Comment debloquer son ordi du virus gendarme?

clair15 -  
 Vbo -
Bonjour, Je ne sais pas quelles indications suivre afin de débloquer mon ordi , je vois beaucoup de réponses a des personnes dans le même cas que moi , mais ce n'est pas pas très clair .Mon ordi est bloqué par une page avec "le virus gendarmerie" donc j'ai ensuite eteint mon ordi pour ensuite le rallumer en mode sans echec avec charge réseau , mais ensuite je ne comprend pas ce qu'il faut faire. Pouvez-vous m'aidez s'il vous plait. Merci d'avance



A voir également:

5 réponses

Réponse 1 / 5
Malekal_morte- Messages postés 180304 Date d'inscription   Statut Modérateur, Contributeur sécurité Dernière intervention   24 685
 
Salut,

en mode sans échec avec prise en charge du réseau :

Télécharge RogueKiller : https://www.luanagames.com/index.fr.html
Lances en option 2 (Suppression).
Poste le rapport ici.

Si RogueKiller est bloqué - tente de le renommer en iexplore ou winlogon
Si tjrs pas - affiche les extensions de fichiers : https://www.commentcamarche.net/informatique/windows/185-afficher-les-extensions-et-les-fichiers-caches-sous-windows/
Renomme RogueKiller.exe en RogueKiller.com
7
clair15
 
j'ai téléchargé Roguekiller , j'ai fait l'option 2 ensuite cela m'ouvre un bloc note avec dedans :

aRogueKiller V6.2.0 [12/12/2011] par Tigzy
mail: tigzyRK<at>gmail<dot>com
Remontees: http://www.sur-la-toile.com/discussion-193725-1-BRogueKillerD-Remontees.html
Blog: http://tigzyrk.blogspot.com

Systeme d'exploitation: Windows 7 (6.1.7600 ) 32 bits version
Demarrage : Mode sans echec avec prise en charge reseau
Utilisateur: Claire [Droits d'admin]
Mode: Suppression -- Date : 28/12/2011 00:27:03

¤¤¤ Processus malicieux: 0 ¤¤¤

¤¤¤ Entrees de registre: 6 ¤¤¤
[SUSP PATH] HKCU\[...]\Run : h31iqs9r.exe (C:\Users\Claire\AppData\Roaming\h31iqs9r.exe) -> DELETED
[SUSP PATH] HKLM\[...]\Run : MozillaAgent (C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\2SIEVW2S\dl[2].htm) -> DELETED
[SUSP PATH] HKUS\.DEFAULT[...]\Run : JjMfxedeVWWSOPA.exe (C:\ProgramData\JjMfxedeVWWSOPA.exe) -> DELETED
[HJPOL] HKLM\[...]\System : DisableTaskMgr (1) -> DELETED
[HJ] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> REPLACED (0)
[HJ] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> REPLACED (0)

¤¤¤ Fichiers / Dossiers particuliers: ¤¤¤

¤¤¤ Driver: [NOT LOADED] ¤¤¤

¤¤¤ Infection : Root.MBR ¤¤¤

¤¤¤ Fichier HOSTS: ¤¤¤


¤¤¤ MBR Verif: ¤¤¤
--- User ---
[MBR] 1ce97c24b0e20e20e660fe80cc5fedf3
[BSP] b63ae0577dc7bf86584edfeb2bccdcfc : MBR Code unknown
Partition table:
0 - [ACTIVE] NTFS [VISIBLE] Offset (sectors): 2048 | Size: 208 Mo
1 - [XXXXXX] NTFS [VISIBLE] Offset (sectors): 409600 | Size: 306457 Mo
2 - [XXXXXX] NTFS [VISIBLE] Offset (sectors): 598960128 | Size: 13295 Mo
3 - [XXXXXX] FAT32 [VISIBLE] Offset (sectors): 624928768 | Size: 108 Mo
User != LL1 ... KO!
--- LL1 ---
[MBR] ca8b5299661cfd27672465051e64c67c
[BSP] 666f184bac2b503c40b76626b2a144df : MBR Code unknown
Partition table:
0 - [ACTIVE] NTFS [VISIBLE] Offset (sectors): 2048 | Size: 208 Mo
1 - [XXXXXX] NTFS [VISIBLE] Offset (sectors): 409600 | Size: 306457 Mo
2 - [XXXXXX] NTFS [VISIBLE] Offset (sectors): 598960128 | Size: 13295 Mo
3 - [XXXXXX] FAT32 [VISIBLE] Offset (sectors): 624928768 | Size: 108 Mo
User != LL2 ... KO!
--- LL2 ---
[MBR] ca8b5299661cfd27672465051e64c67c
[BSP] 666f184bac2b503c40b76626b2a144df : MBR Code unknown
Partition table:
0 - [ACTIVE] NTFS [VISIBLE] Offset (sectors): 2048 | Size: 208 Mo
1 - [XXXXXX] NTFS [VISIBLE] Offset (sectors): 409600 | Size: 306457 Mo
2 - [XXXXXX] NTFS [VISIBLE] Offset (sectors): 598960128 | Size: 13295 Mo
3 - [XXXXXX] FAT32 [VISIBLE] Offset (sectors): 624928768 | Size: 108 Mo

Termine : << RKreport[1].txt >>
RKreport[1].txt

mais je suis censé faire quoi après?
0
soso
 
RogueKiller V7.2.1 [29/02/2012] par Tigzy
mail: tigzyRK<at>gmail<dot>com
Remontees: http://www.sur-la-toile.com/discussion-193725-1-BRogueKillerD-Remontees.html
Blog: http://tigzyrk.blogspot.com

Systeme d'exploitation: Windows Vista (6.0.6002 Service Pack 2) 32 bits version
Demarrage : Mode sans echec avec prise en charge reseau
Utilisateur: Solène [Droits d'admin]
Mode: DNS RAZ -- Date: 05/03/2012 22:23:19

¤¤¤ Processus malicieux: 0 ¤¤¤

¤¤¤ Driver: [NON CHARGE] ¤¤¤

¤¤¤ Entrees de registre: 0 ¤¤¤

Termine : << RKreport[5].txt >>
RKreport[1].txt ; RKreport[2].txt ; RKreport[3].txt ; RKreport[4].txt ; RKreport[5].txt
0
Réponse 2 / 5
Malekal_morte- Messages postés 180304 Date d'inscription   Statut Modérateur, Contributeur sécurité Dernière intervention   24 685
 
L'infection a été supprimée.
Tu peux redémarrer en mode normal.
Tu devrais avoir récupéré le bureau.


Passe un coup de TDSSKiller : https://forum.malekal.com/viewtopic.php?t=28637&start=
Lire ce qui est écrit au niveau des suppressions/réparation (delete et cure), ne pas supprimer n'importe quoi.
Poste le rapport ici.

et aussi :

Tu peux suivre les indications de cette page pour t'aider : https://www.malekal.com/tutorial-otl/

* Télécharge http://www.geekstogo.com/forum/files/file/398-otl-oldtimers-list-it/ sur ton bureau.
(Sous Vista/Win7, il faut cliquer droit sur OTL et choisir Exécuter en tant qu'administrateur)

* Lance OTL
* Sur OTL, sous Personnalisation, copie-colle le script ci-dessous :
netsvcs
msconfig
safebootminimal
safebootnetwork
activex
drivers32
%ALLUSERSPROFILE%\Application Data\*.
%ALLUSERSPROFILE%\Application Data\*.exe /s
%APPDATA%\*.
%APPDATA%\*.exe /s
%temp%\.exe /s
%SYSTEMDRIVE%\*.exe
%systemroot%\*. /mp /s
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job /lockedfiles
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
/md5start
consrv.dll
explorer.exe
winlogon.exe
wininit.exe
/md5stop
HKEY_LOCAL_MACHINE\SYSTEM\SYSTEM\CurrentControlSet\Services\lanmanserver\parameters /s
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager\SubSystems /s
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager\AppCertDlls /s
CREATERESTOREPOINT
nslookup www.google.fr /c
SAVEMBR:0
hklm\software\clients\startmenuinternet|command /rs
hklm\software\clients\startmenuinternet|command /64 /rs
* Clique sur le bouton Analyse.
* Quand le scan est fini, utilise le site http://pjjoint.malekal.com/ pour envoyer le rapport OTL.txt (et Extra.txt), donne le ou les liens pjjoint qui pointent vers ces rapports ici dans un nouveau message.



~~

La suite demain, je vais me pieuter.
Poste bien les liens pjjoint vers les rapports.

0
Réponse 3 / 5
clair15
 
VOIci le rapport du TDSSKiller:
00:47:37.0689 3532 TDSS rootkit removing tool 2.6.25.0 Dec 23 2011 14:51:16
00:47:37.0908 3532 ============================================================
00:47:37.0908 3532 Current date / time: 2011/12/28 00:47:37.0908
00:47:37.0908 3532 SystemInfo:
00:47:37.0908 3532
00:47:37.0908 3532 OS Version: 6.1.7600 ServicePack: 0.0
00:47:37.0908 3532 Product type: Workstation
00:47:37.0908 3532 ComputerName: CLAIRE-PC
00:47:37.0908 3532 UserName: Claire
00:47:37.0908 3532 Windows directory: C:\Windows
00:47:37.0908 3532 System windows directory: C:\Windows
00:47:37.0908 3532 Processor architecture: Intel x86
00:47:37.0908 3532 Number of processors: 2
00:47:37.0908 3532 Page size: 0x1000
00:47:37.0908 3532 Boot type: Normal boot
00:47:37.0908 3532 ============================================================
00:47:40.0702 3532 Initialize success
00:47:50.0499 1548 ============================================================
00:47:50.0499 1548 Scan started
00:47:50.0499 1548 Mode: Manual;
00:47:50.0499 1548 ============================================================
00:47:51.0856 1548 1394ohci (6d2aca41739bfe8cb86ee8e85f29697d) C:\Windows\system32\DRIVERS\1394ohci.sys
00:47:51.0872 1548 1394ohci - ok
00:47:51.0934 1548 ACPI (f0e07d144c8685b8774bc32fc8da4df0) C:\Windows\system32\DRIVERS\ACPI.sys
00:47:51.0934 1548 ACPI - ok
00:47:51.0997 1548 AcpiPmi (98d81ca942d19f7d9153b095162ac013) C:\Windows\system32\DRIVERS\acpipmi.sys
00:47:51.0997 1548 AcpiPmi - ok
00:47:52.0059 1548 adp94xx (21e785ebd7dc90a06391141aac7892fb) C:\Windows\system32\DRIVERS\adp94xx.sys
00:47:52.0075 1548 adp94xx - ok
00:47:52.0137 1548 adpahci (0c676bc278d5b59ff5abd57bbe9123f2) C:\Windows\system32\DRIVERS\adpahci.sys
00:47:52.0153 1548 adpahci - ok
00:47:52.0215 1548 adpu320 (7c7b5ee4b7b822ec85321fe23a27db33) C:\Windows\system32\DRIVERS\adpu320.sys
00:47:52.0231 1548 adpu320 - ok
00:47:52.0387 1548 AFD (0db7a48388d54d154ebec120461a0fcd) C:\Windows\system32\drivers\afd.sys
00:47:52.0402 1548 AFD - ok
00:47:52.0450 1548 agp440 (507812c3054c21cef746b6ee3d04dd6e) C:\Windows\system32\DRIVERS\agp440.sys
00:47:52.0466 1548 agp440 - ok
00:47:52.0528 1548 aic78xx (8b30250d573a8f6b4bd23195160d8707) C:\Windows\system32\DRIVERS\djsvs.sys
00:47:52.0528 1548 aic78xx - ok
00:47:52.0611 1548 aliide (0d40bcf52ea90fc7df2aeab6503dea44) C:\Windows\system32\DRIVERS\aliide.sys
00:47:52.0639 1548 aliide - ok
00:47:52.0780 1548 amdagp (3c6600a0696e90a463771c7422e23ab5) C:\Windows\system32\DRIVERS\amdagp.sys
00:47:52.0785 1548 amdagp - ok
00:47:52.0852 1548 amdide (cd5914170297126b6266860198d1d4f0) C:\Windows\system32\DRIVERS\amdide.sys
00:47:52.0852 1548 amdide - ok
00:47:53.0023 1548 AmdK8 (00dda200d71bac534bf56a9db5dfd666) C:\Windows\system32\DRIVERS\amdk8.sys
00:47:53.0030 1548 AmdK8 - ok
00:47:53.0122 1548 AmdPPM (3cbf30f5370fda40dd3e87df38ea53b6) C:\Windows\system32\DRIVERS\amdppm.sys
00:47:53.0170 1548 AmdPPM - ok
00:47:53.0282 1548 amdsata (19ce906b4cdc11fc4fef5745f33a63b6) C:\Windows\system32\drivers\amdsata.sys
00:47:53.0297 1548 amdsata - ok
00:47:53.0346 1548 amdsbs (ea43af0c423ff267355f74e7a53bdaba) C:\Windows\system32\DRIVERS\amdsbs.sys
00:47:53.0360 1548 amdsbs - ok
00:47:53.0404 1548 amdxata (869e67d66be326a5a9159fba8746fa70) C:\Windows\system32\drivers\amdxata.sys
00:47:53.0404 1548 amdxata - ok
00:47:53.0497 1548 AppID (feb834c02ce1e84b6a38f953ca067706) C:\Windows\system32\drivers\appid.sys
00:47:53.0502 1548 AppID - ok
00:47:53.0628 1548 arc (2932004f49677bd84dbc72edb754ffb3) C:\Windows\system32\DRIVERS\arc.sys
00:47:53.0644 1548 arc - ok
00:47:53.0675 1548 arcsas (5d6f36c46fd283ae1b57bd2e9feb0bc7) C:\Windows\system32\DRIVERS\arcsas.sys
00:47:53.0675 1548 arcsas - ok
00:47:53.0722 1548 aswFsBlk (a0d86b8ac93ef95620420c7a24ac5344) C:\Windows\system32\drivers\aswFsBlk.sys
00:47:53.0737 1548 aswFsBlk - ok
00:47:53.0815 1548 aswMonFlt (bd9119468c32b7ecd1e0544d3f286a73) C:\Windows\system32\drivers\aswMonFlt.sys
00:47:53.0815 1548 aswMonFlt - ok
00:47:53.0878 1548 aswRdr (69823954bbd461a73d69774928c9737e) C:\Windows\system32\drivers\aswRdr.sys
00:47:53.0878 1548 aswRdr - ok
00:47:53.0940 1548 aswSP (7ecc2776638b04553f9a85bd684c3abf) C:\Windows\system32\drivers\aswSP.sys
00:47:53.0940 1548 aswSP - ok
00:47:54.0003 1548 aswTdi (095ed820a926aa8189180b305e1bcfc9) C:\Windows\system32\drivers\aswTdi.sys
00:47:54.0018 1548 aswTdi - ok
00:47:54.0112 1548 AsyncMac (add2ade1c2b285ab8378d2daaf991481) C:\Windows\system32\DRIVERS\asyncmac.sys
00:47:54.0112 1548 AsyncMac - ok
00:47:54.0159 1548 atapi (338c86357871c167a96ab976519bf59e) C:\Windows\system32\DRIVERS\atapi.sys
00:47:54.0174 1548 atapi - ok
00:47:54.0252 1548 athr (76bab0c824e2d05b940c4dd40a9b08bf) C:\Windows\system32\DRIVERS\athr.sys
00:47:54.0299 1548 athr - ok
00:47:54.0439 1548 b06bdrv (1a231abec60fd316ec54c66715543cec) C:\Windows\system32\DRIVERS\bxvbdx.sys
00:47:54.0471 1548 b06bdrv - ok
00:47:54.0564 1548 b57nd60x (bd8869eb9cde6bbe4508d869929869ee) C:\Windows\system32\DRIVERS\b57nd60x.sys
00:47:54.0564 1548 b57nd60x - ok
00:47:54.0720 1548 BCM43XX (3508fd340c8b0fbbdb548f174d48762e) C:\Windows\system32\DRIVERS\bcmwl6.sys
00:47:54.0814 1548 BCM43XX - ok
00:47:54.0892 1548 Beep (505506526a9d467307b3c393dedaf858) C:\Windows\system32\drivers\Beep.sys
00:47:54.0907 1548 Beep - ok
00:47:55.0001 1548 blbdrive (2287078ed48fcfc477b05b20cf38f36f) C:\Windows\system32\DRIVERS\blbdrive.sys
00:47:55.0017 1548 blbdrive - ok
00:47:55.0095 1548 bowser (9a5c671b7fbae4865149bb11f59b91b2) C:\Windows\system32\DRIVERS\bowser.sys
00:47:55.0095 1548 bowser - ok
00:47:55.0141 1548 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\DRIVERS\BrFiltLo.sys
00:47:55.0157 1548 BrFiltLo - ok
00:47:55.0188 1548 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\DRIVERS\BrFiltUp.sys
00:47:55.0188 1548 BrFiltUp - ok
00:47:55.0251 1548 Brserid (845b8ce732e67f3b4133164868c666ea) C:\Windows\System32\Drivers\Brserid.sys
00:47:55.0266 1548 Brserid - ok
00:47:55.0297 1548 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\System32\Drivers\BrSerWdm.sys
00:47:55.0297 1548 BrSerWdm - ok
00:47:55.0360 1548 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\System32\Drivers\BrUsbMdm.sys
00:47:55.0375 1548 BrUsbMdm - ok
00:47:55.0485 1548 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\System32\Drivers\BrUsbSer.sys
00:47:55.0500 1548 BrUsbSer - ok
00:47:55.0563 1548 BthEnum (2865a5c8e98c70c605f417908cebb3a4) C:\Windows\system32\drivers\BthEnum.sys
00:47:55.0563 1548 BthEnum - ok
00:47:55.0594 1548 BTHMODEM (ed3df7c56ce0084eb2034432fc56565a) C:\Windows\system32\DRIVERS\bthmodem.sys
00:47:55.0594 1548 BTHMODEM - ok
00:47:55.0641 1548 BthPan (ad1872e5829e8a2c3b5b4b641c3eab0e) C:\Windows\system32\DRIVERS\bthpan.sys
00:47:55.0672 1548 BthPan - ok
00:47:55.0719 1548 BTHPORT (88059ff1ded4472acd17eebabd393069) C:\Windows\System32\Drivers\BTHport.sys
00:47:55.0750 1548 BTHPORT - ok
00:47:55.0859 1548 BTHUSB (80e6384beec03b8bd45edea29802d657) C:\Windows\System32\Drivers\BTHUSB.sys
00:47:55.0859 1548 BTHUSB - ok
00:47:55.0937 1548 btwaudio (ce5833c144ca6623bcbde93b188aa850) C:\Windows\system32\drivers\btwaudio.sys
00:47:55.0937 1548 btwaudio - ok
00:47:55.0999 1548 btwavdt (af9148c3e844131ac954cb53ff43d971) C:\Windows\system32\drivers\btwavdt.sys
00:47:55.0999 1548 btwavdt - ok
00:47:56.0374 1548 btwl2cap (aafd7cb76ba61fbb08e302da208c974a) C:\Windows\system32\DRIVERS\btwl2cap.sys
00:47:56.0374 1548 btwl2cap - ok
00:47:56.0483 1548 btwrchid (480b3d195854b2e55299cddddc50bcf9) C:\Windows\system32\DRIVERS\btwrchid.sys
00:47:56.0483 1548 btwrchid - ok
00:47:56.0577 1548 cdfs (77ea11b065e0a8ab902d78145ca51e10) C:\Windows\system32\DRIVERS\cdfs.sys
00:47:56.0577 1548 cdfs - ok
00:47:56.0639 1548 cdrom (ba6e70aa0e6091bc39de29477d866a77) C:\Windows\system32\DRIVERS\cdrom.sys
00:47:56.0639 1548 cdrom - ok
00:47:56.0701 1548 circlass (3fe3fe94a34df6fb06e6418d0f6a0060) C:\Windows\system32\DRIVERS\circlass.sys
00:47:56.0701 1548 circlass - ok
00:47:56.0748 1548 CLFS (635181e0e9bbf16871bf5380d71db02d) C:\Windows\system32\CLFS.sys
00:47:56.0764 1548 CLFS - ok
00:47:56.0935 1548 CmBatt (dea805815e587dad1dd2c502220b5616) C:\Windows\system32\DRIVERS\CmBatt.sys
00:47:56.0935 1548 CmBatt - ok
00:47:56.0998 1548 cmdide (c537b1db64d495b9b4717b4d6d9edbf2) C:\Windows\system32\DRIVERS\cmdide.sys
00:47:56.0998 1548 cmdide - ok
00:47:57.0123 1548 CNG (1b675691ed940766149c93e8f4488d68) C:\Windows\system32\Drivers\cng.sys
00:47:57.0154 1548 CNG - ok
00:47:57.0232 1548 Compbatt (a6023d3823c37043986713f118a89bee) C:\Windows\system32\DRIVERS\compbatt.sys
00:47:57.0232 1548 Compbatt - ok
00:47:57.0310 1548 CompositeBus (f1724ba27e97d627f808fb0ba77a28a6) C:\Windows\system32\DRIVERS\CompositeBus.sys
00:47:57.0310 1548 CompositeBus - ok
00:47:57.0388 1548 crcdisk (2c4ebcfc84a9b44f209dff6c6e6c61d1) C:\Windows\system32\DRIVERS\crcdisk.sys
00:47:57.0403 1548 crcdisk - ok
00:47:57.0528 1548 DfsC (83d1ecea8faae75604c0fa49ac7ad996) C:\Windows\system32\Drivers\dfsc.sys
00:47:57.0544 1548 DfsC - ok
00:47:57.0606 1548 discache (1a050b0274bfb3890703d490f330c0da) C:\Windows\system32\drivers\discache.sys
00:47:57.0606 1548 discache - ok
00:47:57.0669 1548 Disk (565003f326f99802e68ca78f2a68e9ff) C:\Windows\system32\DRIVERS\disk.sys
00:47:57.0684 1548 Disk - ok
00:47:57.0762 1548 drmkaud (b918e7c5f9bf77202f89e1a9539f2eb4) C:\Windows\system32\drivers\drmkaud.sys
00:47:57.0762 1548 drmkaud - ok
00:47:57.0871 1548 DVMIO (8cf55015b2a443ee869c90cab31fd435) C:\SPLASH.SYS\config\dvmio.sys
00:47:57.0871 1548 DVMIO - ok
00:47:57.0983 1548 DXGKrnl (1679a4669326cb1a67cc95658d273234) C:\Windows\System32\drivers\dxgkrnl.sys
00:47:58.0003 1548 DXGKrnl - ok
00:47:58.0175 1548 ebdrv (024e1b5cac09731e4d868e64dbfb4ab0) C:\Windows\system32\DRIVERS\evbdx.sys
00:47:58.0253 1548 ebdrv - ok
00:47:58.0393 1548 elxstor (0ed67910c8c326796faa00b2bf6d9d3c) C:\Windows\system32\DRIVERS\elxstor.sys
00:47:58.0424 1548 elxstor - ok
00:47:58.0471 1548 ErrDev (8fc3208352dd3912c94367a206ab3f11) C:\Windows\system32\DRIVERS\errdev.sys
00:47:58.0471 1548 ErrDev - ok
00:47:58.0549 1548 exfat (2dc9108d74081149cc8b651d3a26207f) C:\Windows\system32\drivers\exfat.sys
00:47:58.0549 1548 exfat - ok
00:47:58.0596 1548 fastfat (7e0ab74553476622fb6ae36f73d97d35) C:\Windows\system32\drivers\fastfat.sys
00:47:58.0612 1548 fastfat - ok
00:47:58.0658 1548 fdc (e817a017f82df2a1f8cfdbda29388b29) C:\Windows\system32\DRIVERS\fdc.sys
00:47:58.0674 1548 fdc - ok
00:47:58.0736 1548 FileInfo (6cf00369c97f3cf563be99be983d13d8) C:\Windows\system32\drivers\fileinfo.sys
00:47:58.0736 1548 FileInfo - ok
00:47:58.0752 1548 Filetrace (42c51dc94c91da21cb9196eb64c45db9) C:\Windows\system32\drivers\filetrace.sys
00:47:58.0768 1548 Filetrace - ok
00:47:58.0783 1548 flpydisk (87907aa70cb3c56600f1c2fb8841579b) C:\Windows\system32\DRIVERS\flpydisk.sys
00:47:58.0799 1548 flpydisk - ok
00:47:58.0846 1548 FltMgr (7520ec808e0c35e0ee6f841294316653) C:\Windows\system32\drivers\fltmgr.sys
00:47:58.0861 1548 FltMgr - ok
00:47:58.0908 1548 FsDepends (1a16b57943853e598cff37fe2b8cbf1d) C:\Windows\system32\drivers\FsDepends.sys
00:47:58.0908 1548 FsDepends - ok
00:47:58.0939 1548 Fs_Rec (a574b4360e438977038aae4bf60d79a2) C:\Windows\system32\drivers\Fs_Rec.sys
00:47:58.0955 1548 Fs_Rec - ok
00:47:59.0017 1548 fvevol (dafbd9fe39197495aed6d51f3b85b5d2) C:\Windows\system32\DRIVERS\fvevol.sys
00:47:59.0048 1548 fvevol - ok
00:47:59.0080 1548 gagp30kx (65ee0c7a58b65e74ae05637418153938) C:\Windows\system32\DRIVERS\gagp30kx.sys
00:47:59.0095 1548 gagp30kx - ok
00:47:59.0189 1548 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
00:47:59.0189 1548 GEARAspiWDM - ok
00:47:59.0282 1548 hcw85cir (c44e3c2bab6837db337ddee7544736db) C:\Windows\system32\drivers\hcw85cir.sys
00:47:59.0314 1548 hcw85cir - ok
00:47:59.0376 1548 HdAudAddService (3530cad25deba7dc7de8bb51632cbc5f) C:\Windows\system32\drivers\HdAudio.sys
00:47:59.0392 1548 HdAudAddService - ok
00:47:59.0438 1548 HDAudBus (717a2207fd6f13ad3e664c7d5a43c7bf) C:\Windows\system32\DRIVERS\HDAudBus.sys
00:47:59.0438 1548 HDAudBus - ok
00:47:59.0485 1548 HidBatt (1d58a7f3e11a9731d0eaaaa8405acc36) C:\Windows\system32\DRIVERS\HidBatt.sys
00:47:59.0485 1548 HidBatt - ok
00:47:59.0657 1548 HidBth (89448f40e6df260c206a193a4683ba78) C:\Windows\system32\DRIVERS\hidbth.sys
00:47:59.0657 1548 HidBth - ok
00:47:59.0735 1548 HidIr (cf50b4cf4a4f229b9f3c08351f99ca5e) C:\Windows\system32\DRIVERS\hidir.sys
00:47:59.0750 1548 HidIr - ok
00:47:59.0860 1548 HidUsb (25072fb35ac90b25f9e4e3bacf774102) C:\Windows\system32\DRIVERS\hidusb.sys
00:47:59.0860 1548 HidUsb - ok
00:47:59.0969 1548 HpqKbFiltr (1210960ff8928950d2a786895b0c424a) C:\Windows\system32\DRIVERS\HpqKbFiltr.sys
00:47:59.0969 1548 HpqKbFiltr - ok
00:48:00.0062 1548 HpSAMD (295fdc419039090eb8b49ffdbb374549) C:\Windows\system32\DRIVERS\HpSAMD.sys
00:48:00.0078 1548 HpSAMD - ok
00:48:00.0172 1548 HTTP (c531c7fd9e8b62021112787c4e2c5a5a) C:\Windows\system32\drivers\HTTP.sys
00:48:00.0203 1548 HTTP - ok
00:48:00.0250 1548 hwpolicy (8305f33cde89ad6c7a0763ed0b5a8d42) C:\Windows\system32\drivers\hwpolicy.sys
00:48:00.0265 1548 hwpolicy - ok
00:48:00.0312 1548 i8042prt (f151f0bdc47f4a28b1b20a0818ea36d6) C:\Windows\system32\DRIVERS\i8042prt.sys
00:48:00.0328 1548 i8042prt - ok
00:48:00.0421 1548 iaStor (d483687eace0c065ee772481a96e05f5) C:\Windows\system32\DRIVERS\iaStor.sys
00:48:00.0421 1548 iaStor - ok
00:48:00.0484 1548 iaStorV (71f1a494fedf4b33c02c4a6a28d6d9e9) C:\Windows\system32\drivers\iaStorV.sys
00:48:00.0484 1548 iaStorV - ok
00:48:00.0718 1548 igfx (81f7c715528ab621c6af58869d4b07b9) C:\Windows\system32\DRIVERS\igdkmd32.sys
00:48:00.0842 1548 igfx - ok
00:48:00.0889 1548 iirsp (4173ff5708f3236cf25195fecd742915) C:\Windows\system32\DRIVERS\iirsp.sys
00:48:00.0889 1548 iirsp - ok
00:48:00.0967 1548 intelide (a0f12f2c9ba6c72f3987ce780e77c130) C:\Windows\system32\DRIVERS\intelide.sys
00:48:00.0967 1548 intelide - ok
00:48:01.0030 1548 intelppm (3b514d27bfc4accb4037bc6685f766e0) C:\Windows\system32\DRIVERS\intelppm.sys
00:48:01.0030 1548 intelppm - ok
00:48:01.0108 1548 IpFilterDriver (709d1761d3b19a932ff0238ea6d50200) C:\Windows\system32\DRIVERS\ipfltdrv.sys
00:48:01.0108 1548 IpFilterDriver - ok
00:48:01.0170 1548 IPMIDRV (e4454b6c37d7ffd5649611f6496308a7) C:\Windows\system32\DRIVERS\IPMIDrv.sys
00:48:01.0186 1548 IPMIDRV - ok
00:48:01.0217 1548 IPNAT (a5fa468d67abcdaa36264e463a7bb0cd) C:\Windows\system32\drivers\ipnat.sys
00:48:01.0232 1548 IPNAT - ok
00:48:01.0279 1548 IRENUM (42996cff20a3084a56017b7902307e9f) C:\Windows\system32\drivers\irenum.sys
00:48:01.0279 1548 IRENUM - ok
00:48:01.0342 1548 isapnp (1f32bb6b38f62f7df1a7ab7292638a35) C:\Windows\system32\DRIVERS\isapnp.sys
00:48:01.0357 1548 isapnp - ok
00:48:01.0404 1548 iScsiPrt (ed46c223ae46c6866ab77cdc41c404b7) C:\Windows\system32\DRIVERS\msiscsi.sys
00:48:01.0420 1548 iScsiPrt - ok
00:48:01.0451 1548 kbdclass (adef52ca1aeae82b50df86b56413107e) C:\Windows\system32\DRIVERS\kbdclass.sys
00:48:01.0466 1548 kbdclass - ok
00:48:01.0529 1548 kbdhid (3d9f0ebf350edcfd6498057301455964) C:\Windows\system32\DRIVERS\kbdhid.sys
00:48:01.0529 1548 kbdhid - ok
00:48:01.0576 1548 KSecDD (e36a061ec11b373826905b21be10948f) C:\Windows\system32\Drivers\ksecdd.sys
00:48:01.0591 1548 KSecDD - ok
00:48:01.0638 1548 KSecPkg (365c6154bbbc5377173f1ca7bfb6cc59) C:\Windows\system32\Drivers\ksecpkg.sys
00:48:01.0654 1548 KSecPkg - ok
00:48:01.0732 1548 lltdio (f7611ec07349979da9b0ae1f18ccc7a6) C:\Windows\system32\DRIVERS\lltdio.sys
00:48:01.0747 1548 lltdio - ok
00:48:01.0810 1548 LSI_FC (eb119a53ccf2acc000ac71b065b78fef) C:\Windows\system32\DRIVERS\lsi_fc.sys
00:48:01.0825 1548 LSI_FC - ok
00:48:01.0856 1548 LSI_SAS (8ade1c877256a22e49b75d1cc9161f9c) C:\Windows\system32\DRIVERS\lsi_sas.sys
00:48:01.0872 1548 LSI_SAS - ok
00:48:01.0888 1548 LSI_SAS2 (dc9dc3d3daa0e276fd2ec262e38b11e9) C:\Windows\system32\DRIVERS\lsi_sas2.sys
00:48:01.0903 1548 LSI_SAS2 - ok
00:48:01.0934 1548 LSI_SCSI (0a036c7d7cab643a7f07135ac47e0524) C:\Windows\system32\DRIVERS\lsi_scsi.sys
00:48:01.0950 1548 LSI_SCSI - ok
00:48:01.0981 1548 luafv (6703e366cc18d3b6e534f5cf7df39cee) C:\Windows\system32\drivers\luafv.sys
00:48:01.0981 1548 luafv - ok
00:48:02.0028 1548 megasas (0fff5b045293002ab38eb1fd1fc2fb74) C:\Windows\system32\DRIVERS\megasas.sys
00:48:02.0028 1548 megasas - ok
00:48:02.0075 1548 MegaSR (dcbab2920c75f390caf1d29f675d03d6) C:\Windows\system32\DRIVERS\MegaSR.sys
00:48:02.0075 1548 MegaSR - ok
00:48:02.0122 1548 Modem (f001861e5700ee84e2d4e52c712f4964) C:\Windows\system32\drivers\modem.sys
00:48:02.0122 1548 Modem - ok
00:48:02.0153 1548 monitor (79d10964de86b292320e9dfe02282a23) C:\Windows\system32\DRIVERS\monitor.sys
00:48:02.0153 1548 monitor - ok
00:48:02.0200 1548 mouclass (fb18cc1d4c2e716b6b903b0ac0cc0609) C:\Windows\system32\DRIVERS\mouclass.sys
00:48:02.0200 1548 mouclass - ok
00:48:02.0231 1548 mouhid (2c388d2cd01c9042596cf3c8f3c7b24d) C:\Windows\system32\DRIVERS\mouhid.sys
00:48:02.0231 1548 mouhid - ok
00:48:02.0262 1548 mountmgr (921c18727c5920d6c0300736646931c2) C:\Windows\system32\drivers\mountmgr.sys
00:48:02.0278 1548 mountmgr - ok
00:48:02.0293 1548 mpio (2af5997438c55fb79d33d015c30e1974) C:\Windows\system32\DRIVERS\mpio.sys
00:48:02.0309 1548 mpio - ok
00:48:02.0356 1548 mpsdrv (ad2723a7b53dd1aacae6ad8c0bfbf4d0) C:\Windows\system32\drivers\mpsdrv.sys
00:48:02.0356 1548 mpsdrv - ok
00:48:02.0434 1548 MRxDAV (b1be47008d20e43da3adc37c24cdb89d) C:\Windows\system32\drivers\mrxdav.sys
00:48:02.0434 1548 MRxDAV - ok
00:48:02.0512 1548 mrxsmb (ca7570e42522e24324a12161db14ec02) C:\Windows\system32\DRIVERS\mrxsmb.sys
00:48:02.0512 1548 mrxsmb - ok
00:48:02.0574 1548 mrxsmb10 (f965c3ab2b2ae5c378f4562486e35051) C:\Windows\system32\DRIVERS\mrxsmb10.sys
00:48:02.0590 1548 mrxsmb10 - ok
00:48:02.0621 1548 mrxsmb20 (25c38264a3c72594dd21d355d70d7a5d) C:\Windows\system32\DRIVERS\mrxsmb20.sys
00:48:02.0621 1548 mrxsmb20 - ok
00:48:02.0668 1548 msahci (4326d168944123f38dd3b2d9c37a0b12) C:\Windows\system32\DRIVERS\msahci.sys
00:48:02.0668 1548 msahci - ok
00:48:02.0714 1548 msdsm (455029c7174a2dbb03dba8a0d8bddd9a) C:\Windows\system32\DRIVERS\msdsm.sys
00:48:02.0714 1548 msdsm - ok
00:48:02.0808 1548 Msfs (daefb28e3af5a76abcc2c3078c07327f) C:\Windows\system32\drivers\Msfs.sys
00:48:02.0808 1548 Msfs - ok
00:48:02.0839 1548 mshidkmdf (3e1e5767043c5af9367f0056295e9f84) C:\Windows\System32\drivers\mshidkmdf.sys
00:48:02.0839 1548 mshidkmdf - ok
00:48:02.0870 1548 msisadrv (0a4e5757ae09fa9622e3158cc1aef114) C:\Windows\system32\DRIVERS\msisadrv.sys
00:48:02.0870 1548 msisadrv - ok
00:48:02.0933 1548 MSKSSRV (8c0860d6366aaffb6c5bb9df9448e631) C:\Windows\system32\drivers\MSKSSRV.sys
00:48:02.0933 1548 MSKSSRV - ok
00:48:02.0980 1548 MSPCLOCK (3ea8b949f963562cedbb549eac0c11ce) C:\Windows\system32\drivers\MSPCLOCK.sys
00:48:02.0980 1548 MSPCLOCK - ok
00:48:03.0011 1548 MSPQM (f456e973590d663b1073e9c463b40932) C:\Windows\system32\drivers\MSPQM.sys
00:48:03.0011 1548 MSPQM - ok
00:48:03.0058 1548 MsRPC (0e008fc4819d238c51d7c93e7b41e560) C:\Windows\system32\drivers\MsRPC.sys
00:48:03.0058 1548 MsRPC - ok
00:48:03.0104 1548 mssmbios (fc6b9ff600cc585ea38b12589bd4e246) C:\Windows\system32\DRIVERS\mssmbios.sys
00:48:03.0104 1548 mssmbios - ok
00:48:03.0151 1548 MSTEE (b42c6b921f61a6e55159b8be6cd54a36) C:\Windows\system32\drivers\MSTEE.sys
00:48:03.0167 1548 MSTEE - ok
00:48:03.0198 1548 MTConfig (33599130f44e1f34631cea241de8ac84) C:\Windows\system32\DRIVERS\MTConfig.sys
00:48:03.0214 1548 MTConfig - ok
00:48:03.0245 1548 Mup (159fad02f64e6381758c990f753bcc80) C:\Windows\system32\Drivers\mup.sys
00:48:03.0245 1548 Mup - ok
00:48:03.0307 1548 NativeWifiP (26384429fcd85d83746f63e798ab1480) C:\Windows\system32\DRIVERS\nwifi.sys
00:48:03.0323 1548 NativeWifiP - ok
00:48:03.0370 1548 NDIS (23759d175a0a9baaf04d05047bc135a8) C:\Windows\system32\drivers\ndis.sys
00:48:03.0401 1548 NDIS - ok
00:48:03.0448 1548 NdisCap (0e1787aa6c9191d3d319e8bafe86f80c) C:\Windows\system32\DRIVERS\ndiscap.sys
00:48:03.0448 1548 NdisCap - ok
00:48:03.0494 1548 NdisTapi (e4a8aec125a2e43a9e32afeea7c9c888) C:\Windows\system32\DRIVERS\ndistapi.sys
00:48:03.0494 1548 NdisTapi - ok
00:48:03.0541 1548 Ndisuio (b30ae7f2b6d7e343b0df32e6c08fce75) C:\Windows\system32\DRIVERS\ndisuio.sys
00:48:03.0541 1548 Ndisuio - ok
00:48:03.0588 1548 NdisWan (267c415eadcbe53c9ca873dee39cf3a4) C:\Windows\system32\DRIVERS\ndiswan.sys
00:48:03.0588 1548 NdisWan - ok
00:48:03.0619 1548 NDProxy (af7e7c63dcef3f8772726f86039d6eb4) C:\Windows\system32\drivers\NDProxy.sys
00:48:03.0635 1548 NDProxy - ok
00:48:03.0666 1548 NetBIOS (80b275b1ce3b0e79909db7b39af74d51) C:\Windows\system32\DRIVERS\netbios.sys
00:48:03.0666 1548 NetBIOS - ok
00:48:03.0697 1548 NetBT (dd52a733bf4ca5af84562a5e2f963b91) C:\Windows\system32\DRIVERS\netbt.sys
00:48:03.0713 1548 NetBT - ok
00:48:03.0900 1548 netw5v32 (58218ec6b61b1169cf54aab0d00f5fe2) C:\Windows\system32\DRIVERS\netw5v32.sys
00:48:04.0025 1548 netw5v32 - ok
00:48:04.0072 1548 nfrd960 (1d85c4b390b0ee09c7a46b91efb2c097) C:\Windows\system32\DRIVERS\nfrd960.sys
00:48:04.0087 1548 nfrd960 - ok
00:48:04.0134 1548 Npfs (1db262a9f8c087e8153d89bef3d2235f) C:\Windows\system32\drivers\Npfs.sys
00:48:04.0134 1548 Npfs - ok
00:48:04.0181 1548 nsiproxy (e9a0a4d07e53d8fea2bb8387a3293c58) C:\Windows\system32\drivers\nsiproxy.sys
00:48:04.0181 1548 nsiproxy - ok
00:48:04.0290 1548 Ntfs (187002ce05693c306f43c873f821381f) C:\Windows\system32\drivers\Ntfs.sys
00:48:04.0321 1548 Ntfs - ok
00:48:04.0384 1548 Null (f9756a98d69098dca8945d62858a812c) C:\Windows\system32\drivers\Null.sys
00:48:04.0399 1548 Null - ok
00:48:04.0462 1548 nvraid (f1b0bed906f97e16f6d0c3629d2f21c6) C:\Windows\system32\drivers\nvraid.sys
00:48:04.0462 1548 nvraid - ok
00:48:04.0508 1548 nvstor (4520b63899e867f354ee012d34e11536) C:\Windows\system32\drivers\nvstor.sys
00:48:04.0524 1548 nvstor - ok
00:48:04.0571 1548 nv_agp (5a0983915f02bae73267cc2a041f717d) C:\Windows\system32\DRIVERS\nv_agp.sys
00:48:04.0571 1548 nv_agp - ok
00:48:04.0618 1548 ohci1394 (08a70a1f2cdde9bb49b885cb817a66eb) C:\Windows\system32\DRIVERS\ohci1394.sys
00:48:04.0618 1548 ohci1394 - ok
00:48:04.0696 1548 Parport (2ea877ed5dd9713c5ac74e8ea7348d14) C:\Windows\system32\DRIVERS\parport.sys
00:48:04.0696 1548 Parport - ok
00:48:04.0727 1548 partmgr (ff4218952b51de44fe910953a3e686b9) C:\Windows\system32\drivers\partmgr.sys
00:48:04.0742 1548 partmgr - ok
00:48:04.0758 1548 Parvdm (eb0a59f29c19b86479d36b35983daadc) C:\Windows\system32\DRIVERS\parvdm.sys
00:48:04.0774 1548 Parvdm - ok
00:48:04.0820 1548 pci (c858cb77c577780ecc456a892e7e7d0f) C:\Windows\system32\DRIVERS\pci.sys
00:48:04.0820 1548 pci - ok
00:48:04.0867 1548 pciide (afe86f419014db4e5593f69ffe26ce0a) C:\Windows\system32\DRIVERS\pciide.sys
00:48:04.0883 1548 pciide - ok
00:48:04.0930 1548 pcmcia (f396431b31693e71e8a80687ef523506) C:\Windows\system32\DRIVERS\pcmcia.sys
00:48:04.0945 1548 pcmcia - ok
00:48:04.0976 1548 pcw (250f6b43d2b613172035c6747aeeb19f) C:\Windows\system32\drivers\pcw.sys
00:48:04.0976 1548 pcw - ok
00:48:05.0023 1548 PEAUTH (9e0104ba49f4e6973749a02bf41344ed) C:\Windows\system32\drivers\peauth.sys
00:48:05.0039 1548 PEAUTH - ok
00:48:05.0179 1548 PptpMiniport (631e3e205ad6d86f2aed6a4a8e69f2db) C:\Windows\system32\DRIVERS\raspptp.sys
00:48:05.0179 1548 PptpMiniport - ok
00:48:05.0226 1548 Processor (85b1e3a0c7585bc4aae6899ec6fcf011) C:\Windows\system32\DRIVERS\processr.sys
00:48:05.0226 1548 Processor - ok
00:48:05.0288 1548 Psched (6270ccae2a86de6d146529fe55b3246a) C:\Windows\system32\DRIVERS\pacer.sys
00:48:05.0288 1548 Psched - ok
00:48:05.0382 1548 ql2300 (ab95ecf1f6659a60ddc166d8315b0751) C:\Windows\system32\DRIVERS\ql2300.sys
00:48:05.0429 1548 ql2300 - ok
00:48:05.0476 1548 ql40xx (b4dd51dd25182244b86737dc51af2270) C:\Windows\system32\DRIVERS\ql40xx.sys
00:48:05.0476 1548 ql40xx - ok
00:48:05.0522 1548 QWAVEdrv (584078ca1b95ca72df2a27c336f9719d) C:\Windows\system32\drivers\qwavedrv.sys
00:48:05.0522 1548 QWAVEdrv - ok
00:48:05.0569 1548 RasAcd (30a81b53c766d0133bb86d234e5556ab) C:\Windows\system32\DRIVERS\rasacd.sys
00:48:05.0569 1548 RasAcd - ok
00:48:05.0616 1548 RasAgileVpn (57ec4aef73660166074d8f7f31c0d4fd) C:\Windows\system32\DRIVERS\AgileVpn.sys
00:48:05.0616 1548 RasAgileVpn - ok
00:48:05.0647 1548 Rasl2tp (d9f91eafec2815365cbe6d167e4e332a) C:\Windows\system32\DRIVERS\rasl2tp.sys
00:48:05.0663 1548 Rasl2tp - ok
00:48:05.0725 1548 RasPppoe (0fe8b15916307a6ac12bfb6a63e45507) C:\Windows\system32\DRIVERS\raspppoe.sys
00:48:05.0725 1548 RasPppoe - ok
00:48:05.0788 1548 RasSstp (44101f495a83ea6401d886e7fd70096b) C:\Windows\system32\DRIVERS\rassstp.sys
00:48:05.0788 1548 RasSstp - ok
00:48:05.0834 1548 rdbss (835d7e81bf517a3b72384bdcc85e1ce6) C:\Windows\system32\DRIVERS\rdbss.sys
00:48:05.0834 1548 rdbss - ok
00:48:05.0881 1548 rdpbus (0d8f05481cb76e70e1da06ee9f0da9df) C:\Windows\system32\DRIVERS\rdpbus.sys
00:48:05.0897 1548 rdpbus - ok
00:48:05.0928 1548 RDPCDD (1e016846895b15a99f9a176a05029075) C:\Windows\system32\DRIVERS\RDPCDD.sys
00:48:05.0928 1548 RDPCDD - ok
00:48:05.0990 1548 RDPENCDD (5a53ca1598dd4156d44196d200c94b8a) C:\Windows\system32\drivers\rdpencdd.sys
00:48:05.0990 1548 RDPENCDD - ok
00:48:06.0053 1548 RDPREFMP (44b0a53cd4f27d50ed461dae0c0b4e1f) C:\Windows\system32\drivers\rdprefmp.sys
00:48:06.0053 1548 RDPREFMP - ok
00:48:06.0100 1548 RDPWD (801371ba9782282892d00aadb08ee367) C:\Windows\system32\drivers\RDPWD.sys
00:48:06.0100 1548 RDPWD - ok
00:48:06.0162 1548 rdyboost (4ea225bf1cf05e158853f30a99ca29a7) C:\Windows\system32\drivers\rdyboost.sys
00:48:06.0162 1548 rdyboost - ok
00:48:06.0256 1548 RFCOMM (cb928d9e6daf51879dd6ba8d02f01321) C:\Windows\system32\DRIVERS\rfcomm.sys
00:48:06.0256 1548 RFCOMM - ok
00:48:06.0349 1548 RimUsb (0f6756ef8bda6dfa7be50465c83132bb) C:\Windows\system32\Drivers\RimUsb.sys
00:48:06.0365 1548 RimUsb - ok
00:48:06.0443 1548 rspndr (032b0d36ad92b582d869879f5af5b928) C:\Windows\system32\DRIVERS\rspndr.sys
00:48:06.0443 1548 rspndr - ok
00:48:06.0505 1548 RSUSBSTOR - ok
00:48:06.0568 1548 RTL8167 (c5a68c5ec01fd6f03396dd154b48db56) C:\Windows\system32\DRIVERS\Rt86win7.sys
00:48:06.0583 1548 RTL8167 - ok
00:48:06.0646 1548 sbp2port (34ee0c44b724e3e4ce2eff29126de5b5) C:\Windows\system32\DRIVERS\sbp2port.sys
00:48:06.0661 1548 sbp2port - ok
00:48:06.0708 1548 scfilter (a95c54b2ac3cc9c73fcdf9e51a1d6b51) C:\Windows\system32\DRIVERS\scfilter.sys
00:48:06.0708 1548 scfilter - ok
00:48:06.0802 1548 sdbus (7b48cff3a475fe849dea65ec4d35c425) C:\Windows\system32\DRIVERS\sdbus.sys
00:48:06.0802 1548 sdbus - ok
00:48:06.0880 1548 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
00:48:06.0880 1548 secdrv - ok
00:48:06.0973 1548 Serenum (9ad8b8b515e3df6acd4212ef465de2d1) C:\Windows\system32\DRIVERS\serenum.sys
00:48:06.0989 1548 Serenum - ok
00:48:07.0051 1548 Serial (5fb7fcea0490d821f26f39cc5ea3d1e2) C:\Windows\system32\DRIVERS\serial.sys
00:48:07.0051 1548 Serial - ok
00:48:07.0114 1548 sermouse (79bffb520327ff916a582dfea17aa813) C:\Windows\system32\DRIVERS\sermouse.sys
00:48:07.0114 1548 sermouse - ok
00:48:07.0192 1548 sffdisk (9f976e1eb233df46fce808d9dea3eb9c) C:\Windows\system32\DRIVERS\sffdisk.sys
00:48:07.0192 1548 sffdisk - ok
00:48:07.0238 1548 sffp_mmc (932a68ee27833cfd57c1639d375f2731) C:\Windows\system32\DRIVERS\sffp_mmc.sys
00:48:07.0238 1548 sffp_mmc - ok
00:48:07.0301 1548 sffp_sd (4f1e5b0fe7c8050668dbfade8999aefb) C:\Windows\system32\DRIVERS\sffp_sd.sys
00:48:07.0301 1548 sffp_sd - ok
00:48:07.0363 1548 sfloppy (db96666cc8312ebc45032f30b007a547) C:\Windows\system32\DRIVERS\sfloppy.sys
00:48:07.0363 1548 sfloppy - ok
00:48:07.0441 1548 sisagp (2565cac0dc9fe0371bdce60832582b2e) C:\Windows\system32\DRIVERS\sisagp.sys
00:48:07.0441 1548 sisagp - ok
00:48:07.0519 1548 SiSRaid2 (a9f0486851becb6dda1d89d381e71055) C:\Windows\system32\DRIVERS\SiSRaid2.sys
00:48:07.0519 1548 SiSRaid2 - ok
00:48:07.0566 1548 SiSRaid4 (3727097b55738e2f554972c3be5bc1aa) C:\Windows\system32\DRIVERS\sisraid4.sys
00:48:07.0566 1548 SiSRaid4 - ok
00:48:07.0644 1548 Smb (3e21c083b8a01cb70ba1f09303010fce) C:\Windows\system32\DRIVERS\smb.sys
00:48:07.0644 1548 Smb - ok
00:48:07.0738 1548 spldr (95cf1ae7527fb70f7816563cbc09d942) C:\Windows\system32\drivers\spldr.sys
00:48:07.0738 1548 spldr - ok
00:48:07.0847 1548 srv (c4a027b8c0bd3fc0699f41fa5e9e0c87) C:\Windows\system32\DRIVERS\srv.sys
00:48:07.0862 1548 srv - ok
00:48:07.0909 1548 srv2 (414bb592cad8a79649d01f9d94318fb3) C:\Windows\system32\DRIVERS\srv2.sys
00:48:07.0909 1548 srv2 - ok
00:48:07.0987 1548 SrvHsfHDA (e00fdfaff025e94f9821153750c35a6d) C:\Windows\system32\DRIVERS\VSTAZL3.SYS
00:48:07.0987 1548 SrvHsfHDA - ok
00:48:08.0065 1548 SrvHsfV92 (ceb4e3b6890e1e42dca6694d9e59e1a0) C:\Windows\system32\DRIVERS\VSTDPV3.SYS
00:48:08.0096 1548 SrvHsfV92 - ok
00:48:08.0143 1548 SrvHsfWinac (bc0c7ea89194c299f051c24119000e17) C:\Windows\system32\DRIVERS\VSTCNXT3.SYS
00:48:08.0174 1548 SrvHsfWinac - ok
00:48:08.0206 1548 srvnet (ff207d67700aa18242aaf985d3e7d8f4) C:\Windows\system32\DRIVERS\srvnet.sys
00:48:08.0221 1548 srvnet - ok
00:48:08.0346 1548 stexstor (db32d325c192b801df274bfd12a7e72b) C:\Windows\system32\DRIVERS\stexstor.sys
00:48:08.0346 1548 stexstor - ok
00:48:08.0424 1548 STHDA (96cb9fd21207af4456d37957441f6001) C:\Windows\system32\DRIVERS\stwrt.sys
00:48:08.0440 1548 STHDA - ok
00:48:08.0502 1548 swenum (e58c78a848add9610a4db6d214af5224) C:\Windows\system32\DRIVERS\swenum.sys
00:48:08.0502 1548 swenum - ok
00:48:08.0580 1548 SynTP (c6e720d3f5fb8290d01acfb63e14b606) C:\Windows\system32\DRIVERS\SynTP.sys
00:48:08.0596 1548 SynTP - ok
00:48:08.0783 1548 Tcpip (56c198ac82efa622dd93e9e43575f79c) C:\Windows\system32\drivers\tcpip.sys
00:48:08.0845 1548 Tcpip - ok
00:48:08.0908 1548 TCPIP6 (56c198ac82efa622dd93e9e43575f79c) C:\Windows\system32\DRIVERS\tcpip.sys
00:48:08.0939 1548 TCPIP6 - ok
00:48:09.0001 1548 tcpipreg (e64444523add154f86567c469bc0b17f) C:\Windows\system32\drivers\tcpipreg.sys
00:48:09.0001 1548 tcpipreg - ok
00:48:09.0048 1548 TDPIPE (1875c1490d99e70e449e3afae9fcbadf) C:\Windows\system32\drivers\tdpipe.sys
00:48:09.0048 1548 TDPIPE - ok
00:48:09.0079 1548 TDTCP (7551e91ea999ee9a8e9c331d5a9c31f3) C:\Windows\system32\drivers\tdtcp.sys
00:48:09.0079 1548 TDTCP - ok
00:48:09.0126 1548 tdx (cb39e896a2a83702d1737bfd402b3542) C:\Windows\system32\DRIVERS\tdx.sys
00:48:09.0126 1548 tdx - ok
00:48:09.0173 1548 TermDD (c36f41ee20e6999dbf4b0425963268a5) C:\Windows\system32\DRIVERS\termdd.sys
00:48:09.0173 1548 TermDD - ok
00:48:09.0298 1548 TrueSight (f69641efdb19acb4753b0155f7fdeed5) c:\windows\system32\drivers\TrueSight.sys
00:48:09.0313 1548 TrueSight - ok
00:48:09.0376 1548 tssecsrv (98ae6fa07d12cb4ec5cf4a9bfa5f4242) C:\Windows\system32\DRIVERS\tssecsrv.sys
00:48:09.0376 1548 tssecsrv - ok
00:48:09.0422 1548 tunnel (3e461d890a97f9d4c168f5fda36e1d00) C:\Windows\system32\DRIVERS\tunnel.sys
00:48:09.0422 1548 tunnel - ok
00:48:09.0485 1548 uagp35 (750fbcb269f4d7dd2e420c56b795db6d) C:\Windows\system32\DRIVERS\uagp35.sys
00:48:09.0485 1548 uagp35 - ok
00:48:09.0547 1548 udfs (eb0a7bd4d471ac3ce55564a4c55b9d8e) C:\Windows\system32\DRIVERS\udfs.sys
00:48:09.0563 1548 udfs - ok
00:48:09.0641 1548 uliagpkx (44e8048ace47befbfdc2e9be4cbc8880) C:\Windows\system32\DRIVERS\uliagpkx.sys
00:48:09.0641 1548 uliagpkx - ok
00:48:09.0688 1548 umbus (049b3a50b3d646baeeee9eec9b0668dc) C:\Windows\system32\DRIVERS\umbus.sys
00:48:09.0688 1548 umbus - ok
00:48:09.0750 1548 UmPass (7550ad0c6998ba1cb4843e920ee0feac) C:\Windows\system32\DRIVERS\umpass.sys
00:48:09.0750 1548 UmPass - ok
00:48:09.0828 1548 USBAAPL (83cafcb53201bbac04d822f32438e244) C:\Windows\system32\Drivers\usbaapl.sys
00:48:09.0828 1548 USBAAPL - ok
00:48:09.0890 1548 usbccgp (5c233aefb566ee78c1efbc0493fb066a) C:\Windows\system32\DRIVERS\usbccgp.sys
00:48:09.0890 1548 usbccgp - ok
00:48:09.0922 1548 usbcir (04ec7cec62ec3b6d9354eee93327fc82) C:\Windows\system32\DRIVERS\usbcir.sys
00:48:09.0937 1548 usbcir - ok
00:48:10.0000 1548 usbehci (5b71019a6aca0116fd21b368f19c0b91) C:\Windows\system32\drivers\usbehci.sys
00:48:10.0000 1548 usbehci - ok
00:48:10.0062 1548 usbhub (5823d3965c2a4f6f785ed1a3b403f3b8) C:\Windows\system32\DRIVERS\usbhub.sys
00:48:10.0078 1548 usbhub - ok
00:48:10.0109 1548 usbohci (e753ed6c49da13967ebabf9ea616454a) C:\Windows\system32\drivers\usbohci.sys
00:48:10.0109 1548 usbohci - ok
00:48:10.0140 1548 usbprint (797d862fe0875e75c7cc4c1ad7b30252) C:\Windows\system32\DRIVERS\usbprint.sys
00:48:10.0156 1548 usbprint - ok
00:48:10.0218 1548 USBSTOR (1c4287739a93594e57e2a9e6a3ed7353) C:\Windows\system32\DRIVERS\USBSTOR.SYS
00:48:10.0218 1548 USBSTOR - ok
00:48:10.0265 1548 usbuhci (6a30928a469ce802600e1ea8c0f2f53f) C:\Windows\system32\drivers\usbuhci.sys
00:48:10.0265 1548 usbuhci - ok
00:48:10.0343 1548 usbvideo (b5f6a992d996282b7fae7048e50af83a) C:\Windows\System32\Drivers\usbvideo.sys
00:48:10.0343 1548 usbvideo - ok
00:48:10.0421 1548 vdrvroot (a059c4c3edb09e07d21a8e5c0aabd3cb) C:\Windows\system32\DRIVERS\vdrvroot.sys
00:48:10.0421 1548 vdrvroot - ok
00:48:10.0514 1548 vga (17c408214ea61696cec9c66e388b14f3) C:\Windows\system32\DRIVERS\vgapnp.sys
00:48:10.0514 1548 vga - ok
00:48:10.0546 1548 VgaSave (8e38096ad5c8570a6f1570a61e251561) C:\Windows\System32\drivers\vga.sys
00:48:10.0546 1548 VgaSave - ok
00:48:10.0592 1548 vhdmp (3be6e1f3a4f1afec8cee0d7883f93583) C:\Windows\system32\DRIVERS\vhdmp.sys
00:48:10.0592 1548 vhdmp - ok
00:48:10.0639 1548 viaagp (c829317a37b4bea8f39735d4b076e923) C:\Windows\system32\DRIVERS\viaagp.sys
00:48:10.0639 1548 viaagp - ok
00:48:10.0702 1548 ViaC7 (e02f079a6aa107f06b16549c6e5c7b74) C:\Windows\system32\DRIVERS\viac7.sys
00:48:11.0014 1548 ViaC7 - ok
00:48:11.0060 1548 viaide (e43574f6a56a0ee11809b48c09e4fd3c) C:\Windows\system32\DRIVERS\viaide.sys
00:48:11.0060 1548 viaide - ok
00:48:11.0123 1548 volmgr (384e5a2aa49934295171e499f86ba6f3) C:\Windows\system32\DRIVERS\volmgr.sys
00:48:11.0123 1548 volmgr - ok
00:48:11.0186 1548 volmgrx (b5bb72067ddddbbfb04b2f89ff8c3c87) C:\Windows\system32\drivers\volmgrx.sys
00:48:11.0186 1548 volmgrx - ok
00:48:11.0249 1548 volsnap (58df9d2481a56edde167e51b334d44fd) C:\Windows\system32\DRIVERS\volsnap.sys
00:48:11.0249 1548 volsnap - ok
00:48:11.0327 1548 vsmraid (9dfa0cc2f8855a04816729651175b631) C:\Windows\system32\DRIVERS\vsmraid.sys
00:48:11.0327 1548 vsmraid - ok
00:48:11.0405 1548 vwifibus (90567b1e658001e79d7c8bbd3dde5aa6) C:\Windows\system32\DRIVERS\vwifibus.sys
00:48:11.0405 1548 vwifibus - ok
00:48:11.0514 1548 vwififlt (7090d3436eeb4e7da3373090a23448f7) C:\Windows\system32\DRIVERS\vwififlt.sys
00:48:11.0514 1548 vwififlt - ok
00:48:11.0623 1548 WacomPen (de3721e89c653aa281428c8a69745d90) C:\Windows\system32\DRIVERS\wacompen.sys
00:48:11.0623 1548 WacomPen - ok
00:48:11.0748 1548 WANARP (692a712062146e96d28ba0b7d75de31b) C:\Windows\system32\DRIVERS\wanarp.sys
00:48:11.0748 1548 WANARP - ok
00:48:11.0763 1548 Wanarpv6 (692a712062146e96d28ba0b7d75de31b) C:\Windows\system32\DRIVERS\wanarp.sys
00:48:11.0779 1548 Wanarpv6 - ok
00:48:12.0060 1548 Wd (1112a9badacb47b7c0bb0392e3158dff) C:\Windows\system32\DRIVERS\wd.sys
00:48:12.0060 1548 Wd - ok
00:48:12.0185 1548 Wdf01000 (9950e3d0f08141c7e89e64456ae7dc73) C:\Windows\system32\drivers\Wdf01000.sys
00:48:12.0206 1548 Wdf01000 - ok
00:48:12.0426 1548 WfpLwf (8b9a943f3b53861f2bfaf6c186168f79) C:\Windows\system32\DRIVERS\wfplwf.sys
00:48:12.0426 1548 WfpLwf - ok
00:48:12.0509 1548 WIMMount (5cf95b35e59e2a38023836fff31be64c) C:\Windows\system32\drivers\wimmount.sys
00:48:12.0524 1548 WIMMount - ok
00:48:12.0703 1548 WmiAcpi (0217679b8fca58714c3bf2726d2ca84e) C:\Windows\system32\DRIVERS\wmiacpi.sys
00:48:12.0703 1548 WmiAcpi - ok
00:48:12.0848 1548 ws2ifsl (6db3276587b853bf886b69528fdb048c) C:\Windows\system32\drivers\ws2ifsl.sys
00:48:12.0852 1548 ws2ifsl - ok
00:48:12.0937 1548 WudfPf (6f9b6c0c93232cff47d0f72d6db1d21e) C:\Windows\system32\drivers\WudfPf.sys
00:48:12.0943 1548 WudfPf - ok
00:48:13.0029 1548 WUDFRd (f91ff1e51fca30b3c3981db7d5924252) C:\Windows\system32\DRIVERS\WUDFRd.sys
00:48:13.0045 1548 WUDFRd - ok
00:48:13.0153 1548 yukonw7 (b07c5b7efdf936ff93d4f540938725be) C:\Windows\system32\DRIVERS\yk62x86.sys
00:48:13.0166 1548 yukonw7 - ok
00:48:13.0234 1548 MBR (0x1B8) (8207763beda3258263acda732c1cf617) \Device\Harddisk0\DR0
00:48:13.0273 1548 \Device\Harddisk0\DR0 ( Rootkit.Win32.TDSS.tdl4 ) - infected
00:48:13.0273 1548 \Device\Harddisk0\DR0 - detected Rootkit.Win32.TDSS.tdl4 (0)
00:48:13.0304 1548 Boot (0x1200) (15ef47d4d9c320f4e572b63f5c9927d8) \Device\Harddisk0\DR0\Partition0
00:48:13.0304 1548 \Device\Harddisk0\DR0\Partition0 - ok
00:48:13.0341 1548 Boot (0x1200) (cde95911e702adc767da5bce57639124) \Device\Harddisk0\DR0\Partition1
00:48:13.0345 1548 \Device\Harddisk0\DR0\Partition1 - ok
00:48:13.0399 1548 Boot (0x1200) (821644fc5342d0b75e30e7c5abb86fa2) \Device\Harddisk0\DR0\Partition2
00:48:13.0402 1548 \Device\Harddisk0\DR0\Partition2 - ok
00:48:13.0462 1548 Boot (0x1200) (e590b3101cf62dbda43d56e3690550c4) \Device\Harddisk0\DR0\Partition3
00:48:13.0465 1548 \Device\Harddisk0\DR0\Partition3 - ok
00:48:13.0479 1548 ============================================================
00:48:13.0479 1548 Scan finished
00:48:13.0479 1548 ============================================================
00:48:13.0520 2392 Detected object count: 1
00:48:13.0520 2392 Actual detected object count: 1
00:51:21.0807 2392 \Device\Harddisk0\DR0 ( Rootkit.Win32.TDSS.tdl4 ) - skipped by user
00:51:21.0807 2392 \Device\Harddisk0\DR0 ( Rootkit.Win32.TDSS.tdl4 ) - User select action: Skip
00:56:35.0152 4820 Deinitialize success

MERCi beaucoup de m'aider!! l'autre rapport je vous l'enverrais demain matin.Encore merci .
0
clair15
 
http://pjjoint.malekal.com/files.php?id=OTL_Extras_20111228_k5l6d15l15n13
0
Réponse 4 / 5
Malekal_morte- Messages postés 180304 Date d'inscription   Statut Modérateur, Contributeur sécurité Dernière intervention   24 685
 
00:51:21.0807 2392 \Device\Harddisk0\DR0 ( Rootkit.Win32.TDSS.tdl4 ) - User select action: Skip

Refaire TDSSKiller et faire Cure sur TDSS.

Donne le rapport OTL, là tu as donné que le extra.
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 5 / 5
Vbo
 
J'ai oublier mon code
0

Discussions similaires

Softonic,est-ce un virus ?
techmel1 -
techmel1 -

6 réponses