Supprimer Security Shield...

Résolu
Clem777 Messages postés 25 Date d'inscription   Statut Membre Dernière intervention   -  
 Utilisateur anonyme -
Bonjour, après avoir suivi les étapes préconosinées pour d'autres personnes (à savoir télécharger ZHPdiag, placer le fichier texte sur http://www.cijoint.fr/index.php mon lien est :

http://www.cijoint.fr/cjlink.php?file=cj201105/cijsHYy0aq.txt

Après je ne sais pas ce qu'il faut faire. Pouvez vous m'aider?
Merci d'avance
A voir également:

48 réponses

Réponse 1 / 48
Utilisateur anonyme
 
option 2 de cet outil

https://www.luanagames.com/index.fr.html
1
Réponse 2 / 48
Utilisateur anonyme
 
salut

desactive tes protections puis enregistre ceci sur ton bureau

Pre_Scan

Avertissement: Il y aura une extinction courte du bureau --> pas de panique.

une fois telechargé lance-le , laisse faire le scan puis colle le contenu de "Pre_scan.txt" qui apparaitra à son terme , sur le bureau.

si l'outil detecte un proxy et que tu n'en as pas installé clique sur "supprimer le proxy"

si l'outil semble ne pas avoir fonctionné clique plusieurs fois très rapidement dessus ou renomme-le winlogon , ou change son extension en .com ou .scr
0
Réponse 3 / 48
Clem777 Messages postés 25 Date d'inscription   Statut Membre Dernière intervention  
 
Le "Pre_scan.txt" s'est directement mis sur le bureau après le scan. Rien n'est apparue de plus.
0
Réponse 4 / 48
Utilisateur anonyme
 
ben je veux bien lire le contenu ^^
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 5 / 48
Clem777 Messages postés 25 Date d'inscription   Statut Membre Dernière intervention  
 
¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Pre_Scan 1.0.0.43 ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

¤¤¤¤¤ XP | Vista | Seven - 32/64 ¤¤¤¤¤

Mis à jour le 01/05/2011 | 23.30 par g3n-h@ckm@n
Utilisateur : Clément (Administrateurs)
Ordinateur : CLÉMENT-VAIO

Système d'exploitation : Windows 7 Professional (64 bits)
Internet Explorer : 8.0.7600.16385
Mozilla Firefox :

Scan : 19:01:41 | 02/05/2011

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

[HKCU\..\..\Winlogon] | Shell -> Modification apportée : -> explorer.exe

¤

[HKLM\..\..\Winlogon] | Shell -> Aucune modification : explorer.exe -> explorer.exe
[HKLM\..\..\Winlogon] | AutoRestartShell -> Modification apportée : -> 1
[HKLM\..\..\Winlogon] | userinit -> Modification apportée : userinit.exe -> C:\Windows\SysWOW64\userinit.exe,
[HKLM\..\..\Winlogon] | PowerDownAfterShutdown -> Modification apportée : -> 1
[HKLM\..\..\Winlogon] | System -> Aucune modification : ->

¤¤¤¤¤¤¤¤¤¤ Associations

[.exe] : exefile
[exefile | command] : "%1" %*
[.com] : comfile
[comfile | command] : "%1" %*
[.reg] : regfile
[regfile | command] : regedit.exe "%1"
[.scr] : scrfile
[scrfile | command] : "%1" /S
[.bat] : batfile
[batfile | command] : "%1" %*
[.cmd] : cmdfile
[cmdfile | command] : "%1" %*
[.pif] : piffile
[piffile | command] : "%1" %*

¤

[IE | Command] | @ -> Modification apportée : C:\Program Files (x86)\Internet Explorer\iexplore.exe -> "C:\Program Files (x86)\Internet Explorer\iexplore.exe"
[Applications | IE | Command] | @ -> Aucune modification : "C:\Program Files (x86)\Internet Explorer\iexplore.exe" %1 -> "C:\Program Files (x86)\Internet Explorer\iexplore.exe" %1
[Chrome | Command] | @ -> Aucune modification : "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" -> "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"

¤

[Assoc | Applications] | @ -> Modification apportée : http://go.microsoft.com/fwlink/?LinkId=57426&Ext=%s -> http://shell.windows.com/fileassoc/%04x/xml/redir.asp?Ext=%s

¤


¤¤¤¤¤¤¤¤¤¤ Associations

[.exe] : exefile
[exefile | command] : "%1" %*
[.com] : comfile
[comfile | command] : "%1" %*
[.reg] : regfile
[regfile | command] : regedit.exe "%1"
[.scr] : scrfile
[scrfile | command] : "%1" /S
[.bat] : batfile
[batfile | command] : "%1" %*
[.cmd] : cmdfile
[cmdfile | command] : "%1" %*
[.pif] : piffile
[piffile | command] : "%1" %*

¤

[IE | Command] | @ -> Aucune modification : "C:\Program Files (x86)\Internet Explorer\iexplore.exe" -> "C:\Program Files (x86)\Internet Explorer\iexplore.exe"
[Applications | IE | Command] | @ -> Aucune modification : "C:\Program Files (x86)\Internet Explorer\iexplore.exe" %1 -> "C:\Program Files (x86)\Internet Explorer\iexplore.exe" %1
[Chrome | Command] | @ -> Aucune modification : "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" -> "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"

¤

[Assoc | Applications] | @ -> Aucune modification : http://shell.windows.com/fileassoc/%04x/xml/redir.asp?Ext=%s -> http://shell.windows.com/fileassoc/%04x/xml/redir.asp?Ext=%s

¤


¤¤¤¤¤¤¤¤¤¤ Services

[Ndisuio] | Start -> Aucune modification : 3 -> 3
[lmhosts] | Start -> Aucune modification : 2 -> 2 : Service Actif
[LanmanWorkstation] | Start -> Aucune modification : 2 -> 2 : Service Actif
[LanmanServer] | Start -> Aucune modification : 2 -> 2 : Service Actif
[agp440] | Start -> Modification apportée : 3 -> 2 : Service Redemarré
[AudioEndpointBuilder] | Start -> Aucune modification : 2 -> 2 : Service Actif
[Audiosrv] | Start -> Aucune modification : 2 -> 2 : Service Actif
[BFE] | Start -> Aucune modification : 2 -> 2 : Service Actif
[Bits] | Start -> Aucune modification : 2 -> 2 : Service Actif
[CryptSvc] | Start -> Aucune modification : 2 -> 2 : Service Actif
[EapHost] | Start -> Modification apportée : 3 -> 2 : Service Actif
[Wlansvc] | Start -> Aucune modification : 2 -> 2 : Service Actif
[SharedAccess] | Start -> Modification apportée : 3 -> 2 : Service Redemarré
[windefend] | Start -> Modification apportée : 3 -> 2 : Service Redemarré
[wuauserv] | Start -> Aucune modification : 2 -> 2 : Service Actif
[WerSvc] | Start -> Modification apportée : 3 -> 2 : Service Redemarré
[wscsvc] | Start -> Aucune modification : 2 -> 2 : Service Actif

¤¤¤¤¤¤¤¤¤¤ Internet Explorer

[HKCU | Main] | Start Page -> Aucune Modification : https://www.google.com/?gws_rd=ssl -> https://www.google.com/?gws_rd=ssl
[HKCU | Main] | Local Page -> Modification apportée : C:\Windows\system32\blank.htm -> C:\Windows\SysWOW64\blank.htm
[HKCU | Main] | Search Page -> Modification apportée : https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF -> http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch

[HKLM | Main] | Start Page -> Aucune Modification : https://www.msn.com/fr-fr/?ocid=iehp -> https://www.msn.com/fr-fr/?ocid=iehp
[HKLM | Main] | Local Page -> Aucune Modification : C:\Windows\SysWOW64\blank.htm -> C:\Windows\SysWOW64\blank.htm
[HKLM | Main] | Default_Search_URL -> Aucune Modification : https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF -> https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
[HKLM | Main] | Default_Page_URL -> Aucune Modification : https://www.msn.com/fr-fr/?ocid=iehp -> https://www.msn.com/fr-fr/?ocid=iehp
[HKLM | Main] | Search Page -> Aucune Modification : https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF -> https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF

¤¤¤¤¤¤¤¤¤¤ Processus

C:\Users\Clément\AppData\Local\xskgqnjjl.exe -> Processus stoppé
C:\Windows\explorer.exe -> Processus stoppé

¤¤¤¤¤¤¤¤¤¤ Clés supprimées et Fichier mis en quarantaine


¤¤¤¤¤¤¤¤¤¤ IFEO


¤¤¤¤¤¤¤¤¤¤ Mountpoints2



¤¤¤¤¤¤¤¤¤¤ MBR

Windows Version: Windows 7 Professional
Windows Information: (build 7600), 64-bit
Base Board Manufacturer: Sony Corporation
BIOS Manufacturer: American Megatrends Inc.
System Manufacturer: Sony Corporation
System Product Name: VPCEB1E9J
Logical Drives Mask: 0x0000003c

Analysis of file "C:\MBR\MBR.bin":
Windows 7 MBR code detected

Disk: 0 Size=305G
Pos MBRndx Type/Name Size Active Hide Start Sector Sectors
--- ------ ---------- ---- ------ ---- ------------ ------------
0 0 27-UNKNWN 8.1G No No 2,048 16,570,368
1 1 07-NTFS 100M Yes No 16,572,416 204,800
2 2 07-NTFS 297G No No 16,777,216 608,363,184


¤¤¤

Fin : 19:10:47

¤¤¤¤¤¤¤¤¤¤( EOF )¤¤¤¤¤¤¤¤¤¤
0
Réponse 6 / 48
Utilisateur anonyme
 
Télécharge ici :OTL

enregistre le sur ton Bureau.

si tu as XP => double clique
si tu as Vista ou windows 7 => clic droit "executer en tant que...."

sur OTL.exe pour le lancer.

=> Configuration

▶Clic sur Analyse.

A la fin du scan, le Bloc-Notes va s'ouvrir avec le rapport (OTL.txt).

Ce fichier est sur ton Bureau (en général C:\Documents and settings\le_nom_de_ta_session\OTL.txt)

▶▶▶ NE LE POSTE PAS SUR LE FORUM (il est trop long)

Pour me le transmettre clique sur ce lien : http://www.cijoint.fr/

▶ Clique sur Parcourir et cherche le fichier ci-dessus.

▶ Clique sur Ouvrir.

▶ Clique sur "Cliquez ici pour déposer le fichier".

juste au niveau du bouton , en fin de chargement du fichier , Un lien de cette forme apparaitra :

http://www.cijoint.fr/cjlink.php?file=cjge368/cijSKAP5fU.txt

▶ Copie ce lien dans ta réponse.

▶▶ Tu feras la meme chose avec le "Extra.txt" qui logiquement sera aussi sur ton bureau.
0
Réponse 7 / 48
Clem777 Messages postés 25 Date d'inscription   Statut Membre Dernière intervention  
 
Une fois OTL enregistrer sur le bureau, "exécuter en tant que .." ne fonctionne pas. Je n'ai pas de fichier OTL.tkt.
0
Réponse 8 / 48
Utilisateur anonyme
 

/!\ ATTENTION SUIVRE A LA LETTRE CES INDICATIONS/!\

__________________________________________________________
>Ce logiciel n'est à utiliser que prescrit par un helper qualifié et formé à l'outil.<
>>>>>>>Ne pas utiliser en dehors de ce cas de figure : dangereux!<<<<<<<<
=====================================================

▶ Surtout , pense à l'enregistrement à renommer Combofix en "ton prenom.exe" avant qu'il soit enregistré sur ton disque dur

Telecharge ici : Combofix

Avant d'utiliser ComboFix :

Si tu utilises AVG, IL FAUT IMPERATIVEMENT LE DESINSTALLER avant d'utiliser Combofix car il peut causer des dégâts en interaction avec l'outil pouvant mener à la réinstallation totale du système.
La simple désactivation du résident n'est pas suffisante.
Télécharge le désinstalleur d'AVG sur ce lien : https://www.avg.com/fr-fr/avg-remover
Choisis la version adéquate (32 ou 64 bits)/!\

Les logiciels d'émulation de CD comme Daemon Tools peuvent gêner les outils de désinfection. Utilise Defogger pour les désactiver temporairement :

▶ Télécharge Defogger (de jpshortstuff) sur ton Bureau

▶ Lance le

Une fenêtre apparait : clique sur "Disable"

▶ Fais redémarrer l'ordinateur si l'outil te le demande

Note : Quand nous aurons terminé la désinfection, tu pourras réactiver ces logiciels en relançant Defogger et en cliquant sur "Re-enable"

_________________________________________________________
>> referme les fenêtres de tous les programmes en cours.
>> Désactive provisoirement et seulement le temps de l'utilisation de ComboFix,
>>la protection en temps réel de ton Antivirus et de tes Antispywares,
>>qui peuvent gêner fortement la procédure de recherche et de nettoyage de l'outil.
°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°

si tu as XP => double clique
si tu as Vista ou windows 7 => clic droit "executer en tant que...."

sur combofix renommé

¤¤¤¤¤¤¤¤¤¤ LAISSE-LE INSTALLER LA CONSOLE DE RECUPERATION S'IL TE LE DEMANDE ¤¤¤¤¤¤¤¤¤¤

▶ !!!!!NE TOUCHE A RIEN PENDANT LE TRAVAIL DE COMBOFIX (SOURIS/CLAVIER.....)!!!!!

▶ n'oublie pas de reactiver la garde de ton Antivirus et de tes Antispywares, avant de te reconnecter à internet.

▶▶ Reviens sur le forum, et copie et colle la totalité du contenu de C:\Combofix.txt dans ton prochain message.



0
Réponse 9 / 48
Clem777 Messages postés 25 Date d'inscription   Statut Membre Dernière intervention  
 
Je pense avoir fait tout exactement comme vous m'avez dit, au moment où je clique sur "executer en tant qu'administrateur", un chargement (combofix) commence met s'interrompt immédiatement et security shield s'ouvre..
Je crois pourtant avoir fait exactement ce que vous disiez.
0
Réponse 10 / 48
Clem777 Messages postés 25 Date d'inscription   Statut Membre Dernière intervention  
 
RogueKiller V5.1.0 [02/05/2011] par Tigzy
contact sur https://www.luanagames.com/index.fr.html
mail: tigzyRK<at>gmail<dot>com
Remontees: https://www.luanagames.com/index.fr.html

Systeme d'exploitation: Windows 7 (6.1.7600 ) 64 bits version
Demarrage : Mode normal
Utilisateur: Clément [Droits d'admin]
Mode: Suppression -- Date : 02/05/2011 21:04:59

Processus malicieux: 1
[APPDT/TMP/DESKTOP] xskgqnjjl.exe -- c:\users\clément\appdata\local\xskgqnjjl.exe -> KILLED

Entrees de registre: 3
[APPDT/TMP/DESKTOP] {FA64557E-444A-46CE-8571-A7691B337FA0}.job : c:\users\clément\desktop\photoshop illustrator\illustrator\patch adobe illustrator cs5.exe -> DELETED
[HJ] HKLM\[...]\System : ConsentPromptBehaviorAdmin (0) -> REPLACED (2)
[HJ] HKLM\[...]\System : EnableLUA (0) -> REPLACED (1)

Fichier HOSTS:


Termine : << RKreport[1].txt >>
RKreport[1].txt







C'est juste que je suis pas doué, ou c'est vraiment toujours aussi compliqué? Merci.
0
Réponse 11 / 48
Utilisateur anonyme
 
compliqué pourquoi ?

▶ Télécharge Reload_TDSSKiller

▶ Lance le

choisis : télécharger la derniere version

▶ relance-le

choisis : lancer le nettoyage

TDSSKiller va s'ouvrir , clique sur "Start Scan"

une fois qu'il a terminé , redemarre s'il te le demande pour finir de nettoyer

sinon , ferme tdssKiller et le rapport s'affichera sur le bureau

▶ Copie/Colle son contenu dans ta prochaine réponse.
0
Réponse 12 / 48
Clem777 Messages postés 25 Date d'inscription   Statut Membre Dernière intervention  
 
2011/05/02 21:24:19.0289 0368 TDSS rootkit removing tool 2.4.21.0 Mar 10 2011 12:26:28
2011/05/02 21:24:20.0194 0368 ================================================================================
2011/05/02 21:24:20.0194 0368 SystemInfo:
2011/05/02 21:24:20.0194 0368
2011/05/02 21:24:20.0194 0368 OS Version: 6.1.7600 ServicePack: 0.0
2011/05/02 21:24:20.0194 0368 Product type: Workstation
2011/05/02 21:24:20.0194 0368 ComputerName: CLÉMENT-VAIO
2011/05/02 21:24:20.0194 0368 UserName: Clément
2011/05/02 21:24:20.0194 0368 Windows directory: C:\Windows
2011/05/02 21:24:20.0194 0368 System windows directory: C:\Windows
2011/05/02 21:24:20.0194 0368 Running under WOW64
2011/05/02 21:24:20.0194 0368 Processor architecture: Intel x64
2011/05/02 21:24:20.0194 0368 Number of processors: 4
2011/05/02 21:24:20.0194 0368 Page size: 0x1000
2011/05/02 21:24:20.0194 0368 Boot type: Normal boot
2011/05/02 21:24:20.0194 0368 ================================================================================
2011/05/02 21:24:20.0880 0368 Initialize success
2011/05/02 21:24:22.0612 3320 ================================================================================
2011/05/02 21:24:22.0612 3320 Scan started
2011/05/02 21:24:22.0612 3320 Mode: Manual;
2011/05/02 21:24:22.0612 3320 ================================================================================
2011/05/02 21:24:23.0220 3320 1394ohci (1b00662092f9f9568b995902f0cc40d5) C:\Windows\system32\drivers\1394ohci.sys
2011/05/02 21:24:23.0361 3320 ACPI (6f11e88748cdefd2f76aa215f97ddfe5) C:\Windows\system32\drivers\ACPI.sys
2011/05/02 21:24:23.0470 3320 AcpiPmi (63b05a0420ce4bf0e4af6dcc7cada254) C:\Windows\system32\drivers\acpipmi.sys
2011/05/02 21:24:23.0626 3320 adfs (2f0683fd2df1d92e891caca14b45a8c1) C:\Windows\system32\drivers\adfs.sys
2011/05/02 21:24:23.0766 3320 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\drivers\adp94xx.sys
2011/05/02 21:24:23.0891 3320 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\drivers\adpahci.sys
2011/05/02 21:24:24.0000 3320 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\drivers\adpu320.sys
2011/05/02 21:24:24.0188 3320 AFD (b9384e03479d2506bc924c16a3db87bc) C:\Windows\system32\drivers\afd.sys
2011/05/02 21:24:24.0344 3320 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys
2011/05/02 21:24:24.0484 3320 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys
2011/05/02 21:24:24.0578 3320 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys
2011/05/02 21:24:24.0656 3320 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\drivers\amdk8.sys
2011/05/02 21:24:24.0687 3320 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\drivers\amdppm.sys
2011/05/02 21:24:24.0765 3320 amdsata (ec7ebab00a4d8448bab68d1e49b4beb9) C:\Windows\system32\drivers\amdsata.sys
2011/05/02 21:24:24.0874 3320 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\drivers\amdsbs.sys
2011/05/02 21:24:24.0952 3320 amdxata (db27766102c7bf7e95140a2aa81d042e) C:\Windows\system32\drivers\amdxata.sys
2011/05/02 21:24:25.0124 3320 ApfiltrService (1661f9c9e4b0049fa0a5e30264375a87) C:\Windows\system32\drivers\Apfiltr.sys
2011/05/02 21:24:25.0280 3320 AppID (42fd751b27fa0e9c69bb39f39e409594) C:\Windows\system32\drivers\appid.sys
2011/05/02 21:24:25.0451 3320 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\drivers\arc.sys
2011/05/02 21:24:25.0514 3320 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\drivers\arcsas.sys
2011/05/02 21:24:25.0592 3320 aswFsBlk (6923740db573b46fdda13e1df412c577) C:\Windows\system32\drivers\aswFsBlk.sys
2011/05/02 21:24:25.0810 3320 aswMonFlt (de001b988b58bfd453f667842655b22e) C:\Windows\system32\drivers\aswMonFlt.sys
2011/05/02 21:24:25.0857 3320 aswRdr (e0d1002d7fa65dd023788b17f714e682) C:\Windows\system32\drivers\aswRdr.sys
2011/05/02 21:24:25.0935 3320 aswSP (c3eafdc0f533425614430a112ba71e9a) C:\Windows\system32\drivers\aswSP.sys
2011/05/02 21:24:26.0106 3320 aswTdi (0226ffbc420d8fb67ba3b9dbdd1f2dca) C:\Windows\system32\drivers\aswTdi.sys
2011/05/02 21:24:26.0169 3320 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
2011/05/02 21:24:26.0372 3320 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys
2011/05/02 21:24:26.0543 3320 athr (0acc06fcf46f64ed4f11e57ee461c1f4) C:\Windows\system32\DRIVERS\athrx.sys
2011/05/02 21:24:26.0871 3320 atikmdag (89a3d56ce4044f35b9d08dd37193bbfc) C:\Windows\system32\DRIVERS\atikmdag.sys
2011/05/02 21:24:27.0245 3320 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\drivers\bxvbda.sys
2011/05/02 21:24:27.0323 3320 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
2011/05/02 21:24:27.0448 3320 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
2011/05/02 21:24:27.0589 3320 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\drivers\blbdrive.sys
2011/05/02 21:24:27.0745 3320 bowser (19d20159708e152267e53b66677a4995) C:\Windows\system32\DRIVERS\bowser.sys
2011/05/02 21:24:27.0854 3320 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\drivers\BrFiltLo.sys
2011/05/02 21:24:27.0916 3320 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\drivers\BrFiltUp.sys
2011/05/02 21:24:27.0994 3320 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
2011/05/02 21:24:28.0057 3320 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
2011/05/02 21:24:28.0119 3320 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
2011/05/02 21:24:28.0181 3320 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
2011/05/02 21:24:28.0259 3320 BthEnum (cf98190a94f62e405c8cb255018b2315) C:\Windows\system32\DRIVERS\BthEnum.sys
2011/05/02 21:24:28.0353 3320 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
2011/05/02 21:24:28.0462 3320 BthPan (02dd601b708dd0667e1331fa8518e9ff) C:\Windows\system32\DRIVERS\bthpan.sys
2011/05/02 21:24:28.0556 3320 BTHPORT (a51fa9d0e85d5adabef72e67f386309c) C:\Windows\system32\Drivers\BTHport.sys
2011/05/02 21:24:28.0712 3320 BTHUSB (f740b9a16b2c06700f2130e19986bf3b) C:\Windows\system32\Drivers\BTHUSB.sys
2011/05/02 21:24:28.0821 3320 btusbflt (6e04458e98daf28826482e41a7a62df5) C:\Windows\system32\drivers\btusbflt.sys
2011/05/02 21:24:28.0930 3320 btwaudio (4bdbdb86abba924e029fb2683be7c505) C:\Windows\system32\drivers\btwaudio.sys
2011/05/02 21:24:29.0024 3320 btwavdt (5c849bd7c78791c5cee9f4651d7fe38d) C:\Windows\system32\drivers\btwavdt.sys
2011/05/02 21:24:29.0071 3320 btwl2cap (6149301dc3f81d6f9667a3fbac410975) C:\Windows\system32\DRIVERS\btwl2cap.sys
2011/05/02 21:24:29.0164 3320 btwrchid (3e1991afa851a36dc978b0a1b0535c8b) C:\Windows\system32\DRIVERS\btwrchid.sys
2011/05/02 21:24:29.0195 3320 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
2011/05/02 21:24:29.0289 3320 cdrom (83d2d75e1efb81b3450c18131443f7db) C:\Windows\system32\DRIVERS\cdrom.sys
2011/05/02 21:24:29.0398 3320 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\drivers\circlass.sys
2011/05/02 21:24:29.0461 3320 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
2011/05/02 21:24:29.0585 3320 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\drivers\CmBatt.sys
2011/05/02 21:24:29.0663 3320 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys
2011/05/02 21:24:29.0726 3320 CNG (f95fd4cb7da00ba2a63ce9f6b5c053e1) C:\Windows\system32\Drivers\cng.sys
2011/05/02 21:24:29.0804 3320 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\drivers\compbatt.sys
2011/05/02 21:24:29.0897 3320 CompositeBus (f26b3a86f6fa87ca360b879581ab4123) C:\Windows\system32\drivers\CompositeBus.sys
2011/05/02 21:24:29.0960 3320 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\drivers\crcdisk.sys
2011/05/02 21:24:30.0038 3320 CSC (4a6173c2279b498cd8f57cae504564cb) C:\Windows\system32\drivers\csc.sys
2011/05/02 21:24:30.0131 3320 DfsC (3f1dc527070acb87e40afe46ef6da749) C:\Windows\system32\Drivers\dfsc.sys
2011/05/02 21:24:30.0163 3320 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
2011/05/02 21:24:30.0241 3320 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\drivers\disk.sys
2011/05/02 21:24:30.0303 3320 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
2011/05/02 21:24:30.0381 3320 DXGKrnl (1633b9abf52784a1331476397a48cbef) C:\Windows\System32\drivers\dxgkrnl.sys
2011/05/02 21:24:30.0506 3320 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\drivers\evbda.sys
2011/05/02 21:24:30.0693 3320 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\drivers\elxstor.sys
2011/05/02 21:24:30.0755 3320 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys
2011/05/02 21:24:31.0021 3320 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
2011/05/02 21:24:31.0052 3320 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
2011/05/02 21:24:31.0130 3320 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\drivers\fdc.sys
2011/05/02 21:24:31.0177 3320 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
2011/05/02 21:24:31.0208 3320 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
2011/05/02 21:24:31.0239 3320 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\drivers\flpydisk.sys
2011/05/02 21:24:31.0286 3320 FltMgr (f7866af72abbaf84b1fa5aa195378c59) C:\Windows\system32\drivers\fltmgr.sys
2011/05/02 21:24:31.0333 3320 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
2011/05/02 21:24:31.0411 3320 fssfltr (53dab1791917a72738539ad25c4eed7f) C:\Windows\system32\DRIVERS\fssfltr.sys
2011/05/02 21:24:31.0457 3320 Fs_Rec (e95ef8547de20cf0603557c0cf7a9462) C:\Windows\system32\drivers\Fs_Rec.sys
2011/05/02 21:24:31.0520 3320 fvevol (ae87ba80d0ec3b57126ed2cdc15b24ed) C:\Windows\system32\DRIVERS\fvevol.sys
2011/05/02 21:24:31.0582 3320 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\drivers\gagp30kx.sys
2011/05/02 21:24:31.0707 3320 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
2011/05/02 21:24:31.0769 3320 HdAudAddService (6410f6f415b2a5a9037224c41da8bf12) C:\Windows\system32\drivers\HdAudio.sys
2011/05/02 21:24:31.0832 3320 HDAudBus (0a49913402747a0b67de940fb42cbdbb) C:\Windows\system32\drivers\HDAudBus.sys
2011/05/02 21:24:31.0879 3320 HECIx64 (b6ac71aaa2b10848f57fc49d55a651af) C:\Windows\system32\drivers\HECIx64.sys
2011/05/02 21:24:31.0925 3320 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\drivers\HidBatt.sys
2011/05/02 21:24:31.0988 3320 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\drivers\hidbth.sys
2011/05/02 21:24:32.0019 3320 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\drivers\hidir.sys
2011/05/02 21:24:32.0097 3320 HidUsb (b3bf6b5b50006def50b66306d99fcf6f) C:\Windows\system32\DRIVERS\hidusb.sys
2011/05/02 21:24:32.0175 3320 HpSAMD (0886d440058f203eba0e1825e4355914) C:\Windows\system32\drivers\HpSAMD.sys
2011/05/02 21:24:32.0237 3320 HTTP (cee049cac4efa7f4e1e4ad014414a5d4) C:\Windows\system32\drivers\HTTP.sys
2011/05/02 21:24:32.0284 3320 hwpolicy (f17766a19145f111856378df337a5d79) C:\Windows\system32\drivers\hwpolicy.sys
2011/05/02 21:24:32.0378 3320 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\drivers\i8042prt.sys
2011/05/02 21:24:32.0425 3320 iaStor (073a606333b6f7bbf20aa856df7f0997) C:\Windows\system32\drivers\iaStor.sys
2011/05/02 21:24:32.0549 3320 iaStorV (b75e45c564e944a2657167d197ab29da) C:\Windows\system32\drivers\iaStorV.sys
2011/05/02 21:24:32.0815 3320 igfx (31d1aff484d8a0906cf8d44251ec390f) C:\Windows\system32\DRIVERS\igdkmd64.sys
2011/05/02 21:24:33.0095 3320 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\drivers\iirsp.sys
2011/05/02 21:24:33.0205 3320 Impcd (36fdf367a1dabff903e2214023d71368) C:\Windows\system32\drivers\Impcd.sys
2011/05/02 21:24:33.0376 3320 IntcAzAudAddService (0f144e5f46cb9043004b5e84aa4bca6a) C:\Windows\system32\drivers\RTKVHD64.sys
2011/05/02 21:24:33.0563 3320 IntcDAud (408b401cd7cdb075c7470b0ff7ba8d0b) C:\Windows\system32\DRIVERS\IntcDAud.sys
2011/05/02 21:24:33.0610 3320 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys
2011/05/02 21:24:33.0673 3320 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\drivers\intelppm.sys
2011/05/02 21:24:33.0719 3320 IpFilterDriver (722dd294df62483cecaae6e094b4d695) C:\Windows\system32\DRIVERS\ipfltdrv.sys
2011/05/02 21:24:33.0766 3320 IPMIDRV (e2b4a4494db7cb9b89b55ca268c337c5) C:\Windows\system32\drivers\IPMIDrv.sys
2011/05/02 21:24:33.0813 3320 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
2011/05/02 21:24:33.0860 3320 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
2011/05/02 21:24:33.0907 3320 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys
2011/05/02 21:24:33.0938 3320 iScsiPrt (fa4d2557de56d45b0a346f93564be6e1) C:\Windows\system32\drivers\msiscsi.sys
2011/05/02 21:24:34.0016 3320 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\drivers\kbdclass.sys
2011/05/02 21:24:34.0063 3320 kbdhid (6def98f8541e1b5dceb2c822a11f7323) C:\Windows\system32\drivers\kbdhid.sys
2011/05/02 21:24:34.0125 3320 KSecDD (e8b6fcc9c83535c67f835d407620bd27) C:\Windows\system32\Drivers\ksecdd.sys
2011/05/02 21:24:34.0172 3320 KSecPkg (a8c63880ef6f4d3fec7b616b9c060215) C:\Windows\system32\Drivers\ksecpkg.sys
2011/05/02 21:24:34.0203 3320 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
2011/05/02 21:24:34.0297 3320 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
2011/05/02 21:24:34.0406 3320 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\drivers\lsi_fc.sys
2011/05/02 21:24:34.0437 3320 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\drivers\lsi_sas.sys
2011/05/02 21:24:34.0484 3320 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\drivers\lsi_sas2.sys
2011/05/02 21:24:34.0531 3320 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\drivers\lsi_scsi.sys
2011/05/02 21:24:34.0562 3320 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
2011/05/02 21:24:34.0624 3320 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\drivers\megasas.sys
2011/05/02 21:24:34.0671 3320 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\drivers\MegaSR.sys
2011/05/02 21:24:34.0718 3320 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
2011/05/02 21:24:34.0765 3320 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
2011/05/02 21:24:34.0827 3320 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
2011/05/02 21:24:34.0905 3320 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
2011/05/02 21:24:34.0936 3320 mountmgr (791af66c4d0e7c90a3646066386fb571) C:\Windows\system32\drivers\mountmgr.sys
2011/05/02 21:24:35.0077 3320 MpFilter (c4d8c3031c7cd5884ca856b15307e997) C:\Windows\system32\DRIVERS\MpFilter.sys
2011/05/02 21:24:35.0123 3320 mpio (609d1d87649ecc19796f4d76d4c15cea) C:\Windows\system32\drivers\mpio.sys
2011/05/02 21:24:35.0170 3320 MpNWMon (a768f58c55d3f303e686a7646348aec3) C:\Windows\system32\DRIVERS\MpNWMon.sys
2011/05/02 21:24:35.0217 3320 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
2011/05/02 21:24:35.0264 3320 MRxDAV (30524261bb51d96d6fcbac20c810183c) C:\Windows\system32\drivers\mrxdav.sys
2011/05/02 21:24:35.0342 3320 mrxsmb (b7f3d2c40bdf8ffb73ebfb19c77734e2) C:\Windows\system32\DRIVERS\mrxsmb.sys
2011/05/02 21:24:35.0373 3320 mrxsmb10 (86c6f88b5168ce21cf8d69d0b3ff5d19) C:\Windows\system32\DRIVERS\mrxsmb10.sys
2011/05/02 21:24:35.0435 3320 mrxsmb20 (b081069251c8e9f42cb8769d07148f9c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
2011/05/02 21:24:35.0498 3320 msahci (5c37497276e3b3a5488b23a326a754b7) C:\Windows\system32\drivers\msahci.sys
2011/05/02 21:24:35.0560 3320 msdsm (8d27b597229aed79430fb9db3bcbfbd0) C:\Windows\system32\drivers\msdsm.sys
2011/05/02 21:24:35.0638 3320 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
2011/05/02 21:24:35.0685 3320 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
2011/05/02 21:24:35.0716 3320 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys
2011/05/02 21:24:35.0763 3320 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
2011/05/02 21:24:35.0825 3320 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
2011/05/02 21:24:35.0841 3320 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
2011/05/02 21:24:35.0903 3320 MsRPC (89cb141aa8616d8c6a4610fa26c60964) C:\Windows\system32\drivers\MsRPC.sys
2011/05/02 21:24:35.0950 3320 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\drivers\mssmbios.sys
2011/05/02 21:24:36.0013 3320 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
2011/05/02 21:24:36.0091 3320 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\drivers\MTConfig.sys
2011/05/02 21:24:36.0137 3320 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
2011/05/02 21:24:36.0215 3320 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
2011/05/02 21:24:36.0293 3320 NDIS (cad515dbd07d082bb317d9928ce8962c) C:\Windows\system32\drivers\ndis.sys
2011/05/02 21:24:36.0356 3320 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
2011/05/02 21:24:36.0418 3320 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
2011/05/02 21:24:36.0481 3320 Ndisuio (f105ba1e22bf1f2ee8f005d4305e4bec) C:\Windows\system32\DRIVERS\ndisuio.sys
2011/05/02 21:24:36.0512 3320 NdisWan (557dfab9ca1fcb036ac77564c010dad3) C:\Windows\system32\DRIVERS\ndiswan.sys
2011/05/02 21:24:36.0543 3320 NDProxy (659b74fb74b86228d6338d643cd3e3cf) C:\Windows\system32\drivers\NDProxy.sys
2011/05/02 21:24:36.0590 3320 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
2011/05/02 21:24:36.0637 3320 NetBT (9162b273a44ab9dce5b44362731d062a) C:\Windows\system32\DRIVERS\netbt.sys
2011/05/02 21:24:36.0730 3320 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\drivers\nfrd960.sys
2011/05/02 21:24:36.0777 3320 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
2011/05/02 21:24:36.0824 3320 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
2011/05/02 21:24:36.0933 3320 Ntfs (378e0e0dfea67d98ae6ea53adbbd76bc) C:\Windows\system32\drivers\Ntfs.sys
2011/05/02 21:24:37.0011 3320 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
2011/05/02 21:24:37.0058 3320 nvraid (a4d9c9a608a97f59307c2f2600edc6a4) C:\Windows\system32\drivers\nvraid.sys
2011/05/02 21:24:37.0105 3320 nvstor (6c1d5f70e7a6a3fd1c90d840edc048b9) C:\Windows\system32\drivers\nvstor.sys
2011/05/02 21:24:37.0167 3320 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys
2011/05/02 21:24:37.0229 3320 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys
2011/05/02 21:24:37.0292 3320 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\drivers\parport.sys
2011/05/02 21:24:37.0339 3320 partmgr (7daa117143316c4a1537e074a5a9eaf0) C:\Windows\system32\drivers\partmgr.sys
2011/05/02 21:24:37.0448 3320 pci (f36f6504009f2fb0dfd1b17a116ad74b) C:\Windows\system32\drivers\pci.sys
2011/05/02 21:24:37.0495 3320 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys
2011/05/02 21:24:37.0541 3320 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\drivers\pcmcia.sys
2011/05/02 21:24:37.0573 3320 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
2011/05/02 21:24:37.0619 3320 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
2011/05/02 21:24:37.0791 3320 PptpMiniport (27cc19e81ba5e3403c48302127bda717) C:\Windows\system32\DRIVERS\raspptp.sys
2011/05/02 21:24:37.0822 3320 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\drivers\processr.sys
2011/05/02 21:24:37.0885 3320 Psched (ee992183bd8eaefd9973f352e587a299) C:\Windows\system32\DRIVERS\pacer.sys
2011/05/02 21:24:37.0931 3320 PxHlpa64 (aed797cca02783296c68aa10d0cff8a9) C:\Windows\system32\Drivers\PxHlpa64.sys
2011/05/02 21:24:37.0994 3320 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\drivers\ql2300.sys
2011/05/02 21:24:38.0056 3320 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\drivers\ql40xx.sys
2011/05/02 21:24:38.0119 3320 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
2011/05/02 21:24:38.0165 3320 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
2011/05/02 21:24:38.0212 3320 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
2011/05/02 21:24:38.0243 3320 Rasl2tp (87a6e852a22991580d6d39adc4790463) C:\Windows\system32\DRIVERS\rasl2tp.sys
2011/05/02 21:24:38.0306 3320 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
2011/05/02 21:24:38.0353 3320 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
2011/05/02 21:24:38.0384 3320 rdbss (3bac8142102c15d59a87757c1d41dce5) C:\Windows\system32\DRIVERS\rdbss.sys
2011/05/02 21:24:38.0431 3320 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\drivers\rdpbus.sys
2011/05/02 21:24:38.0462 3320 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
2011/05/02 21:24:38.0509 3320 RDPDR (9706b84dbabfc4b4ca46c5a82b14dfa3) C:\Windows\system32\drivers\rdpdr.sys
2011/05/02 21:24:38.0555 3320 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
2011/05/02 21:24:38.0602 3320 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
2011/05/02 21:24:38.0633 3320 RDPWD (8a3e6bea1c53ea6177fe2b6eba2c80d7) C:\Windows\system32\drivers\RDPWD.sys
2011/05/02 21:24:38.0711 3320 rdyboost (634b9a2181d98f15941236886164ec8b) C:\Windows\system32\drivers\rdyboost.sys
2011/05/02 21:24:38.0774 3320 RFCOMM (3dd798846e2c28102b922c56e71b7932) C:\Windows\system32\DRIVERS\rfcomm.sys
2011/05/02 21:24:38.0821 3320 rimspci (5ca4abd888b602551b59baa26941c167) C:\Windows\system32\drivers\rimssne64.sys
2011/05/02 21:24:38.0899 3320 risdsnpe (bb6e138aeb351728959da5e2731d8140) C:\Windows\system32\drivers\risdsne64.sys
2011/05/02 21:24:38.0992 3320 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
2011/05/02 21:24:39.0055 3320 s3cap (88af6e02ab19df7fd07ecdf9c91e9af6) C:\Windows\system32\drivers\vms3cap.sys
2011/05/02 21:24:39.0101 3320 sbp2port (e3bbb89983daf5622c1d50cf49f28227) C:\Windows\system32\drivers\sbp2port.sys
2011/05/02 21:24:39.0148 3320 scfilter (c94da20c7e3ba1dca269bc8460d98387) C:\Windows\system32\DRIVERS\scfilter.sys
2011/05/02 21:24:39.0211 3320 sdbus (54e47ad086782d3ae9417c155cdceb9b) C:\Windows\system32\DRIVERS\sdbus.sys
2011/05/02 21:24:39.0273 3320 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
2011/05/02 21:24:39.0367 3320 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\drivers\serenum.sys
2011/05/02 21:24:39.0398 3320 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\drivers\serial.sys
2011/05/02 21:24:39.0445 3320 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\drivers\sermouse.sys
2011/05/02 21:24:39.0538 3320 SFEP (70f9c476b62de4f2823e918a6c181ade) C:\Windows\system32\drivers\SFEP.sys
2011/05/02 21:24:39.0585 3320 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys
2011/05/02 21:24:39.0632 3320 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys
2011/05/02 21:24:39.0663 3320 sffp_sd (5588b8c6193eb1522490c122eb94dffa) C:\Windows\system32\drivers\sffp_sd.sys
2011/05/02 21:24:39.0694 3320 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\drivers\sfloppy.sys
2011/05/02 21:24:39.0772 3320 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\drivers\SiSRaid2.sys
2011/05/02 21:24:39.0819 3320 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\drivers\sisraid4.sys
2011/05/02 21:24:39.0897 3320 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
2011/05/02 21:24:39.0991 3320 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
2011/05/02 21:24:40.0115 3320 srv (148d50904d2a0df29a19778715eb35bb) C:\Windows\system32\DRIVERS\srv.sys
2011/05/02 21:24:40.0162 3320 srv2 (ce2189fe31d36678ac9eb7ddee08ec96) C:\Windows\system32\DRIVERS\srv2.sys
2011/05/02 21:24:40.0209 3320 srvnet (cb69edeb069a49577592835659cd0e46) C:\Windows\system32\DRIVERS\srvnet.sys
2011/05/02 21:24:40.0271 3320 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\drivers\stexstor.sys
2011/05/02 21:24:40.0318 3320 storflt (ffd7a6f15b14234b5b0e5d49e7961895) C:\Windows\system32\drivers\vmstorfl.sys
2011/05/02 21:24:40.0396 3320 storvsc (8fccbefc5c440b3c23454656e551b09a) C:\Windows\system32\drivers\storvsc.sys
2011/05/02 21:24:40.0443 3320 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\drivers\swenum.sys
2011/05/02 21:24:40.0583 3320 Tcpip (90a2d722cf64d911879d6c4a4f802a4d) C:\Windows\system32\drivers\tcpip.sys
2011/05/02 21:24:40.0755 3320 TCPIP6 (90a2d722cf64d911879d6c4a4f802a4d) C:\Windows\system32\DRIVERS\tcpip.sys
2011/05/02 21:24:40.0849 3320 tcpipreg (76d078af6f587b162d50210f761eb9ed) C:\Windows\system32\drivers\tcpipreg.sys
2011/05/02 21:24:40.0895 3320 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
2011/05/02 21:24:40.0927 3320 TDTCP (e4245bda3190a582d55ed09e137401a9) C:\Windows\system32\drivers\tdtcp.sys
2011/05/02 21:24:40.0973 3320 tdx (079125c4b17b01fcaeebce0bcb290c0f) C:\Windows\system32\DRIVERS\tdx.sys
2011/05/02 21:24:41.0005 3320 TermDD (c448651339196c0e869a355171875522) C:\Windows\system32\drivers\termdd.sys
2011/05/02 21:24:41.0098 3320 tssecsrv (61b96c26131e37b24e93327a0bd1fb95) C:\Windows\system32\DRIVERS\tssecsrv.sys
2011/05/02 21:24:41.0145 3320 tunnel (3836171a2cdf3af8ef10856db9835a70) C:\Windows\system32\DRIVERS\tunnel.sys
2011/05/02 21:24:41.0192 3320 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\drivers\uagp35.sys
2011/05/02 21:24:41.0239 3320 udfs (d47baead86c65d4f4069d7ce0a4edceb) C:\Windows\system32\DRIVERS\udfs.sys
2011/05/02 21:24:41.0317 3320 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys
2011/05/02 21:24:41.0363 3320 umbus (eab6c35e62b1b0db0d1b48b671d3a117) C:\Windows\system32\DRIVERS\umbus.sys
2011/05/02 21:24:41.0395 3320 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\drivers\umpass.sys
2011/05/02 21:24:41.0473 3320 usbccgp (b26afb54a534d634523c4fb66765b026) C:\Windows\system32\DRIVERS\usbccgp.sys
2011/05/02 21:24:41.0519 3320 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys
2011/05/02 21:24:41.0566 3320 usbehci (2ea4aff7be7eb4632e3aa8595b0803b5) C:\Windows\system32\drivers\usbehci.sys
2011/05/02 21:24:41.0644 3320 usbhub (4c9042b8df86c1e8e6240c218b99b39b) C:\Windows\system32\drivers\usbhub.sys
2011/05/02 21:24:41.0675 3320 usbohci (58e546bbaf87664fc57e0f6081e4f609) C:\Windows\system32\drivers\usbohci.sys
2011/05/02 21:24:41.0738 3320 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
2011/05/02 21:24:41.0800 3320 USBSTOR (f39983647bc1f3e6100778ddfe9dce29) C:\Windows\system32\drivers\USBSTOR.SYS
2011/05/02 21:24:41.0863 3320 usbuhci (81fb2216d3a60d1284455d511797db3d) C:\Windows\system32\drivers\usbuhci.sys
2011/05/02 21:24:41.0909 3320 usbvideo (7cb8c573c6e4a2714402cc0a36eab4fe) C:\Windows\System32\Drivers\usbvideo.sys
2011/05/02 21:24:41.0987 3320 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys
2011/05/02 21:24:42.0050 3320 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
2011/05/02 21:24:42.0081 3320 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
2011/05/02 21:24:42.0128 3320 vhdmp (c82e748660f62a242b2dfac1442f22a4) C:\Windows\system32\drivers\vhdmp.sys
2011/05/02 21:24:42.0159 3320 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys
2011/05/02 21:24:42.0237 3320 vmbus (1501699d7eda984abc4155a7da5738d1) C:\Windows\system32\drivers\vmbus.sys
2011/05/02 21:24:42.0284 3320 VMBusHID (ae10c35761889e65a6f7176937c5592c) C:\Windows\system32\drivers\VMBusHID.sys
2011/05/02 21:24:42.0331 3320 volmgr (2b1a3dae2b4e70dbba822b7a03fbd4a3) C:\Windows\system32\drivers\volmgr.sys
2011/05/02 21:24:42.0377 3320 volmgrx (99b0cbb569ca79acaed8c91461d765fb) C:\Windows\system32\drivers\volmgrx.sys
2011/05/02 21:24:42.0424 3320 volsnap (58f82eed8ca24b461441f9c3e4f0bf5c) C:\Windows\system32\drivers\volsnap.sys
2011/05/02 21:24:42.0471 3320 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\drivers\vsmraid.sys
2011/05/02 21:24:42.0518 3320 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\system32\DRIVERS\vwifibus.sys
2011/05/02 21:24:42.0565 3320 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\Windows\system32\DRIVERS\vwififlt.sys
2011/05/02 21:24:42.0643 3320 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\drivers\wacompen.sys
2011/05/02 21:24:42.0689 3320 WANARP (47ca49400643effd3f1c9a27e1d69324) C:\Windows\system32\DRIVERS\wanarp.sys
2011/05/02 21:24:42.0721 3320 Wanarpv6 (47ca49400643effd3f1c9a27e1d69324) C:\Windows\system32\DRIVERS\wanarp.sys
2011/05/02 21:24:42.0845 3320 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\drivers\wd.sys
2011/05/02 21:24:42.0892 3320 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
2011/05/02 21:24:43.0001 3320 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
2011/05/02 21:24:43.0033 3320 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
2011/05/02 21:24:43.0157 3320 WinUsb (817eaff5d38674edd7713b9dfb8e9791) C:\Windows\system32\DRIVERS\WinUsb.sys
2011/05/02 21:24:43.0204 3320 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\drivers\wmiacpi.sys
2011/05/02 21:24:43.0313 3320 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
2011/05/02 21:24:43.0391 3320 WudfPf (7cadc74271dd6461c452c271b30bd378) C:\Windows\system32\drivers\WudfPf.sys
2011/05/02 21:24:43.0438 3320 WUDFRd (3b197af0fff08aa66b6b2241ca538d64) C:\Windows\system32\DRIVERS\WUDFRd.sys
2011/05/02 21:24:43.0516 3320 yukonw7 (64f88af327aa74e03658ae32b48ccb8b) C:\Windows\system32\DRIVERS\yk62x64.sys
2011/05/02 21:24:43.0594 3320 ================================================================================
2011/05/02 21:24:43.0594 3320 Scan finished
2011/05/02 21:24:43.0594 3320 ================================================================================
2011/05/02 21:25:52.0889 3364 ================================================================================
2011/05/02 21:25:52.0889 3364 Scan started
2011/05/02 21:25:52.0889 3364 Mode: Manual;
2011/05/02 21:25:52.0889 3364 ================================================================================
2011/05/02 21:25:53.0217 3364 1394ohci (1b00662092f9f9568b995902f0cc40d5) C:\Windows\system32\drivers\1394ohci.sys
2011/05/02 21:25:53.0279 3364 ACPI (6f11e88748cdefd2f76aa215f97ddfe5) C:\Windows\system32\drivers\ACPI.sys
2011/05/02 21:25:53.0326 3364 AcpiPmi (63b05a0420ce4bf0e4af6dcc7cada254) C:\Windows\system32\drivers\acpipmi.sys
2011/05/02 21:25:53.0373 3364 adfs (2f0683fd2df1d92e891caca14b45a8c1) C:\Windows\system32\drivers\adfs.sys
2011/05/02 21:25:53.0420 3364 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\drivers\adp94xx.sys
2011/05/02 21:25:53.0467 3364 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\drivers\adpahci.sys
2011/05/02 21:25:53.0498 3364 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\drivers\adpu320.sys
2011/05/02 21:25:53.0560 3364 AFD (b9384e03479d2506bc924c16a3db87bc) C:\Windows\system32\drivers\afd.sys
2011/05/02 21:25:53.0607 3364 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys
2011/05/02 21:25:53.0654 3364 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys
2011/05/02 21:25:53.0685 3364 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys
2011/05/02 21:25:53.0716 3364 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\drivers\amdk8.sys
2011/05/02 21:25:53.0747 3364 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\drivers\amdppm.sys
2011/05/02 21:25:53.0810 3364 amdsata (ec7ebab00a4d8448bab68d1e49b4beb9) C:\Windows\system32\drivers\amdsata.sys
2011/05/02 21:25:53.0857 3364 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\drivers\amdsbs.sys
2011/05/02 21:25:53.0888 3364 amdxata (db27766102c7bf7e95140a2aa81d042e) C:\Windows\system32\drivers\amdxata.sys
2011/05/02 21:25:53.0935 3364 ApfiltrService (1661f9c9e4b0049fa0a5e30264375a87) C:\Windows\system32\drivers\Apfiltr.sys
2011/05/02 21:25:53.0981 3364 AppID (42fd751b27fa0e9c69bb39f39e409594) C:\Windows\system32\drivers\appid.sys
2011/05/02 21:25:54.0028 3364 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\drivers\arc.sys
2011/05/02 21:25:54.0059 3364 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\drivers\arcsas.sys
2011/05/02 21:25:54.0106 3364 aswFsBlk (6923740db573b46fdda13e1df412c577) C:\Windows\system32\drivers\aswFsBlk.sys
2011/05/02 21:25:54.0169 3364 aswMonFlt (de001b988b58bfd453f667842655b22e) C:\Windows\system32\drivers\aswMonFlt.sys
2011/05/02 21:25:54.0200 3364 aswRdr (e0d1002d7fa65dd023788b17f714e682) C:\Windows\system32\drivers\aswRdr.sys
2011/05/02 21:25:54.0231 3364 aswSP (c3eafdc0f533425614430a112ba71e9a) C:\Windows\system32\drivers\aswSP.sys
2011/05/02 21:25:54.0262 3364 aswTdi (0226ffbc420d8fb67ba3b9dbdd1f2dca) C:\Windows\system32\drivers\aswTdi.sys
2011/05/02 21:25:54.0309 3364 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
2011/05/02 21:25:54.0340 3364 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys
2011/05/02 21:25:54.0418 3364 athr (0acc06fcf46f64ed4f11e57ee461c1f4) C:\Windows\system32\DRIVERS\athrx.sys
2011/05/02 21:25:54.0621 3364 atikmdag (89a3d56ce4044f35b9d08dd37193bbfc) C:\Windows\system32\DRIVERS\atikmdag.sys
2011/05/02 21:25:54.0824 3364 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\drivers\bxvbda.sys
2011/05/02 21:25:54.0871 3364 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
2011/05/02 21:25:54.0917 3364 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
2011/05/02 21:25:54.0980 3364 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\drivers\blbdrive.sys
2011/05/02 21:25:55.0058 3364 bowser (19d20159708e152267e53b66677a4995) C:\Windows\system32\DRIVERS\bowser.sys
2011/05/02 21:25:55.0089 3364 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\drivers\BrFiltLo.sys
2011/05/02 21:25:55.0136 3364 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\drivers\BrFiltUp.sys
2011/05/02 21:25:55.0183 3364 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
2011/05/02 21:25:55.0214 3364 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
2011/05/02 21:25:55.0245 3364 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
2011/05/02 21:25:55.0276 3364 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
2011/05/02 21:25:55.0323 3364 BthEnum (cf98190a94f62e405c8cb255018b2315) C:\Windows\system32\DRIVERS\BthEnum.sys
2011/05/02 21:25:55.0354 3364 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
2011/05/02 21:25:55.0385 3364 BthPan (02dd601b708dd0667e1331fa8518e9ff) C:\Windows\system32\DRIVERS\bthpan.sys
2011/05/02 21:25:55.0417 3364 BTHPORT (a51fa9d0e85d5adabef72e67f386309c) C:\Windows\system32\Drivers\BTHport.sys
2011/05/02 21:25:55.0463 3364 BTHUSB (f740b9a16b2c06700f2130e19986bf3b) C:\Windows\system32\Drivers\BTHUSB.sys
2011/05/02 21:25:55.0510 3364 btusbflt (6e04458e98daf28826482e41a7a62df5) C:\Windows\system32\drivers\btusbflt.sys
2011/05/02 21:25:55.0557 3364 btwaudio (4bdbdb86abba924e029fb2683be7c505) C:\Windows\system32\drivers\btwaudio.sys
2011/05/02 21:25:55.0604 3364 btwavdt (5c849bd7c78791c5cee9f4651d7fe38d) C:\Windows\system32\drivers\btwavdt.sys
2011/05/02 21:25:55.0635 3364 btwl2cap (6149301dc3f81d6f9667a3fbac410975) C:\Windows\system32\DRIVERS\btwl2cap.sys
2011/05/02 21:25:55.0682 3364 btwrchid (3e1991afa851a36dc978b0a1b0535c8b) C:\Windows\system32\DRIVERS\btwrchid.sys
2011/05/02 21:25:55.0713 3364 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
2011/05/02 21:25:55.0760 3364 cdrom (83d2d75e1efb81b3450c18131443f7db) C:\Windows\system32\DRIVERS\cdrom.sys
2011/05/02 21:25:55.0807 3364 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\drivers\circlass.sys
2011/05/02 21:25:55.0853 3364 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
2011/05/02 21:25:55.0931 3364 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\drivers\CmBatt.sys
2011/05/02 21:25:55.0978 3364 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys
2011/05/02 21:25:56.0025 3364 CNG (f95fd4cb7da00ba2a63ce9f6b5c053e1) C:\Windows\system32\Drivers\cng.sys
2011/05/02 21:25:56.0072 3364 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\drivers\compbatt.sys
2011/05/02 21:25:56.0103 3364 CompositeBus (f26b3a86f6fa87ca360b879581ab4123) C:\Windows\system32\drivers\CompositeBus.sys
2011/05/02 21:25:56.0150 3364 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\drivers\crcdisk.sys
2011/05/02 21:25:56.0197 3364 CSC (4a6173c2279b498cd8f57cae504564cb) C:\Windows\system32\drivers\csc.sys
2011/05/02 21:25:56.0275 3364 DfsC (3f1dc527070acb87e40afe46ef6da749) C:\Windows\system32\Drivers\dfsc.sys
2011/05/02 21:25:56.0306 3364 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
2011/05/02 21:25:56.0353 3364 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\drivers\disk.sys
2011/05/02 21:25:56.0399 3364 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
2011/05/02 21:25:56.0477 3364 DXGKrnl (1633b9abf52784a1331476397a48cbef) C:\Windows\System32\drivers\dxgkrnl.sys
2011/05/02 21:25:56.0602 3364 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\drivers\evbda.sys
2011/05/02 21:25:56.0758 3364 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\drivers\elxstor.sys
2011/05/02 21:25:56.0805 3364 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys
2011/05/02 21:25:56.0961 3364 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
2011/05/02 21:25:57.0008 3364 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
2011/05/02 21:25:57.0039 3364 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\drivers\fdc.sys
2011/05/02 21:25:57.0086 3364 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
2011/05/02 21:25:57.0117 3364 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
2011/05/02 21:25:57.0164 3364 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\drivers\flpydisk.sys
2011/05/02 21:25:57.0195 3364 FltMgr (f7866af72abbaf84b1fa5aa195378c59) C:\Windows\system32\drivers\fltmgr.sys
2011/05/02 21:25:57.0242 3364 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
2011/05/02 21:25:57.0304 3364 fssfltr (53dab1791917a72738539ad25c4eed7f) C:\Windows\system32\DRIVERS\fssfltr.sys
2011/05/02 21:25:57.0335 3364 Fs_Rec (e95ef8547de20cf0603557c0cf7a9462) C:\Windows\system32\drivers\Fs_Rec.sys
2011/05/02 21:25:57.0398 3364 fvevol (ae87ba80d0ec3b57126ed2cdc15b24ed) C:\Windows\system32\DRIVERS\fvevol.sys
2011/05/02 21:25:57.0445 3364 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\drivers\gagp30kx.sys
2011/05/02 21:25:57.0523 3364 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
2011/05/02 21:25:57.0554 3364 HdAudAddService (6410f6f415b2a5a9037224c41da8bf12) C:\Windows\system32\drivers\HdAudio.sys
2011/05/02 21:25:57.0601 3364 HDAudBus (0a49913402747a0b67de940fb42cbdbb) C:\Windows\system32\drivers\HDAudBus.sys
2011/05/02 21:25:57.0647 3364 HECIx64 (b6ac71aaa2b10848f57fc49d55a651af) C:\Windows\system32\drivers\HECIx64.sys
2011/05/02 21:25:57.0694 3364 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\drivers\HidBatt.sys
2011/05/02 21:25:57.0741 3364 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\drivers\hidbth.sys
2011/05/02 21:25:57.0772 3364 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\drivers\hidir.sys
2011/05/02 21:25:57.0819 3364 HidUsb (b3bf6b5b50006def50b66306d99fcf6f) C:\Windows\system32\DRIVERS\hidusb.sys
2011/05/02 21:25:57.0881 3364 HpSAMD (0886d440058f203eba0e1825e4355914) C:\Windows\system32\drivers\HpSAMD.sys
2011/05/02 21:25:57.0913 3364 HTTP (cee049cac4efa7f4e1e4ad014414a5d4) C:\Windows\system32\drivers\HTTP.sys
2011/05/02 21:25:57.0959 3364 hwpolicy (f17766a19145f111856378df337a5d79) C:\Windows\system32\drivers\hwpolicy.sys
2011/05/02 21:25:57.0991 3364 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\drivers\i8042prt.sys
2011/05/02 21:25:58.0053 3364 iaStor (073a606333b6f7bbf20aa856df7f0997) C:\Windows\system32\drivers\iaStor.sys
2011/05/02 21:25:58.0115 3364 iaStorV (b75e45c564e944a2657167d197ab29da) C:\Windows\system32\drivers\iaStorV.sys
2011/05/02 21:25:58.0334 3364 igfx (31d1aff484d8a0906cf8d44251ec390f) C:\Windows\system32\DRIVERS\igdkmd64.sys
2011/05/02 21:25:58.0505 3364 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\drivers\iirsp.sys
2011/05/02 21:25:58.0552 3364 Impcd (36fdf367a1dabff903e2214023d71368) C:\Windows\system32\drivers\Impcd.sys
2011/05/02 21:25:58.0646 3364 IntcAzAudAddService (0f144e5f46cb9043004b5e84aa4bca6a) C:\Windows\system32\drivers\RTKVHD64.sys
2011/05/02 21:25:58.0755 3364 IntcDAud (408b401cd7cdb075c7470b0ff7ba8d0b) C:\Windows\system32\DRIVERS\IntcDAud.sys
2011/05/02 21:25:58.0786 3364 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys
2011/05/02 21:25:58.0817 3364 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\drivers\intelppm.sys
2011/05/02 21:25:58.0880 3364 IpFilterDriver (722dd294df62483cecaae6e094b4d695) C:\Windows\system32\DRIVERS\ipfltdrv.sys
2011/05/02 21:25:58.0927 3364 IPMIDRV (e2b4a4494db7cb9b89b55ca268c337c5) C:\Windows\system32\drivers\IPMIDrv.sys
2011/05/02 21:25:58.0942 3364 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
2011/05/02 21:25:58.0989 3364 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
2011/05/02 21:25:59.0020 3364 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys
2011/05/02 21:25:59.0051 3364 iScsiPrt (fa4d2557de56d45b0a346f93564be6e1) C:\Windows\system32\drivers\msiscsi.sys
2011/05/02 21:25:59.0098 3364 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\drivers\kbdclass.sys
2011/05/02 21:25:59.0129 3364 kbdhid (6def98f8541e1b5dceb2c822a11f7323) C:\Windows\system32\drivers\kbdhid.sys
2011/05/02 21:25:59.0176 3364 KSecDD (e8b6fcc9c83535c67f835d407620bd27) C:\Windows\system32\Drivers\ksecdd.sys
2011/05/02 21:25:59.0207 3364 KSecPkg (a8c63880ef6f4d3fec7b616b9c060215) C:\Windows\system32\Drivers\ksecpkg.sys
2011/05/02 21:25:59.0239 3364 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
2011/05/02 21:25:59.0301 3364 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
2011/05/02 21:25:59.0379 3364 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\drivers\lsi_fc.sys
2011/05/02 21:25:59.0410 3364 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\drivers\lsi_sas.sys
2011/05/02 21:25:59.0473 3364 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\drivers\lsi_sas2.sys
2011/05/02 21:25:59.0519 3364 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\drivers\lsi_scsi.sys
2011/05/02 21:25:59.0551 3364 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
2011/05/02 21:25:59.0597 3364 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\drivers\megasas.sys
2011/05/02 21:25:59.0629 3364 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\drivers\MegaSR.sys
2011/05/02 21:25:59.0675 3364 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
2011/05/02 21:25:59.0707 3364 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
2011/05/02 21:25:59.0738 3364 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
2011/05/02 21:25:59.0769 3364 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
2011/05/02 21:25:59.0800 3364 mountmgr (791af66c4d0e7c90a3646066386fb571) C:\Windows\system32\drivers\mountmgr.sys
2011/05/02 21:25:59.0863 3364 MpFilter (c4d8c3031c7cd5884ca856b15307e997) C:\Windows\system32\DRIVERS\MpFilter.sys
2011/05/02 21:25:59.0909 3364 mpio (609d1d87649ecc19796f4d76d4c15cea) C:\Windows\system32\drivers\mpio.sys
2011/05/02 21:25:59.0956 3364 MpNWMon (a768f58c55d3f303e686a7646348aec3) C:\Windows\system32\DRIVERS\MpNWMon.sys
2011/05/02 21:25:59.0987 3364 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
2011/05/02 21:26:00.0034 3364 MRxDAV (30524261bb51d96d6fcbac20c810183c) C:\Windows\system32\drivers\mrxdav.sys
2011/05/02 21:26:00.0081 3364 mrxsmb (b7f3d2c40bdf8ffb73ebfb19c77734e2) C:\Windows\system32\DRIVERS\mrxsmb.sys
2011/05/02 21:26:00.0128 3364 mrxsmb10 (86c6f88b5168ce21cf8d69d0b3ff5d19) C:\Windows\system32\DRIVERS\mrxsmb10.sys
2011/05/02 21:26:00.0175 3364 mrxsmb20 (b081069251c8e9f42cb8769d07148f9c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
2011/05/02 21:26:00.0237 3364 msahci (5c37497276e3b3a5488b23a326a754b7) C:\Windows\system32\drivers\msahci.sys
2011/05/02 21:26:00.0284 3364 msdsm (8d27b597229aed79430fb9db3bcbfbd0) C:\Windows\system32\drivers\msdsm.sys
2011/05/02 21:26:00.0346 3364 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
2011/05/02 21:26:00.0377 3364 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
2011/05/02 21:26:00.0393 3364 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys
2011/05/02 21:26:00.0455 3364 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
2011/05/02 21:26:00.0487 3364 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
2011/05/02 21:26:00.0533 3364 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
2011/05/02 21:26:00.0565 3364 MsRPC (89cb141aa8616d8c6a4610fa26c60964) C:\Windows\system32\drivers\MsRPC.sys
2011/05/02 21:26:00.0611 3364 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\drivers\mssmbios.sys
2011/05/02 21:26:00.0658 3364 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
2011/05/02 21:26:00.0721 3364 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\drivers\MTConfig.sys
2011/05/02 21:26:00.0752 3364 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
2011/05/02 21:26:00.0799 3364 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
2011/05/02 21:26:00.0861 3364 NDIS (cad515dbd07d082bb317d9928ce8962c) C:\Windows\system32\drivers\ndis.sys
2011/05/02 21:26:00.0892 3364 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
2011/05/02 21:26:00.0923 3364 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
2011/05/02 21:26:00.0970 3364 Ndisuio (f105ba1e22bf1f2ee8f005d4305e4bec) C:\Windows\system32\DRIVERS\ndisuio.sys
2011/05/02 21:26:01.0001 3364 NdisWan (557dfab9ca1fcb036ac77564c010dad3) C:\Windows\system32\DRIVERS\ndiswan.sys
2011/05/02 21:26:01.0033 3364 NDProxy (659b74fb74b86228d6338d643cd3e3cf) C:\Windows\system32\drivers\NDProxy.sys
2011/05/02 21:26:01.0064 3364 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
2011/05/02 21:26:01.0095 3364 NetBT (9162b273a44ab9dce5b44362731d062a) C:\Windows\system32\DRIVERS\netbt.sys
2011/05/02 21:26:01.0157 3364 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\drivers\nfrd960.sys
2011/05/02 21:26:01.0189 3364 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
2011/05/02 21:26:01.0220 3364 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
2011/05/02 21:26:01.0313 3364 Ntfs (378e0e0dfea67d98ae6ea53adbbd76bc) C:\Windows\system32\drivers\Ntfs.sys
2011/05/02 21:26:01.0376 3364 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
2011/05/02 21:26:01.0438 3364 nvraid (a4d9c9a608a97f59307c2f2600edc6a4) C:\Windows\system32\drivers\nvraid.sys
2011/05/02 21:26:01.0485 3364 nvstor (6c1d5f70e7a6a3fd1c90d840edc048b9) C:\Windows\system32\drivers\nvstor.sys
2011/05/02 21:26:01.0516 3364 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys
2011/05/02 21:26:01.0579 3364 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys
2011/05/02 21:26:01.0641 3364 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\drivers\parport.sys
2011/05/02 21:26:01.0672 3364 partmgr (7daa117143316c4a1537e074a5a9eaf0) C:\Windows\system32\drivers\partmgr.sys
2011/05/02 21:26:01.0766 3364 pci (f36f6504009f2fb0dfd1b17a116ad74b) C:\Windows\system32\drivers\pci.sys
2011/05/02 21:26:01.0813 3364 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys
2011/05/02 21:26:01.0844 3364 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\drivers\pcmcia.sys
2011/05/02 21:26:01.0875 3364 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
2011/05/02 21:26:01.0937 3364 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
2011/05/02 21:26:02.0078 3364 PptpMiniport (27cc19e81ba5e3403c48302127bda717) C:\Windows\system32\DRIVERS\raspptp.sys
2011/05/02 21:26:02.0125 3364 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\drivers\processr.sys
2011/05/02 21:26:02.0187 3364 Psched (ee992183bd8eaefd9973f352e587a299) C:\Windows\system32\DRIVERS\pacer.sys
2011/05/02 21:26:02.0218 3364 PxHlpa64 (aed797cca02783296c68aa10d0cff8a9) C:\Windows\system32\Drivers\PxHlpa64.sys
2011/05/02 21:26:02.0296 3364 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\drivers\ql2300.sys
2011/05/02 21:26:02.0359 3364 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\drivers\ql40xx.sys
2011/05/02 21:26:02.0405 3364 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
2011/05/02 21:26:02.0437 3364 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
2011/05/02 21:26:02.0483 3364 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
2011/05/02 21:26:02.0530 3364 Rasl2tp (87a6e852a22991580d6d39adc4790463) C:\Windows\system32\DRIVERS\rasl2tp.sys
2011/05/02 21:26:02.0561 3364 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
2011/05/02 21:26:02.0593 3364 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
2011/05/02 21:26:02.0639 3364 rdbss (3bac8142102c15d59a87757c1d41dce5) C:\Windows\system32\DRIVERS\rdbss.sys
2011/05/02 21:26:02.0671 3364 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\drivers\rdpbus.sys
2011/05/02 21:26:02.0702 3364 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
2011/05/02 21:26:02.0749 3364 RDPDR (9706b84dbabfc4b4ca46c5a82b14dfa3) C:\Windows\system32\drivers\rdpdr.sys
2011/05/02 21:26:02.0795 3364 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
2011/05/02 21:26:02.0827 3364 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
2011/05/02 21:26:02.0873 3364 RDPWD (8a3e6bea1c53ea6177fe2b6eba2c80d7) C:\Windows\system32\drivers\RDPWD.sys
2011/05/02 21:26:02.0905 3364 rdyboost (634b9a2181d98f15941236886164ec8b) C:\Windows\system32\drivers\rdyboost.sys
2011/05/02 21:26:02.0951 3364 RFCOMM (3dd798846e2c28102b922c56e71b7932) C:\Windows\system32\DRIVERS\rfcomm.sys
2011/05/02 21:26:02.0983 3364 rimspci (5ca4abd888b602551b59baa26941c167) C:\Windows\system32\drivers\rimssne64.sys
2011/05/02 21:26:03.0029 3364 risdsnpe (bb6e138aeb351728959da5e2731d8140) C:\Windows\system32\drivers\risdsne64.sys
2011/05/02 21:26:03.0092 3364 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
2011/05/02 21:26:03.0139 3364 s3cap (88af6e02ab19df7fd07ecdf9c91e9af6) C:\Windows\system32\drivers\vms3cap.sys
2011/05/02 21:26:03.0170 3364 sbp2port (e3bbb89983daf5622c1d50cf49f28227) C:\Windows\system32\drivers\sbp2port.sys
2011/05/02 21:26:03.0217 3364 scfilter (c94da20c7e3ba1dca269bc8460d98387) C:\Windows\system32\DRIVERS\scfilter.sys
2011/05/02 21:26:03.0263 3364 sdbus (54e47ad086782d3ae9417c155cdceb9b) C:\Windows\system32\DRIVERS\sdbus.sys
2011/05/02 21:26:03.0295 3364 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
2011/05/02 21:26:03.0357 3364 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\drivers\serenum.sys
2011/05/02 21:26:03.0388 3364 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\drivers\serial.sys
2011/05/02 21:26:03.0435 3364 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\drivers\sermouse.sys
2011/05/02 21:26:03.0497 3364 SFEP (70f9c476b62de4f2823e918a6c181ade) C:\Windows\system32\drivers\SFEP.sys
2011/05/02 21:26:03.0544 3364 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys
2011/05/02 21:26:03.0575 3364 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys
2011/05/02 21:26:03.0622 3364 sffp_sd (5588b8c6193eb1522490c122eb94dffa) C:\Windows\system32\drivers\sffp_sd.sys
2011/05/02 21:26:03.0653 3364 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\drivers\sfloppy.sys
2011/05/02 21:26:03.0700 3364 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\drivers\SiSRaid2.sys
2011/05/02 21:26:03.0747 3364 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\drivers\sisraid4.sys
2011/05/02 21:26:03.0794 3364 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
2011/05/02 21:26:03.0856 3364 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
2011/05/02 21:26:03.0981 3364 srv (148d50904d2a0df29a19778715eb35bb) C:\Windows\system32\DRIVERS\srv.sys
2011/05/02 21:26:04.0028 3364 srv2 (ce2189fe31d36678ac9eb7ddee08ec96) C:\Windows\system32\DRIVERS\srv2.sys
2011/05/02 21:26:04.0059 3364 srvnet (cb69edeb069a49577592835659cd0e46) C:\Windows\system32\DRIVERS\srvnet.sys
2011/05/02 21:26:04.0121 3364 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\drivers\stexstor.sys
2011/05/02 21:26:04.0184 3364 storflt (ffd7a6f15b14234b5b0e5d49e7961895) C:\Windows\system32\drivers\vmstorfl.sys
2011/05/02 21:26:04.0215 3364 storvsc (8fccbefc5c440b3c23454656e551b09a) C:\Windows\system32\drivers\storvsc.sys
2011/05/02 21:26:04.0246 3364 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\drivers\swenum.sys
2011/05/02 21:26:04.0387 3364 Tcpip (90a2d722cf64d911879d6c4a4f802a4d) C:\Windows\system32\drivers\tcpip.sys
2011/05/02 21:26:04.0449 3364 TCPIP6 (90a2d722cf64d911879d6c4a4f802a4d) C:\Windows\system32\DRIVERS\tcpip.sys
2011/05/02 21:26:04.0527 3364 tcpipreg (76d078af6f587b162d50210f761eb9ed) C:\Windows\system32\drivers\tcpipreg.sys
2011/05/02 21:26:04.0574 3364 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
2011/05/02 21:26:04.0589 3364 TDTCP (e4245bda3190a582d55ed09e137401a9) C:\Windows\system32\drivers\tdtcp.sys
2011/05/02 21:26:04.0636 3364 tdx (079125c4b17b01fcaeebce0bcb290c0f) C:\Windows\system32\DRIVERS\tdx.sys
2011/05/02 21:26:04.0667 3364 TermDD (c448651339196c0e869a355171875522) C:\Windows\system32\drivers\termdd.sys
2011/05/02 21:26:04.0745 3364 tssecsrv (61b96c26131e37b24e93327a0bd1fb95) C:\Windows\system32\DRIVERS\tssecsrv.sys
2011/05/02 21:26:04.0777 3364 tunnel (383617
0
Réponse 13 / 48
Utilisateur anonyme
 
reessaie combofix
0
Réponse 14 / 48
Clem777 Messages postés 25 Date d'inscription   Statut Membre Dernière intervention  
 
ComboFix 11-05-02.03 - Clément 02/05/2011 21:51:31.1.4 - x64
Microsoft Windows 7 Professionnel 6.1.7600.0.1252.33.1036.18.2798.1521 [GMT 2:00]
Lancé depuis: c:\users\Clément\Desktop\clement.exe
AV: avast! Antivirus *Disabled/Updated* {C37D8F93-0602-E43C-40AA-47DAD597F308}
AV: Microsoft Security Essentials *Disabled/Updated* {BF5CEBDC-F2D3-7540-343C-F0CE11FD6E66}
SP: avast! Antivirus *Disabled/Updated* {781C6E77-2038-EBB2-7A1A-7CA8AE10B9B5}
SP: Microsoft Security Essentials *Disabled/Updated* {043D0A38-D4E9-7ACE-0E8C-CBBC6A7A24DB}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
(((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\users\Clément\AppData\Local\xskgqnjjl.exe
c:\users\Clément\AppData\Roaming\.#
c:\windows\system32\arp.exe . . . . impossible à supprimer
c:\windows\system32\systemcpl.dll . . . . impossible à supprimer
c:\windows\SysWow64\arp.exe
.
----- Cloneurs de fichier -----
.
c:\program files (x86)\Common Files\France Telecom\LIVEBOX_SAGEM_760A\0\shell.exe
c:\program files (x86)\Common Files\France Telecom\LIVEBOX_SAGEM_760A\1\shell.exe
c:\program files (x86)\Common Files\France Telecom\Shared Modules\AlertModule\0\Uninstall\Shell.exe
c:\program files (x86)\Common Files\France Telecom\Shared Modules\Autodial\0\Uninstall\Shell.exe
c:\program files (x86)\Common Files\France Telecom\Shared Modules\FTCOMModule\0\Uninstall\Shell.exe
c:\program files (x86)\Common Files\France Telecom\Shared Modules\FTRTSVC\0\Uninstall\Shell.exe
c:\program files (x86)\Common Files\France Telecom\Shared Modules\FTServiceProvider\0\Uninstall\Shell.exe
c:\program files (x86)\Common Files\France Telecom\Shared Modules\PTPCommunication\0\Uninstall\Shell.exe
c:\program files (x86)\OrangeHSS\Installation\Core\Shell.exe
c:\program files (x86)\OrangeHSS\Launcher\Shell.exe
c:\program files (x86)\OrangeHSS\Uninstall\AlertModule\Shell.exe
c:\program files (x86)\OrangeHSS\Uninstall\Autodial\Shell.exe
c:\program files (x86)\OrangeHSS\Uninstall\CD_Custo_LBMINI_RTC\shell.exe
c:\program files (x86)\OrangeHSS\Uninstall\Connectivity\shell.exe
c:\program files (x86)\OrangeHSS\Uninstall\Connectivity_Corecom\shell.exe
c:\program files (x86)\OrangeHSS\Uninstall\Connectivity_Corecom_PCausaRawether55\shell.exe
c:\program files (x86)\OrangeHSS\Uninstall\DashBoard\shell.exe
c:\program files (x86)\OrangeHSS\Uninstall\Deskboard\shell.exe
c:\program files (x86)\OrangeHSS\Uninstall\Deskboard_Settings\shell.exe
c:\program files (x86)\OrangeHSS\Uninstall\Deskboard_WOO_Plugins\shell.exe
c:\program files (x86)\OrangeHSS\Uninstall\Extractor\shell.exe
c:\program files (x86)\OrangeHSS\Uninstall\FTCOMModule\Shell.exe
c:\program files (x86)\OrangeHSS\Uninstall\FTRTSVC\Shell.exe
c:\program files (x86)\OrangeHSS\Uninstall\FTServiceProvider\Shell.exe
c:\program files (x86)\OrangeHSS\Uninstall\Haut_Debit_CustoUpdate\shell.exe
c:\program files (x86)\OrangeHSS\Uninstall\HNMClient\shell.exe
c:\program files (x86)\OrangeHSS\Uninstall\InfoDisplay\shell.exe
c:\program files (x86)\OrangeHSS\Uninstall\InfoDisplay_DispAbout\shell.exe
c:\program files (x86)\OrangeHSS\Uninstall\InfoDisplay_DispDiagnosis\shell.exe
c:\program files (x86)\OrangeHSS\Uninstall\KillSuite\Shell.exe
c:\program files (x86)\OrangeHSS\Uninstall\Lan_CustoUpdate\shell.exe
c:\program files (x86)\OrangeHSS\Uninstall\Launcher\shell.exe
c:\program files (x86)\OrangeHSS\Uninstall\Launcher_ConnectivitySettings\shell.exe
c:\program files (x86)\OrangeHSS\Uninstall\Launcher_HelpFactory\shell.exe
c:\program files (x86)\OrangeHSS\Uninstall\Launcher_HelpFiles\shell.exe
c:\program files (x86)\OrangeHSS\Uninstall\Launcher_Inactivity\shell.exe
c:\program files (x86)\OrangeHSS\Uninstall\Launcher_PluginRecovery\shell.exe
c:\program files (x86)\OrangeHSS\Uninstall\Launcher_PluginShell\shell.exe
c:\program files (x86)\OrangeHSS\Uninstall\Launcher_PollingModule\shell.exe
c:\program files (x86)\OrangeHSS\Uninstall\launcher_PromptManager\shell.exe
c:\program files (x86)\OrangeHSS\Uninstall\Launcher_Settings\shell.exe
c:\program files (x86)\OrangeHSS\Uninstall\Launcher_Toaster\shell.exe
c:\program files (x86)\OrangeHSS\Uninstall\launcher_Update\shell.exe
c:\program files (x86)\OrangeHSS\Uninstall\Launcher_WebFavorites\shell.exe
c:\program files (x86)\OrangeHSS\Uninstall\Launcher_WMImportExport\shell.exe
c:\program files (x86)\OrangeHSS\Uninstall\Launcher_WOO_Identity\shell.exe
c:\program files (x86)\OrangeHSS\Uninstall\Livebox_CustoUpdate\shell.exe
c:\program files (x86)\OrangeHSS\Uninstall\LiveboxUtilities\shell.exe
c:\program files (x86)\OrangeHSS\Uninstall\MICSequencer\shell.exe
c:\program files (x86)\OrangeHSS\Uninstall\MICSequencer_FirstLaunch\shell.exe
c:\program files (x86)\OrangeHSS\Uninstall\MigrationTool\shell.exe
c:\program files (x86)\OrangeHSS\Uninstall\Mobile_CustoUpdate\shell.exe
c:\program files (x86)\OrangeHSS\Uninstall\PTPCommunication\Shell.exe
c:\program files (x86)\OrangeHSS\Uninstall\SearchURLHook\shell.exe
c:\program files (x86)\OrangeHSS\Uninstall\SessionManager\shell.exe
c:\program files (x86)\OrangeHSS\Uninstall\Splash\shell.exe
c:\program files (x86)\OrangeHSS\Uninstall\Systray_WOO\shell.exe
c:\program files (x86)\OrangeHSS\Uninstall\UninstallSuite\Shell.exe
c:\program files (x86)\OrangeHSS\Uninstall\Wancatcher\shell.exe
c:\program files (x86)\OrangeHSS\Uninstall\Wifi_CustoUpdate\shell.exe
.
.
((((((((((((((((((((((((((((( Fichiers créés du 2011-04-02 au 2011-05-02 ))))))))))))))))))))))))))))))))))))
.
.
2011-05-02 20:04 . 2011-05-02 20:04 -------- d-----w- c:\users\Default\AppData\Local\temp
2011-05-02 17:01 . 2011-05-02 17:01 -------- d-----w- C:\Kill'em
2011-05-01 21:02 . 2011-05-01 21:02 512 ----a-w- C:\PhysicalDisk0_MBR.bin
2011-05-01 20:56 . 2011-05-01 21:31 -------- d-----w- c:\program files (x86)\ZHPDiag
2011-05-01 18:11 . 2011-05-01 18:11 -------- d-----w- c:\program files\Enigma Software Group
2011-05-01 18:09 . 2011-05-01 21:13 -------- d-----w- c:\windows\1226A4C56F274C4EAE372B5512DE125A.TMP
2011-05-01 18:09 . 2011-05-01 18:09 -------- d-----w- c:\program files (x86)\Common Files\Wise Installation Wizard
2011-05-01 16:21 . 2011-05-01 16:21 -------- d-----w- C:\a7fbae34293b7f705b2d67d554ad6497
2011-05-01 08:19 . 2011-04-11 08:21 8802128 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{D03F6632-2326-4E32-9D1A-27CDB4651401}\mpengine.dll
2011-04-29 11:49 . 2011-04-29 11:49 -------- d-----w- C:\324b43cfd7a08fcf4abbed
2011-04-28 10:49 . 2011-04-28 10:49 -------- d-----w- C:\9037b4215efd810720
2011-04-27 15:31 . 2011-02-26 06:23 2870272 ----a-w- c:\windows\explorer.exe
2011-04-27 15:31 . 2011-02-26 05:33 2614784 ----a-w- c:\windows\SysWow64\explorer.exe
2011-04-22 16:50 . 2011-04-22 16:50 -------- d-----w- C:\47d0736f6d533ff51c90811fe7d41049
2011-04-19 12:31 . 2011-04-19 12:31 -------- d-----w- c:\program files (x86)\Conduit
2011-04-19 12:31 . 2011-04-19 12:31 -------- d-----w- c:\users\Clément\AppData\Local\Conduit
2011-04-17 22:18 . 2011-04-17 22:18 -------- d-----w- C:\found.001
2011-04-16 09:03 . 2011-03-03 06:17 182272 ----a-w- c:\windows\system32\dnsrslvr.dll
2011-04-12 23:23 . 2011-04-12 23:23 -------- d-----w- C:\58ae496e0cddf28480
2011-04-12 09:04 . 2011-04-12 09:04 -------- d-----w- c:\program files\Common Files\Macrovision Shared
2011-04-12 08:58 . 2011-04-12 08:58 -------- d-----w- c:\program files\Common Files\Autodesk Shared
2011-04-12 08:58 . 2011-04-12 08:58 -------- d-----w- c:\program files\Autodesk
2011-04-12 08:56 . 2011-04-12 08:56 -------- d-----w- c:\program files\Microsoft Visual Studio 9.0
2011-04-12 08:55 . 2011-04-12 08:55 -------- d-----w- c:\users\Clément\AppData\Local\Microsoft Help
2011-04-12 08:50 . 2008-10-15 04:22 519000 ----a-w- c:\windows\system32\d3dx10_40.dll
2011-04-12 08:49 . 2006-11-29 11:06 469264 ----a-w- c:\windows\system32\d3dx10.dll
2011-04-12 08:34 . 2011-04-12 08:34 -------- d-----w- C:\Autodesk
2011-04-11 21:57 . 2011-05-02 20:07 -------- d-----w- c:\program files (x86)\Common Files\Akamai
2011-04-05 13:25 . 2011-04-11 20:16 -------- d-----w- c:\program files (x86)\Norton Security Scan
2011-04-05 13:25 . 2011-04-05 13:25 -------- d-----w- c:\programdata\Norton
2011-04-05 13:25 . 2011-04-05 13:25 -------- d-----w- c:\programdata\Symantec
2011-04-05 13:25 . 2011-04-05 13:25 -------- d-----w- c:\program files (x86)\NortonInstaller
2011-04-05 07:40 . 2011-04-11 20:16 -------- d-----w- c:\windows\SysWow64\Adobe
2011-04-03 08:38 . 2011-04-11 20:16 -------- d-----w- c:\windows\Temp3D0FB41C-010B-A30F-F15C-B585682571B1-Signatures
.
.
.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-04-11 08:21 . 2010-05-17 17:34 8802128 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll
2011-03-11 12:09 . 2011-02-27 18:19 14744 ----a-w- c:\users\Clément\AppData\Roaming\Microsoft\IdentityCRL\Production\ppcrlconfig.dll
2011-03-11 12:09 . 2011-02-27 18:19 14744 ----a-w- c:\users\Clément\AppData\Roaming\Microsoft\IdentityCRL\Production\ppcrlconfig.dll
2011-03-04 06:17 . 2011-04-27 15:31 135168 ----a-w- c:\windows\apppatch\AppPatch64\AcXtrnal.dll
2011-03-04 06:17 . 2011-04-27 15:31 347648 ----a-w- c:\windows\apppatch\AppPatch64\AcLayers.dll
2011-02-19 06:37 . 2011-03-25 21:36 1135104 ----a-w- c:\windows\system32\FntCache.dll
2011-02-19 06:37 . 2011-03-25 21:36 1540608 ----a-w- c:\windows\system32\DWrite.dll
2011-02-19 06:36 . 2011-03-25 21:36 902656 ----a-w- c:\windows\system32\d2d1.dll
2011-02-19 05:32 . 2011-03-25 21:36 1074176 ----a-w- c:\windows\SysWow64\DWrite.dll
2011-02-19 05:32 . 2011-03-25 21:36 739840 ----a-w- c:\windows\SysWow64\d2d1.dll
.
.
((((((((((((((((((((((((((((((((( Points de chargement Reg ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés
REGEDIT4
.
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks]
"{872b5b88-9db5-4310-bdd0-ac189557e5f5}"= "c:\program files (x86)\DVDVideoSoftTB\prxtbDVDV.dll" [2011-01-17 175912]
.
[HKEY_CLASSES_ROOT\clsid\{872b5b88-9db5-4310-bdd0-ac189557e5f5}]
.
[HKEY_LOCAL_MACHINE\Wow6432Node\~\Browser Helper Objects\{30F9B915-B755-4826-820B-08FBA6BD249D}]
2011-01-17 14:54 175912 ----a-w- c:\program files (x86)\ConduitEngine\prxConduitEngine.dll
.
[HKEY_LOCAL_MACHINE\Wow6432Node\~\Browser Helper Objects\{872b5b88-9db5-4310-bdd0-ac189557e5f5}]
2011-01-17 14:54 175912 ----a-w- c:\program files (x86)\DVDVideoSoftTB\prxtbDVDV.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar]
"{872b5b88-9db5-4310-bdd0-ac189557e5f5}"= "c:\program files (x86)\DVDVideoSoftTB\prxtbDVDV.dll" [2011-01-17 175912]
"{30F9B915-B755-4826-820B-08FBA6BD249D}"= "c:\program files (x86)\ConduitEngine\prxConduitEngine.dll" [2011-01-17 175912]
.
[HKEY_CLASSES_ROOT\clsid\{872b5b88-9db5-4310-bdd0-ac189557e5f5}]
.
[HKEY_CLASSES_ROOT\clsid\{30f9b915-b755-4826-820b-08fba6bd249d}]
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"msnmsgr"="c:\program files (x86)\Windows Live\Messenger\msnmsgr.exe" [2010-04-16 3872080]
"swg"="c:\program files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2010-09-20 39408]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"IAStorIcon"="c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" [2009-11-20 284696]
"ISBMgr.exe"="c:\program files (x86)\Sony\ISB Utility\ISBMgr.exe" [2009-08-26 320880]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2010-05-14 248552]
"QuickTime Task"="c:\program files (x86)\QuickTime\QTTask.exe" [2009-11-10 417792]
"iTunesHelper"="c:\program files (x86)\iTunes\iTunesHelper.exe" [2009-11-12 141600]
"ORAHSSSessionManager"="c:\program files (x86)\OrangeHSS\SessionManager\SessionManager.exe" [2008-06-10 107248]
"Adobe Reader Speed Launcher"="c:\program files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2010-09-23 35760]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2010-09-20 932288]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Bluetooth.lnk - c:\program files\WIDCOMM\Bluetooth Software\BTTray.exe [2009-9-4 1081632]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\VESWinlogon]
2009-12-01 21:03 98304 ----a-w- c:\windows\System32\VESWinlogon.dll
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
@="Service"
.
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R2 gupdate;Service Google Update (gupdate);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-09-20 136176]
R2 Roxio Upnp Server 10;Roxio Upnp Server 10;c:\program files (x86)\Roxio\Digital Home 10\RoxioUpnpService10.exe [2009-08-31 362992]
R2 SpyHunter 4 Service;SpyHunter 4 Service;c:\progra~1\ENIGMA~1\SPYHUN~1\SH4SER~1.EXE [x]
R3 esgiguard;esgiguard;c:\program files\Enigma Software Group\SpyHunter\esgiguard.sys [x]
R3 FLEXnet Licensing Service 64;FLEXnet Licensing Service 64;c:\program files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [2011-04-12 1436424]
R3 gupdatem;Service Google Update (gupdatem);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-09-20 136176]
R3 MpNWMon;Microsoft Malware Protection Network Driver;c:\windows\system32\DRIVERS\MpNWMon.sys [x]
R3 PCAMp50a64;PCAMp50a64 NDIS Protocol Driver;c:\windows\system32\Drivers\PCAMp50a64.sys [x]
R3 PCASp50a64;PCASp50a64 NDIS Protocol Driver;c:\windows\system32\Drivers\PCASp50a64.sys [x]
R3 Roxio UPnP Renderer 10;Roxio UPnP Renderer 10;c:\program files (x86)\Roxio\Digital Home 10\RoxioUPnPRenderer10.exe [2009-08-31 313840]
R3 WatAdminSvc;Service Windows Activation Technologies;c:\windows\system32\Wat\WatAdminSvc.exe [x]
S0 PxHlpa64;PxHlpa64;c:\windows\System32\Drivers\PxHlpa64.sys [x]
S1 aswSP;aswSP; [x]
S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [x]
S2 Akamai;Akamai NetSession Interface;c:\windows\System32\svchost.exe [2009-07-14 27136]
S2 aswFsBlk;aswFsBlk; [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [x]
S2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology;c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2009-11-20 13336]
S2 rimspci;rimspci;c:\windows\system32\drivers\rimssne64.sys [x]
S2 risdsnpe;risdsnpe;c:\windows\system32\drivers\risdsne64.sys [x]
S2 UNS;Intel(R) Management & Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2009-12-14 2320920]
S3 btusbflt;Bluetooth USB Filter;c:\windows\system32\drivers\btusbflt.sys [x]
S3 btwl2cap;Bluetooth L2CAP Service;c:\windows\system32\DRIVERS\btwl2cap.sys [x]
S3 HECIx64;Intel(R) Management Engine Interface;c:\windows\system32\drivers\HECIx64.sys [x]
S3 Impcd;Impcd;c:\windows\system32\drivers\Impcd.sys [x]
S3 IntcDAud;Intel(R) Display Audio;c:\windows\system32\DRIVERS\IntcDAud.sys [x]
S3 SFEP;Sony Firmware Extension Parser;c:\windows\system32\drivers\SFEP.sys [x]
S3 yukonw7;NDIS6.2 Miniport Driver for Marvell Yukon Ethernet Controller;c:\windows\system32\DRIVERS\yk62x64.sys [x]
.
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\svchost]
Akamai REG_MULTI_SZ Akamai
.
Contenu du dossier 'Tâches planifiées'
.
2011-05-02 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-09-20 16:40]
.
2011-05-02 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-09-20 16:40]
.
.
--------- x86-64 -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2009-12-16 166424]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2009-12-16 390680]
"Persistence"="c:\windows\system32\igfxpers.exe" [2009-12-16 410136]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2009-12-16 9636896]
"SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe" [2010-01-23 171520]
"MSSE"="c:\program files\Microsoft Security Essentials\msseces.exe" [2010-09-15 1448568]
"AdobeAAMUpdater-1.0"="c:\program files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [2010-12-06 500208]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"LoadAppInit_DLLs"=0x0
.
------- Examen supplémentaire -------
.
uLocal Page = c:\windows\SysWOW64\blank.htm
uStart Page = hxxp://www.google.com/
mLocal Page = c:\windows\SysWOW64\blank.htm
uInternet Settings,ProxyOverride = *.local
IE: Envoyer au périphérique &Bluetooth... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
IE: Envoyer l'&image au périphérique Bluetooth... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
IE: Free YouTube to MP3 Converter - c:\users\Clément\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm
IE: Google Sidewiki... - c:\program files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_D183CA64F05FDD98.dll/cmsidewiki.html
.
- - - - ORPHELINS SUPPRIMES - - - -
.
SafeBoot-mcmscsvc
SafeBoot-MCODS
WebBrowser-{872B5B88-9DB5-4310-BDD0-AC189557E5F5} - (no file)
HKLM-Run-Apoint - %ProgramFiles%\Apoint\Apoint.exe
.
.
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\services\Akamai]
"ServiceDll"="C:/Program Files (x86)/Common Files/Akamai/netsession_win_a35e6b9.dll"
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\services\Akamai]
"ServiceDll"="C:/Program Files (x86)/Common Files/Akamai/netsession_win_a35e6b9.dll"
.
--------------------- CLES DE REGISTRE BLOQUEES ---------------------
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{19114156-8E9A-4D4E-9EE9-17A0E48D3BBB}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil10c.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{19114156-8E9A-4D4E-9EE9-17A0E48D3BBB}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{19114156-8E9A-4D4E-9EE9-17A0E48D3BBB}\LocalServer32]
@="c:\\Windows\\SysWow64\\Macromed\\Flash\\FlashUtil10c.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{19114156-8E9A-4D4E-9EE9-17A0E48D3BBB}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWow64\\Macromed\\Flash\\Flash10c.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.10"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWow64\\Macromed\\Flash\\Flash10c.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWow64\\Macromed\\Flash\\Flash10c.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWow64\\Macromed\\Flash\\Flash10c.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{1D4C8A81-B7AC-460A-8C23-98713C41D6B3}]
@Denied: (A 2) (Everyone)
@="IFlashBroker3"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{1D4C8A81-B7AC-460A-8C23-98713C41D6B3}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{1D4C8A81-B7AC-460A-8C23-98713C41D6B3}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Swearware\backup\winsock2\Parameters]
@DACL=(02 0000)
@SACL=
"NameSpace_Callout"=expand:"%SystemRoot%\\System32\\fwpuclnt.dll"
"WinSock_Registry_Version"="2.0"
"AutodialDLL"="rasadhlp.dll"
"Current_NameSpace_Catalog"="NameSpace_Catalog5"
"Current_Protocol_Catalog"="Protocol_Catalog9"
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Autres processus actifs ------------------------
.
c:\program files\Alwil Software\Avast5\AvastSvc.exe
c:\program files (x86)\Bonjour\mDNSResponder.exe
c:\program files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
c:\program files (x86)\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe
c:\program files (x86)\SONY\VAIO Event Service\VESMgr.exe
c:\program files (x86)\SONY\VAIO Event Service\VESMgrSub.exe
c:\program files\WIDCOMM\Bluetooth Software\BluetoothHeadsetProxy.exe
c:\program files (x86)\iPod\bin\iPodService.exe
.
**************************************************************************
.
Heure de fin: 2011-05-02 22:17:38 - La machine a redémarré
ComboFix-quarantined-files.txt 2011-05-02 20:17
.
Avant-CF: 246 466 437 120 octets libres
Après-CF: 250 904 100 864 octets libres
.
- - End Of File - - E033A6DB80719F11C0C28886C2DB4F0C
0
Réponse 15 / 48
Utilisateur anonyme
 

__________________________________________________
=>/!\Le script qui suit a été écrit spécialement cet ordinateur/!\ <=
=>il est fort déconseillé de le transposer sur un autre ordinateur !<=
----------------------------------------------------------------------------

Toujours avec toutes les protections désactivées, fais ceci :

▶ Ouvre le bloc-notes (Menu démarrer --> programmes --> accessoires --> bloc-notes)
▶ Copie/colle dans le bloc-notes ce qui entre les lignes ci dessous (sans les lignes) :

----------------------------------------------------------
KillAll::

Folder::
c:\windows\1226A4C56F274C4EAE372B5512DE125A.TMP
C:\47d0736f6d533ff51c90811fe7d41049
c:\program files (x86)\Conduit
c:\users\Clément\AppData\Local\Conduit
c:\windows\Temp3D0FB41C-010B-A30F-F15C-B585682571B1-Signatures

Registry::
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"SunJavaUpdateSched"=-
"QuickTime Task"=-
"iTunesHelper"=-
"Adobe Reader Speed Launcher"=-
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SunJavaUpdateSched"=-

Driver::
SpyHunter 4 Service

RegLock::
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{19114156-8E9A-4D4E-9EE9-17A0E48D3BBB}]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{19114156-8E9A-4D4E-9EE9-17A0E48D3BBB}\Elevation]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{19114156-8E9A-4D4E-9EE9-17A0E48D3BBB}\LocalServer32]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{19114156-8E9A-4D4E-9EE9-17A0E48D3BBB}\TypeLib]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{1D4C8A81-B7AC-460A-8C23-98713C41D6B3}]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{1D4C8A81-B7AC-460A-8C23-98713C41D6B3}\ProxyStubClsid32]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{1D4C8A81-B7AC-460A-8C23-98713C41D6B3}\TypeLib]
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Swearware\backup\winsock2\Parameters]
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]


------------------------------------------------------------------

▶ Enregistre ce fichier sur ton Bureau (et pas ailleurs !) sous le nom CFScript.txt
▶ Quitte le Bloc Notes

▶ Fais un glisser/déposer de ce fichier CFScript sur le fichier combofix

▶ Patiente le temps du scan. Le Bureau va disparaître à plusieurs reprises : c'est normal ! Ne touche à rien tant que le scan n'est pas terminé.
▶ Une fois le scan achevé, un rapport va s'afficher: poste son contenu.
▶ Si le fichier ne s'ouvre pas, il se trouve ici => C:\ComboFix.txt


0
Réponse 16 / 48
Clem777 Messages postés 25 Date d'inscription   Statut Membre Dernière intervention  
 
ComboFix 11-05-02.03 - Clément 02/05/2011 23:31:33.2.4 - x64
Microsoft Windows 7 Professionnel 6.1.7600.0.1252.33.1036.18.2798.1561 [GMT 2:00]
Lancé depuis: c:\users\Clément\Desktop\clement.exe
Commutateurs utilisés :: c:\users\Clément\Desktop\CFScript.txt
AV: avast! Antivirus *Disabled/Updated* {C37D8F93-0602-E43C-40AA-47DAD597F308}
AV: Microsoft Security Essentials *Disabled/Updated* {BF5CEBDC-F2D3-7540-343C-F0CE11FD6E66}
SP: avast! Antivirus *Disabled/Updated* {781C6E77-2038-EBB2-7A1A-7CA8AE10B9B5}
SP: Microsoft Security Essentials *Disabled/Updated* {043D0A38-D4E9-7ACE-0E8C-CBBC6A7A24DB}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
(((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
C:\47d0736f6d533ff51c90811fe7d41049
c:\47d0736f6d533ff51c90811fe7d41049\$shtdwn$.req
c:\47d0736f6d533ff51c90811fe7d41049\1028\eula.txt
c:\47d0736f6d533ff51c90811fe7d41049\1028\finalsql2005information.rtf
c:\47d0736f6d533ff51c90811fe7d41049\1028\hotfix.rll
c:\47d0736f6d533ff51c90811fe7d41049\1028\sqlhotfix.chm
c:\47d0736f6d533ff51c90811fe7d41049\1028\sqlse.rll
c:\47d0736f6d533ff51c90811fe7d41049\1031\eula.txt
c:\47d0736f6d533ff51c90811fe7d41049\1031\finalsql2005information.rtf
c:\47d0736f6d533ff51c90811fe7d41049\1031\hotfix.rll
c:\47d0736f6d533ff51c90811fe7d41049\1031\sqlhotfix.chm
c:\47d0736f6d533ff51c90811fe7d41049\1031\sqlse.rll
c:\47d0736f6d533ff51c90811fe7d41049\1033\eula.txt
c:\47d0736f6d533ff51c90811fe7d41049\1033\finalsql2005information.rtf
c:\47d0736f6d533ff51c90811fe7d41049\1033\hotfix.rll
c:\47d0736f6d533ff51c90811fe7d41049\1033\sqlhotfix.chm
c:\47d0736f6d533ff51c90811fe7d41049\1033\sqlse.rll
c:\47d0736f6d533ff51c90811fe7d41049\1036\eula.txt
c:\47d0736f6d533ff51c90811fe7d41049\1036\finalsql2005information.rtf
c:\47d0736f6d533ff51c90811fe7d41049\1036\hotfix.rll
c:\47d0736f6d533ff51c90811fe7d41049\1036\sqlhotfix.chm
c:\47d0736f6d533ff51c90811fe7d41049\1036\sqlse.rll
c:\47d0736f6d533ff51c90811fe7d41049\1040\eula.txt
c:\47d0736f6d533ff51c90811fe7d41049\1040\finalsql2005information.rtf
c:\47d0736f6d533ff51c90811fe7d41049\1040\hotfix.rll
c:\47d0736f6d533ff51c90811fe7d41049\1040\sqlhotfix.chm
c:\47d0736f6d533ff51c90811fe7d41049\1040\sqlse.rll
c:\47d0736f6d533ff51c90811fe7d41049\1041\eula.txt
c:\47d0736f6d533ff51c90811fe7d41049\1041\finalsql2005information.rtf
c:\47d0736f6d533ff51c90811fe7d41049\1041\hotfix.rll
c:\47d0736f6d533ff51c90811fe7d41049\1041\sqlhotfix.chm
c:\47d0736f6d533ff51c90811fe7d41049\1041\sqlse.rll
c:\47d0736f6d533ff51c90811fe7d41049\1042\eula.txt
c:\47d0736f6d533ff51c90811fe7d41049\1042\finalsql2005information.rtf
c:\47d0736f6d533ff51c90811fe7d41049\1042\hotfix.rll
c:\47d0736f6d533ff51c90811fe7d41049\1042\sqlhotfix.chm
c:\47d0736f6d533ff51c90811fe7d41049\1042\sqlse.rll
c:\47d0736f6d533ff51c90811fe7d41049\1043\eula.txt
c:\47d0736f6d533ff51c90811fe7d41049\1043\finalsql2005information.rtf
c:\47d0736f6d533ff51c90811fe7d41049\1043\hotfix.rll
c:\47d0736f6d533ff51c90811fe7d41049\1043\sqlhotfix.chm
c:\47d0736f6d533ff51c90811fe7d41049\1043\sqlse.rll
c:\47d0736f6d533ff51c90811fe7d41049\1046\eula.txt
c:\47d0736f6d533ff51c90811fe7d41049\1046\finalsql2005information.rtf
c:\47d0736f6d533ff51c90811fe7d41049\1046\hotfix.rll
c:\47d0736f6d533ff51c90811fe7d41049\1046\sqlhotfix.chm
c:\47d0736f6d533ff51c90811fe7d41049\1046\sqlse.rll
c:\47d0736f6d533ff51c90811fe7d41049\1049\eula.txt
c:\47d0736f6d533ff51c90811fe7d41049\1049\finalsql2005information.rtf
c:\47d0736f6d533ff51c90811fe7d41049\1049\hotfix.rll
c:\47d0736f6d533ff51c90811fe7d41049\1049\sqlhotfix.chm
c:\47d0736f6d533ff51c90811fe7d41049\1049\sqlse.rll
c:\47d0736f6d533ff51c90811fe7d41049\1053\eula.txt
c:\47d0736f6d533ff51c90811fe7d41049\1053\finalsql2005information.rtf
c:\47d0736f6d533ff51c90811fe7d41049\1053\hotfix.rll
c:\47d0736f6d533ff51c90811fe7d41049\1053\sqlhotfix.chm
c:\47d0736f6d533ff51c90811fe7d41049\1053\sqlse.rll
c:\47d0736f6d533ff51c90811fe7d41049\2052\eula.txt
c:\47d0736f6d533ff51c90811fe7d41049\2052\finalsql2005information.rtf
c:\47d0736f6d533ff51c90811fe7d41049\2052\hotfix.rll
c:\47d0736f6d533ff51c90811fe7d41049\2052\sqlhotfix.chm
c:\47d0736f6d533ff51c90811fe7d41049\2052\sqlse.rll
c:\47d0736f6d533ff51c90811fe7d41049\3082\eula.txt
c:\47d0736f6d533ff51c90811fe7d41049\3082\finalsql2005information.rtf
c:\47d0736f6d533ff51c90811fe7d41049\3082\hotfix.rll
c:\47d0736f6d533ff51c90811fe7d41049\3082\sqlhotfix.chm
c:\47d0736f6d533ff51c90811fe7d41049\3082\sqlse.rll
c:\47d0736f6d533ff51c90811fe7d41049\batchparser90.dll
c:\47d0736f6d533ff51c90811fe7d41049\dbghelp.dll
c:\47d0736f6d533ff51c90811fe7d41049\dumpdatastore.dll
c:\47d0736f6d533ff51c90811fe7d41049\hotfix.exe
c:\47d0736f6d533ff51c90811fe7d41049\hotfixas.inf
c:\47d0736f6d533ff51c90811fe7d41049\hotfixas\files\sqlrun_as.msp
c:\47d0736f6d533ff51c90811fe7d41049\hotfixdts.inf
c:\47d0736f6d533ff51c90811fe7d41049\hotfixdts\files\sqlrun_dts.msp
c:\47d0736f6d533ff51c90811fe7d41049\hotfixns.inf
c:\47d0736f6d533ff51c90811fe7d41049\hotfixns\files\sqlrun_ns.msp
c:\47d0736f6d533ff51c90811fe7d41049\hotfixrs.inf
c:\47d0736f6d533ff51c90811fe7d41049\hotfixrs\files\sqlrun_rs.msp
c:\47d0736f6d533ff51c90811fe7d41049\hotfixsql.inf
c:\47d0736f6d533ff51c90811fe7d41049\hotfixsql\files\sqlrun_sql.msp
c:\47d0736f6d533ff51c90811fe7d41049\hotfixtools.inf
c:\47d0736f6d533ff51c90811fe7d41049\hotfixtools\files\sqlrun_tools.msp
c:\47d0736f6d533ff51c90811fe7d41049\master.inf
c:\47d0736f6d533ff51c90811fe7d41049\msvcp80.dll
c:\47d0736f6d533ff51c90811fe7d41049\msvcr80.dll
c:\47d0736f6d533ff51c90811fe7d41049\sqlcmd.exe
c:\47d0736f6d533ff51c90811fe7d41049\sqlcmd.rll
c:\47d0736f6d533ff51c90811fe7d41049\sqldiscoveryapi.dll
c:\47d0736f6d533ff51c90811fe7d41049\sqlsetupvista.dll
c:\program files (x86)\Conduit
c:\program files (x86)\Conduit\Community Alerts\Alert.dll
c:\users\Clément\AppData\Local\Conduit
c:\users\Clément\AppData\Local\Conduit\CT2269050\DVDVideoSoftTBAutoUpdateHelper.exe
c:\windows\1226A4C56F274C4EAE372B5512DE125A.TMP
c:\windows\1226A4C56F274C4EAE372B5512DE125A.TMP\WiseCustomCall.dll
c:\windows\1226A4C56F274C4EAE372B5512DE125A.TMP\WiseCustomCalla.dll
c:\windows\1226A4C56F274C4EAE372B5512DE125A.TMP\WiseCustomCalla2.dll
c:\windows\1226A4C56F274C4EAE372B5512DE125A.TMP\WiseCustomCalla21.dll
c:\windows\1226A4C56F274C4EAE372B5512DE125A.TMP\WiseCustomCalla31.exe
c:\windows\1226A4C56F274C4EAE372B5512DE125A.TMP\WiseCustomCalla32.dll
c:\windows\1226A4C56F274C4EAE372B5512DE125A.TMP\WiseCustomCalla33.dll
c:\windows\1226A4C56F274C4EAE372B5512DE125A.TMP\WiseCustomCalla34.dll
c:\windows\1226A4C56F274C4EAE372B5512DE125A.TMP\WiseCustomCalla36.dll
c:\windows\1226A4C56F274C4EAE372B5512DE125A.TMP\WiseCustomCalla36.exe
c:\windows\1226A4C56F274C4EAE372B5512DE125A.TMP\WiseData.ini
c:\windows\Temp3D0FB41C-010B-A30F-F15C-B585682571B1-Signatures
c:\windows\system32\arp.exe . . . . impossible à supprimer
c:\windows\system32\systemcpl.dll . . . . impossible à supprimer
.
.
((((((((((((((((((((((((((((((((((((((( Pilotes/Services )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Service_SpyHunter 4 Service
.
.
((((((((((((((((((((((((((((( Fichiers créés du 2011-04-02 au 2011-05-02 ))))))))))))))))))))))))))))))))))))
.
.
2011-05-02 21:50 . 2011-05-02 21:50 -------- d-----w- c:\users\Default\AppData\Local\temp
2011-05-02 20:18 . 2011-04-11 08:21 8802128 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{EA3757C5-1505-42C2-9A73-5DA1862E719E}\mpengine.dll
2011-05-02 17:01 . 2011-05-02 17:01 -------- d-----w- C:\Kill'em
2011-05-01 21:02 . 2011-05-01 21:02 512 ----a-w- C:\PhysicalDisk0_MBR.bin
2011-05-01 20:56 . 2011-05-01 21:31 -------- d-----w- c:\program files (x86)\ZHPDiag
2011-05-01 18:11 . 2011-05-01 18:11 -------- d-----w- c:\program files\Enigma Software Group
2011-05-01 18:09 . 2011-05-01 18:09 -------- d-----w- c:\program files (x86)\Common Files\Wise Installation Wizard
2011-05-01 16:21 . 2011-05-01 16:21 -------- d-----w- C:\a7fbae34293b7f705b2d67d554ad6497
2011-04-29 11:49 . 2011-04-29 11:49 -------- d-----w- C:\324b43cfd7a08fcf4abbed
2011-04-28 10:49 . 2011-04-28 10:49 -------- d-----w- C:\9037b4215efd810720
2011-04-27 15:31 . 2011-02-26 06:23 2870272 ----a-w- c:\windows\explorer.exe
2011-04-27 15:31 . 2011-02-26 05:33 2614784 ----a-w- c:\windows\SysWow64\explorer.exe
2011-04-17 22:18 . 2011-04-17 22:18 -------- d-----w- C:\found.001
2011-04-16 09:03 . 2011-03-03 06:17 182272 ----a-w- c:\windows\system32\dnsrslvr.dll
2011-04-12 23:23 . 2011-04-12 23:23 -------- d-----w- C:\58ae496e0cddf28480
2011-04-12 09:04 . 2011-04-12 09:04 -------- d-----w- c:\program files\Common Files\Macrovision Shared
2011-04-12 08:58 . 2011-04-12 08:58 -------- d-----w- c:\program files\Common Files\Autodesk Shared
2011-04-12 08:58 . 2011-04-12 08:58 -------- d-----w- c:\program files\Autodesk
2011-04-12 08:56 . 2011-04-12 08:56 -------- d-----w- c:\program files\Microsoft Visual Studio 9.0
2011-04-12 08:55 . 2011-04-12 08:55 -------- d-----w- c:\users\Clément\AppData\Local\Microsoft Help
2011-04-12 08:50 . 2008-10-15 04:22 519000 ----a-w- c:\windows\system32\d3dx10_40.dll
2011-04-12 08:49 . 2006-11-29 11:06 469264 ----a-w- c:\windows\system32\d3dx10.dll
2011-04-12 08:34 . 2011-04-12 08:34 -------- d-----w- C:\Autodesk
2011-04-11 21:57 . 2011-05-02 21:53 -------- d-----w- c:\program files (x86)\Common Files\Akamai
2011-04-05 13:25 . 2011-04-11 20:16 -------- d-----w- c:\program files (x86)\Norton Security Scan
2011-04-05 13:25 . 2011-04-05 13:25 -------- d-----w- c:\programdata\Norton
2011-04-05 13:25 . 2011-04-05 13:25 -------- d-----w- c:\programdata\Symantec
2011-04-05 13:25 . 2011-04-05 13:25 -------- d-----w- c:\program files (x86)\NortonInstaller
2011-04-05 07:40 . 2011-04-11 20:16 -------- d-----w- c:\windows\SysWow64\Adobe
.
.
.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-04-11 08:21 . 2010-05-17 17:34 8802128 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll
2011-03-11 12:09 . 2011-02-27 18:19 14744 ----a-w- c:\users\Clément\AppData\Roaming\Microsoft\IdentityCRL\Production\ppcrlconfig.dll
2011-03-11 12:09 . 2011-02-27 18:19 14744 ----a-w- c:\users\Clément\AppData\Roaming\Microsoft\IdentityCRL\Production\ppcrlconfig.dll
2011-03-04 06:17 . 2011-04-27 15:31 135168 ----a-w- c:\windows\apppatch\AppPatch64\AcXtrnal.dll
2011-03-04 06:17 . 2011-04-27 15:31 347648 ----a-w- c:\windows\apppatch\AppPatch64\AcLayers.dll
2011-02-19 06:37 . 2011-03-25 21:36 1135104 ----a-w- c:\windows\system32\FntCache.dll
2011-02-19 06:37 . 2011-03-25 21:36 1540608 ----a-w- c:\windows\system32\DWrite.dll
2011-02-19 06:36 . 2011-03-25 21:36 902656 ----a-w- c:\windows\system32\d2d1.dll
2011-02-19 05:32 . 2011-03-25 21:36 1074176 ----a-w- c:\windows\SysWow64\DWrite.dll
2011-02-19 05:32 . 2011-03-25 21:36 739840 ----a-w- c:\windows\SysWow64\d2d1.dll
.
.
((((((((((((((((((((((((((((( SnapShot@2011-05-02_20.09.40 )))))))))))))))))))))))))))))))))))))))))
.
+ 2009-07-13 23:51 . 2009-07-14 01:16 85504 c:\windows\SysWOW64\xwreg.dll
+ 2009-07-13 23:51 . 2009-07-14 01:14 41472 c:\windows\SysWOW64\xwizard.exe
+ 2009-07-13 23:44 . 2009-07-14 01:16 47616 c:\windows\SysWOW64\xolehlp.dll
+ 2009-07-13 23:52 . 2009-07-14 01:16 17920 c:\windows\SysWOW64\xmlprovi.dll
+ 2009-07-14 00:13 . 2009-07-14 01:16 54784 c:\windows\SysWOW64\xmlfilter.dll
+ 2009-07-14 00:05 . 2009-07-14 01:16 25600 c:\windows\SysWOW64\XInput9_1_0.dll
+ 2011-04-12 08:50 . 2007-04-04 16:53 81768 c:\windows\SysWOW64\xinput1_3.dll
+ 2011-04-12 08:49 . 2006-07-28 07:30 62744 c:\windows\SysWOW64\xinput1_2.dll
+ 2011-04-12 08:49 . 2006-03-31 10:39 62672 c:\windows\SysWOW64\xinput1_1.dll
+ 2009-07-13 23:15 . 2009-07-14 01:14 36864 c:\windows\SysWOW64\xcopy.exe
+ 2011-04-12 08:51 . 2009-03-16 12:18 69448 c:\windows\SysWOW64\XAPOFX1_3.dll
+ 2011-04-12 08:50 . 2008-10-15 05:03 70992 c:\windows\SysWOW64\XAPOFX1_2.dll
+ 2011-04-12 08:50 . 2008-07-30 04:20 68616 c:\windows\SysWOW64\XAPOFX1_1.dll
+ 2011-04-12 08:50 . 2008-05-30 12:17 65032 c:\windows\SysWOW64\XAPOFX1_0.dll
+ 2011-04-12 08:51 . 2009-03-16 12:18 22360 c:\windows\SysWOW64\X3DAudio1_6.dll
+ 2011-04-12 08:50 . 2008-10-15 05:03 23376 c:\windows\SysWOW64\X3DAudio1_5.dll
+ 2011-04-12 08:50 . 2008-05-30 12:17 25608 c:\windows\SysWOW64\X3DAudio1_4.dll
+ 2011-04-12 08:50 . 2008-03-05 14:00 25608 c:\windows\SysWOW64\X3DAudio1_3.dll
+ 2011-04-12 08:50 . 2007-10-22 01:37 17928 c:\windows\SysWOW64\X3DAudio1_2.dll
+ 2011-04-12 08:49 . 2007-03-05 10:42 15128 c:\windows\SysWOW64\x3daudio1_1.dll
+ 2011-04-12 08:49 . 2006-02-03 06:41 14032 c:\windows\SysWOW64\x3daudio1_0.dll
+ 2009-07-13 23:53 . 2009-07-14 01:16 80896 c:\windows\SysWOW64\wzcdlg.dll
+ 2009-07-13 23:56 . 2009-07-14 01:16 27648 c:\windows\SysWOW64\wwapi.dll
+ 2009-07-14 00:14 . 2009-07-14 01:16 27136 c:\windows\SysWOW64\wups.dll
+ 2009-07-14 00:14 . 2009-07-14 01:16 87552 c:\windows\SysWOW64\wudriver.dll
+ 2009-07-14 00:14 . 2009-07-14 01:14 33792 c:\windows\SysWOW64\wuapp.exe
+ 2009-07-14 00:02 . 2009-07-14 01:16 39936 c:\windows\SysWOW64\wtsapi32.dll
+ 2009-07-13 23:55 . 2009-07-14 01:16 15360 c:\windows\SysWOW64\wsock32.dll
+ 2009-07-13 23:55 . 2009-07-14 01:16 51712 c:\windows\SysWOW64\wsnmp32.dll
+ 2009-07-13 23:31 . 2009-07-14 01:11 54272 c:\windows\SysWOW64\WsmRes.dll
+ 2009-07-13 23:31 . 2009-07-14 01:14 12288 c:\windows\SysWOW64\wsmprovhost.exe
+ 2009-07-13 23:31 . 2009-07-14 01:16 10752 c:\windows\SysWOW64\wsmplpxy.dll
+ 2009-07-13 23:53 . 2009-07-14 01:16 14848 c:\windows\SysWOW64\wshrm.dll
+ 2009-07-13 23:53 . 2009-07-14 01:16 13824 c:\windows\SysWOW64\wshqos.dll
+ 2009-07-13 23:53 . 2009-07-14 01:16 10752 c:\windows\SysWOW64\wshirda.dll
+ 2009-07-13 23:12 . 2009-07-14 01:16 10752 c:\windows\SysWOW64\wship6.dll
+ 2009-07-13 23:42 . 2009-07-14 01:16 80896 c:\windows\SysWOW64\wshext.dll
+ 2009-07-13 23:55 . 2009-07-14 01:16 15360 c:\windows\SysWOW64\wshelper.dll
+ 2009-07-13 23:42 . 2009-07-14 01:16 25600 c:\windows\SysWOW64\wshcon.dll
+ 2009-07-13 23:51 . 2009-07-14 01:16 35840 c:\windows\SysWOW64\wshbth.dll
+ 2009-07-14 00:19 . 2009-07-14 01:16 20992 c:\windows\SysWOW64\wsdchngr.dll
+ 2009-07-13 23:55 . 2009-07-14 01:16 56832 c:\windows\SysWOW64\wscmisetup.dll
+ 2009-07-13 23:31 . 2009-07-14 01:16 18944 c:\windows\SysWOW64\wscisvif.dll
+ 2009-07-13 23:31 . 2009-07-14 01:16 95744 c:\windows\SysWOW64\wscinterop.dll
+ 2011-02-13 10:06 . 2010-12-21 05:38 51200 c:\windows\SysWOW64\wscapi.dll
+ 2009-07-14 00:07 . 2009-07-14 01:14 30208 c:\windows\SysWOW64\WPDShextAutoplay.exe
+ 2009-07-13 23:40 . 2009-07-14 01:16 10752 c:\windows\SysWOW64\wpcsvc.dll
+ 2009-07-13 23:16 . 2009-07-13 23:16 14336 c:\windows\SysWOW64\wowreg32.exe
+ 2009-07-13 23:36 . 2009-07-14 01:16 11264 c:\windows\SysWOW64\wmsgapi.dll
+ 2009-07-14 00:08 . 2009-07-14 01:16 22528 c:\windows\SysWOW64\wmpcm.dll
+ 2009-07-13 23:13 . 2009-07-14 01:16 23040 c:\windows\SysWOW64\wmiprop.dll
+ 2009-07-14 00:06 . 2009-07-14 01:16 36864 c:\windows\SysWOW64\wmdmps.dll
+ 2009-07-14 00:06 . 2009-07-14 01:16 31744 c:\windows\SysWOW64\wmdmlog.dll
+ 2009-07-14 00:07 . 2009-07-14 01:16 53760 c:\windows\SysWOW64\wmcodecdspps.dll
+ 2009-07-13 23:51 . 2009-07-14 01:16 16896 c:\windows\SysWOW64\wlaninst.dll
+ 2009-07-13 23:51 . 2009-07-14 01:16 84480 c:\windows\SysWOW64\wlanhlp.dll
+ 2009-07-13 23:51 . 2009-07-14 01:14 77312 c:\windows\SysWOW64\wlanext.exe
+ 2009-07-13 23:51 . 2009-07-14 01:16 81408 c:\windows\SysWOW64\wlanapi.dll
+ 2009-07-14 00:01 . 2009-07-14 01:16 12800 c:\windows\SysWOW64\wksprtPS.dll
+ 2009-07-13 23:37 . 2009-07-14 01:16 47104 c:\windows\SysWOW64\wkscli.dll
+ 2009-07-13 23:41 . 2009-07-14 01:14 79872 c:\windows\SysWOW64\winver.exe
+ 2009-07-13 23:51 . 2009-07-14 01:16 16896 c:\windows\SysWOW64\winusb.dll
+ 2009-07-13 23:55 . 2009-07-14 01:16 16896 c:\windows\SysWOW64\WINSRPC.DLL
+ 2009-07-13 23:55 . 2009-07-14 01:16 68608 c:\windows\SysWOW64\winsockhc.dll
+ 2009-07-13 23:37 . 2009-07-14 01:15 11264 c:\windows\SysWOW64\winshfhc.dll
+ 2009-07-13 23:31 . 2009-07-14 01:16 10752 c:\windows\SysWOW64\winrssrv.dll
+ 2009-07-13 23:31 . 2009-07-14 01:14 20480 c:\windows\SysWOW64\winrshost.exe
+ 2009-07-13 23:31 . 2009-07-14 01:14 39936 c:\windows\SysWOW64\winrs.exe
+ 2009-07-13 23:37 . 2009-07-14 01:16 20992 c:\windows\SysWOW64\winrnr.dll
+ 2009-07-13 23:12 . 2009-07-14 01:16 16896 c:\windows\SysWOW64\winnsi.dll
+ 2009-07-13 23:52 . 2009-07-14 01:16 70144 c:\windows\SysWOW64\winipsec.dll
+ 2009-07-13 23:36 . 2009-07-14 01:14 96256 c:\windows\SysWOW64\wininit.exe
+ 2009-07-14 00:14 . 2009-07-14 01:16 27648 c:\windows\SysWOW64\WinFax.dll
+ 2009-07-13 23:32 . 2009-07-14 01:15 24064 c:\windows\SysWOW64\WindowsPowerShell\v1.0\pwrshsip.dll
+ 2009-07-13 23:32 . 2009-07-14 01:06 20480 c:\windows\SysWOW64\WindowsPowerShell\v1.0\PSEvents.dll
+ 2009-07-13 23:37 . 2009-07-14 01:16 35328 c:\windows\SysWOW64\wincredprovider.dll
+ 2009-07-13 23:18 . 2009-07-14 01:16 12800 c:\windows\SysWOW64\winbrand.dll
+ 2009-07-13 23:37 . 2009-07-14 01:16 57856 c:\windows\SysWOW64\winbio.dll
+ 2009-07-14 00:14 . 2009-07-14 01:16 12800 c:\windows\SysWOW64\wiatrace.dll
+ 2009-07-14 00:14 . 2009-07-14 01:16 87552 c:\windows\SysWOW64\wiascanprofiles.dll
+ 2009-07-14 00:15 . 2009-07-14 01:14 88576 c:\windows\SysWOW64\wiaacmgr.exe
+ 2009-07-13 23:15 . 2009-07-14 01:14 43008 c:\windows\SysWOW64\whoami.exe
+ 2009-07-13 23:55 . 2009-07-14 01:16 14848 c:\windows\SysWOW64\whhelper.dll
+ 2009-07-13 23:15 . 2009-07-14 01:14 35328 c:\windows\SysWOW64\where.exe
+ 2009-07-13 23:20 . 2009-07-14 01:16 32768 c:\windows\SysWOW64\whealogr.dll
+ 2009-07-13 23:52 . 2009-07-14 01:16 66048 c:\windows\SysWOW64\WfHC.dll
+ 2009-07-13 23:52 . 2009-07-14 01:16 18944 c:\windows\SysWOW64\wfapigp.dll
+ 2009-07-13 23:29 . 2009-07-14 01:16 83456 c:\windows\SysWOW64\wevtfwd.dll
+ 2009-07-13 23:27 . 2009-07-14 01:14 53760 c:\windows\SysWOW64\wermgr.exe
+ 2009-07-13 23:27 . 2009-07-14 01:14 28672 c:\windows\SysWOW64\WerFaultSecure.exe
+ 2009-07-13 23:27 . 2009-07-14 01:16 28672 c:\windows\SysWOW64\werdiagcontroller.dll
+ 2009-07-13 23:30 . 2009-07-14 01:14 80384 c:\windows\SysWOW64\wecutil.exe
+ 2009-07-13 23:29 . 2009-07-14 01:16 58368 c:\windows\SysWOW64\wecapi.dll
+ 2009-07-13 23:19 . 2009-07-14 01:16 76288 c:\windows\SysWOW64\wdi.dll
+ 2009-07-13 23:25 . 2009-07-14 01:16 32768 c:\windows\SysWOW64\WcsPlugInService.dll
+ 2009-07-13 23:52 . 2009-07-14 01:16 20992 c:\windows\SysWOW64\WcnEapPeerProxy.dll
+ 2009-07-13 23:52 . 2009-07-14 01:16 20480 c:\windows\SysWOW64\WcnEapAuthProxy.dll
+ 2009-07-13 23:53 . 2009-07-14 01:16 86528 c:\windows\SysWOW64\WcnApi.dll
+ 2009-07-13 23:30 . 2009-07-14 01:16 61952 c:\windows\SysWOW64\wbem\xml\wmi2xml.dll
+ 2009-07-13 23:30 . 2009-07-14 01:16 85504 c:\windows\SysWOW64\wbem\wmiutils.dll
+ 2009-07-13 23:19 . 2009-07-14 01:16 50176 c:\windows\SysWOW64\wbem\WmiPerfInst.dll
+ 2009-07-13 23:19 . 2009-07-14 01:16 90112 c:\windows\SysWOW64\wbem\WmiPerfClass.dll
+ 2009-07-13 23:30 . 2009-07-14 01:16 74752 c:\windows\SysWOW64\wbem\WMICOOKR.dll
+ 2009-07-13 23:31 . 2009-07-14 01:16 89600 c:\windows\SysWOW64\wbem\WmiApRpl.dll
+ 2009-07-13 23:30 . 2009-07-14 01:14 78336 c:\windows\SysWOW64\wbem\WinMgmt.exe
+ 2009-07-13 23:30 . 2009-07-14 01:16 47616 c:\windows\SysWOW64\wbem\wbemsvc.dll
+ 2009-07-13 23:30 . 2009-07-14 01:16 29184 c:\windows\SysWOW64\wbem\wbemprox.dll
+ 2009-07-13 23:30 . 2009-07-14 01:16 98304 c:\windows\SysWOW64\wbem\stdprov.dll
+ 2009-07-13 23:22 . 2009-07-14 01:16 79360 c:\windows\SysWOW64\wbem\RacWmiProv.dll
+ 2009-07-13 23:30 . 2009-07-14 01:16 78336 c:\windows\SysWOW64\wbem\PolicMan.dll
+ 2009-07-13 23:30 . 2009-07-14 01:14 19968 c:\windows\SysWOW64\wbem\mofcomp.exe
+ 2009-07-13 23:15 . 2009-07-14 01:14 34304 c:\windows\SysWOW64\waitfor.exe
+ 2009-07-14 00:07 . 2009-07-14 01:16 58880 c:\windows\SysWOW64\WABSyncProvider.dll
+ 2009-07-13 23:37 . 2009-07-14 01:16 26624 c:\windows\SysWOW64\w32topl.dll
+ 2009-07-13 23:33 . 2009-07-14 01:14 65536 c:\windows\SysWOW64\w32tm.exe
+ 2010-04-25 15:13 . 2005-06-17 08:26 61440 c:\windows\SysWOW64\W32N50.dll
+ 2009-07-13 23:23 . 2009-07-14 01:16 56320 c:\windows\SysWOW64\vsstrace.dll
+ 2009-07-13 23:23 . 2009-07-14 01:16 26112 c:\windows\SysWOW64\vss_ps.dll
+ 2009-07-13 23:54 . 2009-07-14 01:16 24576 c:\windows\SysWOW64\vpnikeapi.dll
+ 2009-07-13 23:15 . 2009-07-14 01:16 17408 c:\windows\SysWOW64\virtdisk.dll
+ 2009-07-14 00:03 . 2009-07-14 01:16 56832 c:\windows\SysWOW64\vfwwdm32.dll
+ 2009-07-14 02:35 . 2009-07-14 01:16 20535 c:\windows\SysWOW64\vfpodbc.dll
+ 2010-01-23 07:05 . 2009-12-01 21:03 98304 c:\windows\SysWOW64\VESWinlogon.dll
+ 2009-07-13 23:41 . 2009-07-14 01:16 21504 c:\windows\SysWOW64\version.dll
+ 2009-07-13 23:41 . 2009-07-14 01:14 10752 c:\windows\SysWOW64\verclsid.exe
+ 2009-07-13 23:23 . 2009-07-14 01:16 47616 c:\windows\SysWOW64\vdsvd.dll
+ 2009-07-13 23:23 . 2009-07-14 01:16 44544 c:\windows\SysWOW64\vds_ps.dll
+ 2009-07-13 23:20 . 2009-07-14 01:16 16896 c:\windows\SysWOW64\vdmdbg.dll
+ 1999-11-25 02:40 . 1999-11-25 02:40 40960 c:\windows\SysWOW64\VBAME.DLL
+ 2009-07-13 21:04 . 2009-07-14 01:16 30749 c:\windows\SysWOW64\vbajet32.dll
+ 2009-07-13 23:37 . 2009-07-14 01:16 36352 c:\windows\SysWOW64\vaultcli.dll
+ 2009-07-13 23:38 . 2009-07-14 01:16 20992 c:\windows\SysWOW64\UXInit.dll
+ 2009-07-14 00:02 . 2009-07-14 01:16 31744 c:\windows\SysWOW64\utildll.dll
+ 2009-07-13 23:34 . 2009-07-14 01:14 26112 c:\windows\SysWOW64\userinit.exe
+ 2009-07-13 23:34 . 2009-07-14 01:16 79360 c:\windows\SysWOW64\userenv.dll
+ 2009-07-13 23:40 . 2009-07-14 01:16 78848 c:\windows\SysWOW64\UserAccountControlSettings.dll
+ 2009-07-13 23:41 . 2009-07-14 01:16 80896 c:\windows\SysWOW64\usbui.dll
+ 2009-07-13 23:51 . 2009-07-14 01:16 11264 c:\windows\SysWOW64\usbperf.dll
+ 2009-07-13 23:51 . 2009-07-14 01:16 23552 c:\windows\SysWOW64\usbceip.dll
+ 2009-07-13 23:14 . 2009-07-14 01:16 23040 c:\windows\SysWOW64\ureg.dll
+ 2009-07-13 23:55 . 2009-07-14 01:14 23552 c:\windows\SysWOW64\upnpcont.exe
+ 2009-07-13 23:19 . 2009-07-14 01:14 33792 c:\windows\SysWOW64\unlodctr.exe
+ 2009-07-13 23:55 . 2009-07-14 01:16 16896 c:\windows\SysWOW64\uniplat.dll
+ 2009-07-13 23:55 . 2009-07-14 01:16 59392 c:\windows\SysWOW64\unimdmat.dll
+ 2009-07-13 23:55 . 2009-07-14 01:16 17920 c:\windows\SysWOW64\umdmxfrm.dll
+ 2009-07-13 23:55 . 2009-07-14 01:16 35328 c:\windows\SysWOW64\uicom.dll
+ 2009-07-13 23:28 . 2009-07-14 01:16 99328 c:\windows\SysWOW64\UIAnimation.dll
+ 2009-07-13 23:14 . 2009-07-14 01:16 95232 c:\windows\SysWOW64\ufat.dll
+ 2009-07-13 23:14 . 2009-07-14 01:16 68096 c:\windows\SysWOW64\uexfat.dll
+ 2009-07-13 23:55 . 2009-07-14 01:16 45056 c:\windows\SysWOW64\udhisapi.dll
+ 2009-07-13 23:52 . 2009-07-14 01:16 48128 c:\windows\SysWOW64\ucmhc.dll
+ 2009-07-13 23:15 . 2009-07-14 01:14 47616 c:\windows\SysWOW64\tzutil.exe
+ 2009-07-13 23:19 . 2009-07-14 01:14 40448 c:\windows\SysWOW64\typeperf.exe
+ 2009-07-13 23:11 . 2009-07-14 01:16 10752 c:\windows\SysWOW64\txfw32.dll
+ 2009-07-13 23:44 . 2009-07-14 01:16 90624 c:\windows\SysWOW64\txflog.dll
+ 2009-07-14 00:05 . 2009-07-14 01:16 29696 c:\windows\SysWOW64\tvratings.dll
+ 2009-07-14 00:35 . 2009-06-10 21:14 34624 c:\windows\SysWOW64\TsWpfWrp.exe
+ 2009-07-14 00:02 . 2009-07-14 01:14 38912 c:\windows\SysWOW64\TSTheme.exe
+ 2009-07-13 23:34 . 2009-07-14 01:16 65024 c:\windows\SysWOW64\TSpkg.dll
+ 2009-07-14 00:02 . 2009-07-14 01:16 36864 c:\windows\SysWOW64\tsgqec.dll
+ 2009-07-13 23:29 . 2009-07-14 01:16 13312 c:\windows\SysWOW64\TSChannel.dll
+ 2010-05-15 10:42 . 2009-12-19 09:02 12288 c:\windows\SysWOW64\tsbyuv.dll
+ 2009-07-13 23:15 . 2009-07-13 23:15 16384 c:\windows\SysWOW64\tree.com
+ 2009-07-13 23:27 . 2009-07-14 01:16 20992 c:\windows\SysWOW64\TRAPI.dll
+ 2009-07-13 23:54 . 2009-07-14 01:16 33280 c:\windows\SysWOW64\traffic.dll
+ 2009-07-13 23:55 . 2009-07-14 01:14 12288 c:\windows\SysWOW64\TRACERT.EXE
+ 2009-07-13 23:12 . 2009-07-14 01:14 94720 c:\windows\SysWOW64\TpmInit.exe
+ 2009-07-13 23:12 . 2009-07-14 01:16 40960 c:\windows\SysWOW64\tpmcompc.dll
+ 2009-07-14 00:01 . 2009-07-14 01:16 70144 c:\windows\SysWOW64\tlscsp.dll
+ 2009-07-13 23:15 . 2009-07-14 01:14 27136 c:\windows\SysWOW64\timeout.exe
+ 2009-07-13 23:40 . 2009-07-14 01:16 82944 c:\windows\SysWOW64\thumbcache.dll
+ 2009-07-14 00:19 . 2009-07-14 01:14 13824 c:\windows\SysWOW64\tcmsetup.exe
+ 2009-07-13 23:12 . 2009-07-14 01:16 12288 c:\windows\SysWOW64\tbs.dll
+ 2009-07-13 23:29 . 2009-07-14 01:16 36864 c:\windows\SysWOW64\TaskSchdPS.dll
+ 2009-07-13 23:57 . 2009-07-14 01:14 80896 c:\windows\SysWOW64\tasklist.exe
+ 2009-07-13 23:57 . 2009-07-14 01:14 77824 c:\windows\SysWOW64\taskkill.exe
+ 2009-07-14 00:19 . 2009-07-14 01:14 11264 c:\windows\SysWOW64\TapiUnattend.exe
+ 2009-07-13 23:15 . 2009-07-14 01:14 50688 c:\windows\SysWOW64\takeown.exe
+ 2009-07-13 23:40 . 2009-07-14 01:14 81920 c:\windows\SysWOW64\SystemPropertiesRemote.exe
+ 2009-07-13 23:40 . 2009-07-14 01:14 81920 c:\windows\SysWOW64\SystemPropertiesProtection.exe
+ 2009-07-13 23:40 . 2009-07-14 01:14 81920 c:\windows\SysWOW64\SystemPropertiesPerformance.exe
+ 2009-07-13 23:40 . 2009-07-14 01:14 81920 c:\windows\SysWOW64\SystemPropertiesHardware.exe
+ 2009-07-13 23:40 . 2009-07-14 01:14 81920 c:\windows\SysWOW64\SystemPropertiesDataExecutionPrevention.exe
+ 2009-07-13 23:40 . 2009-07-14 01:14 81920 c:\windows\SysWOW64\SystemPropertiesComputerName.exe
+ 2009-07-13 23:40 . 2009-07-14 01:14 81920 c:\windows\SysWOW64\SystemPropertiesAdvanced.exe
+ 2009-07-13 23:57 . 2009-07-14 01:14 75776 c:\windows\SysWOW64\systeminfo.exe
+ 2009-07-13 23:17 . 2009-07-14 01:16 14336 c:\windows\SysWOW64\syssetup.dll
+ 2009-07-13 23:34 . 2009-07-14 01:14 28672 c:\windows\SysWOW64\syskey.exe
+ 2009-07-14 00:07 . 2009-07-14 01:16 55296 c:\windows\SysWOW64\Syncreg.dll
+ 2009-07-14 00:07 . 2009-07-14 01:16 15360 c:\windows\SysWOW64\SyncInfrastructureps.dll
+ 2009-07-14 00:07 . 2009-07-14 01:14 38912 c:\windows\SysWOW64\SyncHost.exe
+ 2009-07-13 23:39 . 2009-07-14 01:16 78336 c:\windows\SysWOW64\synceng.dll
+ 2009-07-13 23:16 . 2009-07-14 01:14 27136 c:\windows\SysWOW64\sxstrace.exe
+ 2009-07-13 23:15 . 2009-07-14 01:16 22016 c:\windows\SysWOW64\sxsstore.dll
+ 2009-07-13 23:23 . 2009-07-14 01:16 19456 c:\windows\SysWOW64\sxshared.dll
+ 2009-07-13 23:23 . 2009-07-14 01:16 31744 c:\windows\SysWOW64\sxproxy.dll
+ 2009-07-13 23:19 . 2009-07-14 01:14 20992 c:\windows\SysWOW64\svchost.exe
+ 2009-07-13 23:15 . 2009-07-14 01:14 13824 c:\windows\SysWOW64\subst.exe
+ 2009-07-13 23:45 . 2009-07-14 01:16 60928 c:\windows\SysWOW64\Storprop.dll
+ 2009-07-13 23:42 . 2009-07-14 01:16 62464 c:\windows\SysWOW64\StorageContextHandler.dll
+ 2009-07-13 23:44 . 2009-07-14 01:16 65024 c:\windows\SysWOW64\stclient.dll
+ 2010-05-15 10:42 . 2009-12-11 07:36 96768 c:\windows\SysWOW64\sspicli.dll
+ 2009-07-13 23:55 . 2009-07-14 01:16 39936 c:\windows\SysWOW64\ssdpapi.dll
+ 2009-07-13 23:37 . 2009-07-14 01:16 90112 c:\windows\SysWOW64\srvcli.dll
+ 2009-07-13 23:23 . 2009-07-14 01:16 73216 c:\windows\SysWOW64\srhelper.dll
+ 2009-07-13 23:23 . 2009-07-14 01:14 14848 c:\windows\SysWOW64\srdelayed.exe
+ 2009-07-13 23:23 . 2009-07-14 01:16 43008 c:\windows\SysWOW64\srclient.dll
+ 2009-07-13 21:03 . 2009-07-13 21:03 49179 c:\windows\SysWOW64\sqlwoa.dll
+ 2009-07-13 21:03 . 2009-07-14 01:16 24603 c:\windows\SysWOW64\sqlwid.dll
+ 2008-11-24 21:31 . 2008-11-24 21:31 65888 c:\windows\SysWOW64\sqlctr90.dll
+ 2009-07-13 23:17 . 2009-07-14 01:16 11264 c:\windows\SysWOW64\spwinsat.dll
+ 2009-07-13 23:17 . 2009-07-14 01:16 19968 c:\windows\SysWOW64\spopk.dll
+ 2009-07-13 23:16 . 2009-07-14 01:16 75776 c:\windows\SysWOW64\SPInf.dll
+ 2009-07-13 23:16 . 2009-07-14 01:16 81920 c:\windows\SysWOW64\spfileq.dll
+ 2009-07-14 00:14 . 2009-07-14 01:16 18944 c:\windows\SysWOW64\Speech\SpeechUX\SpeechUXPS.DLL
+ 2009-07-13 23:17 . 2009-07-14 01:16 61952 c:\windows\SysWOW64\spbcd.dll
+ 2009-07-13 23:15 . 2009-07-14 01:16 54784 c:\windows\SysWOW64\SortWindows6Compat.dll
+ 2009-07-13 23:15 . 2009-07-14 01:16 38400 c:\windows\SysWOW64\SortServer2003Compat.dll
+ 2009-07-13 23:15 . 2009-07-14 01:14 19968 c:\windows\SysWOW64\sort.exe
+ 2009-07-13 23:55 . 2009-07-14 01:16 22528 c:\windows\SysWOW64\snmpapi.dll
+ 2009-07-13 23:14 . 2009-07-14 01:16 84992 c:\windows\SysWOW64\SMBHelperClass.dll
+ 2011-02-13 10:06 . 2010-12-21 05:38 14336 c:\windows\SysWOW64\slwga.dll
+ 2009-07-13 23:35 . 2009-07-14 01:16 16384 c:\windows\SysWOW64\slcext.dll
+ 2009-07-13 23:35 . 2009-07-14 01:16 27136 c:\windows\SysWOW64\slc.dll
+ 2009-07-13 23:14 . 2009-07-14 01:16 19456 c:\windows\SysWOW64\sisbkup.dll
+ 2010-04-16 21:12 . 2010-04-16 21:12 48464 c:\windows\SysWOW64\sirenacm.dll
+ 2009-07-13 23:19 . 2009-07-14 01:16 41984 c:\windows\SysWOW64\signdrv.dll
+ 2009-07-13 23:34 . 2009-07-14 01:14 30720 c:\windows\SysWOW64\shutdown.exe
+ 2009-07-13 23:38 . 2009-07-14 01:16 10240 c:\windows\SysWOW64\shunimpl.dll
+ 2009-07-13 23:39 . 2009-07-14 01:16 14336 c:\windows\SysWOW64\shpafact.dll
+ 2009-07-13 23:39 . 2009-07-14 01:16 35840 c:\windows\SysWOW64\shimgvw.dll
+ 2009-07-13 23:40 . 2009-07-14 01:16 20992 c:\windows\SysWOW64\shgina.dll
+ 2009-07-13 23:15 . 2009-07-14 01:16 40960 c:\windows\SysWOW64\sfc_os.dll
+ 2009-07-13 23:15 . 2009-07-14 01:14 35328 c:\windows\SysWOW64\sfc.exe
+ 2009-07-13 23:15 . 2009-07-14 01:14 46080 c:\windows\SysWOW64\setx.exe
+ 2009-07-13 23:53 . 2009-07-14 01:14 17920 c:\windows\SysWOW64\setupSNK.exe
+ 2010-05-15 10:42 . 2009-12-22 08:23 25600 c:\windows\SysWOW64\setup16.exe
+ 2009-07-14 00:01 . 2009-07-14 01:16 66560 c:\windows\SysWOW64\Setup\tssysprep.dll
+ 2009-07-13 23:54 . 2009-07-14 01:16 47104 c:\windows\SysWOW64\Setup\pbkmigr.dll
+ 2009-07-13 23:44 . 2009-07-14 01:15 65024 c:\windows\SysWOW64\Setup\msdtcstp.dll
+ 2009-07-13 23:54 . 2009-07-14 01:15 58368 c:\windows\SysWOW64\Setup\cmmigr.dll
+ 2009-07-13 23:43 . 2009-07-14 01:14 77824 c:\windows\SysWOW64\SetIEInstalledDate.exe
+ 2009-07-14 00:02 . 2009-07-14 01:16 99328 c:\windows\SysWOW64\SessEnv.dll
+ 2009-07-13 23:55 . 2009-07-14 01:16 18432 c:\windows\SysWOW64\serwvdrv.dll
+ 2009-07-13 23:55 . 2009-07-14 01:16 15360 c:\windows\SysWOW64\serialui.dll
+ 2009-07-13 23:21 . 2009-07-14 01:16 10752 c:\windows\SysWOW64\SensApi.dll
+ 2009-07-13 23:21 . 2009-07-14 01:16 49664 c:\windows\SysWOW64\Sens.dll
+ 2009-07-13 23:39 . 2009-07-14 01:16 65536 c:\windows\SysWOW64\sendmail.dll
+ 2010-05-15 10:42 . 2009-12-11 07:39 22016 c:\windows\SysWOW64\secur32.dll
+ 2010-05-15 10:42 . 2010-01-18 23:29 85504 c:\windows\SysWOW64\secproc_ssp_isv.dll
+ 2010-05-15 10:42 . 2010-01-18 23:29 85504 c:\windows\SysWOW64\secproc_ssp.dll
+ 2009-07-13 23:22 . 2009-07-14 01:14 14848 c:\windows\SysWOW64\secinit.exe
+ 2009-07-13 23:11 . 2009-07-14 01:16 92160 c:\windows\SysWOW64\sechost.dll
+ 2009-07-13 23:33 . 2009-07-14 01:14 35328 c:\windows\SysWOW64\SecEdit.exe
+ 2009-07-14 00:13 . 2009-07-14 01:14 86528 c:\windows\SysWOW64\SearchFilterHost.exe
+ 2009-07-13 23:19 . 2009-07-14 01:14 21504 c:\windows\SysWOW64\sdiagnhost.exe
+ 2009-07-13 23:20 . 2009-07-14 01:14 40960 c:\windows\SysWOW64\sdchange.exe
+ 2009-07-13 23:12 . 2009-07-14 01:14 20992 c:\windows\SysWOW64\sdbinst.exe
+ 2009-07-13 23:41 . 2009-07-14 01:14 10240 c:\windows\SysWOW64\scrnsave.scr
+ 2009-07-14 00:12 . 2009-07-14 01:16 57856 c:\windows\SysWOW64\scripto.dll
+ 1998-03-25 05:54 . 1998-03-25 05:54 15872 c:\windows\SysWOW64\SCP32.DLL
+ 2009-07-13 23:37 . 2009-07-14 01:16 17408 c:\windows\SysWOW64\schedcli.dll
+ 2009-07-13 23:33 . 2009-07-14 01:16 66048 c:\windows\SysWOW64\SCardDlg.dll
+ 2009-07-13 23:19 . 2009-07-14 01:14 37376 c:\windows\SysWOW64\sc.exe
+ 2009-07-13 23:40 . 2009-07-14 01:14 12288 c:\windows\SysWOW64\sbunattend.exe
+ 2009-07-14 00:06 . 2009-07-14 01:09 65536 c:\windows\SysWOW64\sberes.dll
+ 2009-07-13 23:37 . 2009-07-14 01:16 60928 c:\windows\SysWOW64\samlib.dll
+ 2009-07-13 23:37 . 2009-07-14 01:16 50688 c:\windows\SysWOW64\samcli.dll
+ 2009-07-13 23:41 . 2009-07-14 01:14 50688 c:\windows\SysWOW64\runonce.exe
+ 2009-07-13 23:41 . 2009-07-14 01:14 57856 c:\windows\SysWOW64\RunLegacyCPLElevated.exe
+ 2009-07-13 23:41 . 2009-07-14 01:14 44544 c:\windows\SysWOW64\rundll32.exe
+ 2009-07-13 23:15 . 2009-07-14 01:14 17408 c:\windows\SysWOW64\runas.exe
+ 2010-08-16 08:16 . 2010-06-19 06:23 37376 c:\windows\SysWOW64\rtutils.dll
+ 2009-07-14 00:13 . 2009-07-14 01:16 36864 c:\windows\SysWOW64\rtffilt.dll
+ 2009-07-13 23:41 . 2009-07-14 01:16 43008 c:\windows\SysWOW64\rshx32.dll
+ 2009-07-14 00:04 . 2009-07-14 01:14 50176 c:\windows\SysWOW64\rrinstaller.exe
+ 2009-07-13 23:43 . 2009-07-14 01:16 45568 c:\windows\SysWOW64\RpcRtRemote.dll
+ 2009-07-13 23:43 . 2009-07-14 01:14 34816 c:\windows\SysWOW64\RpcPing.exe
+ 2009-07-13 23:43 . 2009-07-14 01:16 27648 c:\windows\SysWOW64\rpcnsh.dll
+ 2009-07-13 23:43 . 2009-07-14 01:16 44544 c:\windows\SysWOW64\RPCNDFP.dll
+ 2009-07-13 23:55 . 2009-07-14 01:14 17920 c:\windows\SysWOW64\ROUTE.EXE
+ 2009-07-13 23:16 . 2009-07-14 01:14 97280 c:\windows\SysWOW64\Robocopy.exe
+ 2009-07-13 23:22 . 2009-07-14 01:14 14848 c:\windows\SysWOW64\RmClient.exe
+ 2009-07-13 23:21 . 2009-07-14 01:16 71168 c:\windows\SysWOW64\resutils.dll
+ 2009-07-13 23:15 . 2009-07-14 01:14 16896 c:\windows\SysWOW64\replace.exe
+ 2009-07-13 23:19 . 2009-07-14 01:14 37376 c:\windows\SysWOW64\relog.exe
+ 2009-07-13 23:34 . 2009-07-14 01:14 61440 c:\windows\SysWOW64\rekeywiz.exe
+ 2009-07-13 23:58 . 2009-07-14 01:14 14848 c:\windows\SysWOW64\regsvr32.exe
+ 2009-07-13 23:43 . 2009-07-14 01:14 83968 c:\windows\SysWOW64\RegisterIEPKEYs.exe
+ 2009-07-13 23:58 . 2009-07-14 01:14 44032 c:\windows\SysWOW64\regini.exe
+ 2009-07-13 23:41 . 2009-07-14 01:16 41472 c:\windows\SysWOW64\RegCtrl.dll
+ 2009-07-14 00:02 . 2009-07-14 01:16 71680 c:\windows\SysWOW64\regapi.dll
+ 2009-07-13 23:15 . 2009-07-14 01:14 62464 c:\windows\SysWOW64\reg.exe
+ 2009-07-13 23:15 . 2009-07-14 01:14 11776 c:\windows\SysWOW64\recover.exe
+ 2009-07-13 23:20 . 2009-07-14 01:14 21504 c:\windows\SysWOW64\ReAgentc.exe
+ 2009-07-13 23:20 . 2009-07-14 01:14 36352 c:\windows\SysWOW64\rdrleakdiag.exe
+ 2009-07-14 00:01 . 2009-07-14 01:16 21504 c:\windows\SysWOW64\rdprefdrvapi.dll
+ 2009-07-14 00:02 . 2009-07-14 01:16 52224 c:\windows\SysWOW64\rdpd3d.dll
+ 2009-07-13 23:54 . 2009-07-14 01:16 69632 c:\windows\SysWOW64\rastapi.dll
+ 2009-07-13 23:54 . 2009-07-14 01:16 22528 c:\windows\SysWOW64\rasser.dll
+ 2009-07-13 23:54 . 2009-07-14 01:14 50176 c:\windows\SysWOW64\rasphone.exe
+ 2009-07-13 23:54 . 2009-07-14 01:16 33280 c:\windows\SysWOW64\rasmxs.dll
+ 2009-07-13 23:54 . 2009-07-14 01:16 76800 c:\windows\SysWOW64\rasman.dll
+ 2009-07-13 23:54 . 2009-07-14 01:14 73216 c:\windows\SysWOW64\rasdial.exe
+ 2009-07-13 23:52 . 2009-07-14 01:16 61952 c:\windows\SysWOW64\rasdiag.dll
+ 2009-07-13 23:54 . 2009-07-14 01:16 15360 c:\windows\SysWOW64\rasctrs.dll
+ 2009-07-13 23:54 . 2009-07-14 01:16 81408 c:\windows\SysWOW64\rascfg.dll
+ 2009-07-13 23:54 . 2009-07-14 01:14 16896 c:\windows\SysWOW64\rasautou.exe
+ 2009-07-13 23:54 . 2009-07-14 01:16 11776 c:\windows\SysWOW64\rasadhlp.dll
+ 2009-07-13 23:20 . 2009-07-14 01:16 62976 c:\windows\SysWOW64\radarrs.dll
+ 2009-07-13 23:20 . 2009-07-14 01:16 85504 c:\windows\SysWOW64\radardt.dll
+ 2009-07-13 23:52 . 2009-07-14 01:16 80896 c:\windows\SysWOW64\QUTIL.DLL
+ 2009-07-13 23:52 . 2009-07-14 01:16 99328 c:\windows\SysWOW64\QSVRMGMT.DLL
+ 2009-07-13 23:29 . 2009-07-14 01:16 21504 c:\windows\SysWOW64\qmgrprxy.dll
+ 2009-07-13 23:52 . 2009-07-14 01:16 71680 c:\windows\SysWOW64\QCLIPROV.DLL
+ 2009-05-11 10:42 . 2009-05-11 10:42 59888 c:\windows\SysWOW64\pxwma.dll
+ 2009-05-20 16:56 . 2009-05-20 16:56 68080 c:\windows\SysWOW64\pxinsa64.exe
+ 2010-01-23 06:56 . 2009-05-21 00:56 72176 c:\windows\SysWOW64\pxhpinst.exe
+ 2009-05-20 16:57 . 2009-05-20 16:57 68080 c:\windows\SysWOW64\pxcpya64.exe
+ 2009-07-13 23:32 . 2009-07-14 01:15 41984 c:\windows\SysWOW64\pwrshplugin.dll
+ 2009-07-13 23:32 . 2009-07-14 01:16 23552 c:\windows\SysWOW64\pstorsvc.dll
+ 2009-07-13 23:32 . 2009-07-14 01:16 42496 c:\windows\SysWOW64\pstorec.dll
+ 2009-07-13 23:11 . 2009-07-14 01:19 52816 c:\windows\SysWOW64\PSHED.DLL
+ 2009-07-13 23:32 . 2009-07-14 01:16 50688 c:\windows\SysWOW64\psbase.dll
+ 2009-07-13 23:34 . 2009-07-14 01:14 28160 c:\windows\SysWOW64\proquota.exe
+ 2009-07-13 23:12 . 2009-07-14 01:16 31744 c:\windows\SysWOW64\profapi.dll
+ 2009-07-14 00:18 . 2009-07-14 01:14 60928 c:\windows\SysWOW64\printui.exe
+ 2010-01-23 15:18 . 2010-01-23 15:18 51974 c:\windows\SysWOW64\Printing_Admin_Scripts\fr-FR\prnqctl.vbs
+ 2010-01-23 15:18 . 2010-01-23 15:18 57568 c:\windows\SysWOW64\Printing_Admin_Scripts\fr-FR\prnport.vbs
+ 2010-01-23 15:18 . 2010-01-23 15:18 82594 c:\windows\SysWOW64\Printing_Admin_Scripts\fr-FR\prnmngr.vbs
+ 2010-01-23 15:18 . 2010-01-23 15:18 70914 c:\windows\SysWOW64\Printing_Admin_Scripts\fr-FR\prnjobs.vbs
+ 2010-01-23 15:18 . 2010-01-23 15:18 52460 c:\windows\SysWOW64\Printing_Admin_Scripts\fr-FR\prndrvr.vbs
+ 2009-07-13 23:15 . 2009-07-14 01:14 13824 c:\windows\SysWOW64\print.exe
+ 2009-07-13 23:10 . 2009-07-14 01:09 17408 c:\windows\SysWOW64\prflbmsg.dll
+ 2011-04-27 15:30 . 2011-02-18 05:33 31232 c:\windows\SysWOW64\prevhost.exe
+ 2010-06-27 10:22 . 2009-11-25 10:47 99176 c:\windows\SysWOW64\PresentationHostProxy.dll
+ 2009-07-13 23:16 . 2009-07-14 01:14 59392 c:\windows\SysWOW64\powercfg.exe
+ 2009-07-13 23:20 . 2009-07-14 01:16 22528 c:\windows\SysWOW64\pots.dll
+ 2009-07-14 00:06 . 2009-07-14 01:16 60928 c:\windows\SysWOW64\PortableDeviceConnectApi.dll
+ 2009-07-13 23:55 . 2009-07-14 01:16 65024 c:\windows\SysWOW64\pnrpnsp.dll
+ 2009-07-13 23:16 . 2009-07-14 01:09 74752 c:\windows\SysWOW64\pnpsetup.dll
+ 2009-07-13 23:42 . 2009-07-14 01:16 46592 c:\windows\SysWOW64\pngfilt.dll
+ 2009-07-14 00:03 . 2009-07-14 01:16 77312 c:\windows\SysWOW64\PlaySndSrv.dll
+ 2009-07-13 23:55 . 2009-07-14 01:14 15360 c:\windows\SysWOW64\PING.EXE
+ 2009-07-13 23:41 . 2009-07-14 01:09 34816 c:\windows\SysWOW64\pifmgr.dll
+ 2009-07-14 00:04 . 2009-07-14 01:16 36352 c:\windows\SysWOW64\pid.dll
+ 2009-07-14 00:02 . 2009-07-14 01:16 17408 c:\windows\SysWOW64\perfts.dll
+ 2009-07-13 23:19 . 2009-07-14 01:16 35328 c:\windows\SysWOW64\perfproc.dll
+ 2009-07-13 23:19 . 2009-07-14 01:16 28672 c:\windows\SysWOW64\perfos.dll
+ 2009-07-13 23:19 . 2009-07-14 01:16 20992 c:\windows\SysWOW64\perfnet.dll
+ 2009-07-13 23:11 . 2009-07-14 01:14 20992 c:\windows\SysWOW64\perfhost.exe
+ 2009-07-13 23:19 . 2009-07-14 01:16 31232 c:\windows\SysWOW64\perfdisk.dll
+ 2009-07-13 23:19 . 2009-07-14 01:16 39424 c:\windows\SysWOW64\perfctrs.dll
+ 2009-07-13 23:19 . 2009-07-14 01:16 46080 c:\windows\SysWOW64\pdhui.dll
+ 2009-07-13 23:11 . 2009-07-14 01:16 33280 c:\windows\SysWOW64\pcwum.dll
+ 2009-07-13 23:20 . 2009-07-14 01:14 15872 c:\windows\SysWOW64\pcaui.exe
+ 2009-07-13 23:20 . 2009-07-14 01:16 87040 c:\windows\SysWOW64\pcaui.dll
+ 2009-07-13 23:37 . 2009-07-14 01:16 44032 c:\windows\SysWOW64\pautoenr.dll
+ 2009-07-13 23:55 . 2009-07-14 01:14 13312 c:\windows\SysWOW64\PATHPING.EXE
+ 2009-07-13 23:41 . 2009-07-14 01:16 10752 c:\windows\SysWOW64\panmap.dll
+ 2009-07-13 23:39 . 2009-07-14 01:16 68096 c:\windows\SysWOW64\packager.dll
+ 2009-07-13 23:22 . 2009-07-14 01:16 19456 c:\windows\SysWOW64\osbaseln.dll
+ 2009-07-13 23:40 . 2009-07-14 01:14 97280 c:\windows\SysWOW64\OptionalFeatures.exe
+ 2009-07-13 23:15 . 2009-07-14 01:14 62464 c:\windows\SysWOW64\openfiles.exe
+ 2010-01-23 06:41 . 2009-10-31 20:21 12288 c:\windows\SysWOW64\oobe\info\ie8-oobe-setup.exe
+ 2009-07-13 23:43 . 2009-07-14 01:16 77312 c:\windows\SysWOW64\olethk32.dll
+ 2009-07-13 23:43 . 2009-07-14 01:16 28672 c:\windows\SysWOW64\olesvr32.dll
+ 2009-07-13 23:43 . 2009-07-14 01:09 25600 c:\windows\SysWOW64\oleres.dll
+ 2009-07-13 23:43 . 2009-07-14 01:16 90112 c:\windows\SysWOW64\olepro32.dll
+ 2009-07-13 23:44 . 2009-07-14 01:16 80384 c:\windows\SysWOW64\olecli32.dll
+ 2009-07-13 22:00 . 2009-06-10 21:25 42592 c:\windows\SysWOW64\ole2.dll
+ 2009-12-25 20:13 . 2009-12-16 20:03 59392 c:\windows\SysWOW64\oemdspif.dll
+ 2009-07-14 00:12 . 2009-07-14 01:16 20480 c:\windows\SysWOW64\odtext32.dll
+ 2009-07-14 00:12 . 2009-07-14 01:16 20480 c:\windows\SysWOW64\odpdx32.dll
+ 2009-07-14 00:12 . 2009-07-14 01:16 20480 c:\windows\SysWOW64\odfox32.dll
+ 2009-07-14 00:12 . 2009-07-14 01:16 20480 c:\windows\SysWOW64\odexl32.dll
+ 2009-07-14 00:12 . 2009-07-14 01:16 20480 c:\windows\SysWOW64\oddbse32.dll
+ 2009-07-14 00:12 . 2009-07-14 01:16 24576 c:\windows\SysWOW64\odbcji32.dll
+ 2009-07-14 00:12 . 2009-07-14 01:16 86016 c:\windows\SysWOW64\odbccu32.dll
+ 2009-07-14 00:12 . 2009-07-14 01:16 86016 c:\windows\SysWOW64\odbccr32.dll
+ 2009-07-14 00:12 . 2009-07-14 01:14 32768 c:\windows\SysWOW64\odbcconf.exe
+ 2009-07-14 00:12 . 2009-07-14 01:16 40960 c:\windows\SysWOW64\odbcconf.dll
+ 2009-07-14 00:12 . 2009-07-14 01:16 49152 c:\windows\SysWOW64\odbcbcp.dll
+ 2009-07-14 00:11 . 2009-07-14 01:14 86016 c:\windows\SysWOW64\odbcad32.exe
+ 2009-07-14 00:11 . 2009-07-14 01:16 24576 c:\windows\SysWOW64\odbc32gt.dll
+ 2010-05-15 10:42 . 2009-12-22 08:24 14336 c:\windows\SysWOW64\ntvdm64.dll
+ 2009-07-14 00:18 . 2009-07-14 01:14 61952 c:\windows\SysWOW64\ntprint.exe
+ 2009-07-13 23:41 . 2009-07-14 01:16 15872 c:\windows\SysWOW64\ntlanui2.dll
+ 2009-07-13 23:31 . 2009-07-14 01:16 69120 c:\windows\SysWOW64\ntlanman.dll
+ 2009-07-13 23:38 . 2009-07-14 01:16 90112 c:\windows\SysWOW64\ntdsapi.dll
+ 2009-07-13 23:38 . 2009-07-14 01:14 85504 c:\windows\SysWOW64\nslookup.exe
+ 2009-07-13 23:53 . 2009-07-14 01:16 27136 c:\windows\SysWOW64\nshhttp.dll
+ 2009-07-13 23:56 . 2009-07-14 01:16 16896 c:\windows\SysWOW64\npmproxy.dll
+ 2009-07-13 23:15 . 2009-07-14 01:16 26112 c:\windows\SysWOW64\Nlsdl.dll
+ 2009-07-13 23:15 . 2009-07-14 01:10 68608 c:\windows\SysWOW64\nlsbres.dll
+ 2009-07-13 23:56 . 2009-07-14 01:16 11264 c:\windows\SysWOW64\nlmsprep.dll
+ 2009-07-13 23:53 . 2009-07-14 01:16 51712 c:\windows\SysWOW64\nlaapi.dll
+ 2009-07-13 23:16 . 2009-07-14 01:14 76800 c:\windows\SysWOW64\newdev.exe
+ 2009-07-13 23:53 . 2009-07-14 01:16 40960 c:\windows\SysWOW64\networkitemfactory.dll
+ 2009-07-13 23:37 . 2009-07-14 01:16 22016 c:\windows\SysWOW64\netutils.dll
+ 2009-07-13 23:55 . 2009-07-14 01:14 27136 c:\windows\SysWOW64\NETSTAT.EXE
+ 2009-07-13 23:54 . 2009-07-14 01:14 96256 c:\windows\SysWOW64\netsh.exe
+ 2009-07-13 23:39 . 2009-07-14 01:14 26112 c:\windows\SysWOW64\Netplwiz.exe
+ 2009-07-13 23:54 . 2009-07-14 01:14 25088 c:\windows\SysWOW64\netiougc.exe
+ 2010-06-27 10:22 . 2009-11-25 10:47 49472 c:\windows\SysWOW64\netfxperf.dll
+ 2009-07-13 23:12 . 2009-07-14 01:07 18944 c:\windows\SysWOW64\netevent.dll
+ 2009-07-13 23:53 . 2009-07-14 01:14 24064 c:\windows\SysWOW64\netbtugc.exe
+ 2009-07-13 23:53 . 2009-07-14 01:16 14336 c:\windows\SysWOW64\netbios.dll
+ 2009-07-13 23:37 . 2009-07-14 01:16 56832 c:\windows\SysWOW64\netapi32.dll
+ 2009-07-13 23:37 . 2009-07-14 01:14 46080 c:\windows\SysWOW64\net.exe
+ 2009-07-13 23:34 . 2009-07-14 01:16 93696 c:\windows\SysWOW64\negoexts.dll
+ 2009-07-13 23:52 . 2009-07-14 01:16 12288 c:\windows\SysWOW64\ndproxystub.dll
+ 2009-07-13 23:52 . 2009-07-14 01:16 71168 c:\windows\SysWOW64\ndishc.dll
+ 2009-07-13 23:52 . 2009-07-14 01:16 41984 c:\windows\SysWOW64\ndiscapCfg.dll
+ 2009-07-13 23:52 . 2009-07-14 01:16 94720 c:\windows\SysWOW64\ndfhcdiscovery.dll
+ 2009-07-13 23:52 . 2009-07-14 01:16 29696 c:\windows\SysWOW64\ndfetw.dll
+ 2009-07-13 23:16 . 2009-07-14 01:14 75264 c:\windows\SysWOW64\ndadmin.exe
+ 2009-07-13 23:32 . 2009-07-14 01:16 60928 c:\windows\SysWOW64\ncryptui.dll
+ 2009-07-13 23:30 . 2009-07-14 01:16 49152 c:\windows\SysWOW64\ncobjapi.dll
+ 2009-07-13 23:53 . 2009-07-14 01:16 78336 c:\windows\SysWOW64\nci.dll
+ 2009-07-13 23:22 . 2009-07-14 01:16 19968 c:\windows\SysWOW64\NcdProp.dll
+ 2009-07-13 23:27 . 2009-07-14 01:16 13312 c:\windows\SysWOW64\NativeHooks.dll
+ 2009-07-13 23:52 . 2009-07-14 01:16 38912 c:\windows\SysWOW64\napipsec.dll
+ 2009-07-13 23:54 . 2009-07-14 01:16 52224 c:\windows\SysWOW64\NapiNSP.dll
+ 2009-07-13 23:53 . 2009-07-14 01:16 67584 c:\windows\SysWOW64\napdsnap.dll
+ 2009-07-13 23:53 . 2009-07-14 01:22 46080 c:\windows\SysWOW64\NAPCRYPT.DLL
+ 2009-07-13 23:13 . 2009-07-14 01:14 70656 c:\windows\SysWOW64\MuiUnattend.exe
+ 2009-07-13 23:25 . 2009-07-14 01:15 13312 c:\windows\SysWOW64\muifontsetup.dll
+ 2010-01-23 15:18 . 2010-01-23 15:18 12624 c:\windows\SysWOW64\MUI\040C\mscorees.dll
+ 2010-06-27 10:22 . 2009-11-25 10:47 11600 c:\windows\SysWOW64\MUI\0409\mscorees.dll
+ 2009-07-13 23:44 . 2009-07-14 01:15 27648 c:\windows\SysWOW64\mtxlegih.dll
+ 2009-07-13 23:44 . 2009-07-14 01:15 22528 c:\windows\SysWOW64\mtxdm.dll
+ 2010-05-15 10:42 . 2009-12-19 09:02 22016 c:\windows\SysWOW64\msyuv.dll
+ 2003-04-18 15:29 . 2003-04-18 15:29 82432 c:\windows\SysWOW64\msxml4r.dll
+ 2010-05-15 10:42 . 2009-12-19 09:02 31744 c:\windows\SysWOW64\msvidc32.dll
+ 2009-07-13 23:10 . 2009-07-14 01:07 60928 c:\windows\SysWOW64\msvcrt40.dll
+ 2009-07-13 23:11 . 2009-07-14 01:15 59904 c:\windows\SysWOW64\msvcirt.dll
+ 2002-01-05 02:38 . 2002-01-05 02:38 54784 c:\windows\SysWOW64\msvci70.dll
+ 2009-07-14 00:13 . 2009-07-14 01:15 17408 c:\windows\SysWOW64\msswch.dll
+ 2000-04-04 01:52 . 2000-04-04 01:52 94208 c:\windows\SysWOW64\msstkprp.dll
+ 2009-07-14 00:13 . 2009-07-14 01:15 35328 c:\windows\SysWOW64\mssprxy.dll
+ 2009-07-13 23:32 . 2009-07-14 01:15 39424 c:\windows\SysWOW64\mssign32.dll
+ 2009-07-14 00:12 . 2009-07-14 01:15 10240 c:\windows\SysWOW64\msshooks.dll
+ 2009-07-14 00:12 . 2009-07-14 01:15 59392 c:\windows\SysWOW64\msscntrs.dll
+ 2010-05-15 10:42 . 2009-12-19 09:02 13312 c:\windows\SysWOW64\msrle32.dll
+ 2009-07-14 00:02 . 2009-07-14 01:15 44544 c:\windows\SysWOW64\MsRdpWebAccess.dll
+ 2009-07-13 23:41 . 2009-07-14 01:15 44032 c:\windows\SysWOW64\msports.dll
+ 2009-07-13 23:12 . 2009-07-14 01:15 35328 c:\windows\SysWOW64\mspatcha.dll
+ 2009-07-13 23:42 . 2009-07-14 01:15 86528 c:\windows\SysWOW64\msoert2.dll
+ 2009-07-13 23:11 . 2009-07-14 01:07 60416 c:\windows\SysWOW64\msobjs.dll
+ 2009-07-13 21:03 . 2009-07-14 01:15 61440 c:\windows\SysWOW64\msjter40.dll
+ 2009-07-13 21:03 . 2009-07-14 01:15 24576 c:\windows\SysWOW64\msjint40.dll
+ 2009-07-13 23:31 . 2009-07-14 01:15 20480 c:\windows\SysWOW64\msisip.dll
+ 2009-07-13 23:26 . 2009-07-14 01:15 31232 c:\windows\SysWOW64\msimtf.dll
+ 2009-07-13 23:31 . 2009-07-14 01:07 25088 c:\windows\SysWOW64\msimsg.dll
+ 2009-07-13 23:31 . 2009-07-14 01:15 15872 c:\windows\SysWOW64\msiltcfg.dll
+ 2009-07-13 23:31 . 2009-07-14 01:14 73216 c:\windows\SysWOW64\msiexec.exe
+ 2009-07-13 23:39 . 2009-07-14 01:15 53248 c:\windows\SysWOW64\msident.dll
+ 2009-07-13 23:42 . 2009-07-14 01:06 48128 c:\windows\SysWOW64\mshtmler.dll
+ 2011-04-16 09:04 . 2011-02-24 05:30 67072 c:\windows\SysWOW64\mshtmled.dll
+ 2009-07-13 23:42 . 2009-07-14 01:14 47104 c:\windows\SysWOW64\mshta.exe
+ 2011-04-16 09:04 . 2011-02-24 05:27 12800 c:\windows\SysWOW64\msfeedssync.exe
+ 2011-04-16 09:04 . 2011-02-24 05:30 64512 c:\windows\SysWOW64\msfeedsbs.dll
+ 2009-07-13 23:44 . 2009-07-14 01:06 21504 c:\windows\SysWOW64\msdtcVSp1res.dll
+ 2009-07-13 22:00 . 2009-06-10 21:15 19429 c:\windows\SysWOW64\Msdtc\Trace\msdtcvtr.bat
+ 2009-07-14 00:03 . 2009-07-14 01:15 30208 c:\windows\SysWOW64\msdmo.dll
+ 2009-07-13 23:26 . 2009-07-14 01:15 85504 c:\windows\SysWOW64\msctfui.dll
+ 2009-07-13 23:26 . 2009-07-14 01:15 81920 c:\windows\SysWOW64\msctfp.dll
+ 2009-07-13 23:26 . 2009-07-14 01:15 19968 c:\windows\SysWOW64\MsCtfMonitor.dll
+ 2009-07-14 00:11 . 2009-07-14 01:15 28672 c:\windows\SysWOW64\mscpxl32.dLL
+ 2009-07-13 20:46 . 2009-06-10 21:23 80720 c:\windows\SysWOW64\mscories.dll
+ 2009-07-13 23:32 . 2009-07-14 01:15 10240 c:\windows\SysWOW64\mscat32.dll
+ 2009-12-25 21:04 . 2009-08-29 06:57 34816 c:\windows\SysWOW64\msasn1.dll
+ 2009-07-14 00:03 . 2009-07-14 01:14 20992 c:\windows\SysWOW64\msacm32.drv
+ 2009-07-14 00:03 . 2009-07-14 01:15 72192 c:\windows\SysWOW64\msacm32.dll
+ 2009-07-13 23:55 . 2009-07-14 01:14 11264 c:\windows\SysWOW64\MRINFO.EXE
+ 2009-07-13 23:54 . 2009-07-14 01:15 75264 c:\windows\SysWOW64\mprdim.dll
+ 2009-07-13 23:55 . 2009-07-14 01:15 64000 c:\windows\SysWOW64\mpr.dll
+ 2009-07-14 00:07 . 2009-07-14 01:15 79872 c:\windows\SysWOW64\MP3DMOD.DLL
+ 2009-07-13 23:15 . 2009-07-14 01:14 13312 c:\windows\SysWOW64\mountvol.exe
+ 2009-07-13 23:15 . 2009-07-13 23:15 20992 c:\windows\SysWOW64\more.com
+ 2009-07-13 23:15 . 2009-07-13 23:15 25088 c:\windows\SysWOW64\mode.com
+ 2009-07-14 00:03 . 2009-07-14 01:15 12800 c:\windows\SysWOW64\mmcico.dll
+ 2009-07-14 00:03 . 2009-07-14 01:15 70656 c:\windows\SysWOW64\mmci.dll
+ 2009-07-14 00:12 . 2009-07-14 01:15 38912 c:\windows\SysWOW64\mimefilt.dll
+ 2009-07-14 00:13 . 2009-07-14 01:16 57344 c:\windows\SysWOW64\migwiz\replacementmanifests\WindowsSearchEngine\WSearchMigPlugin.dll
+ 2009-07-13 23:51 . 2009-07-14 01:16 72192 c:\windows\SysWOW64\migwiz\replacementmanifests\Usb\usbmigplugin.dll
+ 2009-07-14 00:01 . 2009-07-14 01:16 75776 c:\windows\SysWOW64\migwiz\replacementmanifests\Microsoft-Windows-TerminalServices-LicenseServer\TlsRepPlugin.dll
+ 2009-07-13 23:42 . 2009-07-14 01:16 90112 c:\windows\SysWOW64\migwiz\replacementmanifests\microsoft-windows-shmig\shmig.dll
+ 2009-07-13 23:40 . 2009-07-14 01:16 19456 c:\windows\SysWOW64\migwiz\replacementmanifests\Microsoft-Windows-GameUXMig\gameuxmig.dll
+ 2009-07-14 00:03 . 2009-07-14 01:16 68608 c:\windows\SysWOW64\migwiz\replacementmanifests\microsoft-windows-audio-mmecore-other\audmigplugin.dll
+ 2009-07-13 23:15 . 2009-07-14 01:16 97280 c:\windows\SysWOW64\migwiz\replacementmanifests\microsoft-international-core\nlscoremig.dll
+ 2009-07-13 23:32 . 2009-07-14 01:16 63488 c:\windows\SysWOW64\migwiz\replacementmanifests\microsoft-activedirectory-webservices\adwsmigrate.dll
+ 2009-07-13 23:52 . 2009-07-14 01:16 89088 c:\windows\SysWOW64\migwiz\dlmanifests\Networking-MPSSVC-Svc\icfupgd.dll
+ 2009-07-13 23:26 . 2009-07-14 01:16 31744 c:\windows\SysWOW64\migwiz\dlmanifests\Microsoft-Windows-TextServicesFramework-Migration-DL\TableTextServiceMig.dll
+ 2009-07-13 23:26 . 2009-07-14 01:16 22528 c:\windows\SysWOW64\migwiz\dlmanifests\Microsoft-Windows-TextServicesFramework-Migration-DL\imtcmig.dll
+ 2009-07-13 23:26 . 2009-07-14 01:16 32768 c:\windows\SysWOW64\migwiz\dlmanifests\Microsoft-Windows-TextServicesFramework-Migration-DL\imscmig.dll
+ 2009-07-13 23:26 . 2009-07-14 01:16 39936 c:\windows\SysWOW64\migwiz\dlmanifests\Microsoft-Windows-TextServicesFramework-Migration-DL\imkrmig.dll
+ 2009-07-13 23:26 . 2009-07-14 01:16 35328 c:\windows\SysWOW64\migwiz\dlmanifests\Microsoft-Windows-TextServicesFramework-Migration-DL\imjpmig.dll
+ 2009-07-13 23:42 . 2009-07-14 01:16 90112 c:\windows\SysWOW64\migwiz\dlmanifests\Microsoft-Windows-shmig-DL\shmig.dll
+ 2009-07-13 23:54 . 2009-07-14 01:16 58368 c:\windows\SysWOW64\migwiz\dlmanifests\Microsoft-Windows-RasConnectionManager\cmmigr.dll
+ 2009-07-13 23:14 . 2009-07-14 01:16 95744 c:\windows\SysWOW64\migwiz\dlmanifests\Microsoft-Windows-OfflineFiles-DL\CscMigDl.dll
+ 2009-07-13 23:52 . 2009-07-14 01:16 62976 c:\windows\SysWOW64\migwiz\dlmanifests\Microsoft-Windows-NetworkBridge\bridgemigplugin.dll
+ 2009-07-13 23:15 . 2009-07-14 01:16 97280 c:\windows\SysWOW64\migwiz\dlmanifests\Microsoft-Windows-International-Core-DL\nlscoremig.dll
+ 2009-07-13 23:38 . 2009-07-14 01:16 89600 c:\windows\SysWOW64\migwiz\dlmanifests\Microsoft-Windows-DirectoryServices-ADAM-DL\adammigrate.dll
+ 2009-07-13 23:44 . 2009-07-14 01:16 65024 c:\windows\SysWOW64\migwiz\dlmanifests\Microsoft-Windows-COM-DTC-Setup-DL\msdtcstp.dll
+ 2009-07-13 23:44 . 2009-07-14 01:16 55296 c:\windows\SysWOW64\migwiz\dlmanifests\Microsoft-Windows-COM-ComPlus-Setup-DL\commig.dll
+ 2009-07-13 23:51 . 2009-07-14 01:16 75776 c:\windows\SysWOW64\migwiz\dlmanifests\Microsoft-Windows-Bluetooth-Config\BthMigPlugin.dll
+ 2009-07-13 23:36 . 2009-07-14 01:16 74752 c:\windows\SysWOW64\migwiz\dlmanifests\Microsoft-Windows-ADFS-DL\adfsmig.dll
+ 2009-07-13 23:32 . 2009-07-14 01:16 63488 c:\windows\SysWOW64\migwiz\dlmanifests\Microsoft-ActiveDirectory-WebServices-DL\adwsmigrate.dll
+ 2009-07-13 23:29 . 2009-07-14 01:16 61440 c:\windows\SysWOW64\migwiz\dlmanifests\BITSExtensions-Server\bitsmig.dll
+ 2009-07-14 00:13 . 2009-07-14 01:16 57344 c:\windows\SysWOW64\migration\WSearchMigPlugin.dll
+ 2011-04-16 09:04 . 2011-02-24 05:32 68608 c:\windows\SysWOW64\migration\WininetPlugin.dll
+ 2009-07-13 23:26 . 2009-07-14 01:16 31744 c:\windows\SysWOW64\migration\TableTextServiceMig.dll
+ 2009-07-13 23:41 . 2009-07-14 01:16 90112 c:\windows\SysWOW64\migration\shmig.dll
+ 2009-07-14 00:14 . 2009-07-14 01:16 44032 c:\windows\SysWOW64\migration\SCGMigPlugin.dll
+ 2009-07-13 23:19 . 2009-07-14 01:16 98304 c:\windows\SysWOW64\migration\PlaMig.dll
+ 2009-07-13 23:15 . 2009-07-14 01:16 97280 c:\windows\SysWOW64\migration\nlscoremig.dll
+ 2009-07-13 23:53 . 2009-07-14 01:16 57856 c:\windows\SysWOW64\migration\netiomig.dll
+ 2009-07-13 23:53 . 2009-07-14 01:15 51200 c:\windows\SysWOW64\migration\IphlpsvcMigPlugin.dll
+ 2009-07-13 23:26 . 2009-07-14 01:15 22528 c:\windows\SysWOW64\migration\imtcmig.dll
+ 2009-07-13 23:26 . 2009-07-14 01:15 32768 c:\windows\SysWOW64\migration\imscmig.dll
+ 2009-07-13 23:26 . 2009-07-14 01:15 39936 c:\windows\SysWOW64\migration\imkrmig.dll
+ 2009-07-13 23:26 . 2009-07-14 01:15 35328 c:\windows\SysWOW64\migration\imjpmig.dll
+ 2009-07-13 23:40 . 2009-07-14 01:15 19456 c:\windows\SysWOW64\migration\gameuxmig.dll
+ 2009-07-13 23:44 . 2009-07-14 01:15 55296 c:\windows\SysWOW64\migration\commig.dll
+ 2009-07-13 23:51 . 2009-07-14 01:15 75776 c:\windows\SysWOW64\migration\bthmigplugin.dll
+ 2009-07-14 00:03
0
Réponse 17 / 48
Utilisateur anonyme
 
fais passer le rapport via cijoint.fr stp il est trop long il manque la fin
0
Réponse 18 / 48
Clem777 Messages postés 25 Date d'inscription   Statut Membre Dernière intervention  
 
http://www.cijoint.fr/cjlink.php?file=cj201105/cijqbWWffC.txt
0
Réponse 19 / 48
Utilisateur anonyme
 
fermer toutes les fenêtres et applications lors de l'installation et de l'analyse.


▶ Télécharge ici :

Malwarebytes

▶ Installe le ( choisis bien "francais" ; ne modifie pas les paramètres d'installe ) et mets le à jour .

(NB : Si tu as un message d'erreur t'indiquant qu'il te manque "COMCTL32.OCX" lors de l'installe, alors télécharge le ici : COMCTL32.OCX

▶ Potasses le Tuto pour te familiariser avec le prg :


( cela dit, il est très simple d'utilisation ).

relance malwarebytes en suivant scrupuleusement ces consignes :

! Déconnecte toi et ferme toutes applications en cours !

▶ Lance Malwarebyte's .

Fais un examen dit "Complet" .

▶ Laisse le programme travailler ( et ne rien faire d'autre avec le PC durant le scan ).
▶ à la fin tu cliques sur "résultat" .
Vérifie que tous les objets infectés soient validés, puis clique sur " suppression " .

Note : si il faut redémarrer ton PC pour finir le nettoyage, fais le !


Poste le rapport sauvegardé après la suppression des objets infectés (dans l'onglet "rapport/log"de Malwarebytes, le dernier en date)

0
Réponse 20 / 48
Clem777 Messages postés 25 Date d'inscription   Statut Membre Dernière intervention  
 
Malwarebytes' Anti-Malware 1.50.1.1100
www.malwarebytes.org

Version de la base de données: 6493

Windows 6.1.7600
Internet Explorer 8.0.7600.16385

03/05/2011 05:15:58
mbam-log-2011-05-03 (05-15-58).txt

Type d'examen: Examen complet (C:\|)
Elément(s) analysé(s): 295249
Temps écoulé: 1 heure(s), 16 minute(s), 50 seconde(s)

Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 0
Valeur(s) du Registre infectée(s): 0
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 0
Fichier(s) infecté(s): 3

Processus mémoire infecté(s):
(Aucun élément nuisible détecté)

Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)

Clé(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Valeur(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)

Dossier(s) infecté(s):
(Aucun élément nuisible détecté)

Fichier(s) infecté(s):
c:\Qoobox\quarantine\C\Users\Clément\AppData\Local\xskgqnjjl.exe.vir (Malware.Gen) -> Quarantined and deleted successfully.
c:\Users\Clément\Desktop\rk_quarantine\xskgqnjjl.exe.vir (Malware.Gen) -> Quarantined and deleted successfully.
c:\Users\Clément\AppData\Roaming\microsoft\Windows\start menu\Programs\security shield.lnk (Rogue.SecurityShield) -> Quarantined and deleted successfully.
0

Discussions similaires

Boîte mail piratée ?
mike the llama -
mike the llama -

4 réponses