Sujet Précédent Sujet Suivant

Trojan win32 sirefef.AC/AH

Fermé
Flora - 11 avril 2012 à 23:00
 Utilisateur anonyme - 25 avril 2012 à 01:59
Bonjour,

Mon ordinateur est infecté par le trojan Win32 Siref AC et AH.
J'utilise Microsoft Security Essentials comme anti-virus. Ce dernier n'arrive pas à le nettoyer pour de bon et le détecte en boucle depuis hier.

J'ai téléchargé ZHPDiag et OTIL (de Odt Timer) et analyé le PC mais je n'arrive pas à mettre le rapport sur cjoint.com ni sur pjjoint.malekal.com. Quelqu'un peut-il m'aider SVP ?
A voir également:

13 réponses

Réponse 1 / 13
Utilisateur anonyme
11 avril 2012 à 23:01
salut

telecharge et enregistre Pre_Scan sur ton bureau :

http://forums-fec.be/gen-hackman/Pre_Scan.exe

Avertissement :Il y aura une extinction du bureau pendant le scan --> pas de panique.

une fois telechargé lance-le , laisse faire le scan jusqu'à l'apparition de "Pre_scan_la_date_et_l'heure.txt" sur le bureau.

si l'outil est relancé plusieurs fois , il te proposera un menu et qu'aucune option n'est demandée, lance l'option "Kill"

si l'outil est bloqué par l'infection utilise cette version avec extension .pif :

http://forums-fec.be/gen-hackman/Pre_Scan.pif

ou cette version renommée winlogon.exe :

http://forums-fec.be/gen-hackman/winlogon.exe

si l'outil detecte un proxy et que tu n'en as pas installé clique sur "supprimer le proxy"

Il se peut qu'une multitude de fenêtres noires clignotent , laisse-le travailler

Poste Pre_Scan_la_date_et_l'heure.txt qui apparaitra sur le bureau en fin de scan


NE LE POSTE PAS SUR LE FORUM !!! (il est trop long)

Heberge le rapport sur http://pjjoint.malekal.com puis donne le lien obtenu en echange sur le forum où tu te fais aider
0
Réponse 2 / 13
Flora
12 avril 2012 à 21:20
Merci beaucoup pour les explications.

Voila le rapport
http://pjjoint.malekal.com/files.php?id=20120412_v9n13n5s5g11

Merci d'avance pour l'aide.
0
Réponse 3 / 13
Utilisateur anonyme
12 avril 2012 à 21:45
?

il le detecte à quel endroit ?
0
Réponse 4 / 13
Flora
12 avril 2012 à 21:59
Pour le moment l'antivirus ne le détecte plus en boucle (ça a peut être marché les séries de nettoyage que je fais depuis hier).
Si non, le virus est détecté sur le disque dur à différent emplacement.
La base c'est toujours : C://wINDOWS/systeme32
Après la spécificité des emplacement varie :
C://wINDOWS/systeme32/CdaCSBA.dll ou
C://wINDOWS/systeme32/wudfpf.dll
etc...
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 5 / 13
Utilisateur anonyme
12 avril 2012 à 22:13
tu n'utilises pas d'autres outils sans mon accord ...???
0
Réponse 6 / 13
Flora
12 avril 2012 à 22:23
J'avoue que hier soir j'ai tout essayé avant de poster mon message : RootKit Remover, Anti Zero Access, ZHPDiag, OTIL (de Odt Timer)...
Mais depuis, je suis à la lettre ce que tu me dit de faire...

Alors, tu as trouver quelque chose ?
0
Réponse 7 / 13
Utilisateur anonyme
13 avril 2012 à 00:11
et si ta machine avait planté avec la multiplication de l'utilisation des outils ? sans vraiment en connaitre le fonctionnement et leur maniere d'agir ?
0
Réponse 8 / 13
Flora
13 avril 2012 à 00:32
Non je ne pense pas que ce soit ça car j'ai téléchargé tous ces logiciels hier soir après que mon PC commence à planter, ralentir et que l'antivirus m'annonce en boucle la présence de virus.
J'ai d'abord essayé Anti Zero Acces mais ça n'a rien donnée. Le scan annonçait aucune infection (alors que l'anti virus annonçait le contraire).
Ensuite j'ai téléchargé puis lancé ZHPDiag.
Je n'ai pas réussit à mettre le rapport sur le site.
Alors j'ai tenté OTIL.. Idem: impossible de mettre le rapport en ligne.

Depuis que j'ai fait ce que tu m'as dit, j'ai enfin réussi à mettre le rapport en line et le PC est moins lent. L'anti virus ne détecte plus rien. ça va mieux mais je ne sais tjrs pas si ma machine est clean...
Comment puis-je en être sûre ?

Quelle est la prochaine procédure ?

Merci
0
Réponse 9 / 13
Utilisateur anonyme
13 avril 2012 à 01:26
installe le service pack 3 , puis va sur windows update faire les mises à jour windows qu il te manquent

=========

desinstalle adobe reader 8
desinstalle RegistryBooster si encore présent , ca va te planter ta machine ce genre de merd$$$$$
desinstalle SAS Versioned Jar Repository 9.2
=======

Fais analyser le(s) fichier(s) suivants sur Virustotal :

Virus Total

clique sur "Parcourir" et trouve puis selectionne ce(s) fichier(s) :

C:\WINDOWS\System32\Drivers\afd.sys
C:\WINDOWS\System32\Drivers\asyncmac.sys

* Clique maintenant sur Envoyer le fichier. et laisse travailler tant que "Situation actuelle : en cours d'analyse" est affiché.
* Il est possible que le fichier soit mis en file d'attente en raison d'un grand nombre de demandes d'analyses. En ce cas, il te faudra patienter sans actualiser la page.
* Lorsque l'analyse est terminée colle le lien de(s)( la) page(s) dans ta prochaine réponse.

===========

▶ Relance Pre_Scan, et choisis l'option Script.
▶ Dans le fichier texte, copie/colle les lignes ci-dessous (en gras).

___________________________________________________________
Kill::

Registry::
[-HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Privacy Protection]
[-HKLM\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0015-0000-0012-ABCDEFFEDCBA}]
[-HKLM\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0015-0000-0015-ABCDEFFEDCBA}]
[-HKLM\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0015-0000-0016-ABCDEFFEDCBA}]
[-HKCU\Software\0038b98d]

File::
C:\Documents and Settings\All Users\Application Data\privacy.exe
C:\WINDOWS\Tasks\RegistryBooster.job

folder::
C:\25ebd395432b7c06fcbbd827dd47
C:\92cbeeba5f809d6192a632
C:\ee848bd6c4c338362b7724aab55061
C:\Kill'em
C:\Documents and Settings\CHU\Application Data\pdfforge

clean::

MBR::

Reboot::

___________________________________________________________
</gras>
▶ Enregistre le fichier texte, puis ferme-le.
▶ Il faut laisser l'outil travailler, et me donner le rapport Pre_Script.txt sur ton bureau quand l'outil aura terminé.
0
Flora
17 avril 2012 à 23:09
Dslée de la réactivité.

J'ai tout essayé mais impossible de mettre à jour les mises à jour qui me manquent.
Avant d'avoir le virus je n'arrivais déjà pas (échec de la mise à jour). Pourtant là, j'ai fait comme tu m'a dis :-(

Je continue qd même la procédure sans la mise à jour ?
0
Utilisateur anonyme
18 avril 2012 à 00:04
oué
0
Flora
20 avril 2012 à 13:52
Le résultat de l'analyse de asyncmac.sys

https://www.virustotal.com/file/7e60f572a6b3c6219e3c86225aa37243affd74337db7f108b04778042e5cc959/analysis/1334921311/

Le résultat de l'analyse de afd.sys

https://www.virustotal.com/file/cf5ec07e0b589fa2a4701c6cfd69e893fc3abf274ad57ae3c13ffe49063b02c8/analysis/1334921623/

Le résultat de Pre-scan :



¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Pre_Script | 2.326 ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

Microsoft Windows XP (32 bits) Service Pack 3

Switchs possibles :

processes:: | file:: | folder:: | Registry::
Driver:: | replace:: | DNS:: | Command::
txt:: | Host:: | NsLook:: | DLL:: | Unhide_Part::
list:: | IP:: | Kill:: | clean:: | Del_Part::
Reboot:: | MBR:: | Fixmbr:: | 40:: | Zip::
search:: | Tray:: | FF:: | Info::

Script : 13:42:14

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

Modification du registre effectuée

¤

Absent : C:\Documents and Settings\All Users\Application Data\privacy.exe
Supprimé : C:\WINDOWS\Tasks\RegistryBooster.job

¤

Supprimé : C:\25ebd395432b7c06fcbbd827dd47
non Supprimé : C:\92cbeeba5f809d6192a632
non Supprimé : C:\ee848bd6c4c338362b7724aab55061
Supprimé : C:\Kill'em
Supprimé : C:\Documents and Settings\CHU\Application Data\pdfforge

¤

¤¤¤¤¤¤¤¤¤¤ | MBR

Windows Version: Windows XP Professional
Windows Information: Service Pack 3 (build 2600)
Logical Drives Mask: 0x0000000c

Analysis of file "C:\Pre_Scan\MBR.bin":
Unknown MBR code




¤


¤¤¤¤¤¤¤¤¤¤ | Nettoyage disque

Nettoyage du disque effectué

¤


Fin : 13:44:52

¤¤¤¤¤¤¤¤¤¤ ( EOF ) ¤¤¤¤¤¤¤¤¤¤
0
Flora
21 avril 2012 à 00:04
Rien à signaler !! C'est donc OK maintenant ???

(J'espère)


23:59:27.0046 2336 TDSS rootkit removing tool 2.7.31.0 Apr 20 2012 19:49:47
23:59:27.0265 2336 ============================================================
23:59:27.0265 2336 Current date / time: 2012/04/19 23:59:27.0265
23:59:27.0265 2336 SystemInfo:
23:59:27.0265 2336
23:59:27.0265 2336 OS Version: 5.1.2600 ServicePack: 3.0
23:59:27.0265 2336 Product type: Workstation
23:59:27.0265 2336 ComputerName: CD79
23:59:27.0265 2336 UserName: CHU
23:59:27.0265 2336 Windows directory: C:\WINDOWS
23:59:27.0265 2336 System windows directory: C:\WINDOWS
23:59:27.0265 2336 Processor architecture: Intel x86
23:59:27.0265 2336 Number of processors: 2
23:59:27.0265 2336 Page size: 0x1000
23:59:27.0265 2336 Boot type: Normal boot
23:59:27.0265 2336 ============================================================
23:59:33.0546 2336 Drive \Device\Harddisk0\DR0 - Size: 0x12A1F16000 (74.53 Gb), SectorSize: 0x200, Cylinders: 0x2861, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xF0, Type 'K0', Flags 0x00000050
23:59:33.0578 2336 \Device\Harddisk0\DR0:
23:59:33.0578 2336 MBR partitions:
23:59:33.0578 2336 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x8AB7501
23:59:33.0656 2336 C: <-> \Device\Harddisk0\DR0\Partition0
23:59:33.0906 2336 Initialize success
23:59:33.0906 2336 ============================================================
23:59:40.0000 1544 ============================================================
23:59:40.0000 1544 Scan started
23:59:40.0000 1544 Mode: Manual;
23:59:40.0000 1544 ============================================================
23:59:44.0281 1544 a8djavs - ok
23:59:44.0750 1544 Abiosdsk - ok
23:59:45.0187 1544 abp480n5 (6abb91494fe6c59089b9336452ab2ea3) C:\WINDOWS\system32\DRIVERS\ABP480N5.SYS
23:59:45.0234 1544 abp480n5 - ok
23:59:45.0578 1544 ac97intc (0f2d66d5f08ebe2f77bb904288dcf6f0) C:\WINDOWS\system32\drivers\ac97intc.sys
23:59:45.0671 1544 ac97intc - ok
23:59:45.0750 1544 acedrv05 - ok
23:59:46.0046 1544 ACPI (e5e6dbfc41ea8aad005cb9a57a96b43b) C:\WINDOWS\system32\DRIVERS\ACPI.sys
23:59:46.0062 1544 ACPI - ok
23:59:46.0359 1544 ACPIEC (e4abc1212b70bb03d35e60681c447210) C:\WINDOWS\system32\DRIVERS\ACPIEC.sys
23:59:46.0390 1544 ACPIEC - ok
23:59:46.0578 1544 AcPrfMgrSvc (ac83da08b02bc2ac4f9920523275bb0f) C:\Program Files\ThinkPad\ConnectUtilities\AcPrfMgrSvc.exe
23:59:46.0578 1544 AcPrfMgrSvc - ok
23:59:46.0609 1544 AcSvc (f0dfcab03cc9c71137d00c17feb08873) C:\Program Files\ThinkPad\ConnectUtilities\AcSvc.exe
23:59:46.0625 1544 AcSvc - ok
23:59:46.0984 1544 ADIHdAudAddService (d537f3d03c6301fefa21f3eee8cc82d8) C:\WINDOWS\system32\drivers\ADIHdAud.sys
23:59:47.0000 1544 ADIHdAudAddService - ok
23:59:47.0312 1544 adpu160m (9a11864873da202c996558b2106b0bbc) C:\WINDOWS\system32\DRIVERS\adpu160m.sys
23:59:47.0375 1544 adpu160m - ok
23:59:47.0468 1544 adpu320 - ok
23:59:47.0515 1544 adsexpb - ok
23:59:47.0765 1544 AEAudio (860df7676869cd8690cb2b23ab6de66a) C:\WINDOWS\system32\drivers\AEAudio.sys
23:59:47.0765 1544 AEAudio - ok
23:59:47.0953 1544 AEAudioService - ok
23:59:48.0015 1544 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
23:59:48.0031 1544 aec - ok
23:59:48.0187 1544 AegisP (023867b6606fbabcdd52e089c4a507da) C:\WINDOWS\system32\DRIVERS\AegisP.sys
23:59:48.0218 1544 AegisP - ok
23:59:48.0593 1544 AFD (1e44bc1e83d8fd2305f8d452db109cf9) C:\WINDOWS\System32\drivers\afd.sys
23:59:48.0593 1544 AFD - ok
23:59:48.0843 1544 agp440 (08fd04aa961bdc77fb983f328334e3d7) C:\WINDOWS\system32\DRIVERS\agp440.sys
23:59:48.0843 1544 agp440 - ok
23:59:48.0984 1544 agpCPQ (03a7e0922acfe1b07d5db2eeb0773063) C:\WINDOWS\system32\DRIVERS\agpCPQ.sys
23:59:49.0062 1544 agpCPQ - ok
23:59:49.0234 1544 Aha154x (c23ea9b5f46c7f7910db3eab648ff013) C:\WINDOWS\system32\DRIVERS\aha154x.sys
23:59:49.0250 1544 Aha154x - ok
23:59:49.0359 1544 aic78u2 (19dd0fb48b0c18892f70e2e7d61a1529) C:\WINDOWS\system32\DRIVERS\aic78u2.sys
23:59:49.0406 1544 aic78u2 - ok
23:59:49.0421 1544 aic78xx (b7fe594a7468aa0132deb03fb8e34326) C:\WINDOWS\system32\DRIVERS\aic78xx.sys
23:59:49.0468 1544 aic78xx - ok
23:59:49.0515 1544 Alerter (758fdc60d41716ef889d849989b4b1cd) C:\WINDOWS\system32\alrsvc.dll
23:59:49.0562 1544 Alerter - ok
23:59:49.0828 1544 ALG (5e9a6658a2a69ae7eb195113b7a2e7a9) C:\WINDOWS\System32\alg.exe
23:59:49.0828 1544 ALG - ok
23:59:49.0875 1544 AliIde (1140ab9938809700b46bb88e46d72a96) C:\WINDOWS\system32\DRIVERS\aliide.sys
23:59:49.0906 1544 AliIde - ok
23:59:50.0265 1544 alim1541 (cb08aed0de2dd889a8a820cd8082d83c) C:\WINDOWS\system32\DRIVERS\alim1541.sys
23:59:50.0328 1544 alim1541 - ok
23:59:50.0437 1544 amdagp (95b4fb835e28aa1336ceeb07fd5b9398) C:\WINDOWS\system32\DRIVERS\amdagp.sys
23:59:50.0500 1544 amdagp - ok
23:59:50.0671 1544 amdk77 - ok
23:59:50.0796 1544 amsint (79f5add8d24bd6893f2903a3e2f3fad6) C:\WINDOWS\system32\DRIVERS\amsint.sys
23:59:50.0859 1544 amsint - ok
23:59:51.0203 1544 ANC (11ab185a7af224800bbfb5b836974a17) C:\WINDOWS\system32\drivers\ANC.SYS
23:59:51.0265 1544 ANC - ok
23:59:51.0546 1544 AppMgmt (f36c9f78fc902c8dce4d3b576bb0435a) C:\WINDOWS\System32\appmgmts.dll
23:59:51.0656 1544 AppMgmt - ok
23:59:52.0218 1544 AR5211 (bd4a059b937a64f403e693dcaa26fe38) C:\WINDOWS\system32\DRIVERS\ar5211.sys
23:59:52.0343 1544 AR5211 - ok
23:59:52.0703 1544 Arp1394 (b5b8a80875c1dededa8b02765642c32f) C:\WINDOWS\system32\DRIVERS\arp1394.sys
23:59:52.0781 1544 Arp1394 - ok
23:59:52.0796 1544 array_utility_service4,0,1,3 - ok
23:59:53.0125 1544 asc (62d318e9a0c8fc9b780008e724283707) C:\WINDOWS\system32\DRIVERS\asc.sys
23:59:53.0156 1544 asc - ok
23:59:53.0187 1544 asc3350p (69eb0cc7714b32896ccbfd5edcbea447) C:\WINDOWS\system32\DRIVERS\asc3350p.sys
23:59:53.0218 1544 asc3350p - ok
23:59:53.0250 1544 asc3550 (5d8de112aa0254b907861e9e9c31d597) C:\WINDOWS\system32\DRIVERS\asc3550.sys
23:59:53.0265 1544 asc3550 - ok
23:59:53.0515 1544 aspnet_state (0e5e4957549056e2bf2c49f4f6b601ad) C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
23:59:53.0562 1544 aspnet_state - ok
23:59:53.0687 1544 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
23:59:53.0718 1544 AsyncMac - ok
23:59:53.0906 1544 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys
23:59:54.0015 1544 atapi - ok
23:59:54.0109 1544 Atdisk - ok
23:59:54.0312 1544 atiavaiw - ok
23:59:54.0359 1544 AtiHdmiService - ok
23:59:54.0437 1544 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
23:59:54.0515 1544 Atmarpc - ok
23:59:54.0640 1544 atmeltpm (dbf0d7e2df33b469eb55406fea759350) C:\WINDOWS\system32\DRIVERS\atmeltpm.sys
23:59:54.0671 1544 atmeltpm - ok
23:59:54.0968 1544 AudioSrv (b4005aef7873144634765b570dac466e) C:\WINDOWS\System32\audiosrv.dll
23:59:54.0968 1544 AudioSrv - ok
23:59:55.0093 1544 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
23:59:55.0125 1544 audstub - ok
23:59:55.0484 1544 b57w2k (ea377a8e8e1000877210259750cbbf5f) C:\WINDOWS\system32\DRIVERS\b57xp32.sys
23:59:55.0484 1544 b57w2k - ok
23:59:55.0578 1544 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
23:59:55.0625 1544 Beep - ok
23:59:55.0875 1544 bgs_sdservice - ok
23:59:55.0984 1544 BITS (baa0b6e647c1ad593e9bae5cc31bcffb) C:\WINDOWS\system32\qmgr.dll
23:59:56.0046 1544 BITS - ok
23:59:56.0250 1544 BoiHwsetup - ok
23:59:56.0312 1544 Browser (06b54a7b1ef7cb16bfd0e208d343fa71) C:\WINDOWS\System32\browser.dll
23:59:56.0312 1544 Browser - ok
23:59:56.0328 1544 caccprovsp - ok
23:59:56.0375 1544 cbidf (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\DRIVERS\cbidf2k.sys
23:59:56.0406 1544 cbidf - ok
23:59:56.0421 1544 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
23:59:56.0453 1544 cbidf2k - ok
23:59:56.0656 1544 cd20xrnt (f3ec03299634490e97bbce94cd2954c7) C:\WINDOWS\system32\DRIVERS\cd20xrnt.sys
23:59:56.0687 1544 cd20xrnt - ok
23:59:56.0718 1544 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
23:59:56.0765 1544 Cdaudio - ok
23:59:56.0828 1544 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
23:59:56.0890 1544 Cdfs - ok
23:59:57.0078 1544 cdr4_xp - ok
23:59:57.0156 1544 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys
23:59:57.0218 1544 Cdrom - ok
23:59:57.0234 1544 Changer - ok
23:59:57.0296 1544 CiSvc (793ef38a5fd086c3c8e48a8a861562ed) C:\WINDOWS\system32\cisvc.exe
23:59:57.0375 1544 CiSvc - ok
23:59:57.0578 1544 citrixxteserver - ok
23:59:57.0640 1544 ClipSrv (8b30cbb0c07d49b2658fb190946b0e7e) C:\WINDOWS\system32\clipsrv.exe
23:59:57.0718 1544 ClipSrv - ok
23:59:57.0875 1544 clr_optimization_v2.0.50727_32 (d87acaed61e417bba546ced5e7e36d9c) C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
23:59:57.0953 1544 clr_optimization_v2.0.50727_32 - ok
23:59:58.0125 1544 CmBatt (0f6c187d38d98f8df904589a5f94d411) C:\WINDOWS\system32\DRIVERS\CmBatt.sys
23:59:58.0156 1544 CmBatt - ok
23:59:58.0281 1544 CmdIde (e3726ad522d0bdae090671048c991ab3) C:\WINDOWS\system32\DRIVERS\cmdide.sys
23:59:58.0328 1544 CmdIde - ok
23:59:58.0468 1544 comhost - ok
23:59:58.0609 1544 Compbatt (6e4c9f21f0fae8940661144f41b13203) C:\WINDOWS\system32\DRIVERS\compbatt.sys
23:59:58.0625 1544 Compbatt - ok
23:59:58.0640 1544 COMSysApp - ok
23:59:58.0718 1544 Cpqarray (3ee529119eed34cd212a215e8c40d4b6) C:\WINDOWS\system32\DRIVERS\cpqarray.sys
23:59:58.0750 1544 Cpqarray - ok
23:59:58.0921 1544 CryptSvc (7a6d0b71035e123fdda2156a25578ad3) C:\WINDOWS\System32\cryptsvc.dll
23:59:58.0937 1544 CryptSvc - ok
23:59:59.0015 1544 cxlpt - ok
23:59:59.0109 1544 dac2w2k (e550e7418984b65a78299d248f0a7f36) C:\WINDOWS\system32\DRIVERS\dac2w2k.sys
23:59:59.0171 1544 dac2w2k - ok
23:59:59.0328 1544 dac960nt (683789caa3864eb46125ae86ff677d34) C:\WINDOWS\system32\DRIVERS\dac960nt.sys
23:59:59.0359 1544 dac960nt - ok
23:59:59.0484 1544 DcomLaunch (0203b1aad358f206cb0a3c1f93cce17a) C:\WINDOWS\system32\rpcss.dll
23:59:59.0500 1544 DcomLaunch - ok
23:59:59.0656 1544 DELL_A02 - ok
23:59:59.0750 1544 Dhcp (318f535dc05551d96deeb90b6d6904de) C:\WINDOWS\System32\dhcpcsvc.dll
23:59:59.0750 1544 Dhcp - ok
23:59:59.0796 1544 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
23:59:59.0843 1544 Disk - ok
00:00:00.0062 1544 DLABOIOM (35cbc02546335ea41a5d516da6626c8a) C:\WINDOWS\system32\DLA\DLABOIOM.SYS
00:00:00.0078 1544 DLABOIOM - ok
00:00:00.0187 1544 DLACDBHM (ec6ae8bc9f773382d2eed49e4dfdae2a) C:\WINDOWS\system32\Drivers\DLACDBHM.SYS
00:00:00.0203 1544 DLACDBHM - ok
00:00:00.0359 1544 dladresm - ok
00:00:00.0421 1544 DLADResN (7a23f6787f0087a5d513eb28889fe6f9) C:\WINDOWS\system32\DLA\DLADResN.SYS
00:00:00.0437 1544 DLADResN - ok
00:00:00.0500 1544 DLAIFS_M (e4859ca5bd8412a9a60d62067a653522) C:\WINDOWS\system32\DLA\DLAIFS_M.SYS
00:00:00.0609 1544 DLAIFS_M - ok
00:00:00.0796 1544 DLAOPIOM (20c24a3d1cf0825487c93f806625805e) C:\WINDOWS\system32\DLA\DLAOPIOM.SYS
00:00:00.0828 1544 DLAOPIOM - ok
00:00:00.0890 1544 DLAPoolM (8a530da5dc81954bcf1966813f699b49) C:\WINDOWS\system32\DLA\DLAPoolM.SYS
00:00:00.0921 1544 DLAPoolM - ok
00:00:00.0953 1544 DLARTL_N (0605b66052f82b6f07204dbdb61c13ff) C:\WINDOWS\system32\Drivers\DLARTL_N.SYS
00:00:01.0062 1544 DLARTL_N - ok
00:00:01.0265 1544 DLAUDFAM (7eda68af6a91bf64af6f301e39928ebf) C:\WINDOWS\system32\DLA\DLAUDFAM.SYS
00:00:01.0359 1544 DLAUDFAM - ok
00:00:01.0437 1544 DLAUDF_M (a18423bbc6d92b01fdf3c51e7510ee70) C:\WINDOWS\system32\DLA\DLAUDF_M.SYS
00:00:01.0500 1544 DLAUDF_M - ok
00:00:01.0656 1544 dlbu_device - ok
00:00:01.0671 1544 dmadmin - ok
00:00:01.0875 1544 dmboot (f5deadd42335fb33edca74ecb2f36cba) C:\WINDOWS\system32\drivers\dmboot.sys
00:00:01.0953 1544 dmboot - ok
00:00:02.0171 1544 dmio (5a7c47c9b3f9fb92a66410a7509f0c71) C:\WINDOWS\system32\drivers\dmio.sys
00:00:02.0218 1544 dmio - ok
00:00:02.0359 1544 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
00:00:02.0375 1544 dmload - ok
00:00:02.0625 1544 dmserver (6797c23d6b79935482d7f0e8ca5e5b67) C:\WINDOWS\System32\dmserver.dll
00:00:02.0625 1544 dmserver - ok
00:00:02.0875 1544 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
00:00:02.0875 1544 DMusic - ok
00:00:03.0015 1544 Dnscache (1a1e59377fb6cacd711cc5073c4a7d79) C:\WINDOWS\System32\dnsrslvr.dll
00:00:03.0015 1544 Dnscache - ok
00:00:03.0640 1544 Dot3svc (3fcf86f03d0302443c21ce6e5bbf7a25) C:\WINDOWS\System32\dot3svc.dll
00:00:04.0000 1544 Dot3svc - ok
00:00:04.0578 1544 dpti2o (40f3b93b4e5b0126f2f5c0a7a5e22660) C:\WINDOWS\system32\DRIVERS\dpti2o.sys
00:00:04.0609 1544 dpti2o - ok
00:00:05.0109 1544 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
00:00:05.0109 1544 drmkaud - ok
00:00:05.0296 1544 DRVMCDB (48c7008d23dcfce0d0232f49307efced) C:\WINDOWS\system32\Drivers\DRVMCDB.SYS
00:00:05.0328 1544 DRVMCDB - ok
00:00:05.0437 1544 DRVNDDM (05467e44a42c777dd1534bb4539b16d1) C:\WINDOWS\system32\Drivers\DRVNDDM.SYS
00:00:08.0265 1544 DRVNDDM - ok
00:00:08.0484 1544 DynDNS_Updater_Service - ok
00:00:08.0562 1544 E100B (1961f8b618e3c20df54c146b294efd2a) C:\WINDOWS\system32\DRIVERS\e100b325.sys
00:00:08.0656 1544 E100B - ok
00:00:08.0781 1544 EapHost (8b5fc9087d2cab110bc2ed5cc5e7b8ac) C:\WINDOWS\System32\eapsvc.dll
00:00:08.0859 1544 EapHost - ok
00:00:09.0093 1544 enum1394 - ok
00:00:09.0156 1544 ERSvc (94f948cb12c4d35483f1e815deb16c7b) C:\WINDOWS\System32\ersvc.dll
00:00:09.0171 1544 ERSvc - ok
00:00:09.0218 1544 Eventlog (c3fb1d70cb88722267949694ba51759e) C:\WINDOWS\system32\services.exe
00:00:09.0234 1544 Eventlog - ok
00:00:09.0484 1544 EventSystem (ec16ae9b37eacf871629227a3f3913fd) C:\WINDOWS\system32\es.dll
00:00:09.0500 1544 EventSystem - ok
00:00:09.0640 1544 EvtEng (344aa81113481e615e366bc1c36dfe0c) C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
00:00:09.0656 1544 EvtEng - ok
00:00:10.0187 1544 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
00:00:10.0296 1544 Fastfat - ok
00:00:10.0718 1544 fasttraksvc - ok
00:00:10.0875 1544 FastUserSwitchingCompatibility (1b8542f338cdd86929a084a455837158) C:\WINDOWS\System32\shsvcs.dll
00:00:10.0875 1544 FastUserSwitchingCompatibility - ok
00:00:11.0062 1544 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\DRIVERS\fdc.sys
00:00:11.0109 1544 Fdc - ok
00:00:11.0187 1544 Fips (31f923eb2170fc172c81abda0045d18c) C:\WINDOWS\system32\drivers\Fips.sys
00:00:11.0234 1544 Fips - ok
00:00:11.0265 1544 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\DRIVERS\flpydisk.sys
00:00:11.0296 1544 Flpydisk - ok
00:00:11.0484 1544 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\drivers\fltmgr.sys
00:00:11.0531 1544 FltMgr - ok
00:00:11.0671 1544 FontCache3.0.0.0 (8ba7c024070f2b7fdd98ed8a4ba41789) c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
00:00:11.0671 1544 FontCache3.0.0.0 - ok
00:00:11.0859 1544 FreeTdi - ok
00:00:11.0937 1544 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
00:00:11.0968 1544 Fs_Rec - ok
00:00:12.0000 1544 Ftdisk (a86859b77b908c18c2657f284aa29fe3) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
00:00:12.0031 1544 Ftdisk - ok
00:00:12.0250 1544 G400 (99815bfcc1d1e1814484fde292c68987) C:\WINDOWS\system32\DRIVERS\G400m.sys
00:00:12.0296 1544 G400 - ok
00:00:12.0328 1544 generichidservice - ok
00:00:12.0406 1544 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
00:00:12.0468 1544 Gpc - ok
00:00:12.0656 1544 GT891x - ok
00:00:12.0734 1544 gusvc (c1b577b2169900f4cf7190c39f085794) C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
00:00:12.0750 1544 gusvc - ok
00:00:12.0828 1544 HDAudBus (573c7d0a32852b48f3058cfd8026f511) C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
00:00:12.0828 1544 HDAudBus - ok
00:00:13.0093 1544 helpsvc (1247f83b705af0e796330442f7967cf8) C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
00:00:13.0093 1544 helpsvc - ok
00:00:13.0171 1544 HidServ - ok
00:00:13.0328 1544 HidUsb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys
00:00:13.0359 1544 HidUsb - ok
00:00:13.0484 1544 hkmsvc (17b3c3d40cdba40c2e331d28be4de27f) C:\WINDOWS\System32\kmsvc.dll
00:00:13.0578 1544 hkmsvc - ok
00:00:13.0828 1544 hpn (b028377dea0546a5fcfba928a8aefae0) C:\WINDOWS\system32\DRIVERS\hpn.sys
00:00:13.0859 1544 hpn - ok
00:00:13.0953 1544 HSFHWAZL (6a5c4732d6803f84e2987edd8e4359ce) C:\WINDOWS\system32\DRIVERS\HSFHWAZL.sys
00:00:14.0031 1544 HSFHWAZL - ok
00:00:14.0296 1544 HSF_DPV (21c31273c6cc4826e74be8ae3b09d4a8) C:\WINDOWS\system32\DRIVERS\HSF_DPV.sys
00:00:14.0406 1544 HSF_DPV - ok
00:00:14.0703 1544 HTTP (f80a415ef82cd06ffaf0d971528ead38) C:\WINDOWS\system32\Drivers\HTTP.sys
00:00:14.0718 1544 HTTP - ok
00:00:14.0906 1544 HTTPFilter (bd31cface38d1800abdb43f4260af0d5) C:\WINDOWS\System32\w3ssl.dll
00:00:14.0906 1544 HTTPFilter - ok
00:00:15.0046 1544 i2omgmt (9368670bd426ebea5e8b18a62416ec28) C:\WINDOWS\system32\drivers\i2omgmt.sys
00:00:15.0078 1544 i2omgmt - ok
00:00:15.0250 1544 i2omp (f10863bf1ccc290babd1a09188ae49e0) C:\WINDOWS\system32\DRIVERS\i2omp.sys
00:00:15.0296 1544 i2omp - ok
00:00:15.0343 1544 i8042prt (a09bdc4ed10e3b2e0ec27bb94af32516) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
00:00:15.0390 1544 i8042prt - ok
00:00:15.0453 1544 iaimfp1 - ok
00:00:15.0468 1544 iAimTV5 - ok
00:00:15.0906 1544 ialm (06b71441957b48a4866de2fe27cb79c8) C:\WINDOWS\system32\DRIVERS\igxpmp32.sys
00:00:16.0250 1544 ialm - ok
00:00:16.0546 1544 iaStor (fd7f9d74c2b35dbda400804a3f5ed5d8) C:\WINDOWS\system32\DRIVERS\iaStor.sys
00:00:16.0562 1544 iaStor - ok
00:00:16.0859 1544 IBMPMDRV (bf648877413f6160e480814a24942b65) C:\WINDOWS\system32\DRIVERS\ibmpmdrv.sys
00:00:16.0875 1544 IBMPMDRV - ok
00:00:17.0109 1544 IBMPMSVC (a75ce11915e4ecc5e1597d6e0f7bb2db) C:\WINDOWS\system32\ibmpmsvc.exe
00:00:17.0109 1544 IBMPMSVC - ok
00:00:17.0187 1544 IBMTPCHK (083d095fed4b01fff9d501b98d50db68) C:\WINDOWS\system32\Drivers\IBMBLDID.sys
00:00:17.0218 1544 IBMTPCHK - ok
00:00:17.0437 1544 idechndr - ok
00:00:17.0562 1544 IDriverT (daf66902f08796f9c694901660e5a64a) C:\Program Files\Fichiers communs\InstallShield\Driver\1150\Intel 32\IDriverT.exe
00:00:17.0578 1544 IDriverT - ok
00:00:17.0953 1544 idsvc (c01ac32dc5c03076cfb852cb5da5229c) c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
00:00:18.0140 1544 idsvc - ok
00:00:18.0421 1544 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys
00:00:18.0484 1544 Imapi - ok
00:00:18.0562 1544 ImapiService (c4221678bbaa55239c23632875759961) C:\WINDOWS\system32\imapi.exe
00:00:18.0578 1544 ImapiService - ok
00:00:18.0781 1544 imountsrv - ok
00:00:18.0828 1544 ini910u (4a40e045faee58631fd8d91afc620719) C:\WINDOWS\system32\DRIVERS\ini910u.sys
00:00:18.0859 1544 ini910u - ok
00:00:18.0906 1544 IntelIde (4b6da2f0a4095857a9e3f3697399d575) C:\WINDOWS\system32\DRIVERS\intelide.sys
00:00:18.0968 1544 IntelIde - ok
00:00:19.0265 1544 intelppm (ad340800c35a42d4de1641a37feea34c) C:\WINDOWS\system32\DRIVERS\intelppm.sys
00:00:19.0265 1544 intelppm - ok
00:00:19.0328 1544 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\drivers\ip6fw.sys
00:00:19.0390 1544 Ip6Fw - ok
00:00:19.0687 1544 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
00:00:19.0734 1544 IpFilterDriver - ok
00:00:19.0781 1544 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
00:00:19.0843 1544 IpInIp - ok
00:00:20.0156 1544 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
00:00:20.0156 1544 IpNat - ok
00:00:20.0234 1544 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
00:00:20.0328 1544 IPSec - ok
00:00:20.0531 1544 IPSSVC (00d8e9daebe72a5df3986fd418a995eb) C:\WINDOWS\system32\IPSSVC.EXE
00:00:20.0531 1544 IPSSVC - ok
00:00:20.0609 1544 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
00:00:20.0640 1544 IRENUM - ok
00:00:20.0718 1544 isamsmt - ok
00:00:20.0750 1544 isapnp (355836975a67b6554bca60328cd6cb74) C:\WINDOWS\system32\DRIVERS\isapnp.sys
00:00:20.0812 1544 isapnp - ok
00:00:21.0046 1544 Iviaspi (f59c3569a2f2c464bb78cb1bdcdca55e) C:\WINDOWS\system32\drivers\iviaspi.sys
00:00:21.0093 1544 Iviaspi - ok
00:00:21.0187 1544 IviRegMgr (213822072085b5bbad9af30ab577d817) C:\Program Files\Fichiers communs\InterVideo\RegMgr\iviRegMgr.exe
00:00:21.0203 1544 IviRegMgr - ok
00:00:21.0265 1544 JavaQuickStarterService (0a5709543986843d37a92290b7838340) C:\Program Files\Java\jre6\bin\jqs.exe
00:00:21.0265 1544 JavaQuickStarterService - ok
00:00:21.0468 1544 jsdaemon - ok
00:00:21.0500 1544 jukebox3 - ok
00:00:21.0562 1544 Kbdclass (16813155807c6881f4bfbf6657424659) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
00:00:21.0609 1544 Kbdclass - ok
00:00:21.0640 1544 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys
00:00:21.0656 1544 kmixer - ok
00:00:21.0859 1544 KR10N - ok
00:00:21.0890 1544 KS0108 - ok
00:00:21.0937 1544 KSecDD (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys
00:00:21.0953 1544 KSecDD - ok
00:00:22.0000 1544 lanmanserver (1db8078a32e03ac8f5eb5e6dcac2aa34) C:\WINDOWS\System32\srvsvc.dll
00:00:22.0000 1544 lanmanserver - ok
00:00:22.0250 1544 lanmanworkstation (ad54ead46d92f413be189aabc1c59490) C:\WINDOWS\System32\wkssvc.dll
00:00:22.0250 1544 lanmanworkstation - ok
00:00:22.0296 1544 lbrtfdc - ok
00:00:22.0500 1544 LiveUpdate (ff7075265691c741afd2f756559a10d5) C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
00:00:22.0640 1544 LiveUpdate - ok
00:00:22.0875 1544 LmHosts (0f357c079ac529a844ab5b18e4eef881) C:\WINDOWS\System32\lmhsvc.dll
00:00:22.0875 1544 LmHosts - ok
00:00:22.0890 1544 ltmodem5 - ok
00:00:22.0906 1544 LUsbKbd - ok
00:00:22.0921 1544 lvselsus - ok
00:00:22.0953 1544 lxce_device - ok
00:00:22.0968 1544 mdc8021x - ok
00:00:23.0046 1544 mdmxsdk (0cea2d0d3fa284b85ed5b68365114f76) C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys
00:00:23.0046 1544 mdmxsdk - ok
00:00:23.0078 1544 Messenger (e67a66a3781c1a483f0f8992664cbe0d) C:\WINDOWS\System32\msgsvc.dll
00:00:23.0156 1544 Messenger - ok
00:00:23.0437 1544 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
00:00:23.0453 1544 mnmdd - ok
00:00:23.0484 1544 mnmsrvc (d3a2870cd96cda7bcff3dc54f64087ad) C:\WINDOWS\system32\mnmsrvc.exe
00:00:23.0562 1544 mnmsrvc - ok
00:00:23.0843 1544 Modem (510ade9327fe84c10254e1902697e25f) C:\WINDOWS\system32\drivers\Modem.sys
00:00:23.0843 1544 Modem - ok
00:00:23.0906 1544 Mouclass (027c01bd7ef3349aaebc883d8a799efb) C:\WINDOWS\system32\DRIVERS\mouclass.sys
00:00:23.0937 1544 Mouclass - ok
00:00:23.0984 1544 mouhid (124d6846040c79b9c997f78ef4b2a4e5) C:\WINDOWS\system32\DRIVERS\mouhid.sys
00:00:24.0015 1544 mouhid - ok
00:00:24.0375 1544 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys
00:00:24.0421 1544 MountMgr - ok
00:00:24.0468 1544 MpFilter (fee0baded54222e9f1dae9541212aab1) C:\WINDOWS\system32\DRIVERS\MpFilter.sys
00:00:24.0500 1544 MpFilter - ok
00:00:24.0718 1544 mpfservice - ok
00:00:24.0828 1544 MpKsl0e6c5fb0 (a69630d039c38018689190234f866d77) c:\Documents and Settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{F73D1B6A-97C5-4A02-AB52-664D9FF5ED6A}\MpKsl0e6c5fb0.sys
00:00:24.0828 1544 MpKsl0e6c5fb0 - ok
00:00:25.0062 1544 mr7910 - ok
00:00:25.0140 1544 mraid35x (3f4bb95e5a44f3be34824e8e7caf0737) C:\WINDOWS\system32\DRIVERS\mraid35x.sys
00:00:25.0156 1544 mraid35x - ok
00:00:25.0234 1544 MRESP50 - ok
00:00:25.0296 1544 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
00:00:25.0296 1544 MRxDAV - ok
00:00:25.0546 1544 MRxSmb (7d304a5eb4344ebeeab53a2fe3ffb9f0) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
00:00:25.0562 1544 MRxSmb - ok
00:00:25.0781 1544 MSDTC (8648d670ae0d95c95e7bbb5b80661796) C:\WINDOWS\system32\msdtc.exe
00:00:25.0828 1544 MSDTC - ok
00:00:25.0921 1544 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
00:00:26.0125 1544 Msfs - ok
00:00:26.0328 1544 MSIServer - ok
00:00:26.0343 1544 msi_wlan_service - ok
00:00:26.0468 1544 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys
00:00:26.0500 1544 MSKSSRV - ok
00:00:26.0625 1544 MsMpSvc (cfce43b70ca0cc4dcc8adb62b792b173) c:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe
00:00:26.0625 1544 MsMpSvc - ok
00:00:26.0828 1544 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
00:00:26.0843 1544 MSPCLOCK - ok
00:00:27.0140 1544 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys
00:00:27.0156 1544 MSPQM - ok
00:00:27.0203 1544 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
00:00:27.0203 1544 mssmbios - ok
00:00:27.0328 1544 mssql$soshome22 - ok
00:00:27.0390 1544 Mup (de6a75f5c270e756c5508d94b6cf68f5) C:\WINDOWS\system32\drivers\Mup.sys
00:00:27.0390 1544 Mup - ok
00:00:27.0515 1544 mwstick - ok
00:00:27.0609 1544 napagent (69e4fbbabaeee1bff422e091da3171da) C:\WINDOWS\System32\qagentrt.dll
00:00:27.0718 1544 napagent - ok
00:00:28.0000 1544 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys
00:00:28.0078 1544 NDIS - ok
00:00:28.0093 1544 ndiscm - ok
00:00:28.0109 1544 NdisFilt - ok
00:00:28.0156 1544 NdisTapi (0109c4f3850dfbab279542515386ae22) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
00:00:28.0156 1544 NdisTapi - ok
00:00:28.0437 1544 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
00:00:28.0468 1544 Ndisuio - ok
00:00:28.0500 1544 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
00:00:28.0609 1544 NdisWan - ok
00:00:28.0906 1544 NDProxy (9282bd12dfb069d3889eb3fcc1000a9b) C:\WINDOWS\system32\drivers\NDProxy.sys
00:00:28.0906 1544 NDProxy - ok
00:00:28.0968 1544 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys
00:00:29.0031 1544 NetBIOS - ok
00:00:29.0312 1544 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys
00:00:29.0390 1544 NetBT - ok
00:00:29.0468 1544 NetDDE (5c9b1d83755b36237b70f95df3d46a52) C:\WINDOWS\system32\netdde.exe
00:00:29.0640 1544 NetDDE - ok
00:00:29.0656 1544 NetDDEdsdm (5c9b1d83755b36237b70f95df3d46a52) C:\WINDOWS\system32\netdde.exe
00:00:29.0656 1544 NetDDEdsdm - ok
00:00:29.0890 1544 Netlogon (91e6024d6d4dcdecdb36c43ecf9bbecb) C:\WINDOWS\system32\lsass.exe
00:00:29.0906 1544 Netlogon - ok
00:00:29.0984 1544 Netman (be0cb143fa427d93440ded18db8c918b) C:\WINDOWS\System32\netman.dll
00:00:29.0984 1544 Netman - ok
00:00:30.0265 1544 NetTcpPortSharing (d34612c5d02d026535b3095d620626ae) c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
00:00:30.0281 1544 NetTcpPortSharing - ok
00:00:30.0593 1544 NETw4x32 (18b2d3e11ed7a3c898ade6a6692b6929) C:\WINDOWS\system32\DRIVERS\NETw4x32.sys
00:00:30.0750 1544 NETw4x32 - ok
00:00:31.0046 1544 NIC1394 (e9e47cfb2d461fa0fc75b7a74c6383ea) C:\WINDOWS\system32\DRIVERS\nic1394.sys
00:00:31.0046 1544 NIC1394 - ok
00:00:31.0109 1544 Nla (6f5f546a92c7b6ae45db1d6910781eb0) C:\WINDOWS\System32\mswsock.dll
00:00:31.0125 1544 Nla - ok
00:00:31.0328 1544 nnsvc - ok
00:00:31.0421 1544 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
00:00:31.0453 1544 Npfs - ok
00:00:31.0718 1544 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys
00:00:31.0812 1544 Ntfs - ok
00:00:32.0046 1544 NtLmSsp (91e6024d6d4dcdecdb36c43ecf9bbecb) C:\WINDOWS\system32\lsass.exe
00:00:32.0046 1544 NtLmSsp - ok
00:00:32.0156 1544 NtmsSvc (037d92b3a7853a183fcab77fb1d13d6c) C:\WINDOWS\system32\ntmssvc.dll
00:00:32.0265 1544 NtmsSvc - ok
00:00:32.0562 1544 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
00:00:32.0578 1544 Null - ok
00:00:32.0671 1544 nv (2b298519edbfcf451d43e0f1e8f1006d) C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
00:00:32.0765 1544 nv - ok
00:00:32.0984 1544 NWDNS - ok
00:00:33.0000 1544 NWFILTER - ok
00:00:33.0062 1544 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
00:00:33.0093 1544 NwlnkFlt - ok
00:00:33.0125 1544 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
00:00:33.0203 1544 NwlnkFwd - ok
00:00:33.0468 1544 ohci1394 (ca33832df41afb202ee7aeb05145922f) C:\WINDOWS\system32\DRIVERS\ohci1394.sys
00:00:33.0468 1544 ohci1394 - ok
00:00:33.0484 1544 olapserver - ok
00:00:33.0500 1544 omniinet - ok
00:00:33.0515 1544 oraclewebassistant - ok
00:00:33.0609 1544 ose (5a432a042dae460abe7199b758e8606c) C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE
00:00:33.0640 1544 ose - ok
00:00:33.0921 1544 Parport (8fd0bdbea875d06ccf6c945ca9abaf75) C:\WINDOWS\system32\DRIVERS\parport.sys
00:00:33.0921 1544 Parport - ok
00:00:34.0000 1544 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
00:00:34.0031 1544 PartMgr - ok
00:00:34.0312 1544 ParVdm (9575c5630db8fb804649a6959737154c) C:\WINDOWS\system32\drivers\ParVdm.sys
00:00:34.0328 1544 ParVdm - ok
00:00:34.0343 1544 patrolagent - ok
00:00:34.0375 1544 pcctlcom - ok
00:00:34.0406 1544 PCI (043410877bda580c528f45165f7125bc) C:\WINDOWS\system32\DRIVERS\pci.sys
00:00:34.0484 1544 PCI - ok
00:00:34.0500 1544 PCIDump - ok
00:00:34.0531 1544 PCIIde (f4bfde7209c14a07aaa61e4d6ae69eac) C:\WINDOWS\system32\DRIVERS\pciide.sys
00:00:34.0546 1544 PCIIde - ok
00:00:34.0812 1544 Pcmcia (f0406cbc60bdb0394a0e17ffb04cdd3d) C:\WINDOWS\system32\DRIVERS\pcmcia.sys
00:00:34.0859 1544 Pcmcia - ok
00:00:34.0890 1544 pcx1unic - ok
00:00:34.0906 1544 PDCOMP - ok
00:00:34.0921 1544 PDFRAME - ok
00:00:34.0937 1544 pdlnemap - ok
00:00:34.0968 1544 PDRELI - ok
00:00:34.0984 1544 PDRFRAME - ok
00:00:35.0015 1544 perc2 (6c14b9c19ba84f73d3a86dba11133101) C:\WINDOWS\system32\DRIVERS\perc2.sys
00:00:35.0062 1544 perc2 - ok
00:00:35.0343 1544 perc2hib (f50f7c27f131afe7beba13e14a3b9416) C:\WINDOWS\system32\DRIVERS\perc2hib.sys
00:00:35.0375 1544 perc2hib - ok
00:00:35.0406 1544 pfc - ok
00:00:35.0468 1544 pgsql-8.2 - ok
00:00:35.0718 1544 PlugPlay (c3fb1d70cb88722267949694ba51759e) C:\WINDOWS\system32\services.exe
00:00:35.0718 1544 PlugPlay - ok
00:00:35.0796 1544 pmem (dedef40e1d05842639491365cb2c069e) C:\WINDOWS\System32\drivers\pmemnt.sys
00:00:35.0796 1544 pmem - ok
00:00:35.0843 1544 PolicyAgent (91e6024d6d4dcdecdb36c43ecf9bbecb) C:\WINDOWS\system32\lsass.exe
00:00:35.0843 1544 PolicyAgent - ok
00:00:36.0140 1544 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
00:00:36.0203 1544 PptpMiniport - ok
00:00:36.0250 1544 PROCDD (1d80309fed4babf8ea9e7b84a394348b) C:\WINDOWS\system32\DRIVERS\PROCDD.SYS
00:00:36.0250 1544 PROCDD - ok
00:00:36.0546 1544 Processor (e19c9632ac828f6f214391e2bdda11cb) C:\WINDOWS\system32\DRIVERS\processr.sys
00:00:36.0578 1544 Processor - ok
00:00:36.0625 1544 ProtectedStorage (91e6024d6d4dcdecdb36c43ecf9bbecb) C:\WINDOWS\system32\lsass.exe
00:00:36.0625 1544 ProtectedStorage - ok
00:00:36.0921 1544 psadd (aac08defb15aaab00b30341c716efa35) C:\WINDOWS\system32\DRIVERS\psadd.sys
00:00:36.0953 1544 psadd - ok
00:00:37.0000 1544 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys
00:00:37.0078 1544 PSched - ok
00:00:37.0296 1544 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
00:00:37.0328 1544 Ptilink - ok
00:00:37.0375 1544 PxHelp20 (d86b4a68565e444d76457f14172c875a) C:\WINDOWS\system32\Drivers\PxHelp20.sys
00:00:37.0390 1544 PxHelp20 - ok
00:00:37.0421 1544 ql1080 (0a63fb54039eb5662433caba3b26dba7) C:\WINDOWS\system32\DRIVERS\ql1080.sys
00:00:37.0453 1544 ql1080 - ok
00:00:37.0796 1544 Ql10wnt (6503449e1d43a0ff0201ad5cb1b8c706) C:\WINDOWS\system32\DRIVERS\ql10wnt.sys
00:00:37.0828 1544 Ql10wnt - ok
00:00:37.0843 1544 ql12160 (156ed0ef20c15114ca097a34a30d8a01) C:\WINDOWS\system32\DRIVERS\ql12160.sys
00:00:37.0875 1544 ql12160 - ok
00:00:37.0906 1544 ql1240 (70f016bebde6d29e864c1230a07cc5e6) C:\WINDOWS\system32\DRIVERS\ql1240.sys
00:00:37.0921 1544 ql1240 - ok
00:00:37.0937 1544 ql1280 (907f0aeea6bc451011611e732bd31fcf) C:\WINDOWS\system32\DRIVERS\ql1280.sys
00:00:38.0000 1544 ql1280 - ok
00:00:38.0140 1544 RADAR - ok
00:00:38.0437 1544 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
00:00:38.0437 1544 RasAcd - ok
00:00:38.0515 1544 RasAuto (78da9ccdac683ef5aa87d1c919f6d221) C:\WINDOWS\System32\rasauto.dll
00:00:38.0515 1544 RasAuto - ok
00:00:38.0796 1544 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
00:00:38.0859 1544 Rasl2tp - ok
00:00:38.0968 1544 RasMan (0a48df90b4784f9b90a2671af992c914) C:\WINDOWS\System32\rasmans.dll
00:00:38.0984 1544 RasMan - ok
00:00:39.0265 1544 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
00:00:39.0312 1544 RasPppoe - ok
00:00:39.0343 1544 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
00:00:39.0390 1544 Raspti - ok
00:00:39.0421 1544 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys
00:00:39.0593 1544 Rdbss - ok
00:00:39.0843 1544 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
00:00:39.0859 1544 RDPCDD - ok
00:00:39.0937 1544 rdpdr (15cabd0f7c00c47c70124907916af3f1) C:\WINDOWS\system32\DRIVERS\rdpdr.sys
00:00:40.0109 1544 rdpdr - ok
00:00:40.0406 1544 RDPWD (5b3055daa788bd688594d2f5981f2a83) C:\WINDOWS\system32\drivers\RDPWD.sys
00:00:40.0406 1544 RDPWD - ok
00:00:40.0484 1544 RDSessMgr (9f63d9c5b238ed1c375d417eff3d5be7) C:\WINDOWS\system32\sessmgr.exe
00:00:40.0609 1544 RDSessMgr - ok
00:00:40.0890 1544 redbook (d8eb2a7904db6c916eb5361878ddcbae) C:\WINDOWS\system32\DRIVERS\redbook.sys
00:00:40.0953 1544 redbook - ok
00:00:41.0078 1544 RegSrvc (89cbf999fc5fcaf3c8b2c79b0594434f) C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
00:00:41.0078 1544 RegSrvc - ok
00:00:41.0328 1544 RemoteAccess (7da370c31673c99497bd07068ee6e354) C:\WINDOWS\System32\mprdim.dll
00:00:41.0421 1544 RemoteAccess - ok
00:00:41.0484 1544 RemoteRegistry (e598d81197e2e0ec42a0c55772bb00e8) C:\WINDOWS\system32\regsvc.dll
00:00:41.0484 1544 RemoteRegistry - ok
00:00:41.0734 1544 RpcLocator (499c59a2584f6d4ea41e944da571d993) C:\WINDOWS\system32\locator.exe
00:00:41.0812 1544 RpcLocator - ok
00:00:41.0890 1544 RpcSs (0203b1aad358f206cb0a3c1f93cce17a) C:\WINDOWS\system32\rpcss.dll
00:00:41.0890 1544 RpcSs - ok
00:00:42.0156 1544 RSVP (414964844f4793acb868d057e8ed997e) C:\WINDOWS\system32\rsvp.exe
00:00:42.0156 1544 RSVP - ok
00:00:42.0171 1544 rtl8187Se - ok
00:00:42.0203 1544 rvsinst - ok
00:00:42.0375 1544 S24EventMonitor (e118cf6bc4949d4a389026f15a9f3c95) C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
00:00:42.0406 1544 S24EventMonitor - ok
00:00:42.0671 1544 s24trans (f275ee6061e444caa7137aefb2c27a03) C:\WINDOWS\system32\DRIVERS\s24trans.sys
00:00:42.0703 1544 s24trans - ok
00:00:42.0781 1544 SamSs (91e6024d6d4dcdecdb36c43ecf9bbecb) C:\WINDOWS\system32\lsass.exe
00:00:42.0781 1544 SamSs - ok
00:00:42.0843 1544 SCardSvr (67949cc8a865296c1333c96a4e1a2d66) C:\WINDOWS\System32\SCardSvr.exe
00:00:42.0937 1544 SCardSvr - ok
00:00:43.0187 1544 Schedule (55f5c5c1be1a78e285033e432ba01597) C:\WINDOWS\system32\schedsvc.dll
00:00:43.0203 1544 Schedule - ok
00:00:43.0265 1544 SE2Cobex - ok
00:00:43.0281 1544 SE2Eobex - ok
00:00:43.0359 1544 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
00:00:43.0390 1544 Secdrv - ok
00:00:43.0640 1544 seclogon (5ac311c0af2af5ec221670bb8dc479d3) C:\WINDOWS\System32\seclogon.dll
00:00:43.0640 1544 seclogon - ok
00:00:43.0656 1544 SENS (3531366f38f453d08fe72e7b32dfe786) C:\WINDOWS\system32\sens.dll
00:00:43.0656 1544 SENS - ok
00:00:43.0750 1544 serenum (0f29512ccd6bead730039fb4bd2c85ce) C:\WINDOWS\system32\DRIVERS\serenum.sys
00:00:43.0781 1544 serenum - ok
00:00:44.0031 1544 Serial (93d313c31f7ad9ea2b75f26075413c7c) C:\WINDOWS\system32\DRIVERS\serial.sys
00:00:44.0171 1544 Serial - ok
00:00:44.0203 1544 sfhlp02 - ok
00:00:44.0265 1544 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\DRIVERS\sfloppy.sys
00:00:44.0281 1544 Sfloppy - ok
00:00:44.0296 1544 SGIR - ok
00:00:44.0375 1544 SharedAccess (f4ce708a7d17a625de6c0fd746d50e88) C:\WINDOWS\System32\ipnathlp.dll
00:00:44.0375 1544 SharedAccess - ok
00:00:44.0609 1544 ShellHWDetection (1b8542f338cdd86929a084a455837158) C:\WINDOWS\System32\shsvcs.dll
00:00:44.0625 1544 ShellHWDetection - ok
00:00:44.0718 1544 Shockprf (e22ef09693396bfeda7edc47b6c16e26) C:\WINDOWS\system32\DRIVERS\Apsx86.sys
00:00:44.0781 1544 Shockprf - ok
00:00:45.0000 1544 Simbad - ok
00:00:45.0171 1544 sisagp (6b33d0ebd30db32e27d1d78fe946a754) C:\WINDOWS\system32\DRIVERS\sisagp.sys
00:00:45.0234 1544 sisagp - ok
00:00:45.0453 1544 Sparrow (83c0f71f86d3bdaf915685f3d568b20e) C:\WINDOWS\system32\DRIVERS\sparrow.sys
00:00:45.0484 1544 Sparrow - ok
00:00:45.0593 1544 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
00:00:45.0593 1544 splitter - ok
00:00:45.0812 1544 Spooler (60784f891563fb1b767f70117fc2428f) C:\WINDOWS\system32\spoolsv.exe
00:00:45.0828 1544 Spooler - ok
00:00:45.0906 1544 SQLWriter (9263c8898732e2b890f7e954e7729ab7) c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
00:00:45.0953 1544 SQLWriter - ok
00:00:46.0250 1544 sr (39626e6dc1fb39434ec40c42722b660a) C:\WINDOWS\system32\DRIVERS\sr.sys
00:00:46.0343 1544 sr - ok
00:00:46.0375 1544 srservice (6ed29124a1c83bd0cf6b26bd01ca6f6f) C:\WINDOWS\system32\srsvc.dll
00:00:46.0390 1544 srservice - ok
00:00:46.0703 1544 Srv (47ddfc2f003f7f9f0592c6874962a2e7) C:\WINDOWS\system32\DRIVERS\srv.sys
00:00:46.0718 1544 Srv - ok
00:00:46.0968 1544 SSDPSRV (ea9e0db8684cef2fd3badd671df5a112) C:\WINDOWS\System32\ssdpsrv.dll
00:00:46.0984 1544 SSDPSRV - ok
00:00:47.0062 1544 stisvc (d76b0e8a4ecad1adcc75fd14a7acc54c) C:\WINDOWS\system32\wiaservc.dll
00:00:47.0062 1544 stisvc - ok
00:00:47.0140 1544 SUService - ok
00:00:47.0421 1544 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys
00:00:47.0437 1544 swenum - ok
00:00:47.0484 1544 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys
00:00:47.0500 1544 swmidi - ok
00:00:47.0718 1544 SwPrv - ok
00:00:47.0781 1544 symc810 (1ff3217614018630d0a6758630fc698c) C:\WINDOWS\system32\DRIVERS\symc810.sys
00:00:47.0796 1544 symc810 - ok
00:00:47.0828 1544 symc8xx (070e001d95cf725186ef8b20335f933c) C:\WINDOWS\system32\DRIVERS\symc8xx.sys
00:00:47.0875 1544 symc8xx - ok
00:00:48.0156 1544 sym_hi (80ac1c4abbe2df3b738bf15517a51f2c) C:\WINDOWS\system32\DRIVERS\sym_hi.sys
00:00:48.0187 1544 sym_hi - ok
00:00:48.0218 1544 sym_u3 (bf4fab949a382a8e105f46ebb4937058) C:\WINDOWS\system32\DRIVERS\sym_u3.sys
00:00:48.0250 1544 sym_u3 - ok
00:00:48.0625 1544 SynTP (b248b5fe80b285b91cb1e6f85b0ae1d7) C:\WINDOWS\system32\DRIVERS\SynTP.sys
00:00:48.0734 1544 SynTP - ok
00:00:48.0796 1544 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys
00:00:48.0812 1544 sysaudio - ok
00:00:49.0218 1544 SysmonLog (0899061318a6b1d9596aabfc77f45e44) C:\WINDOWS\system32\smlogsvc.exe
00:00:49.0390 1544 SysmonLog - ok
00:00:49.0734 1544 TapiSrv (8e5231171ad6595ff002e848cc54fcd7) C:\WINDOWS\System32\tapisrv.dll
00:00:49.0750 1544 TapiSrv - ok
00:00:49.0812 1544 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys
00:00:49.0828 1544 Tcpip - ok
00:00:50.0125 1544 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys
00:00:50.0125 1544 TDPIPE - ok
00:00:50.0171 1544 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys
00:00:50.0171 1544 TDTCP - ok
00:00:50.0468 1544 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys
00:00:50.0484 1544 TermDD - ok
00:00:50.0578 1544 TermService (710bc85a8c22626ee094439e3ea0d38c) C:\WINDOWS\System32\termsrv.dll
00:00:50.0593 1544 TermService - ok
00:00:50.0828 1544 Themes (1b8542f338cdd86929a084a455837158) C:\WINDOWS\System32\shsvcs.dll
00:00:50.0828 1544 Themes - ok
00:00:50.0937 1544 ThinkVantage Registry Monitor Service (d04402cd654af1058ad9a82b73ad67c8) C:\Program Files\Fichiers communs\Lenovo\tvt_reg_monitor_svc.exe
00:00:50.0968 1544 ThinkVantage Registry Monitor Service - ok
00:00:51.0218 1544 TlntSvr (d859a9d2f026ce5804485068ffd6eaf2) C:\WINDOWS\system32\tlntsvr.exe
00:00:51.0328 1544 TlntSvr - ok
00:00:51.0437 1544 Tomcat5 - ok
00:00:51.0718 1544 TosIde (b411668322c3bf4e690888706b999679) C:\WINDOWS\system32\DRIVERS\toside.sys
00:00:51.0765 1544 TosIde - ok
00:00:51.0828 1544 TPDIGIMN (a44928f04032d49a6c2e151f869fb152) C:\WINDOWS\system32\DRIVERS\ApsHM86.sys
00:00:51.0890 1544 TPDIGIMN - ok
00:00:52.0140 1544 TPHDEXLGSVC (33d918574810b910de2cc18874d51c97) C:\WINDOWS\system32\TPHDEXLG.exe
00:00:52.0140 1544 TPHDEXLGSVC - ok
00:00:52.0218 1544 TPHKDRV (542770c8925e13b29b1ba63f05898058) C:\WINDOWS\system32\DRIVERS\TPHKDRV.sys
00:00:52.0250 1544 TPHKDRV - ok
00:00:52.0296 1544 TPPWRIF (44672de6cea9569c21c4b7a8d2560750) C:\WINDOWS\system32\drivers\Tppwrif.sys
00:00:52.0328 1544 TPPWRIF - ok
00:00:52.0593 1544 TrkWks (e1a84a5067627407a53c2c4f8d8a1d2e) C:\WINDOWS\system32\trkwks.dll
00:00:52.0593 1544 TrkWks - ok
00:00:52.0671 1544 TSMAPIP (ea856d91b3c088ce331e7740c72f43a3) C:\WINDOWS\system32\drivers\TSMAPIP.SYS
00:00:52.0703 1544 TSMAPIP - ok
00:00:52.0843 1544 TSSCoreService (44d5be1651390476c5edb3b5df28de30) C:\Program Files\Lenovo\Client Security Solution\tvttcsd.exe
00:00:52.0984 1544 TSSCoreService - ok
00:00:53.0250 1544 tunmp (8f861eda21c05857eb8197300a92501c) C:\WINDOWS\system32\DRIVERS\tunmp.sys
00:00:53.0281 1544 tunmp - ok
00:00:53.0390 1544 TVT Backup Protection Service (c8da890df821dbe5cd5b9a10c6c82d51) C:\Program Files\Lenovo\Rescue and Recovery\rrpservice.exe
00:00:53.0406 1544 TVT Backup Protection Service - ok
00:00:53.0468 1544 TVT Backup Service (951675971bb6de44284cce95f33f7421) C:\Program Files\Lenovo\Rescue and Recovery\rrservice.exe
00:00:53.0500 1544 TVT Backup Service - ok
00:00:53.0656 1544 TVT Scheduler (38a974e3d0d0c09317af364c8359a6e4) c:\Program Files\Fichiers communs\Lenovo\Scheduler\tvtsched.exe
00:00:53.0703 1544 TVT Scheduler - ok
00:00:53.0984 1544 tvtfilter (49258a02a1e8d304ed88b0f1c56b1738) C:\WINDOWS\system32\DRIVERS\tvtfilter.sys
00:00:53.0984 1544 tvtfilter - ok
00:00:54.0062 1544 TVTI2C (8ab24d4b7da715c2c80455137910e792) C:\WINDOWS\system32\DRIVERS\Tvti2c.sys
00:00:54.0109 1544 TVTI2C - ok
00:00:54.0171 1544 tvtnetwk (2e72c66682e9274c97ae3f5a57c2fa33) C:\Program Files\Lenovo\Rescue and Recovery\ADM\IUService.exe
00:00:54.0171 1544 tvtnetwk - ok
00:00:54.0453 1544 TVTPktFilter (0727cce3ff1a4446f4a1d507361567ab) C:\WINDOWS\system32\DRIVERS\tvtpktfilter.sys
00:00:54.0484 1544 TVTPktFilter - ok
00:00:54.0546 1544 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys
00:00:54.0609 1544 Udfs - ok
00:00:54.0859 1544 UIUSys - ok
00:00:54.0890 1544 uleadburninghelper - ok
00:00:54.0921 1544 ultra (1b698a51cd528d8da4ffaed66dfc51b9) C:\WINDOWS\system32\DRIVERS\ultra.sys
00:00:54.0968 1544 ultra - ok
00:00:55.0031 1544 UMWdf (ab0a7ca90d9e3d6a193905dc1715ded0) C:\WINDOWS\system32\wdfmgr.exe
00:00:55.0031 1544 UMWdf - ok
00:00:55.0250 1544 UPATC - ok
00:00:55.0328 1544 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys
00:00:55.0359 1544 Update - ok
00:00:55.0640 1544 upnphost (bd8166a495b02308f364b36249475f22) C:\WINDOWS\System32\upnphost.dll
00:00:55.0656 1544 upnphost - ok
00:00:55.0687 1544 UPS (1edc93d7bd731b5ca6248ae245099b60) C:\WINDOWS\System32\ups.exe
00:00:55.0828 1544 UPS - ok
00:00:56.0062 1544 upsentry_smart - ok
00:00:56.0093 1544 usbaudio - ok
00:00:56.0171 1544 usbccgp (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
00:00:56.0218 1544 usbccgp - ok
00:00:56.0375 1544 USBCCID - ok
00:00:56.0421 1544 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys
00:00:56.0468 1544 usbehci - ok
00:00:56.0609 1544 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys
00:00:56.0687 1544 usbhub - ok
00:00:56.0843 1544 usbprint (a717c8721046828520c9edf31288fc00) C:\WINDOWS\system32\DRIVERS\usbprint.sys
00:00:56.0890 1544 usbprint - ok
00:00:57.0031 1544 usbscan (a0b8cf9deb1184fbdd20784a58fa75d4) C:\WINDOWS\system32\DRIVERS\usbscan.sys
00:00:57.0046 1544 usbscan - ok
00:00:57.0218 1544 USBSTOR (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
00:00:57.0281 1544 USBSTOR - ok
00:00:57.0453 1544 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys
00:00:57.0484 1544 usbuhci - ok
00:00:57.0640 1544 USB_RNDIS - ok
00:00:57.0671 1544 vcommmgr - ok
00:00:57.0703 1544 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys
00:00:57.0734 1544 VgaSave - ok
00:00:57.0890 1544 viaagp (754292ce5848b3738281b4f3607eaef4) C:\WINDOWS\system32\DRIVERS\viaagp.sys
00:00:57.0953 1544 viaagp - ok
00:00:58.0125 1544 ViaIde (3b3efcda263b8ac14fdf9cbdd0791b2e) C:\WINDOWS\system32\DRIVERS\viaide.sys
00:00:58.0140 1544 ViaIde - ok
00:00:58.0265 1544 VolSnap (46de1126684369bace4849e4fc8c43ca) C:\WINDOWS\system32\drivers\VolSnap.sys
00:00:58.0312 1544 VolSnap - ok
00:00:58.0328 1544 VRADFIL - ok
00:00:58.0421 1544 VSS (5a4da252b2c0550ab83d129c02cf6c19) C:\WINDOWS\System32\vssvc.exe
00:00:58.0562 1544 VSS - ok
00:00:58.0781 1544 vstor2-ws60 - ok
00:00:58.0796 1544 vxd - ok
00:00:58.0890 1544 vzcdbsvc - ok
00:00:58.0968 1544 W32Time (c1f726ee0b043b074a68992bc4aef8fd) C:\WINDOWS\system32\w32time.dll
00:00:58.0968 1544 W32Time - ok
00:00:59.0109 1544 WacomVKHid - ok
00:00:59.0234 1544 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys
00:00:59.0296 1544 Wanarp - ok
00:00:59.0312 1544 WDICA - ok
00:00:59.0359 1544 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys
00:00:59.0359 1544 wdmaud - ok
00:00:59.0546 1544 WebClient (714670e64fbe6d28d99871ed9a52a334) C:\WINDOWS\System32\webclnt.dll
00:00:59.0546 1544 WebClient - ok
00:00:59.0734 1544 winachsf (307d248f97835b6879bdd361086924fe) C:\WINDOWS\system32\DRIVERS\HSF_CNXT.sys
00:00:59.0796 1544 winachsf - ok
00:01:00.0093 1544 winmgmt (5e9deae9980ff34bcd6dde2e9e2bf911) C:\WINDOWS\system32\wbem\WMIsvc.dll
00:01:00.0093 1544 winmgmt - ok
00:01:00.0125 1544 WISTechVIDCAP - ok
00:01:00.0140 1544 wltrysvc - ok
00:01:00.0265 1544 WMConnectCDS (efd9476e039e833a4b55e87ec813b153) C:\Program Files\Windows Media Connect 2\wmccds.exe
00:01:01.0140 1544 WMConnectCDS - ok
00:01:01.0375 1544 WmdmPmSN (140ef97b64f560fd78643cae2cdad838) C:\WINDOWS\system32\MsPMSNSv.dll
00:01:01.0375 1544 WmdmPmSN - ok
00:01:01.0453 1544 Wmi (31c1fd0bbdc5b81c21edba4331edae55) C:\WINDOWS\System32\advapi32.dll
00:01:01.0468 1544 Wmi - ok
00:01:01.0750 1544 WmiApSrv (4e8e8a58f56b25d0795f484e5eb7f898) C:\WINDOWS\system32\wbem\wmiapsrv.exe
00:01:01.0750 1544 WmiApSrv - ok
00:01:01.0781 1544 WMIService - ok
00:01:01.0828 1544 wscsvc (c1fd85db4a80a98d60ecb7a828e77fe0) C:\WINDOWS\system32\wscsvc.dll
00:01:01.0843 1544 wscsvc - ok
00:01:02.0093 1544 wuauserv (75d6c5c3d2c93b1f9931e5dfb693ae2a) C:\WINDOWS\system32\wuauserv.dll
00:01:02.0109 1544 wuauserv - ok
00:01:02.0171 1544 WZCSVC (c336e54ee0c291a02f004667db1e66cb) C:\WINDOWS\System32\wzcsvc.dll
00:01:02.0187 1544 WZCSVC - ok
00:01:02.0468 1544 xmlprov (f92a87fdda0c11c8604fbc2b864fa726) C:\WINDOWS\System32\xmlprov.dll
00:01:02.0531 1544 xmlprov - ok
00:01:02.0562 1544 YMIDUSB - ok
00:01:02.0609 1544 MBR (0x1B8) (be23c03b0935a0f3d2bce1d271a18260) \Device\Harddisk0\DR0
00:01:02.0656 1544 \Device\Harddisk0\DR0 - ok
00:01:02.0656 1544 Boot (0x1200) (36124252817b86e618c122c981ee3de9) \Device\Harddisk0\DR0\Partition0
00:01:02.0656 1544 \Device\Harddisk0\DR0\Partition0 - ok
00:01:02.0656 1544 ============================================================
00:01:02.0656 1544 Scan finished
00:01:02.0656 1544 ============================================================
00:01:02.0671 3272 Detected object count: 0
00:01:02.0671 3272 Actual detected object count: 0
00:01:38.0531 0536 ============================================================
00:01:38.0531 0536 Scan started
00:01:38.0531 0536 Mode: Manual;
00:01:38.0531 0536 ============================================================
00:01:39.0000 0536 a8djavs - ok
00:01:39.0031 0536 Abiosdsk - ok
00:01:39.0125 0536 abp480n5 (6abb91494fe6c59089b9336452ab2ea3) C:\WINDOWS\system32\DRIVERS\ABP480N5.SYS
00:01:39.0125 0536 abp480n5 - ok
00:01:39.0171 0536 ac97intc (0f2d66d5f08ebe2f77bb904288dcf6f0) C:\WINDOWS\system32\drivers\ac97intc.sys
00:01:39.0171 0536 ac97intc - ok
00:01:39.0328 0536 acedrv05 - ok
00:01:39.0406 0536 ACPI (e5e6dbfc41ea8aad005cb9a57a96b43b) C:\WINDOWS\system32\DRIVERS\ACPI.sys
00:01:39.0421 0536 ACPI - ok
00:01:39.0640 0536 ACPIEC (e4abc1212b70bb03d35e60681c447210) C:\WINDOWS\system32\DRIVERS\ACPIEC.sys
00:01:39.0640 0536 ACPIEC - ok
00:01:39.0765 0536 AcPrfMgrSvc (ac83da08b02bc2ac4f9920523275bb0f) C:\Program Files\ThinkPad\ConnectUtilities\AcPrfMgrSvc.exe
00:01:39.0765 0536 AcPrfMgrSvc - ok
00:01:39.0812 0536 AcSvc (f0dfcab03cc9c71137d00c17feb08873) C:\Program Files\ThinkPad\ConnectUtilities\AcSvc.exe
00:01:39.0812 0536 AcSvc - ok
00:01:40.0109 0536 ADIHdAudAddService (d537f3d03c6301fefa21f3eee8cc82d8) C:\WINDOWS\system32\drivers\ADIHdAud.sys
00:01:40.0125 0536 ADIHdAudAddService - ok
00:01:40.0156 0536 adpu160m (9a11864873da202c996558b2106b0bbc) C:\WINDOWS\system32\DRIVERS\adpu160m.sys
00:01:40.0156 0536 adpu160m - ok
00:01:40.0375 0536 adpu320 - ok
00:01:40.0406 0536 adsexpb - ok
00:01:40.0453 0536 AEAudio (860df7676869cd8690cb2b23ab6de66a) C:\WINDOWS\system32\drivers\AEAudio.sys
00:01:40.0453 0536 AEAudio - ok
00:01:40.0468 0536 AEAudioService - ok
00:01:40.0531 0536 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
00:01:40.0531 0536 aec - ok
00:01:40.0812 0536 AegisP (023867b6606fbabcdd52e089c4a507da) C:\WINDOWS\system32\DRIVERS\AegisP.sys
00:01:40.0812 0536 AegisP - ok
00:01:40.0859 0536 AFD (1e44bc1e83d8fd2305f8d452db109cf9) C:\WINDOWS\System32\drivers\afd.sys
00:01:40.0859 0536 AFD - ok
00:01:40.0921 0536 agp440 (08fd04aa961bdc77fb983f328334e3d7) C:\WINDOWS\system32\DRIVERS\agp440.sys
00:01:40.0921 0536 agp440 - ok
00:01:41.0187 0536 agpCPQ (03a7e0922acfe1b07d5db2eeb0773063) C:\WINDOWS\system32\DRIVERS\agpCPQ.sys
00:01:41.0203 0536 agpCPQ - ok
00:01:41.0234 0536 Aha154x (c23ea9b5f46c7f7910db3eab648ff013) C:\WINDOWS\system32\DRIVERS\aha154x.sys
00:01:41.0234 0536 Aha154x - ok
00:01:41.0265 0536 aic78u2 (19dd0fb48b0c18892f70e2e7d61a1529) C:\WINDOWS\system32\DRIVERS\aic78u2.sys
00:01:41.0265 0536 aic78u2 - ok
00:01:41.0281 0536 aic78xx (b7fe594a7468aa0132deb03fb8e34326) C:\WINDOWS\system32\DRIVERS\aic78xx.sys
00:01:41.0281 0536 aic78xx - ok
00:01:41.0343 0536 Alerter (758fdc60d41716ef889d849989b4b1cd) C:\WINDOWS\system32\alrsvc.dll
00:01:41.0343 0536 Alerter - ok
00:01:41.0562 0536 ALG (5e9a6658a2a69ae7eb195113b7a2e7a9) C:\WINDOWS\System32\alg.exe
00:01:41.0562 0536 ALG - ok
00:01:41.0625 0536 AliIde (1140ab9938809700b46bb88e46d72a96) C:\WINDOWS\system32\DRIVERS\aliide.sys
00:01:41.0625 0536 AliIde - ok
00:01:41.0703 0536 alim1541 (cb08aed0de2dd889a8a820cd8082d83c) C:\WINDOWS\system32\DRIVERS\alim1541.sys
00:01:41.0703 0536 alim1541 - ok
00:01:41.0984 0536 amdagp (95b4fb835e28aa1336ceeb07fd5b9398) C:\WINDOWS\system32\DRIVERS\amdagp.sys
00:01:41.0984 0536 amdagp - ok
00:01:42.0000 0536 amdk77 - ok
00:01:42.0046 0536 amsint (79f5add8d24bd6893f2903a3e2f3fad6) C:\WINDOWS\system32\DRIVERS\amsint.sys
00:01:42.0046 0536 amsint - ok
00:01:42.0109 0536 ANC (11ab185a7af224800bbfb5b836974a17) C:\WINDOWS\system32\drivers\ANC.SYS
00:01:42.0109 0536 ANC - ok
00:01:42.0375 0536 AppMgmt (f36c9f78fc902c8dce4d3b576bb0435a) C:\WINDOWS\System32\appmgmts.dll
00:01:42.0375 0536 AppMgmt - ok
00:01:42.0468 0536 AR5211 (bd4a059b937a64f403e693dcaa26fe38) C:\WINDOWS\system32\DRIVERS\ar5211.sys
00:01:42.0484 0536 AR5211 - ok
00:01:42.0765 0536 Arp1394 (b5b8a80875c1dededa8b02765642c32f) C:\WINDOWS\system32\DRIVERS\arp1394.sys
00:01:42.0765 0536 Arp1394 - ok
00:01:42.0781 0536 array_utility_service4,0,1,3 - ok
00:01:42.0812 0536 asc (62d318e9a0c8fc9b780008e724283707) C:\WINDOWS\system32\DRIVERS\asc.sys
00:01:42.0812 0536 asc - ok
00:01:42.0828 0536 asc3350p (69eb0cc7714b32896ccbfd5edcbea447) C:\WINDOWS\system32\DRIVERS\asc3350p.sys
00:01:42.0828 0536 asc3350p - ok
00:01:42.0859 0536 asc3550 (5d8de112aa0254b907861e9e9c31d597) C:\WINDOWS\system32\DRIVERS\asc3550.sys
00:01:42.0859 0536 asc3550 - ok
00:01:43.0000 0536 aspnet_state (0e5e4957549056e2bf2c49f4f6b601ad) C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
00:01:43.0000 0536 aspnet_state - ok
00:01:43.0281 0536 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
00:01:43.0281 0536 AsyncMac - ok
00:01:43.0312 0536 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys
00:01:43.0312 0536 atapi - ok
00:01:43.0328 0536 Atdisk - ok
00:01:43.0359 0536 atiavaiw - ok
00:01:43.0375 0536 AtiHdmiService - ok
00:01:43.0421 0536 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
00:01:43.0421 0536 Atmarpc - ok
00:01:43.0703 0536 atmeltpm (dbf0d7e2df33b469eb55406fea759350) C:\WINDOWS\system32\DRIVERS\atmeltpm.sys
00:01:43.0703 0536 atmeltpm - ok
00:01:43.0765 0536 AudioSrv (b4005aef7873144634765b570dac466e) C:\WINDOWS\System32\audiosrv.dll
00:01:43.0765 0536 AudioSrv - ok
00:01:44.0062 0536 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
00:01:44.0062 0536 audstub - ok
00:01:44.0140 0536 b57w2k (ea377a8e8e1000877210259750cbbf5f) C:\WINDOWS\system32\DRIVERS\b57xp32.sys
00:01:44.0140 0536 b57w2k - ok
00:01:44.0187 0536 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
00:01:44.0187 0536 Beep - ok
00:01:44.0390 0536 bgs_sdservice - ok
00:01:44.0468 0536 BITS (baa0b6e647c1ad593e9bae5cc31bcffb) C:\WINDOWS\system32\qmgr.dll
00:01:44.0468 0536 BITS - ok
00:01:44.0484 0536 BoiHwsetup - ok
00:01:44.0531 0536 Browser (06b54a7b1ef7cb16bfd0e208d343fa71) C:\WINDOWS\System32\browser.dll
00:01:44.0531 0536 Browser - ok
00:01:44.0750 0536 caccprovsp - ok
00:01:44.0812 0536 cbidf (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\DRIVERS\cbidf2k.sys
00:01:44.0812 0536 cbidf - ok
00:01:45.0046 0536 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
00:01:45.0046 0536 cbidf2k - ok
00:01:45.0062 0536 cd20xrnt (f3ec03299634490e97bbce94cd2954c7) C:\WINDOWS\system32\DRIVERS\cd20xrnt.sys
00:01:45.0078 0536 cd20xrnt - ok
00:01:45.0109 0536 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
00:01:45.0109 0536 Cdaudio - ok
00:01:45.0187 0536 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
00:01:45.0187 0536 Cdfs - ok
00:01:45.0406 0536 cdr4_xp - ok
00:01:45.0484 0536 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys
00:01:45.0484 0536 Cdrom - ok
00:01:45.0562 0536 Changer - ok
00:01:45.0609 0536 CiSvc (793ef38a5fd086c3c8e48a8a861562ed) C:\WINDOWS\system32\cisvc.exe
00:01:45.0609 0536 CiSvc - ok
00:01:45.0765 0536 citrixxteserver - ok
00:01:45.0843 0536 ClipSrv (8b30cbb0c07d49b2658fb190946b0e7e) C:\WINDOWS\system32\clipsrv.exe
00:01:45.0843 0536 ClipSrv - ok
00:01:46.0109 0536 clr_optimization_v2.0.50727_32 (d87acaed61e417bba546ced5e7e36d9c) C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
00:01:46.0109 0536 clr_optimization_v2.0.50727_32 - ok
00:01:46.0234 0536 CmBatt (0f6c187d38d98f8df904589a5f94d411) C:\WINDOWS\system32\DRIVERS\CmBatt.sys
00:01:46.0234 0536 CmBatt - ok
00:01:46.0453 0536 CmdIde (e3726ad522d0bdae090671048c991ab3) C:\WINDOWS\system32\DRIVERS\cmdide.sys
00:01:46.0453 0536 CmdIde - ok
00:01:46.0500 0536 comhost - o
0
Réponse 10 / 13
Marianne
16 avril 2012 à 14:27
Bonjour à vous, j'ai exactement le même problème que Flora depuis hier. J'utilise aussi windows essentials. J'ai fait le pre-scan comme indiqué. Voilà le lien du rapport: http://pjjoint.malekal.com/files.php?id=20120416_p14u13n12b12q6

Quelqu'un qui s'y connaît aurait-il l'amabilité de m'aider s'il vous plaît?

le virus est identifié dans
containerfile:C:\Windows\System32\a016mdm.dll
containerfile:C:\Windows\System32\lvuvc.dll
containerfile:C:\Windows\System32\snapman.dll
file:C:\Windows\System32\a016mdm.dll->EWS->1.cod
file:C:\Windows\System32\lvuvc.dll->EWS->1.cod
file:C:\Windows\System32\snapman.dll->EWS->1.cod
service:AVerBDA
service:T6963C
service:UCTblHid

Merci d'avance
0
Xathor Messages postés 836 Date d'inscription samedi 4 juin 2011 Statut Contributeur sécurité Dernière intervention 22 décembre 2012 148
16 avril 2012 à 15:31
Bonjour,

Merci d'ouvrir un nouveau sujet ! :)
https://forums.commentcamarche.net/forum/virus-securite-7/new
Ne t'inquiète pas , un helper va venir t'aider !

Bonne journée.
@+
0
Utilisateur anonyme
Modifié par g3n-h@ckm@n le 16/04/2012 à 16:10
oh le joli Zaccess !! ^^
0
Xathor Messages postés 836 Date d'inscription samedi 4 juin 2011 Statut Contributeur sécurité Dernière intervention 22 décembre 2012 148
16 avril 2012 à 16:47
Salut g3n ! :)

lol ^^
0
kalimusic Messages postés 14014 Date d'inscription samedi 7 novembre 2009 Statut Contributeur sécurité Dernière intervention 20 novembre 2015 3 027
16 avril 2012 à 17:46
hello

https://forums.commentcamarche.net/forum/affich-24956805-trojan-win32-sirefef-ac-et-ah#1

^^
0
Xathor Messages postés 836 Date d'inscription samedi 4 juin 2011 Statut Contributeur sécurité Dernière intervention 22 décembre 2012 148
16 avril 2012 à 21:06
Salut Kali :)

Mdr ^^
Je demande à voir aussi ! :)
0
Réponse 11 / 13
Utilisateur anonyme
20 avril 2012 à 17:37
Relance Pre_scan , choisis Tools , puis TDSSKiller

l'outil va automatiquement télécharger la derniere version puis

TDSSKiller va s'ouvrir , clique sur "Start Scan"

Si TDSS.tdl2 est détecté l''option delete sera cochée par défaut.
Si TDSS.tdl3 est détecté assure toi que Cure est bien cochée.
Si TDSS.tdl4(\HardDisk0\MBR) est détecté assure toi que Cure est bien cochée.
Si Suspicious file est indiqué, laisse l''option cochée sur Skip
Si Rootkit.Win32.ZAccess.* est détecté règle sur "cure" en haut , et "delete" en bas

une fois qu'il a terminé , redemarre s'il te le demande pour finir de nettoyer

sinon , ferme tdssKiller et le rapport s'affichera sur le bureau

▶ Copie/Colle son contenu dans ta prochaine réponse.
0
Réponse 12 / 13
Utilisateur anonyme
21 avril 2012 à 00:43
reponds à la suite stp

et ben... ca à l'air écoute...!!


fermer toutes les fenêtres et applications lors de l'installation et de l'analyse.


▶ Télécharge ici :

Malwarebytes

▶ Installe le ( choisis bien "francais" ; ne modifie pas les paramètres d'installe ) et mets le à jour .

relance malwarebytes en suivant scrupuleusement ces consignes :

! Déconnecte toi et ferme toutes applications en cours !

▶ Lance Malwarebyte's .

Fais un examen dit "Complet" .

▶ Laisse le programme travailler ( et ne rien faire d'autre avec le PC durant le scan ).
▶ à la fin tu cliques sur "résultat" .
Vérifie que tous les objets infectés soient validés, puis clique sur " suppression " .

Note : si il faut redémarrer ton PC pour finir le nettoyage, fais le !


Poste le rapport sauvegardé après la suppression des objets infectés (dans l'onglet "rapport/log"de Malwarebytes, le dernier en date)

0
Flora
25 avril 2012 à 01:44
Bon, là c'est certain, je n'ai plus rien comme virus.
Merci pour l'aide et voici le rapport de Malwarebyte's


Malwarebytes Anti-Malware (Essai) 1.61.0.1400
www.malwarebytes.org

Version de la base de données: v2012.04.24.05

Windows XP Service Pack 3 x86 NTFS
Internet Explorer 7.0.5730.11
CHU :: CD79 [administrateur]

Protection: Activé

24/04/2012 21:12:16
mbam-log-2012-04-24 (21-12-16).txt

Type d'examen: Examen complet
Options d'examen activées: Mémoire | Démarrage | Registre | Système de fichiers | Heuristique/Extra | Heuristique/Shuriken | PUP | PUM
Options d'examen désactivées: P2P
Elément(s) analysé(s): 317532
Temps écoulé: 3 heure(s), 57 minute(s), 24 seconde(s)

Processus mémoire détecté(s): 0
(Aucun élément nuisible détecté)

Module(s) mémoire détecté(s): 0
(Aucun élément nuisible détecté)

Clé(s) du Registre détectée(s): 0
(Aucun élément nuisible détecté)

Valeur(s) du Registre détectée(s): 0
(Aucun élément nuisible détecté)

Elément(s) de données du Registre détecté(s): 0
(Aucun élément nuisible détecté)

Dossier(s) détecté(s): 0
(Aucun élément nuisible détecté)

Fichier(s) détecté(s): 0
(Aucun élément nuisible détecté)

(fin)
0
Réponse 13 / 13
Utilisateur anonyme
25 avril 2012 à 01:59
oui je pense que ut peux faire ce ménage pour finir en beauté :

https://gen-hackman.kanak.fr/
0

Discussions similaires

C'est quoi "Win32:Trojan-gen {Other}"
Uzumaki -
Utilisateur anonyme -

5 réponses
Comment remettre ma messagerie Zimbra en barre des tâches
Pauline_764 -
Pauline_764 -

2 réponses
Phishing sous Zimbra
marsupilami1947 -
Pierr10 -

40 réponses
zimbra
lili -
lili -

7 réponses
Comment supprimer le virus Trojan
vitsou -
vitsou -

18 réponses