Infection Smart HDD
Calonis
-
Utilisateur anonyme -
Utilisateur anonyme -
Bonjour,
Je viens de me faire infecter par SMART HDD...
Je n'ai plus de programmes ou d'icônes affichées et une fenêtre m'indique que mon disque dur est endommagé.
Je suis actuellement en mode sans échec avec prise en charge réseau.
J'ai mis RogueKiller et OTL sur mon bureau.
Je n'ai pas encore tenté la restauration système.
Je suis un peu perdu... Merci de votre aide! ^^
___
Vous trouverez le rapport RogueKiller ci-dessous:
RogueKiller V7.3.2 [20/03/2012] par Tigzy
mail: tigzyRK<at>gmail<dot>com
Remontees: [RogueKiller] Remontées (1/49)
Blog: tigzy-RK
Systeme d'exploitation: Windows Vista (6.0.6002 Service Pack 2) 32 bits version
Demarrage : Mode sans echec avec prise en charge reseau
Utilisateur: Nicolas [Droits d'admin]
Mode: Recherche -- Date: 06/04/2012 15:53:10
¤¤¤ Processus malicieux: 1 ¤¤¤
[SUSP PATH] HelpPane.exe -- C:\Windows\helppane.exe -> KILLED [TermProc]
¤¤¤ Entrees de registre: 20 ¤¤¤
[SUSP PATH] HKCU\[...]\Run : OfJBmXXIQE.exe (C:\ProgramData\OfJBmXXIQE.exe) -> FOUND
[SUSP PATH] HKUS\S-1-5-21-1299786818-1104447746-2078153817-1000[...]\Run : OfJBmXXIQE.exe (C:\ProgramData\OfJBmXXIQE.exe) -> FOUND
[HJ] HKCU\[...]\Advanced : Start_ShowMyComputer (0) -> FOUND
[HJ] HKCU\[...]\Advanced : Start_ShowSearch (0) -> FOUND
[HJ] HKCU\[...]\Advanced : Start_ShowMyDocs (0) -> FOUND
[HJ] HKCU\[...]\Advanced : Start_ShowRecentDocs (0) -> FOUND
[HJ] HKCU\[...]\Advanced : Start_ShowUser (0) -> FOUND
[HJ] HKCU\[...]\Advanced : Start_ShowMyPics (0) -> FOUND
[HJ] HKCU\[...]\Advanced : Start_ShowMyGames (0) -> FOUND
[HJ] HKCU\[...]\Advanced : Start_ShowMyMusic (0) -> FOUND
[HJ] HKCU\[...]\Advanced : Start_ShowControlPanel (0) -> FOUND
[HJ] HKCU\[...]\Advanced : Start_ShowHelp (0) -> FOUND
[HJ] HKCU\[...]\Advanced : Start_ShowPrinters (0) -> FOUND
[HJ] HKCU\[...]\Advanced : Start_ShowRun (0) -> FOUND
[HJ] HKCU\[...]\Advanced : Start_ShowSetProgramAccessAndDefaults (0) -> FOUND
[HJ] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> FOUND
[HJ] HKCU\[...]\ClassicStartMenu : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> FOUND
[HJ] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> FOUND
[HJ] HKCU\[...]\ClassicStartMenu : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> FOUND
[HJ] HKCU\[...]\ClassicStartMenu : {645FF040-5081-101B-9F08-00AA002F954E} (1) -> FOUND
¤¤¤ Fichiers / Dossiers particuliers: ¤¤¤
¤¤¤ Driver: [NON CHARGE] ¤¤¤
¤¤¤ Infection : ¤¤¤
¤¤¤ Fichier HOSTS: ¤¤¤
127.0.0.1 localhost
::1 localhost
¤¤¤ MBR Verif: ¤¤¤
+++++ PhysicalDrive0: SAMSUNG HD753LJ ATA Device +++++
--- User ---
[MBR] 543eddd88723e5055d99eae4726b031a
[BSP] 3e80a08129b9a0cf79bf47e5057c27e5 : Windows Vista MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 363573 Mo
1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 744601600 | Size: 351827 Mo
User = LL1 ... OK!
User = LL2 ... OK!
+++++ PhysicalDrive1: WD 5000AAC External USB Device +++++
--- User ---
[MBR] 2cad1879d3ecde5c7399cdd5593b0c2f
[BSP] 1343860dbef73a961735f1522ff55311 : Windows XP MBR Code
Partition table:
0 - [XXXXXX] FAT32-LBA (0x0c) [VISIBLE] Offset (sectors): 63 | Size: 476937 Mo
User = LL1 ... OK!
Error reading LL2 MBR!
Termine : << RKreport[1].txt >>
RKreport[1].txt
Je viens de me faire infecter par SMART HDD...
Je n'ai plus de programmes ou d'icônes affichées et une fenêtre m'indique que mon disque dur est endommagé.
Je suis actuellement en mode sans échec avec prise en charge réseau.
J'ai mis RogueKiller et OTL sur mon bureau.
Je n'ai pas encore tenté la restauration système.
Je suis un peu perdu... Merci de votre aide! ^^
___
Vous trouverez le rapport RogueKiller ci-dessous:
RogueKiller V7.3.2 [20/03/2012] par Tigzy
mail: tigzyRK<at>gmail<dot>com
Remontees: [RogueKiller] Remontées (1/49)
Blog: tigzy-RK
Systeme d'exploitation: Windows Vista (6.0.6002 Service Pack 2) 32 bits version
Demarrage : Mode sans echec avec prise en charge reseau
Utilisateur: Nicolas [Droits d'admin]
Mode: Recherche -- Date: 06/04/2012 15:53:10
¤¤¤ Processus malicieux: 1 ¤¤¤
[SUSP PATH] HelpPane.exe -- C:\Windows\helppane.exe -> KILLED [TermProc]
¤¤¤ Entrees de registre: 20 ¤¤¤
[SUSP PATH] HKCU\[...]\Run : OfJBmXXIQE.exe (C:\ProgramData\OfJBmXXIQE.exe) -> FOUND
[SUSP PATH] HKUS\S-1-5-21-1299786818-1104447746-2078153817-1000[...]\Run : OfJBmXXIQE.exe (C:\ProgramData\OfJBmXXIQE.exe) -> FOUND
[HJ] HKCU\[...]\Advanced : Start_ShowMyComputer (0) -> FOUND
[HJ] HKCU\[...]\Advanced : Start_ShowSearch (0) -> FOUND
[HJ] HKCU\[...]\Advanced : Start_ShowMyDocs (0) -> FOUND
[HJ] HKCU\[...]\Advanced : Start_ShowRecentDocs (0) -> FOUND
[HJ] HKCU\[...]\Advanced : Start_ShowUser (0) -> FOUND
[HJ] HKCU\[...]\Advanced : Start_ShowMyPics (0) -> FOUND
[HJ] HKCU\[...]\Advanced : Start_ShowMyGames (0) -> FOUND
[HJ] HKCU\[...]\Advanced : Start_ShowMyMusic (0) -> FOUND
[HJ] HKCU\[...]\Advanced : Start_ShowControlPanel (0) -> FOUND
[HJ] HKCU\[...]\Advanced : Start_ShowHelp (0) -> FOUND
[HJ] HKCU\[...]\Advanced : Start_ShowPrinters (0) -> FOUND
[HJ] HKCU\[...]\Advanced : Start_ShowRun (0) -> FOUND
[HJ] HKCU\[...]\Advanced : Start_ShowSetProgramAccessAndDefaults (0) -> FOUND
[HJ] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> FOUND
[HJ] HKCU\[...]\ClassicStartMenu : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> FOUND
[HJ] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> FOUND
[HJ] HKCU\[...]\ClassicStartMenu : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> FOUND
[HJ] HKCU\[...]\ClassicStartMenu : {645FF040-5081-101B-9F08-00AA002F954E} (1) -> FOUND
¤¤¤ Fichiers / Dossiers particuliers: ¤¤¤
¤¤¤ Driver: [NON CHARGE] ¤¤¤
¤¤¤ Infection : ¤¤¤
¤¤¤ Fichier HOSTS: ¤¤¤
127.0.0.1 localhost
::1 localhost
¤¤¤ MBR Verif: ¤¤¤
+++++ PhysicalDrive0: SAMSUNG HD753LJ ATA Device +++++
--- User ---
[MBR] 543eddd88723e5055d99eae4726b031a
[BSP] 3e80a08129b9a0cf79bf47e5057c27e5 : Windows Vista MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 363573 Mo
1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 744601600 | Size: 351827 Mo
User = LL1 ... OK!
User = LL2 ... OK!
+++++ PhysicalDrive1: WD 5000AAC External USB Device +++++
--- User ---
[MBR] 2cad1879d3ecde5c7399cdd5593b0c2f
[BSP] 1343860dbef73a961735f1522ff55311 : Windows XP MBR Code
Partition table:
0 - [XXXXXX] FAT32-LBA (0x0c) [VISIBLE] Offset (sectors): 63 | Size: 476937 Mo
User = LL1 ... OK!
Error reading LL2 MBR!
Termine : << RKreport[1].txt >>
RKreport[1].txt
A voir également:
- Infection Smart HDD
- Hdd regenerator - Télécharger - Utilitaires
- Test hdd - Télécharger - Informations & Diagnostic
- Remplacer hdd par ssd - Guide
- Clone hdd - Guide
- Nuki smart lock ultra - Accueil - Objets connectés
7 réponses
Après suppression:
RogueKiller V7.3.2 [20/03/2012] par Tigzy
mail: tigzyRK<at>gmail<dot>com
Remontees: http://www.sur-la-toile.com/discussion-193725-1-BRogueKillerD-Remontees.html
Blog: http://tigzyrk.blogspot.com
Systeme d'exploitation: Windows Vista (6.0.6002 Service Pack 2) 32 bits version
Demarrage : Mode sans echec avec prise en charge reseau
Utilisateur: Nicolas [Droits d'admin]
Mode: Suppression -- Date: 06/04/2012 16:21:30
¤¤¤ Processus malicieux: 1 ¤¤¤
[SUSP PATH] OTL.exe -- C:\Users\Nicolas\Desktop\OTL.exe -> KILLED [TermProc]
¤¤¤ Entrees de registre: 19 ¤¤¤
[SUSP PATH] HKCU\[...]\Run : OfJBmXXIQE.exe (C:\ProgramData\OfJBmXXIQE.exe) -> DELETED
[HJ] HKCU\[...]\Advanced : Start_ShowMyComputer (0) -> REPLACED (1)
[HJ] HKCU\[...]\Advanced : Start_ShowSearch (0) -> REPLACED (1)
[HJ] HKCU\[...]\Advanced : Start_ShowMyDocs (0) -> REPLACED (1)
[HJ] HKCU\[...]\Advanced : Start_ShowRecentDocs (0) -> REPLACED (1)
[HJ] HKCU\[...]\Advanced : Start_ShowUser (0) -> REPLACED (1)
[HJ] HKCU\[...]\Advanced : Start_ShowMyPics (0) -> REPLACED (1)
[HJ] HKCU\[...]\Advanced : Start_ShowMyGames (0) -> REPLACED (1)
[HJ] HKCU\[...]\Advanced : Start_ShowMyMusic (0) -> REPLACED (1)
[HJ] HKCU\[...]\Advanced : Start_ShowControlPanel (0) -> REPLACED (1)
[HJ] HKCU\[...]\Advanced : Start_ShowHelp (0) -> REPLACED (1)
[HJ] HKCU\[...]\Advanced : Start_ShowPrinters (0) -> REPLACED (1)
[HJ] HKCU\[...]\Advanced : Start_ShowRun (0) -> REPLACED (1)
[HJ] HKCU\[...]\Advanced : Start_ShowSetProgramAccessAndDefaults (0) -> REPLACED (1)
[HJ] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> REPLACED (0)
[HJ] HKCU\[...]\ClassicStartMenu : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> REPLACED (0)
[HJ] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> REPLACED (0)
[HJ] HKCU\[...]\ClassicStartMenu : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> REPLACED (0)
[HJ] HKCU\[...]\ClassicStartMenu : {645FF040-5081-101B-9F08-00AA002F954E} (1) -> REPLACED (0)
¤¤¤ Fichiers / Dossiers particuliers: ¤¤¤
¤¤¤ Driver: [NON CHARGE] ¤¤¤
¤¤¤ Infection : ¤¤¤
¤¤¤ Fichier HOSTS: ¤¤¤
127.0.0.1 localhost
::1 localhost
¤¤¤ MBR Verif: ¤¤¤
+++++ PhysicalDrive0: SAMSUNG HD753LJ ATA Device +++++
--- User ---
[MBR] 543eddd88723e5055d99eae4726b031a
[BSP] 3e80a08129b9a0cf79bf47e5057c27e5 : Windows Vista MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 363573 Mo
1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 744601600 | Size: 351827 Mo
User = LL1 ... OK!
User = LL2 ... OK!
+++++ PhysicalDrive1: WD 5000AAC External USB Device +++++
--- User ---
[MBR] 2cad1879d3ecde5c7399cdd5593b0c2f
[BSP] 1343860dbef73a961735f1522ff55311 : Windows XP MBR Code
Partition table:
0 - [XXXXXX] FAT32-LBA (0x0c) [VISIBLE] Offset (sectors): 63 | Size: 476937 Mo
User = LL1 ... OK!
Error reading LL2 MBR!
Termine : << RKreport[3].txt >>
RKreport[1].txt ; RKreport[2].txt ; RKreport[3].txt
RogueKiller V7.3.2 [20/03/2012] par Tigzy
mail: tigzyRK<at>gmail<dot>com
Remontees: http://www.sur-la-toile.com/discussion-193725-1-BRogueKillerD-Remontees.html
Blog: http://tigzyrk.blogspot.com
Systeme d'exploitation: Windows Vista (6.0.6002 Service Pack 2) 32 bits version
Demarrage : Mode sans echec avec prise en charge reseau
Utilisateur: Nicolas [Droits d'admin]
Mode: Suppression -- Date: 06/04/2012 16:21:30
¤¤¤ Processus malicieux: 1 ¤¤¤
[SUSP PATH] OTL.exe -- C:\Users\Nicolas\Desktop\OTL.exe -> KILLED [TermProc]
¤¤¤ Entrees de registre: 19 ¤¤¤
[SUSP PATH] HKCU\[...]\Run : OfJBmXXIQE.exe (C:\ProgramData\OfJBmXXIQE.exe) -> DELETED
[HJ] HKCU\[...]\Advanced : Start_ShowMyComputer (0) -> REPLACED (1)
[HJ] HKCU\[...]\Advanced : Start_ShowSearch (0) -> REPLACED (1)
[HJ] HKCU\[...]\Advanced : Start_ShowMyDocs (0) -> REPLACED (1)
[HJ] HKCU\[...]\Advanced : Start_ShowRecentDocs (0) -> REPLACED (1)
[HJ] HKCU\[...]\Advanced : Start_ShowUser (0) -> REPLACED (1)
[HJ] HKCU\[...]\Advanced : Start_ShowMyPics (0) -> REPLACED (1)
[HJ] HKCU\[...]\Advanced : Start_ShowMyGames (0) -> REPLACED (1)
[HJ] HKCU\[...]\Advanced : Start_ShowMyMusic (0) -> REPLACED (1)
[HJ] HKCU\[...]\Advanced : Start_ShowControlPanel (0) -> REPLACED (1)
[HJ] HKCU\[...]\Advanced : Start_ShowHelp (0) -> REPLACED (1)
[HJ] HKCU\[...]\Advanced : Start_ShowPrinters (0) -> REPLACED (1)
[HJ] HKCU\[...]\Advanced : Start_ShowRun (0) -> REPLACED (1)
[HJ] HKCU\[...]\Advanced : Start_ShowSetProgramAccessAndDefaults (0) -> REPLACED (1)
[HJ] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> REPLACED (0)
[HJ] HKCU\[...]\ClassicStartMenu : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> REPLACED (0)
[HJ] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> REPLACED (0)
[HJ] HKCU\[...]\ClassicStartMenu : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> REPLACED (0)
[HJ] HKCU\[...]\ClassicStartMenu : {645FF040-5081-101B-9F08-00AA002F954E} (1) -> REPLACED (0)
¤¤¤ Fichiers / Dossiers particuliers: ¤¤¤
¤¤¤ Driver: [NON CHARGE] ¤¤¤
¤¤¤ Infection : ¤¤¤
¤¤¤ Fichier HOSTS: ¤¤¤
127.0.0.1 localhost
::1 localhost
¤¤¤ MBR Verif: ¤¤¤
+++++ PhysicalDrive0: SAMSUNG HD753LJ ATA Device +++++
--- User ---
[MBR] 543eddd88723e5055d99eae4726b031a
[BSP] 3e80a08129b9a0cf79bf47e5057c27e5 : Windows Vista MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 363573 Mo
1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 744601600 | Size: 351827 Mo
User = LL1 ... OK!
User = LL2 ... OK!
+++++ PhysicalDrive1: WD 5000AAC External USB Device +++++
--- User ---
[MBR] 2cad1879d3ecde5c7399cdd5593b0c2f
[BSP] 1343860dbef73a961735f1522ff55311 : Windows XP MBR Code
Partition table:
0 - [XXXXXX] FAT32-LBA (0x0c) [VISIBLE] Offset (sectors): 63 | Size: 476937 Mo
User = LL1 ... OK!
Error reading LL2 MBR!
Termine : << RKreport[3].txt >>
RKreport[1].txt ; RKreport[2].txt ; RKreport[3].txt
* Télécharge TDSSKiller sur ton bureau :
https://support.kaspersky.com/downloads/utils/tdsskiller.exe
* Lance le ( Utilisateurs de vista/Seven -> Clic droit puis " Exécuter en tant qu'administrateur " )
* Clique sur [Start Scan] pour démarrer l'analyse.
* Si des élements sont trouvés, cliques sur [Continue] puis sur [Reboot Now]
* Un rapport s'ouvrira au redémarrage du PC.
* Copie/Colle son contenu dans ta prochaine réponse.
Note : Le rapport se trouve également sous C:\TDSSKiller.N°deversion_Date_Heure_log.txt.
note :
Conserve l'action proposée par défaut par l'outil :
- Si TDSS.tdl2 : l'option Delete sera cochée.
- Si TDSS.tdl3 ou TDSS.tdl4 : assure toi que Cure soit bien cochée.
- Si "Suspicious object" ou Sptd ou ForgedFile.Multi.Generic : laisse l'option cochée sur Skip
- Si Rootkit.Win32.ZAccess.* est détecté règle sur cure en haut , et delete en bas:D
https://support.kaspersky.com/downloads/utils/tdsskiller.exe
* Lance le ( Utilisateurs de vista/Seven -> Clic droit puis " Exécuter en tant qu'administrateur " )
* Clique sur [Start Scan] pour démarrer l'analyse.
* Si des élements sont trouvés, cliques sur [Continue] puis sur [Reboot Now]
* Un rapport s'ouvrira au redémarrage du PC.
* Copie/Colle son contenu dans ta prochaine réponse.
Note : Le rapport se trouve également sous C:\TDSSKiller.N°deversion_Date_Heure_log.txt.
note :
Conserve l'action proposée par défaut par l'outil :
- Si TDSS.tdl2 : l'option Delete sera cochée.
- Si TDSS.tdl3 ou TDSS.tdl4 : assure toi que Cure soit bien cochée.
- Si "Suspicious object" ou Sptd ou ForgedFile.Multi.Generic : laisse l'option cochée sur Skip
- Si Rootkit.Win32.ZAccess.* est détecté règle sur cure en haut , et delete en bas:D
J'avais lancé un MalwareBytes, Ci-dessous son rapport:
Malwarebytes Anti-Malware 1.60.1.1000
www.malwarebytes.org
Version de la base de données: v2012.04.06.05
Windows Vista Service Pack 2 x86 NTFS (Mode sans échec/Réseau)
Internet Explorer 9.0.8112.16421
Nicolas :: HERMES [administrateur]
06/04/2012 16:23:06
mbam-log-2012-04-06 (16-23-06).txt
Type d'examen: Examen complet
Options d'examen activées: Mémoire | Démarrage | Registre | Système de fichiers | Heuristique/Extra | Heuristique/Shuriken | PUP | PUM
Options d'examen désactivées: P2P
Elément(s) analysé(s): 191989
Temps écoulé: 19 minute(s), 5 seconde(s) [abandonné]
Processus mémoire détecté(s): 0
(Aucun élément nuisible détecté)
Module(s) mémoire détecté(s): 0
(Aucun élément nuisible détecté)
Clé(s) du Registre détectée(s): 0
(Aucun élément nuisible détecté)
Valeur(s) du Registre détectée(s): 0
(Aucun élément nuisible détecté)
Elément(s) de données du Registre détecté(s): 0
(Aucun élément nuisible détecté)
Dossier(s) détecté(s): 0
(Aucun élément nuisible détecté)
Fichier(s) détecté(s): 4
C:\ProgramData\Esw77QG3yLx2uN.exe (Backdoor.Agent.RCGen) -> Mis en quarantaine et supprimé avec succès.
C:\ProgramData\OfJBmXXIQE.exe (Backdoor.Agent.RCGen) -> Mis en quarantaine et supprimé avec succès.
C:\Users\Nicolas\AppData\Local\Temp\m5k0GDlrTJqqKe.exe.tmp (Backdoor.Agent.RCGen) -> Mis en quarantaine et supprimé avec succès.
C:\Users\Nicolas\Desktop\RK_Quarantine\OfJBmXXIQE.exe.vir (Backdoor.Agent.RCGen) -> Mis en quarantaine et supprimé avec succès.
(fin)
J'ai lancé un TDSSKiller, ci-dessous le rapport:
16:45:09.0767 3100 TDSS rootkit removing tool 2.7.26.0 Apr 4 2012 19:52:02
16:45:10.0032 3100 ============================================================
16:45:10.0032 3100 Current date / time: 2012/04/06 16:45:10.0032
16:45:10.0032 3100 SystemInfo:
16:45:10.0032 3100
16:45:10.0032 3100 OS Version: 6.0.6002 ServicePack: 2.0
16:45:10.0032 3100 Product type: Workstation
16:45:10.0032 3100 ComputerName: HERMES
16:45:10.0032 3100 UserName: Nicolas
16:45:10.0032 3100 Windows directory: C:\Windows
16:45:10.0032 3100 System windows directory: C:\Windows
16:45:10.0032 3100 Processor architecture: Intel x86
16:45:10.0032 3100 Number of processors: 2
16:45:10.0032 3100 Page size: 0x1000
16:45:10.0032 3100 Boot type: Normal boot
16:45:10.0032 3100 ============================================================
16:45:11.0610 3100 Drive \Device\Harddisk0\DR0 - Size: 0xAEA8CDE000 (698.64 Gb), SectorSize: 0x200, Cylinders: 0x16441, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
16:45:11.0610 3100 Drive \Device\Harddisk1\DR1 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
16:45:11.0610 3100 \Device\Harddisk0\DR0:
16:45:11.0626 3100 MBR used
16:45:11.0626 3100 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x2C61AFF8
16:45:11.0626 3100 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x2C61B800, BlocksNum 0x2AF29800
16:45:11.0626 3100 \Device\Harddisk1\DR1:
16:45:11.0626 3100 MBR used
16:45:11.0626 3100 \Device\Harddisk1\DR1\Partition0: MBR, Type 0xC, StartLBA 0x3F, BlocksNum 0x3A384C02
16:45:11.0720 3100 Initialize success
16:45:11.0720 3100 ============================================================
16:45:21.0017 3360 ============================================================
16:45:21.0017 3360 Scan started
16:45:21.0017 3360 Mode: Manual;
16:45:21.0017 3360 ============================================================
16:45:23.0204 3360 ACPI (82b296ae1892fe3dbee00c9cf92f8ac7) C:\Windows\system32\drivers\acpi.sys
16:45:23.0251 3360 ACPI - ok
16:45:23.0345 3360 Adobe Version Cue CS3 (14c23516c990dcd6052152cf034dde40) C:\Program Files\Common Files\Adobe\Adobe Version Cue CS3\Server\bin\VersionCueCS3.exe
16:45:23.0360 3360 Adobe Version Cue CS3 - ok
16:45:23.0407 3360 adp94xx (04f0fcac69c7c71a3ac4eb97fafc8303) C:\Windows\system32\drivers\adp94xx.sys
16:45:23.0423 3360 adp94xx - ok
16:45:23.0470 3360 adpahci (60505e0041f7751bdbb80f88bf45c2ce) C:\Windows\system32\drivers\adpahci.sys
16:45:23.0470 3360 adpahci - ok
16:45:23.0485 3360 adpu160m (8a42779b02aec986eab64ecfc98f8bd7) C:\Windows\system32\drivers\adpu160m.sys
16:45:23.0485 3360 adpu160m - ok
16:45:23.0517 3360 adpu320 (241c9e37f8ce45ef51c3de27515ca4e5) C:\Windows\system32\drivers\adpu320.sys
16:45:23.0532 3360 adpu320 - ok
16:45:23.0579 3360 AeLookupSvc (9d1fda9e086ba64e3c93c9de32461bcf) C:\Windows\System32\aelupsvc.dll
16:45:23.0595 3360 AeLookupSvc - ok
16:45:23.0626 3360 AFD (3911b972b55fea0478476b2e777b29fa) C:\Windows\system32\drivers\afd.sys
16:45:23.0626 3360 AFD - ok
16:45:23.0657 3360 agp440 (13f9e33747e6b41a3ff305c37db0d360) C:\Windows\system32\drivers\agp440.sys
16:45:23.0657 3360 agp440 - ok
16:45:23.0673 3360 aic78xx (ae1fdf7bf7bb6c6a70f67699d880592a) C:\Windows\system32\drivers\djsvs.sys
16:45:23.0689 3360 aic78xx - ok
16:45:23.0798 3360 Akamai (1125c7d9fb8898015829c387c1bc87c7) c:\program files\common files\akamai/netsession_win_6c825ce.dll
16:45:23.0798 3360 Suspicious file (Hidden): c:\program files\common files\akamai/netsession_win_6c825ce.dll. md5: 1125c7d9fb8898015829c387c1bc87c7
16:45:23.0798 3360 Akamai ( HiddenFile.Multi.Generic ) - warning
16:45:23.0798 3360 Akamai - detected HiddenFile.Multi.Generic (1)
16:45:23.0829 3360 ALG (a1545b731579895d8cc44fc0481c1192) C:\Windows\System32\alg.exe
16:45:23.0829 3360 ALG - ok
16:45:23.0860 3360 aliide (9eaef5fc9b8e351afa7e78a6fae91f91) C:\Windows\system32\drivers\aliide.sys
16:45:23.0860 3360 aliide - ok
16:45:23.0939 3360 AMD External Events Utility (cde41d99db840ff9454fc981ebd0ec50) C:\Windows\system32\atiesrxx.exe
16:45:23.0939 3360 AMD External Events Utility - ok
16:45:23.0970 3360 amdagp (c47344bc706e5f0b9dce369516661578) C:\Windows\system32\drivers\amdagp.sys
16:45:23.0985 3360 amdagp - ok
16:45:24.0001 3360 amdide (9b78a39a4c173fdbc1321e0dd659b34c) C:\Windows\system32\drivers\amdide.sys
16:45:24.0001 3360 amdide - ok
16:45:24.0048 3360 AmdK7 (18f29b49ad23ecee3d2a826c725c8d48) C:\Windows\system32\drivers\amdk7.sys
16:45:24.0064 3360 AmdK7 - ok
16:45:24.0079 3360 AmdK8 (93ae7f7dd54ab986a6f1a1b37be7442d) C:\Windows\system32\drivers\amdk8.sys
16:45:24.0095 3360 AmdK8 - ok
16:45:24.0407 3360 amdkmdag (ffd082f1f1d4ff5c87f66df62486bcfa) C:\Windows\system32\DRIVERS\atikmdag.sys
16:45:25.0017 3360 amdkmdag - ok
16:45:25.0126 3360 amdkmdap (c541da5b72fa638469e8dc1e66079330) C:\Windows\system32\DRIVERS\atikmpag.sys
16:45:25.0142 3360 amdkmdap - ok
16:45:25.0251 3360 AntiVirSchedulerService (27c9a4e1ef31c7a64de8fbc0aa568503) C:\Program Files\Avira\AntiVir Desktop\sched.exe
16:45:25.0251 3360 AntiVirSchedulerService - ok
16:45:25.0267 3360 AntiVirService (e491888d529410d7bd8fbbad825795c8) C:\Program Files\Avira\AntiVir Desktop\avguard.exe
16:45:25.0282 3360 AntiVirService - ok
16:45:25.0376 3360 Appinfo (c6d704c7f0434dc791aac37cac4b6e14) C:\Windows\System32\appinfo.dll
16:45:25.0392 3360 Appinfo - ok
16:45:25.0501 3360 arc (5d2888182fb46632511acee92fdad522) C:\Windows\system32\drivers\arc.sys
16:45:25.0517 3360 arc - ok
16:45:25.0642 3360 arcsas (5e2a321bd7c8b3624e41fdec3e244945) C:\Windows\system32\drivers\arcsas.sys
16:45:25.0657 3360 arcsas - ok
16:45:25.0814 3360 AsyncMac (53b202abee6455406254444303e87be1) C:\Windows\system32\DRIVERS\asyncmac.sys
16:45:25.0845 3360 AsyncMac - ok
16:45:25.0954 3360 atapi (1f05b78ab91c9075565a9d8a4b880bc4) C:\Windows\system32\drivers\atapi.sys
16:45:25.0954 3360 atapi - ok
16:45:26.0173 3360 AtiHDAudioService (9f7ccf1d6faf646f71f029a30ded2dc7) C:\Windows\system32\drivers\AtihdLH3.sys
16:45:26.0173 3360 AtiHDAudioService - ok
16:45:27.0282 3360 atikmdag (ffd082f1f1d4ff5c87f66df62486bcfa) C:\Windows\system32\DRIVERS\atikmdag.sys
16:45:27.0314 3360 atikmdag - ok
16:45:27.0485 3360 atksgt (6e996cf8459a2594e0e9609d0e34d41f) C:\Windows\system32\DRIVERS\atksgt.sys
16:45:27.0532 3360 atksgt - ok
16:45:27.0595 3360 AudioEndpointBuilder (68e2a1a0407a66cf50da0300852424ab) C:\Windows\System32\Audiosrv.dll
16:45:27.0657 3360 AudioEndpointBuilder - ok
16:45:27.0689 3360 Audiosrv (68e2a1a0407a66cf50da0300852424ab) C:\Windows\System32\Audiosrv.dll
16:45:27.0689 3360 Audiosrv - ok
16:45:27.0735 3360 avgntflt (7713e4eb0276702faa08e52a6e23f2a6) C:\Windows\system32\DRIVERS\avgntflt.sys
16:45:27.0751 3360 avgntflt - ok
16:45:27.0814 3360 avipbb (13b02b9b969dde270cd7c351203dad3c) C:\Windows\system32\DRIVERS\avipbb.sys
16:45:27.0814 3360 avipbb - ok
16:45:27.0923 3360 avkmgr (271cfd1a989209b1964e24d969552bf7) C:\Windows\system32\DRIVERS\avkmgr.sys
16:45:27.0939 3360 avkmgr - ok
16:45:27.0970 3360 Beep (67e506b75bd5326a3ec7b70bd014dfb6) C:\Windows\system32\drivers\Beep.sys
16:45:27.0970 3360 Beep - ok
16:45:28.0001 3360 BFE (c789af0f724fda5852fb9a7d3a432381) C:\Windows\System32\bfe.dll
16:45:28.0032 3360 BFE - ok
16:45:28.0095 3360 BITS (93952506c6d67330367f7e7934b6a02f) C:\Windows\System32\qmgr.dll
16:45:28.0110 3360 BITS - ok
16:45:28.0126 3360 blbdrive (d4df28447741fd3d953526e33a617397) C:\Windows\system32\drivers\blbdrive.sys
16:45:28.0157 3360 blbdrive - ok
16:45:28.0220 3360 Bonjour Service (73686fe0b2e0469f89fd2075be724704) C:\Program Files\Bonjour\mDNSResponder.exe
16:45:28.0220 3360 Bonjour Service - ok
16:45:28.0329 3360 bowser (35f376253f687bde63976ccb3f2108ca) C:\Windows\system32\DRIVERS\bowser.sys
16:45:28.0345 3360 bowser - ok
16:45:28.0439 3360 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\drivers\brfiltlo.sys
16:45:28.0454 3360 BrFiltLo - ok
16:45:28.0532 3360 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\drivers\brfiltup.sys
16:45:28.0564 3360 BrFiltUp - ok
16:45:28.0657 3360 Browser (a3629a0c4226f9e9c72faaeebc3ad33c) C:\Windows\System32\browser.dll
16:45:28.0689 3360 Browser - ok
16:45:28.0751 3360 Brserid (b304e75cff293029eddf094246747113) C:\Windows\system32\drivers\brserid.sys
16:45:28.0798 3360 Brserid - ok
16:45:28.0845 3360 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\system32\drivers\brserwdm.sys
16:45:28.0845 3360 BrSerWdm - ok
16:45:28.0939 3360 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\system32\drivers\brusbmdm.sys
16:45:28.0954 3360 BrUsbMdm - ok
16:45:29.0032 3360 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\system32\drivers\brusbser.sys
16:45:29.0032 3360 BrUsbSer - ok
16:45:29.0095 3360 BTHMODEM (ad07c1ec6665b8b35741ab91200c6b68) C:\Windows\system32\drivers\bthmodem.sys
16:45:29.0110 3360 BTHMODEM - ok
16:45:29.0173 3360 cdfs (7add03e75beb9e6dd102c3081d29840a) C:\Windows\system32\DRIVERS\cdfs.sys
16:45:29.0189 3360 cdfs - ok
16:45:29.0282 3360 cdrom (6b4bffb9becd728097024276430db314) C:\Windows\system32\DRIVERS\cdrom.sys
16:45:29.0282 3360 cdrom - ok
16:45:29.0376 3360 CertPropSvc (312ec3e37a0a1f2006534913e37b4423) C:\Windows\System32\certprop.dll
16:45:29.0376 3360 CertPropSvc - ok
16:45:29.0454 3360 circlass (e5d4133f37219dbcfe102bc61072589d) C:\Windows\system32\drivers\circlass.sys
16:45:29.0485 3360 circlass - ok
16:45:29.0564 3360 CLFS (d7659d3b5b92c31e84e53c1431f35132) C:\Windows\system32\CLFS.sys
16:45:29.0610 3360 CLFS - ok
16:45:29.0689 3360 clr_optimization_v2.0.50727_32 (8ee772032e2fe80a924f3b8dd5082194) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
16:45:29.0735 3360 clr_optimization_v2.0.50727_32 - ok
16:45:29.0829 3360 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
16:45:29.0939 3360 clr_optimization_v4.0.30319_32 - ok
16:45:30.0032 3360 cmdide (0ca25e686a4928484e9fdabd168ab629) C:\Windows\system32\drivers\cmdide.sys
16:45:30.0048 3360 cmdide - ok
16:45:30.0142 3360 Compbatt (6afef0b60fa25de07c0968983ee4f60a) C:\Windows\system32\drivers\compbatt.sys
16:45:30.0157 3360 Compbatt - ok
16:45:30.0267 3360 COMSysApp - ok
16:45:30.0376 3360 cpuz135 (c2eb4539a4f6ab6edd01bdc191619975) C:\Windows\system32\drivers\cpuz135_x32.sys
16:45:30.0392 3360 cpuz135 - ok
16:45:30.0439 3360 crcdisk (741e9dff4f42d2d8477d0fc1dc0df871) C:\Windows\system32\drivers\crcdisk.sys
16:45:30.0454 3360 crcdisk - ok
16:45:30.0532 3360 Crusoe (1f07becdca750766a96cda811ba86410) C:\Windows\system32\drivers\crusoe.sys
16:45:30.0564 3360 Crusoe - ok
16:45:30.0626 3360 CryptSvc (fb27772beaf8e1d28ccd825c09da939b) C:\Windows\system32\cryptsvc.dll
16:45:30.0657 3360 CryptSvc - ok
16:45:30.0814 3360 DcomLaunch (3b5b4d53fec14f7476ca29a20cc31ac9) C:\Windows\system32\rpcss.dll
16:45:30.0829 3360 DcomLaunch - ok
16:45:30.0923 3360 DfsC (622c41a07ca7e6dd91770f50d532cb6c) C:\Windows\system32\Drivers\dfsc.sys
16:45:30.0939 3360 DfsC - ok
16:45:31.0282 3360 DFSR (2cc3dcfb533a1035b13dcab6160ab38b) C:\Windows\system32\DFSR.exe
16:45:31.0532 3360 DFSR - ok
16:45:31.0657 3360 Dhcp (9028559c132146fb75eb7acf384b086a) C:\Windows\System32\dhcpcsvc.dll
16:45:31.0673 3360 Dhcp - ok
16:45:31.0829 3360 disk (5d4aefc3386920236a548271f8f1af6a) C:\Windows\system32\drivers\disk.sys
16:45:31.0860 3360 disk - ok
16:45:31.0892 3360 Dnscache (57d762f6f5974af0da2be88a3349baaa) C:\Windows\System32\dnsrslvr.dll
16:45:31.0892 3360 Dnscache - ok
16:45:31.0954 3360 dot3svc (324fd74686b1ef5e7c19a8af49e748f6) C:\Windows\System32\dot3svc.dll
16:45:31.0970 3360 dot3svc - ok
16:45:32.0017 3360 DPS (a622e888f8aa2f6b49e9bc466f0e5def) C:\Windows\system32\dps.dll
16:45:32.0017 3360 DPS - ok
16:45:32.0142 3360 driverhardwarev2 (0f1189883690949ba7a9f68339587e51) C:\Program Files\ma-config.com\Drivers\driverhardwarev2.sys
16:45:32.0157 3360 driverhardwarev2 - ok
16:45:32.0220 3360 drmkaud (97fef831ab90bee128c9af390e243f80) C:\Windows\system32\drivers\drmkaud.sys
16:45:32.0220 3360 drmkaud - ok
16:45:32.0282 3360 DXGKrnl (c68ac676b0ef30cfbb1080adce49eb1f) C:\Windows\System32\drivers\dxgkrnl.sys
16:45:32.0282 3360 DXGKrnl - ok
16:45:32.0329 3360 E1G60 (5425f74ac0c1dbd96a1e04f17d63f94c) C:\Windows\system32\DRIVERS\E1G60I32.sys
16:45:32.0345 3360 E1G60 - ok
16:45:32.0392 3360 EapHost (c0b95e40d85cd807d614e264248a45b9) C:\Windows\System32\eapsvc.dll
16:45:32.0423 3360 EapHost - ok
16:45:32.0579 3360 Ecache (7f64ea048dcfac7acf8b4d7b4e6fe371) C:\Windows\system32\drivers\ecache.sys
16:45:32.0595 3360 Ecache - ok
16:45:32.0657 3360 ehRecvr (9be3744d295a7701eb425332014f0797) C:\Windows\ehome\ehRecvr.exe
16:45:32.0751 3360 ehRecvr - ok
16:45:32.0767 3360 ehSched (ad1870c8e5d6dd340c829e6074bf3c3f) C:\Windows\ehome\ehsched.exe
16:45:32.0767 3360 ehSched - ok
16:45:32.0829 3360 ehstart (c27c4ee8926e74aa72efcab24c5242c3) C:\Windows\ehome\ehstart.dll
16:45:32.0829 3360 ehstart - ok
16:45:32.0939 3360 elxstor (23b62471681a124889978f6295b3f4c6) C:\Windows\system32\drivers\elxstor.sys
16:45:32.0985 3360 elxstor - ok
16:45:33.0079 3360 EMDMgmt (4e6b23dfc917ea39306b529b773950f4) C:\Windows\system32\emdmgmt.dll
16:45:33.0110 3360 EMDMgmt - ok
16:45:33.0126 3360 ErrDev (3db974f3935483555d7148663f726c61) C:\Windows\system32\drivers\errdev.sys
16:45:33.0126 3360 ErrDev - ok
16:45:33.0173 3360 EventSystem (67058c46504bc12d821f38cf99b7b28f) C:\Windows\system32\es.dll
16:45:33.0173 3360 EventSystem - ok
16:45:33.0204 3360 exfat (22b408651f9123527bcee54b4f6c5cae) C:\Windows\system32\drivers\exfat.sys
16:45:33.0220 3360 exfat - ok
16:45:33.0235 3360 fastfat (1e9b9a70d332103c52995e957dc09ef8) C:\Windows\system32\drivers\fastfat.sys
16:45:33.0251 3360 fastfat - ok
16:45:33.0282 3360 fdc (afe1e8b9782a0dd7fb46bbd88e43f89a) C:\Windows\system32\DRIVERS\fdc.sys
16:45:33.0282 3360 fdc - ok
16:45:33.0345 3360 fdPHost (6629b5f0e98151f4afdd87567ea32ba3) C:\Windows\system32\fdPHost.dll
16:45:33.0345 3360 fdPHost - ok
16:45:33.0423 3360 FDResPub (89ed56dce8e47af40892778a5bd31fd2) C:\Windows\system32\fdrespub.dll
16:45:33.0423 3360 FDResPub - ok
16:45:33.0439 3360 FileInfo (a8c0139a884861e3aae9cfe73b208a9f) C:\Windows\system32\drivers\fileinfo.sys
16:45:33.0439 3360 FileInfo - ok
16:45:33.0470 3360 Filetrace (0ae429a696aecbc5970e3cf2c62635ae) C:\Windows\system32\drivers\filetrace.sys
16:45:33.0470 3360 Filetrace - ok
16:45:33.0532 3360 FLEXnet Licensing Service (227846995afeefa70d328bf5334a86a5) C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
16:45:33.0532 3360 FLEXnet Licensing Service - ok
16:45:33.0610 3360 flpydisk (85b7cf99d532820495d68d747fda9ebd) C:\Windows\system32\DRIVERS\flpydisk.sys
16:45:33.0610 3360 flpydisk - ok
16:45:33.0673 3360 FltMgr (01334f9ea68e6877c4ef05d3ea8abb05) C:\Windows\system32\drivers\fltmgr.sys
16:45:33.0673 3360 FltMgr - ok
16:45:33.0720 3360 FontCache (8ce364388c8eca59b14b539179276d44) C:\Windows\system32\FntCache.dll
16:45:33.0751 3360 FontCache - ok
16:45:33.0798 3360 FontCache3.0.0.0 (c7fbdd1ed42f82bfa35167a5c9803ea3) C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
16:45:33.0814 3360 FontCache3.0.0.0 - ok
16:45:33.0923 3360 Fs_Rec (65ea8b77b5851854f0c55c43fa51a198) C:\Windows\system32\drivers\Fs_Rec.sys
16:45:33.0923 3360 Fs_Rec - ok
16:45:34.0017 3360 gagp30kx (34582a6e6573d54a07ece5fe24a126b5) C:\Windows\system32\drivers\gagp30kx.sys
16:45:34.0048 3360 gagp30kx - ok
16:45:34.0064 3360 GMSIPCI - ok
16:45:34.0251 3360 gpsvc (cd5d0aeee35dfd4e986a5aa1500a6e66) C:\Windows\System32\gpsvc.dll
16:45:34.0329 3360 gpsvc - ok
16:45:34.0485 3360 gusvc (c1b577b2169900f4cf7190c39f085794) C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
16:45:34.0485 3360 gusvc - ok
16:45:34.0548 3360 HdAudAddService (3f90e001369a07243763bd5a523d8722) C:\Windows\system32\drivers\HdAudio.sys
16:45:34.0564 3360 HdAudAddService - ok
16:45:34.0610 3360 HDAudBus (062452b7ffd68c8c042a6261fe8dff4a) C:\Windows\system32\DRIVERS\HDAudBus.sys
16:45:34.0642 3360 HDAudBus - ok
16:45:34.0657 3360 HidBth (1338520e78d90154ed6be8f84de5fceb) C:\Windows\system32\drivers\hidbth.sys
16:45:34.0673 3360 HidBth - ok
16:45:34.0689 3360 HidIr (ff3160c3a2445128c5a6d9b076da519e) C:\Windows\system32\drivers\hidir.sys
16:45:34.0689 3360 HidIr - ok
16:45:34.0720 3360 hidserv (84067081f3318162797385e11a8f0582) C:\Windows\system32\hidserv.dll
16:45:34.0720 3360 hidserv - ok
16:45:34.0751 3360 HidUsb (cca4b519b17e23a00b826c55716809cc) C:\Windows\system32\DRIVERS\hidusb.sys
16:45:34.0751 3360 HidUsb - ok
16:45:34.0782 3360 hkmsvc (d8ad255b37da92434c26e4876db7d418) C:\Windows\system32\kmsvc.dll
16:45:34.0798 3360 hkmsvc - ok
16:45:34.0814 3360 HpCISSs (16ee7b23a009e00d835cdb79574a91a6) C:\Windows\system32\drivers\hpcisss.sys
16:45:34.0814 3360 HpCISSs - ok
16:45:34.0939 3360 HPSLPSVC (14229263aa19c704e0d6d2e7404a8455) C:\Program Files\HP\Digital Imaging\bin\HPSLPSVC32.DLL
16:45:34.0954 3360 HPSLPSVC - ok
16:45:34.0985 3360 HTTP (f870aa3e254628ebeafe754108d664de) C:\Windows\system32\drivers\HTTP.sys
16:45:35.0001 3360 HTTP - ok
16:45:35.0017 3360 i2omp (c6b032d69650985468160fc9937cf5b4) C:\Windows\system32\drivers\i2omp.sys
16:45:35.0017 3360 i2omp - ok
16:45:35.0048 3360 i8042prt (22d56c8184586b7a1f6fa60be5f5a2bd) C:\Windows\system32\DRIVERS\i8042prt.sys
16:45:35.0064 3360 i8042prt - ok
16:45:35.0079 3360 iaStorV (54155ea1b0df185878e0fc9ec3ac3a14) C:\Windows\system32\drivers\iastorv.sys
16:45:35.0095 3360 iaStorV - ok
16:45:35.0251 3360 idsvc (98477b08e61945f974ed9fdc4cb6bdab) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
16:45:35.0314 3360 idsvc - ok
16:45:35.0345 3360 iirsp (2d077bf86e843f901d8db709c95b49a5) C:\Windows\system32\drivers\iirsp.sys
16:45:35.0360 3360 iirsp - ok
16:45:35.0501 3360 IKEEXT (9908d8a397b76cd8d31d0d383c5773c9) C:\Windows\System32\ikeext.dll
16:45:35.0564 3360 IKEEXT - ok
16:45:35.0704 3360 IntcAzAudAddService (7374c8a1e7efbf15a2c2a681f3ef0c69) C:\Windows\system32\drivers\RTKVHDA.sys
16:45:35.0720 3360 IntcAzAudAddService - ok
16:45:35.0814 3360 intelide (83aa759f3189e6370c30de5dc5590718) C:\Windows\system32\drivers\intelide.sys
16:45:35.0845 3360 intelide - ok
16:45:35.0923 3360 intelppm (224191001e78c89dfa78924c3ea595ff) C:\Windows\system32\DRIVERS\intelppm.sys
16:45:35.0939 3360 intelppm - ok
16:45:36.0001 3360 IPBusEnum (9ac218c6e6105477484c6fdbe7d409a4) C:\Windows\system32\ipbusenum.dll
16:45:36.0017 3360 IPBusEnum - ok
16:45:36.0095 3360 IpFilterDriver (62c265c38769b864cb25b4bcf62df6c3) C:\Windows\system32\DRIVERS\ipfltdrv.sys
16:45:36.0110 3360 IpFilterDriver - ok
16:45:36.0220 3360 iphlpsvc (1998bd97f950680bb55f55a7244679c2) C:\Windows\System32\iphlpsvc.dll
16:45:36.0251 3360 iphlpsvc - ok
16:45:36.0298 3360 IpInIp - ok
16:45:36.0501 3360 IPMIDRV (b25aaf203552b7b3491139d582b39ad1) C:\Windows\system32\drivers\ipmidrv.sys
16:45:36.0532 3360 IPMIDRV - ok
16:45:36.0673 3360 IPNAT (8793643a67b42cec66490b2a0cf92d68) C:\Windows\system32\DRIVERS\ipnat.sys
16:45:36.0673 3360 IPNAT - ok
16:45:36.0704 3360 IRENUM (109c0dfb82c3632fbd11949b73aeeac9) C:\Windows\system32\drivers\irenum.sys
16:45:36.0704 3360 IRENUM - ok
16:45:36.0720 3360 isapnp (6c70698a3e5c4376c6ab5c7c17fb0614) C:\Windows\system32\drivers\isapnp.sys
16:45:36.0735 3360 isapnp - ok
16:45:36.0767 3360 iScsiPrt (232fa340531d940aac623b121a595034) C:\Windows\system32\DRIVERS\msiscsi.sys
16:45:36.0767 3360 iScsiPrt - ok
16:45:36.0814 3360 iteatapi (bced60d16156e428f8df8cf27b0df150) C:\Windows\system32\drivers\iteatapi.sys
16:45:36.0829 3360 iteatapi - ok
16:45:36.0860 3360 iteraid (06fa654504a498c30adca8bec4e87e7e) C:\Windows\system32\drivers\iteraid.sys
16:45:36.0876 3360 iteraid - ok
16:45:36.0939 3360 kbdclass (37605e0a8cf00cbba538e753e4344c6e) C:\Windows\system32\DRIVERS\kbdclass.sys
16:45:36.0939 3360 kbdclass - ok
16:45:36.0985 3360 kbdhid (ede59ec70e25c24581add1fbec7325f7) C:\Windows\system32\DRIVERS\kbdhid.sys
16:45:36.0985 3360 kbdhid - ok
16:45:37.0017 3360 KeyIso (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
16:45:37.0017 3360 KeyIso - ok
16:45:37.0189 3360 KSecDD (2b2f1638466e8cb091400c9019cc730e) C:\Windows\system32\Drivers\ksecdd.sys
16:45:37.0204 3360 KSecDD - ok
16:45:37.0220 3360 KtmRm (8078f8f8f7a79e2e6b494523a828c585) C:\Windows\system32\msdtckrm.dll
16:45:37.0235 3360 KtmRm - ok
16:45:37.0267 3360 LanmanServer (1bf5eebfd518dd7298434d8c862f825d) C:\Windows\system32\srvsvc.dll
16:45:37.0267 3360 LanmanServer - ok
16:45:37.0298 3360 LanmanWorkstation (1db69705b695b987082c8baec0c6b34f) C:\Windows\System32\wkssvc.dll
16:45:37.0298 3360 LanmanWorkstation - ok
16:45:37.0423 3360 LBTServ (9582504591a9f405f7505fefb4f64123) C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe
16:45:37.0454 3360 LBTServ - ok
16:45:37.0501 3360 LHidFilt (05d6b85ecc3204931923ab7940b9596e) C:\Windows\system32\DRIVERS\LHidFilt.Sys
16:45:37.0501 3360 LHidFilt - ok
16:45:37.0548 3360 lirsgt (975b6cf65f44e95883f3855bae8cecaf) C:\Windows\system32\DRIVERS\lirsgt.sys
16:45:37.0548 3360 lirsgt - ok
16:45:37.0673 3360 lltdio (d1c5883087a0c3f1344d9d55a44901f6) C:\Windows\system32\DRIVERS\lltdio.sys
16:45:37.0673 3360 lltdio - ok
16:45:37.0704 3360 lltdsvc (2d5a428872f1442631d0959a34abff63) C:\Windows\System32\lltdsvc.dll
16:45:37.0720 3360 lltdsvc - ok
16:45:37.0751 3360 lmhosts (35d40113e4a5b961b6ce5c5857702518) C:\Windows\System32\lmhsvc.dll
16:45:37.0767 3360 lmhosts - ok
16:45:37.0876 3360 LMouFilt (053dbcc1082fdf74ab145a71917a6556) C:\Windows\system32\DRIVERS\LMouFilt.Sys
16:45:37.0876 3360 LMouFilt - ok
16:45:37.0985 3360 LSI_FC (c7e15e82879bf3235b559563d4185365) C:\Windows\system32\drivers\lsi_fc.sys
16:45:38.0001 3360 LSI_FC - ok
16:45:38.0079 3360 LSI_SAS (ee01ebae8c9bf0fa072e0ff68718920a) C:\Windows\system32\drivers\lsi_sas.sys
16:45:38.0110 3360 LSI_SAS - ok
16:45:38.0220 3360 LSI_SCSI (912a04696e9ca30146a62afa1463dd5c) C:\Windows\system32\drivers\lsi_scsi.sys
16:45:38.0235 3360 LSI_SCSI - ok
16:45:38.0517 3360 luafv (8f5c7426567798e62a3b3614965d62cc) C:\Windows\system32\drivers\luafv.sys
16:45:38.0595 3360 luafv - ok
16:45:39.0001 3360 LVRS (37072ec9299e825f4335cc554b6fac6a) C:\Windows\system32\DRIVERS\lvrs.sys
16:45:39.0017 3360 LVRS - ok
16:45:39.0892 3360 LVUVC (a240e42a7402e927a71b6e8aa4629b13) C:\Windows\system32\DRIVERS\lvuvc.sys
16:45:39.0923 3360 LVUVC - ok
16:45:40.0032 3360 maconfservice (dda57f57ec79197b64e9caa5308e2621) C:\Program Files\ma-config.com\maconfservice.exe
16:45:40.0048 3360 maconfservice - ok
16:45:40.0204 3360 Mcx2Svc (aef9babb8a506bc4ce0451a64aaded46) C:\Windows\system32\Mcx2Svc.dll
16:45:40.0220 3360 Mcx2Svc - ok
16:45:40.0314 3360 MDM (11f714f85530a2bd134074dc30e99fca) C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
16:45:40.0314 3360 MDM - ok
16:45:40.0376 3360 megasas (0001ce609d66632fa17b84705f658879) C:\Windows\system32\drivers\megasas.sys
16:45:40.0376 3360 megasas - ok
16:45:40.0407 3360 MegaSR (c252f32cd9a49dbfc25ecf26ebd51a99) C:\Windows\system32\drivers\megasr.sys
16:45:40.0439 3360 MegaSR - ok
16:45:40.0548 3360 Microsoft SharePoint Workspace Audit Service - ok
16:45:40.0642 3360 MMCSS (1076ffcffaae8385fd62dfcb25ac4708) C:\Windows\system32\mmcss.dll
16:45:40.0657 3360 MMCSS - ok
16:45:40.0751 3360 Modem (e13b5ea0f51ba5b1512ec671393d09ba) C:\Windows\system32\drivers\modem.sys
16:45:40.0782 3360 Modem - ok
16:45:40.0876 3360 monitor (0a9bb33b56e294f686abb7c1e4e2d8a8) C:\Windows\system32\DRIVERS\monitor.sys
16:45:40.0892 3360 monitor - ok
16:45:41.0064 3360 mouclass (5bf6a1326a335c5298477754a506d263) C:\Windows\system32\DRIVERS\mouclass.sys
16:45:41.0095 3360 mouclass - ok
16:45:41.0173 3360 mouhid (93b8d4869e12cfbe663915502900876f) C:\Windows\system32\DRIVERS\mouhid.sys
16:45:41.0189 3360 mouhid - ok
16:45:41.0314 3360 MountMgr (bdafc88aa6b92f7842416ea6a48e1600) C:\Windows\system32\drivers\mountmgr.sys
16:45:41.0329 3360 MountMgr - ok
16:45:41.0485 3360 mpio (511d011289755dd9f9a7579fb0b064e6) C:\Windows\system32\drivers\mpio.sys
16:45:41.0485 3360 mpio - ok
16:45:41.0595 3360 mpsdrv (22241feba9b2defa669c8cb0a8dd7d2e) C:\Windows\system32\drivers\mpsdrv.sys
16:45:41.0610 3360 mpsdrv - ok
16:45:41.0845 3360 MpsSvc (5de62c6e9108f14f6794060a9bdecaec) C:\Windows\system32\mpssvc.dll
16:45:41.0923 3360 MpsSvc - ok
16:45:42.0064 3360 Mraid35x (4fbbb70d30fd20ec51f80061703b001e) C:\Windows\system32\drivers\mraid35x.sys
16:45:42.0064 3360 Mraid35x - ok
16:45:42.0157 3360 MRxDAV (82cea0395524aacfeb58ba1448e8325c) C:\Windows\system32\drivers\mrxdav.sys
16:45:42.0189 3360 MRxDAV - ok
16:45:42.0314 3360 mrxsmb (1e94971c4b446ab2290deb71d01cf0c2) C:\Windows\system32\DRIVERS\mrxsmb.sys
16:45:42.0329 3360 mrxsmb - ok
16:45:42.0517 3360 mrxsmb10 (4fccb34d793b116423209c0f8b7a3b03) C:\Windows\system32\DRIVERS\mrxsmb10.sys
16:45:42.0564 3360 mrxsmb10 - ok
16:45:42.0673 3360 mrxsmb20 (c3cb1b40ad4a0124d617a1199b0b9d7c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
16:45:42.0704 3360 mrxsmb20 - ok
16:45:42.0814 3360 msahci (28023e86f17001f7cd9b15a5bc9ae07d) C:\Windows\system32\drivers\msahci.sys
16:45:42.0845 3360 msahci - ok
16:45:42.0939 3360 msdsm (4468b0f385a86ecddaf8d3ca662ec0e7) C:\Windows\system32\drivers\msdsm.sys
16:45:42.0954 3360 msdsm - ok
16:45:43.0017 3360 MSDTC (fd7520cc3a80c5fc8c48852bb24c6ded) C:\Windows\System32\msdtc.exe
16:45:43.0048 3360 MSDTC - ok
16:45:43.0126 3360 Msfs (a9927f4a46b816c92f461acb90cf8515) C:\Windows\system32\drivers\Msfs.sys
16:45:43.0126 3360 Msfs - ok
16:45:43.0189 3360 msisadrv (0f400e306f385c56317357d6dea56f62) C:\Windows\system32\drivers\msisadrv.sys
16:45:43.0204 3360 msisadrv - ok
16:45:43.0251 3360 MSiSCSI (85466c0757a23d9a9aecdc0755203cb2) C:\Windows\system32\iscsiexe.dll
16:45:43.0282 3360 MSiSCSI - ok
16:45:43.0314 3360 msiserver - ok
16:45:43.0392 3360 MSKSSRV (d8c63d34d9c9e56c059e24ec7185cc07) C:\Windows\system32\drivers\MSKSSRV.sys
16:45:43.0423 3360 MSKSSRV - ok
16:45:43.0517 3360 MSPCLOCK (1d373c90d62ddb641d50e55b9e78d65e) C:\Windows\system32\drivers\MSPCLOCK.sys
16:45:43.0532 3360 MSPCLOCK - ok
16:45:43.0642 3360 MSPQM (b572da05bf4e098d4bba3a4734fb505b) C:\Windows\system32\drivers\MSPQM.sys
16:45:43.0657 3360 MSPQM - ok
16:45:43.0720 3360 MsRPC (b49456d70555de905c311bcda6ec6adb) C:\Windows\system32\drivers\MsRPC.sys
16:45:43.0751 3360 MsRPC - ok
16:45:43.0829 3360 mssmbios (e384487cb84be41d09711c30ca79646c) C:\Windows\system32\DRIVERS\mssmbios.sys
16:45:43.0829 3360 mssmbios - ok
16:45:43.0907 3360 MSTEE (7199c1eec1e4993caf96b8c0a26bd58a) C:\Windows\system32\drivers\MSTEE.sys
16:45:43.0923 3360 MSTEE - ok
16:45:43.0985 3360 Mup (6a57b5733d4cb702c8ea4542e836b96c) C:\Windows\system32\Drivers\mup.sys
16:45:44.0001 3360 Mup - ok
16:45:44.0095 3360 mv61xx (a4a61d30097c8adaad648ebe204d61ef) C:\Windows\system32\DRIVERS\mv61xx.sys
16:45:44.0142 3360 mv61xx - ok
16:45:44.0220 3360 napagent (e4eaf0c5c1b41b5c83386cf212ca9584) C:\Windows\system32\qagentRT.dll
16:45:44.0235 3360 napagent - ok
16:45:44.0345 3360 NativeWifiP (85c44fdff9cf7e72a40dcb7ec06a4416) C:\Windows\system32\DRIVERS\nwifi.sys
16:45:44.0376 3360 NativeWifiP - ok
16:45:44.0532 3360 NDIS (1357274d1883f68300aeadd15d7bbb42) C:\Windows\system32\drivers\ndis.sys
16:45:44.0579 3360 NDIS - ok
16:45:44.0626 3360 NdisTapi (0e186e90404980569fb449ba7519ae61) C:\Windows\system32\DRIVERS\ndistapi.sys
16:45:44.0626 3360 NdisTapi - ok
16:45:44.0689 3360 Ndisuio (d6973aa34c4d5d76c0430b181c3cd389) C:\Windows\system32\DRIVERS\ndisuio.sys
16:45:44.0689 3360 Ndisuio - ok
16:45:44.0814 3360 NdisWan (818f648618ae34f729fdb47ec68345c3) C:\Windows\system32\DRIVERS\ndiswan.sys
16:45:44.0829 3360 NdisWan - ok
16:45:44.0860 3360 NDProxy (71dab552b41936358f3b541ae5997fb3) C:\Windows\system32\drivers\NDProxy.sys
16:45:44.0860 3360 NDProxy - ok
16:45:44.0907 3360 Net Driver HPZ12 (2969d26eee289be7422aa46fc55f4e38) C:\Windows\system32\HPZinw12.dll
16:45:44.0923 3360 Net Driver HPZ12 - ok
16:45:44.0954 3360 NetBIOS (bcd093a5a6777cf626434568dc7dba78) C:\Windows\system32\DRIVERS\netbios.sys
16:45:44.0970 3360 NetBIOS - ok
16:45:45.0017 3360 netbt (ecd64230a59cbd93c85f1cd1cab9f3f6) C:\Windows\system32\DRIVERS\netbt.sys
16:45:45.0048 3360 netbt - ok
16:45:45.0126 3360 Netlogon (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
16:45:45.0126 3360 Netlogon - ok
16:45:45.0189 3360 Netman (c8052711daecc48b982434c5116ca401) C:\Windows\System32\netman.dll
16:45:45.0204 3360 Netman - ok
16:45:45.0251 3360 netprofm (2ef3bbe22e5a5acd1428ee387a0d0172) C:\Windows\System32\netprofm.dll
16:45:45.0251 3360 netprofm - ok
16:45:45.0345 3360 NetTcpPortSharing (d6c4e4a39a36029ac0813d476fbd0248) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
16:45:45.0345 3360 NetTcpPortSharing - ok
16:45:45.0392 3360 nfrd960 (2e7fb731d4790a1bc6270accefacb36e) C:\Windows\system32\drivers\nfrd960.sys
16:45:45.0423 3360 nfrd960 - ok
16:45:45.0454 3360 NlaSvc (2997b15415f9bbe05b5a4c1c85e0c6a2) C:\Windows\System32\nlasvc.dll
16:45:45.0454 3360 NlaSvc - ok
16:45:45.0548 3360 Npfs (d36f239d7cce1931598e8fb90a0dbc26) C:\Windows\system32\drivers\Npfs.sys
16:45:45.0548 3360 Npfs - ok
16:45:45.0642 3360 nsi (8bb86f0c7eea2bded6fe095d0b4ca9bd) C:\Windows\system32\nsisvc.dll
16:45:45.0657 3360 nsi - ok
16:45:45.0704 3360 nsiproxy (609773e344a97410ce4ebf74a8914fcf) C:\Windows\system32\drivers\nsiproxy.sys
16:45:45.0704 3360 nsiproxy - ok
16:45:45.0782 3360 Ntfs (6a4a98cee84cf9e99564510dda4baa47) C:\Windows\system32\drivers\Ntfs.sys
16:45:45.0845 3360 Ntfs - ok
16:45:45.0939 3360 ntrigdigi (e875c093aec0c978a90f30c9e0dfbb72) C:\Windows\system32\drivers\ntrigdigi.sys
16:45:45.0970 3360 ntrigdigi - ok
16:45:46.0126 3360 Null (c5dbbcda07d780bda9b685df333bb41e) C:\Windows\system32\drivers\Null.sys
16:45:46.0142 3360 Null - ok
16:45:46.0360 3360 nvraid (2edf9e7751554b42cbb60116de727101) C:\Windows\system32\drivers\nvraid.sys
16:45:46.0392 3360 nvraid - ok
16:45:46.0470 3360 nvstor (abed0c09758d1d97db0042dbb2688177) C:\Windows\system32\drivers\nvstor.sys
16:45:46.0485 3360 nvstor - ok
16:45:46.0673 3360 nv_agp (18bbdf913916b71bd54575bdb6eeac0b) C:\Windows\system32\drivers\nv_agp.sys
16:45:46.0689 3360 nv_agp - ok
16:45:46.0767 3360 NwlnkFlt - ok
16:45:46.0845 3360 NwlnkFwd - ok
16:45:47.0001 3360 ohci1394 (be32da025a0be1878f0ee8d6d9386cd5) C:\Windows\system32\drivers\ohci1394.sys
16:45:47.0032 3360 ohci1394 - ok
16:45:47.0251 3360 ose (9d10f99a6712e28f8acd5641e3a7ea6b) C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
16:45:47.0314 3360 ose - ok
16:45:48.0235 3360 osppsvc (358a9cca612c68eb2f07ddad4ce1d8d7) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
16:45:48.0798 3360 osppsvc - ok
16:45:49.0110 3360 p2pimsvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
16:45:49.0251 3360 p2pimsvc - ok
16:45:49.0345 3360 p2psvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
16:45:49.0345 3360 p2psvc - ok
16:45:49.0501 3360 Parport (8a79fdf04a73428597e2caf9d0d67850) C:\Windows\system32\DRIVERS\parport.sys
16:45:49.0517 3360 Parport - ok
16:45:49.0564 3360 partmgr (57389fa59a36d96b3eb09d0cb91e9cdc) C:\Windows\system32\drivers\partmgr.sys
16:45:49.0595 3360 partmgr - ok
16:45:49.0657 3360 Parvdm (6c580025c81caf3ae9e3617c22cad00e) C:\Windows\system32\DRIVERS\parvdm.sys
16:45:49.0704 3360 Parvdm - ok
16:45:49.0798 3360 PcaSvc (c6276ad11f4bb49b58aa1ed88537f14a) C:\Windows\System32\pcasvc.dll
16:45:49.0814 3360 PcaSvc - ok
16:45:49.0860 3360 pci (941dc1d19e7e8620f40bbc206981efdb) C:\Windows\system32\drivers\pci.sys
16:45:49.0860 3360 pci - ok
16:45:49.0939 3360 pciide (1636d43f10416aeb483bc6001097b26c) C:\Windows\system32\drivers\pciide.sys
16:45:49.0939 3360 pciide - ok
16:45:49.0970 3360 pcmcia (e6f3fb1b86aa519e7698ad05e58b04e5) C:\Windows\system32\drivers\pcmcia.sys
16:45:49.0985 3360 pcmcia - ok
16:45:50.0032 3360 PEAUTH (6349f6ed9c623b44b52ea3c63c831a92) C:\Windows\system32\drivers\peauth.sys
16:45:50.0079 3360 PEAUTH - ok
16:45:50.0189 3360 pla (b1689df169143f57053f795390c99db3) C:\Windows\system32\pla.dll
16:45:50.0235 3360 pla - ok
16:45:50.0314 3360 PlugPlay (c5e7f8a996ec0a82d508fd9064a5569e) C:\Windows\system32\umpnpmgr.dll
16:45:50.0345 3360 PlugPlay - ok
16:45:50.0423 3360 Pml Driver HPZ12 (bafc9706bdf425a02b66468ab2605c59) C:\Windows\system32\HPZipm12.dll
16:45:50.0423 3360 Pml Driver HPZ12 - ok
16:45:50.0485 3360 PnkBstrA (831883b107684301f48ace752c963984) C:\Windows\system32\PnkBstrA.exe
16:45:50.0485 3360 PnkBstrA - ok
16:45:50.0532 3360 PnkBstrB (e24106a5eaecddff00b25497049dd65f) C:\Windows\system32\PnkBstrB.exe
16:45:50.0532 3360 PnkBstrB - ok
16:45:50.0595 3360 PNRPAutoReg (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
16:45:50.0610 3360 PNRPAutoReg - ok
16:45:50.0642 3360 PNRPsvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
16:45:50.0642 3360 PNRPsvc - ok
16:45:50.0704 3360 PolicyAgent (d0494460421a03cd5225cca0059aa146) C:\Windows\System32\ipsecsvc.dll
16:45:50.0735 3360 PolicyAgent - ok
16:45:50.0814 3360 PptpMiniport (ecfffaec0c1ecd8dbc77f39070ea1db1) C:\Windows\system32\DRIVERS\raspptp.sys
16:45:50.0814 3360 PptpMiniport - ok
16:45:50.0845 3360 Processor (2027293619dd0f047c584cf2e7df4ffd) C:\Windows\system32\drivers\processr.sys
16:45:50.0845 3360 Processor - ok
16:45:50.0876 3360 ProfSvc (0508faa222d28835310b7bfca7a77346) C:\Windows\system32\profsvc.dll
16:45:50.0876 3360 ProfSvc - ok
16:45:50.0907 3360 ProtectedStorage (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
16:45:50.0907 3360 ProtectedStorage - ok
16:45:50.0939 3360 PSched (99514faa8df93d34b5589187db3aa0ba) C:\Windows\system32\DRIVERS\pacer.sys
16:45:50.0954 3360 PSched - ok
16:45:50.0985 3360 PSI (d24dfd16a1e2a76034df5aa18125c35d) C:\Windows\system32\DRIVERS\psi_mf.sys
16:45:51.0001 3360 PSI - ok
16:45:51.0032 3360 ql2300 (0a6db55afb7820c99aa1f3a1d270f4f6) C:\Windows\system32\drivers\ql2300.sys
16:45:51.0048 3360 ql2300 - ok
16:45:51.0079 3360 ql40xx (81a7e5c076e59995d54bc1ed3a16e60b) C:\Windows\system32\drivers\ql40xx.sys
16:45:51.0095 3360 ql40xx - ok
16:45:51.0126 3360 QWAVE (e9ecae663f47e6cb43962d18ab18890f) C:\Windows\system32\qwave.dll
16:45:51.0142 3360 QWAVE - ok
16:45:51.0157 3360 QWAVEdrv (9f5e0e1926014d17486901c88eca2db7) C:\Windows\system32\drivers\qwavedrv.sys
16:45:51.0157 3360 QWAVEdrv - ok
16:45:51.0173 3360 RasAcd (147d7f9c556d259924351feb0de606c3) C:\Windows\system32\DRIVERS\rasacd.sys
16:45:51.0173 3360 RasAcd - ok
16:45:51.0189 3360 RasAuto (f6a452eb4ceadbb51c9e0ee6b3ecef0f) C:\Windows\System32\rasauto.dll
16:45:51.0204 3360 RasAuto - ok
16:45:51.0220 3360 Rasl2tp (a214adbaf4cb47dd2728859ef31f26b0) C:\Windows\system32\DRIVERS\rasl2tp.sys
16:45:51.0220 3360 Rasl2tp - ok
16:45:51.0235 3360 RasMan (75d47445d70ca6f9f894b032fbc64fcf) C:\Windows\System32\rasmans.dll
16:45:51.0235 3360 RasMan - ok
16:45:51.0282 3360 RasPppoe (509a98dd18af4375e1fc40bc175f1def) C:\Windows\system32\DRIVERS\raspppoe.sys
16:45:51.0282 3360 RasPppoe - ok
16:45:51.0314 3360 RasSstp (2005f4a1e05fa09389ac85840f0a9e4d) C:\Windows\system32\DRIVERS\rassstp.sys
16:45:51.0329 3360 RasSstp - ok
16:45:51.0345 3360 rdbss (b14c9d5b9add2f84f70570bbbfaa7935) C:\Windows\system32\DRIVERS\rdbss.sys
16:45:51.0360 3360 rdbss - ok
16:45:51.0360 3360 RDPCDD (89e59be9a564262a3fb6c4f4f1cd9899) C:\Windows\system32\DRIVERS\RDPCDD.sys
16:45:51.0360 3360 RDPCDD - ok
16:45:51.0376 3360 rdpdr (fbc0bacd9c3d7f6956853f64a66e252d) C:\Windows\system32\drivers\rdpdr.sys
16:45:51.0392 3360 rdpdr - ok
16:45:51.0392 3360 RDPENCDD (9d91fe5286f748862ecffa05f8a0710c) C:\Windows\system32\drivers\rdpencdd.sys
16:45:51.0407 3360 RDPENCDD - ok
16:45:51.0439 3360 RDPWD (79c6df8477250f5c54f7c5ae1d6b814e) C:\Windows\system32\drivers\RDPWD.sys
16:45:51.0454 3360 RDPWD - ok
16:45:51.0470 3360 RemoteAccess (bcdd6b4804d06b1f7ebf29e53a57ece9) C:\Windows\System32\mprdim.dll
16:45:51.0485 3360 RemoteAccess - ok
16:45:51.0501 3360 RemoteRegistry (9e6894ea18daff37b63e1005f83ae4ab) C:\Windows\system32\regsvc.dll
16:45:51.0501 3360 RemoteRegistry - ok
16:45:51.0517 3360 RpcLocator (5123f83cbc4349d065534eeb6bbdc42b) C:\Windows\system32\locator.exe
16:45:51.0517 3360 RpcLocator - ok
16:45:51.0532 3360 RpcSs (3b5b4d53fec14f7476ca29a20cc31ac9) C:\Windows\system32\rpcss.dll
16:45:51.0532 3360 RpcSs - ok
16:45:51.0548 3360 rspndr (9c508f4074a39e8b4b31d27198146fad) C:\Windows\system32\DRIVERS\rspndr.sys
16:45:51.0564 3360 rspndr - ok
16:45:51.0579 3360 RT61 (6de7a483204ca5a57b672dcb25716361) C:\Windows\system32\DRIVERS\RT61.sys
16:45:51.0579 3360 RT61 - ok
16:45:51.0657 3360 RTL8169 (f9575b977a13965bbe0181a6604f4f04) C:\Windows\system32\DRIVERS\Rtlh86.sys
16:45:51.0673 3360 RTL8169 - ok
16:45:51.0720 3360 SamSs (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
16:45:51.0720 3360 SamSs - ok
16:45:51.0751 3360 sbp2port (3ce8f073a557e172b330109436984e30) C:\Windows\system32\drivers\sbp2port.sys
16:45:51.0767 3360 sbp2port - ok
16:45:51.0814 3360 SCardSvr (77b7a11a0c3d78d3386398fbbea1b632) C:\Windows\System32\SCardSvr.dll
16:45:51.0845 3360 SCardSvr - ok
16:45:51.0954 3360 Schedule (1a58069db21d05eb2ab58ee5753ebe8d) C:\Windows\system32\schedsvc.dll
16:45:51.0985 3360 Schedule - ok
16:45:52.0032 3360 SCPolicySvc (312ec3e37a0a1f2006534913e37b4423) C:\Windows\System32\certprop.dll
16:45:52.0032 3360 SCPolicySvc - ok
16:45:52.0064 3360 SDRSVC (716313d9f6b0529d03f726d5aaf6f191) C:\Windows\System32\SDRSVC.dll
16:45:52.0064 3360 SDRSVC - ok
16:45:52.0126 3360 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
16:45:52.0126 3360 secdrv - ok
16:45:52.0142 3360 seclogon (fd5199d4d8a521005e4b5ee7fe00fa9b) C:\Windows\system32\seclogon.dll
16:45:52.0142 3360 seclogon - ok
16:45:52.0189 3360 Secunia PSI Agent - ok
16:45:52.0235 3360 Secunia Update Agent - ok
16:45:52.0314 3360 SENS (a9bbab5759771e523f55563d6cbe140f) C:\Windows\System32\sens.dll
16:45:52.0329 3360 SENS - ok
16:45:52.0360 3360 Serenum (ce9ec966638ef0b10b864ddedf62a099) C:\Windows\system32\DRIVERS\serenum.sys
16:45:52.0360 3360 Serenum - ok
16:45:52.0376 3360 Serial (6d663022db3e7058907784ae14b69898) C:\Windows\system32\DRIVERS\serial.sys
16:45:52.0392 3360 Serial - ok
16:45:52.0407 3360 sermouse (8af3d28a879bf75db53a0ee7a4289624) C:\Windows\system32\drivers\sermouse.sys
16:45:52.0407 3360 sermouse - ok
16:45:52.0501 3360 SessionEnv (d2193326f729b163125610dbf3e17d57) C:\Windows\system32\sessenv.dll
16:45:52.0517 3360 SessionEnv - ok
16:45:52.0532 3360 sffdisk (3efa810bdca87f6ecc24f9832243fe86) C:\Windows\system32\drivers\sffdisk.sys
16:45:52.0548 3360 sffdisk - ok
16:45:52.0595 3360 sffp_mmc (e95d451f7ea3e583aec75f3b3ee42dc5) C:\Windows\system32\drivers\sffp_mmc.sys
16:45:52.0626 3360 sffp_mmc - ok
16:45:52.0657 3360 sffp_sd (3d0ea348784b7ac9ea9bd9f317980979) C:\Windows\system32\drivers\sffp_sd.sys
16:45:52.0657 3360 sffp_sd - ok
16:45:52.0673 3360 sfloppy (46ed8e91793b2e6f848015445a0ac188) C:\Windows\system32\drivers\sfloppy.sys
16:45:52.0673 3360 sfloppy - ok
16:45:52.0689 3360 SharedAccess (e1499bd0ff76b1b2fbbf1af339d91165) C:\Windows\System32\ipnathlp.dll
16:45:52.0704 3360 SharedAccess - ok
16:45:52.0735 3360 ShellHWDetection (c7230fbee14437716701c15be02c27b8) C:\Windows\System32\shsvcs.dll
16:45:52.0735 3360 ShellHWDetection - ok
16:45:52.0751 3360 sisagp (1d76624a09a054f682d746b924e2dbc3) C:\Windows\system32\drivers\sisagp.sys
16:45:52.0767 3360 sisagp - ok
16:45:52.0782 3360 SiSRaid2 (43cb7aa756c7db280d01da9b676cfde2) C:\Windows\system32\drivers\sisraid2.sys
16:45:52.0782 3360 SiSRaid2 - ok
16:45:52.0814 3360 SiSRaid4 (a99c6c8b0baa970d8aa59ddc50b57f94) C:\Windows\system32\drivers\sisraid4.sys
16:45:52.0829 3360 SiSRaid4 - ok
16:45:52.0939 3360 slsvc (862bb4cbc05d80c5b45be430e5ef872f) C:\Windows\system32\SLsvc.exe
16:45:52.0985 3360 slsvc - ok
16:45:53.0032 3360 SLUINotify (6edc422215cd78aa8a9cde6b30abbd35) C:\Windows\system32\SLUINotify.dll
16:45:53.0032 3360 SLUINotify - ok
16:45:53.0064 3360 Smb (7b75299a4d201d6a6533603d6914ab04) C:\Windows\system32\DRIVERS\smb.sys
16:45:53.0064 3360 Smb - ok
16:45:53.0079 3360 SNMPTRAP (2a146a055b4401c16ee62d18b8e2a032) C:\Windows\System32\snmptrap.exe
16:45:53.0079 3360 SNMPTRAP - ok
16:45:53.0095 3360 spldr (7aebdeef071fe28b0eef2cdd69102bff) C:\Windows\system32\drivers\spldr.sys
16:45:53.0095 3360 spldr - ok
16:45:53.0157 3360 Spooler (8554097e5136c3bf9f69fe578a1b35f4) C:\Windows\System32\spoolsv.exe
16:45:53.0173 3360 Spooler - ok
16:45:53.0204 3360 sptd (cdddec541bc3c96f91ecb48759673505) C:\Windows\system32\Drivers\sptd.sys
16:45:53.0204 3360 Suspicious file (NoAccess): C:\Windows\system32\Drivers\sptd.sys. md5: cdddec541bc3c96f91ecb48759673505
16:45:53.0204 3360 sptd ( LockedFile.Multi.Generic ) - warning
16:45:53.0204 3360 sptd - detected LockedFile.Multi.Generic (1)
16:45:53.0235 3360 srv (41987f9fc0e61adf54f581e15029ad91) C:\Windows\system32\DRIVERS\srv.sys
16:45:53.0251 3360 srv - ok
16:45:53.0282 3360 srv2 (ff33aff99564b1aa534f58868cbe41ef) C:\Windows\system32\DRIVERS\srv2.sys
16:45:53.0282 3360 srv2 - ok
16:45:53.0314 3360 srvnet (7605c0e1d01a08f3ecd743f38b834a44) C:\Windows\system32\DRIVERS\srvnet.sys
16:45:53.0314 3360 srvnet - ok
16:45:53.0329 3360 SSDPSRV (03d50b37234967433a5ea5ba72bc0b62) C:\Windows\System32\ssdpsrv.dll
16:45:53.0345 3360 SSDPSRV - ok
16:45:53.0360 3360 ssmdrv (a36ee93698802cd899f98bfd553d8185) C:\Windows\system32\DRIVERS\ssmdrv.sys
16:45:53.0360 3360 ssmdrv - ok
16:45:53.0376 3360 SstpSvc (6f1a32e7b7b30f004d9a20afadb14944) C:\Windows\system32\sstpsvc.dll
16:45:53.0392 3360 SstpSvc - ok
16:45:53.0423 3360 Steam Client Service - ok
16:45:53.0439 3360 StillCam (ef70b3d22b4bffda6ea851ecb063efaa) C:\Windows\system32\DRIVERS\serscan.sys
16:45:53.0439 3360 StillCam - ok
16:45:53.0470 3360 stisvc (5de7d67e49b88f5f07f3e53c4b92a352) C:\Windows\System32\wiaservc.dll
16:45:53.0470 3360 stisvc - ok
16:45:53.0485 3360 swenum (7ba58ecf0c0a9a69d44b3dca62becf56) C:\Windows\system32\DRIVERS\swenum.sys
16:45:53.0485 3360 swenum - ok
16:45:53.0532 3360 swprv (f21fd248040681cca1fb6c9a03aaa93d) C:\Windows\System32\swprv.dll
16:45:53.0548 3360 swprv - ok
16:45:53.0564 3360 Symc8xx (192aa3ac01df071b541094f251deed10) C:\Windows\system32\drivers\symc8xx.sys
16:45:53.0564 3360 Symc8xx - ok
16:45:53.0595 3360 Sym_hi (8c8eb8c76736ebaf3b13b633b2e64125) C:\Windows\system32\drivers\sym_hi.sys
16:45:53.0610 3360 Sym_hi - ok
16:45:53.0657 3360 Sym_u3 (8072af52b5fd103bbba387a1e49f62cb) C:\Windows\system32\drivers\sym_u3.sys
16:45:53.0657 3360 Sym_u3 - ok
16:45:53.0704 3360 SysMain (9a51b04e9886aa4ee90093586b0ba88d) C:\Windows\system32\sysmain.dll
16:45:53.0720 3360 SysMain - ok
16:45:53.0735 3360 TabletInputService (2dca225eae15f42c0933e998ee0231c3) C:\Windows\System32\TabSvc.dll
16:45:53.0735 3360 TabletInputService - ok
16:45:53.0767 3360 TapiSrv (d7673e4b38ce21ee54c59eeeb65e2483) C:\Windows\System32\tapisrv.dll
16:45:53.0782 3360 TapiSrv - ok
16:45:53.0798 3360 TBS (cb05822cd9cc6c688168e113c603dbe7) C:\Windows\System32\tbssvc.dll
16:45:53.0798 3360 TBS - ok
16:45:53.0860 3360 Tcpip (814a1c66fbd4e1b310a517221f1456bf) C:\Windows\system32\drivers\tcpip.sys
16:45:53.0876 3360 Tcpip - ok
16:45:53.0892 3360 Tcpip6 (814a1c66fbd4e1b310a517221f1456bf) C:\Windows\system32\DRIVERS\tcpip.sys
16:45:53.0892 3360 Tcpip6 - ok
16:45:53.0923 3360 tcpipreg (608c345a255d82a6289c2d468eb41fd7) C:\Windows\system32\drivers\tcpipreg.sys
16:45:53.0923 3360 tcpipreg - ok
16:45:53.0939 3360 TDPIPE (5dcf5e267be67a1ae926f2df77fbcc56) C:\Windows\system32\drivers\tdpipe.sys
16:45:53.0939 3360 TDPIPE - ok
16:45:53.0954 3360 TDTCP (389c63e32b3cefed425b61ed92d3f021) C:\Windows\system32\drivers\tdtcp.sys
16:45:53.0954 3360 TDTCP - ok
16:45:53.0985 3360 tdx (76b06eb8a01fc8624d699e7045303e54) C:\Windows\system32\DRIVERS\tdx.sys
16:45:53.0985 3360 tdx - ok
16:45:54.0017 3360 TermDD (3cad38910468eab9a6479e2f01db43c7) C:\Windows\system32\DRIVERS\termdd.sys
16:45:54.0017 3360 TermDD - ok
16:45:54.0048 3360 TermService (bb95da09bef6e7a131bff3ba5032090d) C:\Windows\System32\termsrv.dll
16:45:54.0064 3360 TermService - ok
16:45:54.0079 3360 Themes (c7230fbee14437716701c15be02c27b8) C:\Windows\system32\shsvcs.dll
16:45:54.0079 3360 Themes - ok
16:45:54.0110 3360 THREADORDER (1076ffcffaae8385fd62dfcb25ac4708) C:\Windows\system32\mmcss.dll
16:45:54.0110 3360 THREADORDER - ok
16:45:54.0157 3360 TrkWks (ec74e77d0eb004bd3a809b5f8fb8c2ce) C:\Windows\System32\trkwks.dll
16:45:54.0173 3360 TrkWks - ok
16:45:54.0235 3360 TrustedInstaller (97d9d6a04e3ad9b6c626b9931db78dba) C:\Windows\servicing\TrustedInstaller.exe
16:45:54.0267 3360 TrustedInstaller - ok
16:45:54.0314 3360 tssecsrv (dcf0f056a2e4f52287264f5ab29cf206) C:\Windows\system32\DRIVERS\tssecsrv.sys
16:45:54.0329 3360 tssecsrv - ok
16:45:54.0360 3360 tunmp (caecc0120ac49e3d2f758b9169872d38) C:\Windows\system32\DRIVERS\tunmp.sys
16:45:54.0360 3360 tunmp - ok
16:45:54.0439 3360 tunnel (300db877ac094feab0be7688c3454a9c) C:\Windows\system32\DRIVERS\tunnel.sys
16:45:54.0439 3360 tunnel - ok
16:45:54.0470 3360 uagp35 (7d33c4db2ce363c8518d2dfcf533941f) C:\Windows\system32\drivers\uagp35.sys
16:45:54.0470 3360 uagp35 - ok
16:45:54.0548 3360 udfs (d9728af68c4c7693cb100b8441cbdec6) C:\Windows\system32\DRIVERS\udfs.sys
16:45:54.0579 3360 udfs - ok
16:45:54.0595 3360 UI0Detect (ecef404f62863755951e09c802c94ad5) C:\Windows\system32\UI0Detect.exe
16:45:54.0610 3360 UI0Detect - ok
16:45:54.0626 3360 uliagpkx (b0acfdc9e4af279e9116c03e014b2b27) C:\Windows\system32\drivers\uliagpkx.sys
16:45:54.0626 3360 uliagpkx - ok
16:45:54.0657 3360 uliahci (9224bb254f591de4ca8d572a5f0d635c) C:\Windows\system32\drivers\uliahci.sys
16:45:54.0657 3360 uliahci - ok
16:45:54.0689 3360 UlSata (8514d0e5cd0534467c5fc61be94a569f) C:\Windows\system32\drivers\ulsata.sys
16:45:54.0689 3360 UlSata - ok
16:45:54.0704 3360 ulsata2 (38c3c6e62b157a6bc46594fada45c62b) C:\Windows\system32\drivers\ulsata2.sys
16:45:54.0720 3360 ulsata2 - ok
16:45:54.0720 3360 umbus (32cff9f809ae9aed85464492bf3e32d2) C:\Windows\system32\DRIVERS\umbus.sys
16:45:54.0735 3360 umbus - ok
16:45:54.0751 3360 upnphost (68308183f4ae0be7bf8ecd07cb297999) C:\Windows\System32\upnphost.dll
16:45:54.0751 3360 upnphost - ok
16:45:54.0782 3360 usbaudio (32db9517628ff0d070682aab61e688f0) C:\Windows\system32\drivers\usbaudio.sys
16:45:54.0798 3360 usbaudio - ok
16:45:54.0814 3360 usbccgp (caf811ae4c147ffcd5b51750c7f09142) C:\Windows\system32\DRIVERS\usbccgp.sys
16:45:54.0829 3360 usbccgp - ok
16:45:54.0829 3360 usbcir (e9476e6c486e76bc4898074768fb7131) C:\Windows\system32\drivers\usbcir.sys
16:45:54.0845 3360 usbcir - ok
16:45:54.0876 3360 usbehci (79e96c23a97ce7b8f14d310da2db0c9b) C:\Windows\system32\DRIVERS\usbehci.sys
16:45:54.0876 3360 usbehci - ok
16:45:54.0892 3360 usbhub (4673bbcb006af60e7abddbe7a130ba42) C:\Windows\system32\DRIVERS\usbhub.sys
16:45:54.0892 3360 usbhub - ok
16:45:54.0907 3360 usbohci (38dbc7dd6cc5a72011f187425384388b) C:\Windows\system32\drivers\usbohci.sys
16:45:54.0907 3360 usbohci - ok
16:45:54.0939 3360 usbprint (b51e52acf758be00ef3a58ea452fe360) C:\Windows\system32\drivers\usbprint.sys
16:45:54.0939 3360 usbprint - ok
16:45:54.0954 3360 USBSTOR (be3da31c191bc222d9ad503c5224f2ad) C:\Windows\system32\DRIVERS\USBSTOR.SYS
16:45:54.0954 3360 USBSTOR - ok
16:45:54.0970 3360 usbuhci (814d653efc4d48be3b04a307eceff56f) C:\Windows\system32\DRIVERS\usbuhci.sys
16:45:54.0970 3360 usbuhci - ok
16:45:54.0985 3360 usbvideo (e67998e8f14cb0627a769f6530bcb352) C:\Windows\system32\Drivers\usbvideo.sys
16:45:55.0001 3360 usbvideo - ok
16:45:55.0017 3360 UxSms (1509e705f3ac1d474c92454a5c2dd81f) C:\Windows\System32\uxsms.dll
16:45:55.0017 3360 UxSms - ok
16:45:55.0048 3360 vds (cd88d1b7776dc17a119049742ec07eb4) C:\Windows\System32\vds.exe
16:45:55.0048 3360 vds - ok
16:45:55.0079 3360 vga (87b06e1f30b749a114f74622d013f8d4) C:\Windows\system32\DRIVERS\vgapnp.sys
16:45:55.0079 3360 vga - ok
16:45:55.0095 3360 VgaSave (2e93ac0a1d8c79d019db6c51f036636c) C:\Windows\System32\drivers\vga.sys
16:45:55.0095 3360 VgaSave - ok
16:45:55.0110 3360 viaagp (5d7159def58a800d5781ba3a879627bc) C:\Windows\system32\drivers\viaagp.sys
16:45:55.0126 3360 viaagp - ok
16:45:55.0142 3360 ViaC7 (c4f3a691b5bad343e6249bd8c2d45dee) C:\Windows\system32\drivers\viac7.sys
16:45:55.0142 3360 ViaC7 - ok
16:45:55.0157 3360 viaide (aadf5587a4063f52c2c3fed7887426fc) C:\Windows\system32\drivers\viaide.sys
16:45:55.0157 3360 viaide - ok
16:45:55.0173 3360 volmgr (69503668ac66c77c6cd7af86fbdf8c43) C:\Windows\system32\drivers\volmgr.sys
16:45:55.0189 3360 volmgr - ok
16:45:55.0189 3360 volmgrx (23e41b834759917bfd6b9a0d625d0c28) C:\Windows\system32\drivers\volmgrx.sys
16:45:55.0204 3360 volmgrx - ok
16:45:55.0220 3360 volsnap (147281c01fcb1df9252de2a10d5e7093) C:\Windows\system32\drivers\volsnap.sys
16:45:55.0220 3360 volsnap - ok
16:45:55.0235 3360 vsmraid (587253e09325e6bf226b299774b728a9) C:\Windows\system32\drivers\vsmraid.sys
16:45:55.0235 3360 vsmraid - ok
16:45:55.0267 3360 VSS (db3d19f850c6eb32bdcb9bc0836acddb) C:\Windows\system32\vssvc.exe
16:45:55.0298 3360 VSS - ok
16:45:55.0314 3360 W32Time (96ea68b9eb310a69c25ebb0282b2b9de) C:\Windows\system32\w32time.dll
16:45:55.0329 3360 W32Time - ok
16:45:55.0345 3360 WacomPen (48dfee8f1af7c8235d4e626f0c4fe031) C:\Windows\system32\drivers\wacompen.sys
16:45:55.0345 3360 WacomPen - ok
16:45:55.0360 3360 Wanarp (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
16:45:55.0376 3360 Wanarp - ok
16:45:55.0376 3360 Wanarpv6 (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
16:45:55.0376 3360 Wanarpv6 - ok
16:45:55.0392 3360 wcncsvc (a3cd60fd826381b49f03832590e069af) C:\Windows\System32\wcncsvc.dll
16:45:55.0407 3360 wcncsvc - ok
16:45:55.0423 3360 WcsPlugInService (11bcb7afcdd7aadacb5746f544d3a9c7) C:\Windows\System32\WcsPlugInService.dll
16:45:55.0423 3360 WcsPlugInService - ok
16:45:55.0454 3360 Wd (78fe9542363f297b18c027b2d7e7c07f) C:\Windows\system32\drivers\wd.sys
16:45:55.0454 3360 Wd - ok
16:45:55.0470 3360 Wdf01000 (b6f0a7ad6d4bd325fbcd8bac96cd8d96) C:\Windows\system32\drivers\Wdf01000.sys
16:45:55.0517 3360 Wdf01000 - ok
16:45:55.0548 3360 WdiServiceHost (abfc76b48bb6c96e3338d8943c5d93b5) C:\Windows\system32\wdi.dll
16:45:55.0548 3360 WdiServiceHost - ok
16:45:55.0564 3360 WdiSystemHost (abfc76b48bb6c96e3338d8943c5d93b5) C:\Windows\system32\wdi.dll
16:45:55.0564 3360 WdiSystemHost - ok
16:45:55.0579 3360 WebClient (04c37d8107320312fbae09926103d5e2) C:\Windows\System32\webclnt.dll
16:45:55.0610 3360 WebClient - ok
16:45:55.0626 3360 Wecsvc (ae3736e7e8892241c23e4ebbb7453b60) C:\Windows\system32\wecsvc.dll
16:45:55.0642 3360 Wecsvc - ok
16:45:55.0657 3360 wercplsupport (670ff720071ed741206d69bd995ea453) C:\Windows\System32\wercplsupport.dll
16:45:55.0657 3360 wercplsupport - ok
16:45:55.0673 3360 WerSvc (32b88481d3b326da6deb07b1d03481e7) C:\Windows\System32\WerSvc.dll
16:45:55.0673 3360 WerSvc - ok
16:45:55.0798 3360 WinDefend (4575aa12561c5648483403541d0d7f2b) C:\Program Files\Windows Defender\mpsvc.dll
16:45:55.0860 3360 WinDefend - ok
16:45:55.0860 3360 WinHttpAutoProxySvc - ok
16:45:56.0032 3360 Winmgmt (6b2a1d0e80110e3d04e6863c6e62fd8a) C:\Windows\system32\wbem\WMIsvc.dll
16:45:56.0079 3360 Winmgmt - ok
16:45:56.0235 3360 WinRM (7cfe68bdc065e55aa5e8421607037511) C:\Windows\system32\WsmSvc.dll
16:45:56.0407 3360 WinRM - ok
16:45:56.0548 3360 Wlansvc (c008405e4feeb069e30da1d823910234) C:\Windows\System32\wlansvc.dll
16:45:56.0579 3360 Wlansvc - ok
16:45:56.0657 3360 wlcrasvc (6067acef367e79914af628fa1e9b5330) C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
16:45:56.0657 3360 wlcrasvc - ok
16:45:56.0720 3360 wlidsvc (0a70f4022ec2e14c159efc4f69aa2477) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
16:45:56.0735 3360 wlidsvc - ok
16:45:56.0767 3360 WmiAcpi (2e7255d172df0b8283cdfb7b433b864e) C:\Windows\system32\drivers\wmiacpi.sys
16:45:56.0767 3360 WmiAcpi - ok
16:45:56.0829 3360 wmiApSrv (43be3875207dcb62a85c8c49970b66cc) C:\Windows\system32\wbem\WmiApSrv.exe
16:45:56.0845 3360 wmiApSrv - ok
16:45:56.0939 3360 WMPNetworkSvc (3978704576a121a9204f8cc49a301a9b) C:\Program Files\Windows Media Player\wmpnetwk.exe
16:45:56.0954 3360 WMPNetworkSvc - ok
16:45:56.0970 3360 WPCSvc (cfc5a04558f5070cee3e3a7809f3ff52) C:\Windows\System32\wpcsvc.dll
16:45:56.0985 3360 WPCSvc - ok
16:45:57.0032 3360 WPDBusEnum (801fbdb89d472b3c467eb112a0fc9246) C:\Windows\system32\wpdbusenum.dll
16:45:57.0032 3360 WPDBusEnum - ok
16:45:57.0267 3360 WPFFontCache_v0400 (dcf3e3edf5109ee8bc02fe6e1f045795) C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
16:45:57.0298 3360 WPFFontCache_v0400 - ok
16:45:57.0314 3360 ws2ifsl (e3a3cb253c0ec2494d4a61f5e43a389c) C:\Windows\system32\drivers\ws2ifsl.sys
16:45:57.0329 3360 ws2ifsl - ok
16:45:57.0360 3360 wscsvc (1ca6c40261ddc0425987980d0cd2aaab) C:\Windows\System32\wscsvc.dll
16:45:57.0360 3360 wscsvc - ok
16:45:57.0423 3360 WSDPrintDevice (4422ac5ed8d4c2f0db63e71d4c069dd7) C:\Windows\system32\DRIVERS\WSDPrint.sys
16:45:57.0423 3360 WSDPrintDevice - ok
16:45:57.0423 3360 WSearch - ok
16:45:57.0485 3360 wuauserv (6298277b73c77fa99106b271a7525163) C:\Windows\system32\wuaueng.dll
16:45:57.0564 3360 wuauserv - ok
16:45:57.0595 3360 WUDFRd (ac13cb789d93412106b0fb6c7eb2bcb6) C:\Windows\system32\DRIVERS\WUDFRd.sys
16:45:57.0595 3360 WUDFRd - ok
16:45:57.0626 3360 wudfsvc (575a4190d989f64732119e4114045a4f) C:\Windows\System32\WUDFSvc.dll
16:45:57.0626 3360 wudfsvc - ok
16:45:57.0657 3360 MBR (0x1B8) (5c616939100b85e558da92b899a0fc36) \Device\Harddisk0\DR0
16:45:57.0735 3360 \Device\Harddisk0\DR0 - ok
16:45:57.0735 3360 MBR (0x1B8) (8ff255184f078c9c04e6a2ce66117c5c) \Device\Harddisk1\DR1
16:45:57.0735 3360 \Device\Harddisk1\DR1 - ok
16:45:57.0798 3360 Boot (0x1200) (5e08fba8e993ee9cb3af9b688355e51a) \Device\Harddisk0\DR0\Partition0
16:45:57.0829 3360 \Device\Harddisk0\DR0\Partition0 - ok
16:45:57.0845 3360 Boot (0x1200) (1c6459f84aec28e34d47577551520aed) \Device\Harddisk0\DR0\Partition1
16:45:57.0954 3360 \Device\Harddisk0\DR0\Partition1 - ok
16:45:57.0954 3360 Boot (0x1200) (3858ab178ece6442047503c0cff01e58) \Device\Harddisk1\DR1\Partition0
16:45:57.0954 3360 \Device\Harddisk1\DR1\Partition0 - ok
16:45:57.0954 3360 ============================================================
16:45:57.0954 3360 Scan finished
16:45:57.0954 3360 ============================================================
16:45:57.0954 3536 Detected object count: 2
16:45:57.0954 3536 Actual detected object count: 2
16:46:42.0798 3536 Akamai ( HiddenFile.Multi.Generic ) - skipped by user
16:46:42.0798 3536 Akamai ( HiddenFile.Multi.Generic ) - User select action: Skip
16:46:42.0798 3536 sptd ( LockedFile.Multi.Generic ) - skipped by user
16:46:42.0798 3536 sptd ( LockedFile.Multi.Generic ) - User select action: Skip
16:46:56.0
Malwarebytes Anti-Malware 1.60.1.1000
www.malwarebytes.org
Version de la base de données: v2012.04.06.05
Windows Vista Service Pack 2 x86 NTFS (Mode sans échec/Réseau)
Internet Explorer 9.0.8112.16421
Nicolas :: HERMES [administrateur]
06/04/2012 16:23:06
mbam-log-2012-04-06 (16-23-06).txt
Type d'examen: Examen complet
Options d'examen activées: Mémoire | Démarrage | Registre | Système de fichiers | Heuristique/Extra | Heuristique/Shuriken | PUP | PUM
Options d'examen désactivées: P2P
Elément(s) analysé(s): 191989
Temps écoulé: 19 minute(s), 5 seconde(s) [abandonné]
Processus mémoire détecté(s): 0
(Aucun élément nuisible détecté)
Module(s) mémoire détecté(s): 0
(Aucun élément nuisible détecté)
Clé(s) du Registre détectée(s): 0
(Aucun élément nuisible détecté)
Valeur(s) du Registre détectée(s): 0
(Aucun élément nuisible détecté)
Elément(s) de données du Registre détecté(s): 0
(Aucun élément nuisible détecté)
Dossier(s) détecté(s): 0
(Aucun élément nuisible détecté)
Fichier(s) détecté(s): 4
C:\ProgramData\Esw77QG3yLx2uN.exe (Backdoor.Agent.RCGen) -> Mis en quarantaine et supprimé avec succès.
C:\ProgramData\OfJBmXXIQE.exe (Backdoor.Agent.RCGen) -> Mis en quarantaine et supprimé avec succès.
C:\Users\Nicolas\AppData\Local\Temp\m5k0GDlrTJqqKe.exe.tmp (Backdoor.Agent.RCGen) -> Mis en quarantaine et supprimé avec succès.
C:\Users\Nicolas\Desktop\RK_Quarantine\OfJBmXXIQE.exe.vir (Backdoor.Agent.RCGen) -> Mis en quarantaine et supprimé avec succès.
(fin)
J'ai lancé un TDSSKiller, ci-dessous le rapport:
16:45:09.0767 3100 TDSS rootkit removing tool 2.7.26.0 Apr 4 2012 19:52:02
16:45:10.0032 3100 ============================================================
16:45:10.0032 3100 Current date / time: 2012/04/06 16:45:10.0032
16:45:10.0032 3100 SystemInfo:
16:45:10.0032 3100
16:45:10.0032 3100 OS Version: 6.0.6002 ServicePack: 2.0
16:45:10.0032 3100 Product type: Workstation
16:45:10.0032 3100 ComputerName: HERMES
16:45:10.0032 3100 UserName: Nicolas
16:45:10.0032 3100 Windows directory: C:\Windows
16:45:10.0032 3100 System windows directory: C:\Windows
16:45:10.0032 3100 Processor architecture: Intel x86
16:45:10.0032 3100 Number of processors: 2
16:45:10.0032 3100 Page size: 0x1000
16:45:10.0032 3100 Boot type: Normal boot
16:45:10.0032 3100 ============================================================
16:45:11.0610 3100 Drive \Device\Harddisk0\DR0 - Size: 0xAEA8CDE000 (698.64 Gb), SectorSize: 0x200, Cylinders: 0x16441, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
16:45:11.0610 3100 Drive \Device\Harddisk1\DR1 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
16:45:11.0610 3100 \Device\Harddisk0\DR0:
16:45:11.0626 3100 MBR used
16:45:11.0626 3100 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x2C61AFF8
16:45:11.0626 3100 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x2C61B800, BlocksNum 0x2AF29800
16:45:11.0626 3100 \Device\Harddisk1\DR1:
16:45:11.0626 3100 MBR used
16:45:11.0626 3100 \Device\Harddisk1\DR1\Partition0: MBR, Type 0xC, StartLBA 0x3F, BlocksNum 0x3A384C02
16:45:11.0720 3100 Initialize success
16:45:11.0720 3100 ============================================================
16:45:21.0017 3360 ============================================================
16:45:21.0017 3360 Scan started
16:45:21.0017 3360 Mode: Manual;
16:45:21.0017 3360 ============================================================
16:45:23.0204 3360 ACPI (82b296ae1892fe3dbee00c9cf92f8ac7) C:\Windows\system32\drivers\acpi.sys
16:45:23.0251 3360 ACPI - ok
16:45:23.0345 3360 Adobe Version Cue CS3 (14c23516c990dcd6052152cf034dde40) C:\Program Files\Common Files\Adobe\Adobe Version Cue CS3\Server\bin\VersionCueCS3.exe
16:45:23.0360 3360 Adobe Version Cue CS3 - ok
16:45:23.0407 3360 adp94xx (04f0fcac69c7c71a3ac4eb97fafc8303) C:\Windows\system32\drivers\adp94xx.sys
16:45:23.0423 3360 adp94xx - ok
16:45:23.0470 3360 adpahci (60505e0041f7751bdbb80f88bf45c2ce) C:\Windows\system32\drivers\adpahci.sys
16:45:23.0470 3360 adpahci - ok
16:45:23.0485 3360 adpu160m (8a42779b02aec986eab64ecfc98f8bd7) C:\Windows\system32\drivers\adpu160m.sys
16:45:23.0485 3360 adpu160m - ok
16:45:23.0517 3360 adpu320 (241c9e37f8ce45ef51c3de27515ca4e5) C:\Windows\system32\drivers\adpu320.sys
16:45:23.0532 3360 adpu320 - ok
16:45:23.0579 3360 AeLookupSvc (9d1fda9e086ba64e3c93c9de32461bcf) C:\Windows\System32\aelupsvc.dll
16:45:23.0595 3360 AeLookupSvc - ok
16:45:23.0626 3360 AFD (3911b972b55fea0478476b2e777b29fa) C:\Windows\system32\drivers\afd.sys
16:45:23.0626 3360 AFD - ok
16:45:23.0657 3360 agp440 (13f9e33747e6b41a3ff305c37db0d360) C:\Windows\system32\drivers\agp440.sys
16:45:23.0657 3360 agp440 - ok
16:45:23.0673 3360 aic78xx (ae1fdf7bf7bb6c6a70f67699d880592a) C:\Windows\system32\drivers\djsvs.sys
16:45:23.0689 3360 aic78xx - ok
16:45:23.0798 3360 Akamai (1125c7d9fb8898015829c387c1bc87c7) c:\program files\common files\akamai/netsession_win_6c825ce.dll
16:45:23.0798 3360 Suspicious file (Hidden): c:\program files\common files\akamai/netsession_win_6c825ce.dll. md5: 1125c7d9fb8898015829c387c1bc87c7
16:45:23.0798 3360 Akamai ( HiddenFile.Multi.Generic ) - warning
16:45:23.0798 3360 Akamai - detected HiddenFile.Multi.Generic (1)
16:45:23.0829 3360 ALG (a1545b731579895d8cc44fc0481c1192) C:\Windows\System32\alg.exe
16:45:23.0829 3360 ALG - ok
16:45:23.0860 3360 aliide (9eaef5fc9b8e351afa7e78a6fae91f91) C:\Windows\system32\drivers\aliide.sys
16:45:23.0860 3360 aliide - ok
16:45:23.0939 3360 AMD External Events Utility (cde41d99db840ff9454fc981ebd0ec50) C:\Windows\system32\atiesrxx.exe
16:45:23.0939 3360 AMD External Events Utility - ok
16:45:23.0970 3360 amdagp (c47344bc706e5f0b9dce369516661578) C:\Windows\system32\drivers\amdagp.sys
16:45:23.0985 3360 amdagp - ok
16:45:24.0001 3360 amdide (9b78a39a4c173fdbc1321e0dd659b34c) C:\Windows\system32\drivers\amdide.sys
16:45:24.0001 3360 amdide - ok
16:45:24.0048 3360 AmdK7 (18f29b49ad23ecee3d2a826c725c8d48) C:\Windows\system32\drivers\amdk7.sys
16:45:24.0064 3360 AmdK7 - ok
16:45:24.0079 3360 AmdK8 (93ae7f7dd54ab986a6f1a1b37be7442d) C:\Windows\system32\drivers\amdk8.sys
16:45:24.0095 3360 AmdK8 - ok
16:45:24.0407 3360 amdkmdag (ffd082f1f1d4ff5c87f66df62486bcfa) C:\Windows\system32\DRIVERS\atikmdag.sys
16:45:25.0017 3360 amdkmdag - ok
16:45:25.0126 3360 amdkmdap (c541da5b72fa638469e8dc1e66079330) C:\Windows\system32\DRIVERS\atikmpag.sys
16:45:25.0142 3360 amdkmdap - ok
16:45:25.0251 3360 AntiVirSchedulerService (27c9a4e1ef31c7a64de8fbc0aa568503) C:\Program Files\Avira\AntiVir Desktop\sched.exe
16:45:25.0251 3360 AntiVirSchedulerService - ok
16:45:25.0267 3360 AntiVirService (e491888d529410d7bd8fbbad825795c8) C:\Program Files\Avira\AntiVir Desktop\avguard.exe
16:45:25.0282 3360 AntiVirService - ok
16:45:25.0376 3360 Appinfo (c6d704c7f0434dc791aac37cac4b6e14) C:\Windows\System32\appinfo.dll
16:45:25.0392 3360 Appinfo - ok
16:45:25.0501 3360 arc (5d2888182fb46632511acee92fdad522) C:\Windows\system32\drivers\arc.sys
16:45:25.0517 3360 arc - ok
16:45:25.0642 3360 arcsas (5e2a321bd7c8b3624e41fdec3e244945) C:\Windows\system32\drivers\arcsas.sys
16:45:25.0657 3360 arcsas - ok
16:45:25.0814 3360 AsyncMac (53b202abee6455406254444303e87be1) C:\Windows\system32\DRIVERS\asyncmac.sys
16:45:25.0845 3360 AsyncMac - ok
16:45:25.0954 3360 atapi (1f05b78ab91c9075565a9d8a4b880bc4) C:\Windows\system32\drivers\atapi.sys
16:45:25.0954 3360 atapi - ok
16:45:26.0173 3360 AtiHDAudioService (9f7ccf1d6faf646f71f029a30ded2dc7) C:\Windows\system32\drivers\AtihdLH3.sys
16:45:26.0173 3360 AtiHDAudioService - ok
16:45:27.0282 3360 atikmdag (ffd082f1f1d4ff5c87f66df62486bcfa) C:\Windows\system32\DRIVERS\atikmdag.sys
16:45:27.0314 3360 atikmdag - ok
16:45:27.0485 3360 atksgt (6e996cf8459a2594e0e9609d0e34d41f) C:\Windows\system32\DRIVERS\atksgt.sys
16:45:27.0532 3360 atksgt - ok
16:45:27.0595 3360 AudioEndpointBuilder (68e2a1a0407a66cf50da0300852424ab) C:\Windows\System32\Audiosrv.dll
16:45:27.0657 3360 AudioEndpointBuilder - ok
16:45:27.0689 3360 Audiosrv (68e2a1a0407a66cf50da0300852424ab) C:\Windows\System32\Audiosrv.dll
16:45:27.0689 3360 Audiosrv - ok
16:45:27.0735 3360 avgntflt (7713e4eb0276702faa08e52a6e23f2a6) C:\Windows\system32\DRIVERS\avgntflt.sys
16:45:27.0751 3360 avgntflt - ok
16:45:27.0814 3360 avipbb (13b02b9b969dde270cd7c351203dad3c) C:\Windows\system32\DRIVERS\avipbb.sys
16:45:27.0814 3360 avipbb - ok
16:45:27.0923 3360 avkmgr (271cfd1a989209b1964e24d969552bf7) C:\Windows\system32\DRIVERS\avkmgr.sys
16:45:27.0939 3360 avkmgr - ok
16:45:27.0970 3360 Beep (67e506b75bd5326a3ec7b70bd014dfb6) C:\Windows\system32\drivers\Beep.sys
16:45:27.0970 3360 Beep - ok
16:45:28.0001 3360 BFE (c789af0f724fda5852fb9a7d3a432381) C:\Windows\System32\bfe.dll
16:45:28.0032 3360 BFE - ok
16:45:28.0095 3360 BITS (93952506c6d67330367f7e7934b6a02f) C:\Windows\System32\qmgr.dll
16:45:28.0110 3360 BITS - ok
16:45:28.0126 3360 blbdrive (d4df28447741fd3d953526e33a617397) C:\Windows\system32\drivers\blbdrive.sys
16:45:28.0157 3360 blbdrive - ok
16:45:28.0220 3360 Bonjour Service (73686fe0b2e0469f89fd2075be724704) C:\Program Files\Bonjour\mDNSResponder.exe
16:45:28.0220 3360 Bonjour Service - ok
16:45:28.0329 3360 bowser (35f376253f687bde63976ccb3f2108ca) C:\Windows\system32\DRIVERS\bowser.sys
16:45:28.0345 3360 bowser - ok
16:45:28.0439 3360 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\drivers\brfiltlo.sys
16:45:28.0454 3360 BrFiltLo - ok
16:45:28.0532 3360 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\drivers\brfiltup.sys
16:45:28.0564 3360 BrFiltUp - ok
16:45:28.0657 3360 Browser (a3629a0c4226f9e9c72faaeebc3ad33c) C:\Windows\System32\browser.dll
16:45:28.0689 3360 Browser - ok
16:45:28.0751 3360 Brserid (b304e75cff293029eddf094246747113) C:\Windows\system32\drivers\brserid.sys
16:45:28.0798 3360 Brserid - ok
16:45:28.0845 3360 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\system32\drivers\brserwdm.sys
16:45:28.0845 3360 BrSerWdm - ok
16:45:28.0939 3360 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\system32\drivers\brusbmdm.sys
16:45:28.0954 3360 BrUsbMdm - ok
16:45:29.0032 3360 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\system32\drivers\brusbser.sys
16:45:29.0032 3360 BrUsbSer - ok
16:45:29.0095 3360 BTHMODEM (ad07c1ec6665b8b35741ab91200c6b68) C:\Windows\system32\drivers\bthmodem.sys
16:45:29.0110 3360 BTHMODEM - ok
16:45:29.0173 3360 cdfs (7add03e75beb9e6dd102c3081d29840a) C:\Windows\system32\DRIVERS\cdfs.sys
16:45:29.0189 3360 cdfs - ok
16:45:29.0282 3360 cdrom (6b4bffb9becd728097024276430db314) C:\Windows\system32\DRIVERS\cdrom.sys
16:45:29.0282 3360 cdrom - ok
16:45:29.0376 3360 CertPropSvc (312ec3e37a0a1f2006534913e37b4423) C:\Windows\System32\certprop.dll
16:45:29.0376 3360 CertPropSvc - ok
16:45:29.0454 3360 circlass (e5d4133f37219dbcfe102bc61072589d) C:\Windows\system32\drivers\circlass.sys
16:45:29.0485 3360 circlass - ok
16:45:29.0564 3360 CLFS (d7659d3b5b92c31e84e53c1431f35132) C:\Windows\system32\CLFS.sys
16:45:29.0610 3360 CLFS - ok
16:45:29.0689 3360 clr_optimization_v2.0.50727_32 (8ee772032e2fe80a924f3b8dd5082194) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
16:45:29.0735 3360 clr_optimization_v2.0.50727_32 - ok
16:45:29.0829 3360 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
16:45:29.0939 3360 clr_optimization_v4.0.30319_32 - ok
16:45:30.0032 3360 cmdide (0ca25e686a4928484e9fdabd168ab629) C:\Windows\system32\drivers\cmdide.sys
16:45:30.0048 3360 cmdide - ok
16:45:30.0142 3360 Compbatt (6afef0b60fa25de07c0968983ee4f60a) C:\Windows\system32\drivers\compbatt.sys
16:45:30.0157 3360 Compbatt - ok
16:45:30.0267 3360 COMSysApp - ok
16:45:30.0376 3360 cpuz135 (c2eb4539a4f6ab6edd01bdc191619975) C:\Windows\system32\drivers\cpuz135_x32.sys
16:45:30.0392 3360 cpuz135 - ok
16:45:30.0439 3360 crcdisk (741e9dff4f42d2d8477d0fc1dc0df871) C:\Windows\system32\drivers\crcdisk.sys
16:45:30.0454 3360 crcdisk - ok
16:45:30.0532 3360 Crusoe (1f07becdca750766a96cda811ba86410) C:\Windows\system32\drivers\crusoe.sys
16:45:30.0564 3360 Crusoe - ok
16:45:30.0626 3360 CryptSvc (fb27772beaf8e1d28ccd825c09da939b) C:\Windows\system32\cryptsvc.dll
16:45:30.0657 3360 CryptSvc - ok
16:45:30.0814 3360 DcomLaunch (3b5b4d53fec14f7476ca29a20cc31ac9) C:\Windows\system32\rpcss.dll
16:45:30.0829 3360 DcomLaunch - ok
16:45:30.0923 3360 DfsC (622c41a07ca7e6dd91770f50d532cb6c) C:\Windows\system32\Drivers\dfsc.sys
16:45:30.0939 3360 DfsC - ok
16:45:31.0282 3360 DFSR (2cc3dcfb533a1035b13dcab6160ab38b) C:\Windows\system32\DFSR.exe
16:45:31.0532 3360 DFSR - ok
16:45:31.0657 3360 Dhcp (9028559c132146fb75eb7acf384b086a) C:\Windows\System32\dhcpcsvc.dll
16:45:31.0673 3360 Dhcp - ok
16:45:31.0829 3360 disk (5d4aefc3386920236a548271f8f1af6a) C:\Windows\system32\drivers\disk.sys
16:45:31.0860 3360 disk - ok
16:45:31.0892 3360 Dnscache (57d762f6f5974af0da2be88a3349baaa) C:\Windows\System32\dnsrslvr.dll
16:45:31.0892 3360 Dnscache - ok
16:45:31.0954 3360 dot3svc (324fd74686b1ef5e7c19a8af49e748f6) C:\Windows\System32\dot3svc.dll
16:45:31.0970 3360 dot3svc - ok
16:45:32.0017 3360 DPS (a622e888f8aa2f6b49e9bc466f0e5def) C:\Windows\system32\dps.dll
16:45:32.0017 3360 DPS - ok
16:45:32.0142 3360 driverhardwarev2 (0f1189883690949ba7a9f68339587e51) C:\Program Files\ma-config.com\Drivers\driverhardwarev2.sys
16:45:32.0157 3360 driverhardwarev2 - ok
16:45:32.0220 3360 drmkaud (97fef831ab90bee128c9af390e243f80) C:\Windows\system32\drivers\drmkaud.sys
16:45:32.0220 3360 drmkaud - ok
16:45:32.0282 3360 DXGKrnl (c68ac676b0ef30cfbb1080adce49eb1f) C:\Windows\System32\drivers\dxgkrnl.sys
16:45:32.0282 3360 DXGKrnl - ok
16:45:32.0329 3360 E1G60 (5425f74ac0c1dbd96a1e04f17d63f94c) C:\Windows\system32\DRIVERS\E1G60I32.sys
16:45:32.0345 3360 E1G60 - ok
16:45:32.0392 3360 EapHost (c0b95e40d85cd807d614e264248a45b9) C:\Windows\System32\eapsvc.dll
16:45:32.0423 3360 EapHost - ok
16:45:32.0579 3360 Ecache (7f64ea048dcfac7acf8b4d7b4e6fe371) C:\Windows\system32\drivers\ecache.sys
16:45:32.0595 3360 Ecache - ok
16:45:32.0657 3360 ehRecvr (9be3744d295a7701eb425332014f0797) C:\Windows\ehome\ehRecvr.exe
16:45:32.0751 3360 ehRecvr - ok
16:45:32.0767 3360 ehSched (ad1870c8e5d6dd340c829e6074bf3c3f) C:\Windows\ehome\ehsched.exe
16:45:32.0767 3360 ehSched - ok
16:45:32.0829 3360 ehstart (c27c4ee8926e74aa72efcab24c5242c3) C:\Windows\ehome\ehstart.dll
16:45:32.0829 3360 ehstart - ok
16:45:32.0939 3360 elxstor (23b62471681a124889978f6295b3f4c6) C:\Windows\system32\drivers\elxstor.sys
16:45:32.0985 3360 elxstor - ok
16:45:33.0079 3360 EMDMgmt (4e6b23dfc917ea39306b529b773950f4) C:\Windows\system32\emdmgmt.dll
16:45:33.0110 3360 EMDMgmt - ok
16:45:33.0126 3360 ErrDev (3db974f3935483555d7148663f726c61) C:\Windows\system32\drivers\errdev.sys
16:45:33.0126 3360 ErrDev - ok
16:45:33.0173 3360 EventSystem (67058c46504bc12d821f38cf99b7b28f) C:\Windows\system32\es.dll
16:45:33.0173 3360 EventSystem - ok
16:45:33.0204 3360 exfat (22b408651f9123527bcee54b4f6c5cae) C:\Windows\system32\drivers\exfat.sys
16:45:33.0220 3360 exfat - ok
16:45:33.0235 3360 fastfat (1e9b9a70d332103c52995e957dc09ef8) C:\Windows\system32\drivers\fastfat.sys
16:45:33.0251 3360 fastfat - ok
16:45:33.0282 3360 fdc (afe1e8b9782a0dd7fb46bbd88e43f89a) C:\Windows\system32\DRIVERS\fdc.sys
16:45:33.0282 3360 fdc - ok
16:45:33.0345 3360 fdPHost (6629b5f0e98151f4afdd87567ea32ba3) C:\Windows\system32\fdPHost.dll
16:45:33.0345 3360 fdPHost - ok
16:45:33.0423 3360 FDResPub (89ed56dce8e47af40892778a5bd31fd2) C:\Windows\system32\fdrespub.dll
16:45:33.0423 3360 FDResPub - ok
16:45:33.0439 3360 FileInfo (a8c0139a884861e3aae9cfe73b208a9f) C:\Windows\system32\drivers\fileinfo.sys
16:45:33.0439 3360 FileInfo - ok
16:45:33.0470 3360 Filetrace (0ae429a696aecbc5970e3cf2c62635ae) C:\Windows\system32\drivers\filetrace.sys
16:45:33.0470 3360 Filetrace - ok
16:45:33.0532 3360 FLEXnet Licensing Service (227846995afeefa70d328bf5334a86a5) C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
16:45:33.0532 3360 FLEXnet Licensing Service - ok
16:45:33.0610 3360 flpydisk (85b7cf99d532820495d68d747fda9ebd) C:\Windows\system32\DRIVERS\flpydisk.sys
16:45:33.0610 3360 flpydisk - ok
16:45:33.0673 3360 FltMgr (01334f9ea68e6877c4ef05d3ea8abb05) C:\Windows\system32\drivers\fltmgr.sys
16:45:33.0673 3360 FltMgr - ok
16:45:33.0720 3360 FontCache (8ce364388c8eca59b14b539179276d44) C:\Windows\system32\FntCache.dll
16:45:33.0751 3360 FontCache - ok
16:45:33.0798 3360 FontCache3.0.0.0 (c7fbdd1ed42f82bfa35167a5c9803ea3) C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
16:45:33.0814 3360 FontCache3.0.0.0 - ok
16:45:33.0923 3360 Fs_Rec (65ea8b77b5851854f0c55c43fa51a198) C:\Windows\system32\drivers\Fs_Rec.sys
16:45:33.0923 3360 Fs_Rec - ok
16:45:34.0017 3360 gagp30kx (34582a6e6573d54a07ece5fe24a126b5) C:\Windows\system32\drivers\gagp30kx.sys
16:45:34.0048 3360 gagp30kx - ok
16:45:34.0064 3360 GMSIPCI - ok
16:45:34.0251 3360 gpsvc (cd5d0aeee35dfd4e986a5aa1500a6e66) C:\Windows\System32\gpsvc.dll
16:45:34.0329 3360 gpsvc - ok
16:45:34.0485 3360 gusvc (c1b577b2169900f4cf7190c39f085794) C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
16:45:34.0485 3360 gusvc - ok
16:45:34.0548 3360 HdAudAddService (3f90e001369a07243763bd5a523d8722) C:\Windows\system32\drivers\HdAudio.sys
16:45:34.0564 3360 HdAudAddService - ok
16:45:34.0610 3360 HDAudBus (062452b7ffd68c8c042a6261fe8dff4a) C:\Windows\system32\DRIVERS\HDAudBus.sys
16:45:34.0642 3360 HDAudBus - ok
16:45:34.0657 3360 HidBth (1338520e78d90154ed6be8f84de5fceb) C:\Windows\system32\drivers\hidbth.sys
16:45:34.0673 3360 HidBth - ok
16:45:34.0689 3360 HidIr (ff3160c3a2445128c5a6d9b076da519e) C:\Windows\system32\drivers\hidir.sys
16:45:34.0689 3360 HidIr - ok
16:45:34.0720 3360 hidserv (84067081f3318162797385e11a8f0582) C:\Windows\system32\hidserv.dll
16:45:34.0720 3360 hidserv - ok
16:45:34.0751 3360 HidUsb (cca4b519b17e23a00b826c55716809cc) C:\Windows\system32\DRIVERS\hidusb.sys
16:45:34.0751 3360 HidUsb - ok
16:45:34.0782 3360 hkmsvc (d8ad255b37da92434c26e4876db7d418) C:\Windows\system32\kmsvc.dll
16:45:34.0798 3360 hkmsvc - ok
16:45:34.0814 3360 HpCISSs (16ee7b23a009e00d835cdb79574a91a6) C:\Windows\system32\drivers\hpcisss.sys
16:45:34.0814 3360 HpCISSs - ok
16:45:34.0939 3360 HPSLPSVC (14229263aa19c704e0d6d2e7404a8455) C:\Program Files\HP\Digital Imaging\bin\HPSLPSVC32.DLL
16:45:34.0954 3360 HPSLPSVC - ok
16:45:34.0985 3360 HTTP (f870aa3e254628ebeafe754108d664de) C:\Windows\system32\drivers\HTTP.sys
16:45:35.0001 3360 HTTP - ok
16:45:35.0017 3360 i2omp (c6b032d69650985468160fc9937cf5b4) C:\Windows\system32\drivers\i2omp.sys
16:45:35.0017 3360 i2omp - ok
16:45:35.0048 3360 i8042prt (22d56c8184586b7a1f6fa60be5f5a2bd) C:\Windows\system32\DRIVERS\i8042prt.sys
16:45:35.0064 3360 i8042prt - ok
16:45:35.0079 3360 iaStorV (54155ea1b0df185878e0fc9ec3ac3a14) C:\Windows\system32\drivers\iastorv.sys
16:45:35.0095 3360 iaStorV - ok
16:45:35.0251 3360 idsvc (98477b08e61945f974ed9fdc4cb6bdab) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
16:45:35.0314 3360 idsvc - ok
16:45:35.0345 3360 iirsp (2d077bf86e843f901d8db709c95b49a5) C:\Windows\system32\drivers\iirsp.sys
16:45:35.0360 3360 iirsp - ok
16:45:35.0501 3360 IKEEXT (9908d8a397b76cd8d31d0d383c5773c9) C:\Windows\System32\ikeext.dll
16:45:35.0564 3360 IKEEXT - ok
16:45:35.0704 3360 IntcAzAudAddService (7374c8a1e7efbf15a2c2a681f3ef0c69) C:\Windows\system32\drivers\RTKVHDA.sys
16:45:35.0720 3360 IntcAzAudAddService - ok
16:45:35.0814 3360 intelide (83aa759f3189e6370c30de5dc5590718) C:\Windows\system32\drivers\intelide.sys
16:45:35.0845 3360 intelide - ok
16:45:35.0923 3360 intelppm (224191001e78c89dfa78924c3ea595ff) C:\Windows\system32\DRIVERS\intelppm.sys
16:45:35.0939 3360 intelppm - ok
16:45:36.0001 3360 IPBusEnum (9ac218c6e6105477484c6fdbe7d409a4) C:\Windows\system32\ipbusenum.dll
16:45:36.0017 3360 IPBusEnum - ok
16:45:36.0095 3360 IpFilterDriver (62c265c38769b864cb25b4bcf62df6c3) C:\Windows\system32\DRIVERS\ipfltdrv.sys
16:45:36.0110 3360 IpFilterDriver - ok
16:45:36.0220 3360 iphlpsvc (1998bd97f950680bb55f55a7244679c2) C:\Windows\System32\iphlpsvc.dll
16:45:36.0251 3360 iphlpsvc - ok
16:45:36.0298 3360 IpInIp - ok
16:45:36.0501 3360 IPMIDRV (b25aaf203552b7b3491139d582b39ad1) C:\Windows\system32\drivers\ipmidrv.sys
16:45:36.0532 3360 IPMIDRV - ok
16:45:36.0673 3360 IPNAT (8793643a67b42cec66490b2a0cf92d68) C:\Windows\system32\DRIVERS\ipnat.sys
16:45:36.0673 3360 IPNAT - ok
16:45:36.0704 3360 IRENUM (109c0dfb82c3632fbd11949b73aeeac9) C:\Windows\system32\drivers\irenum.sys
16:45:36.0704 3360 IRENUM - ok
16:45:36.0720 3360 isapnp (6c70698a3e5c4376c6ab5c7c17fb0614) C:\Windows\system32\drivers\isapnp.sys
16:45:36.0735 3360 isapnp - ok
16:45:36.0767 3360 iScsiPrt (232fa340531d940aac623b121a595034) C:\Windows\system32\DRIVERS\msiscsi.sys
16:45:36.0767 3360 iScsiPrt - ok
16:45:36.0814 3360 iteatapi (bced60d16156e428f8df8cf27b0df150) C:\Windows\system32\drivers\iteatapi.sys
16:45:36.0829 3360 iteatapi - ok
16:45:36.0860 3360 iteraid (06fa654504a498c30adca8bec4e87e7e) C:\Windows\system32\drivers\iteraid.sys
16:45:36.0876 3360 iteraid - ok
16:45:36.0939 3360 kbdclass (37605e0a8cf00cbba538e753e4344c6e) C:\Windows\system32\DRIVERS\kbdclass.sys
16:45:36.0939 3360 kbdclass - ok
16:45:36.0985 3360 kbdhid (ede59ec70e25c24581add1fbec7325f7) C:\Windows\system32\DRIVERS\kbdhid.sys
16:45:36.0985 3360 kbdhid - ok
16:45:37.0017 3360 KeyIso (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
16:45:37.0017 3360 KeyIso - ok
16:45:37.0189 3360 KSecDD (2b2f1638466e8cb091400c9019cc730e) C:\Windows\system32\Drivers\ksecdd.sys
16:45:37.0204 3360 KSecDD - ok
16:45:37.0220 3360 KtmRm (8078f8f8f7a79e2e6b494523a828c585) C:\Windows\system32\msdtckrm.dll
16:45:37.0235 3360 KtmRm - ok
16:45:37.0267 3360 LanmanServer (1bf5eebfd518dd7298434d8c862f825d) C:\Windows\system32\srvsvc.dll
16:45:37.0267 3360 LanmanServer - ok
16:45:37.0298 3360 LanmanWorkstation (1db69705b695b987082c8baec0c6b34f) C:\Windows\System32\wkssvc.dll
16:45:37.0298 3360 LanmanWorkstation - ok
16:45:37.0423 3360 LBTServ (9582504591a9f405f7505fefb4f64123) C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe
16:45:37.0454 3360 LBTServ - ok
16:45:37.0501 3360 LHidFilt (05d6b85ecc3204931923ab7940b9596e) C:\Windows\system32\DRIVERS\LHidFilt.Sys
16:45:37.0501 3360 LHidFilt - ok
16:45:37.0548 3360 lirsgt (975b6cf65f44e95883f3855bae8cecaf) C:\Windows\system32\DRIVERS\lirsgt.sys
16:45:37.0548 3360 lirsgt - ok
16:45:37.0673 3360 lltdio (d1c5883087a0c3f1344d9d55a44901f6) C:\Windows\system32\DRIVERS\lltdio.sys
16:45:37.0673 3360 lltdio - ok
16:45:37.0704 3360 lltdsvc (2d5a428872f1442631d0959a34abff63) C:\Windows\System32\lltdsvc.dll
16:45:37.0720 3360 lltdsvc - ok
16:45:37.0751 3360 lmhosts (35d40113e4a5b961b6ce5c5857702518) C:\Windows\System32\lmhsvc.dll
16:45:37.0767 3360 lmhosts - ok
16:45:37.0876 3360 LMouFilt (053dbcc1082fdf74ab145a71917a6556) C:\Windows\system32\DRIVERS\LMouFilt.Sys
16:45:37.0876 3360 LMouFilt - ok
16:45:37.0985 3360 LSI_FC (c7e15e82879bf3235b559563d4185365) C:\Windows\system32\drivers\lsi_fc.sys
16:45:38.0001 3360 LSI_FC - ok
16:45:38.0079 3360 LSI_SAS (ee01ebae8c9bf0fa072e0ff68718920a) C:\Windows\system32\drivers\lsi_sas.sys
16:45:38.0110 3360 LSI_SAS - ok
16:45:38.0220 3360 LSI_SCSI (912a04696e9ca30146a62afa1463dd5c) C:\Windows\system32\drivers\lsi_scsi.sys
16:45:38.0235 3360 LSI_SCSI - ok
16:45:38.0517 3360 luafv (8f5c7426567798e62a3b3614965d62cc) C:\Windows\system32\drivers\luafv.sys
16:45:38.0595 3360 luafv - ok
16:45:39.0001 3360 LVRS (37072ec9299e825f4335cc554b6fac6a) C:\Windows\system32\DRIVERS\lvrs.sys
16:45:39.0017 3360 LVRS - ok
16:45:39.0892 3360 LVUVC (a240e42a7402e927a71b6e8aa4629b13) C:\Windows\system32\DRIVERS\lvuvc.sys
16:45:39.0923 3360 LVUVC - ok
16:45:40.0032 3360 maconfservice (dda57f57ec79197b64e9caa5308e2621) C:\Program Files\ma-config.com\maconfservice.exe
16:45:40.0048 3360 maconfservice - ok
16:45:40.0204 3360 Mcx2Svc (aef9babb8a506bc4ce0451a64aaded46) C:\Windows\system32\Mcx2Svc.dll
16:45:40.0220 3360 Mcx2Svc - ok
16:45:40.0314 3360 MDM (11f714f85530a2bd134074dc30e99fca) C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
16:45:40.0314 3360 MDM - ok
16:45:40.0376 3360 megasas (0001ce609d66632fa17b84705f658879) C:\Windows\system32\drivers\megasas.sys
16:45:40.0376 3360 megasas - ok
16:45:40.0407 3360 MegaSR (c252f32cd9a49dbfc25ecf26ebd51a99) C:\Windows\system32\drivers\megasr.sys
16:45:40.0439 3360 MegaSR - ok
16:45:40.0548 3360 Microsoft SharePoint Workspace Audit Service - ok
16:45:40.0642 3360 MMCSS (1076ffcffaae8385fd62dfcb25ac4708) C:\Windows\system32\mmcss.dll
16:45:40.0657 3360 MMCSS - ok
16:45:40.0751 3360 Modem (e13b5ea0f51ba5b1512ec671393d09ba) C:\Windows\system32\drivers\modem.sys
16:45:40.0782 3360 Modem - ok
16:45:40.0876 3360 monitor (0a9bb33b56e294f686abb7c1e4e2d8a8) C:\Windows\system32\DRIVERS\monitor.sys
16:45:40.0892 3360 monitor - ok
16:45:41.0064 3360 mouclass (5bf6a1326a335c5298477754a506d263) C:\Windows\system32\DRIVERS\mouclass.sys
16:45:41.0095 3360 mouclass - ok
16:45:41.0173 3360 mouhid (93b8d4869e12cfbe663915502900876f) C:\Windows\system32\DRIVERS\mouhid.sys
16:45:41.0189 3360 mouhid - ok
16:45:41.0314 3360 MountMgr (bdafc88aa6b92f7842416ea6a48e1600) C:\Windows\system32\drivers\mountmgr.sys
16:45:41.0329 3360 MountMgr - ok
16:45:41.0485 3360 mpio (511d011289755dd9f9a7579fb0b064e6) C:\Windows\system32\drivers\mpio.sys
16:45:41.0485 3360 mpio - ok
16:45:41.0595 3360 mpsdrv (22241feba9b2defa669c8cb0a8dd7d2e) C:\Windows\system32\drivers\mpsdrv.sys
16:45:41.0610 3360 mpsdrv - ok
16:45:41.0845 3360 MpsSvc (5de62c6e9108f14f6794060a9bdecaec) C:\Windows\system32\mpssvc.dll
16:45:41.0923 3360 MpsSvc - ok
16:45:42.0064 3360 Mraid35x (4fbbb70d30fd20ec51f80061703b001e) C:\Windows\system32\drivers\mraid35x.sys
16:45:42.0064 3360 Mraid35x - ok
16:45:42.0157 3360 MRxDAV (82cea0395524aacfeb58ba1448e8325c) C:\Windows\system32\drivers\mrxdav.sys
16:45:42.0189 3360 MRxDAV - ok
16:45:42.0314 3360 mrxsmb (1e94971c4b446ab2290deb71d01cf0c2) C:\Windows\system32\DRIVERS\mrxsmb.sys
16:45:42.0329 3360 mrxsmb - ok
16:45:42.0517 3360 mrxsmb10 (4fccb34d793b116423209c0f8b7a3b03) C:\Windows\system32\DRIVERS\mrxsmb10.sys
16:45:42.0564 3360 mrxsmb10 - ok
16:45:42.0673 3360 mrxsmb20 (c3cb1b40ad4a0124d617a1199b0b9d7c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
16:45:42.0704 3360 mrxsmb20 - ok
16:45:42.0814 3360 msahci (28023e86f17001f7cd9b15a5bc9ae07d) C:\Windows\system32\drivers\msahci.sys
16:45:42.0845 3360 msahci - ok
16:45:42.0939 3360 msdsm (4468b0f385a86ecddaf8d3ca662ec0e7) C:\Windows\system32\drivers\msdsm.sys
16:45:42.0954 3360 msdsm - ok
16:45:43.0017 3360 MSDTC (fd7520cc3a80c5fc8c48852bb24c6ded) C:\Windows\System32\msdtc.exe
16:45:43.0048 3360 MSDTC - ok
16:45:43.0126 3360 Msfs (a9927f4a46b816c92f461acb90cf8515) C:\Windows\system32\drivers\Msfs.sys
16:45:43.0126 3360 Msfs - ok
16:45:43.0189 3360 msisadrv (0f400e306f385c56317357d6dea56f62) C:\Windows\system32\drivers\msisadrv.sys
16:45:43.0204 3360 msisadrv - ok
16:45:43.0251 3360 MSiSCSI (85466c0757a23d9a9aecdc0755203cb2) C:\Windows\system32\iscsiexe.dll
16:45:43.0282 3360 MSiSCSI - ok
16:45:43.0314 3360 msiserver - ok
16:45:43.0392 3360 MSKSSRV (d8c63d34d9c9e56c059e24ec7185cc07) C:\Windows\system32\drivers\MSKSSRV.sys
16:45:43.0423 3360 MSKSSRV - ok
16:45:43.0517 3360 MSPCLOCK (1d373c90d62ddb641d50e55b9e78d65e) C:\Windows\system32\drivers\MSPCLOCK.sys
16:45:43.0532 3360 MSPCLOCK - ok
16:45:43.0642 3360 MSPQM (b572da05bf4e098d4bba3a4734fb505b) C:\Windows\system32\drivers\MSPQM.sys
16:45:43.0657 3360 MSPQM - ok
16:45:43.0720 3360 MsRPC (b49456d70555de905c311bcda6ec6adb) C:\Windows\system32\drivers\MsRPC.sys
16:45:43.0751 3360 MsRPC - ok
16:45:43.0829 3360 mssmbios (e384487cb84be41d09711c30ca79646c) C:\Windows\system32\DRIVERS\mssmbios.sys
16:45:43.0829 3360 mssmbios - ok
16:45:43.0907 3360 MSTEE (7199c1eec1e4993caf96b8c0a26bd58a) C:\Windows\system32\drivers\MSTEE.sys
16:45:43.0923 3360 MSTEE - ok
16:45:43.0985 3360 Mup (6a57b5733d4cb702c8ea4542e836b96c) C:\Windows\system32\Drivers\mup.sys
16:45:44.0001 3360 Mup - ok
16:45:44.0095 3360 mv61xx (a4a61d30097c8adaad648ebe204d61ef) C:\Windows\system32\DRIVERS\mv61xx.sys
16:45:44.0142 3360 mv61xx - ok
16:45:44.0220 3360 napagent (e4eaf0c5c1b41b5c83386cf212ca9584) C:\Windows\system32\qagentRT.dll
16:45:44.0235 3360 napagent - ok
16:45:44.0345 3360 NativeWifiP (85c44fdff9cf7e72a40dcb7ec06a4416) C:\Windows\system32\DRIVERS\nwifi.sys
16:45:44.0376 3360 NativeWifiP - ok
16:45:44.0532 3360 NDIS (1357274d1883f68300aeadd15d7bbb42) C:\Windows\system32\drivers\ndis.sys
16:45:44.0579 3360 NDIS - ok
16:45:44.0626 3360 NdisTapi (0e186e90404980569fb449ba7519ae61) C:\Windows\system32\DRIVERS\ndistapi.sys
16:45:44.0626 3360 NdisTapi - ok
16:45:44.0689 3360 Ndisuio (d6973aa34c4d5d76c0430b181c3cd389) C:\Windows\system32\DRIVERS\ndisuio.sys
16:45:44.0689 3360 Ndisuio - ok
16:45:44.0814 3360 NdisWan (818f648618ae34f729fdb47ec68345c3) C:\Windows\system32\DRIVERS\ndiswan.sys
16:45:44.0829 3360 NdisWan - ok
16:45:44.0860 3360 NDProxy (71dab552b41936358f3b541ae5997fb3) C:\Windows\system32\drivers\NDProxy.sys
16:45:44.0860 3360 NDProxy - ok
16:45:44.0907 3360 Net Driver HPZ12 (2969d26eee289be7422aa46fc55f4e38) C:\Windows\system32\HPZinw12.dll
16:45:44.0923 3360 Net Driver HPZ12 - ok
16:45:44.0954 3360 NetBIOS (bcd093a5a6777cf626434568dc7dba78) C:\Windows\system32\DRIVERS\netbios.sys
16:45:44.0970 3360 NetBIOS - ok
16:45:45.0017 3360 netbt (ecd64230a59cbd93c85f1cd1cab9f3f6) C:\Windows\system32\DRIVERS\netbt.sys
16:45:45.0048 3360 netbt - ok
16:45:45.0126 3360 Netlogon (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
16:45:45.0126 3360 Netlogon - ok
16:45:45.0189 3360 Netman (c8052711daecc48b982434c5116ca401) C:\Windows\System32\netman.dll
16:45:45.0204 3360 Netman - ok
16:45:45.0251 3360 netprofm (2ef3bbe22e5a5acd1428ee387a0d0172) C:\Windows\System32\netprofm.dll
16:45:45.0251 3360 netprofm - ok
16:45:45.0345 3360 NetTcpPortSharing (d6c4e4a39a36029ac0813d476fbd0248) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
16:45:45.0345 3360 NetTcpPortSharing - ok
16:45:45.0392 3360 nfrd960 (2e7fb731d4790a1bc6270accefacb36e) C:\Windows\system32\drivers\nfrd960.sys
16:45:45.0423 3360 nfrd960 - ok
16:45:45.0454 3360 NlaSvc (2997b15415f9bbe05b5a4c1c85e0c6a2) C:\Windows\System32\nlasvc.dll
16:45:45.0454 3360 NlaSvc - ok
16:45:45.0548 3360 Npfs (d36f239d7cce1931598e8fb90a0dbc26) C:\Windows\system32\drivers\Npfs.sys
16:45:45.0548 3360 Npfs - ok
16:45:45.0642 3360 nsi (8bb86f0c7eea2bded6fe095d0b4ca9bd) C:\Windows\system32\nsisvc.dll
16:45:45.0657 3360 nsi - ok
16:45:45.0704 3360 nsiproxy (609773e344a97410ce4ebf74a8914fcf) C:\Windows\system32\drivers\nsiproxy.sys
16:45:45.0704 3360 nsiproxy - ok
16:45:45.0782 3360 Ntfs (6a4a98cee84cf9e99564510dda4baa47) C:\Windows\system32\drivers\Ntfs.sys
16:45:45.0845 3360 Ntfs - ok
16:45:45.0939 3360 ntrigdigi (e875c093aec0c978a90f30c9e0dfbb72) C:\Windows\system32\drivers\ntrigdigi.sys
16:45:45.0970 3360 ntrigdigi - ok
16:45:46.0126 3360 Null (c5dbbcda07d780bda9b685df333bb41e) C:\Windows\system32\drivers\Null.sys
16:45:46.0142 3360 Null - ok
16:45:46.0360 3360 nvraid (2edf9e7751554b42cbb60116de727101) C:\Windows\system32\drivers\nvraid.sys
16:45:46.0392 3360 nvraid - ok
16:45:46.0470 3360 nvstor (abed0c09758d1d97db0042dbb2688177) C:\Windows\system32\drivers\nvstor.sys
16:45:46.0485 3360 nvstor - ok
16:45:46.0673 3360 nv_agp (18bbdf913916b71bd54575bdb6eeac0b) C:\Windows\system32\drivers\nv_agp.sys
16:45:46.0689 3360 nv_agp - ok
16:45:46.0767 3360 NwlnkFlt - ok
16:45:46.0845 3360 NwlnkFwd - ok
16:45:47.0001 3360 ohci1394 (be32da025a0be1878f0ee8d6d9386cd5) C:\Windows\system32\drivers\ohci1394.sys
16:45:47.0032 3360 ohci1394 - ok
16:45:47.0251 3360 ose (9d10f99a6712e28f8acd5641e3a7ea6b) C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
16:45:47.0314 3360 ose - ok
16:45:48.0235 3360 osppsvc (358a9cca612c68eb2f07ddad4ce1d8d7) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
16:45:48.0798 3360 osppsvc - ok
16:45:49.0110 3360 p2pimsvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
16:45:49.0251 3360 p2pimsvc - ok
16:45:49.0345 3360 p2psvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
16:45:49.0345 3360 p2psvc - ok
16:45:49.0501 3360 Parport (8a79fdf04a73428597e2caf9d0d67850) C:\Windows\system32\DRIVERS\parport.sys
16:45:49.0517 3360 Parport - ok
16:45:49.0564 3360 partmgr (57389fa59a36d96b3eb09d0cb91e9cdc) C:\Windows\system32\drivers\partmgr.sys
16:45:49.0595 3360 partmgr - ok
16:45:49.0657 3360 Parvdm (6c580025c81caf3ae9e3617c22cad00e) C:\Windows\system32\DRIVERS\parvdm.sys
16:45:49.0704 3360 Parvdm - ok
16:45:49.0798 3360 PcaSvc (c6276ad11f4bb49b58aa1ed88537f14a) C:\Windows\System32\pcasvc.dll
16:45:49.0814 3360 PcaSvc - ok
16:45:49.0860 3360 pci (941dc1d19e7e8620f40bbc206981efdb) C:\Windows\system32\drivers\pci.sys
16:45:49.0860 3360 pci - ok
16:45:49.0939 3360 pciide (1636d43f10416aeb483bc6001097b26c) C:\Windows\system32\drivers\pciide.sys
16:45:49.0939 3360 pciide - ok
16:45:49.0970 3360 pcmcia (e6f3fb1b86aa519e7698ad05e58b04e5) C:\Windows\system32\drivers\pcmcia.sys
16:45:49.0985 3360 pcmcia - ok
16:45:50.0032 3360 PEAUTH (6349f6ed9c623b44b52ea3c63c831a92) C:\Windows\system32\drivers\peauth.sys
16:45:50.0079 3360 PEAUTH - ok
16:45:50.0189 3360 pla (b1689df169143f57053f795390c99db3) C:\Windows\system32\pla.dll
16:45:50.0235 3360 pla - ok
16:45:50.0314 3360 PlugPlay (c5e7f8a996ec0a82d508fd9064a5569e) C:\Windows\system32\umpnpmgr.dll
16:45:50.0345 3360 PlugPlay - ok
16:45:50.0423 3360 Pml Driver HPZ12 (bafc9706bdf425a02b66468ab2605c59) C:\Windows\system32\HPZipm12.dll
16:45:50.0423 3360 Pml Driver HPZ12 - ok
16:45:50.0485 3360 PnkBstrA (831883b107684301f48ace752c963984) C:\Windows\system32\PnkBstrA.exe
16:45:50.0485 3360 PnkBstrA - ok
16:45:50.0532 3360 PnkBstrB (e24106a5eaecddff00b25497049dd65f) C:\Windows\system32\PnkBstrB.exe
16:45:50.0532 3360 PnkBstrB - ok
16:45:50.0595 3360 PNRPAutoReg (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
16:45:50.0610 3360 PNRPAutoReg - ok
16:45:50.0642 3360 PNRPsvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
16:45:50.0642 3360 PNRPsvc - ok
16:45:50.0704 3360 PolicyAgent (d0494460421a03cd5225cca0059aa146) C:\Windows\System32\ipsecsvc.dll
16:45:50.0735 3360 PolicyAgent - ok
16:45:50.0814 3360 PptpMiniport (ecfffaec0c1ecd8dbc77f39070ea1db1) C:\Windows\system32\DRIVERS\raspptp.sys
16:45:50.0814 3360 PptpMiniport - ok
16:45:50.0845 3360 Processor (2027293619dd0f047c584cf2e7df4ffd) C:\Windows\system32\drivers\processr.sys
16:45:50.0845 3360 Processor - ok
16:45:50.0876 3360 ProfSvc (0508faa222d28835310b7bfca7a77346) C:\Windows\system32\profsvc.dll
16:45:50.0876 3360 ProfSvc - ok
16:45:50.0907 3360 ProtectedStorage (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
16:45:50.0907 3360 ProtectedStorage - ok
16:45:50.0939 3360 PSched (99514faa8df93d34b5589187db3aa0ba) C:\Windows\system32\DRIVERS\pacer.sys
16:45:50.0954 3360 PSched - ok
16:45:50.0985 3360 PSI (d24dfd16a1e2a76034df5aa18125c35d) C:\Windows\system32\DRIVERS\psi_mf.sys
16:45:51.0001 3360 PSI - ok
16:45:51.0032 3360 ql2300 (0a6db55afb7820c99aa1f3a1d270f4f6) C:\Windows\system32\drivers\ql2300.sys
16:45:51.0048 3360 ql2300 - ok
16:45:51.0079 3360 ql40xx (81a7e5c076e59995d54bc1ed3a16e60b) C:\Windows\system32\drivers\ql40xx.sys
16:45:51.0095 3360 ql40xx - ok
16:45:51.0126 3360 QWAVE (e9ecae663f47e6cb43962d18ab18890f) C:\Windows\system32\qwave.dll
16:45:51.0142 3360 QWAVE - ok
16:45:51.0157 3360 QWAVEdrv (9f5e0e1926014d17486901c88eca2db7) C:\Windows\system32\drivers\qwavedrv.sys
16:45:51.0157 3360 QWAVEdrv - ok
16:45:51.0173 3360 RasAcd (147d7f9c556d259924351feb0de606c3) C:\Windows\system32\DRIVERS\rasacd.sys
16:45:51.0173 3360 RasAcd - ok
16:45:51.0189 3360 RasAuto (f6a452eb4ceadbb51c9e0ee6b3ecef0f) C:\Windows\System32\rasauto.dll
16:45:51.0204 3360 RasAuto - ok
16:45:51.0220 3360 Rasl2tp (a214adbaf4cb47dd2728859ef31f26b0) C:\Windows\system32\DRIVERS\rasl2tp.sys
16:45:51.0220 3360 Rasl2tp - ok
16:45:51.0235 3360 RasMan (75d47445d70ca6f9f894b032fbc64fcf) C:\Windows\System32\rasmans.dll
16:45:51.0235 3360 RasMan - ok
16:45:51.0282 3360 RasPppoe (509a98dd18af4375e1fc40bc175f1def) C:\Windows\system32\DRIVERS\raspppoe.sys
16:45:51.0282 3360 RasPppoe - ok
16:45:51.0314 3360 RasSstp (2005f4a1e05fa09389ac85840f0a9e4d) C:\Windows\system32\DRIVERS\rassstp.sys
16:45:51.0329 3360 RasSstp - ok
16:45:51.0345 3360 rdbss (b14c9d5b9add2f84f70570bbbfaa7935) C:\Windows\system32\DRIVERS\rdbss.sys
16:45:51.0360 3360 rdbss - ok
16:45:51.0360 3360 RDPCDD (89e59be9a564262a3fb6c4f4f1cd9899) C:\Windows\system32\DRIVERS\RDPCDD.sys
16:45:51.0360 3360 RDPCDD - ok
16:45:51.0376 3360 rdpdr (fbc0bacd9c3d7f6956853f64a66e252d) C:\Windows\system32\drivers\rdpdr.sys
16:45:51.0392 3360 rdpdr - ok
16:45:51.0392 3360 RDPENCDD (9d91fe5286f748862ecffa05f8a0710c) C:\Windows\system32\drivers\rdpencdd.sys
16:45:51.0407 3360 RDPENCDD - ok
16:45:51.0439 3360 RDPWD (79c6df8477250f5c54f7c5ae1d6b814e) C:\Windows\system32\drivers\RDPWD.sys
16:45:51.0454 3360 RDPWD - ok
16:45:51.0470 3360 RemoteAccess (bcdd6b4804d06b1f7ebf29e53a57ece9) C:\Windows\System32\mprdim.dll
16:45:51.0485 3360 RemoteAccess - ok
16:45:51.0501 3360 RemoteRegistry (9e6894ea18daff37b63e1005f83ae4ab) C:\Windows\system32\regsvc.dll
16:45:51.0501 3360 RemoteRegistry - ok
16:45:51.0517 3360 RpcLocator (5123f83cbc4349d065534eeb6bbdc42b) C:\Windows\system32\locator.exe
16:45:51.0517 3360 RpcLocator - ok
16:45:51.0532 3360 RpcSs (3b5b4d53fec14f7476ca29a20cc31ac9) C:\Windows\system32\rpcss.dll
16:45:51.0532 3360 RpcSs - ok
16:45:51.0548 3360 rspndr (9c508f4074a39e8b4b31d27198146fad) C:\Windows\system32\DRIVERS\rspndr.sys
16:45:51.0564 3360 rspndr - ok
16:45:51.0579 3360 RT61 (6de7a483204ca5a57b672dcb25716361) C:\Windows\system32\DRIVERS\RT61.sys
16:45:51.0579 3360 RT61 - ok
16:45:51.0657 3360 RTL8169 (f9575b977a13965bbe0181a6604f4f04) C:\Windows\system32\DRIVERS\Rtlh86.sys
16:45:51.0673 3360 RTL8169 - ok
16:45:51.0720 3360 SamSs (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
16:45:51.0720 3360 SamSs - ok
16:45:51.0751 3360 sbp2port (3ce8f073a557e172b330109436984e30) C:\Windows\system32\drivers\sbp2port.sys
16:45:51.0767 3360 sbp2port - ok
16:45:51.0814 3360 SCardSvr (77b7a11a0c3d78d3386398fbbea1b632) C:\Windows\System32\SCardSvr.dll
16:45:51.0845 3360 SCardSvr - ok
16:45:51.0954 3360 Schedule (1a58069db21d05eb2ab58ee5753ebe8d) C:\Windows\system32\schedsvc.dll
16:45:51.0985 3360 Schedule - ok
16:45:52.0032 3360 SCPolicySvc (312ec3e37a0a1f2006534913e37b4423) C:\Windows\System32\certprop.dll
16:45:52.0032 3360 SCPolicySvc - ok
16:45:52.0064 3360 SDRSVC (716313d9f6b0529d03f726d5aaf6f191) C:\Windows\System32\SDRSVC.dll
16:45:52.0064 3360 SDRSVC - ok
16:45:52.0126 3360 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
16:45:52.0126 3360 secdrv - ok
16:45:52.0142 3360 seclogon (fd5199d4d8a521005e4b5ee7fe00fa9b) C:\Windows\system32\seclogon.dll
16:45:52.0142 3360 seclogon - ok
16:45:52.0189 3360 Secunia PSI Agent - ok
16:45:52.0235 3360 Secunia Update Agent - ok
16:45:52.0314 3360 SENS (a9bbab5759771e523f55563d6cbe140f) C:\Windows\System32\sens.dll
16:45:52.0329 3360 SENS - ok
16:45:52.0360 3360 Serenum (ce9ec966638ef0b10b864ddedf62a099) C:\Windows\system32\DRIVERS\serenum.sys
16:45:52.0360 3360 Serenum - ok
16:45:52.0376 3360 Serial (6d663022db3e7058907784ae14b69898) C:\Windows\system32\DRIVERS\serial.sys
16:45:52.0392 3360 Serial - ok
16:45:52.0407 3360 sermouse (8af3d28a879bf75db53a0ee7a4289624) C:\Windows\system32\drivers\sermouse.sys
16:45:52.0407 3360 sermouse - ok
16:45:52.0501 3360 SessionEnv (d2193326f729b163125610dbf3e17d57) C:\Windows\system32\sessenv.dll
16:45:52.0517 3360 SessionEnv - ok
16:45:52.0532 3360 sffdisk (3efa810bdca87f6ecc24f9832243fe86) C:\Windows\system32\drivers\sffdisk.sys
16:45:52.0548 3360 sffdisk - ok
16:45:52.0595 3360 sffp_mmc (e95d451f7ea3e583aec75f3b3ee42dc5) C:\Windows\system32\drivers\sffp_mmc.sys
16:45:52.0626 3360 sffp_mmc - ok
16:45:52.0657 3360 sffp_sd (3d0ea348784b7ac9ea9bd9f317980979) C:\Windows\system32\drivers\sffp_sd.sys
16:45:52.0657 3360 sffp_sd - ok
16:45:52.0673 3360 sfloppy (46ed8e91793b2e6f848015445a0ac188) C:\Windows\system32\drivers\sfloppy.sys
16:45:52.0673 3360 sfloppy - ok
16:45:52.0689 3360 SharedAccess (e1499bd0ff76b1b2fbbf1af339d91165) C:\Windows\System32\ipnathlp.dll
16:45:52.0704 3360 SharedAccess - ok
16:45:52.0735 3360 ShellHWDetection (c7230fbee14437716701c15be02c27b8) C:\Windows\System32\shsvcs.dll
16:45:52.0735 3360 ShellHWDetection - ok
16:45:52.0751 3360 sisagp (1d76624a09a054f682d746b924e2dbc3) C:\Windows\system32\drivers\sisagp.sys
16:45:52.0767 3360 sisagp - ok
16:45:52.0782 3360 SiSRaid2 (43cb7aa756c7db280d01da9b676cfde2) C:\Windows\system32\drivers\sisraid2.sys
16:45:52.0782 3360 SiSRaid2 - ok
16:45:52.0814 3360 SiSRaid4 (a99c6c8b0baa970d8aa59ddc50b57f94) C:\Windows\system32\drivers\sisraid4.sys
16:45:52.0829 3360 SiSRaid4 - ok
16:45:52.0939 3360 slsvc (862bb4cbc05d80c5b45be430e5ef872f) C:\Windows\system32\SLsvc.exe
16:45:52.0985 3360 slsvc - ok
16:45:53.0032 3360 SLUINotify (6edc422215cd78aa8a9cde6b30abbd35) C:\Windows\system32\SLUINotify.dll
16:45:53.0032 3360 SLUINotify - ok
16:45:53.0064 3360 Smb (7b75299a4d201d6a6533603d6914ab04) C:\Windows\system32\DRIVERS\smb.sys
16:45:53.0064 3360 Smb - ok
16:45:53.0079 3360 SNMPTRAP (2a146a055b4401c16ee62d18b8e2a032) C:\Windows\System32\snmptrap.exe
16:45:53.0079 3360 SNMPTRAP - ok
16:45:53.0095 3360 spldr (7aebdeef071fe28b0eef2cdd69102bff) C:\Windows\system32\drivers\spldr.sys
16:45:53.0095 3360 spldr - ok
16:45:53.0157 3360 Spooler (8554097e5136c3bf9f69fe578a1b35f4) C:\Windows\System32\spoolsv.exe
16:45:53.0173 3360 Spooler - ok
16:45:53.0204 3360 sptd (cdddec541bc3c96f91ecb48759673505) C:\Windows\system32\Drivers\sptd.sys
16:45:53.0204 3360 Suspicious file (NoAccess): C:\Windows\system32\Drivers\sptd.sys. md5: cdddec541bc3c96f91ecb48759673505
16:45:53.0204 3360 sptd ( LockedFile.Multi.Generic ) - warning
16:45:53.0204 3360 sptd - detected LockedFile.Multi.Generic (1)
16:45:53.0235 3360 srv (41987f9fc0e61adf54f581e15029ad91) C:\Windows\system32\DRIVERS\srv.sys
16:45:53.0251 3360 srv - ok
16:45:53.0282 3360 srv2 (ff33aff99564b1aa534f58868cbe41ef) C:\Windows\system32\DRIVERS\srv2.sys
16:45:53.0282 3360 srv2 - ok
16:45:53.0314 3360 srvnet (7605c0e1d01a08f3ecd743f38b834a44) C:\Windows\system32\DRIVERS\srvnet.sys
16:45:53.0314 3360 srvnet - ok
16:45:53.0329 3360 SSDPSRV (03d50b37234967433a5ea5ba72bc0b62) C:\Windows\System32\ssdpsrv.dll
16:45:53.0345 3360 SSDPSRV - ok
16:45:53.0360 3360 ssmdrv (a36ee93698802cd899f98bfd553d8185) C:\Windows\system32\DRIVERS\ssmdrv.sys
16:45:53.0360 3360 ssmdrv - ok
16:45:53.0376 3360 SstpSvc (6f1a32e7b7b30f004d9a20afadb14944) C:\Windows\system32\sstpsvc.dll
16:45:53.0392 3360 SstpSvc - ok
16:45:53.0423 3360 Steam Client Service - ok
16:45:53.0439 3360 StillCam (ef70b3d22b4bffda6ea851ecb063efaa) C:\Windows\system32\DRIVERS\serscan.sys
16:45:53.0439 3360 StillCam - ok
16:45:53.0470 3360 stisvc (5de7d67e49b88f5f07f3e53c4b92a352) C:\Windows\System32\wiaservc.dll
16:45:53.0470 3360 stisvc - ok
16:45:53.0485 3360 swenum (7ba58ecf0c0a9a69d44b3dca62becf56) C:\Windows\system32\DRIVERS\swenum.sys
16:45:53.0485 3360 swenum - ok
16:45:53.0532 3360 swprv (f21fd248040681cca1fb6c9a03aaa93d) C:\Windows\System32\swprv.dll
16:45:53.0548 3360 swprv - ok
16:45:53.0564 3360 Symc8xx (192aa3ac01df071b541094f251deed10) C:\Windows\system32\drivers\symc8xx.sys
16:45:53.0564 3360 Symc8xx - ok
16:45:53.0595 3360 Sym_hi (8c8eb8c76736ebaf3b13b633b2e64125) C:\Windows\system32\drivers\sym_hi.sys
16:45:53.0610 3360 Sym_hi - ok
16:45:53.0657 3360 Sym_u3 (8072af52b5fd103bbba387a1e49f62cb) C:\Windows\system32\drivers\sym_u3.sys
16:45:53.0657 3360 Sym_u3 - ok
16:45:53.0704 3360 SysMain (9a51b04e9886aa4ee90093586b0ba88d) C:\Windows\system32\sysmain.dll
16:45:53.0720 3360 SysMain - ok
16:45:53.0735 3360 TabletInputService (2dca225eae15f42c0933e998ee0231c3) C:\Windows\System32\TabSvc.dll
16:45:53.0735 3360 TabletInputService - ok
16:45:53.0767 3360 TapiSrv (d7673e4b38ce21ee54c59eeeb65e2483) C:\Windows\System32\tapisrv.dll
16:45:53.0782 3360 TapiSrv - ok
16:45:53.0798 3360 TBS (cb05822cd9cc6c688168e113c603dbe7) C:\Windows\System32\tbssvc.dll
16:45:53.0798 3360 TBS - ok
16:45:53.0860 3360 Tcpip (814a1c66fbd4e1b310a517221f1456bf) C:\Windows\system32\drivers\tcpip.sys
16:45:53.0876 3360 Tcpip - ok
16:45:53.0892 3360 Tcpip6 (814a1c66fbd4e1b310a517221f1456bf) C:\Windows\system32\DRIVERS\tcpip.sys
16:45:53.0892 3360 Tcpip6 - ok
16:45:53.0923 3360 tcpipreg (608c345a255d82a6289c2d468eb41fd7) C:\Windows\system32\drivers\tcpipreg.sys
16:45:53.0923 3360 tcpipreg - ok
16:45:53.0939 3360 TDPIPE (5dcf5e267be67a1ae926f2df77fbcc56) C:\Windows\system32\drivers\tdpipe.sys
16:45:53.0939 3360 TDPIPE - ok
16:45:53.0954 3360 TDTCP (389c63e32b3cefed425b61ed92d3f021) C:\Windows\system32\drivers\tdtcp.sys
16:45:53.0954 3360 TDTCP - ok
16:45:53.0985 3360 tdx (76b06eb8a01fc8624d699e7045303e54) C:\Windows\system32\DRIVERS\tdx.sys
16:45:53.0985 3360 tdx - ok
16:45:54.0017 3360 TermDD (3cad38910468eab9a6479e2f01db43c7) C:\Windows\system32\DRIVERS\termdd.sys
16:45:54.0017 3360 TermDD - ok
16:45:54.0048 3360 TermService (bb95da09bef6e7a131bff3ba5032090d) C:\Windows\System32\termsrv.dll
16:45:54.0064 3360 TermService - ok
16:45:54.0079 3360 Themes (c7230fbee14437716701c15be02c27b8) C:\Windows\system32\shsvcs.dll
16:45:54.0079 3360 Themes - ok
16:45:54.0110 3360 THREADORDER (1076ffcffaae8385fd62dfcb25ac4708) C:\Windows\system32\mmcss.dll
16:45:54.0110 3360 THREADORDER - ok
16:45:54.0157 3360 TrkWks (ec74e77d0eb004bd3a809b5f8fb8c2ce) C:\Windows\System32\trkwks.dll
16:45:54.0173 3360 TrkWks - ok
16:45:54.0235 3360 TrustedInstaller (97d9d6a04e3ad9b6c626b9931db78dba) C:\Windows\servicing\TrustedInstaller.exe
16:45:54.0267 3360 TrustedInstaller - ok
16:45:54.0314 3360 tssecsrv (dcf0f056a2e4f52287264f5ab29cf206) C:\Windows\system32\DRIVERS\tssecsrv.sys
16:45:54.0329 3360 tssecsrv - ok
16:45:54.0360 3360 tunmp (caecc0120ac49e3d2f758b9169872d38) C:\Windows\system32\DRIVERS\tunmp.sys
16:45:54.0360 3360 tunmp - ok
16:45:54.0439 3360 tunnel (300db877ac094feab0be7688c3454a9c) C:\Windows\system32\DRIVERS\tunnel.sys
16:45:54.0439 3360 tunnel - ok
16:45:54.0470 3360 uagp35 (7d33c4db2ce363c8518d2dfcf533941f) C:\Windows\system32\drivers\uagp35.sys
16:45:54.0470 3360 uagp35 - ok
16:45:54.0548 3360 udfs (d9728af68c4c7693cb100b8441cbdec6) C:\Windows\system32\DRIVERS\udfs.sys
16:45:54.0579 3360 udfs - ok
16:45:54.0595 3360 UI0Detect (ecef404f62863755951e09c802c94ad5) C:\Windows\system32\UI0Detect.exe
16:45:54.0610 3360 UI0Detect - ok
16:45:54.0626 3360 uliagpkx (b0acfdc9e4af279e9116c03e014b2b27) C:\Windows\system32\drivers\uliagpkx.sys
16:45:54.0626 3360 uliagpkx - ok
16:45:54.0657 3360 uliahci (9224bb254f591de4ca8d572a5f0d635c) C:\Windows\system32\drivers\uliahci.sys
16:45:54.0657 3360 uliahci - ok
16:45:54.0689 3360 UlSata (8514d0e5cd0534467c5fc61be94a569f) C:\Windows\system32\drivers\ulsata.sys
16:45:54.0689 3360 UlSata - ok
16:45:54.0704 3360 ulsata2 (38c3c6e62b157a6bc46594fada45c62b) C:\Windows\system32\drivers\ulsata2.sys
16:45:54.0720 3360 ulsata2 - ok
16:45:54.0720 3360 umbus (32cff9f809ae9aed85464492bf3e32d2) C:\Windows\system32\DRIVERS\umbus.sys
16:45:54.0735 3360 umbus - ok
16:45:54.0751 3360 upnphost (68308183f4ae0be7bf8ecd07cb297999) C:\Windows\System32\upnphost.dll
16:45:54.0751 3360 upnphost - ok
16:45:54.0782 3360 usbaudio (32db9517628ff0d070682aab61e688f0) C:\Windows\system32\drivers\usbaudio.sys
16:45:54.0798 3360 usbaudio - ok
16:45:54.0814 3360 usbccgp (caf811ae4c147ffcd5b51750c7f09142) C:\Windows\system32\DRIVERS\usbccgp.sys
16:45:54.0829 3360 usbccgp - ok
16:45:54.0829 3360 usbcir (e9476e6c486e76bc4898074768fb7131) C:\Windows\system32\drivers\usbcir.sys
16:45:54.0845 3360 usbcir - ok
16:45:54.0876 3360 usbehci (79e96c23a97ce7b8f14d310da2db0c9b) C:\Windows\system32\DRIVERS\usbehci.sys
16:45:54.0876 3360 usbehci - ok
16:45:54.0892 3360 usbhub (4673bbcb006af60e7abddbe7a130ba42) C:\Windows\system32\DRIVERS\usbhub.sys
16:45:54.0892 3360 usbhub - ok
16:45:54.0907 3360 usbohci (38dbc7dd6cc5a72011f187425384388b) C:\Windows\system32\drivers\usbohci.sys
16:45:54.0907 3360 usbohci - ok
16:45:54.0939 3360 usbprint (b51e52acf758be00ef3a58ea452fe360) C:\Windows\system32\drivers\usbprint.sys
16:45:54.0939 3360 usbprint - ok
16:45:54.0954 3360 USBSTOR (be3da31c191bc222d9ad503c5224f2ad) C:\Windows\system32\DRIVERS\USBSTOR.SYS
16:45:54.0954 3360 USBSTOR - ok
16:45:54.0970 3360 usbuhci (814d653efc4d48be3b04a307eceff56f) C:\Windows\system32\DRIVERS\usbuhci.sys
16:45:54.0970 3360 usbuhci - ok
16:45:54.0985 3360 usbvideo (e67998e8f14cb0627a769f6530bcb352) C:\Windows\system32\Drivers\usbvideo.sys
16:45:55.0001 3360 usbvideo - ok
16:45:55.0017 3360 UxSms (1509e705f3ac1d474c92454a5c2dd81f) C:\Windows\System32\uxsms.dll
16:45:55.0017 3360 UxSms - ok
16:45:55.0048 3360 vds (cd88d1b7776dc17a119049742ec07eb4) C:\Windows\System32\vds.exe
16:45:55.0048 3360 vds - ok
16:45:55.0079 3360 vga (87b06e1f30b749a114f74622d013f8d4) C:\Windows\system32\DRIVERS\vgapnp.sys
16:45:55.0079 3360 vga - ok
16:45:55.0095 3360 VgaSave (2e93ac0a1d8c79d019db6c51f036636c) C:\Windows\System32\drivers\vga.sys
16:45:55.0095 3360 VgaSave - ok
16:45:55.0110 3360 viaagp (5d7159def58a800d5781ba3a879627bc) C:\Windows\system32\drivers\viaagp.sys
16:45:55.0126 3360 viaagp - ok
16:45:55.0142 3360 ViaC7 (c4f3a691b5bad343e6249bd8c2d45dee) C:\Windows\system32\drivers\viac7.sys
16:45:55.0142 3360 ViaC7 - ok
16:45:55.0157 3360 viaide (aadf5587a4063f52c2c3fed7887426fc) C:\Windows\system32\drivers\viaide.sys
16:45:55.0157 3360 viaide - ok
16:45:55.0173 3360 volmgr (69503668ac66c77c6cd7af86fbdf8c43) C:\Windows\system32\drivers\volmgr.sys
16:45:55.0189 3360 volmgr - ok
16:45:55.0189 3360 volmgrx (23e41b834759917bfd6b9a0d625d0c28) C:\Windows\system32\drivers\volmgrx.sys
16:45:55.0204 3360 volmgrx - ok
16:45:55.0220 3360 volsnap (147281c01fcb1df9252de2a10d5e7093) C:\Windows\system32\drivers\volsnap.sys
16:45:55.0220 3360 volsnap - ok
16:45:55.0235 3360 vsmraid (587253e09325e6bf226b299774b728a9) C:\Windows\system32\drivers\vsmraid.sys
16:45:55.0235 3360 vsmraid - ok
16:45:55.0267 3360 VSS (db3d19f850c6eb32bdcb9bc0836acddb) C:\Windows\system32\vssvc.exe
16:45:55.0298 3360 VSS - ok
16:45:55.0314 3360 W32Time (96ea68b9eb310a69c25ebb0282b2b9de) C:\Windows\system32\w32time.dll
16:45:55.0329 3360 W32Time - ok
16:45:55.0345 3360 WacomPen (48dfee8f1af7c8235d4e626f0c4fe031) C:\Windows\system32\drivers\wacompen.sys
16:45:55.0345 3360 WacomPen - ok
16:45:55.0360 3360 Wanarp (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
16:45:55.0376 3360 Wanarp - ok
16:45:55.0376 3360 Wanarpv6 (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
16:45:55.0376 3360 Wanarpv6 - ok
16:45:55.0392 3360 wcncsvc (a3cd60fd826381b49f03832590e069af) C:\Windows\System32\wcncsvc.dll
16:45:55.0407 3360 wcncsvc - ok
16:45:55.0423 3360 WcsPlugInService (11bcb7afcdd7aadacb5746f544d3a9c7) C:\Windows\System32\WcsPlugInService.dll
16:45:55.0423 3360 WcsPlugInService - ok
16:45:55.0454 3360 Wd (78fe9542363f297b18c027b2d7e7c07f) C:\Windows\system32\drivers\wd.sys
16:45:55.0454 3360 Wd - ok
16:45:55.0470 3360 Wdf01000 (b6f0a7ad6d4bd325fbcd8bac96cd8d96) C:\Windows\system32\drivers\Wdf01000.sys
16:45:55.0517 3360 Wdf01000 - ok
16:45:55.0548 3360 WdiServiceHost (abfc76b48bb6c96e3338d8943c5d93b5) C:\Windows\system32\wdi.dll
16:45:55.0548 3360 WdiServiceHost - ok
16:45:55.0564 3360 WdiSystemHost (abfc76b48bb6c96e3338d8943c5d93b5) C:\Windows\system32\wdi.dll
16:45:55.0564 3360 WdiSystemHost - ok
16:45:55.0579 3360 WebClient (04c37d8107320312fbae09926103d5e2) C:\Windows\System32\webclnt.dll
16:45:55.0610 3360 WebClient - ok
16:45:55.0626 3360 Wecsvc (ae3736e7e8892241c23e4ebbb7453b60) C:\Windows\system32\wecsvc.dll
16:45:55.0642 3360 Wecsvc - ok
16:45:55.0657 3360 wercplsupport (670ff720071ed741206d69bd995ea453) C:\Windows\System32\wercplsupport.dll
16:45:55.0657 3360 wercplsupport - ok
16:45:55.0673 3360 WerSvc (32b88481d3b326da6deb07b1d03481e7) C:\Windows\System32\WerSvc.dll
16:45:55.0673 3360 WerSvc - ok
16:45:55.0798 3360 WinDefend (4575aa12561c5648483403541d0d7f2b) C:\Program Files\Windows Defender\mpsvc.dll
16:45:55.0860 3360 WinDefend - ok
16:45:55.0860 3360 WinHttpAutoProxySvc - ok
16:45:56.0032 3360 Winmgmt (6b2a1d0e80110e3d04e6863c6e62fd8a) C:\Windows\system32\wbem\WMIsvc.dll
16:45:56.0079 3360 Winmgmt - ok
16:45:56.0235 3360 WinRM (7cfe68bdc065e55aa5e8421607037511) C:\Windows\system32\WsmSvc.dll
16:45:56.0407 3360 WinRM - ok
16:45:56.0548 3360 Wlansvc (c008405e4feeb069e30da1d823910234) C:\Windows\System32\wlansvc.dll
16:45:56.0579 3360 Wlansvc - ok
16:45:56.0657 3360 wlcrasvc (6067acef367e79914af628fa1e9b5330) C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
16:45:56.0657 3360 wlcrasvc - ok
16:45:56.0720 3360 wlidsvc (0a70f4022ec2e14c159efc4f69aa2477) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
16:45:56.0735 3360 wlidsvc - ok
16:45:56.0767 3360 WmiAcpi (2e7255d172df0b8283cdfb7b433b864e) C:\Windows\system32\drivers\wmiacpi.sys
16:45:56.0767 3360 WmiAcpi - ok
16:45:56.0829 3360 wmiApSrv (43be3875207dcb62a85c8c49970b66cc) C:\Windows\system32\wbem\WmiApSrv.exe
16:45:56.0845 3360 wmiApSrv - ok
16:45:56.0939 3360 WMPNetworkSvc (3978704576a121a9204f8cc49a301a9b) C:\Program Files\Windows Media Player\wmpnetwk.exe
16:45:56.0954 3360 WMPNetworkSvc - ok
16:45:56.0970 3360 WPCSvc (cfc5a04558f5070cee3e3a7809f3ff52) C:\Windows\System32\wpcsvc.dll
16:45:56.0985 3360 WPCSvc - ok
16:45:57.0032 3360 WPDBusEnum (801fbdb89d472b3c467eb112a0fc9246) C:\Windows\system32\wpdbusenum.dll
16:45:57.0032 3360 WPDBusEnum - ok
16:45:57.0267 3360 WPFFontCache_v0400 (dcf3e3edf5109ee8bc02fe6e1f045795) C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
16:45:57.0298 3360 WPFFontCache_v0400 - ok
16:45:57.0314 3360 ws2ifsl (e3a3cb253c0ec2494d4a61f5e43a389c) C:\Windows\system32\drivers\ws2ifsl.sys
16:45:57.0329 3360 ws2ifsl - ok
16:45:57.0360 3360 wscsvc (1ca6c40261ddc0425987980d0cd2aaab) C:\Windows\System32\wscsvc.dll
16:45:57.0360 3360 wscsvc - ok
16:45:57.0423 3360 WSDPrintDevice (4422ac5ed8d4c2f0db63e71d4c069dd7) C:\Windows\system32\DRIVERS\WSDPrint.sys
16:45:57.0423 3360 WSDPrintDevice - ok
16:45:57.0423 3360 WSearch - ok
16:45:57.0485 3360 wuauserv (6298277b73c77fa99106b271a7525163) C:\Windows\system32\wuaueng.dll
16:45:57.0564 3360 wuauserv - ok
16:45:57.0595 3360 WUDFRd (ac13cb789d93412106b0fb6c7eb2bcb6) C:\Windows\system32\DRIVERS\WUDFRd.sys
16:45:57.0595 3360 WUDFRd - ok
16:45:57.0626 3360 wudfsvc (575a4190d989f64732119e4114045a4f) C:\Windows\System32\WUDFSvc.dll
16:45:57.0626 3360 wudfsvc - ok
16:45:57.0657 3360 MBR (0x1B8) (5c616939100b85e558da92b899a0fc36) \Device\Harddisk0\DR0
16:45:57.0735 3360 \Device\Harddisk0\DR0 - ok
16:45:57.0735 3360 MBR (0x1B8) (8ff255184f078c9c04e6a2ce66117c5c) \Device\Harddisk1\DR1
16:45:57.0735 3360 \Device\Harddisk1\DR1 - ok
16:45:57.0798 3360 Boot (0x1200) (5e08fba8e993ee9cb3af9b688355e51a) \Device\Harddisk0\DR0\Partition0
16:45:57.0829 3360 \Device\Harddisk0\DR0\Partition0 - ok
16:45:57.0845 3360 Boot (0x1200) (1c6459f84aec28e34d47577551520aed) \Device\Harddisk0\DR0\Partition1
16:45:57.0954 3360 \Device\Harddisk0\DR0\Partition1 - ok
16:45:57.0954 3360 Boot (0x1200) (3858ab178ece6442047503c0cff01e58) \Device\Harddisk1\DR1\Partition0
16:45:57.0954 3360 \Device\Harddisk1\DR1\Partition0 - ok
16:45:57.0954 3360 ============================================================
16:45:57.0954 3360 Scan finished
16:45:57.0954 3360 ============================================================
16:45:57.0954 3536 Detected object count: 2
16:45:57.0954 3536 Actual detected object count: 2
16:46:42.0798 3536 Akamai ( HiddenFile.Multi.Generic ) - skipped by user
16:46:42.0798 3536 Akamai ( HiddenFile.Multi.Generic ) - User select action: Skip
16:46:42.0798 3536 sptd ( LockedFile.Multi.Generic ) - skipped by user
16:46:42.0798 3536 sptd ( LockedFile.Multi.Generic ) - User select action: Skip
16:46:56.0
Vous n’avez pas trouvé la réponse que vous recherchez ?
Posez votre question
J'ai toujours une icône SMART HDD dans ma barre de tache, elle pointe vers C:\ProgramData\Esw77QG3yLx2uN.exe
Sinon, j'ai mes fichiers qui ont réapparu sur le bureau, mais on dirait qu'ils sont en fichier cachés... :-/
Il manque toujours des éléments dans mon menu démarrer -> Par exemple, je n'ai plus le répertoire Accessoires dans mes programmes, ce qui est embêtant (notepad, système, calculatrice...)
Sinon, j'ai mes fichiers qui ont réapparu sur le bureau, mais on dirait qu'ils sont en fichier cachés... :-/
Il manque toujours des éléments dans mon menu démarrer -> Par exemple, je n'ai plus le répertoire Accessoires dans mes programmes, ce qui est embêtant (notepad, système, calculatrice...)
OK, ça parait bon pour moi... Je devrais pouvoir me débrouiller avec le reste.
Merci de ton aide! ^^
Merci de ton aide! ^^
* Télécharge ZHPDiag sur ton bureau :
https://www.zebulon.fr/telechargements/securite/systeme/zhpdiag.html
ou
http://www.premiumorange.com/zeb-help-process/zhpdiag.html
ou
https://www.commentcamarche.net/telecharger/utilitaires/24803-zhpdiag/
* Laisse toi guider lors de l'installation, il se lancera automatiquement à la fin.
/!\Utilisateur de Vista et Seven : Clique droit sur le logo de ZHPdiag, « exécuter en tant qu'Administrateur »
* Clique sur l'icône représentant une loupe (« Lancer le diagnostic »)
* Enregistre le rapport sur ton Bureau à l'aide de l'icône représentant une disquette
* Héberge le rapport ZHPDiag.txt sur Cijoint, puis copie/colle le lien fourni dans ta prochaine réponse sur le forum :
https://www.cjoint.com/ => https://www.commentcamarche.net/faq/29493-utiliser-cjoint-pour-heberger-des-fichiers
ou :
http://dl.free.fr
ou :
http://ww38.toofiles.com/fr/documents-upload.html
ou :
https://www.terafiles.net/
tuto zhpdiag :
http://www.premiumorange.com/zeb-help-process/zhpdiag.html
https://www.zebulon.fr/telechargements/securite/systeme/zhpdiag.html
ou
http://www.premiumorange.com/zeb-help-process/zhpdiag.html
ou
https://www.commentcamarche.net/telecharger/utilitaires/24803-zhpdiag/
* Laisse toi guider lors de l'installation, il se lancera automatiquement à la fin.
/!\Utilisateur de Vista et Seven : Clique droit sur le logo de ZHPdiag, « exécuter en tant qu'Administrateur »
* Clique sur l'icône représentant une loupe (« Lancer le diagnostic »)
* Enregistre le rapport sur ton Bureau à l'aide de l'icône représentant une disquette
* Héberge le rapport ZHPDiag.txt sur Cijoint, puis copie/colle le lien fourni dans ta prochaine réponse sur le forum :
https://www.cjoint.com/ => https://www.commentcamarche.net/faq/29493-utiliser-cjoint-pour-heberger-des-fichiers
ou :
http://dl.free.fr
ou :
http://ww38.toofiles.com/fr/documents-upload.html
ou :
https://www.terafiles.net/
tuto zhpdiag :
http://www.premiumorange.com/zeb-help-process/zhpdiag.html
