PC infecté ?
Résolu
Seraphin75
Messages postés
37
Statut
Membre
-
jacques.gache Messages postés 34829 Statut Contributeur sécurité -
jacques.gache Messages postés 34829 Statut Contributeur sécurité -
Bonjour à tous,
Est-ce que quelqu'un pourrait m'aider à analyser mon rapporte Hijack svp ?
Pour info, j'ai déjà nettoyé le PC avec Malwarebytes, Avast et Adaware, mais j'pense qu'il ya encore des problèmes.... d'où ma demande d'aide^^
Merci par avance de votre aide !
Le rapport :
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 15:26:17, on 11/12/2011
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe
C:\windows\system\hpsysdrv.exe
C:\WINDOWS\AGRSMMSG.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\system32\ps2.exe
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\Program Files\Fichiers communs\LogiShrd\LVCOMSER\LVComSer.exe
C:\WINDOWS\ALCXMNTR.EXE
C:\Program Files\Fichiers communs\LogiShrd\LVMVFM\LVPrcSrv.exe
C:\Program Files\AVAST Software\Avast\avastUI.exe
C:\Program Files\Logitech\SetPointP\SetPoint.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
C:\Documents and Settings\All Users\Application Data\Ad-Aware Browsing Protection\adawarebp.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Fichiers communs\LogiShrd\KHAL3\KHALMNPR.EXE
C:\Program Files\Fichiers communs\LogiShrd\LVCOMSER\LVComSer.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\Program Files\Uniblue\RegistryBooster\rbmonitor.exe
C:\WINDOWS\system32\taskmgr.exe
C:\Documents and Settings\HP_Propriétaire\Mes documents\Téléchargements\HiJackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: Vue HP - {B2847E28-5D7D-4DEB-8B67-05D28BCF79F5} - c:\Program Files\HP\Digital Imaging\bin\HPDTLK02.dll
O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe
O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe
O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE
O4 - HKLM\..\Run: [PS2] C:\WINDOWS\system32\ps2.exe
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [AlcxMonitor] ALCXMNTR.EXE
O4 - HKLM\..\Run: [LSBWatcher] c:\hp\drivers\hplsbwatcher\lsburnwatcher.exe
O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Fichiers communs\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [EvtMgr6] C:\Program Files\Logitech\SetPointP\SetPoint.exe /launchGaming
O4 - HKLM\..\Run: [Ad-Aware Browsing Protection] "C:\Documents and Settings\All Users\Application Data\Ad-Aware Browsing Protection\adawarebp.exe"
O4 - HKLM\..\Run: [Malwarebytes' Anti-Malware] "C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray
O4 - HKLM\..\Run: [Trend Micro RUBotted V2.0 Beta] C:\Program Files\Trend Micro\RUBotted\RUBottedGUI.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [RegistryBooster] "C:\Program Files\Uniblue\RegistryBooster\launcher.exe" delay 20000
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - .DEFAULT User Startup: AutoTBar.exe (User 'Default user')
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {5C051655-FCD5-4969-9182-770EA5AA5565} - http://messenger.zone.msn.com/binary/SolitaireShowdown.cab56986.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: iPod Service (iPodService) - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Fichiers communs\LogiShrd\Bluetooth\lbtserv.exe
O23 - Service: LVCOMSer - Logitech Inc. - C:\Program Files\Fichiers communs\LogiShrd\LVCOMSER\LVComSer.exe
O23 - Service: Process Monitor (LVPrcSrv) - Logitech Inc. - C:\Program Files\Fichiers communs\LogiShrd\LVMVFM\LVPrcSrv.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - CACE Technologies, Inc. - C:\Program Files\WinPcap\rpcapd.exe
O23 - Service: Trend Micro RUBotted Service (RUBotSrv) - Trend Micro Inc. - C:\Program Files\Trend Micro\RUBotted\RUBotSrv.exe
Est-ce que quelqu'un pourrait m'aider à analyser mon rapporte Hijack svp ?
Pour info, j'ai déjà nettoyé le PC avec Malwarebytes, Avast et Adaware, mais j'pense qu'il ya encore des problèmes.... d'où ma demande d'aide^^
Merci par avance de votre aide !
Le rapport :
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 15:26:17, on 11/12/2011
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe
C:\windows\system\hpsysdrv.exe
C:\WINDOWS\AGRSMMSG.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\system32\ps2.exe
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\Program Files\Fichiers communs\LogiShrd\LVCOMSER\LVComSer.exe
C:\WINDOWS\ALCXMNTR.EXE
C:\Program Files\Fichiers communs\LogiShrd\LVMVFM\LVPrcSrv.exe
C:\Program Files\AVAST Software\Avast\avastUI.exe
C:\Program Files\Logitech\SetPointP\SetPoint.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
C:\Documents and Settings\All Users\Application Data\Ad-Aware Browsing Protection\adawarebp.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Fichiers communs\LogiShrd\KHAL3\KHALMNPR.EXE
C:\Program Files\Fichiers communs\LogiShrd\LVCOMSER\LVComSer.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\Program Files\Uniblue\RegistryBooster\rbmonitor.exe
C:\WINDOWS\system32\taskmgr.exe
C:\Documents and Settings\HP_Propriétaire\Mes documents\Téléchargements\HiJackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: Vue HP - {B2847E28-5D7D-4DEB-8B67-05D28BCF79F5} - c:\Program Files\HP\Digital Imaging\bin\HPDTLK02.dll
O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe
O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe
O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE
O4 - HKLM\..\Run: [PS2] C:\WINDOWS\system32\ps2.exe
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [AlcxMonitor] ALCXMNTR.EXE
O4 - HKLM\..\Run: [LSBWatcher] c:\hp\drivers\hplsbwatcher\lsburnwatcher.exe
O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Fichiers communs\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [EvtMgr6] C:\Program Files\Logitech\SetPointP\SetPoint.exe /launchGaming
O4 - HKLM\..\Run: [Ad-Aware Browsing Protection] "C:\Documents and Settings\All Users\Application Data\Ad-Aware Browsing Protection\adawarebp.exe"
O4 - HKLM\..\Run: [Malwarebytes' Anti-Malware] "C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray
O4 - HKLM\..\Run: [Trend Micro RUBotted V2.0 Beta] C:\Program Files\Trend Micro\RUBotted\RUBottedGUI.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [RegistryBooster] "C:\Program Files\Uniblue\RegistryBooster\launcher.exe" delay 20000
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - .DEFAULT User Startup: AutoTBar.exe (User 'Default user')
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {5C051655-FCD5-4969-9182-770EA5AA5565} - http://messenger.zone.msn.com/binary/SolitaireShowdown.cab56986.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: iPod Service (iPodService) - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Fichiers communs\LogiShrd\Bluetooth\lbtserv.exe
O23 - Service: LVCOMSer - Logitech Inc. - C:\Program Files\Fichiers communs\LogiShrd\LVCOMSER\LVComSer.exe
O23 - Service: Process Monitor (LVPrcSrv) - Logitech Inc. - C:\Program Files\Fichiers communs\LogiShrd\LVMVFM\LVPrcSrv.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - CACE Technologies, Inc. - C:\Program Files\WinPcap\rpcapd.exe
O23 - Service: Trend Micro RUBotted Service (RUBotSrv) - Trend Micro Inc. - C:\Program Files\Trend Micro\RUBotted\RUBotSrv.exe
A voir également:
- PC infecté ?
- Reinitialiser pc - Guide
- Pc lent - Guide
- Test performance pc - Guide
- Downloader for pc - Télécharger - Téléchargement & Transfert
- Forcer demarrage pc - Guide
8 réponses
bonjour, pourquoi cela Platform: Windows XP SP2 installes le SP3 de xp https://www.commentcamarche.net/telecharger/systemes-d-exploitation/20759-sp3-windows-xp/ et après pour y voir plus claire que avec hijackthis postes plutôt un zhpdiag , merci
Ouvre ce lien et télécharge ZHPDiag :
https://www.zebulon.fr/telechargements/securite/systeme/zhpdiag.html
cliques sur télécharger "celui du bas"
ou directement ici: ftp://zebulon.fr/ZHPDiag2.exe
Enregistres le sur ton Bureau.
Une fois le téléchargement achevé
pour XP, double-clique sur ZHPDiag
pour Vista,et seven tu fais un clic droit sur l'icône et exécute en tant qu'administrateur.
N'oublies pas de cocher la case qui permet de mettre un raccourci sur le Bureau.
/|\ l'outil a créé 2 icônes ZHPDiag et ZHPFix.
Double cliques sur le raccourci ZHPDiag sur ton Bureau pour XP sinon clique droit et en tant que administrateur !!
Cliques sur la loupe pour lancer l'analyse.
si tu as un message te demandant la validation pour SIGCHECK acceptes avec OK cela est pour nous faire un rapport plus complet et pouvoir en faire une lecture plus approfondis
Laisses l'outil travailler, il peut être assez long
A la fin de l'analyse,clique sur l'appareil photo et enregistre le rapport sur ton Bureau.
Fermes ZHPDiag en fin d'analyse.
Pour me le transmettre clique sur ce lien :
https://www.cjoint.com/
Clique sur Parcourir et cherche le fichier C:\Documents and settings\le_nom_de_ta_session\bureau\.ZHPDiag.txt
ou directement en choisissant bureau et ZHPDiag.txt clique dessus
Clique sur Ouvrir.
Clique sur "Cliquez ici pour déposer le fichier".
Un lien de cette forme :
http://www.cijoint.fr/cjlink.php?file=cj200905/cib7SU.txt
est ajouté dans la page.
Copie ce lien dans ta réponse.
et si problème passe par celui ci : http://pjjoint.malekal.com/
Ouvre ce lien et télécharge ZHPDiag :
https://www.zebulon.fr/telechargements/securite/systeme/zhpdiag.html
cliques sur télécharger "celui du bas"
ou directement ici: ftp://zebulon.fr/ZHPDiag2.exe
Enregistres le sur ton Bureau.
Une fois le téléchargement achevé
pour XP, double-clique sur ZHPDiag
pour Vista,et seven tu fais un clic droit sur l'icône et exécute en tant qu'administrateur.
N'oublies pas de cocher la case qui permet de mettre un raccourci sur le Bureau.
/|\ l'outil a créé 2 icônes ZHPDiag et ZHPFix.
Double cliques sur le raccourci ZHPDiag sur ton Bureau pour XP sinon clique droit et en tant que administrateur !!
Cliques sur la loupe pour lancer l'analyse.
si tu as un message te demandant la validation pour SIGCHECK acceptes avec OK cela est pour nous faire un rapport plus complet et pouvoir en faire une lecture plus approfondis
Laisses l'outil travailler, il peut être assez long
A la fin de l'analyse,clique sur l'appareil photo et enregistre le rapport sur ton Bureau.
Fermes ZHPDiag en fin d'analyse.
Pour me le transmettre clique sur ce lien :
https://www.cjoint.com/
Clique sur Parcourir et cherche le fichier C:\Documents and settings\le_nom_de_ta_session\bureau\.ZHPDiag.txt
ou directement en choisissant bureau et ZHPDiag.txt clique dessus
Clique sur Ouvrir.
Clique sur "Cliquez ici pour déposer le fichier".
Un lien de cette forme :
http://www.cijoint.fr/cjlink.php?file=cj200905/cib7SU.txt
est ajouté dans la page.
Copie ce lien dans ta réponse.
et si problème passe par celui ci : http://pjjoint.malekal.com/
Bonjour Jacques,
Tout d'abord, merci de ton aide.
Pour ce qui est de SP3, j'ai essayé à plusieurs reprises de l'installer mais à chaque fois, mon PC plante... et bien sûr, je ne saurais dire pourquoi... J'ai donc pris le parti de ne pas l'installer... c'est grave docteur ? :)
Ensuite, lorsque je lance ZHP, il mouline jusqu'à 1% puis un message d'erreur apparait pour un accès refusé à un dossier "C:\Documents and Settings\HP_Propriétaire\Local Settings\Application Data\Google\Chrome\User Data\Default\preferences"... du coup ZHP se "bloque" et l'analyse ne continue pas...
Comme je ne suis pas très doué, je ne sais pas trop quoi faire...
Merci encore de ton aide !
Tout d'abord, merci de ton aide.
Pour ce qui est de SP3, j'ai essayé à plusieurs reprises de l'installer mais à chaque fois, mon PC plante... et bien sûr, je ne saurais dire pourquoi... J'ai donc pris le parti de ne pas l'installer... c'est grave docteur ? :)
Ensuite, lorsque je lance ZHP, il mouline jusqu'à 1% puis un message d'erreur apparait pour un accès refusé à un dossier "C:\Documents and Settings\HP_Propriétaire\Local Settings\Application Data\Google\Chrome\User Data\Default\preferences"... du coup ZHP se "bloque" et l'analyse ne continue pas...
Comme je ne suis pas très doué, je ne sais pas trop quoi faire...
Merci encore de ton aide !
c'est grave docteur ? :) oui car un pc pas à jour est beaucoup plus vulnérable au attaque des Malwares !!!
bizarre que zhpdiag passe pas c'est justes un outil de diagnostique !!
bon on va faire autrement tu as toujours hijackthis sur ton pc tu vas fixer les ligne donnés avec et puis tu passeras près scan
1) Fixer les lignes
.Tu fermes tout les programmes ouverts y compris le navigateur. sauf ton anti-virus et pare-feux
.Lances HijackThis
.Cliques sur "Do a system scan only"
.Tu coches les lignes suivantes :
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O4 - .DEFAULT User Startup: AutoTBar.exe (User 'Default user') => Hewlett Paclkard HP View
O4 - HKLM\..\Run: [Ad-Aware Browsing Protection] "C:\Documents and Settings\All Users\Application Data\Ad-Aware Browsing Protection\adawarebp.exe
O4 - HKLM\..\Run: [AlcxMonitor] ALCXMNTR.EXE
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
.Tu cliques sur "Fix Checked"
.Tu fermes HijackThis
des expliquations en images : http://pagesperso-orange.fr/rginformatique/section%20virus/demohijack.htm
2) passes prés scan
desactive ton antivirus
desactive Windows defender si présent
desactive ton pare-feu
Ferme toutes tes appilications en cours
telecharge et enregistre ceci sur ton bureau : Pre_Scan
si problème lien mirroir
s'il n'est pas sur ton bureau coupe-le de ton dossier telechargements et colle-le sur ton bureau
Avertissement: Il y aura une extinction courte du bureau --> pas de panique.
une fois telechargé lance-le , laisse faire le scan jusqu'à l'apparition de "Pre_scan.txt" sur le bureau.
si l'outil est bloqué par l'infection utilise cette version :Version .pif
si l'outil detecte un proxy et que tu n'en as pas installé clique sur "supprimer le proxy"
si l'outil semble ne pas avoir fonctionné renomme-le winlogon , ou change son extension en .com ou .scr
Il se peut que l'outil soit un peu long sur la reattribution des fichiers tout depend combien tu en as , laisse-le travailler
Poste Pre_Scan.txt qui apparaitra sur le bureau en fin de scan
▶▶▶ NE LE POSTE PAS SUR LE FORUM (il est trop long)
clique sur ce lien : http://www.cijoint.fr/
▶ Clique sur Parcourir et cherche le fichier ci-dessus.
▶ Clique sur Ouvrir.
▶ Clique sur "Cliquez ici pour déposer le fichier".
Un lien de cette forme :
http://www.cijoint.fr/cjlink.php?file=cjge368/cijSKAP5fU.txt
est ajouté dans la page.
▶ Copie ce lien dans ta réponse.
bizarre que zhpdiag passe pas c'est justes un outil de diagnostique !!
bon on va faire autrement tu as toujours hijackthis sur ton pc tu vas fixer les ligne donnés avec et puis tu passeras près scan
1) Fixer les lignes
.Tu fermes tout les programmes ouverts y compris le navigateur. sauf ton anti-virus et pare-feux
.Lances HijackThis
.Cliques sur "Do a system scan only"
.Tu coches les lignes suivantes :
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O4 - .DEFAULT User Startup: AutoTBar.exe (User 'Default user') => Hewlett Paclkard HP View
O4 - HKLM\..\Run: [Ad-Aware Browsing Protection] "C:\Documents and Settings\All Users\Application Data\Ad-Aware Browsing Protection\adawarebp.exe
O4 - HKLM\..\Run: [AlcxMonitor] ALCXMNTR.EXE
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
.Tu cliques sur "Fix Checked"
.Tu fermes HijackThis
des expliquations en images : http://pagesperso-orange.fr/rginformatique/section%20virus/demohijack.htm
2) passes prés scan
desactive ton antivirus
desactive Windows defender si présent
desactive ton pare-feu
Ferme toutes tes appilications en cours
telecharge et enregistre ceci sur ton bureau : Pre_Scan
si problème lien mirroir
s'il n'est pas sur ton bureau coupe-le de ton dossier telechargements et colle-le sur ton bureau
Avertissement: Il y aura une extinction courte du bureau --> pas de panique.
une fois telechargé lance-le , laisse faire le scan jusqu'à l'apparition de "Pre_scan.txt" sur le bureau.
si l'outil est bloqué par l'infection utilise cette version :Version .pif
si l'outil detecte un proxy et que tu n'en as pas installé clique sur "supprimer le proxy"
si l'outil semble ne pas avoir fonctionné renomme-le winlogon , ou change son extension en .com ou .scr
Il se peut que l'outil soit un peu long sur la reattribution des fichiers tout depend combien tu en as , laisse-le travailler
Poste Pre_Scan.txt qui apparaitra sur le bureau en fin de scan
▶▶▶ NE LE POSTE PAS SUR LE FORUM (il est trop long)
clique sur ce lien : http://www.cijoint.fr/
▶ Clique sur Parcourir et cherche le fichier ci-dessus.
▶ Clique sur Ouvrir.
▶ Clique sur "Cliquez ici pour déposer le fichier".
Un lien de cette forme :
http://www.cijoint.fr/cjlink.php?file=cjge368/cijSKAP5fU.txt
est ajouté dans la page.
▶ Copie ce lien dans ta réponse.
Le site cijoint ne fonctionnait pas....
https://pjjoint.malekal.com/files.php?id=20111211_l15d6r8m11y5
Merci !
https://pjjoint.malekal.com/files.php?id=20111211_l15d6r8m11y5
Merci !
ok pourrais tu passer usbfix , merci
Télécharge USBFIX sur ton bureau
http://www.teamxscript.org/usbfixTelechargement.html
ou ici
http://eldesaparecido.com/tools/UsbFix.exe
/!\ Branche tes sources de données externes à ton PC, (clé USB, disque dur externe, etc...) susceptible d'avoir été infectées sans les ouvrir
* Double clic sur le raccourci UsbFix présent sur ton bureau .
* Choisis l'option 2 ( Suppression )
* Laisse travailler l'outil.
* Ensuite post le rapport UsbFix.txt qui apparaîtra.
* Note : Le rapport UsbFix.txt est sauvegardé a la racine du disque. ( C:\UsbFix.txt )
( CTRL+A Pour tout sélectionner , CTRL+C pour copier et CTRL+V pour coller )
* Note : "Process.exe", une composante de l'outil, est détecté par certains antivirus (AntiVir, Dr.Web, Kaspersky Anti-Virus) comme étant un RiskTool.
Il ne s'agit pas d'un virus, mais d'un utilitaire destiné à mettre fin à des processus.
* Tuto : http://pagesperso-orange.fr/nostools/tuto_usbfix2.html
Télécharge USBFIX sur ton bureau
http://www.teamxscript.org/usbfixTelechargement.html
ou ici
http://eldesaparecido.com/tools/UsbFix.exe
/!\ Branche tes sources de données externes à ton PC, (clé USB, disque dur externe, etc...) susceptible d'avoir été infectées sans les ouvrir
* Double clic sur le raccourci UsbFix présent sur ton bureau .
* Choisis l'option 2 ( Suppression )
* Laisse travailler l'outil.
* Ensuite post le rapport UsbFix.txt qui apparaîtra.
* Note : Le rapport UsbFix.txt est sauvegardé a la racine du disque. ( C:\UsbFix.txt )
( CTRL+A Pour tout sélectionner , CTRL+C pour copier et CTRL+V pour coller )
* Note : "Process.exe", une composante de l'outil, est détecté par certains antivirus (AntiVir, Dr.Web, Kaspersky Anti-Virus) comme étant un RiskTool.
Il ne s'agit pas d'un virus, mais d'un utilitaire destiné à mettre fin à des processus.
* Tuto : http://pagesperso-orange.fr/nostools/tuto_usbfix2.html
Usbfix est entrain de mouliner...
Après réflexion... Je ne pense pas avoir ete infecte par l'une de mes sources externess tje les ai bien entendu branchees malgre tout) mais pltot par clef usb d'une personne qui l'a fait sciement....
En attendant le rapport, tu peux dire plus sur les causes et consequences du pb stp?
Merci bcp!
Après réflexion... Je ne pense pas avoir ete infecte par l'une de mes sources externess tje les ai bien entendu branchees malgre tout) mais pltot par clef usb d'une personne qui l'a fait sciement....
En attendant le rapport, tu peux dire plus sur les causes et consequences du pb stp?
Merci bcp!
si je te fais passer usbfix c'est que près scan me fait voir des choses qui me font penser que usbfix devrait trouver et nettoyer des choses , après tu vois pour faire tdsskiller car pareil des choses !!
Télécharge TDSSKiller (de Kaspersky Labs) sur ton Bureau.
Lance le (si tu utilises Windows Vista ou 7 : fais un clic-droit dessus et choisis "Exécuter en tant qu'administrateur")
Clique sur [Start Scan] pour démarrer l'analyse.
Si des éléments sont trouvés, clique sur [Continue] puis sur [Reboot Now]
Un rapport s'ouvrira au redémarrage de l'ordinateur.
Copie/colle son contenu dans ta prochaine réponse.
Note : Le rapport se trouve également sous C:\TDSSKiller.N°deversion_Date_Heure_log.txt
Télécharge TDSSKiller (de Kaspersky Labs) sur ton Bureau.
Lance le (si tu utilises Windows Vista ou 7 : fais un clic-droit dessus et choisis "Exécuter en tant qu'administrateur")
Clique sur [Start Scan] pour démarrer l'analyse.
Si des éléments sont trouvés, clique sur [Continue] puis sur [Reboot Now]
Un rapport s'ouvrira au redémarrage de l'ordinateur.
Copie/colle son contenu dans ta prochaine réponse.
Note : Le rapport se trouve également sous C:\TDSSKiller.N°deversion_Date_Heure_log.txt
Vous n’avez pas trouvé la réponse que vous recherchez ?
Posez votre question
Haaaa ok ! - Tout de suite j'deviens parano :=)
TDS Killer en cours...
Rapport USB Fix (redémarrage après le scan)
############################## | UsbFix V 7.072 | [Suppression]
Utilisateur: HP_Propriétaire (Administrateur) # MÉZON
Mis à jour le 04/12/2011 par El Desaparecido
Lancé à 21:16:14 | 11/12/2011
Site Web: https://www.sosvirus.net/
Fichier suspect ? : http://eldesaparecido.com/support.php
Contact: contact@eldesaparecido.com
PC: HP Pavilion 061 (PX611AA-ABF w5029.fr) (X86-based PC) # Desktop Computer
CPU: AMD Athlon(tm) 64 Processor 3200+ (1989)
RAM -> [ Total : 510 | Free : 178 ]
BIOS: Phoenix - Award BIOS v6.00PG
BOOT: Normal boot
OS: Microsoft Windows XP Édition familiale (5.1.2600 32-Bit) # Service Pack 2
WB: Windows Internet Explorer 8.0.6001.18702
SC: Security Center Service [ Enabled ]
WU: Windows Update Service [ Enabled ]
FW: Windows FireWall Service [ Enabled ]
C:\ (%systemdrive%) -> Disque fixe # 182 Go (29 Go libre(s) - 16%) [HP_PAVILION] # NTFS
F:\ -> Disque fixe # 4 Go (381 Mo libre(s) - 10%) [HP_RECOVERY] # FAT32
G:\ -> CD-ROM
L:\ -> CD-ROM
N:\ -> Disque fixe # 75 Go (24 Go libre(s) - 33%) [] # NTFS
################## | Processus Actif |
C:\WINDOWS\System32\smss.exe (560)
C:\WINDOWS\system32\winlogon.exe (660)
C:\WINDOWS\system32\services.exe (704)
C:\WINDOWS\system32\lsass.exe (716)
C:\WINDOWS\system32\Ati2evxx.exe (892)
C:\WINDOWS\system32\svchost.exe (908)
C:\WINDOWS\System32\svchost.exe (1040)
C:\Program Files\AVAST Software\Avast\AvastSvc.exe (1280)
C:\WINDOWS\system32\Ati2evxx.exe (1808)
C:\WINDOWS\system32\spoolsv.exe (2044)
C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe (356)
C:\windows\system\hpsysdrv.exe (432)
C:\Program Files\Java\jre6\bin\jqs.exe (608)
C:\WINDOWS\system32\ps2.exe (924)
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe (1076)
C:\Program Files\Fichiers communs\LogiShrd\LVCOMSER\LVComSer.exe (1072)
C:\Program Files\Fichiers communs\LogiShrd\LVMVFM\LVPrcSrv.exe (1700)
C:\Program Files\AVAST Software\Avast\avastUI.exe (1660)
C:\Program Files\Logitech\SetPointP\SetPoint.exe (1936)
C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe (1176)
C:\WINDOWS\system32\svchost.exe (2292)
C:\Program Files\Fichiers communs\LogiShrd\LVCOMSER\LVComSer.exe (3216)
C:\WINDOWS\system32\wbem\wmiapsrv.exe (3900)
C:\Program Files\Fichiers communs\LogiShrd\LComMgr\Communications_Helper.exe (3352)
C:\Program Files\Fichiers communs\Logishrd\LQCVFX\COCIManager.exe (2240)
C:\WINDOWS\System32\svchost.exe (3304)
C:\WINDOWS\explorer.exe (2208)
C:\Program Files\Mozilla Firefox\firefox.exe (4888)
C:\WINDOWS\system32\ctfmon.exe (6296)
C:\Program Files\Mozilla Firefox\plugin-container.exe (7992)
C:\Program Files\Windows Live\Messenger\msnmsgr.exe (2548)
C:\Program Files\Windows Live\Contacts\wlcomm.exe (11168)
C:\UsbFix\UsbFix.exe (10632)
################## | Processus Stoppés |
Stoppé! C:\WINDOWS\system32\Ati2evxx.exe (892)
Stoppé! C:\Program Files\AVAST Software\Avast\AvastSvc.exe (1280)
Stoppé! C:\WINDOWS\system32\Ati2evxx.exe (1808)
Stoppé! C:\WINDOWS\system32\spoolsv.exe (2044)
Stoppé! C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe (356)
Stoppé! C:\windows\system\hpsysdrv.exe (432)
Stoppé! C:\Program Files\Java\jre6\bin\jqs.exe (608)
Stoppé! C:\WINDOWS\system32\ps2.exe (924)
Stoppé! C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe (1076)
Stoppé! C:\Program Files\Fichiers communs\LogiShrd\LVCOMSER\LVComSer.exe (1072)
Stoppé! C:\Program Files\Fichiers communs\LogiShrd\LVMVFM\LVPrcSrv.exe (1700)
Stoppé! C:\Program Files\AVAST Software\Avast\avastUI.exe (1660)
Stoppé! C:\Program Files\Logitech\SetPointP\SetPoint.exe (1936)
Stoppé! C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe (1176)
Stoppé! C:\Program Files\Fichiers communs\LogiShrd\LVCOMSER\LVComSer.exe (3216)
Stoppé! C:\WINDOWS\system32\wbem\wmiapsrv.exe (3900)
Stoppé! C:\Program Files\Fichiers communs\LogiShrd\LComMgr\Communications_Helper.exe (3352)
Stoppé! C:\Program Files\Fichiers communs\Logishrd\LQCVFX\COCIManager.exe (2240)
Stoppé! C:\Program Files\Mozilla Firefox\firefox.exe (4888)
Stoppé! C:\WINDOWS\system32\ctfmon.exe (6296)
Stoppé! C:\Program Files\Mozilla Firefox\plugin-container.exe (7992)
Stoppé! C:\Program Files\Windows Live\Messenger\msnmsgr.exe (2548)
Stoppé! C:\Program Files\Windows Live\Contacts\wlcomm.exe (11168)
################## | Éléments infectieux |
Non supprimé ! L:\SETUP.EXE
Non supprimé ! C:\Recycler\S-1-5-21-2049876236-3781780028-783844822-1007
Non supprimé ! C:\Recycler\S-1-5-21-222952791-2026080214-1112177135-1007
Supprimé! C:\Recycler\S-1-5-21-3748334293-2138993774-3663598932-1007
Supprimé! C:\Recycler\S-1-5-21-3748334293-2138993774-3663598932-500
Supprimé! N:\$RECYCLE.BIN\S-1-5-21-1945045038-3656882656-3961514917-1005
Supprimé! N:\$RECYCLE.BIN\S-1-5-21-3530748562-884855755-381394175-1000
Supprimé! N:\$RECYCLE.BIN\S-1-5-21-551853567-4199200838-1398638673-1000
Supprimé! N:\Recycler\S-1-5-21-1456199402-2633016801-3773879757-1006
Supprimé! N:\Recycler\S-1-5-21-1603062645-3409278220-361585077-1005
Supprimé! N:\Recycler\S-1-5-21-1993962763-527237240-839522115-76120
Supprimé! N:\Recycler\S-1-5-21-222952791-2026080214-1112177135-1007
Supprimé! N:\Recycler\S-1-5-21-3004327430-56898304-181802324-1005
Supprimé! N:\Recycler\S-1-5-21-3748334293-2138993774-3663598932-500
Non supprimé ! L:\AUTORUN.INF
Non supprimé ! L:\Updates
Supprimé! N:\autorun.inf
(!) Fichiers temporaires supprimés.
################## | Registre |
################## | Mountpoints2 |
################## | Listing |
[10/07/2008 - 17:30:51 | N | 1024] C:\.rnd
[08/08/2009 - 16:32:29 | D ] C:\87dd878ce02d54c92ad191653433627b
[28/04/2008 - 00:31:48 | D ] C:\ATI
[23/11/2004 - 22:21:48 | N | 0] C:\AUTOEXEC.BAT
[02/08/2011 - 21:15:03 | N | 218] C:\BOOT.BAK
[09/12/2011 - 21:55:39 | N | 296] C:\boot.ini
[05/08/2004 - 04:00:00 | N | 4952] C:\Bootfont.bin
[02/08/2011 - 21:32:41 | D ] C:\cmdcons
[05/08/2004 - 04:00:00 | N | 263488] C:\cmldr
[05/12/2011 - 20:14:01 | D ] C:\Config.Msi
[23/11/2004 - 22:21:48 | N | 0] C:\CONFIG.SYS
[09/04/2011 - 17:48:00 | D ] C:\CPM
[02/08/2011 - 21:46:16 | D ] C:\Documents and Settings
[17/11/2009 - 15:53:54 | D ] C:\Download
[04/12/2011 - 14:01:16 | N | 43] C:\END
[13/02/2011 - 21:50:14 | D ] C:\FreePack
[11/12/2011 - 13:23:28 | ASH | 535351296] C:\hiberfil.sys
[05/12/2011 - 16:18:17 | D ] C:\hp
[01/01/2005 - 19:05:48 | N | 2] C:\hpbi.log
[23/11/2004 - 22:21:48 | N | 0] C:\IO.SYS
[11/12/2011 - 18:34:04 | D ] C:\Kill'em
[20/12/2008 - 20:42:18 | N | 0] C:\log_lobby.txt
[20/12/2008 - 20:42:18 | N | 0] C:\log_lobby_dumper.txt
[23/11/2004 - 22:21:48 | N | 0] C:\MSDOS.SYS
[28/04/2008 - 00:38:57 | RHD ] C:\MSOCache
[05/08/2004 - 04:00:00 | N | 47564] C:\NTDETECT.COM
[02/08/2011 - 23:34:42 | N | 252240] C:\ntldr
[29/02/2004 - 16:44:34 | N | 52576] C:\orange.bmp
[11/12/2011 - 13:23:27 | ASH | 805306368] C:\pagefile.sys
[11/12/2011 - 16:24:39 | D ] C:\Program Files
[01/01/2005 - 19:06:08 | D ] C:\Python22
[05/12/2011 - 22:21:10 | N | 1182] C:\rapport.txt
[11/12/2011 - 21:24:55 | SHD ] C:\RECYCLER
[08/10/2009 - 20:33:13 | N | 9640] C:\resetlog.txt
[02/08/2011 - 21:15:50 | D ] C:\sysprep
[10/12/2011 - 18:53:38 | SHD ] C:\System Volume Information
[01/01/2005 - 19:05:48 | D ] C:\system.sav
[11/08/2008 - 20:53:04 | D ] C:\temp
[24/08/2009 - 22:07:25 | D ] C:\TFPTools3_0
[24/08/2009 - 22:07:23 | ASH | 5120] C:\Thumbs.db
[17/11/2009 - 16:01:30 | D ] C:\tmpDownload
[11/12/2011 - 21:24:55 | D ] C:\UsbFix
[11/12/2011 - 21:24:56 | A | 5504] C:\UsbFix.txt
[25/08/2009 - 21:58:24 | D ] C:\users
[11/12/2011 - 18:45:41 | D ] C:\WINDOWS
[21/07/2008 - 21:55:03 | D ] C:\WorkTime Express
[13/02/2011 - 22:17:03 | D ] C:\YoutubeMusicDownloader
[11/12/2011 - 16:46:45 | D ] C:\ZHP
[28/07/2001 - 06:07:38 | N | 0] F:\AUTOEXEC.BAT
[09/01/2002 - 19:52:30 | N | 244] F:\BOOT.INI
[20/01/2005 - 05:14:30 | D ] F:\cmdcons
[17/08/2001 - 09:26:26 | N | 237728] F:\CMLDR
[28/07/2001 - 06:07:38 | N | 0] F:\CONFIG.SYS
[09/09/2002 - 23:14:14 | SH | 100] F:\Desktop.ini
[03/02/2007 - 19:14:52 | SHD ] F:\Recycled
[30/11/2004 - 20:01:50 | N | 73728] F:\Info.exe
[28/07/2001 - 06:07:38 | N | 0] F:\IO.SYS
[20/01/2005 - 05:14:32 | D ] F:\MiniNT
[28/07/2001 - 06:07:38 | N | 0] F:\MSDOS.SYS
[25/07/2001 - 22:00:00 | N | 45124] F:\NTDETECT.COM
[25/07/2001 - 22:00:00 | N | 222880] F:\NTLDR
[16/09/2004 - 22:50:06 | D ] F:\PRELOAD
[29/04/2004 - 23:37:18 | SH | 4096] F:\Thumbs.db
[09/02/2002 - 00:44:24 | N | 88038] F:\Warning.bmp
[31/12/2004 - 15:58:22 | N | 1552] F:\BATCH.LOG
[24/02/2004 - 09:38:52 | N | 498] F:\BATCH.OLD
[16/09/2004 - 07:27:24 | N | 6] F:\BLOCK.RIN
[10/09/2002 - 09:21:08 | N | 7850] F:\Folder.htt
[25/01/2002 - 10:21:24 | N | 0] F:\GRAPH16
[30/04/2001 - 12:16:46 | N | 14] F:\Graph
[08/07/2005 - 12:35:16 | N | 32] F:\HPCD.sys
[03/02/2007 - 00:41:34 | D ] F:\I386
[08/07/2005 - 12:35:18 | N | 904] F:\Master.log
[17/08/2001 - 07:32:24 | N | 0] F:\NTFS
[03/07/2005 - 11:59:18 | N | 26] F:\RCBoot.sys
[30/04/2001 - 12:16:46 | N | 14] F:\SVGA
[23/11/2004 - 08:39:42 | N | 36] F:\SaveFile.Dir
[01/03/2005 - 08:39:34 | N | 2213] F:\Softthinks_MLSP_ALL_BLU_WW.txt
[01/03/2005 - 08:39:48 | N | 7] F:\Softthinks_MLSP_ALL_BLU_WW-01.block
[03/02/2007 - 01:30:54 | D ] F:\Tools
[18/08/2001 - 07:00:00 | N | 10] F:\WIN51
[22/01/2001 - 07:00:00 | N | 11] F:\WIN51.B2
[25/07/2001 - 07:00:00 | N | 11] F:\WIN51.RC1
[25/07/2001 - 12:47:04 | N | 11] F:\WIN51.RC2
[18/08/2001 - 07:00:00 | N | 10] F:\WIN51IC
[20/03/2001 - 07:00:00 | N | 11] F:\WIN51IC.B2
[25/07/2001 - 07:00:00 | N | 11] F:\WIN51IC.RC1
[25/07/2001 - 07:00:00 | N | 11] F:\WIN51IC.RC2
[17/08/2001 - 07:00:00 | N | 10] F:\WIN51IP
[22/01/2001 - 07:00:00 | N | 11] F:\WIN51IP.B2
[25/07/2001 - 12:47:04 | N | 11] F:\WIN51IP.RC2
[17/08/2001 - 05:17:02 | N | 184] F:\WINBOM.INI
[03/02/2007 - 01:33:22 | D ] F:\hp
[01/02/2005 - 06:49:04 | N | 535] F:\install.bat
[10/09/2002 - 06:58:12 | N | 181616] F:\protect.ed
[03/02/2007 - 01:33:24 | D ] F:\Réinstallation Système
[03/02/2007 - 01:33:24 | N | 18] F:\USER
[03/02/2007 - 01:46:38 | SHD ] F:\System Volume Information
[21/11/2006 - 22:59:15 | RD ] L:\ACCESS.FR-FR
[21/11/2006 - 22:59:27 | RD ] L:\ADMIN
[28/10/2006 - 03:01:12 | R | 175] L:\AUTORUN.INF
[21/11/2006 - 22:59:30 | RD ] L:\CATALOG
[21/11/2006 - 22:59:31 | RD ] L:\EXCEL.FR-FR
[21/11/2006 - 22:59:33 | RD ] L:\INFOPATH.FR-FR
[28/10/2006 - 02:52:42 | R | 2599] L:\LISEZMOI.HTM
[21/11/2006 - 22:59:34 | RD ] L:\OFFICE.FR-FR
[21/11/2006 - 22:59:34 | RD ] L:\OFFICE64.FR-FR
[21/11/2006 - 22:59:35 | RD ] L:\OUTLOOK.FR-FR
[21/11/2006 - 22:59:36 | RD ] L:\POWERPOINT.FR-FR
[21/11/2006 - 22:59:38 | RD ] L:\PROOFING.FR-FR
[21/11/2006 - 22:59:45 | RD ] L:\PROPLUS.WW
[21/11/2006 - 22:59:45 | RD ] L:\PUBLISHER.FR-FR
[21/11/2006 - 22:59:45 | RD ] L:\ROSEBUD.FR-FR
[28/10/2006 - 03:01:12 | R | 463152] L:\SETUP.EXE
[28/08/2006 - 08:55:56 | R | 713288] L:\SaveAsPDFandXPS.exe
[26/11/2006 - 17:49:37 | R | 29] L:\Serial {Microsoft Office 2007 Pro.}.txt
[16/11/2006 - 14:46:23 | RD ] L:\UPDATES
[21/11/2006 - 22:59:46 | RD ] L:\WORD.FR-FR
[11/12/2011 - 21:19:51 | SHD ] N:\$RECYCLE.BIN
[23/02/2011 - 18:46:30 | N | 465208126] N:\Amy Winehouse - Live BBC 1 Sessions.Concert At Porchester Hall - London, UK (2007).video.avi
[19/02/2011 - 20:10:40 | N | 732064650] N:\Amy Winehouse_(concert_Les Eurockeennes de Belfort 2007).avi
[30/08/2011 - 13:33:30 | | 107185152] N:\Archives.pst
[03/08/2011 - 15:56:42 | D ] N:\Films
[23/01/2011 - 17:40:38 | N | 805764608] N:\Mathieu Chedid - En tête à tête ( Live 2005).avi
[23/01/2011 - 16:50:08 | N | 734035968] N:\Mathieu Chedid - Le Tour De M - Concert À L'olympia.avi
[09/08/2007 - 02:44:54 | N | 79371] N:\Maxtor_Portable.ico
[24/07/2011 - 19:00:54 | D ] N:\Mes images 2
[24/06/2011 - 13:35:14 | D ] N:\MOffice
[03/08/2011 - 16:00:13 | D ] N:\Music
[02/05/2007 - 07:23:38 | N | 561424384] N:\Office 2007 Pro Fr {Final v12 Serial - Windows 2003, Xp & Vista}.iso
[11/12/2011 - 21:24:55 | SHD ] N:\RECYCLER
[08/11/2011 - 17:23:12 | D ] N:\Serieux
[30/03/2011 - 13:18:08 | SHD ] N:\System Volume Information
[21/01/2011 - 14:39:24 | N | 728408804] N:\Vanessa Paradis - Une Nuit A Versailles 2010.avi
[30/08/2011 - 13:09:58 | T | 65536] N:\~Archives.pst.tmp
################## | Vaccin |
C:\Autorun.inf -> Vaccin créé par UsbFix (El Desaparecido)
F:\Autorun.inf -> Vaccin créé par UsbFix (El Desaparecido)
N:\Autorun.inf -> Vaccin créé par UsbFix (El Desaparecido)
################## | Reboot |
L'ordinateur à été redémarré!
################## | E.O.F |
TDS Killer en cours...
Rapport USB Fix (redémarrage après le scan)
############################## | UsbFix V 7.072 | [Suppression]
Utilisateur: HP_Propriétaire (Administrateur) # MÉZON
Mis à jour le 04/12/2011 par El Desaparecido
Lancé à 21:16:14 | 11/12/2011
Site Web: https://www.sosvirus.net/
Fichier suspect ? : http://eldesaparecido.com/support.php
Contact: contact@eldesaparecido.com
PC: HP Pavilion 061 (PX611AA-ABF w5029.fr) (X86-based PC) # Desktop Computer
CPU: AMD Athlon(tm) 64 Processor 3200+ (1989)
RAM -> [ Total : 510 | Free : 178 ]
BIOS: Phoenix - Award BIOS v6.00PG
BOOT: Normal boot
OS: Microsoft Windows XP Édition familiale (5.1.2600 32-Bit) # Service Pack 2
WB: Windows Internet Explorer 8.0.6001.18702
SC: Security Center Service [ Enabled ]
WU: Windows Update Service [ Enabled ]
FW: Windows FireWall Service [ Enabled ]
C:\ (%systemdrive%) -> Disque fixe # 182 Go (29 Go libre(s) - 16%) [HP_PAVILION] # NTFS
F:\ -> Disque fixe # 4 Go (381 Mo libre(s) - 10%) [HP_RECOVERY] # FAT32
G:\ -> CD-ROM
L:\ -> CD-ROM
N:\ -> Disque fixe # 75 Go (24 Go libre(s) - 33%) [] # NTFS
################## | Processus Actif |
C:\WINDOWS\System32\smss.exe (560)
C:\WINDOWS\system32\winlogon.exe (660)
C:\WINDOWS\system32\services.exe (704)
C:\WINDOWS\system32\lsass.exe (716)
C:\WINDOWS\system32\Ati2evxx.exe (892)
C:\WINDOWS\system32\svchost.exe (908)
C:\WINDOWS\System32\svchost.exe (1040)
C:\Program Files\AVAST Software\Avast\AvastSvc.exe (1280)
C:\WINDOWS\system32\Ati2evxx.exe (1808)
C:\WINDOWS\system32\spoolsv.exe (2044)
C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe (356)
C:\windows\system\hpsysdrv.exe (432)
C:\Program Files\Java\jre6\bin\jqs.exe (608)
C:\WINDOWS\system32\ps2.exe (924)
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe (1076)
C:\Program Files\Fichiers communs\LogiShrd\LVCOMSER\LVComSer.exe (1072)
C:\Program Files\Fichiers communs\LogiShrd\LVMVFM\LVPrcSrv.exe (1700)
C:\Program Files\AVAST Software\Avast\avastUI.exe (1660)
C:\Program Files\Logitech\SetPointP\SetPoint.exe (1936)
C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe (1176)
C:\WINDOWS\system32\svchost.exe (2292)
C:\Program Files\Fichiers communs\LogiShrd\LVCOMSER\LVComSer.exe (3216)
C:\WINDOWS\system32\wbem\wmiapsrv.exe (3900)
C:\Program Files\Fichiers communs\LogiShrd\LComMgr\Communications_Helper.exe (3352)
C:\Program Files\Fichiers communs\Logishrd\LQCVFX\COCIManager.exe (2240)
C:\WINDOWS\System32\svchost.exe (3304)
C:\WINDOWS\explorer.exe (2208)
C:\Program Files\Mozilla Firefox\firefox.exe (4888)
C:\WINDOWS\system32\ctfmon.exe (6296)
C:\Program Files\Mozilla Firefox\plugin-container.exe (7992)
C:\Program Files\Windows Live\Messenger\msnmsgr.exe (2548)
C:\Program Files\Windows Live\Contacts\wlcomm.exe (11168)
C:\UsbFix\UsbFix.exe (10632)
################## | Processus Stoppés |
Stoppé! C:\WINDOWS\system32\Ati2evxx.exe (892)
Stoppé! C:\Program Files\AVAST Software\Avast\AvastSvc.exe (1280)
Stoppé! C:\WINDOWS\system32\Ati2evxx.exe (1808)
Stoppé! C:\WINDOWS\system32\spoolsv.exe (2044)
Stoppé! C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe (356)
Stoppé! C:\windows\system\hpsysdrv.exe (432)
Stoppé! C:\Program Files\Java\jre6\bin\jqs.exe (608)
Stoppé! C:\WINDOWS\system32\ps2.exe (924)
Stoppé! C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe (1076)
Stoppé! C:\Program Files\Fichiers communs\LogiShrd\LVCOMSER\LVComSer.exe (1072)
Stoppé! C:\Program Files\Fichiers communs\LogiShrd\LVMVFM\LVPrcSrv.exe (1700)
Stoppé! C:\Program Files\AVAST Software\Avast\avastUI.exe (1660)
Stoppé! C:\Program Files\Logitech\SetPointP\SetPoint.exe (1936)
Stoppé! C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe (1176)
Stoppé! C:\Program Files\Fichiers communs\LogiShrd\LVCOMSER\LVComSer.exe (3216)
Stoppé! C:\WINDOWS\system32\wbem\wmiapsrv.exe (3900)
Stoppé! C:\Program Files\Fichiers communs\LogiShrd\LComMgr\Communications_Helper.exe (3352)
Stoppé! C:\Program Files\Fichiers communs\Logishrd\LQCVFX\COCIManager.exe (2240)
Stoppé! C:\Program Files\Mozilla Firefox\firefox.exe (4888)
Stoppé! C:\WINDOWS\system32\ctfmon.exe (6296)
Stoppé! C:\Program Files\Mozilla Firefox\plugin-container.exe (7992)
Stoppé! C:\Program Files\Windows Live\Messenger\msnmsgr.exe (2548)
Stoppé! C:\Program Files\Windows Live\Contacts\wlcomm.exe (11168)
################## | Éléments infectieux |
Non supprimé ! L:\SETUP.EXE
Non supprimé ! C:\Recycler\S-1-5-21-2049876236-3781780028-783844822-1007
Non supprimé ! C:\Recycler\S-1-5-21-222952791-2026080214-1112177135-1007
Supprimé! C:\Recycler\S-1-5-21-3748334293-2138993774-3663598932-1007
Supprimé! C:\Recycler\S-1-5-21-3748334293-2138993774-3663598932-500
Supprimé! N:\$RECYCLE.BIN\S-1-5-21-1945045038-3656882656-3961514917-1005
Supprimé! N:\$RECYCLE.BIN\S-1-5-21-3530748562-884855755-381394175-1000
Supprimé! N:\$RECYCLE.BIN\S-1-5-21-551853567-4199200838-1398638673-1000
Supprimé! N:\Recycler\S-1-5-21-1456199402-2633016801-3773879757-1006
Supprimé! N:\Recycler\S-1-5-21-1603062645-3409278220-361585077-1005
Supprimé! N:\Recycler\S-1-5-21-1993962763-527237240-839522115-76120
Supprimé! N:\Recycler\S-1-5-21-222952791-2026080214-1112177135-1007
Supprimé! N:\Recycler\S-1-5-21-3004327430-56898304-181802324-1005
Supprimé! N:\Recycler\S-1-5-21-3748334293-2138993774-3663598932-500
Non supprimé ! L:\AUTORUN.INF
Non supprimé ! L:\Updates
Supprimé! N:\autorun.inf
(!) Fichiers temporaires supprimés.
################## | Registre |
################## | Mountpoints2 |
################## | Listing |
[10/07/2008 - 17:30:51 | N | 1024] C:\.rnd
[08/08/2009 - 16:32:29 | D ] C:\87dd878ce02d54c92ad191653433627b
[28/04/2008 - 00:31:48 | D ] C:\ATI
[23/11/2004 - 22:21:48 | N | 0] C:\AUTOEXEC.BAT
[02/08/2011 - 21:15:03 | N | 218] C:\BOOT.BAK
[09/12/2011 - 21:55:39 | N | 296] C:\boot.ini
[05/08/2004 - 04:00:00 | N | 4952] C:\Bootfont.bin
[02/08/2011 - 21:32:41 | D ] C:\cmdcons
[05/08/2004 - 04:00:00 | N | 263488] C:\cmldr
[05/12/2011 - 20:14:01 | D ] C:\Config.Msi
[23/11/2004 - 22:21:48 | N | 0] C:\CONFIG.SYS
[09/04/2011 - 17:48:00 | D ] C:\CPM
[02/08/2011 - 21:46:16 | D ] C:\Documents and Settings
[17/11/2009 - 15:53:54 | D ] C:\Download
[04/12/2011 - 14:01:16 | N | 43] C:\END
[13/02/2011 - 21:50:14 | D ] C:\FreePack
[11/12/2011 - 13:23:28 | ASH | 535351296] C:\hiberfil.sys
[05/12/2011 - 16:18:17 | D ] C:\hp
[01/01/2005 - 19:05:48 | N | 2] C:\hpbi.log
[23/11/2004 - 22:21:48 | N | 0] C:\IO.SYS
[11/12/2011 - 18:34:04 | D ] C:\Kill'em
[20/12/2008 - 20:42:18 | N | 0] C:\log_lobby.txt
[20/12/2008 - 20:42:18 | N | 0] C:\log_lobby_dumper.txt
[23/11/2004 - 22:21:48 | N | 0] C:\MSDOS.SYS
[28/04/2008 - 00:38:57 | RHD ] C:\MSOCache
[05/08/2004 - 04:00:00 | N | 47564] C:\NTDETECT.COM
[02/08/2011 - 23:34:42 | N | 252240] C:\ntldr
[29/02/2004 - 16:44:34 | N | 52576] C:\orange.bmp
[11/12/2011 - 13:23:27 | ASH | 805306368] C:\pagefile.sys
[11/12/2011 - 16:24:39 | D ] C:\Program Files
[01/01/2005 - 19:06:08 | D ] C:\Python22
[05/12/2011 - 22:21:10 | N | 1182] C:\rapport.txt
[11/12/2011 - 21:24:55 | SHD ] C:\RECYCLER
[08/10/2009 - 20:33:13 | N | 9640] C:\resetlog.txt
[02/08/2011 - 21:15:50 | D ] C:\sysprep
[10/12/2011 - 18:53:38 | SHD ] C:\System Volume Information
[01/01/2005 - 19:05:48 | D ] C:\system.sav
[11/08/2008 - 20:53:04 | D ] C:\temp
[24/08/2009 - 22:07:25 | D ] C:\TFPTools3_0
[24/08/2009 - 22:07:23 | ASH | 5120] C:\Thumbs.db
[17/11/2009 - 16:01:30 | D ] C:\tmpDownload
[11/12/2011 - 21:24:55 | D ] C:\UsbFix
[11/12/2011 - 21:24:56 | A | 5504] C:\UsbFix.txt
[25/08/2009 - 21:58:24 | D ] C:\users
[11/12/2011 - 18:45:41 | D ] C:\WINDOWS
[21/07/2008 - 21:55:03 | D ] C:\WorkTime Express
[13/02/2011 - 22:17:03 | D ] C:\YoutubeMusicDownloader
[11/12/2011 - 16:46:45 | D ] C:\ZHP
[28/07/2001 - 06:07:38 | N | 0] F:\AUTOEXEC.BAT
[09/01/2002 - 19:52:30 | N | 244] F:\BOOT.INI
[20/01/2005 - 05:14:30 | D ] F:\cmdcons
[17/08/2001 - 09:26:26 | N | 237728] F:\CMLDR
[28/07/2001 - 06:07:38 | N | 0] F:\CONFIG.SYS
[09/09/2002 - 23:14:14 | SH | 100] F:\Desktop.ini
[03/02/2007 - 19:14:52 | SHD ] F:\Recycled
[30/11/2004 - 20:01:50 | N | 73728] F:\Info.exe
[28/07/2001 - 06:07:38 | N | 0] F:\IO.SYS
[20/01/2005 - 05:14:32 | D ] F:\MiniNT
[28/07/2001 - 06:07:38 | N | 0] F:\MSDOS.SYS
[25/07/2001 - 22:00:00 | N | 45124] F:\NTDETECT.COM
[25/07/2001 - 22:00:00 | N | 222880] F:\NTLDR
[16/09/2004 - 22:50:06 | D ] F:\PRELOAD
[29/04/2004 - 23:37:18 | SH | 4096] F:\Thumbs.db
[09/02/2002 - 00:44:24 | N | 88038] F:\Warning.bmp
[31/12/2004 - 15:58:22 | N | 1552] F:\BATCH.LOG
[24/02/2004 - 09:38:52 | N | 498] F:\BATCH.OLD
[16/09/2004 - 07:27:24 | N | 6] F:\BLOCK.RIN
[10/09/2002 - 09:21:08 | N | 7850] F:\Folder.htt
[25/01/2002 - 10:21:24 | N | 0] F:\GRAPH16
[30/04/2001 - 12:16:46 | N | 14] F:\Graph
[08/07/2005 - 12:35:16 | N | 32] F:\HPCD.sys
[03/02/2007 - 00:41:34 | D ] F:\I386
[08/07/2005 - 12:35:18 | N | 904] F:\Master.log
[17/08/2001 - 07:32:24 | N | 0] F:\NTFS
[03/07/2005 - 11:59:18 | N | 26] F:\RCBoot.sys
[30/04/2001 - 12:16:46 | N | 14] F:\SVGA
[23/11/2004 - 08:39:42 | N | 36] F:\SaveFile.Dir
[01/03/2005 - 08:39:34 | N | 2213] F:\Softthinks_MLSP_ALL_BLU_WW.txt
[01/03/2005 - 08:39:48 | N | 7] F:\Softthinks_MLSP_ALL_BLU_WW-01.block
[03/02/2007 - 01:30:54 | D ] F:\Tools
[18/08/2001 - 07:00:00 | N | 10] F:\WIN51
[22/01/2001 - 07:00:00 | N | 11] F:\WIN51.B2
[25/07/2001 - 07:00:00 | N | 11] F:\WIN51.RC1
[25/07/2001 - 12:47:04 | N | 11] F:\WIN51.RC2
[18/08/2001 - 07:00:00 | N | 10] F:\WIN51IC
[20/03/2001 - 07:00:00 | N | 11] F:\WIN51IC.B2
[25/07/2001 - 07:00:00 | N | 11] F:\WIN51IC.RC1
[25/07/2001 - 07:00:00 | N | 11] F:\WIN51IC.RC2
[17/08/2001 - 07:00:00 | N | 10] F:\WIN51IP
[22/01/2001 - 07:00:00 | N | 11] F:\WIN51IP.B2
[25/07/2001 - 12:47:04 | N | 11] F:\WIN51IP.RC2
[17/08/2001 - 05:17:02 | N | 184] F:\WINBOM.INI
[03/02/2007 - 01:33:22 | D ] F:\hp
[01/02/2005 - 06:49:04 | N | 535] F:\install.bat
[10/09/2002 - 06:58:12 | N | 181616] F:\protect.ed
[03/02/2007 - 01:33:24 | D ] F:\Réinstallation Système
[03/02/2007 - 01:33:24 | N | 18] F:\USER
[03/02/2007 - 01:46:38 | SHD ] F:\System Volume Information
[21/11/2006 - 22:59:15 | RD ] L:\ACCESS.FR-FR
[21/11/2006 - 22:59:27 | RD ] L:\ADMIN
[28/10/2006 - 03:01:12 | R | 175] L:\AUTORUN.INF
[21/11/2006 - 22:59:30 | RD ] L:\CATALOG
[21/11/2006 - 22:59:31 | RD ] L:\EXCEL.FR-FR
[21/11/2006 - 22:59:33 | RD ] L:\INFOPATH.FR-FR
[28/10/2006 - 02:52:42 | R | 2599] L:\LISEZMOI.HTM
[21/11/2006 - 22:59:34 | RD ] L:\OFFICE.FR-FR
[21/11/2006 - 22:59:34 | RD ] L:\OFFICE64.FR-FR
[21/11/2006 - 22:59:35 | RD ] L:\OUTLOOK.FR-FR
[21/11/2006 - 22:59:36 | RD ] L:\POWERPOINT.FR-FR
[21/11/2006 - 22:59:38 | RD ] L:\PROOFING.FR-FR
[21/11/2006 - 22:59:45 | RD ] L:\PROPLUS.WW
[21/11/2006 - 22:59:45 | RD ] L:\PUBLISHER.FR-FR
[21/11/2006 - 22:59:45 | RD ] L:\ROSEBUD.FR-FR
[28/10/2006 - 03:01:12 | R | 463152] L:\SETUP.EXE
[28/08/2006 - 08:55:56 | R | 713288] L:\SaveAsPDFandXPS.exe
[26/11/2006 - 17:49:37 | R | 29] L:\Serial {Microsoft Office 2007 Pro.}.txt
[16/11/2006 - 14:46:23 | RD ] L:\UPDATES
[21/11/2006 - 22:59:46 | RD ] L:\WORD.FR-FR
[11/12/2011 - 21:19:51 | SHD ] N:\$RECYCLE.BIN
[23/02/2011 - 18:46:30 | N | 465208126] N:\Amy Winehouse - Live BBC 1 Sessions.Concert At Porchester Hall - London, UK (2007).video.avi
[19/02/2011 - 20:10:40 | N | 732064650] N:\Amy Winehouse_(concert_Les Eurockeennes de Belfort 2007).avi
[30/08/2011 - 13:33:30 | | 107185152] N:\Archives.pst
[03/08/2011 - 15:56:42 | D ] N:\Films
[23/01/2011 - 17:40:38 | N | 805764608] N:\Mathieu Chedid - En tête à tête ( Live 2005).avi
[23/01/2011 - 16:50:08 | N | 734035968] N:\Mathieu Chedid - Le Tour De M - Concert À L'olympia.avi
[09/08/2007 - 02:44:54 | N | 79371] N:\Maxtor_Portable.ico
[24/07/2011 - 19:00:54 | D ] N:\Mes images 2
[24/06/2011 - 13:35:14 | D ] N:\MOffice
[03/08/2011 - 16:00:13 | D ] N:\Music
[02/05/2007 - 07:23:38 | N | 561424384] N:\Office 2007 Pro Fr {Final v12 Serial - Windows 2003, Xp & Vista}.iso
[11/12/2011 - 21:24:55 | SHD ] N:\RECYCLER
[08/11/2011 - 17:23:12 | D ] N:\Serieux
[30/03/2011 - 13:18:08 | SHD ] N:\System Volume Information
[21/01/2011 - 14:39:24 | N | 728408804] N:\Vanessa Paradis - Une Nuit A Versailles 2010.avi
[30/08/2011 - 13:09:58 | T | 65536] N:\~Archives.pst.tmp
################## | Vaccin |
C:\Autorun.inf -> Vaccin créé par UsbFix (El Desaparecido)
F:\Autorun.inf -> Vaccin créé par UsbFix (El Desaparecido)
N:\Autorun.inf -> Vaccin créé par UsbFix (El Desaparecido)
################## | Reboot |
L'ordinateur à été redémarré!
################## | E.O.F |
Le rapport :
22:11:38.0265 1236 TDSS rootkit removing tool 2.6.22.0 Dec 7 2011 13:21:06
22:11:38.0906 1236 ============================================================
22:11:38.0906 1236 Current date / time: 2011/12/11 22:11:38.0906
22:11:38.0906 1236 SystemInfo:
22:11:38.0906 1236
22:11:38.0906 1236 OS Version: 5.1.2600 ServicePack: 2.0
22:11:38.0906 1236 Product type: Workstation
22:11:38.0906 1236 ComputerName: MÉZON
22:11:38.0906 1236 UserName: HP_Propriétaire
22:11:38.0906 1236 Windows directory: C:\WINDOWS
22:11:38.0906 1236 System windows directory: C:\WINDOWS
22:11:38.0906 1236 Processor architecture: Intel x86
22:11:38.0906 1236 Number of processors: 1
22:11:38.0906 1236 Page size: 0x1000
22:11:38.0906 1236 Boot type: Normal boot
22:11:38.0906 1236 ============================================================
22:11:50.0265 1236 Initialize success
22:13:02.0890 0464 ============================================================
22:13:02.0890 0464 Scan started
22:13:02.0890 0464 Mode: Manual;
22:13:02.0890 0464 ============================================================
22:13:03.0265 0464 Aavmker4 (b6de0336f9f4b687b4ff57939f7b657a) C:\WINDOWS\system32\drivers\Aavmker4.sys
22:13:03.0296 0464 Aavmker4 - ok
22:13:03.0312 0464 Abiosdsk - ok
22:13:03.0343 0464 abp480n5 - ok
22:13:03.0390 0464 ACPI (0bd94fbfc14ea3606cd6ca4c0255baa3) C:\WINDOWS\system32\DRIVERS\ACPI.sys
22:13:03.0390 0464 ACPI - ok
22:13:03.0437 0464 ACPIEC (e4abc1212b70bb03d35e60681c447210) C:\WINDOWS\system32\drivers\ACPIEC.sys
22:13:03.0437 0464 ACPIEC - ok
22:13:03.0453 0464 adpu160m - ok
22:13:03.0500 0464 aec (1ee7b434ba961ef845de136224c30fec) C:\WINDOWS\system32\drivers\aec.sys
22:13:03.0515 0464 aec - ok
22:13:03.0546 0464 AFD (55e6e1c51b6d30e54335750955453702) C:\WINDOWS\System32\drivers\afd.sys
22:13:03.0546 0464 AFD - ok
22:13:03.0625 0464 AgereSoftModem (593aefc67283d409f34cc1245d00a509) C:\WINDOWS\system32\DRIVERS\AGRSM.sys
22:13:03.0671 0464 AgereSoftModem - ok
22:13:03.0687 0464 Aha154x - ok
22:13:03.0718 0464 aic78u2 - ok
22:13:03.0734 0464 aic78xx - ok
22:13:03.0843 0464 ALCXWDM (8d6c30e515717248e0e52b85fd7ac466) C:\WINDOWS\system32\drivers\ALCXWDM.SYS
22:13:03.0906 0464 ALCXWDM - ok
22:13:03.0937 0464 AliIde - ok
22:13:03.0968 0464 AmdK8 (841871eac4e0dab2bd2b56ce59ef9511) C:\WINDOWS\system32\DRIVERS\AmdK8.sys
22:13:03.0968 0464 AmdK8 - ok
22:13:04.0000 0464 amsint - ok
22:13:04.0046 0464 Arp1394 (f0d692b0bffb46e30eb3cea168bbc49f) C:\WINDOWS\system32\DRIVERS\arp1394.sys
22:13:04.0062 0464 Arp1394 - ok
22:13:04.0078 0464 asc - ok
22:13:04.0093 0464 asc3350p - ok
22:13:04.0125 0464 asc3550 - ok
22:13:04.0187 0464 aswFsBlk (054df24c92b55427e0757cfff160e4f2) C:\WINDOWS\system32\drivers\aswFsBlk.sys
22:13:04.0187 0464 aswFsBlk - ok
22:13:04.0218 0464 aswMon2 (ef0e9ad83380724bd6fbbb51d2d0f5b8) C:\WINDOWS\system32\drivers\aswMon2.sys
22:13:04.0218 0464 aswMon2 - ok
22:13:04.0250 0464 aswRdr (352d5a48ebab35a7693b048679304831) C:\WINDOWS\system32\drivers\aswRdr.sys
22:13:04.0250 0464 aswRdr - ok
22:13:04.0312 0464 aswSnx (8d34d2b24297e27d93e847319abfdec4) C:\WINDOWS\system32\drivers\aswSnx.sys
22:13:04.0328 0464 aswSnx - ok
22:13:04.0375 0464 aswSP (010012597333da1f46c3243f33f8409e) C:\WINDOWS\system32\drivers\aswSP.sys
22:13:04.0375 0464 aswSP - ok
22:13:04.0437 0464 aswTdi (f9f84364416658e9786235904d448d37) C:\WINDOWS\system32\drivers\aswTdi.sys
22:13:04.0437 0464 aswTdi - ok
22:13:04.0468 0464 AsyncMac (02000abf34af4c218c35d257024807d6) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
22:13:04.0468 0464 AsyncMac - ok
22:13:04.0500 0464 atapi (cdfe4411a69c224bd1d11b2da92dac51) C:\WINDOWS\system32\DRIVERS\atapi.sys
22:13:04.0500 0464 atapi - ok
22:13:04.0515 0464 Atdisk - ok
22:13:04.0593 0464 ati2mtag (f43601d255762f20d0e23a6d97062b0d) C:\WINDOWS\system32\DRIVERS\ati2mtag.sys
22:13:04.0609 0464 ati2mtag - ok
22:13:04.0656 0464 Atmarpc (ec88da854ab7d7752ec8be11a741bb7f) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
22:13:04.0656 0464 Atmarpc - ok
22:13:04.0703 0464 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
22:13:04.0703 0464 audstub - ok
22:13:04.0750 0464 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
22:13:04.0750 0464 Beep - ok
22:13:04.0781 0464 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
22:13:04.0781 0464 cbidf2k - ok
22:13:04.0812 0464 CCDECODE (6163ed60b684bab19d3352ab22fc48b2) C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
22:13:04.0812 0464 CCDECODE - ok
22:13:04.0828 0464 cd20xrnt - ok
22:13:04.0859 0464 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
22:13:04.0859 0464 Cdaudio - ok
22:13:04.0890 0464 Cdfs (cd7d5152df32b47f4e36f710b35aae02) C:\WINDOWS\system32\drivers\Cdfs.sys
22:13:04.0890 0464 Cdfs - ok
22:13:04.0921 0464 Cdrom (af9c19b3100fe010496b1a27181fbf72) C:\WINDOWS\system32\DRIVERS\cdrom.sys
22:13:04.0921 0464 Cdrom - ok
22:13:04.0937 0464 Changer - ok
22:13:05.0000 0464 CmdIde - ok
22:13:05.0031 0464 Cpqarray - ok
22:13:05.0062 0464 dac2w2k - ok
22:13:05.0078 0464 dac960nt - ok
22:13:05.0125 0464 Disk (00ca44e4534865f8a3b64f7c0984bff0) C:\WINDOWS\system32\DRIVERS\disk.sys
22:13:05.0125 0464 Disk - ok
22:13:05.0187 0464 dmboot (e2d3b7620310fe56685f9b15a6b404b3) C:\WINDOWS\system32\drivers\dmboot.sys
22:13:05.0218 0464 dmboot - ok
22:13:05.0265 0464 dmio (c77f5c20aa70197a69aa84baa9de43c8) C:\WINDOWS\system32\drivers\dmio.sys
22:13:05.0265 0464 dmio - ok
22:13:05.0312 0464 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
22:13:05.0312 0464 dmload - ok
22:13:05.0359 0464 DMusic (a6f881284ac1150e37d9ae47ff601267) C:\WINDOWS\system32\drivers\DMusic.sys
22:13:05.0359 0464 DMusic - ok
22:13:05.0375 0464 dpti2o - ok
22:13:05.0406 0464 drmkaud (1ed4dbbae9f5d558dbba4cc450e3eb2e) C:\WINDOWS\system32\drivers\drmkaud.sys
22:13:05.0406 0464 drmkaud - ok
22:13:05.0437 0464 Fastfat (3117f595e9615e04f05a54fc15a03b20) C:\WINDOWS\system32\drivers\Fastfat.sys
22:13:05.0437 0464 Fastfat - ok
22:13:05.0484 0464 Fdc (ced2e8396a8838e59d8fd529c680e02c) C:\WINDOWS\system32\DRIVERS\fdc.sys
22:13:05.0484 0464 Fdc - ok
22:13:05.0500 0464 FilterService - ok
22:13:05.0531 0464 Fips (8b121ff880683607ab2aef0340721718) C:\WINDOWS\system32\drivers\Fips.sys
22:13:05.0531 0464 Fips - ok
22:13:05.0546 0464 Flpydisk (0dd1de43115b93f4d85e889d7a86f548) C:\WINDOWS\system32\DRIVERS\flpydisk.sys
22:13:05.0546 0464 Flpydisk - ok
22:13:05.0593 0464 FltMgr (3d234fb6d6ee875eb009864a299bea29) C:\WINDOWS\system32\DRIVERS\fltMgr.sys
22:13:05.0609 0464 FltMgr - ok
22:13:05.0625 0464 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
22:13:05.0625 0464 Fs_Rec - ok
22:13:05.0656 0464 Ftdisk (a86859b77b908c18c2657f284aa29fe3) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
22:13:05.0656 0464 Ftdisk - ok
22:13:05.0687 0464 GEARAspiWDM (2fb04db459c71f416ee8b05448ca4ac3) C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys
22:13:05.0687 0464 GEARAspiWDM - ok
22:13:05.0718 0464 Gpc (c0f1d4a21de5a415df8170616703debf) C:\WINDOWS\system32\DRIVERS\msgpc.sys
22:13:05.0718 0464 Gpc - ok
22:13:05.0734 0464 HidUsb (1de6783b918f540149aa69943bdfeba8) C:\WINDOWS\system32\DRIVERS\hidusb.sys
22:13:05.0750 0464 HidUsb - ok
22:13:05.0765 0464 hpn - ok
22:13:05.0812 0464 HTTP (9f8b0f4276f618964fd118be4289b7cd) C:\WINDOWS\system32\Drivers\HTTP.sys
22:13:05.0828 0464 HTTP - ok
22:13:05.0859 0464 i2omgmt - ok
22:13:05.0875 0464 i2omp - ok
22:13:05.0906 0464 i8042prt (d1efcbd693b5ba21314d06368c471070) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
22:13:05.0906 0464 i8042prt - ok
22:13:05.0921 0464 Imapi (f8aa320c6a0409c0380e5d8a99d76ec6) C:\WINDOWS\system32\DRIVERS\imapi.sys
22:13:05.0921 0464 Imapi - ok
22:13:05.0953 0464 ini910u - ok
22:13:05.0984 0464 IntelIde (1367812f8a974e0c13a4888fa5e7ede6) C:\WINDOWS\system32\DRIVERS\intelide.sys
22:13:05.0984 0464 IntelIde - ok
22:13:06.0000 0464 intelppm - ok
22:13:06.0031 0464 Ip6Fw (4448006b6bc60e6c027932cfc38d6855) C:\WINDOWS\system32\DRIVERS\Ip6Fw.sys
22:13:06.0046 0464 Ip6Fw - ok
22:13:06.0078 0464 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
22:13:06.0078 0464 IpFilterDriver - ok
22:13:06.0109 0464 IpInIp (e1ec7f5da720b640cd8fb8424f1b14bb) C:\WINDOWS\system32\DRIVERS\ipinip.sys
22:13:06.0109 0464 IpInIp - ok
22:13:06.0140 0464 IpNat (e2168cbc7098ffe963c6f23f472a3593) C:\WINDOWS\system32\DRIVERS\ipnat.sys
22:13:06.0156 0464 IpNat - ok
22:13:06.0187 0464 IPSec (64537aa5c003a6afeee1df819062d0d1) C:\WINDOWS\system32\DRIVERS\ipsec.sys
22:13:06.0187 0464 IPSec - ok
22:13:06.0218 0464 IRENUM (50708daa1b1cbb7d6ac1cf8f56a24410) C:\WINDOWS\system32\DRIVERS\irenum.sys
22:13:06.0218 0464 IRENUM - ok
22:13:06.0250 0464 isapnp (54632f1a7de61dc3615d756f2a90fa72) C:\WINDOWS\system32\DRIVERS\isapnp.sys
22:13:06.0250 0464 isapnp - ok
22:13:06.0281 0464 Iviaspi (f59c3569a2f2c464bb78cb1bdcdca55e) C:\WINDOWS\system32\drivers\iviaspi.sys
22:13:06.0281 0464 Iviaspi - ok
22:13:06.0343 0464 Kbdclass (e798705e8dc7fab596ef6bfdf167e007) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
22:13:06.0343 0464 Kbdclass - ok
22:13:06.0359 0464 kbdhid (62dd5eefcec4ef4163f1168d4262a9e4) C:\WINDOWS\system32\DRIVERS\kbdhid.sys
22:13:06.0359 0464 kbdhid - ok
22:13:06.0421 0464 kmixer (ba5deda4d934e6288c2f66caf58d2562) C:\WINDOWS\system32\drivers\kmixer.sys
22:13:06.0421 0464 kmixer - ok
22:13:06.0453 0464 KSecDD (674d3e5a593475915dc6643317192403) C:\WINDOWS\system32\drivers\KSecDD.sys
22:13:06.0453 0464 KSecDD - ok
22:13:06.0515 0464 Lavasoft Kernexplorer (6c4a3804510ad8e0f0c07b5be3d44ddb) C:\Program Files\Lavasoft\Ad-Aware\KernExplorer.sys
22:13:06.0531 0464 Lavasoft Kernexplorer - ok
22:13:06.0546 0464 Lbd (336abe8721cbc3110f1c6426da633417) C:\WINDOWS\system32\DRIVERS\Lbd.sys
22:13:06.0562 0464 Lbd - ok
22:13:06.0609 0464 LBeepKE (be2dc24d403643a2d1d98f33c7087b38) C:\WINDOWS\system32\Drivers\LBeepKE.sys
22:13:06.0609 0464 LBeepKE - ok
22:13:06.0625 0464 lbrtfdc - ok
22:13:06.0703 0464 LHidFilt (01cc7fb6e790ef044b411377f3a1ff41) C:\WINDOWS\system32\DRIVERS\LHidFilt.Sys
22:13:06.0703 0464 LHidFilt - ok
22:13:06.0734 0464 LMouFilt (a2e7eae8898d7b4b8c302b8f4e836bb5) C:\WINDOWS\system32\DRIVERS\LMouFilt.Sys
22:13:06.0734 0464 LMouFilt - ok
22:13:06.0812 0464 ltmodem5 (919de7d76d2c0c0139e08b3e7592d62e) C:\WINDOWS\system32\DRIVERS\ltmdmnt.sys
22:13:06.0828 0464 ltmodem5 - ok
22:13:06.0906 0464 LVPr2Mon (a6919138f29ae45e90e99fa94737e04c) C:\WINDOWS\system32\DRIVERS\LVPr2Mon.sys
22:13:06.0906 0464 LVPr2Mon - ok
22:13:06.0937 0464 LVRS - ok
22:13:06.0953 0464 LVUSBSta - ok
22:13:06.0984 0464 LVUVC - ok
22:13:07.0015 0464 MBAMProtector (69a6268d7f81e53d568ab4e7e991caf3) C:\WINDOWS\system32\drivers\mbam.sys
22:13:07.0015 0464 MBAMProtector - ok
22:13:07.0062 0464 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
22:13:07.0062 0464 mnmdd - ok
22:13:07.0125 0464 Modem (5ac7e16f5b40a6da14b5f2b3ada4693e) C:\WINDOWS\system32\drivers\Modem.sys
22:13:07.0140 0464 Modem - ok
22:13:07.0203 0464 Mouclass (7d4f19411bd941e1d432a99e24230386) C:\WINDOWS\system32\DRIVERS\mouclass.sys
22:13:07.0203 0464 Mouclass - ok
22:13:07.0234 0464 mouhid (124d6846040c79b9c997f78ef4b2a4e5) C:\WINDOWS\system32\DRIVERS\mouhid.sys
22:13:07.0234 0464 mouhid - ok
22:13:07.0265 0464 MountMgr (65653f3b4477f3c63e68a9659f85ee2e) C:\WINDOWS\system32\drivers\MountMgr.sys
22:13:07.0265 0464 MountMgr - ok
22:13:07.0281 0464 mraid35x - ok
22:13:07.0343 0464 MRxDAV (29414447eb5bde2f8397dc965dbb3156) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
22:13:07.0343 0464 MRxDAV - ok
22:13:07.0406 0464 MRxSmb (fb6c89bb3ce282b08bdb1e3c179e1c39) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
22:13:07.0421 0464 MRxSmb - ok
22:13:07.0453 0464 Msfs (561b3a4333ca2dbdba28b5b956822519) C:\WINDOWS\system32\drivers\Msfs.sys
22:13:07.0453 0464 Msfs - ok
22:13:07.0484 0464 MSKSSRV (ae431a8dd3c1d0d0610cdbac16057ad0) C:\WINDOWS\system32\drivers\MSKSSRV.sys
22:13:07.0484 0464 MSKSSRV - ok
22:13:07.0515 0464 MSPCLOCK (13e75fef9dfeb08eeded9d0246e1f448) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
22:13:07.0515 0464 MSPCLOCK - ok
22:13:07.0546 0464 MSPQM (1988a33ff19242576c3d0ef9ce785da7) C:\WINDOWS\system32\drivers\MSPQM.sys
22:13:07.0546 0464 MSPQM - ok
22:13:07.0609 0464 mssmbios (469541f8bfd2b32659d5d463a6714bce) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
22:13:07.0609 0464 mssmbios - ok
22:13:07.0625 0464 MSTEE (bf13612142995096ab084f2db7f40f77) C:\WINDOWS\system32\drivers\MSTEE.sys
22:13:07.0625 0464 MSTEE - ok
22:13:07.0671 0464 Mup (82035e0f41c2dd05ae41d27fe6cf7de1) C:\WINDOWS\system32\drivers\Mup.sys
22:13:07.0671 0464 Mup - ok
22:13:07.0703 0464 NABTSFEC (5c8dc6429c43dc6177c1fa5b76290d1a) C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
22:13:07.0703 0464 NABTSFEC - ok
22:13:07.0734 0464 NDIS (558635d3af1c7546d26067d5d9b6959e) C:\WINDOWS\system32\drivers\NDIS.sys
22:13:07.0750 0464 NDIS - ok
22:13:07.0781 0464 NdisIP (520ce427a8b298f54112857bcf6bde15) C:\WINDOWS\system32\DRIVERS\NdisIP.sys
22:13:07.0781 0464 NdisIP - ok
22:13:07.0812 0464 NdisTapi (08d43bbdacdf23f34d79e44ed35c1b4c) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
22:13:07.0812 0464 NdisTapi - ok
22:13:07.0828 0464 Ndisuio (34d6cd56409da9a7ed573e1c90a308bf) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
22:13:07.0843 0464 Ndisuio - ok
22:13:07.0859 0464 NdisWan (0b90e255a9490166ab368cd55a529893) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
22:13:07.0875 0464 NdisWan - ok
22:13:07.0890 0464 NDProxy (59fc3fb44d2669bc144fd87826bb571f) C:\WINDOWS\system32\drivers\NDProxy.sys
22:13:07.0890 0464 NDProxy - ok
22:13:07.0921 0464 NetBIOS (3a2aca8fc1d7786902ca434998d7ceb4) C:\WINDOWS\system32\DRIVERS\netbios.sys
22:13:07.0937 0464 NetBIOS - ok
22:13:07.0968 0464 NetBT (0c80e410cd2f47134407ee7dd19cc86b) C:\WINDOWS\system32\DRIVERS\netbt.sys
22:13:07.0968 0464 NetBT - ok
22:13:08.0015 0464 NIC1394 (5c5c53db4fef16cf87b9911c7e8c6fbc) C:\WINDOWS\system32\DRIVERS\nic1394.sys
22:13:08.0015 0464 NIC1394 - ok
22:13:08.0062 0464 NPF (b9730495e0cf674680121e34bd95a73b) C:\WINDOWS\system32\drivers\npf.sys
22:13:08.0062 0464 NPF - ok
22:13:08.0093 0464 Npfs (4f601bcb8f64ea3ac0994f98fed03f8e) C:\WINDOWS\system32\drivers\Npfs.sys
22:13:08.0093 0464 Npfs - ok
22:13:08.0171 0464 Ntfs (19a811ef5f1ed5c926a028ce107ff1af) C:\WINDOWS\system32\drivers\Ntfs.sys
22:13:08.0187 0464 Ntfs - ok
22:13:08.0250 0464 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
22:13:08.0250 0464 Null - ok
22:13:08.0281 0464 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
22:13:08.0281 0464 NwlnkFlt - ok
22:13:08.0312 0464 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
22:13:08.0312 0464 NwlnkFwd - ok
22:13:08.0343 0464 ohci1394 (0951db8e5823ea366b0e408d71e1ba2a) C:\WINDOWS\system32\DRIVERS\ohci1394.sys
22:13:08.0343 0464 ohci1394 - ok
22:13:08.0390 0464 Parport (318696359ac7df48d1e51974ec527dd2) C:\WINDOWS\system32\DRIVERS\parport.sys
22:13:08.0390 0464 Parport - ok
22:13:08.0421 0464 PartMgr (3334430c29dc338092f79c38ef7b4cd0) C:\WINDOWS\system32\drivers\PartMgr.sys
22:13:08.0421 0464 PartMgr - ok
22:13:08.0453 0464 ParVdm (9575c5630db8fb804649a6959737154c) C:\WINDOWS\system32\drivers\ParVdm.sys
22:13:08.0453 0464 ParVdm - ok
22:13:08.0468 0464 PCI (7c5da5c1ed801ad8b0309d5514f0b75e) C:\WINDOWS\system32\DRIVERS\pci.sys
22:13:08.0484 0464 PCI - ok
22:13:08.0500 0464 PCIDump - ok
22:13:08.0531 0464 PCIIde (f4bfde7209c14a07aaa61e4d6ae69eac) C:\WINDOWS\system32\DRIVERS\pciide.sys
22:13:08.0531 0464 PCIIde - ok
22:13:08.0562 0464 Pcmcia (641da274e163617ea7a33506bc6da8e3) C:\WINDOWS\system32\drivers\Pcmcia.sys
22:13:08.0562 0464 Pcmcia - ok
22:13:08.0593 0464 PDCOMP - ok
22:13:08.0609 0464 PDFRAME - ok
22:13:08.0625 0464 PDRELI - ok
22:13:08.0656 0464 PDRFRAME - ok
22:13:08.0671 0464 perc2 - ok
22:13:08.0703 0464 perc2hib - ok
22:13:08.0750 0464 Pfc (444f122e68db44c0589227781f3c8b3f) C:\WINDOWS\system32\drivers\pfc.sys
22:13:08.0750 0464 Pfc - ok
22:13:08.0796 0464 PptpMiniport (1c5cc65aac0783c344f16353e60b72ac) C:\WINDOWS\system32\DRIVERS\raspptp.sys
22:13:08.0812 0464 PptpMiniport - ok
22:13:08.0828 0464 Processor (f480712b761e538bc8e44ede60f3a3c3) C:\WINDOWS\system32\DRIVERS\processr.sys
22:13:08.0828 0464 Processor - ok
22:13:08.0875 0464 Ps2 (bffdb363485501a38f0bca83aec810db) C:\WINDOWS\system32\DRIVERS\PS2.sys
22:13:08.0875 0464 Ps2 - ok
22:13:08.0921 0464 PSched (48671f327553dcf1d27f6197f622a668) C:\WINDOWS\system32\DRIVERS\psched.sys
22:13:08.0921 0464 PSched - ok
22:13:08.0937 0464 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
22:13:08.0937 0464 Ptilink - ok
22:13:08.0968 0464 PxHelp20 (30cbae0a34359f1cd19d1576245149ed) C:\WINDOWS\system32\Drivers\PxHelp20.sys
22:13:08.0968 0464 PxHelp20 - ok
22:13:08.0984 0464 ql1080 - ok
22:13:09.0000 0464 Ql10wnt - ok
22:13:09.0015 0464 ql12160 - ok
22:13:09.0031 0464 ql1240 - ok
22:13:09.0046 0464 ql1280 - ok
22:13:09.0078 0464 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
22:13:09.0078 0464 RasAcd - ok
22:13:09.0093 0464 Rasl2tp (98faeb4a4dcf812ba1c6fca4aa3e115c) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
22:13:09.0109 0464 Rasl2tp - ok
22:13:09.0125 0464 RasPppoe (7306eeed8895454cbed4669be9f79faa) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
22:13:09.0125 0464 RasPppoe - ok
22:13:09.0156 0464 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
22:13:09.0156 0464 Raspti - ok
22:13:09.0218 0464 Rdbss (03b965b1ca47f6ef60eb5e51cb50e0af) C:\WINDOWS\system32\DRIVERS\rdbss.sys
22:13:09.0218 0464 Rdbss - ok
22:13:09.0250 0464 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
22:13:09.0250 0464 RDPCDD - ok
22:13:09.0312 0464 RDPWD (b54cd38a9ebfbf2b3561426e3fe26f62) C:\WINDOWS\system32\drivers\RDPWD.sys
22:13:09.0312 0464 RDPWD - ok
22:13:09.0359 0464 redbook (2cc30b68dd62b73d444a41322cd7fc4c) C:\WINDOWS\system32\DRIVERS\redbook.sys
22:13:09.0359 0464 redbook - ok
22:13:09.0406 0464 rtl8139 (2ef9c0dc26b30b2318b1fc3faa1f0ae7) C:\WINDOWS\system32\DRIVERS\R8139n51.SYS
22:13:09.0406 0464 rtl8139 - ok
22:13:09.0468 0464 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
22:13:09.0468 0464 Secdrv - ok
22:13:09.0515 0464 Serial (653201755ca96ab4aaa4131daf6da356) C:\WINDOWS\system32\drivers\Serial.sys
22:13:09.0515 0464 Serial - ok
22:13:09.0531 0464 Sfloppy (0d13b6df6e9e101013a7afb0ce629fe0) C:\WINDOWS\system32\drivers\Sfloppy.sys
22:13:09.0546 0464 Sfloppy - ok
22:13:09.0562 0464 Simbad - ok
22:13:09.0609 0464 SLIP (5caeed86821fa2c6139e32e9e05ccdc9) C:\WINDOWS\system32\DRIVERS\SLIP.sys
22:13:09.0609 0464 SLIP - ok
22:13:09.0625 0464 Sparrow - ok
22:13:09.0671 0464 splitter (0ce218578fff5f4f7e4201539c45c78f) C:\WINDOWS\system32\drivers\splitter.sys
22:13:09.0671 0464 splitter - ok
22:13:09.0750 0464 sptd (4e3c4ffcb2c95c2ec1fa04a6f4531533) C:\WINDOWS\system32\Drivers\sptd.sys
22:13:09.0750 0464 Suspicious file (NoAccess): C:\WINDOWS\system32\Drivers\sptd.sys. md5: 4e3c4ffcb2c95c2ec1fa04a6f4531533
22:13:09.0750 0464 sptd ( LockedFile.Multi.Generic ) - warning
22:13:09.0750 0464 sptd - detected LockedFile.Multi.Generic (1)
22:13:09.0781 0464 sr (b52181023b827acda36c1b76751ebffd) C:\WINDOWS\system32\DRIVERS\sr.sys
22:13:09.0781 0464 sr - ok
22:13:09.0828 0464 Srv (7a4f147cc6b133f905f6e65e2f8669fb) C:\WINDOWS\system32\DRIVERS\srv.sys
22:13:09.0828 0464 Srv - ok
22:13:09.0875 0464 streamip (284c57df5dc7abca656bc2b96a667afb) C:\WINDOWS\system32\DRIVERS\StreamIP.sys
22:13:09.0875 0464 streamip - ok
22:13:09.0906 0464 swenum (03c1bae4766e2450219d20b993d6e046) C:\WINDOWS\system32\DRIVERS\swenum.sys
22:13:09.0906 0464 swenum - ok
22:13:09.0937 0464 swmidi (94abc808fc4b6d7d2bbf42b85e25bb4d) C:\WINDOWS\system32\drivers\swmidi.sys
22:13:09.0937 0464 swmidi - ok
22:13:09.0968 0464 symc810 - ok
22:13:09.0984 0464 symc8xx - ok
22:13:10.0000 0464 sym_hi - ok
22:13:10.0015 0464 sym_u3 - ok
22:13:10.0046 0464 sysaudio (650ad082d46bac0e64c9c0e0928492fd) C:\WINDOWS\system32\drivers\sysaudio.sys
22:13:10.0046 0464 sysaudio - ok
22:13:10.0093 0464 Tcpip (2a5554fc5b1e04e131230e3ce035c3f9) C:\WINDOWS\system32\DRIVERS\tcpip.sys
22:13:10.0109 0464 Tcpip - ok
22:13:10.0125 0464 TDPIPE (38d437cf2d98965f239b0abcd66dcb0f) C:\WINDOWS\system32\drivers\TDPIPE.sys
22:13:10.0125 0464 TDPIPE - ok
22:13:10.0156 0464 TDTCP (ed0580af02502d00ad8c4c066b156be9) C:\WINDOWS\system32\drivers\TDTCP.sys
22:13:10.0171 0464 TDTCP - ok
22:13:10.0187 0464 TermDD (a540a99c281d933f3d69d55e48727f47) C:\WINDOWS\system32\DRIVERS\termdd.sys
22:13:10.0187 0464 TermDD - ok
22:13:10.0218 0464 TosIde - ok
22:13:10.0250 0464 Udfs (12f70256f140cd7d52c58c7048fde657) C:\WINDOWS\system32\drivers\Udfs.sys
22:13:10.0250 0464 Udfs - ok
22:13:10.0265 0464 ultra - ok
22:13:10.0296 0464 Update (aff2e5045961bbc0a602bb6f95eb1345) C:\WINDOWS\system32\DRIVERS\update.sys
22:13:10.0312 0464 Update - ok
22:13:10.0390 0464 usbaudio (45a0d14b26c35497ad93bce7e15c9941) C:\WINDOWS\system32\drivers\usbaudio.sys
22:13:10.0390 0464 usbaudio - ok
22:13:10.0421 0464 usbccgp (bffd9f120cc63bcbaa3d840f3eef9f79) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
22:13:10.0437 0464 usbccgp - ok
22:13:10.0453 0464 usbehci (15e993ba2f6946b2bfbbfcd30398621e) C:\WINDOWS\system32\DRIVERS\usbehci.sys
22:13:10.0453 0464 usbehci - ok
22:13:10.0484 0464 usbhub (c72f40947f92cea56a8fb532edf025f1) C:\WINDOWS\system32\DRIVERS\usbhub.sys
22:13:10.0484 0464 usbhub - ok
22:13:10.0500 0464 usbohci (bdfe799a8531bad8a5a985821fe78760) C:\WINDOWS\system32\DRIVERS\usbohci.sys
22:13:10.0500 0464 usbohci - ok
22:13:10.0531 0464 USBSTOR (6cd7b22193718f1d17a47a1cd6d37e75) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
22:13:10.0531 0464 USBSTOR - ok
22:13:10.0562 0464 usbuhci (f8fd1400092e23c8f2f31406ef06167b) C:\WINDOWS\system32\DRIVERS\usbuhci.sys
22:13:10.0562 0464 usbuhci - ok
22:13:10.0593 0464 usbvideo (8968ff3973a883c49e8b564200f565b9) C:\WINDOWS\system32\Drivers\usbvideo.sys
22:13:10.0593 0464 usbvideo - ok
22:13:10.0625 0464 VgaSave (8a60edd72b4ea5aea8202daf0e427925) C:\WINDOWS\System32\drivers\vga.sys
22:13:10.0625 0464 VgaSave - ok
22:13:10.0640 0464 ViaIde (59cb1338ad3654417bea49636457f65d) C:\WINDOWS\system32\DRIVERS\viaide.sys
22:13:10.0656 0464 ViaIde - ok
22:13:10.0687 0464 VolSnap (313b1a0d5db26dfe1c34a6c13b2ce0a7) C:\WINDOWS\system32\drivers\VolSnap.sys
22:13:10.0687 0464 VolSnap - ok
22:13:10.0718 0464 Wanarp (984ef0b9788abf89974cfed4bfbaacbc) C:\WINDOWS\system32\DRIVERS\wanarp.sys
22:13:10.0718 0464 Wanarp - ok
22:13:10.0796 0464 Wdf01000 (d918617b46457b9ac28027722e30f647) C:\WINDOWS\system32\Drivers\wdf01000.sys
22:13:10.0812 0464 Wdf01000 - ok
22:13:10.0828 0464 WDICA - ok
22:13:10.0875 0464 wdmaud (efd235ca22b57c81118c1aeb4798f1c1) C:\WINDOWS\system32\drivers\wdmaud.sys
22:13:10.0875 0464 wdmaud - ok
22:13:10.0953 0464 WSTCODEC (d5842484f05e12121c511aa93f6439ec) C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
22:13:10.0953 0464 WSTCODEC - ok
22:13:11.0000 0464 MBR (0x1B8) (4f3a0ea76e7edbe2fc4a98f9de544751) \Device\Harddisk0\DR0
22:13:11.0000 0464 \Device\Harddisk0\DR0 - ok
22:13:11.0015 0464 MBR (0x1B8) (d22f10b1216707c7a85d202a6bc51adc) \Device\Harddisk5\DR7
22:13:11.0031 0464 \Device\Harddisk5\DR7 - ok
22:13:11.0046 0464 Boot (0x1200) (8306359d26602834988c801330ae0786) \Device\Harddisk0\DR0\Partition0
22:13:11.0046 0464 \Device\Harddisk0\DR0\Partition0 - ok
22:13:11.0062 0464 Boot (0x1200) (37d174b3ad3b67760188e9423b6ca62d) \Device\Harddisk0\DR0\Partition1
22:13:11.0062 0464 \Device\Harddisk0\DR0\Partition1 - ok
22:13:11.0062 0464 Boot (0x1200) (1c3f19ce17f5bf80b30886e826a27f75) \Device\Harddisk5\DR7\Partition0
22:13:11.0062 0464 \Device\Harddisk5\DR7\Partition0 - ok
22:13:11.0078 0464 ============================================================
22:13:11.0078 0464 Scan finished
22:13:11.0078 0464 ============================================================
22:13:11.0078 3288 Detected object count: 1
22:13:11.0078 3288 Actual detected object count: 1
22:19:03.0265 3288 sptd ( LockedFile.Multi.Generic ) - skipped by user
22:19:03.0265 3288 sptd ( LockedFile.Multi.Generic ) - User select action: Skip
22:19:12.0406 3732 ============================================================
22:19:12.0406 3732 Scan started
22:19:12.0406 3732 Mode: Manual;
22:19:12.0406 3732 ============================================================
22:19:26.0843 3732 Aavmker4 (b6de0336f9f4b687b4ff57939f7b657a) C:\WINDOWS\system32\drivers\Aavmker4.sys
22:19:26.0843 3732 Aavmker4 - ok
22:19:26.0875 3732 Abiosdsk - ok
22:19:26.0890 3732 abp480n5 - ok
22:19:26.0953 3732 ACPI (0bd94fbfc14ea3606cd6ca4c0255baa3) C:\WINDOWS\system32\DRIVERS\ACPI.sys
22:19:26.0953 3732 ACPI - ok
22:19:26.0984 3732 ACPIEC (e4abc1212b70bb03d35e60681c447210) C:\WINDOWS\system32\drivers\ACPIEC.sys
22:19:26.0984 3732 ACPIEC - ok
22:19:27.0000 3732 adpu160m - ok
22:19:27.0062 3732 aec (1ee7b434ba961ef845de136224c30fec) C:\WINDOWS\system32\drivers\aec.sys
22:19:27.0062 3732 aec - ok
22:19:27.0093 3732 AFD (55e6e1c51b6d30e54335750955453702) C:\WINDOWS\System32\drivers\afd.sys
22:19:27.0093 3732 AFD - ok
22:19:27.0171 3732 AgereSoftModem (593aefc67283d409f34cc1245d00a509) C:\WINDOWS\system32\DRIVERS\AGRSM.sys
22:19:27.0187 3732 AgereSoftModem - ok
22:19:27.0218 3732 Aha154x - ok
22:19:27.0234 3732 aic78u2 - ok
22:19:27.0250 3732 aic78xx - ok
22:19:27.0359 3732 ALCXWDM (8d6c30e515717248e0e52b85fd7ac466) C:\WINDOWS\system32\drivers\ALCXWDM.SYS
22:19:27.0390 3732 ALCXWDM - ok
22:19:27.0421 3732 AliIde - ok
22:19:27.0468 3732 AmdK8 (841871eac4e0dab2bd2b56ce59ef9511) C:\WINDOWS\system32\DRIVERS\AmdK8.sys
22:19:27.0468 3732 AmdK8 - ok
22:19:27.0484 3732 amsint - ok
22:19:27.0546 3732 Arp1394 (f0d692b0bffb46e30eb3cea168bbc49f) C:\WINDOWS\system32\DRIVERS\arp1394.sys
22:19:27.0546 3732 Arp1394 - ok
22:19:27.0562 3732 asc - ok
22:19:27.0593 3732 asc3350p - ok
22:19:27.0609 3732 asc3550 - ok
22:19:27.0671 3732 aswFsBlk (054df24c92b55427e0757cfff160e4f2) C:\WINDOWS\system32\drivers\aswFsBlk.sys
22:19:27.0671 3732 aswFsBlk - ok
22:19:27.0703 3732 aswMon2 (ef0e9ad83380724bd6fbbb51d2d0f5b8) C:\WINDOWS\system32\drivers\aswMon2.sys
22:19:27.0703 3732 aswMon2 - ok
22:19:27.0734 3732 aswRdr (352d5a48ebab35a7693b048679304831) C:\WINDOWS\system32\drivers\aswRdr.sys
22:19:27.0734 3732 aswRdr - ok
22:19:27.0781 3732 aswSnx (8d34d2b24297e27d93e847319abfdec4) C:\WINDOWS\system32\drivers\aswSnx.sys
22:19:27.0781 3732 aswSnx - ok
22:19:27.0828 3732 aswSP (010012597333da1f46c3243f33f8409e) C:\WINDOWS\system32\drivers\aswSP.sys
22:19:27.0828 3732 aswSP - ok
22:19:27.0875 3732 aswTdi (f9f84364416658e9786235904d448d37) C:\WINDOWS\system32\drivers\aswTdi.sys
22:19:27.0875 3732 aswTdi - ok
22:19:27.0890 3732 AsyncMac (02000abf34af4c218c35d257024807d6) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
22:19:27.0906 3732 AsyncMac - ok
22:19:27.0937 3732 atapi (cdfe4411a69c224bd1d11b2da92dac51) C:\WINDOWS\system32\DRIVERS\atapi.sys
22:19:27.0937 3732 atapi - ok
22:19:27.0953 3732 Atdisk - ok
22:19:28.0031 3732 ati2mtag (f43601d255762f20d0e23a6d97062b0d) C:\WINDOWS\system32\DRIVERS\ati2mtag.sys
22:19:28.0046 3732 ati2mtag - ok
22:19:28.0093 3732 Atmarpc (ec88da854ab7d7752ec8be11a741bb7f) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
22:19:28.0093 3732 Atmarpc - ok
22:19:28.0125 3732 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
22:19:28.0125 3732 audstub - ok
22:19:28.0171 3732 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
22:19:28.0171 3732 Beep - ok
22:19:28.0203 3732 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
22:19:28.0203 3732 cbidf2k - ok
22:19:28.0234 3732 CCDECODE (6163ed60b684bab19d3352ab22fc48b2) C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
22:19:28.0234 3732 CCDECODE - ok
22:19:28.0265 3732 cd20xrnt - ok
22:19:28.0281 3732 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
22:19:28.0281 3732 Cdaudio - ok
22:19:28.0312 3732 Cdfs (cd7d5152df32b47f4e36f710b35aae02) C:\WINDOWS\system32\drivers\Cdfs.sys
22:19:28.0312 3732 Cdfs - ok
22:19:28.0328 3732 Cdrom (af9c19b3100fe010496b1a27181fbf72) C:\WINDOWS\system32\DRIVERS\cdrom.sys
22:19:28.0343 3732 Cdrom - ok
22:19:28.0359 3732 Changer - ok
22:19:28.0375 3732 CmdIde - ok
22:19:28.0421 3732 Cpqarray - ok
22:19:28.0437 3732 dac2w2k - ok
22:19:28.0453 3732 dac960nt - ok
22:19:28.0484 3732 Disk (00ca44e4534865f8a3b64f7c0984bff0) C:\WINDOWS\system32\DRIVERS\disk.sys
22:19:28.0484 3732 Disk - ok
22:19:28.0546 3732 dmboot (e2d3b7620310fe56685f9b15a6b404b3) C:\WINDOWS\system32\drivers\dmboot.sys
22:19:28.0562 3732 dmboot - ok
22:19:28.0609 3732 dmio (c77f5c20aa70197a69aa84baa9de43c8) C:\WINDOWS\system32\drivers\dmio.sys
22:19:28.0609 3732 dmio - ok
22:19:28.0640 3732 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
22:19:28.0640 3732 dmload - ok
22:19:28.0671 3732 DMusic (a6f881284ac1150e37d9ae47ff601267) C:\WINDOWS\system32\drivers\DMusic.sys
22:19:28.0671 3732 DMusic - ok
22:19:28.0703 3732 dpti2o - ok
22:19:28.0734 3732 drmkaud (1ed4dbbae9f5d558dbba4cc450e3eb2e) C:\WINDOWS\system32\drivers\drmkaud.sys
22:19:28.0734 3732 drmkaud - ok
22:19:28.0765 3732 Fastfat (3117f595e9615e04f05a54fc15a03b20) C:\WINDOWS\system32\drivers\Fastfat.sys
22:19:28.0765 3732 Fastfat - ok
22:19:28.0812 3732 Fdc (ced2e8396a8838e59d8fd529c680e02c) C:\WINDOWS\system32\DRIVERS\fdc.sys
22:19:28.0812 3732 Fdc - ok
22:19:28.0828 3732 FilterService - ok
22:19:28.0859 3732 Fips (8b121ff880683607ab2aef0340721718) C:\WINDOWS\system32\drivers\Fips.sys
22:19:28.0859 3732 Fips - ok
22:19:28.0875 3732 Flpydisk (0dd1de43115b93f4d85e889d7a86f548) C:\WINDOWS\system32\DRIVERS\flpydisk.sys
22:19:28.0875 3732 Flpydisk - ok
22:19:28.0921 3732 FltMgr (3d234fb6d6ee875eb009864a299bea29) C:\WINDOWS\system32\DRIVERS\fltMgr.sys
22:19:28.0921 3732 FltMgr - ok
22:19:28.0953 3732 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
22:19:28.0953 3732 Fs_Rec - ok
22:19:28.0968 3732 Ftdisk (a86859b77b908c18c2657f284aa29fe3) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
22:19:28.0984 3732 Ftdisk - ok
22:19:29.0000 3732 GEARAspiWDM (2fb04db459c71f416ee8b05448ca4ac3) C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys
22:19:29.0000 3732 GEARAspiWDM - ok
22:19:29.0031 3732 Gpc (c0f1d4a21de5a415df8170616703debf) C:\WINDOWS\system32\DRIVERS\msgpc.sys
22:19:29.0031 3732 Gpc - ok
22:19:29.0062 3732 HidUsb (1de6783b918f540149aa69943bdfeba8) C:\WINDOWS\system32\DRIVERS\hidusb.sys
22:19:29.0062 3732 HidUsb - ok
22:19:29.0078 3732 hpn - ok
22:19:29.0125 3732 HTTP (9f8b0f4276f618964fd118be4289b7cd) C:\WINDOWS\system32\Drivers\HTTP.sys
22:19:29.0125 3732 HTTP - ok
22:19:29.0156 3732 i2omgmt - ok
22:19:29.0171 3732 i2omp - ok
22:19:29.0187 3732 i8042prt (d1efcbd693b5ba21314d06368c471070) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
22:19:29.0203 3732 i8042prt - ok
22:19:29.0218 3732 Imapi (f8aa320c6a0409c0380e5d8a99d76ec6) C:\WINDOWS\system32\DRIVERS\imapi.sys
22:19:29.0218 3732 Imapi - ok
22:19:29.0250 3732 ini910u - ok
22:19:29.0281 3732 IntelIde (1367812f8a974e0c13a4888fa5e7ede6) C:\WINDOWS\system32\DRIVERS\intelide.sys
22:19:29.0281 3732 IntelIde - ok
22:19:29.0296 3732 intelppm - ok
22:19:29.0328 3732 Ip6Fw (4448006b6bc60e6c027932cfc38d6855) C:\WINDOWS\system32\DRIVERS\Ip6Fw.sys
22:19:29.0328 3732 Ip6Fw - ok
22:19:29.0359 3732 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
22:19:29.0359 3732 IpFilterDriver - ok
22:19:29.0390 3732 IpInIp (e1ec7f5da720b640cd8fb8424f1b14bb) C:\WINDOWS\system32\DRIVERS\ipinip.sys
22:19:29.0390 3732 IpInIp - ok
22:19:29.0453 3732 IpNat (e2168cbc7098ffe963c6f23f472a3593) C:\WINDOWS\system32\DRIVERS\ipnat.sys
22:19:29.0453 3732 IpNat - ok
22:19:29.0484 3732 IPSec (64537aa5c003a6afeee1df819062d0d1) C:\WINDOWS\system32\DRIVERS\ipsec.sys
22:19:29.0484 3732 IPSec - ok
22:19:29.0500 3732 IRENUM (50708daa1b1cbb7d6ac1cf8f56a24410) C:\WINDOWS\system32\DRIVERS\irenum.sys
22:19:29.0500 3732 IRENUM - ok
22:19:29.0531 3732 isapnp (54632f1a7de61dc3615d756f2a90fa72) C:\WINDOWS\system32\DRIVERS\isapnp.sys
22:19:29.0531 3732 isapnp - ok
22:19:29.0578 3732 Iviaspi (f59c3569a2f2c464bb78cb1bdcdca55e) C:\WINDOWS\system32\drivers\iviaspi.sys
22:19:29.0578 3732 Iviaspi - ok
22:19:29.0625 3732 Kbdclass (e798705e8dc7fab596ef6bfdf167e007) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
22:19:29.0625 3732 Kbdclass - ok
22:19:29.0656 3732 kbdhid (62dd5eefcec4ef4163f1168d4262a9e4) C:\WINDOWS\system32\DRIVERS\kbdhid.sys
22:19:29.0656 3732 kbdhid - ok
22:19:29.0703 3732 kmixer (ba5deda4d934e6288c2f66caf58d2562) C:\WINDOWS\system32\drivers\kmixer.sys
22:19:29.0703 3732 kmixer - ok
22:19:29.0734 3732 KSecDD (674d3e5a593475915dc6643317192403) C:\WINDOWS\system32\drivers\KSecDD.sys
22:19:29.0734 3732 KSecDD - ok
22:19:29.0812 3732 Lavasoft Kernexplorer (6c4a3804510ad8e0f0c07b5be3d44ddb) C:\Program Files\Lavasoft\Ad-Aware\KernExplorer.sys
22:19:29.0812 3732 Lavasoft Kernexplorer - ok
22:19:29.0843 3732 Lbd (336abe8721cbc3110f1c6426da633417) C:\WINDOWS\system32\DRIVERS\Lbd.sys
22:19:29.0843 3732 Lbd - ok
22:19:29.0890 3732 LBeepKE (be2dc24d403643a2d1d98f33c7087b38) C:\WINDOWS\system32\Drivers\LBeepKE.sys
22:19:29.0890 3732 LBeepKE - ok
22:19:29.0921 3732 lbrtfdc - ok
22:19:29.0984 3732 LHidFilt (01cc7fb6e790ef044b411377f3a1ff41) C:\WINDOWS\system32\DRIVERS\LHidFilt.Sys
22:19:29.0984 3732 LHidFilt - ok
22:19:30.0000 3732 LMouFilt (a2e7eae8898d7b4b8c302b8f4e836bb5) C:\WINDOWS\system32\DRIVERS\LMouFilt.Sys
22:19:30.0015 3732 LMouFilt - ok
22:19:30.0062 3732 ltmodem5 (919de7d76d2c0c0139e08b3e7592d62e) C:\WINDOWS\system32\DRIVERS\ltmdmnt.sys
22:19:30.0078 3732 ltmodem5 - ok
22:19:30.0125 3732 LVPr2Mon (a6919138f29ae45e90e99fa94737e04c) C:\WINDOWS\system32\DRIVERS\LVPr2Mon.sys
22:19:30.0125 3732 LVPr2Mon - ok
22:19:30.0156 3732 LVRS - ok
22:19:30.0171 3732 LVUSBSta - ok
22:19:30.0187 3732 LVUVC - ok
22:19:30.0234 3732 MBAMProtector (69a6268d7f81e53d568ab4e7e991caf3) C:\WINDOWS\system32\drivers\mbam.sys
22:19:30.0234 3732 MBAMProtector - ok
22:19:30.0281 3732 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
22:19:30.0281 3732 mnmdd - ok
22:19:30.0343 3732 Modem (5ac7e16f5b40a6da14b5f2b3ada4693e) C:\WINDOWS\system32\drivers\Modem.sys
22:19:30.0343 3732 Modem - ok
22:19:30.0359 3732 Mouclass (7d4f19411bd941e1d432a99e24230386) C:\WINDOWS\system32\DRIVERS\mouclass.sys
22:19:30.0359 3732 Mouclass - ok
22:19:30.0406 3732 mouhid (124d6846040c79b9c997f78ef4b2a4e5) C:\WINDOWS\system32\DRIVERS\mouhid.sys
22:19:30.0406 3732 mouhid - ok
22:19:30.0453 3732 MountMgr (65653f3b4477f3c63e68a9659f85ee2e) C:\WINDOWS\system32\drivers\MountMgr.sys
22:19:30.0453 3732 MountMgr - ok
22:19:30.0484 3732 mraid35x - ok
22:19:30.0546 3732 MRxDAV (29414447eb5bde2f8397dc965dbb3156) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
22:19:30.0546 3732 MRxDAV - ok
22:19:30.0593 3732 MRxSmb (fb6c89bb3ce282b08bdb1e3c179e1c39) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
22:19:30.0609 3732 MRxSmb - ok
22:19:30.0640 3732 Msfs (561b3a4333ca2dbdba28b5b956822519) C:\WINDOWS\system32\drivers\Msfs.sys
22:19:30.0640 3732 Msfs - ok
22:19:30.0671 3732 MSKSSRV (ae431a8dd3c1d0d0610cdbac16057ad0) C:\WINDOWS\system32\drivers\MSKSSRV.sys
22:19:30.0687 3732 MSKSSRV - ok
22:19:30.0703 3732 MSPCLOCK (13e75fef9dfeb08eeded9d0246e1f448) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
22:19:30.0718 3732 MSPCLOCK - ok
22:19:30.0734 3732 MSPQM (1988a33ff19242576c3d0ef9ce785da7) C:\WINDOWS\system32\drivers\MSPQM.sys
22:19:30.0734 3732 MSPQM - ok
22:19:30.0781 3732 mssmbios (469541f8bfd2b32659d5d463a6714bce) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
22:19:30.0781 3732 mssmbios - ok
22:19:30.0812 3732 MSTEE (bf13612142995096ab084f2db7f40f77) C:\WINDOWS\system32\drivers\MSTEE.sys
22:19:30.0812 3732 MSTEE - ok
22:19:30.0828 3732 Mup (82035e0f41c2dd05ae41d27fe6cf7de1) C:\WINDOWS\system32\drivers\Mup.sys
22:19:30.0828 3732 Mup - ok
22:19:30.0859 3732 NABTSFEC (5c8dc6429c43dc6177c1fa5b76290d1a) C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
22:19:30.0859 3732 NABTSFEC - ok
22:19:30.0890 3732 NDIS (558635d3af1c7546d26067d5d9b6959e) C:\WINDOWS\system32\drivers\NDIS.sys
22:19:30.0890 3732 NDIS - ok
22:19:30.0921 3732 NdisIP (520ce427a8b298f54112857bcf6bde15) C:\WINDOWS\system32\DRIVERS\NdisIP.sys
22:19:30.0921 3732 NdisIP - ok
22:19:30.0953 3732 NdisTapi (08d43bbdacdf23f34d79e44ed35c1b4c) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
22:19:30.0953 3732 NdisTapi - ok
22:19:30.0968 3732 Ndisuio (34d6cd56409da9a7ed573e1c90a308bf) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
22:19:30.0968 3732 Ndisuio - ok
22:19:31.0000 3732 NdisWan (0b90e255a9490166ab368cd55a529893) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
22:19:31.0000 3732 NdisWan - ok
22:19:31.0031 3732 NDProxy (59fc3fb44d2669bc144fd87826bb571f) C:\WINDOWS\system32\drivers\NDProxy.sys
22:19:31.0031 3732 NDProxy - ok
22:19:31.0062 3732 NetBIOS (3a2aca8fc1d7786902ca434998d7ceb4) C:\WINDOWS\system32\DRIVERS\netbios.sys
22:19:31.0062 3732 NetBIOS - ok
22:19:31.0078 3732 NetBT (0c80e410cd2f47134407ee7dd19cc86b) C:\WINDOWS\system32\DRIVERS\netbt.sys
22:19:31.0093 3732 NetBT - ok
22:19:31.0125 3732 NIC1394 (5c5c53db4fef16cf87b9911c7e8c6fbc) C:\WINDOWS\system32\DRIVERS\nic1394.sys
22:19:31.0140 3732 NIC1394 - ok
22:19:31.0171 3732 NPF (b9730495e0cf674680121e34bd95a73b) C:\WINDOWS\system32\drivers\npf.sys
22:19:31.0171 3732 NPF - ok
22:19:31.0203 3732 Npfs (4f601bcb8f64ea3ac0994f98fed03f8e) C:\WINDOWS\system32\drivers\Npfs.sys
22:19:31.0203 3732 Npfs - ok
22:19:31.0281 3732 Ntfs (19a811ef5f1ed5c926a028ce107ff1af) C:\WINDOWS\system32\drivers\Ntfs.sys
22:19:31.0281 3732 Ntfs - ok
22:19:31.0343 3732 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
22:19:31.0343 3732 Null - ok
22:19:31.0375 3732 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
22:19:31.0375 3732 NwlnkFlt - ok
22:19:31.0390 3732 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
22:19:31.0406 3732 NwlnkFwd - ok
22:19:31.0437 3732 ohci1394 (0951db8e5823ea366b0e408d71e1ba2a) C:\WINDOWS\system32\DRIVERS\ohci1394.sys
22:19:31.0437 3732 ohci1394 - ok
22:19:31.0468 3732 Parport (318696359ac7df48d1e51974ec527dd2) C:\WINDOWS\system32\DRIVERS\parport.sys
22:19:31.0484 3732 Parport - ok
22:19:31.0500 3732 PartMgr (3334430c29dc338092f79c38ef7b4cd0) C:\WINDOWS\system32\drivers\PartMgr.sys
22:19:31.0500 3732 PartMgr - ok
22:19:31.0531 3732 ParVdm (9575c5630db8fb804649a6959737154c) C:\WINDOWS\system32\drivers\ParVdm.sys
22:19:31.0531 3732 ParVdm - ok
22:19:31.0562 3732 PCI (7c5da5c1ed801ad8b0309d5514f0b75e) C:\WINDOWS\system32\DRIVERS\pci.sys
22:19:31.0562 3732 PCI - ok
22:19:31.0578 3732 PCIDump - ok
22:19:31.0609 3732 PCIIde (f4bfde7209c14a07aaa61e4d6ae69eac) C:\WINDOWS\system32\DRIVERS\pciide.sys
22:19:31.0609 3732 PCIIde - ok
22:19:31.0640 3732 Pcmcia (641da274e163617ea7a33506bc6da8e3) C:\WINDOWS\system32\drivers\Pcmcia.sys
22:19:31.0640 3732 Pcmcia - ok
22:19:31.0656 3732 PDCOMP - ok
22:19:31.0671 3732 PDFRAME - ok
22:19:31.0687 3732 PDRELI - ok
22:19:31.0718 3732 PDRFRAME - ok
22:19:31.0734 3732 perc2 - ok
22:19:31.0750 3732 perc2hib - ok
22:19:31.0796 3732 Pfc (444f122e68db44c0589227781f3c8b3f) C:\WINDOWS\system32\drivers\pfc.sys
22:19:31.0796 3732 Pfc - ok
22:19:31.0828 3732 PptpMiniport (1c5cc65aac0783c344f16353e60b72ac) C:\WINDOWS\system32\DRIVERS\raspptp.sys
22:19:31.0828 3732 PptpMiniport - ok
22:19:31.0843 3732 Processor (f480712b761e538bc8e44ede60f3a3c3) C:\WINDOWS\system32\DRIVERS\processr.sys
22:19:31.0859 3732 Processor - ok
22:19:31.0906 3732 Ps2 (bffdb363485501a38f0bca83aec810db) C:\WINDOWS\system32\DRIVERS\PS2.sys
22:19:31.0906 3732 Ps2 - ok
22:19:31.0937 3732 PSched (48671f327553dcf1d27f6197f622a668) C:\WINDOWS\system32\DRIVERS\psched.sys
22:19:31.0937 3732 PSched - ok
22:19:31.0953 3732 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
22:19:31.0953 3732 Ptilink - ok
22:19:31.0984 3732 PxHelp20 (30cbae0a34359f1cd19d1576245149ed) C:\WINDOWS\system32\Drivers\PxHelp20.sys
22:19:31.0984 3732 PxHelp20 - ok
22:19:32.0000 3732 ql1080 - ok
22:19:32.0015 3732 Ql10wnt - ok
22:19:32.0031 3732 ql12160 - ok
22:19:32.0046 3732 ql1240 - ok
22:19:32.0078 3732 ql1280 - ok
22:19:32.0093 3732 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
22:19:32.0093 3732 RasAcd - ok
22:19:32.0125 3732 Rasl2tp (98faeb4a4dcf812ba1c6fca4aa3e115c) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
22:19:32.0125 3732 Rasl2tp - ok
22:19:32.0156 3732 RasPppoe (7306eeed8895454cbed4669be9f79faa) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
22:19:32.0156 3732 RasPppoe - ok
22:19:32.0187 3732 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
22:19:32.0187 3732 Raspti - ok
22:19:32.0234 3732 Rdbss (03b965b1ca47f6ef60eb5e51cb50e0af) C:\WINDOWS\system32\DRIVERS\rdbss.sys
22:19:32.0234 3732 Rdbss - ok
22:19:32.0265 3732 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
22:19:32.0265 3732 RDPCDD - ok
22:19:32.0328 3732 RDPWD (b54cd38a9ebfbf2b3561426e3fe26f62) C:\WINDOWS\system32\drivers\RDPWD.sys
22:19:32.0328 3732 RDPWD - ok
22:19:32.0375 3732 redbook (2cc30b68dd62b73d444a41322cd7fc4c) C:\WINDOWS\system32\DRIVERS\redbook.sys
22:19:32.0375 3732 redbook - ok
22:19:32.0437 3732 rtl8139 (2ef9c0dc26b30b2318b1fc3faa1f0ae7) C:\WINDOWS\system32\DRIVERS\R8139n51.SYS
22:19:32.0437 3732 rtl8139 - ok
22:19:32.0484 3732 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
22:19:32.0500 3732 Secdrv - ok
22:19:32.0546 3732 Serial (653201755ca96ab4aaa4131daf6da356) C:\WINDOWS\system32\drivers\Serial.sys
22:19:32.0546 3732 Serial - ok
22:19:32.0562 3732 Sfloppy (0d13b6df6e9e101013a7afb0ce629fe0) C:\WINDOWS\system32\drivers\Sfloppy.sys
22:19:32.0562 3732 Sfloppy - ok
22:19:32.0593 3732 Simbad - ok
22:19:32.0625 3732 SLIP (5caeed86821fa2c6139e32e9e05ccdc9) C:\WINDOWS\system32\DRIVERS\SLIP.sys
22:19:32.0625 3732 SLIP - ok
22:19:32.0640 3732 Sparrow - ok
22:19:32.0687 3732 splitter (0ce218578fff5f4f7e4201539c45c78f) C:\WINDOWS\system32\drivers\splitter.sys
22:19:32.0687 3732 splitter - ok
22:19:32.0765 3732 sptd (4e3c4ffcb2c95c2ec1fa04a6f4531533) C:\WINDOWS\system32\Drivers\sptd.sys
22:19:32.0765 3732 Suspicious file (NoAccess): C:\WINDOWS\system32\Drivers\sptd.sys. md5: 4e3c4ffcb2c95c2ec1fa04a6f4531533
22:19:32.0765 3732 sptd ( LockedFile.Multi.Generic ) - warning
22:19:32.0765 3732 sptd - detected LockedFile.Multi.Generic (1)
22:19:32.0796 3732 sr (b52181023b827acda36c1b76751ebffd) C:\WINDOWS\system32\DRIVERS\sr.sys
22:19:32.0796 3732 sr - ok
22:19:32.0843 3732 Srv (7a4f147cc6b133f905f6e65e2f8669fb) C:\WINDOWS\system32\DRIVERS\srv.sys
22:19:32.0843 3732 Srv - ok
22:19:32.0890 3732 streamip (284c57df5dc7abca656bc2b96a667afb) C:\WINDOWS\system32\DRIVERS\StreamIP.sys
22:19:32.0890 3732 streamip - ok
22:19:32.0921 3732 swenum (03c1bae4766e2450219d20b993d6e046) C:\WINDOWS\system32\DRIVERS\swenum.sys
22:19:32.0921 3732 swenum - ok
22:19:32.0953 3732 swmidi (94abc808fc4b6d7d2bbf42b85e25bb4d) C:\WINDOWS\system32\drivers\swmidi.sys
22:19:32.0953 3732 swmidi - ok
22:19:32.0968 3732 symc810 - ok
22:19:33.0000 3732 symc8xx - ok
22:19:33.0015 3732 sym_hi - ok
22:19:33.0031 3732 sym_u3 - ok
22:19:33.0062 3732 sysaudio (650ad082d46bac0e64c9c0e0928492fd) C:\WINDOWS\system32\drivers\sysaudio.sys
22:19:33.0062 3732 sysaudio - ok
22:19:33.0109 3732 Tcpip (2a5554fc5b1e04e131230e3ce035c3f9) C:\WINDOWS\system32\DRIVERS\tcpip.sys
22:19:33.0109 3732 Tcpip - ok
22:19:33.0140 3732 TDPIPE (38d437cf2d98965f239b0abcd66dcb0f) C:\WINDOWS\system32\drivers\TDPIPE.sys
22:19:33.0140 3732 TDPIPE - ok
22:19:33.0171 3732 TDTCP (ed0580af02502d00ad8c4c066b156be9) C:\WINDOWS\system32\drivers\TDTCP.sys
22:19:33.0171 3732 TDTCP - ok
22:19:33.0187 3732 TermDD (a540a99c281d933f3d69d55e48727f47) C:\WINDOWS\system32\DRIVERS\termdd.sys
22:19:33.0187 3732 TermDD - ok
22:19:33.0218 3732 TosIde - ok
22:19:33.0250 3732 Udfs (12f70256f140cd7d52c58c7048fde657) C:\WINDOWS\system32\drivers\Udfs.sys
22:19:33.0250 3732 Udfs - ok
22:19:33.0265 3732 ultra - ok
22:19:33.0312 3732 Update (aff2e5045961bbc0a602bb6f95eb1345) C:\WINDOWS\system32\DRIVERS\update.sys
22:19:33.0312 3732 Update - ok
22:19:33.0375 3732 usbaudio (45a0d14b26c35497ad93bce7e15c9941) C:\WINDOWS\system32\drivers\usbaudio.sys
22:19:33.0390 3732 usbaudio - ok
22:19:33.0437 3732 usbccgp (bffd9f120cc63bcbaa3d840f3eef9f79) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
22:19:33.0437 3732 usbccgp - ok
22:19:33.0468 3732 usbehci (15e993ba2f6946b2bfbbfcd30398621e) C:\WINDOWS\system32\DRIVERS\usbehci.sys
22:19:33.0468 3732 usbehci - ok
22:19:33.0500 3732 usbhub (c72f40947f92cea56a8fb532edf025f1) C:\WINDOWS\system32\DRIVERS\usbhub.sys
22:19:33.0500 3732 usbhub - ok
22:19:33.0515 3732 usbohci (bdfe799a8531bad8a5a985821fe78760) C:\WINDOWS\system32\DRIVERS\usbohci.sys
22:19:33.0515 3732 usbohci - ok
22:19:33.0546 3732 USBSTOR (6cd7b22193718f1d17a47a1cd6d37e75) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
22:19:33.0546 3732 USBSTOR - ok
22:19:33.0578 3732 usbuhci (f8fd1400092e23c8f2f31406ef06167b) C:\WINDOWS\system32\DRIVERS\usbuhci.sys
22:19:33.0578 3732 usbuhci - ok
22:19:33.0609 3732 usbvideo (8968ff3973a883c49e8b564200f565b9) C:\WINDOWS\system32\Drivers\usbvideo.sys
22:19:33.0609 3732 usbvideo - ok
22:19:33.0640 3732 VgaSave (8a60edd72b4ea5aea8202daf0e427925) C:\WINDOWS\System32\drivers\vga.sys
22:19:33.0640 3732 VgaSave - ok
22:19:33.0656 3732 ViaIde (59cb1338ad3654417bea49636457f65d) C:\WINDOWS\system32\DRIVERS\viaide.sys
22:19:33.0671 3732 ViaIde - ok
22:19:33.0687 3732 VolSnap (313b1a0d5db26dfe1c34a6c13b2ce0a7) C:\WINDOWS\system32\drivers\VolSnap.sys
22:19:33.0687 3732 VolSnap - ok
22:19:33.0734 3732 Wanarp (984ef0b9788abf89974cfed4bfbaacbc) C:\WINDOWS\system32\DRIVERS\wanarp.sys
22:19:33.0734 3732 Wanarp - ok
22:19:33.0812 3732 Wdf01000 (d918617b46457b9ac28027722e30f647) C:\WINDOWS\system32\Drivers\wdf01000.sys
22:19:33.0812 3732 Wdf01000 - ok
22:19:33.0843 3732 WDICA - ok
22:19:33.0875 3732 wdmaud (efd235ca22b57c81118c1aeb4798f1c1) C:\WINDOWS\system32\drivers\wdmaud.sys
22:19:33.0890 3732 wdmaud - ok
22:19:33.0953 3732 WSTCODEC (d5842484f05e12121c511aa93f6439ec) C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
22:19:33.0968 3732 WSTCODEC - ok
22:19:34.0000 3732 MBR (0x1B8) (4f3a0ea76e7edbe2fc4a98f9de544751) \Device\Harddisk0\DR0
22:19:34.0015 3732 \Device\Harddisk0\DR0 - ok
22:19:34.0031 3732 MBR (0x1B8) (d22f10b1216707c7a85d202a6bc51adc) \Device\Harddisk5\DR7
22:19:34.0046 3732 \Device\Harddisk5\DR7 - ok
22:19:34.0046 3732 Boot (0x1200) (8306359d26602834988c801330ae0786) \Device\Harddisk0\DR0\Partition0
22:19:34.0046 3732 \Device\Harddisk0\DR0\Partition0 - ok
22:19:34.0078 3732 Boot (0x1200) (37d174b3ad3b67760188e9423b6ca62d) \Device\Harddisk0\DR0\Partition1
22:19:34.0078 3732 \Device\Harddisk0\DR0\Partition1 - ok
22:19:34.0078 3732 Boot (0x1200) (1c3f19ce17f5bf80b30886e826a27f75) \Device\Harddisk5\DR7\Partition0
22:19:34.0078 3732 \Device\Harddisk5\DR7\Partition0 - ok
22:19:34.0093 3732 ============================================================
22:19:34.0093 3732 Scan finished
22:19:34.0093 3732 ============================================================
22:19:34.0093 0412 Detected object count: 1
22:19:34.0093 0412 Actual detected object count: 1
22:19:39.0734 0412 sptd ( LockedFile.Multi.Generic ) - skipped by user
22:19:39.0734 0412 sptd ( LockedFile.Multi.Generic ) - User select action: Skip
22:20:18.0484 2788 ============================================================
22:20:18.0484 2788 Scan started
22:20:18.0484 2788 Mode: Manual;
22:20:18.0484 2788 ============================================================
22:20:18.0671 2788 Aavmker4 (b6de0336f9f4b687b4ff57939f7b657a) C:\WINDOWS\system32\drivers\Aavmker4.sys
22:20:18.0687 2788 Aavmker4 - ok
22:20:18.0703 2788 Abiosdsk - ok
22:20:18.0718 2788 abp480n5 - ok
22:20:18.0781 2788 ACPI (0bd94fbfc14ea3606cd6ca4c0255baa3) C:\WINDOWS\system32\DRIVERS\ACPI.sys
22:20:18.0781 2788 ACPI - ok
22:20:18.0812 2788 ACPIEC (e4abc1212b70bb03d35e60681c447210) C:\WINDOWS\system32\drivers\ACPIEC.sys
22:20:18.0812 2788 ACPIEC - ok
22:20:18.0828 2788 adpu160m - ok
22:20:18.0890 2788 aec (1ee7b434ba961ef845de136224c30fec) C:\WINDOWS\system32\drivers\aec.sys
22:20:18.0890 2788 aec - ok
22:20:18.0921 2788 AFD (55e6e1c51b6d30e54335750955453702) C:\WINDOWS\System32\drivers\afd.sys
22:20:18.0921 2788 AFD - ok
22:20:19.0000 2788 AgereSoftModem (593aefc67283d409f34cc1245d00a509) C:\WINDOWS\system32\DRIVERS\AGRSM.sys
22:20:19.0031 2788 AgereSoftModem - ok
22:20:19.0046 2788 Aha154x - ok
22:20:19.0062 2788 aic78u2 - ok
22:20:19.0093 2788 aic78xx - ok
22:20:19.0187 2788 ALCXWDM (8d6c30e515717248e0e52b85fd7ac466) C:\WINDOWS\system32\drivers\ALCXWDM.SYS
22:20:19.0218 2788 ALCXWDM - ok
22:20:19.0265 2788 AliIde - ok
22:20:19.0296 2788 AmdK8 (841871eac4e0dab2bd2b56ce59ef9511) C:\WINDOWS\system32\DRIVERS\AmdK8.sys
22:20:19.0296 2788 AmdK8 - ok
22:20:19.0312 2788 amsint - ok
22:20:19.0343 2788 Arp1394 (f0d692b0bffb46e30eb3cea168bbc49f) C:\WINDOWS\system32\DRIVERS\arp1394.sys
22:20:19.0359 2788 Arp1394 - ok
22:20:19.0375 2788 asc - ok
22:20:19.0390 2788 asc3350p - ok
22:20:19.0406 2788 asc3550 - ok
22:20:19.0484 2788 aswFsBlk (054df24c92b55427e0757cfff160e4f2) C:\WINDOWS\system32\drivers\aswFsBlk.sys
22:20:19.0484 2788 aswFsBlk - ok
22:20:19.0515 2788 aswMon2 (ef0e9ad83380724bd6fbbb51d2d0f5b8) C:\WINDOWS\system32\drivers\aswMon2.sys
22:20:19.0515 2788 aswMon2 - ok
22:20:19.0546 2788 aswRdr (352d5a48ebab35a7693b048679304831) C:\WINDOWS\system32\drivers\aswRdr.sys
22:20:19.0546 2788 aswRdr - ok
22:20:19.0593 2788 aswSnx (8d34d2b24297e27d93e847319abfdec4) C:\WINDOWS\system32\drivers\aswSnx.sys
22:20:19.0593 2788 aswSnx - ok
22:20:19.0640 2788 aswSP (010012597333da1f46c3243f33f8409e) C:\WINDOWS\system32\drivers\aswSP.sys
22:20:19.0640 2788 aswSP - ok
22:20:19.0687 2788 aswTdi (f9f84364416658e9786235904d448d37) C:\WINDOWS\system32\drivers\aswTdi.sys
22:20:19.0687 2788 aswTdi - ok
22:20:19.0718 2788 AsyncMac (02000abf34af4c218c35d257024807d6) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
22:20:19.0718 2788 AsyncMac - ok
22:20:19.0750 2788 atapi (cdfe4411a69c224bd1d11b2da92dac51) C:\WINDOWS\system32\DRIVERS\atapi.sys
22:20:19.0750 2788 atapi - ok
22:20:19.0765 2788 Atdisk - ok
22:20:19.0843 2788 ati2mtag (f43601d255762f20d0e23a6d97062b0d) C:\WINDOWS\system32\DRIVERS\ati2mtag.sys
22:20:19.0843 2788 ati2mtag - ok
22:20:19.0890 2788 Atmarpc (ec88da854ab7d7752ec8be11a741bb7f) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
22:20:19.0890 2788 Atmarpc - ok
22:20:19.0921 2788 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
22:20:19.0921 2788 audstub - ok
22:20:19.0968 2788 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
22:20:19.0968 2788 Beep - ok
22:20:20.0015 2788 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
22:20:20.0015 2788 cbidf2k - ok
22:20:20.0046 2788 CCDECODE (6163ed60b684bab19d3352ab22fc48b2) C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
22:20:20.0046 2788 CCDECODE - ok
22:20:20.0062 2788 cd20xrnt - ok
22:20:20.0093 2788 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
22:20:20.0093 2788 Cdaudio - ok
22:20:20.0125 2788 Cdfs (cd7d5152df32b47f4e36f710b35aae02) C:\WINDOWS\system32\drivers\Cdfs.sys
22:20:20.0125 2788 Cdfs - ok
22:20:20.0156 2788 Cdrom (af9c19b3100fe010496b1a27181fbf72) C:\WINDOWS\system32\DRIVERS\cdrom.sys
22:20:20.0156 2788 Cdrom - ok
22:20:20.0187 2788 Changer - ok
22:20:20.0218 2788 CmdIde - ok
22:20:20.0250 2788 Cpqarray - ok
22:20:20.0281 2788 dac2w2k - ok
22:20:20.0296 2788 dac960nt - ok
22:20:20.0328 2788 Disk (00ca44e4534865f8a3b64f7c0984bff0) C:\WINDOWS\system32\DRIVERS\disk.sys
22:20:20.0328 2788 Disk - ok
22:20:20.0390 2788 dmboot (e2d3b7620310fe56685f9b15a6b404b3) C:\WINDOWS\system32\drivers\dmboot.sys
22:20:20.0390 2788 dmboot - ok
22:20:20.0453 2788 dmio (c77f5c20aa70197a69aa84baa9de43c8) C:\WINDOWS\system32\drivers\dmio.sys
22:20:20.0453 2788 dmio - ok
22:20:20.0484 2788 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
22:20:20.0484 2788 dmload - ok
22:20:20.0515 2788 DMusic (a6f881284ac1150e37d9ae47ff601267) C:\WINDOWS\system32\drivers\DMusic.sys
22:20:20.0515 2788 DMusic - ok
22:20:20.0531 2788 dpti2o - ok
22:20:20.0562 2788 drmkaud (1ed4dbbae9f5d558dbba4cc450e3eb2e) C:\WINDOWS\system32\drivers\drmkaud.sys
22:20:20.0562 2788 drmkaud - ok
22:20:20.0593 2788 Fastfat (3117f595e9615e04f05a54fc15a03b20) C:\WINDOWS\system32\drivers\Fastfat.sys
22:20:20.0593 2788 Fastfat - ok
22:20:20.0640 2788 Fdc (ced2e8396a8838e59d8fd529c680e02c) C:\WINDOWS\system32\DRIVERS\fdc.sys
22:20:20.0640 2788 Fdc - ok
22:20:20.0656 2788 FilterService - ok
22:20:20.0687 2788 Fips (8b121ff880683607ab2aef0340721718) C:\WINDOWS\system32\drivers\Fips.sys
22:20:20.0687 2788 Fips - ok
22:20:20.0703 2788 Flpydisk (0dd1de43115b93f4d85e889d7a86f548) C:\WINDOWS\system32\DRIVERS\flpydisk.sys
22:20:20.0703 2788 Flpydisk - ok
22:20:20.0750 2788 FltMgr (3d234fb6d6ee875eb009864a299bea29) C:\WINDOWS\system32\DRIVERS\fltMgr.sys
22:20:20.0750 2788 FltMgr - ok
22:20:20.0765 2788 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
22:20:20.0765 2788 Fs_Rec - ok
22:20:20.0796 2788 Ftdisk (a86859b77b908c18c2657f284aa29fe3) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
22:20:20.0796 2788 Ftdisk - ok
22:20:20.0828 2788 GEARAspiWDM (2fb04db459c71f416ee8b05448ca4ac3) C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys
22:20:20.0828 2788 GEARAspiWDM - ok
22:20:20.0843 2788 Gpc (c0f1d4a21de5a415df8170616703debf) C:\WINDOWS\system32\DRIVERS\msgpc.sys
22:20:20.0859 2788 Gpc - ok
22:20:20.0875 2788 HidUsb (1de6783b918f540149aa69943bdfeba8) C:\WINDOWS\system32\DRIVERS\hidusb.sys
22:20:20.0875 2788 HidUsb - ok
22:20:20.0906 2788 hpn - ok
22:20:20.0953 2788 HTTP (9f8b0f4276f618964fd118be4289b7cd) C:\WINDOWS\system32\Drivers\HTTP.sys
22:20:20.0953 2788 HTTP - ok
22:20:20.0968 2788 i2omgmt - ok
22:20:21.0000 2788 i2omp - ok
22:20:21.0015 2788 i8042prt (d1efcbd693b5ba21314d06368c471070) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
22:20:21.0015 2788 i8042prt - ok
22:20:21.0046 2788 Imapi (f8aa320c6a0409c0380e5d8a99d76ec6) C:\WINDOWS\system32\DRIVERS\imapi.sys
22:20:21.0046 2788 Imapi - ok
22:20:21.0062 2788 ini910u - ok
22:20:21.0093 2788 IntelIde (1367812f8a974e0c13a4888fa5e7ede6) C:\WINDOWS\system32\DRIVERS\intelide.sys
22:20:21.0093 2788 IntelIde - ok
22:20:21.0125 2788 intelppm - ok
22:20:21.0171 2788 Ip6Fw (4448006b6bc60e6c027932cfc38d6855) C:\WINDOWS\system32\DRIVERS\Ip6Fw.sys
22:20:21.0171 2788 Ip6Fw - ok
22:20:21.0203 2788 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
22:20:21.0203 2788 IpFilterDriver - ok
22:20:21.0234 2788 IpInIp (e1ec7f5da720b640cd8fb8424f1b14bb) C:\WINDOWS\system32\DRIVERS\ipinip.sys
22:20:21.0234 2788 IpInIp - ok
22:20:21.0281 2788 IpNat (e2168cbc7098ffe963c6f23f472a3593) C:\WINDOWS\system32\DRIVERS\ipnat.sys
22:20:21.0281 2788 IpNat - ok
22:20:21.0312 2788 IPSec (64537aa5c003a6afeee1df819062d0d1) C:\WINDOWS\system32\DRIVERS\ipsec.sys
22:20:21.0312 2788 IPSec - ok
22:20:21.0328 2788 IRENUM (50708daa1b1cbb7d6ac1cf8f56a24410) C:\WINDOWS\system32\DRIVERS\irenum.sys
22:20:21.0328 2788 IRENUM - ok
22:20:21.0359 2788 isapnp (54632f1a7de61dc3615d756f2a90fa72) C:\WINDOWS\system32\DRIVERS\isapnp.sys
22:20:21.0359 2788 isapnp - ok
22:20:21.0406 2788 Iviaspi (f59c3569a2f2c464bb78cb1bdcdca55e) C:\WINDOWS\system32\drivers\iviaspi.sys
22:20:21.0406 2788 Iviaspi - ok
22:20:21.0468 2788 Kbdclass (e798705e8dc7fab596ef6bfdf167e007) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
22:20:21.0468 2788 Kbdclass - ok
22:20:21.0484 2788 kbdhid (62dd5eefcec4ef4163f1168d4262a9e4) C:\WINDOWS\system32\DRIVERS\kbdhid.sys
22:20:21.0484 2788 kbdhid - ok
22:20:21.0531 2788 kmixer (ba5deda4d934e6288c2f66caf58d2562) C:\WINDOWS\system32\drivers\kmixer.sy
22:11:38.0265 1236 TDSS rootkit removing tool 2.6.22.0 Dec 7 2011 13:21:06
22:11:38.0906 1236 ============================================================
22:11:38.0906 1236 Current date / time: 2011/12/11 22:11:38.0906
22:11:38.0906 1236 SystemInfo:
22:11:38.0906 1236
22:11:38.0906 1236 OS Version: 5.1.2600 ServicePack: 2.0
22:11:38.0906 1236 Product type: Workstation
22:11:38.0906 1236 ComputerName: MÉZON
22:11:38.0906 1236 UserName: HP_Propriétaire
22:11:38.0906 1236 Windows directory: C:\WINDOWS
22:11:38.0906 1236 System windows directory: C:\WINDOWS
22:11:38.0906 1236 Processor architecture: Intel x86
22:11:38.0906 1236 Number of processors: 1
22:11:38.0906 1236 Page size: 0x1000
22:11:38.0906 1236 Boot type: Normal boot
22:11:38.0906 1236 ============================================================
22:11:50.0265 1236 Initialize success
22:13:02.0890 0464 ============================================================
22:13:02.0890 0464 Scan started
22:13:02.0890 0464 Mode: Manual;
22:13:02.0890 0464 ============================================================
22:13:03.0265 0464 Aavmker4 (b6de0336f9f4b687b4ff57939f7b657a) C:\WINDOWS\system32\drivers\Aavmker4.sys
22:13:03.0296 0464 Aavmker4 - ok
22:13:03.0312 0464 Abiosdsk - ok
22:13:03.0343 0464 abp480n5 - ok
22:13:03.0390 0464 ACPI (0bd94fbfc14ea3606cd6ca4c0255baa3) C:\WINDOWS\system32\DRIVERS\ACPI.sys
22:13:03.0390 0464 ACPI - ok
22:13:03.0437 0464 ACPIEC (e4abc1212b70bb03d35e60681c447210) C:\WINDOWS\system32\drivers\ACPIEC.sys
22:13:03.0437 0464 ACPIEC - ok
22:13:03.0453 0464 adpu160m - ok
22:13:03.0500 0464 aec (1ee7b434ba961ef845de136224c30fec) C:\WINDOWS\system32\drivers\aec.sys
22:13:03.0515 0464 aec - ok
22:13:03.0546 0464 AFD (55e6e1c51b6d30e54335750955453702) C:\WINDOWS\System32\drivers\afd.sys
22:13:03.0546 0464 AFD - ok
22:13:03.0625 0464 AgereSoftModem (593aefc67283d409f34cc1245d00a509) C:\WINDOWS\system32\DRIVERS\AGRSM.sys
22:13:03.0671 0464 AgereSoftModem - ok
22:13:03.0687 0464 Aha154x - ok
22:13:03.0718 0464 aic78u2 - ok
22:13:03.0734 0464 aic78xx - ok
22:13:03.0843 0464 ALCXWDM (8d6c30e515717248e0e52b85fd7ac466) C:\WINDOWS\system32\drivers\ALCXWDM.SYS
22:13:03.0906 0464 ALCXWDM - ok
22:13:03.0937 0464 AliIde - ok
22:13:03.0968 0464 AmdK8 (841871eac4e0dab2bd2b56ce59ef9511) C:\WINDOWS\system32\DRIVERS\AmdK8.sys
22:13:03.0968 0464 AmdK8 - ok
22:13:04.0000 0464 amsint - ok
22:13:04.0046 0464 Arp1394 (f0d692b0bffb46e30eb3cea168bbc49f) C:\WINDOWS\system32\DRIVERS\arp1394.sys
22:13:04.0062 0464 Arp1394 - ok
22:13:04.0078 0464 asc - ok
22:13:04.0093 0464 asc3350p - ok
22:13:04.0125 0464 asc3550 - ok
22:13:04.0187 0464 aswFsBlk (054df24c92b55427e0757cfff160e4f2) C:\WINDOWS\system32\drivers\aswFsBlk.sys
22:13:04.0187 0464 aswFsBlk - ok
22:13:04.0218 0464 aswMon2 (ef0e9ad83380724bd6fbbb51d2d0f5b8) C:\WINDOWS\system32\drivers\aswMon2.sys
22:13:04.0218 0464 aswMon2 - ok
22:13:04.0250 0464 aswRdr (352d5a48ebab35a7693b048679304831) C:\WINDOWS\system32\drivers\aswRdr.sys
22:13:04.0250 0464 aswRdr - ok
22:13:04.0312 0464 aswSnx (8d34d2b24297e27d93e847319abfdec4) C:\WINDOWS\system32\drivers\aswSnx.sys
22:13:04.0328 0464 aswSnx - ok
22:13:04.0375 0464 aswSP (010012597333da1f46c3243f33f8409e) C:\WINDOWS\system32\drivers\aswSP.sys
22:13:04.0375 0464 aswSP - ok
22:13:04.0437 0464 aswTdi (f9f84364416658e9786235904d448d37) C:\WINDOWS\system32\drivers\aswTdi.sys
22:13:04.0437 0464 aswTdi - ok
22:13:04.0468 0464 AsyncMac (02000abf34af4c218c35d257024807d6) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
22:13:04.0468 0464 AsyncMac - ok
22:13:04.0500 0464 atapi (cdfe4411a69c224bd1d11b2da92dac51) C:\WINDOWS\system32\DRIVERS\atapi.sys
22:13:04.0500 0464 atapi - ok
22:13:04.0515 0464 Atdisk - ok
22:13:04.0593 0464 ati2mtag (f43601d255762f20d0e23a6d97062b0d) C:\WINDOWS\system32\DRIVERS\ati2mtag.sys
22:13:04.0609 0464 ati2mtag - ok
22:13:04.0656 0464 Atmarpc (ec88da854ab7d7752ec8be11a741bb7f) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
22:13:04.0656 0464 Atmarpc - ok
22:13:04.0703 0464 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
22:13:04.0703 0464 audstub - ok
22:13:04.0750 0464 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
22:13:04.0750 0464 Beep - ok
22:13:04.0781 0464 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
22:13:04.0781 0464 cbidf2k - ok
22:13:04.0812 0464 CCDECODE (6163ed60b684bab19d3352ab22fc48b2) C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
22:13:04.0812 0464 CCDECODE - ok
22:13:04.0828 0464 cd20xrnt - ok
22:13:04.0859 0464 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
22:13:04.0859 0464 Cdaudio - ok
22:13:04.0890 0464 Cdfs (cd7d5152df32b47f4e36f710b35aae02) C:\WINDOWS\system32\drivers\Cdfs.sys
22:13:04.0890 0464 Cdfs - ok
22:13:04.0921 0464 Cdrom (af9c19b3100fe010496b1a27181fbf72) C:\WINDOWS\system32\DRIVERS\cdrom.sys
22:13:04.0921 0464 Cdrom - ok
22:13:04.0937 0464 Changer - ok
22:13:05.0000 0464 CmdIde - ok
22:13:05.0031 0464 Cpqarray - ok
22:13:05.0062 0464 dac2w2k - ok
22:13:05.0078 0464 dac960nt - ok
22:13:05.0125 0464 Disk (00ca44e4534865f8a3b64f7c0984bff0) C:\WINDOWS\system32\DRIVERS\disk.sys
22:13:05.0125 0464 Disk - ok
22:13:05.0187 0464 dmboot (e2d3b7620310fe56685f9b15a6b404b3) C:\WINDOWS\system32\drivers\dmboot.sys
22:13:05.0218 0464 dmboot - ok
22:13:05.0265 0464 dmio (c77f5c20aa70197a69aa84baa9de43c8) C:\WINDOWS\system32\drivers\dmio.sys
22:13:05.0265 0464 dmio - ok
22:13:05.0312 0464 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
22:13:05.0312 0464 dmload - ok
22:13:05.0359 0464 DMusic (a6f881284ac1150e37d9ae47ff601267) C:\WINDOWS\system32\drivers\DMusic.sys
22:13:05.0359 0464 DMusic - ok
22:13:05.0375 0464 dpti2o - ok
22:13:05.0406 0464 drmkaud (1ed4dbbae9f5d558dbba4cc450e3eb2e) C:\WINDOWS\system32\drivers\drmkaud.sys
22:13:05.0406 0464 drmkaud - ok
22:13:05.0437 0464 Fastfat (3117f595e9615e04f05a54fc15a03b20) C:\WINDOWS\system32\drivers\Fastfat.sys
22:13:05.0437 0464 Fastfat - ok
22:13:05.0484 0464 Fdc (ced2e8396a8838e59d8fd529c680e02c) C:\WINDOWS\system32\DRIVERS\fdc.sys
22:13:05.0484 0464 Fdc - ok
22:13:05.0500 0464 FilterService - ok
22:13:05.0531 0464 Fips (8b121ff880683607ab2aef0340721718) C:\WINDOWS\system32\drivers\Fips.sys
22:13:05.0531 0464 Fips - ok
22:13:05.0546 0464 Flpydisk (0dd1de43115b93f4d85e889d7a86f548) C:\WINDOWS\system32\DRIVERS\flpydisk.sys
22:13:05.0546 0464 Flpydisk - ok
22:13:05.0593 0464 FltMgr (3d234fb6d6ee875eb009864a299bea29) C:\WINDOWS\system32\DRIVERS\fltMgr.sys
22:13:05.0609 0464 FltMgr - ok
22:13:05.0625 0464 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
22:13:05.0625 0464 Fs_Rec - ok
22:13:05.0656 0464 Ftdisk (a86859b77b908c18c2657f284aa29fe3) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
22:13:05.0656 0464 Ftdisk - ok
22:13:05.0687 0464 GEARAspiWDM (2fb04db459c71f416ee8b05448ca4ac3) C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys
22:13:05.0687 0464 GEARAspiWDM - ok
22:13:05.0718 0464 Gpc (c0f1d4a21de5a415df8170616703debf) C:\WINDOWS\system32\DRIVERS\msgpc.sys
22:13:05.0718 0464 Gpc - ok
22:13:05.0734 0464 HidUsb (1de6783b918f540149aa69943bdfeba8) C:\WINDOWS\system32\DRIVERS\hidusb.sys
22:13:05.0750 0464 HidUsb - ok
22:13:05.0765 0464 hpn - ok
22:13:05.0812 0464 HTTP (9f8b0f4276f618964fd118be4289b7cd) C:\WINDOWS\system32\Drivers\HTTP.sys
22:13:05.0828 0464 HTTP - ok
22:13:05.0859 0464 i2omgmt - ok
22:13:05.0875 0464 i2omp - ok
22:13:05.0906 0464 i8042prt (d1efcbd693b5ba21314d06368c471070) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
22:13:05.0906 0464 i8042prt - ok
22:13:05.0921 0464 Imapi (f8aa320c6a0409c0380e5d8a99d76ec6) C:\WINDOWS\system32\DRIVERS\imapi.sys
22:13:05.0921 0464 Imapi - ok
22:13:05.0953 0464 ini910u - ok
22:13:05.0984 0464 IntelIde (1367812f8a974e0c13a4888fa5e7ede6) C:\WINDOWS\system32\DRIVERS\intelide.sys
22:13:05.0984 0464 IntelIde - ok
22:13:06.0000 0464 intelppm - ok
22:13:06.0031 0464 Ip6Fw (4448006b6bc60e6c027932cfc38d6855) C:\WINDOWS\system32\DRIVERS\Ip6Fw.sys
22:13:06.0046 0464 Ip6Fw - ok
22:13:06.0078 0464 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
22:13:06.0078 0464 IpFilterDriver - ok
22:13:06.0109 0464 IpInIp (e1ec7f5da720b640cd8fb8424f1b14bb) C:\WINDOWS\system32\DRIVERS\ipinip.sys
22:13:06.0109 0464 IpInIp - ok
22:13:06.0140 0464 IpNat (e2168cbc7098ffe963c6f23f472a3593) C:\WINDOWS\system32\DRIVERS\ipnat.sys
22:13:06.0156 0464 IpNat - ok
22:13:06.0187 0464 IPSec (64537aa5c003a6afeee1df819062d0d1) C:\WINDOWS\system32\DRIVERS\ipsec.sys
22:13:06.0187 0464 IPSec - ok
22:13:06.0218 0464 IRENUM (50708daa1b1cbb7d6ac1cf8f56a24410) C:\WINDOWS\system32\DRIVERS\irenum.sys
22:13:06.0218 0464 IRENUM - ok
22:13:06.0250 0464 isapnp (54632f1a7de61dc3615d756f2a90fa72) C:\WINDOWS\system32\DRIVERS\isapnp.sys
22:13:06.0250 0464 isapnp - ok
22:13:06.0281 0464 Iviaspi (f59c3569a2f2c464bb78cb1bdcdca55e) C:\WINDOWS\system32\drivers\iviaspi.sys
22:13:06.0281 0464 Iviaspi - ok
22:13:06.0343 0464 Kbdclass (e798705e8dc7fab596ef6bfdf167e007) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
22:13:06.0343 0464 Kbdclass - ok
22:13:06.0359 0464 kbdhid (62dd5eefcec4ef4163f1168d4262a9e4) C:\WINDOWS\system32\DRIVERS\kbdhid.sys
22:13:06.0359 0464 kbdhid - ok
22:13:06.0421 0464 kmixer (ba5deda4d934e6288c2f66caf58d2562) C:\WINDOWS\system32\drivers\kmixer.sys
22:13:06.0421 0464 kmixer - ok
22:13:06.0453 0464 KSecDD (674d3e5a593475915dc6643317192403) C:\WINDOWS\system32\drivers\KSecDD.sys
22:13:06.0453 0464 KSecDD - ok
22:13:06.0515 0464 Lavasoft Kernexplorer (6c4a3804510ad8e0f0c07b5be3d44ddb) C:\Program Files\Lavasoft\Ad-Aware\KernExplorer.sys
22:13:06.0531 0464 Lavasoft Kernexplorer - ok
22:13:06.0546 0464 Lbd (336abe8721cbc3110f1c6426da633417) C:\WINDOWS\system32\DRIVERS\Lbd.sys
22:13:06.0562 0464 Lbd - ok
22:13:06.0609 0464 LBeepKE (be2dc24d403643a2d1d98f33c7087b38) C:\WINDOWS\system32\Drivers\LBeepKE.sys
22:13:06.0609 0464 LBeepKE - ok
22:13:06.0625 0464 lbrtfdc - ok
22:13:06.0703 0464 LHidFilt (01cc7fb6e790ef044b411377f3a1ff41) C:\WINDOWS\system32\DRIVERS\LHidFilt.Sys
22:13:06.0703 0464 LHidFilt - ok
22:13:06.0734 0464 LMouFilt (a2e7eae8898d7b4b8c302b8f4e836bb5) C:\WINDOWS\system32\DRIVERS\LMouFilt.Sys
22:13:06.0734 0464 LMouFilt - ok
22:13:06.0812 0464 ltmodem5 (919de7d76d2c0c0139e08b3e7592d62e) C:\WINDOWS\system32\DRIVERS\ltmdmnt.sys
22:13:06.0828 0464 ltmodem5 - ok
22:13:06.0906 0464 LVPr2Mon (a6919138f29ae45e90e99fa94737e04c) C:\WINDOWS\system32\DRIVERS\LVPr2Mon.sys
22:13:06.0906 0464 LVPr2Mon - ok
22:13:06.0937 0464 LVRS - ok
22:13:06.0953 0464 LVUSBSta - ok
22:13:06.0984 0464 LVUVC - ok
22:13:07.0015 0464 MBAMProtector (69a6268d7f81e53d568ab4e7e991caf3) C:\WINDOWS\system32\drivers\mbam.sys
22:13:07.0015 0464 MBAMProtector - ok
22:13:07.0062 0464 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
22:13:07.0062 0464 mnmdd - ok
22:13:07.0125 0464 Modem (5ac7e16f5b40a6da14b5f2b3ada4693e) C:\WINDOWS\system32\drivers\Modem.sys
22:13:07.0140 0464 Modem - ok
22:13:07.0203 0464 Mouclass (7d4f19411bd941e1d432a99e24230386) C:\WINDOWS\system32\DRIVERS\mouclass.sys
22:13:07.0203 0464 Mouclass - ok
22:13:07.0234 0464 mouhid (124d6846040c79b9c997f78ef4b2a4e5) C:\WINDOWS\system32\DRIVERS\mouhid.sys
22:13:07.0234 0464 mouhid - ok
22:13:07.0265 0464 MountMgr (65653f3b4477f3c63e68a9659f85ee2e) C:\WINDOWS\system32\drivers\MountMgr.sys
22:13:07.0265 0464 MountMgr - ok
22:13:07.0281 0464 mraid35x - ok
22:13:07.0343 0464 MRxDAV (29414447eb5bde2f8397dc965dbb3156) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
22:13:07.0343 0464 MRxDAV - ok
22:13:07.0406 0464 MRxSmb (fb6c89bb3ce282b08bdb1e3c179e1c39) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
22:13:07.0421 0464 MRxSmb - ok
22:13:07.0453 0464 Msfs (561b3a4333ca2dbdba28b5b956822519) C:\WINDOWS\system32\drivers\Msfs.sys
22:13:07.0453 0464 Msfs - ok
22:13:07.0484 0464 MSKSSRV (ae431a8dd3c1d0d0610cdbac16057ad0) C:\WINDOWS\system32\drivers\MSKSSRV.sys
22:13:07.0484 0464 MSKSSRV - ok
22:13:07.0515 0464 MSPCLOCK (13e75fef9dfeb08eeded9d0246e1f448) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
22:13:07.0515 0464 MSPCLOCK - ok
22:13:07.0546 0464 MSPQM (1988a33ff19242576c3d0ef9ce785da7) C:\WINDOWS\system32\drivers\MSPQM.sys
22:13:07.0546 0464 MSPQM - ok
22:13:07.0609 0464 mssmbios (469541f8bfd2b32659d5d463a6714bce) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
22:13:07.0609 0464 mssmbios - ok
22:13:07.0625 0464 MSTEE (bf13612142995096ab084f2db7f40f77) C:\WINDOWS\system32\drivers\MSTEE.sys
22:13:07.0625 0464 MSTEE - ok
22:13:07.0671 0464 Mup (82035e0f41c2dd05ae41d27fe6cf7de1) C:\WINDOWS\system32\drivers\Mup.sys
22:13:07.0671 0464 Mup - ok
22:13:07.0703 0464 NABTSFEC (5c8dc6429c43dc6177c1fa5b76290d1a) C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
22:13:07.0703 0464 NABTSFEC - ok
22:13:07.0734 0464 NDIS (558635d3af1c7546d26067d5d9b6959e) C:\WINDOWS\system32\drivers\NDIS.sys
22:13:07.0750 0464 NDIS - ok
22:13:07.0781 0464 NdisIP (520ce427a8b298f54112857bcf6bde15) C:\WINDOWS\system32\DRIVERS\NdisIP.sys
22:13:07.0781 0464 NdisIP - ok
22:13:07.0812 0464 NdisTapi (08d43bbdacdf23f34d79e44ed35c1b4c) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
22:13:07.0812 0464 NdisTapi - ok
22:13:07.0828 0464 Ndisuio (34d6cd56409da9a7ed573e1c90a308bf) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
22:13:07.0843 0464 Ndisuio - ok
22:13:07.0859 0464 NdisWan (0b90e255a9490166ab368cd55a529893) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
22:13:07.0875 0464 NdisWan - ok
22:13:07.0890 0464 NDProxy (59fc3fb44d2669bc144fd87826bb571f) C:\WINDOWS\system32\drivers\NDProxy.sys
22:13:07.0890 0464 NDProxy - ok
22:13:07.0921 0464 NetBIOS (3a2aca8fc1d7786902ca434998d7ceb4) C:\WINDOWS\system32\DRIVERS\netbios.sys
22:13:07.0937 0464 NetBIOS - ok
22:13:07.0968 0464 NetBT (0c80e410cd2f47134407ee7dd19cc86b) C:\WINDOWS\system32\DRIVERS\netbt.sys
22:13:07.0968 0464 NetBT - ok
22:13:08.0015 0464 NIC1394 (5c5c53db4fef16cf87b9911c7e8c6fbc) C:\WINDOWS\system32\DRIVERS\nic1394.sys
22:13:08.0015 0464 NIC1394 - ok
22:13:08.0062 0464 NPF (b9730495e0cf674680121e34bd95a73b) C:\WINDOWS\system32\drivers\npf.sys
22:13:08.0062 0464 NPF - ok
22:13:08.0093 0464 Npfs (4f601bcb8f64ea3ac0994f98fed03f8e) C:\WINDOWS\system32\drivers\Npfs.sys
22:13:08.0093 0464 Npfs - ok
22:13:08.0171 0464 Ntfs (19a811ef5f1ed5c926a028ce107ff1af) C:\WINDOWS\system32\drivers\Ntfs.sys
22:13:08.0187 0464 Ntfs - ok
22:13:08.0250 0464 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
22:13:08.0250 0464 Null - ok
22:13:08.0281 0464 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
22:13:08.0281 0464 NwlnkFlt - ok
22:13:08.0312 0464 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
22:13:08.0312 0464 NwlnkFwd - ok
22:13:08.0343 0464 ohci1394 (0951db8e5823ea366b0e408d71e1ba2a) C:\WINDOWS\system32\DRIVERS\ohci1394.sys
22:13:08.0343 0464 ohci1394 - ok
22:13:08.0390 0464 Parport (318696359ac7df48d1e51974ec527dd2) C:\WINDOWS\system32\DRIVERS\parport.sys
22:13:08.0390 0464 Parport - ok
22:13:08.0421 0464 PartMgr (3334430c29dc338092f79c38ef7b4cd0) C:\WINDOWS\system32\drivers\PartMgr.sys
22:13:08.0421 0464 PartMgr - ok
22:13:08.0453 0464 ParVdm (9575c5630db8fb804649a6959737154c) C:\WINDOWS\system32\drivers\ParVdm.sys
22:13:08.0453 0464 ParVdm - ok
22:13:08.0468 0464 PCI (7c5da5c1ed801ad8b0309d5514f0b75e) C:\WINDOWS\system32\DRIVERS\pci.sys
22:13:08.0484 0464 PCI - ok
22:13:08.0500 0464 PCIDump - ok
22:13:08.0531 0464 PCIIde (f4bfde7209c14a07aaa61e4d6ae69eac) C:\WINDOWS\system32\DRIVERS\pciide.sys
22:13:08.0531 0464 PCIIde - ok
22:13:08.0562 0464 Pcmcia (641da274e163617ea7a33506bc6da8e3) C:\WINDOWS\system32\drivers\Pcmcia.sys
22:13:08.0562 0464 Pcmcia - ok
22:13:08.0593 0464 PDCOMP - ok
22:13:08.0609 0464 PDFRAME - ok
22:13:08.0625 0464 PDRELI - ok
22:13:08.0656 0464 PDRFRAME - ok
22:13:08.0671 0464 perc2 - ok
22:13:08.0703 0464 perc2hib - ok
22:13:08.0750 0464 Pfc (444f122e68db44c0589227781f3c8b3f) C:\WINDOWS\system32\drivers\pfc.sys
22:13:08.0750 0464 Pfc - ok
22:13:08.0796 0464 PptpMiniport (1c5cc65aac0783c344f16353e60b72ac) C:\WINDOWS\system32\DRIVERS\raspptp.sys
22:13:08.0812 0464 PptpMiniport - ok
22:13:08.0828 0464 Processor (f480712b761e538bc8e44ede60f3a3c3) C:\WINDOWS\system32\DRIVERS\processr.sys
22:13:08.0828 0464 Processor - ok
22:13:08.0875 0464 Ps2 (bffdb363485501a38f0bca83aec810db) C:\WINDOWS\system32\DRIVERS\PS2.sys
22:13:08.0875 0464 Ps2 - ok
22:13:08.0921 0464 PSched (48671f327553dcf1d27f6197f622a668) C:\WINDOWS\system32\DRIVERS\psched.sys
22:13:08.0921 0464 PSched - ok
22:13:08.0937 0464 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
22:13:08.0937 0464 Ptilink - ok
22:13:08.0968 0464 PxHelp20 (30cbae0a34359f1cd19d1576245149ed) C:\WINDOWS\system32\Drivers\PxHelp20.sys
22:13:08.0968 0464 PxHelp20 - ok
22:13:08.0984 0464 ql1080 - ok
22:13:09.0000 0464 Ql10wnt - ok
22:13:09.0015 0464 ql12160 - ok
22:13:09.0031 0464 ql1240 - ok
22:13:09.0046 0464 ql1280 - ok
22:13:09.0078 0464 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
22:13:09.0078 0464 RasAcd - ok
22:13:09.0093 0464 Rasl2tp (98faeb4a4dcf812ba1c6fca4aa3e115c) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
22:13:09.0109 0464 Rasl2tp - ok
22:13:09.0125 0464 RasPppoe (7306eeed8895454cbed4669be9f79faa) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
22:13:09.0125 0464 RasPppoe - ok
22:13:09.0156 0464 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
22:13:09.0156 0464 Raspti - ok
22:13:09.0218 0464 Rdbss (03b965b1ca47f6ef60eb5e51cb50e0af) C:\WINDOWS\system32\DRIVERS\rdbss.sys
22:13:09.0218 0464 Rdbss - ok
22:13:09.0250 0464 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
22:13:09.0250 0464 RDPCDD - ok
22:13:09.0312 0464 RDPWD (b54cd38a9ebfbf2b3561426e3fe26f62) C:\WINDOWS\system32\drivers\RDPWD.sys
22:13:09.0312 0464 RDPWD - ok
22:13:09.0359 0464 redbook (2cc30b68dd62b73d444a41322cd7fc4c) C:\WINDOWS\system32\DRIVERS\redbook.sys
22:13:09.0359 0464 redbook - ok
22:13:09.0406 0464 rtl8139 (2ef9c0dc26b30b2318b1fc3faa1f0ae7) C:\WINDOWS\system32\DRIVERS\R8139n51.SYS
22:13:09.0406 0464 rtl8139 - ok
22:13:09.0468 0464 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
22:13:09.0468 0464 Secdrv - ok
22:13:09.0515 0464 Serial (653201755ca96ab4aaa4131daf6da356) C:\WINDOWS\system32\drivers\Serial.sys
22:13:09.0515 0464 Serial - ok
22:13:09.0531 0464 Sfloppy (0d13b6df6e9e101013a7afb0ce629fe0) C:\WINDOWS\system32\drivers\Sfloppy.sys
22:13:09.0546 0464 Sfloppy - ok
22:13:09.0562 0464 Simbad - ok
22:13:09.0609 0464 SLIP (5caeed86821fa2c6139e32e9e05ccdc9) C:\WINDOWS\system32\DRIVERS\SLIP.sys
22:13:09.0609 0464 SLIP - ok
22:13:09.0625 0464 Sparrow - ok
22:13:09.0671 0464 splitter (0ce218578fff5f4f7e4201539c45c78f) C:\WINDOWS\system32\drivers\splitter.sys
22:13:09.0671 0464 splitter - ok
22:13:09.0750 0464 sptd (4e3c4ffcb2c95c2ec1fa04a6f4531533) C:\WINDOWS\system32\Drivers\sptd.sys
22:13:09.0750 0464 Suspicious file (NoAccess): C:\WINDOWS\system32\Drivers\sptd.sys. md5: 4e3c4ffcb2c95c2ec1fa04a6f4531533
22:13:09.0750 0464 sptd ( LockedFile.Multi.Generic ) - warning
22:13:09.0750 0464 sptd - detected LockedFile.Multi.Generic (1)
22:13:09.0781 0464 sr (b52181023b827acda36c1b76751ebffd) C:\WINDOWS\system32\DRIVERS\sr.sys
22:13:09.0781 0464 sr - ok
22:13:09.0828 0464 Srv (7a4f147cc6b133f905f6e65e2f8669fb) C:\WINDOWS\system32\DRIVERS\srv.sys
22:13:09.0828 0464 Srv - ok
22:13:09.0875 0464 streamip (284c57df5dc7abca656bc2b96a667afb) C:\WINDOWS\system32\DRIVERS\StreamIP.sys
22:13:09.0875 0464 streamip - ok
22:13:09.0906 0464 swenum (03c1bae4766e2450219d20b993d6e046) C:\WINDOWS\system32\DRIVERS\swenum.sys
22:13:09.0906 0464 swenum - ok
22:13:09.0937 0464 swmidi (94abc808fc4b6d7d2bbf42b85e25bb4d) C:\WINDOWS\system32\drivers\swmidi.sys
22:13:09.0937 0464 swmidi - ok
22:13:09.0968 0464 symc810 - ok
22:13:09.0984 0464 symc8xx - ok
22:13:10.0000 0464 sym_hi - ok
22:13:10.0015 0464 sym_u3 - ok
22:13:10.0046 0464 sysaudio (650ad082d46bac0e64c9c0e0928492fd) C:\WINDOWS\system32\drivers\sysaudio.sys
22:13:10.0046 0464 sysaudio - ok
22:13:10.0093 0464 Tcpip (2a5554fc5b1e04e131230e3ce035c3f9) C:\WINDOWS\system32\DRIVERS\tcpip.sys
22:13:10.0109 0464 Tcpip - ok
22:13:10.0125 0464 TDPIPE (38d437cf2d98965f239b0abcd66dcb0f) C:\WINDOWS\system32\drivers\TDPIPE.sys
22:13:10.0125 0464 TDPIPE - ok
22:13:10.0156 0464 TDTCP (ed0580af02502d00ad8c4c066b156be9) C:\WINDOWS\system32\drivers\TDTCP.sys
22:13:10.0171 0464 TDTCP - ok
22:13:10.0187 0464 TermDD (a540a99c281d933f3d69d55e48727f47) C:\WINDOWS\system32\DRIVERS\termdd.sys
22:13:10.0187 0464 TermDD - ok
22:13:10.0218 0464 TosIde - ok
22:13:10.0250 0464 Udfs (12f70256f140cd7d52c58c7048fde657) C:\WINDOWS\system32\drivers\Udfs.sys
22:13:10.0250 0464 Udfs - ok
22:13:10.0265 0464 ultra - ok
22:13:10.0296 0464 Update (aff2e5045961bbc0a602bb6f95eb1345) C:\WINDOWS\system32\DRIVERS\update.sys
22:13:10.0312 0464 Update - ok
22:13:10.0390 0464 usbaudio (45a0d14b26c35497ad93bce7e15c9941) C:\WINDOWS\system32\drivers\usbaudio.sys
22:13:10.0390 0464 usbaudio - ok
22:13:10.0421 0464 usbccgp (bffd9f120cc63bcbaa3d840f3eef9f79) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
22:13:10.0437 0464 usbccgp - ok
22:13:10.0453 0464 usbehci (15e993ba2f6946b2bfbbfcd30398621e) C:\WINDOWS\system32\DRIVERS\usbehci.sys
22:13:10.0453 0464 usbehci - ok
22:13:10.0484 0464 usbhub (c72f40947f92cea56a8fb532edf025f1) C:\WINDOWS\system32\DRIVERS\usbhub.sys
22:13:10.0484 0464 usbhub - ok
22:13:10.0500 0464 usbohci (bdfe799a8531bad8a5a985821fe78760) C:\WINDOWS\system32\DRIVERS\usbohci.sys
22:13:10.0500 0464 usbohci - ok
22:13:10.0531 0464 USBSTOR (6cd7b22193718f1d17a47a1cd6d37e75) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
22:13:10.0531 0464 USBSTOR - ok
22:13:10.0562 0464 usbuhci (f8fd1400092e23c8f2f31406ef06167b) C:\WINDOWS\system32\DRIVERS\usbuhci.sys
22:13:10.0562 0464 usbuhci - ok
22:13:10.0593 0464 usbvideo (8968ff3973a883c49e8b564200f565b9) C:\WINDOWS\system32\Drivers\usbvideo.sys
22:13:10.0593 0464 usbvideo - ok
22:13:10.0625 0464 VgaSave (8a60edd72b4ea5aea8202daf0e427925) C:\WINDOWS\System32\drivers\vga.sys
22:13:10.0625 0464 VgaSave - ok
22:13:10.0640 0464 ViaIde (59cb1338ad3654417bea49636457f65d) C:\WINDOWS\system32\DRIVERS\viaide.sys
22:13:10.0656 0464 ViaIde - ok
22:13:10.0687 0464 VolSnap (313b1a0d5db26dfe1c34a6c13b2ce0a7) C:\WINDOWS\system32\drivers\VolSnap.sys
22:13:10.0687 0464 VolSnap - ok
22:13:10.0718 0464 Wanarp (984ef0b9788abf89974cfed4bfbaacbc) C:\WINDOWS\system32\DRIVERS\wanarp.sys
22:13:10.0718 0464 Wanarp - ok
22:13:10.0796 0464 Wdf01000 (d918617b46457b9ac28027722e30f647) C:\WINDOWS\system32\Drivers\wdf01000.sys
22:13:10.0812 0464 Wdf01000 - ok
22:13:10.0828 0464 WDICA - ok
22:13:10.0875 0464 wdmaud (efd235ca22b57c81118c1aeb4798f1c1) C:\WINDOWS\system32\drivers\wdmaud.sys
22:13:10.0875 0464 wdmaud - ok
22:13:10.0953 0464 WSTCODEC (d5842484f05e12121c511aa93f6439ec) C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
22:13:10.0953 0464 WSTCODEC - ok
22:13:11.0000 0464 MBR (0x1B8) (4f3a0ea76e7edbe2fc4a98f9de544751) \Device\Harddisk0\DR0
22:13:11.0000 0464 \Device\Harddisk0\DR0 - ok
22:13:11.0015 0464 MBR (0x1B8) (d22f10b1216707c7a85d202a6bc51adc) \Device\Harddisk5\DR7
22:13:11.0031 0464 \Device\Harddisk5\DR7 - ok
22:13:11.0046 0464 Boot (0x1200) (8306359d26602834988c801330ae0786) \Device\Harddisk0\DR0\Partition0
22:13:11.0046 0464 \Device\Harddisk0\DR0\Partition0 - ok
22:13:11.0062 0464 Boot (0x1200) (37d174b3ad3b67760188e9423b6ca62d) \Device\Harddisk0\DR0\Partition1
22:13:11.0062 0464 \Device\Harddisk0\DR0\Partition1 - ok
22:13:11.0062 0464 Boot (0x1200) (1c3f19ce17f5bf80b30886e826a27f75) \Device\Harddisk5\DR7\Partition0
22:13:11.0062 0464 \Device\Harddisk5\DR7\Partition0 - ok
22:13:11.0078 0464 ============================================================
22:13:11.0078 0464 Scan finished
22:13:11.0078 0464 ============================================================
22:13:11.0078 3288 Detected object count: 1
22:13:11.0078 3288 Actual detected object count: 1
22:19:03.0265 3288 sptd ( LockedFile.Multi.Generic ) - skipped by user
22:19:03.0265 3288 sptd ( LockedFile.Multi.Generic ) - User select action: Skip
22:19:12.0406 3732 ============================================================
22:19:12.0406 3732 Scan started
22:19:12.0406 3732 Mode: Manual;
22:19:12.0406 3732 ============================================================
22:19:26.0843 3732 Aavmker4 (b6de0336f9f4b687b4ff57939f7b657a) C:\WINDOWS\system32\drivers\Aavmker4.sys
22:19:26.0843 3732 Aavmker4 - ok
22:19:26.0875 3732 Abiosdsk - ok
22:19:26.0890 3732 abp480n5 - ok
22:19:26.0953 3732 ACPI (0bd94fbfc14ea3606cd6ca4c0255baa3) C:\WINDOWS\system32\DRIVERS\ACPI.sys
22:19:26.0953 3732 ACPI - ok
22:19:26.0984 3732 ACPIEC (e4abc1212b70bb03d35e60681c447210) C:\WINDOWS\system32\drivers\ACPIEC.sys
22:19:26.0984 3732 ACPIEC - ok
22:19:27.0000 3732 adpu160m - ok
22:19:27.0062 3732 aec (1ee7b434ba961ef845de136224c30fec) C:\WINDOWS\system32\drivers\aec.sys
22:19:27.0062 3732 aec - ok
22:19:27.0093 3732 AFD (55e6e1c51b6d30e54335750955453702) C:\WINDOWS\System32\drivers\afd.sys
22:19:27.0093 3732 AFD - ok
22:19:27.0171 3732 AgereSoftModem (593aefc67283d409f34cc1245d00a509) C:\WINDOWS\system32\DRIVERS\AGRSM.sys
22:19:27.0187 3732 AgereSoftModem - ok
22:19:27.0218 3732 Aha154x - ok
22:19:27.0234 3732 aic78u2 - ok
22:19:27.0250 3732 aic78xx - ok
22:19:27.0359 3732 ALCXWDM (8d6c30e515717248e0e52b85fd7ac466) C:\WINDOWS\system32\drivers\ALCXWDM.SYS
22:19:27.0390 3732 ALCXWDM - ok
22:19:27.0421 3732 AliIde - ok
22:19:27.0468 3732 AmdK8 (841871eac4e0dab2bd2b56ce59ef9511) C:\WINDOWS\system32\DRIVERS\AmdK8.sys
22:19:27.0468 3732 AmdK8 - ok
22:19:27.0484 3732 amsint - ok
22:19:27.0546 3732 Arp1394 (f0d692b0bffb46e30eb3cea168bbc49f) C:\WINDOWS\system32\DRIVERS\arp1394.sys
22:19:27.0546 3732 Arp1394 - ok
22:19:27.0562 3732 asc - ok
22:19:27.0593 3732 asc3350p - ok
22:19:27.0609 3732 asc3550 - ok
22:19:27.0671 3732 aswFsBlk (054df24c92b55427e0757cfff160e4f2) C:\WINDOWS\system32\drivers\aswFsBlk.sys
22:19:27.0671 3732 aswFsBlk - ok
22:19:27.0703 3732 aswMon2 (ef0e9ad83380724bd6fbbb51d2d0f5b8) C:\WINDOWS\system32\drivers\aswMon2.sys
22:19:27.0703 3732 aswMon2 - ok
22:19:27.0734 3732 aswRdr (352d5a48ebab35a7693b048679304831) C:\WINDOWS\system32\drivers\aswRdr.sys
22:19:27.0734 3732 aswRdr - ok
22:19:27.0781 3732 aswSnx (8d34d2b24297e27d93e847319abfdec4) C:\WINDOWS\system32\drivers\aswSnx.sys
22:19:27.0781 3732 aswSnx - ok
22:19:27.0828 3732 aswSP (010012597333da1f46c3243f33f8409e) C:\WINDOWS\system32\drivers\aswSP.sys
22:19:27.0828 3732 aswSP - ok
22:19:27.0875 3732 aswTdi (f9f84364416658e9786235904d448d37) C:\WINDOWS\system32\drivers\aswTdi.sys
22:19:27.0875 3732 aswTdi - ok
22:19:27.0890 3732 AsyncMac (02000abf34af4c218c35d257024807d6) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
22:19:27.0906 3732 AsyncMac - ok
22:19:27.0937 3732 atapi (cdfe4411a69c224bd1d11b2da92dac51) C:\WINDOWS\system32\DRIVERS\atapi.sys
22:19:27.0937 3732 atapi - ok
22:19:27.0953 3732 Atdisk - ok
22:19:28.0031 3732 ati2mtag (f43601d255762f20d0e23a6d97062b0d) C:\WINDOWS\system32\DRIVERS\ati2mtag.sys
22:19:28.0046 3732 ati2mtag - ok
22:19:28.0093 3732 Atmarpc (ec88da854ab7d7752ec8be11a741bb7f) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
22:19:28.0093 3732 Atmarpc - ok
22:19:28.0125 3732 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
22:19:28.0125 3732 audstub - ok
22:19:28.0171 3732 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
22:19:28.0171 3732 Beep - ok
22:19:28.0203 3732 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
22:19:28.0203 3732 cbidf2k - ok
22:19:28.0234 3732 CCDECODE (6163ed60b684bab19d3352ab22fc48b2) C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
22:19:28.0234 3732 CCDECODE - ok
22:19:28.0265 3732 cd20xrnt - ok
22:19:28.0281 3732 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
22:19:28.0281 3732 Cdaudio - ok
22:19:28.0312 3732 Cdfs (cd7d5152df32b47f4e36f710b35aae02) C:\WINDOWS\system32\drivers\Cdfs.sys
22:19:28.0312 3732 Cdfs - ok
22:19:28.0328 3732 Cdrom (af9c19b3100fe010496b1a27181fbf72) C:\WINDOWS\system32\DRIVERS\cdrom.sys
22:19:28.0343 3732 Cdrom - ok
22:19:28.0359 3732 Changer - ok
22:19:28.0375 3732 CmdIde - ok
22:19:28.0421 3732 Cpqarray - ok
22:19:28.0437 3732 dac2w2k - ok
22:19:28.0453 3732 dac960nt - ok
22:19:28.0484 3732 Disk (00ca44e4534865f8a3b64f7c0984bff0) C:\WINDOWS\system32\DRIVERS\disk.sys
22:19:28.0484 3732 Disk - ok
22:19:28.0546 3732 dmboot (e2d3b7620310fe56685f9b15a6b404b3) C:\WINDOWS\system32\drivers\dmboot.sys
22:19:28.0562 3732 dmboot - ok
22:19:28.0609 3732 dmio (c77f5c20aa70197a69aa84baa9de43c8) C:\WINDOWS\system32\drivers\dmio.sys
22:19:28.0609 3732 dmio - ok
22:19:28.0640 3732 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
22:19:28.0640 3732 dmload - ok
22:19:28.0671 3732 DMusic (a6f881284ac1150e37d9ae47ff601267) C:\WINDOWS\system32\drivers\DMusic.sys
22:19:28.0671 3732 DMusic - ok
22:19:28.0703 3732 dpti2o - ok
22:19:28.0734 3732 drmkaud (1ed4dbbae9f5d558dbba4cc450e3eb2e) C:\WINDOWS\system32\drivers\drmkaud.sys
22:19:28.0734 3732 drmkaud - ok
22:19:28.0765 3732 Fastfat (3117f595e9615e04f05a54fc15a03b20) C:\WINDOWS\system32\drivers\Fastfat.sys
22:19:28.0765 3732 Fastfat - ok
22:19:28.0812 3732 Fdc (ced2e8396a8838e59d8fd529c680e02c) C:\WINDOWS\system32\DRIVERS\fdc.sys
22:19:28.0812 3732 Fdc - ok
22:19:28.0828 3732 FilterService - ok
22:19:28.0859 3732 Fips (8b121ff880683607ab2aef0340721718) C:\WINDOWS\system32\drivers\Fips.sys
22:19:28.0859 3732 Fips - ok
22:19:28.0875 3732 Flpydisk (0dd1de43115b93f4d85e889d7a86f548) C:\WINDOWS\system32\DRIVERS\flpydisk.sys
22:19:28.0875 3732 Flpydisk - ok
22:19:28.0921 3732 FltMgr (3d234fb6d6ee875eb009864a299bea29) C:\WINDOWS\system32\DRIVERS\fltMgr.sys
22:19:28.0921 3732 FltMgr - ok
22:19:28.0953 3732 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
22:19:28.0953 3732 Fs_Rec - ok
22:19:28.0968 3732 Ftdisk (a86859b77b908c18c2657f284aa29fe3) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
22:19:28.0984 3732 Ftdisk - ok
22:19:29.0000 3732 GEARAspiWDM (2fb04db459c71f416ee8b05448ca4ac3) C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys
22:19:29.0000 3732 GEARAspiWDM - ok
22:19:29.0031 3732 Gpc (c0f1d4a21de5a415df8170616703debf) C:\WINDOWS\system32\DRIVERS\msgpc.sys
22:19:29.0031 3732 Gpc - ok
22:19:29.0062 3732 HidUsb (1de6783b918f540149aa69943bdfeba8) C:\WINDOWS\system32\DRIVERS\hidusb.sys
22:19:29.0062 3732 HidUsb - ok
22:19:29.0078 3732 hpn - ok
22:19:29.0125 3732 HTTP (9f8b0f4276f618964fd118be4289b7cd) C:\WINDOWS\system32\Drivers\HTTP.sys
22:19:29.0125 3732 HTTP - ok
22:19:29.0156 3732 i2omgmt - ok
22:19:29.0171 3732 i2omp - ok
22:19:29.0187 3732 i8042prt (d1efcbd693b5ba21314d06368c471070) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
22:19:29.0203 3732 i8042prt - ok
22:19:29.0218 3732 Imapi (f8aa320c6a0409c0380e5d8a99d76ec6) C:\WINDOWS\system32\DRIVERS\imapi.sys
22:19:29.0218 3732 Imapi - ok
22:19:29.0250 3732 ini910u - ok
22:19:29.0281 3732 IntelIde (1367812f8a974e0c13a4888fa5e7ede6) C:\WINDOWS\system32\DRIVERS\intelide.sys
22:19:29.0281 3732 IntelIde - ok
22:19:29.0296 3732 intelppm - ok
22:19:29.0328 3732 Ip6Fw (4448006b6bc60e6c027932cfc38d6855) C:\WINDOWS\system32\DRIVERS\Ip6Fw.sys
22:19:29.0328 3732 Ip6Fw - ok
22:19:29.0359 3732 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
22:19:29.0359 3732 IpFilterDriver - ok
22:19:29.0390 3732 IpInIp (e1ec7f5da720b640cd8fb8424f1b14bb) C:\WINDOWS\system32\DRIVERS\ipinip.sys
22:19:29.0390 3732 IpInIp - ok
22:19:29.0453 3732 IpNat (e2168cbc7098ffe963c6f23f472a3593) C:\WINDOWS\system32\DRIVERS\ipnat.sys
22:19:29.0453 3732 IpNat - ok
22:19:29.0484 3732 IPSec (64537aa5c003a6afeee1df819062d0d1) C:\WINDOWS\system32\DRIVERS\ipsec.sys
22:19:29.0484 3732 IPSec - ok
22:19:29.0500 3732 IRENUM (50708daa1b1cbb7d6ac1cf8f56a24410) C:\WINDOWS\system32\DRIVERS\irenum.sys
22:19:29.0500 3732 IRENUM - ok
22:19:29.0531 3732 isapnp (54632f1a7de61dc3615d756f2a90fa72) C:\WINDOWS\system32\DRIVERS\isapnp.sys
22:19:29.0531 3732 isapnp - ok
22:19:29.0578 3732 Iviaspi (f59c3569a2f2c464bb78cb1bdcdca55e) C:\WINDOWS\system32\drivers\iviaspi.sys
22:19:29.0578 3732 Iviaspi - ok
22:19:29.0625 3732 Kbdclass (e798705e8dc7fab596ef6bfdf167e007) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
22:19:29.0625 3732 Kbdclass - ok
22:19:29.0656 3732 kbdhid (62dd5eefcec4ef4163f1168d4262a9e4) C:\WINDOWS\system32\DRIVERS\kbdhid.sys
22:19:29.0656 3732 kbdhid - ok
22:19:29.0703 3732 kmixer (ba5deda4d934e6288c2f66caf58d2562) C:\WINDOWS\system32\drivers\kmixer.sys
22:19:29.0703 3732 kmixer - ok
22:19:29.0734 3732 KSecDD (674d3e5a593475915dc6643317192403) C:\WINDOWS\system32\drivers\KSecDD.sys
22:19:29.0734 3732 KSecDD - ok
22:19:29.0812 3732 Lavasoft Kernexplorer (6c4a3804510ad8e0f0c07b5be3d44ddb) C:\Program Files\Lavasoft\Ad-Aware\KernExplorer.sys
22:19:29.0812 3732 Lavasoft Kernexplorer - ok
22:19:29.0843 3732 Lbd (336abe8721cbc3110f1c6426da633417) C:\WINDOWS\system32\DRIVERS\Lbd.sys
22:19:29.0843 3732 Lbd - ok
22:19:29.0890 3732 LBeepKE (be2dc24d403643a2d1d98f33c7087b38) C:\WINDOWS\system32\Drivers\LBeepKE.sys
22:19:29.0890 3732 LBeepKE - ok
22:19:29.0921 3732 lbrtfdc - ok
22:19:29.0984 3732 LHidFilt (01cc7fb6e790ef044b411377f3a1ff41) C:\WINDOWS\system32\DRIVERS\LHidFilt.Sys
22:19:29.0984 3732 LHidFilt - ok
22:19:30.0000 3732 LMouFilt (a2e7eae8898d7b4b8c302b8f4e836bb5) C:\WINDOWS\system32\DRIVERS\LMouFilt.Sys
22:19:30.0015 3732 LMouFilt - ok
22:19:30.0062 3732 ltmodem5 (919de7d76d2c0c0139e08b3e7592d62e) C:\WINDOWS\system32\DRIVERS\ltmdmnt.sys
22:19:30.0078 3732 ltmodem5 - ok
22:19:30.0125 3732 LVPr2Mon (a6919138f29ae45e90e99fa94737e04c) C:\WINDOWS\system32\DRIVERS\LVPr2Mon.sys
22:19:30.0125 3732 LVPr2Mon - ok
22:19:30.0156 3732 LVRS - ok
22:19:30.0171 3732 LVUSBSta - ok
22:19:30.0187 3732 LVUVC - ok
22:19:30.0234 3732 MBAMProtector (69a6268d7f81e53d568ab4e7e991caf3) C:\WINDOWS\system32\drivers\mbam.sys
22:19:30.0234 3732 MBAMProtector - ok
22:19:30.0281 3732 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
22:19:30.0281 3732 mnmdd - ok
22:19:30.0343 3732 Modem (5ac7e16f5b40a6da14b5f2b3ada4693e) C:\WINDOWS\system32\drivers\Modem.sys
22:19:30.0343 3732 Modem - ok
22:19:30.0359 3732 Mouclass (7d4f19411bd941e1d432a99e24230386) C:\WINDOWS\system32\DRIVERS\mouclass.sys
22:19:30.0359 3732 Mouclass - ok
22:19:30.0406 3732 mouhid (124d6846040c79b9c997f78ef4b2a4e5) C:\WINDOWS\system32\DRIVERS\mouhid.sys
22:19:30.0406 3732 mouhid - ok
22:19:30.0453 3732 MountMgr (65653f3b4477f3c63e68a9659f85ee2e) C:\WINDOWS\system32\drivers\MountMgr.sys
22:19:30.0453 3732 MountMgr - ok
22:19:30.0484 3732 mraid35x - ok
22:19:30.0546 3732 MRxDAV (29414447eb5bde2f8397dc965dbb3156) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
22:19:30.0546 3732 MRxDAV - ok
22:19:30.0593 3732 MRxSmb (fb6c89bb3ce282b08bdb1e3c179e1c39) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
22:19:30.0609 3732 MRxSmb - ok
22:19:30.0640 3732 Msfs (561b3a4333ca2dbdba28b5b956822519) C:\WINDOWS\system32\drivers\Msfs.sys
22:19:30.0640 3732 Msfs - ok
22:19:30.0671 3732 MSKSSRV (ae431a8dd3c1d0d0610cdbac16057ad0) C:\WINDOWS\system32\drivers\MSKSSRV.sys
22:19:30.0687 3732 MSKSSRV - ok
22:19:30.0703 3732 MSPCLOCK (13e75fef9dfeb08eeded9d0246e1f448) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
22:19:30.0718 3732 MSPCLOCK - ok
22:19:30.0734 3732 MSPQM (1988a33ff19242576c3d0ef9ce785da7) C:\WINDOWS\system32\drivers\MSPQM.sys
22:19:30.0734 3732 MSPQM - ok
22:19:30.0781 3732 mssmbios (469541f8bfd2b32659d5d463a6714bce) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
22:19:30.0781 3732 mssmbios - ok
22:19:30.0812 3732 MSTEE (bf13612142995096ab084f2db7f40f77) C:\WINDOWS\system32\drivers\MSTEE.sys
22:19:30.0812 3732 MSTEE - ok
22:19:30.0828 3732 Mup (82035e0f41c2dd05ae41d27fe6cf7de1) C:\WINDOWS\system32\drivers\Mup.sys
22:19:30.0828 3732 Mup - ok
22:19:30.0859 3732 NABTSFEC (5c8dc6429c43dc6177c1fa5b76290d1a) C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
22:19:30.0859 3732 NABTSFEC - ok
22:19:30.0890 3732 NDIS (558635d3af1c7546d26067d5d9b6959e) C:\WINDOWS\system32\drivers\NDIS.sys
22:19:30.0890 3732 NDIS - ok
22:19:30.0921 3732 NdisIP (520ce427a8b298f54112857bcf6bde15) C:\WINDOWS\system32\DRIVERS\NdisIP.sys
22:19:30.0921 3732 NdisIP - ok
22:19:30.0953 3732 NdisTapi (08d43bbdacdf23f34d79e44ed35c1b4c) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
22:19:30.0953 3732 NdisTapi - ok
22:19:30.0968 3732 Ndisuio (34d6cd56409da9a7ed573e1c90a308bf) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
22:19:30.0968 3732 Ndisuio - ok
22:19:31.0000 3732 NdisWan (0b90e255a9490166ab368cd55a529893) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
22:19:31.0000 3732 NdisWan - ok
22:19:31.0031 3732 NDProxy (59fc3fb44d2669bc144fd87826bb571f) C:\WINDOWS\system32\drivers\NDProxy.sys
22:19:31.0031 3732 NDProxy - ok
22:19:31.0062 3732 NetBIOS (3a2aca8fc1d7786902ca434998d7ceb4) C:\WINDOWS\system32\DRIVERS\netbios.sys
22:19:31.0062 3732 NetBIOS - ok
22:19:31.0078 3732 NetBT (0c80e410cd2f47134407ee7dd19cc86b) C:\WINDOWS\system32\DRIVERS\netbt.sys
22:19:31.0093 3732 NetBT - ok
22:19:31.0125 3732 NIC1394 (5c5c53db4fef16cf87b9911c7e8c6fbc) C:\WINDOWS\system32\DRIVERS\nic1394.sys
22:19:31.0140 3732 NIC1394 - ok
22:19:31.0171 3732 NPF (b9730495e0cf674680121e34bd95a73b) C:\WINDOWS\system32\drivers\npf.sys
22:19:31.0171 3732 NPF - ok
22:19:31.0203 3732 Npfs (4f601bcb8f64ea3ac0994f98fed03f8e) C:\WINDOWS\system32\drivers\Npfs.sys
22:19:31.0203 3732 Npfs - ok
22:19:31.0281 3732 Ntfs (19a811ef5f1ed5c926a028ce107ff1af) C:\WINDOWS\system32\drivers\Ntfs.sys
22:19:31.0281 3732 Ntfs - ok
22:19:31.0343 3732 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
22:19:31.0343 3732 Null - ok
22:19:31.0375 3732 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
22:19:31.0375 3732 NwlnkFlt - ok
22:19:31.0390 3732 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
22:19:31.0406 3732 NwlnkFwd - ok
22:19:31.0437 3732 ohci1394 (0951db8e5823ea366b0e408d71e1ba2a) C:\WINDOWS\system32\DRIVERS\ohci1394.sys
22:19:31.0437 3732 ohci1394 - ok
22:19:31.0468 3732 Parport (318696359ac7df48d1e51974ec527dd2) C:\WINDOWS\system32\DRIVERS\parport.sys
22:19:31.0484 3732 Parport - ok
22:19:31.0500 3732 PartMgr (3334430c29dc338092f79c38ef7b4cd0) C:\WINDOWS\system32\drivers\PartMgr.sys
22:19:31.0500 3732 PartMgr - ok
22:19:31.0531 3732 ParVdm (9575c5630db8fb804649a6959737154c) C:\WINDOWS\system32\drivers\ParVdm.sys
22:19:31.0531 3732 ParVdm - ok
22:19:31.0562 3732 PCI (7c5da5c1ed801ad8b0309d5514f0b75e) C:\WINDOWS\system32\DRIVERS\pci.sys
22:19:31.0562 3732 PCI - ok
22:19:31.0578 3732 PCIDump - ok
22:19:31.0609 3732 PCIIde (f4bfde7209c14a07aaa61e4d6ae69eac) C:\WINDOWS\system32\DRIVERS\pciide.sys
22:19:31.0609 3732 PCIIde - ok
22:19:31.0640 3732 Pcmcia (641da274e163617ea7a33506bc6da8e3) C:\WINDOWS\system32\drivers\Pcmcia.sys
22:19:31.0640 3732 Pcmcia - ok
22:19:31.0656 3732 PDCOMP - ok
22:19:31.0671 3732 PDFRAME - ok
22:19:31.0687 3732 PDRELI - ok
22:19:31.0718 3732 PDRFRAME - ok
22:19:31.0734 3732 perc2 - ok
22:19:31.0750 3732 perc2hib - ok
22:19:31.0796 3732 Pfc (444f122e68db44c0589227781f3c8b3f) C:\WINDOWS\system32\drivers\pfc.sys
22:19:31.0796 3732 Pfc - ok
22:19:31.0828 3732 PptpMiniport (1c5cc65aac0783c344f16353e60b72ac) C:\WINDOWS\system32\DRIVERS\raspptp.sys
22:19:31.0828 3732 PptpMiniport - ok
22:19:31.0843 3732 Processor (f480712b761e538bc8e44ede60f3a3c3) C:\WINDOWS\system32\DRIVERS\processr.sys
22:19:31.0859 3732 Processor - ok
22:19:31.0906 3732 Ps2 (bffdb363485501a38f0bca83aec810db) C:\WINDOWS\system32\DRIVERS\PS2.sys
22:19:31.0906 3732 Ps2 - ok
22:19:31.0937 3732 PSched (48671f327553dcf1d27f6197f622a668) C:\WINDOWS\system32\DRIVERS\psched.sys
22:19:31.0937 3732 PSched - ok
22:19:31.0953 3732 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
22:19:31.0953 3732 Ptilink - ok
22:19:31.0984 3732 PxHelp20 (30cbae0a34359f1cd19d1576245149ed) C:\WINDOWS\system32\Drivers\PxHelp20.sys
22:19:31.0984 3732 PxHelp20 - ok
22:19:32.0000 3732 ql1080 - ok
22:19:32.0015 3732 Ql10wnt - ok
22:19:32.0031 3732 ql12160 - ok
22:19:32.0046 3732 ql1240 - ok
22:19:32.0078 3732 ql1280 - ok
22:19:32.0093 3732 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
22:19:32.0093 3732 RasAcd - ok
22:19:32.0125 3732 Rasl2tp (98faeb4a4dcf812ba1c6fca4aa3e115c) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
22:19:32.0125 3732 Rasl2tp - ok
22:19:32.0156 3732 RasPppoe (7306eeed8895454cbed4669be9f79faa) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
22:19:32.0156 3732 RasPppoe - ok
22:19:32.0187 3732 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
22:19:32.0187 3732 Raspti - ok
22:19:32.0234 3732 Rdbss (03b965b1ca47f6ef60eb5e51cb50e0af) C:\WINDOWS\system32\DRIVERS\rdbss.sys
22:19:32.0234 3732 Rdbss - ok
22:19:32.0265 3732 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
22:19:32.0265 3732 RDPCDD - ok
22:19:32.0328 3732 RDPWD (b54cd38a9ebfbf2b3561426e3fe26f62) C:\WINDOWS\system32\drivers\RDPWD.sys
22:19:32.0328 3732 RDPWD - ok
22:19:32.0375 3732 redbook (2cc30b68dd62b73d444a41322cd7fc4c) C:\WINDOWS\system32\DRIVERS\redbook.sys
22:19:32.0375 3732 redbook - ok
22:19:32.0437 3732 rtl8139 (2ef9c0dc26b30b2318b1fc3faa1f0ae7) C:\WINDOWS\system32\DRIVERS\R8139n51.SYS
22:19:32.0437 3732 rtl8139 - ok
22:19:32.0484 3732 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
22:19:32.0500 3732 Secdrv - ok
22:19:32.0546 3732 Serial (653201755ca96ab4aaa4131daf6da356) C:\WINDOWS\system32\drivers\Serial.sys
22:19:32.0546 3732 Serial - ok
22:19:32.0562 3732 Sfloppy (0d13b6df6e9e101013a7afb0ce629fe0) C:\WINDOWS\system32\drivers\Sfloppy.sys
22:19:32.0562 3732 Sfloppy - ok
22:19:32.0593 3732 Simbad - ok
22:19:32.0625 3732 SLIP (5caeed86821fa2c6139e32e9e05ccdc9) C:\WINDOWS\system32\DRIVERS\SLIP.sys
22:19:32.0625 3732 SLIP - ok
22:19:32.0640 3732 Sparrow - ok
22:19:32.0687 3732 splitter (0ce218578fff5f4f7e4201539c45c78f) C:\WINDOWS\system32\drivers\splitter.sys
22:19:32.0687 3732 splitter - ok
22:19:32.0765 3732 sptd (4e3c4ffcb2c95c2ec1fa04a6f4531533) C:\WINDOWS\system32\Drivers\sptd.sys
22:19:32.0765 3732 Suspicious file (NoAccess): C:\WINDOWS\system32\Drivers\sptd.sys. md5: 4e3c4ffcb2c95c2ec1fa04a6f4531533
22:19:32.0765 3732 sptd ( LockedFile.Multi.Generic ) - warning
22:19:32.0765 3732 sptd - detected LockedFile.Multi.Generic (1)
22:19:32.0796 3732 sr (b52181023b827acda36c1b76751ebffd) C:\WINDOWS\system32\DRIVERS\sr.sys
22:19:32.0796 3732 sr - ok
22:19:32.0843 3732 Srv (7a4f147cc6b133f905f6e65e2f8669fb) C:\WINDOWS\system32\DRIVERS\srv.sys
22:19:32.0843 3732 Srv - ok
22:19:32.0890 3732 streamip (284c57df5dc7abca656bc2b96a667afb) C:\WINDOWS\system32\DRIVERS\StreamIP.sys
22:19:32.0890 3732 streamip - ok
22:19:32.0921 3732 swenum (03c1bae4766e2450219d20b993d6e046) C:\WINDOWS\system32\DRIVERS\swenum.sys
22:19:32.0921 3732 swenum - ok
22:19:32.0953 3732 swmidi (94abc808fc4b6d7d2bbf42b85e25bb4d) C:\WINDOWS\system32\drivers\swmidi.sys
22:19:32.0953 3732 swmidi - ok
22:19:32.0968 3732 symc810 - ok
22:19:33.0000 3732 symc8xx - ok
22:19:33.0015 3732 sym_hi - ok
22:19:33.0031 3732 sym_u3 - ok
22:19:33.0062 3732 sysaudio (650ad082d46bac0e64c9c0e0928492fd) C:\WINDOWS\system32\drivers\sysaudio.sys
22:19:33.0062 3732 sysaudio - ok
22:19:33.0109 3732 Tcpip (2a5554fc5b1e04e131230e3ce035c3f9) C:\WINDOWS\system32\DRIVERS\tcpip.sys
22:19:33.0109 3732 Tcpip - ok
22:19:33.0140 3732 TDPIPE (38d437cf2d98965f239b0abcd66dcb0f) C:\WINDOWS\system32\drivers\TDPIPE.sys
22:19:33.0140 3732 TDPIPE - ok
22:19:33.0171 3732 TDTCP (ed0580af02502d00ad8c4c066b156be9) C:\WINDOWS\system32\drivers\TDTCP.sys
22:19:33.0171 3732 TDTCP - ok
22:19:33.0187 3732 TermDD (a540a99c281d933f3d69d55e48727f47) C:\WINDOWS\system32\DRIVERS\termdd.sys
22:19:33.0187 3732 TermDD - ok
22:19:33.0218 3732 TosIde - ok
22:19:33.0250 3732 Udfs (12f70256f140cd7d52c58c7048fde657) C:\WINDOWS\system32\drivers\Udfs.sys
22:19:33.0250 3732 Udfs - ok
22:19:33.0265 3732 ultra - ok
22:19:33.0312 3732 Update (aff2e5045961bbc0a602bb6f95eb1345) C:\WINDOWS\system32\DRIVERS\update.sys
22:19:33.0312 3732 Update - ok
22:19:33.0375 3732 usbaudio (45a0d14b26c35497ad93bce7e15c9941) C:\WINDOWS\system32\drivers\usbaudio.sys
22:19:33.0390 3732 usbaudio - ok
22:19:33.0437 3732 usbccgp (bffd9f120cc63bcbaa3d840f3eef9f79) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
22:19:33.0437 3732 usbccgp - ok
22:19:33.0468 3732 usbehci (15e993ba2f6946b2bfbbfcd30398621e) C:\WINDOWS\system32\DRIVERS\usbehci.sys
22:19:33.0468 3732 usbehci - ok
22:19:33.0500 3732 usbhub (c72f40947f92cea56a8fb532edf025f1) C:\WINDOWS\system32\DRIVERS\usbhub.sys
22:19:33.0500 3732 usbhub - ok
22:19:33.0515 3732 usbohci (bdfe799a8531bad8a5a985821fe78760) C:\WINDOWS\system32\DRIVERS\usbohci.sys
22:19:33.0515 3732 usbohci - ok
22:19:33.0546 3732 USBSTOR (6cd7b22193718f1d17a47a1cd6d37e75) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
22:19:33.0546 3732 USBSTOR - ok
22:19:33.0578 3732 usbuhci (f8fd1400092e23c8f2f31406ef06167b) C:\WINDOWS\system32\DRIVERS\usbuhci.sys
22:19:33.0578 3732 usbuhci - ok
22:19:33.0609 3732 usbvideo (8968ff3973a883c49e8b564200f565b9) C:\WINDOWS\system32\Drivers\usbvideo.sys
22:19:33.0609 3732 usbvideo - ok
22:19:33.0640 3732 VgaSave (8a60edd72b4ea5aea8202daf0e427925) C:\WINDOWS\System32\drivers\vga.sys
22:19:33.0640 3732 VgaSave - ok
22:19:33.0656 3732 ViaIde (59cb1338ad3654417bea49636457f65d) C:\WINDOWS\system32\DRIVERS\viaide.sys
22:19:33.0671 3732 ViaIde - ok
22:19:33.0687 3732 VolSnap (313b1a0d5db26dfe1c34a6c13b2ce0a7) C:\WINDOWS\system32\drivers\VolSnap.sys
22:19:33.0687 3732 VolSnap - ok
22:19:33.0734 3732 Wanarp (984ef0b9788abf89974cfed4bfbaacbc) C:\WINDOWS\system32\DRIVERS\wanarp.sys
22:19:33.0734 3732 Wanarp - ok
22:19:33.0812 3732 Wdf01000 (d918617b46457b9ac28027722e30f647) C:\WINDOWS\system32\Drivers\wdf01000.sys
22:19:33.0812 3732 Wdf01000 - ok
22:19:33.0843 3732 WDICA - ok
22:19:33.0875 3732 wdmaud (efd235ca22b57c81118c1aeb4798f1c1) C:\WINDOWS\system32\drivers\wdmaud.sys
22:19:33.0890 3732 wdmaud - ok
22:19:33.0953 3732 WSTCODEC (d5842484f05e12121c511aa93f6439ec) C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
22:19:33.0968 3732 WSTCODEC - ok
22:19:34.0000 3732 MBR (0x1B8) (4f3a0ea76e7edbe2fc4a98f9de544751) \Device\Harddisk0\DR0
22:19:34.0015 3732 \Device\Harddisk0\DR0 - ok
22:19:34.0031 3732 MBR (0x1B8) (d22f10b1216707c7a85d202a6bc51adc) \Device\Harddisk5\DR7
22:19:34.0046 3732 \Device\Harddisk5\DR7 - ok
22:19:34.0046 3732 Boot (0x1200) (8306359d26602834988c801330ae0786) \Device\Harddisk0\DR0\Partition0
22:19:34.0046 3732 \Device\Harddisk0\DR0\Partition0 - ok
22:19:34.0078 3732 Boot (0x1200) (37d174b3ad3b67760188e9423b6ca62d) \Device\Harddisk0\DR0\Partition1
22:19:34.0078 3732 \Device\Harddisk0\DR0\Partition1 - ok
22:19:34.0078 3732 Boot (0x1200) (1c3f19ce17f5bf80b30886e826a27f75) \Device\Harddisk5\DR7\Partition0
22:19:34.0078 3732 \Device\Harddisk5\DR7\Partition0 - ok
22:19:34.0093 3732 ============================================================
22:19:34.0093 3732 Scan finished
22:19:34.0093 3732 ============================================================
22:19:34.0093 0412 Detected object count: 1
22:19:34.0093 0412 Actual detected object count: 1
22:19:39.0734 0412 sptd ( LockedFile.Multi.Generic ) - skipped by user
22:19:39.0734 0412 sptd ( LockedFile.Multi.Generic ) - User select action: Skip
22:20:18.0484 2788 ============================================================
22:20:18.0484 2788 Scan started
22:20:18.0484 2788 Mode: Manual;
22:20:18.0484 2788 ============================================================
22:20:18.0671 2788 Aavmker4 (b6de0336f9f4b687b4ff57939f7b657a) C:\WINDOWS\system32\drivers\Aavmker4.sys
22:20:18.0687 2788 Aavmker4 - ok
22:20:18.0703 2788 Abiosdsk - ok
22:20:18.0718 2788 abp480n5 - ok
22:20:18.0781 2788 ACPI (0bd94fbfc14ea3606cd6ca4c0255baa3) C:\WINDOWS\system32\DRIVERS\ACPI.sys
22:20:18.0781 2788 ACPI - ok
22:20:18.0812 2788 ACPIEC (e4abc1212b70bb03d35e60681c447210) C:\WINDOWS\system32\drivers\ACPIEC.sys
22:20:18.0812 2788 ACPIEC - ok
22:20:18.0828 2788 adpu160m - ok
22:20:18.0890 2788 aec (1ee7b434ba961ef845de136224c30fec) C:\WINDOWS\system32\drivers\aec.sys
22:20:18.0890 2788 aec - ok
22:20:18.0921 2788 AFD (55e6e1c51b6d30e54335750955453702) C:\WINDOWS\System32\drivers\afd.sys
22:20:18.0921 2788 AFD - ok
22:20:19.0000 2788 AgereSoftModem (593aefc67283d409f34cc1245d00a509) C:\WINDOWS\system32\DRIVERS\AGRSM.sys
22:20:19.0031 2788 AgereSoftModem - ok
22:20:19.0046 2788 Aha154x - ok
22:20:19.0062 2788 aic78u2 - ok
22:20:19.0093 2788 aic78xx - ok
22:20:19.0187 2788 ALCXWDM (8d6c30e515717248e0e52b85fd7ac466) C:\WINDOWS\system32\drivers\ALCXWDM.SYS
22:20:19.0218 2788 ALCXWDM - ok
22:20:19.0265 2788 AliIde - ok
22:20:19.0296 2788 AmdK8 (841871eac4e0dab2bd2b56ce59ef9511) C:\WINDOWS\system32\DRIVERS\AmdK8.sys
22:20:19.0296 2788 AmdK8 - ok
22:20:19.0312 2788 amsint - ok
22:20:19.0343 2788 Arp1394 (f0d692b0bffb46e30eb3cea168bbc49f) C:\WINDOWS\system32\DRIVERS\arp1394.sys
22:20:19.0359 2788 Arp1394 - ok
22:20:19.0375 2788 asc - ok
22:20:19.0390 2788 asc3350p - ok
22:20:19.0406 2788 asc3550 - ok
22:20:19.0484 2788 aswFsBlk (054df24c92b55427e0757cfff160e4f2) C:\WINDOWS\system32\drivers\aswFsBlk.sys
22:20:19.0484 2788 aswFsBlk - ok
22:20:19.0515 2788 aswMon2 (ef0e9ad83380724bd6fbbb51d2d0f5b8) C:\WINDOWS\system32\drivers\aswMon2.sys
22:20:19.0515 2788 aswMon2 - ok
22:20:19.0546 2788 aswRdr (352d5a48ebab35a7693b048679304831) C:\WINDOWS\system32\drivers\aswRdr.sys
22:20:19.0546 2788 aswRdr - ok
22:20:19.0593 2788 aswSnx (8d34d2b24297e27d93e847319abfdec4) C:\WINDOWS\system32\drivers\aswSnx.sys
22:20:19.0593 2788 aswSnx - ok
22:20:19.0640 2788 aswSP (010012597333da1f46c3243f33f8409e) C:\WINDOWS\system32\drivers\aswSP.sys
22:20:19.0640 2788 aswSP - ok
22:20:19.0687 2788 aswTdi (f9f84364416658e9786235904d448d37) C:\WINDOWS\system32\drivers\aswTdi.sys
22:20:19.0687 2788 aswTdi - ok
22:20:19.0718 2788 AsyncMac (02000abf34af4c218c35d257024807d6) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
22:20:19.0718 2788 AsyncMac - ok
22:20:19.0750 2788 atapi (cdfe4411a69c224bd1d11b2da92dac51) C:\WINDOWS\system32\DRIVERS\atapi.sys
22:20:19.0750 2788 atapi - ok
22:20:19.0765 2788 Atdisk - ok
22:20:19.0843 2788 ati2mtag (f43601d255762f20d0e23a6d97062b0d) C:\WINDOWS\system32\DRIVERS\ati2mtag.sys
22:20:19.0843 2788 ati2mtag - ok
22:20:19.0890 2788 Atmarpc (ec88da854ab7d7752ec8be11a741bb7f) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
22:20:19.0890 2788 Atmarpc - ok
22:20:19.0921 2788 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
22:20:19.0921 2788 audstub - ok
22:20:19.0968 2788 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
22:20:19.0968 2788 Beep - ok
22:20:20.0015 2788 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
22:20:20.0015 2788 cbidf2k - ok
22:20:20.0046 2788 CCDECODE (6163ed60b684bab19d3352ab22fc48b2) C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
22:20:20.0046 2788 CCDECODE - ok
22:20:20.0062 2788 cd20xrnt - ok
22:20:20.0093 2788 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
22:20:20.0093 2788 Cdaudio - ok
22:20:20.0125 2788 Cdfs (cd7d5152df32b47f4e36f710b35aae02) C:\WINDOWS\system32\drivers\Cdfs.sys
22:20:20.0125 2788 Cdfs - ok
22:20:20.0156 2788 Cdrom (af9c19b3100fe010496b1a27181fbf72) C:\WINDOWS\system32\DRIVERS\cdrom.sys
22:20:20.0156 2788 Cdrom - ok
22:20:20.0187 2788 Changer - ok
22:20:20.0218 2788 CmdIde - ok
22:20:20.0250 2788 Cpqarray - ok
22:20:20.0281 2788 dac2w2k - ok
22:20:20.0296 2788 dac960nt - ok
22:20:20.0328 2788 Disk (00ca44e4534865f8a3b64f7c0984bff0) C:\WINDOWS\system32\DRIVERS\disk.sys
22:20:20.0328 2788 Disk - ok
22:20:20.0390 2788 dmboot (e2d3b7620310fe56685f9b15a6b404b3) C:\WINDOWS\system32\drivers\dmboot.sys
22:20:20.0390 2788 dmboot - ok
22:20:20.0453 2788 dmio (c77f5c20aa70197a69aa84baa9de43c8) C:\WINDOWS\system32\drivers\dmio.sys
22:20:20.0453 2788 dmio - ok
22:20:20.0484 2788 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
22:20:20.0484 2788 dmload - ok
22:20:20.0515 2788 DMusic (a6f881284ac1150e37d9ae47ff601267) C:\WINDOWS\system32\drivers\DMusic.sys
22:20:20.0515 2788 DMusic - ok
22:20:20.0531 2788 dpti2o - ok
22:20:20.0562 2788 drmkaud (1ed4dbbae9f5d558dbba4cc450e3eb2e) C:\WINDOWS\system32\drivers\drmkaud.sys
22:20:20.0562 2788 drmkaud - ok
22:20:20.0593 2788 Fastfat (3117f595e9615e04f05a54fc15a03b20) C:\WINDOWS\system32\drivers\Fastfat.sys
22:20:20.0593 2788 Fastfat - ok
22:20:20.0640 2788 Fdc (ced2e8396a8838e59d8fd529c680e02c) C:\WINDOWS\system32\DRIVERS\fdc.sys
22:20:20.0640 2788 Fdc - ok
22:20:20.0656 2788 FilterService - ok
22:20:20.0687 2788 Fips (8b121ff880683607ab2aef0340721718) C:\WINDOWS\system32\drivers\Fips.sys
22:20:20.0687 2788 Fips - ok
22:20:20.0703 2788 Flpydisk (0dd1de43115b93f4d85e889d7a86f548) C:\WINDOWS\system32\DRIVERS\flpydisk.sys
22:20:20.0703 2788 Flpydisk - ok
22:20:20.0750 2788 FltMgr (3d234fb6d6ee875eb009864a299bea29) C:\WINDOWS\system32\DRIVERS\fltMgr.sys
22:20:20.0750 2788 FltMgr - ok
22:20:20.0765 2788 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
22:20:20.0765 2788 Fs_Rec - ok
22:20:20.0796 2788 Ftdisk (a86859b77b908c18c2657f284aa29fe3) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
22:20:20.0796 2788 Ftdisk - ok
22:20:20.0828 2788 GEARAspiWDM (2fb04db459c71f416ee8b05448ca4ac3) C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys
22:20:20.0828 2788 GEARAspiWDM - ok
22:20:20.0843 2788 Gpc (c0f1d4a21de5a415df8170616703debf) C:\WINDOWS\system32\DRIVERS\msgpc.sys
22:20:20.0859 2788 Gpc - ok
22:20:20.0875 2788 HidUsb (1de6783b918f540149aa69943bdfeba8) C:\WINDOWS\system32\DRIVERS\hidusb.sys
22:20:20.0875 2788 HidUsb - ok
22:20:20.0906 2788 hpn - ok
22:20:20.0953 2788 HTTP (9f8b0f4276f618964fd118be4289b7cd) C:\WINDOWS\system32\Drivers\HTTP.sys
22:20:20.0953 2788 HTTP - ok
22:20:20.0968 2788 i2omgmt - ok
22:20:21.0000 2788 i2omp - ok
22:20:21.0015 2788 i8042prt (d1efcbd693b5ba21314d06368c471070) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
22:20:21.0015 2788 i8042prt - ok
22:20:21.0046 2788 Imapi (f8aa320c6a0409c0380e5d8a99d76ec6) C:\WINDOWS\system32\DRIVERS\imapi.sys
22:20:21.0046 2788 Imapi - ok
22:20:21.0062 2788 ini910u - ok
22:20:21.0093 2788 IntelIde (1367812f8a974e0c13a4888fa5e7ede6) C:\WINDOWS\system32\DRIVERS\intelide.sys
22:20:21.0093 2788 IntelIde - ok
22:20:21.0125 2788 intelppm - ok
22:20:21.0171 2788 Ip6Fw (4448006b6bc60e6c027932cfc38d6855) C:\WINDOWS\system32\DRIVERS\Ip6Fw.sys
22:20:21.0171 2788 Ip6Fw - ok
22:20:21.0203 2788 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
22:20:21.0203 2788 IpFilterDriver - ok
22:20:21.0234 2788 IpInIp (e1ec7f5da720b640cd8fb8424f1b14bb) C:\WINDOWS\system32\DRIVERS\ipinip.sys
22:20:21.0234 2788 IpInIp - ok
22:20:21.0281 2788 IpNat (e2168cbc7098ffe963c6f23f472a3593) C:\WINDOWS\system32\DRIVERS\ipnat.sys
22:20:21.0281 2788 IpNat - ok
22:20:21.0312 2788 IPSec (64537aa5c003a6afeee1df819062d0d1) C:\WINDOWS\system32\DRIVERS\ipsec.sys
22:20:21.0312 2788 IPSec - ok
22:20:21.0328 2788 IRENUM (50708daa1b1cbb7d6ac1cf8f56a24410) C:\WINDOWS\system32\DRIVERS\irenum.sys
22:20:21.0328 2788 IRENUM - ok
22:20:21.0359 2788 isapnp (54632f1a7de61dc3615d756f2a90fa72) C:\WINDOWS\system32\DRIVERS\isapnp.sys
22:20:21.0359 2788 isapnp - ok
22:20:21.0406 2788 Iviaspi (f59c3569a2f2c464bb78cb1bdcdca55e) C:\WINDOWS\system32\drivers\iviaspi.sys
22:20:21.0406 2788 Iviaspi - ok
22:20:21.0468 2788 Kbdclass (e798705e8dc7fab596ef6bfdf167e007) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
22:20:21.0468 2788 Kbdclass - ok
22:20:21.0484 2788 kbdhid (62dd5eefcec4ef4163f1168d4262a9e4) C:\WINDOWS\system32\DRIVERS\kbdhid.sys
22:20:21.0484 2788 kbdhid - ok
22:20:21.0531 2788 kmixer (ba5deda4d934e6288c2f66caf58d2562) C:\WINDOWS\system32\drivers\kmixer.sy
ok le nettoyage semble être fait pourrais tu essayer de faire le zhpdiag désinstalles celui sur ton pc et retélécharge le car il peu avoir été corrompu !!!
Ouvre ce lien et télécharge ZHPDiag :
https://www.zebulon.fr/telechargements/securite/systeme/zhpdiag.html
cliques sur télécharger "celui du bas"
ou directement ici: ftp://zebulon.fr/ZHPDiag2.exe
Enregistres le sur ton Bureau.
Une fois le téléchargement achevé
pour XP, double-clique sur ZHPDiag
pour Vista,et seven tu fais un clic droit sur l'icône et exécute en tant qu'administrateur.
N'oublies pas de cocher la case qui permet de mettre un raccourci sur le Bureau.
/|\ l'outil a créé 2 icônes ZHPDiag et ZHPFix.
Double cliques sur le raccourci ZHPDiag sur ton Bureau pour XP sinon clique droit et en tant que administrateur !!
Cliques sur la loupe pour lancer l'analyse.
si tu as un message te demandant la validation pour SIGCHECK acceptes avec OK cela est pour nous faire un rapport plus complet et pouvoir en faire une lecture plus approfondis
Laisses l'outil travailler, il peut être assez long
A la fin de l'analyse,clique sur l'appareil photo et enregistre le rapport sur ton Bureau.
Fermes ZHPDiag en fin d'analyse.
Pour me le transmettre clique sur ce lien :
https://www.cjoint.com/
Clique sur Parcourir et cherche le fichier C:\Documents and settings\le_nom_de_ta_session\bureau\.ZHPDiag.txt
ou directement en choisissant bureau et ZHPDiag.txt clique dessus
Clique sur Ouvrir.
Clique sur "Cliquez ici pour déposer le fichier".
Un lien de cette forme :
http://www.cijoint.fr/cjlink.php?file=cj200905/cib7SU.txt
est ajouté dans la page.
Copie ce lien dans ta réponse.
et si problème passe par celui ci : http://pjjoint.malekal.com/
Ouvre ce lien et télécharge ZHPDiag :
https://www.zebulon.fr/telechargements/securite/systeme/zhpdiag.html
cliques sur télécharger "celui du bas"
ou directement ici: ftp://zebulon.fr/ZHPDiag2.exe
Enregistres le sur ton Bureau.
Une fois le téléchargement achevé
pour XP, double-clique sur ZHPDiag
pour Vista,et seven tu fais un clic droit sur l'icône et exécute en tant qu'administrateur.
N'oublies pas de cocher la case qui permet de mettre un raccourci sur le Bureau.
/|\ l'outil a créé 2 icônes ZHPDiag et ZHPFix.
Double cliques sur le raccourci ZHPDiag sur ton Bureau pour XP sinon clique droit et en tant que administrateur !!
Cliques sur la loupe pour lancer l'analyse.
si tu as un message te demandant la validation pour SIGCHECK acceptes avec OK cela est pour nous faire un rapport plus complet et pouvoir en faire une lecture plus approfondis
Laisses l'outil travailler, il peut être assez long
A la fin de l'analyse,clique sur l'appareil photo et enregistre le rapport sur ton Bureau.
Fermes ZHPDiag en fin d'analyse.
Pour me le transmettre clique sur ce lien :
https://www.cjoint.com/
Clique sur Parcourir et cherche le fichier C:\Documents and settings\le_nom_de_ta_session\bureau\.ZHPDiag.txt
ou directement en choisissant bureau et ZHPDiag.txt clique dessus
Clique sur Ouvrir.
Clique sur "Cliquez ici pour déposer le fichier".
Un lien de cette forme :
http://www.cijoint.fr/cjlink.php?file=cj200905/cib7SU.txt
est ajouté dans la page.
Copie ce lien dans ta réponse.
et si problème passe par celui ci : http://pjjoint.malekal.com/
ton navigateur est bien fermer pendant l'analyse !!!
bon tu vas passer combofix si il y a des reste il trouvera !!
Avant d'utiliser ComboFix :
Les logiciels d'émulation de CD comme Daemon Tools peuvent gêner les outils de désinfection. Utilise Defogger pour les désactiver temporairement :
si tu as ce genre de d'outils sur ton pc Utilise Defogger pour les désactiver temporairement : sinon passe directement à combofix
. Télécharge Defogger (de jpshortstuff)sur ton Bureau
. Lance le
Une fenêtre apparait : clique sur "Disable"
. Fais redémarrer l'ordinateur si l'outil te le demande
Note : Quand nous aurons terminé la désinfection, tu pourras réactiver ces logiciels en relançant Defogger et en cliquant sur "Re-enable"
Tutoriel officiel prends le temps de le regarder : https://www.bleepingcomputer.com/combofix/fr/comment-utiliser-combofix
et
note bien cette manipe https://www.bleepingcomputer.com/combofix/fr/comment-utiliser-combofix#restore car des fois après combofix la connection internet est déactivée
Télécharge Combofix.exe de sUBs sur ton Bureau,
http://download.bleepingcomputer.com/sUBs/ComboFix.exe
Déconnectes toi d'internet et désactives ton antivirus et toutes protection résidente, pour que Combofix puisse s'exécuter normalement.
Doubles clique sur Combofix.exe
Mets le en langue française F
Tape sur la touche 1 (Yes) pour démarrer le scan.
tu ne touches pas au pc pendant qu'il travail sauf pour répondre quand il te le demande.
si il te propose d'installer la console de récuppération accepte cela permet à l'outil de nettoyer certain fichiers système , et de réparrer si besion !!
En fin de scan, il est possible que ComboFix ait besoin de redémarrer le PC pour finaliser la désinfection, laisse-le faire.
Une fois le scan achevé, un rapport va s'afficher : Poste son contenu
Réactives la protection en temps réel de ton Antivirus et de tes Antispywares, avant de te reconnecter à Internet.
Note : Le rapport se trouve également là : C:\Combofix.txt
bon tu vas passer combofix si il y a des reste il trouvera !!
Avant d'utiliser ComboFix :
Les logiciels d'émulation de CD comme Daemon Tools peuvent gêner les outils de désinfection. Utilise Defogger pour les désactiver temporairement :
si tu as ce genre de d'outils sur ton pc Utilise Defogger pour les désactiver temporairement : sinon passe directement à combofix
. Télécharge Defogger (de jpshortstuff)sur ton Bureau
. Lance le
Une fenêtre apparait : clique sur "Disable"
. Fais redémarrer l'ordinateur si l'outil te le demande
Note : Quand nous aurons terminé la désinfection, tu pourras réactiver ces logiciels en relançant Defogger et en cliquant sur "Re-enable"
Tutoriel officiel prends le temps de le regarder : https://www.bleepingcomputer.com/combofix/fr/comment-utiliser-combofix
et
note bien cette manipe https://www.bleepingcomputer.com/combofix/fr/comment-utiliser-combofix#restore car des fois après combofix la connection internet est déactivée
Télécharge Combofix.exe de sUBs sur ton Bureau,
http://download.bleepingcomputer.com/sUBs/ComboFix.exe
Déconnectes toi d'internet et désactives ton antivirus et toutes protection résidente, pour que Combofix puisse s'exécuter normalement.
Doubles clique sur Combofix.exe
Mets le en langue française F
Tape sur la touche 1 (Yes) pour démarrer le scan.
tu ne touches pas au pc pendant qu'il travail sauf pour répondre quand il te le demande.
si il te propose d'installer la console de récuppération accepte cela permet à l'outil de nettoyer certain fichiers système , et de réparrer si besion !!
En fin de scan, il est possible que ComboFix ait besoin de redémarrer le PC pour finaliser la désinfection, laisse-le faire.
Une fois le scan achevé, un rapport va s'afficher : Poste son contenu
Réactives la protection en temps réel de ton Antivirus et de tes Antispywares, avant de te reconnecter à Internet.
Note : Le rapport se trouve également là : C:\Combofix.txt
Hallelujah !!!
J'ai pensé à un truc... puisque ZHP bloc sur un fichier sur lequel il y a pb de droit d'accès.... je suis repassé en safe\Admin et j'ai réattibué les droits pour ma session.
Ensuite je suis repassé sur ma session, et je relancé ZHP...
Voici donc le résultat =XU know what ? I am happy =), pour un newbee !!
https://pjjoint.malekal.com/files.php?id=ZHPDiag_20111212_c13w10l14g11i15
Est-ce que je lance quand même OTL ?
J'ai pensé à un truc... puisque ZHP bloc sur un fichier sur lequel il y a pb de droit d'accès.... je suis repassé en safe\Admin et j'ai réattibué les droits pour ma session.
Ensuite je suis repassé sur ma session, et je relancé ZHP...
Voici donc le résultat =XU know what ? I am happy =), pour un newbee !!
https://pjjoint.malekal.com/files.php?id=ZHPDiag_20111212_c13w10l14g11i15
Est-ce que je lance quand même OTL ?