Sujet Précédent Sujet Suivant

Aide pour désinfection ?

Fermé
Eternall - 10 avril 2012 à 18:58
Boy94450 Messages postés 509 Date d'inscription dimanche 8 janvier 2012 Statut Membre Dernière intervention 14 avril 2012 - 10 avril 2012 à 23:14
Bonjour,

J'ai quelques soucis avec mon PC. Depuis quelques temps des pages internet s'ouvrent toutes seules.
J'ai tenté des analyses avec mon anti-virus (Avast), spybot,et antimalware. Mais ça n'a rien changé.
Je viens solliciter votre aide s'il vous plait.

Merci.

26 réponses

  • 1
  • 2
Réponse 1 / 26
Boy94450 Messages postés 509 Date d'inscription dimanche 8 janvier 2012 Statut Membre Dernière intervention 14 avril 2012 4
10 avril 2012 à 18:59
* Télécharge AdwCleaner sur ton Bureau.
/!\ Utilisateur de Windows Vista et Windows Seven : Clique droit sur le logo de AdwCleaner, « Exécuter en tant qu'Administrateur » /!\
* Lance AdwCleaner.
* Clique sur le bouton [ Recherche ] #Image
* Patiente ...
* Poste le rapport qui apparait en fin de recherche.
0
Réponse 2 / 26
Eternall Messages postés 149 Date d'inscription samedi 19 juillet 2008 Statut Membre Dernière intervention 29 octobre 2018 2
10 avril 2012 à 19:07
Bonjour et merci, voici le rapport :


# AdwCleaner v1.505 - Rapport créé le 10/04/2012 à 19:06:46
# Mis à jour le 07/04/2012 par Xplode
# Système d'exploitation : Windows 7 Ultimate Service Pack 1 (32 bits)
# Nom d'utilisateur : Christian - CHRISTIAN-PC
# Exécuté depuis : C:\Users\Christian\Desktop\adwcleaner.exe
# Option [Recherche]


***** [Services] *****

Présent : SafeUpdater

***** [Fichiers / Dossiers] *****

Dossier Présent : C:\Users\Christian\AppData\Local\APN
Dossier Présent : C:\Users\Christian\AppData\Local\combroadcaster
Dossier Présent : C:\Users\Christian\AppData\Local\Conduit
Dossier Présent : C:\Users\Christian\AppData\Local\EoJet
Dossier Présent : C:\Users\Christian\AppData\Local\safeupdater
Dossier Présent : C:\Users\Christian\AppData\LocalLow\bbrs_002.tb
Dossier Présent : C:\Users\Christian\AppData\LocalLow\Conduit
Dossier Présent : C:\Program Files\BrowserCompanion
Dossier Présent : C:\Program Files\Conduit

***** [H. Navipromo] *****


***** [Registre] *****

[*] Clé Présente : HKLM\SOFTWARE\Classes\Toolbar.CT2801939
Clé Présente : HKCU\Software\BrowserCompanion
Clé Présente : HKCU\Software\Conduit
Clé Présente : HKCU\Software\DataMngr
Clé Présente : HKCU\Software\AppDataLow\Software\PriceGong
Clé Présente : HKLM\SOFTWARE\BrowserCompanion
Clé Présente : HKLM\SOFTWARE\Conduit
Clé Présente : HKLM\SOFTWARE\Classes\b
Clé Présente : HKLM\SOFTWARE\Classes\escort.escrtBtn.1
Clé Présente : HKLM\SOFTWARE\Classes\tdataprotocol.CTData
Clé Présente : HKLM\SOFTWARE\Classes\tdataprotocol.CTData.1
Clé Présente : HKLM\SOFTWARE\Classes\updatebho.TimerBHO
Clé Présente : HKLM\SOFTWARE\Classes\updatebho.TimerBHO.1
Clé Présente : HKLM\SOFTWARE\Classes\AppID\EoEngineBHO.DLL
Clé Présente : HKLM\SOFTWARE\Classes\AppID\escortApp.DLL
Clé Présente : HKLM\SOFTWARE\Classes\AppID\escortEng.DLL
Clé Présente : HKLM\SOFTWARE\Classes\AppID\escorTlbr.DLL
Clé Présente : HKLM\SOFTWARE\Classes\AppID\tdataprotocol.DLL
Clé Présente : HKLM\SOFTWARE\Classes\AppID\updatebho.DLL
Clé Présente : HKLM\SOFTWARE\Classes\PROTOCOLS\Handler\base64
Clé Présente : HKLM\SOFTWARE\Classes\PROTOCOLS\Handler\chrome
Clé Présente : HKLM\SOFTWARE\Classes\PROTOCOLS\Handler\prox
Clé Présente : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\BrowserCompanion
Clé Présente : HKLM\SOFTWARE\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}
Clé Présente : HKLM\SOFTWARE\Classes\AppID\{35C1605E-438B-4D64-AAB1-8885F097A9B1}
Clé Présente : HKLM\SOFTWARE\Classes\AppID\{373ED12D-B306-43AC-9485-A7C5133DC34C}
Clé Présente : HKLM\SOFTWARE\Classes\AppID\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}
Clé Présente : HKLM\SOFTWARE\Classes\AppID\{AFBB7970-789A-4264-BA70-E8127DECE400}
Clé Présente : HKLM\SOFTWARE\Classes\AppID\{B12E99ED-69BD-437C-86BE-C862B9E5444D}
Clé Présente : HKLM\SOFTWARE\Classes\AppID\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}
Clé Présente : HKLM\SOFTWARE\Classes\AppID\{ED6535E7-F778-48A5-A060-549D30024511}
Clé Présente : HKLM\SOFTWARE\Classes\CLSID\{28387537-E3F9-4ED7-860C-11E69AF4A8A0}
Clé Présente : HKLM\SOFTWARE\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Clé Présente : HKLM\SOFTWARE\Classes\CLSID\{5ACE96C0-C70A-4A4D-AF14-2E7B869345E1}
Clé Présente : HKLM\SOFTWARE\Classes\CLSID\{963B125B-8B21-49A2-A3A8-E37092276531}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{44C3C1DB-2127-433C-98EC-4C9412B5FC3A}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{4D5132DD-BB2B-4249-B5E0-D145A8C982E1}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{817923CB-4744-4216-B250-CF7EDA8F1767}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{8BE10F21-185F-4CA0-B789-9921674C3993}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{9F0C17EB-EF2C-4278-9136-2D547656BC03}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{B32672B3-F656-46E0-B584-FE61C0BB6037}
Clé Présente : HKLM\SOFTWARE\Classes\TypeLib\{830B56CB-FD22-44AA-9887-7898F4F4158D}
Clé Présente : HKLM\SOFTWARE\Classes\TypeLib\{8830DDF0-3042-404D-A62C-384A85E34833}
Clé Présente : HKLM\SOFTWARE\Classes\TypeLib\{955B782E-CDC8-4CEE-B6F6-AD7D541A8D8A}
Clé Présente : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Clé Présente : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{28387537-E3F9-4ED7-860C-11E69AF4A8A0}
Clé Présente : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{963B125B-8B21-49A2-A3A8-E37092276531}
Clé Présente : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{28387537-E3F9-4ED7-860C-11E69AF4A8A0}
Clé Présente : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{2EECD738-5844-4A99-B4B6-146BF802613B}
Clé Présente : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{97F2FF5B-260C-4CCF-834A-2DDA4E29E39E}
Clé Présente : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{98889811-442D-49DD-99D7-DC866BE87DBC}
Clé Présente : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{00CBB66B-1D3B-46D3-9577-323A336ACB50}
Clé Présente : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{28387537-E3F9-4ED7-860C-11E69AF4A8A0}
Clé Présente : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2EECD738-5844-4A99-B4B6-146BF802613B}
Clé Présente : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{963B125B-8B21-49A2-A3A8-E37092276531}
Clé Présente : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{98889811-442D-49DD-99D7-DC866BE87DBC}
Valeur Présente : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [Browser companion helper]
Valeur Présente : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [Combroadcaster]
Valeur Présente : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{28387537-E3F9-4ED7-860C-11E69AF4A8A0}]

***** [Navigateurs] *****

-\\ Internet Explorer v9.0.8112.16421

[HKCU\Software\Microsoft\Internet Explorer\Main - First Home Page] = hxxp://y.lo.st

-\\ Google Chrome v18.0.1025.152

Fichier : C:\Users\Christian\AppData\Local\Google\Chrome\User Data\Default\Preferences

Présente : "search_url": "hxxp://dts.search-results.com/sr?src=crb&appid=333&systemid=1&sr=0&q={searchTer[...]
Présente : "fr.search-results.com": 2.2239010334014893,
Présente : "urls_to_restore_on_startup": [ "hxxp://search.conduit.com/?ctid=CT2697549&SearchSource=48" ]

*************************

AdwCleaner[R1].txt - [6357 octets] - [10/04/2012 19:06:46]

########## EOF - C:\AdwCleaner[R1].txt - [6485 octets] ##########
0
Réponse 3 / 26
Boy94450 Messages postés 509 Date d'inscription dimanche 8 janvier 2012 Statut Membre Dernière intervention 14 avril 2012 4
10 avril 2012 à 19:16
/!\ Utilisateur de Windows Vista et Windows Seven : Clique droit sur le logo de AdwCleaner, « Exécuter en tant qu'Administrateur » /!\
* Lances AdwCleaner.
* Cliques sur le bouton [ Suppression ] #Image
* Patientes ...
* Postes le rapport qui apparait en fin de recherche.
0
Réponse 4 / 26
Eternall Messages postés 149 Date d'inscription samedi 19 juillet 2008 Statut Membre Dernière intervention 29 octobre 2018 2
10 avril 2012 à 19:22
Merci,

voici le nouveau rapport :


# AdwCleaner v1.505 - Rapport créé le 10/04/2012 à 19:18:41
# Mis à jour le 07/04/2012 par Xplode
# Système d'exploitation : Windows 7 Ultimate Service Pack 1 (32 bits)
# Nom d'utilisateur : Christian - CHRISTIAN-PC
# Exécuté depuis : C:\Users\Christian\Desktop\adwcleaner.exe
# Option [Suppression]


***** [Services] *****

Arrêté & Supprimé : SafeUpdater

***** [Fichiers / Dossiers] *****

Dossier Supprimé : C:\Users\Christian\AppData\Local\APN
Dossier Supprimé : C:\Users\Christian\AppData\Local\combroadcaster
Dossier Supprimé : C:\Users\Christian\AppData\Local\Conduit
Dossier Supprimé : C:\Users\Christian\AppData\Local\EoJet
Dossier Supprimé : C:\Users\Christian\AppData\Local\safeupdater
Dossier Supprimé : C:\Users\Christian\AppData\LocalLow\bbrs_002.tb
Dossier Supprimé : C:\Users\Christian\AppData\LocalLow\Conduit
Dossier Supprimé : C:\Program Files\BrowserCompanion
Dossier Supprimé : C:\Program Files\Conduit

***** [H. Navipromo] *****


***** [Registre] *****

[*] Clé Supprimée : HKLM\SOFTWARE\Classes\Toolbar.CT2801939
Clé Supprimée : HKCU\Software\BrowserCompanion
Clé Supprimée : HKCU\Software\Conduit
Clé Supprimée : HKCU\Software\DataMngr
Clé Supprimée : HKCU\Software\AppDataLow\Software\PriceGong
Clé Supprimée : HKLM\SOFTWARE\BrowserCompanion
Clé Supprimée : HKLM\SOFTWARE\Conduit
Clé Supprimée : HKLM\SOFTWARE\Classes\b
Clé Supprimée : HKLM\SOFTWARE\Classes\escort.escrtBtn.1
Clé Supprimée : HKLM\SOFTWARE\Classes\tdataprotocol.CTData
Clé Supprimée : HKLM\SOFTWARE\Classes\tdataprotocol.CTData.1
Clé Supprimée : HKLM\SOFTWARE\Classes\updatebho.TimerBHO
Clé Supprimée : HKLM\SOFTWARE\Classes\updatebho.TimerBHO.1
Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\EoEngineBHO.DLL
Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\escortApp.DLL
Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\escortEng.DLL
Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\escorTlbr.DLL
Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\tdataprotocol.DLL
Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\updatebho.DLL
Clé Supprimée : HKLM\SOFTWARE\Classes\PROTOCOLS\Handler\base64
Clé Supprimée : HKLM\SOFTWARE\Classes\PROTOCOLS\Handler\chrome
Clé Supprimée : HKLM\SOFTWARE\Classes\PROTOCOLS\Handler\prox
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\BrowserCompanion
Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}
Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\{35C1605E-438B-4D64-AAB1-8885F097A9B1}
Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\{373ED12D-B306-43AC-9485-A7C5133DC34C}
Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}
Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\{AFBB7970-789A-4264-BA70-E8127DECE400}
Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\{B12E99ED-69BD-437C-86BE-C862B9E5444D}
Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}
Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\{ED6535E7-F778-48A5-A060-549D30024511}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{28387537-E3F9-4ED7-860C-11E69AF4A8A0}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{5ACE96C0-C70A-4A4D-AF14-2E7B869345E1}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{963B125B-8B21-49A2-A3A8-E37092276531}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{44C3C1DB-2127-433C-98EC-4C9412B5FC3A}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{4D5132DD-BB2B-4249-B5E0-D145A8C982E1}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{817923CB-4744-4216-B250-CF7EDA8F1767}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{8BE10F21-185F-4CA0-B789-9921674C3993}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{9F0C17EB-EF2C-4278-9136-2D547656BC03}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{B32672B3-F656-46E0-B584-FE61C0BB6037}
Clé Supprimée : HKLM\SOFTWARE\Classes\TypeLib\{830B56CB-FD22-44AA-9887-7898F4F4158D}
Clé Supprimée : HKLM\SOFTWARE\Classes\TypeLib\{8830DDF0-3042-404D-A62C-384A85E34833}
Clé Supprimée : HKLM\SOFTWARE\Classes\TypeLib\{955B782E-CDC8-4CEE-B6F6-AD7D541A8D8A}
Clé Supprimée : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{28387537-E3F9-4ED7-860C-11E69AF4A8A0}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{963B125B-8B21-49A2-A3A8-E37092276531}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{28387537-E3F9-4ED7-860C-11E69AF4A8A0}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{2EECD738-5844-4A99-B4B6-146BF802613B}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{97F2FF5B-260C-4CCF-834A-2DDA4E29E39E}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{98889811-442D-49DD-99D7-DC866BE87DBC}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{00CBB66B-1D3B-46D3-9577-323A336ACB50}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{28387537-E3F9-4ED7-860C-11E69AF4A8A0}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2EECD738-5844-4A99-B4B6-146BF802613B}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{963B125B-8B21-49A2-A3A8-E37092276531}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{98889811-442D-49DD-99D7-DC866BE87DBC}
Valeur Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [Browser companion helper]
Valeur Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [Combroadcaster]
Valeur Supprimée : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{28387537-E3F9-4ED7-860C-11E69AF4A8A0}]

***** [Navigateurs] *****

-\\ Internet Explorer v9.0.8112.16421

Remplacé : [HKCU\Software\Microsoft\Internet Explorer\Main - First Home Page] = hxxp://y.lo.st --> hxxp://www.google.fr

-\\ Google Chrome v18.0.1025.152

Fichier : C:\Users\Christian\AppData\Local\Google\Chrome\User Data\Default\Preferences

Supprimée : "search_url": "hxxp://dts.search-results.com/sr?src=crb&appid=333&systemid=1&sr=0&q={searchTer[...]
Supprimée : "fr.search-results.com": 2.2239010334014893,
Supprimée : "urls_to_restore_on_startup": [ "hxxp://search.conduit.com/?ctid=CT2697549&SearchSource=48" ]

*************************

AdwCleaner[R1].txt - [6486 octets] - [10/04/2012 19:06:46]
AdwCleaner[S1].txt - [6536 octets] - [10/04/2012 19:18:41]

########## EOF - C:\AdwCleaner[S1].txt - [6664 octets] ##########
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 5 / 26
Boy94450 Messages postés 509 Date d'inscription dimanche 8 janvier 2012 Statut Membre Dernière intervention 14 avril 2012 4
10 avril 2012 à 19:35
/!\ Utilisateur de Windows Vista et Windows Seven : Clique droit sur le logo de AdwCleaner, « Exécuter en tant qu'Administrateur » /!\
* Lances AdwCleaner.
* Cliques sur le bouton [ Desinstaller ]
* Patientes ...

------------------

* Télécharges Ad-Remover sur ton Bureau.
/!\ Utilisateur de Windows Vista et Windows Seven : Clique droit sur le logo de Ad-Remover, « Exécuter en tant qu'Administrateur » /!\
* Lances Ad-Remover.
* Cliques sur le bouton [ Scanner ] #Image
* Patientes ...
* Postes le rapport qui apparait en fin de recherche.
0
Réponse 6 / 26
Eternall Messages postés 149 Date d'inscription samedi 19 juillet 2008 Statut Membre Dernière intervention 29 octobre 2018 2
10 avril 2012 à 19:39
Merci, voici le rapport :


======= RAPPORT D'AD-REMOVER 2.0.0.2,G | UNIQUEMENT XP/VISTA/7 =======

Mis à jour par TeamXscript le 12/04/11
Contact: AdRemover[DOT]contact[AT]gmail[DOT]com
Site web: http://www.teamxscript.org

C:\Program Files\Ad-Remover\main.exe (SCAN [1]) -> Lancé à 19:37:24 le 10/04/2012, Mode normal

Microsoft Windows 7 Édition Intégrale Service Pack 1 (X86)
Christian@CHRISTIAN-PC (FUJITSU SIEMENS AMD690VM-FMH)

============== RECHERCHE ==============


Dossier trouvé: C:\Users\Christian\Music\Imesh
Dossier trouvé: C:\Program Files\iMesh Applications
Fichier trouvé: C:\Users\Public\Desktop\Everest Poker.fr.lnk

Clé trouvée: HKCU\Software\Grand Virtual
Clé trouvée: HKCU\Software\iMesh
Clé trouvée: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0495CA36-19AE-490F-B37E-1B44E714534F}
Clé trouvée: HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9D281519-8810-4C3E-8CC0-DB03C0F1E501}


============== SCAN ADDITIONNEL ==============

**** Google Chrome Version [18.0.1025.152] ****

Extension\anembbagmgkbapmgbadipipkclppoldp (C:\Users\CHRIST~1\AppData\Local\Temp\ccex.crx) (x)
Extension\clbfjfbnelcflpgpklppgplejolacbej (C:\Program Files\BrowserCompanion\blabbers-ch.crx) (x)
Extension\dhjcejipifajofgbcbclmfohjnbflgjd (C:\Users\CHRIST~1\AppData\Local\Temp\ccex.crx) (x)
Extension\icmlaeflemplmjndnaapfdbbnpncnbda (C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx) (?)

-- C:\Users\Christian\AppData\Local\Google\Chrome\User Data\Default --
Preferences - default_search_provider: "Search Results" (Activé: true) (hxxp://dts.search-results.com/sr?src=crb&appid=333&systemid=1&sr=0&q={searchTerms})
Preferences - homepage: hxxp://www.google.fr/
Preferences - homepage_is_newtabpage: false
Plugin - Remoting Viewer (Activé: true) (internal-remoting-viewer) (x)
Plugin - "Remoting Viewer" (Activé: true)
Plugin - Native Client (Activé: true) (C:\Users\Christian\AppData\Local\Google\Chrome\Application\18.0.1025.152\ppGoogleNaClPluginChrome.dll)
Plugin - "Native Client" (Activé: true)
Plugin - Shockwave Flash (Activé: false) (C:\Users\Christian\AppData\Local\Google\Chrome\User Data\PepperFlash\11.1.31.203\pepflashplayer.dll)
Plugin - Nero Kwik Media Helper (Activé: true) (C:\PROGRA~1\COMMON~1\Nero\BROWSE~1\NPBROW~1.DLL)
Plugin - "Nero Kwik Media Helper" (Activé: true)
Plugin - "Picasa" (Activé: true)
Plugin - "Java" (Activé: true)
Plugin - NVIDIA 3D Vision (Activé: true) (C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll)
Plugin - NVIDIA 3D VISION (Activé: true) (C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll)
Plugin - "NVIDIA 3D" (Activé: true)
Plugin - Windows Live\u0099 Photo Gallery (Activé: true) (C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll)
Plugin - "Windows Live\u0099 Photo Gallery" (Activé: true)

========================================

**** Internet Explorer Version [9.0.8112.16421] ****

HKCU_Main|Default_Search_URL - hxxp://www.google.com/ie
HKCU_Main|First Home Page - hxxp://www.google.fr
HKCU_Main|Search bar - hxxp://www.google.com/ie
HKCU_Main|Search Page - hxxp://www.google.com
HKCU_Main|Start Page - hxxp://www.msn.com/
HKLM_Main|Default_Page_URL - hxxp://go.microsoft.com/fwlink/?LinkId=69157
HKLM_Main|Default_Search_URL - hxxp://go.microsoft.com/fwlink/?LinkId=54896
HKLM_Main|Search Page - hxxp://go.microsoft.com/fwlink/?LinkId=54896
HKLM_Main|Start Page - hxxp://go.microsoft.com/fwlink/?LinkId=69157
HKCU_URLSearchHooks|{9e96c0cd-a901-4032-9236-0e4a264aeee4} (x)
HKCU_SearchScopes\{0495CA36-19AE-490F-B37E-1B44E714534F} - "Ask Search" (hxxp://websearch.ask.com/redirect?client=ie&tb=FF&o=14594&src=kw&q={searchTerms}...)
HKCU_SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD21} - "Search Results" (hxxp://dts.search-results.com/sr?src=ieb&appid=333&systemid=1&sr=0&q={searchTerm...)
HKLM_SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD21} - "Search Results" (hxxp://dts.search-results.com/sr?src=ieb&appid=333&systemid=1&sr=0&q={searchTerm...)
HKLM_Toolbar|{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} (C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll)
HKLM_Toolbar|!{98889811-442D-49dd-99D7-DC866BE87DBC} (x)
HKCU_ElevationPolicy\{DD41E1A5-99E5-41BA-8703-6BE974416118} - C:\Program Files\Nero\Nero 11\Nero Burning ROM\nero.exe (Nero AG)
HKLM_ElevationPolicy\{70f641fd-9ffc-4d5b-a4dc-962af4ed7999} - C:\Program Files\Internet Explorer\iedw.exe (x)
HKLM_ElevationPolicy\{9D281519-8810-4C3E-8CC0-DB03C0F1E501} - C:\PROGRA~1\IMESHA~1\MediaBar\Datamngr\ToolBar\dtUser.exe (x)
HKLM_ElevationPolicy\{DD41E1A5-99E5-41BA-8703-6BE974416118} - C:\Program Files\Nero\Nero 11\Nero Burning ROM\nero.exe (Nero AG)
BHO\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - "avast! WebRep" (C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll)

========================================

C:\Program Files\Ad-Remover\Quarantine: 0 Fichier(s)
C:\Program Files\Ad-Remover\Backup: 1 Fichier(s)

C:\Ad-Report-SCAN[1].txt - 10/04/2012 19:37:34 (4978 Octet(s))

Fin à: 19:38:18, 10/04/2012

============== E.O.F ==============
0
Réponse 7 / 26
Boy94450 Messages postés 509 Date d'inscription dimanche 8 janvier 2012 Statut Membre Dernière intervention 14 avril 2012 4
10 avril 2012 à 19:41
/!\ Utilisateur de Windows Vista et Windows Seven : Clique droit sur le logo de Ad-Remover, « Exécuter en tant qu'Administrateur » /!\
* Lances Ad-Remover.
* Cliques sur le bouton [ Nettoyer ] #Image
* Patientes ...
* Postes le rapport qui apparait en fin de recherche.
0
Réponse 8 / 26
Eternall Messages postés 149 Date d'inscription samedi 19 juillet 2008 Statut Membre Dernière intervention 29 octobre 2018 2
10 avril 2012 à 19:48
Merci, juste avant de lancer le nettoyage, j'ai vu dans le rapport Everest-Poker, est ce que ça va supprimer le logiciel ?
0
Réponse 9 / 26
Boy94450 Messages postés 509 Date d'inscription dimanche 8 janvier 2012 Statut Membre Dernière intervention 14 avril 2012 4
10 avril 2012 à 19:50
Supprimez la toolbar qui va avec. Ne t'inquiéte pas.
0
Réponse 10 / 26
Eternall Messages postés 149 Date d'inscription samedi 19 juillet 2008 Statut Membre Dernière intervention 29 octobre 2018 2
10 avril 2012 à 20:07
voici le rapport :


======= RAPPORT D'AD-REMOVER 2.0.0.2,G | UNIQUEMENT XP/VISTA/7 =======

Mis à jour par TeamXscript le 12/04/11
Contact: AdRemover[DOT]contact[AT]gmail[DOT]com
Site web: http://www.teamxscript.org

C:\Program Files\Ad-Remover\main.exe (CLEAN [1]) -> Lancé à 20:02:29 le 10/04/2012, Mode normal

Microsoft Windows 7 Édition Intégrale Service Pack 1 (X86)
Christian@CHRISTIAN-PC (FUJITSU SIEMENS AMD690VM-FMH)

============== ACTION(S) ==============


Dossier supprimé: C:\Users\Christian\Music\Imesh
Dossier supprimé: C:\Program Files\iMesh Applications
Fichier supprimé: C:\Users\Public\Desktop\Everest Poker.fr.lnk

(!) -- Fichiers temporaires supprimés.


Clé supprimée: HKCU\Software\Grand Virtual
Clé supprimée: HKCU\Software\iMesh
Clé supprimée: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0495CA36-19AE-490F-B37E-1B44E714534F}
Clé supprimée: HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9D281519-8810-4C3E-8CC0-DB03C0F1E501}


============== SCAN ADDITIONNEL ==============

**** Google Chrome Version [18.0.1025.152] ****

Extension\anembbagmgkbapmgbadipipkclppoldp (C:\Users\CHRIST~1\AppData\Local\Temp\ccex.crx) (x)
Extension\clbfjfbnelcflpgpklppgplejolacbej (C:\Program Files\BrowserCompanion\blabbers-ch.crx) (x)
Extension\dhjcejipifajofgbcbclmfohjnbflgjd (C:\Users\CHRIST~1\AppData\Local\Temp\ccex.crx) (x)
Extension\icmlaeflemplmjndnaapfdbbnpncnbda (C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx) (?)

-- C:\Users\Christian\AppData\Local\Google\Chrome\User Data\Default --
Preferences - default_search_provider: "Search Results" (Activé: true) (hxxp://dts.search-results.com/sr?src=crb&appid=333&systemid=1&sr=0&q={searchTerms})
Preferences - homepage: hxxp://www.google.fr/
Preferences - homepage_is_newtabpage: false
Plugin - Remoting Viewer (Activé: true) (internal-remoting-viewer) (x)
Plugin - "Remoting Viewer" (Activé: true)
Plugin - Native Client (Activé: true) (C:\Users\Christian\AppData\Local\Google\Chrome\Application\18.0.1025.152\ppGoogleNaClPluginChrome.dll)
Plugin - "Native Client" (Activé: true)
Plugin - Nero Kwik Media Helper (Activé: true) (C:\PROGRA~1\COMMON~1\Nero\BROWSE~1\NPBROW~1.DLL)
Plugin - "Nero Kwik Media Helper" (Activé: true)
Plugin - "Picasa" (Activé: true)
Plugin - "Java" (Activé: true)
Plugin - NVIDIA 3D Vision (Activé: true) (C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll)
Plugin - NVIDIA 3D VISION (Activé: true) (C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll)
Plugin - "NVIDIA 3D" (Activé: true)
Plugin - Windows Live\u0099 Photo Gallery (Activé: true) (C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll)
Plugin - "Windows Live\u0099 Photo Gallery" (Activé: true)

========================================

**** Internet Explorer Version [9.0.8112.16421] ****

HKCU_Main|Default_Page_URL - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
HKCU_Main|Default_Search_URL - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKCU_Main|Search bar - hxxp://go.microsoft.com/fwlink/?linkid=54896
HKCU_Main|Start Page - hxxp://fr.msn.com/
HKLM_Main|Default_Page_URL - hxxp://go.microsoft.com/fwlink/?LinkId=54896
HKLM_Main|Default_Search_URL - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKLM_Main|Search bar - hxxp://search.msn.com/spbasic.htm
HKLM_Main|Search Page - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKLM_Main|Start Page - hxxp://fr.msn.com/
HKCU_URLSearchHooks|{9e96c0cd-a901-4032-9236-0e4a264aeee4} (x)
HKCU_SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD21} - "Search Results" (hxxp://dts.search-results.com/sr?src=ieb&appid=333&systemid=1&sr=0&q={searchTerm...)
HKLM_SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD21} - "Search Results" (hxxp://dts.search-results.com/sr?src=ieb&appid=333&systemid=1&sr=0&q={searchTerm...)
HKLM_Toolbar|{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} (C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll)
HKLM_Toolbar|!{98889811-442D-49dd-99D7-DC866BE87DBC} (x)
HKCU_ElevationPolicy\{DD41E1A5-99E5-41BA-8703-6BE974416118} - C:\Program Files\Nero\Nero 11\Nero Burning ROM\nero.exe (Nero AG)
HKLM_ElevationPolicy\{70f641fd-9ffc-4d5b-a4dc-962af4ed7999} - C:\Program Files\Internet Explorer\iedw.exe (x)
HKLM_ElevationPolicy\{DD41E1A5-99E5-41BA-8703-6BE974416118} - C:\Program Files\Nero\Nero 11\Nero Burning ROM\nero.exe (Nero AG)
BHO\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - "avast! WebRep" (C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll)

========================================

C:\Program Files\Ad-Remover\Quarantine: 10 Fichier(s)
C:\Program Files\Ad-Remover\Backup: 15 Fichier(s)

C:\Ad-Report-CLEAN[1].txt - 10/04/2012 20:02:32 (4726 Octet(s))
C:\Ad-Report-SCAN[1].txt - 10/04/2012 19:37:34 (5116 Octet(s))

Fin à: 20:03:35, 10/04/2012

============== E.O.F ==============
0
Réponse 11 / 26
Boy94450 Messages postés 509 Date d'inscription dimanche 8 janvier 2012 Statut Membre Dernière intervention 14 avril 2012 4
10 avril 2012 à 20:11
/!\ Utilisateur de Windows Vista et Windows Seven : Clique droit sur le logo de Ad-Remover, « Exécuter en tant qu'Administrateur » /!\
* Lances Ad-Remover.
* Cliques sur le bouton [ Desinstaller ]
* Patientes ...

-----------------------

* Télécharges UsbFix sur ton Bureau.

Tutoriel USBFix

* Si votre antivirus affiche une alerte, ignorez-la et désactivez l'antivirus temporairement.
* Branchez toutes vos sources de données externes à votre PC (clé USB, disque dur externe, etc...) sans les ouvrir.
* Double cliquez sur UsbFix.exe.
* Cliquez sur "Suppression".
* Laissez travailler l'outil.
* À la fin du scan, un rapport va s'afficher, postez-le dans votre prochaine réponse sur le forum.
* Le rapport est aussi sauvegardé à la racine du disque système ( C:\UsbFix.txt ).
0
Réponse 12 / 26
Eternall Messages postés 149 Date d'inscription samedi 19 juillet 2008 Statut Membre Dernière intervention 29 octobre 2018 2
10 avril 2012 à 21:03
Merci voici le rapport :


############################## | UsbFix V 7.084 | [Suppression]

Utilisateur: Christian (Administrateur) # CHRISTIAN-PC
Mis à jour le 13/03/2012 par El Desaparecido
Lancé à 20:43:30 | 10/04/2012

Site Web: https://www.sosvirus.net/
Fichier suspect ? : http://eldesaparecido.com/upload.html
Contact: contact@eldesaparecido.com

PC: FUJITSU SIEMENS (AMD690VM-FMH) (X86-based PC) # Desktop Computer
CPU: AMD Athlon(tm) 64 X2 Dual Core Processor 5000+ (2600)
RAM -> [ Total : 3071 | Free : 1844 ]
BIOS: )Phoenix - Award WorkstationBIOS v6.00PG
BOOT: Normal boot

OS: Microsoft Windows 7 Édition Intégrale (6.1.7601 32-Bit) # Service Pack 1
WB: Windows Internet Explorer 9.0.8112.16421

SC: Security Center Service [ Enabled ]
WU: Windows Update Service [ Enabled ]
AV: avast! Antivirus [ Enabled | Updated ]
FW: Windows FireWall Service [ Enabled ]

C:\ (%systemdrive%) -> Disque fixe # 315 Go (250 Go libre(s) - 80%) [] # NTFS
D:\ -> Disque fixe # 466 Go (429 Go libre(s) - 92%) [Sauvegarde 2] # NTFS
E:\ -> Disque fixe # 151 Go (136 Go libre(s) - 90%) [Sauvegarde 1] # NTFS
F:\ -> CD-ROM
G:\ -> Disque fixe # 100 Mo (70 Mo libre(s) - 70%) [Réservé au système] # NTFS
L:\ -> CD-ROM

################## | Processus Actif |

C:\Windows\system32\csrss.exe (408)
C:\Windows\system32\wininit.exe (468)
C:\Windows\system32\csrss.exe (480)
C:\Windows\system32\services.exe (516)
C:\Windows\system32\lsass.exe (540)
C:\Windows\system32\lsm.exe (548)
C:\Windows\system32\winlogon.exe (604)
C:\Windows\system32\svchost.exe (708)
C:\Windows\system32\nvvsvc.exe (788)
C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe (812)
C:\Windows\system32\svchost.exe (852)
C:\Windows\System32\svchost.exe (924)
C:\Windows\System32\svchost.exe (1004)
C:\Windows\system32\svchost.exe (1028)
C:\Windows\system32\svchost.exe (1204)
C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (1248)
C:\Windows\system32\nvvsvc.exe (1268)
C:\Windows\system32\svchost.exe (1372)
C:\Program Files\AVAST Software\Avast\AvastSvc.exe (1452)
C:\Windows\system32\Dwm.exe (1700)
C:\Windows\System32\spoolsv.exe (1796)
C:\Windows\Explorer.EXE (1864)
C:\Windows\system32\svchost.exe (1912)
C:\Windows\system32\taskhost.exe (2008)
C:\Program Files\Adobe\Elements Organizer 8.0\PhotoshopElementsFileAgent.exe (1196)
C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe (640)
C:\Program Files\AVAST Software\Avast\AvastUI.exe (1656)
C:\Windows\system32\dgdersvc.exe (2276)
C:\Windows\system32\FsUsbExService.Exe (2344)
C:\Windows\system32\svchost.exe (2384)
C:\Program Files\TRENDnet\TEW-649UB\WlanWpsSvc.exe (2508)
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE (2548)
C:\Program Files\NVIDIA Corporation\Display\nvtray.exe (2556)
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe (2672)
C:\Program Files\Common Files\Java\Java Update\jusched.exe (2872)
C:\Windows\system32\svchost.exe (3040)
C:\Windows\system32\svchost.exe (3208)
C:\Windows\system32\WUDFHost.exe (3216)
C:\Windows\system32\SearchIndexer.exe (3484)
C:\Program Files\Windows Sidebar\sidebar.exe (3540)
C:\Program Files\Windows Media Player\wmpnetwk.exe (3620)
C:\Program Files\TRENDnet\TEW-649UB\WlanCU.exe (3716)
C:\Windows\System32\svchost.exe (1628)
C:\Windows\system32\DllHost.exe (3888)
C:\Users\Christian\AppData\Local\Google\Chrome\Application\chrome.exe (1288)
C:\Users\Christian\AppData\Local\Google\Chrome\Application\chrome.exe (4144)
C:\Users\Christian\AppData\Local\Google\Chrome\Application\chrome.exe (4348)
C:\Program Files\Nero\Update\NASvc.exe (4828)
C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe (4920)
C:\Windows\System32\svchost.exe (5004)
C:\Users\CHRIST~1\AppData\Local\Temp\Rar$EXa0.117\La t'oeuf de Paques\easter.exe (5996)
C:\Windows\system32\rundll32.exe (2436)
C:\Users\Christian\AppData\Local\Google\Chrome\Application\chrome.exe (5232)
C:\UsbFix\Go.exe (6132)
C:\Windows\system32\wbem\wmiprvse.exe (6140)

################## | Processus Stoppés |

Stoppé! C:\Windows\system32\nvvsvc.exe (788)
Stoppé! C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe (812)
Stoppé! C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (1248)
Stoppé! C:\Windows\system32\nvvsvc.exe (1268)
Stoppé! C:\Program Files\AVAST Software\Avast\AvastSvc.exe (1452)
Stoppé! C:\Windows\System32\spoolsv.exe (1796)
Stoppé! C:\Windows\system32\taskhost.exe (2008)
Stoppé! C:\Program Files\Adobe\Elements Organizer 8.0\PhotoshopElementsFileAgent.exe (1196)
Stoppé! C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe (640)
Stoppé! C:\Program Files\AVAST Software\Avast\AvastUI.exe (1656)
Stoppé! C:\Windows\system32\dgdersvc.exe (2276)
Stoppé! C:\Windows\system32\FsUsbExService.Exe (2344)
Stoppé! C:\Program Files\TRENDnet\TEW-649UB\WlanWpsSvc.exe (2508)
Stoppé! C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE (2548)
Stoppé! C:\Program Files\NVIDIA Corporation\Display\nvtray.exe (2556)
Stoppé! C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe (2672)
Stoppé! C:\Program Files\Common Files\Java\Java Update\jusched.exe (2872)
Stoppé! C:\Windows\system32\WUDFHost.exe (3216)
Stoppé! C:\Windows\system32\SearchIndexer.exe (3484)
Stoppé! C:\Program Files\Windows Sidebar\sidebar.exe (3540)
Stoppé! C:\Program Files\Windows Media Player\wmpnetwk.exe (3620)
Stoppé! C:\Program Files\TRENDnet\TEW-649UB\WlanCU.exe (3716)
Stoppé! C:\Windows\system32\DllHost.exe (3888)
Stoppé! C:\Users\Christian\AppData\Local\Google\Chrome\Application\chrome.exe (1288)
Stoppé! C:\Users\Christian\AppData\Local\Google\Chrome\Application\chrome.exe (4144)
Stoppé! C:\Program Files\Nero\Update\NASvc.exe (4828)
Stoppé! C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe (4920)
Stoppé! C:\Users\CHRIST~1\AppData\Local\Temp\Rar$EXa0.117\La t'oeuf de Paques\easter.exe (5996)
Stoppé! C:\Users\Christian\AppData\Local\Google\Chrome\Application\chrome.exe (5232)

################## | Éléments infectieux |

Supprimé! C:\$RECYCLE.BIN\S-1-5-20
Supprimé! C:\$RECYCLE.BIN\S-1-5-21-607835004-3816459630-421636401-1000
Supprimé! D:\$RECYCLE.BIN\S-1-5-18
Supprimé! D:\$RECYCLE.BIN\S-1-5-20
Supprimé! D:\$RECYCLE.BIN\S-1-5-21-150375667-2156141344-850597349-500
Supprimé! D:\$RECYCLE.BIN\S-1-5-21-3193967998-1669592852-327033642-1000
Supprimé! D:\$RECYCLE.BIN\S-1-5-21-3717022665-2281743327-743865946-1000
Supprimé! D:\$RECYCLE.BIN\S-1-5-21-607835004-3816459630-421636401-1000
Supprimé! E:\$RECYCLE.BIN\S-1-5-18
Supprimé! E:\$RECYCLE.BIN\S-1-5-21-150375667-2156141344-850597349-500
Supprimé! E:\$RECYCLE.BIN\S-1-5-21-3193967998-1669592852-327033642-1000
Supprimé! E:\$RECYCLE.BIN\S-1-5-21-3717022665-2281743327-743865946-1000
Supprimé! E:\$RECYCLE.BIN\S-1-5-21-607835004-3816459630-421636401-1000
Supprimé! G:\$RECYCLE.BIN\S-1-5-21-607835004-3816459630-421636401-1000

(!) Fichiers temporaires supprimés.

################## | Registre |


################## | Mountpoints2 |


################## | Listing |

[10/04/2012 - 20:50:39 | SHD ] C:\$Recycle.Bin
[19/02/2012 - 13:13:35 | N | 2006] C:\aqua_bitmap.cpp
[10/06/2009 - 23:42:20 | N | 24] C:\autoexec.bat
[10/06/2009 - 23:42:20 | N | 10] C:\config.sys
[14/07/2009 - 06:53:55 | SHD ] C:\Documents and Settings
[10/04/2012 - 20:05:24 | ASH | 2415517696] C:\hiberfil.sys
[14/12/2011 - 21:31:03 | RHD ] C:\MSOCache
[03/04/2012 - 22:15:16 | D ] C:\NVIDIA
[10/04/2012 - 20:05:30 | ASH | 3220692992] C:\pagefile.sys
[14/07/2009 - 04:37:05 | D ] C:\PerfLogs
[10/04/2012 - 20:40:59 | D ] C:\Program Files
[10/04/2012 - 19:44:22 | HD ] C:\ProgramData
[14/12/2011 - 18:54:50 | SHD ] C:\Recovery
[10/04/2012 - 18:59:50 | SHD ] C:\System Volume Information
[10/04/2012 - 20:50:39 | D ] C:\UsbFix
[10/04/2012 - 20:44:15 | A | 7863] C:\UsbFix.txt
[23/02/2012 - 17:06:49 | N | 1492] C:\user.js
[03/04/2012 - 22:22:12 | D ] C:\Users
[03/04/2012 - 22:25:17 | D ] C:\Windows
[10/04/2012 - 20:50:39 | SHD ] D:\$RECYCLE.BIN
[10/04/2012 - 18:50:56 | D ] D:\Boot
[10/04/2012 - 18:50:40 | RSH | 383786] D:\bootmgr
[13/12/2011 - 12:13:10 | D ] D:\Films
[22/11/2010 - 19:36:10 | D ] D:\Jeux
[05/01/2012 - 20:34:08 | D ] D:\Photos
[15/01/2012 - 18:53:49 | D ] D:\stoc musique diapo
[01/01/2007 - 04:35:55 | SHD ] D:\System Volume Information
[10/04/2012 - 18:50:49 | N | 206312] D:\XELDY
[10/04/2012 - 20:50:39 | SHD ] E:\$RECYCLE.BIN
[17/12/2011 - 11:05:55 | D ] E:\Documents
[01/11/2010 - 21:08:26 | D ] E:\Logiciels
[13/01/2012 - 18:33:23 | D ] E:\Musiques
[26/08/2011 - 02:06:02 | SHD ] E:\System Volume Information
[10/04/2012 - 20:50:39 | SHD ] G:\$RECYCLE.BIN
[14/12/2011 - 20:35:26 | D ] G:\Boot
[20/11/2010 - 14:40:07 | RASH | 383786] G:\bootmgr
[14/12/2011 - 18:46:13 | N | 8192] G:\BOOTSECT.BAK
[14/12/2011 - 18:48:03 | SHD ] G:\System Volume Information
[14/12/2011 - 19:11:20 | N | 206312] G:\XELDZ

################## | Vaccin |

C:\Autorun.inf -> Vaccin créé par UsbFix (El Desaparecido)
D:\Autorun.inf -> Vaccin créé par UsbFix (El Desaparecido)
E:\Autorun.inf -> Vaccin créé par UsbFix (El Desaparecido)
G:\Autorun.inf -> Vaccin créé par UsbFix (El Desaparecido)

################## | E.O.F |
0
Réponse 13 / 26
Eternall Messages postés 149 Date d'inscription samedi 19 juillet 2008 Statut Membre Dernière intervention 29 octobre 2018 2
10 avril 2012 à 21:48
Je ne sais pas s'il y a d'autre manip' à faire. En tous cas, il n'y a plus ces vilaines pages qui s'ouvrent, et je vous remercie.
Je dois partir. Si je dois faire encore des choses je reste à l'écoute.

Merci pour tout.
0
Réponse 14 / 26
Eternall Messages postés 149 Date d'inscription samedi 19 juillet 2008 Statut Membre Dernière intervention 29 octobre 2018 2
10 avril 2012 à 22:12
Voici le rapport :


RogueKiller V7.3.2 [20/03/2012] par Tigzy
mail: tigzyRK<at>gmail<dot>com
Remontees: https://www.luanagames.com/index.fr.html
Blog: http://tigzyrk.blogspot.com

Systeme d'exploitation: Windows 7 (6.1.7601 Service Pack 1) 32 bits version
Demarrage : Mode normal
Utilisateur: Christian [Droits d'admin]
Mode: Recherche -- Date: 10/04/2012 22:11:25

¤¤¤ Processus malicieux: 0 ¤¤¤

¤¤¤ Entrees de registre: 2 ¤¤¤
[HJ] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> FOUND
[HJ] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> FOUND

¤¤¤ Fichiers / Dossiers particuliers: ¤¤¤

¤¤¤ Driver: [CHARGE] ¤¤¤

¤¤¤ Infection : ¤¤¤

¤¤¤ Fichier HOSTS: ¤¤¤
127.0.0.1 validation.sls.microsoft.com


¤¤¤ MBR Verif: ¤¤¤

+++++ PhysicalDrive0: WDC WD5000AAKS-07YGA0 ATA Device +++++
--- User ---
[MBR] 4d36fa535af2d02705533c79f594feeb
[BSP] 297736df0b6b84eb1c24534aa293691b : Windows 7 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 100 Mo
1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 206848 | Size: 322527 Mo
2 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 660742144 | Size: 154311 Mo
User = LL1 ... OK!
User = LL2 ... OK!

+++++ PhysicalDrive1: WDC WD5000AAKS-07YGA0 ATA Device +++++
--- User ---
[MBR] d07fc9b2ae91cc82dc31454c8fc9079b
[BSP] f520294d06e465d8863239fe40e4865b : Windows XP MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 63 | Size: 476937 Mo
User = LL1 ... OK!
User = LL2 ... OK!

Termine : << RKreport[1].txt >>
RKreport[1].txt
0
Réponse 15 / 26
Boy94450 Messages postés 509 Date d'inscription dimanche 8 janvier 2012 Statut Membre Dernière intervention 14 avril 2012 4
10 avril 2012 à 22:13
* Quittes tous tes programmes ouverts !
/!\ Utilisateur de Windows Vista et Windows Seven : Clique droit sur le logo de RogueKiller, « Exécuter en tant qu'Administrateur » /!\
* Lance RogueKiller.exe
* Attends que le PreScan ait fini.
* Clique sur Suppresion.
/!\ Clique sur Rapport et copiez-collez le contenu du Bloc-note /!\
* Puis Cliquez sur Rac. RAZ
0
Réponse 16 / 26
Eternall Messages postés 149 Date d'inscription samedi 19 juillet 2008 Statut Membre Dernière intervention 29 octobre 2018 2
10 avril 2012 à 22:16
RogueKiller V7.3.2 [20/03/2012] par Tigzy
mail: tigzyRK<at>gmail<dot>com
Remontees: https://www.luanagames.com/index.fr.html
Blog: http://tigzyrk.blogspot.com

Systeme d'exploitation: Windows 7 (6.1.7601 Service Pack 1) 32 bits version
Demarrage : Mode normal
Utilisateur: Christian [Droits d'admin]
Mode: Suppression -- Date: 10/04/2012 22:16:41

¤¤¤ Processus malicieux: 0 ¤¤¤

¤¤¤ Entrees de registre: 2 ¤¤¤
[HJ] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> REPLACED (0)
[HJ] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> REPLACED (0)

¤¤¤ Fichiers / Dossiers particuliers: ¤¤¤

¤¤¤ Driver: [CHARGE] ¤¤¤

¤¤¤ Infection : ¤¤¤

¤¤¤ Fichier HOSTS: ¤¤¤
127.0.0.1 validation.sls.microsoft.com


¤¤¤ MBR Verif: ¤¤¤

+++++ PhysicalDrive0: WDC WD5000AAKS-07YGA0 ATA Device +++++
--- User ---
[MBR] 4d36fa535af2d02705533c79f594feeb
[BSP] 297736df0b6b84eb1c24534aa293691b : Windows 7 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 100 Mo
1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 206848 | Size: 322527 Mo
2 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 660742144 | Size: 154311 Mo
User = LL1 ... OK!
User = LL2 ... OK!

+++++ PhysicalDrive1: WDC WD5000AAKS-07YGA0 ATA Device +++++
--- User ---
[MBR] d07fc9b2ae91cc82dc31454c8fc9079b
[BSP] f520294d06e465d8863239fe40e4865b : Windows XP MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 63 | Size: 476937 Mo
User = LL1 ... OK!
User = LL2 ... OK!

Termine : << RKreport[3].txt >>
RKreport[1].txt ; RKreport[2].txt ; RKreport[3].txt
0
Réponse 17 / 26
Boy94450 Messages postés 509 Date d'inscription dimanche 8 janvier 2012 Statut Membre Dernière intervention 14 avril 2012 4
10 avril 2012 à 22:18
* Télécharges TDSSKiller sur ton Bureau.

/!\ Utilisateur de Windows Vista et Windows Seven : Clique droit sur le logo de TDSSKiller, « Exécuter en tant qu'Administrateur » /!\
* Clique sur [ Start Scan ] pour démarrer l'analyse.
* Si des élements sont trouvés, cliques sur [Continue] puis sur [Reboot Now]
* Un rapport s'ouvrira au redémarrage du PC.
* Copies & Colles son contenu dans ta prochaine réponse.

Note : Le rapport se trouve également sous C:\TDSSKiller.N°deversion_Date_Heure_log.txt.
0
Réponse 18 / 26
Eternall Messages postés 149 Date d'inscription samedi 19 juillet 2008 Statut Membre Dernière intervention 29 octobre 2018 2
10 avril 2012 à 22:22
Aucun élément trouvé.
0
Réponse 19 / 26
Eternall Messages postés 149 Date d'inscription samedi 19 juillet 2008 Statut Membre Dernière intervention 29 octobre 2018 2
10 avril 2012 à 22:22
22:20:41.0705 3468 TDSS rootkit removing tool 2.7.28.0 Apr 10 2012 16:54:05
22:20:41.0830 3468 ============================================================
22:20:41.0830 3468 Current date / time: 2012/04/10 22:20:41.0830
22:20:41.0830 3468 SystemInfo:
22:20:41.0830 3468
22:20:41.0830 3468 OS Version: 6.1.7601 ServicePack: 1.0
22:20:41.0830 3468 Product type: Workstation
22:20:41.0830 3468 ComputerName: CHRISTIAN-PC
22:20:41.0830 3468 UserName: Christian
22:20:41.0830 3468 Windows directory: C:\Windows
22:20:41.0830 3468 System windows directory: C:\Windows
22:20:41.0830 3468 Processor architecture: Intel x86
22:20:41.0830 3468 Number of processors: 2
22:20:41.0830 3468 Page size: 0x1000
22:20:41.0830 3468 Boot type: Normal boot
22:20:41.0830 3468 ============================================================
22:20:43.0002 3468 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xFC59, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xF0, Type 'K0', Flags 0x00000050
22:20:43.0018 3468 Drive \Device\Harddisk1\DR1 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
22:20:43.0039 3468 \Device\Harddisk0\DR0:
22:20:43.0040 3468 MBR used
22:20:43.0040 3468 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
22:20:43.0040 3468 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x275EF800
22:20:43.0040 3468 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x27622000, BlocksNum 0x12D63800
22:20:43.0040 3468 \Device\Harddisk1\DR1:
22:20:43.0040 3468 MBR used
22:20:43.0040 3468 \Device\Harddisk1\DR1\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x3A384C02
22:20:43.0163 3468 Initialize success
22:20:43.0163 3468 ============================================================
22:20:51.0699 3640 ============================================================
22:20:51.0699 3640 Scan started
22:20:51.0699 3640 Mode: Manual;
22:20:51.0699 3640 ============================================================
22:20:52.0354 3640 1394ohci (1b133875b8aa8ac48969bd3458afe9f5) C:\Windows\system32\drivers\1394ohci.sys
22:20:52.0354 3640 1394ohci - ok
22:20:52.0401 3640 ACPI (cea80c80bed809aa0da6febc04733349) C:\Windows\system32\drivers\ACPI.sys
22:20:52.0401 3640 ACPI - ok
22:20:52.0447 3640 AcpiPmi (1efbc664abff416d1d07db115dcb264f) C:\Windows\system32\drivers\acpipmi.sys
22:20:52.0447 3640 AcpiPmi - ok
22:20:52.0525 3640 AdobeActiveFileMonitor8.0 (4451cc2275b04043ec2bcc757af97291) C:\Program Files\Adobe\Elements Organizer 8.0\PhotoshopElementsFileAgent.exe
22:20:52.0541 3640 AdobeActiveFileMonitor8.0 - ok
22:20:52.0603 3640 AdobeARMservice (62b7936f9036dd6ed36e6a7efa805dc0) C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
22:20:52.0619 3640 AdobeARMservice - ok
22:20:52.0666 3640 adp94xx (21e785ebd7dc90a06391141aac7892fb) C:\Windows\system32\DRIVERS\adp94xx.sys
22:20:52.0666 3640 adp94xx - ok
22:20:52.0697 3640 adpahci (0c676bc278d5b59ff5abd57bbe9123f2) C:\Windows\system32\DRIVERS\adpahci.sys
22:20:52.0713 3640 adpahci - ok
22:20:52.0728 3640 adpu320 (7c7b5ee4b7b822ec85321fe23a27db33) C:\Windows\system32\DRIVERS\adpu320.sys
22:20:52.0728 3640 adpu320 - ok
22:20:52.0744 3640 AeLookupSvc (8b5eefeec1e6d1a72a06c526628ad161) C:\Windows\System32\aelupsvc.dll
22:20:52.0759 3640 AeLookupSvc - ok
22:20:52.0822 3640 AFD (9ebbba55060f786f0fcaa3893bfa2806) C:\Windows\system32\drivers\afd.sys
22:20:52.0822 3640 AFD - ok
22:20:52.0837 3640 agp440 (507812c3054c21cef746b6ee3d04dd6e) C:\Windows\system32\drivers\agp440.sys
22:20:52.0837 3640 agp440 - ok
22:20:52.0884 3640 aic78xx (8b30250d573a8f6b4bd23195160d8707) C:\Windows\system32\DRIVERS\djsvs.sys
22:20:52.0884 3640 aic78xx - ok
22:20:52.0915 3640 ALG (18a54e132947cd98fea9accc57f98f13) C:\Windows\System32\alg.exe
22:20:52.0915 3640 ALG - ok
22:20:52.0931 3640 aliide (0d40bcf52ea90fc7df2aeab6503dea44) C:\Windows\system32\drivers\aliide.sys
22:20:52.0931 3640 aliide - ok
22:20:52.0947 3640 amdagp (3c6600a0696e90a463771c7422e23ab5) C:\Windows\system32\drivers\amdagp.sys
22:20:52.0947 3640 amdagp - ok
22:20:52.0962 3640 amdide (cd5914170297126b6266860198d1d4f0) C:\Windows\system32\drivers\amdide.sys
22:20:52.0962 3640 amdide - ok
22:20:53.0009 3640 AmdK8 (00dda200d71bac534bf56a9db5dfd666) C:\Windows\system32\DRIVERS\amdk8.sys
22:20:53.0009 3640 AmdK8 - ok
22:20:53.0103 3640 AmdPPM (3cbf30f5370fda40dd3e87df38ea53b6) C:\Windows\system32\DRIVERS\amdppm.sys
22:20:53.0103 3640 AmdPPM - ok
22:20:53.0134 3640 amdsata (d320bf87125326f996d4904fe24300fc) C:\Windows\system32\drivers\amdsata.sys
22:20:53.0134 3640 amdsata - ok
22:20:53.0181 3640 amdsbs (ea43af0c423ff267355f74e7a53bdaba) C:\Windows\system32\DRIVERS\amdsbs.sys
22:20:53.0181 3640 amdsbs - ok
22:20:53.0212 3640 amdxata (46387fb17b086d16dea267d5be23a2f2) C:\Windows\system32\drivers\amdxata.sys
22:20:53.0212 3640 amdxata - ok
22:20:53.0243 3640 AppID (aea177f783e20150ace5383ee368da19) C:\Windows\system32\drivers\appid.sys
22:20:53.0243 3640 AppID - ok
22:20:53.0274 3640 AppIDSvc (62a9c86cb6085e20db4823e4e97826f5) C:\Windows\System32\appidsvc.dll
22:20:53.0274 3640 AppIDSvc - ok
22:20:53.0305 3640 Appinfo (fb1959012294d6ad43e5304df65e3c26) C:\Windows\System32\appinfo.dll
22:20:53.0305 3640 Appinfo - ok
22:20:53.0352 3640 AppMgmt (a45d184df6a8803da13a0b329517a64a) C:\Windows\System32\appmgmts.dll
22:20:53.0352 3640 AppMgmt - ok
22:20:53.0368 3640 arc (2932004f49677bd84dbc72edb754ffb3) C:\Windows\system32\DRIVERS\arc.sys
22:20:53.0368 3640 arc - ok
22:20:53.0399 3640 arcsas (5d6f36c46fd283ae1b57bd2e9feb0bc7) C:\Windows\system32\DRIVERS\arcsas.sys
22:20:53.0399 3640 arcsas - ok
22:20:53.0430 3640 aswFsBlk (0ae43c6c411254049279c2ee55630f95) C:\Windows\system32\drivers\aswFsBlk.sys
22:20:53.0430 3640 aswFsBlk - ok
22:20:53.0461 3640 aswMonFlt (6693141560b1615d8dccf0d8eb00087e) C:\Windows\system32\drivers\aswMonFlt.sys
22:20:53.0461 3640 aswMonFlt - ok
22:20:53.0508 3640 aswRdr (225013c16fe096714d71649ad7a20e8b) C:\Windows\System32\Drivers\aswrdr2.sys
22:20:53.0508 3640 aswRdr - ok
22:20:53.0539 3640 aswSnx (dcb199b967375753b5019ec15f008f53) C:\Windows\system32\drivers\aswSnx.sys
22:20:53.0539 3640 aswSnx - ok
22:20:53.0571 3640 aswSP (b32873e5a1443c0a1e322266e203bf10) C:\Windows\system32\drivers\aswSP.sys
22:20:53.0571 3640 aswSP - ok
22:20:53.0586 3640 aswTdi (6ff544175a9180c5d88534d3d9c9a9f7) C:\Windows\system32\drivers\aswTdi.sys
22:20:53.0586 3640 aswTdi - ok
22:20:53.0617 3640 AsyncMac (add2ade1c2b285ab8378d2daaf991481) C:\Windows\system32\DRIVERS\asyncmac.sys
22:20:53.0617 3640 AsyncMac - ok
22:20:53.0633 3640 atapi (338c86357871c167a96ab976519bf59e) C:\Windows\system32\drivers\atapi.sys
22:20:53.0633 3640 atapi - ok
22:20:53.0695 3640 athrusb (44fa26470d4c8123ccf71f4200b782d3) C:\Windows\system32\DRIVERS\athrusb.sys
22:20:53.0695 3640 athrusb - ok
22:20:53.0742 3640 AudioEndpointBuilder (ce3b4e731638d2ef62fcb419be0d39f0) C:\Windows\System32\Audiosrv.dll
22:20:53.0758 3640 AudioEndpointBuilder - ok
22:20:53.0758 3640 Audiosrv (ce3b4e731638d2ef62fcb419be0d39f0) C:\Windows\System32\Audiosrv.dll
22:20:53.0758 3640 Audiosrv - ok
22:20:53.0789 3640 avast! Antivirus (4041d31508a2a084dfb42c595854090f) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
22:20:53.0805 3640 avast! Antivirus - ok
22:20:53.0836 3640 AxInstSV (6e30d02aac9cac84f421622e3a2f6178) C:\Windows\System32\AxInstSV.dll
22:20:53.0836 3640 AxInstSV - ok
22:20:53.0867 3640 b06bdrv (1a231abec60fd316ec54c66715543cec) C:\Windows\system32\DRIVERS\bxvbdx.sys
22:20:53.0867 3640 b06bdrv - ok
22:20:53.0914 3640 b57nd60x (bd8869eb9cde6bbe4508d869929869ee) C:\Windows\system32\DRIVERS\b57nd60x.sys
22:20:53.0914 3640 b57nd60x - ok
22:20:53.0945 3640 BDESVC (ee1e9c3bb8228ae423dd38db69128e71) C:\Windows\System32\bdesvc.dll
22:20:53.0945 3640 BDESVC - ok
22:20:53.0961 3640 Beep (505506526a9d467307b3c393dedaf858) C:\Windows\system32\drivers\Beep.sys
22:20:53.0961 3640 Beep - ok
22:20:54.0007 3640 BFE (1e2bac209d184bb851e1a187d8a29136) C:\Windows\System32\bfe.dll
22:20:54.0007 3640 BFE - ok
22:20:54.0039 3640 BITS (e585445d5021971fae10393f0f1c3961) C:\Windows\System32\qmgr.dll
22:20:54.0070 3640 BITS - ok
22:20:54.0085 3640 blbdrive (2287078ed48fcfc477b05b20cf38f36f) C:\Windows\system32\DRIVERS\blbdrive.sys
22:20:54.0085 3640 blbdrive - ok
22:20:54.0117 3640 bowser (8f2da3028d5fcbd1a060a3de64cd6506) C:\Windows\system32\DRIVERS\bowser.sys
22:20:54.0117 3640 bowser - ok
22:20:54.0148 3640 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\DRIVERS\BrFiltLo.sys
22:20:54.0148 3640 BrFiltLo - ok
22:20:54.0163 3640 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\DRIVERS\BrFiltUp.sys
22:20:54.0179 3640 BrFiltUp - ok
22:20:54.0210 3640 Browser (6e11f33d14d020f58d5e02e4d67dfa19) C:\Windows\System32\browser.dll
22:20:54.0210 3640 Browser - ok
22:20:54.0257 3640 Brserid (845b8ce732e67f3b4133164868c666ea) C:\Windows\System32\Drivers\Brserid.sys
22:20:54.0257 3640 Brserid - ok
22:20:54.0288 3640 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\System32\Drivers\BrSerWdm.sys
22:20:54.0288 3640 BrSerWdm - ok
22:20:54.0319 3640 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\System32\Drivers\BrUsbMdm.sys
22:20:54.0319 3640 BrUsbMdm - ok
22:20:54.0351 3640 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\System32\Drivers\BrUsbSer.sys
22:20:54.0351 3640 BrUsbSer - ok
22:20:54.0366 3640 BTHMODEM (ed3df7c56ce0084eb2034432fc56565a) C:\Windows\system32\DRIVERS\bthmodem.sys
22:20:54.0382 3640 BTHMODEM - ok
22:20:54.0429 3640 bthserv (1df19c96eef6c29d1c3e1a8678e07190) C:\Windows\system32\bthserv.dll
22:20:54.0429 3640 bthserv - ok
22:20:54.0460 3640 cdfs (77ea11b065e0a8ab902d78145ca51e10) C:\Windows\system32\DRIVERS\cdfs.sys
22:20:54.0475 3640 cdfs - ok
22:20:54.0522 3640 cdrom (be167ed0fdb9c1fa1133953c18d5a6c9) C:\Windows\system32\DRIVERS\cdrom.sys
22:20:54.0522 3640 cdrom - ok
22:20:54.0553 3640 CertPropSvc (319c6b309773d063541d01df8ac6f55f) C:\Windows\System32\certprop.dll
22:20:54.0553 3640 CertPropSvc - ok
22:20:54.0569 3640 circlass (3fe3fe94a34df6fb06e6418d0f6a0060) C:\Windows\system32\DRIVERS\circlass.sys
22:20:54.0569 3640 circlass - ok
22:20:54.0600 3640 CLFS (635181e0e9bbf16871bf5380d71db02d) C:\Windows\system32\CLFS.sys
22:20:54.0616 3640 CLFS - ok
22:20:54.0678 3640 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
22:20:54.0678 3640 clr_optimization_v2.0.50727_32 - ok
22:20:54.0741 3640 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
22:20:54.0741 3640 clr_optimization_v4.0.30319_32 - ok
22:20:54.0756 3640 CmBatt (dea805815e587dad1dd2c502220b5616) C:\Windows\system32\DRIVERS\CmBatt.sys
22:20:54.0756 3640 CmBatt - ok
22:20:54.0772 3640 cmdide (c537b1db64d495b9b4717b4d6d9edbf2) C:\Windows\system32\drivers\cmdide.sys
22:20:54.0772 3640 cmdide - ok
22:20:54.0819 3640 CNG (6427525d76f61d0c519b008d3680e8e7) C:\Windows\system32\Drivers\cng.sys
22:20:54.0819 3640 CNG - ok
22:20:54.0834 3640 Compbatt (a6023d3823c37043986713f118a89bee) C:\Windows\system32\DRIVERS\compbatt.sys
22:20:54.0834 3640 Compbatt - ok
22:20:54.0865 3640 CompositeBus (cbe8c58a8579cfe5fccf809e6f114e89) C:\Windows\system32\drivers\CompositeBus.sys
22:20:54.0865 3640 CompositeBus - ok
22:20:54.0881 3640 COMSysApp - ok
22:20:54.0912 3640 crcdisk (2c4ebcfc84a9b44f209dff6c6e6c61d1) C:\Windows\system32\DRIVERS\crcdisk.sys
22:20:54.0912 3640 crcdisk - ok
22:20:54.0943 3640 CryptSvc (a585bebf7d054bd9618eda0922d5484a) C:\Windows\system32\cryptsvc.dll
22:20:54.0943 3640 CryptSvc - ok
22:20:54.0975 3640 CSC (3c2177a897b4ca2788c6fb0c3fd81d4b) C:\Windows\system32\drivers\csc.sys
22:20:54.0975 3640 CSC - ok
22:20:55.0006 3640 CscService (15f93b37f6801943360d9eb42485d5d3) C:\Windows\System32\cscsvc.dll
22:20:55.0021 3640 CscService - ok
22:20:55.0037 3640 DcomLaunch (7660f01d3b38aca1747e397d21d790af) C:\Windows\system32\rpcss.dll
22:20:55.0053 3640 DcomLaunch - ok
22:20:55.0084 3640 defragsvc (8d6e10a2d9a5eed59562d9b82cf804e1) C:\Windows\System32\defragsvc.dll
22:20:55.0099 3640 defragsvc - ok
22:20:55.0115 3640 DfsC (f024449c97ec1e464aaffda18593db88) C:\Windows\system32\Drivers\dfsc.sys
22:20:55.0115 3640 DfsC - ok
22:20:55.0162 3640 dgderdrv (4f63ff698dc72ec2ec0262427f8b53cb) C:\Windows\system32\drivers\dgderdrv.sys
22:20:55.0162 3640 dgderdrv - ok
22:20:55.0177 3640 dgdersvc (aee4adefc56bf0ed1f80a37b1c3848d0) C:\Windows\system32\dgdersvc.exe
22:20:55.0177 3640 dgdersvc - ok
22:20:55.0193 3640 Dhcp (e9e01eb683c132f7fa27cd607b8a2b63) C:\Windows\system32\dhcpcore.dll
22:20:55.0209 3640 Dhcp - ok
22:20:55.0224 3640 discache (1a050b0274bfb3890703d490f330c0da) C:\Windows\system32\drivers\discache.sys
22:20:55.0224 3640 discache - ok
22:20:55.0271 3640 Disk (565003f326f99802e68ca78f2a68e9ff) C:\Windows\system32\DRIVERS\disk.sys
22:20:55.0271 3640 Disk - ok
22:20:55.0302 3640 Dnscache (33ef4861f19a0736b11314aad9ae28d0) C:\Windows\System32\dnsrslvr.dll
22:20:55.0302 3640 Dnscache - ok
22:20:55.0333 3640 dot3svc (366ba8fb4b7bb7435e3b9eacb3843f67) C:\Windows\System32\dot3svc.dll
22:20:55.0333 3640 dot3svc - ok
22:20:55.0365 3640 DPS (8ec04ca86f1d68da9e11952eb85973d6) C:\Windows\system32\dps.dll
22:20:55.0365 3640 DPS - ok
22:20:55.0443 3640 driverhardwarev2 (0f1189883690949ba7a9f68339587e51) C:\Program Files\ma-config.com\Drivers\driverhardwarev2.sys
22:20:55.0443 3640 driverhardwarev2 - ok
22:20:55.0489 3640 drmkaud (b918e7c5f9bf77202f89e1a9539f2eb4) C:\Windows\system32\drivers\drmkaud.sys
22:20:55.0489 3640 drmkaud - ok
22:20:55.0536 3640 dtsoftbus01 (fb38473835476a6fb272215a1d972af9) C:\Windows\system32\DRIVERS\dtsoftbus01.sys
22:20:55.0536 3640 dtsoftbus01 - ok
22:20:55.0614 3640 DXGKrnl (23f5d28378a160352ba8f817bd8c71cb) C:\Windows\System32\drivers\dxgkrnl.sys
22:20:55.0630 3640 DXGKrnl - ok
22:20:55.0645 3640 EapHost (8600142fa91c1b96367d3300ad0f3f3a) C:\Windows\System32\eapsvc.dll
22:20:55.0661 3640 EapHost - ok
22:20:55.0755 3640 ebdrv (024e1b5cac09731e4d868e64dbfb4ab0) C:\Windows\system32\DRIVERS\evbdx.sys
22:20:55.0786 3640 ebdrv - ok
22:20:55.0817 3640 EFS (81951f51e318aecc2d68559e47485cc4) C:\Windows\System32\lsass.exe
22:20:55.0817 3640 EFS - ok
22:20:55.0864 3640 ehRecvr (a8c362018efc87beb013ee28f29c0863) C:\Windows\ehome\ehRecvr.exe
22:20:55.0879 3640 ehRecvr - ok
22:20:55.0911 3640 ehSched (d389bff34f80caede417bf9d1507996a) C:\Windows\ehome\ehsched.exe
22:20:55.0911 3640 ehSched - ok
22:20:55.0942 3640 elxstor (0ed67910c8c326796faa00b2bf6d9d3c) C:\Windows\system32\DRIVERS\elxstor.sys
22:20:55.0942 3640 elxstor - ok
22:20:55.0973 3640 ErrDev (8fc3208352dd3912c94367a206ab3f11) C:\Windows\system32\drivers\errdev.sys
22:20:55.0973 3640 ErrDev - ok
22:20:56.0004 3640 EventSystem (f6916efc29d9953d5d0df06882ae8e16) C:\Windows\system32\es.dll
22:20:56.0020 3640 EventSystem - ok
22:20:56.0035 3640 exfat (2dc9108d74081149cc8b651d3a26207f) C:\Windows\system32\drivers\exfat.sys
22:20:56.0035 3640 exfat - ok
22:20:56.0051 3640 fastfat (7e0ab74553476622fb6ae36f73d97d35) C:\Windows\system32\drivers\fastfat.sys
22:20:56.0051 3640 fastfat - ok
22:20:56.0098 3640 Fax (967ea5b213e9984cbe270205df37755b) C:\Windows\system32\fxssvc.exe
22:20:56.0098 3640 Fax - ok
22:20:56.0129 3640 fdc (e817a017f82df2a1f8cfdbda29388b29) C:\Windows\system32\DRIVERS\fdc.sys
22:20:56.0129 3640 fdc - ok
22:20:56.0145 3640 fdPHost (f3222c893bd2f5821a0179e5c71e88fb) C:\Windows\system32\fdPHost.dll
22:20:56.0145 3640 fdPHost - ok
22:20:56.0160 3640 FDResPub (7dbe8cbfe79efbdeb98c9fb08d3a9a5b) C:\Windows\system32\fdrespub.dll
22:20:56.0160 3640 FDResPub - ok
22:20:56.0176 3640 FileInfo (6cf00369c97f3cf563be99be983d13d8) C:\Windows\system32\drivers\fileinfo.sys
22:20:56.0176 3640 FileInfo - ok
22:20:56.0191 3640 Filetrace (42c51dc94c91da21cb9196eb64c45db9) C:\Windows\system32\drivers\filetrace.sys
22:20:56.0191 3640 Filetrace - ok
22:20:56.0254 3640 FLEXnet Licensing Service (abedfd48ac042c6aaad32452e77217a1) C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
22:20:56.0285 3640 FLEXnet Licensing Service - ok
22:20:56.0316 3640 flpydisk (87907aa70cb3c56600f1c2fb8841579b) C:\Windows\system32\DRIVERS\flpydisk.sys
22:20:56.0316 3640 flpydisk - ok
22:20:56.0363 3640 FltMgr (7520ec808e0c35e0ee6f841294316653) C:\Windows\system32\drivers\fltmgr.sys
22:20:56.0363 3640 FltMgr - ok
22:20:56.0410 3640 FontCache (b3a5ec6b6b6673db7e87c2bcdbddc074) C:\Windows\system32\FntCache.dll
22:20:56.0441 3640 FontCache - ok
22:20:56.0503 3640 FontCache3.0.0.0 (e56f39f6b7fda0ac77a79b0fd3de1a2f) C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
22:20:56.0503 3640 FontCache3.0.0.0 - ok
22:20:56.0535 3640 FsDepends (1a16b57943853e598cff37fe2b8cbf1d) C:\Windows\system32\drivers\FsDepends.sys
22:20:56.0535 3640 FsDepends - ok
22:20:56.0597 3640 FsUsbExDisk (b07663a810e861eebfd0eac7e82ca62d) C:\Windows\system32\FsUsbExDisk.SYS
22:20:56.0613 3640 FsUsbExDisk - ok
22:20:56.0644 3640 FsUsbExService (f96c429788350db4ba6771c3034dfd88) C:\Windows\system32\FsUsbExService.Exe
22:20:56.0659 3640 FsUsbExService - ok
22:20:56.0675 3640 Fs_Rec (a574b4360e438977038aae4bf60d79a2) C:\Windows\system32\drivers\Fs_Rec.sys
22:20:56.0675 3640 Fs_Rec - ok
22:20:56.0722 3640 fvevol (8a73e79089b282100b9393b644cb853b) C:\Windows\system32\DRIVERS\fvevol.sys
22:20:56.0737 3640 fvevol - ok
22:20:56.0769 3640 gagp30kx (65ee0c7a58b65e74ae05637418153938) C:\Windows\system32\DRIVERS\gagp30kx.sys
22:20:56.0769 3640 gagp30kx - ok
22:20:56.0815 3640 gpsvc (e897eaf5ed6ba41e081060c9b447a673) C:\Windows\System32\gpsvc.dll
22:20:56.0831 3640 gpsvc - ok
22:20:56.0893 3640 gupdate (f02a533f517eb38333cb12a9e8963773) C:\Program Files\Google\Update\GoogleUpdate.exe
22:20:56.0893 3640 gupdate - ok
22:20:56.0909 3640 gupdatem (f02a533f517eb38333cb12a9e8963773) C:\Program Files\Google\Update\GoogleUpdate.exe
22:20:56.0909 3640 gupdatem - ok
22:20:56.0971 3640 gusvc (c1b577b2169900f4cf7190c39f085794) C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
22:20:56.0971 3640 gusvc - ok
22:20:56.0987 3640 hcw85cir (c44e3c2bab6837db337ddee7544736db) C:\Windows\system32\drivers\hcw85cir.sys
22:20:56.0987 3640 hcw85cir - ok
22:20:57.0049 3640 HdAudAddService (a5ef29d5315111c80a5c1abad14c8972) C:\Windows\system32\drivers\HdAudio.sys
22:20:57.0049 3640 HdAudAddService - ok
22:20:57.0081 3640 HDAudBus (9036377b8a6c15dc2eec53e489d159b5) C:\Windows\system32\drivers\HDAudBus.sys
22:20:57.0081 3640 HDAudBus - ok
22:20:57.0096 3640 HidBatt (1d58a7f3e11a9731d0eaaaa8405acc36) C:\Windows\system32\DRIVERS\HidBatt.sys
22:20:57.0096 3640 HidBatt - ok
22:20:57.0112 3640 HidBth (89448f40e6df260c206a193a4683ba78) C:\Windows\system32\DRIVERS\hidbth.sys
22:20:57.0112 3640 HidBth - ok
22:20:57.0143 3640 HidIr (cf50b4cf4a4f229b9f3c08351f99ca5e) C:\Windows\system32\DRIVERS\hidir.sys
22:20:57.0143 3640 HidIr - ok
22:20:57.0174 3640 hidserv (2bc6f6a1992b3a77f5f41432ca6b3b6b) C:\Windows\system32\hidserv.dll
22:20:57.0174 3640 hidserv - ok
22:20:57.0205 3640 HidUsb (10c19f8290891af023eaec0832e1eb4d) C:\Windows\system32\drivers\hidusb.sys
22:20:57.0205 3640 HidUsb - ok
22:20:57.0237 3640 hkmsvc (196b4e3f4cccc24af836ce58facbb699) C:\Windows\system32\kmsvc.dll
22:20:57.0237 3640 hkmsvc - ok
22:20:57.0268 3640 HomeGroupListener (6658f4404de03d75fe3ba09f7aba6a30) C:\Windows\system32\ListSvc.dll
22:20:57.0268 3640 HomeGroupListener - ok
22:20:57.0299 3640 HomeGroupProvider (dbc02d918fff1cad628acbe0c0eaa8e8) C:\Windows\system32\provsvc.dll
22:20:57.0315 3640 HomeGroupProvider - ok
22:20:57.0330 3640 HpSAMD (295fdc419039090eb8b49ffdbb374549) C:\Windows\system32\drivers\HpSAMD.sys
22:20:57.0330 3640 HpSAMD - ok
22:20:57.0377 3640 HTTP (871917b07a141bff43d76d8844d48106) C:\Windows\system32\drivers\HTTP.sys
22:20:57.0393 3640 HTTP - ok
22:20:57.0408 3640 hwpolicy (0c4e035c7f105f1299258c90886c64c5) C:\Windows\system32\drivers\hwpolicy.sys
22:20:57.0408 3640 hwpolicy - ok
22:20:57.0424 3640 i8042prt (f151f0bdc47f4a28b1b20a0818ea36d6) C:\Windows\system32\drivers\i8042prt.sys
22:20:57.0424 3640 i8042prt - ok
22:20:57.0455 3640 iaStorV (5cd5f9a5444e6cdcb0ac89bd62d8b76e) C:\Windows\system32\drivers\iaStorV.sys
22:20:57.0455 3640 iaStorV - ok
22:20:57.0517 3640 idsvc (c521d7eb6497bb1af6afa89e322fb43c) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
22:20:57.0549 3640 idsvc - ok
22:20:57.0595 3640 iirsp (4173ff5708f3236cf25195fecd742915) C:\Windows\system32\DRIVERS\iirsp.sys
22:20:57.0595 3640 iirsp - ok
22:20:57.0627 3640 IKEEXT (f95622f161474511b8d80d6b093aa610) C:\Windows\System32\ikeext.dll
22:20:57.0658 3640 IKEEXT - ok
22:20:57.0673 3640 intelide (a0f12f2c9ba6c72f3987ce780e77c130) C:\Windows\system32\drivers\intelide.sys
22:20:57.0673 3640 intelide - ok
22:20:57.0705 3640 intelppm (3b514d27bfc4accb4037bc6685f766e0) C:\Windows\system32\DRIVERS\intelppm.sys
22:20:57.0705 3640 intelppm - ok
22:20:57.0736 3640 IPBusEnum (acb364b9075a45c0736e5c47be5cae19) C:\Windows\system32\ipbusenum.dll
22:20:57.0736 3640 IPBusEnum - ok
22:20:57.0751 3640 IpFilterDriver (709d1761d3b19a932ff0238ea6d50200) C:\Windows\system32\DRIVERS\ipfltdrv.sys
22:20:57.0751 3640 IpFilterDriver - ok
22:20:57.0783 3640 iphlpsvc (4d65a07b795d6674312f879d09aa7663) C:\Windows\System32\iphlpsvc.dll
22:20:57.0798 3640 iphlpsvc - ok
22:20:57.0814 3640 IPMIDRV (4bd7134618c1d2a27466a099062547bf) C:\Windows\system32\drivers\IPMIDrv.sys
22:20:57.0814 3640 IPMIDRV - ok
22:20:57.0845 3640 IPNAT (a5fa468d67abcdaa36264e463a7bb0cd) C:\Windows\system32\drivers\ipnat.sys
22:20:57.0845 3640 IPNAT - ok
22:20:57.0876 3640 IRENUM (42996cff20a3084a56017b7902307e9f) C:\Windows\system32\drivers\irenum.sys
22:20:57.0876 3640 IRENUM - ok
22:20:57.0892 3640 isapnp (1f32bb6b38f62f7df1a7ab7292638a35) C:\Windows\system32\drivers\isapnp.sys
22:20:57.0892 3640 isapnp - ok
22:20:57.0923 3640 iScsiPrt (cb7a9abb12b8415bce5d74994c7ba3ae) C:\Windows\system32\drivers\msiscsi.sys
22:20:57.0923 3640 iScsiPrt - ok
22:20:57.0954 3640 kbdclass (adef52ca1aeae82b50df86b56413107e) C:\Windows\system32\drivers\kbdclass.sys
22:20:57.0954 3640 kbdclass - ok
22:20:57.0970 3640 kbdhid (9e3ced91863e6ee98c24794d05e27a71) C:\Windows\system32\drivers\kbdhid.sys
22:20:57.0970 3640 kbdhid - ok
22:20:58.0001 3640 KeyIso (81951f51e318aecc2d68559e47485cc4) C:\Windows\system32\lsass.exe
22:20:58.0001 3640 KeyIso - ok
22:20:58.0017 3640 KSecDD (f4647bb23db9038a7536cf6b68f4207f) C:\Windows\system32\Drivers\ksecdd.sys
22:20:58.0032 3640 KSecDD - ok
22:20:58.0048 3640 KSecPkg (e73cae53bbb72ba26918492c6b4c229d) C:\Windows\system32\Drivers\ksecpkg.sys
22:20:58.0048 3640 KSecPkg - ok
22:20:58.0079 3640 KtmRm (89a7b9cc98d0d80c6f31b91c0a310fcd) C:\Windows\system32\msdtckrm.dll
22:20:58.0095 3640 KtmRm - ok
22:20:58.0141 3640 LanmanServer (d64af876d53eca3668bb97b51b4e70ab) C:\Windows\system32\srvsvc.dll
22:20:58.0157 3640 LanmanServer - ok
22:20:58.0204 3640 LanmanWorkstation (58405e4f68ba8e4057c6e914f326aba2) C:\Windows\System32\wkssvc.dll
22:20:58.0219 3640 LanmanWorkstation - ok
22:20:58.0266 3640 lltdio (f7611ec07349979da9b0ae1f18ccc7a6) C:\Windows\system32\DRIVERS\lltdio.sys
22:20:58.0282 3640 lltdio - ok
22:20:58.0313 3640 lltdsvc (5700673e13a2117fa3b9020c852c01e2) C:\Windows\System32\lltdsvc.dll
22:20:58.0313 3640 lltdsvc - ok
22:20:58.0344 3640 lmhosts (55ca01ba19d0006c8f2639b6c045e08b) C:\Windows\System32\lmhsvc.dll
22:20:58.0344 3640 lmhosts - ok
22:20:58.0375 3640 LSI_FC (eb119a53ccf2acc000ac71b065b78fef) C:\Windows\system32\DRIVERS\lsi_fc.sys
22:20:58.0375 3640 LSI_FC - ok
22:20:58.0391 3640 LSI_SAS (8ade1c877256a22e49b75d1cc9161f9c) C:\Windows\system32\DRIVERS\lsi_sas.sys
22:20:58.0391 3640 LSI_SAS - ok
22:20:58.0407 3640 LSI_SAS2 (dc9dc3d3daa0e276fd2ec262e38b11e9) C:\Windows\system32\DRIVERS\lsi_sas2.sys
22:20:58.0407 3640 LSI_SAS2 - ok
22:20:58.0422 3640 LSI_SCSI (0a036c7d7cab643a7f07135ac47e0524) C:\Windows\system32\DRIVERS\lsi_scsi.sys
22:20:58.0422 3640 LSI_SCSI - ok
22:20:58.0453 3640 luafv (6703e366cc18d3b6e534f5cf7df39cee) C:\Windows\system32\drivers\luafv.sys
22:20:58.0453 3640 luafv - ok
22:20:58.0500 3640 maconfservice (3137b276c48d77dc05b7592e156e2880) C:\Program Files\ma-config.com\maconfservice.exe
22:20:58.0516 3640 maconfservice - ok
22:20:58.0531 3640 Mcx2Svc (bfb9ee8ee977efe85d1a3105abef6dd1) C:\Windows\system32\Mcx2Svc.dll
22:20:58.0531 3640 Mcx2Svc - ok
22:20:58.0563 3640 megasas (0fff5b045293002ab38eb1fd1fc2fb74) C:\Windows\system32\DRIVERS\megasas.sys
22:20:58.0563 3640 megasas - ok
22:20:58.0594 3640 MegaSR (dcbab2920c75f390caf1d29f675d03d6) C:\Windows\system32\DRIVERS\MegaSR.sys
22:20:58.0594 3640 MegaSR - ok
22:20:58.0609 3640 MMCSS (146b6f43a673379a3c670e86d89be5ea) C:\Windows\system32\mmcss.dll
22:20:58.0609 3640 MMCSS - ok
22:20:58.0625 3640 Modem (f001861e5700ee84e2d4e52c712f4964) C:\Windows\system32\drivers\modem.sys
22:20:58.0641 3640 Modem - ok
22:20:58.0672 3640 monitor (79d10964de86b292320e9dfe02282a23) C:\Windows\system32\DRIVERS\monitor.sys
22:20:58.0672 3640 monitor - ok
22:20:58.0719 3640 mouclass (fb18cc1d4c2e716b6b903b0ac0cc0609) C:\Windows\system32\drivers\mouclass.sys
22:20:58.0719 3640 mouclass - ok
22:20:58.0750 3640 mouhid (2c388d2cd01c9042596cf3c8f3c7b24d) C:\Windows\system32\DRIVERS\mouhid.sys
22:20:58.0750 3640 mouhid - ok
22:20:58.0781 3640 mountmgr (fc8771f45ecccfd89684e38842539b9b) C:\Windows\system32\drivers\mountmgr.sys
22:20:58.0781 3640 mountmgr - ok
22:20:58.0828 3640 mpio (2d699fb6e89ce0d8da14ecc03b3edfe0) C:\Windows\system32\drivers\mpio.sys
22:20:58.0828 3640 mpio - ok
22:20:58.0859 3640 mpsdrv (ad2723a7b53dd1aacae6ad8c0bfbf4d0) C:\Windows\system32\drivers\mpsdrv.sys
22:20:58.0859 3640 mpsdrv - ok
22:20:58.0906 3640 MpsSvc (9835584e999d25004e1ee8e5f3e3b881) C:\Windows\system32\mpssvc.dll
22:20:58.0921 3640 MpsSvc - ok
22:20:58.0937 3640 MRxDAV (ceb46ab7c01c9f825f8cc6babc18166a) C:\Windows\system32\drivers\mrxdav.sys
22:20:58.0937 3640 MRxDAV - ok
22:20:58.0968 3640 mrxsmb (5d16c921e3671636c0eba3bbaac5fd25) C:\Windows\system32\DRIVERS\mrxsmb.sys
22:20:58.0968 3640 mrxsmb - ok
22:20:58.0999 3640 mrxsmb10 (6d17a4791aca19328c685d256349fefc) C:\Windows\system32\DRIVERS\mrxsmb10.sys
22:20:58.0999 3640 mrxsmb10 - ok
22:20:59.0015 3640 mrxsmb20 (b81f204d146000be76651a50670a5e9e) C:\Windows\system32\DRIVERS\mrxsmb20.sys
22:20:59.0015 3640 mrxsmb20 - ok
22:20:59.0046 3640 msahci (012c5f4e9349e711e11e0f19a8589f0a) C:\Windows\system32\drivers\msahci.sys
22:20:59.0046 3640 msahci - ok
22:20:59.0062 3640 msdsm (55055f8ad8be27a64c831322a780a228) C:\Windows\system32\drivers\msdsm.sys
22:20:59.0062 3640 msdsm - ok
22:20:59.0093 3640 MSDTC (e1bce74a3bd9902b72599c0192a07e27) C:\Windows\System32\msdtc.exe
22:20:59.0109 3640 MSDTC - ok
22:20:59.0140 3640 Msfs (daefb28e3af5a76abcc2c3078c07327f) C:\Windows\system32\drivers\Msfs.sys
22:20:59.0140 3640 Msfs - ok
22:20:59.0155 3640 mshidkmdf (3e1e5767043c5af9367f0056295e9f84) C:\Windows\System32\drivers\mshidkmdf.sys
22:20:59.0155 3640 mshidkmdf - ok
22:20:59.0171 3640 msisadrv (0a4e5757ae09fa9622e3158cc1aef114) C:\Windows\system32\drivers\msisadrv.sys
22:20:59.0171 3640 msisadrv - ok
22:20:59.0202 3640 MSiSCSI (90f7d9e6b6f27e1a707d4a297f077828) C:\Windows\system32\iscsiexe.dll
22:20:59.0202 3640 MSiSCSI - ok
22:20:59.0218 3640 msiserver - ok
22:20:59.0249 3640 MSKSSRV (8c0860d6366aaffb6c5bb9df9448e631) C:\Windows\system32\drivers\MSKSSRV.sys
22:20:59.0249 3640 MSKSSRV - ok
22:20:59.0265 3640 MSPCLOCK (3ea8b949f963562cedbb549eac0c11ce) C:\Windows\system32\drivers\MSPCLOCK.sys
22:20:59.0265 3640 MSPCLOCK - ok
22:20:59.0280 3640 MSPQM (f456e973590d663b1073e9c463b40932) C:\Windows\system32\drivers\MSPQM.sys
22:20:59.0280 3640 MSPQM - ok
22:20:59.0296 3640 MsRPC (0e008fc4819d238c51d7c93e7b41e560) C:\Windows\system32\drivers\MsRPC.sys
22:20:59.0311 3640 MsRPC - ok
22:20:59.0327 3640 mssmbios (fc6b9ff600cc585ea38b12589bd4e246) C:\Windows\system32\drivers\mssmbios.sys
22:20:59.0327 3640 mssmbios - ok
22:20:59.0358 3640 MSTEE (b42c6b921f61a6e55159b8be6cd54a36) C:\Windows\system32\drivers\MSTEE.sys
22:20:59.0358 3640 MSTEE - ok
22:20:59.0374 3640 MTConfig (33599130f44e1f34631cea241de8ac84) C:\Windows\system32\DRIVERS\MTConfig.sys
22:20:59.0389 3640 MTConfig - ok
22:20:59.0405 3640 Mup (159fad02f64e6381758c990f753bcc80) C:\Windows\system32\Drivers\mup.sys
22:20:59.0405 3640 Mup - ok
22:20:59.0436 3640 napagent (61d57a5d7c6d9afe10e77dae6e1b445e) C:\Windows\system32\qagentRT.dll
22:20:59.0452 3640 napagent - ok
22:20:59.0499 3640 NativeWifiP (26384429fcd85d83746f63e798ab1480) C:\Windows\system32\DRIVERS\nwifi.sys
22:20:59.0499 3640 NativeWifiP - ok
22:20:59.0608 3640 NAUpdate (1bbbf640bc0e0b750537baece8d66c18) C:\Program Files\Nero\Update\NASvc.exe
22:20:59.0623 3640 NAUpdate - ok
22:20:59.0639 3640 NBVol (e240f3204e86b7b6ccf266b2a2ad32b4) C:\Windows\system32\DRIVERS\NBVol.sys
22:20:59.0655 3640 NBVol - ok
22:20:59.0655 3640 NBVolUp (c0cf3cccce3c75f7280c89029ab47866) C:\Windows\system32\DRIVERS\NBVolUp.sys
22:20:59.0655 3640 NBVolUp - ok
22:20:59.0701 3640 NDIS (e7c54812a2aaf43316eb6930c1ffa108) C:\Windows\system32\drivers\ndis.sys
22:20:59.0701 3640 NDIS - ok
22:20:59.0717 3640 NdisCap (0e1787aa6c9191d3d319e8bafe86f80c) C:\Windows\system32\DRIVERS\ndiscap.sys
22:20:59.0717 3640 NdisCap - ok
22:20:59.0748 3640 NdisTapi (e4a8aec125a2e43a9e32afeea7c9c888) C:\Windows\system32\DRIVERS\ndistapi.sys
22:20:59.0748 3640 NdisTapi - ok
22:20:59.0795 3640 Ndisuio (d8a65dafb3eb41cbb622745676fcd072) C:\Windows\system32\DRIVERS\ndisuio.sys
22:20:59.0795 3640 Ndisuio - ok
22:20:59.0811 3640 NdisWan (38fbe267e7e6983311179230facb1017) C:\Windows\system32\DRIVERS\ndiswan.sys
22:20:59.0811 3640 NdisWan - ok
22:20:59.0826 3640 NDProxy (a4bdc541e69674fbff1a8ff00be913f2) C:\Windows\system32\drivers\NDProxy.sys
22:20:59.0826 3640 NDProxy - ok
22:20:59.0857 3640 NetBIOS (80b275b1ce3b0e79909db7b39af74d51) C:\Windows\system32\DRIVERS\netbios.sys
22:20:59.0857 3640 NetBIOS - ok
22:20:59.0889 3640 NetBT (280122ddcf04b378edd1ad54d71c1e54) C:\Windows\system32\DRIVERS\netbt.sys
22:20:59.0889 3640 NetBT - ok
22:20:59.0904 3640 Netlogon (81951f51e318aecc2d68559e47485cc4) C:\Windows\system32\lsass.exe
22:20:59.0904 3640 Netlogon - ok
22:20:59.0951 3640 Netman (7cccfca7510684768da22092d1fa4db2) C:\Windows\System32\netman.dll
22:20:59.0951 3640 Netman - ok
22:20:59.0967 3640 netprofm (8c338238c16777a802d6a9211eb2ba50) C:\Windows\System32\netprofm.dll
22:20:59.0982 3640 netprofm - ok
22:21:00.0029 3640 NetTcpPortSharing (f476ec40033cdb91efbe73eb99b8362d) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
22:21:00.0029 3640 NetTcpPortSharing - ok
22:21:00.0076 3640 nfrd960 (1d85c4b390b0ee09c7a46b91efb2c097) C:\Windows\system32\DRIVERS\nfrd960.sys
22:21:00.0076 3640 nfrd960 - ok
22:21:00.0107 3640 NlaSvc (912084381d30d8b89ec4e293053f4710) C:\Windows\System32\nlasvc.dll
22:21:00.0123 3640 NlaSvc - ok
22:21:00.0138 3640 Npfs (1db262a9f8c087e8153d89bef3d2235f) C:\Windows\system32\drivers\Npfs.sys
22:21:00.0138 3640 Npfs - ok
22:21:00.0154 3640 nsi (ba387e955e890c8a88306d9b8d06bf17) C:\Windows\system32\nsisvc.dll
22:21:00.0154 3640 nsi - ok
22:21:00.0169 3640 nsiproxy (e9a0a4d07e53d8fea2bb8387a3293c58) C:\Windows\system32\drivers\nsiproxy.sys
22:21:00.0169 3640 nsiproxy - ok
22:21:00.0216 3640 Ntfs (81189c3d7763838e55c397759d49007a) C:\Windows\system32\drivers\Ntfs.sys
22:21:00.0232 3640 Ntfs - ok
22:21:00.0232 3640 Null (f9756a98d69098dca8945d62858a812c) C:\Windows\system32\drivers\Null.sys
22:21:00.0247 3640 Null - ok
22:21:00.0497 3640 nvlddmkm (e891b3979f0cf2740c1b073f834221fe) C:\Windows\system32\DRIVERS\nvlddmkm.sys
22:21:00.0559 3640 nvlddmkm - ok
22:21:00.0622 3640 nvraid (b3e25ee28883877076e0e1ff877d02e0) C:\Windows\system32\drivers\nvraid.sys
22:21:00.0622 3640 nvraid - ok
22:21:00.0653 3640 nvstor (4380e59a170d88c4f1022eff6719a8a4) C:\Windows\system32\drivers\nvstor.sys
22:21:00.0653 3640 nvstor - ok
22:21:00.0715 3640 nvsvc (ae2de8e165dcb93a66b21748e6f913df) C:\Windows\system32\nvvsvc.exe
22:21:00.0715 3640 nvsvc - ok
22:21:00.0809 3640 nvUpdatusService (c78581c14699c46fe0f0817416383134) C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
22:21:00.0825 3640 nvUpdatusService - ok
22:21:00.0856 3640 nv_agp (5a0983915f02bae73267cc2a041f717d) C:\Windows\system32\drivers\nv_agp.sys
22:21:00.0856 3640 nv_agp - ok
22:21:00.0934 3640 odserv (785f487a64950f3cb8e9f16253ba3b7b) C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
22:21:00.0934 3640 odserv - ok
22:21:00.0965 3640 ohci1394 (08a70a1f2cdde9bb49b885cb817a66eb) C:\Windows\system32\drivers\ohci1394.sys
22:21:00.0981 3640 ohci1394 - ok
22:21:00.0996 3640 ose (5a432a042dae460abe7199b758e8606c) C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
22:21:00.0996 3640 ose - ok
22:21:01.0043 3640 p2pimsvc (82a8521ddc60710c3d3d3e7325209bec) C:\Windows\system32\pnrpsvc.dll
22:21:01.0059 3640 p2pimsvc - ok
22:21:01.0090 3640 p2psvc (59c3ddd501e39e006dac31bf55150d91) C:\Windows\system32\p2psvc.dll
22:21:01.0105 3640 p2psvc - ok
22:21:01.0137 3640 Parport (2ea877ed5dd9713c5ac74e8ea7348d14) C:\Windows\system32\DRIVERS\parport.sys
22:21:01.0137 3640 Parport - ok
22:21:01.0168 3640 partmgr (bf8f6af06da75b336f07e23aef97d93b) C:\Windows\system32\drivers\partmgr.sys
22:21:01.0168 3640 partmgr - ok
22:21:01.0183 3640 Parvdm (eb0a59f29c19b86479d36b35983daadc) C:\Windows\system32\DRIVERS\parvdm.sys
22:21:01.0183 3640 Parvdm - ok
22:21:01.0215 3640 PcaSvc (358ab7956d3160000726574083dfc8a6) C:\Windows\System32\pcasvc.dll
22:21:01.0215 3640 PcaSvc - ok
22:21:01.0261 3640 pccsmcfd (fd2041e9ba03db7764b2248f02475079) C:\Windows\system32\DRIVERS\pccsmcfd.sys
22:21:01.0261 3640 pccsmcfd - ok
22:21:01.0293 3640 pci (673e55c3498eb970088e812ea820aa8f) C:\Windows\system32\drivers\pci.sys
22:21:01.0293 3640 pci - ok
22:21:01.0308 3640 pciide (afe86f419014db4e5593f69ffe26ce0a) C:\Windows\system32\drivers\pciide.sys
22:21:01.0308 3640 pciide - ok
22:21:01.0339 3640 pcmcia (f396431b31693e71e8a80687ef523506) C:\Windows\system32\DRIVERS\pcmcia.sys
22:21:01.0339 3640 pcmcia - ok
22:21:01.0355 3640 pcw (250f6b43d2b613172035c6747aeeb19f) C:\Windows\system32\drivers\pcw.sys
22:21:01.0355 3640 pcw - ok
22:21:01.0402 3640 PEAUTH (9e0104ba49f4e6973749a02bf41344ed) C:\Windows\system32\drivers\peauth.sys
22:21:01.0402 3640 PEAUTH - ok
22:21:01.0464 3640 PeerDistSvc (af4d64d2a57b9772cf3801950b8058a6) C:\Windows\system32\peerdistsvc.dll
22:21:01.0511 3640 PeerDistSvc - ok
22:21:01.0573 3640 pla (414bba67a3ded1d28437eb66aeb8a720) C:\Windows\system32\pla.dll
22:21:01.0620 3640 pla - ok
22:21:01.0651 3640 PlugPlay (ec7bc28d207da09e79b3e9faf8b232ca) C:\Windows\system32\umpnpmgr.dll
22:21:01.0667 3640 PlugPlay - ok
22:21:01.0683 3640 PNRPAutoReg (63ff8572611249931eb16bb8eed6afc8) C:\Windows\system32\pnrpauto.dll
22:21:01.0683 3640 PNRPAutoReg - ok
22:21:01.0714 3640 PNRPsvc (82a8521ddc60710c3d3d3e7325209bec) C:\Windows\system32\pnrpsvc.dll
22:21:01.0714 3640 PNRPsvc - ok
22:21:01.0745 3640 PolicyAgent (53946b69ba0836bd95b03759530c81ec) C:\Windows\System32\ipsecsvc.dll
22:21:01.0761 3640 PolicyAgent - ok
22:21:01.0792 3640 Power (f87d30e72e03d579a5199ccb3831d6ea) C:\Windows\system32\umpo.dll
22:21:01.0792 3640 Power - ok
22:21:01.0807 3640 PptpMiniport (631e3e205ad6d86f2aed6a4a8e69f2db) C:\Windows\system32\DRIVERS\raspptp.sys
22:21:01.0823 3640 PptpMiniport - ok
22:21:01.0839 3640 Processor (85b1e3a0c7585bc4aae6899ec6fcf011) C:\Windows\system32\DRIVERS\processr.sys
22:21:01.0839 3640 Processor - ok
22:21:01.0870 3640 ProfSvc (43ca4ccc22d52fb58e8988f0198851d0) C:\Windows\system32\profsvc.dll
22:21:01.0885 3640 ProfSvc - ok
22:21:01.0917 3640 ProtectedStorage (81951f51e318aecc2d68559e47485cc4) C:\Windows\system32\lsass.exe
22:21:01.0917 3640 ProtectedStorage - ok
22:21:01.0948 3640 Psched (6270ccae2a86de6d146529fe55b3246a) C:\Windows\system32\DRIVERS\pacer.sys
22:21:01.0948 3640 Psched - ok
22:21:02.0010 3640 PxHelp20 (153d02480a0a2f45785522e814c634b6) C:\Windows\system32\Drivers\PxHelp20.sys
22:21:02.0010 3640 PxHelp20 - ok
22:21:02.0073 3640 ql2300 (ab95ecf1f6659a60ddc166d8315b0751) C:\Windows\system32\DRIVERS\ql2300.sys
22:21:02.0088 3640 ql2300 - ok
22:21:02.0104 3640 ql40xx (b4dd51dd25182244b86737dc51af2270) C:\Windows\system32\DRIVERS\ql40xx.sys
22:21:02.0104 3640 ql40xx - ok
22:21:02.0119 3640 QWAVE (31ac809e7707eb580b2bdb760390765a) C:\Windows\system32\qwave.dll
22:21:02.0135 3640 QWAVE - ok
22:21:02.0151 3640 QWAVEdrv (584078ca1b95ca72df2a27c336f9719d) C:\Windows\system32\drivers\qwavedrv.sys
22:21:02.0151 3640 QWAVEdrv - ok
22:21:02.0166 3640 RasAcd (30a81b53c766d0133bb86d234e5556ab) C:\Windows\system32\DRIVERS\rasacd.sys
22:21:02.0166 3640 RasAcd - ok
22:21:02.0197 3640 RasAgileVpn (57ec4aef73660166074d8f7f31c0d4fd) C:\Windows\system32\DRIVERS\AgileVpn.sys
22:21:02.0197 3640 RasAgileVpn - ok
22:21:02.0213 3640 RasAuto (a60f1839849c0c00739787fd5ec03f13) C:\Windows\System32\rasauto.dll
22:21:02.0213 3640 RasAuto - ok
22:21:02.0244 3640 Rasl2tp (d9f91eafec2815365cbe6d167e4e332a) C:\Windows\system32\DRIVERS\rasl2tp.sys
22:21:02.0260 3640 Rasl2tp - ok
22:21:02.0291 3640 RasMan (cb9e04dc05eacf5b9a36ca276d475006) C:\Windows\System32\rasmans.dll
22:21:02.0307 3640 RasMan - ok
22:21:02.0322 3640 RasPppoe (0fe8b15916307a6ac12bfb6a63e45507) C:\Windows\system32\DRIVERS\raspppoe.sys
22:21:02.0322 3640 RasPppoe - ok
22:21:02.0338 3640 RasSstp (44101f495a83ea6401d886e7fd70096b) C:\Windows\system32\DRIVERS\rassstp.sys
22:21:02.0353 3640 RasSstp - ok
22:21:02.0369 3640 rdbss (d528bc58a489409ba40334ebf96a311b) C:\Windows\system32\DRIVERS\rdbss.sys
22:21:02.0385 3640 rdbss - ok
22:21:02.0385 3640 rdpbus (0d8f05481cb76e70e1da06ee9f0da9df) C:\Windows\system32\DRIVERS\rdpbus.sys
22:21:02.0400 3640 rdpbus - ok
22:21:02.0416 3640 RDPCDD (23dae03f29d253ae74c44f99e515f9a1) C:\Windows\system32\DRIVERS\RDPCDD.sys
22:21:02.0416 3640 RDPCDD - ok
22:21:02.0447 3640 RDPDR (b973fcfc50dc1434e1970a146f7e3885) C:\Windows\system32\drivers\rdpdr.sys
22:21:02.0447 3640 RDPDR - ok
22:21:02.0478 3640 RDPENCDD (5a53ca1598dd4156d44196d200c94b8a) C:\Windows\system32\drivers\rdpencdd.sys
22:21:02.0478 3640 RDPENCDD - ok
22:21:02.0494 3640 RDPREFMP (44b0a53cd4f27d50ed461dae0c0b4e1f) C:\Windows\system32\drivers\rdprefmp.sys
22:21:02.0494 3640 RDPREFMP - ok
22:21:02.0556 3640 RdpVideoMiniport (68a0387f58e226deee23d9715955572a) C:\Windows\system32\drivers\rdpvideominiport.sys
22:21:02.0556 3640 RdpVideoMiniport - ok
22:21:02.0603 3640 RDPWD (244c83332f44589ae98fc347f11b2693) C:\Windows\system32\drivers\RDPWD.sys
22:21:02.0603 3640 RDPWD - ok
22:21:02.0650 3640 rdyboost (518395321dc96fe2c9f0e96ac743b656) C:\Windows\system32\drivers\rdyboost.sys
22:21:02.0650 3640 rdyboost - ok
22:21:02.0681 3640 RemoteAccess (7b5e1419717fac363a31cc302895217a) C:\Windows\System32\mprdim.dll
22:21:02.0697 3640 RemoteAccess - ok
22:21:02.0728 3640 RemoteRegistry (cb9a8683f4ef2bf99e123d79950d7935) C:\Windows\system32\regsvc.dll
22:21:02.0728 3640 RemoteRegistry - ok
22:21:02.0759 3640 RpcEptMapper (78d072f35bc45d9e4e1b61895c152234) C:\Windows\System32\RpcEpMap.dll
22:21:02.0775 3640 RpcEptMapper - ok
22:21:02.0806 3640 RpcLocator (94d36c0e44677dd26981d2bfeef2a29d) C:\Windows\system32\locator.exe
22:21:02.0806 3640 RpcLocator - ok
22:21:02.0837 3640 RpcSs (7660f01d3b38aca1747e397d21d790af) C:\Windows\system32\rpcss.dll
22:21:02.0853 3640 RpcSs - ok
22:21:02.0868 3640 rspndr (032b0d36ad92b582d869879f5af5b928) C:\Windows\system32\DRIVERS\rspndr.sys
22:21:02.0884 3640 rspndr - ok
22:21:02.0915 3640 RTL8167 (5283b9a27ff230f2ff70d92451ff409a) C:\Windows\system32\DRIVERS\Rt86win7.sys
22:21:02.0931 3640 RTL8167 - ok
22:21:02.0977 3640 RTL8192su (9ce8deffaffccbf473015d76ae8ee514) C:\Windows\system32\DRIVERS\RTL8192su.sys
22:21:02.0977 3640 RTL8192su - ok
22:21:02.0993 3640 s3cap (7fa7f2e249a5dcbb7970630e15e1f482) C:\Windows\system32\drivers\vms3cap.sys
22:21:02.0993 3640 s3cap - ok
22:21:03.0024 3640 SamSs (81951f51e318aecc2d68559e47485cc4) C:\Windows\system32\lsass.exe
22:21:03.0040 3640 SamSs - ok
22:21:03.0071 3640 sbp2port (05d860da1040f111503ac416ccef2bca) C:\Windows\system32\drivers\sbp2port.sys
22:21:03.0071 3640 sbp2port - ok
22:21:03.0087 3640 SCardSvr (8fc518ffe9519c2631d37515a68009c4) C:\Windows\System32\SCardSvr.dll
22:21:03.0102 3640 SCardSvr - ok
22:21:03.0133 3640 scfilter (0693b5ec673e34dc147e195779a4dcf6) C:\Windows\system32\DRIVERS\scfilter.sys
22:21:03.0133 3640 scfilter - ok
22:21:03.0180 3640 Schedule (a04bb13f8a72f8b6e8b4071723e4e336) C:\Windows\system32\schedsvc.dll
22:21:03.0196 3640 Schedule - ok
22:21:03.0243 3640 SCPolicySvc (319c6b309773d063541d01df8ac6f55f) C:\Windows\System32\certprop.dll
22:21:03.0243 3640 SCPolicySvc - ok
22:21:03.0274 3640 SDRSVC (08236c4bce5edd0a0318a438af28e0f7) C:\Windows\System32\SDRSVC.dll
22:21:03.0274 3640 SDRSVC - ok
22:21:03.0321 3640 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
22:21:03.0321 3640 secdrv - ok
22:21:03.0336 3640 seclogon (a59b3a4442c52060cc7a85293aa3546f) C:\Windows\system32\seclogon.dll
22:21:03.0336 3640 seclogon - ok
22:21:03.0367 3640 SENS (dcb7fcdcc97f87360f75d77425b81737) C:\Windows\System32\sens.dll
22:21:03.0367 3640 SENS - ok
22:21:03.0414 3640 SensrSvc (50087fe1ee447009c9cc2997b90de53f) C:\Windows\system32\sensrsvc.dll
22:21:03.0414 3640 SensrSvc - ok
22:21:03.0445 3640 Serenum (9ad8b8b515e3df6acd4212ef465de2d1) C:\Windows\system32\DRIVERS\serenum.sys
22:21:03.0445 3640 Serenum - ok
22:21:03.0461 3640 Serial (5fb7fcea0490d821f26f39cc5ea3d1e2) C:\Windows\system32\DRIVERS\serial.sys
22:21:03.0461 3640 Serial - ok
22:21:03.0508 3640 sermouse (79bffb520327ff916a582dfea17aa813) C:\Windows\system32\DRIVERS\sermouse.sys
22:21:03.0508 3640 sermouse - ok
22:21:03.0586 3640 ServiceLayer (3ec8de67b1c78c31e54c0f030e6bd7d5) C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
22:21:03.0617 3640 ServiceLayer - ok
22:21:03.0664 3640 SessionEnv (4ae380f39a0032eab7dd953030b26d28) C:\Windows\system32\sessenv.dll
22:21:03.0679 3640 SessionEnv - ok
22:21:03.0695 3640 sffdisk (9f976e1eb233df46fce808d9dea3eb9c) C:\Windows\system32\drivers\sffdisk.sys
22:21:03.0695 3640 sffdisk - ok
22:21:03.0711 3640 sffp_mmc (932a68ee27833cfd57c1639d375f2731) C:\Windows\system32\drivers\sffp_mmc.sys
22:21:03.0711 3640 sffp_mmc - ok
22:21:03.0726 3640 sffp_sd (6d4ccaedc018f1cf52866bbbaa235982) C:\Windows\system32\drivers\sffp_sd.sys
22:21:03.0726 3640 sffp_sd - ok
22:21:03.0742 3640 sfloppy (db96666cc8312ebc45032f30b007a547) C:\Windows\system32\DRIVERS\sfloppy.sys
22:21:03.0742 3640 sfloppy - ok
22:21:03.0789 3640 SharedAccess (d1a079a0de2ea524513b6930c24527a2) C:\Windows\System32\ipnathlp.dll
22:21:03.0804 3640 SharedAccess - ok
22:21:03.0835 3640 ShellHWDetection (414da952a35bf5d50192e28263b40577) C:\Windows\System32\shsvcs.dll
22:21:03.0851 3640 ShellHWDetection - ok
22:21:03.0867 3640 sisagp (2565cac0dc9fe0371bdce60832582b2e) C:\Windows\system32\drivers\sisagp.sys
22:21:03.0867 3640 sisagp - ok
22:21:03.0898 3640 SiSRaid2 (a9f0486851becb6dda1d89d381e71055) C:\Windows\system32\DRIVERS\SiSRaid2.sys
22:21:03.0898 3640 SiSRaid2 - ok
22:21:03.0929 3640 SiSRaid4 (3727097b55738e2f554972c3be5bc1aa) C:\Windows\system32\DRIVERS\sisraid4.sys
22:21:03.0929 3640 SiSRaid4 - ok
22:21:03.0960 3640 Smb (3e21c083b8a01cb70ba1f09303010fce) C:\Windows\system32\DRIVERS\smb.sys
22:21:03.0960 3640 Smb - ok
22:21:03.0991 3640 SNMPTRAP (6a984831644eca1a33ffeae4126f4f37) C:\Windows\System32\snmptrap.exe
22:21:04.0007 3640 SNMPTRAP - ok
22:21:04.0023 3640 spldr (95cf1ae7527fb70f7816563cbc09d942) C:\Windows\system32\drivers\spldr.sys
22:21:04.0023 3640 spldr - ok
22:21:04.0069 3640 Spooler (866a43013535dc8587c258e43579c764) C:\Windows\System32\spoolsv.exe
22:21:04.0101 3640 Spooler - ok
22:21:04.0194 3640 sppsvc (cf87a1de791347e75b98885214ced2b8) C:\Windows\system32\sppsvc.exe
22:21:04.0272 3640 sppsvc - ok
22:21:04.0303 3640 sppuinotify (b0180b20b065d89232a78a40fe56eaa6) C:\Windows\system32\sppuinotify.dll
22:21:04.0303 3640 sppuinotify - ok
22:21:04.0350 3640 srv (e4c2764065d66ea1d2d3ebc28fe99c46) C:\Windows\system32\DRIVERS\srv.sys
22:21:04.0350 3640 srv - ok
22:21:04.0366 3640 srv2 (03f0545bd8d4c77fa0ae1ceedfcc71ab) C:\Windows\system32\DRIVERS\srv2.sys
22:21:04.0381 3640 srv2 - ok
22:21:04.0413 3640 srvnet (be6bd660caa6f291ae06a718a4fa8abc) C:\Windows\system32\DRIVERS\srvnet.sys
22:21:04.0413 3640 srvnet - ok
22:21:04.0428 3640 SSDPSRV (d887c9fd02ac9fa880f6e5027a43e118) C:\Windows\System32\ssdpsrv.dll
22:21:04.0444 3640 SSDPSRV - ok
22:21:04.0459 3640 SstpSvc (d318f23be45d5e3a107469eb64815b50) C:\Windows\system32\sstpsvc.dll
22:21:04.0459 3640 SstpSvc - ok
22:21:04.0522 3640 ss_bbus (3f0164fbc0bd1adbd02df9759181451a) C:\Windows\system32\DRIVERS\ss_bbus.sys
22:21:04.0522 3640 ss_bbus - ok
22:21:04.0553 3640 ss_bmdfl (b89d62206034e5fe573c80a24dd55675) C:\Windows\system32\DRIVERS\ss_bmdfl.sys
22:21:04.0553 3640 ss_bmdfl - ok
22:21:04.0584 3640 ss_bmdm (1ed0fcea586fe2a416ee15196e5631dd) C:\Windows\system32\DRIVERS\ss_bmdm.sys
22:21:04.0584 3640 ss_bmdm - ok
22:21:04.0600 3640 ss_bserd (994d2e5378cc337ec7dd73c1e04fcaa4) C:\Windows\system32\DRIVERS\ss_bserd.sys
22:21:04.0615 3640 ss_bserd - ok
22:21:04.0709 3640 Stereo Service (fc0a58529a02b1eed55ddc58696b7908) C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
22:21:04.0725 3640 Stereo Service - ok
22:21:04.0756 3640 stexstor (db32d325c192b801df274bfd12a7e72b) C:\Windows\system32\DRIVERS\stexstor.sys
22:21:04.0756 3640 stexstor - ok
22:21:04.0803 3640 StiSvc (e1fb3706030fb4578a0d72c2fc3689e4) C:\Windows\System32\wiaservc.dll
22:21:04.0834 3640 StiSvc - ok
22:21:04.0865 3640 storflt (472af0311073dceceaa8fa18ba2bdf89) C:\Windows\system32\drivers\vmstorfl.sys
22:21:04.0865 3640 storflt - ok
22:21:04.0881 3640 storvsc (dcaffd62259e0bdb433dd67b5bb37619) C:\Windows\system32\drivers\storvsc.sys
22:21:04.0881 3640 storvsc - ok
22:21:04.0912 3640 swenum (e58c78a848add9610a4db6d214af5224) C:\Windows\system32\drivers\swenum.sys
22:21:04.0912 3640 swenum - ok
22:21:05.0005 3640 SwitchBoard (f577910a133a592234ebaad3f3afa258) C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
22:21:05.0021 3640 SwitchBoard - ok
22:21:05.0068 3640 swprv (a28bd92df340e57b024ba433165d34d7) C:\Windows\System32\swprv.dll
22:21:05.0099 3640 swprv - ok
22:21:05.0115 3640 Synth3dVsc - ok
22:21:05.0177 3640 SysMain (36650d618ca34c9d357dfd3d89b2c56f) C:\Windows\system32\sysmain.dll
22:21:05.0224 3640 SysMain - ok
22:21:05.0271 3640 TabletInputService (763fecdc3d30c815fe72dd57936c6cd1) C:\Windows\System32\TabSvc.dll
22:21:05.0271 3640 TabletInputService - ok
22:21:05.0302 3640 TapiSrv (613bf4820361543956909043a265c6ac) C:\Windows\System32\tapisrv.dll
22:21:05.0317 3640 TapiSrv - ok
22:21:05.0333 3640 TBS (b799d9fdb26111737f58288d8dc172d9) C:\Windows\System32\tbssvc.dll
22:21:05.0349 3640 TBS - ok
22:21:05.0395 3640 Tcpip (65d10b191c59c5501a1263fc33f6894b) C:\Windows\system32\drivers\tcpip.sys
22:21:05.0411 3640 Tcpip - ok
22:21:05.0458 3640 TCPIP6 (65d10b191c59c5501a1263fc33f6894b) C:\Windows\system32\DRIVERS\tcpip.sys
22:21:05.0458 3640 TCPIP6 - ok
22:21:05.0489 3640 tcpipreg (cca24162e055c3714ce5a88b100c64ed) C:\Windows\system32\drivers\tcpipreg.sys
22:21:05.0489 3640 tcpipreg - ok
22:21:05.0536 3640 TDPIPE (1cb91b2bd8f6dd367dfc2ef26fd751b2) C:\Windows\system32\drivers\tdpipe.sys
22:21:05.0536 3640 TDPIPE - ok
22:21:05.0567 3640 TDTCP (2c2c5afe7ee4f620d69c23c0617651a8) C:\Windows\system32\drivers\tdtcp.sys
22:21:05.0567 3640 TDTCP - ok
22:21:05.0598 3640 tdx (b459575348c20e8121d6039da063c704) C:\Windows\system32\DRIVERS\tdx.sys
22:21:05.0598 3640 tdx - ok
22:21:05.0629 3640 TermDD (04dbf4b01ea4bf25a9a3e84affac9b20) C:\Windows\system32\drivers\termdd.sys
22:21:05.0629 3640 TermDD - ok
22:21:05.0661 3640 TermService (382c804c92811be57829d8e550a900e2) C:\Windows\System32\termsrv.dll
22:21:05.0692 3640 TermService - ok
22:21:05.0723 3640 Themes (42fb6afd6b79d9fe07381609172e7ca4) C:\Windows\system32\themeservice.dll
22:21:05.0723 3640 Themes - ok
22:21:05.0754 3640 THREADORDER (146b6f43a673379a3c670e86d89be5ea) C:\Windows\system32\mmcss.dll
22:21:05.0754 3640 THREADORDER - ok
22:21:05.0770 3640 TrkWks (4792c0378db99a9bc2ae2de6cfff0c3a) C:\Windows\System32\trkwks.dll
22:21:05.0785 3640 TrkWks - ok
22:21:05.0801 3640 TrustedInstaller (2c49b175aee1d4364b91b531417fe583) C:\Windows\servicing\TrustedInstaller.exe
22:21:05.0801 3640 TrustedInstaller - ok
22:21:05.0817 3640 tssecsrv (254bb140eee3c59d6114c1a86b636877) C:\Windows\system32\DRIVERS\tssecsrv.sys
22:21:05.0832 3640 tssecsrv - ok
22:21:05.0848 3640 TsUsbFlt (fd1d6c73e6333be727cbcc6054247654) C:\Windows\system32\drivers\tsusbflt.sys
22:21:05.0848 3640 TsUsbFlt - ok
22:21:05.0848 3640 tsusbhub - ok
22:21:05.0895 3640 tunnel (b2fa25d9b17a68bb93d58b0556e8c90d) C:\Windows\system32\DRIVERS\tunnel.sys
22:21:05.0910 3640 tunnel - ok
22:21:05.0941 3640 uagp35 (750fbcb269f4d7dd2e420c56b795db6d) C:\Windows\system32\DRIVERS\uagp35.sys
22:21:05.0941 3640 uagp35 - ok
22:21:05.0988 3640 udfs (ee43346c7e4b5e63e54f927babbb32ff) C:\Windows\system32\DRIVERS\udfs.sys
22:21:05.0988 3640 udfs - ok
22:21:06.0019 3640 UI0Detect (8344fd4fce927880aa1aa7681d4927e5) C:\Windows\system32\UI0Detect.exe
22:21:06.0035 3640 UI0Detect - ok
22:21:06.0066 3640 uliagpkx (44e8048ace47befbfdc2e9be4cbc8880) C:\Windows\system32\drivers\uliagpkx.sys
22:21:06.0066 3640 uliagpkx - ok
22:21:06.0097 3640 umbus (d295bed4b898f0fd999fcfa9b32b071b) C:\Windows\system32\drivers\umbus.sys
22:21:06.0113 3640 umbus - ok
22:21:06.0144 3640 UmPass (7550ad0c6998ba1cb4843e920ee0feac) C:\Windows\system32\DRIVERS\umpass.sys
22:21:06.0144 3640 UmPass - ok
22:21:06.0160 3640 UmRdpService (409994a8eaceee4e328749c0353527a0) C:\Windows\System32\umrdp.dll
22:21:06.0175 3640 UmRdpService - ok
22:21:06.0207 3640 upnphost (833fbb672460efce8011d262175fad33) C:\Windows\System32\upnphost.dll
22:21:06.0222 3640 upnphost - ok
22:21:06.0253 3640 usbccgp (bd9c55d7023c5de374507acc7a14e2ac) C:\Windows\system32\DRIVERS\usbccgp.sys
22:21:06.0253 3640 usbccgp - ok
22:21:06.0269 3640 usbcir (04ec7cec62ec3b6d9354eee93327fc82) C:\Windows\system32\drivers\usbcir.sys
22:21:06.0269 3640 usbcir - ok
22:21:06.0285 3640 usbehci (f92de757e4b7ce9c07c5e65423f3ae3b) C:\Windows\system32\DRIVERS\usbehci.sys
22:21:06.0285 3640 usbehci - ok
22:21:06.0300 3640 usbhub (8dc94aec6a7e644a06135ae7506dc2e9) C:\Windows\system32\DRIVERS\usbhub.sys
22:21:06.0316 3640 usbhub - ok
22:21:06.0331 3640 usbohci (e185d44fac515a18d9deddc23c2cdf44) C:\Windows\system32\DRIVERS\usbohci.sys
22:21:06.0331 3640 usbohci - ok
22:21:06.0347 3640 usbprint (797d862fe0875e75c7cc4c1ad7b30252) C:\Windows\system32\DRIVERS\usbprint.sys
22:21:06.0347 3640 usbprint - ok
22:21:06.0394 3640 usbscan (576096ccbc07e7c4ea4f5e6686d6888f) C:\Windows\system32\DRIVERS\usbscan.sys
22:21:06.0394 3640 usbscan - ok
22:21:06.0425 3640 USBSTOR (f991ab9cc6b908db552166768176896a) C:\Windows\system32\DRIVERS\USBSTOR.SYS
22:21:06.0425 3640 USBSTOR - ok
22:21:06.0441 3640 usbuhci (68df884cf41cdada664beb01daf67e3d) C:\Windows\system32\drivers\usbuhci.sys
22:21:06.0441 3640 usbuhci - ok
22:21:06.0472 3640 UxSms (081e6e1c91aec36758902a9f727cd23c) C:\Windows\System32\uxsms.dll
22:21:06.0472 3640 UxSms - ok
22:21:06.0503 3640 VaultSvc (81951f51e318aecc2d68559e47485cc4) C:\Windows\system32\lsass.exe
22:21:06.0503 3640 VaultSvc - ok
22:21:06.0519 3640 vdrvroot (a059c4c3edb09e07d21a8e5c0aabd3cb) C:\Windows\system32\drivers\vdrvroot.sys
22:21:06.0519 3640 vdrvroot - ok
22:21:06.0565 3640 vds (c3cd30495687c2a2f66a65ca6fd89be9) C:\Windows\System32\vds.exe
22:21:06.0581 3640 vds - ok
22:21:06.0597 3640 vga (17c408214ea61696cec9c66e388b14f3) C:\Windows\system32\DRIVERS\vgapnp.sys
22:21:06.0597 3640 vga - ok
22:21:06.0612 3640 VgaSave (8e38096ad5c8570a6f1570a61e251561) C:\Windows\System32\drivers\vga.sys
22:21:06.0612 3640 VgaSave - ok
22:21:06.0628 3640 VGPU - ok
22:21:06.0675 3640 vhdmp (5461686cca2fda57b024547733ab42e3) C:\Windows\system32\drivers\vhdmp.sys
22:21:06.0675 3640 vhdmp - ok
22:21:06.0706 3640 viaagp (c829317a37b4bea8f39735d4b076e923) C:\Windows\system32\drivers\viaagp.sys
22:21:06.0721 3640 viaagp - ok
22:21:06.0737 3640 ViaC7 (e02f079a6aa107f06b16549c6e5c7b74) C:\Windows\system32\DRIVERS\viac7.sys
22:21:06.0737 3640 ViaC7 - ok
22:21:06.0768 3640 viaide (e43574f6a56a0ee11809b48c09e4fd3c) C:\Windows\system32\drivers\viaide.sys
22:21:06.0768 3640 viaide - ok
22:21:06.0799 3640 vmbus (c2f2911156fdc7817c52829c86da494e) C:\Windows\system32\drivers\vmbus.sys
22:21:06.0799 3640 vmbus - ok
22:21:06.0815 3640 VMBusHID (d4d77455211e204f370d08f4963063ce) C:\Windows\system32\drivers\VMBusHID.sys
22:21:06.0831 3640 VMBusHID - ok
22:21:06.0846 3640 volmgr (4c63e00f2f4b5f86ab48a58cd990f212) C:\Windows\system32\drivers\volmgr.sys
22:21:06.0846 3640 volmgr - ok
22:21:06.0877 3640 volmgrx (b5bb72067ddddbbfb04b2f89ff8c3c87) C:\Windows\system32\drivers\volmgrx.sys
22:21:06.0877 3640 volmgrx - ok
22:21:06.0924 3640 volsnap (f497f67932c6fa693d7de2780631cfe7) C:\Windows\system32\drivers\volsnap.sys
22:21:06.0924 3640 volsnap - ok
22:21:06.0955 3640 vsmraid (9dfa0cc2f8855a04816729651175b631) C:\Windows\system32\DRIVERS\vsmraid.sys
22:21:06.0955 3640 vsmraid - ok
22:21:07.0002 3640 VSS (209a3b1901b83aeb8527ed211cce9e4c) C:\Windows\system32\vssvc.exe
22:21:07.0033 3640 VSS - ok
22:21:07.0049 3640 vwifibus (90567b1e658001e79d7c8bbd3dde5aa6) C:\Windows\system32\DRIVERS\vwifibus.sys
22:21:07.0049 3640 vwifibus - ok
22:21:07.0080 3640 vwififlt (7090d3436eeb4e7da3373090a23448f7) C:\Windows\system32\DRIVERS\vwififlt.sys
22:21:07.0096 3640 vwififlt - ok
22:21:07.0096 3640 vwifimp (a3f04cbea6c2a10e6cb01f8b47611882) C:\Windows\system32\DRIVERS\vwifimp.sys
22:21:07.0111 3640 vwifimp - ok
22:21:07.0143 3640 W32Time (55187fd710e27d5095d10a472c8baf1c) C:\Windows\system32\w32time.dll
22:21:07.0158 3640 W32Time - ok
22:21:07.0174 3640 WacomPen (de3721e89c653aa281428c8a69745d90) C:\Windows\system32\DRIVERS\wacompen.sys
22:21:07.0174 3640 WacomPen - ok
22:21:07.0221 3640 WANARP (3c3c78515f5ab448b022bdf5b8ffdd2e) C:\Windows\system32\DRIVERS\wanarp.sys
22:21:07.0221 3640 WANARP - ok
22:21:07.0236 3640 Wanarpv6 (3c3c78515f5ab448b022bdf5b8ffdd2e) C:\Windows\system32\DRIVERS\wanarp.sys
22:21:07.0236 3640 Wanarpv6 - ok
22:21:07.0314 3640 WatAdminSvc (353a04c273ec58475d8633e75ccd5604) C:\Windows\system32\Wat\WatAdminSvc.exe
22:21:07.0361 3640 WatAdminSvc - ok
22:21:07.0408 3640 wbengine (691e3285e53dca558e1a84667f13e15a) C:\Windows\system32\wbengine.exe
22:21:07.0439 3640 wbengine - ok
22:21:07.0455 3640 WbioSrvc (9614b5d29dc76ac3c29f6d2d3aa70e67) C:\Windows\System32\wbiosrvc.dll
22:21:07.0455 3640 WbioSrvc - ok
22:21:07.0501 3640 wcncsvc (34eee0dfaadb4f691d6d5308a51315dc) C:\Windows\System32\wcncsvc.dll
22:21:07.0517 3640 wcncsvc - ok
22:21:07.0533 3640 WcsPlugInService (5d930b6357a6d2af4d7653bdabbf352f) C:\Windows\System32\WcsPlugInService.dll
22:21:07.0533 3640 WcsPlugInService - ok
22:21:07.0548 3640 Wd (1112a9badacb47b7c0bb0392e3158dff) C:\Windows\system32\DRIVERS\wd.sys
22:21:07.0548 3640 Wd - ok
22:21:07.0579 3640 Wdf01000 (9950e3d0f08141c7e89e64456ae7dc73) C:\Windows\system32\drivers\Wdf01000.sys
22:21:07.0579 3640 Wdf01000 - ok
22:21:07.0611 3640 WdiServiceHost (46ef9dc96265fd0b423db72e7c38c2a5) C:\Windows\system32\wdi.dll
22:21:07.0611 3640 WdiServiceHost - ok
22:21:07.0611 3640 WdiSystemHost (46ef9dc96265fd0b423db72e7c38c2a5) C:\Windows\system32\wdi.dll
22:21:07.0626 3640 WdiSystemHost - ok
22:21:07.0642 3640 WebClient (a9d880f97530d5b8fee278923349929d) C:\Windows\System32\webclnt.dll
22:21:07.0657 3640 WebClient - ok
22:21:07.0673 3640 Wecsvc (760f0afe937a77cff27153206534f275) C:\Windows\system32\wecsvc.dll
22:21:07.0689 3640 Wecsvc - ok
22:21:07.0704 3640 wercplsupport (ac804569bb2364fb6017370258a4091b) C:\Windows\System32\wercplsupport.dll
22:21:07.0720 3640 wercplsupport - ok
22:21:07.0735 3640 WerSvc (08e420d873e4fd85241ee2421b02c4a4) C:\Windows\System32\WerSvc.dll
22:21:07.0751 3640 WerSvc - ok
22:21:07.0767 3640 WfpLwf (8b9a943f3b53861f2bfaf6c186168f79) C:\Windows\system32\DRIVERS\wfplwf.sys
22:21:07.0767 3640 WfpLwf - ok
22:21:07.0782 3640 WIMMount (5cf95b35e59e2a38023836fff31be64c) C:\Windows\system32\drivers\wimmount.sys
22:21:07.0782 3640 WIMMount - ok
22:21:07.0860 3640 WinDefend (3fa
0
Réponse 20 / 26
Boy94450 Messages postés 509 Date d'inscription dimanche 8 janvier 2012 Statut Membre Dernière intervention 14 avril 2012 4
10 avril 2012 à 22:23
Peux tu me poster le rapport s'il te plait.

Note : Le rapport se trouve également sous C:\TDSSKiller.N°deversion_Date_Heure_log.txt.
0

Discussions similaires

Aide pour désinfection
Phanouman -
yoann090 -

11 réponses
Aide pour désinfection pc
Captain_coco -
bazfile -

7 réponses
desinfection
puce56 -
Malekal_morte- -

9 réponses
Désinfection
Pic hach -
Xileh -

9 réponses
redemarer mon pc avec un cd rom d'antivirus
zozoazae1 -
zozoazae1 -

2 réponses