Aller au contenu

joe65

Membres
 Afficher le profil  Afficher son activité

  • Compteur de contenus

    64

  • Inscription

  • Dernière visite

 Type de contenu 

Tout ce qui a été posté par joe65

  1. joe65
    pas de chance c est toujours pareil le meme message que la premiere fois
  2. joe65
    j ai trouvé ça je ne sais pas si ça peut aider Qu'est-ce que Safeboot.sys Pilote McAfee Endpoint Encryption - McAfee Endpoint Encryption - McAfee, Inc Exécuter un scan GRATUIT pour les erreurs liées à SAFEBOOT.SYS Safeboot.sys avec la description du pilote McAfee Endpoint Encryption est un fichier de pilote de la compagnie McAfee, Inc appartenant à chiffrement produit McAfee Endpoint. Le fichier est signé numériquement à partir de MCAFEE INTERNATIONAL LTD. - Temps de VeriSign Estampage Signer - G2 Nous ne recommandons pas la suppression des fichiers signés numériquement à partir de MCAFEE INTERNATIONAL LTD.
  3. joe65
    ok j ai fait unlock .......puis ok relancé tdskiller mais a priori j ai le meme rapport ci joint 11:25:28.0328 5568 TDSS rootkit removing tool 2.7.20.0 Mar 9 2012 17:10:43 11:25:28.0700 5568 ============================================================ 11:25:28.0700 5568 Current date / time: 2012/03/18 11:25:28.0700 11:25:28.0700 5568 SystemInfo: 11:25:28.0700 5568 11:25:28.0700 5568 OS Version: 6.1.7601 ServicePack: 1.0 11:25:28.0700 5568 Product type: Workstation 11:25:28.0700 5568 ComputerName: JOUJOU 11:25:28.0700 5568 UserName: FRANCE 11:25:28.0700 5568 Windows directory: C:\windows 11:25:28.0700 5568 System windows directory: C:\windows 11:25:28.0700 5568 Processor architecture: Intel x86 11:25:28.0700 5568 Number of processors: 2 11:25:28.0700 5568 Page size: 0x1000 11:25:28.0700 5568 Boot type: Normal boot 11:25:28.0700 5568 ============================================================ 11:25:30.0392 5568 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050 11:25:30.0407 5568 \Device\Harddisk0\DR0: 11:25:30.0407 5568 MBR used 11:25:30.0407 5568 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x96000 11:25:30.0407 5568 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x96800, BlocksNum 0x23197800 11:25:30.0407 5568 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x2322E000, BlocksNum 0x1E00000 11:25:30.0407 5568 \Device\Harddisk0\DR0\Partition3: MBR, Type 0xC, StartLBA 0x2502E000, BlocksNum 0x3FD800 11:25:30.0454 5568 Initialize success 11:25:30.0454 5568 ============================================================ 11:25:37.0831 0740 ============================================================ 11:25:37.0831 0740 Scan started 11:25:37.0831 0740 Mode: Manual; 11:25:37.0831 0740 ============================================================ 11:25:38.0938 0740 1394ohci (1b133875b8aa8ac48969bd3458afe9f5) C:\windows\system32\drivers\1394ohci.sys 11:25:38.0966 0740 1394ohci - ok 11:25:39.0012 0740 5U876UVC (080a40550fb95a328917512f3f5a0409) C:\windows\system32\DRIVERS\5U876.sys 11:25:39.0030 0740 5U876UVC - ok 11:25:39.0199 0740 Accelerometer (4df5e6215a102a192b2b6dbb61f2fba5) C:\windows\system32\DRIVERS\Accelerometer.sys 11:25:39.0212 0740 Accelerometer - ok 11:25:39.0260 0740 ACPI (cea80c80bed809aa0da6febc04733349) C:\windows\system32\drivers\ACPI.sys 11:25:39.0269 0740 ACPI - ok 11:25:39.0317 0740 AcpiPmi (1efbc664abff416d1d07db115dcb264f) C:\windows\system32\drivers\acpipmi.sys 11:25:39.0327 0740 AcpiPmi - ok 11:25:39.0356 0740 adp94xx (21e785ebd7dc90a06391141aac7892fb) C:\windows\system32\DRIVERS\adp94xx.sys 11:25:39.0403 0740 adp94xx - ok 11:25:39.0418 0740 adpahci (0c676bc278d5b59ff5abd57bbe9123f2) C:\windows\system32\DRIVERS\adpahci.sys 11:25:39.0465 0740 adpahci - ok 11:25:39.0481 0740 adpu320 (7c7b5ee4b7b822ec85321fe23a27db33) C:\windows\system32\DRIVERS\adpu320.sys 11:25:39.0512 0740 adpu320 - ok 11:25:39.0574 0740 AFD (9ebbba55060f786f0fcaa3893bfa2806) C:\windows\system32\drivers\afd.sys 11:25:39.0590 0740 AFD - ok 11:25:39.0652 0740 AgereSoftModem (7e10e3bb9b258ad8a9300f91214d67b9) C:\windows\system32\DRIVERS\AGRSM.sys 11:25:39.0730 0740 AgereSoftModem - ok 11:25:39.0793 0740 agp440 (507812c3054c21cef746b6ee3d04dd6e) C:\windows\system32\drivers\agp440.sys 11:25:39.0793 0740 agp440 - ok 11:25:39.0808 0740 aic78xx (8b30250d573a8f6b4bd23195160d8707) C:\windows\system32\DRIVERS\djsvs.sys 11:25:39.0824 0740 aic78xx - ok 11:25:39.0855 0740 aliide (0d40bcf52ea90fc7df2aeab6503dea44) C:\windows\system32\drivers\aliide.sys 11:25:39.0871 0740 aliide - ok 11:25:39.0904 0740 amdagp (3c6600a0696e90a463771c7422e23ab5) C:\windows\system32\drivers\amdagp.sys 11:25:39.0920 0740 amdagp - ok 11:25:39.0942 0740 amdide (cd5914170297126b6266860198d1d4f0) C:\windows\system32\drivers\amdide.sys 11:25:39.0954 0740 amdide - ok 11:25:39.0981 0740 AmdK8 (00dda200d71bac534bf56a9db5dfd666) C:\windows\system32\DRIVERS\amdk8.sys 11:25:39.0998 0740 AmdK8 - ok 11:25:40.0018 0740 AmdPPM (3cbf30f5370fda40dd3e87df38ea53b6) C:\windows\system32\DRIVERS\amdppm.sys 11:25:40.0022 0740 AmdPPM - ok 11:25:40.0050 0740 amdsata (d320bf87125326f996d4904fe24300fc) C:\windows\system32\drivers\amdsata.sys 11:25:40.0067 0740 amdsata - ok 11:25:40.0097 0740 amdsbs (ea43af0c423ff267355f74e7a53bdaba) C:\windows\system32\DRIVERS\amdsbs.sys 11:25:40.0117 0740 amdsbs - ok 11:25:40.0143 0740 amdxata (46387fb17b086d16dea267d5be23a2f2) C:\windows\system32\drivers\amdxata.sys 11:25:40.0158 0740 amdxata - ok 11:25:40.0220 0740 AppID (aea177f783e20150ace5383ee368da19) C:\windows\system32\drivers\appid.sys 11:25:40.0236 0740 AppID - ok 11:25:40.0268 0740 arc (2932004f49677bd84dbc72edb754ffb3) C:\windows\system32\DRIVERS\arc.sys 11:25:40.0286 0740 arc - ok 11:25:40.0314 0740 arcsas (5d6f36c46fd283ae1b57bd2e9feb0bc7) C:\windows\system32\DRIVERS\arcsas.sys 11:25:40.0332 0740 arcsas - ok 11:25:40.0384 0740 AsyncMac (add2ade1c2b285ab8378d2daaf991481) C:\windows\system32\DRIVERS\asyncmac.sys 11:25:40.0397 0740 AsyncMac - ok 11:25:40.0433 0740 atapi (338c86357871c167a96ab976519bf59e) C:\windows\system32\drivers\atapi.sys 11:25:40.0434 0740 atapi - ok 11:25:40.0498 0740 AtiHdmiService (e2398389648b5d44dc63ca43fdd5b3f8) C:\windows\system32\drivers\AtiHdmi.sys 11:25:40.0517 0740 AtiHdmiService - ok 11:25:40.0667 0740 atikmdag (c97be8350fbcb1960b22fad2e6c2b514) C:\windows\system32\DRIVERS\atikmdag.sys 11:25:40.0861 0740 atikmdag - ok 11:25:40.0892 0740 AtiPcie (b73c832088dd54b55e04ff6f9646ad8c) C:\windows\system32\DRIVERS\AtiPcie.sys 11:25:40.0899 0740 AtiPcie - ok 11:25:40.0962 0740 AVFSFilter - ok 11:25:41.0024 0740 avgio (f1d43170fdd7399ee17ea32d4f868b0c) C:\Program Files\Avira\AntiVir Desktop\avgio.sys 11:25:41.0040 0740 avgio - ok 11:25:41.0071 0740 avgntflt (1e4114685de1ffa9675e09c6a1fb3f4b) C:\windows\system32\DRIVERS\avgntflt.sys 11:25:41.0086 0740 avgntflt - ok 11:25:41.0133 0740 avipbb (0f78d3dae6dedd99ae54c9491c62adf2) C:\windows\system32\DRIVERS\avipbb.sys 11:25:41.0164 0740 avipbb - ok 11:25:41.0211 0740 b06bdrv (1a231abec60fd316ec54c66715543cec) C:\windows\system32\DRIVERS\bxvbdx.sys 11:25:41.0258 0740 b06bdrv - ok 11:25:41.0289 0740 b57nd60x (bd8869eb9cde6bbe4508d869929869ee) C:\windows\system32\DRIVERS\b57nd60x.sys 11:25:41.0320 0740 b57nd60x - ok 11:25:41.0383 0740 BCM43XX (eb7c2dadf52f50f69f198c14c3556dc1) C:\windows\system32\DRIVERS\bcmwl6.sys 11:25:41.0414 0740 BCM43XX - ok 11:25:41.0445 0740 Beep (505506526a9d467307b3c393dedaf858) C:\windows\system32\drivers\Beep.sys 11:25:41.0462 0740 Beep - ok 11:25:41.0501 0740 blbdrive (2287078ed48fcfc477b05b20cf38f36f) C:\windows\system32\DRIVERS\blbdrive.sys 11:25:41.0513 0740 blbdrive - ok 11:25:41.0547 0740 bowser (8f2da3028d5fcbd1a060a3de64cd6506) C:\windows\system32\DRIVERS\bowser.sys 11:25:41.0564 0740 bowser - ok 11:25:41.0590 0740 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\windows\system32\DRIVERS\BrFiltLo.sys 11:25:41.0598 0740 BrFiltLo - ok 11:25:41.0623 0740 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\windows\system32\DRIVERS\BrFiltUp.sys 11:25:41.0632 0740 BrFiltUp - ok 11:25:41.0673 0740 BridgeMP (77361d72a04f18809d0efb6cceb74d4b) C:\windows\system32\DRIVERS\bridge.sys 11:25:41.0690 0740 BridgeMP - ok 11:25:41.0733 0740 Brserid (845b8ce732e67f3b4133164868c666ea) C:\windows\System32\Drivers\Brserid.sys 11:25:41.0761 0740 Brserid - ok 11:25:41.0785 0740 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\windows\System32\Drivers\BrSerWdm.sys 11:25:41.0799 0740 BrSerWdm - ok 11:25:41.0827 0740 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\windows\System32\Drivers\BrUsbMdm.sys 11:25:41.0837 0740 BrUsbMdm - ok 11:25:41.0855 0740 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\windows\System32\Drivers\BrUsbSer.sys 11:25:41.0863 0740 BrUsbSer - ok 11:25:41.0908 0740 BthEnum (2865a5c8e98c70c605f417908cebb3a4) C:\windows\system32\drivers\BthEnum.sys 11:25:41.0921 0740 BthEnum - ok 11:25:41.0950 0740 BTHMODEM (ed3df7c56ce0084eb2034432fc56565a) C:\windows\system32\DRIVERS\bthmodem.sys 11:25:41.0966 0740 BTHMODEM - ok 11:25:42.0002 0740 BthPan (ad1872e5829e8a2c3b5b4b641c3eab0e) C:\windows\system32\DRIVERS\bthpan.sys 11:25:42.0019 0740 BthPan - ok 11:25:42.0058 0740 BTHPORT (c2fbf6d271d9a94d839c416bf186ead9) C:\windows\System32\Drivers\BTHport.sys 11:25:42.0108 0740 BTHPORT - ok 11:25:42.0157 0740 BTHUSB (c81e9413a25a439f436b1d4b6a0cf9e9) C:\windows\System32\Drivers\BTHUSB.sys 11:25:42.0176 0740 BTHUSB - ok 11:25:42.0210 0740 btwaudio (d57d29132efe13a83133d9bd449e0cf1) C:\windows\system32\drivers\btwaudio.sys 11:25:42.0229 0740 btwaudio - ok 11:25:42.0269 0740 btwavdt (d282c14a69357d0e1bafaecc2ca98c3a) C:\windows\system32\DRIVERS\btwavdt.sys 11:25:42.0288 0740 btwavdt - ok 11:25:42.0324 0740 btwl2cap (aafd7cb76ba61fbb08e302da208c974a) C:\windows\system32\DRIVERS\btwl2cap.sys 11:25:42.0338 0740 btwl2cap - ok 11:25:42.0363 0740 btwrchid (02eb4d2b05967df2d32f29c84ab1fb17) C:\windows\system32\DRIVERS\btwrchid.sys 11:25:42.0376 0740 btwrchid - ok 11:25:42.0446 0740 catchme - ok 11:25:42.0473 0740 cdfs (77ea11b065e0a8ab902d78145ca51e10) C:\windows\system32\DRIVERS\cdfs.sys 11:25:42.0505 0740 cdfs - ok 11:25:42.0551 0740 cdrom (be167ed0fdb9c1fa1133953c18d5a6c9) C:\windows\system32\DRIVERS\cdrom.sys 11:25:42.0567 0740 cdrom - ok 11:25:42.0614 0740 circlass (3fe3fe94a34df6fb06e6418d0f6a0060) C:\windows\system32\DRIVERS\circlass.sys 11:25:42.0629 0740 circlass - ok 11:25:42.0661 0740 CLFS (635181e0e9bbf16871bf5380d71db02d) C:\windows\system32\CLFS.sys 11:25:42.0676 0740 CLFS - ok 11:25:42.0707 0740 CmBatt (dea805815e587dad1dd2c502220b5616) C:\windows\system32\DRIVERS\CmBatt.sys 11:25:42.0723 0740 CmBatt - ok 11:25:42.0770 0740 cmdide (c537b1db64d495b9b4717b4d6d9edbf2) C:\windows\system32\drivers\cmdide.sys 11:25:42.0785 0740 cmdide - ok 11:25:42.0848 0740 CNG (6427525d76f61d0c519b008d3680e8e7) C:\windows\system32\Drivers\cng.sys 11:25:42.0895 0740 CNG - ok 11:25:42.0926 0740 Compbatt (a6023d3823c37043986713f118a89bee) C:\windows\system32\DRIVERS\compbatt.sys 11:25:42.0941 0740 Compbatt - ok 11:25:42.0988 0740 CompositeBus (cbe8c58a8579cfe5fccf809e6f114e89) C:\windows\system32\drivers\CompositeBus.sys 11:25:43.0004 0740 CompositeBus - ok 11:25:43.0051 0740 crcdisk (2c4ebcfc84a9b44f209dff6c6e6c61d1) C:\windows\system32\DRIVERS\crcdisk.sys 11:25:43.0065 0740 crcdisk - ok 11:25:43.0152 0740 DfsC (f024449c97ec1e464aaffda18593db88) C:\windows\system32\Drivers\dfsc.sys 11:25:43.0169 0740 DfsC - ok 11:25:43.0214 0740 discache (1a050b0274bfb3890703d490f330c0da) C:\windows\system32\drivers\discache.sys 11:25:43.0219 0740 discache - ok 11:25:43.0241 0740 Disk (565003f326f99802e68ca78f2a68e9ff) C:\windows\system32\DRIVERS\disk.sys 11:25:43.0260 0740 Disk - ok 11:25:43.0313 0740 drmkaud (b918e7c5f9bf77202f89e1a9539f2eb4) C:\windows\system32\drivers\drmkaud.sys 11:25:43.0321 0740 drmkaud - ok 11:25:43.0377 0740 DXGKrnl (23f5d28378a160352ba8f817bd8c71cb) C:\windows\System32\drivers\dxgkrnl.sys 11:25:43.0438 0740 DXGKrnl - ok 11:25:43.0549 0740 ebdrv (024e1b5cac09731e4d868e64dbfb4ab0) C:\windows\system32\DRIVERS\evbdx.sys 11:25:43.0699 0740 ebdrv - ok 11:25:43.0766 0740 elxstor (0ed67910c8c326796faa00b2bf6d9d3c) C:\windows\system32\DRIVERS\elxstor.sys 11:25:43.0812 0740 elxstor - ok 11:25:43.0856 0740 ErrDev (8fc3208352dd3912c94367a206ab3f11) C:\windows\system32\drivers\errdev.sys 11:25:43.0864 0740 ErrDev - ok 11:25:43.0929 0740 exfat (2dc9108d74081149cc8b651d3a26207f) C:\windows\system32\drivers\exfat.sys 11:25:43.0948 0740 exfat - ok 11:25:43.0977 0740 fastfat (7e0ab74553476622fb6ae36f73d97d35) C:\windows\system32\drivers\fastfat.sys 11:25:43.0997 0740 fastfat - ok 11:25:44.0030 0740 fdc (e817a017f82df2a1f8cfdbda29388b29) C:\windows\system32\DRIVERS\fdc.sys 11:25:44.0046 0740 fdc - ok 11:25:44.0077 0740 FileInfo (6cf00369c97f3cf563be99be983d13d8) C:\windows\system32\drivers\fileinfo.sys 11:25:44.0108 0740 FileInfo - ok 11:25:44.0139 0740 Filetrace (42c51dc94c91da21cb9196eb64c45db9) C:\windows\system32\drivers\filetrace.sys 11:25:44.0139 0740 Filetrace - ok 11:25:44.0170 0740 flpydisk (87907aa70cb3c56600f1c2fb8841579b) C:\windows\system32\DRIVERS\flpydisk.sys 11:25:44.0170 0740 flpydisk - ok 11:25:44.0217 0740 FltMgr (7520ec808e0c35e0ee6f841294316653) C:\windows\system32\drivers\fltmgr.sys 11:25:44.0217 0740 FltMgr - ok 11:25:44.0264 0740 FsDepends (1a16b57943853e598cff37fe2b8cbf1d) C:\windows\system32\drivers\FsDepends.sys 11:25:44.0280 0740 FsDepends - ok 11:25:44.0295 0740 Fs_Rec (a574b4360e438977038aae4bf60d79a2) C:\windows\system32\drivers\Fs_Rec.sys 11:25:44.0311 0740 Fs_Rec - ok 11:25:44.0373 0740 fvevol (8a73e79089b282100b9393b644cb853b) C:\windows\system32\DRIVERS\fvevol.sys 11:25:44.0373 0740 fvevol - ok 11:25:44.0404 0740 gagp30kx (65ee0c7a58b65e74ae05637418153938) C:\windows\system32\DRIVERS\gagp30kx.sys 11:25:44.0420 0740 gagp30kx - ok 11:25:44.0467 0740 hcw85cir (c44e3c2bab6837db337ddee7544736db) C:\windows\system32\drivers\hcw85cir.sys 11:25:44.0482 0740 hcw85cir - ok 11:25:44.0529 0740 HdAudAddService (a5ef29d5315111c80a5c1abad14c8972) C:\windows\system32\drivers\HdAudio.sys 11:25:44.0584 0740 HdAudAddService - ok 11:25:44.0638 0740 HDAudBus (9036377b8a6c15dc2eec53e489d159b5) C:\windows\system32\drivers\HDAudBus.sys 11:25:44.0642 0740 HDAudBus - ok 11:25:44.0667 0740 HidBatt (1d58a7f3e11a9731d0eaaaa8405acc36) C:\windows\system32\DRIVERS\HidBatt.sys 11:25:44.0678 0740 HidBatt - ok 11:25:44.0708 0740 HidBth (89448f40e6df260c206a193a4683ba78) C:\windows\system32\DRIVERS\hidbth.sys 11:25:44.0726 0740 HidBth - ok 11:25:44.0756 0740 HidIr (cf50b4cf4a4f229b9f3c08351f99ca5e) C:\windows\system32\DRIVERS\hidir.sys 11:25:44.0769 0740 HidIr - ok 11:25:44.0802 0740 HidUsb (10c19f8290891af023eaec0832e1eb4d) C:\windows\system32\DRIVERS\hidusb.sys 11:25:44.0814 0740 HidUsb - ok 11:25:44.0887 0740 hpdskflt (e1d82f0c8456abb03b7df5d623ca47d1) C:\windows\system32\DRIVERS\hpdskflt.sys 11:25:44.0901 0740 hpdskflt - ok 11:25:44.0940 0740 HpqKbFiltr (1210960ff8928950d2a786895b0c424a) C:\windows\system32\DRIVERS\HpqKbFiltr.sys 11:25:44.0951 0740 HpqKbFiltr - ok 11:25:44.0993 0740 HpSAMD (295fdc419039090eb8b49ffdbb374549) C:\windows\system32\drivers\HpSAMD.sys 11:25:45.0011 0740 HpSAMD - ok 11:25:45.0093 0740 HTTP (871917b07a141bff43d76d8844d48106) C:\windows\system32\drivers\HTTP.sys 11:25:45.0114 0740 HTTP - ok 11:25:45.0148 0740 hwdatacard (4e370a583e78b614918c8f2cd5b733ef) C:\windows\system32\DRIVERS\ewusbmdm.sys 11:25:45.0165 0740 hwdatacard - ok 11:25:45.0207 0740 hwpolicy (0c4e035c7f105f1299258c90886c64c5) C:\windows\system32\drivers\hwpolicy.sys 11:25:45.0209 0740 hwpolicy - ok 11:25:45.0258 0740 i8042prt (f151f0bdc47f4a28b1b20a0818ea36d6) C:\windows\system32\drivers\i8042prt.sys 11:25:45.0277 0740 i8042prt - ok 11:25:45.0332 0740 iaStorV (5cd5f9a5444e6cdcb0ac89bd62d8b76e) C:\windows\system32\drivers\iaStorV.sys 11:25:45.0374 0740 iaStorV - ok 11:25:45.0678 0740 igfx (ad626f6964f4d364d226c39e06872dd3) C:\windows\system32\DRIVERS\igdkmd32.sys 11:25:45.0865 0740 igfx - ok 11:25:45.0912 0740 iirsp (4173ff5708f3236cf25195fecd742915) C:\windows\system32\DRIVERS\iirsp.sys 11:25:45.0928 0740 iirsp - ok 11:25:46.0006 0740 InputFilter_Hid_FlexDef2b (d6782400e92c62ed2bf3af8ed4753738) C:\windows\system32\DRIVERS\InputFilter_FlexDef2b.sys 11:25:46.0006 0740 InputFilter_Hid_FlexDef2b - ok 11:25:46.0068 0740 intelide (a0f12f2c9ba6c72f3987ce780e77c130) C:\windows\system32\drivers\intelide.sys 11:25:46.0084 0740 intelide - ok 11:25:46.0115 0740 intelppm (3b514d27bfc4accb4037bc6685f766e0) C:\windows\system32\DRIVERS\intelppm.sys 11:25:46.0140 0740 intelppm - ok 11:25:46.0180 0740 IpFilterDriver (709d1761d3b19a932ff0238ea6d50200) C:\windows\system32\DRIVERS\ipfltdrv.sys 11:25:46.0197 0740 IpFilterDriver - ok 11:25:46.0236 0740 IPMIDRV (4bd7134618c1d2a27466a099062547bf) C:\windows\system32\drivers\IPMIDrv.sys 11:25:46.0255 0740 IPMIDRV - ok 11:25:46.0285 0740 IPNAT (a5fa468d67abcdaa36264e463a7bb0cd) C:\windows\system32\drivers\ipnat.sys 11:25:46.0290 0740 IPNAT - ok 11:25:46.0336 0740 IRENUM (42996cff20a3084a56017b7902307e9f) C:\windows\system32\drivers\irenum.sys 11:25:46.0346 0740 IRENUM - ok 11:25:46.0385 0740 isapnp (1f32bb6b38f62f7df1a7ab7292638a35) C:\windows\system32\drivers\isapnp.sys 11:25:46.0401 0740 isapnp - ok 11:25:46.0445 0740 iScsiPrt (cb7a9abb12b8415bce5d74994c7ba3ae) C:\windows\system32\drivers\msiscsi.sys 11:25:46.0475 0740 iScsiPrt - ok 11:25:46.0508 0740 kbdclass (adef52ca1aeae82b50df86b56413107e) C:\windows\system32\drivers\kbdclass.sys 11:25:46.0523 0740 kbdclass - ok 11:25:46.0553 0740 kbdhid (9e3ced91863e6ee98c24794d05e27a71) C:\windows\system32\drivers\kbdhid.sys 11:25:46.0565 0740 kbdhid - ok 11:25:46.0621 0740 KSecDD (f4647bb23db9038a7536cf6b68f4207f) C:\windows\system32\Drivers\ksecdd.sys 11:25:46.0640 0740 KSecDD - ok 11:25:46.0676 0740 KSecPkg (e73cae53bbb72ba26918492c6b4c229d) C:\windows\system32\Drivers\ksecpkg.sys 11:25:46.0700 0740 KSecPkg - ok 11:25:46.0783 0740 lltdio (f7611ec07349979da9b0ae1f18ccc7a6) C:\windows\system32\DRIVERS\lltdio.sys 11:25:46.0798 0740 lltdio - ok 11:25:46.0856 0740 LSI_FC (eb119a53ccf2acc000ac71b065b78fef) C:\windows\system32\DRIVERS\lsi_fc.sys 11:25:46.0875 0740 LSI_FC - ok 11:25:46.0919 0740 LSI_SAS (8ade1c877256a22e49b75d1cc9161f9c) C:\windows\system32\DRIVERS\lsi_sas.sys 11:25:46.0937 0740 LSI_SAS - ok 11:25:46.0969 0740 LSI_SAS2 (dc9dc3d3daa0e276fd2ec262e38b11e9) C:\windows\system32\DRIVERS\lsi_sas2.sys 11:25:46.0986 0740 LSI_SAS2 - ok 11:25:47.0011 0740 LSI_SCSI (0a036c7d7cab643a7f07135ac47e0524) C:\windows\system32\DRIVERS\lsi_scsi.sys 11:25:47.0029 0740 LSI_SCSI - ok 11:25:47.0061 0740 luafv (6703e366cc18d3b6e534f5cf7df39cee) C:\windows\system32\drivers\luafv.sys 11:25:47.0080 0740 luafv - ok 11:25:47.0155 0740 MBAMProtector (b7ca8cc3f978201856b6ab82f40953c3) C:\windows\system32\drivers\mbam.sys 11:25:47.0171 0740 MBAMProtector - ok 11:25:47.0233 0740 megasas (0fff5b045293002ab38eb1fd1fc2fb74) C:\windows\system32\DRIVERS\megasas.sys 11:25:47.0249 0740 megasas - ok 11:25:47.0280 0740 MegaSR (dcbab2920c75f390caf1d29f675d03d6) C:\windows\system32\DRIVERS\MegaSR.sys 11:25:47.0295 0740 MegaSR - ok 11:25:47.0358 0740 MfeAVFK (64b96de8c492bd435372d9130a535f1d) C:\windows\system32\drivers\MfeAVFK.sys 11:25:47.0373 0740 MfeAVFK - ok 11:25:47.0389 0740 MfeBOPK (078e87a89d36cc3516f19d5fb518bddc) C:\windows\system32\drivers\MfeBOPK.sys 11:25:47.0420 0740 MfeBOPK - ok 11:25:47.0451 0740 mfehidk (168c565101fd5b9db694efdec91fafa9) C:\windows\system32\drivers\mfehidk.sys 11:25:47.0483 0740 mfehidk - ok 11:25:47.0514 0740 MfeRKDK (e0842f67dc9bc4d21d1e319610ebe9e5) C:\windows\system32\drivers\MfeRKDK.sys 11:25:47.0529 0740 MfeRKDK - ok 11:25:47.0561 0740 mfetdik (43a7acbbd70ecd62f0b63486c72089a3) C:\windows\system32\drivers\mfetdik.sys 11:25:47.0576 0740 mfetdik - ok 11:25:47.0623 0740 Modem (f001861e5700ee84e2d4e52c712f4964) C:\windows\system32\drivers\modem.sys 11:25:47.0623 0740 Modem - ok 11:25:47.0654 0740 monitor (79d10964de86b292320e9dfe02282a23) C:\windows\system32\DRIVERS\monitor.sys 11:25:47.0670 0740 monitor - ok 11:25:47.0721 0740 mouclass (fb18cc1d4c2e716b6b903b0ac0cc0609) C:\windows\system32\DRIVERS\mouclass.sys 11:25:47.0723 0740 mouclass - ok 11:25:47.0752 0740 mouhid (2c388d2cd01c9042596cf3c8f3c7b24d) C:\windows\system32\DRIVERS\mouhid.sys 11:25:47.0765 0740 mouhid - ok 11:25:47.0819 0740 mountmgr (fc8771f45ecccfd89684e38842539b9b) C:\windows\system32\drivers\mountmgr.sys 11:25:47.0822 0740 mountmgr - ok 11:25:47.0886 0740 mpio (2d699fb6e89ce0d8da14ecc03b3edfe0) C:\windows\system32\drivers\mpio.sys 11:25:47.0911 0740 mpio - ok 11:25:47.0934 0740 mpsdrv (ad2723a7b53dd1aacae6ad8c0bfbf4d0) C:\windows\system32\drivers\mpsdrv.sys 11:25:47.0950 0740 mpsdrv - ok 11:25:48.0015 0740 MRxDAV (ceb46ab7c01c9f825f8cc6babc18166a) C:\windows\system32\drivers\mrxdav.sys 11:25:48.0034 0740 MRxDAV - ok 11:25:48.0085 0740 mrxsmb (5d16c921e3671636c0eba3bbaac5fd25) C:\windows\system32\DRIVERS\mrxsmb.sys 11:25:48.0105 0740 mrxsmb - ok 11:25:48.0171 0740 mrxsmb10 (6d17a4791aca19328c685d256349fefc) C:\windows\system32\DRIVERS\mrxsmb10.sys 11:25:48.0198 0740 mrxsmb10 - ok 11:25:48.0230 0740 mrxsmb20 (b81f204d146000be76651a50670a5e9e) C:\windows\system32\DRIVERS\mrxsmb20.sys 11:25:48.0248 0740 mrxsmb20 - ok 11:25:48.0290 0740 msahci (012c5f4e9349e711e11e0f19a8589f0a) C:\windows\system32\drivers\msahci.sys 11:25:48.0303 0740 msahci - ok 11:25:48.0336 0740 msdsm (55055f8ad8be27a64c831322a780a228) C:\windows\system32\drivers\msdsm.sys 11:25:48.0358 0740 msdsm - ok 11:25:48.0413 0740 Msfs (daefb28e3af5a76abcc2c3078c07327f) C:\windows\system32\drivers\Msfs.sys 11:25:48.0425 0740 Msfs - ok 11:25:48.0460 0740 mshidkmdf (3e1e5767043c5af9367f0056295e9f84) C:\windows\System32\drivers\mshidkmdf.sys 11:25:48.0468 0740 mshidkmdf - ok 11:25:48.0524 0740 msisadrv (0a4e5757ae09fa9622e3158cc1aef114) C:\windows\system32\drivers\msisadrv.sys 11:25:48.0536 0740 msisadrv - ok 11:25:48.0587 0740 MSKSSRV (8c0860d6366aaffb6c5bb9df9448e631) C:\windows\system32\drivers\MSKSSRV.sys 11:25:48.0597 0740 MSKSSRV - ok 11:25:48.0650 0740 MSPCLOCK (3ea8b949f963562cedbb549eac0c11ce) C:\windows\system32\drivers\MSPCLOCK.sys 11:25:48.0658 0740 MSPCLOCK - ok 11:25:48.0678 0740 MSPQM (f456e973590d663b1073e9c463b40932) C:\windows\system32\drivers\MSPQM.sys 11:25:48.0694 0740 MSPQM - ok 11:25:48.0725 0740 MsRPC (0e008fc4819d238c51d7c93e7b41e560) C:\windows\system32\drivers\MsRPC.sys 11:25:48.0756 0740 MsRPC - ok 11:25:48.0788 0740 mssmbios (fc6b9ff600cc585ea38b12589bd4e246) C:\windows\system32\drivers\mssmbios.sys 11:25:48.0788 0740 mssmbios - ok 11:25:48.0803 0740 MSTEE (b42c6b921f61a6e55159b8be6cd54a36) C:\windows\system32\drivers\MSTEE.sys 11:25:48.0819 0740 MSTEE - ok 11:25:48.0866 0740 MTConfig (33599130f44e1f34631cea241de8ac84) C:\windows\system32\DRIVERS\MTConfig.sys 11:25:48.0881 0740 MTConfig - ok 11:25:48.0912 0740 Mup (159fad02f64e6381758c990f753bcc80) C:\windows\system32\Drivers\mup.sys 11:25:48.0928 0740 Mup - ok 11:25:48.0975 0740 NativeWifiP (26384429fcd85d83746f63e798ab1480) C:\windows\system32\DRIVERS\nwifi.sys 11:25:49.0022 0740 NativeWifiP - ok 11:25:49.0084 0740 NDIS (e7c54812a2aaf43316eb6930c1ffa108) C:\windows\system32\drivers\ndis.sys 11:25:49.0100 0740 NDIS - ok 11:25:49.0131 0740 NdisCap (0e1787aa6c9191d3d319e8bafe86f80c) C:\windows\system32\DRIVERS\ndiscap.sys 11:25:49.0146 0740 NdisCap - ok 11:25:49.0178 0740 NdisTapi (e4a8aec125a2e43a9e32afeea7c9c888) C:\windows\system32\DRIVERS\ndistapi.sys 11:25:49.0178 0740 NdisTapi - ok 11:25:49.0250 0740 Ndisuio (d8a65dafb3eb41cbb622745676fcd072) C:\windows\system32\DRIVERS\ndisuio.sys 11:25:49.0265 0740 Ndisuio - ok 11:25:49.0320 0740 NdisWan (38fbe267e7e6983311179230facb1017) C:\windows\system32\DRIVERS\ndiswan.sys 11:25:49.0340 0740 NdisWan - ok 11:25:49.0394 0740 NDProxy (a4bdc541e69674fbff1a8ff00be913f2) C:\windows\system32\drivers\NDProxy.sys 11:25:49.0408 0740 NDProxy - ok 11:25:49.0438 0740 NetBIOS (80b275b1ce3b0e79909db7b39af74d51) C:\windows\system32\DRIVERS\netbios.sys 11:25:49.0452 0740 NetBIOS - ok 11:25:49.0518 0740 NetBT (280122ddcf04b378edd1ad54d71c1e54) C:\windows\system32\DRIVERS\netbt.sys 11:25:49.0523 0740 NetBT - ok 11:25:49.0587 0740 nfrd960 (1d85c4b390b0ee09c7a46b91efb2c097) C:\windows\system32\DRIVERS\nfrd960.sys 11:25:49.0602 0740 nfrd960 - ok 11:25:49.0651 0740 nmwcd (b0a67de1a128389aea4d42c5a56215fd) C:\windows\system32\drivers\ccdcmb.sys 11:25:49.0663 0740 nmwcd - ok 11:25:49.0696 0740 nmwcdc (025c54f9f8c8bc1894ea38529c742c54) C:\windows\system32\drivers\ccdcmbo.sys 11:25:49.0709 0740 nmwcdc - ok 11:25:49.0741 0740 Npfs (1db262a9f8c087e8153d89bef3d2235f) C:\windows\system32\drivers\Npfs.sys 11:25:49.0754 0740 Npfs - ok 11:25:49.0797 0740 nsiproxy (e9a0a4d07e53d8fea2bb8387a3293c58) C:\windows\system32\drivers\nsiproxy.sys 11:25:49.0801 0740 nsiproxy - ok 11:25:49.0880 0740 Ntfs (81189c3d7763838e55c397759d49007a) C:\windows\system32\drivers\Ntfs.sys 11:25:50.0003 0740 Ntfs - ok 11:25:50.0032 0740 Null (f9756a98d69098dca8945d62858a812c) C:\windows\system32\drivers\Null.sys 11:25:50.0040 0740 Null - ok 11:25:50.0101 0740 nvraid (b3e25ee28883877076e0e1ff877d02e0) C:\windows\system32\drivers\nvraid.sys 11:25:50.0120 0740 nvraid - ok 11:25:50.0155 0740 nvstor (4380e59a170d88c4f1022eff6719a8a4) C:\windows\system32\drivers\nvstor.sys 11:25:50.0160 0740 nvstor - ok 11:25:50.0215 0740 nv_agp (5a0983915f02bae73267cc2a041f717d) C:\windows\system32\drivers\nv_agp.sys 11:25:50.0233 0740 nv_agp - ok 11:25:50.0295 0740 ohci1394 (08a70a1f2cdde9bb49b885cb817a66eb) C:\windows\system32\drivers\ohci1394.sys 11:25:50.0311 0740 ohci1394 - ok 11:25:50.0389 0740 Parport (2ea877ed5dd9713c5ac74e8ea7348d14) C:\windows\system32\DRIVERS\parport.sys 11:25:50.0405 0740 Parport - ok 11:25:50.0436 0740 partmgr (bf8f6af06da75b336f07e23aef97d93b) C:\windows\system32\drivers\partmgr.sys 11:25:50.0451 0740 partmgr - ok 11:25:50.0483 0740 Parvdm (eb0a59f29c19b86479d36b35983daadc) C:\windows\system32\DRIVERS\parvdm.sys 11:25:50.0498 0740 Parvdm - ok 11:25:50.0545 0740 pccsmcfd (fd2041e9ba03db7764b2248f02475079) C:\windows\system32\DRIVERS\pccsmcfd.sys 11:25:50.0545 0740 pccsmcfd - ok 11:25:50.0607 0740 pci (673e55c3498eb970088e812ea820aa8f) C:\windows\system32\drivers\pci.sys 11:25:50.0623 0740 pci - ok 11:25:50.0639 0740 pciide (afe86f419014db4e5593f69ffe26ce0a) C:\windows\system32\drivers\pciide.sys 11:25:50.0654 0740 pciide - ok 11:25:50.0685 0740 pcmcia (f396431b31693e71e8a80687ef523506) C:\windows\system32\DRIVERS\pcmcia.sys 11:25:50.0717 0740 pcmcia - ok 11:25:50.0763 0740 pcw (250f6b43d2b613172035c6747aeeb19f) C:\windows\system32\drivers\pcw.sys 11:25:50.0779 0740 pcw - ok 11:25:50.0841 0740 PEAUTH (9e0104ba49f4e6973749a02bf41344ed) C:\windows\system32\drivers\peauth.sys 11:25:50.0907 0740 PEAUTH - ok 11:25:51.0072 0740 PptpMiniport (631e3e205ad6d86f2aed6a4a8e69f2db) C:\windows\system32\DRIVERS\raspptp.sys 11:25:51.0089 0740 PptpMiniport - ok 11:25:51.0133 0740 Processor (85b1e3a0c7585bc4aae6899ec6fcf011) C:\windows\system32\DRIVERS\processr.sys 11:25:51.0150 0740 Processor - ok 11:25:51.0207 0740 Psched (6270ccae2a86de6d146529fe55b3246a) C:\windows\system32\DRIVERS\pacer.sys 11:25:51.0210 0740 Psched - ok 11:25:51.0254 0740 PxHelp20 (40fedd328f98245ad201cf5f9f311724) C:\windows\system32\Drivers\PxHelp20.sys 11:25:51.0274 0740 PxHelp20 - ok 11:25:51.0342 0740 ql2300 (ab95ecf1f6659a60ddc166d8315b0751) C:\windows\system32\DRIVERS\ql2300.sys 11:25:51.0426 0740 ql2300 - ok 11:25:51.0461 0740 ql40xx (b4dd51dd25182244b86737dc51af2270) C:\windows\system32\DRIVERS\ql40xx.sys 11:25:51.0483 0740 ql40xx - ok 11:25:51.0544 0740 QWAVEdrv (584078ca1b95ca72df2a27c336f9719d) C:\windows\system32\drivers\qwavedrv.sys 11:25:51.0557 0740 QWAVEdrv - ok 11:25:51.0593 0740 RasAcd (30a81b53c766d0133bb86d234e5556ab) C:\windows\system32\DRIVERS\rasacd.sys 11:25:51.0602 0740 RasAcd - ok 11:25:51.0636 0740 RasAgileVpn (57ec4aef73660166074d8f7f31c0d4fd) C:\windows\system32\DRIVERS\AgileVpn.sys 11:25:51.0651 0740 RasAgileVpn - ok 11:25:51.0707 0740 Rasl2tp (d9f91eafec2815365cbe6d167e4e332a) C:\windows\system32\DRIVERS\rasl2tp.sys 11:25:51.0724 0740 Rasl2tp - ok 11:25:51.0772 0740 RasPppoe (0fe8b15916307a6ac12bfb6a63e45507) C:\windows\system32\DRIVERS\raspppoe.sys 11:25:51.0788 0740 RasPppoe - ok 11:25:51.0815 0740 RasSstp (44101f495a83ea6401d886e7fd70096b) C:\windows\system32\DRIVERS\rassstp.sys 11:25:51.0831 0740 RasSstp - ok 11:25:51.0893 0740 rdbss (d528bc58a489409ba40334ebf96a311b) C:\windows\system32\DRIVERS\rdbss.sys 11:25:51.0925 0740 rdbss - ok 11:25:51.0956 0740 rdpbus (0d8f05481cb76e70e1da06ee9f0da9df) C:\windows\system32\DRIVERS\rdpbus.sys 11:25:51.0956 0740 rdpbus - ok 11:25:52.0018 0740 RDPCDD (23dae03f29d253ae74c44f99e515f9a1) C:\windows\system32\DRIVERS\RDPCDD.sys 11:25:52.0018 0740 RDPCDD - ok 11:25:52.0065 0740 RDPENCDD (5a53ca1598dd4156d44196d200c94b8a) C:\windows\system32\drivers\rdpencdd.sys 11:25:52.0065 0740 RDPENCDD - ok 11:25:52.0112 0740 RDPREFMP (44b0a53cd4f27d50ed461dae0c0b4e1f) C:\windows\system32\drivers\rdprefmp.sys 11:25:52.0112 0740 RDPREFMP - ok 11:25:52.0174 0740 RDPWD (244c83332f44589ae98fc347f11b2693) C:\windows\system32\drivers\RDPWD.sys 11:25:52.0190 0740 RDPWD - ok 11:25:52.0252 0740 rdyboost (518395321dc96fe2c9f0e96ac743b656) C:\windows\system32\drivers\rdyboost.sys 11:25:52.0252 0740 rdyboost - ok 11:25:52.0330 0740 RFCOMM (cb928d9e6daf51879dd6ba8d02f01321) C:\windows\system32\DRIVERS\rfcomm.sys 11:25:52.0346 0740 RFCOMM - ok 11:25:52.0388 0740 ROOTMODEM (564297827d213f52c7a3a2ff749568ca) C:\windows\system32\Drivers\RootMdm.sys 11:25:52.0396 0740 ROOTMODEM - ok 11:25:52.0478 0740 rspndr (032b0d36ad92b582d869879f5af5b928) C:\windows\system32\DRIVERS\rspndr.sys 11:25:52.0493 0740 rspndr - ok 11:25:52.0542 0740 RsvLock (13335d083935ab88e09c9acc077355b5) C:\windows\system32\drivers\RsvLock.sys 11:25:52.0553 0740 RsvLock - ok 11:25:52.0584 0740 SafeBoot (062b82fa74c895382ab0784d493c8c9c) C:\windows\system32\drivers\SafeBoot.sys 11:25:52.0585 0740 Suspicious file (NoAccess): C:\windows\system32\drivers\SafeBoot.sys. md5: 062b82fa74c895382ab0784d493c8c9c 11:25:52.0592 0740 SafeBoot ( LockedFile.Multi.Generic ) - warning 11:25:52.0592 0740 SafeBoot - detected LockedFile.Multi.Generic (1) 11:25:52.0635 0740 SbAlg (c9cb2c392c35cbee2733c836d23dc642) C:\windows\system32\drivers\SbAlg.sys 11:25:52.0637 0740 SbAlg - ok 11:25:52.0682 0740 SbFsLock (b5a8ecdee930b52fd3ba35700a15ea53) C:\windows\system32\drivers\SbFsLock.sys 11:25:52.0684 0740 SbFsLock - ok 11:25:52.0749 0740 sbp2port (05d860da1040f111503ac416ccef2bca) C:\windows\system32\drivers\sbp2port.sys 11:25:52.0767 0740 sbp2port - ok 11:25:52.0817 0740 scfilter (0693b5ec673e34dc147e195779a4dcf6) C:\windows\system32\DRIVERS\scfilter.sys 11:25:52.0830 0740 scfilter - ok 11:25:52.0922 0740 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\windows\system32\drivers\secdrv.sys 11:25:52.0932 0740 secdrv - ok 11:25:53.0014 0740 Serenum (9ad8b8b515e3df6acd4212ef465de2d1) C:\windows\system32\DRIVERS\serenum.sys 11:25:53.0025 0740 Serenum - ok 11:25:53.0062 0740 Serial (5fb7fcea0490d821f26f39cc5ea3d1e2) C:\windows\system32\DRIVERS\serial.sys 11:25:53.0080 0740 Serial - ok 11:25:53.0139 0740 sermouse (79bffb520327ff916a582dfea17aa813) C:\windows\system32\DRIVERS\sermouse.sys 11:25:53.0141 0740 sermouse - ok 11:25:53.0268 0740 sffdisk (9f976e1eb233df46fce808d9dea3eb9c) C:\windows\system32\drivers\sffdisk.sys 11:25:53.0277 0740 sffdisk - ok 11:25:53.0310 0740 sffp_mmc (932a68ee27833cfd57c1639d375f2731) C:\windows\system32\drivers\sffp_mmc.sys 11:25:53.0326 0740 sffp_mmc - ok 11:25:53.0432 0740 sffp_sd (6d4ccaedc018f1cf52866bbbaa235982) C:\windows\system32\drivers\sffp_sd.sys 11:25:53.0447 0740 sffp_sd - ok 11:25:53.0479 0740 sfloppy (db96666cc8312ebc45032f30b007a547) C:\windows\system32\DRIVERS\sfloppy.sys 11:25:53.0494 0740 sfloppy - ok 11:25:53.0635 0740 sisagp (2565cac0dc9fe0371bdce60832582b2e) C:\windows\system32\drivers\sisagp.sys 11:25:53.0650 0740 sisagp - ok 11:25:53.0775 0740 SiSRaid2 (a9f0486851becb6dda1d89d381e71055) C:\windows\system32\DRIVERS\SiSRaid2.sys 11:25:53.0822 0740 SiSRaid2 - ok 11:25:53.0962 0740 SiSRaid4 (3727097b55738e2f554972c3be5bc1aa) C:\windows\system32\DRIVERS\sisraid4.sys 11:25:53.0980 0740 SiSRaid4 - ok 11:25:54.0027 0740 Smb (3e21c083b8a01cb70ba1f09303010fce) C:\windows\system32\DRIVERS\smb.sys 11:25:54.0030 0740 Smb - ok 11:25:54.0106 0740 spldr (95cf1ae7527fb70f7816563cbc09d942) C:\windows\system32\drivers\spldr.sys 11:25:54.0119 0740 spldr - ok 11:25:54.0220 0740 sptd (cdddec541bc3c96f91ecb48759673505) C:\windows\system32\Drivers\sptd.sys 11:25:54.0221 0740 Suspicious file (NoAccess): C:\windows\system32\Drivers\sptd.sys. md5: cdddec541bc3c96f91ecb48759673505 11:25:54.0232 0740 sptd ( LockedFile.Multi.Generic ) - warning 11:25:54.0232 0740 sptd - detected LockedFile.Multi.Generic (1) 11:25:54.0287 0740 srv (e4c2764065d66ea1d2d3ebc28fe99c46) C:\windows\system32\DRIVERS\srv.sys 11:25:54.0337 0740 srv - ok 11:25:54.0386 0740 srv2 (03f0545bd8d4c77fa0ae1ceedfcc71ab) C:\windows\system32\DRIVERS\srv2.sys 11:25:54.0420 0740 srv2 - ok 11:25:54.0470 0740 srvnet (be6bd660caa6f291ae06a718a4fa8abc) C:\windows\system32\DRIVERS\srvnet.sys 11:25:54.0491 0740 srvnet - ok 11:25:54.0550 0740 ssmdrv (a36ee93698802cd899f98bfd553d8185) C:\windows\system32\DRIVERS\ssmdrv.sys 11:25:54.0564 0740 ssmdrv - ok 11:25:54.0640 0740 stexstor (db32d325c192b801df274bfd12a7e72b) C:\windows\system32\DRIVERS\stexstor.sys 11:25:54.0653 0740 stexstor - ok 11:25:54.0724 0740 STHDA (8a8246f40792956e957f3e8d0c188963) C:\windows\system32\DRIVERS\stwrt.sys 11:25:54.0782 0740 STHDA - ok 11:25:54.0833 0740 StillCam (edb05bd63148796f23ea78506404a538) C:\windows\system32\DRIVERS\serscan.sys 11:25:54.0842 0740 StillCam - ok 11:25:54.0928 0740 swenum (e58c78a848add9610a4db6d214af5224) C:\windows\system32\drivers\swenum.sys 11:25:54.0932 0740 swenum - ok 11:25:55.0026 0740 SynTP (0e8676fb3bb95aa40fdf7a4a31018c8b) C:\windows\system32\DRIVERS\SynTP.sys 11:25:55.0119 0740 SynTP - ok 11:25:55.0275 0740 Tcpip (65d10b191c59c5501a1263fc33f6894b) C:\windows\system32\drivers\tcpip.sys 11:25:55.0291 0740 Tcpip - ok 11:25:55.0369 0740 TCPIP6 (65d10b191c59c5501a1263fc33f6894b) C:\windows\system32\DRIVERS\tcpip.sys 11:25:55.0384 0740 TCPIP6 - ok 11:25:55.0447 0740 tcpipreg (cca24162e055c3714ce5a88b100c64ed) C:\windows\system32\drivers\tcpipreg.sys 11:25:55.0462 0740 tcpipreg - ok 11:25:55.0548 0740 TDPIPE (1cb91b2bd8f6dd367dfc2ef26fd751b2) C:\windows\system32\drivers\tdpipe.sys 11:25:55.0550 0740 TDPIPE - ok 11:25:55.0610 0740 TDTCP (2c2c5afe7ee4f620d69c23c0617651a8) C:\windows\system32\drivers\tdtcp.sys 11:25:55.0612 0740 TDTCP - ok 11:25:55.0669 0740 tdx (b459575348c20e8121d6039da063c704) C:\windows\system32\DRIVERS\tdx.sys 11:25:55.0685 0740 tdx - ok 11:25:55.0719 0740 TermDD (04dbf4b01ea4bf25a9a3e84affac9b20) C:\windows\system32\drivers\termdd.sys 11:25:55.0735 0740 TermDD - ok 11:25:55.0827 0740 TPM (5ad05191dc8b444a7ba4d79b76c42a30) C:\windows\system32\drivers\tpm.sys 11:25:55.0840 0740 TPM - ok 11:25:55.0924 0740 tssecsrv (254bb140eee3c59d6114c1a86b636877) C:\windows\system32\DRIVERS\tssecsrv.sys 11:25:55.0935 0740 tssecsrv - ok 11:25:55.0981 0740 TsUsbFlt (fd1d6c73e6333be727cbcc6054247654) C:\windows\system32\drivers\tsusbflt.sys 11:25:55.0997 0740 TsUsbFlt - ok 11:25:56.0055 0740 tunnel (b2fa25d9b17a68bb93d58b0556e8c90d) C:\windows\system32\DRIVERS\tunnel.sys 11:25:56.0061 0740 tunnel - ok 11:25:56.0106 0740 uagp35 (750fbcb269f4d7dd2e420c56b795db6d) C:\windows\system32\DRIVERS\uagp35.sys 11:25:56.0122 0740 uagp35 - ok 11:25:56.0184 0740 udfs (ee43346c7e4b5e63e54f927babbb32ff) C:\windows\system32\DRIVERS\udfs.sys 11:25:56.0210 0740 udfs - ok 11:25:56.0290 0740 uliagpkx (44e8048ace47befbfdc2e9be4cbc8880) C:\windows\system32\drivers\uliagpkx.sys 11:25:56.0292 0740 uliagpkx - ok 11:25:56.0324 0740 umbus (d295bed4b898f0fd999fcfa9b32b071b) C:\windows\system32\drivers\umbus.sys 11:25:56.0340 0740 umbus - ok 11:25:56.0377 0740 UmPass (7550ad0c6998ba1cb4843e920ee0feac) C:\windows\system32\DRIVERS\umpass.sys 11:25:56.0379 0740 UmPass - ok 11:25:56.0442 0740 upperdev (78b74af8727a28c128e164e9b53a5413) C:\windows\system32\DRIVERS\usbser_lowerflt.sys 11:25:56.0444 0740 upperdev - ok 11:25:56.0487 0740 usbbus (8ef48ff1c23b1ce6f96d09a45959eb20) C:\windows\system32\DRIVERS\lgusbbus.sys 11:25:56.0502 0740 usbbus - ok 11:25:56.0565 0740 usbccgp (bd9c55d7023c5de374507acc7a14e2ac) C:\windows\system32\DRIVERS\usbccgp.sys 11:25:56.0580 0740 usbccgp - ok 11:25:56.0627 0740 usbcir (04ec7cec62ec3b6d9354eee93327fc82) C:\windows\system32\drivers\usbcir.sys 11:25:56.0658 0740 usbcir - ok 11:25:56.0689 0740 UsbDiag (a0e24c5c2d0cff04bbd3753a72fae80b) C:\windows\system32\DRIVERS\lgusbdiag.sys 11:25:56.0705 0740 UsbDiag - ok 11:25:56.0767 0740 usbehci (f92de757e4b7ce9c07c5e65423f3ae3b) C:\windows\system32\DRIVERS\usbehci.sys 11:25:56.0767 0740 usbehci - ok 11:25:56.0814 0740 usbhub (8dc94aec6a7e644a06135ae7506dc2e9) C:\windows\system32\DRIVERS\usbhub.sys 11:25:56.0845 0740 usbhub - ok 11:25:56.0892 0740 USBModem (cc09a1132b1f6a8362107cc134e90d0b) C:\windows\system32\DRIVERS\lgusbmodem.sys 11:25:56.0908 0740 USBModem - ok 11:25:56.0970 0740 usbohci (e185d44fac515a18d9deddc23c2cdf44) C:\windows\system32\DRIVERS\usbohci.sys 11:25:56.0970 0740 usbohci - ok 11:25:57.0017 0740 usbprint (797d862fe0875e75c7cc4c1ad7b30252) C:\windows\system32\DRIVERS\usbprint.sys 11:25:57.0017 0740 usbprint - ok 11:25:57.0079 0740 usbscan (576096ccbc07e7c4ea4f5e6686d6888f) C:\windows\system32\DRIVERS\usbscan.sys 11:25:57.0081 0740 usbscan - ok 11:25:57.0148 0740 usbser (31181de6190b39fc8007dffd1a48ffd6) C:\windows\system32\drivers\usbser.sys 11:25:57.0160 0740 usbser - ok 11:25:57.0213 0740 UsbserFilt (4f8fbc51a1c0a17310846b417a447f91) C:\windows\system32\DRIVERS\usbser_lowerfltj.sys 11:25:57.0222 0740 UsbserFilt - ok 11:25:57.0258 0740 USBSTOR (f991ab9cc6b908db552166768176896a) C:\windows\system32\DRIVERS\USBSTOR.SYS 11:25:57.0262 0740 USBSTOR - ok 11:25:57.0303 0740 usbuhci (68df884cf41cdada664beb01daf67e3d) C:\windows\system32\drivers\usbuhci.sys 11:25:57.0306 0740 usbuhci - ok 11:25:57.0342 0740 usbvideo (45f4e7bf43db40a6c6b4d92c76cbc3f2) C:\windows\System32\Drivers\usbvideo.sys 11:25:57.0361 0740 usbvideo - ok 11:25:57.0427 0740 vdrvroot (a059c4c3edb09e07d21a8e5c0aabd3cb) C:\windows\system32\drivers\vdrvroot.sys 11:25:57.0442 0740 vdrvroot - ok 11:25:57.0497 0740 vga (17c408214ea61696cec9c66e388b14f3) C:\windows\system32\DRIVERS\vgapnp.sys 11:25:57.0510 0740 vga - ok 11:25:57.0547 0740 VgaSave (8e38096ad5c8570a6f1570a61e251561) C:\windows\System32\drivers\vga.sys 11:25:57.0558 0740 VgaSave - ok 11:25:57.0598 0740 vhdmp (5461686cca2fda57b024547733ab42e3) C:\windows\system32\drivers\vhdmp.sys 11:25:57.0603 0740 vhdmp - ok 11:25:57.0667 0740 viaagp (c829317a37b4bea8f39735d4b076e923) C:\windows\system32\drivers\viaagp.sys 11:25:57.0684 0740 viaagp - ok 11:25:57.0723 0740 ViaC7 (e02f079a6aa107f06b16549c6e5c7b74) C:\windows\system32\DRIVERS\viac7.sys 11:25:57.0740 0740 ViaC7 - ok 11:25:57.0777 0740 viaide (e43574f6a56a0ee11809b48c09e4fd3c) C:\windows\system32\drivers\viaide.sys 11:25:57.0779 0740 viaide - ok 11:25:57.0815 0740 volmgr (4c63e00f2f4b5f86ab48a58cd990f212) C:\windows\system32\drivers\volmgr.sys 11:25:57.0818 0740 volmgr - ok 11:25:57.0863 0740 volmgrx (b5bb72067ddddbbfb04b2f89ff8c3c87) C:\windows\system32\drivers\volmgrx.sys 11:25:57.0871 0740 volmgrx - ok 11:25:57.0911 0740 volsnap (f497f67932c6fa693d7de2780631cfe7) C:\windows\system32\drivers\volsnap.sys 11:25:57.0945 0740 volsnap - ok 11:25:57.0989 0740 vsmraid (9dfa0cc2f8855a04816729651175b631) C:\windows\system32\DRIVERS\vsmraid.sys 11:25:57.0993 0740 vsmraid - ok 11:25:58.0041 0740 vwifibus (90567b1e658001e79d7c8bbd3dde5aa6) C:\windows\system32\DRIVERS\vwifibus.sys 11:25:58.0042 0740 vwifibus - ok 11:25:58.0089 0740 vwififlt (7090d3436eeb4e7da3373090a23448f7) C:\windows\system32\DRIVERS\vwififlt.sys 11:25:58.0105 0740 vwififlt - ok 11:25:58.0136 0740 vwifimp (a3f04cbea6c2a10e6cb01f8b47611882) C:\windows\system32\DRIVERS\vwifimp.sys 11:25:58.0136 0740 vwifimp - ok 11:25:58.0214 0740 wacmoumonitor (9a03558c37e919b9d6a50864aea0a168) C:\windows\system32\DRIVERS\wacmoumonitor.sys 11:25:58.0214 0740 wacmoumonitor - ok 11:25:58.0261 0740 wacommousefilter (427a8bc96f16c40df81c2d2f4edd32dd) C:\windows\system32\DRIVERS\wacommousefilter.sys 11:25:58.0261 0740 wacommousefilter - ok 11:25:58.0308 0740 WacomPen (de3721e89c653aa281428c8a69745d90) C:\windows\system32\DRIVERS\wacompen.sys 11:25:58.0323 0740 WacomPen - ok 11:25:58.0354 0740 wacomvhid (d412d2cc82c3d469415758cab44875a4) C:\windows\system32\DRIVERS\wacomvhid.sys 11:25:58.0354 0740 wacomvhid - ok 11:25:58.0401 0740 WacomVKHid (889459833432b161cb99cfdf84a1a9bb) C:\windows\system32\DRIVERS\WacomVKHid.sys 11:25:58.0401 0740 WacomVKHid - ok 11:25:58.0479 0740 WANARP (3c3c78515f5ab448b022bdf5b8ffdd2e) C:\windows\system32\DRIVERS\wanarp.sys 11:25:58.0495 0740 WANARP - ok 11:25:58.0510 0740 Wanarpv6 (3c3c78515f5ab448b022bdf5b8ffdd2e) C:\windows\system32\DRIVERS\wanarp.sys 11:25:58.0510 0740 Wanarpv6 - ok 11:25:58.0635 0740 Wd (1112a9badacb47b7c0bb0392e3158dff) C:\windows\system32\DRIVERS\wd.sys 11:25:58.0650 0740 Wd - ok 11:25:58.0695 0740 Wdf01000 (9950e3d0f08141c7e89e64456ae7dc73) C:\windows\system32\drivers\Wdf01000.sys 11:25:58.0754 0740 Wdf01000 - ok 11:25:58.0882 0740 WfpLwf (8b9a943f3b53861f2bfaf6c186168f79) C:\windows\system32\DRIVERS\wfplwf.sys 11:25:58.0897 0740 WfpLwf - ok 11:25:58.0928 0740 WIMMount (5cf95b35e59e2a38023836fff31be64c) C:\windows\system32\drivers\wimmount.sys 11:25:58.0941 0740 WIMMount - ok 11:25:59.0201 0740 WinUsb (a67e5f9a400f3bd1be3d80613b45f708) C:\windows\system32\DRIVERS\WinUsb.sys 11:25:59.0203 0740 WinUsb - ok 11:25:59.0300 0740 WmiAcpi (0217679b8fca58714c3bf2726d2ca84e) C:\windows\system32\drivers\wmiacpi.sys 11:25:59.0303 0740 WmiAcpi - ok 11:25:59.0418 0740 ws2ifsl (6db3276587b853bf886b69528fdb048c) C:\windows\system32\drivers\ws2ifsl.sys 11:25:59.0421 0740 ws2ifsl - ok 11:25:59.0553 0740 WudfPf (e714a1c0354636837e20ccbf00888ee7) C:\windows\system32\drivers\WudfPf.sys 11:25:59.0570 0740 WudfPf - ok 11:25:59.0628 0740 WUDFRd (1023ee888c9b47178c5293ed5336ab69) C:\windows\system32\DRIVERS\WUDFRd.sys 11:25:59.0644 0740 WUDFRd - ok 11:25:59.0768 0740 yukonw7 (30b73eb97218a16cbc6de535782a1b35) C:\windows\system32\DRIVERS\yk62x86.sys 11:25:59.0784 0740 yukonw7 - ok 11:25:59.0878 0740 MBR (0x1B8) (5c616939100b85e558da92b899a0fc36) \Device\Harddisk0\DR0 11:25:59.0940 0740 \Device\Harddisk0\DR0 - ok 11:25:59.0956 0740 Boot (0x1200) (9c6582c8b48c4639c394efd394a467b2) \Device\Harddisk0\DR0\Partition0 11:25:59.0956 0740 \Device\Harddisk0\DR0\Partition0 - ok 11:25:59.0971 0740 Boot (0x1200) (670731ab347b6119742a614fcfcbbe09) \Device\Harddisk0\DR0\Partition1 11:25:59.0971 0740 \Device\Harddisk0\DR0\Partition1 - ok 11:26:00.0018 0740 Boot (0x1200) (dcf86c5327d7bf87038b14849c084c5a) \Device\Harddisk0\DR0\Partition2 11:26:00.0018 0740 \Device\Harddisk0\DR0\Partition2 - ok 11:26:00.0034 0740 Boot (0x1200) (f0ea57bf49d84e1dc8698f55477a2ef2) \Device\Harddisk0\DR0\Partition3 11:26:00.0049 0740 \Device\Harddisk0\DR0\Partition3 - ok 11:26:00.0049 0740 ============================================================ 11:26:00.0049 0740 Scan finished 11:26:00.0049 0740 ============================================================ 11:26:00.0080 1372 Detected object count: 2 11:26:00.0080 1372 Actual detected object count: 2 11:26:28.0284 1372 SafeBoot ( LockedFile.Multi.Generic ) - skipped by user 11:26:28.0284 1372 SafeBoot ( LockedFile.Multi.Generic ) - User select action: Skip 11:26:28.0286 1372 sptd ( LockedFile.Multi.Generic ) - skipped by user 11:26:28.0286 1372 sptd ( LockedFile.Multi.Generic ) - User select action: Skip
  4. joe65
    rapport GrantPerms by Farbar Ran by FRANCE (administrator) at 2012-03-18 10:16:13 =============================================== \\?\C:\windows\system32\drivers\SafeBoot.sys Owner: AUTORITE NT\Système DACL(NP)(AI): AUTORITE NT\Système FULL ALLOW (I) BUILTIN\Administrateurs FULL ALLOW (I) BUILTIN\Utilisateurs READ/EXECUTE ALLOW (I)
  5. joe65
    Bonjour ci joint le rapport Windows Registry Editor Version 5.00 ; Registry Search 2.0 by Bobbi Flekman © 2005 ; Version: 2.0.6.0 ; Results at 3/18/2012 9:30:33 AM for strings: ; 'optionvalue ' ; Strings excluded from search: ; (None) ; Search in: ; Registry Keys Registry Values Registry Data ; HKEY_LOCAL_MACHINE HKEY_USERS ; End Of The Log...
  6. joe65
    Je ne peux pas analyser le fichier safeboot.sys J'ai le message suivant « Entrez un nouveau nom ou fermez le fichier qui a été ouvert par un autre programme ». Je n'ai rien d'ouvert, à part le Net.
  7. joe65
    ci joint rapport tdskiller 18:28:13.0668 5220 TDSS rootkit removing tool 2.7.20.0 Mar 9 2012 17:10:43 18:28:13.0847 5220 ============================================================ 18:28:13.0847 5220 Current date / time: 2012/03/17 18:28:13.0847 18:28:13.0847 5220 SystemInfo: 18:28:13.0847 5220 18:28:13.0847 5220 OS Version: 6.1.7601 ServicePack: 1.0 18:28:13.0847 5220 Product type: Workstation 18:28:13.0848 5220 ComputerName: JOUJOU 18:28:13.0848 5220 UserName: FRANCE 18:28:13.0848 5220 Windows directory: C:\windows 18:28:13.0848 5220 System windows directory: C:\windows 18:28:13.0848 5220 Processor architecture: Intel x86 18:28:13.0848 5220 Number of processors: 2 18:28:13.0848 5220 Page size: 0x1000 18:28:13.0848 5220 Boot type: Normal boot 18:28:13.0848 5220 ============================================================ 18:28:15.0681 5220 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050 18:28:15.0687 5220 \Device\Harddisk0\DR0: 18:28:15.0688 5220 MBR used 18:28:15.0688 5220 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x96000 18:28:15.0688 5220 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x96800, BlocksNum 0x23197800 18:28:15.0688 5220 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x2322E000, BlocksNum 0x1E00000 18:28:15.0688 5220 \Device\Harddisk0\DR0\Partition3: MBR, Type 0xC, StartLBA 0x2502E000, BlocksNum 0x3FD800 18:28:15.0744 5220 Initialize success 18:28:15.0744 5220 ============================================================ 18:28:49.0126 5356 ============================================================ 18:28:49.0126 5356 Scan started 18:28:49.0126 5356 Mode: Manual; 18:28:49.0126 5356 ============================================================ 18:28:49.0976 5356 1394ohci (1b133875b8aa8ac48969bd3458afe9f5) C:\windows\system32\drivers\1394ohci.sys 18:28:49.0979 5356 1394ohci - ok 18:28:50.0016 5356 5U876UVC (080a40550fb95a328917512f3f5a0409) C:\windows\system32\DRIVERS\5U876.sys 18:28:50.0020 5356 5U876UVC - ok 18:28:50.0064 5356 Accelerometer (4df5e6215a102a192b2b6dbb61f2fba5) C:\windows\system32\DRIVERS\Accelerometer.sys 18:28:50.0066 5356 Accelerometer - ok 18:28:50.0116 5356 ACPI (cea80c80bed809aa0da6febc04733349) C:\windows\system32\drivers\ACPI.sys 18:28:50.0125 5356 ACPI - ok 18:28:50.0173 5356 AcpiPmi (1efbc664abff416d1d07db115dcb264f) C:\windows\system32\drivers\acpipmi.sys 18:28:50.0175 5356 AcpiPmi - ok 18:28:50.0206 5356 adp94xx (21e785ebd7dc90a06391141aac7892fb) C:\windows\system32\DRIVERS\adp94xx.sys 18:28:50.0217 5356 adp94xx - ok 18:28:50.0263 5356 adpahci (0c676bc278d5b59ff5abd57bbe9123f2) C:\windows\system32\DRIVERS\adpahci.sys 18:28:50.0271 5356 adpahci - ok 18:28:50.0300 5356 adpu320 (7c7b5ee4b7b822ec85321fe23a27db33) C:\windows\system32\DRIVERS\adpu320.sys 18:28:50.0303 5356 adpu320 - ok 18:28:50.0373 5356 AFD (9ebbba55060f786f0fcaa3893bfa2806) C:\windows\system32\drivers\afd.sys 18:28:50.0381 5356 AFD - ok 18:28:50.0446 5356 AgereSoftModem (7e10e3bb9b258ad8a9300f91214d67b9) C:\windows\system32\DRIVERS\AGRSM.sys 18:28:50.0480 5356 AgereSoftModem - ok 18:28:50.0541 5356 agp440 (507812c3054c21cef746b6ee3d04dd6e) C:\windows\system32\drivers\agp440.sys 18:28:50.0543 5356 agp440 - ok 18:28:50.0584 5356 aic78xx (8b30250d573a8f6b4bd23195160d8707) C:\windows\system32\DRIVERS\djsvs.sys 18:28:50.0587 5356 aic78xx - ok 18:28:50.0616 5356 aliide (0d40bcf52ea90fc7df2aeab6503dea44) C:\windows\system32\drivers\aliide.sys 18:28:50.0617 5356 aliide - ok 18:28:50.0646 5356 amdagp (3c6600a0696e90a463771c7422e23ab5) C:\windows\system32\drivers\amdagp.sys 18:28:50.0648 5356 amdagp - ok 18:28:50.0674 5356 amdide (cd5914170297126b6266860198d1d4f0) C:\windows\system32\drivers\amdide.sys 18:28:50.0676 5356 amdide - ok 18:28:50.0721 5356 AmdK8 (00dda200d71bac534bf56a9db5dfd666) C:\windows\system32\DRIVERS\amdk8.sys 18:28:50.0723 5356 AmdK8 - ok 18:28:50.0737 5356 AmdPPM (3cbf30f5370fda40dd3e87df38ea53b6) C:\windows\system32\DRIVERS\amdppm.sys 18:28:50.0737 5356 AmdPPM - ok 18:28:50.0767 5356 amdsata (d320bf87125326f996d4904fe24300fc) C:\windows\system32\drivers\amdsata.sys 18:28:50.0767 5356 amdsata - ok 18:28:50.0804 5356 amdsbs (ea43af0c423ff267355f74e7a53bdaba) C:\windows\system32\DRIVERS\amdsbs.sys 18:28:50.0807 5356 amdsbs - ok 18:28:50.0834 5356 amdxata (46387fb17b086d16dea267d5be23a2f2) C:\windows\system32\drivers\amdxata.sys 18:28:50.0836 5356 amdxata - ok 18:28:50.0903 5356 AppID (aea177f783e20150ace5383ee368da19) C:\windows\system32\drivers\appid.sys 18:28:50.0905 5356 AppID - ok 18:28:50.0944 5356 arc (2932004f49677bd84dbc72edb754ffb3) C:\windows\system32\DRIVERS\arc.sys 18:28:50.0948 5356 arc - ok 18:28:50.0967 5356 arcsas (5d6f36c46fd283ae1b57bd2e9feb0bc7) C:\windows\system32\DRIVERS\arcsas.sys 18:28:50.0970 5356 arcsas - ok 18:28:51.0025 5356 AsyncMac (add2ade1c2b285ab8378d2daaf991481) C:\windows\system32\DRIVERS\asyncmac.sys 18:28:51.0027 5356 AsyncMac - ok 18:28:51.0049 5356 atapi (338c86357871c167a96ab976519bf59e) C:\windows\system32\drivers\atapi.sys 18:28:51.0050 5356 atapi - ok 18:28:51.0106 5356 AtiHdmiService (e2398389648b5d44dc63ca43fdd5b3f8) C:\windows\system32\drivers\AtiHdmi.sys 18:28:51.0110 5356 AtiHdmiService - ok 18:28:51.0268 5356 atikmdag (c97be8350fbcb1960b22fad2e6c2b514) C:\windows\system32\DRIVERS\atikmdag.sys 18:28:51.0412 5356 atikmdag - ok 18:28:51.0450 5356 AtiPcie (b73c832088dd54b55e04ff6f9646ad8c) C:\windows\system32\DRIVERS\AtiPcie.sys 18:28:51.0452 5356 AtiPcie - ok 18:28:51.0520 5356 AVFSFilter - ok 18:28:51.0582 5356 avgio (f1d43170fdd7399ee17ea32d4f868b0c) C:\Program Files\Avira\AntiVir Desktop\avgio.sys 18:28:51.0584 5356 avgio - ok 18:28:51.0617 5356 avgntflt (1e4114685de1ffa9675e09c6a1fb3f4b) C:\windows\system32\DRIVERS\avgntflt.sys 18:28:51.0620 5356 avgntflt - ok 18:28:51.0650 5356 avipbb (0f78d3dae6dedd99ae54c9491c62adf2) C:\windows\system32\DRIVERS\avipbb.sys 18:28:51.0654 5356 avipbb - ok 18:28:51.0712 5356 b06bdrv (1a231abec60fd316ec54c66715543cec) C:\windows\system32\DRIVERS\bxvbdx.sys 18:28:51.0723 5356 b06bdrv - ok 18:28:51.0766 5356 b57nd60x (bd8869eb9cde6bbe4508d869929869ee) C:\windows\system32\DRIVERS\b57nd60x.sys 18:28:51.0772 5356 b57nd60x - ok 18:28:51.0837 5356 BCM43XX (eb7c2dadf52f50f69f198c14c3556dc1) C:\windows\system32\DRIVERS\bcmwl6.sys 18:28:51.0868 5356 BCM43XX - ok 18:28:51.0905 5356 Beep (505506526a9d467307b3c393dedaf858) C:\windows\system32\drivers\Beep.sys 18:28:51.0914 5356 Beep - ok 18:28:51.0952 5356 blbdrive (2287078ed48fcfc477b05b20cf38f36f) C:\windows\system32\DRIVERS\blbdrive.sys 18:28:51.0954 5356 blbdrive - ok 18:28:51.0991 5356 bowser (8f2da3028d5fcbd1a060a3de64cd6506) C:\windows\system32\DRIVERS\bowser.sys 18:28:52.0008 5356 bowser - ok 18:28:52.0033 5356 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\windows\system32\DRIVERS\BrFiltLo.sys 18:28:52.0035 5356 BrFiltLo - ok 18:28:52.0059 5356 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\windows\system32\DRIVERS\BrFiltUp.sys 18:28:52.0060 5356 BrFiltUp - ok 18:28:52.0108 5356 BridgeMP (77361d72a04f18809d0efb6cceb74d4b) C:\windows\system32\DRIVERS\bridge.sys 18:28:52.0111 5356 BridgeMP - ok 18:28:52.0152 5356 Brserid (845b8ce732e67f3b4133164868c666ea) C:\windows\System32\Drivers\Brserid.sys 18:28:52.0158 5356 Brserid - ok 18:28:52.0178 5356 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\windows\System32\Drivers\BrSerWdm.sys 18:28:52.0180 5356 BrSerWdm - ok 18:28:52.0222 5356 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\windows\System32\Drivers\BrUsbMdm.sys 18:28:52.0223 5356 BrUsbMdm - ok 18:28:52.0252 5356 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\windows\System32\Drivers\BrUsbSer.sys 18:28:52.0254 5356 BrUsbSer - ok 18:28:52.0303 5356 BthEnum (2865a5c8e98c70c605f417908cebb3a4) C:\windows\system32\drivers\BthEnum.sys 18:28:52.0305 5356 BthEnum - ok 18:28:52.0328 5356 BTHMODEM (ed3df7c56ce0084eb2034432fc56565a) C:\windows\system32\DRIVERS\bthmodem.sys 18:28:52.0330 5356 BTHMODEM - ok 18:28:52.0370 5356 BthPan (ad1872e5829e8a2c3b5b4b641c3eab0e) C:\windows\system32\DRIVERS\bthpan.sys 18:28:52.0373 5356 BthPan - ok 18:28:52.0420 5356 BTHPORT (c2fbf6d271d9a94d839c416bf186ead9) C:\windows\System32\Drivers\BTHport.sys 18:28:52.0440 5356 BTHPORT - ok 18:28:52.0494 5356 BTHUSB (c81e9413a25a439f436b1d4b6a0cf9e9) C:\windows\System32\Drivers\BTHUSB.sys 18:28:52.0496 5356 BTHUSB - ok 18:28:52.0546 5356 btwaudio (d57d29132efe13a83133d9bd449e0cf1) C:\windows\system32\drivers\btwaudio.sys 18:28:52.0550 5356 btwaudio - ok 18:28:52.0589 5356 btwavdt (d282c14a69357d0e1bafaecc2ca98c3a) C:\windows\system32\DRIVERS\btwavdt.sys 18:28:52.0592 5356 btwavdt - ok 18:28:52.0628 5356 btwl2cap (aafd7cb76ba61fbb08e302da208c974a) C:\windows\system32\DRIVERS\btwl2cap.sys 18:28:52.0630 5356 btwl2cap - ok 18:28:52.0668 5356 btwrchid (02eb4d2b05967df2d32f29c84ab1fb17) C:\windows\system32\DRIVERS\btwrchid.sys 18:28:52.0670 5356 btwrchid - ok 18:28:52.0741 5356 catchme - ok 18:28:52.0783 5356 cdfs (77ea11b065e0a8ab902d78145ca51e10) C:\windows\system32\DRIVERS\cdfs.sys 18:28:52.0799 5356 cdfs - ok 18:28:52.0846 5356 cdrom (be167ed0fdb9c1fa1133953c18d5a6c9) C:\windows\system32\DRIVERS\cdrom.sys 18:28:52.0849 5356 cdrom - ok 18:28:52.0887 5356 circlass (3fe3fe94a34df6fb06e6418d0f6a0060) C:\windows\system32\DRIVERS\circlass.sys 18:28:52.0889 5356 circlass - ok 18:28:52.0920 5356 CLFS (635181e0e9bbf16871bf5380d71db02d) C:\windows\system32\CLFS.sys 18:28:52.0936 5356 CLFS - ok 18:28:52.0974 5356 CmBatt (dea805815e587dad1dd2c502220b5616) C:\windows\system32\DRIVERS\CmBatt.sys 18:28:52.0976 5356 CmBatt - ok 18:28:53.0024 5356 cmdide (c537b1db64d495b9b4717b4d6d9edbf2) C:\windows\system32\drivers\cmdide.sys 18:28:53.0026 5356 cmdide - ok 18:28:53.0090 5356 CNG (6427525d76f61d0c519b008d3680e8e7) C:\windows\system32\Drivers\cng.sys 18:28:53.0099 5356 CNG - ok 18:28:53.0140 5356 Compbatt (a6023d3823c37043986713f118a89bee) C:\windows\system32\DRIVERS\compbatt.sys 18:28:53.0142 5356 Compbatt - ok 18:28:53.0198 5356 CompositeBus (cbe8c58a8579cfe5fccf809e6f114e89) C:\windows\system32\drivers\CompositeBus.sys 18:28:53.0201 5356 CompositeBus - ok 18:28:53.0239 5356 crcdisk (2c4ebcfc84a9b44f209dff6c6e6c61d1) C:\windows\system32\DRIVERS\crcdisk.sys 18:28:53.0253 5356 crcdisk - ok 18:28:53.0339 5356 DfsC (f024449c97ec1e464aaffda18593db88) C:\windows\system32\Drivers\dfsc.sys 18:28:53.0356 5356 DfsC - ok 18:28:53.0402 5356 discache (1a050b0274bfb3890703d490f330c0da) C:\windows\system32\drivers\discache.sys 18:28:53.0404 5356 discache - ok 18:28:53.0429 5356 Disk (565003f326f99802e68ca78f2a68e9ff) C:\windows\system32\DRIVERS\disk.sys 18:28:53.0432 5356 Disk - ok 18:28:53.0484 5356 drmkaud (b918e7c5f9bf77202f89e1a9539f2eb4) C:\windows\system32\drivers\drmkaud.sys 18:28:53.0486 5356 drmkaud - ok 18:28:53.0540 5356 DXGKrnl (23f5d28378a160352ba8f817bd8c71cb) C:\windows\System32\drivers\dxgkrnl.sys 18:28:53.0565 5356 DXGKrnl - ok 18:28:53.0678 5356 ebdrv (024e1b5cac09731e4d868e64dbfb4ab0) C:\windows\system32\DRIVERS\evbdx.sys 18:28:53.0764 5356 ebdrv - ok 18:28:53.0818 5356 elxstor (0ed67910c8c326796faa00b2bf6d9d3c) C:\windows\system32\DRIVERS\elxstor.sys 18:28:53.0828 5356 elxstor - ok 18:28:53.0879 5356 ErrDev (8fc3208352dd3912c94367a206ab3f11) C:\windows\system32\drivers\errdev.sys 18:28:53.0880 5356 ErrDev - ok 18:28:53.0936 5356 exfat (2dc9108d74081149cc8b651d3a26207f) C:\windows\system32\drivers\exfat.sys 18:28:53.0948 5356 exfat - ok 18:28:53.0988 5356 fastfat (7e0ab74553476622fb6ae36f73d97d35) C:\windows\system32\drivers\fastfat.sys 18:28:54.0011 5356 fastfat - ok 18:28:54.0059 5356 fdc (e817a017f82df2a1f8cfdbda29388b29) C:\windows\system32\DRIVERS\fdc.sys 18:28:54.0061 5356 fdc - ok 18:28:54.0105 5356 FileInfo (6cf00369c97f3cf563be99be983d13d8) C:\windows\system32\drivers\fileinfo.sys 18:28:54.0122 5356 FileInfo - ok 18:28:54.0154 5356 Filetrace (42c51dc94c91da21cb9196eb64c45db9) C:\windows\system32\drivers\filetrace.sys 18:28:54.0167 5356 Filetrace - ok 18:28:54.0199 5356 flpydisk (87907aa70cb3c56600f1c2fb8841579b) C:\windows\system32\DRIVERS\flpydisk.sys 18:28:54.0202 5356 flpydisk - ok 18:28:54.0239 5356 FltMgr (7520ec808e0c35e0ee6f841294316653) C:\windows\system32\drivers\fltmgr.sys 18:28:54.0267 5356 FltMgr - ok 18:28:54.0316 5356 FsDepends (1a16b57943853e598cff37fe2b8cbf1d) C:\windows\system32\drivers\FsDepends.sys 18:28:54.0332 5356 FsDepends - ok 18:28:54.0365 5356 Fs_Rec (a574b4360e438977038aae4bf60d79a2) C:\windows\system32\drivers\Fs_Rec.sys 18:28:54.0378 5356 Fs_Rec - ok 18:28:54.0433 5356 fvevol (8a73e79089b282100b9393b644cb853b) C:\windows\system32\DRIVERS\fvevol.sys 18:28:54.0440 5356 fvevol - ok 18:28:54.0480 5356 gagp30kx (65ee0c7a58b65e74ae05637418153938) C:\windows\system32\DRIVERS\gagp30kx.sys 18:28:54.0482 5356 gagp30kx - ok 18:28:54.0537 5356 hcw85cir (c44e3c2bab6837db337ddee7544736db) C:\windows\system32\drivers\hcw85cir.sys 18:28:54.0540 5356 hcw85cir - ok 18:28:54.0594 5356 HdAudAddService (a5ef29d5315111c80a5c1abad14c8972) C:\windows\system32\drivers\HdAudio.sys 18:28:54.0602 5356 HdAudAddService - ok 18:28:54.0652 5356 HDAudBus (9036377b8a6c15dc2eec53e489d159b5) C:\windows\system32\drivers\HDAudBus.sys 18:28:54.0657 5356 HDAudBus - ok 18:28:54.0698 5356 HidBatt (1d58a7f3e11a9731d0eaaaa8405acc36) C:\windows\system32\DRIVERS\HidBatt.sys 18:28:54.0700 5356 HidBatt - ok 18:28:54.0730 5356 HidBth (89448f40e6df260c206a193a4683ba78) C:\windows\system32\DRIVERS\hidbth.sys 18:28:54.0733 5356 HidBth - ok 18:28:54.0761 5356 HidIr (cf50b4cf4a4f229b9f3c08351f99ca5e) C:\windows\system32\DRIVERS\hidir.sys 18:28:54.0764 5356 HidIr - ok 18:28:54.0800 5356 HidUsb (10c19f8290891af023eaec0832e1eb4d) C:\windows\system32\DRIVERS\hidusb.sys 18:28:54.0804 5356 HidUsb - ok 18:28:54.0876 5356 hpdskflt (e1d82f0c8456abb03b7df5d623ca47d1) C:\windows\system32\DRIVERS\hpdskflt.sys 18:28:54.0878 5356 hpdskflt - ok 18:28:54.0913 5356 HpqKbFiltr (1210960ff8928950d2a786895b0c424a) C:\windows\system32\DRIVERS\HpqKbFiltr.sys 18:28:54.0915 5356 HpqKbFiltr - ok 18:28:54.0982 5356 HpSAMD (295fdc419039090eb8b49ffdbb374549) C:\windows\system32\drivers\HpSAMD.sys 18:28:54.0984 5356 HpSAMD - ok 18:28:55.0048 5356 HTTP (871917b07a141bff43d76d8844d48106) C:\windows\system32\drivers\HTTP.sys 18:28:55.0070 5356 HTTP - ok 18:28:55.0104 5356 hwdatacard (4e370a583e78b614918c8f2cd5b733ef) C:\windows\system32\DRIVERS\ewusbmdm.sys 18:28:55.0107 5356 hwdatacard - ok 18:28:55.0159 5356 hwpolicy (0c4e035c7f105f1299258c90886c64c5) C:\windows\system32\drivers\hwpolicy.sys 18:28:55.0161 5356 hwpolicy - ok 18:28:55.0223 5356 i8042prt (f151f0bdc47f4a28b1b20a0818ea36d6) C:\windows\system32\drivers\i8042prt.sys 18:28:55.0226 5356 i8042prt - ok 18:28:55.0280 5356 iaStorV (5cd5f9a5444e6cdcb0ac89bd62d8b76e) C:\windows\system32\drivers\iaStorV.sys 18:28:55.0286 5356 iaStorV - ok 18:28:55.0466 5356 igfx (ad626f6964f4d364d226c39e06872dd3) C:\windows\system32\DRIVERS\igdkmd32.sys 18:28:55.0602 5356 igfx - ok 18:28:55.0642 5356 iirsp (4173ff5708f3236cf25195fecd742915) C:\windows\system32\DRIVERS\iirsp.sys 18:28:55.0645 5356 iirsp - ok 18:28:55.0720 5356 InputFilter_Hid_FlexDef2b (d6782400e92c62ed2bf3af8ed4753738) C:\windows\system32\DRIVERS\InputFilter_FlexDef2b.sys 18:28:55.0722 5356 InputFilter_Hid_FlexDef2b - ok 18:28:55.0751 5356 intelide (a0f12f2c9ba6c72f3987ce780e77c130) C:\windows\system32\drivers\intelide.sys 18:28:55.0754 5356 intelide - ok 18:28:55.0791 5356 intelppm (3b514d27bfc4accb4037bc6685f766e0) C:\windows\system32\DRIVERS\intelppm.sys 18:28:55.0794 5356 intelppm - ok 18:28:55.0832 5356 IpFilterDriver (709d1761d3b19a932ff0238ea6d50200) C:\windows\system32\DRIVERS\ipfltdrv.sys 18:28:55.0834 5356 IpFilterDriver - ok 18:28:55.0896 5356 IPMIDRV (4bd7134618c1d2a27466a099062547bf) C:\windows\system32\drivers\IPMIDrv.sys 18:28:55.0899 5356 IPMIDRV - ok 18:28:55.0936 5356 IPNAT (a5fa468d67abcdaa36264e463a7bb0cd) C:\windows\system32\drivers\ipnat.sys 18:28:55.0942 5356 IPNAT - ok 18:28:55.0971 5356 IRENUM (42996cff20a3084a56017b7902307e9f) C:\windows\system32\drivers\irenum.sys 18:28:55.0973 5356 IRENUM - ok 18:28:56.0045 5356 isapnp (1f32bb6b38f62f7df1a7ab7292638a35) C:\windows\system32\drivers\isapnp.sys 18:28:56.0048 5356 isapnp - ok 18:28:56.0082 5356 iScsiPrt (cb7a9abb12b8415bce5d74994c7ba3ae) C:\windows\system32\drivers\msiscsi.sys 18:28:56.0092 5356 iScsiPrt - ok 18:28:56.0122 5356 kbdclass (adef52ca1aeae82b50df86b56413107e) C:\windows\system32\drivers\kbdclass.sys 18:28:56.0122 5356 kbdclass - ok 18:28:56.0156 5356 kbdhid (9e3ced91863e6ee98c24794d05e27a71) C:\windows\system32\drivers\kbdhid.sys 18:28:56.0159 5356 kbdhid - ok 18:28:56.0215 5356 KSecDD (f4647bb23db9038a7536cf6b68f4207f) C:\windows\system32\Drivers\ksecdd.sys 18:28:56.0218 5356 KSecDD - ok 18:28:56.0254 5356 KSecPkg (e73cae53bbb72ba26918492c6b4c229d) C:\windows\system32\Drivers\ksecpkg.sys 18:28:56.0258 5356 KSecPkg - ok 18:28:56.0327 5356 lltdio (f7611ec07349979da9b0ae1f18ccc7a6) C:\windows\system32\DRIVERS\lltdio.sys 18:28:56.0330 5356 lltdio - ok 18:28:56.0392 5356 LSI_FC (eb119a53ccf2acc000ac71b065b78fef) C:\windows\system32\DRIVERS\lsi_fc.sys 18:28:56.0395 5356 LSI_FC - ok 18:28:56.0430 5356 LSI_SAS (8ade1c877256a22e49b75d1cc9161f9c) C:\windows\system32\DRIVERS\lsi_sas.sys 18:28:56.0433 5356 LSI_SAS - ok 18:28:56.0463 5356 LSI_SAS2 (dc9dc3d3daa0e276fd2ec262e38b11e9) C:\windows\system32\DRIVERS\lsi_sas2.sys 18:28:56.0465 5356 LSI_SAS2 - ok 18:28:56.0492 5356 LSI_SCSI (0a036c7d7cab643a7f07135ac47e0524) C:\windows\system32\DRIVERS\lsi_scsi.sys 18:28:56.0495 5356 LSI_SCSI - ok 18:28:56.0531 5356 luafv (6703e366cc18d3b6e534f5cf7df39cee) C:\windows\system32\drivers\luafv.sys 18:28:56.0534 5356 luafv - ok 18:28:56.0634 5356 MBAMProtector (b7ca8cc3f978201856b6ab82f40953c3) C:\windows\system32\drivers\mbam.sys 18:28:56.0636 5356 MBAMProtector - ok 18:28:56.0696 5356 megasas (0fff5b045293002ab38eb1fd1fc2fb74) C:\windows\system32\DRIVERS\megasas.sys 18:28:56.0698 5356 megasas - ok 18:28:56.0744 5356 MegaSR (dcbab2920c75f390caf1d29f675d03d6) C:\windows\system32\DRIVERS\MegaSR.sys 18:28:56.0751 5356 MegaSR - ok 18:28:56.0796 5356 MfeAVFK (64b96de8c492bd435372d9130a535f1d) C:\windows\system32\drivers\MfeAVFK.sys 18:28:56.0799 5356 MfeAVFK - ok 18:28:56.0824 5356 MfeBOPK (078e87a89d36cc3516f19d5fb518bddc) C:\windows\system32\drivers\MfeBOPK.sys 18:28:56.0826 5356 MfeBOPK - ok 18:28:56.0877 5356 mfehidk (168c565101fd5b9db694efdec91fafa9) C:\windows\system32\drivers\mfehidk.sys 18:28:56.0881 5356 mfehidk - ok 18:28:56.0906 5356 MfeRKDK (e0842f67dc9bc4d21d1e319610ebe9e5) C:\windows\system32\drivers\MfeRKDK.sys 18:28:56.0908 5356 MfeRKDK - ok 18:28:56.0937 5356 mfetdik (43a7acbbd70ecd62f0b63486c72089a3) C:\windows\system32\drivers\mfetdik.sys 18:28:56.0941 5356 mfetdik - ok 18:28:56.0991 5356 Modem (f001861e5700ee84e2d4e52c712f4964) C:\windows\system32\drivers\modem.sys 18:28:56.0993 5356 Modem - ok 18:28:57.0023 5356 monitor (79d10964de86b292320e9dfe02282a23) C:\windows\system32\DRIVERS\monitor.sys 18:28:57.0025 5356 monitor - ok 18:28:57.0076 5356 mouclass (fb18cc1d4c2e716b6b903b0ac0cc0609) C:\windows\system32\DRIVERS\mouclass.sys 18:28:57.0078 5356 mouclass - ok 18:28:57.0132 5356 mouhid (2c388d2cd01c9042596cf3c8f3c7b24d) C:\windows\system32\DRIVERS\mouhid.sys 18:28:57.0134 5356 mouhid - ok 18:28:57.0186 5356 mountmgr (fc8771f45ecccfd89684e38842539b9b) C:\windows\system32\drivers\mountmgr.sys 18:28:57.0186 5356 mountmgr - ok 18:28:57.0248 5356 mpio (2d699fb6e89ce0d8da14ecc03b3edfe0) C:\windows\system32\drivers\mpio.sys 18:28:57.0252 5356 mpio - ok 18:28:57.0282 5356 mpsdrv (ad2723a7b53dd1aacae6ad8c0bfbf4d0) C:\windows\system32\drivers\mpsdrv.sys 18:28:57.0284 5356 mpsdrv - ok 18:28:57.0352 5356 MRxDAV (ceb46ab7c01c9f825f8cc6babc18166a) C:\windows\system32\drivers\mrxdav.sys 18:28:57.0385 5356 MRxDAV - ok 18:28:57.0440 5356 mrxsmb (5d16c921e3671636c0eba3bbaac5fd25) C:\windows\system32\DRIVERS\mrxsmb.sys 18:28:57.0459 5356 mrxsmb - ok 18:28:57.0525 5356 mrxsmb10 (6d17a4791aca19328c685d256349fefc) C:\windows\system32\DRIVERS\mrxsmb10.sys 18:28:57.0552 5356 mrxsmb10 - ok 18:28:57.0584 5356 mrxsmb20 (b81f204d146000be76651a50670a5e9e) C:\windows\system32\DRIVERS\mrxsmb20.sys 18:28:57.0602 5356 mrxsmb20 - ok 18:28:57.0653 5356 msahci (012c5f4e9349e711e11e0f19a8589f0a) C:\windows\system32\drivers\msahci.sys 18:28:57.0655 5356 msahci - ok 18:28:57.0715 5356 msdsm (55055f8ad8be27a64c831322a780a228) C:\windows\system32\drivers\msdsm.sys 18:28:57.0718 5356 msdsm - ok 18:28:57.0792 5356 Msfs (daefb28e3af5a76abcc2c3078c07327f) C:\windows\system32\drivers\Msfs.sys 18:28:57.0804 5356 Msfs - ok 18:28:57.0831 5356 mshidkmdf (3e1e5767043c5af9367f0056295e9f84) C:\windows\System32\drivers\mshidkmdf.sys 18:28:57.0833 5356 mshidkmdf - ok 18:28:57.0886 5356 msisadrv (0a4e5757ae09fa9622e3158cc1aef114) C:\windows\system32\drivers\msisadrv.sys 18:28:57.0888 5356 msisadrv - ok 18:28:57.0933 5356 MSKSSRV (8c0860d6366aaffb6c5bb9df9448e631) C:\windows\system32\drivers\MSKSSRV.sys 18:28:57.0935 5356 MSKSSRV - ok 18:28:57.0971 5356 MSPCLOCK (3ea8b949f963562cedbb549eac0c11ce) C:\windows\system32\drivers\MSPCLOCK.sys 18:28:57.0974 5356 MSPCLOCK - ok 18:28:58.0007 5356 MSPQM (f456e973590d663b1073e9c463b40932) C:\windows\system32\drivers\MSPQM.sys 18:28:58.0009 5356 MSPQM - ok 18:28:58.0040 5356 MsRPC (0e008fc4819d238c51d7c93e7b41e560) C:\windows\system32\drivers\MsRPC.sys 18:28:58.0079 5356 MsRPC - ok 18:28:58.0126 5356 mssmbios (fc6b9ff600cc585ea38b12589bd4e246) C:\windows\system32\drivers\mssmbios.sys 18:28:58.0130 5356 mssmbios - ok 18:28:58.0151 5356 MSTEE (b42c6b921f61a6e55159b8be6cd54a36) C:\windows\system32\drivers\MSTEE.sys 18:28:58.0153 5356 MSTEE - ok 18:28:58.0203 5356 MTConfig (33599130f44e1f34631cea241de8ac84) C:\windows\system32\DRIVERS\MTConfig.sys 18:28:58.0205 5356 MTConfig - ok 18:28:58.0234 5356 Mup (159fad02f64e6381758c990f753bcc80) C:\windows\system32\Drivers\mup.sys 18:28:58.0249 5356 Mup - ok 18:28:58.0302 5356 NativeWifiP (26384429fcd85d83746f63e798ab1480) C:\windows\system32\DRIVERS\nwifi.sys 18:28:58.0309 5356 NativeWifiP - ok 18:28:58.0381 5356 NDIS (e7c54812a2aaf43316eb6930c1ffa108) C:\windows\system32\drivers\ndis.sys 18:28:58.0395 5356 NDIS - ok 18:28:58.0431 5356 NdisCap (0e1787aa6c9191d3d319e8bafe86f80c) C:\windows\system32\DRIVERS\ndiscap.sys 18:28:58.0433 5356 NdisCap - ok 18:28:58.0460 5356 NdisTapi (e4a8aec125a2e43a9e32afeea7c9c888) C:\windows\system32\DRIVERS\ndistapi.sys 18:28:58.0462 5356 NdisTapi - ok 18:28:58.0522 5356 Ndisuio (d8a65dafb3eb41cbb622745676fcd072) C:\windows\system32\DRIVERS\ndisuio.sys 18:28:58.0525 5356 Ndisuio - ok 18:28:58.0575 5356 NdisWan (38fbe267e7e6983311179230facb1017) C:\windows\system32\DRIVERS\ndiswan.sys 18:28:58.0578 5356 NdisWan - ok 18:28:58.0632 5356 NDProxy (a4bdc541e69674fbff1a8ff00be913f2) C:\windows\system32\drivers\NDProxy.sys 18:28:58.0656 5356 NDProxy - ok 18:28:58.0693 5356 NetBIOS (80b275b1ce3b0e79909db7b39af74d51) C:\windows\system32\DRIVERS\netbios.sys 18:28:58.0719 5356 NetBIOS - ok 18:28:58.0781 5356 NetBT (280122ddcf04b378edd1ad54d71c1e54) C:\windows\system32\DRIVERS\netbt.sys 18:28:58.0786 5356 NetBT - ok 18:28:58.0869 5356 nfrd960 (1d85c4b390b0ee09c7a46b91efb2c097) C:\windows\system32\DRIVERS\nfrd960.sys 18:28:58.0872 5356 nfrd960 - ok 18:28:58.0930 5356 nmwcd (b0a67de1a128389aea4d42c5a56215fd) C:\windows\system32\drivers\ccdcmb.sys 18:28:58.0932 5356 nmwcd - ok 18:28:58.0963 5356 nmwcdc (025c54f9f8c8bc1894ea38529c742c54) C:\windows\system32\drivers\ccdcmbo.sys 18:28:58.0965 5356 nmwcdc - ok 18:28:59.0004 5356 Npfs (1db262a9f8c087e8153d89bef3d2235f) C:\windows\system32\drivers\Npfs.sys 18:28:59.0016 5356 Npfs - ok 18:28:59.0052 5356 nsiproxy (e9a0a4d07e53d8fea2bb8387a3293c58) C:\windows\system32\drivers\nsiproxy.sys 18:28:59.0054 5356 nsiproxy - ok 18:28:59.0136 5356 Ntfs (81189c3d7763838e55c397759d49007a) C:\windows\system32\drivers\Ntfs.sys 18:28:59.0259 5356 Ntfs - ok 18:28:59.0321 5356 Null (f9756a98d69098dca8945d62858a812c) C:\windows\system32\drivers\Null.sys 18:28:59.0322 5356 Null - ok 18:28:59.0384 5356 nvraid (b3e25ee28883877076e0e1ff877d02e0) C:\windows\system32\drivers\nvraid.sys 18:28:59.0384 5356 nvraid - ok 18:28:59.0428 5356 nvstor (4380e59a170d88c4f1022eff6719a8a4) C:\windows\system32\drivers\nvstor.sys 18:28:59.0432 5356 nvstor - ok 18:28:59.0487 5356 nv_agp (5a0983915f02bae73267cc2a041f717d) C:\windows\system32\drivers\nv_agp.sys 18:28:59.0490 5356 nv_agp - ok 18:28:59.0558 5356 ohci1394 (08a70a1f2cdde9bb49b885cb817a66eb) C:\windows\system32\drivers\ohci1394.sys 18:28:59.0561 5356 ohci1394 - ok 18:28:59.0644 5356 Parport (2ea877ed5dd9713c5ac74e8ea7348d14) C:\windows\system32\DRIVERS\parport.sys 18:28:59.0648 5356 Parport - ok 18:28:59.0711 5356 partmgr (bf8f6af06da75b336f07e23aef97d93b) C:\windows\system32\drivers\partmgr.sys 18:28:59.0713 5356 partmgr - ok 18:28:59.0746 5356 Parvdm (eb0a59f29c19b86479d36b35983daadc) C:\windows\system32\DRIVERS\parvdm.sys 18:28:59.0748 5356 Parvdm - ok 18:28:59.0796 5356 pccsmcfd (fd2041e9ba03db7764b2248f02475079) C:\windows\system32\DRIVERS\pccsmcfd.sys 18:28:59.0798 5356 pccsmcfd - ok 18:28:59.0835 5356 pci (673e55c3498eb970088e812ea820aa8f) C:\windows\system32\drivers\pci.sys 18:28:59.0839 5356 pci - ok 18:28:59.0867 5356 pciide (afe86f419014db4e5593f69ffe26ce0a) C:\windows\system32\drivers\pciide.sys 18:28:59.0869 5356 pciide - ok 18:28:59.0910 5356 pcmcia (f396431b31693e71e8a80687ef523506) C:\windows\system32\DRIVERS\pcmcia.sys 18:28:59.0915 5356 pcmcia - ok 18:28:59.0957 5356 pcw (250f6b43d2b613172035c6747aeeb19f) C:\windows\system32\drivers\pcw.sys 18:28:59.0960 5356 pcw - ok 18:29:00.0016 5356 PEAUTH (9e0104ba49f4e6973749a02bf41344ed) C:\windows\system32\drivers\peauth.sys 18:29:00.0039 5356 PEAUTH - ok 18:29:00.0196 5356 PptpMiniport (631e3e205ad6d86f2aed6a4a8e69f2db) C:\windows\system32\DRIVERS\raspptp.sys 18:29:00.0199 5356 PptpMiniport - ok 18:29:00.0240 5356 Processor (85b1e3a0c7585bc4aae6899ec6fcf011) C:\windows\system32\DRIVERS\processr.sys 18:29:00.0243 5356 Processor - ok 18:29:00.0297 5356 Psched (6270ccae2a86de6d146529fe55b3246a) C:\windows\system32\DRIVERS\pacer.sys 18:29:00.0300 5356 Psched - ok 18:29:00.0344 5356 PxHelp20 (40fedd328f98245ad201cf5f9f311724) C:\windows\system32\Drivers\PxHelp20.sys 18:29:00.0347 5356 PxHelp20 - ok 18:29:00.0405 5356 ql2300 (ab95ecf1f6659a60ddc166d8315b0751) C:\windows\system32\DRIVERS\ql2300.sys 18:29:00.0451 5356 ql2300 - ok 18:29:00.0493 5356 ql40xx (b4dd51dd25182244b86737dc51af2270) C:\windows\system32\DRIVERS\ql40xx.sys 18:29:00.0497 5356 ql40xx - ok 18:29:00.0551 5356 QWAVEdrv (584078ca1b95ca72df2a27c336f9719d) C:\windows\system32\drivers\qwavedrv.sys 18:29:00.0554 5356 QWAVEdrv - ok 18:29:00.0584 5356 RasAcd (30a81b53c766d0133bb86d234e5556ab) C:\windows\system32\DRIVERS\rasacd.sys 18:29:00.0586 5356 RasAcd - ok 18:29:00.0628 5356 RasAgileVpn (57ec4aef73660166074d8f7f31c0d4fd) C:\windows\system32\DRIVERS\AgileVpn.sys 18:29:00.0630 5356 RasAgileVpn - ok 18:29:00.0673 5356 Rasl2tp (d9f91eafec2815365cbe6d167e4e332a) C:\windows\system32\DRIVERS\rasl2tp.sys 18:29:00.0676 5356 Rasl2tp - ok 18:29:00.0714 5356 RasPppoe (0fe8b15916307a6ac12bfb6a63e45507) C:\windows\system32\DRIVERS\raspppoe.sys 18:29:00.0717 5356 RasPppoe - ok 18:29:00.0755 5356 RasSstp (44101f495a83ea6401d886e7fd70096b) C:\windows\system32\DRIVERS\rassstp.sys 18:29:00.0757 5356 RasSstp - ok 18:29:00.0821 5356 rdbss (d528bc58a489409ba40334ebf96a311b) C:\windows\system32\DRIVERS\rdbss.sys 18:29:00.0867 5356 rdbss - ok 18:29:00.0915 5356 rdpbus (0d8f05481cb76e70e1da06ee9f0da9df) C:\windows\system32\DRIVERS\rdpbus.sys 18:29:00.0917 5356 rdpbus - ok 18:29:00.0976 5356 RDPCDD (23dae03f29d253ae74c44f99e515f9a1) C:\windows\system32\DRIVERS\RDPCDD.sys 18:29:00.0978 5356 RDPCDD - ok 18:29:01.0026 5356 RDPENCDD (5a53ca1598dd4156d44196d200c94b8a) C:\windows\system32\drivers\rdpencdd.sys 18:29:01.0030 5356 RDPENCDD - ok 18:29:01.0076 5356 RDPREFMP (44b0a53cd4f27d50ed461dae0c0b4e1f) C:\windows\system32\drivers\rdprefmp.sys 18:29:01.0079 5356 RDPREFMP - ok 18:29:01.0134 5356 RDPWD (244c83332f44589ae98fc347f11b2693) C:\windows\system32\drivers\RDPWD.sys 18:29:01.0139 5356 RDPWD - ok 18:29:01.0198 5356 rdyboost (518395321dc96fe2c9f0e96ac743b656) C:\windows\system32\drivers\rdyboost.sys 18:29:01.0203 5356 rdyboost - ok 18:29:01.0278 5356 RFCOMM (cb928d9e6daf51879dd6ba8d02f01321) C:\windows\system32\DRIVERS\rfcomm.sys 18:29:01.0282 5356 RFCOMM - ok 18:29:01.0322 5356 ROOTMODEM (564297827d213f52c7a3a2ff749568ca) C:\windows\system32\Drivers\RootMdm.sys 18:29:01.0324 5356 ROOTMODEM - ok 18:29:01.0403 5356 rspndr (032b0d36ad92b582d869879f5af5b928) C:\windows\system32\DRIVERS\rspndr.sys 18:29:01.0406 5356 rspndr - ok 18:29:01.0450 5356 RsvLock (13335d083935ab88e09c9acc077355b5) C:\windows\system32\drivers\RsvLock.sys 18:29:01.0461 5356 RsvLock - ok 18:29:01.0487 5356 SafeBoot (062b82fa74c895382ab0784d493c8c9c) C:\windows\system32\drivers\SafeBoot.sys 18:29:01.0487 5356 Suspicious file (NoAccess): C:\windows\system32\drivers\SafeBoot.sys. md5: 062b82fa74c895382ab0784d493c8c9c 18:29:01.0497 5356 SafeBoot ( LockedFile.Multi.Generic ) - warning 18:29:01.0497 5356 SafeBoot - detected LockedFile.Multi.Generic (1) 18:29:01.0537 5356 SbAlg (c9cb2c392c35cbee2733c836d23dc642) C:\windows\system32\drivers\SbAlg.sys 18:29:01.0549 5356 SbAlg - ok 18:29:01.0590 5356 SbFsLock (b5a8ecdee930b52fd3ba35700a15ea53) C:\windows\system32\drivers\SbFsLock.sys 18:29:01.0593 5356 SbFsLock - ok 18:29:01.0657 5356 sbp2port (05d860da1040f111503ac416ccef2bca) C:\windows\system32\drivers\sbp2port.sys 18:29:01.0660 5356 sbp2port - ok 18:29:01.0709 5356 scfilter (0693b5ec673e34dc147e195779a4dcf6) C:\windows\system32\DRIVERS\scfilter.sys 18:29:01.0712 5356 scfilter - ok 18:29:01.0806 5356 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\windows\system32\drivers\secdrv.sys 18:29:01.0816 5356 secdrv - ok 18:29:01.0898 5356 Serenum (9ad8b8b515e3df6acd4212ef465de2d1) C:\windows\system32\DRIVERS\serenum.sys 18:29:01.0900 5356 Serenum - ok 18:29:01.0938 5356 Serial (5fb7fcea0490d821f26f39cc5ea3d1e2) C:\windows\system32\DRIVERS\serial.sys 18:29:01.0941 5356 Serial - ok 18:29:01.0998 5356 sermouse (79bffb520327ff916a582dfea17aa813) C:\windows\system32\DRIVERS\sermouse.sys 18:29:02.0000 5356 sermouse - ok 18:29:02.0094 5356 sffdisk (9f976e1eb233df46fce808d9dea3eb9c) C:\windows\system32\drivers\sffdisk.sys 18:29:02.0097 5356 sffdisk - ok 18:29:02.0121 5356 sffp_mmc (932a68ee27833cfd57c1639d375f2731) C:\windows\system32\drivers\sffp_mmc.sys 18:29:02.0123 5356 sffp_mmc - ok 18:29:02.0173 5356 sffp_sd (6d4ccaedc018f1cf52866bbbaa235982) C:\windows\system32\drivers\sffp_sd.sys 18:29:02.0175 5356 sffp_sd - ok 18:29:02.0212 5356 sfloppy (db96666cc8312ebc45032f30b007a547) C:\windows\system32\DRIVERS\sfloppy.sys 18:29:02.0214 5356 sfloppy - ok 18:29:02.0308 5356 sisagp (2565cac0dc9fe0371bdce60832582b2e) C:\windows\system32\drivers\sisagp.sys 18:29:02.0311 5356 sisagp - ok 18:29:02.0349 5356 SiSRaid2 (a9f0486851becb6dda1d89d381e71055) C:\windows\system32\DRIVERS\SiSRaid2.sys 18:29:02.0351 5356 SiSRaid2 - ok 18:29:02.0394 5356 SiSRaid4 (3727097b55738e2f554972c3be5bc1aa) C:\windows\system32\DRIVERS\sisraid4.sys 18:29:02.0397 5356 SiSRaid4 - ok 18:29:02.0448 5356 Smb (3e21c083b8a01cb70ba1f09303010fce) C:\windows\system32\DRIVERS\smb.sys 18:29:02.0451 5356 Smb - ok 18:29:02.0527 5356 spldr (95cf1ae7527fb70f7816563cbc09d942) C:\windows\system32\drivers\spldr.sys 18:29:02.0529 5356 spldr - ok 18:29:02.0633 5356 sptd (cdddec541bc3c96f91ecb48759673505) C:\windows\system32\Drivers\sptd.sys 18:29:02.0634 5356 Suspicious file (NoAccess): C:\windows\system32\Drivers\sptd.sys. md5: cdddec541bc3c96f91ecb48759673505 18:29:02.0644 5356 sptd ( LockedFile.Multi.Generic ) - warning 18:29:02.0644 5356 sptd - detected LockedFile.Multi.Generic (1) 18:29:02.0692 5356 srv (e4c2764065d66ea1d2d3ebc28fe99c46) C:\windows\system32\DRIVERS\srv.sys 18:29:02.0738 5356 srv - ok 18:29:02.0791 5356 srv2 (03f0545bd8d4c77fa0ae1ceedfcc71ab) C:\windows\system32\DRIVERS\srv2.sys 18:29:02.0823 5356 srv2 - ok 18:29:02.0860 5356 srvnet (be6bd660caa6f291ae06a718a4fa8abc) C:\windows\system32\DRIVERS\srvnet.sys 18:29:02.0882 5356 srvnet - ok 18:29:02.0940 5356 ssmdrv (a36ee93698802cd899f98bfd553d8185) C:\windows\system32\DRIVERS\ssmdrv.sys 18:29:02.0942 5356 ssmdrv - ok 18:29:03.0021 5356 stexstor (db32d325c192b801df274bfd12a7e72b) C:\windows\system32\DRIVERS\stexstor.sys 18:29:03.0024 5356 stexstor - ok 18:29:03.0088 5356 STHDA (8a8246f40792956e957f3e8d0c188963) C:\windows\system32\DRIVERS\stwrt.sys 18:29:03.0105 5356 STHDA - ok 18:29:03.0156 5356 StillCam (edb05bd63148796f23ea78506404a538) C:\windows\system32\DRIVERS\serscan.sys 18:29:03.0158 5356 StillCam - ok 18:29:03.0243 5356 swenum (e58c78a848add9610a4db6d214af5224) C:\windows\system32\drivers\swenum.sys 18:29:03.0245 5356 swenum - ok 18:29:03.0338 5356 SynTP (0e8676fb3bb95aa40fdf7a4a31018c8b) C:\windows\system32\DRIVERS\SynTP.sys 18:29:03.0381 5356 SynTP - ok 18:29:03.0518 5356 Tcpip (65d10b191c59c5501a1263fc33f6894b) C:\windows\system32\drivers\tcpip.sys 18:29:03.0540 5356 Tcpip - ok 18:29:03.0607 5356 TCPIP6 (65d10b191c59c5501a1263fc33f6894b) C:\windows\system32\DRIVERS\tcpip.sys 18:29:03.0628 5356 TCPIP6 - ok 18:29:03.0699 5356 tcpipreg (cca24162e055c3714ce5a88b100c64ed) C:\windows\system32\drivers\tcpipreg.sys 18:29:03.0699 5356 tcpipreg - ok 18:29:03.0772 5356 TDPIPE (1cb91b2bd8f6dd367dfc2ef26fd751b2) C:\windows\system32\drivers\tdpipe.sys 18:29:03.0774 5356 TDPIPE - ok 18:29:03.0834 5356 TDTCP (2c2c5afe7ee4f620d69c23c0617651a8) C:\windows\system32\drivers\tdtcp.sys 18:29:03.0836 5356 TDTCP - ok 18:29:03.0893 5356 tdx (b459575348c20e8121d6039da063c704) C:\windows\system32\DRIVERS\tdx.sys 18:29:03.0896 5356 tdx - ok 18:29:03.0934 5356 TermDD (04dbf4b01ea4bf25a9a3e84affac9b20) C:\windows\system32\drivers\termdd.sys 18:29:03.0937 5356 TermDD - ok 18:29:04.0026 5356 TPM (5ad05191dc8b444a7ba4d79b76c42a30) C:\windows\system32\drivers\tpm.sys 18:29:04.0029 5356 TPM - ok 18:29:04.0112 5356 tssecsrv (254bb140eee3c59d6114c1a86b636877) C:\windows\system32\DRIVERS\tssecsrv.sys 18:29:04.0114 5356 tssecsrv - ok 18:29:04.0163 5356 TsUsbFlt (fd1d6c73e6333be727cbcc6054247654) C:\windows\system32\drivers\tsusbflt.sys 18:29:04.0167 5356 TsUsbFlt - ok 18:29:04.0230 5356 tunnel (b2fa25d9b17a68bb93d58b0556e8c90d) C:\windows\system32\DRIVERS\tunnel.sys 18:29:04.0235 5356 tunnel - ok 18:29:04.0280 5356 uagp35 (750fbcb269f4d7dd2e420c56b795db6d) C:\windows\system32\DRIVERS\uagp35.sys 18:29:04.0284 5356 uagp35 - ok 18:29:04.0350 5356 udfs (ee43346c7e4b5e63e54f927babbb32ff) C:\windows\system32\DRIVERS\udfs.sys 18:29:04.0356 5356 udfs - ok 18:29:04.0481 5356 uliagpkx (44e8048ace47befbfdc2e9be4cbc8880) C:\windows\system32\drivers\uliagpkx.sys 18:29:04.0484 5356 uliagpkx - ok 18:29:04.0540 5356 umbus (d295bed4b898f0fd999fcfa9b32b071b) C:\windows\system32\drivers\umbus.sys 18:29:04.0542 5356 umbus - ok 18:29:04.0585 5356 UmPass (7550ad0c6998ba1cb4843e920ee0feac) C:\windows\system32\DRIVERS\umpass.sys 18:29:04.0587 5356 UmPass - ok 18:29:04.0650 5356 upperdev (78b74af8727a28c128e164e9b53a5413) C:\windows\system32\DRIVERS\usbser_lowerflt.sys 18:29:04.0653 5356 upperdev - ok 18:29:04.0703 5356 usbbus (8ef48ff1c23b1ce6f96d09a45959eb20) C:\windows\system32\DRIVERS\lgusbbus.sys 18:29:04.0705 5356 usbbus - ok 18:29:04.0758 5356 usbccgp (bd9c55d7023c5de374507acc7a14e2ac) C:\windows\system32\DRIVERS\usbccgp.sys 18:29:04.0768 5356 usbccgp - ok 18:29:04.0806 5356 usbcir (04ec7cec62ec3b6d9354eee93327fc82) C:\windows\system32\drivers\usbcir.sys 18:29:04.0809 5356 usbcir - ok 18:29:04.0861 5356 UsbDiag (a0e24c5c2d0cff04bbd3753a72fae80b) C:\windows\system32\DRIVERS\lgusbdiag.sys 18:29:04.0863 5356 UsbDiag - ok 18:29:04.0903 5356 usbehci (f92de757e4b7ce9c07c5e65423f3ae3b) C:\windows\system32\DRIVERS\usbehci.sys 18:29:04.0906 5356 usbehci - ok 18:29:04.0951 5356 usbhub (8dc94aec6a7e644a06135ae7506dc2e9) C:\windows\system32\DRIVERS\usbhub.sys 18:29:04.0959 5356 usbhub - ok 18:29:05.0009 5356 USBModem (cc09a1132b1f6a8362107cc134e90d0b) C:\windows\system32\DRIVERS\lgusbmodem.sys 18:29:05.0011 5356 USBModem - ok 18:29:05.0047 5356 usbohci (e185d44fac515a18d9deddc23c2cdf44) C:\windows\system32\DRIVERS\usbohci.sys 18:29:05.0050 5356 usbohci - ok 18:29:05.0095 5356 usbprint (797d862fe0875e75c7cc4c1ad7b30252) C:\windows\system32\DRIVERS\usbprint.sys 18:29:05.0098 5356 usbprint - ok 18:29:05.0138 5356 usbscan (576096ccbc07e7c4ea4f5e6686d6888f) C:\windows\system32\DRIVERS\usbscan.sys 18:29:05.0141 5356 usbscan - ok 18:29:05.0207 5356 usbser (31181de6190b39fc8007dffd1a48ffd6) C:\windows\system32\drivers\usbser.sys 18:29:05.0210 5356 usbser - ok 18:29:05.0256 5356 UsbserFilt (4f8fbc51a1c0a17310846b417a447f91) C:\windows\system32\DRIVERS\usbser_lowerfltj.sys 18:29:05.0258 5356 UsbserFilt - ok 18:29:05.0293 5356 USBSTOR (f991ab9cc6b908db552166768176896a) C:\windows\system32\DRIVERS\USBSTOR.SYS 18:29:05.0296 5356 USBSTOR - ok 18:29:05.0371 5356 usbuhci (68df884cf41cdada664beb01daf67e3d) C:\windows\system32\drivers\usbuhci.sys 18:29:05.0373 5356 usbuhci - ok 18:29:05.0420 5356 usbvideo (45f4e7bf43db40a6c6b4d92c76cbc3f2) C:\windows\System32\Drivers\usbvideo.sys 18:29:05.0425 5356 usbvideo - ok 18:29:05.0486 5356 vdrvroot (a059c4c3edb09e07d21a8e5c0aabd3cb) C:\windows\system32\drivers\vdrvroot.sys 18:29:05.0489 5356 vdrvroot - ok 18:29:05.0548 5356 vga (17c408214ea61696cec9c66e388b14f3) C:\windows\system32\DRIVERS\vgapnp.sys 18:29:05.0551 5356 vga - ok 18:29:05.0590 5356 VgaSave (8e38096ad5c8570a6f1570a61e251561) C:\windows\System32\drivers\vga.sys 18:29:05.0592 5356 VgaSave - ok 18:29:05.0633 5356 vhdmp (5461686cca2fda57b024547733ab42e3) C:\windows\system32\drivers\vhdmp.sys 18:29:05.0638 5356 vhdmp - ok 18:29:05.0702 5356 viaagp (c829317a37b4bea8f39735d4b076e923) C:\windows\system32\drivers\viaagp.sys 18:29:05.0705 5356 viaagp - ok 18:29:05.0750 5356 ViaC7 (e02f079a6aa107f06b16549c6e5c7b74) C:\windows\system32\DRIVERS\viac7.sys 18:29:05.0753 5356 ViaC7 - ok 18:29:05.0787 5356 viaide (e43574f6a56a0ee11809b48c09e4fd3c) C:\windows\system32\drivers\viaide.sys 18:29:05.0789 5356 viaide - ok 18:29:05.0842 5356 volmgr (4c63e00f2f4b5f86ab48a58cd990f212) C:\windows\system32\drivers\volmgr.sys 18:29:05.0852 5356 volmgr - ok 18:29:05.0898 5356 volmgrx (b5bb72067ddddbbfb04b2f89ff8c3c87) C:\windows\system32\drivers\volmgrx.sys 18:29:05.0905 5356 volmgrx - ok 18:29:05.0946 5356 volsnap (f497f67932c6fa693d7de2780631cfe7) C:\windows\system32\drivers\volsnap.sys 18:29:05.0952 5356 volsnap - ok 18:29:05.0991 5356 vsmraid (9dfa0cc2f8855a04816729651175b631) C:\windows\system32\DRIVERS\vsmraid.sys 18:29:05.0995 5356 vsmraid - ok 18:29:06.0042 5356 vwifibus (90567b1e658001e79d7c8bbd3dde5aa6) C:\windows\system32\DRIVERS\vwifibus.sys 18:29:06.0045 5356 vwifibus - ok 18:29:06.0084 5356 vwififlt (7090d3436eeb4e7da3373090a23448f7) C:\windows\system32\DRIVERS\vwififlt.sys 18:29:06.0088 5356 vwififlt - ok 18:29:06.0120 5356 vwifimp (a3f04cbea6c2a10e6cb01f8b47611882) C:\windows\system32\DRIVERS\vwifimp.sys 18:29:06.0123 5356 vwifimp - ok 18:29:06.0190 5356 wacmoumonitor (9a03558c37e919b9d6a50864aea0a168) C:\windows\system32\DRIVERS\wacmoumonitor.sys 18:29:06.0193 5356 wacmoumonitor - ok 18:29:06.0241 5356 wacommousefilter (427a8bc96f16c40df81c2d2f4edd32dd) C:\windows\system32\DRIVERS\wacommousefilter.sys 18:29:06.0243 5356 wacommousefilter - ok 18:29:06.0281 5356 WacomPen (de3721e89c653aa281428c8a69745d90) C:\windows\system32\DRIVERS\wacompen.sys 18:29:06.0283 5356 WacomPen - ok 18:29:06.0316 5356 wacomvhid (d412d2cc82c3d469415758cab44875a4) C:\windows\system32\DRIVERS\wacomvhid.sys 18:29:06.0320 5356 wacomvhid - ok 18:29:06.0355 5356 WacomVKHid (889459833432b161cb99cfdf84a1a9bb) C:\windows\system32\DRIVERS\WacomVKHid.sys 18:29:06.0357 5356 WacomVKHid - ok 18:29:06.0425 5356 WANARP (3c3c78515f5ab448b022bdf5b8ffdd2e) C:\windows\system32\DRIVERS\wanarp.sys 18:29:06.0428 5356 WANARP - ok 18:29:06.0458 5356 Wanarpv6 (3c3c78515f5ab448b022bdf5b8ffdd2e) C:\windows\system32\DRIVERS\wanarp.sys 18:29:06.0461 5356 Wanarpv6 - ok 18:29:06.0571 5356 Wd (1112a9badacb47b7c0bb0392e3158dff) C:\windows\system32\DRIVERS\wd.sys 18:29:06.0573 5356 Wd - ok 18:29:06.0630 5356 Wdf01000 (9950e3d0f08141c7e89e64456ae7dc73) C:\windows\system32\drivers\Wdf01000.sys 18:29:06.0638 5356 Wdf01000 - ok 18:29:06.0771 5356 WfpLwf (8b9a943f3b53861f2bfaf6c186168f79) C:\windows\system32\DRIVERS\wfplwf.sys 18:29:06.0773 5356 WfpLwf - ok 18:29:06.0805 5356 WIMMount (5cf95b35e59e2a38023836fff31be64c) C:\windows\system32\drivers\wimmount.sys 18:29:06.0808 5356 WIMMount - ok 18:29:06.0988 5356 WinUsb (a67e5f9a400f3bd1be3d80613b45f708) C:\windows\system32\DRIVERS\WinUsb.sys 18:29:06.0990 5356 WinUsb - ok 18:29:07.0087 5356 WmiAcpi (0217679b8fca58714c3bf2726d2ca84e) C:\windows\system32\drivers\wmiacpi.sys 18:29:07.0090 5356 WmiAcpi - ok 18:29:07.0201 5356 ws2ifsl (6db3276587b853bf886b69528fdb048c) C:\windows\system32\drivers\ws2ifsl.sys 18:29:07.0206 5356 ws2ifsl - ok 18:29:07.0332 5356 WudfPf (e714a1c0354636837e20ccbf00888ee7) C:\windows\system32\drivers\WudfPf.sys 18:29:07.0335 5356 WudfPf - ok 18:29:07.0394 5356 WUDFRd (1023ee888c9b47178c5293ed5336ab69) C:\windows\system32\DRIVERS\WUDFRd.sys 18:29:07.0399 5356 WUDFRd - ok 18:29:07.0529 5356 yukonw7 (30b73eb97218a16cbc6de535782a1b35) C:\windows\system32\DRIVERS\yk62x86.sys 18:29:07.0539 5356 yukonw7 - ok 18:29:07.0674 5356 MBR (0x1B8) (5c616939100b85e558da92b899a0fc36) \Device\Harddisk0\DR0 18:29:07.0744 5356 \Device\Harddisk0\DR0 - ok 18:29:07.0759 5356 Boot (0x1200) (9c6582c8b48c4639c394efd394a467b2) \Device\Harddisk0\DR0\Partition0 18:29:07.0763 5356 \Device\Harddisk0\DR0\Partition0 - ok 18:29:07.0776 5356 Boot (0x1200) (670731ab347b6119742a614fcfcbbe09) \Device\Harddisk0\DR0\Partition1 18:29:07.0780 5356 \Device\Harddisk0\DR0\Partition1 - ok 18:29:07.0817 5356 Boot (0x1200) (dcf86c5327d7bf87038b14849c084c5a) \Device\Harddisk0\DR0\Partition2 18:29:07.0820 5356 \Device\Harddisk0\DR0\Partition2 - ok 18:29:07.0842 5356 Boot (0x1200) (f0ea57bf49d84e1dc8698f55477a2ef2) \Device\Harddisk0\DR0\Partition3 18:29:07.0844 5356 \Device\Harddisk0\DR0\Partition3 - ok 18:29:07.0846 5356 ============================================================ 18:29:07.0846 5356 Scan finished 18:29:07.0846 5356 ============================================================ 18:29:07.0883 3712 Detected object count: 2 18:29:07.0883 3712 Actual detected object count: 2 18:30:15.0666 3712 SafeBoot ( LockedFile.Multi.Generic ) - skipped by user 18:30:15.0666 3712 SafeBoot ( LockedFile.Multi.Generic ) - User select action: Skip 18:30:15.0668 3712 sptd ( LockedFile.Multi.Generic ) - skipped by user 18:30:15.0668 3712 sptd ( LockedFile.Multi.Generic ) - User select action: Skip
  8. joe65
    je pense plutot redirection car lorsque je tape par exemple zebulon puis entree il y a un moment d attente puis j arrive sur une de ces pages citées dans la derniere reponse
  9. joe65
    re bien quelques sites de redirection aujourd hui KDO.clubed.com/groupon.fr/be.coquin/ziinga.com/uniblue/menshealthshop.eu/homai/secure bidvertiser/searchbpath... ça arrive de façon aleatoire j ai essayé de regarder dans local setting et dans cookies mais l acces est refusé soit par un cadenas ou un symbole de raccourci il n y a pas un moyen de debloquer ?
  10. joe65
    bonjour j ai lance kaspersky tout s est bien passé a mis plus de 3h00 a tout analysé en mode sans echec a la fin n a rien trouvé d indésirable mais le rapport txt fait 209Mo sur cijoint je dépasse est t il possible de supprimer des données sur C et de relancer l analyse afin d alléger le rapport? nota ce matin j ai toujours des redirection lorsque je surf donc je quitte puis je passe ccleaner et apres les redirections semble comme avoir disparu?!?! les redirections de ce matin je ne les avaient jamais vu auparavant
  11. joe65
    en mode sans echec je n ai pas acces au net
  12. joe65
    sous windows 7 je n ai pas de case desactiver la restauration ????? mais j ai trouver desactiver la protection du systeme est ce cela a coché en mode sans echec c est bien avec la touche F8 au redemarrage de l ordi ?
  13. joe65
    apres 3 hoo de lancement OTL (ne repond pas) j ai tout arreté
  14. joe65
    Je passe par un autre PC, car j'ai lancé OTL il y a maintenant 2 heures et il tourne toujours. Est-il normal que ce soit si long ? Le ventilo tourne à fond.
  15. joe65
    bonjour oui je l avait fait j ai re verifie et c est ok
  16. joe65
    re bon pour l analyse je n ai pu que faire l analyse sur C:\windows\tasks\Mdvvnlsd.job C:\windows\tasks\Nnbfo.job qui d ailleurs l antivirus n a rien trouvé pour c users pas trouvé l emplacement et pour pour les autres j ai des petits cadenas qui me bloque impossible a ouvrir ou a selectionner d ailleurs en regardant bien j ai plusieurs dossiers / sous dossiers / fichiers m intrdisant l acces me disant que je ne suis pas le proprietaire*ou de contacter l administrateur pourtant je suis em mode administrateur je sais pas quoi faire?
  17. joe65
    avant de suivre votre procedure pour repondre a votre question Pouvez vous me dire ce que sont ces lgnes: C:\Users\FRANCE\AppData\Local\{472D55C2-3127-4C77-B226-E7A1F547B3C2} C:\Users\FRANCE\AppData\Local\{8FF1AE51-F8D0-429A-A3F5-EA447BBAA489} C:\Users\FRANCE\AppData\Local\{320C78D4-AC2D-4CEF-BDEA-4D8A769141BC} C:\Users\FRANCE\AppData\Local\{2C4A0543-B3CF-4321-A54F-FF42368F598D} C:\Users\FRANCE\AppData\Local\{4788B8CB-616F-4176-A2FB-51AF85F13007} C:\Users\FRANCE\AppData\Local\{5D8CDD3A-88FC-47FA-961D-D8FA0A934F6A} C:\windows\tasks\Mdvvnlsd.job C:\windows\tasks\Nnbfo.job C:\windows\system32\resmons.dll C:\windows\system32\wuapiy.dll franchement je n en sais rien pour moi c est du charabia a part que je vois une ecriture hexadecimale que je ne saurais dechiffrer (en revanche j aimerais bien savoir!!!!!) et à quoi vous sert McAfee puisque vous utilisez antivir.? c est bizarre il a été désinstalle meme dans le programme de désinstallation de ccleaner il n apparaît pas j ai fait une recherche dans programme et programme data et retrouve des traces en format XML
  18. joe65
    voila ci joint les liens des rapports extra et otl Lien CJoint.com 3CprK3BRDsy http://cjoint.com/?3CprQQrLDc3
  19. joe65
    rien vu dans ms config apres lancement reg.bat j obtient ça REGEDIT4 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "WirelessAssistant"="C:\\Program Files\\Hewlett-Packard\\HP Wireless Assistant\\HPWAMain.exe" "CognizanceTS"="rundll32.exe C:\\PROGRA~1\\HEWLET~1\\IAM\\Bin\\ASTSVCC.dll,RegisterModule" "SysTrayApp"=hex(2):43,3a,5c,50,72,6f,67,72,61,6d,20,46,69,6c,65,73,5c,49,44,\ 54,5c,57,44,4d,5c,73,74,74,72,61,79,2e,65,78,65,00 "PTHOSTTR"="C:\\Program Files\\Hewlett-Packard\\HP ProtectTools Security Manager\\PTHOSTTR.EXE /Start" "Malwarebytes' Anti-Malware"="\"C:\\Program Files\\Malwarebytes' Anti-Malware\\mbamgui.exe\" /starttray" "avgnt"="\"C:\\Program Files\\Avira\\AntiVir Desktop\\avgnt.exe\" /min" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\OptionalComponents] @="" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\OptionalComponents\IMAIL] @="" "Installed"="1" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\OptionalComponents\MAPI] @="" "Installed"="1" "NoChange"="1" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\OptionalComponents\MSFS] @="" "Installed"="1"
  20. joe65
    Bonjour Pear F est le lecteur de DVD
  21. joe65
    bonsoir pear j ai réinstalle ZHP mais pendant le scan il se bloque a 39% avec comme message "il n y a pas de disque dans le lecteur.Inserez un disque dans le lecteur f; j ai fait annuler puis une seconde fois continuer mais rien reste bloque ZHP ne reponds pas on fait quoi? merci
  22. joe65
    re aie aie ça recommence les redirections j ai noté les sites shooting firegames/securebidverdiser/ziinga pour info j ai ouvert le gestionnaire des taches et uc utilise a environ 50% les memoires fortes sont svchost.exe/mbam.exe/searchindexer.exe/searchfilterhost.exe/chrome sinon mabm bloque site web type sortant pour port 49210 processus rundll32.exe relancé antivir mais rien trouvé mais juste 1 avertissement mais sans rien spécifié voila pour l instant
  23. joe65
    bonjour pear merci pour les infos sinon ci joint rapport désinstallation delfix # DelFix v8.8 - Rapport créé le 14/03/2012 à 09:11:46 # Mis à jour le 12/02/12 par Xplode # Système d'exploitation : Windows 7 Home Premium Service Pack 1 (32 bits) # Nom d'utilisateur : FRANCE - JOUJOU (Administrateur) # Exécuté depuis : C:\Users\FRANCE\Downloads\delfix.exe # Option [suppression] ~~~~~~ Dossiers(s) ~~~~~~ Supprimé : C:\Qoobox Supprimé : C:\MyHosts Supprimé : C:\ZHP Supprimé : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ZHP Supprimé : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hijackthis Supprimé : C:\Users\FRANCE\Desktop\RK_Quarantine Supprimé : C:\Program Files\ZHPDiag Supprimé : C:\Program Files\Trend Micro\Hijackthis ~~~~~~ Fichier(s) ~~~~~~ Supprimé : C:\AdwCleaner[R1].txt Supprimé : C:\AdwCleaner[R2].txt Supprimé : C:\AdwCleaner[R3].txt Supprimé : C:\AdwCleaner[R4].txt Supprimé : C:\AdwCleaner[s1].txt Supprimé : C:\AdwCleaner[s2].txt Supprimé : C:\AdwCleaner[s3].txt Supprimé : C:\AdwCleaner[s4].txt Supprimé : C:\ComboFix.txt Supprimé : C:\MyHosts.txt Supprimé : C:\rkill.log Supprimé : C:\TDSSKiller.2.7.14.0_04.03.2012_13.08.38_log.txt Supprimé : C:\TDSSKiller.2.7.14.0_26.02.2012_21.44.34_log.txt Supprimé : C:\Users\FRANCE\Desktop\adwcleaner.exe Supprimé : C:\Users\FRANCE\Desktop\aswMBR - Raccourci.lnk Supprimé : C:\Users\FRANCE\Desktop\ComboFix - Raccourci.lnk Supprimé : C:\Users\FRANCE\Desktop\RogueKiller - Raccourci.lnk Supprimé : C:\Users\FRANCE\Downloads\aswMBR.exe Supprimé : C:\Users\FRANCE\Downloads\ComboFix.exe Supprimé : C:\Users\FRANCE\Downloads\exhaustParticle.dds Supprimé : C:\Users\FRANCE\Downloads\MyHosts.exe Supprimé : C:\Users\FRANCE\Downloads\RogueKiller.exe Supprimé : C:\Users\FRANCE\Downloads\tdsskiller.zip Supprimé : C:\Users\FRANCE\Downloads\ZHPDiag2 (1).exe Supprimé : C:\Users\FRANCE\Downloads\ZHPDiag2.exe Supprimé : C:\Users\FRANCE\Downloads\ZHPDiag_20120304_u13w810k7p12.txt Supprimé : C:\Users\Public\Desktop\ZHPDiag.lnk Supprimé : C:\Users\Public\Desktop\ZHPFix.lnk Supprimé : C:\Users\Public\Desktop\MBRCheck.lnk Supprimé : C:\windows\grep.exe Supprimé : C:\windows\PEV.exe Supprimé : C:\windows\NIRCMD.exe Supprimé : C:\windows\MBR.exe Supprimé : C:\windows\SED.exe Supprimé : C:\windows\SWREG.exe Supprimé : C:\windows\SWSC.exe Supprimé : C:\windows\SWXCACLS.exe Supprimé : C:\windows\Zip.exe ~~~~~~ Registre ~~~~~~ Clé Supprimée : HKLM\SOFTWARE\AdwCleaner Clé Supprimée : HKLM\SOFTWARE\Swearware Clé Supprimée : HKLM\SOFTWARE\TrendMicro\Hijackthis Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Hijackthis Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ZHPDiag_is1 Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\HijackThis.exe Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\combofix.exe Clé Supprimée : HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_ASWMBR ~~~~~~ Autres ~~~~~~ -> Prefetch Vidé ************************* DelFix[R1].txt - [3061 octets] - [14/03/2012 09:08:38] DelFix[R2].txt - [3117 octets] - [14/03/2012 09:11:09] DelFix[s1].txt - [3126 octets] - [14/03/2012 09:11:46] ########## EOF - C:\DelFix[s1].txt - [3250 octets] ########## et maintenant il y a une autre procédure a suivre?
  24. joe65
    Ok merci pour toute ces reponses pour les formations ou est il possible de s adresser? en ce qui concerne les lignes vertes je vois qu il y a des PUP ce sont des pop up ce sont bien des fenêtres pub intempestives? parce que je n ai plus de redirection mais j ai ces petites fenêtres qui apparaissent bien que dans les options internet j ai coche le blocage de ces fenêtres publicitaires il y a t il un autre moyen de les bloquer? il a aussi spybot dans ces lignes n est t il pas la pour bloquer les spywares? il est vraiment obsolète? que prendre alors pour les spywares adwareect... pour windows 7 ? et puis apres on attends combien de jours pour savoir si le probleme est vraiment resolu (mettre ce sujet en resolu) merci
  25. joe65
    bonjour"Pear" avant de procéder a la désinstallation des logiciels une autre question: vous dites pour les clés envoi de rapport seulement si infection mais comment je le sais sur combofix et possédant 6 clés cela veut dire que je dois lancer 6 fois une analyse avec combofix ? il reconnait automatiquement les clés ou le port connecté??? cela ne risque pas de detraquer le pc de faire autant d analyse a la suite? a entendre combofix doit etre utiliser avec précaution il a des risques a l utiliser (je ne suis pas expert) une autre analyse avec un autre logiciel est t il possible zhp,hijackyhis,rogue,ect...... il y a t il des formations pour pouvoir analyser ces styles de rapport ? et aussi qu est ce qui était infecté sur mon pc et comment la redirection s est installé possédant antivir et malwarbytes bytes mon pc est il vraiment sécurise ? est t il toujours possible de faire des achats par le net ? merci
×
×
  • Créer...