Infection par un virus bagle ?
Résolu/Fermé
Homerus1982
Messages postés
77
Date d'inscription
mardi 25 octobre 2011
Statut
Membre
Dernière intervention
12 août 2015
-
25 oct. 2011 à 12:40
2011N2 Messages postés 13352 Date d'inscription samedi 29 janvier 2011 Statut Contributeur sécurité Dernière intervention 24 décembre 2016 - 29 oct. 2011 à 15:15
2011N2 Messages postés 13352 Date d'inscription samedi 29 janvier 2011 Statut Contributeur sécurité Dernière intervention 24 décembre 2016 - 29 oct. 2011 à 15:15
A voir également:
- Infection par un virus bagle ?
- Svchost.exe virus - Guide
- L'ordinateur de mustapha a été infecté par un virus répertorié récemment. son anti-virus ne l'a pas détecté. qu'a-t-il pu se passer ? - Forum Virus
- Altruistic virus ✓ - Forum Antivirus
- L'ordinateur d'arthur a été infecté par un virus répertorié récemment. son anti-virus ne l'a pas détecté. qu'a-t-il pu se passer ? ✓ - Forum Antivirus
- Faux message virus iphone - Forum iPhone
37 réponses
2011N2
Messages postés
13352
Date d'inscription
samedi 29 janvier 2011
Statut
Contributeur sécurité
Dernière intervention
24 décembre 2016
917
25 oct. 2011 à 19:09
25 oct. 2011 à 19:09
Bien :)
* Télécharger sur le bureau RogueKiller : https://www.luanagames.com/index.fr.html
* Quitter tous les programmes en cours.
* Sous Vista/Seven, clic droit => Éxécuter en tant qu'administrateur.
* Sinon lancer simplement RogueKiller.exe
* Lorsque demandé, tapez 1 et valider.
* Un rapport à dû s'ouvrir (RKreport.txt se trouve également à côté de l'exécutable), colle son contenu dans la réponse sur le forum.
* Si le programme a été bloqué, ne pas hésiter a essayer plusieurs fois. Si vraiment cela ne passe pas (ça peut arriver), le renommer en winlogon.exe
Si tu as des questions, n'hésite pas à me les poser !
@+
Gabriel.
* Télécharger sur le bureau RogueKiller : https://www.luanagames.com/index.fr.html
* Quitter tous les programmes en cours.
* Sous Vista/Seven, clic droit => Éxécuter en tant qu'administrateur.
* Sinon lancer simplement RogueKiller.exe
* Lorsque demandé, tapez 1 et valider.
* Un rapport à dû s'ouvrir (RKreport.txt se trouve également à côté de l'exécutable), colle son contenu dans la réponse sur le forum.
* Si le programme a été bloqué, ne pas hésiter a essayer plusieurs fois. Si vraiment cela ne passe pas (ça peut arriver), le renommer en winlogon.exe
Si tu as des questions, n'hésite pas à me les poser !
@+
Gabriel.
2011N2
Messages postés
13352
Date d'inscription
samedi 29 janvier 2011
Statut
Contributeur sécurité
Dernière intervention
24 décembre 2016
917
25 oct. 2011 à 12:48
25 oct. 2011 à 12:48
Salut,
Commence par passer la dernière version téléchargeable ici :
http://eldesaparecido.com/tools/FyK.exe
Poste le rapport de recherche ;)
Merci,
Gabriel.
Commence par passer la dernière version téléchargeable ici :
http://eldesaparecido.com/tools/FyK.exe
Poste le rapport de recherche ;)
Merci,
Gabriel.
Homerus1982
Messages postés
77
Date d'inscription
mardi 25 octobre 2011
Statut
Membre
Dernière intervention
12 août 2015
25 oct. 2011 à 13:48
25 oct. 2011 à 13:48
voilà nouveau rapport ! mais tous les fichiers que je crois reconnaître dans "crack" étaient présents avant l'infection du bagle. J'ai déjà supprimé le programme qui je pense a causé l'infection... le problème est que je ne sait pas quel fichier il a endommagé pour empêcher mon parefeu de fonctionner
############################## | FindyKill V5.054 |
# User : Mel (Administrateurs) # MEL-PC
# Update on 11/10/2011 by El Desaparecido
# Start at: 13:24:28 | 25/10/2011
# Website : https://www.sosvirus.net/
# Contact : contact@eldesaparecido.com
# AMD Athlon(tm) X2 Dual Core Processor L310
# Microsoft Windows 7 Édition Familiale Premium (6.1.7601 64-bit) # Service Pack 1
# Internet Explorer 9.0.8112.16421
# Windows Firewall Status : Enabled
# C:\ # Disque fixe local # 584,07 Go (443,21 Go free) [Acer] # NTFS
# D:\ # Disque CD-ROM
# E:\ # Disque CD-ROM
################## | Processus infectieux stoppés |
################## | Eléments infectieux |
################## | Reference Bagle MD5 ... |
################## | MD5 ... |
################## | Bagle Trace ... |
################## | Crack .... |
[18/10/2011 14:07|--a----t-|137536] C:\Users\Mel\AppData\Local\Facebook\Update\FacebookUpdate.exe
[18/10/2011 14:07|--a----t-|137536] C:\Users\Mel\AppData\Local\Facebook\Update\1.2.203.0\FacebookCrashHandler.exe
[18/10/2011 14:07|--a----t-|137536] C:\Users\Mel\AppData\Local\Facebook\Update\1.2.203.0\FacebookUpdate.exe
[11/10/2011 18:22|--a------|3123016] C:\Users\Mel\AppData\Local\Facebook\Video\Skype\FacebookVideoCalling.exe
[13/04/2011 11:21|--a------|913248] C:\Users\Mel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4NIGNNB9\DivXInstaller[1].exe
[13/04/2011 11:24|--a------|1365096] C:\Users\Mel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4NIGNNB9\Installer[1].exe
[13/04/2011 11:24|--a------|278768] C:\Users\Mel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4NIGNNB9\Installer[2].exe
[23/08/2011 11:40|--a------|79736] C:\Users\Mel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\E80WWEN5\QuickTimeInstallerAdmin[1].exe
[12/10/2010 16:40|--a------|509552] C:\Users\Mel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\80INSY8R\GoogleToolbarInstaller_updater_signed[1].exe
[07/08/2011 13:02|--a------|1287016] C:\Users\Mel\AppData\Local\Microsoft\Windows Live\Installer\Catalog\wlsetup.exe
[29/08/2003 01:02|--a------|561152] C:\Users\Mel\AppData\Local\Temp\AutoRun.exe
[14/11/2010 22:16|--a------|876824] C:\Users\Mel\AppData\Local\Temp\DivXSetup.exe
[27/09/2010 08:25|--a------|19694544] C:\Users\Mel\AppData\Local\Temp\EAD16DA.exe
[29/08/2003 01:02|--a------|286720] C:\Users\Mel\AppData\Local\Temp\eauninstall.exe
[11/09/2010 21:09|--a------|2788816] C:\Users\Mel\AppData\Local\Temp\FP_PL_PFS_INSTALLER.exe
[04/12/2010 14:05|--a------|2324992] C:\Users\Mel\AppData\Local\Temp\igraal.exe
[16/09/2010 23:17|--a------|875296] C:\Users\Mel\AppData\Local\Temp\jre-6u22-windows-i586-iftw-rv.exe
[06/01/2011 01:40|--a------|884512] C:\Users\Mel\AppData\Local\Temp\jre-6u23-windows-i586-iftw-rv.exe
[10/02/2011 02:48|--a------|885536] C:\Users\Mel\AppData\Local\Temp\jre-6u24-windows-i586-iftw-rv.exe
[05/05/2011 17:18|--a------|901408] C:\Users\Mel\AppData\Local\Temp\jre-6u26-windows-i586-iftw-rv.exe
[25/10/2010 17:44|--a------|30164216] C:\Users\Mel\AppData\Local\Temp\LimeWireWin.exe
[25/04/2011 11:49|--a------|8931808] C:\Users\Mel\AppData\Local\Temp\mediaget_installer.exe
[26/10/2010 16:52|--a------|469256] C:\Users\Mel\AppData\Local\Temp\MSN333A.exe
[06/12/2010 22:15|--a------|2685304] C:\Users\Mel\AppData\Local\Temp\NEW19BC.tmp.exe
[20/11/2010 22:29|--a------|1732464] C:\Users\Mel\AppData\Local\Temp\OB.exe
[20/10/2011 22:16|--a------|48103936] C:\Users\Mel\AppData\Local\Temp\OriginLauncher34630115.exe
[05/10/2011 19:38|-ra------|336280] C:\Users\Mel\AppData\Local\Temp\rootsupd.exe
[29/08/2003 00:37|--a------|700416] C:\Users\Mel\AppData\Local\Temp\SC4_uninst.exe
[16/04/2008 16:21|--a------|90112] C:\Users\Mel\AppData\Local\Temp\SCS Uninstaller.exe
[12/10/2010 16:40|--a------|426552] C:\Users\Mel\AppData\Local\Temp\SearchWithGoogleUpdate.exe
[19/10/2011 00:09|--a------|46983184] C:\Users\Mel\AppData\Local\Temp\setup.exe
[16/08/2003 04:13|--a------|86016] C:\Users\Mel\AppData\Local\Temp\SimCity 4 Deluxe_uninst.exe
[09/09/2011 14:58|--a------|19445128] C:\Users\Mel\AppData\Local\Temp\SkypeSetup.exe
[04/12/2010 14:03|--a------|6677303] C:\Users\Mel\AppData\Local\Temp\TomsDownloader15274.exe
[11/09/2010 21:02|--a------|4656976] C:\Users\Mel\AppData\Local\Temp\Update_4f54.exe
[31/10/2010 20:36|--a------|4865432] C:\Users\Mel\AppData\Local\Temp\Update_efb3.exe
[05/10/2011 19:38|--a------|5673816] C:\Users\Mel\AppData\Local\Temp\vcredist_x64.exe
[05/10/2011 19:38|--a------|4995416] C:\Users\Mel\AppData\Local\Temp\vcredist_x86.exe
[05/10/2011 19:38|--a------|2585872] C:\Users\Mel\AppData\Local\Temp\WindowsInstaller-KB893803-v2-x86.exe
[28/02/2011 12:15|--a------|2832544] C:\Users\Mel\AppData\Local\Temp\1870.dir\InstallFlashPlayer.exe
[25/04/2011 11:00|--a------|2832544] C:\Users\Mel\AppData\Local\Temp\1BBB.dir\InstallFlashPlayer.exe
[18/04/2011 17:51|--a------|2832544] C:\Users\Mel\AppData\Local\Temp\2D38.dir\InstallFlashPlayer.exe
[08/06/2011 11:56|--a------|3080864] C:\Users\Mel\AppData\Local\Temp\5FAD.dir\InstallFlashPlayer.exe
[13/02/2011 00:48|--a------|2832544] C:\Users\Mel\AppData\Local\Temp\756E.dir\InstallFlashPlayer.exe
[04/04/2011 11:04|--a------|2833568] C:\Users\Mel\AppData\Local\Temp\7BE4.dir\InstallFlashPlayer.exe
[11/04/2011 10:08|--a------|2833568] C:\Users\Mel\AppData\Local\Temp\992.dir\InstallFlashPlayer.exe
[14/12/2010 11:08|--a------|2790864] C:\Users\Mel\AppData\Local\Temp\D28B.dir\InstallFlashPlayer.exe
[26/09/2010 12:51|--a------|2788816] C:\Users\Mel\AppData\Local\Temp\D93F.dir\InstallFlashPlayer.exe
[07/07/2011 11:12|--a------|3082400] C:\Users\Mel\AppData\Local\Temp\DE6D.dir\InstallFlashPlayer.exe
[10/08/2011 19:02|--a------|3089056] C:\Users\Mel\AppData\Local\Temp\E494.dir\InstallFlashPlayer.exe
[27/03/2011 20:08|--a------|2833568] C:\Users\Mel\AppData\Local\Temp\F612.dir\InstallFlashPlayer.exe
[16/09/2011 09:07|--a------|54544] C:\Users\Mel\AppData\Local\Temp\IXP000.TMP\Autorun.exe
[18/10/2011 01:36|--a------|139776] C:\Users\Mel\AppData\Local\Temp\IXP000.TMP\file.exe
[16/09/2011 09:07|--a------|54544] C:\Users\Mel\AppData\Local\Temp\IXP001.TMP\Autorun.exe
[18/10/2011 01:36|--a------|139776] C:\Users\Mel\AppData\Local\Temp\IXP001.TMP\file.exe
[21/11/2010 16:07|--a------|53248] C:\Users\Mel\AppData\Local\Temp\jdic_0_9_5\IeEmbed.exe
[04/12/2010 14:53|--a------|747376] C:\Users\Mel\AppData\Local\Temp\NERO20100326135034074\setup.exe
[04/12/2010 14:53|--a------|4499824] C:\Users\Mel\AppData\Local\Temp\NERO20100326135034074\ISSetupPrerequisites\NDP30SP2-KB967328-x86\NDP30SP2-KB967328-x86.exe
[04/12/2010 14:53|--a------|144656] C:\Users\Mel\AppData\Local\Temp\NERO20100326135034074\ISSetupPrerequisites\NDP30SP2-KB967328-x86\PRQStarter-1.exe
[04/12/2010 14:53|--a------|525656] C:\Users\Mel\AppData\Local\Temp\NERO20100326135034074\ISSetupPrerequisites\{046FDEE1-7615-4CE7-990D-19D4CC134D5F}\DXSETUP.exe
[04/12/2010 14:53|--a------|144656] C:\Users\Mel\AppData\Local\Temp\NERO20100326135034074\ISSetupPrerequisites\{046FDEE1-7615-4CE7-990D-19D4CC134D5F}\PRQStarter-1.exe
[04/12/2010 14:53|--a------|144656] C:\Users\Mel\AppData\Local\Temp\NERO20100326135034074\ISSetupPrerequisites\{22AA129A-8E5D-45AE-A3E4-D110703EF141}\PRQStarter-1.exe
[04/12/2010 14:53|--a------|3327000] C:\Users\Mel\AppData\Local\Temp\NERO20100326135034074\ISSetupPrerequisites\{22AA129A-8E5D-45AE-A3E4-D110703EF141}\WindowsXP-KB942288-v3-x86.exe
[04/12/2010 14:53|--a------|144656] C:\Users\Mel\AppData\Local\Temp\NERO20100326135034074\ISSetupPrerequisites\{2AE04573-CA1C-46BC-8430-E226B823BB8C}\PRQStarter-1.exe
[04/12/2010 14:53|--a------|1314504] C:\Users\Mel\AppData\Local\Temp\NERO20100326135034074\ISSetupPrerequisites\{2AE04573-CA1C-46BC-8430-E226B823BB8C}\vs_piaredist.exe
[04/12/2010 14:53|--a------|525656] C:\Users\Mel\AppData\Local\Temp\NERO20100326135034074\ISSetupPrerequisites\{3D0986A7-2F13-4AD4-A35F-D167603DB43F}\DXSETUP.exe
[04/12/2010 14:53|--a------|144656] C:\Users\Mel\AppData\Local\Temp\NERO20100326135034074\ISSetupPrerequisites\{3D0986A7-2F13-4AD4-A35F-D167603DB43F}\PRQStarter-1.exe
[04/12/2010 14:53|--a------|81920] C:\Users\Mel\AppData\Local\Temp\NERO20100326135034074\ISSetupPrerequisites\{4C6E12E5-5905-4aa5-B462-E7DFC4BD75E5}\LSDriveDetect.exe
[04/12/2010 14:53|--a------|103696] C:\Users\Mel\AppData\Local\Temp\NERO20100326135034074\ISSetupPrerequisites\{4C6E12E5-5905-4aa5-B462-E7DFC4BD75E5}\LS_LAUNCHER.exe
[04/12/2010 14:53|--a------|144656] C:\Users\Mel\AppData\Local\Temp\NERO20100326135034074\ISSetupPrerequisites\{4C6E12E5-5905-4aa5-B462-E7DFC4BD75E5}\PRQStarter-1.exe
[04/12/2010 14:53|--a------|144656] C:\Users\Mel\AppData\Local\Temp\NERO20100326135034074\ISSetupPrerequisites\{5CCCB5E2-D83C-42AD-B8BA-6C073D804247}\PRQStarter-1.exe
[04/12/2010 14:53|--a------|144656] C:\Users\Mel\AppData\Local\Temp\NERO20100326135034074\ISSetupPrerequisites\{6BD3444F-03E6-4E21-BAD0-50E6A5820433}\PRQStarter-1.exe
[04/12/2010 14:53|--a------|144656] C:\Users\Mel\AppData\Local\Temp\NERO20100326135034074\ISSetupPrerequisites\{8D7309F4-C4B6-4408-8DA9-D3B0E7987822}\PRQStarter-1.exe
[04/12/2010 14:53|--a------|525656] C:\Users\Mel\AppData\Local\Temp\NERO20100326135034074\ISSetupPrerequisites\{A4400125-0F4D-4B79-80B5-D85DADF61F7A}\DXSETUP.exe
[04/12/2010 14:53|--a------|144656] C:\Users\Mel\AppData\Local\Temp\NERO20100326135034074\ISSetupPrerequisites\{A4400125-0F4D-4B79-80B5-D85DADF61F7A}\PRQStarter-1.exe
[04/12/2010 14:53|--a------|525656] C:\Users\Mel\AppData\Local\Temp\NERO20100326135034074\ISSetupPrerequisites\{A5D3B160-0EA1-4A57-8D82-C53A853AEB07}\DXSETUP.exe
[04/12/2010 14:53|--a------|144656] C:\Users\Mel\AppData\Local\Temp\NERO20100326135034074\ISSetupPrerequisites\{A5D3B160-0EA1-4A57-8D82-C53A853AEB07}\PRQStarter-1.exe
[04/12/2010 14:53|--a------|144656] C:\Users\Mel\AppData\Local\Temp\NERO20100326135034074\ISSetupPrerequisites\{B56633A3-7ADC-4CE5-A320-ACA0B65DA04B}\PRQStarter-1.exe
[04/12/2010 14:53|--a------|4216840] C:\Users\Mel\AppData\Local\Temp\NERO20100326135034074\ISSetupPrerequisites\{B56633A3-7ADC-4CE5-A320-ACA0B65DA04B}\vcredist_x86.exe
[04/12/2010 14:53|--a------|926992] C:\Users\Mel\AppData\Local\Temp\NERO20100326135034074\ISSetupPrerequisites\{BF80A1C0-C3FF-4B1C-ABEF-22CD4F97A0AB}\NeroBar.exe
[04/12/2010 14:53|--a------|144656] C:\Users\Mel\AppData\Local\Temp\NERO20100326135034074\ISSetupPrerequisites\{BF80A1C0-C3FF-4B1C-ABEF-22CD4F97A0AB}\PRQStarter-1.exe
[04/12/2010 14:53|--a------|2131336] C:\Users\Mel\AppData\Local\Temp\NERO20100326135034074\ISSetupPrerequisites\{BF80A1C0-C3FF-4B1C-ABEF-22CD4F97A0AB}\Toolbar.exe
[04/12/2010 14:53|--a------|525656] C:\Users\Mel\AppData\Local\Temp\NERO20100326135034074\ISSetupPrerequisites\{C00D1E35-750C-4021-86E0-A088C6678DD9}\DXSETUP.exe
[04/12/2010 14:53|--a------|144656] C:\Users\Mel\AppData\Local\Temp\NERO20100326135034074\ISSetupPrerequisites\{C00D1E35-750C-4021-86E0-A088C6678DD9}\PRQStarter-1.exe
[04/12/2010 14:53|--a------|144656] C:\Users\Mel\AppData\Local\Temp\NERO20100326135034074\ISSetupPrerequisites\{C597C3FC-2110-451E-832E-9352964E56F9}\PRQStarter-1.exe
[04/12/2010 14:53|--a------|2749864] C:\Users\Mel\AppData\Local\Temp\NERO20100326135034074\ISSetupPrerequisites\{C597C3FC-2110-451E-832E-9352964E56F9}\vcredist_x86.exe
[04/12/2010 14:53|--a------|144656] C:\Users\Mel\AppData\Local\Temp\NERO20100326135034074\ISSetupPrerequisites\{D37C1D8F-C930-4005-BCD8-3715028461C0}\PRQStarter-1.exe
[04/12/2010 14:53|--a------|4485976] C:\Users\Mel\AppData\Local\Temp\NERO20100326135034074\ISSetupPrerequisites\{D37C1D8F-C930-4005-BCD8-3715028461C0}\vcredist_x86.exe
[04/12/2010 14:53|--a------|525656] C:\Users\Mel\AppData\Local\Temp\NERO20100326135034074\ISSetupPrerequisites\{E1EFF81F-E42D-4D52-8C56-3493C52D5641}\DXSETUP.exe
[04/12/2010 14:53|--a------|144656] C:\Users\Mel\AppData\Local\Temp\NERO20100326135034074\ISSetupPrerequisites\{E1EFF81F-E42D-4D52-8C56-3493C52D5641}\PRQStarter-1.exe
[14/09/2011 11:30|--a------|48912] C:\Users\Mel\AppData\Local\Temp\{1455AEAB-8FFF-47C2-9A0D-C8D2A3050320}\Disk1\Autorun.exe
[14/09/2011 11:31|--a------|398608] C:\Users\Mel\AppData\Local\Temp\{1455AEAB-8FFF-47C2-9A0D-C8D2A3050320}\Disk1\setup.exe
[14/09/2011 11:30|--a------|2512656] C:\Users\Mel\AppData\Local\Temp\{1455AEAB-8FFF-47C2-9A0D-C8D2A3050320}\Disk1\Game\Bin\SimsMedievalLauncher.exe
[14/09/2011 11:30|--a------|107280] C:\Users\Mel\AppData\Local\Temp\{1455AEAB-8FFF-47C2-9A0D-C8D2A3050320}\Disk1\Game\Bin\SMLauncher.exe
[14/09/2011 11:31|--a------|29399312] C:\Users\Mel\AppData\Local\Temp\{1455AEAB-8FFF-47C2-9A0D-C8D2A3050320}\Disk1\Game\Bin\TSM.exe
[14/09/2011 11:30|--a------|120112] C:\Users\Mel\AppData\Local\Temp\{1455AEAB-8FFF-47C2-9A0D-C8D2A3050320}\Disk1\Game\Bin\EACore\EACoreServer.exe
[14/09/2011 11:30|--a------|206136] C:\Users\Mel\AppData\Local\Temp\{1455AEAB-8FFF-47C2-9A0D-C8D2A3050320}\Disk1\Game\Bin\EACore\EAProxyInstaller.exe
[14/09/2011 11:30|--a------|206128] C:\Users\Mel\AppData\Local\Temp\{1455AEAB-8FFF-47C2-9A0D-C8D2A3050320}\Disk1\Game\Bin\EACore\PatchProgress.exe
[10/05/2008 00:27|--a------|11080] C:\Users\Mel\AppData\Local\Temp\{70B4A1EB-A7FC-4A7D-81E2-50DAAA11905A}\dotnetinstaller.exe
[10/05/2008 00:28|--a------|117560] C:\Users\Mel\AppData\Local\Temp\{70B4A1EB-A7FC-4A7D-81E2-50DAAA11905A}\ISBEW64.exe
[10/12/2010 13:32|--a------|385024] C:\Users\Mel\AppData\Local\Temp\{70B4A1EB-A7FC-4A7D-81E2-50DAAA11905A}\{E6B88BD6-E4B2-4701-A648-B6DAC6E491CC}\The Sims 3 Generations_code.exe
[10/12/2010 13:32|--a------|184320] C:\Users\Mel\AppData\Local\Temp\{70B4A1EB-A7FC-4A7D-81E2-50DAAA11905A}\{E6B88BD6-E4B2-4701-A648-B6DAC6E491CC}\The Sims 3 Generations_uninst.exe
[30/05/2011 20:20|--a------|398608] C:\Users\Mel\AppData\Local\Temp\{B28A5030-6958-4085-969A-73462C771C21}\Sims3EP04Setup.exe
[21/11/2010 16:07|--a------|68498] C:\Users\Mel\AppData\Local\Temp\~nsu.tmp\Au_.exe
[21/11/2010 16:07|--a------|47753] C:\Users\Mel\AppData\Local\Temp\~nsu.tmp\Bu_.exe
[07/12/2010 00:26|--a------|2186183] C:\Users\Mel\AppData\Roaming\igraal\update.exe
[27/09/2010 08:31|--a------|53632] C:\Users\Mel\AppData\Roaming\Macromedia\Flash Player\www.macromedia.com\bin\airappinstaller\airappinstaller.exe
[15/05/2011 14:05|--a------|117427] C:\Users\Mel\AppData\Roaming\Macromedia\Flash Player\www.macromedia.com\bin\digitaleditions\digitaleditions.exe
[26/09/2010 18:50|-ra------|10134] C:\Users\Mel\AppData\Roaming\Microsoft\Installer\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}\ARPPRODUCTICON.exe
[08/06/2011 00:11|--a------|52616] C:\Users\Mel\AppData\Roaming\Mozilla\Firefox\Profiles\ml6ly7ys.default\extensions\toolbar@ask.com\chrome\content\issigned.exe
[25/05/2011 03:09|--a------|345992] C:\Users\Mel\AppData\Roaming\Mozilla\Firefox\Profiles\ml6ly7ys.default\extensions\toolbar@ask.com\chrome\content\NeroApplicationManager.exe
[10/10/2011 12:22|--a------|3623592] C:\Users\Mel\AppData\Roaming\Mozilla\Firefox\Profiles\ml6ly7ys.default\extensions\toolbar@ask.com\chrome\temp\askToolbar.exe
[10/06/2011 18:38|--a------|257502] C:\Users\Mel\AppData\Roaming\Mozilla\Firefox\Profiles\ml6ly7ys.default\extensions\toolbar@ask.com\chrome\temp\ff-config.Fri-10-Jun-2011-16-38-53-GMT\ff-config.zip
[10/10/2011 13:15|--a------|235917] C:\Users\Mel\AppData\Roaming\Mozilla\Firefox\Profiles\ml6ly7ys.default\extensions\toolbar@ask.com\chrome\temp\ff-config.Mon-10-Oct-2011-11-14-59-GMT\ff-config.zip
[21/03/2011 20:06|--a------|220034] C:\Users\Mel\AppData\Roaming\Mozilla\Firefox\Profiles\ml6ly7ys.default\extensions\toolbar@ask.com\chrome\temp\ff-config.Mon-21-Mar-2011-18-06-42-GMT\ff-config.zip
[04/12/2010 14:35|--a------|53968] C:\Users\Mel\AppData\Roaming\Mozilla\Firefox\Profiles\ml6ly7ys.default\extensions\toolbar@ask.com\chrome\temp\ff-config.Sat-04-Dec-2010-12-35-01-GMT\ff-config.zip
[06/08/2011 12:01|--a------|258040] C:\Users\Mel\AppData\Roaming\Mozilla\Firefox\Profiles\ml6ly7ys.default\extensions\toolbar@ask.com\chrome\temp\ff-config.Sat-06-Aug-2011-10-01-22-GMT\ff-config.zip
[05/12/2010 15:10|--a------|53968] C:\Users\Mel\AppData\Roaming\Mozilla\Firefox\Profiles\ml6ly7ys.default\extensions\toolbar@ask.com\chrome\temp\ff-config.Sun-05-Dec-2010-13-10-14-GMT\ff-config.zip
[22/09/2011 17:33|--a------|281452] C:\Users\Mel\AppData\Roaming\Mozilla\Firefox\Profiles\ml6ly7ys.default\extensions\toolbar@ask.com\chrome\temp\ff-config.Thu-22-Sep-2011-15-33-23-GMT\ff-config.zip
[31/05/2011 17:49|--a------|226410] C:\Users\Mel\AppData\Roaming\Mozilla\Firefox\Profiles\ml6ly7ys.default\extensions\toolbar@ask.com\chrome\temp\ff-config.Tue-31-May-2011-15-49-47-GMT\ff-config.zip
[08/12/2010 18:16|--a------|36198] C:\Users\Mel\AppData\Roaming\Mozilla\Firefox\Profiles\ml6ly7ys.default\extensions\toolbar@ask.com\chrome\temp\ff-config.Wed-08-Dec-2010-16-16-06-GMT\ff-config.zip
[31/10/2010 20:43|--a------|5140] C:\Users\Mel\AppData\Roaming\Uniblue\RegistryBooster\backup\20101031.194316.zip
[25/10/2011 12:52|--a------|1336771] C:\Users\Mel\Desktop\FyK.exe
[17/12/2010 13:08|--a------|19985265] C:\Users\Mel\Documents\vlc-1.1.5-win32.exe
[10/04/2011 12:26|--a------|61083] C:\Users\Mel\Documents\Cours\L1\SEMESTRE 2\CO. DROIT ET INSTITUTIONS\Vie politique fran#aise\Vie Politique fran#aise - Montouroy.zip
[08/03/2010 22:40|--a------|3792740] C:\Users\Mel\Pictures\chess'.rar
[28/08/2009 11:18|--a------|23394537] C:\Users\Mel\Pictures\Karine coco moi.rar
[01/03/2009 18:31|--a------|336526608] C:\Users\Mel\Pictures\Paris 2009.rar
[28/08/2009 11:22|--a------|50719024] C:\Users\Mel\Pictures\Ro moi swim.rar
[10/03/2009 17:53|--a------|202854985] C:\Users\Mel\Pictures\Ile de R'\Ile de R' 2008.rar
[28/07/2009 11:56|--a------|260140379] C:\Users\Mel\Pictures\Ile de R'\ile de r' 2009.rar
[06/07/2009 17:54|--a------|2456241] C:\Users\Mel\Videos\Concu.rar
[14/03/2009 18:51|--a------|28677844] C:\Users\Mel\Videos\ton verre est vide.rar
################## | Registre |
################## | Etat |
# Affichage des fichiers cachés : OK
# Mode sans echec : OK
# Uac : OK ( Good = 0x1 | Bad = 0x0 )
# Ndisuio ( NDIS User Mode ) -> Start = 3 ( Good = 3 | Bad = 4 )
# EapHost ( Extensible Authentication Protocol Host ) -> Start = 3 ( Good = 2 | Bad = 4 )
# WwanSvc ( AutoConfig Service WWAN ) -> Start = 3 ( Good = 2 | Bad = 4 )
# MpsSvc ( Windows Firewall ) -> Start = 2 ( Good = 2 | Bad = 4 )
# SharedAccess ( Windows Firewall - Internet Connection Sharing ) -> Start = 2 ( Good = 2 | Bad = 4 )
# windefend ( Windows Defender ) -> Start = 2 ( Good = 2 | Bad = 4 )
# wuauserv ( Windows Update ) -> Start = 2 ( Good = 2 | Bad = 4 )
# wscsvc ( Windows Security Center ) -> Start = 2 ( Good = 2 | Bad = 4 )
################## | ! Fin du rapport # FindyKill V5.054 ! |
############################## | FindyKill V5.054 |
# User : Mel (Administrateurs) # MEL-PC
# Update on 11/10/2011 by El Desaparecido
# Start at: 13:24:28 | 25/10/2011
# Website : https://www.sosvirus.net/
# Contact : contact@eldesaparecido.com
# AMD Athlon(tm) X2 Dual Core Processor L310
# Microsoft Windows 7 Édition Familiale Premium (6.1.7601 64-bit) # Service Pack 1
# Internet Explorer 9.0.8112.16421
# Windows Firewall Status : Enabled
# C:\ # Disque fixe local # 584,07 Go (443,21 Go free) [Acer] # NTFS
# D:\ # Disque CD-ROM
# E:\ # Disque CD-ROM
################## | Processus infectieux stoppés |
################## | Eléments infectieux |
################## | Reference Bagle MD5 ... |
################## | MD5 ... |
################## | Bagle Trace ... |
################## | Crack .... |
[18/10/2011 14:07|--a----t-|137536] C:\Users\Mel\AppData\Local\Facebook\Update\FacebookUpdate.exe
[18/10/2011 14:07|--a----t-|137536] C:\Users\Mel\AppData\Local\Facebook\Update\1.2.203.0\FacebookCrashHandler.exe
[18/10/2011 14:07|--a----t-|137536] C:\Users\Mel\AppData\Local\Facebook\Update\1.2.203.0\FacebookUpdate.exe
[11/10/2011 18:22|--a------|3123016] C:\Users\Mel\AppData\Local\Facebook\Video\Skype\FacebookVideoCalling.exe
[13/04/2011 11:21|--a------|913248] C:\Users\Mel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4NIGNNB9\DivXInstaller[1].exe
[13/04/2011 11:24|--a------|1365096] C:\Users\Mel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4NIGNNB9\Installer[1].exe
[13/04/2011 11:24|--a------|278768] C:\Users\Mel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4NIGNNB9\Installer[2].exe
[23/08/2011 11:40|--a------|79736] C:\Users\Mel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\E80WWEN5\QuickTimeInstallerAdmin[1].exe
[12/10/2010 16:40|--a------|509552] C:\Users\Mel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\80INSY8R\GoogleToolbarInstaller_updater_signed[1].exe
[07/08/2011 13:02|--a------|1287016] C:\Users\Mel\AppData\Local\Microsoft\Windows Live\Installer\Catalog\wlsetup.exe
[29/08/2003 01:02|--a------|561152] C:\Users\Mel\AppData\Local\Temp\AutoRun.exe
[14/11/2010 22:16|--a------|876824] C:\Users\Mel\AppData\Local\Temp\DivXSetup.exe
[27/09/2010 08:25|--a------|19694544] C:\Users\Mel\AppData\Local\Temp\EAD16DA.exe
[29/08/2003 01:02|--a------|286720] C:\Users\Mel\AppData\Local\Temp\eauninstall.exe
[11/09/2010 21:09|--a------|2788816] C:\Users\Mel\AppData\Local\Temp\FP_PL_PFS_INSTALLER.exe
[04/12/2010 14:05|--a------|2324992] C:\Users\Mel\AppData\Local\Temp\igraal.exe
[16/09/2010 23:17|--a------|875296] C:\Users\Mel\AppData\Local\Temp\jre-6u22-windows-i586-iftw-rv.exe
[06/01/2011 01:40|--a------|884512] C:\Users\Mel\AppData\Local\Temp\jre-6u23-windows-i586-iftw-rv.exe
[10/02/2011 02:48|--a------|885536] C:\Users\Mel\AppData\Local\Temp\jre-6u24-windows-i586-iftw-rv.exe
[05/05/2011 17:18|--a------|901408] C:\Users\Mel\AppData\Local\Temp\jre-6u26-windows-i586-iftw-rv.exe
[25/10/2010 17:44|--a------|30164216] C:\Users\Mel\AppData\Local\Temp\LimeWireWin.exe
[25/04/2011 11:49|--a------|8931808] C:\Users\Mel\AppData\Local\Temp\mediaget_installer.exe
[26/10/2010 16:52|--a------|469256] C:\Users\Mel\AppData\Local\Temp\MSN333A.exe
[06/12/2010 22:15|--a------|2685304] C:\Users\Mel\AppData\Local\Temp\NEW19BC.tmp.exe
[20/11/2010 22:29|--a------|1732464] C:\Users\Mel\AppData\Local\Temp\OB.exe
[20/10/2011 22:16|--a------|48103936] C:\Users\Mel\AppData\Local\Temp\OriginLauncher34630115.exe
[05/10/2011 19:38|-ra------|336280] C:\Users\Mel\AppData\Local\Temp\rootsupd.exe
[29/08/2003 00:37|--a------|700416] C:\Users\Mel\AppData\Local\Temp\SC4_uninst.exe
[16/04/2008 16:21|--a------|90112] C:\Users\Mel\AppData\Local\Temp\SCS Uninstaller.exe
[12/10/2010 16:40|--a------|426552] C:\Users\Mel\AppData\Local\Temp\SearchWithGoogleUpdate.exe
[19/10/2011 00:09|--a------|46983184] C:\Users\Mel\AppData\Local\Temp\setup.exe
[16/08/2003 04:13|--a------|86016] C:\Users\Mel\AppData\Local\Temp\SimCity 4 Deluxe_uninst.exe
[09/09/2011 14:58|--a------|19445128] C:\Users\Mel\AppData\Local\Temp\SkypeSetup.exe
[04/12/2010 14:03|--a------|6677303] C:\Users\Mel\AppData\Local\Temp\TomsDownloader15274.exe
[11/09/2010 21:02|--a------|4656976] C:\Users\Mel\AppData\Local\Temp\Update_4f54.exe
[31/10/2010 20:36|--a------|4865432] C:\Users\Mel\AppData\Local\Temp\Update_efb3.exe
[05/10/2011 19:38|--a------|5673816] C:\Users\Mel\AppData\Local\Temp\vcredist_x64.exe
[05/10/2011 19:38|--a------|4995416] C:\Users\Mel\AppData\Local\Temp\vcredist_x86.exe
[05/10/2011 19:38|--a------|2585872] C:\Users\Mel\AppData\Local\Temp\WindowsInstaller-KB893803-v2-x86.exe
[28/02/2011 12:15|--a------|2832544] C:\Users\Mel\AppData\Local\Temp\1870.dir\InstallFlashPlayer.exe
[25/04/2011 11:00|--a------|2832544] C:\Users\Mel\AppData\Local\Temp\1BBB.dir\InstallFlashPlayer.exe
[18/04/2011 17:51|--a------|2832544] C:\Users\Mel\AppData\Local\Temp\2D38.dir\InstallFlashPlayer.exe
[08/06/2011 11:56|--a------|3080864] C:\Users\Mel\AppData\Local\Temp\5FAD.dir\InstallFlashPlayer.exe
[13/02/2011 00:48|--a------|2832544] C:\Users\Mel\AppData\Local\Temp\756E.dir\InstallFlashPlayer.exe
[04/04/2011 11:04|--a------|2833568] C:\Users\Mel\AppData\Local\Temp\7BE4.dir\InstallFlashPlayer.exe
[11/04/2011 10:08|--a------|2833568] C:\Users\Mel\AppData\Local\Temp\992.dir\InstallFlashPlayer.exe
[14/12/2010 11:08|--a------|2790864] C:\Users\Mel\AppData\Local\Temp\D28B.dir\InstallFlashPlayer.exe
[26/09/2010 12:51|--a------|2788816] C:\Users\Mel\AppData\Local\Temp\D93F.dir\InstallFlashPlayer.exe
[07/07/2011 11:12|--a------|3082400] C:\Users\Mel\AppData\Local\Temp\DE6D.dir\InstallFlashPlayer.exe
[10/08/2011 19:02|--a------|3089056] C:\Users\Mel\AppData\Local\Temp\E494.dir\InstallFlashPlayer.exe
[27/03/2011 20:08|--a------|2833568] C:\Users\Mel\AppData\Local\Temp\F612.dir\InstallFlashPlayer.exe
[16/09/2011 09:07|--a------|54544] C:\Users\Mel\AppData\Local\Temp\IXP000.TMP\Autorun.exe
[18/10/2011 01:36|--a------|139776] C:\Users\Mel\AppData\Local\Temp\IXP000.TMP\file.exe
[16/09/2011 09:07|--a------|54544] C:\Users\Mel\AppData\Local\Temp\IXP001.TMP\Autorun.exe
[18/10/2011 01:36|--a------|139776] C:\Users\Mel\AppData\Local\Temp\IXP001.TMP\file.exe
[21/11/2010 16:07|--a------|53248] C:\Users\Mel\AppData\Local\Temp\jdic_0_9_5\IeEmbed.exe
[04/12/2010 14:53|--a------|747376] C:\Users\Mel\AppData\Local\Temp\NERO20100326135034074\setup.exe
[04/12/2010 14:53|--a------|4499824] C:\Users\Mel\AppData\Local\Temp\NERO20100326135034074\ISSetupPrerequisites\NDP30SP2-KB967328-x86\NDP30SP2-KB967328-x86.exe
[04/12/2010 14:53|--a------|144656] C:\Users\Mel\AppData\Local\Temp\NERO20100326135034074\ISSetupPrerequisites\NDP30SP2-KB967328-x86\PRQStarter-1.exe
[04/12/2010 14:53|--a------|525656] C:\Users\Mel\AppData\Local\Temp\NERO20100326135034074\ISSetupPrerequisites\{046FDEE1-7615-4CE7-990D-19D4CC134D5F}\DXSETUP.exe
[04/12/2010 14:53|--a------|144656] C:\Users\Mel\AppData\Local\Temp\NERO20100326135034074\ISSetupPrerequisites\{046FDEE1-7615-4CE7-990D-19D4CC134D5F}\PRQStarter-1.exe
[04/12/2010 14:53|--a------|144656] C:\Users\Mel\AppData\Local\Temp\NERO20100326135034074\ISSetupPrerequisites\{22AA129A-8E5D-45AE-A3E4-D110703EF141}\PRQStarter-1.exe
[04/12/2010 14:53|--a------|3327000] C:\Users\Mel\AppData\Local\Temp\NERO20100326135034074\ISSetupPrerequisites\{22AA129A-8E5D-45AE-A3E4-D110703EF141}\WindowsXP-KB942288-v3-x86.exe
[04/12/2010 14:53|--a------|144656] C:\Users\Mel\AppData\Local\Temp\NERO20100326135034074\ISSetupPrerequisites\{2AE04573-CA1C-46BC-8430-E226B823BB8C}\PRQStarter-1.exe
[04/12/2010 14:53|--a------|1314504] C:\Users\Mel\AppData\Local\Temp\NERO20100326135034074\ISSetupPrerequisites\{2AE04573-CA1C-46BC-8430-E226B823BB8C}\vs_piaredist.exe
[04/12/2010 14:53|--a------|525656] C:\Users\Mel\AppData\Local\Temp\NERO20100326135034074\ISSetupPrerequisites\{3D0986A7-2F13-4AD4-A35F-D167603DB43F}\DXSETUP.exe
[04/12/2010 14:53|--a------|144656] C:\Users\Mel\AppData\Local\Temp\NERO20100326135034074\ISSetupPrerequisites\{3D0986A7-2F13-4AD4-A35F-D167603DB43F}\PRQStarter-1.exe
[04/12/2010 14:53|--a------|81920] C:\Users\Mel\AppData\Local\Temp\NERO20100326135034074\ISSetupPrerequisites\{4C6E12E5-5905-4aa5-B462-E7DFC4BD75E5}\LSDriveDetect.exe
[04/12/2010 14:53|--a------|103696] C:\Users\Mel\AppData\Local\Temp\NERO20100326135034074\ISSetupPrerequisites\{4C6E12E5-5905-4aa5-B462-E7DFC4BD75E5}\LS_LAUNCHER.exe
[04/12/2010 14:53|--a------|144656] C:\Users\Mel\AppData\Local\Temp\NERO20100326135034074\ISSetupPrerequisites\{4C6E12E5-5905-4aa5-B462-E7DFC4BD75E5}\PRQStarter-1.exe
[04/12/2010 14:53|--a------|144656] C:\Users\Mel\AppData\Local\Temp\NERO20100326135034074\ISSetupPrerequisites\{5CCCB5E2-D83C-42AD-B8BA-6C073D804247}\PRQStarter-1.exe
[04/12/2010 14:53|--a------|144656] C:\Users\Mel\AppData\Local\Temp\NERO20100326135034074\ISSetupPrerequisites\{6BD3444F-03E6-4E21-BAD0-50E6A5820433}\PRQStarter-1.exe
[04/12/2010 14:53|--a------|144656] C:\Users\Mel\AppData\Local\Temp\NERO20100326135034074\ISSetupPrerequisites\{8D7309F4-C4B6-4408-8DA9-D3B0E7987822}\PRQStarter-1.exe
[04/12/2010 14:53|--a------|525656] C:\Users\Mel\AppData\Local\Temp\NERO20100326135034074\ISSetupPrerequisites\{A4400125-0F4D-4B79-80B5-D85DADF61F7A}\DXSETUP.exe
[04/12/2010 14:53|--a------|144656] C:\Users\Mel\AppData\Local\Temp\NERO20100326135034074\ISSetupPrerequisites\{A4400125-0F4D-4B79-80B5-D85DADF61F7A}\PRQStarter-1.exe
[04/12/2010 14:53|--a------|525656] C:\Users\Mel\AppData\Local\Temp\NERO20100326135034074\ISSetupPrerequisites\{A5D3B160-0EA1-4A57-8D82-C53A853AEB07}\DXSETUP.exe
[04/12/2010 14:53|--a------|144656] C:\Users\Mel\AppData\Local\Temp\NERO20100326135034074\ISSetupPrerequisites\{A5D3B160-0EA1-4A57-8D82-C53A853AEB07}\PRQStarter-1.exe
[04/12/2010 14:53|--a------|144656] C:\Users\Mel\AppData\Local\Temp\NERO20100326135034074\ISSetupPrerequisites\{B56633A3-7ADC-4CE5-A320-ACA0B65DA04B}\PRQStarter-1.exe
[04/12/2010 14:53|--a------|4216840] C:\Users\Mel\AppData\Local\Temp\NERO20100326135034074\ISSetupPrerequisites\{B56633A3-7ADC-4CE5-A320-ACA0B65DA04B}\vcredist_x86.exe
[04/12/2010 14:53|--a------|926992] C:\Users\Mel\AppData\Local\Temp\NERO20100326135034074\ISSetupPrerequisites\{BF80A1C0-C3FF-4B1C-ABEF-22CD4F97A0AB}\NeroBar.exe
[04/12/2010 14:53|--a------|144656] C:\Users\Mel\AppData\Local\Temp\NERO20100326135034074\ISSetupPrerequisites\{BF80A1C0-C3FF-4B1C-ABEF-22CD4F97A0AB}\PRQStarter-1.exe
[04/12/2010 14:53|--a------|2131336] C:\Users\Mel\AppData\Local\Temp\NERO20100326135034074\ISSetupPrerequisites\{BF80A1C0-C3FF-4B1C-ABEF-22CD4F97A0AB}\Toolbar.exe
[04/12/2010 14:53|--a------|525656] C:\Users\Mel\AppData\Local\Temp\NERO20100326135034074\ISSetupPrerequisites\{C00D1E35-750C-4021-86E0-A088C6678DD9}\DXSETUP.exe
[04/12/2010 14:53|--a------|144656] C:\Users\Mel\AppData\Local\Temp\NERO20100326135034074\ISSetupPrerequisites\{C00D1E35-750C-4021-86E0-A088C6678DD9}\PRQStarter-1.exe
[04/12/2010 14:53|--a------|144656] C:\Users\Mel\AppData\Local\Temp\NERO20100326135034074\ISSetupPrerequisites\{C597C3FC-2110-451E-832E-9352964E56F9}\PRQStarter-1.exe
[04/12/2010 14:53|--a------|2749864] C:\Users\Mel\AppData\Local\Temp\NERO20100326135034074\ISSetupPrerequisites\{C597C3FC-2110-451E-832E-9352964E56F9}\vcredist_x86.exe
[04/12/2010 14:53|--a------|144656] C:\Users\Mel\AppData\Local\Temp\NERO20100326135034074\ISSetupPrerequisites\{D37C1D8F-C930-4005-BCD8-3715028461C0}\PRQStarter-1.exe
[04/12/2010 14:53|--a------|4485976] C:\Users\Mel\AppData\Local\Temp\NERO20100326135034074\ISSetupPrerequisites\{D37C1D8F-C930-4005-BCD8-3715028461C0}\vcredist_x86.exe
[04/12/2010 14:53|--a------|525656] C:\Users\Mel\AppData\Local\Temp\NERO20100326135034074\ISSetupPrerequisites\{E1EFF81F-E42D-4D52-8C56-3493C52D5641}\DXSETUP.exe
[04/12/2010 14:53|--a------|144656] C:\Users\Mel\AppData\Local\Temp\NERO20100326135034074\ISSetupPrerequisites\{E1EFF81F-E42D-4D52-8C56-3493C52D5641}\PRQStarter-1.exe
[14/09/2011 11:30|--a------|48912] C:\Users\Mel\AppData\Local\Temp\{1455AEAB-8FFF-47C2-9A0D-C8D2A3050320}\Disk1\Autorun.exe
[14/09/2011 11:31|--a------|398608] C:\Users\Mel\AppData\Local\Temp\{1455AEAB-8FFF-47C2-9A0D-C8D2A3050320}\Disk1\setup.exe
[14/09/2011 11:30|--a------|2512656] C:\Users\Mel\AppData\Local\Temp\{1455AEAB-8FFF-47C2-9A0D-C8D2A3050320}\Disk1\Game\Bin\SimsMedievalLauncher.exe
[14/09/2011 11:30|--a------|107280] C:\Users\Mel\AppData\Local\Temp\{1455AEAB-8FFF-47C2-9A0D-C8D2A3050320}\Disk1\Game\Bin\SMLauncher.exe
[14/09/2011 11:31|--a------|29399312] C:\Users\Mel\AppData\Local\Temp\{1455AEAB-8FFF-47C2-9A0D-C8D2A3050320}\Disk1\Game\Bin\TSM.exe
[14/09/2011 11:30|--a------|120112] C:\Users\Mel\AppData\Local\Temp\{1455AEAB-8FFF-47C2-9A0D-C8D2A3050320}\Disk1\Game\Bin\EACore\EACoreServer.exe
[14/09/2011 11:30|--a------|206136] C:\Users\Mel\AppData\Local\Temp\{1455AEAB-8FFF-47C2-9A0D-C8D2A3050320}\Disk1\Game\Bin\EACore\EAProxyInstaller.exe
[14/09/2011 11:30|--a------|206128] C:\Users\Mel\AppData\Local\Temp\{1455AEAB-8FFF-47C2-9A0D-C8D2A3050320}\Disk1\Game\Bin\EACore\PatchProgress.exe
[10/05/2008 00:27|--a------|11080] C:\Users\Mel\AppData\Local\Temp\{70B4A1EB-A7FC-4A7D-81E2-50DAAA11905A}\dotnetinstaller.exe
[10/05/2008 00:28|--a------|117560] C:\Users\Mel\AppData\Local\Temp\{70B4A1EB-A7FC-4A7D-81E2-50DAAA11905A}\ISBEW64.exe
[10/12/2010 13:32|--a------|385024] C:\Users\Mel\AppData\Local\Temp\{70B4A1EB-A7FC-4A7D-81E2-50DAAA11905A}\{E6B88BD6-E4B2-4701-A648-B6DAC6E491CC}\The Sims 3 Generations_code.exe
[10/12/2010 13:32|--a------|184320] C:\Users\Mel\AppData\Local\Temp\{70B4A1EB-A7FC-4A7D-81E2-50DAAA11905A}\{E6B88BD6-E4B2-4701-A648-B6DAC6E491CC}\The Sims 3 Generations_uninst.exe
[30/05/2011 20:20|--a------|398608] C:\Users\Mel\AppData\Local\Temp\{B28A5030-6958-4085-969A-73462C771C21}\Sims3EP04Setup.exe
[21/11/2010 16:07|--a------|68498] C:\Users\Mel\AppData\Local\Temp\~nsu.tmp\Au_.exe
[21/11/2010 16:07|--a------|47753] C:\Users\Mel\AppData\Local\Temp\~nsu.tmp\Bu_.exe
[07/12/2010 00:26|--a------|2186183] C:\Users\Mel\AppData\Roaming\igraal\update.exe
[27/09/2010 08:31|--a------|53632] C:\Users\Mel\AppData\Roaming\Macromedia\Flash Player\www.macromedia.com\bin\airappinstaller\airappinstaller.exe
[15/05/2011 14:05|--a------|117427] C:\Users\Mel\AppData\Roaming\Macromedia\Flash Player\www.macromedia.com\bin\digitaleditions\digitaleditions.exe
[26/09/2010 18:50|-ra------|10134] C:\Users\Mel\AppData\Roaming\Microsoft\Installer\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}\ARPPRODUCTICON.exe
[08/06/2011 00:11|--a------|52616] C:\Users\Mel\AppData\Roaming\Mozilla\Firefox\Profiles\ml6ly7ys.default\extensions\toolbar@ask.com\chrome\content\issigned.exe
[25/05/2011 03:09|--a------|345992] C:\Users\Mel\AppData\Roaming\Mozilla\Firefox\Profiles\ml6ly7ys.default\extensions\toolbar@ask.com\chrome\content\NeroApplicationManager.exe
[10/10/2011 12:22|--a------|3623592] C:\Users\Mel\AppData\Roaming\Mozilla\Firefox\Profiles\ml6ly7ys.default\extensions\toolbar@ask.com\chrome\temp\askToolbar.exe
[10/06/2011 18:38|--a------|257502] C:\Users\Mel\AppData\Roaming\Mozilla\Firefox\Profiles\ml6ly7ys.default\extensions\toolbar@ask.com\chrome\temp\ff-config.Fri-10-Jun-2011-16-38-53-GMT\ff-config.zip
[10/10/2011 13:15|--a------|235917] C:\Users\Mel\AppData\Roaming\Mozilla\Firefox\Profiles\ml6ly7ys.default\extensions\toolbar@ask.com\chrome\temp\ff-config.Mon-10-Oct-2011-11-14-59-GMT\ff-config.zip
[21/03/2011 20:06|--a------|220034] C:\Users\Mel\AppData\Roaming\Mozilla\Firefox\Profiles\ml6ly7ys.default\extensions\toolbar@ask.com\chrome\temp\ff-config.Mon-21-Mar-2011-18-06-42-GMT\ff-config.zip
[04/12/2010 14:35|--a------|53968] C:\Users\Mel\AppData\Roaming\Mozilla\Firefox\Profiles\ml6ly7ys.default\extensions\toolbar@ask.com\chrome\temp\ff-config.Sat-04-Dec-2010-12-35-01-GMT\ff-config.zip
[06/08/2011 12:01|--a------|258040] C:\Users\Mel\AppData\Roaming\Mozilla\Firefox\Profiles\ml6ly7ys.default\extensions\toolbar@ask.com\chrome\temp\ff-config.Sat-06-Aug-2011-10-01-22-GMT\ff-config.zip
[05/12/2010 15:10|--a------|53968] C:\Users\Mel\AppData\Roaming\Mozilla\Firefox\Profiles\ml6ly7ys.default\extensions\toolbar@ask.com\chrome\temp\ff-config.Sun-05-Dec-2010-13-10-14-GMT\ff-config.zip
[22/09/2011 17:33|--a------|281452] C:\Users\Mel\AppData\Roaming\Mozilla\Firefox\Profiles\ml6ly7ys.default\extensions\toolbar@ask.com\chrome\temp\ff-config.Thu-22-Sep-2011-15-33-23-GMT\ff-config.zip
[31/05/2011 17:49|--a------|226410] C:\Users\Mel\AppData\Roaming\Mozilla\Firefox\Profiles\ml6ly7ys.default\extensions\toolbar@ask.com\chrome\temp\ff-config.Tue-31-May-2011-15-49-47-GMT\ff-config.zip
[08/12/2010 18:16|--a------|36198] C:\Users\Mel\AppData\Roaming\Mozilla\Firefox\Profiles\ml6ly7ys.default\extensions\toolbar@ask.com\chrome\temp\ff-config.Wed-08-Dec-2010-16-16-06-GMT\ff-config.zip
[31/10/2010 20:43|--a------|5140] C:\Users\Mel\AppData\Roaming\Uniblue\RegistryBooster\backup\20101031.194316.zip
[25/10/2011 12:52|--a------|1336771] C:\Users\Mel\Desktop\FyK.exe
[17/12/2010 13:08|--a------|19985265] C:\Users\Mel\Documents\vlc-1.1.5-win32.exe
[10/04/2011 12:26|--a------|61083] C:\Users\Mel\Documents\Cours\L1\SEMESTRE 2\CO. DROIT ET INSTITUTIONS\Vie politique fran#aise\Vie Politique fran#aise - Montouroy.zip
[08/03/2010 22:40|--a------|3792740] C:\Users\Mel\Pictures\chess'.rar
[28/08/2009 11:18|--a------|23394537] C:\Users\Mel\Pictures\Karine coco moi.rar
[01/03/2009 18:31|--a------|336526608] C:\Users\Mel\Pictures\Paris 2009.rar
[28/08/2009 11:22|--a------|50719024] C:\Users\Mel\Pictures\Ro moi swim.rar
[10/03/2009 17:53|--a------|202854985] C:\Users\Mel\Pictures\Ile de R'\Ile de R' 2008.rar
[28/07/2009 11:56|--a------|260140379] C:\Users\Mel\Pictures\Ile de R'\ile de r' 2009.rar
[06/07/2009 17:54|--a------|2456241] C:\Users\Mel\Videos\Concu.rar
[14/03/2009 18:51|--a------|28677844] C:\Users\Mel\Videos\ton verre est vide.rar
################## | Registre |
################## | Etat |
# Affichage des fichiers cachés : OK
# Mode sans echec : OK
# Uac : OK ( Good = 0x1 | Bad = 0x0 )
# Ndisuio ( NDIS User Mode ) -> Start = 3 ( Good = 3 | Bad = 4 )
# EapHost ( Extensible Authentication Protocol Host ) -> Start = 3 ( Good = 2 | Bad = 4 )
# WwanSvc ( AutoConfig Service WWAN ) -> Start = 3 ( Good = 2 | Bad = 4 )
# MpsSvc ( Windows Firewall ) -> Start = 2 ( Good = 2 | Bad = 4 )
# SharedAccess ( Windows Firewall - Internet Connection Sharing ) -> Start = 2 ( Good = 2 | Bad = 4 )
# windefend ( Windows Defender ) -> Start = 2 ( Good = 2 | Bad = 4 )
# wuauserv ( Windows Update ) -> Start = 2 ( Good = 2 | Bad = 4 )
# wscsvc ( Windows Security Center ) -> Start = 2 ( Good = 2 | Bad = 4 )
################## | ! Fin du rapport # FindyKill V5.054 ! |
Homerus1982
Messages postés
77
Date d'inscription
mardi 25 octobre 2011
Statut
Membre
Dernière intervention
12 août 2015
25 oct. 2011 à 14:03
25 oct. 2011 à 14:03
à savoir que j'ai déjà effectuer des scan, rapide d'abord puis minutieux, avec Avast et malwarebytes ! j'ai placé tous les fichiers infectées en quarantaine
2011N2
Messages postés
13352
Date d'inscription
samedi 29 janvier 2011
Statut
Contributeur sécurité
Dernière intervention
24 décembre 2016
917
25 oct. 2011 à 14:04
25 oct. 2011 à 14:04
Ok, tu as les rapports ?
Fais ça aussi : https://forums.commentcamarche.net/forum/affich-23477133-infection-par-un-virus-bagle#3
Fais ça aussi : https://forums.commentcamarche.net/forum/affich-23477133-infection-par-un-virus-bagle#3
Homerus1982
Messages postés
77
Date d'inscription
mardi 25 octobre 2011
Statut
Membre
Dernière intervention
12 août 2015
25 oct. 2011 à 15:15
25 oct. 2011 à 15:15
voici le rapport de malwarebytes
Malwarebytes' Anti-Malware 1.51.2.1300
www.malwarebytes.org
Version de la base de données: 7994
Windows 6.1.7601 Service Pack 1
Internet Explorer 9.0.8112.16421
21/10/2011 20:52:16
mbam-log-2011-10-21 (20-52-16).txt
Type d'examen: Examen rapide
Elément(s) analysé(s): 179927
Temps écoulé: 6 minute(s), 21 seconde(s)
Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 76
Valeur(s) du Registre infectée(s): 4
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 25
Fichier(s) infecté(s): 23
Processus mémoire infecté(s):
(Aucun élément nuisible détecté)
Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)
Clé(s) du Registre infectée(s):
HKEY_CLASSES_ROOT\AppID\{0D82ACD6-A652-4496-A298-2BDE705F4227} (Adware.ClickPotato) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\AppID\{11C27351-716B-4052-9361-E3B0A3F8221C} (Adware.ClickPotato) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\AppID\{7025E484-D4B0-441a-9F0B-69063BD679CE} (Adware.ClickPotato) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\AppID\{8258B35C-05B8-4c0e-9525-9BCCC70F8F2D} (Adware.ClickPotato) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\AppID\{A89256AD-EC17-4a83-BEF5-4B8BC4F39306} (Adware.ClickPotato) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{CC7BD6F1-565C-47ce-A5BB-9C935E77B59D} (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\TypeLib\{02AED140-2B62-4B49-8B3B-179020CC39B9} (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{17BF1E05-C0E8-413C-BD1F-A481EEA3B8E9} (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\ShopperReports.CntntDic.1 (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\ShopperReports.CntntDic (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{CFC16189-8A92-4a29-A940-60248385F426} (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\ShopperReports.CntntDisp.1 (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\ShopperReports.CntntDisp (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Typelib\{ACC62306-9A63-4864-BD2F-C8825D2D7EA6} (Adware.ClickPotato) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{21BA420E-161C-413A-B21E-4E42AE1F4226} (Adware.ClickPotato) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Typelib\{CDCA70D8-C6A6-49EE-9BED-7429D6C477A2} (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{8AD9AD05-36BE-4E40-BA62-5422EB0D02FB} (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Typelib\{D136987F-E1C4-4CCC-A220-893DF03EC5DF} (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A078F691-9C07-4AF2-BF43-35E79EECF8B7} (Adware.Softomate) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{69725738-CD68-4f36-8D02-8C43722EE5DA} (Adware.Hotbar) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{89F88394-3828-4d03-A0CF-8203604C3DA6} (Adware.Hotbar) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{B58926D6-CFB0-45D2-9C28-4B5A0F0368AE} (Adware.ClickPotato) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{D4233F04-1789-483c-A137-731E8F113DD5} (Adware.Hotbar) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\ClickPotatoLiteAx.Info (Adware.ClickPotato) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\ClickPotatoLiteAx.Info.1 (Adware.ClickPotato) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\ClickPotatoLiteAX.UserProfiles (Adware.ClickPotato) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\ClickPotatoLiteAX.UserProfiles.1 (Adware.ClickPotato) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\MenuButtonIE.ButtonIE (Adware.ClickPotato) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\MenuButtonIE.ButtonIE.1 (Adware.ClickPotato) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\ShopperReports.AsyncReporter (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\ShopperReports.AsyncReporter.1 (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\ShopperReports.Dwnldr (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\ShopperReports.Dwnldr.1 (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\ShopperReports.HbAx (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\ShopperReports.HbAx.1 (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\ShopperReports.HbGuru (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\ShopperReports.HbGuru.1 (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\ShopperReports.HbInfoBand (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\ShopperReports.HbInfoBand.1 (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\ShopperReports.IEButton (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\ShopperReports.IEButton.1 (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\ShopperReports.IEButtonA (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\ShopperReports.IEButtonA.1 (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\ShopperReports.KOPFF (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\ShopperReports.KOPFF.1 (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\ShopperReports.MozillaNvgtnTrpr (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\ShopperReports.MozillaNvgtnTrpr.1 (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\ShopperReports.MozillaPSExecuter (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\ShopperReports.MozillaPSExecuter.1 (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\ShopperReports.ReportData (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\ShopperReports.ReportData.1 (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\ShopperReports.Reporter (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\ShopperReports.Reporter.1 (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\ShopperReports.RprtCtrl (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\ShopperReports.RprtCtrl.1 (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\ShopperReports.Scopes (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\ShopperReports.Scopes.1 (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\ShopperReports.Stock (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\ShopperReports.Stock.1 (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\ShopperReports.TriggerImmidiate (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\ShopperReports.TriggerImmidiate.1 (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\ShopperReports.TriggerImmidiateOrRandomTS (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\ShopperReports.TriggerImmidiateOrRandomTS.1 (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\ShopperReports.TriggerOnceInDay (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\ShopperReports.TriggerOnceInDay.1 (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\AppID\BRNstIE.DLL (Adware.ClickPotato) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\AppID\CmndFF.DLL (Adware.ClickPotato) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\AppID\MenuButtonIE.DLL (Adware.ClickPotato) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\AppID\mozillaps.dll (Adware.ClickPotato) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\AppID\Pltfrm.DLL (Adware.ClickPotato) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\ShopperReports3 (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\Software\clickpotatolitesa (Adware.ClickPotato) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\ClickPotatoLite (Adware.ClickPotato) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\ResultBar (Adware.ResultBar) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\ShopperReports3 (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ResultBar (Adware.ResultBar) -> Quarantined and deleted successfully.
Valeur(s) du Registre infectée(s):
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\User Agent\Post Platform\ShopperReports 3.0.517.0 (Adware.HotBar) -> Value: ShopperReports 3.0.517.0 -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\User Agent\Post Platform\SRS_IT_E8790477B676595B33A895 (Malware.Trace) -> Value: SRS_IT_E8790477B676595B33A895 -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Mozilla\Firefox\extensions\ClickPotatoLite@ClickPotatoLite.com (Adware.ClickPotato) -> Value: ClickPotatoLite@ClickPotatoLite.com -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Mozilla\Firefox\extensions\ShopperReports@ShopperReports.com (ShopperReports) -> Value: ShopperReports@ShopperReports.com -> Quarantined and deleted successfully.
Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)
Dossier(s) infecté(s):
c:\programdata\2aca5cc3-0f83-453d-a079-1076fe1a8b65 (Adware.Seekmo) -> Quarantined and deleted successfully.
c:\programdata\clickpotatolitesa (Adware.ClickPotato) -> Quarantined and deleted successfully.
c:\Users\Mel\AppData\Roaming\clickpotatolite (Adware.ClickPotato) -> Quarantined and deleted successfully.
c:\programdata\resultbar (Adware.ResultBar) -> Quarantined and deleted successfully.
c:\Users\Mel\AppData\Roaming\shopperreports3 (Adware.ShopperReports) -> Quarantined and deleted successfully.
c:\program files (x86)\clickpotatolite (Adware.ClickPotato) -> Quarantined and deleted successfully.
c:\program files (x86)\clickpotatolite\bin (Adware.ClickPotato) -> Quarantined and deleted successfully.
c:\program files (x86)\clickpotatolite\bin\10.0.622.0 (Adware.ClickPotato) -> Quarantined and deleted successfully.
c:\program files (x86)\clickpotatolite\bin\10.0.622.0\firefox (Adware.ClickPotato) -> Quarantined and deleted successfully.
c:\program files (x86)\clickpotatolite\bin\10.0.622.0\firefox\extensions (Adware.ClickPotato) -> Quarantined and deleted successfully.
c:\program files (x86)\clickpotatolite\bin\10.0.622.0\firefox\extensions\plugins (Adware.ClickPotato) -> Quarantined and deleted successfully.
c:\program files (x86)\mozilla firefox\extensions\{34efa911-b536-4c08-bece-cd5e55c875b0} (Adware.ResultBar) -> Quarantined and deleted successfully.
c:\program files (x86)\mozilla firefox\extensions\{34efa911-b536-4c08-bece-cd5e55c875b0}\chrome (Adware.ResultBar) -> Quarantined and deleted successfully.
c:\program files (x86)\mozilla firefox\extensions\{34efa911-b536-4c08-bece-cd5e55c875b0}\defaults (Adware.ResultBar) -> Quarantined and deleted successfully.
c:\program files (x86)\mozilla firefox\extensions\{34efa911-b536-4c08-bece-cd5e55c875b0}\defaults\preferences (Adware.ResultBar) -> Quarantined and deleted successfully.
c:\program files (x86)\shopperreports3 (Adware.ShopperReports) -> Quarantined and deleted successfully.
c:\program files (x86)\shopperreports3\bin (Adware.ShopperReports) -> Quarantined and deleted successfully.
c:\program files (x86)\shopperreports3\bin\3.0.517.0 (Adware.ShopperReports) -> Quarantined and deleted successfully.
c:\program files (x86)\shopperreports3\bin\3.0.517.0\firefox (Adware.ShopperReports) -> Quarantined and deleted successfully.
c:\program files (x86)\shopperreports3\bin\3.0.517.0\firefox\firefoxtoolbar (Adware.ShopperReports) -> Quarantined and deleted successfully.
c:\program files (x86)\shopperreports3\bin\3.0.517.0\firefox\firefoxtoolbar\extensions (Adware.ShopperReports) -> Quarantined and deleted successfully.
c:\program files (x86)\shopperreports3\bin\3.0.517.0\firefox\firefoxtoolbar\extensions\chrome (Adware.ShopperReports) -> Quarantined and deleted successfully.
c:\program files (x86)\shopperreports3\bin\3.0.517.0\firefox\firefoxtoolbar\extensions\components (Adware.ShopperReports) -> Quarantined and deleted successfully.
c:\programdata\microsoft\Windows\start menu\Programs\clickpotato (Adware.ClickPotato) -> Quarantined and deleted successfully.
c:\programdata\microsoft\Windows\start menu\Programs\shopperreports (Adware.ShopperReports) -> Quarantined and deleted successfully.
Fichier(s) infecté(s):
c:\program files (x86)\shopperreports3\bin\3.0.517.0\cntntcntr.dll (Adware.ShopperReports) -> Quarantined and deleted successfully.
c:\programdata\clickpotatolitesa\clickpotatolitesa.dat (Adware.ClickPotato) -> Quarantined and deleted successfully.
c:\programdata\clickpotatolitesa\clickpotatolitesaabout.mht (Adware.ClickPotato) -> Quarantined and deleted successfully.
c:\programdata\clickpotatolitesa\clickpotatolitesaau.dat (Adware.ClickPotato) -> Quarantined and deleted successfully.
c:\programdata\clickpotatolitesa\clickpotatolitesaeula.mht (Adware.ClickPotato) -> Quarantined and deleted successfully.
c:\programdata\clickpotatolitesa\clickpotatolitesa_kyf.dat (Adware.ClickPotato) -> Quarantined and deleted successfully.
c:\program files (x86)\clickpotatolite\bin\10.0.622.0\firefox\extensions\install.rdf (Adware.ClickPotato) -> Quarantined and deleted successfully.
c:\program files (x86)\mozilla firefox\extensions\{34efa911-b536-4c08-bece-cd5e55c875b0}\chrome.manifest (Adware.ResultBar) -> Quarantined and deleted successfully.
c:\program files (x86)\mozilla firefox\extensions\{34efa911-b536-4c08-bece-cd5e55c875b0}\install.rdf (Adware.ResultBar) -> Quarantined and deleted successfully.
c:\program files (x86)\mozilla firefox\extensions\{34efa911-b536-4c08-bece-cd5e55c875b0}\chrome\resultbar.jar (Adware.ResultBar) -> Quarantined and deleted successfully.
c:\program files (x86)\mozilla firefox\extensions\{34efa911-b536-4c08-bece-cd5e55c875b0}\defaults\preferences\prefs.js (Adware.ResultBar) -> Quarantined and deleted successfully.
c:\program files (x86)\shopperreports3\bin\3.0.517.0\link.ico (Adware.ShopperReports) -> Quarantined and deleted successfully.
c:\program files (x86)\shopperreports3\bin\3.0.517.0\firefox\firefoxtoolbar\extensions\chrome.manifest (Adware.ShopperReports) -> Quarantined and deleted successfully.
c:\program files (x86)\shopperreports3\bin\3.0.517.0\firefox\firefoxtoolbar\extensions\install.rdf (Adware.ShopperReports) -> Quarantined and deleted successfully.
c:\program files (x86)\shopperreports3\bin\3.0.517.0\firefox\firefoxtoolbar\extensions\chrome\firefoxtoolbar.jar (Adware.ShopperReports) -> Quarantined and deleted successfully.
c:\program files (x86)\shopperreports3\bin\3.0.517.0\firefox\firefoxtoolbar\extensions\components\BRNstFF.dll (Adware.ShopperReports) -> Quarantined and deleted successfully.
c:\program files (x86)\shopperreports3\bin\3.0.517.0\firefox\firefoxtoolbar\extensions\components\BRNstFF.xpt (Adware.ShopperReports) -> Quarantined and deleted successfully.
c:\programdata\microsoft\Windows\start menu\Programs\clickpotato\About Us.lnk (Adware.ClickPotato) -> Quarantined and deleted successfully.
c:\programdata\microsoft\Windows\start menu\Programs\clickpotato\clickpotato customer support.lnk (Adware.ClickPotato) -> Quarantined and deleted successfully.
c:\programdata\microsoft\Windows\start menu\Programs\clickpotato\clickpotato uninstall instructions.lnk (Adware.ClickPotato) -> Quarantined and deleted successfully.
c:\programdata\microsoft\Windows\start menu\Programs\shopperreports\About Us.lnk (Adware.ShopperReports) -> Quarantined and deleted successfully.
c:\programdata\microsoft\Windows\start menu\Programs\shopperreports\customer support.lnk (Adware.ShopperReports) -> Quarantined and deleted successfully.
c:\programdata\microsoft\Windows\start menu\Programs\shopperreports\shopperreports uninstall instructions.lnk (Adware.ShopperReports) -> Quarantined and deleted successfully.
Malwarebytes' Anti-Malware 1.51.2.1300
www.malwarebytes.org
Version de la base de données: 7994
Windows 6.1.7601 Service Pack 1
Internet Explorer 9.0.8112.16421
21/10/2011 20:52:16
mbam-log-2011-10-21 (20-52-16).txt
Type d'examen: Examen rapide
Elément(s) analysé(s): 179927
Temps écoulé: 6 minute(s), 21 seconde(s)
Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 76
Valeur(s) du Registre infectée(s): 4
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 25
Fichier(s) infecté(s): 23
Processus mémoire infecté(s):
(Aucun élément nuisible détecté)
Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)
Clé(s) du Registre infectée(s):
HKEY_CLASSES_ROOT\AppID\{0D82ACD6-A652-4496-A298-2BDE705F4227} (Adware.ClickPotato) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\AppID\{11C27351-716B-4052-9361-E3B0A3F8221C} (Adware.ClickPotato) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\AppID\{7025E484-D4B0-441a-9F0B-69063BD679CE} (Adware.ClickPotato) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\AppID\{8258B35C-05B8-4c0e-9525-9BCCC70F8F2D} (Adware.ClickPotato) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\AppID\{A89256AD-EC17-4a83-BEF5-4B8BC4F39306} (Adware.ClickPotato) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{CC7BD6F1-565C-47ce-A5BB-9C935E77B59D} (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\TypeLib\{02AED140-2B62-4B49-8B3B-179020CC39B9} (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{17BF1E05-C0E8-413C-BD1F-A481EEA3B8E9} (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\ShopperReports.CntntDic.1 (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\ShopperReports.CntntDic (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{CFC16189-8A92-4a29-A940-60248385F426} (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\ShopperReports.CntntDisp.1 (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\ShopperReports.CntntDisp (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Typelib\{ACC62306-9A63-4864-BD2F-C8825D2D7EA6} (Adware.ClickPotato) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{21BA420E-161C-413A-B21E-4E42AE1F4226} (Adware.ClickPotato) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Typelib\{CDCA70D8-C6A6-49EE-9BED-7429D6C477A2} (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{8AD9AD05-36BE-4E40-BA62-5422EB0D02FB} (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Typelib\{D136987F-E1C4-4CCC-A220-893DF03EC5DF} (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A078F691-9C07-4AF2-BF43-35E79EECF8B7} (Adware.Softomate) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{69725738-CD68-4f36-8D02-8C43722EE5DA} (Adware.Hotbar) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{89F88394-3828-4d03-A0CF-8203604C3DA6} (Adware.Hotbar) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{B58926D6-CFB0-45D2-9C28-4B5A0F0368AE} (Adware.ClickPotato) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{D4233F04-1789-483c-A137-731E8F113DD5} (Adware.Hotbar) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\ClickPotatoLiteAx.Info (Adware.ClickPotato) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\ClickPotatoLiteAx.Info.1 (Adware.ClickPotato) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\ClickPotatoLiteAX.UserProfiles (Adware.ClickPotato) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\ClickPotatoLiteAX.UserProfiles.1 (Adware.ClickPotato) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\MenuButtonIE.ButtonIE (Adware.ClickPotato) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\MenuButtonIE.ButtonIE.1 (Adware.ClickPotato) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\ShopperReports.AsyncReporter (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\ShopperReports.AsyncReporter.1 (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\ShopperReports.Dwnldr (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\ShopperReports.Dwnldr.1 (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\ShopperReports.HbAx (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\ShopperReports.HbAx.1 (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\ShopperReports.HbGuru (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\ShopperReports.HbGuru.1 (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\ShopperReports.HbInfoBand (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\ShopperReports.HbInfoBand.1 (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\ShopperReports.IEButton (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\ShopperReports.IEButton.1 (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\ShopperReports.IEButtonA (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\ShopperReports.IEButtonA.1 (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\ShopperReports.KOPFF (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\ShopperReports.KOPFF.1 (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\ShopperReports.MozillaNvgtnTrpr (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\ShopperReports.MozillaNvgtnTrpr.1 (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\ShopperReports.MozillaPSExecuter (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\ShopperReports.MozillaPSExecuter.1 (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\ShopperReports.ReportData (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\ShopperReports.ReportData.1 (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\ShopperReports.Reporter (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\ShopperReports.Reporter.1 (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\ShopperReports.RprtCtrl (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\ShopperReports.RprtCtrl.1 (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\ShopperReports.Scopes (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\ShopperReports.Scopes.1 (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\ShopperReports.Stock (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\ShopperReports.Stock.1 (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\ShopperReports.TriggerImmidiate (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\ShopperReports.TriggerImmidiate.1 (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\ShopperReports.TriggerImmidiateOrRandomTS (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\ShopperReports.TriggerImmidiateOrRandomTS.1 (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\ShopperReports.TriggerOnceInDay (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\ShopperReports.TriggerOnceInDay.1 (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\AppID\BRNstIE.DLL (Adware.ClickPotato) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\AppID\CmndFF.DLL (Adware.ClickPotato) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\AppID\MenuButtonIE.DLL (Adware.ClickPotato) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\AppID\mozillaps.dll (Adware.ClickPotato) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\AppID\Pltfrm.DLL (Adware.ClickPotato) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\ShopperReports3 (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\Software\clickpotatolitesa (Adware.ClickPotato) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\ClickPotatoLite (Adware.ClickPotato) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\ResultBar (Adware.ResultBar) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\ShopperReports3 (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ResultBar (Adware.ResultBar) -> Quarantined and deleted successfully.
Valeur(s) du Registre infectée(s):
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\User Agent\Post Platform\ShopperReports 3.0.517.0 (Adware.HotBar) -> Value: ShopperReports 3.0.517.0 -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\User Agent\Post Platform\SRS_IT_E8790477B676595B33A895 (Malware.Trace) -> Value: SRS_IT_E8790477B676595B33A895 -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Mozilla\Firefox\extensions\ClickPotatoLite@ClickPotatoLite.com (Adware.ClickPotato) -> Value: ClickPotatoLite@ClickPotatoLite.com -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Mozilla\Firefox\extensions\ShopperReports@ShopperReports.com (ShopperReports) -> Value: ShopperReports@ShopperReports.com -> Quarantined and deleted successfully.
Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)
Dossier(s) infecté(s):
c:\programdata\2aca5cc3-0f83-453d-a079-1076fe1a8b65 (Adware.Seekmo) -> Quarantined and deleted successfully.
c:\programdata\clickpotatolitesa (Adware.ClickPotato) -> Quarantined and deleted successfully.
c:\Users\Mel\AppData\Roaming\clickpotatolite (Adware.ClickPotato) -> Quarantined and deleted successfully.
c:\programdata\resultbar (Adware.ResultBar) -> Quarantined and deleted successfully.
c:\Users\Mel\AppData\Roaming\shopperreports3 (Adware.ShopperReports) -> Quarantined and deleted successfully.
c:\program files (x86)\clickpotatolite (Adware.ClickPotato) -> Quarantined and deleted successfully.
c:\program files (x86)\clickpotatolite\bin (Adware.ClickPotato) -> Quarantined and deleted successfully.
c:\program files (x86)\clickpotatolite\bin\10.0.622.0 (Adware.ClickPotato) -> Quarantined and deleted successfully.
c:\program files (x86)\clickpotatolite\bin\10.0.622.0\firefox (Adware.ClickPotato) -> Quarantined and deleted successfully.
c:\program files (x86)\clickpotatolite\bin\10.0.622.0\firefox\extensions (Adware.ClickPotato) -> Quarantined and deleted successfully.
c:\program files (x86)\clickpotatolite\bin\10.0.622.0\firefox\extensions\plugins (Adware.ClickPotato) -> Quarantined and deleted successfully.
c:\program files (x86)\mozilla firefox\extensions\{34efa911-b536-4c08-bece-cd5e55c875b0} (Adware.ResultBar) -> Quarantined and deleted successfully.
c:\program files (x86)\mozilla firefox\extensions\{34efa911-b536-4c08-bece-cd5e55c875b0}\chrome (Adware.ResultBar) -> Quarantined and deleted successfully.
c:\program files (x86)\mozilla firefox\extensions\{34efa911-b536-4c08-bece-cd5e55c875b0}\defaults (Adware.ResultBar) -> Quarantined and deleted successfully.
c:\program files (x86)\mozilla firefox\extensions\{34efa911-b536-4c08-bece-cd5e55c875b0}\defaults\preferences (Adware.ResultBar) -> Quarantined and deleted successfully.
c:\program files (x86)\shopperreports3 (Adware.ShopperReports) -> Quarantined and deleted successfully.
c:\program files (x86)\shopperreports3\bin (Adware.ShopperReports) -> Quarantined and deleted successfully.
c:\program files (x86)\shopperreports3\bin\3.0.517.0 (Adware.ShopperReports) -> Quarantined and deleted successfully.
c:\program files (x86)\shopperreports3\bin\3.0.517.0\firefox (Adware.ShopperReports) -> Quarantined and deleted successfully.
c:\program files (x86)\shopperreports3\bin\3.0.517.0\firefox\firefoxtoolbar (Adware.ShopperReports) -> Quarantined and deleted successfully.
c:\program files (x86)\shopperreports3\bin\3.0.517.0\firefox\firefoxtoolbar\extensions (Adware.ShopperReports) -> Quarantined and deleted successfully.
c:\program files (x86)\shopperreports3\bin\3.0.517.0\firefox\firefoxtoolbar\extensions\chrome (Adware.ShopperReports) -> Quarantined and deleted successfully.
c:\program files (x86)\shopperreports3\bin\3.0.517.0\firefox\firefoxtoolbar\extensions\components (Adware.ShopperReports) -> Quarantined and deleted successfully.
c:\programdata\microsoft\Windows\start menu\Programs\clickpotato (Adware.ClickPotato) -> Quarantined and deleted successfully.
c:\programdata\microsoft\Windows\start menu\Programs\shopperreports (Adware.ShopperReports) -> Quarantined and deleted successfully.
Fichier(s) infecté(s):
c:\program files (x86)\shopperreports3\bin\3.0.517.0\cntntcntr.dll (Adware.ShopperReports) -> Quarantined and deleted successfully.
c:\programdata\clickpotatolitesa\clickpotatolitesa.dat (Adware.ClickPotato) -> Quarantined and deleted successfully.
c:\programdata\clickpotatolitesa\clickpotatolitesaabout.mht (Adware.ClickPotato) -> Quarantined and deleted successfully.
c:\programdata\clickpotatolitesa\clickpotatolitesaau.dat (Adware.ClickPotato) -> Quarantined and deleted successfully.
c:\programdata\clickpotatolitesa\clickpotatolitesaeula.mht (Adware.ClickPotato) -> Quarantined and deleted successfully.
c:\programdata\clickpotatolitesa\clickpotatolitesa_kyf.dat (Adware.ClickPotato) -> Quarantined and deleted successfully.
c:\program files (x86)\clickpotatolite\bin\10.0.622.0\firefox\extensions\install.rdf (Adware.ClickPotato) -> Quarantined and deleted successfully.
c:\program files (x86)\mozilla firefox\extensions\{34efa911-b536-4c08-bece-cd5e55c875b0}\chrome.manifest (Adware.ResultBar) -> Quarantined and deleted successfully.
c:\program files (x86)\mozilla firefox\extensions\{34efa911-b536-4c08-bece-cd5e55c875b0}\install.rdf (Adware.ResultBar) -> Quarantined and deleted successfully.
c:\program files (x86)\mozilla firefox\extensions\{34efa911-b536-4c08-bece-cd5e55c875b0}\chrome\resultbar.jar (Adware.ResultBar) -> Quarantined and deleted successfully.
c:\program files (x86)\mozilla firefox\extensions\{34efa911-b536-4c08-bece-cd5e55c875b0}\defaults\preferences\prefs.js (Adware.ResultBar) -> Quarantined and deleted successfully.
c:\program files (x86)\shopperreports3\bin\3.0.517.0\link.ico (Adware.ShopperReports) -> Quarantined and deleted successfully.
c:\program files (x86)\shopperreports3\bin\3.0.517.0\firefox\firefoxtoolbar\extensions\chrome.manifest (Adware.ShopperReports) -> Quarantined and deleted successfully.
c:\program files (x86)\shopperreports3\bin\3.0.517.0\firefox\firefoxtoolbar\extensions\install.rdf (Adware.ShopperReports) -> Quarantined and deleted successfully.
c:\program files (x86)\shopperreports3\bin\3.0.517.0\firefox\firefoxtoolbar\extensions\chrome\firefoxtoolbar.jar (Adware.ShopperReports) -> Quarantined and deleted successfully.
c:\program files (x86)\shopperreports3\bin\3.0.517.0\firefox\firefoxtoolbar\extensions\components\BRNstFF.dll (Adware.ShopperReports) -> Quarantined and deleted successfully.
c:\program files (x86)\shopperreports3\bin\3.0.517.0\firefox\firefoxtoolbar\extensions\components\BRNstFF.xpt (Adware.ShopperReports) -> Quarantined and deleted successfully.
c:\programdata\microsoft\Windows\start menu\Programs\clickpotato\About Us.lnk (Adware.ClickPotato) -> Quarantined and deleted successfully.
c:\programdata\microsoft\Windows\start menu\Programs\clickpotato\clickpotato customer support.lnk (Adware.ClickPotato) -> Quarantined and deleted successfully.
c:\programdata\microsoft\Windows\start menu\Programs\clickpotato\clickpotato uninstall instructions.lnk (Adware.ClickPotato) -> Quarantined and deleted successfully.
c:\programdata\microsoft\Windows\start menu\Programs\shopperreports\About Us.lnk (Adware.ShopperReports) -> Quarantined and deleted successfully.
c:\programdata\microsoft\Windows\start menu\Programs\shopperreports\customer support.lnk (Adware.ShopperReports) -> Quarantined and deleted successfully.
c:\programdata\microsoft\Windows\start menu\Programs\shopperreports\shopperreports uninstall instructions.lnk (Adware.ShopperReports) -> Quarantined and deleted successfully.
2011N2
Messages postés
13352
Date d'inscription
samedi 29 janvier 2011
Statut
Contributeur sécurité
Dernière intervention
24 décembre 2016
917
25 oct. 2011 à 15:16
25 oct. 2011 à 15:16
Ok, fais ça : https://forums.commentcamarche.net/forum/affich-23477133-infection-par-un-virus-bagle#7
Merci ;)
Merci ;)
2011N2
Messages postés
13352
Date d'inscription
samedi 29 janvier 2011
Statut
Contributeur sécurité
Dernière intervention
24 décembre 2016
917
25 oct. 2011 à 14:02
25 oct. 2011 à 14:02
Ok ;)
Passe le en mode suppression et poste le rapport :)
Merci,
Gabriel.
Passe le en mode suppression et poste le rapport :)
Merci,
Gabriel.
Vous n’avez pas trouvé la réponse que vous recherchez ?
Posez votre question
Homerus1982
Messages postés
77
Date d'inscription
mardi 25 octobre 2011
Statut
Membre
Dernière intervention
12 août 2015
25 oct. 2011 à 15:10
25 oct. 2011 à 15:10
# 1 : après la suppression une configuration d'iGraal s'est lancée, j'ai annulé ne sachant pas ce qu'est ce logiciel exactement et n'utilisant jamais internet explorer.
#2 : à quoi sert d'envoyer le fichier infectieux zip ?
Rapport de suppression :
############################## | FindyKill V5.054 |
# User : Mel (Administrateurs) # MEL-PC
# Update on 11/10/2011 by El Desaparecido
# Start at: 14:14:53 | 25/10/2011
# Website : https://www.sosvirus.net/
# Contact : contact@eldesaparecido.com
# AMD Athlon(tm) X2 Dual Core Processor L310
# Microsoft Windows 7 Édition Familiale Premium (6.1.7601 64-bit) # Service Pack 1
# Internet Explorer 9.0.8112.16421
# Windows Firewall Status : Enabled
# C:\ # Disque fixe local # 584,07 Go (443,32 Go free) [Acer] # NTFS
# D:\ # Disque CD-ROM
# E:\ # Disque CD-ROM
################## | Eléments infectieux |
################## | Reference Bagle MD5 ... |
################## | MD5 ... |
################## | Bagle Trace ... |
################## | Crack .... |
[13/04/2011 11:21|--a------|913248] C:\Users\Mel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4NIGNNB9\DivXInstaller[1].exe
[13/04/2011 11:24|--a------|1365096] C:\Users\Mel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4NIGNNB9\Installer[1].exe
[13/04/2011 11:24|--a------|278768] C:\Users\Mel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4NIGNNB9\Installer[2].exe
[12/10/2010 16:40|--a------|509552] C:\Users\Mel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\80INSY8R\GoogleToolbarInstaller_updater_signed[1].exe
[07/08/2011 13:02|--a------|1287016] C:\Users\Mel\AppData\Local\Microsoft\Windows Live\Installer\Catalog\wlsetup.exe
[29/08/2003 01:02|--a------|561152] C:\Users\Mel\AppData\Local\Temp\AutoRun.exe
[14/11/2010 22:16|--a------|876824] C:\Users\Mel\AppData\Local\Temp\DivXSetup.exe
[27/09/2010 08:25|--a------|19694544] C:\Users\Mel\AppData\Local\Temp\EAD16DA.exe
[29/08/2003 01:02|--a------|286720] C:\Users\Mel\AppData\Local\Temp\eauninstall.exe
[11/09/2010 21:09|--a------|2788816] C:\Users\Mel\AppData\Local\Temp\FP_PL_PFS_INSTALLER.exe
[04/12/2010 14:05|--a------|2324992] C:\Users\Mel\AppData\Local\Temp\igraal.exe
[16/09/2010 23:17|--a------|875296] C:\Users\Mel\AppData\Local\Temp\jre-6u22-windows-i586-iftw-rv.exe
[06/01/2011 01:40|--a------|884512] C:\Users\Mel\AppData\Local\Temp\jre-6u23-windows-i586-iftw-rv.exe
[10/02/2011 02:48|--a------|885536] C:\Users\Mel\AppData\Local\Temp\jre-6u24-windows-i586-iftw-rv.exe
[05/05/2011 17:18|--a------|901408] C:\Users\Mel\AppData\Local\Temp\jre-6u26-windows-i586-iftw-rv.exe
[25/10/2010 17:44|--a------|30164216] C:\Users\Mel\AppData\Local\Temp\LimeWireWin.exe
[25/04/2011 11:49|--a------|8931808] C:\Users\Mel\AppData\Local\Temp\mediaget_installer.exe
[26/10/2010 16:52|--a------|469256] C:\Users\Mel\AppData\Local\Temp\MSN333A.exe
[06/12/2010 22:15|--a------|2685304] C:\Users\Mel\AppData\Local\Temp\NEW19BC.tmp.exe
[20/11/2010 22:29|--a------|1732464] C:\Users\Mel\AppData\Local\Temp\OB.exe
[20/10/2011 22:16|--a------|48103936] C:\Users\Mel\AppData\Local\Temp\OriginLauncher34630115.exe
[05/10/2011 19:38|-ra------|336280] C:\Users\Mel\AppData\Local\Temp\rootsupd.exe
[29/08/2003 00:37|--a------|700416] C:\Users\Mel\AppData\Local\Temp\SC4_uninst.exe
[16/04/2008 16:21|--a------|90112] C:\Users\Mel\AppData\Local\Temp\SCS Uninstaller.exe
[12/10/2010 16:40|--a------|426552] C:\Users\Mel\AppData\Local\Temp\SearchWithGoogleUpdate.exe
[19/10/2011 00:09|--a------|46983184] C:\Users\Mel\AppData\Local\Temp\setup.exe
[16/08/2003 04:13|--a------|86016] C:\Users\Mel\AppData\Local\Temp\SimCity 4 Deluxe_uninst.exe
[09/09/2011 14:58|--a------|19445128] C:\Users\Mel\AppData\Local\Temp\SkypeSetup.exe
[04/12/2010 14:03|--a------|6677303] C:\Users\Mel\AppData\Local\Temp\TomsDownloader15274.exe
[11/09/2010 21:02|--a------|4656976] C:\Users\Mel\AppData\Local\Temp\Update_4f54.exe
[31/10/2010 20:36|--a------|4865432] C:\Users\Mel\AppData\Local\Temp\Update_efb3.exe
[05/10/2011 19:38|--a------|5673816] C:\Users\Mel\AppData\Local\Temp\vcredist_x64.exe
[05/10/2011 19:38|--a------|4995416] C:\Users\Mel\AppData\Local\Temp\vcredist_x86.exe
[05/10/2011 19:38|--a------|2585872] C:\Users\Mel\AppData\Local\Temp\WindowsInstaller-KB893803-v2-x86.exe
[28/02/2011 12:15|--a------|2832544] C:\Users\Mel\AppData\Local\Temp\1870.dir\InstallFlashPlayer.exe
[25/04/2011 11:00|--a------|2832544] C:\Users\Mel\AppData\Local\Temp\1BBB.dir\InstallFlashPlayer.exe
[18/04/2011 17:51|--a------|2832544] C:\Users\Mel\AppData\Local\Temp\2D38.dir\InstallFlashPlayer.exe
[08/06/2011 11:56|--a------|3080864] C:\Users\Mel\AppData\Local\Temp\5FAD.dir\InstallFlashPlayer.exe
[13/02/2011 00:48|--a------|2832544] C:\Users\Mel\AppData\Local\Temp\756E.dir\InstallFlashPlayer.exe
[04/04/2011 11:04|--a------|2833568] C:\Users\Mel\AppData\Local\Temp\7BE4.dir\InstallFlashPlayer.exe
[11/04/2011 10:08|--a------|2833568] C:\Users\Mel\AppData\Local\Temp\992.dir\InstallFlashPlayer.exe
[14/12/2010 11:08|--a------|2790864] C:\Users\Mel\AppData\Local\Temp\D28B.dir\InstallFlashPlayer.exe
[26/09/2010 12:51|--a------|2788816] C:\Users\Mel\AppData\Local\Temp\D93F.dir\InstallFlashPlayer.exe
[07/07/2011 11:12|--a------|3082400] C:\Users\Mel\AppData\Local\Temp\DE6D.dir\InstallFlashPlayer.exe
[10/08/2011 19:02|--a------|3089056] C:\Users\Mel\AppData\Local\Temp\E494.dir\InstallFlashPlayer.exe
[27/03/2011 20:08|--a------|2833568] C:\Users\Mel\AppData\Local\Temp\F612.dir\InstallFlashPlayer.exe
[16/09/2011 09:07|--a------|54544] C:\Users\Mel\AppData\Local\Temp\IXP000.TMP\Autorun.exe
[18/10/2011 01:36|--a------|139776] C:\Users\Mel\AppData\Local\Temp\IXP000.TMP\file.exe
[16/09/2011 09:07|--a------|54544] C:\Users\Mel\AppData\Local\Temp\IXP001.TMP\Autorun.exe
[18/10/2011 01:36|--a------|139776] C:\Users\Mel\AppData\Local\Temp\IXP001.TMP\file.exe
[21/11/2010 16:07|--a------|53248] C:\Users\Mel\AppData\Local\Temp\jdic_0_9_5\IeEmbed.exe
[04/12/2010 14:53|--a------|747376] C:\Users\Mel\AppData\Local\Temp\NERO20100326135034074\setup.exe
[04/12/2010 14:53|--a------|4499824] C:\Users\Mel\AppData\Local\Temp\NERO20100326135034074\ISSetupPrerequisites\NDP30SP2-KB967328-x86\NDP30SP2-KB967328-x86.exe
[04/12/2010 14:53|--a------|144656] C:\Users\Mel\AppData\Local\Temp\NERO20100326135034074\ISSetupPrerequisites\NDP30SP2-KB967328-x86\PRQStarter-1.exe
[04/12/2010 14:53|--a------|525656] C:\Users\Mel\AppData\Local\Temp\NERO20100326135034074\ISSetupPrerequisites\{046FDEE1-7615-4CE7-990D-19D4CC134D5F}\DXSETUP.exe
[04/12/2010 14:53|--a------|144656] C:\Users\Mel\AppData\Local\Temp\NERO20100326135034074\ISSetupPrerequisites\{046FDEE1-7615-4CE7-990D-19D4CC134D5F}\PRQStarter-1.exe
[04/12/2010 14:53|--a------|144656] C:\Users\Mel\AppData\Local\Temp\NERO20100326135034074\ISSetupPrerequisites\{22AA129A-8E5D-45AE-A3E4-D110703EF141}\PRQStarter-1.exe
[04/12/2010 14:53|--a------|3327000] C:\Users\Mel\AppData\Local\Temp\NERO20100326135034074\ISSetupPrerequisites\{22AA129A-8E5D-45AE-A3E4-D110703EF141}\WindowsXP-KB942288-v3-x86.exe
[04/12/2010 14:53|--a------|144656] C:\Users\Mel\AppData\Local\Temp\NERO20100326135034074\ISSetupPrerequisites\{2AE04573-CA1C-46BC-8430-E226B823BB8C}\PRQStarter-1.exe
[04/12/2010 14:53|--a------|1314504] C:\Users\Mel\AppData\Local\Temp\NERO20100326135034074\ISSetupPrerequisites\{2AE04573-CA1C-46BC-8430-E226B823BB8C}\vs_piaredist.exe
[04/12/2010 14:53|--a------|525656] C:\Users\Mel\AppData\Local\Temp\NERO20100326135034074\ISSetupPrerequisites\{3D0986A7-2F13-4AD4-A35F-D167603DB43F}\DXSETUP.exe
[04/12/2010 14:53|--a------|144656] C:\Users\Mel\AppData\Local\Temp\NERO20100326135034074\ISSetupPrerequisites\{3D0986A7-2F13-4AD4-A35F-D167603DB43F}\PRQStarter-1.exe
[04/12/2010 14:53|--a------|81920] C:\Users\Mel\AppData\Local\Temp\NERO20100326135034074\ISSetupPrerequisites\{4C6E12E5-5905-4aa5-B462-E7DFC4BD75E5}\LSDriveDetect.exe
[04/12/2010 14:53|--a------|103696] C:\Users\Mel\AppData\Local\Temp\NERO20100326135034074\ISSetupPrerequisites\{4C6E12E5-5905-4aa5-B462-E7DFC4BD75E5}\LS_LAUNCHER.exe
[04/12/2010 14:53|--a------|144656] C:\Users\Mel\AppData\Local\Temp\NERO20100326135034074\ISSetupPrerequisites\{4C6E12E5-5905-4aa5-B462-E7DFC4BD75E5}\PRQStarter-1.exe
[04/12/2010 14:53|--a------|144656] C:\Users\Mel\AppData\Local\Temp\NERO20100326135034074\ISSetupPrerequisites\{5CCCB5E2-D83C-42AD-B8BA-6C073D804247}\PRQStarter-1.exe
[04/12/2010 14:53|--a------|144656] C:\Users\Mel\AppData\Local\Temp\NERO20100326135034074\ISSetupPrerequisites\{6BD3444F-03E6-4E21-BAD0-50E6A5820433}\PRQStarter-1.exe
[04/12/2010 14:53|--a------|144656] C:\Users\Mel\AppData\Local\Temp\NERO20100326135034074\ISSetupPrerequisites\{8D7309F4-C4B6-4408-8DA9-D3B0E7987822}\PRQStarter-1.exe
[04/12/2010 14:53|--a------|525656] C:\Users\Mel\AppData\Local\Temp\NERO20100326135034074\ISSetupPrerequisites\{A4400125-0F4D-4B79-80B5-D85DADF61F7A}\DXSETUP.exe
[04/12/2010 14:53|--a------|144656] C:\Users\Mel\AppData\Local\Temp\NERO20100326135034074\ISSetupPrerequisites\{A4400125-0F4D-4B79-80B5-D85DADF61F7A}\PRQStarter-1.exe
[04/12/2010 14:53|--a------|525656] C:\Users\Mel\AppData\Local\Temp\NERO20100326135034074\ISSetupPrerequisites\{A5D3B160-0EA1-4A57-8D82-C53A853AEB07}\DXSETUP.exe
[04/12/2010 14:53|--a------|144656] C:\Users\Mel\AppData\Local\Temp\NERO20100326135034074\ISSetupPrerequisites\{A5D3B160-0EA1-4A57-8D82-C53A853AEB07}\PRQStarter-1.exe
[04/12/2010 14:53|--a------|144656] C:\Users\Mel\AppData\Local\Temp\NERO20100326135034074\ISSetupPrerequisites\{B56633A3-7ADC-4CE5-A320-ACA0B65DA04B}\PRQStarter-1.exe
[04/12/2010 14:53|--a------|4216840] C:\Users\Mel\AppData\Local\Temp\NERO20100326135034074\ISSetupPrerequisites\{B56633A3-7ADC-4CE5-A320-ACA0B65DA04B}\vcredist_x86.exe
[04/12/2010 14:53|--a------|926992] C:\Users\Mel\AppData\Local\Temp\NERO20100326135034074\ISSetupPrerequisites\{BF80A1C0-C3FF-4B1C-ABEF-22CD4F97A0AB}\NeroBar.exe
[04/12/2010 14:53|--a------|144656] C:\Users\Mel\AppData\Local\Temp\NERO20100326135034074\ISSetupPrerequisites\{BF80A1C0-C3FF-4B1C-ABEF-22CD4F97A0AB}\PRQStarter-1.exe
[04/12/2010 14:53|--a------|2131336] C:\Users\Mel\AppData\Local\Temp\NERO20100326135034074\ISSetupPrerequisites\{BF80A1C0-C3FF-4B1C-ABEF-22CD4F97A0AB}\Toolbar.exe
[04/12/2010 14:53|--a------|525656] C:\Users\Mel\AppData\Local\Temp\NERO20100326135034074\ISSetupPrerequisites\{C00D1E35-750C-4021-86E0-A088C6678DD9}\DXSETUP.exe
[04/12/2010 14:53|--a------|144656] C:\Users\Mel\AppData\Local\Temp\NERO20100326135034074\ISSetupPrerequisites\{C00D1E35-750C-4021-86E0-A088C6678DD9}\PRQStarter-1.exe
[04/12/2010 14:53|--a------|144656] C:\Users\Mel\AppData\Local\Temp\NERO20100326135034074\ISSetupPrerequisites\{C597C3FC-2110-451E-832E-9352964E56F9}\PRQStarter-1.exe
[04/12/2010 14:53|--a------|2749864] C:\Users\Mel\AppData\Local\Temp\NERO20100326135034074\ISSetupPrerequisites\{C597C3FC-2110-451E-832E-9352964E56F9}\vcredist_x86.exe
[04/12/2010 14:53|--a------|144656] C:\Users\Mel\AppData\Local\Temp\NERO20100326135034074\ISSetupPrerequisites\{D37C1D8F-C930-4005-BCD8-3715028461C0}\PRQStarter-1.exe
[04/12/2010 14:53|--a------|4485976] C:\Users\Mel\AppData\Local\Temp\NERO20100326135034074\ISSetupPrerequisites\{D37C1D8F-C930-4005-BCD8-3715028461C0}\vcredist_x86.exe
[04/12/2010 14:53|--a------|525656] C:\Users\Mel\AppData\Local\Temp\NERO20100326135034074\ISSetupPrerequisites\{E1EFF81F-E42D-4D52-8C56-3493C52D5641}\DXSETUP.exe
[04/12/2010 14:53|--a------|144656] C:\Users\Mel\AppData\Local\Temp\NERO20100326135034074\ISSetupPrerequisites\{E1EFF81F-E42D-4D52-8C56-3493C52D5641}\PRQStarter-1.exe
[14/09/2011 11:30|--a------|48912] C:\Users\Mel\AppData\Local\Temp\{1455AEAB-8FFF-47C2-9A0D-C8D2A3050320}\Disk1\Autorun.exe
[14/09/2011 11:31|--a------|398608] C:\Users\Mel\AppData\Local\Temp\{1455AEAB-8FFF-47C2-9A0D-C8D2A3050320}\Disk1\setup.exe
[14/09/2011 11:30|--a------|2512656] C:\Users\Mel\AppData\Local\Temp\{1455AEAB-8FFF-47C2-9A0D-C8D2A3050320}\Disk1\Game\Bin\SimsMedievalLauncher.exe
[14/09/2011 11:30|--a------|107280] C:\Users\Mel\AppData\Local\Temp\{1455AEAB-8FFF-47C2-9A0D-C8D2A3050320}\Disk1\Game\Bin\SMLauncher.exe
[14/09/2011 11:31|--a------|29399312] C:\Users\Mel\AppData\Local\Temp\{1455AEAB-8FFF-47C2-9A0D-C8D2A3050320}\Disk1\Game\Bin\TSM.exe
[14/09/2011 11:30|--a------|120112] C:\Users\Mel\AppData\Local\Temp\{1455AEAB-8FFF-47C2-9A0D-C8D2A3050320}\Disk1\Game\Bin\EACore\EACoreServer.exe
[14/09/2011 11:30|--a------|206136] C:\Users\Mel\AppData\Local\Temp\{1455AEAB-8FFF-47C2-9A0D-C8D2A3050320}\Disk1\Game\Bin\EACore\EAProxyInstaller.exe
[14/09/2011 11:30|--a------|206128] C:\Users\Mel\AppData\Local\Temp\{1455AEAB-8FFF-47C2-9A0D-C8D2A3050320}\Disk1\Game\Bin\EACore\PatchProgress.exe
[10/05/2008 00:27|--a------|11080] C:\Users\Mel\AppData\Local\Temp\{70B4A1EB-A7FC-4A7D-81E2-50DAAA11905A}\dotnetinstaller.exe
[10/05/2008 00:28|--a------|117560] C:\Users\Mel\AppData\Local\Temp\{70B4A1EB-A7FC-4A7D-81E2-50DAAA11905A}\ISBEW64.exe
[10/12/2010 13:32|--a------|385024] C:\Users\Mel\AppData\Local\Temp\{70B4A1EB-A7FC-4A7D-81E2-50DAAA11905A}\{E6B88BD6-E4B2-4701-A648-B6DAC6E491CC}\The Sims 3 Generations_code.exe
[10/12/2010 13:32|--a------|184320] C:\Users\Mel\AppData\Local\Temp\{70B4A1EB-A7FC-4A7D-81E2-50DAAA11905A}\{E6B88BD6-E4B2-4701-A648-B6DAC6E491CC}\The Sims 3 Generations_uninst.exe
[30/05/2011 20:20|--a------|398608] C:\Users\Mel\AppData\Local\Temp\{B28A5030-6958-4085-969A-73462C771C21}\Sims3EP04Setup.exe
[07/12/2010 00:26|--a------|2186183] C:\Users\Mel\AppData\Roaming\igraal\update.exe
[27/09/2010 08:31|--a------|53632] C:\Users\Mel\AppData\Roaming\Macromedia\Flash Player\www.macromedia.com\bin\airappinstaller\airappinstaller.exe
[15/05/2011 14:05|--a------|117427] C:\Users\Mel\AppData\Roaming\Macromedia\Flash Player\www.macromedia.com\bin\digitaleditions\digitaleditions.exe
[26/09/2010 18:50|-ra------|10134] C:\Users\Mel\AppData\Roaming\Microsoft\Installer\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}\ARPPRODUCTICON.exe
[08/06/2011 00:11|--a------|52616] C:\Users\Mel\AppData\Roaming\Mozilla\Firefox\Profiles\ml6ly7ys.default\extensions\toolbar@ask.com\chrome\content\issigned.exe
[25/05/2011 03:09|--a------|345992] C:\Users\Mel\AppData\Roaming\Mozilla\Firefox\Profiles\ml6ly7ys.default\extensions\toolbar@ask.com\chrome\content\NeroApplicationManager.exe
[10/10/2011 12:22|--a------|3623592] C:\Users\Mel\AppData\Roaming\Mozilla\Firefox\Profiles\ml6ly7ys.default\extensions\toolbar@ask.com\chrome\temp\askToolbar.exe
[10/06/2011 18:38|--a------|257502] C:\Users\Mel\AppData\Roaming\Mozilla\Firefox\Profiles\ml6ly7ys.default\extensions\toolbar@ask.com\chrome\temp\ff-config.Fri-10-Jun-2011-16-38-53-GMT\ff-config.zip
[10/10/2011 13:15|--a------|235917] C:\Users\Mel\AppData\Roaming\Mozilla\Firefox\Profiles\ml6ly7ys.default\extensions\toolbar@ask.com\chrome\temp\ff-config.Mon-10-Oct-2011-11-14-59-GMT\ff-config.zip
[21/03/2011 20:06|--a------|220034] C:\Users\Mel\AppData\Roaming\Mozilla\Firefox\Profiles\ml6ly7ys.default\extensions\toolbar@ask.com\chrome\temp\ff-config.Mon-21-Mar-2011-18-06-42-GMT\ff-config.zip
[04/12/2010 14:35|--a------|53968] C:\Users\Mel\AppData\Roaming\Mozilla\Firefox\Profiles\ml6ly7ys.default\extensions\toolbar@ask.com\chrome\temp\ff-config.Sat-04-Dec-2010-12-35-01-GMT\ff-config.zip
[06/08/2011 12:01|--a------|258040] C:\Users\Mel\AppData\Roaming\Mozilla\Firefox\Profiles\ml6ly7ys.default\extensions\toolbar@ask.com\chrome\temp\ff-config.Sat-06-Aug-2011-10-01-22-GMT\ff-config.zip
[05/12/2010 15:10|--a------|53968] C:\Users\Mel\AppData\Roaming\Mozilla\Firefox\Profiles\ml6ly7ys.default\extensions\toolbar@ask.com\chrome\temp\ff-config.Sun-05-Dec-2010-13-10-14-GMT\ff-config.zip
[22/09/2011 17:33|--a------|281452] C:\Users\Mel\AppData\Roaming\Mozilla\Firefox\Profiles\ml6ly7ys.default\extensions\toolbar@ask.com\chrome\temp\ff-config.Thu-22-Sep-2011-15-33-23-GMT\ff-config.zip
[31/05/2011 17:49|--a------|226410] C:\Users\Mel\AppData\Roaming\Mozilla\Firefox\Profiles\ml6ly7ys.default\extensions\toolbar@ask.com\chrome\temp\ff-config.Tue-31-May-2011-15-49-47-GMT\ff-config.zip
[08/12/2010 18:16|--a------|36198] C:\Users\Mel\AppData\Roaming\Mozilla\Firefox\Profiles\ml6ly7ys.default\extensions\toolbar@ask.com\chrome\temp\ff-config.Wed-08-Dec-2010-16-16-06-GMT\ff-config.zip
[31/10/2010 20:43|--a------|5140] C:\Users\Mel\AppData\Roaming\Uniblue\RegistryBooster\backup\20101031.194316.zip
[25/10/2011 12:52|--a------|1336771] C:\Users\Mel\Desktop\FyK.exe
[17/12/2010 13:08|--a------|19985265] C:\Users\Mel\Documents\vlc-1.1.5-win32.exe
[10/04/2011 12:26|--a------|61083] C:\Users\Mel\Documents\Cours\L1\SEMESTRE 2\CO. DROIT ET INSTITUTIONS\Vie politique fran#aise\Vie Politique fran#aise - Montouroy.zip
[08/03/2010 22:40|--a------|3792740] C:\Users\Mel\Pictures\chess'.rar
[28/08/2009 11:18|--a------|23394537] C:\Users\Mel\Pictures\Karine coco moi.rar
[01/03/2009 18:31|--a------|336526608] C:\Users\Mel\Pictures\Paris 2009.rar
[28/08/2009 11:22|--a------|50719024] C:\Users\Mel\Pictures\Ro moi swim.rar
[10/03/2009 17:53|--a------|202854985] C:\Users\Mel\Pictures\Ile de R'\Ile de R' 2008.rar
[28/07/2009 11:56|--a------|260140379] C:\Users\Mel\Pictures\Ile de R'\ile de r' 2009.rar
[06/07/2009 17:54|--a------|2456241] C:\Users\Mel\Videos\Concu.rar
[14/03/2009 18:51|--a------|28677844] C:\Users\Mel\Videos\ton verre est vide.rar
################## | Registre |
################## | Etat |
# Mode sans echec : OK
# Affichage des fichiers cachés : OK
# Uac : OK
# Ndisuio ( NDIS User Mode ) -> Start = 3 ( Good = 3 | Bad = 4 )
# EapHost ( Extensible Authentication Protocol Host ) -> Start = 2 ( Good = 2 | Bad = 4 )
# WwanSvc ( AutoConfig Service WWAN ) -> Start = 3 ( Good = 2 | Bad = 4 )
# MpsSvc ( Windows Firewall ) -> Start = 2 ( Good = 2 | Bad = 4 )
# SharedAccess ( Windows Firewall - Internet Connection Sharing ) -> Start = 2 ( Good = 2 | Bad = 4 )
# windefend ( Windows Defender ) -> Start = 2 ( Good = 2 | Bad = 4 )
# wuauserv ( Windows Update ) -> Start = 2 ( Good = 2 | Bad = 4 )
# wscsvc ( Windows Security Center ) -> Start = 2 ( Good = 2 | Bad = 4 )
################## | Fichiers corrompus |
... OK !
################## | Upload |
Veuillez envoyer le fichier : C:\FindyKill_Upload_Me_Mel-PC.zip : http://eldesaparecido.com/support.php
Merci pour votre contribution .
################## | ! Fin du rapport # FindyKill V5.054 ! |
#2 : à quoi sert d'envoyer le fichier infectieux zip ?
Rapport de suppression :
############################## | FindyKill V5.054 |
# User : Mel (Administrateurs) # MEL-PC
# Update on 11/10/2011 by El Desaparecido
# Start at: 14:14:53 | 25/10/2011
# Website : https://www.sosvirus.net/
# Contact : contact@eldesaparecido.com
# AMD Athlon(tm) X2 Dual Core Processor L310
# Microsoft Windows 7 Édition Familiale Premium (6.1.7601 64-bit) # Service Pack 1
# Internet Explorer 9.0.8112.16421
# Windows Firewall Status : Enabled
# C:\ # Disque fixe local # 584,07 Go (443,32 Go free) [Acer] # NTFS
# D:\ # Disque CD-ROM
# E:\ # Disque CD-ROM
################## | Eléments infectieux |
################## | Reference Bagle MD5 ... |
################## | MD5 ... |
################## | Bagle Trace ... |
################## | Crack .... |
[13/04/2011 11:21|--a------|913248] C:\Users\Mel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4NIGNNB9\DivXInstaller[1].exe
[13/04/2011 11:24|--a------|1365096] C:\Users\Mel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4NIGNNB9\Installer[1].exe
[13/04/2011 11:24|--a------|278768] C:\Users\Mel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4NIGNNB9\Installer[2].exe
[12/10/2010 16:40|--a------|509552] C:\Users\Mel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\80INSY8R\GoogleToolbarInstaller_updater_signed[1].exe
[07/08/2011 13:02|--a------|1287016] C:\Users\Mel\AppData\Local\Microsoft\Windows Live\Installer\Catalog\wlsetup.exe
[29/08/2003 01:02|--a------|561152] C:\Users\Mel\AppData\Local\Temp\AutoRun.exe
[14/11/2010 22:16|--a------|876824] C:\Users\Mel\AppData\Local\Temp\DivXSetup.exe
[27/09/2010 08:25|--a------|19694544] C:\Users\Mel\AppData\Local\Temp\EAD16DA.exe
[29/08/2003 01:02|--a------|286720] C:\Users\Mel\AppData\Local\Temp\eauninstall.exe
[11/09/2010 21:09|--a------|2788816] C:\Users\Mel\AppData\Local\Temp\FP_PL_PFS_INSTALLER.exe
[04/12/2010 14:05|--a------|2324992] C:\Users\Mel\AppData\Local\Temp\igraal.exe
[16/09/2010 23:17|--a------|875296] C:\Users\Mel\AppData\Local\Temp\jre-6u22-windows-i586-iftw-rv.exe
[06/01/2011 01:40|--a------|884512] C:\Users\Mel\AppData\Local\Temp\jre-6u23-windows-i586-iftw-rv.exe
[10/02/2011 02:48|--a------|885536] C:\Users\Mel\AppData\Local\Temp\jre-6u24-windows-i586-iftw-rv.exe
[05/05/2011 17:18|--a------|901408] C:\Users\Mel\AppData\Local\Temp\jre-6u26-windows-i586-iftw-rv.exe
[25/10/2010 17:44|--a------|30164216] C:\Users\Mel\AppData\Local\Temp\LimeWireWin.exe
[25/04/2011 11:49|--a------|8931808] C:\Users\Mel\AppData\Local\Temp\mediaget_installer.exe
[26/10/2010 16:52|--a------|469256] C:\Users\Mel\AppData\Local\Temp\MSN333A.exe
[06/12/2010 22:15|--a------|2685304] C:\Users\Mel\AppData\Local\Temp\NEW19BC.tmp.exe
[20/11/2010 22:29|--a------|1732464] C:\Users\Mel\AppData\Local\Temp\OB.exe
[20/10/2011 22:16|--a------|48103936] C:\Users\Mel\AppData\Local\Temp\OriginLauncher34630115.exe
[05/10/2011 19:38|-ra------|336280] C:\Users\Mel\AppData\Local\Temp\rootsupd.exe
[29/08/2003 00:37|--a------|700416] C:\Users\Mel\AppData\Local\Temp\SC4_uninst.exe
[16/04/2008 16:21|--a------|90112] C:\Users\Mel\AppData\Local\Temp\SCS Uninstaller.exe
[12/10/2010 16:40|--a------|426552] C:\Users\Mel\AppData\Local\Temp\SearchWithGoogleUpdate.exe
[19/10/2011 00:09|--a------|46983184] C:\Users\Mel\AppData\Local\Temp\setup.exe
[16/08/2003 04:13|--a------|86016] C:\Users\Mel\AppData\Local\Temp\SimCity 4 Deluxe_uninst.exe
[09/09/2011 14:58|--a------|19445128] C:\Users\Mel\AppData\Local\Temp\SkypeSetup.exe
[04/12/2010 14:03|--a------|6677303] C:\Users\Mel\AppData\Local\Temp\TomsDownloader15274.exe
[11/09/2010 21:02|--a------|4656976] C:\Users\Mel\AppData\Local\Temp\Update_4f54.exe
[31/10/2010 20:36|--a------|4865432] C:\Users\Mel\AppData\Local\Temp\Update_efb3.exe
[05/10/2011 19:38|--a------|5673816] C:\Users\Mel\AppData\Local\Temp\vcredist_x64.exe
[05/10/2011 19:38|--a------|4995416] C:\Users\Mel\AppData\Local\Temp\vcredist_x86.exe
[05/10/2011 19:38|--a------|2585872] C:\Users\Mel\AppData\Local\Temp\WindowsInstaller-KB893803-v2-x86.exe
[28/02/2011 12:15|--a------|2832544] C:\Users\Mel\AppData\Local\Temp\1870.dir\InstallFlashPlayer.exe
[25/04/2011 11:00|--a------|2832544] C:\Users\Mel\AppData\Local\Temp\1BBB.dir\InstallFlashPlayer.exe
[18/04/2011 17:51|--a------|2832544] C:\Users\Mel\AppData\Local\Temp\2D38.dir\InstallFlashPlayer.exe
[08/06/2011 11:56|--a------|3080864] C:\Users\Mel\AppData\Local\Temp\5FAD.dir\InstallFlashPlayer.exe
[13/02/2011 00:48|--a------|2832544] C:\Users\Mel\AppData\Local\Temp\756E.dir\InstallFlashPlayer.exe
[04/04/2011 11:04|--a------|2833568] C:\Users\Mel\AppData\Local\Temp\7BE4.dir\InstallFlashPlayer.exe
[11/04/2011 10:08|--a------|2833568] C:\Users\Mel\AppData\Local\Temp\992.dir\InstallFlashPlayer.exe
[14/12/2010 11:08|--a------|2790864] C:\Users\Mel\AppData\Local\Temp\D28B.dir\InstallFlashPlayer.exe
[26/09/2010 12:51|--a------|2788816] C:\Users\Mel\AppData\Local\Temp\D93F.dir\InstallFlashPlayer.exe
[07/07/2011 11:12|--a------|3082400] C:\Users\Mel\AppData\Local\Temp\DE6D.dir\InstallFlashPlayer.exe
[10/08/2011 19:02|--a------|3089056] C:\Users\Mel\AppData\Local\Temp\E494.dir\InstallFlashPlayer.exe
[27/03/2011 20:08|--a------|2833568] C:\Users\Mel\AppData\Local\Temp\F612.dir\InstallFlashPlayer.exe
[16/09/2011 09:07|--a------|54544] C:\Users\Mel\AppData\Local\Temp\IXP000.TMP\Autorun.exe
[18/10/2011 01:36|--a------|139776] C:\Users\Mel\AppData\Local\Temp\IXP000.TMP\file.exe
[16/09/2011 09:07|--a------|54544] C:\Users\Mel\AppData\Local\Temp\IXP001.TMP\Autorun.exe
[18/10/2011 01:36|--a------|139776] C:\Users\Mel\AppData\Local\Temp\IXP001.TMP\file.exe
[21/11/2010 16:07|--a------|53248] C:\Users\Mel\AppData\Local\Temp\jdic_0_9_5\IeEmbed.exe
[04/12/2010 14:53|--a------|747376] C:\Users\Mel\AppData\Local\Temp\NERO20100326135034074\setup.exe
[04/12/2010 14:53|--a------|4499824] C:\Users\Mel\AppData\Local\Temp\NERO20100326135034074\ISSetupPrerequisites\NDP30SP2-KB967328-x86\NDP30SP2-KB967328-x86.exe
[04/12/2010 14:53|--a------|144656] C:\Users\Mel\AppData\Local\Temp\NERO20100326135034074\ISSetupPrerequisites\NDP30SP2-KB967328-x86\PRQStarter-1.exe
[04/12/2010 14:53|--a------|525656] C:\Users\Mel\AppData\Local\Temp\NERO20100326135034074\ISSetupPrerequisites\{046FDEE1-7615-4CE7-990D-19D4CC134D5F}\DXSETUP.exe
[04/12/2010 14:53|--a------|144656] C:\Users\Mel\AppData\Local\Temp\NERO20100326135034074\ISSetupPrerequisites\{046FDEE1-7615-4CE7-990D-19D4CC134D5F}\PRQStarter-1.exe
[04/12/2010 14:53|--a------|144656] C:\Users\Mel\AppData\Local\Temp\NERO20100326135034074\ISSetupPrerequisites\{22AA129A-8E5D-45AE-A3E4-D110703EF141}\PRQStarter-1.exe
[04/12/2010 14:53|--a------|3327000] C:\Users\Mel\AppData\Local\Temp\NERO20100326135034074\ISSetupPrerequisites\{22AA129A-8E5D-45AE-A3E4-D110703EF141}\WindowsXP-KB942288-v3-x86.exe
[04/12/2010 14:53|--a------|144656] C:\Users\Mel\AppData\Local\Temp\NERO20100326135034074\ISSetupPrerequisites\{2AE04573-CA1C-46BC-8430-E226B823BB8C}\PRQStarter-1.exe
[04/12/2010 14:53|--a------|1314504] C:\Users\Mel\AppData\Local\Temp\NERO20100326135034074\ISSetupPrerequisites\{2AE04573-CA1C-46BC-8430-E226B823BB8C}\vs_piaredist.exe
[04/12/2010 14:53|--a------|525656] C:\Users\Mel\AppData\Local\Temp\NERO20100326135034074\ISSetupPrerequisites\{3D0986A7-2F13-4AD4-A35F-D167603DB43F}\DXSETUP.exe
[04/12/2010 14:53|--a------|144656] C:\Users\Mel\AppData\Local\Temp\NERO20100326135034074\ISSetupPrerequisites\{3D0986A7-2F13-4AD4-A35F-D167603DB43F}\PRQStarter-1.exe
[04/12/2010 14:53|--a------|81920] C:\Users\Mel\AppData\Local\Temp\NERO20100326135034074\ISSetupPrerequisites\{4C6E12E5-5905-4aa5-B462-E7DFC4BD75E5}\LSDriveDetect.exe
[04/12/2010 14:53|--a------|103696] C:\Users\Mel\AppData\Local\Temp\NERO20100326135034074\ISSetupPrerequisites\{4C6E12E5-5905-4aa5-B462-E7DFC4BD75E5}\LS_LAUNCHER.exe
[04/12/2010 14:53|--a------|144656] C:\Users\Mel\AppData\Local\Temp\NERO20100326135034074\ISSetupPrerequisites\{4C6E12E5-5905-4aa5-B462-E7DFC4BD75E5}\PRQStarter-1.exe
[04/12/2010 14:53|--a------|144656] C:\Users\Mel\AppData\Local\Temp\NERO20100326135034074\ISSetupPrerequisites\{5CCCB5E2-D83C-42AD-B8BA-6C073D804247}\PRQStarter-1.exe
[04/12/2010 14:53|--a------|144656] C:\Users\Mel\AppData\Local\Temp\NERO20100326135034074\ISSetupPrerequisites\{6BD3444F-03E6-4E21-BAD0-50E6A5820433}\PRQStarter-1.exe
[04/12/2010 14:53|--a------|144656] C:\Users\Mel\AppData\Local\Temp\NERO20100326135034074\ISSetupPrerequisites\{8D7309F4-C4B6-4408-8DA9-D3B0E7987822}\PRQStarter-1.exe
[04/12/2010 14:53|--a------|525656] C:\Users\Mel\AppData\Local\Temp\NERO20100326135034074\ISSetupPrerequisites\{A4400125-0F4D-4B79-80B5-D85DADF61F7A}\DXSETUP.exe
[04/12/2010 14:53|--a------|144656] C:\Users\Mel\AppData\Local\Temp\NERO20100326135034074\ISSetupPrerequisites\{A4400125-0F4D-4B79-80B5-D85DADF61F7A}\PRQStarter-1.exe
[04/12/2010 14:53|--a------|525656] C:\Users\Mel\AppData\Local\Temp\NERO20100326135034074\ISSetupPrerequisites\{A5D3B160-0EA1-4A57-8D82-C53A853AEB07}\DXSETUP.exe
[04/12/2010 14:53|--a------|144656] C:\Users\Mel\AppData\Local\Temp\NERO20100326135034074\ISSetupPrerequisites\{A5D3B160-0EA1-4A57-8D82-C53A853AEB07}\PRQStarter-1.exe
[04/12/2010 14:53|--a------|144656] C:\Users\Mel\AppData\Local\Temp\NERO20100326135034074\ISSetupPrerequisites\{B56633A3-7ADC-4CE5-A320-ACA0B65DA04B}\PRQStarter-1.exe
[04/12/2010 14:53|--a------|4216840] C:\Users\Mel\AppData\Local\Temp\NERO20100326135034074\ISSetupPrerequisites\{B56633A3-7ADC-4CE5-A320-ACA0B65DA04B}\vcredist_x86.exe
[04/12/2010 14:53|--a------|926992] C:\Users\Mel\AppData\Local\Temp\NERO20100326135034074\ISSetupPrerequisites\{BF80A1C0-C3FF-4B1C-ABEF-22CD4F97A0AB}\NeroBar.exe
[04/12/2010 14:53|--a------|144656] C:\Users\Mel\AppData\Local\Temp\NERO20100326135034074\ISSetupPrerequisites\{BF80A1C0-C3FF-4B1C-ABEF-22CD4F97A0AB}\PRQStarter-1.exe
[04/12/2010 14:53|--a------|2131336] C:\Users\Mel\AppData\Local\Temp\NERO20100326135034074\ISSetupPrerequisites\{BF80A1C0-C3FF-4B1C-ABEF-22CD4F97A0AB}\Toolbar.exe
[04/12/2010 14:53|--a------|525656] C:\Users\Mel\AppData\Local\Temp\NERO20100326135034074\ISSetupPrerequisites\{C00D1E35-750C-4021-86E0-A088C6678DD9}\DXSETUP.exe
[04/12/2010 14:53|--a------|144656] C:\Users\Mel\AppData\Local\Temp\NERO20100326135034074\ISSetupPrerequisites\{C00D1E35-750C-4021-86E0-A088C6678DD9}\PRQStarter-1.exe
[04/12/2010 14:53|--a------|144656] C:\Users\Mel\AppData\Local\Temp\NERO20100326135034074\ISSetupPrerequisites\{C597C3FC-2110-451E-832E-9352964E56F9}\PRQStarter-1.exe
[04/12/2010 14:53|--a------|2749864] C:\Users\Mel\AppData\Local\Temp\NERO20100326135034074\ISSetupPrerequisites\{C597C3FC-2110-451E-832E-9352964E56F9}\vcredist_x86.exe
[04/12/2010 14:53|--a------|144656] C:\Users\Mel\AppData\Local\Temp\NERO20100326135034074\ISSetupPrerequisites\{D37C1D8F-C930-4005-BCD8-3715028461C0}\PRQStarter-1.exe
[04/12/2010 14:53|--a------|4485976] C:\Users\Mel\AppData\Local\Temp\NERO20100326135034074\ISSetupPrerequisites\{D37C1D8F-C930-4005-BCD8-3715028461C0}\vcredist_x86.exe
[04/12/2010 14:53|--a------|525656] C:\Users\Mel\AppData\Local\Temp\NERO20100326135034074\ISSetupPrerequisites\{E1EFF81F-E42D-4D52-8C56-3493C52D5641}\DXSETUP.exe
[04/12/2010 14:53|--a------|144656] C:\Users\Mel\AppData\Local\Temp\NERO20100326135034074\ISSetupPrerequisites\{E1EFF81F-E42D-4D52-8C56-3493C52D5641}\PRQStarter-1.exe
[14/09/2011 11:30|--a------|48912] C:\Users\Mel\AppData\Local\Temp\{1455AEAB-8FFF-47C2-9A0D-C8D2A3050320}\Disk1\Autorun.exe
[14/09/2011 11:31|--a------|398608] C:\Users\Mel\AppData\Local\Temp\{1455AEAB-8FFF-47C2-9A0D-C8D2A3050320}\Disk1\setup.exe
[14/09/2011 11:30|--a------|2512656] C:\Users\Mel\AppData\Local\Temp\{1455AEAB-8FFF-47C2-9A0D-C8D2A3050320}\Disk1\Game\Bin\SimsMedievalLauncher.exe
[14/09/2011 11:30|--a------|107280] C:\Users\Mel\AppData\Local\Temp\{1455AEAB-8FFF-47C2-9A0D-C8D2A3050320}\Disk1\Game\Bin\SMLauncher.exe
[14/09/2011 11:31|--a------|29399312] C:\Users\Mel\AppData\Local\Temp\{1455AEAB-8FFF-47C2-9A0D-C8D2A3050320}\Disk1\Game\Bin\TSM.exe
[14/09/2011 11:30|--a------|120112] C:\Users\Mel\AppData\Local\Temp\{1455AEAB-8FFF-47C2-9A0D-C8D2A3050320}\Disk1\Game\Bin\EACore\EACoreServer.exe
[14/09/2011 11:30|--a------|206136] C:\Users\Mel\AppData\Local\Temp\{1455AEAB-8FFF-47C2-9A0D-C8D2A3050320}\Disk1\Game\Bin\EACore\EAProxyInstaller.exe
[14/09/2011 11:30|--a------|206128] C:\Users\Mel\AppData\Local\Temp\{1455AEAB-8FFF-47C2-9A0D-C8D2A3050320}\Disk1\Game\Bin\EACore\PatchProgress.exe
[10/05/2008 00:27|--a------|11080] C:\Users\Mel\AppData\Local\Temp\{70B4A1EB-A7FC-4A7D-81E2-50DAAA11905A}\dotnetinstaller.exe
[10/05/2008 00:28|--a------|117560] C:\Users\Mel\AppData\Local\Temp\{70B4A1EB-A7FC-4A7D-81E2-50DAAA11905A}\ISBEW64.exe
[10/12/2010 13:32|--a------|385024] C:\Users\Mel\AppData\Local\Temp\{70B4A1EB-A7FC-4A7D-81E2-50DAAA11905A}\{E6B88BD6-E4B2-4701-A648-B6DAC6E491CC}\The Sims 3 Generations_code.exe
[10/12/2010 13:32|--a------|184320] C:\Users\Mel\AppData\Local\Temp\{70B4A1EB-A7FC-4A7D-81E2-50DAAA11905A}\{E6B88BD6-E4B2-4701-A648-B6DAC6E491CC}\The Sims 3 Generations_uninst.exe
[30/05/2011 20:20|--a------|398608] C:\Users\Mel\AppData\Local\Temp\{B28A5030-6958-4085-969A-73462C771C21}\Sims3EP04Setup.exe
[07/12/2010 00:26|--a------|2186183] C:\Users\Mel\AppData\Roaming\igraal\update.exe
[27/09/2010 08:31|--a------|53632] C:\Users\Mel\AppData\Roaming\Macromedia\Flash Player\www.macromedia.com\bin\airappinstaller\airappinstaller.exe
[15/05/2011 14:05|--a------|117427] C:\Users\Mel\AppData\Roaming\Macromedia\Flash Player\www.macromedia.com\bin\digitaleditions\digitaleditions.exe
[26/09/2010 18:50|-ra------|10134] C:\Users\Mel\AppData\Roaming\Microsoft\Installer\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}\ARPPRODUCTICON.exe
[08/06/2011 00:11|--a------|52616] C:\Users\Mel\AppData\Roaming\Mozilla\Firefox\Profiles\ml6ly7ys.default\extensions\toolbar@ask.com\chrome\content\issigned.exe
[25/05/2011 03:09|--a------|345992] C:\Users\Mel\AppData\Roaming\Mozilla\Firefox\Profiles\ml6ly7ys.default\extensions\toolbar@ask.com\chrome\content\NeroApplicationManager.exe
[10/10/2011 12:22|--a------|3623592] C:\Users\Mel\AppData\Roaming\Mozilla\Firefox\Profiles\ml6ly7ys.default\extensions\toolbar@ask.com\chrome\temp\askToolbar.exe
[10/06/2011 18:38|--a------|257502] C:\Users\Mel\AppData\Roaming\Mozilla\Firefox\Profiles\ml6ly7ys.default\extensions\toolbar@ask.com\chrome\temp\ff-config.Fri-10-Jun-2011-16-38-53-GMT\ff-config.zip
[10/10/2011 13:15|--a------|235917] C:\Users\Mel\AppData\Roaming\Mozilla\Firefox\Profiles\ml6ly7ys.default\extensions\toolbar@ask.com\chrome\temp\ff-config.Mon-10-Oct-2011-11-14-59-GMT\ff-config.zip
[21/03/2011 20:06|--a------|220034] C:\Users\Mel\AppData\Roaming\Mozilla\Firefox\Profiles\ml6ly7ys.default\extensions\toolbar@ask.com\chrome\temp\ff-config.Mon-21-Mar-2011-18-06-42-GMT\ff-config.zip
[04/12/2010 14:35|--a------|53968] C:\Users\Mel\AppData\Roaming\Mozilla\Firefox\Profiles\ml6ly7ys.default\extensions\toolbar@ask.com\chrome\temp\ff-config.Sat-04-Dec-2010-12-35-01-GMT\ff-config.zip
[06/08/2011 12:01|--a------|258040] C:\Users\Mel\AppData\Roaming\Mozilla\Firefox\Profiles\ml6ly7ys.default\extensions\toolbar@ask.com\chrome\temp\ff-config.Sat-06-Aug-2011-10-01-22-GMT\ff-config.zip
[05/12/2010 15:10|--a------|53968] C:\Users\Mel\AppData\Roaming\Mozilla\Firefox\Profiles\ml6ly7ys.default\extensions\toolbar@ask.com\chrome\temp\ff-config.Sun-05-Dec-2010-13-10-14-GMT\ff-config.zip
[22/09/2011 17:33|--a------|281452] C:\Users\Mel\AppData\Roaming\Mozilla\Firefox\Profiles\ml6ly7ys.default\extensions\toolbar@ask.com\chrome\temp\ff-config.Thu-22-Sep-2011-15-33-23-GMT\ff-config.zip
[31/05/2011 17:49|--a------|226410] C:\Users\Mel\AppData\Roaming\Mozilla\Firefox\Profiles\ml6ly7ys.default\extensions\toolbar@ask.com\chrome\temp\ff-config.Tue-31-May-2011-15-49-47-GMT\ff-config.zip
[08/12/2010 18:16|--a------|36198] C:\Users\Mel\AppData\Roaming\Mozilla\Firefox\Profiles\ml6ly7ys.default\extensions\toolbar@ask.com\chrome\temp\ff-config.Wed-08-Dec-2010-16-16-06-GMT\ff-config.zip
[31/10/2010 20:43|--a------|5140] C:\Users\Mel\AppData\Roaming\Uniblue\RegistryBooster\backup\20101031.194316.zip
[25/10/2011 12:52|--a------|1336771] C:\Users\Mel\Desktop\FyK.exe
[17/12/2010 13:08|--a------|19985265] C:\Users\Mel\Documents\vlc-1.1.5-win32.exe
[10/04/2011 12:26|--a------|61083] C:\Users\Mel\Documents\Cours\L1\SEMESTRE 2\CO. DROIT ET INSTITUTIONS\Vie politique fran#aise\Vie Politique fran#aise - Montouroy.zip
[08/03/2010 22:40|--a------|3792740] C:\Users\Mel\Pictures\chess'.rar
[28/08/2009 11:18|--a------|23394537] C:\Users\Mel\Pictures\Karine coco moi.rar
[01/03/2009 18:31|--a------|336526608] C:\Users\Mel\Pictures\Paris 2009.rar
[28/08/2009 11:22|--a------|50719024] C:\Users\Mel\Pictures\Ro moi swim.rar
[10/03/2009 17:53|--a------|202854985] C:\Users\Mel\Pictures\Ile de R'\Ile de R' 2008.rar
[28/07/2009 11:56|--a------|260140379] C:\Users\Mel\Pictures\Ile de R'\ile de r' 2009.rar
[06/07/2009 17:54|--a------|2456241] C:\Users\Mel\Videos\Concu.rar
[14/03/2009 18:51|--a------|28677844] C:\Users\Mel\Videos\ton verre est vide.rar
################## | Registre |
################## | Etat |
# Mode sans echec : OK
# Affichage des fichiers cachés : OK
# Uac : OK
# Ndisuio ( NDIS User Mode ) -> Start = 3 ( Good = 3 | Bad = 4 )
# EapHost ( Extensible Authentication Protocol Host ) -> Start = 2 ( Good = 2 | Bad = 4 )
# WwanSvc ( AutoConfig Service WWAN ) -> Start = 3 ( Good = 2 | Bad = 4 )
# MpsSvc ( Windows Firewall ) -> Start = 2 ( Good = 2 | Bad = 4 )
# SharedAccess ( Windows Firewall - Internet Connection Sharing ) -> Start = 2 ( Good = 2 | Bad = 4 )
# windefend ( Windows Defender ) -> Start = 2 ( Good = 2 | Bad = 4 )
# wuauserv ( Windows Update ) -> Start = 2 ( Good = 2 | Bad = 4 )
# wscsvc ( Windows Security Center ) -> Start = 2 ( Good = 2 | Bad = 4 )
################## | Fichiers corrompus |
... OK !
################## | Upload |
Veuillez envoyer le fichier : C:\FindyKill_Upload_Me_Mel-PC.zip : http://eldesaparecido.com/support.php
Merci pour votre contribution .
################## | ! Fin du rapport # FindyKill V5.054 ! |
2011N2
Messages postés
13352
Date d'inscription
samedi 29 janvier 2011
Statut
Contributeur sécurité
Dernière intervention
24 décembre 2016
917
25 oct. 2011 à 15:12
25 oct. 2011 à 15:12
Ok, tu as bien fait de refuser ;)
On va faire un diagnostic de ton PC pour plus de renseignements ==>
=> Télécharge ZHPDiag (de Nicolas Coolman) sur ton bureau :
https://www.zebulon.fr/telechargements/securite/systeme/zhpdiag.html
ou :
http://www.premiumorange.com/zeb-help-process/zhpdiag.html
ou :
https://www.commentcamarche.net/telecharger/utilitaires/24803-zhpdiag/
=> Laisse toi guider lors de l'installation, coche "Ajouter une icône sur le bureau" et décoche la case "Exécuter ZHPDiag".
/!\Utilisateur de Vista et Seven/!\ : Clic droit sur le logo de ZHPdiag (parchemin) puis « Exécuter en tant qu'Administrateur »
=> Clique sur l'icône, en haut à gauche, représentant une loupe : « Lancer le diagnostic ».
=> Enregistre le rapport sur ton Bureau à l'aide de l'icône représentant une disquette.
=> Héberge le rapport ZHPDiag.txt sur un des sites ci-dessous, puis copie/colle le lien fourni dans ta prochaine réponse sur le forum :
https://www.cjoint.com/
ou
http://www.cijoint.fr/
ou :
http://ww38.toofiles.com/fr/documents-upload.html
ou :
http://pjjoint.malekal.com/
ou :
https://www.casimages.com/
Si tu as besoin d'aide, ou quelque chose n'est pas clair, n'hésite pas à poser la question.
@+
Gabriel.
On va faire un diagnostic de ton PC pour plus de renseignements ==>
=> Télécharge ZHPDiag (de Nicolas Coolman) sur ton bureau :
https://www.zebulon.fr/telechargements/securite/systeme/zhpdiag.html
ou :
http://www.premiumorange.com/zeb-help-process/zhpdiag.html
ou :
https://www.commentcamarche.net/telecharger/utilitaires/24803-zhpdiag/
=> Laisse toi guider lors de l'installation, coche "Ajouter une icône sur le bureau" et décoche la case "Exécuter ZHPDiag".
/!\Utilisateur de Vista et Seven/!\ : Clic droit sur le logo de ZHPdiag (parchemin) puis « Exécuter en tant qu'Administrateur »
=> Clique sur l'icône, en haut à gauche, représentant une loupe : « Lancer le diagnostic ».
=> Enregistre le rapport sur ton Bureau à l'aide de l'icône représentant une disquette.
=> Héberge le rapport ZHPDiag.txt sur un des sites ci-dessous, puis copie/colle le lien fourni dans ta prochaine réponse sur le forum :
https://www.cjoint.com/
ou
http://www.cijoint.fr/
ou :
http://ww38.toofiles.com/fr/documents-upload.html
ou :
http://pjjoint.malekal.com/
ou :
https://www.casimages.com/
Si tu as besoin d'aide, ou quelque chose n'est pas clair, n'hésite pas à poser la question.
@+
Gabriel.
Homerus1982
Messages postés
77
Date d'inscription
mardi 25 octobre 2011
Statut
Membre
Dernière intervention
12 août 2015
25 oct. 2011 à 15:33
25 oct. 2011 à 15:33
http://cjoint.com/11oc/AJzpG0X1Zrs.htm voilou !
2011N2
Messages postés
13352
Date d'inscription
samedi 29 janvier 2011
Statut
Contributeur sécurité
Dernière intervention
24 décembre 2016
917
Modifié par 2011N2 le 25/10/2011 à 15:36
Modifié par 2011N2 le 25/10/2011 à 15:36
Tu as du ZAcess !
- Télécharge TDSSKiller : https://support.kaspersky.com/downloads/utils/tdsskiller.zip
- Lance-le (Utilisateurs de Vista/Seven => Clic droit puis "Exécuter en tant que administrateur")
L'outil va télécharger automatiquement la dernière version de TDSSKiller puis lancera une analyse.
Patiente pendant le scan. À la fin de l'analyse, appuie sur une touche de ton choix. Un rapport va s'ouvrir.
- Copie/Colle son contenu dans ta prochaine réponse sur le forum.
N.B : Le rapport se trouve également sous C:\tdsskiller.txt.
Si TDSS.tdl2 est détecté l'option delete sera cochée par défaut.
Si TDSS.tdl3 est détecté assure toi que Cure est bien cochée.
Si TDSS.tdl4 (\HardDisk0\MBR) est détecté assure toi que Cure est bien cochée.
Si Suspicious file est indiqué, laisse l''option cochée sur Skip
Si Rootkit.Win32.ZAccess est détecté règle sur "cure" en haut , et "delete" en bas.
Si tu as des questions sur l'utilisation de TDSSkiller, n'hésite pas à me les poser !
@+
Gabriel.
Développement ToolbarShooter
- Télécharge TDSSKiller : https://support.kaspersky.com/downloads/utils/tdsskiller.zip
- Lance-le (Utilisateurs de Vista/Seven => Clic droit puis "Exécuter en tant que administrateur")
L'outil va télécharger automatiquement la dernière version de TDSSKiller puis lancera une analyse.
Patiente pendant le scan. À la fin de l'analyse, appuie sur une touche de ton choix. Un rapport va s'ouvrir.
- Copie/Colle son contenu dans ta prochaine réponse sur le forum.
N.B : Le rapport se trouve également sous C:\tdsskiller.txt.
Si TDSS.tdl2 est détecté l'option delete sera cochée par défaut.
Si TDSS.tdl3 est détecté assure toi que Cure est bien cochée.
Si TDSS.tdl4 (\HardDisk0\MBR) est détecté assure toi que Cure est bien cochée.
Si Suspicious file est indiqué, laisse l''option cochée sur Skip
Si Rootkit.Win32.ZAccess est détecté règle sur "cure" en haut , et "delete" en bas.
Si tu as des questions sur l'utilisation de TDSSkiller, n'hésite pas à me les poser !
@+
Gabriel.
Développement ToolbarShooter
Homerus1982
Messages postés
77
Date d'inscription
mardi 25 octobre 2011
Statut
Membre
Dernière intervention
12 août 2015
25 oct. 2011 à 15:46
25 oct. 2011 à 15:46
ça me detecte
"locked file
service : sptd
suspicious object medium risk"
j'ai laissé sur skip
voici le rapport :
15:39:40.0387 2124 TDSS rootkit removing tool 2.6.13.0 Oct 25 2011 13:56:21
15:39:40.0744 2124 ============================================================
15:39:40.0744 2124 Current date / time: 2011/10/25 15:39:40.0744
15:39:40.0745 2124 SystemInfo:
15:39:40.0745 2124
15:39:40.0745 2124 OS Version: 6.1.7601 ServicePack: 1.0
15:39:40.0745 2124 Product type: Workstation
15:39:40.0745 2124 ComputerName: MEL-PC
15:39:40.0746 2124 UserName: Mel
15:39:40.0746 2124 Windows directory: C:\Windows
15:39:40.0746 2124 System windows directory: C:\Windows
15:39:40.0746 2124 Running under WOW64
15:39:40.0746 2124 Processor architecture: Intel x64
15:39:40.0746 2124 Number of processors: 2
15:39:40.0747 2124 Page size: 0x1000
15:39:40.0747 2124 Boot type: Normal boot
15:39:40.0747 2124 ============================================================
15:39:41.0876 2124 Initialize success
15:39:59.0150 4792 ============================================================
15:39:59.0150 4792 Scan started
15:39:59.0150 4792 Mode: Manual;
15:39:59.0150 4792 ============================================================
15:40:01.0132 4792 1394ohci (a87d604aea360176311474c87a63bb88) C:\Windows\system32\drivers\1394ohci.sys
15:40:01.0136 4792 1394ohci - ok
15:40:01.0206 4792 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys
15:40:01.0213 4792 ACPI - ok
15:40:01.0272 4792 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys
15:40:01.0273 4792 AcpiPmi - ok
15:40:01.0390 4792 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
15:40:01.0397 4792 adp94xx - ok
15:40:01.0509 4792 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
15:40:01.0514 4792 adpahci - ok
15:40:01.0621 4792 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
15:40:01.0624 4792 adpu320 - ok
15:40:01.0763 4792 AFD (d5b031c308a409a0a576bff4cf083d30) C:\Windows\system32\drivers\afd.sys
15:40:01.0771 4792 AFD - ok
15:40:01.0837 4792 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys
15:40:01.0839 4792 agp440 - ok
15:40:01.0962 4792 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys
15:40:01.0964 4792 aliide - ok
15:40:02.0030 4792 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys
15:40:02.0032 4792 amdide - ok
15:40:02.0135 4792 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
15:40:02.0137 4792 AmdK8 - ok
15:40:02.0160 4792 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
15:40:02.0162 4792 AmdPPM - ok
15:40:02.0276 4792 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\Windows\system32\drivers\amdsata.sys
15:40:02.0278 4792 amdsata - ok
15:40:02.0345 4792 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
15:40:02.0349 4792 amdsbs - ok
15:40:02.0442 4792 amdxata (540daf1cea6094886d72126fd7c33048) C:\Windows\system32\drivers\amdxata.sys
15:40:02.0443 4792 amdxata - ok
15:40:02.0536 4792 AppID (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys
15:40:02.0538 4792 AppID - ok
15:40:02.0604 4792 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
15:40:02.0606 4792 arc - ok
15:40:02.0627 4792 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
15:40:02.0630 4792 arcsas - ok
15:40:02.0775 4792 aswFsBlk (f1dbe3d02ffcdee5246f29b0ecebe6e0) C:\Windows\system32\drivers\aswFsBlk.sys
15:40:02.0776 4792 aswFsBlk - ok
15:40:02.0839 4792 aswMonFlt (f3e75dd1bcc358fb4629357ad09e7c84) C:\Windows\system32\drivers\aswMonFlt.sys
15:40:02.0841 4792 aswMonFlt - ok
15:40:02.0900 4792 aswRdr (fccbdc045dc12afd1508205117e7ed11) C:\Windows\system32\drivers\aswRdr.sys
15:40:02.0901 4792 aswRdr - ok
15:40:03.0016 4792 aswSnx (5824dca602a0a30e866bc2ac98c6d970) C:\Windows\system32\drivers\aswSnx.sys
15:40:03.0024 4792 aswSnx - ok
15:40:03.0122 4792 aswSP (af07b4bef920f90205148f3a05e2974c) C:\Windows\system32\drivers\aswSP.sys
15:40:03.0127 4792 aswSP - ok
15:40:03.0239 4792 aswTdi (a3eca5af3b4823a523c285a8df0f9e4f) C:\Windows\system32\drivers\aswTdi.sys
15:40:03.0241 4792 aswTdi - ok
15:40:03.0285 4792 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
15:40:03.0286 4792 AsyncMac - ok
15:40:03.0377 4792 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys
15:40:03.0379 4792 atapi - ok
15:40:03.0568 4792 atikmdag (2db9047aac9d981f59ce06d04d70c4d8) C:\Windows\system32\DRIVERS\atikmdag.sys
15:40:03.0636 4792 atikmdag - ok
15:40:03.0757 4792 AtiPcie (7c5d273e29dcc5505469b299c6f29163) C:\Windows\system32\DRIVERS\AtiPcie.sys
15:40:03.0758 4792 AtiPcie - ok
15:40:03.0891 4792 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys
15:40:03.0898 4792 b06bdrv - ok
15:40:03.0996 4792 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
15:40:04.0000 4792 b57nd60a - ok
15:40:04.0209 4792 BCM43XX (b44879610f2dc4a046b14befa3ae72de) C:\Windows\system32\DRIVERS\bcmwl664.sys
15:40:04.0243 4792 BCM43XX - ok
15:40:04.0342 4792 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
15:40:04.0344 4792 Beep - ok
15:40:04.0460 4792 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
15:40:04.0462 4792 blbdrive - ok
15:40:04.0575 4792 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys
15:40:04.0577 4792 bowser - ok
15:40:04.0619 4792 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys
15:40:04.0621 4792 BrFiltLo - ok
15:40:04.0691 4792 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys
15:40:04.0692 4792 BrFiltUp - ok
15:40:04.0741 4792 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
15:40:04.0746 4792 Brserid - ok
15:40:04.0760 4792 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
15:40:04.0762 4792 BrSerWdm - ok
15:40:04.0795 4792 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
15:40:04.0797 4792 BrUsbMdm - ok
15:40:04.0812 4792 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
15:40:04.0813 4792 BrUsbSer - ok
15:40:04.0846 4792 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
15:40:04.0848 4792 BTHMODEM - ok
15:40:04.0966 4792 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
15:40:04.0969 4792 cdfs - ok
15:40:05.0092 4792 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\drivers\cdrom.sys
15:40:05.0095 4792 cdrom - ok
15:40:05.0171 4792 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys
15:40:05.0173 4792 circlass - ok
15:40:05.0272 4792 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
15:40:05.0279 4792 CLFS - ok
15:40:05.0449 4792 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
15:40:05.0450 4792 CmBatt - ok
15:40:05.0507 4792 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys
15:40:05.0508 4792 cmdide - ok
15:40:05.0580 4792 CNG (d5fea92400f12412b3922087c09da6a5) C:\Windows\system32\Drivers\cng.sys
15:40:05.0587 4792 CNG - ok
15:40:05.0642 4792 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
15:40:05.0644 4792 Compbatt - ok
15:40:05.0741 4792 CompositeBus (03edb043586cceba243d689bdda370a8) C:\Windows\system32\drivers\CompositeBus.sys
15:40:05.0743 4792 CompositeBus - ok
15:40:05.0788 4792 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys
15:40:05.0789 4792 crcdisk - ok
15:40:05.0918 4792 dc3d (15c2afd86d8a58354fc100434c78b621) C:\Windows\system32\DRIVERS\dc3d.sys
15:40:05.0920 4792 dc3d - ok
15:40:06.0106 4792 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys
15:40:06.0110 4792 DfsC - ok
15:40:06.0308 4792 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
15:40:06.0311 4792 discache - ok
15:40:06.0472 4792 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys
15:40:06.0475 4792 Disk - ok
15:40:06.0513 4792 DKbFltr - ok
15:40:06.0639 4792 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
15:40:06.0641 4792 drmkaud - ok
15:40:06.0789 4792 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys
15:40:06.0802 4792 DXGKrnl - ok
15:40:06.0921 4792 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys
15:40:06.0958 4792 ebdrv - ok
15:40:07.0076 4792 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys
15:40:07.0084 4792 elxstor - ok
15:40:07.0176 4792 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys
15:40:07.0179 4792 ErrDev - ok
15:40:07.0295 4792 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
15:40:07.0299 4792 exfat - ok
15:40:07.0347 4792 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
15:40:07.0351 4792 fastfat - ok
15:40:07.0453 4792 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
15:40:07.0455 4792 fdc - ok
15:40:07.0503 4792 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
15:40:07.0506 4792 FileInfo - ok
15:40:07.0530 4792 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
15:40:07.0532 4792 Filetrace - ok
15:40:07.0600 4792 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys
15:40:07.0602 4792 flpydisk - ok
15:40:07.0713 4792 FltMgr (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys
15:40:07.0718 4792 FltMgr - ok
15:40:07.0773 4792 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
15:40:07.0775 4792 FsDepends - ok
15:40:07.0893 4792 fssfltr (6c06701bf1db05405804d7eb610991ce) C:\Windows\system32\DRIVERS\fssfltr.sys
15:40:07.0895 4792 fssfltr - ok
15:40:07.0998 4792 Fs_Rec (e95ef8547de20cf0603557c0cf7a9462) C:\Windows\system32\drivers\Fs_Rec.sys
15:40:08.0001 4792 Fs_Rec - ok
15:40:08.0194 4792 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys
15:40:08.0199 4792 fvevol - ok
15:40:08.0309 4792 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys
15:40:08.0311 4792 gagp30kx - ok
15:40:08.0576 4792 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
15:40:08.0578 4792 hcw85cir - ok
15:40:08.0790 4792 HdAudAddService (975761c778e33cd22498059b91e7373a) C:\Windows\system32\drivers\HdAudio.sys
15:40:08.0796 4792 HdAudAddService - ok
15:40:08.0850 4792 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\drivers\HDAudBus.sys
15:40:08.0853 4792 HDAudBus - ok
15:40:08.0888 4792 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys
15:40:08.0890 4792 HidBatt - ok
15:40:08.0964 4792 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys
15:40:08.0967 4792 HidBth - ok
15:40:08.0994 4792 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys
15:40:08.0996 4792 HidIr - ok
15:40:09.0148 4792 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\DRIVERS\hidusb.sys
15:40:09.0150 4792 HidUsb - ok
15:40:09.0212 4792 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys
15:40:09.0215 4792 HpSAMD - ok
15:40:09.0372 4792 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys
15:40:09.0382 4792 HTTP - ok
15:40:09.0428 4792 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys
15:40:09.0429 4792 hwpolicy - ok
15:40:09.0555 4792 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\drivers\i8042prt.sys
15:40:09.0557 4792 i8042prt - ok
15:40:09.0621 4792 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\Windows\system32\drivers\iaStorV.sys
15:40:09.0628 4792 iaStorV - ok
15:40:09.0686 4792 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys
15:40:09.0689 4792 iirsp - ok
15:40:09.0832 4792 IntcAzAudAddService (0c3cf4b3bae28e121a1689e3538f8712) C:\Windows\system32\drivers\RTKVHD64.sys
15:40:09.0871 4792 IntcAzAudAddService - ok
15:40:10.0044 4792 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys
15:40:10.0046 4792 intelide - ok
15:40:10.0143 4792 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
15:40:10.0145 4792 intelppm - ok
15:40:10.0559 4792 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys
15:40:10.0561 4792 IpFilterDriver - ok
15:40:10.0627 4792 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys
15:40:10.0630 4792 IPMIDRV - ok
15:40:10.0715 4792 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
15:40:10.0718 4792 IPNAT - ok
15:40:10.0757 4792 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
15:40:10.0760 4792 IRENUM - ok
15:40:10.0809 4792 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys
15:40:10.0810 4792 isapnp - ok
15:40:10.0862 4792 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys
15:40:10.0866 4792 iScsiPrt - ok
15:40:10.0912 4792 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\drivers\kbdclass.sys
15:40:10.0914 4792 kbdclass - ok
15:40:10.0966 4792 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\drivers\kbdhid.sys
15:40:10.0968 4792 kbdhid - ok
15:40:11.0033 4792 KSecDD (ccd53b5bd33ce0c889e830d839c8b66e) C:\Windows\system32\Drivers\ksecdd.sys
15:40:11.0036 4792 KSecDD - ok
15:40:11.0386 4792 KSecPkg (9ff918a261752c12639e8ad4208d2c2f) C:\Windows\system32\Drivers\ksecpkg.sys
15:40:11.0389 4792 KSecPkg - ok
15:40:11.0459 4792 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
15:40:11.0461 4792 ksthunk - ok
15:40:11.0602 4792 L1C (2377ec4cc3e356655b996f39b43486b6) C:\Windows\system32\DRIVERS\L1C62x64.sys
15:40:11.0604 4792 L1C - ok
15:40:11.0874 4792 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
15:40:11.0877 4792 lltdio - ok
15:40:12.0003 4792 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys
15:40:12.0006 4792 LSI_FC - ok
15:40:12.0105 4792 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys
15:40:12.0108 4792 LSI_SAS - ok
15:40:12.0373 4792 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys
15:40:12.0375 4792 LSI_SAS2 - ok
15:40:12.0442 4792 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys
15:40:12.0446 4792 LSI_SCSI - ok
15:40:12.0810 4792 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
15:40:12.0813 4792 luafv - ok
15:40:12.0902 4792 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys
15:40:12.0904 4792 megasas - ok
15:40:13.0054 4792 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys
15:40:13.0059 4792 MegaSR - ok
15:40:13.0120 4792 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
15:40:13.0122 4792 Modem - ok
15:40:13.0170 4792 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
15:40:13.0172 4792 monitor - ok
15:40:13.0293 4792 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
15:40:13.0295 4792 mouclass - ok
15:40:13.0336 4792 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
15:40:13.0338 4792 mouhid - ok
15:40:13.0416 4792 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys
15:40:13.0419 4792 mountmgr - ok
15:40:13.0501 4792 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys
15:40:13.0505 4792 mpio - ok
15:40:13.0560 4792 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
15:40:13.0562 4792 mpsdrv - ok
15:40:14.0081 4792 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys
15:40:14.0084 4792 MRxDAV - ok
15:40:14.0200 4792 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys
15:40:14.0204 4792 mrxsmb - ok
15:40:14.0274 4792 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\Windows\system32\DRIVERS\mrxsmb10.sys
15:40:14.0279 4792 mrxsmb10 - ok
15:40:14.0335 4792 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
15:40:14.0339 4792 mrxsmb20 - ok
15:40:14.0398 4792 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys
15:40:14.0400 4792 msahci - ok
15:40:14.0452 4792 msdsm (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys
15:40:14.0456 4792 msdsm - ok
15:40:14.0541 4792 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
15:40:14.0544 4792 Msfs - ok
15:40:14.0564 4792 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
15:40:14.0566 4792 mshidkmdf - ok
15:40:14.0620 4792 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys
15:40:14.0622 4792 msisadrv - ok
15:40:14.0673 4792 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
15:40:14.0675 4792 MSKSSRV - ok
15:40:14.0711 4792 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
15:40:14.0712 4792 MSPCLOCK - ok
15:40:14.0727 4792 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
15:40:14.0729 4792 MSPQM - ok
15:40:14.0864 4792 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys
15:40:14.0870 4792 MsRPC - ok
15:40:14.0919 4792 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\drivers\mssmbios.sys
15:40:14.0921 4792 mssmbios - ok
15:40:14.0972 4792 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
15:40:14.0974 4792 MSTEE - ok
15:40:14.0991 4792 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys
15:40:14.0992 4792 MTConfig - ok
15:40:15.0033 4792 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
15:40:15.0036 4792 Mup - ok
15:40:15.0090 4792 mwlPSDFilter (6ffecc25b39dc7652a0cec0ada9db589) C:\Windows\system32\DRIVERS\mwlPSDFilter.sys
15:40:15.0092 4792 mwlPSDFilter - ok
15:40:15.0120 4792 mwlPSDNServ (0befe32ca56d6ee89d58175725596a85) C:\Windows\system32\DRIVERS\mwlPSDNServ.sys
15:40:15.0122 4792 mwlPSDNServ - ok
15:40:15.0147 4792 mwlPSDVDisk (d43bc633b8660463e446e28e14a51262) C:\Windows\system32\DRIVERS\mwlPSDVDisk.sys
15:40:15.0149 4792 mwlPSDVDisk - ok
15:40:15.0246 4792 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
15:40:15.0252 4792 NativeWifiP - ok
15:40:15.0620 4792 NDIS (79b47fd40d9a817e932f9d26fac0a81c) C:\Windows\system32\drivers\ndis.sys
15:40:15.0633 4792 NDIS - ok
15:40:15.0673 4792 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
15:40:15.0675 4792 NdisCap - ok
15:40:15.0777 4792 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
15:40:15.0779 4792 NdisTapi - ok
15:40:15.0915 4792 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys
15:40:15.0918 4792 Ndisuio - ok
15:40:15.0964 4792 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys
15:40:15.0968 4792 NdisWan - ok
15:40:16.0087 4792 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys
15:40:16.0089 4792 NDProxy - ok
15:40:16.0207 4792 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
15:40:16.0210 4792 NetBIOS - ok
15:40:16.0371 4792 NetBT (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys
15:40:16.0376 4792 NetBT - ok
15:40:16.0796 4792 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys
15:40:16.0798 4792 nfrd960 - ok
15:40:16.0897 4792 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
15:40:16.0899 4792 Npfs - ok
15:40:16.0939 4792 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
15:40:16.0941 4792 nsiproxy - ok
15:40:17.0105 4792 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\Windows\system32\drivers\Ntfs.sys
15:40:17.0131 4792 Ntfs - ok
15:40:17.0247 4792 NTIDrvr (64ddd0dee976302f4bd93e5efcc2f013) C:\Windows\system32\drivers\NTIDrvr.sys
15:40:17.0249 4792 NTIDrvr - ok
15:40:17.0316 4792 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
15:40:17.0318 4792 Null - ok
15:40:17.0508 4792 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\Windows\system32\drivers\nvraid.sys
15:40:17.0512 4792 nvraid - ok
15:40:17.0596 4792 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\Windows\system32\drivers\nvstor.sys
15:40:17.0599 4792 nvstor - ok
15:40:17.0672 4792 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys
15:40:17.0675 4792 nv_agp - ok
15:40:17.0763 4792 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys
15:40:17.0766 4792 ohci1394 - ok
15:40:17.0846 4792 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys
15:40:17.0850 4792 Parport - ok
15:40:17.0900 4792 partmgr (871eadac56b0a4c6512bbe32753ccf79) C:\Windows\system32\drivers\partmgr.sys
15:40:17.0903 4792 partmgr - ok
15:40:18.0035 4792 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys
15:40:18.0039 4792 pci - ok
15:40:18.0153 4792 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys
15:40:18.0155 4792 pciide - ok
15:40:18.0215 4792 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys
15:40:18.0219 4792 pcmcia - ok
15:40:18.0261 4792 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
15:40:18.0264 4792 pcw - ok
15:40:18.0397 4792 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
15:40:18.0407 4792 PEAUTH - ok
15:40:18.0602 4792 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys
15:40:18.0606 4792 PptpMiniport - ok
15:40:18.0717 4792 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys
15:40:18.0720 4792 Processor - ok
15:40:18.0855 4792 Psched (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys
15:40:18.0858 4792 Psched - ok
15:40:18.0932 4792 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys
15:40:18.0950 4792 ql2300 - ok
15:40:19.0067 4792 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys
15:40:19.0070 4792 ql40xx - ok
15:40:19.0126 4792 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
15:40:19.0128 4792 QWAVEdrv - ok
15:40:19.0200 4792 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
15:40:19.0202 4792 RasAcd - ok
15:40:19.0286 4792 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
15:40:19.0288 4792 RasAgileVpn - ok
15:40:19.0349 4792 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys
15:40:19.0353 4792 Rasl2tp - ok
15:40:19.0463 4792 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
15:40:19.0466 4792 RasPppoe - ok
15:40:19.0568 4792 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
15:40:19.0571 4792 RasSstp - ok
15:40:19.0644 4792 rdbss (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys
15:40:19.0649 4792 rdbss - ok
15:40:19.0740 4792 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
15:40:19.0742 4792 rdpbus - ok
15:40:19.0785 4792 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
15:40:19.0788 4792 RDPCDD - ok
15:40:19.0892 4792 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
15:40:19.0894 4792 RDPENCDD - ok
15:40:19.0946 4792 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
15:40:19.0948 4792 RDPREFMP - ok
15:40:20.0006 4792 RDPWD (15b66c206b5cb095bab980553f38ed23) C:\Windows\system32\drivers\RDPWD.sys
15:40:20.0011 4792 RDPWD - ok
15:40:20.0134 4792 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys
15:40:20.0139 4792 rdyboost - ok
15:40:20.0274 4792 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
15:40:20.0277 4792 rspndr - ok
15:40:20.0397 4792 RSUSBSTOR (e220d85daaa8318736f9b6b92f109146) C:\Windows\system32\Drivers\RtsUStor.sys
15:40:20.0401 4792 RSUSBSTOR - ok
15:40:20.0445 4792 RtsUIR - ok
15:40:20.0514 4792 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys
15:40:20.0517 4792 sbp2port - ok
15:40:20.0607 4792 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys
15:40:20.0609 4792 scfilter - ok
15:40:20.0663 4792 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
15:40:20.0665 4792 secdrv - ok
15:40:20.0713 4792 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
15:40:20.0715 4792 Serenum - ok
15:40:20.0792 4792 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
15:40:20.0795 4792 Serial - ok
15:40:20.0845 4792 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys
15:40:20.0847 4792 sermouse - ok
15:40:20.0938 4792 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys
15:40:20.0940 4792 sffdisk - ok
15:40:20.0958 4792 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys
15:40:20.0961 4792 sffp_mmc - ok
15:40:20.0975 4792 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\drivers\sffp_sd.sys
15:40:20.0978 4792 sffp_sd - ok
15:40:21.0018 4792 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys
15:40:21.0020 4792 sfloppy - ok
15:40:21.0057 4792 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys
15:40:21.0060 4792 SiSRaid2 - ok
15:40:21.0077 4792 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys
15:40:21.0079 4792 SiSRaid4 - ok
15:40:21.0096 4792 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
15:40:21.0099 4792 Smb - ok
15:40:21.0248 4792 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
15:40:21.0251 4792 spldr - ok
15:40:21.0359 4792 sptd (602884696850c86434530790b110e8eb) C:\Windows\system32\Drivers\sptd.sys
15:40:21.0359 4792 Suspicious file (NoAccess): C:\Windows\system32\Drivers\sptd.sys. md5: 602884696850c86434530790b110e8eb
15:40:21.0365 4792 sptd ( LockedFile.Multi.Generic ) - warning
15:40:21.0365 4792 sptd - detected LockedFile.Multi.Generic (1)
15:40:21.0453 4792 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\Windows\system32\DRIVERS\srv.sys
15:40:21.0461 4792 srv - ok
15:40:21.0525 4792 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\Windows\system32\DRIVERS\srv2.sys
15:40:21.0532 4792 srv2 - ok
15:40:21.0589 4792 srvnet (27e461f0be5bff5fc737328f749538c3) C:\Windows\system32\DRIVERS\srvnet.sys
15:40:21.0593 4792 srvnet - ok
15:40:21.0646 4792 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys
15:40:21.0648 4792 stexstor - ok
15:40:21.0779 4792 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\drivers\swenum.sys
15:40:21.0781 4792 swenum - ok
15:40:21.0925 4792 SynTP (bcf305959b53b200ceb2ad25ad22f8a7) C:\Windows\system32\DRIVERS\SynTP.sys
15:40:21.0930 4792 SynTP - ok
15:40:22.0062 4792 Tcpip (f0e98c00a09fdf791525829a1d14240f) C:\Windows\system32\drivers\tcpip.sys
15:40:22.0085 4792 Tcpip - ok
15:40:22.0151 4792 TCPIP6 (f0e98c00a09fdf791525829a1d14240f) C:\Windows\system32\DRIVERS\tcpip.sys
15:40:22.0173 4792 TCPIP6 - ok
15:40:22.0230 4792 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys
15:40:22.0232 4792 tcpipreg - ok
15:40:22.0285 4792 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
15:40:22.0287 4792 TDPIPE - ok
15:40:22.0358 4792 TDTCP (e4245bda3190a582d55ed09e137401a9) C:\Windows\system32\drivers\tdtcp.sys
15:40:22.0360 4792 TDTCP - ok
15:40:22.0430 4792 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys
15:40:22.0433 4792 tdx - ok
15:40:22.0526 4792 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\drivers\termdd.sys
15:40:22.0529 4792 TermDD - ok
15:40:22.0625 4792 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys
15:40:22.0628 4792 tssecsrv - ok
15:40:22.0759 4792 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys
15:40:22.0762 4792 TsUsbFlt - ok
15:40:22.0842 4792 tunnel (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys
15:40:22.0846 4792 tunnel - ok
15:40:22.0948 4792 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys
15:40:22.0951 4792 uagp35 - ok
15:40:23.0004 4792 UBHelper (2e22c1fd397a5a9ffef55e9d1fc96c00) C:\Windows\system32\drivers\UBHelper.sys
15:40:23.0006 4792 UBHelper - ok
15:40:23.0120 4792 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys
15:40:23.0126 4792 udfs - ok
15:40:23.0196 4792 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys
15:40:23.0199 4792 uliagpkx - ok
15:40:23.0262 4792 umbus (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\drivers\umbus.sys
15:40:23.0265 4792 umbus - ok
15:40:23.0302 4792 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys
15:40:23.0304 4792 UmPass - ok
15:40:23.0426 4792 usbccgp (6f1a3157a1c89435352ceb543cdb359c) C:\Windows\system32\DRIVERS\usbccgp.sys
15:40:23.0429 4792 usbccgp - ok
15:40:23.0442 4792 USBCCID - ok
15:40:23.0491 4792 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys
15:40:23.0494 4792 usbcir - ok
15:40:23.0545 4792 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\Windows\system32\DRIVERS\usbehci.sys
15:40:23.0548 4792 usbehci - ok
15:40:23.0663 4792 usbfilter (6648c6d7323a2ce0c4776c36cefbcb14) C:\Windows\system32\DRIVERS\usbfilter.sys
15:40:23.0665 4792 usbfilter - ok
15:40:23.0729 4792 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\Windows\system32\DRIVERS\usbhub.sys
15:40:23.0735 4792 usbhub - ok
15:40:23.0835 4792 usbohci (9840fc418b4cbd632d3d0a667a725c31) C:\Windows\system32\DRIVERS\usbohci.sys
15:40:23.0838 4792 usbohci - ok
15:40:23.0880 4792 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
15:40:23.0883 4792 usbprint - ok
15:40:23.0991 4792 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\Windows\system32\DRIVERS\USBSTOR.SYS
15:40:23.0994 4792 USBSTOR - ok
15:40:24.0028 4792 usbuhci (81fb2216d3a60d1284455d511797db3d) C:\Windows\system32\DRIVERS\usbuhci.sys
15:40:24.0030 4792 usbuhci - ok
15:40:24.0153 4792 usbvideo (454800c2bc7f3927ce030141ee4f4c50) C:\Windows\System32\Drivers\usbvideo.sys
15:40:24.0157 4792 usbvideo - ok
15:40:24.0217 4792 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys
15:40:24.0219 4792 vdrvroot - ok
15:40:24.0323 4792 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
15:40:24.0326 4792 vga - ok
15:40:24.0365 4792 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
15:40:24.0367 4792 VgaSave - ok
15:40:24.0485 4792 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys
15:40:24.0490 4792 vhdmp - ok
15:40:24.0540 4792 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys
15:40:24.0543 4792 viaide - ok
15:40:24.0622 4792 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys
15:40:24.0625 4792 volmgr - ok
15:40:24.0678 4792 volmgrx (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys
15:40:24.0685 4792 volmgrx - ok
15:40:24.0789 4792 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys
15:40:24.0794 4792 volsnap - ok
15:40:24.0852 4792 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys
15:40:24.0856 4792 vsmraid - ok
15:40:24.0927 4792 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\system32\DRIVERS\vwifibus.sys
15:40:24.0930 4792 vwifibus - ok
15:40:24.0961 4792 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\Windows\system32\DRIVERS\vwififlt.sys
15:40:24.0964 4792 vwififlt - ok
15:40:25.0019 4792 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys
15:40:25.0021 4792 WacomPen - ok
15:40:25.0085 4792 WANARP (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
15:40:25.0088 4792 WANARP - ok
15:40:25.0096 4792 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
15:40:25.0099 4792 Wanarpv6 - ok
15:40:25.0244 4792 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys
15:40:25.0246 4792 Wd - ok
15:40:25.0294 4792 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
15:40:25.0304 4792 Wdf01000 - ok
15:40:25.0417 4792 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
15:40:25.0420 4792 WfpLwf - ok
15:40:25.0452 4792 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
15:40:25.0455 4792 WIMMount - ok
15:40:25.0645 4792 WinUsb (fe88b288356e7b47b74b13372add906d) C:\Windows\system32\drivers\WinUSB.SYS
15:40:25.0648 4792 WinUsb - ok
15:40:25.0719 4792 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\drivers\wmiacpi.sys
15:40:25.0722 4792 WmiAcpi - ok
15:40:25.0785 4792 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
15:40:25.0788 4792 ws2ifsl - ok
15:40:25.0863 4792 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys
15:40:25.0866 4792 WudfPf - ok
15:40:25.0911 4792 WUDFRd (cf8d590be3373029d57af80914190682) C:\Windows\system32\DRIVERS\WUDFRd.sys
15:40:25.0915 4792 WUDFRd - ok
15:40:25.0969 4792 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
15:40:25.0985 4792 \Device\Harddisk0\DR0 - ok
15:40:25.0993 4792 Boot (0x1200) (b2bc08b6d3c13921c95b37d465472154) \Device\Harddisk0\DR0\Partition0
15:40:25.0994 4792 \Device\Harddisk0\DR0\Partition0 - ok
15:40:26.0014 4792 Boot (0x1200) (6c87b2dd77d53b98c59eb0c3c2dc510d) \Device\Harddisk0\DR0\Partition1
15:40:26.0016 4792 \Device\Harddisk0\DR0\Partition1 - ok
15:40:26.0017 4792 ============================================================
15:40:26.0017 4792 Scan finished
15:40:26.0017 4792 ============================================================
15:40:26.0046 3204 Detected object count: 1
15:40:26.0046 3204 Actual detected object count: 1
15:41:37.0943 3204 sptd ( LockedFile.Multi.Generic ) - skipped by user
15:41:37.0943 3204 sptd ( LockedFile.Multi.Generic ) - User select action: Skip
15:41:45.0916 3132 ============================================================
15:41:45.0916 3132 Scan started
15:41:45.0916 3132 Mode: Manual;
15:41:45.0916 3132 ============================================================
15:41:46.0552 3132 1394ohci (a87d604aea360176311474c87a63bb88) C:\Windows\system32\drivers\1394ohci.sys
15:41:46.0556 3132 1394ohci - ok
15:41:46.0613 3132 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys
15:41:46.0618 3132 ACPI - ok
15:41:46.0692 3132 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys
15:41:46.0693 3132 AcpiPmi - ok
15:41:46.0743 3132 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
15:41:46.0751 3132 adp94xx - ok
15:41:46.0837 3132 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
15:41:46.0842 3132 adpahci - ok
15:41:46.0857 3132 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
15:41:46.0861 3132 adpu320 - ok
15:41:46.0927 3132 AFD (d5b031c308a409a0a576bff4cf083d30) C:\Windows\system32\drivers\afd.sys
15:41:46.0936 3132 AFD - ok
15:41:46.0979 3132 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys
15:41:46.0981 3132 agp440 - ok
15:41:47.0015 3132 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys
15:41:47.0016 3132 aliide - ok
15:41:47.0039 3132 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys
15:41:47.0041 3132 amdide - ok
15:41:47.0088 3132 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
15:41:47.0090 3132 AmdK8 - ok
15:41:47.0180 3132 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
15:41:47.0182 3132 AmdPPM - ok
15:41:47.0229 3132 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\Windows\system32\drivers\amdsata.sys
15:41:47.0232 3132 amdsata - ok
15:41:47.0332 3132 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
15:41:47.0335 3132 amdsbs - ok
15:41:47.0373 3132 amdxata (540daf1cea6094886d72126fd7c33048) C:\Windows\system32\drivers\amdxata.sys
15:41:47.0375 3132 amdxata - ok
15:41:47.0467 3132 AppID (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys
15:41:47.0469 3132 AppID - ok
15:41:47.0535 3132 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
15:41:47.0537 3132 arc - ok
15:41:47.0550 3132 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
15:41:47.0553 3132 arcsas - ok
15:41:47.0606 3132 aswFsBlk (f1dbe3d02ffcdee5246f29b0ecebe6e0) C:\Windows\system32\drivers\aswFsBlk.sys
15:41:47.0607 3132 aswFsBlk - ok
15:41:47.0625 3132 aswMonFlt (f3e75dd1bcc358fb4629357ad09e7c84) C:\Windows\system32\drivers\aswMonFlt.sys
15:41:47.0628 3132 aswMonFlt - ok
15:41:47.0708 3132 aswRdr (fccbdc045dc12afd1508205117e7ed11) C:\Windows\system32\drivers\aswRdr.sys
15:41:47.0710 3132 aswRdr - ok
15:41:47.0770 3132 aswSnx (5824dca602a0a30e866bc2ac98c6d970) C:\Windows\system32\drivers\aswSnx.sys
15:41:47.0778 3132 aswSnx - ok
15:41:47.0876 3132 aswSP (af07b4bef920f90205148f3a05e2974c) C:\Windows\system32\drivers\aswSP.sys
15:41:47.0880 3132 aswSP - ok
15:41:47.0937 3132 aswTdi (a3eca5af3b4823a523c285a8df0f9e4f) C:\Windows\system32\drivers\aswTdi.sys
15:41:47.0939 3132 aswTdi - ok
15:41:48.0027 3132 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
15:41:48.0029 3132 AsyncMac - ok
15:41:48.0086 3132 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys
15:41:48.0088 3132 atapi - ok
15:41:48.0335 3132 atikmdag (2db9047aac9d981f59ce06d04d70c4d8) C:\Windows\system32\DRIVERS\atikmdag.sys
15:41:48.0401 3132 atikmdag - ok
15:41:48.0532 3132 AtiPcie (7c5d273e29dcc5505469b299c6f29163) C:\Windows\system32\DRIVERS\AtiPcie.sys
15:41:48.0534 3132 AtiPcie - ok
15:41:48.0677 3132 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys
15:41:48.0685 3132 b06bdrv - ok
15:41:48.0723 3132 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
15:41:48.0728 3132 b57nd60a - ok
15:41:48.0919 3132 BCM43XX (b44879610f2dc4a046b14befa3ae72de) C:\Windows\system32\DRIVERS\bcmwl664.sys
15:41:48.0954 3132 BCM43XX - ok
15:41:48.0996 3132 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
15:41:48.0997 3132 Beep - ok
15:41:49.0036 3132 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
15:41:49.0038 3132 blbdrive - ok
15:41:49.0072 3132 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys
15:41:49.0075 3132 bowser - ok
15:41:49.0094 3132 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys
15:41:49.0096 3132 BrFiltLo - ok
15:41:49.0109 3132 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys
15:41:49.0110 3132 BrFiltUp - ok
15:41:49.0137 3132 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
15:41:49.0142 3132 Brserid - ok
15:41:49.0156 3132 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
15:41:49.0158 3132 BrSerWdm - ok
15:41:49.0174 3132 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
15:41:49.0176 3132 BrUsbMdm - ok
15:41:49.0192 3132 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
15:41:49.0194 3132 BrUsbSer - ok
15:41:49.0219 3132 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
15:41:49.0221 3132 BTHMODEM - ok
15:41:49.0253 3132 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
15:41:49.0256 3132 cdfs - ok
15:41:49.0301 3132 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\drivers\cdrom.sys
15:41:49.0304 3132 cdrom - ok
15:41:49.0380 3132 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys
15:41:49.0381 3132 circlass - ok
15:41:49.0425 3132 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
15:41:49.0432 3132 CLFS - ok
15:41:49.0558 3132 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
15:41:49.0559 3132 CmBatt - ok
15:41:49.0616 3132 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys
15:41:49.0617 3132 cmdide - ok
15:41:49.0689 3132 CNG (d5fea92400f12412b3922087c09da6a5) C:\Windows\system32\Drivers\cng.sys
15:41:49.0696 3132 CNG - ok
15:41:49.0751 3132 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
15:41:49.0753 3132 Compbatt - ok
15:41:49.0806 3132 CompositeBus (03edb043586cceba243d689bdda370a8) C:\Windows\system32\drivers\CompositeBus.sys
15:41:49.0808 3132 CompositeBus - ok
15:41:49.0841 3132 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys
15:41:49.0843 3132 crcdisk - ok
15:41:49.0905 3132 dc3d (15c2afd86d8a58354fc100434c78b621) C:\Windows\system32\DRIVERS\dc3d.sys
15:41:49.0907 3132 dc3d - ok
15:41:49.0971 3132 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys
15:41:49.0973 3132 DfsC - ok
15:41:50.0006 3132 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
15:41:50.0008 3132 discache - ok
15:41:50.0059 3132 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys
15:41:50.0061 3132 Disk - ok
15:41:50.0069 3132 DKbFltr - ok
15:41:50.0115 3132 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
15:41:50.0116 3132 drmkaud - ok
15:41:50.0177 3132 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys
15:41:50.0189 3132 DXGKrnl - ok
15:41:50.0363 3132 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys
15:41:50.0401 3132 ebdrv - ok
15:41:50.0519 3132 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys
15:41:50.0526 3132 elxstor - ok
15:41:50.0618 3132 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys
15:41:50.0620 3132 ErrDev - ok
15:41:50.0681 3132 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
15:41:50.0685 3132 exfat - ok
15:41:50.0711 3132 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
15:41:50.0715 3132 fastfat - ok
15:41:50.0796 3132 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
15:41:50.0797 3132 fdc - ok
15:41:50.0846 3132 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
15:41:50.0848 3132 FileInfo - ok
15:41:50.0872 3132 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
15:41:50.0874 3132 Filetrace - ok
15:41:50.0931 3132 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys
15:41:50.0933 3132 flpydisk - ok
15:41:51.0000 3132 FltMgr (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys
15:41:51.0005 3132 FltMgr - ok
15:41:51.0104 3132 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
15:41:51.0106 3132 FsDepends - ok
15:41:51.0158 3132 fssfltr (6c06701bf1db05405804d7eb610991ce) C:\Windows\system32\DRIVERS\fssfltr.sys
15:41:51.0160 3132 fssfltr - ok
15:41:51.0240 3132 Fs_Rec (e95ef8547de20cf0603557c0cf7a9462) C:\Windows\system32\drivers\Fs_Rec.sys
15:41:51.0242 3132 Fs_Rec - ok
15:41:51.0314 3132 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys
15:41:51.0318 3132 fvevol - ok
15:41:51.0407 3132 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys
15:41:51.0409 3132 gagp30kx - ok
15:41:51.0474 3132 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
15:41:51.0477 3132 hcw85cir - ok
15:41:51.0554 3132 HdAudAddService (975761c778e33cd22498059b91e7373a) C:\Windows\system32\drivers\HdAudio.sys
15:41:51.0560 3132 HdAudAddService - ok
15:41:51.0648 3132 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\drivers\HDAudBus.sys
15:41:51.0651 3132 HDAudBus - ok
15:41:51.0697 3132 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys
15:41:51.0699 3132 HidBatt - ok
15:41:51.0742 3132 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys
15:41:51.0745 3132 HidBth - ok
15:41:51.0770 3132 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys
15:41:51.0772 3132 HidIr - ok
15:41:51.0823 3132 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\DRIVERS\hidusb.sys
15:41:51.0825 3132 HidUsb - ok
15:41:51.0921 3132 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys
15:41:51.0924 3132 HpSAMD - ok
15:41:52.0014 3132 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys
15:41:52.0024 3132 HTTP - ok
15:41:52.0125 3132 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys
15:41:52.0127 3132 hwpolicy - ok
15:41:52.0175 3132 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\drivers\i8042prt.sys
15:41:52.0178 3132 i8042prt - ok
15:41:52.0296 3132 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\Windows\system32\drivers\iaStorV.sys
15:41:52.0303 3132 iaStorV - ok
15:41:52.0350 3132 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys
15:41:52.0352 3132 iirsp - ok
15:41:52.0440 3132 IntcAzAudAddService (0c3cf4b3bae28e121a1689e3538f8712) C:\Windows\system32\drivers\RTKVHD64.sys
15:41:52.0464 3132 IntcAzAudAddService - ok
15:41:52.0498 3132 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys
15:41:52.0499 3132 intelide - ok
15:41:52.0530 3132 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
15:41:52.0532 3132 intelppm - ok
15:41:52.0612 3132 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys
15:41:52.0614 3132 IpFilterDriver - ok
15:41:52.0669 3132 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys
15:41:52.0671 3132 IPMIDRV - ok
15:41:52.0745 3132 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
15:41:52.0748 3132 IPNAT - ok
15:41:52.0776 3132 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
15:41:52.0779 3132 IRENUM - ok
15:41:52.0861 3132 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys
15:41:52.0863 3132 isapnp - ok
15:41:52.0914 3132 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys
15:41:52.0919 3132 iScsiPrt - ok
15:41:53.0042 3132 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\drivers\kbdclass.sys
15:41:53.0044 3132 kbdclass - ok
15:41:53.0108 3132 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\drivers\kbdhid.sys
15:41:53.0109 3132 kbdhid - ok
15:41:53.0164 3132 KSecDD (ccd53b5bd33ce0c889e830d839c8b66e) C:\Windows\system32\Drivers\ksecdd.sys
15:41:53.0166 3132 KSecDD - ok
15:41:53.0276 3132 KSecPkg (9ff918a261752c12639e8ad4208d2c2f) C:\Windows\system32\Drivers\ksecpkg.sys
15:41:53.0279 3132 KSecPkg - ok
15:41:53.0389 3132 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
15:41:53.0391 3132 ksthunk - ok
15:41:53.0433 3132 L1C (2377ec4cc3e356655b996f39b43486b6) C:\Windows\system32\DRIVERS\L1C62x64.sys
15:41:53.0435 3132 L1C - ok
15:41:53.0506 3132 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
15:41:53.0508 3132 lltdio - ok
15:41:53.0556 3132 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys
15:41:53.0558 3132 LSI_FC - ok
15:41:53.0575 3132 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys
15:41:53.0578 3132 LSI_SAS - ok
15:41:53.0594 3132 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys
15:41:53.0597 3132 LSI_SAS2 - ok
15:41:53.0638 3132 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys
15:41:53.0641 3132 LSI_SCSI - ok
15:41:53.0674 3132 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
15:41:53.0677 3132 luafv - ok
15:41:53.0710 3132 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys
15:41:53.0714 3132 megasas - ok
15:41:53.0734 3132 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys
15:41:53.0738 3132 MegaSR - ok
15:41:53.0760 3132 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
15:41:53.0762 3132 Modem - ok
15:41:53.0789 3132 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
15:41:53.0791 3132 monitor - ok
15:41:53.0835 3132 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
15:41:53.0837 3132 mouclass - ok
15:41:53.0933 3132 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
15:41:53.0935 3132 mouhid - ok
15:41:53.0991 3132 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys
15:41:53.0994 3132 mountmgr - ok
15:41:54.0087 3132 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys
15:41:54.0090 3132 mpio - ok
15:41:54.0190 3132 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
15:41:54.0193 3132 mpsdrv - ok
15:41:54.0267 3132 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys
15:41:54.0271 3132 MRxDAV - ok
15:41:54.0364 3132 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys
15:41:54.0368 3132 mrxsmb - ok
15:41:54.0426 3132 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\Windows\system32\DRIVERS\mrxsmb10.sys
15:41:54.0431 3132 mrxsmb10 - ok
15:41:54.0497 3132 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
15:41:54.0501 3132 mrxsmb20 - ok
15:41:54.0562 3132 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys
15:41:54.0564 3132 msahci - ok
15:41:54.0615 3132 msdsm (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys
15:41:54.0619 3132 msdsm - ok
15:41:54.0727 3132 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
15:41:54.0729 3132 Msfs - ok
15:41:54.0750 3132 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
15:41:54.0752 3132 mshidkmdf - ok
15:41:54.0795 3132 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys
15:41:54.0797 3132 msisadrv - ok
15:41:54.0892 3132 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
15:41:54.0894 3132 MSKSSRV - ok
15:41:54.0941 3132 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
15:41:54.0943 3132 MSPCLOCK - ok
15:41:55.0006 3132 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
15:41:55.0008 3132 MSPQM - ok
15:41:55.0061 3132 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys
15:41:55.0067 3132 MsRPC - ok
15:41:55.0161 3132 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\drivers\mssmbios.sys
15:41:55.0163 3132 mssmbios - ok
15:41:55.0202 3132 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
15:41:55.0204 3132 MSTEE - ok
15:41:55.0269 3132 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys
15:41:55.0271 3132 MTConfig - ok
15:41:55.0297 3132 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
15:41:55.0299 3132 Mup - ok
15:41:55.0342 3132 mwlPSDFilter (6ffecc25b39dc7652a0cec0ada9db589) C:\Windows\system32\DRIVERS\mwlPSDFilter.sys
15:41:55.0344 3132 mwlPSDFilter - ok
15:41:55.0440 3132 mwlPSDNServ (0befe32ca56d6ee89d58175725596a85) C:\Windows\system32\DRIVERS\mwlPSDNServ.sys
15:41:55.0442 3132 mwlPSDNServ - ok
15:41:55.0490 3132 mwlPSDVDisk (d43bc633b8660463e446e28e14a51262) C:\Windows\system32\DRIVERS\mwlPSDVDisk.sys
15:41:55.0492 3132 mwlPSDVDisk - ok
15:41:55.0633 3132 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
15:41:55.0639 3132 NativeWifiP - ok
15:41:55.0730 3132 NDIS (79b47fd40d9a817e932f9d26fac0a81c) C:\Windows\system32\drivers\ndis.sys
15:41:55.0743 3132 NDIS - ok
15:41:55.0782 3132 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
15:41:55.0784 3132 NdisCap - ok
15:41:55.0809 3132 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
15:41:55.0811 3132 NdisTapi - ok
15:41:55.0858 3132 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys
15:41:55.0860 3132 Ndisuio - ok
15:41:55.0962 3132 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys
15:41:55.0966 3132 NdisWan - ok
15:41:56.0018 3132 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys
15:41:56.0021 3132 NDProxy - ok
15:41:56.0105 3132 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
15:41:56.0107 3132 NetBIOS - ok
15:41:56.0158 3132 NetBT (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys
15:41:56.0163 3132 NetBT - ok
15:41:56.0305 3132 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys
15:41:56.0308 3132 nfrd960 - ok
15:41:56.0350 3132 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
15:41:56.0352 3132 Npfs - ok
15:41:56.0459 3132 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
15:41:56.0462 3132 nsiproxy - ok
15:41:56.0568 3132 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\Windows\system32\drivers\Ntfs.sys
15:41:56.0589 3132 Ntfs - ok
15:41:56.0623 3132 NTIDrvr (64ddd0dee976302f4bd93e5efcc2f013) C:\Windows\system32\drivers\NTIDrvr.sys
15:41:56.0626 3132 NTIDrvr - ok
15:41:56.0670 3132 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
15:41:56.0672 3132 Null - ok
15:41:56.0762 3132 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\Windows\system32\drivers\nvraid.sys
15:41:56.0765 3132 nvraid - ok
15:41:56.0815 3132 nvstor (dab0e87525c10052b
"locked file
service : sptd
suspicious object medium risk"
j'ai laissé sur skip
voici le rapport :
15:39:40.0387 2124 TDSS rootkit removing tool 2.6.13.0 Oct 25 2011 13:56:21
15:39:40.0744 2124 ============================================================
15:39:40.0744 2124 Current date / time: 2011/10/25 15:39:40.0744
15:39:40.0745 2124 SystemInfo:
15:39:40.0745 2124
15:39:40.0745 2124 OS Version: 6.1.7601 ServicePack: 1.0
15:39:40.0745 2124 Product type: Workstation
15:39:40.0745 2124 ComputerName: MEL-PC
15:39:40.0746 2124 UserName: Mel
15:39:40.0746 2124 Windows directory: C:\Windows
15:39:40.0746 2124 System windows directory: C:\Windows
15:39:40.0746 2124 Running under WOW64
15:39:40.0746 2124 Processor architecture: Intel x64
15:39:40.0746 2124 Number of processors: 2
15:39:40.0747 2124 Page size: 0x1000
15:39:40.0747 2124 Boot type: Normal boot
15:39:40.0747 2124 ============================================================
15:39:41.0876 2124 Initialize success
15:39:59.0150 4792 ============================================================
15:39:59.0150 4792 Scan started
15:39:59.0150 4792 Mode: Manual;
15:39:59.0150 4792 ============================================================
15:40:01.0132 4792 1394ohci (a87d604aea360176311474c87a63bb88) C:\Windows\system32\drivers\1394ohci.sys
15:40:01.0136 4792 1394ohci - ok
15:40:01.0206 4792 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys
15:40:01.0213 4792 ACPI - ok
15:40:01.0272 4792 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys
15:40:01.0273 4792 AcpiPmi - ok
15:40:01.0390 4792 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
15:40:01.0397 4792 adp94xx - ok
15:40:01.0509 4792 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
15:40:01.0514 4792 adpahci - ok
15:40:01.0621 4792 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
15:40:01.0624 4792 adpu320 - ok
15:40:01.0763 4792 AFD (d5b031c308a409a0a576bff4cf083d30) C:\Windows\system32\drivers\afd.sys
15:40:01.0771 4792 AFD - ok
15:40:01.0837 4792 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys
15:40:01.0839 4792 agp440 - ok
15:40:01.0962 4792 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys
15:40:01.0964 4792 aliide - ok
15:40:02.0030 4792 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys
15:40:02.0032 4792 amdide - ok
15:40:02.0135 4792 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
15:40:02.0137 4792 AmdK8 - ok
15:40:02.0160 4792 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
15:40:02.0162 4792 AmdPPM - ok
15:40:02.0276 4792 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\Windows\system32\drivers\amdsata.sys
15:40:02.0278 4792 amdsata - ok
15:40:02.0345 4792 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
15:40:02.0349 4792 amdsbs - ok
15:40:02.0442 4792 amdxata (540daf1cea6094886d72126fd7c33048) C:\Windows\system32\drivers\amdxata.sys
15:40:02.0443 4792 amdxata - ok
15:40:02.0536 4792 AppID (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys
15:40:02.0538 4792 AppID - ok
15:40:02.0604 4792 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
15:40:02.0606 4792 arc - ok
15:40:02.0627 4792 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
15:40:02.0630 4792 arcsas - ok
15:40:02.0775 4792 aswFsBlk (f1dbe3d02ffcdee5246f29b0ecebe6e0) C:\Windows\system32\drivers\aswFsBlk.sys
15:40:02.0776 4792 aswFsBlk - ok
15:40:02.0839 4792 aswMonFlt (f3e75dd1bcc358fb4629357ad09e7c84) C:\Windows\system32\drivers\aswMonFlt.sys
15:40:02.0841 4792 aswMonFlt - ok
15:40:02.0900 4792 aswRdr (fccbdc045dc12afd1508205117e7ed11) C:\Windows\system32\drivers\aswRdr.sys
15:40:02.0901 4792 aswRdr - ok
15:40:03.0016 4792 aswSnx (5824dca602a0a30e866bc2ac98c6d970) C:\Windows\system32\drivers\aswSnx.sys
15:40:03.0024 4792 aswSnx - ok
15:40:03.0122 4792 aswSP (af07b4bef920f90205148f3a05e2974c) C:\Windows\system32\drivers\aswSP.sys
15:40:03.0127 4792 aswSP - ok
15:40:03.0239 4792 aswTdi (a3eca5af3b4823a523c285a8df0f9e4f) C:\Windows\system32\drivers\aswTdi.sys
15:40:03.0241 4792 aswTdi - ok
15:40:03.0285 4792 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
15:40:03.0286 4792 AsyncMac - ok
15:40:03.0377 4792 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys
15:40:03.0379 4792 atapi - ok
15:40:03.0568 4792 atikmdag (2db9047aac9d981f59ce06d04d70c4d8) C:\Windows\system32\DRIVERS\atikmdag.sys
15:40:03.0636 4792 atikmdag - ok
15:40:03.0757 4792 AtiPcie (7c5d273e29dcc5505469b299c6f29163) C:\Windows\system32\DRIVERS\AtiPcie.sys
15:40:03.0758 4792 AtiPcie - ok
15:40:03.0891 4792 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys
15:40:03.0898 4792 b06bdrv - ok
15:40:03.0996 4792 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
15:40:04.0000 4792 b57nd60a - ok
15:40:04.0209 4792 BCM43XX (b44879610f2dc4a046b14befa3ae72de) C:\Windows\system32\DRIVERS\bcmwl664.sys
15:40:04.0243 4792 BCM43XX - ok
15:40:04.0342 4792 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
15:40:04.0344 4792 Beep - ok
15:40:04.0460 4792 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
15:40:04.0462 4792 blbdrive - ok
15:40:04.0575 4792 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys
15:40:04.0577 4792 bowser - ok
15:40:04.0619 4792 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys
15:40:04.0621 4792 BrFiltLo - ok
15:40:04.0691 4792 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys
15:40:04.0692 4792 BrFiltUp - ok
15:40:04.0741 4792 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
15:40:04.0746 4792 Brserid - ok
15:40:04.0760 4792 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
15:40:04.0762 4792 BrSerWdm - ok
15:40:04.0795 4792 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
15:40:04.0797 4792 BrUsbMdm - ok
15:40:04.0812 4792 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
15:40:04.0813 4792 BrUsbSer - ok
15:40:04.0846 4792 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
15:40:04.0848 4792 BTHMODEM - ok
15:40:04.0966 4792 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
15:40:04.0969 4792 cdfs - ok
15:40:05.0092 4792 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\drivers\cdrom.sys
15:40:05.0095 4792 cdrom - ok
15:40:05.0171 4792 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys
15:40:05.0173 4792 circlass - ok
15:40:05.0272 4792 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
15:40:05.0279 4792 CLFS - ok
15:40:05.0449 4792 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
15:40:05.0450 4792 CmBatt - ok
15:40:05.0507 4792 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys
15:40:05.0508 4792 cmdide - ok
15:40:05.0580 4792 CNG (d5fea92400f12412b3922087c09da6a5) C:\Windows\system32\Drivers\cng.sys
15:40:05.0587 4792 CNG - ok
15:40:05.0642 4792 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
15:40:05.0644 4792 Compbatt - ok
15:40:05.0741 4792 CompositeBus (03edb043586cceba243d689bdda370a8) C:\Windows\system32\drivers\CompositeBus.sys
15:40:05.0743 4792 CompositeBus - ok
15:40:05.0788 4792 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys
15:40:05.0789 4792 crcdisk - ok
15:40:05.0918 4792 dc3d (15c2afd86d8a58354fc100434c78b621) C:\Windows\system32\DRIVERS\dc3d.sys
15:40:05.0920 4792 dc3d - ok
15:40:06.0106 4792 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys
15:40:06.0110 4792 DfsC - ok
15:40:06.0308 4792 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
15:40:06.0311 4792 discache - ok
15:40:06.0472 4792 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys
15:40:06.0475 4792 Disk - ok
15:40:06.0513 4792 DKbFltr - ok
15:40:06.0639 4792 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
15:40:06.0641 4792 drmkaud - ok
15:40:06.0789 4792 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys
15:40:06.0802 4792 DXGKrnl - ok
15:40:06.0921 4792 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys
15:40:06.0958 4792 ebdrv - ok
15:40:07.0076 4792 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys
15:40:07.0084 4792 elxstor - ok
15:40:07.0176 4792 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys
15:40:07.0179 4792 ErrDev - ok
15:40:07.0295 4792 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
15:40:07.0299 4792 exfat - ok
15:40:07.0347 4792 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
15:40:07.0351 4792 fastfat - ok
15:40:07.0453 4792 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
15:40:07.0455 4792 fdc - ok
15:40:07.0503 4792 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
15:40:07.0506 4792 FileInfo - ok
15:40:07.0530 4792 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
15:40:07.0532 4792 Filetrace - ok
15:40:07.0600 4792 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys
15:40:07.0602 4792 flpydisk - ok
15:40:07.0713 4792 FltMgr (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys
15:40:07.0718 4792 FltMgr - ok
15:40:07.0773 4792 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
15:40:07.0775 4792 FsDepends - ok
15:40:07.0893 4792 fssfltr (6c06701bf1db05405804d7eb610991ce) C:\Windows\system32\DRIVERS\fssfltr.sys
15:40:07.0895 4792 fssfltr - ok
15:40:07.0998 4792 Fs_Rec (e95ef8547de20cf0603557c0cf7a9462) C:\Windows\system32\drivers\Fs_Rec.sys
15:40:08.0001 4792 Fs_Rec - ok
15:40:08.0194 4792 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys
15:40:08.0199 4792 fvevol - ok
15:40:08.0309 4792 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys
15:40:08.0311 4792 gagp30kx - ok
15:40:08.0576 4792 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
15:40:08.0578 4792 hcw85cir - ok
15:40:08.0790 4792 HdAudAddService (975761c778e33cd22498059b91e7373a) C:\Windows\system32\drivers\HdAudio.sys
15:40:08.0796 4792 HdAudAddService - ok
15:40:08.0850 4792 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\drivers\HDAudBus.sys
15:40:08.0853 4792 HDAudBus - ok
15:40:08.0888 4792 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys
15:40:08.0890 4792 HidBatt - ok
15:40:08.0964 4792 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys
15:40:08.0967 4792 HidBth - ok
15:40:08.0994 4792 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys
15:40:08.0996 4792 HidIr - ok
15:40:09.0148 4792 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\DRIVERS\hidusb.sys
15:40:09.0150 4792 HidUsb - ok
15:40:09.0212 4792 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys
15:40:09.0215 4792 HpSAMD - ok
15:40:09.0372 4792 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys
15:40:09.0382 4792 HTTP - ok
15:40:09.0428 4792 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys
15:40:09.0429 4792 hwpolicy - ok
15:40:09.0555 4792 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\drivers\i8042prt.sys
15:40:09.0557 4792 i8042prt - ok
15:40:09.0621 4792 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\Windows\system32\drivers\iaStorV.sys
15:40:09.0628 4792 iaStorV - ok
15:40:09.0686 4792 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys
15:40:09.0689 4792 iirsp - ok
15:40:09.0832 4792 IntcAzAudAddService (0c3cf4b3bae28e121a1689e3538f8712) C:\Windows\system32\drivers\RTKVHD64.sys
15:40:09.0871 4792 IntcAzAudAddService - ok
15:40:10.0044 4792 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys
15:40:10.0046 4792 intelide - ok
15:40:10.0143 4792 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
15:40:10.0145 4792 intelppm - ok
15:40:10.0559 4792 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys
15:40:10.0561 4792 IpFilterDriver - ok
15:40:10.0627 4792 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys
15:40:10.0630 4792 IPMIDRV - ok
15:40:10.0715 4792 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
15:40:10.0718 4792 IPNAT - ok
15:40:10.0757 4792 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
15:40:10.0760 4792 IRENUM - ok
15:40:10.0809 4792 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys
15:40:10.0810 4792 isapnp - ok
15:40:10.0862 4792 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys
15:40:10.0866 4792 iScsiPrt - ok
15:40:10.0912 4792 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\drivers\kbdclass.sys
15:40:10.0914 4792 kbdclass - ok
15:40:10.0966 4792 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\drivers\kbdhid.sys
15:40:10.0968 4792 kbdhid - ok
15:40:11.0033 4792 KSecDD (ccd53b5bd33ce0c889e830d839c8b66e) C:\Windows\system32\Drivers\ksecdd.sys
15:40:11.0036 4792 KSecDD - ok
15:40:11.0386 4792 KSecPkg (9ff918a261752c12639e8ad4208d2c2f) C:\Windows\system32\Drivers\ksecpkg.sys
15:40:11.0389 4792 KSecPkg - ok
15:40:11.0459 4792 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
15:40:11.0461 4792 ksthunk - ok
15:40:11.0602 4792 L1C (2377ec4cc3e356655b996f39b43486b6) C:\Windows\system32\DRIVERS\L1C62x64.sys
15:40:11.0604 4792 L1C - ok
15:40:11.0874 4792 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
15:40:11.0877 4792 lltdio - ok
15:40:12.0003 4792 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys
15:40:12.0006 4792 LSI_FC - ok
15:40:12.0105 4792 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys
15:40:12.0108 4792 LSI_SAS - ok
15:40:12.0373 4792 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys
15:40:12.0375 4792 LSI_SAS2 - ok
15:40:12.0442 4792 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys
15:40:12.0446 4792 LSI_SCSI - ok
15:40:12.0810 4792 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
15:40:12.0813 4792 luafv - ok
15:40:12.0902 4792 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys
15:40:12.0904 4792 megasas - ok
15:40:13.0054 4792 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys
15:40:13.0059 4792 MegaSR - ok
15:40:13.0120 4792 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
15:40:13.0122 4792 Modem - ok
15:40:13.0170 4792 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
15:40:13.0172 4792 monitor - ok
15:40:13.0293 4792 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
15:40:13.0295 4792 mouclass - ok
15:40:13.0336 4792 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
15:40:13.0338 4792 mouhid - ok
15:40:13.0416 4792 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys
15:40:13.0419 4792 mountmgr - ok
15:40:13.0501 4792 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys
15:40:13.0505 4792 mpio - ok
15:40:13.0560 4792 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
15:40:13.0562 4792 mpsdrv - ok
15:40:14.0081 4792 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys
15:40:14.0084 4792 MRxDAV - ok
15:40:14.0200 4792 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys
15:40:14.0204 4792 mrxsmb - ok
15:40:14.0274 4792 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\Windows\system32\DRIVERS\mrxsmb10.sys
15:40:14.0279 4792 mrxsmb10 - ok
15:40:14.0335 4792 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
15:40:14.0339 4792 mrxsmb20 - ok
15:40:14.0398 4792 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys
15:40:14.0400 4792 msahci - ok
15:40:14.0452 4792 msdsm (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys
15:40:14.0456 4792 msdsm - ok
15:40:14.0541 4792 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
15:40:14.0544 4792 Msfs - ok
15:40:14.0564 4792 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
15:40:14.0566 4792 mshidkmdf - ok
15:40:14.0620 4792 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys
15:40:14.0622 4792 msisadrv - ok
15:40:14.0673 4792 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
15:40:14.0675 4792 MSKSSRV - ok
15:40:14.0711 4792 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
15:40:14.0712 4792 MSPCLOCK - ok
15:40:14.0727 4792 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
15:40:14.0729 4792 MSPQM - ok
15:40:14.0864 4792 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys
15:40:14.0870 4792 MsRPC - ok
15:40:14.0919 4792 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\drivers\mssmbios.sys
15:40:14.0921 4792 mssmbios - ok
15:40:14.0972 4792 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
15:40:14.0974 4792 MSTEE - ok
15:40:14.0991 4792 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys
15:40:14.0992 4792 MTConfig - ok
15:40:15.0033 4792 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
15:40:15.0036 4792 Mup - ok
15:40:15.0090 4792 mwlPSDFilter (6ffecc25b39dc7652a0cec0ada9db589) C:\Windows\system32\DRIVERS\mwlPSDFilter.sys
15:40:15.0092 4792 mwlPSDFilter - ok
15:40:15.0120 4792 mwlPSDNServ (0befe32ca56d6ee89d58175725596a85) C:\Windows\system32\DRIVERS\mwlPSDNServ.sys
15:40:15.0122 4792 mwlPSDNServ - ok
15:40:15.0147 4792 mwlPSDVDisk (d43bc633b8660463e446e28e14a51262) C:\Windows\system32\DRIVERS\mwlPSDVDisk.sys
15:40:15.0149 4792 mwlPSDVDisk - ok
15:40:15.0246 4792 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
15:40:15.0252 4792 NativeWifiP - ok
15:40:15.0620 4792 NDIS (79b47fd40d9a817e932f9d26fac0a81c) C:\Windows\system32\drivers\ndis.sys
15:40:15.0633 4792 NDIS - ok
15:40:15.0673 4792 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
15:40:15.0675 4792 NdisCap - ok
15:40:15.0777 4792 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
15:40:15.0779 4792 NdisTapi - ok
15:40:15.0915 4792 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys
15:40:15.0918 4792 Ndisuio - ok
15:40:15.0964 4792 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys
15:40:15.0968 4792 NdisWan - ok
15:40:16.0087 4792 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys
15:40:16.0089 4792 NDProxy - ok
15:40:16.0207 4792 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
15:40:16.0210 4792 NetBIOS - ok
15:40:16.0371 4792 NetBT (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys
15:40:16.0376 4792 NetBT - ok
15:40:16.0796 4792 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys
15:40:16.0798 4792 nfrd960 - ok
15:40:16.0897 4792 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
15:40:16.0899 4792 Npfs - ok
15:40:16.0939 4792 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
15:40:16.0941 4792 nsiproxy - ok
15:40:17.0105 4792 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\Windows\system32\drivers\Ntfs.sys
15:40:17.0131 4792 Ntfs - ok
15:40:17.0247 4792 NTIDrvr (64ddd0dee976302f4bd93e5efcc2f013) C:\Windows\system32\drivers\NTIDrvr.sys
15:40:17.0249 4792 NTIDrvr - ok
15:40:17.0316 4792 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
15:40:17.0318 4792 Null - ok
15:40:17.0508 4792 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\Windows\system32\drivers\nvraid.sys
15:40:17.0512 4792 nvraid - ok
15:40:17.0596 4792 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\Windows\system32\drivers\nvstor.sys
15:40:17.0599 4792 nvstor - ok
15:40:17.0672 4792 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys
15:40:17.0675 4792 nv_agp - ok
15:40:17.0763 4792 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys
15:40:17.0766 4792 ohci1394 - ok
15:40:17.0846 4792 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys
15:40:17.0850 4792 Parport - ok
15:40:17.0900 4792 partmgr (871eadac56b0a4c6512bbe32753ccf79) C:\Windows\system32\drivers\partmgr.sys
15:40:17.0903 4792 partmgr - ok
15:40:18.0035 4792 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys
15:40:18.0039 4792 pci - ok
15:40:18.0153 4792 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys
15:40:18.0155 4792 pciide - ok
15:40:18.0215 4792 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys
15:40:18.0219 4792 pcmcia - ok
15:40:18.0261 4792 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
15:40:18.0264 4792 pcw - ok
15:40:18.0397 4792 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
15:40:18.0407 4792 PEAUTH - ok
15:40:18.0602 4792 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys
15:40:18.0606 4792 PptpMiniport - ok
15:40:18.0717 4792 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys
15:40:18.0720 4792 Processor - ok
15:40:18.0855 4792 Psched (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys
15:40:18.0858 4792 Psched - ok
15:40:18.0932 4792 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys
15:40:18.0950 4792 ql2300 - ok
15:40:19.0067 4792 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys
15:40:19.0070 4792 ql40xx - ok
15:40:19.0126 4792 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
15:40:19.0128 4792 QWAVEdrv - ok
15:40:19.0200 4792 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
15:40:19.0202 4792 RasAcd - ok
15:40:19.0286 4792 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
15:40:19.0288 4792 RasAgileVpn - ok
15:40:19.0349 4792 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys
15:40:19.0353 4792 Rasl2tp - ok
15:40:19.0463 4792 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
15:40:19.0466 4792 RasPppoe - ok
15:40:19.0568 4792 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
15:40:19.0571 4792 RasSstp - ok
15:40:19.0644 4792 rdbss (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys
15:40:19.0649 4792 rdbss - ok
15:40:19.0740 4792 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
15:40:19.0742 4792 rdpbus - ok
15:40:19.0785 4792 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
15:40:19.0788 4792 RDPCDD - ok
15:40:19.0892 4792 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
15:40:19.0894 4792 RDPENCDD - ok
15:40:19.0946 4792 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
15:40:19.0948 4792 RDPREFMP - ok
15:40:20.0006 4792 RDPWD (15b66c206b5cb095bab980553f38ed23) C:\Windows\system32\drivers\RDPWD.sys
15:40:20.0011 4792 RDPWD - ok
15:40:20.0134 4792 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys
15:40:20.0139 4792 rdyboost - ok
15:40:20.0274 4792 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
15:40:20.0277 4792 rspndr - ok
15:40:20.0397 4792 RSUSBSTOR (e220d85daaa8318736f9b6b92f109146) C:\Windows\system32\Drivers\RtsUStor.sys
15:40:20.0401 4792 RSUSBSTOR - ok
15:40:20.0445 4792 RtsUIR - ok
15:40:20.0514 4792 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys
15:40:20.0517 4792 sbp2port - ok
15:40:20.0607 4792 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys
15:40:20.0609 4792 scfilter - ok
15:40:20.0663 4792 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
15:40:20.0665 4792 secdrv - ok
15:40:20.0713 4792 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
15:40:20.0715 4792 Serenum - ok
15:40:20.0792 4792 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
15:40:20.0795 4792 Serial - ok
15:40:20.0845 4792 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys
15:40:20.0847 4792 sermouse - ok
15:40:20.0938 4792 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys
15:40:20.0940 4792 sffdisk - ok
15:40:20.0958 4792 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys
15:40:20.0961 4792 sffp_mmc - ok
15:40:20.0975 4792 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\drivers\sffp_sd.sys
15:40:20.0978 4792 sffp_sd - ok
15:40:21.0018 4792 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys
15:40:21.0020 4792 sfloppy - ok
15:40:21.0057 4792 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys
15:40:21.0060 4792 SiSRaid2 - ok
15:40:21.0077 4792 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys
15:40:21.0079 4792 SiSRaid4 - ok
15:40:21.0096 4792 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
15:40:21.0099 4792 Smb - ok
15:40:21.0248 4792 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
15:40:21.0251 4792 spldr - ok
15:40:21.0359 4792 sptd (602884696850c86434530790b110e8eb) C:\Windows\system32\Drivers\sptd.sys
15:40:21.0359 4792 Suspicious file (NoAccess): C:\Windows\system32\Drivers\sptd.sys. md5: 602884696850c86434530790b110e8eb
15:40:21.0365 4792 sptd ( LockedFile.Multi.Generic ) - warning
15:40:21.0365 4792 sptd - detected LockedFile.Multi.Generic (1)
15:40:21.0453 4792 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\Windows\system32\DRIVERS\srv.sys
15:40:21.0461 4792 srv - ok
15:40:21.0525 4792 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\Windows\system32\DRIVERS\srv2.sys
15:40:21.0532 4792 srv2 - ok
15:40:21.0589 4792 srvnet (27e461f0be5bff5fc737328f749538c3) C:\Windows\system32\DRIVERS\srvnet.sys
15:40:21.0593 4792 srvnet - ok
15:40:21.0646 4792 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys
15:40:21.0648 4792 stexstor - ok
15:40:21.0779 4792 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\drivers\swenum.sys
15:40:21.0781 4792 swenum - ok
15:40:21.0925 4792 SynTP (bcf305959b53b200ceb2ad25ad22f8a7) C:\Windows\system32\DRIVERS\SynTP.sys
15:40:21.0930 4792 SynTP - ok
15:40:22.0062 4792 Tcpip (f0e98c00a09fdf791525829a1d14240f) C:\Windows\system32\drivers\tcpip.sys
15:40:22.0085 4792 Tcpip - ok
15:40:22.0151 4792 TCPIP6 (f0e98c00a09fdf791525829a1d14240f) C:\Windows\system32\DRIVERS\tcpip.sys
15:40:22.0173 4792 TCPIP6 - ok
15:40:22.0230 4792 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys
15:40:22.0232 4792 tcpipreg - ok
15:40:22.0285 4792 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
15:40:22.0287 4792 TDPIPE - ok
15:40:22.0358 4792 TDTCP (e4245bda3190a582d55ed09e137401a9) C:\Windows\system32\drivers\tdtcp.sys
15:40:22.0360 4792 TDTCP - ok
15:40:22.0430 4792 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys
15:40:22.0433 4792 tdx - ok
15:40:22.0526 4792 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\drivers\termdd.sys
15:40:22.0529 4792 TermDD - ok
15:40:22.0625 4792 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys
15:40:22.0628 4792 tssecsrv - ok
15:40:22.0759 4792 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys
15:40:22.0762 4792 TsUsbFlt - ok
15:40:22.0842 4792 tunnel (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys
15:40:22.0846 4792 tunnel - ok
15:40:22.0948 4792 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys
15:40:22.0951 4792 uagp35 - ok
15:40:23.0004 4792 UBHelper (2e22c1fd397a5a9ffef55e9d1fc96c00) C:\Windows\system32\drivers\UBHelper.sys
15:40:23.0006 4792 UBHelper - ok
15:40:23.0120 4792 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys
15:40:23.0126 4792 udfs - ok
15:40:23.0196 4792 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys
15:40:23.0199 4792 uliagpkx - ok
15:40:23.0262 4792 umbus (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\drivers\umbus.sys
15:40:23.0265 4792 umbus - ok
15:40:23.0302 4792 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys
15:40:23.0304 4792 UmPass - ok
15:40:23.0426 4792 usbccgp (6f1a3157a1c89435352ceb543cdb359c) C:\Windows\system32\DRIVERS\usbccgp.sys
15:40:23.0429 4792 usbccgp - ok
15:40:23.0442 4792 USBCCID - ok
15:40:23.0491 4792 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys
15:40:23.0494 4792 usbcir - ok
15:40:23.0545 4792 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\Windows\system32\DRIVERS\usbehci.sys
15:40:23.0548 4792 usbehci - ok
15:40:23.0663 4792 usbfilter (6648c6d7323a2ce0c4776c36cefbcb14) C:\Windows\system32\DRIVERS\usbfilter.sys
15:40:23.0665 4792 usbfilter - ok
15:40:23.0729 4792 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\Windows\system32\DRIVERS\usbhub.sys
15:40:23.0735 4792 usbhub - ok
15:40:23.0835 4792 usbohci (9840fc418b4cbd632d3d0a667a725c31) C:\Windows\system32\DRIVERS\usbohci.sys
15:40:23.0838 4792 usbohci - ok
15:40:23.0880 4792 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
15:40:23.0883 4792 usbprint - ok
15:40:23.0991 4792 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\Windows\system32\DRIVERS\USBSTOR.SYS
15:40:23.0994 4792 USBSTOR - ok
15:40:24.0028 4792 usbuhci (81fb2216d3a60d1284455d511797db3d) C:\Windows\system32\DRIVERS\usbuhci.sys
15:40:24.0030 4792 usbuhci - ok
15:40:24.0153 4792 usbvideo (454800c2bc7f3927ce030141ee4f4c50) C:\Windows\System32\Drivers\usbvideo.sys
15:40:24.0157 4792 usbvideo - ok
15:40:24.0217 4792 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys
15:40:24.0219 4792 vdrvroot - ok
15:40:24.0323 4792 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
15:40:24.0326 4792 vga - ok
15:40:24.0365 4792 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
15:40:24.0367 4792 VgaSave - ok
15:40:24.0485 4792 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys
15:40:24.0490 4792 vhdmp - ok
15:40:24.0540 4792 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys
15:40:24.0543 4792 viaide - ok
15:40:24.0622 4792 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys
15:40:24.0625 4792 volmgr - ok
15:40:24.0678 4792 volmgrx (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys
15:40:24.0685 4792 volmgrx - ok
15:40:24.0789 4792 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys
15:40:24.0794 4792 volsnap - ok
15:40:24.0852 4792 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys
15:40:24.0856 4792 vsmraid - ok
15:40:24.0927 4792 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\system32\DRIVERS\vwifibus.sys
15:40:24.0930 4792 vwifibus - ok
15:40:24.0961 4792 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\Windows\system32\DRIVERS\vwififlt.sys
15:40:24.0964 4792 vwififlt - ok
15:40:25.0019 4792 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys
15:40:25.0021 4792 WacomPen - ok
15:40:25.0085 4792 WANARP (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
15:40:25.0088 4792 WANARP - ok
15:40:25.0096 4792 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
15:40:25.0099 4792 Wanarpv6 - ok
15:40:25.0244 4792 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys
15:40:25.0246 4792 Wd - ok
15:40:25.0294 4792 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
15:40:25.0304 4792 Wdf01000 - ok
15:40:25.0417 4792 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
15:40:25.0420 4792 WfpLwf - ok
15:40:25.0452 4792 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
15:40:25.0455 4792 WIMMount - ok
15:40:25.0645 4792 WinUsb (fe88b288356e7b47b74b13372add906d) C:\Windows\system32\drivers\WinUSB.SYS
15:40:25.0648 4792 WinUsb - ok
15:40:25.0719 4792 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\drivers\wmiacpi.sys
15:40:25.0722 4792 WmiAcpi - ok
15:40:25.0785 4792 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
15:40:25.0788 4792 ws2ifsl - ok
15:40:25.0863 4792 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys
15:40:25.0866 4792 WudfPf - ok
15:40:25.0911 4792 WUDFRd (cf8d590be3373029d57af80914190682) C:\Windows\system32\DRIVERS\WUDFRd.sys
15:40:25.0915 4792 WUDFRd - ok
15:40:25.0969 4792 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
15:40:25.0985 4792 \Device\Harddisk0\DR0 - ok
15:40:25.0993 4792 Boot (0x1200) (b2bc08b6d3c13921c95b37d465472154) \Device\Harddisk0\DR0\Partition0
15:40:25.0994 4792 \Device\Harddisk0\DR0\Partition0 - ok
15:40:26.0014 4792 Boot (0x1200) (6c87b2dd77d53b98c59eb0c3c2dc510d) \Device\Harddisk0\DR0\Partition1
15:40:26.0016 4792 \Device\Harddisk0\DR0\Partition1 - ok
15:40:26.0017 4792 ============================================================
15:40:26.0017 4792 Scan finished
15:40:26.0017 4792 ============================================================
15:40:26.0046 3204 Detected object count: 1
15:40:26.0046 3204 Actual detected object count: 1
15:41:37.0943 3204 sptd ( LockedFile.Multi.Generic ) - skipped by user
15:41:37.0943 3204 sptd ( LockedFile.Multi.Generic ) - User select action: Skip
15:41:45.0916 3132 ============================================================
15:41:45.0916 3132 Scan started
15:41:45.0916 3132 Mode: Manual;
15:41:45.0916 3132 ============================================================
15:41:46.0552 3132 1394ohci (a87d604aea360176311474c87a63bb88) C:\Windows\system32\drivers\1394ohci.sys
15:41:46.0556 3132 1394ohci - ok
15:41:46.0613 3132 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys
15:41:46.0618 3132 ACPI - ok
15:41:46.0692 3132 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys
15:41:46.0693 3132 AcpiPmi - ok
15:41:46.0743 3132 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
15:41:46.0751 3132 adp94xx - ok
15:41:46.0837 3132 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
15:41:46.0842 3132 adpahci - ok
15:41:46.0857 3132 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
15:41:46.0861 3132 adpu320 - ok
15:41:46.0927 3132 AFD (d5b031c308a409a0a576bff4cf083d30) C:\Windows\system32\drivers\afd.sys
15:41:46.0936 3132 AFD - ok
15:41:46.0979 3132 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys
15:41:46.0981 3132 agp440 - ok
15:41:47.0015 3132 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys
15:41:47.0016 3132 aliide - ok
15:41:47.0039 3132 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys
15:41:47.0041 3132 amdide - ok
15:41:47.0088 3132 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
15:41:47.0090 3132 AmdK8 - ok
15:41:47.0180 3132 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
15:41:47.0182 3132 AmdPPM - ok
15:41:47.0229 3132 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\Windows\system32\drivers\amdsata.sys
15:41:47.0232 3132 amdsata - ok
15:41:47.0332 3132 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
15:41:47.0335 3132 amdsbs - ok
15:41:47.0373 3132 amdxata (540daf1cea6094886d72126fd7c33048) C:\Windows\system32\drivers\amdxata.sys
15:41:47.0375 3132 amdxata - ok
15:41:47.0467 3132 AppID (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys
15:41:47.0469 3132 AppID - ok
15:41:47.0535 3132 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
15:41:47.0537 3132 arc - ok
15:41:47.0550 3132 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
15:41:47.0553 3132 arcsas - ok
15:41:47.0606 3132 aswFsBlk (f1dbe3d02ffcdee5246f29b0ecebe6e0) C:\Windows\system32\drivers\aswFsBlk.sys
15:41:47.0607 3132 aswFsBlk - ok
15:41:47.0625 3132 aswMonFlt (f3e75dd1bcc358fb4629357ad09e7c84) C:\Windows\system32\drivers\aswMonFlt.sys
15:41:47.0628 3132 aswMonFlt - ok
15:41:47.0708 3132 aswRdr (fccbdc045dc12afd1508205117e7ed11) C:\Windows\system32\drivers\aswRdr.sys
15:41:47.0710 3132 aswRdr - ok
15:41:47.0770 3132 aswSnx (5824dca602a0a30e866bc2ac98c6d970) C:\Windows\system32\drivers\aswSnx.sys
15:41:47.0778 3132 aswSnx - ok
15:41:47.0876 3132 aswSP (af07b4bef920f90205148f3a05e2974c) C:\Windows\system32\drivers\aswSP.sys
15:41:47.0880 3132 aswSP - ok
15:41:47.0937 3132 aswTdi (a3eca5af3b4823a523c285a8df0f9e4f) C:\Windows\system32\drivers\aswTdi.sys
15:41:47.0939 3132 aswTdi - ok
15:41:48.0027 3132 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
15:41:48.0029 3132 AsyncMac - ok
15:41:48.0086 3132 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys
15:41:48.0088 3132 atapi - ok
15:41:48.0335 3132 atikmdag (2db9047aac9d981f59ce06d04d70c4d8) C:\Windows\system32\DRIVERS\atikmdag.sys
15:41:48.0401 3132 atikmdag - ok
15:41:48.0532 3132 AtiPcie (7c5d273e29dcc5505469b299c6f29163) C:\Windows\system32\DRIVERS\AtiPcie.sys
15:41:48.0534 3132 AtiPcie - ok
15:41:48.0677 3132 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys
15:41:48.0685 3132 b06bdrv - ok
15:41:48.0723 3132 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
15:41:48.0728 3132 b57nd60a - ok
15:41:48.0919 3132 BCM43XX (b44879610f2dc4a046b14befa3ae72de) C:\Windows\system32\DRIVERS\bcmwl664.sys
15:41:48.0954 3132 BCM43XX - ok
15:41:48.0996 3132 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
15:41:48.0997 3132 Beep - ok
15:41:49.0036 3132 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
15:41:49.0038 3132 blbdrive - ok
15:41:49.0072 3132 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys
15:41:49.0075 3132 bowser - ok
15:41:49.0094 3132 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys
15:41:49.0096 3132 BrFiltLo - ok
15:41:49.0109 3132 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys
15:41:49.0110 3132 BrFiltUp - ok
15:41:49.0137 3132 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
15:41:49.0142 3132 Brserid - ok
15:41:49.0156 3132 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
15:41:49.0158 3132 BrSerWdm - ok
15:41:49.0174 3132 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
15:41:49.0176 3132 BrUsbMdm - ok
15:41:49.0192 3132 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
15:41:49.0194 3132 BrUsbSer - ok
15:41:49.0219 3132 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
15:41:49.0221 3132 BTHMODEM - ok
15:41:49.0253 3132 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
15:41:49.0256 3132 cdfs - ok
15:41:49.0301 3132 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\drivers\cdrom.sys
15:41:49.0304 3132 cdrom - ok
15:41:49.0380 3132 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys
15:41:49.0381 3132 circlass - ok
15:41:49.0425 3132 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
15:41:49.0432 3132 CLFS - ok
15:41:49.0558 3132 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
15:41:49.0559 3132 CmBatt - ok
15:41:49.0616 3132 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys
15:41:49.0617 3132 cmdide - ok
15:41:49.0689 3132 CNG (d5fea92400f12412b3922087c09da6a5) C:\Windows\system32\Drivers\cng.sys
15:41:49.0696 3132 CNG - ok
15:41:49.0751 3132 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
15:41:49.0753 3132 Compbatt - ok
15:41:49.0806 3132 CompositeBus (03edb043586cceba243d689bdda370a8) C:\Windows\system32\drivers\CompositeBus.sys
15:41:49.0808 3132 CompositeBus - ok
15:41:49.0841 3132 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys
15:41:49.0843 3132 crcdisk - ok
15:41:49.0905 3132 dc3d (15c2afd86d8a58354fc100434c78b621) C:\Windows\system32\DRIVERS\dc3d.sys
15:41:49.0907 3132 dc3d - ok
15:41:49.0971 3132 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys
15:41:49.0973 3132 DfsC - ok
15:41:50.0006 3132 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
15:41:50.0008 3132 discache - ok
15:41:50.0059 3132 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys
15:41:50.0061 3132 Disk - ok
15:41:50.0069 3132 DKbFltr - ok
15:41:50.0115 3132 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
15:41:50.0116 3132 drmkaud - ok
15:41:50.0177 3132 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys
15:41:50.0189 3132 DXGKrnl - ok
15:41:50.0363 3132 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys
15:41:50.0401 3132 ebdrv - ok
15:41:50.0519 3132 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys
15:41:50.0526 3132 elxstor - ok
15:41:50.0618 3132 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys
15:41:50.0620 3132 ErrDev - ok
15:41:50.0681 3132 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
15:41:50.0685 3132 exfat - ok
15:41:50.0711 3132 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
15:41:50.0715 3132 fastfat - ok
15:41:50.0796 3132 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
15:41:50.0797 3132 fdc - ok
15:41:50.0846 3132 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
15:41:50.0848 3132 FileInfo - ok
15:41:50.0872 3132 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
15:41:50.0874 3132 Filetrace - ok
15:41:50.0931 3132 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys
15:41:50.0933 3132 flpydisk - ok
15:41:51.0000 3132 FltMgr (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys
15:41:51.0005 3132 FltMgr - ok
15:41:51.0104 3132 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
15:41:51.0106 3132 FsDepends - ok
15:41:51.0158 3132 fssfltr (6c06701bf1db05405804d7eb610991ce) C:\Windows\system32\DRIVERS\fssfltr.sys
15:41:51.0160 3132 fssfltr - ok
15:41:51.0240 3132 Fs_Rec (e95ef8547de20cf0603557c0cf7a9462) C:\Windows\system32\drivers\Fs_Rec.sys
15:41:51.0242 3132 Fs_Rec - ok
15:41:51.0314 3132 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys
15:41:51.0318 3132 fvevol - ok
15:41:51.0407 3132 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys
15:41:51.0409 3132 gagp30kx - ok
15:41:51.0474 3132 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
15:41:51.0477 3132 hcw85cir - ok
15:41:51.0554 3132 HdAudAddService (975761c778e33cd22498059b91e7373a) C:\Windows\system32\drivers\HdAudio.sys
15:41:51.0560 3132 HdAudAddService - ok
15:41:51.0648 3132 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\drivers\HDAudBus.sys
15:41:51.0651 3132 HDAudBus - ok
15:41:51.0697 3132 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys
15:41:51.0699 3132 HidBatt - ok
15:41:51.0742 3132 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys
15:41:51.0745 3132 HidBth - ok
15:41:51.0770 3132 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys
15:41:51.0772 3132 HidIr - ok
15:41:51.0823 3132 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\DRIVERS\hidusb.sys
15:41:51.0825 3132 HidUsb - ok
15:41:51.0921 3132 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys
15:41:51.0924 3132 HpSAMD - ok
15:41:52.0014 3132 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys
15:41:52.0024 3132 HTTP - ok
15:41:52.0125 3132 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys
15:41:52.0127 3132 hwpolicy - ok
15:41:52.0175 3132 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\drivers\i8042prt.sys
15:41:52.0178 3132 i8042prt - ok
15:41:52.0296 3132 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\Windows\system32\drivers\iaStorV.sys
15:41:52.0303 3132 iaStorV - ok
15:41:52.0350 3132 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys
15:41:52.0352 3132 iirsp - ok
15:41:52.0440 3132 IntcAzAudAddService (0c3cf4b3bae28e121a1689e3538f8712) C:\Windows\system32\drivers\RTKVHD64.sys
15:41:52.0464 3132 IntcAzAudAddService - ok
15:41:52.0498 3132 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys
15:41:52.0499 3132 intelide - ok
15:41:52.0530 3132 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
15:41:52.0532 3132 intelppm - ok
15:41:52.0612 3132 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys
15:41:52.0614 3132 IpFilterDriver - ok
15:41:52.0669 3132 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys
15:41:52.0671 3132 IPMIDRV - ok
15:41:52.0745 3132 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
15:41:52.0748 3132 IPNAT - ok
15:41:52.0776 3132 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
15:41:52.0779 3132 IRENUM - ok
15:41:52.0861 3132 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys
15:41:52.0863 3132 isapnp - ok
15:41:52.0914 3132 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys
15:41:52.0919 3132 iScsiPrt - ok
15:41:53.0042 3132 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\drivers\kbdclass.sys
15:41:53.0044 3132 kbdclass - ok
15:41:53.0108 3132 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\drivers\kbdhid.sys
15:41:53.0109 3132 kbdhid - ok
15:41:53.0164 3132 KSecDD (ccd53b5bd33ce0c889e830d839c8b66e) C:\Windows\system32\Drivers\ksecdd.sys
15:41:53.0166 3132 KSecDD - ok
15:41:53.0276 3132 KSecPkg (9ff918a261752c12639e8ad4208d2c2f) C:\Windows\system32\Drivers\ksecpkg.sys
15:41:53.0279 3132 KSecPkg - ok
15:41:53.0389 3132 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
15:41:53.0391 3132 ksthunk - ok
15:41:53.0433 3132 L1C (2377ec4cc3e356655b996f39b43486b6) C:\Windows\system32\DRIVERS\L1C62x64.sys
15:41:53.0435 3132 L1C - ok
15:41:53.0506 3132 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
15:41:53.0508 3132 lltdio - ok
15:41:53.0556 3132 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys
15:41:53.0558 3132 LSI_FC - ok
15:41:53.0575 3132 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys
15:41:53.0578 3132 LSI_SAS - ok
15:41:53.0594 3132 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys
15:41:53.0597 3132 LSI_SAS2 - ok
15:41:53.0638 3132 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys
15:41:53.0641 3132 LSI_SCSI - ok
15:41:53.0674 3132 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
15:41:53.0677 3132 luafv - ok
15:41:53.0710 3132 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys
15:41:53.0714 3132 megasas - ok
15:41:53.0734 3132 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys
15:41:53.0738 3132 MegaSR - ok
15:41:53.0760 3132 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
15:41:53.0762 3132 Modem - ok
15:41:53.0789 3132 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
15:41:53.0791 3132 monitor - ok
15:41:53.0835 3132 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
15:41:53.0837 3132 mouclass - ok
15:41:53.0933 3132 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
15:41:53.0935 3132 mouhid - ok
15:41:53.0991 3132 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys
15:41:53.0994 3132 mountmgr - ok
15:41:54.0087 3132 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys
15:41:54.0090 3132 mpio - ok
15:41:54.0190 3132 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
15:41:54.0193 3132 mpsdrv - ok
15:41:54.0267 3132 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys
15:41:54.0271 3132 MRxDAV - ok
15:41:54.0364 3132 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys
15:41:54.0368 3132 mrxsmb - ok
15:41:54.0426 3132 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\Windows\system32\DRIVERS\mrxsmb10.sys
15:41:54.0431 3132 mrxsmb10 - ok
15:41:54.0497 3132 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
15:41:54.0501 3132 mrxsmb20 - ok
15:41:54.0562 3132 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys
15:41:54.0564 3132 msahci - ok
15:41:54.0615 3132 msdsm (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys
15:41:54.0619 3132 msdsm - ok
15:41:54.0727 3132 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
15:41:54.0729 3132 Msfs - ok
15:41:54.0750 3132 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
15:41:54.0752 3132 mshidkmdf - ok
15:41:54.0795 3132 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys
15:41:54.0797 3132 msisadrv - ok
15:41:54.0892 3132 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
15:41:54.0894 3132 MSKSSRV - ok
15:41:54.0941 3132 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
15:41:54.0943 3132 MSPCLOCK - ok
15:41:55.0006 3132 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
15:41:55.0008 3132 MSPQM - ok
15:41:55.0061 3132 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys
15:41:55.0067 3132 MsRPC - ok
15:41:55.0161 3132 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\drivers\mssmbios.sys
15:41:55.0163 3132 mssmbios - ok
15:41:55.0202 3132 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
15:41:55.0204 3132 MSTEE - ok
15:41:55.0269 3132 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys
15:41:55.0271 3132 MTConfig - ok
15:41:55.0297 3132 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
15:41:55.0299 3132 Mup - ok
15:41:55.0342 3132 mwlPSDFilter (6ffecc25b39dc7652a0cec0ada9db589) C:\Windows\system32\DRIVERS\mwlPSDFilter.sys
15:41:55.0344 3132 mwlPSDFilter - ok
15:41:55.0440 3132 mwlPSDNServ (0befe32ca56d6ee89d58175725596a85) C:\Windows\system32\DRIVERS\mwlPSDNServ.sys
15:41:55.0442 3132 mwlPSDNServ - ok
15:41:55.0490 3132 mwlPSDVDisk (d43bc633b8660463e446e28e14a51262) C:\Windows\system32\DRIVERS\mwlPSDVDisk.sys
15:41:55.0492 3132 mwlPSDVDisk - ok
15:41:55.0633 3132 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
15:41:55.0639 3132 NativeWifiP - ok
15:41:55.0730 3132 NDIS (79b47fd40d9a817e932f9d26fac0a81c) C:\Windows\system32\drivers\ndis.sys
15:41:55.0743 3132 NDIS - ok
15:41:55.0782 3132 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
15:41:55.0784 3132 NdisCap - ok
15:41:55.0809 3132 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
15:41:55.0811 3132 NdisTapi - ok
15:41:55.0858 3132 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys
15:41:55.0860 3132 Ndisuio - ok
15:41:55.0962 3132 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys
15:41:55.0966 3132 NdisWan - ok
15:41:56.0018 3132 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys
15:41:56.0021 3132 NDProxy - ok
15:41:56.0105 3132 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
15:41:56.0107 3132 NetBIOS - ok
15:41:56.0158 3132 NetBT (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys
15:41:56.0163 3132 NetBT - ok
15:41:56.0305 3132 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys
15:41:56.0308 3132 nfrd960 - ok
15:41:56.0350 3132 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
15:41:56.0352 3132 Npfs - ok
15:41:56.0459 3132 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
15:41:56.0462 3132 nsiproxy - ok
15:41:56.0568 3132 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\Windows\system32\drivers\Ntfs.sys
15:41:56.0589 3132 Ntfs - ok
15:41:56.0623 3132 NTIDrvr (64ddd0dee976302f4bd93e5efcc2f013) C:\Windows\system32\drivers\NTIDrvr.sys
15:41:56.0626 3132 NTIDrvr - ok
15:41:56.0670 3132 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
15:41:56.0672 3132 Null - ok
15:41:56.0762 3132 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\Windows\system32\drivers\nvraid.sys
15:41:56.0765 3132 nvraid - ok
15:41:56.0815 3132 nvstor (dab0e87525c10052b
2011N2
Messages postés
13352
Date d'inscription
samedi 29 janvier 2011
Statut
Contributeur sécurité
Dernière intervention
24 décembre 2016
917
25 oct. 2011 à 15:55
25 oct. 2011 à 15:55
Tu peux l'héberger comme ZHPdiag ?
@+
Gabriel.
@+
Gabriel.
Homerus1982
Messages postés
77
Date d'inscription
mardi 25 octobre 2011
Statut
Membre
Dernière intervention
12 août 2015
25 oct. 2011 à 15:59
25 oct. 2011 à 15:59
oui bien sûr désolée ^^
http://cjoint.com/11oc/AJzp6TMctjJ.htm
PS: j'ai cafouillé, il y a le rapport de 3 scans successifs ^^
http://cjoint.com/11oc/AJzp6TMctjJ.htm
PS: j'ai cafouillé, il y a le rapport de 3 scans successifs ^^
2011N2
Messages postés
13352
Date d'inscription
samedi 29 janvier 2011
Statut
Contributeur sécurité
Dernière intervention
24 décembre 2016
917
25 oct. 2011 à 16:03
25 oct. 2011 à 16:03
Re,
Je réponderai ce soir ;)
/!\ ATTENTION SUIVRE À LA LETTRE CES INDICATIONS/!\
__________________________________________________________
>>>Ce logiciel n'est à utiliser que prescrit par un helper qualifié et formé à l'outil.<<<
>>>>>>>Ne pas utiliser en dehors de ce cas de figure : DANGEREUX ! <<<<<<<<
=====================================================
? Surtout, pense à l'enregistrement à renommer Combofix en "ton prenom.exe" avant qu'il soit enregistré sur ton disque dur. Tout simplement car il ne sera pas détécté par l'infection.
Télécharge Combofix : http://download.bleepingcomputer.com/sUBs/ComboFix.exe
/!\Choisis la version adéquate (32 ou 64 bits)/!\
=>Les logiciels d'émulation de CD comme Daemon Tools peuvent gêner les outils de désinfection. Utilise Defogger pour les désactiver temporairement :
? Télécharge Defogger (de jpshortstuff) sur ton Bureau : http://www.jpshortstuff.247fixes.com/Defogger.exe
? Lance-le : Utilisateurs de Vista et Seven => Clic droit : Éxécuter en tant qu'administrateur.
Une fenêtre apparait : clique sur "Disable"
? Fais redémarrer l'ordinateur si l'outil te le demande.
>> N.B : Quand nous aurons terminé la désinfection, tu pourras réactiver ces logiciels en relançant Defogger et en cliquant sur "Re-enable" <<
_________________________________________________________
>> Referme les fenêtres de tous les programmes en cours.
>> Désactive provisoirement et seulement le temps de l'utilisation de ComboFix, la protection en temps réel de ton Antivirus et de tes Antispywares, qui peuvent gêner fortement la procédure de recherche et de nettoyage de l'outil.
°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°
Si tu as XP => double clique .
Si tu as Windows Vista ou Windows 7 => clic droit "Éxecuter en tant que Administrateur"
Sur le combofix renommé.
¤¤¤¤¤¤¤¤¤¤ LAISSE-LE INSTALLER LA CONSOLE DE RECUPERATION S'IL TE LE DEMANDE ¤¤¤¤¤¤¤¤¤¤
? !!!!!NE TOUCHE A RIEN PENDANT LE TRAVAIL DE COMBOFIX (SOURIS/CLAVIER.....), sauf si l'outil te le demande !!!!! Cela peut planter complètement ton système !!!
? N'oublie pas de réactiver la garde de ton Antivirus et de tes Antispywares, avant de te reconnecter à internet.
?? Reviens sur le forum, et copie et colle la totalité du contenu de C:\Combofix.txt dans ton prochain message.
Si tu as des questions sur l'utilisation de Combofix, n'hésite pas à me les poser !
@+
Gabriel.
Je réponderai ce soir ;)
/!\ ATTENTION SUIVRE À LA LETTRE CES INDICATIONS/!\
__________________________________________________________
>>>Ce logiciel n'est à utiliser que prescrit par un helper qualifié et formé à l'outil.<<<
>>>>>>>Ne pas utiliser en dehors de ce cas de figure : DANGEREUX ! <<<<<<<<
=====================================================
? Surtout, pense à l'enregistrement à renommer Combofix en "ton prenom.exe" avant qu'il soit enregistré sur ton disque dur. Tout simplement car il ne sera pas détécté par l'infection.
Télécharge Combofix : http://download.bleepingcomputer.com/sUBs/ComboFix.exe
/!\Choisis la version adéquate (32 ou 64 bits)/!\
=>Les logiciels d'émulation de CD comme Daemon Tools peuvent gêner les outils de désinfection. Utilise Defogger pour les désactiver temporairement :
? Télécharge Defogger (de jpshortstuff) sur ton Bureau : http://www.jpshortstuff.247fixes.com/Defogger.exe
? Lance-le : Utilisateurs de Vista et Seven => Clic droit : Éxécuter en tant qu'administrateur.
Une fenêtre apparait : clique sur "Disable"
? Fais redémarrer l'ordinateur si l'outil te le demande.
>> N.B : Quand nous aurons terminé la désinfection, tu pourras réactiver ces logiciels en relançant Defogger et en cliquant sur "Re-enable" <<
_________________________________________________________
>> Referme les fenêtres de tous les programmes en cours.
>> Désactive provisoirement et seulement le temps de l'utilisation de ComboFix, la protection en temps réel de ton Antivirus et de tes Antispywares, qui peuvent gêner fortement la procédure de recherche et de nettoyage de l'outil.
°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°
Si tu as XP => double clique .
Si tu as Windows Vista ou Windows 7 => clic droit "Éxecuter en tant que Administrateur"
Sur le combofix renommé.
¤¤¤¤¤¤¤¤¤¤ LAISSE-LE INSTALLER LA CONSOLE DE RECUPERATION S'IL TE LE DEMANDE ¤¤¤¤¤¤¤¤¤¤
? !!!!!NE TOUCHE A RIEN PENDANT LE TRAVAIL DE COMBOFIX (SOURIS/CLAVIER.....), sauf si l'outil te le demande !!!!! Cela peut planter complètement ton système !!!
? N'oublie pas de réactiver la garde de ton Antivirus et de tes Antispywares, avant de te reconnecter à internet.
?? Reviens sur le forum, et copie et colle la totalité du contenu de C:\Combofix.txt dans ton prochain message.
Si tu as des questions sur l'utilisation de Combofix, n'hésite pas à me les poser !
@+
Gabriel.
Homerus1982
Messages postés
77
Date d'inscription
mardi 25 octobre 2011
Statut
Membre
Dernière intervention
12 août 2015
25 oct. 2011 à 17:43
25 oct. 2011 à 17:43
http://www.cijoint.fr/cjlink.php?file=cj201110/cijfEwN7QO.txt
ça me semble bon, mon parefeu fonctionne de nouveau
ça me semble bon, mon parefeu fonctionne de nouveau
2011N2
Messages postés
13352
Date d'inscription
samedi 29 janvier 2011
Statut
Contributeur sécurité
Dernière intervention
24 décembre 2016
917
25 oct. 2011 à 18:22
25 oct. 2011 à 18:22
Ok.
Tu peux me refaire un scan TDSSkiller ?
Merci,
Gabriel.
Tu peux me refaire un scan TDSSkiller ?
Merci,
Gabriel.
Homerus1982
Messages postés
77
Date d'inscription
mardi 25 octobre 2011
Statut
Membre
Dernière intervention
12 août 2015
25 oct. 2011 à 18:37
25 oct. 2011 à 18:37
Homerus1982
Messages postés
77
Date d'inscription
mardi 25 octobre 2011
Statut
Membre
Dernière intervention
12 août 2015
25 oct. 2011 à 19:17
25 oct. 2011 à 19:17
2011N2
Messages postés
13352
Date d'inscription
samedi 29 janvier 2011
Statut
Contributeur sécurité
Dernière intervention
24 décembre 2016
917
25 oct. 2011 à 19:33
25 oct. 2011 à 19:33
Ok passe le en mode 2 (suppression) et poste le rapport.
@+
Gabriel.
@+
Gabriel.
Homerus1982
Messages postés
77
Date d'inscription
mardi 25 octobre 2011
Statut
Membre
Dernière intervention
12 août 2015
25 oct. 2011 à 19:37
25 oct. 2011 à 19:37
Homerus1982
Messages postés
77
Date d'inscription
mardi 25 octobre 2011
Statut
Membre
Dernière intervention
12 août 2015
25 oct. 2011 à 19:38
25 oct. 2011 à 19:38
et les deux fichiers "newstartpanel" sont bien dans le dossier quarantaine. J'en fait quoi?
2011N2
Messages postés
13352
Date d'inscription
samedi 29 janvier 2011
Statut
Contributeur sécurité
Dernière intervention
24 décembre 2016
917
25 oct. 2011 à 19:41
25 oct. 2011 à 19:41
Tu connais ces fichiers ? Si oui, et si ils sont légaux, laisse les. Si non, supprime les ;)
Homerus1982
Messages postés
77
Date d'inscription
mardi 25 octobre 2011
Statut
Membre
Dernière intervention
12 août 2015
25 oct. 2011 à 19:49
25 oct. 2011 à 19:49
je ne sais pas du tout d'où ils sortent, mais si RK les a mis à l'écart c'est que je peux les supprimer non ?
Tigzy
Messages postés
7498
Date d'inscription
lundi 15 février 2010
Statut
Contributeur sécurité
Dernière intervention
15 septembre 2021
582
26 oct. 2011 à 14:32
26 oct. 2011 à 14:32
Déjà ce sont des clés registre, mais toutes seules elles ne sont pas pertinentes. C'était pas utile de les fixer
2011N2
Messages postés
13352
Date d'inscription
samedi 29 janvier 2011
Statut
Contributeur sécurité
Dernière intervention
24 décembre 2016
917
25 oct. 2011 à 19:38
25 oct. 2011 à 19:38
Parfais :)
Tu t'en sort bien ;) C'était un gros rootkit^^
Refais moi un ZHPdiag ;)
@+
Gabriel.
Tu t'en sort bien ;) C'était un gros rootkit^^
Refais moi un ZHPdiag ;)
@+
Gabriel.
Homerus1982
Messages postés
77
Date d'inscription
mardi 25 octobre 2011
Statut
Membre
Dernière intervention
12 août 2015
25 oct. 2011 à 19:49
25 oct. 2011 à 19:49
https://www.cjoint.com/?AJztVZwJRYK
et un énorme merci pour ton aide ! :)
et un énorme merci pour ton aide ! :)
