Virus TR/rootkit.gen a été trouvé
Dernière réponse : dans Sécurité
J'ai un ordi WINDOWS XP portatif avec indication (logiciel malveilllant dé ) dans le fichier C:\WINDOWS\SYSTEM32\DRIVERS\MODEM.SYS virus ou programme indésirable TR/ROOTKIT.GEN a été trouvé. adv marche à suivre.
J'aimerais pouvoir le réparer. Merci.
J'aimerais pouvoir le réparer. Merci.
Autres pages sur : virus rootkit gen trouve
Lassé par la pub ? Créez un compte
Bonsoir
Télécharge TDSSKiller de Kaspersky sur ton bureau.
Décompresse-le en faisant clic-droit dessus -> extraire tout... (clique sur "suivant", "suivant" et "Terminer".)
Double clique sur "TDSSKiller.exe" pour lancer l'outil.
(Utilisateur de Vista/Windows 7 : effectue un clic droit sur TDSSKiller.exe et sélectionne "Exécuter en tant qu'administrateur".)
Clique alors sur le bouton "Start Scan".
Laisse le scan s'effectuer.
Dans la fenêtre de résultat, assures-toi que "Malicious objects" ait le statut "Cure"
Pour la partie "Suspicious object" clique sur "Skip" et choisi "Quarantine"
Clique enfin sur "Continue"
Il te sera surement demandé de redémarrer ton pc, fait-le en cliquant sur "Reboot now"
Au redémarrage va chercher le rapport de suppression, il se trouve ici :
C:\ TDSSKiller.x.x.x.x_date_heure_log.txt
Poste son contenu dans ta prochaine réponse.
Télécharge TDSSKiller de Kaspersky sur ton bureau.
(Utilisateur de Vista/Windows 7 : effectue un clic droit sur TDSSKiller.exe et sélectionne "Exécuter en tant qu'administrateur".)
C:\ TDSSKiller.x.x.x.x_date_heure_log.txt
Poste son contenu dans ta prochaine réponse.
Bnjour,
tu l'ouvres en cliquant dessus puis tu le copie colle ici. J'ai besoin de ce rapport pour voir si TDSS a bien gérer ton infection (comme il aurait dû le faire)![;)]( ";)")
fais ceci aussi stp:
1
Télécharge![]()
DDS et sauvegarde-le sur ton bureau.
Désactive tout script bloquant, tels qu'un antivirus, un logiciel comme ad-block, noscript etc.
Double-clique sur dds.scr pour lancer l'outil.
Une fois le scan fini, un document texte, DDS.txt, va s'ouvrir .
Clique Oui à la prochaine invite Optional Scan.
Sauvegarde les deux rapports sur ton bureau et poste-moi uniquement le DDS.txt.
2
Télécharge SystemLook à partir d'un des liens ci dessous sur ton Bureau.
http://jpshortstuff.247fixes.com/SystemLook.exe
* Double-click SystemLook.exe pour le lancer.
* Clic droit/copier le contenu du cadre ci dessous ,et clic droit/coller dans le cadre blanc de SystemLook:
* Click le bouton Look pour commencer le scan.
* Laisse l'outil travailler, cela peut prendre quelques minutes.
* Copie-colle dans ta prochaine réponse le rapport\contenu du fichier texte qui s'affiche
Note: Le rapport peut aussi être trouvé sur ton Bureau nommé SystemLook.txt
tu l'ouvres en cliquant dessus puis tu le copie colle ici. J'ai besoin de ce rapport pour voir si TDSS a bien gérer ton infection (comme il aurait dû le faire)
fais ceci aussi stp:
1
Télécharge
DDS et sauvegarde-le sur ton bureau.2
Télécharge SystemLook à partir d'un des liens ci dessous sur ton Bureau.
http://jpshortstuff.247fixes.com/SystemLook.exe
* Double-click SystemLook.exe pour le lancer.
* Clic droit/copier le contenu du cadre ci dessous ,et clic droit/coller dans le cadre blanc de SystemLook:
:filefind
modem.sys
modem.sys
* Click le bouton Look pour commencer le scan.
* Laisse l'outil travailler, cela peut prendre quelques minutes.
* Copie-colle dans ta prochaine réponse le rapport\contenu du fichier texte qui s'affiche
Note: Le rapport peut aussi être trouvé sur ton Bureau nommé SystemLook.txt
/02/19 23:48:46.0828 TDSS rootkit removing tool 2.4.1.2 Aug 16 2010 09:46:23
2004/02/19 23:48:46.0828 ================================================================================
2004/02/19 23:48:46.0828 SystemInfo:
2004/02/19 23:48:46.0828
2004/02/19 23:48:46.0828 OS Version: 5.1.2600 ServicePack: 3.0
2004/02/19 23:48:46.0843 Product type: Workstation
2004/02/19 23:48:46.0843 ComputerName: DANIELLESAVOIE
2004/02/19 23:48:46.0843 UserName: Danielle
2004/02/19 23:48:46.0843 Windows directory: C:\WINDOWS
2004/02/19 23:48:46.0843 System windows directory: C:\WINDOWS
2004/02/19 23:48:46.0843 Processor architecture: Intel x86
2004/02/19 23:48:46.0843 Number of processors: 1
2004/02/19 23:48:46.0843 Page size: 0x1000
2004/02/19 23:48:46.0843 Boot type: Normal boot
2004/02/19 23:48:46.0843 ================================================================================
2004/02/19 23:48:48.0453 Initialize success
2004/02/19 23:48:51.0921 ================================================================================
2004/02/19 23:48:51.0921 Scan started
2004/02/19 23:48:51.0921 Mode: Manual;
2004/02/19 23:48:51.0921 ================================================================================
2004/02/19 23:48:53.0203 ACPI (e5e6dbfc41ea8aad005cb9a57a96b43b) C:\WINDOWS\system32\DRIVERS\ACPI.sys
2004/02/19 23:48:53.0265 ACPIEC (e4abc1212b70bb03d35e60681c447210) C:\WINDOWS\system32\DRIVERS\ACPIEC.sys
2004/02/19 23:48:53.0406 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
2004/02/19 23:48:53.0500 AFD (7e775010ef291da96ad17ca4b17137d7) C:\WINDOWS\System32\drivers\afd.sys
2004/02/19 23:48:53.0656 AgereSoftModem (029e01cb2938bec5af31bf47b6af0159) C:\WINDOWS\system32\DRIVERS\AGRSM.sys
2004/02/19 23:48:54.0062 aksfridge (cb5a5079744a0535416d3a5e462c5efe) C:\WINDOWS\system32\drivers\aksfridge.sys
2004/02/19 23:48:54.0390 akshasp (1a27f5555448cc2d29d281b11f39177e) C:\WINDOWS\system32\DRIVERS\akshasp.sys
2004/02/19 23:48:54.0484 aksusb (b4ad9f5d78f27e0c6994e0cb05c60e21) C:\WINDOWS\system32\DRIVERS\aksusb.sys
2004/02/19 23:48:54.0703 ALCXWDM (95aa37bec6c72c277c2caeaee736dd2d) C:\WINDOWS\system32\drivers\ALCXWDM.SYS
2004/02/19 23:48:55.0125 ApfiltrService (3ed81e8b4709d13e5a38db2d8e792b28) C:\WINDOWS\system32\DRIVERS\Apfiltr.sys
2004/02/19 23:48:55.0234 Arp1394 (b5b8a80875c1dededa8b02765642c32f) C:\WINDOWS\system32\DRIVERS\arp1394.sys
2004/02/19 23:48:55.0484 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
2004/02/19 23:48:55.0546 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys
2004/02/19 23:48:55.0703 ati2mtag (2fbdfec8cd60cec3d55e615865333033) C:\WINDOWS\system32\DRIVERS\ati2mtag.sys
2004/02/19 23:48:55.0937 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
2004/02/19 23:48:56.0062 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
2004/02/19 23:48:56.0171 avgio (0b497c79824f8e1bf22fa6aacd3de3a0) C:\Program Files\Avira\AntiVir Desktop\avgio.sys
2004/02/19 23:48:56.0296 avgntflt (47b879406246ffdced59e18d331a0e7d) C:\WINDOWS\system32\DRIVERS\avgntflt.sys
2004/02/19 23:48:56.0437 avipbb (f1a946f63cbf2d6ac95c659244d9905a) C:\WINDOWS\system32\DRIVERS\avipbb.sys
2004/02/19 23:48:56.0515 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
2004/02/19 23:48:56.0843 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
2004/02/19 23:48:57.0000 CCDECODE (0be5aef125be881c4f854c554f2b025c) C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
2004/02/19 23:48:57.0140 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
2004/02/19 23:48:57.0203 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
2004/02/19 23:48:57.0265 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys
2004/02/19 23:48:57.0437 CmBatt (0f6c187d38d98f8df904589a5f94d411) C:\WINDOWS\system32\DRIVERS\CmBatt.sys
2004/02/19 23:48:57.0562 Compbatt (6e4c9f21f0fae8940661144f41b13203) C:\WINDOWS\system32\DRIVERS\compbatt.sys
2004/02/19 23:48:57.0921 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
2004/02/19 23:48:58.0062 dmboot (f5deadd42335fb33edca74ecb2f36cba) C:\WINDOWS\system32\drivers\dmboot.sys
2004/02/19 23:48:58.0234 dmio (5a7c47c9b3f9fb92a66410a7509f0c71) C:\WINDOWS\system32\drivers\dmio.sys
2004/02/19 23:48:58.0312 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
2004/02/19 23:48:58.0421 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
2004/02/19 23:48:58.0500 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
2004/02/19 23:48:58.0625 drvmcdb (f41619ae216b51d68dda163805eefaa9) C:\WINDOWS\system32\drivers\drvmcdb.sys
2004/02/19 23:48:58.0687 drvnddm (2ff629c1c443e25d0149b9dfb77e43a8) C:\WINDOWS\system32\drivers\drvnddm.sys
2004/02/19 23:48:58.0812 EMSCR (d3d0ef132eb8f7351e0f6e8072e26331) C:\WINDOWS\system32\DRIVERS\EMS7SK.sys
2004/02/19 23:48:58.0968 ESDCR (fcf25b9eb1876dbb3efe13baf37b7bf8) C:\WINDOWS\system32\DRIVERS\ESD7SK.sys
2004/02/19 23:48:59.0015 ESMCR (7cec9e3a81142ea0294f2abba0b0a846) C:\WINDOWS\system32\DRIVERS\ESM7SK.sys
2004/02/19 23:48:59.0125 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
2004/02/19 23:48:59.0250 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\drivers\Fdc.sys
2004/02/19 23:48:59.0328 Fips (31f923eb2170fc172c81abda0045d18c) C:\WINDOWS\system32\drivers\Fips.sys
2004/02/19 23:48:59.0375 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\drivers\Flpydisk.sys
2004/02/19 23:48:59.0468 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\drivers\fltmgr.sys
2004/02/19 23:48:59.0531 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
2004/02/19 23:48:59.0640 Ftdisk (a86859b77b908c18c2657f284aa29fe3) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
2004/02/19 23:48:59.0843 GEARAspiWDM (ab8a6a87d9d7255c3884d5b9541a6e80) C:\WINDOWS\system32\Drivers\GEARAspiWDM.sys
2004/02/19 23:48:59.0921 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
2004/02/19 23:49:00.0093 hardlock (9de9a7a19195c57ef38b4ee25422f2d7) C:\WINDOWS\system32\drivers\hardlock.sys
2004/02/19 23:49:00.0250 Haspnt (2dd25f060dc9f79b5cdf33d90ed93669) C:\WINDOWS\system32\drivers\Haspnt.sys
2004/02/19 23:49:00.0437 HidUsb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys
2004/02/19 23:49:00.0625 HTTP (f80a415ef82cd06ffaf0d971528ead38) C:\WINDOWS\system32\Drivers\HTTP.sys
2004/02/19 23:49:00.0843 i8042prt (a09bdc4ed10e3b2e0ec27bb94af32516) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
2004/02/19 23:49:00.0968 ialm (d4405bd2b6e95efdc8e674ed4032874f) C:\WINDOWS\system32\DRIVERS\ialmnt5.sys
2004/02/19 23:49:01.0171 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys
2004/02/19 23:49:01.0328 IntelIde (4b6da2f0a4095857a9e3f3697399d575) C:\WINDOWS\system32\DRIVERS\intelide.sys
2004/02/19 23:49:01.0406 intelppm (ad340800c35a42d4de1641a37feea34c) C:\WINDOWS\system32\DRIVERS\intelppm.sys
2004/02/19 23:49:01.0500 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\drivers\ip6fw.sys
2004/02/19 23:49:01.0578 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
2004/02/19 23:49:01.0640 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
2004/02/19 23:49:01.0781 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
2004/02/19 23:49:01.0843 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
2004/02/19 23:49:01.0921 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
2004/02/19 23:49:02.0015 isapnp (355836975a67b6554bca60328cd6cb74) C:\WINDOWS\system32\DRIVERS\isapnp.sys
2004/02/19 23:49:02.0125 Iviaspi (f59c3569a2f2c464bb78cb1bdcdca55e) C:\WINDOWS\system32\drivers\iviaspi.sys
2004/02/19 23:49:02.0218 Kbdclass (16813155807c6881f4bfbf6657424659) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
2004/02/19 23:49:02.0328 kbdhid (94c59cb884ba010c063687c3a50dce8e) C:\WINDOWS\system32\DRIVERS\kbdhid.sys
2004/02/19 23:49:02.0406 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys
2004/02/19 23:49:02.0500 KSecDD (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys
2004/02/19 23:49:02.0812 LVcKap (2d0ab9d29e6b0c42cce955b5a8e0d62d) C:\WINDOWS\system32\DRIVERS\LVcKap.sys
2004/02/19 23:49:03.0062 LVMVDrv (a3963e3d997c3646e1d3338eb88a48e9) C:\WINDOWS\system32\DRIVERS\LVMVDrv.sys
2004/02/19 23:49:03.0218 LVPr2Mon (39c767bd6d99c23d28e71b6e0cba3129) C:\WINDOWS\system32\drivers\LVPr2Mon.sys
2004/02/19 23:49:03.0375 LVUSBSta (be5e104be263921d6842c555db6a5c23) C:\WINDOWS\system32\drivers\LVUSBSta.sys
2004/02/19 23:49:03.0468 meiudf (63351a2b051dfc4e7bb41319c8c1ace4) C:\WINDOWS\system32\Drivers\meiudf.sys
2004/02/19 23:49:03.0578 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
2004/02/19 23:49:03.0687 Modem (94191851ec319bf3d77abe92475cfbf9) C:\WINDOWS\system32\drivers\Modem.sys
2004/02/19 23:49:04.0312 Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\Modem.sys. md5: 94191851ec319bf3d77abe92475cfbf9
2004/02/19 23:49:04.0328 Modem - detected Locked file (1)
2004/02/19 23:49:04.0484 Mouclass (027c01bd7ef3349aaebc883d8a799efb) C:\WINDOWS\system32\DRIVERS\mouclass.sys
2004/02/19 23:49:04.0593 mouhid (124d6846040c79b9c997f78ef4b2a4e5) C:\WINDOWS\system32\DRIVERS\mouhid.sys
2004/02/19 23:49:04.0859 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys
2004/02/19 23:49:04.0968 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
2004/02/19 23:49:05.0109 MRxSmb (ffe587dce37cc680cef6f4a0f85db37a) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
2004/02/19 23:49:05.0109 Suspicious file (Forged): C:\WINDOWS\system32\DRIVERS\mrxsmb.sys. Real md5: ffe587dce37cc680cef6f4a0f85db37a, Fake md5: 4e61bccad2c1aa2e3cbb62087684a309
2004/02/19 23:49:05.0156 MRxSmb - detected Forged file (1)
2004/02/19 23:49:05.0375 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
2004/02/19 23:49:05.0515 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys
2004/02/19 23:49:05.0578 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
2004/02/19 23:49:05.0718 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys
2004/02/19 23:49:05.0843 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
2004/02/19 23:49:05.0921 MSTEE (e53736a9e30c45fa9e7b5eac55056d1d) C:\WINDOWS\system32\drivers\MSTEE.sys
2004/02/19 23:49:06.0000 Mup (2f625d11385b1a94360bfc70aaefdee1) C:\WINDOWS\system32\drivers\Mup.sys
2004/02/19 23:49:06.0140 NABTSFEC (5b50f1b2a2ed47d560577b221da734db) C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
2004/02/19 23:49:06.0250 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys
2004/02/19 23:49:06.0328 NdisIP (7ff1f1fd8609c149aa432f95a8163d97) C:\WINDOWS\system32\DRIVERS\NdisIP.sys
2004/02/19 23:49:06.0390 NdisTapi (1ab3d00c991ab086e69db84b6c0ed78f) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
2004/02/19 23:49:06.0437 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
2004/02/19 23:49:06.0484 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
2004/02/19 23:49:06.0562 NDProxy (6215023940cfd3702b46abc304e1d45a) C:\WINDOWS\system32\drivers\NDProxy.sys
2004/02/19 23:49:06.0609 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys
2004/02/19 23:49:06.0703 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys
2004/02/19 23:49:06.0906 Netdevio (1265eb253ed4ebe4acb3bd5f548ff796) C:\WINDOWS\system32\DRIVERS\netdevio.sys
2004/02/19 23:49:07.0031 NIC1394 (e9e47cfb2d461fa0fc75b7a74c6383ea) C:\WINDOWS\system32\DRIVERS\nic1394.sys
2004/02/19 23:49:07.0125 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
2004/02/19 23:49:07.0203 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys
2004/02/19 23:49:07.0328 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
2004/02/19 23:49:07.0593 nv (6779625536ffc46f18cce797c327eb3e) C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
2004/02/19 23:49:07.0890 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
2004/02/19 23:49:07.0953 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
2004/02/19 23:49:08.0046 ohci1394 (ca33832df41afb202ee7aeb05145922f) C:\WINDOWS\system32\DRIVERS\ohci1394.sys
2004/02/19 23:49:08.0109 Parport (8fd0bdbea875d06ccf6c945ca9abaf75) C:\WINDOWS\system32\drivers\Parport.sys
2004/02/19 23:49:08.0156 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
2004/02/19 23:49:08.0234 ParVdm (9575c5630db8fb804649a6959737154c) C:\WINDOWS\system32\drivers\ParVdm.sys
2004/02/19 23:49:08.0296 PCI (043410877bda580c528f45165f7125bc) C:\WINDOWS\system32\DRIVERS\pci.sys
2004/02/19 23:49:08.0406 PCIIde (f4bfde7209c14a07aaa61e4d6ae69eac) C:\WINDOWS\system32\drivers\PCIIde.sys
2004/02/19 23:49:08.0562 Pcmcia (f0406cbc60bdb0394a0e17ffb04cdd3d) C:\WINDOWS\system32\DRIVERS\pcmcia.sys
2004/02/19 23:49:08.0890 pepifilter (0896002d1efcd08859a41c9db34ad84c) C:\WINDOWS\system32\DRIVERS\lv302af.sys
2004/02/19 23:49:09.0125 Pfc (444f122e68db44c0589227781f3c8b3f) C:\WINDOWS\system32\drivers\pfc.sys
2004/02/19 23:49:09.0281 PID_PEPI (a7598e897da639e255ad4188fa398478) C:\WINDOWS\system32\DRIVERS\LV302V32.SYS
2004/02/19 23:49:09.0531 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
2004/02/19 23:49:09.0625 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys
2004/02/19 23:49:09.0718 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
2004/02/19 23:49:09.0812 PxHelp20 (183ef96bcc2ec3d5294cb2c2c0ecbcd1) C:\WINDOWS\system32\Drivers\PxHelp20.sys
2004/02/19 23:49:10.0171 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
2004/02/19 23:49:10.0265 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
2004/02/19 23:49:10.0343 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
2004/02/19 23:49:10.0453 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
2004/02/19 23:49:10.0531 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys
2004/02/19 23:49:10.0656 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
2004/02/19 23:49:10.0750 RDPWD (6728e45b66f93c08f11de2e316fc70dd) C:\WINDOWS\system32\drivers\RDPWD.sys
2004/02/19 23:49:10.0859 redbook (d8eb2a7904db6c916eb5361878ddcbae) C:\WINDOWS\system32\DRIVERS\redbook.sys
2004/02/19 23:49:11.0062 rtl8139 (d507c1400284176573224903819ffda3) C:\WINDOWS\system32\DRIVERS\RTL8139.SYS
2004/02/19 23:49:11.0250 sdbus (8d04819a3ce51b9eb47e5689b44d43c4) C:\WINDOWS\system32\DRIVERS\sdbus.sys
2004/02/19 23:49:11.0328 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
2004/02/19 23:49:11.0468 Sentinel (8627c992b8a80504fc477b2e8ff8ec4f) C:\WINDOWS\System32\Drivers\SENTINEL.SYS
2004/02/19 23:49:11.0546 Serial (93d313c31f7ad9ea2b75f26075413c7c) C:\WINDOWS\system32\drivers\Serial.sys
2004/02/19 23:49:11.0640 SerTVOutCtlr (c996c839a3261cab5409c61e5702b620) C:\WINDOWS\system32\drivers\EPIOMngr.sys
2004/02/19 23:49:11.0796 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\DRIVERS\sfloppy.sys
2004/02/19 23:49:11.0921 SLIP (866d538ebe33709a5c9f5c62b73b7d14) C:\WINDOWS\system32\DRIVERS\SLIP.sys
2004/02/19 23:49:12.0015 Sntnlusb (87f799c486302aceff098e067d481d9c) C:\WINDOWS\system32\DRIVERS\SNTNLUSB.SYS
2004/02/19 23:49:12.0140 SONYPVU1 (a1eceeaa5c5e74b2499eb51d38185b84) C:\WINDOWS\system32\DRIVERS\SONYPVU1.SYS
2004/02/19 23:49:12.0296 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
2004/02/19 23:49:12.0421 sr (39626e6dc1fb39434ec40c42722b660a) C:\WINDOWS\system32\DRIVERS\sr.sys
2004/02/19 23:49:12.0531 Srv (da852e3e0bf1cea75d756f9866241e57) C:\WINDOWS\system32\DRIVERS\srv.sys
2004/02/19 23:49:12.0656 SrvcEKIOMngr (3b01a9316255cdd17f9c8e79aa573406) C:\WINDOWS\system32\Drivers\EKIoMngr.sys
2004/02/19 23:49:12.0703 SrvcSSIOMngr (79b7af340d55861df1d69e7bac975fcc) C:\WINDOWS\system32\Drivers\SSIoMngr.sys
2004/02/19 23:49:12.0781 sscdbhk5 (1cbd1b58a32de97899f5290b05f856db) C:\WINDOWS\system32\drivers\sscdbhk5.sys
2004/02/19 23:49:12.0890 ssmdrv (a36ee93698802cd899f98bfd553d8185) C:\WINDOWS\system32\DRIVERS\ssmdrv.sys
2004/02/19 23:49:13.0015 ssrtln (7fb07ac152d7a87e66204860002bd9a4) C:\WINDOWS\system32\drivers\ssrtln.sys
2004/02/19 23:49:13.0234 StillCam (3f669c9fc6411bdbc0155544aa876e46) C:\WINDOWS\system32\DRIVERS\serscan.sys
2004/02/19 23:49:13.0343 streamip (77813007ba6265c4b6098187e6ed79d2) C:\WINDOWS\system32\DRIVERS\StreamIP.sys
2004/02/19 23:49:13.0453 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys
2004/02/19 23:49:13.0546 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys
2004/02/19 23:49:13.0828 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys
2004/02/19 23:49:13.0968 TBiosDrv (1f26d86828039c0b594399f7f2ffef09) C:\WINDOWS\system32\Drivers\Tbiosdrv.sys
2004/02/19 23:49:14.0078 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys
2004/02/19 23:49:14.0250 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys
2004/02/19 23:49:14.0328 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys
2004/02/19 23:49:14.0375 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys
2004/02/19 23:49:14.0484 tfsnboio (2da3ca4022abb0802de7eeda574e78d6) C:\WINDOWS\system32\dla\tfsnboio.sys
2004/02/19 23:49:14.0562 tfsncofs (c8d6928759b77701c21dc90ad61197f2) C:\WINDOWS\system32\dla\tfsncofs.sys
2004/02/19 23:49:14.0593 tfsndrct (bacdef5510fa643683cddca418e49446) C:\WINDOWS\system32\dla\tfsndrct.sys
2004/02/19 23:49:14.0671 tfsndres (9cf2b32430c9bbd43ef1c3cae80940d3) C:\WINDOWS\system32\dla\tfsndres.sys
2004/02/19 23:49:14.0718 tfsnifs (6aef3ec0b64689536891a9b96e9d7b82) C:\WINDOWS\system32\dla\tfsnifs.sys
2004/02/19 23:49:14.0796 tfsnopio (7239873a72dd456f6e74e6987cdb9687) C:\WINDOWS\system32\dla\tfsnopio.sys
2004/02/19 23:49:14.0843 tfsnpool (b78631e3593ddd76a4a8ba7cb8e32302) C:\WINDOWS\system32\dla\tfsnpool.sys
2004/02/19 23:49:14.0921 tfsnudf (9e8b4abb93e5784fc4e5d3202566cc7a) C:\WINDOWS\system32\dla\tfsnudf.sys
2004/02/19 23:49:14.0984 tfsnudfa (056fa0a11ba4cd688e1e40e48ffee921) C:\WINDOWS\system32\dla\tfsnudfa.sys
2004/02/19 23:49:15.0171 TPwSav (542dd0c0d8a1aa428a8c8d1517edb679) C:\WINDOWS\system32\Drivers\TPwSav.sys
2004/02/19 23:49:15.0359 Tvs (7bc87d123f504d161693f672cfe99ec4) C:\WINDOWS\system32\DRIVERS\Tvs.sys
2004/02/19 23:49:15.0421 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys
2004/02/19 23:49:15.0546 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys
2004/02/19 23:49:15.0687 usbaudio (e919708db44ed8543a7c017953148330) C:\WINDOWS\system32\drivers\usbaudio.sys
2004/02/19 23:49:15.0765 usbccgp (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
2004/02/19 23:49:15.0843 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys
2004/02/19 23:49:15.0953 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys
2004/02/19 23:49:16.0046 usbprint (a717c8721046828520c9edf31288fc00) C:\WINDOWS\system32\DRIVERS\usbprint.sys
2004/02/19 23:49:16.0093 USBSTOR (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
2004/02/19 23:49:16.0156 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys
2004/02/19 23:49:16.0218 Suspicious service (NoAccess): vbma9c5c
2004/02/19 23:49:16.0281 vbma9c5c (ac078c5c3d5de6b760ed6dc1d938d221) C:\WINDOWS\system32\drivers\vbma9c5c.sys
2004/02/19 23:49:16.0906 Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\vbma9c5c.sys. md5: ac078c5c3d5de6b760ed6dc1d938d221
2004/02/19 23:49:16.0937 vbma9c5c - detected Locked service (1)
2004/02/19 23:49:17.0093 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys
2004/02/19 23:49:17.0203 VolSnap (46de1126684369bace4849e4fc8c43ca) C:\WINDOWS\system32\drivers\VolSnap.sys
2004/02/19 23:49:17.0468 w29n51 (c89da341fcc883a3d79dc11727484fc2) C:\WINDOWS\system32\DRIVERS\w29n51.sys
2004/02/19 23:49:17.0734 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys
2004/02/19 23:49:17.0828 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys
2004/02/19 23:49:18.0062 WS2IFSL (6abe6e225adb5a751622a9cc3bc19ce8) C:\WINDOWS\System32\drivers\ws2ifsl.sys
2004/02/19 23:49:18.0125 WSTCODEC (c98b39829c2bbd34e454150633c62c78) C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
2004/02/19 23:49:18.0234 WudfPf (f15feafffbb3644ccc80c5da584e6311) C:\WINDOWS\system32\DRIVERS\WudfPf.sys
2004/02/19 23:49:18.0390 ================================================================================
2004/02/19 23:49:18.0390 Scan finished
2004/02/19 23:49:18.0390 ================================================================================
2004/02/19 23:49:18.0437 Detected object count: 3
2004/02/19 23:50:04.0625 Modem (94191851ec319bf3d77abe92475cfbf9) C:\WINDOWS\system32\drivers\Modem.sys
2004/02/19 23:50:05.0265 Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\Modem.sys. md5: 94191851ec319bf3d77abe92475cfbf9
2004/02/19 23:50:05.0265 C:\WINDOWS\system32\drivers\Modem.sys - quarantined
2004/02/19 23:50:05.0265 Locked file(Modem) - User select action: Quarantine
2004/02/19 23:50:05.0421 MRxSmb (ffe587dce37cc680cef6f4a0f85db37a) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
2004/02/19 23:50:05.0421 Suspicious file (Forged): C:\WINDOWS\system32\DRIVERS\mrxsmb.sys. Real md5: ffe587dce37cc680cef6f4a0f85db37a, Fake md5: 4e61bccad2c1aa2e3cbb62087684a309
2004/02/19 23:50:05.0468 C:\WINDOWS\system32\DRIVERS\mrxsmb.sys - quarantined
2004/02/19 23:50:05.0468 Forged file(MRxSmb) - User select action: Quarantine
2004/02/19 23:50:05.0609 vbma9c5c (ac078c5c3d5de6b760ed6dc1d938d221) C:\WINDOWS\system32\drivers\vbma9c5c.sys
2004/02/19 23:50:06.0218 Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\vbma9c5c.sys. md5: ac078c5c3d5de6b760ed6dc1d938d221
2004/02/19 23:50:06.0218 C:\WINDOWS\system32\drivers\vbma9c5c.sys - quarantined
2004/02/19 23:50:06.0218 Locked service(vbma9c5c) - User select action: Quarantine
2004/02/19
2004/02/19 23:48:46.0828 ================================================================================
2004/02/19 23:48:46.0828 SystemInfo:
2004/02/19 23:48:46.0828
2004/02/19 23:48:46.0828 OS Version: 5.1.2600 ServicePack: 3.0
2004/02/19 23:48:46.0843 Product type: Workstation
2004/02/19 23:48:46.0843 ComputerName: DANIELLESAVOIE
2004/02/19 23:48:46.0843 UserName: Danielle
2004/02/19 23:48:46.0843 Windows directory: C:\WINDOWS
2004/02/19 23:48:46.0843 System windows directory: C:\WINDOWS
2004/02/19 23:48:46.0843 Processor architecture: Intel x86
2004/02/19 23:48:46.0843 Number of processors: 1
2004/02/19 23:48:46.0843 Page size: 0x1000
2004/02/19 23:48:46.0843 Boot type: Normal boot
2004/02/19 23:48:46.0843 ================================================================================
2004/02/19 23:48:48.0453 Initialize success
2004/02/19 23:48:51.0921 ================================================================================
2004/02/19 23:48:51.0921 Scan started
2004/02/19 23:48:51.0921 Mode: Manual;
2004/02/19 23:48:51.0921 ================================================================================
2004/02/19 23:48:53.0203 ACPI (e5e6dbfc41ea8aad005cb9a57a96b43b) C:\WINDOWS\system32\DRIVERS\ACPI.sys
2004/02/19 23:48:53.0265 ACPIEC (e4abc1212b70bb03d35e60681c447210) C:\WINDOWS\system32\DRIVERS\ACPIEC.sys
2004/02/19 23:48:53.0406 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
2004/02/19 23:48:53.0500 AFD (7e775010ef291da96ad17ca4b17137d7) C:\WINDOWS\System32\drivers\afd.sys
2004/02/19 23:48:53.0656 AgereSoftModem (029e01cb2938bec5af31bf47b6af0159) C:\WINDOWS\system32\DRIVERS\AGRSM.sys
2004/02/19 23:48:54.0062 aksfridge (cb5a5079744a0535416d3a5e462c5efe) C:\WINDOWS\system32\drivers\aksfridge.sys
2004/02/19 23:48:54.0390 akshasp (1a27f5555448cc2d29d281b11f39177e) C:\WINDOWS\system32\DRIVERS\akshasp.sys
2004/02/19 23:48:54.0484 aksusb (b4ad9f5d78f27e0c6994e0cb05c60e21) C:\WINDOWS\system32\DRIVERS\aksusb.sys
2004/02/19 23:48:54.0703 ALCXWDM (95aa37bec6c72c277c2caeaee736dd2d) C:\WINDOWS\system32\drivers\ALCXWDM.SYS
2004/02/19 23:48:55.0125 ApfiltrService (3ed81e8b4709d13e5a38db2d8e792b28) C:\WINDOWS\system32\DRIVERS\Apfiltr.sys
2004/02/19 23:48:55.0234 Arp1394 (b5b8a80875c1dededa8b02765642c32f) C:\WINDOWS\system32\DRIVERS\arp1394.sys
2004/02/19 23:48:55.0484 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
2004/02/19 23:48:55.0546 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys
2004/02/19 23:48:55.0703 ati2mtag (2fbdfec8cd60cec3d55e615865333033) C:\WINDOWS\system32\DRIVERS\ati2mtag.sys
2004/02/19 23:48:55.0937 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
2004/02/19 23:48:56.0062 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
2004/02/19 23:48:56.0171 avgio (0b497c79824f8e1bf22fa6aacd3de3a0) C:\Program Files\Avira\AntiVir Desktop\avgio.sys
2004/02/19 23:48:56.0296 avgntflt (47b879406246ffdced59e18d331a0e7d) C:\WINDOWS\system32\DRIVERS\avgntflt.sys
2004/02/19 23:48:56.0437 avipbb (f1a946f63cbf2d6ac95c659244d9905a) C:\WINDOWS\system32\DRIVERS\avipbb.sys
2004/02/19 23:48:56.0515 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
2004/02/19 23:48:56.0843 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
2004/02/19 23:48:57.0000 CCDECODE (0be5aef125be881c4f854c554f2b025c) C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
2004/02/19 23:48:57.0140 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
2004/02/19 23:48:57.0203 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
2004/02/19 23:48:57.0265 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys
2004/02/19 23:48:57.0437 CmBatt (0f6c187d38d98f8df904589a5f94d411) C:\WINDOWS\system32\DRIVERS\CmBatt.sys
2004/02/19 23:48:57.0562 Compbatt (6e4c9f21f0fae8940661144f41b13203) C:\WINDOWS\system32\DRIVERS\compbatt.sys
2004/02/19 23:48:57.0921 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
2004/02/19 23:48:58.0062 dmboot (f5deadd42335fb33edca74ecb2f36cba) C:\WINDOWS\system32\drivers\dmboot.sys
2004/02/19 23:48:58.0234 dmio (5a7c47c9b3f9fb92a66410a7509f0c71) C:\WINDOWS\system32\drivers\dmio.sys
2004/02/19 23:48:58.0312 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
2004/02/19 23:48:58.0421 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
2004/02/19 23:48:58.0500 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
2004/02/19 23:48:58.0625 drvmcdb (f41619ae216b51d68dda163805eefaa9) C:\WINDOWS\system32\drivers\drvmcdb.sys
2004/02/19 23:48:58.0687 drvnddm (2ff629c1c443e25d0149b9dfb77e43a8) C:\WINDOWS\system32\drivers\drvnddm.sys
2004/02/19 23:48:58.0812 EMSCR (d3d0ef132eb8f7351e0f6e8072e26331) C:\WINDOWS\system32\DRIVERS\EMS7SK.sys
2004/02/19 23:48:58.0968 ESDCR (fcf25b9eb1876dbb3efe13baf37b7bf8) C:\WINDOWS\system32\DRIVERS\ESD7SK.sys
2004/02/19 23:48:59.0015 ESMCR (7cec9e3a81142ea0294f2abba0b0a846) C:\WINDOWS\system32\DRIVERS\ESM7SK.sys
2004/02/19 23:48:59.0125 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
2004/02/19 23:48:59.0250 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\drivers\Fdc.sys
2004/02/19 23:48:59.0328 Fips (31f923eb2170fc172c81abda0045d18c) C:\WINDOWS\system32\drivers\Fips.sys
2004/02/19 23:48:59.0375 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\drivers\Flpydisk.sys
2004/02/19 23:48:59.0468 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\drivers\fltmgr.sys
2004/02/19 23:48:59.0531 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
2004/02/19 23:48:59.0640 Ftdisk (a86859b77b908c18c2657f284aa29fe3) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
2004/02/19 23:48:59.0843 GEARAspiWDM (ab8a6a87d9d7255c3884d5b9541a6e80) C:\WINDOWS\system32\Drivers\GEARAspiWDM.sys
2004/02/19 23:48:59.0921 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
2004/02/19 23:49:00.0093 hardlock (9de9a7a19195c57ef38b4ee25422f2d7) C:\WINDOWS\system32\drivers\hardlock.sys
2004/02/19 23:49:00.0250 Haspnt (2dd25f060dc9f79b5cdf33d90ed93669) C:\WINDOWS\system32\drivers\Haspnt.sys
2004/02/19 23:49:00.0437 HidUsb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys
2004/02/19 23:49:00.0625 HTTP (f80a415ef82cd06ffaf0d971528ead38) C:\WINDOWS\system32\Drivers\HTTP.sys
2004/02/19 23:49:00.0843 i8042prt (a09bdc4ed10e3b2e0ec27bb94af32516) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
2004/02/19 23:49:00.0968 ialm (d4405bd2b6e95efdc8e674ed4032874f) C:\WINDOWS\system32\DRIVERS\ialmnt5.sys
2004/02/19 23:49:01.0171 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys
2004/02/19 23:49:01.0328 IntelIde (4b6da2f0a4095857a9e3f3697399d575) C:\WINDOWS\system32\DRIVERS\intelide.sys
2004/02/19 23:49:01.0406 intelppm (ad340800c35a42d4de1641a37feea34c) C:\WINDOWS\system32\DRIVERS\intelppm.sys
2004/02/19 23:49:01.0500 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\drivers\ip6fw.sys
2004/02/19 23:49:01.0578 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
2004/02/19 23:49:01.0640 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
2004/02/19 23:49:01.0781 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
2004/02/19 23:49:01.0843 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
2004/02/19 23:49:01.0921 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
2004/02/19 23:49:02.0015 isapnp (355836975a67b6554bca60328cd6cb74) C:\WINDOWS\system32\DRIVERS\isapnp.sys
2004/02/19 23:49:02.0125 Iviaspi (f59c3569a2f2c464bb78cb1bdcdca55e) C:\WINDOWS\system32\drivers\iviaspi.sys
2004/02/19 23:49:02.0218 Kbdclass (16813155807c6881f4bfbf6657424659) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
2004/02/19 23:49:02.0328 kbdhid (94c59cb884ba010c063687c3a50dce8e) C:\WINDOWS\system32\DRIVERS\kbdhid.sys
2004/02/19 23:49:02.0406 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys
2004/02/19 23:49:02.0500 KSecDD (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys
2004/02/19 23:49:02.0812 LVcKap (2d0ab9d29e6b0c42cce955b5a8e0d62d) C:\WINDOWS\system32\DRIVERS\LVcKap.sys
2004/02/19 23:49:03.0062 LVMVDrv (a3963e3d997c3646e1d3338eb88a48e9) C:\WINDOWS\system32\DRIVERS\LVMVDrv.sys
2004/02/19 23:49:03.0218 LVPr2Mon (39c767bd6d99c23d28e71b6e0cba3129) C:\WINDOWS\system32\drivers\LVPr2Mon.sys
2004/02/19 23:49:03.0375 LVUSBSta (be5e104be263921d6842c555db6a5c23) C:\WINDOWS\system32\drivers\LVUSBSta.sys
2004/02/19 23:49:03.0468 meiudf (63351a2b051dfc4e7bb41319c8c1ace4) C:\WINDOWS\system32\Drivers\meiudf.sys
2004/02/19 23:49:03.0578 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
2004/02/19 23:49:03.0687 Modem (94191851ec319bf3d77abe92475cfbf9) C:\WINDOWS\system32\drivers\Modem.sys
2004/02/19 23:49:04.0312 Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\Modem.sys. md5: 94191851ec319bf3d77abe92475cfbf9
2004/02/19 23:49:04.0328 Modem - detected Locked file (1)
2004/02/19 23:49:04.0484 Mouclass (027c01bd7ef3349aaebc883d8a799efb) C:\WINDOWS\system32\DRIVERS\mouclass.sys
2004/02/19 23:49:04.0593 mouhid (124d6846040c79b9c997f78ef4b2a4e5) C:\WINDOWS\system32\DRIVERS\mouhid.sys
2004/02/19 23:49:04.0859 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys
2004/02/19 23:49:04.0968 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
2004/02/19 23:49:05.0109 MRxSmb (ffe587dce37cc680cef6f4a0f85db37a) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
2004/02/19 23:49:05.0109 Suspicious file (Forged): C:\WINDOWS\system32\DRIVERS\mrxsmb.sys. Real md5: ffe587dce37cc680cef6f4a0f85db37a, Fake md5: 4e61bccad2c1aa2e3cbb62087684a309
2004/02/19 23:49:05.0156 MRxSmb - detected Forged file (1)
2004/02/19 23:49:05.0375 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
2004/02/19 23:49:05.0515 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys
2004/02/19 23:49:05.0578 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
2004/02/19 23:49:05.0718 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys
2004/02/19 23:49:05.0843 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
2004/02/19 23:49:05.0921 MSTEE (e53736a9e30c45fa9e7b5eac55056d1d) C:\WINDOWS\system32\drivers\MSTEE.sys
2004/02/19 23:49:06.0000 Mup (2f625d11385b1a94360bfc70aaefdee1) C:\WINDOWS\system32\drivers\Mup.sys
2004/02/19 23:49:06.0140 NABTSFEC (5b50f1b2a2ed47d560577b221da734db) C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
2004/02/19 23:49:06.0250 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys
2004/02/19 23:49:06.0328 NdisIP (7ff1f1fd8609c149aa432f95a8163d97) C:\WINDOWS\system32\DRIVERS\NdisIP.sys
2004/02/19 23:49:06.0390 NdisTapi (1ab3d00c991ab086e69db84b6c0ed78f) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
2004/02/19 23:49:06.0437 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
2004/02/19 23:49:06.0484 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
2004/02/19 23:49:06.0562 NDProxy (6215023940cfd3702b46abc304e1d45a) C:\WINDOWS\system32\drivers\NDProxy.sys
2004/02/19 23:49:06.0609 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys
2004/02/19 23:49:06.0703 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys
2004/02/19 23:49:06.0906 Netdevio (1265eb253ed4ebe4acb3bd5f548ff796) C:\WINDOWS\system32\DRIVERS\netdevio.sys
2004/02/19 23:49:07.0031 NIC1394 (e9e47cfb2d461fa0fc75b7a74c6383ea) C:\WINDOWS\system32\DRIVERS\nic1394.sys
2004/02/19 23:49:07.0125 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
2004/02/19 23:49:07.0203 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys
2004/02/19 23:49:07.0328 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
2004/02/19 23:49:07.0593 nv (6779625536ffc46f18cce797c327eb3e) C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
2004/02/19 23:49:07.0890 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
2004/02/19 23:49:07.0953 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
2004/02/19 23:49:08.0046 ohci1394 (ca33832df41afb202ee7aeb05145922f) C:\WINDOWS\system32\DRIVERS\ohci1394.sys
2004/02/19 23:49:08.0109 Parport (8fd0bdbea875d06ccf6c945ca9abaf75) C:\WINDOWS\system32\drivers\Parport.sys
2004/02/19 23:49:08.0156 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
2004/02/19 23:49:08.0234 ParVdm (9575c5630db8fb804649a6959737154c) C:\WINDOWS\system32\drivers\ParVdm.sys
2004/02/19 23:49:08.0296 PCI (043410877bda580c528f45165f7125bc) C:\WINDOWS\system32\DRIVERS\pci.sys
2004/02/19 23:49:08.0406 PCIIde (f4bfde7209c14a07aaa61e4d6ae69eac) C:\WINDOWS\system32\drivers\PCIIde.sys
2004/02/19 23:49:08.0562 Pcmcia (f0406cbc60bdb0394a0e17ffb04cdd3d) C:\WINDOWS\system32\DRIVERS\pcmcia.sys
2004/02/19 23:49:08.0890 pepifilter (0896002d1efcd08859a41c9db34ad84c) C:\WINDOWS\system32\DRIVERS\lv302af.sys
2004/02/19 23:49:09.0125 Pfc (444f122e68db44c0589227781f3c8b3f) C:\WINDOWS\system32\drivers\pfc.sys
2004/02/19 23:49:09.0281 PID_PEPI (a7598e897da639e255ad4188fa398478) C:\WINDOWS\system32\DRIVERS\LV302V32.SYS
2004/02/19 23:49:09.0531 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
2004/02/19 23:49:09.0625 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys
2004/02/19 23:49:09.0718 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
2004/02/19 23:49:09.0812 PxHelp20 (183ef96bcc2ec3d5294cb2c2c0ecbcd1) C:\WINDOWS\system32\Drivers\PxHelp20.sys
2004/02/19 23:49:10.0171 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
2004/02/19 23:49:10.0265 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
2004/02/19 23:49:10.0343 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
2004/02/19 23:49:10.0453 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
2004/02/19 23:49:10.0531 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys
2004/02/19 23:49:10.0656 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
2004/02/19 23:49:10.0750 RDPWD (6728e45b66f93c08f11de2e316fc70dd) C:\WINDOWS\system32\drivers\RDPWD.sys
2004/02/19 23:49:10.0859 redbook (d8eb2a7904db6c916eb5361878ddcbae) C:\WINDOWS\system32\DRIVERS\redbook.sys
2004/02/19 23:49:11.0062 rtl8139 (d507c1400284176573224903819ffda3) C:\WINDOWS\system32\DRIVERS\RTL8139.SYS
2004/02/19 23:49:11.0250 sdbus (8d04819a3ce51b9eb47e5689b44d43c4) C:\WINDOWS\system32\DRIVERS\sdbus.sys
2004/02/19 23:49:11.0328 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
2004/02/19 23:49:11.0468 Sentinel (8627c992b8a80504fc477b2e8ff8ec4f) C:\WINDOWS\System32\Drivers\SENTINEL.SYS
2004/02/19 23:49:11.0546 Serial (93d313c31f7ad9ea2b75f26075413c7c) C:\WINDOWS\system32\drivers\Serial.sys
2004/02/19 23:49:11.0640 SerTVOutCtlr (c996c839a3261cab5409c61e5702b620) C:\WINDOWS\system32\drivers\EPIOMngr.sys
2004/02/19 23:49:11.0796 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\DRIVERS\sfloppy.sys
2004/02/19 23:49:11.0921 SLIP (866d538ebe33709a5c9f5c62b73b7d14) C:\WINDOWS\system32\DRIVERS\SLIP.sys
2004/02/19 23:49:12.0015 Sntnlusb (87f799c486302aceff098e067d481d9c) C:\WINDOWS\system32\DRIVERS\SNTNLUSB.SYS
2004/02/19 23:49:12.0140 SONYPVU1 (a1eceeaa5c5e74b2499eb51d38185b84) C:\WINDOWS\system32\DRIVERS\SONYPVU1.SYS
2004/02/19 23:49:12.0296 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
2004/02/19 23:49:12.0421 sr (39626e6dc1fb39434ec40c42722b660a) C:\WINDOWS\system32\DRIVERS\sr.sys
2004/02/19 23:49:12.0531 Srv (da852e3e0bf1cea75d756f9866241e57) C:\WINDOWS\system32\DRIVERS\srv.sys
2004/02/19 23:49:12.0656 SrvcEKIOMngr (3b01a9316255cdd17f9c8e79aa573406) C:\WINDOWS\system32\Drivers\EKIoMngr.sys
2004/02/19 23:49:12.0703 SrvcSSIOMngr (79b7af340d55861df1d69e7bac975fcc) C:\WINDOWS\system32\Drivers\SSIoMngr.sys
2004/02/19 23:49:12.0781 sscdbhk5 (1cbd1b58a32de97899f5290b05f856db) C:\WINDOWS\system32\drivers\sscdbhk5.sys
2004/02/19 23:49:12.0890 ssmdrv (a36ee93698802cd899f98bfd553d8185) C:\WINDOWS\system32\DRIVERS\ssmdrv.sys
2004/02/19 23:49:13.0015 ssrtln (7fb07ac152d7a87e66204860002bd9a4) C:\WINDOWS\system32\drivers\ssrtln.sys
2004/02/19 23:49:13.0234 StillCam (3f669c9fc6411bdbc0155544aa876e46) C:\WINDOWS\system32\DRIVERS\serscan.sys
2004/02/19 23:49:13.0343 streamip (77813007ba6265c4b6098187e6ed79d2) C:\WINDOWS\system32\DRIVERS\StreamIP.sys
2004/02/19 23:49:13.0453 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys
2004/02/19 23:49:13.0546 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys
2004/02/19 23:49:13.0828 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys
2004/02/19 23:49:13.0968 TBiosDrv (1f26d86828039c0b594399f7f2ffef09) C:\WINDOWS\system32\Drivers\Tbiosdrv.sys
2004/02/19 23:49:14.0078 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys
2004/02/19 23:49:14.0250 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys
2004/02/19 23:49:14.0328 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys
2004/02/19 23:49:14.0375 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys
2004/02/19 23:49:14.0484 tfsnboio (2da3ca4022abb0802de7eeda574e78d6) C:\WINDOWS\system32\dla\tfsnboio.sys
2004/02/19 23:49:14.0562 tfsncofs (c8d6928759b77701c21dc90ad61197f2) C:\WINDOWS\system32\dla\tfsncofs.sys
2004/02/19 23:49:14.0593 tfsndrct (bacdef5510fa643683cddca418e49446) C:\WINDOWS\system32\dla\tfsndrct.sys
2004/02/19 23:49:14.0671 tfsndres (9cf2b32430c9bbd43ef1c3cae80940d3) C:\WINDOWS\system32\dla\tfsndres.sys
2004/02/19 23:49:14.0718 tfsnifs (6aef3ec0b64689536891a9b96e9d7b82) C:\WINDOWS\system32\dla\tfsnifs.sys
2004/02/19 23:49:14.0796 tfsnopio (7239873a72dd456f6e74e6987cdb9687) C:\WINDOWS\system32\dla\tfsnopio.sys
2004/02/19 23:49:14.0843 tfsnpool (b78631e3593ddd76a4a8ba7cb8e32302) C:\WINDOWS\system32\dla\tfsnpool.sys
2004/02/19 23:49:14.0921 tfsnudf (9e8b4abb93e5784fc4e5d3202566cc7a) C:\WINDOWS\system32\dla\tfsnudf.sys
2004/02/19 23:49:14.0984 tfsnudfa (056fa0a11ba4cd688e1e40e48ffee921) C:\WINDOWS\system32\dla\tfsnudfa.sys
2004/02/19 23:49:15.0171 TPwSav (542dd0c0d8a1aa428a8c8d1517edb679) C:\WINDOWS\system32\Drivers\TPwSav.sys
2004/02/19 23:49:15.0359 Tvs (7bc87d123f504d161693f672cfe99ec4) C:\WINDOWS\system32\DRIVERS\Tvs.sys
2004/02/19 23:49:15.0421 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys
2004/02/19 23:49:15.0546 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys
2004/02/19 23:49:15.0687 usbaudio (e919708db44ed8543a7c017953148330) C:\WINDOWS\system32\drivers\usbaudio.sys
2004/02/19 23:49:15.0765 usbccgp (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
2004/02/19 23:49:15.0843 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys
2004/02/19 23:49:15.0953 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys
2004/02/19 23:49:16.0046 usbprint (a717c8721046828520c9edf31288fc00) C:\WINDOWS\system32\DRIVERS\usbprint.sys
2004/02/19 23:49:16.0093 USBSTOR (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
2004/02/19 23:49:16.0156 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys
2004/02/19 23:49:16.0218 Suspicious service (NoAccess): vbma9c5c
2004/02/19 23:49:16.0281 vbma9c5c (ac078c5c3d5de6b760ed6dc1d938d221) C:\WINDOWS\system32\drivers\vbma9c5c.sys
2004/02/19 23:49:16.0906 Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\vbma9c5c.sys. md5: ac078c5c3d5de6b760ed6dc1d938d221
2004/02/19 23:49:16.0937 vbma9c5c - detected Locked service (1)
2004/02/19 23:49:17.0093 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys
2004/02/19 23:49:17.0203 VolSnap (46de1126684369bace4849e4fc8c43ca) C:\WINDOWS\system32\drivers\VolSnap.sys
2004/02/19 23:49:17.0468 w29n51 (c89da341fcc883a3d79dc11727484fc2) C:\WINDOWS\system32\DRIVERS\w29n51.sys
2004/02/19 23:49:17.0734 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys
2004/02/19 23:49:17.0828 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys
2004/02/19 23:49:18.0062 WS2IFSL (6abe6e225adb5a751622a9cc3bc19ce8) C:\WINDOWS\System32\drivers\ws2ifsl.sys
2004/02/19 23:49:18.0125 WSTCODEC (c98b39829c2bbd34e454150633c62c78) C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
2004/02/19 23:49:18.0234 WudfPf (f15feafffbb3644ccc80c5da584e6311) C:\WINDOWS\system32\DRIVERS\WudfPf.sys
2004/02/19 23:49:18.0390 ================================================================================
2004/02/19 23:49:18.0390 Scan finished
2004/02/19 23:49:18.0390 ================================================================================
2004/02/19 23:49:18.0437 Detected object count: 3
2004/02/19 23:50:04.0625 Modem (94191851ec319bf3d77abe92475cfbf9) C:\WINDOWS\system32\drivers\Modem.sys
2004/02/19 23:50:05.0265 Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\Modem.sys. md5: 94191851ec319bf3d77abe92475cfbf9
2004/02/19 23:50:05.0265 C:\WINDOWS\system32\drivers\Modem.sys - quarantined
2004/02/19 23:50:05.0265 Locked file(Modem) - User select action: Quarantine
2004/02/19 23:50:05.0421 MRxSmb (ffe587dce37cc680cef6f4a0f85db37a) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
2004/02/19 23:50:05.0421 Suspicious file (Forged): C:\WINDOWS\system32\DRIVERS\mrxsmb.sys. Real md5: ffe587dce37cc680cef6f4a0f85db37a, Fake md5: 4e61bccad2c1aa2e3cbb62087684a309
2004/02/19 23:50:05.0468 C:\WINDOWS\system32\DRIVERS\mrxsmb.sys - quarantined
2004/02/19 23:50:05.0468 Forged file(MRxSmb) - User select action: Quarantine
2004/02/19 23:50:05.0609 vbma9c5c (ac078c5c3d5de6b760ed6dc1d938d221) C:\WINDOWS\system32\drivers\vbma9c5c.sys
2004/02/19 23:50:06.0218 Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\vbma9c5c.sys. md5: ac078c5c3d5de6b760ed6dc1d938d221
2004/02/19 23:50:06.0218 C:\WINDOWS\system32\drivers\vbma9c5c.sys - quarantined
2004/02/19 23:50:06.0218 Locked service(vbma9c5c) - User select action: Quarantine
2004/02/19
Bonsoir
ce rapport n'est pas complet... poste-le en entier stp
ou utilise sendspace:
http://www.sendspace.com/
et poste le lien
ce rapport n'est pas complet... poste-le en entier stp
ou utilise sendspace:
http://www.sendspace.com/
et poste le lien
Sham_Rock a dit :
Bonsoirce rapport n'est pas complet... poste-le en entier stp
ou utilise sendspace:
http://www.sendspace.com/
et poste le lien
2004/02/19 23:48:46.0828 TDSS rootkit removing tool 2.4.1.2 Aug 16 2010 09:46:23
2004/02/19 23:48:46.0828 ================================================================================
2004/02/19 23:48:46.0828 SystemInfo:
2004/02/19 23:48:46.0828
2004/02/19 23:48:46.0828 OS Version: 5.1.2600 ServicePack: 3.0
2004/02/19 23:48:46.0843 Product type: Workstation
2004/02/19 23:48:46.0843 ComputerName: DANIELLESAVOIE
2004/02/19 23:48:46.0843 UserName: Danielle
2004/02/19 23:48:46.0843 Windows directory: C:\WINDOWS
2004/02/19 23:48:46.0843 System windows directory: C:\WINDOWS
2004/02/19 23:48:46.0843 Processor architecture: Intel x86
2004/02/19 23:48:46.0843 Number of processors: 1
2004/02/19 23:48:46.0843 Page size: 0x1000
2004/02/19 23:48:46.0843 Boot type: Normal boot
2004/02/19 23:48:46.0843 ================================================================================
2004/02/19 23:48:48.0453 Initialize success
2004/02/19 23:48:51.0921 ================================================================================
2004/02/19 23:48:51.0921 Scan started
2004/02/19 23:48:51.0921 Mode: Manual;
2004/02/19 23:48:51.0921 ================================================================================
2004/02/19 23:48:53.0203 ACPI (e5e6dbfc41ea8aad005cb9a57a96b43b) C:\WINDOWS\system32\DRIVERS\ACPI.sys
2004/02/19 23:48:53.0265 ACPIEC (e4abc1212b70bb03d35e60681c447210) C:\WINDOWS\system32\DRIVERS\ACPIEC.sys
2004/02/19 23:48:53.0406 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
2004/02/19 23:48:53.0500 AFD (7e775010ef291da96ad17ca4b17137d7) C:\WINDOWS\System32\drivers\afd.sys
2004/02/19 23:48:53.0656 AgereSoftModem (029e01cb2938bec5af31bf47b6af0159) C:\WINDOWS\system32\DRIVERS\AGRSM.sys
2004/02/19 23:48:54.0062 aksfridge (cb5a5079744a0535416d3a5e462c5efe) C:\WINDOWS\system32\drivers\aksfridge.sys
2004/02/19 23:48:54.0390 akshasp (1a27f5555448cc2d29d281b11f39177e) C:\WINDOWS\system32\DRIVERS\akshasp.sys
2004/02/19 23:48:54.0484 aksusb (b4ad9f5d78f27e0c6994e0cb05c60e21) C:\WINDOWS\system32\DRIVERS\aksusb.sys
2004/02/19 23:48:54.0703 ALCXWDM (95aa37bec6c72c277c2caeaee736dd2d) C:\WINDOWS\system32\drivers\ALCXWDM.SYS
2004/02/19 23:48:55.0125 ApfiltrService (3ed81e8b4709d13e5a38db2d8e792b28) C:\WINDOWS\system32\DRIVERS\Apfiltr.sys
2004/02/19 23:48:55.0234 Arp1394 (b5b8a80875c1dededa8b02765642c32f) C:\WINDOWS\system32\DRIVERS\arp1394.sys
2004/02/19 23:48:55.0484 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
2004/02/19 23:48:55.0546 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys
2004/02/19 23:48:55.0703 ati2mtag (2fbdfec8cd60cec3d55e615865333033) C:\WINDOWS\system32\DRIVERS\ati2mtag.sys
2004/02/19 23:48:55.0937 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
2004/02/19 23:48:56.0062 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
2004/02/19 23:48:56.0171 avgio (0b497c79824f8e1bf22fa6aacd3de3a0) C:\Program Files\Avira\AntiVir Desktop\avgio.sys
2004/02/19 23:48:56.0296 avgntflt (47b879406246ffdced59e18d331a0e7d) C:\WINDOWS\system32\DRIVERS\avgntflt.sys
2004/02/19 23:48:56.0437 avipbb (f1a946f63cbf2d6ac95c659244d9905a) C:\WINDOWS\system32\DRIVERS\avipbb.sys
2004/02/19 23:48:56.0515 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
2004/02/19 23:48:56.0843 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
2004/02/19 23:48:57.0000 CCDECODE (0be5aef125be881c4f854c554f2b025c) C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
2004/02/19 23:48:57.0140 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
2004/02/19 23:48:57.0203 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
2004/02/19 23:48:57.0265 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys
2004/02/19 23:48:57.0437 CmBatt (0f6c187d38d98f8df904589a5f94d411) C:\WINDOWS\system32\DRIVERS\CmBatt.sys
2004/02/19 23:48:57.0562 Compbatt (6e4c9f21f0fae8940661144f41b13203) C:\WINDOWS\system32\DRIVERS\compbatt.sys
2004/02/19 23:48:57.0921 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
2004/02/19 23:48:58.0062 dmboot (f5deadd42335fb33edca74ecb2f36cba) C:\WINDOWS\system32\drivers\dmboot.sys
2004/02/19 23:48:58.0234 dmio (5a7c47c9b3f9fb92a66410a7509f0c71) C:\WINDOWS\system32\drivers\dmio.sys
2004/02/19 23:48:58.0312 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
2004/02/19 23:48:58.0421 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
2004/02/19 23:48:58.0500 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
2004/02/19 23:48:58.0625 drvmcdb (f41619ae216b51d68dda163805eefaa9) C:\WINDOWS\system32\drivers\drvmcdb.sys
2004/02/19 23:48:58.0687 drvnddm (2ff629c1c443e25d0149b9dfb77e43a8) C:\WINDOWS\system32\drivers\drvnddm.sys
2004/02/19 23:48:58.0812 EMSCR (d3d0ef132eb8f7351e0f6e8072e26331) C:\WINDOWS\system32\DRIVERS\EMS7SK.sys
2004/02/19 23:48:58.0968 ESDCR (fcf25b9eb1876dbb3efe13baf37b7bf8) C:\WINDOWS\system32\DRIVERS\ESD7SK.sys
2004/02/19 23:48:59.0015 ESMCR (7cec9e3a81142ea0294f2abba0b0a846) C:\WINDOWS\system32\DRIVERS\ESM7SK.sys
2004/02/19 23:48:59.0125 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
2004/02/19 23:48:59.0250 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\drivers\Fdc.sys
2004/02/19 23:48:59.0328 Fips (31f923eb2170fc172c81abda0045d18c) C:\WINDOWS\system32\drivers\Fips.sys
2004/02/19 23:48:59.0375 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\drivers\Flpydisk.sys
2004/02/19 23:48:59.0468 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\drivers\fltmgr.sys
2004/02/19 23:48:59.0531 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
2004/02/19 23:48:59.0640 Ftdisk (a86859b77b908c18c2657f284aa29fe3) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
2004/02/19 23:48:59.0843 GEARAspiWDM (ab8a6a87d9d7255c3884d5b9541a6e80) C:\WINDOWS\system32\Drivers\GEARAspiWDM.sys
2004/02/19 23:48:59.0921 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
2004/02/19 23:49:00.0093 hardlock (9de9a7a19195c57ef38b4ee25422f2d7) C:\WINDOWS\system32\drivers\hardlock.sys
2004/02/19 23:49:00.0250 Haspnt (2dd25f060dc9f79b5cdf33d90ed93669) C:\WINDOWS\system32\drivers\Haspnt.sys
2004/02/19 23:49:00.0437 HidUsb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys
2004/02/19 23:49:00.0625 HTTP (f80a415ef82cd06ffaf0d971528ead38) C:\WINDOWS\system32\Drivers\HTTP.sys
2004/02/19 23:49:00.0843 i8042prt (a09bdc4ed10e3b2e0ec27bb94af32516) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
2004/02/19 23:49:00.0968 ialm (d4405bd2b6e95efdc8e674ed4032874f) C:\WINDOWS\system32\DRIVERS\ialmnt5.sys
2004/02/19 23:49:01.0171 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys
2004/02/19 23:49:01.0328 IntelIde (4b6da2f0a4095857a9e3f3697399d575) C:\WINDOWS\system32\DRIVERS\intelide.sys
2004/02/19 23:49:01.0406 intelppm (ad340800c35a42d4de1641a37feea34c) C:\WINDOWS\system32\DRIVERS\intelppm.sys
2004/02/19 23:49:01.0500 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\drivers\ip6fw.sys
2004/02/19 23:49:01.0578 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
2004/02/19 23:49:01.0640 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
2004/02/19 23:49:01.0781 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
2004/02/19 23:49:01.0843 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
2004/02/19 23:49:01.0921 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
2004/02/19 23:49:02.0015 isapnp (355836975a67b6554bca60328cd6cb74) C:\WINDOWS\system32\DRIVERS\isapnp.sys
2004/02/19 23:49:02.0125 Iviaspi (f59c3569a2f2c464bb78cb1bdcdca55e) C:\WINDOWS\system32\drivers\iviaspi.sys
2004/02/19 23:49:02.0218 Kbdclass (16813155807c6881f4bfbf6657424659) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
2004/02/19 23:49:02.0328 kbdhid (94c59cb884ba010c063687c3a50dce8e) C:\WINDOWS\system32\DRIVERS\kbdhid.sys
2004/02/19 23:49:02.0406 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys
2004/02/19 23:49:02.0500 KSecDD (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys
2004/02/19 23:49:02.0812 LVcKap (2d0ab9d29e6b0c42cce955b5a8e0d62d) C:\WINDOWS\system32\DRIVERS\LVcKap.sys
2004/02/19 23:49:03.0062 LVMVDrv (a3963e3d997c3646e1d3338eb88a48e9) C:\WINDOWS\system32\DRIVERS\LVMVDrv.sys
2004/02/19 23:49:03.0218 LVPr2Mon (39c767bd6d99c23d28e71b6e0cba3129) C:\WINDOWS\system32\drivers\LVPr2Mon.sys
2004/02/19 23:49:03.0375 LVUSBSta (be5e104be263921d6842c555db6a5c23) C:\WINDOWS\system32\drivers\LVUSBSta.sys
2004/02/19 23:49:03.0468 meiudf (63351a2b051dfc4e7bb41319c8c1ace4) C:\WINDOWS\system32\Drivers\meiudf.sys
2004/02/19 23:49:03.0578 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
2004/02/19 23:49:03.0687 Modem (94191851ec319bf3d77abe92475cfbf9) C:\WINDOWS\system32\drivers\Modem.sys
2004/02/19 23:49:04.0312 Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\Modem.sys. md5: 94191851ec319bf3d77abe92475cfbf9
2004/02/19 23:49:04.0328 Modem - detected Locked file (1)
2004/02/19 23:49:04.0484 Mouclass (027c01bd7ef3349aaebc883d8a799efb) C:\WINDOWS\system32\DRIVERS\mouclass.sys
2004/02/19 23:49:04.0593 mouhid (124d6846040c79b9c997f78ef4b2a4e5) C:\WINDOWS\system32\DRIVERS\mouhid.sys
2004/02/19 23:49:04.0859 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys
2004/02/19 23:49:04.0968 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
2004/02/19 23:49:05.0109 MRxSmb (ffe587dce37cc680cef6f4a0f85db37a) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
2004/02/19 23:49:05.0109 Suspicious file (Forged): C:\WINDOWS\system32\DRIVERS\mrxsmb.sys. Real md5: ffe587dce37cc680cef6f4a0f85db37a, Fake md5: 4e61bccad2c1aa2e3cbb62087684a309
2004/02/19 23:49:05.0156 MRxSmb - detected Forged file (1)
2004/02/19 23:49:05.0375 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
2004/02/19 23:49:05.0515 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys
2004/02/19 23:49:05.0578 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
2004/02/19 23:49:05.0718 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys
2004/02/19 23:49:05.0843 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
2004/02/19 23:49:05.0921 MSTEE (e53736a9e30c45fa9e7b5eac55056d1d) C:\WINDOWS\system32\drivers\MSTEE.sys
2004/02/19 23:49:06.0000 Mup (2f625d11385b1a94360bfc70aaefdee1) C:\WINDOWS\system32\drivers\Mup.sys
2004/02/19 23:49:06.0140 NABTSFEC (5b50f1b2a2ed47d560577b221da734db) C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
2004/02/19 23:49:06.0250 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys
2004/02/19 23:49:06.0328 NdisIP (7ff1f1fd8609c149aa432f95a8163d97) C:\WINDOWS\system32\DRIVERS\NdisIP.sys
2004/02/19 23:49:06.0390 NdisTapi (1ab3d00c991ab086e69db84b6c0ed78f) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
2004/02/19 23:49:06.0437 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
2004/02/19 23:49:06.0484 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
2004/02/19 23:49:06.0562 NDProxy (6215023940cfd3702b46abc304e1d45a) C:\WINDOWS\system32\drivers\NDProxy.sys
2004/02/19 23:49:06.0609 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys
2004/02/19 23:49:06.0703 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys
2004/02/19 23:49:06.0906 Netdevio (1265eb253ed4ebe4acb3bd5f548ff796) C:\WINDOWS\system32\DRIVERS\netdevio.sys
2004/02/19 23:49:07.0031 NIC1394 (e9e47cfb2d461fa0fc75b7a74c6383ea) C:\WINDOWS\system32\DRIVERS\nic1394.sys
2004/02/19 23:49:07.0125 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
2004/02/19 23:49:07.0203 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys
2004/02/19 23:49:07.0328 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
2004/02/19 23:49:07.0593 nv (6779625536ffc46f18cce797c327eb3e) C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
2004/02/19 23:49:07.0890 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
2004/02/19 23:49:07.0953 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
2004/02/19 23:49:08.0046 ohci1394 (ca33832df41afb202ee7aeb05145922f) C:\WINDOWS\system32\DRIVERS\ohci1394.sys
2004/02/19 23:49:08.0109 Parport (8fd0bdbea875d06ccf6c945ca9abaf75) C:\WINDOWS\system32\drivers\Parport.sys
2004/02/19 23:49:08.0156 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
2004/02/19 23:49:08.0234 ParVdm (9575c5630db8fb804649a6959737154c) C:\WINDOWS\system32\drivers\ParVdm.sys
2004/02/19 23:49:08.0296 PCI (043410877bda580c528f45165f7125bc) C:\WINDOWS\system32\DRIVERS\pci.sys
2004/02/19 23:49:08.0406 PCIIde (f4bfde7209c14a07aaa61e4d6ae69eac) C:\WINDOWS\system32\drivers\PCIIde.sys
2004/02/19 23:49:08.0562 Pcmcia (f0406cbc60bdb0394a0e17ffb04cdd3d) C:\WINDOWS\system32\DRIVERS\pcmcia.sys
2004/02/19 23:49:08.0890 pepifilter (0896002d1efcd08859a41c9db34ad84c) C:\WINDOWS\system32\DRIVERS\lv302af.sys
2004/02/19 23:49:09.0125 Pfc (444f122e68db44c0589227781f3c8b3f) C:\WINDOWS\system32\drivers\pfc.sys
2004/02/19 23:49:09.0281 PID_PEPI (a7598e897da639e255ad4188fa398478) C:\WINDOWS\system32\DRIVERS\LV302V32.SYS
2004/02/19 23:49:09.0531 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
2004/02/19 23:49:09.0625 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys
2004/02/19 23:49:09.0718 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
2004/02/19 23:49:09.0812 PxHelp20 (183ef96bcc2ec3d5294cb2c2c0ecbcd1) C:\WINDOWS\system32\Drivers\PxHelp20.sys
2004/02/19 23:49:10.0171 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
2004/02/19 23:49:10.0265 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
2004/02/19 23:49:10.0343 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
2004/02/19 23:49:10.0453 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
2004/02/19 23:49:10.0531 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys
2004/02/19 23:49:10.0656 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
2004/02/19 23:49:10.0750 RDPWD (6728e45b66f93c08f11de2e316fc70dd) C:\WINDOWS\system32\drivers\RDPWD.sys
2004/02/19 23:49:10.0859 redbook (d8eb2a7904db6c916eb5361878ddcbae) C:\WINDOWS\system32\DRIVERS\redbook.sys
2004/02/19 23:49:11.0062 rtl8139 (d507c1400284176573224903819ffda3) C:\WINDOWS\system32\DRIVERS\RTL8139.SYS
2004/02/19 23:49:11.0250 sdbus (8d04819a3ce51b9eb47e5689b44d43c4) C:\WINDOWS\system32\DRIVERS\sdbus.sys
2004/02/19 23:49:11.0328 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
2004/02/19 23:49:11.0468 Sentinel (8627c992b8a80504fc477b2e8ff8ec4f) C:\WINDOWS\System32\Drivers\SENTINEL.SYS
2004/02/19 23:49:11.0546 Serial (93d313c31f7ad9ea2b75f26075413c7c) C:\WINDOWS\system32\drivers\Serial.sys
2004/02/19 23:49:11.0640 SerTVOutCtlr (c996c839a3261cab5409c61e5702b620) C:\WINDOWS\system32\drivers\EPIOMngr.sys
2004/02/19 23:49:11.0796 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\DRIVERS\sfloppy.sys
2004/02/19 23:49:11.0921 SLIP (866d538ebe33709a5c9f5c62b73b7d14) C:\WINDOWS\system32\DRIVERS\SLIP.sys
2004/02/19 23:49:12.0015 Sntnlusb (87f799c486302aceff098e067d481d9c) C:\WINDOWS\system32\DRIVERS\SNTNLUSB.SYS
2004/02/19 23:49:12.0140 SONYPVU1 (a1eceeaa5c5e74b2499eb51d38185b84) C:\WINDOWS\system32\DRIVERS\SONYPVU1.SYS
2004/02/19 23:49:12.0296 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
2004/02/19 23:49:12.0421 sr (39626e6dc1fb39434ec40c42722b660a) C:\WINDOWS\system32\DRIVERS\sr.sys
2004/02/19 23:49:12.0531 Srv (da852e3e0bf1cea75d756f9866241e57) C:\WINDOWS\system32\DRIVERS\srv.sys
2004/02/19 23:49:12.0656 SrvcEKIOMngr (3b01a9316255cdd17f9c8e79aa573406) C:\WINDOWS\system32\Drivers\EKIoMngr.sys
2004/02/19 23:49:12.0703 SrvcSSIOMngr (79b7af340d55861df1d69e7bac975fcc) C:\WINDOWS\system32\Drivers\SSIoMngr.sys
2004/02/19 23:49:12.0781 sscdbhk5 (1cbd1b58a32de97899f5290b05f856db) C:\WINDOWS\system32\drivers\sscdbhk5.sys
2004/02/19 23:49:12.0890 ssmdrv (a36ee93698802cd899f98bfd553d8185) C:\WINDOWS\system32\DRIVERS\ssmdrv.sys
2004/02/19 23:49:13.0015 ssrtln (7fb07ac152d7a87e66204860002bd9a4) C:\WINDOWS\system32\drivers\ssrtln.sys
2004/02/19 23:49:13.0234 StillCam (3f669c9fc6411bdbc0155544aa876e46) C:\WINDOWS\system32\DRIVERS\serscan.sys
2004/02/19 23:49:13.0343 streamip (77813007ba6265c4b6098187e6ed79d2) C:\WINDOWS\system32\DRIVERS\StreamIP.sys
2004/02/19 23:49:13.0453 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys
2004/02/19 23:49:13.0546 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys
2004/02/19 23:49:13.0828 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys
2004/02/19 23:49:13.0968 TBiosDrv (1f26d86828039c0b594399f7f2ffef09) C:\WINDOWS\system32\Drivers\Tbiosdrv.sys
2004/02/19 23:49:14.0078 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys
2004/02/19 23:49:14.0250 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys
2004/02/19 23:49:14.0328 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys
2004/02/19 23:49:14.0375 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys
2004/02/19 23:49:14.0484 tfsnboio (2da3ca4022abb0802de7eeda574e78d6) C:\WINDOWS\system32\dla\tfsnboio.sys
2004/02/19 23:49:14.0562 tfsncofs (c8d6928759b77701c21dc90ad61197f2) C:\WINDOWS\system32\dla\tfsncofs.sys
2004/02/19 23:49:14.0593 tfsndrct (bacdef5510fa643683cddca418e49446) C:\WINDOWS\system32\dla\tfsndrct.sys
2004/02/19 23:49:14.0671 tfsndres (9cf2b32430c9bbd43ef1c3cae80940d3) C:\WINDOWS\system32\dla\tfsndres.sys
2004/02/19 23:49:14.0718 tfsnifs (6aef3ec0b64689536891a9b96e9d7b82) C:\WINDOWS\system32\dla\tfsnifs.sys
2004/02/19 23:49:14.0796 tfsnopio (7239873a72dd456f6e74e6987cdb9687) C:\WINDOWS\system32\dla\tfsnopio.sys
2004/02/19 23:49:14.0843 tfsnpool (b78631e3593ddd76a4a8ba7cb8e32302) C:\WINDOWS\system32\dla\tfsnpool.sys
2004/02/19 23:49:14.0921 tfsnudf (9e8b4abb93e5784fc4e5d3202566cc7a) C:\WINDOWS\system32\dla\tfsnudf.sys
2004/02/19 23:49:14.0984 tfsnudfa (056fa0a11ba4cd688e1e40e48ffee921) C:\WINDOWS\system32\dla\tfsnudfa.sys
2004/02/19 23:49:15.0171 TPwSav (542dd0c0d8a1aa428a8c8d1517edb679) C:\WINDOWS\system32\Drivers\TPwSav.sys
2004/02/19 23:49:15.0359 Tvs (7bc87d123f504d161693f672cfe99ec4) C:\WINDOWS\system32\DRIVERS\Tvs.sys
2004/02/19 23:49:15.0421 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys
2004/02/19 23:49:15.0546 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys
2004/02/19 23:49:15.0687 usbaudio (e919708db44ed8543a7c017953148330) C:\WINDOWS\system32\drivers\usbaudio.sys
2004/02/19 23:49:15.0765 usbccgp (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
2004/02/19 23:49:15.0843 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys
2004/02/19 23:49:15.0953 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys
2004/02/19 23:49:16.0046 usbprint (a717c8721046828520c9edf31288fc00) C:\WINDOWS\system32\DRIVERS\usbprint.sys
2004/02/19 23:49:16.0093 USBSTOR (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
2004/02/19 23:49:16.0156 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys
2004/02/19 23:49:16.0218 Suspicious service (NoAccess): vbma9c5c
2004/02/19 23:49:16.0281 vbma9c5c (ac078c5c3d5de6b760ed6dc1d938d221) C:\WINDOWS\system32\drivers\vbma9c5c.sys
2004/02/19 23:49:16.0906 Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\vbma9c5c.sys. md5: ac078c5c3d5de6b760ed6dc1d938d221
2004/02/19 23:49:16.0937 vbma9c5c - detected Locked service (1)
2004/02/19 23:49:17.0093 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys
2004/02/19 23:49:17.0203 VolSnap (46de1126684369bace4849e4fc8c43ca) C:\WINDOWS\system32\drivers\VolSnap.sys
2004/02/19 23:49:17.0468 w29n51 (c89da341fcc883a3d79dc11727484fc2) C:\WINDOWS\system32\DRIVERS\w29n51.sys
2004/02/19 23:49:17.0734 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys
2004/02/19 23:49:17.0828 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys
2004/02/19 23:49:18.0062 WS2IFSL (6abe6e225adb5a751622a9cc3bc19ce8) C:\WINDOWS\System32\drivers\ws2ifsl.sys
2004/02/19 23:49:18.0125 WSTCODEC (c98b39829c2bbd34e454150633c62c78) C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
2004/02/19 23:49:18.0234 WudfPf (f15feafffbb3644ccc80c5da584e6311) C:\WINDOWS\system32\DRIVERS\WudfPf.sys
2004/02/19 23:49:18.0390 ================================================================================
2004/02/19 23:49:18.0390 Scan finished
2004/02/19 23:49:18.0390 ================================================================================
2004/02/19 23:49:18.0437 Detected object count: 3
2004/02/19 23:50:04.0625 Modem (94191851ec319bf3d77abe92475cfbf9) C:\WINDOWS\system32\drivers\Modem.sys
2004/02/19 23:50:05.0265 Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\Modem.sys. md5: 94191851ec319bf3d77abe92475cfbf9
2004/02/19 23:50:05.0265 C:\WINDOWS\system32\drivers\Modem.sys - quarantined
2004/02/19 23:50:05.0265 Locked file(Modem) - User select action: Quarantine
2004/02/19 23:50:05.0421 MRxSmb (ffe587dce37cc680cef6f4a0f85db37a) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
2004/02/19 23:50:05.0421 Suspicious file (Forged): C:\WINDOWS\system32\DRIVERS\mrxsmb.sys. Real md5: ffe587dce37cc680cef6f4a0f85db37a, Fake md5: 4e61bccad2c1aa2e3cbb62087684a309
2004/02/19 23:50:05.0468 C:\WINDOWS\system32\DRIVERS\mrxsmb.sys - quarantined
2004/02/19 23:50:05.0468 Forged file(MRxSmb) - User select action: Quarantine
2004/02/19 23:50:05.0609 vbma9c5c (ac078c5c3d5de6b760ed6dc1d938d221) C:\WINDOWS\system32\drivers\vbma9c5c.sys
2004/02/19 23:50:06.0218 Suspicious file (NoAccess): C:\WINDOWS\system32\drivers\vbma9c5c.sys. md5: ac078c5c3d5de6b760ed6dc1d938d221
2004/02/19 23:50:06.0218 C:\WINDOWS\system32\drivers\vbma9c5c.sys - quarantined
2004/02/19 23:50:06.0218 Locked service(vbma9c5c) - User select action: Quarantine
2004/02/19 23:53:13.0656 Deinitialize success
re
tu fais la moitié de ce que je demande...
![]()
relis:![]()
http://www.infos-du-net.com/forum/296925-11-virus-rootk...
J'attends tes rapports... et un bonjour + une phrase pour dire comment se comporte ton pc.![:o]( ":o")
tu fais la moitié de ce que je demande...
relis:http://www.infos-du-net.com/forum/296925-11-virus-rootk...
J'attends tes rapports... et un bonjour + une phrase pour dire comment se comporte ton pc.
Sham_Rock a dit :
retu fais la moitié de ce que je demande...
http://i263.photobucket.com/albums/ii126/Sham_Rock1/loupiote.gifrelis:http://i263.photobucket.com/albums/ii126/Sham_Rock1/loupiote.gif
http://www.infos-du-net.com/forum/296925-11-virus-rootk...
J'attends tes rapports... et un bonjour + une phrase pour dire comment se comporte ton pc.
...........................................
bonjour je ne peux terminer le dds et le dds.scr mon ordi gel au 3/4 du scan
mais le virus semble tjrs etre la amts
Bonsoir
On change d'outil...
Désactive ton antivirus et tout autre type de protection.
Télécharge ComboFix de sUBs :![]()
Combofix
Sauvegarde-le sur ton bureau et pas ailleurs!
Double-clic sur ComboFix, Il va te poser une question, suis les invites puis attends que combofix ait terminé, il est possible que ton PC reboot, c’est normal, un rapport sera créé.Poste le rapport:C:\Combofix.txt
clique dessus pour l'ouvrir, puis édition "sélectionner tout", édition "copier"
viens sur le forum et édition "coller"
AIDE : Un guide et un tutoriel sur l'utilisation de ComboFix
* le nom de la partition peut changer
<@_@>
On change d'outil...
Désactive ton antivirus et tout autre type de protection.
Télécharge ComboFix de sUBs :
Combofix Sauvegarde-le sur ton bureau et pas ailleurs!
Double-clic sur ComboFix, Il va te poser une question, suis les invites puis attends que combofix ait terminé, il est possible que ton PC reboot, c’est normal, un rapport sera créé.Poste le rapport:C:\Combofix.txt
clique dessus pour l'ouvrir, puis édition "sélectionner tout", édition "copier"
viens sur le forum et édition "coller"
AIDE : Un guide et un tutoriel sur l'utilisation de ComboFix
* le nom de la partition peut changer
<@_@>
Lassé par la pub ? Créez un compte
- Contenus similaires :
- ForumSupprimer tr rootkit .gen que faire
- ForumVirus tr vundo.gen trouve avec antivir
- ForumVirus tr dropper gen ecran bleu
- ForumVirus tr trash.gen trouve par antivir
- ForumTr rootkit
- ForumTr rootkit sur dossier system32 drivers
- ForumVirus tr agent.iob win32 trojan-gen
- ForumWin 32 rootkit gen virus comment faire
- ForumVirus rootkit gen trojent agent
- ForumVirus detecte win32 rootkit gen rtk
- Voir plus
