Sujet Précédent Sujet Suivant

Doute de virus sur le MBR (virus: TSR.boot)

Fermé
JaviFrancky - 7 mars 2012 à 23:06
 JaviFrancky - 8 mars 2012 à 19:34
Bonjour,





Voila après infection avec le virus Gema.exe, j'ai procédé a de multiples analyses (Malwarebytes, ESET, Roguekiller, Hijackthis).
Ces logiciels m'ont supprimer le ou les virus installés dans les plusieurs dossiers ou ils étaient installés.
Après les analyses et nettoyage, j'ai consulté mon rapport d'Hijackthis et il ne dévoile rien d'anormal.
En faisant une dernière analyse avec ESET, le fichier journal me révèle que le système d'amorçage (secteur 0) comprend apparemment le virus TSR.Boot.

Donc la je me suis mis a refaire a des analyses avec roguekiller et mbr.exe de "Gmer"

Roguekiller me dit que le MBR est ok

tandis que

Mbr.exe me dit:

"device: opened successfully
user: error reading MBR
error: Read Descripteur non valide
kernel: error reading MBR"

Donc je poste cette demande pour vous demander si cela est un faux positif de ESET ou si mon MBR est réellement touché ??
Et si vous pouvez me donner des autres pistes d'analyse ??

En vous remerciant d'avance pour votre attention et votre réponse.
A voir également:

6 réponses

Réponse 1 / 6
Malekal_morte- Messages postés 180304 Date d'inscription mercredi 17 mai 2006 Statut Modérateur, Contributeur sécurité Dernière intervention 15 décembre 2020 24 660
7 mars 2012 à 23:11
Salut,

Pour voir :

Passe un coup de TDSSKiller : https://forum.malekal.com/viewtopic.php?t=28637&start=
Lire ce qui est écrit au niveau des suppressions/réparation (delete et cure), ne pas supprimer n'importe quoi.
Poste le rapport ici.

0
Réponse 2 / 6
Tigzy Messages postés 7498 Date d'inscription lundi 15 février 2010 Statut Contributeur sécurité Dernière intervention 15 septembre 2021 582
8 mars 2012 à 07:48
Salut

Poste quand même le rapport de RogueKiller stp
0
Réponse 3 / 6
JaviFrancky
8 mars 2012 à 18:20
Bonjour,

Excusez moi pour une réponse si tardive, je viens de rentrer du travail:

TdssKiller me détecte quelque chose (infection sptd.sys, Boot (0x0), Kernel driver (0x1)), d'ailleurs je poste le rapport correspondant:

18:09:43.0591 3664 TDSS rootkit removing tool 2.7.19.0 Mar 5 2012 11:23:39
18:09:43.0762 3664 ============================================================
18:09:43.0762 3664 Current date / time: 2012/03/08 18:09:43.0762
18:09:43.0762 3664 SystemInfo:
18:09:43.0762 3664
18:09:43.0762 3664 OS Version: 6.1.7601 ServicePack: 1.0
18:09:43.0762 3664 Product type: Workstation
18:09:43.0762 3664 ComputerName: FRANCK-PC-PORTA
18:09:43.0762 3664 UserName: Franck
18:09:43.0762 3664 Windows directory: C:\Windows
18:09:43.0762 3664 System windows directory: C:\Windows
18:09:43.0762 3664 Running under WOW64
18:09:43.0762 3664 Processor architecture: Intel x64
18:09:43.0762 3664 Number of processors: 2
18:09:43.0762 3664 Page size: 0x1000
18:09:43.0762 3664 Boot type: Normal boot
18:09:43.0762 3664 ============================================================
18:09:44.0854 3664 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
18:09:44.0870 3664 \Device\Harddisk0\DR0:
18:09:44.0901 3664 MBR used
18:09:44.0901 3664 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x1E00800, BlocksNum 0x32000
18:09:44.0901 3664 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1E32800, BlocksNum 0x38553000
18:09:44.0948 3664 Initialize success
18:09:44.0948 3664 ============================================================
18:09:54.0105 0152 ============================================================
18:09:54.0105 0152 Scan started
18:09:54.0105 0152 Mode: Manual;
18:09:54.0105 0152 ============================================================
18:09:54.0823 0152 1394ohci (a87d604aea360176311474c87a63bb88) C:\Windows\system32\drivers\1394ohci.sys
18:09:54.0823 0152 1394ohci - ok
18:09:54.0854 0152 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys
18:09:54.0869 0152 ACPI - ok
18:09:55.0025 0152 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys
18:09:55.0041 0152 AcpiPmi - ok
18:09:55.0415 0152 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
18:09:55.0431 0152 adp94xx - ok
18:09:55.0556 0152 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
18:09:55.0556 0152 adpahci - ok
18:09:55.0649 0152 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
18:09:55.0665 0152 adpu320 - ok
18:09:55.0821 0152 AFD (1c7857b62de5994a75b054a9fd4c3825) C:\Windows\system32\drivers\afd.sys
18:09:55.0821 0152 AFD - ok
18:09:55.0946 0152 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys
18:09:55.0946 0152 agp440 - ok
18:09:56.0071 0152 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys
18:09:56.0071 0152 aliide - ok
18:09:56.0211 0152 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys
18:09:56.0211 0152 amdide - ok
18:09:56.0336 0152 amdiox64 (6a2eeb0c4133b20773bb3dd0b7b377b4) C:\Windows\system32\DRIVERS\amdiox64.sys
18:09:56.0336 0152 amdiox64 - ok
18:09:56.0445 0152 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
18:09:56.0445 0152 AmdK8 - ok
18:09:56.0726 0152 amdkmdag (375ac85e1130eaa1eaeb62ddd22b0efb) C:\Windows\system32\DRIVERS\atikmdag.sys
18:09:56.0804 0152 amdkmdag - ok
18:09:56.0975 0152 amdkmdap (daeb3f2bb2095b95b98be6cec99d02e7) C:\Windows\system32\DRIVERS\atikmpag.sys
18:09:56.0975 0152 amdkmdap - ok
18:09:57.0100 0152 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
18:09:57.0100 0152 AmdPPM - ok
18:09:57.0178 0152 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\Windows\system32\drivers\amdsata.sys
18:09:57.0194 0152 amdsata - ok
18:09:57.0272 0152 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
18:09:57.0272 0152 amdsbs - ok
18:09:57.0568 0152 amdxata (540daf1cea6094886d72126fd7c33048) C:\Windows\system32\drivers\amdxata.sys
18:09:57.0568 0152 amdxata - ok
18:09:57.0709 0152 AppID (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys
18:09:57.0709 0152 AppID - ok
18:09:57.0880 0152 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
18:09:57.0880 0152 arc - ok
18:09:58.0005 0152 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
18:09:58.0005 0152 arcsas - ok
18:09:58.0192 0152 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
18:09:58.0192 0152 AsyncMac - ok
18:09:58.0239 0152 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys
18:09:58.0255 0152 atapi - ok
18:09:58.0411 0152 athr (e642491f64e58cd5bc8fb8b347dcf65f) C:\Windows\system32\DRIVERS\athrx.sys
18:09:58.0457 0152 athr - ok
18:09:58.0582 0152 AtiHDAudioService (e02b26650acc2f4901342d4a66774ad7) C:\Windows\system32\drivers\AtihdW76.sys
18:09:58.0598 0152 AtiHDAudioService - ok
18:09:58.0754 0152 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys
18:09:58.0754 0152 b06bdrv - ok
18:09:58.0894 0152 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
18:09:58.0894 0152 b57nd60a - ok
18:09:59.0097 0152 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
18:09:59.0097 0152 Beep - ok
18:09:59.0222 0152 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
18:09:59.0237 0152 blbdrive - ok
18:09:59.0362 0152 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys
18:09:59.0362 0152 bowser - ok
18:09:59.0503 0152 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys
18:09:59.0518 0152 BrFiltLo - ok
18:09:59.0581 0152 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys
18:09:59.0596 0152 BrFiltUp - ok
18:09:59.0643 0152 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
18:09:59.0643 0152 Brserid - ok
18:09:59.0737 0152 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
18:09:59.0737 0152 BrSerWdm - ok
18:09:59.0768 0152 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
18:09:59.0768 0152 BrUsbMdm - ok
18:09:59.0815 0152 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
18:09:59.0815 0152 BrUsbSer - ok
18:09:59.0908 0152 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
18:09:59.0908 0152 BTHMODEM - ok
18:09:59.0955 0152 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
18:09:59.0971 0152 cdfs - ok
18:10:00.0064 0152 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\drivers\cdrom.sys
18:10:00.0064 0152 cdrom - ok
18:10:00.0189 0152 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys
18:10:00.0189 0152 circlass - ok
18:10:00.0298 0152 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
18:10:00.0298 0152 CLFS - ok
18:10:00.0454 0152 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
18:10:00.0454 0152 CmBatt - ok
18:10:00.0532 0152 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys
18:10:00.0548 0152 cmdide - ok
18:10:00.0673 0152 CNG (c4943b6c962e4b82197542447ad599f4) C:\Windows\system32\Drivers\cng.sys
18:10:00.0673 0152 CNG - ok
18:10:00.0844 0152 CnxtHdAudService (78ac76700d37a98b5badb19d57301bd6) C:\Windows\system32\drivers\CHDRT64.sys
18:10:00.0875 0152 CnxtHdAudService - ok
18:10:01.0000 0152 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
18:10:01.0000 0152 Compbatt - ok
18:10:01.0063 0152 CompositeBus (03edb043586cceba243d689bdda370a8) C:\Windows\system32\drivers\CompositeBus.sys
18:10:01.0063 0152 CompositeBus - ok
18:10:01.0187 0152 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys
18:10:01.0187 0152 crcdisk - ok
18:10:01.0343 0152 CSC (54da3dfd29ed9f1619b6f53f3ce55e49) C:\Windows\system32\drivers\csc.sys
18:10:01.0359 0152 CSC - ok
18:10:01.0484 0152 DAdderFltr (5bc67f1efb6b1d039b151cf7353ec742) C:\Windows\system32\drivers\dadder.sys
18:10:01.0484 0152 DAdderFltr - ok
18:10:01.0624 0152 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys
18:10:01.0640 0152 DfsC - ok
18:10:01.0765 0152 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
18:10:01.0765 0152 discache - ok
18:10:01.0889 0152 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys
18:10:01.0889 0152 Disk - ok
18:10:02.0014 0152 driverhardwarev2x64 (b28c853770c995552b9f5760d8245f44) C:\Program Files\ma-config.com\Drivers\driverhardwarev2x64.sys
18:10:02.0014 0152 driverhardwarev2x64 - ok
18:10:02.0109 0152 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
18:10:02.0124 0152 drmkaud - ok
18:10:02.0265 0152 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys
18:10:02.0296 0152 DXGKrnl - ok
18:10:02.0436 0152 eamonm (13533557d01b88c83110d5cf749f14d7) C:\Windows\system32\DRIVERS\eamonm.sys
18:10:02.0436 0152 eamonm - ok
18:10:02.0670 0152 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys
18:10:02.0702 0152 ebdrv - ok
18:10:02.0811 0152 ehdrv (e097728129e7b79bf1089d7aef42332b) C:\Windows\system32\DRIVERS\ehdrv.sys
18:10:02.0826 0152 ehdrv - ok
18:10:02.0998 0152 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys
18:10:03.0014 0152 elxstor - ok
18:10:03.0186 0152 epfw (198c6fbc30bbd9632ea051203dccf204) C:\Windows\system32\DRIVERS\epfw.sys
18:10:03.0186 0152 epfw - ok
18:10:03.0327 0152 EpfwLWF (56de463f517710a8aa44eef82c35b3c9) C:\Windows\system32\DRIVERS\EpfwLWF.sys
18:10:03.0327 0152 EpfwLWF - ok
18:10:03.0373 0152 epfwwfp (710b0442bb2f99278d7b8e02a8849c11) C:\Windows\system32\DRIVERS\epfwwfp.sys
18:10:03.0373 0152 epfwwfp - ok
18:10:03.0483 0152 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys
18:10:03.0483 0152 ErrDev - ok
18:10:03.0607 0152 ETD (9d8739a2a2173c9d27c499a3fc6eda3f) C:\Windows\system32\DRIVERS\ETD.sys
18:10:03.0623 0152 ETD - ok
18:10:03.0748 0152 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
18:10:03.0748 0152 exfat - ok
18:10:03.0795 0152 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
18:10:03.0795 0152 fastfat - ok
18:10:03.0904 0152 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
18:10:03.0904 0152 fdc - ok
18:10:04.0029 0152 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
18:10:04.0029 0152 FileInfo - ok
18:10:04.0060 0152 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
18:10:04.0060 0152 Filetrace - ok
18:10:04.0169 0152 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys
18:10:04.0169 0152 flpydisk - ok
18:10:04.0247 0152 FltMgr (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys
18:10:04.0247 0152 FltMgr - ok
18:10:04.0356 0152 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
18:10:04.0372 0152 FsDepends - ok
18:10:04.0497 0152 fssfltr (dc0dce4ec2c5d2cf6472f9fd6aa9a7dc) C:\Windows\system32\DRIVERS\fssfltr.sys
18:10:04.0497 0152 fssfltr - ok
18:10:04.0543 0152 Fs_Rec (e95ef8547de20cf0603557c0cf7a9462) C:\Windows\system32\drivers\Fs_Rec.sys
18:10:04.0543 0152 Fs_Rec - ok
18:10:04.0668 0152 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys
18:10:04.0668 0152 fvevol - ok
18:10:04.0793 0152 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys
18:10:04.0793 0152 gagp30kx - ok
18:10:04.0933 0152 GEARAspiWDM (e403aacf8c7bb11375122d2464560311) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
18:10:04.0933 0152 GEARAspiWDM - ok
18:10:05.0199 0152 hcmon (5bf776abedea06b0779c82e9d54b58d7) C:\Windows\system32\drivers\hcmon.sys
18:10:05.0199 0152 hcmon - ok
18:10:05.0230 0152 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
18:10:05.0245 0152 hcw85cir - ok
18:10:05.0370 0152 HdAudAddService (975761c778e33cd22498059b91e7373a) C:\Windows\system32\drivers\HdAudio.sys
18:10:05.0370 0152 HdAudAddService - ok
18:10:05.0511 0152 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\drivers\HDAudBus.sys
18:10:05.0511 0152 HDAudBus - ok
18:10:05.0542 0152 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys
18:10:05.0557 0152 HidBatt - ok
18:10:05.0635 0152 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys
18:10:05.0635 0152 HidBth - ok
18:10:05.0651 0152 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys
18:10:05.0667 0152 HidIr - ok
18:10:05.0807 0152 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\DRIVERS\hidusb.sys
18:10:05.0807 0152 HidUsb - ok
18:10:05.0963 0152 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys
18:10:05.0963 0152 HpSAMD - ok
18:10:06.0072 0152 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys
18:10:06.0088 0152 HTTP - ok
18:10:06.0150 0152 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys
18:10:06.0150 0152 hwpolicy - ok
18:10:06.0259 0152 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\drivers\i8042prt.sys
18:10:06.0259 0152 i8042prt - ok
18:10:06.0369 0152 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\Windows\system32\drivers\iaStorV.sys
18:10:06.0369 0152 iaStorV - ok
18:10:06.0509 0152 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys
18:10:06.0525 0152 iirsp - ok
18:10:06.0587 0152 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys
18:10:06.0587 0152 intelide - ok
18:10:06.0712 0152 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
18:10:06.0727 0152 intelppm - ok
18:10:06.0774 0152 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys
18:10:06.0774 0152 IpFilterDriver - ok
18:10:06.0899 0152 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys
18:10:06.0915 0152 IPMIDRV - ok
18:10:07.0024 0152 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
18:10:07.0024 0152 IPNAT - ok
18:10:07.0164 0152 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
18:10:07.0164 0152 IRENUM - ok
18:10:07.0211 0152 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys
18:10:07.0227 0152 isapnp - ok
18:10:07.0336 0152 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys
18:10:07.0351 0152 iScsiPrt - ok
18:10:07.0461 0152 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\drivers\kbdclass.sys
18:10:07.0461 0152 kbdclass - ok
18:10:07.0539 0152 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\drivers\kbdhid.sys
18:10:07.0539 0152 kbdhid - ok
18:10:07.0648 0152 KSecDD (da1e991a61cfdd755a589e206b97644b) C:\Windows\system32\Drivers\ksecdd.sys
18:10:07.0648 0152 KSecDD - ok
18:10:07.0679 0152 KSecPkg (7e33198d956943a4f11a5474c1e9106f) C:\Windows\system32\Drivers\ksecpkg.sys
18:10:07.0695 0152 KSecPkg - ok
18:10:07.0804 0152 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
18:10:07.0804 0152 ksthunk - ok
18:10:07.0913 0152 L1C (0e154da6ca9105354a07d0c576804037) C:\Windows\system32\DRIVERS\L1C62x64.sys
18:10:07.0929 0152 L1C - ok
18:10:08.0069 0152 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
18:10:08.0069 0152 lltdio - ok
18:10:08.0194 0152 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys
18:10:08.0209 0152 LSI_FC - ok
18:10:08.0225 0152 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys
18:10:08.0225 0152 LSI_SAS - ok
18:10:08.0256 0152 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys
18:10:08.0256 0152 LSI_SAS2 - ok
18:10:08.0365 0152 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys
18:10:08.0381 0152 LSI_SCSI - ok
18:10:08.0412 0152 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
18:10:08.0428 0152 luafv - ok
18:10:08.0537 0152 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys
18:10:08.0537 0152 megasas - ok
18:10:08.0599 0152 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys
18:10:08.0615 0152 MegaSR - ok
18:10:08.0693 0152 MHIKEY10 (ba7e071e855d4c502916164a31b05d4d) C:\Windows\system32\Drivers\MHIKEY10x64.sys
18:10:08.0693 0152 MHIKEY10 - ok
18:10:08.0787 0152 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
18:10:08.0787 0152 Modem - ok
18:10:08.0880 0152 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
18:10:08.0880 0152 monitor - ok
18:10:08.0989 0152 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
18:10:09.0005 0152 mouclass - ok
18:10:09.0083 0152 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
18:10:09.0083 0152 mouhid - ok
18:10:09.0161 0152 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys
18:10:09.0161 0152 mountmgr - ok
18:10:09.0255 0152 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys
18:10:09.0255 0152 mpio - ok
18:10:09.0364 0152 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
18:10:09.0364 0152 mpsdrv - ok
18:10:09.0442 0152 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys
18:10:09.0442 0152 MRxDAV - ok
18:10:09.0551 0152 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys
18:10:09.0551 0152 mrxsmb - ok
18:10:09.0598 0152 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\Windows\system32\DRIVERS\mrxsmb10.sys
18:10:09.0598 0152 mrxsmb10 - ok
18:10:09.0707 0152 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
18:10:09.0707 0152 mrxsmb20 - ok
18:10:09.0769 0152 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys
18:10:09.0769 0152 msahci - ok
18:10:09.0925 0152 msdsm (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys
18:10:09.0925 0152 msdsm - ok
18:10:09.0988 0152 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
18:10:09.0988 0152 Msfs - ok
18:10:10.0066 0152 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
18:10:10.0066 0152 mshidkmdf - ok
18:10:10.0113 0152 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys
18:10:10.0113 0152 msisadrv - ok
18:10:10.0237 0152 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
18:10:10.0237 0152 MSKSSRV - ok
18:10:10.0284 0152 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
18:10:10.0284 0152 MSPCLOCK - ok
18:10:10.0378 0152 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
18:10:10.0378 0152 MSPQM - ok
18:10:10.0456 0152 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys
18:10:10.0471 0152 MsRPC - ok
18:10:10.0581 0152 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\drivers\mssmbios.sys
18:10:10.0581 0152 mssmbios - ok
18:10:10.0705 0152 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
18:10:10.0705 0152 MSTEE - ok
18:10:10.0721 0152 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys
18:10:10.0721 0152 MTConfig - ok
18:10:10.0768 0152 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
18:10:10.0768 0152 Mup - ok
18:10:10.0815 0152 mwlPSDFilter (9b1eac6faf6f37305e822f5588dc8056) C:\Windows\system32\DRIVERS\mwlPSDFilter.sys
18:10:10.0815 0152 mwlPSDFilter - ok
18:10:10.0908 0152 mwlPSDNServ (ad55c1524b296280ed9c6e0d730d35da) C:\Windows\system32\DRIVERS\mwlPSDNServ.sys
18:10:10.0908 0152 mwlPSDNServ - ok
18:10:10.0955 0152 mwlPSDVDisk (2b599e6ec8843637bdd62e7f8f3ba201) C:\Windows\system32\DRIVERS\mwlPSDVDisk.sys
18:10:10.0955 0152 mwlPSDVDisk - ok
18:10:11.0095 0152 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
18:10:11.0095 0152 NativeWifiP - ok
18:10:11.0298 0152 NDIS (79b47fd40d9a817e932f9d26fac0a81c) C:\Windows\system32\drivers\ndis.sys
18:10:11.0314 0152 NDIS - ok
18:10:11.0407 0152 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
18:10:11.0407 0152 NdisCap - ok
18:10:11.0439 0152 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
18:10:11.0439 0152 NdisTapi - ok
18:10:11.0548 0152 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys
18:10:11.0548 0152 Ndisuio - ok
18:10:11.0610 0152 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys
18:10:11.0610 0152 NdisWan - ok
18:10:11.0735 0152 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys
18:10:11.0735 0152 NDProxy - ok
18:10:11.0844 0152 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
18:10:11.0844 0152 NetBIOS - ok
18:10:11.0907 0152 NetBT (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys
18:10:11.0907 0152 NetBT - ok
18:10:12.0078 0152 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys
18:10:12.0078 0152 nfrd960 - ok
18:10:12.0141 0152 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
18:10:12.0141 0152 Npfs - ok
18:10:12.0234 0152 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
18:10:12.0234 0152 nsiproxy - ok
18:10:12.0312 0152 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\Windows\system32\drivers\Ntfs.sys
18:10:12.0343 0152 Ntfs - ok
18:10:12.0437 0152 NTIDrvr (ee3ba1024594d5d09e314f206b94069e) C:\Windows\system32\drivers\NTIDrvr.sys
18:10:12.0437 0152 NTIDrvr - ok
18:10:12.0468 0152 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
18:10:12.0468 0152 Null - ok
18:10:12.0577 0152 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\Windows\system32\drivers\nvraid.sys
18:10:12.0593 0152 nvraid - ok
18:10:12.0702 0152 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\Windows\system32\drivers\nvstor.sys
18:10:12.0718 0152 nvstor - ok
18:10:12.0843 0152 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys
18:10:12.0843 0152 nv_agp - ok
18:10:12.0874 0152 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys
18:10:12.0889 0152 ohci1394 - ok
18:10:12.0999 0152 OlyCamComm (fe8278bcf145404976d866d9a46e6bd8) C:\Windows\system32\DRIVERS\OlyCamComm.sys
18:10:13.0014 0152 OlyCamComm - ok
18:10:13.0201 0152 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys
18:10:13.0217 0152 Parport - ok
18:10:13.0264 0152 partmgr (871eadac56b0a4c6512bbe32753ccf79) C:\Windows\system32\drivers\partmgr.sys
18:10:13.0279 0152 partmgr - ok
18:10:13.0404 0152 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys
18:10:13.0404 0152 pci - ok
18:10:13.0435 0152 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys
18:10:13.0435 0152 pciide - ok
18:10:13.0529 0152 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys
18:10:13.0529 0152 pcmcia - ok
18:10:13.0560 0152 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
18:10:13.0560 0152 pcw - ok
18:10:13.0669 0152 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
18:10:13.0685 0152 PEAUTH - ok
18:10:13.0966 0152 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys
18:10:13.0966 0152 PptpMiniport - ok
18:10:14.0059 0152 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys
18:10:14.0059 0152 Processor - ok
18:10:14.0215 0152 Psched (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys
18:10:14.0215 0152 Psched - ok
18:10:14.0356 0152 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys
18:10:14.0371 0152 ql2300 - ok
18:10:14.0481 0152 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys
18:10:14.0481 0152 ql40xx - ok
18:10:14.0527 0152 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
18:10:14.0527 0152 QWAVEdrv - ok
18:10:14.0605 0152 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
18:10:14.0621 0152 RasAcd - ok
18:10:14.0715 0152 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
18:10:14.0715 0152 RasAgileVpn - ok
18:10:14.0793 0152 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys
18:10:14.0793 0152 Rasl2tp - ok
18:10:14.0980 0152 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
18:10:14.0980 0152 RasPppoe - ok
18:10:15.0073 0152 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
18:10:15.0073 0152 RasSstp - ok
18:10:15.0183 0152 rdbss (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys
18:10:15.0198 0152 rdbss - ok
18:10:15.0245 0152 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
18:10:15.0245 0152 rdpbus - ok
18:10:15.0339 0152 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
18:10:15.0339 0152 RDPCDD - ok
18:10:15.0448 0152 RDPDR (1b6163c503398b23ff8b939c67747683) C:\Windows\system32\drivers\rdpdr.sys
18:10:15.0463 0152 RDPDR - ok
18:10:15.0495 0152 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
18:10:15.0510 0152 RDPENCDD - ok
18:10:15.0588 0152 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
18:10:15.0604 0152 RDPREFMP - ok
18:10:15.0666 0152 RdpVideoMiniport (70cba1a0c98600a2aa1863479b35cb90) C:\Windows\system32\drivers\rdpvideominiport.sys
18:10:15.0666 0152 RdpVideoMiniport - ok
18:10:15.0775 0152 RDPWD (15b66c206b5cb095bab980553f38ed23) C:\Windows\system32\drivers\RDPWD.sys
18:10:15.0775 0152 RDPWD - ok
18:10:15.0853 0152 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys
18:10:15.0869 0152 rdyboost - ok
18:10:16.0072 0152 RsFx0105 (c9fe05a63c500abe3afa5786504c4d36) C:\Windows\system32\DRIVERS\RsFx0105.sys
18:10:16.0072 0152 RsFx0105 - ok
18:10:16.0181 0152 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
18:10:16.0181 0152 rspndr - ok
18:10:16.0290 0152 RSUSBSTOR (763ae0c6d9df4c24b7e2c26036a8188a) C:\Windows\System32\Drivers\RtsUStor.sys
18:10:16.0306 0152 RSUSBSTOR - ok
18:10:16.0384 0152 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys
18:10:16.0384 0152 sbp2port - ok
18:10:16.0524 0152 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys
18:10:16.0524 0152 scfilter - ok
18:10:16.0680 0152 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
18:10:16.0680 0152 secdrv - ok
18:10:16.0743 0152 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
18:10:16.0743 0152 Serenum - ok
18:10:16.0852 0152 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
18:10:16.0852 0152 Serial - ok
18:10:16.0992 0152 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys
18:10:16.0992 0152 sermouse - ok
18:10:17.0148 0152 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys
18:10:17.0148 0152 sffdisk - ok
18:10:17.0257 0152 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys
18:10:17.0257 0152 sffp_mmc - ok
18:10:17.0273 0152 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\drivers\sffp_sd.sys
18:10:17.0273 0152 sffp_sd - ok
18:10:17.0367 0152 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys
18:10:17.0367 0152 sfloppy - ok
18:10:17.0491 0152 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys
18:10:17.0491 0152 SiSRaid2 - ok
18:10:17.0523 0152 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys
18:10:17.0523 0152 SiSRaid4 - ok
18:10:17.0632 0152 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
18:10:17.0632 0152 Smb - ok
18:10:17.0772 0152 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
18:10:17.0772 0152 spldr - ok
18:10:17.0928 0152 sptd (d519ad2de7968cd2b47fea807c5b29b2) C:\Windows\System32\Drivers\sptd.sys
18:10:17.0928 0152 Suspicious file (NoAccess): C:\Windows\System32\Drivers\sptd.sys. md5: d519ad2de7968cd2b47fea807c5b29b2
18:10:17.0928 0152 sptd ( LockedFile.Multi.Generic ) - warning
18:10:17.0928 0152 sptd - detected LockedFile.Multi.Generic (1)
18:10:18.0069 0152 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\Windows\system32\DRIVERS\srv.sys
18:10:18.0084 0152 srv - ok
18:10:18.0225 0152 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\Windows\system32\DRIVERS\srv2.sys
18:10:18.0240 0152 srv2 - ok
18:10:18.0334 0152 srvnet (27e461f0be5bff5fc737328f749538c3) C:\Windows\system32\DRIVERS\srvnet.sys
18:10:18.0334 0152 srvnet - ok
18:10:18.0412 0152 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys
18:10:18.0412 0152 stexstor - ok
18:10:18.0505 0152 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\drivers\swenum.sys
18:10:18.0505 0152 swenum - ok
18:10:18.0568 0152 Synth3dVsc - ok
18:10:18.0708 0152 Tcpip (fc62769e7bff2896035aeed399108162) C:\Windows\system32\drivers\tcpip.sys
18:10:18.0739 0152 Tcpip - ok
18:10:18.0911 0152 TCPIP6 (fc62769e7bff2896035aeed399108162) C:\Windows\system32\DRIVERS\tcpip.sys
18:10:18.0942 0152 TCPIP6 - ok
18:10:19.0051 0152 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys
18:10:19.0051 0152 tcpipreg - ok
18:10:19.0161 0152 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
18:10:19.0161 0152 TDPIPE - ok
18:10:19.0207 0152 TDTCP (e4245bda3190a582d55ed09e137401a9) C:\Windows\system32\drivers\tdtcp.sys
18:10:19.0207 0152 TDTCP - ok
18:10:19.0317 0152 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys
18:10:19.0317 0152 tdx - ok
18:10:19.0363 0152 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\drivers\termdd.sys
18:10:19.0379 0152 TermDD - ok
18:10:19.0551 0152 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys
18:10:19.0551 0152 tssecsrv - ok
18:10:19.0691 0152 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys
18:10:19.0691 0152 TsUsbFlt - ok
18:10:19.0707 0152 tsusbhub - ok
18:10:19.0847 0152 tunnel (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys
18:10:19.0847 0152 tunnel - ok
18:10:19.0894 0152 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys
18:10:19.0894 0152 uagp35 - ok
18:10:19.0987 0152 UBHelper (a17d5e1a6df4eab0a480f2c490de4c9d) C:\Windows\system32\drivers\UBHelper.sys
18:10:19.0987 0152 UBHelper - ok
18:10:20.0050 0152 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys
18:10:20.0065 0152 udfs - ok
18:10:20.0206 0152 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys
18:10:20.0206 0152 uliagpkx - ok
18:10:20.0362 0152 umbus (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\drivers\umbus.sys
18:10:20.0362 0152 umbus - ok
18:10:20.0471 0152 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys
18:10:20.0471 0152 UmPass - ok
18:10:20.0565 0152 UnlockerDriver5 (9dc07e73a4abb9acf692113b36a5009f) C:\Program Files\Unlocker\UnlockerDriver5.sys
18:10:20.0565 0152 UnlockerDriver5 - ok
18:10:20.0674 0152 USBAAPL64 (aa33fc47ed58c34e6e9261e4f850b7eb) C:\Windows\system32\Drivers\usbaapl64.sys
18:10:20.0689 0152 USBAAPL64 - ok
18:10:20.0721 0152 usbccgp (6f1a3157a1c89435352ceb543cdb359c) C:\Windows\system32\DRIVERS\usbccgp.sys
18:10:20.0736 0152 usbccgp - ok
18:10:20.0845 0152 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys
18:10:20.0845 0152 usbcir - ok
18:10:20.0908 0152 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\Windows\system32\DRIVERS\usbehci.sys
18:10:20.0908 0152 usbehci - ok
18:10:21.0048 0152 usbfilter (dc2b306861f42eeeb92ef525f4119f08) C:\Windows\system32\DRIVERS\usbfilter.sys
18:10:21.0048 0152 usbfilter - ok
18:10:21.0111 0152 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\Windows\system32\DRIVERS\usbhub.sys
18:10:21.0126 0152 usbhub - ok
18:10:21.0220 0152 usbohci (9840fc418b4cbd632d3d0a667a725c31) C:\Windows\system32\DRIVERS\usbohci.sys
18:10:21.0220 0152 usbohci - ok
18:10:21.0282 0152 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
18:10:21.0282 0152 usbprint - ok
18:10:21.0391 0152 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\Windows\system32\DRIVERS\USBSTOR.SYS
18:10:21.0391 0152 USBSTOR - ok
18:10:21.0438 0152 usbuhci (81fb2216d3a60d1284455d511797db3d) C:\Windows\system32\DRIVERS\usbuhci.sys
18:10:21.0438 0152 usbuhci - ok
18:10:21.0563 0152 usbvideo (454800c2bc7f3927ce030141ee4f4c50) C:\Windows\System32\Drivers\usbvideo.sys
18:10:21.0579 0152 usbvideo - ok
18:10:21.0703 0152 VBoxNetAdp (b3fc2d5f35e05e12c28f786c140d1cbd) C:\Windows\system32\DRIVERS\VBoxNetAdp.sys
18:10:21.0703 0152 VBoxNetAdp - ok
18:10:21.0781 0152 VBoxNetFlt - ok
18:10:21.0859 0152 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys
18:10:21.0859 0152 vdrvroot - ok
18:10:21.0953 0152 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
18:10:21.0953 0152 vga - ok
18:10:22.0000 0152 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
18:10:22.0000 0152 VgaSave - ok
18:10:22.0078 0152 VGPU - ok
18:10:22.0156 0152 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys
18:10:22.0156 0152 vhdmp - ok
18:10:22.0187 0152 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys
18:10:22.0187 0152 viaide - ok
18:10:22.0343 0152 vmci (87fc1dd880e8cac4faebb84af61a87c4) C:\Windows\system32\DRIVERS\vmci.sys
18:10:22.0343 0152 vmci - ok
18:10:22.0468 0152 VMnetAdapter (b259c31378bc855afd1b53f59311c251) C:\Windows\system32\DRIVERS\vmnetadapter.sys
18:10:22.0468 0152 VMnetAdapter - ok
18:10:22.0624 0152 VMnetBridge (dec4ce720ffeda939cf1ba315cfbd993) C:\Windows\system32\DRIVERS\vmnetbridge.sys
18:10:22.0624 0152 VMnetBridge - ok
18:10:22.0780 0152 VMnetuserif (227982e986c02b710630d7fc570caa77) C:\Windows\system32\drivers\vmnetuserif.sys
18:10:22.0780 0152 VMnetuserif - ok
18:10:22.0983 0152 vmx86 (86aa5eae57e2eaef3b6f5c16b27e0ec4) C:\Windows\system32\drivers\vmx86.sys
18:10:22.0998 0152 vmx86 - ok
18:10:23.0045 0152 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys
18:10:23.0061 0152 volmgr - ok
18:10:23.0185 0152 volmgrx (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys
18:10:23.0185 0152 volmgrx - ok
18:10:23.0248 0152 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys
18:10:23.0248 0152 volsnap - ok
18:10:23.0388 0152 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys
18:10:23.0388 0152 vsmraid - ok
18:10:23.0435 0152 vstor2-mntapi10-shared - ok
18:10:23.0529 0152 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\system32\DRIVERS\vwifibus.sys
18:10:23.0529 0152 vwifibus - ok
18:10:23.0544 0152 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\Windows\system32\DRIVERS\vwififlt.sys
18:10:23.0560 0152 vwififlt - ok
18:10:23.0669 0152 vwifimp (6a638fc4bfddc4d9b186c28c91bd1a01) C:\Windows\system32\DRIVERS\vwifimp.sys
18:10:23.0669 0152 vwifimp - ok
18:10:23.0794 0152 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys
18:10:23.0794 0152 WacomPen - ok
18:10:23.0934 0152 WANARP (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
18:10:23.0934 0152 WANARP - ok
18:10:23.0965 0152 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
18:10:23.0965 0152 Wanarpv6 - ok
18:10:24.0121 0152 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys
18:10:24.0121 0152 Wd - ok
18:10:24.0168 0152 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
18:10:24.0184 0152 Wdf01000 - ok
18:10:24.0355 0152 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
18:10:24.0355 0152 WfpLwf - ok
18:10:24.0387 0152 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
18:10:24.0402 0152 WIMMount - ok
18:10:24.0589 0152 WinUsb (fe88b288356e7b47b74b13372add906d) C:\Windows\system32\DRIVERS\WinUsb.sys
18:10:24.0605 0152 WinUsb - ok
18:10:24.0761 0152 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\drivers\wmiacpi.sys
18:10:24.0761 0152 WmiAcpi - ok
18:10:24.0839 0152 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
18:10:24.0839 0152 ws2ifsl - ok
18:10:25.0011 0152 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys
18:10:25.0011 0152 WudfPf - ok
18:10:25.0182 0152 WUDFRd (cf8d590be3373029d57af80914190682) C:\Windows\system32\DRIVERS\WUDFRd.sys
18:10:25.0182 0152 WUDFRd - ok
18:10:25.0276 0152 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
18:10:25.0354 0152 \Device\Harddisk0\DR0 - ok
18:10:25.0369 0152 Boot (0x1200) (1a70e10555bdeb7b40eecccb637bc29b) \Device\Harddisk0\DR0\Partition0
18:10:25.0369 0152 \Device\Harddisk0\DR0\Partition0 - ok
18:10:25.0401 0152 Boot (0x1200) (4076856bac4405a368cf1f0b599e229d) \Device\Harddisk0\DR0\Partition1
18:10:25.0401 0152 \Device\Harddisk0\DR0\Partition1 - ok
18:10:25.0401 0152 ============================================================
18:10:25.0401 0152 Scan finished
18:10:25.0401 0152 ============================================================
18:10:25.0447 4200 Detected object count: 1
18:10:25.0447 4200 Actual detected object count: 1
18:10:31.0173 4200 sptd ( LockedFile.Multi.Generic ) - skipped by user
18:10:31.0173 4200 sptd ( LockedFile.Multi.Generic ) - User select action: Skip

En espérant que sa puisse vous aider.
0
Réponse 4 / 6
JaviFrancky
8 mars 2012 à 18:21
Et voici le rapport de RogueKiller demandé par Tigzy.


RogueKiller V7.2.1 [29/02/2012] par Tigzy
mail: tigzyRK<at>gmail<dot>com
Remontees: http://www.sur-la-toile.com/discussion-193725-1-BRogueKillerD-Remontees.html
Blog: http://tigzyrk.blogspot.com

Systeme d'exploitation: Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Demarrage : Mode normal
Utilisateur: Franck [Droits d'admin]
Mode: Recherche -- Date: 08/03/2012 18:13:16

¤¤¤ Processus malicieux: 0 ¤¤¤

¤¤¤ Entrees de registre: 4 ¤¤¤
[HJ] HKLM\[...]\System : ConsentPromptBehaviorAdmin (0) -> FOUND
[HJ] HKLM\[...]\System : EnableLUA (0) -> FOUND
[HJ] HKCU\[...]\ClassicStartMenu : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> FOUND
[HJ] HKCU\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> FOUND

¤¤¤ Fichiers / Dossiers particuliers: ¤¤¤

¤¤¤ Driver: [NON CHARGE] ¤¤¤

¤¤¤ Infection : ¤¤¤

¤¤¤ Fichier HOSTS: ¤¤¤
127.0.0.1 localhost
127.0.0.1 activate.adobe.com
127.0.0.1 practivate.adobe.com
127.0.0.1 ereg.adobe.com
127.0.0.1 activate.wip3.adobe.com
127.0.0.1 wip3.adobe.com
127.0.0.1 3dns-3.adobe.com
127.0.0.1 3dns-2.adobe.com
127.0.0.1 adobe-dns.adobe.com
127.0.0.1 adobe-dns-2.adobe.com
127.0.0.1 adobe-dns-3.adobe.com
127.0.0.1 ereg.wip3.adobe.com
127.0.0.1 activate-sea.adobe.com
127.0.0.1 wwis-dubc1-vip60.adobe.com
127.0.0.1 activate-sjc0.adobe.com


¤¤¤ MBR Verif: ¤¤¤

+++++ PhysicalDrive0: Hitachi HTS545050B9A300 ATA Device +++++
--- User ---
[MBR] 64babe5a7a1b1b59cfe480a2d0f8cc21
[BSP] f573afa136249be90bb22eaf8bfdced7 : Windows 7 MBR Code
Partition table:
0 - [XXXXXX] ACER (0x27) [VISIBLE] Offset (sectors): 2048 | Size: 15360 Mo
1 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 31459328 | Size: 100 Mo
2 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 31664128 | Size: 461478 Mo
User = LL1 ... OK!
User = LL2 ... OK!

Termine : << RKreport[1].txt >>
RKreport[1].txt

En espérant que sa puisse vous aider.
0
Tigzy Messages postés 7498 Date d'inscription lundi 15 février 2010 Statut Contributeur sécurité Dernière intervention 15 septembre 2021 582
8 mars 2012 à 18:58
ok, donc ya rien :)
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 5 / 6
JaviFrancky
8 mars 2012 à 19:08
C'est bizarre car d'un logiciel a un autre le résultat est différent (la preuve avec RogueKiller et TdssKiller).

Excusez moi de mon entêtement.
0
Tigzy Messages postés 7498 Date d'inscription lundi 15 février 2010 Statut Contributeur sécurité Dernière intervention 15 septembre 2021 582
8 mars 2012 à 19:13
Bé non les 2 disent la même chose : RAS
0
Réponse 6 / 6
JaviFrancky
8 mars 2012 à 19:34
Autant pour moi ce fichier appartient a Daemon tools.

Pour ma part je pense que le problème est résolu.

En tout cas je vous remercie de votre aide.
0

Discussions similaires

Est ce que le site tlauncher est dangereux ?
caribou -
bazfile -

1 réponse
Softonic,est-ce un virus ?
techmel1 -
techmel1 -

6 réponses
4 virus en raison d’un porno ????
valou -
Bello040420 -

9 réponses
problême Opéra est ce un virus??
sand2504 -
sand2504 -

85 réponses
Virus MSN Tinyurl
djkifkif -
matt56430 -

8 réponses