Virus Gendarmerie / Vista - http://95p.com
KjouX
-
Djpeakhard -
Djpeakhard -
Bonjour,
Comme beaucoup je suis victime du virus gendarmerie réclamant 200euros ect..
En lisan les différends thread sur ce site, j'ai :
1/ Desactivé mon antivirus (avira)
2/ Utilisé Roguekiller Option 1 et 2
3/ Utilisé Malwarebyte..
4/ Utilisé Adwleaner
Bien, maintenant la page fake de la gendarmerie ne s'affiche plus, en revanche, lorsque je vais sur Mozilla :
- les pages contenu dans "mes favoris" s'affichent normalement, si je tape directement l'adresse d'un site, celui-ci s'affiche correctement
- Par contre lorsque je passe par Google (par exemple) si je clique sur un lien de recherche en tapant "comment ca marche" il me propose donc le site "www.commentcamarche.net" et si je clic sur le lien --> :
--> " http://95p.com/?search=comment%20ca%20marche&subid=25&key=76951fe60ca3d34ac11f "
L'adresse se modifie automatiquement et m'affiche celle que je vous ai copié ci-dessus.. cela me renvoi donc vers des faux sites commerciaux ect..
Donc cela me fait penser que le virus est toujours la.. :-/..
Que dois-je faire ?
Voulez vous les différends "report" de Rogue / Malware ou Adw.. ?
Merci beaucoup pour votre aide.
Comme beaucoup je suis victime du virus gendarmerie réclamant 200euros ect..
En lisan les différends thread sur ce site, j'ai :
1/ Desactivé mon antivirus (avira)
2/ Utilisé Roguekiller Option 1 et 2
3/ Utilisé Malwarebyte..
4/ Utilisé Adwleaner
Bien, maintenant la page fake de la gendarmerie ne s'affiche plus, en revanche, lorsque je vais sur Mozilla :
- les pages contenu dans "mes favoris" s'affichent normalement, si je tape directement l'adresse d'un site, celui-ci s'affiche correctement
- Par contre lorsque je passe par Google (par exemple) si je clique sur un lien de recherche en tapant "comment ca marche" il me propose donc le site "www.commentcamarche.net" et si je clic sur le lien --> :
--> " http://95p.com/?search=comment%20ca%20marche&subid=25&key=76951fe60ca3d34ac11f "
L'adresse se modifie automatiquement et m'affiche celle que je vous ai copié ci-dessus.. cela me renvoi donc vers des faux sites commerciaux ect..
Donc cela me fait penser que le virus est toujours la.. :-/..
Que dois-je faire ?
Voulez vous les différends "report" de Rogue / Malware ou Adw.. ?
Merci beaucoup pour votre aide.
A voir également:
- Virus Gendarmerie / Vista - http://95p.com
- Http - Guide
- Http //192.168.l.l - Guide
- Virus mcafee - Accueil - Piratage
- Windows vista - Télécharger - Divers Utilitaires
- Http //cast2tv.net/ - Forum TV & Vidéo
11 réponses
Re
Télécharge TDSSKiller
*Créez un nouveau dossier sur votre bureau puis décompressez l'archive dedans
* Lancez le programme en cliquant sur TDSSKiller.exe, l'analyse se fait automatiquement, si l'infection est détectée, des éléments cachés (= hidden) seront alors affichés.
Si TDSS.tdl2 est détecté: l'option delete sera cochée par défaut.
Si TDSS.tdl3 est détecté: assure toi que Cure est bien cochée.
Si TDSS.tdl4(\HardDisk0\MBR) est détecté: assure toi que Cure est bien cochée.
Si Rootkit.Win32.ZAccess.* est détecté : règle sur "cure" en haut , et "delete" en bas
Si Suspicious file est indiqué, laisse l''option cochée sur Skip
une fois qu'il a terminé , redémarre s'il te le demande pour finir de nettoyer
sinon , ferme TDSSKiller et le rapport s'affichera sur le bureau
Poste moi son rapport à l'issue; merci
@+
Télécharge TDSSKiller
*Créez un nouveau dossier sur votre bureau puis décompressez l'archive dedans
* Lancez le programme en cliquant sur TDSSKiller.exe, l'analyse se fait automatiquement, si l'infection est détectée, des éléments cachés (= hidden) seront alors affichés.
Si TDSS.tdl2 est détecté: l'option delete sera cochée par défaut.
Si TDSS.tdl3 est détecté: assure toi que Cure est bien cochée.
Si TDSS.tdl4(\HardDisk0\MBR) est détecté: assure toi que Cure est bien cochée.
Si Rootkit.Win32.ZAccess.* est détecté : règle sur "cure" en haut , et "delete" en bas
Si Suspicious file est indiqué, laisse l''option cochée sur Skip
une fois qu'il a terminé , redémarre s'il te le demande pour finir de nettoyer
sinon , ferme TDSSKiller et le rapport s'affichera sur le bureau
Poste moi son rapport à l'issue; merci
@+
elo13200
nous sommes dans la même galère comment faire ? nous avons fait tout ce que tu as marqué mais c'est toujours pareil comment faire ?
Bonjour KjouX
1)Met à jour ton PC:
En priorité Vista SP2
Pour vérifier les mises à jour logiciels à appliquer sur ton PC
https://www.flexera.com/products/operations/software-vulnerability-management.html
Divers liens te seront proposés pour les logiciels non à jour.
2)Purge la restauration sur Vista
Comment faire :
https://www.commentcamarche.net/faq/13214-vista-desactiver-reactiver-la-restauration-systeme-de-vista
Cela supprime toutes traces des diverses infections ;et permettra une éventuelle restauration sans infections
@+
1)Met à jour ton PC:
En priorité Vista SP2
Pour vérifier les mises à jour logiciels à appliquer sur ton PC
https://www.flexera.com/products/operations/software-vulnerability-management.html
Divers liens te seront proposés pour les logiciels non à jour.
2)Purge la restauration sur Vista
Comment faire :
https://www.commentcamarche.net/faq/13214-vista-desactiver-reactiver-la-restauration-systeme-de-vista
Cela supprime toutes traces des diverses infections ;et permettra une éventuelle restauration sans infections
@+
Merci, cela me donne :
" RogueKiller V6.2.0 [12/12/2011] par Tigzy
mail: tigzyRK<at>gmail<dot>com
Remontees: https://www.luanagames.com/index.fr.html
Blog: http://tigzyrk.blogspot.com
Systeme d'exploitation: Windows Vista (6.0.6001 Service Pack 1) 32 bits version
Demarrage : Mode normal
Utilisateur: KjouX [Droits d'admin]
Mode: Recherche -- Date : 27/12/2011 16:27:44
¤¤¤ Processus malicieux: 0 ¤¤¤
¤¤¤ Entrees de registre: 0 ¤¤¤
¤¤¤ Fichiers / Dossiers particuliers: ¤¤¤
¤¤¤ Driver: [LOADED] ¤¤¤
¤¤¤ Infection : ¤¤¤
¤¤¤ Fichier HOSTS: ¤¤¤
127.0.0.1 localhost
::1 localhost
¤¤¤ MBR Verif: ¤¤¤
--- User ---
[MBR] 4e2c3063e698da3a6b26b54d119e8d4d
[BSP] b1308e3ccda2532327a2a3280802a69e : MBR Code unknown
Partition table:
0 - [XXXXXX] NTFS [HIDDEN!] Offset (sectors): 2048 | Size: 10737 Mo
1 - [ACTIVE] NTFS [VISIBLE] Offset (sectors): 20973568 | Size: 74650 Mo
2 - [XXXXXX] NTFS [VISIBLE] Offset (sectors): 166774784 | Size: 74651 Mo
User = LL1 ... OK!
User = LL2 ... OK!
Termine : << RKreport[4].txt >>
RKreport[1].txt ; RKreport[2].txt ; RKreport[3].txt ; RKreport[4].txt
"
Toujours le même problème :-)
" RogueKiller V6.2.0 [12/12/2011] par Tigzy
mail: tigzyRK<at>gmail<dot>com
Remontees: https://www.luanagames.com/index.fr.html
Blog: http://tigzyrk.blogspot.com
Systeme d'exploitation: Windows Vista (6.0.6001 Service Pack 1) 32 bits version
Demarrage : Mode normal
Utilisateur: KjouX [Droits d'admin]
Mode: Recherche -- Date : 27/12/2011 16:27:44
¤¤¤ Processus malicieux: 0 ¤¤¤
¤¤¤ Entrees de registre: 0 ¤¤¤
¤¤¤ Fichiers / Dossiers particuliers: ¤¤¤
¤¤¤ Driver: [LOADED] ¤¤¤
¤¤¤ Infection : ¤¤¤
¤¤¤ Fichier HOSTS: ¤¤¤
127.0.0.1 localhost
::1 localhost
¤¤¤ MBR Verif: ¤¤¤
--- User ---
[MBR] 4e2c3063e698da3a6b26b54d119e8d4d
[BSP] b1308e3ccda2532327a2a3280802a69e : MBR Code unknown
Partition table:
0 - [XXXXXX] NTFS [HIDDEN!] Offset (sectors): 2048 | Size: 10737 Mo
1 - [ACTIVE] NTFS [VISIBLE] Offset (sectors): 20973568 | Size: 74650 Mo
2 - [XXXXXX] NTFS [VISIBLE] Offset (sectors): 166774784 | Size: 74651 Mo
User = LL1 ... OK!
User = LL2 ... OK!
Termine : << RKreport[4].txt >>
RKreport[1].txt ; RKreport[2].txt ; RKreport[3].txt ; RKreport[4].txt
"
Toujours le même problème :-)
Vous n’avez pas trouvé la réponse que vous recherchez ?
Posez votre question
Merci, il a donc trouvé un Rootkit, voici le rapport :
17:00:56.0503 3092 TDSS rootkit removing tool 2.6.25.0 Dec 23 2011 14:51:16
17:00:56.0679 3092 ============================================================
17:00:56.0679 3092 Current date / time: 2011/12/27 17:00:56.0679
17:00:56.0679 3092 SystemInfo:
17:00:56.0679 3092
17:00:56.0679 3092 OS Version: 6.0.6001 ServicePack: 1.0
17:00:56.0679 3092 Product type: Workstation
17:00:56.0679 3092 ComputerName: PCKJOUX
17:00:56.0679 3092 UserName: KjouX
17:00:56.0679 3092 Windows directory: C:\Windows
17:00:56.0679 3092 System windows directory: C:\Windows
17:00:56.0679 3092 Processor architecture: Intel x86
17:00:56.0679 3092 Number of processors: 2
17:00:56.0679 3092 Page size: 0x1000
17:00:56.0679 3092 Boot type: Normal boot
17:00:56.0679 3092 ============================================================
17:00:58.0328 3092 Initialize success
17:01:01.0102 1428 ============================================================
17:01:01.0102 1428 Scan started
17:01:01.0102 1428 Mode: Manual;
17:01:01.0102 1428 ============================================================
17:01:09.0555 1428 A310 (02e1c46c34f2d2843533c4f223867930) C:\Windows\system32\DRIVERS\AVerA310USB.sys
17:01:09.0556 1428 A310 - ok
17:01:09.0739 1428 ACPI (fcb8c7210f0135e24c6580f7f649c73c) C:\Windows\system32\drivers\acpi.sys
17:01:09.0742 1428 ACPI - ok
17:01:10.0073 1428 adp94xx (04f0fcac69c7c71a3ac4eb97fafc8303) C:\Windows\system32\drivers\adp94xx.sys
17:01:10.0078 1428 adp94xx - ok
17:01:10.0415 1428 adpahci (60505e0041f7751bdbb80f88bf45c2ce) C:\Windows\system32\drivers\adpahci.sys
17:01:10.0417 1428 adpahci - ok
17:01:10.0703 1428 adpu160m (8a42779b02aec986eab64ecfc98f8bd7) C:\Windows\system32\drivers\adpu160m.sys
17:01:10.0706 1428 adpu160m - ok
17:01:10.0891 1428 adpu320 (241c9e37f8ce45ef51c3de27515ca4e5) C:\Windows\system32\drivers\adpu320.sys
17:01:10.0892 1428 adpu320 - ok
17:01:11.0281 1428 AFD (48eb99503533c27ac6135648e5474457) C:\Windows\system32\drivers\afd.sys
17:01:11.0307 1428 AFD - ok
17:01:11.0929 1428 AgereSoftModem (38325c6aa8eae011897d61ce48ec6435) C:\Windows\system32\DRIVERS\AGRSM.sys
17:01:12.0220 1428 AgereSoftModem - ok
17:01:12.0691 1428 agp440 (13f9e33747e6b41a3ff305c37db0d360) C:\Windows\system32\drivers\agp440.sys
17:01:12.0692 1428 agp440 - ok
17:01:13.0096 1428 aic78xx (ae1fdf7bf7bb6c6a70f67699d880592a) C:\Windows\system32\drivers\djsvs.sys
17:01:13.0128 1428 aic78xx - ok
17:01:13.0448 1428 aliide (9eaef5fc9b8e351afa7e78a6fae91f91) C:\Windows\system32\drivers\aliide.sys
17:01:13.0448 1428 aliide - ok
17:01:14.0099 1428 amdagp (c47344bc706e5f0b9dce369516661578) C:\Windows\system32\drivers\amdagp.sys
17:01:14.0133 1428 amdagp - ok
17:01:14.0774 1428 amdide (9b78a39a4c173fdbc1321e0dd659b34c) C:\Windows\system32\drivers\amdide.sys
17:01:15.0402 1428 amdide - ok
17:01:15.0651 1428 AmdK7 (18f29b49ad23ecee3d2a826c725c8d48) C:\Windows\system32\drivers\amdk7.sys
17:01:15.0664 1428 AmdK7 - ok
17:01:15.0949 1428 AmdK8 (93ae7f7dd54ab986a6f1a1b37be7442d) C:\Windows\system32\drivers\amdk8.sys
17:01:15.0958 1428 AmdK8 - ok
17:01:16.0971 1428 appdrv01 (f951c27fe54e1b2b5ada9719289b4756) C:\Windows\system32\Drivers\appdrv01.sys
17:01:16.0992 1428 appdrv01 - ok
17:01:17.0357 1428 arc (5d2888182fb46632511acee92fdad522) C:\Windows\system32\drivers\arc.sys
17:01:17.0367 1428 arc - ok
17:01:17.0715 1428 arcsas (5e2a321bd7c8b3624e41fdec3e244945) C:\Windows\system32\drivers\arcsas.sys
17:01:17.0718 1428 arcsas - ok
17:01:18.0265 1428 AsyncMac (53b202abee6455406254444303e87be1) C:\Windows\system32\DRIVERS\asyncmac.sys
17:01:18.0420 1428 AsyncMac - ok
17:01:18.0651 1428 atapi (2d9c903dc76a66813d350a562de40ed9) C:\Windows\system32\drivers\atapi.sys
17:01:18.0651 1428 atapi - ok
17:01:19.0071 1428 athr (8be56f8300e1c37b578da23c71816b7a) C:\Windows\system32\DRIVERS\athr.sys
17:01:19.0124 1428 athr - ok
17:01:19.0667 1428 avgio (f1d43170fdd7399ee17ea32d4f868b0c) C:\Program Files\Avira\AntiVir Desktop\avgio.sys
17:01:19.0667 1428 avgio - ok
17:01:19.0909 1428 avgntflt (14fe36d8f2c6a2435275338d061a0b66) C:\Windows\system32\DRIVERS\avgntflt.sys
17:01:19.0910 1428 avgntflt - ok
17:01:20.0351 1428 avipbb (ad9bd66a862116e79cb45bb6be46055f) C:\Windows\system32\DRIVERS\avipbb.sys
17:01:20.0352 1428 avipbb - ok
17:01:20.0790 1428 b57nd60x (7d0f2bfa273831124fa08526af48af18) C:\Windows\system32\DRIVERS\b57nd60x.sys
17:01:20.0792 1428 b57nd60x - ok
17:01:20.0985 1428 BDASwCap (9347a2ddee501c242a8e21990279d688) C:\Windows\system32\drivers\AVerA310Cap.sys
17:01:20.0999 1428 BDASwCap - ok
17:01:21.0056 1428 Beep (67e506b75bd5326a3ec7b70bd014dfb6) C:\Windows\system32\drivers\Beep.sys
17:01:21.0057 1428 Beep - ok
17:01:21.0530 1428 blbdrive (d4df28447741fd3d953526e33a617397) C:\Windows\system32\drivers\blbdrive.sys
17:01:21.0531 1428 blbdrive - ok
17:01:21.0896 1428 bowser (8153396d5551276227fa146900f734e6) C:\Windows\system32\DRIVERS\bowser.sys
17:01:21.0897 1428 bowser - ok
17:01:22.0210 1428 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\drivers\brfiltlo.sys
17:01:22.0223 1428 BrFiltLo - ok
17:01:22.0732 1428 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\drivers\brfiltup.sys
17:01:22.0744 1428 BrFiltUp - ok
17:01:23.0007 1428 Brserid (b304e75cff293029eddf094246747113) C:\Windows\system32\drivers\brserid.sys
17:01:23.0008 1428 Brserid - ok
17:01:23.0390 1428 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\system32\drivers\brserwdm.sys
17:01:23.0391 1428 BrSerWdm - ok
17:01:23.0634 1428 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\system32\drivers\brusbmdm.sys
17:01:23.0634 1428 BrUsbMdm - ok
17:01:23.0880 1428 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\system32\drivers\brusbser.sys
17:01:23.0894 1428 BrUsbSer - ok
17:00:56.0503 3092 TDSS rootkit removing tool 2.6.25.0 Dec 23 2011 14:51:16
17:00:56.0679 3092 ============================================================
17:00:56.0679 3092 Current date / time: 2011/12/27 17:00:56.0679
17:00:56.0679 3092 SystemInfo:
17:00:56.0679 3092
17:00:56.0679 3092 OS Version: 6.0.6001 ServicePack: 1.0
17:00:56.0679 3092 Product type: Workstation
17:00:56.0679 3092 ComputerName: PCKJOUX
17:00:56.0679 3092 UserName: KjouX
17:00:56.0679 3092 Windows directory: C:\Windows
17:00:56.0679 3092 System windows directory: C:\Windows
17:00:56.0679 3092 Processor architecture: Intel x86
17:00:56.0679 3092 Number of processors: 2
17:00:56.0679 3092 Page size: 0x1000
17:00:56.0679 3092 Boot type: Normal boot
17:00:56.0679 3092 ============================================================
17:00:58.0328 3092 Initialize success
17:01:01.0102 1428 ============================================================
17:01:01.0102 1428 Scan started
17:01:01.0102 1428 Mode: Manual;
17:01:01.0102 1428 ============================================================
17:01:09.0555 1428 A310 (02e1c46c34f2d2843533c4f223867930) C:\Windows\system32\DRIVERS\AVerA310USB.sys
17:01:09.0556 1428 A310 - ok
17:01:09.0739 1428 ACPI (fcb8c7210f0135e24c6580f7f649c73c) C:\Windows\system32\drivers\acpi.sys
17:01:09.0742 1428 ACPI - ok
17:01:10.0073 1428 adp94xx (04f0fcac69c7c71a3ac4eb97fafc8303) C:\Windows\system32\drivers\adp94xx.sys
17:01:10.0078 1428 adp94xx - ok
17:01:10.0415 1428 adpahci (60505e0041f7751bdbb80f88bf45c2ce) C:\Windows\system32\drivers\adpahci.sys
17:01:10.0417 1428 adpahci - ok
17:01:10.0703 1428 adpu160m (8a42779b02aec986eab64ecfc98f8bd7) C:\Windows\system32\drivers\adpu160m.sys
17:01:10.0706 1428 adpu160m - ok
17:01:10.0891 1428 adpu320 (241c9e37f8ce45ef51c3de27515ca4e5) C:\Windows\system32\drivers\adpu320.sys
17:01:10.0892 1428 adpu320 - ok
17:01:11.0281 1428 AFD (48eb99503533c27ac6135648e5474457) C:\Windows\system32\drivers\afd.sys
17:01:11.0307 1428 AFD - ok
17:01:11.0929 1428 AgereSoftModem (38325c6aa8eae011897d61ce48ec6435) C:\Windows\system32\DRIVERS\AGRSM.sys
17:01:12.0220 1428 AgereSoftModem - ok
17:01:12.0691 1428 agp440 (13f9e33747e6b41a3ff305c37db0d360) C:\Windows\system32\drivers\agp440.sys
17:01:12.0692 1428 agp440 - ok
17:01:13.0096 1428 aic78xx (ae1fdf7bf7bb6c6a70f67699d880592a) C:\Windows\system32\drivers\djsvs.sys
17:01:13.0128 1428 aic78xx - ok
17:01:13.0448 1428 aliide (9eaef5fc9b8e351afa7e78a6fae91f91) C:\Windows\system32\drivers\aliide.sys
17:01:13.0448 1428 aliide - ok
17:01:14.0099 1428 amdagp (c47344bc706e5f0b9dce369516661578) C:\Windows\system32\drivers\amdagp.sys
17:01:14.0133 1428 amdagp - ok
17:01:14.0774 1428 amdide (9b78a39a4c173fdbc1321e0dd659b34c) C:\Windows\system32\drivers\amdide.sys
17:01:15.0402 1428 amdide - ok
17:01:15.0651 1428 AmdK7 (18f29b49ad23ecee3d2a826c725c8d48) C:\Windows\system32\drivers\amdk7.sys
17:01:15.0664 1428 AmdK7 - ok
17:01:15.0949 1428 AmdK8 (93ae7f7dd54ab986a6f1a1b37be7442d) C:\Windows\system32\drivers\amdk8.sys
17:01:15.0958 1428 AmdK8 - ok
17:01:16.0971 1428 appdrv01 (f951c27fe54e1b2b5ada9719289b4756) C:\Windows\system32\Drivers\appdrv01.sys
17:01:16.0992 1428 appdrv01 - ok
17:01:17.0357 1428 arc (5d2888182fb46632511acee92fdad522) C:\Windows\system32\drivers\arc.sys
17:01:17.0367 1428 arc - ok
17:01:17.0715 1428 arcsas (5e2a321bd7c8b3624e41fdec3e244945) C:\Windows\system32\drivers\arcsas.sys
17:01:17.0718 1428 arcsas - ok
17:01:18.0265 1428 AsyncMac (53b202abee6455406254444303e87be1) C:\Windows\system32\DRIVERS\asyncmac.sys
17:01:18.0420 1428 AsyncMac - ok
17:01:18.0651 1428 atapi (2d9c903dc76a66813d350a562de40ed9) C:\Windows\system32\drivers\atapi.sys
17:01:18.0651 1428 atapi - ok
17:01:19.0071 1428 athr (8be56f8300e1c37b578da23c71816b7a) C:\Windows\system32\DRIVERS\athr.sys
17:01:19.0124 1428 athr - ok
17:01:19.0667 1428 avgio (f1d43170fdd7399ee17ea32d4f868b0c) C:\Program Files\Avira\AntiVir Desktop\avgio.sys
17:01:19.0667 1428 avgio - ok
17:01:19.0909 1428 avgntflt (14fe36d8f2c6a2435275338d061a0b66) C:\Windows\system32\DRIVERS\avgntflt.sys
17:01:19.0910 1428 avgntflt - ok
17:01:20.0351 1428 avipbb (ad9bd66a862116e79cb45bb6be46055f) C:\Windows\system32\DRIVERS\avipbb.sys
17:01:20.0352 1428 avipbb - ok
17:01:20.0790 1428 b57nd60x (7d0f2bfa273831124fa08526af48af18) C:\Windows\system32\DRIVERS\b57nd60x.sys
17:01:20.0792 1428 b57nd60x - ok
17:01:20.0985 1428 BDASwCap (9347a2ddee501c242a8e21990279d688) C:\Windows\system32\drivers\AVerA310Cap.sys
17:01:20.0999 1428 BDASwCap - ok
17:01:21.0056 1428 Beep (67e506b75bd5326a3ec7b70bd014dfb6) C:\Windows\system32\drivers\Beep.sys
17:01:21.0057 1428 Beep - ok
17:01:21.0530 1428 blbdrive (d4df28447741fd3d953526e33a617397) C:\Windows\system32\drivers\blbdrive.sys
17:01:21.0531 1428 blbdrive - ok
17:01:21.0896 1428 bowser (8153396d5551276227fa146900f734e6) C:\Windows\system32\DRIVERS\bowser.sys
17:01:21.0897 1428 bowser - ok
17:01:22.0210 1428 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\drivers\brfiltlo.sys
17:01:22.0223 1428 BrFiltLo - ok
17:01:22.0732 1428 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\drivers\brfiltup.sys
17:01:22.0744 1428 BrFiltUp - ok
17:01:23.0007 1428 Brserid (b304e75cff293029eddf094246747113) C:\Windows\system32\drivers\brserid.sys
17:01:23.0008 1428 Brserid - ok
17:01:23.0390 1428 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\system32\drivers\brserwdm.sys
17:01:23.0391 1428 BrSerWdm - ok
17:01:23.0634 1428 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\system32\drivers\brusbmdm.sys
17:01:23.0634 1428 BrUsbMdm - ok
17:01:23.0880 1428 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\system32\drivers\brusbser.sys
17:01:23.0894 1428 BrUsbSer - ok
Ca remarche visiblement sans probléme ou lien vers le mediafishing !
Merci beaucoup Guillaume 5188 !
Autre vérif ?
Merci beaucoup Guillaume 5188 !
Autre vérif ?
oups pardon, je n'avais pas remarqué :
17:00:56.0503 3092 TDSS rootkit removing tool 2.6.25.0 Dec 23 2011 14:51:16
17:00:56.0679 3092 ============================================================
17:00:56.0679 3092 Current date / time: 2011/12/27 17:00:56.0679
17:00:56.0679 3092 SystemInfo:
17:00:56.0679 3092
17:00:56.0679 3092 OS Version: 6.0.6001 ServicePack: 1.0
17:00:56.0679 3092 Product type: Workstation
17:00:56.0679 3092 ComputerName: PCKJOUX
17:00:56.0679 3092 UserName: KjouX
17:00:56.0679 3092 Windows directory: C:\Windows
17:00:56.0679 3092 System windows directory: C:\Windows
17:00:56.0679 3092 Processor architecture: Intel x86
17:00:56.0679 3092 Number of processors: 2
17:00:56.0679 3092 Page size: 0x1000
17:00:56.0679 3092 Boot type: Normal boot
17:00:56.0679 3092 ============================================================
17:00:58.0328 3092 Initialize success
17:01:01.0102 1428 ============================================================
17:01:01.0102 1428 Scan started
17:01:01.0102 1428 Mode: Manual;
17:01:01.0102 1428 ============================================================
17:01:09.0555 1428 A310 (02e1c46c34f2d2843533c4f223867930) C:\Windows\system32\DRIVERS\AVerA310USB.sys
17:01:09.0556 1428 A310 - ok
17:01:09.0739 1428 ACPI (fcb8c7210f0135e24c6580f7f649c73c) C:\Windows\system32\drivers\acpi.sys
17:01:09.0742 1428 ACPI - ok
17:01:10.0073 1428 adp94xx (04f0fcac69c7c71a3ac4eb97fafc8303) C:\Windows\system32\drivers\adp94xx.sys
17:01:10.0078 1428 adp94xx - ok
17:01:10.0415 1428 adpahci (60505e0041f7751bdbb80f88bf45c2ce) C:\Windows\system32\drivers\adpahci.sys
17:01:10.0417 1428 adpahci - ok
17:01:10.0703 1428 adpu160m (8a42779b02aec986eab64ecfc98f8bd7) C:\Windows\system32\drivers\adpu160m.sys
17:01:10.0706 1428 adpu160m - ok
17:01:10.0891 1428 adpu320 (241c9e37f8ce45ef51c3de27515ca4e5) C:\Windows\system32\drivers\adpu320.sys
17:01:10.0892 1428 adpu320 - ok
17:01:11.0281 1428 AFD (48eb99503533c27ac6135648e5474457) C:\Windows\system32\drivers\afd.sys
17:01:11.0307 1428 AFD - ok
17:01:11.0929 1428 AgereSoftModem (38325c6aa8eae011897d61ce48ec6435) C:\Windows\system32\DRIVERS\AGRSM.sys
17:01:12.0220 1428 AgereSoftModem - ok
17:01:12.0691 1428 agp440 (13f9e33747e6b41a3ff305c37db0d360) C:\Windows\system32\drivers\agp440.sys
17:01:12.0692 1428 agp440 - ok
17:01:13.0096 1428 aic78xx (ae1fdf7bf7bb6c6a70f67699d880592a) C:\Windows\system32\drivers\djsvs.sys
17:01:13.0128 1428 aic78xx - ok
17:01:13.0448 1428 aliide (9eaef5fc9b8e351afa7e78a6fae91f91) C:\Windows\system32\drivers\aliide.sys
17:01:13.0448 1428 aliide - ok
17:01:14.0099 1428 amdagp (c47344bc706e5f0b9dce369516661578) C:\Windows\system32\drivers\amdagp.sys
17:01:14.0133 1428 amdagp - ok
17:01:14.0774 1428 amdide (9b78a39a4c173fdbc1321e0dd659b34c) C:\Windows\system32\drivers\amdide.sys
17:01:15.0402 1428 amdide - ok
17:01:15.0651 1428 AmdK7 (18f29b49ad23ecee3d2a826c725c8d48) C:\Windows\system32\drivers\amdk7.sys
17:01:15.0664 1428 AmdK7 - ok
17:01:15.0949 1428 AmdK8 (93ae7f7dd54ab986a6f1a1b37be7442d) C:\Windows\system32\drivers\amdk8.sys
17:01:15.0958 1428 AmdK8 - ok
17:01:16.0971 1428 appdrv01 (f951c27fe54e1b2b5ada9719289b4756) C:\Windows\system32\Drivers\appdrv01.sys
17:01:16.0992 1428 appdrv01 - ok
17:01:17.0357 1428 arc (5d2888182fb46632511acee92fdad522) C:\Windows\system32\drivers\arc.sys
17:01:17.0367 1428 arc - ok
17:01:17.0715 1428 arcsas (5e2a321bd7c8b3624e41fdec3e244945) C:\Windows\system32\drivers\arcsas.sys
17:01:17.0718 1428 arcsas - ok
17:01:18.0265 1428 AsyncMac (53b202abee6455406254444303e87be1) C:\Windows\system32\DRIVERS\asyncmac.sys
17:01:18.0420 1428 AsyncMac - ok
17:01:18.0651 1428 atapi (2d9c903dc76a66813d350a562de40ed9) C:\Windows\system32\drivers\atapi.sys
17:01:18.0651 1428 atapi - ok
17:01:19.0071 1428 athr (8be56f8300e1c37b578da23c71816b7a) C:\Windows\system32\DRIVERS\athr.sys
17:01:19.0124 1428 athr - ok
17:01:19.0667 1428 avgio (f1d43170fdd7399ee17ea32d4f868b0c) C:\Program Files\Avira\AntiVir Desktop\avgio.sys
17:01:19.0667 1428 avgio - ok
17:01:19.0909 1428 avgntflt (14fe36d8f2c6a2435275338d061a0b66) C:\Windows\system32\DRIVERS\avgntflt.sys
17:01:19.0910 1428 avgntflt - ok
17:01:20.0351 1428 avipbb (ad9bd66a862116e79cb45bb6be46055f) C:\Windows\system32\DRIVERS\avipbb.sys
17:01:20.0352 1428 avipbb - ok
17:01:20.0790 1428 b57nd60x (7d0f2bfa273831124fa08526af48af18) C:\Windows\system32\DRIVERS\b57nd60x.sys
17:01:20.0792 1428 b57nd60x - ok
17:01:20.0985 1428 BDASwCap (9347a2ddee501c242a8e21990279d688) C:\Windows\system32\drivers\AVerA310Cap.sys
17:01:20.0999 1428 BDASwCap - ok
17:01:21.0056 1428 Beep (67e506b75bd5326a3ec7b70bd014dfb6) C:\Windows\system32\drivers\Beep.sys
17:01:21.0057 1428 Beep - ok
17:01:21.0530 1428 blbdrive (d4df28447741fd3d953526e33a617397) C:\Windows\system32\drivers\blbdrive.sys
17:01:21.0531 1428 blbdrive - ok
17:01:21.0896 1428 bowser (8153396d5551276227fa146900f734e6) C:\Windows\system32\DRIVERS\bowser.sys
17:01:21.0897 1428 bowser - ok
17:01:22.0210 1428 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\drivers\brfiltlo.sys
17:01:22.0223 1428 BrFiltLo - ok
17:01:22.0732 1428 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\drivers\brfiltup.sys
17:01:22.0744 1428 BrFiltUp - ok
17:01:23.0007 1428 Brserid (b304e75cff293029eddf094246747113) C:\Windows\system32\drivers\brserid.sys
17:01:23.0008 1428 Brserid - ok
17:01:23.0390 1428 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\system32\drivers\brserwdm.sys
17:01:23.0391 1428 BrSerWdm - ok
17:01:23.0634 1428 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\system32\drivers\brusbmdm.sys
17:01:23.0634 1428 BrUsbMdm - ok
17:01:23.0880 1428 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\system32\drivers\brusbser.sys
17:01:23.0894 1428 BrUsbSer - ok
17:01:24.0310 1428 BTHMODEM (ad07c1ec6665b8b35741ab91200c6b68) C:\Windows\system32\drivers\bthmodem.sys
17:01:24.0311 1428 BTHMODEM - ok
17:01:24.0615 1428 cdfs (7add03e75beb9e6dd102c3081d29840a) C:\Windows\system32\DRIVERS\cdfs.sys
17:01:24.0616 1428 cdfs - ok
17:01:24.0850 1428 cdrom (1ec25cea0de6ac4718bf89f9e1778b57) C:\Windows\system32\DRIVERS\cdrom.sys
17:01:24.0851 1428 cdrom - ok
17:01:24.0927 1428 circlass (e5d4133f37219dbcfe102bc61072589d) C:\Windows\system32\DRIVERS\circlass.sys
17:01:24.0928 1428 circlass - ok
17:01:25.0104 1428 CLFS (465745561c832b29f7c48b488aab3842) C:\Windows\system32\CLFS.sys
17:01:25.0109 1428 CLFS - ok
17:01:25.0410 1428 CmBatt (99afc3795b58cc478fbbbcdc658fcb56) C:\Windows\system32\DRIVERS\CmBatt.sys
17:01:25.0425 1428 CmBatt - ok
17:01:25.0530 1428 cmdide (0ca25e686a4928484e9fdabd168ab629) C:\Windows\system32\drivers\cmdide.sys
17:01:25.0531 1428 cmdide - ok
17:01:25.0743 1428 Compbatt (6afef0b60fa25de07c0968983ee4f60a) C:\Windows\system32\DRIVERS\compbatt.sys
17:01:25.0743 1428 Compbatt - ok
17:01:25.0880 1428 crcdisk (741e9dff4f42d2d8477d0fc1dc0df871) C:\Windows\system32\drivers\crcdisk.sys
17:01:25.0881 1428 crcdisk - ok
17:01:26.0335 1428 Crusoe (1f07becdca750766a96cda811ba86410) C:\Windows\system32\drivers\crusoe.sys
17:01:26.0364 1428 Crusoe - ok
17:01:26.0588 1428 DfsC (a3e9fa213f443ac77c7746119d13feec) C:\Windows\system32\Drivers\dfsc.sys
17:01:26.0588 1428 DfsC - ok
17:01:26.0889 1428 disk (64109e623abd6955c8fb110b592e68b7) C:\Windows\system32\drivers\disk.sys
17:01:26.0915 1428 disk - ok
17:01:27.0458 1428 DKbFltr (73baf270d24fe726b9cd7f80bb17a23d) C:\Windows\system32\DRIVERS\DKbFltr.sys
17:01:27.0458 1428 DKbFltr - ok
17:01:27.0758 1428 Dot4 (4f59c172c094e1a1d46463a8dc061cbd) C:\Windows\system32\DRIVERS\Dot4.sys
17:01:27.0759 1428 Dot4 - ok
17:01:27.0976 1428 Dot4Print (80bf3ba09f6f2523c8f6b7cc6dbf7bd5) C:\Windows\system32\DRIVERS\Dot4Prt.sys
17:01:27.0977 1428 Dot4Print - ok
17:01:28.0247 1428 dot4usb (c55004ca6b419b6695970dfe849b122f) C:\Windows\system32\DRIVERS\dot4usb.sys
17:01:28.0248 1428 dot4usb - ok
17:01:28.0519 1428 drmkaud (97fef831ab90bee128c9af390e243f80) C:\Windows\system32\drivers\drmkaud.sys
17:01:28.0520 1428 drmkaud - ok
17:01:29.0016 1428 DXGKrnl (85f33880b8cfb554bd3d9ccdb486845a) C:\Windows\System32\drivers\dxgkrnl.sys
17:01:29.0020 1428 DXGKrnl - ok
17:01:29.0289 1428 E1G60 (5425f74ac0c1dbd96a1e04f17d63f94c) C:\Windows\system32\DRIVERS\E1G60I32.sys
17:01:29.0290 1428 E1G60 - ok
17:01:29.0706 1428 Ecache (dd2cd259d83d8b72c02c5f2331ff9d68) C:\Windows\system32\drivers\ecache.sys
17:01:29.0707 1428 Ecache - ok
17:01:30.0055 1428 elxstor (23b62471681a124889978f6295b3f4c6) C:\Windows\system32\drivers\elxstor.sys
17:01:30.0115 1428 elxstor - ok
17:01:30.0398 1428 ErrDev (3db974f3935483555d7148663f726c61) C:\Windows\system32\drivers\errdev.sys
17:01:30.0399 1428 ErrDev - ok
17:01:30.0791 1428 exfat (0d858eb20589a34efb25695acaa6aa2d) C:\Windows\system32\drivers\exfat.sys
17:01:30.0809 1428 exfat - ok
17:01:31.0118 1428 fastfat (3c489390c2e2064563727752af8eab9e) C:\Windows\system32\drivers\fastfat.sys
17:01:31.0130 1428 fastfat - ok
17:01:31.0369 1428 fdc (afe1e8b9782a0dd7fb46bbd88e43f89a) C:\Windows\system32\DRIVERS\fdc.sys
17:01:31.0384 1428 fdc - ok
17:01:31.0437 1428 FileInfo (a8c0139a884861e3aae9cfe73b208a9f) C:\Windows\system32\drivers\fileinfo.sys
17:01:31.0438 1428 FileInfo - ok
17:01:31.0571 1428 Filetrace (0ae429a696aecbc5970e3cf2c62635ae) C:\Windows\system32\drivers\filetrace.sys
17:01:31.0572 1428 Filetrace - ok
17:01:31.0909 1428 flpydisk (85b7cf99d532820495d68d747fda9ebd) C:\Windows\system32\DRIVERS\flpydisk.sys
17:01:31.0910 1428 flpydisk - ok
17:01:32.0019 1428 FltMgr (05ea53afe985443011e36dab07343b46) C:\Windows\system32\drivers\fltmgr.sys
17:01:32.0020 1428 FltMgr - ok
17:01:32.0244 1428 Fs_Rec (65ea8b77b5851854f0c55c43fa51a198) C:\Windows\system32\drivers\Fs_Rec.sys
17:01:32.0245 1428 Fs_Rec - ok
17:01:32.0337 1428 gagp30kx (34582a6e6573d54a07ece5fe24a126b5) C:\Windows\system32\drivers\gagp30kx.sys
17:01:32.0348 1428 gagp30kx - ok
17:01:32.0645 1428 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
17:01:32.0646 1428 GEARAspiWDM - ok
17:01:33.0311 1428 HdAudAddService (cb04c744be0a61b1d648faed182c3b59) C:\Windows\system32\drivers\HdAudio.sys
17:01:33.0351 1428 HdAudAddService - ok
17:01:33.0580 1428 HDAudBus (c87b1ee051c0464491c1a7b03fa0bc99) C:\Windows\system32\DRIVERS\HDAudBus.sys
17:01:33.0581 1428 HDAudBus - ok
17:01:33.0900 1428 HidBth (1338520e78d90154ed6be8f84de5fceb) C:\Windows\system32\drivers\hidbth.sys
17:01:33.0911 1428 HidBth - ok
17:01:34.0309 1428 HidIr (d8df3722d5e961baa1292aa2f12827e2) C:\Windows\system32\DRIVERS\hidir.sys
17:01:34.0317 1428 HidIr - ok
17:01:34.0732 1428 HidUsb (854ca287ab7faf949617a788306d967e) C:\Windows\system32\DRIVERS\hidusb.sys
17:01:34.0750 1428 HidUsb - ok
17:01:35.0002 1428 HpCISSs (16ee7b23a009e00d835cdb79574a91a6) C:\Windows\system32\drivers\hpcisss.sys
17:01:35.0029 1428 HpCISSs - ok
17:01:35.0669 1428 HTTP (96e241624c71211a79c84f50a8e71cab) C:\Windows\system32\drivers\HTTP.sys
17:01:35.0672 1428 HTTP - ok
17:01:36.0032 1428 i2omp (c6b032d69650985468160fc9937cf5b4) C:\Windows\system32\drivers\i2omp.sys
17:01:36.0034 1428 i2omp - ok
17:01:36.0426 1428 i8042prt (22d56c8184586b7a1f6fa60be5f5a2bd) C:\Windows\system32\DRIVERS\i8042prt.sys
17:01:36.0441 1428 i8042prt - ok
17:01:36.0847 1428 iaStor (707c1692214b1c290271067197f075f6) C:\Windows\system32\DRIVERS\iaStor.sys
17:01:36.0849 1428 iaStor - ok
17:01:37.0193 1428 iaStorV (54155ea1b0df185878e0fc9ec3ac3a14) C:\Windows\system32\drivers\iastorv.sys
17:01:37.0211 1428 iaStorV - ok
17:01:37.0479 1428 iirsp (2d077bf86e843f901d8db709c95b49a5) C:\Windows\system32\drivers\iirsp.sys
17:01:37.0480 1428 iirsp - ok
17:01:37.0928 1428 int15 (c6e5276c00ebdeb096bb5ef4b797d1b6) C:\Windows\system32\drivers\int15.sys
17:01:37.0929 1428 int15 - ok
17:01:38.0568 1428 IntcAzAudAddService (3cfa12fefea751dae7b8133a6ef3c0d9) C:\Windows\system32\drivers\RTKVHDA.sys
17:01:38.0581 1428 IntcAzAudAddService - ok
17:01:38.0749 1428 intelide (83aa759f3189e6370c30de5dc5590718) C:\Windows\system32\drivers\intelide.sys
17:01:38.0763 1428 intelide - ok
17:01:38.0859 1428 intelppm (224191001e78c89dfa78924c3ea595ff) C:\Windows\system32\DRIVERS\intelppm.sys
17:01:38.0860 1428 intelppm - ok
17:01:39.0136 1428 IpFilterDriver (62c265c38769b864cb25b4bcf62df6c3) C:\Windows\system32\DRIVERS\ipfltdrv.sys
17:01:39.0136 1428 IpFilterDriver - ok
17:01:39.0195 1428 IpInIp - ok
17:01:39.0440 1428 IPMIDRV (b25aaf203552b7b3491139d582b39ad1) C:\Windows\system32\drivers\ipmidrv.sys
17:01:39.0441 1428 IPMIDRV - ok
17:01:39.0743 1428 IPNAT (8793643a67b42cec66490b2a0cf92d68) C:\Windows\system32\DRIVERS\ipnat.sys
17:01:39.0744 1428 IPNAT - ok
17:01:40.0000 1428 IRENUM (109c0dfb82c3632fbd11949b73aeeac9) C:\Windows\system32\drivers\irenum.sys
17:01:40.0001 1428 IRENUM - ok
17:01:40.0123 1428 isapnp (6c70698a3e5c4376c6ab5c7c17fb0614) C:\Windows\system32\drivers\isapnp.sys
17:01:40.0124 1428 isapnp - ok
17:01:40.0314 1428 iScsiPrt (f247eec28317f6c739c16de420097301) C:\Windows\system32\DRIVERS\msiscsi.sys
17:01:40.0315 1428 iScsiPrt - ok
17:01:40.0557 1428 iteatapi (bced60d16156e428f8df8cf27b0df150) C:\Windows\system32\drivers\iteatapi.sys
17:01:40.0558 1428 iteatapi - ok
17:01:40.0713 1428 iteraid (06fa654504a498c30adca8bec4e87e7e) C:\Windows\system32\drivers\iteraid.sys
17:01:40.0714 1428 iteraid - ok
17:01:40.0870 1428 JMCR (858c550ebbd243826a2193262c1b54a3) C:\Windows\system32\DRIVERS\jmcr.sys
17:01:40.0871 1428 JMCR - ok
17:01:40.0999 1428 kbdclass (37605e0a8cf00cbba538e753e4344c6e) C:\Windows\system32\DRIVERS\kbdclass.sys
17:01:41.0000 1428 kbdclass - ok
17:01:41.0220 1428 kbdhid (18247836959ba67e3511b62846b9c2e0) C:\Windows\system32\DRIVERS\kbdhid.sys
17:01:41.0222 1428 kbdhid - ok
17:01:41.0682 1428 KSecDD (7a0cf7908b6824d6a2a1d313e5ae3dca) C:\Windows\system32\Drivers\ksecdd.sys
17:01:41.0685 1428 KSecDD - ok
17:01:41.0990 1428 lltdio (d1c5883087a0c3f1344d9d55a44901f6) C:\Windows\system32\DRIVERS\lltdio.sys
17:01:41.0991 1428 lltdio - ok
17:01:42.0250 1428 LSI_FC (c7e15e82879bf3235b559563d4185365) C:\Windows\system32\drivers\lsi_fc.sys
17:01:42.0251 1428 LSI_FC - ok
17:01:42.0418 1428 LSI_SAS (ee01ebae8c9bf0fa072e0ff68718920a) C:\Windows\system32\drivers\lsi_sas.sys
17:01:42.0419 1428 LSI_SAS - ok
17:01:42.0653 1428 LSI_SCSI (912a04696e9ca30146a62afa1463dd5c) C:\Windows\system32\drivers\lsi_scsi.sys
17:01:42.0654 1428 LSI_SCSI - ok
17:01:42.0897 1428 luafv (8f5c7426567798e62a3b3614965d62cc) C:\Windows\system32\drivers\luafv.sys
17:01:42.0898 1428 luafv - ok
17:01:43.0031 1428 MBAMSwissArmy - ok
17:01:43.0721 1428 megasas (0001ce609d66632fa17b84705f658879) C:\Windows\system32\drivers\megasas.sys
17:01:43.0723 1428 megasas - ok
17:01:44.0086 1428 MegaSR (c252f32cd9a49dbfc25ecf26ebd51a99) C:\Windows\system32\drivers\megasr.sys
17:01:44.0088 1428 MegaSR - ok
17:01:44.0344 1428 mfeavfk (26653763d99ea717fc9e069f6be6771e) C:\Windows\system32\drivers\mfeavfk.sys
17:01:44.0345 1428 mfeavfk - ok
17:01:44.0772 1428 mfebopk (e65ce1279f2c1fd9bd81184ceb7f5468) C:\Windows\system32\drivers\mfebopk.sys
17:01:44.0772 1428 mfebopk - ok
17:01:44.0893 1428 mfehidk (f817bfca67475cf04925ece4fcf9c3c0) C:\Windows\system32\drivers\mfehidk.sys
17:01:44.0895 1428 mfehidk - ok
17:01:45.0250 1428 mferkdk (fe03be0b990983a08a33389c00636175) C:\Windows\system32\drivers\mferkdk.sys
17:01:45.0250 1428 mferkdk - ok
17:01:45.0480 1428 mfesmfk (9c73aca963ad8883b9fc44b410e70b71) C:\Windows\system32\drivers\mfesmfk.sys
17:01:45.0481 1428 mfesmfk - ok
17:01:45.0748 1428 Modem (e13b5ea0f51ba5b1512ec671393d09ba) C:\Windows\system32\drivers\modem.sys
17:01:45.0749 1428 Modem - ok
17:01:46.0350 1428 monitor (0a9bb33b56e294f686abb7c1e4e2d8a8) C:\Windows\system32\DRIVERS\monitor.sys
17:01:46.0351 1428 monitor - ok
17:01:46.0754 1428 mouclass (5bf6a1326a335c5298477754a506d263) C:\Windows\system32\DRIVERS\mouclass.sys
17:01:46.0754 1428 mouclass - ok
17:01:47.0188 1428 mouhid (93b8d4869e12cfbe663915502900876f) C:\Windows\system32\DRIVERS\mouhid.sys
17:01:47.0204 1428 mouhid - ok
17:01:47.0616 1428 MountMgr (bdafc88aa6b92f7842416ea6a48e1600) C:\Windows\system32\drivers\mountmgr.sys
17:01:47.0617 1428 MountMgr - ok
17:01:47.0934 1428 MPFP (447d50511a7aac23d4cbbe527e1ff1f2) C:\Windows\system32\Drivers\Mpfp.sys
17:01:47.0936 1428 MPFP - ok
17:01:48.0321 1428 mpio (511d011289755dd9f9a7579fb0b064e6) C:\Windows\system32\drivers\mpio.sys
17:01:48.0322 1428 mpio - ok
17:01:48.0720 1428 mpsdrv (22241feba9b2defa669c8cb0a8dd7d2e) C:\Windows\system32\drivers\mpsdrv.sys
17:01:48.0721 1428 mpsdrv - ok
17:01:49.0110 1428 Mraid35x (4fbbb70d30fd20ec51f80061703b001e) C:\Windows\system32\drivers\mraid35x.sys
17:01:49.0138 1428 Mraid35x - ok
17:01:49.0492 1428 MRxDAV (ae3de84536b6799d2267443cec8edbb9) C:\Windows\system32\drivers\mrxdav.sys
17:01:49.0493 1428 MRxDAV - ok
17:01:49.0933 1428 mrxsmb (5734a0f2be7e495f7d3ed6efd4b9f5a1) C:\Windows\system32\DRIVERS\mrxsmb.sys
17:01:49.0934 1428 mrxsmb - ok
17:01:50.0282 1428 mrxsmb10 (6b5fa5adfacac9dbbe0991f4566d7d55) C:\Windows\system32\DRIVERS\mrxsmb10.sys
17:01:50.0284 1428 mrxsmb10 - ok
17:01:50.0717 1428 mrxsmb20 (5c80d8159181c7abf1b14ba703b01e0b) C:\Windows\system32\DRIVERS\mrxsmb20.sys
17:01:50.0717 1428 mrxsmb20 - ok
17:01:51.0231 1428 msahci (28023e86f17001f7cd9b15a5bc9ae07d) C:\Windows\system32\drivers\msahci.sys
17:01:51.0231 1428 msahci - ok
17:01:51.0580 1428 msdsm (4468b0f385a86ecddaf8d3ca662ec0e7) C:\Windows\system32\drivers\msdsm.sys
17:01:51.0581 1428 msdsm - ok
17:01:51.0904 1428 Msfs (a9927f4a46b816c92f461acb90cf8515) C:\Windows\system32\drivers\Msfs.sys
17:01:51.0916 1428 Msfs - ok
17:01:52.0092 1428 msisadrv (0f400e306f385c56317357d6dea56f62) C:\Windows\system32\drivers\msisadrv.sys
17:01:52.0092 1428 msisadrv - ok
17:01:52.0402 1428 MSKSSRV (d8c63d34d9c9e56c059e24ec7185cc07) C:\Windows\system32\drivers\MSKSSRV.sys
17:01:52.0404 1428 MSKSSRV - ok
17:01:52.0872 1428 MSPCLOCK (1d373c90d62ddb641d50e55b9e78d65e) C:\Windows\system32\drivers\MSPCLOCK.sys
17:01:52.0873 1428 MSPCLOCK - ok
17:01:53.0266 1428 MSPQM (b572da05bf4e098d4bba3a4734fb505b) C:\Windows\system32\drivers\MSPQM.sys
17:01:53.0267 1428 MSPQM - ok
17:01:53.0597 1428 MsRPC (b5614aecb05a9340aa0fb55bf561cc63) C:\Windows\system32\drivers\MsRPC.sys
17:01:53.0610 1428 MsRPC - ok
17:01:53.0899 1428 mssmbios (e384487cb84be41d09711c30ca79646c) C:\Windows\system32\DRIVERS\mssmbios.sys
17:01:53.0899 1428 mssmbios - ok
17:01:54.0274 1428 MSTEE (7199c1eec1e4993caf96b8c0a26bd58a) C:\Windows\system32\drivers\MSTEE.sys
17:01:54.0274 1428 MSTEE - ok
17:01:54.0518 1428 Mup (6dfd1d322de55b0b7db7d21b90bec49c) C:\Windows\system32\Drivers\mup.sys
17:01:54.0519 1428 Mup - ok
17:01:55.0097 1428 NativeWifiP (3c21ce48ff529bb73dadb98770b54025) C:\Windows\system32\DRIVERS\nwifi.sys
17:01:55.0098 1428 NativeWifiP - ok
17:01:55.0344 1428 NDIS (9bdc71790fa08f0a0b5f10462b1bd0b1) C:\Windows\system32\drivers\ndis.sys
17:01:55.0347 1428 NDIS - ok
17:01:55.0581 1428 NdisTapi (0e186e90404980569fb449ba7519ae61) C:\Windows\system32\DRIVERS\ndistapi.sys
17:01:55.0582 1428 NdisTapi - ok
17:01:55.0841 1428 Ndisuio (d6973aa34c4d5d76c0430b181c3cd389) C:\Windows\system32\DRIVERS\ndisuio.sys
17:01:55.0842 1428 Ndisuio - ok
17:01:56.0150 1428 NdisWan (3d14c3b3496f88890d431e8aa022a411) C:\Windows\system32\DRIVERS\ndiswan.sys
17:01:56.0151 1428 NdisWan - ok
17:01:56.0265 1428 NDProxy (71dab552b41936358f3b541ae5997fb3) C:\Windows\system32\drivers\NDProxy.sys
17:01:56.0267 1428 NDProxy - ok
17:01:56.0721 1428 NetBIOS (bcd093a5a6777cf626434568dc7dba78) C:\Windows\system32\DRIVERS\netbios.sys
17:01:56.0722 1428 NetBIOS - ok
17:01:57.0010 1428 netbt (7c5fee5b1c5728507cd96fb4a13e7a02) C:\Windows\system32\DRIVERS\netbt.sys
17:01:57.0012 1428 netbt - ok
17:01:58.0153 1428 NETw5v32 (e559ea9138c77b5d1fda8c558764a25f) C:\Windows\system32\DRIVERS\NETw5v32.sys
17:01:59.0328 1428 NETw5v32 - ok
17:02:01.0873 1428 nfrd960 (2e7fb731d4790a1bc6270accefacb36e) C:\Windows\system32\drivers\nfrd960.sys
17:02:01.0891 1428 nfrd960 - ok
17:02:02.0225 1428 Npfs (ecb5003f484f9ed6c608d6d6c7886cbb) C:\Windows\system32\drivers\Npfs.sys
17:02:02.0236 1428 Npfs - ok
17:02:02.0611 1428 nsiproxy (609773e344a97410ce4ebf74a8914fcf) C:\Windows\system32\drivers\nsiproxy.sys
17:02:02.0612 1428 nsiproxy - ok
17:02:03.0187 1428 Ntfs (b4effe29eb4f15538fd8a9681108492d) C:\Windows\system32\drivers\Ntfs.sys
17:02:03.0405 1428 Ntfs - ok
17:02:03.0678 1428 NTIDrvr (2757d2ba59aee155209e24942ab127c9) C:\Windows\system32\DRIVERS\NTIDrvr.sys
17:02:03.0678 1428 NTIDrvr - ok
17:02:03.0872 1428 NTIPPKernel (547bfa3591c70674b0bfc99354ab78b3) C:\Program Files\Acer Arcade Deluxe\HomeMedia\Kernel\DMP\NTIPPKernel.sys
17:02:03.0875 1428 NTIPPKernel - ok
17:02:04.0096 1428 ntrigdigi (e875c093aec0c978a90f30c9e0dfbb72) C:\Windows\system32\drivers\ntrigdigi.sys
17:02:04.0114 1428 ntrigdigi - ok
17:02:04.0371 1428 Null (c5dbbcda07d780bda9b685df333bb41e) C:\Windows\system32\drivers\Null.sys
17:02:04.0384 1428 Null - ok
17:02:04.0984 1428 NVHDA (2c7ac27710e8d41c1eb7d1599187d237) C:\Windows\system32\drivers\nvhda32v.sys
17:02:04.0985 1428 NVHDA - ok
17:02:05.0807 1428 nvlddmkm (cb0d6f8f65b8766ff2aaaa78881fd9f8) C:\Windows\system32\DRIVERS\nvlddmkm.sys
17:02:07.0238 1428 nvlddmkm - ok
17:02:07.0543 1428 nvraid (2edf9e7751554b42cbb60116de727101) C:\Windows\system32\drivers\nvraid.sys
17:02:07.0544 1428 nvraid - ok
17:02:08.0043 1428 nvstor (abed0c09758d1d97db0042dbb2688177) C:\Windows\system32\drivers\nvstor.sys
17:02:08.0044 1428 nvstor - ok
17:02:08.0268 1428 nv_agp (18bbdf913916b71bd54575bdb6eeac0b) C:\Windows\system32\drivers\nv_agp.sys
17:02:08.0269 1428 nv_agp - ok
17:02:08.0379 1428 NwlnkFlt - ok
17:02:08.0599 1428 NwlnkFwd - ok
17:02:08.0873 1428 ohci1394 (be32da025a0be1878f0ee8d6d9386cd5) C:\Windows\system32\drivers\ohci1394.sys
17:02:08.0874 1428 ohci1394 - ok
17:02:09.0142 1428 Parport (0fa9b5055484649d63c303fe404e5f4d) C:\Windows\system32\drivers\parport.sys
17:02:09.0143 1428 Parport - ok
17:02:09.0305 1428 partmgr (3b38467e7c3daed009dfe359e17f139f) C:\Windows\system32\drivers\partmgr.sys
17:02:09.0306 1428 partmgr - ok
17:02:09.0488 1428 Parvdm (4f9a6a8a31413180d0fcb279ad5d8112) C:\Windows\system32\drivers\parvdm.sys
17:02:09.0488 1428 Parvdm - ok
17:02:09.0892 1428 pci (01b94418deb235dff777cc80076354b4) C:\Windows\system32\drivers\pci.sys
17:02:09.0895 1428 pci - ok
17:02:10.0102 1428 pciide (fc175f5ddab666d7f4d17449a547626f) C:\Windows\system32\drivers\pciide.sys
17:02:10.0102 1428 pciide - ok
17:02:10.0353 1428 pcmcia (e6f3fb1b86aa519e7698ad05e58b04e5) C:\Windows\system32\drivers\pcmcia.sys
17:02:10.0354 1428 pcmcia - ok
17:02:10.0769 1428 PEAUTH (6349f6ed9c623b44b52ea3c63c831a92) C:\Windows\system32\drivers\peauth.sys
17:02:10.0775 1428 PEAUTH - ok
17:02:11.0173 1428 PptpMiniport (ecfffaec0c1ecd8dbc77f39070ea1db1) C:\Windows\system32\DRIVERS\raspptp.sys
17:02:11.0174 1428 PptpMiniport - ok
17:02:11.0405 1428 Processor (2027293619dd0f047c584cf2e7df4ffd) C:\Windows\system32\drivers\processr.sys
17:02:11.0406 1428 Processor - ok
17:02:11.0722 1428 PSched (bfef604508a0ed1eae2a73e872555ffb) C:\Windows\system32\DRIVERS\pacer.sys
17:02:11.0722 1428 PSched - ok
17:02:12.0003 1428 PSDFilter (ab94285ff6c6bc5433407d8d182a4bb4) C:\Windows\system32\DRIVERS\psdfilter.sys
17:02:12.0004 1428 PSDFilter - ok
17:02:12.0493 1428 PSDNServ (2aaf9a5d7a63d26bfaea853c5f2292bc) C:\Windows\system32\DRIVERS\PSDNServ.sys
17:02:12.0494 1428 PSDNServ - ok
17:02:12.0657 1428 psdvdisk (0eb8cec99855beae5b0d02c2302619ef) C:\Windows\system32\DRIVERS\PSDVdisk.sys
17:02:12.0658 1428 psdvdisk - ok
17:02:12.0991 1428 ql2300 (0a6db55afb7820c99aa1f3a1d270f4f6) C:\Windows\system32\drivers\ql2300.sys
17:02:12.0998 1428 ql2300 - ok
17:02:13.0388 1428 ql40xx (81a7e5c076e59995d54bc1ed3a16e60b) C:\Windows\system32\drivers\ql40xx.sys
17:02:13.0389 1428 ql40xx - ok
17:02:13.0496 1428 QWAVEdrv (9f5e0e1926014d17486901c88eca2db7) C:\Windows\system32\drivers\qwavedrv.sys
17:02:13.0506 1428 QWAVEdrv - ok
17:02:13.0744 1428 RasAcd (147d7f9c556d259924351feb0de606c3) C:\Windows\system32\DRIVERS\rasacd.sys
17:02:13.0744 1428 RasAcd - ok
17:02:14.0214 1428 Rasl2tp (a214adbaf4cb47dd2728859ef31f26b0) C:\Windows\system32\DRIVERS\rasl2tp.sys
17:02:14.0215 1428 Rasl2tp - ok
17:02:14.0753 1428 RasPppoe (3e9d9b048107b40d87b97df2e48e0744) C:\Windows\system32\DRIVERS\raspppoe.sys
17:02:14.0754 1428 RasPppoe - ok
17:02:15.0119 1428 RasSstp (a7d141684e9500ac928a772ed8e6b671) C:\Windows\system32\DRIVERS\rassstp.sys
17:02:15.0120 1428 RasSstp - ok
17:02:15.0782 1428 rdbss (6e1c5d0457622f9ee35f683110e93d14) C:\Windows\system32\DRIVERS\rdbss.sys
17:02:15.0784 1428 rdbss - ok
17:02:16.0132 1428 RDPCDD (89e59be9a564262a3fb6c4f4f1cd9899) C:\Windows\system32\DRIVERS\RDPCDD.sys
17:02:16.0132 1428 RDPCDD - ok
17:02:16.0604 1428 rdpdr (fbc0bacd9c3d7f6956853f64a66e252d) C:\Windows\system32\drivers\rdpdr.sys
17:02:16.0606 1428 rdpdr - ok
17:02:17.0173 1428 RDPENCDD (9d91fe5286f748862ecffa05f8a0710c) C:\Windows\system32\drivers\rdpencdd.sys
17:02:17.0173 1428 RDPENCDD - ok
17:02:17.0602 1428 RDPWD (e1c18f4097a5abcec941dc4b2f99db7e) C:\Windows\system32\drivers\RDPWD.sys
17:02:17.0660 1428 RDPWD - ok
17:02:17.0948 1428 rspndr (9c508f4074a39e8b4b31d27198146fad) C:\Windows\system32\DRIVERS\rspndr.sys
17:02:17.0949 1428 rspndr - ok
17:02:18.0409 1428 sbp2port (3ce8f073a557e172b330109436984e30) C:\Windows\system32\drivers\sbp2port.sys
17:02:18.0410 1428 sbp2port - ok
17:02:18.0824 1428 sdbus (126ea89bcc413ee45e3004fb0764888f) C:\Windows\system32\DRIVERS\sdbus.sys
17:02:18.0826 1428 sdbus - ok
17:02:19.0260 1428 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
17:02:19.0273 1428 secdrv - ok
17:02:19.0447 1428 Serenum (68e44e331d46f0fb38f0863a84cd1a31) C:\Windows\system32\drivers\serenum.sys
17:02:19.0448 1428 Serenum - ok
17:02:19.0582 1428 Serial (c70d69a918b178d3c3b06339b40c2e1b) C:\Windows\system32\drivers\serial.sys
17:02:19.0585 1428 Serial - ok
17:02:19.0715 1428 sermouse (8af3d28a879bf75db53a0ee7a4289624) C:\Windows\system32\drivers\sermouse.sys
17:02:19.0716 1428 sermouse - ok
17:02:19.0894 1428 sffdisk (3efa810bdca87f6ecc24f9832243fe86) C:\Windows\system32\drivers\sffdisk.sys
17:02:19.0894 1428 sffdisk - ok
17:02:20.0360 1428 sffp_mmc (e95d451f7ea3e583aec75f3b3ee42dc5) C:\Windows\system32\drivers\sffp_mmc.sys
17:02:20.0361 1428 sffp_mmc - ok
17:02:20.0672 1428 sffp_sd (3d0ea348784b7ac9ea9bd9f317980979) C:\Windows\system32\drivers\sffp_sd.sys
17:02:20.0672 1428 sffp_sd - ok
17:02:20.0905 1428 sfloppy (46ed8e91793b2e6f848015445a0ac188) C:\Windows\system32\drivers\sfloppy.sys
17:02:20.0906 1428 sfloppy - ok
17:02:21.0251 1428 sisagp (1d76624a09a054f682d746b924e2dbc3) C:\Windows\system32\drivers\sisagp.sys
17:02:21.0252 1428 sisagp - ok
17:02:21.0496 1428 SiSRaid2 (43cb7aa756c7db280d01da9b676cfde2) C:\Windows\system32\drivers\sisraid2.sys
17:02:21.0497 1428 SiSRaid2 - ok
17:02:21.0816 1428 SiSRaid4 (a99c6c8b0baa970d8aa59ddc50b57f94) C:\Windows\system32\drivers\sisraid4.sys
17:02:21.0817 1428 SiSRaid4 - ok
17:02:22.0162 1428 Smb (031e6bcd53c9b2b9ace111eafec347b6) C:\Windows\system32\DRIVERS\smb.sys
17:02:22.0163 1428 Smb - ok
17:02:22.0380 1428 spldr (7aebdeef071fe28b0eef2cdd69102bff) C:\Windows\system32\drivers\spldr.sys
17:02:22.0381 1428 spldr - ok
17:02:22.0991 1428 srv (2252aef839b1093d16761189f45af885) C:\Windows\system32\DRIVERS\srv.sys
17:02:22.0993 1428 srv - ok
17:02:23.0313 1428 srv2 (b7ff59408034119476b00a81bb53d5d1) C:\Windows\system32\DRIVERS\srv2.sys
17:02:23.0314 1428 srv2 - ok
17:02:24.0639 1428 srvnet (2accc9b12af02030f531e6cca6f8b76e) C:\Windows\system32\DRIVERS\srvnet.sys
17:02:24.0640 1428 srvnet - ok
17:02:25.0169 1428 ssmdrv (3ad0362cf68de3ac500e981700242cca) C:\Windows\system32\DRIVERS\ssmdrv.sys
17:02:25.0169 1428 ssmdrv - ok
17:02:25.0619 1428 StillCam (ef70b3d22b4bffda6ea851ecb063efaa) C:\Windows\system32\DRIVERS\serscan.sys
17:02:25.0620 1428 StillCam - ok
17:02:26.0161 1428 swenum (7ba58ecf0c0a9a69d44b3dca62becf56) C:\Windows\system32\DRIVERS\swenum.sys
17:02:26.0162 1428 swenum - ok
17:02:26.0762 1428 Symc8xx (192aa3ac01df071b541094f251deed10) C:\Windows\system32\drivers\symc8xx.sys
17:02:26.0763 1428 Symc8xx - ok
17:02:27.0096 1428 Sym_hi (8c8eb8c76736ebaf3b13b633b2e64125) C:\Windows\system32\drivers\sym_hi.sys
17:02:27.0114 1428 Sym_hi - ok
17:02:27.0641 1428 Sym_u3 (8072af52b5fd103bbba387a1e49f62cb) C:\Windows\system32\drivers\sym_u3.sys
17:02:27.0642 1428 Sym_u3 - ok
17:02:28.0070 1428 SynTP (bf7aa84d5af0faa0978c840e63b17dbf) C:\Windows\system32\DRIVERS\SynTP.sys
17:02:28.0072 1428 SynTP - ok
17:02:28.0688 1428 Tcpip (782568ab6a43160a159b6215b70bcce9) C:\Windows\system32\drivers\tcpip.sys
17:02:28.0693 1428 Tcpip - ok
17:02:29.0388 1428 Tcpip6 (782568ab6a43160a159b6215b70bcce9) C:\Windows\system32\DRIVERS\tcpip.sys
17:02:29.0393 1428 Tcpip6 - ok
17:02:29.0709 1428 tcpipreg (d4a2e4a4b011f3a883af77315a5ae76b) C:\Windows\system32\drivers\tcpipreg.sys
17:02:29.0728 1428 tcpipreg - ok
17:02:30.0120 1428 TDPIPE (5dcf5e267be67a1ae926f2df77fbcc56) C:\Windows\system32\drivers\tdpipe.sys
17:02:30.0121 1428 TDPIPE - ok
17:02:30.0532 1428 TDTCP (389c63e32b3cefed425b61ed92d3f021) C:\Windows\system32\drivers\tdtcp.sys
17:02:30.0580 1428 TDTCP - ok
17:02:31.0077 1428 tdx (f9f309876480f1f766613b259a5f49b0) C:\Windows\system32\DRIVERS\tdx.sys
17:02:31.0080 1428 Suspicious file (Forged): C:\Windows\system32\DRIVERS\tdx.sys. Real md5: f9f309876480f1f766613b259a5f49b0, Fake md5: d09276b1fab033ce1d40dcbdf303d10f
17:02:31.0080 1428 tdx ( Rootkit.Win32.ZAccess.aml ) - infected
17:02:31.0080 1428 tdx - detected Rootkit.Win32.ZAccess.aml (0)
17:02:31.0763 1428 TermDD (a048056f5e1a96a9bf3071b91741a5aa) C:\Windows\system32\DRIVERS\termdd.sys
17:02:31.0764 1428 TermDD - ok
17:02:32.0243 1428 TrueSight (f69641efdb19acb4753b0155f7fdeed5) c:\windows\system32\drivers\TrueSight.sys
17:02:32.0245 1428 TrueSight - ok
17:02:32.0668 1428 tssecsrv (dcf0f056a2e4f52287264f5ab29cf206) C:\Windows\system32\DRIVERS\tssecsrv.sys
17:02:32.0668 1428 tssecsrv - ok
17:02:33.0061 1428 tunmp (caecc0120ac49e3d2f758b9169872d38) C:\Windows\system32\DRIVERS\tunmp.sys
17:02:33.0062 1428 tunmp - ok
17:02:33.0629 1428 tunnel (6042505ff6fa9ac1ef7684d0e03b6940) C:\Windows\system32\DRIVERS\tunnel.sys
17:02:33.0630 1428 tunnel - ok
17:02:33.0927 1428 uagp35 (7d33c4db2ce363c8518d2dfcf533941f) C:\Windows\system32\drivers\uagp35.sys
17:02:33.0928 1428 uagp35 - ok
17:02:34.0322 1428 UBHelper (f763e070843ee2803de1395002b42938) C:\Windows\system32\drivers\UBHelper.sys
17:02:34.0322 1428 UBHelper - ok
17:02:34.0715 1428 udfs (8b5088058fa1d1cd897a2113ccff6c58) C:\Windows\system32\DRIVERS\udfs.sys
17:02:34.0717 1428 udfs - ok
17:02:35.0343 1428 uliagpkx (b0acfdc9e4af279e9116c03e014b2b27) C:\Windows\system32\drivers\uliagpkx.sys
17:02:35.0344 1428 uliagpkx - ok
17:02:35.0670 1428 uliahci (9224bb254f591de4ca8d572a5f0d635c) C:\Windows\system32\drivers\uliahci.sys
17:02:35.0672 1428 uliahci - ok
17:02:36.0076 1428 UlSata (8514d0e5cd0534467c5fc61be94a569f) C:\Windows\system32\drivers\ulsata.sys
17:02:36.0077 1428 UlSata - ok
17:02:36.0375 1428 ulsata2 (38c3c6e62b157a6bc46594fada45c62b) C:\Windows\system32\drivers\ulsata2.sys
17:02:36.0377 1428 ulsata2 - ok
17:02:36.0832 1428 umbus (32cff9f809ae9aed85464492bf3e32d2) C:\Windows\system32\DRIVERS\umbus.sys
17:02:36.0833 1428 umbus - ok
17:02:37.0424 1428 USBAAPL (e8c1b9ebac65288e1b51e8a987d98af6) C:\Windows\system32\Drivers\usbaapl.sys
17:02:37.0425 1428 USBAAPL - ok
17:02:37.0782 1428 usbaudio (292a25bb75a568ae2c67169ba2c6365a) C:\Windows\system32\drivers\usbaudio.sys
17:02:37.0783 1428 usbaudio - ok
17:02:38.0277 1428 usbccgp (a7cd5b4adea26765cab06bdab7b07b13) C:\Windows\system32\DRIVERS\usbccgp.sys
17:02:38.0278 1428 usbccgp - ok
17:02:38.0555 1428 usbcir (e9476e6c486e76bc4898074768fb7131) C:\Windows\system32\drivers\usbcir.sys
17:02:38.0555 1428 usbcir - ok
17:02:39.0314 1428 usbehci (686d4188ae36254c3008b71fedacadf3) C:\Windows\system32\DRIVERS\usbehci.sys
17:02:39.0315 1428 usbehci - ok
17:02:39.0652 1428 usbhub (4e42f665a658f08d153f7fffe7c83806) C:\Windows\system32\DRIVERS\usbhub.sys
17:02:39.0654 1428 usbhub - ok
17:02:39.0972 1428 usbohci (38dbc7dd6cc5a72011f187425384388b) C:\Windows\system32\drivers\usbohci.sys
17:02:39.0973 1428 usbohci - ok
17:02:40.0741 1428 usbprint (e75c4b5269091d15a2e7dc0b6d35f2f5) C:\Windows\system32\DRIVERS\usbprint.sys
17:02:40.0742 1428 usbprint - ok
17:02:40.0979 1428 usbscan (a508c9bd8724980512136b039bba65e9) C:\Windows\system32\DRIVERS\usbscan.sys
17:02:40.0980 1428 usbscan - ok
17:02:41.0462 1428 USBSTOR (87ba6b83c5d19b69160968d07d6e2982) C:\Windows\system32\DRIVERS\USBSTOR.SYS
17:02:41.0463 1428 USBSTOR - ok
17:02:41.0895 1428 usbuhci (40f95a3d6d50d82f947f1d167c2ec39d) C:\Windows\system32\DRIVERS\usbuhci.sys
17:02:41.0896 1428 usbuhci - ok
17:02:42.0203 1428 usbvideo (e67998e8f14cb0627a769f6530bcb352) C:\Windows\system32\Drivers\usbvideo.sys
17:02:42.0205 1428 usbvideo - ok
17:02:42.0526 1428 vga (87b06e1f30b749a114f74622d013f8d4) C:\Windows\system32\DRIVERS\vgapnp.sys
17:02:42.0527 1428 vga - ok
17:02:42.0765 1428 VgaSave (2e93ac0a1d8c79d019db6c51f036636c) C:\Windows\System32\drivers\vga.sys
17:02:42.0766 1428 VgaSave - ok
17:02:43.0166 1428 viaagp (5d7159def58a800d5781ba3a879627bc) C:\Windows\system32\drivers\viaagp.sys
17:02:43.0166 1428 viaagp - ok
17:02:43.0361 1428 ViaC7 (c4f3a691b5bad343e6249bd8c2d45dee) C:\Windows\system32\drivers\viac7.sys
17:02:43.0363 1428 ViaC7 - ok
17:02:43.0738 1428 viaide (aadf5587a4063f52c2c3fed7887426fc) C:\Windows\system32\drivers\viaide.sys
17:02:43.0739 1428 viaide - ok
17:02:43.0909 1428 volmgr (69503668ac66c77c6cd7af86fbdf8c43) C:\Windows\system32\drivers\volmgr.sys
17:02:43.0911 1428 volmgr - ok
17:02:44.0420 1428 volmgrx (98f5ffe6316bd74e9e2c97206c190196) C:\Windows\system32\drivers\volmgrx.sys
17:02:44.0423 1428 volmgrx - ok
17:02:44.0641 1428 volsnap (d8b4a53dd2769f226b3eb374374987c9) C:\Windows\system32\drivers\volsnap.sys
17:02:44.0643 1428 volsnap - ok
17:02:45.0124 1428 vsmraid (587253e09325e6bf226b299774b728a9) C:\Windows\system32\drivers\vsmraid.sys
17:02:45.0126 1428 vsmraid - ok
17:02:45.0501 1428 WacomPen (48dfee8f1af7c8235d4e626f0c4fe031) C:\Windows\system32\drivers\wacompen.sys
17:02:45.0502 1428 WacomPen - ok
17:02:45.0674 1428 Wanarp (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
17:02:45.0675 1428 Wanarp - ok
17:02:45.0712 1428 Wanarpv6 (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
17:02:45.0714 1428 Wanarpv6 - ok
17:02:45.0982 1428 Wd (78fe9542363f297b18c027b2d7e7c07f) C:\Windows\system32\drivers\wd.sys
17:02:45.0983 1428 Wd - ok
17:02:46.0330 1428 Wdf01000 (b6f0a7ad6d4bd325fbcd8bac96cd8d96) C:\Windows\system32\drivers\Wdf01000.sys
17:02:46.0334 1428 Wdf01000 - ok
17:02:46.0749 1428 winbondcir (3fa87d56769838aac82fafc3e78fc732) C:\Windows\system32\DRIVERS\winbondcir.sys
17:02:46.0750 1428 winbondcir - ok
17:02:46.0893 1428 WmiAcpi (2e7255d172df0b8283cdfb7b433b864e) C:\Windows\system32\DRIVERS\wmiacpi.sys
17:02:46.0894 1428 WmiAcpi - ok
17:02:47.0296 1428 WpdUsb (0cec23084b51b8288099eb710224e955) C:\Windows\system32\DRIVERS\wpdusb.sys
17:02:47.0297 1428 WpdUsb - ok
17:02:47.0460 1428 ws2ifsl (e3a3cb253c0ec2494d4a61f5e43a389c) C:\Windows\system32\drivers\ws2ifsl.sys
17:02:47.0461 1428 ws2ifsl - ok
17:02:47.0779 1428 WUDFRd (ac13cb789d93412106b0fb6c7eb2bcb6) C:\Windows\system32\DRIVERS\WUDFRd.sys
17:02:47.0780 1428 WUDFRd - ok
17:02:48.0098 1428 {49DE1C67-83F8-4102-99E0-C16DCC7EEC796} (4d840c6af3c020ed3a35efba9025cf4a) C:\Program Files\Acer Arcade Deluxe\PlayMovie\000.fcl
17:02:48.0099 1428 {49DE1C67-83F8-4102-99E0-C16DCC7EEC796} - ok
17:02:48.0136 1428 MBR (0x1B8) (7ba4c7ea1ef33a92f5f01be63edacb6a) \Device\Harddisk0\DR0
17:02:48.0881 1428 \Device\Harddisk0\DR0 - ok
17:02:48.0912 1428 Boot (0x1200) (33129fe872bbcd0da4b088af46bdfd8c) \Device\Harddisk0\DR0\Partition0
17:02:48.0930 1428 \Device\Harddisk0\DR0\Partition0 - ok
17:02:48.0950 1428 Boot (0x1200) (e18fdbb50e0d0fbd154f7e993f992cc6) \Device\Harddisk0\DR0\Partition1
17:02:48.0952 1428 \Device\Harddisk0\DR0\Partition1 - ok
17:02:48.0956 1428 ============================================================
17:02:48.0956 1428 Scan finished
17:02:48.0956 1428 ============================================================
17:02:48.0969 4972 Detected object count: 1
17:02:48.0969 4972 Actual detected object count: 1
17:04:40.0260 4972 Backup copy found, using it..
17:04:40.0754 4972 C:\Windows\system32\DRIVERS\tdx.sys - will be cured on reboot
17:05:24.0900 4972 C:\Windows\System32\c_96402.nls - will be deleted on reboot
17:05:27.0677 4972 tdx ( Rootkit.Win32.ZAccess.aml ) - User select action: Cure
17:05:38.0071 0156 Deinitialize success
VOILA :-)
Merci
17:00:56.0503 3092 TDSS rootkit removing tool 2.6.25.0 Dec 23 2011 14:51:16
17:00:56.0679 3092 ============================================================
17:00:56.0679 3092 Current date / time: 2011/12/27 17:00:56.0679
17:00:56.0679 3092 SystemInfo:
17:00:56.0679 3092
17:00:56.0679 3092 OS Version: 6.0.6001 ServicePack: 1.0
17:00:56.0679 3092 Product type: Workstation
17:00:56.0679 3092 ComputerName: PCKJOUX
17:00:56.0679 3092 UserName: KjouX
17:00:56.0679 3092 Windows directory: C:\Windows
17:00:56.0679 3092 System windows directory: C:\Windows
17:00:56.0679 3092 Processor architecture: Intel x86
17:00:56.0679 3092 Number of processors: 2
17:00:56.0679 3092 Page size: 0x1000
17:00:56.0679 3092 Boot type: Normal boot
17:00:56.0679 3092 ============================================================
17:00:58.0328 3092 Initialize success
17:01:01.0102 1428 ============================================================
17:01:01.0102 1428 Scan started
17:01:01.0102 1428 Mode: Manual;
17:01:01.0102 1428 ============================================================
17:01:09.0555 1428 A310 (02e1c46c34f2d2843533c4f223867930) C:\Windows\system32\DRIVERS\AVerA310USB.sys
17:01:09.0556 1428 A310 - ok
17:01:09.0739 1428 ACPI (fcb8c7210f0135e24c6580f7f649c73c) C:\Windows\system32\drivers\acpi.sys
17:01:09.0742 1428 ACPI - ok
17:01:10.0073 1428 adp94xx (04f0fcac69c7c71a3ac4eb97fafc8303) C:\Windows\system32\drivers\adp94xx.sys
17:01:10.0078 1428 adp94xx - ok
17:01:10.0415 1428 adpahci (60505e0041f7751bdbb80f88bf45c2ce) C:\Windows\system32\drivers\adpahci.sys
17:01:10.0417 1428 adpahci - ok
17:01:10.0703 1428 adpu160m (8a42779b02aec986eab64ecfc98f8bd7) C:\Windows\system32\drivers\adpu160m.sys
17:01:10.0706 1428 adpu160m - ok
17:01:10.0891 1428 adpu320 (241c9e37f8ce45ef51c3de27515ca4e5) C:\Windows\system32\drivers\adpu320.sys
17:01:10.0892 1428 adpu320 - ok
17:01:11.0281 1428 AFD (48eb99503533c27ac6135648e5474457) C:\Windows\system32\drivers\afd.sys
17:01:11.0307 1428 AFD - ok
17:01:11.0929 1428 AgereSoftModem (38325c6aa8eae011897d61ce48ec6435) C:\Windows\system32\DRIVERS\AGRSM.sys
17:01:12.0220 1428 AgereSoftModem - ok
17:01:12.0691 1428 agp440 (13f9e33747e6b41a3ff305c37db0d360) C:\Windows\system32\drivers\agp440.sys
17:01:12.0692 1428 agp440 - ok
17:01:13.0096 1428 aic78xx (ae1fdf7bf7bb6c6a70f67699d880592a) C:\Windows\system32\drivers\djsvs.sys
17:01:13.0128 1428 aic78xx - ok
17:01:13.0448 1428 aliide (9eaef5fc9b8e351afa7e78a6fae91f91) C:\Windows\system32\drivers\aliide.sys
17:01:13.0448 1428 aliide - ok
17:01:14.0099 1428 amdagp (c47344bc706e5f0b9dce369516661578) C:\Windows\system32\drivers\amdagp.sys
17:01:14.0133 1428 amdagp - ok
17:01:14.0774 1428 amdide (9b78a39a4c173fdbc1321e0dd659b34c) C:\Windows\system32\drivers\amdide.sys
17:01:15.0402 1428 amdide - ok
17:01:15.0651 1428 AmdK7 (18f29b49ad23ecee3d2a826c725c8d48) C:\Windows\system32\drivers\amdk7.sys
17:01:15.0664 1428 AmdK7 - ok
17:01:15.0949 1428 AmdK8 (93ae7f7dd54ab986a6f1a1b37be7442d) C:\Windows\system32\drivers\amdk8.sys
17:01:15.0958 1428 AmdK8 - ok
17:01:16.0971 1428 appdrv01 (f951c27fe54e1b2b5ada9719289b4756) C:\Windows\system32\Drivers\appdrv01.sys
17:01:16.0992 1428 appdrv01 - ok
17:01:17.0357 1428 arc (5d2888182fb46632511acee92fdad522) C:\Windows\system32\drivers\arc.sys
17:01:17.0367 1428 arc - ok
17:01:17.0715 1428 arcsas (5e2a321bd7c8b3624e41fdec3e244945) C:\Windows\system32\drivers\arcsas.sys
17:01:17.0718 1428 arcsas - ok
17:01:18.0265 1428 AsyncMac (53b202abee6455406254444303e87be1) C:\Windows\system32\DRIVERS\asyncmac.sys
17:01:18.0420 1428 AsyncMac - ok
17:01:18.0651 1428 atapi (2d9c903dc76a66813d350a562de40ed9) C:\Windows\system32\drivers\atapi.sys
17:01:18.0651 1428 atapi - ok
17:01:19.0071 1428 athr (8be56f8300e1c37b578da23c71816b7a) C:\Windows\system32\DRIVERS\athr.sys
17:01:19.0124 1428 athr - ok
17:01:19.0667 1428 avgio (f1d43170fdd7399ee17ea32d4f868b0c) C:\Program Files\Avira\AntiVir Desktop\avgio.sys
17:01:19.0667 1428 avgio - ok
17:01:19.0909 1428 avgntflt (14fe36d8f2c6a2435275338d061a0b66) C:\Windows\system32\DRIVERS\avgntflt.sys
17:01:19.0910 1428 avgntflt - ok
17:01:20.0351 1428 avipbb (ad9bd66a862116e79cb45bb6be46055f) C:\Windows\system32\DRIVERS\avipbb.sys
17:01:20.0352 1428 avipbb - ok
17:01:20.0790 1428 b57nd60x (7d0f2bfa273831124fa08526af48af18) C:\Windows\system32\DRIVERS\b57nd60x.sys
17:01:20.0792 1428 b57nd60x - ok
17:01:20.0985 1428 BDASwCap (9347a2ddee501c242a8e21990279d688) C:\Windows\system32\drivers\AVerA310Cap.sys
17:01:20.0999 1428 BDASwCap - ok
17:01:21.0056 1428 Beep (67e506b75bd5326a3ec7b70bd014dfb6) C:\Windows\system32\drivers\Beep.sys
17:01:21.0057 1428 Beep - ok
17:01:21.0530 1428 blbdrive (d4df28447741fd3d953526e33a617397) C:\Windows\system32\drivers\blbdrive.sys
17:01:21.0531 1428 blbdrive - ok
17:01:21.0896 1428 bowser (8153396d5551276227fa146900f734e6) C:\Windows\system32\DRIVERS\bowser.sys
17:01:21.0897 1428 bowser - ok
17:01:22.0210 1428 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\drivers\brfiltlo.sys
17:01:22.0223 1428 BrFiltLo - ok
17:01:22.0732 1428 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\drivers\brfiltup.sys
17:01:22.0744 1428 BrFiltUp - ok
17:01:23.0007 1428 Brserid (b304e75cff293029eddf094246747113) C:\Windows\system32\drivers\brserid.sys
17:01:23.0008 1428 Brserid - ok
17:01:23.0390 1428 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\system32\drivers\brserwdm.sys
17:01:23.0391 1428 BrSerWdm - ok
17:01:23.0634 1428 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\system32\drivers\brusbmdm.sys
17:01:23.0634 1428 BrUsbMdm - ok
17:01:23.0880 1428 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\system32\drivers\brusbser.sys
17:01:23.0894 1428 BrUsbSer - ok
17:01:24.0310 1428 BTHMODEM (ad07c1ec6665b8b35741ab91200c6b68) C:\Windows\system32\drivers\bthmodem.sys
17:01:24.0311 1428 BTHMODEM - ok
17:01:24.0615 1428 cdfs (7add03e75beb9e6dd102c3081d29840a) C:\Windows\system32\DRIVERS\cdfs.sys
17:01:24.0616 1428 cdfs - ok
17:01:24.0850 1428 cdrom (1ec25cea0de6ac4718bf89f9e1778b57) C:\Windows\system32\DRIVERS\cdrom.sys
17:01:24.0851 1428 cdrom - ok
17:01:24.0927 1428 circlass (e5d4133f37219dbcfe102bc61072589d) C:\Windows\system32\DRIVERS\circlass.sys
17:01:24.0928 1428 circlass - ok
17:01:25.0104 1428 CLFS (465745561c832b29f7c48b488aab3842) C:\Windows\system32\CLFS.sys
17:01:25.0109 1428 CLFS - ok
17:01:25.0410 1428 CmBatt (99afc3795b58cc478fbbbcdc658fcb56) C:\Windows\system32\DRIVERS\CmBatt.sys
17:01:25.0425 1428 CmBatt - ok
17:01:25.0530 1428 cmdide (0ca25e686a4928484e9fdabd168ab629) C:\Windows\system32\drivers\cmdide.sys
17:01:25.0531 1428 cmdide - ok
17:01:25.0743 1428 Compbatt (6afef0b60fa25de07c0968983ee4f60a) C:\Windows\system32\DRIVERS\compbatt.sys
17:01:25.0743 1428 Compbatt - ok
17:01:25.0880 1428 crcdisk (741e9dff4f42d2d8477d0fc1dc0df871) C:\Windows\system32\drivers\crcdisk.sys
17:01:25.0881 1428 crcdisk - ok
17:01:26.0335 1428 Crusoe (1f07becdca750766a96cda811ba86410) C:\Windows\system32\drivers\crusoe.sys
17:01:26.0364 1428 Crusoe - ok
17:01:26.0588 1428 DfsC (a3e9fa213f443ac77c7746119d13feec) C:\Windows\system32\Drivers\dfsc.sys
17:01:26.0588 1428 DfsC - ok
17:01:26.0889 1428 disk (64109e623abd6955c8fb110b592e68b7) C:\Windows\system32\drivers\disk.sys
17:01:26.0915 1428 disk - ok
17:01:27.0458 1428 DKbFltr (73baf270d24fe726b9cd7f80bb17a23d) C:\Windows\system32\DRIVERS\DKbFltr.sys
17:01:27.0458 1428 DKbFltr - ok
17:01:27.0758 1428 Dot4 (4f59c172c094e1a1d46463a8dc061cbd) C:\Windows\system32\DRIVERS\Dot4.sys
17:01:27.0759 1428 Dot4 - ok
17:01:27.0976 1428 Dot4Print (80bf3ba09f6f2523c8f6b7cc6dbf7bd5) C:\Windows\system32\DRIVERS\Dot4Prt.sys
17:01:27.0977 1428 Dot4Print - ok
17:01:28.0247 1428 dot4usb (c55004ca6b419b6695970dfe849b122f) C:\Windows\system32\DRIVERS\dot4usb.sys
17:01:28.0248 1428 dot4usb - ok
17:01:28.0519 1428 drmkaud (97fef831ab90bee128c9af390e243f80) C:\Windows\system32\drivers\drmkaud.sys
17:01:28.0520 1428 drmkaud - ok
17:01:29.0016 1428 DXGKrnl (85f33880b8cfb554bd3d9ccdb486845a) C:\Windows\System32\drivers\dxgkrnl.sys
17:01:29.0020 1428 DXGKrnl - ok
17:01:29.0289 1428 E1G60 (5425f74ac0c1dbd96a1e04f17d63f94c) C:\Windows\system32\DRIVERS\E1G60I32.sys
17:01:29.0290 1428 E1G60 - ok
17:01:29.0706 1428 Ecache (dd2cd259d83d8b72c02c5f2331ff9d68) C:\Windows\system32\drivers\ecache.sys
17:01:29.0707 1428 Ecache - ok
17:01:30.0055 1428 elxstor (23b62471681a124889978f6295b3f4c6) C:\Windows\system32\drivers\elxstor.sys
17:01:30.0115 1428 elxstor - ok
17:01:30.0398 1428 ErrDev (3db974f3935483555d7148663f726c61) C:\Windows\system32\drivers\errdev.sys
17:01:30.0399 1428 ErrDev - ok
17:01:30.0791 1428 exfat (0d858eb20589a34efb25695acaa6aa2d) C:\Windows\system32\drivers\exfat.sys
17:01:30.0809 1428 exfat - ok
17:01:31.0118 1428 fastfat (3c489390c2e2064563727752af8eab9e) C:\Windows\system32\drivers\fastfat.sys
17:01:31.0130 1428 fastfat - ok
17:01:31.0369 1428 fdc (afe1e8b9782a0dd7fb46bbd88e43f89a) C:\Windows\system32\DRIVERS\fdc.sys
17:01:31.0384 1428 fdc - ok
17:01:31.0437 1428 FileInfo (a8c0139a884861e3aae9cfe73b208a9f) C:\Windows\system32\drivers\fileinfo.sys
17:01:31.0438 1428 FileInfo - ok
17:01:31.0571 1428 Filetrace (0ae429a696aecbc5970e3cf2c62635ae) C:\Windows\system32\drivers\filetrace.sys
17:01:31.0572 1428 Filetrace - ok
17:01:31.0909 1428 flpydisk (85b7cf99d532820495d68d747fda9ebd) C:\Windows\system32\DRIVERS\flpydisk.sys
17:01:31.0910 1428 flpydisk - ok
17:01:32.0019 1428 FltMgr (05ea53afe985443011e36dab07343b46) C:\Windows\system32\drivers\fltmgr.sys
17:01:32.0020 1428 FltMgr - ok
17:01:32.0244 1428 Fs_Rec (65ea8b77b5851854f0c55c43fa51a198) C:\Windows\system32\drivers\Fs_Rec.sys
17:01:32.0245 1428 Fs_Rec - ok
17:01:32.0337 1428 gagp30kx (34582a6e6573d54a07ece5fe24a126b5) C:\Windows\system32\drivers\gagp30kx.sys
17:01:32.0348 1428 gagp30kx - ok
17:01:32.0645 1428 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
17:01:32.0646 1428 GEARAspiWDM - ok
17:01:33.0311 1428 HdAudAddService (cb04c744be0a61b1d648faed182c3b59) C:\Windows\system32\drivers\HdAudio.sys
17:01:33.0351 1428 HdAudAddService - ok
17:01:33.0580 1428 HDAudBus (c87b1ee051c0464491c1a7b03fa0bc99) C:\Windows\system32\DRIVERS\HDAudBus.sys
17:01:33.0581 1428 HDAudBus - ok
17:01:33.0900 1428 HidBth (1338520e78d90154ed6be8f84de5fceb) C:\Windows\system32\drivers\hidbth.sys
17:01:33.0911 1428 HidBth - ok
17:01:34.0309 1428 HidIr (d8df3722d5e961baa1292aa2f12827e2) C:\Windows\system32\DRIVERS\hidir.sys
17:01:34.0317 1428 HidIr - ok
17:01:34.0732 1428 HidUsb (854ca287ab7faf949617a788306d967e) C:\Windows\system32\DRIVERS\hidusb.sys
17:01:34.0750 1428 HidUsb - ok
17:01:35.0002 1428 HpCISSs (16ee7b23a009e00d835cdb79574a91a6) C:\Windows\system32\drivers\hpcisss.sys
17:01:35.0029 1428 HpCISSs - ok
17:01:35.0669 1428 HTTP (96e241624c71211a79c84f50a8e71cab) C:\Windows\system32\drivers\HTTP.sys
17:01:35.0672 1428 HTTP - ok
17:01:36.0032 1428 i2omp (c6b032d69650985468160fc9937cf5b4) C:\Windows\system32\drivers\i2omp.sys
17:01:36.0034 1428 i2omp - ok
17:01:36.0426 1428 i8042prt (22d56c8184586b7a1f6fa60be5f5a2bd) C:\Windows\system32\DRIVERS\i8042prt.sys
17:01:36.0441 1428 i8042prt - ok
17:01:36.0847 1428 iaStor (707c1692214b1c290271067197f075f6) C:\Windows\system32\DRIVERS\iaStor.sys
17:01:36.0849 1428 iaStor - ok
17:01:37.0193 1428 iaStorV (54155ea1b0df185878e0fc9ec3ac3a14) C:\Windows\system32\drivers\iastorv.sys
17:01:37.0211 1428 iaStorV - ok
17:01:37.0479 1428 iirsp (2d077bf86e843f901d8db709c95b49a5) C:\Windows\system32\drivers\iirsp.sys
17:01:37.0480 1428 iirsp - ok
17:01:37.0928 1428 int15 (c6e5276c00ebdeb096bb5ef4b797d1b6) C:\Windows\system32\drivers\int15.sys
17:01:37.0929 1428 int15 - ok
17:01:38.0568 1428 IntcAzAudAddService (3cfa12fefea751dae7b8133a6ef3c0d9) C:\Windows\system32\drivers\RTKVHDA.sys
17:01:38.0581 1428 IntcAzAudAddService - ok
17:01:38.0749 1428 intelide (83aa759f3189e6370c30de5dc5590718) C:\Windows\system32\drivers\intelide.sys
17:01:38.0763 1428 intelide - ok
17:01:38.0859 1428 intelppm (224191001e78c89dfa78924c3ea595ff) C:\Windows\system32\DRIVERS\intelppm.sys
17:01:38.0860 1428 intelppm - ok
17:01:39.0136 1428 IpFilterDriver (62c265c38769b864cb25b4bcf62df6c3) C:\Windows\system32\DRIVERS\ipfltdrv.sys
17:01:39.0136 1428 IpFilterDriver - ok
17:01:39.0195 1428 IpInIp - ok
17:01:39.0440 1428 IPMIDRV (b25aaf203552b7b3491139d582b39ad1) C:\Windows\system32\drivers\ipmidrv.sys
17:01:39.0441 1428 IPMIDRV - ok
17:01:39.0743 1428 IPNAT (8793643a67b42cec66490b2a0cf92d68) C:\Windows\system32\DRIVERS\ipnat.sys
17:01:39.0744 1428 IPNAT - ok
17:01:40.0000 1428 IRENUM (109c0dfb82c3632fbd11949b73aeeac9) C:\Windows\system32\drivers\irenum.sys
17:01:40.0001 1428 IRENUM - ok
17:01:40.0123 1428 isapnp (6c70698a3e5c4376c6ab5c7c17fb0614) C:\Windows\system32\drivers\isapnp.sys
17:01:40.0124 1428 isapnp - ok
17:01:40.0314 1428 iScsiPrt (f247eec28317f6c739c16de420097301) C:\Windows\system32\DRIVERS\msiscsi.sys
17:01:40.0315 1428 iScsiPrt - ok
17:01:40.0557 1428 iteatapi (bced60d16156e428f8df8cf27b0df150) C:\Windows\system32\drivers\iteatapi.sys
17:01:40.0558 1428 iteatapi - ok
17:01:40.0713 1428 iteraid (06fa654504a498c30adca8bec4e87e7e) C:\Windows\system32\drivers\iteraid.sys
17:01:40.0714 1428 iteraid - ok
17:01:40.0870 1428 JMCR (858c550ebbd243826a2193262c1b54a3) C:\Windows\system32\DRIVERS\jmcr.sys
17:01:40.0871 1428 JMCR - ok
17:01:40.0999 1428 kbdclass (37605e0a8cf00cbba538e753e4344c6e) C:\Windows\system32\DRIVERS\kbdclass.sys
17:01:41.0000 1428 kbdclass - ok
17:01:41.0220 1428 kbdhid (18247836959ba67e3511b62846b9c2e0) C:\Windows\system32\DRIVERS\kbdhid.sys
17:01:41.0222 1428 kbdhid - ok
17:01:41.0682 1428 KSecDD (7a0cf7908b6824d6a2a1d313e5ae3dca) C:\Windows\system32\Drivers\ksecdd.sys
17:01:41.0685 1428 KSecDD - ok
17:01:41.0990 1428 lltdio (d1c5883087a0c3f1344d9d55a44901f6) C:\Windows\system32\DRIVERS\lltdio.sys
17:01:41.0991 1428 lltdio - ok
17:01:42.0250 1428 LSI_FC (c7e15e82879bf3235b559563d4185365) C:\Windows\system32\drivers\lsi_fc.sys
17:01:42.0251 1428 LSI_FC - ok
17:01:42.0418 1428 LSI_SAS (ee01ebae8c9bf0fa072e0ff68718920a) C:\Windows\system32\drivers\lsi_sas.sys
17:01:42.0419 1428 LSI_SAS - ok
17:01:42.0653 1428 LSI_SCSI (912a04696e9ca30146a62afa1463dd5c) C:\Windows\system32\drivers\lsi_scsi.sys
17:01:42.0654 1428 LSI_SCSI - ok
17:01:42.0897 1428 luafv (8f5c7426567798e62a3b3614965d62cc) C:\Windows\system32\drivers\luafv.sys
17:01:42.0898 1428 luafv - ok
17:01:43.0031 1428 MBAMSwissArmy - ok
17:01:43.0721 1428 megasas (0001ce609d66632fa17b84705f658879) C:\Windows\system32\drivers\megasas.sys
17:01:43.0723 1428 megasas - ok
17:01:44.0086 1428 MegaSR (c252f32cd9a49dbfc25ecf26ebd51a99) C:\Windows\system32\drivers\megasr.sys
17:01:44.0088 1428 MegaSR - ok
17:01:44.0344 1428 mfeavfk (26653763d99ea717fc9e069f6be6771e) C:\Windows\system32\drivers\mfeavfk.sys
17:01:44.0345 1428 mfeavfk - ok
17:01:44.0772 1428 mfebopk (e65ce1279f2c1fd9bd81184ceb7f5468) C:\Windows\system32\drivers\mfebopk.sys
17:01:44.0772 1428 mfebopk - ok
17:01:44.0893 1428 mfehidk (f817bfca67475cf04925ece4fcf9c3c0) C:\Windows\system32\drivers\mfehidk.sys
17:01:44.0895 1428 mfehidk - ok
17:01:45.0250 1428 mferkdk (fe03be0b990983a08a33389c00636175) C:\Windows\system32\drivers\mferkdk.sys
17:01:45.0250 1428 mferkdk - ok
17:01:45.0480 1428 mfesmfk (9c73aca963ad8883b9fc44b410e70b71) C:\Windows\system32\drivers\mfesmfk.sys
17:01:45.0481 1428 mfesmfk - ok
17:01:45.0748 1428 Modem (e13b5ea0f51ba5b1512ec671393d09ba) C:\Windows\system32\drivers\modem.sys
17:01:45.0749 1428 Modem - ok
17:01:46.0350 1428 monitor (0a9bb33b56e294f686abb7c1e4e2d8a8) C:\Windows\system32\DRIVERS\monitor.sys
17:01:46.0351 1428 monitor - ok
17:01:46.0754 1428 mouclass (5bf6a1326a335c5298477754a506d263) C:\Windows\system32\DRIVERS\mouclass.sys
17:01:46.0754 1428 mouclass - ok
17:01:47.0188 1428 mouhid (93b8d4869e12cfbe663915502900876f) C:\Windows\system32\DRIVERS\mouhid.sys
17:01:47.0204 1428 mouhid - ok
17:01:47.0616 1428 MountMgr (bdafc88aa6b92f7842416ea6a48e1600) C:\Windows\system32\drivers\mountmgr.sys
17:01:47.0617 1428 MountMgr - ok
17:01:47.0934 1428 MPFP (447d50511a7aac23d4cbbe527e1ff1f2) C:\Windows\system32\Drivers\Mpfp.sys
17:01:47.0936 1428 MPFP - ok
17:01:48.0321 1428 mpio (511d011289755dd9f9a7579fb0b064e6) C:\Windows\system32\drivers\mpio.sys
17:01:48.0322 1428 mpio - ok
17:01:48.0720 1428 mpsdrv (22241feba9b2defa669c8cb0a8dd7d2e) C:\Windows\system32\drivers\mpsdrv.sys
17:01:48.0721 1428 mpsdrv - ok
17:01:49.0110 1428 Mraid35x (4fbbb70d30fd20ec51f80061703b001e) C:\Windows\system32\drivers\mraid35x.sys
17:01:49.0138 1428 Mraid35x - ok
17:01:49.0492 1428 MRxDAV (ae3de84536b6799d2267443cec8edbb9) C:\Windows\system32\drivers\mrxdav.sys
17:01:49.0493 1428 MRxDAV - ok
17:01:49.0933 1428 mrxsmb (5734a0f2be7e495f7d3ed6efd4b9f5a1) C:\Windows\system32\DRIVERS\mrxsmb.sys
17:01:49.0934 1428 mrxsmb - ok
17:01:50.0282 1428 mrxsmb10 (6b5fa5adfacac9dbbe0991f4566d7d55) C:\Windows\system32\DRIVERS\mrxsmb10.sys
17:01:50.0284 1428 mrxsmb10 - ok
17:01:50.0717 1428 mrxsmb20 (5c80d8159181c7abf1b14ba703b01e0b) C:\Windows\system32\DRIVERS\mrxsmb20.sys
17:01:50.0717 1428 mrxsmb20 - ok
17:01:51.0231 1428 msahci (28023e86f17001f7cd9b15a5bc9ae07d) C:\Windows\system32\drivers\msahci.sys
17:01:51.0231 1428 msahci - ok
17:01:51.0580 1428 msdsm (4468b0f385a86ecddaf8d3ca662ec0e7) C:\Windows\system32\drivers\msdsm.sys
17:01:51.0581 1428 msdsm - ok
17:01:51.0904 1428 Msfs (a9927f4a46b816c92f461acb90cf8515) C:\Windows\system32\drivers\Msfs.sys
17:01:51.0916 1428 Msfs - ok
17:01:52.0092 1428 msisadrv (0f400e306f385c56317357d6dea56f62) C:\Windows\system32\drivers\msisadrv.sys
17:01:52.0092 1428 msisadrv - ok
17:01:52.0402 1428 MSKSSRV (d8c63d34d9c9e56c059e24ec7185cc07) C:\Windows\system32\drivers\MSKSSRV.sys
17:01:52.0404 1428 MSKSSRV - ok
17:01:52.0872 1428 MSPCLOCK (1d373c90d62ddb641d50e55b9e78d65e) C:\Windows\system32\drivers\MSPCLOCK.sys
17:01:52.0873 1428 MSPCLOCK - ok
17:01:53.0266 1428 MSPQM (b572da05bf4e098d4bba3a4734fb505b) C:\Windows\system32\drivers\MSPQM.sys
17:01:53.0267 1428 MSPQM - ok
17:01:53.0597 1428 MsRPC (b5614aecb05a9340aa0fb55bf561cc63) C:\Windows\system32\drivers\MsRPC.sys
17:01:53.0610 1428 MsRPC - ok
17:01:53.0899 1428 mssmbios (e384487cb84be41d09711c30ca79646c) C:\Windows\system32\DRIVERS\mssmbios.sys
17:01:53.0899 1428 mssmbios - ok
17:01:54.0274 1428 MSTEE (7199c1eec1e4993caf96b8c0a26bd58a) C:\Windows\system32\drivers\MSTEE.sys
17:01:54.0274 1428 MSTEE - ok
17:01:54.0518 1428 Mup (6dfd1d322de55b0b7db7d21b90bec49c) C:\Windows\system32\Drivers\mup.sys
17:01:54.0519 1428 Mup - ok
17:01:55.0097 1428 NativeWifiP (3c21ce48ff529bb73dadb98770b54025) C:\Windows\system32\DRIVERS\nwifi.sys
17:01:55.0098 1428 NativeWifiP - ok
17:01:55.0344 1428 NDIS (9bdc71790fa08f0a0b5f10462b1bd0b1) C:\Windows\system32\drivers\ndis.sys
17:01:55.0347 1428 NDIS - ok
17:01:55.0581 1428 NdisTapi (0e186e90404980569fb449ba7519ae61) C:\Windows\system32\DRIVERS\ndistapi.sys
17:01:55.0582 1428 NdisTapi - ok
17:01:55.0841 1428 Ndisuio (d6973aa34c4d5d76c0430b181c3cd389) C:\Windows\system32\DRIVERS\ndisuio.sys
17:01:55.0842 1428 Ndisuio - ok
17:01:56.0150 1428 NdisWan (3d14c3b3496f88890d431e8aa022a411) C:\Windows\system32\DRIVERS\ndiswan.sys
17:01:56.0151 1428 NdisWan - ok
17:01:56.0265 1428 NDProxy (71dab552b41936358f3b541ae5997fb3) C:\Windows\system32\drivers\NDProxy.sys
17:01:56.0267 1428 NDProxy - ok
17:01:56.0721 1428 NetBIOS (bcd093a5a6777cf626434568dc7dba78) C:\Windows\system32\DRIVERS\netbios.sys
17:01:56.0722 1428 NetBIOS - ok
17:01:57.0010 1428 netbt (7c5fee5b1c5728507cd96fb4a13e7a02) C:\Windows\system32\DRIVERS\netbt.sys
17:01:57.0012 1428 netbt - ok
17:01:58.0153 1428 NETw5v32 (e559ea9138c77b5d1fda8c558764a25f) C:\Windows\system32\DRIVERS\NETw5v32.sys
17:01:59.0328 1428 NETw5v32 - ok
17:02:01.0873 1428 nfrd960 (2e7fb731d4790a1bc6270accefacb36e) C:\Windows\system32\drivers\nfrd960.sys
17:02:01.0891 1428 nfrd960 - ok
17:02:02.0225 1428 Npfs (ecb5003f484f9ed6c608d6d6c7886cbb) C:\Windows\system32\drivers\Npfs.sys
17:02:02.0236 1428 Npfs - ok
17:02:02.0611 1428 nsiproxy (609773e344a97410ce4ebf74a8914fcf) C:\Windows\system32\drivers\nsiproxy.sys
17:02:02.0612 1428 nsiproxy - ok
17:02:03.0187 1428 Ntfs (b4effe29eb4f15538fd8a9681108492d) C:\Windows\system32\drivers\Ntfs.sys
17:02:03.0405 1428 Ntfs - ok
17:02:03.0678 1428 NTIDrvr (2757d2ba59aee155209e24942ab127c9) C:\Windows\system32\DRIVERS\NTIDrvr.sys
17:02:03.0678 1428 NTIDrvr - ok
17:02:03.0872 1428 NTIPPKernel (547bfa3591c70674b0bfc99354ab78b3) C:\Program Files\Acer Arcade Deluxe\HomeMedia\Kernel\DMP\NTIPPKernel.sys
17:02:03.0875 1428 NTIPPKernel - ok
17:02:04.0096 1428 ntrigdigi (e875c093aec0c978a90f30c9e0dfbb72) C:\Windows\system32\drivers\ntrigdigi.sys
17:02:04.0114 1428 ntrigdigi - ok
17:02:04.0371 1428 Null (c5dbbcda07d780bda9b685df333bb41e) C:\Windows\system32\drivers\Null.sys
17:02:04.0384 1428 Null - ok
17:02:04.0984 1428 NVHDA (2c7ac27710e8d41c1eb7d1599187d237) C:\Windows\system32\drivers\nvhda32v.sys
17:02:04.0985 1428 NVHDA - ok
17:02:05.0807 1428 nvlddmkm (cb0d6f8f65b8766ff2aaaa78881fd9f8) C:\Windows\system32\DRIVERS\nvlddmkm.sys
17:02:07.0238 1428 nvlddmkm - ok
17:02:07.0543 1428 nvraid (2edf9e7751554b42cbb60116de727101) C:\Windows\system32\drivers\nvraid.sys
17:02:07.0544 1428 nvraid - ok
17:02:08.0043 1428 nvstor (abed0c09758d1d97db0042dbb2688177) C:\Windows\system32\drivers\nvstor.sys
17:02:08.0044 1428 nvstor - ok
17:02:08.0268 1428 nv_agp (18bbdf913916b71bd54575bdb6eeac0b) C:\Windows\system32\drivers\nv_agp.sys
17:02:08.0269 1428 nv_agp - ok
17:02:08.0379 1428 NwlnkFlt - ok
17:02:08.0599 1428 NwlnkFwd - ok
17:02:08.0873 1428 ohci1394 (be32da025a0be1878f0ee8d6d9386cd5) C:\Windows\system32\drivers\ohci1394.sys
17:02:08.0874 1428 ohci1394 - ok
17:02:09.0142 1428 Parport (0fa9b5055484649d63c303fe404e5f4d) C:\Windows\system32\drivers\parport.sys
17:02:09.0143 1428 Parport - ok
17:02:09.0305 1428 partmgr (3b38467e7c3daed009dfe359e17f139f) C:\Windows\system32\drivers\partmgr.sys
17:02:09.0306 1428 partmgr - ok
17:02:09.0488 1428 Parvdm (4f9a6a8a31413180d0fcb279ad5d8112) C:\Windows\system32\drivers\parvdm.sys
17:02:09.0488 1428 Parvdm - ok
17:02:09.0892 1428 pci (01b94418deb235dff777cc80076354b4) C:\Windows\system32\drivers\pci.sys
17:02:09.0895 1428 pci - ok
17:02:10.0102 1428 pciide (fc175f5ddab666d7f4d17449a547626f) C:\Windows\system32\drivers\pciide.sys
17:02:10.0102 1428 pciide - ok
17:02:10.0353 1428 pcmcia (e6f3fb1b86aa519e7698ad05e58b04e5) C:\Windows\system32\drivers\pcmcia.sys
17:02:10.0354 1428 pcmcia - ok
17:02:10.0769 1428 PEAUTH (6349f6ed9c623b44b52ea3c63c831a92) C:\Windows\system32\drivers\peauth.sys
17:02:10.0775 1428 PEAUTH - ok
17:02:11.0173 1428 PptpMiniport (ecfffaec0c1ecd8dbc77f39070ea1db1) C:\Windows\system32\DRIVERS\raspptp.sys
17:02:11.0174 1428 PptpMiniport - ok
17:02:11.0405 1428 Processor (2027293619dd0f047c584cf2e7df4ffd) C:\Windows\system32\drivers\processr.sys
17:02:11.0406 1428 Processor - ok
17:02:11.0722 1428 PSched (bfef604508a0ed1eae2a73e872555ffb) C:\Windows\system32\DRIVERS\pacer.sys
17:02:11.0722 1428 PSched - ok
17:02:12.0003 1428 PSDFilter (ab94285ff6c6bc5433407d8d182a4bb4) C:\Windows\system32\DRIVERS\psdfilter.sys
17:02:12.0004 1428 PSDFilter - ok
17:02:12.0493 1428 PSDNServ (2aaf9a5d7a63d26bfaea853c5f2292bc) C:\Windows\system32\DRIVERS\PSDNServ.sys
17:02:12.0494 1428 PSDNServ - ok
17:02:12.0657 1428 psdvdisk (0eb8cec99855beae5b0d02c2302619ef) C:\Windows\system32\DRIVERS\PSDVdisk.sys
17:02:12.0658 1428 psdvdisk - ok
17:02:12.0991 1428 ql2300 (0a6db55afb7820c99aa1f3a1d270f4f6) C:\Windows\system32\drivers\ql2300.sys
17:02:12.0998 1428 ql2300 - ok
17:02:13.0388 1428 ql40xx (81a7e5c076e59995d54bc1ed3a16e60b) C:\Windows\system32\drivers\ql40xx.sys
17:02:13.0389 1428 ql40xx - ok
17:02:13.0496 1428 QWAVEdrv (9f5e0e1926014d17486901c88eca2db7) C:\Windows\system32\drivers\qwavedrv.sys
17:02:13.0506 1428 QWAVEdrv - ok
17:02:13.0744 1428 RasAcd (147d7f9c556d259924351feb0de606c3) C:\Windows\system32\DRIVERS\rasacd.sys
17:02:13.0744 1428 RasAcd - ok
17:02:14.0214 1428 Rasl2tp (a214adbaf4cb47dd2728859ef31f26b0) C:\Windows\system32\DRIVERS\rasl2tp.sys
17:02:14.0215 1428 Rasl2tp - ok
17:02:14.0753 1428 RasPppoe (3e9d9b048107b40d87b97df2e48e0744) C:\Windows\system32\DRIVERS\raspppoe.sys
17:02:14.0754 1428 RasPppoe - ok
17:02:15.0119 1428 RasSstp (a7d141684e9500ac928a772ed8e6b671) C:\Windows\system32\DRIVERS\rassstp.sys
17:02:15.0120 1428 RasSstp - ok
17:02:15.0782 1428 rdbss (6e1c5d0457622f9ee35f683110e93d14) C:\Windows\system32\DRIVERS\rdbss.sys
17:02:15.0784 1428 rdbss - ok
17:02:16.0132 1428 RDPCDD (89e59be9a564262a3fb6c4f4f1cd9899) C:\Windows\system32\DRIVERS\RDPCDD.sys
17:02:16.0132 1428 RDPCDD - ok
17:02:16.0604 1428 rdpdr (fbc0bacd9c3d7f6956853f64a66e252d) C:\Windows\system32\drivers\rdpdr.sys
17:02:16.0606 1428 rdpdr - ok
17:02:17.0173 1428 RDPENCDD (9d91fe5286f748862ecffa05f8a0710c) C:\Windows\system32\drivers\rdpencdd.sys
17:02:17.0173 1428 RDPENCDD - ok
17:02:17.0602 1428 RDPWD (e1c18f4097a5abcec941dc4b2f99db7e) C:\Windows\system32\drivers\RDPWD.sys
17:02:17.0660 1428 RDPWD - ok
17:02:17.0948 1428 rspndr (9c508f4074a39e8b4b31d27198146fad) C:\Windows\system32\DRIVERS\rspndr.sys
17:02:17.0949 1428 rspndr - ok
17:02:18.0409 1428 sbp2port (3ce8f073a557e172b330109436984e30) C:\Windows\system32\drivers\sbp2port.sys
17:02:18.0410 1428 sbp2port - ok
17:02:18.0824 1428 sdbus (126ea89bcc413ee45e3004fb0764888f) C:\Windows\system32\DRIVERS\sdbus.sys
17:02:18.0826 1428 sdbus - ok
17:02:19.0260 1428 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
17:02:19.0273 1428 secdrv - ok
17:02:19.0447 1428 Serenum (68e44e331d46f0fb38f0863a84cd1a31) C:\Windows\system32\drivers\serenum.sys
17:02:19.0448 1428 Serenum - ok
17:02:19.0582 1428 Serial (c70d69a918b178d3c3b06339b40c2e1b) C:\Windows\system32\drivers\serial.sys
17:02:19.0585 1428 Serial - ok
17:02:19.0715 1428 sermouse (8af3d28a879bf75db53a0ee7a4289624) C:\Windows\system32\drivers\sermouse.sys
17:02:19.0716 1428 sermouse - ok
17:02:19.0894 1428 sffdisk (3efa810bdca87f6ecc24f9832243fe86) C:\Windows\system32\drivers\sffdisk.sys
17:02:19.0894 1428 sffdisk - ok
17:02:20.0360 1428 sffp_mmc (e95d451f7ea3e583aec75f3b3ee42dc5) C:\Windows\system32\drivers\sffp_mmc.sys
17:02:20.0361 1428 sffp_mmc - ok
17:02:20.0672 1428 sffp_sd (3d0ea348784b7ac9ea9bd9f317980979) C:\Windows\system32\drivers\sffp_sd.sys
17:02:20.0672 1428 sffp_sd - ok
17:02:20.0905 1428 sfloppy (46ed8e91793b2e6f848015445a0ac188) C:\Windows\system32\drivers\sfloppy.sys
17:02:20.0906 1428 sfloppy - ok
17:02:21.0251 1428 sisagp (1d76624a09a054f682d746b924e2dbc3) C:\Windows\system32\drivers\sisagp.sys
17:02:21.0252 1428 sisagp - ok
17:02:21.0496 1428 SiSRaid2 (43cb7aa756c7db280d01da9b676cfde2) C:\Windows\system32\drivers\sisraid2.sys
17:02:21.0497 1428 SiSRaid2 - ok
17:02:21.0816 1428 SiSRaid4 (a99c6c8b0baa970d8aa59ddc50b57f94) C:\Windows\system32\drivers\sisraid4.sys
17:02:21.0817 1428 SiSRaid4 - ok
17:02:22.0162 1428 Smb (031e6bcd53c9b2b9ace111eafec347b6) C:\Windows\system32\DRIVERS\smb.sys
17:02:22.0163 1428 Smb - ok
17:02:22.0380 1428 spldr (7aebdeef071fe28b0eef2cdd69102bff) C:\Windows\system32\drivers\spldr.sys
17:02:22.0381 1428 spldr - ok
17:02:22.0991 1428 srv (2252aef839b1093d16761189f45af885) C:\Windows\system32\DRIVERS\srv.sys
17:02:22.0993 1428 srv - ok
17:02:23.0313 1428 srv2 (b7ff59408034119476b00a81bb53d5d1) C:\Windows\system32\DRIVERS\srv2.sys
17:02:23.0314 1428 srv2 - ok
17:02:24.0639 1428 srvnet (2accc9b12af02030f531e6cca6f8b76e) C:\Windows\system32\DRIVERS\srvnet.sys
17:02:24.0640 1428 srvnet - ok
17:02:25.0169 1428 ssmdrv (3ad0362cf68de3ac500e981700242cca) C:\Windows\system32\DRIVERS\ssmdrv.sys
17:02:25.0169 1428 ssmdrv - ok
17:02:25.0619 1428 StillCam (ef70b3d22b4bffda6ea851ecb063efaa) C:\Windows\system32\DRIVERS\serscan.sys
17:02:25.0620 1428 StillCam - ok
17:02:26.0161 1428 swenum (7ba58ecf0c0a9a69d44b3dca62becf56) C:\Windows\system32\DRIVERS\swenum.sys
17:02:26.0162 1428 swenum - ok
17:02:26.0762 1428 Symc8xx (192aa3ac01df071b541094f251deed10) C:\Windows\system32\drivers\symc8xx.sys
17:02:26.0763 1428 Symc8xx - ok
17:02:27.0096 1428 Sym_hi (8c8eb8c76736ebaf3b13b633b2e64125) C:\Windows\system32\drivers\sym_hi.sys
17:02:27.0114 1428 Sym_hi - ok
17:02:27.0641 1428 Sym_u3 (8072af52b5fd103bbba387a1e49f62cb) C:\Windows\system32\drivers\sym_u3.sys
17:02:27.0642 1428 Sym_u3 - ok
17:02:28.0070 1428 SynTP (bf7aa84d5af0faa0978c840e63b17dbf) C:\Windows\system32\DRIVERS\SynTP.sys
17:02:28.0072 1428 SynTP - ok
17:02:28.0688 1428 Tcpip (782568ab6a43160a159b6215b70bcce9) C:\Windows\system32\drivers\tcpip.sys
17:02:28.0693 1428 Tcpip - ok
17:02:29.0388 1428 Tcpip6 (782568ab6a43160a159b6215b70bcce9) C:\Windows\system32\DRIVERS\tcpip.sys
17:02:29.0393 1428 Tcpip6 - ok
17:02:29.0709 1428 tcpipreg (d4a2e4a4b011f3a883af77315a5ae76b) C:\Windows\system32\drivers\tcpipreg.sys
17:02:29.0728 1428 tcpipreg - ok
17:02:30.0120 1428 TDPIPE (5dcf5e267be67a1ae926f2df77fbcc56) C:\Windows\system32\drivers\tdpipe.sys
17:02:30.0121 1428 TDPIPE - ok
17:02:30.0532 1428 TDTCP (389c63e32b3cefed425b61ed92d3f021) C:\Windows\system32\drivers\tdtcp.sys
17:02:30.0580 1428 TDTCP - ok
17:02:31.0077 1428 tdx (f9f309876480f1f766613b259a5f49b0) C:\Windows\system32\DRIVERS\tdx.sys
17:02:31.0080 1428 Suspicious file (Forged): C:\Windows\system32\DRIVERS\tdx.sys. Real md5: f9f309876480f1f766613b259a5f49b0, Fake md5: d09276b1fab033ce1d40dcbdf303d10f
17:02:31.0080 1428 tdx ( Rootkit.Win32.ZAccess.aml ) - infected
17:02:31.0080 1428 tdx - detected Rootkit.Win32.ZAccess.aml (0)
17:02:31.0763 1428 TermDD (a048056f5e1a96a9bf3071b91741a5aa) C:\Windows\system32\DRIVERS\termdd.sys
17:02:31.0764 1428 TermDD - ok
17:02:32.0243 1428 TrueSight (f69641efdb19acb4753b0155f7fdeed5) c:\windows\system32\drivers\TrueSight.sys
17:02:32.0245 1428 TrueSight - ok
17:02:32.0668 1428 tssecsrv (dcf0f056a2e4f52287264f5ab29cf206) C:\Windows\system32\DRIVERS\tssecsrv.sys
17:02:32.0668 1428 tssecsrv - ok
17:02:33.0061 1428 tunmp (caecc0120ac49e3d2f758b9169872d38) C:\Windows\system32\DRIVERS\tunmp.sys
17:02:33.0062 1428 tunmp - ok
17:02:33.0629 1428 tunnel (6042505ff6fa9ac1ef7684d0e03b6940) C:\Windows\system32\DRIVERS\tunnel.sys
17:02:33.0630 1428 tunnel - ok
17:02:33.0927 1428 uagp35 (7d33c4db2ce363c8518d2dfcf533941f) C:\Windows\system32\drivers\uagp35.sys
17:02:33.0928 1428 uagp35 - ok
17:02:34.0322 1428 UBHelper (f763e070843ee2803de1395002b42938) C:\Windows\system32\drivers\UBHelper.sys
17:02:34.0322 1428 UBHelper - ok
17:02:34.0715 1428 udfs (8b5088058fa1d1cd897a2113ccff6c58) C:\Windows\system32\DRIVERS\udfs.sys
17:02:34.0717 1428 udfs - ok
17:02:35.0343 1428 uliagpkx (b0acfdc9e4af279e9116c03e014b2b27) C:\Windows\system32\drivers\uliagpkx.sys
17:02:35.0344 1428 uliagpkx - ok
17:02:35.0670 1428 uliahci (9224bb254f591de4ca8d572a5f0d635c) C:\Windows\system32\drivers\uliahci.sys
17:02:35.0672 1428 uliahci - ok
17:02:36.0076 1428 UlSata (8514d0e5cd0534467c5fc61be94a569f) C:\Windows\system32\drivers\ulsata.sys
17:02:36.0077 1428 UlSata - ok
17:02:36.0375 1428 ulsata2 (38c3c6e62b157a6bc46594fada45c62b) C:\Windows\system32\drivers\ulsata2.sys
17:02:36.0377 1428 ulsata2 - ok
17:02:36.0832 1428 umbus (32cff9f809ae9aed85464492bf3e32d2) C:\Windows\system32\DRIVERS\umbus.sys
17:02:36.0833 1428 umbus - ok
17:02:37.0424 1428 USBAAPL (e8c1b9ebac65288e1b51e8a987d98af6) C:\Windows\system32\Drivers\usbaapl.sys
17:02:37.0425 1428 USBAAPL - ok
17:02:37.0782 1428 usbaudio (292a25bb75a568ae2c67169ba2c6365a) C:\Windows\system32\drivers\usbaudio.sys
17:02:37.0783 1428 usbaudio - ok
17:02:38.0277 1428 usbccgp (a7cd5b4adea26765cab06bdab7b07b13) C:\Windows\system32\DRIVERS\usbccgp.sys
17:02:38.0278 1428 usbccgp - ok
17:02:38.0555 1428 usbcir (e9476e6c486e76bc4898074768fb7131) C:\Windows\system32\drivers\usbcir.sys
17:02:38.0555 1428 usbcir - ok
17:02:39.0314 1428 usbehci (686d4188ae36254c3008b71fedacadf3) C:\Windows\system32\DRIVERS\usbehci.sys
17:02:39.0315 1428 usbehci - ok
17:02:39.0652 1428 usbhub (4e42f665a658f08d153f7fffe7c83806) C:\Windows\system32\DRIVERS\usbhub.sys
17:02:39.0654 1428 usbhub - ok
17:02:39.0972 1428 usbohci (38dbc7dd6cc5a72011f187425384388b) C:\Windows\system32\drivers\usbohci.sys
17:02:39.0973 1428 usbohci - ok
17:02:40.0741 1428 usbprint (e75c4b5269091d15a2e7dc0b6d35f2f5) C:\Windows\system32\DRIVERS\usbprint.sys
17:02:40.0742 1428 usbprint - ok
17:02:40.0979 1428 usbscan (a508c9bd8724980512136b039bba65e9) C:\Windows\system32\DRIVERS\usbscan.sys
17:02:40.0980 1428 usbscan - ok
17:02:41.0462 1428 USBSTOR (87ba6b83c5d19b69160968d07d6e2982) C:\Windows\system32\DRIVERS\USBSTOR.SYS
17:02:41.0463 1428 USBSTOR - ok
17:02:41.0895 1428 usbuhci (40f95a3d6d50d82f947f1d167c2ec39d) C:\Windows\system32\DRIVERS\usbuhci.sys
17:02:41.0896 1428 usbuhci - ok
17:02:42.0203 1428 usbvideo (e67998e8f14cb0627a769f6530bcb352) C:\Windows\system32\Drivers\usbvideo.sys
17:02:42.0205 1428 usbvideo - ok
17:02:42.0526 1428 vga (87b06e1f30b749a114f74622d013f8d4) C:\Windows\system32\DRIVERS\vgapnp.sys
17:02:42.0527 1428 vga - ok
17:02:42.0765 1428 VgaSave (2e93ac0a1d8c79d019db6c51f036636c) C:\Windows\System32\drivers\vga.sys
17:02:42.0766 1428 VgaSave - ok
17:02:43.0166 1428 viaagp (5d7159def58a800d5781ba3a879627bc) C:\Windows\system32\drivers\viaagp.sys
17:02:43.0166 1428 viaagp - ok
17:02:43.0361 1428 ViaC7 (c4f3a691b5bad343e6249bd8c2d45dee) C:\Windows\system32\drivers\viac7.sys
17:02:43.0363 1428 ViaC7 - ok
17:02:43.0738 1428 viaide (aadf5587a4063f52c2c3fed7887426fc) C:\Windows\system32\drivers\viaide.sys
17:02:43.0739 1428 viaide - ok
17:02:43.0909 1428 volmgr (69503668ac66c77c6cd7af86fbdf8c43) C:\Windows\system32\drivers\volmgr.sys
17:02:43.0911 1428 volmgr - ok
17:02:44.0420 1428 volmgrx (98f5ffe6316bd74e9e2c97206c190196) C:\Windows\system32\drivers\volmgrx.sys
17:02:44.0423 1428 volmgrx - ok
17:02:44.0641 1428 volsnap (d8b4a53dd2769f226b3eb374374987c9) C:\Windows\system32\drivers\volsnap.sys
17:02:44.0643 1428 volsnap - ok
17:02:45.0124 1428 vsmraid (587253e09325e6bf226b299774b728a9) C:\Windows\system32\drivers\vsmraid.sys
17:02:45.0126 1428 vsmraid - ok
17:02:45.0501 1428 WacomPen (48dfee8f1af7c8235d4e626f0c4fe031) C:\Windows\system32\drivers\wacompen.sys
17:02:45.0502 1428 WacomPen - ok
17:02:45.0674 1428 Wanarp (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
17:02:45.0675 1428 Wanarp - ok
17:02:45.0712 1428 Wanarpv6 (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
17:02:45.0714 1428 Wanarpv6 - ok
17:02:45.0982 1428 Wd (78fe9542363f297b18c027b2d7e7c07f) C:\Windows\system32\drivers\wd.sys
17:02:45.0983 1428 Wd - ok
17:02:46.0330 1428 Wdf01000 (b6f0a7ad6d4bd325fbcd8bac96cd8d96) C:\Windows\system32\drivers\Wdf01000.sys
17:02:46.0334 1428 Wdf01000 - ok
17:02:46.0749 1428 winbondcir (3fa87d56769838aac82fafc3e78fc732) C:\Windows\system32\DRIVERS\winbondcir.sys
17:02:46.0750 1428 winbondcir - ok
17:02:46.0893 1428 WmiAcpi (2e7255d172df0b8283cdfb7b433b864e) C:\Windows\system32\DRIVERS\wmiacpi.sys
17:02:46.0894 1428 WmiAcpi - ok
17:02:47.0296 1428 WpdUsb (0cec23084b51b8288099eb710224e955) C:\Windows\system32\DRIVERS\wpdusb.sys
17:02:47.0297 1428 WpdUsb - ok
17:02:47.0460 1428 ws2ifsl (e3a3cb253c0ec2494d4a61f5e43a389c) C:\Windows\system32\drivers\ws2ifsl.sys
17:02:47.0461 1428 ws2ifsl - ok
17:02:47.0779 1428 WUDFRd (ac13cb789d93412106b0fb6c7eb2bcb6) C:\Windows\system32\DRIVERS\WUDFRd.sys
17:02:47.0780 1428 WUDFRd - ok
17:02:48.0098 1428 {49DE1C67-83F8-4102-99E0-C16DCC7EEC796} (4d840c6af3c020ed3a35efba9025cf4a) C:\Program Files\Acer Arcade Deluxe\PlayMovie\000.fcl
17:02:48.0099 1428 {49DE1C67-83F8-4102-99E0-C16DCC7EEC796} - ok
17:02:48.0136 1428 MBR (0x1B8) (7ba4c7ea1ef33a92f5f01be63edacb6a) \Device\Harddisk0\DR0
17:02:48.0881 1428 \Device\Harddisk0\DR0 - ok
17:02:48.0912 1428 Boot (0x1200) (33129fe872bbcd0da4b088af46bdfd8c) \Device\Harddisk0\DR0\Partition0
17:02:48.0930 1428 \Device\Harddisk0\DR0\Partition0 - ok
17:02:48.0950 1428 Boot (0x1200) (e18fdbb50e0d0fbd154f7e993f992cc6) \Device\Harddisk0\DR0\Partition1
17:02:48.0952 1428 \Device\Harddisk0\DR0\Partition1 - ok
17:02:48.0956 1428 ============================================================
17:02:48.0956 1428 Scan finished
17:02:48.0956 1428 ============================================================
17:02:48.0969 4972 Detected object count: 1
17:02:48.0969 4972 Actual detected object count: 1
17:04:40.0260 4972 Backup copy found, using it..
17:04:40.0754 4972 C:\Windows\system32\DRIVERS\tdx.sys - will be cured on reboot
17:05:24.0900 4972 C:\Windows\System32\c_96402.nls - will be deleted on reboot
17:05:27.0677 4972 tdx ( Rootkit.Win32.ZAccess.aml ) - User select action: Cure
17:05:38.0071 0156 Deinitialize success
VOILA :-)
Merci
Salut, j'ai moi aussi ce problème sauf que TDSSKiller n'a rien trouvé (j'ai essayé RogueKiller aussi ...), pouvez vous m'aider s'il vous plaît?
PS : Je précise que j'ai un bug empêchant mon pare-feu de s'activer et que mon antivirus est avira.
PS : Je précise que j'ai un bug empêchant mon pare-feu de s'activer et que mon antivirus est avira.
Salut, Moi aussi j'ai ce probleme.. Je n'arrive a acceder a aucune page web !
De plus, je n'arrive pas a activer mon pare-feu, et je ne peux plus partager ma connection internet ! Tous sa, en même temps ! S'il vous plait.. De l'aide ! :/
De plus, je n'arrive pas a activer mon pare-feu, et je ne peux plus partager ma connection internet ! Tous sa, en même temps ! S'il vous plait.. De l'aide ! :/
