Internet Défaillant, Virus ?
solidsnake122
Messages postés
46
Statut
Membre
-
Utilisateur anonyme -
Utilisateur anonyme -
Bonjour, j'ai un problème très gênant avec mon ordinateur, là je suis sur un autre, internet est complétement bugué, je pense à un virus, car impossible de naviguer sur internet, certain programme ne peuvent pas trouver leur mise à jour alors que je peux me connecter à Steam et jouer en ligne avec, bien sur la page magasin et tout ce qui consiste à une page internet ne marche pas => adresse introuvable/ erreur de chargement de la page...
Donc voilà j'ai vu un tutoriel qui parlait de comment désinfecter son ordinateur, j'ai donc fait un rapport hijackthis et je cherche un aimable internaute qui aurait l'amabilité de me le déchiffrer, car à ce que j'ai lu il faut pas faire n'importe quoi avec ce logiciel, et je crois avoir lu aussi quelque part qu'il ne fallait pas le poster enfin je suis pas sûr.
Donc si quelqu'un pouvait m'aider ce serait très gentil de sa part
Merci d'avance, solidsnake122 :)
Donc voilà j'ai vu un tutoriel qui parlait de comment désinfecter son ordinateur, j'ai donc fait un rapport hijackthis et je cherche un aimable internaute qui aurait l'amabilité de me le déchiffrer, car à ce que j'ai lu il faut pas faire n'importe quoi avec ce logiciel, et je crois avoir lu aussi quelque part qu'il ne fallait pas le poster enfin je suis pas sûr.
Donc si quelqu'un pouvait m'aider ce serait très gentil de sa part
Merci d'avance, solidsnake122 :)
A voir également:
- Internet Défaillant, Virus ?
- Virus mcafee - Accueil - Piratage
- Gps sans internet - Guide
- Mon pc rame sur internet - Guide
- Internet explorer - Guide
- Complete internet repair - Télécharger - Web & Internet
80 réponses
Vous n’avez pas trouvé la réponse que vous recherchez ?
Posez votre question
recolle ca dans OTL et clique sur correction :
:Files
C:\Documents and Setting\Pascal\Bureau\windaube
:Files
C:\Documents and Setting\Pascal\Bureau\windaube
Ça va faire 5 fois que je le fais, il en supprime petit à petit.
Mais là ça deviens galère parce que entre la derrière manip et maintenant le dossier est passé de 7,60Go à 7,50Go
Mais là ça deviens galère parce que entre la derrière manip et maintenant le dossier est passé de 7,60Go à 7,50Go
telecharge et enregistre ceci sur ton bureau :
Pre_Scan
Avertissement: tous les processus non-vitaux de windows seront coupés --> pas de panique.
une fois telechargé lance-le , laisse faire le scan jusqu'à l'apparition du rapport sur le bureau.
si 'outil est bloqué par l'infection utilise cette version : Version .pif
ou encore cette version renommée : Winlogon.exe
si l'outil detecte un proxy et que tu n'en as pas installé clique sur "supprimer le proxy"
Il se peut qu'une multitude de fenêtres noires clignotent , laisse-le travailler
Si l'outil ouvre une fenetre "Lecteurs virtuels" , fais exactement ce qui est indiqué dans cettte fenetre
Poste Pre_Scan_la_date_et_l'heure.txt qui apparaitra sur le bureau en fin de scan après redemarrage
▶▶▶ NE LE POSTE PAS SUR LE FORUM (il est trop long)
heberge le rapport sur http://pjjoint.malekal.com et donne le lien obtenu
Pre_Scan
Avertissement: tous les processus non-vitaux de windows seront coupés --> pas de panique.
une fois telechargé lance-le , laisse faire le scan jusqu'à l'apparition du rapport sur le bureau.
si 'outil est bloqué par l'infection utilise cette version : Version .pif
ou encore cette version renommée : Winlogon.exe
si l'outil detecte un proxy et que tu n'en as pas installé clique sur "supprimer le proxy"
Il se peut qu'une multitude de fenêtres noires clignotent , laisse-le travailler
Si l'outil ouvre une fenetre "Lecteurs virtuels" , fais exactement ce qui est indiqué dans cettte fenetre
Poste Pre_Scan_la_date_et_l'heure.txt qui apparaitra sur le bureau en fin de scan après redemarrage
▶▶▶ NE LE POSTE PAS SUR LE FORUM (il est trop long)
heberge le rapport sur http://pjjoint.malekal.com et donne le lien obtenu
clic droit sur l 'icone de la zone de notification "desactiver definiticement" , tu reactiveras à la fin
https://pjjoint.malekal.com/files.php?id=20120222_h12i7e15m5z13
Par contre, au début de l'analyse il m'a afficher plein de fenêtre d'erreur, je devais faire annuler ou continuer à chaque fois
Par contre, au début de l'analyse il m'a afficher plein de fenêtre d'erreur, je devais faire annuler ou continuer à chaque fois
desinstalle adobe reader 9
===========
relance pre_scan et choisis script , une page vierge va s'ouvrir.
selectionne tout le texte en gras ci-dessous, puis (clic droit/copier ou ctrl+c) :
___________________________________________________
Kill::
Registry::
[-HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\6194C28A8F62DD817EA1B918E6E46E806A21B452]
[-HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\65B6FE5418CE28F4D72543FB2D964C3CEC83F161]
[-HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\AdvancedAdvisor]
[-HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Mozilla Firefox (3.0.11)]
[-HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Mozilla Firefox (3.0.8)]
[-HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Mozilla Firefox (3.5)]
[-HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Mozilla Firefox (3.5.2)]
[-HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Mozilla Firefox (3.5.3)]
[-HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Mozilla Firefox (3.5.5)]
[-HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Mozilla Firefox (3.5.6)]
[-HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Mozilla Firefox (3.5.7)]
[-HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Mozilla Firefox (3.5.8)]
[-HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Mozilla Firefox (3.6.10)]
[-HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Mozilla Firefox (3.6.12)]
[-HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Mozilla Firefox (3.6.13)]
[-HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Mozilla Firefox (3.6.15)]
[-HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Mozilla Firefox (3.6.16)]
[-HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Mozilla Firefox (3.6.3)]
[-HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Mozilla Firefox (3.6.6)]
[-HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Mozilla Firefox (3.6.8)]
[-HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Mozilla Firefox 4.0.1 (x86 fr)]
[-HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Mozilla Firefox 5.0 (x86 fr)]
[-HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Mozilla Firefox 8.0.1 (x86 fr)]
[-HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Spyware Doctor]
[-HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{86D4B82A-ABED-442A-BE86-96357B70F4FE}]
[-HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{AC76BA86-7AD7-1036-7B44-A81300000003}]
[-HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{AC76BA86-7AD7-1036-7B44-A81300000003}_814]
[-HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{AC76BA86-7AD7-1036-7B44-A92000000001}]
[-HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{AC76BA86-7AD7-1036-7B44-A93000000001}]
[-HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{AC76BA86-7AD7-1036-7B44-A94000000001}]
[-HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{AC76BA86-7AD7-1036-7B44-A95000000001}]
[-HKCU\Software\AdvancedAdvisor]
[-HKCU\Software\LINK TRAY STYLEpile]
[HKLM\System\CurrentControlSet\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"1900:UDP"=-
"2869:TCP"=-
"5985:TCP"=-
"80:TCP"=-
file::
C:\khv
C:\WINDOWS\fhf0/00'a ¶"ú<L"OSS.exe
C:\WINDOWS\fhf0/00'a ¶"ú<L"OSS.scr
C:\WINDOWS\hash.dat
C:\WINDOWS\berserk.exe
C:\WINDOWS\berserk.scr
C:\WINDOWS\Baku_win.exe
C:\WINDOWS\Baku_win.scr
C:\Documents and Setting\Pascal\Application Dataprivacy.xml
folder::
C:\khv
C:\Documents and Setting\All Users\Application Data\Spybot - Search & Destroy
Host::
Mbr::
clean::
Reboot::
___________________________________________________
colle-le ensuite (clic droit/coller ou ctrl+V) dans la page vierge.
puis onglet fichier => enregistrer (pas enregistrer sous...) , puis ferme le texte
des fenetres noires risquent de clignoter , c'est normal , c'est le programme qui travaille
poste Pre_Script.txt qui apparaitra sur le bureau en fin de travail
====================
relance pre_scan puis choisis "Tools" , puis "TDSSKiller"
l'outil va telecharger la derniere version
L'écran de TDSSKiller s'affiche:
Illustration
- Laisser cochées les 2 options par défaut -Visible via l'onglet "change parameter".
Illustration
▶ Et coche les 2 options supplémentaires:
Illustration
▶ Clique sur Start scan pour lancer l'analyse.
- Si une menace est détectée (Threats detected) vérifie que, suivant le cas:
En général, laisse les options proposées par défaut par l'outil
l'option "delete" (effacer) est bien cochée pour la famille TDL2
l'option "delete" (effacer) est bien cochée pour tout objet de la forme chiffre_aléatoire:chiffre_aléatoire.exe
l'option "delete" (effacer) est bien cochée pour tout service de la forme chiffre et/ou lettre aléatoire (hidden file)
l'option "cure" (réparer ) pour la famille TDL3.
l'option "cure" (réparer ) pour la famille tdl4(\HardDisk0\MBR).
l'option "cure" (réparer) pour la famille Rootkit.Win32.ZAccess
▶ puis clique sur Continue.
- laisse l'action par défaut "skip" (sauter) pour les "suspicious objects. low risks", avant de savoir ce que c'est, puis clique sur Continue.
Illustration
En fin d'analyse il peut être demandé de relancer la machine:
▶ clique sur Reboot Now.
▶ Si aucun reboot n'est demandé, clique sur le bouton Report et poste le contenu du fichier qui s'affiche.
▶ Si un reboot est demandé, aprés redémarrage tu trouveras le contenu du rapport de TDSSKiller ici:
SystemDrive\TDSSKiller.Version_Date_Heure_log.txt)
[SystemDrive représente la partition sur laquelle est installé le système, généralement C:]
=============================
▶ Téléchargez UsbFix (créé par El Desaparecido) sur votre Bureau.
▶ Si votre antivirus affiche une alerte, ignorez-la et désactivez l'antivirus temporairement.
▶ Branchez toutes vos sources de données externes à votre PC (clé USB, disque dur externe, etc...) sans les ouvrir.
▶ Double cliquez sur UsbFix.exe.
▶ Cliquez sur Suppression.
▶ Laissez travailler l'outil.
▶ À la fin du scan, un rapport va s'afficher, postez-le dans votre prochaine réponse sur le forum.
▶ Le rapport est aussi sauvegardé à la racine du disque système ( C:\UsbFix.txt ).
▶ Tutoriel vidéo
===========
relance pre_scan et choisis script , une page vierge va s'ouvrir.
selectionne tout le texte en gras ci-dessous, puis (clic droit/copier ou ctrl+c) :
___________________________________________________
Kill::
Registry::
[-HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\6194C28A8F62DD817EA1B918E6E46E806A21B452]
[-HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\65B6FE5418CE28F4D72543FB2D964C3CEC83F161]
[-HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\AdvancedAdvisor]
[-HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Mozilla Firefox (3.0.11)]
[-HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Mozilla Firefox (3.0.8)]
[-HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Mozilla Firefox (3.5)]
[-HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Mozilla Firefox (3.5.2)]
[-HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Mozilla Firefox (3.5.3)]
[-HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Mozilla Firefox (3.5.5)]
[-HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Mozilla Firefox (3.5.6)]
[-HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Mozilla Firefox (3.5.7)]
[-HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Mozilla Firefox (3.5.8)]
[-HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Mozilla Firefox (3.6.10)]
[-HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Mozilla Firefox (3.6.12)]
[-HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Mozilla Firefox (3.6.13)]
[-HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Mozilla Firefox (3.6.15)]
[-HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Mozilla Firefox (3.6.16)]
[-HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Mozilla Firefox (3.6.3)]
[-HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Mozilla Firefox (3.6.6)]
[-HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Mozilla Firefox (3.6.8)]
[-HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Mozilla Firefox 4.0.1 (x86 fr)]
[-HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Mozilla Firefox 5.0 (x86 fr)]
[-HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Mozilla Firefox 8.0.1 (x86 fr)]
[-HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Spyware Doctor]
[-HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{86D4B82A-ABED-442A-BE86-96357B70F4FE}]
[-HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{AC76BA86-7AD7-1036-7B44-A81300000003}]
[-HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{AC76BA86-7AD7-1036-7B44-A81300000003}_814]
[-HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{AC76BA86-7AD7-1036-7B44-A92000000001}]
[-HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{AC76BA86-7AD7-1036-7B44-A93000000001}]
[-HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{AC76BA86-7AD7-1036-7B44-A94000000001}]
[-HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{AC76BA86-7AD7-1036-7B44-A95000000001}]
[-HKCU\Software\AdvancedAdvisor]
[-HKCU\Software\LINK TRAY STYLEpile]
[HKLM\System\CurrentControlSet\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"1900:UDP"=-
"2869:TCP"=-
"5985:TCP"=-
"80:TCP"=-
file::
C:\khv
C:\WINDOWS\fhf0/00'a ¶"ú<L"OSS.exe
C:\WINDOWS\fhf0/00'a ¶"ú<L"OSS.scr
C:\WINDOWS\hash.dat
C:\WINDOWS\berserk.exe
C:\WINDOWS\berserk.scr
C:\WINDOWS\Baku_win.exe
C:\WINDOWS\Baku_win.scr
C:\Documents and Setting\Pascal\Application Dataprivacy.xml
folder::
C:\khv
C:\Documents and Setting\All Users\Application Data\Spybot - Search & Destroy
Host::
Mbr::
clean::
Reboot::
___________________________________________________
colle-le ensuite (clic droit/coller ou ctrl+V) dans la page vierge.
puis onglet fichier => enregistrer (pas enregistrer sous...) , puis ferme le texte
des fenetres noires risquent de clignoter , c'est normal , c'est le programme qui travaille
poste Pre_Script.txt qui apparaitra sur le bureau en fin de travail
====================
relance pre_scan puis choisis "Tools" , puis "TDSSKiller"
l'outil va telecharger la derniere version
L'écran de TDSSKiller s'affiche:
Illustration
- Laisser cochées les 2 options par défaut -Visible via l'onglet "change parameter".
Illustration
▶ Et coche les 2 options supplémentaires:
Illustration
▶ Clique sur Start scan pour lancer l'analyse.
- Si une menace est détectée (Threats detected) vérifie que, suivant le cas:
En général, laisse les options proposées par défaut par l'outil
l'option "delete" (effacer) est bien cochée pour la famille TDL2
l'option "delete" (effacer) est bien cochée pour tout objet de la forme chiffre_aléatoire:chiffre_aléatoire.exe
l'option "delete" (effacer) est bien cochée pour tout service de la forme chiffre et/ou lettre aléatoire (hidden file)
l'option "cure" (réparer ) pour la famille TDL3.
l'option "cure" (réparer ) pour la famille tdl4(\HardDisk0\MBR).
l'option "cure" (réparer) pour la famille Rootkit.Win32.ZAccess
▶ puis clique sur Continue.
- laisse l'action par défaut "skip" (sauter) pour les "suspicious objects. low risks", avant de savoir ce que c'est, puis clique sur Continue.
Illustration
En fin d'analyse il peut être demandé de relancer la machine:
▶ clique sur Reboot Now.
▶ Si aucun reboot n'est demandé, clique sur le bouton Report et poste le contenu du fichier qui s'affiche.
▶ Si un reboot est demandé, aprés redémarrage tu trouveras le contenu du rapport de TDSSKiller ici:
SystemDrive\TDSSKiller.Version_Date_Heure_log.txt)
[SystemDrive représente la partition sur laquelle est installé le système, généralement C:]
=============================
▶ Téléchargez UsbFix (créé par El Desaparecido) sur votre Bureau.
▶ Si votre antivirus affiche une alerte, ignorez-la et désactivez l'antivirus temporairement.
▶ Branchez toutes vos sources de données externes à votre PC (clé USB, disque dur externe, etc...) sans les ouvrir.
▶ Double cliquez sur UsbFix.exe.
▶ Cliquez sur Suppression.
▶ Laissez travailler l'outil.
▶ À la fin du scan, un rapport va s'afficher, postez-le dans votre prochaine réponse sur le forum.
▶ Le rapport est aussi sauvegardé à la racine du disque système ( C:\UsbFix.txt ).
▶ Tutoriel vidéo
¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Pre_Script | 2.214 ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤
¤¤¤¤¤ XP | Vista | Seven - 32/64 bits ¤¤¤¤¤
Mis à jour : 14/02/2012 | 00.20 Par g3n-h@ckm@n
Utilisateur : Pascal (Administrateurs)
Ordinateur : QUENTIN
Système d'exploitation : Microsoft Windows XP (32 bits) Service Pack 3
Internet Explorer : 8.0.6001.18702
Mozilla Firefox : 10.0.2 (fr)
Switchs possibles :
processes:: | file:: | folder:: | Registry::
Driver:: | replace:: | DNS:: | Command::
txt:: | Host:: | NsLook:: | DLL:: | Unhide_Part::
list:: | IP:: | Kill:: | clean:: | Del_Part::
Reboot:: | MBR:: | Fixmbr:: | 40:: | Zip::
Tray::
Script : 18:09:06
¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤
Modification du registre effectuée
¤
Supprimé : C:\khv
Absent : C:\WINDOWS\fhf0/00'a ¶"ú<L"OSS.exe
Absent : C:\WINDOWS\fhf0/00'a ¶"ú<L"OSS.scr
Supprimé : C:\WINDOWS\hash.dat
Supprimé : C:\WINDOWS\berserk.exe
Supprimé : C:\WINDOWS\berserk.scr
Supprimé : C:\WINDOWS\Baku_win.exe
Supprimé : C:\WINDOWS\Baku_win.scr
Supprimé : C:\Documents and Setting\Pascal\Application Dataprivacy.xml
¤
Absent : C:\khv
Supprimé : C:\Documents and Setting\All Users\Application Data\Spybot - Search & Destroy
¤
¤ Hosts
127.0.0.1 localhost
# Start of entries inserted by Spybot - Search & Destroy
127.0.0.1 www.007guard.com
127.0.0.1 007guard.com
127.0.0.1 008i.com
127.0.0.1 www.008k.com
127.0.0.1 008k.com
127.0.0.1 www.00hq.com
127.0.0.1 00hq.com
127.0.0.1 010402.com
127.0.0.1 www.032439.com
127.0.0.1 032439.com
127.0.0.1 www.0scan.com
127.0.0.1 0scan.com
127.0.0.1 1000gratisproben.com
127.0.0.1 www.1000gratisproben.com
127.0.0.1 1001namen.com
127.0.0.1 www.1001namen.com
127.0.0.1 100888290cs.com
127.0.0.1 www.100888290cs.com
127.0.0.1 www.100sexlinks.com
127.0.0.1 100sexlinks.com
127.0.0.1 10sek.com
127.0.0.1 www.10sek.com
127.0.0.1 www.1-2005-search.com
127.0.0.1 1-2005-search.com
[.......]
¤ Hosts Fix
127.0.0.1 localhost
¤
¤¤¤¤¤¤¤¤¤¤ | MBR
Windows Version: Windows XP Home Edition
Windows Information: Service Pack 3 (build 2600)
Logical Drives Mask: 0x000001ed
Analysis of file "C:\Kill'em\MBR.bin":
Windows 7 MBR code detected
¤
¤¤¤¤¤¤¤¤¤¤ | Nettoyage disque
Nettoyage du disque effectué
¤
Fin : 18:16:26
¤¤¤¤¤¤¤¤¤¤ ( EOF ) ¤¤¤¤¤¤¤¤¤¤
¤¤¤¤¤ XP | Vista | Seven - 32/64 bits ¤¤¤¤¤
Mis à jour : 14/02/2012 | 00.20 Par g3n-h@ckm@n
Utilisateur : Pascal (Administrateurs)
Ordinateur : QUENTIN
Système d'exploitation : Microsoft Windows XP (32 bits) Service Pack 3
Internet Explorer : 8.0.6001.18702
Mozilla Firefox : 10.0.2 (fr)
Switchs possibles :
processes:: | file:: | folder:: | Registry::
Driver:: | replace:: | DNS:: | Command::
txt:: | Host:: | NsLook:: | DLL:: | Unhide_Part::
list:: | IP:: | Kill:: | clean:: | Del_Part::
Reboot:: | MBR:: | Fixmbr:: | 40:: | Zip::
Tray::
Script : 18:09:06
¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤
Modification du registre effectuée
¤
Supprimé : C:\khv
Absent : C:\WINDOWS\fhf0/00'a ¶"ú<L"OSS.exe
Absent : C:\WINDOWS\fhf0/00'a ¶"ú<L"OSS.scr
Supprimé : C:\WINDOWS\hash.dat
Supprimé : C:\WINDOWS\berserk.exe
Supprimé : C:\WINDOWS\berserk.scr
Supprimé : C:\WINDOWS\Baku_win.exe
Supprimé : C:\WINDOWS\Baku_win.scr
Supprimé : C:\Documents and Setting\Pascal\Application Dataprivacy.xml
¤
Absent : C:\khv
Supprimé : C:\Documents and Setting\All Users\Application Data\Spybot - Search & Destroy
¤
¤ Hosts
127.0.0.1 localhost
# Start of entries inserted by Spybot - Search & Destroy
127.0.0.1 www.007guard.com
127.0.0.1 007guard.com
127.0.0.1 008i.com
127.0.0.1 www.008k.com
127.0.0.1 008k.com
127.0.0.1 www.00hq.com
127.0.0.1 00hq.com
127.0.0.1 010402.com
127.0.0.1 www.032439.com
127.0.0.1 032439.com
127.0.0.1 www.0scan.com
127.0.0.1 0scan.com
127.0.0.1 1000gratisproben.com
127.0.0.1 www.1000gratisproben.com
127.0.0.1 1001namen.com
127.0.0.1 www.1001namen.com
127.0.0.1 100888290cs.com
127.0.0.1 www.100888290cs.com
127.0.0.1 www.100sexlinks.com
127.0.0.1 100sexlinks.com
127.0.0.1 10sek.com
127.0.0.1 www.10sek.com
127.0.0.1 www.1-2005-search.com
127.0.0.1 1-2005-search.com
[.......]
¤ Hosts Fix
127.0.0.1 localhost
¤
¤¤¤¤¤¤¤¤¤¤ | MBR
Windows Version: Windows XP Home Edition
Windows Information: Service Pack 3 (build 2600)
Logical Drives Mask: 0x000001ed
Analysis of file "C:\Kill'em\MBR.bin":
Windows 7 MBR code detected
¤
¤¤¤¤¤¤¤¤¤¤ | Nettoyage disque
Nettoyage du disque effectué
¤
Fin : 18:16:26
¤¤¤¤¤¤¤¤¤¤ ( EOF ) ¤¤¤¤¤¤¤¤¤¤
http://hpics.li/a7fb846
regarde ce screenshot s'il te plais je ne sais pas trop quoi choisir entre SKIP, COPY to QUARANTAINE et DELETE
y'a pas l'option CURE
regarde ce screenshot s'il te plais je ne sais pas trop quoi choisir entre SKIP, COPY to QUARANTAINE et DELETE
y'a pas l'option CURE
regarde ces deux fichiers avec des caracteres bizarres , s ils sont presents , supprime-les
C:\WINDOWS\fhf0/00'a ¶"ú<L"OSS.exe
C:\WINDOWS\fhf0/00'a ¶"ú<L"OSS.scr
====
fais skip partout faut que je lise le rapport
C:\WINDOWS\fhf0/00'a ¶"ú<L"OSS.exe
C:\WINDOWS\fhf0/00'a ¶"ú<L"OSS.scr
====
fais skip partout faut que je lise le rapport
18:27:40.0890 1408 TDSS rootkit removing tool 2.7.13.0 Feb 15 2012 19:33:14
18:27:40.0968 1408 ============================================================
18:27:40.0968 1408 Current date / time: 2012/02/22 18:27:40.0968
18:27:40.0968 1408 SystemInfo:
18:27:40.0968 1408
18:27:40.0968 1408 OS Version: 5.1.2600 ServicePack: 3.0
18:27:40.0968 1408 Product type: Workstation
18:27:40.0968 1408 ComputerName: QUENTIN
18:27:40.0968 1408 UserName: Pascal
18:27:40.0968 1408 Windows directory: C:\WINDOWS
18:27:40.0968 1408 System windows directory: C:\WINDOWS
18:27:40.0968 1408 Processor architecture: Intel x86
18:27:40.0968 1408 Number of processors: 2
18:27:40.0968 1408 Page size: 0x1000
18:27:40.0968 1408 Boot type: Normal boot
18:27:40.0968 1408 ============================================================
18:27:41.0750 1408 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
18:27:41.0921 1408 \Device\Harddisk0\DR0:
18:27:41.0937 1408 MBR used
18:27:41.0937 1408 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x254297C1
18:27:42.0078 1408 Initialize success
18:27:42.0078 1408 ============================================================
18:28:58.0328 1840 ============================================================
18:28:58.0328 1840 Scan started
18:28:58.0328 1840 Mode: Manual; SigCheck; TDLFS;
18:28:58.0328 1840 ============================================================
18:28:58.0515 1840 Aavmker4 (b6de0336f9f4b687b4ff57939f7b657a) C:\WINDOWS\system32\drivers\Aavmker4.sys
18:28:58.0703 1840 Aavmker4 - ok
18:28:58.0734 1840 Abiosdsk - ok
18:28:58.0765 1840 abp480n5 - ok
18:28:58.0828 1840 ACPI (e5e6dbfc41ea8aad005cb9a57a96b43b) C:\WINDOWS\system32\DRIVERS\ACPI.sys
18:28:58.0968 1840 ACPI - ok
18:28:59.0046 1840 ACPIEC (e4abc1212b70bb03d35e60681c447210) C:\WINDOWS\system32\drivers\ACPIEC.sys
18:28:59.0125 1840 ACPIEC - ok
18:28:59.0203 1840 ADM8511 (b05f2367f62552a2de7e3c352b7b9885) C:\WINDOWS\system32\DRIVERS\ADM8511.SYS
18:28:59.0265 1840 ADM8511 - ok
18:28:59.0312 1840 adpu160m - ok
18:28:59.0390 1840 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
18:28:59.0468 1840 aec - ok
18:28:59.0562 1840 AFD (1e44bc1e83d8fd2305f8d452db109cf9) C:\WINDOWS\System32\drivers\afd.sys
18:28:59.0578 1840 AFD - ok
18:28:59.0609 1840 Aha154x - ok
18:28:59.0625 1840 aic78u2 - ok
18:28:59.0656 1840 aic78xx - ok
18:28:59.0718 1840 AliIde - ok
18:28:59.0750 1840 amsint - ok
18:28:59.0796 1840 asc - ok
18:28:59.0828 1840 asc3350p - ok
18:28:59.0859 1840 asc3550 - ok
18:28:59.0953 1840 aswFsBlk (054df24c92b55427e0757cfff160e4f2) C:\WINDOWS\system32\drivers\aswFsBlk.sys
18:28:59.0953 1840 aswFsBlk - ok
18:28:59.0984 1840 aswMon2 (ef0e9ad83380724bd6fbbb51d2d0f5b8) C:\WINDOWS\system32\drivers\aswMon2.sys
18:29:00.0000 1840 aswMon2 - ok
18:29:00.0015 1840 aswRdr (352d5a48ebab35a7693b048679304831) C:\WINDOWS\system32\drivers\aswRdr.sys
18:29:00.0015 1840 aswRdr - ok
18:29:00.0062 1840 aswSnx (8d34d2b24297e27d93e847319abfdec4) C:\WINDOWS\system32\drivers\aswSnx.sys
18:29:00.0078 1840 aswSnx - ok
18:29:00.0109 1840 aswSP (010012597333da1f46c3243f33f8409e) C:\WINDOWS\system32\drivers\aswSP.sys
18:29:00.0125 1840 aswSP - ok
18:29:00.0171 1840 aswTdi (f9f84364416658e9786235904d448d37) C:\WINDOWS\system32\drivers\aswTdi.sys
18:29:00.0171 1840 aswTdi - ok
18:29:00.0203 1840 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
18:29:00.0296 1840 AsyncMac - ok
18:29:00.0359 1840 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys
18:29:00.0406 1840 atapi - ok
18:29:00.0500 1840 AtcL001 (0907a12341e56dda7b22f8fd116a981d) C:\WINDOWS\system32\DRIVERS\l151x86.sys
18:29:00.0531 1840 AtcL001 - ok
18:29:00.0546 1840 Atdisk - ok
18:29:00.0625 1840 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
18:29:00.0687 1840 Atmarpc - ok
18:29:00.0765 1840 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
18:29:00.0828 1840 audstub - ok
18:29:00.0921 1840 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
18:29:00.0984 1840 Beep - ok
18:29:01.0062 1840 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
18:29:01.0156 1840 cbidf2k - ok
18:29:01.0218 1840 CCDECODE (0be5aef125be881c4f854c554f2b025c) C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
18:29:01.0312 1840 CCDECODE - ok
18:29:01.0359 1840 cd20xrnt - ok
18:29:01.0375 1840 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
18:29:01.0453 1840 Cdaudio - ok
18:29:01.0531 1840 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
18:29:01.0609 1840 Cdfs - ok
18:29:01.0625 1840 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys
18:29:01.0687 1840 Cdrom - ok
18:29:01.0718 1840 Changer - ok
18:29:01.0750 1840 CmdIde - ok
18:29:01.0781 1840 Cpqarray - ok
18:29:01.0859 1840 cpudrv - ok
18:29:01.0890 1840 dac2w2k - ok
18:29:01.0890 1840 dac960nt - ok
18:29:01.0937 1840 DCamUSBSQTECH (100ff3d9e16afb3163bd6f9aaaab7c55) C:\WINDOWS\system32\Drivers\SQcaptur.sys
18:29:01.0937 1840 DCamUSBSQTECH ( UnsignedFile.Multi.Generic ) - warning
18:29:01.0937 1840 DCamUSBSQTECH - detected UnsignedFile.Multi.Generic (1)
18:29:02.0015 1840 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
18:29:02.0093 1840 Disk - ok
18:29:02.0171 1840 dmboot (f5deadd42335fb33edca74ecb2f36cba) C:\WINDOWS\system32\drivers\dmboot.sys
18:29:02.0265 1840 dmboot - ok
18:29:02.0296 1840 dmio (5a7c47c9b3f9fb92a66410a7509f0c71) C:\WINDOWS\system32\drivers\dmio.sys
18:29:02.0375 1840 dmio - ok
18:29:02.0437 1840 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
18:29:02.0515 1840 dmload - ok
18:29:02.0593 1840 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
18:29:02.0671 1840 DMusic - ok
18:29:02.0703 1840 dpti2o - ok
18:29:02.0718 1840 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
18:29:02.0781 1840 drmkaud - ok
18:29:02.0859 1840 dualshock3 (d9d593f97d2004e92e18fab0b6f7fe48) C:\WINDOWS\system32\DRIVERS\dualshock3.sys
18:29:02.0859 1840 dualshock3 ( UnsignedFile.Multi.Generic ) - warning
18:29:02.0859 1840 dualshock3 - detected UnsignedFile.Multi.Generic (1)
18:29:02.0890 1840 EagleXNt - ok
18:29:02.0937 1840 ESLvnic1 (3f3126a8f73e92f8eb369d54977d9e15) C:\WINDOWS\system32\DRIVERS\ESLvnic.sys
18:29:02.0953 1840 ESLvnic1 - ok
18:29:03.0015 1840 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
18:29:03.0093 1840 Fastfat - ok
18:29:03.0156 1840 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\DRIVERS\fdc.sys
18:29:03.0218 1840 Fdc - ok
18:29:03.0312 1840 Fips (31f923eb2170fc172c81abda0045d18c) C:\WINDOWS\system32\drivers\Fips.sys
18:29:03.0375 1840 Fips - ok
18:29:03.0437 1840 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\DRIVERS\flpydisk.sys
18:29:03.0515 1840 Flpydisk - ok
18:29:03.0609 1840 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\drivers\fltmgr.sys
18:29:03.0671 1840 FltMgr - ok
18:29:03.0765 1840 FsUsbExDisk (790a4ca68f44be35967b3df61f3e4675) C:\WINDOWS\system32\FsUsbExDisk.SYS
18:29:03.0843 1840 FsUsbExDisk ( UnsignedFile.Multi.Generic ) - warning
18:29:03.0843 1840 FsUsbExDisk - detected UnsignedFile.Multi.Generic (1)
18:29:03.0921 1840 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
18:29:03.0984 1840 Fs_Rec - ok
18:29:04.0046 1840 Ftdisk (a86859b77b908c18c2657f284aa29fe3) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
18:29:04.0125 1840 Ftdisk - ok
18:29:04.0218 1840 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\WINDOWS\system32\Drivers\GEARAspiWDM.sys
18:29:04.0218 1840 GEARAspiWDM - ok
18:29:04.0265 1840 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
18:29:04.0328 1840 Gpc - ok
18:29:04.0437 1840 hamachi (7929a161f9951d173ca9900fe7067391) C:\WINDOWS\system32\DRIVERS\hamachi.sys
18:29:04.0437 1840 hamachi - ok
18:29:04.0515 1840 HDAudBus (573c7d0a32852b48f3058cfd8026f511) C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
18:29:04.0578 1840 HDAudBus - ok
18:29:04.0656 1840 HidUsb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys
18:29:04.0718 1840 HidUsb - ok
18:29:04.0781 1840 hpn - ok
18:29:04.0843 1840 HTTP (f80a415ef82cd06ffaf0d971528ead38) C:\WINDOWS\system32\Drivers\HTTP.sys
18:29:04.0859 1840 HTTP - ok
18:29:04.0906 1840 i2omgmt - ok
18:29:04.0921 1840 i2omp - ok
18:29:04.0984 1840 i8042prt (a09bdc4ed10e3b2e0ec27bb94af32516) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
18:29:05.0062 1840 i8042prt - ok
18:29:05.0125 1840 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys
18:29:05.0187 1840 Imapi - ok
18:29:05.0250 1840 ini910u - ok
18:29:05.0453 1840 IntcAzAudAddService (19afbb8427ce65042599555e578170df) C:\WINDOWS\system32\drivers\RtkHDAud.sys
18:29:05.0640 1840 IntcAzAudAddService - ok
18:29:05.0687 1840 IntelIde - ok
18:29:05.0750 1840 intelppm (ad340800c35a42d4de1641a37feea34c) C:\WINDOWS\system32\DRIVERS\intelppm.sys
18:29:05.0812 1840 intelppm - ok
18:29:05.0859 1840 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\drivers\ip6fw.sys
18:29:05.0921 1840 Ip6Fw - ok
18:29:06.0000 1840 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
18:29:06.0062 1840 IpFilterDriver - ok
18:29:06.0156 1840 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
18:29:06.0234 1840 IpInIp - ok
18:29:06.0281 1840 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
18:29:06.0343 1840 IpNat - ok
18:29:06.0406 1840 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
18:29:06.0484 1840 IPSec - ok
18:29:06.0546 1840 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
18:29:06.0578 1840 IRENUM - ok
18:29:06.0687 1840 isapnp (355836975a67b6554bca60328cd6cb74) C:\WINDOWS\system32\DRIVERS\isapnp.sys
18:29:06.0750 1840 isapnp - ok
18:29:06.0812 1840 JL2005C - ok
18:29:06.0843 1840 Kbdclass (16813155807c6881f4bfbf6657424659) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
18:29:06.0906 1840 Kbdclass - ok
18:29:07.0000 1840 kbdhid (94c59cb884ba010c063687c3a50dce8e) C:\WINDOWS\system32\DRIVERS\kbdhid.sys
18:29:07.0062 1840 kbdhid - ok
18:29:07.0156 1840 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys
18:29:07.0218 1840 kmixer - ok
18:29:07.0296 1840 KSecDD (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys
18:29:07.0312 1840 KSecDD - ok
18:29:07.0343 1840 lbrtfdc - ok
18:29:07.0406 1840 libusb0 (34d6730e198a5b0fce0790a6b4769ef2) C:\WINDOWS\system32\drivers\libusb0.sys
18:29:07.0406 1840 libusb0 ( UnsignedFile.Multi.Generic ) - warning
18:29:07.0406 1840 libusb0 - detected UnsignedFile.Multi.Generic (1)
18:29:07.0468 1840 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
18:29:07.0546 1840 mnmdd - ok
18:29:07.0640 1840 Modem (510ade9327fe84c10254e1902697e25f) C:\WINDOWS\system32\drivers\Modem.sys
18:29:07.0703 1840 Modem - ok
18:29:07.0734 1840 Mouclass (027c01bd7ef3349aaebc883d8a799efb) C:\WINDOWS\system32\DRIVERS\mouclass.sys
18:29:07.0812 1840 Mouclass - ok
18:29:07.0906 1840 mouhid (124d6846040c79b9c997f78ef4b2a4e5) C:\WINDOWS\system32\DRIVERS\mouhid.sys
18:29:07.0968 1840 mouhid - ok
18:29:08.0031 1840 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys
18:29:08.0093 1840 MountMgr - ok
18:29:08.0140 1840 mraid35x - ok
18:29:08.0187 1840 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
18:29:08.0265 1840 MRxDAV - ok
18:29:08.0343 1840 MRxSmb (7d304a5eb4344ebeeab53a2fe3ffb9f0) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
18:29:08.0375 1840 MRxSmb - ok
18:29:08.0437 1840 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
18:29:08.0500 1840 Msfs - ok
18:29:08.0562 1840 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys
18:29:08.0640 1840 MSKSSRV - ok
18:29:08.0687 1840 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
18:29:08.0765 1840 MSPCLOCK - ok
18:29:08.0843 1840 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys
18:29:08.0921 1840 MSPQM - ok
18:29:09.0015 1840 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
18:29:09.0078 1840 mssmbios - ok
18:29:09.0140 1840 MSTEE (e53736a9e30c45fa9e7b5eac55056d1d) C:\WINDOWS\system32\drivers\MSTEE.sys
18:29:09.0234 1840 MSTEE - ok
18:29:09.0312 1840 MTsensor (d48659bb24c48345d926ecb45c1ebdf5) C:\WINDOWS\system32\DRIVERS\ASACPI.sys
18:29:09.0328 1840 MTsensor - ok
18:29:09.0390 1840 Mup (de6a75f5c270e756c5508d94b6cf68f5) C:\WINDOWS\system32\drivers\Mup.sys
18:29:09.0421 1840 Mup - ok
18:29:09.0468 1840 mv61xx (702f8cd6dee366f9d795761f8325b4f8) C:\WINDOWS\system32\DRIVERS\mv61xx.sys
18:29:09.0468 1840 mv61xx ( UnsignedFile.Multi.Generic ) - warning
18:29:09.0468 1840 mv61xx - detected UnsignedFile.Multi.Generic (1)
18:29:09.0546 1840 NABTSFEC (5b50f1b2a2ed47d560577b221da734db) C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
18:29:09.0609 1840 NABTSFEC - ok
18:29:09.0656 1840 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys
18:29:09.0734 1840 NDIS - ok
18:29:09.0812 1840 NdisIP (7ff1f1fd8609c149aa432f95a8163d97) C:\WINDOWS\system32\DRIVERS\NdisIP.sys
18:29:09.0890 1840 NdisIP - ok
18:29:09.0968 1840 NdisTapi (0109c4f3850dfbab279542515386ae22) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
18:29:09.0984 1840 NdisTapi - ok
18:29:10.0062 1840 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
18:29:10.0125 1840 Ndisuio - ok
18:29:10.0187 1840 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
18:29:10.0250 1840 NdisWan - ok
18:29:10.0328 1840 NDProxy (9282bd12dfb069d3889eb3fcc1000a9b) C:\WINDOWS\system32\drivers\NDProxy.sys
18:29:10.0359 1840 NDProxy - ok
18:29:10.0421 1840 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys
18:29:10.0484 1840 NetBIOS - ok
18:29:10.0546 1840 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys
18:29:10.0609 1840 NetBT - ok
18:29:10.0671 1840 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
18:29:10.0734 1840 Npfs - ok
18:29:10.0796 1840 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys
18:29:10.0890 1840 Ntfs - ok
18:29:10.0968 1840 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
18:29:11.0031 1840 Null - ok
18:29:11.0437 1840 nv (4b54dcd6adee535df80f07c59ddd8f14) C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
18:29:12.0015 1840 nv - ok
18:29:12.0031 1840 NVR0FLASHDev - ok
18:29:12.0062 1840 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
18:29:12.0125 1840 NwlnkFlt - ok
18:29:12.0171 1840 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
18:29:12.0234 1840 NwlnkFwd - ok
18:29:12.0328 1840 Parport (8fd0bdbea875d06ccf6c945ca9abaf75) C:\WINDOWS\system32\drivers\Parport.sys
18:29:12.0406 1840 Parport - ok
18:29:12.0468 1840 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
18:29:12.0515 1840 PartMgr - ok
18:29:12.0609 1840 ParVdm (9575c5630db8fb804649a6959737154c) C:\WINDOWS\system32\drivers\ParVdm.sys
18:29:12.0687 1840 ParVdm - ok
18:29:12.0734 1840 PCAMPR5 - ok
18:29:12.0796 1840 PCANDIS5 (ceef86cb35abe95c40a88784f5b631ad) C:\WINDOWS\system32\PCANDIS5.SYS
18:29:12.0843 1840 PCANDIS5 ( UnsignedFile.Multi.Generic ) - warning
18:29:12.0843 1840 PCANDIS5 - detected UnsignedFile.Multi.Generic (1)
18:29:12.0859 1840 pccsmcfd - ok
18:29:12.0921 1840 PCI (043410877bda580c528f45165f7125bc) C:\WINDOWS\system32\DRIVERS\pci.sys
18:29:13.0000 1840 PCI - ok
18:29:13.0031 1840 PCIDump - ok
18:29:13.0078 1840 PCIIde (f4bfde7209c14a07aaa61e4d6ae69eac) C:\WINDOWS\system32\DRIVERS\pciide.sys
18:29:13.0156 1840 PCIIde - ok
18:29:13.0218 1840 Pcmcia (f0406cbc60bdb0394a0e17ffb04cdd3d) C:\WINDOWS\system32\drivers\Pcmcia.sys
18:29:13.0296 1840 Pcmcia - ok
18:29:13.0359 1840 PDCOMP - ok
18:29:13.0375 1840 PDFRAME - ok
18:29:13.0406 1840 PDRELI - ok
18:29:13.0421 1840 PDRFRAME - ok
18:29:13.0484 1840 perc2 - ok
18:29:13.0500 1840 perc2hib - ok
18:29:13.0546 1840 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
18:29:13.0625 1840 PptpMiniport - ok
18:29:13.0656 1840 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys
18:29:13.0734 1840 PSched - ok
18:29:13.0812 1840 pspdisp (7a95b9d484055f3fc076b7976491e8e1) C:\WINDOWS\system32\DRIVERS\pspdisp.sys
18:29:13.0843 1840 pspdisp ( UnsignedFile.Multi.Generic ) - warning
18:29:13.0843 1840 pspdisp - detected UnsignedFile.Multi.Generic (1)
18:29:13.0875 1840 PsSdk30 - ok
18:29:13.0906 1840 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
18:29:13.0953 1840 Ptilink - ok
18:29:14.0015 1840 ql1080 - ok
18:29:14.0031 1840 Ql10wnt - ok
18:29:14.0046 1840 ql12160 - ok
18:29:14.0093 1840 ql1240 - ok
18:29:14.0109 1840 ql1280 - ok
18:29:14.0156 1840 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
18:29:14.0218 1840 RasAcd - ok
18:29:14.0312 1840 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
18:29:14.0375 1840 Rasl2tp - ok
18:29:14.0421 1840 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
18:29:14.0484 1840 RasPppoe - ok
18:29:14.0578 1840 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
18:29:14.0640 1840 Raspti - ok
18:29:14.0734 1840 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys
18:29:14.0812 1840 Rdbss - ok
18:29:14.0843 1840 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
18:29:14.0906 1840 RDPCDD - ok
18:29:15.0000 1840 RDPWD (fc105dd312ed64eb66bff111e8ec6eac) C:\WINDOWS\system32\drivers\RDPWD.sys
18:29:15.0015 1840 RDPWD - ok
18:29:15.0093 1840 redbook (d8eb2a7904db6c916eb5361878ddcbae) C:\WINDOWS\system32\DRIVERS\redbook.sys
18:29:15.0156 1840 redbook - ok
18:29:15.0187 1840 RivaTuner32 - ok
18:29:15.0250 1840 RTL8023xp (cf84b1f0e8b14d4120aaf9cf35cbb265) C:\WINDOWS\system32\DRIVERS\Rtnicxp.sys
18:29:15.0265 1840 RTL8023xp ( UnsignedFile.Multi.Generic ) - warning
18:29:15.0265 1840 RTL8023xp - detected UnsignedFile.Multi.Generic (1)
18:29:15.0328 1840 rtl8139 (d507c1400284176573224903819ffda3) C:\WINDOWS\system32\DRIVERS\RTL8139.SYS
18:29:15.0406 1840 rtl8139 - ok
18:29:15.0500 1840 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
18:29:15.0546 1840 Secdrv - ok
18:29:15.0593 1840 serenum (0f29512ccd6bead730039fb4bd2c85ce) C:\WINDOWS\system32\DRIVERS\serenum.sys
18:29:15.0671 1840 serenum - ok
18:29:15.0718 1840 Serial (93d313c31f7ad9ea2b75f26075413c7c) C:\WINDOWS\system32\DRIVERS\serial.sys
18:29:15.0796 1840 Serial - ok
18:29:15.0859 1840 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\DRIVERS\sfloppy.sys
18:29:15.0921 1840 Sfloppy - ok
18:29:15.0984 1840 Simbad - ok
18:29:16.0062 1840 SLIP (866d538ebe33709a5c9f5c62b73b7d14) C:\WINDOWS\system32\DRIVERS\SLIP.sys
18:29:16.0140 1840 SLIP - ok
18:29:16.0171 1840 Sparrow - ok
18:29:16.0187 1840 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
18:29:16.0265 1840 splitter - ok
18:29:16.0375 1840 sptd (cdddec541bc3c96f91ecb48759673505) C:\WINDOWS\System32\Drivers\sptd.sys
18:29:16.0390 1840 sptd - ok
18:29:16.0453 1840 sr (39626e6dc1fb39434ec40c42722b660a) C:\WINDOWS\system32\DRIVERS\sr.sys
18:29:16.0484 1840 sr - ok
18:29:16.0546 1840 Srv (47ddfc2f003f7f9f0592c6874962a2e7) C:\WINDOWS\system32\DRIVERS\srv.sys
18:29:16.0578 1840 Srv - ok
18:29:16.0640 1840 ssmdrv (a36ee93698802cd899f98bfd553d8185) C:\WINDOWS\system32\DRIVERS\ssmdrv.sys
18:29:16.0656 1840 ssmdrv - ok
18:29:16.0718 1840 ss_bbus (eaa66218cd39f5bb1b4853a78c67c787) C:\WINDOWS\system32\DRIVERS\ss_bbus.sys
18:29:16.0734 1840 ss_bbus - ok
18:29:16.0796 1840 ss_bmdfl (91765f99914ed8693d8bc76524f21581) C:\WINDOWS\system32\DRIVERS\ss_bmdfl.sys
18:29:16.0812 1840 ss_bmdfl - ok
18:29:16.0875 1840 ss_bmdm (840e7b738b03c10ee91d9b7d3d6eff15) C:\WINDOWS\system32\DRIVERS\ss_bmdm.sys
18:29:16.0875 1840 ss_bmdm - ok
18:29:16.0937 1840 streamip (77813007ba6265c4b6098187e6ed79d2) C:\WINDOWS\system32\DRIVERS\StreamIP.sys
18:29:17.0000 1840 streamip - ok
18:29:17.0046 1840 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys
18:29:17.0109 1840 swenum - ok
18:29:17.0156 1840 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys
18:29:17.0218 1840 swmidi - ok
18:29:17.0250 1840 symc810 - ok
18:29:17.0265 1840 symc8xx - ok
18:29:17.0312 1840 sym_hi - ok
18:29:17.0375 1840 sym_u3 - ok
18:29:17.0453 1840 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys
18:29:17.0531 1840 sysaudio - ok
18:29:17.0625 1840 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys
18:29:17.0656 1840 Tcpip - ok
18:29:17.0718 1840 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys
18:29:17.0796 1840 TDPIPE - ok
18:29:17.0859 1840 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys
18:29:17.0921 1840 TDTCP - ok
18:29:17.0968 1840 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys
18:29:18.0031 1840 TermDD - ok
18:29:18.0062 1840 TosIde - ok
18:29:18.0125 1840 tunmp (8f861eda21c05857eb8197300a92501c) C:\WINDOWS\system32\DRIVERS\tunmp.sys
18:29:18.0218 1840 tunmp - ok
18:29:18.0281 1840 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys
18:29:18.0343 1840 Udfs - ok
18:29:18.0421 1840 ultra - ok
18:29:18.0484 1840 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys
18:29:18.0562 1840 Update - ok
18:29:18.0609 1840 USBAAPL - ok
18:29:18.0656 1840 usbaudio (e919708db44ed8543a7c017953148330) C:\WINDOWS\system32\drivers\usbaudio.sys
18:29:18.0734 1840 usbaudio - ok
18:29:18.0796 1840 usbccgp (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
18:29:18.0859 1840 usbccgp - ok
18:29:18.0953 1840 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys
18:29:19.0031 1840 usbehci - ok
18:29:19.0093 1840 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys
18:29:19.0156 1840 usbhub - ok
18:29:19.0250 1840 usbscan (a0b8cf9deb1184fbdd20784a58fa75d4) C:\WINDOWS\system32\DRIVERS\usbscan.sys
18:29:19.0328 1840 usbscan - ok
18:29:19.0421 1840 USBSTOR (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
18:29:19.0484 1840 USBSTOR - ok
18:29:19.0546 1840 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys
18:29:19.0625 1840 usbuhci - ok
18:29:19.0687 1840 V0220Dev (d26829d436f592f6d80d71b9c02c690f) C:\WINDOWS\system32\DRIVERS\V0220Dev.sys
18:29:19.0703 1840 V0220Dev - ok
18:29:19.0734 1840 V0220Vfx (eb4e73963bc2eda84b93b29174e15b02) C:\WINDOWS\system32\DRIVERS\V0220Vfx.sys
18:29:19.0750 1840 V0220Vfx - ok
18:29:19.0781 1840 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys
18:29:19.0859 1840 VgaSave - ok
18:29:19.0921 1840 ViaIde - ok
18:29:19.0984 1840 VolSnap (46de1126684369bace4849e4fc8c43ca) C:\WINDOWS\system32\drivers\VolSnap.sys
18:29:20.0046 1840 VolSnap - ok
18:29:20.0109 1840 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys
18:29:20.0171 1840 Wanarp - ok
18:29:20.0218 1840 WDICA - ok
18:29:20.0296 1840 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys
18:29:20.0390 1840 wdmaud - ok
18:29:20.0484 1840 WmBEnum (84a90f13eebf4380345ef9474d30f10e) C:\WINDOWS\system32\drivers\WmBEnum.sys
18:29:20.0500 1840 WmBEnum - ok
18:29:20.0562 1840 WmFilter (eb0034ac02a44dc784a3174d2b81e764) C:\WINDOWS\system32\drivers\WmFilter.sys
18:29:20.0578 1840 WmFilter - ok
18:29:20.0593 1840 WmHidLo (31d2906d59f127654964be334b615720) C:\WINDOWS\system32\drivers\WmHidLo.sys
18:29:20.0609 1840 WmHidLo - ok
18:29:20.0625 1840 WmVirHid (72c4f5a748c74d8d4016ccfa7367210f) C:\WINDOWS\system32\drivers\WmVirHid.sys
18:29:20.0640 1840 WmVirHid - ok
18:29:20.0656 1840 WmXlCore (eacdcced934a185e61ce0684f71c2dec) C:\WINDOWS\system32\drivers\WmXlCore.sys
18:29:20.0671 1840 WmXlCore - ok
18:29:20.0734 1840 WpdUsb (cf4def1bf66f06964dc0d91844239104) C:\WINDOWS\system32\DRIVERS\wpdusb.sys
18:29:20.0765 1840 WpdUsb - ok
18:29:20.0843 1840 WS2IFSL (6abe6e225adb5a751622a9cc3bc19ce8) C:\WINDOWS\System32\drivers\ws2ifsl.sys
18:29:20.0906 1840 WS2IFSL - ok
18:29:21.0000 1840 WSTCODEC (c98b39829c2bbd34e454150633c62c78) C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
18:29:21.0078 1840 WSTCODEC - ok
18:29:21.0125 1840 WudfPf (f15feafffbb3644ccc80c5da584e6311) C:\WINDOWS\system32\DRIVERS\WudfPf.sys
18:29:21.0140 1840 WudfPf - ok
18:29:21.0203 1840 WudfRd (28b524262bce6de1f7ef9f510ba3985b) C:\WINDOWS\system32\DRIVERS\wudfrd.sys
18:29:21.0218 1840 WudfRd - ok
18:29:21.0234 1840 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
18:29:21.0265 1840 \Device\Harddisk0\DR0 ( TDSS File System ) - warning
18:29:21.0265 1840 \Device\Harddisk0\DR0 - detected TDSS File System (1)
18:29:21.0265 1840 Boot (0x1200) (1a0d9f6ff7479285c30905bb19bc4727) \Device\Harddisk0\DR0\Partition0
18:29:21.0265 1840 \Device\Harddisk0\DR0\Partition0 - ok
18:29:21.0265 1840 ============================================================
18:29:21.0265 1840 Scan finished
18:29:21.0265 1840 ============================================================
18:29:21.0375 1820 Detected object count: 9
18:29:21.0375 1820 Actual detected object count: 9
21:23:02.0953 1820 DCamUSBSQTECH ( UnsignedFile.Multi.Generic ) - skipped by user
21:23:02.0953 1820 DCamUSBSQTECH ( UnsignedFile.Multi.Generic ) - User select action: Skip
21:23:02.0953 1820 dualshock3 ( UnsignedFile.Multi.Generic ) - skipped by user
21:23:02.0953 1820 dualshock3 ( UnsignedFile.Multi.Generic ) - User select action: Skip
21:23:02.0953 1820 FsUsbExDisk ( UnsignedFile.Multi.Generic ) - skipped by user
21:23:02.0953 1820 FsUsbExDisk ( UnsignedFile.Multi.Generic ) - User select action: Skip
21:23:02.0953 1820 libusb0 ( UnsignedFile.Multi.Generic ) - skipped by user
21:23:02.0953 1820 libusb0 ( UnsignedFile.Multi.Generic ) - User select action: Skip
21:23:02.0953 1820 mv61xx ( UnsignedFile.Multi.Generic ) - skipped by user
21:23:02.0953 1820 mv61xx ( UnsignedFile.Multi.Generic ) - User select action: Skip
21:23:02.0953 1820 PCANDIS5 ( UnsignedFile.Multi.Generic ) - skipped by user
21:23:02.0953 1820 PCANDIS5 ( UnsignedFile.Multi.Generic ) - User select action: Skip
21:23:02.0953 1820 pspdisp ( UnsignedFile.Multi.Generic ) - skipped by user
21:23:02.0953 1820 pspdisp ( UnsignedFile.Multi.Generic ) - User select action: Skip
21:23:02.0953 1820 RTL8023xp ( UnsignedFile.Multi.Generic ) - skipped by user
21:23:02.0953 1820 RTL8023xp ( UnsignedFile.Multi.Generic ) - User select action: Skip
21:23:02.0953 1820 \Device\Harddisk0\DR0 ( TDSS File System ) - skipped by user
21:23:02.0953 1820 \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Skip
18:27:40.0968 1408 ============================================================
18:27:40.0968 1408 Current date / time: 2012/02/22 18:27:40.0968
18:27:40.0968 1408 SystemInfo:
18:27:40.0968 1408
18:27:40.0968 1408 OS Version: 5.1.2600 ServicePack: 3.0
18:27:40.0968 1408 Product type: Workstation
18:27:40.0968 1408 ComputerName: QUENTIN
18:27:40.0968 1408 UserName: Pascal
18:27:40.0968 1408 Windows directory: C:\WINDOWS
18:27:40.0968 1408 System windows directory: C:\WINDOWS
18:27:40.0968 1408 Processor architecture: Intel x86
18:27:40.0968 1408 Number of processors: 2
18:27:40.0968 1408 Page size: 0x1000
18:27:40.0968 1408 Boot type: Normal boot
18:27:40.0968 1408 ============================================================
18:27:41.0750 1408 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
18:27:41.0921 1408 \Device\Harddisk0\DR0:
18:27:41.0937 1408 MBR used
18:27:41.0937 1408 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x254297C1
18:27:42.0078 1408 Initialize success
18:27:42.0078 1408 ============================================================
18:28:58.0328 1840 ============================================================
18:28:58.0328 1840 Scan started
18:28:58.0328 1840 Mode: Manual; SigCheck; TDLFS;
18:28:58.0328 1840 ============================================================
18:28:58.0515 1840 Aavmker4 (b6de0336f9f4b687b4ff57939f7b657a) C:\WINDOWS\system32\drivers\Aavmker4.sys
18:28:58.0703 1840 Aavmker4 - ok
18:28:58.0734 1840 Abiosdsk - ok
18:28:58.0765 1840 abp480n5 - ok
18:28:58.0828 1840 ACPI (e5e6dbfc41ea8aad005cb9a57a96b43b) C:\WINDOWS\system32\DRIVERS\ACPI.sys
18:28:58.0968 1840 ACPI - ok
18:28:59.0046 1840 ACPIEC (e4abc1212b70bb03d35e60681c447210) C:\WINDOWS\system32\drivers\ACPIEC.sys
18:28:59.0125 1840 ACPIEC - ok
18:28:59.0203 1840 ADM8511 (b05f2367f62552a2de7e3c352b7b9885) C:\WINDOWS\system32\DRIVERS\ADM8511.SYS
18:28:59.0265 1840 ADM8511 - ok
18:28:59.0312 1840 adpu160m - ok
18:28:59.0390 1840 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
18:28:59.0468 1840 aec - ok
18:28:59.0562 1840 AFD (1e44bc1e83d8fd2305f8d452db109cf9) C:\WINDOWS\System32\drivers\afd.sys
18:28:59.0578 1840 AFD - ok
18:28:59.0609 1840 Aha154x - ok
18:28:59.0625 1840 aic78u2 - ok
18:28:59.0656 1840 aic78xx - ok
18:28:59.0718 1840 AliIde - ok
18:28:59.0750 1840 amsint - ok
18:28:59.0796 1840 asc - ok
18:28:59.0828 1840 asc3350p - ok
18:28:59.0859 1840 asc3550 - ok
18:28:59.0953 1840 aswFsBlk (054df24c92b55427e0757cfff160e4f2) C:\WINDOWS\system32\drivers\aswFsBlk.sys
18:28:59.0953 1840 aswFsBlk - ok
18:28:59.0984 1840 aswMon2 (ef0e9ad83380724bd6fbbb51d2d0f5b8) C:\WINDOWS\system32\drivers\aswMon2.sys
18:29:00.0000 1840 aswMon2 - ok
18:29:00.0015 1840 aswRdr (352d5a48ebab35a7693b048679304831) C:\WINDOWS\system32\drivers\aswRdr.sys
18:29:00.0015 1840 aswRdr - ok
18:29:00.0062 1840 aswSnx (8d34d2b24297e27d93e847319abfdec4) C:\WINDOWS\system32\drivers\aswSnx.sys
18:29:00.0078 1840 aswSnx - ok
18:29:00.0109 1840 aswSP (010012597333da1f46c3243f33f8409e) C:\WINDOWS\system32\drivers\aswSP.sys
18:29:00.0125 1840 aswSP - ok
18:29:00.0171 1840 aswTdi (f9f84364416658e9786235904d448d37) C:\WINDOWS\system32\drivers\aswTdi.sys
18:29:00.0171 1840 aswTdi - ok
18:29:00.0203 1840 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
18:29:00.0296 1840 AsyncMac - ok
18:29:00.0359 1840 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys
18:29:00.0406 1840 atapi - ok
18:29:00.0500 1840 AtcL001 (0907a12341e56dda7b22f8fd116a981d) C:\WINDOWS\system32\DRIVERS\l151x86.sys
18:29:00.0531 1840 AtcL001 - ok
18:29:00.0546 1840 Atdisk - ok
18:29:00.0625 1840 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
18:29:00.0687 1840 Atmarpc - ok
18:29:00.0765 1840 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
18:29:00.0828 1840 audstub - ok
18:29:00.0921 1840 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
18:29:00.0984 1840 Beep - ok
18:29:01.0062 1840 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
18:29:01.0156 1840 cbidf2k - ok
18:29:01.0218 1840 CCDECODE (0be5aef125be881c4f854c554f2b025c) C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
18:29:01.0312 1840 CCDECODE - ok
18:29:01.0359 1840 cd20xrnt - ok
18:29:01.0375 1840 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
18:29:01.0453 1840 Cdaudio - ok
18:29:01.0531 1840 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
18:29:01.0609 1840 Cdfs - ok
18:29:01.0625 1840 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys
18:29:01.0687 1840 Cdrom - ok
18:29:01.0718 1840 Changer - ok
18:29:01.0750 1840 CmdIde - ok
18:29:01.0781 1840 Cpqarray - ok
18:29:01.0859 1840 cpudrv - ok
18:29:01.0890 1840 dac2w2k - ok
18:29:01.0890 1840 dac960nt - ok
18:29:01.0937 1840 DCamUSBSQTECH (100ff3d9e16afb3163bd6f9aaaab7c55) C:\WINDOWS\system32\Drivers\SQcaptur.sys
18:29:01.0937 1840 DCamUSBSQTECH ( UnsignedFile.Multi.Generic ) - warning
18:29:01.0937 1840 DCamUSBSQTECH - detected UnsignedFile.Multi.Generic (1)
18:29:02.0015 1840 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
18:29:02.0093 1840 Disk - ok
18:29:02.0171 1840 dmboot (f5deadd42335fb33edca74ecb2f36cba) C:\WINDOWS\system32\drivers\dmboot.sys
18:29:02.0265 1840 dmboot - ok
18:29:02.0296 1840 dmio (5a7c47c9b3f9fb92a66410a7509f0c71) C:\WINDOWS\system32\drivers\dmio.sys
18:29:02.0375 1840 dmio - ok
18:29:02.0437 1840 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
18:29:02.0515 1840 dmload - ok
18:29:02.0593 1840 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
18:29:02.0671 1840 DMusic - ok
18:29:02.0703 1840 dpti2o - ok
18:29:02.0718 1840 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
18:29:02.0781 1840 drmkaud - ok
18:29:02.0859 1840 dualshock3 (d9d593f97d2004e92e18fab0b6f7fe48) C:\WINDOWS\system32\DRIVERS\dualshock3.sys
18:29:02.0859 1840 dualshock3 ( UnsignedFile.Multi.Generic ) - warning
18:29:02.0859 1840 dualshock3 - detected UnsignedFile.Multi.Generic (1)
18:29:02.0890 1840 EagleXNt - ok
18:29:02.0937 1840 ESLvnic1 (3f3126a8f73e92f8eb369d54977d9e15) C:\WINDOWS\system32\DRIVERS\ESLvnic.sys
18:29:02.0953 1840 ESLvnic1 - ok
18:29:03.0015 1840 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
18:29:03.0093 1840 Fastfat - ok
18:29:03.0156 1840 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\DRIVERS\fdc.sys
18:29:03.0218 1840 Fdc - ok
18:29:03.0312 1840 Fips (31f923eb2170fc172c81abda0045d18c) C:\WINDOWS\system32\drivers\Fips.sys
18:29:03.0375 1840 Fips - ok
18:29:03.0437 1840 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\DRIVERS\flpydisk.sys
18:29:03.0515 1840 Flpydisk - ok
18:29:03.0609 1840 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\drivers\fltmgr.sys
18:29:03.0671 1840 FltMgr - ok
18:29:03.0765 1840 FsUsbExDisk (790a4ca68f44be35967b3df61f3e4675) C:\WINDOWS\system32\FsUsbExDisk.SYS
18:29:03.0843 1840 FsUsbExDisk ( UnsignedFile.Multi.Generic ) - warning
18:29:03.0843 1840 FsUsbExDisk - detected UnsignedFile.Multi.Generic (1)
18:29:03.0921 1840 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
18:29:03.0984 1840 Fs_Rec - ok
18:29:04.0046 1840 Ftdisk (a86859b77b908c18c2657f284aa29fe3) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
18:29:04.0125 1840 Ftdisk - ok
18:29:04.0218 1840 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\WINDOWS\system32\Drivers\GEARAspiWDM.sys
18:29:04.0218 1840 GEARAspiWDM - ok
18:29:04.0265 1840 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
18:29:04.0328 1840 Gpc - ok
18:29:04.0437 1840 hamachi (7929a161f9951d173ca9900fe7067391) C:\WINDOWS\system32\DRIVERS\hamachi.sys
18:29:04.0437 1840 hamachi - ok
18:29:04.0515 1840 HDAudBus (573c7d0a32852b48f3058cfd8026f511) C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
18:29:04.0578 1840 HDAudBus - ok
18:29:04.0656 1840 HidUsb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys
18:29:04.0718 1840 HidUsb - ok
18:29:04.0781 1840 hpn - ok
18:29:04.0843 1840 HTTP (f80a415ef82cd06ffaf0d971528ead38) C:\WINDOWS\system32\Drivers\HTTP.sys
18:29:04.0859 1840 HTTP - ok
18:29:04.0906 1840 i2omgmt - ok
18:29:04.0921 1840 i2omp - ok
18:29:04.0984 1840 i8042prt (a09bdc4ed10e3b2e0ec27bb94af32516) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
18:29:05.0062 1840 i8042prt - ok
18:29:05.0125 1840 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys
18:29:05.0187 1840 Imapi - ok
18:29:05.0250 1840 ini910u - ok
18:29:05.0453 1840 IntcAzAudAddService (19afbb8427ce65042599555e578170df) C:\WINDOWS\system32\drivers\RtkHDAud.sys
18:29:05.0640 1840 IntcAzAudAddService - ok
18:29:05.0687 1840 IntelIde - ok
18:29:05.0750 1840 intelppm (ad340800c35a42d4de1641a37feea34c) C:\WINDOWS\system32\DRIVERS\intelppm.sys
18:29:05.0812 1840 intelppm - ok
18:29:05.0859 1840 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\drivers\ip6fw.sys
18:29:05.0921 1840 Ip6Fw - ok
18:29:06.0000 1840 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
18:29:06.0062 1840 IpFilterDriver - ok
18:29:06.0156 1840 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
18:29:06.0234 1840 IpInIp - ok
18:29:06.0281 1840 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
18:29:06.0343 1840 IpNat - ok
18:29:06.0406 1840 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
18:29:06.0484 1840 IPSec - ok
18:29:06.0546 1840 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
18:29:06.0578 1840 IRENUM - ok
18:29:06.0687 1840 isapnp (355836975a67b6554bca60328cd6cb74) C:\WINDOWS\system32\DRIVERS\isapnp.sys
18:29:06.0750 1840 isapnp - ok
18:29:06.0812 1840 JL2005C - ok
18:29:06.0843 1840 Kbdclass (16813155807c6881f4bfbf6657424659) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
18:29:06.0906 1840 Kbdclass - ok
18:29:07.0000 1840 kbdhid (94c59cb884ba010c063687c3a50dce8e) C:\WINDOWS\system32\DRIVERS\kbdhid.sys
18:29:07.0062 1840 kbdhid - ok
18:29:07.0156 1840 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys
18:29:07.0218 1840 kmixer - ok
18:29:07.0296 1840 KSecDD (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys
18:29:07.0312 1840 KSecDD - ok
18:29:07.0343 1840 lbrtfdc - ok
18:29:07.0406 1840 libusb0 (34d6730e198a5b0fce0790a6b4769ef2) C:\WINDOWS\system32\drivers\libusb0.sys
18:29:07.0406 1840 libusb0 ( UnsignedFile.Multi.Generic ) - warning
18:29:07.0406 1840 libusb0 - detected UnsignedFile.Multi.Generic (1)
18:29:07.0468 1840 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
18:29:07.0546 1840 mnmdd - ok
18:29:07.0640 1840 Modem (510ade9327fe84c10254e1902697e25f) C:\WINDOWS\system32\drivers\Modem.sys
18:29:07.0703 1840 Modem - ok
18:29:07.0734 1840 Mouclass (027c01bd7ef3349aaebc883d8a799efb) C:\WINDOWS\system32\DRIVERS\mouclass.sys
18:29:07.0812 1840 Mouclass - ok
18:29:07.0906 1840 mouhid (124d6846040c79b9c997f78ef4b2a4e5) C:\WINDOWS\system32\DRIVERS\mouhid.sys
18:29:07.0968 1840 mouhid - ok
18:29:08.0031 1840 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys
18:29:08.0093 1840 MountMgr - ok
18:29:08.0140 1840 mraid35x - ok
18:29:08.0187 1840 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
18:29:08.0265 1840 MRxDAV - ok
18:29:08.0343 1840 MRxSmb (7d304a5eb4344ebeeab53a2fe3ffb9f0) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
18:29:08.0375 1840 MRxSmb - ok
18:29:08.0437 1840 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
18:29:08.0500 1840 Msfs - ok
18:29:08.0562 1840 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys
18:29:08.0640 1840 MSKSSRV - ok
18:29:08.0687 1840 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
18:29:08.0765 1840 MSPCLOCK - ok
18:29:08.0843 1840 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys
18:29:08.0921 1840 MSPQM - ok
18:29:09.0015 1840 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
18:29:09.0078 1840 mssmbios - ok
18:29:09.0140 1840 MSTEE (e53736a9e30c45fa9e7b5eac55056d1d) C:\WINDOWS\system32\drivers\MSTEE.sys
18:29:09.0234 1840 MSTEE - ok
18:29:09.0312 1840 MTsensor (d48659bb24c48345d926ecb45c1ebdf5) C:\WINDOWS\system32\DRIVERS\ASACPI.sys
18:29:09.0328 1840 MTsensor - ok
18:29:09.0390 1840 Mup (de6a75f5c270e756c5508d94b6cf68f5) C:\WINDOWS\system32\drivers\Mup.sys
18:29:09.0421 1840 Mup - ok
18:29:09.0468 1840 mv61xx (702f8cd6dee366f9d795761f8325b4f8) C:\WINDOWS\system32\DRIVERS\mv61xx.sys
18:29:09.0468 1840 mv61xx ( UnsignedFile.Multi.Generic ) - warning
18:29:09.0468 1840 mv61xx - detected UnsignedFile.Multi.Generic (1)
18:29:09.0546 1840 NABTSFEC (5b50f1b2a2ed47d560577b221da734db) C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
18:29:09.0609 1840 NABTSFEC - ok
18:29:09.0656 1840 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys
18:29:09.0734 1840 NDIS - ok
18:29:09.0812 1840 NdisIP (7ff1f1fd8609c149aa432f95a8163d97) C:\WINDOWS\system32\DRIVERS\NdisIP.sys
18:29:09.0890 1840 NdisIP - ok
18:29:09.0968 1840 NdisTapi (0109c4f3850dfbab279542515386ae22) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
18:29:09.0984 1840 NdisTapi - ok
18:29:10.0062 1840 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
18:29:10.0125 1840 Ndisuio - ok
18:29:10.0187 1840 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
18:29:10.0250 1840 NdisWan - ok
18:29:10.0328 1840 NDProxy (9282bd12dfb069d3889eb3fcc1000a9b) C:\WINDOWS\system32\drivers\NDProxy.sys
18:29:10.0359 1840 NDProxy - ok
18:29:10.0421 1840 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys
18:29:10.0484 1840 NetBIOS - ok
18:29:10.0546 1840 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys
18:29:10.0609 1840 NetBT - ok
18:29:10.0671 1840 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
18:29:10.0734 1840 Npfs - ok
18:29:10.0796 1840 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys
18:29:10.0890 1840 Ntfs - ok
18:29:10.0968 1840 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
18:29:11.0031 1840 Null - ok
18:29:11.0437 1840 nv (4b54dcd6adee535df80f07c59ddd8f14) C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
18:29:12.0015 1840 nv - ok
18:29:12.0031 1840 NVR0FLASHDev - ok
18:29:12.0062 1840 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
18:29:12.0125 1840 NwlnkFlt - ok
18:29:12.0171 1840 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
18:29:12.0234 1840 NwlnkFwd - ok
18:29:12.0328 1840 Parport (8fd0bdbea875d06ccf6c945ca9abaf75) C:\WINDOWS\system32\drivers\Parport.sys
18:29:12.0406 1840 Parport - ok
18:29:12.0468 1840 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
18:29:12.0515 1840 PartMgr - ok
18:29:12.0609 1840 ParVdm (9575c5630db8fb804649a6959737154c) C:\WINDOWS\system32\drivers\ParVdm.sys
18:29:12.0687 1840 ParVdm - ok
18:29:12.0734 1840 PCAMPR5 - ok
18:29:12.0796 1840 PCANDIS5 (ceef86cb35abe95c40a88784f5b631ad) C:\WINDOWS\system32\PCANDIS5.SYS
18:29:12.0843 1840 PCANDIS5 ( UnsignedFile.Multi.Generic ) - warning
18:29:12.0843 1840 PCANDIS5 - detected UnsignedFile.Multi.Generic (1)
18:29:12.0859 1840 pccsmcfd - ok
18:29:12.0921 1840 PCI (043410877bda580c528f45165f7125bc) C:\WINDOWS\system32\DRIVERS\pci.sys
18:29:13.0000 1840 PCI - ok
18:29:13.0031 1840 PCIDump - ok
18:29:13.0078 1840 PCIIde (f4bfde7209c14a07aaa61e4d6ae69eac) C:\WINDOWS\system32\DRIVERS\pciide.sys
18:29:13.0156 1840 PCIIde - ok
18:29:13.0218 1840 Pcmcia (f0406cbc60bdb0394a0e17ffb04cdd3d) C:\WINDOWS\system32\drivers\Pcmcia.sys
18:29:13.0296 1840 Pcmcia - ok
18:29:13.0359 1840 PDCOMP - ok
18:29:13.0375 1840 PDFRAME - ok
18:29:13.0406 1840 PDRELI - ok
18:29:13.0421 1840 PDRFRAME - ok
18:29:13.0484 1840 perc2 - ok
18:29:13.0500 1840 perc2hib - ok
18:29:13.0546 1840 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
18:29:13.0625 1840 PptpMiniport - ok
18:29:13.0656 1840 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys
18:29:13.0734 1840 PSched - ok
18:29:13.0812 1840 pspdisp (7a95b9d484055f3fc076b7976491e8e1) C:\WINDOWS\system32\DRIVERS\pspdisp.sys
18:29:13.0843 1840 pspdisp ( UnsignedFile.Multi.Generic ) - warning
18:29:13.0843 1840 pspdisp - detected UnsignedFile.Multi.Generic (1)
18:29:13.0875 1840 PsSdk30 - ok
18:29:13.0906 1840 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
18:29:13.0953 1840 Ptilink - ok
18:29:14.0015 1840 ql1080 - ok
18:29:14.0031 1840 Ql10wnt - ok
18:29:14.0046 1840 ql12160 - ok
18:29:14.0093 1840 ql1240 - ok
18:29:14.0109 1840 ql1280 - ok
18:29:14.0156 1840 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
18:29:14.0218 1840 RasAcd - ok
18:29:14.0312 1840 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
18:29:14.0375 1840 Rasl2tp - ok
18:29:14.0421 1840 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
18:29:14.0484 1840 RasPppoe - ok
18:29:14.0578 1840 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
18:29:14.0640 1840 Raspti - ok
18:29:14.0734 1840 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys
18:29:14.0812 1840 Rdbss - ok
18:29:14.0843 1840 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
18:29:14.0906 1840 RDPCDD - ok
18:29:15.0000 1840 RDPWD (fc105dd312ed64eb66bff111e8ec6eac) C:\WINDOWS\system32\drivers\RDPWD.sys
18:29:15.0015 1840 RDPWD - ok
18:29:15.0093 1840 redbook (d8eb2a7904db6c916eb5361878ddcbae) C:\WINDOWS\system32\DRIVERS\redbook.sys
18:29:15.0156 1840 redbook - ok
18:29:15.0187 1840 RivaTuner32 - ok
18:29:15.0250 1840 RTL8023xp (cf84b1f0e8b14d4120aaf9cf35cbb265) C:\WINDOWS\system32\DRIVERS\Rtnicxp.sys
18:29:15.0265 1840 RTL8023xp ( UnsignedFile.Multi.Generic ) - warning
18:29:15.0265 1840 RTL8023xp - detected UnsignedFile.Multi.Generic (1)
18:29:15.0328 1840 rtl8139 (d507c1400284176573224903819ffda3) C:\WINDOWS\system32\DRIVERS\RTL8139.SYS
18:29:15.0406 1840 rtl8139 - ok
18:29:15.0500 1840 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
18:29:15.0546 1840 Secdrv - ok
18:29:15.0593 1840 serenum (0f29512ccd6bead730039fb4bd2c85ce) C:\WINDOWS\system32\DRIVERS\serenum.sys
18:29:15.0671 1840 serenum - ok
18:29:15.0718 1840 Serial (93d313c31f7ad9ea2b75f26075413c7c) C:\WINDOWS\system32\DRIVERS\serial.sys
18:29:15.0796 1840 Serial - ok
18:29:15.0859 1840 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\DRIVERS\sfloppy.sys
18:29:15.0921 1840 Sfloppy - ok
18:29:15.0984 1840 Simbad - ok
18:29:16.0062 1840 SLIP (866d538ebe33709a5c9f5c62b73b7d14) C:\WINDOWS\system32\DRIVERS\SLIP.sys
18:29:16.0140 1840 SLIP - ok
18:29:16.0171 1840 Sparrow - ok
18:29:16.0187 1840 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
18:29:16.0265 1840 splitter - ok
18:29:16.0375 1840 sptd (cdddec541bc3c96f91ecb48759673505) C:\WINDOWS\System32\Drivers\sptd.sys
18:29:16.0390 1840 sptd - ok
18:29:16.0453 1840 sr (39626e6dc1fb39434ec40c42722b660a) C:\WINDOWS\system32\DRIVERS\sr.sys
18:29:16.0484 1840 sr - ok
18:29:16.0546 1840 Srv (47ddfc2f003f7f9f0592c6874962a2e7) C:\WINDOWS\system32\DRIVERS\srv.sys
18:29:16.0578 1840 Srv - ok
18:29:16.0640 1840 ssmdrv (a36ee93698802cd899f98bfd553d8185) C:\WINDOWS\system32\DRIVERS\ssmdrv.sys
18:29:16.0656 1840 ssmdrv - ok
18:29:16.0718 1840 ss_bbus (eaa66218cd39f5bb1b4853a78c67c787) C:\WINDOWS\system32\DRIVERS\ss_bbus.sys
18:29:16.0734 1840 ss_bbus - ok
18:29:16.0796 1840 ss_bmdfl (91765f99914ed8693d8bc76524f21581) C:\WINDOWS\system32\DRIVERS\ss_bmdfl.sys
18:29:16.0812 1840 ss_bmdfl - ok
18:29:16.0875 1840 ss_bmdm (840e7b738b03c10ee91d9b7d3d6eff15) C:\WINDOWS\system32\DRIVERS\ss_bmdm.sys
18:29:16.0875 1840 ss_bmdm - ok
18:29:16.0937 1840 streamip (77813007ba6265c4b6098187e6ed79d2) C:\WINDOWS\system32\DRIVERS\StreamIP.sys
18:29:17.0000 1840 streamip - ok
18:29:17.0046 1840 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys
18:29:17.0109 1840 swenum - ok
18:29:17.0156 1840 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys
18:29:17.0218 1840 swmidi - ok
18:29:17.0250 1840 symc810 - ok
18:29:17.0265 1840 symc8xx - ok
18:29:17.0312 1840 sym_hi - ok
18:29:17.0375 1840 sym_u3 - ok
18:29:17.0453 1840 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys
18:29:17.0531 1840 sysaudio - ok
18:29:17.0625 1840 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys
18:29:17.0656 1840 Tcpip - ok
18:29:17.0718 1840 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys
18:29:17.0796 1840 TDPIPE - ok
18:29:17.0859 1840 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys
18:29:17.0921 1840 TDTCP - ok
18:29:17.0968 1840 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys
18:29:18.0031 1840 TermDD - ok
18:29:18.0062 1840 TosIde - ok
18:29:18.0125 1840 tunmp (8f861eda21c05857eb8197300a92501c) C:\WINDOWS\system32\DRIVERS\tunmp.sys
18:29:18.0218 1840 tunmp - ok
18:29:18.0281 1840 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys
18:29:18.0343 1840 Udfs - ok
18:29:18.0421 1840 ultra - ok
18:29:18.0484 1840 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys
18:29:18.0562 1840 Update - ok
18:29:18.0609 1840 USBAAPL - ok
18:29:18.0656 1840 usbaudio (e919708db44ed8543a7c017953148330) C:\WINDOWS\system32\drivers\usbaudio.sys
18:29:18.0734 1840 usbaudio - ok
18:29:18.0796 1840 usbccgp (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
18:29:18.0859 1840 usbccgp - ok
18:29:18.0953 1840 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys
18:29:19.0031 1840 usbehci - ok
18:29:19.0093 1840 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys
18:29:19.0156 1840 usbhub - ok
18:29:19.0250 1840 usbscan (a0b8cf9deb1184fbdd20784a58fa75d4) C:\WINDOWS\system32\DRIVERS\usbscan.sys
18:29:19.0328 1840 usbscan - ok
18:29:19.0421 1840 USBSTOR (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
18:29:19.0484 1840 USBSTOR - ok
18:29:19.0546 1840 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys
18:29:19.0625 1840 usbuhci - ok
18:29:19.0687 1840 V0220Dev (d26829d436f592f6d80d71b9c02c690f) C:\WINDOWS\system32\DRIVERS\V0220Dev.sys
18:29:19.0703 1840 V0220Dev - ok
18:29:19.0734 1840 V0220Vfx (eb4e73963bc2eda84b93b29174e15b02) C:\WINDOWS\system32\DRIVERS\V0220Vfx.sys
18:29:19.0750 1840 V0220Vfx - ok
18:29:19.0781 1840 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys
18:29:19.0859 1840 VgaSave - ok
18:29:19.0921 1840 ViaIde - ok
18:29:19.0984 1840 VolSnap (46de1126684369bace4849e4fc8c43ca) C:\WINDOWS\system32\drivers\VolSnap.sys
18:29:20.0046 1840 VolSnap - ok
18:29:20.0109 1840 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys
18:29:20.0171 1840 Wanarp - ok
18:29:20.0218 1840 WDICA - ok
18:29:20.0296 1840 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys
18:29:20.0390 1840 wdmaud - ok
18:29:20.0484 1840 WmBEnum (84a90f13eebf4380345ef9474d30f10e) C:\WINDOWS\system32\drivers\WmBEnum.sys
18:29:20.0500 1840 WmBEnum - ok
18:29:20.0562 1840 WmFilter (eb0034ac02a44dc784a3174d2b81e764) C:\WINDOWS\system32\drivers\WmFilter.sys
18:29:20.0578 1840 WmFilter - ok
18:29:20.0593 1840 WmHidLo (31d2906d59f127654964be334b615720) C:\WINDOWS\system32\drivers\WmHidLo.sys
18:29:20.0609 1840 WmHidLo - ok
18:29:20.0625 1840 WmVirHid (72c4f5a748c74d8d4016ccfa7367210f) C:\WINDOWS\system32\drivers\WmVirHid.sys
18:29:20.0640 1840 WmVirHid - ok
18:29:20.0656 1840 WmXlCore (eacdcced934a185e61ce0684f71c2dec) C:\WINDOWS\system32\drivers\WmXlCore.sys
18:29:20.0671 1840 WmXlCore - ok
18:29:20.0734 1840 WpdUsb (cf4def1bf66f06964dc0d91844239104) C:\WINDOWS\system32\DRIVERS\wpdusb.sys
18:29:20.0765 1840 WpdUsb - ok
18:29:20.0843 1840 WS2IFSL (6abe6e225adb5a751622a9cc3bc19ce8) C:\WINDOWS\System32\drivers\ws2ifsl.sys
18:29:20.0906 1840 WS2IFSL - ok
18:29:21.0000 1840 WSTCODEC (c98b39829c2bbd34e454150633c62c78) C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
18:29:21.0078 1840 WSTCODEC - ok
18:29:21.0125 1840 WudfPf (f15feafffbb3644ccc80c5da584e6311) C:\WINDOWS\system32\DRIVERS\WudfPf.sys
18:29:21.0140 1840 WudfPf - ok
18:29:21.0203 1840 WudfRd (28b524262bce6de1f7ef9f510ba3985b) C:\WINDOWS\system32\DRIVERS\wudfrd.sys
18:29:21.0218 1840 WudfRd - ok
18:29:21.0234 1840 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
18:29:21.0265 1840 \Device\Harddisk0\DR0 ( TDSS File System ) - warning
18:29:21.0265 1840 \Device\Harddisk0\DR0 - detected TDSS File System (1)
18:29:21.0265 1840 Boot (0x1200) (1a0d9f6ff7479285c30905bb19bc4727) \Device\Harddisk0\DR0\Partition0
18:29:21.0265 1840 \Device\Harddisk0\DR0\Partition0 - ok
18:29:21.0265 1840 ============================================================
18:29:21.0265 1840 Scan finished
18:29:21.0265 1840 ============================================================
18:29:21.0375 1820 Detected object count: 9
18:29:21.0375 1820 Actual detected object count: 9
21:23:02.0953 1820 DCamUSBSQTECH ( UnsignedFile.Multi.Generic ) - skipped by user
21:23:02.0953 1820 DCamUSBSQTECH ( UnsignedFile.Multi.Generic ) - User select action: Skip
21:23:02.0953 1820 dualshock3 ( UnsignedFile.Multi.Generic ) - skipped by user
21:23:02.0953 1820 dualshock3 ( UnsignedFile.Multi.Generic ) - User select action: Skip
21:23:02.0953 1820 FsUsbExDisk ( UnsignedFile.Multi.Generic ) - skipped by user
21:23:02.0953 1820 FsUsbExDisk ( UnsignedFile.Multi.Generic ) - User select action: Skip
21:23:02.0953 1820 libusb0 ( UnsignedFile.Multi.Generic ) - skipped by user
21:23:02.0953 1820 libusb0 ( UnsignedFile.Multi.Generic ) - User select action: Skip
21:23:02.0953 1820 mv61xx ( UnsignedFile.Multi.Generic ) - skipped by user
21:23:02.0953 1820 mv61xx ( UnsignedFile.Multi.Generic ) - User select action: Skip
21:23:02.0953 1820 PCANDIS5 ( UnsignedFile.Multi.Generic ) - skipped by user
21:23:02.0953 1820 PCANDIS5 ( UnsignedFile.Multi.Generic ) - User select action: Skip
21:23:02.0953 1820 pspdisp ( UnsignedFile.Multi.Generic ) - skipped by user
21:23:02.0953 1820 pspdisp ( UnsignedFile.Multi.Generic ) - User select action: Skip
21:23:02.0953 1820 RTL8023xp ( UnsignedFile.Multi.Generic ) - skipped by user
21:23:02.0953 1820 RTL8023xp ( UnsignedFile.Multi.Generic ) - User select action: Skip
21:23:02.0953 1820 \Device\Harddisk0\DR0 ( TDSS File System ) - skipped by user
21:23:02.0953 1820 \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Skip
