Posté le 14 mai 2012
Télécharger | Reposter | Largeur fixe

21:43:24.0687 1624         TDSS rootkit removing tool 2.7.34.0 May 2 2012 09:59:18
21:43:24.0875 1624         ============================================================
21:43:24.0875 1624         Current date / time: 2012/05/14 21:43:24.0875
21:43:24.0875 1624         SystemInfo:
21:43:24.0875 1624         
21:43:24.0875 1624         OS Version: 5.1.2600 ServicePack: 3.0
21:43:24.0875 1624         Product type: Workstation
21:43:24.0875 1624         ComputerName: SN115895780316
21:43:24.0875 1624         UserName: olivier
21:43:24.0875 1624         Windows directory: C:\WINDOWS
21:43:24.0875 1624         System windows directory: C:\WINDOWS
21:43:24.0875 1624         Processor architecture: Intel x86
21:43:24.0875 1624         Number of processors: 1
21:43:24.0875 1624         Page size: 0x1000
21:43:24.0875 1624         Boot type: Normal boot
21:43:24.0875 1624         ============================================================
21:43:25.0296 1624         Drive \Device\Harddisk0\DR0 - Size: 0x3A38B2E000 (232.89 Gb), SectorSize: 0x200, Cylinders: 0x76C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000058
21:43:25.0343 1624         ============================================================
21:43:25.0343 1624         \Device\Harddisk0\DR0:
21:43:25.0343 1624         MBR partitions:
21:43:25.0343 1624         \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x3BFB14C
21:43:25.0343 1624         \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3BFF04C, BlocksNum 0x195C5535
21:43:25.0343 1624         ============================================================
21:43:25.0375 1624         C: <-> \Device\Harddisk0\DR0\Partition0
21:43:25.0390 1624         D: <-> \Device\Harddisk0\DR0\Partition1
21:43:25.0390 1624         ============================================================
21:43:25.0390 1624         Initialize success
21:43:25.0390 1624         ============================================================
21:43:27.0265 3844         ============================================================
21:43:27.0265 3844         Scan started
21:43:27.0265 3844         Mode: Manual;
21:43:27.0265 3844         ============================================================
21:43:28.0593 3844         3xHybrid (53c2589bd342534a50e869f20c6ac2b9) C:\WINDOWS\system32\DRIVERS\3xHybrid.sys
21:43:28.0625 3844         3xHybrid - ok
21:43:28.0671 3844         Aavmker4 (d5d75edd02157fcd3eb576d4681e8c3e) C:\WINDOWS\system32\drivers\Aavmker4.sys
21:43:28.0671 3844         Aavmker4 - ok
21:43:28.0671 3844         Abiosdsk - ok
21:43:28.0718 3844         abp480n5 (6abb91494fe6c59089b9336452ab2ea3) C:\WINDOWS\system32\DRIVERS\ABP480N5.SYS
21:43:28.0718 3844         abp480n5 - ok
21:43:28.0750 3844         ACEDRV07 (4e5451dd0aec8504d7f8030dd2d4c416) C:\WINDOWS\system32\drivers\ACEDRV07.sys
21:43:28.0765 3844         ACEDRV07 - ok
21:43:28.0796 3844         ACPI (72aa1e958055f1844a81c2b09c7038cc) C:\WINDOWS\system32\DRIVERS\ACPI.sys
21:43:28.0796 3844         Suspicious file (Forged): C:\WINDOWS\system32\DRIVERS\ACPI.sys. Real md5: 72aa1e958055f1844a81c2b09c7038cc, Fake md5: e5e6dbfc41ea8aad005cb9a57a96b43b
21:43:28.0796 3844         ACPI ( Virus.Win32.Rloader.a ) - infected
21:43:28.0796 3844         ACPI - detected Virus.Win32.Rloader.a (0)
21:43:28.0828 3844         ACPIEC (e4abc1212b70bb03d35e60681c447210) C:\WINDOWS\system32\drivers\ACPIEC.sys
21:43:28.0828 3844         ACPIEC - ok
21:43:28.0890 3844         ActivHidSerMini (092542818ccd17b659e17e4dcb427bad) C:\WINDOWS\system32\DRIVERS\activhidsermini.sys
21:43:28.0890 3844         ActivHidSerMini - ok
21:43:28.0906 3844         Ad-Watch Connect Filter - ok
21:43:28.0984 3844         AdobeFlashPlayerUpdateSvc (76d5a3d2a50402a0b9b6ed13c4371e79) C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
21:43:29.0000 3844         AdobeFlashPlayerUpdateSvc - ok
21:43:29.0031 3844         adpu160m (9a11864873da202c996558b2106b0bbc) C:\WINDOWS\system32\DRIVERS\adpu160m.sys
21:43:29.0031 3844         adpu160m - ok
21:43:29.0062 3844         aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
21:43:29.0062 3844         aec - ok
21:43:29.0093 3844         AFD (1e44bc1e83d8fd2305f8d452db109cf9) C:\WINDOWS\System32\drivers\afd.sys
21:43:29.0109 3844         AFD - ok
21:43:29.0125 3844         agp440 (08fd04aa961bdc77fb983f328334e3d7) C:\WINDOWS\system32\DRIVERS\agp440.sys
21:43:29.0125 3844         agp440 - ok
21:43:29.0156 3844         agpCPQ (03a7e0922acfe1b07d5db2eeb0773063) C:\WINDOWS\system32\DRIVERS\agpCPQ.sys
21:43:29.0156 3844         agpCPQ - ok
21:43:29.0171 3844         Aha154x (c23ea9b5f46c7f7910db3eab648ff013) C:\WINDOWS\system32\DRIVERS\aha154x.sys
21:43:29.0171 3844         Aha154x - ok
21:43:29.0187 3844         aic78u2 (19dd0fb48b0c18892f70e2e7d61a1529) C:\WINDOWS\system32\DRIVERS\aic78u2.sys
21:43:29.0187 3844         aic78u2 - ok
21:43:29.0203 3844         aic78xx (b7fe594a7468aa0132deb03fb8e34326) C:\WINDOWS\system32\DRIVERS\aic78xx.sys
21:43:29.0203 3844         aic78xx - ok
21:43:29.0406 3844         ALCXWDM (c881453898eec64027274ebb3c8cbc0f) C:\WINDOWS\system32\drivers\ALCXWDM.SYS
21:43:29.0546 3844         ALCXWDM - ok
21:43:29.0687 3844         Alerter (758fdc60d41716ef889d849989b4b1cd) C:\WINDOWS\system32\alrsvc.dll
21:43:29.0687 3844         Alerter - ok
21:43:29.0718 3844         ALG (5e9a6658a2a69ae7eb195113b7a2e7a9) C:\WINDOWS\System32\alg.exe
21:43:29.0718 3844         ALG - ok
21:43:29.0750 3844         AliIde (1140ab9938809700b46bb88e46d72a96) C:\WINDOWS\system32\DRIVERS\aliide.sys
21:43:29.0750 3844         AliIde - ok
21:43:29.0781 3844         alim1541 (cb08aed0de2dd889a8a820cd8082d83c) C:\WINDOWS\system32\DRIVERS\alim1541.sys
21:43:29.0796 3844         alim1541 - ok
21:43:29.0812 3844         amdagp (95b4fb835e28aa1336ceeb07fd5b9398) C:\WINDOWS\system32\DRIVERS\amdagp.sys
21:43:29.0812 3844         amdagp - ok
21:43:29.0843 3844         AmdK8 (62271ff14baa810323ac816c5d355ba9) C:\WINDOWS\system32\DRIVERS\AmdK8.sys
21:43:29.0843 3844         AmdK8 - ok
21:43:29.0859 3844         amsint (79f5add8d24bd6893f2903a3e2f3fad6) C:\WINDOWS\system32\DRIVERS\amsint.sys
21:43:29.0859 3844         amsint - ok
21:43:29.0890 3844         AOL ACS - ok
21:43:29.0906 3844         AppMgmt - ok
21:43:29.0937 3844         Arp1394 (b5b8a80875c1dededa8b02765642c32f) C:\WINDOWS\system32\DRIVERS\arp1394.sys
21:43:29.0953 3844         Arp1394 - ok
21:43:29.0968 3844         asc (62d318e9a0c8fc9b780008e724283707) C:\WINDOWS\system32\DRIVERS\asc.sys
21:43:29.0968 3844         asc - ok
21:43:29.0984 3844         asc3350p (69eb0cc7714b32896ccbfd5edcbea447) C:\WINDOWS\system32\DRIVERS\asc3350p.sys
21:43:29.0984 3844         asc3350p - ok
21:43:30.0015 3844         asc3550 (5d8de112aa0254b907861e9e9c31d597) C:\WINDOWS\system32\DRIVERS\asc3550.sys
21:43:30.0031 3844         asc3550 - ok
21:43:30.0093 3844         Aspi32 (54ab078660e536da72b21a27f56b035b) C:\WINDOWS\system32\drivers\aspi32.sys
21:43:30.0093 3844         Aspi32 - ok
21:43:30.0171 3844         aspnet_state (0e5e4957549056e2bf2c49f4f6b601ad) C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
21:43:30.0187 3844         aspnet_state - ok
21:43:30.0218 3844         aswFsBlk (fb6a381c32a87ee6588eed61d22dc03b) C:\WINDOWS\system32\drivers\aswFsBlk.sys
21:43:30.0218 3844         aswFsBlk - ok
21:43:30.0250 3844         aswMon2 (1a10cbecfdd0a597b27e2d0998d95cf9) C:\WINDOWS\system32\drivers\aswMon2.sys
21:43:30.0250 3844         aswMon2 - ok
21:43:30.0281 3844         aswRdr (7827f70b86b29fbf112cbce547205acc) C:\WINDOWS\system32\drivers\aswRdr.sys
21:43:30.0281 3844         aswRdr - ok
21:43:30.0312 3844         aswSP (39bf48164a958f4bf0c0ec6cdc447db5) C:\WINDOWS\system32\drivers\aswSP.sys
21:43:30.0312 3844         aswSP - ok
21:43:30.0343 3844         aswTdi (755e4afb683e3306886a0f4df02a1575) C:\WINDOWS\system32\drivers\aswTdi.sys
21:43:30.0343 3844         aswTdi - ok
21:43:30.0359 3844         AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
21:43:30.0359 3844         AsyncMac - ok
21:43:30.0390 3844         atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys
21:43:30.0390 3844         atapi - ok
21:43:30.0406 3844         Atdisk - ok
21:43:30.0453 3844         Ati HotKey Poller (b8dbf155eae86b1468feea472e94aefb) C:\WINDOWS\system32\Ati2evxx.exe
21:43:30.0468 3844         Ati HotKey Poller - ok
21:43:30.0500 3844         ATI Smart (ad1865c5e1842c8ba06be3b1799315aa) C:\WINDOWS\system32\ati2sgag.exe
21:43:30.0515 3844         ATI Smart - ok
21:43:30.0656 3844         ati2mtag (1db0e5f78a67307f9c68d777873c1164) C:\WINDOWS\system32\DRIVERS\ati2mtag.sys
21:43:30.0671 3844         ati2mtag - ok
21:43:30.0796 3844         AtiHdmiService (41c8f0eda10da14378d304c20ba6e558) C:\WINDOWS\system32\drivers\AtiHdmi.sys
21:43:30.0796 3844         AtiHdmiService - ok
21:43:30.0828 3844         Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
21:43:30.0828 3844         Atmarpc - ok
21:43:30.0859 3844         AudioSrv (b4005aef7873144634765b570dac466e) C:\WINDOWS\System32\audiosrv.dll
21:43:30.0859 3844         AudioSrv - ok
21:43:30.0890 3844         audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
21:43:30.0906 3844         audstub - ok
21:43:30.0968 3844         avast! Antivirus (0bdd72ba9009ef4914cdea08107a8262) C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
21:43:30.0984 3844         avast! Antivirus - ok
21:43:30.0984 3844         avast! Mail Scanner (0bdd72ba9009ef4914cdea08107a8262) C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
21:43:30.0984 3844         avast! Mail Scanner - ok
21:43:31.0000 3844         avast! Web Scanner (0bdd72ba9009ef4914cdea08107a8262) C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
21:43:31.0000 3844         avast! Web Scanner - ok
21:43:31.0046 3844         Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
21:43:31.0046 3844         Beep - ok
21:43:31.0093 3844         BITS (baa0b6e647c1ad593e9bae5cc31bcffb) C:\WINDOWS\system32\qmgr.dll
21:43:31.0109 3844         BITS - ok
21:43:31.0140 3844         Browser (06b54a7b1ef7cb16bfd0e208d343fa71) C:\WINDOWS\System32\browser.dll
21:43:31.0140 3844         Browser - ok
21:43:31.0234 3844         catchme - ok
21:43:31.0265 3844         cbidf (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\DRIVERS\cbidf2k.sys
21:43:31.0265 3844         cbidf - ok
21:43:31.0281 3844         cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
21:43:31.0281 3844         cbidf2k - ok
21:43:31.0312 3844         CCDECODE (0be5aef125be881c4f854c554f2b025c) C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
21:43:31.0328 3844         CCDECODE - ok
21:43:31.0343 3844         cd20xrnt (f3ec03299634490e97bbce94cd2954c7) C:\WINDOWS\system32\DRIVERS\cd20xrnt.sys
21:43:31.0343 3844         cd20xrnt - ok
21:43:31.0359 3844         Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
21:43:31.0359 3844         Cdaudio - ok
21:43:31.0375 3844         Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
21:43:31.0390 3844         Cdfs - ok
21:43:31.0406 3844         Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys
21:43:31.0406 3844         Cdrom - ok
21:43:31.0421 3844         Changer - ok
21:43:31.0453 3844         CiSvc (793ef38a5fd086c3c8e48a8a861562ed) C:\WINDOWS\system32\cisvc.exe
21:43:31.0453 3844         CiSvc - ok
21:43:31.0531 3844         CLCapSvc (320fb2e6387a5ccd627802d18d37d287) c:\apps\Powercinema\Kernel\TV\CLCapSvc.exe
21:43:31.0531 3844         CLCapSvc - ok
21:43:31.0562 3844         ClipSrv (8b30cbb0c07d49b2658fb190946b0e7e) C:\WINDOWS\system32\clipsrv.exe
21:43:31.0562 3844         ClipSrv - ok
21:43:31.0609 3844         clr_optimization_v2.0.50727_32 (d87acaed61e417bba546ced5e7e36d9c) C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
21:43:31.0625 3844         clr_optimization_v2.0.50727_32 - ok
21:43:31.0656 3844         CLSched (953eefffbafea82b85658e0c3f064017) c:\apps\Powercinema\Kernel\TV\CLSched.exe
21:43:31.0656 3844         CLSched - ok
21:43:31.0687 3844         CmdIde (e3726ad522d0bdae090671048c991ab3) C:\WINDOWS\system32\DRIVERS\cmdide.sys
21:43:31.0687 3844         CmdIde - ok
21:43:31.0703 3844         COMSysApp - ok
21:43:31.0734 3844         Cpqarray (3ee529119eed34cd212a215e8c40d4b6) C:\WINDOWS\system32\DRIVERS\cpqarray.sys
21:43:31.0734 3844         Cpqarray - ok
21:43:31.0765 3844         CryptSvc (7a6d0b71035e123fdda2156a25578ad3) C:\WINDOWS\System32\cryptsvc.dll
21:43:31.0765 3844         CryptSvc - ok
21:43:31.0796 3844         CyberLink Media Library Service (5b417ed5b49d5a65355a81a2a5fbc1e0) c:\APPS\Powercinema\Kernel\CLML_NTService\CLMLServer.exe
21:43:31.0796 3844         CyberLink Media Library Service - ok
21:43:31.0828 3844         dac2w2k (e550e7418984b65a78299d248f0a7f36) C:\WINDOWS\system32\DRIVERS\dac2w2k.sys
21:43:31.0843 3844         dac2w2k - ok
21:43:31.0859 3844         dac960nt (683789caa3864eb46125ae86ff677d34) C:\WINDOWS\system32\DRIVERS\dac960nt.sys
21:43:31.0859 3844         dac960nt - ok
21:43:31.0906 3844         DcomLaunch (0203b1aad358f206cb0a3c1f93cce17a) C:\WINDOWS\system32\rpcss.dll
21:43:31.0921 3844         DcomLaunch - ok
21:43:31.0953 3844         Dhcp (318f535dc05551d96deeb90b6d6904de) C:\WINDOWS\System32\dhcpcsvc.dll
21:43:31.0968 3844         Dhcp - ok
21:43:32.0000 3844         Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
21:43:32.0000 3844         Disk - ok
21:43:32.0015 3844         dmadmin - ok
21:43:32.0078 3844         dmboot (f5deadd42335fb33edca74ecb2f36cba) C:\WINDOWS\system32\drivers\dmboot.sys
21:43:32.0093 3844         dmboot - ok
21:43:32.0125 3844         dmio (5a7c47c9b3f9fb92a66410a7509f0c71) C:\WINDOWS\system32\drivers\dmio.sys
21:43:32.0125 3844         dmio - ok
21:43:32.0250 3844         dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
21:43:32.0250 3844         dmload - ok
21:43:32.0296 3844         dmserver (6797c23d6b79935482d7f0e8ca5e5b67) C:\WINDOWS\System32\dmserver.dll
21:43:32.0296 3844         dmserver - ok
21:43:32.0343 3844         DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
21:43:32.0343 3844         DMusic - ok
21:43:32.0375 3844         Dnscache (1a1e59377fb6cacd711cc5073c4a7d79) C:\WINDOWS\System32\dnsrslvr.dll
21:43:32.0375 3844         Dnscache - ok
21:43:32.0421 3844         Dot3svc (3fcf86f03d0302443c21ce6e5bbf7a25) C:\WINDOWS\System32\dot3svc.dll
21:43:32.0421 3844         Dot3svc - ok
21:43:32.0453 3844         dpti2o (40f3b93b4e5b0126f2f5c0a7a5e22660) C:\WINDOWS\system32\DRIVERS\dpti2o.sys
21:43:32.0453 3844         dpti2o - ok
21:43:32.0468 3844         drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
21:43:32.0468 3844         drmkaud - ok
21:43:32.0500 3844         EapHost (8b5fc9087d2cab110bc2ed5cc5e7b8ac) C:\WINDOWS\System32\eapsvc.dll
21:43:32.0500 3844         EapHost - ok
21:43:32.0546 3844         ERSvc (94f948cb12c4d35483f1e815deb16c7b) C:\WINDOWS\System32\ersvc.dll
21:43:32.0546 3844         ERSvc - ok
21:43:32.0578 3844         Eventlog (c3fb1d70cb88722267949694ba51759e) C:\WINDOWS\system32\services.exe
21:43:32.0578 3844         Eventlog - ok
21:43:32.0625 3844         EventSystem (ec16ae9b37eacf871629227a3f3913fd) C:\WINDOWS\system32\es.dll
21:43:32.0640 3844         EventSystem - ok
21:43:32.0671 3844         Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
21:43:32.0687 3844         Fastfat - ok
21:43:32.0718 3844         FastUserSwitchingCompatibility (1b8542f338cdd86929a084a455837158) C:\WINDOWS\System32\shsvcs.dll
21:43:32.0734 3844         FastUserSwitchingCompatibility - ok
21:43:32.0750 3844         Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\DRIVERS\fdc.sys
21:43:32.0750 3844         Fdc - ok
21:43:32.0765 3844         Fips (31f923eb2170fc172c81abda0045d18c) C:\WINDOWS\system32\drivers\Fips.sys
21:43:32.0765 3844         Fips - ok
21:43:32.0781 3844         Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\DRIVERS\flpydisk.sys
21:43:32.0796 3844         Flpydisk - ok
21:43:32.0812 3844         FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\drivers\fltmgr.sys
21:43:32.0828 3844         FltMgr - ok
21:43:32.0937 3844         FontCache3.0.0.0 (8ba7c024070f2b7fdd98ed8a4ba41789) C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
21:43:32.0937 3844         FontCache3.0.0.0 - ok
21:43:32.0968 3844         Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
21:43:32.0968 3844         Fs_Rec - ok
21:43:33.0000 3844         Ftdisk (a86859b77b908c18c2657f284aa29fe3) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
21:43:33.0000 3844         Ftdisk - ok
21:43:33.0046 3844         Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
21:43:33.0046 3844         Gpc - ok
21:43:33.0062 3844         HDAudBus (573c7d0a32852b48f3058cfd8026f511) C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
21:43:33.0078 3844         HDAudBus - ok
21:43:33.0125 3844         helpsvc (1247f83b705af0e796330442f7967cf8) C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
21:43:33.0125 3844         helpsvc - ok
21:43:33.0171 3844         HidServ (a3b9b4a68bc839ce5a264d5908092261) C:\WINDOWS\System32\hidserv.dll
21:43:33.0171 3844         HidServ - ok
21:43:33.0218 3844         HidUsb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys
21:43:33.0218 3844         HidUsb - ok
21:43:33.0250 3844         hkmsvc (17b3c3d40cdba40c2e331d28be4de27f) C:\WINDOWS\System32\kmsvc.dll
21:43:33.0250 3844         hkmsvc - ok
21:43:33.0281 3844         hpn (b028377dea0546a5fcfba928a8aefae0) C:\WINDOWS\system32\DRIVERS\hpn.sys
21:43:33.0281 3844         hpn - ok
21:43:33.0328 3844         HPZid412 (30ca91e657cede2f95359d6ef186f650) C:\WINDOWS\system32\DRIVERS\HPZid412.sys
21:43:33.0328 3844         HPZid412 - ok
21:43:33.0343 3844         HPZipr12 (efd31afa752aa7c7bbb57bcbe2b01c78) C:\WINDOWS\system32\DRIVERS\HPZipr12.sys
21:43:33.0343 3844         HPZipr12 - ok
21:43:33.0375 3844         HPZius12 (7ac43c38ca8fd7ed0b0a4466f753e06e) C:\WINDOWS\system32\DRIVERS\HPZius12.sys
21:43:33.0390 3844         HPZius12 - ok
21:43:33.0437 3844         HTTP (f80a415ef82cd06ffaf0d971528ead38) C:\WINDOWS\system32\Drivers\HTTP.sys
21:43:33.0453 3844         HTTP - ok
21:43:33.0468 3844         HTTPFilter (bd31cface38d1800abdb43f4260af0d5) C:\WINDOWS\System32\w3ssl.dll
21:43:33.0484 3844         HTTPFilter - ok
21:43:33.0500 3844         i2omgmt (9368670bd426ebea5e8b18a62416ec28) C:\WINDOWS\system32\drivers\i2omgmt.sys
21:43:33.0500 3844         i2omgmt - ok
21:43:33.0531 3844         i2omp (f10863bf1ccc290babd1a09188ae49e0) C:\WINDOWS\system32\DRIVERS\i2omp.sys
21:43:33.0531 3844         i2omp - ok
21:43:33.0562 3844         i8042prt (a09bdc4ed10e3b2e0ec27bb94af32516) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
21:43:33.0562 3844         i8042prt - ok
21:43:33.0625 3844         idsvc (c01ac32dc5c03076cfb852cb5da5229c) C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
21:43:33.0656 3844         idsvc - ok
21:43:33.0671 3844         Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys
21:43:33.0671 3844         Imapi - ok
21:43:33.0687 3844         ImapiService (c4221678bbaa55239c23632875759961) C:\WINDOWS\system32\imapi.exe
21:43:33.0703 3844         ImapiService - ok
21:43:33.0734 3844         ini910u (4a40e045faee58631fd8d91afc620719) C:\WINDOWS\system32\DRIVERS\ini910u.sys
21:43:33.0734 3844         ini910u - ok
21:43:33.0750 3844         IntelIde (4b6da2f0a4095857a9e3f3697399d575) C:\WINDOWS\system32\DRIVERS\intelide.sys
21:43:33.0750 3844         IntelIde - ok
21:43:33.0781 3844         Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\drivers\ip6fw.sys
21:43:33.0796 3844         Ip6Fw - ok
21:43:33.0843 3844         IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
21:43:33.0843 3844         IpFilterDriver - ok
21:43:33.0875 3844         IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
21:43:33.0890 3844         IpInIp - ok
21:43:33.0906 3844         IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
21:43:33.0921 3844         IpNat - ok
21:43:33.0953 3844         IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
21:43:33.0953 3844         IPSec - ok
21:43:33.0984 3844         IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
21:43:33.0984 3844         IRENUM - ok
21:43:34.0031 3844         isapnp (355836975a67b6554bca60328cd6cb74) C:\WINDOWS\system32\DRIVERS\isapnp.sys
21:43:34.0046 3844         isapnp - ok
21:43:34.0109 3844         JavaQuickStarterService (5e06a9d23727daf96faa796f1135fdcd) C:\Program Files\Java\jre6\bin\jqs.exe
21:43:34.0125 3844         JavaQuickStarterService - ok
21:43:34.0140 3844         Kbdclass (16813155807c6881f4bfbf6657424659) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
21:43:34.0140 3844         Kbdclass - ok
21:43:34.0140 3844         kbdhid (94c59cb884ba010c063687c3a50dce8e) C:\WINDOWS\system32\DRIVERS\kbdhid.sys
21:43:34.0140 3844         kbdhid - ok
21:43:34.0171 3844         kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys
21:43:34.0187 3844         kmixer - ok
21:43:34.0203 3844         KSecDD (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys
21:43:34.0203 3844         KSecDD - ok
21:43:34.0250 3844         lanmanserver (1db8078a32e03ac8f5eb5e6dcac2aa34) C:\WINDOWS\System32\srvsvc.dll
21:43:34.0250 3844         lanmanserver - ok
21:43:34.0296 3844         lanmanworkstation (ad54ead46d92f413be189aabc1c59490) C:\WINDOWS\System32\wkssvc.dll
21:43:34.0296 3844         lanmanworkstation - ok
21:43:34.0328 3844         Lbd (419590ebe7855215bb157ea0cf0d0531) C:\WINDOWS\system32\DRIVERS\Lbd.sys
21:43:34.0328 3844         Suspicious file (Forged): C:\WINDOWS\system32\DRIVERS\Lbd.sys. Real md5: 419590ebe7855215bb157ea0cf0d0531, Fake md5: ee1348717f0e560c26f629624668cb80
21:43:34.0328 3844         Lbd ( ForgedFile.Multi.Generic ) - warning
21:43:34.0328 3844         Lbd - detected ForgedFile.Multi.Generic (1)
21:43:34.0328 3844         lbrtfdc - ok
21:43:34.0375 3844         LmHosts (0f357c079ac529a844ab5b18e4eef881) C:\WINDOWS\System32\lmhsvc.dll
21:43:34.0375 3844         LmHosts - ok
21:43:34.0390 3844         MEMSWEEP2 - ok
21:43:34.0437 3844         Messenger (e67a66a3781c1a483f0f8992664cbe0d) C:\WINDOWS\System32\msgsvc.dll
21:43:34.0437 3844         Messenger - ok
21:43:34.0468 3844         mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
21:43:34.0468 3844         mnmdd - ok
21:43:34.0500 3844         mnmsrvc (d3a2870cd96cda7bcff3dc54f64087ad) C:\WINDOWS\system32\mnmsrvc.exe
21:43:34.0515 3844         mnmsrvc - ok
21:43:34.0546 3844         Modem (510ade9327fe84c10254e1902697e25f) C:\WINDOWS\system32\drivers\Modem.sys
21:43:34.0546 3844         Modem - ok
21:43:34.0578 3844         Mouclass (027c01bd7ef3349aaebc883d8a799efb) C:\WINDOWS\system32\DRIVERS\mouclass.sys
21:43:34.0578 3844         Mouclass - ok
21:43:34.0593 3844         mouhid (124d6846040c79b9c997f78ef4b2a4e5) C:\WINDOWS\system32\DRIVERS\mouhid.sys
21:43:34.0593 3844         mouhid - ok
21:43:34.0625 3844         MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys
21:43:34.0625 3844         MountMgr - ok
21:43:34.0656 3844         MPE (c0f8e0c2c3c0437cf37c6781896dc3ec) C:\WINDOWS\system32\DRIVERS\MPE.sys
21:43:34.0656 3844         MPE - ok
21:43:34.0671 3844         mraid35x (3f4bb95e5a44f3be34824e8e7caf0737) C:\WINDOWS\system32\DRIVERS\mraid35x.sys
21:43:34.0671 3844         mraid35x - ok
21:43:34.0687 3844         MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
21:43:34.0703 3844         MRxDAV - ok
21:43:34.0765 3844         MRxSmb (7d304a5eb4344ebeeab53a2fe3ffb9f0) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
21:43:34.0765 3844         MRxSmb - ok
21:43:34.0812 3844         MSDTC (8648d670ae0d95c95e7bbb5b80661796) C:\WINDOWS\system32\msdtc.exe
21:43:34.0812 3844         MSDTC - ok
21:43:34.0828 3844         Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
21:43:34.0828 3844         Msfs - ok
21:43:34.0843 3844         MSIServer - ok
21:43:34.0875 3844         MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys
21:43:34.0875 3844         MSKSSRV - ok
21:43:34.0890 3844         MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
21:43:34.0890 3844         MSPCLOCK - ok
21:43:34.0921 3844         MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys
21:43:34.0921 3844         MSPQM - ok
21:43:34.0953 3844         mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
21:43:34.0953 3844         mssmbios - ok
21:43:34.0968 3844         MSTEE (e53736a9e30c45fa9e7b5eac55056d1d) C:\WINDOWS\system32\drivers\MSTEE.sys
21:43:34.0968 3844         MSTEE - ok
21:43:34.0984 3844         Mup (de6a75f5c270e756c5508d94b6cf68f5) C:\WINDOWS\system32\drivers\Mup.sys
21:43:35.0000 3844         Mup - ok
21:43:35.0031 3844         NABTSFEC (5b50f1b2a2ed47d560577b221da734db) C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
21:43:35.0031 3844         NABTSFEC - ok
21:43:35.0078 3844         napagent (69e4fbbabaeee1bff422e091da3171da) C:\WINDOWS\System32\qagentrt.dll
21:43:35.0093 3844         napagent - ok
21:43:35.0125 3844         NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys
21:43:35.0140 3844         NDIS - ok
21:43:35.0171 3844         NdisIP (7ff1f1fd8609c149aa432f95a8163d97) C:\WINDOWS\system32\DRIVERS\NdisIP.sys
21:43:35.0171 3844         NdisIP - ok
21:43:35.0203 3844         NdisTapi (0109c4f3850dfbab279542515386ae22) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
21:43:35.0203 3844         NdisTapi - ok
21:43:35.0234 3844         Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
21:43:35.0234 3844         Ndisuio - ok
21:43:35.0250 3844         NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
21:43:35.0265 3844         NdisWan - ok
21:43:35.0281 3844         NDProxy (9282bd12dfb069d3889eb3fcc1000a9b) C:\WINDOWS\system32\drivers\NDProxy.sys
21:43:35.0281 3844         NDProxy - ok
21:43:35.0296 3844         NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys
21:43:35.0296 3844         NetBIOS - ok
21:43:35.0328 3844         NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys
21:43:35.0343 3844         NetBT - ok
21:43:35.0375 3844         NetDDE (5c9b1d83755b36237b70f95df3d46a52) C:\WINDOWS\system32\netdde.exe
21:43:35.0390 3844         NetDDE - ok
21:43:35.0390 3844         NetDDEdsdm (5c9b1d83755b36237b70f95df3d46a52) C:\WINDOWS\system32\netdde.exe
21:43:35.0406 3844         NetDDEdsdm - ok
21:43:35.0421 3844         Netlogon (91e6024d6d4dcdecdb36c43ecf9bbecb) C:\WINDOWS\system32\lsass.exe
21:43:35.0421 3844         Netlogon - ok
21:43:35.0468 3844         Netman (be0cb143fa427d93440ded18db8c918b) C:\WINDOWS\System32\netman.dll
21:43:35.0484 3844         Netman - ok
21:43:35.0578 3844         NetTcpPortSharing (d34612c5d02d026535b3095d620626ae) C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
21:43:35.0578 3844         NetTcpPortSharing - ok
21:43:35.0609 3844         NIC1394 (e9e47cfb2d461fa0fc75b7a74c6383ea) C:\WINDOWS\system32\DRIVERS\nic1394.sys
21:43:35.0609 3844         NIC1394 - ok
21:43:35.0656 3844         Nla (6f5f546a92c7b6ae45db1d6910781eb0) C:\WINDOWS\System32\mswsock.dll
21:43:35.0656 3844         Nla - ok
21:43:35.0750 3844         NMSAccess (7aea4df1ca68fd45dd4bbe1f0243ce7f) C:\Program Files\CDBurnerXP\NMSAccessU.exe
21:43:35.0750 3844         NMSAccess - ok
21:43:35.0796 3844         nmwcd (f6c40e0a565ee3ce5aeeb325e10054f2) C:\WINDOWS\system32\drivers\ccdcmb.sys
21:43:35.0812 3844         nmwcd - ok
21:43:35.0843 3844         nmwcdc (2a394e9e1fa3565e4b2fea470ffe4d6b) C:\WINDOWS\system32\drivers\ccdcmbo.sys
21:43:35.0843 3844         nmwcdc - ok
21:43:35.0875 3844         nmwcdnsu (99b224f8026cb534724aa3c408561e45) C:\WINDOWS\system32\drivers\nmwcdnsu.sys
21:43:35.0875 3844         nmwcdnsu - ok
21:43:35.0906 3844         nmwcdnsuc (d23257682d349a5e2e4507ed33decc16) C:\WINDOWS\system32\drivers\nmwcdnsuc.sys
21:43:35.0906 3844         nmwcdnsuc - ok
21:43:35.0937 3844         Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
21:43:35.0937 3844         Npfs - ok
21:43:35.0968 3844         Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys
21:43:36.0000 3844         Ntfs - ok
21:43:36.0031 3844         NtLmSsp (91e6024d6d4dcdecdb36c43ecf9bbecb) C:\WINDOWS\system32\lsass.exe
21:43:36.0031 3844         NtLmSsp - ok
21:43:36.0078 3844         NtmsSvc (037d92b3a7853a183fcab77fb1d13d6c) C:\WINDOWS\system32\ntmssvc.dll
21:43:36.0093 3844         NtmsSvc - ok
21:43:36.0125 3844         Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
21:43:36.0125 3844         Null - ok
21:43:36.0156 3844         NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
21:43:36.0156 3844         NwlnkFlt - ok
21:43:36.0171 3844         NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
21:43:36.0187 3844         NwlnkFwd - ok
21:43:36.0265 3844         odserv (785f487a64950f3cb8e9f16253ba3b7b) C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE12\ODSERV.EXE
21:43:36.0281 3844         odserv - ok
21:43:36.0312 3844         ohci1394 (ca33832df41afb202ee7aeb05145922f) C:\WINDOWS\system32\DRIVERS\ohci1394.sys
21:43:36.0312 3844         ohci1394 - ok
21:43:36.0343 3844         ose (5a432a042dae460abe7199b758e8606c) C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE
21:43:36.0343 3844         ose - ok
21:43:36.0390 3844         Parport (8fd0bdbea875d06ccf6c945ca9abaf75) C:\WINDOWS\system32\DRIVERS\parport.sys
21:43:36.0390 3844         Parport - ok
21:43:36.0421 3844         PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
21:43:36.0421 3844         PartMgr - ok
21:43:36.0437 3844         ParVdm (9575c5630db8fb804649a6959737154c) C:\WINDOWS\system32\drivers\ParVdm.sys
21:43:36.0453 3844         ParVdm - ok
21:43:36.0484 3844         pccsmcfd (fd2041e9ba03db7764b2248f02475079) C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys
21:43:36.0500 3844         pccsmcfd - ok
21:43:36.0515 3844         PCI (043410877bda580c528f45165f7125bc) C:\WINDOWS\system32\DRIVERS\pci.sys
21:43:36.0515 3844         PCI - ok
21:43:36.0531 3844         PCIDump - ok
21:43:36.0546 3844         PCIIde (f4bfde7209c14a07aaa61e4d6ae69eac) C:\WINDOWS\system32\DRIVERS\pciide.sys
21:43:36.0546 3844         PCIIde - ok
21:43:36.0593 3844         Pcmcia (f0406cbc60bdb0394a0e17ffb04cdd3d) C:\WINDOWS\system32\drivers\Pcmcia.sys
21:43:36.0609 3844         Pcmcia - ok
21:43:36.0625 3844         PDCOMP - ok
21:43:36.0625 3844         PDFRAME - ok
21:43:36.0640 3844         PDRELI - ok
21:43:36.0656 3844         PDRFRAME - ok
21:43:36.0671 3844         perc2 (6c14b9c19ba84f73d3a86dba11133101) C:\WINDOWS\system32\DRIVERS\perc2.sys
21:43:36.0671 3844         perc2 - ok
21:43:36.0703 3844         perc2hib (f50f7c27f131afe7beba13e14a3b9416) C:\WINDOWS\system32\DRIVERS\perc2hib.sys
21:43:36.0703 3844         perc2hib - ok
21:43:36.0765 3844         PlugPlay (c3fb1d70cb88722267949694ba51759e) C:\WINDOWS\system32\services.exe
21:43:36.0765 3844         PlugPlay - ok
21:43:36.0796 3844         Pml Driver HPZ12 (2d091a99624fb9e7eef0a86d872ec0c3) C:\WINDOWS\system32\HPZipm12.exe
21:43:36.0796 3844         Pml Driver HPZ12 - ok
21:43:36.0828 3844         PolicyAgent (91e6024d6d4dcdecdb36c43ecf9bbecb) C:\WINDOWS\system32\lsass.exe
21:43:36.0828 3844         PolicyAgent - ok
21:43:36.0859 3844         PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
21:43:36.0859 3844         PptpMiniport - ok
21:43:36.0890 3844         prmvmouse (20a45d4fdfcc079265816e8f46acb1ae) C:\WINDOWS\system32\DRIVERS\activmouse.sys
21:43:36.0890 3844         prmvmouse - ok
21:43:36.0906 3844         Processor (e19c9632ac828f6f214391e2bdda11cb) C:\WINDOWS\system32\DRIVERS\processr.sys
21:43:36.0921 3844         Processor - ok
21:43:36.0921 3844         ProtectedStorage (91e6024d6d4dcdecdb36c43ecf9bbecb) C:\WINDOWS\system32\lsass.exe
21:43:36.0937 3844         ProtectedStorage - ok
21:43:36.0953 3844         PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys
21:43:36.0953 3844         PSched - ok
21:43:36.0984 3844         Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
21:43:36.0984 3844         Ptilink - ok
21:43:37.0062 3844         PxHelp20 (0457e25bb122b854e267cf552dcdc370) C:\WINDOWS\system32\Drivers\PxHelp20.sys
21:43:37.0062 3844         PxHelp20 - ok
21:43:37.0078 3844         ql1080 (0a63fb54039eb5662433caba3b26dba7) C:\WINDOWS\system32\DRIVERS\ql1080.sys
21:43:37.0078 3844         ql1080 - ok
21:43:37.0093 3844         Ql10wnt (6503449e1d43a0ff0201ad5cb1b8c706) C:\WINDOWS\system32\DRIVERS\ql10wnt.sys
21:43:37.0093 3844         Ql10wnt - ok
21:43:37.0109 3844         ql12160 (156ed0ef20c15114ca097a34a30d8a01) C:\WINDOWS\system32\DRIVERS\ql12160.sys
21:43:37.0109 3844         ql12160 - ok
21:43:37.0125 3844         ql1240 (70f016bebde6d29e864c1230a07cc5e6) C:\WINDOWS\system32\DRIVERS\ql1240.sys
21:43:37.0125 3844         ql1240 - ok
21:43:37.0140 3844         ql1280 (907f0aeea6bc451011611e732bd31fcf) C:\WINDOWS\system32\DRIVERS\ql1280.sys
21:43:37.0140 3844         ql1280 - ok
21:43:37.0171 3844         RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
21:43:37.0187 3844         RasAcd - ok
21:43:37.0218 3844         RasAuto (78da9ccdac683ef5aa87d1c919f6d221) C:\WINDOWS\System32\rasauto.dll
21:43:37.0234 3844         RasAuto - ok
21:43:37.0250 3844         Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
21:43:37.0250 3844         Rasl2tp - ok
21:43:37.0296 3844         RasMan (0a48df90b4784f9b90a2671af992c914) C:\WINDOWS\System32\rasmans.dll
21:43:37.0312 3844         RasMan - ok
21:43:37.0328 3844         RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
21:43:37.0328 3844         RasPppoe - ok
21:43:37.0375 3844         Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
21:43:37.0375 3844         Raspti - ok
21:43:37.0406 3844         Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys
21:43:37.0406 3844         Rdbss - ok
21:43:37.0421 3844         RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
21:43:37.0421 3844         RDPCDD - ok
21:43:37.0468 3844         rdpdr (15cabd0f7c00c47c70124907916af3f1) C:\WINDOWS\system32\DRIVERS\rdpdr.sys
21:43:37.0484 3844         rdpdr - ok
21:43:37.0531 3844         RDPWD (5b3055daa788bd688594d2f5981f2a83) C:\WINDOWS\system32\drivers\RDPWD.sys
21:43:37.0531 3844         RDPWD - ok
21:43:37.0562 3844         RDSessMgr (9f63d9c5b238ed1c375d417eff3d5be7) C:\WINDOWS\system32\sessmgr.exe
21:43:37.0578 3844         RDSessMgr - ok
21:43:37.0593 3844         redbook (d8eb2a7904db6c916eb5361878ddcbae) C:\WINDOWS\system32\DRIVERS\redbook.sys
21:43:37.0593 3844         redbook - ok
21:43:37.0625 3844         RemoteAccess (7da370c31673c99497bd07068ee6e354) C:\WINDOWS\System32\mprdim.dll
21:43:37.0625 3844         RemoteAccess - ok
21:43:37.0656 3844         RpcLocator (499c59a2584f6d4ea41e944da571d993) C:\WINDOWS\system32\locator.exe
21:43:37.0656 3844         RpcLocator - ok
21:43:37.0703 3844         RpcSs (0203b1aad358f206cb0a3c1f93cce17a) C:\WINDOWS\System32\rpcss.dll
21:43:37.0703 3844         RpcSs - ok
21:43:37.0750 3844         RSVP (414964844f4793acb868d057e8ed997e) C:\WINDOWS\system32\rsvp.exe
21:43:37.0765 3844         RSVP - ok
21:43:37.0812 3844         RTL8023xp (4a0ae7891fcf74acc848b109294cb80f) C:\WINDOWS\system32\DRIVERS\Rtlnicxp.sys
21:43:37.0812 3844         RTL8023xp - ok
21:43:37.0828 3844         SamSs (91e6024d6d4dcdecdb36c43ecf9bbecb) C:\WINDOWS\system32\lsass.exe
21:43:37.0828 3844         SamSs - ok
21:43:37.0859 3844         SCardSvr (67949cc8a865296c1333c96a4e1a2d66) C:\WINDOWS\System32\SCardSvr.exe
21:43:37.0859 3844         SCardSvr - ok
21:43:37.0906 3844         Schedule (55f5c5c1be1a78e285033e432ba01597) C:\WINDOWS\system32\schedsvc.dll
21:43:37.0921 3844         Schedule - ok
21:43:37.0968 3844         Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
21:43:37.0968 3844         Secdrv - ok
21:43:38.0000 3844         seclogon (5ac311c0af2af5ec221670bb8dc479d3) C:\WINDOWS\System32\seclogon.dll
21:43:38.0000 3844         seclogon - ok
21:43:38.0046 3844         SENS (3531366f38f453d08fe72e7b32dfe786) C:\WINDOWS\system32\sens.dll
21:43:38.0046 3844         SENS - ok
21:43:38.0078 3844         Serenum (0f29512ccd6bead730039fb4bd2c85ce) C:\WINDOWS\system32\DRIVERS\serenum.sys
21:43:38.0078 3844         Serenum - ok
21:43:38.0109 3844         Serial (93d313c31f7ad9ea2b75f26075413c7c) C:\WINDOWS\system32\DRIVERS\serial.sys
21:43:38.0109 3844         Serial - ok
21:43:38.0218 3844         ServiceLayer (f31e9531af225ca25350d5e87e999b31) C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
21:43:38.0250 3844         ServiceLayer - ok
21:43:38.0281 3844         Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys
21:43:38.0281 3844         Sfloppy - ok
21:43:38.0312 3844         SharedAccess (f4ce708a7d17a625de6c0fd746d50e88) C:\WINDOWS\System32\ipnathlp.dll
21:43:38.0328 3844         SharedAccess - ok
21:43:38.0375 3844         ShellHWDetection (1b8542f338cdd86929a084a455837158) C:\WINDOWS\System32\shsvcs.dll
21:43:38.0375 3844         ShellHWDetection - ok
21:43:38.0421 3844         SI3112r (0917eb303a2bc3e122f2777daef1a63c) C:\WINDOWS\system32\DRIVERS\SI3112r.sys
21:43:38.0421 3844         SI3112r - ok
21:43:38.0437 3844         SiFilter (78b1a1523265e5dbcced0c814ac719de) C:\WINDOWS\system32\DRIVERS\SiWinAcc.sys
21:43:38.0437 3844         SiFilter - ok
21:43:38.0453 3844         Simbad - ok
21:43:38.0468 3844         sisagp (6b33d0ebd30db32e27d1d78fe946a754) C:\WINDOWS\system32\DRIVERS\sisagp.sys
21:43:38.0468 3844         sisagp - ok
21:43:38.0500 3844         SLIP (866d538ebe33709a5c9f5c62b73b7d14) C:\WINDOWS\system32\DRIVERS\SLIP.sys
21:43:38.0500 3844         SLIP - ok
21:43:38.0531 3844         Sparrow (83c0f71f86d3bdaf915685f3d568b20e) C:\WINDOWS\system32\DRIVERS\sparrow.sys
21:43:38.0531 3844         Sparrow - ok
21:43:38.0546 3844         splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
21:43:38.0546 3844         splitter - ok
21:43:38.0593 3844         Spooler (60784f891563fb1b767f70117fc2428f) C:\WINDOWS\system32\spoolsv.exe
21:43:38.0593 3844         Spooler - ok
21:43:38.0640 3844         sptd (d390675b8ce45e5fb359338e5e649329) C:\WINDOWS\system32\Drivers\sptd.sys
21:43:38.0640 3844         Suspicious file (NoAccess): C:\WINDOWS\system32\Drivers\sptd.sys. md5: d390675b8ce45e5fb359338e5e649329
21:43:38.0640 3844         sptd ( LockedFile.Multi.Generic ) - warning
21:43:38.0640 3844         sptd - detected LockedFile.Multi.Generic (1)
21:43:38.0671 3844         sr (39626e6dc1fb39434ec40c42722b660a) C:\WINDOWS\system32\DRIVERS\sr.sys
21:43:38.0671 3844         sr - ok
21:43:38.0687 3844         srescan - ok
21:43:38.0718 3844         srservice (6ed29124a1c83bd0cf6b26bd01ca6f6f) C:\WINDOWS\system32\srsvc.dll
21:43:38.0718 3844         srservice - ok
21:43:38.0765 3844         Srv (47ddfc2f003f7f9f0592c6874962a2e7) C:\WINDOWS\system32\DRIVERS\srv.sys
21:43:38.0781 3844         Srv - ok
21:43:38.0812 3844         sscdbus (2d4027c46b4c6e45875e3c4ba3f67492) C:\WINDOWS\system32\DRIVERS\sscdbus.sys
21:43:38.0812 3844         sscdbus - ok
21:43:38.0843 3844         sscdmdfl (f548f1eba107bc19e91189e6a460bd0e) C:\WINDOWS\system32\DRIVERS\sscdmdfl.sys
21:43:38.0843 3844         sscdmdfl - ok
21:43:38.0859 3844         sscdmdm (71d348d53597379dfe1de255d70af13c) C:\WINDOWS\system32\DRIVERS\sscdmdm.sys
21:43:38.0875 3844         sscdmdm - ok
21:43:38.0906 3844         SSDPSRV (ea9e0db8684cef2fd3badd671df5a112) C:\WINDOWS\System32\ssdpsrv.dll
21:43:38.0906 3844         SSDPSRV - ok
21:43:38.0937 3844         StarOpen (e57b778208c783d8debab320c16a1b82) C:\WINDOWS\system32\drivers\StarOpen.sys
21:43:38.0937 3844         StarOpen - ok
21:43:38.0968 3844         stisvc (d76b0e8a4ecad1adcc75fd14a7acc54c) C:\WINDOWS\system32\wiaservc.dll
21:43:38.0984 3844         stisvc - ok
21:43:39.0015 3844         streamip (77813007ba6265c4b6098187e6ed79d2) C:\WINDOWS\system32\DRIVERS\StreamIP.sys
21:43:39.0015 3844         streamip - ok
21:43:39.0046 3844         swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys
21:43:39.0046 3844         swenum - ok
21:43:39.0078 3844         swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys
21:43:39.0078 3844         swmidi - ok
21:43:39.0093 3844         SwPrv - ok
21:43:39.0140 3844         symc810 (1ff3217614018630d0a6758630fc698c) C:\WINDOWS\system32\DRIVERS\symc810.sys
21:43:39.0140 3844         symc810 - ok
21:43:39.0156 3844         symc8xx (070e001d95cf725186ef8b20335f933c) C:\WINDOWS\system32\DRIVERS\symc8xx.sys
21:43:39.0156 3844         symc8xx - ok
21:43:39.0171 3844         sym_hi (80ac1c4abbe2df3b738bf15517a51f2c) C:\WINDOWS\system32\DRIVERS\sym_hi.sys
21:43:39.0171 3844         sym_hi - ok
21:43:39.0187 3844         sym_u3 (bf4fab949a382a8e105f46ebb4937058) C:\WINDOWS\system32\DRIVERS\sym_u3.sys
21:43:39.0187 3844         sym_u3 - ok
21:43:39.0218 3844         sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys
21:43:39.0218 3844         sysaudio - ok
21:43:39.0250 3844         SysmonLog (0899061318a6b1d9596aabfc77f45e44) C:\WINDOWS\system32\smlogsvc.exe
21:43:39.0265 3844         SysmonLog - ok
21:43:39.0296 3844         TapiSrv (8e5231171ad6595ff002e848cc54fcd7) C:\WINDOWS\System32\tapisrv.dll
21:43:39.0312 3844         TapiSrv - ok
21:43:39.0359 3844         Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys
21:43:39.0359 3844         Tcpip - ok
21:43:39.0406 3844         TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys
21:43:39.0406 3844         TDPIPE - ok
21:43:39.0421 3844         TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys
21:43:39.0437 3844         TDTCP - ok
21:43:39.0453 3844         TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys
21:43:39.0453 3844         TermDD - ok
21:43:39.0484 3844         TermService (710bc85a8c22626ee094439e3ea0d38c) C:\WINDOWS\System32\termsrv.dll
21:43:39.0500 3844         TermService - ok
21:43:39.0546 3844         Themes (1b8542f338cdd86929a084a455837158) C:\WINDOWS\System32\shsvcs.dll
21:43:39.0546 3844         Themes - ok
21:43:39.0593 3844         TosIde (b411668322c3bf4e690888706b999679) C:\WINDOWS\system32\DRIVERS\toside.sys
21:43:39.0593 3844         TosIde - ok
21:43:39.0609 3844         TrkWks (e1a84a5067627407a53c2c4f8d8a1d2e) C:\WINDOWS\system32\trkwks.dll
21:43:39.0625 3844         TrkWks - ok
21:43:39.0640 3844         Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys
21:43:39.0640 3844         Udfs - ok
21:43:39.0703 3844         UleadBurningHelper (ca90d2c55eb3bb90687677bea3db0b59) C:\Program Files\Fichiers communs\Ulead Systems\DVD\ULCDRSvr.exe
21:43:39.0703 3844         UleadBurningHelper - ok
21:43:39.0734 3844         ultra (1b698a51cd528d8da4ffaed66dfc51b9) C:\WINDOWS\system32\DRIVERS\ultra.sys
21:43:39.0734 3844         ultra - ok
21:43:39.0781 3844         Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys
21:43:39.0781 3844         Update - ok
21:43:39.0812 3844         upnphost (bd8166a495b02308f364b36249475f22) C:\WINDOWS\System32\upnphost.dll
21:43:39.0828 3844         upnphost - ok
21:43:39.0859 3844         upperdev (47f5f9d837d80ffd5882a14db9da0a67) C:\WINDOWS\system32\DRIVERS\usbser_lowerflt.sys
21:43:39.0859 3844         upperdev - ok
21:43:39.0890 3844         UPS (1edc93d7bd731b5ca6248ae245099b60) C:\WINDOWS\System32\ups.exe
21:43:39.0890 3844         UPS - ok
21:43:39.0921 3844         usbccgp (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
21:43:39.0937 3844         usbccgp - ok
21:43:39.0953 3844         usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys
21:43:39.0953 3844         usbehci - ok
21:43:39.0984 3844         usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys
21:43:39.0984 3844         usbhub - ok
21:43:40.0015 3844         usbohci (0daecce65366ea32b162f85f07c6753b) C:\WINDOWS\system32\DRIVERS\usbohci.sys
21:43:40.0015 3844         usbohci - ok
21:43:40.0031 3844         usbprint (a717c8721046828520c9edf31288fc00) C:\WINDOWS\system32\DRIVERS\usbprint.sys
21:43:40.0031 3844         usbprint - ok
21:43:40.0046 3844         usbscan (a0b8cf9deb1184fbdd20784a58fa75d4) C:\WINDOWS\system32\DRIVERS\usbscan.sys
21:43:40.0046 3844         usbscan - ok
21:43:40.0078 3844         usbser (1c888b000c2f9492f4b15b5b6b84873e) C:\WINDOWS\system32\drivers\usbser.sys
21:43:40.0078 3844         usbser - ok
21:43:40.0109 3844         UsbserFilt (e44f0d17be0908b58dcc99ccb99c6c32) C:\WINDOWS\system32\DRIVERS\usbser_lowerfltj.sys
21:43:40.0109 3844         UsbserFilt - ok
21:43:40.0171 3844         USBSTOR (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
21:43:40.0171 3844         USBSTOR - ok
21:43:40.0203 3844         VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys
21:43:40.0203 3844         VgaSave - ok
21:43:40.0234 3844         viaagp (754292ce5848b3738281b4f3607eaef4) C:\WINDOWS\system32\DRIVERS\viaagp.sys
21:43:40.0234 3844         viaagp - ok
21:43:40.0250 3844         ViaIde (3b3efcda263b8ac14fdf9cbdd0791b2e) C:\WINDOWS\system32\DRIVERS\viaide.sys
21:43:40.0250 3844         ViaIde - ok
21:43:40.0265 3844         VolSnap (46de1126684369bace4849e4fc8c43ca) C:\WINDOWS\system32\drivers\VolSnap.sys
21:43:40.0265 3844         VolSnap - ok
21:43:40.0296 3844         VSS (5a4da252b2c0550ab83d129c02cf6c19) C:\WINDOWS\System32\vssvc.exe
21:43:40.0296 3844         VSS - ok
21:43:40.0328 3844         W32Time (c1f726ee0b043b074a68992bc4aef8fd) C:\WINDOWS\system32\w32time.dll
21:43:40.0343 3844         W32Time - ok
21:43:40.0375 3844         Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys
21:43:40.0375 3844         Wanarp - ok
21:43:40.0406 3844         wanatw (0a716c08cb13c3a8f4f51e882dbf7416) C:\WINDOWS\system32\DRIVERS\wanatw4.sys
21:43:40.0406 3844         wanatw - ok
21:43:40.0468 3844         Wdf01000 (d918617b46457b9ac28027722e30f647) C:\WINDOWS\system32\Drivers\wdf01000.sys
21:43:40.0500 3844         Wdf01000 - ok
21:43:40.0515 3844         WDICA - ok
21:43:40.0546 3844         wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys
21:43:40.0546 3844         wdmaud - ok
21:43:40.0593 3844         WebClient (714670e64fbe6d28d99871ed9a52a334) C:\WINDOWS\System32\webclnt.dll
21:43:40.0593 3844         WebClient - ok
21:43:40.0671 3844         winmgmt (5e9deae9980ff34bcd6dde2e9e2bf911) C:\WINDOWS\system32\wbem\WMIsvc.dll
21:43:40.0671 3844         winmgmt - ok
21:43:40.0812 3844         wlidsvc (5144ae67d60ec653f97ddf3feed29e77) C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLIDSVC.EXE
21:43:40.0843 3844         wlidsvc - ok
21:43:40.0906 3844         WmdmPmSN (c51b4a5c05a5475708e3c81c7765b71d) C:\WINDOWS\system32\MsPMSNSv.dll
21:43:40.0906 3844         WmdmPmSN - ok
21:43:40.0953 3844         WmiApSrv (4e8e8a58f56b25d0795f484e5eb7f898) C:\WINDOWS\system32\wbem\wmiapsrv.exe
21:43:40.0953 3844         WmiApSrv - ok
21:43:41.0015 3844         WpdUsb (cf4def1bf66f06964dc0d91844239104) C:\WINDOWS\system32\Drivers\wpdusb.sys
21:43:41.0015 3844         WpdUsb - ok
21:43:41.0046 3844         WS2IFSL (6abe6e225adb5a751622a9cc3bc19ce8) C:\WINDOWS\System32\drivers\ws2ifsl.sys
21:43:41.0046 3844         WS2IFSL - ok
21:43:41.0093 3844         wscsvc (c1fd85db4a80a98d60ecb7a828e77fe0) C:\WINDOWS\system32\wscsvc.dll
21:43:41.0093 3844         wscsvc - ok
21:43:41.0109 3844         WSearch - ok
21:43:41.0156 3844         WSTCODEC (c98b39829c2bbd34e454150633c62c78) C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
21:43:41.0156 3844         WSTCODEC - ok
21:43:41.0171 3844         wuauserv (75d6c5c3d2c93b1f9931e5dfb693ae2a) C:\WINDOWS\system32\wuauserv.dll
21:43:41.0171 3844         wuauserv - ok
21:43:41.0187 3844         WudfPf (f15feafffbb3644ccc80c5da584e6311) C:\WINDOWS\system32\DRIVERS\WudfPf.sys
21:43:41.0187 3844         WudfPf - ok
21:43:41.0218 3844         WudfRd (28b524262bce6de1f7ef9f510ba3985b) C:\WINDOWS\system32\DRIVERS\wudfrd.sys
21:43:41.0218 3844         WudfRd - ok
21:43:41.0234 3844         WudfSvc (05231c04253c5bc30b26cbaae680ed89) C:\WINDOWS\System32\WUDFSvc.dll
21:43:41.0250 3844         WudfSvc - ok
21:43:41.0296 3844         WZCSVC (c336e54ee0c291a02f004667db1e66cb) C:\WINDOWS\System32\wzcsvc.dll
21:43:41.0312 3844         WZCSVC - ok
21:43:41.0343 3844         xmlprov (f92a87fdda0c11c8604fbc2b864fa726) C:\WINDOWS\System32\xmlprov.dll
21:43:41.0343 3844         xmlprov - ok
21:43:41.0390 3844         MBR (0x1B8) (671b81004fdd1588fa9ed1331c9ceca9) \Device\Harddisk0\DR0
21:43:41.0515 3844         \Device\Harddisk0\DR0 - ok
21:43:41.0531 3844         Boot (0x1200) (8ef738d816f113aae1dec06c23ba62c1) \Device\Harddisk0\DR0\Partition0
21:43:41.0531 3844         \Device\Harddisk0\DR0\Partition0 - ok
21:43:41.0546 3844         Boot (0x1200) (399bc73cc71a36d4bf8b72ca4a290bac) \Device\Harddisk0\DR0\Partition1
21:43:41.0546 3844         \Device\Harddisk0\DR0\Partition1 - ok
21:43:41.0562 3844         ============================================================
21:43:41.0562 3844         Scan finished
21:43:41.0562 3844         ============================================================
21:43:41.0578 3924         Detected object count: 3
21:43:41.0578 3924         Actual detected object count: 3
21:43:53.0812 3924         C:\WINDOWS\system32\DRIVERS\ACPI.sys - copied to quarantine
21:43:54.0718 3924         Backup copy found, using it..
21:43:54.0734 3924         C:\WINDOWS\system32\DRIVERS\ACPI.sys - will be cured on reboot
21:43:54.0734 3924         ACPI ( Virus.Win32.Rloader.a ) - User select action: Cure
21:43:54.0750 3924         Lbd ( ForgedFile.Multi.Generic ) - skipped by user
21:43:54.0750 3924         Lbd ( ForgedFile.Multi.Generic ) - User select action: Skip
21:43:54.0750 3924         sptd ( LockedFile.Multi.Generic ) - skipped by user
21:43:54.0750 3924         sptd ( LockedFile.Multi.Generic ) - User select action: Skip
21:43:58.0359 1084         Deinitialize success

x
Éditer le texte

Merci d'entrer le mot de passe que vous avez indiqué à la création du texte.

x
Télécharger le texte

Merci de choisir le format du fichier à télécharger.