Sujet Précédent Sujet Suivant

Voile blanc dès que je clique sur la souris !

nolam. Messages postés 22 Statut Membre -  
juju666 Messages postés 35446 Date d'inscription   Statut Contributeur sécurité Dernière intervention   -
Bonjour,

je viens vers vous car un Gros souci paralyse mon ordi , je ne sais plus quoi faire !!!

Un matin , alors que la veille tout allait bien , j'allume mon ordi , nickel mon-bureau s'installe toujours nickel , et lorsque je clique sur la souris pour ouvrir un icone (mon dossier photo !!!) ca se met en chargement .

Le chargement ne s'arrete pas et si j'insiste à recliquer la souris l'écran se voile de blanc et tout bloque !
le mode sans echec fonctionne à merveille en revanche !

j'ai lancer une analyse en mode ss echec avec malwarebytes il y a eu des trojans que j'ai apparement virés avec succès mais le mode normal ne fonctionne toujours pas !

Je suis paumée
merci à qui pourra m'aider car sinon mon pc va apprendre à voler ! pas sur kil sache !!!

<config>Windows vista / Firefox 12.0</config>
A voir également:

13 réponses

Réponse 1 / 13
juju666 Messages postés 35446 Date d'inscription   Statut Contributeur sécurité Dernière intervention   4 796
 
salut poste ton rapport MBAM

============================================

Attention : cet outil peut etre détecté à tort comme virus

tous les processus "non vitaux de windows" vont être coupés , enregistre ton travail.

Désactive toutes tes protections si possible , antivirus , sandbox , pare-feux , etc....

telecharge et enregistre Pre_Scan sur ton bureau :

http://forums-fec.be/gen-hackman/Pre_Scan.exe

mirroirs :

http://general-changelog-team.fr/fr/downloads/viewdownload/41-outils-de-gen-hackman/52-pre-scan
http://www.archive-host.com

Avertissement :Il y aura une extinction du bureau pendant le scan --> pas de panique.

une fois telechargé lance-le , laisse faire le scan jusqu'à l'apparition de "Pre_scan_la_date_et_l'heure.txt" sur le bureau.

si l'outil est relancé plusieurs fois , il te proposera un menu et qu'aucune option n'est demandée, lance l'option "Kill"

si l'outil est bloqué par l'infection utilise cette version avec extension .pif :

http://forums-fec.be/gen-hackman/Pre_Scan.pif

si l'outil detecte un proxy et que tu n'en as pas installé clique sur "supprimer le proxy"

Il se peut qu'une multitude de fenêtres noires clignotent , laisse-le travailler

Poste Pre_Scan_la_date_et_l'heure.txt qui apparaitra sur le bureau en fin de scan

Il est possible que l'outil fasse redemarrer ton pc plusieurs fois , laisse-le faire

NE LE POSTE PAS SUR LE FORUM !!! (il est trop long)

Heberge le rapport sur http://pjjoint.malekal.com puis donne le lien obtenu en echange sur le forum où tu te fais aider

Si possible , confirme ou infirme l'utilisation de Defogger par Pre_Scan
1
nolam. Messages postés 22 Statut Membre
 
Malwarebytes Anti-Malware (Essai) 1.62.0.1300
www.malwarebytes.org

Version de la base de données: v2012.08.08.01

Windows Vista Service Pack 2 x86 NTFS (Mode sans échec/Réseau)
Internet Explorer 9.0.8112.16421
Clotilde :: PC-DE-CLO [administrateur]

Protection: Désactivé

08/08/2012 21:39:33
mbam-log-2012-08-08 (21-39-33).txt

Type d'examen: Examen rapide
Options d'examen activées: Mémoire | Démarrage | Registre | Système de fichiers | Heuristique/Extra | Heuristique/Shuriken | PUP | PUM
Options d'examen désactivées: P2P
Elément(s) analysé(s): 217346
Temps écoulé: 4 minute(s), 53 seconde(s)

Processus mémoire détecté(s): 0
(Aucun élément nuisible détecté)

Module(s) mémoire détecté(s): 0
(Aucun élément nuisible détecté)

Clé(s) du Registre détectée(s): 0
(Aucun élément nuisible détecté)

Valeur(s) du Registre détectée(s): 0
(Aucun élément nuisible détecté)

Elément(s) de données du Registre détecté(s): 0
(Aucun élément nuisible détecté)

Dossier(s) détecté(s): 0
(Aucun élément nuisible détecté)

Fichier(s) détecté(s): 0
(Aucun élément nuisible détecté)

(fin)
0
nolam. Messages postés 22 Statut Membre
 
je l'ai fait en rapide maintenant si tu veux j'en ai des complets qui remonte a 48 h !
0
nolam. Messages postés 22 Statut Membre
 
kesako un proxy ??? je suis novice en ordi !
0
Réponse 2 / 13
juju666 Messages postés 35446 Date d'inscription   Statut Contributeur sécurité Dernière intervention   4 796
 
je veux bien celui qui montre les infections.

tracasse lance Pre_Scan il va faire son boulot.
1
nolam. Messages postés 22 Statut Membre
 
https://pjjoint.malekal.com/files.php?read=20120808_y7b13d13c1014
0
nolam. Messages postés 22 Statut Membre
 
Malwarebytes :
https://pjjoint.malekal.com/files.php?read=20120809_q14o11r8v8j9
0
Réponse 3 / 13
nolam. Messages postés 22 Statut Membre
 
Heeeeeeeeeeeeeeeeeeeeeelp , mon pc est suicidaire !!!!!!

quand je fais ctrl alt suppr ca devient tout noir
0
Réponse 4 / 13
nolam. Messages postés 22 Statut Membre
 
ok je vais aller sur le pc atteint alors car la je suis sur mon netbook , je peux faire tout ça en mode ss echec ?
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 5 / 13
nolam. Messages postés 22 Statut Membre
 
Please ya personne pour interpreter mes rapports ???? où etes vous les gens ?
0
Réponse 6 / 13
nolam. Messages postés 22 Statut Membre
 
UP
0
Réponse 7 / 13
nolam. Messages postés 22 Statut Membre
 
Bon en attendant je refais Malwarebytes en complet , on va bien voir si il trouve encore des ennemis !!!
0
Réponse 8 / 13
nolam. Messages postés 22 Statut Membre
 
Ok TDSSKILLER a trouvé pas mal de truc aussi je colle le rapport et je "reboot" à sa demande !!! merci à qui prendra le temps de m'aider !!!

21:52:37.0556 0696 TDSS rootkit removing tool 2.7.48.0 Jul 24 2012 13:16:32
21:52:37.0806 0696 ============================================================
21:52:37.0806 0696 Current date / time: 2012/08/09 21:52:37.0806
21:52:37.0806 0696 SystemInfo:
21:52:37.0806 0696
21:52:37.0806 0696 OS Version: 6.0.6002 ServicePack: 2.0
21:52:37.0806 0696 Product type: Workstation
21:52:37.0806 0696 ComputerName: PC-DE-CLO
21:52:37.0806 0696 UserName: Clotilde
21:52:37.0806 0696 Windows directory: C:\Windows
21:52:37.0806 0696 System windows directory: C:\Windows
21:52:37.0806 0696 Processor architecture: Intel x86
21:52:37.0806 0696 Number of processors: 2
21:52:37.0806 0696 Page size: 0x1000
21:52:37.0806 0696 Boot type: Safe boot with network
21:52:37.0806 0696 ============================================================
21:52:39.0787 0696 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
21:52:39.0850 0696 ============================================================
21:52:39.0850 0696 \Device\Harddisk0\DR0:
21:52:39.0850 0696 MBR partitions:
21:52:39.0850 0696 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x1D4F800, BlocksNum 0xE2B6000
21:52:39.0850 0696 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x10005800, BlocksNum 0x15428800
21:52:39.0850 0696 ============================================================
21:52:39.0990 0696 C: <-> \Device\Harddisk0\DR0\Partition0
21:52:40.0130 0696 D: <-> \Device\Harddisk0\DR0\Partition1
21:52:40.0130 0696 ============================================================
21:52:40.0130 0696 Initialize success
21:52:40.0130 0696 ============================================================
21:52:44.0467 1884 ============================================================
21:52:44.0467 1884 Scan started
21:52:44.0467 1884 Mode: Manual; SigCheck; TDLFS;
21:52:44.0467 1884 ============================================================
21:52:47.0384 1884 ACPI (82b296ae1892fe3dbee00c9cf92f8ac7) C:\Windows\system32\drivers\acpi.sys
21:52:47.0618 1884 ACPI - ok
21:52:47.0790 1884 AdobeARMservice (62b7936f9036dd6ed36e6a7efa805dc0) C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
21:52:47.0790 1884 AdobeARMservice - ok
21:52:48.0242 1884 adp94xx (04f0fcac69c7c71a3ac4eb97fafc8303) C:\Windows\system32\drivers\adp94xx.sys
21:52:48.0258 1884 adp94xx - ok
21:52:48.0461 1884 adpahci (60505e0041f7751bdbb80f88bf45c2ce) C:\Windows\system32\drivers\adpahci.sys
21:52:48.0492 1884 adpahci - ok
21:52:48.0648 1884 adpu160m (8a42779b02aec986eab64ecfc98f8bd7) C:\Windows\system32\drivers\adpu160m.sys
21:52:48.0664 1884 adpu160m - ok
21:52:48.0757 1884 adpu320 (241c9e37f8ce45ef51c3de27515ca4e5) C:\Windows\system32\drivers\adpu320.sys
21:52:48.0773 1884 adpu320 - ok
21:52:48.0882 1884 AeLookupSvc (9d1fda9e086ba64e3c93c9de32461bcf) C:\Windows\System32\aelupsvc.dll
21:52:49.0303 1884 AeLookupSvc - ok
21:52:49.0397 1884 AFD (3911b972b55fea0478476b2e777b29fa) C:\Windows\system32\drivers\afd.sys
21:52:49.0475 1884 AFD - ok
21:52:49.0584 1884 agp440 (13f9e33747e6b41a3ff305c37db0d360) C:\Windows\system32\drivers\agp440.sys
21:52:49.0584 1884 agp440 - ok
21:52:49.0740 1884 ahcix86s (0dee2b628d4c6e23285bb91effdabfde) C:\Windows\system32\drivers\ahcix86s.sys
21:52:49.0787 1884 ahcix86s - ok
21:52:49.0880 1884 aic78xx (ae1fdf7bf7bb6c6a70f67699d880592a) C:\Windows\system32\DRIVERS\djsvs.sys
21:52:49.0880 1884 aic78xx - ok
21:52:49.0927 1884 ALG (a1545b731579895d8cc44fc0481c1192) C:\Windows\System32\alg.exe
21:52:50.0005 1884 ALG - ok
21:52:50.0021 1884 aliide (9eaef5fc9b8e351afa7e78a6fae91f91) C:\Windows\system32\drivers\aliide.sys
21:52:50.0021 1884 aliide - ok
21:52:50.0114 1884 amdagp (c47344bc706e5f0b9dce369516661578) C:\Windows\system32\drivers\amdagp.sys
21:52:50.0130 1884 amdagp - ok
21:52:50.0130 1884 amdide (9b78a39a4c173fdbc1321e0dd659b34c) C:\Windows\system32\drivers\amdide.sys
21:52:50.0146 1884 amdide - ok
21:52:50.0224 1884 AmdK7 (18f29b49ad23ecee3d2a826c725c8d48) C:\Windows\system32\drivers\amdk7.sys
21:52:50.0255 1884 AmdK7 - ok
21:52:50.0286 1884 AmdK8 (93ae7f7dd54ab986a6f1a1b37be7442d) C:\Windows\system32\DRIVERS\amdk8.sys
21:52:50.0317 1884 AmdK8 - ok
21:52:50.0395 1884 Appinfo (c6d704c7f0434dc791aac37cac4b6e14) C:\Windows\System32\appinfo.dll
21:52:50.0442 1884 Appinfo - ok
21:52:50.0536 1884 arc (5d2888182fb46632511acee92fdad522) C:\Windows\system32\drivers\arc.sys
21:52:50.0536 1884 arc - ok
21:52:50.0598 1884 arcsas (5e2a321bd7c8b3624e41fdec3e244945) C:\Windows\system32\drivers\arcsas.sys
21:52:50.0614 1884 arcsas - ok
21:52:50.0660 1884 AsyncMac (53b202abee6455406254444303e87be1) C:\Windows\system32\DRIVERS\asyncmac.sys
21:52:50.0707 1884 AsyncMac - ok
21:52:50.0770 1884 atapi (1f05b78ab91c9075565a9d8a4b880bc4) C:\Windows\system32\drivers\atapi.sys
21:52:50.0770 1884 atapi - ok
21:52:51.0050 1884 Ati External Event Utility (b886d349afad502de4f6ea0c64b1cc4d) C:\Windows\system32\Ati2evxx.exe
21:52:51.0160 1884 Ati External Event Utility - ok
21:52:51.0971 1884 atikmdag (8ae1745bfc7d383daa3f82fe8d7be7c0) C:\Windows\system32\DRIVERS\atikmdag.sys
21:52:52.0111 1884 atikmdag - ok
21:52:52.0720 1884 AtiPcie (4aa1eb65481c392955939e735d27118b) C:\Windows\system32\DRIVERS\AtiPcie.sys
21:52:52.0782 1884 AtiPcie - ok
21:52:52.0876 1884 AudioEndpointBuilder (68e2a1a0407a66cf50da0300852424ab) C:\Windows\System32\Audiosrv.dll
21:52:52.0922 1884 AudioEndpointBuilder - ok
21:52:52.0954 1884 Audiosrv (68e2a1a0407a66cf50da0300852424ab) C:\Windows\System32\Audiosrv.dll
21:52:52.0985 1884 Audiosrv - ok
21:52:53.0110 1884 Beep (67e506b75bd5326a3ec7b70bd014dfb6) C:\Windows\system32\drivers\Beep.sys
21:52:53.0156 1884 Beep - ok
21:52:53.0266 1884 BFE (c789af0f724fda5852fb9a7d3a432381) C:\Windows\System32\bfe.dll
21:52:53.0297 1884 BFE - ok
21:52:53.0812 1884 BITS (93952506c6d67330367f7e7934b6a02f) C:\Windows\System32\qmgr.dll
21:52:53.0874 1884 BITS - ok
21:52:53.0968 1884 blbdrive (d4df28447741fd3d953526e33a617397) C:\Windows\system32\drivers\blbdrive.sys
21:52:54.0014 1884 blbdrive - ok
21:52:54.0248 1884 BouyguesRcAppSvc (0d07b42e25dc93e5e057bb1c35dfcf08) C:\Program Files\Bouygues Telecom\Internet 3G+\RcAppSvc.exe
21:52:54.0280 1884 BouyguesRcAppSvc ( UnsignedFile.Multi.Generic ) - warning
21:52:54.0280 1884 BouyguesRcAppSvc - detected UnsignedFile.Multi.Generic (1)
21:52:54.0373 1884 bowser (35f376253f687bde63976ccb3f2108ca) C:\Windows\system32\DRIVERS\bowser.sys
21:52:54.0420 1884 bowser - ok
21:52:54.0529 1884 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\drivers\brfiltlo.sys
21:52:54.0576 1884 BrFiltLo - ok
21:52:54.0607 1884 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\drivers\brfiltup.sys
21:52:54.0654 1884 BrFiltUp - ok
21:52:54.0732 1884 Browser (a3629a0c4226f9e9c72faaeebc3ad33c) C:\Windows\System32\browser.dll
21:52:54.0794 1884 Browser - ok
21:52:54.0888 1884 Brserid (b304e75cff293029eddf094246747113) C:\Windows\system32\drivers\brserid.sys
21:52:55.0356 1884 Brserid - ok
21:52:55.0372 1884 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\system32\drivers\brserwdm.sys
21:52:55.0434 1884 BrSerWdm - ok
21:52:55.0465 1884 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\system32\drivers\brusbmdm.sys
21:52:55.0528 1884 BrUsbMdm - ok
21:52:55.0574 1884 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\system32\drivers\brusbser.sys
21:52:55.0637 1884 BrUsbSer - ok
21:52:55.0730 1884 BthEnum (6d39c954799b63ba866910234cf7d726) C:\Windows\system32\DRIVERS\BthEnum.sys
21:52:55.0762 1884 BthEnum - ok
21:52:55.0824 1884 BTHMODEM (ad07c1ec6665b8b35741ab91200c6b68) C:\Windows\system32\drivers\bthmodem.sys
21:52:55.0902 1884 BTHMODEM - ok
21:52:55.0964 1884 BthPan (5904efa25f829bf84ea6fb045134a1d8) C:\Windows\system32\DRIVERS\bthpan.sys
21:52:55.0996 1884 BthPan - ok
21:52:56.0136 1884 BTHPORT (611ff3f2f095c8d4a6d4cfd9dcc09793) C:\Windows\system32\Drivers\BTHport.sys
21:52:56.0183 1884 BTHPORT - ok
21:52:56.0308 1884 BthServ (a4c8377fa4a994e07075107dbe2e3dce) C:\Windows\System32\bthserv.dll
21:52:56.0401 1884 BthServ - ok
21:52:56.0464 1884 BTHUSB (d330803eab2a15caec7f011f1d4cb30e) C:\Windows\system32\Drivers\BTHUSB.sys
21:52:56.0479 1884 BTHUSB - ok
21:52:56.0573 1884 BUNAgentSvc (610ab863245f18e21d90f15da4ed1953) C:\Program Files\NewTech Infosystems\NTI Backup Now 5\Client\Agentsvc.exe
21:52:56.0573 1884 BUNAgentSvc - ok
21:52:56.0682 1884 CABouygues (c921429d7709b49f33693b374af5c651) C:\Program Files\Bouygues Telecom\Internet 3G+\conappssvc.exe
21:52:56.0698 1884 CABouygues ( UnsignedFile.Multi.Generic ) - warning
21:52:56.0698 1884 CABouygues - detected UnsignedFile.Multi.Generic (1)
21:52:56.0744 1884 cdfs (7add03e75beb9e6dd102c3081d29840a) C:\Windows\system32\DRIVERS\cdfs.sys
21:52:56.0791 1884 cdfs - ok
21:52:56.0900 1884 cdrom (6b4bffb9becd728097024276430db314) C:\Windows\system32\DRIVERS\cdrom.sys
21:52:56.0932 1884 cdrom - ok
21:52:57.0275 1884 CertPropSvc (312ec3e37a0a1f2006534913e37b4423) C:\Windows\System32\certprop.dll
21:52:57.0306 1884 CertPropSvc - ok
21:52:57.0368 1884 circlass (e5d4133f37219dbcfe102bc61072589d) C:\Windows\system32\drivers\circlass.sys
21:52:57.0415 1884 circlass - ok
21:52:57.0727 1884 CLFS (d7659d3b5b92c31e84e53c1431f35132) C:\Windows\system32\CLFS.sys
21:52:57.0743 1884 CLFS - ok
21:52:57.0868 1884 clr_optimization_v2.0.50727_32 (8ee772032e2fe80a924f3b8dd5082194) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
21:52:57.0883 1884 clr_optimization_v2.0.50727_32 - ok
21:52:58.0024 1884 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
21:52:58.0039 1884 clr_optimization_v4.0.30319_32 - ok
21:52:58.0070 1884 cmdide (0ca25e686a4928484e9fdabd168ab629) C:\Windows\system32\drivers\cmdide.sys
21:52:58.0086 1884 cmdide - ok
21:52:58.0102 1884 Compbatt (6afef0b60fa25de07c0968983ee4f60a) C:\Windows\system32\drivers\compbatt.sys
21:52:58.0102 1884 Compbatt - ok
21:52:58.0117 1884 COMSysApp - ok
21:52:58.0164 1884 crcdisk (741e9dff4f42d2d8477d0fc1dc0df871) C:\Windows\system32\drivers\crcdisk.sys
21:52:58.0164 1884 crcdisk - ok
21:52:58.0195 1884 Crusoe (1f07becdca750766a96cda811ba86410) C:\Windows\system32\drivers\crusoe.sys
21:52:58.0226 1884 Crusoe - ok
21:52:58.0382 1884 CryptSvc (75c6a297e364014840b48eccd7525e30) C:\Windows\system32\cryptsvc.dll
21:52:58.0414 1884 CryptSvc - ok
21:52:58.0679 1884 DcomLaunch (3b5b4d53fec14f7476ca29a20cc31ac9) C:\Windows\system32\rpcss.dll
21:52:58.0726 1884 DcomLaunch - ok
21:52:58.0757 1884 DfsC (622c41a07ca7e6dd91770f50d532cb6c) C:\Windows\system32\Drivers\dfsc.sys
21:52:58.0772 1884 DfsC - ok
21:52:59.0474 1884 DFSR (2cc3dcfb533a1035b13dcab6160ab38b) C:\Windows\system32\DFSR.exe
21:52:59.0568 1884 DFSR - ok
21:52:59.0989 1884 Dhcp (9028559c132146fb75eb7acf384b086a) C:\Windows\System32\dhcpcsvc.dll
21:53:00.0020 1884 Dhcp - ok
21:53:00.0130 1884 disk (5d4aefc3386920236a548271f8f1af6a) C:\Windows\system32\drivers\disk.sys
21:53:00.0145 1884 disk - ok
21:53:00.0192 1884 Dnscache (57d762f6f5974af0da2be88a3349baaa) C:\Windows\System32\dnsrslvr.dll
21:53:00.0223 1884 Dnscache - ok
21:53:00.0348 1884 dot3svc (324fd74686b1ef5e7c19a8af49e748f6) C:\Windows\System32\dot3svc.dll
21:53:00.0379 1884 dot3svc - ok
21:53:00.0426 1884 DPS (a622e888f8aa2f6b49e9bc466f0e5def) C:\Windows\system32\dps.dll
21:53:00.0488 1884 DPS - ok
21:53:00.0520 1884 drmkaud (97fef831ab90bee128c9af390e243f80) C:\Windows\system32\drivers\drmkaud.sys
21:53:00.0551 1884 drmkaud - ok
21:53:00.0660 1884 DXGKrnl (c68ac676b0ef30cfbb1080adce49eb1f) C:\Windows\System32\drivers\dxgkrnl.sys
21:53:00.0691 1884 DXGKrnl - ok
21:53:00.0800 1884 E1G60 (5425f74ac0c1dbd96a1e04f17d63f94c) C:\Windows\system32\DRIVERS\E1G60I32.sys
21:53:00.0847 1884 E1G60 - ok
21:53:00.0910 1884 EapHost (c0b95e40d85cd807d614e264248a45b9) C:\Windows\System32\eapsvc.dll
21:53:00.0941 1884 EapHost - ok
21:53:01.0050 1884 Ecache (7f64ea048dcfac7acf8b4d7b4e6fe371) C:\Windows\system32\drivers\ecache.sys
21:53:01.0050 1884 Ecache - ok
21:53:01.0128 1884 elxstor (23b62471681a124889978f6295b3f4c6) C:\Windows\system32\drivers\elxstor.sys
21:53:01.0144 1884 elxstor - ok
21:53:01.0300 1884 EMDMgmt (4e6b23dfc917ea39306b529b773950f4) C:\Windows\system32\emdmgmt.dll
21:53:01.0393 1884 EMDMgmt - ok
21:53:01.0440 1884 ErrDev (3db974f3935483555d7148663f726c61) C:\Windows\system32\drivers\errdev.sys
21:53:01.0487 1884 ErrDev - ok
21:53:01.0580 1884 EventSystem (67058c46504bc12d821f38cf99b7b28f) C:\Windows\system32\es.dll
21:53:01.0612 1884 EventSystem - ok
21:53:01.0705 1884 exfat (22b408651f9123527bcee54b4f6c5cae) C:\Windows\system32\drivers\exfat.sys
21:53:01.0736 1884 exfat - ok
21:53:01.0861 1884 fastfat (1e9b9a70d332103c52995e957dc09ef8) C:\Windows\system32\drivers\fastfat.sys
21:53:01.0877 1884 fastfat - ok
21:53:01.0939 1884 fdc (afe1e8b9782a0dd7fb46bbd88e43f89a) C:\Windows\system32\DRIVERS\fdc.sys
21:53:01.0986 1884 fdc - ok
21:53:02.0033 1884 fdPHost (6629b5f0e98151f4afdd87567ea32ba3) C:\Windows\system32\fdPHost.dll
21:53:02.0048 1884 fdPHost - ok
21:53:02.0111 1884 FDResPub (89ed56dce8e47af40892778a5bd31fd2) C:\Windows\system32\fdrespub.dll
21:53:02.0173 1884 FDResPub - ok
21:53:02.0236 1884 FileInfo (a8c0139a884861e3aae9cfe73b208a9f) C:\Windows\system32\drivers\fileinfo.sys
21:53:02.0251 1884 FileInfo - ok
21:53:02.0298 1884 Filetrace (0ae429a696aecbc5970e3cf2c62635ae) C:\Windows\system32\drivers\filetrace.sys
21:53:02.0329 1884 Filetrace - ok
21:53:02.0485 1884 flpydisk (85b7cf99d532820495d68d747fda9ebd) C:\Windows\system32\DRIVERS\flpydisk.sys
21:53:02.0516 1884 flpydisk - ok
21:53:02.0719 1884 FltMgr (01334f9ea68e6877c4ef05d3ea8abb05) C:\Windows\system32\drivers\fltmgr.sys
21:53:02.0735 1884 FltMgr - ok
21:53:02.0875 1884 FontCache (8ce364388c8eca59b14b539179276d44) C:\Windows\system32\FntCache.dll
21:53:02.0938 1884 FontCache - ok
21:53:03.0016 1884 FontCache3.0.0.0 (c7fbdd1ed42f82bfa35167a5c9803ea3) C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
21:53:03.0031 1884 FontCache3.0.0.0 - ok
21:53:03.0109 1884 fssfltr (b0082808a6856a252f7cdd939892ce50) C:\Windows\system32\DRIVERS\fssfltr.sys
21:53:03.0109 1884 fssfltr - ok
21:53:03.0437 1884 fsssvc (28ddeeec44e988657b732cf404d504cb) C:\Program Files\Windows Live\Family Safety\fsssvc.exe
21:53:03.0515 1884 fsssvc - ok
21:53:03.0796 1884 Fs_Rec (b972a66758577e0bfd1de0f91aaa27b5) C:\Windows\system32\drivers\Fs_Rec.sys
21:53:03.0811 1884 Fs_Rec - ok
21:53:03.0920 1884 gagp30kx (34582a6e6573d54a07ece5fe24a126b5) C:\Windows\system32\drivers\gagp30kx.sys
21:53:03.0936 1884 gagp30kx - ok
21:53:04.0092 1884 gpsvc (cd5d0aeee35dfd4e986a5aa1500a6e66) C:\Windows\System32\gpsvc.dll
21:53:04.0139 1884 gpsvc - ok
21:53:04.0248 1884 HdAudAddService (cb04c744be0a61b1d648faed182c3b59) C:\Windows\system32\drivers\HdAudio.sys
21:53:04.0310 1884 HdAudAddService - ok
21:53:04.0451 1884 HDAudBus (062452b7ffd68c8c042a6261fe8dff4a) C:\Windows\system32\DRIVERS\HDAudBus.sys
21:53:04.0498 1884 HDAudBus - ok
21:53:04.0544 1884 HidBth (1338520e78d90154ed6be8f84de5fceb) C:\Windows\system32\drivers\hidbth.sys
21:53:04.0591 1884 HidBth - ok
21:53:04.0638 1884 HidIr (ff3160c3a2445128c5a6d9b076da519e) C:\Windows\system32\drivers\hidir.sys
21:53:04.0700 1884 HidIr - ok
21:53:04.0810 1884 hidserv (84067081f3318162797385e11a8f0582) C:\Windows\system32\hidserv.dll
21:53:04.0810 1884 hidserv - ok
21:53:04.0856 1884 HidUsb (854ca287ab7faf949617a788306d967e) C:\Windows\system32\DRIVERS\hidusb.sys
21:53:04.0888 1884 HidUsb - ok
21:53:04.0997 1884 hkmsvc (d8ad255b37da92434c26e4876db7d418) C:\Windows\system32\kmsvc.dll
21:53:05.0044 1884 hkmsvc - ok
21:53:05.0106 1884 HpCISSs (16ee7b23a009e00d835cdb79574a91a6) C:\Windows\system32\drivers\hpcisss.sys
21:53:05.0106 1884 HpCISSs - ok
21:53:05.0293 1884 HTTP (0eeeca26c8d4bde2a4664db058a81937) C:\Windows\system32\drivers\HTTP.sys
21:53:05.0309 1884 HTTP - ok
21:53:05.0496 1884 i2omp (c6b032d69650985468160fc9937cf5b4) C:\Windows\system32\drivers\i2omp.sys
21:53:05.0512 1884 i2omp - ok
21:53:05.0543 1884 i8042prt (22d56c8184586b7a1f6fa60be5f5a2bd) C:\Windows\system32\DRIVERS\i8042prt.sys
21:53:05.0574 1884 i8042prt - ok
21:53:05.0683 1884 iaStorV (54155ea1b0df185878e0fc9ec3ac3a14) C:\Windows\system32\drivers\iastorv.sys
21:53:05.0699 1884 iaStorV - ok
21:53:05.0964 1884 idsvc (98477b08e61945f974ed9fdc4cb6bdab) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
21:53:06.0026 1884 idsvc - ok
21:53:06.0058 1884 iirsp (2d077bf86e843f901d8db709c95b49a5) C:\Windows\system32\drivers\iirsp.sys
21:53:06.0073 1884 iirsp - ok
21:53:06.0292 1884 IKEEXT (9908d8a397b76cd8d31d0d383c5773c9) C:\Windows\System32\ikeext.dll
21:53:06.0338 1884 IKEEXT - ok
21:53:06.0682 1884 IntcAzAudAddService (8a4341616976e47712b60f18c7049dcc) C:\Windows\system32\drivers\RTKVHDA.sys
21:53:06.0791 1884 IntcAzAudAddService - ok
21:53:06.0916 1884 intelide (83aa759f3189e6370c30de5dc5590718) C:\Windows\system32\drivers\intelide.sys
21:53:06.0931 1884 intelide - ok
21:53:07.0040 1884 intelppm (224191001e78c89dfa78924c3ea595ff) C:\Windows\system32\DRIVERS\intelppm.sys
21:53:07.0072 1884 intelppm - ok
21:53:07.0134 1884 IPBusEnum (9ac218c6e6105477484c6fdbe7d409a4) C:\Windows\system32\ipbusenum.dll
21:53:07.0165 1884 IPBusEnum - ok
21:53:07.0274 1884 IpFilterDriver (62c265c38769b864cb25b4bcf62df6c3) C:\Windows\system32\DRIVERS\ipfltdrv.sys
21:53:07.0306 1884 IpFilterDriver - ok
21:53:07.0384 1884 iphlpsvc (1998bd97f950680bb55f55a7244679c2) C:\Windows\System32\iphlpsvc.dll
21:53:07.0399 1884 iphlpsvc - ok
21:53:07.0399 1884 IpInIp - ok
21:53:07.0508 1884 IPMIDRV (b25aaf203552b7b3491139d582b39ad1) C:\Windows\system32\drivers\ipmidrv.sys
21:53:07.0555 1884 IPMIDRV - ok
21:53:07.0571 1884 IPNAT (8793643a67b42cec66490b2a0cf92d68) C:\Windows\system32\DRIVERS\ipnat.sys
21:53:07.0602 1884 IPNAT - ok
21:53:07.0664 1884 IRENUM (109c0dfb82c3632fbd11949b73aeeac9) C:\Windows\system32\drivers\irenum.sys
21:53:07.0696 1884 IRENUM - ok
21:53:07.0711 1884 isapnp (6c70698a3e5c4376c6ab5c7c17fb0614) C:\Windows\system32\drivers\isapnp.sys
21:53:07.0727 1884 isapnp - ok
21:53:07.0820 1884 iScsiPrt (232fa340531d940aac623b121a595034) C:\Windows\system32\DRIVERS\msiscsi.sys
21:53:07.0836 1884 iScsiPrt - ok
21:53:07.0883 1884 iteatapi (bced60d16156e428f8df8cf27b0df150) C:\Windows\system32\drivers\iteatapi.sys
21:53:07.0898 1884 iteatapi - ok
21:53:07.0961 1884 iteraid (06fa654504a498c30adca8bec4e87e7e) C:\Windows\system32\drivers\iteraid.sys
21:53:07.0961 1884 iteraid - ok
21:53:08.0039 1884 jrdusbser (119ab8740bacb9f1108f4dd02294569d) C:\Windows\system32\DRIVERS\jrdusbser.sys
21:53:08.0070 1884 jrdusbser - ok
21:53:08.0164 1884 kbdclass (37605e0a8cf00cbba538e753e4344c6e) C:\Windows\system32\DRIVERS\kbdclass.sys
21:53:08.0179 1884 kbdclass - ok
21:53:08.0226 1884 kbdhid (18247836959ba67e3511b62846b9c2e0) C:\Windows\system32\DRIVERS\kbdhid.sys
21:53:08.0288 1884 kbdhid - ok
21:53:08.0335 1884 KeyIso (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
21:53:08.0351 1884 KeyIso - ok
21:53:08.0554 1884 KSecDD (4a1445efa932a3baf5bdb02d7131ee20) C:\Windows\system32\Drivers\ksecdd.sys
21:53:08.0585 1884 KSecDD - ok
21:53:08.0772 1884 KtmRm (8078f8f8f7a79e2e6b494523a828c585) C:\Windows\system32\msdtckrm.dll
21:53:08.0803 1884 KtmRm - ok
21:53:08.0928 1884 LanmanServer (1bf5eebfd518dd7298434d8c862f825d) C:\Windows\system32\srvsvc.dll
21:53:08.0959 1884 LanmanServer - ok
21:53:09.0068 1884 LanmanWorkstation (1db69705b695b987082c8baec0c6b34f) C:\Windows\System32\wkssvc.dll
21:53:09.0100 1884 LanmanWorkstation - ok
21:53:09.0240 1884 LightScribeService (793ff718477345cd5d232c50bed1e452) C:\Program Files\Common Files\LightScribe\LSSrvc.exe
21:53:09.0256 1884 LightScribeService ( UnsignedFile.Multi.Generic ) - warning
21:53:09.0256 1884 LightScribeService - detected UnsignedFile.Multi.Generic (1)
21:53:09.0302 1884 lltdio (d1c5883087a0c3f1344d9d55a44901f6) C:\Windows\system32\DRIVERS\lltdio.sys
21:53:09.0349 1884 lltdio - ok
21:53:09.0412 1884 lltdsvc (2d5a428872f1442631d0959a34abff63) C:\Windows\System32\lltdsvc.dll
21:53:09.0458 1884 lltdsvc - ok
21:53:09.0490 1884 lmhosts (35d40113e4a5b961b6ce5c5857702518) C:\Windows\System32\lmhsvc.dll
21:53:09.0552 1884 lmhosts - ok
21:53:09.0583 1884 LSI_FC (c7e15e82879bf3235b559563d4185365) C:\Windows\system32\drivers\lsi_fc.sys
21:53:09.0599 1884 LSI_FC - ok
21:53:09.0677 1884 LSI_SAS (ee01ebae8c9bf0fa072e0ff68718920a) C:\Windows\system32\drivers\lsi_sas.sys
21:53:09.0692 1884 LSI_SAS - ok
21:53:09.0786 1884 LSI_SCSI (912a04696e9ca30146a62afa1463dd5c) C:\Windows\system32\drivers\lsi_scsi.sys
21:53:09.0802 1884 LSI_SCSI - ok
21:53:09.0926 1884 luafv (8f5c7426567798e62a3b3614965d62cc) C:\Windows\system32\drivers\luafv.sys
21:53:09.0958 1884 luafv - ok
21:53:10.0004 1884 massfilter (59a2783aba6019bed0c843c706e10a6a) C:\Windows\system32\drivers\massfilter.sys
21:53:10.0036 1884 massfilter - ok
21:53:10.0145 1884 MBAMProtector (6dfe7f2e8e8a337263aa5c92a215f161) C:\Windows\system32\drivers\mbam.sys
21:53:10.0145 1884 MBAMProtector - ok
21:53:10.0426 1884 MBAMService (43683e970f008c93c9429ef428147a54) C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
21:53:10.0457 1884 MBAMService - ok
21:53:10.0488 1884 MBAMSwissArmy - ok
21:53:10.0550 1884 megasas (0001ce609d66632fa17b84705f658879) C:\Windows\system32\drivers\megasas.sys
21:53:10.0566 1884 megasas - ok
21:53:10.0722 1884 MegaSR (c252f32cd9a49dbfc25ecf26ebd51a99) C:\Windows\system32\drivers\megasr.sys
21:53:10.0753 1884 MegaSR - ok
21:53:10.0831 1884 MMCSS (1076ffcffaae8385fd62dfcb25ac4708) C:\Windows\system32\mmcss.dll
21:53:10.0878 1884 MMCSS - ok
21:53:10.0878 1884 mmrt - ok
21:53:10.0956 1884 Modem (e13b5ea0f51ba5b1512ec671393d09ba) C:\Windows\system32\drivers\modem.sys
21:53:10.0987 1884 Modem - ok
21:53:11.0050 1884 monitor (0a9bb33b56e294f686abb7c1e4e2d8a8) C:\Windows\system32\DRIVERS\monitor.sys
21:53:11.0081 1884 monitor - ok
21:53:11.0128 1884 mouclass (5bf6a1326a335c5298477754a506d263) C:\Windows\system32\DRIVERS\mouclass.sys
21:53:11.0159 1884 mouclass - ok
21:53:11.0206 1884 mouhid (93b8d4869e12cfbe663915502900876f) C:\Windows\system32\DRIVERS\mouhid.sys
21:53:11.0221 1884 mouhid - ok
21:53:11.0299 1884 MountMgr (bdafc88aa6b92f7842416ea6a48e1600) C:\Windows\system32\drivers\mountmgr.sys
21:53:11.0315 1884 MountMgr - ok
21:53:11.0455 1884 MozillaMaintenance (96aa8ba23142cc8e2b30f3cae0c80254) C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
21:53:11.0471 1884 MozillaMaintenance - ok
21:53:11.0580 1884 MpFilter (d993bea500e7382dc4e760bf4f35efcb) C:\Windows\system32\DRIVERS\MpFilter.sys
21:53:11.0596 1884 MpFilter - ok
21:53:11.0720 1884 mpio (511d011289755dd9f9a7579fb0b064e6) C:\Windows\system32\drivers\mpio.sys
21:53:11.0720 1884 mpio - ok
21:53:11.0798 1884 mpsdrv (22241feba9b2defa669c8cb0a8dd7d2e) C:\Windows\system32\drivers\mpsdrv.sys
21:53:11.0830 1884 mpsdrv - ok
21:53:11.0986 1884 MpsSvc (5de62c6e9108f14f6794060a9bdecaec) C:\Windows\system32\mpssvc.dll
21:53:12.0032 1884 MpsSvc - ok
21:53:12.0079 1884 Mraid35x (4fbbb70d30fd20ec51f80061703b001e) C:\Windows\system32\drivers\mraid35x.sys
21:53:12.0079 1884 Mraid35x - ok
21:53:12.0157 1884 MRxDAV (82cea0395524aacfeb58ba1448e8325c) C:\Windows\system32\drivers\mrxdav.sys
21:53:12.0173 1884 MRxDAV - ok
21:53:12.0344 1884 mrxsmb (1e94971c4b446ab2290deb71d01cf0c2) C:\Windows\system32\DRIVERS\mrxsmb.sys
21:53:12.0391 1884 mrxsmb - ok
21:53:12.0532 1884 mrxsmb10 (4fccb34d793b116423209c0f8b7a3b03) C:\Windows\system32\DRIVERS\mrxsmb10.sys
21:53:12.0563 1884 mrxsmb10 - ok
21:53:12.0641 1884 mrxsmb20 (c3cb1b40ad4a0124d617a1199b0b9d7c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
21:53:12.0656 1884 mrxsmb20 - ok
21:53:12.0781 1884 msahci (28023e86f17001f7cd9b15a5bc9ae07d) C:\Windows\system32\drivers\msahci.sys
21:53:12.0781 1884 msahci - ok
21:53:13.0015 1884 msdsm (4468b0f385a86ecddaf8d3ca662ec0e7) C:\Windows\system32\drivers\msdsm.sys
21:53:13.0031 1884 msdsm - ok
21:53:13.0171 1884 MSDTC (fd7520cc3a80c5fc8c48852bb24c6ded) C:\Windows\System32\msdtc.exe
21:53:13.0202 1884 MSDTC - ok
21:53:13.0280 1884 Msfs (a9927f4a46b816c92f461acb90cf8515) C:\Windows\system32\drivers\Msfs.sys
21:53:13.0327 1884 Msfs - ok
21:53:13.0390 1884 msisadrv (0f400e306f385c56317357d6dea56f62) C:\Windows\system32\drivers\msisadrv.sys
21:53:13.0390 1884 msisadrv - ok
21:53:13.0499 1884 MSiSCSI (85466c0757a23d9a9aecdc0755203cb2) C:\Windows\system32\iscsiexe.dll
21:53:13.0546 1884 MSiSCSI - ok
21:53:13.0577 1884 msiserver - ok
21:53:13.0639 1884 MSKSSRV (d8c63d34d9c9e56c059e24ec7185cc07) C:\Windows\system32\drivers\MSKSSRV.sys
21:53:13.0670 1884 MSKSSRV - ok
21:53:13.0764 1884 MsMpSvc (24516bf4e12a46cb67302e2cdcb8cddf) c:\Program Files\Microsoft Security Client\MsMpEng.exe
21:53:13.0780 1884 MsMpSvc - ok
21:53:13.0826 1884 MSPCLOCK (1d373c90d62ddb641d50e55b9e78d65e) C:\Windows\system32\drivers\MSPCLOCK.sys
21:53:13.0858 1884 MSPCLOCK - ok
21:53:13.0889 1884 MSPQM (b572da05bf4e098d4bba3a4734fb505b) C:\Windows\system32\drivers\MSPQM.sys
21:53:13.0904 1884 MSPQM - ok
21:53:13.0998 1884 MsRPC (b49456d70555de905c311bcda6ec6adb) C:\Windows\system32\drivers\MsRPC.sys
21:53:14.0014 1884 MsRPC - ok
21:53:14.0060 1884 mssmbios (e384487cb84be41d09711c30ca79646c) C:\Windows\system32\DRIVERS\mssmbios.sys
21:53:14.0076 1884 mssmbios - ok
21:53:14.0123 1884 MSTEE (7199c1eec1e4993caf96b8c0a26bd58a) C:\Windows\system32\drivers\MSTEE.sys
21:53:14.0170 1884 MSTEE - ok
21:53:14.0248 1884 Mup (6a57b5733d4cb702c8ea4542e836b96c) C:\Windows\system32\Drivers\mup.sys
21:53:14.0263 1884 Mup - ok
21:53:14.0606 1884 napagent (e4eaf0c5c1b41b5c83386cf212ca9584) C:\Windows\system32\qagentRT.dll
21:53:14.0653 1884 napagent - ok
21:53:14.0903 1884 NativeWifiP (85c44fdff9cf7e72a40dcb7ec06a4416) C:\Windows\system32\DRIVERS\nwifi.sys
21:53:14.0934 1884 NativeWifiP - ok
21:53:15.0246 1884 NDIS (1357274d1883f68300aeadd15d7bbb42) C:\Windows\system32\drivers\ndis.sys
21:53:15.0262 1884 NDIS - ok
21:53:15.0433 1884 NdisTapi (0e186e90404980569fb449ba7519ae61) C:\Windows\system32\DRIVERS\ndistapi.sys
21:53:15.0449 1884 NdisTapi - ok
21:53:15.0558 1884 Ndisuio (d6973aa34c4d5d76c0430b181c3cd389) C:\Windows\system32\DRIVERS\ndisuio.sys
21:53:15.0574 1884 Ndisuio - ok
21:53:15.0854 1884 NdisWan (818f648618ae34f729fdb47ec68345c3) C:\Windows\system32\DRIVERS\ndiswan.sys
21:53:15.0870 1884 NdisWan - ok
21:53:16.0026 1884 NDProxy (71dab552b41936358f3b541ae5997fb3) C:\Windows\system32\drivers\NDProxy.sys
21:53:16.0057 1884 NDProxy - ok
21:53:16.0104 1884 NetBIOS (bcd093a5a6777cf626434568dc7dba78) C:\Windows\system32\DRIVERS\netbios.sys
21:53:16.0151 1884 NetBIOS - ok
21:53:16.0541 1884 netbt (ecd64230a59cbd93c85f1cd1cab9f3f6) C:\Windows\system32\DRIVERS\netbt.sys
21:53:16.0588 1884 netbt - ok
21:53:16.0650 1884 Netlogon (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
21:53:16.0650 1884 Netlogon - ok
21:53:17.0071 1884 Netman (c8052711daecc48b982434c5116ca401) C:\Windows\System32\netman.dll
21:53:17.0118 1884 Netman - ok
21:53:17.0446 1884 netprofm (2ef3bbe22e5a5acd1428ee387a0d0172) C:\Windows\System32\netprofm.dll
21:53:17.0477 1884 netprofm - ok
21:53:18.0475 1884 netr28u (c64e8ef4c6322b09b6ee570a8ba41e26) C:\Windows\system32\DRIVERS\netr28u.sys
21:53:18.0522 1884 netr28u - ok
21:53:18.0959 1884 NetTcpPortSharing (d6c4e4a39a36029ac0813d476fbd0248) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
21:53:19.0037 1884 NetTcpPortSharing - ok
21:53:19.0240 1884 nfrd960 (2e7fb731d4790a1bc6270accefacb36e) C:\Windows\system32\drivers\nfrd960.sys
21:53:19.0255 1884 nfrd960 - ok
21:53:19.0708 1884 NisDrv (b52f26bade7d7e4a79706e3fd91834cd) C:\Windows\system32\DRIVERS\NisDrvWFP.sys
21:53:19.0708 1884 NisDrv - ok
21:53:20.0269 1884 NisSrv (290c0d4c4889398797f8df3be00b9698) c:\Program Files\Microsoft Security Client\NisSrv.exe
21:53:20.0285 1884 NisSrv - ok
21:53:20.0503 1884 NlaSvc (2997b15415f9bbe05b5a4c1c85e0c6a2) C:\Windows\System32\nlasvc.dll
21:53:20.0534 1884 NlaSvc - ok
21:53:20.0909 1884 NMSAccess (7aea4df1ca68fd45dd4bbe1f0243ce7f) C:\Program Files\Systeme\Gravage\CDBurnerXP\NMSAccessU.exe
21:53:20.0971 1884 NMSAccess - ok
21:53:21.0065 1884 Npfs (d36f239d7cce1931598e8fb90a0dbc26) C:\Windows\system32\drivers\Npfs.sys
21:53:21.0080 1884 Npfs - ok
21:53:21.0190 1884 nsi (8bb86f0c7eea2bded6fe095d0b4ca9bd) C:\Windows\system32\nsisvc.dll
21:53:21.0236 1884 nsi - ok
21:53:21.0330 1884 nsiproxy (609773e344a97410ce4ebf74a8914fcf) C:\Windows\system32\drivers\nsiproxy.sys
21:53:21.0377 1884 nsiproxy - ok
21:53:22.0813 1884 Ntfs (6a4a98cee84cf9e99564510dda4baa47) C:\Windows\system32\drivers\Ntfs.sys
21:53:22.0891 1884 Ntfs - ok
21:53:23.0125 1884 NTIBackupSvc (a8b8edb4cdb2927cdc127e5bfe85ca7e) C:\Program Files\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe
21:53:23.0187 1884 NTIBackupSvc ( UnsignedFile.Multi.Generic ) - warning
21:53:23.0187 1884 NTIBackupSvc - detected UnsignedFile.Multi.Generic (1)
21:53:23.0312 1884 NTIDrvr (2757d2ba59aee155209e24942ab127c9) C:\Windows\system32\DRIVERS\NTIDrvr.sys
21:53:23.0328 1884 NTIDrvr - ok
21:53:23.0421 1884 NTISchedulerSvc (50b1521bc145ce9634a5acd1c10d84f7) C:\Program Files\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
21:53:23.0437 1884 NTISchedulerSvc ( UnsignedFile.Multi.Generic ) - warning
21:53:23.0437 1884 NTISchedulerSvc - detected UnsignedFile.Multi.Generic (1)
21:53:23.0468 1884 ntrigdigi (e875c093aec0c978a90f30c9e0dfbb72) C:\Windows\system32\drivers\ntrigdigi.sys
21:53:23.0562 1884 ntrigdigi - ok
21:53:23.0577 1884 Null (c5dbbcda07d780bda9b685df333bb41e) C:\Windows\system32\drivers\Null.sys
21:53:23.0609 1884 Null - ok
21:53:23.0765 1884 nvraid (2edf9e7751554b42cbb60116de727101) C:\Windows\system32\drivers\nvraid.sys
21:53:23.0780 1884 nvraid - ok
21:53:23.0905 1884 nvstor (abed0c09758d1d97db0042dbb2688177) C:\Windows\system32\drivers\nvstor.sys
21:53:23.0921 1884 nvstor - ok
21:53:24.0186 1884 nv_agp (18bbdf913916b71bd54575bdb6eeac0b) C:\Windows\system32\drivers\nv_agp.sys
21:53:24.0201 1884 nv_agp - ok
21:53:24.0233 1884 NwlnkFlt - ok
21:53:24.0233 1884 NwlnkFwd - ok
21:53:24.0389 1884 ohci1394 (6f310e890d46e246e0e261a63d9b36b4) C:\Windows\system32\DRIVERS\ohci1394.sys
21:53:24.0404 1884 ohci1394 - ok
21:53:25.0091 1884 p2pimsvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
21:53:25.0153 1884 p2pimsvc - ok
21:53:25.0169 1884 p2psvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
21:53:25.0215 1884 p2psvc - ok
21:53:25.0559 1884 Parport (0fa9b5055484649d63c303fe404e5f4d) C:\Windows\system32\drivers\parport.sys
21:53:25.0621 1884 Parport - ok
21:53:25.0839 1884 partmgr (b9c2b89f08670e159f7181891e449cd9) C:\Windows\system32\drivers\partmgr.sys
21:53:25.0855 1884 partmgr - ok
21:53:25.0902 1884 Parvdm (4f9a6a8a31413180d0fcb279ad5d8112) C:\Windows\system32\drivers\parvdm.sys
21:53:25.0964 1884 Parvdm - ok
21:53:26.0120 1884 PcaSvc (c6276ad11f4bb49b58aa1ed88537f14a) C:\Windows\System32\pcasvc.dll
21:53:26.0151 1884 PcaSvc - ok
21:53:26.0183 1884 pci (941dc1d19e7e8620f40bbc206981efdb) C:\Windows\system32\drivers\pci.sys
21:53:26.0198 1884 pci - ok
21:53:26.0214 1884 pciide (1636d43f10416aeb483bc6001097b26c) C:\Windows\system32\drivers\pciide.sys
21:53:26.0229 1884 pciide - ok
21:53:26.0276 1884 pcmcia (e6f3fb1b86aa519e7698ad05e58b04e5) C:\Windows\system32\drivers\pcmcia.sys
21:53:26.0276 1884 pcmcia - ok
21:53:26.0370 1884 PCTINDIS5 (1e715247efffdda938c085913045d599) C:\Windows\system32\PCTINDIS5.SYS
21:53:26.0370 1884 PCTINDIS5 - ok
21:53:26.0916 1884 PEAUTH (6349f6ed9c623b44b52ea3c63c831a92) C:\Windows\system32\drivers\peauth.sys
21:53:27.0025 1884 PEAUTH - ok
21:53:30.0161 1884 pla (b1689df169143f57053f795390c99db3) C:\Windows\system32\pla.dll
21:53:30.0285 1884 pla - ok
21:53:32.0282 1884 PlugPlay (c5e7f8a996ec0a82d508fd9064a5569e) C:\Windows\system32\umpnpmgr.dll
21:53:32.0313 1884 PlugPlay - ok
21:53:33.0483 1884 PNRPAutoReg (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
21:53:33.0515 1884 PNRPAutoReg - ok
21:53:33.0530 1884 PNRPsvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
21:53:33.0561 1884 PNRPsvc - ok
21:53:34.0373 1884 PolicyAgent (d0494460421a03cd5225cca0059aa146) C:\Windows\System32\ipsecsvc.dll
21:53:34.0560 1884 PolicyAgent - ok
21:53:34.0809 1884 PptpMiniport (ecfffaec0c1ecd8dbc77f39070ea1db1) C:\Windows\system32\DRIVERS\raspptp.sys
21:53:34.0841 1884 PptpMiniport - ok
21:53:34.0934 1884 Processor (2027293619dd0f047c584cf2e7df4ffd) C:\Windows\system32\drivers\processr.sys
21:53:34.0965 1884 Processor - ok
21:53:35.0324 1884 ProfSvc (0508faa222d28835310b7bfca7a77346) C:\Windows\system32\profsvc.dll
21:53:35.0355 1884 ProfSvc - ok
21:53:35.0418 1884 ProtectedStorage (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
21:53:35.0433 1884 ProtectedStorage - ok
21:53:35.0792 1884 PSched (99514faa8df93d34b5589187db3aa0ba) C:\Windows\system32\DRIVERS\pacer.sys
21:53:35.0808 1884 PSched - ok
21:53:36.0775 1884 ql2300 (0a6db55afb7820c99aa1f3a1d270f4f6) C:\Windows\system32\drivers\ql2300.sys
21:53:36.0837 1884 ql2300 - ok
21:53:37.0883 1884 ql40xx (81a7e5c076e59995d54bc1ed3a16e60b) C:\Windows\system32\drivers\ql40xx.sys
21:53:37.0883 1884 ql40xx - ok
21:53:38.0039 1884 QWAVE (e9ecae663f47e6cb43962d18ab18890f) C:\Windows\system32\qwave.dll
21:53:38.0054 1884 QWAVE - ok
21:53:38.0179 1884 QWAVEdrv (9f5e0e1926014d17486901c88eca2db7) C:\Windows\system32\drivers\qwavedrv.sys
21:53:38.0179 1884 QWAVEdrv - ok
21:53:38.0397 1884 RasAcd (147d7f9c556d259924351feb0de606c3) C:\Windows\system32\DRIVERS\rasacd.sys
21:53:38.0413 1884 RasAcd - ok
21:53:38.0429 1884 RasAuto (f6a452eb4ceadbb51c9e0ee6b3ecef0f) C:\Windows\System32\rasauto.dll
21:53:38.0460 1884 RasAuto - ok
21:53:38.0475 1884 Rasl2tp (a214adbaf4cb47dd2728859ef31f26b0) C:\Windows\system32\DRIVERS\rasl2tp.sys
21:53:38.0507 1884 Rasl2tp - ok
21:53:38.0772 1884 RasMan (75d47445d70ca6f9f894b032fbc64fcf) C:\Windows\System32\rasmans.dll
21:53:38.0819 1884 RasMan - ok
21:53:38.0990 1884 RasPppoe (509a98dd18af4375e1fc40bc175f1def) C:\Windows\system32\DRIVERS\raspppoe.sys
21:53:39.0021 1884 RasPppoe - ok
21:53:39.0053 1884 RasSstp (2005f4a1e05fa09389ac85840f0a9e4d) C:\Windows\system32\DRIVERS\rassstp.sys
21:53:39.0068 1884 RasSstp - ok
21:53:39.0177 1884 rdbss (b14c9d5b9add2f84f70570bbbfaa7935) C:\Windows\system32\DRIVERS\rdbss.sys
21:53:39.0209 1884 rdbss - ok
21:53:39.0271 1884 RDPCDD (89e59be9a564262a3fb6c4f4f1cd9899) C:\Windows\system32\DRIVERS\RDPCDD.sys
21:53:39.0318 1884 RDPCDD - ok
21:53:39.0411 1884 rdpdr (fbc0bacd9c3d7f6956853f64a66e252d) C:\Windows\system32\drivers\rdpdr.sys
21:53:39.0443 1884 rdpdr - ok
21:53:39.0443 1884 RDPENCDD (9d91fe5286f748862ecffa05f8a0710c) C:\Windows\system32\drivers\rdpencdd.sys
21:53:39.0505 1884 RDPENCDD - ok
21:53:39.0770 1884 RDPWD (c127ebd5afab31524662c48dfceb773a) C:\Windows\system32\drivers\RDPWD.sys
21:53:39.0801 1884 RDPWD - ok
21:53:39.0942 1884 RemoteAccess (bcdd6b4804d06b1f7ebf29e53a57ece9) C:\Windows\System32\mprdim.dll
21:53:39.0973 1884 RemoteAccess - ok
21:53:40.0129 1884 RemoteRegistry (9e6894ea18daff37b63e1005f83ae4ab) C:\Windows\system32\regsvc.dll
21:53:40.0160 1884 RemoteRegistry - ok
21:53:40.0425 1884 RFCOMM (6482707f9f4da0ecbab43b2e0398a101) C:\Windows\system32\DRIVERS\rfcomm.sys
21:53:40.0472 1884 RFCOMM - ok
21:53:40.0769 1884 RichVideo (17e0bef5ca5c9ce52cc8082ac6ebc449) C:\Program Files\Cyberlink\Shared files\RichVideo.exe
21:53:40.0815 1884 RichVideo - ok
21:53:40.0925 1884 RpcLocator (5123f83cbc4349d065534eeb6bbdc42b) C:\Windows\system32\locator.exe
21:53:40.0987 1884 RpcLocator - ok
21:53:41.0517 1884 RpcSs (3b5b4d53fec14f7476ca29a20cc31ac9) C:\Windows\system32\rpcss.dll
21:53:41.0540 1884 RpcSs - ok
21:53:41.0614 1884 rspndr (9c508f4074a39e8b4b31d27198146fad) C:\Windows\system32\DRIVERS\rspndr.sys
21:53:41.0645 1884 rspndr - ok
21:53:41.0717 1884 SamSs (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
21:53:41.0728 1884 SamSs - ok
21:53:41.0757 1884 sbp2port (3ce8f073a557e172b330109436984e30) C:\Windows\system32\drivers\sbp2port.sys
21:53:41.0767 1884 sbp2port - ok
21:53:41.0959 1884 SCardSvr (77b7a11a0c3d78d3386398fbbea1b632) C:\Windows\System32\SCardSvr.dll
21:53:41.0984 1884 SCardSvr - ok
21:53:42.0077 1884 Schedule (1a58069db21d05eb2ab58ee5753ebe8d) C:\Windows\system32\schedsvc.dll
21:53:42.0100 1884 Schedule - ok
21:53:42.0176 1884 SCPolicySvc (312ec3e37a0a1f2006534913e37b4423) C:\Windows\System32\certprop.dll
21:53:42.0196 1884 SCPolicySvc - ok
21:53:42.0291 1884 SDRSVC (716313d9f6b0529d03f726d5aaf6f191) C:\Windows\System32\SDRSVC.dll
21:53:42.0335 1884 SDRSVC - ok
21:53:42.0388 1884 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
21:53:42.0443 1884 secdrv - ok
21:53:42.0488 1884 seclogon (fd5199d4d8a521005e4b5ee7fe00fa9b) C:\Windows\system32\seclogon.dll
21:53:42.0526 1884 seclogon - ok
21:53:42.0590 1884 SENS (a9bbab5759771e523f55563d6cbe140f) C:\Windows\System32\sens.dll
21:53:42.0631 1884 SENS - ok
21:53:42.0651 1884 Serenum (68e44e331d46f0fb38f0863a84cd1a31) C:\Windows\system32\drivers\serenum.sys
21:53:42.0696 1884 Serenum - ok
21:53:42.0753 1884 Serial (c70d69a918b178d3c3b06339b40c2e1b) C:\Windows\system32\drivers\serial.sys
21:53:42.0807 1884 Serial - ok
21:53:42.0860 1884 sermouse (8af3d28a879bf75db53a0ee7a4289624) C:\Windows\system32\drivers\sermouse.sys
21:53:42.0906 1884 sermouse - ok
21:53:42.0988 1884 SessionEnv (d2193326f729b163125610dbf3e17d57) C:\Windows\system32\sessenv.dll
21:53:43.0030 1884 SessionEnv - ok
21:53:43.0069 1884 sffdisk (3efa810bdca87f6ecc24f9832243fe86) C:\Windows\system32\drivers\sffdisk.sys
21:53:43.0124 1884 sffdisk - ok
21:53:43.0191 1884 sffp_mmc (e95d451f7ea3e583aec75f3b3ee42dc5) C:\Windows\system32\drivers\sffp_mmc.sys
21:53:43.0230 1884 sffp_mmc - ok
21:53:43.0302 1884 sffp_sd (3d0ea348784b7ac9ea9bd9f317980979) C:\Windows\system32\drivers\sffp_sd.sys
21:53:43.0327 1884 sffp_sd - ok
21:53:43.0345 1884 sfloppy (46ed8e91793b2e6f848015445a0ac188) C:\Windows\system32\drivers\sfloppy.sys
21:53:43.0392 1884 sfloppy - ok
21:53:43.0635 1884 SharedAccess (e1499bd0ff76b1b2fbbf1af339d91165) C:\Windows\System32\ipnathlp.dll
21:53:43.0665 1884 SharedAccess - ok
21:53:43.0829 1884 ShellHWDetection (c7230fbee14437716701c15be02c27b8) C:\Windows\System32\shsvcs.dll
21:53:43.0854 1884 ShellHWDetection - ok
21:53:43.0974 1884 sisagp (1d76624a09a054f682d746b924e2dbc3) C:\Windows\system32\drivers\sisagp.sys
21:53:43.0985 1884 sisagp - ok
21:53:44.0103 1884 SiSRaid2 (43cb7aa756c7db280d01da9b676cfde2) C:\Windows\system32\drivers\sisraid2.sys
21:53:44.0114 1884 SiSRaid2 - ok
21:53:44.0151 1884 SiSRaid4 (a99c6c8b0baa970d8aa59ddc50b57f94) C:\Windows\system32\drivers\sisraid4.sys
21:53:44.0162 1884 SiSRaid4 - ok
21:53:44.0996 1884 slsvc (862bb4cbc05d80c5b45be430e5ef872f) C:\Windows\system32\SLsvc.exe
21:53:45.0168 1884 slsvc - ok
21:53:45.0423 1884 SLUINotify (6edc422215cd78aa8a9cde6b30abbd35) C:\Windows\system32\SLUINotify.dll
21:53:45.0456 1884 SLUINotify - ok
21:53:45.0553 1884 Smb (7b75299a4d201d6a6533603d6914ab04) C:\Windows\system32\DRIVERS\smb.sys
21:53:45.0587 1884 Smb - ok
21:53:45.0633 1884 SNMPTRAP (2a146a055b4401c16ee62d18b8e2a032) C:\Windows\System32\snmptrap.exe
21:53:45.0645 1884 SNMPTRAP - ok
21:53:45.0674 1884 spldr (7aebdeef071fe28b0eef2cdd69102bff) C:\Windows\system32\drivers\spldr.sys
21:53:45.0684 1884 spldr - ok
21:53:45.0770 1884 Spooler (8554097e5136c3bf9f69fe578a1b35f4) C:\Windows\System32\spoolsv.exe
21:53:45.0795 1884 Spooler - ok
21:53:46.0058 1884 srv (41987f9fc0e61adf54f581e15029ad91) C:\Windows\system32\DRIVERS\srv.sys
21:53:46.0072 1884 srv - ok
21:53:46.0119 1884 srv2 (ff33aff99564b1aa534f58868cbe41ef) C:\Windows\system32\DRIVERS\srv2.sys
21:53:46.0147 1884 srv2 - ok
21:53:46.0276 1884 srvnet (7605c0e1d01a08f3ecd743f38b834a44) C:\Windows\system32\DRIVERS\srvnet.sys
21:53:46.0301 1884 srvnet - ok
21:53:46.0448 1884 SSDPSRV (03d50b37234967433a5ea5ba72bc0b62) C:\Windows\System32\ssdpsrv.dll
21:53:46.0487 1884 SSDPSRV - ok
21:53:46.0570 1884 SstpSvc (6f1a32e7b7b30f004d9a20afadb14944) C:\Windows\system32\sstpsvc.dll
21:53:46.0637 1884 SstpSvc - ok
21:53:46.0686 1884 StarOpen (f92254b0bcfcd10caac7bccc7cb7f467) C:\Windows\system32\drivers\StarOpen.sys
21:53:46.0701 1884 StarOpen ( UnsignedFile.Multi.Generic ) - warning
21:53:46.0701 1884 StarOpen - detected UnsignedFile.Multi.Generic (1)
21:53:46.0919 1884 stisvc (5de7d67e49b88f5f07f3e53c4b92a352) C:\Windows\System32\wiaservc.dll
21:53:46.0969 1884 stisvc - ok
21:53:47.0024 1884 swenum (7ba58ecf0c0a9a69d44b3dca62becf56) C:\Windows\system32\DRIVERS\swenum.sys
21:53:47.0034 1884 swenum - ok
21:53:47.0241 1884 swprv (f21fd248040681cca1fb6c9a03aaa93d) C:\Windows\System32\swprv.dll
21:53:47.0287 1884 swprv - ok
21:53:47.0332 1884 Symc8xx (192aa3ac01df071b541094f251deed10) C:\Windows\system32\drivers\symc8xx.sys
21:53:47.0341 1884 Symc8xx - ok
21:53:47.0375 1884 Sym_hi (8c8eb8c76736ebaf3b13b633b2e64125) C:\Windows\system32\drivers\sym_hi.sys
21:53:47.0384 1884 Sym_hi - ok
21:53:47.0404 1884 Sym_u3 (8072af52b5fd103bbba387a1e49f62cb) C:\Windows\system32\drivers\sym_u3.sys
21:53:47.0414 1884 Sym_u3 - ok
21:53:47.0527 1884 SysMain (9a51b04e9886aa4ee90093586b0ba88d) C:\Windows\system32\sysmain.dll
21:53:47.0571 1884 SysMain - ok
21:53:47.0645 1884 TabletInputService (2dca225eae15f42c0933e998ee0231c3) C:\Windows\System32\TabSvc.dll
21:53:47.0659 1884 TabletInputService - ok
21:53:47.0770 1884 TapiSrv (d7673e4b38ce21ee54c59eeeb65e2483) C:\Windows\System32\tapisrv.dll
21:53:47.0806 1884 TapiSrv - ok
21:53:47.0894 1884 TBS (cb05822cd9cc6c688168e113c603dbe7) C:\Windows\System32\tbssvc.dll
21:53:47.0944 1884 TBS - ok
21:53:48.0400 1884 Tcpip (ee7e10bed85c312c1d5d30c435bdda9f) C:\Windows\system32\drivers\tcpip.sys
21:53:48.0432 1884 Tcpip - ok
21:53:48.0447 1884 Tcpip6 (ee7e10bed85c312c1d5d30c435bdda9f) C:\Windows\system32\DRIVERS\tcpip.sys
21:53:48.0483 1884 Tcpip6 - ok
21:53:48.0552 1884 tcpipreg (2c2d4cff5e09c73908f9b5af49a51365) C:\Windows\system32\drivers\tcpipreg.sys
21:53:48.0563 1884 tcpipreg - ok
21:53:48.0608 1884 TDPIPE (5dcf5e267be67a1ae926f2df77fbcc56) C:\Windows\system32\drivers\tdpipe.sys
21:53:48.0632 1884 TDPIPE - ok
21:53:48.0644 1884 TDTCP (389c63e32b3cefed425b61ed92d3f021) C:\Windows\system32\drivers\tdtcp.sys
21:53:48.0686 1884 TDTCP - ok
21:53:48.0725 1884 tdx (76b06eb8a01fc8624d699e7045303e54) C:\Windows\system32\DRIVERS\tdx.sys
21:53:48.0767 1884 tdx - ok
21:53:48.0803 1884 TermDD (3cad38910468eab9a6479e2f01db43c7) C:\Windows\system32\DRIVERS\termdd.sys
21:53:48.0814 1884 TermDD - ok
21:53:49.0031 1884 TermService (bb95da09bef6e7a131bff3ba5032090d) C:\Windows\System32\termsrv.dll
21:53:49.0082 1884 TermService - ok
21:53:49.0228 1884 Themes (c7230fbee14437716701c15be02c27b8) C:\Windows\system32\shsvcs.dll
21:53:49.0242 1884 Themes - ok
21:53:49.0279 1884 THREADORDER (1076ffcffaae8385fd62dfcb25ac4708) C:\Windows\system32\mmcss.dll
21:53:49.0305 1884 THREADORDER - ok
21:53:49.0436 1884 TrkWks (ec74e77d0eb004bd3a809b5f8fb8c2ce) C:\Windows\System32\trkwks.dll
21:53:49.0475 1884 TrkWks - ok
21:53:49.0550 1884 TrustedInstaller (97d9d6a04e3ad9b6c626b9931db78dba) C:\Windows\servicing\TrustedInstaller.exe
21:53:49.0580 1884 TrustedInstaller - ok
21:53:49.0659 1884 tssecsrv (dcf0f056a2e4f52287264f5ab29cf206) C:\Windows\system32\DRIVERS\tssecsrv.sys
21:53:49.0695 1884 tssecsrv - ok
21:53:49.0811 1884 tunmp (caecc0120ac49e3d2f758b9169872d38) C:\Windows\system32\DRIVERS\tunmp.sys
21:53:49.0847 1884 tunmp - ok
21:53:49.0971 1884 tunnel (300db877ac094feab0be7688c3454a9c) C:\Windows\system32\DRIVERS\tunnel.sys
21:53:49.0982 1884 tunnel - ok
21:53:50.0039 1884 uagp35 (7d33c4db2ce363c8518d2dfcf533941f) C:\Windows\system32\drivers\uagp35.sys
21:53:50.0049 1884 uagp35 - ok
21:53:50.0067 1884 UBHelper (f763e070843ee2803de1395002b42938) C:\Windows\system32\drivers\UBHelper.sys
21:53:50.0077 1884 UBHelper - ok
21:53:50.0205 1884 udfs (d9728af68c4c7693cb100b8441cbdec6) C:\Windows\system32\DRIVERS\udfs.sys
21:53:50.0225 1884 udfs - ok
21:53:50.0291 1884 UI0Detect (ecef404f62863755951e09c802c94ad5) C:\Windows\system32\UI0Detect.exe
21:53:50.0344 1884 UI0Detect - ok
21:53:50.0369 1884 uliagpkx (b0acfdc9e4af279e9116c03e014b2b27) C:\Windows\system32\drivers\uliagpkx.sys
21:53:50.0379 1884 uliagpkx - ok
21:53:50.0426 1884 uliahci (9224bb254f591de4ca8d572a5f0d635c) C:\Windows\system32\drivers\uliahci.sys
21:53:50.0441 1884 uliahci - ok
21:53:50.0523 1884 UlSata (8514d0e5cd0534467c5fc61be94a569f) C:\Windows\system32\drivers\ulsata.sys
21:53:50.0533 1884 UlSata - ok
21:53:50.0561 1884 ulsata2 (38c3c6e62b157a6bc46594fada45c62b) C:\Windows\system32\drivers\ulsata2.sys
21:53:50.0574 1884 ulsata2 - ok
21:53:50.0590 1884 umbus (32cff9f809ae9aed85464492bf3e32d2) C:\Windows\system32\DRIVERS\umbus.sys
21:53:50.0623 1884 umbus - ok
21:53:50.0720 1884 upnphost (68308183f4ae0be7bf8ecd07cb297999) C:\Windows\System32\upnphost.dll
21:53:50.0774 1884 upnphost - ok
21:53:50.0933 1884 usbaudio (32db9517628ff0d070682aab61e688f0) C:\Windows\system32\drivers\usbaudio.sys
21:53:50.0980 1884 usbaudio - ok
21:53:51.0103 1884 usbccgp (caf811ae4c147ffcd5b51750c7f09142) C:\Windows\system32\DRIVERS\usbccgp.sys
21:53:51.0137 1884 usbccgp - ok
21:53:51.0217 1884 usbcir (e9476e6c486e76bc4898074768fb7131) C:\Windows\system32\drivers\usbcir.sys
21:53:51.0287 1884 usbcir - ok
21:53:51.0324 1884 usbehci (79e96c23a97ce7b8f14d310da2db0c9b) C:\Windows\system32\DRIVERS\usbehci.sys
21:53:51.0345 1884 usbehci - ok
21:53:51.0457 1884 usbhub (4673bbcb006af60e7abddbe7a130ba42) C:\Windows\system32\DRIVERS\usbhub.sys
21:53:51.0476 1884 usbhub - ok
21:53:51.0583 1884 usbohci (ce697fee0d479290d89bec80dfe793b7) C:\Windows\system32\DRIVERS\usbohci.sys
21:53:51.0615 1884 usbohci - ok
21:53:51.0637 1884 usbprint (b51e52acf758be00ef3a58ea452fe360) C:\Windows\system32\drivers\usbprint.sys
21:53:51.0702 1884 usbprint - ok
21:53:51.0771 1884 USBSTOR (be3da31c191bc222d9ad503c5224f2ad) C:\Windows\system32\DRIVERS\USBSTOR.SYS
21:53:51.0798 1884 USBSTOR - ok
21:53:51.0820 1884 usbuhci (814d653efc4d48be3b04a307eceff56f) C:\Windows\system32\DRIVERS\usbuhci.sys
21:53:51.0837 1884 usbuhci - ok
21:53:51.0902 1884 usbvideo (e67998e8f14cb0627a769f6530bcb352) C:\Windows\system32\Drivers\usbvideo.sys
21:53:51.0937 1884 usbvideo - ok
21:53:51.0987 1884 UxSms (1509e705f3ac1d474c92454a5c2dd81f) C:\Windows\System32\uxsms.dll
21:53:52.0015 1884 UxSms - ok
21:53:52.0298 1884 vds (cd88d1b7776dc17a119049742ec07eb4) C:\Windows\System32\vds.exe
21:53:52.0341 1884 vds - ok
21:53:52.0404 1884 vga (87b06e1f30b749a114f74622d013f8d4) C:\Windows\system32\DRIVERS\vgapnp.sys
21:53:52.0433 1884 vga - ok
21:53:52.0485 1884 VgaSave (2e93ac0a1d8c79d019db6c51f036636c) C:\Windows\System32\drivers\vga.sys
21:53:52.0525 1884 VgaSave - ok
21:53:52.0545 1884 viaagp (5d7159def58a800d5781ba3a879627bc) C:\Windows\system32\drivers\viaagp.sys
21:53:52.0556 1884 viaagp - ok
21:53:52.0577 1884 ViaC7 (c4f3a691b5bad343e6249bd8c2d45dee) C:\Windows\system32\drivers\viac7.sys
21:53:52.0602 1884 ViaC7 - ok
21:53:52.0626 1884 viaide (aadf5587a4063f52c2c3fed7887426fc) C:\Windows\system32\drivers\viaide.sys
21:53:52.0638 1884 viaide - ok
21:53:52.0662 1884 volmgr (69503668ac66c77c6cd7af86fbdf8c43) C:\Windows\system32\drivers\volmgr.sys
21:53:52.0673 1884 volmgr - ok
21:53:52.0758 1884 volmgrx (23e41b834759917bfd6b9a0d625d0c28) C:\Windows\system32\drivers\volmgrx.sys
21:53:52.0774 1884 volmgrx - ok
21:53:52.0930 1884 volsnap (147281c01fcb1df9252de2a10d5e7093) C:\Windows\system32\drivers\volsnap.sys
21:53:52.0945 1884 volsnap - ok
21:53:52.0976 1884 vsmraid (587253e09325e6bf226b299774b728a9) C:\Windows\system32\drivers\vsmraid.sys
21:53:52.0988 1884 vsmraid - ok
21:53:53.0207 1884 VSS (db3d19f850c6eb32bdcb9bc0836acddb) C:\Windows\system32\vssvc.exe
21:53:53.0257 1884 VSS - ok
21:53:53.0437 1884 W32Time (96ea68b9eb310a69c25ebb0282b2b9de) C:\Windows\system32\w32time.dll
21:53:53.0460 1884 W32Time - ok
21:53:53.0534 1884 WacomPen (48dfee8f1af7c8235d4e626f0c4fe031) C:\Windows\system32\drivers\wacompen.sys
21:53:53.0577 1884 WacomPen - ok
21:53:53.0641 1884 Wanarp (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
21:53:53.0659 1884 Wanarp - ok
21:53:53.0662 1884 Wanarpv6 (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
21:53:53.0681 1884 Wanarpv6 - ok
21:53:53.0738 1884 wcncsvc (a3cd60fd826381b49f03832590e069af) C:\Windows\System32\wcncsvc.dll
21:53:53.0776 1884 wcncsvc - ok
21:53:53.0823 1884 WcsPlugInService (11bcb7afcdd7aadacb5746f544d3a9c7) C:\Windows\System32\WcsPlugInService.dll
21:53:53.0849 1884 WcsPlugInService - ok
21:53:53.0889 1884 Wd (78fe9542363f297b18c027b2d7e7c07f) C:\Windows\system32\drivers\wd.sys
21:53:53.0899 1884 Wd - ok
21:53:54.0022 1884 Wdf01000 (b6f0a7ad6d4bd325fbcd8bac96cd8d96) C:\Windows\system32\drivers\Wdf01000.sys
21:53:54.0046 1884 Wdf01000 - ok
21:53:54.0114 1884 WdiServiceHost (abfc76b48bb6c96e3338d8943c5d93b5) C:\Windows\system32\wdi.dll
21:53:54.0140 1884 WdiServiceHost - ok
21:53:54.0143 1884 WdiSystemHost (abfc76b48bb6c96e3338d8943c5d93b5) C:\Windows\system32\wdi.dll
21:53:54.0169 1884 WdiSystemHost - ok
21:53:54.0283 1884 WebClient (04c37d8107320312fbae09926103d5e2) C:\Windows\System32\webclnt.dll
21:53:54.0309 1884 WebClient - ok
21:53:54.0370 1884 Wecsvc (ae3736e7e8892241c23e4ebbb7453b60) C:\Windows\system32\wecsvc.dll
21:53:54.0384 1884 Wecsvc - ok
21:53:54.0450 1884 wercplsupport (670ff720071ed741206d69bd995ea453) C:\Windows\System32\wercplsupport.dll
21:53:54.0471 1884 wercplsupport - ok
21:53:54.0532 1884 WerSvc (32b88481d3b326da6deb07b1d03481e7) C:\Windows\System32\WerSvc.dll
21:53:54.0569 1884 WerSvc - ok
21:53:54.0691 1884 WinDefend (4575aa12561c5648483403541d0d7f2b) C:\Program Files\Windows Defender\mpsvc.dll
21:53:54.0733 1884 WinDefend - ok
21:53:54.0744 1884 WinHttpAutoProxySvc - ok
21:53:54.0855 1884 Winmgmt (6b2a1d0e80110e3d04e6863c6e62fd8a) C:\Windows\system32\wbem\WMIsvc.dll
21:53:54.0967 1884 Winmgmt - ok
21:53:55.0192 1884 WinRM (7cfe68bdc065e55aa5e8421607037511) C:\Windows\system32\WsmSvc.dll
21:53:55.0272 1884 WinRM - ok
21:53:55.0447 1884 Wlansvc (c008405e4feeb069e30da1d823910234) C:\Windows\System32\wlansvc.dll
21:53:55.0493 1884 Wlansvc - ok
21:53:55.0740 1884 wlcrasvc (6067acef367e79914af628fa1e9b5330) C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
21:53:55.0766 1884 wlcrasvc - ok
21:53:56.0201 1884 wlidsvc (fb01d4ae207b9efdbabfc55dc95c7e31) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
21:53:56.0430 1884 wlidsvc - ok
21:53:56.0871 1884 WmiAcpi (2e7255d172df0b8283cdfb7b433b864e) C:\Windows\system32\DRIVERS\wmiacpi.sys
21:53:56.0891 1884 WmiAcpi - ok
21:53:56.0993 1884 wmiApSrv (43be3875207dcb62a85c8c49970b66cc) C:\Windows\system32\wbem\WmiApSrv.exe
21:53:57.0028 1884 wmiApSrv - ok
21:53:57.0440 1884 WMPNetworkSvc (3978704576a121a9204f8cc49a301a9b) C:\Program Files\Windows Media Player\wmpnetwk.exe
21:53:57.0818 1884 WMPNetworkSvc - ok
21:53:57.0865 1884 WPCSvc (cfc5a04558f5070cee3e3a7809f3ff52) C:\Windows\System32\wpcsvc.dll
21:53:57.0884 1884 WPCSvc - ok
21:53:57.0928 1884 WPDBusEnum (801fbdb89d472b3c467eb112a0fc9246) C:\Windows\system32\wpdbusenum.dll
21:53:57.0976 1884 WPDBusEnum - ok
21:53:58.0129 1884 WPFFontCache_v0400 (dcf3e3edf5109ee8bc02fe6e1f045795) C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
21:53:58.0195 1884 WPFFontCache_v0400 - ok
21:53:58.0295 1884 ws2ifsl (e3a3cb253c0ec2494d4a61f5e43a389c) C:\Windows\system32\drivers\ws2ifsl.sys
21:53:58.0319 1884 ws2ifsl - ok
21:53:58.0413 1884 wscsvc (1ca6c40261ddc0425987980d0cd2aaab) C:\Windows\System32\wscsvc.dll
21:53:58.0437 1884 wscsvc - ok
21:53:58.0442 1884 WSearch - ok
21:53:58.0785 1884 wuauserv (fc3ec24fce372c89423e015a2ac1a31e) C:\Windows\system32\wuaueng.dll
21:53:58.0868 1884 wuauserv - ok
21:53:59.0056 1884 WUDFRd (ac13cb789d93412106b0fb6c7eb2bcb6) C:\Windows\system32\DRIVERS\WUDFRd.sys
21:53:59.0086 1884 WUDFRd - ok
21:53:59.0104 1884 wudfsvc (575a4190d989f64732119e4114045a4f) C:\Windows\System32\WUDFSvc.dll
21:53:59.0152 1884 wudfsvc - ok
21:53:59.0317 1884 yukonwlh (04e268adfc81964c49dc0c082d520f7e) C:\Windows\system32\DRIVERS\yk60x86.sys
21:53:59.0355 1884 yukonwlh - ok
21:53:59.0411 1884 MBR (0x1B8) (4e21d458a40c15e660464d81bf7302e4) \Device\Harddisk0\DR0
21:54:02.0881 1884 \Device\Harddisk0\DR0 - ok
21:54:02.0919 1884 Boot (0x1200) (8a93c2c2c0e6344a3cae9126b6eec067) \Device\Harddisk0\DR0\Partition0
21:54:02.0937 1884 \Device\Harddisk0\DR0\Partition0 - ok
21:54:02.0958 1884 Boot (0x1200) (88e0fbccb19f258c6dbd49064bb74793) \Device\Harddisk0\DR0\Partition1
21:54:02.0971 1884 \Device\Harddisk0\DR0\Partition1 - ok
21:54:02.0972 1884 ============================================================
21:54:02.0972 1884 Scan finished
21:54:02.0972 1884 ============================================================
21:54:03.0018 1624 Detected object count: 6
21:54:03.0018 1624 Actual detected object count: 6
21:54:23.0638 1624 C:\Program Files\Bouygues Telecom\Internet 3G+\RcAppSvc.exe - copied to quarantine
21:54:23.0638 1624 HKLM\SYSTEM\ControlSet001\services\BouyguesRcAppSvc - will be deleted on reboot
21:54:23.0681 1624 HKLM\SYSTEM\ControlSet002\services\BouyguesRcAppSvc - will be deleted on reboot
21:54:23.0737 1624 C:\Program Files\Bouygues Telecom\Internet 3G+\RcAppSvc.exe - will be deleted on reboot
21:54:23.0737 1624 BouyguesRcAppSvc ( UnsignedFile.Multi.Generic ) - User select action: Delete
21:54:23.0778 1624 C:\Program Files\Bouygues Telecom\Internet 3G+\conappssvc.exe - copied to quarantine
21:54:23.0779 1624 HKLM\SYSTEM\ControlSet001\services\CABouygues - will be deleted on reboot
21:54:23.0790 1624 HKLM\SYSTEM\ControlSet002\services\CABouygues - will be deleted on reboot
21:54:23.0792 1624 C:\Program Files\Bouygues Telecom\Internet 3G+\conappssvc.exe - will be deleted on reboot
21:54:23.0792 1624 CABouygues ( UnsignedFile.Multi.Generic ) - User select action: Delete
21:54:23.0875 1624 C:\Program Files\Common Files\LightScribe\LSSrvc.exe - copied to quarantine
21:54:23.0876 1624 HKLM\SYSTEM\ControlSet001\services\LightScribeService - will be deleted on reboot
21:54:23.0886 1624 HKLM\SYSTEM\ControlSet002\services\LightScribeService - will be deleted on reboot
21:54:23.0889 1624 C:\Program Files\Common Files\LightScribe\LSSrvc.exe - will be deleted on reboot
21:54:23.0889 1624 LightScribeService ( UnsignedFile.Multi.Generic ) - User select action: Delete
21:54:23.0981 1624 C:\Program Files\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe - copied to quarantine
21:54:23.0981 1624 HKLM\SYSTEM\ControlSet001\services\NTIBackupSvc - will be deleted on reboot
21:54:23.0982 1624 HKLM\SYSTEM\ControlSet002\services\NTIBackupSvc - will be deleted on reboot
21:54:23.0985 1624 C:\Program Files\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe - will be deleted on reboot
21:54:23.0985 1624 NTIBackupSvc ( UnsignedFile.Multi.Generic ) - User select action: Delete
21:54:24.0006 1624 C:\Program Files\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe - copied to quarantine
21:54:24.0006 1624 HKLM\SYSTEM\ControlSet001\services\NTISchedulerSvc - will be deleted on reboot
21:54:24.0007 1624 HKLM\SYSTEM\ControlSet002\services\NTISchedulerSvc - will be deleted on reboot
21:54:24.0020 1624 C:\Program Files\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe - will be deleted on reboot
21:54:24.0020 1624 NTISchedulerSvc ( UnsignedFile.Multi.Generic ) - User select action: Delete
21:54:24.0069 1624 C:\Windows\system32\drivers\StarOpen.sys - copied to quarantine
21:54:24.0069 1624 HKLM\SYSTEM\ControlSet001\services\StarOpen - will be deleted on reboot
21:54:24.0085 1624 HKLM\SYSTEM\ControlSet002\services\StarOpen - will be deleted on reboot
21:54:24.0088 1624 C:\Windows\system32\drivers\StarOpen.sys - will be deleted on reboot
21:54:24.0088 1624 StarOpen ( UnsignedFile.Multi.Generic ) - User select action: Delete

un jour j'irai vivre en Théorie , car en théorie tout se passe bien !
Nolam
0
Réponse 9 / 13
nolam. Messages postés 22 Statut Membre
 
Rapport Malwaresbytes complet

Malwarebytes Anti-Malware (Essai) 1.62.0.1300
www.malwarebytes.org

Version de la base de données: v2012.08.08.01

Windows Vista Service Pack 2 x86 NTFS (Mode sans échec/Réseau)
Internet Explorer 9.0.8112.16421
Clotilde :: PC-DE-CLO [administrateur]

Protection: Désactivé

09/08/2012 21:22:48
mbam-log-2012-08-09 (21-22-48).txt

Type d'examen: Examen complet (C:\|D:\|E:\|F:\|H:\|I:\|J:\|)
Options d'examen activées: Mémoire | Démarrage | Registre | Système de fichiers | Heuristique/Extra | Heuristique/Shuriken | PUP | PUM
Options d'examen désactivées: P2P
Elément(s) analysé(s): 367126
Temps écoulé: 49 minute(s), 21 seconde(s)

Processus mémoire détecté(s): 0
(Aucun élément nuisible détecté)

Module(s) mémoire détecté(s): 0
(Aucun élément nuisible détecté)

Clé(s) du Registre détectée(s): 0
(Aucun élément nuisible détecté)

Valeur(s) du Registre détectée(s): 0
(Aucun élément nuisible détecté)

Elément(s) de données du Registre détecté(s): 0
(Aucun élément nuisible détecté)

Dossier(s) détecté(s): 0
(Aucun élément nuisible détecté)

Fichier(s) détecté(s): 1
C:\Users\Clotilde\Downloads\winlogon.exe (Heuristics.Reserved.Word.Exploit) -> Mis en quarantaine et supprimé avec succès.

(fin)
0
Réponse 10 / 13
nolam. Messages postés 22 Statut Membre
 
UP help
0
Réponse 11 / 13
juju666 Messages postés 35446 Date d'inscription   Statut Contributeur sécurité Dernière intervention   4 796
 
tu fais n'importe quoi, si je répond pas c'est que je suis pas là, j'ai une vie.

aider des gens qui font n'importe quoi ça m'intéresse pas, bye
0
nolam. Messages postés 22 Statut Membre
 
Excuse moi mais je suis en panique donc j'essai d'avancer le shmilbllick !!!!
Je pensais que d'autre serait en mesure de m'aider !
J'essaye des possibilitées que je trouve un peu partout sur le web !!!
Désolée de n'être qu'une "bonne femme " ! Je suis surement pas aussi calée que certain en ordi (sinon je ne serai pas sur ce forum )
Je fais ce que je peux et je pensais pouvoir trouver de l'aide !
0
Réponse 12 / 13
juju666 Messages postés 35446 Date d'inscription   Statut Contributeur sécurité Dernière intervention   4 796
 
re

SI tu me confirme que tu ne feras QUE ce que je demande

ALORS je veux bien continuer à t'aider

UNIQUEMENT si cette condition est respectée

CAR actuellement tu vas péter ta machine si tu continue
0
Réponse 13 / 13
juju666 Messages postés 35446 Date d'inscription   Statut Contributeur sécurité Dernière intervention   4 796
 
Télécharge sur cette page: AdwCleaner (de Xplode)

▶ Lance-le

clique sur Suppression et patiente le temps du nettoyage.

▶ Poste le contenu du rapport que tu trouveras dans ton disque dur c:\ADwcleaner[Sx].txt ou son contenu s'il s'ouvre.
0

Discussions similaires

ne pas utiliser la souris mais le clavier
isabela -
thomas-richet -

32 réponses
Qu'est ce qu'un blanc tournant?
Ma_ama -
.eric -

2 réponses
Ma souris fonctionne mais ne clique plus
JusteAmoureuse -
pols12 -

1 réponse
♡ Coeur vide : Comment le faire ? (Solution !)
Paria -
2008G.C -

60 réponses