21:49:34.0629 2080 amsint (79f5add8d24bd6893f2903a3e2f3fad6) C:\WINDOWS\system32\DRIVERS\amsint.sys
21:49:34.0629 2080 amsint - ok
21:49:34.0680 2080 asc (62d318e9a0c8fc9b780008e724283707) C:\WINDOWS\system32\DRIVERS\asc.sys
21:49:34.0680 2080 asc - ok
21:49:34.0710 2080 asc3350p (69eb0cc7714b32896ccbfd5edcbea447) C:\WINDOWS\system32\DRIVERS\asc3350p.sys
21:49:34.0710 2080 asc3350p - ok
21:49:34.0740 2080 asc3550 (5d8de112aa0254b907861e9e9c31d597) C:\WINDOWS\system32\DRIVERS\asc3550.sys
21:49:34.0740 2080 asc3550 - ok
21:49:34.0780 2080 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
21:49:34.0780 2080 AsyncMac - ok
21:49:34.0850 2080 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys
21:49:34.0860 2080 atapi - ok
21:49:34.0910 2080 Atdisk - ok
21:49:35.0070 2080 ati2mtag (96854f30878b41bfae5ad5c6d83042ef) C:\WINDOWS\system32\DRIVERS\ati2mtag.sys
21:49:35.0100 2080 ati2mtag - ok
21:49:35.0190 2080 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
21:49:35.0190 2080 Atmarpc - ok
21:49:35.0260 2080 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
21:49:35.0260 2080 audstub - ok
21:49:35.0320 2080 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
21:49:35.0320 2080 Beep - ok
21:49:35.0391 2080 cbidf (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\DRIVERS\cbidf2k.sys
21:49:35.0401 2080 cbidf - ok
21:49:35.0451 2080 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
21:49:35.0451 2080 cbidf2k - ok
21:49:35.0541 2080 CCDECODE (0be5aef125be881c4f854c554f2b025c) C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
21:49:35.0541 2080 CCDECODE - ok
21:49:35.0601 2080 cd20xrnt (f3ec03299634490e97bbce94cd2954c7) C:\WINDOWS\system32\DRIVERS\cd20xrnt.sys
21:49:35.0601 2080 cd20xrnt - ok
21:49:35.0741 2080 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
21:49:35.0741 2080 Cdaudio - ok
21:49:35.0811 2080 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
21:49:35.0811 2080 Cdfs - ok
21:49:35.0931 2080 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys
21:49:35.0931 2080 Cdrom - ok
21:49:35.0961 2080 Changer - ok
21:49:36.0052 2080 CmBatt (0f6c187d38d98f8df904589a5f94d411) C:\WINDOWS\system32\DRIVERS\CmBatt.sys
21:49:36.0052 2080 CmBatt - ok
21:49:36.0082 2080 CmdIde (e3726ad522d0bdae090671048c991ab3) C:\WINDOWS\system32\DRIVERS\cmdide.sys
21:49:36.0092 2080 CmdIde - ok
21:49:36.0112 2080 Compbatt (6e4c9f21f0fae8940661144f41b13203) C:\WINDOWS\system32\DRIVERS\compbatt.sys
21:49:36.0122 2080 Compbatt - ok
21:49:36.0182 2080 Cpqarray (3ee529119eed34cd212a215e8c40d4b6) C:\WINDOWS\system32\DRIVERS\cpqarray.sys
21:49:36.0182 2080 Cpqarray - ok
21:49:36.0242 2080 dac2w2k (e550e7418984b65a78299d248f0a7f36) C:\WINDOWS\system32\DRIVERS\dac2w2k.sys
21:49:36.0252 2080 dac2w2k - ok
21:49:36.0282 2080 dac960nt (683789caa3864eb46125ae86ff677d34) C:\WINDOWS\system32\DRIVERS\dac960nt.sys
21:49:36.0292 2080 dac960nt - ok
21:49:36.0342 2080 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
21:49:36.0352 2080 Disk - ok
21:49:36.0452 2080 dmboot (f5deadd42335fb33edca74ecb2f36cba) C:\WINDOWS\system32\drivers\dmboot.sys
21:49:36.0492 2080 dmboot - ok
21:49:36.0552 2080 dmio (5a7c47c9b3f9fb92a66410a7509f0c71) C:\WINDOWS\system32\drivers\dmio.sys
21:49:36.0552 2080 dmio - ok
21:49:36.0602 2080 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
21:49:36.0602 2080 dmload - ok
21:49:36.0662 2080 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
21:49:36.0662 2080 DMusic - ok
21:49:36.0793 2080 dpti2o (40f3b93b4e5b0126f2f5c0a7a5e22660) C:\WINDOWS\system32\DRIVERS\dpti2o.sys
21:49:36.0793 2080 dpti2o - ok
21:49:36.0853 2080 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
21:49:36.0853 2080 drmkaud - ok
21:49:36.0923 2080 E1000 (91b083bdc901e4f356c021e5aaaa21f9) C:\WINDOWS\system32\DRIVERS\e1000325.sys
21:49:36.0943 2080 E1000 - ok
21:49:37.0053 2080 E100B (1961f8b618e3c20df54c146b294efd2a) C:\WINDOWS\system32\DRIVERS\e100b325.sys
21:49:37.0063 2080 E100B - ok
21:49:37.0193 2080 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
21:49:37.0203 2080 Fastfat - ok
21:49:37.0273 2080 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\DRIVERS\fdc.sys
21:49:37.0273 2080 Fdc - ok
21:49:37.0373 2080 FilterService (b73ec688c29f81f9da0fcf63682b3ecb) C:\WINDOWS\system32\DRIVERS\lvuvcflt.sys
21:49:37.0393 2080 FilterService - ok
21:49:37.0524 2080 Fips (31f923eb2170fc172c81abda0045d18c) C:\WINDOWS\system32\drivers\Fips.sys
21:49:37.0524 2080 Fips - ok
21:49:37.0594 2080 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\drivers\Flpydisk.sys
21:49:37.0594 2080 Flpydisk - ok
21:49:37.0704 2080 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\drivers\fltmgr.sys
21:49:37.0704 2080 FltMgr - ok
21:49:37.0764 2080 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
21:49:37.0774 2080 Fs_Rec - ok
21:49:37.0824 2080 Ftdisk (a86859b77b908c18c2657f284aa29fe3) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
21:49:37.0834 2080 Ftdisk - ok
21:49:37.0924 2080 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
21:49:37.0924 2080 Gpc - ok
21:49:37.0994 2080 gv3 (fe4b084bfef6f17037a6ec0dab7ce68e) C:\WINDOWS\system32\DRIVERS\gv3.sys
21:49:38.0004 2080 gv3 - ok
21:49:38.0064 2080 HidUsb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys
21:49:38.0074 2080 HidUsb - ok
21:49:38.0195 2080 hpn (b028377dea0546a5fcfba928a8aefae0) C:\WINDOWS\system32\DRIVERS\hpn.sys
21:49:38.0195 2080 hpn - ok
21:49:38.0345 2080 HTTP (f80a415ef82cd06ffaf0d971528ead38) C:\WINDOWS\system32\Drivers\HTTP.sys
21:49:38.0365 2080 HTTP - ok
21:49:38.0485 2080 i2omgmt (9368670bd426ebea5e8b18a62416ec28) C:\WINDOWS\system32\drivers\i2omgmt.sys
21:49:38.0485 2080 i2omgmt - ok
21:49:38.0545 2080 i2omp (f10863bf1ccc290babd1a09188ae49e0) C:\WINDOWS\system32\DRIVERS\i2omp.sys
21:49:38.0605 2080 i2omp - ok
21:49:38.0685 2080 i8042prt (a09bdc4ed10e3b2e0ec27bb94af32516) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
21:49:38.0695 2080 i8042prt - ok
21:49:39.0456 2080 IBMPMDRV (293131c1da5f53cb05f75d637739d79c) C:\WINDOWS\system32\DRIVERS\ibmpmdrv.sys
21:49:39.0456 2080 IBMPMDRV - ok
21:49:39.0577 2080 IBMTPCHK (28deeba2e29cb0e91b641ca95f7740fd) C:\WINDOWS\system32\drivers\IBMBLDID.SYS
21:49:39.0587 2080 IBMTPCHK - ok
21:49:39.0677 2080 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys
21:49:39.0677 2080 Imapi - ok
21:49:39.0757 2080 ini910u (4a40e045faee58631fd8d91afc620719) C:\WINDOWS\system32\DRIVERS\ini910u.sys
21:49:39.0767 2080 ini910u - ok
21:49:40.0468 2080 IntelIde (4b6da2f0a4095857a9e3f3697399d575) C:\WINDOWS\system32\DRIVERS\intelide.sys
21:49:40.0468 2080 IntelIde - ok
21:49:40.0638 2080 intelppm (ad340800c35a42d4de1641a37feea34c) C:\WINDOWS\system32\DRIVERS\intelppm.sys
21:49:40.0688 2080 intelppm - ok
21:49:40.0788 2080 ip6fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\drivers\ip6fw.sys
21:49:40.0788 2080 ip6fw - ok
21:49:40.0868 2080 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
21:49:40.0868 2080 IpFilterDriver - ok
21:49:40.0959 2080 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
21:49:40.0959 2080 IpInIp - ok
21:49:41.0029 2080 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
21:49:41.0039 2080 IpNat - ok
21:49:41.0169 2080 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
21:49:41.0179 2080 IPSec - ok
21:49:41.0279 2080 irda (aca5e7b54409f9cb5eed97ed0c81120e) C:\WINDOWS\system32\DRIVERS\irda.sys
21:49:41.0279 2080 irda - ok
21:49:41.0389 2080 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
21:49:41.0389 2080 IRENUM - ok
21:49:41.0439 2080 isapnp (355836975a67b6554bca60328cd6cb74) C:\WINDOWS\system32\DRIVERS\isapnp.sys
21:49:41.0449 2080 isapnp - ok
21:49:41.0509 2080 Kbdclass (16813155807c6881f4bfbf6657424659) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
21:49:41.0509 2080 Kbdclass - ok
21:49:41.0599 2080 kbdhid (94c59cb884ba010c063687c3a50dce8e) C:\WINDOWS\system32\DRIVERS\kbdhid.sys
21:49:41.0599 2080 kbdhid - ok
21:49:41.0730 2080 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys
21:49:41.0730 2080 kmixer - ok
21:49:41.0860 2080 KSecDD (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys
21:49:41.0880 2080 KSecDD - ok
21:49:41.0950 2080 lbrtfdc - ok
21:49:42.0080 2080 ltmodem5 (919de7d76d2c0c0139e08b3e7592d62e) C:\WINDOWS\system32\DRIVERS\ltmdmnt.sys
21:49:42.0120 2080 ltmodem5 - ok
21:49:42.0280 2080 lvpopflt (9fb982de1c8dd769f8ed681dd878b12f) C:\WINDOWS\system32\DRIVERS\lvpopflt.sys
21:49:42.0290 2080 lvpopflt - ok
21:49:42.0391 2080 LVRS (37072ec9299e825f4335cc554b6fac6a) C:\WINDOWS\system32\DRIVERS\lvrs.sys
21:49:42.0411 2080 LVRS - ok
21:49:43.0001 2080 LVUVC (a240e42a7402e927a71b6e8aa4629b13) C:\WINDOWS\system32\DRIVERS\lvuvc.sys
21:49:43.0342 2080 LVUVC - ok
21:49:43.0472 2080 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
21:49:43.0472 2080 mnmdd - ok
21:49:43.0572 2080 Modem (510ade9327fe84c10254e1902697e25f) C:\WINDOWS\system32\drivers\Modem.sys
21:49:43.0572 2080 Modem - ok
21:49:43.0903 2080 Mouclass (027c01bd7ef3349aaebc883d8a799efb) C:\WINDOWS\system32\DRIVERS\mouclass.sys
21:49:43.0923 2080 Mouclass - ok
21:49:44.0323 2080 mouhid (124d6846040c79b9c997f78ef4b2a4e5) C:\WINDOWS\system32\DRIVERS\mouhid.sys
21:49:44.0343 2080 mouhid - ok
21:49:44.0554 2080 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys
21:49:44.0554 2080 MountMgr - ok
21:49:44.0604 2080 MpFilter (fee0baded54222e9f1dae9541212aab1) C:\WINDOWS\system32\DRIVERS\MpFilter.sys
21:49:44.0614 2080 MpFilter - ok
21:49:44.0694 2080 MpKsl332f2318 - ok
21:49:44.0714 2080 MpKsl3baadb25 - ok
21:49:44.0784 2080 MpKsl43eb9f86 (5f53edfead46fa7adb78eee9ecce8fdf) c:\Documents and Settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{6C33DFE5-CF4F-4378-B3F6-D2E6B0823BD2}\MpKsl43eb9f86.sys
21:49:44.0784 2080 MpKsl43eb9f86 - ok
21:49:44.0804 2080 MpKsl49500d81 - ok
21:49:44.0814 2080 MpKsl4dc237a7 - ok
21:49:44.0834 2080 MpKsl4e1fbcff - ok
21:49:44.0844 2080 MpKsl52d9092a - ok
21:49:44.0884 2080 MpKsl73ece351 - ok
21:49:44.0894 2080 MpKsl7e2312d1 - ok
21:49:44.0914 2080 MpKsl85956010 - ok
21:49:44.0964 2080 MpKsl8b1208a6 (5f53edfead46fa7adb78eee9ecce8fdf) c:\Documents and Settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{6C33DFE5-CF4F-4378-B3F6-D2E6B0823BD2}\MpKsl8b1208a6.sys
21:49:44.0974 2080 MpKsl8b1208a6 - ok
21:49:44.0994 2080 MpKslbfa9304f - ok
21:49:45.0004 2080 MpKslc2aa9627 - ok
21:49:45.0014 2080 MpKslc65110d2 - ok
21:49:45.0034 2080 MpKslf62d9ff0 - ok
21:49:45.0185 2080 mraid35x (3f4bb95e5a44f3be34824e8e7caf0737) C:\WINDOWS\system32\DRIVERS\mraid35x.sys
21:49:45.0185 2080 mraid35x - ok
21:49:45.0295 2080 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
21:49:45.0295 2080 MRxDAV - ok
21:49:45.0415 2080 MRxSmb (7d304a5eb4344ebeeab53a2fe3ffb9f0) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
21:49:45.0455 2080 MRxSmb - ok
21:49:45.0505 2080 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
21:49:45.0505 2080 Msfs - ok
21:49:45.0575 2080 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys
21:49:45.0575 2080 MSKSSRV - ok
21:49:45.0645 2080 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
21:49:45.0645 2080 MSPCLOCK - ok
21:49:45.0745 2080 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys
21:49:45.0745 2080 MSPQM - ok
21:49:45.0816 2080 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
21:49:45.0816 2080 mssmbios - ok
21:49:45.0916 2080 MSTEE (e53736a9e30c45fa9e7b5eac55056d1d) C:\WINDOWS\system32\drivers\MSTEE.sys
21:49:45.0916 2080 MSTEE - ok
21:49:46.0026 2080 Mup (de6a75f5c270e756c5508d94b6cf68f5) C:\WINDOWS\system32\drivers\Mup.sys
21:49:46.0036 2080 Mup - ok
21:49:46.0106 2080 NABTSFEC (5b50f1b2a2ed47d560577b221da734db) C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
21:49:46.0106 2080 NABTSFEC - ok
21:49:46.0196 2080 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys
21:49:46.0206 2080 NDIS - ok
21:49:46.0306 2080 NdisIP (7ff1f1fd8609c149aa432f95a8163d97) C:\WINDOWS\system32\DRIVERS\NdisIP.sys
21:49:46.0306 2080 NdisIP - ok
21:49:46.0406 2080 NdisTapi (0109c4f3850dfbab279542515386ae22) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
21:49:46.0406 2080 NdisTapi - ok
21:49:46.0557 2080 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
21:49:46.0557 2080 Ndisuio - ok
21:49:46.0647 2080 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
21:49:46.0657 2080 NdisWan - ok
21:49:46.0807 2080 NDProxy (9282bd12dfb069d3889eb3fcc1000a9b) C:\WINDOWS\system32\drivers\NDProxy.sys
21:49:46.0807 2080 NDProxy - ok
21:49:46.0947 2080 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys
21:49:46.0947 2080 NetBIOS - ok
21:49:47.0107 2080 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys
21:49:47.0117 2080 NetBT - ok
21:49:47.0167 2080 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
21:49:47.0167 2080 Npfs - ok
21:49:47.0228 2080 NSCIRDA (2adc0ca9945c65284b3d19bc18765974) C:\WINDOWS\system32\DRIVERS\nscirda.sys
21:49:47.0228 2080 NSCIRDA - ok
21:49:47.0298 2080 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys
21:49:47.0328 2080 Ntfs - ok
21:49:47.0378 2080 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
21:49:47.0378 2080 Null - ok
21:49:47.0438 2080 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
21:49:47.0448 2080 NwlnkFlt - ok
21:49:47.0488 2080 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
21:49:47.0498 2080 NwlnkFwd - ok
21:49:47.0538 2080 P3 (cecb679633523ac5eb7eb85f92dcd806) C:\WINDOWS\system32\DRIVERS\p3.sys
21:49:47.0538 2080 P3 - ok
21:49:47.0628 2080 Parport (8fd0bdbea875d06ccf6c945ca9abaf75) C:\WINDOWS\system32\DRIVERS\parport.sys
21:49:47.0628 2080 Parport - ok
21:49:47.0778 2080 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
21:49:47.0778 2080 PartMgr - ok
21:49:47.0828 2080 ParVdm (9575c5630db8fb804649a6959737154c) C:\WINDOWS\system32\drivers\ParVdm.sys
21:49:47.0828 2080 ParVdm - ok
21:49:47.0959 2080 PCDRDRV - ok
21:49:48.0059 2080 PcdrNt (231f133b4a5a04307abd95cac80fd063) C:\WINDOWS\System32\drivers\PcdrNt.sys
21:49:48.0099 2080 PcdrNt - ok
21:49:48.0189 2080 PCI (043410877bda580c528f45165f7125bc) C:\WINDOWS\system32\DRIVERS\pci.sys
21:49:48.0199 2080 PCI - ok
21:49:48.0249 2080 PCIDump - ok
21:49:48.0319 2080 PCIIde (f4bfde7209c14a07aaa61e4d6ae69eac) C:\WINDOWS\system32\DRIVERS\pciide.sys
21:49:48.0319 2080 PCIIde - ok
21:49:48.0389 2080 Pcmcia (f0406cbc60bdb0394a0e17ffb04cdd3d) C:\WINDOWS\system32\DRIVERS\pcmcia.sys
21:49:48.0399 2080 Pcmcia - ok
21:49:48.0479 2080 PDCOMP - ok
21:49:48.0519 2080 PDFRAME - ok
21:49:48.0549 2080 PDRELI - ok
21:49:48.0640 2080 PDRFRAME - ok
21:49:48.0700 2080 perc2 (6c14b9c19ba84f73d3a86dba11133101) C:\WINDOWS\system32\DRIVERS\perc2.sys
21:49:48.0700 2080 perc2 - ok
21:49:48.0750 2080 perc2hib (f50f7c27f131afe7beba13e14a3b9416) C:\WINDOWS\system32\DRIVERS\perc2hib.sys
21:49:48.0750 2080 perc2hib - ok
21:49:48.0830 2080 PMEM (fa292805788528c083f416e151b60ab6) C:\WINDOWS\system32\drivers\PMEMNT.SYS
21:49:48.0830 2080 PMEM - ok
21:49:48.0930 2080 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
21:49:48.0930 2080 PptpMiniport - ok
21:49:49.0020 2080 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys
21:49:49.0020 2080 PSched - ok
21:49:49.0090 2080 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
21:49:49.0100 2080 Ptilink - ok
21:49:49.0130 2080 ql1080 (0a63fb54039eb5662433caba3b26dba7) C:\WINDOWS\system32\DRIVERS\ql1080.sys
21:49:49.0140 2080 ql1080 - ok
21:49:49.0170 2080 Ql10wnt (6503449e1d43a0ff0201ad5cb1b8c706) C:\WINDOWS\system32\DRIVERS\ql10wnt.sys
21:49:49.0170 2080 Ql10wnt - ok
21:49:49.0200 2080 ql12160 (156ed0ef20c15114ca097a34a30d8a01) C:\WINDOWS\system32\DRIVERS\ql12160.sys
21:49:49.0210 2080 ql12160 - ok
21:49:49.0240 2080 ql1240 (70f016bebde6d29e864c1230a07cc5e6) C:\WINDOWS\system32\DRIVERS\ql1240.sys
21:49:49.0240 2080 ql1240 - ok
21:49:49.0271 2080 ql1280 (907f0aeea6bc451011611e732bd31fcf) C:\WINDOWS\system32\DRIVERS\ql1280.sys
21:49:49.0281 2080 ql1280 - ok
21:49:49.0331 2080 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
21:49:49.0331 2080 RasAcd - ok
21:49:49.0401 2080 Rasirda (0207d26ddf796a193ccd9f83047bb5fc) C:\WINDOWS\system32\DRIVERS\rasirda.sys
21:49:49.0401 2080 Rasirda - ok
21:49:49.0451 2080 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
21:49:49.0451 2080 Rasl2tp - ok
21:49:49.0481 2080 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
21:49:49.0491 2080 RasPppoe - ok
21:49:49.0511 2080 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
21:49:49.0511 2080 Raspti - ok
21:49:49.0581 2080 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys
21:49:49.0581 2080 Rdbss - ok
21:49:49.0611 2080 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
21:49:49.0611 2080 RDPCDD - ok
21:49:49.0691 2080 rdpdr (15cabd0f7c00c47c70124907916af3f1) C:\WINDOWS\system32\DRIVERS\rdpdr.sys
21:49:49.0711 2080 rdpdr - ok
21:49:49.0771 2080 RDPWD (fc105dd312ed64eb66bff111e8ec6eac) C:\WINDOWS\system32\drivers\RDPWD.sys
21:49:49.0781 2080 RDPWD - ok
21:49:49.0831 2080 redbook (d8eb2a7904db6c916eb5361878ddcbae) C:\WINDOWS\system32\DRIVERS\redbook.sys
21:49:49.0831 2080 redbook - ok
21:49:49.0921 2080 s24trans (3d99ba73cee82e665948415ae1c6104b) C:\WINDOWS\system32\DRIVERS\s24trans.sys
21:49:49.0941 2080 s24trans - ok
21:49:50.0012 2080 S3SSavage (a94aa8161dd4711bc6f732f21d6407d6) C:\WINDOWS\system32\DRIVERS\s3ssavm.sys
21:49:50.0012 2080 S3SSavage - ok
21:49:50.0182 2080 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
21:49:50.0182 2080 Secdrv - ok
21:49:50.0262 2080 serenum (0f29512ccd6bead730039fb4bd2c85ce) C:\WINDOWS\system32\DRIVERS\serenum.sys
21:49:50.0262 2080 serenum - ok
21:49:50.0352 2080 Serial (93d313c31f7ad9ea2b75f26075413c7c) C:\WINDOWS\system32\DRIVERS\serial.sys
21:49:50.0352 2080 Serial - ok
21:49:50.0402 2080 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys
21:49:50.0402 2080 Sfloppy - ok
21:49:50.0462 2080 Simbad - ok
21:49:50.0502 2080 sisagp (6b33d0ebd30db32e27d1d78fe946a754) C:\WINDOWS\system32\DRIVERS\sisagp.sys
21:49:50.0512 2080 sisagp - ok
21:49:50.0582 2080 SLIP (866d538ebe33709a5c9f5c62b73b7d14) C:\WINDOWS\system32\DRIVERS\SLIP.sys
21:49:50.0582 2080 SLIP - ok
21:49:50.0683 2080 Smapint (26341d0dd225d19fd50e0ee3c3c77502) C:\WINDOWS\system32\drivers\Smapint.sys
21:49:50.0703 2080 Smapint - ok
21:49:50.0853 2080 smwdm (66aaa895b7f2337b5c52611241455614) C:\WINDOWS\system32\drivers\smwdm.sys
21:49:50.0923 2080 smwdm - ok
21:49:51.0003 2080 Sparrow (83c0f71f86d3bdaf915685f3d568b20e) C:\WINDOWS\system32\DRIVERS\sparrow.sys
21:49:51.0003 2080 Sparrow - ok
21:49:51.0083 2080 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
21:49:51.0083 2080 splitter - ok
21:49:51.0143 2080 sr (39626e6dc1fb39434ec40c42722b660a) C:\WINDOWS\system32\DRIVERS\sr.sys
21:49:51.0143 2080 sr - ok
21:49:51.0233 2080 Srv (47ddfc2f003f7f9f0592c6874962a2e7) C:\WINDOWS\system32\DRIVERS\srv.sys
21:49:51.0253 2080 Srv - ok
21:49:51.0374 2080 streamip (77813007ba6265c4b6098187e6ed79d2) C:\WINDOWS\system32\DRIVERS\StreamIP.sys
21:49:51.0374 2080 streamip - ok
21:49:51.0474 2080 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys
21:49:51.0474 2080 swenum - ok
21:49:51.0534 2080 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys
21:49:51.0534 2080 swmidi - ok
21:49:51.0634 2080 symc810 (1ff3217614018630d0a6758630fc698c) C:\WINDOWS\system32\DRIVERS\symc810.sys
21:49:51.0634 2080 symc810 - ok
21:49:51.0704 2080 symc8xx (070e001d95cf725186ef8b20335f933c) C:\WINDOWS\system32\DRIVERS\symc8xx.sys
21:49:51.0704 2080 symc8xx - ok
21:49:51.0774 2080 sym_hi (80ac1c4abbe2df3b738bf15517a51f2c) C:\WINDOWS\system32\DRIVERS\sym_hi.sys
21:49:51.0774 2080 sym_hi - ok
21:49:51.0904 2080 sym_u3 (bf4fab949a382a8e105f46ebb4937058) C:\WINDOWS\system32\DRIVERS\sym_u3.sys
21:49:51.0904 2080 sym_u3 - ok
21:49:52.0034 2080 SynTP (44461da5e3df02d046d74fdeb90e8048) C:\WINDOWS\system32\DRIVERS\SynTP.sys
21:49:52.0045 2080 SynTP - ok
21:49:52.0185 2080 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys
21:49:52.0185 2080 sysaudio - ok
21:49:52.0325 2080 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys
21:49:52.0355 2080 Tcpip - ok
21:49:52.0445 2080 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys
21:49:52.0455 2080 TDPIPE - ok
21:49:52.0535 2080 TDSMAPI (e64da7318acaddf0a4400baa921e8ac1) C:\WINDOWS\system32\drivers\TDSMAPI.SYS
21:49:52.0555 2080 TDSMAPI - ok
21:49:52.0625 2080 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys
21:49:52.0625 2080 TDTCP - ok
21:49:52.0715 2080 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys
21:49:52.0725 2080 TermDD - ok
21:49:52.0806 2080 TosIde (b411668322c3bf4e690888706b999679) C:\WINDOWS\system32\DRIVERS\toside.sys
21:49:52.0816 2080 TosIde - ok
21:49:52.0966 2080 TPHKDRV (9328933b47b9b52b673b8aed8489bd0a) C:\WINDOWS\system32\drivers\TPHKDRV.sys
21:49:52.0996 2080 TPHKDRV - ok
21:49:53.0046 2080 TPPWR (970ab1aef38db6f5e1aae277a6843d54) C:\WINDOWS\system32\drivers\Tppwr.sys
21:49:53.0066 2080 TPPWR - ok
21:49:53.0136 2080 TSMAPIP (f2aba3066d7921d7fcdbd66dea88be11) C:\WINDOWS\system32\drivers\TSMAPIP.SYS
21:49:53.0156 2080 TSMAPIP - ok
21:49:53.0216 2080 TwoTrack (17687545f77a648af7f9f1064eb61191) C:\WINDOWS\system32\DRIVERS\TwoTrack.sys
21:49:53.0216 2080 TwoTrack - ok
21:49:53.0296 2080 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys
21:49:53.0296 2080 Udfs - ok
21:49:53.0336 2080 ultra (1b698a51cd528d8da4ffaed66dfc51b9) C:\WINDOWS\system32\DRIVERS\ultra.sys
21:49:53.0336 2080 ultra - ok
21:49:53.0437 2080 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys
21:49:53.0457 2080 Update - ok
21:49:53.0577 2080 usbaudio (e919708db44ed8543a7c017953148330) C:\WINDOWS\system32\drivers\usbaudio.sys
21:49:53.0577 2080 usbaudio - ok
21:49:53.0727 2080 usbccgp (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
21:49:53.0737 2080 usbccgp - ok
21:49:53.0827 2080 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys
21:49:53.0827 2080 usbehci - ok
21:49:53.0897 2080 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys
21:49:53.0897 2080 usbhub - ok
21:49:53.0947 2080 USBSTOR (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
21:49:53.0957 2080 USBSTOR - ok
21:49:53.0997 2080 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys
21:49:53.0997 2080 usbuhci - ok
21:49:54.0057 2080 usbvideo (63bbfca7f390f4c49ed4b96bfb1633e0) C:\WINDOWS\system32\Drivers\usbvideo.sys
21:49:54.0057 2080 usbvideo - ok
21:49:54.0107 2080 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys
21:49:54.0107 2080 VgaSave - ok
21:49:54.0158 2080 viaagp (754292ce5848b3738281b4f3607eaef4) C:\WINDOWS\system32\DRIVERS\viaagp.sys
21:49:54.0158 2080 viaagp - ok
21:49:54.0198 2080 ViaIde (3b3efcda263b8ac14fdf9cbdd0791b2e) C:\WINDOWS\system32\DRIVERS\viaide.sys
21:49:54.0208 2080 ViaIde - ok
21:49:54.0278 2080 VolSnap (46de1126684369bace4849e4fc8c43ca) C:\WINDOWS\system32\drivers\VolSnap.sys
21:49:54.0278 2080 VolSnap - ok
21:49:54.0478 2080 w70n51 (7eb4838a24bf8eb142377dfa87e4cc1f) C:\WINDOWS\system32\DRIVERS\w70n51.sys
21:49:54.0598 2080 w70n51 - ok
21:49:54.0678 2080 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys
21:49:54.0688 2080 Wanarp - ok
21:49:54.0748 2080 WDICA - ok
21:49:54.0818 2080 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys
21:49:54.0829 2080 wdmaud - ok
21:49:54.0969 2080 WSTCODEC (c98b39829c2bbd34e454150633c62c78) C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
21:49:54.0969 2080 WSTCODEC - ok
21:49:55.0059 2080 WudfPf (f15feafffbb3644ccc80c5da584e6311) C:\WINDOWS\system32\DRIVERS\WudfPf.sys
21:49:55.0059 2080 WudfPf - ok
21:49:55.0179 2080 WudfRd (28b524262bce6de1f7ef9f510ba3985b) C:\WINDOWS\system32\DRIVERS\wudfrd.sys
21:49:55.0199 2080 WudfRd - ok
21:49:55.0259 2080 MBR (0x1B8) (6db645fc10c40bb05cc99e3e11c263fb) \Device\Harddisk0\DR0
21:49:55.0259 2080 \Device\Harddisk0\DR0 ( Rootkit.Win32.TDSS.tdl4 ) - infected
21:49:55.0259 2080 \Device\Harddisk0\DR0 - detected Rootkit.Win32.TDSS.tdl4 (0)
21:49:55.0269 2080 Boot (0x1200) (644d6644c1763adf8a71fe28d334b249) \Device\Harddisk0\DR0\Partition0
21:49:55.0269 2080 \Device\Harddisk0\DR0\Partition0 - ok
21:49:55.0269 2080 ============================================================
21:49:55.0269 2080 Scan finished
21:49:55.0269 2080 ============================================================
21:49:55.0289 2340 Detected object count: 1
21:49:55.0289 2340 Actual detected object count: 1
21:50:18.0402 2340 \Device\Harddisk0\DR0 ( Rootkit.Win32.TDSS.tdl4 ) - will be cured on reboot
21:50:18.0402 2340 \Device\Harddisk0\DR0 - ok
21:50:18.0402 2340 \Device\Harddisk0\DR0 ( Rootkit.Win32.TDSS.tdl4 ) - User select action: Cure
21:50:22.0258 3040 Deinitialize success
MERCI
Utilisateur anonyme
6 oct. 2011 à 17:33
6 oct. 2011 à 17:33
Tdsskiller a fait son boulot.
Si tu souhaites poursuivre pour voir si ton pc est clean.......
On va faire une analyse de ton systéme.
* Télécharge ZHPDiag ( de Nicolas coolman ).
ou
ZHPDiag
ou
https://www.zebulon.fr/telechargements/securite/systeme/zhpdiag.html
Ou le lien FTP en secours :
ftp://zebulon.fr/ZHPDiag2.exe
***********************
/!\Utilisateurs de Vista et Windows 7 : Clique droit sur le logo de ZHPDiag.exe, " exécuter en tant qu'Administrateur /!\
* Laisse toi guider lors de l'installation
* Il se lancera automatiquement à la fin de l'installation
* Clique sur l'icône représentant une loupe (« Lancer le diagnostic »)
* Enregistre le rapport sur ton Bureau à l'aide de l'icône représentant une disquette
* Héberge le rapport ZHPDiag.txt sur le site pjjoint.malekal.com ou cijoint.fr ou toofiles puis copie/colle le lien fournit dans ta prochaine réponse sur le forum
Si tu souhaites poursuivre pour voir si ton pc est clean.......
On va faire une analyse de ton systéme.
* Télécharge ZHPDiag ( de Nicolas coolman ).
ou
ZHPDiag
ou
https://www.zebulon.fr/telechargements/securite/systeme/zhpdiag.html
Ou le lien FTP en secours :
ftp://zebulon.fr/ZHPDiag2.exe
***********************
/!\Utilisateurs de Vista et Windows 7 : Clique droit sur le logo de ZHPDiag.exe, " exécuter en tant qu'Administrateur /!\
* Laisse toi guider lors de l'installation
* Il se lancera automatiquement à la fin de l'installation
* Clique sur l'icône représentant une loupe (« Lancer le diagnostic »)
* Enregistre le rapport sur ton Bureau à l'aide de l'icône représentant une disquette
* Héberge le rapport ZHPDiag.txt sur le site pjjoint.malekal.com ou cijoint.fr ou toofiles puis copie/colle le lien fournit dans ta prochaine réponse sur le forum
Vous n’avez pas trouvé la réponse que vous recherchez ?
Posez votre question
cabaretsy
Messages postés
105
Date d'inscription
jeudi 20 janvier 2005
Statut
Membre
Dernière intervention
29 novembre 2014
9
6 oct. 2011 à 20:02
6 oct. 2011 à 20:02
Tdsskiller a fait son boulot.
SUPER !!
Si tu souhaites poursuivre pour voir si ton pc est clean.......
OH LA LA NON j'ai passé trop de temps le principal est que ce fichu virus ne soit plus là ou qu'il soit bien endormi.... on verra le moment venu s'il réapparaissait.
MERCI en tous les cas
Sylvie
SUPER !!
Si tu souhaites poursuivre pour voir si ton pc est clean.......
OH LA LA NON j'ai passé trop de temps le principal est que ce fichu virus ne soit plus là ou qu'il soit bien endormi.... on verra le moment venu s'il réapparaissait.
MERCI en tous les cas
Sylvie
C'est donc ici que ça se passe. Merci à Gabriel.
Voilà donc le message égaré :
"Bonjour,
Merci à nanard4700 pour sa réponse. Mais j'avais déjà téléchargé et testé TDSSKiller.
Ça ne détecte rien du tout. Le scan ne trouve rien.
Cela dit, le virus semble totalement inoffensif. A part se manifester via les messages d'Avira au démarrage, on dirait qu'il reste inactif.
Mais j'aimerais malgré tout l'éliminer.
N'y aurait-il pas d'autre solutions pour y parvenir ?
Merci pour tous conseils à venir."
Voilà donc le message égaré :
"Bonjour,
Merci à nanard4700 pour sa réponse. Mais j'avais déjà téléchargé et testé TDSSKiller.
Ça ne détecte rien du tout. Le scan ne trouve rien.
Cela dit, le virus semble totalement inoffensif. A part se manifester via les messages d'Avira au démarrage, on dirait qu'il reste inactif.
Mais j'aimerais malgré tout l'éliminer.
N'y aurait-il pas d'autre solutions pour y parvenir ?
Merci pour tous conseils à venir."
Utilisateur anonyme
15 oct. 2011 à 20:54
15 oct. 2011 à 20:54
@ixxeff
Télécharge BTRK_RunBox Par jeanmimigab sur ton bureau.
Fais un double-clic dessus pour le lancer.
Une fenêtre qui s'ouvre, patiente jusqu'au message"Download OK" et appuie sur une touche comme demandé.
Fais le choix 1 et appuie sur la touche "Entrée".
Le bloc note ouvre une page, fais un clic-droit à l'intérieure et choisis "Coller".
poste le contenu du rapport qui apparait dans cette page et ferme le.
Pour quitter le programme fais le choix 4 et appuie sur la touche "Entrée".
Télécharge BTRK_RunBox Par jeanmimigab sur ton bureau.
Fais un double-clic dessus pour le lancer.
Une fenêtre qui s'ouvre, patiente jusqu'au message"Download OK" et appuie sur une touche comme demandé.
Fais le choix 1 et appuie sur la touche "Entrée".
Le bloc note ouvre une page, fais un clic-droit à l'intérieure et choisis "Coller".
poste le contenu du rapport qui apparait dans cette page et ferme le.
Pour quitter le programme fais le choix 4 et appuie sur la touche "Entrée".
Bonsoir,
J'ai téléchargé BTRK_RunBox, et voilà donc le rapport qui en est sorti.
A+
X.
Bootkit Remover
(c) 2009 eSage Lab
www.esagelab.com
Program version: 1.2.0.0
OS Version: Microsoft Windows XP Professional Service Pack 2 (build 2600)
System volume is \\.\C:
\\.\C: -> \\.\PhysicalDrive0 at offset 0x00000001'768ff800
Boot sector MD5 is: b49fdb1fcc12a5e6927cf3c1ff761076
Size Device Name MBR Status
--------------------------------------------
298 GB \\.\PhysicalDrive0 Unknown boot code
Unknown boot code has been found on some of your physical disks.
To inspect the boot code manually, dump the master boot sector:
remover.exe dump <device_name> [output_file]
To disinfect the master boot sector, use the following command:
remover.exe fix <device_name>
Done;
Press any key to quit...
Faite un clic-droit dans cette fen^tre et choisissez "coller" pour faire apparaOEtre le rapport scanxp.txt
J'ai téléchargé BTRK_RunBox, et voilà donc le rapport qui en est sorti.
A+
X.
Bootkit Remover
(c) 2009 eSage Lab
www.esagelab.com
Program version: 1.2.0.0
OS Version: Microsoft Windows XP Professional Service Pack 2 (build 2600)
System volume is \\.\C:
\\.\C: -> \\.\PhysicalDrive0 at offset 0x00000001'768ff800
Boot sector MD5 is: b49fdb1fcc12a5e6927cf3c1ff761076
Size Device Name MBR Status
--------------------------------------------
298 GB \\.\PhysicalDrive0 Unknown boot code
Unknown boot code has been found on some of your physical disks.
To inspect the boot code manually, dump the master boot sector:
remover.exe dump <device_name> [output_file]
To disinfect the master boot sector, use the following command:
remover.exe fix <device_name>
Done;
Press any key to quit...
Faite un clic-droit dans cette fen^tre et choisissez "coller" pour faire apparaOEtre le rapport scanxp.txt
Utilisateur anonyme
17 oct. 2011 à 21:52
17 oct. 2011 à 21:52
Ok relances BTKR_RunBox et choisis l'option 3.Postes le rapport
Bonsoir,
Voilà le rapport après avoir effectué l'option 3 avec BTKR_RunBox.
Au redémarrage, plus de trace de mon petit intrus.
Par contre, dommage colatéral, le boot de mon autre système ( Ubuntu )
à disparu, logique.
S'il y a une solution pour ça, je suis preneur bien sur.
Encore merci.
X.
Bootkit Remover
(c) 2009 eSage Lab
www.esagelab.com
Program version: 1.2.0.0
OS Version: Microsoft Windows XP Professional Service Pack 2 (build 2600)
System volume is \\.\C:
\\.\C: -> \\.\PhysicalDrive0 at offset 0x00000001'768ff800
Boot sector MD5 is: 6def5ffcbcdbdb4082f1015625e597bd
Size Device Name MBR Status
--------------------------------------------
298 GB \\.\PhysicalDrive0 OK (DOS/Win32 Boot code found)
Done;
Voilà le rapport après avoir effectué l'option 3 avec BTKR_RunBox.
Au redémarrage, plus de trace de mon petit intrus.
Par contre, dommage colatéral, le boot de mon autre système ( Ubuntu )
à disparu, logique.
S'il y a une solution pour ça, je suis preneur bien sur.
Encore merci.
X.
Bootkit Remover
(c) 2009 eSage Lab
www.esagelab.com
Program version: 1.2.0.0
OS Version: Microsoft Windows XP Professional Service Pack 2 (build 2600)
System volume is \\.\C:
\\.\C: -> \\.\PhysicalDrive0 at offset 0x00000001'768ff800
Boot sector MD5 is: 6def5ffcbcdbdb4082f1015625e597bd
Size Device Name MBR Status
--------------------------------------------
298 GB \\.\PhysicalDrive0 OK (DOS/Win32 Boot code found)
Done;
Utilisateur anonyme
19 oct. 2011 à 20:34
19 oct. 2011 à 20:34
l'intrus comme tu le note était placé sur ubuntu donc normal qu'il est sauté.
