System Progressive Protection

Résolu
anto1151 Messages postés 22 Date d'inscription   Statut Membre Dernière intervention   -  
 Utilisateur anonyme -
Bonjour,

Je suis infecté par le virus system progressive protection, qui bloque ma connection internet je ne peux donc pas faire grand chose. J'ai à ma disposition un second ordinateur pour remédier à ce virus avec votre aide étant donné qu'un suivi personnalisé est apparament recommandé.
J'ai déjà télécharger rogue killer.
Merci de me donner la marche à suivre...

40 réponses

  • 1
  • 2
Réponse 1 / 40
anto1151 Messages postés 22 Date d'inscription   Statut Membre Dernière intervention  
 
RogueKiller V8.4.0 [Dec 15 2012] par Tigzy
mail : tigzyRK<at>gmail<dot>com
Remontees : https://www.luanagames.com/index.fr.html
Site Web : https://www.luanagames.com/index.fr.html
Blog : http://tigzyrk.blogspot.com/

Systeme d'exploitation : Windows Vista (6.0.6001 Service Pack 1) 32 bits version
Demarrage : Mode normal
Utilisateur : Anthony [Droits d'admin]
Mode : Recherche -- Date : 06/03/2007 03:55:28

¤¤¤ Processus malicieux : 2 ¤¤¤
[Rogue.AntiSpy-ST][BLACKLIST] 57C5AD80B39D2A06000057C555C331DA.exe -- C:\ProgramData\57C5AD80B39D2A06000057C555C331DA\57C5AD80B39D2A06000057C555C331DA.exe -> TUÉ [TermProc]
[SVCHOST] svchost.exe -- C:\Windows\System32\svchost.exe -> TUÉ [TermProc]

¤¤¤ Entrees de registre : 4 ¤¤¤
[RUN][Rogue.AntiSpy-ST] HKCU\[...]\RunOnce : 57C5AD80B39D2A06000057C555C331DA (C:\ProgramData\57C5AD80B39D2A06000057C555C331DA\57C5AD80B39D2A06000057C555C331DA.exe) -> TROUVÉ
[RUN][Rogue.AntiSpy-ST] HKUS\S-1-5-21-2269422566-135379014-3306892222-1000[...]\RunOnce : 57C5AD80B39D2A06000057C555C331DA (C:\ProgramData\57C5AD80B39D2A06000057C555C331DA\57C5AD80B39D2A06000057C555C331DA.exe) -> TROUVÉ
[HJ DESK] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> TROUVÉ
[HJ DESK] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> TROUVÉ

¤¤¤ Fichiers / Dossiers particuliers: ¤¤¤
[ZeroAccess][FILE] n : C:\$recycle.bin\S-1-5-18\$ff24043d55f85ce9a20a8337d9b4b888\n --> TROUVÉ
[ZeroAccess][FILE] n : C:\$recycle.bin\S-1-5-21-2269422566-135379014-3306892222-1000\$ff24043d55f85ce9a20a8337d9b4b888\n --> TROUVÉ
[ZeroAccess][FILE] @ : C:\$recycle.bin\S-1-5-18\$ff24043d55f85ce9a20a8337d9b4b888\@ --> TROUVÉ
[ZeroAccess][FILE] @ : C:\$recycle.bin\S-1-5-21-2269422566-135379014-3306892222-1000\$ff24043d55f85ce9a20a8337d9b4b888\@ --> TROUVÉ
[ZeroAccess][FOLDER] U : C:\$recycle.bin\S-1-5-18\$ff24043d55f85ce9a20a8337d9b4b888\U --> TROUVÉ
[ZeroAccess][FOLDER] U : C:\$recycle.bin\S-1-5-21-2269422566-135379014-3306892222-1000\$ff24043d55f85ce9a20a8337d9b4b888\U --> TROUVÉ
[ZeroAccess][FOLDER] L : C:\$recycle.bin\S-1-5-18\$ff24043d55f85ce9a20a8337d9b4b888\L --> TROUVÉ
[ZeroAccess][FOLDER] L : C:\$recycle.bin\S-1-5-21-2269422566-135379014-3306892222-1000\$ff24043d55f85ce9a20a8337d9b4b888\L --> TROUVÉ

¤¤¤ Driver : [CHARGE] ¤¤¤
SSDT[75] : NtCreateSection @ 0x83267689 -> HOOKED (Unknown @ 0x8DA97506)
SSDT[276] : NtRequestWaitReplyPort @ 0x8324B415 -> HOOKED (Unknown @ 0x8DA97510)
SSDT[289] : NtSetContextThread @ 0x832B3233 -> HOOKED (Unknown @ 0x8DA9750B)
SSDT[314] : NtSetSecurityObject @ 0x831F7773 -> HOOKED (Unknown @ 0x8DA97515)
SSDT[332] : NtSystemDebugControl @ 0x8321BE60 -> HOOKED (Unknown @ 0x8DA9751A)
SSDT[334] : NtTerminateProcess @ 0x832012F0 -> HOOKED (Unknown @ 0x8DA974A7)
S_SSDT[573] : NtUserSetWindowsHookEx -> HOOKED (Unknown @ 0x8DA9752E)
S_SSDT[576] : NtUserSetWinEventHook -> HOOKED (Unknown @ 0x8DA97533)
IRP[IRP_MJ_CREATE] : \SystemRoot\System32\drivers\mountmgr.sys -> HOOKED ([MAJOR] Unknown @ 0x84F551E8)
IRP[IRP_MJ_CLOSE] : \SystemRoot\System32\drivers\mountmgr.sys -> HOOKED ([MAJOR] Unknown @ 0x84F551E8)
IRP[IRP_MJ_DEVICE_CONTROL] : \SystemRoot\System32\drivers\mountmgr.sys -> HOOKED ([MAJOR] Unknown @ 0x84F551E8)
IRP[IRP_MJ_INTERNAL_DEVICE_CONTROL] : \SystemRoot\System32\drivers\mountmgr.sys -> HOOKED ([MAJOR] Unknown @ 0x84F551E8)
IRP[IRP_MJ_POWER] : \SystemRoot\System32\drivers\mountmgr.sys -> HOOKED ([MAJOR] Unknown @ 0x84F551E8)
IRP[IRP_MJ_SYSTEM_CONTROL] : \SystemRoot\System32\drivers\mountmgr.sys -> HOOKED ([MAJOR] Unknown @ 0x84F551E8)
IRP[IRP_MJ_PNP] : \SystemRoot\System32\drivers\mountmgr.sys -> HOOKED ([MAJOR] Unknown @ 0x84F551E8)

¤¤¤ Infection : Rogue.AntiSpy-ST|ZeroAccess ¤¤¤

¤¤¤ Fichier HOSTS: ¤¤¤
--> C:\Windows\system32\drivers\etc\hosts

127.0.0.1 localhost
::1 localhost


¤¤¤ MBR Verif: ¤¤¤

+++++ PhysicalDrive0: WDC WD1600BEVS-60RST0 ATA Device +++++
--- User ---
[MBR] ac3417144e931c4b7e06eed2d2eb39bc
[BSP] c3c22038c42bb10702aade405ca495e7 : HP tatooed MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 63 | Size: 146020 Mo
1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 299049975 | Size: 6604 Mo
User = LL1 ... OK!
User = LL2 ... OK!

+++++ PhysicalDrive1: WD 1600BEV External USB Device +++++
--- User ---
[MBR] a70724fefd00f6c5328a44073fccf34f
[BSP] d0ec2211ba2260ee6d54a28c5292c11f : Windows XP MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 63 | Size: 152625 Mo
User = LL1 ... OK!
Error reading LL2 MBR!

Termine : << RKreport[1]_S_06032007_035528.txt >>
RKreport[1]_S_06032007_035528.txt
0
Réponse 2 / 40
Utilisateur anonyme
 
bonjour,

réponds ici : 



RogueKiller V8.4.0 [Dec 15 2012] par Tigzy 
mail : tigzyRK<at>gmail<dot>com 
Remontees : https://www.luanagames.com/index.fr.html
 Site Web : https://www.luanagames.com/index.fr.html 
Blog : http://tigzyrk.blogspot.com/ 

Systeme d'exploitation : Windows Vista (6.0.6001 Service Pack 1) 32 bits version
 Demarrage : Mode normal 
Utilisateur : Anthony [Droits d'admin] 
Mode : Recherche -- Date : 06/03/2007 03:55:28 

¤¤¤ Processus malicieux : 2 ¤¤¤ 
[Rogue.AntiSpy-ST][BLACKLIST] 57C5AD80B39D2A06000057C555C331DA.exe -- C:\ProgramData\57C5AD80B39D2A06000057C555C331DA\57C5AD80B39D2A06000057C555C331DA.exe -> TUÉ [TermProc]
 [SVCHOST] svchost.exe -- C:\Windows\System32\svchost.exe -> TUÉ [TermProc] 

¤¤¤ Entrees de registre : 4 ¤¤¤ 
[RUN][Rogue.AntiSpy-ST] HKCU\[...]\RunOnce : 57C5AD80B39D2A06000057C555C331DA (C:\ProgramData\57C5AD80B39D2A06000057C555C331DA\57C5AD80B39D2A06000057C555C331DA.exe) -> TROUVÉ
 [RUN][Rogue.AntiSpy-ST] HKUS\S-1-5-21-2269422566-135379014-3306892222-1000[...]\RunOnce : 57C5AD80B39D2A06000057C555C331DA (C:\ProgramData\57C5AD80B39D2A06000057C555C331DA\57C5AD80B39D2A06000057C555C331DA.exe) -> TROUVÉ
 [HJ DESK] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> TROUVÉ
 [HJ DESK] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> TROUVÉ
 
¤¤¤ Fichiers / Dossiers particuliers: ¤¤¤ 
[ZeroAccess][FILE] n : C:\$recycle.bin\S-1-5-18\$ff24043d55f85ce9a20a8337d9b4b888\n --> TROUVÉ
 [ZeroAccess][FILE] n : C:\$recycle.bin\S-1-5-21-2269422566-135379014-3306892222-1000\$ff24043d55f85ce9a20a8337d9b4b888\n --> TROUVÉ
 [ZeroAccess][FILE] @ : C:\$recycle.bin\S-1-5-18\$ff24043d55f85ce9a20a8337d9b4b888\@ --> TROUVÉ
 [ZeroAccess][FILE] @ : C:\$recycle.bin\S-1-5-21-2269422566-135379014-3306892222-1000\$ff24043d55f85ce9a20a8337d9b4b888\@ --> TROUVÉ
 [ZeroAccess][FOLDER] U : C:\$recycle.bin\S-1-5-18\$ff24043d55f85ce9a20a8337d9b4b888\U --> TROUVÉ
 [ZeroAccess][FOLDER] U : C:\$recycle.bin\S-1-5-21-2269422566-135379014-3306892222-1000\$ff24043d55f85ce9a20a8337d9b4b888\U --> TROUVÉ
 [ZeroAccess][FOLDER] L : C:\$recycle.bin\S-1-5-18\$ff24043d55f85ce9a20a8337d9b4b888\L --> TROUVÉ
 [ZeroAccess][FOLDER] L : C:\$recycle.bin\S-1-5-21-2269422566-135379014-3306892222-1000\$ff24043d55f85ce9a20a8337d9b4b888\L --> TROUVÉ
 
¤¤¤ Driver : [CHARGE] ¤¤¤ 
SSDT[75] : NtCreateSection @ 0x83267689 -> HOOKED (Unknown @ 0x8DA97506) 
SSDT[276] : NtRequestWaitReplyPort @ 0x8324B415 -> HOOKED (Unknown @ 0x8DA97510)
 SSDT[289] : NtSetContextThread @ 0x832B3233 -> HOOKED (Unknown @ 0x8DA9750B) 
SSDT[314] : NtSetSecurityObject @ 0x831F7773 -> HOOKED (Unknown @ 0x8DA97515) 
SSDT[332] : NtSystemDebugControl @ 0x8321BE60 -> HOOKED (Unknown @ 0x8DA9751A) 
SSDT[334] : NtTerminateProcess @ 0x832012F0 -> HOOKED (Unknown @ 0x8DA974A7) 
S_SSDT[573] : NtUserSetWindowsHookEx -> HOOKED (Unknown @ 0x8DA9752E) 
S_SSDT[576] : NtUserSetWinEventHook -> HOOKED (Unknown @ 0x8DA97533) 
IRP[IRP_MJ_CREATE] : \SystemRoot\System32\drivers\mountmgr.sys -> HOOKED ([MAJOR] Unknown @ 0x84F551E8)
 IRP[IRP_MJ_CLOSE] : \SystemRoot\System32\drivers\mountmgr.sys -> HOOKED ([MAJOR] Unknown @ 0x84F551E8)
 IRP[IRP_MJ_DEVICE_CONTROL] : \SystemRoot\System32\drivers\mountmgr.sys -> HOOKED ([MAJOR] Unknown @ 0x84F551E8)
 IRP[IRP_MJ_INTERNAL_DEVICE_CONTROL] : \SystemRoot\System32\drivers\mountmgr.sys -> HOOKED ([MAJOR] Unknown @ 0x84F551E8)
 IRP[IRP_MJ_POWER] : \SystemRoot\System32\drivers\mountmgr.sys -> HOOKED ([MAJOR] Unknown @ 0x84F551E8)
 IRP[IRP_MJ_SYSTEM_CONTROL] : \SystemRoot\System32\drivers\mountmgr.sys -> HOOKED ([MAJOR] Unknown @ 0x84F551E8)
 IRP[IRP_MJ_PNP] : \SystemRoot\System32\drivers\mountmgr.sys -> HOOKED ([MAJOR] Unknown @ 0x84F551E8)
 
¤¤¤ Infection : Rogue.AntiSpy-ST|ZeroAccess ¤¤¤ 

¤¤¤ Fichier HOSTS: ¤¤¤ 
--> C:\Windows\system32\drivers\etc\hosts 

127.0.0.1 localhost 
::1 localhost 


¤¤¤ MBR Verif: ¤¤¤ 

+++++ PhysicalDrive0: WDC WD1600BEVS-60RST0 ATA Device +++++ 
--- User --- 
[MBR] ac3417144e931c4b7e06eed2d2eb39bc 
[BSP] c3c22038c42bb10702aade405ca495e7 : HP tatooed MBR Code 
Partition table: 
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 63 | Size: 146020 Mo 
1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 299049975 | Size: 6604 Mo 
User = LL1 ... OK! 
User = LL2 ... OK! 

+++++ PhysicalDrive1: WD 1600BEV External USB Device +++++ 
--- User --- 
[MBR] a70724fefd00f6c5328a44073fccf34f 
[BSP] d0ec2211ba2260ee6d54a28c5292c11f : Windows XP MBR Code 
Partition table: 
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 63 | Size: 152625 Mo 
User = LL1 ... OK! 
Error reading LL2 MBR! 

Termine : << RKreport[1]_S_06032007_035528.txt >> 
RKreport[1]_S_06032007_035528.txt




relance Roguekilelr, clique sur Supprimer,

poste son rapport





0
Réponse 3 / 40
anto1151 Messages postés 22 Date d'inscription   Statut Membre Dernière intervention  
 
DSL nouveau sur le site... lol jarrive a le démarrer en mode sans échec avec prise en charge réseau, je le fais ??
0
Réponse 4 / 40
Utilisateur anonyme
 
tu as déjà lancé Roguekiller,


relance Roguekiller, clique sur Supprimer,
poste son rapport

0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 5 / 40
anto1151 Messages postés 22 Date d'inscription   Statut Membre Dernière intervention  
 
RogueKiller V8.4.0 [Dec 15 2012] par Tigzy
mail : tigzyRK<at>gmail<dot>com
Remontees : https://www.luanagames.com/index.fr.html
Site Web : https://www.luanagames.com/index.fr.html
Blog : http://tigzyrk.blogspot.com/

Systeme d'exploitation : Windows Vista (6.0.6001 Service Pack 1) 32 bits version
Demarrage : Mode normal
Utilisateur : Anthony [Droits d'admin]
Mode : Suppression -- Date : 06/03/2007 04:22:23

¤¤¤ Processus malicieux : 1 ¤¤¤
[Rogue.AntiSpy-ST][BLACKLIST] 57C5AD80B39D2A06000057C555C331DA.exe -- C:\ProgramData\57C5AD80B39D2A06000057C555C331DA\57C5AD80B39D2A06000057C555C331DA.exe -> TUÉ [TermProc]

¤¤¤ Entrees de registre : 3 ¤¤¤
[RUN][Rogue.AntiSpy-ST] HKCU\[...]\RunOnce : 57C5AD80B39D2A06000057C555C331DA (C:\ProgramData\57C5AD80B39D2A06000057C555C331DA\57C5AD80B39D2A06000057C555C331DA.exe) -> SUPPRIMÉ
[HJ DESK] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> REMPLACÉ (0)
[HJ DESK] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> REMPLACÉ (0)

¤¤¤ Fichiers / Dossiers particuliers: ¤¤¤
[ZeroAccess][FILE] n : C:\$recycle.bin\S-1-5-18\$ff24043d55f85ce9a20a8337d9b4b888\n --> SUPPRIMÉ
[ZeroAccess][FILE] n : C:\$recycle.bin\S-1-5-21-2269422566-135379014-3306892222-1000\$ff24043d55f85ce9a20a8337d9b4b888\n --> SUPPRIMÉ
[ZeroAccess][FILE] @ : C:\$recycle.bin\S-1-5-18\$ff24043d55f85ce9a20a8337d9b4b888\@ --> SUPPRIMÉ
[ZeroAccess][FILE] @ : C:\$recycle.bin\S-1-5-21-2269422566-135379014-3306892222-1000\$ff24043d55f85ce9a20a8337d9b4b888\@ --> SUPPRIMÉ
[Del.Parent][FILE] 00000001.@ : C:\$recycle.bin\S-1-5-18\$ff24043d55f85ce9a20a8337d9b4b888\U\00000001.@ --> SUPPRIMÉ
[Del.Parent][FILE] 80000000.@ : C:\$recycle.bin\S-1-5-18\$ff24043d55f85ce9a20a8337d9b4b888\U\80000000.@ --> SUPPRIMÉ
[Del.Parent][FILE] 800000cb.@ : C:\$recycle.bin\S-1-5-18\$ff24043d55f85ce9a20a8337d9b4b888\U\800000cb.@ --> SUPPRIMÉ
[ZeroAccess][FOLDER] ROOT : C:\$recycle.bin\S-1-5-18\$ff24043d55f85ce9a20a8337d9b4b888\U --> SUPPRIMÉ
[ZeroAccess][FOLDER] ROOT : C:\$recycle.bin\S-1-5-21-2269422566-135379014-3306892222-1000\$ff24043d55f85ce9a20a8337d9b4b888\U --> SUPPRIMÉ
[ZeroAccess][FOLDER] ROOT : C:\$recycle.bin\S-1-5-18\$ff24043d55f85ce9a20a8337d9b4b888\L --> SUPPRIMÉ
[ZeroAccess][FOLDER] ROOT : C:\$recycle.bin\S-1-5-21-2269422566-135379014-3306892222-1000\$ff24043d55f85ce9a20a8337d9b4b888\L --> SUPPRIMÉ

¤¤¤ Driver : [CHARGE] ¤¤¤
SSDT[75] : NtCreateSection @ 0x83252689 -> HOOKED (Unknown @ 0x8D5E6FC6)
SSDT[276] : NtRequestWaitReplyPort @ 0x83236415 -> HOOKED (Unknown @ 0x8D5E6FD0)
SSDT[289] : NtSetContextThread @ 0x8329E233 -> HOOKED (Unknown @ 0x8D5E6FCB)
SSDT[314] : NtSetSecurityObject @ 0x831E2773 -> HOOKED (Unknown @ 0x8D5E6FD5)
SSDT[332] : NtSystemDebugControl @ 0x83206E60 -> HOOKED (Unknown @ 0x8D5E6FDA)
SSDT[334] : NtTerminateProcess @ 0x831EC2F0 -> HOOKED (Unknown @ 0x8D5E6F67)
S_SSDT[573] : NtUserSetWindowsHookEx -> HOOKED (Unknown @ 0x8D5E6FEE)
S_SSDT[576] : NtUserSetWinEventHook -> HOOKED (Unknown @ 0x8D5E6FF3)
IRP[IRP_MJ_CREATE] : \SystemRoot\System32\drivers\mountmgr.sys -> HOOKED ([MAJOR] Unknown @ 0x84F551E8)
IRP[IRP_MJ_CLOSE] : \SystemRoot\System32\drivers\mountmgr.sys -> HOOKED ([MAJOR] Unknown @ 0x84F551E8)
IRP[IRP_MJ_DEVICE_CONTROL] : \SystemRoot\System32\drivers\mountmgr.sys -> HOOKED ([MAJOR] Unknown @ 0x84F551E8)
IRP[IRP_MJ_INTERNAL_DEVICE_CONTROL] : \SystemRoot\System32\drivers\mountmgr.sys -> HOOKED ([MAJOR] Unknown @ 0x84F551E8)
IRP[IRP_MJ_POWER] : \SystemRoot\System32\drivers\mountmgr.sys -> HOOKED ([MAJOR] Unknown @ 0x84F551E8)
IRP[IRP_MJ_SYSTEM_CONTROL] : \SystemRoot\System32\drivers\mountmgr.sys -> HOOKED ([MAJOR] Unknown @ 0x84F551E8)
IRP[IRP_MJ_PNP] : \SystemRoot\System32\drivers\mountmgr.sys -> HOOKED ([MAJOR] Unknown @ 0x84F551E8)

¤¤¤ Infection : Rogue.AntiSpy-ST|ZeroAccess ¤¤¤

¤¤¤ Fichier HOSTS: ¤¤¤
--> C:\Windows\system32\drivers\etc\hosts

127.0.0.1 localhost
::1 localhost


¤¤¤ MBR Verif: ¤¤¤

+++++ PhysicalDrive0: WDC WD1600BEVS-60RST0 ATA Device +++++
--- User ---
[MBR] ac3417144e931c4b7e06eed2d2eb39bc
[BSP] c3c22038c42bb10702aade405ca495e7 : HP tatooed MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 63 | Size: 146020 Mo
1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 299049975 | Size: 6604 Mo
User = LL1 ... OK!
User = LL2 ... OK!

+++++ PhysicalDrive1: WD 1600BEV External USB Device +++++
--- User ---
[MBR] a70724fefd00f6c5328a44073fccf34f
[BSP] d0ec2211ba2260ee6d54a28c5292c11f : Windows XP MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 63 | Size: 152625 Mo
User = LL1 ... OK!
Error reading LL2 MBR!

Termine : << RKreport[3]_D_06032007_042223.txt >>
RKreport[1]_S_06032007_035528.txt ; RKreport[2]_S_06032007_041831.txt ; RKreport[3]_D_06032007_042223.txt
0
Réponse 6 / 40
anto1151 Messages postés 22 Date d'inscription   Statut Membre Dernière intervention  
 
Voici le rapport après suppression...
0
Réponse 7 / 40
Utilisateur anonyme
 
tu as du Zeroaccess suur ton pc !


* Télécharge TDSSKiller sur ton bureau :

https://support.kaspersky.com/downloads/utils/tdsskiller.exe

* Lance le ( Utilisateurs de vista/Seven -> Clic droit puis " Exécuter en tant qu'administrateur " )

* Clique sur [Start Scan] pour démarrer l'analyse.

* Si des élements sont trouvés, cliques sur [Continue] puis sur [Reboot Now]

* Un rapport s'ouvrira au redémarrage du PC.

* Copie/Colle son contenu dans ta prochaine réponse.

Note : Le rapport se trouve également sous C:\TDSSKiller.N°deversion_Date_Heure_log.txt.

note :
Conserve l'action proposée par défaut par l'outil :

- Si TDSS.tdl2 : l'option Delete sera cochée.
- Si TDSS.tdl3 ou TDSS.tdl4 : assure toi que Cure soit bien cochée.
- Si "Suspicious object" ou Sptd ou ForgedFile.Multi.Generic : laisse l'option cochée sur Skip
- Si Rootkit.Win32.ZAccess.* est détecté règle sur cure en haut , et delete en bas:D

0
Réponse 8 / 40
anto1151 Messages postés 22 Date d'inscription   Statut Membre Dernière intervention  
 
Je n'ai pas l'onglet "reboot now" il y a effectivement un fichier suspicieux.
J'ai essayé de rallumer l'ordinateur est pas de rapport qui saffiche et dans l'onglet "report" pas de possibilités pour le copier/coller
0
Réponse 9 / 40
Utilisateur anonyme
 
Le rapport se trouve également sous C:\TDSSKiller.N°deversion_Date_Heure_log.txt.
0
Réponse 10 / 40
anto1151 Messages postés 22 Date d'inscription   Statut Membre Dernière intervention  
 
06:41:44.0500 3456 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
06:41:44.0875 3456 ============================================================
06:41:44.0875 3456 Current date / time: 2007/03/06 06:41:44.0875
06:41:44.0875 3456 SystemInfo:
06:41:44.0875 3456
06:41:44.0875 3456 OS Version: 6.0.6001 ServicePack: 1.0
06:41:44.0875 3456 Product type: Workstation
06:41:44.0875 3456 ComputerName: PC-DE-ANTHONY
06:41:44.0875 3456 UserName: Anthony
06:41:44.0875 3456 Windows directory: C:\Windows
06:41:44.0875 3456 System windows directory: C:\Windows
06:41:44.0875 3456 Processor architecture: Intel x86
06:41:44.0875 3456 Number of processors: 2
06:41:44.0875 3456 Page size: 0x1000
06:41:44.0875 3456 Boot type: Normal boot
06:41:44.0875 3456 ============================================================
06:41:52.0487 3456 Drive \Device\Harddisk0\DR0 - Size: 0x25433D6000 (149.05 Gb), SectorSize: 0x200, Cylinders: 0x4C01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
06:41:52.0503 3456 Drive \Device\Harddisk1\DR1 - Size: 0x25433D6000 (149.05 Gb), SectorSize: 0x200, Cylinders: 0x4C01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
06:41:52.0503 3456 ============================================================
06:41:52.0503 3456 \Device\Harddisk0\DR0:
06:41:52.0519 3456 MBR partitions:
06:41:52.0519 3456 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x11D323B8
06:41:52.0519 3456 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x11D323F7, BlocksNum 0xCE66CA
06:41:52.0519 3456 \Device\Harddisk1\DR1:
06:41:52.0519 3456 MBR partitions:
06:41:52.0519 3456 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x12A18A82
06:41:52.0519 3456 ============================================================
06:41:52.0581 3456 C: <-> \Device\Harddisk0\DR0\Partition1
06:41:52.0721 3456 D: <-> \Device\Harddisk0\DR0\Partition2
06:41:53.0096 3456 H: <-> \Device\Harddisk1\DR1\Partition1
06:41:53.0096 3456 ============================================================
06:41:53.0096 3456 Initialize success
06:41:53.0096 3456 ============================================================
06:42:25.0575 3980 ============================================================
06:42:25.0575 3980 Scan started
06:42:25.0575 3980 Mode: Manual;
06:42:25.0575 3980 ============================================================
06:42:28.0539 3980 ================ Scan system memory ========================
06:42:28.0539 3980 System memory - ok
06:42:28.0539 3980 ================ Scan services =============================
06:42:29.0038 3980 [ FCB8C7210F0135E24C6580F7F649C73C ] ACPI C:\Windows\system32\drivers\acpi.sys
06:42:29.0069 3980 ACPI - ok
06:42:29.0210 3980 [ 2EDC5BBAC6C651ECE337BDE8ED97C9FB ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
06:42:29.0272 3980 adp94xx - ok
06:42:29.0381 3980 [ B84088CA3CDCA97DA44A984C6CE1CCAD ] adpahci C:\Windows\system32\drivers\adpahci.sys
06:42:29.0459 3980 adpahci - ok
06:42:29.0475 3980 [ 7880C67BCCC27C86FD05AA2AFB5EA469 ] adpu160m C:\Windows\system32\drivers\adpu160m.sys
06:42:29.0522 3980 adpu160m - ok
06:42:29.0569 3980 [ 9AE713F8E30EFC2ABCCD84904333DF4D ] adpu320 C:\Windows\system32\drivers\adpu320.sys
06:42:29.0615 3980 adpu320 - ok
06:42:29.0740 3980 [ 9D1FDA9E086BA64E3C93C9DE32461BCF ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
06:42:29.0740 3980 AeLookupSvc - ok
06:42:29.0881 3980 [ 48EB99503533C27AC6135648E5474457 ] AFD C:\Windows\system32\drivers\afd.sys
06:42:29.0974 3980 AFD - ok
06:42:30.0037 3980 [ EF23439CDD587F64C2C1B8825CEAD7D8 ] agp440 C:\Windows\system32\drivers\agp440.sys
06:42:30.0115 3980 agp440 - ok
06:42:30.0177 3980 [ AE1FDF7BF7BB6C6A70F67699D880592A ] aic78xx C:\Windows\system32\drivers\djsvs.sys
06:42:30.0255 3980 aic78xx - ok
06:42:30.0302 3980 [ A1545B731579895D8CC44FC0481C1192 ] ALG C:\Windows\System32\alg.exe
06:42:30.0302 3980 ALG - ok
06:42:30.0333 3980 [ 90395B64600EBB4552E26E178C94B2E4 ] aliide C:\Windows\system32\drivers\aliide.sys
06:42:30.0427 3980 aliide - ok
06:42:30.0473 3980 [ 2B13E304C9DFDFA5EB582F6A149FA2C7 ] amdagp C:\Windows\system32\drivers\amdagp.sys
06:42:30.0489 3980 amdagp - ok
06:42:30.0536 3980 [ 0577DF1D323FE75A739C787893D300EA ] amdide C:\Windows\system32\drivers\amdide.sys
06:42:30.0583 3980 amdide - ok
06:42:30.0692 3980 [ DC487885BCEF9F28EECE6FAC0E5DDFC5 ] AmdK7 C:\Windows\system32\drivers\amdk7.sys
06:42:30.0785 3980 AmdK7 - ok
06:42:30.0832 3980 [ 0CA0071DA4315B00FC1328CA86B425DA ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
06:42:30.0879 3980 AmdK8 - ok
06:42:31.0253 3980 [ B458A95F12D36F55F98A42FD66BAEBFA ] AntiVirSchedulerService C:\Program Files\Avira\AntiVir Desktop\sched.exe
06:42:31.0300 3980 AntiVirSchedulerService - ok
06:42:31.0378 3980 [ CC3110EEF77AA0810CAA03741168BA8F ] AntiVirService C:\Program Files\Avira\AntiVir Desktop\avguard.exe
06:42:31.0456 3980 AntiVirService - ok
06:42:31.0597 3980 [ C6D704C7F0434DC791AAC37CAC4B6E14 ] Appinfo C:\Windows\System32\appinfo.dll
06:42:31.0612 3980 Appinfo - ok
06:42:31.0893 3980 [ 3DEBBECF665DCDDE3A95D9B902010817 ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
06:42:31.0955 3980 Apple Mobile Device - ok
06:42:32.0002 3980 [ 5F673180268BB1FDB69C99B6619FE379 ] arc C:\Windows\system32\drivers\arc.sys
06:42:32.0049 3980 arc - ok
06:42:32.0111 3980 [ 957F7540B5E7F602E44648C7DE5A1C05 ] arcsas C:\Windows\system32\drivers\arcsas.sys
06:42:32.0158 3980 arcsas - ok
06:42:32.0283 3980 [ 03E98E6949E4F2F7519EFFDA963F9074 ] ASBroker c:\Program Files\Bioscrypt\VeriSoft\Bin\ASWLNPkg.dll
06:42:32.0283 3980 ASBroker - ok
06:42:32.0345 3980 [ BB3C0521ECCA4BB17AC55EB640DF0FA5 ] ASChannel c:\Program Files\Bioscrypt\VeriSoft\Bin\AsChnl.dll
06:42:32.0345 3980 ASChannel - ok
06:42:32.0408 3980 [ 53B202ABEE6455406254444303E87BE1 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
06:42:32.0439 3980 AsyncMac - ok
06:42:32.0501 3980 [ 2D9C903DC76A66813D350A562DE40ED9 ] atapi C:\Windows\system32\drivers\atapi.sys
06:42:32.0501 3980 atapi - ok
06:42:32.0626 3980 [ 963FCB101B224C3F01ADDC6AEB4D6796 ] ATSWPDRV C:\Windows\system32\DRIVERS\ATSwpDrv.sys
06:42:32.0626 3980 ATSWPDRV - ok
06:42:32.0813 3980 [ 42076E29AAFA0830A2C5D4E310F58DD1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
06:42:32.0829 3980 AudioEndpointBuilder - ok
06:42:32.0845 3980 [ 42076E29AAFA0830A2C5D4E310F58DD1 ] Audiosrv C:\Windows\System32\Audiosrv.dll
06:42:32.0845 3980 Audiosrv - ok
06:42:32.0923 3980 Scan interrupted by user!
06:42:32.0923 3980 ================ Scan global ===============================
06:42:32.0923 3980 Scan interrupted by user!
06:42:32.0923 3980 ================ Scan MBR ==================================
06:42:32.0923 3980 Scan interrupted by user!
06:42:32.0923 3980 ================ Scan VBR ==================================
06:42:32.0923 3980 Scan interrupted by user!
06:42:32.0923 3980 ============================================================
06:42:32.0923 3980 Scan finished
06:42:32.0923 3980 ============================================================
06:42:32.0954 3548 Detected object count: 0
06:42:32.0954 3548 Actual detected object count: 0
06:42:50.0691 1772 ============================================================
06:42:50.0691 1772 Scan started
06:42:50.0691 1772 Mode: Manual;
06:42:50.0691 1772 ============================================================
06:42:53.0655 1772 ================ Scan system memory ========================
06:42:53.0655 1772 System memory - ok
06:42:53.0655 1772 ================ Scan services =============================
06:42:54.0778 1772 [ FCB8C7210F0135E24C6580F7F649C73C ] ACPI C:\Windows\system32\drivers\acpi.sys
06:42:54.0778 1772 ACPI - ok
06:42:54.0872 1772 [ 2EDC5BBAC6C651ECE337BDE8ED97C9FB ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
06:42:54.0887 1772 adp94xx - ok
06:42:54.0950 1772 [ B84088CA3CDCA97DA44A984C6CE1CCAD ] adpahci C:\Windows\system32\drivers\adpahci.sys
06:42:54.0965 1772 adpahci - ok
06:42:55.0028 1772 [ 7880C67BCCC27C86FD05AA2AFB5EA469 ] adpu160m C:\Windows\system32\drivers\adpu160m.sys
06:42:55.0028 1772 adpu160m - ok
06:42:55.0090 1772 [ 9AE713F8E30EFC2ABCCD84904333DF4D ] adpu320 C:\Windows\system32\drivers\adpu320.sys
06:42:55.0090 1772 adpu320 - ok
06:42:55.0168 1772 [ 9D1FDA9E086BA64E3C93C9DE32461BCF ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
06:42:55.0168 1772 AeLookupSvc - ok
06:42:55.0231 1772 [ 48EB99503533C27AC6135648E5474457 ] AFD C:\Windows\system32\drivers\afd.sys
06:42:55.0231 1772 AFD - ok
06:42:55.0262 1772 [ EF23439CDD587F64C2C1B8825CEAD7D8 ] agp440 C:\Windows\system32\drivers\agp440.sys
06:42:55.0262 1772 agp440 - ok
06:42:55.0293 1772 [ AE1FDF7BF7BB6C6A70F67699D880592A ] aic78xx C:\Windows\system32\drivers\djsvs.sys
06:42:55.0293 1772 aic78xx - ok
06:42:55.0371 1772 [ A1545B731579895D8CC44FC0481C1192 ] ALG C:\Windows\System32\alg.exe
06:42:55.0387 1772 ALG - ok
06:42:55.0402 1772 [ 90395B64600EBB4552E26E178C94B2E4 ] aliide C:\Windows\system32\drivers\aliide.sys
06:42:55.0418 1772 aliide - ok
06:42:55.0465 1772 [ 2B13E304C9DFDFA5EB582F6A149FA2C7 ] amdagp C:\Windows\system32\drivers\amdagp.sys
06:42:55.0465 1772 amdagp - ok
06:42:55.0480 1772 [ 0577DF1D323FE75A739C787893D300EA ] amdide C:\Windows\system32\drivers\amdide.sys
06:42:55.0480 1772 amdide - ok
06:42:55.0496 1772 [ DC487885BCEF9F28EECE6FAC0E5DDFC5 ] AmdK7 C:\Windows\system32\drivers\amdk7.sys
06:42:55.0496 1772 AmdK7 - ok
06:42:55.0543 1772 [ 0CA0071DA4315B00FC1328CA86B425DA ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
06:42:55.0543 1772 AmdK8 - ok
06:42:55.0714 1772 [ B458A95F12D36F55F98A42FD66BAEBFA ] AntiVirSchedulerService C:\Program Files\Avira\AntiVir Desktop\sched.exe
06:42:55.0730 1772 AntiVirSchedulerService - ok
06:42:55.0761 1772 [ CC3110EEF77AA0810CAA03741168BA8F ] AntiVirService C:\Program Files\Avira\AntiVir Desktop\avguard.exe
06:42:55.0761 1772 AntiVirService - ok
06:42:55.0792 1772 [ C6D704C7F0434DC791AAC37CAC4B6E14 ] Appinfo C:\Windows\System32\appinfo.dll
06:42:55.0792 1772 Appinfo - ok
06:42:56.0011 1772 [ 3DEBBECF665DCDDE3A95D9B902010817 ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
06:42:56.0011 1772 Apple Mobile Device - ok
06:42:56.0042 1772 [ 5F673180268BB1FDB69C99B6619FE379 ] arc C:\Windows\system32\drivers\arc.sys
06:42:56.0042 1772 arc - ok
06:42:56.0073 1772 [ 957F7540B5E7F602E44648C7DE5A1C05 ] arcsas C:\Windows\system32\drivers\arcsas.sys
06:42:56.0073 1772 arcsas - ok
06:42:56.0167 1772 [ 03E98E6949E4F2F7519EFFDA963F9074 ] ASBroker c:\Program Files\Bioscrypt\VeriSoft\Bin\ASWLNPkg.dll
06:42:56.0167 1772 ASBroker - ok
06:42:56.0198 1772 [ BB3C0521ECCA4BB17AC55EB640DF0FA5 ] ASChannel c:\Program Files\Bioscrypt\VeriSoft\Bin\AsChnl.dll
06:42:56.0198 1772 ASChannel - ok
06:42:56.0245 1772 [ 53B202ABEE6455406254444303E87BE1 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
06:42:56.0245 1772 AsyncMac - ok
06:42:56.0307 1772 [ 2D9C903DC76A66813D350A562DE40ED9 ] atapi C:\Windows\system32\drivers\atapi.sys
06:42:56.0307 1772 atapi - ok
06:42:56.0369 1772 [ 963FCB101B224C3F01ADDC6AEB4D6796 ] ATSWPDRV C:\Windows\system32\DRIVERS\ATSwpDrv.sys
06:42:56.0385 1772 ATSWPDRV - ok
06:42:56.0463 1772 [ 42076E29AAFA0830A2C5D4E310F58DD1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
06:42:56.0525 1772 AudioEndpointBuilder - ok
06:42:56.0541 1772 [ 42076E29AAFA0830A2C5D4E310F58DD1 ] Audiosrv C:\Windows\System32\Audiosrv.dll
06:42:56.0557 1772 Audiosrv - ok
06:42:56.0572 1772 [ D5541F0AFB767E85FC412FC609D96A74 ] avgntflt C:\Windows\system32\DRIVERS\avgntflt.sys
06:42:56.0619 1772 avgntflt - ok
06:42:56.0697 1772 [ 7D967A682D4694DF7FA57D63A2DB01FE ] avipbb C:\Windows\system32\DRIVERS\avipbb.sys
06:42:56.0759 1772 avipbb - ok
06:42:56.0806 1772 [ 271CFD1A989209B1964E24D969552BF7 ] avkmgr C:\Windows\system32\DRIVERS\avkmgr.sys
06:42:56.0869 1772 avkmgr - ok
06:42:56.0978 1772 [ CF6A67C90951E3E763D2135DEDE44B85 ] BCM43XV C:\Windows\system32\DRIVERS\bcmwl6.sys
06:42:57.0103 1772 BCM43XV - ok
06:42:57.0196 1772 [ 67E506B75BD5326A3EC7B70BD014DFB6 ] Beep C:\Windows\system32\drivers\Beep.sys
06:42:57.0243 1772 Beep - ok
06:42:57.0508 1772 [ 02ED7B4DBC2A3232A389106DA7515C3D ] BITS C:\Windows\System32\qmgr.dll
06:42:57.0571 1772 BITS - ok
06:42:57.0586 1772 blbdrive - ok
06:42:57.0758 1772 [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
06:42:57.0883 1772 Bonjour Service - ok
06:42:58.0054 1772 [ BCF4A819BF287AC4FECFDAC15E8836B1 ] Boonty Games C:\Program Files\Common Files\BOONTY Shared\Service\Boonty.exe
06:42:58.0054 1772 Boonty Games - ok
06:42:58.0101 1772 [ 8153396D5551276227FA146900F734E6 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
06:42:58.0148 1772 bowser - ok
06:42:58.0226 1772 [ 9F9ACC7F7CCDE8A15C282D3F88B43309 ] BrFiltLo C:\Windows\system32\drivers\brfiltlo.sys
06:42:58.0273 1772 BrFiltLo - ok
06:42:58.0319 1772 [ 56801AD62213A41F6497F96DEE83755A ] BrFiltUp C:\Windows\system32\drivers\brfiltup.sys
06:42:58.0397 1772 BrFiltUp - ok
06:42:58.0538 1772 [ 72DF06D26AE4CED2E08F428B96302B0E ] Bridge C:\Windows\system32\DRIVERS\bridge.sys
06:42:58.0585 1772 Bridge - ok
06:42:58.0600 1772 [ 72DF06D26AE4CED2E08F428B96302B0E ] BridgeMP C:\Windows\system32\DRIVERS\bridge.sys
06:42:58.0616 1772 BridgeMP - ok
06:42:58.0663 1772 [ A3629A0C4226F9E9C72FAAEEBC3AD33C ] Browser C:\Windows\System32\browser.dll
06:42:58.0772 1772 Browser - ok
06:42:58.0850 1772 [ B304E75CFF293029EDDF094246747113 ] Brserid C:\Windows\system32\drivers\brserid.sys
06:42:58.0897 1772 Brserid - ok
06:42:58.0959 1772 [ 203F0B1E73ADADBBB7B7B1FABD901F6B ] BrSerWdm C:\Windows\system32\drivers\brserwdm.sys
06:42:58.0990 1772 BrSerWdm - ok
06:42:59.0021 1772 [ BD456606156BA17E60A04E18016AE54B ] BrUsbMdm C:\Windows\system32\drivers\brusbmdm.sys
06:42:59.0037 1772 BrUsbMdm - ok
06:42:59.0099 1772 [ AF72ED54503F717A43268B3CC5FAEC2E ] BrUsbSer C:\Windows\system32\drivers\brusbser.sys
06:42:59.0193 1772 BrUsbSer - ok
06:42:59.0255 1772 [ AD07C1EC6665B8B35741AB91200C6B68 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
06:42:59.0349 1772 BTHMODEM - ok
06:42:59.0427 1772 [ 7ADD03E75BEB9E6DD102C3081D29840A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
06:42:59.0505 1772 cdfs - ok
06:42:59.0599 1772 [ 1EC25CEA0DE6AC4718BF89F9E1778B57 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
06:42:59.0645 1772 cdrom - ok
06:42:59.0801 1772 [ 87C2D0377B23E2D8A41093C2F5FB1A5B ] CertPropSvc C:\Windows\System32\certprop.dll
06:42:59.0833 1772 CertPropSvc - ok
06:43:00.0238 1772 [ DA8E0AFC7BAA226C538EF53AC2F90897 ] circlass C:\Windows\system32\drivers\circlass.sys
06:43:00.0394 1772 circlass - ok
06:43:00.0769 1772 [ 16356E5A3D7BE77B2010BE72C36E944C ] CLCapSvc C:\Program Files\HP\QuickPlay\Kernel\TV\CLCapSvc.exe
06:43:00.0784 1772 CLCapSvc - ok
06:43:00.0862 1772 [ 465745561C832B29F7C48B488AAB3842 ] CLFS C:\Windows\system32\CLFS.sys
06:43:00.0956 1772 CLFS - ok
06:43:01.0065 1772 [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
06:43:01.0159 1772 clr_optimization_v2.0.50727_32 - ok
06:43:01.0252 1772 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
06:43:01.0268 1772 clr_optimization_v4.0.30319_32 - ok
06:43:01.0346 1772 [ E97D797AF6C2E64BFC22EEB7FA58BB63 ] CLSched C:\Program Files\HP\QuickPlay\Kernel\TV\CLSched.exe
06:43:01.0361 1772 CLSched - ok
06:43:01.0408 1772 CLTNetCnService - ok
06:43:01.0486 1772 [ 99AFC3795B58CC478FBBBCDC658FCB56 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
06:43:01.0580 1772 CmBatt - ok
06:43:01.0689 1772 [ 45201046C776FFDAF3FC8A0029C581C8 ] cmdide C:\Windows\system32\drivers\cmdide.sys
06:43:01.0705 1772 cmdide - ok
06:43:03.0577 1772 [ A5AAA656403E5E7AFA9647CE73DBF944 ] Com4Qlb C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4Qlb.exe
06:43:03.0842 1772 Com4Qlb - ok
06:43:03.0904 1772 [ 6AFEF0B60FA25DE07C0968983EE4F60A ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
06:43:04.0029 1772 Compbatt - ok
06:43:04.0045 1772 COMSysApp - ok
06:43:04.0263 1772 [ 2A213AE086BBEC5E937553C7D9A2B22C ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
06:43:04.0388 1772 crcdisk - ok
06:43:04.0481 1772 [ 22A7F883508176489F559EE745B5BF5D ] Crusoe C:\Windows\system32\drivers\crusoe.sys
06:43:04.0591 1772 Crusoe - ok
06:43:04.0762 1772 [ 6DE363F9F99334514C46AEC02D3E3678 ] CryptSvc C:\Windows\system32\cryptsvc.dll
06:43:04.0856 1772 CryptSvc - ok
06:43:05.0199 1772 [ 301AE00E12408650BADDC04DBC832830 ] DcomLaunch C:\Windows\system32\rpcss.dll
06:43:05.0339 1772 DcomLaunch - ok
06:43:05.0433 1772 [ A3E9FA213F443AC77C7746119D13FEEC ] DfsC C:\Windows\system32\Drivers\dfsc.sys
06:43:05.0495 1772 DfsC - ok
06:43:05.0948 1772 [ FA3463F25F9CC9C3BCF1E7912FEFF099 ] DFSR C:\Windows\system32\DFSR.exe
06:43:06.0525 1772 DFSR - ok
06:43:06.0650 1772 [ 43A988A9C10333476CB5FB667CBD629D ] Dhcp C:\Windows\System32\dhcpcsvc.dll
06:43:06.0681 1772 Dhcp - ok
06:43:06.0743 1772 [ 64109E623ABD6955C8FB110B592E68B7 ] disk C:\Windows\system32\drivers\disk.sys
06:43:06.0790 1772 disk - ok
06:43:06.0837 1772 [ 4805D9A6D281C7A7DEFD9094DEC6AF7D ] Dnscache C:\Windows\System32\dnsrslvr.dll
06:43:06.0899 1772 Dnscache - ok
06:43:06.0977 1772 [ 5AF620A08C614E24206B79E8153CF1A8 ] dot3svc C:\Windows\System32\dot3svc.dll
06:43:07.0009 1772 dot3svc - ok
06:43:07.0118 1772 [ 4F59C172C094E1A1D46463A8DC061CBD ] Dot4 C:\Windows\system32\DRIVERS\Dot4.sys
06:43:07.0211 1772 Dot4 - ok
06:43:07.0321 1772 [ 80BF3BA09F6F2523C8F6B7CC6DBF7BD5 ] Dot4Print C:\Windows\system32\DRIVERS\Dot4Prt.sys
06:43:07.0367 1772 Dot4Print - ok
06:43:07.0430 1772 [ C55004CA6B419B6695970DFE849B122F ] dot4usb C:\Windows\system32\DRIVERS\dot4usb.sys
06:43:07.0492 1772 dot4usb - ok
06:43:07.0586 1772 [ A622E888F8AA2F6B49E9BC466F0E5DEF ] DPS C:\Windows\system32\dps.dll
06:43:07.0633 1772 DPS - ok
06:43:07.0711 1772 [ 97FEF831AB90BEE128C9AF390E243F80 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
06:43:07.0757 1772 drmkaud - ok
06:43:07.0929 1772 [ 85F33880B8CFB554BD3D9CCDB486845A ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
06:43:08.0319 1772 DXGKrnl - ok
06:43:08.0459 1772 [ C0B00E55CF82D122D25983C7A6A53DEA ] E100B C:\Windows\system32\DRIVERS\e100b325.sys
06:43:08.0818 1772 E100B - ok
06:43:08.0849 1772 [ F88FB26547FD2CE6D0A5AF2985892C48 ] E1G60 C:\Windows\system32\DRIVERS\E1G60I32.sys
06:43:08.0896 1772 E1G60 - ok
06:43:08.0959 1772 [ E88B0CFCECF745211BBA87F44F85D0DD ] eabfiltr C:\Windows\system32\DRIVERS\eabfiltr.sys
06:43:08.0990 1772 eabfiltr - ok
06:43:09.0083 1772 [ C0B95E40D85CD807D614E264248A45B9 ] EapHost C:\Windows\System32\eapsvc.dll
06:43:09.0083 1772 EapHost - ok
06:43:09.0208 1772 [ DD2CD259D83D8B72C02C5F2331FF9D68 ] Ecache C:\Windows\system32\drivers\ecache.sys
06:43:09.0255 1772 Ecache - ok
06:43:09.0427 1772 [ 9BE3744D295A7701EB425332014F0797 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
06:43:09.0427 1772 ehRecvr - ok
06:43:09.0473 1772 [ AD1870C8E5D6DD340C829E6074BF3C3F ] ehSched C:\Windows\ehome\ehsched.exe
06:43:09.0489 1772 ehSched - ok
06:43:09.0520 1772 [ C27C4EE8926E74AA72EFCAB24C5242C3 ] ehstart C:\Windows\ehome\ehstart.dll
06:43:09.0520 1772 ehstart - ok
06:43:09.0817 1772 [ E8F3F21A71720C84BCF423B80028359F ] elxstor C:\Windows\system32\drivers\elxstor.sys
06:43:09.0941 1772 elxstor - ok
06:43:10.0129 1772 [ 70B1A86DF0C8EAD17D2BC332EDAE2C7C ] EMDMgmt C:\Windows\system32\emdmgmt.dll
06:43:10.0160 1772 EMDMgmt - ok
06:43:10.0300 1772 [ 3CB3343D720168B575133A0A20DC2465 ] EventSystem C:\Windows\system32\es.dll
06:43:10.0316 1772 EventSystem - ok
06:43:10.0425 1772 [ 0D858EB20589A34EFB25695ACAA6AA2D ] exfat C:\Windows\system32\drivers\exfat.sys
06:43:10.0519 1772 exfat - ok
06:43:10.0643 1772 [ 3C489390C2E2064563727752AF8EAB9E ] fastfat C:\Windows\system32\drivers\fastfat.sys
06:43:10.0690 1772 fastfat - ok
06:43:10.0816 1772 [ 63BDADA84951B9C03E641800E176898A ] fdc C:\Windows\system32\DRIVERS\fdc.sys
06:43:10.0847 1772 fdc - ok
06:43:10.0941 1772 [ 6629B5F0E98151F4AFDD87567EA32BA3 ] fdPHost C:\Windows\system32\fdPHost.dll
06:43:10.0956 1772 fdPHost - ok
06:43:11.0050 1772 [ 89ED56DCE8E47AF40892778A5BD31FD2 ] FDResPub C:\Windows\system32\fdrespub.dll
06:43:11.0066 1772 FDResPub - ok
06:43:11.0159 1772 [ A8C0139A884861E3AAE9CFE73B208A9F ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
06:43:11.0565 1772 FileInfo - ok
06:43:11.0658 1772 [ 0AE429A696AECBC5970E3CF2C62635AE ] Filetrace C:\Windows\system32\drivers\filetrace.sys
06:43:11.0705 1772 Filetrace - ok
06:43:11.0784 1772 [ 6603957EFF5EC62D25075EA8AC27DE68 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
06:43:11.0847 1772 flpydisk - ok
06:43:11.0987 1772 [ 05EA53AFE985443011E36DAB07343B46 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
06:43:12.0096 1772 FltMgr - ok
06:43:12.0174 1772 [ C9BE08664611DDAF98E2331E9288B00B ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
06:43:12.0221 1772 FontCache3.0.0.0 - ok
06:43:12.0252 1772 [ 65EA8B77B5851854F0C55C43FA51A198 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
06:43:12.0315 1772 Fs_Rec - ok
06:43:12.0346 1772 [ 4E1CD0A45C50A8882616CAE5BF82F3C5 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
06:43:12.0361 1772 gagp30kx - ok
06:43:12.0424 1772 [ 8182FF89C65E4D38B2DE4BB0FB18564E ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
06:43:12.0517 1772 GEARAspiWDM - ok
06:43:12.0658 1772 [ D9F1113D9401185245573350712F92FC ] gpsvc C:\Windows\System32\gpsvc.dll
06:43:12.0783 1772 gpsvc - ok
06:43:13.0048 1772 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
06:43:13.0079 1772 gupdate - ok
06:43:13.0141 1772 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
06:43:13.0141 1772 gupdatem - ok
06:43:13.0329 1772 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
06:43:13.0485 1772 gusvc - ok
06:43:14.0233 1772 [ DE15777902A5D9121857D155873A1D1B ] HBtnKey C:\Windows\system32\DRIVERS\cpqbttn.sys
06:43:14.0311 1772 HBtnKey - ok
06:43:14.0795 1772 [ CB04C744BE0A61B1D648FAED182C3B59 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
06:43:15.0279 1772 HdAudAddService - ok
06:43:15.0388 1772 [ C87B1EE051C0464491C1A7B03FA0BC99 ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
06:43:15.0481 1772 HDAudBus - ok
06:43:15.0653 1772 [ 1338520E78D90154ED6BE8F84DE5FCEB ] HidBth C:\Windows\system32\drivers\hidbth.sys
06:43:15.0825 1772 HidBth - ok
06:43:15.0996 1772 [ FF3160C3A2445128C5A6D9B076DA519E ] HidIr C:\Windows\system32\drivers\hidir.sys
06:43:16.0121 1772 HidIr - ok
06:43:16.0277 1772 [ 8FA640195279ACE21BEA91396A0054FC ] hidserv C:\Windows\system32\hidserv.dll
06:43:16.0277 1772 hidserv - ok
06:43:16.0402 1772 [ 854CA287AB7FAF949617A788306D967E ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
06:43:16.0527 1772 HidUsb - ok
06:43:16.0589 1772 [ D8AD255B37DA92434C26E4876DB7D418 ] hkmsvc C:\Windows\system32\kmsvc.dll
06:43:16.0698 1772 hkmsvc - ok
06:43:17.0463 1772 [ D6B25A2A39547DD835E730BEF97FC1E0 ] HP Health Check Service C:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe
06:43:17.0494 1772 HP Health Check Service - ok
06:43:17.0603 1772 [ DF353B401001246853763C4B7AAA6F50 ] HpCISSs C:\Windows\system32\drivers\hpcisss.sys
06:43:17.0743 1772 HpCISSs - ok
06:43:18.0445 1772 [ 0A3C6AA4A9FC38C20BA4EAC2C3351C05 ] hpqcxs08 C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqcxs08.dll
06:43:18.0648 1772 hpqcxs08 - ok
06:43:18.0945 1772 [ EE4C7A4CF2316701FFDE90F404520265 ] hpqddsvc C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqddsvc.dll
06:43:18.0976 1772 hpqddsvc - ok
06:43:19.0225 1772 [ 04C1DCBB226C6AE647B794833CE3CEB6 ] hpqwmiex C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
06:43:19.0288 1772 hpqwmiex - ok
06:43:19.0600 1772 [ 46D67209550973257601A533E2AC5785 ] HSFHWAZL C:\Windows\system32\DRIVERS\VSTAZL3.SYS
06:43:19.0756 1772 HSFHWAZL - ok
06:43:20.0255 1772 [ EC36F1D542ED4252390D446BF6D4DFD0 ] HSF_DPV C:\Windows\system32\DRIVERS\VSTDPV3.SYS
06:43:21.0113 1772 HSF_DPV - ok
06:43:21.0363 1772 [ 96E241624C71211A79C84F50A8E71CAB ] HTTP C:\Windows\system32\drivers\HTTP.sys
06:43:21.0721 1772 HTTP - ok
06:43:22.0049 1772 [ 92CA47DA32009CCC00A5ADED04ABBD78 ] hwdatacard C:\Windows\system32\DRIVERS\ewusbmdm.sys
06:43:22.0189 1772 hwdatacard - ok
06:43:22.0891 1772 [ 1D4D6D24256F61E6B08A3CF8184A78B8 ] hwusbfake C:\Windows\system32\DRIVERS\ewusbfake.sys
06:43:22.0954 1772 hwusbfake - ok
06:43:23.0032 1772 [ 324C2152FF2C61ABAE92D09F3CCA4D63 ] i2omp C:\Windows\system32\drivers\i2omp.sys
06:43:23.0094 1772 i2omp - ok
06:43:23.0250 1772 [ 22D56C8184586B7A1F6FA60BE5F5A2BD ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
06:43:23.0297 1772 i8042prt - ok
06:43:23.0952 1772 [ 9378D57E2B96C0A185D844770AD49948 ] ialm C:\Windows\system32\DRIVERS\igdkmd32.sys
06:43:24.0295 1772 ialm - ok
06:43:24.0373 1772 [ C957BF4B5D80B46C5017BF0101E6C906 ] iaStorV C:\Windows\system32\drivers\iastorv.sys
06:43:24.0436 1772 iaStorV - ok
06:43:24.0561 1772 [ 6F95324909B502E2651442C1548AB12F ] IDriverT C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
06:43:24.0607 1772 IDriverT - ok
06:43:24.0951 1772 [ 7B630ACAED64FEF0C3E1CF255CB56686 ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
06:43:25.0029 1772 idsvc - ok
06:43:25.0356 1772 [ 9378D57E2B96C0A185D844770AD49948 ] igfx C:\Windows\system32\DRIVERS\igdkmd32.sys
06:43:25.0403 1772 igfx - ok
06:43:25.0450 1772 [ 2D077BF86E843F901D8DB709C95B49A5 ] iirsp C:\Windows\system32\drivers\iirsp.sys
06:43:25.0543 1772 iirsp - ok
06:43:25.0621 1772 [ A3BC480A2BF8AA8E4DABD2D5DCE0AFAC ] IKEEXT C:\Windows\System32\ikeext.dll
06:43:25.0637 1772 IKEEXT - ok
06:43:25.0793 1772 [ 4A705BF2A6F7972F2F2AD8A0D8079F95 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHDA.sys
06:43:25.0980 1772 IntcAzAudAddService - ok
06:43:26.0027 1772 [ 97469037714070E45194ED318D636401 ] intelide C:\Windows\system32\drivers\intelide.sys
06:43:26.0074 1772 intelide - ok
06:43:26.0136 1772 [ 224191001E78C89DFA78924C3EA595FF ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
06:43:26.0152 1772 intelppm - ok
06:43:26.0214 1772 [ 9AC218C6E6105477484C6FDBE7D409A4 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
06:43:26.0245 1772 IPBusEnum - ok
06:43:26.0292 1772 [ 62C265C38769B864CB25B4BCF62DF6C3 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
06:43:26.0339 1772 IpFilterDriver - ok
06:43:26.0355 1772 IpInIp - ok
06:43:26.0386 1772 [ 40F34F8ABA2A015D780E4B09138B6C17 ] IPMIDRV C:\Windows\system32\drivers\ipmidrv.sys
06:43:26.0401 1772 IPMIDRV - ok
06:43:26.0448 1772 [ 8793643A67B42CEC66490B2A0CF92D68 ] IPNAT C:\Windows\system32\DRIVERS\ipnat.sys
06:43:26.0495 1772 IPNAT - ok
06:43:26.0604 1772 [ 178FE38B7740F598391EB2F51AE4CCAC ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
06:43:26.0713 1772 iPod Service - ok
06:43:26.0776 1772 [ 109C0DFB82C3632FBD11949B73AEEAC9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
06:43:26.0807 1772 IRENUM - ok
06:43:26.0854 1772 [ 350FCA7E73CF65BCEF43FAE1E4E91293 ] isapnp C:\Windows\system32\drivers\isapnp.sys
06:43:26.0901 1772 isapnp - ok
06:43:26.0979 1772 [ F247EEC28317F6C739C16DE420097301 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
06:43:27.0010 1772 iScsiPrt - ok
06:43:27.0057 1772 [ BCED60D16156E428F8DF8CF27B0DF150 ] iteatapi C:\Windows\system32\drivers\iteatapi.sys
06:43:27.0072 1772 iteatapi - ok
06:43:27.0088 1772 [ 06FA654504A498C30ADCA8BEC4E87E7E ] iteraid C:\Windows\system32\drivers\iteraid.sys
06:43:27.0135 1772 iteraid - ok
06:43:27.0181 1772 [ 37605E0A8CF00CBBA538E753E4344C6E ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
06:43:27.0228 1772 kbdclass - ok
06:43:27.0259 1772 [ 18247836959BA67E3511B62846B9C2E0 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
06:43:27.0291 1772 kbdhid - ok
06:43:27.0337 1772 [ A911ECAC81F94ADEAFBE8E3F7873EDB0 ] KeyIso C:\Windows\system32\lsass.exe
06:43:27.0337 1772 KeyIso - ok
06:43:27.0384 1772 [ 7A0CF7908B6824D6A2A1D313E5AE3DCA ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
06:43:27.0462 1772 KSecDD - ok
06:43:27.0525 1772 [ 8078F8F8F7A79E2E6B494523A828C585 ] KtmRm C:\Windows\system32\msdtckrm.dll
06:43:27.0540 1772 KtmRm - ok
06:43:27.0571 1772 [ 1925E63C91CF1610AE41BFD539062079 ] LanmanServer C:\Windows\system32\srvsvc.dll
06:43:27.0587 1772 LanmanServer - ok
06:43:27.0649 1772 [ 2AE2E1628C5D3F1C0A46A67C9FA1DF15 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
06:43:27.0665 1772 LanmanWorkstation - ok
06:43:27.0774 1772 [ 559C9B7800FAC92FC515CD0003D7C631 ] LightScribeService C:\Program Files\Common Files\LightScribe\LSSrvc.exe
06:43:27.0852 1772 LightScribeService - ok
06:43:28.0445 1772 [ A97EEB81F05BCE3D7AA6C81F04EF39A4 ] LiveUpdate C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
06:43:28.0570 1772 LiveUpdate - ok
06:43:28.0601 1772 LiveUpdate Notice Ex - ok
06:43:28.0710 1772 [ 2D1389E05A807D956829F44BD4B60389 ] LiveUpdate Notice Service C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
06:43:28.0741 1772 LiveUpdate Notice Service - ok
06:43:28.0773 1772 [ D1C5883087A0C3F1344D9D55A44901F6 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
06:43:28.0819 1772 lltdio - ok
06:43:28.0882 1772 [ 2D5A428872F1442631D0959A34ABFF63 ] lltdsvc C:\Windows\System32\lltdsvc.dll
06:43:28.0960 1772 lltdsvc - ok
06:43:29.0007 1772 [ 35D40113E4A5B961B6CE5C5857702518 ] lmhosts C:\Windows\System32\lmhsvc.dll
06:43:29.0007 1772 lmhosts - ok
06:43:29.0069 1772 [ A2262FB9F28935E862B4DB46438C80D2 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
06:43:29.0163 1772 LSI_FC - ok
06:43:29.0209 1772 [ 30D73327D390F72A62F32C103DAF1D6D ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
06:43:29.0241 1772 LSI_SAS - ok
06:43:29.0287 1772 [ E1E36FEFD45849A95F1AB81DE0159FE3 ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
06:43:29.0334 1772 LSI_SCSI - ok
06:43:29.0381 1772 [ 8F5C7426567798E62A3B3614965D62CC ] luafv C:\Windows\system32\drivers\luafv.sys
06:43:29.0412 1772 luafv - ok
06:43:29.0506 1772 [ AEF9BABB8A506BC4CE0451A64AADED46 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
06:43:29.0599 1772 Mcx2Svc - ok
06:43:29.0646 1772 [ D153B14FC6598EAE8422A2037553ADCE ] megasas C:\Windows\system32\drivers\megasas.sys
06:43:29.0677 1772 megasas - ok
06:43:29.0740 1772 [ 1076FFCFFAAE8385FD62DFCB25AC4708 ] MMCSS C:\Windows\system32\mmcss.dll
06:43:29.0755 1772 MMCSS - ok
06:43:29.0802 1772 [ E13B5EA0F51BA5B1512EC671393D09BA ] Modem C:\Windows\system32\drivers\modem.sys
06:43:29.0833 1772 Modem - ok
06:43:29.0896 1772 [ 0A9BB33B56E294F686ABB7C1E4E2D8A8 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
06:43:29.0896 1772 monitor - ok
06:43:29.0974 1772 [ FE80C18BA448DDD76B7BEAD9EB203D37 ] motmodem C:\Windows\system32\DRIVERS\motmodem.sys
06:43:29.0974 1772 motmodem - ok
06:43:30.0021 1772 [ 5BF6A1326A335C5298477754A506D263 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
06:43:30.0067 1772 mouclass - ok
06:43:30.0130 1772 [ 93B8D4869E12CFBE663915502900876F ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
06:43:30.0177 1772 mouhid - ok
06:43:30.0239 1772 [ BDAFC88AA6B92F7842416EA6A48E1600 ] MountMgr C:\Windows\system32\drivers\mountmgr.sys
06:43:30.0286 1772 MountMgr - ok
06:43:30.0348 1772 [ 583A41F26278D9E0EA548163D6139397 ] mpio C:\Windows\system32\drivers\mpio.sys
06:43:30.0379 1772 mpio - ok
06:43:30.0426 1772 [ 22241FEBA9B2DEFA669C8CB0A8DD7D2E ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
06:43:30.0473 1772 mpsdrv - ok
06:43:30.0535 1772 [ 4FBBB70D30FD20EC51F80061703B001E ] Mraid35x C:\Windows\system32\drivers\mraid35x.sys
06:43:30.0567 1772 Mraid35x - ok
06:43:30.0613 1772 [ AE3DE84536B6799D2267443CEC8EDBB9 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
06:43:30.0738 1772 MRxDAV - ok
06:43:30.0801 1772 [ 5734A0F2BE7E495F7D3ED6EFD4B9F5A1 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
06:43:30.0847 1772 mrxsmb - ok
06:43:30.0894 1772 [ 6B5FA5ADFACAC9DBBE0991F4566D7D55 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
06:43:30.0957 1772 mrxsmb10 - ok
06:43:31.0003 1772 [ 5C80D8159181C7ABF1B14BA703B01E0B ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
06:43:31.0019 1772 mrxsmb20 - ok
06:43:31.0066 1772 [ 28023E86F17001F7CD9B15A5BC9AE07D ] msahci C:\Windows\system32\drivers\msahci.sys
06:43:31.0128 1772 msahci - ok
06:43:31.0175 1772 [ 3FC82A2AE4CC149165A94699183D3028 ] msdsm C:\Windows\system32\drivers\msdsm.sys
06:43:31.0269 1772 msdsm - ok
06:43:31.0315 1772 [ FD7520CC3A80C5FC8C48852BB24C6DED ] MSDTC C:\Windows\System32\msdtc.exe
06:43:31.0378 1772 MSDTC - ok
06:43:31.0440 1772 [ A9927F4A46B816C92F461ACB90CF8515 ] Msfs C:\Windows\system32\drivers\Msfs.sys
06:43:31.0471 1772 Msfs - ok
06:43:31.0487 1772 [ 0F400E306F385C56317357D6DEA56F62 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
06:43:31.0503 1772 msisadrv - ok
06:43:31.0612 1772 [ 85466C0757A23D9A9AECDC0755203CB2 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
06:43:31.0705 1772 MSiSCSI - ok
06:43:31.0721 1772 msiserver - ok
06:43:31.0768 1772 [ D8C63D34D9C9E56C059E24EC7185CC07 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
06:43:31.0815 1772 MSKSSRV - ok
06:43:31.0861 1772 [ 1D373C90D62DDB641D50E55B9E78D65E ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
06:43:31.0908 1772 MSPCLOCK - ok
06:43:31.0955 1772 [ B572DA05BF4E098D4BBA3A4734FB505B ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
06:43:31.0986 1772 MSPQM - ok
06:43:32.0049 1772 [ B5614AECB05A9340AA0FB55BF561CC63 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
06:43:32.0111 1772 MsRPC - ok
06:43:32.0173 1772 [ E384487CB84BE41D09711C30CA79646C ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
06:43:32.0173 1772 mssmbios - ok
06:43:32.0205 1772 [ 7199C1EEC1E4993CAF96B8C0A26BD58A ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
06:43:32.0236 1772 MSTEE - ok
06:43:32.0283 1772 [ 6DFD1D322DE55B0B7DB7D21B90BEC49C ] Mup C:\Windows\system32\Drivers\mup.sys
06:43:32.0314 1772 Mup - ok
06:43:32.0407 1772 [ C43B25863FBD65B6D2A142AF3AE320CA ] napagent C:\Windows\system32\qagentRT.dll
06:43:32.0439 1772 napagent - ok
06:43:32.0517 1772 [ 3C21CE48FF529BB73DADB98770B54025 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
06:43:32.0548 1772 NativeWifiP - ok
06:43:32.0641 1772 [ 9BDC71790FA08F0A0B5F10462B1BD0B1 ] NDIS C:\Windows\system32\drivers\ndis.sys
06:43:32.0673 1772 NDIS - ok
06:43:32.0751 1772 [ 0E186E90404980569FB449BA7519AE61 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
06:43:32.0797 1772 NdisTapi - ok
06:43:32.0829 1772 [ D6973AA34C4D5D76C0430B181C3CD389 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
06:43:32.0875 1772 Ndisuio - ok
06:43:32.0938 1772 [ 3D14C3B3496F88890D431E8AA022A411 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
06:43:32.0985 1772 NdisWan - ok
06:43:33.0063 1772 [ 71DAB552B41936358F3B541AE5997FB3 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
06:43:33.0125 1772 NDProxy - ok
06:43:33.0187 1772 [ 2969D26EEE289BE7422AA46FC55F4E38 ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll
06:43:33.0265 1772 Net Driver HPZ12 - ok
06:43:33.0328 1772 [ BCD093A5A6777CF626434568DC7DBA78 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
06:43:33.0390 1772 NetBIOS - ok
06:43:33.0515 1772 [ 7C5FEE5B1C5728507CD96FB4A13E7A02 ] netbt C:\Windows\system32\DRIVERS\netbt.sys
06:43:33.0593 1772 netbt - ok
06:43:33.0624 1772 [ A911ECAC81F94ADEAFBE8E3F7873EDB0 ] Netlogon C:\Windows\system32\lsass.exe
06:43:33.0624 1772 Netlogon - ok
06:43:33.0718 1772 [ C8052711DAECC48B982434C5116CA401 ] Netman C:\Windows\System32\netman.dll
06:43:33.0749 1772 Netman - ok
06:43:33.0796 1772 [ 2EF3BBE22E5A5ACD1428EE387A0D0172 ] netprofm C:\Windows\System32\netprofm.dll
06:43:33.0827 1772 netprofm - ok
06:43:33.0858 1772 [ 0AD5876EF4E9EB77C8F93EB5B2FFF386 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
06:43:33.0889 1772 NetTcpPortSharing - ok
06:43:34.0061 1772 [ 1D73499A6664B4DA05D750FF83FDB274 ] NETw4v32 C:\Windows\system32\DRIVERS\NETw4v32.sys
06:43:34.0326 1772 NETw4v32 - ok
06:43:34.0373 1772 [ 2E7FB731D4790A1BC6270ACCEFACB36E ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
06:43:34.0420 1772 nfrd960 - ok
06:43:34.0467 1772 [ 2997B15415F9BBE05B5A4C1C85E0C6A2 ] NlaSvc C:\Windows\System32\nlasvc.dll
06:43:34.0482 1772 NlaSvc - ok
06:43:34.0607 1772 [ E32686B4E27D11F83E3F2844E104C66C ] NMIndexingService C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
06:43:34.0685 1772 NMIndexingService - ok
06:43:34.0732 1772 [ ECB5003F484F9ED6C608D6D6C7886CBB ] Npfs C:\Windows\system32\drivers\Npfs.sys
06:43:34.0779 1772 Npfs - ok
06:43:34.0825 1772 [ 8BB86F0C7EEA2BDED6FE095D0B4CA9BD ] nsi C:\Windows\system32\nsisvc.dll
06:43:34.0841 1772 nsi - ok
06:43:34.0966 1772 [ 609773E344A97410CE4EBF74A8914FCF ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
06:43:34.0997 1772 nsiproxy - ok
06:43:35.0169 1772 [ B4EFFE29EB4F15538FD8A9681108492D ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
06:43:35.0262 1772 Ntfs - ok
06:43:35.0309 1772 [ E875C093AEC0C978A90F30C9E0DFBB72 ] ntrigdigi C:\Windows\system32\drivers\ntrigdigi.sys
06:43:35.0387 1772 ntrigdigi - ok
06:43:35.0434 1772 [ C5DBBCDA07D780BDA9B685DF333BB41E ] Null C:\Windows\system32\drivers\Null.sys
06:43:35.0434 1772 Null - ok
06:43:35.0465 1772 [ E69E946F80C1C31C53003BFBF50CBB7C ] nvraid C:\Windows\system32\drivers\nvraid.sys
06:43:35.0512 1772 nvraid - ok
06:43:35.0543 1772 [ 9E0BA19A28C498A6D323D065DB76DFFC ] nvstor C:\Windows\system32\drivers\nvstor.sys
06:43:35.0574 1772 nvstor - ok
06:43:35.0621 1772 [ 07C186427EB8FCC3D8D7927187F260F7 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
06:43:35.0637 1772 nv_agp - ok
06:43:35.0652 1772 NwlnkFlt - ok
06:43:35.0668 1772 NwlnkFwd - ok
06:43:35.0871 1772 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
06:43:35.0886 1772 odserv - ok
06:43:35.0949 1772 [ 790E27C3DB53410B40FF9EF2FD10A1D9 ] ohci1394 C:\Windows\system32\DRIVERS\ohci1394.sys
06:43:35.0964 1772 ohci1394 - ok
06:43:36.0058 1772 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
06:43:36.0073 1772 ose - ok
06:43:36.0214 1772 [ 5DE1A3972FD3112C75EB17BDCF454169 ] p2pimsvc C:\Windows\system32\p2psvc.dll
06:43:36.0307 1772 p2pimsvc - ok
06:43:36.0339 1772 [ 5DE1A3972FD3112C75EB17BDCF454169 ] p2psvc C:\Windows\system32\p2psvc.dll
06:43:36.0354 1772 p2psvc - ok
06:43:36.0401 1772 [ 0FA9B5055484649D63C303FE404E5F4D ] Parport C:\Windows\system32\drivers\parport.sys
06:43:36.0510 1772 Parport - ok
06:43:36.0541 1772 [ 3B38467E7C3DAED009DFE359E17F139F ] partmgr C:\Windows\system32\drivers\partmgr.sys
06:43:36.0588 1772 partmgr - ok
06:43:36.0635 1772 [ 4F9A6A8A31413180D0FCB279AD5D8112 ] Parvdm C:\Windows\system32\drivers\parvdm.sys
06:43:36.0697 1772 Parvdm - ok
06:43:36.0744 1772 [ C6276AD11F4BB49B58AA1ED88537F14A ] PcaSvc C:\Windows\System32\pcasvc.dll
06:43:36.0744 1772 PcaSvc - ok
06:43:36.0807 1772 [ 01B94418DEB235DFF777CC80076354B4 ] pci C:\Windows\system32\drivers\pci.sys
06:43:36.0853 1772 pci - ok
06:43:36.0963 1772 [ FC175F5DDAB666D7F4D17449A547626F ] pciide C:\Windows\system32\DRIVERS\pciide.sys
06:43:37.0009 1772 pciide - ok
06:43:37.0056 1772 [ E6F3FB1B86AA519E7698AD05E58B04E5 ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
06:43:37.0103 1772 pcmcia - ok
06:43:37.0165 1772 [ 84DCAA9BC5950F53905A032D99474236 ] pctvnet C:\Windows\system32\DRIVERS\pctvnet.sys
06:43:37.0197 1772 pctvnet - ok
06:43:37.0399 1772 [ 6349F6ED9C623B44B52EA3C63C831A92 ] PEAUTH C:\Windows\system32\drivers\peauth.sys
06:43:37.0493 1772 PEAUTH - ok
06:43:37.0680 1772 [ B1689DF169143F57053F795390C99DB3 ] pla C:\Windows\system32\pla.dll
06:43:37.0758 1772 pla - ok
06:43:37.0852 1772 [ B5D974C1FD078A68C7536C561B031D39 ] Planificateur LiveUpdate automatique C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
06:43:37.0914 1772 Planificateur LiveUpdate automatique - ok
06:43:37.0961 1772 [ 78F975CB6D18265BE6F492EDB2D7BC7B ] PlugPlay C:\Windows\system32\umpnpmgr.dll
06:43:37.0977 1772 PlugPlay - ok
06:43:38.0055 1772 [ BAFC9706BDF425A02B66468AB2605C59 ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
06:43:38.0101 1772 Pml Driver HPZ12 - ok
06:43:38.0179 1772 [ 5DE1A3972FD3112C75EB17BDCF454169 ] PNRPAutoReg C:\Windows\system32\p2psvc.dll
06:43:38.0195 1772 PNRPAutoReg - ok
06:43:38.0273 1772 [ 5DE1A3972FD3112C75EB17BDCF454169 ] PNRPsvc C:\Windows\system32\p2psvc.dll
06:43:38.0289 1772 PNRPsvc - ok
06:43:38.0367 1772 [ 47B8F37AA18B74D8C2E1BC1A7A2C8F8A ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
06:43:38.0413 1772 PolicyAgent - ok
06:43:38.0491 1772 [ ECFFFAEC0C1ECD8DBC77F39070EA1DB1 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
06:43:38.0554 1772 PptpMiniport - ok
06:43:38.0897 1772 [ 87D211BA1E9759E26B6296E625A31CE8 ] PQNTDrv C:\Windows\system32\drivers\PQNTDrv.sys
06:43:38.0959 1772 PQNTDrv - ok
06:43:39.0053 1772 [ 0E3CEF5D28B40CF273281D620C50700A ] Processor C:\Windows\system32\drivers\processr.sys
06:43:39.0225 1772 Processor - ok
06:43:39.0271 1772 [ B627E4FC8585E8843C5905D4D3587A90 ] ProfSvc C:\Windows\system32\profsvc.dll
06:43:39.0271 1772 ProfSvc - ok
06:43:39.0334 1772 [ A911ECAC81F94ADEAFBE8E3F7873EDB0 ] ProtectedStorage C:\Windows\system32\lsass.exe
06:43:39.0334 1772 ProtectedStorage - ok
06:43:39.0381 1772 [ BFEF604508A0ED1EAE2A73E872555FFB ] PSched C:\Windows\system32\DRIVERS\pacer.sys
06:43:39.0396 1772 PSched - ok
06:43:39.0427 1772 [ FEFFCFDC528764A04C8ED63D5FA6E711 ] PxHelp20 C:\Windows\system32\Drivers\PxHelp20.sys
06:43:39.0537 1772 PxHelp20 - ok
06:43:39.0677 1772 [ CCDAC889326317792480C0A67156A1EC ] ql2300 C:\Windows\system32\drivers\ql2300.sys
06:43:39.0739 1772 ql2300 - ok
06:43:39.0817 1772 [ 81A7E5C076E59995D54BC1ED3A16E60B ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
06:43:39.0880 1772 ql40xx - ok
06:43:39.0973 1772 [ E9ECAE663F47E6CB43962D18AB18890F ] QWAVE C:\Windows\system32\qwave.dll
06:43:40.0005 1772 QWAVE - ok
06:43:40.0036 1772 [ 9F5E0E1926014D17486901C88ECA2DB7 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
06:43:40.0051 1772 QWAVEdrv - ok
06:43:40.0067 1772 [ 147D7F9C556D259924351FEB0DE606C3 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
06:43:40.0083 1772 RasAcd - ok
06:43:40.0129 1772 [ F6A452EB4CEADBB51C9E0EE6B3ECEF0F ] RasAuto C:\Windows\System32\rasauto.dll
06:43:40.0145 1772 RasAuto - ok
06:43:40.0176 1772 [ A214ADBAF4CB47DD2728859EF31F26B0 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
06:43:40.0192 1772 Rasl2tp - ok
06:43:40.0285 1772 [ 6E7C284FC5C4EC07AD164D93810385A6 ] RasMan C:\Windows\System32\rasmans.dll
06:43:40.0317 1772 RasMan - ok
06:43:40.0363 1772 [ 3E9D9B048107B40D87B97DF2E48E0744 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
06:43:40.0363 1772 RasPppoe - ok
06:43:40.0410 1772 [ A7D141684E9500AC928A772ED8E6B671 ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
06:43:40.0441 1772 RasSstp - ok
06:43:40.0535 1772 [ 6E1C5D0457622F9EE35F683110E93D14 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
06:43:40.0675 1772 rdbss - ok
06:43:40.0722 1772 [ 89E59BE9A564262A3FB6C4F4F1CD9899 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
06:43:40.0831 1772 RDPCDD - ok
06:43:40.0909 1772 [ E8BD98D46F2ED77132BA927FCCB47D8B ] rdpdr C:\Windows\system32\drivers\rdpdr.sys
06:43:40.0956 1772 rdpdr - ok
06:43:41.0003 1772 [ 9D91FE5286F748862ECFFA05F8A0710C ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
06:43:41.0019 1772 RDPENCDD - ok
06:43:41.0112 1772 [ E1C18F4097A5ABCEC941DC4B2F99DB7E ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
06:43:41.0143 1772 RDPWD - ok
06:43:41.0190 1772 [ BCDD6B4804D06B1F7EBF29E53A57ECE9 ] RemoteAccess C:\Windows\System32\mprdim.dll
06:43:41.0268 1772 RemoteAccess - ok
06:43:41.0362 1772 [ CC4E32400F3C7253400CF8F3F3A0B676 ] RemoteRegistry C:\Windows\system32\regsvc.dll
06:43:41.0377 1772 RemoteRegistry - ok
06:43:41.0409 1772 [ D85E3FA9F5B1F29BB4ED185C450D1470 ] rimmptsk C:\Windows\system32\DRIVERS\rimmptsk.sys
06:43:41.0424 1772 rimmptsk - ok
06:43:41.0440 1772 [ DB8EB01C58C9FADA00C70B1775278AE0 ] rimsptsk C:\Windows\system32\DRIVERS\rimsptsk.sys
06:43:41.0455 1772 rimsptsk - ok
06:43:41.0487 1772 [ 6C1F93C0760C9F79A1869D07233DF39D ] rismxdp C:\Windows\system32\DRIVERS\rixdptsk.sys
06:43:41.0518 1772 rismxdp - ok
06:43:41.0658 1772 [ AD1411A7EA50F2F97A73A3F51153066E ] RoxMediaDB9 C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe
06:43:41.0752 1772 RoxMediaDB9 - ok
06:43:41.0830 1772 [ 5123F83CBC4349D065534EEB6BBDC42B ] RpcLocator C:\Windows\system32\locator.exe
06:43:41.0830 1772 RpcLocator - ok
06:43:41.0877 1772 [ 301AE00E12408650BADDC04DBC832830 ] RpcSs C:\Windows\system32\rpcss.dll
06:43:41.0892 1772 RpcSs - ok
06:43:41.0955 1772 [ 9C508F4074A39E8B4B31D27198146FAD ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
06:43:42.0017 1772 rspndr - ok
06:43:42.0079 1772 [ 904FD29EC1FF2709099AE2CD1C09A913 ] RTL8169 C:\Windows\system32\DRIVERS\Rtlh86.sys
06:43:42.0126 1772 RTL8169 - ok
06:43:42.0126 1772 [ A911ECAC81F94ADEAFBE8E3F7873EDB0 ] SamSs C:\Windows\system32\lsass.exe
06:43:42.0142 1772 SamSs - ok
06:43:42.0189 1772 [ 729248B54AFF21E740054ACEBFDBCB1C ] SBKUPNT C:\Windows\system32\Drivers\SBKUPNT.SYS
06:43:42.0220 1772 SBKUPNT - ok
06:43:42.0235 1772 [ 3CE8F073A557E172B330109436984E30 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
06:43:42.0267 1772 sbp2port - ok
06:43:42.0313 1772 [ 11387E32642269C7E62E8B52C060B3C6 ] SCardSvr C:\Windows\System32\SCardSvr.dll
06:43:42.0345 1772 SCardSvr - ok
06:43:42.0423 1772 [ 7B587B8A6D4A99F79D2902D0385F29BD ] Schedule C:\Windows\system32\schedsvc.dll
06:43:42.0469 1772 Schedule - ok
06:43:42.0501 1772 [ 87C2D0377B23E2D8A41093C2F5FB1A5B ] SCPolicySvc C:\Windows\System32\certprop.dll
06:43:42.0501 1772 SCPolicySvc - ok
06:43:42.0563 1772 [ 126EA89BCC413EE45E3004FB0764888F ] sdbus C:\Windows\system32\DRIVERS\sdbus.sys
06:43:42.0610 1772 sdbus - ok
06:43:42.0641 1772 [ 716313D9F6B0529D03F726D5AAF6F191 ] SDRSVC C:\Windows\System32\SDRSVC.dll
06:43:42.0657 1772 SDRSVC - ok
06:43:42.0688 1772 [ 90A3935D05B494A5A39D37E71F09A677 ] secdrv C:\Windows\system32\drivers\secdrv.sys
06:43:42.0735 1772 secdrv - ok
06:43:42.0781 1772 [ FD5199D4D8A521005E4B5EE7FE00FA9B ] seclogon C:\Windows\system32\seclogon.dll
06:43:42.0797 1772 seclogon - ok
06:43:42.0828 1772 [ A9BBAB5759771E523F55563D6CBE140F ] SENS C:\Windows\System32\sens.dll
06:43:42.0844 1772 SENS - ok
06:43:42.0906 1772 [ 68E44E331D46F0FB38F0863A84CD1A31 ] Serenum C:\Windows\system32\drivers\serenum.sys
06:43:42.0922 1772 Serenum - ok
06:43:42.0953 1772 [ C70D69A918B178D3C3B06339B40C2E1B ] Serial C:\Windows\system32\drivers\serial.sys
06:43:42.0969 1772 Serial - ok
06:43:43.0000 1772 [ 8AF3D28A879BF75DB53A0EE7A4289624 ] sermouse C:\Windows\system32\drivers\sermouse.sys
06:43:43.0015 1772 sermouse - ok
06:43:43.0109 1772 [ D2193326F729B163125610DBF3E17D57 ] SessionEnv C:\Windows\system32\sessenv.dll
06:43:43.0109 1772 SessionEnv - ok
06:43:43.0171 1772 [ 3EFA810BDCA87F6ECC24F9832243FE86 ] sffdisk C:\Windows\system32\DRIVERS\sffdisk.sys
06:43:43.0187 1772 sffdisk - ok
06:43:43.0234 1772 [ 8FD08A310645FE872EEEC6E08C6BF3EE ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
06:43:43.0265 1772 sffp_mmc - ok
06:43:43.0296 1772 [ 3D0EA348784B7AC9EA9BD9F317980979 ] sffp_sd C:\Windows\system32\DRIVERS\sffp_sd.sys
06:43:43.0327 1772 sffp_sd - ok
06:43:43.0374 1772 [ 46ED8E91793B2E6F848015445A0AC188 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
06:43:43.0390 1772 sfloppy - ok
06:43:43.0515 1772 [ 1E3FDB80E40A3CE645F229DFBDFB7694 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
06:43:43.0515 1772 ShellHWDetection - ok
06:43:43.0546 1772 [ D2A595D6EEBEEAF4334F8E50EFBC9931 ] sisagp C:\Windows\system32\drivers\sisagp.sys
06:43:43.0655 1772 sisagp - ok
06:43:43.0686 1772 [ CEDD6F4E7D84E9F98B34B3FE988373AA ] SiSRaid2 C:\Windows\system32\drivers\sisraid2.sys
06:43:43.0733 1772 SiSRaid2 - ok
06:43:43.0780 1772 [ DF843C528C4F69D12CE41CE462E973A7 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
06:43:43.0795 1772 SiSRaid4 - ok
06:43:43.0936 1772 [ F07AF60B152221472FBDB2FECEC4896D ] SkypeUpdate C:\Program Files\Skype\Updater\Updater.exe
06:43:43.0951 1772 SkypeUpdate - ok
06:43:44.0217 1772 [ 0BA91E1358AD25236863039BB2609A2E ] slsvc C:\Windows\system32\SLsvc.exe
06:43:44.0341 1772 slsvc - ok
06:43:44.0388 1772 [ 7C6DC44CA0BFA6291629AB764200D1D4 ] SLUINotify C:\Windows\system32\SLUINotify.dll
06:43:44.0388 1772 SLUINotify - ok
06:43:44.0404 1772 [ 031E6BCD53C9B2B9ACE111EAFEC347B6 ] Smb C:\Windows\system32\DRIVERS\smb.sys
06:43:44.0451 1772 Smb - ok
06:43:44.0622 1772 [ 3850ABA97B31094F93BCBE94D6ABBE22 ] smserial C:\Windows\system32\DRIVERS\smserial.sys
06:43:44.0731 1772 smserial - ok
06:43:44.0809 1772 [ 2A146A055B4401C16EE62D18B8E2A032 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
06:43:44.0825 1772 SNMPTRAP - ok
06:43:44.0887 1772 [ 7AEBDEEF071FE28B0EEF2CDD69102BFF ] spldr C:\Windows\system32\drivers\spldr.sys
06:43:44.0934 1772 spldr - ok
06:43:44.0981 1772 [ 3665F79026A3F91FBCA63F2C65A09B19 ] Spooler C:\Windows\System32\spoolsv.exe
06:43:44.0997 1772 Spooler - ok
06:43:45.0137 1772 [ D390675B8CE45E5FB359338E5E649329 ] sptd C:\Windows\system32\Drivers\sptd.sys
06:43:45.0137 1772 Suspicious file (NoAccess): C:\Windows\system32\Drivers\sptd.sys. md5: D390675B8CE45E5FB359338E5E649329
06:43:45.0137 1772 sptd ( LockedFile.Multi.Generic ) - warning
06:43:45.0137 1772 sptd - detected LockedFile.Multi.Generic (1)
06:43:45.0246 1772 [ 2252AEF839B1093D16761189F45AF885 ] srv C:\Windows\system32\DRIVERS\srv.sys
06:43:45.0309 1772 srv - ok
06:43:45.0355 1772 [ B7FF59408034119476B00A81BB53D5D1 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
06:43:45.0418 1772 srv2 - ok
06:43:45.0449 1772 [ 2ACCC9B12AF02030F531E6CCA6F8B76E ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
06:43:45.0511 1772 srvnet - ok
06:43:45.0574 1772 [ 03D50B37234967433A5EA5BA72BC0B62 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
06:43:45.0589 1772 SSDPSRV - ok
06:43:45.0605 1772 [ A36EE93698802CD899F98BFD553D8185 ] ssmdrv C:\Windows\system32\DRIVERS\ssmdrv.sys
06:43:45.0652 1772 ssmdrv - ok
06:43:45.0699 1772 [ 6F1A32E7B7B30F004D9A20AFADB14944 ] SstpSvc C:\Windows\system32\sstpsvc.dll
06:43:45.0714 1772 SstpSvc - ok
06:43:45.0761 1772 [ 7DD08A597BC56051F320DA0BAF69E389 ] stisvc C:\Windows\System32\wiaservc.dll
06:43:45.0792 1772 stisvc - ok
06:43:45.0886 1772 [ B254B1434208F280EDF3785613DCC41B ] stllssvr C:\Program Files\Common Files\SureThing Shared\stllssvr.exe
06:43:45.0948 1772 stllssvr - ok
06:43:45.0995 1772 [ 7BA58ECF0C0A9A69D44B3DCA62BECF56 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
06:43:46.0011 1772 swenum - ok
06:43:46.0089 1772 [ B36C7CDB86F7F7A8E884479219766950 ] swprv C:\Windows\System32\swprv.dll
06:43:46.0104 1772 swprv - ok
06:43:46.0135 1772 [ 192AA3AC01DF071B541094F251DEED10 ] Symc8xx C:\Windows\system32\drivers\symc8xx.sys
06:43:46.0198 1772 Symc8xx - ok
06:43:46.0229 1772 [ 8C8EB8C76736EBAF3B13B633B2E64125 ] Sym_hi C:\Windows\system32\drivers\sym_hi.sys
06:43:46.0260 1772 Sym_hi - ok
06:43:46.0276 1772 [ 8072AF52B5FD103BBBA387A1E49F62CB ] Sym_u3 C:\Windows\system32\drivers\sym_u3.sys
06:43:46.0385 1772 Sym_u3 - ok
06:43:46.0463 1772 [ 8327106D1C93E9A7B98E63B9FCC24BB7 ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
06:43:46.0510 1772 SynTP - ok
06:43:46.0681 1772 [ 8710A92D0024B03B5FB9540DF1F71F1D ] SysMain C:\Windows\system32\sysmain.dll
06:43:46.0713 1772 SysMain - ok
06:43:46.0759 1772 [ 2DCA225EAE15F42C0933E998EE0231C3 ] TabletInputService C:\Windows\System32\TabSvc.dll
06:43:46.0759 1772 TabletInputService - ok
06:43:46.0806 1772 [ 680916BB09EE0F3A6ACA7C274B0D633F ] TapiSrv C:\Windows\System32\tapisrv.dll
06:43:46.0822 1772 TapiSrv - ok
06:43:46.0869 1772 [ CB05822CD9CC6C688168E113C603DBE7 ] TBS C:\Windows\System32\tbssvc.dll
06:43:46.0869 1772 TBS - ok
06:43:46.0947 1772 [ 782568AB6A43160A159B6215B70BCCE9 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
06:43:47.0087 1772 Tcpip - ok
06:43:47.0118 1772 [ 782568AB6A43160A159B6215B70BCCE9 ] Tcpip6 C:\Windows\system32\DRIVERS\tcpip.sys
06:43:47.0149 1772 Tcpip6 - ok
06:43:47.0165 1772 [ D4A2E4A4B011F3A883AF77315A5AE76B ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
06:43:47.0212 1772 tcpipreg - ok
06:43:47.0274 1772 [ 5DCF5E267BE67A1AE926F2DF77FBCC56 ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
06:43:47.0290 1772 TDPIPE - ok
06:43:47.0321 1772 [ 389C63E32B3CEFED425B61ED92D3F021 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
06:43:47.0352 1772 TDTCP - ok
06:43:47.0399 1772 [ D09276B1FAB033CE1D40DCBDF303D10F ] tdx C:\Windows\system32\DRIVERS\tdx.sys
06:43:47.0446 1772 tdx - ok
06:43:47.0493 1772 [ A048056F5E1A96A9BF3071B91741A5AA ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
06:43:47.0508 1772 TermDD - ok
06:43:47.0571 1772 [ D605031E225AACCBCEB5B76A4F1603A6 ] TermService C:\Windows\System32\termsrv.dll
06:43:47.0586 1772 TermService - ok
06:43:47.0617 1772 [ 1E3FDB80E40A3CE645F229DFBDFB7694 ] Themes C:\Windows\system32\shsvcs.dll
06:43:47.0633 1772 Themes - ok
06:43:47.0664 1772 [ 1076FFCFFAAE8385FD62DFCB25AC4708 ] THREADORDER C:\Windows\system32\mmcss.dll
06:43:47.0680 1772 THREADORDER - ok
06:43:47.0711 1772 [ EC74E77D0EB004BD3A809B5F8FB8C2CE ] TrkWks C:\Windows\System32\trkwks.dll
06:43:47.0727 1772 TrkWks - ok
06:43:47.0773 1772 [ 16613A1BAD034D4ECF957AF18B7C2FF5 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
06:43:47.0805 1772 TrustedInstaller - ok
06:43:47.0851 1772 [ DCF0F056A2E4F52287264F5AB29CF206 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
06:43:47.0851 1772 tssecsrv - ok
06:43:48.0148 1772 [ 2F3F4516007C53FFAFC2CD83952DD749 ] TuneUp.UtilitiesSvc C:\Program Files\TuneUp Utilities 2012\TuneUpUtilitiesService32.exe
06:43:48.0226 1772 TuneUp.UtilitiesSvc - ok
06:43:48.0288 1772 [ F2107C9D85EC0DF116939CCCE06AE697 ] TuneUpUtilitiesDrv C:\Program Files\TuneUp Utilities 2012\TuneUpUtilitiesDriver32.sys
06:43:48.0288 1772 TuneUpUtilitiesDrv - ok
06:43:48.0335 1772 [ CAECC0120AC49E3D2F758B9169872D38 ] tunmp C:\Windows\system32\DRIVERS\tunmp.sys
06:43:48.0382 1772 tunmp - ok
06:43:48.0413 1772 [ 6042505FF6FA9AC1EF7684D0E03B6940 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
06:43:48.0444 1772 tunnel - ok
06:43:48.0475 1772 [ C3ADE15414120033A36C0F293D4A4121 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
06:43:48.0507 1772 uagp35 - ok
06:43:48.0569 1772 [ 8B5088058FA1D1CD897A2113CCFF6C58 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
06:43:48.0600 1772 udfs - ok
06:43:48.0663 1772 [ ECEF404F62863755951E09C802C94AD5 ] UI0Detect C:\Windows\system32\UI0Detect.exe
06:43:48.0663 1772 UI0Detect - ok
06:43:48.0694 1772 [ 75E6890EBFCE0841D3291B02E7A8BDB0 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
06:43:48.0741 1772 uliagpkx - ok
06:43:48.0834 1772 [ 3CD4EA35A6221B85DCC25DAA46313F8D ] uliahci C:\Windows\system32\drivers\uliahci.sys
06:43:48.0897 1772 uliahci - ok
06:43:48.0959 1772 [ 8514D0E5CD0534467C5FC61BE94A569F ] UlSata C:\Windows\system32\drivers\ulsata.sys
06:43:49.0006 1772 UlSata - ok
06:43:49.0053 1772 [ 38C3C6E62B157A6BC46594FADA45C62B ] ulsata2 C:\Windows\system32\drivers\ulsata2.sys
06:43:49.0099 1772 ulsata2 - ok
06:43:49.0146 1772 [ 32CFF9F809AE9AED85464492BF3E32D2 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
06:43:49.0193 1772 umbus - ok
06:43:49.0255 1772 [ 68308183F4AE0BE7BF8ECD07CB297999 ] upnphost C:\Windows\System32\upnphost.dll
06:43:49.0271 1772 upnphost - ok
06:43:49.0396 1772 [ 9B01CE1EDA6AD1ACFD4F865D6CB0A790 ] USB28xxBGA C:\Windows\system32\DRIVERS\emBDA.sys
06:43:49.0474 1772 USB28xxBGA - ok
06:43:49.0521 1772 [ C93E4F6BD1CBD163662E7C9BE021B895 ] USB28xxOEM C:\Windows\system32\DRIVERS\emOEM.sys
06:43:49.0630 1772 USB28xxOEM - ok
06:43:49.0692 1772 [ 83CAFCB53201BBAC04D822F32438E244 ] USBAAPL C:\Windows\system32\Drivers\usbaapl.sys
06:43:49.0723 1772 USBAAPL - ok
06:43:49.0801 1772 [ 292A25BB75A568AE2C67169BA2C6365A ] usbaudio
0
Réponse 11 / 40
anto1151 Messages postés 22 Date d'inscription   Statut Membre Dernière intervention  
 
voila le rapprt
0
Réponse 12 / 40
Utilisateur anonyme
 
est ce que tu peux hébérger le rapport sur Cjoint s'il te plait ?


https://www.cjoint.com/ => https://www.commentcamarche.net/list
0
Réponse 13 / 40
anto1151 Messages postés 22 Date d'inscription   Statut Membre Dernière intervention  
 
https://www.cjoint.com/?BLptkhR21xr
0
Réponse 14 / 40
anto1151 Messages postés 22 Date d'inscription   Statut Membre Dernière intervention  
 
je sais pas si c'est bon ...
0
Réponse 15 / 40
Utilisateur anonyme
 
c'est googd !

sptd est le pilote générique de daemon tool !


* /!\Avertissement :
Ce logiciel n'est à utiliser que prescrit par un helper qualifié.
Ne pas utiliser en dehors de ce cas de figure : dangereux!


/!\ Utilisateur de Vista : Ne pas oublier de désactiver l'UAC juste le temps de désinfection de ton pc, il sera à réactiver plus tard


► Télécharges ComboFix à partir de ce lien et enregistres le sur ton bureau :
http://download.bleepingcomputer.com/sUBs/ComboFix.exe
ou ici :
https://forum.pcastuces.com/combofix_renomme_au_telechargement-f31s22.htm
A lire
https://www.bleepingcomputer.com/combofix/fr/comment-utiliser-combofix

Avant d'utiliser ComboFix :

► ferme les fenêtres de tous les programmes en cours.

► Désactive provisoirement et seulement le temps de l'utilisation de ComboFix, la protection en temps réel de ton Antivirus et de tes Antispywares, qui peuvent gêner fortement la procédure de recherche et de nettoyage de l'outil.
Une fois fait, sur ton bureau double-clic sur Combofix.exe.

/!\Utilisateur de Vista : Clique droit sur le logo de Combofix, « exécuter en tant qu'Administrateur »

- Répond oui au message d'avertissement, pour que le programme commence à procéder à l'analyse du pc.

- il se peut que Combofix ait besoin de se connecter à internet pour trouver les mises à jour, donc il faut l'autoriser.

/!\ Pendant la durée de cette étape, ne te sert pas du pc et n'ouvre aucun programmes.

- En fin de scan il est possible que ComboFix ait besoin de redémarrer le pc pour finaliser la désinfection\recherche, laisses-le faire.
- Un rapport s'ouvrira ensuite dans le bloc notes, ce fichier rapport Combofix.txt, est automatiquement sauvegardé et rangé à C:\ComboFix\ComboFix.txt)
► Réactive la protection en temps réel de ton Antivirus et de tes Antispywares, avant de te reconnecter à internet.
► Reviens sur le forum, et copie et colle la totalité du contenu de Combofix.txt dans ton prochain message.


0
Réponse 16 / 40
anto1151 Messages postés 22 Date d'inscription   Statut Membre Dernière intervention  
 
https://www.cjoint.com/?BLpvQ6jCGRe
0
Réponse 17 / 40
Utilisateur anonyme
 
? Télécharger et enregistre ADWcleaner sur ton bureau (Merci à Xplode) :

http://general-changelog-team.fr/fr/downloads/viewdownload/20-outils-de-xplode/2-adwcleaner


Lance le,

clique sur rechercher et poste son rapport.

0
Réponse 18 / 40
anto1151 Messages postés 22 Date d'inscription   Statut Membre Dernière intervention  
 
https://www.cjoint.com/?BLpv3cCgVRW
0
Réponse 19 / 40
Utilisateur anonyme
 
/!\ Attention :
de plus en plus de programmes proposent l'installation des barres d'outils (Toolbars, case précochée), donc n'oublie pas de décocher la/les cases correspondantes pendant l'installation.

De plus de ceci, évite fortement les sites comme 01@net et Softonic, les logiciels gratuits et libres sont repackés avec leurs barres d'outils !



relance ADWC, clique sur Supprimer,

poste son rapport après le redémarrage



0
Réponse 20 / 40
anto1151 Messages postés 22 Date d'inscription   Statut Membre Dernière intervention  
 
https://www.cjoint.com/?BLpwm0L3WBj
0

Discussions similaires

Rétrodiffusion "Mail Delivery System"
baissaoui -
baissaoui -

0 réponse
comment faire si on a un mail delivery system
angeldu5954 -
angeldu5954 -

5 réponses
Sécurité réseau
Astafor99 -
Astafor99 -

4 réponses
Restauration système impossible activer protection du systeme C:
Kate1993 -
Bigfoot -

7 réponses
Supprimer un fichier ouvert dans systeme.
kakashiles -
yly -

12 réponses