GAC_64 ET 32

Résolu
flotte32 Messages postés 328 Date d'inscription   Statut Membre Dernière intervention   -  
flotte32 Messages postés 328 Date d'inscription   Statut Membre Dernière intervention   -
Bonjour, alors voilà j'ai choper un virus que hitman me signal il me signal desktop.ini dans c:\windows\assembly\GAC_64\ et un autre desktop.ini c:\windows\assembly\GAC_32\ impossible de supprimer avec hitman ou microsoft security essential ni de mettre en quarantaine comment supprimer SVP je préviens que je ne formaterais pas.
Merci d'avance.

39 réponses

Précédent
  • 1
  • 2
Réponse 21 / 39
flotte32 Messages postés 328 Date d'inscription   Statut Membre Dernière intervention   22
 
2012-06-08 17:11:33: ****************************************************
2012-06-08 17:11:33: Starting UP ... v 0.0.0.220
2012-06-08 17:11:33: ****************************************************
2012-06-08 17:11:33: Stop TPSRV returns: 2
2012-06-08 17:11:48: Listing processes...
2012-06-08 17:11:48: :[System Process]:0
2012-06-08 17:11:48: :System:4
2012-06-08 17:11:48: :smss.exe:252
2012-06-08 17:11:48: :csrss.exe:456
2012-06-08 17:11:48: :wininit.exe:504
2012-06-08 17:11:48: :csrss.exe:540
2012-06-08 17:11:48: :services.exe:564
2012-06-08 17:11:48: :lsass.exe:596
2012-06-08 17:11:48: :lsm.exe:604
2012-06-08 17:11:48: :svchost.exe:752
2012-06-08 17:11:48: :winlogon.exe:788
2012-06-08 17:11:48: :nvvsvc.exe:852
2012-06-08 17:11:48: :nvSCPAPISvr.exe:872
2012-06-08 17:11:48: :svchost.exe:920
2012-06-08 17:11:48: :svchost.exe:1008
2012-06-08 17:11:48: :svchost.exe:380
2012-06-08 17:11:48: :svchost.exe:376
2012-06-08 17:11:48: :UnsignedThemesSvc.exe:440
2012-06-08 17:11:48: :audiodg.exe:1048
2012-06-08 17:11:48: :svchost.exe:1092
2012-06-08 17:11:48: :NvXDSync.exe:1244
2012-06-08 17:11:48: :nvvsvc.exe:1256
2012-06-08 17:11:48: :svchost.exe:1324
2012-06-08 17:11:48: :spoolsv.exe:1532
2012-06-08 17:11:48: :svchost.exe:1560
2012-06-08 17:11:48: :armsvc.exe:1736
2012-06-08 17:11:48: :AppleMobileDeviceService.exe:1760
2012-06-08 17:11:48: :atkexComSvc.exe:1812
2012-06-08 17:11:48: :aaHMSvc.exe:1860
2012-06-08 17:11:48: :AsSysCtrlService.exe:1932
2012-06-08 17:11:48: :AsusFanControlService.exe:1956
2012-06-08 17:11:48: :mDNSResponder.exe:2028
2012-06-08 17:11:48: :HeciServer.exe:1132
2012-06-08 17:11:48: :iRebootd.exe:1192
2012-06-08 17:11:48: :Jhi_service.exe:464
2012-06-08 17:11:48: :PnkBstrA.exe:1808
2012-06-08 17:11:48: :svchost.exe:2084
2012-06-08 17:11:48: :StarWindServiceAE.exe:2132
2012-06-08 17:11:48: :TuneUpUtilitiesService64.exe:2184
2012-06-08 17:11:48: :WsxService.exe:2248
2012-06-08 17:11:48: :WLIDSVC.EXE:2284
2012-06-08 17:11:48: :WLIDSVCM.EXE:2340
2012-06-08 17:11:48: :taskeng.exe:2588
2012-06-08 17:11:48: :TuneUpUtilitiesApp64.exe:2612
2012-06-08 17:11:48: :taskhost.exe:2732
2012-06-08 17:11:48: :dwm.exe:2864
2012-06-08 17:11:48: :MSIAfterburner.exe:2900
2012-06-08 17:11:48: :AsRoutineController.exe:2944
2012-06-08 17:11:48: :explorer.exe:2980
2012-06-08 17:11:48: :TurboVHelp.exe:3000
2012-06-08 17:11:48: :U3BoostSvr64.exe:2388
2012-06-08 17:11:48: :RtkNGUI64.exe:3236
2012-06-08 17:11:48: :leftsider64.exe:3256
2012-06-08 17:11:48: :Nexus.exe:3280
2012-06-08 17:11:48: :iReboot.exe:3332
2012-06-08 17:11:48: :WiFiStation.exe:3356
2012-06-08 17:11:48: :ObjectBar.exe:3388
2012-06-08 17:11:48: :ICCProxy.exe:3596
2012-06-08 17:11:48: :TrayServer.exe:4004
2012-06-08 17:11:48: :AiChargerPlus.exe:4012
2012-06-08 17:11:48: :nvtray.exe:4076
2012-06-08 17:11:48: :EPUHelp.exe:3316
2012-06-08 17:11:48: :RTSS.exe:3912
2012-06-08 17:11:48: :SearchIndexer.exe:2932
2012-06-08 17:11:48: :AlertHelper.exe:1224
2012-06-08 17:11:48: :WmiPrvSE.exe:2672
2012-06-08 17:11:48: :GoogleUpdate.exe:3776
2012-06-08 17:11:48: :daemonu.exe:3692
2012-06-08 17:11:48: :TrustedInstaller.exe:1412
2012-06-08 17:11:48: :taskhost.exe:1744
2012-06-08 17:11:48: :svchost.exe:1464
2012-06-08 17:11:48: :SearchProtocolHost.exe:2380
2012-06-08 17:11:48: :SearchFilterHost.exe:276
2012-06-08 17:11:48: :yorkyt.exe:4052
2012-06-08 17:11:48: :WmiPrvSE.exe:544
2012-06-08 17:11:48:
2012-06-08 17:11:48: Setting restore point
2012-06-08 17:11:48: RUN mode
2012-06-08 17:11:48: Determining autonomous or dropped mode...
2012-06-08 17:11:48: Autonomus mode
2012-06-08 17:11:48: ---------------------------------------------------------------------
2012-06-08 17:11:48: Found Service: AeLookupSvc
2012-06-08 17:11:48: Real Path: C:\Windows\System32\aelupsvc.dll
2012-06-08 17:11:48: Display Name: @%SystemRoot%\system32\aelupsvc.dll,-1
2012-06-08 17:11:48: Description: @%SystemRoot%\system32\aelupsvc.dll,-2
2012-06-08 17:11:48: ServiceDLL: System32\aelupsvc.dll
2012-06-08 17:11:48: File size: 0
2012-06-08 17:11:48: DLL File name: aelupsvc.dll
2012-06-08 17:11:48: Original File Name: aelupsvc.dll.mui
2012-06-08 17:11:48: Company:
2012-06-08 17:11:48: Mod/Cre/Acc time:
2012-06-08 17:11:48: ---------------------------------------------------------------------
2012-06-08 17:11:48: Found Service: AppIDSvc
2012-06-08 17:11:48: Real Path: C:\Windows\System32\appidsvc.dll
2012-06-08 17:11:48: Display Name: @%systemroot%\system32\appidsvc.dll,-100
2012-06-08 17:11:48: Description: @%systemroot%\system32\appidsvc.dll,-101
2012-06-08 17:11:48: ServiceDLL: System32\appidsvc.dll
2012-06-08 17:11:48: File size: 0
2012-06-08 17:11:48: DLL File name: appidsvc.dll
2012-06-08 17:11:48: Original File Name: appidsvc.dll.mui
2012-06-08 17:11:48: Company:
2012-06-08 17:11:48: Mod/Cre/Acc time:
2012-06-08 17:11:48: ---------------------------------------------------------------------
2012-06-08 17:11:48: Found Service: Appinfo
2012-06-08 17:11:48: Real Path: C:\Windows\System32\appinfo.dll
2012-06-08 17:11:48: Display Name: @%systemroot%\system32\appinfo.dll,-100
2012-06-08 17:11:48: Description: @%systemroot%\system32\appinfo.dll,-101
2012-06-08 17:11:48: ServiceDLL: System32\appinfo.dll
2012-06-08 17:11:48: File size: 0
2012-06-08 17:11:48: DLL File name: appinfo.dll
2012-06-08 17:11:48: Original File Name: appinfo.dll.mui
2012-06-08 17:11:48: Company:
2012-06-08 17:11:48: Mod/Cre/Acc time:
2012-06-08 17:11:48: ---------------------------------------------------------------------
2012-06-08 17:11:48: Found Service: AppMgmt
2012-06-08 17:11:48: Real Path: C:\Windows\System32\appmgmts.dll
2012-06-08 17:11:48: Display Name: @appmgmts.dll,-3250
2012-06-08 17:11:48: Description: @appmgmts.dll,-3251
2012-06-08 17:11:48: ServiceDLL: System32\appmgmts.dll
2012-06-08 17:11:48: File size: 149504
2012-06-08 17:11:48: DLL File name: appmgmts.dll
2012-06-08 17:11:48: Original File Name: appmgmts.dll.mui
2012-06-08 17:11:48: Company:
2012-06-08 17:11:48: Mod/Cre/Acc time: 20090714031453 20090714013834 20090714013834
2012-06-08 17:11:48: ---------------------------------------------------------------------
2012-06-08 17:11:48: Found Service: AudioEndpointBuilder
2012-06-08 17:11:48: Real Path: C:\Windows\System32\Audiosrv.dll
2012-06-08 17:11:48: Display Name: @%SystemRoot%\system32\audiosrv.dll,-204
2012-06-08 17:11:48: Description: @%SystemRoot%\System32\audiosrv.dll,-205
2012-06-08 17:11:48: ServiceDLL: System32\Audiosrv.dll
2012-06-08 17:11:48: File size: 0
2012-06-08 17:11:48: DLL File name: Audiosrv.dll
2012-06-08 17:11:48: Original File Name: audiosrv.dll.mui
2012-06-08 17:11:48: Company:
2012-06-08 17:11:48: Mod/Cre/Acc time:
2012-06-08 17:11:48: ---------------------------------------------------------------------
2012-06-08 17:11:48: Found Service: AudioSrv
2012-06-08 17:11:48: Real Path: C:\Windows\System32\Audiosrv.dll
2012-06-08 17:11:48: Display Name: @%SystemRoot%\system32\audiosrv.dll,-200
2012-06-08 17:11:48: Description: @%SystemRoot%\System32\audiosrv.dll,-201
2012-06-08 17:11:48: ServiceDLL: System32\Audiosrv.dll
2012-06-08 17:11:48: File size: 0
2012-06-08 17:11:48: DLL File name: Audiosrv.dll
2012-06-08 17:11:48: Original File Name: audiosrv.dll.mui
2012-06-08 17:11:48: Company:
2012-06-08 17:11:48: Mod/Cre/Acc time:
2012-06-08 17:11:48: ---------------------------------------------------------------------
2012-06-08 17:11:48: Found Service: AxInstSV
2012-06-08 17:11:48: Real Path: C:\Windows\System32\AxInstSV.dll
2012-06-08 17:11:48: Display Name: @%SystemRoot%\system32\AxInstSV.dll,-103
2012-06-08 17:11:48: Description: @%SystemRoot%\system32\AxInstSV.dll,-104
2012-06-08 17:11:48: ServiceDLL: System32\AxInstSV.dll
2012-06-08 17:11:48: File size: 0
2012-06-08 17:11:48: DLL File name: AxInstSV.dll
2012-06-08 17:11:48: Original File Name: AxInstSv.dll.mui
2012-06-08 17:11:48: Company:
2012-06-08 17:11:48: Mod/Cre/Acc time:
2012-06-08 17:11:48: ---------------------------------------------------------------------
2012-06-08 17:11:48: Found Service: BDESVC
2012-06-08 17:11:48: Real Path: C:\Windows\System32\bdesvc.dll
2012-06-08 17:11:48: Display Name: @%SystemRoot%\system32\bdesvc.dll,-100
2012-06-08 17:11:48: Description: @%SystemRoot%\system32\bdesvc.dll,-101
2012-06-08 17:11:48: ServiceDLL: System32\bdesvc.dll
2012-06-08 17:11:48: File size: 0
2012-06-08 17:11:48: DLL File name: bdesvc.dll
2012-06-08 17:11:48: Original File Name: BDESVC.DLL.MUI
2012-06-08 17:11:48: Company:
2012-06-08 17:11:48: Mod/Cre/Acc time:
2012-06-08 17:11:48: ---------------------------------------------------------------------
2012-06-08 17:11:48: Found Service: BFE
2012-06-08 17:11:48: Real Path: C:\Windows\System32\bfe.dll
2012-06-08 17:11:48: Display Name: @%SystemRoot%\system32\bfe.dll,-1001
2012-06-08 17:11:48: Description: @%SystemRoot%\system32\bfe.dll,-1002
2012-06-08 17:11:48: ServiceDLL: System32\bfe.dll
2012-06-08 17:11:48: File size: 0
2012-06-08 17:11:48: DLL File name: bfe.dll
2012-06-08 17:11:48: Original File Name: BFE.DLL.MUI
2012-06-08 17:11:48: Company:
2012-06-08 17:11:48: Mod/Cre/Acc time:
2012-06-08 17:11:48: ---------------------------------------------------------------------
2012-06-08 17:11:48: Found Service: BITS
2012-06-08 17:11:48: Real Path: C:\Windows\system32\qmgr.dll
2012-06-08 17:11:48: Display Name: @%SystemRoot%\system32\qmgr.dll,-1000
2012-06-08 17:11:48: Description: @%SystemRoot%\system32\qmgr.dll,-1001
2012-06-08 17:11:48: ServiceDLL: system32\qmgr.dll
2012-06-08 17:11:48: File size: 0
2012-06-08 17:11:48: DLL File name: qmgr.dll
2012-06-08 17:11:48: Original File Name: qmgr.dll.mui
2012-06-08 17:11:48: Company:
2012-06-08 17:11:48: Mod/Cre/Acc time:
2012-06-08 17:11:48: ---------------------------------------------------------------------
2012-06-08 17:11:48: Found Service: Browser
2012-06-08 17:11:48: Real Path: C:\Windows\System32\browser.dll
2012-06-08 17:11:48: Display Name: @%systemroot%\system32\browser.dll,-100
2012-06-08 17:11:48: Description: @%systemroot%\system32\browser.dll,-101
2012-06-08 17:11:48: ServiceDLL: System32\browser.dll
2012-06-08 17:11:48: File size: 0
2012-06-08 17:11:48: DLL File name: browser.dll
2012-06-08 17:11:48: Original File Name: browser.dll.mui
2012-06-08 17:11:48: Company:
2012-06-08 17:11:48: Mod/Cre/Acc time:
2012-06-08 17:11:48: ---------------------------------------------------------------------
2012-06-08 17:11:48: Found Service: bthserv
2012-06-08 17:11:48: Real Path: C:\Windows\system32\bthserv.dll
2012-06-08 17:11:48: Display Name: @%SystemRoot%\System32\bthserv.dll,-101
2012-06-08 17:11:48: Description: @%SystemRoot%\System32\bthserv.dll,-102
2012-06-08 17:11:48: ServiceDLL: system32\bthserv.dll
2012-06-08 17:11:48: File size: 0
2012-06-08 17:11:48: DLL File name: bthserv.dll
2012-06-08 17:11:48: Original File Name: BTHSERV.DLL.MUI
2012-06-08 17:11:48: Company:
2012-06-08 17:11:48: Mod/Cre/Acc time:
2012-06-08 17:11:48: ---------------------------------------------------------------------
2012-06-08 17:11:48: Found Service: CertPropSvc
2012-06-08 17:11:48: Real Path: C:\Windows\System32\certprop.dll
2012-06-08 17:11:48: Display Name: @%SystemRoot%\System32\certprop.dll,-11
2012-06-08 17:11:48: Description: @%SystemRoot%\System32\certprop.dll,-12
2012-06-08 17:11:48: ServiceDLL: System32\certprop.dll
2012-06-08 17:11:48: File size: 0
2012-06-08 17:11:48: DLL File name: certprop.dll
2012-06-08 17:11:48: Original File Name: certprop.dll.mui
2012-06-08 17:11:48: Company:
2012-06-08 17:11:48: Mod/Cre/Acc time:
2012-06-08 17:11:48: ---------------------------------------------------------------------
2012-06-08 17:11:48: Found Service: CryptSvc
2012-06-08 17:11:48: Real Path: C:\Windows\system32\cryptsvc.dll
2012-06-08 17:11:48: Display Name: @%SystemRoot%\system32\cryptsvc.dll,-1001
2012-06-08 17:11:48: Description: @%SystemRoot%\system32\cryptsvc.dll,-1002
2012-06-08 17:11:48: ServiceDLL: system32\cryptsvc.dll
2012-06-08 17:11:48: File size: 136192
2012-06-08 17:11:48: DLL File name: cryptsvc.dll
2012-06-08 17:11:48: Original File Name: cryptsvc.dll.mui
2012-06-08 17:11:48: Company:
2012-06-08 17:11:48: Mod/Cre/Acc time: 20101121052432 20101121052432 20101121052432
2012-06-08 17:11:48: ---------------------------------------------------------------------
2012-06-08 17:11:48: Found Service: CscService
2012-06-08 17:11:48: Real Path: C:\Windows\System32\cscsvc.dll
2012-06-08 17:11:48: Display Name: @%systemroot%\system32\cscsvc.dll,-200
2012-06-08 17:11:48: Description: @%systemroot%\system32\cscsvc.dll,-201
2012-06-08 17:11:48: ServiceDLL: System32\cscsvc.dll
2012-06-08 17:11:48: File size: 0
2012-06-08 17:11:48: DLL File name: cscsvc.dll
2012-06-08 17:11:48: Original File Name: cscsvc.dll.mui
2012-06-08 17:11:48: Company:
2012-06-08 17:11:48: Mod/Cre/Acc time:
2012-06-08 17:11:48: ---------------------------------------------------------------------
2012-06-08 17:11:48: Found Service: DcomLaunch
2012-06-08 17:11:48: Real Path: C:\Windows\system32\rpcss.dll
2012-06-08 17:11:48: Display Name: @oleres.dll,-5012
2012-06-08 17:11:48: Description: @oleres.dll,-5013
2012-06-08 17:11:48: ServiceDLL: system32\rpcss.dll
2012-06-08 17:11:48: File size: 0
2012-06-08 17:11:48: DLL File name: rpcss.dll
2012-06-08 17:11:48: Original File Name: rpcss.dll
2012-06-08 17:11:48: Company:
2012-06-08 17:11:48: Mod/Cre/Acc time:
2012-06-08 17:11:48: ---------------------------------------------------------------------
2012-06-08 17:11:48: Found Service: defragsvc
2012-06-08 17:11:48: Real Path: C:\Windows\System32\defragsvc.dll
2012-06-08 17:11:48: Display Name: @%SystemRoot%\system32\defragsvc.dll,-101
2012-06-08 17:11:48: Description: @%SystemRoot%\system32\defragsvc.dll,-102
2012-06-08 17:11:48: ServiceDLL: System32\defragsvc.dll
2012-06-08 17:11:48: File size: 0
2012-06-08 17:11:48: DLL File name: defragsvc.dll
2012-06-08 17:11:48: Original File Name: defragsvc.dll.mui
2012-06-08 17:11:48: Company:
2012-06-08 17:11:48: Mod/Cre/Acc time:
2012-06-08 17:11:48: ---------------------------------------------------------------------
2012-06-08 17:11:48: Found Service: Dhcp
2012-06-08 17:11:48: Real Path: C:\Windows\system32\dhcpcore.dll
2012-06-08 17:11:48: Display Name: @%SystemRoot%\system32\dhcpcore.dll,-100
2012-06-08 17:11:48: Description: @%SystemRoot%\system32\dhcpcore.dll,-101
2012-06-08 17:11:48: ServiceDLL: system32\dhcpcore.dll
2012-06-08 17:11:48: File size: 254464
2012-06-08 17:11:48: DLL File name: dhcpcore.dll
2012-06-08 17:11:48: Original File Name: dhcpcore.dll.mui
2012-06-08 17:11:48: Company:
2012-06-08 17:11:48: Mod/Cre/Acc time: 20101121052409 20101121052409 20101121052409
2012-06-08 17:11:48: ---------------------------------------------------------------------
2012-06-08 17:11:48: Found Service: Dnscache
2012-06-08 17:11:48: Real Path: C:\Windows\System32\dnsrslvr.dll
2012-06-08 17:11:48: Display Name: @%SystemRoot%\System32\dnsapi.dll,-101
2012-06-08 17:11:48: Description: @%SystemRoot%\System32\dnsapi.dll,-102
2012-06-08 17:11:48: ServiceDLL: System32\dnsrslvr.dll
2012-06-08 17:11:48: File size: 0
2012-06-08 17:11:48: DLL File name: dnsrslvr.dll
2012-06-08 17:11:48: Original File Name: dnsrslvr.dll.mui
2012-06-08 17:11:48: Company:
2012-06-08 17:11:48: Mod/Cre/Acc time:
2012-06-08 17:11:48: ---------------------------------------------------------------------
2012-06-08 17:11:48: Found Service: dot3svc
2012-06-08 17:11:48: Real Path: C:\Windows\System32\dot3svc.dll
2012-06-08 17:11:48: Display Name: @%systemroot%\system32\dot3svc.dll,-1102
2012-06-08 17:11:48: Description: @%systemroot%\system32\dot3svc.dll,-1103
2012-06-08 17:11:48: ServiceDLL: System32\dot3svc.dll
2012-06-08 17:11:48: File size: 0
2012-06-08 17:11:48: DLL File name: dot3svc.dll
2012-06-08 17:11:48: Original File Name: dot3svc.dll.mui
2012-06-08 17:11:48: Company:
2012-06-08 17:11:48: Mod/Cre/Acc time:
2012-06-08 17:11:48: ---------------------------------------------------------------------
2012-06-08 17:11:48: Found Service: DPS
2012-06-08 17:11:48: Real Path: C:\Windows\system32\dps.dll
2012-06-08 17:11:48: Display Name: @%systemroot%\system32\dps.dll,-500
2012-06-08 17:11:48: Description: @%systemroot%\system32\dps.dll,-501
2012-06-08 17:11:48: ServiceDLL: system32\dps.dll
2012-06-08 17:11:48: File size: 0
2012-06-08 17:11:48: DLL File name: dps.dll
2012-06-08 17:11:48: Original File Name: dps.dll.mui
2012-06-08 17:11:48: Company:
2012-06-08 17:11:48: Mod/Cre/Acc time:
2012-06-08 17:11:48: ---------------------------------------------------------------------
2012-06-08 17:11:48: Found Service: EapHost
2012-06-08 17:11:48: Real Path: C:\Windows\System32\eapsvc.dll
2012-06-08 17:11:48: Display Name: @%systemroot%\system32\eapsvc.dll,-1
2012-06-08 17:11:48: Description: @%systemroot%\system32\eapsvc.dll,-2
2012-06-08 17:11:48: ServiceDLL: System32\eapsvc.dll
2012-06-08 17:11:48: File size: 0
2012-06-08 17:11:48: DLL File name: eapsvc.dll
2012-06-08 17:11:48: Original File Name: eapsvc.dll.mui
2012-06-08 17:11:48: Company:
2012-06-08 17:11:48: Mod/Cre/Acc time:
2012-06-08 17:11:49: ---------------------------------------------------------------------
2012-06-08 17:11:49: Found Service: EventSystem
2012-06-08 17:11:49: Real Path: C:\Windows\system32\es.dll
2012-06-08 17:11:49: Display Name: @comres.dll,-2450
2012-06-08 17:11:49: Description: @comres.dll,-2451
2012-06-08 17:11:49: ServiceDLL: system32\es.dll
2012-06-08 17:11:49: File size: 271360
2012-06-08 17:11:49: DLL File name: es.dll
2012-06-08 17:11:49: Original File Name: ES.DLL
2012-06-08 17:11:49: Company:
2012-06-08 17:11:49: Mod/Cre/Acc time: 20090714031519 20090714014438 20090714014438
2012-06-08 17:11:49: ---------------------------------------------------------------------
2012-06-08 17:11:49: Found Service: fdPHost
2012-06-08 17:11:49: Real Path: C:\Windows\system32\fdPHost.dll
2012-06-08 17:11:49: Display Name: @%systemroot%\system32\fdPHost.dll,-100
2012-06-08 17:11:49: Description: @%systemroot%\system32\fdPHost.dll,-101
2012-06-08 17:11:49: ServiceDLL: system32\fdPHost.dll
2012-06-08 17:11:49: File size: 0
2012-06-08 17:11:49: DLL File name: fdPHost.dll
2012-06-08 17:11:49: Original File Name: fdPHost.dll.mui
2012-06-08 17:11:49: Company:
2012-06-08 17:11:49: Mod/Cre/Acc time:
2012-06-08 17:11:49: ---------------------------------------------------------------------
2012-06-08 17:11:49: Found Service: FDResPub
2012-06-08 17:11:49: Real Path: C:\Windows\system32\fdrespub.dll
2012-06-08 17:11:49: Display Name: @%systemroot%\system32\fdrespub.dll,-100
2012-06-08 17:11:49: Description: @%systemroot%\system32\fdrespub.dll,-101
2012-06-08 17:11:49: ServiceDLL: system32\fdrespub.dll
2012-06-08 17:11:49: File size: 0
2012-06-08 17:11:49: DLL File name: fdrespub.dll
2012-06-08 17:11:49: Original File Name: FDResPub.dll.mui
2012-06-08 17:11:49: Company:
2012-06-08 17:11:49: Mod/Cre/Acc time:
2012-06-08 17:11:49: !!!!!!!
2012-06-08 17:11:49: Found Service: FontCache
2012-06-08 17:11:49: Real Path: C:\Windows\system32\FntCache.dll
2012-06-08 17:11:49: Display Name: @%systemroot%\system32\FntCache.dll,-100
2012-06-08 17:11:49: Description: @%systemroot%\system32\FntCache.dll,-101
2012-06-08 17:11:49: ServiceDLL: system32\FntCache.dll
2012-06-08 17:11:49: File size: 0
2012-06-08 17:11:49: DLL File name: FntCache.dll
2012-06-08 17:11:49: Original File Name: FontCacheService
2012-06-08 17:11:49: Company:
2012-06-08 17:11:49: Mod/Cre/Acc time:
2012-06-08 17:11:49: !!!!!!!!!
2012-06-08 17:11:49: ---------------------------------------------------------------------
2012-06-08 17:11:49: Found Service: gpsvc
2012-06-08 17:11:49: Real Path: C:\Windows\System32\gpsvc.dll
2012-06-08 17:11:49: Display Name: @gpapi.dll,-112
2012-06-08 17:11:49: Description: @gpapi.dll,-113
2012-06-08 17:11:49: ServiceDLL: System32\gpsvc.dll
2012-06-08 17:11:49: File size: 0
2012-06-08 17:11:49: DLL File name: gpsvc.dll
2012-06-08 17:11:49: Original File Name: gpsvc.dll.mui
2012-06-08 17:11:49: Company:
2012-06-08 17:11:49: Mod/Cre/Acc time:
2012-06-08 17:11:49: ---------------------------------------------------------------------
2012-06-08 17:11:49: Found Service: hidserv
2012-06-08 17:11:49: Real Path: C:\Windows\System32\hidserv.dll
2012-06-08 17:11:49: Display Name: @%SystemRoot%\System32\hidserv.dll,-101
2012-06-08 17:11:49: Description: @%SystemRoot%\System32\hidserv.dll,-102
2012-06-08 17:11:49: ServiceDLL: System32\hidserv.dll
2012-06-08 17:11:49: File size: 49152
2012-06-08 17:11:49: DLL File name: hidserv.dll
2012-06-08 17:11:49: Original File Name: HIDSERV.DLL.MUI
2012-06-08 17:11:49: Company:
2012-06-08 17:11:49: Mod/Cre/Acc time: 20090714031524 20090714015109 20090714015109
2012-06-08 17:11:49: ---------------------------------------------------------------------
2012-06-08 17:11:49: Found Service: hkmsvc
2012-06-08 17:11:49: Real Path: C:\Windows\system32\kmsvc.dll
2012-06-08 17:11:49: Display Name: @%SystemRoot%\system32\kmsvc.dll,-6
2012-06-08 17:11:49: Description: @%SystemRoot%\system32\kmsvc.dll,-7
2012-06-08 17:11:49: ServiceDLL: system32\kmsvc.dll
2012-06-08 17:11:49: File size: 0
2012-06-08 17:11:49: DLL File name: kmsvc.dll
2012-06-08 17:11:49: Original File Name: KmSvc.DLL.MUI
2012-06-08 17:11:49: Company:
2012-06-08 17:11:49: Mod/Cre/Acc time:
2012-06-08 17:11:49: ---------------------------------------------------------------------
2012-06-08 17:11:49: Found Service: HomeGroupListener
2012-06-08 17:11:49: Real Path: C:\Windows\system32\ListSvc.dll
2012-06-08 17:11:49: Display Name: @%SystemRoot%\System32\ListSvc.dll,-100
2012-06-08 17:11:49: Description: @%SystemRoot%\System32\ListSvc.dll,-101
2012-06-08 17:11:49: ServiceDLL: system32\ListSvc.dll
2012-06-08 17:11:49: File size: 0
2012-06-08 17:11:49: DLL File name: ListSvc.dll
2012-06-08 17:11:49: Original File Name: ListSvc.dll.mui
2012-06-08 17:11:49: Company:
2012-06-08 17:11:49: Mod/Cre/Acc time:
2012-06-08 17:11:49: ---------------------------------------------------------------------
2012-06-08 17:11:49: Found Service: HomeGroupProvider
2012-06-08 17:11:49: Real Path: C:\Windows\system32\provsvc.dll
2012-06-08 17:11:49: Display Name: @%SystemRoot%\System32\provsvc.dll,-100
2012-06-08 17:11:49: Description: @%SystemRoot%\System32\provsvc.dll,-101
2012-06-08 17:11:49: ServiceDLL: system32\provsvc.dll
2012-06-08 17:11:49: File size: 165376
2012-06-08 17:11:49: DLL File name: provsvc.dll
2012-06-08 17:11:49: Original File Name: provsvc.dll.mui
2012-06-08 17:11:49: Company:
2012-06-08 17:11:49: Mod/Cre/Acc time: 20101121052510 20101121052510 20101121052510
2012-06-08 17:11:49: ---------------------------------------------------------------------
2012-06-08 17:11:49: Found Service: IKEEXT
2012-06-08 17:11:49: Real Path: C:\Windows\System32\ikeext.dll
2012-06-08 17:11:49: Display Name: @%SystemRoot%\system32\ikeext.dll,-501
2012-06-08 17:11:49: Description: @%SystemRoot%\system32\ikeext.dll,-502
2012-06-08 17:11:49: ServiceDLL: System32\ikeext.dll
2012-06-08 17:11:49: File size: 0
2012-06-08 17:11:49: DLL File name: ikeext.dll
2012-06-08 17:11:49: Original File Name: IKEEXT.DLL.MUI
2012-06-08 17:11:49: Company:
2012-06-08 17:11:49: Mod/Cre/Acc time:
2012-06-08 17:11:49: ---------------------------------------------------------------------
2012-06-08 17:11:49: Found Service: IPBusEnum
2012-06-08 17:11:49: Real Path: C:\Windows\system32\ipbusenum.dll
2012-06-08 17:11:49: Display Name: @%systemroot%\system32\IPBusEnum.dll,-102
2012-06-08 17:11:49: Description: @%systemroot%\system32\IPBusEnum.dll,-103
2012-06-08 17:11:49: ServiceDLL: system32\ipbusenum.dll
2012-06-08 17:11:49: File size: 0
2012-06-08 17:11:49: DLL File name: ipbusenum.dll
2012-06-08 17:11:49: Original File Name: IPBusEnum.dll.mui
2012-06-08 17:11:49: Company:
2012-06-08 17:11:49: Mod/Cre/Acc time:
2012-06-08 17:11:49: ---------------------------------------------------------------------
2012-06-08 17:11:49: Found Service: iphlpsvc
2012-06-08 17:11:49: Real Path: C:\Windows\System32\iphlpsvc.dll
2012-06-08 17:11:49: Display Name: @%SystemRoot%\system32\iphlpsvc.dll,-500
2012-06-08 17:11:49: Description: @%SystemRoot%\system32\iphlpsvc.dll,-501
2012-06-08 17:11:49: ServiceDLL: System32\iphlpsvc.dll
2012-06-08 17:11:49: File size: 0
2012-06-08 17:11:49: DLL File name: iphlpsvc.dll
2012-06-08 17:11:49: Original File Name: iphlpsvc.dll.mui
2012-06-08 17:11:49: Company:
2012-06-08 17:11:49: Mod/Cre/Acc time:
2012-06-08 17:11:49: ---------------------------------------------------------------------
2012-06-08 17:11:49: Found Service: KtmRm
2012-06-08 17:11:49: Real Path: C:\Windows\system32\msdtckrm.dll
2012-06-08 17:11:49: Display Name: @comres.dll,-2946
2012-06-08 17:11:49: Description: @comres.dll,-2947
2012-06-08 17:11:49: ServiceDLL: system32\msdtckrm.dll
2012-06-08 17:11:49: File size: 0
2012-06-08 17:11:49: DLL File name: msdtckrm.dll
2012-06-08 17:11:49: Original File Name: MSDTCKRM.DLL
2012-06-08 17:11:49: Company:
2012-06-08 17:11:49: Mod/Cre/Acc time:
2012-06-08 17:11:49: ---------------------------------------------------------------------
2012-06-08 17:11:49: Found Service: LanmanServer
2012-06-08 17:11:49: Real Path: C:\Windows\System32\srvsvc.dll
2012-06-08 17:11:49: Display Name: @%systemroot%\system32\srvsvc.dll,-100
2012-06-08 17:11:49: Description: @%systemroot%\system32\srvsvc.dll,-101
2012-06-08 17:11:49: ServiceDLL: System32\srvsvc.dll
2012-06-08 17:11:49: File size: 0
2012-06-08 17:11:49: DLL File name: srvsvc.dll
2012-06-08 17:11:49: Original File Name: SRVSVC.DLL.MUI
2012-06-08 17:11:49: Company:
2012-06-08 17:11:49: Mod/Cre/Acc time:
2012-06-08 17:11:49: ---------------------------------------------------------------------
2012-06-08 17:11:49: Found Service: LanmanWorkstation
2012-06-08 17:11:49: Real Path: C:\Windows\System32\wkssvc.dll
2012-06-08 17:11:49: Display Name: @%systemroot%\system32\wkssvc.dll,-100
2012-06-08 17:11:49: Description: @%systemroot%\system32\wkssvc.dll,-101
2012-06-08 17:11:49: ServiceDLL: System32\wkssvc.dll
2012-06-08 17:11:49: File size: 0
2012-06-08 17:11:49: DLL File name: wkssvc.dll
2012-06-08 17:11:49: Original File Name: WKSSVC.DLL.MUI
2012-06-08 17:11:49: Company:
2012-06-08 17:11:49: Mod/Cre/Acc time:
2012-06-08 17:11:49: ---------------------------------------------------------------------
2012-06-08 17:11:49: Found Service: lltdsvc
2012-06-08 17:11:49: Real Path: C:\Windows\System32\lltdsvc.dll
2012-06-08 17:11:49: Display Name: @%SystemRoot%\system32\lltdres.dll,-1
2012-06-08 17:11:49: Description: @%SystemRoot%\system32\lltdres.dll,-2
2012-06-08 17:11:49: ServiceDLL: System32\lltdsvc.dll
2012-06-08 17:11:49: File size: 0
2012-06-08 17:11:49: DLL File name: lltdsvc.dll
2012-06-08 17:11:49: Original File Name: LLTDSVC.DLL
2012-06-08 17:11:49: Company:
2012-06-08 17:11:49: Mod/Cre/Acc time:
2012-06-08 17:11:49: ---------------------------------------------------------------------
2012-06-08 17:11:49: Found Service: lmhosts
2012-06-08 17:11:49: Real Path: C:\Windows\System32\lmhsvc.dll
2012-06-08 17:11:49: Display Name: @%SystemRoot%\system32\lmhsvc.dll,-101
2012-06-08 17:11:49: Description: @%SystemRoot%\system32\lmhsvc.dll,-102
2012-06-08 17:11:49: ServiceDLL: System32\lmhsvc.dll
2012-06-08 17:11:49: File size: 0
2012-06-08 17:11:49: DLL File name: lmhsvc.dll
2012-06-08 17:11:49: Original File Name: lmhsvc.dll.mui
2012-06-08 17:11:49: Company:
2012-06-08 17:11:49: Mod/Cre/Acc time:
2012-06-08 17:11:49: ---------------------------------------------------------------------
2012-06-08 17:11:49: Found Service: Mcx2Svc
2012-06-08 17:11:49: Real Path: C:\Windows\system32\Mcx2Svc.dll
2012-06-08 17:11:49: Display Name: @%SystemRoot%\ehome\ehres.dll,-15501
2012-06-08 17:11:49: Description: @%SystemRoot%\ehome\ehres.dll,-15502
2012-06-08 17:11:49: ServiceDLL: system32\Mcx2Svc.dll
2012-06-08 17:11:49: File size: 0
2012-06-08 17:11:49: DLL File name: Mcx2Svc.dll
2012-06-08 17:11:49: Original File Name: Mcx2Svc.dll
2012-06-08 17:11:49: Company:
2012-06-08 17:11:49: Mod/Cre/Acc time:
2012-06-08 17:11:49: ---------------------------------------------------------------------
2012-06-08 17:11:49: Found Service: MMCSS
2012-06-08 17:11:49: Real Path: C:\Windows\system32\mmcss.dll
2012-06-08 17:11:49: Display Name: @%systemroot%\system32\mmcss.dll,-100
2012-06-08 17:11:49: Description: @%systemroot%\system32\mmcss.dll,-101
2012-06-08 17:11:49: ServiceDLL: system32\mmcss.dll
2012-06-08 17:11:49: File size: 0
2012-06-08 17:11:49: DLL File name: mmcss.dll
2012-06-08 17:11:49: Original File Name: mmcss.dll.mui
2012-06-08 17:11:49: Company:
2012-06-08 17:11:49: Mod/Cre/Acc time:
2012-06-08 17:11:49: ---------------------------------------------------------------------
2012-06-08 17:11:49: Found Service: MpsSvc
2012-06-08 17:11:49: Real Path: C:\Windows\system32\mpssvc.dll
2012-06-08 17:11:49: Display Name: @%SystemRoot%\system32\FirewallAPI.dll,-23090
2012-06-08 17:11:49: Description: @%SystemRoot%\system32\FirewallAPI.dll,-23091
2012-06-08 17:11:49: ServiceDLL: system32\mpssvc.dll
2012-06-08 17:11:49: File size: 0
2012-06-08 17:11:49: DLL File name: mpssvc.dll
2012-06-08 17:11:49: Original File Name: mpssvc.dll.mui
2012-06-08 17:11:49: Company:
2012-06-08 17:11:49: Mod/Cre/Acc time:
2012-06-08 17:11:49: ---------------------------------------------------------------------
2012-06-08 17:11:49: Found Service: MSiSCSI
2012-06-08 17:11:49: Real Path: C:\Windows\system32\iscsiexe.dll
2012-06-08 17:11:49: Display Name: @%SystemRoot%\system32\iscsidsc.dll,-5000
2012-06-08 17:11:49: Description: @%SystemRoot%\system32\iscsidsc.dll,-5001
2012-06-08 17:11:49: ServiceDLL: system32\iscsiexe.dll
2012-06-08 17:11:49: File size: 0
2012-06-08 17:11:49: DLL File name: iscsiexe.dll
2012-06-08 17:11:49: Original File Name: iscsiexe.exe.mui
2012-06-08 17:11:49: Company:
2012-06-08 17:11:49: Mod/Cre/Acc time:
2012-06-08 17:11:49: ---------------------------------------------------------------------
2012-06-08 17:11:49: Found Service: napagent
2012-06-08 17:11:49: Real Path: C:\Windows\system32\qagentRT.dll
2012-06-08 17:11:49: Display Name: @%SystemRoot%\system32\qagentrt.dll,-6
2012-06-08 17:11:49: Description: @%SystemRoot%\system32\qagentrt.dll,-7
2012-06-08 17:11:49: ServiceDLL: system32\qagentRT.dll
2012-06-08 17:11:49: File size: 0
2012-06-08 17:11:49: DLL File name: qagentRT.dll
2012-06-08 17:11:49: Original File Name: QAgentRT.DLL.MUI
2012-06-08 17:11:49: Company:
2012-06-08 17:11:49: Mod/Cre/Acc time:
2012-06-08 17:11:49: ---------------------------------------------------------------------
2012-06-08 17:11:49: Found Service: Netman
2012-06-08 17:11:49: Real Path: C:\Windows\System32\netman.dll
2012-06-08 17:11:49: Display Name: @%SystemRoot%\system32\netman.dll,-109
2012-06-08 17:11:49: Description: @%SystemRoot%\system32\netman.dll,-110
2012-06-08 17:11:49: ServiceDLL: System32\netman.dll
2012-06-08 17:11:49: File size: 0
2012-06-08 17:11:49: DLL File name: netman.dll
2012-06-08 17:11:49: Original File Name: netman.dll.mui
2012-06-08 17:11:49: Company:
2012-06-08 17:11:49: Mod/Cre/Acc time:
2012-06-08 17:11:49: ---------------------------------------------------------------------
2012-06-08 17:11:49: Found Service: netprofm
2012-06-08 17:11:49: Real Path: C:\Windows\System32\netprofm.dll
2012-06-08 17:11:49: Display Name: @%SystemRoot%\system32\netprofm.dll,-202
2012-06-08 17:11:49: Description: @%SystemRoot%\system32\netprofm.dll,-203
2012-06-08 17:11:49: ServiceDLL: System32\netprofm.dll
2012-06-08 17:11:49: File size: 360448
2012-06-08 17:11:49: DLL File name: netprofm.dll
2012-06-08 17:11:49: Original File Name: netprofm.dll.mui
2012-06-08 17:11:49: Company:
2012-06-08 17:11:49: Mod/Cre/Acc time: 20090714031603 20090714015658 20090714015658
2012-06-08 17:11:49: ---------------------------------------------------------------------
2012-06-08 17:11:49: Found Service: NlaSvc
2012-06-08 17:11:49: Real Path: C:\Windows\System32\nlasvc.dll
2012-06-08 17:11:49: Display Name: @%SystemRoot%\System32\nlasvc.dll,-1
2012-06-08 17:11:49: Description: @%SystemRoot%\System32\nlasvc.dll,-2
2012-06-08 17:11:49: ServiceDLL: System32\nlasvc.dll
2012-06-08 17:11:49: File size: 0
2012-06-08 17:11:49: DLL File name: nlasvc.dll
2012-06-08 17:11:49: Original File Name: nlasvc.dll.mui
2012-06-08 17:11:49: Company:
2012-06-08 17:11:49: Mod/Cre/Acc time:
2012-06-08 17:11:49: ---------------------------------------------------------------------
2012-06-08 17:11:49: Found Service: nsi
2012-06-08 17:11:49: Real Path: C:\Windows\system32\nsisvc.dll
2012-06-08 17:11:49: Display Name: @%SystemRoot%\system32\nsisvc.dll,-200
2012-06-08 17:11:49: Description: @%SystemRoot%\system32\nsisvc.dll,-201
2012-06-08 17:11:49: ServiceDLL: system32\nsisvc.dll
2012-06-08 17:11:49: File size: 0
2012-06-08 17:11:49: DLL File name: nsisvc.dll
2012-06-08 17:11:49: Original File Name: nsisvc.dll.mui
2012-06-08 17:11:49: Company:
2012-06-08 17:11:49: Mod/Cre/Acc time:
2012-06-08 17:11:49: ---------------------------------------------------------------------
2012-06-08 17:11:49: Found Service: p2pimsvc
2012-06-08 17:11:49: Real Path: C:\Windows\system32\pnrpsvc.dll
2012-06-08 17:11:49: Display Name: @%SystemRoot%\system32\pnrpsvc.dll,-8004
2012-06-08 17:11:49: Description: @%SystemRoot%\system32\pnrpsvc.dll,-8005
2012-06-08 17:11:49: ServiceDLL: system32\pnrpsvc.dll
2012-06-08 17:11:49: File size: 0
2012-06-08 17:11:49: DLL File name: pnrpsvc.dll
2012-06-08 17:11:49: Original File Name: pnrpsvc.dll.mui
2012-06-08 17:11:49: Company:
2012-06-08 17:11:49: Mod/Cre/Acc time:
2012-06-08 17:11:49: ---------------------------------------------------------------------
2012-06-08 17:11:49: Found Service: p2psvc
2012-06-08 17:11:49: Real Path: C:\Windows\system32\p2psvc.dll
2012-06-08 17:11:49: Display Name: @%SystemRoot%\system32\p2psvc.dll,-8006
2012-06-08 17:11:49: Description: @%SystemRoot%\system32\p2psvc.dll,-8007
2012-06-08 17:11:49: ServiceDLL: system32\p2psvc.dll
2012-06-08 17:11:49: File size: 0
2012-06-08 17:11:49: DLL File name: p2psvc.dll
2012-06-08 17:11:49: Original File Name: p2psvc.dll.mui
2012-06-08 17:11:49: Company:
2012-06-08 17:11:49: Mod/Cre/Acc time:
2012-06-08 17:11:49: !!!!!!!
2012-06-08 17:11:49: Found Service: PcaSvc
2012-06-08 17:11:49: Real Path: C:\Windows\System32\pcasvc.dll
2012-06-08 17:11:49: Display Name: @%SystemRoot%\system32\pcasvc.dll,-1
2012-06-08 17:11:49: Description: @%SystemRoot%\system32\pcasvc.dll,-2
2012-06-08 17:11:49: ServiceDLL: System32\pcasvc.dll
2012-06-08 17:11:49: File size: 0
2012-06-08 17:11:49: DLL File name: pcasvc.dll
2012-06-08 17:11:49: Original File Name:
2012-06-08 17:11:49: Company:
2012-06-08 17:11:49: Mod/Cre/Acc time:
2012-06-08 17:11:49: !!!!!!!!!
2012-06-08 17:11:49: ---------------------------------------------------------------------
2012-06-08 17:11:49: Found Service: PeerDistSvc
2012-06-08 17:11:49: Real Path: C:\Windows\system32\peerdistsvc.dll
2012-06-08 17:11:49: Display Name: @%SystemRoot%\system32\peerdistsvc.dll,-9000
2012-06-08 17:11:49: Description: @%SystemRoot%\system32\peerdistsvc.dll,-9001
2012-06-08 17:11:49: ServiceDLL: system32\peerdistsvc.dll
2012-06-08 17:11:49: File size: 0
2012-06-08 17:11:49: DLL File name: peerdistsvc.dll
2012-06-08 17:11:49: Original File Name: PeerDistSvc.dll.mui
2012-06-08 17:11:49: Company:
2012-06-08 17:11:49: Mod/Cre/Acc time:
2012-06-08 17:11:49: ---------------------------------------------------------------------
2012-06-08 17:11:49: Found Service: pla
2012-06-08 17:11:49: Real Path: C:\Windows\system32\pla.dll
2012-06-08 17:11:49: Display Name: @%systemroot%\system32\pla.dll,-500
2012-06-08 17:11:49: Description: @%systemroot%\system32\pla.dll,-501
2012-06-08 17:11:49: ServiceDLL: system32\pla.dll
2012-06-08 17:11:49: File size: 1508864
2012-06-08 17:11:49: DLL File name: pla.dll
2012-06-08 17:11:49: Original File Name: PLA.DLL.MUI
2012-06-08 17:11:49: Company:
2012-06-08 17:11:49: Mod/Cre/Acc time: 20101121052408 20101121052408 20101121052408
2012-06-08 17:11:49: ---------------------------------------------------------------------
2012-06-08 17:11:49: Found Service: PlugPlay
2012-06-08 17:11:49: Real Path: C:\Windows\system32\umpnpmgr.dll
2012-06-08 17:11:49: Display Name: @%SystemRoot%\system32\umpnpmgr.dll,-100
2012-06-08 17:11:49: Description: @%SystemRoot%\system32\umpnpmgr.dll,-101
2012-06-08 17:11:49: ServiceDLL: system32\umpnpmgr.dll
2012-06-08 17:11:49: File size: 0
2012-06-08 17:11:49: DLL File name: umpnpmgr.dll
2012-06-08 17:11:49: Original File Name: Umpnpmgr.DLL.MUI
2012-06-08 17:11:49: Company:
2012-06-08 17:11:49: Mod/Cre/Acc time:
2012-06-08 17:11:49: ---------------------------------------------------------------------
2012-06-08 17:11:49: Found Service: PNRPAutoReg
2012-06-08 17:11:49: Real Path: C:\Windows\system32\pnrpauto.dll
2012-06-08 17:11:49: Display Name: @%SystemRoot%\system32\pnrpauto.dll,-8002
2012-06-08 17:11:49: Description: @%SystemRoot%\system32\pnrpauto.dll,-8003
2012-06-08 17:11:49: ServiceDLL: system32\pnrpauto.dll
2012-06-08 17:11:49: File size: 0
2012-06-08 17:11:49: DLL File name: pnrpauto.dll
2012-06-08 17:11:49: Original File Name: pnrpauto.dll.mui
2012-06-08 17:11:49: Company:
2012-06-08 17:11:49: Mod/Cre/Acc time:
2012-06-08 17:11:49: ---------------------------------------------------------------------
2012-06-08 17:11:49: Found Service: PNRPsvc
2012-06-08 17:11:49: Real Path: C:\Windows\system32\pnrpsvc.dll
2012-06-08 17:11:49: Display Name: @%SystemRoot%\system32\pnrpsvc.dll,-8000
2012-06-08 17:11:49: Description: @%SystemRoot%\system32\pnrpsvc.dll,-8001
2012-06-08 17:11:49: ServiceDLL: system32\pnrpsvc.dll
2012-06-08 17:11:49: File size: 0
2012-06-08 17:11:49: DLL File name: pnrpsvc.dll
2012-06-08 17:11:49: Original File Name: pnrpsvc.dll.mui
2012-06-08 17:11:49: Company:
2012-06-08 17:11:49: Mod/Cre/Acc time:
2012-06-08 17:11:49: ---------------------------------------------------------------------
2012-06-08 17:11:49: Found Service: PolicyAgent
2012-06-08 17:11:49: Real Path: C:\Windows\System32\ipsecsvc.dll
2012-06-08 17:11:49: Display Name: @%SystemRoot%\System32\polstore.dll,-5010
2012-06-08 17:11:49: Description: @%SystemRoot%\system32\polstore.dll,-5011
2012-06-08 17:11:49: ServiceDLL: System32\ipsecsvc.dll
2012-06-08 17:11:49: File size: 0
2012-06-08 17:11:49: DLL File name: ipsecsvc.dll
2012-06-08 17:11:49: Original File Name: ipsecsvc.dll.mui
2012-06-08 17:11:49: Company:
2012-06-08 17:11:49: Mod/Cre/Acc time:
2012-06-08 17:11:49: ---------------------------------------------------------------------
2012-06-08 17:11:49: Found Service: Power
2012-06-08 17:11:49: Real Path: C:\Windows\system32\umpo.dll
2012-06-08 17:11:49: Display Name: @%SystemRoot%\system32\umpo.dll,-100
2012-06-08 17:11:49: Description: @%SystemRoot%\system32\umpo.dll,-101
2012-06-08 17:11:49: ServiceDLL: system32\umpo.dll
2012-06-08 17:11:49: File size: 0
2012-06-08 17:11:49: DLL File name: umpo.dll
2012-06-08 17:11:49: Original File Name: Umpo.DLL.MUI
2012-06-08 17:11:49: Company:
2012-06-08 17:11:49: Mod/Cre/Acc time:
2012-06-08 17:11:49: ---------------------------------------------------------------------
2012-06-08 17:11:49: Found Service: ProfSvc
2012-06-08 17:11:49: Real Path: C:\Windows\system32\profsvc.dll
2012-06-08 17:11:49: Display Name: @%systemroot%\system32\profsvc.dll,-300
2012-06-08 17:11:49: Description: @%systemroot%\system32\profsvc.dll,-301
2012-06-08 17:11:49: ServiceDLL: system32\profsvc.dll
2012-06-08 17:11:49: File size: 0
2012-06-08 17:11:49: DLL File name: profsvc.dll
2012-06-08 17:11:49: Original File Name: ProfSvc.dll.mui
2012-06-08 17:11:49: Company:
2012-06-08 17:11:49: Mod/Cre/Acc time:
2012-06-08 17:11:49: ---------------------------------------------------------------------
2012-06-08 17:11:49: Found Service: QWAVE
2012-06-08 17:11:49: Real Path: C:\Windows\system32\qwave.dll
2012-06-08 17:11:49: Display Name: @%SystemRoot%\system32\qwave.dll,-1
2012-06-08 17:11:49: Description: @%SystemRoot%\system32\qwave.dll,-2
2012-06-08 17:11:49: ServiceDLL: system32\qwave.dll
2012-06-08 17:11:49: File size: 210944
2012-06-08 17:11:49: DLL File name: qwave.dll
2012-06-08 17:11:49: Original File Name: qwave.dll.mui
2012-06-08 17:11:49: Company:
2012-06-08 17:11:49: Mod/Cre/Acc time: 20090714031612 20090714015415 20090714015415
2012-06-08 17:11:49: ---------------------------------------------------------------------
2012-06-08 17:11:49: Found Service: RasAuto
2012-06-08 17:11:49: Real Path: C:\Windows\System32\rasauto.dll
2012-06-08 17:11:49: Display Name: @%Systemroot%\system32\rasauto.dll,-200
2012-06-08 17:11:49: Description: @%Systemroot%\system32\rasauto.dll,-201
2012-06-08 17:11:49: ServiceDLL: System32\rasauto.dll
2012-06-08 17:11:49: File size: 0
2012-06-08 17:11:49: DLL File name: rasauto.dll
2012-06-08 17:11:49: Original File Name: rasauto.dll.mui
2012-06-08 17:11:49: Company:
2012-06-08 17:11:49: Mod/Cre/Acc time:
2012-06-08 17:11:49: ---------------------------------------------------------------------
2012-06-08 17:11:49: Found Service: RasMan
2012-06-08 17:11:49: Real Path: C:\Windows\System32\rasmans.dll
2012-06-08 17:11:49: Display Name: @%Systemroot%\system32\rasmans.dll,-200
2012-06-08 17:11:49: Description: @%Systemroot%\system32\rasmans.dll,-201
2012-06-08 17:11:49: ServiceDLL: System32\rasmans.dll
2012-06-08 17:11:49: File size: 0
2012-06-08 17:11:49: DLL File name: rasmans.dll
2012-06-08 17:11:49: Original File Name: Rasmans.dll.mui
2012-06-08 17:11:49: Company:
2012-06-08 17:11:49: Mod/Cre/Acc time:
2012-06-08 17:11:49: ---------------------------------------------------------------------
2012-06-08 17:11:49: Found Service: RemoteAccess
2012-06-08 17:11:49: Real Path: C:\Windows\System32\mprdim.dll
2012-06-08 17:11:49: Display Name: @%Systemroot%\system32\mprdim.dll,-200
2012-06-08 17:11:49: Description: @%Systemroot%\system32\mprdim.dll,-201
2012-06-08 17:11:49: ServiceDLL: System32\mprdim.dll
2012-06-08 17:11:49: File size: 75264
2012-06-08 17:11:49: DLL File name: mprdim.dll
2012-06-08 17:11:49: Original File Name: MPRDIM.DLL.MUI
2012-06-08 17:11:49: Company:
2012-06-08 17:11:49: Mod/Cre/Acc time: 20090714031541 20090714015426 20090714015426
2012-06-08 17:11:49: ---------------------------------------------------------------------
2012-06-08 17:11:49: Found Service: RemoteRegistry
2012-06-08 17:11:49: Real Path: C:\Windows\system32\regsvc.dll
2012-06-08 17:11:49: Display Name: @regsvc.dll,-1
2012-06-08 17:11:49: Description: @regsvc.dll,-2
2012-06-08 17:11:49: ServiceDLL: system32\regsvc.dll
2012-06-08 17:11:49: File size: 0
2012-06-08 17:11:49: DLL File name: regsvc.dll
2012-06-08 17:11:49: Original File Name: REGSVC.DLL.MUI
2012-06-08 17:11:49: Company:
2012-06-08 17:11:49: Mod/Cre/Acc time:
2012-06-08 17:11:49: ---------------------------------------------------------------------
2012-06-08 17:11:49: Found Service: RpcEptMapper
2012-06-08 17:11:49: Real Path: C:\Windows\System32\RpcEpMap.dll
2012-06-08 17:11:49: Display Name: @%windir%\system32\RpcEpMap.dll,-1001
2012-06-08 17:11:49: Description: @%windir%\system32\RpcEpMap.dll,-1002
2012-06-08 17:11:49: ServiceDLL: System32\RpcEpMap.dll
2012-06-08 17:11:49: File size: 0
2012-06-08 17:11:49: DLL File name: RpcEpMap.dll
2012-06-08 17:11:49: Original File Name: RpcEpMap.dll.mui
2012-06-08 17:11:49: Company:
2012-06-08 17:11:49: Mod/Cre/Acc time:
2012-06-08 17:11:49: ---------------------------------------------------------------------
2012-06-08 17:11:49: Found Service: RpcSs
2012-06-08 17:11:49: Real Path: C:\Windows\system32\rpcss.dll
2012-06-08 17:11:49: Display Name: @oleres.dll,-5010
2012-06-08 17:11:49: Description: @oleres.dll,-5011
2012-06-08 17:11:49: ServiceDLL: system32\rpcss.dll
2012-06-08 17:11:49: File size: 0
2012-06-08 17:11:49: DLL File name: rpcss.dll
2012-06-08 17:11:49: Original File Name: rpcss.dll
2012-06-08 17:11:49: Company:
2012-06-08 17:11:49: Mod/Cre/Acc time:
2012-06-08 17:11:49: ---------------------------------------------------------------------
2012-06-08 17:11:49: Found Service: SCardSvr
2012-06-08 17:11:49: Real Path: C:\Windows\System32\SCardSvr.dll
2012-06-08 17:11:49: Display Name: @%SystemRoot%\System32\SCardSvr.dll,-1
2012-06-08 17:11:49: Description: @%SystemRoot%\System32\SCardSvr.dll,-5
2012-06-08 17:11:49: ServiceDLL: System32\SCardSvr.dll
2012-06-08 17:11:49: File size: 0
2012-06-08 17:11:49: DLL File name: SCardSvr.dll
2012-06-08 17:11:49: Original File Name: SCardSvr.exe.mui
2012-06-08 17:11:49: Company:
2012-06-08 17:11:49: Mod/Cre/Acc time:
2012-06-08 17:11:49: ---------------------------------------------------------------------
2012-06-08 17:11:49: Found Service: Schedule
2012-06-08 17:11:49: Real Path: C:\Windows\system32\schedsvc.dll
2012-06-08 17:11:49: Display Name: @%SystemRoot%\system32\schedsvc.dll,-100
2012-06-08 17:11:49: Description: @%SystemRoot%\system32\schedsvc.dll,-101
2012-06-08 17:11:49: ServiceDLL: system32\schedsvc.dll
2012-06-08 17:11:49: File size: 0
2012-06-08 17:11:49: DLL File name: schedsvc.dll
2012-06-08 17:11:49: Original File Name: schedsvc.dll.mui
2012-06-08 17:11:49: Company:
2012-06-08 17:11:49: Mod/Cre/Acc time:
2012-06-08 17:11:49: ---------------------------------------------------------------------
2012-06-08 17:11:49: Found Service: SCPolicySvc
2012-06-08 17:11:49: Real Path: C:\Windows\System32\certprop.dll
2012-06-08 17:11:49: Display Name: @%SystemRoot%\System32\certprop.dll,-13
2012-06-08 17:11:49: Description: @%SystemRoot%\System32\certprop.dll,-14
2012-06-08 17:11:49: ServiceDLL: System32\certprop.dll
2012-06-08 17:11:49: File size: 0
2012-06-08 17:11:49: DLL File name: certprop.dll
2012-06-08 17:11:49: Original File Name: certprop.dll.mui
2012-06-08 17:11:49: Company:
2012-06-08 17:11:49: Mod/Cre/Acc time:
2012-06-08 17:11:49: ---------------------------------------------------------------------
2012-06-08 17:11:49: Found Service: SDRSVC
2012-06-08 17:11:49: Real Path: C:\Windows\System32\SDRSVC.dll
2012-06-08 17:11:49: Display Name: @%SystemRoot%\system32\sdrsvc.dll,-107
2012-06-08 17:11:49: Description: @%SystemRoot%\system32\sdrsvc.dll,-102
2012-06-08 17:11:49: ServiceDLL: System32\SDRSVC.dll
2012-06-08 17:11:49: File size: 0
2012-06-08 17:11:49: DLL File name: SDRSVC.dll
2012-06-08 17:11:49: Original File Name: SDRSVC.DLL.MUI
2012-06-08 17:11:49: Company:
2012-06-08 17:11:49: Mod/Cre/Acc time:
2012-06-08 17:11:49: ---------------------------------------------------------------------
2012-06-08 17:11:49: Found Service: seclogon
2012-06-08 17:11:49: Real Path: C:\Windows\system32\seclogon.dll
2012-06-08 17:11:49: Display Name: @%SystemRoot%\system32\seclogon.dll,-7001
2012-06-08 17:11:49: Description: @%SystemRoot%\system32\seclogon.dll,-7000
2012-06-08 17:11:49: ServiceDLL: system32\seclogon.dll
2012-06-08 17:11:49: File size: 0
2012-06-08 17:11:49: DLL File name: seclogon.dll
2012-06-08 17:11:49: Original File Name: SECLOGON.EXE.MUI
2012-06-08 17:11:49: Company:
2012-06-08 17:11:49: Mod/Cre/Acc time:
2012-06-08 17:11:49: ---------------------------------------------------------------------
2012-06-08 17:11:49: Found Service: SENS
2012-06-08 17:11:49: Real Path: C:\Windows\system32\sens.dll
2012-06-08 17:11:49: Display Name: @%SystemRoot%\system32\Sens.dll,-200
2012-06-08 17:11:49: Description: @%SystemRoot%\system32\Sens.dll,-201
2012-06-08 17:11:49: ServiceDLL: system32\sens.dll
2012-06-08 17:11:49: File size: 49664
2012-06-08 17:11:49: DLL File name: sens.dll
2012-06-08 17:11:49: Original File Name: sens.dll.mui
2012-06-08 17:11:49: Company:
2012-06-08 17:11:49: Mod/Cre/Acc time: 20090714031613 20090714012158 20090714012158
2012-06-08 17:11:49: ---------------------------------------------------------------------
2012-06-08 17:11:49: Found Service: SensrSvc
2012-06-08 17:11:49: Real Path: C:\Windows\system32\sensrsvc.dll
2012-06-08 17:11:49: Display Name: @%SystemRoot%\System32\sensrsvc.dll,-1000
2012-06-08 17:11:49: Description: @%SystemRoot%\System32\sensrsvc.dll,-1001
2012-06-08 17:11:49: ServiceDLL: system32\sensrsvc.dll
2012-06-08 17:11:49: File size: 0
2012-06-08 17:11:49: DLL File name: sensrsvc.dll
2012-06-08 17:11:49: Original File Name: sensrsvc.dll.mui
2012-06-08 17:11:49: Company:
2012-06-08 17:11:49: Mod/Cre/Acc time:
2012-06-08 17:11:49: ---------------------------------------------------------------------
2012-06-08 17:11:49: Found Service: SessionEnv
2012-06-08 17:11:49: Real Path: C:\Windows\system32\sessenv.dll
2012-06-08 17:11:49: Display Name: @%SystemRoot%\System32\SessEnv.dll,-1026
2012-06-08 17:11:49: Description: @%SystemRoot%\System32\SessEnv.dll,-1027
2012-06-08 17:11:49: ServiceDLL: system32\sessenv.dll
2012-06-08 17:11:49: File size: 113664
2012-06-08 17:11:49: DLL File name: sessenv.dll
2012-06-08 17:11:49: Original File Name: SessEnv.DLL.MUI
2012-06-08 17:11:49: Company:
2012-06-08 17:11:49: Mod/Cre/Acc time: 20101121052355 20101121052355 20101121052355
2012-06-08 17:11:49: ---------------------------------------------------------------------
2012-06-08 17:11:49: Found Service: SharedAccess
2012-06-08 17:11:49: Real Path: C:\Windows\System32\ipnathlp.dll
2012-06-08 17:11:49: Display Name: @%SystemRoot%\system32\ipnathlp.dll,-106
2012-06-08 17:11:49: Description: @%SystemRoot%\system32\ipnathlp.dll,-107
2012-06-08 17:11:49: ServiceDLL: System32\ipnathlp.dll
2012-06-08 17:11:49: File size: 0
2012-06-08 17:11:49: DLL File name: ipnathlp.dll
2012-06-08 17:11:49: Original File Name: IPNATHLP.DLL.MUI
2012-06-08 17:11:49: Company:
2012-06-08 17:11:49: Mod/Cre/Acc time:
2012-06-08 17:11:49: ---------------------------------------------------------------------
2012-06-08 17:11:49: Found Service: ShellHWDetection
2012-06-08 17:11:49: Real Path: C:\Windows\System32\shsvcs.dll
2012-06-08 17:11:49: Display Name: @%SystemRoot%\System32\shsvcs.dll,-12288
2012-06-08 17:11:49: Description: @%SystemRoot%\System32\shsvcs.dll,-12289
2012-06-08 17:11:49: ServiceDLL: System32\shsvcs.dll
2012-06-08 17:11:49: File size: 328192
2012-06-08 17:11:49: DLL File name: shsvcs.dll
2012-06-08 17:11:49: Original File Name: SHSVCS.DLL.MUI
2012-06-08 17:11:49: Company:
2012-06-08 17:11:49: Mod/Cre/Acc time: 20101121052403 20101121052403 20101121052403
2012-06-08 17:11:49: ---------------------------------------------------------------------
2012-06-08 17:11:49: Found Service: sppuinotify
2012-06-08 17:11:49: Real Path: C:\Windows\system32\sppuinotify.dll
2012-06-08 17:11:49: Display Name: @%SystemRoot%\system32\sppuinotify.dll,-103
2012-06-08 17:11:49: Description: @%SystemRoot%\system32\sppuinotify.dll,-102
2012-06-08 17:11:49: ServiceDLL: system32\sppuinotify.dll
2012-06-08 17:11:49: File size: 0
2012-06-08 17:11:49: DLL File name: sppuinotify.dll
2012-06-08 17:11:49: Original File Name: sppuinotify.dll.mui
2012-06-08 17:11:49: Company:
2012-06-08 17:11:49: Mod/Cre/Acc time:
2012-06-08 17:11:49: ---------------------------------------------------------------------
2012-06-08 17:11:49: Found Service: SSDPSRV
2012-06-08 17:11:49: Real Path: C:\Windows\System32\ssdpsrv.dll
2012-06-08 17:11:49: Display Name: @%systemroot%\system32\ssdpsrv.dll,-100
2012-06-08 17:11:49: Description: @%systemroot%\system32\ssdpsrv.dll,-101
2012-06-08 17:11:49: ServiceDLL: System32\ssdpsrv.dll
2012-06-08 17:11:49: File size: 0
2012-06-08 17:11:49: DLL File name: ssdpsrv.dll
2012-06-08 17:11:49: Original File Name: ssdpsrv.dll.mui
2012-06-08 17:11:49: Company:
2012-06-08 17:11:49: Mod/Cre/Acc time:
2012-06-08 17:11:49: ---------------------------------------------------------------------
2012-06-08 17:11:49: Found Service: SstpSvc
2012-06-08 17:11:49: Real Path: C:\Windows\system32\sstpsvc.dll
2012-06-08 17:11:49: Display Name: @%SystemRoot%\system32\sstpsvc.dll,-200
2012-06-08 17:11:49: Description: @%SystemRoot%\system32\sstpsvc.dll,-201
2012-06-08 17:11:49: ServiceDLL: system32\sstpsvc.dll
2012-06-08 17:11:49: File size: 0
2012-06-08 17:11:49: DLL File name: sstpsvc.dll
2012-06-08 17:11:49: Original File Name: sstpsvc.dll.mui
2012-06-08 17:11:49: Company:
2012-06-08 17:11:49: Mod/Cre/Acc time:
2012-06-08 17:11:49: ---------------------------------------------------------------------
2012-06-08 17:11:49: Found Service: stisvc
2012-06-08 17:11:49: Real Path: C:\Windows\System32\wiaservc.dll
2012-06-08 17:11:49: Display Name: @%SystemRoot%\system32\wiaservc.dll,-9
2012-06-08 17:11:49: Description: @%SystemRoot%\system32\wiaservc.dll,-10
2012-06-08 17:11:49: ServiceDLL: System32\wiaservc.dll
2012-06-08 17:11:49: File size: 0
2012-06-08 17:11:49: DLL File name: wiaservc.dll
2012-06-08 17:11:49: Original File Name: WIASERVC.DLL.MUI
2012-06-08 17:11:49: Company:
2012-06-08 17:11:49: Mod/Cre/Acc time:
2012-06-08 17:11:49: ---------------------------------------------------------------------
2012-06-08 17:11:49: Found Service: swprv
2012-06-08 17:11:49: Real Path: C:\Windows\System32\swprv.dll
2012-06-08 17:11:49: Display Name: @%SystemRoot%\System32\swprv.dll,-103
2012-06-08 17:11:49: Description: @%SystemRoot%\System32\swprv.dll,-102
2012-06-08 17:11:49: ServiceDLL: System32\swprv.dll
2012-06-08 17:11:49: File size: 0
2012-06-08 17:11:49: DLL File name: swprv.dll
2012-06-08 17:11:49: Original File Name: SWPRV.DLL.MUI
2012-06-08 17:11:49: Company:
2012-06-08 17:11:49: Mod/Cre/Acc time:
2012-06-08 17:11:49: ---------------------------------------------------------------------
2012-06-08 17:11:49: Found Service: SysMain
2012-06-08 17:11:49: Real Path: C:\Windows\system32\sysmain.dll
2012-06-08 17:11:49: Display Name: @%SystemRoot%\system32\sysmain.dll,-1000
2012-06-08 17:11:49: Description: @%SystemRoot%\system32\sysmain.dll,-1001
2012-06-08 17:11:49: ServiceDLL: system32\sysmain.dll
2012-06-08 17:11:49: File size: 0
2012-06-08 17:11:49: DLL File name: sysmain.dll
2012-06-08 17:11:49: Original File Name: sysmain.dll.mui
2012-06-08 17:11:49: Company:
2012-06-08 17:11:49: Mod/Cre/Acc time:
2012-06-08 17:11:49: ---------------------------------------------------------------------
2012-06-08 17:11:49: Found Service: TabletInputService
2012-06-08 17:11:49: Real Path: C:\Windows\System32\TabSvc.dll
2012-06-08 17:11:49: Display Name: @%SystemRoot%\system32\TabSvc.dll,-100
2012-06-08 17:11:49: Description: @%SystemRoot%\system32\TabSvc.dll,-101
2012-06-08 17:11:49: ServiceDLL: System32\TabSvc.dll
2012-06-08 17:11:49: File size: 0
2012-06-08 17:11:49: DLL File name: TabSvc.dll
2012-06-08 17:11:49: Original File Name: TabSvc.dll.mui
2012-06-08 17:11:49: Company:
2012-06-08 17:11:49: Mod/Cre/Acc time:
2012-06-08 17:11:49: ---------------------------------------------------------------------
2012-06-08 17:11:49: Found Service: TapiSrv
2012-06-08 17:11:49: Real Path: C:\Windows\System32\tapisrv.dll
2012-06-08 17:11:49: Display Name: @%SystemRoot%\system32\tapisrv.dll,-10100
2012-06-08 17:11:49: Description: @%SystemRoot%\system32\tapisrv.dll,-10101
2012-06-08 17:11:49: ServiceDLL: System32\tapisrv.dll
2012-06-08 17:11:49: File size: 242176
2012-06-08 17:11:49: DLL File name: tapisrv.dll
2012-06-08 17:11:49: Original File Name: TAPISRV.EXE.MUI
2012-06-08 17:11:49: Company:
2012-06-08 17:11:49: Mod/Cre/Acc time: 20101121052400 20101121052400 20101121052400
2012-06-08 17:11:49: ---------------------------------------------------------------------
2012-06-08 17:11:49: Found Service: TBS
2012-06-08 17:11:49: Real Path: C:\Windows\System32\tbssvc.dll
2012-06-08 17:11:49: Display Name: @%SystemRoot%\system32\tbssvc.dll,-100
2012-06-08 17:11:49: Description: @%SystemRoot%\system32\tbssvc.dll,-101
2012-06-08 17:11:49: ServiceDLL: System32\tbssvc.dll
2012-06-08 17:11:49: File size: 0
2012-06-08 17:11:49: DLL File name: tbssvc.dll
2012-06-08 17:11:49: Original File Name: TBSSVC.DLL.MUI
2012-06-08 17:11:49: Company:
2012-06-08 17:11:49: Mod/Cre/Acc time:
2012-06-08 17:11:49: ---------------------------------------------------------------------
2012-06-08 17:11:49: Found Service: TermService
2012-06-08 17:11:49: Real Path: C:\Windows\System32\termsrv.dll
2012-06-08 17:11:49: Display Name: @%SystemRoot%\System32\termsrv.dll,-268
2012-06-08 17:11:49: Description: @%SystemRoot%\System32\termsrv.dll,-267
2012-06-08 17:11:49: ServiceDLL: System32\termsrv.dll
2012-06-08 17:11:49: File size: 0
2012-06-08 17:11:49: DLL File name: termsrv.dll
2012-06-08 17:11:49: Original File Name: termsrv.dll.mui
2012-06-08 17:11:49: Company:
2012-06-08 17:11:49: Mod/Cre/Acc time:
2012-06-08 17:11:49: ---------------------------------------------------------------------
2012-06-08 17:11:49: Found Service: Themes
2012-06-08 17:11:49: Real Path: C:\Windows\system32\themeservice.dll
2012-06-08 17:11:49: Display Name: @%SystemRoot%\System32\themeservice.dll,-8192
2012-06-08 17:11:49: Description: @%SystemRoot%\System32\themeservice.dll,-8193
2012-06-08 17:11:49: ServiceDLL: system32\themeservice.dll
2012-06-08 17:11:49: File size: 0
2012-06-08 17:11:49: DLL File name: themeservice.dll
2012-06-08 17:11:49: Original File Name: THEMESERVICE.DLL.MUI
2012-06-08 17:11:49: Company:
2012-06-08 17:11:49: Mod/Cre/Acc time:
2012-06-08 17:11:49: ---------------------------------------------------------------------
2012-06-08 17:11:49: Found Service: THREADORDER
2012-06-08 17:11:49: Real Path: C:\Windows\system32\mmcss.dll
2012-06-08 17:11:49: Display Name: @%systemroot%\system32\mmcss.dll,-102
2012-06-08 17:11:49: Description: @%systemroot%\system32\mmcss.dll,-103
2012-06-08 17:11:49: ServiceDLL: system32\mmcss.dll
2012-06-08 17:11:49: File size: 0
2012-06-08 17:11:49: DLL File name: mmcss.dll
2012-06-08 17:11:49: Original File Name: mmcss.dll.mui
2012-06-08 17:11:49: Company:
2012-06-08 17:11:49: Mod/Cre/Acc time:
2012-06-08 17:11:49: -------------------------------------
0
Réponse 22 / 39
Destrio5 Messages postés 85985 Date d'inscription   Statut Modérateur Dernière intervention   10 302
 
C'est bien ce rapport mais il est trop long pour être posté directement ici.

Tu peux l'héberger sur ce site : https://www.cjoint.com/ puis me donner le lien.
0
Réponse 23 / 39
flotte32 Messages postés 328 Date d'inscription   Statut Membre Dernière intervention   22
 
Pitier comment m'en débarrasser je commence à dessesperer
0
Réponse 24 / 39
Destrio5 Messages postés 85985 Date d'inscription   Statut Modérateur Dernière intervention   10 302
 
Disons que ce n'est pas la plus facile à retirer.

--> Fais un scan avec RogueKiller et poste le rapport :
https://www.commentcamarche.net/faq/30719-utiliser-roguekiller#utilisation-de-roguekiller
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 25 / 39
flotte32 Messages postés 328 Date d'inscription   Statut Membre Dernière intervention   22
 
RogueKiller V7.5.4 [07/06/2012] par Tigzy
mail: tigzyRK<at>gmail<dot>com
Remontees: https://www.luanagames.com/index.fr.html
Blog: http://tigzyrk.blogspot.com

Systeme d'exploitation: Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Demarrage : Mode normal
Utilisateur: FloBF3 [Droits d'admin]
Mode: Suppression -- Date: 08/06/2012 18:32:14

¤¤¤ Processus malicieux: 0 ¤¤¤

¤¤¤ Entrees de registre: 7 ¤¤¤
[] HKLM\[...]\Wow6432Node\Windows : () -> ACCESS DENIED
[HJ] HKLM\[...]\System : ConsentPromptBehaviorAdmin (0) -> REPLACED (2)
[HJ] HKLM\[...]\System : EnableLUA (0) -> REPLACED (1)
[] HKCR\[...]\InprocServer32 : () -> ACCESS DENIED
[HJ] HKCU\[...]\Advanced : Start_TrackProgs (0) -> REPLACED (1)
[HJ] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> REPLACED (0)
[HJ] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> REPLACED (0)

¤¤¤ Fichiers / Dossiers particuliers: ¤¤¤

¤¤¤ Driver: [NON CHARGE] ¤¤¤

¤¤¤ Infection : ZeroAccess ¤¤¤
[ZeroAccess] (LOCKED) windir\Assembly\GAC\Desktop.ini present!

¤¤¤ Fichier HOSTS: ¤¤¤
127.0.0.1 localhost


¤¤¤ MBR Verif: ¤¤¤

+++++ PhysicalDrive0: ST31000524AS ATA Device +++++
--- User ---
[MBR] c6a104b181ff13068b42568424dd4f20
[BSP] 44c2ce88eb8c8c7e83d6443296c26d68 : Windows 7 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 100 Mo
1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 206848 | Size: 608767 Mo
2 - [XXXXXX] EXTEN-LBA (0x0f) [VISIBLE] Offset (sectors): 1246963710 | Size: 144999 Mo
3 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 1543921664 | Size: 199999 Mo
User = LL1 ... OK!
User = LL2 ... OK!

Termine : << RKreport[2].txt >>
RKreport[1].txt ; RKreport[2].txt
0
Réponse 26 / 39
Destrio5 Messages postés 85985 Date d'inscription   Statut Modérateur Dernière intervention   10 302
 
"¤¤¤ Infection : ZeroAccess ¤¤¤
[ZeroAccess] (LOCKED) windir\Assembly\GAC\Desktop.ini present!"

--> Relance RogueKiller, utilise l'option "Suppression" et poste le rapport.
0
Réponse 27 / 39
flotte32 Messages postés 328 Date d'inscription   Statut Membre Dernière intervention   22
 
C'est bon il ma dit qu'il avais finis voilà le résultat
0
Réponse 28 / 39
flotte32 Messages postés 328 Date d'inscription   Statut Membre Dernière intervention   22
 
RogueKiller V7.5.4 [07/06/2012] par Tigzy
mail: tigzyRK<at>gmail<dot>com
Remontees: https://www.luanagames.com/index.fr.html
Blog: http://tigzyrk.blogspot.com

Systeme d'exploitation: Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Demarrage : Mode normal
Utilisateur: FloBF3 [Droits d'admin]
Mode: Recherche -- Date: 08/06/2012 18:41:39

¤¤¤ Processus malicieux: 0 ¤¤¤

¤¤¤ Entrees de registre: 4 ¤¤¤
[] HKLM\[...]\Wow6432Node\Windows : () -> ACCESS DENIED
[] HKCR\[...]\InprocServer32 : () -> ACCESS DENIED
[HJ] HKCU\[...]\ClassicStartMenu : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> FOUND
[HJ] HKCU\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> FOUND

¤¤¤ Fichiers / Dossiers particuliers: ¤¤¤

¤¤¤ Driver: [NON CHARGE] ¤¤¤

¤¤¤ Infection : ZeroAccess ¤¤¤
[ZeroAccess] (LOCKED) windir\Assembly\GAC\Desktop.ini present!

¤¤¤ Fichier HOSTS: ¤¤¤
127.0.0.1 localhost


¤¤¤ MBR Verif: ¤¤¤

+++++ PhysicalDrive0: ST31000524AS ATA Device +++++
--- User ---
[MBR] c6a104b181ff13068b42568424dd4f20
[BSP] 44c2ce88eb8c8c7e83d6443296c26d68 : Windows 7 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 100 Mo
1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 206848 | Size: 608767 Mo
2 - [XXXXXX] EXTEN-LBA (0x0f) [VISIBLE] Offset (sectors): 1246963710 | Size: 144999 Mo
3 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 1543921664 | Size: 199999 Mo
User = LL1 ... OK!
User = LL2 ... OK!

Termine : << RKreport[2].txt >>
RKreport[1].txt ; RKreport[2].txt
0
Réponse 29 / 39
Destrio5 Messages postés 85985 Date d'inscription   Statut Modérateur Dernière intervention   10 302
 
Ce n'est pas le bon rapport.

Pour lancer RogueKiller, clique droit dessus et choisis "Exécuter en tant qu'administrateur".
0
Réponse 30 / 39
flotte32 Messages postés 328 Date d'inscription   Statut Membre Dernière intervention   22
 
Y a marquer locked donc il est bloquer c'est sa je suis avec la chance que j'ai c'est impossible à supprimer
0
Réponse 31 / 39
flotte32 Messages postés 328 Date d'inscription   Statut Membre Dernière intervention   22
 
En tous cas même si j'arrive pas à m'en débarrasser c'est très gentils à toi de m'aider autant merci beaucoup
0
Réponse 32 / 39
juju666 Messages postés 35446 Date d'inscription   Statut Contributeur sécurité Dernière intervention   4 796
 
Salut,

Suit ces instructions pour voir : https://gen-hackman.kanak.fr/

A+
0
Réponse 33 / 39
flotte32 Messages postés 328 Date d'inscription   Statut Membre Dernière intervention   22
 
J'ai regarder la vidéo que me ramenée roguekiller et il dit qui peut empêcher l'ouverture de certains logiciels c'est pour ça alors que combofix ne s'ouvre pas
0
juju666 Messages postés 35446 Date d'inscription   Statut Contributeur sécurité Dernière intervention   4 796
 
https://forums.commentcamarche.net/forum/affich-25327990-gac-64-et-32?page=2#31

:)
0
flotte32 Messages postés 328 Date d'inscription   Statut Membre Dernière intervention   22
 
C'est compliquer un peu quand même y me faut un cd à graver et j'ai pas compris sa A la fin, Pre_Scan s'arrêtera, poste le rapport situé dans <le disque sélectionné>\Pre_Scan\Pre_Scan_Live\Pre_scan_Live_la_date_et_l'heure.txt via https://www.cjoint.com/ ou http://pjjoint.malekal.com j'ai un windows 64 bits et non x86 sa fonctionne impek ou pas ?
0
juju666 Messages postés 35446 Date d'inscription   Statut Contributeur sécurité Dernière intervention   4 796
 
yep t'inquiète pas :)
0
Destrio5 Messages postés 85985 Date d'inscription   Statut Modérateur Dernière intervention   10 302
 
Je regarde comment font les pros :D
0
flotte32 Messages postés 328 Date d'inscription   Statut Membre Dernière intervention   22
 
Mais la partie que j'ai pas compris comment faut faire tu peut me guider avant que je me lance stp j'ai télécharger le fichier merci
0
Réponse 34 / 39
flotte32 Messages postés 328 Date d'inscription   Statut Membre Dernière intervention   22
 
C'est finis j'ai redémarrer et ils y sont toujours je vais pété un câble en plus maintenant je peut plus changer mon thème windows il ma remis sous windows classic punaise je vais pleurer ...
0
Réponse 35 / 39
juju666 Messages postés 35446 Date d'inscription   Statut Contributeur sécurité Dernière intervention   4 796
 
lis sinon on n'y arrivera pas !

il fait indiqué sur la procédure :

Ne redémarre pas le pc normalement tout de suite il y aura peut-être une suppression manuelle à faire avant ,ou une demande de récupération de fichier

....

Retourne sur le CD donc dis moi quand tu y es
0
Réponse 36 / 39
flotte32 Messages postés 328 Date d'inscription   Statut Membre Dernière intervention   22
 
Trop tard c'est sa que j'avais pas compris du coup j'ai plus mes photos et musiques vidéos punaise mais en passant un autre hitman j'ai plus le virus y a moyen de recup mes photos et vidéos musiques ?
Mais je peut toujours pas remettre de thèmes
0
Destrio5 Messages postés 85985 Date d'inscription   Statut Modérateur Dernière intervention   10 302
 
Tes documents sont peut-être seulement plus visibles.
0
Réponse 37 / 39
juju666 Messages postés 35446 Date d'inscription   Statut Contributeur sécurité Dernière intervention   4 796
 
Hitman ? loooool c'est une blague ? :))))

Retourne sur le CD j't'y dis ! :D
0
Réponse 38 / 39
flotte32 Messages postés 328 Date d'inscription   Statut Membre Dernière intervention   22
 
J'ai redémarrer sa refonctionne j'ai tout récupérer mais les virus aussi alors si je revient sur le cd que doit-je faire avant que je refasse une connerie merci :)
0
Réponse 39 / 39
juju666 Messages postés 35446 Date d'inscription   Statut Contributeur sécurité Dernière intervention   4 796
 
bon eh bien maintenant que tu es enfin sur le live CD tu vas supprimer ce dossier :

C:\Windows\Assembly\GAC\

et ENFIN on n'en parlera plus :)
0
flotte32 Messages postés 328 Date d'inscription   Statut Membre Dernière intervention   22
 
je viens d'essayer de suprimer gac 32 et 64 mais il me demande les autorisations administrateur comment je suis doit faire stp ?
0
juju666 Messages postés 35446 Date d'inscription   Statut Contributeur sécurité Dernière intervention   4 796
 
Clic droit -> propriétés -> sécurité -> modifier -> et là tu mets "Contrôle total" partout (faut cocher la case autoriser)
Appliquer, ok.

si ça marche pas j'ai une autre solution :o)
0
flotte32 Messages postés 328 Date d'inscription   Statut Membre Dernière intervention   22
 
non fonctionne toujours pas
0
juju666 Messages postés 35446 Date d'inscription   Statut Contributeur sécurité Dernière intervention   4 796
 
c'est bien ces 2 dossiers ?

c:\windows\assembly\GAC_64\
c:\windows\assembly\GAC_32\
0
flotte32 Messages postés 328 Date d'inscription   Statut Membre Dernière intervention   22
 
oui
0