Jack ( l'éventré)

Alors il n'y a rien du tout ?

Malwarebytes' Anti-Malware 1.46 www.malwarebytes.org Version de la base de données: 6397 Windows 6.1.7600 Internet Explorer 8.0.7600.16385 19/04/2011 15:14:55 mbam-log-2011-04-19 (15-14-55).txt Type d'examen: Examen complet (C:\|D:\|) Elément(s) analysé(s): 356173 Temps écoulé: 1 heure(s), 5 minute(s), 31 seconde(s) Processus mémoire infecté(s): 0 Module(s) mémoire infecté(s): 0 Clé(s) du Registre infectée(s): 0 Valeur(s) du Registre infectée(s): 0 Elément(s) de données du Registre infecté(s): 0 Dossier(s) infecté(s): 0 Fichier(s) infecté(s): 0 Processus mémoire infecté(s): (Aucun élément nuisible détecté) Module(s) mémoire infecté(s): (Aucun élément nuisible détecté) Clé(s) du Registre infectée(s): (Aucun élément nuisible détecté) Valeur(s) du Registre infectée(s): (Aucun élément nuisible détecté) Elément(s) de données du Registre infecté(s): (Aucun élément nuisible détecté) Dossier(s) infecté(s): (Aucun élément nuisible détecté) Fichier(s) infecté(s): (Aucun élément nuisible détecté)

Rapport de ZHPFix 1.12.3275 par Nicolas Coolman, Update du 11/04/2011 Fichier d'export Registre : C:\ZHPExportRegistry-4-19-2011-1-46-33 PM.txt Run by LEONIE at 4/19/2011 1:46:33 PM Windows 7 Home Premium Edition, 32-bit (Build 7600) Web site : ZHPFix Fix de rapport ========== Clé(s) du Registre ========== HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ecdf796-c2dc-4d79-a620-cce0c0a66cc9} => Clé supprimée avec succès O64 - Services: CurCS - (.not file.) - BdSpy (BdSpy) .(...) - LEGACY_BDSPY => Clé supprimée avec succès O64 - Services: CurCS - (.not file.) - NovaShieldFilterDriver (NovaShieldFilterDriver) .(...) - LEGACY_NOVASHIELDFILTERDRIVER => Clé supprimée avec succès O64 - Services: CurCS - (.not file.) - NovaShieldTDIDriver (NovaShieldTDIDriver) .(...) - LEGACY_NOVASHIELDTDIDRIVER => Clé supprimée avec succès ========== Valeur(s) du Registre ========== O4 - HKLM\..\Run: [NPSStartup] Clé orpheline => Valeur supprimée avec succès ========== Elément(s) de donnée du Registre ========== R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank => Donnée supprimée avec succès ========== Fichier(s) ========== c:\users\leonie\desktop\diaporama first training.pps - raccourci.lnk => Supprimé et mis en quarantaine h:\diaporama first training.pps (.not file.) => Fichier absent c:\users\leonie\desktop\menfou.pdf - raccourci.lnk => Supprimé et mis en quarantaine h:\menfou.pdf (.not file.) => Fichier absent ========== Récapitulatif ========== 4 : Clé(s) du Registre 1 : Valeur(s) du Registre 1 : Elément(s) de donnée du Registre 4 : Fichier(s) End of the scan

Bonjour, Je viens vers vous pour le problème que rencontre ma sœur, son PC portable s'allume tout seul la nuit aux alentours de 01h30 ! Il s'agit d'un pc Medion AKOYA, qui n'est relié au réseau que par wifi. Il ne peux donc pas y avoir de Wake On Lan... Je continue de chercher le problème en parallèle mais ai quelques carences en traitement de rapport ZHP... Ci-joint, les rapport Hijackthis et ZHPdiag2. Merci d'avance pour toute l'aide apporté. Hijackthis et ZHPdiag2 via Cjoint

Le problème est le même sous Chrome chez moi que sous Firefox 4. L'adresse recherchée est peut être "la cause", w3.transbeauce.fr/horaires_ligne/index.asp?cityID=0&rub_code=6&lign_id=11&rub_code=6 Dans internet explorer, les options cityID= et rub_code= provenant de la page précédente ne sont pas répétées. Dans Firefox, il y a visiblement un problème d'affichage lorsque &rub_code=6 est présent deux fois. Je ne sais pas quelle est la source du problème ni si celui-ci peut être corrigé en local ou si il provient du site.

Juste pour dire Merci.

Un grand merci toi pear ! Mon Pc est clean, Zebulon est magique. Je vais donc continuer avec vous et donner un peu de temps aux personnes qui peuvent avoir des problèmes que j'ai déjà rencontrés et réglés... Encore merci pear !

2011/03/26 11:13:40.0069 1140 TDSS rootkit removing tool 2.4.21.0 Mar 10 2011 12:26:28 2011/03/26 11:13:42.0070 1140 ================================================================================ 2011/03/26 11:13:42.0070 1140 SystemInfo: 2011/03/26 11:13:42.0070 1140 2011/03/26 11:13:42.0071 1140 OS Version: 6.1.7600 ServicePack: 0.0 2011/03/26 11:13:42.0071 1140 Product type: Workstation 2011/03/26 11:13:42.0071 1140 ComputerName: JEREMIE-PC 2011/03/26 11:13:42.0071 1140 UserName: JEREMIE 2011/03/26 11:13:42.0071 1140 Windows directory: C:\Windows 2011/03/26 11:13:42.0071 1140 System windows directory: C:\Windows 2011/03/26 11:13:42.0071 1140 Processor architecture: Intel x86 2011/03/26 11:13:42.0071 1140 Number of processors: 3 2011/03/26 11:13:42.0071 1140 Page size: 0x1000 2011/03/26 11:13:42.0071 1140 Boot type: Normal boot 2011/03/26 11:13:42.0071 1140 ================================================================================ 2011/03/26 11:13:49.0041 1140 Initialize success 2011/03/26 11:13:52.0121 1768 ================================================================================ 2011/03/26 11:13:52.0121 1768 Scan started 2011/03/26 11:13:52.0121 1768 Mode: Manual; 2011/03/26 11:13:52.0121 1768 ================================================================================ 2011/03/26 11:14:04.0483 1768 1394ohci (6d2aca41739bfe8cb86ee8e85f29697d) C:\Windows\system32\DRIVERS\1394ohci.sys 2011/03/26 11:14:04.0531 1768 ACPI (f0e07d144c8685b8774bc32fc8da4df0) C:\Windows\system32\DRIVERS\ACPI.sys 2011/03/26 11:14:04.0560 1768 AcpiPmi (98d81ca942d19f7d9153b095162ac013) C:\Windows\system32\DRIVERS\acpipmi.sys 2011/03/26 11:14:04.0595 1768 adp94xx (21e785ebd7dc90a06391141aac7892fb) C:\Windows\system32\DRIVERS\adp94xx.sys 2011/03/26 11:14:04.0618 1768 adpahci (0c676bc278d5b59ff5abd57bbe9123f2) C:\Windows\system32\DRIVERS\adpahci.sys 2011/03/26 11:14:04.0671 1768 adpu320 (7c7b5ee4b7b822ec85321fe23a27db33) C:\Windows\system32\DRIVERS\adpu320.sys 2011/03/26 11:14:04.0737 1768 afcdp (f132d0bfde7c5ea1ab42325c5694a969) C:\Windows\system32\DRIVERS\afcdp.sys 2011/03/26 11:14:04.0781 1768 AFD (ddc040fdb01ef1712a6b13e52afb104c) C:\Windows\system32\drivers\afd.sys 2011/03/26 11:14:04.0827 1768 agp440 (507812c3054c21cef746b6ee3d04dd6e) C:\Windows\system32\DRIVERS\agp440.sys 2011/03/26 11:14:04.0845 1768 aic78xx (8b30250d573a8f6b4bd23195160d8707) C:\Windows\system32\DRIVERS\djsvs.sys 2011/03/26 11:14:04.0932 1768 aliide (0d40bcf52ea90fc7df2aeab6503dea44) C:\Windows\system32\DRIVERS\aliide.sys 2011/03/26 11:14:04.0962 1768 amdagp (3c6600a0696e90a463771c7422e23ab5) C:\Windows\system32\DRIVERS\amdagp.sys 2011/03/26 11:14:04.0986 1768 amdide (211fce336502911ec03fc15a91344c98) C:\Windows\system32\DRIVERS\amdide.sys 2011/03/26 11:14:05.0015 1768 AmdK8 (00dda200d71bac534bf56a9db5dfd666) C:\Windows\system32\DRIVERS\amdk8.sys 2011/03/26 11:14:05.0072 1768 AmdPPM (3cbf30f5370fda40dd3e87df38ea53b6) C:\Windows\system32\DRIVERS\amdppm.sys 2011/03/26 11:14:05.0110 1768 amdsata (6f64c768a9a48fab7c6d6cee1b30f97f) C:\Windows\system32\DRIVERS\amdsata.sys 2011/03/26 11:14:05.0139 1768 amdsbs (ea43af0c423ff267355f74e7a53bdaba) C:\Windows\system32\DRIVERS\amdsbs.sys 2011/03/26 11:14:05.0158 1768 amdxata (e27866684780606bcce640a57937d88a) C:\Windows\system32\DRIVERS\amdxata.sys 2011/03/26 11:14:05.0191 1768 AppID (feb834c02ce1e84b6a38f953ca067706) C:\Windows\system32\drivers\appid.sys 2011/03/26 11:14:05.0247 1768 arc (2932004f49677bd84dbc72edb754ffb3) C:\Windows\system32\DRIVERS\arc.sys 2011/03/26 11:14:05.0269 1768 arcsas (5d6f36c46fd283ae1b57bd2e9feb0bc7) C:\Windows\system32\DRIVERS\arcsas.sys 2011/03/26 11:14:05.0304 1768 AsyncMac (add2ade1c2b285ab8378d2daaf991481) C:\Windows\system32\DRIVERS\asyncmac.sys 2011/03/26 11:14:05.0338 1768 atapi (338c86357871c167a96ab976519bf59e) C:\Windows\system32\DRIVERS\atapi.sys 2011/03/26 11:14:05.0386 1768 AtiHdmiService (bf10613b3e16c1b4d7de59db564314cd) C:\Windows\system32\drivers\AtiHdmi.sys 2011/03/26 11:14:05.0529 1768 atikmdag (77f8ac3e93babc451e49d6d63d5c5282) C:\Windows\system32\DRIVERS\atikmdag.sys 2011/03/26 11:14:05.0642 1768 AtiPcie (b73c832088dd54b55e04ff6f9646ad8c) C:\Windows\system32\DRIVERS\AtiPcie.sys 2011/03/26 11:14:05.0697 1768 atksgt (f0d933b42cd0594048e4d5200ae9e417) C:\Windows\system32\DRIVERS\atksgt.sys 2011/03/26 11:14:05.0757 1768 b06bdrv (1a231abec60fd316ec54c66715543cec) C:\Windows\system32\DRIVERS\bxvbdx.sys 2011/03/26 11:14:05.0827 1768 b57nd60x (bd8869eb9cde6bbe4508d869929869ee) C:\Windows\system32\DRIVERS\b57nd60x.sys 2011/03/26 11:14:05.0897 1768 BDFM (67c2a47db7190673350a3f9f5a1507cb) C:\Windows\system32\DRIVERS\bdfm.sys 2011/03/26 11:14:05.0939 1768 BdfNdisf (2e82edc5e70163b2f72f7011e251ea63) C:\Windows\system32\DRIVERS\BdfNdisf6.sys 2011/03/26 11:14:06.0002 1768 bdfsfltr (a21a4a0e6bdf0c2be0fabfa16d8c8f76) C:\Windows\system32\DRIVERS\bdfsfltr.sys 2011/03/26 11:14:06.0079 1768 bdfwfpf (896ac9c2a81696861404a87575444b87) C:\Program Files\Common Files\BitDefender\BitDefender Firewall\bdfwfpf.sys 2011/03/26 11:14:06.0130 1768 BDVEDISK (375cd0b9f433465ec6f50d4df44e9448) C:\Program Files\BitDefender\BitDefender 2010\bdvedisk.sys 2011/03/26 11:14:06.0154 1768 Beep (505506526a9d467307b3c393dedaf858) C:\Windows\system32\drivers\Beep.sys 2011/03/26 11:14:06.0197 1768 blbdrive (2287078ed48fcfc477b05b20cf38f36f) C:\Windows\system32\DRIVERS\blbdrive.sys 2011/03/26 11:14:06.0268 1768 bowser (fcafaef6798d7b51ff029f99a9898961) C:\Windows\system32\DRIVERS\bowser.sys 2011/03/26 11:14:06.0292 1768 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\DRIVERS\BrFiltLo.sys 2011/03/26 11:14:06.0308 1768 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\DRIVERS\BrFiltUp.sys 2011/03/26 11:14:06.0344 1768 Brserid (845b8ce732e67f3b4133164868c666ea) C:\Windows\System32\Drivers\Brserid.sys 2011/03/26 11:14:06.0387 1768 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\System32\Drivers\BrSerWdm.sys 2011/03/26 11:14:06.0416 1768 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\System32\Drivers\BrUsbMdm.sys 2011/03/26 11:14:06.0442 1768 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\System32\Drivers\BrUsbSer.sys 2011/03/26 11:14:06.0482 1768 BTHMODEM (ed3df7c56ce0084eb2034432fc56565a) C:\Windows\system32\DRIVERS\bthmodem.sys 2011/03/26 11:14:06.0525 1768 cdfs (77ea11b065e0a8ab902d78145ca51e10) C:\Windows\system32\DRIVERS\cdfs.sys 2011/03/26 11:14:06.0586 1768 cdrom (ba6e70aa0e6091bc39de29477d866a77) C:\Windows\system32\DRIVERS\cdrom.sys 2011/03/26 11:14:06.0626 1768 circlass (3fe3fe94a34df6fb06e6418d0f6a0060) C:\Windows\system32\DRIVERS\circlass.sys 2011/03/26 11:14:06.0655 1768 CLFS (635181e0e9bbf16871bf5380d71db02d) C:\Windows\system32\CLFS.sys 2011/03/26 11:14:06.0707 1768 CmBatt (dea805815e587dad1dd2c502220b5616) C:\Windows\system32\DRIVERS\CmBatt.sys 2011/03/26 11:14:06.0758 1768 cmdide (c537b1db64d495b9b4717b4d6d9edbf2) C:\Windows\system32\DRIVERS\cmdide.sys 2011/03/26 11:14:06.0809 1768 CNG (1b675691ed940766149c93e8f4488d68) C:\Windows\system32\Drivers\cng.sys 2011/03/26 11:14:06.0838 1768 Compbatt (a6023d3823c37043986713f118a89bee) C:\Windows\system32\DRIVERS\compbatt.sys 2011/03/26 11:14:06.0866 1768 CompositeBus (f1724ba27e97d627f808fb0ba77a28a6) C:\Windows\system32\DRIVERS\CompositeBus.sys 2011/03/26 11:14:06.0896 1768 crcdisk (2c4ebcfc84a9b44f209dff6c6e6c61d1) C:\Windows\system32\DRIVERS\crcdisk.sys 2011/03/26 11:14:06.0949 1768 CVirtA (b5ecadf7708960f1818c7fa015f4c239) C:\Windows\system32\DRIVERS\CVirtA.sys 2011/03/26 11:14:07.0014 1768 DfsC (8e09e52ee2e3ceb199ef3dd99cf9e3fb) C:\Windows\system32\Drivers\dfsc.sys 2011/03/26 11:14:07.0040 1768 discache (1a050b0274bfb3890703d490f330c0da) C:\Windows\system32\drivers\discache.sys 2011/03/26 11:14:07.0074 1768 Disk (565003f326f99802e68ca78f2a68e9ff) C:\Windows\system32\DRIVERS\disk.sys 2011/03/26 11:14:07.0106 1768 DNE (b5aa5aa5ac327bd7c1aec0c58f0c1144) C:\Windows\system32\DRIVERS\dne2000.sys 2011/03/26 11:14:07.0218 1768 driverhardwarev2 (a694d8db6d360a3bbb0bd1517f1c1aee) C:\Program Files\ma-config.com\Drivers\driverhardwarev2.sys 2011/03/26 11:14:07.0297 1768 drmkaud (b918e7c5f9bf77202f89e1a9539f2eb4) C:\Windows\system32\drivers\drmkaud.sys 2011/03/26 11:14:07.0374 1768 DXGKrnl (1679a4669326cb1a67cc95658d273234) C:\Windows\System32\drivers\dxgkrnl.sys 2011/03/26 11:14:07.0475 1768 ebdrv (024e1b5cac09731e4d868e64dbfb4ab0) C:\Windows\system32\DRIVERS\evbdx.sys 2011/03/26 11:14:07.0615 1768 elxstor (0ed67910c8c326796faa00b2bf6d9d3c) C:\Windows\system32\DRIVERS\elxstor.sys 2011/03/26 11:14:07.0668 1768 ErrDev (8fc3208352dd3912c94367a206ab3f11) C:\Windows\system32\DRIVERS\errdev.sys 2011/03/26 11:14:07.0721 1768 exfat (2dc9108d74081149cc8b651d3a26207f) C:\Windows\system32\drivers\exfat.sys 2011/03/26 11:14:07.0752 1768 fastfat (7e0ab74553476622fb6ae36f73d97d35) C:\Windows\system32\drivers\fastfat.sys 2011/03/26 11:14:07.0804 1768 fdc (e817a017f82df2a1f8cfdbda29388b29) C:\Windows\system32\DRIVERS\fdc.sys 2011/03/26 11:14:07.0843 1768 FileInfo (6cf00369c97f3cf563be99be983d13d8) C:\Windows\system32\drivers\fileinfo.sys 2011/03/26 11:14:07.0863 1768 Filetrace (42c51dc94c91da21cb9196eb64c45db9) C:\Windows\system32\drivers\filetrace.sys 2011/03/26 11:14:07.0886 1768 flpydisk (87907aa70cb3c56600f1c2fb8841579b) C:\Windows\system32\DRIVERS\flpydisk.sys 2011/03/26 11:14:07.0943 1768 FltMgr (7520ec808e0c35e0ee6f841294316653) C:\Windows\system32\drivers\fltmgr.sys 2011/03/26 11:14:07.0969 1768 FsDepends (1a16b57943853e598cff37fe2b8cbf1d) C:\Windows\system32\drivers\FsDepends.sys 2011/03/26 11:14:08.0000 1768 Fs_Rec (a574b4360e438977038aae4bf60d79a2) C:\Windows\system32\drivers\Fs_Rec.sys 2011/03/26 11:14:08.0076 1768 fvevol (dafbd9fe39197495aed6d51f3b85b5d2) C:\Windows\system32\DRIVERS\fvevol.sys 2011/03/26 11:14:08.0111 1768 gagp30kx (65ee0c7a58b65e74ae05637418153938) C:\Windows\system32\DRIVERS\gagp30kx.sys 2011/03/26 11:14:08.0164 1768 hcw85cir (c44e3c2bab6837db337ddee7544736db) C:\Windows\system32\drivers\hcw85cir.sys 2011/03/26 11:14:08.0209 1768 HdAudAddService (3530cad25deba7dc7de8bb51632cbc5f) C:\Windows\system32\drivers\HdAudio.sys 2011/03/26 11:14:08.0273 1768 HDAudBus (717a2207fd6f13ad3e664c7d5a43c7bf) C:\Windows\system32\DRIVERS\HDAudBus.sys 2011/03/26 11:14:08.0299 1768 HidBatt (1d58a7f3e11a9731d0eaaaa8405acc36) C:\Windows\system32\DRIVERS\HidBatt.sys 2011/03/26 11:14:08.0347 1768 HidBth (89448f40e6df260c206a193a4683ba78) C:\Windows\system32\DRIVERS\hidbth.sys 2011/03/26 11:14:08.0386 1768 HidIr (cf50b4cf4a4f229b9f3c08351f99ca5e) C:\Windows\system32\DRIVERS\hidir.sys 2011/03/26 11:14:08.0450 1768 HidUsb (25072fb35ac90b25f9e4e3bacf774102) C:\Windows\system32\DRIVERS\hidusb.sys 2011/03/26 11:14:08.0530 1768 HpSAMD (295fdc419039090eb8b49ffdbb374549) C:\Windows\system32\DRIVERS\HpSAMD.sys 2011/03/26 11:14:08.0573 1768 HTTP (c531c7fd9e8b62021112787c4e2c5a5a) C:\Windows\system32\drivers\HTTP.sys 2011/03/26 11:14:08.0597 1768 hwpolicy (8305f33cde89ad6c7a0763ed0b5a8d42) C:\Windows\system32\drivers\hwpolicy.sys 2011/03/26 11:14:08.0630 1768 i8042prt (f151f0bdc47f4a28b1b20a0818ea36d6) C:\Windows\system32\DRIVERS\i8042prt.sys 2011/03/26 11:14:08.0674 1768 iaStorV (934af4d7c5f457b9f0743f4299b77b67) C:\Windows\system32\DRIVERS\iaStorV.sys 2011/03/26 11:14:08.0730 1768 iirsp (4173ff5708f3236cf25195fecd742915) C:\Windows\system32\DRIVERS\iirsp.sys 2011/03/26 11:14:08.0844 1768 IntcAzAudAddService (e345ec27c8dff8728f5c6f0413699dc5) C:\Windows\system32\drivers\RTKVHDA.sys 2011/03/26 11:14:08.0915 1768 intelide (a0f12f2c9ba6c72f3987ce780e77c130) C:\Windows\system32\DRIVERS\intelide.sys 2011/03/26 11:14:08.0940 1768 intelppm (3b514d27bfc4accb4037bc6685f766e0) C:\Windows\system32\DRIVERS\intelppm.sys 2011/03/26 11:14:08.0969 1768 IpFilterDriver (709d1761d3b19a932ff0238ea6d50200) C:\Windows\system32\DRIVERS\ipfltdrv.sys 2011/03/26 11:14:09.0036 1768 IPMIDRV (e4454b6c37d7ffd5649611f6496308a7) C:\Windows\system32\DRIVERS\IPMIDrv.sys 2011/03/26 11:14:09.0060 1768 IPNAT (a5fa468d67abcdaa36264e463a7bb0cd) C:\Windows\system32\drivers\ipnat.sys 2011/03/26 11:14:09.0092 1768 IRENUM (42996cff20a3084a56017b7902307e9f) C:\Windows\system32\drivers\irenum.sys 2011/03/26 11:14:09.0119 1768 isapnp (1f32bb6b38f62f7df1a7ab7292638a35) C:\Windows\system32\DRIVERS\isapnp.sys 2011/03/26 11:14:09.0152 1768 iScsiPrt (ed46c223ae46c6866ab77cdc41c404b7) C:\Windows\system32\DRIVERS\msiscsi.sys 2011/03/26 11:14:09.0199 1768 kbdclass (adef52ca1aeae82b50df86b56413107e) C:\Windows\system32\DRIVERS\kbdclass.sys 2011/03/26 11:14:09.0264 1768 kbdhid (3d9f0ebf350edcfd6498057301455964) C:\Windows\system32\DRIVERS\kbdhid.sys 2011/03/26 11:14:09.0322 1768 KSecDD (e36a061ec11b373826905b21be10948f) C:\Windows\system32\Drivers\ksecdd.sys 2011/03/26 11:14:09.0365 1768 KSecPkg (365c6154bbbc5377173f1ca7bfb6cc59) C:\Windows\system32\Drivers\ksecpkg.sys 2011/03/26 11:14:09.0444 1768 lirsgt (f8a7212d0864ef5e9185fb95e6623f4d) C:\Windows\system32\DRIVERS\lirsgt.sys 2011/03/26 11:14:09.0574 1768 lltdio (f7611ec07349979da9b0ae1f18ccc7a6) C:\Windows\system32\DRIVERS\lltdio.sys 2011/03/26 11:14:09.0671 1768 LSI_FC (eb119a53ccf2acc000ac71b065b78fef) C:\Windows\system32\DRIVERS\lsi_fc.sys 2011/03/26 11:14:09.0717 1768 LSI_SAS (8ade1c877256a22e49b75d1cc9161f9c) C:\Windows\system32\DRIVERS\lsi_sas.sys 2011/03/26 11:14:09.0757 1768 LSI_SAS2 (dc9dc3d3daa0e276fd2ec262e38b11e9) C:\Windows\system32\DRIVERS\lsi_sas2.sys 2011/03/26 11:14:09.0815 1768 LSI_SCSI (0a036c7d7cab643a7f07135ac47e0524) C:\Windows\system32\DRIVERS\lsi_scsi.sys 2011/03/26 11:14:09.0847 1768 luafv (6703e366cc18d3b6e534f5cf7df39cee) C:\Windows\system32\drivers\luafv.sys 2011/03/26 11:14:09.0881 1768 megasas (0fff5b045293002ab38eb1fd1fc2fb74) C:\Windows\system32\DRIVERS\megasas.sys 2011/03/26 11:14:09.0907 1768 MegaSR (dcbab2920c75f390caf1d29f675d03d6) C:\Windows\system32\DRIVERS\MegaSR.sys 2011/03/26 11:14:09.0948 1768 Modem (f001861e5700ee84e2d4e52c712f4964) C:\Windows\system32\drivers\modem.sys 2011/03/26 11:14:09.0981 1768 monitor (79d10964de86b292320e9dfe02282a23) C:\Windows\system32\DRIVERS\monitor.sys 2011/03/26 11:14:10.0008 1768 mouclass (fb18cc1d4c2e716b6b903b0ac0cc0609) C:\Windows\system32\DRIVERS\mouclass.sys 2011/03/26 11:14:10.0044 1768 mouhid (2c388d2cd01c9042596cf3c8f3c7b24d) C:\Windows\system32\DRIVERS\mouhid.sys 2011/03/26 11:14:10.0068 1768 mountmgr (921c18727c5920d6c0300736646931c2) C:\Windows\system32\drivers\mountmgr.sys 2011/03/26 11:14:10.0095 1768 mpio (2af5997438c55fb79d33d015c30e1974) C:\Windows\system32\DRIVERS\mpio.sys 2011/03/26 11:14:10.0140 1768 mpsdrv (ad2723a7b53dd1aacae6ad8c0bfbf4d0) C:\Windows\system32\drivers\mpsdrv.sys 2011/03/26 11:14:10.0171 1768 MRxDAV (b1be47008d20e43da3adc37c24cdb89d) C:\Windows\system32\drivers\mrxdav.sys 2011/03/26 11:14:10.0235 1768 mrxsmb (f1b6aa08497ea86ca6ef6f7a08b0bfb8) C:\Windows\system32\DRIVERS\mrxsmb.sys 2011/03/26 11:14:10.0262 1768 mrxsmb10 (5613358b4050f46f5a9832da8050d6e4) C:\Windows\system32\DRIVERS\mrxsmb10.sys 2011/03/26 11:14:10.0304 1768 mrxsmb20 (25c9792778d80feb4c8201e62281bfdf) C:\Windows\system32\DRIVERS\mrxsmb20.sys 2011/03/26 11:14:10.0335 1768 msahci (4326d168944123f38dd3b2d9c37a0b12) C:\Windows\system32\DRIVERS\msahci.sys 2011/03/26 11:14:10.0376 1768 msdsm (455029c7174a2dbb03dba8a0d8bddd9a) C:\Windows\system32\DRIVERS\msdsm.sys 2011/03/26 11:14:10.0414 1768 Msfs (daefb28e3af5a76abcc2c3078c07327f) C:\Windows\system32\drivers\Msfs.sys 2011/03/26 11:14:10.0429 1768 mshidkmdf (3e1e5767043c5af9367f0056295e9f84) C:\Windows\System32\drivers\mshidkmdf.sys 2011/03/26 11:14:10.0463 1768 msisadrv (0a4e5757ae09fa9622e3158cc1aef114) C:\Windows\system32\DRIVERS\msisadrv.sys 2011/03/26 11:14:10.0497 1768 MSKSSRV (8c0860d6366aaffb6c5bb9df9448e631) C:\Windows\system32\drivers\MSKSSRV.sys 2011/03/26 11:14:10.0519 1768 MSPCLOCK (3ea8b949f963562cedbb549eac0c11ce) C:\Windows\system32\drivers\MSPCLOCK.sys 2011/03/26 11:14:10.0547 1768 MSPQM (f456e973590d663b1073e9c463b40932) C:\Windows\system32\drivers\MSPQM.sys 2011/03/26 11:14:10.0582 1768 MsRPC (0e008fc4819d238c51d7c93e7b41e560) C:\Windows\system32\drivers\MsRPC.sys 2011/03/26 11:14:10.0611 1768 mssmbios (fc6b9ff600cc585ea38b12589bd4e246) C:\Windows\system32\DRIVERS\mssmbios.sys 2011/03/26 11:14:10.0633 1768 MSTEE (b42c6b921f61a6e55159b8be6cd54a36) C:\Windows\system32\drivers\MSTEE.sys 2011/03/26 11:14:10.0658 1768 MTConfig (33599130f44e1f34631cea241de8ac84) C:\Windows\system32\DRIVERS\MTConfig.sys 2011/03/26 11:14:10.0682 1768 Mup (159fad02f64e6381758c990f753bcc80) C:\Windows\system32\Drivers\mup.sys 2011/03/26 11:14:10.0738 1768 NativeWifiP (26384429fcd85d83746f63e798ab1480) C:\Windows\system32\DRIVERS\nwifi.sys 2011/03/26 11:14:10.0782 1768 NDIS (23759d175a0a9baaf04d05047bc135a8) C:\Windows\system32\drivers\ndis.sys 2011/03/26 11:14:10.0827 1768 NdisCap (0e1787aa6c9191d3d319e8bafe86f80c) C:\Windows\system32\DRIVERS\ndiscap.sys 2011/03/26 11:14:10.0872 1768 NdisTapi (e4a8aec125a2e43a9e32afeea7c9c888) C:\Windows\system32\DRIVERS\ndistapi.sys 2011/03/26 11:14:10.0902 1768 Ndisuio (b30ae7f2b6d7e343b0df32e6c08fce75) C:\Windows\system32\DRIVERS\ndisuio.sys 2011/03/26 11:14:10.0923 1768 NdisWan (267c415eadcbe53c9ca873dee39cf3a4) C:\Windows\system32\DRIVERS\ndiswan.sys 2011/03/26 11:14:10.0945 1768 NDProxy (af7e7c63dcef3f8772726f86039d6eb4) C:\Windows\system32\drivers\NDProxy.sys 2011/03/26 11:14:11.0008 1768 NetBIOS (80b275b1ce3b0e79909db7b39af74d51) C:\Windows\system32\DRIVERS\netbios.sys 2011/03/26 11:14:11.0034 1768 NetBT (dd52a733bf4ca5af84562a5e2f963b91) C:\Windows\system32\DRIVERS\netbt.sys 2011/03/26 11:14:11.0085 1768 nfrd960 (1d85c4b390b0ee09c7a46b91efb2c097) C:\Windows\system32\DRIVERS\nfrd960.sys 2011/03/26 11:14:11.0111 1768 Npfs (1db262a9f8c087e8153d89bef3d2235f) C:\Windows\system32\drivers\Npfs.sys 2011/03/26 11:14:11.0140 1768 nsiproxy (e9a0a4d07e53d8fea2bb8387a3293c58) C:\Windows\system32\drivers\nsiproxy.sys 2011/03/26 11:14:11.0183 1768 Ntfs (3795dcd21f740ee799fb7223234215af) C:\Windows\system32\drivers\Ntfs.sys 2011/03/26 11:14:11.0224 1768 Null (f9756a98d69098dca8945d62858a812c) C:\Windows\system32\drivers\Null.sys 2011/03/26 11:14:11.0250 1768 nvraid (3f3d04b1d08d43c16ea7963954ec768d) C:\Windows\system32\DRIVERS\nvraid.sys 2011/03/26 11:14:11.0322 1768 nvstor (c99f251a5de63c6f129cf71933aced0f) C:\Windows\system32\DRIVERS\nvstor.sys 2011/03/26 11:14:11.0352 1768 nv_agp (5a0983915f02bae73267cc2a041f717d) C:\Windows\system32\DRIVERS\nv_agp.sys 2011/03/26 11:14:11.0401 1768 ohci1394 (08a70a1f2cdde9bb49b885cb817a66eb) C:\Windows\system32\DRIVERS\ohci1394.sys 2011/03/26 11:14:11.0487 1768 Parport (2ea877ed5dd9713c5ac74e8ea7348d14) C:\Windows\system32\DRIVERS\parport.sys 2011/03/26 11:14:11.0509 1768 partmgr (ff4218952b51de44fe910953a3e686b9) C:\Windows\system32\drivers\partmgr.sys 2011/03/26 11:14:11.0537 1768 Parvdm (eb0a59f29c19b86479d36b35983daadc) C:\Windows\system32\DRIVERS\parvdm.sys 2011/03/26 11:14:11.0567 1768 pci (c858cb77c577780ecc456a892e7e7d0f) C:\Windows\system32\DRIVERS\pci.sys 2011/03/26 11:14:11.0593 1768 pciide (afe86f419014db4e5593f69ffe26ce0a) C:\Windows\system32\DRIVERS\pciide.sys 2011/03/26 11:14:11.0626 1768 pcmcia (f396431b31693e71e8a80687ef523506) C:\Windows\system32\DRIVERS\pcmcia.sys 2011/03/26 11:14:11.0654 1768 pcw (250f6b43d2b613172035c6747aeeb19f) C:\Windows\system32\drivers\pcw.sys 2011/03/26 11:14:11.0681 1768 PEAUTH (9e0104ba49f4e6973749a02bf41344ed) C:\Windows\system32\drivers\peauth.sys 2011/03/26 11:14:11.0784 1768 PptpMiniport (631e3e205ad6d86f2aed6a4a8e69f2db) C:\Windows\system32\DRIVERS\raspptp.sys 2011/03/26 11:14:11.0857 1768 Processor (85b1e3a0c7585bc4aae6899ec6fcf011) C:\Windows\system32\DRIVERS\processr.sys 2011/03/26 11:14:11.0972 1768 Profos (d90a33660d328a9f587580f0b38c85de) C:\Program Files\Common Files\BitDefender\BitDefender Threat Scanner\profos.sys 2011/03/26 11:14:12.0034 1768 Psched (6270ccae2a86de6d146529fe55b3246a) C:\Windows\system32\DRIVERS\pacer.sys 2011/03/26 11:14:12.0074 1768 ql2300 (ab95ecf1f6659a60ddc166d8315b0751) C:\Windows\system32\DRIVERS\ql2300.sys 2011/03/26 11:14:12.0168 1768 ql40xx (b4dd51dd25182244b86737dc51af2270) C:\Windows\system32\DRIVERS\ql40xx.sys 2011/03/26 11:14:12.0191 1768 QWAVEdrv (584078ca1b95ca72df2a27c336f9719d) C:\Windows\system32\drivers\qwavedrv.sys 2011/03/26 11:14:12.0209 1768 RasAcd (30a81b53c766d0133bb86d234e5556ab) C:\Windows\system32\DRIVERS\rasacd.sys 2011/03/26 11:14:12.0247 1768 RasAgileVpn (57ec4aef73660166074d8f7f31c0d4fd) C:\Windows\system32\DRIVERS\AgileVpn.sys 2011/03/26 11:14:12.0277 1768 Rasl2tp (d9f91eafec2815365cbe6d167e4e332a) C:\Windows\system32\DRIVERS\rasl2tp.sys 2011/03/26 11:14:12.0308 1768 RasPppoe (0fe8b15916307a6ac12bfb6a63e45507) C:\Windows\system32\DRIVERS\raspppoe.sys 2011/03/26 11:14:12.0326 1768 RasSstp (44101f495a83ea6401d886e7fd70096b) C:\Windows\system32\DRIVERS\rassstp.sys 2011/03/26 11:14:12.0385 1768 rdbss (835d7e81bf517a3b72384bdcc85e1ce6) C:\Windows\system32\DRIVERS\rdbss.sys 2011/03/26 11:14:12.0421 1768 rdpbus (0d8f05481cb76e70e1da06ee9f0da9df) C:\Windows\system32\DRIVERS\rdpbus.sys 2011/03/26 11:14:12.0473 1768 RDPCDD (1e016846895b15a99f9a176a05029075) C:\Windows\system32\DRIVERS\RDPCDD.sys 2011/03/26 11:14:12.0511 1768 RDPENCDD (5a53ca1598dd4156d44196d200c94b8a) C:\Windows\system32\drivers\rdpencdd.sys 2011/03/26 11:14:12.0539 1768 RDPREFMP (44b0a53cd4f27d50ed461dae0c0b4e1f) C:\Windows\system32\drivers\rdprefmp.sys 2011/03/26 11:14:12.0559 1768 RDPWD (801371ba9782282892d00aadb08ee367) C:\Windows\system32\drivers\RDPWD.sys 2011/03/26 11:14:12.0583 1768 rdyboost (4ea225bf1cf05e158853f30a99ca29a7) C:\Windows\system32\drivers\rdyboost.sys 2011/03/26 11:14:12.0632 1768 rspndr (032b0d36ad92b582d869879f5af5b928) C:\Windows\system32\DRIVERS\rspndr.sys 2011/03/26 11:14:12.0687 1768 RTL8167 (06bd46be6141556125f89df738333720) C:\Windows\system32\DRIVERS\Rt86win7.sys 2011/03/26 11:14:12.0817 1768 RTL8192su (83e64d86a4d888d973de824780567518) C:\Windows\system32\DRIVERS\RTL8192su.sys 2011/03/26 11:14:12.0898 1768 sbp2port (34ee0c44b724e3e4ce2eff29126de5b5) C:\Windows\system32\DRIVERS\sbp2port.sys 2011/03/26 11:14:12.0977 1768 scfilter (a95c54b2ac3cc9c73fcdf9e51a1d6b51) C:\Windows\system32\DRIVERS\scfilter.sys 2011/03/26 11:14:13.0027 1768 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys 2011/03/26 11:14:13.0072 1768 Serenum (9ad8b8b515e3df6acd4212ef465de2d1) C:\Windows\system32\DRIVERS\serenum.sys 2011/03/26 11:14:13.0114 1768 Serial (5fb7fcea0490d821f26f39cc5ea3d1e2) C:\Windows\system32\DRIVERS\serial.sys 2011/03/26 11:14:13.0147 1768 sermouse (79bffb520327ff916a582dfea17aa813) C:\Windows\system32\DRIVERS\sermouse.sys 2011/03/26 11:14:13.0223 1768 sffdisk (9f976e1eb233df46fce808d9dea3eb9c) C:\Windows\system32\DRIVERS\sffdisk.sys 2011/03/26 11:14:13.0250 1768 sffp_mmc (932a68ee27833cfd57c1639d375f2731) C:\Windows\system32\DRIVERS\sffp_mmc.sys 2011/03/26 11:14:13.0269 1768 sffp_sd (4f1e5b0fe7c8050668dbfade8999aefb) C:\Windows\system32\DRIVERS\sffp_sd.sys 2011/03/26 11:14:13.0302 1768 sfloppy (db96666cc8312ebc45032f30b007a547) C:\Windows\system32\DRIVERS\sfloppy.sys 2011/03/26 11:14:13.0345 1768 sisagp (2565cac0dc9fe0371bdce60832582b2e) C:\Windows\system32\DRIVERS\sisagp.sys 2011/03/26 11:14:13.0374 1768 SiSRaid2 (a9f0486851becb6dda1d89d381e71055) C:\Windows\system32\DRIVERS\SiSRaid2.sys 2011/03/26 11:14:13.0398 1768 SiSRaid4 (3727097b55738e2f554972c3be5bc1aa) C:\Windows\system32\DRIVERS\sisraid4.sys 2011/03/26 11:14:13.0455 1768 Smb (3e21c083b8a01cb70ba1f09303010fce) C:\Windows\system32\DRIVERS\smb.sys 2011/03/26 11:14:13.0546 1768 snapman (ffd9b64db2cd7b74b766c3a8452a5816) C:\Windows\system32\DRIVERS\snapman.sys 2011/03/26 11:14:13.0576 1768 spldr (95cf1ae7527fb70f7816563cbc09d942) C:\Windows\system32\drivers\spldr.sys 2011/03/26 11:14:13.0643 1768 sptd (cdddec541bc3c96f91ecb48759673505) C:\Windows\system32\Drivers\sptd.sys 2011/03/26 11:14:13.0644 1768 Suspicious file (NoAccess): C:\Windows\system32\Drivers\sptd.sys. md5: cdddec541bc3c96f91ecb48759673505 2011/03/26 11:14:13.0652 1768 sptd - detected Locked file (1) 2011/03/26 11:14:13.0698 1768 srv (2dbedfb1853f06110ec2aa7f3213c89f) C:\Windows\system32\DRIVERS\srv.sys 2011/03/26 11:14:13.0741 1768 srv2 (db37131d1027c50ea7ee21c8bb4536aa) C:\Windows\system32\DRIVERS\srv2.sys 2011/03/26 11:14:13.0786 1768 srvnet (f5980b74124db9233b33f86fc5ebbb4f) C:\Windows\system32\DRIVERS\srvnet.sys 2011/03/26 11:14:13.0835 1768 stexstor (db32d325c192b801df274bfd12a7e72b) C:\Windows\system32\DRIVERS\stexstor.sys 2011/03/26 11:14:13.0913 1768 StillCam (edb05bd63148796f23ea78506404a538) C:\Windows\system32\DRIVERS\serscan.sys 2011/03/26 11:14:13.0952 1768 swenum (e58c78a848add9610a4db6d214af5224) C:\Windows\system32\DRIVERS\swenum.sys 2011/03/26 11:14:14.0008 1768 tap0901 (c516b5cffb7c307fcb7df87d7d7fa200) C:\Windows\system32\DRIVERS\tap0901.sys 2011/03/26 11:14:14.0076 1768 Tcpip (bb7f39c31c4a4417fd318e7cd184e225) C:\Windows\system32\drivers\tcpip.sys 2011/03/26 11:14:14.0137 1768 TCPIP6 (bb7f39c31c4a4417fd318e7cd184e225) C:\Windows\system32\DRIVERS\tcpip.sys 2011/03/26 11:14:14.0167 1768 tcpipreg (e64444523add154f86567c469bc0b17f) C:\Windows\system32\drivers\tcpipreg.sys 2011/03/26 11:14:14.0192 1768 TDPIPE (1875c1490d99e70e449e3afae9fcbadf) C:\Windows\system32\drivers\tdpipe.sys 2011/03/26 11:14:14.0264 1768 tdrpman251 (3630f5b8181554deecfe2e4252bc4c4c) C:\Windows\system32\DRIVERS\tdrpm251.sys 2011/03/26 11:14:14.0310 1768 TDTCP (7551e91ea999ee9a8e9c331d5a9c31f3) C:\Windows\system32\drivers\tdtcp.sys 2011/03/26 11:14:14.0339 1768 tdx (cb39e896a2a83702d1737bfd402b3542) C:\Windows\system32\DRIVERS\tdx.sys 2011/03/26 11:14:14.0404 1768 teamviewervpn (9101fffcfccd1a30e870a5b8a9091b10) C:\Windows\system32\DRIVERS\teamviewervpn.sys 2011/03/26 11:14:14.0429 1768 TermDD (c36f41ee20e6999dbf4b0425963268a5) C:\Windows\system32\DRIVERS\termdd.sys 2011/03/26 11:14:14.0499 1768 timounter (c820bfc70feb25ec877c49e81cd477c1) C:\Windows\system32\DRIVERS\timntr.sys 2011/03/26 11:14:14.0613 1768 Trufos (b16d66a71de03285e14e9f165b59eda4) C:\Program Files\Common Files\BitDefender\BitDefender Threat Scanner\trufos.sys 2011/03/26 11:14:14.0638 1768 tssecsrv (98ae6fa07d12cb4ec5cf4a9bfa5f4242) C:\Windows\system32\DRIVERS\tssecsrv.sys 2011/03/26 11:14:14.0807 1768 TuneUpUtilitiesDrv (f2107c9d85ec0df116939ccce06ae697) C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesDriver32.sys 2011/03/26 11:14:14.0990 1768 tunnel (3e461d890a97f9d4c168f5fda36e1d00) C:\Windows\system32\DRIVERS\tunnel.sys 2011/03/26 11:14:15.0055 1768 uagp35 (750fbcb269f4d7dd2e420c56b795db6d) C:\Windows\system32\DRIVERS\uagp35.sys 2011/03/26 11:14:15.0084 1768 udfs (09cc3e16f8e5ee7168e01cf8fcbe061a) C:\Windows\system32\DRIVERS\udfs.sys 2011/03/26 11:14:15.0126 1768 uliagpkx (44e8048ace47befbfdc2e9be4cbc8880) C:\Windows\system32\DRIVERS\uliagpkx.sys 2011/03/26 11:14:15.0160 1768 umbus (049b3a50b3d646baeeee9eec9b0668dc) C:\Windows\system32\DRIVERS\umbus.sys 2011/03/26 11:14:15.0217 1768 UmPass (7550ad0c6998ba1cb4843e920ee0feac) C:\Windows\system32\DRIVERS\umpass.sys 2011/03/26 11:14:15.0236 1768 usbccgp (8455c4ed038efd09e99327f9d2d48ffa) C:\Windows\system32\DRIVERS\usbccgp.sys 2011/03/26 11:14:15.0264 1768 usbcir (04ec7cec62ec3b6d9354eee93327fc82) C:\Windows\system32\DRIVERS\usbcir.sys 2011/03/26 11:14:15.0289 1768 usbehci (1c333bfd60f2fed2c7ad5daf533cb742) C:\Windows\system32\DRIVERS\usbehci.sys 2011/03/26 11:14:15.0336 1768 usbfilter (19999ca8e83f16d271afc467b84718d7) C:\Windows\system32\DRIVERS\usbfilter.sys 2011/03/26 11:14:15.0360 1768 usbhub (ee6ef93ccfa94fae8c6ab298273d8ae2) C:\Windows\system32\DRIVERS\usbhub.sys 2011/03/26 11:14:15.0387 1768 usbohci (a6fb7957ea7afb1165991e54ce934b74) C:\Windows\system32\DRIVERS\usbohci.sys 2011/03/26 11:14:15.0415 1768 usbprint (797d862fe0875e75c7cc4c1ad7b30252) C:\Windows\system32\DRIVERS\usbprint.sys 2011/03/26 11:14:15.0436 1768 USBSTOR (d8889d56e0d27e57ed4591837fe71d27) C:\Windows\system32\DRIVERS\USBSTOR.SYS 2011/03/26 11:14:15.0461 1768 usbuhci (78780c3ebce17405b1ccd07a3a8a7d72) C:\Windows\system32\DRIVERS\usbuhci.sys 2011/03/26 11:14:15.0537 1768 USR_Find_Handle (4ca404b8133d092e425e8f9568eb27bd) C:\Program Files\LockHunter\USRFindHandle32.sys 2011/03/26 11:14:15.0610 1768 vdrvroot (a059c4c3edb09e07d21a8e5c0aabd3cb) C:\Windows\system32\DRIVERS\vdrvroot.sys 2011/03/26 11:14:15.0638 1768 vga (17c408214ea61696cec9c66e388b14f3) C:\Windows\system32\DRIVERS\vgapnp.sys 2011/03/26 11:14:15.0666 1768 VgaSave (8e38096ad5c8570a6f1570a61e251561) C:\Windows\System32\drivers\vga.sys 2011/03/26 11:14:15.0694 1768 vhdmp (3be6e1f3a4f1afec8cee0d7883f93583) C:\Windows\system32\DRIVERS\vhdmp.sys 2011/03/26 11:14:15.0743 1768 viaagp (c829317a37b4bea8f39735d4b076e923) C:\Windows\system32\DRIVERS\viaagp.sys 2011/03/26 11:14:15.0768 1768 ViaC7 (e02f079a6aa107f06b16549c6e5c7b74) C:\Windows\system32\DRIVERS\viac7.sys 2011/03/26 11:14:15.0816 1768 viaide (e43574f6a56a0ee11809b48c09e4fd3c) C:\Windows\system32\DRIVERS\viaide.sys 2011/03/26 11:14:15.0835 1768 volmgr (384e5a2aa49934295171e499f86ba6f3) C:\Windows\system32\DRIVERS\volmgr.sys 2011/03/26 11:14:15.0856 1768 volmgrx (b5bb72067ddddbbfb04b2f89ff8c3c87) C:\Windows\system32\drivers\volmgrx.sys 2011/03/26 11:14:15.0882 1768 volsnap (58df9d2481a56edde167e51b334d44fd) C:\Windows\system32\DRIVERS\volsnap.sys 2011/03/26 11:14:15.0923 1768 vsmraid (9dfa0cc2f8855a04816729651175b631) C:\Windows\system32\DRIVERS\vsmraid.sys 2011/03/26 11:14:15.0949 1768 vwifibus (90567b1e658001e79d7c8bbd3dde5aa6) C:\Windows\System32\drivers\vwifibus.sys 2011/03/26 11:14:15.0975 1768 vwififlt (7090d3436eeb4e7da3373090a23448f7) C:\Windows\system32\DRIVERS\vwififlt.sys 2011/03/26 11:14:16.0003 1768 WacomPen (de3721e89c653aa281428c8a69745d90) C:\Windows\system32\DRIVERS\wacompen.sys 2011/03/26 11:14:16.0043 1768 WANARP (692a712062146e96d28ba0b7d75de31b) C:\Windows\system32\DRIVERS\wanarp.sys 2011/03/26 11:14:16.0054 1768 Wanarpv6 (692a712062146e96d28ba0b7d75de31b) C:\Windows\system32\DRIVERS\wanarp.sys 2011/03/26 11:14:16.0119 1768 Wd (1112a9badacb47b7c0bb0392e3158dff) C:\Windows\system32\DRIVERS\wd.sys 2011/03/26 11:14:16.0148 1768 Wdf01000 (9950e3d0f08141c7e89e64456ae7dc73) C:\Windows\system32\drivers\Wdf01000.sys 2011/03/26 11:14:16.0217 1768 WfpLwf (8b9a943f3b53861f2bfaf6c186168f79) C:\Windows\system32\DRIVERS\wfplwf.sys 2011/03/26 11:14:16.0265 1768 WIMMount (5cf95b35e59e2a38023836fff31be64c) C:\Windows\system32\drivers\wimmount.sys 2011/03/26 11:14:16.0363 1768 WinUsb (30fc6e5448d0cbaaa95280eeef7fedae) C:\Windows\system32\DRIVERS\WinUsb.sys 2011/03/26 11:14:16.0415 1768 WmiAcpi (0217679b8fca58714c3bf2726d2ca84e) C:\Windows\system32\DRIVERS\wmiacpi.sys 2011/03/26 11:14:16.0454 1768 ws2ifsl (6db3276587b853bf886b69528fdb048c) C:\Windows\system32\drivers\ws2ifsl.sys 2011/03/26 11:14:16.0506 1768 WudfPf (6f9b6c0c93232cff47d0f72d6db1d21e) C:\Windows\system32\drivers\WudfPf.sys 2011/03/26 11:14:16.0548 1768 WUDFRd (f91ff1e51fca30b3c3981db7d5924252) C:\Windows\system32\DRIVERS\WUDFRd.sys 2011/03/26 11:14:16.0582 1768 XUIF (6bbf7a3bab8ffdccf82057fa2aae2b7b) C:\Windows\System32\Drivers\x10ufx2.sys 2011/03/26 11:14:16.0626 1768 \HardDisk0 - detected Rootkit.Win32.TDSS.tdl4 (0) 2011/03/26 11:14:16.0630 1768 ================================================================================ 2011/03/26 11:14:16.0630 1768 Scan finished 2011/03/26 11:14:16.0630 1768 ================================================================================ 2011/03/26 11:14:16.0641 4648 Detected object count: 2 2011/03/26 11:14:28.0681 4648 Locked file(sptd) - User select action: Skip 2011/03/26 11:14:28.0754 4648 \HardDisk0 (Rootkit.Win32.TDSS.tdl4) - will be cured after reboot 2011/03/26 11:14:28.0754 4648 \HardDisk0 - ok 2011/03/26 11:14:28.0755 4648 Rootkit.Win32.TDSS.tdl4(\HardDisk0) - User select action: Cure 2011/03/26 11:14:34.0892 3976 Deinitialize success

RogueKiller V4.3.3 par Tigzy contact sur Forum Sciences / Forum Informatique - Sur la Toile (SLT) mail: tigzyRK<at>gmail<dot>com Remontees: [RogueKiller] Remontées (1/10) Systeme d'exploitation: Windows 7 (6.1.7600 ) 32 bits version Demarrage : Mode normal Utilisateur: JEREMIE [Droits d'admin] Mode: Recherche -- Date : 26/03/2011 11:10:59 Processus malicieux: 1 [RESIDUE] KBDLIP30.dll -- C:\Users\JEREMIE\AppData\Local\KBDLIP30.dll -> KILLED Entrees de registre: 3 [APPDT/TMP/DESKTOP] HKCU\[...]\Run : Ljihikujikapaku (rundll32.exe "C:\Users\JEREMIE\AppData\Local\KBDLIP30.dll",Startup) -> FOUND [APPDT/TMP/DESKTOP] HKUS\S-1-5-21-1985081585-3691799793-607627107-1000[...]\Run : Ljihikujikapaku (rundll32.exe "C:\Users\JEREMIE\AppData\Local\KBDLIP30.dll",Startup) -> FOUND [PROXY IE] HKCU\[...]\Internet Settings : ProxyServer (ftp=localhost:8080;http=localhost:8118;https=localhost:8080;socks=localhost:1080) -> FOUND Fichier HOSTS: Termine : << RKreport[1].txt >> RKreport[1].txt

Je ne connaissais pas ce site . merci beaucoup, maintenant c'est sure c'est pas un gentil... voici le rapport : File name: KBDLIP30.dll Submission date: 2011-03-26 10:02:38 (UTC) Current status: finished Result: 11/ 40 (27.5%) VT Community not reviewed Safety score: - Compact Print results Antivirus Version Last Update Result AhnLab-V3 2011.03.26.00 2011.03.25 - AntiVir 7.11.5.79 2011.03.25 - Antiy-AVL 2.0.3.7 2011.03.26 - Avast 4.8.1351.0 2011.03.25 - Avast5 5.0.677.0 2011.03.25 - AVG 10.0.0.1190 2011.03.25 SHeur3.BSLH BitDefender 7.2 2011.03.26 - CAT-QuickHeal 11.00 2011.03.26 - ClamAV 0.96.4.0 2011.03.26 - Commtouch 5.2.11.5 2011.03.24 - Comodo 8109 2011.03.26 UnclassifiedMalware DrWeb 5.0.2.03300 2011.03.26 - eSafe 7.0.17.0 2011.03.24 - eTrust-Vet 36.1.8236 2011.03.25 - F-Prot 4.6.2.117 2011.03.25 - Fortinet 4.2.254.0 2011.03.26 - GData 21 2011.03.26 - Ikarus T3.1.1.97.0 2011.03.26 Trojan.Win32.Hiloti Jiangmin 13.0.900 2011.03.26 - K7AntiVirus 9.94.4219 2011.03.26 - McAfee 5.400.0.1158 2011.03.26 - McAfee-GW-Edition 2010.1C 2011.03.26 - Microsoft 1.6702 2011.03.26 - NOD32 5986 2011.03.26 a variant of Win32/Cimag.GJ Norman 6.07.03 2011.03.24 - nProtect 2011-02-10.01 2011.02.15 - Panda 10.0.3.5 2011.03.25 Suspicious file PCTools 7.0.3.5 2011.03.26 Trojan.Zefarch Prevx 3.0 2011.03.26 High Risk Cloaked Malware Rising 23.50.05.05 2011.03.26 - Sophos 4.64.0 2011.03.26 Mal/Hiloti-D SUPERAntiSpyware 4.40.0.1006 2011.03.26 - Symantec 20101.3.0.103 2011.03.26 Trojan.Zefarch TheHacker 6.7.0.1.156 2011.03.25 - TrendMicro 9.200.0.1012 2011.03.26 - TrendMicro-HouseCall 9.200.0.1012 2011.03.26 - VBA32 3.12.14.3 2011.03.25 Bscope.Malware-Cryptor.Tip VIPRE 8822 2011.03.26 Trojan.Win32.Generic!BT ViRobot 2011.3.26.4378 2011.03.26 - VirusBuster 13.6.270.0 2011.03.25 - Additional information MD5 : c2802a3cedbc7878a476c6873a89a5f5 SHA1 : e9946669d766f15adb1d5f7e3b21f1cc8ce2b09e SHA256: b1494d12e9ca987211805d508d55569e261f33380ca25c9f0aa003a509eb6eec ssdeep: 3072:tgMfMYJ8qaoq5eH7SMYamKvqI3UIdFyxqH2QYQhBlh6jiL:+KMYk5MQItUIvWihsji File size : 100352 bytes First seen: 2011-03-23 15:04:05 Last seen : 2011-03-26 10:02:38 TrID: Win64 Executable Generic (80.9%) Win32 Executable Generic (8.0%) Win32 Dynamic Link Library (generic) (7.1%) Generic Win/DOS Executable (1.8%) DOS Executable Generic (1.8%) sigcheck: publisher....: Greatis Software copyright....: Greatis Software 2003 product......: RegRun Security Suite description..: RunGuard file checker original name: RunGuard.exe internal name: RunGuard.exe file version.: 3.9.2.112 comments.....: RegRun Security Suite - Greatis Software signers......: - signing date.: - verified.....: Unsigned PEInfo: PE structure information [[ basic data ]] entrypointaddress: 0xBF6A timedatestamp....: 0x4BC85DD0 (Fri Apr 16 12:53:36 2010) machinetype......: 0x14c (I386) [[ 4 section(s) ]] name, viradd, virsiz, rawdsiz, ntropy, md5 .text, 0x1000, 0x16000, 0x15400, 7.37, ce4524ea55f654f65c7f2cb72527a218 .data, 0x17000, 0x3000, 0x2400, 7.01, 508d494700ea2f78532ab0e9b5b4f763 .rsrc, 0x1A000, 0x1000, 0x400, 3.32, d9efc885f9d574c2ac800226022b269d .reloc, 0x1B000, 0x1000, 0x800, 6.43, 2009c358bce6e1614c38fda032bb8351 [[ 7 import(s) ]] WINMM.dll: waveInGetNumDevs, waveInGetDevCapsA, mixerOpen, mixerGetNumDevs, mixerGetID, mixerGetDevCapsA, mixerClose USER32.dll: TranslateMessage, TrackPopupMenu, SystemParametersInfoA, ShowWindow, SetForegroundWindow, SendMessageA, ReleaseDC, RegisterClassA, PostQuitMessage, PostMessageA, LoadStringA, LoadImageA, LoadIconA, LoadCursorA, InsertMenuItemA, GetWindow, GetSysColor, GetMessageA, GetMenuCheckMarkDimensions, GetDesktopWindow, GetDC, GetCursorPos, GetClassNameA, DispatchMessageA, DestroyMenu, DefWindowProcA, CreateWindowExA, CreatePopupMenu SHELL32.dll: Shell_NotifyIconA ADVAPI32.dll: AllocateAndInitializeSid, FreeSid, GetLengthSid, InitializeAcl, InitializeSecurityDescriptor, RegCloseKey, RegCreateKeyA, RegCreateKeyExA, RegDeleteValueA, RegOpenKeyA, RegOpenKeyExA, RegQueryValueExA, RegSetKeySecurity, RegSetValueExA, SetSecurityDescriptorDacl, AddAccessAllowedAce SETUPAPI.dll: SetupDiSetClassInstallParamsA, SetupDiGetDeviceInterfaceDetailA, SetupDiGetDeviceInstanceIdA, SetupDiGetClassDevsA, SetupDiEnumDeviceInterfaces, SetupDiEnumDeviceInfo, SetupDiDestroyDeviceInfoList, SetupDiCallClassInstaller KERNEL32.dll: SearchPathA, RtlUnwind, SetEvent, SetHandleCount, Sleep, TerminateProcess, UnhandledExceptionFilter, VirtualAlloc, VirtualFree, WaitForMultipleObjects, WideCharToMultiByte, WinExec, WriteFile, lstrcmpA, lstrcmpiA, lstrcpyA, lstrlenA, WaitForSingleObject, MultiByteToWideChar, LocalFree, LocalAlloc, LoadLibraryA, LCMapStringW, LCMapStringA, HeapReAlloc, HeapFree, HeapDestroy, CloseHandle, CreateEventA, CreateFileA, CreateMutexA, CreateProcessA, CreateThread, DeviceIoControl, ExitProcess, FreeEnvironmentStringsA, FreeEnvironmentStringsW, GetACP, GetCPInfo, GetCommandLineA, GetCurrentProcess, GetEnvironmentStringsA, GetEnvironmentStringsW, GetFileType, GetLastError, GetModuleFileNameA, GetModuleHandleA, GetOEMCP, GetProcAddress, GetProcessHeap, GetStartupInfoA, GetStdHandle, GetStringTypeA, GetStringTypeW, GetVersion, GetVersionExA, HeapAlloc, HeapCreate GDI32.dll: CreateCompatibleDC, CreateFontIndirectA, BitBlt, CreatePen, DeleteDC, DeleteObject, ExtTextOutA, GetBkMode, GetTextAlign, GetTextColor, GetTextExtentPoint32A, LineTo, MoveToEx, Rectangle, SelectObject, SetBkMode, SetTextAlign, SetTextColor, CreateBrushIndirect Prevx Info: Prevx ThreatExpert: ThreatExpert info: ThreatExpert Report ExifTool: file metadata CharacterSet: Windows, Latin1 CodeSize: 90112 Comments: RegRun Security Suite - Greatis Software CompanyName: Greatis Software EntryPoint: 0xbf6a FileDescription: RunGuard file checker FileFlagsMask: 0x003f FileOS: Win32 FileSize: 98 kB FileSubtype: 0 FileType: Win32 DLL FileVersion: 3.9.2.112 FileVersionNumber: 3.9.2.112 ImageVersion: 0.0 InitializedDataSize: 20480 InternalName: RunGuard.exe LanguageCode: English (U.S.) LegalCopyright: Greatis Software 2003 LegalTrademarks: RegRun Security Suite LinkerVersion: 5.11 MIMEType: application/octet-stream MachineType: Intel 386 or later, and compatibles OSVersion: 4.0 ObjectFileType: Executable application OriginalFilename: RunGuard.exe PEType: PE32 ProductName: RegRun Security Suite ProductVersion: 3.9 ProductVersionNumber: 3.9.2.112 Subsystem: Windows GUI SubsystemVersion: 4.0 TimeStamp: 2010:04:16 14:53:36+02:00 UninitializedDataSize: 0

Voici le rapport demandé. Encore merci et bonne lecture. Log ZHPDiag en zip car les .txt ne passent pas. © CJoint.com, 2010

log en dessous...

Je n'arrive pas a envoyer la suite... Cjoint ne repond pas non plus, la suite à venir...

Je n'ai pas compris ou "envoyer le fichier". Bitdefender dit qu'il est sans risque.

Idem la solution est vraiment dans Firefox et Adblock Plus. Adblock Plus disponible - IcI -