Boot.Tidserv
Résolu/Fermé
lumynale
Messages postés
7
Date d'inscription
mercredi 17 juin 2009
Statut
Membre
Dernière intervention
28 janvier 2012
-
26 janv. 2012 à 20:30
Utilisateur anonyme - 28 janv. 2012 à 12:01
Utilisateur anonyme - 28 janv. 2012 à 12:01
8 réponses
Utilisateur anonyme
26 janv. 2012 à 20:35
26 janv. 2012 à 20:35
salut
▶ Télécharge Reload_TDSSKiller
▶ Lance le
choisis : lancer le nettoyage
l'outil va automatiquement télécharger la derniere version puis
TDSSKiller va s'ouvrir , clique sur "Start Scan"
Si TDSS.tdl2 est détecté l''option delete sera cochée par défaut.
Si TDSS.tdl3 est détecté assure toi que Cure est bien cochée.
Si TDSS.tdl4(\HardDisk0\MBR) est détecté assure toi que Cure est bien cochée.
Si Suspicious file est indiqué, laisse l''option cochée sur Skip
Si Rootkit.Win32.ZAccess.* est détecté règle sur "cure" en haut , et "delete" en bas
une fois qu'il a terminé , redemarre s'il te le demande pour finir de nettoyer
sinon , ferme tdssKiller et le rapport s'affichera sur le bureau
▶ Copie/Colle son contenu dans ta prochaine réponse.
▶ Télécharge Reload_TDSSKiller
▶ Lance le
choisis : lancer le nettoyage
l'outil va automatiquement télécharger la derniere version puis
TDSSKiller va s'ouvrir , clique sur "Start Scan"
Si TDSS.tdl2 est détecté l''option delete sera cochée par défaut.
Si TDSS.tdl3 est détecté assure toi que Cure est bien cochée.
Si TDSS.tdl4(\HardDisk0\MBR) est détecté assure toi que Cure est bien cochée.
Si Suspicious file est indiqué, laisse l''option cochée sur Skip
Si Rootkit.Win32.ZAccess.* est détecté règle sur "cure" en haut , et "delete" en bas
une fois qu'il a terminé , redemarre s'il te le demande pour finir de nettoyer
sinon , ferme tdssKiller et le rapport s'affichera sur le bureau
▶ Copie/Colle son contenu dans ta prochaine réponse.
lumynale
Messages postés
7
Date d'inscription
mercredi 17 juin 2009
Statut
Membre
Dernière intervention
28 janvier 2012
26 janv. 2012 à 21:14
26 janv. 2012 à 21:14
Merci pour ton aide.
Voici le rapport :
21:10:59.0307 3940 TDSS rootkit removing tool 2.7.7.0 Jan 24 2012 16:44:27
21:10:59.0666 3940 ============================================================
21:10:59.0666 3940 Current date / time: 2012/01/26 21:10:59.0666
21:10:59.0666 3940 SystemInfo:
21:10:59.0666 3940
21:10:59.0666 3940 OS Version: 6.1.7600 ServicePack: 0.0
21:10:59.0666 3940 Product type: Workstation
21:10:59.0666 3940 ComputerName: FAMILLEMASCHIO
21:10:59.0666 3940 UserName: Famille Maschio
21:10:59.0666 3940 Windows directory: C:\Windows
21:10:59.0666 3940 System windows directory: C:\Windows
21:10:59.0666 3940 Running under WOW64
21:10:59.0666 3940 Processor architecture: Intel x64
21:10:59.0666 3940 Number of processors: 2
21:10:59.0666 3940 Page size: 0x1000
21:10:59.0666 3940 Boot type: Normal boot
21:10:59.0666 3940 ============================================================
21:11:00.0150 3940 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
21:11:00.0181 3940 Initialize success
21:11:12.0739 4856 ============================================================
21:11:12.0739 4856 Scan started
21:11:12.0739 4856 Mode: Manual;
21:11:12.0739 4856 ============================================================
21:11:14.0127 4856 1394ohci (1b00662092f9f9568b995902f0cc40d5) C:\Windows\system32\DRIVERS\1394ohci.sys
21:11:14.0127 4856 1394ohci - ok
21:11:15.0016 4856 ACPI (6f11e88748cdefd2f76aa215f97ddfe5) C:\Windows\system32\DRIVERS\ACPI.sys
21:11:15.0016 4856 ACPI - ok
21:11:15.0516 4856 AcpiPmi (63b05a0420ce4bf0e4af6dcc7cada254) C:\Windows\system32\DRIVERS\acpipmi.sys
21:11:15.0516 4856 AcpiPmi - ok
21:11:15.0968 4856 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
21:11:15.0984 4856 adp94xx - ok
21:11:16.0420 4856 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
21:11:16.0436 4856 adpahci - ok
21:11:16.0873 4856 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
21:11:16.0873 4856 adpu320 - ok
21:11:17.0372 4856 AFD (6ef20ddf3172e97d69f596fb90602f29) C:\Windows\system32\drivers\afd.sys
21:11:17.0372 4856 AFD - ok
21:11:17.0809 4856 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\DRIVERS\agp440.sys
21:11:17.0824 4856 agp440 - ok
21:11:18.0261 4856 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\DRIVERS\aliide.sys
21:11:18.0261 4856 aliide - ok
21:11:18.0682 4856 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\DRIVERS\amdide.sys
21:11:18.0682 4856 amdide - ok
21:11:19.0135 4856 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
21:11:19.0135 4856 AmdK8 - ok
21:11:19.0587 4856 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
21:11:19.0587 4856 AmdPPM - ok
21:11:20.0008 4856 amdsata (7a4b413614c055935567cf88a9734d38) C:\Windows\system32\DRIVERS\amdsata.sys
21:11:20.0008 4856 amdsata - ok
21:11:20.0445 4856 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
21:11:20.0461 4856 amdsbs - ok
21:11:20.0913 4856 amdxata (b4ad0cacbab298671dd6f6ef7e20679d) C:\Windows\system32\DRIVERS\amdxata.sys
21:11:20.0913 4856 amdxata - ok
21:11:21.0334 4856 AppID (42fd751b27fa0e9c69bb39f39e409594) C:\Windows\system32\drivers\appid.sys
21:11:21.0350 4856 AppID - ok
21:11:21.0771 4856 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
21:11:21.0771 4856 arc - ok
21:11:22.0192 4856 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
21:11:22.0192 4856 arcsas - ok
21:11:22.0614 4856 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
21:11:22.0614 4856 AsyncMac - ok
21:11:23.0035 4856 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\DRIVERS\atapi.sys
21:11:23.0035 4856 atapi - ok
21:11:23.0518 4856 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys
21:11:23.0518 4856 b06bdrv - ok
21:11:24.0111 4856 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
21:11:24.0127 4856 b57nd60a - ok
21:11:24.0595 4856 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
21:11:24.0610 4856 Beep - ok
21:11:25.0047 4856 BHDrvx64 (1d757a7e020c577c4259a755f21b7152) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.1.3\Definitions\BASHDefs\20120121.002\BHDrvx64.sys
21:11:25.0063 4856 BHDrvx64 - ok
21:11:25.0500 4856 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
21:11:25.0500 4856 blbdrive - ok
21:11:25.0921 4856 bowser (19d20159708e152267e53b66677a4995) C:\Windows\system32\DRIVERS\bowser.sys
21:11:25.0921 4856 bowser - ok
21:11:26.0326 4856 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys
21:11:26.0326 4856 BrFiltLo - ok
21:11:26.0732 4856 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys
21:11:26.0748 4856 BrFiltUp - ok
21:11:27.0169 4856 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
21:11:27.0169 4856 Brserid - ok
21:11:27.0590 4856 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
21:11:27.0590 4856 BrSerWdm - ok
21:11:28.0011 4856 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
21:11:28.0011 4856 BrUsbMdm - ok
21:11:28.0432 4856 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
21:11:28.0448 4856 BrUsbSer - ok
21:11:28.0869 4856 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
21:11:28.0869 4856 BTHMODEM - ok
21:11:29.0353 4856 ccSet_NIS (a8ad33c9dd88c810cac00acc7f4329fb) C:\Windows\system32\drivers\NISx64\1302000.00A\ccSetx64.sys
21:11:29.0353 4856 ccSet_NIS - ok
21:11:29.0774 4856 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
21:11:29.0774 4856 cdfs - ok
21:11:30.0195 4856 cdrom (83d2d75e1efb81b3450c18131443f7db) C:\Windows\system32\DRIVERS\cdrom.sys
21:11:30.0195 4856 cdrom - ok
21:11:30.0616 4856 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys
21:11:30.0616 4856 circlass - ok
21:11:30.0913 4856 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
21:11:30.0913 4856 CLFS - ok
21:11:31.0459 4856 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
21:11:31.0459 4856 CmBatt - ok
21:11:31.0880 4856 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\DRIVERS\cmdide.sys
21:11:31.0880 4856 cmdide - ok
21:11:32.0395 4856 CNG (f95fd4cb7da00ba2a63ce9f6b5c053e1) C:\Windows\system32\Drivers\cng.sys
21:11:32.0410 4856 CNG - ok
21:11:32.0894 4856 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
21:11:32.0894 4856 Compbatt - ok
21:11:33.0331 4856 CompositeBus (f26b3a86f6fa87ca360b879581ab4123) C:\Windows\system32\DRIVERS\CompositeBus.sys
21:11:33.0331 4856 CompositeBus - ok
21:11:33.0768 4856 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys
21:11:33.0768 4856 crcdisk - ok
21:11:34.0220 4856 DfsC (9c253ce7311ca60fc11c774692a13208) C:\Windows\system32\Drivers\dfsc.sys
21:11:34.0220 4856 DfsC - ok
21:11:34.0641 4856 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
21:11:34.0657 4856 discache - ok
21:11:35.0078 4856 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys
21:11:35.0078 4856 Disk - ok
21:11:35.0593 4856 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
21:11:35.0593 4856 drmkaud - ok
21:11:36.0139 4856 DXGKrnl (1633b9abf52784a1331476397a48cbef) C:\Windows\System32\drivers\dxgkrnl.sys
21:11:36.0154 4856 DXGKrnl - ok
21:11:36.0622 4856 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys
21:11:36.0732 4856 ebdrv - ok
21:11:36.0856 4856 eeCtrl (5ccf1be80930aeb1cdebf561666325e8) C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys
21:11:36.0872 4856 eeCtrl - ok
21:11:37.0309 4856 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys
21:11:37.0309 4856 elxstor - ok
21:11:37.0465 4856 EraserUtilRebootDrv (7a898e4a744621711be7e7b796c69876) C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
21:11:37.0465 4856 EraserUtilRebootDrv - ok
21:11:37.0886 4856 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\DRIVERS\errdev.sys
21:11:37.0886 4856 ErrDev - ok
21:11:38.0432 4856 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
21:11:38.0432 4856 exfat - ok
21:11:39.0774 4856 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
21:11:39.0789 4856 fastfat - ok
21:11:40.0195 4856 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
21:11:40.0210 4856 fdc - ok
21:11:40.0647 4856 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
21:11:40.0647 4856 FileInfo - ok
21:11:41.0084 4856 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
21:11:41.0084 4856 Filetrace - ok
21:11:41.0724 4856 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys
21:11:41.0724 4856 flpydisk - ok
21:11:42.0176 4856 FltMgr (f7866af72abbaf84b1fa5aa195378c59) C:\Windows\system32\drivers\fltmgr.sys
21:11:42.0192 4856 FltMgr - ok
21:11:42.0613 4856 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
21:11:42.0613 4856 FsDepends - ok
21:11:43.0096 4856 Fs_Rec (e95ef8547de20cf0603557c0cf7a9462) C:\Windows\system32\drivers\Fs_Rec.sys
21:11:43.0096 4856 Fs_Rec - ok
21:11:44.0173 4856 fvevol (ae87ba80d0ec3b57126ed2cdc15b24ed) C:\Windows\system32\DRIVERS\fvevol.sys
21:11:44.0173 4856 fvevol - ok
21:11:44.0594 4856 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys
21:11:44.0594 4856 gagp30kx - ok
21:11:45.0171 4856 GEARAspiWDM (e403aacf8c7bb11375122d2464560311) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
21:11:45.0171 4856 GEARAspiWDM - ok
21:11:45.0624 4856 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
21:11:45.0624 4856 hcw85cir - ok
21:11:46.0045 4856 HdAudAddService (6410f6f415b2a5a9037224c41da8bf12) C:\Windows\system32\drivers\HdAudio.sys
21:11:46.0060 4856 HdAudAddService - ok
21:11:46.0544 4856 HDAudBus (0a49913402747a0b67de940fb42cbdbb) C:\Windows\system32\DRIVERS\HDAudBus.sys
21:11:46.0544 4856 HDAudBus - ok
21:11:46.0996 4856 HECIx64 (b6ac71aaa2b10848f57fc49d55a651af) C:\Windows\system32\DRIVERS\HECIx64.sys
21:11:47.0012 4856 HECIx64 - ok
21:11:47.0511 4856 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys
21:11:47.0511 4856 HidBatt - ok
21:11:47.0948 4856 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys
21:11:47.0948 4856 HidBth - ok
21:11:48.0447 4856 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys
21:11:48.0447 4856 HidIr - ok
21:11:48.0993 4856 HidUsb (b3bf6b5b50006def50b66306d99fcf6f) C:\Windows\system32\DRIVERS\hidusb.sys
21:11:48.0993 4856 HidUsb - ok
21:11:49.0414 4856 HpSAMD (0886d440058f203eba0e1825e4355914) C:\Windows\system32\DRIVERS\HpSAMD.sys
21:11:49.0430 4856 HpSAMD - ok
21:11:49.0867 4856 HTTP (cee049cac4efa7f4e1e4ad014414a5d4) C:\Windows\system32\drivers\HTTP.sys
21:11:49.0898 4856 HTTP - ok
21:11:50.0304 4856 hwpolicy (f17766a19145f111856378df337a5d79) C:\Windows\system32\drivers\hwpolicy.sys
21:11:50.0304 4856 hwpolicy - ok
21:11:50.0756 4856 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\DRIVERS\i8042prt.sys
21:11:50.0756 4856 i8042prt - ok
21:11:51.0286 4856 iaStor (1384872112e8e7fd5786eceb8bddf4c9) C:\Windows\system32\DRIVERS\iaStor.sys
21:11:51.0286 4856 iaStor - ok
21:11:51.0786 4856 iaStorV (d83efb6fd45df9d55e9a1afc63640d50) C:\Windows\system32\DRIVERS\iaStorV.sys
21:11:51.0786 4856 iaStorV - ok
21:11:52.0082 4856 IDSVia64 (18c40c3f368323b203ace403cb430db1) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.1.3\Definitions\IPSDefs\20120125.002\IDSvia64.sys
21:11:52.0082 4856 IDSVia64 - ok
21:11:52.0488 4856 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys
21:11:52.0488 4856 iirsp - ok
21:11:52.0956 4856 IntcAzAudAddService (235362d403d9d677514649d88db31914) C:\Windows\system32\drivers\RTKVHD64.sys
21:11:53.0034 4856 IntcAzAudAddService - ok
21:11:53.0455 4856 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\DRIVERS\intelide.sys
21:11:53.0455 4856 intelide - ok
21:11:53.0907 4856 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
21:11:53.0907 4856 intelppm - ok
21:11:54.0375 4856 IpFilterDriver (722dd294df62483cecaae6e094b4d695) C:\Windows\system32\DRIVERS\ipfltdrv.sys
21:11:54.0391 4856 IpFilterDriver - ok
21:11:54.0828 4856 IPMIDRV (e2b4a4494db7cb9b89b55ca268c337c5) C:\Windows\system32\DRIVERS\IPMIDrv.sys
21:11:54.0828 4856 IPMIDRV - ok
21:11:55.0498 4856 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
21:11:55.0498 4856 IPNAT - ok
21:11:55.0951 4856 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
21:11:55.0951 4856 IRENUM - ok
21:11:56.0372 4856 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\DRIVERS\isapnp.sys
21:11:56.0372 4856 isapnp - ok
21:11:56.0809 4856 iScsiPrt (fa4d2557de56d45b0a346f93564be6e1) C:\Windows\system32\DRIVERS\msiscsi.sys
21:11:56.0809 4856 iScsiPrt - ok
21:11:57.0261 4856 k57nd60a (c9b4ecc187581e5bf3f76648884b7829) C:\Windows\system32\DRIVERS\k57nd60a.sys
21:11:57.0261 4856 k57nd60a - ok
21:11:57.0682 4856 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\DRIVERS\kbdclass.sys
21:11:57.0698 4856 kbdclass - ok
21:11:58.0104 4856 kbdhid (6def98f8541e1b5dceb2c822a11f7323) C:\Windows\system32\DRIVERS\kbdhid.sys
21:11:58.0104 4856 kbdhid - ok
21:11:58.0525 4856 KSecDD (e8b6fcc9c83535c67f835d407620bd27) C:\Windows\system32\Drivers\ksecdd.sys
21:11:58.0525 4856 KSecDD - ok
21:11:58.0930 4856 KSecPkg (a8c63880ef6f4d3fec7b616b9c060215) C:\Windows\system32\Drivers\ksecpkg.sys
21:11:58.0946 4856 KSecPkg - ok
21:11:59.0430 4856 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
21:11:59.0430 4856 ksthunk - ok
21:11:59.0976 4856 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
21:11:59.0976 4856 lltdio - ok
21:12:00.0444 4856 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys
21:12:00.0444 4856 LSI_FC - ok
21:12:00.0849 4856 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys
21:12:00.0865 4856 LSI_SAS - ok
21:12:01.0598 4856 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys
21:12:01.0598 4856 LSI_SAS2 - ok
21:12:02.0035 4856 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys
21:12:02.0035 4856 LSI_SCSI - ok
21:12:02.0456 4856 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
21:12:02.0456 4856 luafv - ok
21:12:02.0877 4856 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys
21:12:02.0877 4856 megasas - ok
21:12:03.0298 4856 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys
21:12:03.0314 4856 MegaSR - ok
21:12:03.0798 4856 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
21:12:03.0798 4856 Modem - ok
21:12:04.0203 4856 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
21:12:04.0203 4856 monitor - ok
21:12:04.0624 4856 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
21:12:04.0624 4856 mouclass - ok
21:12:05.0046 4856 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
21:12:05.0046 4856 mouhid - ok
21:12:05.0498 4856 mountmgr (791af66c4d0e7c90a3646066386fb571) C:\Windows\system32\drivers\mountmgr.sys
21:12:05.0498 4856 mountmgr - ok
21:12:05.0950 4856 mpio (609d1d87649ecc19796f4d76d4c15cea) C:\Windows\system32\DRIVERS\mpio.sys
21:12:05.0950 4856 mpio - ok
21:12:06.0730 4856 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
21:12:06.0730 4856 mpsdrv - ok
21:12:07.0292 4856 MRxDAV (30524261bb51d96d6fcbac20c810183c) C:\Windows\system32\drivers\mrxdav.sys
21:12:07.0292 4856 MRxDAV - ok
21:12:07.0885 4856 mrxsmb (040d62a9d8ad28922632137acdd984f2) C:\Windows\system32\DRIVERS\mrxsmb.sys
21:12:07.0900 4856 mrxsmb - ok
21:12:08.0446 4856 mrxsmb10 (f0067552f8f9b33d7c59403ab808a3cb) C:\Windows\system32\DRIVERS\mrxsmb10.sys
21:12:08.0446 4856 mrxsmb10 - ok
21:12:08.0977 4856 mrxsmb20 (3c142d31de9f2f193218a53fe2632051) C:\Windows\system32\DRIVERS\mrxsmb20.sys
21:12:08.0977 4856 mrxsmb20 - ok
21:12:09.0476 4856 msahci (5c37497276e3b3a5488b23a326a754b7) C:\Windows\system32\DRIVERS\msahci.sys
21:12:09.0476 4856 msahci - ok
21:12:10.0178 4856 msdsm (8d27b597229aed79430fb9db3bcbfbd0) C:\Windows\system32\DRIVERS\msdsm.sys
21:12:10.0178 4856 msdsm - ok
21:12:10.0803 4856 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
21:12:10.0803 4856 Msfs - ok
21:12:11.0255 4856 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
21:12:11.0255 4856 mshidkmdf - ok
21:12:11.0864 4856 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\DRIVERS\msisadrv.sys
21:12:11.0879 4856 msisadrv - ok
21:12:12.0472 4856 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
21:12:12.0472 4856 MSKSSRV - ok
21:12:13.0018 4856 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
21:12:13.0018 4856 MSPCLOCK - ok
21:12:13.0424 4856 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
21:12:13.0424 4856 MSPQM - ok
21:12:13.0829 4856 MsRPC (89cb141aa8616d8c6a4610fa26c60964) C:\Windows\system32\drivers\MsRPC.sys
21:12:13.0829 4856 MsRPC - ok
21:12:14.0266 4856 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\DRIVERS\mssmbios.sys
21:12:14.0266 4856 mssmbios - ok
21:12:14.0687 4856 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
21:12:14.0687 4856 MSTEE - ok
21:12:15.0218 4856 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys
21:12:15.0218 4856 MTConfig - ok
21:12:15.0686 4856 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
21:12:15.0701 4856 Mup - ok
21:12:16.0138 4856 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
21:12:16.0138 4856 NativeWifiP - ok
21:12:16.0341 4856 NAVENG (2dbe90210de76be6e1653bb20ec70ec2) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.1.3\Definitions\VirusDefs\20120126.003\ENG64.SYS
21:12:16.0341 4856 NAVENG - ok
21:12:16.0450 4856 NAVEX15 (346da70e203b8e2c850277713de8f71b) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.1.3\Definitions\VirusDefs\20120126.003\EX64.SYS
21:12:16.0466 4856 NAVEX15 - ok
21:12:16.0996 4856 NDIS (cad515dbd07d082bb317d9928ce8962c) C:\Windows\system32\drivers\ndis.sys
21:12:17.0012 4856 NDIS - ok
21:12:17.0449 4856 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
21:12:17.0449 4856 NdisCap - ok
21:12:17.0979 4856 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
21:12:17.0995 4856 NdisTapi - ok
21:12:18.0556 4856 Ndisuio (f105ba1e22bf1f2ee8f005d4305e4bec) C:\Windows\system32\DRIVERS\ndisuio.sys
21:12:18.0556 4856 Ndisuio - ok
21:12:18.0962 4856 NdisWan (557dfab9ca1fcb036ac77564c010dad3) C:\Windows\system32\DRIVERS\ndiswan.sys
21:12:18.0962 4856 NdisWan - ok
21:12:19.0353 4856 NDProxy (659b74fb74b86228d6338d643cd3e3cf) C:\Windows\system32\drivers\NDProxy.sys
21:12:19.0353 4856 NDProxy - ok
21:12:19.0852 4856 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
21:12:19.0852 4856 NetBIOS - ok
21:12:20.0304 4856 NetBT (9162b273a44ab9dce5b44362731d062a) C:\Windows\system32\DRIVERS\netbt.sys
21:12:20.0320 4856 NetBT - ok
21:12:20.0757 4856 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys
21:12:20.0757 4856 nfrd960 - ok
21:12:21.0209 4856 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
21:12:21.0209 4856 Npfs - ok
21:12:21.0599 4856 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
21:12:21.0615 4856 nsiproxy - ok
21:12:22.0036 4856 Ntfs (356698a13c4630d5b31c37378d469196) C:\Windows\system32\drivers\Ntfs.sys
21:12:22.0067 4856 Ntfs - ok
21:12:22.0504 4856 NTIDrvr (64ddd0dee976302f4bd93e5efcc2f013) C:\Windows\system32\drivers\NTIDrvr.sys
21:12:22.0504 4856 NTIDrvr - ok
21:12:23.0019 4856 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
21:12:23.0019 4856 Null - ok
21:12:23.0471 4856 NVHDA (e20abd5b229760158f753ca90b97e090) C:\Windows\system32\drivers\nvhda64v.sys
21:12:23.0471 4856 NVHDA - ok
21:12:24.0190 4856 nvlddmkm (b4402e1d61a3015fc29bef94bb1c81fd) C:\Windows\system32\DRIVERS\nvlddmkm.sys
21:12:24.0439 4856 nvlddmkm - ok
21:12:24.0861 4856 nvraid (3e38712941e9bb4ddbee00affe3fed3d) C:\Windows\system32\DRIVERS\nvraid.sys
21:12:24.0876 4856 nvraid - ok
21:12:25.0344 4856 nvstor (477dc4d6deb99be37084c9ac6d013da1) C:\Windows\system32\DRIVERS\nvstor.sys
21:12:25.0344 4856 nvstor - ok
21:12:25.0926 4856 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\DRIVERS\nv_agp.sys
21:12:25.0926 4856 nv_agp - ok
21:12:26.0550 4856 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\DRIVERS\ohci1394.sys
21:12:26.0550 4856 ohci1394 - ok
21:12:27.0423 4856 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys
21:12:27.0423 4856 Parport - ok
21:12:27.0876 4856 partmgr (7daa117143316c4a1537e074a5a9eaf0) C:\Windows\system32\drivers\partmgr.sys
21:12:27.0876 4856 partmgr - ok
21:12:28.0297 4856 pci (f36f6504009f2fb0dfd1b17a116ad74b) C:\Windows\system32\DRIVERS\pci.sys
21:12:28.0297 4856 pci - ok
21:12:28.0734 4856 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\DRIVERS\pciide.sys
21:12:28.0734 4856 pciide - ok
21:12:29.0249 4856 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys
21:12:29.0249 4856 pcmcia - ok
21:12:30.0091 4856 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
21:12:30.0091 4856 pcw - ok
21:12:31.0183 4856 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
21:12:31.0183 4856 PEAUTH - ok
21:12:32.0025 4856 PptpMiniport (27cc19e81ba5e3403c48302127bda717) C:\Windows\system32\DRIVERS\raspptp.sys
21:12:32.0025 4856 PptpMiniport - ok
21:12:33.0024 4856 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys
21:12:33.0024 4856 Processor - ok
21:12:33.0960 4856 Psched (ee992183bd8eaefd9973f352e587a299) C:\Windows\system32\DRIVERS\pacer.sys
21:12:33.0960 4856 Psched - ok
21:12:34.0787 4856 PxHlpa64 (fbf4db6d53585437e41a113300002a2b) C:\Windows\system32\Drivers\PxHlpa64.sys
21:12:34.0787 4856 PxHlpa64 - ok
21:12:35.0972 4856 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys
21:12:36.0019 4856 ql2300 - ok
21:12:36.0752 4856 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys
21:12:36.0768 4856 ql40xx - ok
21:12:37.0563 4856 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
21:12:37.0563 4856 QWAVEdrv - ok
21:12:38.0328 4856 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
21:12:38.0343 4856 RasAcd - ok
21:12:39.0357 4856 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
21:12:39.0357 4856 RasAgileVpn - ok
21:12:40.0200 4856 Rasl2tp (87a6e852a22991580d6d39adc4790463) C:\Windows\system32\DRIVERS\rasl2tp.sys
21:12:40.0200 4856 Rasl2tp - ok
21:12:41.0027 4856 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
21:12:41.0027 4856 RasPppoe - ok
21:12:41.0900 4856 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
21:12:41.0900 4856 RasSstp - ok
21:12:42.0883 4856 rdbss (3bac8142102c15d59a87757c1d41dce5) C:\Windows\system32\DRIVERS\rdbss.sys
21:12:42.0883 4856 rdbss - ok
21:12:43.0289 4856 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
21:12:43.0289 4856 rdpbus - ok
21:12:43.0694 4856 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
21:12:43.0694 4856 RDPCDD - ok
21:12:44.0193 4856 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
21:12:44.0209 4856 RDPENCDD - ok
21:12:45.0036 4856 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
21:12:45.0036 4856 RDPREFMP - ok
21:12:45.0566 4856 RDPWD (8a3e6bea1c53ea6177fe2b6eba2c80d7) C:\Windows\system32\drivers\RDPWD.sys
21:12:45.0566 4856 RDPWD - ok
21:12:46.0003 4856 rdyboost (634b9a2181d98f15941236886164ec8b) C:\Windows\system32\drivers\rdyboost.sys
21:12:46.0003 4856 rdyboost - ok
21:12:46.0658 4856 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
21:12:46.0658 4856 rspndr - ok
21:12:47.0095 4856 RSUSBSTOR (ce2ef8030932b98832eb2f9580c5b1dd) C:\Windows\System32\Drivers\RtsUStor.sys
21:12:47.0095 4856 RSUSBSTOR - ok
21:12:47.0672 4856 rtl8192se (183c4139ec67e7506927de5ead28caae) C:\Windows\system32\DRIVERS\rtl8192se.sys
21:12:47.0688 4856 rtl8192se - ok
21:12:48.0109 4856 sbp2port (e3bbb89983daf5622c1d50cf49f28227) C:\Windows\system32\DRIVERS\sbp2port.sys
21:12:48.0109 4856 sbp2port - ok
21:12:48.0515 4856 scfilter (c94da20c7e3ba1dca269bc8460d98387) C:\Windows\system32\DRIVERS\scfilter.sys
21:12:48.0515 4856 scfilter - ok
21:12:48.0936 4856 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
21:12:48.0936 4856 secdrv - ok
21:12:49.0357 4856 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
21:12:49.0357 4856 Serenum - ok
21:12:49.0778 4856 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
21:12:49.0778 4856 Serial - ok
21:12:50.0246 4856 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys
21:12:50.0246 4856 sermouse - ok
21:12:50.0652 4856 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\DRIVERS\sffdisk.sys
21:12:50.0652 4856 sffdisk - ok
21:12:51.0026 4856 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\DRIVERS\sffp_mmc.sys
21:12:51.0042 4856 sffp_mmc - ok
21:12:51.0432 4856 sffp_sd (178298f767fe638c9fedcbdef58bb5e4) C:\Windows\system32\DRIVERS\sffp_sd.sys
21:12:51.0432 4856 sffp_sd - ok
21:12:51.0822 4856 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys
21:12:51.0822 4856 sfloppy - ok
21:12:52.0415 4856 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys
21:12:52.0415 4856 SiSRaid2 - ok
21:12:52.0898 4856 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys
21:12:52.0898 4856 SiSRaid4 - ok
21:12:53.0335 4856 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
21:12:53.0335 4856 Smb - ok
21:12:53.0772 4856 SMR250 (27f71f20e87fbf177c82ae924f9317f7) C:\Windows\system32\drivers\SMR250.SYS
21:12:53.0772 4856 SMR250 - ok
21:12:54.0224 4856 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
21:12:54.0224 4856 spldr - ok
21:12:54.0786 4856 SRTSP (1321a6c3c92bbd3f3bbe1292cff8e91a) C:\Windows\System32\Drivers\NISx64\1302000.00A\SRTSP64.SYS
21:12:54.0802 4856 SRTSP - ok
21:12:55.0410 4856 SRTSPX (bd129c22c3b8c2e584227269dfa77b09) C:\Windows\system32\drivers\NISx64\1302000.00A\SRTSPX64.SYS
21:12:55.0410 4856 SRTSPX - ok
21:12:55.0831 4856 srv (2408c0366d96bcdf63e8f1c78e4a29c5) C:\Windows\system32\DRIVERS\srv.sys
21:12:55.0831 4856 srv - ok
21:12:56.0393 4856 srv2 (76548f7b818881b47d8d1ae1be9c11f8) C:\Windows\system32\DRIVERS\srv2.sys
21:12:56.0393 4856 srv2 - ok
21:12:56.0845 4856 srvnet (0af6e19d39c70844c5caa8fb0183c36e) C:\Windows\system32\DRIVERS\srvnet.sys
21:12:56.0861 4856 srvnet - ok
21:12:57.0344 4856 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys
21:12:57.0344 4856 stexstor - ok
21:12:57.0750 4856 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\DRIVERS\swenum.sys
21:12:57.0766 4856 swenum - ok
21:12:58.0234 4856 SymDS (8b2430762099598da40686f754632efd) C:\Windows\system32\drivers\NISx64\1302000.00A\SYMDS64.SYS
21:12:58.0249 4856 SymDS - ok
21:12:58.0764 4856 SymEFA (d89a88ad71e12f963b1f436a0e91dcbf) C:\Windows\system32\drivers\NISx64\1302000.00A\SYMEFA64.SYS
21:12:58.0795 4856 SymEFA - ok
21:12:59.0248 4856 SymEvent (36b77f5c9e21f88a8c8ec67ad5415819) C:\Windows\system32\Drivers\SYMEVENT64x86.SYS
21:12:59.0248 4856 SymEvent - ok
21:12:59.0747 4856 SymIRON (dd70da422460fded831d211df151d560) C:\Windows\system32\drivers\NISx64\1302000.00A\Ironx64.SYS
21:12:59.0747 4856 SymIRON - ok
21:13:00.0652 4856 SymNetS (bce4eb2eef05e388959b46fd21388c2d) C:\Windows\System32\Drivers\NISx64\1302000.00A\SYMNETS.SYS
21:13:00.0667 4856 SymNetS - ok
21:13:01.0541 4856 SynTP (064a2530a4a7c7cec1be6a1945645be4) C:\Windows\system32\DRIVERS\SynTP.sys
21:13:01.0541 4856 SynTP - ok
21:13:02.0383 4856 Tcpip (f18f56efc0bfb9c87ba01c37b27f4da5) C:\Windows\system32\drivers\tcpip.sys
21:13:02.0430 4856 Tcpip - ok
21:13:02.0992 4856 TCPIP6 (f18f56efc0bfb9c87ba01c37b27f4da5) C:\Windows\system32\DRIVERS\tcpip.sys
21:13:03.0007 4856 TCPIP6 - ok
21:13:03.0553 4856 tcpipreg (76d078af6f587b162d50210f761eb9ed) C:\Windows\system32\drivers\tcpipreg.sys
21:13:03.0553 4856 tcpipreg - ok
21:13:04.0552 4856 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
21:13:04.0552 4856 TDPIPE - ok
21:13:04.0988 4856 TDTCP (e4245bda3190a582d55ed09e137401a9) C:\Windows\system32\drivers\tdtcp.sys
21:13:05.0004 4856 TDTCP - ok
21:13:05.0441 4856 tdx (079125c4b17b01fcaeebce0bcb290c0f) C:\Windows\system32\DRIVERS\tdx.sys
21:13:05.0441 4856 tdx - ok
21:13:05.0893 4856 TermDD (c448651339196c0e869a355171875522) C:\Windows\system32\DRIVERS\termdd.sys
21:13:05.0893 4856 TermDD - ok
21:13:06.0346 4856 tssecsrv (61b96c26131e37b24e93327a0bd1fb95) C:\Windows\system32\DRIVERS\tssecsrv.sys
21:13:06.0346 4856 tssecsrv - ok
21:13:06.0782 4856 tunnel (3836171a2cdf3af8ef10856db9835a70) C:\Windows\system32\DRIVERS\tunnel.sys
21:13:06.0782 4856 tunnel - ok
21:13:07.0235 4856 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys
21:13:07.0235 4856 uagp35 - ok
21:13:07.0656 4856 UBHelper (2e22c1fd397a5a9ffef55e9d1fc96c00) C:\Windows\system32\drivers\UBHelper.sys
21:13:07.0656 4856 UBHelper - ok
21:13:08.0171 4856 udfs (d47baead86c65d4f4069d7ce0a4edceb) C:\Windows\system32\DRIVERS\udfs.sys
21:13:08.0171 4856 udfs - ok
21:13:08.0654 4856 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\DRIVERS\uliagpkx.sys
21:13:08.0654 4856 uliagpkx - ok
21:13:09.0060 4856 umbus (eab6c35e62b1b0db0d1b48b671d3a117) C:\Windows\system32\DRIVERS\umbus.sys
21:13:09.0060 4856 umbus - ok
21:13:09.0528 4856 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys
21:13:09.0528 4856 UmPass - ok
21:13:10.0027 4856 usbccgp (b26afb54a534d634523c4fb66765b026) C:\Windows\system32\DRIVERS\usbccgp.sys
21:13:10.0027 4856 usbccgp - ok
21:13:10.0480 4856 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\DRIVERS\usbcir.sys
21:13:10.0480 4856 usbcir - ok
21:13:10.0963 4856 usbehci (cb490987a7f6928a04bb838e3bd8a936) C:\Windows\system32\DRIVERS\usbehci.sys
21:13:10.0963 4856 usbehci - ok
21:13:11.0509 4856 usbhub (18124ef0a881a00ee222d02a3ee30270) C:\Windows\system32\DRIVERS\usbhub.sys
21:13:11.0509 4856 usbhub - ok
21:13:11.0977 4856 usbohci (58e546bbaf87664fc57e0f6081e4f609) C:\Windows\system32\DRIVERS\usbohci.sys
21:13:11.0977 4856 usbohci - ok
21:13:12.0383 4856 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
21:13:12.0398 4856 usbprint - ok
21:13:12.0804 4856 USBSTOR (080d3820da6c046be82fc8b45a893e83) C:\Windows\system32\DRIVERS\USBSTOR.SYS
21:13:12.0804 4856 USBSTOR - ok
21:13:13.0225 4856 usbuhci (81fb2216d3a60d1284455d511797db3d) C:\Windows\system32\DRIVERS\usbuhci.sys
21:13:13.0225 4856 usbuhci - ok
21:13:13.0678 4856 usbvideo (7cb8c573c6e4a2714402cc0a36eab4fe) C:\Windows\System32\Drivers\usbvideo.sys
21:13:13.0678 4856 usbvideo - ok
21:13:14.0130 4856 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\DRIVERS\vdrvroot.sys
21:13:14.0130 4856 vdrvroot - ok
21:13:14.0567 4856 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
21:13:14.0567 4856 vga - ok
21:13:14.0972 4856 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
21:13:14.0972 4856 VgaSave - ok
21:13:15.0394 4856 vhdmp (c82e748660f62a242b2dfac1442f22a4) C:\Windows\system32\DRIVERS\vhdmp.sys
21:13:15.0394 4856 vhdmp - ok
21:13:15.0799 4856 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\DRIVERS\viaide.sys
21:13:15.0799 4856 viaide - ok
21:13:16.0501 4856 volmgr (2b1a3dae2b4e70dbba822b7a03fbd4a3) C:\Windows\system32\DRIVERS\volmgr.sys
21:13:16.0501 4856 volmgr - ok
21:13:17.0016 4856 volmgrx (99b0cbb569ca79acaed8c91461d765fb) C:\Windows\system32\drivers\volmgrx.sys
21:13:17.0016 4856 volmgrx - ok
21:13:17.0453 4856 volsnap (58f82eed8ca24b461441f9c3e4f0bf5c) C:\Windows\system32\DRIVERS\volsnap.sys
21:13:17.0453 4856 volsnap - ok
21:13:17.0874 4856 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys
21:13:17.0890 4856 vsmraid - ok
21:13:18.0295 4856 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\system32\DRIVERS\vwifibus.sys
21:13:18.0295 4856 vwifibus - ok
21:13:18.0748 4856 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\Windows\system32\DRIVERS\vwififlt.sys
21:13:18.0748 4856 vwififlt - ok
21:13:19.0184 4856 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys
21:13:19.0184 4856 WacomPen - ok
21:13:19.0621 4856 WANARP (47ca49400643effd3f1c9a27e1d69324) C:\Windows\system32\DRIVERS\wanarp.sys
21:13:19.0621 4856 WANARP - ok
21:13:19.0637 4856 Wanarpv6 (47ca49400643effd3f1c9a27e1d69324) C:\Windows\system32\DRIVERS\wanarp.sys
21:13:19.0637 4856 Wanarpv6 - ok
21:13:20.0074 4856 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys
21:13:20.0074 4856 Wd - ok
21:13:20.0495 4856 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
21:13:20.0510 4856 Wdf01000 - ok
21:13:20.0963 4856 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
21:13:20.0978 4856 WfpLwf - ok
21:13:21.0493 4856 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
21:13:21.0493 4856 WIMMount - ok
21:13:22.0008 4856 WinUsb (817eaff5d38674edd7713b9dfb8e9791) C:\Windows\system32\DRIVERS\WinUsb.sys
21:13:22.0008 4856 WinUsb - ok
21:13:22.0460 4856 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\DRIVERS\wmiacpi.sys
21:13:22.0460 4856 WmiAcpi - ok
21:13:22.0944 4856 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
21:13:22.0944 4856 ws2ifsl - ok
21:13:23.0412 4856 WudfPf (7cadc74271dd6461c452c271b30bd378) C:\Windows\system32\drivers\WudfPf.sys
21:13:23.0412 4856 WudfPf - ok
21:13:23.0849 4856 WUDFRd (3b197af0fff08aa66b6b2241ca538d64) C:\Windows\system32\DRIVERS\WUDFRd.sys
21:13:23.0864 4856 WUDFRd - ok
21:13:23.0911 4856 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
21:13:23.0989 4856 \Device\Harddisk0\DR0 - ok
21:13:23.0989 4856 Boot (0x1200) (689663a814dfae3bbb7674be0946b24d) \Device\Harddisk0\DR0\Partition0
21:13:23.0989 4856 \Device\Harddisk0\DR0\Partition0 - ok
21:13:24.0005 4856 Boot (0x1200) (6479d9495850c3b8cc83e3db422d65a6) \Device\Harddisk0\DR0\Partition1
21:13:24.0005 4856 \Device\Harddisk0\DR0\Partition1 - ok
21:13:24.0005 4856 ============================================================
21:13:24.0005 4856 Scan finished
21:13:24.0005 4856 ============================================================
21:13:24.0036 5612 Detected object count: 0
21:13:24.0036 5612 Actual detected object count: 0
21:14:08.0465 3548 Deinitialize success
Voici le rapport :
21:10:59.0307 3940 TDSS rootkit removing tool 2.7.7.0 Jan 24 2012 16:44:27
21:10:59.0666 3940 ============================================================
21:10:59.0666 3940 Current date / time: 2012/01/26 21:10:59.0666
21:10:59.0666 3940 SystemInfo:
21:10:59.0666 3940
21:10:59.0666 3940 OS Version: 6.1.7600 ServicePack: 0.0
21:10:59.0666 3940 Product type: Workstation
21:10:59.0666 3940 ComputerName: FAMILLEMASCHIO
21:10:59.0666 3940 UserName: Famille Maschio
21:10:59.0666 3940 Windows directory: C:\Windows
21:10:59.0666 3940 System windows directory: C:\Windows
21:10:59.0666 3940 Running under WOW64
21:10:59.0666 3940 Processor architecture: Intel x64
21:10:59.0666 3940 Number of processors: 2
21:10:59.0666 3940 Page size: 0x1000
21:10:59.0666 3940 Boot type: Normal boot
21:10:59.0666 3940 ============================================================
21:11:00.0150 3940 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
21:11:00.0181 3940 Initialize success
21:11:12.0739 4856 ============================================================
21:11:12.0739 4856 Scan started
21:11:12.0739 4856 Mode: Manual;
21:11:12.0739 4856 ============================================================
21:11:14.0127 4856 1394ohci (1b00662092f9f9568b995902f0cc40d5) C:\Windows\system32\DRIVERS\1394ohci.sys
21:11:14.0127 4856 1394ohci - ok
21:11:15.0016 4856 ACPI (6f11e88748cdefd2f76aa215f97ddfe5) C:\Windows\system32\DRIVERS\ACPI.sys
21:11:15.0016 4856 ACPI - ok
21:11:15.0516 4856 AcpiPmi (63b05a0420ce4bf0e4af6dcc7cada254) C:\Windows\system32\DRIVERS\acpipmi.sys
21:11:15.0516 4856 AcpiPmi - ok
21:11:15.0968 4856 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
21:11:15.0984 4856 adp94xx - ok
21:11:16.0420 4856 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
21:11:16.0436 4856 adpahci - ok
21:11:16.0873 4856 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
21:11:16.0873 4856 adpu320 - ok
21:11:17.0372 4856 AFD (6ef20ddf3172e97d69f596fb90602f29) C:\Windows\system32\drivers\afd.sys
21:11:17.0372 4856 AFD - ok
21:11:17.0809 4856 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\DRIVERS\agp440.sys
21:11:17.0824 4856 agp440 - ok
21:11:18.0261 4856 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\DRIVERS\aliide.sys
21:11:18.0261 4856 aliide - ok
21:11:18.0682 4856 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\DRIVERS\amdide.sys
21:11:18.0682 4856 amdide - ok
21:11:19.0135 4856 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
21:11:19.0135 4856 AmdK8 - ok
21:11:19.0587 4856 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
21:11:19.0587 4856 AmdPPM - ok
21:11:20.0008 4856 amdsata (7a4b413614c055935567cf88a9734d38) C:\Windows\system32\DRIVERS\amdsata.sys
21:11:20.0008 4856 amdsata - ok
21:11:20.0445 4856 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
21:11:20.0461 4856 amdsbs - ok
21:11:20.0913 4856 amdxata (b4ad0cacbab298671dd6f6ef7e20679d) C:\Windows\system32\DRIVERS\amdxata.sys
21:11:20.0913 4856 amdxata - ok
21:11:21.0334 4856 AppID (42fd751b27fa0e9c69bb39f39e409594) C:\Windows\system32\drivers\appid.sys
21:11:21.0350 4856 AppID - ok
21:11:21.0771 4856 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
21:11:21.0771 4856 arc - ok
21:11:22.0192 4856 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
21:11:22.0192 4856 arcsas - ok
21:11:22.0614 4856 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
21:11:22.0614 4856 AsyncMac - ok
21:11:23.0035 4856 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\DRIVERS\atapi.sys
21:11:23.0035 4856 atapi - ok
21:11:23.0518 4856 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys
21:11:23.0518 4856 b06bdrv - ok
21:11:24.0111 4856 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
21:11:24.0127 4856 b57nd60a - ok
21:11:24.0595 4856 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
21:11:24.0610 4856 Beep - ok
21:11:25.0047 4856 BHDrvx64 (1d757a7e020c577c4259a755f21b7152) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.1.3\Definitions\BASHDefs\20120121.002\BHDrvx64.sys
21:11:25.0063 4856 BHDrvx64 - ok
21:11:25.0500 4856 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
21:11:25.0500 4856 blbdrive - ok
21:11:25.0921 4856 bowser (19d20159708e152267e53b66677a4995) C:\Windows\system32\DRIVERS\bowser.sys
21:11:25.0921 4856 bowser - ok
21:11:26.0326 4856 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys
21:11:26.0326 4856 BrFiltLo - ok
21:11:26.0732 4856 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys
21:11:26.0748 4856 BrFiltUp - ok
21:11:27.0169 4856 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
21:11:27.0169 4856 Brserid - ok
21:11:27.0590 4856 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
21:11:27.0590 4856 BrSerWdm - ok
21:11:28.0011 4856 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
21:11:28.0011 4856 BrUsbMdm - ok
21:11:28.0432 4856 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
21:11:28.0448 4856 BrUsbSer - ok
21:11:28.0869 4856 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
21:11:28.0869 4856 BTHMODEM - ok
21:11:29.0353 4856 ccSet_NIS (a8ad33c9dd88c810cac00acc7f4329fb) C:\Windows\system32\drivers\NISx64\1302000.00A\ccSetx64.sys
21:11:29.0353 4856 ccSet_NIS - ok
21:11:29.0774 4856 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
21:11:29.0774 4856 cdfs - ok
21:11:30.0195 4856 cdrom (83d2d75e1efb81b3450c18131443f7db) C:\Windows\system32\DRIVERS\cdrom.sys
21:11:30.0195 4856 cdrom - ok
21:11:30.0616 4856 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys
21:11:30.0616 4856 circlass - ok
21:11:30.0913 4856 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
21:11:30.0913 4856 CLFS - ok
21:11:31.0459 4856 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
21:11:31.0459 4856 CmBatt - ok
21:11:31.0880 4856 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\DRIVERS\cmdide.sys
21:11:31.0880 4856 cmdide - ok
21:11:32.0395 4856 CNG (f95fd4cb7da00ba2a63ce9f6b5c053e1) C:\Windows\system32\Drivers\cng.sys
21:11:32.0410 4856 CNG - ok
21:11:32.0894 4856 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
21:11:32.0894 4856 Compbatt - ok
21:11:33.0331 4856 CompositeBus (f26b3a86f6fa87ca360b879581ab4123) C:\Windows\system32\DRIVERS\CompositeBus.sys
21:11:33.0331 4856 CompositeBus - ok
21:11:33.0768 4856 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys
21:11:33.0768 4856 crcdisk - ok
21:11:34.0220 4856 DfsC (9c253ce7311ca60fc11c774692a13208) C:\Windows\system32\Drivers\dfsc.sys
21:11:34.0220 4856 DfsC - ok
21:11:34.0641 4856 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
21:11:34.0657 4856 discache - ok
21:11:35.0078 4856 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys
21:11:35.0078 4856 Disk - ok
21:11:35.0593 4856 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
21:11:35.0593 4856 drmkaud - ok
21:11:36.0139 4856 DXGKrnl (1633b9abf52784a1331476397a48cbef) C:\Windows\System32\drivers\dxgkrnl.sys
21:11:36.0154 4856 DXGKrnl - ok
21:11:36.0622 4856 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys
21:11:36.0732 4856 ebdrv - ok
21:11:36.0856 4856 eeCtrl (5ccf1be80930aeb1cdebf561666325e8) C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys
21:11:36.0872 4856 eeCtrl - ok
21:11:37.0309 4856 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys
21:11:37.0309 4856 elxstor - ok
21:11:37.0465 4856 EraserUtilRebootDrv (7a898e4a744621711be7e7b796c69876) C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
21:11:37.0465 4856 EraserUtilRebootDrv - ok
21:11:37.0886 4856 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\DRIVERS\errdev.sys
21:11:37.0886 4856 ErrDev - ok
21:11:38.0432 4856 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
21:11:38.0432 4856 exfat - ok
21:11:39.0774 4856 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
21:11:39.0789 4856 fastfat - ok
21:11:40.0195 4856 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
21:11:40.0210 4856 fdc - ok
21:11:40.0647 4856 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
21:11:40.0647 4856 FileInfo - ok
21:11:41.0084 4856 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
21:11:41.0084 4856 Filetrace - ok
21:11:41.0724 4856 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys
21:11:41.0724 4856 flpydisk - ok
21:11:42.0176 4856 FltMgr (f7866af72abbaf84b1fa5aa195378c59) C:\Windows\system32\drivers\fltmgr.sys
21:11:42.0192 4856 FltMgr - ok
21:11:42.0613 4856 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
21:11:42.0613 4856 FsDepends - ok
21:11:43.0096 4856 Fs_Rec (e95ef8547de20cf0603557c0cf7a9462) C:\Windows\system32\drivers\Fs_Rec.sys
21:11:43.0096 4856 Fs_Rec - ok
21:11:44.0173 4856 fvevol (ae87ba80d0ec3b57126ed2cdc15b24ed) C:\Windows\system32\DRIVERS\fvevol.sys
21:11:44.0173 4856 fvevol - ok
21:11:44.0594 4856 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys
21:11:44.0594 4856 gagp30kx - ok
21:11:45.0171 4856 GEARAspiWDM (e403aacf8c7bb11375122d2464560311) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
21:11:45.0171 4856 GEARAspiWDM - ok
21:11:45.0624 4856 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
21:11:45.0624 4856 hcw85cir - ok
21:11:46.0045 4856 HdAudAddService (6410f6f415b2a5a9037224c41da8bf12) C:\Windows\system32\drivers\HdAudio.sys
21:11:46.0060 4856 HdAudAddService - ok
21:11:46.0544 4856 HDAudBus (0a49913402747a0b67de940fb42cbdbb) C:\Windows\system32\DRIVERS\HDAudBus.sys
21:11:46.0544 4856 HDAudBus - ok
21:11:46.0996 4856 HECIx64 (b6ac71aaa2b10848f57fc49d55a651af) C:\Windows\system32\DRIVERS\HECIx64.sys
21:11:47.0012 4856 HECIx64 - ok
21:11:47.0511 4856 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys
21:11:47.0511 4856 HidBatt - ok
21:11:47.0948 4856 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys
21:11:47.0948 4856 HidBth - ok
21:11:48.0447 4856 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys
21:11:48.0447 4856 HidIr - ok
21:11:48.0993 4856 HidUsb (b3bf6b5b50006def50b66306d99fcf6f) C:\Windows\system32\DRIVERS\hidusb.sys
21:11:48.0993 4856 HidUsb - ok
21:11:49.0414 4856 HpSAMD (0886d440058f203eba0e1825e4355914) C:\Windows\system32\DRIVERS\HpSAMD.sys
21:11:49.0430 4856 HpSAMD - ok
21:11:49.0867 4856 HTTP (cee049cac4efa7f4e1e4ad014414a5d4) C:\Windows\system32\drivers\HTTP.sys
21:11:49.0898 4856 HTTP - ok
21:11:50.0304 4856 hwpolicy (f17766a19145f111856378df337a5d79) C:\Windows\system32\drivers\hwpolicy.sys
21:11:50.0304 4856 hwpolicy - ok
21:11:50.0756 4856 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\DRIVERS\i8042prt.sys
21:11:50.0756 4856 i8042prt - ok
21:11:51.0286 4856 iaStor (1384872112e8e7fd5786eceb8bddf4c9) C:\Windows\system32\DRIVERS\iaStor.sys
21:11:51.0286 4856 iaStor - ok
21:11:51.0786 4856 iaStorV (d83efb6fd45df9d55e9a1afc63640d50) C:\Windows\system32\DRIVERS\iaStorV.sys
21:11:51.0786 4856 iaStorV - ok
21:11:52.0082 4856 IDSVia64 (18c40c3f368323b203ace403cb430db1) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.1.3\Definitions\IPSDefs\20120125.002\IDSvia64.sys
21:11:52.0082 4856 IDSVia64 - ok
21:11:52.0488 4856 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys
21:11:52.0488 4856 iirsp - ok
21:11:52.0956 4856 IntcAzAudAddService (235362d403d9d677514649d88db31914) C:\Windows\system32\drivers\RTKVHD64.sys
21:11:53.0034 4856 IntcAzAudAddService - ok
21:11:53.0455 4856 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\DRIVERS\intelide.sys
21:11:53.0455 4856 intelide - ok
21:11:53.0907 4856 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
21:11:53.0907 4856 intelppm - ok
21:11:54.0375 4856 IpFilterDriver (722dd294df62483cecaae6e094b4d695) C:\Windows\system32\DRIVERS\ipfltdrv.sys
21:11:54.0391 4856 IpFilterDriver - ok
21:11:54.0828 4856 IPMIDRV (e2b4a4494db7cb9b89b55ca268c337c5) C:\Windows\system32\DRIVERS\IPMIDrv.sys
21:11:54.0828 4856 IPMIDRV - ok
21:11:55.0498 4856 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
21:11:55.0498 4856 IPNAT - ok
21:11:55.0951 4856 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
21:11:55.0951 4856 IRENUM - ok
21:11:56.0372 4856 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\DRIVERS\isapnp.sys
21:11:56.0372 4856 isapnp - ok
21:11:56.0809 4856 iScsiPrt (fa4d2557de56d45b0a346f93564be6e1) C:\Windows\system32\DRIVERS\msiscsi.sys
21:11:56.0809 4856 iScsiPrt - ok
21:11:57.0261 4856 k57nd60a (c9b4ecc187581e5bf3f76648884b7829) C:\Windows\system32\DRIVERS\k57nd60a.sys
21:11:57.0261 4856 k57nd60a - ok
21:11:57.0682 4856 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\DRIVERS\kbdclass.sys
21:11:57.0698 4856 kbdclass - ok
21:11:58.0104 4856 kbdhid (6def98f8541e1b5dceb2c822a11f7323) C:\Windows\system32\DRIVERS\kbdhid.sys
21:11:58.0104 4856 kbdhid - ok
21:11:58.0525 4856 KSecDD (e8b6fcc9c83535c67f835d407620bd27) C:\Windows\system32\Drivers\ksecdd.sys
21:11:58.0525 4856 KSecDD - ok
21:11:58.0930 4856 KSecPkg (a8c63880ef6f4d3fec7b616b9c060215) C:\Windows\system32\Drivers\ksecpkg.sys
21:11:58.0946 4856 KSecPkg - ok
21:11:59.0430 4856 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
21:11:59.0430 4856 ksthunk - ok
21:11:59.0976 4856 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
21:11:59.0976 4856 lltdio - ok
21:12:00.0444 4856 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys
21:12:00.0444 4856 LSI_FC - ok
21:12:00.0849 4856 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys
21:12:00.0865 4856 LSI_SAS - ok
21:12:01.0598 4856 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys
21:12:01.0598 4856 LSI_SAS2 - ok
21:12:02.0035 4856 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys
21:12:02.0035 4856 LSI_SCSI - ok
21:12:02.0456 4856 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
21:12:02.0456 4856 luafv - ok
21:12:02.0877 4856 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys
21:12:02.0877 4856 megasas - ok
21:12:03.0298 4856 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys
21:12:03.0314 4856 MegaSR - ok
21:12:03.0798 4856 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
21:12:03.0798 4856 Modem - ok
21:12:04.0203 4856 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
21:12:04.0203 4856 monitor - ok
21:12:04.0624 4856 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
21:12:04.0624 4856 mouclass - ok
21:12:05.0046 4856 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
21:12:05.0046 4856 mouhid - ok
21:12:05.0498 4856 mountmgr (791af66c4d0e7c90a3646066386fb571) C:\Windows\system32\drivers\mountmgr.sys
21:12:05.0498 4856 mountmgr - ok
21:12:05.0950 4856 mpio (609d1d87649ecc19796f4d76d4c15cea) C:\Windows\system32\DRIVERS\mpio.sys
21:12:05.0950 4856 mpio - ok
21:12:06.0730 4856 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
21:12:06.0730 4856 mpsdrv - ok
21:12:07.0292 4856 MRxDAV (30524261bb51d96d6fcbac20c810183c) C:\Windows\system32\drivers\mrxdav.sys
21:12:07.0292 4856 MRxDAV - ok
21:12:07.0885 4856 mrxsmb (040d62a9d8ad28922632137acdd984f2) C:\Windows\system32\DRIVERS\mrxsmb.sys
21:12:07.0900 4856 mrxsmb - ok
21:12:08.0446 4856 mrxsmb10 (f0067552f8f9b33d7c59403ab808a3cb) C:\Windows\system32\DRIVERS\mrxsmb10.sys
21:12:08.0446 4856 mrxsmb10 - ok
21:12:08.0977 4856 mrxsmb20 (3c142d31de9f2f193218a53fe2632051) C:\Windows\system32\DRIVERS\mrxsmb20.sys
21:12:08.0977 4856 mrxsmb20 - ok
21:12:09.0476 4856 msahci (5c37497276e3b3a5488b23a326a754b7) C:\Windows\system32\DRIVERS\msahci.sys
21:12:09.0476 4856 msahci - ok
21:12:10.0178 4856 msdsm (8d27b597229aed79430fb9db3bcbfbd0) C:\Windows\system32\DRIVERS\msdsm.sys
21:12:10.0178 4856 msdsm - ok
21:12:10.0803 4856 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
21:12:10.0803 4856 Msfs - ok
21:12:11.0255 4856 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
21:12:11.0255 4856 mshidkmdf - ok
21:12:11.0864 4856 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\DRIVERS\msisadrv.sys
21:12:11.0879 4856 msisadrv - ok
21:12:12.0472 4856 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
21:12:12.0472 4856 MSKSSRV - ok
21:12:13.0018 4856 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
21:12:13.0018 4856 MSPCLOCK - ok
21:12:13.0424 4856 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
21:12:13.0424 4856 MSPQM - ok
21:12:13.0829 4856 MsRPC (89cb141aa8616d8c6a4610fa26c60964) C:\Windows\system32\drivers\MsRPC.sys
21:12:13.0829 4856 MsRPC - ok
21:12:14.0266 4856 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\DRIVERS\mssmbios.sys
21:12:14.0266 4856 mssmbios - ok
21:12:14.0687 4856 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
21:12:14.0687 4856 MSTEE - ok
21:12:15.0218 4856 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys
21:12:15.0218 4856 MTConfig - ok
21:12:15.0686 4856 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
21:12:15.0701 4856 Mup - ok
21:12:16.0138 4856 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
21:12:16.0138 4856 NativeWifiP - ok
21:12:16.0341 4856 NAVENG (2dbe90210de76be6e1653bb20ec70ec2) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.1.3\Definitions\VirusDefs\20120126.003\ENG64.SYS
21:12:16.0341 4856 NAVENG - ok
21:12:16.0450 4856 NAVEX15 (346da70e203b8e2c850277713de8f71b) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.1.3\Definitions\VirusDefs\20120126.003\EX64.SYS
21:12:16.0466 4856 NAVEX15 - ok
21:12:16.0996 4856 NDIS (cad515dbd07d082bb317d9928ce8962c) C:\Windows\system32\drivers\ndis.sys
21:12:17.0012 4856 NDIS - ok
21:12:17.0449 4856 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
21:12:17.0449 4856 NdisCap - ok
21:12:17.0979 4856 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
21:12:17.0995 4856 NdisTapi - ok
21:12:18.0556 4856 Ndisuio (f105ba1e22bf1f2ee8f005d4305e4bec) C:\Windows\system32\DRIVERS\ndisuio.sys
21:12:18.0556 4856 Ndisuio - ok
21:12:18.0962 4856 NdisWan (557dfab9ca1fcb036ac77564c010dad3) C:\Windows\system32\DRIVERS\ndiswan.sys
21:12:18.0962 4856 NdisWan - ok
21:12:19.0353 4856 NDProxy (659b74fb74b86228d6338d643cd3e3cf) C:\Windows\system32\drivers\NDProxy.sys
21:12:19.0353 4856 NDProxy - ok
21:12:19.0852 4856 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
21:12:19.0852 4856 NetBIOS - ok
21:12:20.0304 4856 NetBT (9162b273a44ab9dce5b44362731d062a) C:\Windows\system32\DRIVERS\netbt.sys
21:12:20.0320 4856 NetBT - ok
21:12:20.0757 4856 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys
21:12:20.0757 4856 nfrd960 - ok
21:12:21.0209 4856 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
21:12:21.0209 4856 Npfs - ok
21:12:21.0599 4856 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
21:12:21.0615 4856 nsiproxy - ok
21:12:22.0036 4856 Ntfs (356698a13c4630d5b31c37378d469196) C:\Windows\system32\drivers\Ntfs.sys
21:12:22.0067 4856 Ntfs - ok
21:12:22.0504 4856 NTIDrvr (64ddd0dee976302f4bd93e5efcc2f013) C:\Windows\system32\drivers\NTIDrvr.sys
21:12:22.0504 4856 NTIDrvr - ok
21:12:23.0019 4856 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
21:12:23.0019 4856 Null - ok
21:12:23.0471 4856 NVHDA (e20abd5b229760158f753ca90b97e090) C:\Windows\system32\drivers\nvhda64v.sys
21:12:23.0471 4856 NVHDA - ok
21:12:24.0190 4856 nvlddmkm (b4402e1d61a3015fc29bef94bb1c81fd) C:\Windows\system32\DRIVERS\nvlddmkm.sys
21:12:24.0439 4856 nvlddmkm - ok
21:12:24.0861 4856 nvraid (3e38712941e9bb4ddbee00affe3fed3d) C:\Windows\system32\DRIVERS\nvraid.sys
21:12:24.0876 4856 nvraid - ok
21:12:25.0344 4856 nvstor (477dc4d6deb99be37084c9ac6d013da1) C:\Windows\system32\DRIVERS\nvstor.sys
21:12:25.0344 4856 nvstor - ok
21:12:25.0926 4856 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\DRIVERS\nv_agp.sys
21:12:25.0926 4856 nv_agp - ok
21:12:26.0550 4856 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\DRIVERS\ohci1394.sys
21:12:26.0550 4856 ohci1394 - ok
21:12:27.0423 4856 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys
21:12:27.0423 4856 Parport - ok
21:12:27.0876 4856 partmgr (7daa117143316c4a1537e074a5a9eaf0) C:\Windows\system32\drivers\partmgr.sys
21:12:27.0876 4856 partmgr - ok
21:12:28.0297 4856 pci (f36f6504009f2fb0dfd1b17a116ad74b) C:\Windows\system32\DRIVERS\pci.sys
21:12:28.0297 4856 pci - ok
21:12:28.0734 4856 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\DRIVERS\pciide.sys
21:12:28.0734 4856 pciide - ok
21:12:29.0249 4856 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys
21:12:29.0249 4856 pcmcia - ok
21:12:30.0091 4856 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
21:12:30.0091 4856 pcw - ok
21:12:31.0183 4856 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
21:12:31.0183 4856 PEAUTH - ok
21:12:32.0025 4856 PptpMiniport (27cc19e81ba5e3403c48302127bda717) C:\Windows\system32\DRIVERS\raspptp.sys
21:12:32.0025 4856 PptpMiniport - ok
21:12:33.0024 4856 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys
21:12:33.0024 4856 Processor - ok
21:12:33.0960 4856 Psched (ee992183bd8eaefd9973f352e587a299) C:\Windows\system32\DRIVERS\pacer.sys
21:12:33.0960 4856 Psched - ok
21:12:34.0787 4856 PxHlpa64 (fbf4db6d53585437e41a113300002a2b) C:\Windows\system32\Drivers\PxHlpa64.sys
21:12:34.0787 4856 PxHlpa64 - ok
21:12:35.0972 4856 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys
21:12:36.0019 4856 ql2300 - ok
21:12:36.0752 4856 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys
21:12:36.0768 4856 ql40xx - ok
21:12:37.0563 4856 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
21:12:37.0563 4856 QWAVEdrv - ok
21:12:38.0328 4856 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
21:12:38.0343 4856 RasAcd - ok
21:12:39.0357 4856 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
21:12:39.0357 4856 RasAgileVpn - ok
21:12:40.0200 4856 Rasl2tp (87a6e852a22991580d6d39adc4790463) C:\Windows\system32\DRIVERS\rasl2tp.sys
21:12:40.0200 4856 Rasl2tp - ok
21:12:41.0027 4856 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
21:12:41.0027 4856 RasPppoe - ok
21:12:41.0900 4856 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
21:12:41.0900 4856 RasSstp - ok
21:12:42.0883 4856 rdbss (3bac8142102c15d59a87757c1d41dce5) C:\Windows\system32\DRIVERS\rdbss.sys
21:12:42.0883 4856 rdbss - ok
21:12:43.0289 4856 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
21:12:43.0289 4856 rdpbus - ok
21:12:43.0694 4856 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
21:12:43.0694 4856 RDPCDD - ok
21:12:44.0193 4856 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
21:12:44.0209 4856 RDPENCDD - ok
21:12:45.0036 4856 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
21:12:45.0036 4856 RDPREFMP - ok
21:12:45.0566 4856 RDPWD (8a3e6bea1c53ea6177fe2b6eba2c80d7) C:\Windows\system32\drivers\RDPWD.sys
21:12:45.0566 4856 RDPWD - ok
21:12:46.0003 4856 rdyboost (634b9a2181d98f15941236886164ec8b) C:\Windows\system32\drivers\rdyboost.sys
21:12:46.0003 4856 rdyboost - ok
21:12:46.0658 4856 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
21:12:46.0658 4856 rspndr - ok
21:12:47.0095 4856 RSUSBSTOR (ce2ef8030932b98832eb2f9580c5b1dd) C:\Windows\System32\Drivers\RtsUStor.sys
21:12:47.0095 4856 RSUSBSTOR - ok
21:12:47.0672 4856 rtl8192se (183c4139ec67e7506927de5ead28caae) C:\Windows\system32\DRIVERS\rtl8192se.sys
21:12:47.0688 4856 rtl8192se - ok
21:12:48.0109 4856 sbp2port (e3bbb89983daf5622c1d50cf49f28227) C:\Windows\system32\DRIVERS\sbp2port.sys
21:12:48.0109 4856 sbp2port - ok
21:12:48.0515 4856 scfilter (c94da20c7e3ba1dca269bc8460d98387) C:\Windows\system32\DRIVERS\scfilter.sys
21:12:48.0515 4856 scfilter - ok
21:12:48.0936 4856 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
21:12:48.0936 4856 secdrv - ok
21:12:49.0357 4856 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
21:12:49.0357 4856 Serenum - ok
21:12:49.0778 4856 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
21:12:49.0778 4856 Serial - ok
21:12:50.0246 4856 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys
21:12:50.0246 4856 sermouse - ok
21:12:50.0652 4856 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\DRIVERS\sffdisk.sys
21:12:50.0652 4856 sffdisk - ok
21:12:51.0026 4856 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\DRIVERS\sffp_mmc.sys
21:12:51.0042 4856 sffp_mmc - ok
21:12:51.0432 4856 sffp_sd (178298f767fe638c9fedcbdef58bb5e4) C:\Windows\system32\DRIVERS\sffp_sd.sys
21:12:51.0432 4856 sffp_sd - ok
21:12:51.0822 4856 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys
21:12:51.0822 4856 sfloppy - ok
21:12:52.0415 4856 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys
21:12:52.0415 4856 SiSRaid2 - ok
21:12:52.0898 4856 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys
21:12:52.0898 4856 SiSRaid4 - ok
21:12:53.0335 4856 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
21:12:53.0335 4856 Smb - ok
21:12:53.0772 4856 SMR250 (27f71f20e87fbf177c82ae924f9317f7) C:\Windows\system32\drivers\SMR250.SYS
21:12:53.0772 4856 SMR250 - ok
21:12:54.0224 4856 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
21:12:54.0224 4856 spldr - ok
21:12:54.0786 4856 SRTSP (1321a6c3c92bbd3f3bbe1292cff8e91a) C:\Windows\System32\Drivers\NISx64\1302000.00A\SRTSP64.SYS
21:12:54.0802 4856 SRTSP - ok
21:12:55.0410 4856 SRTSPX (bd129c22c3b8c2e584227269dfa77b09) C:\Windows\system32\drivers\NISx64\1302000.00A\SRTSPX64.SYS
21:12:55.0410 4856 SRTSPX - ok
21:12:55.0831 4856 srv (2408c0366d96bcdf63e8f1c78e4a29c5) C:\Windows\system32\DRIVERS\srv.sys
21:12:55.0831 4856 srv - ok
21:12:56.0393 4856 srv2 (76548f7b818881b47d8d1ae1be9c11f8) C:\Windows\system32\DRIVERS\srv2.sys
21:12:56.0393 4856 srv2 - ok
21:12:56.0845 4856 srvnet (0af6e19d39c70844c5caa8fb0183c36e) C:\Windows\system32\DRIVERS\srvnet.sys
21:12:56.0861 4856 srvnet - ok
21:12:57.0344 4856 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys
21:12:57.0344 4856 stexstor - ok
21:12:57.0750 4856 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\DRIVERS\swenum.sys
21:12:57.0766 4856 swenum - ok
21:12:58.0234 4856 SymDS (8b2430762099598da40686f754632efd) C:\Windows\system32\drivers\NISx64\1302000.00A\SYMDS64.SYS
21:12:58.0249 4856 SymDS - ok
21:12:58.0764 4856 SymEFA (d89a88ad71e12f963b1f436a0e91dcbf) C:\Windows\system32\drivers\NISx64\1302000.00A\SYMEFA64.SYS
21:12:58.0795 4856 SymEFA - ok
21:12:59.0248 4856 SymEvent (36b77f5c9e21f88a8c8ec67ad5415819) C:\Windows\system32\Drivers\SYMEVENT64x86.SYS
21:12:59.0248 4856 SymEvent - ok
21:12:59.0747 4856 SymIRON (dd70da422460fded831d211df151d560) C:\Windows\system32\drivers\NISx64\1302000.00A\Ironx64.SYS
21:12:59.0747 4856 SymIRON - ok
21:13:00.0652 4856 SymNetS (bce4eb2eef05e388959b46fd21388c2d) C:\Windows\System32\Drivers\NISx64\1302000.00A\SYMNETS.SYS
21:13:00.0667 4856 SymNetS - ok
21:13:01.0541 4856 SynTP (064a2530a4a7c7cec1be6a1945645be4) C:\Windows\system32\DRIVERS\SynTP.sys
21:13:01.0541 4856 SynTP - ok
21:13:02.0383 4856 Tcpip (f18f56efc0bfb9c87ba01c37b27f4da5) C:\Windows\system32\drivers\tcpip.sys
21:13:02.0430 4856 Tcpip - ok
21:13:02.0992 4856 TCPIP6 (f18f56efc0bfb9c87ba01c37b27f4da5) C:\Windows\system32\DRIVERS\tcpip.sys
21:13:03.0007 4856 TCPIP6 - ok
21:13:03.0553 4856 tcpipreg (76d078af6f587b162d50210f761eb9ed) C:\Windows\system32\drivers\tcpipreg.sys
21:13:03.0553 4856 tcpipreg - ok
21:13:04.0552 4856 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
21:13:04.0552 4856 TDPIPE - ok
21:13:04.0988 4856 TDTCP (e4245bda3190a582d55ed09e137401a9) C:\Windows\system32\drivers\tdtcp.sys
21:13:05.0004 4856 TDTCP - ok
21:13:05.0441 4856 tdx (079125c4b17b01fcaeebce0bcb290c0f) C:\Windows\system32\DRIVERS\tdx.sys
21:13:05.0441 4856 tdx - ok
21:13:05.0893 4856 TermDD (c448651339196c0e869a355171875522) C:\Windows\system32\DRIVERS\termdd.sys
21:13:05.0893 4856 TermDD - ok
21:13:06.0346 4856 tssecsrv (61b96c26131e37b24e93327a0bd1fb95) C:\Windows\system32\DRIVERS\tssecsrv.sys
21:13:06.0346 4856 tssecsrv - ok
21:13:06.0782 4856 tunnel (3836171a2cdf3af8ef10856db9835a70) C:\Windows\system32\DRIVERS\tunnel.sys
21:13:06.0782 4856 tunnel - ok
21:13:07.0235 4856 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys
21:13:07.0235 4856 uagp35 - ok
21:13:07.0656 4856 UBHelper (2e22c1fd397a5a9ffef55e9d1fc96c00) C:\Windows\system32\drivers\UBHelper.sys
21:13:07.0656 4856 UBHelper - ok
21:13:08.0171 4856 udfs (d47baead86c65d4f4069d7ce0a4edceb) C:\Windows\system32\DRIVERS\udfs.sys
21:13:08.0171 4856 udfs - ok
21:13:08.0654 4856 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\DRIVERS\uliagpkx.sys
21:13:08.0654 4856 uliagpkx - ok
21:13:09.0060 4856 umbus (eab6c35e62b1b0db0d1b48b671d3a117) C:\Windows\system32\DRIVERS\umbus.sys
21:13:09.0060 4856 umbus - ok
21:13:09.0528 4856 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys
21:13:09.0528 4856 UmPass - ok
21:13:10.0027 4856 usbccgp (b26afb54a534d634523c4fb66765b026) C:\Windows\system32\DRIVERS\usbccgp.sys
21:13:10.0027 4856 usbccgp - ok
21:13:10.0480 4856 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\DRIVERS\usbcir.sys
21:13:10.0480 4856 usbcir - ok
21:13:10.0963 4856 usbehci (cb490987a7f6928a04bb838e3bd8a936) C:\Windows\system32\DRIVERS\usbehci.sys
21:13:10.0963 4856 usbehci - ok
21:13:11.0509 4856 usbhub (18124ef0a881a00ee222d02a3ee30270) C:\Windows\system32\DRIVERS\usbhub.sys
21:13:11.0509 4856 usbhub - ok
21:13:11.0977 4856 usbohci (58e546bbaf87664fc57e0f6081e4f609) C:\Windows\system32\DRIVERS\usbohci.sys
21:13:11.0977 4856 usbohci - ok
21:13:12.0383 4856 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
21:13:12.0398 4856 usbprint - ok
21:13:12.0804 4856 USBSTOR (080d3820da6c046be82fc8b45a893e83) C:\Windows\system32\DRIVERS\USBSTOR.SYS
21:13:12.0804 4856 USBSTOR - ok
21:13:13.0225 4856 usbuhci (81fb2216d3a60d1284455d511797db3d) C:\Windows\system32\DRIVERS\usbuhci.sys
21:13:13.0225 4856 usbuhci - ok
21:13:13.0678 4856 usbvideo (7cb8c573c6e4a2714402cc0a36eab4fe) C:\Windows\System32\Drivers\usbvideo.sys
21:13:13.0678 4856 usbvideo - ok
21:13:14.0130 4856 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\DRIVERS\vdrvroot.sys
21:13:14.0130 4856 vdrvroot - ok
21:13:14.0567 4856 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
21:13:14.0567 4856 vga - ok
21:13:14.0972 4856 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
21:13:14.0972 4856 VgaSave - ok
21:13:15.0394 4856 vhdmp (c82e748660f62a242b2dfac1442f22a4) C:\Windows\system32\DRIVERS\vhdmp.sys
21:13:15.0394 4856 vhdmp - ok
21:13:15.0799 4856 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\DRIVERS\viaide.sys
21:13:15.0799 4856 viaide - ok
21:13:16.0501 4856 volmgr (2b1a3dae2b4e70dbba822b7a03fbd4a3) C:\Windows\system32\DRIVERS\volmgr.sys
21:13:16.0501 4856 volmgr - ok
21:13:17.0016 4856 volmgrx (99b0cbb569ca79acaed8c91461d765fb) C:\Windows\system32\drivers\volmgrx.sys
21:13:17.0016 4856 volmgrx - ok
21:13:17.0453 4856 volsnap (58f82eed8ca24b461441f9c3e4f0bf5c) C:\Windows\system32\DRIVERS\volsnap.sys
21:13:17.0453 4856 volsnap - ok
21:13:17.0874 4856 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys
21:13:17.0890 4856 vsmraid - ok
21:13:18.0295 4856 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\system32\DRIVERS\vwifibus.sys
21:13:18.0295 4856 vwifibus - ok
21:13:18.0748 4856 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\Windows\system32\DRIVERS\vwififlt.sys
21:13:18.0748 4856 vwififlt - ok
21:13:19.0184 4856 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys
21:13:19.0184 4856 WacomPen - ok
21:13:19.0621 4856 WANARP (47ca49400643effd3f1c9a27e1d69324) C:\Windows\system32\DRIVERS\wanarp.sys
21:13:19.0621 4856 WANARP - ok
21:13:19.0637 4856 Wanarpv6 (47ca49400643effd3f1c9a27e1d69324) C:\Windows\system32\DRIVERS\wanarp.sys
21:13:19.0637 4856 Wanarpv6 - ok
21:13:20.0074 4856 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys
21:13:20.0074 4856 Wd - ok
21:13:20.0495 4856 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
21:13:20.0510 4856 Wdf01000 - ok
21:13:20.0963 4856 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
21:13:20.0978 4856 WfpLwf - ok
21:13:21.0493 4856 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
21:13:21.0493 4856 WIMMount - ok
21:13:22.0008 4856 WinUsb (817eaff5d38674edd7713b9dfb8e9791) C:\Windows\system32\DRIVERS\WinUsb.sys
21:13:22.0008 4856 WinUsb - ok
21:13:22.0460 4856 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\DRIVERS\wmiacpi.sys
21:13:22.0460 4856 WmiAcpi - ok
21:13:22.0944 4856 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
21:13:22.0944 4856 ws2ifsl - ok
21:13:23.0412 4856 WudfPf (7cadc74271dd6461c452c271b30bd378) C:\Windows\system32\drivers\WudfPf.sys
21:13:23.0412 4856 WudfPf - ok
21:13:23.0849 4856 WUDFRd (3b197af0fff08aa66b6b2241ca538d64) C:\Windows\system32\DRIVERS\WUDFRd.sys
21:13:23.0864 4856 WUDFRd - ok
21:13:23.0911 4856 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
21:13:23.0989 4856 \Device\Harddisk0\DR0 - ok
21:13:23.0989 4856 Boot (0x1200) (689663a814dfae3bbb7674be0946b24d) \Device\Harddisk0\DR0\Partition0
21:13:23.0989 4856 \Device\Harddisk0\DR0\Partition0 - ok
21:13:24.0005 4856 Boot (0x1200) (6479d9495850c3b8cc83e3db422d65a6) \Device\Harddisk0\DR0\Partition1
21:13:24.0005 4856 \Device\Harddisk0\DR0\Partition1 - ok
21:13:24.0005 4856 ============================================================
21:13:24.0005 4856 Scan finished
21:13:24.0005 4856 ============================================================
21:13:24.0036 5612 Detected object count: 0
21:13:24.0036 5612 Actual detected object count: 0
21:14:08.0465 3548 Deinitialize success
lumynale
Messages postés
7
Date d'inscription
mercredi 17 juin 2009
Statut
Membre
Dernière intervention
28 janvier 2012
27 janv. 2012 à 07:12
27 janv. 2012 à 07:12
Bonjour,
Le problème n'est pas résolu effectivement.
Comment fait-on pour mettre en résolu? J'ai du le faire par inadvertance. Désoleé.
Ce matin, toujours le même message à l'allumage...
Le problème n'est pas résolu effectivement.
Comment fait-on pour mettre en résolu? J'ai du le faire par inadvertance. Désoleé.
Ce matin, toujours le même message à l'allumage...
lumynale
Messages postés
7
Date d'inscription
mercredi 17 juin 2009
Statut
Membre
Dernière intervention
28 janvier 2012
27 janv. 2012 à 07:13
27 janv. 2012 à 07:13
Ca y est j'ai vu. J'ai donc remis mon problème en non résolu.
Vous n’avez pas trouvé la réponse que vous recherchez ?
Posez votre question
Utilisateur anonyme
27 janv. 2012 à 12:36
27 janv. 2012 à 12:36
telecharge et enregistre ceci sur ton bureau :
Pre_Scan
Avertissement: tous les processus non-vitaux de windows seront coupés --> pas de panique.
une fois telechargé lance-le , laisse faire le scan jusqu'à l'apparition du rapport sur le bureau.
si 'outil est bloqué par l'infection utilise cette version : Version .pif
ou encore cette version renommée : Winlogon.exe
si l'outil detecte un proxy et que tu n'en as pas installé clique sur "supprimer le proxy"
Il se peut qu'une multitude de fenêtres noires clignotent , laisse-le travailler
Poste Pre_Scan_la_date_et_l'heure.txt qui apparaitra sur le bureau en fin de scan après redemarrage
▶▶▶ NE LE POSTE PAS SUR LE FORUM (il est trop long)
heberge le rapport sur http://pjjoint.malekal.com et donne le lien obtenu
Pre_Scan
Avertissement: tous les processus non-vitaux de windows seront coupés --> pas de panique.
une fois telechargé lance-le , laisse faire le scan jusqu'à l'apparition du rapport sur le bureau.
si 'outil est bloqué par l'infection utilise cette version : Version .pif
ou encore cette version renommée : Winlogon.exe
si l'outil detecte un proxy et que tu n'en as pas installé clique sur "supprimer le proxy"
Il se peut qu'une multitude de fenêtres noires clignotent , laisse-le travailler
Poste Pre_Scan_la_date_et_l'heure.txt qui apparaitra sur le bureau en fin de scan après redemarrage
▶▶▶ NE LE POSTE PAS SUR LE FORUM (il est trop long)
heberge le rapport sur http://pjjoint.malekal.com et donne le lien obtenu
lumynale
Messages postés
7
Date d'inscription
mercredi 17 juin 2009
Statut
Membre
Dernière intervention
28 janvier 2012
27 janv. 2012 à 17:31
27 janv. 2012 à 17:31
Voilà c'est fait.
https://pjjoint.malekal.com/files.php?id=20120127_f10v9t7f7l5
Norton trouve encore Boot.Tidserv, mais lorsque je clique sur réanalyser, il n'arrive plus à résoudre le problème.
Merci par avance pour ton aide.
https://pjjoint.malekal.com/files.php?id=20120127_f10v9t7f7l5
Norton trouve encore Boot.Tidserv, mais lorsque je clique sur réanalyser, il n'arrive plus à résoudre le problème.
Merci par avance pour ton aide.
Utilisateur anonyme
Modifié par g3n-h@ckm@n le 27/01/2012 à 18:07
Modifié par g3n-h@ckm@n le 27/01/2012 à 18:07
j'ai trouvé ton rootkit il va mourrir ^^
================
windows pas à jour => à faire
internet explorer pas à jour => à faire
desinstalle adobe reader 9 on mettra le 10
===============
fais glisser une icone n'importe quel fichier sur Pre_scan , pre_script va apparaitre
Lance Pre_script , une page vierge va s'ouvrir.
selectionne tout le texte en gras ci-dessous, puis (clic droit/copier ou ctrl+c) :
___________________________________________________
Kill::
Registry::
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"LManager"=-
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar]
"Locked"=-
command::
%Homedrive%\Kill'em\Mbrwiz.exe /Unhide=3
%Homedrive%\Kill'em\Mbrwiz.exe /Del=3
%Homedrive%\Kill'em\Mbrwiz.exe /List>>%Homedrive%\Pre_script.txt
Mbr::
clean::
Reboot::
___________________________________________________
colle-le ensuite (clic droit/coller ou ctrl+V) dans la page vierge.
puis onglet fichier => enregistrer (pas enregistrer sous...) , puis ferme le texte
des fenetres noires risquent de clignoter , c'est normal , c'est le programme qui travaille
poste Pre_Script.txt qui apparaitra sur le bureau en fin de travail
héberge le rapport
¤¤¤¤¤¤¤¤¤¤_g3n-h@ckm@n_Developpement_¤¤¤¤¤¤¤¤¤¤
¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤_Pre_Scan_¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤
================
windows pas à jour => à faire
internet explorer pas à jour => à faire
desinstalle adobe reader 9 on mettra le 10
===============
fais glisser une icone n'importe quel fichier sur Pre_scan , pre_script va apparaitre
Lance Pre_script , une page vierge va s'ouvrir.
selectionne tout le texte en gras ci-dessous, puis (clic droit/copier ou ctrl+c) :
___________________________________________________
Kill::
Registry::
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"LManager"=-
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar]
"Locked"=-
command::
%Homedrive%\Kill'em\Mbrwiz.exe /Unhide=3
%Homedrive%\Kill'em\Mbrwiz.exe /Del=3
%Homedrive%\Kill'em\Mbrwiz.exe /List>>%Homedrive%\Pre_script.txt
Mbr::
clean::
Reboot::
___________________________________________________
colle-le ensuite (clic droit/coller ou ctrl+V) dans la page vierge.
puis onglet fichier => enregistrer (pas enregistrer sous...) , puis ferme le texte
des fenetres noires risquent de clignoter , c'est normal , c'est le programme qui travaille
poste Pre_Script.txt qui apparaitra sur le bureau en fin de travail
héberge le rapport
¤¤¤¤¤¤¤¤¤¤_g3n-h@ckm@n_Developpement_¤¤¤¤¤¤¤¤¤¤
¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤_Pre_Scan_¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤
lumynale
Messages postés
7
Date d'inscription
mercredi 17 juin 2009
Statut
Membre
Dernière intervention
28 janvier 2012
28 janv. 2012 à 05:45
28 janv. 2012 à 05:45
https://pjjoint.malekal.com/files.php?id=20120128_b14y11x11j15p13
Voici le lien.
A l'allumage Norton l'a détecté, mais réparé lorsque j'ai cliqué sur réanalyser.
Je vais m'occuper des mises à jours. J'espère qu'il ne fallait pas les faire avant...
Tu m'impressionnes par tes connaissances et par le temps que tu me consacres. Merci.
Voici le lien.
A l'allumage Norton l'a détecté, mais réparé lorsque j'ai cliqué sur réanalyser.
Je vais m'occuper des mises à jours. J'espère qu'il ne fallait pas les faire avant...
Tu m'impressionnes par tes connaissances et par le temps que tu me consacres. Merci.
Utilisateur anonyme
28 janv. 2012 à 12:01
28 janv. 2012 à 12:01
oui normalement tu en es debarassé j'ai supprimé la partition de 1Mo que le rootkit avait créé
