Sujet Précédent Sujet Suivant

Virus, blue screen redondant en utilisant malwarebytes

thib -  
 Utilisateur anonyme -
Bonjour,

Mon ordi est un macboock très récent, dont une partie du DD est partitionné en mac OS, et l'autre en Windows 7.

Il y a deux-trois jours, en j'ai tenté d'éteindre mon pc (j'étais sous windows alors), il ne s'éteignait pas, et un blue screen est apparu.

Dès lors, impossible de démarrer mon pc autrement qu'en mode sans échec, en effet, en mode normal, le simple fait de passer la souris sur le bouton démarrer ou sur une icone du bureau génère un freeze, voir un black screen / blue screen.

Après recherche sur internet, j'ai vu une situation similaire: la solution : désinstaller avast, ce que j'ai fait (et non je n'ai pas d'autre anti virus installé). Une fois cela fait, mon ordi "remarchait" ou du moins je pouvais l'utiliser en mode normal.
j'ai donc réinstaller avast, et là, patatra, même situation qu'au départ. je redésinstalle avast et installe malwarebytes. Là, même situation, seul le mode sans échec me permet d'utiliser mon ordi. (le virus m'empêcherait il de faire quoi que ce soit s'il détecte un anti virus ou une menace du genre ?)
Après plusieurs éssais, j'arrive a scanner mon disque partitionné windows, et élimine un malware : Boxore, qui m'avait infecté environ 65 fichiers.
en tentant de scanner ma partition mac Os : toujours le même problème : un blue screen avec ce message :

STOP:0x0000008E (0xC0000005,0x82641585,0x00000000)

Je ne sais plus quoi faire, d'autant plus que je ne peux actuellement pas formater mon ordi pour 2 raisons:
1 je n'ai pas mon cd windows
2) je ne sais pas comment gèrer le fait que je sois en bootcamp (quelqu'un l'a installé pour moi)

donc en gros : à l'aide :)

A voir également:

40 réponses

Précédent
  • 1
  • 2
Réponse 21 / 40
Utilisateur anonyme
 
et ouais mais si tu prends des iniatives sans rien dire on s'en sortira jamais !
0
Réponse 22 / 40
thib
 
adw

# AdwCleaner v2.005 - Rapport créé le 21/10/2012 à 22:11:57
# Mis à jour le 14/10/2012 par Xplode
# Système d'exploitation : Windows 7 Professional Service Pack 1 (32 bits)
# Nom d'utilisateur : Thibaud Brucker - THIBAUDBRUCKER
# Mode de démarrage : Mode sans échec avec prise en charge réseau
# Exécuté depuis : C:\Users\Thibaud Brucker\Desktop\adwcleaner.exe
# Option [Suppression]

***** [Services] *****

***** [Fichiers / Dossiers] *****

***** [Registre] *****

***** [Navigateurs] *****

-\\ Internet Explorer v9.0.8112.16421

[OK] Le registre ne contient aucune entrée illégitime.

-\\ Google Chrome v22.0.1229.94

Fichier : C:\Users\Thibaud Brucker\AppData\Local\Google\Chrome\User Data\Default\Preferences

[OK] Le fichier ne contient aucune entrée illégitime.

*************************

AdwCleaner[S1].txt - [4908 octets] - [21/10/2012 13:51:56]
AdwCleaner[S2].txt - [895 octets] - [21/10/2012 22:11:57]

########## EOF - C:\AdwCleaner[S2].txt - [954 octets]

puis diag avec pre scan

##########https://forums-fec.be/upload/www/?a=d&i=1332672469
0
Réponse 23 / 40
Utilisateur anonyme
 
ok touche plus rien j'etudie ca
0
Réponse 24 / 40
Utilisateur anonyme
 
Attention !!! pense à re-désactiver tes protections

Clique sur ce lien : https://www.cjoint.com/?BJvwPBU7Kbu

Selectionne tout le texte qui s'y trouve CTRL+A puis CTRL+C ou clic droit/copier

Relance Pre_scan puis choisis l'option "Script"

une page va s'ouvrir

logiquement le texte que tu as sélectionné s'y trouve déjà , donc tu fermes et le programme va travailler.

sinon colle-le (clic droit/coller ou ctrl+V) dans la page vierge.

puis onglet fichier => enregistrer (pas enregistrer sous...) , puis ferme le texte

des fenetres noires risquent de clignoter , c'est normal , c'est le programme qui travaille

poste Pre_Script.txt qui apparaitra sur le bureau en fin de travail
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 25 / 40
thib
 
je ne touche plus à rien, désolé
bon courage et merci
0
Utilisateur anonyme
 
ca se passe au dessus :)
0
Réponse 26 / 40
thib
 
¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Pre_Script | 2.1021 ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

Thibaud Brucker : Windows 7 Professional (32 bits)

Switchs : http://gen-hackman.forum-pro.fr/t89-les-switchs

New restorepoint created

Script : 23:03:59

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

¤¤¤¤¤¤¤¤¤¤ | Registry Deletions

Value Deleted : [HKU\S-1-5-21-3815587783-467416048-1831426794-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce]:Report
Value Deleted : [HKU\S-1-5-21-3815587783-467416048-1831426794-1000\Software\Microsoft\Internet Explorer\URLSearchHooks]:{ef79f67a-6ad7-4715-a0f8-932fca442023}
Key Deleted : HKCR\Installer\Products\AF2CF8FE20EBB4443855807CA5D6E7A3
Key Deleted : HKCR\AppId\SoftwareUpdate.exe
Key Deleted : HKCR\AppId\SoftwareUpdateAdmin.DLL

¤

Folder Quarantined and Deleted Successfully : |D| - C:\Windows\Installer\{EF8FC2FA-BE02-444B-8355-08C75A6D7E3A}
Impossible to move Folder : |D| - C:\Users\Thibaud Brucker\Desktop\Sk*
Folder Quarantined and Deleted Successfully : |D| - C:\Windows\system32\config\systemprofile\AppData\Local\Software

¤¤¤¤¤¤¤¤¤¤ | MBR

Windows Version: Windows 7 Professional
Windows Information: Service Pack 1 (build 7601), 32-bit
Logical Drives Mask: 0x0000005c

Analysis of file "C:\Pre_Scan\MBR.bin":
Windows 7 MBR code detected

¤

¤¤¤¤¤¤¤¤¤¤ | Disk cleaning

Disk cleaned

¤

Fin : 23:04:15

¤¤¤¤¤¤¤¤¤¤ ( EOF ) ¤¤¤¤¤¤¤¤¤¤
0
Réponse 27 / 40
Utilisateur anonyme
 
ok retente un scan complet avec malwarebytes ?
0
Réponse 28 / 40
thib
 
j'ai tenté de scan mon E:
il a planté au bout du 1211ème fichié, lorsqu'il analysait C\windows\system32\DRIVERS\I8042PRT.SYS
au bout de 5 minutes blue screen avec comme mess d'erreur:
STOP:0x0000008E (0xC0000005,0x8267A585,0x00000000)
j'ai mis en gras souligné le morceau qui n'était pas le même que l'erreur initiale
je vais tester le C en attendant

ps j'ai tout fait en mode ss echec
0
Réponse 29 / 40
Utilisateur anonyme
 
j'ai tenté de scan mon E:
il a planté au bout du 1211ème fichié, lorsqu'il analysait C\windows\system32\DRIVERS\I8042PRT.SYS

????????????????????????
0
Réponse 30 / 40
thib
 
lors d'une analyse, l'interface de malwarebytes me dit
élé analysés :1211
élé infectés:0
type d'examen: exa complet
temps écoulé 14 sec
en cours d'analyse:
C\windows\system32\DRIVERS\I8042PRT.SYS

ca a freeze à ce moment là, au bout de 5 min de freeze, blue screen

le E est l'endroit où j'ai ma partition mac OS
le Cest là où j'ai windows
0
Réponse 31 / 40
Utilisateur anonyme
 
Fais analyser le(s) fichier(s) suivants sur Virustotal :

Virus Total

clique sur "Parcourir" et trouve puis selectionne ce(s) fichier(s) :

C:\windows\system32\DRIVERS\I8042PRT.SYS

* Clique maintenant sur Envoyer le fichier. et laisse travailler tant que "Situation actuelle : en cours d'analyse" est affiché.
* Il est possible que le fichier soit mis en file d'attente en raison d'un grand nombre de demandes d'analyses. En ce cas, il te faudra patienter sans actualiser la page.
* Lorsque l'analyse est terminée colle le lien de(s)( la) page(s) dans ta prochaine réponse.
0
Réponse 32 / 40
thib
 
il me dit qu'il ne trouve rien (0/je ne sais cb)
par contre j'ai ptet un indice:
je viens d'essayer de faire une analyse malewarebytes sur mon C: pareil un feeze sur un fichier :
C:\windows\system32\DRIVERS\IAstorv.SYS
Par contre, j'ai un peu bousculé mon ordi en lançant internet, il a un peu paniqué, mais malwarebytes s'est débloqué et m'est réapparu avec un nombre de fichier scannés de 35000 et quelques.
NB ce fichier IASTORV est juste enPRT dessous de I8042PRT, donc malware bytes semble avoir des gros ralentissements en allant dans ces environs
PS j'ai scanné IASTORV avec virus total : RAS
en attendant jvais scanner quelques autres fichiers des environs
0
Réponse 33 / 40
Utilisateur anonyme
 
▶ Télécharge Reload_TDSSKiller

▶ Lance le

choisis : lancer le nettoyage

l'outil va automatiquement télécharger la derniere version puis

TDSSKiller va s'ouvrir , clique sur "Start Scan"

Si TDSS.tdl2 est détecté l''option delete sera cochée par défaut.
Si TDSS.tdl3 est détecté assure toi que Cure est bien cochée.
Si TDSS.tdl4(\HardDisk0\MBR) est détecté assure toi que Cure est bien cochée.
Si Suspicious file est indiqué, laisse l''option cochée sur Skip
Si Rootkit.Win32.ZAccess.* est détecté règle sur "cure" en haut , et "delete" en bas

une fois qu'il a terminé , redemarre s'il te le demande pour finir de nettoyer

sinon , ferme tdssKiller et le rapport s'affichera sur le bureau

▶ Copie/Colle son contenu dans ta prochaine réponse.

0
Réponse 34 / 40
thib
 
00:05:04.0206 0772 TDSS rootkit removing tool 2.8.13.0 Oct 12 2012 17:26:47
00:05:04.0269 0772 ============================================================
00:05:04.0269 0772 Current date / time: 2012/10/22 00:05:04.0269
00:05:04.0269 0772 SystemInfo:
00:05:04.0269 0772
00:05:04.0269 0772 OS Version: 6.1.7601 ServicePack: 1.0
00:05:04.0269 0772 Product type: Workstation
00:05:04.0269 0772 ComputerName: THIBAUDBRUCKER
00:05:04.0269 0772 UserName: Thibaud Brucker
00:05:04.0269 0772 Windows directory: C:\Windows
00:05:04.0269 0772 System windows directory: C:\Windows
00:05:04.0269 0772 Processor architecture: Intel x86
00:05:04.0269 0772 Number of processors: 8
00:05:04.0269 0772 Page size: 0x1000
00:05:04.0269 0772 Boot type: Safe boot with network
00:05:04.0269 0772 ============================================================
00:05:05.0330 0772 Drive \Device\Harddisk0\DR0 - Size: 0xAEA8CDE000 (698.64 Gb), SectorSize: 0x200, Cylinders: 0x16441, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
00:05:05.0330 0772 ============================================================
00:05:05.0330 0772 \Device\Harddisk0\DR0:
00:05:05.0330 0772 GPT partitions:
00:05:05.0330 0772 \Device\Harddisk0\DR0\Partition1: GPT, TypeGUID: {C12A7328-F81F-11D2-BA4B-00A0C93EC93B}, UniqueGUID: {00001D84-70DB-0000-1351-0000A4480000}, Name: EFI system partition, StartLBA 0x28, BlocksNum 0x64000
00:05:05.0330 0772 \Device\Harddisk0\DR0\Partition2: GPT, TypeGUID: {48465300-0000-11AA-AA11-00306543ECAC}, UniqueGUID: {00006474-67E7-0000-9A7D-00004C2E0000}, Name: Customer, StartLBA 0x64028, BlocksNum 0x2B8A1180
00:05:05.0330 0772 \Device\Harddisk0\DR0\Partition3: GPT, TypeGUID: {426F6F74-0000-11AA-AA11-00306543ECAC}, UniqueGUID: {02E2A03E-6817-4519-8209-B0380806BC14}, Name: Recovery HD, StartLBA 0x2B9051A8, BlocksNum 0x135F20
00:05:05.0330 0772 \Device\Harddisk0\DR0\Partition4: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {9E54DFFC-499A-40F3-9345-5FC341018CBA}, Name: BOOTCAMP, StartLBA 0x2BA3B800, BlocksNum 0x2BB0A800
00:05:05.0330 0772 MBR partitions:
00:05:05.0330 0772 \Device\Harddisk0\DR0\Partition5: MBR, Type 0x7, StartLBA 0x2BA3B800, BlocksNum 0x2BB0A800
00:05:05.0330 0772 ============================================================
00:05:05.0361 0772 C: <-> \Device\Harddisk0\DR0\Partition5
00:05:05.0361 0772 ============================================================
00:05:05.0361 0772 Initialize success
00:05:05.0361 0772 ============================================================
00:05:23.0685 0612 ============================================================
00:05:23.0685 0612 Scan started
00:05:23.0685 0612 Mode: Manual;
00:05:23.0685 0612 ============================================================
00:05:24.0341 0612 ================ Scan system memory ========================
00:05:24.0341 0612 System memory - ok
00:05:24.0341 0612 ================ Scan services =============================
00:05:24.0481 0612 [ 1B133875B8AA8AC48969BD3458AFE9F5 ] 1394ohci C:\Windows\system32\DRIVERS\1394ohci.sys
00:05:24.0481 0612 1394ohci - ok
00:05:24.0528 0612 [ CEA80C80BED809AA0DA6FEBC04733349 ] ACPI C:\Windows\system32\drivers\ACPI.sys
00:05:24.0528 0612 ACPI - ok
00:05:24.0575 0612 [ 79D6B28027C398B728CE7CD0570248B0 ] acpials C:\Windows\system32\DRIVERS\acpials.sys
00:05:24.0590 0612 acpials - ok
00:05:24.0606 0612 [ 1EFBC664ABFF416D1D07DB115DCB264F ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
00:05:24.0606 0612 AcpiPmi - ok
00:05:24.0699 0612 [ D19C4EE2AC7C47B8F5F84FFF1A789D8A ] AdobeARMservice C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
00:05:24.0699 0612 AdobeARMservice - ok
00:05:24.0731 0612 [ 21E785EBD7DC90A06391141AAC7892FB ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
00:05:24.0746 0612 adp94xx - ok
00:05:24.0762 0612 [ 0C676BC278D5B59FF5ABD57BBE9123F2 ] adpahci C:\Windows\system32\drivers\adpahci.sys
00:05:24.0762 0612 adpahci - ok
00:05:24.0762 0612 [ 7C7B5EE4B7B822EC85321FE23A27DB33 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
00:05:24.0762 0612 adpu320 - ok
00:05:24.0793 0612 [ 8B5EEFEEC1E6D1A72A06C526628AD161 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
00:05:24.0793 0612 AeLookupSvc - ok
00:05:24.0824 0612 [ 9EBBBA55060F786F0FCAA3893BFA2806 ] AFD C:\Windows\system32\drivers\afd.sys
00:05:24.0824 0612 AFD - ok
00:05:24.0840 0612 [ 507812C3054C21CEF746B6EE3D04DD6E ] agp440 C:\Windows\system32\drivers\agp440.sys
00:05:24.0840 0612 agp440 - ok
00:05:24.0871 0612 [ 8B30250D573A8F6B4BD23195160D8707 ] aic78xx C:\Windows\system32\drivers\djsvs.sys
00:05:24.0871 0612 aic78xx - ok
00:05:24.0902 0612 [ 18A54E132947CD98FEA9ACCC57F98F13 ] ALG C:\Windows\System32\alg.exe
00:05:24.0902 0612 ALG - ok
00:05:24.0933 0612 [ 0D40BCF52EA90FC7DF2AEAB6503DEA44 ] aliide C:\Windows\system32\drivers\aliide.sys
00:05:24.0933 0612 aliide - ok
00:05:24.0949 0612 [ 3C6600A0696E90A463771C7422E23AB5 ] amdagp C:\Windows\system32\drivers\amdagp.sys
00:05:24.0949 0612 amdagp - ok
00:05:24.0949 0612 [ CD5914170297126B6266860198D1D4F0 ] amdide C:\Windows\system32\drivers\amdide.sys
00:05:24.0949 0612 amdide - ok
00:05:24.0980 0612 [ 00DDA200D71BAC534BF56A9DB5DFD666 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
00:05:24.0980 0612 AmdK8 - ok
00:05:25.0011 0612 [ 3CBF30F5370FDA40DD3E87DF38EA53B6 ] AmdPPM C:\Windows\system32\drivers\amdppm.sys
00:05:25.0011 0612 AmdPPM - ok
00:05:25.0043 0612 [ D320BF87125326F996D4904FE24300FC ] amdsata C:\Windows\system32\drivers\amdsata.sys
00:05:25.0058 0612 amdsata - ok
00:05:25.0074 0612 [ EA43AF0C423FF267355F74E7A53BDABA ] amdsbs C:\Windows\system32\drivers\amdsbs.sys
00:05:25.0074 0612 amdsbs - ok
00:05:25.0089 0612 [ 46387FB17B086D16DEA267D5BE23A2F2 ] amdxata C:\Windows\system32\drivers\amdxata.sys
00:05:25.0089 0612 amdxata - ok
00:05:25.0105 0612 [ AEA177F783E20150ACE5383EE368DA19 ] AppID C:\Windows\system32\drivers\appid.sys
00:05:25.0105 0612 AppID - ok
00:05:25.0167 0612 [ 62A9C86CB6085E20DB4823E4E97826F5 ] AppIDSvc C:\Windows\System32\appidsvc.dll
00:05:25.0167 0612 AppIDSvc - ok
00:05:25.0183 0612 [ FB1959012294D6AD43E5304DF65E3C26 ] Appinfo C:\Windows\System32\appinfo.dll
00:05:25.0183 0612 Appinfo - ok
00:05:25.0245 0612 [ F401929EE0CC92BFE7F15161CA535383 ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
00:05:25.0245 0612 Apple Mobile Device - ok
00:05:25.0277 0612 [ CD4729AC3F6EE952BE8A447BA37C4B7F ] AppleBtBc C:\Windows\system32\DRIVERS\AppleBtBc.sys
00:05:25.0277 0612 AppleBtBc - ok
00:05:25.0308 0612 [ 19C8E4DD1D50D75EE65EE758D6FE8E44 ] AppleHFS C:\Windows\system32\drivers\AppleHFS.sys
00:05:25.0308 0612 AppleHFS - ok
00:05:25.0323 0612 [ 595014AE5FBF56B961FBDE6779C3E927 ] AppleMNT C:\Windows\system32\drivers\AppleMNT.sys
00:05:25.0323 0612 AppleMNT - ok
00:05:25.0370 0612 [ B99ED06DBAAE1809FB933308ACD6D799 ] applemtm C:\Windows\system32\DRIVERS\applemtm.sys
00:05:25.0370 0612 applemtm - ok
00:05:25.0401 0612 [ 3597F5352692E7AC4EC7D7B13C1961CE ] applemtp C:\Windows\system32\DRIVERS\applemtp.sys
00:05:25.0401 0612 applemtp - ok
00:05:25.0417 0612 [ BCF03F5ABE09BCA9FD41EB3F9D3E1C7E ] AppleOSSMgr C:\Windows\system32\AppleOSSMgr.exe
00:05:25.0417 0612 AppleOSSMgr - ok
00:05:25.0448 0612 [ 1B1C8A659785F6ADD9F9A939228C917F ] AppleTimeSrv C:\Windows\system32\AppleTimeSrv.exe
00:05:25.0448 0612 AppleTimeSrv - ok
00:05:25.0495 0612 [ A45D184DF6A8803DA13A0B329517A64A ] AppMgmt C:\Windows\System32\appmgmts.dll
00:05:25.0495 0612 AppMgmt - ok
00:05:25.0542 0612 [ 2932004F49677BD84DBC72EDB754FFB3 ] arc C:\Windows\system32\drivers\arc.sys
00:05:25.0542 0612 arc - ok
00:05:25.0542 0612 [ 5D6F36C46FD283AE1B57BD2E9FEB0BC7 ] arcsas C:\Windows\system32\drivers\arcsas.sys
00:05:25.0542 0612 arcsas - ok
00:05:25.0573 0612 [ ADD2ADE1C2B285AB8378D2DAAF991481 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
00:05:25.0573 0612 AsyncMac - ok
00:05:25.0573 0612 [ 338C86357871C167A96AB976519BF59E ] atapi C:\Windows\system32\drivers\atapi.sys
00:05:25.0573 0612 atapi - ok
00:05:25.0620 0612 [ CE3B4E731638D2EF62FCB419BE0D39F0 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
00:05:25.0635 0612 AudioEndpointBuilder - ok
00:05:25.0635 0612 [ CE3B4E731638D2EF62FCB419BE0D39F0 ] Audiosrv C:\Windows\System32\Audiosrv.dll
00:05:25.0635 0612 Audiosrv - ok
00:05:25.0667 0612 [ 6E30D02AAC9CAC84F421622E3A2F6178 ] AxInstSV C:\Windows\System32\AxInstSV.dll
00:05:25.0667 0612 AxInstSV - ok
00:05:25.0713 0612 [ 1A231ABEC60FD316EC54C66715543CEC ] b06bdrv C:\Windows\system32\drivers\bxvbdx.sys
00:05:25.0713 0612 b06bdrv - ok
00:05:25.0745 0612 [ 4BA3FE0B9F565A5E437227B53EF6F436 ] b57nd60x C:\Windows\system32\DRIVERS\b57nd60x.sys
00:05:25.0745 0612 b57nd60x - ok
00:05:25.0869 0612 [ 571A65C16F31D7D837A88B2A0676BD45 ] BCM43XX C:\Windows\system32\DRIVERS\bcmwl6.sys
00:05:25.0947 0612 BCM43XX - ok
00:05:25.0963 0612 [ EE1E9C3BB8228AE423DD38DB69128E71 ] BDESVC C:\Windows\System32\bdesvc.dll
00:05:25.0979 0612 BDESVC - ok
00:05:26.0010 0612 [ 505506526A9D467307B3C393DEDAF858 ] Beep C:\Windows\system32\drivers\Beep.sys
00:05:26.0010 0612 Beep - ok
00:05:26.0041 0612 [ 1E2BAC209D184BB851E1A187D8A29136 ] BFE C:\Windows\System32\bfe.dll
00:05:26.0041 0612 BFE - ok
00:05:26.0072 0612 [ E585445D5021971FAE10393F0F1C3961 ] BITS C:\Windows\System32\qmgr.dll
00:05:26.0103 0612 BITS - ok
00:05:26.0119 0612 [ 2287078ED48FCFC477B05B20CF38F36F ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
00:05:26.0119 0612 blbdrive - ok
00:05:26.0213 0612 [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
00:05:26.0213 0612 Bonjour Service - ok
00:05:26.0244 0612 [ 8F2DA3028D5FCBD1A060A3DE64CD6506 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
00:05:26.0244 0612 bowser - ok
00:05:26.0259 0612 [ 9F9ACC7F7CCDE8A15C282D3F88B43309 ] BrFiltLo C:\Windows\system32\drivers\BrFiltLo.sys
00:05:26.0259 0612 BrFiltLo - ok
00:05:26.0275 0612 [ 56801AD62213A41F6497F96DEE83755A ] BrFiltUp C:\Windows\system32\drivers\BrFiltUp.sys
00:05:26.0275 0612 BrFiltUp - ok
00:05:26.0306 0612 [ 3DAA727B5B0A45039B0E1C9A211B8400 ] Browser C:\Windows\System32\browser.dll
00:05:26.0306 0612 Browser - ok
00:05:26.0337 0612 [ 845B8CE732E67F3B4133164868C666EA ] Brserid C:\Windows\System32\Drivers\Brserid.sys
00:05:26.0353 0612 Brserid - ok
00:05:26.0353 0612 [ 203F0B1E73ADADBBB7B7B1FABD901F6B ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
00:05:26.0353 0612 BrSerWdm - ok
00:05:26.0353 0612 [ BD456606156BA17E60A04E18016AE54B ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
00:05:26.0353 0612 BrUsbMdm - ok
00:05:26.0369 0612 [ AF72ED54503F717A43268B3CC5FAEC2E ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
00:05:26.0369 0612 BrUsbSer - ok
00:05:26.0415 0612 [ 5124C6DE0C7F4A6ACA96B4472E0F9985 ] bScsiSDx C:\Windows\system32\DRIVERS\bScsiSDx.sys
00:05:26.0415 0612 bScsiSDx - ok
00:05:26.0431 0612 [ 2865A5C8E98C70C605F417908CEBB3A4 ] BthEnum C:\Windows\system32\drivers\BthEnum.sys
00:05:26.0431 0612 BthEnum - ok
00:05:26.0447 0612 [ ED3DF7C56CE0084EB2034432FC56565A ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
00:05:26.0447 0612 BTHMODEM - ok
00:05:26.0478 0612 [ AD1872E5829E8A2C3B5B4B641C3EAB0E ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
00:05:26.0478 0612 BthPan - ok
00:05:26.0509 0612 [ 1153DE2E4F5941E10C399CB5592F78A1 ] BTHPORT C:\Windows\System32\Drivers\BTHport.sys
00:05:26.0509 0612 BTHPORT - ok
00:05:26.0571 0612 [ 1DF19C96EEF6C29D1C3E1A8678E07190 ] bthserv C:\Windows\system32\bthserv.dll
00:05:26.0571 0612 bthserv - ok
00:05:26.0571 0612 [ C81E9413A25A439F436B1D4B6A0CF9E9 ] BTHUSB C:\Windows\System32\Drivers\BTHUSB.sys
00:05:26.0571 0612 BTHUSB - ok
00:05:26.0603 0612 [ 77EA11B065E0A8AB902D78145CA51E10 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
00:05:26.0603 0612 cdfs - ok
00:05:26.0634 0612 [ BE167ED0FDB9C1FA1133953C18D5A6C9 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
00:05:26.0649 0612 cdrom - ok
00:05:26.0665 0612 [ 319C6B309773D063541D01DF8AC6F55F ] CertPropSvc C:\Windows\System32\certprop.dll
00:05:26.0665 0612 CertPropSvc - ok
00:05:26.0696 0612 [ 3FE3FE94A34DF6FB06E6418D0F6A0060 ] circlass C:\Windows\system32\drivers\circlass.sys
00:05:26.0696 0612 circlass - ok
00:05:26.0727 0612 [ 4A53428F7C383EFBCFAAFDCB434E2AF4 ] CirrusFilter C:\Windows\system32\DRIVERS\CS420x86.sys
00:05:26.0727 0612 CirrusFilter - ok
00:05:26.0759 0612 [ 635181E0E9BBF16871BF5380D71DB02D ] CLFS C:\Windows\system32\CLFS.sys
00:05:26.0759 0612 CLFS - ok
00:05:26.0821 0612 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
00:05:26.0821 0612 clr_optimization_v2.0.50727_32 - ok
00:05:26.0883 0612 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
00:05:26.0899 0612 clr_optimization_v4.0.30319_32 - ok
00:05:26.0915 0612 [ DEA805815E587DAD1DD2C502220B5616 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
00:05:26.0915 0612 CmBatt - ok
00:05:26.0930 0612 [ C537B1DB64D495B9B4717B4D6D9EDBF2 ] cmdide C:\Windows\system32\drivers\cmdide.sys
00:05:26.0930 0612 cmdide - ok
00:05:26.0993 0612 [ 247B4CE2DAB1160CD422D532D5241E1F ] CNG C:\Windows\system32\Drivers\cng.sys
00:05:26.0993 0612 CNG - ok
00:05:27.0024 0612 [ A6023D3823C37043986713F118A89BEE ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
00:05:27.0024 0612 Compbatt - ok
00:05:27.0039 0612 [ CBE8C58A8579CFE5FCCF809E6F114E89 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys
00:05:27.0039 0612 CompositeBus - ok
00:05:27.0071 0612 COMSysApp - ok
00:05:27.0086 0612 [ 2C4EBCFC84A9B44F209DFF6C6E6C61D1 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
00:05:27.0086 0612 crcdisk - ok
00:05:27.0149 0612 [ 96C0E38905CFD788313BE8E11DAE3F2F ] CryptSvc C:\Windows\system32\cryptsvc.dll
00:05:27.0149 0612 CryptSvc - ok
00:05:27.0164 0612 [ 3C2177A897B4CA2788C6FB0C3FD81D4B ] CSC C:\Windows\system32\drivers\csc.sys
00:05:27.0164 0612 CSC - ok
00:05:27.0211 0612 [ 15F93B37F6801943360D9EB42485D5D3 ] CscService C:\Windows\System32\cscsvc.dll
00:05:27.0211 0612 CscService - ok
00:05:27.0242 0612 [ 7660F01D3B38ACA1747E397D21D790AF ] DcomLaunch C:\Windows\system32\rpcss.dll
00:05:27.0258 0612 DcomLaunch - ok
00:05:27.0273 0612 [ 8D6E10A2D9A5EED59562D9B82CF804E1 ] defragsvc C:\Windows\System32\defragsvc.dll
00:05:27.0273 0612 defragsvc - ok
00:05:27.0305 0612 [ F024449C97EC1E464AAFFDA18593DB88 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
00:05:27.0305 0612 DfsC - ok
00:05:27.0336 0612 [ E9E01EB683C132F7FA27CD607B8A2B63 ] Dhcp C:\Windows\system32\dhcpcore.dll
00:05:27.0336 0612 Dhcp - ok
00:05:27.0351 0612 [ 1A050B0274BFB3890703D490F330C0DA ] discache C:\Windows\system32\drivers\discache.sys
00:05:27.0351 0612 discache - ok
00:05:27.0398 0612 [ 565003F326F99802E68CA78F2A68E9FF ] Disk C:\Windows\system32\drivers\disk.sys
00:05:27.0398 0612 Disk - ok
00:05:27.0414 0612 [ 2A958EF85DB1B61FFCA65044FA4BCE9E ] dmvsc C:\Windows\system32\drivers\dmvsc.sys
00:05:27.0414 0612 dmvsc - ok
00:05:27.0429 0612 [ 33EF4861F19A0736B11314AAD9AE28D0 ] Dnscache C:\Windows\System32\dnsrslvr.dll
00:05:27.0429 0612 Dnscache - ok
00:05:27.0461 0612 [ 366BA8FB4B7BB7435E3B9EACB3843F67 ] dot3svc C:\Windows\System32\dot3svc.dll
00:05:27.0461 0612 dot3svc - ok
00:05:27.0461 0612 [ 8EC04CA86F1D68DA9E11952EB85973D6 ] DPS C:\Windows\system32\dps.dll
00:05:27.0461 0612 DPS - ok
00:05:27.0492 0612 [ B918E7C5F9BF77202F89E1A9539F2EB4 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
00:05:27.0492 0612 drmkaud - ok
00:05:27.0539 0612 [ 687AF6BB383885FF6A64071B189A7F3E ] dtsoftbus01 C:\Windows\system32\DRIVERS\dtsoftbus01.sys
00:05:27.0539 0612 dtsoftbus01 - ok
00:05:27.0585 0612 [ 23F5D28378A160352BA8F817BD8C71CB ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
00:05:27.0585 0612 DXGKrnl - ok
00:05:27.0617 0612 [ 8600142FA91C1B96367D3300AD0F3F3A ] EapHost C:\Windows\System32\eapsvc.dll
00:05:27.0617 0612 EapHost - ok
00:05:27.0695 0612 [ 024E1B5CAC09731E4D868E64DBFB4AB0 ] ebdrv C:\Windows\system32\drivers\evbdx.sys
00:05:27.0773 0612 ebdrv - ok
00:05:27.0788 0612 [ 81951F51E318AECC2D68559E47485CC4 ] EFS C:\Windows\System32\lsass.exe
00:05:27.0788 0612 EFS - ok
00:05:27.0851 0612 [ A8C362018EFC87BEB013EE28F29C0863 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
00:05:27.0866 0612 ehRecvr - ok
00:05:27.0882 0612 [ D389BFF34F80CAEDE417BF9D1507996A ] ehSched C:\Windows\ehome\ehsched.exe
00:05:27.0882 0612 ehSched - ok
00:05:27.0929 0612 [ 0ED67910C8C326796FAA00B2BF6D9D3C ] elxstor C:\Windows\system32\drivers\elxstor.sys
00:05:27.0929 0612 elxstor - ok
00:05:27.0929 0612 [ 8FC3208352DD3912C94367A206AB3F11 ] ErrDev C:\Windows\system32\drivers\errdev.sys
00:05:27.0944 0612 ErrDev - ok
00:05:27.0975 0612 [ F6916EFC29D9953D5D0DF06882AE8E16 ] EventSystem C:\Windows\system32\es.dll
00:05:27.0975 0612 EventSystem - ok
00:05:28.0007 0612 [ 2DC9108D74081149CC8B651D3A26207F ] exfat C:\Windows\system32\drivers\exfat.sys
00:05:28.0007 0612 exfat - ok
00:05:28.0007 0612 [ 7E0AB74553476622FB6AE36F73D97D35 ] fastfat C:\Windows\system32\drivers\fastfat.sys
00:05:28.0007 0612 fastfat - ok
00:05:28.0053 0612 [ 967EA5B213E9984CBE270205DF37755B ] Fax C:\Windows\system32\fxssvc.exe
00:05:28.0053 0612 Fax - ok
00:05:28.0085 0612 [ E817A017F82DF2A1F8CFDBDA29388B29 ] fdc C:\Windows\system32\drivers\fdc.sys
00:05:28.0085 0612 fdc - ok
00:05:28.0100 0612 [ F3222C893BD2F5821A0179E5C71E88FB ] fdPHost C:\Windows\system32\fdPHost.dll
00:05:28.0100 0612 fdPHost - ok
00:05:28.0100 0612 [ 7DBE8CBFE79EFBDEB98C9FB08D3A9A5B ] FDResPub C:\Windows\system32\fdrespub.dll
00:05:28.0116 0612 FDResPub - ok
00:05:28.0131 0612 [ 6CF00369C97F3CF563BE99BE983D13D8 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
00:05:28.0131 0612 FileInfo - ok
00:05:28.0131 0612 [ 42C51DC94C91DA21CB9196EB64C45DB9 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
00:05:28.0131 0612 Filetrace - ok
00:05:28.0163 0612 [ 87907AA70CB3C56600F1C2FB8841579B ] flpydisk C:\Windows\system32\drivers\flpydisk.sys
00:05:28.0163 0612 flpydisk - ok
00:05:28.0178 0612 [ 7520EC808E0C35E0EE6F841294316653 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
00:05:28.0178 0612 FltMgr - ok
00:05:28.0209 0612 [ B3A5EC6B6B6673DB7E87C2BCDBDDC074 ] FontCache C:\Windows\system32\FntCache.dll
00:05:28.0225 0612 FontCache - ok
00:05:28.0272 0612 [ E56F39F6B7FDA0AC77A79B0FD3DE1A2F ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
00:05:28.0272 0612 FontCache3.0.0.0 - ok
00:05:28.0303 0612 [ 1A16B57943853E598CFF37FE2B8CBF1D ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
00:05:28.0303 0612 FsDepends - ok
00:05:28.0319 0612 [ 7DAE5EBCC80E45D3253F4923DC424D05 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
00:05:28.0319 0612 Fs_Rec - ok
00:05:28.0350 0612 [ 8A73E79089B282100B9393B644CB853B ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
00:05:28.0350 0612 fvevol - ok
00:05:28.0381 0612 [ 65EE0C7A58B65E74AE05637418153938 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
00:05:28.0381 0612 gagp30kx - ok
00:05:28.0412 0612 [ 8182FF89C65E4D38B2DE4BB0FB18564E ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
00:05:28.0412 0612 GEARAspiWDM - ok
00:05:28.0459 0612 [ E897EAF5ED6BA41E081060C9B447A673 ] gpsvc C:\Windows\System32\gpsvc.dll
00:05:28.0459 0612 gpsvc - ok
00:05:28.0475 0612 [ C44E3C2BAB6837DB337DDEE7544736DB ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
00:05:28.0475 0612 hcw85cir - ok
00:05:28.0506 0612 [ A5EF29D5315111C80A5C1ABAD14C8972 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
00:05:28.0506 0612 HdAudAddService - ok
00:05:28.0521 0612 [ 9036377B8A6C15DC2EEC53E489D159B5 ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
00:05:28.0521 0612 HDAudBus - ok
00:05:28.0553 0612 [ 1D58A7F3E11A9731D0EAAAA8405ACC36 ] HidBatt C:\Windows\system32\drivers\HidBatt.sys
00:05:28.0553 0612 HidBatt - ok
00:05:28.0568 0612 [ 89448F40E6DF260C206A193A4683BA78 ] HidBth C:\Windows\system32\drivers\hidbth.sys
00:05:28.0568 0612 HidBth - ok
00:05:28.0599 0612 [ CF50B4CF4A4F229B9F3C08351F99CA5E ] HidIr C:\Windows\system32\drivers\hidir.sys
00:05:28.0599 0612 HidIr - ok
00:05:28.0631 0612 [ 2BC6F6A1992B3A77F5F41432CA6B3B6B ] hidserv C:\Windows\system32\hidserv.dll
00:05:28.0631 0612 hidserv - ok
00:05:28.0677 0612 [ 10C19F8290891AF023EAEC0832E1EB4D ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
00:05:28.0677 0612 HidUsb - ok
00:05:28.0709 0612 [ 196B4E3F4CCCC24AF836CE58FACBB699 ] hkmsvc C:\Windows\system32\kmsvc.dll
00:05:28.0709 0612 hkmsvc - ok
00:05:28.0724 0612 [ 6658F4404DE03D75FE3BA09F7ABA6A30 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
00:05:28.0724 0612 HomeGroupListener - ok
00:05:28.0755 0612 [ DBC02D918FFF1CAD628ACBE0C0EAA8E8 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
00:05:28.0755 0612 HomeGroupProvider - ok
00:05:28.0771 0612 [ 295FDC419039090EB8B49FFDBB374549 ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
00:05:28.0771 0612 HpSAMD - ok
00:05:28.0787 0612 [ 871917B07A141BFF43D76D8844D48106 ] HTTP C:\Windows\system32\drivers\HTTP.sys
00:05:28.0802 0612 HTTP - ok
00:05:28.0818 0612 [ 0C4E035C7F105F1299258C90886C64C5 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
00:05:28.0818 0612 hwpolicy - ok
00:05:28.0849 0612 [ F151F0BDC47F4A28B1B20A0818EA36D6 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
00:05:28.0849 0612 i8042prt - ok
00:05:28.0880 0612 [ 5CD5F9A5444E6CDCB0AC89BD62D8B76E ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
00:05:28.0880 0612 iaStorV - ok
00:05:28.0927 0612 [ C521D7EB6497BB1AF6AFA89E322FB43C ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
00:05:28.0943 0612 idsvc - ok
00:05:28.0974 0612 [ 4173FF5708F3236CF25195FECD742915 ] iirsp C:\Windows\system32\drivers\iirsp.sys
00:05:28.0974 0612 iirsp - ok
00:05:29.0005 0612 [ F95622F161474511B8D80D6B093AA610 ] IKEEXT C:\Windows\System32\ikeext.dll
00:05:29.0005 0612 IKEEXT - ok
00:05:29.0021 0612 [ A0F12F2C9BA6C72F3987CE780E77C130 ] intelide C:\Windows\system32\drivers\intelide.sys
00:05:29.0021 0612 intelide - ok
00:05:29.0036 0612 [ 3B514D27BFC4ACCB4037BC6685F766E0 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
00:05:29.0036 0612 intelppm - ok
00:05:29.0083 0612 [ ACB364B9075A45C0736E5C47BE5CAE19 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
00:05:29.0083 0612 IPBusEnum - ok
00:05:29.0099 0612 [ 709D1761D3B19A932FF0238EA6D50200 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
00:05:29.0099 0612 IpFilterDriver - ok
00:05:29.0145 0612 [ 4D65A07B795D6674312F879D09AA7663 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
00:05:29.0145 0612 iphlpsvc - ok
00:05:29.0177 0612 [ 4BD7134618C1D2A27466A099062547BF ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
00:05:29.0177 0612 IPMIDRV - ok
00:05:29.0192 0612 [ A5FA468D67ABCDAA36264E463A7BB0CD ] IPNAT C:\Windows\system32\drivers\ipnat.sys
00:05:29.0192 0612 IPNAT - ok
00:05:35.0916 0612 [ A483AA38D07AEEEFBD875AD8247DB451 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
00:13:12.0373 0612 Suspicious file (NoAccess): C:\Program Files\iPod\bin\iPodService.exe. md5: A483AA38D07AEEEFBD875AD8247DB451
00:13:12.0435 0612 iPod Service ( LockedFile.Multi.Generic ) - warning
00:13:12.0435 0612 iPod Service - detected LockedFile.Multi.Generic (1)
00:13:12.0544 0612 [ 42996CFF20A3084A56017B7902307E9F ] IRENUM C:\Windows\system32\drivers\irenum.sys
00:13:12.0544 0612 IRENUM - ok
00:13:12.0607 0612 [ DD4C1A21ABD0C41184D3F529421E4650 ] IRRemoteFlt C:\Windows\system32\DRIVERS\IRFilter.sys
00:13:12.0607 0612 IRRemoteFlt - ok
00:13:12.0622 0612 [ 1F32BB6B38F62F7DF1A7AB7292638A35 ] isapnp C:\Windows\system32\drivers\isapnp.sys
00:13:12.0622 0612 isapnp - ok
00:13:12.0638 0612 [ CB7A9ABB12B8415BCE5D74994C7BA3AE ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
00:13:12.0653 0612 iScsiPrt - ok
00:13:12.0685 0612 [ 3551882370F311CED8A84F5990F80A1B ] iusb3hcs C:\Windows\system32\DRIVERS\iusb3hcs.sys
00:13:12.0685 0612 iusb3hcs - ok
00:13:12.0700 0612 [ 564B1DBBA4A5CDF235796A45CEF3135F ] iusb3hub C:\Windows\system32\DRIVERS\iusb3hub.sys
00:13:12.0700 0612 iusb3hub - ok
00:13:12.0731 0612 [ 1D71792C9B05A2F5B6AD6350C69EF2AC ] iusb3xhc C:\Windows\system32\DRIVERS\iusb3xhc.sys
00:13:12.0747 0612 iusb3xhc - ok
00:13:12.0778 0612 [ ADEF52CA1AEAE82B50DF86B56413107E ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
00:13:12.0778 0612 kbdclass - ok
00:13:12.0794 0612 [ 9E3CED91863E6EE98C24794D05E27A71 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
00:13:12.0794 0612 kbdhid - ok
00:13:12.0825 0612 [ B92159BD9E85C9B248697AF904B353A1 ] KeyAgent C:\Windows\system32\drivers\KeyAgent.sys
00:13:12.0825 0612 KeyAgent - ok
00:13:12.0841 0612 [ 81951F51E318AECC2D68559E47485CC4 ] KeyIso C:\Windows\system32\lsass.exe
00:13:12.0841 0612 KeyIso - ok
00:13:12.0887 0612 [ B18FAC50164B65F53C5071ED8E20C741 ] KeyMagic C:\Windows\system32\DRIVERS\KeyMagic.sys
00:13:12.0887 0612 KeyMagic - ok
00:13:12.0903 0612 [ B7895B4182C0D16F6EFADEB8081E8D36 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
00:13:12.0903 0612 KSecDD - ok
00:13:12.0919 0612 [ D30159AC9237519FBC62C6EC247D2D46 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
00:13:12.0919 0612 KSecPkg - ok
00:13:12.0950 0612 [ 89A7B9CC98D0D80C6F31B91C0A310FCD ] KtmRm C:\Windows\system32\msdtckrm.dll
00:13:12.0950 0612 KtmRm - ok
00:13:12.0981 0612 [ D64AF876D53ECA3668BB97B51B4E70AB ] LanmanServer C:\Windows\system32\srvsvc.dll
00:13:12.0981 0612 LanmanServer - ok
00:13:13.0012 0612 [ 58405E4F68BA8E4057C6E914F326ABA2 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
00:13:13.0012 0612 LanmanWorkstation - ok
00:13:13.0043 0612 [ F7611EC07349979DA9B0AE1F18CCC7A6 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
00:13:13.0043 0612 lltdio - ok
00:13:13.0059 0612 [ 5700673E13A2117FA3B9020C852C01E2 ] lltdsvc C:\Windows\System32\lltdsvc.dll
00:13:13.0059 0612 lltdsvc - ok
00:13:13.0075 0612 [ 55CA01BA19D0006C8F2639B6C045E08B ] lmhosts C:\Windows\System32\lmhsvc.dll
00:13:13.0075 0612 lmhosts - ok
00:13:13.0137 0612 [ BF22ACF4CF3734D61357E67F0521BC03 ] LMS C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
00:13:13.0137 0612 LMS - ok
00:13:13.0153 0612 [ EB119A53CCF2ACC000AC71B065B78FEF ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
00:13:13.0153 0612 LSI_FC - ok
00:13:13.0168 0612 [ 8ADE1C877256A22E49B75D1CC9161F9C ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
00:13:13.0184 0612 LSI_SAS - ok
00:13:13.0199 0612 [ DC9DC3D3DAA0E276FD2EC262E38B11E9 ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys
00:13:13.0215 0612 LSI_SAS2 - ok
00:13:13.0215 0612 [ 0A036C7D7CAB643A7F07135AC47E0524 ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
00:13:13.0215 0612 LSI_SCSI - ok
00:13:13.0231 0612 [ 6703E366CC18D3B6E534F5CF7DF39CEE ] luafv C:\Windows\system32\drivers\luafv.sys
00:13:13.0231 0612 luafv - ok
00:13:13.0262 0612 [ 47B9AFDF31686EC472F03CC447A93FE3 ] MacHALDriver C:\Windows\system32\drivers\MacHALDriver.sys
00:13:13.0262 0612 MacHALDriver - ok
00:13:13.0277 0612 [ 500D089CE760D83DA2B6CBA681AA9949 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
00:13:13.0277 0612 MBAMProtector - ok
00:13:13.0340 0612 [ 85B16A92B117A5A800032ECD904B86DB ] MBAMScheduler C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
00:13:13.0340 0612 MBAMScheduler - ok
00:13:13.0355 0612 [ 20E2469DB709FC675E655CEAA11BE312 ] MBAMService C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
00:13:13.0371 0612 MBAMService - ok
00:13:13.0387 0612 [ BFB9EE8EE977EFE85D1A3105ABEF6DD1 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
00:13:13.0402 0612 Mcx2Svc - ok
00:13:13.0418 0612 [ 0FFF5B045293002AB38EB1FD1FC2FB74 ] megasas C:\Windows\system32\drivers\megasas.sys
00:13:13.0418 0612 megasas - ok
00:13:13.0449 0612 [ DCBAB2920C75F390CAF1D29F675D03D6 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys
00:13:13.0465 0612 MegaSR - ok
00:13:13.0480 0612 [ 240D715CFE4FB8F4CDA76F6863E62334 ] MEI C:\Windows\system32\DRIVERS\HECI.sys
00:13:13.0480 0612 MEI - ok
00:13:13.0527 0612 Microsoft SharePoint Workspace Audit Service - ok
00:13:13.0558 0612 [ 146B6F43A673379A3C670E86D89BE5EA ] MMCSS C:\Windows\system32\mmcss.dll
00:13:13.0558 0612 MMCSS - ok
00:13:13.0574 0612 [ F001861E5700EE84E2D4E52C712F4964 ] Modem C:\Windows\system32\drivers\modem.sys
00:13:13.0574 0612 Modem - ok
00:13:13.0605 0612 [ 79D10964DE86B292320E9DFE02282A23 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
00:13:13.0605 0612 monitor - ok
00:13:13.0636 0612 [ FB18CC1D4C2E716B6B903B0AC0CC0609 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
00:13:13.0636 0612 mouclass - ok
00:13:13.0683 0612 [ 2C388D2CD01C9042596CF3C8F3C7B24D ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
00:13:13.0699 0612 mouhid - ok
00:13:13.0714 0612 [ FC8771F45ECCCFD89684E38842539B9B ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
00:13:13.0714 0612 mountmgr - ok
00:13:13.0777 0612 [ 24409A2A9F0351E208E14F609340FB25 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
00:13:13.0777 0612 MozillaMaintenance - ok
00:13:13.0808 0612 [ 2D699FB6E89CE0D8DA14ECC03B3EDFE0 ] mpio C:\Windows\system32\drivers\mpio.sys
00:13:13.0808 0612 mpio - ok
00:13:13.0823 0612 [ AD2723A7B53DD1AACAE6AD8C0BFBF4D0 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
00:13:13.0823 0612 mpsdrv - ok
00:13:13.0855 0612 [ 9835584E999D25004E1EE8E5F3E3B881 ] MpsSvc C:\Windows\system32\mpssvc.dll
00:13:13.0855 0612 MpsSvc - ok
00:13:13.0870 0612 [ CEB46AB7C01C9F825F8CC6BABC18166A ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
00:13:13.0870 0612 MRxDAV - ok
00:13:13.0901 0612 [ 5D16C921E3671636C0EBA3BBAAC5FD25 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
00:13:13.0901 0612 mrxsmb - ok
00:13:13.0917 0612 [ 6D17A4791ACA19328C685D256349FEFC ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
00:13:13.0933 0612 mrxsmb10 - ok
00:13:13.0948 0612 [ B81F204D146000BE76651A50670A5E9E ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
00:13:13.0948 0612 mrxsmb20 - ok
00:13:13.0964 0612 [ 012C5F4E9349E711E11E0F19A8589F0A ] msahci C:\Windows\system32\drivers\msahci.sys
00:13:13.0964 0612 msahci - ok
00:13:13.0979 0612 [ 55055F8AD8BE27A64C831322A780A228 ] msdsm C:\Windows\system32\drivers\msdsm.sys
00:13:13.0979 0612 msdsm - ok
00:13:13.0995 0612 [ E1BCE74A3BD9902B72599C0192A07E27 ] MSDTC C:\Windows\System32\msdtc.exe
00:13:13.0995 0612 MSDTC - ok
00:13:14.0042 0612 [ DAEFB28E3AF5A76ABCC2C3078C07327F ] Msfs C:\Windows\system32\drivers\Msfs.sys
00:13:14.0042 0612 Msfs - ok
00:13:14.0057 0612 [ 3E1E5767043C5AF9367F0056295E9F84 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
00:13:14.0057 0612 mshidkmdf - ok
00:13:14.0073 0612 [ 0A4E5757AE09FA9622E3158CC1AEF114 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
00:13:14.0073 0612 msisadrv - ok
00:13:14.0104 0612 [ 90F7D9E6B6F27E1A707D4A297F077828 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
00:13:14.0104 0612 MSiSCSI - ok
00:13:14.0120 0612 msiserver - ok
00:13:14.0151 0612 [ 8C0860D6366AAFFB6C5BB9DF9448E631 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
00:13:14.0151 0612 MSKSSRV - ok
00:13:14.0167 0612 [ 3EA8B949F963562CEDBB549EAC0C11CE ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
00:13:14.0167 0612 MSPCLOCK - ok
00:13:14.0167 0612 [ F456E973590D663B1073E9C463B40932 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
00:13:14.0167 0612 MSPQM - ok
00:13:14.0182 0612 [ 0E008FC4819D238C51D7C93E7B41E560 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
00:13:14.0182 0612 MsRPC - ok
00:13:14.0198 0612 [ FC6B9FF600CC585EA38B12589BD4E246 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
00:13:14.0198 0612 mssmbios - ok
00:13:14.0213 0612 [ B42C6B921F61A6E55159B8BE6CD54A36 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
00:13:14.0213 0612 MSTEE - ok
00:13:14.0229 0612 [ 33599130F44E1F34631CEA241DE8AC84 ] MTConfig C:\Windows\system32\drivers\MTConfig.sys
00:13:14.0229 0612 MTConfig - ok
00:13:14.0245 0612 [ 159FAD02F64E6381758C990F753BCC80 ] Mup C:\Windows\system32\Drivers\mup.sys
00:13:14.0245 0612 Mup - ok
00:13:14.0260 0612 [ 61D57A5D7C6D9AFE10E77DAE6E1B445E ] napagent C:\Windows\system32\qagentRT.dll
00:13:14.0276 0612 napagent - ok
00:13:14.0323 0612 [ 26384429FCD85D83746F63E798AB1480 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
00:13:14.0323 0612 NativeWifiP - ok
00:13:14.0354 0612 [ 8C9C922D71F1CD4DEF73F186416B7896 ] NDIS C:\Windows\system32\drivers\ndis.sys
00:13:14.0354 0612 NDIS - ok
00:13:14.0401 0612 [ 0E1787AA6C9191D3D319E8BAFE86F80C ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
00:13:14.0401 0612 NdisCap - ok
00:13:14.0416 0612 [ E4A8AEC125A2E43A9E32AFEEA7C9C888 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
00:13:14.0416 0612 NdisTapi - ok
00:13:14.0432 0612 [ D8A65DAFB3EB41CBB622745676FCD072 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
00:13:14.0432 0612 Ndisuio - ok
00:13:14.0447 0612 [ 38FBE267E7E6983311179230FACB1017 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
00:13:14.0447 0612 NdisWan - ok
00:13:14.0463 0612 [ A4BDC541E69674FBFF1A8FF00BE913F2 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
00:13:14.0463 0612 NDProxy - ok
00:13:14.0479 0612 [ 80B275B1CE3B0E79909DB7B39AF74D51 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
00:13:14.0479 0612 NetBIOS - ok
00:13:14.0494 0612 [ 280122DDCF04B378EDD1AD54D71C1E54 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
00:13:14.0494 0612 NetBT - ok
00:13:14.0510 0612 [ 81951F51E318AECC2D68559E47485CC4 ] Netlogon C:\Windows\system32\lsass.exe
00:13:14.0510 0612 Netlogon - ok
00:13:14.0541 0612 [ 7CCCFCA7510684768DA22092D1FA4DB2 ] Netman C:\Windows\System32\netman.dll
00:13:14.0541 0612 Netman - ok
00:13:14.0541 0612 [ 8C338238C16777A802D6A9211EB2BA50 ] netprofm C:\Windows\System32\netprofm.dll
00:13:14.0557 0612 netprofm - ok
00:13:14.0588 0612 [ F476EC40033CDB91EFBE73EB99B8362D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
00:13:14.0588 0612 NetTcpPortSharing - ok
00:13:14.0603 0612 [ 1D85C4B390B0EE09C7A46B91EFB2C097 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
00:13:14.0603 0612 nfrd960 - ok
00:13:14.0635 0612 [ 912084381D30D8B89EC4E293053F4710 ] NlaSvc C:\Windows\System32\nlasvc.dll
00:13:14.0635 0612 NlaSvc - ok
00:13:14.0650 0612 [ 1DB262A9F8C087E8153D89BEF3D2235F ] Npfs C:\Windows\system32\drivers\Npfs.sys
00:13:14.0650 0612 Npfs - ok
00:13:14.0666 0612 [ BA387E955E890C8A88306D9B8D06BF17 ] nsi C:\Windows\system32\nsisvc.dll
00:13:14.0666 0612 nsi - ok
00:13:14.0697 0612 [ E9A0A4D07E53D8FEA2BB8387A3293C58 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
00:13:14.0697 0612 nsiproxy - ok
00:13:14.0759 0612 [ 0D87503986BB3DFED58E343FE39DDE13 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
00:13:14.0759 0612 Ntfs - ok
00:13:14.0775 0612 [ F9756A98D69098DCA8945D62858A812C ] Null C:\Windows\system32\drivers\Null.sys
00:13:14.0775 0612 Null - ok
00:13:14.0806 0612 [ 45E7C41855A5ED8E95EB0668EF82F72A ] NVHDA C:\Windows\system32\drivers\nvhda32v.sys
00:13:14.0822 0612 NVHDA - ok
00:13:15.0056 0612 [ 6E8678827BE9766BA81749FC75914F03 ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
00:13:15.0259 0612 nvlddmkm - ok
00:13:15.0290 0612 [ B3E25EE28883877076E0E1FF877D02E0 ] nvraid C:\Windows\system32\drivers\nvraid.sys
00:13:15.0290 0612 nvraid - ok
00:13:15.0305 0612 [ 4380E59A170D88C4F1022EFF6719A8A4 ] nvstor C:\Windows\system32\drivers\nvstor.sys
00:13:15.0305 0612 nvstor - ok
00:13:15.0352 0612 [ ED58E6AB73F991627D75C9CD107830A2 ] nvsvc C:\Windows\system32\nvvsvc.exe
00:13:15.0352 0612 nvsvc - ok
00:13:15.0446 0612 [ FA920D236083155BEBC4B9283FAB217D ] nvUpdatusService C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
00:13:15.0524 0612 nvUpdatusService - ok
00:13:15.0555 0612 [ 5A0983915F02BAE73267CC2A041F717D ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
00:13:15.0555 0612 nv_agp - ok
00:13:15.0571 0612 [ 08A70A1F2CDDE9BB49B885CB817A66EB ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
00:13:15.0571 0612 ohci1394 - ok
00:13:15.0617 0612 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
00:13:15.0617 0612 ose - ok
00:13:15.0742 0612 [ 358A9CCA612C68EB2F07DDAD4CE1D8D7 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
00:13:15.0851 0612 osppsvc - ok
00:13:15.0867 0612 [ 82A8521DDC60710C3D3D3E7325209BEC ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
00:13:15.0867 0612 p2pimsvc - ok
00:13:15.0883 0612 [ 59C3DDD501E39E006DAC31BF55150D91 ] p2psvc C:\Windows\system32\p2psvc.dll
00:13:15.0883 0612 p2psvc - ok
00:13:15.0914 0612 [ 2EA877ED5DD9713C5AC74E8EA7348D14 ] Parport C:\Windows\system32\drivers\parport.sys
00:13:15.0914 0612 Parport - ok
00:13:15.0929 0612 [ 3F34A1B4C5F6475F320C275E63AFCE9B ] partmgr C:\Windows\system32\drivers\partmgr.sys
00:13:15.0945 0612 partmgr - ok
00:13:15.0961 0612 [ EB0A59F29C19B86479D36B35983DAADC ] Parvdm C:\Windows\system32\drivers\parvdm.sys
00:13:15.0961 0612 Parvdm - ok
00:13:15.0976 0612 [ 358AB7956D3160000726574083DFC8A6 ] PcaSvc C:\Windows\System32\pcasvc.dll
00:13:15.0992 0612 PcaSvc - ok
00:13:16.0007 0612 [ 673E55C3498EB970088E812EA820AA8F ] pci C:\Windows\system32\drivers\pci.sys
00:13:16.0023 0612 pci - ok
00:13:16.0023 0612 [ AFE86F419014DB4E5593F69FFE26CE0A ] pciide C:\Windows\system32\drivers\pciide.sys
00:13:16.0023 0612 pciide - ok
00:13:16.0054 0612 [ F396431B31693E71E8A80687EF523506 ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
00:13:16.0054 0612 pcmcia - ok
00:13:16.0070 0612 [ 250F6B43D2B613172035C6747AEEB19F ] pcw C:\Windows\system32\drivers\pcw.sys
00:13:16.0070 0612 pcw - ok
00:13:16.0101 0612 [ 9E0104BA49F4E6973749A02BF41344ED ] PEAUTH C:\Windows\system32\drivers\peauth.sys
00:13:16.0117 0612 PEAUTH - ok
00:13:16.0163 0612 [ AF4D64D2A57B9772CF3801950B8058A6 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll
00:13:16.0163 0612 PeerDistSvc - ok
00:13:16.0210 0612 [ 414BBA67A3DED1D28437EB66AEB8A720 ] pla C:\Windows\system32\pla.dll
00:13:16.0210 0612 pla - ok
00:13:16.0273 0612 [ EC7BC28D207DA09E79B3E9FAF8B232CA ] PlugPlay C:\Windows\system32\umpnpmgr.dll
00:13:16.0273 0612 PlugPlay - ok
00:13:16.0304 0612 [ 63FF8572611249931EB16BB8EED6AFC8 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
00:13:16.0304 0612 PNRPAutoReg - ok
00:13:16.0319 0612 [ 82A8521DDC60710C3D3D3E7325209BEC ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
00:13:16.0335 0612 PNRPsvc - ok
00:13:16.0351 0612 [ 53946B69BA0836BD95B03759530C81EC ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
00:13:16.0351 0612 PolicyAgent - ok
00:13:16.0366 0612 [ F87D30E72E03D579A5199CCB3831D6EA ] Power C:\Windows\system32\umpo.dll
00:13:16.0366 0612 Power - ok
00:13:16.0397 0612 [ 631E3E205AD6D86F2AED6A4A8E69F2DB ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
00:13:16.0397 0612 PptpMiniport - ok
00:13:16.0413 0612 [ 85B1E3A0C7585BC4AAE6899EC6FCF011 ] Processor C:\Windows\system32\drivers\processr.sys
00:13:16.0413 0612 Processor - ok
00:13:16.0429 0612 [ CADEFAC453040E370A1BDFF3973BE00D ] ProfSvc C:\Windows\system32\profsvc.dll
00:13:16.0429 0612 ProfSvc - ok
00:13:16.0444 0612 [ 81951F51E318AECC2D68559E47485CC4 ] ProtectedStorage C:\Windows\system32\lsass.exe
00:13:16.0444 0612 ProtectedStorage - ok
00:13:16.0475 0612 [ 6270CCAE2A86DE6D146529FE55B3246A ] Psched C:\Windows\system32\DRIVERS\pacer.sys
00:13:16.0475 0612 Psched - ok
00:13:16.0522 0612 [ AB95ECF1F6659A60DDC166D8315B0751 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
00:13:16.0538 0612 ql2300 - ok
00:13:16.0538 0612 [ B4DD51DD25182244B86737DC51AF2270 ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
00:13:16.0538 0612 ql40xx - ok
00:13:16.0553 0612 [ 31AC809E7707EB580B2BDB760390765A ] QWAVE C:\Windows\system32\qwave.dll
00:13:16.0553 0612 QWAVE - ok
00:13:16.0585 0612 [ 584078CA1B95CA72DF2A27C336F9719D ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
00:13:16.0585 0612 QWAVEdrv - ok
00:13:16.0585 0612 [ 30A81B53C766D0133BB86D234E5556AB ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
00:13:16.0585 0612 RasAcd - ok
00:13:16.0616 0612 [ 57EC4AEF73660166074D8F7F31C0D4FD ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
00:13:16.0616 0612 RasAgileVpn - ok
00:13:16.0647 0612 [ A60F1839849C0C00739787FD5EC03F13 ] RasAuto C:\Windows\System32\rasauto.dll
00:13:16.0647 0612 RasAuto - ok
00:13:16.0663 0612 [ D9F91EAFEC2815365CBE6D167E4E332A ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
00:13:16.0663 0612 Rasl2tp - ok
00:13:16.0694 0612 [ CB9E04DC05EACF5B9A36CA276D475006 ] RasMan C:\Windows\System32\rasmans.dll
00:13:16.0694 0612 RasMan - ok
00:13:16.0709 0612 [ 0FE8B15916307A6AC12BFB6A63E45507 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
00:13:16.0709 0612 RasPppoe - ok
00:13:16.0741 0612 [ 44101F495A83EA6401D886E7FD70096B ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
00:13:16.0741 0612 RasSstp - ok
00:13:16.0756 0612 [ D528BC58A489409BA40334EBF96A311B ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
00:13:16.0756 0612 rdbss - ok
00:13:16.0772 0612 [ 0D8F05481CB76E70E1DA06EE9F0DA9DF ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
00:13:16.0787 0612 rdpbus - ok
00:13:16.0787 0612 [ 23DAE03F29D253AE74C44F99E515F9A1 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
00:13:16.0787 0612 RDPCDD - ok
00:13:16.0819 0612 [ B973FCFC50DC1434E1970A146F7E3885 ] RDPDR C:\Windows\system32\drivers\rdpdr.sys
00:13:16.0819 0612 RDPDR - ok
00:13:16.0834 0612 [ 5A53CA1598DD4156D44196D200C94B8A ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
00:13:16.0834 0612 RDPENCDD - ok
00:13:16.0850 0612 [ 44B0A53CD4F27D50ED461DAE0C0B4E1F ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
00:13:16.0850 0612 RDPREFMP - ok
00:13:16.0881 0612 [ F031683E6D1FEA157ABB2FF260B51E61 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
00:13:16.0881 0612 RDPWD - ok
00:13:16.0912 0612 [ 518395321DC96FE2C9F0E96AC743B656 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
00:13:16.0912 0612 rdyboost - ok
00:13:16.0928 0612 [ 7B5E1419717FAC363A31CC302895217A ] RemoteAccess C:\Windows\System32\mprdim.dll
00:13:16.0928 0612 RemoteAccess - ok
00:13:16.0959 0612 [ CB9A8683F4EF2BF99E123D79950D7935 ] RemoteRegistry C:\Windows\system32\regsvc.dll
00:13:16.0959 0612 RemoteRegistry - ok
00:13:16.0975 0612 [ CB928D9E6DAF51879DD6BA8D02F01321 ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
00:13:16.0975 0612 RFCOMM - ok
00:13:17.0006 0612 [ 78D072F35BC45D9E4E1B61895C152234 ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
00:13:17.0006 0612 RpcEptMapper - ok
00:13:17.0037 0612 [ 94D36C0E44677DD26981D2BFEEF2A29D ] RpcLocator C:\Windows\system32\locator.exe
00:13:17.0037 0612 RpcLocator - ok
00:13:17.0053 0612 [ 7660F01D3B38ACA1747E397D21D790AF ] RpcSs C:\Windows\system32\rpcss.dll
00:13:17.0053 0612 RpcSs - ok
00:13:17.0099 0612 [ 032B0D36AD92B582D869879F5AF5B928 ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
00:13:17.0099 0612 rspndr - ok
00:13:17.0115 0612 [ 7FA7F2E249A5DCBB7970630E15E1F482 ] s3cap C:\Windows\system32\drivers\vms3cap.sys
00:13:17.0115 0612 s3cap - ok
00:13:17.0131 0612 [ 81951F51E318AECC2D68559E47485CC4 ] SamSs C:\Windows\system32\lsass.exe
00:13:17.0131 0612 SamSs - ok
00:13:17.0162 0612 [ 05D860DA1040F111503AC416CCEF2BCA ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
00:13:17.0162 0612 sbp2port - ok
00:13:17.0177 0612 [ 8FC518FFE9519C2631D37515A68009C4 ] SCardSvr C:\Windows\System32\SCardSvr.dll
00:13:17.0193 0612 SCardSvr - ok
00:13:17.0193 0612 [ 0693B5EC673E34DC147E195779A4DCF6 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
00:13:17.0193 0612 scfilter - ok
00:13:17.0224 0612 [ A04BB13F8A72F8B6E8B4071723E4E336 ] Schedule C:\Windows\system32\schedsvc.dll
00:13:17.0255 0612 Schedule - ok
00:13:17.0271 0612 [ 319C6B309773D063541D01DF8AC6F55F ] SCPolicySvc C:\Windows\System32\certprop.dll
00:13:17.0271 0612 SCPolicySvc - ok
00:13:17.0302 0612 [ 0328BE1C7F1CBA23848179F8762E391C ] sdbus C:\Windows\system32\DRIVERS\sdbus.sys
00:13:17.0302 0612 sdbus - ok
00:13:17.0333 0612 [ 08236C4BCE5EDD0A0318A438AF28E0F7 ] SDRSVC C:\Windows\System32\SDRSVC.dll
00:13:17.0333 0612 SDRSVC - ok
00:13:17.0365 0612 [ 90A3935D05B494A5A39D37E71F09A677 ] secdrv C:\Windows\system32\drivers\secdrv.sys
00:13:17.0365 0612 secdrv - ok
00:13:17.0396 0612 [ A59B3A4442C52060CC7A85293AA3546F ] seclogon C:\Windows\system32\seclogon.dll
00:13:17.0396 0612 seclogon - ok
00:13:17.0411 0612 [ DCB7FCDCC97F87360F75D77425B81737 ] SENS C:\Windows\System32\sens.dll
00:13:17.0411 0612 SENS - ok
00:13:17.0427 0612 [ 50087FE1EE447009C9CC2997B90DE53F ] SensrSvc C:\Windows\system32\sensrsvc.dll
00:13:17.0427 0612 SensrSvc - ok
00:13:17.0443 0612 [ 9AD8B8B515E3DF6ACD4212EF465DE2D1 ] Serenum C:\Windows\system32\drivers\serenum.sys
00:13:17.0443 0612 Serenum - ok
00:13:17.0474 0612 [ 5FB7FCEA0490D821F26F39CC5EA3D1E2 ] Serial C:\Windows\system32\drivers\serial.sys
00:13:17.0474 0612 Serial - ok
00:13:17.0489 0612 [ 79BFFB520327FF916A582DFEA17AA813 ] sermouse C:\Windows\system32\drivers\sermouse.sys
00:13:17.0489 0612 sermouse - ok
00:13:17.0505 0612 [ 4AE380F39A0032EAB7DD953030B26D28 ] SessionEnv C:\Windows\system32\sessenv.dll
00:13:17.0505 0612 SessionEnv - ok
00:13:17.0521 0612 [ 9F976E1EB233DF46FCE808D9DEA3EB9C ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
00:13:17.0521 0612 sffdisk - ok
00:13:17.0521 0612 [ 932A68EE27833CFD57C1639D375F2731 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
00:13:17.0521 0612 sffp_mmc - ok
00:13:17.0521 0612 [ 6D4CCAEDC018F1CF52866BBBAA235982 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
00:13:17.0536 0612 sffp_sd - ok
00:13:17.0536 0612 [ DB96666CC8312EBC45032F30B007A547 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
00:13:17.0536 0612 sfloppy - ok
00:13:17.0536 0612 [ D1A079A0DE2EA524513B6930C24527A2 ] SharedAccess C:\Windows\System32\ipnathlp.dll
00:13:17.0552 0612 SharedAccess - ok
00:13:17.0583 0612 [ 414DA952A35BF5D50192E28263B40577 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
00:13:17.0583 0612 ShellHWDetection - ok
00:13:17.0630 0612 [ 2565CAC0DC9FE0371BDCE60832582B2E ] sisagp C:\Windows\system32\drivers\sisagp.sys
00:13:17.0630 0612 sisagp - ok
00:13:17.0645 0612 [ A9F0486851BECB6DDA1D89D381E71055 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys
00:13:17.0645 0612 SiSRaid2 - ok
00:13:17.0661 0612 [ 3727097B55738E2F554972C3BE5BC1AA ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
00:13:17.0661 0612 SiSRaid4 - ok
00:13:17.0755 0612 [ 753D254205E0A62100A050BD8B458D06 ] Skype C2C Service C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
00:13:17.0833 0612 Skype C2C Service - ok
00:13:17.0848 0612 [ F07AF60B152221472FBDB2FECEC4896D ] SkypeUpdate C:\Program Files\Skype\Updater\Updater.exe
00:13:17.0848 0612 SkypeUpdate - ok
00:13:17.0879 0612 [ 3E21C083B8A01CB70BA1F09303010FCE ] Smb C:\Windows\system32\DRIVERS\smb.sys
00:13:17.0879 0612 Smb - ok
00:13:17.0911 0612 [ 6A984831644ECA1A33FFEAE4126F4F37 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
00:13:17.0911 0612 SNMPTRAP - ok
00:13:17.0926 0612 [ 95CF1AE7527FB70F7816563CBC09D942 ] spldr C:\Windows\system32\drivers\spldr.sys
00:13:17.0926 0612 spldr - ok
00:13:17.0957 0612 [ 9AEA093B8F9C37CF45538382CABA2475 ] Spooler C:\Windows\System32\spoolsv.exe
00:13:17.0957 0612 Spooler - ok
00:13:18.0035 0612 [ CF87A1DE791347E75B98885214CED2B8 ] sppsvc C:\Windows\system32\sppsvc.exe
00:13:18.0113 0612 sppsvc - ok
00:13:18.0129 0612 [ B0180B20B065D89232A78A40FE56EAA6 ] sppuinotify C:\Windows\system32\sppuinotify.dll
00:13:18.0129 0612 sppuinotify - ok
00:13:18.0145 0612 [ E4C2764065D66EA1D2D3EBC28FE99C46 ] srv C:\Windows\system32\DRIVERS\srv.sys
00:13:18.0145 0612 srv - ok
00:13:18.0160 0612 [ 03F0545BD8D4C77FA0AE1CEEDFCC71AB ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
00:13:18.0160 0612 srv2 - ok
00:13:18.0191 0612 [ BE6BD660CAA6F291AE06A718A4FA8ABC ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
00:13:18.0191 0612 srvnet - ok
00:13:18.0207 0612 [ D887C9FD02AC9FA880F6E5027A43E118 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
00:13:18.0223 0612 SSDPSRV - ok
00:13:18.0223 0612 [ D318F23BE45D5E3A107469EB64815B50 ] SstpSvc C:\Windows\system32\sstpsvc.dll
00:13:18.0238 0612 SstpSvc - ok
00:13:18.0285 0612 [ 756F9CF78467D8A1D768660C3CBB1347 ] Stereo Service C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
00:13:18.0285 0612 Stereo Service - ok
00:13:18.0301 0612 [ DB32D325C192B801DF274BFD12A7E72B ] stexstor C:\Windows\system32\drivers\stexstor.sys
00:13:18.0301 0612 stexstor - ok
00:13:18.0347 0612 [ E1FB3706030FB4578A0D72C2FC3689E4 ] StiSvc C:\Windows\System32\wiaservc.dll
00:13:18.0347 0612 StiSvc - ok
00:13:18.0379 0612 [ 472AF0311073DCECEAA8FA18BA2BDF89 ] storflt C:\Windows\system32\drivers\vmstorfl.sys
00:13:18.0379 0612 storflt - ok
00:13:18.0394 0612 [ 0BF669F0A910BEDA4A32258D363AF2A5 ] StorSvc C:\Windows\system32\storsvc.dll
00:13:18.0394 0612 StorSvc - ok
00:13:18.0425 0612 [ DCAFFD62259E0BDB433DD67B5BB37619 ] storvsc C:\Windows\system32\drivers\storvsc.sys
00:13:18.0425 0612 storvsc - ok
00:13:18.0457 0612 [ E58C78A848ADD9610A4DB6D214AF5224 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
00:13:18.0457 0612 swenum - ok
00:13:18.0488 0612 [ A28BD92DF340E57B024BA433165D34D7 ] swprv C:\Windows\System32\swprv.dll
00:13:18.0488 0612 swprv - ok
00:13:18.0519 0612 [ 36650D618CA34C9D357DFD3D89B2C56F ] SysMain C:\Windows\system32\sysmain.dll
00:13:18.0535 0612 SysMain - ok
00:13:18.0566 0612 [ 763FECDC3D30C815FE72DD57936C6CD1 ] TabletInputService C:\Windows\System32\TabSvc.dll
00:13:18.0566 0612 TabletInputService - ok
00:13:18.0581 0612 [ 8CF6E2AE1707D82E904ECCA68CEF8B87 ] tap0901 C:\Windows\system32\DRIVERS\tap0901.sys
00:13:18.0581 0612 tap0901 - ok
00:13:18.0597 0612 [ 613BF4820361543956909043A265C6AC ] TapiSrv C:\Windows\System32\tapisrv.dll
00:13:18.0613 0612 TapiSrv - ok
00:13:18.0613 0612 [ B799D9FDB26111737F58288D8DC172D9 ] TBS C:\Windows\System32\tbssvc.dll
00:13:18.0628 0612 TBS - ok
00:13:18.0675 0612 [ A5EBB8F648000E88B7D9390B514976BF ] Tcpip C:\Windows\system32\drivers\tcpip.sys
00:13:18.0691 0612 Tcpip - ok
00:13:18.0737 0612 [ A5EBB8F648000E88B7D9390B514976BF ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
00:13:18.0737 0612 TCPIP6 - ok
00:13:18.0769 0612 [ CCA24162E055C3714CE5A88B100C64ED ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
00:13:18.0769 0612 tcpipreg - ok
00:13:18.0784 0612 [ 1CB91B2BD8F6DD367DFC2EF26FD751B2 ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
00:13:18.0784 0612 TDPIPE - ok
00:13:18.0800 0612 [ 2C2C5AFE7EE4F620D69C23C0617651A8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
00:13:18.0800 0612 TDTCP - ok
00:13:18.0815 0612 [ B459575348C20E8121D6039DA063C704 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
00:13:18.0815 0612 tdx - ok
00:13:18.0831 0612 [ 04DBF4B01EA4BF25A9A3E84AFFAC9B20 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
00:13:18.0831 0612 TermDD - ok
00:13:18.0847 0612 [ 382C804C92811BE57829D8E550A900E2 ] TermService C:\Windows\System32\termsrv.dll
00:13:18.0862 0612 TermService - ok
00:13:18.0862 0612 [ 42FB6AFD6B79D9FE07381609172E7CA4 ] Themes C:\Windows\system32\themeservice.dll
00:13:18.0862 0612 Themes - ok
00:13:18.0878 0612 [ 146B6F43A673379A3C670E86D89BE5EA ] THREADORDER C:\Windows\system32\mmcss.dll
00:13:18.0878 0612 THREADORDER - ok
00:13:18.0909 0612 [ 4792C0378DB99A9BC2AE2DE6CFFF0C3A ] TrkWks C:\Windows\System32\trkwks.dll
00:13:18.0909 0612 TrkWks - ok
00:13:18.0956 0612 [ 2C49B175AEE1D4364B91B531417FE583 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
00:13:18.0971 0612 TrustedInstaller - ok
00:13:18.0971 0612 [ 254BB140EEE3C59D6114C1A86B636877 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
00:13:18.0971 0612 tssecsrv - ok
00:13:18.0987 0612 [ FD1D6C73E6333BE727CBCC6054247654 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
00:13:18.0987 0612 TsUsbFlt - ok
00:13:19.0018 0612 [ 01246F0BAAD7B68EC0F472AA41E33282 ] TsUsbGD C:\Windows\system32\drivers\TsUsbGD.sys
00:13:19.0018 0612 TsUsbGD - ok
00:13:19.0034 0612 [ B2FA25D9B17A68BB93D58B0556E8C90D ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
00:13:19.0034 0612 tunnel - ok
00:13:19.0049 0612 [ 750FBCB269F4D7DD2E420C56B795DB6D ] uagp35 C:\Windows\system32\drivers\uagp35.sys
00:13:19.0049 0612 uagp35 - ok
00:13:19.0065 0612 [ EE43346C7E4B5E63E54F927BABBB32FF ] udfs C:\Windows\system32\DRIVERS\udfs.sys
00:13:19.0065 0612 udfs - ok
00:13:19.0096 0612 [ 8344FD4FCE927880AA1AA7681D4927E5 ] UI0Detect C:\Windows\system32\UI0Detect.exe
00:13:19.0096 0612 UI0Detect - ok
00:13:19.0143 0612 [ 44E8048ACE47BEFBFDC2E9BE4CBC8880 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
00:13:19.0143 0612 uliagpkx - ok
00:13:19.0159 0612 [ D295BED4B898F0FD999FCFA9B32B071B ] umbus C:\Windows\system32\DRIVERS\umbus.sys
00:13:19.0159 0612 umbus - ok
00:13:19.0190 0612 [ 7550AD0C6998BA1CB4843E920EE0FEAC ] UmPass C:\Windows\system32\drivers\umpass.sys
00:13:19.0190 0612 UmPass - ok
00:13:19.0205 0612 [ 409994A8EACEEE4E328749C0353527A0 ] UmRdpService C:\Windows\System32\umrdp.dll
00:13:19.0205 0612 UmRdpService - ok
00:13:19.0252 0612 [ B097EBA0E3FEB020BB65FE43AF5ECCFF ] UNS C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
00:13:19.0252 0612 UNS - ok
00:13:19.0283 0612 [ 833FBB672460EFCE8011D262175FAD33 ] upnphost C:\Windows\System32\upnphost.dll
00:13:19.0283 0612 upnphost - ok
00:13:19.0315 0612 [ EAFE1E00739AFE6C51487A050E772E17 ] USBAAPL C:\Windows\system32\Drivers\usbaapl.sys
00:13:19.0315 0612 USBAAPL - ok
00:13:19.0346 0612 [ BD9C55D7023C5DE374507ACC7A14E2AC ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
00:13:19.0346 0612 usbccgp - ok
00:13:19.0393 0612 [ 04EC7CEC62EC3B6D9354EEE93327FC82 ] usbcir C:\Windows\system32\drivers\usbcir.sys
00:13:19.0393 0612 usbcir - ok
00:13:19.0408 0612 [ F92DE757E4B7CE9C07C5E65423F3AE3B ] usbehci C:\Windows\system32\drivers\usbehci.sys
00:13:19.0424 0612 usbehci - ok
00:13:19.0439 0612 [ 8DC94AEC6A7E644A06135AE7506DC2E9 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
00:13:19.0439 0612 usbhub - ok
00:13:19.0455 0612 [ E185D44FAC515A18D9DEDDC23C2CDF44 ] usbohci C:\Windows\system32\drivers\usbohci.sys
00:13:19.0455 0612 usbohci - ok
00:13:19.0486 0612 [ 797D862FE0875E75C7CC4C1AD7B30252 ] usbprint C:\Windows\system32\drivers\usbprint.sys
00:13:19.0486 0612 usbprint - ok
00:13:19.0502 0612 [ F991AB9CC6B908DB552166768176896A ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
00:13:19.0502 0612 USBSTOR - ok
00:13:19.0533 0612 [ 68DF884CF41CDADA664BEB01DAF67E3D ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
00:13:19.0533 0612 usbuhci - ok
00:13:19.0564 0612 [ 45F4E7BF43DB40A6C6B4D92C76CBC3F2 ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys
00:13:19.0564 0612 usbvideo - ok
00:13:19.0580 0612 [ 081E6E1C91AEC36758902A9F727CD23C ] UxSms C:\Windows\System32\uxsms.dll
00:13:19.0580 0612 UxSms - ok
00:13:19.0595 0612 [ 81951F51E318AECC2D68559E47485CC4 ] VaultSvc C:\Windows\system32\lsass.exe
00:13:19.0595 0612 VaultSvc - ok
00:13:19.0627 0612 [ A059C4C3EDB09E07D21A8E5C0AABD3CB ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
00:13:19.0627 0612 vdrvroot - ok
00:13:19.0658 0612 [ C3CD30495687C2A2F66A65CA6FD89BE9 ] vds C:\Windows\System32\vds.exe
00:13:19.0673 0612 vds - ok
00:13:19.0705 0612 [ 17C408214EA61696CEC9C66E388B14F3 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
00:13:19.0705 0612 vga - ok
00:13:19.0720 0612 [ 8E38096AD5C8570A6F1570A61E251561 ] VgaSave C:\Windows\System32\drivers\vga.sys
00:13:19.0720 0612 VgaSave - ok
00:13:19.0736 0612 [ 5461686CCA2FDA57B024547733AB42E3 ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
00:13:19.0736 0612 vhdmp - ok
00:13:19.0767 0612 [ C829317A37B4BEA8F39735D4B076E923 ] viaagp C:\Windows\system32\drivers\viaagp.sys
00:13:19.0767 0612 viaagp - ok
00:13:19.0767 0612 [ E02F079A6AA107F06B16549C6E5C7B74 ] ViaC7 C:\Windows\system32\drivers\viac7.sys
00:13:19.0767 0612 ViaC7 - ok
00:13:19.0783 0612 [ E43574F6A56A0EE11809B48C09E4FD3C ] viaide C:\Windows\system32\drivers\viaide.sys
00:13:19.0783 0612 viaide - ok
00:13:19.0783 0612 [ C2F2911156FDC7817C52829C86DA494E ] vmbus C:\Windows\system32\drivers\vmbus.sys
00:13:19.0798 0612 vmbus - ok
00:13:19.0814 0612 [ D4D77455211E204F370D08F4963063CE ] VMBusHID C:\Windows\
0
Réponse 35 / 40
thib
 
et la fin
00:13:20.0921 0612 WPCSvc - ok
00:13:20.0937 0612 [ AA53356D60AF47EACC85BC617A4F3F66 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
00:13:20.0937 0612 WPDBusEnum - ok
00:13:20.0968 0612 [ 6DB3276587B853BF886B69528FDB048C ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
00:13:20.0968 0612 ws2ifsl - ok
00:13:20.0984 0612 [ 6F5D49EFE0E7164E03AE773A3FE25340 ] wscsvc C:\Windows\System32\wscsvc.dll
00:13:20.0999 0612 wscsvc - ok
00:13:20.0999 0612 WSearch - ok
00:13:21.0062 0612 [ FC3EC24FCE372C89423E015A2AC1A31E ] wuauserv C:\Windows\system32\wuaueng.dll
00:13:21.0077 0612 wuauserv - ok
00:13:21.0109 0612 [ E714A1C0354636837E20CCBF00888EE7 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
00:13:21.0109 0612 WudfPf - ok
00:13:21.0124 0612 [ 1023EE888C9B47178C5293ED5336AB69 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
00:13:21.0124 0612 WUDFRd - ok
00:13:21.0155 0612 [ 8D1E1E529A2C9E9B6A85B55A345F7629 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
00:13:21.0171 0612 wudfsvc - ok
00:13:21.0187 0612 [ FF2D745B560F7C71B31F30F4D49F73D2 ] WwanSvc C:\Windows\System32\wwansvc.dll
00:13:21.0187 0612 WwanSvc - ok
00:13:21.0202 0612 ================ Scan global ===============================
00:13:21.0218 0612 [ DAB748AE0439955ED2FA22357533DDDB ] C:\Windows\system32\basesrv.dll
00:13:21.0265 0612 [ 48CB4FDBCAAEAC7BCE2F5941545FF071 ] C:\Windows\system32\winsrv.dll
00:13:21.0265 0612 [ 48CB4FDBCAAEAC7BCE2F5941545FF071 ] C:\Windows\system32\winsrv.dll
00:13:21.0296 0612 [ 364455805E64882844EE9ACB72522830 ] C:\Windows\system32\sxssrv.dll
00:13:21.0327 0612 [ 5F1B6A9C35D3D5CA72D6D6FDEF9747D6 ] C:\Windows\system32\services.exe
00:13:21.0327 0612 [Global] - ok
00:13:21.0327 0612 ================ Scan MBR ==================================
00:13:21.0358 0612 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
00:13:21.0639 0612 \Device\Harddisk0\DR0 - ok
00:13:21.0639 0612 ================ Scan VBR ==================================
00:13:21.0655 0612 [ 1C12472DE83A023F9C9744C9D6C6CA2F ] \Device\Harddisk0\DR0\Partition1
00:13:21.0655 0612 \Device\Harddisk0\DR0\Partition1 - ok
00:13:21.0686 0612 [ 954816B45023B8495CDC0C034AAD61CE ] \Device\Harddisk0\DR0\Partition2
00:13:21.0686 0612 \Device\Harddisk0\DR0\Partition2 - ok
00:13:21.0717 0612 [ 34A4B1C77F6F32F6E6E527474FB8B5D7 ] \Device\Harddisk0\DR0\Partition3
00:13:21.0717 0612 \Device\Harddisk0\DR0\Partition3 - ok
00:13:21.0733 0612 [ 0BE2CCC0D955200968EF23EE67FF49D0 ] \Device\Harddisk0\DR0\Partition4
00:13:21.0733 0612 \Device\Harddisk0\DR0\Partition4 - ok
00:13:21.0733 0612 [ 0BE2CCC0D955200968EF23EE67FF49D0 ] \Device\Harddisk0\DR0\Partition5
00:13:21.0733 0612 \Device\Harddisk0\DR0\Partition5 - ok
00:13:21.0733 0612 ============================================================
00:13:21.0733 0612 Scan finished
00:13:21.0733 0612 ============================================================
00:13:21.0748 1692 Detected object count: 1
00:13:21.0748 1692 Actual detected object count: 1
00:14:10.0685 1692 iPod Service ( LockedFile.Multi.Generic ) - skipped by user
00:14:10.0685 1692 iPod Service ( LockedFile.Multi.Generic ) - User select action: Skip
00:14:26.0941 1804 Deinitialize success
0
Réponse 36 / 40
Utilisateur anonyme
 
/!\ ATTENTION SUIVRE A LA LETTRE CES INDICATIONS/!\

__________________________________________________________
>Ce logiciel n'est à utiliser que prescrit par un helper qualifié et formé à l'outil.<
>>>>>>>[u]Ne pas utiliser en dehors de ce cas de figure : dangereux<<<<<<<<
=====================================================

Surtout , pense à l'enregistrement à renommer Combofix en "ton prenom.exe" avant qu'il soit enregistré sur ton disque dur

Telecharge ici : http://download.bleepingcomputer.com/sUBs/ComboFix.exe

Combofix

Si tu utilises AVG, IL FAUT IMPERATIVEMENT LE DESINSTALLER avant d'utiliser Combofix car il peut causer des dégâts en interaction avec l'outil pouvant mener à la réinstallation totale du système.
La simple désactivation du résident n'est pas suffisante.
Télécharge le désinstalleur d'AVG sur ce lien : https://www.avg.com/fr-fr/avg-remover
Choisis la version adéquate (32 ou 64 bits)/!\

_________________________________________________________
>> referme les fenêtres de tous les programmes en cours.
>>Désactive provisoirement et seulement le temps de l'utilisation de ComboFix,
>>la protection en temps réel de ton Antivirus et de tes Antispywares,
>>qui peuvent gêner fortement la procédure de recherche et de nettoyage de l'outil.
°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°

si tu as XP => double clique
si tu as Vista ou windows 7 => clic droit "executer en tant que...."

sur combofix renommé

!!!!!NE TOUCHE A RIEN PENDANT LE TRAVAIL DE COMBOFIX (SOURIS/CLAVIER.....)!!!!!

n'oublie pas de reactiver la garde de ton Antivirus et de tes Antispywares, avant de te reconnecter à internet.

Reviens sur le forum, et copie et colle la totalité du contenu de C:\Combofix.txt dans ton prochain message.

0
Réponse 37 / 40
thib
 
NB : un peu à la manière de malwarebytes, kaspersky a freeze pendant bien 10 minutes ( depuis 4 minutes jusqu'à la fin):
le freeze montrait:
148 objects, no threat
object: C:\program files\ipod\bin\ipodService.exe

PS je me souvens que malware bytes m'a une fois indiqué que le fichié "cleanup.dll" était introuvable, peu être que ca va t'aider, je ne sais pas.
0
Réponse 38 / 40
thib
 
j'ai suivi la procédure, mais combofix m'indique :
avast antivirus fonctionne
avast anti spyware fonctionne

or j'ai désinstallé avast, supprimé le setup, vidé la corbeille et quand je lance une recherche sous le nom avast, l'ordi ne trouve rien .....
0
Réponse 39 / 40
thib
 
je ne peux poursuivre les manipulations ce soir, je vous dis à demain.
merci pour tout, bonne soirée
0
Réponse 40 / 40
Utilisateur anonyme
 
ok tu lance combofix quand meme et passe outre les avertissements de combofix
0

Discussions similaires

ne pas utiliser la souris mais le clavier
isabela -
thomas-richet -

32 réponses
Softonic,est-ce un virus ?
techmel1 -
techmel1 -

6 réponses