Virus gendarmerie : centre de securité inacti
benji120990
Messages postés
5
Statut
Membre
-
Utilisateur anonyme -
Utilisateur anonyme -
Bonjour,
j ai eu le virus gendarmerie comme tout le monde. je l ai enlevée grâce a un point de restauration en redémarrant l'ordi mais je n arrive pas a activer mon pare feu et mon centre de sécurité est inactif !! que faire ? merci bcp
j ai eu le virus gendarmerie comme tout le monde. je l ai enlevée grâce a un point de restauration en redémarrant l'ordi mais je n arrive pas a activer mon pare feu et mon centre de sécurité est inactif !! que faire ? merci bcp
A voir également:
- Virus gendarmerie : centre de securité inacti
- Virus mcafee - Accueil - Piratage
- Virus informatique - Guide
- Panda anti virus gratuit - Télécharger - Antivirus & Antimalwares
- Undisclosed-recipients virus - Guide
- Ordinateur bloqué virus - Accueil - Arnaque
5 réponses
salut
▶ Télécharge Reload_TDSSKiller
▶ Lance le
choisis : lancer le nettoyage
l'outil va automatiquement télécharger la derniere version puis
TDSSKiller va s'ouvrir , clique sur "Start Scan"
Si TDSS.tdl2 est détecté l''option delete sera cochée par défaut.
Si TDSS.tdl3 est détecté assure toi que Cure est bien cochée.
Si TDSS.tdl4(\HardDisk0\MBR) est détecté assure toi que Cure est bien cochée.
Si Suspicious file est indiqué, laisse l''option cochée sur Skip
Si Rootkit.Win32.ZAccess.* est détecté règle sur "cure" en haut , et "delete" en bas
une fois qu'il a terminé , redemarre s'il te le demande pour finir de nettoyer
sinon , ferme tdssKiller et le rapport s'affichera sur le bureau
▶ Copie/Colle son contenu dans ta prochaine réponse.
▶ Télécharge Reload_TDSSKiller
▶ Lance le
choisis : lancer le nettoyage
l'outil va automatiquement télécharger la derniere version puis
TDSSKiller va s'ouvrir , clique sur "Start Scan"
Si TDSS.tdl2 est détecté l''option delete sera cochée par défaut.
Si TDSS.tdl3 est détecté assure toi que Cure est bien cochée.
Si TDSS.tdl4(\HardDisk0\MBR) est détecté assure toi que Cure est bien cochée.
Si Suspicious file est indiqué, laisse l''option cochée sur Skip
Si Rootkit.Win32.ZAccess.* est détecté règle sur "cure" en haut , et "delete" en bas
une fois qu'il a terminé , redemarre s'il te le demande pour finir de nettoyer
sinon , ferme tdssKiller et le rapport s'affichera sur le bureau
▶ Copie/Colle son contenu dans ta prochaine réponse.
salut
dessolé de te répondre que maintenant mais j étais au travail !!
j ai fait comme tu m as dit et j ai eu la dernière possibilité c a d Rootkit.Win32.ZAccess. j ai redémarré mais ca marche tjrs pas
voici ce que j ai eu
23:07:17.0640 1056 TDSS rootkit removing tool 2.6.23.0 Dec 13 2011 10:39:31
23:07:17.0858 1056 ============================================================
23:07:17.0858 1056 Current date / time: 2011/12/20 23:07:17.0858
23:07:17.0858 1056 SystemInfo:
23:07:17.0858 1056
23:07:17.0858 1056 OS Version: 6.0.6002 ServicePack: 2.0
23:07:17.0858 1056 Product type: Workstation
23:07:17.0858 1056 ComputerName: PC-DE-BENJAMIN
23:07:17.0858 1056 UserName: Benjamin
23:07:17.0858 1056 Windows directory: C:\Windows
23:07:17.0858 1056 System windows directory: C:\Windows
23:07:17.0858 1056 Processor architecture: Intel x86
23:07:17.0858 1056 Number of processors: 2
23:07:17.0858 1056 Page size: 0x1000
23:07:17.0858 1056 Boot type: Normal boot
23:07:17.0858 1056 ============================================================
23:07:18.0919 1056 Initialize success
23:07:23.0443 3372 ============================================================
23:07:23.0443 3372 Scan started
23:07:23.0443 3372 Mode: Manual;
23:07:23.0443 3372 ============================================================
23:07:24.0254 3372 ACPI (82b296ae1892fe3dbee00c9cf92f8ac7) C:\Windows\system32\drivers\acpi.sys
23:07:24.0270 3372 ACPI - ok
23:07:24.0676 3372 adp94xx (04f0fcac69c7c71a3ac4eb97fafc8303) C:\Windows\system32\drivers\adp94xx.sys
23:07:24.0785 3372 adp94xx - ok
23:07:25.0097 3372 adpahci (60505e0041f7751bdbb80f88bf45c2ce) C:\Windows\system32\drivers\adpahci.sys
23:07:25.0175 3372 adpahci - ok
23:07:25.0424 3372 adpu160m (8a42779b02aec986eab64ecfc98f8bd7) C:\Windows\system32\drivers\adpu160m.sys
23:07:25.0502 3372 adpu160m - ok
23:07:25.0752 3372 adpu320 (241c9e37f8ce45ef51c3de27515ca4e5) C:\Windows\system32\drivers\adpu320.sys
23:07:25.0783 3372 adpu320 - ok
23:07:26.0095 3372 AFD (3911b972b55fea0478476b2e777b29fa) C:\Windows\system32\drivers\afd.sys
23:07:26.0158 3372 AFD - ok
23:07:26.0220 3372 agp440 (13f9e33747e6b41a3ff305c37db0d360) C:\Windows\system32\drivers\agp440.sys
23:07:26.0220 3372 agp440 - ok
23:07:26.0314 3372 aic78xx (ae1fdf7bf7bb6c6a70f67699d880592a) C:\Windows\system32\drivers\djsvs.sys
23:07:26.0314 3372 aic78xx - ok
23:07:26.0392 3372 aliide (9eaef5fc9b8e351afa7e78a6fae91f91) C:\Windows\system32\drivers\aliide.sys
23:07:26.0392 3372 aliide - ok
23:07:26.0423 3372 amdagp (c47344bc706e5f0b9dce369516661578) C:\Windows\system32\drivers\amdagp.sys
23:07:26.0423 3372 amdagp - ok
23:07:26.0485 3372 amdide (9b78a39a4c173fdbc1321e0dd659b34c) C:\Windows\system32\drivers\amdide.sys
23:07:26.0516 3372 amdide - ok
23:07:26.0594 3372 AmdK7 (18f29b49ad23ecee3d2a826c725c8d48) C:\Windows\system32\drivers\amdk7.sys
23:07:26.0594 3372 AmdK7 - ok
23:07:26.0719 3372 AmdK8 (93ae7f7dd54ab986a6f1a1b37be7442d) C:\Windows\system32\DRIVERS\amdk8.sys
23:07:26.0719 3372 AmdK8 - ok
23:07:26.0969 3372 arc (5d2888182fb46632511acee92fdad522) C:\Windows\system32\drivers\arc.sys
23:07:27.0000 3372 arc - ok
23:07:27.0125 3372 arcsas (5e2a321bd7c8b3624e41fdec3e244945) C:\Windows\system32\drivers\arcsas.sys
23:07:27.0125 3372 arcsas - ok
23:07:27.0203 3372 AsyncMac (53b202abee6455406254444303e87be1) C:\Windows\system32\DRIVERS\asyncmac.sys
23:07:27.0218 3372 AsyncMac - ok
23:07:27.0250 3372 atapi (1f05b78ab91c9075565a9d8a4b880bc4) C:\Windows\system32\drivers\atapi.sys
23:07:27.0265 3372 atapi - ok
23:07:27.0359 3372 avgio (f1d43170fdd7399ee17ea32d4f868b0c) C:\Program Files\Avira\AntiVir Desktop\avgio.sys
23:07:27.0359 3372 avgio - ok
23:07:27.0515 3372 avgntflt (1e4114685de1ffa9675e09c6a1fb3f4b) C:\Windows\system32\DRIVERS\avgntflt.sys
23:07:27.0530 3372 avgntflt - ok
23:07:27.0718 3372 avipbb (0f78d3dae6dedd99ae54c9491c62adf2) C:\Windows\system32\DRIVERS\avipbb.sys
23:07:27.0733 3372 avipbb - ok
23:07:27.0967 3372 Beep (67e506b75bd5326a3ec7b70bd014dfb6) C:\Windows\system32\drivers\Beep.sys
23:07:27.0967 3372 Beep - ok
23:07:28.0139 3372 blbdrive (d4df28447741fd3d953526e33a617397) C:\Windows\system32\drivers\blbdrive.sys
23:07:28.0154 3372 blbdrive - ok
23:07:28.0576 3372 bowser (35f376253f687bde63976ccb3f2108ca) C:\Windows\system32\DRIVERS\bowser.sys
23:07:28.0591 3372 bowser - ok
23:07:28.0810 3372 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\drivers\brfiltlo.sys
23:07:28.0841 3372 BrFiltLo - ok
23:07:28.0981 3372 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\drivers\brfiltup.sys
23:07:28.0981 3372 BrFiltUp - ok
23:07:29.0122 3372 Brserid (b304e75cff293029eddf094246747113) C:\Windows\system32\drivers\brserid.sys
23:07:29.0137 3372 Brserid - ok
23:07:29.0215 3372 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\system32\drivers\brserwdm.sys
23:07:29.0231 3372 BrSerWdm - ok
23:07:29.0418 3372 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\system32\drivers\brusbmdm.sys
23:07:29.0434 3372 BrUsbMdm - ok
23:07:29.0543 3372 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\system32\drivers\brusbser.sys
23:07:29.0558 3372 BrUsbSer - ok
23:07:29.0636 3372 BTHMODEM (ad07c1ec6665b8b35741ab91200c6b68) C:\Windows\system32\drivers\bthmodem.sys
23:07:29.0652 3372 BTHMODEM - ok
23:07:29.0761 3372 cdfs (7add03e75beb9e6dd102c3081d29840a) C:\Windows\system32\DRIVERS\cdfs.sys
23:07:29.0777 3372 cdfs - ok
23:07:29.0902 3372 cdrom (6b4bffb9becd728097024276430db314) C:\Windows\system32\DRIVERS\cdrom.sys
23:07:29.0933 3372 cdrom - ok
23:07:30.0042 3372 circlass (e5d4133f37219dbcfe102bc61072589d) C:\Windows\system32\drivers\circlass.sys
23:07:30.0058 3372 circlass - ok
23:07:30.0167 3372 CLFS (d7659d3b5b92c31e84e53c1431f35132) C:\Windows\system32\CLFS.sys
23:07:30.0276 3372 CLFS - ok
23:07:30.0479 3372 cmdide (0ca25e686a4928484e9fdabd168ab629) C:\Windows\system32\drivers\cmdide.sys
23:07:30.0494 3372 cmdide - ok
23:07:30.0619 3372 Compbatt (6afef0b60fa25de07c0968983ee4f60a) C:\Windows\system32\drivers\compbatt.sys
23:07:30.0650 3372 Compbatt - ok
23:07:30.0744 3372 crcdisk (741e9dff4f42d2d8477d0fc1dc0df871) C:\Windows\system32\drivers\crcdisk.sys
23:07:30.0760 3372 crcdisk - ok
23:07:30.0822 3372 Crusoe (1f07becdca750766a96cda811ba86410) C:\Windows\system32\drivers\crusoe.sys
23:07:30.0853 3372 Crusoe - ok
23:07:30.0962 3372 DfsC (71895934f523a85def844e4b4d8e666f) C:\Windows\system32\Drivers\dfsc.sys
23:07:30.0962 3372 Suspicious file (Forged): C:\Windows\system32\Drivers\dfsc.sys. Real md5: 71895934f523a85def844e4b4d8e666f, Fake md5: 622c41a07ca7e6dd91770f50d532cb6c
23:07:30.0978 3372 DfsC ( Rootkit.Win32.ZAccess.h ) - infected
23:07:30.0978 3372 DfsC - detected Rootkit.Win32.ZAccess.h (0)
23:07:31.0150 3372 disk (5d4aefc3386920236a548271f8f1af6a) C:\Windows\system32\drivers\disk.sys
23:07:31.0165 3372 disk - ok
23:07:31.0274 3372 drmkaud (97fef831ab90bee128c9af390e243f80) C:\Windows\system32\drivers\drmkaud.sys
23:07:31.0290 3372 drmkaud - ok
23:07:31.0384 3372 DXGKrnl (c68ac676b0ef30cfbb1080adce49eb1f) C:\Windows\System32\drivers\dxgkrnl.sys
23:07:31.0384 3372 DXGKrnl - ok
23:07:31.0540 3372 E1G60 (5425f74ac0c1dbd96a1e04f17d63f94c) C:\Windows\system32\DRIVERS\E1G60I32.sys
23:07:31.0555 3372 E1G60 - ok
23:07:31.0649 3372 Ecache (7f64ea048dcfac7acf8b4d7b4e6fe371) C:\Windows\system32\drivers\ecache.sys
23:07:31.0680 3372 Ecache - ok
23:07:31.0758 3372 elxstor (23b62471681a124889978f6295b3f4c6) C:\Windows\system32\drivers\elxstor.sys
23:07:31.0836 3372 elxstor - ok
23:07:31.0883 3372 ErrDev (3db974f3935483555d7148663f726c61) C:\Windows\system32\drivers\errdev.sys
23:07:31.0898 3372 ErrDev - ok
23:07:32.0070 3372 exfat (22b408651f9123527bcee54b4f6c5cae) C:\Windows\system32\drivers\exfat.sys
23:07:32.0117 3372 exfat - ok
23:07:32.0273 3372 fastfat (1e9b9a70d332103c52995e957dc09ef8) C:\Windows\system32\drivers\fastfat.sys
23:07:32.0273 3372 fastfat - ok
23:07:32.0320 3372 fdc (afe1e8b9782a0dd7fb46bbd88e43f89a) C:\Windows\system32\DRIVERS\fdc.sys
23:07:32.0320 3372 fdc - ok
23:07:32.0382 3372 FileInfo (a8c0139a884861e3aae9cfe73b208a9f) C:\Windows\system32\drivers\fileinfo.sys
23:07:32.0398 3372 FileInfo - ok
23:07:32.0444 3372 Filetrace (0ae429a696aecbc5970e3cf2c62635ae) C:\Windows\system32\drivers\filetrace.sys
23:07:32.0460 3372 Filetrace - ok
23:07:32.0491 3372 flpydisk (85b7cf99d532820495d68d747fda9ebd) C:\Windows\system32\DRIVERS\flpydisk.sys
23:07:32.0491 3372 flpydisk - ok
23:07:32.0538 3372 FltMgr (01334f9ea68e6877c4ef05d3ea8abb05) C:\Windows\system32\drivers\fltmgr.sys
23:07:32.0585 3372 FltMgr - ok
23:07:32.0725 3372 fssfltr (d909075fa72c090f27aa926c32cb4612) C:\Windows\system32\DRIVERS\fssfltr.sys
23:07:32.0741 3372 fssfltr - ok
23:07:32.0788 3372 Fs_Rec (65ea8b77b5851854f0c55c43fa51a198) C:\Windows\system32\drivers\Fs_Rec.sys
23:07:32.0788 3372 Fs_Rec - ok
23:07:32.0803 3372 gagp30kx (34582a6e6573d54a07ece5fe24a126b5) C:\Windows\system32\drivers\gagp30kx.sys
23:07:32.0819 3372 gagp30kx - ok
23:07:32.0912 3372 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
23:07:32.0912 3372 GEARAspiWDM - ok
23:07:33.0162 3372 HDAudBus (062452b7ffd68c8c042a6261fe8dff4a) C:\Windows\system32\DRIVERS\HDAudBus.sys
23:07:33.0178 3372 HDAudBus - ok
23:07:33.0240 3372 HidBth (1338520e78d90154ed6be8f84de5fceb) C:\Windows\system32\drivers\hidbth.sys
23:07:33.0271 3372 HidBth - ok
23:07:33.0287 3372 HidIr (ff3160c3a2445128c5a6d9b076da519e) C:\Windows\system32\drivers\hidir.sys
23:07:33.0302 3372 HidIr - ok
23:07:33.0349 3372 HidUsb (cca4b519b17e23a00b826c55716809cc) C:\Windows\system32\DRIVERS\hidusb.sys
23:07:33.0365 3372 HidUsb - ok
23:07:33.0443 3372 HpCISSs (16ee7b23a009e00d835cdb79574a91a6) C:\Windows\system32\drivers\hpcisss.sys
23:07:33.0443 3372 HpCISSs - ok
23:07:33.0583 3372 HTTP (0eeeca26c8d4bde2a4664db058a81937) C:\Windows\system32\drivers\HTTP.sys
23:07:33.0614 3372 HTTP - ok
23:07:33.0786 3372 i2omp (c6b032d69650985468160fc9937cf5b4) C:\Windows\system32\drivers\i2omp.sys
23:07:33.0817 3372 i2omp - ok
23:07:34.0020 3372 i8042prt (22d56c8184586b7a1f6fa60be5f5a2bd) C:\Windows\system32\DRIVERS\i8042prt.sys
23:07:34.0082 3372 i8042prt - ok
23:07:34.0192 3372 iaStorV (54155ea1b0df185878e0fc9ec3ac3a14) C:\Windows\system32\drivers\iastorv.sys
23:07:34.0254 3372 iaStorV - ok
23:07:34.0348 3372 iirsp (2d077bf86e843f901d8db709c95b49a5) C:\Windows\system32\drivers\iirsp.sys
23:07:34.0363 3372 iirsp - ok
23:07:34.0644 3372 IntcAzAudAddService (5d26ccb06e1f3b5c26e863df3f4f2611) C:\Windows\system32\drivers\RTKVHDA.sys
23:07:34.0706 3372 IntcAzAudAddService - ok
23:07:34.0816 3372 intelide (83aa759f3189e6370c30de5dc5590718) C:\Windows\system32\drivers\intelide.sys
23:07:34.0831 3372 intelide - ok
23:07:35.0081 3372 intelppm (224191001e78c89dfa78924c3ea595ff) C:\Windows\system32\DRIVERS\intelppm.sys
23:07:35.0128 3372 intelppm - ok
23:07:35.0252 3372 IpFilterDriver (62c265c38769b864cb25b4bcf62df6c3) C:\Windows\system32\DRIVERS\ipfltdrv.sys
23:07:35.0252 3372 IpFilterDriver - ok
23:07:35.0315 3372 IpInIp - ok
23:07:35.0362 3372 IPMIDRV (b25aaf203552b7b3491139d582b39ad1) C:\Windows\system32\drivers\ipmidrv.sys
23:07:35.0377 3372 IPMIDRV - ok
23:07:35.0471 3372 IPNAT (8793643a67b42cec66490b2a0cf92d68) C:\Windows\system32\DRIVERS\ipnat.sys
23:07:35.0486 3372 IPNAT - ok
23:07:35.0783 3372 IRENUM (109c0dfb82c3632fbd11949b73aeeac9) C:\Windows\system32\drivers\irenum.sys
23:07:35.0783 3372 IRENUM - ok
23:07:35.0892 3372 isapnp (6c70698a3e5c4376c6ab5c7c17fb0614) C:\Windows\system32\drivers\isapnp.sys
23:07:35.0923 3372 isapnp - ok
23:07:36.0376 3372 iScsiPrt (232fa340531d940aac623b121a595034) C:\Windows\system32\DRIVERS\msiscsi.sys
23:07:36.0376 3372 iScsiPrt - ok
23:07:36.0594 3372 iteatapi (bced60d16156e428f8df8cf27b0df150) C:\Windows\system32\drivers\iteatapi.sys
23:07:36.0641 3372 iteatapi - ok
23:07:36.0750 3372 iteraid (06fa654504a498c30adca8bec4e87e7e) C:\Windows\system32\drivers\iteraid.sys
23:07:36.0750 3372 iteraid - ok
23:07:36.0766 3372 kbdclass (37605e0a8cf00cbba538e753e4344c6e) C:\Windows\system32\DRIVERS\kbdclass.sys
23:07:36.0766 3372 kbdclass - ok
23:07:36.0922 3372 kbdhid (ede59ec70e25c24581add1fbec7325f7) C:\Windows\system32\DRIVERS\kbdhid.sys
23:07:36.0953 3372 kbdhid - ok
23:07:37.0374 3372 KSecDD (86165728af9bf72d6442a894fdfb4f8b) C:\Windows\system32\Drivers\ksecdd.sys
23:07:37.0483 3372 KSecDD - ok
23:07:37.0733 3372 lltdio (d1c5883087a0c3f1344d9d55a44901f6) C:\Windows\system32\DRIVERS\lltdio.sys
23:07:37.0733 3372 lltdio - ok
23:07:37.0873 3372 LSI_FC (c7e15e82879bf3235b559563d4185365) C:\Windows\system32\drivers\lsi_fc.sys
23:07:37.0889 3372 LSI_FC - ok
23:07:38.0357 3372 LSI_SAS (ee01ebae8c9bf0fa072e0ff68718920a) C:\Windows\system32\drivers\lsi_sas.sys
23:07:38.0388 3372 LSI_SAS - ok
23:07:38.0950 3372 LSI_SCSI (912a04696e9ca30146a62afa1463dd5c) C:\Windows\system32\drivers\lsi_scsi.sys
23:07:38.0996 3372 LSI_SCSI - ok
23:07:39.0215 3372 luafv (8f5c7426567798e62a3b3614965d62cc) C:\Windows\system32\drivers\luafv.sys
23:07:39.0230 3372 luafv - ok
23:07:39.0792 3372 megasas (0001ce609d66632fa17b84705f658879) C:\Windows\system32\drivers\megasas.sys
23:07:39.0823 3372 megasas - ok
23:07:39.0979 3372 MegaSR (c252f32cd9a49dbfc25ecf26ebd51a99) C:\Windows\system32\drivers\megasr.sys
23:07:40.0057 3372 MegaSR - ok
23:07:40.0541 3372 Modem (e13b5ea0f51ba5b1512ec671393d09ba) C:\Windows\system32\drivers\modem.sys
23:07:40.0572 3372 Modem - ok
23:07:40.0978 3372 monitor (0a9bb33b56e294f686abb7c1e4e2d8a8) C:\Windows\system32\DRIVERS\monitor.sys
23:07:40.0978 3372 monitor - ok
23:07:41.0212 3372 mouclass (5bf6a1326a335c5298477754a506d263) C:\Windows\system32\DRIVERS\mouclass.sys
23:07:41.0212 3372 mouclass - ok
23:07:41.0399 3372 mouhid (93b8d4869e12cfbe663915502900876f) C:\Windows\system32\DRIVERS\mouhid.sys
23:07:41.0414 3372 mouhid - ok
23:07:41.0602 3372 MountMgr (bdafc88aa6b92f7842416ea6a48e1600) C:\Windows\system32\drivers\mountmgr.sys
23:07:41.0648 3372 MountMgr - ok
23:07:41.0820 3372 mpio (511d011289755dd9f9a7579fb0b064e6) C:\Windows\system32\drivers\mpio.sys
23:07:41.0820 3372 mpio - ok
23:07:42.0194 3372 mpsdrv (22241feba9b2defa669c8cb0a8dd7d2e) C:\Windows\system32\drivers\mpsdrv.sys
23:07:42.0272 3372 mpsdrv - ok
23:07:42.0413 3372 Mraid35x (4fbbb70d30fd20ec51f80061703b001e) C:\Windows\system32\drivers\mraid35x.sys
23:07:42.0444 3372 Mraid35x - ok
23:07:42.0662 3372 MRxDAV (82cea0395524aacfeb58ba1448e8325c) C:\Windows\system32\drivers\mrxdav.sys
23:07:42.0709 3372 MRxDAV - ok
23:07:42.0912 3372 mrxsmb (1e94971c4b446ab2290deb71d01cf0c2) C:\Windows\system32\DRIVERS\mrxsmb.sys
23:07:42.0928 3372 mrxsmb - ok
23:07:43.0068 3372 mrxsmb10 (4fccb34d793b116423209c0f8b7a3b03) C:\Windows\system32\DRIVERS\mrxsmb10.sys
23:07:43.0162 3372 mrxsmb10 - ok
23:07:43.0396 3372 mrxsmb20 (c3cb1b40ad4a0124d617a1199b0b9d7c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
23:07:43.0411 3372 mrxsmb20 - ok
23:07:43.0474 3372 msahci (28023e86f17001f7cd9b15a5bc9ae07d) C:\Windows\system32\drivers\msahci.sys
23:07:43.0489 3372 msahci - ok
23:07:43.0536 3372 msdsm (4468b0f385a86ecddaf8d3ca662ec0e7) C:\Windows\system32\drivers\msdsm.sys
23:07:43.0583 3372 msdsm - ok
23:07:43.0910 3372 Msfs (a9927f4a46b816c92f461acb90cf8515) C:\Windows\system32\drivers\Msfs.sys
23:07:43.0910 3372 Msfs - ok
23:07:44.0098 3372 msisadrv (0f400e306f385c56317357d6dea56f62) C:\Windows\system32\drivers\msisadrv.sys
23:07:44.0113 3372 msisadrv - ok
23:07:44.0238 3372 MSKSSRV (d8c63d34d9c9e56c059e24ec7185cc07) C:\Windows\system32\drivers\MSKSSRV.sys
23:07:44.0238 3372 MSKSSRV - ok
23:07:44.0269 3372 MSPCLOCK (1d373c90d62ddb641d50e55b9e78d65e) C:\Windows\system32\drivers\MSPCLOCK.sys
23:07:44.0285 3372 MSPCLOCK - ok
23:07:44.0332 3372 MSPQM (b572da05bf4e098d4bba3a4734fb505b) C:\Windows\system32\drivers\MSPQM.sys
23:07:44.0363 3372 MSPQM - ok
23:07:44.0410 3372 MsRPC (b49456d70555de905c311bcda6ec6adb) C:\Windows\system32\drivers\MsRPC.sys
23:07:44.0441 3372 MsRPC - ok
23:07:44.0472 3372 mssmbios (e384487cb84be41d09711c30ca79646c) C:\Windows\system32\DRIVERS\mssmbios.sys
23:07:44.0472 3372 mssmbios - ok
23:07:44.0597 3372 MSTEE (7199c1eec1e4993caf96b8c0a26bd58a) C:\Windows\system32\drivers\MSTEE.sys
23:07:44.0612 3372 MSTEE - ok
23:07:44.0753 3372 Mup (6a57b5733d4cb702c8ea4542e836b96c) C:\Windows\system32\Drivers\mup.sys
23:07:44.0768 3372 Mup - ok
23:07:44.0924 3372 NativeWifiP (85c44fdff9cf7e72a40dcb7ec06a4416) C:\Windows\system32\DRIVERS\nwifi.sys
23:07:44.0956 3372 NativeWifiP - ok
23:07:45.0174 3372 NDIS (1357274d1883f68300aeadd15d7bbb42) C:\Windows\system32\drivers\ndis.sys
23:07:45.0174 3372 NDIS - ok
23:07:45.0517 3372 NdisTapi (0e186e90404980569fb449ba7519ae61) C:\Windows\system32\DRIVERS\ndistapi.sys
23:07:45.0517 3372 NdisTapi - ok
23:07:45.0611 3372 Ndisuio (d6973aa34c4d5d76c0430b181c3cd389) C:\Windows\system32\DRIVERS\ndisuio.sys
23:07:45.0611 3372 Ndisuio - ok
23:07:45.0829 3372 NdisWan (818f648618ae34f729fdb47ec68345c3) C:\Windows\system32\DRIVERS\ndiswan.sys
23:07:45.0845 3372 NdisWan - ok
23:07:45.0907 3372 NDProxy (71dab552b41936358f3b541ae5997fb3) C:\Windows\system32\drivers\NDProxy.sys
23:07:45.0907 3372 NDProxy - ok
23:07:46.0016 3372 NetBIOS (bcd093a5a6777cf626434568dc7dba78) C:\Windows\system32\DRIVERS\netbios.sys
23:07:46.0016 3372 NetBIOS - ok
23:07:46.0188 3372 netbt (ecd64230a59cbd93c85f1cd1cab9f3f6) C:\Windows\system32\DRIVERS\netbt.sys
23:07:46.0297 3372 netbt - ok
23:07:46.0609 3372 nfrd960 (2e7fb731d4790a1bc6270accefacb36e) C:\Windows\system32\drivers\nfrd960.sys
23:07:46.0625 3372 nfrd960 - ok
23:07:46.0874 3372 Npfs (d36f239d7cce1931598e8fb90a0dbc26) C:\Windows\system32\drivers\Npfs.sys
23:07:46.0906 3372 Npfs - ok
23:07:47.0124 3372 nsiproxy (609773e344a97410ce4ebf74a8914fcf) C:\Windows\system32\drivers\nsiproxy.sys
23:07:47.0140 3372 nsiproxy - ok
23:07:47.0467 3372 Ntfs (6a4a98cee84cf9e99564510dda4baa47) C:\Windows\system32\drivers\Ntfs.sys
23:07:47.0592 3372 Ntfs - ok
23:07:47.0779 3372 ntrigdigi (e875c093aec0c978a90f30c9e0dfbb72) C:\Windows\system32\drivers\ntrigdigi.sys
23:07:47.0779 3372 ntrigdigi - ok
23:07:47.0966 3372 Null (c5dbbcda07d780bda9b685df333bb41e) C:\Windows\system32\drivers\Null.sys
23:07:47.0966 3372 Null - ok
23:07:48.0200 3372 NVENETFD (de3fcf6a5aaca198b22998330c3c64d9) C:\Windows\system32\DRIVERS\nvmfdx32.sys
23:07:48.0232 3372 NVENETFD - ok
23:07:48.0528 3372 nvlddmkm (fbba09782f2fac5a57619df378ba9372) C:\Windows\system32\DRIVERS\nvlddmkm.sys
23:07:48.0637 3372 nvlddmkm - ok
23:07:48.0840 3372 nvraid (2edf9e7751554b42cbb60116de727101) C:\Windows\system32\drivers\nvraid.sys
23:07:48.0856 3372 nvraid - ok
23:07:48.0918 3372 nvrd32 (6934105ecc6a19570160d794e301e595) C:\Windows\system32\drivers\nvrd32.sys
23:07:48.0934 3372 nvrd32 - ok
23:07:48.0996 3372 nvsmu (62754e376185eacbb73d06fea0ffc54a) C:\Windows\system32\drivers\nvsmu.sys
23:07:48.0996 3372 nvsmu - ok
23:07:49.0043 3372 nvstor (abed0c09758d1d97db0042dbb2688177) C:\Windows\system32\drivers\nvstor.sys
23:07:49.0058 3372 nvstor - ok
23:07:49.0136 3372 nvstor32 (d7b213299852d2026dbc90dab77ef06c) C:\Windows\system32\drivers\nvstor32.sys
23:07:49.0136 3372 nvstor32 - ok
23:07:49.0261 3372 nv_agp (18bbdf913916b71bd54575bdb6eeac0b) C:\Windows\system32\drivers\nv_agp.sys
23:07:49.0261 3372 nv_agp - ok
23:07:49.0308 3372 NwlnkFlt - ok
23:07:49.0339 3372 NwlnkFwd - ok
23:07:49.0433 3372 ohci1394 (6f310e890d46e246e0e261a63d9b36b4) C:\Windows\system32\DRIVERS\ohci1394.sys
23:07:49.0433 3372 ohci1394 - ok
23:07:49.0573 3372 Parport (0fa9b5055484649d63c303fe404e5f4d) C:\Windows\system32\drivers\parport.sys
23:07:49.0589 3372 Parport - ok
23:07:49.0745 3372 partmgr (57389fa59a36d96b3eb09d0cb91e9cdc) C:\Windows\system32\drivers\partmgr.sys
23:07:49.0776 3372 partmgr - ok
23:07:49.0901 3372 Parvdm (4f9a6a8a31413180d0fcb279ad5d8112) C:\Windows\system32\drivers\parvdm.sys
23:07:49.0901 3372 Parvdm - ok
23:07:50.0150 3372 pci (941dc1d19e7e8620f40bbc206981efdb) C:\Windows\system32\drivers\pci.sys
23:07:50.0150 3372 pci - ok
23:07:50.0462 3372 pciide (1636d43f10416aeb483bc6001097b26c) C:\Windows\system32\drivers\pciide.sys
23:07:50.0478 3372 pciide - ok
23:07:50.0728 3372 pcmcia (e6f3fb1b86aa519e7698ad05e58b04e5) C:\Windows\system32\drivers\pcmcia.sys
23:07:50.0759 3372 pcmcia - ok
23:07:50.0852 3372 PEAUTH (6349f6ed9c623b44b52ea3c63c831a92) C:\Windows\system32\drivers\peauth.sys
23:07:50.0977 3372 PEAUTH - ok
23:07:51.0211 3372 PptpMiniport (ecfffaec0c1ecd8dbc77f39070ea1db1) C:\Windows\system32\DRIVERS\raspptp.sys
23:07:51.0227 3372 PptpMiniport - ok
23:07:51.0430 3372 Processor (2027293619dd0f047c584cf2e7df4ffd) C:\Windows\system32\drivers\processr.sys
23:07:51.0461 3372 Processor - ok
23:07:51.0632 3372 PSched (99514faa8df93d34b5589187db3aa0ba) C:\Windows\system32\DRIVERS\pacer.sys
23:07:51.0632 3372 PSched - ok
23:07:51.0866 3372 ql2300 (0a6db55afb7820c99aa1f3a1d270f4f6) C:\Windows\system32\drivers\ql2300.sys
23:07:52.0069 3372 ql2300 - ok
23:07:52.0225 3372 ql40xx (81a7e5c076e59995d54bc1ed3a16e60b) C:\Windows\system32\drivers\ql40xx.sys
23:07:52.0334 3372 ql40xx - ok
23:07:52.0475 3372 QWAVEdrv (9f5e0e1926014d17486901c88eca2db7) C:\Windows\system32\drivers\qwavedrv.sys
23:07:52.0475 3372 QWAVEdrv - ok
23:07:52.0568 3372 RasAcd (147d7f9c556d259924351feb0de606c3) C:\Windows\system32\DRIVERS\rasacd.sys
23:07:52.0584 3372 RasAcd - ok
23:07:52.0646 3372 Rasl2tp (a214adbaf4cb47dd2728859ef31f26b0) C:\Windows\system32\DRIVERS\rasl2tp.sys
23:07:52.0678 3372 Rasl2tp - ok
23:07:52.0880 3372 RasPppoe (509a98dd18af4375e1fc40bc175f1def) C:\Windows\system32\DRIVERS\raspppoe.sys
23:07:52.0896 3372 RasPppoe - ok
23:07:53.0036 3372 RasSstp (2005f4a1e05fa09389ac85840f0a9e4d) C:\Windows\system32\DRIVERS\rassstp.sys
23:07:53.0052 3372 RasSstp - ok
23:07:53.0208 3372 rdbss (b14c9d5b9add2f84f70570bbbfaa7935) C:\Windows\system32\DRIVERS\rdbss.sys
23:07:53.0255 3372 rdbss - ok
23:07:53.0458 3372 RDPCDD (89e59be9a564262a3fb6c4f4f1cd9899) C:\Windows\system32\DRIVERS\RDPCDD.sys
23:07:53.0473 3372 RDPCDD - ok
23:07:53.0567 3372 rdpdr (fbc0bacd9c3d7f6956853f64a66e252d) C:\Windows\system32\drivers\rdpdr.sys
23:07:53.0567 3372 rdpdr - ok
23:07:53.0692 3372 RDPENCDD (9d91fe5286f748862ecffa05f8a0710c) C:\Windows\system32\drivers\rdpencdd.sys
23:07:53.0692 3372 RDPENCDD - ok
23:07:53.0863 3372 RDPWD (30bfbdfb7f95559ede971f9ddb9a00ba) C:\Windows\system32\drivers\RDPWD.sys
23:07:53.0926 3372 RDPWD - ok
23:07:54.0066 3372 RimUsb (f17713d108aca124a139fde877eef68a) C:\Windows\system32\Drivers\RimUsb.sys
23:07:54.0066 3372 RimUsb - ok
23:07:54.0113 3372 rspndr (9c508f4074a39e8b4b31d27198146fad) C:\Windows\system32\DRIVERS\rspndr.sys
23:07:54.0144 3372 rspndr - ok
23:07:54.0206 3372 sbp2port (3ce8f073a557e172b330109436984e30) C:\Windows\system32\drivers\sbp2port.sys
23:07:54.0222 3372 sbp2port - ok
23:07:54.0300 3372 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
23:07:54.0316 3372 secdrv - ok
23:07:54.0362 3372 Serenum (68e44e331d46f0fb38f0863a84cd1a31) C:\Windows\system32\drivers\serenum.sys
23:07:54.0378 3372 Serenum - ok
23:07:54.0409 3372 Serial (c70d69a918b178d3c3b06339b40c2e1b) C:\Windows\system32\drivers\serial.sys
23:07:54.0425 3372 Serial - ok
23:07:54.0487 3372 sermouse (8af3d28a879bf75db53a0ee7a4289624) C:\Windows\system32\drivers\sermouse.sys
23:07:54.0487 3372 sermouse - ok
23:07:54.0534 3372 sffdisk (3efa810bdca87f6ecc24f9832243fe86) C:\Windows\system32\drivers\sffdisk.sys
23:07:54.0565 3372 sffdisk - ok
23:07:54.0596 3372 sffp_mmc (e95d451f7ea3e583aec75f3b3ee42dc5) C:\Windows\system32\drivers\sffp_mmc.sys
23:07:54.0596 3372 sffp_mmc - ok
23:07:54.0628 3372 sffp_sd (3d0ea348784b7ac9ea9bd9f317980979) C:\Windows\system32\drivers\sffp_sd.sys
23:07:54.0628 3372 sffp_sd - ok
23:07:54.0659 3372 sfloppy (46ed8e91793b2e6f848015445a0ac188) C:\Windows\system32\drivers\sfloppy.sys
23:07:54.0659 3372 sfloppy - ok
23:07:54.0690 3372 sisagp (1d76624a09a054f682d746b924e2dbc3) C:\Windows\system32\drivers\sisagp.sys
23:07:54.0721 3372 sisagp - ok
23:07:54.0752 3372 SiSRaid2 (43cb7aa756c7db280d01da9b676cfde2) C:\Windows\system32\drivers\sisraid2.sys
23:07:54.0752 3372 SiSRaid2 - ok
23:07:54.0815 3372 SiSRaid4 (a99c6c8b0baa970d8aa59ddc50b57f94) C:\Windows\system32\drivers\sisraid4.sys
23:07:54.0877 3372 SiSRaid4 - ok
23:07:54.0986 3372 Smb (7b75299a4d201d6a6533603d6914ab04) C:\Windows\system32\DRIVERS\smb.sys
23:07:55.0018 3372 Smb - ok
23:07:55.0158 3372 spldr (7aebdeef071fe28b0eef2cdd69102bff) C:\Windows\system32\drivers\spldr.sys
23:07:55.0174 3372 spldr - ok
23:07:55.0298 3372 sptd (d15da1ba189770d93eea2d7e18f95af9) C:\Windows\system32\Drivers\sptd.sys
23:07:55.0298 3372 Suspicious file (NoAccess): C:\Windows\system32\Drivers\sptd.sys. md5: d15da1ba189770d93eea2d7e18f95af9
23:07:55.0314 3372 sptd ( LockedFile.Multi.Generic ) - warning
23:07:55.0314 3372 sptd - detected LockedFile.Multi.Generic (1)
23:07:55.0454 3372 srv (41987f9fc0e61adf54f581e15029ad91) C:\Windows\system32\DRIVERS\srv.sys
23:07:55.0470 3372 srv - ok
23:07:55.0517 3372 srv2 (ff33aff99564b1aa534f58868cbe41ef) C:\Windows\system32\DRIVERS\srv2.sys
23:07:55.0532 3372 srv2 - ok
23:07:55.0673 3372 srvnet (7605c0e1d01a08f3ecd743f38b834a44) C:\Windows\system32\DRIVERS\srvnet.sys
23:07:55.0704 3372 srvnet - ok
23:07:55.0798 3372 ssmdrv (a36ee93698802cd899f98bfd553d8185) C:\Windows\system32\DRIVERS\ssmdrv.sys
23:07:55.0813 3372 ssmdrv - ok
23:07:56.0016 3372 swenum (7ba58ecf0c0a9a69d44b3dca62becf56) C:\Windows\system32\DRIVERS\swenum.sys
23:07:56.0063 3372 swenum - ok
23:07:56.0266 3372 Symc8xx (192aa3ac01df071b541094f251deed10) C:\Windows\system32\drivers\symc8xx.sys
23:07:56.0281 3372 Symc8xx - ok
23:07:56.0437 3372 Sym_hi (8c8eb8c76736ebaf3b13b633b2e64125) C:\Windows\system32\drivers\sym_hi.sys
23:07:56.0484 3372 Sym_hi - ok
23:07:56.0578 3372 Sym_u3 (8072af52b5fd103bbba387a1e49f62cb) C:\Windows\system32\drivers\sym_u3.sys
23:07:56.0609 3372 Sym_u3 - ok
23:07:56.0734 3372 Tcpip (814a1c66fbd4e1b310a517221f1456bf) C:\Windows\system32\drivers\tcpip.sys
23:07:56.0858 3372 Tcpip - ok
23:07:57.0046 3372 Tcpip6 (814a1c66fbd4e1b310a517221f1456bf) C:\Windows\system32\DRIVERS\tcpip.sys
23:07:57.0061 3372 Tcpip6 - ok
23:07:57.0295 3372 tcpipreg (608c345a255d82a6289c2d468eb41fd7) C:\Windows\system32\drivers\tcpipreg.sys
23:07:57.0420 3372 tcpipreg - ok
23:07:57.0592 3372 TDPIPE (5dcf5e267be67a1ae926f2df77fbcc56) C:\Windows\system32\drivers\tdpipe.sys
23:07:57.0607 3372 TDPIPE - ok
23:07:57.0732 3372 TDTCP (389c63e32b3cefed425b61ed92d3f021) C:\Windows\system32\drivers\tdtcp.sys
23:07:57.0779 3372 TDTCP - ok
23:07:57.0857 3372 tdx (76b06eb8a01fc8624d699e7045303e54) C:\Windows\system32\DRIVERS\tdx.sys
23:07:57.0888 3372 tdx - ok
23:07:57.0997 3372 TermDD (3cad38910468eab9a6479e2f01db43c7) C:\Windows\system32\DRIVERS\termdd.sys
23:07:57.0997 3372 TermDD - ok
23:07:58.0106 3372 tssecsrv (dcf0f056a2e4f52287264f5ab29cf206) C:\Windows\system32\DRIVERS\tssecsrv.sys
23:07:58.0106 3372 tssecsrv - ok
23:07:58.0138 3372 tunmp (caecc0120ac49e3d2f758b9169872d38) C:\Windows\system32\DRIVERS\tunmp.sys
23:07:58.0138 3372 tunmp - ok
23:07:58.0372 3372 tunnel (300db877ac094feab0be7688c3454a9c) C:\Windows\system32\DRIVERS\tunnel.sys
23:07:58.0372 3372 tunnel - ok
23:07:58.0574 3372 uagp35 (7d33c4db2ce363c8518d2dfcf533941f) C:\Windows\system32\drivers\uagp35.sys
23:07:58.0590 3372 uagp35 - ok
23:07:58.0668 3372 udfs (d9728af68c4c7693cb100b8441cbdec6) C:\Windows\system32\DRIVERS\udfs.sys
23:07:58.0668 3372 udfs - ok
23:07:58.0777 3372 uliagpkx (b0acfdc9e4af279e9116c03e014b2b27) C:\Windows\system32\drivers\uliagpkx.sys
23:07:58.0777 3372 uliagpkx - ok
23:07:58.0871 3372 uliahci (9224bb254f591de4ca8d572a5f0d635c) C:\Windows\system32\drivers\uliahci.sys
23:07:58.0918 3372 uliahci - ok
23:07:58.0964 3372 UlSata (8514d0e5cd0534467c5fc61be94a569f) C:\Windows\system32\drivers\ulsata.sys
23:07:58.0964 3372 UlSata - ok
23:07:59.0042 3372 ulsata2 (38c3c6e62b157a6bc46594fada45c62b) C:\Windows\system32\drivers\ulsata2.sys
23:07:59.0058 3372 ulsata2 - ok
23:07:59.0136 3372 umbus (32cff9f809ae9aed85464492bf3e32d2) C:\Windows\system32\DRIVERS\umbus.sys
23:07:59.0136 3372 umbus - ok
23:07:59.0230 3372 USBAAPL (83cafcb53201bbac04d822f32438e244) C:\Windows\system32\Drivers\usbaapl.sys
23:07:59.0276 3372 USBAAPL - ok
23:07:59.0308 3372 usbccgp (caf811ae4c147ffcd5b51750c7f09142) C:\Windows\system32\DRIVERS\usbccgp.sys
23:07:59.0308 3372 usbccgp - ok
23:07:59.0464 3372 usbcir (e9476e6c486e76bc4898074768fb7131) C:\Windows\system32\drivers\usbcir.sys
23:07:59.0495 3372 usbcir - ok
23:07:59.0557 3372 usbehci (79e96c23a97ce7b8f14d310da2db0c9b) C:\Windows\system32\DRIVERS\usbehci.sys
23:07:59.0573 3372 usbehci - ok
23:07:59.0698 3372 usbhub (4673bbcb006af60e7abddbe7a130ba42) C:\Windows\system32\DRIVERS\usbhub.sys
23:07:59.0713 3372 usbhub - ok
23:07:59.0776 3372 usbohci (ce697fee0d479290d89bec80dfe793b7) C:\Windows\system32\DRIVERS\usbohci.sys
23:07:59.0822 3372 usbohci - ok
23:07:59.0869 3372 usbprint (e75c4b5269091d15a2e7dc0b6d35f2f5) C:\Windows\system32\DRIVERS\usbprint.sys
23:07:59.0916 3372 usbprint - ok
23:07:59.0963 3372 usbscan (a508c9bd8724980512136b039bba65e9) C:\Windows\system32\DRIVERS\usbscan.sys
23:07:59.0978 3372 usbscan - ok
23:08:00.0103 3372 USBSTOR (be3da31c191bc222d9ad503c5224f2ad) C:\Windows\system32\DRIVERS\USBSTOR.SYS
23:08:00.0103 3372 USBSTOR - ok
23:08:00.0150 3372 usbuhci (814d653efc4d48be3b04a307eceff56f) C:\Windows\system32\DRIVERS\usbuhci.sys
23:08:00.0150 3372 usbuhci - ok
23:08:00.0259 3372 vga (87b06e1f30b749a114f74622d013f8d4) C:\Windows\system32\DRIVERS\vgapnp.sys
23:08:00.0275 3372 vga - ok
23:08:00.0306 3372 VgaSave (2e93ac0a1d8c79d019db6c51f036636c) C:\Windows\System32\drivers\vga.sys
23:08:00.0322 3372 VgaSave - ok
23:08:00.0353 3372 viaagp (5d7159def58a800d5781ba3a879627bc) C:\Windows\system32\drivers\viaagp.sys
23:08:00.0415 3372 viaagp - ok
23:08:00.0602 3372 ViaC7 (c4f3a691b5bad343e6249bd8c2d45dee) C:\Windows\system32\drivers\viac7.sys
23:08:00.0618 3372 ViaC7 - ok
23:08:00.0774 3372 viaide (aadf5587a4063f52c2c3fed7887426fc) C:\Windows\system32\drivers\viaide.sys
23:08:00.0805 3372 viaide - ok
23:08:00.0946 3372 volmgr (69503668ac66c77c6cd7af86fbdf8c43) C:\Windows\system32\drivers\volmgr.sys
23:08:00.0977 3372 volmgr - ok
23:08:01.0086 3372 volmgrx (23e41b834759917bfd6b9a0d625d0c28) C:\Windows\system32\drivers\volmgrx.sys
23:08:01.0164 3372 volmgrx - ok
23:08:01.0414 3372 volsnap (147281c01fcb1df9252de2a10d5e7093) C:\Windows\system32\drivers\volsnap.sys
23:08:01.0445 3372 volsnap - ok
23:08:01.0554 3372 vsmraid (587253e09325e6bf226b299774b728a9) C:\Windows\system32\drivers\vsmraid.sys
23:08:01.0585 3372 vsmraid - ok
23:08:01.0757 3372 WacomPen (48dfee8f1af7c8235d4e626f0c4fe031) C:\Windows\system32\drivers\wacompen.sys
23:08:01.0850 3372 WacomPen - ok
23:08:01.0913 3372 Wanarp (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
23:08:01.0975 3372 Wanarp - ok
23:08:01.0991 3372 Wanarpv6 (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
23:08:01.0991 3372 Wanarpv6 - ok
23:08:02.0053 3372 Wd (78fe9542363f297b18c027b2d7e7c07f) C:\Windows\system32\drivers\wd.sys
23:08:02.0069 3372 Wd - ok
23:08:02.0147 3372 Wdf01000 (b6f0a7ad6d4bd325fbcd8bac96cd8d96) C:\Windows\system32\drivers\Wdf01000.sys
23:08:02.0209 3372 Wdf01000 - ok
23:08:02.0552 3372 WmiAcpi (2e7255d172df0b8283cdfb7b433b864e) C:\Windows\system32\drivers\wmiacpi.sys
23:08:02.0568 3372 WmiAcpi - ok
23:08:02.0755 3372 WpdUsb (de9d36f91a4df3d911626643debf11ea) C:\Windows\system32\DRIVERS\wpdusb.sys
23:08:02.0833 3372 WpdUsb - ok
23:08:02.0927 3372 ws2ifsl (e3a3cb253c0ec2494d4a61f5e43a389c) C:\Windows\system32\drivers\ws2ifsl.sys
23:08:02.0942 3372 ws2ifsl - ok
23:08:03.0130 3372 WUDFRd (ac13cb789d93412106b0fb6c7eb2bcb6) C:\Windows\system32\DRIVERS\WUDFRd.sys
23:08:03.0208 3372 WUDFRd - ok
23:08:03.0270 3372 MBR (0x1B8) (81cd5ec01db0ce57edd853f82462ef27) \Device\Harddisk0\DR0
23:08:03.0722 3372 \Device\Harddisk0\DR0 - ok
23:08:03.0785 3372 Boot (0x1200) (6fb0fdcb906a06a97b8a3d4822cee0a5) \Device\Harddisk0\DR0\Partition0
23:08:03.0785 3372 \Device\Harddisk0\DR0\Partition0 - ok
23:08:03.0832 3372 Boot (0x1200) (73b40d56752a145424698ea73ab7f92c) \Device\Harddisk0\DR0\Partition1
23:08:03.0832 3372 \Device\Harddisk0\DR0\Partition1 - ok
23:08:03.0832 3372 ============================================================
23:08:03.0832 3372 Scan finished
23:08:03.0832 3372 ============================================================
23:08:03.0878 0584 Detected object count: 2
23:08:03.0878 0584 Actual detected object count: 2
23:08:33.0596 0584 Backup copy not found, trying to cure infected file..
23:08:33.0628 0584 Cure success, using it..
23:08:33.0659 0584 C:\Windows\system32\Drivers\dfsc.sys - will be cured on reboot
23:08:41.0256 0584 DfsC ( Rootkit.Win32.ZAccess.h ) - User select action: Cure
23:08:41.0287 0584 HKLM\SYSTEM\ControlSet001\services\sptd - will be deleted on reboot
23:08:41.0303 0584 HKLM\SYSTEM\ControlSet002\services\sptd - will be deleted on reboot
23:08:41.0381 0584 C:\Windows\system32\Drivers\sptd.sys - will be deleted on reboot
23:08:41.0381 0584 sptd ( LockedFile.Multi.Generic ) - User select action: Delete
23:08:46.0420 0588 Deinitialize success
dessolé de te répondre que maintenant mais j étais au travail !!
j ai fait comme tu m as dit et j ai eu la dernière possibilité c a d Rootkit.Win32.ZAccess. j ai redémarré mais ca marche tjrs pas
voici ce que j ai eu
23:07:17.0640 1056 TDSS rootkit removing tool 2.6.23.0 Dec 13 2011 10:39:31
23:07:17.0858 1056 ============================================================
23:07:17.0858 1056 Current date / time: 2011/12/20 23:07:17.0858
23:07:17.0858 1056 SystemInfo:
23:07:17.0858 1056
23:07:17.0858 1056 OS Version: 6.0.6002 ServicePack: 2.0
23:07:17.0858 1056 Product type: Workstation
23:07:17.0858 1056 ComputerName: PC-DE-BENJAMIN
23:07:17.0858 1056 UserName: Benjamin
23:07:17.0858 1056 Windows directory: C:\Windows
23:07:17.0858 1056 System windows directory: C:\Windows
23:07:17.0858 1056 Processor architecture: Intel x86
23:07:17.0858 1056 Number of processors: 2
23:07:17.0858 1056 Page size: 0x1000
23:07:17.0858 1056 Boot type: Normal boot
23:07:17.0858 1056 ============================================================
23:07:18.0919 1056 Initialize success
23:07:23.0443 3372 ============================================================
23:07:23.0443 3372 Scan started
23:07:23.0443 3372 Mode: Manual;
23:07:23.0443 3372 ============================================================
23:07:24.0254 3372 ACPI (82b296ae1892fe3dbee00c9cf92f8ac7) C:\Windows\system32\drivers\acpi.sys
23:07:24.0270 3372 ACPI - ok
23:07:24.0676 3372 adp94xx (04f0fcac69c7c71a3ac4eb97fafc8303) C:\Windows\system32\drivers\adp94xx.sys
23:07:24.0785 3372 adp94xx - ok
23:07:25.0097 3372 adpahci (60505e0041f7751bdbb80f88bf45c2ce) C:\Windows\system32\drivers\adpahci.sys
23:07:25.0175 3372 adpahci - ok
23:07:25.0424 3372 adpu160m (8a42779b02aec986eab64ecfc98f8bd7) C:\Windows\system32\drivers\adpu160m.sys
23:07:25.0502 3372 adpu160m - ok
23:07:25.0752 3372 adpu320 (241c9e37f8ce45ef51c3de27515ca4e5) C:\Windows\system32\drivers\adpu320.sys
23:07:25.0783 3372 adpu320 - ok
23:07:26.0095 3372 AFD (3911b972b55fea0478476b2e777b29fa) C:\Windows\system32\drivers\afd.sys
23:07:26.0158 3372 AFD - ok
23:07:26.0220 3372 agp440 (13f9e33747e6b41a3ff305c37db0d360) C:\Windows\system32\drivers\agp440.sys
23:07:26.0220 3372 agp440 - ok
23:07:26.0314 3372 aic78xx (ae1fdf7bf7bb6c6a70f67699d880592a) C:\Windows\system32\drivers\djsvs.sys
23:07:26.0314 3372 aic78xx - ok
23:07:26.0392 3372 aliide (9eaef5fc9b8e351afa7e78a6fae91f91) C:\Windows\system32\drivers\aliide.sys
23:07:26.0392 3372 aliide - ok
23:07:26.0423 3372 amdagp (c47344bc706e5f0b9dce369516661578) C:\Windows\system32\drivers\amdagp.sys
23:07:26.0423 3372 amdagp - ok
23:07:26.0485 3372 amdide (9b78a39a4c173fdbc1321e0dd659b34c) C:\Windows\system32\drivers\amdide.sys
23:07:26.0516 3372 amdide - ok
23:07:26.0594 3372 AmdK7 (18f29b49ad23ecee3d2a826c725c8d48) C:\Windows\system32\drivers\amdk7.sys
23:07:26.0594 3372 AmdK7 - ok
23:07:26.0719 3372 AmdK8 (93ae7f7dd54ab986a6f1a1b37be7442d) C:\Windows\system32\DRIVERS\amdk8.sys
23:07:26.0719 3372 AmdK8 - ok
23:07:26.0969 3372 arc (5d2888182fb46632511acee92fdad522) C:\Windows\system32\drivers\arc.sys
23:07:27.0000 3372 arc - ok
23:07:27.0125 3372 arcsas (5e2a321bd7c8b3624e41fdec3e244945) C:\Windows\system32\drivers\arcsas.sys
23:07:27.0125 3372 arcsas - ok
23:07:27.0203 3372 AsyncMac (53b202abee6455406254444303e87be1) C:\Windows\system32\DRIVERS\asyncmac.sys
23:07:27.0218 3372 AsyncMac - ok
23:07:27.0250 3372 atapi (1f05b78ab91c9075565a9d8a4b880bc4) C:\Windows\system32\drivers\atapi.sys
23:07:27.0265 3372 atapi - ok
23:07:27.0359 3372 avgio (f1d43170fdd7399ee17ea32d4f868b0c) C:\Program Files\Avira\AntiVir Desktop\avgio.sys
23:07:27.0359 3372 avgio - ok
23:07:27.0515 3372 avgntflt (1e4114685de1ffa9675e09c6a1fb3f4b) C:\Windows\system32\DRIVERS\avgntflt.sys
23:07:27.0530 3372 avgntflt - ok
23:07:27.0718 3372 avipbb (0f78d3dae6dedd99ae54c9491c62adf2) C:\Windows\system32\DRIVERS\avipbb.sys
23:07:27.0733 3372 avipbb - ok
23:07:27.0967 3372 Beep (67e506b75bd5326a3ec7b70bd014dfb6) C:\Windows\system32\drivers\Beep.sys
23:07:27.0967 3372 Beep - ok
23:07:28.0139 3372 blbdrive (d4df28447741fd3d953526e33a617397) C:\Windows\system32\drivers\blbdrive.sys
23:07:28.0154 3372 blbdrive - ok
23:07:28.0576 3372 bowser (35f376253f687bde63976ccb3f2108ca) C:\Windows\system32\DRIVERS\bowser.sys
23:07:28.0591 3372 bowser - ok
23:07:28.0810 3372 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\drivers\brfiltlo.sys
23:07:28.0841 3372 BrFiltLo - ok
23:07:28.0981 3372 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\drivers\brfiltup.sys
23:07:28.0981 3372 BrFiltUp - ok
23:07:29.0122 3372 Brserid (b304e75cff293029eddf094246747113) C:\Windows\system32\drivers\brserid.sys
23:07:29.0137 3372 Brserid - ok
23:07:29.0215 3372 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\system32\drivers\brserwdm.sys
23:07:29.0231 3372 BrSerWdm - ok
23:07:29.0418 3372 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\system32\drivers\brusbmdm.sys
23:07:29.0434 3372 BrUsbMdm - ok
23:07:29.0543 3372 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\system32\drivers\brusbser.sys
23:07:29.0558 3372 BrUsbSer - ok
23:07:29.0636 3372 BTHMODEM (ad07c1ec6665b8b35741ab91200c6b68) C:\Windows\system32\drivers\bthmodem.sys
23:07:29.0652 3372 BTHMODEM - ok
23:07:29.0761 3372 cdfs (7add03e75beb9e6dd102c3081d29840a) C:\Windows\system32\DRIVERS\cdfs.sys
23:07:29.0777 3372 cdfs - ok
23:07:29.0902 3372 cdrom (6b4bffb9becd728097024276430db314) C:\Windows\system32\DRIVERS\cdrom.sys
23:07:29.0933 3372 cdrom - ok
23:07:30.0042 3372 circlass (e5d4133f37219dbcfe102bc61072589d) C:\Windows\system32\drivers\circlass.sys
23:07:30.0058 3372 circlass - ok
23:07:30.0167 3372 CLFS (d7659d3b5b92c31e84e53c1431f35132) C:\Windows\system32\CLFS.sys
23:07:30.0276 3372 CLFS - ok
23:07:30.0479 3372 cmdide (0ca25e686a4928484e9fdabd168ab629) C:\Windows\system32\drivers\cmdide.sys
23:07:30.0494 3372 cmdide - ok
23:07:30.0619 3372 Compbatt (6afef0b60fa25de07c0968983ee4f60a) C:\Windows\system32\drivers\compbatt.sys
23:07:30.0650 3372 Compbatt - ok
23:07:30.0744 3372 crcdisk (741e9dff4f42d2d8477d0fc1dc0df871) C:\Windows\system32\drivers\crcdisk.sys
23:07:30.0760 3372 crcdisk - ok
23:07:30.0822 3372 Crusoe (1f07becdca750766a96cda811ba86410) C:\Windows\system32\drivers\crusoe.sys
23:07:30.0853 3372 Crusoe - ok
23:07:30.0962 3372 DfsC (71895934f523a85def844e4b4d8e666f) C:\Windows\system32\Drivers\dfsc.sys
23:07:30.0962 3372 Suspicious file (Forged): C:\Windows\system32\Drivers\dfsc.sys. Real md5: 71895934f523a85def844e4b4d8e666f, Fake md5: 622c41a07ca7e6dd91770f50d532cb6c
23:07:30.0978 3372 DfsC ( Rootkit.Win32.ZAccess.h ) - infected
23:07:30.0978 3372 DfsC - detected Rootkit.Win32.ZAccess.h (0)
23:07:31.0150 3372 disk (5d4aefc3386920236a548271f8f1af6a) C:\Windows\system32\drivers\disk.sys
23:07:31.0165 3372 disk - ok
23:07:31.0274 3372 drmkaud (97fef831ab90bee128c9af390e243f80) C:\Windows\system32\drivers\drmkaud.sys
23:07:31.0290 3372 drmkaud - ok
23:07:31.0384 3372 DXGKrnl (c68ac676b0ef30cfbb1080adce49eb1f) C:\Windows\System32\drivers\dxgkrnl.sys
23:07:31.0384 3372 DXGKrnl - ok
23:07:31.0540 3372 E1G60 (5425f74ac0c1dbd96a1e04f17d63f94c) C:\Windows\system32\DRIVERS\E1G60I32.sys
23:07:31.0555 3372 E1G60 - ok
23:07:31.0649 3372 Ecache (7f64ea048dcfac7acf8b4d7b4e6fe371) C:\Windows\system32\drivers\ecache.sys
23:07:31.0680 3372 Ecache - ok
23:07:31.0758 3372 elxstor (23b62471681a124889978f6295b3f4c6) C:\Windows\system32\drivers\elxstor.sys
23:07:31.0836 3372 elxstor - ok
23:07:31.0883 3372 ErrDev (3db974f3935483555d7148663f726c61) C:\Windows\system32\drivers\errdev.sys
23:07:31.0898 3372 ErrDev - ok
23:07:32.0070 3372 exfat (22b408651f9123527bcee54b4f6c5cae) C:\Windows\system32\drivers\exfat.sys
23:07:32.0117 3372 exfat - ok
23:07:32.0273 3372 fastfat (1e9b9a70d332103c52995e957dc09ef8) C:\Windows\system32\drivers\fastfat.sys
23:07:32.0273 3372 fastfat - ok
23:07:32.0320 3372 fdc (afe1e8b9782a0dd7fb46bbd88e43f89a) C:\Windows\system32\DRIVERS\fdc.sys
23:07:32.0320 3372 fdc - ok
23:07:32.0382 3372 FileInfo (a8c0139a884861e3aae9cfe73b208a9f) C:\Windows\system32\drivers\fileinfo.sys
23:07:32.0398 3372 FileInfo - ok
23:07:32.0444 3372 Filetrace (0ae429a696aecbc5970e3cf2c62635ae) C:\Windows\system32\drivers\filetrace.sys
23:07:32.0460 3372 Filetrace - ok
23:07:32.0491 3372 flpydisk (85b7cf99d532820495d68d747fda9ebd) C:\Windows\system32\DRIVERS\flpydisk.sys
23:07:32.0491 3372 flpydisk - ok
23:07:32.0538 3372 FltMgr (01334f9ea68e6877c4ef05d3ea8abb05) C:\Windows\system32\drivers\fltmgr.sys
23:07:32.0585 3372 FltMgr - ok
23:07:32.0725 3372 fssfltr (d909075fa72c090f27aa926c32cb4612) C:\Windows\system32\DRIVERS\fssfltr.sys
23:07:32.0741 3372 fssfltr - ok
23:07:32.0788 3372 Fs_Rec (65ea8b77b5851854f0c55c43fa51a198) C:\Windows\system32\drivers\Fs_Rec.sys
23:07:32.0788 3372 Fs_Rec - ok
23:07:32.0803 3372 gagp30kx (34582a6e6573d54a07ece5fe24a126b5) C:\Windows\system32\drivers\gagp30kx.sys
23:07:32.0819 3372 gagp30kx - ok
23:07:32.0912 3372 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
23:07:32.0912 3372 GEARAspiWDM - ok
23:07:33.0162 3372 HDAudBus (062452b7ffd68c8c042a6261fe8dff4a) C:\Windows\system32\DRIVERS\HDAudBus.sys
23:07:33.0178 3372 HDAudBus - ok
23:07:33.0240 3372 HidBth (1338520e78d90154ed6be8f84de5fceb) C:\Windows\system32\drivers\hidbth.sys
23:07:33.0271 3372 HidBth - ok
23:07:33.0287 3372 HidIr (ff3160c3a2445128c5a6d9b076da519e) C:\Windows\system32\drivers\hidir.sys
23:07:33.0302 3372 HidIr - ok
23:07:33.0349 3372 HidUsb (cca4b519b17e23a00b826c55716809cc) C:\Windows\system32\DRIVERS\hidusb.sys
23:07:33.0365 3372 HidUsb - ok
23:07:33.0443 3372 HpCISSs (16ee7b23a009e00d835cdb79574a91a6) C:\Windows\system32\drivers\hpcisss.sys
23:07:33.0443 3372 HpCISSs - ok
23:07:33.0583 3372 HTTP (0eeeca26c8d4bde2a4664db058a81937) C:\Windows\system32\drivers\HTTP.sys
23:07:33.0614 3372 HTTP - ok
23:07:33.0786 3372 i2omp (c6b032d69650985468160fc9937cf5b4) C:\Windows\system32\drivers\i2omp.sys
23:07:33.0817 3372 i2omp - ok
23:07:34.0020 3372 i8042prt (22d56c8184586b7a1f6fa60be5f5a2bd) C:\Windows\system32\DRIVERS\i8042prt.sys
23:07:34.0082 3372 i8042prt - ok
23:07:34.0192 3372 iaStorV (54155ea1b0df185878e0fc9ec3ac3a14) C:\Windows\system32\drivers\iastorv.sys
23:07:34.0254 3372 iaStorV - ok
23:07:34.0348 3372 iirsp (2d077bf86e843f901d8db709c95b49a5) C:\Windows\system32\drivers\iirsp.sys
23:07:34.0363 3372 iirsp - ok
23:07:34.0644 3372 IntcAzAudAddService (5d26ccb06e1f3b5c26e863df3f4f2611) C:\Windows\system32\drivers\RTKVHDA.sys
23:07:34.0706 3372 IntcAzAudAddService - ok
23:07:34.0816 3372 intelide (83aa759f3189e6370c30de5dc5590718) C:\Windows\system32\drivers\intelide.sys
23:07:34.0831 3372 intelide - ok
23:07:35.0081 3372 intelppm (224191001e78c89dfa78924c3ea595ff) C:\Windows\system32\DRIVERS\intelppm.sys
23:07:35.0128 3372 intelppm - ok
23:07:35.0252 3372 IpFilterDriver (62c265c38769b864cb25b4bcf62df6c3) C:\Windows\system32\DRIVERS\ipfltdrv.sys
23:07:35.0252 3372 IpFilterDriver - ok
23:07:35.0315 3372 IpInIp - ok
23:07:35.0362 3372 IPMIDRV (b25aaf203552b7b3491139d582b39ad1) C:\Windows\system32\drivers\ipmidrv.sys
23:07:35.0377 3372 IPMIDRV - ok
23:07:35.0471 3372 IPNAT (8793643a67b42cec66490b2a0cf92d68) C:\Windows\system32\DRIVERS\ipnat.sys
23:07:35.0486 3372 IPNAT - ok
23:07:35.0783 3372 IRENUM (109c0dfb82c3632fbd11949b73aeeac9) C:\Windows\system32\drivers\irenum.sys
23:07:35.0783 3372 IRENUM - ok
23:07:35.0892 3372 isapnp (6c70698a3e5c4376c6ab5c7c17fb0614) C:\Windows\system32\drivers\isapnp.sys
23:07:35.0923 3372 isapnp - ok
23:07:36.0376 3372 iScsiPrt (232fa340531d940aac623b121a595034) C:\Windows\system32\DRIVERS\msiscsi.sys
23:07:36.0376 3372 iScsiPrt - ok
23:07:36.0594 3372 iteatapi (bced60d16156e428f8df8cf27b0df150) C:\Windows\system32\drivers\iteatapi.sys
23:07:36.0641 3372 iteatapi - ok
23:07:36.0750 3372 iteraid (06fa654504a498c30adca8bec4e87e7e) C:\Windows\system32\drivers\iteraid.sys
23:07:36.0750 3372 iteraid - ok
23:07:36.0766 3372 kbdclass (37605e0a8cf00cbba538e753e4344c6e) C:\Windows\system32\DRIVERS\kbdclass.sys
23:07:36.0766 3372 kbdclass - ok
23:07:36.0922 3372 kbdhid (ede59ec70e25c24581add1fbec7325f7) C:\Windows\system32\DRIVERS\kbdhid.sys
23:07:36.0953 3372 kbdhid - ok
23:07:37.0374 3372 KSecDD (86165728af9bf72d6442a894fdfb4f8b) C:\Windows\system32\Drivers\ksecdd.sys
23:07:37.0483 3372 KSecDD - ok
23:07:37.0733 3372 lltdio (d1c5883087a0c3f1344d9d55a44901f6) C:\Windows\system32\DRIVERS\lltdio.sys
23:07:37.0733 3372 lltdio - ok
23:07:37.0873 3372 LSI_FC (c7e15e82879bf3235b559563d4185365) C:\Windows\system32\drivers\lsi_fc.sys
23:07:37.0889 3372 LSI_FC - ok
23:07:38.0357 3372 LSI_SAS (ee01ebae8c9bf0fa072e0ff68718920a) C:\Windows\system32\drivers\lsi_sas.sys
23:07:38.0388 3372 LSI_SAS - ok
23:07:38.0950 3372 LSI_SCSI (912a04696e9ca30146a62afa1463dd5c) C:\Windows\system32\drivers\lsi_scsi.sys
23:07:38.0996 3372 LSI_SCSI - ok
23:07:39.0215 3372 luafv (8f5c7426567798e62a3b3614965d62cc) C:\Windows\system32\drivers\luafv.sys
23:07:39.0230 3372 luafv - ok
23:07:39.0792 3372 megasas (0001ce609d66632fa17b84705f658879) C:\Windows\system32\drivers\megasas.sys
23:07:39.0823 3372 megasas - ok
23:07:39.0979 3372 MegaSR (c252f32cd9a49dbfc25ecf26ebd51a99) C:\Windows\system32\drivers\megasr.sys
23:07:40.0057 3372 MegaSR - ok
23:07:40.0541 3372 Modem (e13b5ea0f51ba5b1512ec671393d09ba) C:\Windows\system32\drivers\modem.sys
23:07:40.0572 3372 Modem - ok
23:07:40.0978 3372 monitor (0a9bb33b56e294f686abb7c1e4e2d8a8) C:\Windows\system32\DRIVERS\monitor.sys
23:07:40.0978 3372 monitor - ok
23:07:41.0212 3372 mouclass (5bf6a1326a335c5298477754a506d263) C:\Windows\system32\DRIVERS\mouclass.sys
23:07:41.0212 3372 mouclass - ok
23:07:41.0399 3372 mouhid (93b8d4869e12cfbe663915502900876f) C:\Windows\system32\DRIVERS\mouhid.sys
23:07:41.0414 3372 mouhid - ok
23:07:41.0602 3372 MountMgr (bdafc88aa6b92f7842416ea6a48e1600) C:\Windows\system32\drivers\mountmgr.sys
23:07:41.0648 3372 MountMgr - ok
23:07:41.0820 3372 mpio (511d011289755dd9f9a7579fb0b064e6) C:\Windows\system32\drivers\mpio.sys
23:07:41.0820 3372 mpio - ok
23:07:42.0194 3372 mpsdrv (22241feba9b2defa669c8cb0a8dd7d2e) C:\Windows\system32\drivers\mpsdrv.sys
23:07:42.0272 3372 mpsdrv - ok
23:07:42.0413 3372 Mraid35x (4fbbb70d30fd20ec51f80061703b001e) C:\Windows\system32\drivers\mraid35x.sys
23:07:42.0444 3372 Mraid35x - ok
23:07:42.0662 3372 MRxDAV (82cea0395524aacfeb58ba1448e8325c) C:\Windows\system32\drivers\mrxdav.sys
23:07:42.0709 3372 MRxDAV - ok
23:07:42.0912 3372 mrxsmb (1e94971c4b446ab2290deb71d01cf0c2) C:\Windows\system32\DRIVERS\mrxsmb.sys
23:07:42.0928 3372 mrxsmb - ok
23:07:43.0068 3372 mrxsmb10 (4fccb34d793b116423209c0f8b7a3b03) C:\Windows\system32\DRIVERS\mrxsmb10.sys
23:07:43.0162 3372 mrxsmb10 - ok
23:07:43.0396 3372 mrxsmb20 (c3cb1b40ad4a0124d617a1199b0b9d7c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
23:07:43.0411 3372 mrxsmb20 - ok
23:07:43.0474 3372 msahci (28023e86f17001f7cd9b15a5bc9ae07d) C:\Windows\system32\drivers\msahci.sys
23:07:43.0489 3372 msahci - ok
23:07:43.0536 3372 msdsm (4468b0f385a86ecddaf8d3ca662ec0e7) C:\Windows\system32\drivers\msdsm.sys
23:07:43.0583 3372 msdsm - ok
23:07:43.0910 3372 Msfs (a9927f4a46b816c92f461acb90cf8515) C:\Windows\system32\drivers\Msfs.sys
23:07:43.0910 3372 Msfs - ok
23:07:44.0098 3372 msisadrv (0f400e306f385c56317357d6dea56f62) C:\Windows\system32\drivers\msisadrv.sys
23:07:44.0113 3372 msisadrv - ok
23:07:44.0238 3372 MSKSSRV (d8c63d34d9c9e56c059e24ec7185cc07) C:\Windows\system32\drivers\MSKSSRV.sys
23:07:44.0238 3372 MSKSSRV - ok
23:07:44.0269 3372 MSPCLOCK (1d373c90d62ddb641d50e55b9e78d65e) C:\Windows\system32\drivers\MSPCLOCK.sys
23:07:44.0285 3372 MSPCLOCK - ok
23:07:44.0332 3372 MSPQM (b572da05bf4e098d4bba3a4734fb505b) C:\Windows\system32\drivers\MSPQM.sys
23:07:44.0363 3372 MSPQM - ok
23:07:44.0410 3372 MsRPC (b49456d70555de905c311bcda6ec6adb) C:\Windows\system32\drivers\MsRPC.sys
23:07:44.0441 3372 MsRPC - ok
23:07:44.0472 3372 mssmbios (e384487cb84be41d09711c30ca79646c) C:\Windows\system32\DRIVERS\mssmbios.sys
23:07:44.0472 3372 mssmbios - ok
23:07:44.0597 3372 MSTEE (7199c1eec1e4993caf96b8c0a26bd58a) C:\Windows\system32\drivers\MSTEE.sys
23:07:44.0612 3372 MSTEE - ok
23:07:44.0753 3372 Mup (6a57b5733d4cb702c8ea4542e836b96c) C:\Windows\system32\Drivers\mup.sys
23:07:44.0768 3372 Mup - ok
23:07:44.0924 3372 NativeWifiP (85c44fdff9cf7e72a40dcb7ec06a4416) C:\Windows\system32\DRIVERS\nwifi.sys
23:07:44.0956 3372 NativeWifiP - ok
23:07:45.0174 3372 NDIS (1357274d1883f68300aeadd15d7bbb42) C:\Windows\system32\drivers\ndis.sys
23:07:45.0174 3372 NDIS - ok
23:07:45.0517 3372 NdisTapi (0e186e90404980569fb449ba7519ae61) C:\Windows\system32\DRIVERS\ndistapi.sys
23:07:45.0517 3372 NdisTapi - ok
23:07:45.0611 3372 Ndisuio (d6973aa34c4d5d76c0430b181c3cd389) C:\Windows\system32\DRIVERS\ndisuio.sys
23:07:45.0611 3372 Ndisuio - ok
23:07:45.0829 3372 NdisWan (818f648618ae34f729fdb47ec68345c3) C:\Windows\system32\DRIVERS\ndiswan.sys
23:07:45.0845 3372 NdisWan - ok
23:07:45.0907 3372 NDProxy (71dab552b41936358f3b541ae5997fb3) C:\Windows\system32\drivers\NDProxy.sys
23:07:45.0907 3372 NDProxy - ok
23:07:46.0016 3372 NetBIOS (bcd093a5a6777cf626434568dc7dba78) C:\Windows\system32\DRIVERS\netbios.sys
23:07:46.0016 3372 NetBIOS - ok
23:07:46.0188 3372 netbt (ecd64230a59cbd93c85f1cd1cab9f3f6) C:\Windows\system32\DRIVERS\netbt.sys
23:07:46.0297 3372 netbt - ok
23:07:46.0609 3372 nfrd960 (2e7fb731d4790a1bc6270accefacb36e) C:\Windows\system32\drivers\nfrd960.sys
23:07:46.0625 3372 nfrd960 - ok
23:07:46.0874 3372 Npfs (d36f239d7cce1931598e8fb90a0dbc26) C:\Windows\system32\drivers\Npfs.sys
23:07:46.0906 3372 Npfs - ok
23:07:47.0124 3372 nsiproxy (609773e344a97410ce4ebf74a8914fcf) C:\Windows\system32\drivers\nsiproxy.sys
23:07:47.0140 3372 nsiproxy - ok
23:07:47.0467 3372 Ntfs (6a4a98cee84cf9e99564510dda4baa47) C:\Windows\system32\drivers\Ntfs.sys
23:07:47.0592 3372 Ntfs - ok
23:07:47.0779 3372 ntrigdigi (e875c093aec0c978a90f30c9e0dfbb72) C:\Windows\system32\drivers\ntrigdigi.sys
23:07:47.0779 3372 ntrigdigi - ok
23:07:47.0966 3372 Null (c5dbbcda07d780bda9b685df333bb41e) C:\Windows\system32\drivers\Null.sys
23:07:47.0966 3372 Null - ok
23:07:48.0200 3372 NVENETFD (de3fcf6a5aaca198b22998330c3c64d9) C:\Windows\system32\DRIVERS\nvmfdx32.sys
23:07:48.0232 3372 NVENETFD - ok
23:07:48.0528 3372 nvlddmkm (fbba09782f2fac5a57619df378ba9372) C:\Windows\system32\DRIVERS\nvlddmkm.sys
23:07:48.0637 3372 nvlddmkm - ok
23:07:48.0840 3372 nvraid (2edf9e7751554b42cbb60116de727101) C:\Windows\system32\drivers\nvraid.sys
23:07:48.0856 3372 nvraid - ok
23:07:48.0918 3372 nvrd32 (6934105ecc6a19570160d794e301e595) C:\Windows\system32\drivers\nvrd32.sys
23:07:48.0934 3372 nvrd32 - ok
23:07:48.0996 3372 nvsmu (62754e376185eacbb73d06fea0ffc54a) C:\Windows\system32\drivers\nvsmu.sys
23:07:48.0996 3372 nvsmu - ok
23:07:49.0043 3372 nvstor (abed0c09758d1d97db0042dbb2688177) C:\Windows\system32\drivers\nvstor.sys
23:07:49.0058 3372 nvstor - ok
23:07:49.0136 3372 nvstor32 (d7b213299852d2026dbc90dab77ef06c) C:\Windows\system32\drivers\nvstor32.sys
23:07:49.0136 3372 nvstor32 - ok
23:07:49.0261 3372 nv_agp (18bbdf913916b71bd54575bdb6eeac0b) C:\Windows\system32\drivers\nv_agp.sys
23:07:49.0261 3372 nv_agp - ok
23:07:49.0308 3372 NwlnkFlt - ok
23:07:49.0339 3372 NwlnkFwd - ok
23:07:49.0433 3372 ohci1394 (6f310e890d46e246e0e261a63d9b36b4) C:\Windows\system32\DRIVERS\ohci1394.sys
23:07:49.0433 3372 ohci1394 - ok
23:07:49.0573 3372 Parport (0fa9b5055484649d63c303fe404e5f4d) C:\Windows\system32\drivers\parport.sys
23:07:49.0589 3372 Parport - ok
23:07:49.0745 3372 partmgr (57389fa59a36d96b3eb09d0cb91e9cdc) C:\Windows\system32\drivers\partmgr.sys
23:07:49.0776 3372 partmgr - ok
23:07:49.0901 3372 Parvdm (4f9a6a8a31413180d0fcb279ad5d8112) C:\Windows\system32\drivers\parvdm.sys
23:07:49.0901 3372 Parvdm - ok
23:07:50.0150 3372 pci (941dc1d19e7e8620f40bbc206981efdb) C:\Windows\system32\drivers\pci.sys
23:07:50.0150 3372 pci - ok
23:07:50.0462 3372 pciide (1636d43f10416aeb483bc6001097b26c) C:\Windows\system32\drivers\pciide.sys
23:07:50.0478 3372 pciide - ok
23:07:50.0728 3372 pcmcia (e6f3fb1b86aa519e7698ad05e58b04e5) C:\Windows\system32\drivers\pcmcia.sys
23:07:50.0759 3372 pcmcia - ok
23:07:50.0852 3372 PEAUTH (6349f6ed9c623b44b52ea3c63c831a92) C:\Windows\system32\drivers\peauth.sys
23:07:50.0977 3372 PEAUTH - ok
23:07:51.0211 3372 PptpMiniport (ecfffaec0c1ecd8dbc77f39070ea1db1) C:\Windows\system32\DRIVERS\raspptp.sys
23:07:51.0227 3372 PptpMiniport - ok
23:07:51.0430 3372 Processor (2027293619dd0f047c584cf2e7df4ffd) C:\Windows\system32\drivers\processr.sys
23:07:51.0461 3372 Processor - ok
23:07:51.0632 3372 PSched (99514faa8df93d34b5589187db3aa0ba) C:\Windows\system32\DRIVERS\pacer.sys
23:07:51.0632 3372 PSched - ok
23:07:51.0866 3372 ql2300 (0a6db55afb7820c99aa1f3a1d270f4f6) C:\Windows\system32\drivers\ql2300.sys
23:07:52.0069 3372 ql2300 - ok
23:07:52.0225 3372 ql40xx (81a7e5c076e59995d54bc1ed3a16e60b) C:\Windows\system32\drivers\ql40xx.sys
23:07:52.0334 3372 ql40xx - ok
23:07:52.0475 3372 QWAVEdrv (9f5e0e1926014d17486901c88eca2db7) C:\Windows\system32\drivers\qwavedrv.sys
23:07:52.0475 3372 QWAVEdrv - ok
23:07:52.0568 3372 RasAcd (147d7f9c556d259924351feb0de606c3) C:\Windows\system32\DRIVERS\rasacd.sys
23:07:52.0584 3372 RasAcd - ok
23:07:52.0646 3372 Rasl2tp (a214adbaf4cb47dd2728859ef31f26b0) C:\Windows\system32\DRIVERS\rasl2tp.sys
23:07:52.0678 3372 Rasl2tp - ok
23:07:52.0880 3372 RasPppoe (509a98dd18af4375e1fc40bc175f1def) C:\Windows\system32\DRIVERS\raspppoe.sys
23:07:52.0896 3372 RasPppoe - ok
23:07:53.0036 3372 RasSstp (2005f4a1e05fa09389ac85840f0a9e4d) C:\Windows\system32\DRIVERS\rassstp.sys
23:07:53.0052 3372 RasSstp - ok
23:07:53.0208 3372 rdbss (b14c9d5b9add2f84f70570bbbfaa7935) C:\Windows\system32\DRIVERS\rdbss.sys
23:07:53.0255 3372 rdbss - ok
23:07:53.0458 3372 RDPCDD (89e59be9a564262a3fb6c4f4f1cd9899) C:\Windows\system32\DRIVERS\RDPCDD.sys
23:07:53.0473 3372 RDPCDD - ok
23:07:53.0567 3372 rdpdr (fbc0bacd9c3d7f6956853f64a66e252d) C:\Windows\system32\drivers\rdpdr.sys
23:07:53.0567 3372 rdpdr - ok
23:07:53.0692 3372 RDPENCDD (9d91fe5286f748862ecffa05f8a0710c) C:\Windows\system32\drivers\rdpencdd.sys
23:07:53.0692 3372 RDPENCDD - ok
23:07:53.0863 3372 RDPWD (30bfbdfb7f95559ede971f9ddb9a00ba) C:\Windows\system32\drivers\RDPWD.sys
23:07:53.0926 3372 RDPWD - ok
23:07:54.0066 3372 RimUsb (f17713d108aca124a139fde877eef68a) C:\Windows\system32\Drivers\RimUsb.sys
23:07:54.0066 3372 RimUsb - ok
23:07:54.0113 3372 rspndr (9c508f4074a39e8b4b31d27198146fad) C:\Windows\system32\DRIVERS\rspndr.sys
23:07:54.0144 3372 rspndr - ok
23:07:54.0206 3372 sbp2port (3ce8f073a557e172b330109436984e30) C:\Windows\system32\drivers\sbp2port.sys
23:07:54.0222 3372 sbp2port - ok
23:07:54.0300 3372 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
23:07:54.0316 3372 secdrv - ok
23:07:54.0362 3372 Serenum (68e44e331d46f0fb38f0863a84cd1a31) C:\Windows\system32\drivers\serenum.sys
23:07:54.0378 3372 Serenum - ok
23:07:54.0409 3372 Serial (c70d69a918b178d3c3b06339b40c2e1b) C:\Windows\system32\drivers\serial.sys
23:07:54.0425 3372 Serial - ok
23:07:54.0487 3372 sermouse (8af3d28a879bf75db53a0ee7a4289624) C:\Windows\system32\drivers\sermouse.sys
23:07:54.0487 3372 sermouse - ok
23:07:54.0534 3372 sffdisk (3efa810bdca87f6ecc24f9832243fe86) C:\Windows\system32\drivers\sffdisk.sys
23:07:54.0565 3372 sffdisk - ok
23:07:54.0596 3372 sffp_mmc (e95d451f7ea3e583aec75f3b3ee42dc5) C:\Windows\system32\drivers\sffp_mmc.sys
23:07:54.0596 3372 sffp_mmc - ok
23:07:54.0628 3372 sffp_sd (3d0ea348784b7ac9ea9bd9f317980979) C:\Windows\system32\drivers\sffp_sd.sys
23:07:54.0628 3372 sffp_sd - ok
23:07:54.0659 3372 sfloppy (46ed8e91793b2e6f848015445a0ac188) C:\Windows\system32\drivers\sfloppy.sys
23:07:54.0659 3372 sfloppy - ok
23:07:54.0690 3372 sisagp (1d76624a09a054f682d746b924e2dbc3) C:\Windows\system32\drivers\sisagp.sys
23:07:54.0721 3372 sisagp - ok
23:07:54.0752 3372 SiSRaid2 (43cb7aa756c7db280d01da9b676cfde2) C:\Windows\system32\drivers\sisraid2.sys
23:07:54.0752 3372 SiSRaid2 - ok
23:07:54.0815 3372 SiSRaid4 (a99c6c8b0baa970d8aa59ddc50b57f94) C:\Windows\system32\drivers\sisraid4.sys
23:07:54.0877 3372 SiSRaid4 - ok
23:07:54.0986 3372 Smb (7b75299a4d201d6a6533603d6914ab04) C:\Windows\system32\DRIVERS\smb.sys
23:07:55.0018 3372 Smb - ok
23:07:55.0158 3372 spldr (7aebdeef071fe28b0eef2cdd69102bff) C:\Windows\system32\drivers\spldr.sys
23:07:55.0174 3372 spldr - ok
23:07:55.0298 3372 sptd (d15da1ba189770d93eea2d7e18f95af9) C:\Windows\system32\Drivers\sptd.sys
23:07:55.0298 3372 Suspicious file (NoAccess): C:\Windows\system32\Drivers\sptd.sys. md5: d15da1ba189770d93eea2d7e18f95af9
23:07:55.0314 3372 sptd ( LockedFile.Multi.Generic ) - warning
23:07:55.0314 3372 sptd - detected LockedFile.Multi.Generic (1)
23:07:55.0454 3372 srv (41987f9fc0e61adf54f581e15029ad91) C:\Windows\system32\DRIVERS\srv.sys
23:07:55.0470 3372 srv - ok
23:07:55.0517 3372 srv2 (ff33aff99564b1aa534f58868cbe41ef) C:\Windows\system32\DRIVERS\srv2.sys
23:07:55.0532 3372 srv2 - ok
23:07:55.0673 3372 srvnet (7605c0e1d01a08f3ecd743f38b834a44) C:\Windows\system32\DRIVERS\srvnet.sys
23:07:55.0704 3372 srvnet - ok
23:07:55.0798 3372 ssmdrv (a36ee93698802cd899f98bfd553d8185) C:\Windows\system32\DRIVERS\ssmdrv.sys
23:07:55.0813 3372 ssmdrv - ok
23:07:56.0016 3372 swenum (7ba58ecf0c0a9a69d44b3dca62becf56) C:\Windows\system32\DRIVERS\swenum.sys
23:07:56.0063 3372 swenum - ok
23:07:56.0266 3372 Symc8xx (192aa3ac01df071b541094f251deed10) C:\Windows\system32\drivers\symc8xx.sys
23:07:56.0281 3372 Symc8xx - ok
23:07:56.0437 3372 Sym_hi (8c8eb8c76736ebaf3b13b633b2e64125) C:\Windows\system32\drivers\sym_hi.sys
23:07:56.0484 3372 Sym_hi - ok
23:07:56.0578 3372 Sym_u3 (8072af52b5fd103bbba387a1e49f62cb) C:\Windows\system32\drivers\sym_u3.sys
23:07:56.0609 3372 Sym_u3 - ok
23:07:56.0734 3372 Tcpip (814a1c66fbd4e1b310a517221f1456bf) C:\Windows\system32\drivers\tcpip.sys
23:07:56.0858 3372 Tcpip - ok
23:07:57.0046 3372 Tcpip6 (814a1c66fbd4e1b310a517221f1456bf) C:\Windows\system32\DRIVERS\tcpip.sys
23:07:57.0061 3372 Tcpip6 - ok
23:07:57.0295 3372 tcpipreg (608c345a255d82a6289c2d468eb41fd7) C:\Windows\system32\drivers\tcpipreg.sys
23:07:57.0420 3372 tcpipreg - ok
23:07:57.0592 3372 TDPIPE (5dcf5e267be67a1ae926f2df77fbcc56) C:\Windows\system32\drivers\tdpipe.sys
23:07:57.0607 3372 TDPIPE - ok
23:07:57.0732 3372 TDTCP (389c63e32b3cefed425b61ed92d3f021) C:\Windows\system32\drivers\tdtcp.sys
23:07:57.0779 3372 TDTCP - ok
23:07:57.0857 3372 tdx (76b06eb8a01fc8624d699e7045303e54) C:\Windows\system32\DRIVERS\tdx.sys
23:07:57.0888 3372 tdx - ok
23:07:57.0997 3372 TermDD (3cad38910468eab9a6479e2f01db43c7) C:\Windows\system32\DRIVERS\termdd.sys
23:07:57.0997 3372 TermDD - ok
23:07:58.0106 3372 tssecsrv (dcf0f056a2e4f52287264f5ab29cf206) C:\Windows\system32\DRIVERS\tssecsrv.sys
23:07:58.0106 3372 tssecsrv - ok
23:07:58.0138 3372 tunmp (caecc0120ac49e3d2f758b9169872d38) C:\Windows\system32\DRIVERS\tunmp.sys
23:07:58.0138 3372 tunmp - ok
23:07:58.0372 3372 tunnel (300db877ac094feab0be7688c3454a9c) C:\Windows\system32\DRIVERS\tunnel.sys
23:07:58.0372 3372 tunnel - ok
23:07:58.0574 3372 uagp35 (7d33c4db2ce363c8518d2dfcf533941f) C:\Windows\system32\drivers\uagp35.sys
23:07:58.0590 3372 uagp35 - ok
23:07:58.0668 3372 udfs (d9728af68c4c7693cb100b8441cbdec6) C:\Windows\system32\DRIVERS\udfs.sys
23:07:58.0668 3372 udfs - ok
23:07:58.0777 3372 uliagpkx (b0acfdc9e4af279e9116c03e014b2b27) C:\Windows\system32\drivers\uliagpkx.sys
23:07:58.0777 3372 uliagpkx - ok
23:07:58.0871 3372 uliahci (9224bb254f591de4ca8d572a5f0d635c) C:\Windows\system32\drivers\uliahci.sys
23:07:58.0918 3372 uliahci - ok
23:07:58.0964 3372 UlSata (8514d0e5cd0534467c5fc61be94a569f) C:\Windows\system32\drivers\ulsata.sys
23:07:58.0964 3372 UlSata - ok
23:07:59.0042 3372 ulsata2 (38c3c6e62b157a6bc46594fada45c62b) C:\Windows\system32\drivers\ulsata2.sys
23:07:59.0058 3372 ulsata2 - ok
23:07:59.0136 3372 umbus (32cff9f809ae9aed85464492bf3e32d2) C:\Windows\system32\DRIVERS\umbus.sys
23:07:59.0136 3372 umbus - ok
23:07:59.0230 3372 USBAAPL (83cafcb53201bbac04d822f32438e244) C:\Windows\system32\Drivers\usbaapl.sys
23:07:59.0276 3372 USBAAPL - ok
23:07:59.0308 3372 usbccgp (caf811ae4c147ffcd5b51750c7f09142) C:\Windows\system32\DRIVERS\usbccgp.sys
23:07:59.0308 3372 usbccgp - ok
23:07:59.0464 3372 usbcir (e9476e6c486e76bc4898074768fb7131) C:\Windows\system32\drivers\usbcir.sys
23:07:59.0495 3372 usbcir - ok
23:07:59.0557 3372 usbehci (79e96c23a97ce7b8f14d310da2db0c9b) C:\Windows\system32\DRIVERS\usbehci.sys
23:07:59.0573 3372 usbehci - ok
23:07:59.0698 3372 usbhub (4673bbcb006af60e7abddbe7a130ba42) C:\Windows\system32\DRIVERS\usbhub.sys
23:07:59.0713 3372 usbhub - ok
23:07:59.0776 3372 usbohci (ce697fee0d479290d89bec80dfe793b7) C:\Windows\system32\DRIVERS\usbohci.sys
23:07:59.0822 3372 usbohci - ok
23:07:59.0869 3372 usbprint (e75c4b5269091d15a2e7dc0b6d35f2f5) C:\Windows\system32\DRIVERS\usbprint.sys
23:07:59.0916 3372 usbprint - ok
23:07:59.0963 3372 usbscan (a508c9bd8724980512136b039bba65e9) C:\Windows\system32\DRIVERS\usbscan.sys
23:07:59.0978 3372 usbscan - ok
23:08:00.0103 3372 USBSTOR (be3da31c191bc222d9ad503c5224f2ad) C:\Windows\system32\DRIVERS\USBSTOR.SYS
23:08:00.0103 3372 USBSTOR - ok
23:08:00.0150 3372 usbuhci (814d653efc4d48be3b04a307eceff56f) C:\Windows\system32\DRIVERS\usbuhci.sys
23:08:00.0150 3372 usbuhci - ok
23:08:00.0259 3372 vga (87b06e1f30b749a114f74622d013f8d4) C:\Windows\system32\DRIVERS\vgapnp.sys
23:08:00.0275 3372 vga - ok
23:08:00.0306 3372 VgaSave (2e93ac0a1d8c79d019db6c51f036636c) C:\Windows\System32\drivers\vga.sys
23:08:00.0322 3372 VgaSave - ok
23:08:00.0353 3372 viaagp (5d7159def58a800d5781ba3a879627bc) C:\Windows\system32\drivers\viaagp.sys
23:08:00.0415 3372 viaagp - ok
23:08:00.0602 3372 ViaC7 (c4f3a691b5bad343e6249bd8c2d45dee) C:\Windows\system32\drivers\viac7.sys
23:08:00.0618 3372 ViaC7 - ok
23:08:00.0774 3372 viaide (aadf5587a4063f52c2c3fed7887426fc) C:\Windows\system32\drivers\viaide.sys
23:08:00.0805 3372 viaide - ok
23:08:00.0946 3372 volmgr (69503668ac66c77c6cd7af86fbdf8c43) C:\Windows\system32\drivers\volmgr.sys
23:08:00.0977 3372 volmgr - ok
23:08:01.0086 3372 volmgrx (23e41b834759917bfd6b9a0d625d0c28) C:\Windows\system32\drivers\volmgrx.sys
23:08:01.0164 3372 volmgrx - ok
23:08:01.0414 3372 volsnap (147281c01fcb1df9252de2a10d5e7093) C:\Windows\system32\drivers\volsnap.sys
23:08:01.0445 3372 volsnap - ok
23:08:01.0554 3372 vsmraid (587253e09325e6bf226b299774b728a9) C:\Windows\system32\drivers\vsmraid.sys
23:08:01.0585 3372 vsmraid - ok
23:08:01.0757 3372 WacomPen (48dfee8f1af7c8235d4e626f0c4fe031) C:\Windows\system32\drivers\wacompen.sys
23:08:01.0850 3372 WacomPen - ok
23:08:01.0913 3372 Wanarp (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
23:08:01.0975 3372 Wanarp - ok
23:08:01.0991 3372 Wanarpv6 (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
23:08:01.0991 3372 Wanarpv6 - ok
23:08:02.0053 3372 Wd (78fe9542363f297b18c027b2d7e7c07f) C:\Windows\system32\drivers\wd.sys
23:08:02.0069 3372 Wd - ok
23:08:02.0147 3372 Wdf01000 (b6f0a7ad6d4bd325fbcd8bac96cd8d96) C:\Windows\system32\drivers\Wdf01000.sys
23:08:02.0209 3372 Wdf01000 - ok
23:08:02.0552 3372 WmiAcpi (2e7255d172df0b8283cdfb7b433b864e) C:\Windows\system32\drivers\wmiacpi.sys
23:08:02.0568 3372 WmiAcpi - ok
23:08:02.0755 3372 WpdUsb (de9d36f91a4df3d911626643debf11ea) C:\Windows\system32\DRIVERS\wpdusb.sys
23:08:02.0833 3372 WpdUsb - ok
23:08:02.0927 3372 ws2ifsl (e3a3cb253c0ec2494d4a61f5e43a389c) C:\Windows\system32\drivers\ws2ifsl.sys
23:08:02.0942 3372 ws2ifsl - ok
23:08:03.0130 3372 WUDFRd (ac13cb789d93412106b0fb6c7eb2bcb6) C:\Windows\system32\DRIVERS\WUDFRd.sys
23:08:03.0208 3372 WUDFRd - ok
23:08:03.0270 3372 MBR (0x1B8) (81cd5ec01db0ce57edd853f82462ef27) \Device\Harddisk0\DR0
23:08:03.0722 3372 \Device\Harddisk0\DR0 - ok
23:08:03.0785 3372 Boot (0x1200) (6fb0fdcb906a06a97b8a3d4822cee0a5) \Device\Harddisk0\DR0\Partition0
23:08:03.0785 3372 \Device\Harddisk0\DR0\Partition0 - ok
23:08:03.0832 3372 Boot (0x1200) (73b40d56752a145424698ea73ab7f92c) \Device\Harddisk0\DR0\Partition1
23:08:03.0832 3372 \Device\Harddisk0\DR0\Partition1 - ok
23:08:03.0832 3372 ============================================================
23:08:03.0832 3372 Scan finished
23:08:03.0832 3372 ============================================================
23:08:03.0878 0584 Detected object count: 2
23:08:03.0878 0584 Actual detected object count: 2
23:08:33.0596 0584 Backup copy not found, trying to cure infected file..
23:08:33.0628 0584 Cure success, using it..
23:08:33.0659 0584 C:\Windows\system32\Drivers\dfsc.sys - will be cured on reboot
23:08:41.0256 0584 DfsC ( Rootkit.Win32.ZAccess.h ) - User select action: Cure
23:08:41.0287 0584 HKLM\SYSTEM\ControlSet001\services\sptd - will be deleted on reboot
23:08:41.0303 0584 HKLM\SYSTEM\ControlSet002\services\sptd - will be deleted on reboot
23:08:41.0381 0584 C:\Windows\system32\Drivers\sptd.sys - will be deleted on reboot
23:08:41.0381 0584 sptd ( LockedFile.Multi.Generic ) - User select action: Delete
23:08:46.0420 0588 Deinitialize success
/!\ ATTENTION SUIVRE A LA LETTRE CES INDICATIONS/!\
__________________________________________________________
>Ce logiciel n'est à utiliser que prescrit par un helper qualifié et formé à l'outil.<
>>>>>>>[u]Ne pas utiliser en dehors de ce cas de figure : dangereux<<<<<<<<
=====================================================
Surtout , pense à l'enregistrement à renommer Combofix en "ton prenom.exe" avant qu'il soit enregistré sur ton disque dur
Telecharge ici : http://download.bleepingcomputer.com/sUBs/ComboFix.exe
Combofix
Si tu utilises AVG, IL FAUT IMPERATIVEMENT LE DESINSTALLER avant d'utiliser Combofix car il peut causer des dégâts en interaction avec l'outil pouvant mener à la réinstallation totale du système.
La simple désactivation du résident n'est pas suffisante.
Télécharge le désinstalleur d'AVG sur ce lien : https://www.avg.com/fr-fr/avg-remover
Choisis la version adéquate (32 ou 64 bits)/!\
_________________________________________________________
>> referme les fenêtres de tous les programmes en cours.
>>Désactive provisoirement et seulement le temps de l'utilisation de ComboFix,
>>la protection en temps réel de ton Antivirus et de tes Antispywares,
>>qui peuvent gêner fortement la procédure de recherche et de nettoyage de l'outil.
°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°
si tu as XP => double clique
si tu as Vista ou windows 7 => clic droit "executer en tant que...."
sur combofix renommé
!!!!!NE TOUCHE A RIEN PENDANT LE TRAVAIL DE COMBOFIX (SOURIS/CLAVIER.....)!!!!!
n'oublie pas de reactiver la garde de ton Antivirus et de tes Antispywares, avant de te reconnecter à internet.
Reviens sur le forum, et copie et colle la totalité du contenu de C:\Combofix.txt dans ton prochain message.
__________________________________________________________
>Ce logiciel n'est à utiliser que prescrit par un helper qualifié et formé à l'outil.<
>>>>>>>[u]Ne pas utiliser en dehors de ce cas de figure : dangereux<<<<<<<<
=====================================================
Surtout , pense à l'enregistrement à renommer Combofix en "ton prenom.exe" avant qu'il soit enregistré sur ton disque dur
Telecharge ici : http://download.bleepingcomputer.com/sUBs/ComboFix.exe
Combofix
Si tu utilises AVG, IL FAUT IMPERATIVEMENT LE DESINSTALLER avant d'utiliser Combofix car il peut causer des dégâts en interaction avec l'outil pouvant mener à la réinstallation totale du système.
La simple désactivation du résident n'est pas suffisante.
Télécharge le désinstalleur d'AVG sur ce lien : https://www.avg.com/fr-fr/avg-remover
Choisis la version adéquate (32 ou 64 bits)/!\
_________________________________________________________
>> referme les fenêtres de tous les programmes en cours.
>>Désactive provisoirement et seulement le temps de l'utilisation de ComboFix,
>>la protection en temps réel de ton Antivirus et de tes Antispywares,
>>qui peuvent gêner fortement la procédure de recherche et de nettoyage de l'outil.
°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°
si tu as XP => double clique
si tu as Vista ou windows 7 => clic droit "executer en tant que...."
sur combofix renommé
!!!!!NE TOUCHE A RIEN PENDANT LE TRAVAIL DE COMBOFIX (SOURIS/CLAVIER.....)!!!!!
n'oublie pas de reactiver la garde de ton Antivirus et de tes Antispywares, avant de te reconnecter à internet.
Reviens sur le forum, et copie et colle la totalité du contenu de C:\Combofix.txt dans ton prochain message.
olalala ca me parait vraiment compliqué
mais j ai installé comodo firewall et avast c bon tu penses ?
c possible de retourner sur alloshow a ton avis???
mais j ai installé comodo firewall et avast c bon tu penses ?
c possible de retourner sur alloshow a ton avis???
Vous n’avez pas trouvé la réponse que vous recherchez ?
Posez votre question
